diff --git a/.github/ISSUE_TEMPLATE/support.md b/.github/ISSUE_TEMPLATE/support.md
index fd223c8991..cab9c54a05 100644
--- a/.github/ISSUE_TEMPLATE/support.md
+++ b/.github/ISSUE_TEMPLATE/support.md
@@ -11,7 +11,7 @@ STOP -- PLEASE READ!
 
 GitHub is not the right place for support requests.
 
-If you're looking for help, check [Stack Overflow](https://stackoverflow.com/questions/tagged/kubernetes)
+If you're looking for help, check [Server Fault](https://serverfault.com/questions/tagged/kubernetes).
 
 You can also post your question on the [Kubernetes Slack](http://slack.k8s.io/) or the [Discuss Kubernetes](https://discuss.kubernetes.io/) forum.
 
diff --git a/.github/PULL_REQUEST_TEMPLATE.md b/.github/PULL_REQUEST_TEMPLATE.md
index 88d163d67c..13590450bf 100644
--- a/.github/PULL_REQUEST_TEMPLATE.md
+++ b/.github/PULL_REQUEST_TEMPLATE.md
@@ -1,4 +1,4 @@
-<!-- 🛈
+<!-- ℹ️
 
  Hello!
 
@@ -9,7 +9,7 @@
  PLEASE title the FIRST commit appropriately, so that if you squash all
  your commits into one, the combined commit message makes sense.
  For overall help on editing and submitting pull requests, visit:
-  https://kubernetes.io/docs/contribute/start/#improve-existing-content
+  https://kubernetes.io/docs/contribute/suggesting-improvements/
 
  Use the default base branch, “main”, if you're documenting existing
  features in the English localization.
diff --git a/.github/workflows/OWNERS b/.github/workflows/OWNERS
index 404875fc2e..c31fa3a256 100644
--- a/.github/workflows/OWNERS
+++ b/.github/workflows/OWNERS
@@ -3,6 +3,9 @@
 # When modifying this file, consider the security implications of
 # allowing listed reviewers / approvals to modify or remove any
 # configured GitHub Actions.
+#
+options:
+  no_parent_owners: true
 
 reviewers:
 - sig-docs-leads
diff --git a/.gitignore b/.gitignore
index 6a629010d0..a1bead7d25 100644
--- a/.gitignore
+++ b/.gitignore
@@ -29,6 +29,7 @@ nohup.out
 # Hugo output
 public/
 resources/
+.hugo_build.lock
 
 # Netlify Functions build output
 package-lock.json
diff --git a/.gitmodules b/.gitmodules
index 38fde49fc9..771ed3fc6b 100644
--- a/.gitmodules
+++ b/.gitmodules
@@ -1,6 +1,7 @@
 [submodule "themes/docsy"]
 	path = themes/docsy
 	url = https://github.com/google/docsy.git
+	branch = v0.2.0
 [submodule "api-ref-generator"]
 	path = api-ref-generator
 	url = https://github.com/kubernetes-sigs/reference-docs
diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md
index e14c07a89c..c5ae697cea 100644
--- a/CONTRIBUTING.md
+++ b/CONTRIBUTING.md
@@ -9,7 +9,7 @@ These are just guidelines, not rules. Use your best judgment, and feel free to p
 
 ### Code of Conduct
 
-Kubernetes follows the [Cloud Native Computing Foundation (CNCF) Code of Conduct](https://github.com/cncf/foundation/blob/master/code-of-conduct.md). By participating, you are expected to uphold this code. Please report unacceptable behavior to the
+Kubernetes follows the [Cloud Native Computing Foundation (CNCF) Code of Conduct](https://github.com/cncf/foundation/blob/main/code-of-conduct.md). By participating, you are expected to uphold this code. Please report unacceptable behavior to the
 [Kubernetes Code of Conduct Committee](https://github.com/kubernetes/community/tree/master/committee-code-of-conduct) <conduct@kubernetes.io>.
 
 ### Documentation and Site Decisions
@@ -34,6 +34,6 @@ Note that code issues should be filed against the main kubernetes repository, wh
 
 ### Submitting Documentation Pull Requests
 
-If you're fixing an issue in the existing documentation, you should submit a PR against the master branch.  Follow [these instructions to create a documentation pull request against the kubernetes.io repository](http://kubernetes.io/docs/home/contribute/create-pull-request/).
+If you're fixing an issue in the existing documentation, you should submit a PR against the main branch.  Follow [these instructions to create a documentation pull request against the kubernetes.io repository](http://kubernetes.io/docs/home/contribute/create-pull-request/).
 
 For more information, see [contributing to Kubernetes docs](https://kubernetes.io/docs/contribute/).
diff --git a/Dockerfile b/Dockerfile
index 93c73d218c..fecd5b0503 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -4,28 +4,43 @@
 # change is that the Hugo version is now an overridable argument rather than a fixed
 # environment variable.
 
-FROM golang:1.15-alpine
+FROM golang:1.18-alpine
 
 LABEL maintainer="Luc Perkins <lperkins@linuxfoundation.org>"
 
 RUN apk add --no-cache \
     curl \
-    git \
-    openssh-client \
-    rsync \
+    gcc \
+    g++ \
+    musl-dev \
     build-base \
-    libc6-compat \
-    npm && \
-    npm install -D autoprefixer postcss-cli
+    libc6-compat
 
 ARG HUGO_VERSION
 
-RUN mkdir -p /usr/local/src && \
-    cd /usr/local/src && \
-    curl -L https://github.com/gohugoio/hugo/releases/download/v${HUGO_VERSION}/hugo_extended_${HUGO_VERSION}_Linux-64bit.tar.gz | tar -xz && \
-    mv hugo /usr/local/bin/hugo && \
+RUN mkdir $HOME/src && \
+    cd $HOME/src && \
+    curl -L https://github.com/gohugoio/hugo/archive/refs/tags/v${HUGO_VERSION}.tar.gz | tar -xz && \
+    cd "hugo-${HUGO_VERSION}" && \
+    go install --tags extended
+
+FROM golang:1.18-alpine
+
+RUN apk add --no-cache \
+    runuser \
+    git \
+    openssh-client \
+    rsync \
+    npm && \
+    npm install -D autoprefixer postcss-cli
+
+RUN mkdir -p /var/hugo && \
     addgroup -Sg 1000 hugo && \
-    adduser -Sg hugo -u 1000 -h /src hugo
+    adduser -Sg hugo -u 1000 -h /var/hugo hugo && \
+    chown -R hugo: /var/hugo && \
+    runuser -u hugo -- git config --global --add safe.directory /src
+
+COPY --from=0 /go/bin/hugo /usr/local/bin/hugo
 
 WORKDIR /src
 
diff --git a/LICENSE b/LICENSE
index b6988e7edc..da6ab6cc8f 100644
--- a/LICENSE
+++ b/LICENSE
@@ -33,7 +33,7 @@ exhaustive, and do not form part of our licenses.
      material not subject to the license. This includes other CC-
      licensed material, or material used under an exception or
      limitation to copyright. More considerations for licensors:
-	wiki.creativecommons.org/Considerations_for_licensors
+    wiki.creativecommons.org/Considerations_for_licensors
 
      Considerations for the public: By using one of our public
      licenses, a licensor grants the public permission to use the
@@ -48,9 +48,9 @@ exhaustive, and do not form part of our licenses.
      rights in the material. A licensor may make special requests,
      such as asking that all changes be marked or described.
      Although not required by our licenses, you are encouraged to
-     respect those requests where reasonable. More_considerations
-     for the public: 
-	wiki.creativecommons.org/Considerations_for_licensees
+     respect those requests where reasonable. More considerations
+     for the public:
+    wiki.creativecommons.org/Considerations_for_licensees
 
 =======================================================================
 
@@ -378,7 +378,7 @@ Section 8 -- Interpretation.
 Creative Commons is not a party to its public
 licenses. Notwithstanding, Creative Commons may elect to apply one of
 its public licenses to material it publishes and in those instances
-will be considered the "Licensor." The text of the Creative Commons
+will be considered the “Licensor.” The text of the Creative Commons
 public licenses is dedicated to the public domain under the CC0 Public
 Domain Dedication. Except for the limited purpose of indicating that
 material is shared under a Creative Commons public license or as
@@ -393,3 +393,4 @@ the avoidance of doubt, this paragraph does not form part of the
 public licenses.
 
 Creative Commons may be contacted at creativecommons.org.
+
diff --git a/Makefile b/Makefile
index a103f4e58e..dedd387eb6 100644
--- a/Makefile
+++ b/Makefile
@@ -9,7 +9,7 @@ CONTAINER_ENGINE ?= docker
 IMAGE_REGISTRY ?= gcr.io/k8s-staging-sig-docs
 IMAGE_VERSION=$(shell scripts/hash-files.sh Dockerfile Makefile | cut -c 1-12)
 CONTAINER_IMAGE   = $(IMAGE_REGISTRY)/k8s-website-hugo:v$(HUGO_VERSION)-$(IMAGE_VERSION)
-CONTAINER_RUN     = $(CONTAINER_ENGINE) run --rm --interactive --tty --volume $(CURDIR):/src
+CONTAINER_RUN     = "$(CONTAINER_ENGINE)" run --rm --interactive --tty --volume "$(CURDIR):/src"
 
 CCRED=\033[0;31m
 CCEND=\033[0m
@@ -19,23 +19,23 @@ CCEND=\033[0m
 help: ## Show this help.
 	@awk 'BEGIN {FS = ":.*?## "} /^[a-zA-Z_-]+:.*?## / {sub("\\\\n",sprintf("\n%22c"," "), $$2);printf "\033[36m%-20s\033[0m %s\n", $$1, $$2}' $(MAKEFILE_LIST)
 
-module-check:
+module-check: ## Check if all of the required submodules are correctly initialized.
 	@git submodule status --recursive | awk '/^[+-]/ {err = 1; printf "\033[31mWARNING\033[0m Submodule not initialized: \033[34m%s\033[0m\n",$$2} END { if (err != 0) print "You need to run \033[32mmake module-init\033[0m to initialize missing modules first"; exit err }' 1>&2
 
-module-init:
+module-init: ## Initialize required submodules.
 	@echo "Initializing submodules..." 1>&2
 	@git submodule update --init --recursive --depth 1
 
 all: build ## Build site with production settings and put deliverables in ./public
 
-build: module-check ## Build site with production settings and put deliverables in ./public
-	hugo --minify
+build: module-check ## Build site with non-production settings and put deliverables in ./public
+	hugo --minify --environment development
 
 build-preview: module-check ## Build site with drafts and future posts enabled
-	hugo --buildDrafts --buildFuture
+	hugo --buildDrafts --buildFuture --environment preview
 
 deploy-preview: ## Deploy preview site via netlify
-	hugo --enableGitInfo --buildFuture -b $(DEPLOY_PRIME_URL)
+	hugo --enableGitInfo --buildFuture --environment preview -b $(DEPLOY_PRIME_URL)
 
 functions-build:
 	$(NETLIFY_FUNC) build functions-src
@@ -43,13 +43,15 @@ functions-build:
 check-headers-file:
 	scripts/check-headers-file.sh
 
-production-build: build check-headers-file ## Build the production site and ensure that noindex headers aren't added
+production-build: module-check ## Build the production site and ensure that noindex headers aren't added
+	hugo --minify --environment production
+	HUGO_ENV=production $(MAKE) check-headers-file
 
-non-production-build: ## Build the non-production site, which adds noindex headers to prevent indexing
-	hugo --enableGitInfo
+non-production-build: module-check ## Build the non-production site, which adds noindex headers to prevent indexing
+	hugo --enableGitInfo --environment nonprod
 
 serve: module-check ## Boot the development server.
-	hugo server --buildFuture
+	hugo server --buildFuture --environment development
 
 docker-image:
 	@echo -e "$(CCRED)**** The use of docker-image is deprecated. Use container-image instead. ****$(CCEND)"
@@ -69,11 +71,15 @@ container-image: ## Build a container image for the preview of the website
 		--tag $(CONTAINER_IMAGE) \
 		--build-arg HUGO_VERSION=$(HUGO_VERSION)
 
-container-build: module-check
-	$(CONTAINER_RUN) --read-only --mount type=tmpfs,destination=/tmp,tmpfs-mode=01777 $(CONTAINER_IMAGE) sh -c "npm ci && hugo --minify"
+container-push: container-image ## Push container image for the preview of the website
+	$(CONTAINER_ENGINE) push $(CONTAINER_IMAGE)
 
-container-serve: module-check ## Boot the development server using container. Run `make container-image` before this.
-	$(CONTAINER_RUN) --cap-drop=ALL --cap-add=AUDIT_WRITE --read-only --mount type=tmpfs,destination=/tmp,tmpfs-mode=01777 -p 1313:1313 $(CONTAINER_IMAGE) hugo server --buildFuture --bind 0.0.0.0 --destination /tmp/hugo --cleanDestinationDir
+container-build: module-check
+	$(CONTAINER_RUN) --read-only --mount type=tmpfs,destination=/tmp,tmpfs-mode=01777 $(CONTAINER_IMAGE) sh -c "npm ci && hugo --minify --environment development"
+
+# no build lock to allow for read-only mounts
+container-serve: module-check ## Boot the development server using container.
+	$(CONTAINER_RUN) --cap-drop=ALL --cap-add=AUDIT_WRITE --read-only --mount type=tmpfs,destination=/tmp,tmpfs-mode=01777 -p 1313:1313 $(CONTAINER_IMAGE) hugo server --buildFuture --environment development --bind 0.0.0.0 --destination /tmp/hugo --cleanDestinationDir --noBuildLock
 
 test-examples:
 	scripts/test_examples.sh install
@@ -88,8 +94,8 @@ docker-internal-linkcheck:
 	$(MAKE) container-internal-linkcheck
 
 container-internal-linkcheck: link-checker-image-pull
-	$(CONTAINER_RUN) $(CONTAINER_IMAGE) hugo --config config.toml,linkcheck-config.toml --buildFuture
-	$(CONTAINER_ENGINE) run --mount type=bind,source=$(CURDIR),target=/test --rm wjdp/htmltest htmltest
+	$(CONTAINER_RUN) $(CONTAINER_IMAGE) hugo --config config.toml,linkcheck-config.toml --buildFuture --environment test
+	$(CONTAINER_ENGINE) run --mount "type=bind,source=$(CURDIR),target=/test" --rm wjdp/htmltest htmltest
 
 clean-api-reference: ## Clean all directories in API reference directory, preserve _index.md
 	rm -rf content/en/docs/reference/kubernetes-api/*/
diff --git a/OWNERS_ALIASES b/OWNERS_ALIASES
index ce45f0e787..9790ccd8fe 100644
--- a/OWNERS_ALIASES
+++ b/OWNERS_ALIASES
@@ -2,10 +2,13 @@ aliases:
   sig-docs-blog-owners: # Approvers for blog content
     - onlydole
     - mrbobbytables
+    - sftim
+    - nate-double-u
   sig-docs-blog-reviewers: # Reviewers for blog content
     - mrbobbytables
     - onlydole
     - sftim
+    - nate-double-u
   sig-docs-de-owners: # Admins for German content
     - bene2k1
     - mkorbi
@@ -18,25 +21,34 @@ aliases:
     - annajung
     - bradtopol
     - celestehorgan
+    - divya-mohan0209
     - jimangel
     - jlbutler
     - kbhawkey
+    - kcmartin
+    - natalisucks
     - onlydole
     - pi-victor
     - reylejano
     - savitharaghunathan
     - sftim
     - tengqm
+    - zacharysarah
   sig-docs-en-reviews: # PR reviews for English content
     - bradtopol
     - celestehorgan
     - daminisatya
+    - divya-mohan0209
     - jimangel
     - kbhawkey
+    - mehabhalodiya
+    - natalisucks
     - onlydole
     - rajeshdeshpande02
     - sftim
+    - shannonxtreme
     - tengqm
+    - zacharysarah
   sig-docs-es-owners: # Admins for Spanish content
     - raelga
     - electrocucaracha
@@ -79,6 +91,7 @@ aliases:
     - anubha-v-ardhan
     - divya-mohan0209
     - mittalyashu
+    - verma-kunal
   sig-docs-id-owners: # Admins for Indonesian content
     - ariscahyadi
     - danninov
@@ -116,10 +129,12 @@ aliases:
     # MasayaAoyama
     - nasa9084
     # oke-py
+    - ptux
   sig-docs-ko-owners: # Admins for Korean content
     - ClaudiaJKang
     - gochist
     - ianychoi
+    - jihoon-seo
     - seokho-son
     - ysyukr
   sig-docs-ko-reviews: # PR reviews for Korean content
@@ -133,35 +148,39 @@ aliases:
     - yoonian
     - ysyukr
   sig-docs-leads: # Website chairs and tech leads
+    - divya-mohan0209
     - jimangel
     - kbhawkey
+    - natalisucks
     - onlydole
+    - reylejano
     - sftim
+    - tengqm
   sig-docs-zh-owners: # Admins for Chinese content
-    # chenopis
     - chenrui333
-    # dchen1107
-    # haibinxie
-    # hanjiayao
-    # lichuqiang
+    - howieyuen
+    - mengjiao-liu
     - SataQiu
+    - Sea-n
     - tanjunchen
     - tengqm
     - xichengliudui
-    # zhangxiaoyu-zidif
   sig-docs-zh-reviews: # PR reviews for Chinese content
     - chenrui333
     - chenxuc
     - howieyuen
-    - idealhack
+    # idealhack
     - mengjiao-liu
-    - pigletfly
+    # pigletfly
     - SataQiu
+    - Sea-n
     - tanjunchen
     - tengqm
+    - windsonsea
     - xichengliudui
-    # zhangxiaoyu-zidif
+    - ydFu
   sig-docs-pt-owners: # Admins for Portuguese content
+    - edsoncelio
     - femrtnz
     - jailton
     - jcjesus
@@ -170,12 +189,14 @@ aliases:
     - rikatz
     - yagonobre
   sig-docs-pt-reviews: # PR reviews for Portugese content
+    - edsoncelio
     - femrtnz
     - jailton
     - jcjesus
     - devlware
     - jhonmike
     - rikatz
+    - stormqueen1990
     - yagonobre
   sig-docs-vi-owners: # Admins for Vietnamese content
     - huynguyennovem
@@ -217,36 +238,33 @@ aliases:
   # authoritative source: git.k8s.io/community/OWNERS_ALIASES
   committee-steering: # provide PR approvals for announcements
     - cblecker
-    - derekwaynecarr
     - dims
+    - justaugustus
     - liggitt
     - mrbobbytables
-    - nikhita
     - parispittman
+    - tpepper
   # authoritative source: https://git.k8s.io/sig-release/OWNERS_ALIASES
   sig-release-leads:
     - cpanato # SIG Technical Lead
-    - hasheddan # SIG Technical Lead
     - jeremyrickard # SIG Technical Lead
     - justaugustus # SIG Chair
-    - LappleApple # SIG Program Manager
     - puerco # SIG Technical Lead
     - saschagrunert # SIG Chair
   release-engineering-approvers:
     - cpanato # Release Manager
-    - hasheddan # subproject owner / Release Manager
+    - palnabarun # Release Manager
     - puerco # Release Manager
     - saschagrunert # subproject owner / Release Manager
     - justaugustus # subproject owner / Release Manager
+    - Verolop # Release Manager
     - xmudrii # Release Manager
   release-engineering-reviewers:
     - ameukam # Release Manager Associate
     - jimangel # Release Manager Associate
     - markyjackson-taulia # Release Manager Associate
     - mkorbi # Release Manager Associate
-    - palnabarun # Release Manager Associate
     - onlydole # Release Manager Associate
     - sethmccombs # Release Manager Associate
     - thejoycekung # Release Manager Associate
-    - verolop # Release Manager Associate
     - wilsonehusin # Release Manager Associate
diff --git a/README-de.md b/README-de.md
index c901fdde65..75b56c635b 100644
--- a/README-de.md
+++ b/README-de.md
@@ -3,13 +3,13 @@
 [![Build Status](https://api.travis-ci.org/kubernetes/website.svg?branch=master)](https://travis-ci.org/kubernetes/website)
 [![GitHub release](https://img.shields.io/github/release/kubernetes/website.svg)](https://github.com/kubernetes/website/releases/latest)
 
-Herzlich willkommen! Dieses Repository enthält alle Assets, die zur Erstellung der [Kubernetes-Website und Dokumentation](https://kubernetes.io/) erforderlich sind. Wir freuen uns sehr, dass Sie dazu beitragen wollen!
+Herzlich Willkommen! Dieses Repository enthält alle Assets, die zur Erstellung der [Kubernetes-Website und Dokumentation](https://kubernetes.io/) erforderlich sind. Wir freuen uns sehr, dass Sie dazu beitragen wollen!
 
 ## Beiträge zur Dokumentation
 
-Sie können auf die Schaltfläche **Fork** im oberen rechten Bereich des Bildschirms klicken, um eine Kopie dieses Repositorys in Ihrem GitHub-Konto zu erstellen. Diese Kopie wird als *Fork* bezeichnet. Nehmen Sie die gewünschten Änderungen an Ihrem Fork vor. Wenn Sie bereit sind, diese Änderungen an uns zu senden, gehen Sie zu Ihrem Fork und erstellen Sie eine neue Pull-Anforderung, um uns darüber zu informieren.
+Sie können auf die Schaltfläche **Fork** im oberen rechten Bereich des Bildschirms klicken, um eine Kopie dieses Repositorys in Ihrem GitHub-Konto zu erstellen. Diese Kopie wird als *Fork* bezeichnet. Nehmen Sie die gewünschten Änderungen an Ihrem Fork vor. Wenn Sie bereit sind, diese Änderungen an uns zu senden, gehen Sie zu Ihrem Fork und erstellen Sie eine neue Pull-Request, um uns darüber zu informieren.
 
-Sobald Ihre Pull-Anfrage erstellt wurde, übernimmt ein Rezensent von Kubernetes die Verantwortung für klares, umsetzbares Feedback. Als Eigentümer des Pull-Request **liegt es in Ihrer Verantwortung Ihren Pull-Reqest entsprechend des Feedbacks, dass Sie vom Kubernetes-Reviewer erhalten haben abzuändern.** Beachten Sie auch, dass Sie am Ende mehr als einen Rezensenten von Kubernetes erhalten, der Ihnen Feedback gibt, oder dass Sie Rückmeldungen von einem Rezensenten von Kubernetes erhalten, der sich von demjenigen unterscheidet, der ursprünglich für das Feedback zugewiesen wurde. In einigen Fällen kann es vorkommen, dass einer Ihrer Prüfer bei Bedarf eine technische Überprüfung von einem [Kubernetes Tech-Reviewer](https://github.com/kubernetes/website/wiki/tech-reviewers) anfordert. Reviewer geben ihr Bestes, um zeitnah Feedback zu geben, die Antwortzeiten können jedoch je nach den Umständen variieren.
+Sobald Ihre Pull-Request erstellt wurde, übernimmt ein Rezensent von Kubernetes die Verantwortung für klares, umsetzbares Feedback. Als Eigentümer des Pull-Request **liegt es in Ihrer Verantwortung Ihre Pull-Request entsprechend des Feedbacks, welches Sie vom Kubernetes-Reviewer erhalten haben, abzuändern.** Beachten Sie auch, dass Sie am Ende mehr als einen Rezensenten von Kubernetes erhalten, der Ihnen Feedback gibt, oder dass Sie Rückmeldungen von einem Rezensenten von Kubernetes erhalten, der sich von demjenigen unterscheidet, der ursprünglich für das Feedback zugewiesen wurde. In einigen Fällen kann es vorkommen, dass einer Ihrer Prüfer bei Bedarf eine technische Überprüfung von einem [Kubernetes Tech-Reviewer](https://github.com/kubernetes/website/wiki/tech-reviewers) anfordert. Reviewer geben ihr Bestes, um zeitnah Feedback zu geben, die Antwortzeiten können jedoch je nach den Umständen variieren.
 
 Weitere Informationen zum Beitrag zur Kubernetes-Dokumentation finden Sie unter:
 
@@ -28,14 +28,14 @@ Die Betreuer der deutschen Lokalisierung erreichen Sie unter:
 * Max Körbächer ([@mkorbi](https://github.com/mkorbi))
 * [Slack Kanal](https://kubernetes.slack.com/messages/kubernetes-docs-de)
 
-## Site lokal mit Docker ausführen
+## Website lokal mit Docker ausführen
 
-Um die Kubernetes-Website lokal laufen zu lassen, empfiehlt es sich, ein spezielles [Docker](https://docker.com) Image auszuführen, das den statischen Site-Generator [Hugo](https://gohugo.io) enthält.
+Um die Kubernetes-Website lokal laufen zu lassen, empfiehlt es sich, ein spezielles [Docker](https://docker.com) Image auszuführen, das den statischen Website-Generator [Hugo](https://gohugo.io) enthält.
 
 > Unter Windows benötigen Sie einige weitere Tools, die Sie mit [Chocolatey](https://chocolatey.org) installieren können.
 `choco install make`
 
-> Wenn Sie die Website lieber lokal ohne Docker ausführen möchten, finden Sie weitere Informationen unter [Website lokal mit Hugo ausführen](#Die-Site-lokal-mit-Hugo-ausführen).
+> Wenn Sie die Website lieber lokal ohne Docker ausführen möchten, finden Sie weitere Informationen unter [Website lokal mit Hugo ausführen](#Die-Website-lokal-mit-Hugo-ausführen).
 
 Das benötigte [Docsy Hugo theme](https://github.com/google/docsy#readme) muss als git submodule installiert werden:
 
@@ -50,26 +50,26 @@ Wenn Sie Docker [installiert](https://www.docker.com/get-started) haben, erstell
 make container-image
 ```
 
-Nachdem das Image erstellt wurde, können Sie die Site lokal ausführen:
+Nachdem das Image erstellt wurde, können Sie die Website lokal öffnen:
 
 ```bash
 make container-serve
 ```
 
-Öffnen Sie Ihren Browser unter http://localhost:1313, um die Site anzuzeigen. Wenn Sie Änderungen an den Quelldateien vornehmen, aktualisiert Hugo die Site und erzwingt eine Browseraktualisierung.
+Öffnen Sie Ihren Browser unter http://localhost:1313, um die Website anzuzeigen. Wenn Sie Änderungen an den Quelldateien vornehmen, aktualisiert Hugo die Website und erzwingt eine Browseraktualisierung.
 
-## Die Site lokal mit Hugo ausführen
+## Die Website lokal mit Hugo ausführen
 
 Hugo-Installationsanweisungen finden Sie in der [offiziellen Hugo-Dokumentation](https://gohugo.io/getting-started/installing/). Stellen Sie sicher, dass Sie die Hugo-Version installieren, die in der Umgebungsvariablen `HUGO_VERSION` in der Datei [`netlify.toml`](netlify.toml#L9) angegeben ist.
 
-Das benötigte [Docsy Hugo theme](https://github.com/google/docsy#readme) muss als git submodule installiert werden:
+Das benötigte [Docsy Hugo-Theme](https://github.com/google/docsy#readme) muss als git submodule installiert werden:
 
 ```
 #Füge das Docsy submodule hinzu
 git submodule update --init --recursive --depth 1
 ```
 
-So führen Sie die Site lokal aus, wenn Sie Hugo installiert haben:
+So führen Sie die Website lokal aus, wenn Sie Hugo installiert haben:
 
 ```bash
 # Installieren der JavaScript Abhängigkeiten
@@ -77,7 +77,7 @@ npm ci
 make serve
 ```
 
-Dadurch wird der lokale Hugo-Server an Port 1313 gestartet. Öffnen Sie Ihren Browser unter http://localhost:1313, um die Site anzuzeigen. Wenn Sie Änderungen an den Quelldateien vornehmen, aktualisiert Hugo die Site und erzwingt eine Browseraktualisierung.
+Dadurch wird der lokale Hugo-Server an Port 1313 gestartet. Öffnen Sie Ihren Browser unter http://localhost:1313, um die Website anzuzeigen. Wenn Sie Änderungen an den Quelldateien vornehmen, aktualisiert Hugo die Website und erzwingt eine Browseraktualisierung.
 
 ## Community, Diskussion, Beteiligung und Unterstützung
 
@@ -94,4 +94,4 @@ Die Teilnahme an der Kubernetes-Community unterliegt dem [Kubernetes-Verhaltensk
 
 ## Vielen Dank!
 
-Kubernetes lebt vom Community Engagement und wir freuen uns sehr über Ihre Beiträge zu unserer Website und unserer Dokumentation!
+Kubernetes lebt vom Community-Engagement und wir freuen uns sehr über Ihre Beiträge zu unserer Website und unserer Dokumentation!
diff --git a/README-hi.md b/README-hi.md
index 01d119a22b..da5141af1d 100644
--- a/README-hi.md
+++ b/README-hi.md
@@ -7,7 +7,7 @@
 
 ## डॉक्स में योगदान देना
 
-आप अपने GitHub खाते में इस रिपॉजिटरी की एक copy बनाने के लिए स्क्रीन के ऊपरी-दाएँ क्षेत्र में **Fork** बटन पर क्लिक करें। इस copy को *Fork* कहा जाता है। अपने fork में कोई भी परिवर्तन करना चाहते हैं, और जब आप उन परिवर्तनों को हमारे पास भेजने के लिए तैयार हों, तो अपने fork पर जाएं और हमें इसके बारे में बताने के लिए एक नया pull request बनाएं।
+आप अपने GitHub खाते में इस रिपॉजिटरी की एक copy बनाने के लिए स्क्रीन के ऊपरी-दाएँ क्षेत्र में **Fork** बटन पर क्लिक करें। इस copy को *Fork* कहा जाता है। अपने fork में परिवर्तन करने के बाद जब आप उनको हमारे पास भेजने के लिए तैयार हों, तो अपने fork पर जाएं और हमें इसके बारे में बताने के लिए एक नया pull request बनाएं।
 
 एक बार जब आपका pull request बन जाता है, तो एक कुबरनेट्स समीक्षक स्पष्ट, कार्रवाई योग्य प्रतिक्रिया प्रदान करने की जिम्मेदारी लेगा। pull request के मालिक के रूप में, **यह आपकी जिम्मेदारी है कि आप कुबरनेट्स समीक्षक द्वारा प्रदान की गई प्रतिक्रिया को संबोधित करने के लिए अपने pull request को संशोधित करें।**
 
@@ -23,9 +23,12 @@
 
 ## `README.md`'s स्थानीयकरण कुबरनेट्स प्रलेखन
 
-आप पर हिंदी स्थानीयकरण के maintainers तक पहुँच सकते हैं:
+आप हिंदी स्थानीयकरण के मैन्टेनरों तक पहुँच सकते हैं:
 
+* Anubhav Vardhan ([Slack](https://kubernetes.slack.com/archives/D0261C0A3R8), [Twitter](https://twitter.com/anubha_v_ardhan), [GitHub](https://github.com/anubha-v-ardhan))
+* Divya Mohan ([Slack](https://kubernetes.slack.com/archives/D027R7BE804), [Twitter](https://twitter.com/Divya_Mohan02), [GitHub](https://github.com/divya-mohan0209))
 * Yashu Mittal ([Twitter](https://twitter.com/mittalyashu77), [GitHub](https://github.com/mittalyashu))
+
 * [Slack channel](https://kubernetes.slack.com/messages/kubernetes-docs-hi)
 
 ## स्थानीय रूप से डॉकर का उपयोग करके साइट चलाना
diff --git a/README-ja.md b/README-ja.md
index 91e624c610..c4acd30d84 100644
--- a/README-ja.md
+++ b/README-ja.md
@@ -4,6 +4,9 @@
 
 このリポジトリには、[KubernetesのWebサイトとドキュメント](https://kubernetes.io/)をビルドするために必要な全アセットが格納されています。貢献に興味を持っていただきありがとうございます！
 
+- [ドキュメントに貢献する](#contributing-to-the-docs)
+- [翻訳された`README.md`一覧](#localization-readmemds)
+
 # リポジトリの使い方
 
 Hugo(Extended version)を使用してWebサイトをローカルで実行することも、コンテナランタイムで実行することもできます。コンテナランタイムを使用することを強くお勧めします。これにより、本番Webサイトとのデプロイメントの一貫性が得られます。
@@ -56,6 +59,43 @@ make serve
 
 これで、Hugoのサーバーが1313番ポートを使って開始します。お使いのブラウザにて http://localhost:1313 にアクセスしてください。リポジトリ内のソースファイルに変更を加えると、HugoがWebサイトの内容を更新してブラウザに反映します。
 
+## API reference pagesをビルドする
+
+`content/en/docs/reference/kubernetes-api`に配置されているAPIリファレンスページは<https://github.com/kubernetes-sigs/reference-docs/tree/master/gen-resourcesdocs>を使ってSwagger仕様書からビルドされています。
+
+新しいKubernetesリリースのためにリファレンスページをアップデートするには、次の手順を実行します:
+
+1. `api-ref-generator`サブモジュールをプルする:
+
+   ```bash
+   git submodule update --init --recursive --depth 1
+   ```
+
+2. Swagger仕様書を更新する:
+
+   ```bash
+   curl 'https://raw.githubusercontent.com/kubernetes/kubernetes/master/api/openapi-spec/swagger.json' > api-ref-assets/api/swagger.json
+   ```
+
+3. 新しいリリースの変更を反映するため、`api-ref-assets/config/`で`toc.yaml`と`fields.yaml`を適用する。
+
+4. 次に、ページをビルドする:
+
+   ```bash
+   make api-reference
+   ```
+
+   コンテナイメージからサイトを作成・サーブする事でローカルで結果をテストすることができます:
+
+   ```bash
+   make container-image
+   make container-serve
+   ```
+
+   APIリファレンスを見るために、ブラウザで<http://localhost:1313/docs/reference/kubernetes-api/>を開いてください。
+
+5. 新しいコントラクトのすべての変更が設定ファイル`toc.yaml`と`fields.yaml`に反映されたら、新しく生成されたAPIリファレンスページとともにPull Requestを作成します。
+
 ## トラブルシューティング
 
 ### error: failed to transform resource: TOCSS: failed to transform "scss/main.scss" (text/x-scss): this feature is not available in your current Hugo version
@@ -107,7 +147,7 @@ sudo launchctl load -w /Library/LaunchDaemons/limit.maxfiles.plist
 - [Slack](https://kubernetes.slack.com/messages/kubernetes-docs-ja)
 - [メーリングリスト](https://groups.google.com/forum/#!forum/kubernetes-sig-docs)
 
-## ドキュメントに貢献する
+## ドキュメントに貢献する {#contributing-to-the-docs}
 
 GitHubの画面右上にある**Fork**ボタンをクリックすると、お使いのGitHubアカウントに紐付いた本リポジトリのコピーが作成され、このコピーのことを*フォーク*と呼びます。フォークリポジトリの中ではお好きなように変更を加えていただいて構いません。加えた変更をこのリポジトリに追加したい任意のタイミングにて、フォークリポジトリからPull Reqeustを作成してください。
 
@@ -124,7 +164,15 @@ Kubernetesのドキュメントへの貢献に関する詳細については以
 * [ドキュメントのスタイルガイド](https://kubernetes.io/docs/contribute/style/style-guide/)
 * [Kubernetesドキュメントの翻訳方法](https://kubernetes.io/docs/contribute/localization/)
 
-## 翻訳された`README.md`一覧
+### New Contributor Ambassadors
+
+コントリビュートする時に何か助けが必要なら、[New Contributor Ambassadors](https://kubernetes.io/docs/contribute/advanced/#serve-as-a-new-contributor-ambassador)に聞いてみると良いでしょう。彼らはSIG Docsのapproverで、最初の数回のPull Requestを通して新しいコントリビューターを指導し助けることを責務としています。New Contributors Ambassadorsにコンタクトするには、[Kubernetes Slack](https://slack.k8s.io)が最適な場所です。現在のSIG DocsのNew Contributor Ambassadorは次の通りです:
+
+| 名前                       | Slack                      | GitHub                     |                   
+| -------------------------- | -------------------------- | -------------------------- |
+| Arsh Sharma                | @arsh                      | @RinkiyaKeDad              |
+
+## 翻訳された`README.md`一覧 {#localization-readmemds}
 
 | Language  | Language |
 |---|---|
diff --git a/README-ko.md b/README-ko.md
index c3e1068b2e..fd17e2b655 100644
--- a/README-ko.md
+++ b/README-ko.md
@@ -4,6 +4,9 @@
 
 이 저장소에는 [쿠버네티스 웹사이트 및 문서](https://kubernetes.io/)를 빌드하는 데 필요한 자산이 포함되어 있습니다. 기여해주셔서 감사합니다!
 
+- [문서에 기여하기](#contributing-to-the-docs)
+- [`README.md`에 대한 쿠버네티스 문서 현지화](#localization-readmemds)
+
 # 저장소 사용하기
 
 Hugo(확장 버전)를 사용하여 웹사이트를 로컬에서 실행하거나, 컨테이너 런타임에서 실행할 수 있습니다. 라이브 웹사이트와의 배포 일관성을 제공하므로, 컨테이너 런타임을 사용하는 것을 적극 권장합니다.
@@ -40,6 +43,8 @@ make container-image
 make container-serve
 ```
 
+에러가 발생한다면, Hugo 컨테이너를 위한 컴퓨팅 리소스가 충분하지 않기 때문일 수 있습니다. 이를 해결하려면, 머신에서 도커에 허용할 CPU 및 메모리 사용량을 늘립니다([MacOSX](https://docs.docker.com/docker-for-mac/#resources) / [Windows](https://docs.docker.com/docker-for-windows/#resources)).
+
 웹사이트를 보려면 브라우저를 http://localhost:1313 으로 엽니다. 소스 파일을 변경하면 Hugo가 웹사이트를 업데이트하고 브라우저를 강제로 새로 고칩니다.
 
 ## Hugo를 사용하여 로컬에서 웹사이트 실행하기
@@ -56,7 +61,45 @@ make serve
 
 그러면 포트 1313에서 로컬 Hugo 서버가 시작됩니다. 웹사이트를 보려면 http://localhost:1313 으로 브라우저를 엽니다. 소스 파일을 변경하면, Hugo가 웹사이트를 업데이트하고 브라우저를 강제로 새로 고칩니다.
 
+## API 레퍼런스 페이지 빌드하기
+
+`content/en/docs/reference/kubernetes-api`에 있는 API 레퍼런스 페이지는 <https://github.com/kubernetes-sigs/reference-docs/tree/master/gen-resourcesdocs>를 사용하여 Swagger 명세로부터 빌드되었습니다.
+
+새로운 쿠버네티스 릴리스를 위해 레퍼런스 페이지를 업데이트하려면 다음 단계를 수행합니다.
+
+1. `api-ref-generator` 서브모듈을 받아옵니다.
+
+   ```bash
+   git submodule update --init --recursive --depth 1
+   ```
+
+2. Swagger 명세를 업데이트합니다.
+
+   ```bash
+   curl 'https://raw.githubusercontent.com/kubernetes/kubernetes/master/api/openapi-spec/swagger.json' > api-ref-assets/api/swagger.json
+   ```
+
+3. `api-ref-assets/config/`에서, 새 릴리스의 변경 사항이 반영되도록 `toc.yaml` 및 `fields.yaml` 파일을 업데이트합니다.
+
+4. 다음으로, 페이지를 빌드합니다.
+
+   ```bash
+   make api-reference
+   ```
+
+   로컬에서 결과를 테스트하기 위해 컨테이너 이미지를 이용하여 사이트를 빌드 및 실행합니다.
+
+   ```bash
+   make container-image
+   make container-serve
+   ```
+
+   웹 브라우저에서, <http://localhost:1313/docs/reference/kubernetes-api/>로 이동하여 API 레퍼런스를 확인합니다.
+
+5. 모든 API 변경사항이 `toc.yaml` 및 `fields.yaml` 구성 파일에 반영되었다면, 새로 생성된 API 레퍼런스 페이지에 대한 PR을 엽니다.
+
 ## 문제 해결
+
 ### error: failed to transform resource: TOCSS: failed to transform "scss/main.scss" (text/x-scss): this feature is not available in your current Hugo version
 
 Hugo는 기술적인 이유로 2개의 바이너리 세트로 제공됩니다. 현재 웹사이트는 **Hugo 확장** 버전 기반에서만 실행됩니다. [릴리스 페이지](https://github.com/gohugoio/hugo/releases)에서 이름에 `extended` 가 포함된 아카이브를 찾습니다. 확인하려면, `hugo version` 을 실행하고 `extended` 라는 단어를 찾습니다.
@@ -97,17 +140,17 @@ sudo launchctl load -w /Library/LaunchDaemons/limit.maxfiles.plist
 
 이 내용은 Catalina와 Mojave macOS에서 작동합니다.
 
-
 # SIG Docs에 참여하기
 
 [커뮤니티 페이지](https://github.com/kubernetes/community/tree/master/sig-docs#meetings)에서 SIG Docs 쿠버네티스 커뮤니티 및 회의에 대한 자세한 내용을 확인합니다.
 
 이 프로젝트의 메인테이너에게 연락을 할 수도 있습니다.
 
-- [슬랙](https://kubernetes.slack.com/messages/sig-docs) [슬랙에 초대 받기](https://slack.k8s.io/)
+- [슬랙](https://kubernetes.slack.com/messages/sig-docs)
+  - [슬랙에 초대 받기](https://slack.k8s.io/)
 - [메일링 리스트](https://groups.google.com/forum/#!forum/kubernetes-sig-docs)
 
-# 문서에 기여하기
+# 문서에 기여하기 {#contributing-to-the-docs}
 
 이 저장소에 대한 복제본을 여러분의 GitHub 계정에 생성하기 위해 화면 오른쪽 위 영역에 있는 **Fork** 버튼을 클릭하면 됩니다. 이 복제본은 *fork* 라고 부릅니다. 여러분의 fork에서 원하는 임의의 변경 사항을 만들고, 해당 변경 사항을 보낼 준비가 되었다면, 여러분의 fork로 이동하여 새로운 풀 리퀘스트를 만들어 우리에게 알려주시기 바랍니다.
 
@@ -124,7 +167,15 @@ sudo launchctl load -w /Library/LaunchDaemons/limit.maxfiles.plist
 * [문서화 스타일 가이드](http://kubernetes.io/docs/contribute/style/style-guide/)
 * [쿠버네티스 문서 현지화](https://kubernetes.io/docs/contribute/localization/)
 
-# `README.md`에 대한 쿠버네티스 문서 현지화(localization)
+### 신규 기여자 대사(ambassadors)
+
+기여 과정에서 도움이 필요하다면, [신규 기여자 대사](https://kubernetes.io/docs/contribute/advanced/#serve-as-a-new-contributor-ambassador)에게 연락하는 것이 좋습니다. 이들은 신규 기여자를 멘토링하고 첫 PR 과정에서 도움을 주는 역할도 담당하는 SIG Docs 승인자입니다. 신규 기여자 대사에게 문의할 가장 좋은 곳은 [쿠버네티스 슬랙](https://slack.k8s.io/)입니다. 현재 SIG Docs 신규 기여자 대사는 다음과 같습니다.
+
+| Name                       | Slack                      | GitHub                     |                   
+| -------------------------- | -------------------------- | -------------------------- |
+| Arsh Sharma                | @arsh                      | @RinkiyaKeDad              |
+
+# `README.md`에 대한 쿠버네티스 문서 현지화(localization) {#localization-readmemds}
 
 ## 한국어
 
@@ -135,6 +186,7 @@ sudo launchctl load -w /Library/LaunchDaemons/limit.maxfiles.plist
 * 손석호 ([GitHub - @seokho-son](https://github.com/seokho-son))
 * [슬랙 채널](https://kubernetes.slack.com/messages/kubernetes-docs-ko)
 
+
 # 행동 강령
 
 쿠버네티스 커뮤니티 참여는 [CNCF 행동 강령](https://github.com/cncf/foundation/blob/master/code-of-conduct-languages/ko.md)을 따릅니다.
diff --git a/README-pl.md b/README-pl.md
index 06bde04303..7544de4583 100644
--- a/README-pl.md
+++ b/README-pl.md
@@ -5,9 +5,9 @@
 W tym repozytorium znajdziesz wszystko, czego potrzebujesz do zbudowania [strony internetowej Kubernetesa wraz z dokumentacją](https://kubernetes.io/). Bardzo nam miło, że chcesz wziąć udział w jej współtworzeniu!
 
 + [Twój wkład w dokumentację](#twój-wkład-w-dokumentację)
-+ [Informacje o wersjach językowych](#informacje-o-wersjach-językowych)
++ [Informacje o wersjach językowych](#różne-wersje-językowe-readmemd)
 
-# Jak używać tego repozytorium
+## Jak używać tego repozytorium
 
 Możesz uruchomić serwis lokalnie poprzez Hugo (Extended version) lub ze środowiska kontenerowego. Zdecydowanie zalecamy korzystanie z kontenerów, bo dzięki temu lokalna wersja będzie spójna z tym, co jest na oficjalnej stronie.
 
@@ -22,14 +22,14 @@ Aby móc skorzystać z tego repozytorium, musisz lokalnie zainstalować:
 
 Przed rozpoczęciem zainstaluj niezbędne zależności. Sklonuj repozytorium i przejdź do odpowiedniego katalogu:
 
-```
+```bash
 git clone https://github.com/kubernetes/website.git
 cd website
 ```
 
 Strona Kubernetesa używa [Docsy Hugo theme](https://github.com/google/docsy#readme). Nawet jeśli planujesz uruchomić serwis w środowisku kontenerowym, zalecamy pobranie podmodułów i innych zależności za pomocą polecenia:
 
-```
+```bash
 # pull in the Docsy submodule
 git submodule update --init --recursive --depth 1
 ```
@@ -38,14 +38,14 @@ git submodule update --init --recursive --depth 1
 
 Aby zbudować i uruchomić serwis wewnątrz środowiska kontenerowego, wykonaj następujące polecenia:
 
-```
+```bash
 make container-image
 make container-serve
 ```
 
 Jeśli widzisz błędy, prawdopodobnie kontener z Hugo nie dysponuje wystarczającymi zasobami. Aby rozwiązać ten problem, zwiększ ilość dostępnych zasobów CPU i pamięci dla Dockera na Twojej maszynie ([MacOSX](https://docs.docker.com/docker-for-mac/#resources) i [Windows](https://docs.docker.com/docker-for-windows/#resources)).
 
-Aby obejrzeć zawartość serwisu, otwórz w przeglądarce adres http://localhost:1313. Po każdej zmianie plików źródłowych, Hugo automatycznie aktualizuje stronę i odświeża jej widok w przeglądarce.
+Aby obejrzeć zawartość serwisu, otwórz w przeglądarce adres <http://localhost:1313>. Po każdej zmianie plików źródłowych, Hugo automatycznie aktualizuje stronę i odświeża jej widok w przeglądarce.
 
 ## Jak uruchomić lokalną kopię strony przy pomocy Hugo?
 
@@ -59,13 +59,14 @@ npm ci
 make serve
 ```
 
-Zostanie uruchomiony lokalny serwer Hugo na porcie 1313. Otwórz w przeglądarce adres http://localhost:1313, aby obejrzeć zawartość serwisu. Po każdej zmianie plików źródłowych, Hugo automatycznie aktualizuje stronę i odświeża jej widok w przeglądarce.
+Zostanie uruchomiony lokalny serwer Hugo na porcie 1313. Otwórz w przeglądarce adres <http://localhost:1313>, aby obejrzeć zawartość serwisu. Po każdej zmianie plików źródłowych, Hugo automatycznie aktualizuje stronę i odświeża jej widok w przeglądarce.
 
 ## Budowanie dokumentacji źródłowej API
 
 Budowanie dokumentacji źródłowej API zostało opisane w [angielskiej wersji pliku README.md](README.md#building-the-api-reference-pages).
 
 ## Rozwiązywanie problemów
+
 ### error: failed to transform resource: TOCSS: failed to transform "scss/main.scss" (text/x-scss): this feature is not available in your current Hugo version
 
 Z przyczyn technicznych, Hugo jest rozprowadzany w dwóch wersjach. Aktualny serwis używa tylko wersji **Hugo Extended**. Na stronie z [wydaniami](https://github.com/gohugoio/hugo/releases) poszukaj archiwum z `extended` w nazwie. Dla potwierdzenia, uruchom `hugo version` i poszukaj słowa `extended`.
@@ -74,7 +75,7 @@ Z przyczyn technicznych, Hugo jest rozprowadzany w dwóch wersjach. Aktualny ser
 
 Jeśli po uruchomieniu `make serve` na macOS widzisz następujący błąd:
 
-```
+```bash
 ERROR 2020/08/01 19:09:18 Error: listen tcp 127.0.0.1:1313: socket: too many open files
 make: *** [serve] Error 1
 ```
@@ -104,36 +105,36 @@ sudo chown root:wheel /Library/LaunchDaemons/limit.maxproc.plist
 sudo launchctl load -w /Library/LaunchDaemons/limit.maxfiles.plist
 ```
 
-Przedstawiony sposób powinien działać dla MacOS w wersji Catalina i Mojave.
+Przedstawiony sposób powinien działać dla MacOS w wersjach Catalina i Mojave.
 
-
-# Zaangażowanie w prace SIG Docs
+## Zaangażowanie w prace SIG Docs
 
 O społeczności SIG Docs i terminach spotkań dowiesz z [jej strony](https://github.com/kubernetes/community/tree/master/sig-docs#meetings).
 
 Możesz kontaktować się z gospodarzami projektu za pomocą:
 
-- [Komunikatora Slack](https://kubernetes.slack.com/messages/sig-docs) [Tutaj możesz dostać zaproszenie do tej grupy Slack-a](https://slack.k8s.io/)
+- [Komunikatora Slack](https://kubernetes.slack.com/messages/sig-docs)
+  - [Tutaj możesz dostać zaproszenie do tej grupy Slacka](https://slack.k8s.io/)
 - [List dyskusyjnych](https://groups.google.com/forum/#!forum/kubernetes-sig-docs)
 
-# Twój wkład w dokumentację
+## Twój wkład w dokumentację
 
 Możesz kliknąć w przycisk **Fork** w prawym górnym rogu ekranu, aby stworzyć kopię tego repozytorium na swoim koncie GitHub. Taki rodzaj kopii (odgałęzienia) nazywa się *fork*. Zmieniaj w nim, co chcesz, a kiedy będziesz już gotowy/a przesłać te zmiany do nas, przejdź do swojej kopii i stwórz nowy *pull request*, abyśmy zostali o tym poinformowani.
 
-Po stworzeniu *pull request*, jeden z recenzentów projektu Kubernetes podejmie się przekazania jasnych wskazówek pozwalających podjąć następne działania. Na Tobie, jako właścicielu *pull requesta*, **spoczywa odpowiedzialność za wprowadzenie poprawek zgodnie z uwagami recenzenta.** 
+Po stworzeniu *pull request*, jeden z recenzentów projektu Kubernetes podejmie się przekazania jasnych wskazówek pozwalających podjąć następne działania. Na Tobie, jako właścicielu *pull requesta*, **spoczywa odpowiedzialność za wprowadzenie poprawek zgodnie z uwagami recenzenta.**
 
 Może też się zdarzyć, że swoje uwagi zgłosi więcej niż jeden recenzent, lub że recenzję będzie robił ktoś inny, niż ten, kto został przydzielony na początku.
 
-W niektórych przypadkach, jeśli zajdzie taka potrzeba, recenzent może poprosić dodatkowo o recenzję jednego z [recenzentów technicznych](https://github.com/kubernetes/website/wiki/Tech-reviewers). Recenzenci zrobią wszystko, aby odpowiedzieć sprawnie, ale konkretny czas odpowiedzi zależy od wielu czynników.
+W niektórych przypadkach, jeśli zajdzie taka potrzeba, recenzent może poprosić dodatkowo o recenzję jednego z recenzentów technicznych. Recenzenci zrobią wszystko, aby odpowiedzieć sprawnie, ale konkretny czas odpowiedzi zależy od wielu czynników.
 
 Więcej informacji na temat współpracy przy tworzeniu dokumentacji znajdziesz na stronach:
 
-* [Udział w rozwijaniu dokumentacji](https://kubernetes.io/docs/contribute/)
-* [Rodzaje stron](https://kubernetes.io/docs/contribute/style/page-content-types/)
-* [Styl pisania dokumentacji](http://kubernetes.io/docs/contribute/style/style-guide/)
-* [Lokalizacja dokumentacji Kubernetes](https://kubernetes.io/docs/contribute/localization/)
+- [Udział w rozwijaniu dokumentacji](https://kubernetes.io/docs/contribute/)
+- [Rodzaje stron](https://kubernetes.io/docs/contribute/style/page-content-types/)
+- [Styl pisania dokumentacji](http://kubernetes.io/docs/contribute/style/style-guide/)
+- [Lokalizacja dokumentacji Kubernetesa](https://kubernetes.io/docs/contribute/localization/)
 
-# Różne wersje językowe `README.md`
+## Różne wersje językowe `README.md`
 
 | Język  | Język |
 |---|---|
@@ -145,10 +146,10 @@ Więcej informacji na temat współpracy przy tworzeniu dokumentacji znajdziesz
 | [wietnamski](README-vi.md)   | [rosyjski](README-ru.md)     |
 | [włoski](README-it.md)       | [ukraiński](README-uk.md)    |
 
-# Zasady postępowania
+## Zasady postępowania
 
 Udział w działaniach społeczności Kubernetesa jest regulowany przez [Kodeks postępowania CNCF](https://github.com/cncf/foundation/blob/master/code-of-conduct-languages/pl.md).
 
-# Dziękujemy!
+## Dziękujemy!
 
 Kubernetes rozkwita dzięki zaangażowaniu społeczności — doceniamy twój wkład w tworzenie naszego serwisu i dokumentacji!
diff --git a/README-zh.md b/README-zh.md
index 6c594b3934..110cbf358b 100644
--- a/README-zh.md
+++ b/README-zh.md
@@ -9,11 +9,18 @@
 <!--
 This repository contains the assets required to build the [Kubernetes website and documentation](https://kubernetes.io/). We're glad that you want to contribute!
 -->
-本仓库包含了所有用于构建 [Kubernetes 网站和文档](https://kubernetes.io/) 的软件资产。
-我们非常高兴您想要参与贡献！
+本仓库包含了所有用于构建 [Kubernetes 网站和文档](https://kubernetes.io/)的软件资产。
+我们非常高兴你想要参与贡献！
 
 <!--
-# Using this repository
+- [Contributing to the docs](#contributing-to-the-docs)
+- [Localization ReadMes](#localization-readmemds)
+-->
+- [为文档做贡献](#为文档做贡献)
+- [README.md 本地化](#readmemd-本地化)
+
+<!--
+## Using this repository
 
 You can run the website locally using Hugo (Extended version), or you can run it in a container runtime. We strongly recommend using the container runtime, as it gives deployment consistency with the live website.
 -->
@@ -30,7 +37,6 @@ To use this repository, you need the following installed locally:
 - [Go](https://golang.org/)
 - [Hugo (Extended version)](https://gohugo.io/)
 - A container runtime, like [Docker](https://www.docker.com/).
-
 -->
 ## 前提条件
 
@@ -38,15 +44,15 @@ To use this repository, you need the following installed locally:
 
 - [npm](https://www.npmjs.com/)
 - [Go](https://golang.org/)
-- [Hugo (Extended version)](https://gohugo.io/)
-- 容器运行时，比如 [Docker](https://www.docker.com/).
+- [Hugo（Extended 版本）](https://gohugo.io/)
+- 容器运行时，比如 [Docker](https://www.docker.com/)。
 
 <!--
 Before you start, install the dependencies. Clone the repository and navigate to the directory:
 -->
 开始前，先安装这些依赖。克隆本仓库并进入对应目录：
 
-```
+```bash
 git clone https://github.com/kubernetes/website.git
 cd website
 ```
@@ -55,32 +61,40 @@ cd website
 The Kubernetes website uses the [Docsy Hugo theme](https://github.com/google/docsy#readme). Even if you plan to run the website in a container, we strongly recommend pulling in the submodule and other development dependencies by running the following:
 -->
 
-Kubernetes 网站使用的是 [Docsy Hugo 主题](https://github.com/google/docsy#readme)。 即使你打算在容器中运行网站，我们也强烈建议你通过运行以下命令来引入子模块和其他开发依赖项：
+Kubernetes 网站使用的是 [Docsy Hugo 主题](https://github.com/google/docsy#readme)。
+即使你打算在容器中运行网站，我们也强烈建议你通过运行以下命令来引入子模块和其他开发依赖项：
 
-```
-# pull in the Docsy submodule
+```bash
+# 引入 Docsy 子模块
 git submodule update --init --recursive --depth 1
 ```
 
 <!--
 ## Running the website using a container
 
-To build the site in a container, run the following to build the container image and run it:
-
+To build the site in a container, run the following:
 -->
 ## 在容器中运行网站
 
-要在容器中构建网站，请通过以下命令来构建容器镜像并运行：
+要在容器中构建网站，请运行以下命令：
 
-```
-make container-image
+```bash
+# 你可以将 $CONTAINER_ENGINE 设置为任何 Docker 类容器工具的名称
 make container-serve
 ```
 
 <!--
-Open up your browser to http://localhost:1313 to view the website. As you make changes to the source files, Hugo updates the website and forces a browser refresh.
+If you see errors, it probably means that the hugo container did not have enough computing resources available. To solve it, increase the amount of allowed CPU and memory usage for Docker on your machine ([MacOSX](https://docs.docker.com/docker-for-mac/#resources) and [Windows](https://docs.docker.com/docker-for-windows/#resources)).
 -->
-启动浏览器，打开 http://localhost:1313 来查看网站。
+如果你看到错误，这可能意味着 Hugo 容器没有足够的可用计算资源。
+要解决这个问题，请增加机器（[MacOSX](https://docs.docker.com/docker-for-mac/#resources)
+和 [Windows](https://docs.docker.com/docker-for-windows/#resources)）上
+Docker 允许的 CPU 和内存使用量。
+
+<!--
+Open up your browser to <http://localhost:1313> to view the website. As you make changes to the source files, Hugo updates the website and forces a browser refresh.
+-->
+启动浏览器，打开 <http://localhost:1313> 来查看网站。
 当你对源文件作出修改时，Hugo 会更新网站并强制浏览器执行刷新操作。
 
 <!--
@@ -93,63 +107,135 @@ To build and test the site locally, run:
 ## 在本地使用 Hugo 来运行网站
 
 请确保安装的是 [`netlify.toml`](netlify.toml#L10) 文件中环境变量 `HUGO_VERSION` 所指定的
-Hugo 扩展版本。
+Hugo Extended 版本。
 
 若要在本地构造和测试网站，请运行：
 
 ```bash
-# install dependencies
+# 安装依赖
 npm ci
 make serve
 ```
 
 <!--
-This will start the local Hugo server on port 1313. Open up your browser to http://localhost:1313 to view the website. As you make changes to the source files, Hugo updates the website and forces a browser refresh.
+This will start the local Hugo server on port 1313. Open up your browser to <http://localhost:1313> to view the website. As you make changes to the source files, Hugo updates the website and forces a browser refresh.
 -->
 上述命令会在端口 1313 上启动本地 Hugo 服务器。
-启动浏览器，打开 http://localhost:1313 来查看网站。
+启动浏览器，打开 <http://localhost:1313> 来查看网站。
 当你对源文件作出修改时，Hugo 会更新网站并强制浏览器执行刷新操作。
 
+<!--
+## Building the API reference pages
+-->
+## 构建 API 参考页面
+
+<!--
+The API reference pages located in `content/en/docs/reference/kubernetes-api` are built from the Swagger specification, using <https://github.com/kubernetes-sigs/reference-docs/tree/master/gen-resourcesdocs>.
+
+To update the reference pages for a new Kubernetes release follow these steps:
+-->
+位于 `content/en/docs/reference/kubernetes-api` 的 API 参考页面是根据 Swagger 规范构建的，使用 <https://github.com/kubernetes-sigs/reference-docs/tree/master/gen-resourcesdocs>。
+
+要更新 Kubernetes 新版本的参考页面，请执行以下步骤：
+
+<!--
+1. Pull in the `api-ref-generator` submodule:
+-->
+1. 拉取 `api-ref-generator` 子模块：
+
+   ```bash
+   git submodule update --init --recursive --depth 1
+   ```
+
+<!--
+2. Update the Swagger specification:
+-->
+2. 更新 Swagger 规范：
+
+   ```bash
+   curl 'https://raw.githubusercontent.com/kubernetes/kubernetes/master/api/openapi-spec/swagger.json' > api-ref-assets/api/swagger.json
+   ```
+
+<!--
+3. In `api-ref-assets/config/`, adapt the files `toc.yaml` and `fields.yaml` to reflect the changes of the new release.
+-->
+3. 在 `api-ref-assets/config/` 中，调整文件 `toc.yaml` 和 `fields.yaml` 以反映新版本的变化。
+
+<!--
+4. Next, build the pages:
+-->
+4. 接下来，构建页面：
+
+   ```bash
+   make api-reference
+   ```
+
+   <!--
+   You can test the results locally by making and serving the site from a container image:
+   -->
+   你可以通过从容器映像创建和提供站点来在本地测试结果：
+
+   ```bash
+   make container-image
+   make container-serve
+   ```
+
+   <!--
+   In a web browser, go to <http://localhost:1313/docs/reference/kubernetes-api/> to view the API reference.
+   -->
+   在 Web 浏览器中，打开 <http://localhost:1313/docs/reference/kubernetes-api/> 查看 API 参考。
+
+<!--
+5. When all changes of the new contract are reflected into the configuration files `toc.yaml` and `fields.yaml`, create a Pull Request with the newly generated API reference pages.
+-->
+5. 当所有新的更改都反映到配置文件 `toc.yaml` 和 `fields.yaml` 中时，使用新生成的 API 参考页面创建一个 Pull Request。
+
 <!--
 ## Troubleshooting
+
 ### error: failed to transform resource: TOCSS: failed to transform "scss/main.scss" (text/x-scss): this feature is not available in your current Hugo version
 
 Hugo is shipped in two set of binaries for technical reasons. The current website runs based on the **Hugo Extended** version only. In the [release page](https://github.com/gohugoio/hugo/releases) look for archives with `extended` in the name. To confirm, run `hugo version` and look for the word `extended`.
-
 -->
 ## 故障排除
 
-###  error: failed to transform resource: TOCSS: failed to transform "scss/main.scss" (text/x-scss): this feature is not available in your current Hugo version
+### error: failed to transform resource: TOCSS: failed to transform "scss/main.scss" (text/x-scss): this feature is not available in your current Hugo version
 
 由于技术原因，Hugo 会发布两套二进制文件。
 当前网站仅基于 **Hugo Extended** 版本运行。
-在 [发布页面](https://github.com/gohugoio/hugo/releases) 中查找名称为 `extended` 的归档。可以运行 `huge version` 查看是否有单词 `extended` 来确认。
+在[发布页面](https://github.com/gohugoio/hugo/releases)中查找名称为 `extended` 的归档。
+可以运行 `hugo version` 查看是否有单词 `extended` 来确认。
 
 <!--
 ### Troubleshooting macOS for too many open files
 
 If you run `make serve` on macOS and receive the following error:
-
 -->
-### 对 macOs 上打开太多文件的故障排除
+### 对 macOS 上打开太多文件的故障排除
 
 如果在 macOS 上运行 `make serve` 收到以下错误：
 
-```
+```bash
 ERROR 2020/08/01 19:09:18 Error: listen tcp 127.0.0.1:1313: socket: too many open files
 make: *** [serve] Error 1
 ```
 
+<!--
+Try checking the current limit for open files:
+-->
 试着查看一下当前打开文件数的限制：
 
 `launchctl limit maxfiles`
 
-然后运行以下命令（参考https://gist.github.com/tombigel/d503800a282fcadbee14b537735d202c）：
+<!--
+Then run the following commands (adapted from <https://gist.github.com/tombigel/d503800a282fcadbee14b537735d202c>):
+-->
+然后运行以下命令（参考 <https://gist.github.com/tombigel/d503800a282fcadbee14b537735d202c>）：
 
-```
+```shell
 #!/bin/sh
 
-# These are the original gist links, linking to my gists now.
+# 这些是原始的 gist 链接，立即链接到我的 gist。
 # curl -O https://gist.githubusercontent.com/a2ikm/761c2ab02b7b3935679e55af5d81786a/raw/ab644cb92f216c019a2f032bbf25e258b01d87f9/limit.maxfiles.plist
 # curl -O https://gist.githubusercontent.com/a2ikm/761c2ab02b7b3935679e55af5d81786a/raw/ab644cb92f216c019a2f032bbf25e258b01d87f9/limit.maxproc.plist
 
@@ -165,8 +251,56 @@ sudo chown root:wheel /Library/LaunchDaemons/limit.maxproc.plist
 sudo launchctl load -w /Library/LaunchDaemons/limit.maxfiles.plist
 ```
 
+<!--
+This works for Catalina as well as Mojave macOS.
+-->
 这适用于 Catalina 和 Mojave macOS。
 
+### 对执行 make container-image 命令部分地区访问超时的故障排除
+
+现象如下：
+
+```shell
+langs/language.go:23:2: golang.org/x/text@v0.3.7: Get "https://proxy.golang.org/golang.org/x/text/@v/v0.3.7.zip": dial tcp 142.251.43.17:443: i/o timeout
+langs/language.go:24:2: golang.org/x/text@v0.3.7: Get "https://proxy.golang.org/golang.org/x/text/@v/v0.3.7.zip": dial tcp 142.251.43.17:443: i/o timeout
+common/text/transform.go:21:2: golang.org/x/text@v0.3.7: Get "https://proxy.golang.org/golang.org/x/text/@v/v0.3.7.zip": dial tcp 142.251.43.17:443: i/o timeout
+common/text/transform.go:22:2: golang.org/x/text@v0.3.7: Get "https://proxy.golang.org/golang.org/x/text/@v/v0.3.7.zip": dial tcp 142.251.43.17:443: i/o timeout
+common/text/transform.go:23:2: golang.org/x/text@v0.3.7: Get "https://proxy.golang.org/golang.org/x/text/@v/v0.3.7.zip": dial tcp 142.251.43.17:443: i/o timeout
+hugolib/integrationtest_builder.go:29:2: golang.org/x/tools@v0.1.11: Get "https://proxy.golang.org/golang.org/x/tools/@v/v0.1.11.zip": dial tcp 142.251.42.241:443: i/o timeout
+deploy/google.go:24:2: google.golang.org/api@v0.76.0: Get "https://proxy.golang.org/google.golang.org/api/@v/v0.76.0.zip": dial tcp 142.251.43.17:443: i/o timeout
+parser/metadecoders/decoder.go:32:2: gopkg.in/yaml.v2@v2.4.0: Get "https://proxy.golang.org/gopkg.in/yaml.v2/@v/v2.4.0.zip": dial tcp 142.251.42.241:443: i/o timeout
+The command '/bin/sh -c mkdir $HOME/src &&     cd $HOME/src &&     curl -L https://github.com/gohugoio/hugo/archive/refs/tags/v${HUGO_VERSION}.tar.gz | tar -xz &&     cd "hugo-${HUGO_VERS    ION}" &&     go install --tags extended' returned a non-zero code: 1
+make: *** [Makefile:69：container-image] error 1
+```
+
+请修改 `Dockerfile` 文件，为其添加网络代理。修改内容如下：
+
+```dockerfile
+...
+FROM golang:1.18-alpine
+
+LABEL maintainer="Luc Perkins <lperkins@linuxfoundation.org>"
+
+ENV GO111MODULE=on                            # 需要添加内容1
+
+ENV GOPROXY=https://proxy.golang.org,direct   # 需要添加内容2
+
+RUN apk add --no-cache \
+    curl \
+    gcc \
+    g++ \
+    musl-dev \
+    build-base \
+    libc6-compat
+
+ARG HUGO_VERSION
+...
+```
+
+将 "https://proxy.golang.org" 替换为本地可以使用的代理地址。
+
+**注意：** 此部分仅适用于中国大陆 
+
 <!--
 ## Get involved with SIG Docs
 
@@ -174,63 +308,111 @@ Learn more about SIG Docs Kubernetes community and meetings on the [community pa
 
 You can also reach the maintainers of this project at:
 
-- [Slack](https://kubernetes.slack.com/messages/sig-docs) [Get an invite for this Slack](https://slack.k8s.io/)
+- [Slack](https://kubernetes.slack.com/messages/sig-docs)
+  - [Get an invite for this Slack](https://slack.k8s.io/)
 - [Mailing List](https://groups.google.com/forum/#!forum/kubernetes-sig-docs)
 -->
-# 参与 SIG Docs 工作
+## 参与 SIG Docs 工作
 
-通过 [社区页面](https://github.com/kubernetes/community/tree/master/sig-docs#meetings)
-进一步了解 SIG Docs Kubernetes 社区和会议信息。
+通过[社区页面](https://github.com/kubernetes/community/tree/master/sig-docs#meetings)进一步了解
+SIG Docs Kubernetes 社区和会议信息。
 
 你也可以通过以下渠道联系本项目的维护人员：
 
-- [Slack](https://kubernetes.slack.com/messages/sig-docs) [加入Slack](https://slack.k8s.io/)
+- [Slack](https://kubernetes.slack.com/messages/sig-docs)
+  - [获得此 Slack 的邀请](https://slack.k8s.io/)
 - [邮件列表](https://groups.google.com/forum/#!forum/kubernetes-sig-docs)
 
 <!--
 ## Contributing to the docs
 
-You can click the **Fork** button in the upper-right area of the screen to create a copy of this repository in your GitHub account. This copy is called a *fork*. Make any changes you want in your fork, and when you are ready to send those changes to us, go to your fork and create a new pull request to let us know about it.
+You can click the **Fork** button in the upper-right area of the screen to create a copy of this repository in your GitHub account. This copy is called a _fork_. Make any changes you want in your fork, and when you are ready to send those changes to us, go to your fork and create a new pull request to let us know about it.
 
-Once your pull request is created, a Kubernetes reviewer will take responsibility for providing clear, actionable feedback.  As the owner of the pull request, **it is your responsibility to modify your pull request to address the feedback that has been provided to you by the Kubernetes reviewer.**
+Once your pull request is created, a Kubernetes reviewer will take responsibility for providing clear, actionable feedback. As the owner of the pull request, **it is your responsibility to modify your pull request to address the feedback that has been provided to you by the Kubernetes reviewer.**
 -->
-# 为文档做贡献
+## 为文档做贡献
 
 你也可以点击屏幕右上方区域的 **Fork** 按钮，在你自己的 GitHub
-账号下创建本仓库的拷贝。此拷贝被称作 *fork*。
+账号下创建本仓库的拷贝。此拷贝被称作 **fork**。
 你可以在自己的拷贝中任意地修改文档，并在你已准备好将所作修改提交给我们时，
 在你自己的拷贝下创建一个拉取请求（Pull Request），以便让我们知道。
 
 一旦你创建了拉取请求，某个 Kubernetes 评审人会负责提供明确的、可执行的反馈意见。
-作为拉取请求的拥有者，*修改拉取请求以解决 Kubernetes
-评审人所提出的反馈是你的责任*。
+作为拉取请求的拥有者，**修改拉取请求以解决 Kubernetes 评审人所提出的反馈是你的责任**。
 
 <!--
 Also, note that you may end up having more than one Kubernetes reviewer provide you feedback or you may end up getting feedback from a Kubernetes reviewer that is different than the one initially assigned to provide you feedback.
 
-Furthermore, in some cases, one of your reviewers might ask for a technical review from a Kubernetes tech reviewer when needed.  Reviewers will do their best to provide feedback in a timely fashion but response time can vary based on circumstances.
+Furthermore, in some cases, one of your reviewers might ask for a technical review from a Kubernetes tech reviewer when needed. Reviewers will do their best to provide feedback in a timely fashion but response time can vary based on circumstances.
 -->
 还要提醒的一点，有时可能会有不止一个 Kubernetes 评审人为你提供反馈意见。
 有时候，某个评审人的意见和另一个最初被指派的评审人的意见不同。
 
-更进一步，在某些时候，评审人之一可能会在需要的时候请求 Kubernetes
-技术评审人来执行技术评审。
-评审人会尽力及时地提供反馈意见，不过具体的响应时间可能会因时而异。
+另外在某些时候，某个评审人可能会在需要的时候请求一名 Kubernetes 技术评审人来执行技术评审。
+这些评审人会尽力及时地提供反馈意见，不过具体的响应时间可能会因时而异。
 
 <!--
 For more information about contributing to the Kubernetes documentation, see:
 
-* [Contribute to Kubernetes docs](https://kubernetes.io/docs/contribute/)
-* [Page Content Types](https://kubernetes.io/docs/contribute/style/page-content-types/)
-* [Documentation Style Guide](https://kubernetes.io/docs/contribute/style/style-guide/)
-* [Localizing Kubernetes Documentation](https://kubernetes.io/docs/contribute/localization/)
+- [Contribute to Kubernetes docs](https://kubernetes.io/docs/contribute/)
+- [Page Content Types](https://kubernetes.io/docs/contribute/style/page-content-types/)
+- [Documentation Style Guide](https://kubernetes.io/docs/contribute/style/style-guide/)
+- [Localizing Kubernetes Documentation](https://kubernetes.io/docs/contribute/localization/)
 -->
 有关为 Kubernetes 文档做出贡献的更多信息，请参阅：
 
-* [贡献 Kubernetes 文档](https://kubernetes.io/docs/contribute/)
-* [页面内容类型](https://kubernetes.io/docs/contribute/style/page-content-types/)
-* [文档风格指南](https://kubernetes.io/docs/contribute/style/style-guide/)
-* [本地化 Kubernetes 文档](https://kubernetes.io/docs/contribute/localization/)
+- [贡献 Kubernetes 文档](https://kubernetes.io/zh-cn/docs/contribute/)
+- [页面内容类型](https://kubernetes.io/zh-cn/docs/contribute/style/page-content-types/)
+- [文档风格指南](https://kubernetes.io/zh-cn/docs/contribute/style/style-guide/)
+- [本地化 Kubernetes 文档](https://kubernetes.io/zh-cn/docs/contribute/localization/)
+
+<!--
+### New contributor ambassadors
+-->
+### 新贡献者大使
+
+<!--
+If you need help at any point when contributing, the [New Contributor Ambassadors](https://kubernetes.io/docs/contribute/advanced/#serve-as-a-new-contributor-ambassador) are a good point of contact. These are SIG Docs approvers whose responsibilities include mentoring new contributors and helping them through their first few pull requests. The best place to contact the New Contributors Ambassadors would be on the [Kubernetes Slack](https://slack.k8s.io/). Current New Contributors Ambassadors for SIG Docs:
+-->
+如果你在贡献时需要帮助，[新贡献者大使](https://kubernetes.io/zh-cn/docs/contribute/advanced/#serve-as-a-new-contributor-ambassador)是一个很好的联系人。
+这些是 SIG Docs 批准者，其职责包括指导新贡献者并帮助他们完成最初的几个拉取请求。
+联系新贡献者大使的最佳地点是 [Kubernetes Slack](https://slack.k8s.io/)。
+SIG Docs 的当前新贡献者大使：
+
+<!--
+| Name                       | Slack                      | GitHub                     |                   
+| -------------------------- | -------------------------- | -------------------------- |
+| Arsh Sharma                | @arsh                      | @RinkiyaKeDad              |
+-->
+| 姓名                       | Slack                      | GitHub                     |                   
+| -------------------------- | -------------------------- | -------------------------- |
+| Arsh Sharma                | @arsh                      | @RinkiyaKeDad              |
+
+<!--
+## Localization `README.md`'s
+-->
+## `README.md` 本地化
+
+<!--
+| Language                   | Language                   |
+| -------------------------- | -------------------------- |
+| [Chinese](README-zh.md)    | [Korean](README-ko.md)     |
+| [French](README-fr.md)     | [Polish](README-pl.md)     |
+| [German](README-de.md)     | [Portuguese](README-pt.md) |
+| [Hindi](README-hi.md)      | [Russian](README-ru.md)    |
+| [Indonesian](README-id.md) | [Spanish](README-es.md)    |
+| [Italian](README-it.md)    | [Ukrainian](README-uk.md)  |
+| [Japanese](README-ja.md)   | [Vietnamese](README-vi.md) |
+-->
+| 语言                       | 语言                       |
+| -------------------------- | -------------------------- |
+| [中文](README-zh.md)       | [韩语](README-ko.md)       |
+| [法语](README-fr.md)       | [波兰语](README-pl.md)     |
+| [德语](README-de.md)       | [葡萄牙语](README-pt.md)   |
+| [印地语](README-hi.md)     | [俄语](README-ru.md)       |
+| [印尼语](README-id.md)     | [西班牙语](README-es.md)   |
+| [意大利语](README-it.md)   | [乌克兰语](README-uk.md)   |
+| [日语](README-ja.md)       | [越南语](README-vi.md)     |
 
 # 中文本地化
 
@@ -238,22 +420,22 @@ For more information about contributing to the Kubernetes documentation, see:
 
 * Rui Chen ([GitHub - @chenrui333](https://github.com/chenrui333))
 * He Xiaolong ([GitHub - @markthink](https://github.com/markthink))
-* [Slack channel](https://kubernetes.slack.com/messages/kubernetes-docs-zh)
+* [Slack 频道](https://kubernetes.slack.com/messages/kubernetes-docs-zh)
 
 <!--
-### Code of conduct
+## Code of conduct
 
-Participation in the Kubernetes community is governed by the [CNCF Code of Conduct](https://github.com/cncf/foundation/blob/master/code-of-conduct.md).
+Participation in the Kubernetes community is governed by the [CNCF Code of Conduct](https://github.com/cncf/foundation/blob/main/code-of-conduct.md).
 -->
-# 行为准则
+## 行为准则
 
-参与 Kubernetes 社区受 [CNCF 行为准则](https://github.com/cncf/foundation/blob/master/code-of-conduct.md) 约束。
+参与 Kubernetes 社区受 [CNCF 行为准则](https://github.com/cncf/foundation/blob/main/code-of-conduct.md)约束。
 
 <!--
-## Thank you!
+## Thank you
 
 Kubernetes thrives on community participation, and we appreciate your contributions to our website and our documentation!
 -->
-# 感谢！
+## 感谢你
 
-Kubernetes 因为社区的参与而蓬勃发展，感谢您对我们网站和文档的贡献！
+Kubernetes 因为社区的参与而蓬勃发展，感谢你对我们网站和文档的贡献！
diff --git a/README.md b/README.md
index 74f99e2ffc..f037e0426b 100644
--- a/README.md
+++ b/README.md
@@ -36,10 +36,10 @@ git submodule update --init --recursive --depth 1
 
 ## Running the website using a container
 
-To build the site in a container, run the following to build the container image and run it:
+To build the site in a container, run the following:
 
 ```bash
-make container-image
+# You can set $CONTAINER_ENGINE to the name of any Docker-like container tool
 make container-serve
 ```
 
@@ -65,9 +65,9 @@ This will start the local Hugo server on port 1313. Open up your browser to <htt
 
 The API reference pages located in `content/en/docs/reference/kubernetes-api` are built from the Swagger specification, using <https://github.com/kubernetes-sigs/reference-docs/tree/master/gen-resourcesdocs>.
 
-To update the reference pages for a new Kubernetes release (replace v1.20 in the following examples with the release to update to):
+To update the reference pages for a new Kubernetes release follow these steps:
 
-1. Pull the `kubernetes-resources-reference` submodule:
+1. Pull in the `api-ref-generator` submodule:
 
    ```bash
    git submodule update --init --recursive --depth 1
@@ -75,9 +75,9 @@ To update the reference pages for a new Kubernetes release (replace v1.20 in the
 
 2. Update the Swagger specification:
 
-```
-curl 'https://raw.githubusercontent.com/kubernetes/kubernetes/master/api/openapi-spec/swagger.json' > api-ref-assets/api/swagger.json
-```
+   ```bash
+   curl 'https://raw.githubusercontent.com/kubernetes/kubernetes/master/api/openapi-spec/swagger.json' > api-ref-assets/api/swagger.json
+   ```
 
 3. In `api-ref-assets/config/`, adapt the files `toc.yaml` and `fields.yaml` to reflect the changes of the new release.
 
@@ -146,7 +146,8 @@ Learn more about SIG Docs Kubernetes community and meetings on the [community pa
 
 You can also reach the maintainers of this project at:
 
-- [Slack](https://kubernetes.slack.com/messages/sig-docs) [Get an invite for this Slack](https://slack.k8s.io/)
+- [Slack](https://kubernetes.slack.com/messages/sig-docs)
+  - [Get an invite for this Slack](https://slack.k8s.io/)
 - [Mailing List](https://groups.google.com/forum/#!forum/kubernetes-sig-docs)
 
 ## Contributing to the docs
@@ -166,6 +167,14 @@ For more information about contributing to the Kubernetes documentation, see:
 - [Documentation Style Guide](https://kubernetes.io/docs/contribute/style/style-guide/)
 - [Localizing Kubernetes Documentation](https://kubernetes.io/docs/contribute/localization/)
 
+### New contributor ambassadors
+
+If you need help at any point when contributing, the [New Contributor Ambassadors](https://kubernetes.io/docs/contribute/advanced/#serve-as-a-new-contributor-ambassador) are a good point of contact. These are SIG Docs approvers whose responsibilities include mentoring new contributors and helping them through their first few pull requests. The best place to contact the New Contributors Ambassadors would be on the [Kubernetes Slack](https://slack.k8s.io/). Current New Contributors Ambassadors for SIG Docs:
+
+| Name                       | Slack                      | GitHub                     |                   
+| -------------------------- | -------------------------- | -------------------------- |
+| Arsh Sharma                | @arsh                      | @RinkiyaKeDad              |
+
 ## Localization `README.md`'s
 
 | Language                   | Language                   |
@@ -180,7 +189,7 @@ For more information about contributing to the Kubernetes documentation, see:
 
 ## Code of conduct
 
-Participation in the Kubernetes community is governed by the [CNCF Code of Conduct](https://github.com/cncf/foundation/blob/master/code-of-conduct.md).
+Participation in the Kubernetes community is governed by the [CNCF Code of Conduct](https://github.com/cncf/foundation/blob/main/code-of-conduct.md).
 
 ## Thank you
 
diff --git a/SECURITY_CONTACTS b/SECURITY_CONTACTS
index 77910dc182..839e7bed14 100644
--- a/SECURITY_CONTACTS
+++ b/SECURITY_CONTACTS
@@ -10,5 +10,6 @@
 # DO NOT REPORT SECURITY VULNERABILITIES DIRECTLY TO THESE NAMES, FOLLOW THE
 # INSTRUCTIONS AT https://kubernetes.io/security/
 
+divya-mohan0209
 jimangel
-sftim
\ No newline at end of file
+sftim
diff --git a/api-ref-assets/api/swagger.json b/api-ref-assets/api/swagger.json
index 5404b05fb9..399f47223f 100644
--- a/api-ref-assets/api/swagger.json
+++ b/api-ref-assets/api/swagger.json
@@ -367,7 +367,7 @@
       "type": "object"
     },
     "io.k8s.api.apiserverinternal.v1alpha1.StorageVersion": {
-      "description": "\n Storage version of a specific resource.",
+      "description": "Storage version of a specific resource.",
       "properties": {
         "apiVersion": {
           "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
@@ -750,7 +750,7 @@
           "type": "integer"
         },
         "numberReady": {
-          "description": "The number of nodes that should be running the daemon pod and have one or more of the daemon pod running and ready.",
+          "description": "numberReady is the number of nodes that should be running the daemon pod and have one or more of the daemon pod running with a Ready Condition.",
           "format": "int32",
           "type": "integer"
         },
@@ -786,7 +786,7 @@
           "description": "Rolling update config params. Present only if type = \"RollingUpdate\"."
         },
         "type": {
-          "description": "Type of daemon set update. Can be \"RollingUpdate\" or \"OnDelete\". Default is RollingUpdate.",
+          "description": "Type of daemon set update. Can be \"RollingUpdate\" or \"OnDelete\". Default is RollingUpdate.\n\n",
           "type": "string"
         }
       },
@@ -969,7 +969,7 @@
           "type": "integer"
         },
         "readyReplicas": {
-          "description": "Total number of ready pods targeted by this deployment.",
+          "description": "readyReplicas is the number of pods targeted by this Deployment with a Ready Condition.",
           "format": "int32",
           "type": "integer"
         },
@@ -999,7 +999,7 @@
           "description": "Rolling update config params. Present only if DeploymentStrategyType = RollingUpdate."
         },
         "type": {
-          "description": "Type of deployment. Can be \"Recreate\" or \"RollingUpdate\". Default is RollingUpdate.",
+          "description": "Type of deployment. Can be \"Recreate\" or \"RollingUpdate\". Default is RollingUpdate.\n\n",
           "type": "string"
         }
       },
@@ -1158,7 +1158,7 @@
           "type": "integer"
         },
         "readyReplicas": {
-          "description": "The number of ready replicas for this replica set.",
+          "description": "readyReplicas is the number of pods targeted by this ReplicaSet with a Ready Condition.",
           "format": "int32",
           "type": "integer"
         },
@@ -1204,8 +1204,12 @@
     "io.k8s.api.apps.v1.RollingUpdateStatefulSetStrategy": {
       "description": "RollingUpdateStatefulSetStrategy is used to communicate parameter for RollingUpdateStatefulSetStrategyType.",
       "properties": {
+        "maxUnavailable": {
+          "$ref": "#/definitions/io.k8s.apimachinery.pkg.util.intstr.IntOrString",
+          "description": "The maximum number of pods that can be unavailable during the update. Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). Absolute number is calculated from percentage by rounding up. This can not be 0. Defaults to 1. This field is alpha-level and is only honored by servers that enable the MaxUnavailableStatefulSet feature. The field applies to all pods in the range 0 to Replicas-1. That means if there is any unavailable pod in the range 0 to Replicas-1, it will be counted towards MaxUnavailable."
+        },
         "partition": {
-          "description": "Partition indicates the ordinal at which the StatefulSet should be partitioned. Default value is 0.",
+          "description": "Partition indicates the ordinal at which the StatefulSet should be partitioned for updates. During a rolling update, all pods from ordinal Replicas-1 to Partition are updated. All pods from ordinal Partition-1 to 0 remain untouched. This is helpful in being able to do a canary based deployment. The default value is 0.",
           "format": "int32",
           "type": "integer"
         }
@@ -1310,6 +1314,20 @@
         }
       ]
     },
+    "io.k8s.api.apps.v1.StatefulSetPersistentVolumeClaimRetentionPolicy": {
+      "description": "StatefulSetPersistentVolumeClaimRetentionPolicy describes the policy used for PVCs created from the StatefulSet VolumeClaimTemplates.",
+      "properties": {
+        "whenDeleted": {
+          "description": "WhenDeleted specifies what happens to PVCs created from StatefulSet VolumeClaimTemplates when the StatefulSet is deleted. The default policy of `Retain` causes PVCs to not be affected by StatefulSet deletion. The `Delete` policy causes those PVCs to be deleted.",
+          "type": "string"
+        },
+        "whenScaled": {
+          "description": "WhenScaled specifies what happens to PVCs created from StatefulSet VolumeClaimTemplates when the StatefulSet is scaled down. The default policy of `Retain` causes PVCs to not be affected by a scaledown. The `Delete` policy causes the associated PVCs for any excess pods above the replica count to be deleted.",
+          "type": "string"
+        }
+      },
+      "type": "object"
+    },
     "io.k8s.api.apps.v1.StatefulSetSpec": {
       "description": "A StatefulSetSpec is the specification of a StatefulSet.",
       "properties": {
@@ -1318,8 +1336,12 @@
           "format": "int32",
           "type": "integer"
         },
+        "persistentVolumeClaimRetentionPolicy": {
+          "$ref": "#/definitions/io.k8s.api.apps.v1.StatefulSetPersistentVolumeClaimRetentionPolicy",
+          "description": "persistentVolumeClaimRetentionPolicy describes the lifecycle of persistent volume claims created from volumeClaimTemplates. By default, all persistent volume claims are created as needed and retained until manually deleted. This policy allows the lifecycle to be altered, for example by deleting persistent volume claims when their stateful set is deleted, or when their pod is scaled down. This requires the StatefulSetAutoDeletePVC feature gate to be enabled, which is alpha.  +optional"
+        },
         "podManagementPolicy": {
-          "description": "podManagementPolicy controls how pods are created during initial scale up, when replacing pods on nodes, or when scaling down. The default policy is `OrderedReady`, where pods are created in increasing order (pod-0, then pod-1, etc) and the controller will wait until each pod is ready before continuing. When scaling down, the pods are removed in the opposite order. The alternative policy is `Parallel` which will create pods in parallel to match the desired scale without waiting, and on scale down will delete all pods at once.",
+          "description": "podManagementPolicy controls how pods are created during initial scale up, when replacing pods on nodes, or when scaling down. The default policy is `OrderedReady`, where pods are created in increasing order (pod-0, then pod-1, etc) and the controller will wait until each pod is ready before continuing. When scaling down, the pods are removed in the opposite order. The alternative policy is `Parallel` which will create pods in parallel to match the desired scale without waiting, and on scale down will delete all pods at once.\n\n",
           "type": "string"
         },
         "replicas": {
@@ -1367,7 +1389,7 @@
       "description": "StatefulSetStatus represents the current state of a StatefulSet.",
       "properties": {
         "availableReplicas": {
-          "description": "Total number of available pods (ready for at least minReadySeconds) targeted by this statefulset. This is an alpha field and requires enabling StatefulSetMinReadySeconds feature gate. Remove omitempty when graduating to beta",
+          "description": "Total number of available pods (ready for at least minReadySeconds) targeted by this statefulset. This is a beta field and enabled/disabled by StatefulSetMinReadySeconds feature gate.",
           "format": "int32",
           "type": "integer"
         },
@@ -1400,7 +1422,7 @@
           "type": "integer"
         },
         "readyReplicas": {
-          "description": "readyReplicas is the number of Pods created by the StatefulSet controller that have a Ready Condition.",
+          "description": "readyReplicas is the number of pods created for this StatefulSet with a Ready Condition.",
           "format": "int32",
           "type": "integer"
         },
@@ -1432,7 +1454,7 @@
           "description": "RollingUpdate is used to communicate parameters when Type is RollingUpdateStatefulSetStrategyType."
         },
         "type": {
-          "description": "Type indicates the type of the StatefulSetUpdateStrategy. Default is RollingUpdate.",
+          "description": "Type indicates the type of the StatefulSetUpdateStrategy. Default is RollingUpdate.\n\n",
           "type": "string"
         }
       },
@@ -2237,6 +2259,601 @@
       ],
       "type": "object"
     },
+    "io.k8s.api.autoscaling.v2.ContainerResourceMetricSource": {
+      "description": "ContainerResourceMetricSource indicates how to scale on a resource metric known to Kubernetes, as specified in requests and limits, describing each pod in the current scale target (e.g. CPU or memory).  The values will be averaged together before being compared to the target.  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the \"pods\" source.  Only one \"target\" type should be set.",
+      "properties": {
+        "container": {
+          "description": "container is the name of the container in the pods of the scaling target",
+          "type": "string"
+        },
+        "name": {
+          "description": "name is the name of the resource in question.",
+          "type": "string"
+        },
+        "target": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.MetricTarget",
+          "description": "target specifies the target value for the given metric"
+        }
+      },
+      "required": [
+        "name",
+        "target",
+        "container"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.autoscaling.v2.ContainerResourceMetricStatus": {
+      "description": "ContainerResourceMetricStatus indicates the current value of a resource metric known to Kubernetes, as specified in requests and limits, describing a single container in each pod in the current scale target (e.g. CPU or memory).  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the \"pods\" source.",
+      "properties": {
+        "container": {
+          "description": "Container is the name of the container in the pods of the scaling target",
+          "type": "string"
+        },
+        "current": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.MetricValueStatus",
+          "description": "current contains the current value for the given metric"
+        },
+        "name": {
+          "description": "Name is the name of the resource in question.",
+          "type": "string"
+        }
+      },
+      "required": [
+        "name",
+        "current",
+        "container"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.autoscaling.v2.CrossVersionObjectReference": {
+      "description": "CrossVersionObjectReference contains enough information to let you identify the referred resource.",
+      "properties": {
+        "apiVersion": {
+          "description": "API version of the referent",
+          "type": "string"
+        },
+        "kind": {
+          "description": "Kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds\"",
+          "type": "string"
+        },
+        "name": {
+          "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names",
+          "type": "string"
+        }
+      },
+      "required": [
+        "kind",
+        "name"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.autoscaling.v2.ExternalMetricSource": {
+      "description": "ExternalMetricSource indicates how to scale on a metric not associated with any Kubernetes object (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).",
+      "properties": {
+        "metric": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.MetricIdentifier",
+          "description": "metric identifies the target metric by name and selector"
+        },
+        "target": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.MetricTarget",
+          "description": "target specifies the target value for the given metric"
+        }
+      },
+      "required": [
+        "metric",
+        "target"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.autoscaling.v2.ExternalMetricStatus": {
+      "description": "ExternalMetricStatus indicates the current value of a global metric not associated with any Kubernetes object.",
+      "properties": {
+        "current": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.MetricValueStatus",
+          "description": "current contains the current value for the given metric"
+        },
+        "metric": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.MetricIdentifier",
+          "description": "metric identifies the target metric by name and selector"
+        }
+      },
+      "required": [
+        "metric",
+        "current"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.autoscaling.v2.HPAScalingPolicy": {
+      "description": "HPAScalingPolicy is a single policy which must hold true for a specified past interval.",
+      "properties": {
+        "periodSeconds": {
+          "description": "PeriodSeconds specifies the window of time for which the policy should hold true. PeriodSeconds must be greater than zero and less than or equal to 1800 (30 min).",
+          "format": "int32",
+          "type": "integer"
+        },
+        "type": {
+          "description": "Type is used to specify the scaling policy.",
+          "type": "string"
+        },
+        "value": {
+          "description": "Value contains the amount of change which is permitted by the policy. It must be greater than zero",
+          "format": "int32",
+          "type": "integer"
+        }
+      },
+      "required": [
+        "type",
+        "value",
+        "periodSeconds"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.autoscaling.v2.HPAScalingRules": {
+      "description": "HPAScalingRules configures the scaling behavior for one direction. These Rules are applied after calculating DesiredReplicas from metrics for the HPA. They can limit the scaling velocity by specifying scaling policies. They can prevent flapping by specifying the stabilization window, so that the number of replicas is not set instantly, instead, the safest value from the stabilization window is chosen.",
+      "properties": {
+        "policies": {
+          "description": "policies is a list of potential scaling polices which can be used during scaling. At least one policy must be specified, otherwise the HPAScalingRules will be discarded as invalid",
+          "items": {
+            "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HPAScalingPolicy"
+          },
+          "type": "array",
+          "x-kubernetes-list-type": "atomic"
+        },
+        "selectPolicy": {
+          "description": "selectPolicy is used to specify which policy should be used. If not set, the default value Max is used.",
+          "type": "string"
+        },
+        "stabilizationWindowSeconds": {
+          "description": "StabilizationWindowSeconds is the number of seconds for which past recommendations should be considered while scaling up or scaling down. StabilizationWindowSeconds must be greater than or equal to zero and less than or equal to 3600 (one hour). If not set, use the default values: - For scale up: 0 (i.e. no stabilization is done). - For scale down: 300 (i.e. the stabilization window is 300 seconds long).",
+          "format": "int32",
+          "type": "integer"
+        }
+      },
+      "type": "object"
+    },
+    "io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler": {
+      "description": "HorizontalPodAutoscaler is the configuration for a horizontal pod autoscaler, which automatically manages the replica count of any resource implementing the scale subresource based on the metrics specified.",
+      "properties": {
+        "apiVersion": {
+          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
+          "type": "string"
+        },
+        "kind": {
+          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
+          "type": "string"
+        },
+        "metadata": {
+          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta",
+          "description": "metadata is the standard object metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata"
+        },
+        "spec": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerSpec",
+          "description": "spec is the specification for the behaviour of the autoscaler. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status."
+        },
+        "status": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerStatus",
+          "description": "status is the current information about the autoscaler."
+        }
+      },
+      "type": "object",
+      "x-kubernetes-group-version-kind": [
+        {
+          "group": "autoscaling",
+          "kind": "HorizontalPodAutoscaler",
+          "version": "v2"
+        }
+      ]
+    },
+    "io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerBehavior": {
+      "description": "HorizontalPodAutoscalerBehavior configures the scaling behavior of the target in both Up and Down directions (scaleUp and scaleDown fields respectively).",
+      "properties": {
+        "scaleDown": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HPAScalingRules",
+          "description": "scaleDown is scaling policy for scaling Down. If not set, the default value is to allow to scale down to minReplicas pods, with a 300 second stabilization window (i.e., the highest recommendation for the last 300sec is used)."
+        },
+        "scaleUp": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HPAScalingRules",
+          "description": "scaleUp is scaling policy for scaling Up. If not set, the default value is the higher of:\n  * increase no more than 4 pods per 60 seconds\n  * double the number of pods per 60 seconds\nNo stabilization is used."
+        }
+      },
+      "type": "object"
+    },
+    "io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerCondition": {
+      "description": "HorizontalPodAutoscalerCondition describes the state of a HorizontalPodAutoscaler at a certain point.",
+      "properties": {
+        "lastTransitionTime": {
+          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time",
+          "description": "lastTransitionTime is the last time the condition transitioned from one status to another"
+        },
+        "message": {
+          "description": "message is a human-readable explanation containing details about the transition",
+          "type": "string"
+        },
+        "reason": {
+          "description": "reason is the reason for the condition's last transition.",
+          "type": "string"
+        },
+        "status": {
+          "description": "status is the status of the condition (True, False, Unknown)",
+          "type": "string"
+        },
+        "type": {
+          "description": "type describes the current condition",
+          "type": "string"
+        }
+      },
+      "required": [
+        "type",
+        "status"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerList": {
+      "description": "HorizontalPodAutoscalerList is a list of horizontal pod autoscaler objects.",
+      "properties": {
+        "apiVersion": {
+          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
+          "type": "string"
+        },
+        "items": {
+          "description": "items is the list of horizontal pod autoscaler objects.",
+          "items": {
+            "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"
+          },
+          "type": "array"
+        },
+        "kind": {
+          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
+          "type": "string"
+        },
+        "metadata": {
+          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta",
+          "description": "metadata is the standard list metadata."
+        }
+      },
+      "required": [
+        "items"
+      ],
+      "type": "object",
+      "x-kubernetes-group-version-kind": [
+        {
+          "group": "autoscaling",
+          "kind": "HorizontalPodAutoscalerList",
+          "version": "v2"
+        }
+      ]
+    },
+    "io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerSpec": {
+      "description": "HorizontalPodAutoscalerSpec describes the desired functionality of the HorizontalPodAutoscaler.",
+      "properties": {
+        "behavior": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerBehavior",
+          "description": "behavior configures the scaling behavior of the target in both Up and Down directions (scaleUp and scaleDown fields respectively). If not set, the default HPAScalingRules for scale up and scale down are used."
+        },
+        "maxReplicas": {
+          "description": "maxReplicas is the upper limit for the number of replicas to which the autoscaler can scale up. It cannot be less that minReplicas.",
+          "format": "int32",
+          "type": "integer"
+        },
+        "metrics": {
+          "description": "metrics contains the specifications for which to use to calculate the desired replica count (the maximum replica count across all metrics will be used).  The desired replica count is calculated multiplying the ratio between the target value and the current value by the current number of pods.  Ergo, metrics used must decrease as the pod count is increased, and vice-versa.  See the individual metric source types for more information about how each type of metric must respond. If not set, the default metric will be set to 80% average CPU utilization.",
+          "items": {
+            "$ref": "#/definitions/io.k8s.api.autoscaling.v2.MetricSpec"
+          },
+          "type": "array",
+          "x-kubernetes-list-type": "atomic"
+        },
+        "minReplicas": {
+          "description": "minReplicas is the lower limit for the number of replicas to which the autoscaler can scale down.  It defaults to 1 pod.  minReplicas is allowed to be 0 if the alpha feature gate HPAScaleToZero is enabled and at least one Object or External metric is configured.  Scaling is active as long as at least one metric value is available.",
+          "format": "int32",
+          "type": "integer"
+        },
+        "scaleTargetRef": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.CrossVersionObjectReference",
+          "description": "scaleTargetRef points to the target resource to scale, and is used to the pods for which metrics should be collected, as well as to actually change the replica count."
+        }
+      },
+      "required": [
+        "scaleTargetRef",
+        "maxReplicas"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerStatus": {
+      "description": "HorizontalPodAutoscalerStatus describes the current status of a horizontal pod autoscaler.",
+      "properties": {
+        "conditions": {
+          "description": "conditions is the set of conditions required for this autoscaler to scale its target, and indicates whether or not those conditions are met.",
+          "items": {
+            "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerCondition"
+          },
+          "type": "array",
+          "x-kubernetes-list-map-keys": [
+            "type"
+          ],
+          "x-kubernetes-list-type": "map",
+          "x-kubernetes-patch-merge-key": "type",
+          "x-kubernetes-patch-strategy": "merge"
+        },
+        "currentMetrics": {
+          "description": "currentMetrics is the last read state of the metrics used by this autoscaler.",
+          "items": {
+            "$ref": "#/definitions/io.k8s.api.autoscaling.v2.MetricStatus"
+          },
+          "type": "array",
+          "x-kubernetes-list-type": "atomic"
+        },
+        "currentReplicas": {
+          "description": "currentReplicas is current number of replicas of pods managed by this autoscaler, as last seen by the autoscaler.",
+          "format": "int32",
+          "type": "integer"
+        },
+        "desiredReplicas": {
+          "description": "desiredReplicas is the desired number of replicas of pods managed by this autoscaler, as last calculated by the autoscaler.",
+          "format": "int32",
+          "type": "integer"
+        },
+        "lastScaleTime": {
+          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time",
+          "description": "lastScaleTime is the last time the HorizontalPodAutoscaler scaled the number of pods, used by the autoscaler to control how often the number of pods is changed."
+        },
+        "observedGeneration": {
+          "description": "observedGeneration is the most recent generation observed by this autoscaler.",
+          "format": "int64",
+          "type": "integer"
+        }
+      },
+      "required": [
+        "desiredReplicas"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.autoscaling.v2.MetricIdentifier": {
+      "description": "MetricIdentifier defines the name and optionally selector for a metric",
+      "properties": {
+        "name": {
+          "description": "name is the name of the given metric",
+          "type": "string"
+        },
+        "selector": {
+          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector",
+          "description": "selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics."
+        }
+      },
+      "required": [
+        "name"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.autoscaling.v2.MetricSpec": {
+      "description": "MetricSpec specifies how to scale based on a single metric (only `type` and one other matching field should be set at once).",
+      "properties": {
+        "containerResource": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.ContainerResourceMetricSource",
+          "description": "containerResource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing a single container in each pod of the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the \"pods\" source. This is an alpha feature and can be enabled by the HPAContainerMetrics feature flag."
+        },
+        "external": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.ExternalMetricSource",
+          "description": "external refers to a global metric that is not associated with any Kubernetes object. It allows autoscaling based on information coming from components running outside of cluster (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster)."
+        },
+        "object": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.ObjectMetricSource",
+          "description": "object refers to a metric describing a single kubernetes object (for example, hits-per-second on an Ingress object)."
+        },
+        "pods": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.PodsMetricSource",
+          "description": "pods refers to a metric describing each pod in the current scale target (for example, transactions-processed-per-second).  The values will be averaged together before being compared to the target value."
+        },
+        "resource": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.ResourceMetricSource",
+          "description": "resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the \"pods\" source."
+        },
+        "type": {
+          "description": "type is the type of metric source.  It should be one of \"ContainerResource\", \"External\", \"Object\", \"Pods\" or \"Resource\", each mapping to a matching field in the object. Note: \"ContainerResource\" type is available on when the feature-gate HPAContainerMetrics is enabled",
+          "type": "string"
+        }
+      },
+      "required": [
+        "type"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.autoscaling.v2.MetricStatus": {
+      "description": "MetricStatus describes the last-read state of a single metric.",
+      "properties": {
+        "containerResource": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.ContainerResourceMetricStatus",
+          "description": "container resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing a single container in each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the \"pods\" source."
+        },
+        "external": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.ExternalMetricStatus",
+          "description": "external refers to a global metric that is not associated with any Kubernetes object. It allows autoscaling based on information coming from components running outside of cluster (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster)."
+        },
+        "object": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.ObjectMetricStatus",
+          "description": "object refers to a metric describing a single kubernetes object (for example, hits-per-second on an Ingress object)."
+        },
+        "pods": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.PodsMetricStatus",
+          "description": "pods refers to a metric describing each pod in the current scale target (for example, transactions-processed-per-second).  The values will be averaged together before being compared to the target value."
+        },
+        "resource": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.ResourceMetricStatus",
+          "description": "resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the \"pods\" source."
+        },
+        "type": {
+          "description": "type is the type of metric source.  It will be one of \"ContainerResource\", \"External\", \"Object\", \"Pods\" or \"Resource\", each corresponds to a matching field in the object. Note: \"ContainerResource\" type is available on when the feature-gate HPAContainerMetrics is enabled",
+          "type": "string"
+        }
+      },
+      "required": [
+        "type"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.autoscaling.v2.MetricTarget": {
+      "description": "MetricTarget defines the target value, average value, or average utilization of a specific metric",
+      "properties": {
+        "averageUtilization": {
+          "description": "averageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods. Currently only valid for Resource metric source type",
+          "format": "int32",
+          "type": "integer"
+        },
+        "averageValue": {
+          "$ref": "#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity",
+          "description": "averageValue is the target value of the average of the metric across all relevant pods (as a quantity)"
+        },
+        "type": {
+          "description": "type represents whether the metric type is Utilization, Value, or AverageValue",
+          "type": "string"
+        },
+        "value": {
+          "$ref": "#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity",
+          "description": "value is the target value of the metric (as a quantity)."
+        }
+      },
+      "required": [
+        "type"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.autoscaling.v2.MetricValueStatus": {
+      "description": "MetricValueStatus holds the current value for a metric",
+      "properties": {
+        "averageUtilization": {
+          "description": "currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.",
+          "format": "int32",
+          "type": "integer"
+        },
+        "averageValue": {
+          "$ref": "#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity",
+          "description": "averageValue is the current value of the average of the metric across all relevant pods (as a quantity)"
+        },
+        "value": {
+          "$ref": "#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity",
+          "description": "value is the current value of the metric (as a quantity)."
+        }
+      },
+      "type": "object"
+    },
+    "io.k8s.api.autoscaling.v2.ObjectMetricSource": {
+      "description": "ObjectMetricSource indicates how to scale on a metric describing a kubernetes object (for example, hits-per-second on an Ingress object).",
+      "properties": {
+        "describedObject": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.CrossVersionObjectReference",
+          "description": "describedObject specifies the descriptions of a object,such as kind,name apiVersion"
+        },
+        "metric": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.MetricIdentifier",
+          "description": "metric identifies the target metric by name and selector"
+        },
+        "target": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.MetricTarget",
+          "description": "target specifies the target value for the given metric"
+        }
+      },
+      "required": [
+        "describedObject",
+        "target",
+        "metric"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.autoscaling.v2.ObjectMetricStatus": {
+      "description": "ObjectMetricStatus indicates the current value of a metric describing a kubernetes object (for example, hits-per-second on an Ingress object).",
+      "properties": {
+        "current": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.MetricValueStatus",
+          "description": "current contains the current value for the given metric"
+        },
+        "describedObject": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.CrossVersionObjectReference",
+          "description": "DescribedObject specifies the descriptions of a object,such as kind,name apiVersion"
+        },
+        "metric": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.MetricIdentifier",
+          "description": "metric identifies the target metric by name and selector"
+        }
+      },
+      "required": [
+        "metric",
+        "current",
+        "describedObject"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.autoscaling.v2.PodsMetricSource": {
+      "description": "PodsMetricSource indicates how to scale on a metric describing each pod in the current scale target (for example, transactions-processed-per-second). The values will be averaged together before being compared to the target value.",
+      "properties": {
+        "metric": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.MetricIdentifier",
+          "description": "metric identifies the target metric by name and selector"
+        },
+        "target": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.MetricTarget",
+          "description": "target specifies the target value for the given metric"
+        }
+      },
+      "required": [
+        "metric",
+        "target"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.autoscaling.v2.PodsMetricStatus": {
+      "description": "PodsMetricStatus indicates the current value of a metric describing each pod in the current scale target (for example, transactions-processed-per-second).",
+      "properties": {
+        "current": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.MetricValueStatus",
+          "description": "current contains the current value for the given metric"
+        },
+        "metric": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.MetricIdentifier",
+          "description": "metric identifies the target metric by name and selector"
+        }
+      },
+      "required": [
+        "metric",
+        "current"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.autoscaling.v2.ResourceMetricSource": {
+      "description": "ResourceMetricSource indicates how to scale on a resource metric known to Kubernetes, as specified in requests and limits, describing each pod in the current scale target (e.g. CPU or memory).  The values will be averaged together before being compared to the target.  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the \"pods\" source.  Only one \"target\" type should be set.",
+      "properties": {
+        "name": {
+          "description": "name is the name of the resource in question.",
+          "type": "string"
+        },
+        "target": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.MetricTarget",
+          "description": "target specifies the target value for the given metric"
+        }
+      },
+      "required": [
+        "name",
+        "target"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.autoscaling.v2.ResourceMetricStatus": {
+      "description": "ResourceMetricStatus indicates the current value of a resource metric known to Kubernetes, as specified in requests and limits, describing each pod in the current scale target (e.g. CPU or memory).  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the \"pods\" source.",
+      "properties": {
+        "current": {
+          "$ref": "#/definitions/io.k8s.api.autoscaling.v2.MetricValueStatus",
+          "description": "current contains the current value for the given metric"
+        },
+        "name": {
+          "description": "Name is the name of the resource in question.",
+          "type": "string"
+        }
+      },
+      "required": [
+        "name",
+        "current"
+      ],
+      "type": "object"
+    },
     "io.k8s.api.autoscaling.v2beta1.ContainerResourceMetricSource": {
       "description": "ContainerResourceMetricSource indicates how to scale on a resource metric known to Kubernetes, as specified in requests and limits, describing each pod in the current scale target (e.g. CPU or memory).  The values will be averaged together before being compared to the target.  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the \"pods\" source.  Only one \"target\" type should be set.",
       "properties": {
@@ -2533,8 +3150,7 @@
       },
       "required": [
         "currentReplicas",
-        "desiredReplicas",
-        "conditions"
+        "desiredReplicas"
       ],
       "type": "object"
     },
@@ -3092,8 +3708,7 @@
       },
       "required": [
         "currentReplicas",
-        "desiredReplicas",
-        "conditions"
+        "desiredReplicas"
       ],
       "type": "object"
     },
@@ -3413,7 +4028,7 @@
       "description": "CronJobSpec describes how the job execution will look like and when it will actually run.",
       "properties": {
         "concurrencyPolicy": {
-          "description": "Specifies how to treat concurrent executions of a Job. Valid values are: - \"Allow\" (default): allows CronJobs to run concurrently; - \"Forbid\": forbids concurrent runs, skipping next run if previous run hasn't finished yet; - \"Replace\": cancels currently running job and replaces it with a new one",
+          "description": "Specifies how to treat concurrent executions of a Job. Valid values are: - \"Allow\" (default): allows CronJobs to run concurrently; - \"Forbid\": forbids concurrent runs, skipping next run if previous run hasn't finished yet; - \"Replace\": cancels currently running job and replaces it with a new one\n\n",
           "type": "string"
         },
         "failedJobsHistoryLimit": {
@@ -3442,6 +4057,10 @@
         "suspend": {
           "description": "This flag tells the controller to suspend subsequent executions, it does not apply to already started executions.  Defaults to false.",
           "type": "boolean"
+        },
+        "timeZone": {
+          "description": "The time zone for the given schedule, see https://en.wikipedia.org/wiki/List_of_tz_database_time_zones. If not specified, this will rely on the time zone of the kube-controller-manager process. ALPHA: This field is in alpha and must be enabled via the `CronJobTimeZone` feature gate.",
+          "type": "string"
         }
       },
       "required": [
@@ -3588,7 +4207,7 @@
           "type": "integer"
         },
         "completionMode": {
-          "description": "CompletionMode specifies how Pod completions are tracked. It can be `NonIndexed` (default) or `Indexed`.\n\n`NonIndexed` means that the Job is considered complete when there have been .spec.completions successfully completed Pods. Each Pod completion is homologous to each other.\n\n`Indexed` means that the Pods of a Job get an associated completion index from 0 to (.spec.completions - 1), available in the annotation batch.kubernetes.io/job-completion-index. The Job is considered complete when there is one successfully completed Pod for each index. When value is `Indexed`, .spec.completions must be specified and `.spec.parallelism` must be less than or equal to 10^5. In addition, The Pod name takes the form `$(job-name)-$(index)-$(random-string)`, the Pod hostname takes the form `$(job-name)-$(index)`.\n\nThis field is beta-level. More completion modes can be added in the future. If the Job controller observes a mode that it doesn't recognize, the controller skips updates for the Job.",
+          "description": "CompletionMode specifies how Pod completions are tracked. It can be `NonIndexed` (default) or `Indexed`.\n\n`NonIndexed` means that the Job is considered complete when there have been .spec.completions successfully completed Pods. Each Pod completion is homologous to each other.\n\n`Indexed` means that the Pods of a Job get an associated completion index from 0 to (.spec.completions - 1), available in the annotation batch.kubernetes.io/job-completion-index. The Job is considered complete when there is one successfully completed Pod for each index. When value is `Indexed`, .spec.completions must be specified and `.spec.parallelism` must be less than or equal to 10^5. In addition, The Pod name takes the form `$(job-name)-$(index)-$(random-string)`, the Pod hostname takes the form `$(job-name)-$(index)`.\n\nMore completion modes can be added in the future. If the Job controller observes a mode that it doesn't recognize, which is possible during upgrades due to version skew, the controller skips updates for the Job.",
           "type": "string"
         },
         "completions": {
@@ -3610,7 +4229,7 @@
           "description": "A label query over pods that should match the pod count. Normally, the system sets this field for you. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors"
         },
         "suspend": {
-          "description": "Suspend specifies whether the Job controller should create Pods or not. If a Job is created with suspend set to true, no Pods are created by the Job controller. If a Job is suspended after creation (i.e. the flag goes from false to true), the Job controller will delete all active Pods associated with this Job. Users must design their workload to gracefully handle this. Suspending a Job will reset the StartTime field of the Job, effectively resetting the ActiveDeadlineSeconds timer too. Defaults to false.\n\nThis field is beta-level, gated by SuspendJob feature flag (enabled by default).",
+          "description": "Suspend specifies whether the Job controller should create Pods or not. If a Job is created with suspend set to true, no Pods are created by the Job controller. If a Job is suspended after creation (i.e. the flag goes from false to true), the Job controller will delete all active Pods associated with this Job. Users must design their workload to gracefully handle this. Suspending a Job will reset the StartTime field of the Job, effectively resetting the ActiveDeadlineSeconds timer too. Defaults to false.",
           "type": "boolean"
         },
         "template": {
@@ -3618,7 +4237,7 @@
           "description": "Describes the pod that will be created when executing a job. More info: https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/"
         },
         "ttlSecondsAfterFinished": {
-          "description": "ttlSecondsAfterFinished limits the lifetime of a Job that has finished execution (either Complete or Failed). If this field is set, ttlSecondsAfterFinished after the Job finishes, it is eligible to be automatically deleted. When the Job is being deleted, its lifecycle guarantees (e.g. finalizers) will be honored. If this field is unset, the Job won't be automatically deleted. If this field is set to zero, the Job becomes eligible to be deleted immediately after it finishes. This field is alpha-level and is only honored by servers that enable the TTLAfterFinished feature.",
+          "description": "ttlSecondsAfterFinished limits the lifetime of a Job that has finished execution (either Complete or Failed). If this field is set, ttlSecondsAfterFinished after the Job finishes, it is eligible to be automatically deleted. When the Job is being deleted, its lifecycle guarantees (e.g. finalizers) will be honored. If this field is unset, the Job won't be automatically deleted. If this field is set to zero, the Job becomes eligible to be deleted immediately after it finishes.",
           "format": "int32",
           "type": "integer"
         }
@@ -3632,7 +4251,7 @@
       "description": "JobStatus represents the current state of a Job.",
       "properties": {
         "active": {
-          "description": "The number of actively running pods.",
+          "description": "The number of pending and running pods.",
           "format": "int32",
           "type": "integer"
         },
@@ -3659,6 +4278,11 @@
           "format": "int32",
           "type": "integer"
         },
+        "ready": {
+          "description": "The number of pods which have a Ready condition.\n\nThis field is beta-level. The job controller populates the field when the feature gate JobReadyPods is enabled (enabled by default).",
+          "format": "int32",
+          "type": "integer"
+        },
         "startTime": {
           "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time",
           "description": "Represents time when the job controller started processing a job. When a Job is created in the suspended state, this field is not set until the first time it is resumed. This field is reset every time a Job is resumed from suspension. It is represented in RFC3339 form and is in UTC."
@@ -3670,7 +4294,7 @@
         },
         "uncountedTerminatedPods": {
           "$ref": "#/definitions/io.k8s.api.batch.v1.UncountedTerminatedPods",
-          "description": "UncountedTerminatedPods holds the UIDs of Pods that have terminated but the job controller hasn't yet accounted for in the status counters.\n\nThe job controller creates pods with a finalizer. When a pod terminates (succeeded or failed), the controller does three steps to account for it in the job status: (1) Add the pod UID to the arrays in this field. (2) Remove the pod finalizer. (3) Remove the pod UID from the arrays while increasing the corresponding\n    counter.\n\nThis field is alpha-level. The job controller only makes use of this field when the feature gate PodTrackingWithFinalizers is enabled. Old jobs might not be tracked using this field, in which case the field remains null."
+          "description": "UncountedTerminatedPods holds the UIDs of Pods that have terminated but the job controller hasn't yet accounted for in the status counters.\n\nThe job controller creates pods with a finalizer. When a pod terminates (succeeded or failed), the controller does three steps to account for it in the job status: (1) Add the pod UID to the arrays in this field. (2) Remove the pod finalizer. (3) Remove the pod UID from the arrays while increasing the corresponding\n    counter.\n\nThis field is beta-level. The job controller only makes use of this field when the feature gate JobTrackingWithFinalizers is enabled (enabled by default). Old jobs might not be tracked using this field, in which case the field remains null."
         }
       },
       "type": "object"
@@ -3812,6 +4436,10 @@
         "suspend": {
           "description": "This flag tells the controller to suspend subsequent executions, it does not apply to already started executions.  Defaults to false.",
           "type": "boolean"
+        },
+        "timeZone": {
+          "description": "The time zone for the given schedule, see https://en.wikipedia.org/wiki/List_of_tz_database_time_zones. If not specified, this will rely on the time zone of the kube-controller-manager process. ALPHA: This field is in alpha and must be enabled via the `CronJobTimeZone` feature gate.",
+          "type": "string"
         }
       },
       "required": [
@@ -3963,7 +4591,7 @@
       "description": "CertificateSigningRequestSpec contains the certificate request.",
       "properties": {
         "expirationSeconds": {
-          "description": "expirationSeconds is the requested duration of validity of the issued certificate. The certificate signer may issue a certificate with a different validity duration so a client must check the delta between the notBefore and and notAfter fields in the issued certificate to determine the actual duration.\n\nThe v1.22+ in-tree implementations of the well-known Kubernetes signers will honor this field as long as the requested duration is not greater than the maximum duration they will honor per the --cluster-signing-duration CLI flag to the Kubernetes controller manager.\n\nCertificate signers may not honor this field for various reasons:\n\n  1. Old signer that is unaware of the field (such as the in-tree\n     implementations prior to v1.22)\n  2. Signer whose configured maximum is shorter than the requested duration\n  3. Signer whose configured minimum is longer than the requested duration\n\nThe minimum valid value for expirationSeconds is 600, i.e. 10 minutes.\n\nAs of v1.22, this field is beta and is controlled via the CSRDuration feature gate.",
+          "description": "expirationSeconds is the requested duration of validity of the issued certificate. The certificate signer may issue a certificate with a different validity duration so a client must check the delta between the notBefore and and notAfter fields in the issued certificate to determine the actual duration.\n\nThe v1.22+ in-tree implementations of the well-known Kubernetes signers will honor this field as long as the requested duration is not greater than the maximum duration they will honor per the --cluster-signing-duration CLI flag to the Kubernetes controller manager.\n\nCertificate signers may not honor this field for various reasons:\n\n  1. Old signer that is unaware of the field (such as the in-tree\n     implementations prior to v1.22)\n  2. Signer whose configured maximum is shorter than the requested duration\n  3. Signer whose configured minimum is longer than the requested duration\n\nThe minimum valid value for expirationSeconds is 600, i.e. 10 minutes.",
           "format": "int32",
           "type": "integer"
         },
@@ -4137,20 +4765,20 @@
       "description": "Represents a Persistent Disk resource in AWS.\n\nAn AWS EBS disk must exist before mounting to a container. The disk must also be in the same AWS zone as the kubelet. An AWS EBS disk can only be mounted as read/write once. AWS EBS volumes support ownership management and SELinux relabeling.",
       "properties": {
         "fsType": {
-          "description": "Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+          "description": "fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
           "type": "string"
         },
         "partition": {
-          "description": "The partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as \"1\". Similarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).",
+          "description": "partition is the partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as \"1\". Similarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).",
           "format": "int32",
           "type": "integer"
         },
         "readOnly": {
-          "description": "Specify \"true\" to force and set the ReadOnly property in VolumeMounts to \"true\". If omitted, the default is \"false\". More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+          "description": "readOnly value true will force the readOnly setting in VolumeMounts. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
           "type": "boolean"
         },
         "volumeID": {
-          "description": "Unique ID of the persistent disk resource in AWS (Amazon EBS volume). More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+          "description": "volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume). More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
           "type": "string"
         }
       },
@@ -4199,27 +4827,27 @@
       "description": "AzureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.",
       "properties": {
         "cachingMode": {
-          "description": "Host Caching mode: None, Read Only, Read Write.",
+          "description": "cachingMode is the Host Caching mode: None, Read Only, Read Write.",
           "type": "string"
         },
         "diskName": {
-          "description": "The Name of the data disk in the blob storage",
+          "description": "diskName is the Name of the data disk in the blob storage",
           "type": "string"
         },
         "diskURI": {
-          "description": "The URI the data disk in the blob storage",
+          "description": "diskURI is the URI of data disk in the blob storage",
           "type": "string"
         },
         "fsType": {
-          "description": "Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.",
+          "description": "fsType is Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.",
           "type": "string"
         },
         "kind": {
-          "description": "Expected values Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared",
+          "description": "kind expected values are Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared",
           "type": "string"
         },
         "readOnly": {
-          "description": "Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.",
+          "description": "readOnly Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.",
           "type": "boolean"
         }
       },
@@ -4233,19 +4861,19 @@
       "description": "AzureFile represents an Azure File Service mount on the host and bind mount to the pod.",
       "properties": {
         "readOnly": {
-          "description": "Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.",
+          "description": "readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.",
           "type": "boolean"
         },
         "secretName": {
-          "description": "the name of secret that contains Azure Storage Account Name and Key",
+          "description": "secretName is the name of secret that contains Azure Storage Account Name and Key",
           "type": "string"
         },
         "secretNamespace": {
-          "description": "the namespace of the secret that contains Azure Storage Account Name and Key default is the same as the Pod",
+          "description": "secretNamespace is the namespace of the secret that contains Azure Storage Account Name and Key default is the same as the Pod",
           "type": "string"
         },
         "shareName": {
-          "description": "Share Name",
+          "description": "shareName is the azure Share Name",
           "type": "string"
         }
       },
@@ -4259,15 +4887,15 @@
       "description": "AzureFile represents an Azure File Service mount on the host and bind mount to the pod.",
       "properties": {
         "readOnly": {
-          "description": "Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.",
+          "description": "readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.",
           "type": "boolean"
         },
         "secretName": {
-          "description": "the name of secret that contains Azure Storage Account Name and Key",
+          "description": "secretName is the  name of secret that contains Azure Storage Account Name and Key",
           "type": "string"
         },
         "shareName": {
-          "description": "Share Name",
+          "description": "shareName is the azure share Name",
           "type": "string"
         }
       },
@@ -4314,41 +4942,41 @@
       "properties": {
         "controllerExpandSecretRef": {
           "$ref": "#/definitions/io.k8s.api.core.v1.SecretReference",
-          "description": "ControllerExpandSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI ControllerExpandVolume call. This is an alpha field and requires enabling ExpandCSIVolumes feature gate. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed."
+          "description": "controllerExpandSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI ControllerExpandVolume call. This is an alpha field and requires enabling ExpandCSIVolumes feature gate. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed."
         },
         "controllerPublishSecretRef": {
           "$ref": "#/definitions/io.k8s.api.core.v1.SecretReference",
-          "description": "ControllerPublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI ControllerPublishVolume and ControllerUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed."
+          "description": "controllerPublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI ControllerPublishVolume and ControllerUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed."
         },
         "driver": {
-          "description": "Driver is the name of the driver to use for this volume. Required.",
+          "description": "driver is the name of the driver to use for this volume. Required.",
           "type": "string"
         },
         "fsType": {
-          "description": "Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\".",
+          "description": "fsType to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\".",
           "type": "string"
         },
         "nodePublishSecretRef": {
           "$ref": "#/definitions/io.k8s.api.core.v1.SecretReference",
-          "description": "NodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed."
+          "description": "nodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed."
         },
         "nodeStageSecretRef": {
           "$ref": "#/definitions/io.k8s.api.core.v1.SecretReference",
-          "description": "NodeStageSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodeStageVolume and NodeStageVolume and NodeUnstageVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed."
+          "description": "nodeStageSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodeStageVolume and NodeStageVolume and NodeUnstageVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed."
         },
         "readOnly": {
-          "description": "Optional: The value to pass to ControllerPublishVolumeRequest. Defaults to false (read/write).",
+          "description": "readOnly value to pass to ControllerPublishVolumeRequest. Defaults to false (read/write).",
           "type": "boolean"
         },
         "volumeAttributes": {
           "additionalProperties": {
             "type": "string"
           },
-          "description": "Attributes of the volume to publish.",
+          "description": "volumeAttributes of the volume to publish.",
           "type": "object"
         },
         "volumeHandle": {
-          "description": "VolumeHandle is the unique volume name returned by the CSI volume plugin’s CreateVolume to refer to the volume on all subsequent calls. Required.",
+          "description": "volumeHandle is the unique volume name returned by the CSI volume plugin’s CreateVolume to refer to the volume on all subsequent calls. Required.",
           "type": "string"
         }
       },
@@ -4362,26 +4990,26 @@
       "description": "Represents a source location of a volume to mount, managed by an external CSI driver",
       "properties": {
         "driver": {
-          "description": "Driver is the name of the CSI driver that handles this volume. Consult with your admin for the correct name as registered in the cluster.",
+          "description": "driver is the name of the CSI driver that handles this volume. Consult with your admin for the correct name as registered in the cluster.",
           "type": "string"
         },
         "fsType": {
-          "description": "Filesystem type to mount. Ex. \"ext4\", \"xfs\", \"ntfs\". If not provided, the empty value is passed to the associated CSI driver which will determine the default filesystem to apply.",
+          "description": "fsType to mount. Ex. \"ext4\", \"xfs\", \"ntfs\". If not provided, the empty value is passed to the associated CSI driver which will determine the default filesystem to apply.",
           "type": "string"
         },
         "nodePublishSecretRef": {
           "$ref": "#/definitions/io.k8s.api.core.v1.LocalObjectReference",
-          "description": "NodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and  may be empty if no secret is required. If the secret object contains more than one secret, all secret references are passed."
+          "description": "nodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and  may be empty if no secret is required. If the secret object contains more than one secret, all secret references are passed."
         },
         "readOnly": {
-          "description": "Specifies a read-only configuration for the volume. Defaults to false (read/write).",
+          "description": "readOnly specifies a read-only configuration for the volume. Defaults to false (read/write).",
           "type": "boolean"
         },
         "volumeAttributes": {
           "additionalProperties": {
             "type": "string"
           },
-          "description": "VolumeAttributes stores driver-specific properties that are passed to the CSI driver. Consult your driver's documentation for supported values.",
+          "description": "volumeAttributes stores driver-specific properties that are passed to the CSI driver. Consult your driver's documentation for supported values.",
           "type": "object"
         }
       },
@@ -4414,30 +5042,30 @@
       "description": "Represents a Ceph Filesystem mount that lasts the lifetime of a pod Cephfs volumes do not support ownership management or SELinux relabeling.",
       "properties": {
         "monitors": {
-          "description": "Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+          "description": "monitors is Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
           "items": {
             "type": "string"
           },
           "type": "array"
         },
         "path": {
-          "description": "Optional: Used as the mounted root, rather than the full Ceph tree, default is /",
+          "description": "path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /",
           "type": "string"
         },
         "readOnly": {
-          "description": "Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+          "description": "readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
           "type": "boolean"
         },
         "secretFile": {
-          "description": "Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+          "description": "secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
           "type": "string"
         },
         "secretRef": {
           "$ref": "#/definitions/io.k8s.api.core.v1.SecretReference",
-          "description": "Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it"
+          "description": "secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it"
         },
         "user": {
-          "description": "Optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+          "description": "user is Optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
           "type": "string"
         }
       },
@@ -4450,30 +5078,30 @@
       "description": "Represents a Ceph Filesystem mount that lasts the lifetime of a pod Cephfs volumes do not support ownership management or SELinux relabeling.",
       "properties": {
         "monitors": {
-          "description": "Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+          "description": "monitors is Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
           "items": {
             "type": "string"
           },
           "type": "array"
         },
         "path": {
-          "description": "Optional: Used as the mounted root, rather than the full Ceph tree, default is /",
+          "description": "path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /",
           "type": "string"
         },
         "readOnly": {
-          "description": "Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+          "description": "readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
           "type": "boolean"
         },
         "secretFile": {
-          "description": "Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+          "description": "secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
           "type": "string"
         },
         "secretRef": {
           "$ref": "#/definitions/io.k8s.api.core.v1.LocalObjectReference",
-          "description": "Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it"
+          "description": "secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it"
         },
         "user": {
-          "description": "Optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+          "description": "user is optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
           "type": "string"
         }
       },
@@ -4486,19 +5114,19 @@
       "description": "Represents a cinder volume resource in Openstack. A Cinder volume must exist before mounting to a container. The volume must also be in the same region as the kubelet. Cinder volumes support ownership management and SELinux relabeling.",
       "properties": {
         "fsType": {
-          "description": "Filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+          "description": "fsType Filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
           "type": "string"
         },
         "readOnly": {
-          "description": "Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+          "description": "readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
           "type": "boolean"
         },
         "secretRef": {
           "$ref": "#/definitions/io.k8s.api.core.v1.SecretReference",
-          "description": "Optional: points to a secret object containing parameters used to connect to OpenStack."
+          "description": "secretRef is Optional: points to a secret object containing parameters used to connect to OpenStack."
         },
         "volumeID": {
-          "description": "volume id used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+          "description": "volumeID used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
           "type": "string"
         }
       },
@@ -4511,19 +5139,19 @@
       "description": "Represents a cinder volume resource in Openstack. A Cinder volume must exist before mounting to a container. The volume must also be in the same region as the kubelet. Cinder volumes support ownership management and SELinux relabeling.",
       "properties": {
         "fsType": {
-          "description": "Filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+          "description": "fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
           "type": "string"
         },
         "readOnly": {
-          "description": "Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+          "description": "readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
           "type": "boolean"
         },
         "secretRef": {
           "$ref": "#/definitions/io.k8s.api.core.v1.LocalObjectReference",
-          "description": "Optional: points to a secret object containing parameters used to connect to OpenStack."
+          "description": "secretRef is optional: points to a secret object containing parameters used to connect to OpenStack."
         },
         "volumeID": {
-          "description": "volume id used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+          "description": "volumeID used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
           "type": "string"
         }
       },
@@ -4788,7 +5416,7 @@
       "description": "Adapts a ConfigMap into a projected volume.\n\nThe contents of the target ConfigMap's Data field will be presented in a projected volume as files using the keys in the Data field as the file names, unless the items element is populated with specific mappings of keys to paths. Note that this is identical to a configmap volume source without the default mode.",
       "properties": {
         "items": {
-          "description": "If unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.",
+          "description": "items if unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.",
           "items": {
             "$ref": "#/definitions/io.k8s.api.core.v1.KeyToPath"
           },
@@ -4799,7 +5427,7 @@
           "type": "string"
         },
         "optional": {
-          "description": "Specify whether the ConfigMap or its keys must be defined",
+          "description": "optional specify whether the ConfigMap or its keys must be defined",
           "type": "boolean"
         }
       },
@@ -4809,12 +5437,12 @@
       "description": "Adapts a ConfigMap into a volume.\n\nThe contents of the target ConfigMap's Data field will be presented in a volume as files using the keys in the Data field as the file names, unless the items element is populated with specific mappings of keys to paths. ConfigMap volumes support ownership management and SELinux relabeling.",
       "properties": {
         "defaultMode": {
-          "description": "Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.",
+          "description": "defaultMode is optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.",
           "format": "int32",
           "type": "integer"
         },
         "items": {
-          "description": "If unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.",
+          "description": "items if unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.",
           "items": {
             "$ref": "#/definitions/io.k8s.api.core.v1.KeyToPath"
           },
@@ -4825,7 +5453,7 @@
           "type": "string"
         },
         "optional": {
-          "description": "Specify whether the ConfigMap or its keys must be defined",
+          "description": "optional specify whether the ConfigMap or its keys must be defined",
           "type": "boolean"
         }
       },
@@ -4835,14 +5463,14 @@
       "description": "A single application container that you want to run within a pod.",
       "properties": {
         "args": {
-          "description": "Arguments to the entrypoint. The docker image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell",
+          "description": "Arguments to the entrypoint. The container image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell",
           "items": {
             "type": "string"
           },
           "type": "array"
         },
         "command": {
-          "description": "Entrypoint array. Not executed within a shell. The docker image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell",
+          "description": "Entrypoint array. Not executed within a shell. The container image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell",
           "items": {
             "type": "string"
           },
@@ -4865,11 +5493,11 @@
           "type": "array"
         },
         "image": {
-          "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images This field is optional to allow higher level config management to default or override container images in workload controllers like Deployments and StatefulSets.",
+          "description": "Container image name. More info: https://kubernetes.io/docs/concepts/containers/images This field is optional to allow higher level config management to default or override container images in workload controllers like Deployments and StatefulSets.",
           "type": "string"
         },
         "imagePullPolicy": {
-          "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images",
+          "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images\n\n",
           "type": "string"
         },
         "lifecycle": {
@@ -4927,7 +5555,7 @@
           "type": "string"
         },
         "terminationMessagePolicy": {
-          "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the container status message on both success and failure. FallbackToLogsOnError will use the last chunk of container log output if the termination message file is empty and the container exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.",
+          "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the container status message on both success and failure. FallbackToLogsOnError will use the last chunk of container log output if the termination message file is empty and the container exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.\n\n",
           "type": "string"
         },
         "tty": {
@@ -5002,7 +5630,7 @@
           "type": "string"
         },
         "protocol": {
-          "description": "Protocol for port. Must be UDP, TCP, or SCTP. Defaults to \"TCP\".",
+          "description": "Protocol for port. Must be UDP, TCP, or SCTP. Defaults to \"TCP\".\n\n",
           "type": "string"
         }
       },
@@ -5043,7 +5671,7 @@
       "description": "ContainerStateTerminated is a terminated state of a container.",
       "properties": {
         "containerID": {
-          "description": "Container's ID in the format 'docker://<container_id>'",
+          "description": "Container's ID in the format '<type>://<container_id>'",
           "type": "string"
         },
         "exitCode": {
@@ -5096,11 +5724,11 @@
       "description": "ContainerStatus contains details for the current status of this container.",
       "properties": {
         "containerID": {
-          "description": "Container's ID in the format 'docker://<container_id>'.",
+          "description": "Container's ID in the format '<type>://<container_id>'.",
           "type": "string"
         },
         "image": {
-          "description": "The image the container is running. More info: https://kubernetes.io/docs/concepts/containers/images",
+          "description": "The image the container is running. More info: https://kubernetes.io/docs/concepts/containers/images.",
           "type": "string"
         },
         "imageID": {
@@ -5120,7 +5748,7 @@
           "type": "boolean"
         },
         "restartCount": {
-          "description": "The number of times the container has been restarted, currently based on the number of dead containers that have not yet been removed. Note that this is calculated from dead containers. But those containers are subject to garbage collection. This value will get capped at 5 by GC.",
+          "description": "The number of times the container has been restarted.",
           "format": "int32",
           "type": "integer"
         },
@@ -5217,12 +5845,12 @@
       "description": "Represents an empty directory for a pod. Empty directory volumes support ownership management and SELinux relabeling.",
       "properties": {
         "medium": {
-          "description": "What type of storage medium should back this directory. The default is \"\" which means to use the node's default medium. Must be an empty string (default) or Memory. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+          "description": "medium represents what type of storage medium should back this directory. The default is \"\" which means to use the node's default medium. Must be an empty string (default) or Memory. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
           "type": "string"
         },
         "sizeLimit": {
           "$ref": "#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity",
-          "description": "Total amount of local storage required for this EmptyDir volume. The size limit is also applicable for memory medium. The maximum usage on memory medium EmptyDir would be the minimum value between the SizeLimit specified here and the sum of memory limits of all containers in a pod. The default is nil which means that the limit is undefined. More info: http://kubernetes.io/docs/user-guide/volumes#emptydir"
+          "description": "sizeLimit is the total amount of local storage required for this EmptyDir volume. The size limit is also applicable for memory medium. The maximum usage on memory medium EmptyDir would be the minimum value between the SizeLimit specified here and the sum of memory limits of all containers in a pod. The default is nil which means that the limit is undefined. More info: http://kubernetes.io/docs/user-guide/volumes#emptydir"
         }
       },
       "type": "object"
@@ -5257,7 +5885,7 @@
       "description": "EndpointPort is a tuple that describes a single port.",
       "properties": {
         "appProtocol": {
-          "description": "The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and http://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.",
+          "description": "The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and https://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.",
           "type": "string"
         },
         "name": {
@@ -5270,7 +5898,7 @@
           "type": "integer"
         },
         "protocol": {
-          "description": "The IP protocol for this port. Must be UDP, TCP, or SCTP. Default is TCP.",
+          "description": "The IP protocol for this port. Must be UDP, TCP, or SCTP. Default is TCP.\n\n",
           "type": "string"
         }
       },
@@ -5436,17 +6064,17 @@
       "type": "object"
     },
     "io.k8s.api.core.v1.EphemeralContainer": {
-      "description": "An EphemeralContainer is a container that may be added temporarily to an existing pod for user-initiated activities such as debugging. Ephemeral containers have no resource or scheduling guarantees, and they will not be restarted when they exit or when a pod is removed or restarted. If an ephemeral container causes a pod to exceed its resource allocation, the pod may be evicted. Ephemeral containers may not be added by directly updating the pod spec. They must be added via the pod's ephemeralcontainers subresource, and they will appear in the pod spec once added. This is an alpha feature enabled by the EphemeralContainers feature flag.",
+      "description": "An EphemeralContainer is a temporary container that you may add to an existing Pod for user-initiated activities such as debugging. Ephemeral containers have no resource or scheduling guarantees, and they will not be restarted when they exit or when a Pod is removed or restarted. The kubelet may evict a Pod if an ephemeral container causes the Pod to exceed its resource allocation.\n\nTo add an ephemeral container, use the ephemeralcontainers subresource of an existing Pod. Ephemeral containers may not be removed or restarted.\n\nThis is a beta feature available on clusters that haven't disabled the EphemeralContainers feature gate.",
       "properties": {
         "args": {
-          "description": "Arguments to the entrypoint. The docker image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell",
+          "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell",
           "items": {
             "type": "string"
           },
           "type": "array"
         },
         "command": {
-          "description": "Entrypoint array. Not executed within a shell. The docker image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell",
+          "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell",
           "items": {
             "type": "string"
           },
@@ -5469,11 +6097,11 @@
           "type": "array"
         },
         "image": {
-          "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images",
+          "description": "Container image name. More info: https://kubernetes.io/docs/concepts/containers/images",
           "type": "string"
         },
         "imagePullPolicy": {
-          "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images",
+          "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images\n\n",
           "type": "string"
         },
         "lifecycle": {
@@ -5493,7 +6121,14 @@
           "items": {
             "$ref": "#/definitions/io.k8s.api.core.v1.ContainerPort"
           },
-          "type": "array"
+          "type": "array",
+          "x-kubernetes-list-map-keys": [
+            "containerPort",
+            "protocol"
+          ],
+          "x-kubernetes-list-type": "map",
+          "x-kubernetes-patch-merge-key": "containerPort",
+          "x-kubernetes-patch-strategy": "merge"
         },
         "readinessProbe": {
           "$ref": "#/definitions/io.k8s.api.core.v1.Probe",
@@ -5520,7 +6155,7 @@
           "type": "boolean"
         },
         "targetContainerName": {
-          "description": "If set, the name of the container from PodSpec that this ephemeral container targets. The ephemeral container will be run in the namespaces (IPC, PID, etc) of this container. If not set then the ephemeral container is run in whatever namespaces are shared for the pod. Note that the container runtime must support this feature.",
+          "description": "If set, the name of the container from PodSpec that this ephemeral container targets. The ephemeral container will be run in the namespaces (IPC, PID, etc) of this container. If not set then the ephemeral container uses the namespaces configured in the Pod spec.\n\nThe container runtime must implement support for this feature. If the runtime does not support namespace targeting then the result of setting this field is undefined.",
           "type": "string"
         },
         "terminationMessagePath": {
@@ -5528,7 +6163,7 @@
           "type": "string"
         },
         "terminationMessagePolicy": {
-          "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the container status message on both success and failure. FallbackToLogsOnError will use the last chunk of container log output if the termination message file is empty and the container exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.",
+          "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the container status message on both success and failure. FallbackToLogsOnError will use the last chunk of container log output if the termination message file is empty and the container exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.\n\n",
           "type": "string"
         },
         "tty": {
@@ -5545,7 +6180,7 @@
           "x-kubernetes-patch-strategy": "merge"
         },
         "volumeMounts": {
-          "description": "Pod volumes to mount into the container's filesystem. Cannot be updated.",
+          "description": "Pod volumes to mount into the container's filesystem. Subpath mounts are not allowed for ephemeral containers. Cannot be updated.",
           "items": {
             "$ref": "#/definitions/io.k8s.api.core.v1.VolumeMount"
           },
@@ -5740,27 +6375,27 @@
       "description": "Represents a Fibre Channel volume. Fibre Channel volumes can only be mounted as read/write once. Fibre Channel volumes support ownership management and SELinux relabeling.",
       "properties": {
         "fsType": {
-          "description": "Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.",
+          "description": "fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.",
           "type": "string"
         },
         "lun": {
-          "description": "Optional: FC target lun number",
+          "description": "lun is Optional: FC target lun number",
           "format": "int32",
           "type": "integer"
         },
         "readOnly": {
-          "description": "Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.",
+          "description": "readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.",
           "type": "boolean"
         },
         "targetWWNs": {
-          "description": "Optional: FC target worldwide names (WWNs)",
+          "description": "targetWWNs is Optional: FC target worldwide names (WWNs)",
           "items": {
             "type": "string"
           },
           "type": "array"
         },
         "wwids": {
-          "description": "Optional: FC volume world wide identifiers (wwids) Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.",
+          "description": "wwids Optional: FC volume world wide identifiers (wwids) Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.",
           "items": {
             "type": "string"
           },
@@ -5773,27 +6408,27 @@
       "description": "FlexPersistentVolumeSource represents a generic persistent volume resource that is provisioned/attached using an exec based plugin.",
       "properties": {
         "driver": {
-          "description": "Driver is the name of the driver to use for this volume.",
+          "description": "driver is the name of the driver to use for this volume.",
           "type": "string"
         },
         "fsType": {
-          "description": "Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". The default filesystem depends on FlexVolume script.",
+          "description": "fsType is the Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". The default filesystem depends on FlexVolume script.",
           "type": "string"
         },
         "options": {
           "additionalProperties": {
             "type": "string"
           },
-          "description": "Optional: Extra command options if any.",
+          "description": "options is Optional: this field holds extra command options if any.",
           "type": "object"
         },
         "readOnly": {
-          "description": "Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.",
+          "description": "readOnly is Optional: defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.",
           "type": "boolean"
         },
         "secretRef": {
           "$ref": "#/definitions/io.k8s.api.core.v1.SecretReference",
-          "description": "Optional: SecretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts."
+          "description": "secretRef is Optional: SecretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts."
         }
       },
       "required": [
@@ -5805,27 +6440,27 @@
       "description": "FlexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin.",
       "properties": {
         "driver": {
-          "description": "Driver is the name of the driver to use for this volume.",
+          "description": "driver is the name of the driver to use for this volume.",
           "type": "string"
         },
         "fsType": {
-          "description": "Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". The default filesystem depends on FlexVolume script.",
+          "description": "fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". The default filesystem depends on FlexVolume script.",
           "type": "string"
         },
         "options": {
           "additionalProperties": {
             "type": "string"
           },
-          "description": "Optional: Extra command options if any.",
+          "description": "options is Optional: this field holds extra command options if any.",
           "type": "object"
         },
         "readOnly": {
-          "description": "Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.",
+          "description": "readOnly is Optional: defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.",
           "type": "boolean"
         },
         "secretRef": {
           "$ref": "#/definitions/io.k8s.api.core.v1.LocalObjectReference",
-          "description": "Optional: SecretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts."
+          "description": "secretRef is Optional: secretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts."
         }
       },
       "required": [
@@ -5837,11 +6472,11 @@
       "description": "Represents a Flocker volume mounted by the Flocker agent. One and only one of datasetName and datasetUUID should be set. Flocker volumes do not support ownership management or SELinux relabeling.",
       "properties": {
         "datasetName": {
-          "description": "Name of the dataset stored as metadata -> name on the dataset for Flocker should be considered as deprecated",
+          "description": "datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker should be considered as deprecated",
           "type": "string"
         },
         "datasetUUID": {
-          "description": "UUID of the dataset. This is unique identifier of a Flocker dataset",
+          "description": "datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset",
           "type": "string"
         }
       },
@@ -5851,20 +6486,20 @@
       "description": "Represents a Persistent Disk resource in Google Compute Engine.\n\nA GCE PD must exist before mounting to a container. The disk must also be in the same GCE project and zone as the kubelet. A GCE PD can only be mounted as read/write once or read-only many times. GCE PDs support ownership management and SELinux relabeling.",
       "properties": {
         "fsType": {
-          "description": "Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+          "description": "fsType is filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
           "type": "string"
         },
         "partition": {
-          "description": "The partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as \"1\". Similarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty). More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+          "description": "partition is the partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as \"1\". Similarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty). More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
           "format": "int32",
           "type": "integer"
         },
         "pdName": {
-          "description": "Unique name of the PD resource in GCE. Used to identify the disk in GCE. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+          "description": "pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
           "type": "string"
         },
         "readOnly": {
-          "description": "ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+          "description": "readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
           "type": "boolean"
         }
       },
@@ -5873,19 +6508,36 @@
       ],
       "type": "object"
     },
+    "io.k8s.api.core.v1.GRPCAction": {
+      "properties": {
+        "port": {
+          "description": "Port number of the gRPC service. Number must be in the range 1 to 65535.",
+          "format": "int32",
+          "type": "integer"
+        },
+        "service": {
+          "description": "Service is the name of the service to place in the gRPC HealthCheckRequest (see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.",
+          "type": "string"
+        }
+      },
+      "required": [
+        "port"
+      ],
+      "type": "object"
+    },
     "io.k8s.api.core.v1.GitRepoVolumeSource": {
       "description": "Represents a volume that is populated with the contents of a git repository. Git repo volumes do not support ownership management. Git repo volumes support SELinux relabeling.\n\nDEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod's container.",
       "properties": {
         "directory": {
-          "description": "Target directory name. Must not contain or start with '..'.  If '.' is supplied, the volume directory will be the git repository.  Otherwise, if specified, the volume will contain the git repository in the subdirectory with the given name.",
+          "description": "directory is the target directory name. Must not contain or start with '..'.  If '.' is supplied, the volume directory will be the git repository.  Otherwise, if specified, the volume will contain the git repository in the subdirectory with the given name.",
           "type": "string"
         },
         "repository": {
-          "description": "Repository URL",
+          "description": "repository is the URL",
           "type": "string"
         },
         "revision": {
-          "description": "Commit hash for the specified revision.",
+          "description": "revision is the commit hash for the specified revision.",
           "type": "string"
         }
       },
@@ -5898,19 +6550,19 @@
       "description": "Represents a Glusterfs mount that lasts the lifetime of a pod. Glusterfs volumes do not support ownership management or SELinux relabeling.",
       "properties": {
         "endpoints": {
-          "description": "EndpointsName is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+          "description": "endpoints is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
           "type": "string"
         },
         "endpointsNamespace": {
-          "description": "EndpointsNamespace is the namespace that contains Glusterfs endpoint. If this field is empty, the EndpointNamespace defaults to the same namespace as the bound PVC. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+          "description": "endpointsNamespace is the namespace that contains Glusterfs endpoint. If this field is empty, the EndpointNamespace defaults to the same namespace as the bound PVC. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
           "type": "string"
         },
         "path": {
-          "description": "Path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+          "description": "path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
           "type": "string"
         },
         "readOnly": {
-          "description": "ReadOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+          "description": "readOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
           "type": "boolean"
         }
       },
@@ -5924,15 +6576,15 @@
       "description": "Represents a Glusterfs mount that lasts the lifetime of a pod. Glusterfs volumes do not support ownership management or SELinux relabeling.",
       "properties": {
         "endpoints": {
-          "description": "EndpointsName is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+          "description": "endpoints is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
           "type": "string"
         },
         "path": {
-          "description": "Path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+          "description": "path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
           "type": "string"
         },
         "readOnly": {
-          "description": "ReadOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+          "description": "readOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
           "type": "boolean"
         }
       },
@@ -5965,7 +6617,7 @@
           "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME."
         },
         "scheme": {
-          "description": "Scheme to use for connecting to the host. Defaults to HTTP.",
+          "description": "Scheme to use for connecting to the host. Defaults to HTTP.\n\n",
           "type": "string"
         }
       },
@@ -5992,24 +6644,6 @@
       ],
       "type": "object"
     },
-    "io.k8s.api.core.v1.Handler": {
-      "description": "Handler defines a specific action that should be taken",
-      "properties": {
-        "exec": {
-          "$ref": "#/definitions/io.k8s.api.core.v1.ExecAction",
-          "description": "One and only one of the following should be specified. Exec specifies the action to take."
-        },
-        "httpGet": {
-          "$ref": "#/definitions/io.k8s.api.core.v1.HTTPGetAction",
-          "description": "HTTPGet specifies the http request to perform."
-        },
-        "tcpSocket": {
-          "$ref": "#/definitions/io.k8s.api.core.v1.TCPSocketAction",
-          "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported"
-        }
-      },
-      "type": "object"
-    },
     "io.k8s.api.core.v1.HostAlias": {
       "description": "HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the pod's hosts file.",
       "properties": {
@@ -6031,11 +6665,11 @@
       "description": "Represents a host path mapped into a pod. Host path volumes do not support ownership management or SELinux relabeling.",
       "properties": {
         "path": {
-          "description": "Path of the directory on the host. If the path is a symlink, it will follow the link to the real path. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
+          "description": "path of the directory on the host. If the path is a symlink, it will follow the link to the real path. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
           "type": "string"
         },
         "type": {
-          "description": "Type for HostPath Volume Defaults to \"\" More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
+          "description": "type for HostPath Volume Defaults to \"\" More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
           "type": "string"
         }
       },
@@ -6048,51 +6682,51 @@
       "description": "ISCSIPersistentVolumeSource represents an ISCSI disk. ISCSI volumes can only be mounted as read/write once. ISCSI volumes support ownership management and SELinux relabeling.",
       "properties": {
         "chapAuthDiscovery": {
-          "description": "whether support iSCSI Discovery CHAP authentication",
+          "description": "chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication",
           "type": "boolean"
         },
         "chapAuthSession": {
-          "description": "whether support iSCSI Session CHAP authentication",
+          "description": "chapAuthSession defines whether support iSCSI Session CHAP authentication",
           "type": "boolean"
         },
         "fsType": {
-          "description": "Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi",
+          "description": "fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi",
           "type": "string"
         },
         "initiatorName": {
-          "description": "Custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface <target portal>:<volume name> will be created for the connection.",
+          "description": "initiatorName is the custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface <target portal>:<volume name> will be created for the connection.",
           "type": "string"
         },
         "iqn": {
-          "description": "Target iSCSI Qualified Name.",
+          "description": "iqn is Target iSCSI Qualified Name.",
           "type": "string"
         },
         "iscsiInterface": {
-          "description": "iSCSI Interface Name that uses an iSCSI transport. Defaults to 'default' (tcp).",
+          "description": "iscsiInterface is the interface Name that uses an iSCSI transport. Defaults to 'default' (tcp).",
           "type": "string"
         },
         "lun": {
-          "description": "iSCSI Target Lun number.",
+          "description": "lun is iSCSI Target Lun number.",
           "format": "int32",
           "type": "integer"
         },
         "portals": {
-          "description": "iSCSI Target Portal List. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).",
+          "description": "portals is the iSCSI Target Portal List. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).",
           "items": {
             "type": "string"
           },
           "type": "array"
         },
         "readOnly": {
-          "description": "ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.",
+          "description": "readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.",
           "type": "boolean"
         },
         "secretRef": {
           "$ref": "#/definitions/io.k8s.api.core.v1.SecretReference",
-          "description": "CHAP Secret for iSCSI target and initiator authentication"
+          "description": "secretRef is the CHAP Secret for iSCSI target and initiator authentication"
         },
         "targetPortal": {
-          "description": "iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).",
+          "description": "targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).",
           "type": "string"
         }
       },
@@ -6107,51 +6741,51 @@
       "description": "Represents an ISCSI disk. ISCSI volumes can only be mounted as read/write once. ISCSI volumes support ownership management and SELinux relabeling.",
       "properties": {
         "chapAuthDiscovery": {
-          "description": "whether support iSCSI Discovery CHAP authentication",
+          "description": "chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication",
           "type": "boolean"
         },
         "chapAuthSession": {
-          "description": "whether support iSCSI Session CHAP authentication",
+          "description": "chapAuthSession defines whether support iSCSI Session CHAP authentication",
           "type": "boolean"
         },
         "fsType": {
-          "description": "Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi",
+          "description": "fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi",
           "type": "string"
         },
         "initiatorName": {
-          "description": "Custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface <target portal>:<volume name> will be created for the connection.",
+          "description": "initiatorName is the custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface <target portal>:<volume name> will be created for the connection.",
           "type": "string"
         },
         "iqn": {
-          "description": "Target iSCSI Qualified Name.",
+          "description": "iqn is the target iSCSI Qualified Name.",
           "type": "string"
         },
         "iscsiInterface": {
-          "description": "iSCSI Interface Name that uses an iSCSI transport. Defaults to 'default' (tcp).",
+          "description": "iscsiInterface is the interface Name that uses an iSCSI transport. Defaults to 'default' (tcp).",
           "type": "string"
         },
         "lun": {
-          "description": "iSCSI Target Lun number.",
+          "description": "lun represents iSCSI Target Lun number.",
           "format": "int32",
           "type": "integer"
         },
         "portals": {
-          "description": "iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).",
+          "description": "portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).",
           "items": {
             "type": "string"
           },
           "type": "array"
         },
         "readOnly": {
-          "description": "ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.",
+          "description": "readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.",
           "type": "boolean"
         },
         "secretRef": {
           "$ref": "#/definitions/io.k8s.api.core.v1.LocalObjectReference",
-          "description": "CHAP Secret for iSCSI target and initiator authentication"
+          "description": "secretRef is the CHAP Secret for iSCSI target and initiator authentication"
         },
         "targetPortal": {
-          "description": "iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).",
+          "description": "targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).",
           "type": "string"
         }
       },
@@ -6166,16 +6800,16 @@
       "description": "Maps a string key to a path within a volume.",
       "properties": {
         "key": {
-          "description": "The key to project.",
+          "description": "key is the key to project.",
           "type": "string"
         },
         "mode": {
-          "description": "Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.",
+          "description": "mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.",
           "format": "int32",
           "type": "integer"
         },
         "path": {
-          "description": "The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.",
+          "description": "path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.",
           "type": "string"
         }
       },
@@ -6189,12 +6823,30 @@
       "description": "Lifecycle describes actions that the management system should take in response to container lifecycle events. For the PostStart and PreStop lifecycle handlers, management of the container blocks until the action is complete, unless the container process fails, in which case the handler is aborted.",
       "properties": {
         "postStart": {
-          "$ref": "#/definitions/io.k8s.api.core.v1.Handler",
+          "$ref": "#/definitions/io.k8s.api.core.v1.LifecycleHandler",
           "description": "PostStart is called immediately after a container is created. If the handler fails, the container is terminated and restarted according to its restart policy. Other management of the container blocks until the hook completes. More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks"
         },
         "preStop": {
-          "$ref": "#/definitions/io.k8s.api.core.v1.Handler",
-          "description": "PreStop is called immediately before a container is terminated due to an API request or management event such as liveness/startup probe failure, preemption, resource contention, etc. The handler is not called if the container crashes or exits. The reason for termination is passed to the handler. The Pod's termination grace period countdown begins before the PreStop hooked is executed. Regardless of the outcome of the handler, the container will eventually terminate within the Pod's termination grace period. Other management of the container blocks until the hook completes or until the termination grace period is reached. More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks"
+          "$ref": "#/definitions/io.k8s.api.core.v1.LifecycleHandler",
+          "description": "PreStop is called immediately before a container is terminated due to an API request or management event such as liveness/startup probe failure, preemption, resource contention, etc. The handler is not called if the container crashes or exits. The Pod's termination grace period countdown begins before the PreStop hook is executed. Regardless of the outcome of the handler, the container will eventually terminate within the Pod's termination grace period (unless delayed by finalizers). Other management of the container blocks until the hook completes or until the termination grace period is reached. More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks"
+        }
+      },
+      "type": "object"
+    },
+    "io.k8s.api.core.v1.LifecycleHandler": {
+      "description": "LifecycleHandler defines a specific action that should be taken in a lifecycle hook. One and only one of the fields, except TCPSocket must be specified.",
+      "properties": {
+        "exec": {
+          "$ref": "#/definitions/io.k8s.api.core.v1.ExecAction",
+          "description": "Exec specifies the action to take."
+        },
+        "httpGet": {
+          "$ref": "#/definitions/io.k8s.api.core.v1.HTTPGetAction",
+          "description": "HTTPGet specifies the http request to perform."
+        },
+        "tcpSocket": {
+          "$ref": "#/definitions/io.k8s.api.core.v1.TCPSocketAction",
+          "description": "Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept for the backward compatibility. There are no validation of this field and lifecycle hooks will fail in runtime when tcp handler is specified."
         }
       },
       "type": "object"
@@ -6377,11 +7029,11 @@
       "description": "Local represents directly-attached storage with node affinity (Beta feature)",
       "properties": {
         "fsType": {
-          "description": "Filesystem type to mount. It applies only when the Path is a block device. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". The default value is to auto-select a fileystem if unspecified.",
+          "description": "fsType is the filesystem type to mount. It applies only when the Path is a block device. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". The default value is to auto-select a filesystem if unspecified.",
           "type": "string"
         },
         "path": {
-          "description": "The full path to the volume on the node. It can be either a directory or block device (disk, partition, ...).",
+          "description": "path of the full path to the volume on the node. It can be either a directory or block device (disk, partition, ...).",
           "type": "string"
         }
       },
@@ -6394,15 +7046,15 @@
       "description": "Represents an NFS mount that lasts the lifetime of a pod. NFS volumes do not support ownership management or SELinux relabeling.",
       "properties": {
         "path": {
-          "description": "Path that is exported by the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+          "description": "path that is exported by the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
           "type": "string"
         },
         "readOnly": {
-          "description": "ReadOnly here will force the NFS export to be mounted with read-only permissions. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+          "description": "readOnly here will force the NFS export to be mounted with read-only permissions. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
           "type": "boolean"
         },
         "server": {
-          "description": "Server is the hostname or IP address of the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+          "description": "server is the hostname or IP address of the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
           "type": "string"
         }
       },
@@ -6533,7 +7185,7 @@
           "x-kubernetes-patch-strategy": "merge"
         },
         "phase": {
-          "description": "Phase is the current lifecycle phase of the namespace. More info: https://kubernetes.io/docs/tasks/administer-cluster/namespaces/",
+          "description": "Phase is the current lifecycle phase of the namespace. More info: https://kubernetes.io/docs/tasks/administer-cluster/namespaces/\n\n",
           "type": "string"
         }
       },
@@ -6743,7 +7395,7 @@
           "type": "string"
         },
         "operator": {
-          "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+          "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.\n\n",
           "type": "string"
         },
         "values": {
@@ -6786,7 +7438,7 @@
       "properties": {
         "configSource": {
           "$ref": "#/definitions/io.k8s.api.core.v1.NodeConfigSource",
-          "description": "Deprecated. If specified, the source of the node's configuration. The DynamicKubeletConfig feature gate must be enabled for the Kubelet to use this field. This field is deprecated as of 1.22: https://git.k8s.io/enhancements/keps/sig-node/281-dynamic-kubelet-configuration"
+          "description": "Deprecated: Previously used to specify the source of the node's configuration for the DynamicKubeletConfig feature. This feature is removed from Kubelets as of 1.24 and will be fully removed in 1.26."
         },
         "externalID": {
           "description": "Deprecated. Not all kubelets will set this field. Remove field after 1.13. see: https://issues.k8s.io/61966",
@@ -6877,7 +7529,7 @@
           "description": "Set of ids/uuids to uniquely identify the node. More info: https://kubernetes.io/docs/concepts/nodes/node/#info"
         },
         "phase": {
-          "description": "NodePhase is the recently observed lifecycle phase of the node. More info: https://kubernetes.io/docs/concepts/nodes/node/#phase The field is never populated, and now is deprecated.",
+          "description": "NodePhase is the recently observed lifecycle phase of the node. More info: https://kubernetes.io/docs/concepts/nodes/node/#phase The field is never populated, and now is deprecated.\n\n",
           "type": "string"
         },
         "volumesAttached": {
@@ -6909,7 +7561,7 @@
           "type": "string"
         },
         "containerRuntimeVersion": {
-          "description": "ContainerRuntime Version reported by the node through runtime remote API (e.g. docker://1.5.0).",
+          "description": "ContainerRuntime Version reported by the node through runtime remote API (e.g. containerd://1.4.2).",
           "type": "string"
         },
         "kernelVersion": {
@@ -7025,11 +7677,11 @@
         },
         "spec": {
           "$ref": "#/definitions/io.k8s.api.core.v1.PersistentVolumeSpec",
-          "description": "Spec defines a specification of a persistent volume owned by the cluster. Provisioned by an administrator. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistent-volumes"
+          "description": "spec defines a specification of a persistent volume owned by the cluster. Provisioned by an administrator. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistent-volumes"
         },
         "status": {
           "$ref": "#/definitions/io.k8s.api.core.v1.PersistentVolumeStatus",
-          "description": "Status represents the current information/status for the persistent volume. Populated by the system. Read-only. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistent-volumes"
+          "description": "status represents the current information/status for the persistent volume. Populated by the system. Read-only. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistent-volumes"
         }
       },
       "type": "object",
@@ -7058,11 +7710,11 @@
         },
         "spec": {
           "$ref": "#/definitions/io.k8s.api.core.v1.PersistentVolumeClaimSpec",
-          "description": "Spec defines the desired characteristics of a volume requested by a pod author. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims"
+          "description": "spec defines the desired characteristics of a volume requested by a pod author. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims"
         },
         "status": {
           "$ref": "#/definitions/io.k8s.api.core.v1.PersistentVolumeClaimStatus",
-          "description": "Status represents the current information/status of a persistent volume claim. Read-only. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims"
+          "description": "status represents the current information/status of a persistent volume claim. Read-only. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims"
         }
       },
       "type": "object",
@@ -7079,18 +7731,18 @@
       "properties": {
         "lastProbeTime": {
           "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time",
-          "description": "Last time we probed the condition."
+          "description": "lastProbeTime is the time we probed the condition."
         },
         "lastTransitionTime": {
           "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time",
-          "description": "Last time the condition transitioned from one status to another."
+          "description": "lastTransitionTime is the time the condition transitioned from one status to another."
         },
         "message": {
-          "description": "Human-readable message indicating details about last transition.",
+          "description": "message is the human-readable message indicating details about last transition.",
           "type": "string"
         },
         "reason": {
-          "description": "Unique, this should be a short, machine understandable string that gives the reason for condition's last transition. If it reports \"ResizeStarted\" that means the underlying persistent volume is being resized.",
+          "description": "reason is a unique, this should be a short, machine understandable string that gives the reason for condition's last transition. If it reports \"ResizeStarted\" that means the underlying persistent volume is being resized.",
           "type": "string"
         },
         "status": {
@@ -7114,7 +7766,7 @@
           "type": "string"
         },
         "items": {
-          "description": "A list of persistent volume claims. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
+          "description": "items is a list of persistent volume claims. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
           "items": {
             "$ref": "#/definitions/io.k8s.api.core.v1.PersistentVolumeClaim"
           },
@@ -7145,7 +7797,7 @@
       "description": "PersistentVolumeClaimSpec describes the common attributes of storage devices and allows a Source for provider-specific attributes",
       "properties": {
         "accessModes": {
-          "description": "AccessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1",
+          "description": "accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1",
           "items": {
             "type": "string"
           },
@@ -7153,22 +7805,22 @@
         },
         "dataSource": {
           "$ref": "#/definitions/io.k8s.api.core.v1.TypedLocalObjectReference",
-          "description": "This field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field."
+          "description": "dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field."
         },
         "dataSourceRef": {
           "$ref": "#/definitions/io.k8s.api.core.v1.TypedLocalObjectReference",
-          "description": "Specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While DataSource ignores disallowed values (dropping them), DataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n(Alpha) Using this field requires the AnyVolumeDataSource feature gate to be enabled."
+          "description": "dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While DataSource ignores disallowed values (dropping them), DataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled."
         },
         "resources": {
           "$ref": "#/definitions/io.k8s.api.core.v1.ResourceRequirements",
-          "description": "Resources represents the minimum resources the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources"
+          "description": "resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources"
         },
         "selector": {
           "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector",
-          "description": "A label query over volumes to consider for binding."
+          "description": "selector is a label query over volumes to consider for binding."
         },
         "storageClassName": {
-          "description": "Name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1",
+          "description": "storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1",
           "type": "string"
         },
         "volumeMode": {
@@ -7176,7 +7828,7 @@
           "type": "string"
         },
         "volumeName": {
-          "description": "VolumeName is the binding reference to the PersistentVolume backing this claim.",
+          "description": "volumeName is the binding reference to the PersistentVolume backing this claim.",
           "type": "string"
         }
       },
@@ -7186,21 +7838,28 @@
       "description": "PersistentVolumeClaimStatus is the current status of a persistent volume claim.",
       "properties": {
         "accessModes": {
-          "description": "AccessModes contains the actual access modes the volume backing the PVC has. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1",
+          "description": "accessModes contains the actual access modes the volume backing the PVC has. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1",
           "items": {
             "type": "string"
           },
           "type": "array"
         },
+        "allocatedResources": {
+          "additionalProperties": {
+            "$ref": "#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"
+          },
+          "description": "allocatedResources is the storage resource within AllocatedResources tracks the capacity allocated to a PVC. It may be larger than the actual capacity when a volume expansion operation is requested. For storage quota, the larger value from allocatedResources and PVC.spec.resources is used. If allocatedResources is not set, PVC.spec.resources alone is used for quota calculation. If a volume expansion capacity request is lowered, allocatedResources is only lowered if there are no expansion operations in progress and if the actual volume capacity is equal or lower than the requested capacity. This is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.",
+          "type": "object"
+        },
         "capacity": {
           "additionalProperties": {
             "$ref": "#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"
           },
-          "description": "Represents the actual resources of the underlying volume.",
+          "description": "capacity represents the actual resources of the underlying volume.",
           "type": "object"
         },
         "conditions": {
-          "description": "Current Condition of persistent volume claim. If underlying persistent volume is being resized then the Condition will be set to 'ResizeStarted'.",
+          "description": "conditions is the current Condition of persistent volume claim. If underlying persistent volume is being resized then the Condition will be set to 'ResizeStarted'.",
           "items": {
             "$ref": "#/definitions/io.k8s.api.core.v1.PersistentVolumeClaimCondition"
           },
@@ -7209,7 +7868,11 @@
           "x-kubernetes-patch-strategy": "merge"
         },
         "phase": {
-          "description": "Phase represents the current phase of PersistentVolumeClaim.",
+          "description": "phase represents the current phase of PersistentVolumeClaim.\n\n",
+          "type": "string"
+        },
+        "resizeStatus": {
+          "description": "resizeStatus stores status of resize operation. ResizeStatus is not set by default but when expansion is complete resizeStatus is set to empty string by resize controller or kubelet. This is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.",
           "type": "string"
         }
       },
@@ -7236,11 +7899,11 @@
       "description": "PersistentVolumeClaimVolumeSource references the user's PVC in the same namespace. This volume finds the bound PV and mounts that volume for the pod. A PersistentVolumeClaimVolumeSource is, essentially, a wrapper around another type of volume that is owned by someone else (the system).",
       "properties": {
         "claimName": {
-          "description": "ClaimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
+          "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
           "type": "string"
         },
         "readOnly": {
-          "description": "Will force the ReadOnly setting in VolumeMounts. Default false.",
+          "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.",
           "type": "boolean"
         }
       },
@@ -7257,7 +7920,7 @@
           "type": "string"
         },
         "items": {
-          "description": "List of persistent volumes. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes",
+          "description": "items is a list of persistent volumes. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes",
           "items": {
             "$ref": "#/definitions/io.k8s.api.core.v1.PersistentVolume"
           },
@@ -7288,7 +7951,7 @@
       "description": "PersistentVolumeSpec is the specification of a persistent volume.",
       "properties": {
         "accessModes": {
-          "description": "AccessModes contains all ways the volume can be mounted. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes",
+          "description": "accessModes contains all ways the volume can be mounted. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes",
           "items": {
             "type": "string"
           },
@@ -7296,73 +7959,73 @@
         },
         "awsElasticBlockStore": {
           "$ref": "#/definitions/io.k8s.api.core.v1.AWSElasticBlockStoreVolumeSource",
-          "description": "AWSElasticBlockStore represents an AWS Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore"
+          "description": "awsElasticBlockStore represents an AWS Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore"
         },
         "azureDisk": {
           "$ref": "#/definitions/io.k8s.api.core.v1.AzureDiskVolumeSource",
-          "description": "AzureDisk represents an Azure Data Disk mount on the host and bind mount to the pod."
+          "description": "azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod."
         },
         "azureFile": {
           "$ref": "#/definitions/io.k8s.api.core.v1.AzureFilePersistentVolumeSource",
-          "description": "AzureFile represents an Azure File Service mount on the host and bind mount to the pod."
+          "description": "azureFile represents an Azure File Service mount on the host and bind mount to the pod."
         },
         "capacity": {
           "additionalProperties": {
             "$ref": "#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"
           },
-          "description": "A description of the persistent volume's resources and capacity. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#capacity",
+          "description": "capacity is the description of the persistent volume's resources and capacity. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#capacity",
           "type": "object"
         },
         "cephfs": {
           "$ref": "#/definitions/io.k8s.api.core.v1.CephFSPersistentVolumeSource",
-          "description": "CephFS represents a Ceph FS mount on the host that shares a pod's lifetime"
+          "description": "cephFS represents a Ceph FS mount on the host that shares a pod's lifetime"
         },
         "cinder": {
           "$ref": "#/definitions/io.k8s.api.core.v1.CinderPersistentVolumeSource",
-          "description": "Cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md"
+          "description": "cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md"
         },
         "claimRef": {
           "$ref": "#/definitions/io.k8s.api.core.v1.ObjectReference",
-          "description": "ClaimRef is part of a bi-directional binding between PersistentVolume and PersistentVolumeClaim. Expected to be non-nil when bound. claim.VolumeName is the authoritative bind between PV and PVC. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#binding"
+          "description": "claimRef is part of a bi-directional binding between PersistentVolume and PersistentVolumeClaim. Expected to be non-nil when bound. claim.VolumeName is the authoritative bind between PV and PVC. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#binding"
         },
         "csi": {
           "$ref": "#/definitions/io.k8s.api.core.v1.CSIPersistentVolumeSource",
-          "description": "CSI represents storage that is handled by an external CSI driver (Beta feature)."
+          "description": "csi represents storage that is handled by an external CSI driver (Beta feature)."
         },
         "fc": {
           "$ref": "#/definitions/io.k8s.api.core.v1.FCVolumeSource",
-          "description": "FC represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod."
+          "description": "fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod."
         },
         "flexVolume": {
           "$ref": "#/definitions/io.k8s.api.core.v1.FlexPersistentVolumeSource",
-          "description": "FlexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin."
+          "description": "flexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin."
         },
         "flocker": {
           "$ref": "#/definitions/io.k8s.api.core.v1.FlockerVolumeSource",
-          "description": "Flocker represents a Flocker volume attached to a kubelet's host machine and exposed to the pod for its usage. This depends on the Flocker control service being running"
+          "description": "flocker represents a Flocker volume attached to a kubelet's host machine and exposed to the pod for its usage. This depends on the Flocker control service being running"
         },
         "gcePersistentDisk": {
           "$ref": "#/definitions/io.k8s.api.core.v1.GCEPersistentDiskVolumeSource",
-          "description": "GCEPersistentDisk represents a GCE Disk resource that is attached to a kubelet's host machine and then exposed to the pod. Provisioned by an admin. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk"
+          "description": "gcePersistentDisk represents a GCE Disk resource that is attached to a kubelet's host machine and then exposed to the pod. Provisioned by an admin. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk"
         },
         "glusterfs": {
           "$ref": "#/definitions/io.k8s.api.core.v1.GlusterfsPersistentVolumeSource",
-          "description": "Glusterfs represents a Glusterfs volume that is attached to a host and exposed to the pod. Provisioned by an admin. More info: https://examples.k8s.io/volumes/glusterfs/README.md"
+          "description": "glusterfs represents a Glusterfs volume that is attached to a host and exposed to the pod. Provisioned by an admin. More info: https://examples.k8s.io/volumes/glusterfs/README.md"
         },
         "hostPath": {
           "$ref": "#/definitions/io.k8s.api.core.v1.HostPathVolumeSource",
-          "description": "HostPath represents a directory on the host. Provisioned by a developer or tester. This is useful for single-node development and testing only! On-host storage is not supported in any way and WILL NOT WORK in a multi-node cluster. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath"
+          "description": "hostPath represents a directory on the host. Provisioned by a developer or tester. This is useful for single-node development and testing only! On-host storage is not supported in any way and WILL NOT WORK in a multi-node cluster. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath"
         },
         "iscsi": {
           "$ref": "#/definitions/io.k8s.api.core.v1.ISCSIPersistentVolumeSource",
-          "description": "ISCSI represents an ISCSI Disk resource that is attached to a kubelet's host machine and then exposed to the pod. Provisioned by an admin."
+          "description": "iscsi represents an ISCSI Disk resource that is attached to a kubelet's host machine and then exposed to the pod. Provisioned by an admin."
         },
         "local": {
           "$ref": "#/definitions/io.k8s.api.core.v1.LocalVolumeSource",
-          "description": "Local represents directly-attached storage with node affinity"
+          "description": "local represents directly-attached storage with node affinity"
         },
         "mountOptions": {
-          "description": "A list of mount options, e.g. [\"ro\", \"soft\"]. Not validated - mount will simply fail if one is invalid. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes/#mount-options",
+          "description": "mountOptions is the list of mount options, e.g. [\"ro\", \"soft\"]. Not validated - mount will simply fail if one is invalid. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes/#mount-options",
           "items": {
             "type": "string"
           },
@@ -7370,43 +8033,43 @@
         },
         "nfs": {
           "$ref": "#/definitions/io.k8s.api.core.v1.NFSVolumeSource",
-          "description": "NFS represents an NFS mount on the host. Provisioned by an admin. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs"
+          "description": "nfs represents an NFS mount on the host. Provisioned by an admin. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs"
         },
         "nodeAffinity": {
           "$ref": "#/definitions/io.k8s.api.core.v1.VolumeNodeAffinity",
-          "description": "NodeAffinity defines constraints that limit what nodes this volume can be accessed from. This field influences the scheduling of pods that use this volume."
+          "description": "nodeAffinity defines constraints that limit what nodes this volume can be accessed from. This field influences the scheduling of pods that use this volume."
         },
         "persistentVolumeReclaimPolicy": {
-          "description": "What happens to a persistent volume when released from its claim. Valid options are Retain (default for manually created PersistentVolumes), Delete (default for dynamically provisioned PersistentVolumes), and Recycle (deprecated). Recycle must be supported by the volume plugin underlying this PersistentVolume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#reclaiming",
+          "description": "persistentVolumeReclaimPolicy defines what happens to a persistent volume when released from its claim. Valid options are Retain (default for manually created PersistentVolumes), Delete (default for dynamically provisioned PersistentVolumes), and Recycle (deprecated). Recycle must be supported by the volume plugin underlying this PersistentVolume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#reclaiming\n\n",
           "type": "string"
         },
         "photonPersistentDisk": {
           "$ref": "#/definitions/io.k8s.api.core.v1.PhotonPersistentDiskVolumeSource",
-          "description": "PhotonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine"
+          "description": "photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine"
         },
         "portworxVolume": {
           "$ref": "#/definitions/io.k8s.api.core.v1.PortworxVolumeSource",
-          "description": "PortworxVolume represents a portworx volume attached and mounted on kubelets host machine"
+          "description": "portworxVolume represents a portworx volume attached and mounted on kubelets host machine"
         },
         "quobyte": {
           "$ref": "#/definitions/io.k8s.api.core.v1.QuobyteVolumeSource",
-          "description": "Quobyte represents a Quobyte mount on the host that shares a pod's lifetime"
+          "description": "quobyte represents a Quobyte mount on the host that shares a pod's lifetime"
         },
         "rbd": {
           "$ref": "#/definitions/io.k8s.api.core.v1.RBDPersistentVolumeSource",
-          "description": "RBD represents a Rados Block Device mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md"
+          "description": "rbd represents a Rados Block Device mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md"
         },
         "scaleIO": {
           "$ref": "#/definitions/io.k8s.api.core.v1.ScaleIOPersistentVolumeSource",
-          "description": "ScaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes."
+          "description": "scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes."
         },
         "storageClassName": {
-          "description": "Name of StorageClass to which this persistent volume belongs. Empty value means that this volume does not belong to any StorageClass.",
+          "description": "storageClassName is the name of StorageClass to which this persistent volume belongs. Empty value means that this volume does not belong to any StorageClass.",
           "type": "string"
         },
         "storageos": {
           "$ref": "#/definitions/io.k8s.api.core.v1.StorageOSPersistentVolumeSource",
-          "description": "StorageOS represents a StorageOS volume that is attached to the kubelet's host machine and mounted into the pod More info: https://examples.k8s.io/volumes/storageos/README.md"
+          "description": "storageOS represents a StorageOS volume that is attached to the kubelet's host machine and mounted into the pod More info: https://examples.k8s.io/volumes/storageos/README.md"
         },
         "volumeMode": {
           "description": "volumeMode defines if a volume is intended to be used with a formatted filesystem or to remain in raw block state. Value of Filesystem is implied when not included in spec.",
@@ -7414,7 +8077,7 @@
         },
         "vsphereVolume": {
           "$ref": "#/definitions/io.k8s.api.core.v1.VsphereVirtualDiskVolumeSource",
-          "description": "VsphereVolume represents a vSphere volume attached and mounted on kubelets host machine"
+          "description": "vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine"
         }
       },
       "type": "object"
@@ -7423,15 +8086,15 @@
       "description": "PersistentVolumeStatus is the current status of a persistent volume.",
       "properties": {
         "message": {
-          "description": "A human-readable message indicating details about why the volume is in this state.",
+          "description": "message is a human-readable message indicating details about why the volume is in this state.",
           "type": "string"
         },
         "phase": {
-          "description": "Phase indicates if a volume is available, bound to a claim, or released by a claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#phase",
+          "description": "phase indicates if a volume is available, bound to a claim, or released by a claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#phase\n\n",
           "type": "string"
         },
         "reason": {
-          "description": "Reason is a brief CamelCase string that describes any failure and is meant for machine parsing and tidy display in the CLI.",
+          "description": "reason is a brief CamelCase string that describes any failure and is meant for machine parsing and tidy display in the CLI.",
           "type": "string"
         }
       },
@@ -7441,11 +8104,11 @@
       "description": "Represents a Photon Controller persistent disk resource.",
       "properties": {
         "fsType": {
-          "description": "Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.",
+          "description": "fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.",
           "type": "string"
         },
         "pdID": {
-          "description": "ID that identifies Photon Controller persistent disk",
+          "description": "pdID is the ID that identifies Photon Controller persistent disk",
           "type": "string"
         }
       },
@@ -7516,10 +8179,10 @@
         },
         "namespaceSelector": {
           "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector",
-          "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces. This field is beta-level and is only honored when PodAffinityNamespaceSelector feature is enabled."
+          "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces."
         },
         "namespaces": {
-          "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\"",
+          "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".",
           "items": {
             "type": "string"
           },
@@ -7674,6 +8337,19 @@
         }
       ]
     },
+    "io.k8s.api.core.v1.PodOS": {
+      "description": "PodOS defines the OS parameters of a pod.",
+      "properties": {
+        "name": {
+          "description": "Name is the name of the operating system. The currently supported values are linux and windows. Additional value may be defined in future and can be one of: https://github.com/opencontainers/runtime-spec/blob/master/config.md#platform-specific-configuration Clients should expect to handle additional values and treat unrecognized values in this field as os: null",
+          "type": "string"
+        }
+      },
+      "required": [
+        "name"
+      ],
+      "type": "object"
+    },
     "io.k8s.api.core.v1.PodReadinessGate": {
       "description": "PodReadinessGate contains the reference to a pod condition",
       "properties": {
@@ -7691,16 +8367,16 @@
       "description": "PodSecurityContext holds pod-level security attributes and common container settings. Some fields are also present in container.securityContext.  Field values of container.securityContext take precedence over field values of PodSecurityContext.",
       "properties": {
         "fsGroup": {
-          "description": "A special supplemental group that applies to all containers in a pod. Some volume types allow the Kubelet to change the ownership of that volume to be owned by the pod:\n\n1. The owning GID will be the FSGroup 2. The setgid bit is set (new files created in the volume will be owned by FSGroup) 3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume.",
+          "description": "A special supplemental group that applies to all containers in a pod. Some volume types allow the Kubelet to change the ownership of that volume to be owned by the pod:\n\n1. The owning GID will be the FSGroup 2. The setgid bit is set (new files created in the volume will be owned by FSGroup) 3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume. Note that this field cannot be set when spec.os.name is windows.",
           "format": "int64",
           "type": "integer"
         },
         "fsGroupChangePolicy": {
-          "description": "fsGroupChangePolicy defines behavior of changing ownership and permission of the volume before being exposed inside Pod. This field will only apply to volume types which support fsGroup based ownership(and permissions). It will have no effect on ephemeral volume types such as: secret, configmaps and emptydir. Valid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used.",
+          "description": "fsGroupChangePolicy defines behavior of changing ownership and permission of the volume before being exposed inside Pod. This field will only apply to volume types which support fsGroup based ownership(and permissions). It will have no effect on ephemeral volume types such as: secret, configmaps and emptydir. Valid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used. Note that this field cannot be set when spec.os.name is windows.",
           "type": "string"
         },
         "runAsGroup": {
-          "description": "The GID to run the entrypoint of the container process. Uses runtime default if unset. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container.",
+          "description": "The GID to run the entrypoint of the container process. Uses runtime default if unset. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container. Note that this field cannot be set when spec.os.name is windows.",
           "format": "int64",
           "type": "integer"
         },
@@ -7709,20 +8385,20 @@
           "type": "boolean"
         },
         "runAsUser": {
-          "description": "The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container.",
+          "description": "The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container. Note that this field cannot be set when spec.os.name is windows.",
           "format": "int64",
           "type": "integer"
         },
         "seLinuxOptions": {
           "$ref": "#/definitions/io.k8s.api.core.v1.SELinuxOptions",
-          "description": "The SELinux context to be applied to all containers. If unspecified, the container runtime will allocate a random SELinux context for each container.  May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container."
+          "description": "The SELinux context to be applied to all containers. If unspecified, the container runtime will allocate a random SELinux context for each container.  May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container. Note that this field cannot be set when spec.os.name is windows."
         },
         "seccompProfile": {
           "$ref": "#/definitions/io.k8s.api.core.v1.SeccompProfile",
-          "description": "The seccomp options to use by the containers in this pod."
+          "description": "The seccomp options to use by the containers in this pod. Note that this field cannot be set when spec.os.name is windows."
         },
         "supplementalGroups": {
-          "description": "A list of groups applied to the first process run in each container, in addition to the container's primary GID.  If unspecified, no groups will be added to any container.",
+          "description": "A list of groups applied to the first process run in each container, in addition to the container's primary GID.  If unspecified, no groups will be added to any container. Note that this field cannot be set when spec.os.name is windows.",
           "items": {
             "format": "int64",
             "type": "integer"
@@ -7730,7 +8406,7 @@
           "type": "array"
         },
         "sysctls": {
-          "description": "Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported sysctls (by the container runtime) might fail to launch.",
+          "description": "Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported sysctls (by the container runtime) might fail to launch. Note that this field cannot be set when spec.os.name is windows.",
           "items": {
             "$ref": "#/definitions/io.k8s.api.core.v1.Sysctl"
           },
@@ -7738,7 +8414,7 @@
         },
         "windowsOptions": {
           "$ref": "#/definitions/io.k8s.api.core.v1.WindowsSecurityContextOptions",
-          "description": "The Windows specific settings applied to all containers. If unspecified, the options within a container's SecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence."
+          "description": "The Windows specific settings applied to all containers. If unspecified, the options within a container's SecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is linux."
         }
       },
       "type": "object"
@@ -7773,7 +8449,7 @@
           "description": "Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy."
         },
         "dnsPolicy": {
-          "description": "Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. To have DNS options set along with hostNetwork, you have to specify DNS policy explicitly to 'ClusterFirstWithHostNet'.",
+          "description": "Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. To have DNS options set along with hostNetwork, you have to specify DNS policy explicitly to 'ClusterFirstWithHostNet'.\n\n",
           "type": "string"
         },
         "enableServiceLinks": {
@@ -7781,7 +8457,7 @@
           "type": "boolean"
         },
         "ephemeralContainers": {
-          "description": "List of ephemeral containers run in this pod. Ephemeral containers may be run in an existing pod to perform user-initiated actions such as debugging. This list cannot be specified when creating a pod, and it cannot be modified by updating the pod spec. In order to add an ephemeral container to an existing pod, use the pod's ephemeralcontainers subresource. This field is alpha-level and is only honored by servers that enable the EphemeralContainers feature.",
+          "description": "List of ephemeral containers run in this pod. Ephemeral containers may be run in an existing pod to perform user-initiated actions such as debugging. This list cannot be specified when creating a pod, and it cannot be modified by updating the pod spec. In order to add an ephemeral container to an existing pod, use the pod's ephemeralcontainers subresource. This field is beta-level and available on clusters that haven't disabled the EphemeralContainers feature gate.",
           "items": {
             "$ref": "#/definitions/io.k8s.api.core.v1.EphemeralContainer"
           },
@@ -7815,7 +8491,7 @@
           "type": "string"
         },
         "imagePullSecrets": {
-          "description": "ImagePullSecrets is an optional list of references to secrets in the same namespace to use for pulling any of the images used by this PodSpec. If specified, these secrets will be passed to individual puller implementations for them to use. For example, in the case of docker, only DockerConfig type secrets are honored. More info: https://kubernetes.io/docs/concepts/containers/images#specifying-imagepullsecrets-on-a-pod",
+          "description": "ImagePullSecrets is an optional list of references to secrets in the same namespace to use for pulling any of the images used by this PodSpec. If specified, these secrets will be passed to individual puller implementations for them to use. More info: https://kubernetes.io/docs/concepts/containers/images#specifying-imagepullsecrets-on-a-pod",
           "items": {
             "$ref": "#/definitions/io.k8s.api.core.v1.LocalObjectReference"
           },
@@ -7844,15 +8520,19 @@
           "type": "object",
           "x-kubernetes-map-type": "atomic"
         },
+        "os": {
+          "$ref": "#/definitions/io.k8s.api.core.v1.PodOS",
+          "description": "Specifies the OS of the containers in the pod. Some pod and container fields are restricted if this is set.\n\nIf the OS field is set to linux, the following fields must be unset: -securityContext.windowsOptions\n\nIf the OS field is set to windows, following fields must be unset: - spec.hostPID - spec.hostIPC - spec.securityContext.seLinuxOptions - spec.securityContext.seccompProfile - spec.securityContext.fsGroup - spec.securityContext.fsGroupChangePolicy - spec.securityContext.sysctls - spec.shareProcessNamespace - spec.securityContext.runAsUser - spec.securityContext.runAsGroup - spec.securityContext.supplementalGroups - spec.containers[*].securityContext.seLinuxOptions - spec.containers[*].securityContext.seccompProfile - spec.containers[*].securityContext.capabilities - spec.containers[*].securityContext.readOnlyRootFilesystem - spec.containers[*].securityContext.privileged - spec.containers[*].securityContext.allowPrivilegeEscalation - spec.containers[*].securityContext.procMount - spec.containers[*].securityContext.runAsUser - spec.containers[*].securityContext.runAsGroup This is a beta field and requires the IdentifyPodOS feature"
+        },
         "overhead": {
           "additionalProperties": {
             "$ref": "#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"
           },
-          "description": "Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. This field will be autopopulated at admission time by the RuntimeClass admission controller. If the RuntimeClass admission controller is enabled, overhead must not be set in Pod create requests. The RuntimeClass admission controller will reject Pod create requests which have the overhead already set. If RuntimeClass is configured and selected in the PodSpec, Overhead will be set to the value defined in the corresponding RuntimeClass, otherwise it will remain unset and treated as zero. More info: https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.md This field is beta-level as of Kubernetes v1.18, and is only honored by servers that enable the PodOverhead feature.",
+          "description": "Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. This field will be autopopulated at admission time by the RuntimeClass admission controller. If the RuntimeClass admission controller is enabled, overhead must not be set in Pod create requests. The RuntimeClass admission controller will reject Pod create requests which have the overhead already set. If RuntimeClass is configured and selected in the PodSpec, Overhead will be set to the value defined in the corresponding RuntimeClass, otherwise it will remain unset and treated as zero. More info: https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.md",
           "type": "object"
         },
         "preemptionPolicy": {
-          "description": "PreemptionPolicy is the Policy for preempting pods with lower priority. One of Never, PreemptLowerPriority. Defaults to PreemptLowerPriority if unset. This field is beta-level, gated by the NonPreemptingPriority feature-gate.",
+          "description": "PreemptionPolicy is the Policy for preempting pods with lower priority. One of Never, PreemptLowerPriority. Defaults to PreemptLowerPriority if unset.",
           "type": "string"
         },
         "priority": {
@@ -7872,11 +8552,11 @@
           "type": "array"
         },
         "restartPolicy": {
-          "description": "Restart policy for all containers within the pod. One of Always, OnFailure, Never. Default to Always. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy",
+          "description": "Restart policy for all containers within the pod. One of Always, OnFailure, Never. Default to Always. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy\n\n",
           "type": "string"
         },
         "runtimeClassName": {
-          "description": "RuntimeClassName refers to a RuntimeClass object in the node.k8s.io group, which should be used to run this pod.  If no RuntimeClass resource matches the named class, the pod will not be run. If unset or empty, the \"legacy\" RuntimeClass will be used, which is an implicit class with an empty definition that uses the default runtime handler. More info: https://git.k8s.io/enhancements/keps/sig-node/585-runtime-class This is a beta feature as of Kubernetes v1.14.",
+          "description": "RuntimeClassName refers to a RuntimeClass object in the node.k8s.io group, which should be used to run this pod.  If no RuntimeClass resource matches the named class, the pod will not be run. If unset or empty, the \"legacy\" RuntimeClass will be used, which is an implicit class with an empty definition that uses the default runtime handler. More info: https://git.k8s.io/enhancements/keps/sig-node/585-runtime-class",
           "type": "string"
         },
         "schedulerName": {
@@ -7961,14 +8641,14 @@
           "x-kubernetes-patch-strategy": "merge"
         },
         "containerStatuses": {
-          "description": "The list has one entry per container in the manifest. Each entry is currently the output of `docker inspect`. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-and-container-status",
+          "description": "The list has one entry per container in the manifest. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-and-container-status",
           "items": {
             "$ref": "#/definitions/io.k8s.api.core.v1.ContainerStatus"
           },
           "type": "array"
         },
         "ephemeralContainerStatuses": {
-          "description": "Status for any ephemeral containers that have run in this pod. This field is alpha-level and is only populated by servers that enable the EphemeralContainers feature.",
+          "description": "Status for any ephemeral containers that have run in this pod. This field is beta-level and available on clusters that haven't disabled the EphemeralContainers feature gate.",
           "items": {
             "$ref": "#/definitions/io.k8s.api.core.v1.ContainerStatus"
           },
@@ -7994,7 +8674,7 @@
           "type": "string"
         },
         "phase": {
-          "description": "The phase of a Pod is a simple, high-level summary of where the Pod is in its lifecycle. The conditions array, the reason and message fields, and the individual container status arrays contain more detail about the pod's status. There are five possible phase values:\n\nPending: The pod has been accepted by the Kubernetes system, but one or more of the container images has not been created. This includes time before being scheduled as well as time spent downloading images over the network, which could take a while. Running: The pod has been bound to a node, and all of the containers have been created. At least one container is still running, or is in the process of starting or restarting. Succeeded: All containers in the pod have terminated in success, and will not be restarted. Failed: All containers in the pod have terminated, and at least one container has terminated in failure. The container either exited with non-zero status or was terminated by the system. Unknown: For some reason the state of the pod could not be obtained, typically due to an error in communicating with the host of the pod.\n\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-phase",
+          "description": "The phase of a Pod is a simple, high-level summary of where the Pod is in its lifecycle. The conditions array, the reason and message fields, and the individual container status arrays contain more detail about the pod's status. There are five possible phase values:\n\nPending: The pod has been accepted by the Kubernetes system, but one or more of the container images has not been created. This includes time before being scheduled as well as time spent downloading images over the network, which could take a while. Running: The pod has been bound to a node, and all of the containers have been created. At least one container is still running, or is in the process of starting or restarting. Succeeded: All containers in the pod have terminated in success, and will not be restarted. Failed: All containers in the pod have terminated, and at least one container has terminated in failure. The container either exited with non-zero status or was terminated by the system. Unknown: For some reason the state of the pod could not be obtained, typically due to an error in communicating with the host of the pod.\n\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-phase\n\n",
           "type": "string"
         },
         "podIP": {
@@ -8011,7 +8691,7 @@
           "x-kubernetes-patch-strategy": "merge"
         },
         "qosClass": {
-          "description": "The Quality of Service (QOS) classification assigned to the pod based on resource requirements See PodQOSClass type for available QOS classes More info: https://git.k8s.io/community/contributors/design-proposals/node/resource-qos.md",
+          "description": "The Quality of Service (QOS) classification assigned to the pod based on resource requirements See PodQOSClass type for available QOS classes More info: https://git.k8s.io/community/contributors/design-proposals/node/resource-qos.md\n\n",
           "type": "string"
         },
         "reason": {
@@ -8115,7 +8795,7 @@
           "type": "integer"
         },
         "protocol": {
-          "description": "Protocol is the protocol of the service port of which status is recorded here The supported values are: \"TCP\", \"UDP\", \"SCTP\"",
+          "description": "Protocol is the protocol of the service port of which status is recorded here The supported values are: \"TCP\", \"UDP\", \"SCTP\"\n\n",
           "type": "string"
         }
       },
@@ -8129,15 +8809,15 @@
       "description": "PortworxVolumeSource represents a Portworx volume resource.",
       "properties": {
         "fsType": {
-          "description": "FSType represents the filesystem type to mount Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\". Implicitly inferred to be \"ext4\" if unspecified.",
+          "description": "fSType represents the filesystem type to mount Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\". Implicitly inferred to be \"ext4\" if unspecified.",
           "type": "string"
         },
         "readOnly": {
-          "description": "Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.",
+          "description": "readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.",
           "type": "boolean"
         },
         "volumeID": {
-          "description": "VolumeID uniquely identifies a Portworx volume",
+          "description": "volumeID uniquely identifies a Portworx volume",
           "type": "string"
         }
       },
@@ -8170,13 +8850,17 @@
       "properties": {
         "exec": {
           "$ref": "#/definitions/io.k8s.api.core.v1.ExecAction",
-          "description": "One and only one of the following should be specified. Exec specifies the action to take."
+          "description": "Exec specifies the action to take."
         },
         "failureThreshold": {
           "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.",
           "format": "int32",
           "type": "integer"
         },
+        "grpc": {
+          "$ref": "#/definitions/io.k8s.api.core.v1.GRPCAction",
+          "description": "GRPC specifies an action involving a GRPC port. This is a beta field and requires enabling GRPCContainerProbe feature gate."
+        },
         "httpGet": {
           "$ref": "#/definitions/io.k8s.api.core.v1.HTTPGetAction",
           "description": "HTTPGet specifies the http request to perform."
@@ -8198,7 +8882,7 @@
         },
         "tcpSocket": {
           "$ref": "#/definitions/io.k8s.api.core.v1.TCPSocketAction",
-          "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported"
+          "description": "TCPSocket specifies an action involving a TCP port."
         },
         "terminationGracePeriodSeconds": {
           "description": "Optional duration in seconds the pod needs to terminate gracefully upon probe failure. The grace period is the duration in seconds after the processes running in the pod are sent a termination signal and the time when the processes are forcibly halted with a kill signal. Set this value longer than the expected cleanup time for your process. If this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this value overrides the value provided by the pod spec. Value must be non-negative integer. The value zero indicates stop immediately via the kill signal (no opportunity to shut down). This is a beta field and requires enabling ProbeTerminationGracePeriod feature gate. Minimum value is 1. spec.terminationGracePeriodSeconds is used if unset.",
@@ -8217,12 +8901,12 @@
       "description": "Represents a projected volume source",
       "properties": {
         "defaultMode": {
-          "description": "Mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.",
+          "description": "defaultMode are the mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.",
           "format": "int32",
           "type": "integer"
         },
         "sources": {
-          "description": "list of volume projections",
+          "description": "sources is the list of volume projections",
           "items": {
             "$ref": "#/definitions/io.k8s.api.core.v1.VolumeProjection"
           },
@@ -8235,27 +8919,27 @@
       "description": "Represents a Quobyte mount that lasts the lifetime of a pod. Quobyte volumes do not support ownership management or SELinux relabeling.",
       "properties": {
         "group": {
-          "description": "Group to map volume access to Default is no group",
+          "description": "group to map volume access to Default is no group",
           "type": "string"
         },
         "readOnly": {
-          "description": "ReadOnly here will force the Quobyte volume to be mounted with read-only permissions. Defaults to false.",
+          "description": "readOnly here will force the Quobyte volume to be mounted with read-only permissions. Defaults to false.",
           "type": "boolean"
         },
         "registry": {
-          "description": "Registry represents a single or multiple Quobyte Registry services specified as a string as host:port pair (multiple entries are separated with commas) which acts as the central registry for volumes",
+          "description": "registry represents a single or multiple Quobyte Registry services specified as a string as host:port pair (multiple entries are separated with commas) which acts as the central registry for volumes",
           "type": "string"
         },
         "tenant": {
-          "description": "Tenant owning the given Quobyte volume in the Backend Used with dynamically provisioned Quobyte volumes, value is set by the plugin",
+          "description": "tenant owning the given Quobyte volume in the Backend Used with dynamically provisioned Quobyte volumes, value is set by the plugin",
           "type": "string"
         },
         "user": {
-          "description": "User to map volume access to Defaults to serivceaccount user",
+          "description": "user to map volume access to Defaults to serivceaccount user",
           "type": "string"
         },
         "volume": {
-          "description": "Volume is a string that references an already created Quobyte volume by name.",
+          "description": "volume is a string that references an already created Quobyte volume by name.",
           "type": "string"
         }
       },
@@ -8269,38 +8953,38 @@
       "description": "Represents a Rados Block Device mount that lasts the lifetime of a pod. RBD volumes support ownership management and SELinux relabeling.",
       "properties": {
         "fsType": {
-          "description": "Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd",
+          "description": "fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd",
           "type": "string"
         },
         "image": {
-          "description": "The rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+          "description": "image is the rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
           "type": "string"
         },
         "keyring": {
-          "description": "Keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+          "description": "keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
           "type": "string"
         },
         "monitors": {
-          "description": "A collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+          "description": "monitors is a collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
           "items": {
             "type": "string"
           },
           "type": "array"
         },
         "pool": {
-          "description": "The rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+          "description": "pool is the rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
           "type": "string"
         },
         "readOnly": {
-          "description": "ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+          "description": "readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
           "type": "boolean"
         },
         "secretRef": {
           "$ref": "#/definitions/io.k8s.api.core.v1.SecretReference",
-          "description": "SecretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it"
+          "description": "secretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it"
         },
         "user": {
-          "description": "The rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+          "description": "user is the rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
           "type": "string"
         }
       },
@@ -8314,38 +8998,38 @@
       "description": "Represents a Rados Block Device mount that lasts the lifetime of a pod. RBD volumes support ownership management and SELinux relabeling.",
       "properties": {
         "fsType": {
-          "description": "Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd",
+          "description": "fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd",
           "type": "string"
         },
         "image": {
-          "description": "The rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+          "description": "image is the rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
           "type": "string"
         },
         "keyring": {
-          "description": "Keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+          "description": "keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
           "type": "string"
         },
         "monitors": {
-          "description": "A collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+          "description": "monitors is a collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
           "items": {
             "type": "string"
           },
           "type": "array"
         },
         "pool": {
-          "description": "The rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+          "description": "pool is the rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
           "type": "string"
         },
         "readOnly": {
-          "description": "ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+          "description": "readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
           "type": "boolean"
         },
         "secretRef": {
           "$ref": "#/definitions/io.k8s.api.core.v1.LocalObjectReference",
-          "description": "SecretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it"
+          "description": "secretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it"
         },
         "user": {
-          "description": "The rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+          "description": "user is the rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
           "type": "string"
         }
       },
@@ -8704,43 +9388,43 @@
       "description": "ScaleIOPersistentVolumeSource represents a persistent ScaleIO volume",
       "properties": {
         "fsType": {
-          "description": "Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Default is \"xfs\"",
+          "description": "fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Default is \"xfs\"",
           "type": "string"
         },
         "gateway": {
-          "description": "The host address of the ScaleIO API Gateway.",
+          "description": "gateway is the host address of the ScaleIO API Gateway.",
           "type": "string"
         },
         "protectionDomain": {
-          "description": "The name of the ScaleIO Protection Domain for the configured storage.",
+          "description": "protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.",
           "type": "string"
         },
         "readOnly": {
-          "description": "Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.",
+          "description": "readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.",
           "type": "boolean"
         },
         "secretRef": {
           "$ref": "#/definitions/io.k8s.api.core.v1.SecretReference",
-          "description": "SecretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail."
+          "description": "secretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail."
         },
         "sslEnabled": {
-          "description": "Flag to enable/disable SSL communication with Gateway, default false",
+          "description": "sslEnabled is the flag to enable/disable SSL communication with Gateway, default false",
           "type": "boolean"
         },
         "storageMode": {
-          "description": "Indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.",
+          "description": "storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.",
           "type": "string"
         },
         "storagePool": {
-          "description": "The ScaleIO Storage Pool associated with the protection domain.",
+          "description": "storagePool is the ScaleIO Storage Pool associated with the protection domain.",
           "type": "string"
         },
         "system": {
-          "description": "The name of the storage system as configured in ScaleIO.",
+          "description": "system is the name of the storage system as configured in ScaleIO.",
           "type": "string"
         },
         "volumeName": {
-          "description": "The name of a volume already created in the ScaleIO system that is associated with this volume source.",
+          "description": "volumeName is the name of a volume already created in the ScaleIO system that is associated with this volume source.",
           "type": "string"
         }
       },
@@ -8755,43 +9439,43 @@
       "description": "ScaleIOVolumeSource represents a persistent ScaleIO volume",
       "properties": {
         "fsType": {
-          "description": "Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Default is \"xfs\".",
+          "description": "fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Default is \"xfs\".",
           "type": "string"
         },
         "gateway": {
-          "description": "The host address of the ScaleIO API Gateway.",
+          "description": "gateway is the host address of the ScaleIO API Gateway.",
           "type": "string"
         },
         "protectionDomain": {
-          "description": "The name of the ScaleIO Protection Domain for the configured storage.",
+          "description": "protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.",
           "type": "string"
         },
         "readOnly": {
-          "description": "Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.",
+          "description": "readOnly Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.",
           "type": "boolean"
         },
         "secretRef": {
           "$ref": "#/definitions/io.k8s.api.core.v1.LocalObjectReference",
-          "description": "SecretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail."
+          "description": "secretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail."
         },
         "sslEnabled": {
-          "description": "Flag to enable/disable SSL communication with Gateway, default false",
+          "description": "sslEnabled Flag enable/disable SSL communication with Gateway, default false",
           "type": "boolean"
         },
         "storageMode": {
-          "description": "Indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.",
+          "description": "storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.",
           "type": "string"
         },
         "storagePool": {
-          "description": "The ScaleIO Storage Pool associated with the protection domain.",
+          "description": "storagePool is the ScaleIO Storage Pool associated with the protection domain.",
           "type": "string"
         },
         "system": {
-          "description": "The name of the storage system as configured in ScaleIO.",
+          "description": "system is the name of the storage system as configured in ScaleIO.",
           "type": "string"
         },
         "volumeName": {
-          "description": "The name of a volume already created in the ScaleIO system that is associated with this volume source.",
+          "description": "volumeName is the name of a volume already created in the ScaleIO system that is associated with this volume source.",
           "type": "string"
         }
       },
@@ -8820,11 +9504,11 @@
       "description": "A scoped-resource selector requirement is a selector that contains values, a scope name, and an operator that relates the scope name and values.",
       "properties": {
         "operator": {
-          "description": "Represents a scope's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist.",
+          "description": "Represents a scope's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist.\n\n",
           "type": "string"
         },
         "scopeName": {
-          "description": "The name of the scope that the selector applies to.",
+          "description": "The name of the scope that the selector applies to.\n\n",
           "type": "string"
         },
         "values": {
@@ -8849,7 +9533,7 @@
           "type": "string"
         },
         "type": {
-          "description": "type indicates which kind of seccomp profile will be applied. Valid options are:\n\nLocalhost - a profile defined in a file on the node should be used. RuntimeDefault - the container runtime default profile should be used. Unconfined - no profile should be applied.",
+          "description": "type indicates which kind of seccomp profile will be applied. Valid options are:\n\nLocalhost - a profile defined in a file on the node should be used. RuntimeDefault - the container runtime default profile should be used. Unconfined - no profile should be applied.\n\n",
           "type": "string"
         }
       },
@@ -8901,7 +9585,7 @@
           "type": "object"
         },
         "type": {
-          "description": "Used to facilitate programmatic handling of secret data.",
+          "description": "Used to facilitate programmatic handling of secret data. More info: https://kubernetes.io/docs/concepts/configuration/secret/#secret-types",
           "type": "string"
         }
       },
@@ -8989,7 +9673,7 @@
       "description": "Adapts a secret into a projected volume.\n\nThe contents of the target Secret's Data field will be presented in a projected volume as files using the keys in the Data field as the file names. Note that this is identical to a secret volume source without the default mode.",
       "properties": {
         "items": {
-          "description": "If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.",
+          "description": "items if unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.",
           "items": {
             "$ref": "#/definitions/io.k8s.api.core.v1.KeyToPath"
           },
@@ -9000,7 +9684,7 @@
           "type": "string"
         },
         "optional": {
-          "description": "Specify whether the Secret or its key must be defined",
+          "description": "optional field specify whether the Secret or its key must be defined",
           "type": "boolean"
         }
       },
@@ -9010,11 +9694,11 @@
       "description": "SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace",
       "properties": {
         "name": {
-          "description": "Name is unique within a namespace to reference a secret resource.",
+          "description": "name is unique within a namespace to reference a secret resource.",
           "type": "string"
         },
         "namespace": {
-          "description": "Namespace defines the space within which the secret name must be unique.",
+          "description": "namespace defines the space within which the secret name must be unique.",
           "type": "string"
         }
       },
@@ -9025,23 +9709,23 @@
       "description": "Adapts a Secret into a volume.\n\nThe contents of the target Secret's Data field will be presented in a volume as files using the keys in the Data field as the file names. Secret volumes support ownership management and SELinux relabeling.",
       "properties": {
         "defaultMode": {
-          "description": "Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.",
+          "description": "defaultMode is Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.",
           "format": "int32",
           "type": "integer"
         },
         "items": {
-          "description": "If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.",
+          "description": "items If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.",
           "items": {
             "$ref": "#/definitions/io.k8s.api.core.v1.KeyToPath"
           },
           "type": "array"
         },
         "optional": {
-          "description": "Specify whether the Secret or its keys must be defined",
+          "description": "optional field specify whether the Secret or its keys must be defined",
           "type": "boolean"
         },
         "secretName": {
-          "description": "Name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+          "description": "secretName is the name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
           "type": "string"
         }
       },
@@ -9051,27 +9735,27 @@
       "description": "SecurityContext holds security configuration that will be applied to a container. Some fields are present in both SecurityContext and PodSecurityContext.  When both are set, the values in SecurityContext take precedence.",
       "properties": {
         "allowPrivilegeEscalation": {
-          "description": "AllowPrivilegeEscalation controls whether a process can gain more privileges than its parent process. This bool directly controls if the no_new_privs flag will be set on the container process. AllowPrivilegeEscalation is true always when the container is: 1) run as Privileged 2) has CAP_SYS_ADMIN",
+          "description": "AllowPrivilegeEscalation controls whether a process can gain more privileges than its parent process. This bool directly controls if the no_new_privs flag will be set on the container process. AllowPrivilegeEscalation is true always when the container is: 1) run as Privileged 2) has CAP_SYS_ADMIN Note that this field cannot be set when spec.os.name is windows.",
           "type": "boolean"
         },
         "capabilities": {
           "$ref": "#/definitions/io.k8s.api.core.v1.Capabilities",
-          "description": "The capabilities to add/drop when running containers. Defaults to the default set of capabilities granted by the container runtime."
+          "description": "The capabilities to add/drop when running containers. Defaults to the default set of capabilities granted by the container runtime. Note that this field cannot be set when spec.os.name is windows."
         },
         "privileged": {
-          "description": "Run container in privileged mode. Processes in privileged containers are essentially equivalent to root on the host. Defaults to false.",
+          "description": "Run container in privileged mode. Processes in privileged containers are essentially equivalent to root on the host. Defaults to false. Note that this field cannot be set when spec.os.name is windows.",
           "type": "boolean"
         },
         "procMount": {
-          "description": "procMount denotes the type of proc mount to use for the containers. The default is DefaultProcMount which uses the container runtime defaults for readonly paths and masked paths. This requires the ProcMountType feature flag to be enabled.",
+          "description": "procMount denotes the type of proc mount to use for the containers. The default is DefaultProcMount which uses the container runtime defaults for readonly paths and masked paths. This requires the ProcMountType feature flag to be enabled. Note that this field cannot be set when spec.os.name is windows.",
           "type": "string"
         },
         "readOnlyRootFilesystem": {
-          "description": "Whether this container has a read-only root filesystem. Default is false.",
+          "description": "Whether this container has a read-only root filesystem. Default is false. Note that this field cannot be set when spec.os.name is windows.",
           "type": "boolean"
         },
         "runAsGroup": {
-          "description": "The GID to run the entrypoint of the container process. Uses runtime default if unset. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.",
+          "description": "The GID to run the entrypoint of the container process. Uses runtime default if unset. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.",
           "format": "int64",
           "type": "integer"
         },
@@ -9080,21 +9764,21 @@
           "type": "boolean"
         },
         "runAsUser": {
-          "description": "The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.",
+          "description": "The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.",
           "format": "int64",
           "type": "integer"
         },
         "seLinuxOptions": {
           "$ref": "#/definitions/io.k8s.api.core.v1.SELinuxOptions",
-          "description": "The SELinux context to be applied to the container. If unspecified, the container runtime will allocate a random SELinux context for each container.  May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence."
+          "description": "The SELinux context to be applied to the container. If unspecified, the container runtime will allocate a random SELinux context for each container.  May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows."
         },
         "seccompProfile": {
           "$ref": "#/definitions/io.k8s.api.core.v1.SeccompProfile",
-          "description": "The seccomp options to use by this container. If seccomp options are provided at both the pod & container level, the container options override the pod options."
+          "description": "The seccomp options to use by this container. If seccomp options are provided at both the pod & container level, the container options override the pod options. Note that this field cannot be set when spec.os.name is windows."
         },
         "windowsOptions": {
           "$ref": "#/definitions/io.k8s.api.core.v1.WindowsSecurityContextOptions",
-          "description": "The Windows specific settings applied to all containers. If unspecified, the options from the PodSecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence."
+          "description": "The Windows specific settings applied to all containers. If unspecified, the options from the PodSecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is linux."
         }
       },
       "type": "object"
@@ -9159,7 +9843,7 @@
           "description": "Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata"
         },
         "secrets": {
-          "description": "Secrets is the list of secrets allowed to be used by pods running using this ServiceAccount. More info: https://kubernetes.io/docs/concepts/configuration/secret",
+          "description": "Secrets is a list of the secrets in the same namespace that pods running using this ServiceAccount are allowed to use. Pods are only limited to this list if this service account has a \"kubernetes.io/enforce-mountable-secrets\" annotation set to \"true\". This field should not be used to find auto-generated service account token secrets for use outside of pods. Instead, tokens can be requested directly using the TokenRequest API, or service account token secrets can be manually created. More info: https://kubernetes.io/docs/concepts/configuration/secret",
           "items": {
             "$ref": "#/definitions/io.k8s.api.core.v1.ObjectReference"
           },
@@ -9216,16 +9900,16 @@
       "description": "ServiceAccountTokenProjection represents a projected service account token volume. This projection can be used to insert a service account token into the pods runtime filesystem for use against APIs (Kubernetes API Server or otherwise).",
       "properties": {
         "audience": {
-          "description": "Audience is the intended audience of the token. A recipient of a token must identify itself with an identifier specified in the audience of the token, and otherwise should reject the token. The audience defaults to the identifier of the apiserver.",
+          "description": "audience is the intended audience of the token. A recipient of a token must identify itself with an identifier specified in the audience of the token, and otherwise should reject the token. The audience defaults to the identifier of the apiserver.",
           "type": "string"
         },
         "expirationSeconds": {
-          "description": "ExpirationSeconds is the requested duration of validity of the service account token. As the token approaches expiration, the kubelet volume plugin will proactively rotate the service account token. The kubelet will start trying to rotate the token if the token is older than 80 percent of its time to live or if the token is older than 24 hours.Defaults to 1 hour and must be at least 10 minutes.",
+          "description": "expirationSeconds is the requested duration of validity of the service account token. As the token approaches expiration, the kubelet volume plugin will proactively rotate the service account token. The kubelet will start trying to rotate the token if the token is older than 80 percent of its time to live or if the token is older than 24 hours.Defaults to 1 hour and must be at least 10 minutes.",
           "format": "int64",
           "type": "integer"
         },
         "path": {
-          "description": "Path is the path relative to the mount point of the file to project the token into.",
+          "description": "path is the path relative to the mount point of the file to project the token into.",
           "type": "string"
         }
       },
@@ -9273,7 +9957,7 @@
       "description": "ServicePort contains information on service's port.",
       "properties": {
         "appProtocol": {
-          "description": "The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and http://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.",
+          "description": "The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and https://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.",
           "type": "string"
         },
         "name": {
@@ -9291,7 +9975,7 @@
           "type": "integer"
         },
         "protocol": {
-          "description": "The IP protocol for this port. Supports \"TCP\", \"UDP\", and \"SCTP\". Default is TCP.",
+          "description": "The IP protocol for this port. Supports \"TCP\", \"UDP\", and \"SCTP\". Default is TCP.\n\n",
           "type": "string"
         },
         "targetPort": {
@@ -9308,7 +9992,7 @@
       "description": "ServiceSpec describes the attributes that a user creates on a service.",
       "properties": {
         "allocateLoadBalancerNodePorts": {
-          "description": "allocateLoadBalancerNodePorts defines if NodePorts will be automatically allocated for services with type LoadBalancer.  Default is \"true\". It may be set to \"false\" if the cluster load-balancer does not rely on NodePorts.  If the caller requests specific NodePorts (by specifying a value), those requests will be respected, regardless of this field. This field may only be set for services with type LoadBalancer and will be cleared if the type is changed to any other type. This field is beta-level and is only honored by servers that enable the ServiceLBNodePortControl feature.",
+          "description": "allocateLoadBalancerNodePorts defines if NodePorts will be automatically allocated for services with type LoadBalancer.  Default is \"true\". It may be set to \"false\" if the cluster load-balancer does not rely on NodePorts.  If the caller requests specific NodePorts (by specifying a value), those requests will be respected, regardless of this field. This field may only be set for services with type LoadBalancer and will be cleared if the type is changed to any other type.",
           "type": "boolean"
         },
         "clusterIP": {
@@ -9316,7 +10000,7 @@
           "type": "string"
         },
         "clusterIPs": {
-          "description": "ClusterIPs is a list of IP addresses assigned to this service, and are usually assigned randomly.  If an address is specified manually, is in-range (as per system configuration), and is not in use, it will be allocated to the service; otherwise creation of the service will fail. This field may not be changed through updates unless the type field is also being changed to ExternalName (which requires this field to be empty) or the type field is being changed from ExternalName (in which case this field may optionally be specified, as describe above).  Valid values are \"None\", empty string (\"\"), or a valid IP address.  Setting this to \"None\" makes a \"headless service\" (no virtual IP), which is useful when direct endpoint connections are preferred and proxying is not required.  Only applies to types ClusterIP, NodePort, and LoadBalancer. If this field is specified when creating a Service of type ExternalName, creation will fail. This field will be wiped when updating a Service to type ExternalName.  If this field is not specified, it will be initialized from the clusterIP field.  If this field is specified, clients must ensure that clusterIPs[0] and clusterIP have the same value.\n\nUnless the \"IPv6DualStack\" feature gate is enabled, this field is limited to one value, which must be the same as the clusterIP field.  If the feature gate is enabled, this field may hold a maximum of two entries (dual-stack IPs, in either order).  These IPs must correspond to the values of the ipFamilies field. Both clusterIPs and ipFamilies are governed by the ipFamilyPolicy field. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies",
+          "description": "ClusterIPs is a list of IP addresses assigned to this service, and are usually assigned randomly.  If an address is specified manually, is in-range (as per system configuration), and is not in use, it will be allocated to the service; otherwise creation of the service will fail. This field may not be changed through updates unless the type field is also being changed to ExternalName (which requires this field to be empty) or the type field is being changed from ExternalName (in which case this field may optionally be specified, as describe above).  Valid values are \"None\", empty string (\"\"), or a valid IP address.  Setting this to \"None\" makes a \"headless service\" (no virtual IP), which is useful when direct endpoint connections are preferred and proxying is not required.  Only applies to types ClusterIP, NodePort, and LoadBalancer. If this field is specified when creating a Service of type ExternalName, creation will fail. This field will be wiped when updating a Service to type ExternalName.  If this field is not specified, it will be initialized from the clusterIP field.  If this field is specified, clients must ensure that clusterIPs[0] and clusterIP have the same value.\n\nThis field may hold a maximum of two entries (dual-stack IPs, in either order). These IPs must correspond to the values of the ipFamilies field. Both clusterIPs and ipFamilies are governed by the ipFamilyPolicy field. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies",
           "items": {
             "type": "string"
           },
@@ -9335,7 +10019,7 @@
           "type": "string"
         },
         "externalTrafficPolicy": {
-          "description": "externalTrafficPolicy denotes if this Service desires to route external traffic to node-local or cluster-wide endpoints. \"Local\" preserves the client source IP and avoids a second hop for LoadBalancer and Nodeport type services, but risks potentially imbalanced traffic spreading. \"Cluster\" obscures the client source IP and may cause a second hop to another node, but should have good overall load-spreading.",
+          "description": "externalTrafficPolicy denotes if this Service desires to route external traffic to node-local or cluster-wide endpoints. \"Local\" preserves the client source IP and avoids a second hop for LoadBalancer and Nodeport type services, but risks potentially imbalanced traffic spreading. \"Cluster\" obscures the client source IP and may cause a second hop to another node, but should have good overall load-spreading.\n\n",
           "type": "string"
         },
         "healthCheckNodePort": {
@@ -9348,7 +10032,7 @@
           "type": "string"
         },
         "ipFamilies": {
-          "description": "IPFamilies is a list of IP families (e.g. IPv4, IPv6) assigned to this service, and is gated by the \"IPv6DualStack\" feature gate.  This field is usually assigned automatically based on cluster configuration and the ipFamilyPolicy field. If this field is specified manually, the requested family is available in the cluster, and ipFamilyPolicy allows it, it will be used; otherwise creation of the service will fail.  This field is conditionally mutable: it allows for adding or removing a secondary IP family, but it does not allow changing the primary IP family of the Service.  Valid values are \"IPv4\" and \"IPv6\".  This field only applies to Services of types ClusterIP, NodePort, and LoadBalancer, and does apply to \"headless\" services.  This field will be wiped when updating a Service to type ExternalName.\n\nThis field may hold a maximum of two entries (dual-stack families, in either order).  These families must correspond to the values of the clusterIPs field, if specified. Both clusterIPs and ipFamilies are governed by the ipFamilyPolicy field.",
+          "description": "IPFamilies is a list of IP families (e.g. IPv4, IPv6) assigned to this service. This field is usually assigned automatically based on cluster configuration and the ipFamilyPolicy field. If this field is specified manually, the requested family is available in the cluster, and ipFamilyPolicy allows it, it will be used; otherwise creation of the service will fail. This field is conditionally mutable: it allows for adding or removing a secondary IP family, but it does not allow changing the primary IP family of the Service. Valid values are \"IPv4\" and \"IPv6\".  This field only applies to Services of types ClusterIP, NodePort, and LoadBalancer, and does apply to \"headless\" services. This field will be wiped when updating a Service to type ExternalName.\n\nThis field may hold a maximum of two entries (dual-stack families, in either order).  These families must correspond to the values of the clusterIPs field, if specified. Both clusterIPs and ipFamilies are governed by the ipFamilyPolicy field.",
           "items": {
             "type": "string"
           },
@@ -9356,7 +10040,7 @@
           "x-kubernetes-list-type": "atomic"
         },
         "ipFamilyPolicy": {
-          "description": "IPFamilyPolicy represents the dual-stack-ness requested or required by this Service, and is gated by the \"IPv6DualStack\" feature gate.  If there is no value provided, then this field will be set to SingleStack. Services can be \"SingleStack\" (a single IP family), \"PreferDualStack\" (two IP families on dual-stack configured clusters or a single IP family on single-stack clusters), or \"RequireDualStack\" (two IP families on dual-stack configured clusters, otherwise fail). The ipFamilies and clusterIPs fields depend on the value of this field.  This field will be wiped when updating a service to type ExternalName.",
+          "description": "IPFamilyPolicy represents the dual-stack-ness requested or required by this Service. If there is no value provided, then this field will be set to SingleStack. Services can be \"SingleStack\" (a single IP family), \"PreferDualStack\" (two IP families on dual-stack configured clusters or a single IP family on single-stack clusters), or \"RequireDualStack\" (two IP families on dual-stack configured clusters, otherwise fail). The ipFamilies and clusterIPs fields depend on the value of this field. This field will be wiped when updating a service to type ExternalName.",
           "type": "string"
         },
         "loadBalancerClass": {
@@ -9364,7 +10048,7 @@
           "type": "string"
         },
         "loadBalancerIP": {
-          "description": "Only applies to Service Type: LoadBalancer LoadBalancer will get created with the IP specified in this field. This feature depends on whether the underlying cloud-provider supports specifying the loadBalancerIP when a load balancer is created. This field will be ignored if the cloud-provider does not support the feature.",
+          "description": "Only applies to Service Type: LoadBalancer. This feature depends on whether the underlying cloud-provider supports specifying the loadBalancerIP when a load balancer is created. This field will be ignored if the cloud-provider does not support the feature. Deprecated: This field was under-specified and its meaning varies across implementations, and it cannot support dual-stack. As of Kubernetes v1.24, users are encouraged to use implementation-specific annotations when available. This field may be removed in a future API version.",
           "type": "string"
         },
         "loadBalancerSourceRanges": {
@@ -9401,7 +10085,7 @@
           "x-kubernetes-map-type": "atomic"
         },
         "sessionAffinity": {
-          "description": "Supports \"ClientIP\" and \"None\". Used to maintain session affinity. Enable client IP based session affinity. Must be ClientIP or None. Defaults to None. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies",
+          "description": "Supports \"ClientIP\" and \"None\". Used to maintain session affinity. Enable client IP based session affinity. Must be ClientIP or None. Defaults to None. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies\n\n",
           "type": "string"
         },
         "sessionAffinityConfig": {
@@ -9409,7 +10093,7 @@
           "description": "sessionAffinityConfig contains the configurations of session affinity."
         },
         "type": {
-          "description": "type determines how the Service is exposed. Defaults to ClusterIP. Valid options are ExternalName, ClusterIP, NodePort, and LoadBalancer. \"ClusterIP\" allocates a cluster-internal IP address for load-balancing to endpoints. Endpoints are determined by the selector or if that is not specified, by manual construction of an Endpoints object or EndpointSlice objects. If clusterIP is \"None\", no virtual IP is allocated and the endpoints are published as a set of endpoints rather than a virtual IP. \"NodePort\" builds on ClusterIP and allocates a port on every node which routes to the same endpoints as the clusterIP. \"LoadBalancer\" builds on NodePort and creates an external load-balancer (if supported in the current cloud) which routes to the same endpoints as the clusterIP. \"ExternalName\" aliases this service to the specified externalName. Several other fields do not apply to ExternalName services. More info: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types",
+          "description": "type determines how the Service is exposed. Defaults to ClusterIP. Valid options are ExternalName, ClusterIP, NodePort, and LoadBalancer. \"ClusterIP\" allocates a cluster-internal IP address for load-balancing to endpoints. Endpoints are determined by the selector or if that is not specified, by manual construction of an Endpoints object or EndpointSlice objects. If clusterIP is \"None\", no virtual IP is allocated and the endpoints are published as a set of endpoints rather than a virtual IP. \"NodePort\" builds on ClusterIP and allocates a port on every node which routes to the same endpoints as the clusterIP. \"LoadBalancer\" builds on NodePort and creates an external load-balancer (if supported in the current cloud) which routes to the same endpoints as the clusterIP. \"ExternalName\" aliases this service to the specified externalName. Several other fields do not apply to ExternalName services. More info: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types\n\n",
           "type": "string"
         }
       },
@@ -9452,23 +10136,23 @@
       "description": "Represents a StorageOS persistent volume resource.",
       "properties": {
         "fsType": {
-          "description": "Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.",
+          "description": "fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.",
           "type": "string"
         },
         "readOnly": {
-          "description": "Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.",
+          "description": "readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.",
           "type": "boolean"
         },
         "secretRef": {
           "$ref": "#/definitions/io.k8s.api.core.v1.ObjectReference",
-          "description": "SecretRef specifies the secret to use for obtaining the StorageOS API credentials.  If not specified, default values will be attempted."
+          "description": "secretRef specifies the secret to use for obtaining the StorageOS API credentials.  If not specified, default values will be attempted."
         },
         "volumeName": {
-          "description": "VolumeName is the human-readable name of the StorageOS volume.  Volume names are only unique within a namespace.",
+          "description": "volumeName is the human-readable name of the StorageOS volume.  Volume names are only unique within a namespace.",
           "type": "string"
         },
         "volumeNamespace": {
-          "description": "VolumeNamespace specifies the scope of the volume within StorageOS.  If no namespace is specified then the Pod's namespace will be used.  This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to \"default\" if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.",
+          "description": "volumeNamespace specifies the scope of the volume within StorageOS.  If no namespace is specified then the Pod's namespace will be used.  This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to \"default\" if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.",
           "type": "string"
         }
       },
@@ -9478,23 +10162,23 @@
       "description": "Represents a StorageOS persistent volume resource.",
       "properties": {
         "fsType": {
-          "description": "Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.",
+          "description": "fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.",
           "type": "string"
         },
         "readOnly": {
-          "description": "Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.",
+          "description": "readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.",
           "type": "boolean"
         },
         "secretRef": {
           "$ref": "#/definitions/io.k8s.api.core.v1.LocalObjectReference",
-          "description": "SecretRef specifies the secret to use for obtaining the StorageOS API credentials.  If not specified, default values will be attempted."
+          "description": "secretRef specifies the secret to use for obtaining the StorageOS API credentials.  If not specified, default values will be attempted."
         },
         "volumeName": {
-          "description": "VolumeName is the human-readable name of the StorageOS volume.  Volume names are only unique within a namespace.",
+          "description": "volumeName is the human-readable name of the StorageOS volume.  Volume names are only unique within a namespace.",
           "type": "string"
         },
         "volumeNamespace": {
-          "description": "VolumeNamespace specifies the scope of the volume within StorageOS.  If no namespace is specified then the Pod's namespace will be used.  This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to \"default\" if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.",
+          "description": "volumeNamespace specifies the scope of the volume within StorageOS.  If no namespace is specified then the Pod's namespace will be used.  This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to \"default\" if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.",
           "type": "string"
         }
       },
@@ -9539,7 +10223,7 @@
       "description": "The node this Taint is attached to has the \"effect\" on any pod that does not tolerate the Taint.",
       "properties": {
         "effect": {
-          "description": "Required. The effect of the taint on pods that do not tolerate the taint. Valid effects are NoSchedule, PreferNoSchedule and NoExecute.",
+          "description": "Required. The effect of the taint on pods that do not tolerate the taint. Valid effects are NoSchedule, PreferNoSchedule and NoExecute.\n\n",
           "type": "string"
         },
         "key": {
@@ -9565,7 +10249,7 @@
       "description": "The pod this Toleration is attached to tolerates any taint that matches the triple <key,value,effect> using the matching operator <operator>.",
       "properties": {
         "effect": {
-          "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.",
+          "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.\n\n",
           "type": "string"
         },
         "key": {
@@ -9573,7 +10257,7 @@
           "type": "string"
         },
         "operator": {
-          "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.",
+          "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.\n\n",
           "type": "string"
         },
         "tolerationSeconds": {
@@ -9631,16 +10315,21 @@
           "description": "LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain."
         },
         "maxSkew": {
-          "description": "MaxSkew describes the degree to which pods may be unevenly distributed. When `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 1/1/0: | zone1 | zone2 | zone3 | |   P   |   P   |       | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 1/1/1; scheduling it onto zone1(zone2) would make the ActualSkew(2-0) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.",
+          "description": "MaxSkew describes the degree to which pods may be unevenly distributed. When `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | |  P P  |  P P  |   P   | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.",
+          "format": "int32",
+          "type": "integer"
+        },
+        "minDomains": {
+          "description": "MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule.\n\nFor example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | |  P P  |  P P  |  P P  | The number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew.\n\nThis is an alpha field and requires enabling MinDomainsInPodTopologySpread feature gate.",
           "format": "int32",
           "type": "integer"
         },
         "topologyKey": {
-          "description": "TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each <key, value> as a \"bucket\", and try to put balanced number of pods into each bucket. It's a required field.",
+          "description": "TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each <key, value> as a \"bucket\", and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes match the node selector. e.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology. And, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology. It's a required field.",
           "type": "string"
         },
         "whenUnsatisfiable": {
-          "description": "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location,\n  but giving higher precedence to topologies that would help reduce the\n  skew.\nA constraint is considered \"Unsatisfiable\" for an incoming pod if and only if every possible node assigment for that pod would violate \"MaxSkew\" on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P |   P   |   P   | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.",
+          "description": "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location,\n  but giving higher precedence to topologies that would help reduce the\n  skew.\nA constraint is considered \"Unsatisfiable\" for an incoming pod if and only if every possible node assignment for that pod would violate \"MaxSkew\" on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P |   P   |   P   | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.\n\n",
           "type": "string"
         }
       },
@@ -9679,123 +10368,123 @@
       "properties": {
         "awsElasticBlockStore": {
           "$ref": "#/definitions/io.k8s.api.core.v1.AWSElasticBlockStoreVolumeSource",
-          "description": "AWSElasticBlockStore represents an AWS Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore"
+          "description": "awsElasticBlockStore represents an AWS Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore"
         },
         "azureDisk": {
           "$ref": "#/definitions/io.k8s.api.core.v1.AzureDiskVolumeSource",
-          "description": "AzureDisk represents an Azure Data Disk mount on the host and bind mount to the pod."
+          "description": "azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod."
         },
         "azureFile": {
           "$ref": "#/definitions/io.k8s.api.core.v1.AzureFileVolumeSource",
-          "description": "AzureFile represents an Azure File Service mount on the host and bind mount to the pod."
+          "description": "azureFile represents an Azure File Service mount on the host and bind mount to the pod."
         },
         "cephfs": {
           "$ref": "#/definitions/io.k8s.api.core.v1.CephFSVolumeSource",
-          "description": "CephFS represents a Ceph FS mount on the host that shares a pod's lifetime"
+          "description": "cephFS represents a Ceph FS mount on the host that shares a pod's lifetime"
         },
         "cinder": {
           "$ref": "#/definitions/io.k8s.api.core.v1.CinderVolumeSource",
-          "description": "Cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md"
+          "description": "cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md"
         },
         "configMap": {
           "$ref": "#/definitions/io.k8s.api.core.v1.ConfigMapVolumeSource",
-          "description": "ConfigMap represents a configMap that should populate this volume"
+          "description": "configMap represents a configMap that should populate this volume"
         },
         "csi": {
           "$ref": "#/definitions/io.k8s.api.core.v1.CSIVolumeSource",
-          "description": "CSI (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature)."
+          "description": "csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature)."
         },
         "downwardAPI": {
           "$ref": "#/definitions/io.k8s.api.core.v1.DownwardAPIVolumeSource",
-          "description": "DownwardAPI represents downward API about the pod that should populate this volume"
+          "description": "downwardAPI represents downward API about the pod that should populate this volume"
         },
         "emptyDir": {
           "$ref": "#/definitions/io.k8s.api.core.v1.EmptyDirVolumeSource",
-          "description": "EmptyDir represents a temporary directory that shares a pod's lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir"
+          "description": "emptyDir represents a temporary directory that shares a pod's lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir"
         },
         "ephemeral": {
           "$ref": "#/definitions/io.k8s.api.core.v1.EphemeralVolumeSource",
-          "description": "Ephemeral represents a volume that is handled by a cluster storage driver. The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts, and deleted when the pod is removed.\n\nUse this if: a) the volume is only needed while the pod runs, b) features of normal volumes like restoring from snapshot or capacity\n   tracking are needed,\nc) the storage driver is specified through a storage class, and d) the storage driver supports dynamic volume provisioning through\n   a PersistentVolumeClaim (see EphemeralVolumeSource for more\n   information on the connection between this volume type\n   and PersistentVolumeClaim).\n\nUse PersistentVolumeClaim or one of the vendor-specific APIs for volumes that persist for longer than the lifecycle of an individual pod.\n\nUse CSI for light-weight local ephemeral volumes if the CSI driver is meant to be used that way - see the documentation of the driver for more information.\n\nA pod can use both types of ephemeral volumes and persistent volumes at the same time.\n\nThis is a beta feature and only available when the GenericEphemeralVolume feature gate is enabled."
+          "description": "ephemeral represents a volume that is handled by a cluster storage driver. The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts, and deleted when the pod is removed.\n\nUse this if: a) the volume is only needed while the pod runs, b) features of normal volumes like restoring from snapshot or capacity\n   tracking are needed,\nc) the storage driver is specified through a storage class, and d) the storage driver supports dynamic volume provisioning through\n   a PersistentVolumeClaim (see EphemeralVolumeSource for more\n   information on the connection between this volume type\n   and PersistentVolumeClaim).\n\nUse PersistentVolumeClaim or one of the vendor-specific APIs for volumes that persist for longer than the lifecycle of an individual pod.\n\nUse CSI for light-weight local ephemeral volumes if the CSI driver is meant to be used that way - see the documentation of the driver for more information.\n\nA pod can use both types of ephemeral volumes and persistent volumes at the same time."
         },
         "fc": {
           "$ref": "#/definitions/io.k8s.api.core.v1.FCVolumeSource",
-          "description": "FC represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod."
+          "description": "fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod."
         },
         "flexVolume": {
           "$ref": "#/definitions/io.k8s.api.core.v1.FlexVolumeSource",
-          "description": "FlexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin."
+          "description": "flexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin."
         },
         "flocker": {
           "$ref": "#/definitions/io.k8s.api.core.v1.FlockerVolumeSource",
-          "description": "Flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running"
+          "description": "flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running"
         },
         "gcePersistentDisk": {
           "$ref": "#/definitions/io.k8s.api.core.v1.GCEPersistentDiskVolumeSource",
-          "description": "GCEPersistentDisk represents a GCE Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk"
+          "description": "gcePersistentDisk represents a GCE Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk"
         },
         "gitRepo": {
           "$ref": "#/definitions/io.k8s.api.core.v1.GitRepoVolumeSource",
-          "description": "GitRepo represents a git repository at a particular revision. DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod's container."
+          "description": "gitRepo represents a git repository at a particular revision. DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod's container."
         },
         "glusterfs": {
           "$ref": "#/definitions/io.k8s.api.core.v1.GlusterfsVolumeSource",
-          "description": "Glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/glusterfs/README.md"
+          "description": "glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/glusterfs/README.md"
         },
         "hostPath": {
           "$ref": "#/definitions/io.k8s.api.core.v1.HostPathVolumeSource",
-          "description": "HostPath represents a pre-existing file or directory on the host machine that is directly exposed to the container. This is generally used for system agents or other privileged things that are allowed to see the host machine. Most containers will NOT need this. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath"
+          "description": "hostPath represents a pre-existing file or directory on the host machine that is directly exposed to the container. This is generally used for system agents or other privileged things that are allowed to see the host machine. Most containers will NOT need this. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath"
         },
         "iscsi": {
           "$ref": "#/definitions/io.k8s.api.core.v1.ISCSIVolumeSource",
-          "description": "ISCSI represents an ISCSI Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://examples.k8s.io/volumes/iscsi/README.md"
+          "description": "iscsi represents an ISCSI Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://examples.k8s.io/volumes/iscsi/README.md"
         },
         "name": {
-          "description": "Volume's name. Must be a DNS_LABEL and unique within the pod. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names",
+          "description": "name of the volume. Must be a DNS_LABEL and unique within the pod. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names",
           "type": "string"
         },
         "nfs": {
           "$ref": "#/definitions/io.k8s.api.core.v1.NFSVolumeSource",
-          "description": "NFS represents an NFS mount on the host that shares a pod's lifetime More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs"
+          "description": "nfs represents an NFS mount on the host that shares a pod's lifetime More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs"
         },
         "persistentVolumeClaim": {
           "$ref": "#/definitions/io.k8s.api.core.v1.PersistentVolumeClaimVolumeSource",
-          "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims"
+          "description": "persistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims"
         },
         "photonPersistentDisk": {
           "$ref": "#/definitions/io.k8s.api.core.v1.PhotonPersistentDiskVolumeSource",
-          "description": "PhotonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine"
+          "description": "photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine"
         },
         "portworxVolume": {
           "$ref": "#/definitions/io.k8s.api.core.v1.PortworxVolumeSource",
-          "description": "PortworxVolume represents a portworx volume attached and mounted on kubelets host machine"
+          "description": "portworxVolume represents a portworx volume attached and mounted on kubelets host machine"
         },
         "projected": {
           "$ref": "#/definitions/io.k8s.api.core.v1.ProjectedVolumeSource",
-          "description": "Items for all in one resources secrets, configmaps, and downward API"
+          "description": "projected items for all in one resources secrets, configmaps, and downward API"
         },
         "quobyte": {
           "$ref": "#/definitions/io.k8s.api.core.v1.QuobyteVolumeSource",
-          "description": "Quobyte represents a Quobyte mount on the host that shares a pod's lifetime"
+          "description": "quobyte represents a Quobyte mount on the host that shares a pod's lifetime"
         },
         "rbd": {
           "$ref": "#/definitions/io.k8s.api.core.v1.RBDVolumeSource",
-          "description": "RBD represents a Rados Block Device mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md"
+          "description": "rbd represents a Rados Block Device mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md"
         },
         "scaleIO": {
           "$ref": "#/definitions/io.k8s.api.core.v1.ScaleIOVolumeSource",
-          "description": "ScaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes."
+          "description": "scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes."
         },
         "secret": {
           "$ref": "#/definitions/io.k8s.api.core.v1.SecretVolumeSource",
-          "description": "Secret represents a secret that should populate this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret"
+          "description": "secret represents a secret that should populate this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret"
         },
         "storageos": {
           "$ref": "#/definitions/io.k8s.api.core.v1.StorageOSVolumeSource",
-          "description": "StorageOS represents a StorageOS volume attached and mounted on Kubernetes nodes."
+          "description": "storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes."
         },
         "vsphereVolume": {
           "$ref": "#/definitions/io.k8s.api.core.v1.VsphereVirtualDiskVolumeSource",
-          "description": "VsphereVolume represents a vSphere volume attached and mounted on kubelets host machine"
+          "description": "vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine"
         }
       },
       "required": [
@@ -9860,7 +10549,7 @@
       "properties": {
         "required": {
           "$ref": "#/definitions/io.k8s.api.core.v1.NodeSelector",
-          "description": "Required specifies hard node constraints that must be met."
+          "description": "required specifies hard node constraints that must be met."
         }
       },
       "type": "object"
@@ -9870,19 +10559,19 @@
       "properties": {
         "configMap": {
           "$ref": "#/definitions/io.k8s.api.core.v1.ConfigMapProjection",
-          "description": "information about the configMap data to project"
+          "description": "configMap information about the configMap data to project"
         },
         "downwardAPI": {
           "$ref": "#/definitions/io.k8s.api.core.v1.DownwardAPIProjection",
-          "description": "information about the downwardAPI data to project"
+          "description": "downwardAPI information about the downwardAPI data to project"
         },
         "secret": {
           "$ref": "#/definitions/io.k8s.api.core.v1.SecretProjection",
-          "description": "information about the secret data to project"
+          "description": "secret information about the secret data to project"
         },
         "serviceAccountToken": {
           "$ref": "#/definitions/io.k8s.api.core.v1.ServiceAccountTokenProjection",
-          "description": "information about the serviceAccountToken data to project"
+          "description": "serviceAccountToken is information about the serviceAccountToken data to project"
         }
       },
       "type": "object"
@@ -9891,19 +10580,19 @@
       "description": "Represents a vSphere volume resource.",
       "properties": {
         "fsType": {
-          "description": "Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.",
+          "description": "fsType is filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.",
           "type": "string"
         },
         "storagePolicyID": {
-          "description": "Storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.",
+          "description": "storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.",
           "type": "string"
         },
         "storagePolicyName": {
-          "description": "Storage Policy Based Management (SPBM) profile name.",
+          "description": "storagePolicyName is the storage Policy Based Management (SPBM) profile name.",
           "type": "string"
         },
         "volumePath": {
-          "description": "Path that identifies vSphere volume vmdk",
+          "description": "volumePath is the path that identifies vSphere volume vmdk",
           "type": "string"
         }
       },
@@ -9957,7 +10646,7 @@
       "description": "Endpoint represents a single logical \"backend\" implementing a service.",
       "properties": {
         "addresses": {
-          "description": "addresses of this endpoint. The contents of this field are interpreted according to the corresponding EndpointSlice addressType field. Consumers must handle different types of addresses in the context of their own capabilities. This must contain at least one address but no more than 100.",
+          "description": "addresses of this endpoint. The contents of this field are interpreted according to the corresponding EndpointSlice addressType field. Consumers must handle different types of addresses in the context of their own capabilities. This must contain at least one address but no more than 100. These are all assumed to be fungible and clients may choose to only use the first element. Refer to: https://issue.k8s.io/106267",
           "items": {
             "type": "string"
           },
@@ -10037,7 +10726,7 @@
       "description": "EndpointPort represents a Port used by an EndpointSlice",
       "properties": {
         "appProtocol": {
-          "description": "The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and http://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.",
+          "description": "The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and https://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.",
           "type": "string"
         },
         "name": {
@@ -10061,7 +10750,7 @@
       "description": "EndpointSlice represents a subset of the endpoints that implement a service. For a given service there may be multiple EndpointSlice objects, selected by labels, which must be joined to produce the full set of endpoints.",
       "properties": {
         "addressType": {
-          "description": "addressType specifies the type of address carried by this EndpointSlice. All addresses in this slice must be the same type. This field is immutable after creation. The following address types are currently supported: * IPv4: Represents an IPv4 Address. * IPv6: Represents an IPv6 Address. * FQDN: Represents a Fully Qualified Domain Name.",
+          "description": "addressType specifies the type of address carried by this EndpointSlice. All addresses in this slice must be the same type. This field is immutable after creation. The following address types are currently supported: * IPv4: Represents an IPv4 Address. * IPv6: Represents an IPv6 Address. * FQDN: Represents a Fully Qualified Domain Name.\n\n",
           "type": "string"
         },
         "apiVersion": {
@@ -10158,7 +10847,7 @@
       "description": "Endpoint represents a single logical \"backend\" implementing a service.",
       "properties": {
         "addresses": {
-          "description": "addresses of this endpoint. The contents of this field are interpreted according to the corresponding EndpointSlice addressType field. Consumers must handle different types of addresses in the context of their own capabilities. This must contain at least one address but no more than 100.",
+          "description": "addresses of this endpoint. The contents of this field are interpreted according to the corresponding EndpointSlice addressType field. Consumers must handle different types of addresses in the context of their own capabilities. This must contain at least one address but no more than 100. These are all assumed to be fungible and clients may choose to only use the first element. Refer to: https://issue.k8s.io/106267",
           "items": {
             "type": "string"
           },
@@ -10234,7 +10923,7 @@
       "description": "EndpointPort represents a Port used by an EndpointSlice",
       "properties": {
         "appProtocol": {
-          "description": "The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and http://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.",
+          "description": "The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and https://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.",
           "type": "string"
         },
         "name": {
@@ -11065,7 +11754,7 @@
       "type": "object"
     },
     "io.k8s.api.flowcontrol.v1beta1.ResourcePolicyRule": {
-      "description": "ResourcePolicyRule is a predicate that matches some resource requests, testing the request's verb and the target resource. A ResourcePolicyRule matches a resource request if and only if: (a) at least one member of verbs matches the request, (b) at least one member of apiGroups matches the request, (c) at least one member of resources matches the request, and (d) least one member of namespaces matches the request.",
+      "description": "ResourcePolicyRule is a predicate that matches some resource requests, testing the request's verb and the target resource. A ResourcePolicyRule matches a resource request if and only if: (a) at least one member of verbs matches the request, (b) at least one member of apiGroups matches the request, (c) at least one member of resources matches the request, and (d) either (d1) the request does not specify a namespace (i.e., `Namespace==\"\"`) and clusterScope is true or (d2) the request specifies a namespace and least one member of namespaces matches the request's namespace.",
       "properties": {
         "apiGroups": {
           "description": "`apiGroups` is a list of matching API groups and may not be empty. \"*\" matches all API groups and, if present, must be the only entry. Required.",
@@ -11177,6 +11866,555 @@
       ],
       "type": "object"
     },
+    "io.k8s.api.flowcontrol.v1beta2.FlowDistinguisherMethod": {
+      "description": "FlowDistinguisherMethod specifies the method of a flow distinguisher.",
+      "properties": {
+        "type": {
+          "description": "`type` is the type of flow distinguisher method The supported types are \"ByUser\" and \"ByNamespace\". Required.",
+          "type": "string"
+        }
+      },
+      "required": [
+        "type"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.flowcontrol.v1beta2.FlowSchema": {
+      "description": "FlowSchema defines the schema of a group of flows. Note that a flow is made up of a set of inbound API requests with similar attributes and is identified by a pair of strings: the name of the FlowSchema and a \"flow distinguisher\".",
+      "properties": {
+        "apiVersion": {
+          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
+          "type": "string"
+        },
+        "kind": {
+          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
+          "type": "string"
+        },
+        "metadata": {
+          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta",
+          "description": "`metadata` is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata"
+        },
+        "spec": {
+          "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.FlowSchemaSpec",
+          "description": "`spec` is the specification of the desired behavior of a FlowSchema. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status"
+        },
+        "status": {
+          "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.FlowSchemaStatus",
+          "description": "`status` is the current status of a FlowSchema. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status"
+        }
+      },
+      "type": "object",
+      "x-kubernetes-group-version-kind": [
+        {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "FlowSchema",
+          "version": "v1beta2"
+        }
+      ]
+    },
+    "io.k8s.api.flowcontrol.v1beta2.FlowSchemaCondition": {
+      "description": "FlowSchemaCondition describes conditions for a FlowSchema.",
+      "properties": {
+        "lastTransitionTime": {
+          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time",
+          "description": "`lastTransitionTime` is the last time the condition transitioned from one status to another."
+        },
+        "message": {
+          "description": "`message` is a human-readable message indicating details about last transition.",
+          "type": "string"
+        },
+        "reason": {
+          "description": "`reason` is a unique, one-word, CamelCase reason for the condition's last transition.",
+          "type": "string"
+        },
+        "status": {
+          "description": "`status` is the status of the condition. Can be True, False, Unknown. Required.",
+          "type": "string"
+        },
+        "type": {
+          "description": "`type` is the type of the condition. Required.",
+          "type": "string"
+        }
+      },
+      "type": "object"
+    },
+    "io.k8s.api.flowcontrol.v1beta2.FlowSchemaList": {
+      "description": "FlowSchemaList is a list of FlowSchema objects.",
+      "properties": {
+        "apiVersion": {
+          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
+          "type": "string"
+        },
+        "items": {
+          "description": "`items` is a list of FlowSchemas.",
+          "items": {
+            "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.FlowSchema"
+          },
+          "type": "array"
+        },
+        "kind": {
+          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
+          "type": "string"
+        },
+        "metadata": {
+          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta",
+          "description": "`metadata` is the standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata"
+        }
+      },
+      "required": [
+        "items"
+      ],
+      "type": "object",
+      "x-kubernetes-group-version-kind": [
+        {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "FlowSchemaList",
+          "version": "v1beta2"
+        }
+      ]
+    },
+    "io.k8s.api.flowcontrol.v1beta2.FlowSchemaSpec": {
+      "description": "FlowSchemaSpec describes how the FlowSchema's specification looks like.",
+      "properties": {
+        "distinguisherMethod": {
+          "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.FlowDistinguisherMethod",
+          "description": "`distinguisherMethod` defines how to compute the flow distinguisher for requests that match this schema. `nil` specifies that the distinguisher is disabled and thus will always be the empty string."
+        },
+        "matchingPrecedence": {
+          "description": "`matchingPrecedence` is used to choose among the FlowSchemas that match a given request. The chosen FlowSchema is among those with the numerically lowest (which we take to be logically highest) MatchingPrecedence.  Each MatchingPrecedence value must be ranged in [1,10000]. Note that if the precedence is not specified, it will be set to 1000 as default.",
+          "format": "int32",
+          "type": "integer"
+        },
+        "priorityLevelConfiguration": {
+          "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfigurationReference",
+          "description": "`priorityLevelConfiguration` should reference a PriorityLevelConfiguration in the cluster. If the reference cannot be resolved, the FlowSchema will be ignored and marked as invalid in its status. Required."
+        },
+        "rules": {
+          "description": "`rules` describes which requests will match this flow schema. This FlowSchema matches a request if and only if at least one member of rules matches the request. if it is an empty slice, there will be no requests matching the FlowSchema.",
+          "items": {
+            "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PolicyRulesWithSubjects"
+          },
+          "type": "array",
+          "x-kubernetes-list-type": "atomic"
+        }
+      },
+      "required": [
+        "priorityLevelConfiguration"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.flowcontrol.v1beta2.FlowSchemaStatus": {
+      "description": "FlowSchemaStatus represents the current state of a FlowSchema.",
+      "properties": {
+        "conditions": {
+          "description": "`conditions` is a list of the current states of FlowSchema.",
+          "items": {
+            "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.FlowSchemaCondition"
+          },
+          "type": "array",
+          "x-kubernetes-list-map-keys": [
+            "type"
+          ],
+          "x-kubernetes-list-type": "map"
+        }
+      },
+      "type": "object"
+    },
+    "io.k8s.api.flowcontrol.v1beta2.GroupSubject": {
+      "description": "GroupSubject holds detailed information for group-kind subject.",
+      "properties": {
+        "name": {
+          "description": "name is the user group that matches, or \"*\" to match all user groups. See https://github.com/kubernetes/apiserver/blob/master/pkg/authentication/user/user.go for some well-known group names. Required.",
+          "type": "string"
+        }
+      },
+      "required": [
+        "name"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.flowcontrol.v1beta2.LimitResponse": {
+      "description": "LimitResponse defines how to handle requests that can not be executed right now.",
+      "properties": {
+        "queuing": {
+          "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.QueuingConfiguration",
+          "description": "`queuing` holds the configuration parameters for queuing. This field may be non-empty only if `type` is `\"Queue\"`."
+        },
+        "type": {
+          "description": "`type` is \"Queue\" or \"Reject\". \"Queue\" means that requests that can not be executed upon arrival are held in a queue until they can be executed or a queuing limit is reached. \"Reject\" means that requests that can not be executed upon arrival are rejected. Required.",
+          "type": "string"
+        }
+      },
+      "required": [
+        "type"
+      ],
+      "type": "object",
+      "x-kubernetes-unions": [
+        {
+          "discriminator": "type",
+          "fields-to-discriminateBy": {
+            "queuing": "Queuing"
+          }
+        }
+      ]
+    },
+    "io.k8s.api.flowcontrol.v1beta2.LimitedPriorityLevelConfiguration": {
+      "description": "LimitedPriorityLevelConfiguration specifies how to handle requests that are subject to limits. It addresses two issues:\n * How are requests for this priority level limited?\n * What should be done with requests that exceed the limit?",
+      "properties": {
+        "assuredConcurrencyShares": {
+          "description": "`assuredConcurrencyShares` (ACS) configures the execution limit, which is a limit on the number of requests of this priority level that may be exeucting at a given time.  ACS must be a positive number. The server's concurrency limit (SCL) is divided among the concurrency-controlled priority levels in proportion to their assured concurrency shares. This produces the assured concurrency value (ACV) --- the number of requests that may be executing at a time --- for each such priority level:\n\n            ACV(l) = ceil( SCL * ACS(l) / ( sum[priority levels k] ACS(k) ) )\n\nbigger numbers of ACS mean more reserved concurrent requests (at the expense of every other PL). This field has a default value of 30.",
+          "format": "int32",
+          "type": "integer"
+        },
+        "limitResponse": {
+          "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.LimitResponse",
+          "description": "`limitResponse` indicates what to do with requests that can not be executed right now"
+        }
+      },
+      "type": "object"
+    },
+    "io.k8s.api.flowcontrol.v1beta2.NonResourcePolicyRule": {
+      "description": "NonResourcePolicyRule is a predicate that matches non-resource requests according to their verb and the target non-resource URL. A NonResourcePolicyRule matches a request if and only if both (a) at least one member of verbs matches the request and (b) at least one member of nonResourceURLs matches the request.",
+      "properties": {
+        "nonResourceURLs": {
+          "description": "`nonResourceURLs` is a set of url prefixes that a user should have access to and may not be empty. For example:\n  - \"/healthz\" is legal\n  - \"/hea*\" is illegal\n  - \"/hea\" is legal but matches nothing\n  - \"/hea/*\" also matches nothing\n  - \"/healthz/*\" matches all per-component health checks.\n\"*\" matches all non-resource urls. if it is present, it must be the only entry. Required.",
+          "items": {
+            "type": "string"
+          },
+          "type": "array",
+          "x-kubernetes-list-type": "set"
+        },
+        "verbs": {
+          "description": "`verbs` is a list of matching verbs and may not be empty. \"*\" matches all verbs. If it is present, it must be the only entry. Required.",
+          "items": {
+            "type": "string"
+          },
+          "type": "array",
+          "x-kubernetes-list-type": "set"
+        }
+      },
+      "required": [
+        "verbs",
+        "nonResourceURLs"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.flowcontrol.v1beta2.PolicyRulesWithSubjects": {
+      "description": "PolicyRulesWithSubjects prescribes a test that applies to a request to an apiserver. The test considers the subject making the request, the verb being requested, and the resource to be acted upon. This PolicyRulesWithSubjects matches a request if and only if both (a) at least one member of subjects matches the request and (b) at least one member of resourceRules or nonResourceRules matches the request.",
+      "properties": {
+        "nonResourceRules": {
+          "description": "`nonResourceRules` is a list of NonResourcePolicyRules that identify matching requests according to their verb and the target non-resource URL.",
+          "items": {
+            "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.NonResourcePolicyRule"
+          },
+          "type": "array",
+          "x-kubernetes-list-type": "atomic"
+        },
+        "resourceRules": {
+          "description": "`resourceRules` is a slice of ResourcePolicyRules that identify matching requests according to their verb and the target resource. At least one of `resourceRules` and `nonResourceRules` has to be non-empty.",
+          "items": {
+            "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.ResourcePolicyRule"
+          },
+          "type": "array",
+          "x-kubernetes-list-type": "atomic"
+        },
+        "subjects": {
+          "description": "subjects is the list of normal user, serviceaccount, or group that this rule cares about. There must be at least one member in this slice. A slice that includes both the system:authenticated and system:unauthenticated user groups matches every request. Required.",
+          "items": {
+            "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.Subject"
+          },
+          "type": "array",
+          "x-kubernetes-list-type": "atomic"
+        }
+      },
+      "required": [
+        "subjects"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfiguration": {
+      "description": "PriorityLevelConfiguration represents the configuration of a priority level.",
+      "properties": {
+        "apiVersion": {
+          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
+          "type": "string"
+        },
+        "kind": {
+          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
+          "type": "string"
+        },
+        "metadata": {
+          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta",
+          "description": "`metadata` is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata"
+        },
+        "spec": {
+          "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfigurationSpec",
+          "description": "`spec` is the specification of the desired behavior of a \"request-priority\". More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status"
+        },
+        "status": {
+          "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfigurationStatus",
+          "description": "`status` is the current status of a \"request-priority\". More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status"
+        }
+      },
+      "type": "object",
+      "x-kubernetes-group-version-kind": [
+        {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "PriorityLevelConfiguration",
+          "version": "v1beta2"
+        }
+      ]
+    },
+    "io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfigurationCondition": {
+      "description": "PriorityLevelConfigurationCondition defines the condition of priority level.",
+      "properties": {
+        "lastTransitionTime": {
+          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time",
+          "description": "`lastTransitionTime` is the last time the condition transitioned from one status to another."
+        },
+        "message": {
+          "description": "`message` is a human-readable message indicating details about last transition.",
+          "type": "string"
+        },
+        "reason": {
+          "description": "`reason` is a unique, one-word, CamelCase reason for the condition's last transition.",
+          "type": "string"
+        },
+        "status": {
+          "description": "`status` is the status of the condition. Can be True, False, Unknown. Required.",
+          "type": "string"
+        },
+        "type": {
+          "description": "`type` is the type of the condition. Required.",
+          "type": "string"
+        }
+      },
+      "type": "object"
+    },
+    "io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfigurationList": {
+      "description": "PriorityLevelConfigurationList is a list of PriorityLevelConfiguration objects.",
+      "properties": {
+        "apiVersion": {
+          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
+          "type": "string"
+        },
+        "items": {
+          "description": "`items` is a list of request-priorities.",
+          "items": {
+            "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfiguration"
+          },
+          "type": "array"
+        },
+        "kind": {
+          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
+          "type": "string"
+        },
+        "metadata": {
+          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta",
+          "description": "`metadata` is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata"
+        }
+      },
+      "required": [
+        "items"
+      ],
+      "type": "object",
+      "x-kubernetes-group-version-kind": [
+        {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "PriorityLevelConfigurationList",
+          "version": "v1beta2"
+        }
+      ]
+    },
+    "io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfigurationReference": {
+      "description": "PriorityLevelConfigurationReference contains information that points to the \"request-priority\" being used.",
+      "properties": {
+        "name": {
+          "description": "`name` is the name of the priority level configuration being referenced Required.",
+          "type": "string"
+        }
+      },
+      "required": [
+        "name"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfigurationSpec": {
+      "description": "PriorityLevelConfigurationSpec specifies the configuration of a priority level.",
+      "properties": {
+        "limited": {
+          "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.LimitedPriorityLevelConfiguration",
+          "description": "`limited` specifies how requests are handled for a Limited priority level. This field must be non-empty if and only if `type` is `\"Limited\"`."
+        },
+        "type": {
+          "description": "`type` indicates whether this priority level is subject to limitation on request execution.  A value of `\"Exempt\"` means that requests of this priority level are not subject to a limit (and thus are never queued) and do not detract from the capacity made available to other priority levels.  A value of `\"Limited\"` means that (a) requests of this priority level _are_ subject to limits and (b) some of the server's limited capacity is made available exclusively to this priority level. Required.",
+          "type": "string"
+        }
+      },
+      "required": [
+        "type"
+      ],
+      "type": "object",
+      "x-kubernetes-unions": [
+        {
+          "discriminator": "type",
+          "fields-to-discriminateBy": {
+            "limited": "Limited"
+          }
+        }
+      ]
+    },
+    "io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfigurationStatus": {
+      "description": "PriorityLevelConfigurationStatus represents the current state of a \"request-priority\".",
+      "properties": {
+        "conditions": {
+          "description": "`conditions` is the current state of \"request-priority\".",
+          "items": {
+            "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfigurationCondition"
+          },
+          "type": "array",
+          "x-kubernetes-list-map-keys": [
+            "type"
+          ],
+          "x-kubernetes-list-type": "map"
+        }
+      },
+      "type": "object"
+    },
+    "io.k8s.api.flowcontrol.v1beta2.QueuingConfiguration": {
+      "description": "QueuingConfiguration holds the configuration parameters for queuing",
+      "properties": {
+        "handSize": {
+          "description": "`handSize` is a small positive number that configures the shuffle sharding of requests into queues.  When enqueuing a request at this priority level the request's flow identifier (a string pair) is hashed and the hash value is used to shuffle the list of queues and deal a hand of the size specified here.  The request is put into one of the shortest queues in that hand. `handSize` must be no larger than `queues`, and should be significantly smaller (so that a few heavy flows do not saturate most of the queues).  See the user-facing documentation for more extensive guidance on setting this field.  This field has a default value of 8.",
+          "format": "int32",
+          "type": "integer"
+        },
+        "queueLengthLimit": {
+          "description": "`queueLengthLimit` is the maximum number of requests allowed to be waiting in a given queue of this priority level at a time; excess requests are rejected.  This value must be positive.  If not specified, it will be defaulted to 50.",
+          "format": "int32",
+          "type": "integer"
+        },
+        "queues": {
+          "description": "`queues` is the number of queues for this priority level. The queues exist independently at each apiserver. The value must be positive.  Setting it to 1 effectively precludes shufflesharding and thus makes the distinguisher method of associated flow schemas irrelevant.  This field has a default value of 64.",
+          "format": "int32",
+          "type": "integer"
+        }
+      },
+      "type": "object"
+    },
+    "io.k8s.api.flowcontrol.v1beta2.ResourcePolicyRule": {
+      "description": "ResourcePolicyRule is a predicate that matches some resource requests, testing the request's verb and the target resource. A ResourcePolicyRule matches a resource request if and only if: (a) at least one member of verbs matches the request, (b) at least one member of apiGroups matches the request, (c) at least one member of resources matches the request, and (d) either (d1) the request does not specify a namespace (i.e., `Namespace==\"\"`) and clusterScope is true or (d2) the request specifies a namespace and least one member of namespaces matches the request's namespace.",
+      "properties": {
+        "apiGroups": {
+          "description": "`apiGroups` is a list of matching API groups and may not be empty. \"*\" matches all API groups and, if present, must be the only entry. Required.",
+          "items": {
+            "type": "string"
+          },
+          "type": "array",
+          "x-kubernetes-list-type": "set"
+        },
+        "clusterScope": {
+          "description": "`clusterScope` indicates whether to match requests that do not specify a namespace (which happens either because the resource is not namespaced or the request targets all namespaces). If this field is omitted or false then the `namespaces` field must contain a non-empty list.",
+          "type": "boolean"
+        },
+        "namespaces": {
+          "description": "`namespaces` is a list of target namespaces that restricts matches.  A request that specifies a target namespace matches only if either (a) this list contains that target namespace or (b) this list contains \"*\".  Note that \"*\" matches any specified namespace but does not match a request that _does not specify_ a namespace (see the `clusterScope` field for that). This list may be empty, but only if `clusterScope` is true.",
+          "items": {
+            "type": "string"
+          },
+          "type": "array",
+          "x-kubernetes-list-type": "set"
+        },
+        "resources": {
+          "description": "`resources` is a list of matching resources (i.e., lowercase and plural) with, if desired, subresource.  For example, [ \"services\", \"nodes/status\" ].  This list may not be empty. \"*\" matches all resources and, if present, must be the only entry. Required.",
+          "items": {
+            "type": "string"
+          },
+          "type": "array",
+          "x-kubernetes-list-type": "set"
+        },
+        "verbs": {
+          "description": "`verbs` is a list of matching verbs and may not be empty. \"*\" matches all verbs and, if present, must be the only entry. Required.",
+          "items": {
+            "type": "string"
+          },
+          "type": "array",
+          "x-kubernetes-list-type": "set"
+        }
+      },
+      "required": [
+        "verbs",
+        "apiGroups",
+        "resources"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.flowcontrol.v1beta2.ServiceAccountSubject": {
+      "description": "ServiceAccountSubject holds detailed information for service-account-kind subject.",
+      "properties": {
+        "name": {
+          "description": "`name` is the name of matching ServiceAccount objects, or \"*\" to match regardless of name. Required.",
+          "type": "string"
+        },
+        "namespace": {
+          "description": "`namespace` is the namespace of matching ServiceAccount objects. Required.",
+          "type": "string"
+        }
+      },
+      "required": [
+        "namespace",
+        "name"
+      ],
+      "type": "object"
+    },
+    "io.k8s.api.flowcontrol.v1beta2.Subject": {
+      "description": "Subject matches the originator of a request, as identified by the request authentication system. There are three ways of matching an originator; by user, group, or service account.",
+      "properties": {
+        "group": {
+          "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.GroupSubject",
+          "description": "`group` matches based on user group name."
+        },
+        "kind": {
+          "description": "`kind` indicates which one of the other fields is non-empty. Required",
+          "type": "string"
+        },
+        "serviceAccount": {
+          "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.ServiceAccountSubject",
+          "description": "`serviceAccount` matches ServiceAccounts."
+        },
+        "user": {
+          "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.UserSubject",
+          "description": "`user` matches based on username."
+        }
+      },
+      "required": [
+        "kind"
+      ],
+      "type": "object",
+      "x-kubernetes-unions": [
+        {
+          "discriminator": "kind",
+          "fields-to-discriminateBy": {
+            "group": "Group",
+            "serviceAccount": "ServiceAccount",
+            "user": "User"
+          }
+        }
+      ]
+    },
+    "io.k8s.api.flowcontrol.v1beta2.UserSubject": {
+      "description": "UserSubject holds detailed information for user-kind subject.",
+      "properties": {
+        "name": {
+          "description": "`name` is the username that matches, or \"*\" to match all usernames. Required.",
+          "type": "string"
+        }
+      },
+      "required": [
+        "name"
+      ],
+      "type": "object"
+    },
     "io.k8s.api.networking.v1.HTTPIngressPath": {
       "description": "HTTPIngressPath associates a path with a backend. Incoming urls matching the path are forwarded to the backend.",
       "properties": {
@@ -11367,7 +12605,7 @@
           "type": "string"
         },
         "scope": {
-          "description": "Scope represents if this refers to a cluster or namespace scoped resource. This may be set to \"Cluster\" (default) or \"Namespace\". Field can be enabled with IngressClassNamespacedParams feature gate.",
+          "description": "Scope represents if this refers to a cluster or namespace scoped resource. This may be set to \"Cluster\" (default) or \"Namespace\".",
           "type": "string"
         }
       },
@@ -11532,6 +12770,10 @@
         "spec": {
           "$ref": "#/definitions/io.k8s.api.networking.v1.NetworkPolicySpec",
           "description": "Specification of the desired behavior for this NetworkPolicy."
+        },
+        "status": {
+          "$ref": "#/definitions/io.k8s.api.networking.v1.NetworkPolicyStatus",
+          "description": "Status is the current state of the NetworkPolicy. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status"
         }
       },
       "type": "object",
@@ -11689,6 +12931,25 @@
       ],
       "type": "object"
     },
+    "io.k8s.api.networking.v1.NetworkPolicyStatus": {
+      "description": "NetworkPolicyStatus describe the current state of the NetworkPolicy.",
+      "properties": {
+        "conditions": {
+          "description": "Conditions holds an array of metav1.Condition that describe the state of the NetworkPolicy. Current service state",
+          "items": {
+            "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Condition"
+          },
+          "type": "array",
+          "x-kubernetes-list-map-keys": [
+            "type"
+          ],
+          "x-kubernetes-list-type": "map",
+          "x-kubernetes-patch-merge-key": "type",
+          "x-kubernetes-patch-strategy": "merge"
+        }
+      },
+      "type": "object"
+    },
     "io.k8s.api.networking.v1.ServiceBackendPort": {
       "description": "ServiceBackendPort is the service port being referenced.",
       "properties": {
@@ -11738,7 +12999,7 @@
         },
         "overhead": {
           "$ref": "#/definitions/io.k8s.api.node.v1.Overhead",
-          "description": "Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. For more details, see\n https://kubernetes.io/docs/concepts/scheduling-eviction/pod-overhead/\nThis field is in beta starting v1.18 and is only honored by servers that enable the PodOverhead feature."
+          "description": "Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. For more details, see\n https://kubernetes.io/docs/concepts/scheduling-eviction/pod-overhead/"
         },
         "scheduling": {
           "$ref": "#/definitions/io.k8s.api.node.v1.Scheduling",
@@ -11814,129 +13075,6 @@
       },
       "type": "object"
     },
-    "io.k8s.api.node.v1alpha1.Overhead": {
-      "description": "Overhead structure represents the resource overhead associated with running a pod.",
-      "properties": {
-        "podFixed": {
-          "additionalProperties": {
-            "$ref": "#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"
-          },
-          "description": "PodFixed represents the fixed resource overhead associated with running a pod.",
-          "type": "object"
-        }
-      },
-      "type": "object"
-    },
-    "io.k8s.api.node.v1alpha1.RuntimeClass": {
-      "description": "RuntimeClass defines a class of container runtime supported in the cluster. The RuntimeClass is used to determine which container runtime is used to run all containers in a pod. RuntimeClasses are (currently) manually defined by a user or cluster provisioner, and referenced in the PodSpec. The Kubelet is responsible for resolving the RuntimeClassName reference before running the pod.  For more details, see https://git.k8s.io/enhancements/keps/sig-node/585-runtime-class",
-      "properties": {
-        "apiVersion": {
-          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
-          "type": "string"
-        },
-        "kind": {
-          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
-          "type": "string"
-        },
-        "metadata": {
-          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta",
-          "description": "More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata"
-        },
-        "spec": {
-          "$ref": "#/definitions/io.k8s.api.node.v1alpha1.RuntimeClassSpec",
-          "description": "Specification of the RuntimeClass More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status"
-        }
-      },
-      "required": [
-        "spec"
-      ],
-      "type": "object",
-      "x-kubernetes-group-version-kind": [
-        {
-          "group": "node.k8s.io",
-          "kind": "RuntimeClass",
-          "version": "v1alpha1"
-        }
-      ]
-    },
-    "io.k8s.api.node.v1alpha1.RuntimeClassList": {
-      "description": "RuntimeClassList is a list of RuntimeClass objects.",
-      "properties": {
-        "apiVersion": {
-          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
-          "type": "string"
-        },
-        "items": {
-          "description": "Items is a list of schema objects.",
-          "items": {
-            "$ref": "#/definitions/io.k8s.api.node.v1alpha1.RuntimeClass"
-          },
-          "type": "array"
-        },
-        "kind": {
-          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
-          "type": "string"
-        },
-        "metadata": {
-          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta",
-          "description": "Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata"
-        }
-      },
-      "required": [
-        "items"
-      ],
-      "type": "object",
-      "x-kubernetes-group-version-kind": [
-        {
-          "group": "node.k8s.io",
-          "kind": "RuntimeClassList",
-          "version": "v1alpha1"
-        }
-      ]
-    },
-    "io.k8s.api.node.v1alpha1.RuntimeClassSpec": {
-      "description": "RuntimeClassSpec is a specification of a RuntimeClass. It contains parameters that are required to describe the RuntimeClass to the Container Runtime Interface (CRI) implementation, as well as any other components that need to understand how the pod will be run. The RuntimeClassSpec is immutable.",
-      "properties": {
-        "overhead": {
-          "$ref": "#/definitions/io.k8s.api.node.v1alpha1.Overhead",
-          "description": "Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. For more details, see https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.md This field is beta-level as of Kubernetes v1.18, and is only honored by servers that enable the PodOverhead feature."
-        },
-        "runtimeHandler": {
-          "description": "RuntimeHandler specifies the underlying runtime and configuration that the CRI implementation will use to handle pods of this class. The possible values are specific to the node & CRI configuration.  It is assumed that all handlers are available on every node, and handlers of the same name are equivalent on every node. For example, a handler called \"runc\" might specify that the runc OCI runtime (using native Linux containers) will be used to run the containers in a pod. The RuntimeHandler must be lowercase, conform to the DNS Label (RFC 1123) requirements, and is immutable.",
-          "type": "string"
-        },
-        "scheduling": {
-          "$ref": "#/definitions/io.k8s.api.node.v1alpha1.Scheduling",
-          "description": "Scheduling holds the scheduling constraints to ensure that pods running with this RuntimeClass are scheduled to nodes that support it. If scheduling is nil, this RuntimeClass is assumed to be supported by all nodes."
-        }
-      },
-      "required": [
-        "runtimeHandler"
-      ],
-      "type": "object"
-    },
-    "io.k8s.api.node.v1alpha1.Scheduling": {
-      "description": "Scheduling specifies the scheduling constraints for nodes supporting a RuntimeClass.",
-      "properties": {
-        "nodeSelector": {
-          "additionalProperties": {
-            "type": "string"
-          },
-          "description": "nodeSelector lists labels that must be present on nodes that support this RuntimeClass. Pods using this RuntimeClass can only be scheduled to a node matched by this selector. The RuntimeClass nodeSelector is merged with a pod's existing nodeSelector. Any conflicts will cause the pod to be rejected in admission.",
-          "type": "object",
-          "x-kubernetes-map-type": "atomic"
-        },
-        "tolerations": {
-          "description": "tolerations are appended (excluding duplicates) to pods running with this RuntimeClass during admission, effectively unioning the set of nodes tolerated by the pod and the RuntimeClass.",
-          "items": {
-            "$ref": "#/definitions/io.k8s.api.core.v1.Toleration"
-          },
-          "type": "array",
-          "x-kubernetes-list-type": "atomic"
-        }
-      },
-      "type": "object"
-    },
     "io.k8s.api.node.v1beta1.Overhead": {
       "description": "Overhead structure represents the resource overhead associated with running a pod.",
       "properties": {
@@ -11971,7 +13109,7 @@
         },
         "overhead": {
           "$ref": "#/definitions/io.k8s.api.node.v1beta1.Overhead",
-          "description": "Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. For more details, see https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.md This field is beta-level as of Kubernetes v1.18, and is only honored by servers that enable the PodOverhead feature."
+          "description": "Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. For more details, see https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.md"
         },
         "scheduling": {
           "$ref": "#/definitions/io.k8s.api.node.v1beta1.Scheduling",
@@ -12398,8 +13536,7 @@
         },
         "selector": {
           "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector",
-          "description": "Label query over pods whose evictions are managed by the disruption budget. A null selector selects no pods. An empty selector ({}) also selects no pods, which differs from standard behavior of selecting all pods. In policy/v1, an empty selector will select all pods in the namespace.",
-          "x-kubernetes-patch-strategy": "replace"
+          "description": "Label query over pods whose evictions are managed by the disruption budget. A null selector selects no pods. An empty selector ({}) also selects no pods, which differs from standard behavior of selecting all pods. In policy/v1, an empty selector will select all pods in the namespace."
         }
       },
       "type": "object"
@@ -12950,7 +14087,7 @@
           "type": "array"
         },
         "verbs": {
-          "description": "Verbs is a list of Verbs that apply to ALL the ResourceKinds and AttributeRestrictions contained in this rule. '*' represents all verbs.",
+          "description": "Verbs is a list of Verbs that apply to ALL the ResourceKinds contained in this rule. '*' represents all verbs.",
           "items": {
             "type": "string"
           },
@@ -13154,398 +14291,6 @@
       "type": "object",
       "x-kubernetes-map-type": "atomic"
     },
-    "io.k8s.api.rbac.v1alpha1.AggregationRule": {
-      "description": "AggregationRule describes how to locate ClusterRoles to aggregate into the ClusterRole",
-      "properties": {
-        "clusterRoleSelectors": {
-          "description": "ClusterRoleSelectors holds a list of selectors which will be used to find ClusterRoles and create the rules. If any of the selectors match, then the ClusterRole's permissions will be added",
-          "items": {
-            "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"
-          },
-          "type": "array"
-        }
-      },
-      "type": "object"
-    },
-    "io.k8s.api.rbac.v1alpha1.ClusterRole": {
-      "description": "ClusterRole is a cluster level, logical grouping of PolicyRules that can be referenced as a unit by a RoleBinding or ClusterRoleBinding. Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 ClusterRole, and will no longer be served in v1.22.",
-      "properties": {
-        "aggregationRule": {
-          "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.AggregationRule",
-          "description": "AggregationRule is an optional field that describes how to build the Rules for this ClusterRole. If AggregationRule is set, then the Rules are controller managed and direct changes to Rules will be stomped by the controller."
-        },
-        "apiVersion": {
-          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
-          "type": "string"
-        },
-        "kind": {
-          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
-          "type": "string"
-        },
-        "metadata": {
-          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta",
-          "description": "Standard object's metadata."
-        },
-        "rules": {
-          "description": "Rules holds all the PolicyRules for this ClusterRole",
-          "items": {
-            "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.PolicyRule"
-          },
-          "type": "array"
-        }
-      },
-      "type": "object",
-      "x-kubernetes-group-version-kind": [
-        {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "ClusterRole",
-          "version": "v1alpha1"
-        }
-      ]
-    },
-    "io.k8s.api.rbac.v1alpha1.ClusterRoleBinding": {
-      "description": "ClusterRoleBinding references a ClusterRole, but not contain it.  It can reference a ClusterRole in the global namespace, and adds who information via Subject. Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 ClusterRoleBinding, and will no longer be served in v1.22.",
-      "properties": {
-        "apiVersion": {
-          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
-          "type": "string"
-        },
-        "kind": {
-          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
-          "type": "string"
-        },
-        "metadata": {
-          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta",
-          "description": "Standard object's metadata."
-        },
-        "roleRef": {
-          "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.RoleRef",
-          "description": "RoleRef can only reference a ClusterRole in the global namespace. If the RoleRef cannot be resolved, the Authorizer must return an error."
-        },
-        "subjects": {
-          "description": "Subjects holds references to the objects the role applies to.",
-          "items": {
-            "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.Subject"
-          },
-          "type": "array"
-        }
-      },
-      "required": [
-        "roleRef"
-      ],
-      "type": "object",
-      "x-kubernetes-group-version-kind": [
-        {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "ClusterRoleBinding",
-          "version": "v1alpha1"
-        }
-      ]
-    },
-    "io.k8s.api.rbac.v1alpha1.ClusterRoleBindingList": {
-      "description": "ClusterRoleBindingList is a collection of ClusterRoleBindings. Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 ClusterRoleBindings, and will no longer be served in v1.22.",
-      "properties": {
-        "apiVersion": {
-          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
-          "type": "string"
-        },
-        "items": {
-          "description": "Items is a list of ClusterRoleBindings",
-          "items": {
-            "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRoleBinding"
-          },
-          "type": "array"
-        },
-        "kind": {
-          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
-          "type": "string"
-        },
-        "metadata": {
-          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta",
-          "description": "Standard object's metadata."
-        }
-      },
-      "required": [
-        "items"
-      ],
-      "type": "object",
-      "x-kubernetes-group-version-kind": [
-        {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "ClusterRoleBindingList",
-          "version": "v1alpha1"
-        }
-      ]
-    },
-    "io.k8s.api.rbac.v1alpha1.ClusterRoleList": {
-      "description": "ClusterRoleList is a collection of ClusterRoles. Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 ClusterRoles, and will no longer be served in v1.22.",
-      "properties": {
-        "apiVersion": {
-          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
-          "type": "string"
-        },
-        "items": {
-          "description": "Items is a list of ClusterRoles",
-          "items": {
-            "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRole"
-          },
-          "type": "array"
-        },
-        "kind": {
-          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
-          "type": "string"
-        },
-        "metadata": {
-          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta",
-          "description": "Standard object's metadata."
-        }
-      },
-      "required": [
-        "items"
-      ],
-      "type": "object",
-      "x-kubernetes-group-version-kind": [
-        {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "ClusterRoleList",
-          "version": "v1alpha1"
-        }
-      ]
-    },
-    "io.k8s.api.rbac.v1alpha1.PolicyRule": {
-      "description": "PolicyRule holds information that describes a policy rule, but does not contain information about who the rule applies to or which namespace the rule applies to.",
-      "properties": {
-        "apiGroups": {
-          "description": "APIGroups is the name of the APIGroup that contains the resources.  If multiple API groups are specified, any action requested against one of the enumerated resources in any API group will be allowed.",
-          "items": {
-            "type": "string"
-          },
-          "type": "array"
-        },
-        "nonResourceURLs": {
-          "description": "NonResourceURLs is a set of partial urls that a user should have access to.  *s are allowed, but only as the full, final step in the path Since non-resource URLs are not namespaced, this field is only applicable for ClusterRoles referenced from a ClusterRoleBinding. Rules can either apply to API resources (such as \"pods\" or \"secrets\") or non-resource URL paths (such as \"/api\"),  but not both.",
-          "items": {
-            "type": "string"
-          },
-          "type": "array"
-        },
-        "resourceNames": {
-          "description": "ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.",
-          "items": {
-            "type": "string"
-          },
-          "type": "array"
-        },
-        "resources": {
-          "description": "Resources is a list of resources this rule applies to. '*' represents all resources.",
-          "items": {
-            "type": "string"
-          },
-          "type": "array"
-        },
-        "verbs": {
-          "description": "Verbs is a list of Verbs that apply to ALL the ResourceKinds and AttributeRestrictions contained in this rule. '*' represents all verbs.",
-          "items": {
-            "type": "string"
-          },
-          "type": "array"
-        }
-      },
-      "required": [
-        "verbs"
-      ],
-      "type": "object"
-    },
-    "io.k8s.api.rbac.v1alpha1.Role": {
-      "description": "Role is a namespaced, logical grouping of PolicyRules that can be referenced as a unit by a RoleBinding. Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 Role, and will no longer be served in v1.22.",
-      "properties": {
-        "apiVersion": {
-          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
-          "type": "string"
-        },
-        "kind": {
-          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
-          "type": "string"
-        },
-        "metadata": {
-          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta",
-          "description": "Standard object's metadata."
-        },
-        "rules": {
-          "description": "Rules holds all the PolicyRules for this Role",
-          "items": {
-            "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.PolicyRule"
-          },
-          "type": "array"
-        }
-      },
-      "type": "object",
-      "x-kubernetes-group-version-kind": [
-        {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "Role",
-          "version": "v1alpha1"
-        }
-      ]
-    },
-    "io.k8s.api.rbac.v1alpha1.RoleBinding": {
-      "description": "RoleBinding references a role, but does not contain it.  It can reference a Role in the same namespace or a ClusterRole in the global namespace. It adds who information via Subjects and namespace information by which namespace it exists in.  RoleBindings in a given namespace only have effect in that namespace. Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 RoleBinding, and will no longer be served in v1.22.",
-      "properties": {
-        "apiVersion": {
-          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
-          "type": "string"
-        },
-        "kind": {
-          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
-          "type": "string"
-        },
-        "metadata": {
-          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta",
-          "description": "Standard object's metadata."
-        },
-        "roleRef": {
-          "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.RoleRef",
-          "description": "RoleRef can reference a Role in the current namespace or a ClusterRole in the global namespace. If the RoleRef cannot be resolved, the Authorizer must return an error."
-        },
-        "subjects": {
-          "description": "Subjects holds references to the objects the role applies to.",
-          "items": {
-            "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.Subject"
-          },
-          "type": "array"
-        }
-      },
-      "required": [
-        "roleRef"
-      ],
-      "type": "object",
-      "x-kubernetes-group-version-kind": [
-        {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "RoleBinding",
-          "version": "v1alpha1"
-        }
-      ]
-    },
-    "io.k8s.api.rbac.v1alpha1.RoleBindingList": {
-      "description": "RoleBindingList is a collection of RoleBindings Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 RoleBindingList, and will no longer be served in v1.22.",
-      "properties": {
-        "apiVersion": {
-          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
-          "type": "string"
-        },
-        "items": {
-          "description": "Items is a list of RoleBindings",
-          "items": {
-            "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.RoleBinding"
-          },
-          "type": "array"
-        },
-        "kind": {
-          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
-          "type": "string"
-        },
-        "metadata": {
-          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta",
-          "description": "Standard object's metadata."
-        }
-      },
-      "required": [
-        "items"
-      ],
-      "type": "object",
-      "x-kubernetes-group-version-kind": [
-        {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "RoleBindingList",
-          "version": "v1alpha1"
-        }
-      ]
-    },
-    "io.k8s.api.rbac.v1alpha1.RoleList": {
-      "description": "RoleList is a collection of Roles. Deprecated in v1.17 in favor of rbac.authorization.k8s.io/v1 RoleList, and will no longer be served in v1.22.",
-      "properties": {
-        "apiVersion": {
-          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
-          "type": "string"
-        },
-        "items": {
-          "description": "Items is a list of Roles",
-          "items": {
-            "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.Role"
-          },
-          "type": "array"
-        },
-        "kind": {
-          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
-          "type": "string"
-        },
-        "metadata": {
-          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta",
-          "description": "Standard object's metadata."
-        }
-      },
-      "required": [
-        "items"
-      ],
-      "type": "object",
-      "x-kubernetes-group-version-kind": [
-        {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "RoleList",
-          "version": "v1alpha1"
-        }
-      ]
-    },
-    "io.k8s.api.rbac.v1alpha1.RoleRef": {
-      "description": "RoleRef contains information that points to the role being used",
-      "properties": {
-        "apiGroup": {
-          "description": "APIGroup is the group for the resource being referenced",
-          "type": "string"
-        },
-        "kind": {
-          "description": "Kind is the type of resource being referenced",
-          "type": "string"
-        },
-        "name": {
-          "description": "Name is the name of resource being referenced",
-          "type": "string"
-        }
-      },
-      "required": [
-        "apiGroup",
-        "kind",
-        "name"
-      ],
-      "type": "object"
-    },
-    "io.k8s.api.rbac.v1alpha1.Subject": {
-      "description": "Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference, or a value for non-objects such as user and group names.",
-      "properties": {
-        "apiVersion": {
-          "description": "APIVersion holds the API group and version of the referenced subject. Defaults to \"v1\" for ServiceAccount subjects. Defaults to \"rbac.authorization.k8s.io/v1alpha1\" for User and Group subjects.",
-          "type": "string"
-        },
-        "kind": {
-          "description": "Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\". If the Authorizer does not recognized the kind value, the Authorizer should report an error.",
-          "type": "string"
-        },
-        "name": {
-          "description": "Name of the object being referenced.",
-          "type": "string"
-        },
-        "namespace": {
-          "description": "Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty the Authorizer should report an error.",
-          "type": "string"
-        }
-      },
-      "required": [
-        "kind",
-        "name"
-      ],
-      "type": "object"
-    },
     "io.k8s.api.scheduling.v1.PriorityClass": {
       "description": "PriorityClass defines mapping from a priority class name to the priority integer value. The value can be any valid integer.",
       "properties": {
@@ -13570,7 +14315,7 @@
           "description": "Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata"
         },
         "preemptionPolicy": {
-          "description": "PreemptionPolicy is the Policy for preempting pods with lower priority. One of Never, PreemptLowerPriority. Defaults to PreemptLowerPriority if unset. This field is beta-level, gated by the NonPreemptingPriority feature-gate.",
+          "description": "PreemptionPolicy is the Policy for preempting pods with lower priority. One of Never, PreemptLowerPriority. Defaults to PreemptLowerPriority if unset.",
           "type": "string"
         },
         "value": {
@@ -13626,86 +14371,6 @@
         }
       ]
     },
-    "io.k8s.api.scheduling.v1alpha1.PriorityClass": {
-      "description": "DEPRECATED - This group version of PriorityClass is deprecated by scheduling.k8s.io/v1/PriorityClass. PriorityClass defines mapping from a priority class name to the priority integer value. The value can be any valid integer.",
-      "properties": {
-        "apiVersion": {
-          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
-          "type": "string"
-        },
-        "description": {
-          "description": "description is an arbitrary string that usually provides guidelines on when this priority class should be used.",
-          "type": "string"
-        },
-        "globalDefault": {
-          "description": "globalDefault specifies whether this PriorityClass should be considered as the default priority for pods that do not have any priority class. Only one PriorityClass can be marked as `globalDefault`. However, if more than one PriorityClasses exists with their `globalDefault` field set to true, the smallest value of such global default PriorityClasses will be used as the default priority.",
-          "type": "boolean"
-        },
-        "kind": {
-          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
-          "type": "string"
-        },
-        "metadata": {
-          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta",
-          "description": "Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata"
-        },
-        "preemptionPolicy": {
-          "description": "PreemptionPolicy is the Policy for preempting pods with lower priority. One of Never, PreemptLowerPriority. Defaults to PreemptLowerPriority if unset. This field is beta-level, gated by the NonPreemptingPriority feature-gate.",
-          "type": "string"
-        },
-        "value": {
-          "description": "The value of this priority class. This is the actual priority that pods receive when they have the name of this class in their pod spec.",
-          "format": "int32",
-          "type": "integer"
-        }
-      },
-      "required": [
-        "value"
-      ],
-      "type": "object",
-      "x-kubernetes-group-version-kind": [
-        {
-          "group": "scheduling.k8s.io",
-          "kind": "PriorityClass",
-          "version": "v1alpha1"
-        }
-      ]
-    },
-    "io.k8s.api.scheduling.v1alpha1.PriorityClassList": {
-      "description": "PriorityClassList is a collection of priority classes.",
-      "properties": {
-        "apiVersion": {
-          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
-          "type": "string"
-        },
-        "items": {
-          "description": "items is the list of PriorityClasses",
-          "items": {
-            "$ref": "#/definitions/io.k8s.api.scheduling.v1alpha1.PriorityClass"
-          },
-          "type": "array"
-        },
-        "kind": {
-          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
-          "type": "string"
-        },
-        "metadata": {
-          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta",
-          "description": "Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata"
-        }
-      },
-      "required": [
-        "items"
-      ],
-      "type": "object",
-      "x-kubernetes-group-version-kind": [
-        {
-          "group": "scheduling.k8s.io",
-          "kind": "PriorityClassList",
-          "version": "v1alpha1"
-        }
-      ]
-    },
     "io.k8s.api.storage.v1.CSIDriver": {
       "description": "CSIDriver captures information about a Container Storage Interface (CSI) volume driver deployed on the cluster. Kubernetes attach detach controller uses this object to determine whether attach is required. Kubelet uses this object to determine whether pod information needs to be passed on mount. CSIDriver objects are non-namespaced.",
       "properties": {
@@ -13781,7 +14446,7 @@
           "type": "boolean"
         },
         "fsGroupPolicy": {
-          "description": "Defines if the underlying volume supports changing ownership and permission of the volume before being mounted. Refer to the specific FSGroupPolicy values for additional details. This field is beta, and is only honored by servers that enable the CSIVolumeFSGroupPolicy feature gate.\n\nThis field is immutable.\n\nDefaults to ReadWriteOnceWithFSType, which will examine each volume to determine if Kubernetes should modify ownership and permissions of the volume. With the default policy the defined fsGroup will only be applied if a fstype is defined and the volume's access mode contains ReadWriteOnce.",
+          "description": "Defines if the underlying volume supports changing ownership and permission of the volume before being mounted. Refer to the specific FSGroupPolicy values for additional details.\n\nThis field is immutable.\n\nDefaults to ReadWriteOnceWithFSType, which will examine each volume to determine if Kubernetes should modify ownership and permissions of the volume. With the default policy the defined fsGroup will only be applied if a fstype is defined and the volume's access mode contains ReadWriteOnce.",
           "type": "string"
         },
         "podInfoOnMount": {
@@ -13793,7 +14458,7 @@
           "type": "boolean"
         },
         "storageCapacity": {
-          "description": "If set to true, storageCapacity indicates that the CSI volume driver wants pod scheduling to consider the storage capacity that the driver deployment will report by creating CSIStorageCapacity objects with capacity information.\n\nThe check can be enabled immediately when deploying a driver. In that case, provisioning new volumes with late binding will pause until the driver deployment has published some suitable CSIStorageCapacity object.\n\nAlternatively, the driver can be deployed with the field unset or false and it can be flipped later when storage capacity information has been published.\n\nThis field is immutable.\n\nThis is a beta field and only available when the CSIStorageCapacity feature is enabled. The default is false.",
+          "description": "If set to true, storageCapacity indicates that the CSI volume driver wants pod scheduling to consider the storage capacity that the driver deployment will report by creating CSIStorageCapacity objects with capacity information.\n\nThe check can be enabled immediately when deploying a driver. In that case, provisioning new volumes with late binding will pause until the driver deployment has published some suitable CSIStorageCapacity object.\n\nAlternatively, the driver can be deployed with the field unset or false and it can be flipped later when storage capacity information has been published.\n\nThis field was immutable in Kubernetes <= 1.22 and now is mutable.",
           "type": "boolean"
         },
         "tokenRequests": {
@@ -13929,6 +14594,89 @@
       ],
       "type": "object"
     },
+    "io.k8s.api.storage.v1.CSIStorageCapacity": {
+      "description": "CSIStorageCapacity stores the result of one CSI GetCapacity call. For a given StorageClass, this describes the available capacity in a particular topology segment.  This can be used when considering where to instantiate new PersistentVolumes.\n\nFor example this can express things like: - StorageClass \"standard\" has \"1234 GiB\" available in \"topology.kubernetes.io/zone=us-east1\" - StorageClass \"localssd\" has \"10 GiB\" available in \"kubernetes.io/hostname=knode-abc123\"\n\nThe following three cases all imply that no capacity is available for a certain combination: - no object exists with suitable topology and storage class name - such an object exists, but the capacity is unset - such an object exists, but the capacity is zero\n\nThe producer of these objects can decide which approach is more suitable.\n\nThey are consumed by the kube-scheduler when a CSI driver opts into capacity-aware scheduling with CSIDriverSpec.StorageCapacity. The scheduler compares the MaximumVolumeSize against the requested size of pending volumes to filter out unsuitable nodes. If MaximumVolumeSize is unset, it falls back to a comparison against the less precise Capacity. If that is also unset, the scheduler assumes that capacity is insufficient and tries some other node.",
+      "properties": {
+        "apiVersion": {
+          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
+          "type": "string"
+        },
+        "capacity": {
+          "$ref": "#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity",
+          "description": "Capacity is the value reported by the CSI driver in its GetCapacityResponse for a GetCapacityRequest with topology and parameters that match the previous fields.\n\nThe semantic is currently (CSI spec 1.2) defined as: The available capacity, in bytes, of the storage that can be used to provision volumes. If not set, that information is currently unavailable."
+        },
+        "kind": {
+          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
+          "type": "string"
+        },
+        "maximumVolumeSize": {
+          "$ref": "#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity",
+          "description": "MaximumVolumeSize is the value reported by the CSI driver in its GetCapacityResponse for a GetCapacityRequest with topology and parameters that match the previous fields.\n\nThis is defined since CSI spec 1.4.0 as the largest size that may be used in a CreateVolumeRequest.capacity_range.required_bytes field to create a volume with the same parameters as those in GetCapacityRequest. The corresponding value in the Kubernetes API is ResourceRequirements.Requests in a volume claim."
+        },
+        "metadata": {
+          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta",
+          "description": "Standard object's metadata. The name has no particular meaning. It must be be a DNS subdomain (dots allowed, 253 characters). To ensure that there are no conflicts with other CSI drivers on the cluster, the recommendation is to use csisc-<uuid>, a generated name, or a reverse-domain name which ends with the unique CSI driver name.\n\nObjects are namespaced.\n\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata"
+        },
+        "nodeTopology": {
+          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector",
+          "description": "NodeTopology defines which nodes have access to the storage for which capacity was reported. If not set, the storage is not accessible from any node in the cluster. If empty, the storage is accessible from all nodes. This field is immutable."
+        },
+        "storageClassName": {
+          "description": "The name of the StorageClass that the reported capacity applies to. It must meet the same requirements as the name of a StorageClass object (non-empty, DNS subdomain). If that object no longer exists, the CSIStorageCapacity object is obsolete and should be removed by its creator. This field is immutable.",
+          "type": "string"
+        }
+      },
+      "required": [
+        "storageClassName"
+      ],
+      "type": "object",
+      "x-kubernetes-group-version-kind": [
+        {
+          "group": "storage.k8s.io",
+          "kind": "CSIStorageCapacity",
+          "version": "v1"
+        }
+      ]
+    },
+    "io.k8s.api.storage.v1.CSIStorageCapacityList": {
+      "description": "CSIStorageCapacityList is a collection of CSIStorageCapacity objects.",
+      "properties": {
+        "apiVersion": {
+          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
+          "type": "string"
+        },
+        "items": {
+          "description": "Items is the list of CSIStorageCapacity objects.",
+          "items": {
+            "$ref": "#/definitions/io.k8s.api.storage.v1.CSIStorageCapacity"
+          },
+          "type": "array",
+          "x-kubernetes-list-map-keys": [
+            "name"
+          ],
+          "x-kubernetes-list-type": "map"
+        },
+        "kind": {
+          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
+          "type": "string"
+        },
+        "metadata": {
+          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta",
+          "description": "Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata"
+        }
+      },
+      "required": [
+        "items"
+      ],
+      "type": "object",
+      "x-kubernetes-group-version-kind": [
+        {
+          "group": "storage.k8s.io",
+          "kind": "CSIStorageCapacityList",
+          "version": "v1"
+        }
+      ]
+    },
     "io.k8s.api.storage.v1.StorageClass": {
       "description": "StorageClass describes the parameters for a class of storage for which PersistentVolumes can be dynamically provisioned.\n\nStorageClasses are non-namespaced; the name of the storage class according to etcd is in ObjectMeta.Name.",
       "properties": {
@@ -14209,241 +14957,8 @@
       },
       "type": "object"
     },
-    "io.k8s.api.storage.v1alpha1.CSIStorageCapacity": {
-      "description": "CSIStorageCapacity stores the result of one CSI GetCapacity call. For a given StorageClass, this describes the available capacity in a particular topology segment.  This can be used when considering where to instantiate new PersistentVolumes.\n\nFor example this can express things like: - StorageClass \"standard\" has \"1234 GiB\" available in \"topology.kubernetes.io/zone=us-east1\" - StorageClass \"localssd\" has \"10 GiB\" available in \"kubernetes.io/hostname=knode-abc123\"\n\nThe following three cases all imply that no capacity is available for a certain combination: - no object exists with suitable topology and storage class name - such an object exists, but the capacity is unset - such an object exists, but the capacity is zero\n\nThe producer of these objects can decide which approach is more suitable.\n\nThey are consumed by the kube-scheduler if the CSIStorageCapacity beta feature gate is enabled there and a CSI driver opts into capacity-aware scheduling with CSIDriver.StorageCapacity.",
-      "properties": {
-        "apiVersion": {
-          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
-          "type": "string"
-        },
-        "capacity": {
-          "$ref": "#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity",
-          "description": "Capacity is the value reported by the CSI driver in its GetCapacityResponse for a GetCapacityRequest with topology and parameters that match the previous fields.\n\nThe semantic is currently (CSI spec 1.2) defined as: The available capacity, in bytes, of the storage that can be used to provision volumes. If not set, that information is currently unavailable and treated like zero capacity."
-        },
-        "kind": {
-          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
-          "type": "string"
-        },
-        "maximumVolumeSize": {
-          "$ref": "#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity",
-          "description": "MaximumVolumeSize is the value reported by the CSI driver in its GetCapacityResponse for a GetCapacityRequest with topology and parameters that match the previous fields.\n\nThis is defined since CSI spec 1.4.0 as the largest size that may be used in a CreateVolumeRequest.capacity_range.required_bytes field to create a volume with the same parameters as those in GetCapacityRequest. The corresponding value in the Kubernetes API is ResourceRequirements.Requests in a volume claim."
-        },
-        "metadata": {
-          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta",
-          "description": "Standard object's metadata. The name has no particular meaning. It must be be a DNS subdomain (dots allowed, 253 characters). To ensure that there are no conflicts with other CSI drivers on the cluster, the recommendation is to use csisc-<uuid>, a generated name, or a reverse-domain name which ends with the unique CSI driver name.\n\nObjects are namespaced.\n\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata"
-        },
-        "nodeTopology": {
-          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector",
-          "description": "NodeTopology defines which nodes have access to the storage for which capacity was reported. If not set, the storage is not accessible from any node in the cluster. If empty, the storage is accessible from all nodes. This field is immutable."
-        },
-        "storageClassName": {
-          "description": "The name of the StorageClass that the reported capacity applies to. It must meet the same requirements as the name of a StorageClass object (non-empty, DNS subdomain). If that object no longer exists, the CSIStorageCapacity object is obsolete and should be removed by its creator. This field is immutable.",
-          "type": "string"
-        }
-      },
-      "required": [
-        "storageClassName"
-      ],
-      "type": "object",
-      "x-kubernetes-group-version-kind": [
-        {
-          "group": "storage.k8s.io",
-          "kind": "CSIStorageCapacity",
-          "version": "v1alpha1"
-        }
-      ]
-    },
-    "io.k8s.api.storage.v1alpha1.CSIStorageCapacityList": {
-      "description": "CSIStorageCapacityList is a collection of CSIStorageCapacity objects.",
-      "properties": {
-        "apiVersion": {
-          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
-          "type": "string"
-        },
-        "items": {
-          "description": "Items is the list of CSIStorageCapacity objects.",
-          "items": {
-            "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.CSIStorageCapacity"
-          },
-          "type": "array",
-          "x-kubernetes-list-map-keys": [
-            "name"
-          ],
-          "x-kubernetes-list-type": "map"
-        },
-        "kind": {
-          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
-          "type": "string"
-        },
-        "metadata": {
-          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta",
-          "description": "Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata"
-        }
-      },
-      "required": [
-        "items"
-      ],
-      "type": "object",
-      "x-kubernetes-group-version-kind": [
-        {
-          "group": "storage.k8s.io",
-          "kind": "CSIStorageCapacityList",
-          "version": "v1alpha1"
-        }
-      ]
-    },
-    "io.k8s.api.storage.v1alpha1.VolumeAttachment": {
-      "description": "VolumeAttachment captures the intent to attach or detach the specified volume to/from the specified node.\n\nVolumeAttachment objects are non-namespaced.",
-      "properties": {
-        "apiVersion": {
-          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
-          "type": "string"
-        },
-        "kind": {
-          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
-          "type": "string"
-        },
-        "metadata": {
-          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta",
-          "description": "Standard object metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata"
-        },
-        "spec": {
-          "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.VolumeAttachmentSpec",
-          "description": "Specification of the desired attach/detach volume behavior. Populated by the Kubernetes system."
-        },
-        "status": {
-          "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.VolumeAttachmentStatus",
-          "description": "Status of the VolumeAttachment request. Populated by the entity completing the attach or detach operation, i.e. the external-attacher."
-        }
-      },
-      "required": [
-        "spec"
-      ],
-      "type": "object",
-      "x-kubernetes-group-version-kind": [
-        {
-          "group": "storage.k8s.io",
-          "kind": "VolumeAttachment",
-          "version": "v1alpha1"
-        }
-      ]
-    },
-    "io.k8s.api.storage.v1alpha1.VolumeAttachmentList": {
-      "description": "VolumeAttachmentList is a collection of VolumeAttachment objects.",
-      "properties": {
-        "apiVersion": {
-          "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
-          "type": "string"
-        },
-        "items": {
-          "description": "Items is the list of VolumeAttachments",
-          "items": {
-            "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.VolumeAttachment"
-          },
-          "type": "array"
-        },
-        "kind": {
-          "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
-          "type": "string"
-        },
-        "metadata": {
-          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta",
-          "description": "Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata"
-        }
-      },
-      "required": [
-        "items"
-      ],
-      "type": "object",
-      "x-kubernetes-group-version-kind": [
-        {
-          "group": "storage.k8s.io",
-          "kind": "VolumeAttachmentList",
-          "version": "v1alpha1"
-        }
-      ]
-    },
-    "io.k8s.api.storage.v1alpha1.VolumeAttachmentSource": {
-      "description": "VolumeAttachmentSource represents a volume that should be attached. Right now only PersistenVolumes can be attached via external attacher, in future we may allow also inline volumes in pods. Exactly one member can be set.",
-      "properties": {
-        "inlineVolumeSpec": {
-          "$ref": "#/definitions/io.k8s.api.core.v1.PersistentVolumeSpec",
-          "description": "inlineVolumeSpec contains all the information necessary to attach a persistent volume defined by a pod's inline VolumeSource. This field is populated only for the CSIMigration feature. It contains translated fields from a pod's inline VolumeSource to a PersistentVolumeSpec. This field is alpha-level and is only honored by servers that enabled the CSIMigration feature."
-        },
-        "persistentVolumeName": {
-          "description": "Name of the persistent volume to attach.",
-          "type": "string"
-        }
-      },
-      "type": "object"
-    },
-    "io.k8s.api.storage.v1alpha1.VolumeAttachmentSpec": {
-      "description": "VolumeAttachmentSpec is the specification of a VolumeAttachment request.",
-      "properties": {
-        "attacher": {
-          "description": "Attacher indicates the name of the volume driver that MUST handle this request. This is the name returned by GetPluginName().",
-          "type": "string"
-        },
-        "nodeName": {
-          "description": "The node that the volume should be attached to.",
-          "type": "string"
-        },
-        "source": {
-          "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.VolumeAttachmentSource",
-          "description": "Source represents the volume that should be attached."
-        }
-      },
-      "required": [
-        "attacher",
-        "source",
-        "nodeName"
-      ],
-      "type": "object"
-    },
-    "io.k8s.api.storage.v1alpha1.VolumeAttachmentStatus": {
-      "description": "VolumeAttachmentStatus is the status of a VolumeAttachment request.",
-      "properties": {
-        "attachError": {
-          "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.VolumeError",
-          "description": "The last error encountered during attach operation, if any. This field must only be set by the entity completing the attach operation, i.e. the external-attacher."
-        },
-        "attached": {
-          "description": "Indicates the volume is successfully attached. This field must only be set by the entity completing the attach operation, i.e. the external-attacher.",
-          "type": "boolean"
-        },
-        "attachmentMetadata": {
-          "additionalProperties": {
-            "type": "string"
-          },
-          "description": "Upon successful attach, this field is populated with any information returned by the attach operation that must be passed into subsequent WaitForAttach or Mount calls. This field must only be set by the entity completing the attach operation, i.e. the external-attacher.",
-          "type": "object"
-        },
-        "detachError": {
-          "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.VolumeError",
-          "description": "The last error encountered during detach operation, if any. This field must only be set by the entity completing the detach operation, i.e. the external-attacher."
-        }
-      },
-      "required": [
-        "attached"
-      ],
-      "type": "object"
-    },
-    "io.k8s.api.storage.v1alpha1.VolumeError": {
-      "description": "VolumeError captures an error encountered during a volume operation.",
-      "properties": {
-        "message": {
-          "description": "String detailing the error encountered during Attach or Detach operation. This string maybe logged, so it should not contain sensitive information.",
-          "type": "string"
-        },
-        "time": {
-          "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time",
-          "description": "Time the error was encountered."
-        }
-      },
-      "type": "object"
-    },
     "io.k8s.api.storage.v1beta1.CSIStorageCapacity": {
-      "description": "CSIStorageCapacity stores the result of one CSI GetCapacity call. For a given StorageClass, this describes the available capacity in a particular topology segment.  This can be used when considering where to instantiate new PersistentVolumes.\n\nFor example this can express things like: - StorageClass \"standard\" has \"1234 GiB\" available in \"topology.kubernetes.io/zone=us-east1\" - StorageClass \"localssd\" has \"10 GiB\" available in \"kubernetes.io/hostname=knode-abc123\"\n\nThe following three cases all imply that no capacity is available for a certain combination: - no object exists with suitable topology and storage class name - such an object exists, but the capacity is unset - such an object exists, but the capacity is zero\n\nThe producer of these objects can decide which approach is more suitable.\n\nThey are consumed by the kube-scheduler if the CSIStorageCapacity beta feature gate is enabled there and a CSI driver opts into capacity-aware scheduling with CSIDriver.StorageCapacity.",
+      "description": "CSIStorageCapacity stores the result of one CSI GetCapacity call. For a given StorageClass, this describes the available capacity in a particular topology segment.  This can be used when considering where to instantiate new PersistentVolumes.\n\nFor example this can express things like: - StorageClass \"standard\" has \"1234 GiB\" available in \"topology.kubernetes.io/zone=us-east1\" - StorageClass \"localssd\" has \"10 GiB\" available in \"kubernetes.io/hostname=knode-abc123\"\n\nThe following three cases all imply that no capacity is available for a certain combination: - no object exists with suitable topology and storage class name - such an object exists, but the capacity is unset - such an object exists, but the capacity is zero\n\nThe producer of these objects can decide which approach is more suitable.\n\nThey are consumed by the kube-scheduler when a CSI driver opts into capacity-aware scheduling with CSIDriverSpec.StorageCapacity. The scheduler compares the MaximumVolumeSize against the requested size of pending volumes to filter out unsuitable nodes. If MaximumVolumeSize is unset, it falls back to a comparison against the less precise Capacity. If that is also unset, the scheduler assumes that capacity is insufficient and tries some other node.",
       "properties": {
         "apiVersion": {
           "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
@@ -14451,7 +14966,7 @@
         },
         "capacity": {
           "$ref": "#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity",
-          "description": "Capacity is the value reported by the CSI driver in its GetCapacityResponse for a GetCapacityRequest with topology and parameters that match the previous fields.\n\nThe semantic is currently (CSI spec 1.2) defined as: The available capacity, in bytes, of the storage that can be used to provision volumes. If not set, that information is currently unavailable and treated like zero capacity."
+          "description": "Capacity is the value reported by the CSI driver in its GetCapacityResponse for a GetCapacityRequest with topology and parameters that match the previous fields.\n\nThe semantic is currently (CSI spec 1.2) defined as: The available capacity, in bytes, of the storage that can be used to provision volumes. If not set, that information is currently unavailable."
         },
         "kind": {
           "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
@@ -15075,6 +15590,19 @@
         "x-kubernetes-preserve-unknown-fields": {
           "description": "x-kubernetes-preserve-unknown-fields stops the API server decoding step from pruning fields which are not specified in the validation schema. This affects fields recursively, but switches back to normal pruning behaviour if nested properties or additionalProperties are specified in the schema. This can either be true or undefined. False is forbidden.",
           "type": "boolean"
+        },
+        "x-kubernetes-validations": {
+          "description": "x-kubernetes-validations describes a list of validation rules written in the CEL expression language. This field is an alpha-level. Using this field requires the feature gate `CustomResourceValidationExpressions` to be enabled.",
+          "items": {
+            "$ref": "#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.ValidationRule"
+          },
+          "type": "array",
+          "x-kubernetes-list-map-keys": [
+            "rule"
+          ],
+          "x-kubernetes-list-type": "map",
+          "x-kubernetes-patch-merge-key": "rule",
+          "x-kubernetes-patch-strategy": "merge"
         }
       },
       "type": "object"
@@ -15115,6 +15643,23 @@
       ],
       "type": "object"
     },
+    "io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.ValidationRule": {
+      "description": "ValidationRule describes a validation rule written in the CEL expression language.",
+      "properties": {
+        "message": {
+          "description": "Message represents the message displayed when validation fails. The message is required if the Rule contains line breaks. The message must not contain line breaks. If unset, the message is \"failed rule: {Rule}\". e.g. \"must be a URL with the host matching spec.host\"",
+          "type": "string"
+        },
+        "rule": {
+          "description": "Rule represents the expression which will be evaluated by CEL. ref: https://github.com/google/cel-spec The Rule is scoped to the location of the x-kubernetes-validations extension in the schema. The `self` variable in the CEL expression is bound to the scoped value. Example: - Rule scoped to the root of a resource with a status subresource: {\"rule\": \"self.status.actual <= self.spec.maxDesired\"}\n\nIf the Rule is scoped to an object with properties, the accessible properties of the object are field selectable via `self.field` and field presence can be checked via `has(self.field)`. Null valued fields are treated as absent fields in CEL expressions. If the Rule is scoped to an object with additionalProperties (i.e. a map) the value of the map are accessible via `self[mapKey]`, map containment can be checked via `mapKey in self` and all entries of the map are accessible via CEL macros and functions such as `self.all(...)`. If the Rule is scoped to an array, the elements of the array are accessible via `self[i]` and also by macros and functions. If the Rule is scoped to a scalar, `self` is bound to the scalar value. Examples: - Rule scoped to a map of objects: {\"rule\": \"self.components['Widget'].priority < 10\"} - Rule scoped to a list of integers: {\"rule\": \"self.values.all(value, value >= 0 && value < 100)\"} - Rule scoped to a string value: {\"rule\": \"self.startsWith('kube')\"}\n\nThe `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the object and from any x-kubernetes-embedded-resource annotated objects. No other metadata properties are accessible.\n\nUnknown data preserved in custom resources via x-kubernetes-preserve-unknown-fields is not accessible in CEL expressions. This includes: - Unknown field values that are preserved by object schemas with x-kubernetes-preserve-unknown-fields. - Object properties where the property schema is of an \"unknown type\". An \"unknown type\" is recursively defined as:\n  - A schema with no type and x-kubernetes-preserve-unknown-fields set to true\n  - An array where the items schema is of an \"unknown type\"\n  - An object where the additionalProperties schema is of an \"unknown type\"\n\nOnly property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible. Accessible property names are escaped according to the following rules when accessed in the expression: - '__' escapes to '__underscores__' - '.' escapes to '__dot__' - '-' escapes to '__dash__' - '/' escapes to '__slash__' - Property names that exactly match a CEL RESERVED keyword escape to '__{keyword}__'. The keywords are:\n\t  \"true\", \"false\", \"null\", \"in\", \"as\", \"break\", \"const\", \"continue\", \"else\", \"for\", \"function\", \"if\",\n\t  \"import\", \"let\", \"loop\", \"package\", \"namespace\", \"return\".\nExamples:\n  - Rule accessing a property named \"namespace\": {\"rule\": \"self.__namespace__ > 0\"}\n  - Rule accessing a property named \"x-prop\": {\"rule\": \"self.x__dash__prop > 0\"}\n  - Rule accessing a property named \"redact__d\": {\"rule\": \"self.redact__underscores__d > 0\"}\n\nEquality on arrays with x-kubernetes-list-type of 'set' or 'map' ignores element order, i.e. [1, 2] == [2, 1]. Concatenation on arrays with x-kubernetes-list-type use the semantics of the list type:\n  - 'set': `X + Y` performs a union where the array positions of all elements in `X` are preserved and\n    non-intersecting elements in `Y` are appended, retaining their partial order.\n  - 'map': `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values\n    are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with\n    non-intersecting keys are appended, retaining their partial order.",
+          "type": "string"
+        }
+      },
+      "required": [
+        "rule"
+      ],
+      "type": "object"
+    },
     "io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.WebhookClientConfig": {
       "description": "WebhookClientConfig contains the information to make a TLS connection with the webhook.",
       "properties": {
@@ -15534,6 +16079,11 @@
           "kind": "DeleteOptions",
           "version": "v1"
         },
+        {
+          "group": "autoscaling",
+          "kind": "DeleteOptions",
+          "version": "v2"
+        },
         {
           "group": "autoscaling",
           "kind": "DeleteOptions",
@@ -15609,6 +16159,11 @@
           "kind": "DeleteOptions",
           "version": "v1beta1"
         },
+        {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "DeleteOptions",
+          "version": "v1beta2"
+        },
         {
           "group": "imagepolicy.k8s.io",
           "kind": "DeleteOptions",
@@ -15788,7 +16343,7 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "selfLink is a URL representing this object. Populated by the system. Read-only.\n\nDEPRECATED Kubernetes will stop propagating this field in 1.20 release and the field is planned to be removed in 1.21 release.",
+          "description": "Deprecated: selfLink is a legacy read-only field that is no longer populated by the system.",
           "type": "string"
         }
       },
@@ -15823,7 +16378,7 @@
         },
         "time": {
           "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time",
-          "description": "Time is timestamp of when these fields were set. It should always be empty if Operation is 'Apply'"
+          "description": "Time is the timestamp of when the ManagedFields entry was added. The timestamp will also be updated if a field is added, the manager changes any of the owned fields value or removes a field. The timestamp does not update when a field is removed from the entry because another manager took it over."
         }
       },
       "type": "object"
@@ -15844,7 +16399,7 @@
           "type": "object"
         },
         "clusterName": {
-          "description": "The name of the cluster which the object belongs to. This is used to distinguish resources with same name and namespace in different clusters. This field is not set anywhere right now and apiserver is going to ignore it if set in create or update request.",
+          "description": "Deprecated: ClusterName is a legacy field that was always cleared by the system and never used; it will be removed completely in 1.25.\n\nThe name in the go struct is changed to help clients detect accidental use.",
           "type": "string"
         },
         "creationTimestamp": {
@@ -15869,7 +16424,7 @@
           "x-kubernetes-patch-strategy": "merge"
         },
         "generateName": {
-          "description": "GenerateName is an optional prefix, used by the server, to generate a unique name ONLY IF the Name field has not been provided. If this field is used, the name returned to the client will be different than the name passed. This value will also be combined with a unique suffix. The provided value has the same validation rules as the Name field, and may be truncated by the length of the suffix required to make the value unique on the server.\n\nIf this field is specified and the generated name exists, the server will NOT return a 409 - instead, it will either return 201 Created or 500 with Reason ServerTimeout indicating a unique name could not be found in the time allotted, and the client should retry (optionally after the time indicated in the Retry-After header).\n\nApplied only if Name is not specified. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#idempotency",
+          "description": "GenerateName is an optional prefix, used by the server, to generate a unique name ONLY IF the Name field has not been provided. If this field is used, the name returned to the client will be different than the name passed. This value will also be combined with a unique suffix. The provided value has the same validation rules as the Name field, and may be truncated by the length of the suffix required to make the value unique on the server.\n\nIf this field is specified and the generated name exists, the server will return a 409.\n\nApplied only if Name is not specified. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#idempotency",
           "type": "string"
         },
         "generation": {
@@ -15913,7 +16468,7 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "SelfLink is a URL representing this object. Populated by the system. Read-only.\n\nDEPRECATED Kubernetes will stop propagating this field in 1.20 release and the field is planned to be removed in 1.21 release.",
+          "description": "Deprecated: selfLink is a legacy read-only field that is no longer populated by the system.",
           "type": "string"
         },
         "uid": {
@@ -15931,7 +16486,7 @@
           "type": "string"
         },
         "blockOwnerDeletion": {
-          "description": "If true, AND if the owner has the \"foregroundDeletion\" finalizer, then the owner cannot be deleted from the key-value store until this reference is removed. Defaults to false. To set this field, a user needs \"delete\" permission of the owner, otherwise 422 (Unprocessable Entity) will be returned.",
+          "description": "If true, AND if the owner has the \"foregroundDeletion\" finalizer, then the owner cannot be deleted from the key-value store until this reference is removed. See https://kubernetes.io/docs/concepts/architecture/garbage-collection/#foreground-deletion for how the garbage collector interacts with this field and enforces the foreground deletion. Defaults to false. To set this field, a user needs \"delete\" permission of the owner, otherwise 422 (Unprocessable Entity) will be returned.",
           "type": "boolean"
         },
         "controller": {
@@ -16201,6 +16756,11 @@
           "kind": "WatchEvent",
           "version": "v1"
         },
+        {
+          "group": "autoscaling",
+          "kind": "WatchEvent",
+          "version": "v2"
+        },
         {
           "group": "autoscaling",
           "kind": "WatchEvent",
@@ -16276,6 +16836,11 @@
           "kind": "WatchEvent",
           "version": "v1beta1"
         },
+        {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "WatchEvent",
+          "version": "v1beta2"
+        },
         {
           "group": "imagepolicy.k8s.io",
           "kind": "WatchEvent",
@@ -17446,6 +18011,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -17506,6 +18078,13 @@
           "type": "string",
           "uniqueItems": true
         },
+        {
+          "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+          "in": "query",
+          "name": "fieldValidation",
+          "type": "string",
+          "uniqueItems": true
+        },
         {
           "description": "object name and auth scope, such as for teams and projects",
           "in": "path",
@@ -17849,6 +18428,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -18064,6 +18650,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -18135,6 +18728,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -18442,6 +19042,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -18657,6 +19264,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -18728,6 +19342,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -19035,6 +19656,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -19250,6 +19878,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -19321,6 +19956,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -19628,6 +20270,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -19843,6 +20492,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -19914,6 +20570,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -20221,6 +20884,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -20436,6 +21106,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -20507,6 +21184,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -20638,6 +21322,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -20709,6 +21400,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -21016,6 +21714,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -21231,6 +21936,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -21302,6 +22014,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -21477,6 +22196,13 @@
           "type": "string",
           "uniqueItems": true
         },
+        {
+          "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+          "in": "query",
+          "name": "fieldValidation",
+          "type": "string",
+          "uniqueItems": true
+        },
         {
           "description": "name of the Binding",
           "in": "path",
@@ -21652,6 +22378,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -21723,6 +22456,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -21777,6 +22517,13 @@
           "type": "string",
           "uniqueItems": true
         },
+        {
+          "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+          "in": "query",
+          "name": "fieldValidation",
+          "type": "string",
+          "uniqueItems": true
+        },
         {
           "description": "name of the Eviction",
           "in": "path",
@@ -21925,7 +22672,7 @@
           "uniqueItems": true
         },
         {
-          "description": "Redirect the standard error stream of the pod for this call. Defaults to true.",
+          "description": "Redirect the standard error stream of the pod for this call.",
           "in": "query",
           "name": "stderr",
           "type": "boolean",
@@ -21939,7 +22686,7 @@
           "uniqueItems": true
         },
         {
-          "description": "Redirect the standard output stream of the pod for this call. Defaults to true.",
+          "description": "Redirect the standard output stream of the pod for this call.",
           "in": "query",
           "name": "stdout",
           "type": "boolean",
@@ -22816,6 +23563,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -22887,6 +23641,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -23194,6 +23955,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -23409,6 +24177,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -23480,6 +24255,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -23787,6 +24569,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -24002,6 +24791,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -24073,6 +24869,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -24204,6 +25007,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -24275,6 +25085,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -24406,6 +25223,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -24477,6 +25301,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -24784,6 +25615,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -24999,6 +25837,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -25070,6 +25915,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -25201,6 +26053,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -25272,6 +26131,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -25579,6 +26445,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -25794,6 +26667,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -25865,6 +26745,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -26172,6 +27059,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -26387,6 +27281,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -26458,6 +27359,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -26512,6 +27420,13 @@
           "type": "string",
           "uniqueItems": true
         },
+        {
+          "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+          "in": "query",
+          "name": "fieldValidation",
+          "type": "string",
+          "uniqueItems": true
+        },
         {
           "description": "name of the TokenRequest",
           "in": "path",
@@ -26595,6 +27510,127 @@
       }
     },
     "/api/v1/namespaces/{namespace}/services": {
+      "delete": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "delete collection of Service",
+        "operationId": "deleteCoreV1CollectionNamespacedService",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
+            }
+          },
+          {
+            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
+            "in": "query",
+            "name": "continue",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
+            "in": "query",
+            "name": "fieldSelector",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
+            "in": "query",
+            "name": "gracePeriodSeconds",
+            "type": "integer",
+            "uniqueItems": true
+          },
+          {
+            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
+            "in": "query",
+            "name": "labelSelector",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
+            "in": "query",
+            "name": "limit",
+            "type": "integer",
+            "uniqueItems": true
+          },
+          {
+            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
+            "in": "query",
+            "name": "orphanDependents",
+            "type": "boolean",
+            "uniqueItems": true
+          },
+          {
+            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
+            "in": "query",
+            "name": "propagationPolicy",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+            "in": "query",
+            "name": "resourceVersion",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+            "in": "query",
+            "name": "resourceVersionMatch",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
+            "in": "query",
+            "name": "timeoutSeconds",
+            "type": "integer",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "core_v1"
+        ],
+        "x-kubernetes-action": "deletecollection",
+        "x-kubernetes-group-version-kind": {
+          "group": "",
+          "kind": "Service",
+          "version": "v1"
+        }
+      },
       "get": {
         "consumes": [
           "*/*"
@@ -26742,6 +27778,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -26839,13 +27882,13 @@
           "200": {
             "description": "OK",
             "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
+              "$ref": "#/definitions/io.k8s.api.core.v1.Service"
             }
           },
           "202": {
             "description": "Accepted",
             "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
+              "$ref": "#/definitions/io.k8s.api.core.v1.Service"
             }
           },
           "401": {
@@ -26957,6 +28000,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -27028,6 +28078,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -27683,6 +28740,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -27754,6 +28818,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -27955,6 +29026,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -28026,6 +29104,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -28080,6 +29165,13 @@
           "type": "string",
           "uniqueItems": true
         },
+        {
+          "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+          "in": "query",
+          "name": "fieldValidation",
+          "type": "string",
+          "uniqueItems": true
+        },
         {
           "description": "name of the Namespace",
           "in": "path",
@@ -28233,6 +29325,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -28304,6 +29403,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -28603,6 +29709,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -28810,6 +29923,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -28881,6 +30001,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -29512,6 +30639,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -29583,6 +30717,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -29993,6 +31134,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -30200,6 +31348,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -30271,6 +31426,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -30394,6 +31556,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -30465,6 +31634,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -36614,6 +37790,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -36821,6 +38004,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -36892,6 +38082,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -37191,6 +38388,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -37398,6 +38602,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -37469,6 +38680,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -38294,6 +39512,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -38501,6 +39726,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -38572,6 +39804,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -38695,6 +39934,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -38766,6 +40012,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -39361,6 +40614,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -39568,6 +40828,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -39639,6 +40906,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -39762,6 +41036,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -39833,6 +41114,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -40769,6 +42057,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -40984,6 +42279,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -41055,6 +42357,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -41362,6 +42671,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -41577,6 +42893,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -41648,6 +42971,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -41779,6 +43109,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -41850,6 +43187,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -42157,6 +43501,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -42372,6 +43723,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -42443,6 +43801,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -42574,6 +43939,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -42645,6 +44017,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -42776,6 +44155,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -42847,6 +44233,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -43154,6 +44547,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -43369,6 +44769,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -43440,6 +44847,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -43571,6 +44985,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -43642,6 +45063,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -43773,6 +45201,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -43844,6 +45279,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -44151,6 +45593,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -44366,6 +45815,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -44437,6 +45893,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -44568,6 +46031,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -44639,6 +46109,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -44770,6 +46247,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -44841,6 +46325,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -46968,6 +48459,13 @@
           "type": "string",
           "uniqueItems": true
         },
+        {
+          "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+          "in": "query",
+          "name": "fieldValidation",
+          "type": "string",
+          "uniqueItems": true
+        },
         {
           "description": "If 'true', then the output is pretty printed.",
           "in": "query",
@@ -47116,6 +48614,13 @@
           "type": "string",
           "uniqueItems": true
         },
+        {
+          "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+          "in": "query",
+          "name": "fieldValidation",
+          "type": "string",
+          "uniqueItems": true
+        },
         {
           "description": "object name and auth scope, such as for teams and projects",
           "in": "path",
@@ -47206,6 +48711,13 @@
           "type": "string",
           "uniqueItems": true
         },
+        {
+          "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+          "in": "query",
+          "name": "fieldValidation",
+          "type": "string",
+          "uniqueItems": true
+        },
         {
           "description": "If 'true', then the output is pretty printed.",
           "in": "query",
@@ -47288,6 +48800,13 @@
           "type": "string",
           "uniqueItems": true
         },
+        {
+          "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+          "in": "query",
+          "name": "fieldValidation",
+          "type": "string",
+          "uniqueItems": true
+        },
         {
           "description": "If 'true', then the output is pretty printed.",
           "in": "query",
@@ -47370,6 +48889,13 @@
           "type": "string",
           "uniqueItems": true
         },
+        {
+          "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+          "in": "query",
+          "name": "fieldValidation",
+          "type": "string",
+          "uniqueItems": true
+        },
         {
           "description": "If 'true', then the output is pretty printed.",
           "in": "query",
@@ -47882,6 +49408,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -48097,6 +49630,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -48168,6 +49708,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -48299,6 +49846,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -48370,6 +49924,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -48765,6 +50326,1337 @@
         }
       ]
     },
+    "/apis/autoscaling/v2/": {
+      "get": {
+        "consumes": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "description": "get available resources",
+        "operationId": "getAutoscalingV2APIResources",
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "autoscaling_v2"
+        ]
+      }
+    },
+    "/apis/autoscaling/v2/horizontalpodautoscalers": {
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "list or watch objects of kind HorizontalPodAutoscaler",
+        "operationId": "listAutoscalingV2HorizontalPodAutoscalerForAllNamespaces",
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf",
+          "application/json;stream=watch",
+          "application/vnd.kubernetes.protobuf;stream=watch"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerList"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "autoscaling_v2"
+        ],
+        "x-kubernetes-action": "list",
+        "x-kubernetes-group-version-kind": {
+          "group": "autoscaling",
+          "kind": "HorizontalPodAutoscaler",
+          "version": "v2"
+        }
+      },
+      "parameters": [
+        {
+          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
+          "in": "query",
+          "name": "allowWatchBookmarks",
+          "type": "boolean",
+          "uniqueItems": true
+        },
+        {
+          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
+          "in": "query",
+          "name": "continue",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
+          "in": "query",
+          "name": "fieldSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
+          "in": "query",
+          "name": "labelSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
+          "in": "query",
+          "name": "limit",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersion",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersionMatch",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
+          "in": "query",
+          "name": "timeoutSeconds",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
+          "in": "query",
+          "name": "watch",
+          "type": "boolean",
+          "uniqueItems": true
+        }
+      ]
+    },
+    "/apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers": {
+      "delete": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "delete collection of HorizontalPodAutoscaler",
+        "operationId": "deleteAutoscalingV2CollectionNamespacedHorizontalPodAutoscaler",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
+            }
+          },
+          {
+            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
+            "in": "query",
+            "name": "continue",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
+            "in": "query",
+            "name": "fieldSelector",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
+            "in": "query",
+            "name": "gracePeriodSeconds",
+            "type": "integer",
+            "uniqueItems": true
+          },
+          {
+            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
+            "in": "query",
+            "name": "labelSelector",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
+            "in": "query",
+            "name": "limit",
+            "type": "integer",
+            "uniqueItems": true
+          },
+          {
+            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
+            "in": "query",
+            "name": "orphanDependents",
+            "type": "boolean",
+            "uniqueItems": true
+          },
+          {
+            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
+            "in": "query",
+            "name": "propagationPolicy",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+            "in": "query",
+            "name": "resourceVersion",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+            "in": "query",
+            "name": "resourceVersionMatch",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
+            "in": "query",
+            "name": "timeoutSeconds",
+            "type": "integer",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "autoscaling_v2"
+        ],
+        "x-kubernetes-action": "deletecollection",
+        "x-kubernetes-group-version-kind": {
+          "group": "autoscaling",
+          "kind": "HorizontalPodAutoscaler",
+          "version": "v2"
+        }
+      },
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "list or watch objects of kind HorizontalPodAutoscaler",
+        "operationId": "listAutoscalingV2NamespacedHorizontalPodAutoscaler",
+        "parameters": [
+          {
+            "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
+            "in": "query",
+            "name": "allowWatchBookmarks",
+            "type": "boolean",
+            "uniqueItems": true
+          },
+          {
+            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
+            "in": "query",
+            "name": "continue",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
+            "in": "query",
+            "name": "fieldSelector",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
+            "in": "query",
+            "name": "labelSelector",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
+            "in": "query",
+            "name": "limit",
+            "type": "integer",
+            "uniqueItems": true
+          },
+          {
+            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+            "in": "query",
+            "name": "resourceVersion",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+            "in": "query",
+            "name": "resourceVersionMatch",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
+            "in": "query",
+            "name": "timeoutSeconds",
+            "type": "integer",
+            "uniqueItems": true
+          },
+          {
+            "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
+            "in": "query",
+            "name": "watch",
+            "type": "boolean",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf",
+          "application/json;stream=watch",
+          "application/vnd.kubernetes.protobuf;stream=watch"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerList"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "autoscaling_v2"
+        ],
+        "x-kubernetes-action": "list",
+        "x-kubernetes-group-version-kind": {
+          "group": "autoscaling",
+          "kind": "HorizontalPodAutoscaler",
+          "version": "v2"
+        }
+      },
+      "parameters": [
+        {
+          "description": "object name and auth scope, such as for teams and projects",
+          "in": "path",
+          "name": "namespace",
+          "required": true,
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        }
+      ],
+      "post": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "create a HorizontalPodAutoscaler",
+        "operationId": "createAutoscalingV2NamespacedHorizontalPodAutoscaler",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "required": true,
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
+            "in": "query",
+            "name": "fieldManager",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"
+            }
+          },
+          "201": {
+            "description": "Created",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"
+            }
+          },
+          "202": {
+            "description": "Accepted",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "autoscaling_v2"
+        ],
+        "x-kubernetes-action": "post",
+        "x-kubernetes-group-version-kind": {
+          "group": "autoscaling",
+          "kind": "HorizontalPodAutoscaler",
+          "version": "v2"
+        }
+      }
+    },
+    "/apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}": {
+      "delete": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "delete a HorizontalPodAutoscaler",
+        "operationId": "deleteAutoscalingV2NamespacedHorizontalPodAutoscaler",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
+            "in": "query",
+            "name": "gracePeriodSeconds",
+            "type": "integer",
+            "uniqueItems": true
+          },
+          {
+            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
+            "in": "query",
+            "name": "orphanDependents",
+            "type": "boolean",
+            "uniqueItems": true
+          },
+          {
+            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
+            "in": "query",
+            "name": "propagationPolicy",
+            "type": "string",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
+            }
+          },
+          "202": {
+            "description": "Accepted",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "autoscaling_v2"
+        ],
+        "x-kubernetes-action": "delete",
+        "x-kubernetes-group-version-kind": {
+          "group": "autoscaling",
+          "kind": "HorizontalPodAutoscaler",
+          "version": "v2"
+        }
+      },
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "read the specified HorizontalPodAutoscaler",
+        "operationId": "readAutoscalingV2NamespacedHorizontalPodAutoscaler",
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "autoscaling_v2"
+        ],
+        "x-kubernetes-action": "get",
+        "x-kubernetes-group-version-kind": {
+          "group": "autoscaling",
+          "kind": "HorizontalPodAutoscaler",
+          "version": "v2"
+        }
+      },
+      "parameters": [
+        {
+          "description": "name of the HorizontalPodAutoscaler",
+          "in": "path",
+          "name": "name",
+          "required": true,
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "object name and auth scope, such as for teams and projects",
+          "in": "path",
+          "name": "namespace",
+          "required": true,
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        }
+      ],
+      "patch": {
+        "consumes": [
+          "application/json-patch+json",
+          "application/merge-patch+json",
+          "application/strategic-merge-patch+json",
+          "application/apply-patch+yaml"
+        ],
+        "description": "partially update the specified HorizontalPodAutoscaler",
+        "operationId": "patchAutoscalingV2NamespacedHorizontalPodAutoscaler",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "required": true,
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Patch"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).",
+            "in": "query",
+            "name": "fieldManager",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
+            "in": "query",
+            "name": "force",
+            "type": "boolean",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"
+            }
+          },
+          "201": {
+            "description": "Created",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "autoscaling_v2"
+        ],
+        "x-kubernetes-action": "patch",
+        "x-kubernetes-group-version-kind": {
+          "group": "autoscaling",
+          "kind": "HorizontalPodAutoscaler",
+          "version": "v2"
+        }
+      },
+      "put": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "replace the specified HorizontalPodAutoscaler",
+        "operationId": "replaceAutoscalingV2NamespacedHorizontalPodAutoscaler",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "required": true,
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
+            "in": "query",
+            "name": "fieldManager",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"
+            }
+          },
+          "201": {
+            "description": "Created",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "autoscaling_v2"
+        ],
+        "x-kubernetes-action": "put",
+        "x-kubernetes-group-version-kind": {
+          "group": "autoscaling",
+          "kind": "HorizontalPodAutoscaler",
+          "version": "v2"
+        }
+      }
+    },
+    "/apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}/status": {
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "read status of the specified HorizontalPodAutoscaler",
+        "operationId": "readAutoscalingV2NamespacedHorizontalPodAutoscalerStatus",
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "autoscaling_v2"
+        ],
+        "x-kubernetes-action": "get",
+        "x-kubernetes-group-version-kind": {
+          "group": "autoscaling",
+          "kind": "HorizontalPodAutoscaler",
+          "version": "v2"
+        }
+      },
+      "parameters": [
+        {
+          "description": "name of the HorizontalPodAutoscaler",
+          "in": "path",
+          "name": "name",
+          "required": true,
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "object name and auth scope, such as for teams and projects",
+          "in": "path",
+          "name": "namespace",
+          "required": true,
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        }
+      ],
+      "patch": {
+        "consumes": [
+          "application/json-patch+json",
+          "application/merge-patch+json",
+          "application/strategic-merge-patch+json",
+          "application/apply-patch+yaml"
+        ],
+        "description": "partially update status of the specified HorizontalPodAutoscaler",
+        "operationId": "patchAutoscalingV2NamespacedHorizontalPodAutoscalerStatus",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "required": true,
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Patch"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).",
+            "in": "query",
+            "name": "fieldManager",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
+            "in": "query",
+            "name": "force",
+            "type": "boolean",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"
+            }
+          },
+          "201": {
+            "description": "Created",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "autoscaling_v2"
+        ],
+        "x-kubernetes-action": "patch",
+        "x-kubernetes-group-version-kind": {
+          "group": "autoscaling",
+          "kind": "HorizontalPodAutoscaler",
+          "version": "v2"
+        }
+      },
+      "put": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "replace status of the specified HorizontalPodAutoscaler",
+        "operationId": "replaceAutoscalingV2NamespacedHorizontalPodAutoscalerStatus",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "required": true,
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
+            "in": "query",
+            "name": "fieldManager",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"
+            }
+          },
+          "201": {
+            "description": "Created",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "autoscaling_v2"
+        ],
+        "x-kubernetes-action": "put",
+        "x-kubernetes-group-version-kind": {
+          "group": "autoscaling",
+          "kind": "HorizontalPodAutoscaler",
+          "version": "v2"
+        }
+      }
+    },
+    "/apis/autoscaling/v2/watch/horizontalpodautoscalers": {
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "watch individual changes to a list of HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead.",
+        "operationId": "watchAutoscalingV2HorizontalPodAutoscalerListForAllNamespaces",
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf",
+          "application/json;stream=watch",
+          "application/vnd.kubernetes.protobuf;stream=watch"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "autoscaling_v2"
+        ],
+        "x-kubernetes-action": "watchlist",
+        "x-kubernetes-group-version-kind": {
+          "group": "autoscaling",
+          "kind": "HorizontalPodAutoscaler",
+          "version": "v2"
+        }
+      },
+      "parameters": [
+        {
+          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
+          "in": "query",
+          "name": "allowWatchBookmarks",
+          "type": "boolean",
+          "uniqueItems": true
+        },
+        {
+          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
+          "in": "query",
+          "name": "continue",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
+          "in": "query",
+          "name": "fieldSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
+          "in": "query",
+          "name": "labelSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
+          "in": "query",
+          "name": "limit",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersion",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersionMatch",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
+          "in": "query",
+          "name": "timeoutSeconds",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
+          "in": "query",
+          "name": "watch",
+          "type": "boolean",
+          "uniqueItems": true
+        }
+      ]
+    },
+    "/apis/autoscaling/v2/watch/namespaces/{namespace}/horizontalpodautoscalers": {
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "watch individual changes to a list of HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead.",
+        "operationId": "watchAutoscalingV2NamespacedHorizontalPodAutoscalerList",
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf",
+          "application/json;stream=watch",
+          "application/vnd.kubernetes.protobuf;stream=watch"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "autoscaling_v2"
+        ],
+        "x-kubernetes-action": "watchlist",
+        "x-kubernetes-group-version-kind": {
+          "group": "autoscaling",
+          "kind": "HorizontalPodAutoscaler",
+          "version": "v2"
+        }
+      },
+      "parameters": [
+        {
+          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
+          "in": "query",
+          "name": "allowWatchBookmarks",
+          "type": "boolean",
+          "uniqueItems": true
+        },
+        {
+          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
+          "in": "query",
+          "name": "continue",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
+          "in": "query",
+          "name": "fieldSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
+          "in": "query",
+          "name": "labelSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
+          "in": "query",
+          "name": "limit",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "object name and auth scope, such as for teams and projects",
+          "in": "path",
+          "name": "namespace",
+          "required": true,
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersion",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersionMatch",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
+          "in": "query",
+          "name": "timeoutSeconds",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
+          "in": "query",
+          "name": "watch",
+          "type": "boolean",
+          "uniqueItems": true
+        }
+      ]
+    },
+    "/apis/autoscaling/v2/watch/namespaces/{namespace}/horizontalpodautoscalers/{name}": {
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "watch changes to an object of kind HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.",
+        "operationId": "watchAutoscalingV2NamespacedHorizontalPodAutoscaler",
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf",
+          "application/json;stream=watch",
+          "application/vnd.kubernetes.protobuf;stream=watch"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "autoscaling_v2"
+        ],
+        "x-kubernetes-action": "watch",
+        "x-kubernetes-group-version-kind": {
+          "group": "autoscaling",
+          "kind": "HorizontalPodAutoscaler",
+          "version": "v2"
+        }
+      },
+      "parameters": [
+        {
+          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
+          "in": "query",
+          "name": "allowWatchBookmarks",
+          "type": "boolean",
+          "uniqueItems": true
+        },
+        {
+          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
+          "in": "query",
+          "name": "continue",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
+          "in": "query",
+          "name": "fieldSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
+          "in": "query",
+          "name": "labelSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
+          "in": "query",
+          "name": "limit",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "name of the HorizontalPodAutoscaler",
+          "in": "path",
+          "name": "name",
+          "required": true,
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "object name and auth scope, such as for teams and projects",
+          "in": "path",
+          "name": "namespace",
+          "required": true,
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersion",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersionMatch",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
+          "in": "query",
+          "name": "timeoutSeconds",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
+          "in": "query",
+          "name": "watch",
+          "type": "boolean",
+          "uniqueItems": true
+        }
+      ]
+    },
     "/apis/autoscaling/v2beta1/": {
       "get": {
         "consumes": [
@@ -49178,6 +52070,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -49393,6 +52292,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -49464,6 +52370,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -49595,6 +52508,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -49666,6 +52586,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -50474,6 +53401,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -50689,6 +53623,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -50760,6 +53701,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -50891,6 +53839,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -50962,6 +53917,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -51914,6 +54876,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -52129,6 +55098,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -52200,6 +55176,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -52331,6 +55314,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -52402,6 +55392,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -52709,6 +55706,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -52924,6 +55928,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -52995,6 +56006,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -53126,6 +56144,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -53197,6 +56222,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -54362,6 +57394,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -54577,6 +57616,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -54648,6 +57694,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -54779,6 +57832,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -54850,6 +57910,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -55572,6 +58639,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -55779,6 +58853,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -55850,6 +58931,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -55973,6 +59061,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -56044,6 +59139,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -56167,6 +59269,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -56238,6 +59347,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -56952,6 +60068,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -57167,6 +60290,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -57238,6 +60368,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -58079,6 +61216,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -58294,6 +61438,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -58365,6 +61516,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -59173,6 +62331,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -59388,6 +62553,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -59459,6 +62631,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -60300,6 +63479,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -60515,6 +63701,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -60586,6 +63779,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -61394,6 +64594,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -61609,6 +64816,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -61680,6 +64894,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -62402,6 +65623,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -62609,6 +65837,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -62680,6 +65915,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -62803,6 +66045,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -62874,6 +66123,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -63173,6 +66429,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -63380,6 +66643,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -63451,6 +66721,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -63574,6 +66851,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -63645,6 +66929,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -64143,6 +67434,2111 @@
         }
       ]
     },
+    "/apis/flowcontrol.apiserver.k8s.io/v1beta2/": {
+      "get": {
+        "consumes": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "description": "get available resources",
+        "operationId": "getFlowcontrolApiserverV1beta2APIResources",
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ]
+      }
+    },
+    "/apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas": {
+      "delete": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "delete collection of FlowSchema",
+        "operationId": "deleteFlowcontrolApiserverV1beta2CollectionFlowSchema",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
+            }
+          },
+          {
+            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
+            "in": "query",
+            "name": "continue",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
+            "in": "query",
+            "name": "fieldSelector",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
+            "in": "query",
+            "name": "gracePeriodSeconds",
+            "type": "integer",
+            "uniqueItems": true
+          },
+          {
+            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
+            "in": "query",
+            "name": "labelSelector",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
+            "in": "query",
+            "name": "limit",
+            "type": "integer",
+            "uniqueItems": true
+          },
+          {
+            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
+            "in": "query",
+            "name": "orphanDependents",
+            "type": "boolean",
+            "uniqueItems": true
+          },
+          {
+            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
+            "in": "query",
+            "name": "propagationPolicy",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+            "in": "query",
+            "name": "resourceVersion",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+            "in": "query",
+            "name": "resourceVersionMatch",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
+            "in": "query",
+            "name": "timeoutSeconds",
+            "type": "integer",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "deletecollection",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "FlowSchema",
+          "version": "v1beta2"
+        }
+      },
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "list or watch objects of kind FlowSchema",
+        "operationId": "listFlowcontrolApiserverV1beta2FlowSchema",
+        "parameters": [
+          {
+            "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
+            "in": "query",
+            "name": "allowWatchBookmarks",
+            "type": "boolean",
+            "uniqueItems": true
+          },
+          {
+            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
+            "in": "query",
+            "name": "continue",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
+            "in": "query",
+            "name": "fieldSelector",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
+            "in": "query",
+            "name": "labelSelector",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
+            "in": "query",
+            "name": "limit",
+            "type": "integer",
+            "uniqueItems": true
+          },
+          {
+            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+            "in": "query",
+            "name": "resourceVersion",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+            "in": "query",
+            "name": "resourceVersionMatch",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
+            "in": "query",
+            "name": "timeoutSeconds",
+            "type": "integer",
+            "uniqueItems": true
+          },
+          {
+            "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
+            "in": "query",
+            "name": "watch",
+            "type": "boolean",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf",
+          "application/json;stream=watch",
+          "application/vnd.kubernetes.protobuf;stream=watch"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.FlowSchemaList"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "list",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "FlowSchema",
+          "version": "v1beta2"
+        }
+      },
+      "parameters": [
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        }
+      ],
+      "post": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "create a FlowSchema",
+        "operationId": "createFlowcontrolApiserverV1beta2FlowSchema",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "required": true,
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.FlowSchema"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
+            "in": "query",
+            "name": "fieldManager",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.FlowSchema"
+            }
+          },
+          "201": {
+            "description": "Created",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.FlowSchema"
+            }
+          },
+          "202": {
+            "description": "Accepted",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.FlowSchema"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "post",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "FlowSchema",
+          "version": "v1beta2"
+        }
+      }
+    },
+    "/apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}": {
+      "delete": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "delete a FlowSchema",
+        "operationId": "deleteFlowcontrolApiserverV1beta2FlowSchema",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
+            "in": "query",
+            "name": "gracePeriodSeconds",
+            "type": "integer",
+            "uniqueItems": true
+          },
+          {
+            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
+            "in": "query",
+            "name": "orphanDependents",
+            "type": "boolean",
+            "uniqueItems": true
+          },
+          {
+            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
+            "in": "query",
+            "name": "propagationPolicy",
+            "type": "string",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
+            }
+          },
+          "202": {
+            "description": "Accepted",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "delete",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "FlowSchema",
+          "version": "v1beta2"
+        }
+      },
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "read the specified FlowSchema",
+        "operationId": "readFlowcontrolApiserverV1beta2FlowSchema",
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.FlowSchema"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "get",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "FlowSchema",
+          "version": "v1beta2"
+        }
+      },
+      "parameters": [
+        {
+          "description": "name of the FlowSchema",
+          "in": "path",
+          "name": "name",
+          "required": true,
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        }
+      ],
+      "patch": {
+        "consumes": [
+          "application/json-patch+json",
+          "application/merge-patch+json",
+          "application/strategic-merge-patch+json",
+          "application/apply-patch+yaml"
+        ],
+        "description": "partially update the specified FlowSchema",
+        "operationId": "patchFlowcontrolApiserverV1beta2FlowSchema",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "required": true,
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Patch"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).",
+            "in": "query",
+            "name": "fieldManager",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
+            "in": "query",
+            "name": "force",
+            "type": "boolean",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.FlowSchema"
+            }
+          },
+          "201": {
+            "description": "Created",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.FlowSchema"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "patch",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "FlowSchema",
+          "version": "v1beta2"
+        }
+      },
+      "put": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "replace the specified FlowSchema",
+        "operationId": "replaceFlowcontrolApiserverV1beta2FlowSchema",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "required": true,
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.FlowSchema"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
+            "in": "query",
+            "name": "fieldManager",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.FlowSchema"
+            }
+          },
+          "201": {
+            "description": "Created",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.FlowSchema"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "put",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "FlowSchema",
+          "version": "v1beta2"
+        }
+      }
+    },
+    "/apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}/status": {
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "read status of the specified FlowSchema",
+        "operationId": "readFlowcontrolApiserverV1beta2FlowSchemaStatus",
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.FlowSchema"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "get",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "FlowSchema",
+          "version": "v1beta2"
+        }
+      },
+      "parameters": [
+        {
+          "description": "name of the FlowSchema",
+          "in": "path",
+          "name": "name",
+          "required": true,
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        }
+      ],
+      "patch": {
+        "consumes": [
+          "application/json-patch+json",
+          "application/merge-patch+json",
+          "application/strategic-merge-patch+json",
+          "application/apply-patch+yaml"
+        ],
+        "description": "partially update status of the specified FlowSchema",
+        "operationId": "patchFlowcontrolApiserverV1beta2FlowSchemaStatus",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "required": true,
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Patch"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).",
+            "in": "query",
+            "name": "fieldManager",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
+            "in": "query",
+            "name": "force",
+            "type": "boolean",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.FlowSchema"
+            }
+          },
+          "201": {
+            "description": "Created",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.FlowSchema"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "patch",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "FlowSchema",
+          "version": "v1beta2"
+        }
+      },
+      "put": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "replace status of the specified FlowSchema",
+        "operationId": "replaceFlowcontrolApiserverV1beta2FlowSchemaStatus",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "required": true,
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.FlowSchema"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
+            "in": "query",
+            "name": "fieldManager",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.FlowSchema"
+            }
+          },
+          "201": {
+            "description": "Created",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.FlowSchema"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "put",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "FlowSchema",
+          "version": "v1beta2"
+        }
+      }
+    },
+    "/apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations": {
+      "delete": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "delete collection of PriorityLevelConfiguration",
+        "operationId": "deleteFlowcontrolApiserverV1beta2CollectionPriorityLevelConfiguration",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
+            }
+          },
+          {
+            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
+            "in": "query",
+            "name": "continue",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
+            "in": "query",
+            "name": "fieldSelector",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
+            "in": "query",
+            "name": "gracePeriodSeconds",
+            "type": "integer",
+            "uniqueItems": true
+          },
+          {
+            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
+            "in": "query",
+            "name": "labelSelector",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
+            "in": "query",
+            "name": "limit",
+            "type": "integer",
+            "uniqueItems": true
+          },
+          {
+            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
+            "in": "query",
+            "name": "orphanDependents",
+            "type": "boolean",
+            "uniqueItems": true
+          },
+          {
+            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
+            "in": "query",
+            "name": "propagationPolicy",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+            "in": "query",
+            "name": "resourceVersion",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+            "in": "query",
+            "name": "resourceVersionMatch",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
+            "in": "query",
+            "name": "timeoutSeconds",
+            "type": "integer",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "deletecollection",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "PriorityLevelConfiguration",
+          "version": "v1beta2"
+        }
+      },
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "list or watch objects of kind PriorityLevelConfiguration",
+        "operationId": "listFlowcontrolApiserverV1beta2PriorityLevelConfiguration",
+        "parameters": [
+          {
+            "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
+            "in": "query",
+            "name": "allowWatchBookmarks",
+            "type": "boolean",
+            "uniqueItems": true
+          },
+          {
+            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
+            "in": "query",
+            "name": "continue",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
+            "in": "query",
+            "name": "fieldSelector",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
+            "in": "query",
+            "name": "labelSelector",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
+            "in": "query",
+            "name": "limit",
+            "type": "integer",
+            "uniqueItems": true
+          },
+          {
+            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+            "in": "query",
+            "name": "resourceVersion",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+            "in": "query",
+            "name": "resourceVersionMatch",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
+            "in": "query",
+            "name": "timeoutSeconds",
+            "type": "integer",
+            "uniqueItems": true
+          },
+          {
+            "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
+            "in": "query",
+            "name": "watch",
+            "type": "boolean",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf",
+          "application/json;stream=watch",
+          "application/vnd.kubernetes.protobuf;stream=watch"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfigurationList"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "list",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "PriorityLevelConfiguration",
+          "version": "v1beta2"
+        }
+      },
+      "parameters": [
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        }
+      ],
+      "post": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "create a PriorityLevelConfiguration",
+        "operationId": "createFlowcontrolApiserverV1beta2PriorityLevelConfiguration",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "required": true,
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfiguration"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
+            "in": "query",
+            "name": "fieldManager",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfiguration"
+            }
+          },
+          "201": {
+            "description": "Created",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfiguration"
+            }
+          },
+          "202": {
+            "description": "Accepted",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfiguration"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "post",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "PriorityLevelConfiguration",
+          "version": "v1beta2"
+        }
+      }
+    },
+    "/apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}": {
+      "delete": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "delete a PriorityLevelConfiguration",
+        "operationId": "deleteFlowcontrolApiserverV1beta2PriorityLevelConfiguration",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
+            "in": "query",
+            "name": "gracePeriodSeconds",
+            "type": "integer",
+            "uniqueItems": true
+          },
+          {
+            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
+            "in": "query",
+            "name": "orphanDependents",
+            "type": "boolean",
+            "uniqueItems": true
+          },
+          {
+            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
+            "in": "query",
+            "name": "propagationPolicy",
+            "type": "string",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
+            }
+          },
+          "202": {
+            "description": "Accepted",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "delete",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "PriorityLevelConfiguration",
+          "version": "v1beta2"
+        }
+      },
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "read the specified PriorityLevelConfiguration",
+        "operationId": "readFlowcontrolApiserverV1beta2PriorityLevelConfiguration",
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfiguration"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "get",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "PriorityLevelConfiguration",
+          "version": "v1beta2"
+        }
+      },
+      "parameters": [
+        {
+          "description": "name of the PriorityLevelConfiguration",
+          "in": "path",
+          "name": "name",
+          "required": true,
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        }
+      ],
+      "patch": {
+        "consumes": [
+          "application/json-patch+json",
+          "application/merge-patch+json",
+          "application/strategic-merge-patch+json",
+          "application/apply-patch+yaml"
+        ],
+        "description": "partially update the specified PriorityLevelConfiguration",
+        "operationId": "patchFlowcontrolApiserverV1beta2PriorityLevelConfiguration",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "required": true,
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Patch"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).",
+            "in": "query",
+            "name": "fieldManager",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
+            "in": "query",
+            "name": "force",
+            "type": "boolean",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfiguration"
+            }
+          },
+          "201": {
+            "description": "Created",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfiguration"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "patch",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "PriorityLevelConfiguration",
+          "version": "v1beta2"
+        }
+      },
+      "put": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "replace the specified PriorityLevelConfiguration",
+        "operationId": "replaceFlowcontrolApiserverV1beta2PriorityLevelConfiguration",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "required": true,
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfiguration"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
+            "in": "query",
+            "name": "fieldManager",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfiguration"
+            }
+          },
+          "201": {
+            "description": "Created",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfiguration"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "put",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "PriorityLevelConfiguration",
+          "version": "v1beta2"
+        }
+      }
+    },
+    "/apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}/status": {
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "read status of the specified PriorityLevelConfiguration",
+        "operationId": "readFlowcontrolApiserverV1beta2PriorityLevelConfigurationStatus",
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfiguration"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "get",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "PriorityLevelConfiguration",
+          "version": "v1beta2"
+        }
+      },
+      "parameters": [
+        {
+          "description": "name of the PriorityLevelConfiguration",
+          "in": "path",
+          "name": "name",
+          "required": true,
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        }
+      ],
+      "patch": {
+        "consumes": [
+          "application/json-patch+json",
+          "application/merge-patch+json",
+          "application/strategic-merge-patch+json",
+          "application/apply-patch+yaml"
+        ],
+        "description": "partially update status of the specified PriorityLevelConfiguration",
+        "operationId": "patchFlowcontrolApiserverV1beta2PriorityLevelConfigurationStatus",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "required": true,
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Patch"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).",
+            "in": "query",
+            "name": "fieldManager",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
+            "in": "query",
+            "name": "force",
+            "type": "boolean",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfiguration"
+            }
+          },
+          "201": {
+            "description": "Created",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfiguration"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "patch",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "PriorityLevelConfiguration",
+          "version": "v1beta2"
+        }
+      },
+      "put": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "replace status of the specified PriorityLevelConfiguration",
+        "operationId": "replaceFlowcontrolApiserverV1beta2PriorityLevelConfigurationStatus",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "required": true,
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfiguration"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
+            "in": "query",
+            "name": "fieldManager",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfiguration"
+            }
+          },
+          "201": {
+            "description": "Created",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.flowcontrol.v1beta2.PriorityLevelConfiguration"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "put",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "PriorityLevelConfiguration",
+          "version": "v1beta2"
+        }
+      }
+    },
+    "/apis/flowcontrol.apiserver.k8s.io/v1beta2/watch/flowschemas": {
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "watch individual changes to a list of FlowSchema. deprecated: use the 'watch' parameter with a list operation instead.",
+        "operationId": "watchFlowcontrolApiserverV1beta2FlowSchemaList",
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf",
+          "application/json;stream=watch",
+          "application/vnd.kubernetes.protobuf;stream=watch"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "watchlist",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "FlowSchema",
+          "version": "v1beta2"
+        }
+      },
+      "parameters": [
+        {
+          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
+          "in": "query",
+          "name": "allowWatchBookmarks",
+          "type": "boolean",
+          "uniqueItems": true
+        },
+        {
+          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
+          "in": "query",
+          "name": "continue",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
+          "in": "query",
+          "name": "fieldSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
+          "in": "query",
+          "name": "labelSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
+          "in": "query",
+          "name": "limit",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersion",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersionMatch",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
+          "in": "query",
+          "name": "timeoutSeconds",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
+          "in": "query",
+          "name": "watch",
+          "type": "boolean",
+          "uniqueItems": true
+        }
+      ]
+    },
+    "/apis/flowcontrol.apiserver.k8s.io/v1beta2/watch/flowschemas/{name}": {
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "watch changes to an object of kind FlowSchema. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.",
+        "operationId": "watchFlowcontrolApiserverV1beta2FlowSchema",
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf",
+          "application/json;stream=watch",
+          "application/vnd.kubernetes.protobuf;stream=watch"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "watch",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "FlowSchema",
+          "version": "v1beta2"
+        }
+      },
+      "parameters": [
+        {
+          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
+          "in": "query",
+          "name": "allowWatchBookmarks",
+          "type": "boolean",
+          "uniqueItems": true
+        },
+        {
+          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
+          "in": "query",
+          "name": "continue",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
+          "in": "query",
+          "name": "fieldSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
+          "in": "query",
+          "name": "labelSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
+          "in": "query",
+          "name": "limit",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "name of the FlowSchema",
+          "in": "path",
+          "name": "name",
+          "required": true,
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersion",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersionMatch",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
+          "in": "query",
+          "name": "timeoutSeconds",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
+          "in": "query",
+          "name": "watch",
+          "type": "boolean",
+          "uniqueItems": true
+        }
+      ]
+    },
+    "/apis/flowcontrol.apiserver.k8s.io/v1beta2/watch/prioritylevelconfigurations": {
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "watch individual changes to a list of PriorityLevelConfiguration. deprecated: use the 'watch' parameter with a list operation instead.",
+        "operationId": "watchFlowcontrolApiserverV1beta2PriorityLevelConfigurationList",
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf",
+          "application/json;stream=watch",
+          "application/vnd.kubernetes.protobuf;stream=watch"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "watchlist",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "PriorityLevelConfiguration",
+          "version": "v1beta2"
+        }
+      },
+      "parameters": [
+        {
+          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
+          "in": "query",
+          "name": "allowWatchBookmarks",
+          "type": "boolean",
+          "uniqueItems": true
+        },
+        {
+          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
+          "in": "query",
+          "name": "continue",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
+          "in": "query",
+          "name": "fieldSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
+          "in": "query",
+          "name": "labelSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
+          "in": "query",
+          "name": "limit",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersion",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersionMatch",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
+          "in": "query",
+          "name": "timeoutSeconds",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
+          "in": "query",
+          "name": "watch",
+          "type": "boolean",
+          "uniqueItems": true
+        }
+      ]
+    },
+    "/apis/flowcontrol.apiserver.k8s.io/v1beta2/watch/prioritylevelconfigurations/{name}": {
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "watch changes to an object of kind PriorityLevelConfiguration. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.",
+        "operationId": "watchFlowcontrolApiserverV1beta2PriorityLevelConfiguration",
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf",
+          "application/json;stream=watch",
+          "application/vnd.kubernetes.protobuf;stream=watch"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "flowcontrolApiserver_v1beta2"
+        ],
+        "x-kubernetes-action": "watch",
+        "x-kubernetes-group-version-kind": {
+          "group": "flowcontrol.apiserver.k8s.io",
+          "kind": "PriorityLevelConfiguration",
+          "version": "v1beta2"
+        }
+      },
+      "parameters": [
+        {
+          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
+          "in": "query",
+          "name": "allowWatchBookmarks",
+          "type": "boolean",
+          "uniqueItems": true
+        },
+        {
+          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
+          "in": "query",
+          "name": "continue",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
+          "in": "query",
+          "name": "fieldSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
+          "in": "query",
+          "name": "labelSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
+          "in": "query",
+          "name": "limit",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "name of the PriorityLevelConfiguration",
+          "in": "path",
+          "name": "name",
+          "required": true,
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersion",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersionMatch",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
+          "in": "query",
+          "name": "timeoutSeconds",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
+          "in": "query",
+          "name": "watch",
+          "type": "boolean",
+          "uniqueItems": true
+        }
+      ]
+    },
     "/apis/internal.apiserver.k8s.io/": {
       "get": {
         "consumes": [
@@ -64470,6 +69866,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -64677,6 +70080,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -64748,6 +70158,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -64871,6 +70288,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -64942,6 +70366,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -65537,6 +70968,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -65744,6 +71182,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -65815,6 +71260,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -66233,6 +71685,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -66448,6 +71907,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -66519,6 +71985,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -66650,6 +72123,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -66721,6 +72201,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -67028,6 +72515,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -67243,6 +72737,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -67314,6 +72815,229 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.networking.v1.NetworkPolicy"
+            }
+          },
+          "201": {
+            "description": "Created",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.networking.v1.NetworkPolicy"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "networking_v1"
+        ],
+        "x-kubernetes-action": "put",
+        "x-kubernetes-group-version-kind": {
+          "group": "networking.k8s.io",
+          "kind": "NetworkPolicy",
+          "version": "v1"
+        }
+      }
+    },
+    "/apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}/status": {
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "read status of the specified NetworkPolicy",
+        "operationId": "readNetworkingV1NamespacedNetworkPolicyStatus",
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.networking.v1.NetworkPolicy"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "networking_v1"
+        ],
+        "x-kubernetes-action": "get",
+        "x-kubernetes-group-version-kind": {
+          "group": "networking.k8s.io",
+          "kind": "NetworkPolicy",
+          "version": "v1"
+        }
+      },
+      "parameters": [
+        {
+          "description": "name of the NetworkPolicy",
+          "in": "path",
+          "name": "name",
+          "required": true,
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "object name and auth scope, such as for teams and projects",
+          "in": "path",
+          "name": "namespace",
+          "required": true,
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        }
+      ],
+      "patch": {
+        "consumes": [
+          "application/json-patch+json",
+          "application/merge-patch+json",
+          "application/strategic-merge-patch+json",
+          "application/apply-patch+yaml"
+        ],
+        "description": "partially update status of the specified NetworkPolicy",
+        "operationId": "patchNetworkingV1NamespacedNetworkPolicyStatus",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "required": true,
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Patch"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).",
+            "in": "query",
+            "name": "fieldManager",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
+            "in": "query",
+            "name": "force",
+            "type": "boolean",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.networking.v1.NetworkPolicy"
+            }
+          },
+          "201": {
+            "description": "Created",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.networking.v1.NetworkPolicy"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "networking_v1"
+        ],
+        "x-kubernetes-action": "patch",
+        "x-kubernetes-group-version-kind": {
+          "group": "networking.k8s.io",
+          "kind": "NetworkPolicy",
+          "version": "v1"
+        }
+      },
+      "put": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "replace status of the specified NetworkPolicy",
+        "operationId": "replaceNetworkingV1NamespacedNetworkPolicyStatus",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "required": true,
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.networking.v1.NetworkPolicy"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
+            "in": "query",
+            "name": "fieldManager",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -68734,6 +74458,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -68941,6 +74672,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -69012,6 +74750,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -69280,846 +75025,6 @@
         }
       ]
     },
-    "/apis/node.k8s.io/v1alpha1/": {
-      "get": {
-        "consumes": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "description": "get available resources",
-        "operationId": "getNodeV1alpha1APIResources",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "node_v1alpha1"
-        ]
-      }
-    },
-    "/apis/node.k8s.io/v1alpha1/runtimeclasses": {
-      "delete": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "delete collection of RuntimeClass",
-        "operationId": "deleteNodeV1alpha1CollectionRuntimeClass",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
-            }
-          },
-          {
-            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-            "in": "query",
-            "name": "continue",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-            "in": "query",
-            "name": "fieldSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
-            "in": "query",
-            "name": "gracePeriodSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-            "in": "query",
-            "name": "labelSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-            "in": "query",
-            "name": "limit",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
-            "in": "query",
-            "name": "orphanDependents",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
-            "in": "query",
-            "name": "propagationPolicy",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersion",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersionMatch",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-            "in": "query",
-            "name": "timeoutSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "node_v1alpha1"
-        ],
-        "x-kubernetes-action": "deletecollection",
-        "x-kubernetes-group-version-kind": {
-          "group": "node.k8s.io",
-          "kind": "RuntimeClass",
-          "version": "v1alpha1"
-        }
-      },
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "list or watch objects of kind RuntimeClass",
-        "operationId": "listNodeV1alpha1RuntimeClass",
-        "parameters": [
-          {
-            "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-            "in": "query",
-            "name": "allowWatchBookmarks",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-            "in": "query",
-            "name": "continue",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-            "in": "query",
-            "name": "fieldSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-            "in": "query",
-            "name": "labelSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-            "in": "query",
-            "name": "limit",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersion",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersionMatch",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-            "in": "query",
-            "name": "timeoutSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-            "in": "query",
-            "name": "watch",
-            "type": "boolean",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.node.v1alpha1.RuntimeClassList"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "node_v1alpha1"
-        ],
-        "x-kubernetes-action": "list",
-        "x-kubernetes-group-version-kind": {
-          "group": "node.k8s.io",
-          "kind": "RuntimeClass",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        }
-      ],
-      "post": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "create a RuntimeClass",
-        "operationId": "createNodeV1alpha1RuntimeClass",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.node.v1alpha1.RuntimeClass"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.node.v1alpha1.RuntimeClass"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.node.v1alpha1.RuntimeClass"
-            }
-          },
-          "202": {
-            "description": "Accepted",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.node.v1alpha1.RuntimeClass"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "node_v1alpha1"
-        ],
-        "x-kubernetes-action": "post",
-        "x-kubernetes-group-version-kind": {
-          "group": "node.k8s.io",
-          "kind": "RuntimeClass",
-          "version": "v1alpha1"
-        }
-      }
-    },
-    "/apis/node.k8s.io/v1alpha1/runtimeclasses/{name}": {
-      "delete": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "delete a RuntimeClass",
-        "operationId": "deleteNodeV1alpha1RuntimeClass",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
-            "in": "query",
-            "name": "gracePeriodSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
-            "in": "query",
-            "name": "orphanDependents",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
-            "in": "query",
-            "name": "propagationPolicy",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
-            }
-          },
-          "202": {
-            "description": "Accepted",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "node_v1alpha1"
-        ],
-        "x-kubernetes-action": "delete",
-        "x-kubernetes-group-version-kind": {
-          "group": "node.k8s.io",
-          "kind": "RuntimeClass",
-          "version": "v1alpha1"
-        }
-      },
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "read the specified RuntimeClass",
-        "operationId": "readNodeV1alpha1RuntimeClass",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.node.v1alpha1.RuntimeClass"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "node_v1alpha1"
-        ],
-        "x-kubernetes-action": "get",
-        "x-kubernetes-group-version-kind": {
-          "group": "node.k8s.io",
-          "kind": "RuntimeClass",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "name of the RuntimeClass",
-          "in": "path",
-          "name": "name",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        }
-      ],
-      "patch": {
-        "consumes": [
-          "application/json-patch+json",
-          "application/merge-patch+json",
-          "application/strategic-merge-patch+json",
-          "application/apply-patch+yaml"
-        ],
-        "description": "partially update the specified RuntimeClass",
-        "operationId": "patchNodeV1alpha1RuntimeClass",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Patch"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
-            "in": "query",
-            "name": "force",
-            "type": "boolean",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.node.v1alpha1.RuntimeClass"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.node.v1alpha1.RuntimeClass"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "node_v1alpha1"
-        ],
-        "x-kubernetes-action": "patch",
-        "x-kubernetes-group-version-kind": {
-          "group": "node.k8s.io",
-          "kind": "RuntimeClass",
-          "version": "v1alpha1"
-        }
-      },
-      "put": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "replace the specified RuntimeClass",
-        "operationId": "replaceNodeV1alpha1RuntimeClass",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.node.v1alpha1.RuntimeClass"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.node.v1alpha1.RuntimeClass"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.node.v1alpha1.RuntimeClass"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "node_v1alpha1"
-        ],
-        "x-kubernetes-action": "put",
-        "x-kubernetes-group-version-kind": {
-          "group": "node.k8s.io",
-          "kind": "RuntimeClass",
-          "version": "v1alpha1"
-        }
-      }
-    },
-    "/apis/node.k8s.io/v1alpha1/watch/runtimeclasses": {
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "watch individual changes to a list of RuntimeClass. deprecated: use the 'watch' parameter with a list operation instead.",
-        "operationId": "watchNodeV1alpha1RuntimeClassList",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "node_v1alpha1"
-        ],
-        "x-kubernetes-action": "watchlist",
-        "x-kubernetes-group-version-kind": {
-          "group": "node.k8s.io",
-          "kind": "RuntimeClass",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-          "in": "query",
-          "name": "allowWatchBookmarks",
-          "type": "boolean",
-          "uniqueItems": true
-        },
-        {
-          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-          "in": "query",
-          "name": "continue",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-          "in": "query",
-          "name": "fieldSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-          "in": "query",
-          "name": "labelSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-          "in": "query",
-          "name": "limit",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersion",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersionMatch",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-          "in": "query",
-          "name": "timeoutSeconds",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-          "in": "query",
-          "name": "watch",
-          "type": "boolean",
-          "uniqueItems": true
-        }
-      ]
-    },
-    "/apis/node.k8s.io/v1alpha1/watch/runtimeclasses/{name}": {
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "watch changes to an object of kind RuntimeClass. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.",
-        "operationId": "watchNodeV1alpha1RuntimeClass",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "node_v1alpha1"
-        ],
-        "x-kubernetes-action": "watch",
-        "x-kubernetes-group-version-kind": {
-          "group": "node.k8s.io",
-          "kind": "RuntimeClass",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-          "in": "query",
-          "name": "allowWatchBookmarks",
-          "type": "boolean",
-          "uniqueItems": true
-        },
-        {
-          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-          "in": "query",
-          "name": "continue",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-          "in": "query",
-          "name": "fieldSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-          "in": "query",
-          "name": "labelSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-          "in": "query",
-          "name": "limit",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "name of the RuntimeClass",
-          "in": "path",
-          "name": "name",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersion",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersionMatch",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-          "in": "query",
-          "name": "timeoutSeconds",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-          "in": "query",
-          "name": "watch",
-          "type": "boolean",
-          "uniqueItems": true
-        }
-      ]
-    },
     "/apis/node.k8s.io/v1beta1/": {
       "get": {
         "consumes": [
@@ -70414,6 +75319,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -70621,6 +75533,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -70692,6 +75611,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -71295,6 +76221,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -71510,6 +76443,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -71581,6 +76521,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -71712,6 +76659,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -71783,6 +76737,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -72591,6 +77552,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -72806,6 +77774,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -72877,6 +77852,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -73008,6 +77990,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -73079,6 +78068,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -73489,6 +78485,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -73696,6 +78699,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -73767,6 +78777,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -74719,6 +79736,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -74926,6 +79950,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -74997,6 +80028,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -75296,6 +80334,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -75503,6 +80548,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -75574,6 +80626,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -75881,6 +80940,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -76096,6 +81162,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -76167,6 +81240,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -76474,6 +81554,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -76689,6 +81776,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -76760,6 +81854,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -78194,3775 +83295,6 @@
         }
       ]
     },
-    "/apis/rbac.authorization.k8s.io/v1alpha1/": {
-      "get": {
-        "consumes": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "description": "get available resources",
-        "operationId": "getRbacAuthorizationV1alpha1APIResources",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ]
-      }
-    },
-    "/apis/rbac.authorization.k8s.io/v1alpha1/clusterrolebindings": {
-      "delete": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "delete collection of ClusterRoleBinding",
-        "operationId": "deleteRbacAuthorizationV1alpha1CollectionClusterRoleBinding",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
-            }
-          },
-          {
-            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-            "in": "query",
-            "name": "continue",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-            "in": "query",
-            "name": "fieldSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
-            "in": "query",
-            "name": "gracePeriodSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-            "in": "query",
-            "name": "labelSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-            "in": "query",
-            "name": "limit",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
-            "in": "query",
-            "name": "orphanDependents",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
-            "in": "query",
-            "name": "propagationPolicy",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersion",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersionMatch",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-            "in": "query",
-            "name": "timeoutSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "deletecollection",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "ClusterRoleBinding",
-          "version": "v1alpha1"
-        }
-      },
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "list or watch objects of kind ClusterRoleBinding",
-        "operationId": "listRbacAuthorizationV1alpha1ClusterRoleBinding",
-        "parameters": [
-          {
-            "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-            "in": "query",
-            "name": "allowWatchBookmarks",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-            "in": "query",
-            "name": "continue",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-            "in": "query",
-            "name": "fieldSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-            "in": "query",
-            "name": "labelSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-            "in": "query",
-            "name": "limit",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersion",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersionMatch",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-            "in": "query",
-            "name": "timeoutSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-            "in": "query",
-            "name": "watch",
-            "type": "boolean",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRoleBindingList"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "list",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "ClusterRoleBinding",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        }
-      ],
-      "post": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "create a ClusterRoleBinding",
-        "operationId": "createRbacAuthorizationV1alpha1ClusterRoleBinding",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRoleBinding"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRoleBinding"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRoleBinding"
-            }
-          },
-          "202": {
-            "description": "Accepted",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRoleBinding"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "post",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "ClusterRoleBinding",
-          "version": "v1alpha1"
-        }
-      }
-    },
-    "/apis/rbac.authorization.k8s.io/v1alpha1/clusterrolebindings/{name}": {
-      "delete": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "delete a ClusterRoleBinding",
-        "operationId": "deleteRbacAuthorizationV1alpha1ClusterRoleBinding",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
-            "in": "query",
-            "name": "gracePeriodSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
-            "in": "query",
-            "name": "orphanDependents",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
-            "in": "query",
-            "name": "propagationPolicy",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
-            }
-          },
-          "202": {
-            "description": "Accepted",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "delete",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "ClusterRoleBinding",
-          "version": "v1alpha1"
-        }
-      },
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "read the specified ClusterRoleBinding",
-        "operationId": "readRbacAuthorizationV1alpha1ClusterRoleBinding",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRoleBinding"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "get",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "ClusterRoleBinding",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "name of the ClusterRoleBinding",
-          "in": "path",
-          "name": "name",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        }
-      ],
-      "patch": {
-        "consumes": [
-          "application/json-patch+json",
-          "application/merge-patch+json",
-          "application/strategic-merge-patch+json",
-          "application/apply-patch+yaml"
-        ],
-        "description": "partially update the specified ClusterRoleBinding",
-        "operationId": "patchRbacAuthorizationV1alpha1ClusterRoleBinding",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Patch"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
-            "in": "query",
-            "name": "force",
-            "type": "boolean",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRoleBinding"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRoleBinding"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "patch",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "ClusterRoleBinding",
-          "version": "v1alpha1"
-        }
-      },
-      "put": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "replace the specified ClusterRoleBinding",
-        "operationId": "replaceRbacAuthorizationV1alpha1ClusterRoleBinding",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRoleBinding"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRoleBinding"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRoleBinding"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "put",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "ClusterRoleBinding",
-          "version": "v1alpha1"
-        }
-      }
-    },
-    "/apis/rbac.authorization.k8s.io/v1alpha1/clusterroles": {
-      "delete": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "delete collection of ClusterRole",
-        "operationId": "deleteRbacAuthorizationV1alpha1CollectionClusterRole",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
-            }
-          },
-          {
-            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-            "in": "query",
-            "name": "continue",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-            "in": "query",
-            "name": "fieldSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
-            "in": "query",
-            "name": "gracePeriodSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-            "in": "query",
-            "name": "labelSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-            "in": "query",
-            "name": "limit",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
-            "in": "query",
-            "name": "orphanDependents",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
-            "in": "query",
-            "name": "propagationPolicy",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersion",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersionMatch",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-            "in": "query",
-            "name": "timeoutSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "deletecollection",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "ClusterRole",
-          "version": "v1alpha1"
-        }
-      },
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "list or watch objects of kind ClusterRole",
-        "operationId": "listRbacAuthorizationV1alpha1ClusterRole",
-        "parameters": [
-          {
-            "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-            "in": "query",
-            "name": "allowWatchBookmarks",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-            "in": "query",
-            "name": "continue",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-            "in": "query",
-            "name": "fieldSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-            "in": "query",
-            "name": "labelSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-            "in": "query",
-            "name": "limit",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersion",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersionMatch",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-            "in": "query",
-            "name": "timeoutSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-            "in": "query",
-            "name": "watch",
-            "type": "boolean",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRoleList"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "list",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "ClusterRole",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        }
-      ],
-      "post": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "create a ClusterRole",
-        "operationId": "createRbacAuthorizationV1alpha1ClusterRole",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRole"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRole"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRole"
-            }
-          },
-          "202": {
-            "description": "Accepted",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRole"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "post",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "ClusterRole",
-          "version": "v1alpha1"
-        }
-      }
-    },
-    "/apis/rbac.authorization.k8s.io/v1alpha1/clusterroles/{name}": {
-      "delete": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "delete a ClusterRole",
-        "operationId": "deleteRbacAuthorizationV1alpha1ClusterRole",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
-            "in": "query",
-            "name": "gracePeriodSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
-            "in": "query",
-            "name": "orphanDependents",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
-            "in": "query",
-            "name": "propagationPolicy",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
-            }
-          },
-          "202": {
-            "description": "Accepted",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "delete",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "ClusterRole",
-          "version": "v1alpha1"
-        }
-      },
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "read the specified ClusterRole",
-        "operationId": "readRbacAuthorizationV1alpha1ClusterRole",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRole"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "get",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "ClusterRole",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "name of the ClusterRole",
-          "in": "path",
-          "name": "name",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        }
-      ],
-      "patch": {
-        "consumes": [
-          "application/json-patch+json",
-          "application/merge-patch+json",
-          "application/strategic-merge-patch+json",
-          "application/apply-patch+yaml"
-        ],
-        "description": "partially update the specified ClusterRole",
-        "operationId": "patchRbacAuthorizationV1alpha1ClusterRole",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Patch"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
-            "in": "query",
-            "name": "force",
-            "type": "boolean",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRole"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRole"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "patch",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "ClusterRole",
-          "version": "v1alpha1"
-        }
-      },
-      "put": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "replace the specified ClusterRole",
-        "operationId": "replaceRbacAuthorizationV1alpha1ClusterRole",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRole"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRole"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.ClusterRole"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "put",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "ClusterRole",
-          "version": "v1alpha1"
-        }
-      }
-    },
-    "/apis/rbac.authorization.k8s.io/v1alpha1/namespaces/{namespace}/rolebindings": {
-      "delete": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "delete collection of RoleBinding",
-        "operationId": "deleteRbacAuthorizationV1alpha1CollectionNamespacedRoleBinding",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
-            }
-          },
-          {
-            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-            "in": "query",
-            "name": "continue",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-            "in": "query",
-            "name": "fieldSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
-            "in": "query",
-            "name": "gracePeriodSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-            "in": "query",
-            "name": "labelSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-            "in": "query",
-            "name": "limit",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
-            "in": "query",
-            "name": "orphanDependents",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
-            "in": "query",
-            "name": "propagationPolicy",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersion",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersionMatch",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-            "in": "query",
-            "name": "timeoutSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "deletecollection",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "RoleBinding",
-          "version": "v1alpha1"
-        }
-      },
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "list or watch objects of kind RoleBinding",
-        "operationId": "listRbacAuthorizationV1alpha1NamespacedRoleBinding",
-        "parameters": [
-          {
-            "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-            "in": "query",
-            "name": "allowWatchBookmarks",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-            "in": "query",
-            "name": "continue",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-            "in": "query",
-            "name": "fieldSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-            "in": "query",
-            "name": "labelSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-            "in": "query",
-            "name": "limit",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersion",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersionMatch",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-            "in": "query",
-            "name": "timeoutSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-            "in": "query",
-            "name": "watch",
-            "type": "boolean",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.RoleBindingList"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "list",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "RoleBinding",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "object name and auth scope, such as for teams and projects",
-          "in": "path",
-          "name": "namespace",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        }
-      ],
-      "post": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "create a RoleBinding",
-        "operationId": "createRbacAuthorizationV1alpha1NamespacedRoleBinding",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.RoleBinding"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.RoleBinding"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.RoleBinding"
-            }
-          },
-          "202": {
-            "description": "Accepted",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.RoleBinding"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "post",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "RoleBinding",
-          "version": "v1alpha1"
-        }
-      }
-    },
-    "/apis/rbac.authorization.k8s.io/v1alpha1/namespaces/{namespace}/rolebindings/{name}": {
-      "delete": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "delete a RoleBinding",
-        "operationId": "deleteRbacAuthorizationV1alpha1NamespacedRoleBinding",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
-            "in": "query",
-            "name": "gracePeriodSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
-            "in": "query",
-            "name": "orphanDependents",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
-            "in": "query",
-            "name": "propagationPolicy",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
-            }
-          },
-          "202": {
-            "description": "Accepted",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "delete",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "RoleBinding",
-          "version": "v1alpha1"
-        }
-      },
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "read the specified RoleBinding",
-        "operationId": "readRbacAuthorizationV1alpha1NamespacedRoleBinding",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.RoleBinding"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "get",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "RoleBinding",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "name of the RoleBinding",
-          "in": "path",
-          "name": "name",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "object name and auth scope, such as for teams and projects",
-          "in": "path",
-          "name": "namespace",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        }
-      ],
-      "patch": {
-        "consumes": [
-          "application/json-patch+json",
-          "application/merge-patch+json",
-          "application/strategic-merge-patch+json",
-          "application/apply-patch+yaml"
-        ],
-        "description": "partially update the specified RoleBinding",
-        "operationId": "patchRbacAuthorizationV1alpha1NamespacedRoleBinding",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Patch"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
-            "in": "query",
-            "name": "force",
-            "type": "boolean",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.RoleBinding"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.RoleBinding"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "patch",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "RoleBinding",
-          "version": "v1alpha1"
-        }
-      },
-      "put": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "replace the specified RoleBinding",
-        "operationId": "replaceRbacAuthorizationV1alpha1NamespacedRoleBinding",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.RoleBinding"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.RoleBinding"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.RoleBinding"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "put",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "RoleBinding",
-          "version": "v1alpha1"
-        }
-      }
-    },
-    "/apis/rbac.authorization.k8s.io/v1alpha1/namespaces/{namespace}/roles": {
-      "delete": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "delete collection of Role",
-        "operationId": "deleteRbacAuthorizationV1alpha1CollectionNamespacedRole",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
-            }
-          },
-          {
-            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-            "in": "query",
-            "name": "continue",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-            "in": "query",
-            "name": "fieldSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
-            "in": "query",
-            "name": "gracePeriodSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-            "in": "query",
-            "name": "labelSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-            "in": "query",
-            "name": "limit",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
-            "in": "query",
-            "name": "orphanDependents",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
-            "in": "query",
-            "name": "propagationPolicy",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersion",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersionMatch",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-            "in": "query",
-            "name": "timeoutSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "deletecollection",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "Role",
-          "version": "v1alpha1"
-        }
-      },
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "list or watch objects of kind Role",
-        "operationId": "listRbacAuthorizationV1alpha1NamespacedRole",
-        "parameters": [
-          {
-            "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-            "in": "query",
-            "name": "allowWatchBookmarks",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-            "in": "query",
-            "name": "continue",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-            "in": "query",
-            "name": "fieldSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-            "in": "query",
-            "name": "labelSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-            "in": "query",
-            "name": "limit",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersion",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersionMatch",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-            "in": "query",
-            "name": "timeoutSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-            "in": "query",
-            "name": "watch",
-            "type": "boolean",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.RoleList"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "list",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "Role",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "object name and auth scope, such as for teams and projects",
-          "in": "path",
-          "name": "namespace",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        }
-      ],
-      "post": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "create a Role",
-        "operationId": "createRbacAuthorizationV1alpha1NamespacedRole",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.Role"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.Role"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.Role"
-            }
-          },
-          "202": {
-            "description": "Accepted",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.Role"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "post",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "Role",
-          "version": "v1alpha1"
-        }
-      }
-    },
-    "/apis/rbac.authorization.k8s.io/v1alpha1/namespaces/{namespace}/roles/{name}": {
-      "delete": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "delete a Role",
-        "operationId": "deleteRbacAuthorizationV1alpha1NamespacedRole",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
-            "in": "query",
-            "name": "gracePeriodSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
-            "in": "query",
-            "name": "orphanDependents",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
-            "in": "query",
-            "name": "propagationPolicy",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
-            }
-          },
-          "202": {
-            "description": "Accepted",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "delete",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "Role",
-          "version": "v1alpha1"
-        }
-      },
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "read the specified Role",
-        "operationId": "readRbacAuthorizationV1alpha1NamespacedRole",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.Role"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "get",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "Role",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "name of the Role",
-          "in": "path",
-          "name": "name",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "object name and auth scope, such as for teams and projects",
-          "in": "path",
-          "name": "namespace",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        }
-      ],
-      "patch": {
-        "consumes": [
-          "application/json-patch+json",
-          "application/merge-patch+json",
-          "application/strategic-merge-patch+json",
-          "application/apply-patch+yaml"
-        ],
-        "description": "partially update the specified Role",
-        "operationId": "patchRbacAuthorizationV1alpha1NamespacedRole",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Patch"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
-            "in": "query",
-            "name": "force",
-            "type": "boolean",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.Role"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.Role"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "patch",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "Role",
-          "version": "v1alpha1"
-        }
-      },
-      "put": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "replace the specified Role",
-        "operationId": "replaceRbacAuthorizationV1alpha1NamespacedRole",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.Role"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.Role"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.Role"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "put",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "Role",
-          "version": "v1alpha1"
-        }
-      }
-    },
-    "/apis/rbac.authorization.k8s.io/v1alpha1/rolebindings": {
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "list or watch objects of kind RoleBinding",
-        "operationId": "listRbacAuthorizationV1alpha1RoleBindingForAllNamespaces",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.RoleBindingList"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "list",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "RoleBinding",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-          "in": "query",
-          "name": "allowWatchBookmarks",
-          "type": "boolean",
-          "uniqueItems": true
-        },
-        {
-          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-          "in": "query",
-          "name": "continue",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-          "in": "query",
-          "name": "fieldSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-          "in": "query",
-          "name": "labelSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-          "in": "query",
-          "name": "limit",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersion",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersionMatch",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-          "in": "query",
-          "name": "timeoutSeconds",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-          "in": "query",
-          "name": "watch",
-          "type": "boolean",
-          "uniqueItems": true
-        }
-      ]
-    },
-    "/apis/rbac.authorization.k8s.io/v1alpha1/roles": {
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "list or watch objects of kind Role",
-        "operationId": "listRbacAuthorizationV1alpha1RoleForAllNamespaces",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.rbac.v1alpha1.RoleList"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "list",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "Role",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-          "in": "query",
-          "name": "allowWatchBookmarks",
-          "type": "boolean",
-          "uniqueItems": true
-        },
-        {
-          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-          "in": "query",
-          "name": "continue",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-          "in": "query",
-          "name": "fieldSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-          "in": "query",
-          "name": "labelSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-          "in": "query",
-          "name": "limit",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersion",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersionMatch",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-          "in": "query",
-          "name": "timeoutSeconds",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-          "in": "query",
-          "name": "watch",
-          "type": "boolean",
-          "uniqueItems": true
-        }
-      ]
-    },
-    "/apis/rbac.authorization.k8s.io/v1alpha1/watch/clusterrolebindings": {
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "watch individual changes to a list of ClusterRoleBinding. deprecated: use the 'watch' parameter with a list operation instead.",
-        "operationId": "watchRbacAuthorizationV1alpha1ClusterRoleBindingList",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "watchlist",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "ClusterRoleBinding",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-          "in": "query",
-          "name": "allowWatchBookmarks",
-          "type": "boolean",
-          "uniqueItems": true
-        },
-        {
-          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-          "in": "query",
-          "name": "continue",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-          "in": "query",
-          "name": "fieldSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-          "in": "query",
-          "name": "labelSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-          "in": "query",
-          "name": "limit",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersion",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersionMatch",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-          "in": "query",
-          "name": "timeoutSeconds",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-          "in": "query",
-          "name": "watch",
-          "type": "boolean",
-          "uniqueItems": true
-        }
-      ]
-    },
-    "/apis/rbac.authorization.k8s.io/v1alpha1/watch/clusterrolebindings/{name}": {
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "watch changes to an object of kind ClusterRoleBinding. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.",
-        "operationId": "watchRbacAuthorizationV1alpha1ClusterRoleBinding",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "watch",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "ClusterRoleBinding",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-          "in": "query",
-          "name": "allowWatchBookmarks",
-          "type": "boolean",
-          "uniqueItems": true
-        },
-        {
-          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-          "in": "query",
-          "name": "continue",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-          "in": "query",
-          "name": "fieldSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-          "in": "query",
-          "name": "labelSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-          "in": "query",
-          "name": "limit",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "name of the ClusterRoleBinding",
-          "in": "path",
-          "name": "name",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersion",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersionMatch",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-          "in": "query",
-          "name": "timeoutSeconds",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-          "in": "query",
-          "name": "watch",
-          "type": "boolean",
-          "uniqueItems": true
-        }
-      ]
-    },
-    "/apis/rbac.authorization.k8s.io/v1alpha1/watch/clusterroles": {
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "watch individual changes to a list of ClusterRole. deprecated: use the 'watch' parameter with a list operation instead.",
-        "operationId": "watchRbacAuthorizationV1alpha1ClusterRoleList",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "watchlist",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "ClusterRole",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-          "in": "query",
-          "name": "allowWatchBookmarks",
-          "type": "boolean",
-          "uniqueItems": true
-        },
-        {
-          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-          "in": "query",
-          "name": "continue",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-          "in": "query",
-          "name": "fieldSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-          "in": "query",
-          "name": "labelSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-          "in": "query",
-          "name": "limit",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersion",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersionMatch",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-          "in": "query",
-          "name": "timeoutSeconds",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-          "in": "query",
-          "name": "watch",
-          "type": "boolean",
-          "uniqueItems": true
-        }
-      ]
-    },
-    "/apis/rbac.authorization.k8s.io/v1alpha1/watch/clusterroles/{name}": {
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "watch changes to an object of kind ClusterRole. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.",
-        "operationId": "watchRbacAuthorizationV1alpha1ClusterRole",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "watch",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "ClusterRole",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-          "in": "query",
-          "name": "allowWatchBookmarks",
-          "type": "boolean",
-          "uniqueItems": true
-        },
-        {
-          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-          "in": "query",
-          "name": "continue",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-          "in": "query",
-          "name": "fieldSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-          "in": "query",
-          "name": "labelSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-          "in": "query",
-          "name": "limit",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "name of the ClusterRole",
-          "in": "path",
-          "name": "name",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersion",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersionMatch",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-          "in": "query",
-          "name": "timeoutSeconds",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-          "in": "query",
-          "name": "watch",
-          "type": "boolean",
-          "uniqueItems": true
-        }
-      ]
-    },
-    "/apis/rbac.authorization.k8s.io/v1alpha1/watch/namespaces/{namespace}/rolebindings": {
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "watch individual changes to a list of RoleBinding. deprecated: use the 'watch' parameter with a list operation instead.",
-        "operationId": "watchRbacAuthorizationV1alpha1NamespacedRoleBindingList",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "watchlist",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "RoleBinding",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-          "in": "query",
-          "name": "allowWatchBookmarks",
-          "type": "boolean",
-          "uniqueItems": true
-        },
-        {
-          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-          "in": "query",
-          "name": "continue",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-          "in": "query",
-          "name": "fieldSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-          "in": "query",
-          "name": "labelSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-          "in": "query",
-          "name": "limit",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "object name and auth scope, such as for teams and projects",
-          "in": "path",
-          "name": "namespace",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersion",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersionMatch",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-          "in": "query",
-          "name": "timeoutSeconds",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-          "in": "query",
-          "name": "watch",
-          "type": "boolean",
-          "uniqueItems": true
-        }
-      ]
-    },
-    "/apis/rbac.authorization.k8s.io/v1alpha1/watch/namespaces/{namespace}/rolebindings/{name}": {
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "watch changes to an object of kind RoleBinding. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.",
-        "operationId": "watchRbacAuthorizationV1alpha1NamespacedRoleBinding",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "watch",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "RoleBinding",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-          "in": "query",
-          "name": "allowWatchBookmarks",
-          "type": "boolean",
-          "uniqueItems": true
-        },
-        {
-          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-          "in": "query",
-          "name": "continue",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-          "in": "query",
-          "name": "fieldSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-          "in": "query",
-          "name": "labelSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-          "in": "query",
-          "name": "limit",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "name of the RoleBinding",
-          "in": "path",
-          "name": "name",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "object name and auth scope, such as for teams and projects",
-          "in": "path",
-          "name": "namespace",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersion",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersionMatch",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-          "in": "query",
-          "name": "timeoutSeconds",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-          "in": "query",
-          "name": "watch",
-          "type": "boolean",
-          "uniqueItems": true
-        }
-      ]
-    },
-    "/apis/rbac.authorization.k8s.io/v1alpha1/watch/namespaces/{namespace}/roles": {
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "watch individual changes to a list of Role. deprecated: use the 'watch' parameter with a list operation instead.",
-        "operationId": "watchRbacAuthorizationV1alpha1NamespacedRoleList",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "watchlist",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "Role",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-          "in": "query",
-          "name": "allowWatchBookmarks",
-          "type": "boolean",
-          "uniqueItems": true
-        },
-        {
-          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-          "in": "query",
-          "name": "continue",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-          "in": "query",
-          "name": "fieldSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-          "in": "query",
-          "name": "labelSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-          "in": "query",
-          "name": "limit",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "object name and auth scope, such as for teams and projects",
-          "in": "path",
-          "name": "namespace",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersion",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersionMatch",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-          "in": "query",
-          "name": "timeoutSeconds",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-          "in": "query",
-          "name": "watch",
-          "type": "boolean",
-          "uniqueItems": true
-        }
-      ]
-    },
-    "/apis/rbac.authorization.k8s.io/v1alpha1/watch/namespaces/{namespace}/roles/{name}": {
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "watch changes to an object of kind Role. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.",
-        "operationId": "watchRbacAuthorizationV1alpha1NamespacedRole",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "watch",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "Role",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-          "in": "query",
-          "name": "allowWatchBookmarks",
-          "type": "boolean",
-          "uniqueItems": true
-        },
-        {
-          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-          "in": "query",
-          "name": "continue",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-          "in": "query",
-          "name": "fieldSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-          "in": "query",
-          "name": "labelSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-          "in": "query",
-          "name": "limit",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "name of the Role",
-          "in": "path",
-          "name": "name",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "object name and auth scope, such as for teams and projects",
-          "in": "path",
-          "name": "namespace",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersion",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersionMatch",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-          "in": "query",
-          "name": "timeoutSeconds",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-          "in": "query",
-          "name": "watch",
-          "type": "boolean",
-          "uniqueItems": true
-        }
-      ]
-    },
-    "/apis/rbac.authorization.k8s.io/v1alpha1/watch/rolebindings": {
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "watch individual changes to a list of RoleBinding. deprecated: use the 'watch' parameter with a list operation instead.",
-        "operationId": "watchRbacAuthorizationV1alpha1RoleBindingListForAllNamespaces",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "watchlist",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "RoleBinding",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-          "in": "query",
-          "name": "allowWatchBookmarks",
-          "type": "boolean",
-          "uniqueItems": true
-        },
-        {
-          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-          "in": "query",
-          "name": "continue",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-          "in": "query",
-          "name": "fieldSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-          "in": "query",
-          "name": "labelSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-          "in": "query",
-          "name": "limit",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersion",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersionMatch",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-          "in": "query",
-          "name": "timeoutSeconds",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-          "in": "query",
-          "name": "watch",
-          "type": "boolean",
-          "uniqueItems": true
-        }
-      ]
-    },
-    "/apis/rbac.authorization.k8s.io/v1alpha1/watch/roles": {
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "watch individual changes to a list of Role. deprecated: use the 'watch' parameter with a list operation instead.",
-        "operationId": "watchRbacAuthorizationV1alpha1RoleListForAllNamespaces",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "rbacAuthorization_v1alpha1"
-        ],
-        "x-kubernetes-action": "watchlist",
-        "x-kubernetes-group-version-kind": {
-          "group": "rbac.authorization.k8s.io",
-          "kind": "Role",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-          "in": "query",
-          "name": "allowWatchBookmarks",
-          "type": "boolean",
-          "uniqueItems": true
-        },
-        {
-          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-          "in": "query",
-          "name": "continue",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-          "in": "query",
-          "name": "fieldSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-          "in": "query",
-          "name": "labelSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-          "in": "query",
-          "name": "limit",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersion",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersionMatch",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-          "in": "query",
-          "name": "timeoutSeconds",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-          "in": "query",
-          "name": "watch",
-          "type": "boolean",
-          "uniqueItems": true
-        }
-      ]
-    },
     "/apis/scheduling.k8s.io/": {
       "get": {
         "consumes": [
@@ -82290,6 +83622,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -82497,6 +83836,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -82568,6 +83914,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -82836,846 +84189,6 @@
         }
       ]
     },
-    "/apis/scheduling.k8s.io/v1alpha1/": {
-      "get": {
-        "consumes": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "description": "get available resources",
-        "operationId": "getSchedulingV1alpha1APIResources",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "scheduling_v1alpha1"
-        ]
-      }
-    },
-    "/apis/scheduling.k8s.io/v1alpha1/priorityclasses": {
-      "delete": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "delete collection of PriorityClass",
-        "operationId": "deleteSchedulingV1alpha1CollectionPriorityClass",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
-            }
-          },
-          {
-            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-            "in": "query",
-            "name": "continue",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-            "in": "query",
-            "name": "fieldSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
-            "in": "query",
-            "name": "gracePeriodSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-            "in": "query",
-            "name": "labelSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-            "in": "query",
-            "name": "limit",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
-            "in": "query",
-            "name": "orphanDependents",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
-            "in": "query",
-            "name": "propagationPolicy",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersion",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersionMatch",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-            "in": "query",
-            "name": "timeoutSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "scheduling_v1alpha1"
-        ],
-        "x-kubernetes-action": "deletecollection",
-        "x-kubernetes-group-version-kind": {
-          "group": "scheduling.k8s.io",
-          "kind": "PriorityClass",
-          "version": "v1alpha1"
-        }
-      },
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "list or watch objects of kind PriorityClass",
-        "operationId": "listSchedulingV1alpha1PriorityClass",
-        "parameters": [
-          {
-            "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-            "in": "query",
-            "name": "allowWatchBookmarks",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-            "in": "query",
-            "name": "continue",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-            "in": "query",
-            "name": "fieldSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-            "in": "query",
-            "name": "labelSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-            "in": "query",
-            "name": "limit",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersion",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersionMatch",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-            "in": "query",
-            "name": "timeoutSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-            "in": "query",
-            "name": "watch",
-            "type": "boolean",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.scheduling.v1alpha1.PriorityClassList"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "scheduling_v1alpha1"
-        ],
-        "x-kubernetes-action": "list",
-        "x-kubernetes-group-version-kind": {
-          "group": "scheduling.k8s.io",
-          "kind": "PriorityClass",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        }
-      ],
-      "post": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "create a PriorityClass",
-        "operationId": "createSchedulingV1alpha1PriorityClass",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.scheduling.v1alpha1.PriorityClass"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.scheduling.v1alpha1.PriorityClass"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.scheduling.v1alpha1.PriorityClass"
-            }
-          },
-          "202": {
-            "description": "Accepted",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.scheduling.v1alpha1.PriorityClass"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "scheduling_v1alpha1"
-        ],
-        "x-kubernetes-action": "post",
-        "x-kubernetes-group-version-kind": {
-          "group": "scheduling.k8s.io",
-          "kind": "PriorityClass",
-          "version": "v1alpha1"
-        }
-      }
-    },
-    "/apis/scheduling.k8s.io/v1alpha1/priorityclasses/{name}": {
-      "delete": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "delete a PriorityClass",
-        "operationId": "deleteSchedulingV1alpha1PriorityClass",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
-            "in": "query",
-            "name": "gracePeriodSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
-            "in": "query",
-            "name": "orphanDependents",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
-            "in": "query",
-            "name": "propagationPolicy",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
-            }
-          },
-          "202": {
-            "description": "Accepted",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "scheduling_v1alpha1"
-        ],
-        "x-kubernetes-action": "delete",
-        "x-kubernetes-group-version-kind": {
-          "group": "scheduling.k8s.io",
-          "kind": "PriorityClass",
-          "version": "v1alpha1"
-        }
-      },
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "read the specified PriorityClass",
-        "operationId": "readSchedulingV1alpha1PriorityClass",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.scheduling.v1alpha1.PriorityClass"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "scheduling_v1alpha1"
-        ],
-        "x-kubernetes-action": "get",
-        "x-kubernetes-group-version-kind": {
-          "group": "scheduling.k8s.io",
-          "kind": "PriorityClass",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "name of the PriorityClass",
-          "in": "path",
-          "name": "name",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        }
-      ],
-      "patch": {
-        "consumes": [
-          "application/json-patch+json",
-          "application/merge-patch+json",
-          "application/strategic-merge-patch+json",
-          "application/apply-patch+yaml"
-        ],
-        "description": "partially update the specified PriorityClass",
-        "operationId": "patchSchedulingV1alpha1PriorityClass",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Patch"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
-            "in": "query",
-            "name": "force",
-            "type": "boolean",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.scheduling.v1alpha1.PriorityClass"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.scheduling.v1alpha1.PriorityClass"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "scheduling_v1alpha1"
-        ],
-        "x-kubernetes-action": "patch",
-        "x-kubernetes-group-version-kind": {
-          "group": "scheduling.k8s.io",
-          "kind": "PriorityClass",
-          "version": "v1alpha1"
-        }
-      },
-      "put": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "replace the specified PriorityClass",
-        "operationId": "replaceSchedulingV1alpha1PriorityClass",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.scheduling.v1alpha1.PriorityClass"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.scheduling.v1alpha1.PriorityClass"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.scheduling.v1alpha1.PriorityClass"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "scheduling_v1alpha1"
-        ],
-        "x-kubernetes-action": "put",
-        "x-kubernetes-group-version-kind": {
-          "group": "scheduling.k8s.io",
-          "kind": "PriorityClass",
-          "version": "v1alpha1"
-        }
-      }
-    },
-    "/apis/scheduling.k8s.io/v1alpha1/watch/priorityclasses": {
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "watch individual changes to a list of PriorityClass. deprecated: use the 'watch' parameter with a list operation instead.",
-        "operationId": "watchSchedulingV1alpha1PriorityClassList",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "scheduling_v1alpha1"
-        ],
-        "x-kubernetes-action": "watchlist",
-        "x-kubernetes-group-version-kind": {
-          "group": "scheduling.k8s.io",
-          "kind": "PriorityClass",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-          "in": "query",
-          "name": "allowWatchBookmarks",
-          "type": "boolean",
-          "uniqueItems": true
-        },
-        {
-          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-          "in": "query",
-          "name": "continue",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-          "in": "query",
-          "name": "fieldSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-          "in": "query",
-          "name": "labelSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-          "in": "query",
-          "name": "limit",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersion",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersionMatch",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-          "in": "query",
-          "name": "timeoutSeconds",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-          "in": "query",
-          "name": "watch",
-          "type": "boolean",
-          "uniqueItems": true
-        }
-      ]
-    },
-    "/apis/scheduling.k8s.io/v1alpha1/watch/priorityclasses/{name}": {
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "watch changes to an object of kind PriorityClass. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.",
-        "operationId": "watchSchedulingV1alpha1PriorityClass",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "scheduling_v1alpha1"
-        ],
-        "x-kubernetes-action": "watch",
-        "x-kubernetes-group-version-kind": {
-          "group": "scheduling.k8s.io",
-          "kind": "PriorityClass",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-          "in": "query",
-          "name": "allowWatchBookmarks",
-          "type": "boolean",
-          "uniqueItems": true
-        },
-        {
-          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-          "in": "query",
-          "name": "continue",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-          "in": "query",
-          "name": "fieldSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-          "in": "query",
-          "name": "labelSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-          "in": "query",
-          "name": "limit",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "name of the PriorityClass",
-          "in": "path",
-          "name": "name",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersion",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersionMatch",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-          "in": "query",
-          "name": "timeoutSeconds",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-          "in": "query",
-          "name": "watch",
-          "type": "boolean",
-          "uniqueItems": true
-        }
-      ]
-    },
     "/apis/storage.k8s.io/": {
       "get": {
         "consumes": [
@@ -84003,6 +84516,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -84210,6 +84730,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -84281,6 +84808,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -84580,6 +85114,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -84787,6 +85328,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -84858,6 +85406,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -84896,6 +85451,731 @@
         }
       }
     },
+    "/apis/storage.k8s.io/v1/csistoragecapacities": {
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "list or watch objects of kind CSIStorageCapacity",
+        "operationId": "listStorageV1CSIStorageCapacityForAllNamespaces",
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf",
+          "application/json;stream=watch",
+          "application/vnd.kubernetes.protobuf;stream=watch"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.storage.v1.CSIStorageCapacityList"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "storage_v1"
+        ],
+        "x-kubernetes-action": "list",
+        "x-kubernetes-group-version-kind": {
+          "group": "storage.k8s.io",
+          "kind": "CSIStorageCapacity",
+          "version": "v1"
+        }
+      },
+      "parameters": [
+        {
+          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
+          "in": "query",
+          "name": "allowWatchBookmarks",
+          "type": "boolean",
+          "uniqueItems": true
+        },
+        {
+          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
+          "in": "query",
+          "name": "continue",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
+          "in": "query",
+          "name": "fieldSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
+          "in": "query",
+          "name": "labelSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
+          "in": "query",
+          "name": "limit",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersion",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersionMatch",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
+          "in": "query",
+          "name": "timeoutSeconds",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
+          "in": "query",
+          "name": "watch",
+          "type": "boolean",
+          "uniqueItems": true
+        }
+      ]
+    },
+    "/apis/storage.k8s.io/v1/namespaces/{namespace}/csistoragecapacities": {
+      "delete": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "delete collection of CSIStorageCapacity",
+        "operationId": "deleteStorageV1CollectionNamespacedCSIStorageCapacity",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
+            }
+          },
+          {
+            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
+            "in": "query",
+            "name": "continue",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
+            "in": "query",
+            "name": "fieldSelector",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
+            "in": "query",
+            "name": "gracePeriodSeconds",
+            "type": "integer",
+            "uniqueItems": true
+          },
+          {
+            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
+            "in": "query",
+            "name": "labelSelector",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
+            "in": "query",
+            "name": "limit",
+            "type": "integer",
+            "uniqueItems": true
+          },
+          {
+            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
+            "in": "query",
+            "name": "orphanDependents",
+            "type": "boolean",
+            "uniqueItems": true
+          },
+          {
+            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
+            "in": "query",
+            "name": "propagationPolicy",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+            "in": "query",
+            "name": "resourceVersion",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+            "in": "query",
+            "name": "resourceVersionMatch",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
+            "in": "query",
+            "name": "timeoutSeconds",
+            "type": "integer",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "storage_v1"
+        ],
+        "x-kubernetes-action": "deletecollection",
+        "x-kubernetes-group-version-kind": {
+          "group": "storage.k8s.io",
+          "kind": "CSIStorageCapacity",
+          "version": "v1"
+        }
+      },
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "list or watch objects of kind CSIStorageCapacity",
+        "operationId": "listStorageV1NamespacedCSIStorageCapacity",
+        "parameters": [
+          {
+            "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
+            "in": "query",
+            "name": "allowWatchBookmarks",
+            "type": "boolean",
+            "uniqueItems": true
+          },
+          {
+            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
+            "in": "query",
+            "name": "continue",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
+            "in": "query",
+            "name": "fieldSelector",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
+            "in": "query",
+            "name": "labelSelector",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
+            "in": "query",
+            "name": "limit",
+            "type": "integer",
+            "uniqueItems": true
+          },
+          {
+            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+            "in": "query",
+            "name": "resourceVersion",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+            "in": "query",
+            "name": "resourceVersionMatch",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
+            "in": "query",
+            "name": "timeoutSeconds",
+            "type": "integer",
+            "uniqueItems": true
+          },
+          {
+            "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
+            "in": "query",
+            "name": "watch",
+            "type": "boolean",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf",
+          "application/json;stream=watch",
+          "application/vnd.kubernetes.protobuf;stream=watch"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.storage.v1.CSIStorageCapacityList"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "storage_v1"
+        ],
+        "x-kubernetes-action": "list",
+        "x-kubernetes-group-version-kind": {
+          "group": "storage.k8s.io",
+          "kind": "CSIStorageCapacity",
+          "version": "v1"
+        }
+      },
+      "parameters": [
+        {
+          "description": "object name and auth scope, such as for teams and projects",
+          "in": "path",
+          "name": "namespace",
+          "required": true,
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        }
+      ],
+      "post": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "create a CSIStorageCapacity",
+        "operationId": "createStorageV1NamespacedCSIStorageCapacity",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "required": true,
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.storage.v1.CSIStorageCapacity"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
+            "in": "query",
+            "name": "fieldManager",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.storage.v1.CSIStorageCapacity"
+            }
+          },
+          "201": {
+            "description": "Created",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.storage.v1.CSIStorageCapacity"
+            }
+          },
+          "202": {
+            "description": "Accepted",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.storage.v1.CSIStorageCapacity"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "storage_v1"
+        ],
+        "x-kubernetes-action": "post",
+        "x-kubernetes-group-version-kind": {
+          "group": "storage.k8s.io",
+          "kind": "CSIStorageCapacity",
+          "version": "v1"
+        }
+      }
+    },
+    "/apis/storage.k8s.io/v1/namespaces/{namespace}/csistoragecapacities/{name}": {
+      "delete": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "delete a CSIStorageCapacity",
+        "operationId": "deleteStorageV1NamespacedCSIStorageCapacity",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
+            "in": "query",
+            "name": "gracePeriodSeconds",
+            "type": "integer",
+            "uniqueItems": true
+          },
+          {
+            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
+            "in": "query",
+            "name": "orphanDependents",
+            "type": "boolean",
+            "uniqueItems": true
+          },
+          {
+            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
+            "in": "query",
+            "name": "propagationPolicy",
+            "type": "string",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
+            }
+          },
+          "202": {
+            "description": "Accepted",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "storage_v1"
+        ],
+        "x-kubernetes-action": "delete",
+        "x-kubernetes-group-version-kind": {
+          "group": "storage.k8s.io",
+          "kind": "CSIStorageCapacity",
+          "version": "v1"
+        }
+      },
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "read the specified CSIStorageCapacity",
+        "operationId": "readStorageV1NamespacedCSIStorageCapacity",
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.storage.v1.CSIStorageCapacity"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "storage_v1"
+        ],
+        "x-kubernetes-action": "get",
+        "x-kubernetes-group-version-kind": {
+          "group": "storage.k8s.io",
+          "kind": "CSIStorageCapacity",
+          "version": "v1"
+        }
+      },
+      "parameters": [
+        {
+          "description": "name of the CSIStorageCapacity",
+          "in": "path",
+          "name": "name",
+          "required": true,
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "object name and auth scope, such as for teams and projects",
+          "in": "path",
+          "name": "namespace",
+          "required": true,
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        }
+      ],
+      "patch": {
+        "consumes": [
+          "application/json-patch+json",
+          "application/merge-patch+json",
+          "application/strategic-merge-patch+json",
+          "application/apply-patch+yaml"
+        ],
+        "description": "partially update the specified CSIStorageCapacity",
+        "operationId": "patchStorageV1NamespacedCSIStorageCapacity",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "required": true,
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Patch"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).",
+            "in": "query",
+            "name": "fieldManager",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
+            "in": "query",
+            "name": "force",
+            "type": "boolean",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.storage.v1.CSIStorageCapacity"
+            }
+          },
+          "201": {
+            "description": "Created",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.storage.v1.CSIStorageCapacity"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "storage_v1"
+        ],
+        "x-kubernetes-action": "patch",
+        "x-kubernetes-group-version-kind": {
+          "group": "storage.k8s.io",
+          "kind": "CSIStorageCapacity",
+          "version": "v1"
+        }
+      },
+      "put": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "replace the specified CSIStorageCapacity",
+        "operationId": "replaceStorageV1NamespacedCSIStorageCapacity",
+        "parameters": [
+          {
+            "in": "body",
+            "name": "body",
+            "required": true,
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.storage.v1.CSIStorageCapacity"
+            }
+          },
+          {
+            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
+            "in": "query",
+            "name": "dryRun",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
+            "in": "query",
+            "name": "fieldManager",
+            "type": "string",
+            "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          }
+        ],
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.storage.v1.CSIStorageCapacity"
+            }
+          },
+          "201": {
+            "description": "Created",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.api.storage.v1.CSIStorageCapacity"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "storage_v1"
+        ],
+        "x-kubernetes-action": "put",
+        "x-kubernetes-group-version-kind": {
+          "group": "storage.k8s.io",
+          "kind": "CSIStorageCapacity",
+          "version": "v1"
+        }
+      }
+    },
     "/apis/storage.k8s.io/v1/storageclasses": {
       "delete": {
         "consumes": [
@@ -85157,6 +86437,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -85364,6 +86651,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -85435,6 +86729,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -85734,6 +87035,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -85941,6 +87249,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -86012,6 +87327,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -86135,6 +87457,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -86206,6 +87535,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -86704,6 +88040,363 @@
         }
       ]
     },
+    "/apis/storage.k8s.io/v1/watch/csistoragecapacities": {
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "watch individual changes to a list of CSIStorageCapacity. deprecated: use the 'watch' parameter with a list operation instead.",
+        "operationId": "watchStorageV1CSIStorageCapacityListForAllNamespaces",
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf",
+          "application/json;stream=watch",
+          "application/vnd.kubernetes.protobuf;stream=watch"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "storage_v1"
+        ],
+        "x-kubernetes-action": "watchlist",
+        "x-kubernetes-group-version-kind": {
+          "group": "storage.k8s.io",
+          "kind": "CSIStorageCapacity",
+          "version": "v1"
+        }
+      },
+      "parameters": [
+        {
+          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
+          "in": "query",
+          "name": "allowWatchBookmarks",
+          "type": "boolean",
+          "uniqueItems": true
+        },
+        {
+          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
+          "in": "query",
+          "name": "continue",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
+          "in": "query",
+          "name": "fieldSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
+          "in": "query",
+          "name": "labelSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
+          "in": "query",
+          "name": "limit",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersion",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersionMatch",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
+          "in": "query",
+          "name": "timeoutSeconds",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
+          "in": "query",
+          "name": "watch",
+          "type": "boolean",
+          "uniqueItems": true
+        }
+      ]
+    },
+    "/apis/storage.k8s.io/v1/watch/namespaces/{namespace}/csistoragecapacities": {
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "watch individual changes to a list of CSIStorageCapacity. deprecated: use the 'watch' parameter with a list operation instead.",
+        "operationId": "watchStorageV1NamespacedCSIStorageCapacityList",
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf",
+          "application/json;stream=watch",
+          "application/vnd.kubernetes.protobuf;stream=watch"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "storage_v1"
+        ],
+        "x-kubernetes-action": "watchlist",
+        "x-kubernetes-group-version-kind": {
+          "group": "storage.k8s.io",
+          "kind": "CSIStorageCapacity",
+          "version": "v1"
+        }
+      },
+      "parameters": [
+        {
+          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
+          "in": "query",
+          "name": "allowWatchBookmarks",
+          "type": "boolean",
+          "uniqueItems": true
+        },
+        {
+          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
+          "in": "query",
+          "name": "continue",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
+          "in": "query",
+          "name": "fieldSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
+          "in": "query",
+          "name": "labelSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
+          "in": "query",
+          "name": "limit",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "object name and auth scope, such as for teams and projects",
+          "in": "path",
+          "name": "namespace",
+          "required": true,
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersion",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersionMatch",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
+          "in": "query",
+          "name": "timeoutSeconds",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
+          "in": "query",
+          "name": "watch",
+          "type": "boolean",
+          "uniqueItems": true
+        }
+      ]
+    },
+    "/apis/storage.k8s.io/v1/watch/namespaces/{namespace}/csistoragecapacities/{name}": {
+      "get": {
+        "consumes": [
+          "*/*"
+        ],
+        "description": "watch changes to an object of kind CSIStorageCapacity. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.",
+        "operationId": "watchStorageV1NamespacedCSIStorageCapacity",
+        "produces": [
+          "application/json",
+          "application/yaml",
+          "application/vnd.kubernetes.protobuf",
+          "application/json;stream=watch",
+          "application/vnd.kubernetes.protobuf;stream=watch"
+        ],
+        "responses": {
+          "200": {
+            "description": "OK",
+            "schema": {
+              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
+            }
+          },
+          "401": {
+            "description": "Unauthorized"
+          }
+        },
+        "schemes": [
+          "https"
+        ],
+        "tags": [
+          "storage_v1"
+        ],
+        "x-kubernetes-action": "watch",
+        "x-kubernetes-group-version-kind": {
+          "group": "storage.k8s.io",
+          "kind": "CSIStorageCapacity",
+          "version": "v1"
+        }
+      },
+      "parameters": [
+        {
+          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
+          "in": "query",
+          "name": "allowWatchBookmarks",
+          "type": "boolean",
+          "uniqueItems": true
+        },
+        {
+          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
+          "in": "query",
+          "name": "continue",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
+          "in": "query",
+          "name": "fieldSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
+          "in": "query",
+          "name": "labelSelector",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
+          "in": "query",
+          "name": "limit",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "name of the CSIStorageCapacity",
+          "in": "path",
+          "name": "name",
+          "required": true,
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "object name and auth scope, such as for teams and projects",
+          "in": "path",
+          "name": "namespace",
+          "required": true,
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "If 'true', then the output is pretty printed.",
+          "in": "query",
+          "name": "pretty",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersion",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
+          "in": "query",
+          "name": "resourceVersionMatch",
+          "type": "string",
+          "uniqueItems": true
+        },
+        {
+          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
+          "in": "query",
+          "name": "timeoutSeconds",
+          "type": "integer",
+          "uniqueItems": true
+        },
+        {
+          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
+          "in": "query",
+          "name": "watch",
+          "type": "boolean",
+          "uniqueItems": true
+        }
+      ]
+    },
     "/apis/storage.k8s.io/v1/watch/storageclasses": {
       "get": {
         "consumes": [
@@ -87164,1907 +88857,6 @@
         }
       ]
     },
-    "/apis/storage.k8s.io/v1alpha1/": {
-      "get": {
-        "consumes": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "description": "get available resources",
-        "operationId": "getStorageV1alpha1APIResources",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "storage_v1alpha1"
-        ]
-      }
-    },
-    "/apis/storage.k8s.io/v1alpha1/csistoragecapacities": {
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "list or watch objects of kind CSIStorageCapacity",
-        "operationId": "listStorageV1alpha1CSIStorageCapacityForAllNamespaces",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.CSIStorageCapacityList"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "storage_v1alpha1"
-        ],
-        "x-kubernetes-action": "list",
-        "x-kubernetes-group-version-kind": {
-          "group": "storage.k8s.io",
-          "kind": "CSIStorageCapacity",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-          "in": "query",
-          "name": "allowWatchBookmarks",
-          "type": "boolean",
-          "uniqueItems": true
-        },
-        {
-          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-          "in": "query",
-          "name": "continue",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-          "in": "query",
-          "name": "fieldSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-          "in": "query",
-          "name": "labelSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-          "in": "query",
-          "name": "limit",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersion",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersionMatch",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-          "in": "query",
-          "name": "timeoutSeconds",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-          "in": "query",
-          "name": "watch",
-          "type": "boolean",
-          "uniqueItems": true
-        }
-      ]
-    },
-    "/apis/storage.k8s.io/v1alpha1/namespaces/{namespace}/csistoragecapacities": {
-      "delete": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "delete collection of CSIStorageCapacity",
-        "operationId": "deleteStorageV1alpha1CollectionNamespacedCSIStorageCapacity",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
-            }
-          },
-          {
-            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-            "in": "query",
-            "name": "continue",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-            "in": "query",
-            "name": "fieldSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
-            "in": "query",
-            "name": "gracePeriodSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-            "in": "query",
-            "name": "labelSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-            "in": "query",
-            "name": "limit",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
-            "in": "query",
-            "name": "orphanDependents",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
-            "in": "query",
-            "name": "propagationPolicy",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersion",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersionMatch",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-            "in": "query",
-            "name": "timeoutSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "storage_v1alpha1"
-        ],
-        "x-kubernetes-action": "deletecollection",
-        "x-kubernetes-group-version-kind": {
-          "group": "storage.k8s.io",
-          "kind": "CSIStorageCapacity",
-          "version": "v1alpha1"
-        }
-      },
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "list or watch objects of kind CSIStorageCapacity",
-        "operationId": "listStorageV1alpha1NamespacedCSIStorageCapacity",
-        "parameters": [
-          {
-            "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-            "in": "query",
-            "name": "allowWatchBookmarks",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-            "in": "query",
-            "name": "continue",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-            "in": "query",
-            "name": "fieldSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-            "in": "query",
-            "name": "labelSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-            "in": "query",
-            "name": "limit",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersion",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersionMatch",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-            "in": "query",
-            "name": "timeoutSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-            "in": "query",
-            "name": "watch",
-            "type": "boolean",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.CSIStorageCapacityList"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "storage_v1alpha1"
-        ],
-        "x-kubernetes-action": "list",
-        "x-kubernetes-group-version-kind": {
-          "group": "storage.k8s.io",
-          "kind": "CSIStorageCapacity",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "object name and auth scope, such as for teams and projects",
-          "in": "path",
-          "name": "namespace",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        }
-      ],
-      "post": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "create a CSIStorageCapacity",
-        "operationId": "createStorageV1alpha1NamespacedCSIStorageCapacity",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.CSIStorageCapacity"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.CSIStorageCapacity"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.CSIStorageCapacity"
-            }
-          },
-          "202": {
-            "description": "Accepted",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.CSIStorageCapacity"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "storage_v1alpha1"
-        ],
-        "x-kubernetes-action": "post",
-        "x-kubernetes-group-version-kind": {
-          "group": "storage.k8s.io",
-          "kind": "CSIStorageCapacity",
-          "version": "v1alpha1"
-        }
-      }
-    },
-    "/apis/storage.k8s.io/v1alpha1/namespaces/{namespace}/csistoragecapacities/{name}": {
-      "delete": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "delete a CSIStorageCapacity",
-        "operationId": "deleteStorageV1alpha1NamespacedCSIStorageCapacity",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
-            "in": "query",
-            "name": "gracePeriodSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
-            "in": "query",
-            "name": "orphanDependents",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
-            "in": "query",
-            "name": "propagationPolicy",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
-            }
-          },
-          "202": {
-            "description": "Accepted",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "storage_v1alpha1"
-        ],
-        "x-kubernetes-action": "delete",
-        "x-kubernetes-group-version-kind": {
-          "group": "storage.k8s.io",
-          "kind": "CSIStorageCapacity",
-          "version": "v1alpha1"
-        }
-      },
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "read the specified CSIStorageCapacity",
-        "operationId": "readStorageV1alpha1NamespacedCSIStorageCapacity",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.CSIStorageCapacity"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "storage_v1alpha1"
-        ],
-        "x-kubernetes-action": "get",
-        "x-kubernetes-group-version-kind": {
-          "group": "storage.k8s.io",
-          "kind": "CSIStorageCapacity",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "name of the CSIStorageCapacity",
-          "in": "path",
-          "name": "name",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "object name and auth scope, such as for teams and projects",
-          "in": "path",
-          "name": "namespace",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        }
-      ],
-      "patch": {
-        "consumes": [
-          "application/json-patch+json",
-          "application/merge-patch+json",
-          "application/strategic-merge-patch+json",
-          "application/apply-patch+yaml"
-        ],
-        "description": "partially update the specified CSIStorageCapacity",
-        "operationId": "patchStorageV1alpha1NamespacedCSIStorageCapacity",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Patch"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
-            "in": "query",
-            "name": "force",
-            "type": "boolean",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.CSIStorageCapacity"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.CSIStorageCapacity"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "storage_v1alpha1"
-        ],
-        "x-kubernetes-action": "patch",
-        "x-kubernetes-group-version-kind": {
-          "group": "storage.k8s.io",
-          "kind": "CSIStorageCapacity",
-          "version": "v1alpha1"
-        }
-      },
-      "put": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "replace the specified CSIStorageCapacity",
-        "operationId": "replaceStorageV1alpha1NamespacedCSIStorageCapacity",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.CSIStorageCapacity"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.CSIStorageCapacity"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.CSIStorageCapacity"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "storage_v1alpha1"
-        ],
-        "x-kubernetes-action": "put",
-        "x-kubernetes-group-version-kind": {
-          "group": "storage.k8s.io",
-          "kind": "CSIStorageCapacity",
-          "version": "v1alpha1"
-        }
-      }
-    },
-    "/apis/storage.k8s.io/v1alpha1/volumeattachments": {
-      "delete": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "delete collection of VolumeAttachment",
-        "operationId": "deleteStorageV1alpha1CollectionVolumeAttachment",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
-            }
-          },
-          {
-            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-            "in": "query",
-            "name": "continue",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-            "in": "query",
-            "name": "fieldSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
-            "in": "query",
-            "name": "gracePeriodSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-            "in": "query",
-            "name": "labelSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-            "in": "query",
-            "name": "limit",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
-            "in": "query",
-            "name": "orphanDependents",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
-            "in": "query",
-            "name": "propagationPolicy",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersion",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersionMatch",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-            "in": "query",
-            "name": "timeoutSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "storage_v1alpha1"
-        ],
-        "x-kubernetes-action": "deletecollection",
-        "x-kubernetes-group-version-kind": {
-          "group": "storage.k8s.io",
-          "kind": "VolumeAttachment",
-          "version": "v1alpha1"
-        }
-      },
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "list or watch objects of kind VolumeAttachment",
-        "operationId": "listStorageV1alpha1VolumeAttachment",
-        "parameters": [
-          {
-            "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-            "in": "query",
-            "name": "allowWatchBookmarks",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-            "in": "query",
-            "name": "continue",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-            "in": "query",
-            "name": "fieldSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-            "in": "query",
-            "name": "labelSelector",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-            "in": "query",
-            "name": "limit",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersion",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-            "in": "query",
-            "name": "resourceVersionMatch",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-            "in": "query",
-            "name": "timeoutSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-            "in": "query",
-            "name": "watch",
-            "type": "boolean",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.VolumeAttachmentList"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "storage_v1alpha1"
-        ],
-        "x-kubernetes-action": "list",
-        "x-kubernetes-group-version-kind": {
-          "group": "storage.k8s.io",
-          "kind": "VolumeAttachment",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        }
-      ],
-      "post": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "create a VolumeAttachment",
-        "operationId": "createStorageV1alpha1VolumeAttachment",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.VolumeAttachment"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.VolumeAttachment"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.VolumeAttachment"
-            }
-          },
-          "202": {
-            "description": "Accepted",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.VolumeAttachment"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "storage_v1alpha1"
-        ],
-        "x-kubernetes-action": "post",
-        "x-kubernetes-group-version-kind": {
-          "group": "storage.k8s.io",
-          "kind": "VolumeAttachment",
-          "version": "v1alpha1"
-        }
-      }
-    },
-    "/apis/storage.k8s.io/v1alpha1/volumeattachments/{name}": {
-      "delete": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "delete a VolumeAttachment",
-        "operationId": "deleteStorageV1alpha1VolumeAttachment",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.",
-            "in": "query",
-            "name": "gracePeriodSeconds",
-            "type": "integer",
-            "uniqueItems": true
-          },
-          {
-            "description": "Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.",
-            "in": "query",
-            "name": "orphanDependents",
-            "type": "boolean",
-            "uniqueItems": true
-          },
-          {
-            "description": "Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.",
-            "in": "query",
-            "name": "propagationPolicy",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.VolumeAttachment"
-            }
-          },
-          "202": {
-            "description": "Accepted",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.VolumeAttachment"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "storage_v1alpha1"
-        ],
-        "x-kubernetes-action": "delete",
-        "x-kubernetes-group-version-kind": {
-          "group": "storage.k8s.io",
-          "kind": "VolumeAttachment",
-          "version": "v1alpha1"
-        }
-      },
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "read the specified VolumeAttachment",
-        "operationId": "readStorageV1alpha1VolumeAttachment",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.VolumeAttachment"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "storage_v1alpha1"
-        ],
-        "x-kubernetes-action": "get",
-        "x-kubernetes-group-version-kind": {
-          "group": "storage.k8s.io",
-          "kind": "VolumeAttachment",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "name of the VolumeAttachment",
-          "in": "path",
-          "name": "name",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        }
-      ],
-      "patch": {
-        "consumes": [
-          "application/json-patch+json",
-          "application/merge-patch+json",
-          "application/strategic-merge-patch+json",
-          "application/apply-patch+yaml"
-        ],
-        "description": "partially update the specified VolumeAttachment",
-        "operationId": "patchStorageV1alpha1VolumeAttachment",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Patch"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
-            "in": "query",
-            "name": "force",
-            "type": "boolean",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.VolumeAttachment"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.VolumeAttachment"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "storage_v1alpha1"
-        ],
-        "x-kubernetes-action": "patch",
-        "x-kubernetes-group-version-kind": {
-          "group": "storage.k8s.io",
-          "kind": "VolumeAttachment",
-          "version": "v1alpha1"
-        }
-      },
-      "put": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "replace the specified VolumeAttachment",
-        "operationId": "replaceStorageV1alpha1VolumeAttachment",
-        "parameters": [
-          {
-            "in": "body",
-            "name": "body",
-            "required": true,
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.VolumeAttachment"
-            }
-          },
-          {
-            "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed",
-            "in": "query",
-            "name": "dryRun",
-            "type": "string",
-            "uniqueItems": true
-          },
-          {
-            "description": "fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.",
-            "in": "query",
-            "name": "fieldManager",
-            "type": "string",
-            "uniqueItems": true
-          }
-        ],
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.VolumeAttachment"
-            }
-          },
-          "201": {
-            "description": "Created",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.api.storage.v1alpha1.VolumeAttachment"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "storage_v1alpha1"
-        ],
-        "x-kubernetes-action": "put",
-        "x-kubernetes-group-version-kind": {
-          "group": "storage.k8s.io",
-          "kind": "VolumeAttachment",
-          "version": "v1alpha1"
-        }
-      }
-    },
-    "/apis/storage.k8s.io/v1alpha1/watch/csistoragecapacities": {
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "watch individual changes to a list of CSIStorageCapacity. deprecated: use the 'watch' parameter with a list operation instead.",
-        "operationId": "watchStorageV1alpha1CSIStorageCapacityListForAllNamespaces",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "storage_v1alpha1"
-        ],
-        "x-kubernetes-action": "watchlist",
-        "x-kubernetes-group-version-kind": {
-          "group": "storage.k8s.io",
-          "kind": "CSIStorageCapacity",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-          "in": "query",
-          "name": "allowWatchBookmarks",
-          "type": "boolean",
-          "uniqueItems": true
-        },
-        {
-          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-          "in": "query",
-          "name": "continue",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-          "in": "query",
-          "name": "fieldSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-          "in": "query",
-          "name": "labelSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-          "in": "query",
-          "name": "limit",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersion",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersionMatch",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-          "in": "query",
-          "name": "timeoutSeconds",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-          "in": "query",
-          "name": "watch",
-          "type": "boolean",
-          "uniqueItems": true
-        }
-      ]
-    },
-    "/apis/storage.k8s.io/v1alpha1/watch/namespaces/{namespace}/csistoragecapacities": {
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "watch individual changes to a list of CSIStorageCapacity. deprecated: use the 'watch' parameter with a list operation instead.",
-        "operationId": "watchStorageV1alpha1NamespacedCSIStorageCapacityList",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "storage_v1alpha1"
-        ],
-        "x-kubernetes-action": "watchlist",
-        "x-kubernetes-group-version-kind": {
-          "group": "storage.k8s.io",
-          "kind": "CSIStorageCapacity",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-          "in": "query",
-          "name": "allowWatchBookmarks",
-          "type": "boolean",
-          "uniqueItems": true
-        },
-        {
-          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-          "in": "query",
-          "name": "continue",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-          "in": "query",
-          "name": "fieldSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-          "in": "query",
-          "name": "labelSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-          "in": "query",
-          "name": "limit",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "object name and auth scope, such as for teams and projects",
-          "in": "path",
-          "name": "namespace",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersion",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersionMatch",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-          "in": "query",
-          "name": "timeoutSeconds",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-          "in": "query",
-          "name": "watch",
-          "type": "boolean",
-          "uniqueItems": true
-        }
-      ]
-    },
-    "/apis/storage.k8s.io/v1alpha1/watch/namespaces/{namespace}/csistoragecapacities/{name}": {
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "watch changes to an object of kind CSIStorageCapacity. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.",
-        "operationId": "watchStorageV1alpha1NamespacedCSIStorageCapacity",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "storage_v1alpha1"
-        ],
-        "x-kubernetes-action": "watch",
-        "x-kubernetes-group-version-kind": {
-          "group": "storage.k8s.io",
-          "kind": "CSIStorageCapacity",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-          "in": "query",
-          "name": "allowWatchBookmarks",
-          "type": "boolean",
-          "uniqueItems": true
-        },
-        {
-          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-          "in": "query",
-          "name": "continue",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-          "in": "query",
-          "name": "fieldSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-          "in": "query",
-          "name": "labelSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-          "in": "query",
-          "name": "limit",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "name of the CSIStorageCapacity",
-          "in": "path",
-          "name": "name",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "object name and auth scope, such as for teams and projects",
-          "in": "path",
-          "name": "namespace",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersion",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersionMatch",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-          "in": "query",
-          "name": "timeoutSeconds",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-          "in": "query",
-          "name": "watch",
-          "type": "boolean",
-          "uniqueItems": true
-        }
-      ]
-    },
-    "/apis/storage.k8s.io/v1alpha1/watch/volumeattachments": {
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "watch individual changes to a list of VolumeAttachment. deprecated: use the 'watch' parameter with a list operation instead.",
-        "operationId": "watchStorageV1alpha1VolumeAttachmentList",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "storage_v1alpha1"
-        ],
-        "x-kubernetes-action": "watchlist",
-        "x-kubernetes-group-version-kind": {
-          "group": "storage.k8s.io",
-          "kind": "VolumeAttachment",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-          "in": "query",
-          "name": "allowWatchBookmarks",
-          "type": "boolean",
-          "uniqueItems": true
-        },
-        {
-          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-          "in": "query",
-          "name": "continue",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-          "in": "query",
-          "name": "fieldSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-          "in": "query",
-          "name": "labelSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-          "in": "query",
-          "name": "limit",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersion",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersionMatch",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-          "in": "query",
-          "name": "timeoutSeconds",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-          "in": "query",
-          "name": "watch",
-          "type": "boolean",
-          "uniqueItems": true
-        }
-      ]
-    },
-    "/apis/storage.k8s.io/v1alpha1/watch/volumeattachments/{name}": {
-      "get": {
-        "consumes": [
-          "*/*"
-        ],
-        "description": "watch changes to an object of kind VolumeAttachment. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.",
-        "operationId": "watchStorageV1alpha1VolumeAttachment",
-        "produces": [
-          "application/json",
-          "application/yaml",
-          "application/vnd.kubernetes.protobuf",
-          "application/json;stream=watch",
-          "application/vnd.kubernetes.protobuf;stream=watch"
-        ],
-        "responses": {
-          "200": {
-            "description": "OK",
-            "schema": {
-              "$ref": "#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"
-            }
-          },
-          "401": {
-            "description": "Unauthorized"
-          }
-        },
-        "schemes": [
-          "https"
-        ],
-        "tags": [
-          "storage_v1alpha1"
-        ],
-        "x-kubernetes-action": "watch",
-        "x-kubernetes-group-version-kind": {
-          "group": "storage.k8s.io",
-          "kind": "VolumeAttachment",
-          "version": "v1alpha1"
-        }
-      },
-      "parameters": [
-        {
-          "description": "allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.",
-          "in": "query",
-          "name": "allowWatchBookmarks",
-          "type": "boolean",
-          "uniqueItems": true
-        },
-        {
-          "description": "The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.",
-          "in": "query",
-          "name": "continue",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their fields. Defaults to everything.",
-          "in": "query",
-          "name": "fieldSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "A selector to restrict the list of returned objects by their labels. Defaults to everything.",
-          "in": "query",
-          "name": "labelSelector",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.",
-          "in": "query",
-          "name": "limit",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "name of the VolumeAttachment",
-          "in": "path",
-          "name": "name",
-          "required": true,
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "If 'true', then the output is pretty printed.",
-          "in": "query",
-          "name": "pretty",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersion",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset",
-          "in": "query",
-          "name": "resourceVersionMatch",
-          "type": "string",
-          "uniqueItems": true
-        },
-        {
-          "description": "Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.",
-          "in": "query",
-          "name": "timeoutSeconds",
-          "type": "integer",
-          "uniqueItems": true
-        },
-        {
-          "description": "Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.",
-          "in": "query",
-          "name": "watch",
-          "type": "boolean",
-          "uniqueItems": true
-        }
-      ]
-    },
     "/apis/storage.k8s.io/v1beta1/": {
       "get": {
         "consumes": [
@@ -89478,6 +89270,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
@@ -89693,6 +89492,13 @@
             "type": "string",
             "uniqueItems": true
           },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
+          },
           {
             "description": "Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.",
             "in": "query",
@@ -89764,6 +89570,13 @@
             "name": "fieldManager",
             "type": "string",
             "uniqueItems": true
+          },
+          {
+            "description": "fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.",
+            "in": "query",
+            "name": "fieldValidation",
+            "type": "string",
+            "uniqueItems": true
           }
         ],
         "produces": [
diff --git a/api-ref-assets/config/fields.yaml b/api-ref-assets/config/fields.yaml
index 9f6e23f939..71cffef523 100644
--- a/api-ref-assets/config/fields.yaml
+++ b/api-ref-assets/config/fields.yaml
@@ -6,6 +6,7 @@
     - initContainers
     - imagePullSecrets
     - enableServiceLinks
+    - os
   - name: Volumes
     fields:
     - volumes
@@ -49,11 +50,9 @@
     - securityContext
   - name: Beta level
     fields:
+    - ephemeralContainers
     - preemptionPolicy
     - overhead
-  - name: Alpha level
-    fields:
-    - ephemeralContainers
   - name: Deprecated
     fields:
     - serviceAccount
@@ -154,6 +153,7 @@
     - timeoutSeconds
     - failureThreshold
     - successThreshold
+    - grpc
 
 - definition: io.k8s.api.core.v1.SecurityContext
   field_categories:
@@ -225,6 +225,9 @@
     - stdin
     - stdinOnce
     - tty
+  - name: Security context
+    fields:
+    - securityContext
   - name: Not allowed
     fields:
     - ports
@@ -232,7 +235,6 @@
     - lifecycle
     - livenessProbe
     - readinessProbe
-    - securityContext
     - startupProbe
 
 - definition: io.k8s.api.core.v1.ReplicationControllerSpec
@@ -313,6 +315,7 @@
     - revisionHistoryLimit
     - volumeClaimTemplates
     - minReadySeconds
+    - persistentVolumeClaimRetentionPolicy
 
 - definition: io.k8s.api.apps.v1.StatefulSetUpdateStrategy
   field_categories:
@@ -393,12 +396,16 @@
     - completedIndexes
     - conditions
     - uncountedTerminatedPods
+  - name: Alpha level
+    fields:
+    - ready
 
 - definition: io.k8s.api.batch.v1.CronJobSpec
   field_categories:
   - fields:
     - jobTemplate
     - schedule
+    - timeZone
     - concurrencyPolicy
     - startingDeadlineSeconds
     - suspend
@@ -421,6 +428,22 @@
     - value
     - periodSeconds
 
+- definition: io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerSpec
+  field_categories:
+  - fields:
+    - maxReplicas
+    - scaleTargetRef
+    - minReplicas
+    - behavior
+    - metrics
+
+- definition: io.k8s.api.autoscaling.v2.HPAScalingPolicy
+  field_categories:
+  - fields:
+    - type
+    - value
+    - periodSeconds
+
 - definition: io.k8s.api.core.v1.ServiceSpec
   field_categories:
   - fields:
diff --git a/api-ref-assets/config/toc.yaml b/api-ref-assets/config/toc.yaml
index 5c4efa8982..78475b137f 100644
--- a/api-ref-assets/config/toc.yaml
+++ b/api-ref-assets/config/toc.yaml
@@ -23,7 +23,7 @@ parts:
     - PodSpec
     - Container
     - EphemeralContainer
-    - Handler
+    - LifecycleHandler
     - NodeAffinity
     - PodAffinity
     - PodAntiAffinity
@@ -60,6 +60,9 @@ parts:
   - name: HorizontalPodAutoscaler
     group: autoscaling
     version: v1
+  - name: HorizontalPodAutoscaler
+    group: autoscaling
+    version: v2
   - name: HorizontalPodAutoscaler
     group: autoscaling
     version: v2beta2
@@ -121,7 +124,7 @@ parts:
     version: v1
   - name: CSIStorageCapacity
     group: storage.k8s.io
-    version: v1beta1
+    version: v1
 - name: Authentication Resources
   chapters:
   - name: ServiceAccount
@@ -217,10 +220,10 @@ parts:
     version: v1
   - name: FlowSchema
     group: flowcontrol.apiserver.k8s.io
-    version: v1beta1
+    version: v1beta2
   - name: PriorityLevelConfiguration
     group: flowcontrol.apiserver.k8s.io
-    version: v1beta1
+    version: v1beta2
   - name: Binding
     group: ""
     version: v1
diff --git a/assets/scss/_base.scss b/assets/scss/_base.scss
index 4113b49bee..97ce27fe28 100644
--- a/assets/scss/_base.scss
+++ b/assets/scss/_base.scss
@@ -810,11 +810,10 @@ section#cncf {
   }
 }
 
-.td-search {
-  header > .header-filler {
-    height: $hero-padding-top;
-    background-color: black;
-  }
+// Header filler size adjustment
+
+.header-hero.filler {
+  height: $hero-padding-top;
 }
 
 // Docs specific
@@ -859,17 +858,6 @@ section#cncf {
 
 /* DOCUMENTATION */
 
-body.td-documentation {
-    header > .header-filler {
-      height: $hero-padding-top;
-      background-color: black;
-    }
-    /* Special case for if an announcement is active */
-    header section#announcement ~ .header-filler {
-      display: none;
-    }
-}
-
 // nav-tabs and tab-content
 .nav-tabs {
   border-bottom: none !important;
diff --git a/assets/scss/_custom.scss b/assets/scss/_custom.scss
index e7f0902346..db0263d991 100644
--- a/assets/scss/_custom.scss
+++ b/assets/scss/_custom.scss
@@ -7,7 +7,7 @@ $announcement-size-adjustment: 8px;
   }
 
   main {
-    img {
+    *:not(figure) > img {
       max-width: 100%;
     }
 
@@ -26,6 +26,10 @@ $announcement-size-adjustment: 8px;
   }
 }
 
+.header-hero #quickstartButton.button {
+  margin-top: 1em;
+}
+
 section {
   .main-section {
     @media only screen and (min-width: 1024px) {
@@ -34,8 +38,11 @@ section {
   }
 }
 
-.td-outer {
-  padding: 0 !important;
+body {
+  header + .td-outer {
+    min-height: 50vh;
+    height: auto;
+  }
 }
 
 
@@ -215,8 +222,14 @@ footer {
   padding: 1rem !important;
   min-height: initial !important;
 
-  .footer__links {
-    width: 100%;
+  > div, > p {
+    max-width: 95%;
+    @media only screen and (min-width: 768px) {
+      max-width: calc(min(80rem,90vw)); // avoid spreading too wide
+    }
+  }
+
+  > .footer__links {
     margin: auto;
     padding-bottom: 1rem;
 
@@ -226,6 +239,8 @@ footer {
     }
 
     @media only screen and (min-width: 768px) {
+      max-width: calc(min(60rem,90vw)); // avoid spreading too wide
+
       nav {
         display: flex;
         flex-direction: row;
@@ -298,6 +313,12 @@ footer {
   padding-top: 1.5rem !important;
   top: 5rem !important;
 
+  @supports (position: sticky) {
+    position: sticky !important;
+    height: calc(100vh - 10rem);
+    overflow-y: auto;
+  }
+
   #TableOfContents {
     padding-top: 1rem;
   }
@@ -308,52 +329,102 @@ main {
   .td-content>table td {
     word-break: break-word;
   }
+
+  table.no-word-break td,
+  table.no-word-break code {
+    word-break: normal;
+  }
 }
 
 
 // blockquotes and callouts
 
-.td-content, body {
-  blockquote.callout {
+body {
+  .alert {
+    // Override Docsy styles
     padding: 0.4rem 0.4rem 0.4rem 1rem;
-    border: 1px solid #eee;
-    border-left-width: 0.5em;
+    border-top: 1px solid #eee;
+    border-bottom: 1px solid #eee;
+    border-right: 1px solid #eee;
+    border-radius: 0.25em;
+    border-left-width: 0.5em; // fallback in case calc() is missing
     background: #fff;
     color: #000;
     margin-top: 0.5em;
     margin-bottom: 0.5em;
   }
-  blockquote.callout {
-    border-radius: calc(1em/3);
+  // Set minimum width and radius for alert color
+  .alert {
+      border-left-width: calc(max(0.5em, 4px));
+      border-top-left-radius: calc(max(0.5em, 4px));
+      border-bottom-left-radius: calc(max(0.5em, 4px));
   }
-  .callout.caution {
+  .alert.callout.caution {
     border-left-color: #f0ad4e;
   }
-
-  .callout.note {
+  .alert.callout.note {
     border-left-color: #428bca;
   }
-
-  .callout.warning {
+  .alert.callout.warning {
     border-left-color: #d9534f;
   }
+  .alert.third-party-content {
+    border-left-color: #444;
+  }
 
-  h1:first-of-type + blockquote.callout {
+  h1:first-of-type + .alert.callout {
     margin-top: 1.5em;
   }
 }
 
-.deprecation-warning {
-    padding: 20px;
-    margin: 20px 0;
+// Special color for third party content disclaimers
+.alert.third-party-content { border-left-color: #222 };
+
+// Highlight disclaimer when targeted as a fragment
+
+#third-party-content-disclaimer {
+  color: #000;
+  background: #f8f9fa;
+  transition: all 0.5s ease;
+}
+
+@keyframes disclaimer-highlight {
+  from { background: #f8f922; color: #000; }
+  50% { background: #f8f944; color: #000; }
+  to { background: #f8f9cb; color: #000; }
+}
+
+#third-party-content-disclaimer:target {
+  color: #000;
+  animation: disclaimer-highlight 1.25s ease;
+  background: #f8f9cb;
+}
+
+.deprecation-warning, .pageinfo.deprecation-warning {
+    padding: clamp(10px, 2vmin, 20px);
+    margin: clamp(10px, 1vh, 20px) 0;
     background-color: #faf5b6;
     color: #000;
 }
 
+.deprecation-warning.outdated-blog, .pageinfo.deprecation-warning.outdated-blog {
+    background-color: $blue;
+    color: $white;
+}
+
 body.td-home .deprecation-warning, body.td-blog .deprecation-warning, body.td-documentation .deprecation-warning {
     border-radius: 3px;
 }
 
+.deprecation-warning p:only-child {
+  margin-bottom: 0;
+}
+
+.td-documentation .td-content > .highlight {
+  max-width: initial;
+  width: 100%;
+}
+
 body.td-home #deprecation-warning {
     max-width: 1000px;
     margin-top: 2.5rem;
@@ -495,7 +566,8 @@ main.content {
   }
 }
 
-/* COMMUNITY */
+/* COMMUNITY legacy styles */
+/* Leave these in place until localizations are caught up */
 
 .newcommunitywrapper {
   .news {
@@ -524,34 +596,6 @@ main.content {
   }
 }
 
-/* ANNOUNCEMENTS */
-section#fp-announcement ~ .header-hero {
-    padding: $announcement-size-adjustment  0;
-
-    > div {
-       margin-top: $announcement-size-adjustment;
-       margin-bottom: $announcement-size-adjustment;
-    }
-
-    h1, h2, h3, h4, h5 {
-      margin: $announcement-size-adjustment 0;
-    }
-}
-
-section#announcement ~ .header-hero {
-    padding: #{$announcement-size-adjustment / 2} 0;
-
-    > div {
-       margin-top: #{$announcement-size-adjustment / 2};
-       margin-bottom: #{$announcement-size-adjustment / 2};
-       padding-bottom: #{$announcement-size-adjustment / 2};
-    }
-
-    h1, h2, h3, h4, h5 {
-      margin: #{$announcement-size-adjustment / 2} 0;
-    }
-}
-
 /* DOCUMENTATION */
 
 /* Don't show lead text */
@@ -577,64 +621,141 @@ body.td-documentation {
 
 @media print {
   /* Do not print announcements */
-  #announcement, section#announcement, #fp-announcement, section#fp-announcement {
+  #announcement {
     display: none;
   }
 }
 
-#announcement, #fp-announcement {
+#announcement {
   > * {
     color: inherit;
-    background: inherit;
+    background: transparent;
   }
 
   a {
     color: inherit;
-    border-bottom: 1px solid #fff;
+    text-decoration: underline;
   }
 
   a:hover {
     color: inherit;
-    border-bottom: none;
+    text-decoration: initial;
   }
 }
 
-#announcement {
-  padding-top: 105px;
-  padding-bottom: 25px;
-}
-
 .header-hero {
   padding-top: 40px;
 }
 
-/* Extra announcement height only for landscape viewports */
-@media (min-aspect-ratio: 8/9) {
-  #fp-announcement {
-    min-height: 25vh;
-  }
-}
+#announcement {
+  // default background is blue; overrides are possible
+  color: #fff;
 
-#fp-announcement aside {
-  padding-top: 115px;
-  padding-bottom: 25px;
-}
-
-.announcement {
-  .content {
+  .announcement-main {
+    margin-left: auto;
+    margin-right: auto;
     margin-bottom: 0px;
+
+    // for padding-top see _size.scss
+    padding-bottom: calc(max(2em, 2rem));
+
+    max-width: calc(min(1200px - 8em, 80vw));
   }
 
 
-  > p {
-    .gridPage #announcement .content p,
-    .announcement > h4,
-    .announcement > h3 {
-      color: #ffffff;
+  h1, h2, h3, h4, h5, h6, p * {
+    color: inherit; /* defaults to white */
+    background: transparent;
+
+    img.event-logo {
+      display: inline-block;
+      max-height: calc(min(80px, 8em));
+      max-width: calc(min(240px, 33vw));
+      float: right;
     }
   }
 }
 
+#announcement + .header-hero {
+  padding-top: 2em;
+}
+
+// Extra padding for anything except wide viewports
+@media (min-width: 992px) {
+  #announcement aside { // more specific
+    .announcement-main {
+      padding-top: calc(max(8em, 8rem));
+    }
+  }
+}
+
+@media (max-width: 768px) {
+  #announcement {
+    padding-top: 4rem;
+    padding-bottom: 4rem;
+    .announcement-main, aside .announcement-main {
+      padding-top: calc(min(2rem,2em));
+    }
+  }
+}
+
+@media (max-width: 480px) {
+  #announcement {
+    padding-bottom: 0.5em;
+  }
+  #announcement aside {
+    h1, h2, h3, h4, h5, h6 {
+      img.event-logo {
+        margin-left: auto;
+        margin-right: auto;
+        margin-bottom: 0.75em;
+        display: block;
+        max-height: initial;
+        max-width: calc(min(calc(100vw - 2em), 240px));
+        float: initial;
+      }
+    }
+  }
+}
+
+#announcement + .header-hero.filler {
+  display: none;
+}
+
+@media (min-width: 768px) {
+  #announcement + .header-hero {
+    display: none;
+  }
+}
+
+figure {
+  > figcaption {
+    padding-top: 1em;
+    margin-bottom: 3em;
+  }
+}
+
+// Clamp size for release logos
+figure.release-logo {
+  > figcaption {
+    font-size: 1.8em;
+  }
+  > img {
+    max-width: 100%;
+    max-height: calc(max(40em,min(80vh,70em)));
+    height: auto;
+    width: auto;
+  }
+}
+
+
+// Match Docsy-imposed max width on text body
+@media (min-width: 1200px) {
+  body.td-blog main .td-content > figure {
+    max-width: 80%;
+  }
+}
+
 .td-content {
   table code {
     background-color: inherit !important;
@@ -642,3 +763,93 @@ body.td-documentation {
     font-size: inherit !important;
   }
 }
+
+/* Force size constraints on figures */
+figure {
+  &.diagram-small img {
+    max-height: clamp(20mm,12em,80vh);
+    margin-left: auto;
+    margin-right: auto;
+    display: block;
+  }
+  &.diagram-medium img {
+    max-height: clamp(25mm,20em,80vh);
+    margin-left: auto;
+    margin-right: auto;
+    display: block;
+  }
+  &.diagram-large img {
+    max-width: clamp(0vw, 95vw, 100%);
+    max-height: calc(80vh - 8rem);
+  }
+
+  figure + noscript > *{
+    max-width: calc(max(100%, 100vw));
+  }
+}
+
+@media only screen and (min-width: 768px) {
+  figure {
+    &.diagram-small, &.diagram-medium {
+      max-width: 80%;
+    }
+    &.diagram-large {
+      max-width: 100%;
+      width: 100%;
+    }
+    &.diagram-small img {
+      max-width: clamp(30rem, 45ch, 100mm);
+    }
+    &.diagram-medium img {
+      max-width: clamp(50rem, 20ch, 160mm);
+    }
+    &.diagram-large img {
+      max-width: clamp(25vw, 95vw, 100%);
+      max-height: calc(100vh - 10rem);
+    }
+  }
+  figure + noscript > * {
+    max-width: 80%;
+  }
+}
+
+// Indent definition lists
+dl {
+  padding-left: 1.5em;
+
+  // Add vertical space before definitions
+  > *:not(dt) + dt, dt:first-child {
+    margin-top: 1.5em;
+  }
+}
+
+.release-details {
+  padding-left: 2em;
+
+  > :not(p) {
+    font-size: 1.125em;
+  }
+
+  .release-inline-heading, .release-inline-value {
+    display: inline-block
+  }
+
+  .release-inline-value {
+    padding-left: 0.25em;
+  }
+
+  p {
+     margin-top: 1em;
+     margin-bottom: 1em;
+  }
+}
+
+.no-js .mermaid {
+  display: none;
+}
+
+div.alert > em.javascript-required {
+  display: inline-block;
+  min-height: 1.5em;
+  margin: calc(max(4em, ( 8vh + 4em ) / 2)) 0 0.25em 0;
+}
diff --git a/assets/scss/_reset.scss b/assets/scss/_reset.scss
old mode 100755
new mode 100644
diff --git a/assets/scss/_size.scss b/assets/scss/_size.scss
index 9f0b7f655f..14d56201c3 100644
--- a/assets/scss/_size.scss
+++ b/assets/scss/_size.scss
@@ -18,3 +18,11 @@ section,
   line-height: $vendor-strip-height;
   font-size: $vendor-strip-font-size;
 }
+
+#announcement {
+  min-height: $hero-padding-top;
+
+  .announcement-main {
+    padding-top: calc(max(8em, 8rem, #{$hero-padding-top} / 3));
+  }
+}
diff --git a/assets/scss/_skin.scss b/assets/scss/_skin.scss
old mode 100755
new mode 100644
diff --git a/cloudbuild.yaml b/cloudbuild.yaml
index 61b5adc5f4..542d58016c 100644
--- a/cloudbuild.yaml
+++ b/cloudbuild.yaml
@@ -8,18 +8,21 @@ options:
   substitution_option: ALLOW_LOOSE
 steps:
     # It's fine to bump the tag to a recent version, as needed
-  - name: "gcr.io/k8s-testimages/gcb-docker-gcloud:v20190906-745fed4"
-    entrypoint: make
+  - name: "gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20210917-12df099d55"
+    entrypoint: 'bash'
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
       - TAG=$_GIT_TAG
       - BASE_REF=$_PULL_BASE_REF
     args:
-      - container-image
+      - -c
+      - |
+        gcloud auth configure-docker \
+        && make container-push
 substitutions:
   # _GIT_TAG will be filled with a git-based tag for the image, of the form vYYYYMMDD-hash, and
   # can be used as a substitution
   _GIT_TAG: "12345"
   # _PULL_BASE_REF will contain the ref that was pushed to to trigger this build -
-  # a branch like 'master' or 'release-0.2', or a tag like 'v0.2'.
-  _PULL_BASE_REF: "master"
+  # a branch like 'main' or 'release-0.2', or a tag like 'v0.2'.
+  _PULL_BASE_REF: "main"
diff --git a/config.toml b/config.toml
index 517d083062..4b030df417 100644
--- a/config.toml
+++ b/config.toml
@@ -121,7 +121,8 @@ id = "UA-00000000-0"
 
 [params]
 copyright_k8s = "The Kubernetes Authors"
-copyright_linux =  "Copyright © 2020 The Linux Foundation ®."
+copyright_linux = "Copyright © 2020 The Linux Foundation ®."
+
 # privacy_policy = "https://policies.google.com/privacy"
 
 # First one is picked as the Twitter card image if not set on page.
@@ -137,10 +138,10 @@ time_format_default = "January 02, 2006 at 3:04 PM PST"
 description = "Production-Grade Container Orchestration"
 showedit = true
 
-latest = "v1.22"
+latest = "v1.24"
 
-fullversion = "v1.22.0"
-version = "v1.22"
+fullversion = "v1.24.0"
+version = "v1.24"
 githubbranch = "main"
 docsbranch = "main"
 deprecated = false
@@ -153,10 +154,10 @@ githubWebsiteRaw = "raw.githubusercontent.com/kubernetes/website"
 # GitHub repository link for editing a page and opening issues.
 github_repo = "https://github.com/kubernetes/website"
 
-#Searching
+# Searching
 k8s_search = true
 
-#The following search parameters are specific to Docsy's implementation. Kubernetes implementes its own search-related partials and scripts.
+# The following search parameters are specific to Docsy's implementation. Kubernetes implementes its own search-related partials and scripts.
 
 # Google Custom Search Engine ID. Remove or comment out to disable search.
 #gcs_engine_id = "011737558837375720776:fsdu1nryfng"
@@ -177,51 +178,53 @@ js = [
 ]
 
 [[params.versions]]
-fullversion = "v1.22.0"
-version = "v1.22"
-githubbranch = "v1.22.0"
+fullversion = "v1.24.0"
+version = "v1.24"
+githubbranch = "v1.24.0"
 docsbranch = "main"
 url = "https://kubernetes.io"
 
 [[params.versions]]
-fullversion = "v1.21.4"
+fullversion = "v1.23.6"
+version = "v1.23"
+githubbranch = "v1.23.6"
+docsbranch = "release-1.23"
+url = "https://v1-23.docs.kubernetes.io"
+
+[[params.versions]]
+fullversion = "v1.22.9"
+version = "v1.22"
+githubbranch = "v1.22.9"
+docsbranch = "release-1.22"
+url = "https://v1-22.docs.kubernetes.io"
+
+[[params.versions]]
+fullversion = "v1.21.12"
 version = "v1.21"
-githubbranch = "v1.21.4"
+githubbranch = "v1.21.12"
 docsbranch = "release-1.21"
 url = "https://v1-21.docs.kubernetes.io"
 
 [[params.versions]]
-fullversion = "v1.20.10"
+fullversion = "v1.20.15"
 version = "v1.20"
-githubbranch = "v1.20.10"
+githubbranch = "v1.20.15"
 docsbranch = "release-1.20"
 url = "https://v1-20.docs.kubernetes.io"
 
-[[params.versions]]
-fullversion = "v1.19.14"
-version = "v1.19"
-githubbranch = "v1.19.14"
-docsbranch = "release-1.19"
-url = "https://v1-19.docs.kubernetes.io"
-
-[[params.versions]]
-fullversion = "v1.18.20"
-version = "v1.18"
-githubbranch = "v1.18.20"
-docsbranch = "release-1.18"
-url = "https://v1-18.docs.kubernetes.io"
-
 # User interface configuration
 [params.ui]
 # Enable to show the side bar menu in its compact state.
 sidebar_menu_compact = false
+# Show expand/collapse icon for sidebar sections.
+sidebar_menu_foldable = true
 # https://github.com/gohugoio/hugo/issues/8918#issuecomment-903314696
 sidebar_cache_limit = 1
-#  Set to true to disable breadcrumb navigation.
+# Set to true to disable breadcrumb navigation.
 breadcrumb_disable = false
-#  Set to true to hide the sidebar search box (the top nav search box will still be displayed if search is enabled)
+# Set to true to hide the sidebar search box (the top nav search box will still be displayed if search is enabled)
 sidebar_search_disable = false
-#  Set to false if you don't want to display a logo (/assets/icons/logo.svg) in the top nav bar
+# Set to false if you don't want to display a logo (/assets/icons/logo.svg) in the top nav bar
 navbar_logo = true
 # Set to true to disable the About link in the site footer
 footer_about_disable = false
@@ -242,50 +245,50 @@ no = 'Sorry to hear that. Please <a href="https://github.com/USERNAME/REPOSITORY
 	name = "User mailing list"
 	url = "https://discuss.kubernetes.io"
 	icon = "fa fa-envelope"
-  desc = "Discussion and help from your fellow users"
+	desc = "Discussion and help from your fellow users"
 
 [[params.links.user]]
 	name = "Twitter"
 	url = "https://twitter.com/kubernetesio"
 	icon = "fab fa-twitter"
-  desc = "Follow us on Twitter to get the latest news!"
+	desc = "Follow us on Twitter to get the latest news!"
 
 [[params.links.user]]
 	name = "Calendar"
 	url = "https://calendar.google.com/calendar/embed?src=calendar%40kubernetes.io"
 	icon = "fas fa-calendar-alt"
-  desc = "Google Calendar for Kubernetes"
+	desc = "Google Calendar for Kubernetes"
 
 [[params.links.user]]
 	name = "Youtube"
 	url = "https://youtube.com/kubernetescommunity"
 	icon = "fab fa-youtube"
-  desc = "Youtube community videos"
+	desc = "Youtube community videos"
 
 # Developer relevant links. These will show up on right side of footer and in the community page if you have one.
 [[params.links.developer]]
 	name = "GitHub"
 	url = "https://github.com/kubernetes/kubernetes"
 	icon = "fab fa-github"
-  desc = "Development takes place here!"
+	desc = "Development takes place here!"
 
 [[params.links.developer]]
 	name = "Slack"
 	url = "https://slack.k8s.io"
 	icon = "fab fa-slack"
-  desc = "Chat with other project developers"
+	desc = "Chat with other project developers"
 
 [[params.links.developer]]
 	name = "Contribute"
 	url = "https://git.k8s.io/community/contributors/guide"
 	icon = "fas fa-edit"
-  desc = "Contribute to the Kubernetes website"
+	desc = "Contribute to the Kubernetes website"
 
 [[params.links.developer]]
 	name = "Stack Overflow"
 	url = "https://stackoverflow.com/questions/tagged/kubernetes"
 	icon = "fab fa-stack-overflow"
-  desc = "Practical questions and curated answers"
+	desc = "Practical questions and curated answers"
 
 # Language definitions.
 
@@ -293,27 +296,29 @@ no = 'Sorry to hear that. Please <a href="https://github.com/USERNAME/REPOSITORY
 [languages.en]
 title = "Kubernetes"
 description = "Production-Grade Container Orchestration"
-languageName ="English"
+languageName = "English"
 # Weight used for sorting.
 weight = 1
 languagedirection = "ltr"
 
-[languages.zh]
+[languages.zh-cn]
 title = "Kubernetes"
 description = "生产级别的容器编排系统"
-languageName = "中文 Chinese"
+languageName = "中文 (Chinese)"
+languageNameLatinScript = "Chinese"
 weight = 2
-contentDir = "content/zh"
+contentDir = "content/zh-cn"
 languagedirection = "ltr"
 
-[languages.zh.params]
+[languages.zh-cn.params]
 time_format_blog = "2006.01.02"
 language_alternatives = ["en"]
 
 [languages.ko]
 title = "Kubernetes"
 description = "운영 수준의 컨테이너 오케스트레이션"
-languageName = "한국어 Korean"
+languageName = "한국어 (Korean)"
+languageNameLatinScript = "Korean"
 weight = 3
 contentDir = "content/ko"
 languagedirection = "ltr"
@@ -325,7 +330,8 @@ language_alternatives = ["en"]
 [languages.ja]
 title = "Kubernetes"
 description = "プロダクショングレードのコンテナ管理基盤"
-languageName = "日本語 Japanese"
+languageName = "日本語 (Japanese)"
+languageNameLatinScript = "Japanese"
 weight = 4
 contentDir = "content/ja"
 languagedirection = "ltr"
@@ -337,7 +343,8 @@ language_alternatives = ["en"]
 [languages.fr]
 title = "Kubernetes"
 description = "Solution professionnelle d’orchestration de conteneurs"
-languageName ="Français"
+languageName = "Français (French)"
+languageNameLatinScript = "Français"
 weight = 5
 contentDir = "content/fr"
 languagedirection = "ltr"
@@ -350,7 +357,8 @@ language_alternatives = ["en"]
 [languages.it]
 title = "Kubernetes"
 description = "Orchestrazione di Container in produzione"
-languageName = "Italiano"
+languageName = "Italiano (Italian)"
+languageNameLatinScript = "Italiano"
 weight = 6
 contentDir = "content/it"
 languagedirection = "ltr"
@@ -363,7 +371,8 @@ language_alternatives = ["en"]
 [languages.no]
 title = "Kubernetes"
 description = "Production-Grade Container Orchestration"
-languageName ="Norsk"
+languageName = "Norsk (Norwegian)"
+languageNameLatinScript = "Norsk"
 weight = 7
 contentDir = "content/no"
 languagedirection = "ltr"
@@ -376,7 +385,8 @@ language_alternatives = ["en"]
 [languages.de]
 title = "Kubernetes"
 description = "Produktionsreife Container-Orchestrierung"
-languageName ="Deutsch"
+languageName = "Deutsch (German)"
+languageNameLatinScript = "Deutsch"
 weight = 8
 contentDir = "content/de"
 languagedirection = "ltr"
@@ -389,7 +399,8 @@ language_alternatives = ["en"]
 [languages.es]
 title = "Kubernetes"
 description = "Orquestación de contenedores para producción"
-languageName ="Español"
+languageName = "Español (Spanish)"
+languageNameLatinScript = "Español"
 weight = 9
 contentDir = "content/es"
 languagedirection = "ltr"
@@ -402,8 +413,10 @@ language_alternatives = ["en"]
 [languages.pt-br]
 title = "Kubernetes"
 description = "Orquestração de contêineres em nível de produção"
-languageName ="Português"
-weight = 9
+languageName = "Português (Portuguese)"
+languageNameLatinScript = "Português"
+weight = 10
+
 contentDir = "content/pt-br"
 languagedirection = "ltr"
 
@@ -416,7 +429,8 @@ language_alternatives = ["en"]
 title = "Kubernetes"
 description = "Orkestrasi Kontainer dengan Skala Produksi"
 languageName ="Bahasa Indonesia"
-weight = 10
+languageNameLatinScript = "Bahasa Indonesia"
+weight = 11
 contentDir = "content/id"
 languagedirection = "ltr"
 
@@ -429,27 +443,31 @@ language_alternatives = ["en"]
 title = "Kubernetes"
 description = "प्रोडक्शन-ग्रेड कंटेनर ऑर्केस्ट्रेशन"
 languageName = "हिन्दी"
-weight = 11
+languageNameLatinScript = "Hindi"
+weight = 12
 contentDir = "content/hi"
 languagedirection = "ltr"
 
 [languages.hi.params]
-time_format_blog = "01.02.2006"
+time_format_blog = "02.01.2006"
+# A list of language codes to look for untranslated content, ordered from left to right.
 language_alternatives = ["en"]
 
 [languages.vi]
 title = "Kubernetes"
 description = "Giải pháp điều phối container trong môi trường production"
-languageName = "Tiếng Việt"
+languageName = "Tiếng Việt (Vietnamese)"
+languageNameLatinScript = "Tiếng Việt"
 contentDir = "content/vi"
-weight = 12
+weight = 13
 languagedirection = "ltr"
 
 [languages.ru]
 title = "Kubernetes"
 description = "Первоклассная оркестрация контейнеров"
-languageName = "Русский"
-weight = 12
+languageName = "Русский (Russian)"
+languageNameLatinScript = "Russian"
+weight = 14
 contentDir = "content/ru"
 languagedirection = "ltr"
 
@@ -461,8 +479,9 @@ language_alternatives = ["en"]
 [languages.pl]
 title = "Kubernetes"
 description = "Produkcyjny system zarządzania kontenerami"
-languageName = "Polski"
-weight = 13
+languageName = "Polski (Polish)"
+languageNameLatinScript = "Polski"
+weight = 15
 contentDir = "content/pl"
 languagedirection = "ltr"
 
@@ -474,8 +493,9 @@ language_alternatives = ["en"]
 [languages.uk]
 title = "Kubernetes"
 description = "Довершена система оркестрації контейнерів"
-languageName = "Українська"
-weight = 14
+languageName = "Українська (Ukrainian)"
+languageNameLatinScript = "Ukrainian"
+weight = 16
 contentDir = "content/uk"
 languagedirection = "ltr"
 
diff --git a/content/de/_index.html b/content/de/_index.html
index 78d3b5e003..b1bc57459c 100644
--- a/content/de/_index.html
+++ b/content/de/_index.html
@@ -42,12 +42,12 @@ Kubernetes ist Open Source und bietet Dir die Freiheit, die Infrastruktur vor Or
         <button id="desktopShowVideoButton" onclick="kub.showVideo()">Video ansehen</button>
         <br>
         <br>
-        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccnceu20" button id="desktopKCButton">Besuche die KubeCon - 13-16 August 2020 in Amsterdam</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/" button id="desktopKCButton">Besuchen die KubeCon North America vom 24. bis 28. Oktober 2022</a>
         <br>
         <br>
         <br>
         <br>
-        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccncna20" button id="desktopKCButton">Besuche die KubeCon - 17-20 November 2020 in Boston</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/" button id="desktopKCButton">Besuche die KubeCon Europe vom 17. bis 21. April 2023</a>
 </div>
 <div id="videoPlayer">
     <iframe data-url="https://www.youtube.com/embed/H06qrNmGqyE?autoplay=1" frameborder="0" allowfullscreen></iframe>
diff --git a/content/de/community/_index.html b/content/de/community/_index.html
index adff754f03..77d6005a37 100644
--- a/content/de/community/_index.html
+++ b/content/de/community/_index.html
@@ -4,58 +4,253 @@ layout: basic
 cid: community
 ---
 
-<section id="mainContent">
-    <main>
-        <div class="content">
-            <h3>Die Gewissheit, dass Kubernetes überall und für alle gut funktioniert.</h3>
-            <p>Verbinden Sie sich mit der Kubernetes-Community in unserem <a href="http://slack.k8s.io/">Slack Kanal</a>, <a href="https://discuss.kubernetes.io/">Diskussionsforum</a>, oder beteiligen Sie sich an der <a href="https://groups.google.com/g/kubernetes-dev"> Kubernetes-dev-Google-Gruppe</a>. Eine wöchentliches Community-Meeting findet per Videokonferenz statt, um den Stand der Dinge zu diskutieren, folgen Sie
-		<a href="https://github.com/kubernetes/community/blob/master/events/community-meeting.md">diesen Anweisungen</a> für Informationen wie Sie teilnehmen können.</p>
-            <p>Sie können Kubernetes auch auf der ganzen Welt über unsere
-                <a href="https://www.meetup.com/topics/kubernetes/">Kubernetes Meetup Community</a> und der
-                <a href="https://www.meetup.com/Kubernetes-Cloud-Native-Online-Meetup/">Kubernetes Cloud Native Meetup Community</a> beitreten.</p>
-          </div>
-        <div class="content">
-            <h3>Special Interest Groups (SIGs)</h3>
-            <p>Haben Sie ein besonderes Interesse daran, wie Kubernetes mit einer anderen Technologie arbeitet?  Werfen Sie einen Blick auf unsere kontinuierlich wachsende
-                <a href="https://git.k8s.io/community/sig-list.md">Listen von SIGs</a>, von AWS und Openstack bis hin zu Big Data und Skalierbarkeit, es gibt einen Platz für Sie, an dem Sie mitwirken können, und Anweisungen zur Gründung einer neuen SIG finden, wenn Ihr besonderes Interesse (noch) nicht abgedeckt ist.
-            </p>
+<div class="newcommunitywrapper">
+<div class="banner1">
+  <img src="/images/community/kubernetes-community-final-02.jpg" alt="Kubernetes-Konferenz Galerie" style="width:100%;padding-left:0px" class="desktop">
+  <img src="/images/community/kubernetes-community-02-mobile.jpg" alt="Kubernetes-Konferenz Galerie" style="width:100%;padding-left:0px" class="mobile">
+</div>
 
-            <p>Als Mitglied der Kubernetes-Community sind Sie herzlich eingeladen, an allen SIG-Treffen teilzunehmen, die Sie interessieren. Eine Registrierung ist nicht erforderlich.</p>
+<div class="intro">
+<br class="mobile">
+<p>Die Kubernetes-Community - Nutzer, Mitwirkende und die Kultur, die wir gemeinsam aufgebaut haben - ist einer der Hauptgründe für den kometenhaften Aufstieg dieses Open-Source-Projekts. Unsere Kultur und unsere Werte wachsen und entwickeln sich mit dem Wachstum und der Veränderung des Projekts selbst. Wir alle arbeiten gemeinsam an der ständigen Verbesserung des Projekts und der Art und Weise, wie wir daran arbeiten.
+<br><br>Wir sind die Leute, die Probleme und Pull-Requests einreichen, an SIG-Treffen (Special Interest Groups), Kubernetes-Treffen und der KubeCon teilnehmen, sich für die Einführung und Innovation von Kubernetes einsetzen, <code>kubectl get pods</code> ausführen und auf tausend andere wichtige Arten beitragen. Lies weiter, um zu erfahren, wie Du dich engagieren und Teil dieser faszinierenden Gemeinschaft werden kannst.</p>
+<br class="mobile">
+</div>
 
-        </div>
+<div class="community__navbar">
 
-        <div class="content">
-          <h3>Verhaltensregeln</h3>
-          <p>Die Kubernetes-Community schätzt Respekt und Inklusivität und setzt einen <a href="code-of-conduct/">Verhaltenskodex</a>
-            in allen Interaktionen durch. Wenn Sie einen Verstoß gegen den Verhaltenskodex bei einer Veranstaltung oder Sitzung,
-            in Slack oder in einem anderen Kommunikationsmechanismus feststellen, wenden Sie sich
-            bitte an das <a href="https://github.com/kubernetes/community/tree/master/committee-code-of-conduct">Kubernetes Code of Conduct Committee</a> <a href="mailto:conduct@kubernetes.io">conduct@kubernetes.io</a>. Ihre Anonymität wird geschützt.
-          </p>
-         </div>
-    </main>
-</section>
+<a href="#values">Gemeinschaftswerte</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+<a href="#conduct">Verhaltenskodex </a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+<a href="#videos">Videos</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+<a href="#discuss">Diskussionen</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+<a href="#events">Veranstaltungen und meetups</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+<a href="#news">Neuigkeiten</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+<a href="/releases">Releases</a>
 
-<section id="talkToUs">
-    <main>
-        <h3>Talk to Us!</h3>
-        <h4>Wir würden uns freuen, von Ihnen zu hören, wie Sie Kubernetes verwenden<br>und was wir tun können, um es besser zu machen.</h4>
-        <div id="bigSocial">
-            <div>
-                <a href="https://twitter.com/kubernetesio">@kubernetesio</a>
-                <p>Erhalten Sie die neuesten Nachrichten und Updates.</p>
-            </div>
-            <div>
-                <a href="https://github.com/kubernetes/kubernetes">Github Project</a>
-                <p>Informieren Sie sich über das Projekt und erwägen Sie, einen Beitrag zu leisten.</p>
-            </div>
-            <div>
-                <a href="http://slack.k8s.io/">#kubernetes-users</a>
-                <p>Unser Slack-Kanal ist der beste Weg, um unsere Ingenieure zu kontaktieren und Ihre Ideen mit ihnen zu teilen.</p>
-            </div>
-            <div>
-                <a href="http://stackoverflow.com/questions/tagged/kubernetes">Stack Overflow</a>
-                <p>Unser Benutzerforum ist ein großartiger Ort, um Community-Support zu erhalten.</p>
-            </div>
-        </div>
-    </main>
-</section>
+</div>
+<br class="mobile"><br class="mobile">
+<div class="imagecols">
+<br class="mobile">
+  <div class="imagecol">
+    <img src="/images/community/kubernetes-community-final-03.jpg" alt="Kubernetes-Konferenz Galerie" style="width:100%" class="desktop">
+  </div>
+
+  <div class="imagecol">
+    <img src="/images/community/kubernetes-community-final-04.jpg" alt="Kubernetes-Konferenz Galerie" style="width:100%" class="desktop">
+  </div>
+
+  <div class="imagecol" style="margin-right:0% important">
+    <img src="/images/community/kubernetes-community-final-05.jpg" alt="Kubernetes-Konferenz Galerie" style="width:100%;margin-right:0% important" class="desktop">
+  </div>
+  <img src="/images/community/kubernetes-community-04-mobile.jpg" alt="Kubernetes-Konferenz Galerie" style="width:100%;margin-bottom:3%" class="mobile">
+<a name="values"></a>
+</div>
+
+<div><a name="values"></a></div>
+<div class="conduct">
+<div class="conducttext">
+<br class="mobile"><br class="mobile">
+<br class="tablet"><br class="tablet">
+<div class="conducttextnobutton" style="margin-bottom:2%"><h1>Gemeinschaftswerte</h1>
+Die Werte der Kubernetes-Community sind der Grundstein für den anhaltenden Erfolg des Projekts.<br>
+Diese Prinzipien leiten jeden Aspekt des Kubernetes-Projekts.
+<br>
+<a href="/community/values/">
+<br class="mobile"><br class="mobile">
+<span class="fullbutton">
+  MEHR ERFAHREN
+</span>
+</a>
+</div><a name="conduct"></a>
+</div>
+</div>
+
+
+
+<div class="conduct">
+<div class="conducttext">
+<br class="mobile"><br class="mobile">
+<br class="tablet"><br class="tablet">
+<div class="conducttextnobutton" style="margin-bottom:2%"><h1>Verhaltenskodex</h1>
+Die Kubernetes-Gemeinschaft legt Wert auf Respekt und Inklusivität und setzt bei allen Interaktionen einen Verhaltenskodex durch. Wenn Du einen Verstoß gegen den Verhaltenskodex bei einer Veranstaltung oder einem Treffen, in Slack oder in einem anderen Kommunikationsmechanismus bemerkst, wende dich an das Kubernetes Code of Conduct Committee unter <a href="mailto:conduct@kubernetes.io" style="color:#0662EE;font-weight:300">conduct@kubernetes.io</a>. Alle Berichte werden vertraulich behandelt. Du kannst&nbsp;<a href="https://github.com/kubernetes/community/tree/master/committee-code-of-conduct" style="color:#0662EE;font-weight:300">hier</a> mehr über den Ausschuss erfahren.
+<br>
+<a href="https://kubernetes.io/de/community/code-of-conduct/">
+<br class="mobile"><br class="mobile">
+
+<span class="fullbutton">
+MEHR ERFAHREN
+</span>
+</a>
+</div><a name="videos"></a>
+</div>
+</div>
+
+
+
+<div class="videos">
+<br class="mobile"><br class="mobile">
+<br class="tablet"><br class="tablet">
+<h1 style="margin-top:0px">Videos</h1>
+
+<div style="margin-bottom:4%;font-weight:300;text-align:center;padding-left:10%;padding-right:10%">Wir sind auf YouTube, und zwar oft. Abonniere uns für eine Vielzahl von&nbsp;Themen.</div>
+
+<div class="videocontainer">
+
+<div class="video">
+
+  <iframe width="100%" height="250" src="https://www.youtube.com/embed/videoseries?list=PL69nYSiGNLP3azFUvYJjGn45YbF6C-uIg" title="Monatliche Bürozeiten" frameborder="0" allow="autoplay; encrypted-media" allowfullscreen></iframe>
+
+<a href="https://www.youtube.com/playlist?list=PL69nYSiGNLP3azFUvYJjGn45YbF6C-uIg">
+<div class="videocta">
+Monatliche Bürozeiten ansehen&nbsp;&#9654;</div>
+</a>
+</div>
+
+<div class="video">
+  <iframe width="100%" height="250" src="https://www.youtube.com/embed/videoseries?list=PL69nYSiGNLP1pkHsbPjzAewvMgGUpkCnJ" title="Wöchentliche Treffen der Gemeinschaft" frameborder="0" allow="autoplay; encrypted-media" allowfullscreen></iframe>
+<a href="https://www.youtube.com/playlist?list=PL69nYSiGNLP1pkHsbPjzAewvMgGUpkCnJ">
+<div class="videocta">
+Wöchentliche Treffen der Gemeinschaft ansehen&nbsp;&#9654;
+</div>
+</a>
+</div>
+
+<div class="video">
+
+<iframe width="100%" height="250" src="https://www.youtube.com/embed/videoseries?list=PL69nYSiGNLP3QpQrhZq_sLYo77BVKv09F" title="Vortrag eines Mitglieds der Gemeinschaft" frameborder="0" allow="autoplay; encrypted-media" allowfullscreen></iframe>
+
+<a href="https://www.youtube.com/playlist?list=PL69nYSiGNLP3QpQrhZq_sLYo77BVKv09F">
+<div class="videocta">
+Vortrag eines Mitglieds der Gemeinschaft ansehen&nbsp;&#9654;
+</div>
+
+</a>
+<a name="discuss"></a>
+</div>
+</div>
+</div>
+
+
+<div class="resources">
+<br class="mobile"><br class="mobile">
+<br class="tablet"><br class="tablet">
+<h1 style="padding-top:1%">Diskussionen</h1>
+
+<div style="font-weight:300;text-align:center">Wir reden gerne und viel. Triff uns auf einer dieser Plattformen und beteilige dich an den Diskussionen.</div>
+
+<div class="resourcecontainer">
+
+<div class="resourcebox">
+<img src="/images/community/discuss.png" alt=Forum" style="width:80%;padding-bottom:2%">
+<a href="https://discuss.kubernetes.io/" style="color:#0662EE;display:block;margin-top:1%">
+forum&nbsp;&#9654;
+</a>
+<div class="resourceboxtext" style="font-size:12px;text-transform:none !important;font-weight:300;line-height:1.4em;color:#333333;margin-top:4%">
+Themenbezogene technische Diskussionen, die eine Brücke zu Docs, StackOverflow und vielem mehr schlagen.
+</div>
+</div>
+
+<div class="resourcebox">
+<img src="/images/community/twitter.png" alt="Twitter" style="width:80%;padding-bottom:2%">
+<a href="https://twitter.com/kubernetesio" style="color:#0662EE;display:block;margin-top:1%">
+twitter&nbsp;&#9654;
+</a>
+<div class="resourceboxtext" style="font-size:12px;text-transform:none !important;font-weight:300;line-height:1.4em;color:#333333;margin-top:4%">Echtzeit-Ankündigungen von Blogeinträgen, Veranstaltungen, Neuigkeiten und Ideen
+</div>
+</div>
+
+<div class="resourcebox">
+<img src="/images/community/github.png" alt="GitHub" style="width:80%;padding-bottom:2%">
+<a href="https://github.com/kubernetes/kubernetes" style="color:#0662EE;display:block;margin-top:1%">
+github&nbsp;&#9654;
+</a>
+<div class="resourceboxtext" style="font-size:12px;text-transform:none !important;font-weight:300;line-height:1.4em;color:#333333;margin-top:4%">
+Die gesamte Projekt- und Problemverfolgung und natürlich der Code
+</div>
+</div>
+
+<div class="resourcebox">
+<img src="/images/community/stack.png" alt="Stack Overflow" style="width:80%;padding-bottom:2%">
+<a href="https://stackoverflow.com/search?q=kubernetes" style="color:#0662EE;display:block;margin-top:1%">
+stack overflow&nbsp;&#9654;
+</a>
+<div class="resourceboxtext" style="font-size:12px;text-transform:none !important;font-weight:300;line-height:1.4em;color:#333333;margin-top:4%">
+  Technische Problemlösung für jeden Anwendungsfall
+  <a name="events"></a>
+</div>
+</div>
+
+<!--
+<div class="resourcebox">
+
+<img src="/images/community/slack.png" style="width:80%">
+
+slack&nbsp;&#9654;
+
+<div class="resourceboxtext" style="font-size:11px;text-transform:none !important;font-weight:200;line-height:1.4em;color:#333333;margin-top:4%">
+With 170+ channels, you'll find one that fits your needs.
+</div>
+
+</div>-->
+
+</div>
+</div>
+<div class="events">
+  <br class="mobile"><br class="mobile">
+  <br class="tablet"><br class="tablet">
+<div class="eventcontainer">
+ <h1 style="color:white !important">Bevorstehende Veranstaltungen</h1>
+    {{< upcoming-events >}}
+</div>
+</div>
+
+<div class="meetups">
+<div class="meetupcol">
+<div class="meetuptext">
+<h1 style="text-align:left">Globale Gemeinschaft</h1>
+Mit mehr als 150 Treffen auf der ganzen Welt, Tendenz steigend, solltest du deine lokalen Kube-Leute finden. Wenn keins in der Nähe ist, nimm die Sache in die Hand und gründe dein eigenes.
+</div>
+<a href="https://www.meetup.com/topics/kubernetes/">
+<div class="button">
+EIN MEETUP FINDEN
+</div>
+</a>
+<a name="news"></a>
+</div>
+</div>
+
+
+<!--
+<div class="contributor">
+<div class="contributortext">
+<br>
+<h1 style="text-align:left">
+New Contributors Site
+ </h1>
+Text about new contributors site.
+
+<br><br>
+
+<div class="button">
+VISIT SITE
+</div>
+</div>
+</div>
+
+-->
+
+<div class="news">
+<br class="mobile"><br class="mobile">
+<br class="tablet"><br class="tablet">
+<h1 style="margin-bottom:2%">Aktuelle Neuigkeiten</h1>
+
+<br>
+<div class="twittercol1">
+<a class="twitter-timeline" data-tweet-limit="1" href="https://twitter.com/kubernetesio?ref_src=twsrc%5Etfw">Tweets von kubernetesio</a> <script async src="https://platform.twitter.com/widgets.js" charset="utf-8"></script>
+</div>
+
+<br>
+<br><br><br><br>
+</div>
+
+</div>
diff --git a/content/de/docs/concepts/cluster-administration/_index.md b/content/de/docs/concepts/cluster-administration/_index.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/concepts/cluster-administration/addons.md b/content/de/docs/concepts/cluster-administration/addons.md
index abf15e453f..77f098198b 100644
--- a/content/de/docs/concepts/cluster-administration/addons.md
+++ b/content/de/docs/concepts/cluster-administration/addons.md
@@ -21,17 +21,17 @@ Die Add-Ons in den einzelnen Kategorien sind alphabetisch sortiert - Die Reihenf
 
 * [ACI](https://www.github.com/noironetworks/aci-containers) bietet Container-Networking und Network-Security mit Cisco ACI.
 * [Calico](https://docs.projectcalico.org/latest/introduction/) ist ein Networking- und Network-Policy-Provider. Calico unterstützt eine Reihe von Networking-Optionen, damit Du die richtige für deinen Use-Case wählen kannst. Dies beinhaltet Non-Overlaying and Overlaying-Networks mit oder ohne BGP. Calico nutzt die gleiche Engine um Network-Policies für Hosts, Pods und (falls Du Istio & Envoy benutzt) Anwendungen auf Service-Mesh-Ebene durchzusetzen.
-* [Canal](https://github.com/tigera/canal/tree/master/k8s-install) vereint Flannel und Calico um Networking- und Network-Policies bereitzustellen.
+* [Canal](https://projectcalico.docs.tigera.io/getting-started/kubernetes/flannel/flannel) vereint Flannel und Calico um Networking- und Network-Policies bereitzustellen.
 * [Cilium](https://github.com/cilium/cilium) ist ein L3 Network- and Network-Policy-Plugin welches das transparent HTTP/API/L7-Policies durchsetzen kann. Sowohl Routing- als auch Overlay/Encapsulation-Modes werden uterstützt. Außerdem kann Cilium auf andere CNI-Plugins aufsetzen.
-* [CNI-Genie](https://github.com/Huawei-PaaS/CNI-Genie) ermöglicht das nahtlose Verbinden von Kubernetes mit einer Reihe an CNI-Plugins wie z.B. Calico, Canal, Flannel, Romana, oder Weave.
-* [Contiv](http://contiv.github.io) bietet konfigurierbares Networking (Native L3 auf BGP, Overlay mit vxlan, Klassisches L2, Cisco-SDN/ACI) für verschiedene Anwendungszwecke und auch umfangreiches Policy-Framework. Das Contiv-Projekt ist vollständig [Open Source](http://github.com/contiv). Der [installer](http://github.com/contiv/install) bietet sowohl kubeadm als auch nicht-kubeadm basierte Installationen.
+* [CNI-Genie](https://github.com/cni-genie/CNI-Genie) ermöglicht das nahtlose Verbinden von Kubernetes mit einer Reihe an CNI-Plugins wie z.B. Calico, Canal, Flannel, Romana, oder Weave.
+* [Contiv](https://contivpp.io/) bietet konfigurierbares Networking (Native L3 auf BGP, Overlay mit vxlan, Klassisches L2, Cisco-SDN/ACI) für verschiedene Anwendungszwecke und auch umfangreiches Policy-Framework. Das Contiv-Projekt ist vollständig [Open Source](http://github.com/contiv). Der [installer](http://github.com/contiv/install) bietet sowohl kubeadm als auch nicht-kubeadm basierte Installationen.
 * [Contrail](http://www.juniper.net/us/en/products-services/sdn/contrail/contrail-networking/), basierend auf [Tungsten Fabric](https://tungsten.io), ist eine Open Source, multi-Cloud Netzwerkvirtualisierungs- und Policy-Management Plattform. Contrail und Tungsten Fabric sind mit Orechstratoren wie z.B. Kubernetes, OpenShift, OpenStack und Mesos integriert und bieten Isolationsmodi für Virtuelle Maschinen, Container (bzw. Pods) und Bare Metal workloads.
 * [Flannel](https://github.com/flannel-io/flannel#deploying-flannel-manually) ist ein Overlay-Network-Provider der mit Kubernetes genutzt werden kann.
 * [Knitter](https://github.com/ZTE/Knitter/) ist eine Network-Lösung die Mehrfach-Network in Kubernetes ermöglicht.
-* [Multus](https://github.com/Intel-Corp/multus-cni) ist ein Multi-Plugin für Mehrfachnetzwerk-Unterstützung um alle CNI-Plugins (z.B. Calico, Cilium, Contiv, Flannel), zusätzlich zu SRIOV-, DPDK-, OVS-DPDK- und VPP-Basierten Workloads in Kubernetes zu unterstützen.
-* [NSX-T](https://docs.vmware.com/en/VMware-NSX-T/2.0/nsxt_20_ncp_kubernetes.pdf) Container Plug-in (NCP) bietet eine Integration zwischen VMware NSX-T und einem Orchestator wie z.B. Kubernetes. Außerdem bietet es eine Integration zwischen NSX-T und Containerbasierten CaaS/PaaS-Plattformen wie z.B. Pivotal Container Service (PKS) und OpenShift.
+* [Multus](https://github.com/k8snetworkplumbingwg/multus-cni) ist ein Multi-Plugin für Mehrfachnetzwerk-Unterstützung um alle CNI-Plugins (z.B. Calico, Cilium, Contiv, Flannel), zusätzlich zu SRIOV-, DPDK-, OVS-DPDK- und VPP-Basierten Workloads in Kubernetes zu unterstützen.
+* [NSX-T](https://docs.vmware.com/en/VMware-NSX-T-Data-Center/index.html) Container Plug-in (NCP) bietet eine Integration zwischen VMware NSX-T und einem Orchestator wie z.B. Kubernetes. Außerdem bietet es eine Integration zwischen NSX-T und Containerbasierten CaaS/PaaS-Plattformen wie z.B. Pivotal Container Service (PKS) und OpenShift.
 * [Nuage](https://github.com/nuagenetworks/nuage-kubernetes/blob/v5.1.1-1/docs/kubernetes-1-installation.rst) ist eine SDN-Plattform die Policy-Basiertes Networking zwischen Kubernetes Pods und nicht-Kubernetes Umgebungen inklusive Sichtbarkeit und Security-Monitoring bereitstellt.
-* [Romana](http://romana.io) ist eine Layer 3 Network-Lösung für Pod-Netzwerke welche auch die [NetworkPolicy API](/docs/concepts/services-networking/network-policies/) unterstützt. Details zur Installation als kubeadm Add-On sind [hier](https://github.com/romana/romana/tree/master/containerize) verfügbar.
+* [Romana](https://github.com/romana/romana) ist eine Layer 3 Network-Lösung für Pod-Netzwerke welche auch die [NetworkPolicy API](/docs/concepts/services-networking/network-policies/) unterstützt. Details zur Installation als kubeadm Add-On sind [hier](https://github.com/romana/romana/tree/master/containerize) verfügbar.
 * [Weave Net](https://www.weave.works/docs/net/latest/kube-addon/) bietet Networking and Network-Policies und arbeitet auf beiden Seiten der Network-Partition ohne auf eine externe Datenbank angwiesen zu sein.
 
 ## Service-Discovery
@@ -52,5 +52,3 @@ Die Add-Ons in den einzelnen Kategorien sind alphabetisch sortiert - Die Reihenf
 Es gibt einige weitere Add-Ons die in dem abgekündigten [cluster/addons](https://git.k8s.io/kubernetes/cluster/addons)-Verzeichnis dokumentiert sind.
 
 Add-Ons die ordentlich gewartet werden dürfen gerne hier aufgezählt werden. Wir freuen uns auf PRs!
-
-
diff --git a/content/de/docs/concepts/configuration/_index.md b/content/de/docs/concepts/configuration/_index.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/concepts/containers/_index.md b/content/de/docs/concepts/containers/_index.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/concepts/containers/images.md b/content/de/docs/concepts/containers/images.md
index d142405f06..68bc356bc0 100644
--- a/content/de/docs/concepts/containers/images.md
+++ b/content/de/docs/concepts/containers/images.md
@@ -16,7 +16,7 @@ Die `image` Eigenschaft eines Containers unterstüzt die gleiche Syntax wie die
 
 ## Aktualisieren von Images
 
-Die Standardregel für das Herunterladen von Images ist `IfNotPresent`, dies führt dazu, dass das Kubelet Images überspringt, die bereits auf einem Node vorliegen.
+Die Standardregel für das Herunterladen von Images ist `IfNotPresent`, dies führt dazu, dass das Image wird nur heruntergeladen wenn es noch nicht lokal verfügbar ist.
 Wenn sie stattdessen möchten, dass ein Image immer forciert heruntergeladen wird, können sie folgendes tun:
 
 
diff --git a/content/de/docs/concepts/extend-kubernetes/_index.md b/content/de/docs/concepts/extend-kubernetes/_index.md
index 5e389601ea..a537b745ad 100644
--- a/content/de/docs/concepts/extend-kubernetes/_index.md
+++ b/content/de/docs/concepts/extend-kubernetes/_index.md
@@ -1,4 +1,4 @@
 ---
-title: "Kubernets erweitern"
+title: "Kubernetes erweitern"
 weight: 110
 ---
diff --git a/content/de/docs/concepts/overview/_index.md b/content/de/docs/concepts/overview/_index.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/concepts/overview/what-is-kubernetes.md b/content/de/docs/concepts/overview/what-is-kubernetes.md
index 66b79d6928..c9b49eed2a 100644
--- a/content/de/docs/concepts/overview/what-is-kubernetes.md
+++ b/content/de/docs/concepts/overview/what-is-kubernetes.md
@@ -15,7 +15,7 @@ Diese Seite ist eine Übersicht über Kubernetes.
 
 Kubernetes ist eine portable, erweiterbare Open-Source-Plattform zur Verwaltung von
 containerisierten Arbeitslasten und Services, die sowohl die deklarative Konfiguration als auch die Automatisierung erleichtert.
-Es hat einen großes, schnell wachsendes Ökosystem. Kubernetes Dienstleistungen, Support und Tools sind weit verbreitet.
+Es hat ein großes, schnell wachsendes Ökosystem. Kubernetes Dienstleistungen, Support und Tools sind weit verbreitet.
 
 Google hat das Kubernetes-Projekt 2014 als Open-Source-Projekt zur Verfügung gestellt. Kubernetes baut auf anderthalb Jahrzehnten
 Erfahrung auf, die Google mit der Ausführung von Produktions-Workloads in großem Maßstab hat, kombiniert mit den besten Ideen und Praktiken der Community.
@@ -50,18 +50,18 @@ für Managementtools zu bieten, den Status von Kontrollpunkten zu ermitteln.
 
 Darüber hinaus basiert die [Kubernetes-Steuerungsebene](/docs/concepts/overview/components/) auf den gleichen APIs,
 die Entwicklern und Anwendern zur Verfügung stehen. Benutzer können ihre eigenen Controller, wie z.B.
-[Scheduler](https://github.com/kubernetes/community/blob/{{< param "githubbranch" >}}/contributors/devel/scheduler.md), mit
+[Scheduler](https://github.com/kubernetes/community/blob/master/contributors/devel/scheduler.md), mit
 ihren [eigenen APIs](/docs/concepts/api-extension/custom-resources/) schreiben, die von einem
 universellen [Kommandozeilen-Tool](/docs/user-guide/kubectl-overview/) angesprochen werden können.
 
-Dieses [Design](https://git.k8s.io/community/contributors/design-proposals/architecture/architecture.md) hat es einer Reihe anderer Systeme ermöglicht, auf Kubernetes aufzubauen.
+Dieses [Design](https://git.k8s.io/design-proposals-archive/architecture/architecture.md) hat es einer Reihe anderer Systeme ermöglicht, auf Kubernetes aufzubauen.
 
 ## Was Kubernetes nicht ist
 
 Kubernetes ist kein traditionelles, allumfassendes PaaS (Plattform als ein Service) System. Da Kubernetes nicht auf Hardware-,
 sondern auf Containerebene arbeitet, bietet es einige allgemein anwendbare Funktionen, die PaaS-Angeboten gemeinsam sind,
 wie Bereitstellung, Skalierung, Lastausgleich, Protokollierung und Überwachung.
-Kubernetes ist jedoch nicht monolithisch, und diese Standardlösungen sind optional und modular etweiterbar.
+Kubernetes ist jedoch nicht monolithisch, und diese Standardlösungen sind optional und modular erweiterbar.
 Kubernetes liefert die Bausteine für den Aufbau von Entwicklerplattformen, bewahrt aber die
 Wahlmöglichkeiten und Flexibilität der Benutzer, wo es wichtig ist.
 
@@ -79,7 +79,7 @@ Kubernetes:
   Cluster-Speichersysteme (z.B. Ceph) als eingebaute Dienste. Solche Komponenten können
   auf Kubernetes laufen und/oder von Anwendungen, die auf Kubernetes laufen, über
   portable Mechanismen wie den Open Service Broker angesprochen werden.
-* Bietet keine Konfigurationssprache bzw. kein Konfigurationssystem (z.B.[jsonnet](https://github.com/google/jsonnet)).
+* Bietet keine Konfigurationssprache bzw. kein Konfigurationssystem (z.B. [jsonnet](https://github.com/google/jsonnet)).
   Es bietet eine deklarative API, die von beliebigen Formen deklarativer Spezifikationen angesprochen werden kann.
 * Bietet keine umfassenden Systeme zur Maschinenkonfiguration, Wartung, Verwaltung oder Selbstheilung.
 
@@ -135,17 +135,17 @@ Zusammenfassung der Container-Vorteile:
 * **Dev und Ops Trennung der Bedenken**:
     Erstellen Sie Anwendungscontainer-Images nicht zum Deployment-, sondern zum Build-Releasezeitpunkt
     und entkoppeln Sie so Anwendungen von der Infrastruktur.
-* **Überwachbarkeit**
+* **Überwachbarkeit**:
     Nicht nur Informationen und Metriken auf Betriebssystemebene werden angezeigt,
     sondern auch der Zustand der Anwendung und andere Signale.
 * **Umgebungskontinuität in Entwicklung, Test und Produktion**:
     Läuft auf einem Laptop genauso wie in der Cloud.
-* **Cloud- und OS-Distribution portabilität**:
+* **Cloud- und OS-Distribution-Portabilität**:
     Läuft auf Ubuntu, RHEL, CoreOS, On-Prem, Google Kubernetes Engine und überall sonst.
 * **Anwendungsorientiertes Management**:
     Erhöht den Abstraktionsgrad vom Ausführen eines Betriebssystems auf virtueller Hardware
     bis zum Ausführen einer Anwendung auf einem Betriebssystem unter Verwendung logischer Ressourcen.
-* **Locker gekoppelte, verteilte, elastische, freie [micro-services](https://martinfowler.com/articles/microservices.html)**:
+* **Locker gekoppelte, verteilte, elastische, freie [Microservices](https://martinfowler.com/articles/microservices.html)**:
     Anwendungen werden in kleinere, unabhängige Teile zerlegt und können dynamisch bereitgestellt
     und verwaltet werden -- nicht ein monolithischer Stack, der auf einer großen Single-Purpose-Maschine läuft.
 * **Ressourcenisolierung**:
diff --git a/content/de/docs/concepts/policy/_index.md b/content/de/docs/concepts/policy/_index.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/concepts/services-networking/_index.md b/content/de/docs/concepts/services-networking/_index.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/concepts/storage/_index.md b/content/de/docs/concepts/storage/_index.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/concepts/workloads/pods/_index.md b/content/de/docs/concepts/workloads/pods/_index.md
index 956190e6c7..eb3dcd971f 100644
--- a/content/de/docs/concepts/workloads/pods/_index.md
+++ b/content/de/docs/concepts/workloads/pods/_index.md
@@ -248,7 +248,7 @@ einige Einschränkungen:
   Eintrag zur Liste `metadata.finalizers` hinzugefügt werden.
 - Pod-Updates dürfen keine Felder ändern, die Ausnahmen sind 
   `spec.containers[*].image`,
- `spec.initContainers[*].image`,` spec.activeDeadlineSeconds` oder
+ `spec.initContainers[*].image`, `spec.activeDeadlineSeconds` oder
  `spec.tolerations`. Für `spec.tolerations` kannnst du nur neue Einträge 
   hinzufügen.
 - Für `spec.activeDeadlineSeconds` sind nur zwei Änderungen erlaubt:
diff --git a/content/de/docs/contribute/_index.md b/content/de/docs/contribute/_index.md
index db7c6687ab..e1ddd56875 100644
--- a/content/de/docs/contribute/_index.md
+++ b/content/de/docs/contribute/_index.md
@@ -1,6 +1,6 @@
 ---
 content_type: concept
-title: Zur Kubernets-Dokumentation beitragen
+title: Zur Kubernetes-Dokumentation beitragen
 linktitle: Mitmachen
 main_menu: true
 weight: 80
diff --git a/content/de/docs/contribute/localization.md b/content/de/docs/contribute/localization.md
index d40f941776..828865d5f5 100644
--- a/content/de/docs/contribute/localization.md
+++ b/content/de/docs/contribute/localization.md
@@ -22,30 +22,30 @@ Da Mitwirkende nicht ihren eigenen Pull Request freigeben können, brauchst du m
 
 Alle Lokalisierungsteams müssen sich mit ihren eigenen Ressourcen selbst tragen. Die Kubernetes-Website ist gerne bereit, deine Arbeit zu beherbergen, aber es liegt an dir, sie zu übersetzen.
 
-### Finden deinen Zwei-Buchstaben-Sprachcode
+### Ermittlung deines Zwei-Buchstaben-Sprachcodes
 
 Rufe den [ISO 639-1 Standard](https://www.loc.gov/standards/iso639-2/php/code_list.php) auf und finde deinen Zwei-Buchstaben-Ländercode zur Lokalisierung. Zum Beispiel ist der Zwei-Buchstaben-Code für Korea `ko`.
 
-### Duplizieren und klonen des Repositories
+### Duplizieren und Klonen des Repositories
 
-Als erstes [erstells du dir deine eigenes Duplikat](/docs/contribute/new-content/new-content/#fork-the-repo) vom [kubernetes/website] Repository.
+Als erstes [erstellst du dir deine eigenes Duplikat](/docs/contribute/new-content/new-content/#fork-the-repo) vom [kubernetes/website] Repository.
 
-Dann klonst du das Duplikat und `cd` hinein:
+Dann klonst du das Duplikat und wechselst in das neu erstellte Verzeichnis:
 
 ```shell
 git clone https://github.com/<username>/website
 cd website
 ```
 
-### Eröffne ein Pull Request
+### Eröffnen eines Pull Requests
 
 Als nächstes [eröffnest du einen Pull Request](/docs/contribute/new-content/open-a-pr/#open-a-pr) (PR) um eine Lokalisierung zum `kubernetes/website` Repository hinzuzufügen.
 
-Der PR muss die [minimalen Inhaltsanforderungen](#mindestanforderungen) erfüllen bevor dieser genehmigt werden kann.
+Der PR muss die [minimalen Inhaltsanforderungen](#mindestanforderungen) erfüllen, bevor dieser genehmigt werden kann.
 
-Wie der PR für eine neue Lokalisierung aussieht kannst du dir an dem PR für die [Französische Dokumentation](https://github.com/kubernetes/website/pull/12548) ansehen.
+Wie der PR für eine neue Lokalisierung aussieht, kannst du dir an dem PR für die [Französische Dokumentation](https://github.com/kubernetes/website/pull/12548) ansehen.
 
-### Trete der Kubernetes GitHub Organisation bei
+### Tritt der Kubernetes GitHub Organisation bei
 
 Sobald du eine Lokalisierungs-PR eröffnet hast, kannst du Mitglied der Kubernetes GitHub Organisation werden. Jede Person im Team muss einen eigenen [Antrag auf Mitgliedschaft in der Organisation](https://github.com/kubernetes/org/issues/new/choose) im `kubernetes/org`-Repository erstellen.
 
@@ -94,9 +94,9 @@ contentDir = "content/de"
 weight = 3
 ```
 
-Wenn du deinem Block einen Parameter `weight` zuweist, suche den Sprachblock mit dem höchsten Gewicht und addiere  1 zu diesem Wert.
+Wenn du deinem Block einen Parameter `weight` zuweist, suche den Sprachblock mit dem höchsten Gewicht und addiere 1 zu diesem Wert.
 
-Weitere Informationen zu Hugos Multilingualen Support findest du unter "[Multilingual Mode](https://gohugo.io/content-management/multilingual/)" auf in der Hugo Dokumentation.
+Weitere Informationen zu Hugos multilingualem Support findest du unter "[Multilingual Mode](https://gohugo.io/content-management/multilingual/)" auf in der Hugo Dokumentation.
 
 ### Neuen Lokalisierungsordner erstellen
 
@@ -213,7 +213,7 @@ Die neueste Version ist {{< latest-version >}}, so dass der neueste Versionszwei
 
 ### Seitenverlinkung in der Internationalisierung
 
-Lokalisierungen müssen den Inhalt von [`i18n/de.toml`](https://github.com/kubernetes/website/blob/master/i18n/en.toml) in einer neuen sprachspezifischen Datei enthalten. Als Beispiel: `i18n/de.toml`.
+Lokalisierungen müssen den Inhalt von [`i18n/de.toml`](https://github.com/kubernetes/website/blob/main/i18n/en.toml) in einer neuen sprachspezifischen Datei enthalten. Als Beispiel: `i18n/de.toml`.
 
 Füge eine neue Lokalisierungsdatei zu `i18n/` hinzu. Zum Beispiel mit Deutsch (`de`):
 
@@ -278,7 +278,7 @@ Die Teams müssen den lokalisierten Inhalt in demselben Versionszweig zusammenf
 
 Ein Genehmiger muss einen Entwicklungszweig aufrechterhalten, indem er seinen Quellzweig auf dem aktuellen Stand hält und Merge-Konflikte auflöst. Je länger ein Entwicklungszweig geöffnet bleibt, desto mehr Wartung erfordert er in der Regel. Ziehe in Betracht, regelmäßig Entwicklungszweige zusammenzuführen und neue zu eröffnen, anstatt einen extrem lang laufenden Entwicklungszweig zu unterhalten.
 
-Zu Beginn jedes Team-Meilensteins ist es hilfreich, ein Problem [Vergleich der Upstream-Änderungen](https://github.com/kubernetes/website/blob/master/scripts/upstream_changes.py) zwischen dem vorherigen Entwicklungszweig und dem aktuellen Entwicklungszweig zu öffnen.
+Zu Beginn jedes Team-Meilensteins ist es hilfreich, ein Problem [Vergleich der Upstream-Änderungen](https://github.com/kubernetes/website/blob/main/scripts/upstream_changes.py) zwischen dem vorherigen Entwicklungszweig und dem aktuellen Entwicklungszweig zu öffnen.
 
  Während nur Genehmiger einen neuen Entwicklungszweig eröffnen und Pull-Anfragen zusammenführen können, kann jeder eine Pull-Anfrage für einen neuen Entwicklungszweig eröffnen. Es sind keine besonderen Genehmigungen erforderlich.
 
@@ -301,5 +301,3 @@ Sobald eine Lokalisierung die Anforderungen an den Arbeitsablauf und die Mindest
 
 - Die Sprachauswahl auf der Website aktivieren
 - Die Verfügbarkeit der Lokalisierung über die Kanäle der [Cloud Native Computing Foundation](https://www.cncf.io/about/) (CNCF), einschließlich des [Kubernetes Blogs](https://kubernetes.io/blog/) veröffentlichen.
-
-
diff --git a/content/de/docs/contribute/participate/_index.md b/content/de/docs/contribute/participate/_index.md
new file mode 100644
index 0000000000..5b39657764
--- /dev/null
+++ b/content/de/docs/contribute/participate/_index.md
@@ -0,0 +1,94 @@
+---
+title: Bei SIG Docs mitmachen
+content_type: concept
+weight: 60
+card:
+  name: contribute
+  weight: 60
+---
+
+<!-- overview -->
+
+Die SIG Docs ist eine der [Special Interest Groups](https://github.com/kubernetes/community/blob/master/sig-list.md) (Fachspezifischen Interessengruppen) innerhalb des Kubernetes-Projekts, die sich auf das Schreiben, Aktualisieren und Pflegen der Dokumentation für Kubernetes als Ganzes konzentriert. Weitere Informationen über die SIG findest du unter SIG Docs im [GitHub Repository der Community](https://github.com/kubernetes/community/tree/master/sig-docs).
+
+SIG Docs begrüßt Inhalte und Bewertungen von allen Mitwirkenden. Jeder kann einen
+Pull Request (PR) eröffnen, und jeder ist willkommen, Fragen zum Inhalt zu stellen oder Kommentare
+zu laufenden Pull Requests abzugeben.
+
+Du kannst dich ausserdem als [Member](/de/docs/contribute/participate/roles-and-responsibilities/#member),
+[Reviewer](/de/docs/contribute/participate/roles-and-responsibilities/#reviewer), oder
+[Approver](/de/docs/contribute/participate/roles-and-responsibilities/#approver) beteiligen.
+Diese Rollen erfordern einen erweiterten Zugriff und bringen bestimmte Verantwortlichkeiten zur Genehmigung und Bestätigung von Änderungen mit sich.
+Unter [community-membership](https://github.com/kubernetes/community/blob/master/community-membership.md) findest du weitere Informationen darüber, wie die Mitgliedschaft in der Kubernetes-Community funktioniert.
+
+Der Rest dieses Dokuments umreißt einige spezielle Vorgehensweisen dieser Rollen innerhalb von SIG Docs, die für die Pflege eines der öffentlichsten Aushängeschilder von Kubernetes verantwortlich ist - die Kubernetes-Website und die Dokumentation.
+
+<!-- body -->
+## SIG Docs Vorstand
+
+Jede SIG, auch die SIG Docs, wählt ein oder mehrere SIG-Mitglieder, die als
+Vorstand fungieren. Sie sind die Kontaktstellen zwischen der SIG Docs und anderen Teilen der
+der Kubernetes-Organisation. Sie benötigen umfassende Kenntnisse über die Struktur
+des Kubernetes-Projekts als Ganzes und wie SIG Docs darin arbeitet. Hier findest alle weiteren Informationen zu den aktuellen Vorsitzenden und der [Leitung](https://github.com/kubernetes/community/tree/master/sig-docs#leadership).
+
+## SIG Docs-Teams und Automatisierung
+
+Die Automatisierung in SIG Docs stützt sich auf zwei verschiedene Mechanismen:
+GitHub-Teams und OWNERS-Dateien.
+
+### GitHub Teams
+
+Es gibt zwei Kategorien von SIG Docs [Teams](https://github.com/orgs/kubernetes/teams?query=sig-docs) auf GitHub:
+
+- `@sig-docs-{language}-owners` sind Genehmiger und Verantwortliche
+- `@sig-docs-{language}-reviewers` sind Reviewer
+
+Jede Gruppe kann in GitHub-Kommentaren mit ihrem `@name` referenziert werden, um mit allen Mitgliedern dieser Gruppe zu kommunizieren.
+
+Manchmal überschneiden sich Prow- und GitHub-Teams, ohne eine genaue Übereinstimmung. Für die Zuordnung von Issues, Pull-Requests und zur Unterstützung von PR-Genehmigungen verwendet die
+Automatisierung die Informationen aus den `OWNERS`-Dateien.
+
+### OWNERS Dateien und Front-Matter
+
+Das Kubernetes-Projekt verwendet ein Automatisierungstool namens prow für die Automatisierung im Zusammenhang mit GitHub-Issues und Pull-Requests. 
+Das [Kubernetes-Website-Repository](https://github.com/kubernetes/website) verwendet zwei [prow-Plugins](https://github.com/kubernetes/test-infra/tree/master/prow/plugins):
+
+- blunderbuss
+- approve
+
+Diese beiden Plugins nutzen die
+[OWNERS](https://github.com/kubernetes/website/blob/main/OWNERS) und
+[OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS_ALIASES)
+Dateien auf der obersten Ebene des GitHub-Repositorys `kubernetes/website`, um zu steuern
+wie prow innerhalb des Repositorys arbeitet.
+
+Eine OWNERS-Datei enthält eine Liste von Personen, die SIG Docs-Reviewer und
+Genehmiger sind. OWNERS-Dateien können auch in Unterverzeichnissen existieren und bestimmen, wer
+Dateien in diesem Unterverzeichnis und seinen Unterverzeichnissen als Gutachter oder
+Genehmiger bestätigen darf. Weitere Informationen über OWNERS-Dateien im Allgemeinen findest du unter
+[OWNERS](https://github.com/kubernetes/community/blob/master/contributors/guide/owners.md).
+
+Außerdem kann eine einzelne Markdown-Datei in ihrem Front-Matter (Vorspann) Reviewer und Genehmiger auflisten.
+Entweder durch Auflistung einzelner GitHub-Benutzernamen oder GitHub-Gruppen.
+
+Die Kombination aus OWNERS-Dateien und Front-Matter in Markdown-Dateien bestimmt, welche Empfehlungen PR-Eigentümer von automatisierten Systemen erhalten, und wen sie um eine technische und redaktionelle Überprüfung ihres PRs bitten sollen.
+## So funktioniert das Zusammenführen
+
+Wenn ein Pull Request mit der Branch (Ast) zusammengeführt wird, in dem der Inhalt bereitgestellt werden soll, wird dieser Inhalt auf http://kubernetes.io veröffentlicht. Um sicherzustellen, dass die Qualität der veröffentlichten Inhalte hoch ist, beschränken wir das Zusammenführen von Pull Requests auf
+SIG Docs Freigabeberechtigte. So funktioniert es:
+
+- Wenn eine Pull-Anfrage sowohl das `lgtm`- als auch das `approve`-Label hat, kein `hold`-Label hat, 
+  und alle Tests bestanden sind, wird der Pull Request automatisch  zusammengeführt.
+- Jedes Kubernetes-Mitglied kann das `lgtm`-Label hinzufügen, indem es einen `/lgtm`-Kommentar hinzufügt.
+- Mitglieder der Kubernetes-Organisation und SIG Docs-Genehmiger können kommentieren, um das automatische Zusammenführen eines Pull Requests zu verhindern (durch Hinzufügen eines `/hold`-Kommentars
+  kann ein vorheriger `/lgtm`-Kommentar zurückgehalten werden).
+- Nur SIG Docs-Genehmiger können einen Pull Request zusammenführen indem sie einen `/approve` Kommentar hinzufügen. 
+  Einige Genehmiger übernehmen auch weitere spezielle Rollen, wie zum Beispiel [PR Wrangler](/docs/contribute/participate/pr-wranglers/) oder [SIG Docs Vorsitzende](#sig-docs-chairperson).
+
+## {{% heading "whatsnext" %}}
+
+Weitere Informationen über die Mitarbeit an der Kubernetes-Dokumentation findest du unter:
+
+- [Neue Inhalte beisteuern](/docs/contribute/new-content/overview/)
+- [Inhalte überprüfen](/docs/contribute/review/reviewing-prs)
+- [Styleguide für die Dokumentation](/docs/contribute/style/)
diff --git a/content/de/docs/contribute/participate/pr-wranglers.md b/content/de/docs/contribute/participate/pr-wranglers.md
new file mode 100644
index 0000000000..1a184fcf65
--- /dev/null
+++ b/content/de/docs/contribute/participate/pr-wranglers.md
@@ -0,0 +1,81 @@
+---
+title: PR Wranglers
+content_type: concept
+weight: 20
+---
+
+<!-- overview -->
+
+SIG Docs [approvers](/docs/contribute/participate/roles-and-responsibilities/#approvers) übernehmen einwöchige Schichten um die [Pull Requests](https://github.com/kubernetes/website/wiki/PR-Wranglers) des Repositories zu verwalten.
+
+Dieser Abschnitt behandelt die Aufgaben eines PR-Wranglers. Weitere Informationen über gute Reviews findest du unter [Überprüfen von Änderungen](/docs/contribute/review/).
+<!-- body -->
+
+## Aufgaben
+
+Tägliche Aufgaben in einer einwöchigen Schicht als PR Wrangler:
+
+- Sortiere und kennzeichne täglich eingehende Probleme. Siehe [Einstufung und Kategorisierung von Problemen](/docs/contribute/review/for-approvers/#triage-and-categorize-issues) für Richtlinien, wie SIG Docs Metadaten verwendet.
+- Überprüfe [offene Pull Requests](https://github.com/kubernetes/website/pulls) auf Qualität und Einhaltung der [Style](/docs/contribute/style/style-guide/) und [Content](/docs/contribute/style/content-guide/) Leitfäden.
+    - Beginne mit den kleinsten PRs (`size/XS`) und ende mit den größten (`size/XXL`). Überprüfe so viele PRs, wie du kannst.
+- Achte darauf, dass die PR-Autoren den [CLA](https://github.com/kubernetes/community/blob/master/CLA.md) unterschreiben.
+    - Verwende [dieses](https://github.com/zparnold/k8s-docs-pr-botherer) Skript, um diejenigen, die den CLA noch nicht unterschrieben haben, daran zu erinnern, dies zu tun.
+- Gib Feedback zu den Änderungen und bitte die Mitglieder anderer SIGs um technische Überprüfung.
+    - Gib inline Vorschläge für die vorgeschlagenen inhaltlichen Änderungen in den PR ein.
+    - Wenn du den Inhalt überprüfen musst, kommentiere den PR und bitte um weitere Details.
+    - Vergebe das/die entsprechende(n) `sig/`-Label.
+    - Falls nötig, weise die Reviever aus dem Block `revievers:` im Vorspann der Datei zu.
+- Benutze den Kommentar `/approve`, um einen PR zum Zusammenführen zu genehmigen. Führe den PR zusammen, wenn er inhaltlich und technisch einwandfrei ist.
+    - PRs sollten einen `/lgtm`-Kommentar von einem anderen Mitglied haben, bevor sie zusammengeführt werden.
+    - Erwäge, technisch korrekte Inhalte zu akzeptieren, die nicht den [Stilrichtlinien](/docs/contribute/style/style-guide/) entsprechen. Eröffne ein neues Thema mit dem Label `good first issue`, um Stilprobleme anzusprechen.
+
+### Hilfreiche GitHub-Anfragen für Wranglers
+
+Die folgenden Anfragen sind beim Wrangling hilfreich.
+Wenn du diese Anfragen abgearbeitet hast, ist die verbleibende Liste der zu prüfenden PRs meist klein.
+Diese Anfragen schließen Lokalisierungs-PRs aus. Alle Anfragen beziehen sich auf den `main`-Branch, außer der letzten.
+
+- [Kein CLA, nicht zusammenfürbar](https://github.com/kubernetes/website/pulls?q=is%3Aopen+ist%3Apr+label%3A%22cncf-cla%3A+no%22+-label%3A%22do-not-merge%2Fwork-in-progress%22+-label%3A%22do-not-merge%2Fhold%22+label%3Alanguage%2Fen):
+  Erinnere den Beitragenden daran, den CLA zu unterschreiben. Wenn sowohl der Bot als auch ein Mensch sie daran erinnert haben, schließe
+  den PR und erinnere die Autoren daran, dass sie ihn erneut öffnen können, nachdem sie den CLA unterschrieben haben.
+  **Überprüfe keine PRs, deren Autoren den CLA nicht unterschrieben haben!**
+- [Benötigt LGTM](https://github.com/kubernetes/website/pulls?q=is%3Aopen+ist%3Apr+-label%3A%22cncf-cla%3A+kein%22+-label%3Ado-not-merge%2Fwork-in-progress+-label%3Ado-not-merge%2Fhold+label%3Alanguage%2Fen+-label%3Algtm):
+  Listet PRs auf, die ein LGTM von einem Mitglied benötigen. Wenn der PR eine technische Überprüfung benötigt, schalte einen der vom Bot vorgeschlagenen Reviewer ein. Wenn der Inhalt überarbeitet werden muss, füge Vorschläge und Feedback in-line hinzu.
+- [Hat LGTM, braucht die Zustimmung von Docs](https://github.com/kubernetes/website/pulls?q=is%3Aopen+is%3Apr+-label%3Ado-not-merge%2Fwork-in-progress+-label%3Ado-not-merge%2Fhold+label%3Alanguage%2Fen+label%3Algtm+):
+  Listet PRs auf, die einen `/approve`-Kommentar benötigen, um zusammengeführt zu werden.
+- [Quick Wins](https://github.com/kubernetes/website/pulls?utf8=%E2%9C%93&q=is%3Apr+is%3Aopen+base%3Amain+-label%3A%22do-not-merge%2Fwork-in-progress%22+-label%3A%22do-not-merge%2Fhold%22+label%3A%22cncf-cla%3A+yes%22+label%3A%22size%2FXS%22+label%3A%22language%2Fen%22): Listet PRs gegen den Hauptzweig auf, die nicht eindeutig blockiert sind. (ändere "XS" in der Größenbezeichnung, wenn du dich durch die PRs arbeitest [XS, S, M, L, XL, XXL]).
+- [Nicht gegen den `main`-Branch](https://github.com/kubernetes/website/pulls?q=is%3Aopen+ist%3Apr+label%3Alanguage%2Fen+-base%3Amain): Wenn der PR gegen einen `dev-`Ast gerichtet ist, ist er für eine kommende Veröffentlichung. Weise diesen dem [Docs Release Manager](https://github.com/kubernetes/sig-release/tree/master/release-team#kubernetes-release-team-roles) zu: `/assign @<manager's_github-username>`. Wenn der PR gegen einen alten Ast gerichtet ist, hilf dem Autor herauszufinden, ob er auf den richtigen Ast gerichtet ist.
+
+### Hilfreiche Prow-Befehle für Wranglers
+
+```
+# Englisches Label hinzufügen
+/language en
+
+# füge dem PR ein Squash-Label hinzu, wenn es mehr als einen Commit gibt
+/label tide/merge-method-squash
+
+# einen PR ueber Prow neu betiteln (z.B. als Work-in-Progress [WIP])
+/retitle [WIP] <TITLE>
+```
+
+### Wann sind Pull Requests zu schließen
+
+Reviews und Genehmigungen sind ein Mittel, um unsere PR-Warteschlange kurz und aktuell zu halten. Ein weiteres Mittel ist das Schließen.
+
+PRs werden geschlossen, wenn:
+- Der Autor den CLA seit zwei Wochen nicht unterschrieben hat.
+
+    Die Autoren können den PR wieder öffnen, nachdem sie den CLA unterschrieben haben. Dies ist ein risikoarmer Weg, um sicherzustellen, dass nichts zusammengeführt wird, ohne dass ein CLA unterzeichnet wurde.
+
+- Der Autor hat seit Zwei oder mehr Wochen nicht auf Kommentare oder Feedback geantwortet.
+
+Hab keine Angst, Pull Requests zu schließen. Mitwirkende können sie leicht wieder öffnen und die laufenden Arbeiten fortsetzen. Oft ist es die Nachricht über die Schließung, die einen Autor dazu anspornt, seinen Beitrag wieder aufzunehmen und zu beenden.
+
+Um eine Pull-Anfrage zu schließen, hinterlasse einen `/close`-Kommentar zu dem PR.
+
+{{< note >}}
+
+Der [`k8s-ci-robot`](https://github.com/k8s-ci-robot) Bot markiert Themen nach 90 Tagen Inaktivität als veraltet. Nach weiteren 30 Tagen markiert er Issues als faul und schließt sie.  PR-Beauftragte sollten Themen nach 14-30 Tagen Inaktivität schließen.
+
+{{< /note >}}
diff --git a/content/de/docs/contribute/participate/roles-and-responsibilities.md b/content/de/docs/contribute/participate/roles-and-responsibilities.md
new file mode 100644
index 0000000000..66bf0c7891
--- /dev/null
+++ b/content/de/docs/contribute/participate/roles-and-responsibilities.md
@@ -0,0 +1,227 @@
+---
+title: Rollen und Verantwortlichkeiten
+content_type: concept
+weight: 10
+---
+
+<!-- overview -->
+
+Jeder kann zu Kubernetes beitragen. Wenn deine Beiträge zu SIG Docs wachsen, kannst du dich für verschiedene Stufen der Mitgliedschaft in der Community bewerben.
+Diese Rollen ermöglichen es dir, mehr Verantwortung innerhalb der Gemeinschaft zu übernehmen.
+Jede Rolle erfordert mehr Zeit und Engagement. Die Rollen sind:
+
+- Jeder: kann regelmäßig zur Kubernetes-Dokumentation beitragen
+- Member: können Issues zuweisen und einstufen und Pull Requests unverbindlich prüfen
+- Reviewer: können die Überprüfung von Dokumentations-Pull-Requests leiten und für die Qualität einer Änderung bürgen
+- Approver: können die Überprüfung von Dokumentations- und Merge-Änderungen leiten
+
+<!-- body -->
+
+## Jeder
+
+Jeder mit einem GitHub-Konto kann zu Kubernetes beitragen. SIG Docs heißt alle neuen Mitwirkenden willkommen!
+
+Jeder kann:
+
+- Ein Problem in einem beliebigen [Kubernetes](https://github.com/kubernetes/)
+  Repository, einschließlich
+  [`kubernetes/website`](https://github.com/kubernetes/website) melden
+- Unverbindliches Feedback zu einem Pull Request geben
+- Zu einer Lokalisierung beitragen
+- Verbesserungen auf [Slack](https://slack.k8s.io/) oder der
+  [SIG docs mailing list](https://groups.google.com/forum/#!forum/kubernetes-sig-docs) vorschlagen.
+
+Nach dem [Signieren des CLA](/docs/contribute/new-content/overview/#sign-the-cla) kann jeder auch:
+
+- eine Pull-Anfrage öffnen, um bestehende Inhalte zu verbessern, neue Inhalte hinzuzufügen oder einen Blogbeitrag oder eine Fallstudie zu schreiben
+- Diagramme, Grafiken und einbettbare Screencasts und Videos erstellen
+
+Weitere Informationen findest du unter [neue Inhalte beisteuern](/docs/contribute/new-content/).
+
+## Member
+
+Ein Member (Mitglied) ist jemand, der bereits mehrere Pull Requests an
+`kubernetes/website` eingereicht hat. Mitglieder sind ein Teil der
+[Kubernetes GitHub Organisation](https://github.com/kubernetes).
+
+Member können:
+
+- Alles tun, was unter [Jeder](#jeder) aufgeführt ist
+- Den Kommentar `/lgtm` verwenden, um einem Pull Request das Label LGTM (looks good to me) hinzuzufügen
+
+  {{< note >}}
+  Die Verwendung von `/lgtm` löst eine Automatisierung aus. Wenn du eine unverbindliche
+  Zustimmung geben willst, funktioniert der Kommentar "LGTM" auch!
+  {{< /note >}}
+
+- Verwende den Kommentar `/hold`, um das Zusammenführen eines Pull Requests zu blockieren.
+- Benutze den Kommentar `/assign`, um einem Pull Request einen Reviewer zuzuweisen.
+- Unverbindliche Überprüfung von Pull Requests
+- Nutze die Automatisierung, um Issues zu sortieren und zu kategorisieren
+- Neue Funktionen dokumentieren
+
+### Mitglied werden
+
+Du kannst ein Mitglied werden, nachdem du mindestens 5 substantielle Pull Requests eingereicht hast und die anderen
+[Anforderungen](https://github.com/kubernetes/community/blob/master/community-membership.md#member) erforderst: 
+
+1. Finde zwei [Reviewer](#reviewers) oder [Approver](#approvers), die deine Mitgliedschaft [sponsern](/docs/contribute/advanced#sponsor-a-new-contributor).
+
+   Bitte um Sponsoring im [#sig-docs channel on Slack](https://kubernetes.slack.com) oder auf der
+   [SIG Docs Mailingliste](https://groups.google.com/forum/#!forum/kubernetes-sig-docs).
+
+   {{< note >}}
+   Schicke keine direkte E-Mail oder Slack-Direktnachricht an ein einzelnes
+   SIG Docs-Mitglied. Du musst das Sponsoring beantragen, bevor du deine Bewerbung einreichst.
+   {{< /note >}}
+
+1. Eröffne ein GitHub-Issue im
+   [`kubernetes/org`](https://github.com/kubernetes/org/) Repository. Verwende dabei das
+   **Organization Membership Request** issue template.
+
+1. Informiere deine Sponsoren über das GitHub-Issue. Du kannst entweder:
+   - Ihren GitHub-Benutzernamen in deinem Issue (`@<GitHub-Benutzername>`) erwähnen
+   - Ihnen den Issue-Link über Slack oder per E-Mail senden.
+
+     Die Sponsoren werden deine Anfrage mit einer "+1"-Stimme genehmigen. Sobald deine Sponsoren
+     genehmigen, fügt dich ein Kubernetes-GitHub-Admin als Mitglied hinzu.
+     Herzlichen Glückwunsch!
+
+     Wenn dein Antrag auf Mitgliedschaft nicht angenommen wird, erhältst du eine Rückmeldung.
+     Nachdem du dich mit dem Feedback auseinandergesetzt hast, kannst du dich erneut bewerben.
+
+1. Nimm die Einladung zur Kubernetes GitHub Organisation in deinem E-Mail-Konto an.
+
+   {{< note >}}
+   GitHub sendet die Einladung an die Standard-E-Mail-Adresse in deinem Konto.
+   {{< /note >}}
+
+## Reviewer
+
+Reviewer (Gutachteren) sind dafür verantwortlich, offene Pull Requests zu überprüfen. Anders als bei den Mitgliedern
+musst du auf das Feedback der Prüfer eingehen. Reviewer sind Mitglieder des
+[@kubernetes/sig-docs-{language}-reviews](https://github.com/orgs/kubernetes/teams?query=sig-docs)
+GitHub-Teams.
+
+Gutachteren können:
+
+- Alles tun, was unter [Jeder](#jeder) und [Member](#member) aufgeführt ist
+- Pull Requests überprüfen und verbindliches Feedback geben
+
+  {{< note >}}
+  Um unverbindliches Feedback zu geben, stellst du deinen Kommentaren eine Formulierung wie "Optional:" voran.
+  {{< /note >}}
+
+- Bearbeite benutzerseitige Zeichenfolgen im Code
+- Verbessere Code-Kommentare
+
+### Zuweisung von Reviewern zu Pull Requests
+
+Die Automatisierung weist allen Pull Requests Reviewer zu. Du kannst eine
+Review von einer bestimmten Person anfordern, indem du einen Kommentar schreibst: `/assign
+[@_github_handle]`.
+
+Wenn der zugewiesene Prüfer den PR nicht kommentiert hat, kann ein anderer Prüfer
+einspringen. Du kannst bei Bedarf auch technische Prüfer zuweisen.
+
+### Verwendung von `/lgtm`
+
+LGTM steht für "Looks good to me" und zeigt an, dass ein Pull Request
+technisch korrekt und bereit zum Zusammenführen ist. Alle PRs brauchen einen `/lgtm` Kommentar von einem
+Reviewer und einen `/approve` Kommentar von einem Approver, um zusammengeführt zu werden.
+
+Ein `/lgtm`-Kommentar vom Reviewer ist verbindlich und löst eine Automatisierung aus, die das `lgtm`-Label hinzufügt.
+
+### Reviewer werden
+
+Wenn du die
+[Anforderungen](https://github.com/kubernetes/community/blob/master/community-membership.md#reviewer) erfüllst,
+kannst du ein SIG Docs-Reviewer werden. Reviewer in anderen SIGs müssen sich gesondert für den Reviewer-Status in SIG Docs bewerben.
+
+So bewirbst du dich:
+
+1. Eröffne einen Pull Request, in dem du deinen GitHub-Benutzernamen in einen Abschnitt der
+   [OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS) Datei
+   im `kubernetes/website` Repository hinzufügt.
+
+   {{< note >}}
+   Wenn du dir nicht sicher bist, wo du dich hinzufügen sollst, füge dich zu `sig-docs-de-reviews` hinzu.
+   {{< /note >}}
+
+1. Weise den PR einem oder mehreren SIG-Docs-Genehmigern zu (Benutzernamen, die unter
+   `sig-docs-{language}-owners` aufgelisted sind).
+   Wenn der PR genehmigt wurde, fügt dich ein SIG Docs-Lead dem entsprechenden GitHub-Team hinzu. Sobald du hinzugefügt bist,
+   wird [@k8s-ci-robot](https://github.com/kubernetes/test-infra/tree/master/prow#bots-home)
+   dich als Reviewer für neue Pull Requests vorschlagen und zuweisen.
+
+
+## Approver
+
+
+Approver (Genehmiger) prüfen und genehmigen Pull Requests zum Zusammenführen. Genehmigende sind Mitglieder des
+[@kubernetes/sig-docs-{language}-owners](https://github.com/orgs/kubernetes/teams/?query=sig-docs)
+GitHub-Teams.
+
+Genehmigende können Folgendes tun:
+
+- Alles, was unter [Jeder](#jeder), [Member](#member) und [Reviewer](#reviewes) aufgeführt ist
+- Inhalte von Mitwirkenden veröffentlichen, indem sie Pull Requests mit dem Kommentar `/approve` genehmigen und zusammenführen
+- Verbesserungen für den Style Guide vorschlagen
+- Verbesserungsvorschläge für Docs-Tests einbringen
+- Verbesserungsvorschläge für die Kubernetes-Website oder andere Tools machen
+
+Wenn der PR bereits einen `/lgtm` hat, oder wenn der Genehmigende ebenfalls mit
+`/lgtm` kommentiert, wird der PR automatisch zusammengeführt. Ein SIG Docs-Genehmiger sollte nur ein
+`/lgtm` für eine Änderung hinterlassen, die keine weitere technische Überprüfung erfordert.
+
+### Pull Requests genehmigen
+
+Genehmiger und SIG Docs-Leads sind die Einzigen, die Pull Requests
+in das Website-Repository aufnehmen. Damit sind bestimmte Verantwortlichkeiten verbunden.
+
+- Genehmigende können den Befehl `/approve` verwenden, der PRs in das Repository einfügt.
+
+  {{< warning >}}
+  Ein unvorsichtiges Zusammenführen kann die Website lahmlegen, also sei dir sicher, dass du es auch so meinst, wenn du etwas zusammenführst.
+  {{< /warning >}}
+
+- Vergewissere dich, dass die vorgeschlagenen Änderungen den
+  [Beitragsrichtlinien](/docs/contribute/style/content-guide/#contributing-content) entsprechen.
+
+  Wenn du jemals eine Frage hast oder dir bei etwas nicht sicher bist, fordere einfach Hilfe an, um eine zusätzliche Überprüfung zu erhalten.
+
+- Vergewissere dich, dass die Netlify-Tests erfolgreich sind, bevor du einen PR mittels `/approve` genehmigst.
+
+    <img src="/images/docs/contribute/netlify-pass.png" width="75%" alt="Netlify-Tests müssen vor der Freigabe bestanden werden" />
+
+- Besuche die Netlify-Seitenvorschau für den PR, um sicherzustellen, dass alles gut aussieht, bevor du es genehmigst.
+
+- Nimm am [PR Wrangler Rotationsplan](https://github.com/kubernetes/website/wiki/PR-Wranglers)
+  für wöchentliche Rotationen teil. SIG Docs erwartet von allen Genehmigern, dass sie an dieser
+  Rotation teilnehmen. Siehe [PR-Wranglers](/docs/contribute/participate/pr-wranglers/).
+  für weitere Details.
+
+### Approver werden
+
+Wenn du die [Anforderungen](https://github.com/kubernetes/community/blob/master/community-membership.md#approver) erfüllst,
+kannst du ein SIG Docs Approver werden. Genehmigende in anderen SIGs müssen sich separat für den Approver-Status in SIG Docs bewerben.
+
+So bewirbst du dich:
+
+1. Eröffne eine Pull-Anfrage, in der du dich in einem Abschnitt der
+   [OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS)
+   Datei im `kubernetes/website` Repository hinzuzufügen.
+
+    {{< note >}}
+    Wenn du dir nicht sicher bist, wo du dich hinzufügen sollst, füge dich zu `sig-docs-de-owners` hinzu.
+    {{< /note >}}
+
+2. Weise den PR einem oder mehreren aktuellen SIG Docs Genehmigern zu.
+
+Wenn der PR genehmigt wurde, fügt dich ein SIG Docs-Lead dem entsprechenden GitHub-Team hinzu. Sobald du hinzugefügt bist,
+wird [@k8s-ci-robot](https://github.com/kubernetes/test-infra/tree/master/prow#bots-home)
+dich als Reviewer für neue Pull Requests vorschlagen und zuweisen.
+
+## {{% heading "whatsnext" %}}
+
+-  Erfahre mehr über [PR-Wrangling](/de/docs/contribute/participate/pr-wranglers/), eine Rolle, die alle Genehmiger im Wechsel übernehmen.
diff --git a/content/de/docs/reference/_index.md b/content/de/docs/reference/_index.md
index 7ffa9c04c9..9df5aa53ba 100644
--- a/content/de/docs/reference/_index.md
+++ b/content/de/docs/reference/_index.md
@@ -56,6 +56,6 @@ Offiziell unterstützte Clientbibliotheken:
 
 ## Design Dokumentation
 
-Ein Archiv der Designdokumente für Kubernetes-Funktionalität. Gute Ansatzpunkte sind [Kubernetes Architektur](https://git.k8s.io/community/contributors/design-proposals/architecture/architecture.md) und [Kubernetes Design Übersicht](https://git.k8s.io/community/contributors/design-proposals).
+Ein Archiv der Designdokumente für Kubernetes-Funktionalität. Gute Ansatzpunkte sind [Kubernetes Architektur](https://git.k8s.io/design-proposals-archive/architecture/architecture.md) und [Kubernetes Design Übersicht](https://git.k8s.io/community/contributors/design-proposals).
 
 
diff --git a/content/de/docs/reference/glossary/etcd.md b/content/de/docs/reference/glossary/etcd.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/reference/glossary/index.md b/content/de/docs/reference/glossary/index.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/reference/glossary/kube-apiserver.md b/content/de/docs/reference/glossary/kube-apiserver.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/reference/glossary/kube-controller-manager.md b/content/de/docs/reference/glossary/kube-controller-manager.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/reference/glossary/kube-scheduler.md b/content/de/docs/reference/glossary/kube-scheduler.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/reference/glossary/kubelet.md b/content/de/docs/reference/glossary/kubelet.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/reference/kubectl/_index.md b/content/de/docs/reference/kubectl/_index.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/reference/kubectl/cheatsheet.md b/content/de/docs/reference/kubectl/cheatsheet.md
index bce7eeefb3..d2472b1c2a 100644
--- a/content/de/docs/reference/kubectl/cheatsheet.md
+++ b/content/de/docs/reference/kubectl/cheatsheet.md
@@ -322,7 +322,7 @@ Ausgabeformat | Beschreibung
 
 ### Kubectl Ausgabe Ausführlichkeit und Debugging
 
-Die Ausführlichkeit von Kubectl wird mit den Flags `-v` oder `--v ` gesteuert, gefolgt von einer Ganzzahl, die die Protokollebene darstellt. Allgemeine Protokollierungskonventionen für Kubernetes und die zugehörigen Protokollebenen werden [hier](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-instrumentation/logging.md) beschrieben.
+Die Ausführlichkeit von Kubectl wird mit den Flags `-v` oder `--v` gesteuert, gefolgt von einer Ganzzahl, die die Protokollebene darstellt. Allgemeine Protokollierungskonventionen für Kubernetes und die zugehörigen Protokollebenen werden [hier](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-instrumentation/logging.md) beschrieben.
 
 Ausführlichkeit | Beschreibung
 --------------| -----------
diff --git a/content/de/docs/setup/minikube.md b/content/de/docs/setup/minikube.md
index 643348ee89..35de917a65 100644
--- a/content/de/docs/setup/minikube.md
+++ b/content/de/docs/setup/minikube.md
@@ -424,7 +424,7 @@ export no_proxy=$no_proxy,$(minikube ip)
 
 Minikube verwendet [libmachine](https://github.com/docker/machine/tree/master/libmachine) zur Bereitstellung von VMs, und [kubeadm](https://github.com/kubernetes/kubeadm) um einen Kubernetes-Cluster in Betrieb zu nehmen.
 
-Weitere Informationen zu Minikube finden Sie im [Vorschlag](https://git.k8s.io/community/contributors/design-proposals/cluster-lifecycle/local-cluster-ux.md).
+Weitere Informationen zu Minikube finden Sie im [Vorschlag](https://git.k8s.io/design-proposals-archive/cluster-lifecycle/local-cluster-ux.md).
 
 ## Zusätzliche Links
 
diff --git a/content/de/docs/setup/release/_index.md b/content/de/docs/setup/release/_index.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/setup/release/building-from-source.md b/content/de/docs/setup/release/building-from-source.md
index 76879df995..14c9ccee92 100644
--- a/content/de/docs/setup/release/building-from-source.md
+++ b/content/de/docs/setup/release/building-from-source.md
@@ -27,6 +27,6 @@ cd kubernetes
 make release
 ```
 
-Mehr Informationen zum Release-Prozess finden Sie im kubernetes/kubernetes [`build`](http://releases.k8s.io/{{< param "githubbranch" >}}/build/) Verzeichnis.
+Mehr Informationen zum Release-Prozess finden Sie im kubernetes/kubernetes [`build`](http://releases.k8s.io/master/build/) Verzeichnis.
 
 
diff --git a/content/de/docs/tasks/access-application-cluster/_index.md b/content/de/docs/tasks/access-application-cluster/_index.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/tasks/access-kubernetes-api/_index.md b/content/de/docs/tasks/access-kubernetes-api/_index.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/tasks/administer-cluster/_index.md b/content/de/docs/tasks/administer-cluster/_index.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/tasks/configure-pod-container/_index.md b/content/de/docs/tasks/configure-pod-container/_index.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/tasks/debug-application-cluster/_index.md b/content/de/docs/tasks/debug-application-cluster/_index.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/tasks/federation/_index.md b/content/de/docs/tasks/federation/_index.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/tasks/inject-data-application/_index.md b/content/de/docs/tasks/inject-data-application/_index.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/tasks/job/_index.md b/content/de/docs/tasks/job/_index.md
index ab0432135f..0497a5cfc6 100644
--- a/content/de/docs/tasks/job/_index.md
+++ b/content/de/docs/tasks/job/_index.md
@@ -1,5 +1,6 @@
 ---
 title: "Jobs ausführen"
+description: Führen Sie Jobs mit paralleler Verarbeitung aus.
 weight: 50
 ---
 
diff --git a/content/de/docs/tasks/manage-daemon/_index.md b/content/de/docs/tasks/manage-daemon/_index.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/tasks/run-application/_index.md b/content/de/docs/tasks/run-application/_index.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/tasks/run-application/horizontal-pod-autoscale.md b/content/de/docs/tasks/run-application/horizontal-pod-autoscale.md
index cd120285f1..31019744a7 100644
--- a/content/de/docs/tasks/run-application/horizontal-pod-autoscale.md
+++ b/content/de/docs/tasks/run-application/horizontal-pod-autoscale.md
@@ -11,7 +11,7 @@ weight: 90
 
 <!-- overview -->
 
-Der Horizontal Pod Autoscaler skaliert automatisch die Anzahl der Pods eines Replication Controller, Deployment oder Replikat Set basierend auf der beobachteten CPU-Auslastung (oder, mit Unterstützung von [benutzerdefinierter Metriken](https://git.k8s.io/community/contributors/design-proposals/instrumentation/custom-metrics-api.md), von der Anwendung bereitgestellten Metriken). Beachte, dass die horizontale Pod Autoskalierung nicht für Objekte gilt, die nicht skaliert werden können, z. B. DaemonSets.
+Der Horizontal Pod Autoscaler skaliert automatisch die Anzahl der Pods eines Replication Controller, Deployment oder Replikat Set basierend auf der beobachteten CPU-Auslastung (oder, mit Unterstützung von [benutzerdefinierter Metriken](https://git.k8s.io/design-proposals-archive/instrumentation/custom-metrics-api.md), von der Anwendung bereitgestellten Metriken). Beachte, dass die horizontale Pod Autoskalierung nicht für Objekte gilt, die nicht skaliert werden können, z. B. DaemonSets.
 
 Der Horizontal Pod Autoscaler ist als Kubernetes API-Ressource und einem Controller implementiert.
 Die Ressource bestimmt das Verhalten des Controllers.
@@ -46,7 +46,7 @@ Das Verwenden von Metriken aus Heapster ist seit der Kubernetes Version 1.11 ver
 
 Siehe [Unterstützung der Metrik APIs](#unterstützung-der-metrik-apis) für weitere Details.
 
-Der Autoscaler greift über die Scale Sub-Ressource auf die entsprechenden skalierbaren Controller (z.B. Replication Controller, Deployments und Replika Sets) zu. Scale ist eine Schnittstelle, mit der Sie die Anzahl der Replikate dynamisch einstellen und jeden ihrer aktuellen Zustände untersuchen können. Weitere Details zu der Scale Sub-Ressource findest du [hier](https://git.k8s.io/community/contributors/design-proposals/autoscaling/horizontal-pod-autoscaler.md#scale-subresource).
+Der Autoscaler greift über die Scale Sub-Ressource auf die entsprechenden skalierbaren Controller (z.B. Replication Controller, Deployments und Replika Sets) zu. Scale ist eine Schnittstelle, mit der Sie die Anzahl der Replikate dynamisch einstellen und jeden ihrer aktuellen Zustände untersuchen können. Weitere Details zu der Scale Sub-Ressource findest du [hier](https://git.k8s.io/design-proposals-archive/autoscaling/horizontal-pod-autoscaler.md#scale-subresource).
 
 ### Details zum Algorithmus
 
@@ -90,7 +90,7 @@ Die aktuelle stabile Version, die nur die Unterstützung für die automatische S
 
 Die Beta-Version, welche die Skalierung des Speichers und benutzerdefinierte Metriken unterstützt, befindet sich unter `autoscaling/v2beta2`. Die in `autoscaling/v2beta2` neu eingeführten Felder bleiben bei der Arbeit mit `autoscaling/v1` als Anmerkungen erhalten.
 
-Weitere Details über das API Objekt kann unter dem [HorizontalPodAutoscaler Objekt](https://git.k8s.io/community/contributors/design-proposals/autoscaling/horizontal-pod-autoscaler.md#horizontalpodautoscaler-object) gefunden werden.
+Weitere Details über das API Objekt kann unter dem [HorizontalPodAutoscaler Objekt](https://git.k8s.io/design-proposals-archive/autoscaling/horizontal-pod-autoscaler.md#horizontalpodautoscaler-object) gefunden werden.
 
 ## Unterstützung des Horizontal Pod Autoscaler in kubectl
 
@@ -100,7 +100,7 @@ Das auflisten der Autoskalierer geschieht über `kubectl get hpa` und eine detai
 Letzendlich können wir einen Autoskalierer mit `kubectl delete hpa` löschen.
 
 Zusätzlich gibt es einen speziellen Befehl `kubectl autoscale` zur einfachen Erstellung eines Horizontal Pod Autoscalers.
-Wenn du beispielsweise `kubectl autoscale rs foo --min=2 --max=5 --cpu-percent=80` ausführst, wird ein Autoskalierer für den Replication Set *foo* erstellt, wobei die Ziel-CPU-Auslastung auf `80%` und die Anzahl der Replikate zwischen 2 und 5 gesetzt wird.
+Wenn du beispielsweise `kubectl autoscale rs foo --min=2 --max=5 --cpu-percent=80` ausführst, wird ein Autoskalierer für den ReplicaSet *foo* erstellt, wobei die Ziel-CPU-Auslastung auf `80%` und die Anzahl der Replikate zwischen 2 und 5 gesetzt wird.
 Die Detaildokumentation von `kubectl autoscale` kann [hier](/docs/reference/generated/kubectl/kubectl-commands/#autoscale) gefunden werden.
 
 ## Autoskalieren während rollierender Updates
@@ -166,7 +166,7 @@ Standardmäßig ruft der HorizontalPodAutoscaler Controller Metriken aus einer R
 ## {{% heading "whatsnext" %}}
 
 
-* Design Dokument [Horizontal Pod Autoscaling](https://git.k8s.io/community/contributors/design-proposals/autoscaling/horizontal-pod-autoscaler.md).
+* Design Dokument [Horizontal Pod Autoscaling](https://git.k8s.io/design-proposals-archive/autoscaling/horizontal-pod-autoscaler.md).
 * kubectl autoscale Befehl: [kubectl autoscale](/docs/reference/generated/kubectl/kubectl-commands/#autoscale).
 * Verwenden des [Horizontal Pod Autoscaler](/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/).
 
diff --git a/content/de/docs/tasks/service-catalog/_index.md b/content/de/docs/tasks/service-catalog/_index.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/tasks/tls/_index.md b/content/de/docs/tasks/tls/_index.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/tasks/tools/_index.md b/content/de/docs/tasks/tools/_index.md
old mode 100755
new mode 100644
diff --git a/content/de/docs/tutorials/_index.md b/content/de/docs/tutorials/_index.md
index e00382c893..3ab69b6073 100644
--- a/content/de/docs/tutorials/_index.md
+++ b/content/de/docs/tutorials/_index.md
@@ -50,6 +50,8 @@ Bevor Sie die einzelnen Lernprogramme durchgehen, möchten Sie möglicherweise e
 
 * [AppArmor](/docs/tutorials/clusters/apparmor/)
 
+* [seccomp](/docs/tutorials/clusters/seccomp/)
+
 ## Services
 
 * [Source IP verwenden](/docs/tutorials/services/source-ip/)
diff --git a/content/de/docs/tutorials/hello-minikube.md b/content/de/docs/tutorials/hello-minikube.md
index a1bf6dd493..2137c5fdd9 100644
--- a/content/de/docs/tutorials/hello-minikube.md
+++ b/content/de/docs/tutorials/hello-minikube.md
@@ -105,7 +105,7 @@ Der Pod führt einen Container basierend auf dem bereitgestellten Docker-Image a
     hello-node-5f76cf6ccf-br9b5   1/1       Running   0          1m
     ```
 
-4. Cluster Events anzigen:
+4. Cluster Events anzeigen:
 
     ```shell
     kubectl get events
diff --git a/content/de/docs/tutorials/kubernetes-basics/_index.html b/content/de/docs/tutorials/kubernetes-basics/_index.html
index 8bf1c1dc38..8cb49dce31 100644
--- a/content/de/docs/tutorials/kubernetes-basics/_index.html
+++ b/content/de/docs/tutorials/kubernetes-basics/_index.html
@@ -46,7 +46,7 @@ card:
     </div>
 
     <div id="basics-modules" class="content__modules">
-      <h2>Kubernets Grundlagen Module</h2>
+      <h2>Kubernetes Grundlagen Module</h2>
       <div class="row">
         <div class="col-md-12">
           <div class="row">
diff --git a/content/de/includes/default-storage-class-prereqs.md b/content/de/includes/default-storage-class-prereqs.md
index 3865e644b7..1ca065cc14 100644
--- a/content/de/includes/default-storage-class-prereqs.md
+++ b/content/de/includes/default-storage-class-prereqs.md
@@ -1 +1 @@
-Sie benötigen entweder einen dynamischen PersistentVolume-Anbieter mit einer [Standard-Speicherklasse](/docs/concepts/storage/storage-classes/), oder Sie selbst stellen statische [PersistentVolumes](/docs/user-guide/persistent-volumes/#provisioning) bereit, um die [PersistentVolumeClaims](/docs/user-guide/persistent-volumes/#persistentvolumeclaims) zu erfüllen, die hier verwendet werden.
\ No newline at end of file
+Sie benötigen entweder einen dynamischen PersistentVolume-Anbieter mit einer [Standard-Speicherklasse](/docs/concepts/storage/storage-classes/), oder Sie selbst stellen statische [PersistentVolumes](/docs/concepts/storage/persistent-volumes/#provisioning) bereit, um die [PersistentVolumeClaims](/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims) zu erfüllen, die hier verwendet werden.
\ No newline at end of file
diff --git a/content/zh/includes/partner-style.css b/content/de/includes/partner-style.css
similarity index 100%
rename from content/zh/includes/partner-style.css
rename to content/de/includes/partner-style.css
diff --git a/content/de/partners/_index.html b/content/de/partners/_index.html
index e99b03b62a..ecf3e2542b 100644
--- a/content/de/partners/_index.html
+++ b/content/de/partners/_index.html
@@ -1,91 +1,53 @@
 ---
 title: Partner
 bigheader: Kubernetes Partner
-abstract: Entwicklung des Kubernetes-Ökosystems.
+abstract: Erweiterung des Kubernetes-Ökosystems.
 class: gridPage
 cid: partners
 ---
 
 <section id="users">
-    <main>
-        <h5>Kubernetes arbeitet mit Partnern zusammen, um eine starke, dynamische Codebasis zu schaffen, die ein Spektrum von aufeinander abgestimmten Plattformen unterstützt.</h5>
-        <div class="col-container">
-          <div class="col-nav">
-            <center>
-              <h5>
-                <b>Kubernetes zertifizierte Service Provider</b>
-              </h5>
-              <br>Geprüfte Service Provider mit großer Erfahrung, die Unternehmen bei der erfolgreichen Einführung von Kubernetes unterstützen.
-              <br><br><br>
-              <button id="kcsp" class="button" onClick="updateSrc(this.id)">KCSP-Partner anzeigen</button>
-              <br><br>Interessiert daran, ein <a href="https://www.cncf.io/certification/kcsp/">KCSP</a> zu werden?
-            </center>
-          </div>
-          <div class="col-nav">
-            <center>
-              <h5>
-                <b>Kubernetes-Distributionen, gehostete Plattformen und zertifizierte Installateure</b>
-              </h5>Software-Konformität stellt sicher, dass die Kubernetes-Versionen aller Hersteller die erforderlichen APIs unterstützen.
-              <br><br><br>
-              <button id="conformance" class="button" onClick="updateSrc(this.id)">Zertifizierte Partner anzeigen</button>
-              <br><br>Interessiert daran, <a href="https://www.cncf.io/certification/software-conformance/">Kubernetes zertifiziert</a> zu werden?
-            </center>
-          </div>
-          <div class="col-nav">
-            <center>
-              <h5><b>Kubernetes Training Partner</b></h5>
-              <br>Geprüfte Schulungsanbieter, die über umfassende Erfahrung in Cloud Native Technologietrainings verfügen.
-              <br><br><br><br>
-              <button id="ktp" class="button" onClick="updateSrc(this.id)">KTP Partner anzeigen</button>
-              <br><br>Interessiert daran, ein <a href="https://www.cncf.io/certification/training/">KTP</a> zu werden?
-            </center>
-          </div>
-        </div>
-<script src="https://code.jquery.com/jquery-3.3.1.min.js" integrity="sha256-FgpCb/KJQlLNfOu91ta32o/NMZxltwRo8QtmkMRdAu8=" crossorigin="anonymous"></script>
-<script type="text/javascript">
-
-			var defaultLink = "https://landscape.cncf.io/category=kubernetes-certified-service-provider&format=card-mode&grouping=category&embed=yes";
-			var firstLink = "https://landscape.cncf.io/category=certified-kubernetes-distribution,certified-kubernetes-hosted,certified-kubernetes-installer&format=card-mode&grouping=category&embed=yes";
-      var secondLink = "https://landscape.cncf.io/category=kubernetes-training-partner&format=card-mode&grouping=category&embed=yes";
-
-      function updateSrc(buttonId) {
-      	if (buttonId == "kcsp") {
-        		$("#landscape").attr("src",defaultLink);
-            window.location.hash = "#kcsp";
-        }
-        if (buttonId == "conformance") {
-         		$("#landscape").attr("src",firstLink);
-            window.location.hash = "#conformance";
-        }
-        if (buttonId == "ktp") {
-        		$("#landscape").attr("src",secondLink);
-            window.location.hash = "#ktp";
-        }
-      }
-
-      // Automatically load the correct iframe based on the URL fragment
-      document.addEventListener('DOMContentLoaded', function() {
-        var showContent = "kcsp";
-        if (window.location.hash) {
-          console.log('hash is:', window.location.hash.substring(1));
-          showContent = window.location.hash.substring(1);
-        }
-        updateSrc(showContent);
-      });
-</script>
-<body>
-    <div id="frameHolder">
-      <iframe id="landscape" frameBorder="0" scrolling="no" style="width: 1px; min-width: 100%" src=""></iframe>
-      <script src="https://landscape.cncf.io/iframeResizer.js"></script>
+    <h5>Kubernetes arbeitet mit Partnern zusammen, um eine starke, lebendige Codebasis zu schaffen, die ein Spektrum von ergänzenden Plattformen unterstützt.</h5>
+    <div class="col-container">
+      <div class="col-nav">
+        <center>
+          <h5>
+            <b>Kubernetes-zertifizierte Service-Anbieter</b>
+          </h5>
+          <br>Geprüfte Dienstleister mit umfassender Erfahrung bei der erfolgreichen Einführung von Kubernetes in Unternehmen.
+          <br><br><br>
+          <button class="button landscape-trigger landscape-default" data-landscape-types="kubernetes-certified-service-provider" id="kcsp">KCSP Partner anzeigen</button>
+          <br><br>Interessiert daran, ein
+          <a href="https://www.cncf.io/certification/kcsp/">KCSP</a> zu werden?
+        </center>
+      </div>
+      <div class="col-nav">
+        <center>
+          <h5>
+            <b>Zertifizierte Kubernetes-Distributionen, gehostete Plattformen und Installationssysteme</b>
+          </h5>Die Softwarekonformität stellt sicher, dass die Kubernetes-Version eines jeden Anbieters die erforderlichen APIs unterstützt.
+          <br><br><br>
+          <button class="button landscape-trigger" data-landscape-types="certified-kubernetes-distribution,certified-kubernetes-hosted,certified-kubernetes-installer" id="conformance">Konforme Partner anzeigen</button>
+          <br><br>Interessiert daran,
+          <a href="https://www.cncf.io/certification/software-conformance/">Kubernetes Zertifiziert</a> zu werden?
+        </center>
+      </div>
+      <div class="col-nav">
+        <center>
+          <h5>
+            <b>Kubernetes Schulungspartner</b>
+          </h5>
+          <br>Geprüfte Schulungsanbieter mit umfassender Erfahrung in der Weiterbildung im Bereich Cloud Native Technology.
+          <br><br><br>
+          <button class="button landscape-trigger" data-landscape-types="kubernetes-training-partner" id="ktp">KTP Partner anzeigen</button>
+          <br><br>Interessiert daran, ein
+          <a href="https://www.cncf.io/certification/training/">KTP</a> zu werden?
+        </center>
+      </div>
     </div>
-</body>
-    </main>
+    {{< cncf-landscape helpers=true >}}
 </section>
 
 <style>
     {{< include "partner-style.css" >}}
-</style>
-
-<script>
-    {{< include "partner-script.js" >}}
-</script>
+</style>
\ No newline at end of file
diff --git a/content/de/training/_index.html b/content/de/training/_index.html
new file mode 100644
index 0000000000..6ba21e7861
--- /dev/null
+++ b/content/de/training/_index.html
@@ -0,0 +1,137 @@
+---
+title: Schulungen
+bigheader: Kubernetes Schulungen und Zertifizierungen
+abstract: Schulungsprogramme, Zertifizierungen und Partner.
+layout: basic
+cid: training
+class: training
+---
+
+<section class="call-to-action">
+  <div class="main-section">
+    <div class="call-to-action" id="cta-certification">
+      <div class="cta-text">
+        <h2>Gestalte deine Cloud Native Karriere</h2>
+        <p>Kubernetes ist das Herzstück der Cloud Native-Bewegung. Mit den Schulungen und Zertifizierungen der Linux Foundation und unserer Schulungspartner kannst Du in deine Karriere investieren, Kubernetes lernen und deine Cloud Native-Projekte zum Erfolg führen.</p>
+      </div>
+      <div class="logo-certification cta-image" id="logo-kcnf">
+        <img src="/images/training/kubernetes-kcnf-white.svg" />
+      </div>
+      <div class="logo-certification cta-image" id="logo-cka">
+        <img src="/images/training/kubernetes-cka-white.svg"/>
+      </div>
+      <div class="logo-certification cta-image" id="logo-ckad">
+        <img src="/images/training/kubernetes-ckad-white.svg"/>
+      </div>
+      <div class="logo-certification cta-image" id="logo-cks">
+        <img src="/images/training/kubernetes-cks-white.svg"/>
+      </div>
+    </div>
+  </div>
+</section>
+
+<section>
+  <div class="main-section padded">
+    <center>
+      <h2>Nimm an einen kostenlosen Kurs bei edX teil</h2>
+    </center>
+  <div class="col-container">
+    <div class="col-nav">
+      <center>
+        <h5>
+          <b>Einf&uuml;hrung in Kubernetes <br> &nbsp;</b>
+        </h5>
+        <p>M&ouml;chtest Du Kubernetes lernen? Erfahre alles über dieses leistungsstarke System zur Verwaltung von Containeranwendungen.</p>
+        <br>
+        <a href="https://www.edx.org/course/introduction-to-kubernetes" target="_blank" class="button">Zum Kurs</a>
+      </center>
+    </div>
+    <div class="col-nav">
+      <center>
+        <h5>
+          <b>Einführung in Cloud-Infrastruktur Technologien</b>
+        </h5>
+        <p>Lerne die Grundlagen für den Aufbau und die Verwaltung von Cloud-Technologien direkt von der Linux Foundation, dem Marktführer im Bereich Open Source.</p>
+        <br>
+        <a href="https://www.edx.org/course/introduction-to-cloud-infrastructure-technologies" target="_blank" class="button">Zum Kurs</a>
+      </center>
+    </div>
+    <div class="col-nav">
+      <center>
+        <h5>
+          <b>Einf&uuml;hrung in Linux</b>
+        </h5>
+        <p>Du hast nie Linux gelernt? Willst du eine Auffrischung? Erarbeite dir gute Linux-Kenntnisse über die grafische Oberfläche und die Kommandozeile der wichtigsten Linux-Distributionen.</p>
+        <br>
+        <a href="https://www.edx.org/course/introduction-to-linux" target="_blank" class="button">Zum Kurs</a>
+      </center>
+    </div>
+  </div>
+</section>
+
+<div class="padded lighter-gray-bg">
+  <div class="main-section two-thirds-centered">
+    <center>
+      <h2>Mit der Linux Foundation lernen</h2>
+      <p>Die Linux Foundation bietet Kurse für alle Aspekte der Entwicklung und des Betriebs von Kubernetes-Anwendungen an, die entweder von Lehrkräften geleitet werden oder zum Selbststudium geeignet sind.</p>
+      <br/><br/>
+      <a href="https://training.linuxfoundation.org/training/course-catalog/?_sft_technology=kubernetes" target="_blank" class="button">Kurse anzeigen</a>
+    </center>
+  </div>
+</div>
+
+<section id="get-certified">
+  <div class="main-section padded">
+    <h2>Werde Kubernetes zertifiziert</h2>
+    <div class="col-container">
+      <div class="col-nav">
+        <h5>
+          <b>Kubernetes and Cloud Native Associate (KCNA)</b>
+        </h5>
+        <p>Die Prüfung zum Kubernetes and Cloud Native Associate (KCNA) weist die grundlegenden Kenntnisse und Fähigkeiten eines Benutzers in Kubernetes und dem breiteren Cloud Native-Ökosystem nach.</p>
+        <p>Ein zertifizierter KCNA bestätigt konzeptionelles Wissen über das gesamte Cloud Native Ecosystem, mit besonderem Fokus auf Kubernetes.</p>
+        <br>
+        <a href="https://training.linuxfoundation.org/certification/kubernetes-cloud-native-associate/" target="_blank" class="button">Zur Zertifizierung</a>
+      </div>
+      <div class="col-nav">
+          <h5>
+            <b>Certified Kubernetes Application Developer (CKAD)</b>
+          </h5>
+          <p>Die Prüfung zum Certified Kubernetes Application Developer (Zertifizierter Kubernetes-Anwendungsentwickler) bescheinigt, dass Teilnehmer Cloud Native-Anwendungen für Kubernetes entwerfen, erstellen, konfigurieren und bereitstellen können.</p>
+          <p>Ein CKAD kann Anwendungsressourcen definieren und zentrale Elemente verwenden, um skalierbare Anwendungen und Tools in Kubernetes zu erstellen, zu überwachen und Fehler zu beheben.</p>
+          <br>
+          <a href="https://training.linuxfoundation.org/certification/certified-kubernetes-application-developer-ckad/" target="_blank" class="button">Zur Zertifizierung</a>
+      </div>
+      <div class="col-nav">
+          <h5>
+            <b>Certified Kubernetes Administrator (CKA)</b>
+          </h5>
+          <p>Das Certified Kubernetes Administrator (CKA)-Programm garantiert, dass CKAs die Fähigkeiten, das Wissen und die Kompetenz besitzen, um die Aufgaben eines Kubernetes-Administrators zu erfüllen.</p>
+          <p>Ein zertifizierter Kubernetes-Administrator hat nachgewiesen, dass er in der Lage ist, grundlegende Installationen durchzuführen sowie Kubernetes-Cluster in einer Produktionsumgebung zu konfigurieren und zu verwalten.</p>
+          <br>
+          <a href="https://training.linuxfoundation.org/certification/certified-kubernetes-administrator-cka/" target="_blank" class="button">Zur Zertifizierung</a>
+      </div>
+      <div class="col-nav">
+          <h5>
+            <b>Certified Kubernetes Security Specialist (CKS)</b>
+          </h5>
+          <p>Das Programm Certified Kubernetes Security Specialist (CKS) bietet die Gewissheit, dass der Zertifikatsinhaber mit einem breiten Spektrum an Best Practices vertraut ist und diese beherrscht. Die CKS-Zertifizierung umfasst Fähigkeiten zur Sicherung von Container-basierten Anwendungen und Kubernetes-Plattformen während der Erstellung, Bereitstellung und Laufzeit.</p>
+          <p><em>Kandidaten für den CKS müssen über eine aktuelle Zertifizierung als Certified Kubernetes Administrator (CKA) verfügen, um nachzuweisen, dass sie über ausreichende Kubernetes-Kenntnisse verfügen, bevor sie sich für den CKS anmelden.</em></p>
+          <br>
+          <a href="https://training.linuxfoundation.org/certification/certified-kubernetes-security-specialist/" target="_blank" class="button">Zur Zertifizierung</a>
+      </div>
+    </div>
+  </div>
+</section>
+
+<div class="padded lighter-gray-bg">
+  <div class="main-section two-thirds-centered">
+    <center>
+      <h2>Kubernetes Schulungspartner</h2>
+      <p>Unser Netzwerk von Kubernetes-Schulungspartnern bietet Schulungsangebote für Kubernetes- und Cloud Native-Projekte.</p>
+    </center>
+  </div>
+  <div class="main-section landscape-section">
+    {{< cncf-landscape helpers=false category="kubernetes-training-partner" >}}
+  </div>
+</div>
diff --git a/content/en/_index.html b/content/en/_index.html
index db4c966102..fbdd5d5720 100644
--- a/content/en/_index.html
+++ b/content/en/_index.html
@@ -16,7 +16,7 @@ It groups containers that make up an application into logical units for easy man
 {{% blocks/feature image="scalable" %}}
 #### Planet Scale
 
-Designed on the same principles that allows Google to run billions of containers a week, Kubernetes can scale without increasing your ops team.
+Designed on the same principles that allow Google to run billions of containers a week, Kubernetes can scale without increasing your operations team.
 
 {{% /blocks/feature %}}
 
@@ -43,12 +43,12 @@ Kubernetes is open source giving you the freedom to take advantage of on-premise
         <button id="desktopShowVideoButton" onclick="kub.showVideo()">Watch Video</button>
         <br>
         <br>
-        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccncna21" button id="desktopKCButton">Attend KubeCon North America on October 11-15, 2021</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america" button id="desktopKCButton">Attend KubeCon North America on October 24-28, 2022</a>
         <br>
         <br>
         <br>
         <br>
-        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe-2022/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccnceu22" button id="desktopKCButton">Attend KubeCon Europe on May 17-20, 2022</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/" button id="desktopKCButton">Attend KubeCon Europe on April 17-21, 2023</a>
 </div>
 <div id="videoPlayer">
     <iframe data-url="https://www.youtube.com/embed/H06qrNmGqyE?autoplay=1" frameborder="0" allowfullscreen></iframe>
diff --git a/content/en/blog/_posts/2015-03-00-Welcome-To-Kubernetes-Blog.md b/content/en/blog/_posts/2015-03-00-Welcome-To-Kubernetes-Blog.md
index 54e4fbe4ad..45502e0072 100644
--- a/content/en/blog/_posts/2015-03-00-Welcome-To-Kubernetes-Blog.md
+++ b/content/en/blog/_posts/2015-03-00-Welcome-To-Kubernetes-Blog.md
@@ -1,9 +1,13 @@
 ---
-title: Welcome to the Kubernetes Blog! 
+title: Welcome to the Kubernetes Blog!
 date: 2015-03-20
 slug: welcome-to-kubernetes-blog
 url: /blog/2015/03/Welcome-To-Kubernetes-Blog
+evergreen: true
 ---
+
+**Author:** Kit Merker (Google)
+
 Welcome to the new Kubernetes Blog. Follow this blog to learn about the Kubernetes Open Source project. We plan to post release notes, how-to articles, events, and maybe even some off topic fun here from time to time.
 
 
@@ -25,6 +29,3 @@ To start things off, here's a roundup of recent Kubernetes posts from other site
 
 
 Happy cloud computing!
-
-
- - Kit Merker - Product Manager, Google Cloud Platform
diff --git a/content/en/blog/_posts/2015-04-00-Faster-Than-Speeding-Latte.md b/content/en/blog/_posts/2015-04-00-Faster-Than-Speeding-Latte.md
index fd6118b1c5..90a11d2582 100644
--- a/content/en/blog/_posts/2015-04-00-Faster-Than-Speeding-Latte.md
+++ b/content/en/blog/_posts/2015-04-00-Faster-Than-Speeding-Latte.md
@@ -1,8 +1,11 @@
 ---
-title: " Faster than a speeding Latte "
+title: "Faster than a speeding Latte"
 date: 2015-04-06
 slug: faster-than-speeding-latte
 url: /blog/2015/04/Faster-Than-Speeding-Latte
+evergreen: true
 ---
+
 Check out Brendan Burns racing Kubernetes.
-[![Check out Brendan Burns racing Kubernetes](https://img.youtube.com/vi/7vZ9dRKRMyc/0.jpg)](https://www.youtube.com/watch?v=?7vZ9dRKRMyc)
+
+{{< youtube id="7vZ9dRKRMyc" title="Latte vs. Kubernetes setup - which is faster?">}}
diff --git a/content/en/blog/_posts/2015-05-00-Kubernetes-Release-0160.md b/content/en/blog/_posts/2015-05-00-Kubernetes-Release-0160.md
index abe97435eb..86dcc36bb9 100644
--- a/content/en/blog/_posts/2015-05-00-Kubernetes-Release-0160.md
+++ b/content/en/blog/_posts/2015-05-00-Kubernetes-Release-0160.md
@@ -1,8 +1,9 @@
 ---
-title: " Kubernetes Release: 0.16.0 "
+title: "Kubernetes Release: 0.16.0"
 date: 2015-05-11
 slug: kubernetes-release-0160
 url: /blog/2015/05/Kubernetes-Release-0160
+evergreen: true
 ---
 Release Notes:
 
diff --git a/content/en/blog/_posts/2015-05-00-Kubernetes-Release-0170.md b/content/en/blog/_posts/2015-05-00-Kubernetes-Release-0170.md
index 29d86abe6d..0859edc059 100644
--- a/content/en/blog/_posts/2015-05-00-Kubernetes-Release-0170.md
+++ b/content/en/blog/_posts/2015-05-00-Kubernetes-Release-0170.md
@@ -1,8 +1,9 @@
 ---
-title: " Kubernetes Release: 0.17.0 "
+title: "Kubernetes Release: 0.17.0"
 date: 2015-05-15
 slug: kubernetes-release-0170
 url: /blog/2015/05/Kubernetes-Release-0170
+evergreen: true
 ---
 Release Notes:  
 
diff --git a/content/en/blog/_posts/2015-07-00-Announcing-First-Kubernetes-Enterprise.md b/content/en/blog/_posts/2015-07-00-Announcing-First-Kubernetes-Enterprise.md
index 98b4c49d67..ae0b3f8f39 100644
--- a/content/en/blog/_posts/2015-07-00-Announcing-First-Kubernetes-Enterprise.md
+++ b/content/en/blog/_posts/2015-07-00-Announcing-First-Kubernetes-Enterprise.md
@@ -1,9 +1,10 @@
 ---
-title: " Announcing the First Kubernetes Enterprise Training Course "
+title: "Announcing the First Kubernetes Enterprise Training Course"
 date: 2015-07-08
 slug: announcing-first-kubernetes-enterprise
 url: /blog/2015/07/Announcing-First-Kubernetes-Enterprise
 ---
+
 At Google we rely on Linux application containers to run our core infrastructure. Everything from Search to Gmail runs in containers. &nbsp;In fact, we like containers so much that even our Google Compute Engine VMs run in containers! &nbsp;Because containers are critical to our business, we have been working with the community on many of the basic container technologies (from cgroups to Docker’s LibContainer) and even decided to build the next generation of Google’s container scheduling technology, Kubernetes, in the open.
 
 
diff --git a/content/en/blog/_posts/2015-11-00-Kubernetes-1-1-Performance-Upgrades-Improved-Tooling-And-A-Growing-Community.md b/content/en/blog/_posts/2015-11-00-Kubernetes-1-1-Performance-Upgrades-Improved-Tooling-And-A-Growing-Community.md
index 754f6319e0..953504df01 100644
--- a/content/en/blog/_posts/2015-11-00-Kubernetes-1-1-Performance-Upgrades-Improved-Tooling-And-A-Growing-Community.md
+++ b/content/en/blog/_posts/2015-11-00-Kubernetes-1-1-Performance-Upgrades-Improved-Tooling-And-A-Growing-Community.md
@@ -1,9 +1,13 @@
 ---
-title: " Kubernetes 1.1 Performance upgrades, improved tooling and a growing community  "
+title: "Kubernetes 1.1 Performance upgrades, improved tooling and a growing community"
 date: 2015-11-09
 slug: kubernetes-1-1-performance-upgrades-improved-tooling-and-a-growing-community
 url: /blog/2015/11/Kubernetes-1-1-Performance-Upgrades-Improved-Tooling-And-A-Growing-Community
+evergreen: true
 ---
+
+**Author:** David Aronchick (Google)
+
 Since the Kubernetes 1.0 release in July, we’ve seen tremendous adoption by companies building distributed systems to manage their container clusters. We’re also been humbled by the rapid growth of the community who help make Kubernetes better everyday. We have seen commercial offerings such as Tectonic by CoreOS and RedHat Atomic Host emerge to deliver deployment and support of Kubernetes. And a growing ecosystem has added Kubernetes support including tool vendors such as Sysdig and Project Calico.  
 
 With the help of hundreds of contributors, we’re proud to announce the availability of Kubernetes 1.1, which offers major performance upgrades, improved tooling, and new features that make applications even easier to build and deploy.  
@@ -50,4 +54,3 @@ As we mentioned above, we would love your help:
 
 But, most of all, just let us know how you are transforming your business using Kubernetes, and how we can help you do it even faster. Thank you for your support!  
 
-&nbsp;- David Aronchick, Senior Product Manager for Kubernetes and Google Container Engine
diff --git a/content/en/blog/_posts/2016-02-00-Kubecon-Eu-2016-Kubernetes-Community-In.md b/content/en/blog/_posts/2016-02-00-Kubecon-Eu-2016-Kubernetes-Community-In.md
index 38ee6129fd..c0995e1c14 100644
--- a/content/en/blog/_posts/2016-02-00-Kubecon-Eu-2016-Kubernetes-Community-In.md
+++ b/content/en/blog/_posts/2016-02-00-Kubecon-Eu-2016-Kubernetes-Community-In.md
@@ -1,37 +1,41 @@
 ---
-title: " KubeCon EU 2016: Kubernetes Community in London "
+title: "KubeCon EU 2016: Kubernetes Community in London"
 date: 2016-02-24
 slug: kubecon-eu-2016-kubernetes-community-in
 url: /blog/2016/02/Kubecon-Eu-2016-Kubernetes-Community-In
+evergreen: true
 ---
 
-KubeCon EU 2016 is the inaugural [European Kubernetes](http://kubernetes.io/) community conference that follows on the American launch in November 2015. KubeCon is fully dedicated to education and community engagement for[Kubernetes](http://kubernetes.io/) enthusiasts, production users and the surrounding ecosystem.
+**Author:** Sarah Novotny (Google)
+
+KubeCon EU 2016 is the inaugural European Kubernetes community conference that follows on the American launch in November 2015. KubeCon is fully dedicated to education and community engagement for [Kubernetes](/) enthusiasts, production users and the surrounding ecosystem.
 
 Come join us in London and hang out with hundreds from the Kubernetes community and experience a wide variety of deep technical expert talks and use cases.
 
 Don’t miss these great speaker sessions at the conference:
 
-* “Kubernetes Hardware Hacks: Exploring the Kubernetes API Through Knobs, Faders, and Sliders” by Ian Lewis and Brian Dorsey, Developer Advocate, Google -* [http://sched.co/6Bl3](http://sched.co/6Bl3)  
+* “Kubernetes Hardware Hacks: Exploring the Kubernetes API Through Knobs, Faders, and Sliders” by Ian Lewis and Brian Dorsey, Developer Advocate, Google [https://sched.co/6Bl3](http://sched.co/6Bl3)
 
-* “rktnetes: what's new with container runtimes and Kubernetes” by Jonathan Boulle, Developer and Team Lead at CoreOS -* [http://sched.co/6BY7](http://sched.co/6BY7)
+* “rktnetes: what's new with container runtimes and Kubernetes” by Jonathan Boulle, Developer and Team Lead at CoreOS [https://sched.co/6BY7](http://sched.co/6BY7)
 
-* “Kubernetes Documentation: Contributing, fixing issues, collecting bounties” by John Mulhausen, Lead Technical Writer, Google -* [http://sched.co/6BUP](http://sched.co/6BUP)&nbsp;
-* “[What is OpenStack's role in a Kubernetes world?](https://kubeconeurope2016.sched.org/event/6BYC/what-is-openstacks-role-in-a-kubernetes-world?iframe=yes&w=i:0;&sidebar=yes&bg=no#?iframe=yes&w=i:100;&sidebar=yes&bg=no)” By Thierry Carrez, Director of Engineering, OpenStack Foundation -* http://sched.co/6BYC
-* “A Practical Guide to Container Scheduling” by Mandy Waite, Developer Advocate, Google -* [http://sched.co/6BZa](http://sched.co/6BZa)  
+* “Kubernetes Documentation: Contributing, fixing issues, collecting bounties” by John Mulhausen, Lead Technical Writer, Google [https://sched.co/6BUP](http://sched.co/6BUP)&nbsp;
 
-* “[Kubernetes in Production in The New York Times newsroom](https://kubeconeurope2016.sched.org/event/67f2/kubernetes-in-production-in-the-new-york-times-newsroom?iframe=yes&w=i:0;&sidebar=yes&bg=no#?iframe=yes&w=i:100;&sidebar=yes&bg=no)” Eric Lewis, Web Developer, New York Times -* [http://sched.co/67f2](http://sched.co/67f2)
-* “[Creating an Advanced Load Balancing Solution for Kubernetes with NGINX](https://kubeconeurope2016.sched.org/event/6Bc9/creating-an-advanced-load-balancing-solution-for-kubernetes-with-nginx?iframe=yes&w=i:0;&sidebar=yes&bg=no#?iframe=yes&w=i:100;&sidebar=yes&bg=no)” by Andrew Hutchings, Technical Product Manager, NGINX -* http://sched.co/6Bc9
-* And many more http://kubeconeurope2016.sched.org/
+* “[What is OpenStack's role in a Kubernetes world?](https://kubeconeurope2016.sched.org/event/6BYC/what-is-openstacks-role-in-a-kubernetes-world?iframe=yes&w=i:0;&sidebar=yes&bg=no#?iframe=yes&w=i:100;&sidebar=yes&bg=no)” By Thierry Carrez, Director of Engineering, OpenStack Foundation [https://sched.co/6BYC](http://sched.co/6BYC)
+
+* “A Practical Guide to Container Scheduling” by Mandy Waite, Developer Advocate, Google [https://sched.co/6BZa](http://sched.co/6BZa)
+
+* “[Kubernetes in Production in The New York Times newsroom](https://kubeconeurope2016.sched.org/event/67f2/kubernetes-in-production-in-the-new-york-times-newsroom?iframe=yes&w=i:0;&sidebar=yes&bg=no#?iframe=yes&w=i:100;&sidebar=yes&bg=no)” Eric Lewis, Web Developer, New York Times [https://sched.co/67f2](http://sched.co/67f2)
+
+* “[Creating an Advanced Load Balancing Solution for Kubernetes with NGINX](https://kubeconeurope2016.sched.org/event/6Bc9/creating-an-advanced-load-balancing-solution-for-kubernetes-with-nginx?iframe=yes&w=i:0;&sidebar=yes&bg=no#?iframe=yes&w=i:100;&sidebar=yes&bg=no)” by Andrew Hutchings, Technical Product Manager, NGINX [https://sched.co/6Bc9](https://sched.co/6Bc9)
+
+…and many more https://kubeconeurope2016.sched.org/
 
 
-Get your KubeCon EU [tickets here](https://ti.to/kubecon/kubecon-eu-2016).
+~Get your KubeCon EU [tickets here](https://ti.to/kubecon/kubecon-eu-2016)~.
 
 Venue Location: CodeNode * 10 South Pl, London, United Kingdom  
 Accommodations: [hotels](https://skillsmatter.com/contact-us#hotels)   
 Website: [kubecon.io](https://www.kubecon.io/)   
 Twitter: [@KubeConio](https://twitter.com/kubeconio) #KubeCon
+
 Google is a proud Diamond sponsor of KubeCon EU 2016. Come to London next month, March 10th & 11th, and visit booth #13 to learn all about Kubernetes, Google Container Engine (GKE) and Google Cloud Platform!  
-
-_KubeCon is organized by KubeAcademy, LLC, a community-driven group of developers focused on the education of developers and the promotion of Kubernetes._  
-
--* Sarah Novotny, Kubernetes Community Manager, Google  
diff --git a/content/en/blog/_posts/2016-03-00-Kubernetes-1-2-Even-More-Performance-Upgrades-Plus-Easier-Application-Deployment-And-Management-.md b/content/en/blog/_posts/2016-03-00-Kubernetes-1-2-Even-More-Performance-Upgrades-Plus-Easier-Application-Deployment-And-Management-.md
index c63763d4e5..bc9083bc0d 100644
--- a/content/en/blog/_posts/2016-03-00-Kubernetes-1-2-Even-More-Performance-Upgrades-Plus-Easier-Application-Deployment-And-Management-.md
+++ b/content/en/blog/_posts/2016-03-00-Kubernetes-1-2-Even-More-Performance-Upgrades-Plus-Easier-Application-Deployment-And-Management-.md
@@ -1,17 +1,20 @@
 ---
-title: " Kubernetes 1.2: Even more performance upgrades, plus easier application deployment and management  "
+title: "Kubernetes 1.2: Even more performance upgrades, plus easier application deployment and management"
 date: 2016-03-17
 slug: kubernetes-1.2-even-more-performance-upgrades-plus-easier-application-deployment-and-management
 url: /blog/2016/03/Kubernetes-1-2-Even-More-Performance-Upgrades-Plus-Easier-Application-Deployment-And-Management
+evergreen: true
 ---
-Today we released Kubernetes 1.2. This release represents significant improvements for large organizations building distributed systems. Now with over 680 unique contributors to the project, this release represents our largest yet.  
+**Author:** David Aronchick (Google)
+
+Today the Kubernetes project released Kubernetes 1.2. This release represents significant improvements for large organizations building distributed systems. Now with over 680 unique contributors to the project, this release represents our largest yet.  
 
 From the beginning, our mission has been to make building distributed systems easy and accessible for all. With the Kubernetes 1.2 release we’ve made strides towards our goal by increasing scale, decreasing latency and overall simplifying the way applications are deployed and managed. Now, developers at organizations of all sizes can build production scale apps more easily than ever before.&nbsp;
 
-### What’s new:&nbsp;
+## What’s new
 
 - **Significant scale improvements**. Increased cluster scale by 400% to 1,000 nodes and 30,000 containers per cluster.
-- **Simplified application deployment and management**.&nbsp;
+- **Simplified application deployment and management**.
 
   - Dynamic Configuration (via the ConfigMap API) enables applications to pull their configuration when they run rather than packaging it in at build time.&nbsp;
   - Turnkey Deployments (via the Beta Deployment API) let you declare your application and Kubernetes will do the rest. It handles versioning, multiple simultaneous rollouts, aggregating status across all pods, maintaining application availability and rollback.&nbsp;
@@ -28,15 +31,15 @@ From the beginning, our mission has been to make building distributed systems ea
 
 - **And many more**. For a complete list of updates, see the [release notes on github](https://github.com/kubernetes/kubernetes/releases/tag/v1.2.0).&nbsp;
 
-#### Community&nbsp;
+## Community
 
-All these improvements would not be possible without our enthusiastic and global community. The momentum is astounding. We’re seeing over 400 pull requests per week, a 50% increase since the previous 1.1 release. There are meetups and conferences discussing Kubernetes nearly every day, on top of the 85 Kubernetes related [meetup groups](http://www.meetup.com/topics/kubernetes/) around the world. We’ve also seen significant participation in the community in the form of Special Interest Groups, with 18 active SIGs that cover topics from AWS and OpenStack to big data and scalability, to get involved [join or start a new SIG](https://github.com/kubernetes/kubernetes/wiki/Special-Interest-Groups-(SIGs)). Lastly, we’re proud that Kubernetes is the first project to be accepted to the Cloud Native Computing Foundation (CNCF), read more about the announcement [here](https://cncf.io/news/announcement/2016/03/cloud-native-computing-foundation-accepts-kubernetes-first-hosted-projec-0).&nbsp;
+All these improvements would not be possible without our enthusiastic and global community. The momentum is astounding. We’re seeing over 400 pull requests per week, a 50% increase since the previous 1.1 release. There are meetups and conferences discussing Kubernetes nearly every day, on top of the 85 Kubernetes related [meetup groups](http://www.meetup.com/topics/kubernetes/) around the world. We’ve also seen significant participation in the community in the form of Special Interest Groups, with 18 active SIGs that cover topics from AWS and OpenStack to big data and scalability, to get involved [join or start a new SIG](https://github.com/kubernetes/kubernetes/wiki/Special-Interest-Groups-(SIGs)). Lastly, we’re proud that Kubernetes is the first project to be accepted to the Cloud Native Computing Foundation (CNCF), read more about the announcement [here](https://cncf.io/news/announcement/2016/03/cloud-native-computing-foundation-accepts-kubernetes-first-hosted-projec-0).
 
 
 
-#### Documentation&nbsp;
+## Documentation
 
-With Kubernetes 1.2 comes a relaunch of our website at [kubernetes.io](http://kubernetes.io/). We’ve slimmed down the docs contribution process so that all you have to do is fork/clone and send a PR. And the site works the same whether you’re staging it on your laptop, on github.io, or viewing it in production. It’s a pure GitHub Pages project; no scripts, no plugins.&nbsp;
+With Kubernetes 1.2 comes a relaunch of our website at [kubernetes.io](http://kubernetes.io/). We’ve slimmed down the docs contribution process so that all you have to do is fork/clone and send a PR. And the site works the same whether you’re staging it on your laptop, on github.io, or viewing it in production. It’s a pure GitHub Pages project; no scripts, no plugins.
 
 
 
@@ -48,7 +51,7 @@ To entice you even further to contribute, we’re also announcing our new bounty
 
 
 
-#### Roadmap&nbsp;
+## Roadmap
 
 All of our work is done in the open, to learn the latest about the project j[oin the weekly community meeting](https://groups.google.com/forum/#!forum/kubernetes-community-video-chat) or [watch a recorded hangout](https://www.youtube.com/playlist?list=PL69nYSiGNLP1pkHsbPjzAewvMgGUpkCnJ). In keeping with our major release schedule of every three to four months, here are just a few items that are in development for [next release and beyond](https://github.com/kubernetes/kubernetes/wiki/Release-1.3):&nbsp;
 
@@ -64,7 +67,7 @@ Kubernetes 1.2 is available for download at [get.k8s.io](http://get.k8s.io/) and
 
 
 
-#### Connect&nbsp;
+## Connect
 
 We’d love to hear from you and see you participate in this growing community:&nbsp;
 
@@ -73,8 +76,7 @@ We’d love to hear from you and see you participate in this growing community:&
 - &nbsp;Connect with the community on [Slack](http://slack.kubernetes.io/)&nbsp;
 - Follow us on Twitter [@Kubernetesio](https://twitter.com/kubernetesio) for latest updates&nbsp;
 
-Thank you for your support!&nbsp;
+Thank you for your support!
 
 
 
-&nbsp;-&nbsp;_David Aronchick, Senior Product Manager for Kubernetes, Google_
diff --git a/content/en/blog/_posts/2016-04-00-Kubernetes-Network-Policy-APIs.md b/content/en/blog/_posts/2016-04-00-Kubernetes-Network-Policy-APIs.md
index 7289f57669..b2a5561dd9 100644
--- a/content/en/blog/_posts/2016-04-00-Kubernetes-Network-Policy-APIs.md
+++ b/content/en/blog/_posts/2016-04-00-Kubernetes-Network-Policy-APIs.md
@@ -131,7 +131,7 @@ In this example, the ‘ **tenant-a** ’ namespace would get policy ‘ **pol1*
 
 
 
-Today, [Romana](http://romana.io/), [OpenShift](https://www.openshift.com/), [OpenContrail](http://www.opencontrail.org/) and [Calico](http://projectcalico.org/) support network policies applied to namespaces and pods. Cisco and VMware are working on implementations as well. Both Romana and Calico demonstrated these capabilities with Kubernetes 1.2 recently at KubeCon. You can watch their presentations here: [Romana](https://www.youtube.com/watch?v=f-dLKtK6qCs) ([slides](http://www.slideshare.net/RomanaProject/kubecon-london-2016-ronana-cloud-native-sdn)), [Calico](https://www.youtube.com/watch?v=p1zfh4N4SX0) ([slides](http://www.slideshare.net/kubecon/kubecon-eu-2016-secure-cloudnative-networking-with-project-calico)).&nbsp;
+Today, Romana, OpenShift, OpenContrail and Calico support network policies applied to namespaces and pods. Cisco and VMware are working on implementations as well. Both Romana and Calico demonstrated these capabilities with Kubernetes 1.2 recently at KubeCon. You can watch their presentations here: [Romana](https://www.youtube.com/watch?v=f-dLKtK6qCs) ([slides](http://www.slideshare.net/RomanaProject/kubecon-london-2016-ronana-cloud-native-sdn)), [Calico](https://www.youtube.com/watch?v=p1zfh4N4SX0) ([slides](http://www.slideshare.net/kubecon/kubecon-eu-2016-secure-cloudnative-networking-with-project-calico)).&nbsp;
 
 
 
diff --git a/content/en/blog/_posts/2016-07-00-Kubernetes-1-3-Bridging-Cloud-Native-And-Enterprise-Workloads.md b/content/en/blog/_posts/2016-07-00-Kubernetes-1-3-Bridging-Cloud-Native-And-Enterprise-Workloads.md
index 13e682c0a8..bc86fa5eeb 100644
--- a/content/en/blog/_posts/2016-07-00-Kubernetes-1-3-Bridging-Cloud-Native-And-Enterprise-Workloads.md
+++ b/content/en/blog/_posts/2016-07-00-Kubernetes-1-3-Bridging-Cloud-Native-And-Enterprise-Workloads.md
@@ -1,9 +1,13 @@
 ---
-title: " Kubernetes 1.3: Bridging Cloud Native and Enterprise Workloads "
+title: "Kubernetes 1.3: Bridging Cloud Native and Enterprise Workloads"
 date: 2016-07-06
 slug: kubernetes-1.3-bridging-cloud-native-and-enterprise-workloads
 url: /blog/2016/07/Kubernetes-1-3-Bridging-Cloud-Native-And-Enterprise-Workloads
+evergreen: true
 ---
+
+**Author:** Aparna Sinha, Google
+
 Nearly two years ago, when we officially kicked off the Kubernetes project, we wanted to simplify distributed systems management and provide the core technology required to everyone. The community’s response to this effort has blown us away. Today, thousands of customers, partners and developers are running clusters in production using Kubernetes and have joined the cloud native revolution.&nbsp;  
 
 Thanks to the help of over 800 contributors, we are pleased to announce today the availability of Kubernetes 1.3, our most robust and feature-rich release to date.  
@@ -14,7 +18,7 @@ Product highlights in Kubernetes 1.3 include the ability to bridge services acro
 
 
 
-**What’s new:**
+## What’s new
 
 - **Increased scale and automation** - Customers want to scale their services up and down automatically in response to application demand. In 1.3 we have made it easier to autoscale clusters up and down while doubling the maximum number of nodes per cluster. Customers no longer need to think about cluster size, and can allow the underlying cluster to respond to demand.
 
@@ -31,13 +35,13 @@ Product highlights in Kubernetes 1.3 include the ability to bridge services acro
 - **Updated Kubernetes dashboard UI** - Customers can now use the Kubernetes open source dashboard for the majority of interactions with their clusters, rather than having to use the CLI. The updated UI lets users control, edit and create all workload resources (including Deployments and PetSets).
 - And many more. For a complete list of updates, see the [_release notes on GitHub_](https://github.com/kubernetes/kubernetes/releases/tag/v1.3.0).
 
-**Community**
+## Community
 
 We could not have achieved this milestone without the tireless effort of countless people that are part of the Kubernetes community. We have [19 different Special Interest Groups](https://github.com/kubernetes/community/blob/master/README.md#special-interest-groups-sig), and over 100 meetups around the world. Kubernetes is a community project, built in the open, and it truly would not be possible without the over 233 person-years of effort the community has put in to date. Woot!
 
 
 
-**Availability**
+## Availability
 
 Kubernetes 1.3 is available for download at [get.k8s.io](http://get.k8s.io/)&nbsp;and via the open source repository hosted on [GitHub](http://github.com/kubernetes/kubernetes). To get started with Kubernetes try our [Hello World app](/docs/hellonode/).
 
@@ -47,7 +51,7 @@ To learn the latest about the project, we encourage everyone to [join the weekly
 
 
 
-**Connect**
+## Connect
 
 We’d love to hear from you and see you participate in this growing community:
 
@@ -58,8 +62,4 @@ We’d love to hear from you and see you participate in this growing community:
 
 
 
-Thank you for your support!&nbsp;
-
-
-
--- Aparna Sinha, Product Manager, Google
+Thank you for your support!
diff --git a/content/en/blog/_posts/2016-09-00-High-Performance-Network-Policies-Kubernetes.md b/content/en/blog/_posts/2016-09-00-High-Performance-Network-Policies-Kubernetes.md
index bc21d1edaa..c8c452bc67 100644
--- a/content/en/blog/_posts/2016-09-00-High-Performance-Network-Policies-Kubernetes.md
+++ b/content/en/blog/_posts/2016-09-00-High-Performance-Network-Policies-Kubernetes.md
@@ -65,7 +65,7 @@ Network policies are an exciting feature, which the Kubernetes community has wor
 
 
 
-There are only a few policy-capable networking backends available for Kubernetes today: [Romana](http://romana.io/), [Calico](http://projectcalico.org/), and [Canal](https://github.com/tigera/canal); with [Weave](http://www.weave.works/) indicating support in the near future. Red Hat’s OpenShift includes network policy features as well.
+There are only a few policy-capable networking backends available for Kubernetes today: Romana, [Calico](http://projectcalico.org/), and [Canal](https://github.com/tigera/canal); with [Weave](http://www.weave.works/) indicating support in the near future. Red Hat’s OpenShift includes network policy features as well.
 
 
 
@@ -100,7 +100,7 @@ This is because during a typical network performance benchmark, there’s no app
 - Hardware: Two servers with Intel Core i5-5250U CPUs (2 core, 2 threads per core) running at 1.60GHz, 16GB RAM and 512GB SSD. NIC: Intel Ethernet Connection I218-V (rev 03)
 - Ubuntu 14.04.5
 - Kubernetes 1.3 for data collection (verified samples on [v1.4.0-beta.5](http://v1.4.0-beta.5/))
-- [Romana v0.9.3.1](https://github.com/romana/romana)
+- Romana v0.9.3.1
 - Client and server load test [software](https://github.com/paninetworks/testing-tools)
 
 For the tests we had a client pod send 2,000 HTTP requests to a server pod. HTTP requests were sent by the client pod at a rate that ensured that neither the server nor network ever saturated. We also made sure each request started a new TCP session by disabling persistent connections (i.e. HTTP [keep-alive](https://en.wikipedia.org/wiki/HTTP_persistent_connection)). We ran each test with different response sizes and measured the average request duration time (how long does it take to complete a request of that size). Finally, we repeated each set of measurements with different policy configurations.
@@ -189,4 +189,4 @@ These tests were performed using Romana as the backend policy provider and other
 
 
 
-If you wish to try it for yourself, we invite you to check out [Romana](http://romana.io/). In our [GitHub repo](https://github.com/romana/romana) you can find an easy to use installer, which works with AWS, Vagrant VMs or any other servers. You can use it to quickly get you started with a Romana powered Kubernetes or OpenStack cluster.
+If you wish to try it for yourself, we invite you to check out Romana. In our GitHub repo you can find an easy to use installer, which works with AWS, Vagrant VMs or any other servers. You can use it to quickly get you started with a Romana powered Kubernetes or OpenStack cluster.
diff --git a/content/en/blog/_posts/2017-06-00-Kubernetes-1-7-Security-Hardening-Stateful-Application-Extensibility-Updates.md b/content/en/blog/_posts/2017-06-00-Kubernetes-1-7-Security-Hardening-Stateful-Application-Extensibility-Updates.md
index e8f15ec6b9..e80f557011 100644
--- a/content/en/blog/_posts/2017-06-00-Kubernetes-1-7-Security-Hardening-Stateful-Application-Extensibility-Updates.md
+++ b/content/en/blog/_posts/2017-06-00-Kubernetes-1-7-Security-Hardening-Stateful-Application-Extensibility-Updates.md
@@ -19,7 +19,7 @@ Security:
 - [Node authorizer](/docs/reference/access-authn-authz/node/) and admission control plugin are new additions that restrict kubelet’s access to secrets, pods and other objects based on its node.
 - [Encryption for Secrets](/docs/tasks/administer-cluster/encrypt-data/), and other resources in etcd, is now available as alpha.&nbsp;
 - [Kubelet TLS bootstrapping](/docs/admin/kubelet-tls-bootstrapping/) now supports client and server certificate rotation.
-- [Audit logs](/docs/tasks/debug-application-cluster/audit/) stored by the API server are now more customizable and extensible with support for event filtering and webhooks. They also provide richer data for system audit.
+- [Audit logs](/docs/tasks/debug/debug-cluster/audit/) stored by the API server are now more customizable and extensible with support for event filtering and webhooks. They also provide richer data for system audit.
 
 Stateful workloads:  
 
diff --git a/content/en/blog/_posts/2017-08-00-High-Performance-Networking-With-Ec2.md b/content/en/blog/_posts/2017-08-00-High-Performance-Networking-With-Ec2.md
index b735c501e7..181af0aa58 100644
--- a/content/en/blog/_posts/2017-08-00-High-Performance-Networking-With-Ec2.md
+++ b/content/en/blog/_posts/2017-08-00-High-Performance-Networking-With-Ec2.md
@@ -9,7 +9,7 @@ url: /blog/2017/08/High-Performance-Networking-With-Ec2
 One of the most popular platforms for running Kubernetes is Amazon Web Services’ Elastic Compute Cloud (AWS EC2). With more than a decade of experience delivering IaaS, and expanding over time to include a rich set of services with easy to consume APIs, EC2 has captured developer mindshare and loyalty worldwide.
 
 
-When it comes to networking, however, EC2 has some limits that hinder performance and make deploying Kubernetes clusters to production unnecessarily complex. The preview release of [Romana v2.0](http://romana.io/), a network and security automation solution for Cloud Native applications, includes features that address some well known network issues when running Kubernetes in EC2.
+When it comes to networking, however, EC2 has some limits that hinder performance and make deploying Kubernetes clusters to production unnecessarily complex. The preview release of Romana v2.0, a network and security automation solution for Cloud Native applications, includes features that address some well known network issues when running Kubernetes in EC2.
 
 
 ## Traditional VPC Networking Performance Roadblocks
@@ -40,7 +40,7 @@ Whether you were interested in advanced networking for traffic isolation or runn
 The way to avoid running out of VPC routes is to use them sparingly by making them forward pod traffic for multiple instances. From a networking perspective, what that means is that the VPC route needs to forward to a router, which can then forward traffic on to the final destination instance.
 
 
-[Romana](http://romana.io/) is a CNI network provider that configures routes on the host to forward pod network traffic without an overlay. Since inter-node routes are installed on hosts, no VPC routes are necessary at all. However, when the VPC is split into subnets for an HA deployment across zones, VPC routes are necessary.
+Romana is a CNI network provider that configures routes on the host to forward pod network traffic without an overlay. Since inter-node routes are installed on hosts, no VPC routes are necessary at all. However, when the VPC is split into subnets for an HA deployment across zones, VPC routes are necessary.
 
 
 Fortunately, inter-node routes on hosts allows them to act as a network router and forward traffic inbound from another zone just as it would for traffic from local pods. This makes any Kubernetes node configured by Romana able to accept inbound pod traffic from other zones and forward it to the proper destination node on the subnet.
@@ -73,8 +73,5 @@ When using Romana v2.0, native VPC networking is now available for clusters of a
 ![](https://archive.org/download/hpc-ec2-vpc-2/hpc-ec2-vpc-2.png)
 
 
-The preview release of Romana v2.0 is available [here](http://romana.io/preview). We welcome comments and feedback so we can make EC2 deployments of Kubernetes as fast and reliable as possible.    
-
-
 
 -- _Juergen Brendel and Chris Marino, co-founders of Pani Networks, sponsor of the Romana project_
diff --git a/content/en/blog/_posts/2017-09-00-Kubernetes-18-Security-Workloads-And.md b/content/en/blog/_posts/2017-09-00-Kubernetes-18-Security-Workloads-And.md
index d8f09da298..e2f031f8a5 100644
--- a/content/en/blog/_posts/2017-09-00-Kubernetes-18-Security-Workloads-And.md
+++ b/content/en/blog/_posts/2017-09-00-Kubernetes-18-Security-Workloads-And.md
@@ -3,8 +3,10 @@ title: " Kubernetes 1.8: Security, Workloads and Feature Depth "
 date: 2017-09-29
 slug: kubernetes-18-security-workloads-and
 url: /blog/2017/09/Kubernetes-18-Security-Workloads-And
+evergreen: true
 ---
-_Editor's note: today's post is by Aparna Sinha, Group Product Manager, Kubernetes, Google; Ihor Dvoretskyi, Developer Advocate, CNCF; Jaice Singer DuMars, Kubernetes Ambassador, Microsoft; and Caleb Miles, Technical Program Manager, CoreOS on the latest release of Kubernetes 1.8._  
+
+**Authors:** Kubernetes v1.8 release team
 
 
 We’re pleased to announce the delivery of Kubernetes 1.8, our third release this year. Kubernetes 1.8 represents a snapshot of many exciting enhancements and refinements underway. In addition to functional improvements, we’re increasing project-wide focus on maturing [process](https://github.com/kubernetes/sig-release), formalizing [architecture](https://github.com/kubernetes/community/tree/master/sig-architecture), and strengthening Kubernetes’ [governance model](https://github.com/kubernetes/community/tree/master/community/elections/2017). The evolution of mature processes clearly signals that sustainability is a driving concern, and helps to ensure that Kubernetes is a viable and thriving project far into the future.  
@@ -50,7 +52,7 @@ The [Release team](https://github.com/kubernetes/features/blob/master/release-1.
 As the Kubernetes community has grown, our release process has become an amazing demonstration of collaboration in open source software development. Kubernetes continues to gain new users at a rapid clip. This growth creates a positive feedback cycle where more contributors commit code creating a more vibrant ecosystem.  
 
 
-## User Highlights
+## User highlights
 
 According to [Redmonk](http://redmonk.com/fryan/2017/09/10/cloud-native-technologies-in-the-fortune-100/), 54 percent of Fortune 100 companies are running Kubernetes in some form with adoption coming from every sector across the world. Recent user stories from the community include:   
 
@@ -91,3 +93,6 @@ The simplest way to get involved with Kubernetes is by joining one of the many [
 - Follow us on Twitter [@Kubernetesio](https://twitter.com/kubernetesio) for latest updates
 - Chat with the community on [Slack](http://slack.k8s.io/).
 - [Share your Kubernetes story.](https://docs.google.com/a/linuxfoundation.org/forms/d/e/1FAIpQLScuI7Ye3VQHQTwBASrgkjQDSS5TP0g3AXfFhwSM9YpHgxRKFA/viewform)
+
+
+_Editor's note: this announcement was authored by Aparna Sinha (Google), Ihor Dvoretskyi (CNCF), Jaice Singer DuMars (Microsoft), and Caleb Miles (CoreOS)._
diff --git a/content/en/blog/_posts/2017-11-00-Containerd-Container-Runtime-Options-Kubernetes.md b/content/en/blog/_posts/2017-11-00-Containerd-Container-Runtime-Options-Kubernetes.md
index 2a105c6396..7bfcebe705 100644
--- a/content/en/blog/_posts/2017-11-00-Containerd-Container-Runtime-Options-Kubernetes.md
+++ b/content/en/blog/_posts/2017-11-00-Containerd-Container-Runtime-Options-Kubernetes.md
@@ -4,7 +4,12 @@ date: 2017-11-02
 slug: containerd-container-runtime-options-kubernetes
 url: /blog/2017/11/Containerd-Container-Runtime-Options-Kubernetes
 ---
- **_Editor's note: Today's post is by Lantao Liu, Software Engineer at Google, and Mike Brown, Open Source Developer Advocate at IBM._**  
+
+**Authors:** Lantao Liu (Google), and Mike Brown (IBM)
+
+_Update: Kubernetes support for Docker via `dockershim` is now deprecated.
+For more information, read the [deprecation notice](/blog/2020/12/08/kubernetes-1-20-release-announcement/#dockershim-deprecation).
+You can also discuss the deprecation via a dedicated [GitHub issue](https://github.com/kubernetes/kubernetes/issues/106917)._
 
 A _container runtime_ is software that executes containers and manages container images on a node. Today, the most widely known container runtime is [Docker](https://www.docker.com/), but there are other container runtimes in the ecosystem, such as [rkt](https://coreos.com/rkt/), [containerd](https://containerd.io/), and [lxd](https://linuxcontainers.org/lxd/). Docker is by far the most common container runtime used in production Kubernetes environments, but Docker’s smaller offspring, containerd, may prove to be a better option. This post describes using containerd with Kubernetes.  
 
diff --git a/content/en/blog/_posts/2017-12-00-Kubernetes-19-Workloads-Expanded-Ecosystem.md b/content/en/blog/_posts/2017-12-00-Kubernetes-19-Workloads-Expanded-Ecosystem.md
index cb73d95162..cefcf21452 100644
--- a/content/en/blog/_posts/2017-12-00-Kubernetes-19-Workloads-Expanded-Ecosystem.md
+++ b/content/en/blog/_posts/2017-12-00-Kubernetes-19-Workloads-Expanded-Ecosystem.md
@@ -1,9 +1,13 @@
 ---
-title: " Kubernetes 1.9: Apps Workloads GA and Expanded Ecosystem "
+title: "Kubernetes 1.9: Apps Workloads GA and Expanded Ecosystem"
 date: 2017-12-15
 slug: kubernetes-19-workloads-expanded-ecosystem
 url: /blog/2017/12/Kubernetes-19-Workloads-Expanded-Ecosystem
+evergreen: true
 ---
+
+**Authors:** Kubernetes v1.9 release team
+
 We’re pleased to announce the delivery of Kubernetes 1.9, our fourth and final release this year.  
 
 Today’s release continues the evolution of an increasingly rich feature set, more robust stability, and even greater community contributions. As the fourth release of the year, it gives us an opportunity to look back at the progress made in key areas. Particularly notable is the advancement of the Apps Workloads API to stable. This removes any reservations potential adopters might have had about the functional stability required to run mission-critical workloads. Another big milestone is the beta release of Windows support, which opens the door for many Windows-specific applications and workloads to run in Kubernetes, significantly expanding the implementation scenarios and enterprise readiness of Kubernetes.  
@@ -87,7 +91,7 @@ For recorded sessions from the largest Kubernetes gathering, [KubeCon + CloudNat
 
 ## Webinar
 
-Join members of the Kubernetes 1.9 release team on **January 9th from 10am-11am PT** to learn about the major features in this release as they demo some of the highlights in the areas of Windows and Docker support, storage, admission control, and the workloads API.&nbsp;[Register here](https://zoom.us/webinar/register/WN_oVjQMwyzQFOmWsfVzDsa2A).  
+Join members of the Kubernetes 1.9 release team on **January 9th from 10am-11am PT** to learn about the major features in this release as they demo some of the highlights in the areas of Windows and Docker support, storage, admission control, and the workloads API.&nbsp;[~Register here~](https://zoom.us/webinar/register/WN_oVjQMwyzQFOmWsfVzDsa2A).  
 
 
 ## Get involved:
diff --git a/content/en/blog/_posts/2017-12-00-Using-Ebpf-In-Kubernetes.md b/content/en/blog/_posts/2017-12-00-Using-Ebpf-In-Kubernetes.md
index 09dd0068f5..cc896a4948 100644
--- a/content/en/blog/_posts/2017-12-00-Using-Ebpf-In-Kubernetes.md
+++ b/content/en/blog/_posts/2017-12-00-Using-Ebpf-In-Kubernetes.md
@@ -117,7 +117,7 @@ To achieve the best possible isolation, each function call would have to happen
 By using Landlock, we could isolate function calls from each other within the same container, making a temporary file created by one function call inaccessible to the next function call, for example. Integration between Landlock and technologies like Kubernetes-based serverless frameworks would be a ripe area for further exploration.  
 
 ## Auditing kubectl-exec with eBPF
-In Kubernetes 1.7 the [audit proposal](/docs/tasks/debug-application-cluster/audit/) started making its way in. It's currently pre-stable with plans to be stable in the 1.10 release. As the name implies, it allows administrators to log and audit events that take place in a Kubernetes cluster.   
+In Kubernetes 1.7 the [audit proposal](/docs/tasks/debug/debug-cluster/audit/) started making its way in. It's currently pre-stable with plans to be stable in the 1.10 release. As the name implies, it allows administrators to log and audit events that take place in a Kubernetes cluster.   
 
 While these events log Kubernetes events, they don't currently provide the level of visibility that some may require. For example, while we can see that someone has used `kubectl exec` to enter a container, we are not able to see what commands were executed in that session. With eBPF one can attach a BPF program that would record any commands executed in the `kubectl exec` session and pass those commands to a user-space program that logs those events. We could then play that session back and know the exact sequence of events that took place.
 ## Learn more about eBPF
diff --git a/content/en/blog/_posts/2018-03-26-kubernetes-1-10-stabilizing-storage-security-networking.md b/content/en/blog/_posts/2018-03-26-kubernetes-1-10-stabilizing-storage-security-networking.md
index 922ec9f706..904b2d34e9 100644
--- a/content/en/blog/_posts/2018-03-26-kubernetes-1-10-stabilizing-storage-security-networking.md
+++ b/content/en/blog/_posts/2018-03-26-kubernetes-1-10-stabilizing-storage-security-networking.md
@@ -1,13 +1,9 @@
 ---
-title: 'Kubernetes 1.10: Stabilizing Storage, Security, and Networking '
-author: kbarnard
-tags:
+title: 'Kubernetes 1.10: Stabilizing Storage, Security, and Networking'
 date: 2018-03-26
 modified_time: '2018-03-27T11:01:39.569-07:00'
-blogger_id: tag:blogger.com,1999:blog-112706738355446097.post-6519705795358457586
-blogger_orig_url: https://kubernetes.io/blog/2018/03/26/kubernetes-1.10-stabilizing-storage-security-networking/
 slug: kubernetes-1.10-stabilizing-storage-security-networking
-date: 2018-03-26
+evergreen: true
 ---
 
 ***Editor's note: today's post is by the [1.10 Release
diff --git a/content/en/blog/_posts/2018-06-26-kubernetes-1-11-release-announcement.md b/content/en/blog/_posts/2018-06-26-kubernetes-1-11-release-announcement.md
index a5d9f8b4d0..4d3007f290 100644
--- a/content/en/blog/_posts/2018-06-26-kubernetes-1-11-release-announcement.md
+++ b/content/en/blog/_posts/2018-06-26-kubernetes-1-11-release-announcement.md
@@ -3,6 +3,7 @@ layout: blog
 title: 'Kubernetes 1.11: In-Cluster Load Balancing and CoreDNS Plugin Graduate to General Availability'
 date:  2018-06-27
 slug: kubernetes-1.11-release-announcement
+evergreen: true
 ---
 
 **Author**: Kubernetes 1.11 [Release Team](https://github.com/kubernetes/sig-release/blob/master/releases/release-1.11/release_team.md)
diff --git a/content/en/blog/_posts/2018-07-11-dynamic-kubelet-configuration.md b/content/en/blog/_posts/2018-07-11-dynamic-kubelet-configuration.md
index ed3914f3e5..4f5f548cee 100644
--- a/content/en/blog/_posts/2018-07-11-dynamic-kubelet-configuration.md
+++ b/content/en/blog/_posts/2018-07-11-dynamic-kubelet-configuration.md
@@ -6,6 +6,8 @@ date: 2018-07-11
 
 **Author**: Michael Taufen (Google)
 
+**Editor’s note: The feature has been removed in the version 1.24 after deprecation in 1.22.**
+
 **Editor’s note: this post is part of a [series of in-depth articles](https://kubernetes.io/blog/2018/06/27/kubernetes-1.11-release-announcement/) on what’s new in Kubernetes 1.11**
 
 ## Why Dynamic Kubelet Configuration?
diff --git a/content/en/blog/_posts/2018-07-18-11-ways-not-to-get-hacked.md b/content/en/blog/_posts/2018-07-18-11-ways-not-to-get-hacked.md
index 329d81cf56..cf72ba30f3 100644
--- a/content/en/blog/_posts/2018-07-18-11-ways-not-to-get-hacked.md
+++ b/content/en/blog/_posts/2018-07-18-11-ways-not-to-get-hacked.md
@@ -66,7 +66,7 @@ There are plenty of [good examples](https://docs.bitnami.com/kubernetes/how-to/c
 
 Incorrect or excessively permissive RBAC policies are a security threat in case of a compromised pod. Maintaining least privilege, and continuously reviewing and improving RBAC rules, should be considered part of the "technical debt hygiene" that teams build into their development lifecycle.
 
-[Audit Logging](/docs/tasks/debug-application-cluster/audit/) (beta in 1.10) provides customisable API logging at the payload (e.g. request and response), and also metadata levels. Log levels can be tuned to your organisation&#39;s security policy - [GKE](https://cloud.google.com/kubernetes-engine/docs/how-to/audit-logging#audit_policy) provides sane defaults to get you started.
+[Audit Logging](/docs/tasks/debug/debug-cluster/audit/) (beta in 1.10) provides customisable API logging at the payload (e.g. request and response), and also metadata levels. Log levels can be tuned to your organisation&#39;s security policy - [GKE](https://cloud.google.com/kubernetes-engine/docs/how-to/audit-logging#audit_policy) provides sane defaults to get you started.
 
 For read requests such as get, list, and watch, only the request object is saved in the audit logs; the response object is not. For requests involving sensitive data such as Secret and ConfigMap, only the metadata is exported. For all other requests, both request and response objects are saved in audit logs.
 
diff --git a/content/en/blog/_posts/2018-08-03-make-kubernetes-production-grade-anywhere.md b/content/en/blog/_posts/2018-08-03-make-kubernetes-production-grade-anywhere.md
index 329b2c4de7..00416256e0 100644
--- a/content/en/blog/_posts/2018-08-03-make-kubernetes-production-grade-anywhere.md
+++ b/content/en/blog/_posts/2018-08-03-make-kubernetes-production-grade-anywhere.md
@@ -174,7 +174,7 @@ Cluster-distributed stateful services (e.g., Cassandra) can benefit from splitti
 
 ## Other considerations
 
-[Logs](/docs/concepts/cluster-administration/logging/) and [metrics](/docs/tasks/debug-application-cluster/resource-usage-monitoring/) (if collected and persistently retained) are valuable to diagnose outages, but given the variety of technologies available it will not be addressed in this blog. If Internet connectivity is available, it may be desirable to retain logs and metrics externally at a central location.
+[Logs](/docs/concepts/cluster-administration/logging/) and [metrics](/docs/tasks/debug/debug-cluster/resource-usage-monitoring/) (if collected and persistently retained) are valuable to diagnose outages, but given the variety of technologies available it will not be addressed in this blog. If Internet connectivity is available, it may be desirable to retain logs and metrics externally at a central location.
 
 Your production deployment should utilize an automated installation, configuration and update tool (e.g., [Ansible](https://github.com/kubernetes-incubator/kubespray), [BOSH](https://github.com/cloudfoundry-incubator/kubo-deployment), [Chef](https://github.com/chef-cookbooks/kubernetes), [Juju](/docs/getting-started-guides/ubuntu/installation/), [kubeadm](/docs/reference/setup-tools/kubeadm/), [Puppet](https://forge.puppet.com/puppetlabs/kubernetes), etc.). A manual process will have repeatability issues, be labor intensive, error prone, and difficult to scale. [Certified distributions](https://www.cncf.io/certification/software-conformance/#logos) are likely to include a facility for retaining configuration settings across updates, but if you implement your own install and config toolchain, then retention, backup and recovery of the configuration artifacts is essential. Consider keeping your deployment components and settings under a version control system such as Git.
 
diff --git a/content/en/blog/_posts/2018-09-27-kubernetes-1-12-release-announcement.md b/content/en/blog/_posts/2018-09-27-kubernetes-1-12-release-announcement.md
index b24a6cbe09..1f847a38ca 100644
--- a/content/en/blog/_posts/2018-09-27-kubernetes-1-12-release-announcement.md
+++ b/content/en/blog/_posts/2018-09-27-kubernetes-1-12-release-announcement.md
@@ -2,6 +2,7 @@
 layout: blog
 title:  'Kubernetes 1.12: Kubelet TLS Bootstrap and Azure Virtual Machine Scale Sets (VMSS) Move to General Availability'
 date:   2018-09-27
+evergreen: true
 ---
 
 **Author**: The 1.12 [Release Team](https://github.com/kubernetes/sig-release/blob/master/releases/release-1.12/release_team.md)
diff --git a/content/en/blog/_posts/2018-10-01-health-checking-grpc.md b/content/en/blog/_posts/2018-10-01-health-checking-grpc.md
index 21eb668dc2..7fbde70524 100644
--- a/content/en/blog/_posts/2018-10-01-health-checking-grpc.md
+++ b/content/en/blog/_posts/2018-10-01-health-checking-grpc.md
@@ -6,6 +6,10 @@ date: 2018-10-01
 
 **Author**: [Ahmet Alp Balkan](https://twitter.com/ahmetb) (Google)
 
+**Update (December 2021):** _Kubernetes now has built-in gRPC health probes starting in v1.23.
+To learn more, see [Configure Liveness, Readiness and Startup Probes](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#define-a-grpc-liveness-probe).
+This article was originally written about an external tool to achieve the same task._
+
 [gRPC](https://grpc.io) is on its way to becoming the lingua franca for
 communication between cloud-native microservices. If you are deploying gRPC
 applications to Kubernetes today, you may be wondering about the best way to
diff --git a/content/en/blog/_posts/2018-10-16-kubernetes-2018-north-american-contributor-summit.md b/content/en/blog/_posts/2018-10-16-kubernetes-2018-north-american-contributor-summit.md
index 095e47a73d..13158529a2 100644
--- a/content/en/blog/_posts/2018-10-16-kubernetes-2018-north-american-contributor-summit.md
+++ b/content/en/blog/_posts/2018-10-16-kubernetes-2018-north-american-contributor-summit.md
@@ -1,13 +1,12 @@
 ---
-layout: "Blog"
+layout: blog
 title: "Kubernetes 2018 North American Contributor Summit"
-date: 2018-10-16    
+date: 2018-10-16
+evergreen: true
 ---
 
 **Authors:**
-[Bob Killen][bob] (University of Michigan)
-[Sahdev Zala][sahdev] (IBM),
-[Ihor Dvoretskyi][ihor] (CNCF) 
+[Bob Killen][bob] (University of Michigan), [Sahdev Zala][sahdev] (IBM), [Ihor Dvoretskyi][ihor] (CNCF)
 
 
 The 2018 North American Kubernetes Contributor Summit to be hosted right before
@@ -22,32 +21,34 @@ Unlike previous Contributor Summits, the event now spans two-days with a more
 relaxed ‘hallway’ track and general Contributor get-together to be hosted from
 5-8pm on Sunday December 9th at the [Garage Lounge and Gaming Hall][garage], just
 a short walk away from the Convention Center. There, contributors can enjoy
-billiards, bowling, trivia and more; accompanied by a variety of food and drink. 
+billiards, bowling, trivia and more; accompanied by a variety of food and drink.
 
 Things pick up the following day, Monday the 10th with three separate tracks: 
 
-### New Contributor Workshop:
+### New contributor workshop
 A half day workshop aimed at getting new and first time contributors onboarded
 and comfortable with working within the Kubernetes Community. Staying for the
 duration is required; this is not a workshop you can drop into. 
 
-### Current Contributor Track:
+### Current contributor track
 Reserved for those that are actively engaged with the development of the
 project; the Current Contributor Track includes Talks, Workshops, Birds of a
 Feather, Unconferences, Steering Committee Sessions, and more! Keep an eye on
 the [schedule in GitHub][schedule] as content is frequently being updated.
 
-### Docs Sprint:
-SIG-Docs will have a curated list of issues and challenges to be tackled closer
+### Docs sprint
+
+SIG Docs will have a curated list of issues and challenges to be tackled closer
 to the event date.
 
-## To Register:
+## How To Register {#to-register}
+
 To register for the Contributor Summit, see the [Registration section of the
 Event Details in GitHub][register]. Please note that registrations are being
 reviewed. If you select the “Current Contributor Track” and are not an active
 contributor, you will be asked to attend the New Contributor Workshop, or asked
 to be put on a waitlist. With thousands of contributors and only 300 spots, we
-need to make sure the right folks are in the room. 
+need to make sure the right folks are in the room.
 
 If you have any questions or concerns, please don’t hesitate to reach out to
 the Contributor Summit Events Team at community@kubernetes.io.
diff --git a/content/en/blog/_posts/2018-11-08-kubernetes-docs-update-i18n.md b/content/en/blog/_posts/2018-11-08-kubernetes-docs-update-i18n.md
index 38fd24372c..4c9af11a9e 100644
--- a/content/en/blog/_posts/2018-11-08-kubernetes-docs-update-i18n.md
+++ b/content/en/blog/_posts/2018-11-08-kubernetes-docs-update-i18n.md
@@ -41,7 +41,7 @@ These repo labels let reviewers filter for PRs and issues by language. For examp
 
 ### Team review 
 
-L10n teams can now review and approve their own PRs. For example, review and approval permissions for English are [assigned in an OWNERS file](https://github.com/kubernetes/website/blob/master/content/en/OWNERS) in the top subfolder for English content. 
+L10n teams can now review and approve their own PRs. For example, review and approval permissions for English are [assigned in an OWNERS file](https://github.com/kubernetes/website/blob/main/content/en/OWNERS) in the top subfolder for English content.
 
 Adding `OWNERS` files to subdirectories lets localization teams review and approve changes without requiring a rubber stamp approval from reviewers who may lack fluency.
 
diff --git a/content/en/blog/_posts/2018-12-03-kubernetes-1-13-release-announcement.md b/content/en/blog/_posts/2018-12-03-kubernetes-1-13-release-announcement.md
index 8aba0dc232..3e76486764 100644
--- a/content/en/blog/_posts/2018-12-03-kubernetes-1-13-release-announcement.md
+++ b/content/en/blog/_posts/2018-12-03-kubernetes-1-13-release-announcement.md
@@ -3,6 +3,7 @@ layout: blog
 title: 'Kubernetes 1.13: Simplified Cluster Management with Kubeadm, Container Storage Interface (CSI), and CoreDNS as Default DNS are Now Generally Available'
 date: 2018-12-03
 slug: kubernetes-1-13-release-announcement
+evergreen: true
 ---
 
 **Author**: The 1.13 [Release Team](https://github.com/kubernetes/sig-release/blob/master/releases/release-1.13/release_team.md)
diff --git a/content/en/blog/_posts/2018-12-04-kubeadm-ga-release.md b/content/en/blog/_posts/2018-12-04-kubeadm-ga-release.md
index 8601a7b94d..7ce4106076 100644
--- a/content/en/blog/_posts/2018-12-04-kubeadm-ga-release.md
+++ b/content/en/blog/_posts/2018-12-04-kubeadm-ga-release.md
@@ -2,6 +2,7 @@
 layout: blog
 title: Production-Ready Kubernetes Cluster Creation with kubeadm
 date: 2018-12-04
+evergreen: true
 ---
 
 **Authors**: Lucas Käldström (CNCF Ambassador) and Luc Perkins (CNCF Developer Advocate)
diff --git a/content/en/blog/_posts/2019-02-11-runc-CVE-2019-5736.md b/content/en/blog/_posts/2019-02-11-runc-CVE-2019-5736.md
index 84482daf79..027cc2e9bf 100644
--- a/content/en/blog/_posts/2019-02-11-runc-CVE-2019-5736.md
+++ b/content/en/blog/_posts/2019-02-11-runc-CVE-2019-5736.md
@@ -1,17 +1,20 @@
 ---
 title: Runc and CVE-2019-5736
 date: 2019-02-11
+evergreen: false # mentions PodSecurityPolicy
 ---
 
+Authors: Kubernetes Product Security Committee
+
 This morning [a container escape vulnerability in runc was announced](https://www.openwall.com/lists/oss-security/2019/02/11/2). We wanted to provide some guidance to Kubernetes users to ensure everyone is safe and secure.
 
-## What Is Runc?
+## What is runc?
 
 Very briefly, runc is the low-level tool which does the heavy lifting of spawning a Linux container. Other tools like Docker, Containerd, and CRI-O sit on top of runc to deal with things like data formatting and serialization, but runc is at the heart of all of these systems.
 
 Kubernetes in turn sits on top of those tools, and so while no part of Kubernetes itself is vulnerable, most Kubernetes installations are using runc under the hood.
 
-### What Is The Vulnerability?
+### What is the vulnerability?
 
 While full details are still embargoed to give people time to patch, the rough version is that when running a process as root (UID 0) inside a container, that process can exploit a bug in runc to gain root privileges on the host running the container. This then allows them unlimited access to the server as well as any other containers on that server.
 
@@ -19,13 +22,14 @@ If the process inside the container is either trusted (something you know is not
 
 The most common source of risk is attacker-controller container images, such as unvetted images from public repositories.
 
-### What Should I Do?
+### What should i do?
 
 As with all security issues, the two main options are to mitigate the vulnerability or upgrade your version of runc to one that includes the fix.
 
 As the exploit requires UID 0 within the container, a direct mitigation is to ensure all your containers are running as a non-0 user. This can be set within the container image, or via your pod specification:
 
 ```yaml
+---
 apiVersion: v1
 kind: Pod
 metadata:
@@ -39,6 +43,7 @@ spec:
 This can also be enforced globally using a PodSecurityPolicy:
 
 ```yaml
+---
 apiVersion: policy/v1beta1
 kind: PodSecurityPolicy
 metadata:
@@ -89,7 +94,7 @@ We don't have specific confirmation that Docker for Mac and Docker for Windows a
 
 If you are unable to upgrade Docker, the Rancher team has provided backports of the fix for many older versions at [github.com/rancher/runc-cve](https://github.com/rancher/runc-cve).
 
-## Getting More Information
+## Getting more information
 
 If you have any further questions about how this vulnerability impacts Kubernetes, please join us at [discuss.kubernetes.io](https://discuss.kubernetes.io/).
 
diff --git a/content/en/blog/_posts/2019-03-20-A-Look-Back-And-Whats-In-Store-For-Kubernetes-Contributor-Summits.md b/content/en/blog/_posts/2019-03-20-A-Look-Back-And-Whats-In-Store-For-Kubernetes-Contributor-Summits.md
index 37b16daf4c..99a8dcd886 100644
--- a/content/en/blog/_posts/2019-03-20-A-Look-Back-And-Whats-In-Store-For-Kubernetes-Contributor-Summits.md
+++ b/content/en/blog/_posts/2019-03-20-A-Look-Back-And-Whats-In-Store-For-Kubernetes-Contributor-Summits.md
@@ -1,13 +1,13 @@
 ---
 title: A Look Back and What's in Store for Kubernetes Contributor Summits
 date: 2019-03-20
+layout: blog
+evergreen: true
 ---
 
 **Authors:**
 Paris Pittman (Google), Jonas Rosland (VMware)
 
-**tl;dr** - [click here] for Barcelona Contributor Summit information.
-
 {{<figure width="600" src="/images/blog/2019-03-14-A-Look-Back-And-Whats-In-Store-For-Kubernetes-Contributor-Summits/celebrationsig.jpg" caption="Seattle Contributor Summit">}}
 
 As our contributing community grows in great numbers, with more than 16,000 contributors this year across 150+ GitHub repositories, it’s important to provide face to face connections for our large distributed teams to have opportunities for collaboration and learning. In [Contributor Experience], our methodology with planning events is a lot like our documentation; we build from personas -- interests, skills, and motivators to name a few. This way we ensure there is valuable content and learning for everyone.
@@ -28,13 +28,14 @@ We build the contributor summits around you:
 
 These personas combined with ample feedback from previous events, produce the   altogether experience that welcomed over 600 contributors in Copenhagen (May), Shanghai(November), and Seattle(December) in 2018. Seattle's event drew over 300+ contributors, equal to Shanghai and Copenhagen combined, for the 6th contributor event in Kubernetes history. In true Kubernetes fashion, we expect another record breaking year of attendance. We've pre-ordered 900+ [contributor patches], a tradition, and we are   looking forward to giving them to you!
 
-With that said...  
+With that said…
+
 **Save the Dates:**  
 Barcelona: May 19th (evening) and 20th (all day)  
 Shanghai: June 24th (all day)  
 San Diego: November 18th, 19th, and activities in KubeCon/CloudNativeCon week
 
-In an effort of continual improvement, here's what to expect from us this year:  
+In an effort of continual improvement, here's what to expect from us this year:
 
 * Large new contributor workshops and contributor socials at all three events expected to break previous attendance records
 * A multiple track event in San Diego for all contributor types including workshops, birds of a feather, lightning talks and more
@@ -42,7 +43,8 @@ In an effort of continual improvement, here's what to expect from us this year:
 * [An event website]!
 * Follow along with updates: kubernetes-dev@googlegroups.com is our main communication hub as always; however, we will also blog here, our [Thursday Kubernetes Community Meeting], [twitter], SIG meetings, event site, discuss.kubernetes.io, and #contributor-summit on Slack.
 * Opportunities to get involved: We still have 2019 roles available!
-Reach out to Contributor Experience via community@kubernetes.io, stop by a Wednesday SIG update meeting, or catch us on Slack (#sig-contribex).  
+Reach out to Contributor Experience via community@kubernetes.io, stop by a Wednesday SIG update meeting, or catch us on Slack (#sig-contribex).
+
 
 {{<figure width="600" src="/images/blog/2019-03-14-A-Look-Back-And-Whats-In-Store-For-Kubernetes-Contributor-Summits/unconference.jpg" caption="Unconference voting">}}
 
@@ -51,11 +53,11 @@ Reach out to Contributor Experience via community@kubernetes.io, stop by a Wedne
 Our 2018 crew 🥁  
 Jorge Castro, Paris Pittman, Bob Killen, Jeff Sica, Megan Lehn, Guinevere Saenger, Josh Berkus, Noah Abrahams, Yang Li, Xiangpeng Zhao, Puja Abbassi, Lindsey Tulloch, Zach Corleissen, Tim Pepper, Ihor Dvoretskyi, Nancy Mohamed, Chris Short, Mario Loria, Jason DeTiberus, Sahdev Zala, Mithra Raja
 
-And an introduction to our 2019 crew (a thanks in advance ;) )...  
-Jonas Rosland, Josh Berkus, Paris Pittman, Jorge Castro, Bob Killen, Deb Giles, Guinevere Saenger, Noah Abrahams, Yang Li, Xiangpeng Zhao, Puja Abbassi, Rui Chen, Tim Pepper, Ihor Dvoretskyi, Dawn Foster  
+And an introduction to our 2019 crew (a thanks in advance ;) )…  
+Jonas Rosland, Josh Berkus, Paris Pittman, Jorge Castro, Bob Killen, Deb Giles, Guinevere Saenger, Noah Abrahams, Yang Li, Xiangpeng Zhao, Puja Abbassi, Rui Chen, Tim Pepper, Ihor Dvoretskyi, Dawn Foster
 
 
-## Relive Seattle Contributor Summit 
+## Relive Seattle Contributor Summit
 
 📈 80% growth rate since the Austin 2017 December event
 
@@ -81,15 +83,11 @@ Jonas Rosland, Josh Berkus, Paris Pittman, Jorge Castro, Bob Killen, Deb Giles,
 
 📸 Pictures (special thanks to [rdodev])
 
-Garage Pic
-Reg Desk
-
 {{<figure width="600" src="/images/blog/2019-03-14-A-Look-Back-And-Whats-In-Store-For-Kubernetes-Contributor-Summits/grouppicseatle.JPG" caption="Some of the group in Seattle">}}
 
 “I love Contrib Summit! The intros and deep dives during KubeCon were a great extension of Contrib Summit. Y'all did an excellent job in the morning to level set expectations and prime everyone.” -- julianv    
 “great work! really useful and fun!” - coffeepac
 
-[click here]: https://events.linuxfoundation.org/events/contributor-summit-europe-2019/
 [Contributor Experience]: https://github.com/kubernetes/community/tree/master/sig-contributor-experience
 [Subproject OWNERs]: https://github.com/kubernetes/community/blob/master/community-membership.md
 [Chair or Tech Lead]: https://github.com/kubernetes/community/blob/master/committee-steering/governance/sig-governance.md
diff --git a/content/en/blog/_posts/2019-03-25-1-14-release-announcement.md b/content/en/blog/_posts/2019-03-25-1-14-release-announcement.md
index 448309ba3a..e021bbf1db 100644
--- a/content/en/blog/_posts/2019-03-25-1-14-release-announcement.md
+++ b/content/en/blog/_posts/2019-03-25-1-14-release-announcement.md
@@ -2,6 +2,7 @@
 title: 'Kubernetes 1.14: Production-level support for Windows Nodes, Kubectl Updates, Persistent Local Volumes GA'
 date: 2019-03-25
 slug: kubernetes-1-14-release-announcement
+evergreen: true
 ---
 
 **Authors:** The 1.14 [Release Team](https://bit.ly/k8s114-team)
diff --git a/content/en/blog/_posts/2019-03-29-kube-proxy-subtleties-debugging-an-intermittent-connection-resets.md b/content/en/blog/_posts/2019-03-29-kube-proxy-subtleties-debugging-an-intermittent-connection-resets.md
index 12dd2d79a3..bed35dabb5 100644
--- a/content/en/blog/_posts/2019-03-29-kube-proxy-subtleties-debugging-an-intermittent-connection-resets.md
+++ b/content/en/blog/_posts/2019-03-29-kube-proxy-subtleties-debugging-an-intermittent-connection-resets.md
@@ -144,10 +144,9 @@ ways to address it.
 - Specifically add an iptables rule to drop the packets that are marked as
   *INVALID*, so it won’t reach to client pod and cause harm.
 
-The fix is drafted (https://github.com/kubernetes/kubernetes/pull/74840), but
-unfortunately it didn’t catch the v1.14 release window. However, for the users
-that are affected by this bug, there is a way to mitigate the problem by applying
-the following rule in your cluster.
+The [fix](https://github.com/kubernetes/kubernetes/pull/74840) is available in v1.15+.
+However, for the users that are affected by this bug, there is a way to mitigate the
+problem by applying the following rule in your cluster.
 
 ```yaml
 apiVersion: extensions/v1beta1
diff --git a/content/en/blog/_posts/2019-04-26-latest-on-localization.md b/content/en/blog/_posts/2019-04-26-latest-on-localization.md
index 8e6176a8ce..98f1d74706 100644
--- a/content/en/blog/_posts/2019-04-26-latest-on-localization.md
+++ b/content/en/blog/_posts/2019-04-26-latest-on-localization.md
@@ -8,7 +8,7 @@ date: 2019-04-26
 
 Last year we optimized the Kubernetes website for [hosting multilingual content](/blog/2018/11/08/kubernetes-docs-updates-international-edition/). Contributors responded by adding multiple new localizations: as of April 2019, Kubernetes docs are partially available in nine different languages, with six added in 2019 alone. You can see a list of available languages in the language selector at the top of each page.
 
-By _partially available_, I mean that localizations are ongoing projects. They range from mostly complete ([Chinese docs for 1.12](https://v1-12.docs.kubernetes.io/zh/)) to brand new (1.14 docs in [Portuguese](https://kubernetes.io/pt/)). If you're interested in helping an existing localization, read on!
+By _partially available_, I mean that localizations are ongoing projects. They range from mostly complete ([Chinese docs for 1.12](https://v1-12.docs.kubernetes.io/zh-cn/)) to brand new (1.14 docs in [Portuguese](https://kubernetes.io/pt/)). If you're interested in helping an existing localization, read on!
 
 ## What is a localization?
 
diff --git a/content/en/blog/_posts/2019-05-02-kubecon-diversity-lunch-and-hack.md b/content/en/blog/_posts/2019-05-02-kubecon-diversity-lunch-and-hack.md
index 41c5fbcf36..bf8417673b 100644
--- a/content/en/blog/_posts/2019-05-02-kubecon-diversity-lunch-and-hack.md
+++ b/content/en/blog/_posts/2019-05-02-kubecon-diversity-lunch-and-hack.md
@@ -2,6 +2,7 @@
 title: "Join us for the 2019 KubeCon Diversity Lunch & Hack"
 date: 2019-05-02
 slug: kubecon-diversity-lunch-and-hack
+evergreen: false
 ---
 
 **Authors:** Kiran Oliver, Podcast Producer, The New Stack
@@ -36,4 +37,4 @@ To make this all possible, we need you. Yes, you, to register. As much as we lov
 
 We look forward to seeing you!
 
-_Special thanks to [Leah Petersen](https://www.linkedin.com/in/leahstunts/), [Sarah Conway](https://www.linkedin.com/in/sarah-conway-6166151/) and [Paris Pittman](https://www.linkedin.com/in/parispittman/) for their help in editing this post._ 
+_Special thanks to [Leah Petersen](https://www.linkedin.com/in/leahstunts/), [Sarah Conway](https://www.linkedin.com/in/sarah-conway-6166151/) and [Paris Pittman](https://www.linkedin.com/in/parispittman/) for their help in editing this post._
diff --git a/content/en/blog/_posts/2019-06-19-kubernetes-1-15-release-announcement.md b/content/en/blog/_posts/2019-06-19-kubernetes-1-15-release-announcement.md
index 3561203548..83dfb6dd50 100644
--- a/content/en/blog/_posts/2019-06-19-kubernetes-1-15-release-announcement.md
+++ b/content/en/blog/_posts/2019-06-19-kubernetes-1-15-release-announcement.md
@@ -3,6 +3,7 @@ layout: blog
 title: "Kubernetes 1.15: Extensibility and Continuous Improvement"
 date: 2019-06-19
 slug: kubernetes-1-15-release-announcement
+evergreen: true
 ---
 **Authors:** The 1.15 [Release Team](https://github.com/kubernetes/sig-release/blob/master/releases/release-1.15/release_team.md)
 
diff --git a/content/en/blog/_posts/2019-09-24-san-diego-contributor-summit.md b/content/en/blog/_posts/2019-09-24-san-diego-contributor-summit.md
index 350fbb1735..62ea9c8337 100644
--- a/content/en/blog/_posts/2019-09-24-san-diego-contributor-summit.md
+++ b/content/en/blog/_posts/2019-09-24-san-diego-contributor-summit.md
@@ -3,19 +3,18 @@ layout: blog
 title: "Contributor Summit San Diego Registration Open!"
 date: 2019-09-24
 slug: san-diego-contributor-summit
+evergreen: true
 ---
 
-**Authors: Paris Pittman (Google), Jeffrey Sica (Red Hat), Jonas Rosland (VMware)**
-
-
+**Authors:** Paris Pittman (Google), Jeffrey Sica (Red Hat), Jonas Rosland (VMware)
 
 [Contributor Summit San Diego 2019 Event Page]  
-Registration is now open and in record time, we’ve hit capacity for the
-*new contributor workshop* session of the event! Waitlist is now available.
+In record time, we’ve hit capacity for the *new contributor workshop* session of
+the event!
 
 **Sunday, November 17**  
 Evening Contributor Celebration:  
-[QuartYard]*  
+[QuartYard]†  
 Address: 1301 Market Street, San Diego, CA 92101  
 Time: 6:00PM - 9:00PM  
 
@@ -68,7 +67,7 @@ Check out past blogs on [persona building around our events] and the [Barcelona
 
 ![Group Picture in 2018](/images/blog/2019-09-24-san-diego-contributor-summit/IMG_2588.JPG)
 
-*=QuartYard has a huge stage! Want to perform something in front of your contributor peers? Reach out to us! community@kubernetes.io
+†=QuartYard has a huge stage! Want to perform something in front of your contributor peers? Reach out to us! community@kubernetes.io
 
 
 
diff --git a/content/en/blog/_posts/2019-10-10-contributor-summit-san-diego-schedule.md b/content/en/blog/_posts/2019-10-10-contributor-summit-san-diego-schedule.md
index e78b6a0ec7..f0f2835513 100644
--- a/content/en/blog/_posts/2019-10-10-contributor-summit-san-diego-schedule.md
+++ b/content/en/blog/_posts/2019-10-10-contributor-summit-san-diego-schedule.md
@@ -5,13 +5,7 @@ date: 2019-10-10
 slug: contributor-summit-san-diego-schedule
 ---
 
-
-Authors: Josh Berkus (Red Hat), Paris Pittman (Google), Jonas Rosland (VMware)
-
-tl;dr A week ago we announced that [registration is open][reg] for the contributor
-summit , and we're now live with [the full Contributor Summit schedule!][schedule]
-Grab your spot while tickets are still available. There is currently a waitlist
-for new contributor workshop.  ([Register here!][reg])
+**Authors:** Josh Berkus (Red Hat), Paris Pittman (Google), Jonas Rosland (VMware)
 
 There are many great sessions planned for the Contributor Summit, spread across
 five rooms of current contributor content in addition to the new contributor
@@ -32,7 +26,7 @@ While the schedule contains difficult decisions in every timeslot, we've picked
 a few below to give you a taste of what you'll hear, see, and participate in, at
 the summit:
 
-* **[Vision]**: SIG-Architecture will be sharing their vision of where we're going
+* **[Vision]**: SIG Architecture will be sharing their vision of where we're going
   with Kubernetes development for the next year and beyond.
 * **[Security]**: Tim Allclair and CJ Cullen will present on the current state of
   Kubernetes security. In another security talk, Vallery Lancey will lead a
@@ -47,7 +41,7 @@ the summit:
   one, or at least pass one.
 * **[End Users]**: Several end users from the CNCF partner ecosystem, invited by
   Cheryl Hung, will hold a Q&A with contributors to strengthen our feedback loop.
-* **[Docs]**: As always, SIG-Docs will run a three-hour contributing-to-documentation
+* **[Docs]**: As always, SIG Docs will run a three-hour contributing-to-documentation
   workshop.
 
 We're also giving out awards to contributors who distinguished themselves in 2019,
diff --git a/content/en/blog/_posts/2019-12-09-kubernetes-1.17-release-announcement.md b/content/en/blog/_posts/2019-12-09-kubernetes-1.17-release-announcement.md
index 983d7ba31e..6fb460acfb 100644
--- a/content/en/blog/_posts/2019-12-09-kubernetes-1.17-release-announcement.md
+++ b/content/en/blog/_posts/2019-12-09-kubernetes-1.17-release-announcement.md
@@ -3,6 +3,7 @@ layout: blog
 title: "Kubernetes 1.17: Stability"
 date: 2019-12-09T13:00:00-08:00
 slug: kubernetes-1-17-release-announcement
+evergreen: true
 ---
 
 **Authors:** [Kubernetes 1.17 Release Team](https://github.com/kubernetes/sig-release/blob/master/releases/release-1.17/release_team.md)
diff --git a/content/en/blog/_posts/2020-02-18-Contributor-Summit-Amsterdam-Schedule-Announced.md b/content/en/blog/_posts/2020-02-18-Contributor-Summit-Amsterdam-Schedule-Announced.md
index ae05bd8b9c..11e3ccc412 100644
--- a/content/en/blog/_posts/2020-02-18-Contributor-Summit-Amsterdam-Schedule-Announced.md
+++ b/content/en/blog/_posts/2020-02-18-Contributor-Summit-Amsterdam-Schedule-Announced.md
@@ -5,11 +5,28 @@ date: 2020-02-18
 slug: Contributor-Summit-Amsterdam-Schedule-Announced
 ---
 
-**Authors:** Jeffrey Sica (Red Hat), Amanda Katona (VMware) 
+**Authors:** Jeffrey Sica (Red Hat), Amanda Katona (VMware)
 
-tl;dr [Registration is open](https://events.linuxfoundation.org/kubernetes-contributor-summit-europe/) and the [schedule is live](https://kcseu2020.sched.com/) so register now and we’ll see you in Amsterdam!
+![Contributor Summit](/images/blog/2020-02-18-Contributor-Summit-Amsterdam-Schedule-Announced/contribsummit.jpg)
 
-## Kubernetes Contributor Summit 
+Hello everyone and Happy 2020! It’s hard to believe that KubeCon EU 2020 is less than six weeks away, and with that another contributor summit! This year we have the pleasure of being in Amsterdam in early spring, so be sure to pack some warmer clothing. This summit looks to be exciting with a lot of fantastic community-driven content. We received **26** submissions from the CFP. From that, the events team selected **12** sessions. Each of the sessions falls into one of four categories:
+
+*   Community
+*   Contributor Improvement
+*   Sustainability
+*   In-depth Technical
+
+On top of the presentations, there will be a dedicated Docs Sprint as well as the New Contributor Workshop 101 and 201 Sessions. All told, we will have five separate rooms of content throughout the day on Monday. Please **[see the full schedule](https://kcseu2020.sched.com/)** to see what sessions you’d be interested in. We hope between the content provided and the inevitable hallway track, everyone has a fun and enriching experience. 
+
+Speaking of fun, the social Sunday night should be a blast! We’re hosting this summit’s social close to the conference center, at [ZuidPool](https://www.zuid-pool.nl/en/). There will be games, bingo, and unconference sign-up throughout the evening. It should be a relaxed way to kick off the week. 
+
+[~Registration is open~](https://events.linuxfoundation.org/kubernetes-contributor-summit-europe/)! Space is limited so it’s always a good idea to register early.
+
+If you have any questions, reach out to the [Amsterdam Team](https://github.com/kubernetes/community/tree/master/events/2020/03-contributor-summit#team) on Slack in the [#contributor-summit](https://kubernetes.slack.com/archives/C7J893413) channel.
+
+Hope to see you there!
+
+## Kubernetes Contributor Summit schedule
 
 **Sunday, March 29, 2020**
 
@@ -25,21 +42,3 @@ tl;dr [Registration is open](https://events.linuxfoundation.org/kubernetes-contr
 - Address: [Europaplein 24, 1078 GZ Amsterdam, Netherlands](https://www.google.com/search?q=kubecon+amsterdam+2020&oq=kubecon+amste&aqs=chrome.0.35i39j69i57j0l4j69i61l2.3957j1j4&sourceid=chrome&ie=UTF-8&ibp=htl;events&rciv=evn&sa=X&ved=2ahUKEwiZoLvQ0dvnAhVST6wKHScBBZ8Q5bwDMAB6BAgSEAE#)
 - Time:  09:00 - 17:00 (Breakfast at 08:00)
 
-![Contributor Summit](/images/blog/2020-02-18-Contributor-Summit-Amsterdam-Schedule-Announced/contribsummit.jpg)
-
-Hello everyone and Happy 2020! It’s hard to believe that KubeCon EU 2020 is less than six weeks away, and with that another contributor summit! This year we have the pleasure of being in Amsterdam in early spring, so be sure to pack some warmer clothing. This summit looks to be exciting with a lot of fantastic community-driven content. We received **26** submissions from the CFP. From that, the events team selected **12** sessions. Each of the sessions falls into one of four categories:
-
-*   Community
-*   Contributor Improvement
-*   Sustainability
-*   In-depth Technical 
-
-On top of the presentations, there will be a dedicated Docs Sprint as well as the New Contributor Workshop 101 and 201 Sessions. All told, we will have five separate rooms of content throughout the day on Monday. Please **[see the full schedule](https://kcseu2020.sched.com/)** to see what sessions you’d be interested in. We hope between the content provided and the inevitable hallway track, everyone has a fun and enriching experience. 
-
-Speaking of fun, the social Sunday night should be a blast! We’re hosting this summit’s social close to the conference center, at [ZuidPool](https://www.zuid-pool.nl/en/). There will be games, bingo, and unconference sign-up throughout the evening. It should be a relaxed way to kick off the week. 
-
-[Registration is open](https://events.linuxfoundation.org/kubernetes-contributor-summit-europe/)! Space is limited so it’s always a good idea to register early. 
-
-If you have any questions, reach out to the [Amsterdam Team](https://github.com/kubernetes/community/tree/master/events/2020/03-contributor-summit#team) on Slack in the [#contributor-summit](https://kubernetes.slack.com/archives/C7J893413) channel.
-
-Hope to see you there!
diff --git a/content/en/blog/_posts/2020-03-04-Contributor-Summit-Delayed.md b/content/en/blog/_posts/2020-03-04-Contributor-Summit-Delayed.md
index 1996b6201e..10d96ec351 100644
--- a/content/en/blog/_posts/2020-03-04-Contributor-Summit-Delayed.md
+++ b/content/en/blog/_posts/2020-03-04-Contributor-Summit-Delayed.md
@@ -3,13 +3,14 @@ layout: blog
 title: Contributor Summit Amsterdam Postponed
 date: 2020-03-04
 slug: Contributor-Summit-Delayed
+evergreen: true
 ---
 
-**Authors:** Dawn Foster (VMware), Jorge Castro (VMware) 
+**Authors:** Dawn Foster (VMware), Jorge Castro (VMware)
 
 The CNCF has announced that [KubeCon + CloudNativeCon EU has been delayed](https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/attend/novel-coronavirus-update/) until July/August of 2020. As a result the Contributor Summit planning team is weighing options for how to proceed. Here’s the current plan:
 
 - There will be an in-person Contributor Summit as planned when KubeCon + CloudNativeCon is rescheduled.
-- We are looking at options for having additional virtual contributor activities in the meantime. 
+- We are looking at options for having additional virtual contributor activities in the meantime.
 
 We will communicate via this blog and the usual communications channels on the final plan. Please bear with us as we adapt when we get more information. Thank you for being patient as the team pivots to bring you a great Contributor Summit!
\ No newline at end of file
diff --git a/content/en/blog/_posts/2020-03-25-kubernetes-1.18-release-announcement.md b/content/en/blog/_posts/2020-03-25-kubernetes-1.18-release-announcement.md
index d4fb5dc7df..a65924b174 100644
--- a/content/en/blog/_posts/2020-03-25-kubernetes-1.18-release-announcement.md
+++ b/content/en/blog/_posts/2020-03-25-kubernetes-1.18-release-announcement.md
@@ -3,6 +3,7 @@ layout: blog
 title: 'Kubernetes 1.18: Fit & Finish'
 date: 2020-03-25
 slug: kubernetes-1-18-release-announcement
+evergreen: true
 ---
 
 **Authors:** [Kubernetes 1.18 Release Team](https://github.com/kubernetes/sig-release/blob/master/releases/release-1.18/release_team.md)
diff --git a/content/en/blog/_posts/2020-05-05-introducing-podtopologyspread.md b/content/en/blog/_posts/2020-05-05-introducing-podtopologyspread.md
index dfed13ca43..eab08ed299 100644
--- a/content/en/blog/_posts/2020-05-05-introducing-podtopologyspread.md
+++ b/content/en/blog/_posts/2020-05-05-introducing-podtopologyspread.md
@@ -67,7 +67,7 @@ Let's see an example of a cluster to understand this API.
 As the feature name "PodTopologySpread" implies, the basic usage of this feature
 is to run your workload with an absolute even manner (maxSkew=1), or relatively
 even manner (maxSkew>=2). See the [official
-document](/docs/concepts/workloads/pods/pod-topology-spread-constraints/)
+document](/docs/concepts/scheduling-eviction/topology-spread-constraints/)
 for more details.
 
 In addition to this basic usage, there are some advanced usage examples that
diff --git a/content/en/blog/_posts/2020-05-21-wsl2-dockerdesktop-k8s.md b/content/en/blog/_posts/2020-05-21-wsl2-dockerdesktop-k8s.md
index 0a84075aaf..cfc0cc53fc 100644
--- a/content/en/blog/_posts/2020-05-21-wsl2-dockerdesktop-k8s.md
+++ b/content/en/blog/_posts/2020-05-21-wsl2-dockerdesktop-k8s.md
@@ -360,7 +360,7 @@ So let's fix the issue by installing the missing package:
 sudo apt install -y conntrack
 ```
 
-![minikube-install-conntrack](/images/blog/2020-05-21-wsl2-dockerdesktop-k8s/wsl2-minikube-install conntrack.png)
+![minikube-install-conntrack](/images/blog/2020-05-21-wsl2-dockerdesktop-k8s/wsl2-minikube-install-conntrack.png)
 
 Let's try to launch it again:
 
diff --git a/content/en/blog/_posts/2020-08-26-kubernetes-release-1.19.md b/content/en/blog/_posts/2020-08-26-kubernetes-release-1.19.md
index 6f7a4c4096..39559ffe4c 100644
--- a/content/en/blog/_posts/2020-08-26-kubernetes-release-1.19.md
+++ b/content/en/blog/_posts/2020-08-26-kubernetes-release-1.19.md
@@ -3,6 +3,7 @@ layout: blog
 title: 'Kubernetes  1.19: Accentuate the Paw-sitive'
 date: 2020-08-26
 slug: kubernetes-release-1.19-accentuate-the-paw-sitive
+evergreen: true
 ---
 
 **Authors:** [Kubernetes 1.19 Release Team](https://github.com/kubernetes/sig-release/blob/master/releases/release-1.19/release_team.md)
diff --git a/content/en/blog/_posts/2020-09-03-warnings/index.md b/content/en/blog/_posts/2020-09-03-warnings/index.md
index 50576c0329..a5cfb9f710 100644
--- a/content/en/blog/_posts/2020-09-03-warnings/index.md
+++ b/content/en/blog/_posts/2020-09-03-warnings/index.md
@@ -3,9 +3,10 @@ layout: blog
 title: "Warning: Helpful Warnings Ahead"
 date: 2020-09-03
 slug: warnings
+evergreen: true
 ---
 
-**Author**: Jordan Liggitt (Google)
+**Author**: [Jordan Liggitt](https://github.com/liggitt) (Google)
 
 As Kubernetes maintainers, we're always looking for ways to improve usability while preserving compatibility.
 As we develop features, triage bugs, and answer support questions, we accumulate information that would be helpful for Kubernetes users to know.
@@ -59,7 +60,7 @@ so we added two administrator-facing tools to help track use of deprecated APIs
 Starting in Kubernetes v1.19, when a request is made to a deprecated REST API endpoint,
 an `apiserver_requested_deprecated_apis` gauge metric is set to `1` in the kube-apiserver process.
 This metric has labels for the API `group`, `version`, `resource`, and `subresource`,
-and a `removed_version` label that indicates the Kubernetes release in which the API will no longer be served.
+and a `removed_release` label that indicates the Kubernetes release in which the API will no longer be served.
 
 This is an example query using `kubectl`, [prom2json](https://github.com/prometheus/prom2json),
 and [jq](https://stedolan.github.io/jq/) to determine which deprecated APIs have been requested
@@ -168,7 +169,7 @@ You can also find that information through the following Prometheus query,
 which returns information about requests made to deprecated APIs which will be removed in v1.22:
 
 ```promql
-apiserver_requested_deprecated_apis{removed_version="1.22"} * on(group,version,resource,subresource)
+apiserver_requested_deprecated_apis{removed_release="1.22"} * on(group,version,resource,subresource)
 group_right() apiserver_request_total
 ```
 
@@ -176,7 +177,7 @@ group_right() apiserver_request_total
 
 Metrics are a fast way to check whether deprecated APIs are being used, and at what rate,
 but they don't include enough information to identify particular clients or API objects.
-Starting in Kubernetes v1.19, [audit events](/docs/tasks/debug-application-cluster/audit/)
+Starting in Kubernetes v1.19, [audit events](/docs/tasks/debug/debug-cluster/audit/)
 for requests to deprecated APIs include an audit annotation of `"k8s.io/deprecated":"true"`.
 Administrators can use those audit events to identify specific clients or objects that need to be updated.
 
@@ -327,7 +328,3 @@ A couple areas we're looking at next are warning about [known problematic values
 we cannot reject outright for compatibility reasons, and warning about use of deprecated fields or field values
 (like selectors using beta os/arch node labels, [deprecated in v1.14](/docs/reference/labels-annotations-taints/#beta-kubernetes-io-arch-deprecated)).
 I'm excited to see progress in this area, continuing to make it easier to use Kubernetes.
-
----
-
-_[Jordan Liggitt](https://twitter.com/liggitt) is a software engineer at Google, and helps lead Kubernetes authentication, authorization, and API efforts._
\ No newline at end of file
diff --git a/content/en/blog/_posts/2020-09-16-gsoc‘20 -building-operators-for-cluster-addons.md b/content/en/blog/_posts/2020-09-16-gsoc20-building-operators-for-cluster-addons.md
similarity index 100%
rename from content/en/blog/_posts/2020-09-16-gsoc‘20 -building-operators-for-cluster-addons.md
rename to content/en/blog/_posts/2020-09-16-gsoc20-building-operators-for-cluster-addons.md
diff --git a/content/en/blog/_posts/2020-09-30-writing-crl-scheduler/index.md b/content/en/blog/_posts/2020-09-30-writing-crl-scheduler/index.md
index 0fab185f98..dc4b97db2a 100644
--- a/content/en/blog/_posts/2020-09-30-writing-crl-scheduler/index.md
+++ b/content/en/blog/_posts/2020-09-30-writing-crl-scheduler/index.md
@@ -70,7 +70,7 @@ To correct the latter issue, we now employ a "hunt and peck" approach to removin
 ### 1. Upgrade to kubernetes 1.18 and make use of Pod Topology Spread Constraints
 
 While this seems like it could have been the perfect solution, at the time of writing Kubernetes 1.18 was unavailable on the two most common managed Kubernetes services in public cloud, EKS and GKE.
-Furthermore, [pod topology spread constraints](/docs/concepts/workloads/pods/pod-topology-spread-constraints/) were still a [beta feature in 1.18](https://v1-18.docs.kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/) which meant that it [wasn't guaranteed to be available in managed clusters](https://cloud.google.com/kubernetes-engine/docs/concepts/types-of-clusters#kubernetes_feature_choices) even when v1.18 became available.
+Furthermore, [pod topology spread constraints](/docs/concepts/scheduling-eviction/topology-spread-constraints/) were still a beta feature in 1.18 which meant that it [wasn't guaranteed to be available in managed clusters](https://cloud.google.com/kubernetes-engine/docs/concepts/types-of-clusters#kubernetes_feature_choices) even when v1.18 became available.
 The entire endeavour was concerningly reminiscent of checking [caniuse.com](https://caniuse.com/) when Internet Explorer 8 was still around.
 
 ### 2. Deploy a statefulset _per zone_.
diff --git a/content/en/blog/_posts/2020-10-12-steering-committee-results.md b/content/en/blog/_posts/2020-10-12-steering-committee-results.md
index 2acbb6d6e4..b47d9674f3 100644
--- a/content/en/blog/_posts/2020-10-12-steering-committee-results.md
+++ b/content/en/blog/_posts/2020-10-12-steering-committee-results.md
@@ -29,7 +29,7 @@ They join continuing members Christoph Blecker ([@cblecker](https://github.com/c
   * Josh Berkus ([@jberkus](https://github.com/jberkus)), Red Hat
 * Thanks to the Emeritus Steering Committee Members. Your prior service is appreciated by the community:
   * Aaron Crickenberger ([@spiffxp](https://github.com/spiffxp)), Google
-  * and Lachlan Evenson([@lachie8e)](https://github.com/lachie8e)), Microsoft
+  * and Lachlan Evenson([@lachie83)](https://github.com/lachie83)), Microsoft
 * And thank you to all the candidates who came forward to run for election. As [Jorge Castro put it](https://twitter.com/castrojo/status/1315718627639820288?s=20): we are spoiled with capable, kind, and selfless volunteers who put the needs of the project first.
 
 ## Get Involved with the Steering Committee
diff --git a/content/en/blog/_posts/2020-11-02-remembering-dan-kohn.md b/content/en/blog/_posts/2020-11-02-remembering-dan-kohn.md
index b8ffb8686a..579567750a 100644
--- a/content/en/blog/_posts/2020-11-02-remembering-dan-kohn.md
+++ b/content/en/blog/_posts/2020-11-02-remembering-dan-kohn.md
@@ -3,6 +3,7 @@ layout: blog
 title: "Remembering Dan Kohn"
 date: 2020-11-02
 slug: remembering-dan-kohn
+evergreen: true
 ---
 
 **Author**: The Kubernetes Steering Committee
diff --git a/content/en/blog/_posts/2020-11-18-cloud-native-security-for-your-cluster/index.md b/content/en/blog/_posts/2020-11-18-cloud-native-security-for-your-cluster/index.md
index 900f8b07ee..212f66bf37 100644
--- a/content/en/blog/_posts/2020-11-18-cloud-native-security-for-your-cluster/index.md
+++ b/content/en/blog/_posts/2020-11-18-cloud-native-security-for-your-cluster/index.md
@@ -18,9 +18,9 @@ The paper attempts to _not_ focus on any specific [cloud native project](https:/
 
 ## Kubernetes native security controls
 When using Kubernetes as a workload orchestrator, some of the security controls this version of the whitepaper recommends are:
-* [Pod Security Policies](/docs/concepts/policy/pod-security-policy/): Implement a single source of truth for “least privilege” workloads across the entire cluster
+* [Pod Security Policies](/docs/concepts/security/pod-security-policy/): Implement a single source of truth for “least privilege” workloads across the entire cluster
 * [Resource requests and limits](/docs/concepts/configuration/manage-resources-containers/#requests-and-limits): Apply requests (soft constraint) and limits (hard constraint) for shared resources such as memory and CPU
-* [Audit log analysis](/docs/tasks/debug-application-cluster/audit/): Enable Kubernetes API auditing and filtering for security relevant events
+* [Audit log analysis](/docs/tasks/debug/debug-cluster/audit/): Enable Kubernetes API auditing and filtering for security relevant events
 * [Control plane authentication and certificate root of trust](/docs/concepts/architecture/control-plane-node-communication/): Enable mutual TLS authentication with a trusted CA for communication within the cluster
 * [Secrets management](/docs/concepts/configuration/secret/): Integrate with a built-in or external secrets store
 
diff --git a/content/en/blog/_posts/2020-12-02-dockershim-faq.md b/content/en/blog/_posts/2020-12-02-dockershim-faq.md
index edcab9fe53..4711207b1c 100644
--- a/content/en/blog/_posts/2020-12-02-dockershim-faq.md
+++ b/content/en/blog/_posts/2020-12-02-dockershim-faq.md
@@ -3,15 +3,19 @@ layout: blog
 title: "Dockershim Deprecation FAQ"
 date: 2020-12-02
 slug: dockershim-faq
-aliases: [ '/dockershim' ]
 ---
 
+
+_**Update**: There is a [newer version](/blog/2022/02/17/dockershim-faq/) of this article available._
+
 This document goes over some frequently asked questions regarding the Dockershim
 deprecation announced as a part of the Kubernetes v1.20 release. For more detail
 on the deprecation of Docker as a container runtime for Kubernetes kubelets, and
 what that means, check out the blog post
 [Don't Panic: Kubernetes and Docker](/blog/2020/12/02/dont-panic-kubernetes-and-docker/).
 
+Also, you can read [check whether Dockershim removal affects you](/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you/) to check whether it does.
+
 ### Why is dockershim being deprecated?
 
 Maintaining dockershim has become a heavy burden on the Kubernetes maintainers.
@@ -28,7 +32,7 @@ as cgroups v2 and user namespaces are being implemented in these newer CRI
 runtimes. Removing support for the dockershim will allow further development in
 those areas.
 
-[drkep]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/1985-remove-dockershim
+[drkep]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2221-remove-dockershim
 
 ### Can I still use Docker in Kubernetes 1.20?
 
@@ -42,9 +46,11 @@ startup if using Docker as the runtime.
 
 Given the impact of this change, we are using an extended deprecation timeline.
 It will not be removed before Kubernetes 1.22, meaning the earliest release without
-dockershim would be 1.23 in late 2021. We will be working closely with vendors
-and other ecosystem groups to ensure a smooth transition and will evaluate things
-as the situation evolves.
+dockershim would be 1.23 in late 2021. 
+_Update_: removal of dockershim is scheduled for Kubernetes v1.24, see 
+[Dockershim Removal Kubernetes Enhancement Proposal][drkep].
+We will be working closely with vendors and other ecosystem groups to ensure a smooth transition and will evaluate 
+things as the situation evolves.
 
 
 ### Can I still use dockershim after it is removed from Kubernetes?
@@ -149,7 +155,7 @@ runtime where possible.
 
 Another thing to look out for is anything expecting to run for system maintenance
 or nested inside a container when building images will no longer work. For the
-former, you can use the [`crictl`][cr] tool as a drop-in replacement (see [mapping from docker cli to crictl](https://kubernetes.io/docs/tasks/debug-application-cluster/crictl/#mapping-from-docker-cli-to-crictl)) and for the
+former, you can use the [`crictl`][cr] tool as a drop-in replacement (see [mapping from dockercli to crictl](/docs/reference/tools/map-crictl-dockercli/)) and for the
 latter you can use newer container build options like [img], [buildah],
 [kaniko], or [buildkit-cli-for-kubectl] that don’t require Docker.
 
diff --git a/content/en/blog/_posts/2020-12-02-dont-panic-kubernetes-and-docker.md b/content/en/blog/_posts/2020-12-02-dont-panic-kubernetes-and-docker.md
index 944704967b..68831d8aba 100644
--- a/content/en/blog/_posts/2020-12-02-dont-panic-kubernetes-and-docker.md
+++ b/content/en/blog/_posts/2020-12-02-dont-panic-kubernetes-and-docker.md
@@ -3,10 +3,18 @@ layout: blog
 title: "Don't Panic: Kubernetes and Docker"
 date: 2020-12-02
 slug: dont-panic-kubernetes-and-docker
+evergreen: true
+---
+
+**Update:** _Kubernetes support for Docker via `dockershim` is now removed.
+For more information, read the [removal FAQ](/dockershim).
+You can also discuss the deprecation via a dedicated [GitHub issue](https://github.com/kubernetes/kubernetes/issues/106917)._
+
 ---
 
 **Authors:** Jorge Castro, Duffie Cooley, Kat Cosgrove, Justin Garrison, Noah Kantrowitz, Bob Killen, Rey Lejano, Dan “POP” Papandrea, Jeffrey Sica, Davanum “Dims” Srinivas
 
+
 Kubernetes is [deprecating
 Docker](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.20.md#deprecation)
 as a container runtime after v1.20.
@@ -24,7 +32,7 @@ shouldn’t, use Docker as a development tool anymore. Docker is still a useful
 tool for building containers, and the images that result from running `docker
 build` can still run in your Kubernetes cluster. 
  
-If you’re using a managed Kubernetes service like GKE, EKS, or AKS (which [defaults to containerd](https://github.com/Azure/AKS/releases/tag/2020-11-16)) you will need to
+If you’re using a managed Kubernetes service like AKS, EkS or GKE, you will need to
 make sure your worker nodes are using a supported container runtime before
 Docker support is removed in a future version of Kubernetes. If you have node
 customizations you may need to update them based on your environment and runtime
@@ -33,8 +41,8 @@ testing and planning.
 
 If you’re rolling your own clusters, you will also need to make changes to avoid
 your clusters breaking. At v1.20, you will get a deprecation warning for Docker.
-When Docker runtime support is removed in a future release (currently planned
-for the 1.22 release in late 2021) of Kubernetes it will no longer be supported
+When Docker runtime support is removed in a future release (<del>currently planned
+for the 1.22 release in late 2021</del>) of Kubernetes it will no longer be supported
 and you will need to switch to one of the other compliant container runtimes,
 like containerd or CRI-O. Just make sure that the runtime you choose supports
 the docker daemon configurations you currently use (e.g. logging).
@@ -101,4 +109,4 @@ questions regardless of experience level or complexity! Our goal is to make sure
 everyone is educated as much as possible on the upcoming changes. We hope
 this has answered most of your questions and soothed some anxieties! ❤️
 
-Looking for more answers? Check out our accompanying [Dockershim Deprecation FAQ](/blog/2020/12/02/dockershim-faq/).
+Looking for more answers? Check out our accompanying [Dockershim Removal FAQ](/blog/2022/02/17/dockershim-faq/) _(updated February 2022)_.
diff --git a/content/en/blog/_posts/2020-12-08-kubernetes-release-1.20.md b/content/en/blog/_posts/2020-12-08-kubernetes-release-1.20.md
index deb459c4be..295c8d7d36 100644
--- a/content/en/blog/_posts/2020-12-08-kubernetes-release-1.20.md
+++ b/content/en/blog/_posts/2020-12-08-kubernetes-release-1.20.md
@@ -3,6 +3,7 @@ layout: blog
 title: 'Kubernetes 1.20: The Raddest Release'
 date: 2020-12-08
 slug: kubernetes-1-20-release-announcement
+evergreen: true
 ---
 
 **Authors:** [Kubernetes 1.20 Release Team](https://github.com/kubernetes/sig-release/blob/master/releases/release-1.20/release_team.md)
@@ -31,7 +32,7 @@ The `kubectl alpha debug` features graduates to beta in 1.20, becoming `kubectl
 
 Note that as a new built-in command, `kubectl debug` takes priority over any kubectl plugin named “debug”. You must rename the affected plugin.
 
-Invocations using `kubectl alpha debug` are now deprecated and will be removed in a subsequent release. Update your scripts to use `kubectl debug`. For more information about `kubectl debug`, see [Debugging Running Pods](https://kubernetes.io/docs/tasks/debug-application-cluster/debug-running-pod/).
+Invocations using `kubectl alpha debug` are now deprecated and will be removed in a subsequent release. Update your scripts to use `kubectl debug`. For more information about `kubectl debug`, see [Debugging Running Pods](https://kubernetes.io/docs/tasks/debug/debug-application/debug-running-pod/).
 
 ### Beta: API Priority and Fairness
 
diff --git a/content/en/blog/_posts/2021-04-06-PodSecurityPolicy-Past-Present-and-Future.md b/content/en/blog/_posts/2021-04-06-PodSecurityPolicy-Past-Present-and-Future.md
index c65069460a..73043a67e0 100644
--- a/content/en/blog/_posts/2021-04-06-PodSecurityPolicy-Past-Present-and-Future.md
+++ b/content/en/blog/_posts/2021-04-06-PodSecurityPolicy-Past-Present-and-Future.md
@@ -21,7 +21,7 @@ Until then, PSP is still PSP. There will be at least a year during which the new
 
 ## What is PodSecurityPolicy?
 
-[PodSecurityPolicy](/docs/concepts/policy/pod-security-policy/) is a built-in [admission controller](/blog/2019/03/21/a-guide-to-kubernetes-admission-controllers/) that allows a cluster administrator to control security-sensitive aspects of the Pod specification. 
+[PodSecurityPolicy](/docs/concepts/security/pod-security-policy/) is a built-in [admission controller](/blog/2019/03/21/a-guide-to-kubernetes-admission-controllers/) that allows a cluster administrator to control security-sensitive aspects of the Pod specification. 
 
 First, one or more PodSecurityPolicy resources are created in a cluster to define the requirements Pods must meet. Then, RBAC rules are created to control which PodSecurityPolicy applies to a given pod. If a pod meets the requirements of its PSP, it will be admitted to the cluster as usual. In some cases, PSP can also modify Pod fields, effectively creating new defaults for those fields. If a Pod does not meet the PSP requirements, it is rejected, and cannot run. 
 
diff --git a/content/en/blog/_posts/2021-04-08-kubernetes-release-1.21.md b/content/en/blog/_posts/2021-04-08-kubernetes-release-1.21.md
index ed0da32f25..b22eeeb027 100644
--- a/content/en/blog/_posts/2021-04-08-kubernetes-release-1.21.md
+++ b/content/en/blog/_posts/2021-04-08-kubernetes-release-1.21.md
@@ -3,6 +3,7 @@ layout: blog
 title: 'Kubernetes 1.21: Power to the Community'
 date: 2021-04-08
 slug: kubernetes-1-21-release-announcement
+evergreen: true
 ---
 
 **Authors:** [Kubernetes 1.21 Release Team](https://github.com/kubernetes/sig-release/blob/master/releases/release-1.21/release-team.md)
diff --git a/content/en/blog/_posts/2021-04-19-introducing-indexed-jobs.md b/content/en/blog/_posts/2021-04-19-introducing-indexed-jobs.md
index 990dd6308b..e0233d69a6 100644
--- a/content/en/blog/_posts/2021-04-19-introducing-indexed-jobs.md
+++ b/content/en/blog/_posts/2021-04-19-introducing-indexed-jobs.md
@@ -62,7 +62,7 @@ spec:
 Note that completion mode is an alpha feature in the 1.21 release. To be able to
 use it in your cluster, make sure to enable the `IndexedJob` [feature
 gate](/docs/reference/command-line-tools-reference/feature-gates/) on the
-[API server](docs/reference/command-line-tools-reference/kube-apiserver/) and
+[API server](/docs/reference/command-line-tools-reference/kube-apiserver/) and
 the [controller manager](/docs/reference/command-line-tools-reference/kube-controller-manager/).
 
 When you run the example, you will see that each of the three created Pods gets a
diff --git a/content/en/blog/_posts/2021-04-22-gateway-api/index.md b/content/en/blog/_posts/2021-04-22-gateway-api/index.md
index d9c798a5b1..145554803d 100644
--- a/content/en/blog/_posts/2021-04-22-gateway-api/index.md
+++ b/content/en/blog/_posts/2021-04-22-gateway-api/index.md
@@ -30,15 +30,15 @@ This led to design principles that allow the Gateway API to improve upon Ingress
 
 The Gateway API introduces a few new resource types:
 
-- **[GatewayClasses](https://gateway-api.sigs.k8s.io/references/spec/#networking.x-k8s.io/v1alpha1.GatewayClass)** are cluster-scoped resources that act as templates to explicitly define behavior for Gateways derived from them. This is similar in concept to StorageClasses, but for networking data-planes.
-- **[Gateways](https://gateway-api.sigs.k8s.io/references/spec/#networking.x-k8s.io/v1alpha1.Gateway)** are the deployed instances of GatewayClasses. They are the logical representation of the data-plane which performs routing, which may be in-cluster proxies, hardware LBs, or cloud LBs.
-- **Routes** are not a single resource, but represent many different protocol-specific Route resources. The [HTTPRoute](https://gateway-api.sigs.k8s.io/references/spec/#networking.x-k8s.io/v1alpha1.HTTPRoute) has matching, filtering, and routing rules that get applied to Gateways that can process HTTP and HTTPS traffic. Similarly, there are [TCPRoutes](https://gateway-api.sigs.k8s.io/references/spec/#networking.x-k8s.io/v1alpha1.TCPRoute), [UDPRoutes](https://gateway-api.sigs.k8s.io/references/spec/#networking.x-k8s.io/v1alpha1.UDPRoute), and [TLSRoutes](https://gateway-api.sigs.k8s.io/references/spec/#networking.x-k8s.io/v1alpha1.TLSRoute) which also have protocol-specific semantics. This model also allows the Gateway API to incrementally expand its protocol support in the future.
+- **[GatewayClasses](https://gateway-api.sigs.k8s.io/concepts/api-overview/#gatewayclass)** are cluster-scoped resources that act as templates to explicitly define behavior for Gateways derived from them. This is similar in concept to StorageClasses, but for networking data-planes.
+- **[Gateways](https://gateway-api.sigs.k8s.io/concepts/api-overview/#gateway)** are the deployed instances of GatewayClasses. They are the logical representation of the data-plane which performs routing, which may be in-cluster proxies, hardware LBs, or cloud LBs.
+- **Routes** are not a single resource, but represent many different protocol-specific Route resources. The [HTTPRoute](https://gateway-api.sigs.k8s.io/concepts/api-overview/#httproute) has matching, filtering, and routing rules that get applied to Gateways that can process HTTP and HTTPS traffic. Similarly, there are [TCPRoutes](https://gateway-api.sigs.k8s.io/concepts/api-overview/#tcproute-and-udproute), [UDPRoutes](https://gateway-api.sigs.k8s.io/concepts/api-overview/#tcproute-and-udproute), and [TLSRoutes](https://gateway-api.sigs.k8s.io/concepts/api-overview/#gateway) which also have protocol-specific semantics. This model also allows the Gateway API to incrementally expand its protocol support in the future.
 
 ![The resources of the Gateway API](gateway-api-resources.png)
 
 ### Gateway Controller Implementations
 
-The good news is that although Gateway is in [Alpha](https://github.com/kubernetes-sigs/gateway-api/releases), there are already several [Gateway controller implementations](https://gateway-api.sigs.k8s.io/references/implementations/) that you can run. Since it’s a standardized spec, the following example could be run on any of them and should function the exact same way. Check out [getting started](https://gateway-api.sigs.k8s.io/guides/getting-started/) to see how to install and use one of these Gateway controllers.
+The good news is that although Gateway is in [Alpha](https://github.com/kubernetes-sigs/gateway-api/releases), there are already several [Gateway controller implementations](https://gateway-api.sigs.k8s.io/implementations/) that you can run. Since it’s a standardized spec, the following example could be run on any of them and should function the exact same way. Check out [getting started](https://gateway-api.sigs.k8s.io/v1alpha1/guides/getting-started/) to see how to install and use one of these Gateway controllers.
 
 ## Getting Hands-on with the Gateway API
 
@@ -134,7 +134,7 @@ spec:
 
 So we have two HTTPRoutes matching and routing traffic to different Services. You might be wondering, where are these Services accessible? Through which networks or IPs are they exposed? 
 
-How Routes are exposed to clients is governed by [Route binding](https://gateway-api.sigs.k8s.io/concepts/api-overview/#route-binding), which describes how Routes and Gateways create a bidirectional relationship between each other. When Routes are bound to a Gateway it means their collective routing rules are configured on the underlying load balancers or proxies and the Routes are accessible through the Gateway. Thus, a Gateway is a logical representation of a networking data plane that can be configured through Routes.
+How Routes are exposed to clients is governed by [Route binding](https://gateway-api.sigs.k8s.io/concepts/api-overview/#route-resources), which describes how Routes and Gateways create a bidirectional relationship between each other. When Routes are bound to a Gateway it means their collective routing rules are configured on the underlying load balancers or proxies and the Routes are accessible through the Gateway. Thus, a Gateway is a logical representation of a networking data plane that can be configured through Routes.
 
 
 ![How Routes bind with Gateways](route-binding.png )
@@ -192,6 +192,6 @@ When you put it all together, you have a single load balancing infrastructure th
 
 There are many resources to check out to learn more. 
 
-*   Check out the [user guides](https://gateway-api.sigs.k8s.io/guides/getting-started/) to see what use-cases can be addressed. 
-*   Try out one of the [existing Gateway controllers ](https://gateway-api.sigs.k8s.io/references/implementations/)
+*   Check out the [user guides](https://gateway-api.sigs.k8s.io/v1alpha1/guides/getting-started/) to see what use-cases can be addressed. 
+*   Try out one of the [existing Gateway controllers ](https://gateway-api.sigs.k8s.io/implementations/)
 *   Or [get involved](https://gateway-api.sigs.k8s.io/contributing/community/) and help design and influence the future of Kubernetes service networking!
diff --git a/content/en/blog/_posts/2021-05-14-using-finalizers-to-control-deletion.md b/content/en/blog/_posts/2021-05-14-using-finalizers-to-control-deletion.md
index 1f6403b301..c868b1bd5c 100644
--- a/content/en/blog/_posts/2021-05-14-using-finalizers-to-control-deletion.md
+++ b/content/en/blog/_posts/2021-05-14-using-finalizers-to-control-deletion.md
@@ -108,7 +108,7 @@ metadata:
   uid: 93a37fed-23e3-45e8-b6ee-b2521db81638
 ```
 
-In short, what’s happened is that the object was updated, not deleted. That’s because Kubernetes saw that the object contained finalizers and put it into a read-only state. The deletion timestamp signals that the object can only be read, with the exception of removing the finalizer key updates. In other words, the deletion will not be complete until we edit the object and remove the finalizer.
+In short, what’s happened is that the object was updated, not deleted. That’s because Kubernetes saw that the object contained finalizers and blocked removal of the object from etcd. The deletion timestamp signals that deletion was requested, but the deletion will not be complete until we edit the object and remove the finalizer.
 
 Here's a demonstration of using the `patch` command to remove finalizers. If we want to delete an object, we can simply patch it on the command line to remove the finalizers. In this way, the deletion that was running in the background will complete and the object will be deleted. When we attempt to `get` that configmap, it will be gone. 
 
@@ -190,9 +190,10 @@ kubectl get configmap
 No resources found in default namespace.
 ```
 
-To sum things up, when there's an override owner reference from a child to a parent, deleting the parent deletes the children automatically. This is called `cascade`. The default for cascade is `true`, however, you can use the --cascade=false option for `kubectl delete` to delete an object and orphan its children. 
+To sum things up, when there's an override owner reference from a child to a parent, deleting the parent deletes the children automatically. This is called `cascade`. The default for cascade is `true`, however, you can use the --cascade=orphan option for `kubectl delete` to delete an object and orphan its children.  *Update: starting with kubectl v1.20, the default for cascade is `background`.*
 
-In the following example, there is a parent and a child. Notice the owner references are still included. If I delete the parent using --cascade=false, the parent is deleted but the child still exists:
+
+In the following example, there is a parent and a child. Notice the owner references are still included. If I delete the parent using --cascade=orphan, the parent is deleted but the child still exists:
 
 ```
 kubectl get configmap
@@ -200,7 +201,7 @@ NAME           DATA   AGE
 mymap-child    0      13m8s
 mymap-parent   0      13m8s
 
-kubectl delete --cascade=false configmap/mymap-parent
+kubectl delete --cascade=orphan configmap/mymap-parent
 configmap "mymap-parent" deleted
 
 kubectl get configmap
diff --git a/content/en/blog/_posts/2021-08-04-kubernetes-release-1.22.md b/content/en/blog/_posts/2021-08-04-kubernetes-release-1.22.md
index 9a196f7fba..4189d1a4c8 100644
--- a/content/en/blog/_posts/2021-08-04-kubernetes-release-1.22.md
+++ b/content/en/blog/_posts/2021-08-04-kubernetes-release-1.22.md
@@ -3,6 +3,7 @@ layout: blog
 title: 'Kubernetes 1.22: Reaching New Peaks'
 date: 2021-08-04
 slug: kubernetes-1-22-release-announcement
+evergreen: true
 ---
 
 **Authors:** [Kubernetes 1.22 Release Team](https://github.com/kubernetes/sig-release/blob/master/releases/release-1.22/release-team.md)
diff --git a/content/en/blog/_posts/2021-08-06-server-side-apply-ga.md b/content/en/blog/_posts/2021-08-06-server-side-apply-ga.md
index eca57a561e..01403715cc 100644
--- a/content/en/blog/_posts/2021-08-06-server-side-apply-ga.md
+++ b/content/en/blog/_posts/2021-08-06-server-side-apply-ga.md
@@ -121,7 +121,7 @@ deploymentApplyConfig.Spec.Template.Spec.WithContainers(corev1ac.Container().
 )
 
 // apply
-applied, err := deploymentClient.Apply(ctx, extractedDeployment, metav1.ApplyOptions{FieldManager: fieldMgr})
+applied, err := deploymentClient.Apply(ctx, deploymentApplyConfig, metav1.ApplyOptions{FieldManager: fieldMgr})
 ```
 
 For developers using Custom Resource Definitions (CRDs), the Kubebuilder apply support will provide the same capabilities. Documentation will be included in the Kubebuilder book when available.
diff --git a/content/en/blog/_posts/2021-08-30-volume-populators-alpha.md b/content/en/blog/_posts/2021-08-30-volume-populators-alpha.md
index 4f3a408584..a632415f50 100644
--- a/content/en/blog/_posts/2021-08-30-volume-populators-alpha.md
+++ b/content/en/blog/_posts/2021-08-30-volume-populators-alpha.md
@@ -96,15 +96,16 @@ out.
 First install the volume-data-source-validator controller.
 
 ```terminal
-kubectl apply -f https://github.com/kubernetes-csi/volume-data-source-validator/blob/master/deploy/kubernetes/rbac-data-source-validator.yaml
-kubectl apply -f https://github.com/kubernetes-csi/volume-data-source-validator/blob/master/deploy/kubernetes/setup-data-source-validator.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes-csi/volume-data-source-validator/master/client/config/crd/populator.storage.k8s.io_volumepopulators.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes-csi/volume-data-source-validator/master/deploy/kubernetes/rbac-data-source-validator.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes-csi/volume-data-source-validator/master/deploy/kubernetes/setup-data-source-validator.yaml
 ```
 
 Next install the example populator.
 
 ```terminal
-kubectl apply -f https://github.com/kubernetes-csi/lib-volume-populator/blob/master/example/hello-populator/crd.yaml
-kubectl apply -f https://github.com/kubernetes-csi/lib-volume-populator/blob/master/example/hello-populator/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes-csi/lib-volume-populator/master/example/hello-populator/crd.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes-csi/lib-volume-populator/master/example/hello-populator/deploy.yaml
 ```
 
 Create an instance of the `Hello` CR, with some text.
diff --git a/content/en/blog/_posts/2021-09-03-api-server-tracing.md b/content/en/blog/_posts/2021-09-03-api-server-tracing.md
index fc98a68d23..344ff8fa46 100644
--- a/content/en/blog/_posts/2021-09-03-api-server-tracing.md
+++ b/content/en/blog/_posts/2021-09-03-api-server-tracing.md
@@ -42,7 +42,7 @@ samplingRatePerMillion: 10000
 
 ### Enabling Etcd Tracing
 
-Add `--experimental-enable-distributed-tracing`,  `--experimental-distributed-tracing-address=0.0.0.0:4317`, `--experimental-distributed-tracing-service-name=etcd` flags to etcd to enable tracing.  Note that this traces every request, so it will probably generate a lot of traces if you enable it.
+Add `--experimental-enable-distributed-tracing`,  `--experimental-distributed-tracing-address=0.0.0.0:4317`, `--experimental-distributed-tracing-service-name=etcd` flags to etcd to enable tracing.  Note that this traces every request, so it will probably generate a lot of traces if you enable it. Required etcd version is [v3.5+](https://etcd.io/docs/v3.5/op-guide/monitoring/#distributed-tracing).
 
 ### Example Trace: List Nodes
 
diff --git a/content/en/blog/_posts/2021-09-13-read-write-once-pod-access-mode-alpha.md b/content/en/blog/_posts/2021-09-13-read-write-once-pod-access-mode-alpha.md
index c04df56284..64d47ae657 100644
--- a/content/en/blog/_posts/2021-09-13-read-write-once-pod-access-mode-alpha.md
+++ b/content/en/blog/_posts/2021-09-13-read-write-once-pod-access-mode-alpha.md
@@ -28,7 +28,7 @@ metadata:
   name: shared-cache
 spec:
   accessModes:
-  - ReadWriteMany # Allow many pods to access shared-cache simultaneously.
+  - ReadWriteMany # Allow many nodes to access shared-cache simultaneously.
   resources:
     requests:
       storage: 1Gi
@@ -255,7 +255,7 @@ The minimum required versions are:
 
 ## What’s next?
 
-As part of the beta graduation for this feature, SIG Storage plans to update the Kubenetes scheduler to support pod preemption in relation to ReadWriteOncePod storage.
+As part of the beta graduation for this feature, SIG Storage plans to update the Kubernetes scheduler to support pod preemption in relation to ReadWriteOncePod storage.
 This means if two pods request a PersistentVolumeClaim with ReadWriteOncePod, the pod with highest priority will gain access to the PersistentVolumeClaim and any pod with lower priority will be preempted from the node and be unable to access the PersistentVolumeClaim.
 
 ## How can I learn more?
diff --git a/content/en/blog/_posts/2021-09-27-SIG-Node-Spotlight/index.md b/content/en/blog/_posts/2021-09-27-SIG-Node-Spotlight/index.md
new file mode 100644
index 0000000000..88c9fc890b
--- /dev/null
+++ b/content/en/blog/_posts/2021-09-27-SIG-Node-Spotlight/index.md
@@ -0,0 +1,72 @@
+---
+layout: blog
+title: "Spotlight on SIG Node"
+date: 2021-09-27
+slug: sig-node-spotlight-2021
+---
+
+**Author:** Dewan Ahmed, Red Hat
+
+## Introduction
+
+In Kubernetes, a _Node_ is a representation of a single machine in your cluster. [SIG Node](https://github.com/kubernetes/community/tree/master/sig-node) owns that very important Node component and supports various subprojects such as Kubelet, Container Runtime Interface (CRI) and more to support how the pods and host resources interact. In this blog, we have summarized our conversation with [Elana Hashman (EH)](https://twitter.com/ehashdn) & [Sergey Kanzhelev (SK)](https://twitter.com/SergeyKanzhelev), who walk us through the various aspects of being a part of the SIG and share some insights about how others can get involved.
+
+## A summary of our conversation
+
+### Could you tell us a little about what SIG Node does?
+
+SK: SIG Node is a vertical SIG responsible for the components that support the controlled interactions between the pods and host resources. We manage the lifecycle of pods that are scheduled to a node. This SIG's focus is to enable a broad set of workload types, including workloads with hardware specific or performance sensitive requirements. All while maintaining isolation boundaries between pods on a node, as well as the pod and the host. This SIG maintains quite a few components and has many external dependencies (like container runtimes or operating system features), which makes the complexity we deal with huge. We tame the complexity and aim to continuously improve node reliability.
+
+### "SIG Node is a vertical SIG" could you explain a bit more?
+
+EH: There are two kinds of SIGs: horizontal and vertical. Horizontal SIGs are concerned with a particular function of every component in Kubernetes: for example, SIG Security considers security aspects of every component in Kubernetes, or SIG Instrumentation looks at the logs, metrics, traces and events of every component in Kubernetes. Such SIGs don't tend to own a lot of code.
+
+Vertical SIGs, on the other hand, own a single component, and are responsible for approving and merging patches to that code base. SIG Node owns the "Node" vertical, pertaining to the kubelet and its lifecycle. This includes the code for the kubelet itself, as well as the node controller, the container runtime interface, and related subprojects like the node problem detector. 
+
+### How did the CI subproject start? Is this specific to SIG Node and how does it help the SIG?
+
+SK: The subproject started as a follow up after one of the releases was blocked by numerous test failures of critical tests. These tests haven’t started falling all at once, rather continuous lack of attention led to slow degradation of tests quality. SIG Node was always prioritizing quality and reliability, and forming of the subproject was a way to highlight this priority.
+
+### As the 3rd largest SIG in terms of number of issues and PRs, how does your SIG juggle so much work?
+
+EH: It helps to be organized. When I increased my contributions to the SIG in January of 2021, I found myself overwhelmed by the volume of pull requests and issues and wasn't sure where to start. We were already tracking test-related issues and pull requests on the CI subproject board, but that was missing a lot of our bugfixes and feature work. So I began putting together a triage board for the rest of our pull requests, which allowed me to sort each one by status and what actions to take, and documented its use for other contributors. We closed or merged over 500 issues and pull requests tracked by our two boards in each of the past two releases. The Kubernetes devstats showed that we have significantly increased our velocity as a result.
+
+In June, we ran our first bug scrub event to work through the backlog of issues filed against SIG Node, ensuring they were properly categorized. We closed over 130 issues over the course of this 48 hour global event, but as of writing we still have 333 open issues. 
+
+### Why should new and existing contributors consider joining SIG Node?
+
+SK: Being a SIG Node contributor gives you skills and recognition that are rewarding and useful. Understanding under the hood of a kubelet helps architecting better apps, tune and optimize those apps, and gives leg up in issues troubleshooting. If you are a new contributor, SIG Node gives you the foundational knowledge that is key to understanding why other Kubernetes components are designed the way they are. Existing contributors may benefit as many features will require SIG Node changes one way or another. So being a SIG Node contributor helps building features in other SIGs faster.
+
+SIG Node maintains numerous components, many of which have dependency on external projects or OS features. This makes the onboarding process quite lengthy and demanding. But if you are up for a challenge, there is always a place for you, and a group of people to support. 
+
+### What do you do to help new contributors get started?
+
+EH: Getting started in SIG Node can be intimidating, since there is so much work to be done, our SIG meetings are very large, and it can be hard to find a place to start.
+
+I always encourage new contributors to work on things that they have some investment in already. In SIG Node, that might mean volunteering to help fix a bug that you have personally been affected by, or helping to triage bugs you care about by priority.
+
+To come up to speed on any open source code base, there are two strategies you can take: start by exploring a particular issue deeply, and follow that to expand the edges of your knowledge as needed, or briefly review as many issues and change requests as you possibly can to get a higher level picture of how the component works. Ultimately, you will need to do both if you want to become a Node reviewer or approver.
+
+[Davanum Srinivas](https://twitter.com/dims) and I each ran a cohort of group mentoring to help teach new contributors the skills to become Node reviewers, and if there's interest we can work to find a mentor to run another session. I also encourage new contributors to attend our Node CI Subproject meeting: it's a smaller audience and we don't record the triage sessions, so it can be a less intimidating way to get started with the SIG. 
+
+### Are there any particular skills you’d like to recruit for? What skills are contributors to SIG Usability likely to learn?
+
+SK: SIG Node works on many workstreams in very different areas. All of these areas are on system level. For the typical code contributions you need to have a passion for building and utilizing low level APIs and writing performant and reliable components. Being a contributor you will learn how to debug and troubleshoot, profile, and monitor these components, as well as user workload that is run by these components. Often, with the limited to no access to Nodes, as they are running production workloads.
+
+The other way of contribution is to help document SIG node features. This type of contribution requires a deep understanding of features, and ability to explain them in simple terms.
+
+Finally, we are always looking for feedback on how best to run your workload. Come and  explain specifics of it, and what features in SIG Node components may help to run it better. 
+
+### What are you getting positive feedback on, and what’s coming up next for SIG Node?
+
+EH: Over the past year SIG Node has adopted some new processes to help manage our feature development and Kubernetes enhancement proposals, and other SIGs have looked to us for inspiration in managing large workloads. I hope that this is an area we can continue to provide leadership in and further iterate on.
+
+We have a great balance of new features and deprecations in flight right now. Deprecations of unused or difficult to maintain features help us keep technical debt and maintenance load under control, and examples include the dockershim and DynamicKubeletConfiguration deprecations. New features will unlock additional functionality in end users' clusters, and include exciting features like support for cgroups v2, swap memory, graceful node shutdowns, and device management policies.
+
+### Any closing thoughts/resources you’d like to share?
+
+SK/EH: It takes time and effort to get to any open source community. SIG Node may overwhelm you at first with the number of participants, volume of work, and project scope. But it is totally worth it. Join our welcoming community! [SIG Node GitHub Repo](https://github.com/kubernetes/community/tree/master/sig-node) contains many useful resources including Slack, mailing list and other contact info. 
+
+## Wrap Up
+
+SIG Node hosted a [KubeCon + CloudNativeCon Europe 2021 talk](https://www.youtube.com/watch?v=z5aY4e2RENA) with an intro and deep dive to their awesome SIG. Join the SIG's meetings to find out about the most recent research results, what the plans are for the forthcoming year, and how to get involved in the upstream Node team as a contributor!
\ No newline at end of file
diff --git a/content/en/blog/_posts/2021-09-29-data-duplication-in-data-heavy-k8s-env.md b/content/en/blog/_posts/2021-09-29-data-duplication-in-data-heavy-k8s-env.md
new file mode 100644
index 0000000000..42e9186692
--- /dev/null
+++ b/content/en/blog/_posts/2021-09-29-data-duplication-in-data-heavy-k8s-env.md
@@ -0,0 +1,243 @@
+---
+layout: blog
+title: "How to Handle Data Duplication in Data-Heavy Kubernetes Environments"
+date: 2021-09-29
+slug: how-to-handle-data-duplication-in-data-heavy-kubernetes-environments 
+---
+
+**Authors:**
+Augustinas Stirbis (CAST AI)
+
+## Why Duplicate Data?
+
+It’s convenient to create a copy of your application with a copy of its state for each team. 
+For example, you might want a separate database copy to test some significant schema changes 
+or develop other disruptive operations like bulk insert/delete/update...
+
+**Duplicating data takes a lot of time.** That’s because you need first to download 
+all the data from a source block storage provider to compute and then send 
+it back to a storage provider again. There’s a lot of network traffic and CPU/RAM used in this process.
+Hardware acceleration by offloading certain expensive operations to dedicated hardware is 
+**always a huge performance boost**. It reduces the time required to complete an operation by orders 
+of magnitude.
+
+## Volume Snapshots to the rescue
+
+Kubernetes introduced [VolumeSnapshots](/docs/concepts/storage/volume-snapshots/) as alpha in 1.12,
+beta in 1.17, and the Generally Available version in 1.20. 
+VolumeSnapshots use specialized APIs from storage providers to duplicate volume of data.
+
+Since data is already in the same storage device (array of devices), duplicating data is usually 
+a metadata operation for storage providers with local snapshots (majority of on-premise storage providers).
+All you need to do is point a new disk to an immutable snapshot and only 
+save deltas (or let it do a full-disk copy). As an operation that is inside the storage back-end,
+it’s much quicker and usually doesn’t involve sending traffic over the network.
+Public Clouds storage providers under the hood work a bit differently. They save snapshots
+to Object Storage and then copy back from Object storage to Block storage when "duplicating" disk.
+Technically there is a lot of Compute and network resources spent on Cloud providers side,
+but from Kubernetes user perspective VolumeSnapshots work the same way whether is it local or
+remote snapshot storage provider and no Compute and Network resources are involved in this operation.
+
+## Sounds like we have our solution, right?
+
+Actually, VolumeSnapshots are namespaced, and Kubernetes protects namespaced data from 
+being shared between tenants (Namespaces). This Kubernetes limitation is a conscious design 
+decision so that a Pod running in a different namespace can’t mount another application’s
+[PersistentVolumeClaim](/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims) (PVC).
+
+One way around it would be to create multiple volumes with duplicate data in one namespace.
+However, you could easily reference the wrong copy.
+
+So the idea is to separate teams/initiatives by namespaces to avoid that and generally 
+limit access to the production namespace.
+
+## Solution? Creating a Golden Snapshot externally
+
+Another way around this design limitation is to create Snapshot externally (not through Kubernetes).
+This is also called pre-provisioning a snapshot manually. Next, I will import it 
+as a multi-tenant golden snapshot that can be used for many namespaces. Below illustration will be 
+for AWS EBS (Elastic Block Storage) and GCE PD (Persistent Disk) services.
+
+### High-level plan for preparing the Golden Snapshot
+
+1. Identify Disk (EBS/Persistent Disk) that you want to clone with data in the cloud provider
+2. Make a Disk Snapshot (in cloud provider console)
+3. Get Disk Snapshot ID
+
+### High-level plan for cloning data for each team
+
+1. Create Namespace “sandbox01”
+2. Import Disk Snapshot (ID) as VolumeSnapshotContent to Kubernetes
+3. Create VolumeSnapshot in the Namespace "sandbox01" mapped to VolumeSnapshotContent
+4. Create the PersistentVolumeClaim from VolumeSnapshot
+5. Install Deployment or StatefulSet with PVC
+
+## Step 1: Identify Disk
+
+First, you need to identify your golden source. In my case, it’s a PostgreSQL database
+on PersistentVolumeClaim “postgres-pv-claim” in the “production” namespace.
+
+```terminal
+kubectl -n <namespace> get pvc <pvc-name> -o jsonpath='{.spec.volumeName}'
+```
+
+The output will look similar to:
+```
+pvc-3096b3ba-38b6-4fd1-a42f-ec99176ed0d90
+```
+
+## Step 2: Prepare your golden source
+
+You need to do this once or every time you want to refresh your golden data.
+
+### Make a Disk Snapshot
+
+Go to AWS EC2 or GCP Compute Engine console and search for an EBS volume
+(on AWS) or Persistent Disk (on GCP), that has a label matching the last output.
+In this case I saw: `pvc-3096b3ba-38b6-4fd1-a42f-ec99176ed0d9`.
+
+Click on Create snapshot and give it a name. You can do it in Console manually,
+in AWS CloudShell / Google Cloud Shell, or in the terminal. To create a snapshot in the
+terminal you must have the AWS CLI tool (`aws`) or Google's CLI (`gcloud`)
+installed and configured.
+
+Here’s the command to create snapshot on GCP:
+
+```terminal
+gcloud compute disks snapshot <cloud-disk-id> --project=<gcp-project-id> --snapshot-names=<set-new-snapshot-name> --zone=<availability-zone> --storage-location=<region>
+```
+{{< figure src="/images/blog/2021-09-07-data-duplication-in-data-heavy-k8s-env/create-volume-snapshot-gcp.png" alt="Screenshot of a terminal showing volume snapshot creation on GCP" title="GCP snapshot creation" >}}
+
+
+GCP identifies the disk by its PVC name, so it’s direct mapping. In AWS, you need to 
+find volume by the CSIVolumeName AWS tag with PVC name value first that will be used for snapshot creation.
+
+{{< figure src="/images/blog/2021-09-07-data-duplication-in-data-heavy-k8s-env/identify-volume-aws.png" alt="Screenshot of AWS web console, showing EBS volume identification" title="Identify disk ID on AWS" >}}
+
+Mark done Volume (volume-id) ```vol-00c7ecd873c6fb3ec``` and ether create EBS snapshot in AWS Console, or use ```aws cli```.
+
+```terminal
+aws ec2 create-snapshot --volume-id '<volume-id>' --description '<set-new-snapshot-name>' --tag-specifications 'ResourceType=snapshot'
+```
+
+## Step 3: Get your Disk Snapshot ID
+
+In AWS, the command above will output something similar to:
+```terminal
+"SnapshotId": "snap-09ed24a70bc19bbe4"
+```
+
+If you’re using the GCP cloud, you can get the snapshot ID from the gcloud command by querying for the snapshot’s given name:
+
+```terminal
+gcloud compute snapshots --project=<gcp-project-id> describe <new-snapshot-name> | grep id:
+```
+You should get similar output to:
+```
+id: 6645363163809389170
+```
+
+## Step 4: Create a development environment for each team
+
+Now I have my Golden Snapshot, which is immutable data. Each team will get a copy 
+of this data, and team members can modify it as they see fit, given that a new EBS/persistent 
+disk will be created for each team.
+
+Below I will define a manifest for each namespace. To save time, you can replace
+the namespace name (such as changing “sandbox01” → “sandbox42”) using tools
+such as `sed` or `yq`, with Kubernetes-aware templating tools like
+[Kustomize](/docs/tasks/manage-kubernetes-objects/kustomization/),
+or using variable substitution in a CI/CD pipeline.
+
+Here's an example manifest:
+
+```yaml
+---
+apiVersion: snapshot.storage.k8s.io/v1
+kind: VolumeSnapshotContent
+metadata:
+ name: postgresql-orders-db-sandbox01
+ namespace: sandbox01
+spec:
+ deletionPolicy: Retain
+ driver: pd.csi.storage.gke.io
+ source:
+   snapshotHandle: 'gcp/projects/staging-eu-castai-vt5hy2/global/snapshots/6645363163809389170'
+ volumeSnapshotRef:
+   kind: VolumeSnapshot
+   name: postgresql-orders-db-snap
+   namespace: sandbox01
+---
+apiVersion: snapshot.storage.k8s.io/v1
+kind: VolumeSnapshot
+metadata:
+ name: postgresql-orders-db-snap
+ namespace: sandbox01
+spec:
+ source:
+   volumeSnapshotContentName: postgresql-orders-db-sandbox01
+```
+
+In Kubernetes, VolumeSnapshotContent (VSC) objects are not namespaced.
+However, I need a separate VSC for each different namespace to use, so the
+`metadata.name` of each VSC must also be different. To make that straightfoward,
+I used the target namespace as part of the name.
+
+Now it’s time to replace the driver field with the CSI (Container Storage Interface) driver
+installed in your K8s cluster. Major cloud providers have CSI driver for block storage that
+support VolumeSnapshots but quite often CSI drivers are not installed by default, consult
+with your Kubernetes provider. 
+
+That manifest above defines a VSC that works on GCP.
+On AWS, driver and SnashotHandle values might look like:
+
+```YAML
+  driver: ebs.csi.aws.com
+  source:
+    snapshotHandle: "snap-07ff83d328c981c98"
+```
+
+At this point, I need to use the *Retain* policy, so that the CSI driver doesn’t try to
+delete my manually created EBS disk snapshot.
+
+For GCP, you will have to build this string by hand - add a full project ID and snapshot ID.
+For AWS, it’s just a plain snapshot ID.
+
+VSC also requires specifying which VolumeSnapshot (VS) will use it, so VSC and VS are
+referencing each other.
+
+Now I can create PersistentVolumeClaim from VS above. It’s important to set this first:
+
+
+```yaml
+---
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+ name: postgres-pv-claim
+ namespace: sandbox01
+spec:
+ dataSource:
+   kind: VolumeSnapshot
+   name: postgresql-orders-db-snap
+   apiGroup: snapshot.storage.k8s.io
+ accessModes:
+   - ReadWriteOnce
+ resources:
+   requests:
+     storage: 21Gi
+```
+
+If default StorageClass has [WaitForFirstConsumer](https://kubernetes.io/docs/concepts/storage/storage-classes/#volume-binding-mode) policy,
+then the actual Cloud Disk will be created from the Golden Snapshot only when some Pod bounds that PVC.
+
+Now I assign that PVC to my Pod (in my case, it’s Postgresql) as I would with any other PVC.
+
+```terminal
+kubectl -n <namespace> get volumesnapshotContent,volumesnapshot,pvc,pod
+```
+
+Both VS and VSC should be *READYTOUSE* true, PVC bound, and the Pod (from Deployment or StatefulSet) running.
+
+**To keep on using data from my Golden Snapshot, I just need to repeat this for the
+next namespace and voilà! No need to waste time and compute resources on the duplication process.**
diff --git a/content/en/blog/_posts/2021-10-05-nsa-cisa-hardening.md b/content/en/blog/_posts/2021-10-05-nsa-cisa-hardening.md
new file mode 100644
index 0000000000..e32d7bcb72
--- /dev/null
+++ b/content/en/blog/_posts/2021-10-05-nsa-cisa-hardening.md
@@ -0,0 +1,417 @@
+---
+layout: blog
+title: A Closer Look at NSA/CISA Kubernetes Hardening Guidance
+date: 2021-10-05
+slug: nsa-cisa-kubernetes-hardening-guidance
+---
+
+**Authors:** Jim Angel (Google), Pushkar Joglekar (VMware), and Savitha
+Raghunathan (Red Hat)
+
+{{% alert title="Disclaimer" %}}
+The open source tools listed in this article are to serve as examples only 
+and are in no way a direct recommendation from the Kubernetes community or authors.
+{{% /alert %}}
+
+## Background
+
+USA's National Security Agency (NSA) and the Cybersecurity and Infrastructure
+Security Agency (CISA)
+released, "[Kubernetes Hardening Guidance](https://media.defense.gov/2021/Aug/03/2002820425/-1/-1/1/CTR_KUBERNETES%20HARDENING%20GUIDANCE.PDF)"
+on August 3rd, 2021. The guidance details threats to Kubernetes environments
+and provides secure configuration guidance to minimize risk.
+
+The following sections of this blog correlate to the sections in the NSA/CISA guidance. 
+Any missing sections are skipped because of limited opportunities to add 
+anything new to the existing content. 
+
+_Note_: This blog post is not a substitute for reading the guide. Reading the published 
+guidance is recommended before proceeding as the following content is 
+complementary.
+
+## Introduction and Threat Model
+
+Note that the threats identified as important by the NSA/CISA, or the intended audience of this guidance, may be different from the threats that other enterprise users of Kubernetes consider important. This section 
+is still useful for organizations that care about data, resource theft and 
+service unavailability.
+
+The guidance highlights the following three sources of compromises:
+
+- Supply chain risks
+- Malicious threat actors
+- Insider threats (administrators, users, or cloud service providers)
+
+The [threat model](https://en.wikipedia.org/wiki/Threat_model) tries to take a step back and review threats that not only
+exist within the boundary of a Kubernetes cluster but also include the underlying
+infrastructure and surrounding workloads that Kubernetes does not manage.
+
+For example, when a workload outside the cluster shares the same physical
+network, it has access to the kubelet and to control plane components: etcd, controller manager, scheduler and API
+server. Therefore, the guidance recommends having network level isolation
+separating Kubernetes clusters from other workloads that do not need connectivity
+to Kubernetes control plane nodes. Specifically, scheduler, controller-manager,
+etcd only need to be accessible to the API server. Any interactions with Kubernetes
+from outside the cluster can happen by providing access to API server port.
+
+List of ports and protocols for each of these components are
+defined in [Ports and Protocols](/docs/reference/ports-and-protocols/)
+within the Kubernetes documentation.
+
+> Special note: kube-scheduler and kube-controller-manager uses different ports than the ones mentioned in the guidance
+
+The [Threat modelling](https://cnsmap.netlify.app/threat-modelling) section
+from the CNCF [Cloud Native Security Whitepaper + Map](https://github.com/cncf/tag-security/tree/main/security-whitepaper)
+provides another perspective on approaching threat modelling Kubernetes, from a
+cloud native lens.
+
+## Kubernetes Pod security
+
+Kubernetes by default does not guarantee strict workload isolation between pods
+running in the same node in a cluster. However, the guidance provides several 
+techniques to enhance existing isolation and reduce the attack surface in case of a 
+compromise.
+
+### "Non-root" containers and "rootless" container engines
+
+Several best practices related to basic security principle of least privilege
+i.e. provide only the permissions are needed; no more, no less, are worth a
+second look.
+
+The guide recommends setting non-root user at build time instead of relying on
+setting `runAsUser` at runtime in your Pod spec. This is a good practice and provides
+some level of defense in depth. For example, if the container image is built with user `10001`
+and the Pod spec misses adding the `runAsuser` field in its `Deployment` object. In this
+case there are certain edge cases that are worth exploring for awareness:
+
+1. Pods can fail to start, if the user defined at build time is different from
+   the one defined in pod spec and some files are as a result inaccessible.
+2. Pods can end up sharing User IDs unintentionally. This can be problematic
+   even if the User IDs are non-zero in a situation where a container escape to
+   host file system is possible. Once the attacker has access to the host file
+   system, they get access to all the file resources that are owned by other
+   unrelated pods that share the same UID.
+3. Pods can end up sharing User IDs, with other node level processes not managed
+   by Kubernetes e.g. node level daemons for auditing, vulnerability scanning,
+   telemetry. The threat is similar to the one above where host file system
+   access can give attacker full access to these node level daemons without
+   needing to be root on the node.
+
+However, none of these cases will have as severe an impact as a container
+running as root being able to escape as a root user on the host, which can provide 
+an attacker with complete control of the worker node, further allowing lateral
+movement to other worker or control plane nodes.
+
+Kubernetes 1.22 introduced
+an [alpha feature](/docs/tasks/administer-cluster/kubelet-in-userns/)
+that specifically reduces the impact of such a control plane component running
+as root user to a non-root user through user namespaces.
+
+That ([alpha stage](/docs/reference/command-line-tools-reference/feature-gates/#feature-stages)) support for user namespaces / rootless mode is available with
+the following container runtimes:
+
+- [Docker Engine](https://docs.docker.com/engine/security/rootless/)
+- [Podman](https://developers.redhat.com/blog/2020/09/25/rootless-containers-with-podman-the-basics)
+
+Some distributions support running in rootless mode, like the following:
+
+- [kind](https://kind.sigs.k8s.io/docs/user/rootless/)
+- [k3s](https://rancher.com/docs/k3s/latest/en/advanced/#running-k3s-with-rootless-mode-experimental)
+- [Usernetes](https://github.com/rootless-containers/usernetes)
+
+### Immutable container filesystems
+
+The NSA/CISA Kubernetes Hardening Guidance highlights an often overlooked feature `readOnlyRootFileSystem`, with a
+working example in [Appendix B](https://media.defense.gov/2021/Aug/03/2002820425/-1/-1/1/CTR_KUBERNETES%20HARDENING%20GUIDANCE.PDF#page=42). This example limits execution and tampering of
+containers at runtime. Any read/write activity can then be limited to few
+directories by using `tmpfs` volume mounts.
+
+However, some applications that modify the container filesystem at runtime, like exploding a WAR or JAR file at container startup, 
+could face issues when enabling this feature. To avoid this issue, consider making minimal changes to the filesystem at runtime 
+when possible.
+
+### Building secure container images
+
+Kubernetes Hardening Guidance also recommends running a scanner at deploy time as an admission controller,
+to prevent vulnerable or misconfigured pods from running in the cluster.
+Theoretically, this sounds like a good approach but there are several caveats to
+consider before this can be implemented in practice:
+
+- Depending on network bandwidth, available resources and scanner of choice,
+  scanning for vulnerabilities for an image can take an indeterminate amount of
+  time. This could lead to slower or unpredictable pod start up times, which
+  could result in spikes of unavailability when apps are serving peak load.
+- If the policy that allows or denies pod startup is made using incorrect or
+  incomplete data it could result in several false positive or false negative
+  outcomes like the following:
+  - inside a container image, the `openssl` package is detected as vulnerable. However,
+    the application is written in Golang and uses the Go `crypto` package for TLS. Therefore, this vulnerability
+    is not in the code execution path and as such has minimal impact if it
+    remains unfixed.
+  - A vulnerability is detected in the `openssl` package for a Debian base image.
+    However, the upstream Debian community considers this as a Minor impact
+    vulnerability and as a result does not release a patch fix for this
+    vulnerability. The owner of this image is now stuck with a vulnerability that
+    cannot be fixed and a cluster that does not allow the image to run because
+    of predefined policy that does not take into account whether the fix for a
+    vulnerability is available or not
+  - A Golang app is built on top of a [distroless](https://github.com/GoogleContainerTools/distroless)
+    image, but it is compiled with a Golang version that uses a vulnerable [standard library](https://pkg.go.dev/std).
+    The scanner has
+    no visibility into golang version but only on OS level packages. So it 
+    allows the pod to run in the cluster in spite of the image containing an 
+    app binary built on vulnerable golang.
+
+To be clear, relying on vulnerability scanners is absolutely a good idea but
+policy definitions should be flexible enough to allow:
+
+- Creation of exception lists for images or vulnerabilities through labelling
+- Overriding the severity with a risk score based on impact of a vulnerability
+- Applying the same policies at build time to catch vulnerable images with
+  fixable vulnerabilities before they can be deployed into Kubernetes clusters
+
+Special considerations like offline vulnerability database fetch, may also be
+needed, if the clusters run in an air-gapped environment and the scanners
+require internet access to update the vulnerability database.
+
+### Pod Security Policies
+
+Since Kubernetes v1.21, the [PodSecurityPolicy](/docs/concepts/security/pod-security-policy/) 
+API and related features are [deprecated](/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/),
+but some of the guidance in this section will still apply for the next few years, until cluster operators
+upgrade their clusters to newer Kubernetes versions.
+
+The Kubernetes project is working on a replacement for PodSecurityPolicy.
+Kubernetes v1.22 includes an alpha feature called [Pod Security Admission](/docs/concepts/security/pod-security-admission/)
+that is intended to allow enforcing a minimum level of isolation between pods.
+
+The built-in isolation levels for Pod Security Admission are derived
+from [Pod Security Standards](/docs/concepts/security/pod-security-standards/), which is a superset of all the components mentioned in Table I [page 10](https://media.defense.gov/2021/Aug/03/2002820425/-1/-1/1/CTR_KUBERNETES%20HARDENING%20GUIDANCE.PDF#page=17) of
+the guidance.
+
+Information about migrating from PodSecurityPolicy to the Pod Security
+Admission feature is available
+in
+[Migrate from PodSecurityPolicy to the Built-In PodSecurity Admission Controller](/docs/tasks/configure-pod-container/migrate-from-psp/).
+
+One important behavior mentioned in the guidance that remains the same between
+Pod Security Policy and its replacement is that enforcing either of them does
+not affect pods that are already running. With both PodSecurityPolicy and Pod Security Admission,
+the enforcement happens during the pod creation
+stage.
+
+### Hardening container engines
+
+Some container workloads are less trusted than others but may need to run in the
+same cluster. In those cases, running them on dedicated nodes that include
+hardened container runtimes that provide stricter pod isolation boundaries can
+act as a useful security control.
+
+Kubernetes supports
+an API called [RuntimeClass](/docs/concepts/containers/runtime-class/) that is
+stable / GA (and, therefore, enabled by default) stage as of Kubernetes v1.20.
+RuntimeClass allows you to ensure that Pods requiring strong isolation are scheduled onto
+nodes that can offer it.
+
+Some third-party projects that you can use in conjunction with RuntimeClass are:
+
+- [kata containers](https://github.com/kata-containers/kata-containers/blob/main/docs/how-to/how-to-use-k8s-with-cri-containerd-and-kata.md#create-runtime-class-for-kata-containers)
+- [gvisor](https://gvisor.dev/docs/user_guide/containerd/quick_start/)
+
+As discussed here and in the guidance, many features and tooling exist in and around
+Kubernetes that can enhance the isolation boundaries between
+pods. Based on relevant threats and risk posture, you should pick and choose
+between them, instead of trying to apply all the recommendations. Having said that, cluster
+level isolation i.e. running workloads in dedicated clusters, remains the strictest workload 
+isolation mechanism, in spite of improvements mentioned earlier here and in the guide.
+
+## Network Separation and Hardening
+
+Kubernetes Networking can be tricky and this section focuses on how to secure
+and harden the relevant configurations. The guide identifies the following as key
+takeaways: 
+- Using NetworkPolicies to create isolation between resources,
+- Securing the control plane
+- Encrypting traffic and sensitive data
+
+### Network Policies
+
+Network policies can be created with the help of network plugins. In order to
+make the creation and visualization easier for users, Cilium supports
+a [web GUI tool](https://editor.cilium.io). That web GUI lets you create Kubernetes
+NetworkPolicies (a generic API that nevertheless requires a compatible CNI plugin),
+and / or Cilium network policies (CiliumClusterwideNetworkPolicy and CiliumNetworkPolicy,
+which only work in clusters that use the Cilium CNI plugin).
+You can use these APIs to restrict network traffic between pods, and therefore minimize the
+attack vector.
+
+Another scenario that is worth exploring is the usage of external IPs. Some
+services, when misconfigured, can create random external IPs. An attacker can take
+advantage of this misconfiguration and easily intercept traffic. This vulnerability
+has been reported
+in [CVE-2020-8554](https://www.cvedetails.com/cve/CVE-2020-8554/).
+Using [externalip-webhook](https://github.com/kubernetes-sigs/externalip-webhook)
+can mitigate this vulnerability by preventing the services from using random
+external IPs. [externalip-webhook](https://github.com/kubernetes-sigs/externalip-webhook) 
+only allows creation of services that don't require external IPs or whose 
+external IPs are within the range specified by the administrator.
+
+> CVE-2020-8554 - Kubernetes API server in all versions allow an attacker
+> who is able to create a ClusterIP service and set the `spec.externalIPs` field,
+> to intercept traffic to that IP address. Additionally, an attacker who is able to
+> patch the `status` (which is considered a privileged operation and should not
+> typically be granted to users) of a LoadBalancer service can set the
+> `status.loadBalancer.ingress.ip` to similar effect.
+
+### Resource Policies
+
+In addition to configuring ResourceQuotas and limits, consider restricting how many process
+IDs (PIDs) a given Pod can use, and also to reserve some PIDs for node-level use to avoid
+resource exhaustion. More details to apply these limits can be
+found in [Process ID Limits And Reservations](/docs/concepts/policy/pid-limiting/).
+
+### Control Plane Hardening
+
+In the next section, the guide covers control plane hardening. It is worth
+noting that
+from [Kubernetes 1.20](https://github.com/kubernetes/kubernetes/issues/91506),
+insecure port from API server, has been removed.
+
+### Etcd
+
+As a general rule, the etcd server should be configured to only trust
+certificates assigned to the API server. It limits the attack surface and prevents a
+malicious attacker from gaining access to the cluster. It might be beneficial to
+use a separate CA for etcd, as it by default trusts all the certificates issued
+by the root CA.
+
+### Kubeconfig Files
+
+In addition to specifying the token and certificates directly, `.kubeconfig`
+supports dynamic retrieval of temporary tokens using auth provider plugins.
+Beware of the possibility of malicious
+shell [code execution](https://banzaicloud.com/blog/kubeconfig-security/) in a
+`kubeconfig` file. Once attackers gain access to the cluster, they can steal ssh
+keys/secrets or more.
+
+### Secrets
+Kubernetes [Secrets](/docs/concepts/configuration/secret/) is the native way of managing secrets as a Kubernetes
+API object. However, in some scenarios such as a desire to have a single source of truth for all app secrets, irrespective of whether they run on Kubernetes or not, secrets can be managed loosely coupled with 
+Kubernetes and consumed by pods through side-cars or init-containers with minimal usage of Kubernetes Secrets API. 
+
+[External secrets providers](https://github.com/external-secrets/kubernetes-external-secrets)
+and [csi-secrets-store](https://github.com/kubernetes-sigs/secrets-store-csi-driver)
+are some of these alternatives to Kubernetes Secrets
+
+## Log Auditing
+
+The NSA/CISA guidance stresses monitoring and alerting based on logs. The key points
+include logging at the host level, application level, and on the cloud. When
+running Kubernetes in production, it's important to understand who's
+responsible, and who's accountable, for each layer of logging.
+
+### Kubernetes API auditing
+
+One area that deserves more focus is what exactly should alert or be logged. The
+document outlines a sample policy in [Appendix L: Audit Policy](https://media.defense.gov/2021/Aug/03/2002820425/-1/-1/1/CTR_KUBERNETES%20HARDENING%20GUIDANCE.PDF#page=55) that logs all
+RequestResponse's including metadata and request / response bodies. While helpful for a demo, it may not be practical for production.
+
+Each organization needs to evaluate their
+own threat model and build an audit policy that complements or helps troubleshooting incident response. Think
+about how someone would attack your organization and what audit trail could identify it. Review more advanced options for tuning audit logs in the official [audit logging documentation](/docs/tasks/debug/debug-cluster/audit/#audit-policy).
+It's crucial to tune your audit logs to only include events that meet your threat model. A minimal audit policy that logs everything at `metadata` level can also be a good starting point. 
+
+Audit logging configurations can also be tested with
+kind following these [instructions](https://kind.sigs.k8s.io/docs/user/auditing).
+
+### Streaming logs and auditing
+
+Logging is important for threat and anomaly detection. As the document outlines,
+it's a best practice to scan and alert on logs as close to real time as possible
+and to protect logs from tampering if a compromise occurs. It's important to
+reflect on the various levels of logging and identify the critical areas such as
+API endpoints.
+
+Kubernetes API audit logging can stream to a webhook and there's an example in [Appendix N: Webhook configuration](https://media.defense.gov/2021/Aug/03/2002820425/-1/-1/1/CTR_KUBERNETES%20HARDENING%20GUIDANCE.PDF#page=58). Using a webhook could be a method that
+stores logs off cluster and/or centralizes all audit logs. Once logs are
+centrally managed, look to enable alerting based on critical events. Also ensure
+you understand what the baseline is for normal activities.
+
+### Alert identification
+
+While the guide stressed the importance of notifications, there is not a blanket
+event list to alert from. The alerting requirements vary based on your own
+requirements and threat model. Examples include the following events:
+
+- Changes to the `securityContext` of a Pod
+- Updates to admission controller configs
+- Accessing certain files / URLs
+
+### Additional logging resources
+
+- [Seccomp Security Profiles and You: A Practical Guide - Duffie Cooley](https://www.youtube.com/watch?v=OPuu8wsu2Zc)
+- [TGI Kubernetes 119: Gatekeeper and OPA](https://www.youtube.com/watch?v=ZJgaGJm9NJE)
+- [Abusing The Lack of Kubernetes Auditing Policies](https://www.lacework.com/blog/hiding-in-plaintext-sight-abusing-the-lack-of-kubernetes-auditing-policies/)
+- [Enable seccomp for all workloads with a new v1.22 alpha feature](https://kubernetes.io/blog/2021/08/25/seccomp-default/)
+- [This Week in Cloud Native: Auditing / Pod Security](https://www.twitch.tv/videos/1147889860)
+
+## Upgrading and Application Security practices
+
+Kubernetes releases three times per year, so upgrade-related toil is a common problem for
+people running production clusters. In addition to this, operators must
+regularly upgrade the underlying node's operating system and running
+applications. This is a best practice to ensure continued support and to reduce
+the likelihood of bugs or vulnerabilities.
+
+Kubernetes supports the three most recent stable releases. While each Kubernetes
+release goes through a large number of tests before being published, some
+teams aren't comfortable running the latest stable release until some time has
+passed. No matter what version you're running, ensure that patch upgrades
+happen frequently or automatically. More information can be found in
+the [version skew](/releases/version-skew-policy/) policy
+pages.
+
+When thinking about how you'll manage node OS upgrades, consider ephemeral
+nodes. Having the ability to destroy and add nodes allows your team to respond
+quicker to node issues. In addition, having deployments that tolerate node
+instability (and a culture that encourages frequent deployments) allows for
+easier cluster upgrades.
+
+Additionally, it's worth reiterating from the guidance that periodic 
+vulnerability scans and penetration tests can be performed on the various system
+components to proactively look for insecure configurations and vulnerabilities.
+
+### Finding release & security information
+
+To find the most recent Kubernetes supported versions, refer to
+[https://k8s.io/releases](https://k8s.io/releases), which includes minor versions. It's good to stay up to date with
+your minor version patches.
+
+If you're running a managed Kubernetes offering, look for their release
+documentation and find their various security channels.
+
+Subscribe to
+the [Kubernetes Announce mailing list](https://groups.google.com/g/kubernetes-announce).
+The Kubernetes Announce mailing list is searchable for terms such
+as "[Security Advisories](https://groups.google.com/g/kubernetes-announce/search?q=%5BSecurity%20Advisory%5D)".
+You can set up alerts and email notifications as long as you know what key
+words to alert on.
+
+## Conclusion
+
+In summary, it is fantastic to see security practitioners sharing this
+level of detailed guidance in public. This guidance further highlights
+Kubernetes going mainstream and how securing Kubernetes clusters and the
+application containers running on Kubernetes continues to need attention and focus of
+practitioners. Only a few weeks after the guidance was published, an open source
+tool [kubescape](https://github.com/armosec/kubescape) to validate cluster
+against this guidance became available.
+
+This tool can be a great starting point to check the current state of your
+clusters, after which you can use the information in this blog post and in the guidance to assess 
+where improvements can be made.
+
+Finally, it is worth reiterating that not all controls in this guidance will
+make sense for all practitioners. The best way to know which controls matter is
+to rely on the threat model of your own Kubernetes environment.
+
+_A special shout out and thanks to Rory McCune (@raesene) for his inputs to this blog post_
diff --git a/content/en/blog/_posts/2021-10-08-clusterclass-and-managed-topologies.md b/content/en/blog/_posts/2021-10-08-clusterclass-and-managed-topologies.md
new file mode 100644
index 0000000000..624075fb4e
--- /dev/null
+++ b/content/en/blog/_posts/2021-10-08-clusterclass-and-managed-topologies.md
@@ -0,0 +1,142 @@
+---
+layout: blog
+title: "Introducing ClusterClass and Managed Topologies in Cluster API"
+date: 2021-10-08
+slug: capi-clusterclass-and-managed-topologies
+---
+
+**Author:** Fabrizio Pandini (VMware)
+
+The [Cluster API community](https://cluster-api.sigs.k8s.io/) is happy to announce the implementation of *ClusterClass and Managed Topologies*, a new feature that will greatly simplify how you can provision, upgrade, and operate multiple Kubernetes clusters in a declarative way.
+
+## A little bit of context…
+
+Before getting into the details, let's take a step back and look at the history of Cluster API.
+
+The [Cluster API project](https://github.com/kubernetes-sigs/cluster-api/) started three years ago, and the first releases focused on extensibility and implementing a declarative API that allows a seamless experience across infrastructure providers. This was a success with many cloud providers: AWS, Azure, Digital Ocean, GCP, Metal3, vSphere and still counting.
+
+With extensibility addressed, the focus shifted to features, like automatic control plane and etcd management, health-based machine remediation, machine rollout strategies and more.
+
+Fast forwarding to 2021, with lots of companies using Cluster API to manage fleets of Kubernetes clusters running workloads in production, the community focused its effort on stabilization of both code, APIs, documentation, and on extensive test signals which inform Kubernetes releases.
+
+With solid foundations in place, and a vibrant and welcoming community that still continues to grow, it was time to plan another iteration on our UX for both new and advanced users.
+
+Enter ClusterClass and Managed Topologies, tada!
+
+## ClusterClass
+
+As the name suggests, ClusterClass and managed topologies are built in two parts.
+
+The idea behind ClusterClass is simple: define the shape of your cluster once, and reuse it many times, abstracting the complexities and the internals of a Kubernetes cluster away.
+
+![Defining a ClusterClass](/images/blog/2021-10-08-clusterclass-and-managed-topologies/clusterclass.svg)
+
+ClusterClass, at its heart, is a collection of Cluster and Machine templates. You can use it as a “stamp” that can be leveraged to create many clusters of a similar shape.
+
+```yaml
+---
+apiVersion: cluster.x-k8s.io/v1beta1
+kind: ClusterClass
+metadata:
+  name: my-amazing-cluster-class
+spec:
+  controlPlane:
+    ref:
+      apiVersion: controlplane.cluster.x-k8s.io/v1beta1
+      kind: KubeadmControlPlaneTemplate
+      name: high-availability-control-plane
+    machineInfrastructure:
+      ref:
+        apiVersion: infrastructure.cluster.x-k8s.io/v1beta1
+        kind: DockerMachineTemplate
+        name: control-plane-machine
+  workers:
+    machineDeployments:
+      - class: type1-workers
+        template:
+          bootstrap:
+            ref:
+              apiVersion: bootstrap.cluster.x-k8s.io/v1beta1
+              kind: KubeadmConfigTemplate
+              name: type1-bootstrap
+          infrastructure:
+            ref:
+              apiVersion: infrastructure.cluster.x-k8s.io/v1beta1
+              kind: DockerMachineTemplate
+              name: type1-machine
+      - class: type2-workers
+        template:
+          bootstrap:
+            ref:
+              apiVersion: bootstrap.cluster.x-k8s.io/v1beta1
+              kind: KubeadmConfigTemplate
+              name: type2-bootstrap
+          infrastructure:
+            ref:
+              kind: DockerMachineTemplate
+              apiVersion: infrastructure.cluster.x-k8s.io/v1beta1
+              name: type2-machine
+  infrastructure:
+    ref:
+      apiVersion: infrastructure.cluster.x-k8s.io/v1beta1
+      kind: DockerClusterTemplate
+      name: cluster-infrastructure
+
+```
+
+The possibilities are endless; you can get a default ClusterClass from the community, “off-the-shelf” classes from your vendor of choice, “certified” classes from the platform admin in your company, or even create custom ones for advanced scenarios.
+
+## Managed Topologies
+
+Managed Topologies let you put the power of ClusterClass into action.
+
+Given a ClusterClass, you can create many Clusters of a similar shape by providing a single resource, the Cluster.
+
+![Create a Cluster with ClusterClass](/images/blog/2021-10-08-clusterclass-and-managed-topologies/create-cluster.svg)
+
+Here is an example:
+
+```yaml
+---
+apiVersion: cluster.x-k8s.io/v1beta1
+ kind: Cluster
+ metadata:
+   name: my-amazing-cluster
+   namespace: bar
+ spec:
+   topology: # define a managed topology
+     class: my-amazing-cluster-class # use the ClusterClass mentioned earlier
+     version: v1.21.2
+     controlPlane:
+       replicas: 3
+     workers:
+       machineDeployments:
+       - class: type1-workers
+         name: big-pool-of-machines
+         replicas: 5
+       - class: type2-workers
+         name: small-pool-of-machines
+         replicas: 1
+```
+
+But there is more than simplified cluster creation. Now the Cluster acts as a single control point for your entire topology.
+
+All the power of Cluster API, extensibility, lifecycle automation, stability, all the features required for managing an enterprise grade Kubernetes cluster on the infrastructure provider of your choice are now at your fingertips: you can create your Cluster, add new machines, upgrade to the next Kubernetes version, and all from a single place.
+
+It is just as simple as it looks!
+
+## What’s next
+
+While the amazing Cluster API community is working hard to deliver the first version of ClusterClass and managed topologies later this year, we are already looking forward to what comes next for the project and its ecosystem.
+
+There are a lot of great ideas and opportunities ahead!
+
+We want to make managed topologies even more powerful and flexible, allowing users to dynamically change bits of a ClusterClass according to the specific needs of a Cluster; this will ensure the same simple and intuitive UX for solving complex problems like e.g. selecting machine image for a specific Kubernetes version and for a specific region of your infrastructure provider, or injecting proxy configurations in the entire Cluster, and so on.
+
+Stay tuned for what comes next, and if you have any questions, comments or suggestions:
+
+* Chat with us on the Kubernetes [Slack](http://slack.k8s.io/):[#cluster-api](https://kubernetes.slack.com/archives/C8TSNPY4T)
+* Join the SIG Cluster Lifecycle [Google Group](https://groups.google.com/g/kubernetes-sig-cluster-lifecycle) to receive calendar invites and gain access to documents
+* Join our [Zoom meeting](https://zoom.us/j/861487554), every Wednesday at 10:00 Pacific Time
+* Check out the [ClusterClass quick-start](https://cluster-api.sigs.k8s.io/user/quick-start.html) for the Docker provider (CAPD) in the Cluster API book.
+* _UPDATE_: Check out the [ClusterClass experimental feature](https://cluster-api.sigs.k8s.io/tasks/experimental-features/cluster-class/index.html) documentation in the Cluster API book.
diff --git a/content/en/blog/_posts/2021-10-18-kpng-specialized-proxiers.md b/content/en/blog/_posts/2021-10-18-kpng-specialized-proxiers.md
new file mode 100644
index 0000000000..2c60c12f3f
--- /dev/null
+++ b/content/en/blog/_posts/2021-10-18-kpng-specialized-proxiers.md
@@ -0,0 +1,241 @@
+---
+layout: blog
+title: "Use KPNG to Write Specialized kube-proxiers"
+date: 2021-10-18
+slug: use-kpng-to-write-specialized-kube-proxiers
+---
+
+**Author**: Lars Ekman (Ericsson)
+
+The post will show you how to create a specialized service kube-proxy
+style network proxier using Kubernetes Proxy NG
+[kpng](https://github.com/kubernetes-sigs/kpng) without interfering
+with the existing kube-proxy. The kpng project aims at renewing the
+the default Kubernetes Service implementation, the "kube-proxy". An
+important feature of kpng is that it can be used as a library to
+create proxiers outside K8s. While this is useful for CNI-plugins that
+replaces the kube-proxy it also opens the possibility for anyone to
+create a proxier for a special purpose.
+
+
+## Define a service that uses a specialized proxier
+
+```
+apiVersion: v1
+kind: Service
+metadata:
+  name: kpng-example
+  labels:
+    service.kubernetes.io/service-proxy-name: kpng-example
+spec:
+  clusterIP: None
+  ipFamilyPolicy: RequireDualStack
+  externalIPs:
+  - 10.0.0.55
+  - 1000::55
+  selector:
+    app: kpng-alpine
+  ports:
+  - port: 6000
+```
+
+If the `service.kubernetes.io/service-proxy-name` label is defined the
+`kube-proxy` will ignore the service. A custom controller can watch
+services with the label set to it's own name, "kpng-example" in
+this example, and setup specialized load-balancing.
+
+The `service.kubernetes.io/service-proxy-name` label is [not
+new](https://kubernetes.io/docs/reference/labels-annotations-taints/#servicekubernetesioservice-proxy-name),
+but so far is has been quite hard to write a specialized proxier.
+
+The common use for a specialized proxier is assumed to be handling
+external traffic for some use-case not supported by K8s. In that
+case `ClusterIP` is not needed, so we use a "headless" service in this
+example.
+
+
+## Specialized proxier using kpng
+
+A [kpng](https://github.com/kubernetes-sigs/kpng) based proxier
+consists of the `kpng` controller handling all the K8s api related
+functions, and a "backend" implementing the load-balancing. The
+backend can be linked with the `kpng` controller binary or be a
+separate program communicating with the controller using gRPC.
+
+```
+kpng kube --service-proxy-name=kpng-example to-api
+```
+
+This starts the `kpng` controller and tell it to watch only services
+with the "kpng-example" service proxy name. The "to-api" parameter
+will open a gRPC server for backends.
+
+You can test this yourself outside your cluster. Please see the example
+below.
+
+Now we start a backend that simply prints the updates from the
+controller.
+
+```
+$ kubectl apply -f kpng-example.yaml
+$ kpng-json | jq     # (this is the backend)
+{
+  "Service": {
+    "Namespace": "default",
+    "Name": "kpng-example",
+    "Type": "ClusterIP",
+    "IPs": {
+      "ClusterIPs": {},
+      "ExternalIPs": {
+        "V4": [
+          "10.0.0.55"
+        ],
+        "V6": [
+          "1000::55"
+        ]
+      },
+      "Headless": true
+    },
+    "Ports": [
+      {
+        "Protocol": 1,
+        "Port": 6000,
+        "TargetPort": 6000
+      }
+    ]
+  },
+  "Endpoints": [
+    {
+      "IPs": {
+        "V6": [
+          "1100::202"
+        ]
+      },
+      "Local": true
+    },
+    {
+      "IPs": {
+        "V4": [
+          "11.0.2.2"
+        ]
+      },
+      "Local": true
+    },
+    {
+      "IPs": {
+        "V4": [
+          "11.0.1.2"
+        ]
+      }
+    },
+    {
+      "IPs": {
+        "V6": [
+          "1100::102"
+        ]
+      }
+    }
+  ]
+}
+```
+
+A real backend would use some mechanism to load-balance traffic from
+the external IPs to the endpoints.
+
+
+
+## Writing a backend
+
+The `kpng-json` backend looks like this:
+
+```go
+package main
+import (
+        "os"
+        "encoding/json"
+        "sigs.k8s.io/kpng/client"
+)
+func main() {
+        client.Run(jsonPrint)
+}
+func jsonPrint(items []*client.ServiceEndpoints) {
+        enc := json.NewEncoder(os.Stdout)
+        for _, item := range items {
+                _ = enc.Encode(item)
+        }
+}
+```
+
+(yes, that is the entire program)
+
+A real backend would of course be much more complex, but this
+illustrates how `kpng` let you focus on load-balancing.
+
+You can have several backends connected to a `kpng` controller, so
+during development or debug it can be useful to let something like the
+`kpng-json` backend run in parallel with your real backend.
+
+
+## Example
+
+
+The complete example can be found [here](https://github.com/kubernetes-sigs/kpng/tree/master/examples/pipe-exec).
+
+As an example we implement an "all-ip" backend. It direct all traffic
+for the externalIPs to a local endpoint, regardless of ports and upper
+layer protocols. There is a
+[KEP](https://github.com/kubernetes/enhancements/pull/2611) for this
+function and this example is a much simplified version.
+
+To direct all traffic from an external address to a local POD [only
+one iptables rule is
+needed](https://github.com/kubernetes/enhancements/pull/2611#issuecomment-895061013),
+for instance;
+
+```
+ip6tables -t nat -A PREROUTING -d 1000::55/128 -j DNAT --to-destination 1100::202
+```
+
+As you can see the addresses are in the call to the backend and all it
+have to do is:
+
+* Extract the addresses with `Local: true`
+* Setup iptables rules for the `ExternalIPs`
+
+A script doing that may look like:
+
+```
+xip=$(cat /tmp/out | jq -r .Service.IPs.ExternalIPs.V6[0])
+podip=$(cat /tmp/out | jq -r '.Endpoints[]|select(.Local == true)|select(.IPs.V6 != null)|.IPs.V6[0]')
+ip6tables -t nat -A PREROUTING -d $xip/128 -j DNAT --to-destination $podip
+```
+
+Assuming the JSON output above is stored in `/tmp/out` ([jq](https://stedolan.github.io/jq/) is an *awesome* program!).
+
+
+As this is an example we make it really simple for ourselves by using
+a minor variation of the `kpng-json` backend above. Instead of just
+printing, a program is called and the JSON output is passed as `stdin`
+to that program. The backend can be tested stand-alone:
+
+```
+CALLOUT=jq kpng-callout
+```
+
+Where `jq` can be replaced with your own program or script. A script
+may look like the example above.  For more info and the complete
+example please see [https://github.com/kubernetes-sigs/kpng/tree/master/examples/pipe-exec](https://github.com/kubernetes-sigs/kpng/tree/master/examples/pipe-exec).
+
+
+## Summary
+
+While [kpng](https://github.com/kubernetes-sigs/kpng) is in early
+stage of development this post wants to show how you may build your
+own specialized K8s proxiers in the future. The only thing your
+applications need to do is to add the
+`service.kubernetes.io/service-proxy-name` label in the Service
+manifest.
+
+It is a tedious process to get new features into the `kube-proxy` and
+it is not unlikely that they will be rejected, so to write a
+specialized proxier may be the only option.
diff --git a/content/en/blog/_posts/2021-11-08-steering-committee-results-2021.md b/content/en/blog/_posts/2021-11-08-steering-committee-results-2021.md
new file mode 100644
index 0000000000..922824e390
--- /dev/null
+++ b/content/en/blog/_posts/2021-11-08-steering-committee-results-2021.md
@@ -0,0 +1,56 @@
+---
+layout: blog
+title: "Announcing the 2021 Steering Committee Election Results"
+date: 2021-11-08
+slug: steering-committee-results-2021
+---
+
+**Author**: Kaslin Fields
+
+The [2021 Steering Committee Election](https://github.com/kubernetes/community/tree/master/events/elections/2021) is now complete. The Kubernetes Steering Committee consists of 7 seats, 4 of which were up for election in 2021. Incoming committee members serve a term of 2 years, and all members are elected by the Kubernetes Community.
+
+This community body is significant since it oversees the governance of the entire Kubernetes project. With that great power comes great responsibility. You can learn more about the steering committee’s role in their [charter](https://github.com/kubernetes/steering/blob/master/charter.md).
+
+## Results
+
+Congratulations to the elected committee members whose two year terms begin immediately (listed in alphabetical order by GitHub handle):
+
+* **Christoph Blecker ([@cblecker](https://github.com/cblecker)), Red Hat**
+* **Stephen Augustus ([@justaugustus](https://github.com/justaugustus)), Cisco**
+* **Paris Pittman ([@parispittman](https://github.com/parispittman)), Apple**
+* **Tim Pepper ([@tpepper](https://github.com/tpepper)), VMware**
+
+They join continuing members:
+
+* **Davanum Srinivas ([@dims](https://github.com/dims)), VMware**
+* **Jordan Liggitt ([@liggitt](https://github.com/liggitt)), Google**
+* **Bob Killen ([@mrbobbytables](https://github.com/mrbobbytables)), Google**
+
+Paris Pittman and Christoph Blecker are returning Steering Committee Members.
+
+## Big Thanks
+
+Thank you and congratulations on a successful election to this round’s election officers:
+
+* Alison Dowdney, ([@alisondy](https://github.com/alisondy))
+* Noah Kantrowitz ([@coderanger](https://github.com/coderanger))
+* Josh Berkus ([@jberkus](https://github.com/jberkus))
+
+Special thanks to Arnaud Meukam ([@ameukam](https://github.com/ameukam)), k8s-infra liaison, who enabled our voting software on community-owned infrastructure.
+
+Thanks to the Emeritus Steering Committee Members. Your prior service is appreciated by the community:
+
+* Derek Carr ([@derekwaynecarr](https://github.com/derekwaynecarr))
+* Nikhita Raghunath ([@nikhita](https://github.com/nikhita))
+
+And thank you to all the candidates who came forward to run for election.
+
+## Get Involved with the Steering Committee
+
+This governing body, like all of Kubernetes, is open to all. You can follow along with Steering Committee [backlog items](https://github.com/kubernetes/steering/projects/1) and weigh in by filing an issue or creating a PR against their [repo](https://github.com/kubernetes/steering). They have an open meeting on [the first Monday at 9:30am PT of every month](https://github.com/kubernetes/steering) and regularly attend Meet Our Contributors. They can also be contacted at their public mailing list steering@kubernetes.io.
+
+You can see what the Steering Committee meetings are all about by watching past meetings on the [YouTube Playlist](https://www.youtube.com/playlist?list=PL69nYSiGNLP1yP1B_nd9-drjoxp0Q14qM).
+
+---
+
+_This post was written by the [Upstream Marketing Working Group](https://github.com/kubernetes/community/tree/master/communication/marketing-team#contributor-marketing). If you want to write stories about the Kubernetes community, learn more about us._
diff --git a/content/en/blog/_posts/2021-11-09-non-root-containers-and-devices.md b/content/en/blog/_posts/2021-11-09-non-root-containers-and-devices.md
new file mode 100644
index 0000000000..2dcaf952dd
--- /dev/null
+++ b/content/en/blog/_posts/2021-11-09-non-root-containers-and-devices.md
@@ -0,0 +1,238 @@
+---
+layout: blog
+title: 'Non-root Containers And Devices'
+date: 2021-11-09
+slug: non-root-containers-and-devices
+---
+
+**Author:** Mikko Ylinen (Intel)
+
+The user/group ID related security settings in Pod's `securityContext` trigger a problem when users want to
+deploy containers that use accelerator devices (via [Kubernetes Device Plugins](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)) on Linux. In this blog
+post I talk about the problem and describe the work done so far to address it. It's not meant to be a long story about getting the [k/k issue](https://github.com/kubernetes/kubernetes/issues/92211) fixed.
+
+Instead, this post aims to raise awareness of the issue and to highlight important device use-cases too. This is needed as Kubernetes works on new related features such as support for user namespaces.
+
+## Why non-root containers can't use devices and why it matters
+One of the key security principles for running containers in Kubernetes is the
+principle of least privilege. The Pod/container `securityContext` specifies the config
+options to set, e.g., Linux capabilities, MAC policies, and user/group ID values to achieve this.
+
+Furthermore, the cluster admins are supported with tools like [PodSecurityPolicy](/docs/concepts/security/pod-security-policy/) (deprecated) or
+[Pod Security Admission](/docs/concepts/security/pod-security-admission/) (alpha) to enforce the desired security settings for pods that are being deployed in
+the cluster. These settings could, for instance, require that containers must be `runAsNonRoot` or
+that they are forbidden from running with root's group ID in `runAsGroup` or `supplementalGroups`.
+
+In Kubernetes, the kubelet builds the list of [`Device`](https://pkg.go.dev/k8s.io/cri-api@v0.22.1/pkg/apis/runtime/v1#Device) resources to be made available to a container
+(based on inputs from the Device Plugins) and the list is included in the CreateContainer CRI message
+sent to the CRI container runtime. Each `Device` contains little information: host/container device
+paths and the desired devices cgroups permissions.
+
+The [OCI Runtime Spec for Linux Container Configuration](https://github.com/opencontainers/runtime-spec/blob/master/config-linux.md)
+expects that in addition to the devices cgroup fields, more detailed information about the devices
+must be provided:
+
+```yaml
+{
+        "type": "<string>",
+        "path": "<string>",
+        "major": <int64>,
+        "minor": <int64>,
+        "fileMode": <uint32>,
+        "uid": <uint32>,
+        "gid": <uint32>
+},
+```
+
+The CRI container runtimes (containerd, CRI-O) are responsible for obtaining this information
+from the host for each `Device`. By default, the runtimes copy the host device's user and group IDs:
+
+- `uid` (uint32, OPTIONAL) - id of device owner in the container namespace.  
+- `gid` (uint32, OPTIONAL) - id of device group in the container namespace.
+
+Similarly, the runtimes prepare other mandatory `config.json` sections based on the CRI fields,
+including the ones defined in `securityContext`: `runAsUser`/`runAsGroup`, which become part of the POSIX
+platforms user structure via:
+
+- `uid` (int, REQUIRED) specifies the user ID in the container namespace.  
+- `gid` (int, REQUIRED) specifies the group ID in the container namespace.  
+- `additionalGids` (array of ints, OPTIONAL) specifies additional group IDs in the container namespace to be added to the process.
+
+However, the resulting `config.json` triggers a problem when trying to run containers with
+both devices added and with non-root uid/gid set via `runAsUser`/`runAsGroup`: the container user process
+has no permission to use the device even when its group id (gid, copied from host) was permissive to
+non-root groups. This is because the container user does not belong to that host group (e.g., via `additionalGids`).
+
+Being able to run applications that use devices as non-root user is normal and expected to work so that
+the security principles can be met. Therefore, several alternatives were considered to get the gap filled with what the PodSec/CRI/OCI supports today.
+
+## What was done to solve the issue?
+You might have noticed from the problem definition that it would at least be possible to workaround
+the problem by manually adding the device gid(s) to `supplementalGroups`, or in
+the case of just one device, set `runAsGroup` to the device's group id. However, this is problematic because the device gid(s) may have
+different values depending on the nodes' distro/version in the cluster. For example, with GPUs the following commands for different distros and versions return different gids:
+
+Fedora 33:
+```
+$ ls -l /dev/dri/
+total 0
+drwxr-xr-x. 2 root root         80 19.10. 10:21 by-path
+crw-rw----+ 1 root video  226,   0 19.10. 10:42 card0
+crw-rw-rw-. 1 root render 226, 128 19.10. 10:21 renderD128
+$ grep -e video -e render /etc/group
+video:x:39:
+render:x:997:
+```
+
+Ubuntu 20.04:
+```
+$ ls -l /dev/dri/
+total 0
+drwxr-xr-x 2 root root         80 19.10. 17:36 by-path
+crw-rw---- 1 root video  226,   0 19.10. 17:36 card0
+crw-rw---- 1 root render 226, 128 19.10. 17:36 renderD128
+$ grep -e video -e render /etc/group
+video:x:44:
+render:x:133:
+```
+
+Which number to choose in your `securityContext`? Also, what if the `runAsGroup`/`runAsUser` values cannot be hard-coded because
+they are automatically assigned during pod admission time via external security policies?
+
+Unlike volumes with `fsGroup`, the devices have no official notion of `deviceGroup`/`deviceUser` that the CRI runtimes (or kubelet)
+would be able to use. We considered using container annotations set by the device plugins (e.g., `io.kubernetes.cri.hostDeviceSupplementalGroup/`) to get custom OCI `config.json` uid/gid values.
+This would have required changes to all existing device plugins which was not ideal.
+
+Instead, a solution that is *seamless* to end-users without getting the device plugin vendors involved was preferred. The selected approach was
+to re-use `runAsUser` and `runAsGroup` values in `config.json` for devices:
+
+```yaml
+{
+        "type": "c",
+        "path": "/dev/foo",
+        "major": 123,
+        "minor": 4,
+        "fileMode": 438,
+        "uid": <runAsUser>,
+        "gid": <runAsGroup>
+},
+```
+
+With `runc` OCI runtime (in non-rootless mode), the device is created (`mknod(2)`) in
+the container namespace and the ownership is changed to `runAsUser`/`runAsGroup` using `chmod(2)`.
+
+{{< note >}}
+[Rootless mode](/docs/tasks/administer-cluster/kubelet-in-userns/) and devices is not supported.
+{{</note>}}
+Having the ownership updated in the container namespace is justified as the user process is the only one accessing the device. Only `runAsUser`/`runAsGroup`
+are taken into account, and, e.g., the `USER` setting in the container is currently ignored.
+
+While it is likely that the "faulty" deployments (i.e., non-root `securityContext` + devices) do not exist, to be absolutely sure no
+deployments break, an opt-in config entry in both containerd and CRI-O to enable the new behavior was added. The following:
+
+`device_ownership_from_security_context (bool)`
+
+defaults to `false` and must be enabled to use the feature.
+
+## See non-root containers using devices after the fix
+To demonstrate the new behavior, let's use a Data Plane Development Kit (DPDK) application using hardware accelerators, Kubernetes CPU manager, and HugePages as an example. The cluster runs containerd with:
+
+```toml
+[plugins]
+  [plugins."io.containerd.grpc.v1.cri"]
+    device_ownership_from_security_context = true
+```
+
+or CRI-O with:
+
+```toml
+[crio.runtime]
+device_ownership_from_security_context = true
+```
+
+and the `Guaranteed` QoS Class Pod that runs DPDK's crypto-perf test utility with this YAML:
+
+```yaml
+...
+metadata:
+  name: qat-dpdk
+spec:
+  securityContext:
+    runAsUser: 1000
+    runAsGroup: 2000
+    fsGroup: 3000
+  containers:
+  - name: crypto-perf
+    image: intel/crypto-perf:devel
+    ...
+    resources:
+      requests:
+        cpu: "3"
+        memory: "128Mi"
+        qat.intel.com/generic: '4'
+        hugepages-2Mi: "128Mi"
+      limits:
+        cpu: "3"
+        memory: "128Mi"
+        qat.intel.com/generic: '4'
+        hugepages-2Mi: "128Mi"
+  ...
+```
+
+To verify the results, check the user and group ID that the container runs as:
+
+```
+$ kubectl exec -it qat-dpdk -c crypto-perf -- id
+```
+
+They are set to non-zero values as expected:
+
+```
+uid=1000 gid=2000 groups=2000,3000
+```
+
+Next, check the device node permissions (`qat.intel.com/generic` exposes `/dev/vfio/` devices) are accessible to `runAsUser`/`runAsGroup`:
+
+```
+$ kubectl exec -it qat-dpdk -c crypto-perf -- ls -la /dev/vfio
+total 0
+drwxr-xr-x 2 root root      140 Sep  7 10:55 .
+drwxr-xr-x 7 root root      380 Sep  7 10:55 ..
+crw------- 1 1000 2000 241,   0 Sep  7 10:55 58
+crw------- 1 1000 2000 241,   2 Sep  7 10:55 60
+crw------- 1 1000 2000 241,  10 Sep  7 10:55 68
+crw------- 1 1000 2000 241,  11 Sep  7 10:55 69
+crw-rw-rw- 1 1000 2000  10, 196 Sep  7 10:55 vfio
+```
+
+Finally, check the non-root container is also allowed to create HugePages:
+
+```
+$ kubectl exec -it qat-dpdk -c crypto-perf -- ls -la /dev/hugepages/
+```
+
+`fsGroup` gives a `runAsUser` writable HugePages emptyDir mountpoint:
+
+```
+total 0
+drwxrwsr-x 2 root 3000   0 Sep  7 10:55 .
+drwxr-xr-x 7 root root 380 Sep  7 10:55 ..
+```
+
+## Help us test it and provide feedback!
+The functionality described here is expected to help with cluster security and the configurability of device permissions. To allow
+non-root containers to use devices requires cluster admins to opt-in to the functionality by setting
+`device_ownership_from_security_context = true`. To make it a default setting, please test it and provide your feedback (via SIG-Node meetings or issues)!
+The flag is available in CRI-O v1.22 release and queued for containerd v1.6.
+
+More work is needed to get it *properly* supported. It is known to work with `runc` but it also needs to be made to function
+with other OCI runtimes too, where applicable. For instance, Kata Containers supports device passthrough and allows it to make devices
+available to containers in VM sandboxes too.
+
+Moreover, the additional challenge comes with support of user names and devices. This problem is still [open](https://github.com/kubernetes/enhancements/pull/2101)
+and requires more brainstorming.
+
+Finally, it needs to be understood whether `runAsUser`/`runAsGroup` are enough or if device specific settings similar to `fsGroups` are needed in PodSpec/CRI v2.
+
+## Thanks
+My thanks goes to Mike Brown (IBM, containerd), Peter Hunt (Redhat, CRI-O), and Alexander Kanevskiy (Intel) for providing all the feedback and good conversations.
diff --git a/content/en/blog/_posts/2021-11-12-are-you-ready-for-dockershim-removal/index.md b/content/en/blog/_posts/2021-11-12-are-you-ready-for-dockershim-removal/index.md
new file mode 100644
index 0000000000..74d2d526be
--- /dev/null
+++ b/content/en/blog/_posts/2021-11-12-are-you-ready-for-dockershim-removal/index.md
@@ -0,0 +1,71 @@
+---
+layout: blog
+title: "Dockershim removal is coming. Are you ready?"
+date: 2021-11-12
+slug: are-you-ready-for-dockershim-removal
+---
+
+**Authors:** Sergey Kanzhelev, Google. With reviews from Davanum Srinivas, Elana Hashman, Noah Kantrowitz, Rey Lejano.
+
+{{% alert color="info" title="Poll closed" %}}
+This poll closed on January 7, 2022.
+{{% /alert %}}
+
+Last year we [announced](/blog/2020/12/08/kubernetes-1-20-release-announcement/#dockershim-deprecation)
+that Kubernetes' dockershim component (which provides a built-in integration for
+Docker Engine) is deprecated.
+
+_Update: There's a [Dockershim Deprecation FAQ](/blog/2020/12/02/dockershim-faq/)
+with more information, and you can also discuss the deprecation via a dedicated
+[GitHub issue](https://github.com/kubernetes/kubernetes/issues/106917)._
+
+Our current plan is to remove dockershim from the Kubernetes codebase soon.
+We are looking for feedback from you whether you are ready for dockershim
+removal and to ensure that you are ready when the time comes.
+
+<del>Please fill out this survey: https://forms.gle/svCJmhvTv78jGdSx8</del>
+
+The dockershim component that enables Docker as a Kubernetes container runtime is
+being deprecated in favor of runtimes that directly use the [Container Runtime Interface](/blog/2016/12/container-runtime-interface-cri-in-kubernetes/)
+created for Kubernetes. Many Kubernetes users have migrated to
+other container runtimes without problems. However we see that dockershim is
+still very popular. You may see some public numbers in recent [Container Report](https://www.datadoghq.com/container-report/#8) from DataDog.
+Some Kubernetes hosting vendors just recently enabled other runtimes support
+(especially for Windows nodes). And we know that many third party tools vendors
+are still not ready: [migrating telemetry and security agents](/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents/#telemetry-and-security-agent-vendors).
+
+At this point, we believe that there is feature parity between Docker and the
+other runtimes. Many end-users have used our [migration guide](/docs/tasks/administer-cluster/migrating-from-dockershim/)
+and are running production workload using these different runtimes. The plan of
+record today is that dockershim will be removed in version 1.24, slated for
+release around April of next year. For those developing or running alpha and
+beta versions, dockershim will be removed in December at the beginning of the
+1.24 release development cycle.
+
+There is only one month left to give us feedback. We want you to tell us how
+ready you are.
+
+<del>We are collecting opinions through this survey: https://forms.gle/svCJmhvTv78jGdSx8</del>
+To better understand preparedness for the dockershim removal, our survey is
+asking the version of Kubernetes you are currently using, and an estimate of
+when you think you will adopt Kubernetes 1.24. All the aggregated information
+on dockershim removal readiness will be published.
+Free form comments will be reviewed by SIG Node leadership. If you want to
+discuss any details of migrating from dockershim, report bugs or adoption
+blockers, you can use one of the SIG Node contact options any time:
+https://github.com/kubernetes/community/tree/master/sig-node#contact
+
+Kubernetes is a mature project. This deprecation is another
+step in the effort to get away from permanent beta features and providing more
+stability and compatibility guarantees. With the migration from dockershim you
+will get more flexibility and choice of container runtime features as well as
+less dependencies of your apps on specific underlying technology. Please take
+time to review the [dockershim migration documentation](/docs/tasks/administer-cluster/migrating-from-dockershim/)
+and consult your Kubernetes hosting vendor (if you have one) what container runtime options are available for you.
+Read up [container runtime documentation with instructions on how to use containerd and CRI-O](/docs/setup/production-environment/container-runtimes/#container-runtimes)
+to help prepare you when you're ready to upgrade to 1.24. CRI-O, containerd, and
+Docker with [Mirantis cri-dockerd](https://github.com/Mirantis/cri-dockerd) are
+not the only container runtime options, we encourage you to explore the [CNCF landscape on container runtimes](https://landscape.cncf.io/card-mode?category=container-runtime&grouping=category)
+in case another suits you better.
+
+Thank you!
diff --git a/content/en/blog/_posts/2021-11-26-memory-qos-cgroups-v2/container-memory-high.svg b/content/en/blog/_posts/2021-11-26-memory-qos-cgroups-v2/container-memory-high.svg
new file mode 100644
index 0000000000..a11906c96b
--- /dev/null
+++ b/content/en/blog/_posts/2021-11-26-memory-qos-cgroups-v2/container-memory-high.svg
@@ -0,0 +1,2 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no" ?>
+<svg xmlns="http://www.w3.org/2000/svg" width="114.501ex" height="2.262ex" viewBox="0 -750 50609.3 1000" xmlns:xlink="http://www.w3.org/1999/xlink" aria-hidden="true" style=""><defs><path id="MJX-536-TEX-I-1D45A" d="M21 287Q22 293 24 303T36 341T56 388T88 425T132 442T175 435T205 417T221 395T229 376L231 369Q231 367 232 367L243 378Q303 442 384 442Q401 442 415 440T441 433T460 423T475 411T485 398T493 385T497 373T500 364T502 357L510 367Q573 442 659 442Q713 442 746 415T780 336Q780 285 742 178T704 50Q705 36 709 31T724 26Q752 26 776 56T815 138Q818 149 821 151T837 153Q857 153 857 145Q857 144 853 130Q845 101 831 73T785 17T716 -10Q669 -10 648 17T627 73Q627 92 663 193T700 345Q700 404 656 404H651Q565 404 506 303L499 291L466 157Q433 26 428 16Q415 -11 385 -11Q372 -11 364 -4T353 8T350 18Q350 29 384 161L420 307Q423 322 423 345Q423 404 379 404H374Q288 404 229 303L222 291L189 157Q156 26 151 16Q138 -11 108 -11Q95 -11 87 -5T76 7T74 17Q74 30 112 181Q151 335 151 342Q154 357 154 369Q154 405 129 405Q107 405 92 377T69 316T57 280Q55 278 41 278H27Q21 284 21 287Z"></path><path id="MJX-536-TEX-I-1D452" d="M39 168Q39 225 58 272T107 350T174 402T244 433T307 442H310Q355 442 388 420T421 355Q421 265 310 237Q261 224 176 223Q139 223 138 221Q138 219 132 186T125 128Q125 81 146 54T209 26T302 45T394 111Q403 121 406 121Q410 121 419 112T429 98T420 82T390 55T344 24T281 -1T205 -11Q126 -11 83 42T39 168ZM373 353Q367 405 305 405Q272 405 244 391T199 357T170 316T154 280T149 261Q149 260 169 260Q282 260 327 284T373 353Z"></path><path id="MJX-536-TEX-I-1D45C" d="M201 -11Q126 -11 80 38T34 156Q34 221 64 279T146 380Q222 441 301 441Q333 441 341 440Q354 437 367 433T402 417T438 387T464 338T476 268Q476 161 390 75T201 -11ZM121 120Q121 70 147 48T206 26Q250 26 289 58T351 142Q360 163 374 216T388 308Q388 352 370 375Q346 405 306 405Q243 405 195 347Q158 303 140 230T121 120Z"></path><path id="MJX-536-TEX-I-1D45F" d="M21 287Q22 290 23 295T28 317T38 348T53 381T73 411T99 433T132 442Q161 442 183 430T214 408T225 388Q227 382 228 382T236 389Q284 441 347 441H350Q398 441 422 400Q430 381 430 363Q430 333 417 315T391 292T366 288Q346 288 334 299T322 328Q322 376 378 392Q356 405 342 405Q286 405 239 331Q229 315 224 298T190 165Q156 25 151 16Q138 -11 108 -11Q95 -11 87 -5T76 7T74 17Q74 30 114 189T154 366Q154 405 128 405Q107 405 92 377T68 316T57 280Q55 278 41 278H27Q21 284 21 287Z"></path><path id="MJX-536-TEX-I-1D466" d="M21 287Q21 301 36 335T84 406T158 442Q199 442 224 419T250 355Q248 336 247 334Q247 331 231 288T198 191T182 105Q182 62 196 45T238 27Q261 27 281 38T312 61T339 94Q339 95 344 114T358 173T377 247Q415 397 419 404Q432 431 462 431Q475 431 483 424T494 412T496 403Q496 390 447 193T391 -23Q363 -106 294 -155T156 -205Q111 -205 77 -183T43 -117Q43 -95 50 -80T69 -58T89 -48T106 -45Q150 -45 150 -87Q150 -107 138 -122T115 -142T102 -147L99 -148Q101 -153 118 -160T152 -167H160Q177 -167 186 -165Q219 -156 247 -127T290 -65T313 -9T321 21L315 17Q309 13 296 6T270 -6Q250 -11 231 -11Q185 -11 150 11T104 82Q103 89 103 113Q103 170 138 262T173 379Q173 380 173 381Q173 390 173 393T169 400T158 404H154Q131 404 112 385T82 344T65 302T57 280Q55 278 41 278H27Q21 284 21 287Z"></path><path id="MJX-536-TEX-N-2E" d="M78 60Q78 84 95 102T138 120Q162 120 180 104T199 61Q199 36 182 18T139 0T96 17T78 60Z"></path><path id="MJX-536-TEX-I-210E" d="M137 683Q138 683 209 688T282 694Q294 694 294 685Q294 674 258 534Q220 386 220 383Q220 381 227 388Q288 442 357 442Q411 442 444 415T478 336Q478 285 440 178T402 50Q403 36 407 31T422 26Q450 26 474 56T513 138Q516 149 519 151T535 153Q555 153 555 145Q555 144 551 130Q535 71 500 33Q466 -10 419 -10H414Q367 -10 346 17T325 74Q325 90 361 192T398 345Q398 404 354 404H349Q266 404 205 306L198 293L164 158Q132 28 127 16Q114 -11 83 -11Q69 -11 59 -2T48 16Q48 30 121 320L195 616Q195 629 188 632T149 637H128Q122 643 122 645T124 664Q129 683 137 683Z"></path><path id="MJX-536-TEX-I-1D456" d="M184 600Q184 624 203 642T247 661Q265 661 277 649T290 619Q290 596 270 577T226 557Q211 557 198 567T184 600ZM21 287Q21 295 30 318T54 369T98 420T158 442Q197 442 223 419T250 357Q250 340 236 301T196 196T154 83Q149 61 149 51Q149 26 166 26Q175 26 185 29T208 43T235 78T260 137Q263 149 265 151T282 153Q302 153 302 143Q302 135 293 112T268 61T223 11T161 -11Q129 -11 102 10T74 74Q74 91 79 106T122 220Q160 321 166 341T173 380Q173 404 156 404H154Q124 404 99 371T61 287Q60 286 59 284T58 281T56 279T53 278T49 278T41 278H27Q21 284 21 287Z"></path><path id="MJX-536-TEX-I-1D454" d="M311 43Q296 30 267 15T206 0Q143 0 105 45T66 160Q66 265 143 353T314 442Q361 442 401 394L404 398Q406 401 409 404T418 412T431 419T447 422Q461 422 470 413T480 394Q480 379 423 152T363 -80Q345 -134 286 -169T151 -205Q10 -205 10 -137Q10 -111 28 -91T74 -71Q89 -71 102 -80T116 -111Q116 -121 114 -130T107 -144T99 -154T92 -162L90 -164H91Q101 -167 151 -167Q189 -167 211 -155Q234 -144 254 -122T282 -75Q288 -56 298 -13Q311 35 311 43ZM384 328L380 339Q377 350 375 354T369 368T359 382T346 393T328 402T306 405Q262 405 221 352Q191 313 171 233T151 117Q151 38 213 38Q269 38 323 108L331 118L384 328Z"></path><path id="MJX-536-TEX-N-3D" d="M56 347Q56 360 70 367H707Q722 359 722 347Q722 336 708 328L390 327H72Q56 332 56 347ZM56 153Q56 168 72 173H708Q722 163 722 153Q722 140 707 133H70Q56 140 56 153Z"></path><path id="MJX-536-TEX-N-28" d="M94 250Q94 319 104 381T127 488T164 576T202 643T244 695T277 729T302 750H315H319Q333 750 333 741Q333 738 316 720T275 667T226 581T184 443T167 250T184 58T225 -81T274 -167T316 -220T333 -241Q333 -250 318 -250H315H302L274 -226Q180 -141 137 -14T94 250Z"></path><path id="MJX-536-TEX-I-1D45D" d="M23 287Q24 290 25 295T30 317T40 348T55 381T75 411T101 433T134 442Q209 442 230 378L240 387Q302 442 358 442Q423 442 460 395T497 281Q497 173 421 82T249 -10Q227 -10 210 -4Q199 1 187 11T168 28L161 36Q160 35 139 -51T118 -138Q118 -144 126 -145T163 -148H188Q194 -155 194 -157T191 -175Q188 -187 185 -190T172 -194Q170 -194 161 -194T127 -193T65 -192Q-5 -192 -24 -194H-32Q-39 -187 -39 -183Q-37 -156 -26 -148H-6Q28 -147 33 -136Q36 -130 94 103T155 350Q156 355 156 364Q156 405 131 405Q109 405 94 377T71 316T59 280Q57 278 43 278H29Q23 284 23 287ZM178 102Q200 26 252 26Q282 26 310 49T356 107Q374 141 392 215T411 325V331Q411 405 350 405Q339 405 328 402T306 393T286 380T269 365T254 350T243 336T235 326L232 322Q232 321 229 308T218 264T204 212Q178 106 178 102Z"></path><path id="MJX-536-TEX-I-1D451" d="M366 683Q367 683 438 688T511 694Q523 694 523 686Q523 679 450 384T375 83T374 68Q374 26 402 26Q411 27 422 35Q443 55 463 131Q469 151 473 152Q475 153 483 153H487H491Q506 153 506 145Q506 140 503 129Q490 79 473 48T445 8T417 -8Q409 -10 393 -10Q359 -10 336 5T306 36L300 51Q299 52 296 50Q294 48 292 46Q233 -10 172 -10Q117 -10 75 30T33 157Q33 205 53 255T101 341Q148 398 195 420T280 442Q336 442 364 400Q369 394 369 396Q370 400 396 505T424 616Q424 629 417 632T378 637H357Q351 643 351 645T353 664Q358 683 366 683ZM352 326Q329 405 277 405Q242 405 210 374T160 293Q131 214 119 129Q119 126 119 118T118 106Q118 61 136 44T179 26Q233 26 290 98L298 109L352 326Z"></path><path id="MJX-536-TEX-I-1D460" d="M131 289Q131 321 147 354T203 415T300 442Q362 442 390 415T419 355Q419 323 402 308T364 292Q351 292 340 300T328 326Q328 342 337 354T354 372T367 378Q368 378 368 379Q368 382 361 388T336 399T297 405Q249 405 227 379T204 326Q204 301 223 291T278 274T330 259Q396 230 396 163Q396 135 385 107T352 51T289 7T195 -10Q118 -10 86 19T53 87Q53 126 74 143T118 160Q133 160 146 151T160 120Q160 94 142 76T111 58Q109 57 108 57T107 55Q108 52 115 47T146 34T201 27Q237 27 263 38T301 66T318 97T323 122Q323 150 302 164T254 181T195 196T148 231Q131 256 131 289Z"></path><path id="MJX-536-TEX-I-1D450" d="M34 159Q34 268 120 355T306 442Q362 442 394 418T427 355Q427 326 408 306T360 285Q341 285 330 295T319 325T330 359T352 380T366 386H367Q367 388 361 392T340 400T306 404Q276 404 249 390Q228 381 206 359Q162 315 142 235T121 119Q121 73 147 50Q169 26 205 26H209Q321 26 394 111Q403 121 406 121Q410 121 419 112T429 98T420 83T391 55T346 25T282 0T202 -11Q127 -11 81 37T34 159Z"></path><path id="MJX-536-TEX-I-1D45B" d="M21 287Q22 293 24 303T36 341T56 388T89 425T135 442Q171 442 195 424T225 390T231 369Q231 367 232 367L243 378Q304 442 382 442Q436 442 469 415T503 336T465 179T427 52Q427 26 444 26Q450 26 453 27Q482 32 505 65T540 145Q542 153 560 153Q580 153 580 145Q580 144 576 130Q568 101 554 73T508 17T439 -10Q392 -10 371 17T350 73Q350 92 386 193T423 345Q423 404 379 404H374Q288 404 229 303L222 291L189 157Q156 26 151 16Q138 -11 108 -11Q95 -11 87 -5T76 7T74 17Q74 30 112 180T152 343Q153 348 153 366Q153 405 129 405Q91 405 66 305Q60 285 60 284Q58 278 41 278H27Q21 284 21 287Z"></path><path id="MJX-536-TEX-I-1D461" d="M26 385Q19 392 19 395Q19 399 22 411T27 425Q29 430 36 430T87 431H140L159 511Q162 522 166 540T173 566T179 586T187 603T197 615T211 624T229 626Q247 625 254 615T261 596Q261 589 252 549T232 470L222 433Q222 431 272 431H323Q330 424 330 420Q330 398 317 385H210L174 240Q135 80 135 68Q135 26 162 26Q197 26 230 60T283 144Q285 150 288 151T303 153H307Q322 153 322 145Q322 142 319 133Q314 117 301 95T267 48T216 6T155 -11Q125 -11 98 4T59 56Q57 64 57 83V101L92 241Q127 382 128 383Q128 385 77 385H26Z"></path><path id="MJX-536-TEX-I-1D44E" d="M33 157Q33 258 109 349T280 441Q331 441 370 392Q386 422 416 422Q429 422 439 414T449 394Q449 381 412 234T374 68Q374 43 381 35T402 26Q411 27 422 35Q443 55 463 131Q469 151 473 152Q475 153 483 153H487Q506 153 506 144Q506 138 501 117T481 63T449 13Q436 0 417 -8Q409 -10 393 -10Q359 -10 336 5T306 36L300 51Q299 52 296 50Q294 48 292 46Q233 -10 172 -10Q117 -10 75 30T33 157ZM351 328Q351 334 346 350T323 385T277 405Q242 405 210 374T160 293Q131 214 119 129Q119 126 119 118T118 106Q118 61 136 44T179 26Q217 26 254 59T298 110Q300 114 325 217T351 328Z"></path><path id="MJX-536-TEX-N-5B" d="M118 -250V750H255V710H158V-210H255V-250H118Z"></path><path id="MJX-536-TEX-N-5D" d="M22 710V750H159V-250H22V-210H119V710H22Z"></path><path id="MJX-536-TEX-I-1D462" d="M21 287Q21 295 30 318T55 370T99 420T158 442Q204 442 227 417T250 358Q250 340 216 246T182 105Q182 62 196 45T238 27T291 44T328 78L339 95Q341 99 377 247Q407 367 413 387T427 416Q444 431 463 431Q480 431 488 421T496 402L420 84Q419 79 419 68Q419 43 426 35T447 26Q469 29 482 57T512 145Q514 153 532 153Q551 153 551 144Q550 139 549 130T540 98T523 55T498 17T462 -8Q454 -10 438 -10Q372 -10 347 46Q345 45 336 36T318 21T296 6T267 -6T233 -11Q189 -11 155 7Q103 38 103 113Q103 170 138 262T173 379Q173 380 173 381Q173 390 173 393T169 400T158 404H154Q131 404 112 385T82 344T65 302T57 280Q55 278 41 278H27Q21 284 21 287Z"></path><path id="MJX-536-TEX-I-1D459" d="M117 59Q117 26 142 26Q179 26 205 131Q211 151 215 152Q217 153 225 153H229Q238 153 241 153T246 151T248 144Q247 138 245 128T234 90T214 43T183 6T137 -11Q101 -11 70 11T38 85Q38 97 39 102L104 360Q167 615 167 623Q167 626 166 628T162 632T157 634T149 635T141 636T132 637T122 637Q112 637 109 637T101 638T95 641T94 647Q94 649 96 661Q101 680 107 682T179 688Q194 689 213 690T243 693T254 694Q266 694 266 686Q266 675 193 386T118 83Q118 81 118 75T117 65V59Z"></path><path id="MJX-536-TEX-N-A0" d=""></path><path id="MJX-536-TEX-I-1D434" d="M208 74Q208 50 254 46Q272 46 272 35Q272 34 270 22Q267 8 264 4T251 0Q249 0 239 0T205 1T141 2Q70 2 50 0H42Q35 7 35 11Q37 38 48 46H62Q132 49 164 96Q170 102 345 401T523 704Q530 716 547 716H555H572Q578 707 578 706L606 383Q634 60 636 57Q641 46 701 46Q726 46 726 36Q726 34 723 22Q720 7 718 4T704 0Q701 0 690 0T651 1T578 2Q484 2 455 0H443Q437 6 437 9T439 27Q443 40 445 43L449 46H469Q523 49 533 63L521 213H283L249 155Q208 86 208 74ZM516 260Q516 271 504 416T490 562L463 519Q447 492 400 412L310 260L413 259Q516 259 516 260Z"></path><path id="MJX-536-TEX-I-1D44F" d="M73 647Q73 657 77 670T89 683Q90 683 161 688T234 694Q246 694 246 685T212 542Q204 508 195 472T180 418L176 399Q176 396 182 402Q231 442 283 442Q345 442 383 396T422 280Q422 169 343 79T173 -11Q123 -11 82 27T40 150V159Q40 180 48 217T97 414Q147 611 147 623T109 637Q104 637 101 637H96Q86 637 83 637T76 640T73 647ZM336 325V331Q336 405 275 405Q258 405 240 397T207 376T181 352T163 330L157 322L136 236Q114 150 114 114Q114 66 138 42Q154 26 178 26Q211 26 245 58Q270 81 285 114T318 219Q336 291 336 325Z"></path><path id="MJX-536-TEX-I-1D440" d="M289 629Q289 635 232 637Q208 637 201 638T194 648Q194 649 196 659Q197 662 198 666T199 671T201 676T203 679T207 681T212 683T220 683T232 684Q238 684 262 684T307 683Q386 683 398 683T414 678Q415 674 451 396L487 117L510 154Q534 190 574 254T662 394Q837 673 839 675Q840 676 842 678T846 681L852 683H948Q965 683 988 683T1017 684Q1051 684 1051 673Q1051 668 1048 656T1045 643Q1041 637 1008 637Q968 636 957 634T939 623Q936 618 867 340T797 59Q797 55 798 54T805 50T822 48T855 46H886Q892 37 892 35Q892 19 885 5Q880 0 869 0Q864 0 828 1T736 2Q675 2 644 2T609 1Q592 1 592 11Q592 13 594 25Q598 41 602 43T625 46Q652 46 685 49Q699 52 704 61Q706 65 742 207T813 490T848 631L654 322Q458 10 453 5Q451 4 449 3Q444 0 433 0Q418 0 415 7Q413 11 374 317L335 624L267 354Q200 88 200 79Q206 46 272 46H282Q288 41 289 37T286 19Q282 3 278 1Q274 0 267 0Q265 0 255 0T221 1T157 2Q127 2 95 1T58 0Q43 0 39 2T35 11Q35 13 38 25T43 40Q45 46 65 46Q135 46 154 86Q158 92 223 354T289 629Z"></path><path id="MJX-536-TEX-N-29" d="M60 749L64 750Q69 750 74 750H86L114 726Q208 641 251 514T294 250Q294 182 284 119T261 12T224 -76T186 -143T145 -194T113 -227T90 -246Q87 -249 86 -250H74Q66 -250 63 -250T58 -247T55 -238Q56 -237 66 -225Q221 -64 221 250T66 725Q56 737 55 738Q55 746 60 749Z"></path><path id="MJX-536-TEX-N-2217" d="M229 286Q216 420 216 436Q216 454 240 464Q241 464 245 464T251 465Q263 464 273 456T283 436Q283 419 277 356T270 286L328 328Q384 369 389 372T399 375Q412 375 423 365T435 338Q435 325 425 315Q420 312 357 282T289 250L355 219L425 184Q434 175 434 161Q434 146 425 136T401 125Q393 125 383 131T328 171L270 213Q283 79 283 63Q283 53 276 44T250 35Q231 35 224 44T216 63Q216 80 222 143T229 213L171 171Q115 130 110 127Q106 124 100 124Q87 124 76 134T64 161Q64 166 64 169T67 175T72 181T81 188T94 195T113 204T138 215T170 230T210 250L74 315Q65 324 65 338Q65 353 74 363T98 374Q106 374 116 368T171 328L229 286Z"></path><path id="MJX-536-TEX-I-1D439" d="M48 1Q31 1 31 11Q31 13 34 25Q38 41 42 43T65 46Q92 46 125 49Q139 52 144 61Q146 66 215 342T285 622Q285 629 281 629Q273 632 228 634H197Q191 640 191 642T193 659Q197 676 203 680H742Q749 676 749 669Q749 664 736 557T722 447Q720 440 702 440H690Q683 445 683 453Q683 454 686 477T689 530Q689 560 682 579T663 610T626 626T575 633T503 634H480Q398 633 393 631Q388 629 386 623Q385 622 352 492L320 363H375Q378 363 398 363T426 364T448 367T472 374T489 386Q502 398 511 419T524 457T529 475Q532 480 548 480H560Q567 475 567 470Q567 467 536 339T502 207Q500 200 482 200H470Q463 206 463 212Q463 215 468 234T473 274Q473 303 453 310T364 317H309L277 190Q245 66 245 60Q245 46 334 46H359Q365 40 365 39T363 19Q359 6 353 0H336Q295 2 185 2Q120 2 86 2T48 1Z"></path></defs><g stroke="currentColor" fill="currentColor" stroke-width="0" transform="matrix(1 0 0 -1 0 0)"><g data-mml-node="math"><g data-mml-node="mi"><use xlink:href="#MJX-536-TEX-I-1D45A"></use></g><g data-mml-node="mi" transform="translate(878, 0)"><use xlink:href="#MJX-536-TEX-I-1D452"></use></g><g data-mml-node="mi" transform="translate(1344, 0)"><use xlink:href="#MJX-536-TEX-I-1D45A"></use></g><g data-mml-node="mi" transform="translate(2222, 0)"><use xlink:href="#MJX-536-TEX-I-1D45C"></use></g><g data-mml-node="mi" transform="translate(2707, 0)"><use xlink:href="#MJX-536-TEX-I-1D45F"></use></g><g data-mml-node="mi" transform="translate(3158, 0)"><use xlink:href="#MJX-536-TEX-I-1D466"></use></g><g data-mml-node="mo" transform="translate(3648, 0)"><use xlink:href="#MJX-536-TEX-N-2E"></use></g><g data-mml-node="mi" transform="translate(4092.7, 0)"><use xlink:href="#MJX-536-TEX-I-210E"></use></g><g data-mml-node="mi" transform="translate(4668.7, 0)"><use xlink:href="#MJX-536-TEX-I-1D456"></use></g><g data-mml-node="mi" transform="translate(5013.7, 0)"><use xlink:href="#MJX-536-TEX-I-1D454"></use></g><g data-mml-node="mi" transform="translate(5490.7, 0)"><use xlink:href="#MJX-536-TEX-I-210E"></use></g><g data-mml-node="mo" transform="translate(6344.4, 0)"><use xlink:href="#MJX-536-TEX-N-3D"></use></g><g data-mml-node="mo" transform="translate(7400.2, 0)"><use xlink:href="#MJX-536-TEX-N-28"></use></g><g data-mml-node="mi" transform="translate(7789.2, 0)"><use xlink:href="#MJX-536-TEX-I-1D45D"></use></g><g data-mml-node="mi" transform="translate(8292.2, 0)"><use xlink:href="#MJX-536-TEX-I-1D45C"></use></g><g data-mml-node="mi" transform="translate(8777.2, 0)"><use xlink:href="#MJX-536-TEX-I-1D451"></use></g><g data-mml-node="mo" transform="translate(9297.2, 0)"><use xlink:href="#MJX-536-TEX-N-2E"></use></g><g data-mml-node="mi" transform="translate(9741.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D460"></use></g><g data-mml-node="mi" transform="translate(10210.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D45D"></use></g><g data-mml-node="mi" transform="translate(10713.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D452"></use></g><g data-mml-node="mi" transform="translate(11179.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D450"></use></g><g data-mml-node="mo" transform="translate(11612.9, 0)"><use xlink:href="#MJX-536-TEX-N-2E"></use></g><g data-mml-node="mi" transform="translate(12057.6, 0)"><use xlink:href="#MJX-536-TEX-I-1D450"></use></g><g data-mml-node="mi" transform="translate(12490.6, 0)"><use xlink:href="#MJX-536-TEX-I-1D45C"></use></g><g data-mml-node="mi" transform="translate(12975.6, 0)"><use xlink:href="#MJX-536-TEX-I-1D45B"></use></g><g data-mml-node="mi" transform="translate(13575.6, 0)"><use xlink:href="#MJX-536-TEX-I-1D461"></use></g><g data-mml-node="mi" transform="translate(13936.6, 0)"><use xlink:href="#MJX-536-TEX-I-1D44E"></use></g><g data-mml-node="mi" transform="translate(14465.6, 0)"><use xlink:href="#MJX-536-TEX-I-1D456"></use></g><g data-mml-node="mi" transform="translate(14810.6, 0)"><use xlink:href="#MJX-536-TEX-I-1D45B"></use></g><g data-mml-node="mi" transform="translate(15410.6, 0)"><use xlink:href="#MJX-536-TEX-I-1D452"></use></g><g data-mml-node="mi" transform="translate(15876.6, 0)"><use xlink:href="#MJX-536-TEX-I-1D45F"></use></g><g data-mml-node="mi" transform="translate(16327.6, 0)"><use xlink:href="#MJX-536-TEX-I-1D460"></use></g><g data-mml-node="mo" transform="translate(16796.6, 0)"><use xlink:href="#MJX-536-TEX-N-5B"></use></g><g data-mml-node="mi" transform="translate(17074.6, 0)"><use xlink:href="#MJX-536-TEX-I-1D456"></use></g><g data-mml-node="mo" transform="translate(17419.6, 0)"><use xlink:href="#MJX-536-TEX-N-5D"></use></g><g data-mml-node="mo" transform="translate(17697.6, 0)"><use xlink:href="#MJX-536-TEX-N-2E"></use></g><g data-mml-node="mi" transform="translate(18142.2, 0)"><use xlink:href="#MJX-536-TEX-I-1D45F"></use></g><g data-mml-node="mi" transform="translate(18593.2, 0)"><use xlink:href="#MJX-536-TEX-I-1D452"></use></g><g data-mml-node="mi" transform="translate(19059.2, 0)"><use xlink:href="#MJX-536-TEX-I-1D460"></use></g><g data-mml-node="mi" transform="translate(19528.2, 0)"><use xlink:href="#MJX-536-TEX-I-1D45C"></use></g><g data-mml-node="mi" transform="translate(20013.2, 0)"><use xlink:href="#MJX-536-TEX-I-1D462"></use></g><g data-mml-node="mi" transform="translate(20585.2, 0)"><use xlink:href="#MJX-536-TEX-I-1D45F"></use></g><g data-mml-node="mi" transform="translate(21036.2, 0)"><use xlink:href="#MJX-536-TEX-I-1D450"></use></g><g data-mml-node="mi" transform="translate(21469.2, 0)"><use xlink:href="#MJX-536-TEX-I-1D452"></use></g><g data-mml-node="mi" transform="translate(21935.2, 0)"><use xlink:href="#MJX-536-TEX-I-1D460"></use></g><g data-mml-node="mo" transform="translate(22404.2, 0)"><use xlink:href="#MJX-536-TEX-N-2E"></use></g><g data-mml-node="mi" transform="translate(22848.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D459"></use></g><g data-mml-node="mi" transform="translate(23146.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D456"></use></g><g data-mml-node="mi" transform="translate(23491.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D45A"></use></g><g data-mml-node="mi" transform="translate(24369.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D456"></use></g><g data-mml-node="mi" transform="translate(24714.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D461"></use></g><g data-mml-node="mi" transform="translate(25075.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D460"></use></g><g data-mml-node="mo" transform="translate(25544.9, 0)"><use xlink:href="#MJX-536-TEX-N-5B"></use></g><g data-mml-node="mi" transform="translate(25822.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D45A"></use></g><g data-mml-node="mi" transform="translate(26700.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D452"></use></g><g data-mml-node="mi" transform="translate(27166.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D45A"></use></g><g data-mml-node="mi" transform="translate(28044.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D45C"></use></g><g data-mml-node="mi" transform="translate(28529.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D45F"></use></g><g data-mml-node="mi" transform="translate(28980.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D466"></use></g><g data-mml-node="mo" transform="translate(29470.9, 0)"><use xlink:href="#MJX-536-TEX-N-5D"></use></g><g data-mml-node="mtext" transform="translate(29748.9, 0)"><use xlink:href="#MJX-536-TEX-N-A0"></use></g><g data-mml-node="mi" transform="translate(29998.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D45C"></use></g><g data-mml-node="mi" transform="translate(30483.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D45F"></use></g><g data-mml-node="mtext" transform="translate(30934.9, 0)"><use xlink:href="#MJX-536-TEX-N-A0"></use></g><g data-mml-node="mi" transform="translate(31184.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D45B"></use></g><g data-mml-node="mi" transform="translate(31784.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D45C"></use></g><g data-mml-node="mi" transform="translate(32269.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D451"></use></g><g data-mml-node="mi" transform="translate(32789.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D452"></use></g><g data-mml-node="mi" transform="translate(33255.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D434"></use></g><g data-mml-node="mi" transform="translate(34005.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D459"></use></g><g data-mml-node="mi" transform="translate(34303.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D459"></use></g><g data-mml-node="mi" transform="translate(34601.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D45C"></use></g><g data-mml-node="mi" transform="translate(35086.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D450"></use></g><g data-mml-node="mi" transform="translate(35519.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D44E"></use></g><g data-mml-node="mi" transform="translate(36048.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D461"></use></g><g data-mml-node="mi" transform="translate(36409.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D44E"></use></g><g data-mml-node="mi" transform="translate(36938.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D44F"></use></g><g data-mml-node="mi" transform="translate(37367.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D459"></use></g><g data-mml-node="mi" transform="translate(37665.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D452"></use></g><g data-mml-node="mi" transform="translate(38131.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D440"></use></g><g data-mml-node="mi" transform="translate(39182.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D452"></use></g><g data-mml-node="mi" transform="translate(39648.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D45A"></use></g><g data-mml-node="mi" transform="translate(40526.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D45C"></use></g><g data-mml-node="mi" transform="translate(41011.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D45F"></use></g><g data-mml-node="mi" transform="translate(41462.9, 0)"><use xlink:href="#MJX-536-TEX-I-1D466"></use></g><g data-mml-node="mo" transform="translate(41952.9, 0)"><use xlink:href="#MJX-536-TEX-N-29"></use></g><g data-mml-node="mo" transform="translate(42564.1, 0)"><use xlink:href="#MJX-536-TEX-N-2217"></use></g><g data-mml-node="mi" transform="translate(43286.3, 0)"><use xlink:href="#MJX-536-TEX-I-1D461"></use></g><g data-mml-node="mi" transform="translate(43647.3, 0)"><use xlink:href="#MJX-536-TEX-I-210E"></use></g><g data-mml-node="mi" transform="translate(44223.3, 0)"><use xlink:href="#MJX-536-TEX-I-1D45F"></use></g><g data-mml-node="mi" transform="translate(44674.3, 0)"><use xlink:href="#MJX-536-TEX-I-1D45C"></use></g><g data-mml-node="mi" transform="translate(45159.3, 0)"><use xlink:href="#MJX-536-TEX-I-1D461"></use></g><g data-mml-node="mi" transform="translate(45520.3, 0)"><use xlink:href="#MJX-536-TEX-I-1D461"></use></g><g data-mml-node="mi" transform="translate(45881.3, 0)"><use xlink:href="#MJX-536-TEX-I-1D459"></use></g><g data-mml-node="mi" transform="translate(46179.3, 0)"><use xlink:href="#MJX-536-TEX-I-1D456"></use></g><g data-mml-node="mi" transform="translate(46524.3, 0)"><use xlink:href="#MJX-536-TEX-I-1D45B"></use></g><g data-mml-node="mi" transform="translate(47124.3, 0)"><use xlink:href="#MJX-536-TEX-I-1D454"></use></g><g data-mml-node="mi" transform="translate(47601.3, 0)"><use xlink:href="#MJX-536-TEX-I-1D439"></use></g><g data-mml-node="mi" transform="translate(48350.3, 0)"><use xlink:href="#MJX-536-TEX-I-1D44E"></use></g><g data-mml-node="mi" transform="translate(48879.3, 0)"><use xlink:href="#MJX-536-TEX-I-1D450"></use></g><g data-mml-node="mi" transform="translate(49312.3, 0)"><use xlink:href="#MJX-536-TEX-I-1D461"></use></g><g data-mml-node="mi" transform="translate(49673.3, 0)"><use xlink:href="#MJX-536-TEX-I-1D45C"></use></g><g data-mml-node="mi" transform="translate(50158.3, 0)"><use xlink:href="#MJX-536-TEX-I-1D45F"></use></g></g></g></svg>
\ No newline at end of file
diff --git a/content/en/blog/_posts/2021-11-26-memory-qos-cgroups-v2/container-memory-min.svg b/content/en/blog/_posts/2021-11-26-memory-qos-cgroups-v2/container-memory-min.svg
new file mode 100644
index 0000000000..f9711a641c
--- /dev/null
+++ b/content/en/blog/_posts/2021-11-26-memory-qos-cgroups-v2/container-memory-min.svg
@@ -0,0 +1,87 @@
+<?xml version='1.0' encoding='UTF-8'?>
+<!-- Generated by CodeCogs with dvisvgm 2.9.1 -->
+<svg version='1.1' xmlns='http://www.w3.org/2000/svg' xmlns:xlink='http://www.w3.org/1999/xlink' width='389.559851pt' height='13.50934pt' viewBox='-.239051 -.240635 389.559851 13.50934'>
+<defs>
+<path id='g1-61' d='M8.069738-3.873474C8.237111-3.873474 8.452304-3.873474 8.452304-4.088667C8.452304-4.315816 8.249066-4.315816 8.069738-4.315816H1.028144C.860772-4.315816 .645579-4.315816 .645579-4.100623C.645579-3.873474 .848817-3.873474 1.028144-3.873474H8.069738ZM8.069738-1.649813C8.237111-1.649813 8.452304-1.649813 8.452304-1.865006C8.452304-2.092154 8.249066-2.092154 8.069738-2.092154H1.028144C.860772-2.092154 .645579-2.092154 .645579-1.876961C.645579-1.649813 .848817-1.649813 1.028144-1.649813H8.069738Z'/>
+<path id='g1-91' d='M2.988792 2.988792V2.546451H1.829141V-8.524035H2.988792V-8.966376H1.3868V2.988792H2.988792Z'/>
+<path id='g1-93' d='M1.853051-8.966376H.251059V-8.524035H1.41071V2.546451H.251059V2.988792H1.853051V-8.966376Z'/>
+<path id='g0-58' d='M2.199751-.573848C2.199751-.920548 1.912827-1.159651 1.625903-1.159651C1.279203-1.159651 1.0401-.872727 1.0401-.585803C1.0401-.239103 1.327024 0 1.613948 0C1.960648 0 2.199751-.286924 2.199751-.573848Z'/>
+<path id='g0-97' d='M3.598506-1.422665C3.53873-1.219427 3.53873-1.195517 3.371357-.968369C3.108344-.633624 2.582316-.119552 2.020423-.119552C1.530262-.119552 1.255293-.561893 1.255293-1.267248C1.255293-1.924782 1.625903-3.263761 1.853051-3.765878C2.259527-4.60274 2.82142-5.033126 3.287671-5.033126C4.076712-5.033126 4.23213-4.052802 4.23213-3.957161C4.23213-3.945205 4.196264-3.789788 4.184309-3.765878L3.598506-1.422665ZM4.363636-4.483188C4.23213-4.794022 3.90934-5.272229 3.287671-5.272229C1.936737-5.272229 .478207-3.526775 .478207-1.75741C.478207-.573848 1.171606 .119552 1.984558 .119552C2.642092 .119552 3.203985-.394521 3.53873-.789041C3.658281-.083686 4.220174 .119552 4.578829 .119552S5.224408-.095641 5.439601-.526027C5.630884-.932503 5.798257-1.661768 5.798257-1.709589C5.798257-1.769365 5.750436-1.817186 5.678705-1.817186C5.571108-1.817186 5.559153-1.75741 5.511333-1.578082C5.332005-.872727 5.104857-.119552 4.614695-.119552C4.267995-.119552 4.244085-.430386 4.244085-.669489C4.244085-.944458 4.27995-1.075965 4.387547-1.542217C4.471233-1.841096 4.531009-2.10411 4.62665-2.450809C5.068991-4.244085 5.176588-4.674471 5.176588-4.746202C5.176588-4.913574 5.045081-5.045081 4.865753-5.045081C4.483188-5.045081 4.387547-4.62665 4.363636-4.483188Z'/>
+<path id='g0-99' d='M4.674471-4.495143C4.447323-4.495143 4.339726-4.495143 4.172354-4.351681C4.100623-4.291905 3.969116-4.112578 3.969116-3.921295C3.969116-3.682192 4.148443-3.53873 4.375592-3.53873C4.662516-3.53873 4.985305-3.777833 4.985305-4.25604C4.985305-4.829888 4.435367-5.272229 3.610461-5.272229C2.044334-5.272229 .478207-3.56264 .478207-1.865006C.478207-.824907 1.123786 .119552 2.343213 .119552C3.969116 .119552 4.99726-1.147696 4.99726-1.303113C4.99726-1.374844 4.925529-1.43462 4.877709-1.43462C4.841843-1.43462 4.829888-1.422665 4.722291-1.315068C3.957161-.298879 2.82142-.119552 2.367123-.119552C1.542217-.119552 1.279203-.836862 1.279203-1.43462C1.279203-1.853051 1.482441-3.012702 1.912827-3.825654C2.223661-4.387547 2.86924-5.033126 3.622416-5.033126C3.777833-5.033126 4.435367-5.009215 4.674471-4.495143Z'/>
+<path id='g0-100' d='M6.01345-7.998007C6.025405-8.045828 6.049315-8.117559 6.049315-8.177335C6.049315-8.296887 5.929763-8.296887 5.905853-8.296887C5.893898-8.296887 5.308095-8.249066 5.248319-8.237111C5.045081-8.225156 4.865753-8.201245 4.65056-8.18929C4.351681-8.16538 4.267995-8.153425 4.267995-7.938232C4.267995-7.81868 4.363636-7.81868 4.531009-7.81868C5.116812-7.81868 5.128767-7.711083 5.128767-7.591532C5.128767-7.519801 5.104857-7.424159 5.092902-7.388294L4.363636-4.483188C4.23213-4.794022 3.90934-5.272229 3.287671-5.272229C1.936737-5.272229 .478207-3.526775 .478207-1.75741C.478207-.573848 1.171606 .119552 1.984558 .119552C2.642092 .119552 3.203985-.394521 3.53873-.789041C3.658281-.083686 4.220174 .119552 4.578829 .119552S5.224408-.095641 5.439601-.526027C5.630884-.932503 5.798257-1.661768 5.798257-1.709589C5.798257-1.769365 5.750436-1.817186 5.678705-1.817186C5.571108-1.817186 5.559153-1.75741 5.511333-1.578082C5.332005-.872727 5.104857-.119552 4.614695-.119552C4.267995-.119552 4.244085-.430386 4.244085-.669489C4.244085-.71731 4.244085-.968369 4.327771-1.303113L6.01345-7.998007ZM3.598506-1.422665C3.53873-1.219427 3.53873-1.195517 3.371357-.968369C3.108344-.633624 2.582316-.119552 2.020423-.119552C1.530262-.119552 1.255293-.561893 1.255293-1.267248C1.255293-1.924782 1.625903-3.263761 1.853051-3.765878C2.259527-4.60274 2.82142-5.033126 3.287671-5.033126C4.076712-5.033126 4.23213-4.052802 4.23213-3.957161C4.23213-3.945205 4.196264-3.789788 4.184309-3.765878L3.598506-1.422665Z'/>
+<path id='g0-101' d='M2.139975-2.773599C2.462765-2.773599 3.275716-2.797509 3.849564-3.012702C4.758157-3.359402 4.841843-4.052802 4.841843-4.267995C4.841843-4.794022 4.387547-5.272229 3.598506-5.272229C2.343213-5.272229 .537983-4.136488 .537983-2.008468C.537983-.753176 1.255293 .119552 2.343213 .119552C3.969116 .119552 4.99726-1.147696 4.99726-1.303113C4.99726-1.374844 4.925529-1.43462 4.877709-1.43462C4.841843-1.43462 4.829888-1.422665 4.722291-1.315068C3.957161-.298879 2.82142-.119552 2.367123-.119552C1.685679-.119552 1.327024-.657534 1.327024-1.542217C1.327024-1.709589 1.327024-2.008468 1.506351-2.773599H2.139975ZM1.566127-3.012702C2.080199-4.853798 3.21594-5.033126 3.598506-5.033126C4.124533-5.033126 4.483188-4.722291 4.483188-4.267995C4.483188-3.012702 2.570361-3.012702 2.068244-3.012702H1.566127Z'/>
+<path id='g0-105' d='M3.383313-1.709589C3.383313-1.769365 3.335492-1.817186 3.263761-1.817186C3.156164-1.817186 3.144209-1.78132 3.084433-1.578082C2.773599-.490162 2.283437-.119552 1.888917-.119552C1.745455-.119552 1.578082-.155417 1.578082-.514072C1.578082-.836862 1.721544-1.195517 1.853051-1.554172L2.689913-3.777833C2.725778-3.873474 2.809465-4.088667 2.809465-4.315816C2.809465-4.817933 2.450809-5.272229 1.865006-5.272229C.765131-5.272229 .32279-3.53873 .32279-3.443088C.32279-3.395268 .37061-3.335492 .454296-3.335492C.561893-3.335492 .573848-3.383313 .621669-3.550685C.908593-4.554919 1.362889-5.033126 1.829141-5.033126C1.936737-5.033126 2.139975-5.021171 2.139975-4.638605C2.139975-4.327771 1.984558-3.93325 1.888917-3.670237L1.052055-1.446575C.980324-1.255293 .908593-1.06401 .908593-.848817C.908593-.310834 1.279203 .119552 1.853051 .119552C2.952927 .119552 3.383313-1.625903 3.383313-1.709589ZM3.287671-7.460025C3.287671-7.639352 3.144209-7.854545 2.881196-7.854545C2.606227-7.854545 2.295392-7.591532 2.295392-7.280697C2.295392-6.981818 2.546451-6.886177 2.689913-6.886177C3.012702-6.886177 3.287671-7.197011 3.287671-7.460025Z'/>
+<path id='g0-109' d='M2.462765-3.502864C2.486675-3.574595 2.785554-4.172354 3.227895-4.554919C3.53873-4.841843 3.945205-5.033126 4.411457-5.033126C4.889664-5.033126 5.057036-4.674471 5.057036-4.196264C5.057036-4.124533 5.057036-3.88543 4.913574-3.323537L4.614695-2.092154C4.519054-1.733499 4.291905-.848817 4.267995-.71731C4.220174-.537983 4.148443-.227148 4.148443-.179328C4.148443-.011955 4.27995 .119552 4.459278 .119552C4.817933 .119552 4.877709-.155417 4.985305-.585803L5.702615-3.443088C5.726526-3.53873 6.348194-5.033126 7.663263-5.033126C8.141469-5.033126 8.308842-4.674471 8.308842-4.196264C8.308842-3.526775 7.84259-2.223661 7.579577-1.506351C7.47198-1.219427 7.412204-1.06401 7.412204-.848817C7.412204-.310834 7.782814 .119552 8.356663 .119552C9.468493 .119552 9.886924-1.637858 9.886924-1.709589C9.886924-1.769365 9.839103-1.817186 9.767372-1.817186C9.659776-1.817186 9.647821-1.78132 9.588045-1.578082C9.313076-.621669 8.870735-.119552 8.392528-.119552C8.272976-.119552 8.081694-.131507 8.081694-.514072C8.081694-.824907 8.225156-1.207472 8.272976-1.338979C8.488169-1.912827 9.026152-3.323537 9.026152-4.016936C9.026152-4.734247 8.607721-5.272229 7.699128-5.272229C6.898132-5.272229 6.252553-4.817933 5.774346-4.112578C5.738481-4.758157 5.34396-5.272229 4.447323-5.272229C3.383313-5.272229 2.82142-4.519054 2.606227-4.220174C2.570361-4.901619 2.080199-5.272229 1.554172-5.272229C1.207472-5.272229 .932503-5.104857 .705355-4.65056C.490162-4.220174 .32279-3.490909 .32279-3.443088S.37061-3.335492 .454296-3.335492C.549938-3.335492 .561893-3.347447 .633624-3.622416C.812951-4.327771 1.0401-5.033126 1.518306-5.033126C1.793275-5.033126 1.888917-4.841843 1.888917-4.483188C1.888917-4.220174 1.769365-3.753923 1.685679-3.383313L1.350934-2.092154C1.303113-1.865006 1.171606-1.327024 1.111831-1.111831C1.028144-.800996 .896638-.239103 .896638-.179328C.896638-.011955 1.028144 .119552 1.207472 .119552C1.350934 .119552 1.518306 .047821 1.613948-.131507C1.637858-.191283 1.745455-.609714 1.80523-.848817L2.068244-1.924782L2.462765-3.502864Z'/>
+<path id='g0-110' d='M2.462765-3.502864C2.486675-3.574595 2.785554-4.172354 3.227895-4.554919C3.53873-4.841843 3.945205-5.033126 4.411457-5.033126C4.889664-5.033126 5.057036-4.674471 5.057036-4.196264C5.057036-3.514819 4.566874-2.15193 4.327771-1.506351C4.220174-1.219427 4.160399-1.06401 4.160399-.848817C4.160399-.310834 4.531009 .119552 5.104857 .119552C6.216687 .119552 6.635118-1.637858 6.635118-1.709589C6.635118-1.769365 6.587298-1.817186 6.515567-1.817186C6.40797-1.817186 6.396015-1.78132 6.336239-1.578082C6.06127-.597758 5.606974-.119552 5.140722-.119552C5.021171-.119552 4.829888-.131507 4.829888-.514072C4.829888-.812951 4.961395-1.171606 5.033126-1.338979C5.272229-1.996513 5.774346-3.335492 5.774346-4.016936C5.774346-4.734247 5.355915-5.272229 4.447323-5.272229C3.383313-5.272229 2.82142-4.519054 2.606227-4.220174C2.570361-4.901619 2.080199-5.272229 1.554172-5.272229C1.171606-5.272229 .908593-5.045081 .705355-4.638605C.490162-4.208219 .32279-3.490909 .32279-3.443088S.37061-3.335492 .454296-3.335492C.549938-3.335492 .561893-3.347447 .633624-3.622416C.824907-4.351681 1.0401-5.033126 1.518306-5.033126C1.793275-5.033126 1.888917-4.841843 1.888917-4.483188C1.888917-4.220174 1.769365-3.753923 1.685679-3.383313L1.350934-2.092154C1.303113-1.865006 1.171606-1.327024 1.111831-1.111831C1.028144-.800996 .896638-.239103 .896638-.179328C.896638-.011955 1.028144 .119552 1.207472 .119552C1.350934 .119552 1.518306 .047821 1.613948-.131507C1.637858-.191283 1.745455-.609714 1.80523-.848817L2.068244-1.924782L2.462765-3.502864Z'/>
+<path id='g0-111' d='M5.451557-3.287671C5.451557-4.423412 4.710336-5.272229 3.622416-5.272229C2.044334-5.272229 .490162-3.550685 .490162-1.865006C.490162-.729265 1.231382 .119552 2.319303 .119552C3.90934 .119552 5.451557-1.601993 5.451557-3.287671ZM2.331258-.119552C1.733499-.119552 1.291158-.597758 1.291158-1.43462C1.291158-1.984558 1.578082-3.203985 1.912827-3.801743C2.450809-4.722291 3.120299-5.033126 3.610461-5.033126C4.196264-5.033126 4.65056-4.554919 4.65056-3.718057C4.65056-3.239851 4.399502-1.960648 3.945205-1.231382C3.455044-.430386 2.797509-.119552 2.331258-.119552Z'/>
+<path id='g0-112' d='M.514072 1.518306C.430386 1.876961 .382565 1.972603-.107597 1.972603C-.251059 1.972603-.37061 1.972603-.37061 2.199751C-.37061 2.223661-.358655 2.319303-.227148 2.319303C-.071731 2.319303 .095641 2.295392 .251059 2.295392H.765131C1.016189 2.295392 1.625903 2.319303 1.876961 2.319303C1.948692 2.319303 2.092154 2.319303 2.092154 2.10411C2.092154 1.972603 2.008468 1.972603 1.80523 1.972603C1.255293 1.972603 1.219427 1.888917 1.219427 1.793275C1.219427 1.649813 1.75741-.406476 1.829141-.681445C1.960648-.3467 2.283437 .119552 2.905106 .119552C4.25604 .119552 5.71457-1.637858 5.71457-3.395268C5.71457-4.495143 5.092902-5.272229 4.196264-5.272229C3.431133-5.272229 2.785554-4.531009 2.654047-4.363636C2.558406-4.961395 2.092154-5.272229 1.613948-5.272229C1.267248-5.272229 .992279-5.104857 .765131-4.65056C.549938-4.220174 .382565-3.490909 .382565-3.443088S.430386-3.335492 .514072-3.335492C.609714-3.335492 .621669-3.347447 .6934-3.622416C.872727-4.327771 1.099875-5.033126 1.578082-5.033126C1.853051-5.033126 1.948692-4.841843 1.948692-4.483188C1.948692-4.196264 1.912827-4.076712 1.865006-3.861519L.514072 1.518306ZM2.582316-3.730012C2.666002-4.064757 3.000747-4.411457 3.19203-4.578829C3.323537-4.698381 3.718057-5.033126 4.172354-5.033126C4.698381-5.033126 4.937484-4.507098 4.937484-3.88543C4.937484-3.311582 4.60274-1.960648 4.303861-1.338979C4.004981-.6934 3.455044-.119552 2.905106-.119552C2.092154-.119552 1.960648-1.147696 1.960648-1.195517C1.960648-1.231382 1.984558-1.327024 1.996513-1.3868L2.582316-3.730012Z'/>
+<path id='g0-113' d='M5.272229-5.152677C5.272229-5.212453 5.224408-5.260274 5.164633-5.260274C5.068991-5.260274 4.60274-4.829888 4.375592-4.411457C4.160399-4.94944 3.789788-5.272229 3.275716-5.272229C1.924782-5.272229 .466252-3.526775 .466252-1.75741C.466252-.573848 1.159651 .119552 1.972603 .119552C2.606227 .119552 3.132254-.358655 3.383313-.633624L3.395268-.621669L2.940971 1.171606L2.833375 1.601993C2.725778 1.960648 2.546451 1.960648 1.984558 1.972603C1.853051 1.972603 1.733499 1.972603 1.733499 2.199751C1.733499 2.283437 1.80523 2.319303 1.888917 2.319303C2.056289 2.319303 2.271482 2.295392 2.438854 2.295392H3.658281C3.837609 2.295392 4.040847 2.319303 4.220174 2.319303C4.291905 2.319303 4.435367 2.319303 4.435367 2.092154C4.435367 1.972603 4.339726 1.972603 4.160399 1.972603C3.598506 1.972603 3.56264 1.888917 3.56264 1.793275C3.56264 1.733499 3.574595 1.721544 3.610461 1.566127L5.272229-5.152677ZM3.58655-1.422665C3.526775-1.219427 3.526775-1.195517 3.359402-.968369C3.096389-.633624 2.570361-.119552 2.008468-.119552C1.518306-.119552 1.243337-.561893 1.243337-1.267248C1.243337-1.924782 1.613948-3.263761 1.841096-3.765878C2.247572-4.60274 2.809465-5.033126 3.275716-5.033126C4.064757-5.033126 4.220174-4.052802 4.220174-3.957161C4.220174-3.945205 4.184309-3.789788 4.172354-3.765878L3.58655-1.422665Z'/>
+<path id='g0-114' d='M4.65056-4.889664C4.27995-4.817933 4.088667-4.554919 4.088667-4.291905C4.088667-4.004981 4.315816-3.90934 4.483188-3.90934C4.817933-3.90934 5.092902-4.196264 5.092902-4.554919C5.092902-4.937484 4.722291-5.272229 4.124533-5.272229C3.646326-5.272229 3.096389-5.057036 2.594271-4.327771C2.510585-4.961395 2.032379-5.272229 1.554172-5.272229C1.08792-5.272229 .848817-4.913574 .705355-4.65056C.502117-4.220174 .32279-3.502864 .32279-3.443088C.32279-3.395268 .37061-3.335492 .454296-3.335492C.549938-3.335492 .561893-3.347447 .633624-3.622416C.812951-4.339726 1.0401-5.033126 1.518306-5.033126C1.80523-5.033126 1.888917-4.829888 1.888917-4.483188C1.888917-4.220174 1.769365-3.753923 1.685679-3.383313L1.350934-2.092154C1.303113-1.865006 1.171606-1.327024 1.111831-1.111831C1.028144-.800996 .896638-.239103 .896638-.179328C.896638-.011955 1.028144 .119552 1.207472 .119552C1.338979 .119552 1.566127 .035866 1.637858-.203238C1.673724-.298879 2.116065-2.10411 2.187796-2.379078C2.247572-2.642092 2.319303-2.893151 2.379078-3.156164C2.426899-3.323537 2.47472-3.514819 2.510585-3.670237C2.546451-3.777833 2.86924-4.363636 3.16812-4.62665C3.311582-4.758157 3.622416-5.033126 4.112578-5.033126C4.303861-5.033126 4.495143-4.99726 4.65056-4.889664Z'/>
+<path id='g0-115' d='M2.725778-2.391034C2.929016-2.355168 3.251806-2.283437 3.323537-2.271482C3.478954-2.223661 4.016936-2.032379 4.016936-1.458531C4.016936-1.08792 3.682192-.119552 2.295392-.119552C2.044334-.119552 1.147696-.155417 .908593-.812951C1.3868-.753176 1.625903-1.123786 1.625903-1.3868C1.625903-1.637858 1.458531-1.769365 1.219427-1.769365C.956413-1.769365 .609714-1.566127 .609714-1.028144C.609714-.32279 1.327024 .119552 2.283437 .119552C4.100623 .119552 4.638605-1.219427 4.638605-1.841096C4.638605-2.020423 4.638605-2.355168 4.25604-2.737733C3.957161-3.024658 3.670237-3.084433 3.024658-3.21594C2.701868-3.287671 2.187796-3.395268 2.187796-3.93325C2.187796-4.172354 2.402989-5.033126 3.53873-5.033126C4.040847-5.033126 4.531009-4.841843 4.65056-4.411457C4.124533-4.411457 4.100623-3.957161 4.100623-3.945205C4.100623-3.694147 4.327771-3.622416 4.435367-3.622416C4.60274-3.622416 4.937484-3.753923 4.937484-4.25604S4.483188-5.272229 3.550685-5.272229C1.984558-5.272229 1.566127-4.040847 1.566127-3.550685C1.566127-2.642092 2.450809-2.450809 2.725778-2.391034Z'/>
+<path id='g0-116' d='M2.402989-4.805978H3.502864C3.730012-4.805978 3.849564-4.805978 3.849564-5.021171C3.849564-5.152677 3.777833-5.152677 3.53873-5.152677H2.486675L2.929016-6.898132C2.976837-7.065504 2.976837-7.089415 2.976837-7.173101C2.976837-7.364384 2.82142-7.47198 2.666002-7.47198C2.570361-7.47198 2.295392-7.436115 2.199751-7.053549L1.733499-5.152677H.609714C.37061-5.152677 .263014-5.152677 .263014-4.925529C.263014-4.805978 .3467-4.805978 .573848-4.805978H1.637858L.848817-1.649813C.753176-1.231382 .71731-1.111831 .71731-.956413C.71731-.394521 1.111831 .119552 1.78132 .119552C2.988792 .119552 3.634371-1.625903 3.634371-1.709589C3.634371-1.78132 3.58655-1.817186 3.514819-1.817186C3.490909-1.817186 3.443088-1.817186 3.419178-1.769365C3.407223-1.75741 3.395268-1.745455 3.311582-1.554172C3.060523-.956413 2.510585-.119552 1.817186-.119552C1.458531-.119552 1.43462-.418431 1.43462-.681445C1.43462-.6934 1.43462-.920548 1.470486-1.06401L2.402989-4.805978Z'/>
+<path id='g0-117' d='M4.076712-.6934C4.23213-.02391 4.805978 .119552 5.092902 .119552C5.475467 .119552 5.762391-.131507 5.953674-.537983C6.156912-.968369 6.312329-1.673724 6.312329-1.709589C6.312329-1.769365 6.264508-1.817186 6.192777-1.817186C6.085181-1.817186 6.073225-1.75741 6.025405-1.578082C5.810212-.753176 5.595019-.119552 5.116812-.119552C4.758157-.119552 4.758157-.514072 4.758157-.669489C4.758157-.944458 4.794022-1.06401 4.913574-1.566127C4.99726-1.888917 5.080946-2.211706 5.152677-2.546451L5.642839-4.495143C5.726526-4.794022 5.726526-4.817933 5.726526-4.853798C5.726526-5.033126 5.583064-5.152677 5.403736-5.152677C5.057036-5.152677 4.97335-4.853798 4.901619-4.554919C4.782067-4.088667 4.136488-1.518306 4.052802-1.099875C4.040847-1.099875 3.574595-.119552 2.701868-.119552C2.080199-.119552 1.960648-.657534 1.960648-1.099875C1.960648-1.78132 2.295392-2.737733 2.606227-3.53873C2.749689-3.921295 2.809465-4.076712 2.809465-4.315816C2.809465-4.829888 2.438854-5.272229 1.865006-5.272229C.765131-5.272229 .32279-3.53873 .32279-3.443088C.32279-3.395268 .37061-3.335492 .454296-3.335492C.561893-3.335492 .573848-3.383313 .621669-3.550685C.908593-4.578829 1.374844-5.033126 1.829141-5.033126C1.948692-5.033126 2.139975-5.021171 2.139975-4.638605C2.139975-4.327771 2.008468-3.981071 1.829141-3.526775C1.303113-2.10411 1.243337-1.649813 1.243337-1.291158C1.243337-.071731 2.163885 .119552 2.654047 .119552C3.419178 .119552 3.837609-.406476 4.076712-.6934Z'/>
+<path id='g0-121' d='M3.144209 1.338979C2.82142 1.793275 2.355168 2.199751 1.769365 2.199751C1.625903 2.199751 1.052055 2.175841 .872727 1.625903C.908593 1.637858 .968369 1.637858 .992279 1.637858C1.350934 1.637858 1.590037 1.327024 1.590037 1.052055S1.362889 .681445 1.183562 .681445C.992279 .681445 .573848 .824907 .573848 1.41071C.573848 2.020423 1.08792 2.438854 1.769365 2.438854C2.964882 2.438854 4.172354 1.338979 4.507098 .011955L5.678705-4.65056C5.69066-4.710336 5.71457-4.782067 5.71457-4.853798C5.71457-5.033126 5.571108-5.152677 5.391781-5.152677C5.284184-5.152677 5.033126-5.104857 4.937484-4.746202L4.052802-1.231382C3.993026-1.016189 3.993026-.992279 3.897385-.860772C3.658281-.526027 3.263761-.119552 2.689913-.119552C2.020423-.119552 1.960648-.777086 1.960648-1.099875C1.960648-1.78132 2.283437-2.701868 2.606227-3.56264C2.737733-3.90934 2.809465-4.076712 2.809465-4.315816C2.809465-4.817933 2.450809-5.272229 1.865006-5.272229C.765131-5.272229 .32279-3.53873 .32279-3.443088C.32279-3.395268 .37061-3.335492 .454296-3.335492C.561893-3.335492 .573848-3.383313 .621669-3.550685C.908593-4.554919 1.362889-5.033126 1.829141-5.033126C1.936737-5.033126 2.139975-5.033126 2.139975-4.638605C2.139975-4.327771 2.008468-3.981071 1.829141-3.526775C1.243337-1.960648 1.243337-1.566127 1.243337-1.279203C1.243337-.143462 2.056289 .119552 2.654047 .119552C3.000747 .119552 3.431133 .011955 3.849564-.430386L3.861519-.418431C3.682192 .286924 3.56264 .753176 3.144209 1.338979Z'/>
+</defs>
+<g id='page1' transform='matrix(1.13 0 0 1.13 -63.986043 -64.41)'>
+<use x='56.413267' y='65.753425' xlink:href='#g0-109'/>
+<use x='66.652534' y='65.753425' xlink:href='#g0-101'/>
+<use x='72.077974' y='65.753425' xlink:href='#g0-109'/>
+<use x='82.317241' y='65.753425' xlink:href='#g0-111'/>
+<use x='87.944679' y='65.753425' xlink:href='#g0-114'/>
+<use x='93.545152' y='65.753425' xlink:href='#g0-121'/>
+<use x='99.681804' y='65.753425' xlink:href='#g0-58'/>
+<use x='102.933465' y='65.753425' xlink:href='#g0-109'/>
+<use x='113.172732' y='65.753425' xlink:href='#g0-105'/>
+<use x='117.166164' y='65.753425' xlink:href='#g0-110'/>
+<use x='127.474599' y='65.753425' xlink:href='#g1-61'/>
+<use x='139.90008' y='65.753425' xlink:href='#g0-112'/>
+<use x='145.775223' y='65.753425' xlink:href='#g0-111'/>
+<use x='151.402661' y='65.753425' xlink:href='#g0-100'/>
+<use x='157.485354' y='65.753425' xlink:href='#g0-58'/>
+<use x='160.737015' y='65.753425' xlink:href='#g0-115'/>
+<use x='166.251021' y='65.753425' xlink:href='#g0-112'/>
+<use x='172.126164' y='65.753425' xlink:href='#g0-101'/>
+<use x='177.551604' y='65.753425' xlink:href='#g0-99'/>
+<use x='182.589592' y='65.753425' xlink:href='#g0-58'/>
+<use x='185.841254' y='65.753425' xlink:href='#g0-99'/>
+<use x='190.879242' y='65.753425' xlink:href='#g0-111'/>
+<use x='196.50668' y='65.753425' xlink:href='#g0-110'/>
+<use x='203.494285' y='65.753425' xlink:href='#g0-116'/>
+<use x='207.721445' y='65.753425' xlink:href='#g0-97'/>
+<use x='213.866389' y='65.753425' xlink:href='#g0-105'/>
+<use x='217.859822' y='65.753425' xlink:href='#g0-110'/>
+<use x='224.847427' y='65.753425' xlink:href='#g0-101'/>
+<use x='230.272867' y='65.753425' xlink:href='#g0-114'/>
+<use x='235.873341' y='65.753425' xlink:href='#g0-115'/>
+<use x='241.387347' y='65.753425' xlink:href='#g1-91'/>
+<use x='244.639008' y='65.753425' xlink:href='#g0-105'/>
+<use x='248.63244' y='65.753425' xlink:href='#g1-93'/>
+<use x='251.884101' y='65.753425' xlink:href='#g0-58'/>
+<use x='255.135763' y='65.753425' xlink:href='#g0-114'/>
+<use x='260.736236' y='65.753425' xlink:href='#g0-101'/>
+<use x='266.161676' y='65.753425' xlink:href='#g0-115'/>
+<use x='271.675682' y='65.753425' xlink:href='#g0-111'/>
+<use x='277.303119' y='65.753425' xlink:href='#g0-117'/>
+<use x='283.965559' y='65.753425' xlink:href='#g0-114'/>
+<use x='289.566032' y='65.753425' xlink:href='#g0-99'/>
+<use x='294.604021' y='65.753425' xlink:href='#g0-101'/>
+<use x='300.029461' y='65.753425' xlink:href='#g0-115'/>
+<use x='305.543467' y='65.753425' xlink:href='#g0-58'/>
+<use x='308.795128' y='65.753425' xlink:href='#g0-114'/>
+<use x='314.395601' y='65.753425' xlink:href='#g0-101'/>
+<use x='319.821042' y='65.753425' xlink:href='#g0-113'/>
+<use x='325.440198' y='65.753425' xlink:href='#g0-117'/>
+<use x='332.102638' y='65.753425' xlink:href='#g0-101'/>
+<use x='337.528078' y='65.753425' xlink:href='#g0-115'/>
+<use x='343.042083' y='65.753425' xlink:href='#g0-116'/>
+<use x='347.269243' y='65.753425' xlink:href='#g0-115'/>
+<use x='352.783249' y='65.753425' xlink:href='#g1-91'/>
+<use x='356.03491' y='65.753425' xlink:href='#g0-109'/>
+<use x='366.274177' y='65.753425' xlink:href='#g0-101'/>
+<use x='371.699617' y='65.753425' xlink:href='#g0-109'/>
+<use x='381.938884' y='65.753425' xlink:href='#g0-111'/>
+<use x='387.566322' y='65.753425' xlink:href='#g0-114'/>
+<use x='393.166795' y='65.753425' xlink:href='#g0-121'/>
+<use x='399.303447' y='65.753425' xlink:href='#g1-93'/>
+</g>
+</svg>
\ No newline at end of file
diff --git a/content/en/blog/_posts/2021-11-26-memory-qos-cgroups-v2/index.md b/content/en/blog/_posts/2021-11-26-memory-qos-cgroups-v2/index.md
new file mode 100644
index 0000000000..3085aecda2
--- /dev/null
+++ b/content/en/blog/_posts/2021-11-26-memory-qos-cgroups-v2/index.md
@@ -0,0 +1,118 @@
+---
+layout: blog
+title: 'Quality-of-Service for Memory Resources'
+date: 2021-11-26
+slug: qos-memory-resources
+---
+
+**Authors:** Tim Xu (Tencent Cloud)
+
+Kubernetes v1.22, released in August 2021, introduced a new alpha feature that improves how Linux nodes implement memory resource requests and limits.
+
+In prior releases, Kubernetes did not support memory quality guarantees. 
+For example, if you set container resources as follows:
+```
+apiVersion: v1
+kind: Pod
+metadata:
+  name: example
+spec:
+  containers:
+  - name: nginx
+    resources:
+      requests:
+        memory: "64Mi"
+        cpu: "250m"
+      limits:
+        memory: "64Mi"
+        cpu: "500m"
+```
+`spec.containers[].resources.requests`(e.g. cpu, memory) is designed for scheduling. When you create a Pod, the Kubernetes scheduler selects a node for the Pod to run on. Each node has a maximum capacity for each of the resource types: the amount of CPU and memory it can provide for Pods. The scheduler ensures that, for each resource type, the sum of the resource requests of the scheduled Containers is less than the capacity of the node.
+
+`spec.containers[].resources.limits` is passed to the container runtime when the kubelet starts a container. CPU is considered a "compressible" resource. If your app starts hitting your CPU limits, Kubernetes starts throttling your container, giving your app potentially worse performance. However, it won’t be terminated. That is what "compressible" means.
+
+In cgroup v1, and prior to this feature, the container runtime never took into account and effectively ignored spec.containers[].resources.requests["memory"]. This is unlike CPU, in which the container runtime consider both requests and limits. Furthermore, memory actually can't be compressed in cgroup v1. Because there is no way to throttle memory usage, if a container goes past its memory limit it will be terminated by the kernel with an OOM (Out of Memory) kill.
+
+Fortunately, cgroup v2 brings a new design and implementation to achieve full protection on memory. The new feature relies on cgroups v2 which most current operating system releases for Linux already provide. With this experimental feature, [quality-of-service for pods and containers](/docs/tasks/configure-pod-container/quality-service-pod/) extends to cover not just CPU time but memory as well.
+
+## How does it work?
+Memory QoS uses the memory controller of cgroup v2 to guarantee memory resources in Kubernetes. Memory requests and limits of containers in pod are used to set specific interfaces `memory.min` and `memory.high` provided by the memory controller. When `memory.min` is set to memory requests, memory resources are reserved and never reclaimed by the kernel; this is how Memory QoS ensures the availability of memory for Kubernetes pods. And if memory limits are set in the container, this means that the system needs to limit container memory usage, Memory QoS uses `memory.high` to throttle workload approaching it's memory limit, ensuring that the system is not overwhelmed by instantaneous memory allocation.
+
+![](./memory-qos-cal.svg)
+
+The following table details the specific functions of these two parameters and how they correspond to Kubernetes container resources.
+
+<table>
+    <tr>
+        <th style="text-align:center">File</th>
+        <th style="text-align:center">Description</th>
+   </tr>
+   <tr>
+        <td>memory.min</td>
+        <td><code>memory.min</code> specifies a minimum amount of memory the cgroup must always retain, i.e., memory that can never be reclaimed by the system. If the cgroup's memory usage reaches this low limit and can’t be increased, the system OOM killer will be invoked.
+        <br>
+        <br>
+        <i>We map it to the container's memory request</i>
+        </td>
+   </tr>
+   <tr>
+       <td>memory.high</td>
+       <td><code>memory.high</code> is the memory usage throttle limit. This is the main mechanism to control a cgroup's memory use. If a cgroup's memory use goes over the high boundary specified here, the cgroup’s processes are throttled and put under heavy reclaim pressure. The default is max, meaning there is no limit. 
+       <br>
+       <br>
+       <i>We use a formula to calculate <code>memory.high</code>, depending on container's memory limit or node allocatable memory (if container's memory limit is empty) and a throttling factor. Please refer to the KEP for more details on the formula.</i>
+       </td>
+   </tr>
+</table>
+
+When container memory requests are made, kubelet passes `memory.min` to the back-end CRI runtime (possibly containerd, cri-o) via the `Unified` field in CRI during container creation. The `memory.min` in container level cgroup will be set to:  
+
+![](./container-memory-min.svg)  
+<sub>i: the i<sup>th</sup> container in one pod</sub>
+
+Since the `memory.min` interface requires that the ancestor cgroup directories are all set, the pod and node cgroup directories need to be set correctly. 
+
+`memory.min` in pod level cgroup:  
+![](./pod-memory-min.svg)  
+<sub>i: the i<sup>th</sup> container in one pod</sub>
+
+`memory.min` in node level cgroup:  
+![](./node-memory-min.svg)  
+<sub>i: the i<sup>th</sup> pod in one node, j: the j<sup>th</sup> container in one pod</sub>
+
+Kubelet will manage the cgroup hierarchy of the pod level and node level cgroups directly using runc libcontainer library, while container cgroup limits are managed by the container runtime.
+
+For memory limits, in addition to the original way of limiting memory usage, Memory QoS adds an additional feature of throttling memory allocation. A throttling factor is introduced as a multiplier (default is 0.8). If the result of multiplying memory limits by the factor is greater than memory requests, kubelet will set `memory.high` to the value and use `Unified` via CRI. And if the container does not specify memory limits, kubelet will use node allocatable memory instead. The `memory.high` in container level cgroup is set to:
+
+![](./container-memory-high.svg)  
+<sub>i: the i<sup>th</sup> container in one pod</sub>
+
+This can can help improve stability when pod memory usage increases, ensuring that memory is throttled as it approaches the memory limit.
+
+## How do I use it?
+Here are the prerequisites for enabling Memory QoS on your Linux node, some of these are related to [Kubernetes support for cgroup v2](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2254-cgroup-v2).
+
+1. Kubernetes since v1.22
+2. [runc](https://github.com/opencontainers/runc) since v1.0.0-rc93; [containerd](https://containerd.io/) since 1.4; [cri-o](https://cri-o.io/) since 1.20
+3. Linux kernel minimum version: 4.15, recommended version: 5.2+
+4. Linux image with cgroupv2 enabled or enabling cgroupv2 unified_cgroup_hierarchy manually
+
+OCI runtimes such as runc and crun already support cgroups v2 [`Unified`](https://github.com/opencontainers/runtime-spec/blob/master/config-linux.md#unified), and Kubernetes CRI has also made the desired changes to support passing [`Unified`](https://github.com/kubernetes/kubernetes/pull/102578). However, CRI Runtime support is required as well. Memory QoS in Alpha phase is designed to support containerd and cri-o. Related PR [Feature: containerd-cri support LinuxContainerResources.Unified #5627](https://github.com/containerd/containerd/pull/5627) has been merged and will be released in containerd 1.6. CRI-O [implement kube alpha features for 1.22 #5207](https://github.com/cri-o/cri-o/pull/5207) is still in WIP.
+
+With those prerequisites met, you can enable the memory QoS feature gate (see [Set kubelet parameters via a config file](/docs/tasks/administer-cluster/kubelet-config-file/)).
+    
+## How can I learn more?
+
+You can find more details as follows:
+- [Support Memory QoS with cgroup v2](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2570-memory-qos/#readme)
+- [cgroup v2](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2254-cgroup-v2/#readme)
+
+## How do I get involved?
+You can reach SIG Node by several means:
+- Slack: [#sig-node](https://kubernetes.slack.com/messages/sig-node)
+- [Mailing list](https://groups.google.com/forum/#!forum/kubernetes-sig-node)
+- [Open Community Issues/PRs](https://github.com/kubernetes/community/labels/sig%2Fnode)
+
+You can also contact me directly:
+- GitHub / Slack: @xiaoxubeii
+- Email: xiaoxubeii@gmail.com
\ No newline at end of file
diff --git a/content/en/blog/_posts/2021-11-26-memory-qos-cgroups-v2/memory-qos-cal.svg b/content/en/blog/_posts/2021-11-26-memory-qos-cgroups-v2/memory-qos-cal.svg
new file mode 100644
index 0000000000..545ee77b29
--- /dev/null
+++ b/content/en/blog/_posts/2021-11-26-memory-qos-cgroups-v2/memory-qos-cal.svg
@@ -0,0 +1 @@
+<svg version="1.1" viewBox="0.0 0.0 982.8398950131234 228.2782152230971" fill="none" stroke="none" stroke-linecap="square" stroke-miterlimit="10" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg"><clipPath id="p.0"><path d="m0 0l982.8399 0l0 228.27821l-982.8399 0l0 -228.27821z" clip-rule="nonzero"/></clipPath><g clip-path="url(#p.0)"><path fill="#ffffff" d="m0 0l982.8399 0l0 228.27821l-982.8399 0z" fill-rule="evenodd"/><path fill="#cfe2f3" d="m75.144356 2.3385792l245.51181 0l0 224.18898l-245.51181 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m75.144356 2.3385792l245.51181 0l0 224.18898l-245.51181 0z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m-2.1023622 63.115482l479.43307 0" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" stroke-dasharray="8.0,3.0" d="m-2.1023622 63.115482l479.43307 0" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m330.11023 12.847766l314.96063 0l0 42.015747l-314.96063 0z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m-43.90813 27.41732l556.126 0l0 42.015747l-556.126 0z" fill-rule="evenodd"/><path fill="#000000" d="m8.274501 54.33732l0 -13.359375l1.640625 0l0 13.359375l-1.640625 0zm4.191696 -11.46875l0 -1.890625l1.640625 0l0 1.890625l-1.640625 0zm0 11.46875l0 -9.671875l1.640625 0l0 9.671875l-1.640625 0zm4.144822 0l0 -9.671875l1.46875 0l0 1.359375q0.453125 -0.71875 1.203125 -1.140625q0.765625 -0.4375 1.71875 -0.4375q1.078125 0 1.765625 0.453125q0.6875 0.4375 0.96875 1.234375q1.15625 -1.6875 2.984375 -1.6875q1.453125 0 2.21875 0.796875q0.78125 0.796875 0.78125 2.453125l0 6.640625l-1.640625 0l0 -6.09375q0 -0.984375 -0.15625 -1.40625q-0.15625 -0.4375 -0.578125 -0.703125q-0.421875 -0.265625 -0.984375 -0.265625q-1.015625 0 -1.6875 0.6875q-0.671875 0.671875 -0.671875 2.15625l0 5.625l-1.640625 0l0 -6.28125q0 -1.09375 -0.40625 -1.640625q-0.40625 -0.546875 -1.3125 -0.546875q-0.6875 0 -1.28125 0.359375q-0.59375 0.359375 -0.859375 1.0625q-0.25 0.703125 -0.25 2.03125l0 5.015625l-1.640625 0zm15.540802 -11.46875l0 -1.890625l1.640625 0l0 1.890625l-1.640625 0zm0 11.46875l0 -9.671875l1.640625 0l0 9.671875l-1.640625 0zm7.722946 -1.46875l0.234375 1.453125q-0.6875 0.140625 -1.234375 0.140625q-0.890625 0 -1.390625 -0.28125q-0.484375 -0.28125 -0.6875 -0.734375q-0.203125 -0.46875 -0.203125 -1.9375l0 -5.578125l-1.203125 0l0 -1.265625l1.203125 0l0 -2.390625l1.625 -0.984375l0 3.375l1.65625 0l0 1.265625l-1.65625 0l0 5.671875q0 0.6875 0.078125 0.890625q0.09375 0.203125 0.28125 0.328125q0.203125 0.109375 0.578125 0.109375q0.265625 0 0.71875 -0.0625zm0.94892883 -1.421875l1.625 -0.25q0.125 0.96875 0.75 1.5q0.625 0.515625 1.75 0.515625q1.125 0 1.671875 -0.453125q0.546875 -0.46875 0.546875 -1.09375q0 -0.546875 -0.484375 -0.875q-0.328125 -0.21875 -1.671875 -0.546875q-1.8125 -0.46875 -2.515625 -0.796875q-0.6875 -0.328125 -1.046875 -0.90625q-0.359375 -0.59375 -0.359375 -1.3125q0 -0.640625 0.296875 -1.1875q0.296875 -0.5625 0.8125 -0.921875q0.375 -0.28125 1.03125 -0.46875q0.671875 -0.203125 1.421875 -0.203125q1.140625 0 2.0 0.328125q0.859375 0.328125 1.265625 0.890625q0.421875 0.5625 0.578125 1.5l-1.609375 0.21875q-0.109375 -0.75 -0.640625 -1.171875q-0.515625 -0.421875 -1.46875 -0.421875q-1.140625 0 -1.625 0.375q-0.46875 0.375 -0.46875 0.875q0 0.3125 0.1875 0.578125q0.203125 0.265625 0.640625 0.4375q0.234375 0.09375 1.4375 0.421875q1.75 0.453125 2.4375 0.75q0.6875 0.296875 1.078125 0.859375q0.390625 0.5625 0.390625 1.40625q0 0.828125 -0.484375 1.546875q-0.46875 0.71875 -1.375 1.125q-0.90625 0.390625 -2.046875 0.390625q-1.875 0 -2.875 -0.78125q-0.984375 -0.78125 -1.25 -2.328125zm10.4375 2.890625l0 -1.875l1.875 0l0 1.875l-1.875 0zm4.730179 0l0 -9.671875l1.46875 0l0 1.359375q0.453125 -0.71875 1.203125 -1.140625q0.765625 -0.4375 1.71875 -0.4375q1.078125 0 1.765625 0.453125q0.6875 0.4375 0.96875 1.234375q1.1562462 -1.6875 2.9843712 -1.6875q1.453125 0 2.21875 0.796875q0.78125 0.796875 0.78125 2.453125l0 6.640625l-1.640625 0l0 -6.09375q0 -0.984375 -0.15625 -1.40625q-0.15625 -0.4375 -0.578125 -0.703125q-0.421875 -0.265625 -0.984375 -0.265625q-1.015625 0 -1.6875 0.6875q-0.6718712 0.671875 -0.6718712 2.15625l0 5.625l-1.640625 0l0 -6.28125q0 -1.09375 -0.40625 -1.640625q-0.40625 -0.546875 -1.3125 -0.546875q-0.6875 0 -1.28125 0.359375q-0.59375 0.359375 -0.859375 1.0625q-0.25 0.703125 -0.25 2.03125l0 5.015625l-1.640625 0zm22.165798 -3.109375l1.6875 0.203125q-0.40625 1.484375 -1.484375 2.3125q-1.078125 0.8125 -2.765625 0.8125q-2.125 0 -3.375 -1.296875q-1.234375 -1.3125 -1.234375 -3.671875q0 -2.453125 1.25 -3.796875q1.265625 -1.34375 3.265625 -1.34375q1.9375 0 3.15625 1.328125q1.234375 1.3125 1.234375 3.703125q0 0.15625 0 0.4375l-7.21875 0q0.09375 1.59375 0.90625 2.453125q0.8125 0.84375 2.015625 0.84375q0.90625 0 1.546875 -0.46875q0.640625 -0.484375 1.015625 -1.515625zm-5.390625 -2.65625l5.40625 0q-0.109375 -1.21875 -0.625 -1.828125q-0.78125 -0.953125 -2.03125 -0.953125q-1.125 0 -1.90625 0.765625q-0.765625 0.75 -0.84375 2.015625zm9.141342 5.765625l0 -9.671875l1.46875 0l0 1.359375q0.453125 -0.71875 1.203125 -1.140625q0.765625 -0.4375 1.71875 -0.4375q1.078125 0 1.765625 0.453125q0.6875 0.4375 0.96875 1.234375q1.15625 -1.6875 2.984375 -1.6875q1.453125 0 2.21875 0.796875q0.78125 0.796875 0.78125 2.453125l0 6.640625l-1.640625 0l0 -6.09375q0 -0.984375 -0.15625 -1.40625q-0.15625 -0.4375 -0.578125 -0.703125q-0.421875 -0.265625 -0.984375 -0.265625q-1.015625 0 -1.6875 0.6875q-0.671875 0.671875 -0.671875 2.15625l0 5.625l-1.640625 0l0 -6.28125q0 -1.09375 -0.40625 -1.640625q-0.40625 -0.546875 -1.3125 -0.546875q-0.6875 0 -1.28125 0.359375q-0.59375 0.359375 -0.859375 1.0625q-0.25 0.703125 -0.25 2.03125l0 5.015625l-1.640625 0zm14.931427 -4.84375q0 -2.6875 1.484375 -3.96875q1.25 -1.078125 3.046875 -1.078125q2.0 0 3.265625 1.3125q1.265625 1.296875 1.265625 3.609375q0 1.859375 -0.5625 2.9375q-0.5625 1.0625 -1.640625 1.65625q-1.0625 0.59375 -2.328125 0.59375q-2.03125 0 -3.28125 -1.296875q-1.25 -1.3125 -1.25 -3.765625zm1.6875 0q0 1.859375 0.796875 2.796875q0.8125 0.921875 2.046875 0.921875q1.21875 0 2.03125 -0.921875q0.8125 -0.9375 0.8125 -2.84375q0 -1.796875 -0.8125 -2.71875q-0.8125 -0.921875 -2.03125 -0.921875q-1.234375 0 -2.046875 0.921875q-0.796875 0.90625 -0.796875 2.765625zm9.281967 4.84375l0 -9.671875l1.46875 0l0 1.46875q0.5625 -1.03125 1.03125 -1.359375q0.484375 -0.328125 1.0625 -0.328125q0.828125 0 1.6875 0.53125l-0.5625 1.515625q-0.609375 -0.359375 -1.203125 -0.359375q-0.546875 0 -0.96875 0.328125q-0.421875 0.328125 -0.609375 0.890625q-0.28125 0.875 -0.28125 1.921875l0 5.0625l-1.625 0zm6.150177 3.71875l-0.1875 -1.53125q0.546875 0.140625 0.9375 0.140625q0.546875 0 0.875 -0.1875q0.328125 -0.171875 0.546875 -0.5q0.15625 -0.25 0.5 -1.21875q0.046875 -0.140625 0.140625 -0.40625l-3.671875 -9.6875l1.765625 0l2.015625 5.59375q0.390625 1.078125 0.703125 2.25q0.28125 -1.125 0.671875 -2.203125l2.078125 -5.640625l1.640625 0l-3.6875 9.828125q-0.59375 1.609375 -0.921875 2.203125q-0.4375 0.8125 -1.0 1.1875q-0.5625 0.375 -1.34375 0.375q-0.484375 0 -1.0625 -0.203125zm8.171875 -3.484375l3.875 -13.8125l1.3125 0l-3.859375 13.8125l-1.328125 0zm6.4176865 -0.234375l0 -9.671875l1.46875 0l0 1.375q1.0625 -1.59375 3.078125 -1.59375q0.875 0 1.609375 0.3125q0.734375 0.3125 1.09375 0.828125q0.375 0.5 0.515625 1.203125q0.09375 0.453125 0.09375 1.59375l0 5.953125l-1.640625 0l0 -5.890625q0 -1.0 -0.203125 -1.484375q-0.1875 -0.5 -0.671875 -0.796875q-0.484375 -0.296875 -1.140625 -0.296875q-1.046875 0 -1.8125 0.671875q-0.75 0.65625 -0.75 2.515625l0 5.28125l-1.640625 0zm9.766342 -4.84375q0 -2.6875 1.484375 -3.96875q1.25 -1.078125 3.046875 -1.078125q2.0 0 3.265625 1.3125q1.265625 1.296875 1.265625 3.609375q0 1.859375 -0.5625 2.9375q-0.5625 1.0625 -1.640625 1.65625q-1.0625 0.59375 -2.328125 0.59375q-2.03125 0 -3.28125 -1.296875q-1.25 -1.3125 -1.25 -3.765625zm1.6875 0q0 1.859375 0.796875 2.796875q0.8125 0.921875 2.046875 0.921875q1.21875 0 2.03125 -0.921875q0.8125 -0.9375 0.8125 -2.84375q0 -1.796875 -0.8125 -2.71875q-0.8125 -0.921875 -2.03125 -0.921875q-1.234375 0 -2.046875 0.921875q-0.796875 0.90625 -0.796875 2.765625zm15.563217 4.84375l0 -1.21875q-0.90625 1.4375 -2.703125 1.4375q-1.15625 0 -2.125 -0.640625q-0.96875 -0.640625 -1.5 -1.78125q-0.53125 -1.140625 -0.53125 -2.625q0 -1.453125 0.484375 -2.625q0.484375 -1.1875 1.4375 -1.8125q0.96875 -0.625 2.171875 -0.625q0.875 0 1.546875 0.375q0.6875 0.359375 1.109375 0.953125l0 -4.796875l1.640625 0l0 13.359375l-1.53125 0zm-5.171875 -4.828125q0 1.859375 0.78125 2.78125q0.78125 0.921875 1.84375 0.921875q1.078125 0 1.828125 -0.875q0.75 -0.890625 0.75 -2.6875q0 -1.984375 -0.765625 -2.90625q-0.765625 -0.9375 -1.890625 -0.9375q-1.078125 0 -1.8125 0.890625q-0.734375 0.890625 -0.734375 2.8125zm15.906967 1.71875l1.6875 0.203125q-0.40625 1.484375 -1.484375 2.3125q-1.078125 0.8125 -2.765625 0.8125q-2.125 0 -3.375 -1.296875q-1.234375 -1.3125 -1.234375 -3.671875q0 -2.453125 1.25 -3.796875q1.265625 -1.34375 3.265625 -1.34375q1.9375 0 3.15625 1.328125q1.234375 1.3125 1.234375 3.703125q0 0.15625 0 0.4375l-7.21875 0q0.09375 1.59375 0.90625 2.453125q0.8125 0.84375 2.015625 0.84375q0.90625 0 1.546875 -0.46875q0.640625 -0.484375 1.015625 -1.515625zm-5.390625 -2.65625l5.40625 0q-0.109375 -1.21875 -0.625 -1.828125q-0.78125 -0.953125 -2.03125 -0.953125q-1.125 0 -1.90625 0.765625q-0.765625 0.75 -0.84375 2.015625zm20.637146 4.578125q-0.921875 0.765625 -1.765625 1.09375q-0.828125 0.3125 -1.796875 0.3125q-1.59375 0 -2.453125 -0.78125q-0.859375 -0.78125 -0.859375 -1.984375q0 -0.71875 0.328125 -1.296875q0.328125 -0.59375 0.84375 -0.9375q0.53125 -0.359375 1.1875 -0.546875q0.46875 -0.125 1.453125 -0.25q1.984375 -0.234375 2.921875 -0.5625q0.015625 -0.34375 0.015625 -0.421875q0 -1.0 -0.46875 -1.421875q-0.625 -0.546875 -1.875 -0.546875q-1.15625 0 -1.703125 0.40625q-0.546875 0.40625 -0.8125 1.421875l-1.609375 -0.21875q0.21875 -1.015625 0.71875 -1.640625q0.5 -0.640625 1.453125 -0.984375q0.953125 -0.34375 2.1875 -0.34375q1.25 0 2.015625 0.296875q0.78125 0.28125 1.140625 0.734375q0.375 0.4375 0.515625 1.109375q0.078125 0.421875 0.078125 1.515625l0 2.1875q0 2.28125 0.109375 2.890625q0.109375 0.59375 0.40625 1.15625l-1.703125 0q-0.265625 -0.515625 -0.328125 -1.1875zm-0.140625 -3.671875q-0.890625 0.375 -2.671875 0.625q-1.015625 0.140625 -1.4375 0.328125q-0.421875 0.1875 -0.65625 0.53125q-0.21875 0.34375 -0.21875 0.78125q0 0.65625 0.5 1.09375q0.5 0.4375 1.453125 0.4375q0.9375 0 1.671875 -0.40625q0.75 -0.421875 1.09375 -1.140625q0.265625 -0.5625 0.265625 -1.640625l0 -0.609375zm4.156967 4.859375l0 -13.359375l1.640625 0l0 13.359375l-1.640625 0zm4.144821 0l0 -13.359375l1.640625 0l0 13.359375l-1.640625 0zm3.5823212 -4.84375q0 -2.6875 1.484375 -3.96875q1.25 -1.078125 3.046875 -1.078125q2.0 0 3.265625 1.3125q1.265625 1.296875 1.265625 3.609375q0 1.859375 -0.5625 2.9375q-0.5625 1.0625 -1.640625 1.65625q-1.0625 0.59375 -2.328125 0.59375q-2.03125 0 -3.28125 -1.296875q-1.25 -1.3125 -1.25 -3.765625zm1.6875 0q0 1.859375 0.796875 2.796875q0.8125 0.921875 2.046875 0.921875q1.21875 0 2.03125 -0.921875q0.8125 -0.9375 0.8125 -2.84375q0 -1.796875 -0.8125 -2.71875q-0.8125 -0.921875 -2.03125 -0.921875q-1.234375 0 -2.046875 0.921875q-0.796875 0.90625 -0.796875 2.765625zm15.610092 1.296875l1.609375 0.21875q-0.265625 1.65625 -1.359375 2.609375q-1.078125 0.9375 -2.671875 0.9375q-1.984375 0 -3.1875 -1.296875q-1.203125 -1.296875 -1.203125 -3.71875q0 -1.578125 0.515625 -2.75q0.515625 -1.171875 1.578125 -1.75q1.0625 -0.59375 2.3125 -0.59375q1.578125 0 2.578125 0.796875q1.0 0.796875 1.28125 2.265625l-1.59375 0.234375q-0.234375 -0.96875 -0.8125 -1.453125q-0.578125 -0.5 -1.390625 -0.5q-1.234375 0 -2.015625 0.890625q-0.78125 0.890625 -0.78125 2.8125q0 1.953125 0.75 2.84375q0.75 0.875 1.953125 0.875q0.96875 0 1.609375 -0.59375q0.65625 -0.59375 0.828125 -1.828125zm9.328125 2.359375q-0.921875 0.765625 -1.765625 1.09375q-0.828125 0.3125 -1.796875 0.3125q-1.59375 0 -2.453125 -0.78125q-0.859375 -0.78125 -0.859375 -1.984375q0 -0.71875 0.328125 -1.296875q0.328125 -0.59375 0.84375 -0.9375q0.53125 -0.359375 1.1875 -0.546875q0.46875 -0.125 1.453125 -0.25q1.984375 -0.234375 2.921875 -0.5625q0.015625 -0.34375 0.015625 -0.421875q0 -1.0 -0.46875 -1.421875q-0.625 -0.546875 -1.875 -0.546875q-1.15625 0 -1.703125 0.40625q-0.546875 0.40625 -0.8125 1.421875l-1.609375 -0.21875q0.21875 -1.015625 0.71875 -1.640625q0.5 -0.640625 1.453125 -0.984375q0.953125 -0.34375 2.1875 -0.34375q1.25 0 2.015625 0.296875q0.78125 0.28125 1.140625 0.734375q0.375 0.4375 0.515625 1.109375q0.078125 0.421875 0.078125 1.515625l0 2.1875q0 2.28125 0.109375 2.890625q0.109375 0.59375 0.40625 1.15625l-1.703125 0q-0.265625 -0.515625 -0.328125 -1.1875zm-0.140625 -3.671875q-0.890625 0.375 -2.671875 0.625q-1.015625 0.140625 -1.4375 0.328125q-0.421875 0.1875 -0.65625 0.53125q-0.21875 0.34375 -0.21875 0.78125q0 0.65625 0.5 1.09375q0.5 0.4375 1.453125 0.4375q0.9375 0 1.671875 -0.40625q0.75 -0.421875 1.09375 -1.140625q0.265625 -0.5625 0.265625 -1.640625l0 -0.609375zm5.7038574 4.859375l-1.515625 0l0 -13.359375l1.640625 0l0 4.765625q1.046875 -1.296875 2.65625 -1.296875q0.890625 0 1.6875 0.359375q0.796875 0.359375 1.3125 1.015625q0.515625 0.640625 0.796875 1.5625q0.296875 0.921875 0.296875 1.96875q0 2.484375 -1.234375 3.84375q-1.21875 1.359375 -2.953125 1.359375q-1.703125 0 -2.6875 -1.4375l0 1.21875zm-0.015625 -4.90625q0 1.734375 0.484375 2.515625q0.765625 1.265625 2.09375 1.265625q1.078125 0 1.859375 -0.9375q0.78125 -0.9375 0.78125 -2.78125q0 -1.890625 -0.75 -2.796875q-0.75 -0.90625 -1.828125 -0.90625q-1.0625 0 -1.859375 0.9375q-0.78125 0.9375 -0.78125 2.703125zm8.844452 4.90625l0 -13.359375l1.640625 0l0 13.359375l-1.640625 0zm10.816681 -3.109375l1.6875 0.203125q-0.40625 1.484375 -1.484375 2.3125q-1.078125 0.8125 -2.765625 0.8125q-2.125 0 -3.375 -1.296875q-1.234375 -1.3125 -1.234375 -3.671875q0 -2.453125 1.25 -3.796875q1.265625 -1.34375 3.265625 -1.34375q1.9375 0 3.15625 1.328125q1.234375 1.3125 1.234375 3.703125q0 0.15625 0 0.4375l-7.21875 0q0.09375 1.59375 0.90625 2.453125q0.8125 0.84375 2.015625 0.84375q0.90625 0 1.546875 -0.46875q0.640625 -0.484375 1.015625 -1.515625zm-5.390625 -2.65625l5.40625 0q-0.109375 -1.21875 -0.625 -1.828125q-0.78125 -0.953125 -2.03125 -0.953125q-1.125 0 -1.90625 0.765625q-0.765625 0.75 -0.84375 2.015625zm14.324646 5.765625l0 -9.671875l1.46875 0l0 1.359375q0.453125 -0.71875 1.2031097 -1.140625q0.765625 -0.4375 1.71875 -0.4375q1.078125 0 1.765625 0.453125q0.6875 0.4375 0.96875 1.234375q1.15625 -1.6875 2.984375 -1.6875q1.453125 0 2.21875 0.796875q0.78125 0.796875 0.78125 2.453125l0 6.640625l-1.640625 0l0 -6.09375q0 -0.984375 -0.15625 -1.40625q-0.15625 -0.4375 -0.578125 -0.703125q-0.421875 -0.265625 -0.984375 -0.265625q-1.015625 0 -1.6875 0.6875q-0.671875 0.671875 -0.671875 2.15625l0 5.625l-1.640625 0l0 -6.28125q0 -1.09375 -0.40625 -1.640625q-0.40625 -0.546875 -1.3125 -0.546875q-0.6875 0 -1.28125 0.359375q-0.59375 0.359375 -0.85935974 1.0625q-0.25 0.703125 -0.25 2.03125l0 5.015625l-1.640625 0zm22.165817 -3.109375l1.6875 0.203125q-0.40625 1.484375 -1.484375 2.3125q-1.078125 0.8125 -2.765625 0.8125q-2.125 0 -3.375 -1.296875q-1.234375 -1.3125 -1.234375 -3.671875q0 -2.453125 1.25 -3.796875q1.265625 -1.34375 3.265625 -1.34375q1.9375 0 3.15625 1.328125q1.234375 1.3125 1.234375 3.703125q0 0.15625 0 0.4375l-7.21875 0q0.09375 1.59375 0.90625 2.453125q0.8125 0.84375 2.015625 0.84375q0.90625 0 1.546875 -0.46875q0.640625 -0.484375 1.015625 -1.515625zm-5.390625 -2.65625l5.40625 0q-0.109375 -1.21875 -0.625 -1.828125q-0.78125 -0.953125 -2.03125 -0.953125q-1.125 0 -1.90625 0.765625q-0.765625 0.75 -0.84375 2.015625zm9.141296 5.765625l0 -9.671875l1.46875 0l0 1.359375q0.453125 -0.71875 1.203125 -1.140625q0.765625 -0.4375 1.71875 -0.4375q1.078125 0 1.765625 0.453125q0.6875 0.4375 0.96875 1.234375q1.15625 -1.6875 2.984375 -1.6875q1.453125 0 2.21875 0.796875q0.78125 0.796875 0.78125 2.453125l0 6.640625l-1.640625 0l0 -6.09375q0 -0.984375 -0.15625 -1.40625q-0.15625 -0.4375 -0.578125 -0.703125q-0.421875 -0.265625 -0.984375 -0.265625q-1.015625 0 -1.6875 0.6875q-0.671875 0.671875 -0.671875 2.15625l0 5.625l-1.640625 0l0 -6.28125q0 -1.09375 -0.40625 -1.640625q-0.40625 -0.546875 -1.3125 -0.546875q-0.6875 0 -1.28125 0.359375q-0.59375 0.359375 -0.859375 1.0625q-0.25 0.703125 -0.25 2.03125l0 5.015625l-1.640625 0zm14.9314575 -4.84375q0 -2.6875 1.484375 -3.96875q1.25 -1.078125 3.046875 -1.078125q2.0 0 3.265625 1.3125q1.265625 1.296875 1.265625 3.609375q0 1.859375 -0.5625 2.9375q-0.5625 1.0625 -1.640625 1.65625q-1.0625 0.59375 -2.328125 0.59375q-2.03125 0 -3.28125 -1.296875q-1.25 -1.3125 -1.25 -3.765625zm1.6875 0q0 1.859375 0.796875 2.796875q0.8125 0.921875 2.046875 0.921875q1.21875 0 2.03125 -0.921875q0.8125 -0.9375 0.8125 -2.84375q0 -1.796875 -0.8125 -2.71875q-0.8125 -0.921875 -2.03125 -0.921875q-1.234375 0 -2.046875 0.921875q-0.796875 0.90625 -0.796875 2.765625zm9.281921 4.84375l0 -9.671875l1.46875 0l0 1.46875q0.5625 -1.03125 1.03125 -1.359375q0.484375 -0.328125 1.0625 -0.328125q0.828125 0 1.6875 0.53125l-0.5625 1.515625q-0.609375 -0.359375 -1.203125 -0.359375q-0.546875 0 -0.96875 0.328125q-0.421875 0.328125 -0.609375 0.890625q-0.28125 0.875 -0.28125 1.921875l0 5.0625l-1.625 0zm6.1502075 3.71875l-0.1875 -1.53125q0.546875 0.140625 0.9375 0.140625q0.546875 0 0.875 -0.1875q0.328125 -0.171875 0.546875 -0.5q0.15625 -0.25 0.5 -1.21875q0.046875 -0.140625 0.140625 -0.40625l-3.671875 -9.6875l1.765625 0l2.015625 5.59375q0.390625 1.078125 0.703125 2.25q0.28125 -1.125 0.671875 -2.203125l2.078125 -5.640625l1.640625 0l-3.6875 9.828125q-0.59375 1.609375 -0.921875 2.203125q-0.4375 0.8125 -1.0 1.1875q-0.5625 0.375 -1.34375 0.375q-0.484375 0 -1.0625 -0.203125zm13.933289 -14.625l0.421875 -1.296875q1.453125 0.515625 2.109375 0.890625q-0.171875 -1.65625 -0.1875 -2.265625l1.328125 0q-0.03125 0.890625 -0.21875 2.25q0.9375 -0.46875 2.15625 -0.875l0.421875 1.296875q-1.15625 0.390625 -2.265625 0.515625q0.546875 0.484375 1.5625 1.71875l-1.09375 0.78125q-0.53125 -0.734375 -1.25 -1.96875q-0.671875 1.28125 -1.1875 1.96875l-1.078125 -0.78125q1.0625 -1.296875 1.515625 -1.71875q-1.171875 -0.234375 -2.234375 -0.515625zm16.677917 9.4375l0.234375 1.453125q-0.6875 0.140625 -1.234375 0.140625q-0.890625 0 -1.390625 -0.28125q-0.484375 -0.28125 -0.6875 -0.734375q-0.203125 -0.46875 -0.203125 -1.9375l0 -5.578125l-1.203125 0l0 -1.265625l1.203125 0l0 -2.390625l1.625 -0.984375l0 3.375l1.65625 0l0 1.265625l-1.65625 0l0 5.671875q0 0.6875 0.078125 0.890625q0.09375 0.203125 0.28125 0.328125q0.203125 0.109375 0.578125 0.109375q0.265625 0 0.71875 -0.0625zm1.6051636 1.46875l0 -13.359375l1.640625 0l0 4.796875q1.140625 -1.328125 2.890625 -1.328125q1.078125 0 1.859375 0.421875q0.796875 0.421875 1.140625 1.171875q0.34375 0.75 0.34375 2.171875l0 6.125l-1.640625 0l0 -6.125q0 -1.234375 -0.53125 -1.796875q-0.53125 -0.5625 -1.515625 -0.5625q-0.71875 0 -1.359375 0.390625q-0.640625 0.375 -0.921875 1.015625q-0.265625 0.640625 -0.265625 1.78125l0 5.296875l-1.640625 0zm10.360107 0l0 -9.671875l1.46875 0l0 1.46875q0.5625 -1.03125 1.03125 -1.359375q0.484375 -0.328125 1.0625 -0.328125q0.828125 0 1.6875 0.53125l-0.5625 1.515625q-0.609375 -0.359375 -1.203125 -0.359375q-0.546875 0 -0.96875 0.328125q-0.421875 0.328125 -0.609375 0.890625q-0.28125 0.875 -0.28125 1.921875l0 5.0625l-1.625 0zm5.6189575 -4.84375q0 -2.6875 1.484375 -3.96875q1.25 -1.078125 3.046875 -1.078125q2.0 0 3.265625 1.3125q1.265625 1.296875 1.265625 3.609375q0 1.859375 -0.5625 2.9375q-0.5625 1.0625 -1.640625 1.65625q-1.0625 0.59375 -2.328125 0.59375q-2.03125 0 -3.28125 -1.296875q-1.25 -1.3125 -1.25 -3.765625zm1.6875 0q0 1.859375 0.796875 2.796875q0.8125 0.921875 2.046875 0.921875q1.21875 0 2.03125 -0.921875q0.8125 -0.9375 0.8125 -2.84375q0 -1.796875 -0.8125 -2.71875q-0.8125 -0.921875 -2.03125 -0.921875q-1.234375 0 -2.046875 0.921875q-0.796875 0.90625 -0.796875 2.765625zm12.875671 3.375l0.234375 1.453125q-0.6875 0.140625 -1.234375 0.140625q-0.890625 0 -1.390625 -0.28125q-0.484375 -0.28125 -0.6875 -0.734375q-0.203125 -0.46875 -0.203125 -1.9375l0 -5.578125l-1.203125 0l0 -1.265625l1.203125 0l0 -2.390625l1.625 -0.984375l0 3.375l1.65625 0l0 1.265625l-1.65625 0l0 5.671875q0 0.6875 0.078125 0.890625q0.09375 0.203125 0.28125 0.328125q0.203125 0.109375 0.578125 0.109375q0.265625 0 0.71875 -0.0625zm5.1832886 0l0.234375 1.453125q-0.6875 0.140625 -1.234375 0.140625q-0.890625 0 -1.390625 -0.28125q-0.484375 -0.28125 -0.6875 -0.734375q-0.203125 -0.46875 -0.203125 -1.9375l0 -5.578125l-1.203125 0l0 -1.265625l1.203125 0l0 -2.390625l1.625 -0.984375l0 3.375l1.65625 0l0 1.265625l-1.65625 0l0 5.671875q0 0.6875 0.078125 0.890625q0.09375 0.203125 0.28125 0.328125q0.203125 0.109375 0.578125 0.109375q0.265625 0 0.71875 -0.0625zm1.5582886 1.46875l0 -13.359375l1.640625 0l0 13.359375l-1.640625 0zm4.1917114 -11.46875l0 -1.890625l1.640625 0l0 1.890625l-1.640625 0zm0 11.46875l0 -9.671875l1.640625 0l0 9.671875l-1.640625 0zm4.1448364 0l0 -9.671875l1.46875 0l0 1.375q1.0625 -1.59375 3.078125 -1.59375q0.875 0 1.609375 0.3125q0.734375 0.3125 1.09375 0.828125q0.375 0.5 0.515625 1.203125q0.09375 0.453125 0.09375 1.59375l0 5.953125l-1.640625 0l0 -5.890625q0 -1.0 -0.203125 -1.484375q-0.1875 -0.5 -0.671875 -0.796875q-0.484375 -0.296875 -1.140625 -0.296875q-1.046875 0 -1.8125 0.671875q-0.75 0.65625 -0.75 2.515625l0 5.28125l-1.640625 0zm10.063232 0.796875l1.59375 0.234375q0.109375 0.75 0.5625 1.078125q0.609375 0.453125 1.671875 0.453125q1.140625 0 1.75 -0.453125q0.625 -0.453125 0.84375 -1.265625q0.125 -0.5 0.109375 -2.109375q-1.0625 1.265625 -2.671875 1.265625q-2.0 0 -3.09375 -1.4375q-1.09375 -1.4375 -1.09375 -3.453125q0 -1.390625 0.5 -2.5625q0.515625 -1.171875 1.453125 -1.796875q0.953125 -0.640625 2.25 -0.640625q1.703125 0 2.8125 1.375l0 -1.15625l1.515625 0l0 8.359375q0 2.265625 -0.46875 3.203125q-0.453125 0.9375 -1.453125 1.484375q-0.984375 0.546875 -2.453125 0.546875q-1.71875 0 -2.796875 -0.78125q-1.0625 -0.765625 -1.03125 -2.34375zm1.359375 -5.8125q0 1.90625 0.75 2.78125q0.765625 0.875 1.90625 0.875q1.125 0 1.890625 -0.859375q0.765625 -0.875 0.765625 -2.734375q0 -1.78125 -0.796875 -2.671875q-0.78125 -0.90625 -1.890625 -0.90625q-1.09375 0 -1.859375 0.890625q-0.765625 0.875 -0.765625 2.625zm14.902771 5.015625l0 -8.40625l-1.453125 0l0 -1.265625l1.453125 0l0 -1.03125q0 -0.96875 0.171875 -1.453125q0.234375 -0.640625 0.828125 -1.03125q0.59375 -0.390625 1.671875 -0.390625q0.6875 0 1.53125 0.15625l-0.25 1.4375q-0.5 -0.09375 -0.953125 -0.09375q-0.75 0 -1.0625 0.328125q-0.3125 0.3125 -0.3125 1.1875l0 0.890625l1.890625 0l0 1.265625l-1.890625 0l0 8.40625l-1.625 0zm11.105164 -1.1875q-0.921875 0.765625 -1.765625 1.09375q-0.828125 0.3125 -1.796875 0.3125q-1.59375 0 -2.453125 -0.78125q-0.859375 -0.78125 -0.859375 -1.984375q0 -0.71875 0.328125 -1.296875q0.328125 -0.59375 0.84375 -0.9375q0.53125 -0.359375 1.1875 -0.546875q0.46875 -0.125 1.453125 -0.25q1.984375 -0.234375 2.921875 -0.5625q0.015625 -0.34375 0.015625 -0.421875q0 -1.0 -0.46875 -1.421875q-0.625 -0.546875 -1.875 -0.546875q-1.15625 0 -1.703125 0.40625q-0.546875 0.40625 -0.8125 1.421875l-1.609375 -0.21875q0.21875 -1.015625 0.71875 -1.640625q0.5 -0.640625 1.453125 -0.984375q0.953125 -0.34375 2.1875 -0.34375q1.25 0 2.015625 0.296875q0.78125 0.28125 1.140625 0.734375q0.375 0.4375 0.515625 1.109375q0.078125 0.421875 0.078125 1.515625l0 2.1875q0 2.28125 0.109375 2.890625q0.109375 0.59375 0.40625 1.15625l-1.703125 0q-0.265625 -0.515625 -0.328125 -1.1875zm-0.140625 -3.671875q-0.890625 0.375 -2.671875 0.625q-1.015625 0.140625 -1.4375 0.328125q-0.421875 0.1875 -0.65625 0.53125q-0.21875 0.34375 -0.21875 0.78125q0 0.65625 0.5 1.09375q0.5 0.4375 1.453125 0.4375q0.9375 0 1.671875 -0.40625q0.75 -0.421875 1.09375 -1.140625q0.265625 -0.5625 0.265625 -1.640625l0 -0.609375zm10.516357 1.3125l1.609375 0.21875q-0.265625 1.65625 -1.359375 2.609375q-1.078125 0.9375 -2.671875 0.9375q-1.984375 0 -3.1875 -1.296875q-1.203125 -1.296875 -1.203125 -3.71875q0 -1.578125 0.515625 -2.75q0.515625 -1.171875 1.578125 -1.75q1.0625 -0.59375 2.3125 -0.59375q1.578125 0 2.578125 0.796875q1.0 0.796875 1.28125 2.265625l-1.59375 0.234375q-0.234375 -0.96875 -0.8125 -1.453125q-0.578125 -0.5 -1.390625 -0.5q-1.234375 0 -2.015625 0.890625q-0.78125 0.890625 -0.78125 2.8125q0 1.953125 0.75 2.84375q0.75 0.875 1.953125 0.875q0.96875 0 1.609375 -0.59375q0.65625 -0.59375 0.828125 -1.828125zm6.59375 2.078125l0.234375 1.453125q-0.6875 0.140625 -1.234375 0.140625q-0.890625 0 -1.390625 -0.28125q-0.484375 -0.28125 -0.6875 -0.734375q-0.203125 -0.46875 -0.203125 -1.9375l0 -5.578125l-1.203125 0l0 -1.265625l1.203125 0l0 -2.390625l1.625 -0.984375l0 3.375l1.65625 0l0 1.265625l-1.65625 0l0 5.671875q0 0.6875 0.078125 0.890625q0.09375 0.203125 0.28125 0.328125q0.203125 0.109375 0.578125 0.109375q0.265625 0 0.71875 -0.0625zm0.9957886 -3.375q0 -2.6875 1.484375 -3.96875q1.25 -1.078125 3.046875 -1.078125q2.0 0 3.265625 1.3125q1.265625 1.296875 1.265625 3.609375q0 1.859375 -0.5625 2.9375q-0.5625 1.0625 -1.640625 1.65625q-1.0625 0.59375 -2.328125 0.59375q-2.03125 0 -3.28125 -1.296875q-1.25 -1.3125 -1.25 -3.765625zm1.6875 0q0 1.859375 0.796875 2.796875q0.8125 0.921875 2.046875 0.921875q1.21875 0 2.03125 -0.921875q0.8125 -0.9375 0.8125 -2.84375q0 -1.796875 -0.8125 -2.71875q-0.8125 -0.921875 -2.03125 -0.921875q-1.234375 0 -2.046875 0.921875q-0.796875 0.90625 -0.796875 2.765625zm9.281982 4.84375l0 -9.671875l1.46875 0l0 1.46875q0.5625 -1.03125 1.03125 -1.359375q0.484375 -0.328125 1.0625 -0.328125q0.828125 0 1.6875 0.53125l-0.5625 1.515625q-0.609375 -0.359375 -1.203125 -0.359375q-0.546875 0 -0.96875 0.328125q-0.421875 0.328125 -0.609375 0.890625q-0.28125 0.875 -0.28125 1.921875l0 5.0625l-1.625 0z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m75.144356 96.874016l245.51181 0" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m75.144356 96.874016l245.51181 0" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m40.41995 137.18373l314.96063 0l0 42.015747l-314.96063 0z" fill-rule="evenodd"/><path fill="#000000" d="m127.06289 164.10373l0 -9.671875l1.4687576 0l0 1.46875q0.5625 -1.03125 1.03125 -1.359375q0.484375 -0.328125 1.0625 -0.328125q0.828125 0 1.6875 0.53125l-0.5625 1.515625q-0.609375 -0.359375 -1.203125 -0.359375q-0.546875 0 -0.96875 0.328125q-0.421875 0.328125 -0.609375 0.890625q-0.28125 0.875 -0.28125 1.921875l0 5.0625l-1.6250076 0zm12.85331 -3.109375l1.6875 0.203125q-0.40625 1.484375 -1.484375 2.3125q-1.078125 0.8125 -2.765625 0.8125q-2.125 0 -3.375 -1.296875q-1.234375 -1.3125 -1.234375 -3.671875q0 -2.453125 1.25 -3.796875q1.265625 -1.34375 3.265625 -1.34375q1.9375 0 3.15625 1.328125q1.234375 1.3125 1.234375 3.703125q0 0.15625 0 0.4375l-7.21875 0q0.09375 1.59375 0.90625 2.453125q0.8125 0.84375 2.015625 0.84375q0.90625 0 1.546875 -0.46875q0.640625 -0.484375 1.015625 -1.515625zm-5.390625 -2.65625l5.40625 0q-0.109375 -1.21875 -0.625 -1.828125q-0.78125 -0.953125 -2.03125 -0.953125q-1.125 0 -1.90625 0.765625q-0.765625 0.75 -0.84375 2.015625zm15.297592 9.46875l0 -4.734375q-0.375 0.546875 -1.0625 0.90625q-0.6875 0.34375 -1.46875 0.34375q-1.71875 0 -2.96875 -1.375q-1.234375 -1.375 -1.234375 -3.765625q0 -1.46875 0.5 -2.625q0.515625 -1.15625 1.46875 -1.75q0.96875 -0.59375 2.109375 -0.59375q1.796875 0 2.828125 1.515625l0 -1.296875l1.46875 0l0 13.375l-1.640625 0zm-5.046875 -8.5625q0 1.859375 0.78125 2.796875q0.78125 0.9375 1.875 0.9375q1.046875 0 1.796875 -0.890625q0.765625 -0.890625 0.765625 -2.703125q0 -1.9375 -0.796875 -2.90625q-0.796875 -0.96875 -1.875 -0.96875q-1.0625 0 -1.8125 0.90625q-0.734375 0.90625 -0.734375 2.828125zm15.594467 4.859375l0 -1.421875q-1.125 1.640625 -3.0625 1.640625q-0.859375 0 -1.609375 -0.328125q-0.734375 -0.328125 -1.09375 -0.828125q-0.359375 -0.5 -0.5 -1.21875q-0.109375 -0.46875 -0.109375 -1.53125l0 -5.984375l1.640625 0l0 5.359375q0 1.28125 0.109375 1.734375q0.15625 0.640625 0.65625 1.015625q0.5 0.375 1.234375 0.375q0.734375 0 1.375 -0.375q0.65625 -0.390625 0.921875 -1.03125q0.265625 -0.65625 0.265625 -1.890625l0 -5.1875l1.640625 0l0 9.671875l-1.46875 0zm10.672592 -3.109375l1.6875 0.203125q-0.40625 1.484375 -1.484375 2.3125q-1.078125 0.8125 -2.765625 0.8125q-2.125 0 -3.375 -1.296875q-1.234375 -1.3125 -1.234375 -3.671875q0 -2.453125 1.25 -3.796875q1.265625 -1.34375 3.265625 -1.34375q1.9375 0 3.15625 1.328125q1.234375 1.3125 1.234375 3.703125q0 0.15625 0 0.4375l-7.21875 0q0.09375 1.59375 0.90625 2.453125q0.8125 0.84375 2.015625 0.84375q0.90625 0 1.546875 -0.46875q0.640625 -0.484375 1.015625 -1.515625zm-5.390625 -2.65625l5.40625 0q-0.109375 -1.21875 -0.625 -1.828125q-0.78125 -0.953125 -2.03125 -0.953125q-1.125 0 -1.90625 0.765625q-0.765625 0.75 -0.84375 2.015625zm8.485092 2.875l1.625 -0.25q0.125 0.96875 0.75 1.5q0.625 0.515625 1.75 0.515625q1.125 0 1.671875 -0.453125q0.546875 -0.46875 0.546875 -1.09375q0 -0.546875 -0.484375 -0.875q-0.328125 -0.21875 -1.671875 -0.546875q-1.8125 -0.46875 -2.515625 -0.796875q-0.6875 -0.328125 -1.046875 -0.90625q-0.359375 -0.59375 -0.359375 -1.3125q0 -0.640625 0.296875 -1.1875q0.296875 -0.5625 0.8125 -0.921875q0.375 -0.28125 1.03125 -0.46875q0.671875 -0.203125 1.421875 -0.203125q1.140625 0 2.0 0.328125q0.859375 0.328125 1.265625 0.890625q0.421875 0.5625 0.578125 1.5l-1.609375 0.21875q-0.109375 -0.75 -0.640625 -1.171875q-0.515625 -0.421875 -1.46875 -0.421875q-1.140625 0 -1.625 0.375q-0.46875 0.375 -0.46875 0.875q0 0.3125 0.1875 0.578125q0.203125 0.265625 0.640625 0.4375q0.234375 0.09375 1.4375 0.421875q1.75 0.453125 2.4375 0.75q0.6875 0.296875 1.078125 0.859375q0.390625 0.5625 0.390625 1.40625q0 0.828125 -0.484375 1.546875q-0.46875 0.71875 -1.375 1.125q-0.90625 0.390625 -2.046875 0.390625q-1.875 0 -2.875 -0.78125q-0.984375 -0.78125 -1.25 -2.328125zm13.5625 1.421875l0.234375 1.453125q-0.6875 0.140625 -1.234375 0.140625q-0.890625 0 -1.390625 -0.28125q-0.484375 -0.28125 -0.6875 -0.734375q-0.203125 -0.46875 -0.203125 -1.9375l0 -5.578125l-1.203125 0l0 -1.265625l1.203125 0l0 -2.390625l1.625 -0.984375l0 3.375l1.65625 0l0 1.265625l-1.65625 0l0 5.671875q0 0.6875 0.078125 0.890625q0.09375 0.203125 0.28125 0.328125q0.203125 0.109375 0.578125 0.109375q0.265625 0 0.71875 -0.0625zm0.94892883 -1.421875l1.625 -0.25q0.125 0.96875 0.75 1.5q0.625 0.515625 1.75 0.515625q1.125 0 1.671875 -0.453125q0.546875 -0.46875 0.546875 -1.09375q0 -0.546875 -0.484375 -0.875q-0.328125 -0.21875 -1.671875 -0.546875q-1.8125 -0.46875 -2.515625 -0.796875q-0.6875 -0.328125 -1.046875 -0.90625q-0.359375 -0.59375 -0.359375 -1.3125q0 -0.640625 0.296875 -1.1875q0.296875 -0.5625 0.8125 -0.921875q0.375 -0.28125 1.03125 -0.46875q0.671875 -0.203125 1.421875 -0.203125q1.140625 0 2.0 0.328125q0.859375 0.328125 1.265625 0.890625q0.421875 0.5625 0.578125 1.5l-1.609375 0.21875q-0.109375 -0.75 -0.640625 -1.171875q-0.515625 -0.421875 -1.46875 -0.421875q-1.140625 0 -1.625 0.375q-0.46875 0.375 -0.46875 0.875q0 0.3125 0.1875 0.578125q0.203125 0.265625 0.640625 0.4375q0.234375 0.09375 1.4375 0.421875q1.75 0.453125 2.4375 0.75q0.6875 0.296875 1.078125 0.859375q0.390625 0.5625 0.390625 1.40625q0 0.828125 -0.484375 1.546875q-0.46875 0.71875 -1.375 1.125q-0.90625 0.390625 -2.046875 0.390625q-1.875 0 -2.875 -0.78125q-0.984375 -0.78125 -1.25 -2.328125zm10.4375 2.890625l0 -1.875l1.875 0l0 1.875l-1.875 0zm4.730179 0l0 -9.671875l1.46875 0l0 1.359375q0.453125 -0.71875 1.203125 -1.140625q0.765625 -0.4375 1.71875 -0.4375q1.078125 0 1.765625 0.453125q0.6875 0.4375 0.96875 1.234375q1.15625 -1.6875 2.984375 -1.6875q1.453125 0 2.21875 0.796875q0.78125 0.796875 0.78125 2.453125l0 6.640625l-1.640625 0l0 -6.09375q0 -0.984375 -0.15625 -1.40625q-0.15625 -0.4375 -0.578125 -0.703125q-0.421875 -0.265625 -0.984375 -0.265625q-1.015625 0 -1.6875 0.6875q-0.671875 0.671875 -0.671875 2.15625l0 5.625l-1.640625 0l0 -6.28125q0 -1.09375 -0.40625 -1.640625q-0.40625 -0.546875 -1.3125 -0.546875q-0.6875 0 -1.28125 0.359375q-0.59375 0.359375 -0.859375 1.0625q-0.25 0.703125 -0.25 2.03125l0 5.015625l-1.640625 0zm22.165802 -3.109375l1.6875 0.203125q-0.40625 1.484375 -1.484375 2.3125q-1.078125 0.8125 -2.765625 0.8125q-2.125 0 -3.375 -1.296875q-1.234375 -1.3125 -1.234375 -3.671875q0 -2.453125 1.25 -3.796875q1.265625 -1.34375 3.265625 -1.34375q1.9375 0 3.15625 1.328125q1.234375 1.3125 1.234375 3.703125q0 0.15625 0 0.4375l-7.21875 0q0.09375 1.59375 0.90625 2.453125q0.8125 0.84375 2.015625 0.84375q0.90625 0 1.546875 -0.46875q0.640625 -0.484375 1.015625 -1.515625zm-5.390625 -2.65625l5.40625 0q-0.109375 -1.21875 -0.625 -1.828125q-0.78125 -0.953125 -2.03125 -0.953125q-1.125 0 -1.90625 0.765625q-0.765625 0.75 -0.84375 2.015625zm9.141342 5.765625l0 -9.671875l1.46875 0l0 1.359375q0.453125 -0.71875 1.203125 -1.140625q0.765625 -0.4375 1.71875 -0.4375q1.078125 0 1.765625 0.453125q0.6875 0.4375 0.96875 1.234375q1.15625 -1.6875 2.984375 -1.6875q1.453125 0 2.21875 0.796875q0.78125 0.796875 0.78125 2.453125l0 6.640625l-1.640625 0l0 -6.09375q0 -0.984375 -0.15625 -1.40625q-0.15625 -0.4375 -0.578125 -0.703125q-0.421875 -0.265625 -0.984375 -0.265625q-1.015625 0 -1.6875 0.6875q-0.671875 0.671875 -0.671875 2.15625l0 5.625l-1.640625 0l0 -6.28125q0 -1.09375 -0.40625 -1.640625q-0.40625 -0.546875 -1.3125 -0.546875q-0.6875 0 -1.28125 0.359375q-0.59375 0.359375 -0.859375 1.0625q-0.25 0.703125 -0.25 2.03125l0 5.015625l-1.640625 0zm14.931427 -4.84375q0 -2.6875 1.484375 -3.96875q1.25 -1.078125 3.046875 -1.078125q2.0 0 3.265625 1.3125q1.265625 1.296875 1.265625 3.609375q0 1.859375 -0.5625 2.9375q-0.5625 1.0625 -1.640625 1.65625q-1.0625 0.59375 -2.328125 0.59375q-2.03125 0 -3.28125 -1.296875q-1.25 -1.3125 -1.25 -3.765625zm1.6875 0q0 1.859375 0.796875 2.796875q0.8125 0.921875 2.046875 0.921875q1.21875 0 2.03125 -0.921875q0.8125 -0.9375 0.8125 -2.84375q0 -1.796875 -0.8125 -2.71875q-0.8125 -0.921875 -2.03125 -0.921875q-1.234375 0 -2.046875 0.921875q-0.796875 0.90625 -0.796875 2.765625zm9.281967 4.84375l0 -9.671875l1.46875 0l0 1.46875q0.5625 -1.03125 1.03125 -1.359375q0.484375 -0.328125 1.0625 -0.328125q0.828125 0 1.6875 0.53125l-0.5625 1.515625q-0.609375 -0.359375 -1.203125 -0.359375q-0.546875 0 -0.96875 0.328125q-0.421875 0.328125 -0.609375 0.890625q-0.28125 0.875 -0.28125 1.921875l0 5.0625l-1.625 0zm6.150177 3.71875l-0.1875 -1.53125q0.546875 0.140625 0.9375 0.140625q0.546875 0 0.875 -0.1875q0.328125 -0.171875 0.546875 -0.5q0.15625 -0.25 0.5 -1.21875q0.046875 -0.140625 0.140625 -0.40625l-3.671875 -9.6875l1.765625 0l2.015625 5.59375q0.390625 1.078125 0.703125 2.25q0.28125 -1.125 0.671875 -2.203125l2.078125 -5.640625l1.640625 0l-3.6875 9.828125q-0.59375 1.609375 -0.921875 2.203125q-0.4375 0.8125 -1.0 1.1875q-0.5625 0.375 -1.34375 0.375q-0.484375 0 -1.0625 -0.203125z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m486.67453 63.115482l0 0c2.3263855 0 4.557495 0.9241524 6.2025146 2.5691566c1.644989 1.6450043 2.5691528 3.8761063 2.5691528 6.2024994l0 64.15748c0 4.844452 3.927185 8.771652 8.771637 8.771652l0 0c-4.844452 0 -8.771637 3.9272003 -8.771637 8.771652l0 64.157486c0 4.844452 -3.9272156 8.771652 -8.7716675 8.771652z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m486.67453 63.115482l0 0c2.3263855 0 4.557495 0.9241524 6.2025146 2.5691566c1.644989 1.6450043 2.5691528 3.8761063 2.5691528 6.2024994l0 64.15748c0 4.844452 3.927185 8.771652 8.771637 8.771652l0 0c-4.844452 0 -8.771637 3.9272003 -8.771637 8.771652l0 64.157486c0 4.844452 -3.9272156 8.771652 -8.7716675 8.771652" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m486.67453 63.115482l0 0c2.3263855 0 4.557495 0.9241524 6.2025146 2.5691566c1.644989 1.6450043 2.5691528 3.8761063 2.5691528 6.2024994l0 64.15748c0 4.844452 3.927185 8.771652 8.771637 8.771652l0 0c-4.844452 0 -8.771637 3.9272003 -8.771637 8.771652l0 64.157486c0 4.844452 -3.9272156 8.771652 -8.7716675 8.771652" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m335.5223 96.874016l0 0c2.3263855 0 4.557495 0.92414856 6.202484 2.5691528c1.6450195 1.6450043 2.5691833 3.8761063 2.5691833 6.2024994l0 47.27558c0 4.844452 3.927185 8.7716675 8.771637 8.7716675l0 0c-4.844452 0 -8.771637 3.9272003 -8.771637 8.771652l0 47.27559c0 4.844452 -3.9272156 8.771652 -8.7716675 8.771652z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m335.5223 96.874016l0 0c2.3263855 0 4.557495 0.92414856 6.202484 2.5691528c1.6450195 1.6450043 2.5691833 3.8761063 2.5691833 6.2024994l0 47.27558c0 4.844452 3.927185 8.7716675 8.771637 8.7716675l0 0c-4.844452 0 -8.771637 3.9272003 -8.771637 8.771652l0 47.27559c0 4.844452 -3.9272156 8.771652 -8.7716675 8.771652" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m335.5223 96.874016l0 0c2.3263855 0 4.557495 0.92414856 6.202484 2.5691528c1.6450195 1.6450043 2.5691833 3.8761063 2.5691833 6.2024994l0 47.27558c0 4.844452 3.927185 8.7716675 8.771637 8.7716675l0 0c-4.844452 0 -8.771637 3.9272003 -8.771637 8.771652l0 47.27559c0 4.844452 -3.9272156 8.771652 -8.7716675 8.771652" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m256.7953 140.68504l314.96063 0l0 42.015747l-314.96063 0z" fill-rule="evenodd"/><path fill="#000000" d="m364.89343 167.60504l0 -9.671875l1.46875 0l0 1.359375q0.453125 -0.71875 1.203125 -1.140625q0.765625 -0.4375 1.71875 -0.4375q1.078125 0 1.765625 0.453125q0.6875 0.4375 0.96875 1.234375q1.15625 -1.6875 2.984375 -1.6875q1.453125 0 2.21875 0.796875q0.78125 0.796875 0.78125 2.453125l0 6.640625l-1.640625 0l0 -6.09375q0 -0.984375 -0.15625 -1.40625q-0.15625 -0.4375 -0.578125 -0.703125q-0.421875 -0.265625 -0.984375 -0.265625q-1.015625 0 -1.6875 0.6875q-0.671875 0.671875 -0.671875 2.15625l0 5.625l-1.640625 0l0 -6.28125q0 -1.09375 -0.40625 -1.640625q-0.40625 -0.546875 -1.3125 -0.546875q-0.6875 0 -1.28125 0.359375q-0.59375 0.359375 -0.859375 1.0625q-0.25 0.703125 -0.25 2.03125l0 5.015625l-1.640625 0zm22.165802 -3.109375l1.6875 0.203125q-0.40625 1.484375 -1.484375 2.3125q-1.078125 0.8125 -2.765625 0.8125q-2.125 0 -3.375 -1.296875q-1.234375 -1.3125 -1.234375 -3.671875q0 -2.453125 1.25 -3.796875q1.265625 -1.34375 3.265625 -1.34375q1.9375 0 3.15625 1.328125q1.234375 1.3125 1.234375 3.703125q0 0.15625 0 0.4375l-7.21875 0q0.09375 1.59375 0.90625 2.453125q0.8125 0.84375 2.015625 0.84375q0.90625 0 1.546875 -0.46875q0.640625 -0.484375 1.015625 -1.515625zm-5.390625 -2.65625l5.40625 0q-0.109375 -1.21875 -0.625 -1.828125q-0.78125 -0.953125 -2.03125 -0.953125q-1.125 0 -1.90625 0.765625q-0.765625 0.75 -0.84375 2.015625zm9.141357 5.765625l0 -9.671875l1.46875 0l0 1.359375q0.453125 -0.71875 1.203125 -1.140625q0.765625 -0.4375 1.71875 -0.4375q1.078125 0 1.765625 0.453125q0.6875 0.4375 0.96875 1.234375q1.15625 -1.6875 2.984375 -1.6875q1.453125 0 2.21875 0.796875q0.78125 0.796875 0.78125 2.453125l0 6.640625l-1.640625 0l0 -6.09375q0 -0.984375 -0.15625 -1.40625q-0.15625 -0.4375 -0.578125 -0.703125q-0.421875 -0.265625 -0.984375 -0.265625q-1.015625 0 -1.6875 0.6875q-0.671875 0.671875 -0.671875 2.15625l0 5.625l-1.640625 0l0 -6.28125q0 -1.09375 -0.40625 -1.640625q-0.40625 -0.546875 -1.3125 -0.546875q-0.6875 0 -1.28125 0.359375q-0.59375 0.359375 -0.859375 1.0625q-0.25 0.703125 -0.25 2.03125l0 5.015625l-1.640625 0zm14.931427 -4.84375q0 -2.6875 1.484375 -3.96875q1.25 -1.078125 3.046875 -1.078125q2.0 0 3.265625 1.3125q1.265625 1.296875 1.265625 3.609375q0 1.859375 -0.5625 2.9375q-0.5625 1.0625 -1.640625 1.65625q-1.0625 0.59375 -2.328125 0.59375q-2.03125 0 -3.28125 -1.296875q-1.25 -1.3125 -1.25 -3.765625zm1.6875 0q0 1.859375 0.796875 2.796875q0.8125 0.921875 2.046875 0.921875q1.21875 0 2.03125 -0.921875q0.8125 -0.9375 0.8125 -2.84375q0 -1.796875 -0.8125 -2.71875q-0.8125 -0.921875 -2.03125 -0.921875q-1.234375 0 -2.046875 0.921875q-0.796875 0.90625 -0.796875 2.765625zm9.281952 4.84375l0 -9.671875l1.46875 0l0 1.46875q0.5625 -1.03125 1.03125 -1.359375q0.484375 -0.328125 1.0625 -0.328125q0.828125 0 1.6875 0.53125l-0.5625 1.515625q-0.609375 -0.359375 -1.203125 -0.359375q-0.546875 0 -0.96875 0.328125q-0.421875 0.328125 -0.609375 0.890625q-0.28125 0.875 -0.28125 1.921875l0 5.0625l-1.625 0zm6.150177 3.71875l-0.1875 -1.53125q0.546875 0.140625 0.9375 0.140625q0.546875 0 0.875 -0.1875q0.328125 -0.171875 0.546875 -0.5q0.15625 -0.25 0.5 -1.21875q0.046875 -0.140625 0.140625 -0.40625l-3.671875 -9.6875l1.765625 0l2.015625 5.59375q0.390625 1.078125 0.703125 2.25q0.28125 -1.125 0.671875 -2.203125l2.078125 -5.640625l1.640625 0l-3.6875 9.828125q-0.59375 1.609375 -0.921875 2.203125q-0.4375 0.8125 -1.0 1.1875q-0.5625 0.375 -1.34375 0.375q-0.484375 0 -1.0625 -0.203125zm8.4739685 -3.71875l0 -1.875l1.875 0l0 1.875l-1.875 0zm4.7301636 0l0 -9.671875l1.46875 0l0 1.359375q0.453125 -0.71875 1.203125 -1.140625q0.765625 -0.4375 1.71875 -0.4375q1.078125 0 1.765625 0.453125q0.6875 0.4375 0.96875 1.234375q1.15625 -1.6875 2.984375 -1.6875q1.453125 0 2.21875 0.796875q0.78125 0.796875 0.78125 2.453125l0 6.640625l-1.640625 0l0 -6.09375q0 -0.984375 -0.15625 -1.40625q-0.15625 -0.4375 -0.578125 -0.703125q-0.421875 -0.265625 -0.984375 -0.265625q-1.015625 0 -1.6875 0.6875q-0.671875 0.671875 -0.671875 2.15625l0 5.625l-1.640625 0l0 -6.28125q0 -1.09375 -0.40625 -1.640625q-0.40625 -0.546875 -1.3125 -0.546875q-0.6875 0 -1.28125 0.359375q-0.59375 0.359375 -0.859375 1.0625q-0.25 0.703125 -0.25 2.03125l0 5.015625l-1.640625 0zm15.540802 -11.46875l0 -1.890625l1.640625 0l0 1.890625l-1.640625 0zm0 11.46875l0 -9.671875l1.640625 0l0 9.671875l-1.640625 0zm4.1448364 0l0 -9.671875l1.46875 0l0 1.375q1.0625 -1.59375 3.078125 -1.59375q0.875 0 1.609375 0.3125q0.734375 0.3125 1.09375 0.828125q0.375 0.5 0.515625 1.203125q0.09375 0.453125 0.09375 1.59375l0 5.953125l-1.640625 0l0 -5.890625q0 -1.0 -0.203125 -1.484375q-0.1875 -0.5 -0.671875 -0.796875q-0.484375 -0.296875 -1.140625 -0.296875q-1.046875 0 -1.8125 0.671875q-0.75 0.65625 -0.75 2.515625l0 5.28125l-1.640625 0z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m408.75592 123.808395l314.96063 0l0 42.015747l-314.96063 0z" fill-rule="evenodd"/><path fill="#000000" d="m514.2488 150.7284l0 -9.671875l1.46875 0l0 1.359375q0.453125 -0.71875 1.203125 -1.140625q0.765625 -0.4375 1.71875 -0.4375q1.078125 0 1.765625 0.453125q0.6875 0.4375 0.96875 1.234375q1.15625 -1.6875 2.984375 -1.6875q1.453125 0 2.21875 0.796875q0.78125 0.796875 0.78125 2.453125l0 6.640625l-1.640625 0l0 -6.09375q0 -0.984375 -0.15625 -1.40625q-0.15625 -0.4375 -0.578125 -0.703125q-0.421875 -0.265625 -0.984375 -0.265625q-1.015625 0 -1.6875 0.6875q-0.671875 0.671875 -0.671875 2.15625l0 5.625l-1.640625 0l0 -6.28125q0 -1.09375 -0.40625 -1.640625q-0.40625 -0.546875 -1.3125 -0.546875q-0.6875 0 -1.28125 0.359375q-0.59375 0.359375 -0.859375 1.0625q-0.25 0.703125 -0.25 2.03125l0 5.015625l-1.640625 0zm22.165771 -3.109375l1.6875 0.203125q-0.40625 1.484375 -1.484375 2.3125q-1.078125 0.8125 -2.765625 0.8125q-2.125 0 -3.375 -1.296875q-1.234375 -1.3125 -1.234375 -3.671875q0 -2.453125 1.25 -3.796875q1.265625 -1.34375 3.265625 -1.34375q1.9375 0 3.15625 1.328125q1.234375 1.3125 1.234375 3.703125q0 0.15625 0 0.4375l-7.21875 0q0.09375 1.59375 0.90625 2.453125q0.8125 0.84375 2.015625 0.84375q0.90625 0 1.546875 -0.46875q0.640625 -0.484375 1.015625 -1.515625zm-5.390625 -2.65625l5.40625 0q-0.109375 -1.21875 -0.625 -1.828125q-0.78125 -0.953125 -2.03125 -0.953125q-1.125 0 -1.90625 0.765625q-0.765625 0.75 -0.84375 2.015625zm9.141357 5.765625l0 -9.671875l1.46875 0l0 1.359375q0.453125 -0.71875 1.203125 -1.140625q0.765625 -0.4375 1.71875 -0.4375q1.078125 0 1.765625 0.453125q0.6875 0.4375 0.96875 1.234375q1.15625 -1.6875 2.984375 -1.6875q1.453125 0 2.21875 0.796875q0.78125 0.796875 0.78125 2.453125l0 6.640625l-1.640625 0l0 -6.09375q0 -0.984375 -0.15625 -1.40625q-0.15625 -0.4375 -0.578125 -0.703125q-0.421875 -0.265625 -0.984375 -0.265625q-1.015625 0 -1.6875 0.6875q-0.671875 0.671875 -0.671875 2.15625l0 5.625l-1.640625 0l0 -6.28125q0 -1.09375 -0.40625 -1.640625q-0.40625 -0.546875 -1.3125 -0.546875q-0.6875 0 -1.28125 0.359375q-0.59375 0.359375 -0.859375 1.0625q-0.25 0.703125 -0.25 2.03125l0 5.015625l-1.640625 0zm14.9313965 -4.84375q0 -2.6875 1.484375 -3.96875q1.25 -1.078125 3.046875 -1.078125q2.0 0 3.265625 1.3125q1.265625 1.296875 1.265625 3.609375q0 1.859375 -0.5625 2.9375q-0.5625 1.0625 -1.640625 1.65625q-1.0625 0.59375 -2.328125 0.59375q-2.03125 0 -3.28125 -1.296875q-1.25 -1.3125 -1.25 -3.765625zm1.6875 0q0 1.859375 0.796875 2.796875q0.8125 0.921875 2.046875 0.921875q1.21875 0 2.03125 -0.921875q0.8125 -0.9375 0.8125 -2.84375q0 -1.796875 -0.8125 -2.71875q-0.8125 -0.921875 -2.03125 -0.921875q-1.234375 0 -2.046875 0.921875q-0.796875 0.90625 -0.796875 2.765625zm9.281982 4.84375l0 -9.671875l1.46875 0l0 1.46875q0.5625 -1.03125 1.03125 -1.359375q0.484375 -0.328125 1.0625 -0.328125q0.828125 0 1.6875 0.53125l-0.5625 1.515625q-0.609375 -0.359375 -1.203125 -0.359375q-0.546875 0 -0.96875 0.328125q-0.421875 0.328125 -0.609375 0.890625q-0.28125 0.875 -0.28125 1.921875l0 5.0625l-1.625 0zm6.1502075 3.71875l-0.1875 -1.53125q0.546875 0.140625 0.9375 0.140625q0.546875 0 0.875 -0.1875q0.328125 -0.171875 0.546875 -0.5q0.15625 -0.25 0.5 -1.21875q0.046875 -0.140625 0.140625 -0.40625l-3.671875 -9.6875l1.765625 0l2.015625 5.59375q0.390625 1.078125 0.703125 2.25q0.28125 -1.125 0.671875 -2.203125l2.078125 -5.640625l1.640625 0l-3.6875 9.828125q-0.59375 1.609375 -0.921875 2.203125q-0.4375 0.8125 -1.0 1.1875q-0.5625 0.375 -1.34375 0.375q-0.484375 0 -1.0625 -0.203125zm8.473938 -3.71875l0 -1.875l1.875 0l0 1.875l-1.875 0zm4.7301636 0l0 -13.359375l1.640625 0l0 4.796875q1.140625 -1.328125 2.890625 -1.328125q1.078125 0 1.859375 0.421875q0.796875 0.421875 1.140625 1.171875q0.34375 0.75 0.34375 2.171875l0 6.125l-1.640625 0l0 -6.125q0 -1.234375 -0.53125 -1.796875q-0.53125 -0.5625 -1.515625 -0.5625q-0.71875 0 -1.359375 0.390625q-0.640625 0.375 -0.921875 1.015625q-0.265625 0.640625 -0.265625 1.78125l0 5.296875l-1.640625 0zm10.375732 -11.46875l0 -1.890625l1.640625 0l0 1.890625l-1.640625 0zm0 11.46875l0 -9.671875l1.640625 0l0 9.671875l-1.640625 0zm3.8323364 0.796875l1.59375 0.234375q0.109375 0.75 0.5625 1.078125q0.609375 0.453125 1.671875 0.453125q1.140625 0 1.75 -0.453125q0.625 -0.453125 0.84375 -1.265625q0.125 -0.5 0.109375 -2.109375q-1.0625 1.265625 -2.671875 1.265625q-2.0 0 -3.09375 -1.4375q-1.09375 -1.4375 -1.09375 -3.453125q0 -1.390625 0.5 -2.5625q0.515625 -1.171875 1.453125 -1.796875q0.953125 -0.640625 2.25 -0.640625q1.703125 0 2.8125 1.375l0 -1.15625l1.515625 0l0 8.359375q0 2.265625 -0.46875 3.203125q-0.453125 0.9375 -1.453125 1.484375q-0.984375 0.546875 -2.453125 0.546875q-1.71875 0 -2.796875 -0.78125q-1.0625 -0.765625 -1.03125 -2.34375zm1.359375 -5.8125q0 1.90625 0.75 2.78125q0.765625 0.875 1.90625 0.875q1.125 0 1.890625 -0.859375q0.765625 -0.875 0.765625 -2.734375q0 -1.78125 -0.796875 -2.671875q-0.78125 -0.90625 -1.890625 -0.90625q-1.09375 0 -1.859375 0.890625q-0.765625 0.875 -0.765625 2.625zm9.328796 5.015625l0 -13.359375l1.640625 0l0 4.796875q1.140625 -1.328125 2.890625 -1.328125q1.078125 0 1.859375 0.421875q0.796875 0.421875 1.140625 1.171875q0.34375 0.75 0.34375 2.171875l0 6.125l-1.640625 0l0 -6.125q0 -1.234375 -0.53125 -1.796875q-0.53125 -0.5625 -1.515625 -0.5625q-0.71875 0 -1.359375 0.390625q-0.640625 0.375 -0.921875 1.015625q-0.265625 0.640625 -0.265625 1.78125l0 5.296875l-1.640625 0z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m637.8268 2.3385792l0 0c2.326355 0 4.557495 0.9241538 6.2025146 2.569158c1.6449585 1.6450038 2.5691528 3.8761086 2.5691528 6.202495l0 94.551186c0 4.844452 3.927185 8.771652 8.771606 8.771652l0 0c-4.8444214 0 -8.771606 3.9272003 -8.771606 8.771652l0 94.551186c0 4.844452 -3.927246 8.771652 -8.7716675 8.771652z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m637.8268 2.3385792l0 0c2.326355 0 4.557495 0.9241538 6.2025146 2.569158c1.6449585 1.6450038 2.5691528 3.8761086 2.5691528 6.202495l0 94.551186c0 4.844452 3.927185 8.771652 8.771606 8.771652l0 0c-4.8444214 0 -8.771606 3.9272003 -8.771606 8.771652l0 94.551186c0 4.844452 -3.927246 8.771652 -8.7716675 8.771652" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m637.8268 2.3385792l0 0c2.326355 0 4.557495 0.9241538 6.2025146 2.569158c1.6449585 1.6450038 2.5691528 3.8761086 2.5691528 6.202495l0 94.551186c0 4.844452 3.927185 8.771652 8.771606 8.771652l0 0c-4.8444214 0 -8.771606 3.9272003 -8.771606 8.771652l0 94.551186c0 4.844452 -3.927246 8.771652 -8.7716675 8.771652" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m615.37006 93.42519l417.29132 0l0 42.015755l-417.29132 0z" fill-rule="evenodd"/><path fill="#000000" d="m668.64746 120.34519l0 -13.359375l1.640625 0l0 13.359375l-1.640625 0zm4.1917114 -11.46875l0 -1.890625l1.640625 0l0 1.890625l-1.640625 0zm0 11.46875l0 -9.671875l1.640625 0l0 9.671875l-1.640625 0zm4.1447754 0l0 -9.671875l1.46875 0l0 1.359375q0.453125 -0.71875 1.203125 -1.140625q0.765625 -0.4375 1.71875 -0.4375q1.078125 0 1.765625 0.453125q0.6875 0.4375 0.96875 1.234375q1.15625 -1.6875 2.984375 -1.6875q1.453125 0 2.21875 0.796875q0.78125 0.796875 0.78125 2.453125l0 6.640625l-1.640625 0l0 -6.09375q0 -0.984375 -0.15625 -1.40625q-0.15625 -0.4375 -0.578125 -0.703125q-0.421875 -0.265625 -0.984375 -0.265625q-1.015625 0 -1.6875 0.6875q-0.671875 0.671875 -0.671875 2.15625l0 5.625l-1.640625 0l0 -6.28125q0 -1.09375 -0.40625 -1.640625q-0.40625 -0.546875 -1.3125 -0.546875q-0.6875 0 -1.28125 0.359375q-0.59375 0.359375 -0.859375 1.0625q-0.25 0.703125 -0.25 2.03125l0 5.015625l-1.640625 0zm15.5408325 -11.46875l0 -1.890625l1.640625 0l0 1.890625l-1.640625 0zm0 11.46875l0 -9.671875l1.640625 0l0 9.671875l-1.640625 0zm7.7229614 -1.46875l0.234375 1.453125q-0.6875 0.140625 -1.234375 0.140625q-0.890625 0 -1.390625 -0.28125q-0.484375 -0.28125 -0.6875 -0.734375q-0.203125 -0.46875 -0.203125 -1.9375l0 -5.578125l-1.203125 0l0 -1.265625l1.203125 0l0 -2.390625l1.625 -0.984375l0 3.375l1.65625 0l0 1.265625l-1.65625 0l0 5.671875q0 0.6875 0.078125 0.890625q0.09375 0.203125 0.28125 0.328125q0.203125 0.109375 0.578125 0.109375q0.265625 0 0.71875 -0.0625zm0.9489136 -1.421875l1.625 -0.25q0.125 0.96875 0.75 1.5q0.625 0.515625 1.75 0.515625q1.125 0 1.671875 -0.453125q0.546875 -0.46875 0.546875 -1.09375q0 -0.546875 -0.484375 -0.875q-0.328125 -0.21875 -1.671875 -0.546875q-1.8125 -0.46875 -2.515625 -0.796875q-0.6875 -0.328125 -1.046875 -0.90625q-0.359375 -0.59375 -0.359375 -1.3125q0 -0.640625 0.296875 -1.1875q0.296875 -0.5625 0.8125 -0.921875q0.375 -0.28125 1.03125 -0.46875q0.671875 -0.203125 1.421875 -0.203125q1.140625 0 2.0 0.328125q0.859375 0.328125 1.265625 0.890625q0.421875 0.5625 0.578125 1.5l-1.609375 0.21875q-0.109375 -0.75 -0.640625 -1.171875q-0.515625 -0.421875 -1.46875 -0.421875q-1.140625 0 -1.625 0.375q-0.46875 0.375 -0.46875 0.875q0 0.3125 0.1875 0.578125q0.203125 0.265625 0.640625 0.4375q0.234375 0.09375 1.4375 0.421875q1.75 0.453125 2.4375 0.75q0.6875 0.296875 1.078125 0.859375q0.390625 0.5625 0.390625 1.40625q0 0.828125 -0.484375 1.546875q-0.46875 0.71875 -1.375 1.125q-0.90625 0.390625 -2.046875 0.390625q-1.875 0 -2.875 -0.78125q-0.984375 -0.78125 -1.25 -2.328125zm10.4375 2.890625l0 -1.875l1.875 0l0 1.875l-1.875 0zm4.7301636 0l0 -9.671875l1.46875 0l0 1.359375q0.453125 -0.71875 1.203125 -1.140625q0.765625 -0.4375 1.71875 -0.4375q1.078125 0 1.765625 0.453125q0.6875 0.4375 0.96875 1.234375q1.15625 -1.6875 2.984375 -1.6875q1.453125 0 2.21875 0.796875q0.78125 0.796875 0.78125 2.453125l0 6.640625l-1.640625 0l0 -6.09375q0 -0.984375 -0.15625 -1.40625q-0.15625 -0.4375 -0.578125 -0.703125q-0.421875 -0.265625 -0.984375 -0.265625q-1.015625 0 -1.6875 0.6875q-0.671875 0.671875 -0.671875 2.15625l0 5.625l-1.640625 0l0 -6.28125q0 -1.09375 -0.40625 -1.640625q-0.40625 -0.546875 -1.3125 -0.546875q-0.6875 0 -1.28125 0.359375q-0.59375 0.359375 -0.859375 1.0625q-0.25 0.703125 -0.25 2.03125l0 5.015625l-1.640625 0zm22.165833 -3.109375l1.6875 0.203125q-0.40625 1.484375 -1.484375 2.3125q-1.078125 0.8125 -2.765625 0.8125q-2.125 0 -3.375 -1.296875q-1.234375 -1.3125 -1.234375 -3.671875q0 -2.453125 1.25 -3.796875q1.265625 -1.34375 3.265625 -1.34375q1.9375 0 3.15625 1.328125q1.234375 1.3125 1.234375 3.703125q0 0.15625 0 0.4375l-7.21875 0q0.09375 1.59375 0.90625 2.453125q0.8125 0.84375 2.015625 0.84375q0.90625 0 1.546875 -0.46875q0.640625 -0.484375 1.015625 -1.515625zm-5.390625 -2.65625l5.40625 0q-0.109375 -1.21875 -0.625 -1.828125q-0.78125 -0.953125 -2.03125 -0.953125q-1.125 0 -1.90625 0.765625q-0.765625 0.75 -0.84375 2.015625zm9.141296 5.765625l0 -9.671875l1.46875 0l0 1.359375q0.453125 -0.71875 1.203125 -1.140625q0.765625 -0.4375 1.71875 -0.4375q1.078125 0 1.765625 0.453125q0.6875 0.4375 0.96875 1.234375q1.15625 -1.6875 2.984375 -1.6875q1.453125 0 2.21875 0.796875q0.78125 0.796875 0.78125 2.453125l0 6.640625l-1.640625 0l0 -6.09375q0 -0.984375 -0.15625 -1.40625q-0.15625 -0.4375 -0.578125 -0.703125q-0.421875 -0.265625 -0.984375 -0.265625q-1.015625 0 -1.6875 0.6875q-0.671875 0.671875 -0.671875 2.15625l0 5.625l-1.640625 0l0 -6.28125q0 -1.09375 -0.40625 -1.640625q-0.40625 -0.546875 -1.3125 -0.546875q-0.6875 0 -1.28125 0.359375q-0.59375 0.359375 -0.859375 1.0625q-0.25 0.703125 -0.25 2.03125l0 5.015625l-1.640625 0zm14.9314575 -4.84375q0 -2.6875 1.484375 -3.96875q1.25 -1.078125 3.046875 -1.078125q2.0 0 3.265625 1.3125q1.265625 1.296875 1.265625 3.609375q0 1.859375 -0.5625 2.9375q-0.5625 1.0625 -1.640625 1.65625q-1.0625 0.59375 -2.328125 0.59375q-2.03125 0 -3.28125 -1.296875q-1.25 -1.3125 -1.25 -3.765625zm1.6875 0q0 1.859375 0.796875 2.796875q0.8125 0.921875 2.046875 0.921875q1.21875 0 2.03125 -0.921875q0.8125 -0.9375 0.8125 -2.84375q0 -1.796875 -0.8125 -2.71875q-0.8125 -0.921875 -2.03125 -0.921875q-1.234375 0 -2.046875 0.921875q-0.796875 0.90625 -0.796875 2.765625zm9.281982 4.84375l0 -9.671875l1.46875 0l0 1.46875q0.5625 -1.03125 1.03125 -1.359375q0.484375 -0.328125 1.0625 -0.328125q0.828125 0 1.6875 0.53125l-0.5625 1.515625q-0.609375 -0.359375 -1.203125 -0.359375q-0.546875 0 -0.96875 0.328125q-0.421875 0.328125 -0.609375 0.890625q-0.28125 0.875 -0.28125 1.921875l0 5.0625l-1.625 0zm6.1501465 3.71875l-0.1875 -1.53125q0.546875 0.140625 0.9375 0.140625q0.546875 0 0.875 -0.1875q0.328125 -0.171875 0.546875 -0.5q0.15625 -0.25 0.5 -1.21875q0.046875 -0.140625 0.140625 -0.40625l-3.671875 -9.6875l1.765625 0l2.015625 5.59375q0.390625 1.078125 0.703125 2.25q0.28125 -1.125 0.671875 -2.203125l2.078125 -5.640625l1.640625 0l-3.6875 9.828125q-0.59375 1.609375 -0.921875 2.203125q-0.4375 0.8125 -1.0 1.1875q-0.5625 0.375 -1.34375 0.375q-0.484375 0 -1.0625 -0.203125zm8.171875 -3.484375l3.875 -13.8125l1.3125 0l-3.859375 13.8125l-1.328125 0zm6.4176636 -0.234375l0 -9.671875l1.46875 0l0 1.375q1.0625 -1.59375 3.078125 -1.59375q0.875 0 1.609375 0.3125q0.734375 0.3125 1.09375 0.828125q0.375 0.5 0.515625 1.203125q0.09375 0.453125 0.09375 1.59375l0 5.953125l-1.640625 0l0 -5.890625q0 -1.0 -0.203125 -1.484375q-0.1875 -0.5 -0.671875 -0.796875q-0.484375 -0.296875 -1.140625 -0.296875q-1.046875 0 -1.8125 0.671875q-0.75 0.65625 -0.75 2.515625l0 5.28125l-1.640625 0zm9.766357 -4.84375q0 -2.6875 1.484375 -3.96875q1.25 -1.078125 3.046875 -1.078125q2.0 0 3.265625 1.3125q1.265625 1.296875 1.265625 3.609375q0 1.859375 -0.5625 2.9375q-0.5625 1.0625 -1.640625 1.65625q-1.0625 0.59375 -2.328125 0.59375q-2.03125 0 -3.28125 -1.296875q-1.25 -1.3125 -1.25 -3.765625zm1.6875 0q0 1.859375 0.796875 2.796875q0.8125 0.921875 2.046875 0.921875q1.21875 0 2.03125 -0.921875q0.8125 -0.9375 0.8125 -2.84375q0 -1.796875 -0.8125 -2.71875q-0.8125 -0.921875 -2.03125 -0.921875q-1.234375 0 -2.046875 0.921875q-0.796875 0.90625 -0.796875 2.765625zm15.563232 4.84375l0 -1.21875q-0.90625 1.4375 -2.703125 1.4375q-1.15625 0 -2.125 -0.640625q-0.96875 -0.640625 -1.5 -1.78125q-0.53125 -1.140625 -0.53125 -2.625q0 -1.453125 0.484375 -2.625q0.484375 -1.1875 1.4375 -1.8125q0.96875 -0.625 2.171875 -0.625q0.875 0 1.546875 0.375q0.6875 0.359375 1.109375 0.953125l0 -4.796875l1.640625 0l0 13.359375l-1.53125 0zm-5.171875 -4.828125q0 1.859375 0.78125 2.78125q0.78125 0.921875 1.84375 0.921875q1.078125 0 1.828125 -0.875q0.75 -0.890625 0.75 -2.6875q0 -1.984375 -0.765625 -2.90625q-0.765625 -0.9375 -1.890625 -0.9375q-1.078125 0 -1.8125 0.890625q-0.734375 0.890625 -0.734375 2.8125zm15.906982 1.71875l1.6875 0.203125q-0.40625 1.484375 -1.484375 2.3125q-1.078125 0.8125 -2.765625 0.8125q-2.125 0 -3.375 -1.296875q-1.234375 -1.3125 -1.234375 -3.671875q0 -2.453125 1.25 -3.796875q1.265625 -1.34375 3.265625 -1.34375q1.9375 0 3.15625 1.328125q1.234375 1.3125 1.234375 3.703125q0 0.15625 0 0.4375l-7.21875 0q0.09375 1.59375 0.90625 2.453125q0.8125 0.84375 2.015625 0.84375q0.90625 0 1.546875 -0.46875q0.640625 -0.484375 1.015625 -1.515625zm-5.390625 -2.65625l5.40625 0q-0.109375 -1.21875 -0.625 -1.828125q-0.78125 -0.953125 -2.03125 -0.953125q-1.125 0 -1.90625 0.765625q-0.765625 0.75 -0.84375 2.015625zm20.637146 4.578125q-0.921875 0.765625 -1.765625 1.09375q-0.828125 0.3125 -1.796875 0.3125q-1.59375 0 -2.453125 -0.78125q-0.859375 -0.78125 -0.859375 -1.984375q0 -0.71875 0.328125 -1.296875q0.328125 -0.59375 0.84375 -0.9375q0.53125 -0.359375 1.1875 -0.546875q0.46875 -0.125 1.453125 -0.25q1.984375 -0.234375 2.921875 -0.5625q0.015625 -0.34375 0.015625 -0.421875q0 -1.0 -0.46875 -1.421875q-0.625 -0.546875 -1.875 -0.546875q-1.15625 0 -1.703125 0.40625q-0.546875 0.40625 -0.8125 1.421875l-1.609375 -0.21875q0.21875 -1.015625 0.71875 -1.640625q0.5 -0.640625 1.453125 -0.984375q0.953125 -0.34375 2.1875 -0.34375q1.25 0 2.015625 0.296875q0.78125 0.28125 1.140625 0.734375q0.375 0.4375 0.515625 1.109375q0.078125 0.421875 0.078125 1.515625l0 2.1875q0 2.28125 0.109375 2.890625q0.109375 0.59375 0.40625 1.15625l-1.703125 0q-0.265625 -0.515625 -0.328125 -1.1875zm-0.140625 -3.671875q-0.890625 0.375 -2.671875 0.625q-1.015625 0.140625 -1.4375 0.328125q-0.421875 0.1875 -0.65625 0.53125q-0.21875 0.34375 -0.21875 0.78125q0 0.65625 0.5 1.09375q0.5 0.4375 1.453125 0.4375q0.9375 0 1.671875 -0.40625q0.75 -0.421875 1.09375 -1.140625q0.265625 -0.5625 0.265625 -1.640625l0 -0.609375zm4.1569214 4.859375l0 -13.359375l1.640625 0l0 13.359375l-1.640625 0zm4.1448364 0l0 -13.359375l1.640625 0l0 13.359375l-1.640625 0zm3.5823364 -4.84375q0 -2.6875 1.484375 -3.96875q1.25 -1.078125 3.046875 -1.078125q2.0 0 3.265625 1.3125q1.265625 1.296875 1.265625 3.609375q0 1.859375 -0.5625 2.9375q-0.5625 1.0625 -1.640625 1.65625q-1.0625 0.59375 -2.328125 0.59375q-2.03125 0 -3.28125 -1.296875q-1.25 -1.3125 -1.25 -3.765625zm1.6875 0q0 1.859375 0.796875 2.796875q0.8125 0.921875 2.046875 0.921875q1.21875 0 2.03125 -0.921875q0.8125 -0.9375 0.8125 -2.84375q0 -1.796875 -0.8125 -2.71875q-0.8125 -0.921875 -2.03125 -0.921875q-1.234375 0 -2.046875 0.921875q-0.796875 0.90625 -0.796875 2.765625zm15.610107 1.296875l1.609314 0.21875q-0.265625 1.65625 -1.359314 2.609375q-1.078125 0.9375 -2.671875 0.9375q-1.984375 0 -3.1875 -1.296875q-1.203125 -1.296875 -1.203125 -3.71875q0 -1.578125 0.515625 -2.75q0.515625 -1.171875 1.578125 -1.75q1.0625 -0.59375 2.3125 -0.59375q1.578125 0 2.578125 0.796875q0.99993896 0.796875 1.281189 2.265625l-1.593689 0.234375q-0.234375 -0.96875 -0.8125 -1.453125q-0.578125 -0.5 -1.390625 -0.5q-1.234375 0 -2.015625 0.890625q-0.78125 0.890625 -0.78125 2.8125q0 1.953125 0.75 2.84375q0.75 0.875 1.953125 0.875q0.96875 0 1.609375 -0.59375q0.65625 -0.59375 0.828125 -1.828125zm9.328064 2.359375q-0.921875 0.765625 -1.765625 1.09375q-0.828125 0.3125 -1.796875 0.3125q-1.59375 0 -2.453125 -0.78125q-0.859375 -0.78125 -0.859375 -1.984375q0 -0.71875 0.328125 -1.296875q0.328125 -0.59375 0.84375 -0.9375q0.53125 -0.359375 1.1875 -0.546875q0.46875 -0.125 1.453125 -0.25q1.984375 -0.234375 2.921875 -0.5625q0.015625 -0.34375 0.015625 -0.421875q0 -1.0 -0.46875 -1.421875q-0.625 -0.546875 -1.875 -0.546875q-1.15625 0 -1.703125 0.40625q-0.546875 0.40625 -0.8125 1.421875l-1.609375 -0.21875q0.21875 -1.015625 0.71875 -1.640625q0.5 -0.640625 1.453125 -0.984375q0.953125 -0.34375 2.1875 -0.34375q1.25 0 2.015625 0.296875q0.78125 0.28125 1.140625 0.734375q0.375 0.4375 0.515625 1.109375q0.078125 0.421875 0.078125 1.515625l0 2.1875q0 2.28125 0.109375 2.890625q0.109375 0.59375 0.40625 1.15625l-1.703125 0q-0.265625 -0.515625 -0.328125 -1.1875zm-0.140625 -3.671875q-0.890625 0.375 -2.671875 0.625q-1.015625 0.140625 -1.4375 0.328125q-0.421875 0.1875 -0.65625 0.53125q-0.21875 0.34375 -0.21875 0.78125q0 0.65625 0.5 1.09375q0.5 0.4375 1.453125 0.4375q0.9375 0 1.671875 -0.40625q0.75 -0.421875 1.09375 -1.140625q0.265625 -0.5625 0.265625 -1.640625l0 -0.609375zm5.7038574 4.859375l-1.515625 0l0 -13.359375l1.640625 0l0 4.765625q1.046875 -1.296875 2.65625 -1.296875q0.890625 0 1.6875 0.359375q0.796875 0.359375 1.3125 1.015625q0.515625 0.640625 0.796875 1.5625q0.296875 0.921875 0.296875 1.96875q0 2.484375 -1.234375 3.84375q-1.21875 1.359375 -2.953125 1.359375q-1.703125 0 -2.6875 -1.4375l0 1.21875zm-0.015625 -4.90625q0 1.734375 0.484375 2.515625q0.765625 1.265625 2.09375 1.265625q1.078125 0 1.859375 -0.9375q0.78125 -0.9375 0.78125 -2.78125q0 -1.890625 -0.75 -2.796875q-0.75 -0.90625 -1.828125 -0.90625q-1.0625 0 -1.859375 0.9375q-0.78125 0.9375 -0.78125 2.703125zm8.844482 4.90625l0 -13.359375l1.640625 0l0 13.359375l-1.640625 0zm10.816711 -3.109375l1.6875 0.203125q-0.40625 1.484375 -1.484375 2.3125q-1.078125 0.8125 -2.765625 0.8125q-2.125 0 -3.375 -1.296875q-1.234375 -1.3125 -1.234375 -3.671875q0 -2.453125 1.25 -3.796875q1.265625 -1.34375 3.265625 -1.34375q1.9375 0 3.15625 1.328125q1.234375 1.3125 1.234375 3.703125q0 0.15625 0 0.4375l-7.21875 0q0.09375 1.59375 0.90625 2.453125q0.8125 0.84375 2.015625 0.84375q0.90625 0 1.546875 -0.46875q0.640625 -0.484375 1.015625 -1.515625zm-5.390625 -2.65625l5.40625 0q-0.109375 -1.21875 -0.625 -1.828125q-0.78125 -0.953125 -2.03125 -0.953125q-1.125 0 -1.90625 0.765625q-0.765625 0.75 -0.84375 2.015625zm14.324646 5.765625l0 -9.671875l1.46875 0l0 1.359375q0.453125 -0.71875 1.203125 -1.140625q0.765625 -0.4375 1.71875 -0.4375q1.078125 0 1.765625 0.453125q0.6875 0.4375 0.96875 1.234375q1.15625 -1.6875 2.984375 -1.6875q1.453125 0 2.21875 0.796875q0.78125 0.796875 0.78125 2.453125l0 6.640625l-1.640625 0l0 -6.09375q0 -0.984375 -0.15625 -1.40625q-0.15625 -0.4375 -0.578125 -0.703125q-0.421875 -0.265625 -0.984375 -0.265625q-1.015625 0 -1.6875 0.6875q-0.671875 0.671875 -0.671875 2.15625l0 5.625l-1.640625 0l0 -6.28125q0 -1.09375 -0.40625 -1.640625q-0.40625 -0.546875 -1.3125 -0.546875q-0.6875 0 -1.28125 0.359375q-0.59375 0.359375 -0.859375 1.0625q-0.25 0.703125 -0.25 2.03125l0 5.015625l-1.640625 0zm22.165771 -3.109375l1.6875 0.203125q-0.40625 1.484375 -1.484375 2.3125q-1.078125 0.8125 -2.765625 0.8125q-2.125 0 -3.375 -1.296875q-1.234375 -1.3125 -1.234375 -3.671875q0 -2.453125 1.25 -3.796875q1.265625 -1.34375 3.265625 -1.34375q1.9375 0 3.15625 1.328125q1.234375 1.3125 1.234375 3.703125q0 0.15625 0 0.4375l-7.21875 0q0.09375 1.59375 0.90625 2.453125q0.8125 0.84375 2.015625 0.84375q0.90625 0 1.546875 -0.46875q0.640625 -0.484375 1.015625 -1.515625zm-5.390625 -2.65625l5.40625 0q-0.109375 -1.21875 -0.625 -1.828125q-0.78125 -0.953125 -2.03125 -0.953125q-1.125 0 -1.90625 0.765625q-0.765625 0.75 -0.84375 2.015625zm9.141357 5.765625l0 -9.671875l1.46875 0l0 1.359375q0.453125 -0.71875 1.203125 -1.140625q0.765625 -0.4375 1.71875 -0.4375q1.078125 0 1.765625 0.453125q0.6875 0.4375 0.96875 1.234375q1.15625 -1.6875 2.984375 -1.6875q1.453125 0 2.21875 0.796875q0.78125 0.796875 0.78125 2.453125l0 6.640625l-1.640625 0l0 -6.09375q0 -0.984375 -0.15625 -1.40625q-0.15625 -0.4375 -0.578125 -0.703125q-0.421875 -0.265625 -0.984375 -0.265625q-1.015625 0 -1.6875 0.6875q-0.671875 0.671875 -0.671875 2.15625l0 5.625l-1.640625 0l0 -6.28125q0 -1.09375 -0.40625 -1.640625q-0.40625 -0.546875 -1.3125 -0.546875q-0.6875 0 -1.28125 0.359375q-0.59375 0.359375 -0.859375 1.0625q-0.25 0.703125 -0.25 2.03125l0 5.015625l-1.640625 0zm14.9313965 -4.84375q0 -2.6875 1.484375 -3.96875q1.25 -1.078125 3.046875 -1.078125q2.0 0 3.265625 1.3125q1.265625 1.296875 1.265625 3.609375q0 1.859375 -0.5625 2.9375q-0.5625 1.0625 -1.640625 1.65625q-1.0625 0.59375 -2.328125 0.59375q-2.03125 0 -3.28125 -1.296875q-1.25 -1.3125 -1.25 -3.765625zm1.6875 0q0 1.859375 0.796875 2.796875q0.8125 0.921875 2.046875 0.921875q1.21875 0 2.03125 -0.921875q0.8125 -0.9375 0.8125 -2.84375q0 -1.796875 -0.8125 -2.71875q-0.8125 -0.921875 -2.03125 -0.921875q-1.234375 0 -2.046875 0.921875q-0.796875 0.90625 -0.796875 2.765625zm9.281982 4.84375l0 -9.671875l1.46875 0l0 1.46875q0.5625 -1.03125 1.03125 -1.359375q0.484375 -0.328125 1.0625 -0.328125q0.828125 0 1.6875 0.53125l-0.5625 1.515625q-0.609375 -0.359375 -1.203125 -0.359375q-0.546875 0 -0.96875 0.328125q-0.421875 0.328125 -0.609375 0.890625q-0.28125 0.875 -0.28125 1.921875l0 5.0625l-1.625 0zm6.1501465 3.71875l-0.1875 -1.53125q0.546875 0.140625 0.9375 0.140625q0.546875 0 0.875 -0.1875q0.328125 -0.171875 0.546875 -0.5q0.15625 -0.25 0.5 -1.21875q0.046875 -0.140625 0.140625 -0.40625l-3.671875 -9.6875l1.765625 0l2.015625 5.59375q0.390625 1.078125 0.703125 2.25q0.28125 -1.125 0.671875 -2.203125l2.078125 -5.640625l1.640625 0l-3.6875 9.828125q-0.59375 1.609375 -0.921875 2.203125q-0.4375 0.8125 -1.0 1.1875q-0.5625 0.375 -1.34375 0.375q-0.484375 0 -1.0625 -0.203125z" fill-rule="nonzero"/></g></svg>
\ No newline at end of file
diff --git a/content/en/blog/_posts/2021-11-26-memory-qos-cgroups-v2/node-memory-min.svg b/content/en/blog/_posts/2021-11-26-memory-qos-cgroups-v2/node-memory-min.svg
new file mode 100644
index 0000000000..7c03aafc28
--- /dev/null
+++ b/content/en/blog/_posts/2021-11-26-memory-qos-cgroups-v2/node-memory-min.svg
@@ -0,0 +1,98 @@
+<?xml version='1.0' encoding='UTF-8'?>
+<!-- Generated by CodeCogs with dvisvgm 2.9.1 -->
+<svg version='1.1' xmlns='http://www.w3.org/2000/svg' xmlns:xlink='http://www.w3.org/1999/xlink' width='446.671233pt' height='30.306891pt' viewBox='-.239051 -.248234 446.671233 30.306891'>
+<defs>
+<path id='g0-88' d='M15.135243 16.737235L16.581818 12.911582H16.282939C15.816687 14.154919 14.54944 14.96787 13.174595 15.326526C12.923537 15.386301 11.75193 15.697136 9.456538 15.697136H2.247572L8.332752 8.5599C8.416438 8.464259 8.440349 8.428394 8.440349 8.368618C8.440349 8.344707 8.440349 8.308842 8.356663 8.18929L2.785554 .573848H9.336986C10.938979 .573848 12.026899 .74122 12.134496 .765131C12.780075 .860772 13.820174 1.06401 14.764633 1.661768C15.063512 1.853051 15.876463 2.391034 16.282939 3.359402H16.581818L15.135243 0H1.004234C.729265 0 .71731 .011955 .681445 .083686C.669489 .119552 .669489 .3467 .669489 .478207L6.993773 9.133748L.800996 16.390535C.681445 16.533998 .681445 16.593773 .681445 16.605729C.681445 16.737235 .789041 16.737235 1.004234 16.737235H15.135243Z'/>
+<path id='g1-105' d='M2.375093-4.97335C2.375093-5.148692 2.247572-5.276214 2.064259-5.276214C1.857036-5.276214 1.625903-5.084932 1.625903-4.845828C1.625903-4.670486 1.753425-4.542964 1.936737-4.542964C2.14396-4.542964 2.375093-4.734247 2.375093-4.97335ZM1.211457-2.048319L.781071-.948443C.74122-.828892 .70137-.73325 .70137-.597758C.70137-.207223 1.004234 .079701 1.42665 .079701C2.199751 .079701 2.526526-1.036115 2.526526-1.139726C2.526526-1.219427 2.462765-1.243337 2.406974-1.243337C2.311333-1.243337 2.295392-1.187547 2.271482-1.107846C2.088169-.470237 1.761395-.143462 1.44259-.143462C1.346949-.143462 1.251308-.183313 1.251308-.398506C1.251308-.589788 1.307098-.73325 1.41071-.980324C1.490411-1.195517 1.570112-1.41071 1.657783-1.625903L1.904857-2.271482C1.976588-2.454795 2.072229-2.701868 2.072229-2.83736C2.072229-3.235866 1.753425-3.514819 1.346949-3.514819C.573848-3.514819 .239103-2.399004 .239103-2.295392C.239103-2.223661 .294894-2.191781 .358655-2.191781C.462267-2.191781 .470237-2.239601 .494147-2.319303C.71731-3.076463 1.083935-3.291656 1.323039-3.291656C1.43462-3.291656 1.514321-3.251806 1.514321-3.028643C1.514321-2.948941 1.506351-2.83736 1.42665-2.598257L1.211457-2.048319Z'/>
+<path id='g1-106' d='M3.291656-4.97335C3.291656-5.124782 3.172105-5.276214 2.980822-5.276214C2.741719-5.276214 2.534496-5.053051 2.534496-4.845828C2.534496-4.694396 2.654047-4.542964 2.84533-4.542964C3.084433-4.542964 3.291656-4.766127 3.291656-4.97335ZM1.625903 .398506C1.506351 .884682 1.115816 1.40274 .629639 1.40274C.502117 1.40274 .382565 1.370859 .366625 1.362889C.613699 1.243337 .645579 1.028144 .645579 .956413C.645579 .765131 .502117 .661519 .334745 .661519C.103611 .661519-.111582 .860772-.111582 1.123786C-.111582 1.42665 .183313 1.625903 .637609 1.625903C1.123786 1.625903 2.000498 1.323039 2.239601 .366625L2.956912-2.486675C2.980822-2.582316 2.996762-2.646077 2.996762-2.765629C2.996762-3.203985 2.646077-3.514819 2.183811-3.514819C1.338979-3.514819 .844832-2.399004 .844832-2.295392C.844832-2.223661 .900623-2.191781 .964384-2.191781C1.052055-2.191781 1.060025-2.215691 1.115816-2.335243C1.354919-2.885181 1.761395-3.291656 2.1599-3.291656C2.327273-3.291656 2.422914-3.180075 2.422914-2.917061C2.422914-2.805479 2.399004-2.693898 2.375093-2.582316L1.625903 .398506Z'/>
+<path id='g3-61' d='M8.069738-3.873474C8.237111-3.873474 8.452304-3.873474 8.452304-4.088667C8.452304-4.315816 8.249066-4.315816 8.069738-4.315816H1.028144C.860772-4.315816 .645579-4.315816 .645579-4.100623C.645579-3.873474 .848817-3.873474 1.028144-3.873474H8.069738ZM8.069738-1.649813C8.237111-1.649813 8.452304-1.649813 8.452304-1.865006C8.452304-2.092154 8.249066-2.092154 8.069738-2.092154H1.028144C.860772-2.092154 .645579-2.092154 .645579-1.876961C.645579-1.649813 .848817-1.649813 1.028144-1.649813H8.069738Z'/>
+<path id='g3-91' d='M2.988792 2.988792V2.546451H1.829141V-8.524035H2.988792V-8.966376H1.3868V2.988792H2.988792Z'/>
+<path id='g3-93' d='M1.853051-8.966376H.251059V-8.524035H1.41071V2.546451H.251059V2.988792H1.853051V-8.966376Z'/>
+<path id='g2-58' d='M2.199751-.573848C2.199751-.920548 1.912827-1.159651 1.625903-1.159651C1.279203-1.159651 1.0401-.872727 1.0401-.585803C1.0401-.239103 1.327024 0 1.613948 0C1.960648 0 2.199751-.286924 2.199751-.573848Z'/>
+<path id='g2-97' d='M3.598506-1.422665C3.53873-1.219427 3.53873-1.195517 3.371357-.968369C3.108344-.633624 2.582316-.119552 2.020423-.119552C1.530262-.119552 1.255293-.561893 1.255293-1.267248C1.255293-1.924782 1.625903-3.263761 1.853051-3.765878C2.259527-4.60274 2.82142-5.033126 3.287671-5.033126C4.076712-5.033126 4.23213-4.052802 4.23213-3.957161C4.23213-3.945205 4.196264-3.789788 4.184309-3.765878L3.598506-1.422665ZM4.363636-4.483188C4.23213-4.794022 3.90934-5.272229 3.287671-5.272229C1.936737-5.272229 .478207-3.526775 .478207-1.75741C.478207-.573848 1.171606 .119552 1.984558 .119552C2.642092 .119552 3.203985-.394521 3.53873-.789041C3.658281-.083686 4.220174 .119552 4.578829 .119552S5.224408-.095641 5.439601-.526027C5.630884-.932503 5.798257-1.661768 5.798257-1.709589C5.798257-1.769365 5.750436-1.817186 5.678705-1.817186C5.571108-1.817186 5.559153-1.75741 5.511333-1.578082C5.332005-.872727 5.104857-.119552 4.614695-.119552C4.267995-.119552 4.244085-.430386 4.244085-.669489C4.244085-.944458 4.27995-1.075965 4.387547-1.542217C4.471233-1.841096 4.531009-2.10411 4.62665-2.450809C5.068991-4.244085 5.176588-4.674471 5.176588-4.746202C5.176588-4.913574 5.045081-5.045081 4.865753-5.045081C4.483188-5.045081 4.387547-4.62665 4.363636-4.483188Z'/>
+<path id='g2-99' d='M4.674471-4.495143C4.447323-4.495143 4.339726-4.495143 4.172354-4.351681C4.100623-4.291905 3.969116-4.112578 3.969116-3.921295C3.969116-3.682192 4.148443-3.53873 4.375592-3.53873C4.662516-3.53873 4.985305-3.777833 4.985305-4.25604C4.985305-4.829888 4.435367-5.272229 3.610461-5.272229C2.044334-5.272229 .478207-3.56264 .478207-1.865006C.478207-.824907 1.123786 .119552 2.343213 .119552C3.969116 .119552 4.99726-1.147696 4.99726-1.303113C4.99726-1.374844 4.925529-1.43462 4.877709-1.43462C4.841843-1.43462 4.829888-1.422665 4.722291-1.315068C3.957161-.298879 2.82142-.119552 2.367123-.119552C1.542217-.119552 1.279203-.836862 1.279203-1.43462C1.279203-1.853051 1.482441-3.012702 1.912827-3.825654C2.223661-4.387547 2.86924-5.033126 3.622416-5.033126C3.777833-5.033126 4.435367-5.009215 4.674471-4.495143Z'/>
+<path id='g2-100' d='M6.01345-7.998007C6.025405-8.045828 6.049315-8.117559 6.049315-8.177335C6.049315-8.296887 5.929763-8.296887 5.905853-8.296887C5.893898-8.296887 5.308095-8.249066 5.248319-8.237111C5.045081-8.225156 4.865753-8.201245 4.65056-8.18929C4.351681-8.16538 4.267995-8.153425 4.267995-7.938232C4.267995-7.81868 4.363636-7.81868 4.531009-7.81868C5.116812-7.81868 5.128767-7.711083 5.128767-7.591532C5.128767-7.519801 5.104857-7.424159 5.092902-7.388294L4.363636-4.483188C4.23213-4.794022 3.90934-5.272229 3.287671-5.272229C1.936737-5.272229 .478207-3.526775 .478207-1.75741C.478207-.573848 1.171606 .119552 1.984558 .119552C2.642092 .119552 3.203985-.394521 3.53873-.789041C3.658281-.083686 4.220174 .119552 4.578829 .119552S5.224408-.095641 5.439601-.526027C5.630884-.932503 5.798257-1.661768 5.798257-1.709589C5.798257-1.769365 5.750436-1.817186 5.678705-1.817186C5.571108-1.817186 5.559153-1.75741 5.511333-1.578082C5.332005-.872727 5.104857-.119552 4.614695-.119552C4.267995-.119552 4.244085-.430386 4.244085-.669489C4.244085-.71731 4.244085-.968369 4.327771-1.303113L6.01345-7.998007ZM3.598506-1.422665C3.53873-1.219427 3.53873-1.195517 3.371357-.968369C3.108344-.633624 2.582316-.119552 2.020423-.119552C1.530262-.119552 1.255293-.561893 1.255293-1.267248C1.255293-1.924782 1.625903-3.263761 1.853051-3.765878C2.259527-4.60274 2.82142-5.033126 3.287671-5.033126C4.076712-5.033126 4.23213-4.052802 4.23213-3.957161C4.23213-3.945205 4.196264-3.789788 4.184309-3.765878L3.598506-1.422665Z'/>
+<path id='g2-101' d='M2.139975-2.773599C2.462765-2.773599 3.275716-2.797509 3.849564-3.012702C4.758157-3.359402 4.841843-4.052802 4.841843-4.267995C4.841843-4.794022 4.387547-5.272229 3.598506-5.272229C2.343213-5.272229 .537983-4.136488 .537983-2.008468C.537983-.753176 1.255293 .119552 2.343213 .119552C3.969116 .119552 4.99726-1.147696 4.99726-1.303113C4.99726-1.374844 4.925529-1.43462 4.877709-1.43462C4.841843-1.43462 4.829888-1.422665 4.722291-1.315068C3.957161-.298879 2.82142-.119552 2.367123-.119552C1.685679-.119552 1.327024-.657534 1.327024-1.542217C1.327024-1.709589 1.327024-2.008468 1.506351-2.773599H2.139975ZM1.566127-3.012702C2.080199-4.853798 3.21594-5.033126 3.598506-5.033126C4.124533-5.033126 4.483188-4.722291 4.483188-4.267995C4.483188-3.012702 2.570361-3.012702 2.068244-3.012702H1.566127Z'/>
+<path id='g2-105' d='M3.383313-1.709589C3.383313-1.769365 3.335492-1.817186 3.263761-1.817186C3.156164-1.817186 3.144209-1.78132 3.084433-1.578082C2.773599-.490162 2.283437-.119552 1.888917-.119552C1.745455-.119552 1.578082-.155417 1.578082-.514072C1.578082-.836862 1.721544-1.195517 1.853051-1.554172L2.689913-3.777833C2.725778-3.873474 2.809465-4.088667 2.809465-4.315816C2.809465-4.817933 2.450809-5.272229 1.865006-5.272229C.765131-5.272229 .32279-3.53873 .32279-3.443088C.32279-3.395268 .37061-3.335492 .454296-3.335492C.561893-3.335492 .573848-3.383313 .621669-3.550685C.908593-4.554919 1.362889-5.033126 1.829141-5.033126C1.936737-5.033126 2.139975-5.021171 2.139975-4.638605C2.139975-4.327771 1.984558-3.93325 1.888917-3.670237L1.052055-1.446575C.980324-1.255293 .908593-1.06401 .908593-.848817C.908593-.310834 1.279203 .119552 1.853051 .119552C2.952927 .119552 3.383313-1.625903 3.383313-1.709589ZM3.287671-7.460025C3.287671-7.639352 3.144209-7.854545 2.881196-7.854545C2.606227-7.854545 2.295392-7.591532 2.295392-7.280697C2.295392-6.981818 2.546451-6.886177 2.689913-6.886177C3.012702-6.886177 3.287671-7.197011 3.287671-7.460025Z'/>
+<path id='g2-106' d='M4.184309-3.789788C4.23213-3.981071 4.23213-4.148443 4.23213-4.196264C4.23213-4.889664 3.718057-5.272229 3.180075-5.272229C1.972603-5.272229 1.327024-3.526775 1.327024-3.443088C1.327024-3.383313 1.374844-3.335492 1.446575-3.335492C1.542217-3.335492 1.554172-3.383313 1.613948-3.502864C2.092154-4.662516 2.689913-5.033126 3.144209-5.033126C3.395268-5.033126 3.526775-4.901619 3.526775-4.483188C3.526775-4.196264 3.490909-4.076712 3.443088-3.861519L2.307347 .645579C2.080199 1.530262 1.518306 2.199751 .860772 2.199751C.812951 2.199751 .561893 2.199751 .334745 2.080199C.621669 2.020423 .848817 1.793275 .848817 1.506351C.848817 1.315068 .705355 1.123786 .442341 1.123786C.131507 1.123786-.155417 1.3868-.155417 1.745455C-.155417 2.235616 .37061 2.438854 .860772 2.438854C1.685679 2.438854 2.773599 1.829141 3.072478 .633624L4.184309-3.789788ZM4.674471-7.460025C4.674471-7.758904 4.423412-7.854545 4.27995-7.854545C3.957161-7.854545 3.682192-7.543711 3.682192-7.280697C3.682192-7.10137 3.825654-6.886177 4.088667-6.886177C4.363636-6.886177 4.674471-7.149191 4.674471-7.460025Z'/>
+<path id='g2-109' d='M2.462765-3.502864C2.486675-3.574595 2.785554-4.172354 3.227895-4.554919C3.53873-4.841843 3.945205-5.033126 4.411457-5.033126C4.889664-5.033126 5.057036-4.674471 5.057036-4.196264C5.057036-4.124533 5.057036-3.88543 4.913574-3.323537L4.614695-2.092154C4.519054-1.733499 4.291905-.848817 4.267995-.71731C4.220174-.537983 4.148443-.227148 4.148443-.179328C4.148443-.011955 4.27995 .119552 4.459278 .119552C4.817933 .119552 4.877709-.155417 4.985305-.585803L5.702615-3.443088C5.726526-3.53873 6.348194-5.033126 7.663263-5.033126C8.141469-5.033126 8.308842-4.674471 8.308842-4.196264C8.308842-3.526775 7.84259-2.223661 7.579577-1.506351C7.47198-1.219427 7.412204-1.06401 7.412204-.848817C7.412204-.310834 7.782814 .119552 8.356663 .119552C9.468493 .119552 9.886924-1.637858 9.886924-1.709589C9.886924-1.769365 9.839103-1.817186 9.767372-1.817186C9.659776-1.817186 9.647821-1.78132 9.588045-1.578082C9.313076-.621669 8.870735-.119552 8.392528-.119552C8.272976-.119552 8.081694-.131507 8.081694-.514072C8.081694-.824907 8.225156-1.207472 8.272976-1.338979C8.488169-1.912827 9.026152-3.323537 9.026152-4.016936C9.026152-4.734247 8.607721-5.272229 7.699128-5.272229C6.898132-5.272229 6.252553-4.817933 5.774346-4.112578C5.738481-4.758157 5.34396-5.272229 4.447323-5.272229C3.383313-5.272229 2.82142-4.519054 2.606227-4.220174C2.570361-4.901619 2.080199-5.272229 1.554172-5.272229C1.207472-5.272229 .932503-5.104857 .705355-4.65056C.490162-4.220174 .32279-3.490909 .32279-3.443088S.37061-3.335492 .454296-3.335492C.549938-3.335492 .561893-3.347447 .633624-3.622416C.812951-4.327771 1.0401-5.033126 1.518306-5.033126C1.793275-5.033126 1.888917-4.841843 1.888917-4.483188C1.888917-4.220174 1.769365-3.753923 1.685679-3.383313L1.350934-2.092154C1.303113-1.865006 1.171606-1.327024 1.111831-1.111831C1.028144-.800996 .896638-.239103 .896638-.179328C.896638-.011955 1.028144 .119552 1.207472 .119552C1.350934 .119552 1.518306 .047821 1.613948-.131507C1.637858-.191283 1.745455-.609714 1.80523-.848817L2.068244-1.924782L2.462765-3.502864Z'/>
+<path id='g2-110' d='M2.462765-3.502864C2.486675-3.574595 2.785554-4.172354 3.227895-4.554919C3.53873-4.841843 3.945205-5.033126 4.411457-5.033126C4.889664-5.033126 5.057036-4.674471 5.057036-4.196264C5.057036-3.514819 4.566874-2.15193 4.327771-1.506351C4.220174-1.219427 4.160399-1.06401 4.160399-.848817C4.160399-.310834 4.531009 .119552 5.104857 .119552C6.216687 .119552 6.635118-1.637858 6.635118-1.709589C6.635118-1.769365 6.587298-1.817186 6.515567-1.817186C6.40797-1.817186 6.396015-1.78132 6.336239-1.578082C6.06127-.597758 5.606974-.119552 5.140722-.119552C5.021171-.119552 4.829888-.131507 4.829888-.514072C4.829888-.812951 4.961395-1.171606 5.033126-1.338979C5.272229-1.996513 5.774346-3.335492 5.774346-4.016936C5.774346-4.734247 5.355915-5.272229 4.447323-5.272229C3.383313-5.272229 2.82142-4.519054 2.606227-4.220174C2.570361-4.901619 2.080199-5.272229 1.554172-5.272229C1.171606-5.272229 .908593-5.045081 .705355-4.638605C.490162-4.208219 .32279-3.490909 .32279-3.443088S.37061-3.335492 .454296-3.335492C.549938-3.335492 .561893-3.347447 .633624-3.622416C.824907-4.351681 1.0401-5.033126 1.518306-5.033126C1.793275-5.033126 1.888917-4.841843 1.888917-4.483188C1.888917-4.220174 1.769365-3.753923 1.685679-3.383313L1.350934-2.092154C1.303113-1.865006 1.171606-1.327024 1.111831-1.111831C1.028144-.800996 .896638-.239103 .896638-.179328C.896638-.011955 1.028144 .119552 1.207472 .119552C1.350934 .119552 1.518306 .047821 1.613948-.131507C1.637858-.191283 1.745455-.609714 1.80523-.848817L2.068244-1.924782L2.462765-3.502864Z'/>
+<path id='g2-111' d='M5.451557-3.287671C5.451557-4.423412 4.710336-5.272229 3.622416-5.272229C2.044334-5.272229 .490162-3.550685 .490162-1.865006C.490162-.729265 1.231382 .119552 2.319303 .119552C3.90934 .119552 5.451557-1.601993 5.451557-3.287671ZM2.331258-.119552C1.733499-.119552 1.291158-.597758 1.291158-1.43462C1.291158-1.984558 1.578082-3.203985 1.912827-3.801743C2.450809-4.722291 3.120299-5.033126 3.610461-5.033126C4.196264-5.033126 4.65056-4.554919 4.65056-3.718057C4.65056-3.239851 4.399502-1.960648 3.945205-1.231382C3.455044-.430386 2.797509-.119552 2.331258-.119552Z'/>
+<path id='g2-112' d='M.514072 1.518306C.430386 1.876961 .382565 1.972603-.107597 1.972603C-.251059 1.972603-.37061 1.972603-.37061 2.199751C-.37061 2.223661-.358655 2.319303-.227148 2.319303C-.071731 2.319303 .095641 2.295392 .251059 2.295392H.765131C1.016189 2.295392 1.625903 2.319303 1.876961 2.319303C1.948692 2.319303 2.092154 2.319303 2.092154 2.10411C2.092154 1.972603 2.008468 1.972603 1.80523 1.972603C1.255293 1.972603 1.219427 1.888917 1.219427 1.793275C1.219427 1.649813 1.75741-.406476 1.829141-.681445C1.960648-.3467 2.283437 .119552 2.905106 .119552C4.25604 .119552 5.71457-1.637858 5.71457-3.395268C5.71457-4.495143 5.092902-5.272229 4.196264-5.272229C3.431133-5.272229 2.785554-4.531009 2.654047-4.363636C2.558406-4.961395 2.092154-5.272229 1.613948-5.272229C1.267248-5.272229 .992279-5.104857 .765131-4.65056C.549938-4.220174 .382565-3.490909 .382565-3.443088S.430386-3.335492 .514072-3.335492C.609714-3.335492 .621669-3.347447 .6934-3.622416C.872727-4.327771 1.099875-5.033126 1.578082-5.033126C1.853051-5.033126 1.948692-4.841843 1.948692-4.483188C1.948692-4.196264 1.912827-4.076712 1.865006-3.861519L.514072 1.518306ZM2.582316-3.730012C2.666002-4.064757 3.000747-4.411457 3.19203-4.578829C3.323537-4.698381 3.718057-5.033126 4.172354-5.033126C4.698381-5.033126 4.937484-4.507098 4.937484-3.88543C4.937484-3.311582 4.60274-1.960648 4.303861-1.338979C4.004981-.6934 3.455044-.119552 2.905106-.119552C2.092154-.119552 1.960648-1.147696 1.960648-1.195517C1.960648-1.231382 1.984558-1.327024 1.996513-1.3868L2.582316-3.730012Z'/>
+<path id='g2-113' d='M5.272229-5.152677C5.272229-5.212453 5.224408-5.260274 5.164633-5.260274C5.068991-5.260274 4.60274-4.829888 4.375592-4.411457C4.160399-4.94944 3.789788-5.272229 3.275716-5.272229C1.924782-5.272229 .466252-3.526775 .466252-1.75741C.466252-.573848 1.159651 .119552 1.972603 .119552C2.606227 .119552 3.132254-.358655 3.383313-.633624L3.395268-.621669L2.940971 1.171606L2.833375 1.601993C2.725778 1.960648 2.546451 1.960648 1.984558 1.972603C1.853051 1.972603 1.733499 1.972603 1.733499 2.199751C1.733499 2.283437 1.80523 2.319303 1.888917 2.319303C2.056289 2.319303 2.271482 2.295392 2.438854 2.295392H3.658281C3.837609 2.295392 4.040847 2.319303 4.220174 2.319303C4.291905 2.319303 4.435367 2.319303 4.435367 2.092154C4.435367 1.972603 4.339726 1.972603 4.160399 1.972603C3.598506 1.972603 3.56264 1.888917 3.56264 1.793275C3.56264 1.733499 3.574595 1.721544 3.610461 1.566127L5.272229-5.152677ZM3.58655-1.422665C3.526775-1.219427 3.526775-1.195517 3.359402-.968369C3.096389-.633624 2.570361-.119552 2.008468-.119552C1.518306-.119552 1.243337-.561893 1.243337-1.267248C1.243337-1.924782 1.613948-3.263761 1.841096-3.765878C2.247572-4.60274 2.809465-5.033126 3.275716-5.033126C4.064757-5.033126 4.220174-4.052802 4.220174-3.957161C4.220174-3.945205 4.184309-3.789788 4.172354-3.765878L3.58655-1.422665Z'/>
+<path id='g2-114' d='M4.65056-4.889664C4.27995-4.817933 4.088667-4.554919 4.088667-4.291905C4.088667-4.004981 4.315816-3.90934 4.483188-3.90934C4.817933-3.90934 5.092902-4.196264 5.092902-4.554919C5.092902-4.937484 4.722291-5.272229 4.124533-5.272229C3.646326-5.272229 3.096389-5.057036 2.594271-4.327771C2.510585-4.961395 2.032379-5.272229 1.554172-5.272229C1.08792-5.272229 .848817-4.913574 .705355-4.65056C.502117-4.220174 .32279-3.502864 .32279-3.443088C.32279-3.395268 .37061-3.335492 .454296-3.335492C.549938-3.335492 .561893-3.347447 .633624-3.622416C.812951-4.339726 1.0401-5.033126 1.518306-5.033126C1.80523-5.033126 1.888917-4.829888 1.888917-4.483188C1.888917-4.220174 1.769365-3.753923 1.685679-3.383313L1.350934-2.092154C1.303113-1.865006 1.171606-1.327024 1.111831-1.111831C1.028144-.800996 .896638-.239103 .896638-.179328C.896638-.011955 1.028144 .119552 1.207472 .119552C1.338979 .119552 1.566127 .035866 1.637858-.203238C1.673724-.298879 2.116065-2.10411 2.187796-2.379078C2.247572-2.642092 2.319303-2.893151 2.379078-3.156164C2.426899-3.323537 2.47472-3.514819 2.510585-3.670237C2.546451-3.777833 2.86924-4.363636 3.16812-4.62665C3.311582-4.758157 3.622416-5.033126 4.112578-5.033126C4.303861-5.033126 4.495143-4.99726 4.65056-4.889664Z'/>
+<path id='g2-115' d='M2.725778-2.391034C2.929016-2.355168 3.251806-2.283437 3.323537-2.271482C3.478954-2.223661 4.016936-2.032379 4.016936-1.458531C4.016936-1.08792 3.682192-.119552 2.295392-.119552C2.044334-.119552 1.147696-.155417 .908593-.812951C1.3868-.753176 1.625903-1.123786 1.625903-1.3868C1.625903-1.637858 1.458531-1.769365 1.219427-1.769365C.956413-1.769365 .609714-1.566127 .609714-1.028144C.609714-.32279 1.327024 .119552 2.283437 .119552C4.100623 .119552 4.638605-1.219427 4.638605-1.841096C4.638605-2.020423 4.638605-2.355168 4.25604-2.737733C3.957161-3.024658 3.670237-3.084433 3.024658-3.21594C2.701868-3.287671 2.187796-3.395268 2.187796-3.93325C2.187796-4.172354 2.402989-5.033126 3.53873-5.033126C4.040847-5.033126 4.531009-4.841843 4.65056-4.411457C4.124533-4.411457 4.100623-3.957161 4.100623-3.945205C4.100623-3.694147 4.327771-3.622416 4.435367-3.622416C4.60274-3.622416 4.937484-3.753923 4.937484-4.25604S4.483188-5.272229 3.550685-5.272229C1.984558-5.272229 1.566127-4.040847 1.566127-3.550685C1.566127-2.642092 2.450809-2.450809 2.725778-2.391034Z'/>
+<path id='g2-116' d='M2.402989-4.805978H3.502864C3.730012-4.805978 3.849564-4.805978 3.849564-5.021171C3.849564-5.152677 3.777833-5.152677 3.53873-5.152677H2.486675L2.929016-6.898132C2.976837-7.065504 2.976837-7.089415 2.976837-7.173101C2.976837-7.364384 2.82142-7.47198 2.666002-7.47198C2.570361-7.47198 2.295392-7.436115 2.199751-7.053549L1.733499-5.152677H.609714C.37061-5.152677 .263014-5.152677 .263014-4.925529C.263014-4.805978 .3467-4.805978 .573848-4.805978H1.637858L.848817-1.649813C.753176-1.231382 .71731-1.111831 .71731-.956413C.71731-.394521 1.111831 .119552 1.78132 .119552C2.988792 .119552 3.634371-1.625903 3.634371-1.709589C3.634371-1.78132 3.58655-1.817186 3.514819-1.817186C3.490909-1.817186 3.443088-1.817186 3.419178-1.769365C3.407223-1.75741 3.395268-1.745455 3.311582-1.554172C3.060523-.956413 2.510585-.119552 1.817186-.119552C1.458531-.119552 1.43462-.418431 1.43462-.681445C1.43462-.6934 1.43462-.920548 1.470486-1.06401L2.402989-4.805978Z'/>
+<path id='g2-117' d='M4.076712-.6934C4.23213-.02391 4.805978 .119552 5.092902 .119552C5.475467 .119552 5.762391-.131507 5.953674-.537983C6.156912-.968369 6.312329-1.673724 6.312329-1.709589C6.312329-1.769365 6.264508-1.817186 6.192777-1.817186C6.085181-1.817186 6.073225-1.75741 6.025405-1.578082C5.810212-.753176 5.595019-.119552 5.116812-.119552C4.758157-.119552 4.758157-.514072 4.758157-.669489C4.758157-.944458 4.794022-1.06401 4.913574-1.566127C4.99726-1.888917 5.080946-2.211706 5.152677-2.546451L5.642839-4.495143C5.726526-4.794022 5.726526-4.817933 5.726526-4.853798C5.726526-5.033126 5.583064-5.152677 5.403736-5.152677C5.057036-5.152677 4.97335-4.853798 4.901619-4.554919C4.782067-4.088667 4.136488-1.518306 4.052802-1.099875C4.040847-1.099875 3.574595-.119552 2.701868-.119552C2.080199-.119552 1.960648-.657534 1.960648-1.099875C1.960648-1.78132 2.295392-2.737733 2.606227-3.53873C2.749689-3.921295 2.809465-4.076712 2.809465-4.315816C2.809465-4.829888 2.438854-5.272229 1.865006-5.272229C.765131-5.272229 .32279-3.53873 .32279-3.443088C.32279-3.395268 .37061-3.335492 .454296-3.335492C.561893-3.335492 .573848-3.383313 .621669-3.550685C.908593-4.578829 1.374844-5.033126 1.829141-5.033126C1.948692-5.033126 2.139975-5.021171 2.139975-4.638605C2.139975-4.327771 2.008468-3.981071 1.829141-3.526775C1.303113-2.10411 1.243337-1.649813 1.243337-1.291158C1.243337-.071731 2.163885 .119552 2.654047 .119552C3.419178 .119552 3.837609-.406476 4.076712-.6934Z'/>
+<path id='g2-121' d='M3.144209 1.338979C2.82142 1.793275 2.355168 2.199751 1.769365 2.199751C1.625903 2.199751 1.052055 2.175841 .872727 1.625903C.908593 1.637858 .968369 1.637858 .992279 1.637858C1.350934 1.637858 1.590037 1.327024 1.590037 1.052055S1.362889 .681445 1.183562 .681445C.992279 .681445 .573848 .824907 .573848 1.41071C.573848 2.020423 1.08792 2.438854 1.769365 2.438854C2.964882 2.438854 4.172354 1.338979 4.507098 .011955L5.678705-4.65056C5.69066-4.710336 5.71457-4.782067 5.71457-4.853798C5.71457-5.033126 5.571108-5.152677 5.391781-5.152677C5.284184-5.152677 5.033126-5.104857 4.937484-4.746202L4.052802-1.231382C3.993026-1.016189 3.993026-.992279 3.897385-.860772C3.658281-.526027 3.263761-.119552 2.689913-.119552C2.020423-.119552 1.960648-.777086 1.960648-1.099875C1.960648-1.78132 2.283437-2.701868 2.606227-3.56264C2.737733-3.90934 2.809465-4.076712 2.809465-4.315816C2.809465-4.817933 2.450809-5.272229 1.865006-5.272229C.765131-5.272229 .32279-3.53873 .32279-3.443088C.32279-3.395268 .37061-3.335492 .454296-3.335492C.561893-3.335492 .573848-3.383313 .621669-3.550685C.908593-4.554919 1.362889-5.033126 1.829141-5.033126C1.936737-5.033126 2.139975-5.033126 2.139975-4.638605C2.139975-4.327771 2.008468-3.981071 1.829141-3.526775C1.243337-1.960648 1.243337-1.566127 1.243337-1.279203C1.243337-.143462 2.056289 .119552 2.654047 .119552C3.000747 .119552 3.431133 .011955 3.849564-.430386L3.861519-.418431C3.682192 .286924 3.56264 .753176 3.144209 1.338979Z'/>
+</defs>
+<g id='page1' transform='matrix(1.13 0 0 1.13 -63.986043 -66.444003)'>
+<use x='56.413267' y='69.937791' xlink:href='#g2-109'/>
+<use x='66.652534' y='69.937791' xlink:href='#g2-101'/>
+<use x='72.077974' y='69.937791' xlink:href='#g2-109'/>
+<use x='82.317241' y='69.937791' xlink:href='#g2-111'/>
+<use x='87.944679' y='69.937791' xlink:href='#g2-114'/>
+<use x='93.545152' y='69.937791' xlink:href='#g2-121'/>
+<use x='99.681804' y='69.937791' xlink:href='#g2-58'/>
+<use x='102.933465' y='69.937791' xlink:href='#g2-109'/>
+<use x='113.172732' y='69.937791' xlink:href='#g2-105'/>
+<use x='117.166164' y='69.937791' xlink:href='#g2-110'/>
+<use x='127.474599' y='69.937791' xlink:href='#g3-61'/>
+<use x='139.90008' y='58.580327' xlink:href='#g0-88'/>
+<use x='147.092819' y='83.774682' xlink:href='#g1-105'/>
+<use x='159.161195' y='58.580327' xlink:href='#g0-88'/>
+<use x='165.85349' y='83.774682' xlink:href='#g1-106'/>
+<use x='178.422309' y='69.937791' xlink:href='#g2-112'/>
+<use x='184.297452' y='69.937791' xlink:href='#g2-111'/>
+<use x='189.92489' y='69.937791' xlink:href='#g2-100'/>
+<use x='196.007582' y='69.937791' xlink:href='#g3-91'/>
+<use x='199.259244' y='69.937791' xlink:href='#g2-105'/>
+<use x='203.252676' y='69.937791' xlink:href='#g3-93'/>
+<use x='206.504337' y='69.937791' xlink:href='#g2-58'/>
+<use x='209.755998' y='69.937791' xlink:href='#g2-115'/>
+<use x='215.270004' y='69.937791' xlink:href='#g2-112'/>
+<use x='221.145147' y='69.937791' xlink:href='#g2-101'/>
+<use x='226.570587' y='69.937791' xlink:href='#g2-99'/>
+<use x='231.608576' y='69.937791' xlink:href='#g2-58'/>
+<use x='234.860237' y='69.937791' xlink:href='#g2-99'/>
+<use x='239.898226' y='69.937791' xlink:href='#g2-111'/>
+<use x='245.525663' y='69.937791' xlink:href='#g2-110'/>
+<use x='252.513269' y='69.937791' xlink:href='#g2-116'/>
+<use x='256.740429' y='69.937791' xlink:href='#g2-97'/>
+<use x='262.885373' y='69.937791' xlink:href='#g2-105'/>
+<use x='266.878805' y='69.937791' xlink:href='#g2-110'/>
+<use x='273.866411' y='69.937791' xlink:href='#g2-101'/>
+<use x='279.291851' y='69.937791' xlink:href='#g2-114'/>
+<use x='284.892324' y='69.937791' xlink:href='#g2-115'/>
+<use x='290.40633' y='69.937791' xlink:href='#g3-91'/>
+<use x='293.657991' y='69.937791' xlink:href='#g2-106'/>
+<use x='299.173487' y='69.937791' xlink:href='#g3-93'/>
+<use x='302.425148' y='69.937791' xlink:href='#g2-58'/>
+<use x='305.676809' y='69.937791' xlink:href='#g2-114'/>
+<use x='311.277283' y='69.937791' xlink:href='#g2-101'/>
+<use x='316.702723' y='69.937791' xlink:href='#g2-115'/>
+<use x='322.216728' y='69.937791' xlink:href='#g2-111'/>
+<use x='327.844166' y='69.937791' xlink:href='#g2-117'/>
+<use x='334.506606' y='69.937791' xlink:href='#g2-114'/>
+<use x='340.107079' y='69.937791' xlink:href='#g2-99'/>
+<use x='345.145068' y='69.937791' xlink:href='#g2-101'/>
+<use x='350.570508' y='69.937791' xlink:href='#g2-115'/>
+<use x='356.084513' y='69.937791' xlink:href='#g2-58'/>
+<use x='359.336175' y='69.937791' xlink:href='#g2-114'/>
+<use x='364.936648' y='69.937791' xlink:href='#g2-101'/>
+<use x='370.362088' y='69.937791' xlink:href='#g2-113'/>
+<use x='375.981245' y='69.937791' xlink:href='#g2-117'/>
+<use x='382.643684' y='69.937791' xlink:href='#g2-101'/>
+<use x='388.069124' y='69.937791' xlink:href='#g2-115'/>
+<use x='393.58313' y='69.937791' xlink:href='#g2-116'/>
+<use x='397.81029' y='69.937791' xlink:href='#g2-115'/>
+<use x='403.324295' y='69.937791' xlink:href='#g3-91'/>
+<use x='406.575957' y='69.937791' xlink:href='#g2-109'/>
+<use x='416.815224' y='69.937791' xlink:href='#g2-101'/>
+<use x='422.240664' y='69.937791' xlink:href='#g2-109'/>
+<use x='432.479931' y='69.937791' xlink:href='#g2-111'/>
+<use x='438.107368' y='69.937791' xlink:href='#g2-114'/>
+<use x='443.707842' y='69.937791' xlink:href='#g2-121'/>
+<use x='449.844493' y='69.937791' xlink:href='#g3-93'/>
+</g>
+</svg>
\ No newline at end of file
diff --git a/content/en/blog/_posts/2021-11-26-memory-qos-cgroups-v2/pod-memory-min.svg b/content/en/blog/_posts/2021-11-26-memory-qos-cgroups-v2/pod-memory-min.svg
new file mode 100644
index 0000000000..84d3a940a0
--- /dev/null
+++ b/content/en/blog/_posts/2021-11-26-memory-qos-cgroups-v2/pod-memory-min.svg
@@ -0,0 +1,97 @@
+<?xml version='1.0' encoding='UTF-8'?>
+<!-- Generated by CodeCogs with dvisvgm 2.9.1 -->
+<svg version='1.1' xmlns='http://www.w3.org/2000/svg' xmlns:xlink='http://www.w3.org/1999/xlink' width='411.32491pt' height='36.683306pt' viewBox='-.239051 -.232683 411.32491 36.683306'>
+<defs>
+<path id='g0-88' d='M15.135243 16.737235L16.581818 12.911582H16.282939C15.816687 14.154919 14.54944 14.96787 13.174595 15.326526C12.923537 15.386301 11.75193 15.697136 9.456538 15.697136H2.247572L8.332752 8.5599C8.416438 8.464259 8.440349 8.428394 8.440349 8.368618C8.440349 8.344707 8.440349 8.308842 8.356663 8.18929L2.785554 .573848H9.336986C10.938979 .573848 12.026899 .74122 12.134496 .765131C12.780075 .860772 13.820174 1.06401 14.764633 1.661768C15.063512 1.853051 15.876463 2.391034 16.282939 3.359402H16.581818L15.135243 0H1.004234C.729265 0 .71731 .011955 .681445 .083686C.669489 .119552 .669489 .3467 .669489 .478207L6.993773 9.133748L.800996 16.390535C.681445 16.533998 .681445 16.593773 .681445 16.605729C.681445 16.737235 .789041 16.737235 1.004234 16.737235H15.135243Z'/>
+<path id='g3-48' d='M3.897385-2.542466C3.897385-3.395268 3.809714-3.913325 3.5467-4.423412C3.196015-5.124782 2.550436-5.300125 2.11208-5.300125C1.107846-5.300125 .74122-4.550934 .629639-4.327771C.342715-3.745953 .326775-2.956912 .326775-2.542466C.326775-2.016438 .350685-1.211457 .73325-.573848C1.099875 .01594 1.689664 .167372 2.11208 .167372C2.494645 .167372 3.180075 .047821 3.57858-.74122C3.873474-1.315068 3.897385-2.024408 3.897385-2.542466ZM2.11208-.055791C1.841096-.055791 1.291158-.183313 1.123786-1.020174C1.036115-1.474471 1.036115-2.223661 1.036115-2.638107C1.036115-3.188045 1.036115-3.745953 1.123786-4.184309C1.291158-4.99726 1.912827-5.076961 2.11208-5.076961C2.383064-5.076961 2.933001-4.941469 3.092403-4.216189C3.188045-3.777833 3.188045-3.180075 3.188045-2.638107C3.188045-2.16787 3.188045-1.45056 3.092403-1.004234C2.925031-.167372 2.375093-.055791 2.11208-.055791Z'/>
+<path id='g3-61' d='M5.826152-2.654047C5.945704-2.654047 6.105106-2.654047 6.105106-2.83736S5.913823-3.020672 5.794271-3.020672H.781071C.661519-3.020672 .470237-3.020672 .470237-2.83736S.629639-2.654047 .749191-2.654047H5.826152ZM5.794271-.964384C5.913823-.964384 6.105106-.964384 6.105106-1.147696S5.945704-1.331009 5.826152-1.331009H.749191C.629639-1.331009 .470237-1.331009 .470237-1.147696S.661519-.964384 .781071-.964384H5.794271Z'/>
+<path id='g1-105' d='M2.375093-4.97335C2.375093-5.148692 2.247572-5.276214 2.064259-5.276214C1.857036-5.276214 1.625903-5.084932 1.625903-4.845828C1.625903-4.670486 1.753425-4.542964 1.936737-4.542964C2.14396-4.542964 2.375093-4.734247 2.375093-4.97335ZM1.211457-2.048319L.781071-.948443C.74122-.828892 .70137-.73325 .70137-.597758C.70137-.207223 1.004234 .079701 1.42665 .079701C2.199751 .079701 2.526526-1.036115 2.526526-1.139726C2.526526-1.219427 2.462765-1.243337 2.406974-1.243337C2.311333-1.243337 2.295392-1.187547 2.271482-1.107846C2.088169-.470237 1.761395-.143462 1.44259-.143462C1.346949-.143462 1.251308-.183313 1.251308-.398506C1.251308-.589788 1.307098-.73325 1.41071-.980324C1.490411-1.195517 1.570112-1.41071 1.657783-1.625903L1.904857-2.271482C1.976588-2.454795 2.072229-2.701868 2.072229-2.83736C2.072229-3.235866 1.753425-3.514819 1.346949-3.514819C.573848-3.514819 .239103-2.399004 .239103-2.295392C.239103-2.223661 .294894-2.191781 .358655-2.191781C.462267-2.191781 .470237-2.239601 .494147-2.319303C.71731-3.076463 1.083935-3.291656 1.323039-3.291656C1.43462-3.291656 1.514321-3.251806 1.514321-3.028643C1.514321-2.948941 1.506351-2.83736 1.42665-2.598257L1.211457-2.048319Z'/>
+<path id='g1-110' d='M1.594022-1.307098C1.617933-1.42665 1.697634-1.729514 1.721544-1.849066C1.833126-2.279452 1.833126-2.287422 2.016438-2.550436C2.279452-2.940971 2.654047-3.291656 3.188045-3.291656C3.474969-3.291656 3.642341-3.124284 3.642341-2.749689C3.642341-2.311333 3.307597-1.40274 3.156164-1.012204C3.052553-.749191 3.052553-.70137 3.052553-.597758C3.052553-.143462 3.427148 .079701 3.769863 .079701C4.550934 .079701 4.877709-1.036115 4.877709-1.139726C4.877709-1.219427 4.813948-1.243337 4.758157-1.243337C4.662516-1.243337 4.646575-1.187547 4.622665-1.107846C4.431382-.454296 4.096638-.143462 3.793773-.143462C3.666252-.143462 3.602491-.223163 3.602491-.406476S3.666252-.765131 3.745953-.964384C3.865504-1.267248 4.216189-2.183811 4.216189-2.630137C4.216189-3.227895 3.801743-3.514819 3.227895-3.514819C2.582316-3.514819 2.16787-3.124284 1.936737-2.82142C1.880946-3.259776 1.530262-3.514819 1.123786-3.514819C.836862-3.514819 .637609-3.331507 .510087-3.084433C.318804-2.709838 .239103-2.311333 .239103-2.295392C.239103-2.223661 .294894-2.191781 .358655-2.191781C.462267-2.191781 .470237-2.223661 .526027-2.430884C.621669-2.82142 .765131-3.291656 1.099875-3.291656C1.307098-3.291656 1.354919-3.092403 1.354919-2.917061C1.354919-2.773599 1.315068-2.622167 1.251308-2.359153C1.235367-2.295392 1.115816-1.825156 1.083935-1.713574L.789041-.518057C.757161-.398506 .70934-.199253 .70934-.167372C.70934 .01594 .860772 .079701 .964384 .079701C1.107846 .079701 1.227397-.01594 1.283188-.111582C1.307098-.159402 1.370859-.430386 1.41071-.597758L1.594022-1.307098Z'/>
+<path id='g4-61' d='M8.069738-3.873474C8.237111-3.873474 8.452304-3.873474 8.452304-4.088667C8.452304-4.315816 8.249066-4.315816 8.069738-4.315816H1.028144C.860772-4.315816 .645579-4.315816 .645579-4.100623C.645579-3.873474 .848817-3.873474 1.028144-3.873474H8.069738ZM8.069738-1.649813C8.237111-1.649813 8.452304-1.649813 8.452304-1.865006C8.452304-2.092154 8.249066-2.092154 8.069738-2.092154H1.028144C.860772-2.092154 .645579-2.092154 .645579-1.876961C.645579-1.649813 .848817-1.649813 1.028144-1.649813H8.069738Z'/>
+<path id='g4-91' d='M2.988792 2.988792V2.546451H1.829141V-8.524035H2.988792V-8.966376H1.3868V2.988792H2.988792Z'/>
+<path id='g4-93' d='M1.853051-8.966376H.251059V-8.524035H1.41071V2.546451H.251059V2.988792H1.853051V-8.966376Z'/>
+<path id='g2-58' d='M2.199751-.573848C2.199751-.920548 1.912827-1.159651 1.625903-1.159651C1.279203-1.159651 1.0401-.872727 1.0401-.585803C1.0401-.239103 1.327024 0 1.613948 0C1.960648 0 2.199751-.286924 2.199751-.573848Z'/>
+<path id='g2-97' d='M3.598506-1.422665C3.53873-1.219427 3.53873-1.195517 3.371357-.968369C3.108344-.633624 2.582316-.119552 2.020423-.119552C1.530262-.119552 1.255293-.561893 1.255293-1.267248C1.255293-1.924782 1.625903-3.263761 1.853051-3.765878C2.259527-4.60274 2.82142-5.033126 3.287671-5.033126C4.076712-5.033126 4.23213-4.052802 4.23213-3.957161C4.23213-3.945205 4.196264-3.789788 4.184309-3.765878L3.598506-1.422665ZM4.363636-4.483188C4.23213-4.794022 3.90934-5.272229 3.287671-5.272229C1.936737-5.272229 .478207-3.526775 .478207-1.75741C.478207-.573848 1.171606 .119552 1.984558 .119552C2.642092 .119552 3.203985-.394521 3.53873-.789041C3.658281-.083686 4.220174 .119552 4.578829 .119552S5.224408-.095641 5.439601-.526027C5.630884-.932503 5.798257-1.661768 5.798257-1.709589C5.798257-1.769365 5.750436-1.817186 5.678705-1.817186C5.571108-1.817186 5.559153-1.75741 5.511333-1.578082C5.332005-.872727 5.104857-.119552 4.614695-.119552C4.267995-.119552 4.244085-.430386 4.244085-.669489C4.244085-.944458 4.27995-1.075965 4.387547-1.542217C4.471233-1.841096 4.531009-2.10411 4.62665-2.450809C5.068991-4.244085 5.176588-4.674471 5.176588-4.746202C5.176588-4.913574 5.045081-5.045081 4.865753-5.045081C4.483188-5.045081 4.387547-4.62665 4.363636-4.483188Z'/>
+<path id='g2-99' d='M4.674471-4.495143C4.447323-4.495143 4.339726-4.495143 4.172354-4.351681C4.100623-4.291905 3.969116-4.112578 3.969116-3.921295C3.969116-3.682192 4.148443-3.53873 4.375592-3.53873C4.662516-3.53873 4.985305-3.777833 4.985305-4.25604C4.985305-4.829888 4.435367-5.272229 3.610461-5.272229C2.044334-5.272229 .478207-3.56264 .478207-1.865006C.478207-.824907 1.123786 .119552 2.343213 .119552C3.969116 .119552 4.99726-1.147696 4.99726-1.303113C4.99726-1.374844 4.925529-1.43462 4.877709-1.43462C4.841843-1.43462 4.829888-1.422665 4.722291-1.315068C3.957161-.298879 2.82142-.119552 2.367123-.119552C1.542217-.119552 1.279203-.836862 1.279203-1.43462C1.279203-1.853051 1.482441-3.012702 1.912827-3.825654C2.223661-4.387547 2.86924-5.033126 3.622416-5.033126C3.777833-5.033126 4.435367-5.009215 4.674471-4.495143Z'/>
+<path id='g2-100' d='M6.01345-7.998007C6.025405-8.045828 6.049315-8.117559 6.049315-8.177335C6.049315-8.296887 5.929763-8.296887 5.905853-8.296887C5.893898-8.296887 5.308095-8.249066 5.248319-8.237111C5.045081-8.225156 4.865753-8.201245 4.65056-8.18929C4.351681-8.16538 4.267995-8.153425 4.267995-7.938232C4.267995-7.81868 4.363636-7.81868 4.531009-7.81868C5.116812-7.81868 5.128767-7.711083 5.128767-7.591532C5.128767-7.519801 5.104857-7.424159 5.092902-7.388294L4.363636-4.483188C4.23213-4.794022 3.90934-5.272229 3.287671-5.272229C1.936737-5.272229 .478207-3.526775 .478207-1.75741C.478207-.573848 1.171606 .119552 1.984558 .119552C2.642092 .119552 3.203985-.394521 3.53873-.789041C3.658281-.083686 4.220174 .119552 4.578829 .119552S5.224408-.095641 5.439601-.526027C5.630884-.932503 5.798257-1.661768 5.798257-1.709589C5.798257-1.769365 5.750436-1.817186 5.678705-1.817186C5.571108-1.817186 5.559153-1.75741 5.511333-1.578082C5.332005-.872727 5.104857-.119552 4.614695-.119552C4.267995-.119552 4.244085-.430386 4.244085-.669489C4.244085-.71731 4.244085-.968369 4.327771-1.303113L6.01345-7.998007ZM3.598506-1.422665C3.53873-1.219427 3.53873-1.195517 3.371357-.968369C3.108344-.633624 2.582316-.119552 2.020423-.119552C1.530262-.119552 1.255293-.561893 1.255293-1.267248C1.255293-1.924782 1.625903-3.263761 1.853051-3.765878C2.259527-4.60274 2.82142-5.033126 3.287671-5.033126C4.076712-5.033126 4.23213-4.052802 4.23213-3.957161C4.23213-3.945205 4.196264-3.789788 4.184309-3.765878L3.598506-1.422665Z'/>
+<path id='g2-101' d='M2.139975-2.773599C2.462765-2.773599 3.275716-2.797509 3.849564-3.012702C4.758157-3.359402 4.841843-4.052802 4.841843-4.267995C4.841843-4.794022 4.387547-5.272229 3.598506-5.272229C2.343213-5.272229 .537983-4.136488 .537983-2.008468C.537983-.753176 1.255293 .119552 2.343213 .119552C3.969116 .119552 4.99726-1.147696 4.99726-1.303113C4.99726-1.374844 4.925529-1.43462 4.877709-1.43462C4.841843-1.43462 4.829888-1.422665 4.722291-1.315068C3.957161-.298879 2.82142-.119552 2.367123-.119552C1.685679-.119552 1.327024-.657534 1.327024-1.542217C1.327024-1.709589 1.327024-2.008468 1.506351-2.773599H2.139975ZM1.566127-3.012702C2.080199-4.853798 3.21594-5.033126 3.598506-5.033126C4.124533-5.033126 4.483188-4.722291 4.483188-4.267995C4.483188-3.012702 2.570361-3.012702 2.068244-3.012702H1.566127Z'/>
+<path id='g2-105' d='M3.383313-1.709589C3.383313-1.769365 3.335492-1.817186 3.263761-1.817186C3.156164-1.817186 3.144209-1.78132 3.084433-1.578082C2.773599-.490162 2.283437-.119552 1.888917-.119552C1.745455-.119552 1.578082-.155417 1.578082-.514072C1.578082-.836862 1.721544-1.195517 1.853051-1.554172L2.689913-3.777833C2.725778-3.873474 2.809465-4.088667 2.809465-4.315816C2.809465-4.817933 2.450809-5.272229 1.865006-5.272229C.765131-5.272229 .32279-3.53873 .32279-3.443088C.32279-3.395268 .37061-3.335492 .454296-3.335492C.561893-3.335492 .573848-3.383313 .621669-3.550685C.908593-4.554919 1.362889-5.033126 1.829141-5.033126C1.936737-5.033126 2.139975-5.021171 2.139975-4.638605C2.139975-4.327771 1.984558-3.93325 1.888917-3.670237L1.052055-1.446575C.980324-1.255293 .908593-1.06401 .908593-.848817C.908593-.310834 1.279203 .119552 1.853051 .119552C2.952927 .119552 3.383313-1.625903 3.383313-1.709589ZM3.287671-7.460025C3.287671-7.639352 3.144209-7.854545 2.881196-7.854545C2.606227-7.854545 2.295392-7.591532 2.295392-7.280697C2.295392-6.981818 2.546451-6.886177 2.689913-6.886177C3.012702-6.886177 3.287671-7.197011 3.287671-7.460025Z'/>
+<path id='g2-109' d='M2.462765-3.502864C2.486675-3.574595 2.785554-4.172354 3.227895-4.554919C3.53873-4.841843 3.945205-5.033126 4.411457-5.033126C4.889664-5.033126 5.057036-4.674471 5.057036-4.196264C5.057036-4.124533 5.057036-3.88543 4.913574-3.323537L4.614695-2.092154C4.519054-1.733499 4.291905-.848817 4.267995-.71731C4.220174-.537983 4.148443-.227148 4.148443-.179328C4.148443-.011955 4.27995 .119552 4.459278 .119552C4.817933 .119552 4.877709-.155417 4.985305-.585803L5.702615-3.443088C5.726526-3.53873 6.348194-5.033126 7.663263-5.033126C8.141469-5.033126 8.308842-4.674471 8.308842-4.196264C8.308842-3.526775 7.84259-2.223661 7.579577-1.506351C7.47198-1.219427 7.412204-1.06401 7.412204-.848817C7.412204-.310834 7.782814 .119552 8.356663 .119552C9.468493 .119552 9.886924-1.637858 9.886924-1.709589C9.886924-1.769365 9.839103-1.817186 9.767372-1.817186C9.659776-1.817186 9.647821-1.78132 9.588045-1.578082C9.313076-.621669 8.870735-.119552 8.392528-.119552C8.272976-.119552 8.081694-.131507 8.081694-.514072C8.081694-.824907 8.225156-1.207472 8.272976-1.338979C8.488169-1.912827 9.026152-3.323537 9.026152-4.016936C9.026152-4.734247 8.607721-5.272229 7.699128-5.272229C6.898132-5.272229 6.252553-4.817933 5.774346-4.112578C5.738481-4.758157 5.34396-5.272229 4.447323-5.272229C3.383313-5.272229 2.82142-4.519054 2.606227-4.220174C2.570361-4.901619 2.080199-5.272229 1.554172-5.272229C1.207472-5.272229 .932503-5.104857 .705355-4.65056C.490162-4.220174 .32279-3.490909 .32279-3.443088S.37061-3.335492 .454296-3.335492C.549938-3.335492 .561893-3.347447 .633624-3.622416C.812951-4.327771 1.0401-5.033126 1.518306-5.033126C1.793275-5.033126 1.888917-4.841843 1.888917-4.483188C1.888917-4.220174 1.769365-3.753923 1.685679-3.383313L1.350934-2.092154C1.303113-1.865006 1.171606-1.327024 1.111831-1.111831C1.028144-.800996 .896638-.239103 .896638-.179328C.896638-.011955 1.028144 .119552 1.207472 .119552C1.350934 .119552 1.518306 .047821 1.613948-.131507C1.637858-.191283 1.745455-.609714 1.80523-.848817L2.068244-1.924782L2.462765-3.502864Z'/>
+<path id='g2-110' d='M2.462765-3.502864C2.486675-3.574595 2.785554-4.172354 3.227895-4.554919C3.53873-4.841843 3.945205-5.033126 4.411457-5.033126C4.889664-5.033126 5.057036-4.674471 5.057036-4.196264C5.057036-3.514819 4.566874-2.15193 4.327771-1.506351C4.220174-1.219427 4.160399-1.06401 4.160399-.848817C4.160399-.310834 4.531009 .119552 5.104857 .119552C6.216687 .119552 6.635118-1.637858 6.635118-1.709589C6.635118-1.769365 6.587298-1.817186 6.515567-1.817186C6.40797-1.817186 6.396015-1.78132 6.336239-1.578082C6.06127-.597758 5.606974-.119552 5.140722-.119552C5.021171-.119552 4.829888-.131507 4.829888-.514072C4.829888-.812951 4.961395-1.171606 5.033126-1.338979C5.272229-1.996513 5.774346-3.335492 5.774346-4.016936C5.774346-4.734247 5.355915-5.272229 4.447323-5.272229C3.383313-5.272229 2.82142-4.519054 2.606227-4.220174C2.570361-4.901619 2.080199-5.272229 1.554172-5.272229C1.171606-5.272229 .908593-5.045081 .705355-4.638605C.490162-4.208219 .32279-3.490909 .32279-3.443088S.37061-3.335492 .454296-3.335492C.549938-3.335492 .561893-3.347447 .633624-3.622416C.824907-4.351681 1.0401-5.033126 1.518306-5.033126C1.793275-5.033126 1.888917-4.841843 1.888917-4.483188C1.888917-4.220174 1.769365-3.753923 1.685679-3.383313L1.350934-2.092154C1.303113-1.865006 1.171606-1.327024 1.111831-1.111831C1.028144-.800996 .896638-.239103 .896638-.179328C.896638-.011955 1.028144 .119552 1.207472 .119552C1.350934 .119552 1.518306 .047821 1.613948-.131507C1.637858-.191283 1.745455-.609714 1.80523-.848817L2.068244-1.924782L2.462765-3.502864Z'/>
+<path id='g2-111' d='M5.451557-3.287671C5.451557-4.423412 4.710336-5.272229 3.622416-5.272229C2.044334-5.272229 .490162-3.550685 .490162-1.865006C.490162-.729265 1.231382 .119552 2.319303 .119552C3.90934 .119552 5.451557-1.601993 5.451557-3.287671ZM2.331258-.119552C1.733499-.119552 1.291158-.597758 1.291158-1.43462C1.291158-1.984558 1.578082-3.203985 1.912827-3.801743C2.450809-4.722291 3.120299-5.033126 3.610461-5.033126C4.196264-5.033126 4.65056-4.554919 4.65056-3.718057C4.65056-3.239851 4.399502-1.960648 3.945205-1.231382C3.455044-.430386 2.797509-.119552 2.331258-.119552Z'/>
+<path id='g2-112' d='M.514072 1.518306C.430386 1.876961 .382565 1.972603-.107597 1.972603C-.251059 1.972603-.37061 1.972603-.37061 2.199751C-.37061 2.223661-.358655 2.319303-.227148 2.319303C-.071731 2.319303 .095641 2.295392 .251059 2.295392H.765131C1.016189 2.295392 1.625903 2.319303 1.876961 2.319303C1.948692 2.319303 2.092154 2.319303 2.092154 2.10411C2.092154 1.972603 2.008468 1.972603 1.80523 1.972603C1.255293 1.972603 1.219427 1.888917 1.219427 1.793275C1.219427 1.649813 1.75741-.406476 1.829141-.681445C1.960648-.3467 2.283437 .119552 2.905106 .119552C4.25604 .119552 5.71457-1.637858 5.71457-3.395268C5.71457-4.495143 5.092902-5.272229 4.196264-5.272229C3.431133-5.272229 2.785554-4.531009 2.654047-4.363636C2.558406-4.961395 2.092154-5.272229 1.613948-5.272229C1.267248-5.272229 .992279-5.104857 .765131-4.65056C.549938-4.220174 .382565-3.490909 .382565-3.443088S.430386-3.335492 .514072-3.335492C.609714-3.335492 .621669-3.347447 .6934-3.622416C.872727-4.327771 1.099875-5.033126 1.578082-5.033126C1.853051-5.033126 1.948692-4.841843 1.948692-4.483188C1.948692-4.196264 1.912827-4.076712 1.865006-3.861519L.514072 1.518306ZM2.582316-3.730012C2.666002-4.064757 3.000747-4.411457 3.19203-4.578829C3.323537-4.698381 3.718057-5.033126 4.172354-5.033126C4.698381-5.033126 4.937484-4.507098 4.937484-3.88543C4.937484-3.311582 4.60274-1.960648 4.303861-1.338979C4.004981-.6934 3.455044-.119552 2.905106-.119552C2.092154-.119552 1.960648-1.147696 1.960648-1.195517C1.960648-1.231382 1.984558-1.327024 1.996513-1.3868L2.582316-3.730012Z'/>
+<path id='g2-113' d='M5.272229-5.152677C5.272229-5.212453 5.224408-5.260274 5.164633-5.260274C5.068991-5.260274 4.60274-4.829888 4.375592-4.411457C4.160399-4.94944 3.789788-5.272229 3.275716-5.272229C1.924782-5.272229 .466252-3.526775 .466252-1.75741C.466252-.573848 1.159651 .119552 1.972603 .119552C2.606227 .119552 3.132254-.358655 3.383313-.633624L3.395268-.621669L2.940971 1.171606L2.833375 1.601993C2.725778 1.960648 2.546451 1.960648 1.984558 1.972603C1.853051 1.972603 1.733499 1.972603 1.733499 2.199751C1.733499 2.283437 1.80523 2.319303 1.888917 2.319303C2.056289 2.319303 2.271482 2.295392 2.438854 2.295392H3.658281C3.837609 2.295392 4.040847 2.319303 4.220174 2.319303C4.291905 2.319303 4.435367 2.319303 4.435367 2.092154C4.435367 1.972603 4.339726 1.972603 4.160399 1.972603C3.598506 1.972603 3.56264 1.888917 3.56264 1.793275C3.56264 1.733499 3.574595 1.721544 3.610461 1.566127L5.272229-5.152677ZM3.58655-1.422665C3.526775-1.219427 3.526775-1.195517 3.359402-.968369C3.096389-.633624 2.570361-.119552 2.008468-.119552C1.518306-.119552 1.243337-.561893 1.243337-1.267248C1.243337-1.924782 1.613948-3.263761 1.841096-3.765878C2.247572-4.60274 2.809465-5.033126 3.275716-5.033126C4.064757-5.033126 4.220174-4.052802 4.220174-3.957161C4.220174-3.945205 4.184309-3.789788 4.172354-3.765878L3.58655-1.422665Z'/>
+<path id='g2-114' d='M4.65056-4.889664C4.27995-4.817933 4.088667-4.554919 4.088667-4.291905C4.088667-4.004981 4.315816-3.90934 4.483188-3.90934C4.817933-3.90934 5.092902-4.196264 5.092902-4.554919C5.092902-4.937484 4.722291-5.272229 4.124533-5.272229C3.646326-5.272229 3.096389-5.057036 2.594271-4.327771C2.510585-4.961395 2.032379-5.272229 1.554172-5.272229C1.08792-5.272229 .848817-4.913574 .705355-4.65056C.502117-4.220174 .32279-3.502864 .32279-3.443088C.32279-3.395268 .37061-3.335492 .454296-3.335492C.549938-3.335492 .561893-3.347447 .633624-3.622416C.812951-4.339726 1.0401-5.033126 1.518306-5.033126C1.80523-5.033126 1.888917-4.829888 1.888917-4.483188C1.888917-4.220174 1.769365-3.753923 1.685679-3.383313L1.350934-2.092154C1.303113-1.865006 1.171606-1.327024 1.111831-1.111831C1.028144-.800996 .896638-.239103 .896638-.179328C.896638-.011955 1.028144 .119552 1.207472 .119552C1.338979 .119552 1.566127 .035866 1.637858-.203238C1.673724-.298879 2.116065-2.10411 2.187796-2.379078C2.247572-2.642092 2.319303-2.893151 2.379078-3.156164C2.426899-3.323537 2.47472-3.514819 2.510585-3.670237C2.546451-3.777833 2.86924-4.363636 3.16812-4.62665C3.311582-4.758157 3.622416-5.033126 4.112578-5.033126C4.303861-5.033126 4.495143-4.99726 4.65056-4.889664Z'/>
+<path id='g2-115' d='M2.725778-2.391034C2.929016-2.355168 3.251806-2.283437 3.323537-2.271482C3.478954-2.223661 4.016936-2.032379 4.016936-1.458531C4.016936-1.08792 3.682192-.119552 2.295392-.119552C2.044334-.119552 1.147696-.155417 .908593-.812951C1.3868-.753176 1.625903-1.123786 1.625903-1.3868C1.625903-1.637858 1.458531-1.769365 1.219427-1.769365C.956413-1.769365 .609714-1.566127 .609714-1.028144C.609714-.32279 1.327024 .119552 2.283437 .119552C4.100623 .119552 4.638605-1.219427 4.638605-1.841096C4.638605-2.020423 4.638605-2.355168 4.25604-2.737733C3.957161-3.024658 3.670237-3.084433 3.024658-3.21594C2.701868-3.287671 2.187796-3.395268 2.187796-3.93325C2.187796-4.172354 2.402989-5.033126 3.53873-5.033126C4.040847-5.033126 4.531009-4.841843 4.65056-4.411457C4.124533-4.411457 4.100623-3.957161 4.100623-3.945205C4.100623-3.694147 4.327771-3.622416 4.435367-3.622416C4.60274-3.622416 4.937484-3.753923 4.937484-4.25604S4.483188-5.272229 3.550685-5.272229C1.984558-5.272229 1.566127-4.040847 1.566127-3.550685C1.566127-2.642092 2.450809-2.450809 2.725778-2.391034Z'/>
+<path id='g2-116' d='M2.402989-4.805978H3.502864C3.730012-4.805978 3.849564-4.805978 3.849564-5.021171C3.849564-5.152677 3.777833-5.152677 3.53873-5.152677H2.486675L2.929016-6.898132C2.976837-7.065504 2.976837-7.089415 2.976837-7.173101C2.976837-7.364384 2.82142-7.47198 2.666002-7.47198C2.570361-7.47198 2.295392-7.436115 2.199751-7.053549L1.733499-5.152677H.609714C.37061-5.152677 .263014-5.152677 .263014-4.925529C.263014-4.805978 .3467-4.805978 .573848-4.805978H1.637858L.848817-1.649813C.753176-1.231382 .71731-1.111831 .71731-.956413C.71731-.394521 1.111831 .119552 1.78132 .119552C2.988792 .119552 3.634371-1.625903 3.634371-1.709589C3.634371-1.78132 3.58655-1.817186 3.514819-1.817186C3.490909-1.817186 3.443088-1.817186 3.419178-1.769365C3.407223-1.75741 3.395268-1.745455 3.311582-1.554172C3.060523-.956413 2.510585-.119552 1.817186-.119552C1.458531-.119552 1.43462-.418431 1.43462-.681445C1.43462-.6934 1.43462-.920548 1.470486-1.06401L2.402989-4.805978Z'/>
+<path id='g2-117' d='M4.076712-.6934C4.23213-.02391 4.805978 .119552 5.092902 .119552C5.475467 .119552 5.762391-.131507 5.953674-.537983C6.156912-.968369 6.312329-1.673724 6.312329-1.709589C6.312329-1.769365 6.264508-1.817186 6.192777-1.817186C6.085181-1.817186 6.073225-1.75741 6.025405-1.578082C5.810212-.753176 5.595019-.119552 5.116812-.119552C4.758157-.119552 4.758157-.514072 4.758157-.669489C4.758157-.944458 4.794022-1.06401 4.913574-1.566127C4.99726-1.888917 5.080946-2.211706 5.152677-2.546451L5.642839-4.495143C5.726526-4.794022 5.726526-4.817933 5.726526-4.853798C5.726526-5.033126 5.583064-5.152677 5.403736-5.152677C5.057036-5.152677 4.97335-4.853798 4.901619-4.554919C4.782067-4.088667 4.136488-1.518306 4.052802-1.099875C4.040847-1.099875 3.574595-.119552 2.701868-.119552C2.080199-.119552 1.960648-.657534 1.960648-1.099875C1.960648-1.78132 2.295392-2.737733 2.606227-3.53873C2.749689-3.921295 2.809465-4.076712 2.809465-4.315816C2.809465-4.829888 2.438854-5.272229 1.865006-5.272229C.765131-5.272229 .32279-3.53873 .32279-3.443088C.32279-3.395268 .37061-3.335492 .454296-3.335492C.561893-3.335492 .573848-3.383313 .621669-3.550685C.908593-4.578829 1.374844-5.033126 1.829141-5.033126C1.948692-5.033126 2.139975-5.021171 2.139975-4.638605C2.139975-4.327771 2.008468-3.981071 1.829141-3.526775C1.303113-2.10411 1.243337-1.649813 1.243337-1.291158C1.243337-.071731 2.163885 .119552 2.654047 .119552C3.419178 .119552 3.837609-.406476 4.076712-.6934Z'/>
+<path id='g2-121' d='M3.144209 1.338979C2.82142 1.793275 2.355168 2.199751 1.769365 2.199751C1.625903 2.199751 1.052055 2.175841 .872727 1.625903C.908593 1.637858 .968369 1.637858 .992279 1.637858C1.350934 1.637858 1.590037 1.327024 1.590037 1.052055S1.362889 .681445 1.183562 .681445C.992279 .681445 .573848 .824907 .573848 1.41071C.573848 2.020423 1.08792 2.438854 1.769365 2.438854C2.964882 2.438854 4.172354 1.338979 4.507098 .011955L5.678705-4.65056C5.69066-4.710336 5.71457-4.782067 5.71457-4.853798C5.71457-5.033126 5.571108-5.152677 5.391781-5.152677C5.284184-5.152677 5.033126-5.104857 4.937484-4.746202L4.052802-1.231382C3.993026-1.016189 3.993026-.992279 3.897385-.860772C3.658281-.526027 3.263761-.119552 2.689913-.119552C2.020423-.119552 1.960648-.777086 1.960648-1.099875C1.960648-1.78132 2.283437-2.701868 2.606227-3.56264C2.737733-3.90934 2.809465-4.076712 2.809465-4.315816C2.809465-4.817933 2.450809-5.272229 1.865006-5.272229C.765131-5.272229 .32279-3.53873 .32279-3.443088C.32279-3.395268 .37061-3.335492 .454296-3.335492C.561893-3.335492 .573848-3.383313 .621669-3.550685C.908593-4.554919 1.362889-5.033126 1.829141-5.033126C1.936737-5.033126 2.139975-5.033126 2.139975-4.638605C2.139975-4.327771 2.008468-3.981071 1.829141-3.526775C1.243337-1.960648 1.243337-1.566127 1.243337-1.279203C1.243337-.143462 2.056289 .119552 2.654047 .119552C3.000747 .119552 3.431133 .011955 3.849564-.430386L3.861519-.418431C3.682192 .286924 3.56264 .753176 3.144209 1.338979Z'/>
+</defs>
+<g id='page1' transform='matrix(1.13 0 0 1.13 -63.986043 -62.281577)'>
+<use x='56.413267' y='73.369366' xlink:href='#g2-109'/>
+<use x='66.652534' y='73.369366' xlink:href='#g2-101'/>
+<use x='72.077974' y='73.369366' xlink:href='#g2-109'/>
+<use x='82.317241' y='73.369366' xlink:href='#g2-111'/>
+<use x='87.944679' y='73.369366' xlink:href='#g2-114'/>
+<use x='93.545152' y='73.369366' xlink:href='#g2-121'/>
+<use x='99.681804' y='73.369366' xlink:href='#g2-58'/>
+<use x='102.933465' y='73.369366' xlink:href='#g2-109'/>
+<use x='113.172732' y='73.369366' xlink:href='#g2-105'/>
+<use x='117.166164' y='73.369366' xlink:href='#g2-110'/>
+<use x='127.474599' y='73.369366' xlink:href='#g4-61'/>
+<use x='145.965287' y='58.425345' xlink:href='#g1-110'/>
+<use x='139.90008' y='62.011901' xlink:href='#g0-88'/>
+<use x='141.682474' y='87.206256' xlink:href='#g1-105'/>
+<use x='144.565614' y='87.206256' xlink:href='#g3-61'/>
+<use x='151.15212' y='87.206256' xlink:href='#g3-48'/>
+<use x='159.161195' y='73.369366' xlink:href='#g2-112'/>
+<use x='165.036338' y='73.369366' xlink:href='#g2-111'/>
+<use x='170.663775' y='73.369366' xlink:href='#g2-100'/>
+<use x='176.746468' y='73.369366' xlink:href='#g2-58'/>
+<use x='179.998129' y='73.369366' xlink:href='#g2-115'/>
+<use x='185.512135' y='73.369366' xlink:href='#g2-112'/>
+<use x='191.387278' y='73.369366' xlink:href='#g2-101'/>
+<use x='196.812718' y='73.369366' xlink:href='#g2-99'/>
+<use x='201.850707' y='73.369366' xlink:href='#g2-58'/>
+<use x='205.102368' y='73.369366' xlink:href='#g2-99'/>
+<use x='210.140357' y='73.369366' xlink:href='#g2-111'/>
+<use x='215.767794' y='73.369366' xlink:href='#g2-110'/>
+<use x='222.7554' y='73.369366' xlink:href='#g2-116'/>
+<use x='226.982559' y='73.369366' xlink:href='#g2-97'/>
+<use x='233.127504' y='73.369366' xlink:href='#g2-105'/>
+<use x='237.120936' y='73.369366' xlink:href='#g2-110'/>
+<use x='244.108542' y='73.369366' xlink:href='#g2-101'/>
+<use x='249.533982' y='73.369366' xlink:href='#g2-114'/>
+<use x='255.134455' y='73.369366' xlink:href='#g2-115'/>
+<use x='260.648461' y='73.369366' xlink:href='#g4-91'/>
+<use x='263.900122' y='73.369366' xlink:href='#g2-105'/>
+<use x='267.893554' y='73.369366' xlink:href='#g4-93'/>
+<use x='271.145216' y='73.369366' xlink:href='#g2-58'/>
+<use x='274.396877' y='73.369366' xlink:href='#g2-114'/>
+<use x='279.99735' y='73.369366' xlink:href='#g2-101'/>
+<use x='285.42279' y='73.369366' xlink:href='#g2-115'/>
+<use x='290.936796' y='73.369366' xlink:href='#g2-111'/>
+<use x='296.564234' y='73.369366' xlink:href='#g2-117'/>
+<use x='303.226673' y='73.369366' xlink:href='#g2-114'/>
+<use x='308.827147' y='73.369366' xlink:href='#g2-99'/>
+<use x='313.865135' y='73.369366' xlink:href='#g2-101'/>
+<use x='319.290575' y='73.369366' xlink:href='#g2-115'/>
+<use x='324.804581' y='73.369366' xlink:href='#g2-58'/>
+<use x='328.056242' y='73.369366' xlink:href='#g2-114'/>
+<use x='333.656716' y='73.369366' xlink:href='#g2-101'/>
+<use x='339.082156' y='73.369366' xlink:href='#g2-113'/>
+<use x='344.701312' y='73.369366' xlink:href='#g2-117'/>
+<use x='351.363752' y='73.369366' xlink:href='#g2-101'/>
+<use x='356.789192' y='73.369366' xlink:href='#g2-115'/>
+<use x='362.303198' y='73.369366' xlink:href='#g2-116'/>
+<use x='366.530357' y='73.369366' xlink:href='#g2-115'/>
+<use x='372.044363' y='73.369366' xlink:href='#g4-91'/>
+<use x='375.296024' y='73.369366' xlink:href='#g2-109'/>
+<use x='385.535291' y='73.369366' xlink:href='#g2-101'/>
+<use x='390.960731' y='73.369366' xlink:href='#g2-109'/>
+<use x='401.199998' y='73.369366' xlink:href='#g2-111'/>
+<use x='406.827436' y='73.369366' xlink:href='#g2-114'/>
+<use x='412.427909' y='73.369366' xlink:href='#g2-121'/>
+<use x='418.564561' y='73.369366' xlink:href='#g4-93'/>
+</g>
+</svg>
\ No newline at end of file
diff --git a/content/en/blog/_posts/2021-12-01-kubernetes-1.22-release-interview.md b/content/en/blog/_posts/2021-12-01-kubernetes-1.22-release-interview.md
new file mode 100644
index 0000000000..532a1252a0
--- /dev/null
+++ b/content/en/blog/_posts/2021-12-01-kubernetes-1.22-release-interview.md
@@ -0,0 +1,343 @@
+---
+layout: blog
+title: "Contribution, containers and cricket: the Kubernetes 1.22 release interview"
+date: 2021-12-01
+---
+
+**Author**: Craig Box (Google)
+
+The Kubernetes release train rolls on, and we look ahead to the release of 1.23 next week. [As is our tradition](https://www.google.com/search?q=%22release+interview%22+site%3Akubernetes.io%2Fblog), I'm pleased to bring you a look back at the process that brought us the previous version.
+
+The release team for 1.22 was led by [Savitha Raghunathan](https://twitter.com/coffeeartgirl), who was, at the time, a Senior Platform Engineer at MathWorks. [I spoke to Savitha](https://kubernetespodcast.com/episode/157-kubernetes-1.22/) on the [Kubernetes Podcast from Google](https://kubernetespodcast.com/), the weekly<super>*</super> show covering the Kubernetes and Cloud Native ecosystem.
+
+Our release conversations shine a light on the team that puts together each Kubernetes release. Make sure you [subscribe, wherever you get your podcasts](https://kubernetespodcast.com/subscribe/) so you catch the story of 1.23.
+
+And in case you're interested in why the show has been on a hiatus the last few weeks, all will be revealed in the next episode!
+
+*This transcript has been lightly edited and condensed for clarity.*
+
+---
+
+**CRAIG BOX: Welcome to the show, Savitha.**
+
+SAVITHA RAGHUNATHAN: Hey, Craig. Thanks for having me on the show. How are you today?
+
+**CRAIG BOX: I'm very well, thank you. I've interviewed a lot of people on the show, and you're actually the first person who's asked that of me.**
+
+SAVITHA RAGHUNATHAN: I'm glad. It's something that I always do. I just want to make sure the other person is good and happy.
+
+**CRAIG BOX: That's very kind of you. Thank you for kicking off on a wonderful foot there. I want to ask first of all — you grew up in Chennai. My association with Chennai is the [Super Kings cricket team](https://en.wikipedia.org/wiki/Chennai_Super_Kings). Was cricket part of your upbringing?**
+
+SAVITHA RAGHUNATHAN: Yeah. Actually, a lot. My mom loves watching cricket. I have a younger brother, and when we were growing up, we used to play cricket on the terrace. Everyone surrounding me, my best friends — and even now, my partner — loves watching cricket, too. Cricket is a part of my life.
+
+I stopped watching it a while ago, but I still enjoy a good game.
+
+**CRAIG BOX: It's probably a bit harder in the US. Everything's in a different time zone. I find, with my cricket team being on the other side of the world, that it's a lot easier when they're playing near me, as opposed to trying to keep up with what they're doing when they're playing at 3:00 in the morning.**
+
+SAVITHA RAGHUNATHAN: That is actually one of the things that made me lose touch with cricket. I'm going to give you a piece of interesting information. I never supported Chennai Super Kings. I always supported [Royal Challengers of Bangalore](https://en.wikipedia.org/wiki/Royal_Challengers_Bangalore).
+
+I once went to the stadium, and it was a match between the Chennai Super Kings and the RCB. I was the only one who was cheering whenever the RCB hit a 6, or when they were scoring. I got the stares of thousands of people looking at me. I'm like, "what are you doing?" My friends are like, "you're going to get us killed! Just stop screaming!"
+
+**CRAIG BOX: I hear you. As a New Zealander in the UK, there are a lot of international cricket matches I've been to where I am one of the few people dressed in the full beige kit. But I have to ask, why an affiliation with a different team?**
+
+SAVITHA RAGHUNATHAN: I'm not sure. When the IPL came out, I really liked Virat Kohli. He was playing for RCB at that time, and I think pretty much that's it.
+
+**CRAIG BOX: Well, what I know about the Chennai Super Kings is that their coach is New Zealand's finest batsmen and [air conditioning salesman](https://www.youtube.com/watch?v=vSZAaUCAclw), [Stephen Fleming](https://en.wikipedia.org/wiki/Stephen_Fleming).**
+
+SAVITHA RAGHUNATHAN: Oh, really?
+
+**CRAIG BOX: Yeah, he's a dead ringer for the guy who played the [yellow Wiggle](https://s1.reutersmedia.net/resources/r/?m=02&d=20061130&t=2&i=153531&w=&fh=545px&fw=&ll=&pl=&sq=&r=153531) back in the day.**
+
+SAVITHA RAGHUNATHAN: Oh, interesting. I remember the name, but I cannot put the picture and the name together. I stopped watching cricket once I moved to the States. Then, all my focus was on studies and extracurriculars. I have always been an introvert. The campus — it was a new thing for me — they had international festivals.
+
+And every week, they'd have some kind of new thing going on, so I'd go check them out. I wouldn't participate, but I did go out and check them out. That was a big feat for me around that time because a lot of people — and still, even now, a lot of people — they kind of scare me. I don't know how to make a conversation with everyone.
+
+I'll just go and say, "hi, how are you? OK, I'm good. I'm just going to move on". And I'll just go to the next person. And after two hours, I'm out of that place.
+
+**CRAIG BOX: Perhaps a pleasant side effect of the last 12 months — a lot fewer gatherings of people.**
+
+SAVITHA RAGHUNATHAN: Could be that, but I'm so excited about KubeCon. But when I think about it, I'm like "oh my God. There's going to be a lot of people. What am I going to do? I'm going to meet all my friends over there".
+
+Sometimes I have social anxiety like, what's going to happen?
+
+**CRAIG BOX: What's going to happen is you're going to ask them how they are at the beginning, and they're immediately going to be set at ease.**
+
+SAVITHA RAGHUNATHAN: *laughs* I hope so.
+
+**CRAIG BOX: Let's talk a little bit, then, about your transition from India to the US. You did your undergraduate degree in computer science at the SSN College of Engineering. How did you end up at Arizona State?**
+
+SAVITHA RAGHUNATHAN: I always wanted to pursue higher studies when I was in India, and I didn't have the opportunity immediately. Once I graduated from my school there, I went and I worked for a couple of years. My aim was always to get out of there and come here, do my graduate studies.
+
+Eventually, I want to do a PhD. I have an idea of what I want to do. I always wanted to keep studying. If there's an option that I could just keep studying and not do work or anything of that sort, I'd just pick that other one — I'll just keep studying.
+
+But unfortunately, you need money and other things to live and sustain in this world. So I'm like, OK, I'll take a break from studies, and I will work for a while.
+
+**CRAIG BOX: The road to success is littered with dreams of PhDs. I have a lot of friends who thought that that was the path they were going to take, and they've had a beautiful career and probably aren't going to go back to study. Did you use the [Matlab](https://en.wikipedia.org/wiki/MATLAB) software at all while you were going through your schooling?**
+
+SAVITHA RAGHUNATHAN: No, unfortunately. That is a question that everyone asks. I have not used Matlab. I haven't used it even now. I don't use it for work. I didn't have any necessity for my school work. I didn't have anything to do with Matlab. I never analysed, or did data processing, or anything, with Matlab. So unfortunately, no.
+
+Everyone asks me like, you're working at [MathWorks](https://en.wikipedia.org/wiki/MathWorks). Have you used Matlab? I'm like, no.
+
+**CRAIG BOX: Fair enough. Nor have I. But it's been around since the late 1970s, so I imagine there are a lot of people who will have come across it at some point. Do you work with a lot of people who have been working on it that whole time?**
+
+SAVITHA RAGHUNATHAN: Kind of. Not all the time, but I get to meet some folks who work on the product itself. Most of my interactions are with the infrastructure team and platform engineering teams at MathWorks. One other interesting fact is that when I joined the company — MathWorks has an extensive internal curriculum for training and learning, which I really love. They have an "Intro to Matlab" course, and that's on my bucket of things to do.
+
+It was like 500 years ago. I added it, and I never got to it. I'm like, OK, maybe this year at least I want to get to it and I want to learn something new. My partner used Matlab extensively. He misses it right now at his current employer. And he's like, "you have the entire licence! You have access to the entire suite and you haven't used it?" I'm like, "no!"
+
+**CRAIG BOX: Well, I have bad news for the idea of you doing a PhD, I'm sorry.**
+
+SAVITHA RAGHUNATHAN: Another thing is that none of my family knew about the company MathWorks and Matlab. The only person who knew was my younger brother. He was so proud. He was like, "oh my God".
+
+When he was 12 years old, he started getting involved in robotics and all that stuff. That's how he got introduced to Matlab. He goes absolutely bananas for the swag. So all the t-shirts, all the hoodies — any swag that I get from MathWorks goes to him, without saying.
+
+Over the five, six years, the things that I've got — there was only one sweatshirt that I kept for myself. Everything else I've just given to him. And he cherishes it. He's the only one in my family who knew about Matlab and MathWorks.
+
+Now, everyone knows, because I'm working there. They were initially like, I don't even know that company name. Is it like Amazon? I'm like, no, we make software that can send people to the moon. And we also make software that can do amazing robotic surgeries and even make a car drive on its own. That's something that I take immense pride in.
+
+I know I don't directly work on the product, but I'm enabling the people who are creating the product. I'm really, really proud of that.
+
+**CRAIG BOX: I think Jeff Bezos is working on at least two out of three of those disciplines that you mentioned before, so it's maybe a little bit like Amazon. One thing I've always thought about Matlab is that, because it's called Matlab, it solves that whole problem where [Americans call it math, and the rest of the world call it maths](https://www.grammar.com/math_vs._maths). Why do Americans think there's only one math?**
+
+SAVITHA RAGHUNATHAN: Definitely. I had trouble — growing up in India, it's always British English. And I had so much trouble when I moved here. So many things changed.
+
+One of the things is maths. I always got used to writing maths, physics, and everything.
+
+**CRAIG BOX: They don't call it "physic" in the US, do they?**
+
+SAVITHA RAGHUNATHAN: No, no, they don't. Luckily, they don't. That still stays "physics". But math — I had trouble. It's maths. Even when you do the full abbreviations like mathematics and you are still calling it math, I'm like, mm.
+
+**CRAIG BOX: They can do the computer science abbreviation thing and call it math-7-S or whatever the number of letters is.**
+
+SAVITHA RAGHUNATHAN: Just like Kubernetes. K-8-s.
+
+**CRAIG BOX: Your path to Kubernetes is through MathWorks. They started out as a company making software which was distributed in a physical sense — boxed copies, if you will. I understand now there is a cloud version. Can I assume that that is where the two worlds intersect?**
+
+SAVITHA RAGHUNATHAN: Kind of. I have interaction with the team that supports Matlab on the cloud, but I don't get to work with them on a day-to-day basis. They use Docker containers, and they are building the platform using Kubernetes. So yeah, a little bit of that.
+
+**CRAIG BOX: So what exactly is the platform that you are engineering day to day?**
+
+SAVITHA RAGHUNATHAN: Providing Kubernetes as a platform, obviously — that goes without saying — to some of the internal development teams. In the future we might expand it to more teams within the company. That is a focus area right now, so that's what we are doing. In the process, we might even get to work with the people who are deploying Matlab on the cloud, which is exciting.
+
+**CRAIG BOX: Now, your path to contribution to Kubernetes, you've said before, was through [fixing a 404 error on the Kubernetes.io website](https://github.com/kubernetes/website/pull/15588). Do you remember what the page was?**
+
+SAVITHA RAGHUNATHAN: I do. I was going to something for work, and I came across this changelog. In Kubernetes there's a nice page — once you got to the release page, there would be a long list of changelogs.
+
+One of the things that I fixed was, the person who worked on the feature had changed their GitHub handle, and that wasn't reflected on this page. So that was my first. I got curious and clicked on the links. One of the links was the handle, and that went to a 404. And I was like "Yeah, I'll just fix that. They have done all the hard work. They can get the credit that's due".
+
+It was easy. It wasn't overwhelming for me to pick it up as my first issue. Before that I logged on around Kubernetes for about six to eight months without doing anything because it was just a lot.
+
+**CRAIG BOX: One of the other things that you said about your initial contribution is that you had to learn how to use Git. As a very powerful tool, I find Git is a high barrier to entry for even contributing code to a project. When you want to contribute a blog post or documentation or a fix like you did before, I find it almost impossible to think how a new user would come along and do that. What was your process? Do you think that there's anything we can do to make that barrier lower for new contributors?**
+
+SAVITHA RAGHUNATHAN: Of course. There are more and more tutorials available these days. There is a new contributor workshop. They actually have a [GitHub workflow section](https://www.kubernetes.dev/docs/guide/github-workflow/), [how to do a pull request](https://www.kubernetes.dev/docs/guide/pull-requests/) and stuff like that. I know a couple of folks from SIG Docs that are working on which Git commands that you need, or how to get to writing something small and getting it committed. But more tutorials or more links to intro to Git would definitely help.
+
+The thing is also, someone like a documentation writer — they don't actually want to know the entirety of Git. Honestly, it's an ocean. I don't know how to do it. Most of the time, I still ask for help even though I work with Git on a day to day basis. There are several articles and a lot of help is available already within the community. Maybe we could just add a couple more to [kubernetes.dev](https://kubernetes.dev/). That is an amazing site for all the new contributors and existing contributors who want to build code, who want to write documentation.
+
+We could just add a tutorial there like, "hey, don't know Git, you are new to Git? You just need to know these main things".
+
+**CRAIG BOX: I find it a shame, to be honest, that people need to use Git for that, by comparison to Wikipedia where you can come along, and even though it might be written in Markdown or something like it, it seems like the barrier is a lot lower. Similar to you, I always have to look up anything more complicated than the five or six Git commands that I use on a day to day basis. Even to do simple things, I basically just go and follow a recipe which I find on the internet.**
+
+SAVITHA RAGHUNATHAN: This is how I got introduced to one of the amazing mentors in Kubernetes. Everyone knows him by his handle, Dims. It was my second PR to the Kubernetes website, and I made a mistake. I destroyed the Git history. I could not push my reviews and comments — I addressed them. I couldn't push them back.
+
+My immediate thought was to delete it and recreate, do another pull request. But then I was like, "what happens to others who have already put effort into reviewing them?" I asked for help, and Dims was there.
+
+I would say I just got lucky he was there. And he was like, "OK, let me walk you through". We did troubleshooting through Slack messages. I copied and pasted all the errors. Every single command that he said, I copied and pasted. And then he was like, "OK, run this one. Try this one. And do this one".
+
+Finally, I got it fixed. So you know what I did? I went and I stored the command history somewhere local for the next time when I run into this problem. Luckily, I haven't. But I find the contributors so helpful. They are busy. They have a lot of things to do, but they take moments to stop and help someone who's new.
+
+That is also another part of the reason why I stay — I want to contribute more. It's mainly the community. It's the Kubernetes community. I know you asked me about Git, and I just took the conversation to the Kubernetes community. That's how my brain works.
+
+**CRAIG BOX: A lot of people in the community do that and think that's fantastic, obviously, people like Dims who are just floating around on Slack and seem to have endless time. I don't know how they do it.**
+
+SAVITHA RAGHUNATHAN: I really want to know the secret for endless time. If I only had 48 hours in a day. I would sleep for 16 hours, and I would use the rest of the time for doing the things that I want.
+
+**CRAIG BOX: If I had a chance to sleep up to 48 hours a day, I think it'd be a lot more than 16.**
+
+**Now, one of the areas that you've been contributing to Kubernetes is in the release team. In 1.18, you were a shadow for the docs role. You led that role in 1.19. And you were a release lead shadow for versions 1,20 and 1.21 before finally leading this release, 1.22, which we will talk about soon.**
+
+**How did you get involved? And how did you decide which roles to take as you went through that process?**
+
+SAVITHA RAGHUNATHAN: That is a topic I love to talk about. This was fresh when I started learning about Kubernetes and using Kubernetes at work. And I got so much help from the community, I got interested in contributing back.
+
+At the first KubeCon that I attended in 2018, in Seattle, they had a speed mentoring session. Now they call it "pod mentoring". I went to the session, and said, "hey, I want to contribute. I don't know where to start". And I got a lot of information on how to get started.
+
+One of the places was SIG Release and the release team. I came back and diligently attended all the SIG Release meetings for four to six months. And in between, I applied to the Kubernetes release team — 1.14 and 1.15. I didn't get through. So I took a little bit of a break, and I focused on doing some documentation work. Then I applied for 1.18.
+
+Since I was already working on some kinds of — not like full fledged "documentation" documentation, I still don't write. I eventually want to write something really nice and full fledged documentation like other awesome folks.
+
+**CRAIG BOX: You'll need a lot more than 48 hours in your day to do that.**
+
+SAVITHA RAGHUNATHAN: *laughing* That's how I applied for the docs role, because I know a little bit about the website. I've done a few pull requests and commits. That's how I got started. I applied for that one role, and I got selected for the 1.18 team. That's how my journey just took off.
+
+And the next release, I was leading the documentation team. And as everyone knows, the pandemic hit. It was one of the longest releases. I could lean back on the community. I would just wait for the release team meetings.
+
+It was my way of coping with the pandemic. It took my mind off. It was actually more than a release team, they were people. They were all people first, and we took care of each other. So it felt good.
+
+And then, I became a release lead shadow for 1.20 and 1.21 because I wanted to know more. I wanted to learn more. I wasn't ready. I still don't feel ready, but I have led 1.22. So if I could do it, anyone could do it.
+
+**CRAIG BOX: How much of this work is day job?**
+
+SAVITHA RAGHUNATHAN: I am lucky to be blessed with an awesome team. I do most of my work after work, but there have been times where I have to take meetings and attend to immediate urgent stuff. During the time of exception requests and stuff like that, I take a little bit of time from my work.
+
+My team has been wonderful: they support me in all possible ways, and the management as well. Other than the meetings, I don't do much of the work during the day job. It just takes my focus and attention away too much, and I end up having to spend a lot of time sitting in front of the computer, which I don't like.
+
+Before the pandemic I had a good work life balance. I'd just go to work at 7:00, 7:30, and I'd be back by 4 o'clock. I never touched my laptop ever again. I left all work behind when I came home. So right now, I'm still learning how to get through.
+
+I try to limit the amount of open source work that I do during work time. The release lead shadow and the release lead job — they require a lot of time, effort. So on average, I'd be spending two to three hours post work time on the release activities.
+
+**CRAIG BOX: Before the pandemic, everyone was worried that if we let people work from home, they wouldn't work enough. I think the opposite has actually happened, is that now we're worried that if we let people work from home, they will just get on the computer in the morning and you'll have to pry it out of their hands at midnight.**
+
+SAVITHA RAGHUNATHAN: Yeah, I think the productivity has increased at least twofold, I would say, for everyone, once they started working from home.
+
+**CRAIG BOX: But at the expense of work-life balance, though, because as you say, when you're sitting in the same chair in front of, perhaps, the same computer doing your MathWorks work and then your open source work, they kind of can blur into one perhaps?**
+
+SAVITHA RAGHUNATHAN: That is a challenge. I face it every day. But so many others are also facing it. I implemented a few little tricks to help me. When I used to come back home from work, the first thing I would do is remove my watch. That was an indication that OK, I'm done.
+
+That's the thing that I still do. I just remove my watch, and I just keep it right where my workstation is. And I just close the door so that I never look back. Even going past the room, I don't get a glimpse of my work office. I start implementing tiny little things like that to avoid burnout.
+
+I think I'm still facing a little bit of burnout. I don't know if I have fully recovered from it. I constantly feel like I need a vacation. And I could just take a vacation for like a month or two. If it's possible, I will just do it.
+
+**CRAIG BOX: I do hope that travel opens up for everyone as an opportunity because I know that, for a lot of people, it's not so much they've been working from home but they've been living at work. The idea of taking vacation effectively means, well, I've been stuck in the same place, if I've been under a lockdown. It's hard to justify that. It will be good as things improve worldwide for us to be able to start focusing more on mental health and perhaps getting away from the "everything room," as I sometimes call it.**
+
+SAVITHA RAGHUNATHAN: I'm totally looking forward to it. I hope that travel opens up and I could go home and I could meet my siblings and my aunt and my parents.
+
+**CRAIG BOX: Catch a cricket match?**
+
+SAVITHA RAGHUNATHAN: Yeah. Probably yes, if I have company and if there is anything interesting happening around the time. I don't mind going back to the Chepauk Stadium and catching a match or two.
+
+**CRAIG BOX: Let's turn now to the recently released [Kubernetes 1.22](https://kubernetes.io/blog/2021/08/04/kubernetes-1-22-release-announcement/). Congratulations on the launch.**
+
+SAVITHA RAGHUNATHAN: Thank you.
+
+**CRAIG BOX: Each launch comes with a theme and a mascot or a logo. What is the theme for this release?**
+
+SAVITHA RAGHUNATHAN: The theme for the release is reaching new peaks. I am fascinated with a lot of space travel and chasing stars, the Milky Way. The best place to do that is over the top of a mountain. So that is the release logo, basically. It's a mountain — Mount Rainier. On top of that, there is a Kubernetes flag, and it's overlooking the Milky Way.
+
+It's also symbolic that with every release, that we are achieving something new, bigger, and better, and we are making the release awesome. So I just wanted to incorporate that into the team as to say, we are achieving new things with every release. That's the "reaching new peaks" theme.
+
+**CRAIG BOX: The last couple of releases have both been incrementally larger — as a result, perhaps, of the fact there are now only three releases per year rather than four. There were also changes to the process, where the work has been driven a lot more by the SIGs than by the release team having to go and ask the SIGs what was going on. What can you say about the size and scope of the 1.22 release?**
+
+SAVITHA RAGHUNATHAN: The 1.22 release is the largest release to date. We have 56 enhancements if I'm not wrong, and we have a good amount of features that's graduated as stable. You can now say that Kubernetes as a project has become more mature because you see new features coming in. At the same time, you see the features that weren't used getting deprecated — we have like three deprecations in this release.
+
+Aside from that fact, we also have a big team that's supporting one of the longest releases. This is the first official release cycle after the cadence KEP got approved. Officially, we are at four months, even though 1.19 was six months, and 1.21 was like 3 and 1/2 months, I think, this is the first one after the official KEP approval.
+
+**CRAIG BOX: What changes did you make to the process knowing that you had that extra month?**
+
+SAVITHA RAGHUNATHAN: One of the things the community had asked for is more time for development. We tried to incorporate that in the release schedule. We had about six weeks between the enhancements freeze and the code freeze. That's one.
+
+It might not be visible to everyone, but one of the things that I wanted to make sure of was the health of the team — since it was a long, long release, we had time to plan out, and not have everyone work during the weekends or during their evenings or time off. That actually helped everyone keep their sanity, and also in making good progress and delivering good results at the end of the release. That's one of the process improvements that I'd call out.
+
+We got better by making a post during the exception request process. Everyone works around the world. People from the UK start a little earlier than the people in the US East Coast. The West Coast starts three hours later than the East Coast. We used to make a post every Friday evening saying "hey, we actually received this many requests. We have addressed a number of them. We are waiting on a couple, or whatever. All the release team members are done for the day. We will see you around on Monday. Have a good weekend." Something like that.
+
+We set the expectations from the community as well. We understand things are really important and urgent, but we are done. This gave everyone their time back. They don't have to worry over the weekend thinking like, hey, what's happening? What's happening in the release? They could spend time with their family, or they could do whatever they want to do, like go on a hike, or just sit and watch TV.
+
+There have been weekends that I just did that. I just binge-watched a series. That's what I did.
+
+**CRAIG BOX: Any recommendations?**
+
+SAVITHA RAGHUNATHAN: I'm a big fan of Marvel, so I have watched the new [Loki](https://en.wikipedia.org/wiki/Loki_(TV_series)), which I really love. Loki is one of my favourite characters in Marvel. And I also liked [WandaVision](https://en.wikipedia.org/wiki/WandaVision). That was good, too.
+
+**CRAIG BOX: I've not seen Loki yet, but I've heard it described as the best series of Doctor Who in the last few years.**
+
+SAVITHA RAGHUNATHAN: Really?
+
+**CRAIG BOX: There must be an element of time-travelling in there if that's how people are describing it.**
+
+SAVITHA RAGHUNATHAN: You should really go and watch it whenever you have time. It's really amazing. I might go back and watch it again because I might have missed bits and pieces. That always happens in Marvel movies and the episodes; you need to watch them a couple of times to catch, "oh, this is how they relate".
+
+**CRAIG BOX: Yes, the mark of good media that you want to immediately go back and watch it again once you've seen it.**
+
+**Let's look now at some of the new features in Kubernetes 1.22. A couple of things that have graduated to general availability — server-side apply, external credential providers, a couple of new security features — the replacement for pod security policy has been announced, and seccomp is now available by default.**
+
+**Do you have any favourite features in 1.22 that you'd like to discuss?**
+
+SAVITHA RAGHUNATHAN: I have a lot of them. All my favourite features are related to security. OK, one of them is not security, but a major theme of my favourite KEPs is security. I'll start with the [default seccomp](https://github.com/kubernetes/enhancements/issues/2413). I think it will help make clusters secure by default, and may assist in preventing more vulnerabilities, which means less headaches for the cluster administrators.
+
+This is close to my heart because the base of the MathWorks platform is provisioning Kubernetes clusters. Knowing that they are secure by default will definitely provide me with some good sleep. And also, I'm paranoid about security most of the time. I'm super interested in making everything secure. It might get in the way of making the users of the platform angry because it's not usable in any way.
+
+My next one is [rootless Kubelet](https://github.com/kubernetes/enhancements/issues/2033). That feature's going to enable the cluster admin, the platform developers to deploy Kubernetes components to run in a user namespace. And I think that is also a great addition.
+
+Like you mention, the most awaited drop in for the PSP replacement is here. It's [pod admission control](https://github.com/kubernetes/enhancements/issues/2579). It lets cluster admins apply the pod security standards. And I think it's just not related to the cluster admins. I might have to go back and check on that. Anyone can probably use it — the developers and the admins alike.
+
+It also supports various modes, which is most welcome. There are times where you don't want to just cut the users off because they are trying to do something which is not securely correct. You just want to warn them, hey, this is what you are doing. This might just cause a security issue later, so you might want to correct it. But you just don't want to cut them off from using the platform, or them trying to attempt to do something — deploy their workload and get their day-to-day job done. That is something that I really like, that it also supports a warning mechanism.
+
+Another one which is not security is [node swap support](https://github.com/kubernetes/enhancements/issues/2400). Kubernetes didn't have support for swap before, but it is taken into consideration now. This is an alpha feature. With this, you can take advantage of the swap, which is provisioned on the Linux VMs.
+
+Some of the workloads — when they are deployed, they might need a lot of swap for the start-up — example, like Node and Java applications, which I just took out of their KEP user stories. So if anyone's interested, they can go and look in the KEP. That's useful. And it also increases the node stability and whatnot. So I think it's going to be beneficial for a lot of folks.
+
+We know how Java and containers work. I think it has gotten better, but five years ago, it was so hard to get a Java application to fit in a small container. It always needed a lot of memory, swap, and everything to start up and run. I think this will help the users and help the admins and keep the cost low, and it will tie into so many other things as well. I'm excited about that feature.
+
+Another feature that I want to just call out — I don't use Windows that much, but I just want to give a shout out to the folks who are doing an amazing job bringing all the Kubernetes features to Windows as well, to give a seamless experience.
+
+One of the things is [Windows privileged containers](https://github.com/kubernetes/enhancements/issues/1981). I think it went alpha this release. And that is a wonderful addition, if you ask me. It can take advantage of whatever that's happening on the Linux side. And they can also port it over and see, OK, I can now run Windows containers in a privileged mode.
+
+So whatever they are trying to achieve, they can do it. So that's a noteworthy mention. I need to give a shout out for the folks who work and make things happen in the Windows ecosystem as well.
+
+**CRAIG BOX: One of the things that's great about the release process is the continuity between groups and teams. There's always an emeritus advisor who was a lead from a previous release. One thing that I always ask when I do these interviews is, what is the advice that you give to the next person? When [we talked to Nabarun for the 1.21 interview](https://kubernetespodcast.com/episode/146-kubernetes-1.21/), he said that his advice to you would be "do, delegate, and defer". Figure out what you can do, figure out what you can ask other people to do, and figure out what doesn't need to be done. Were you able to take that advice on board?**
+
+SAVITHA RAGHUNATHAN: Yeah, you won't believe it. [I have it right here stuck to my monitor.](https://twitter.com/KubernetesPod/status/1423188323347177474/photo/3)
+
+**CRAIG BOX: Next to your Git cheat sheet?**
+
+SAVITHA RAGHUNATHAN: *laughs* Absolutely. I just have it stuck there. I just took a look at it.
+
+**CRAIG BOX: Someone that you will have been able to delegate and defer to is Rey Lejano from Rancher Labs and SUSE, who is the release lead to be for 1.23.**
+
+SAVITHA RAGHUNATHAN: I want to tell Rey to beware of the team's mental health. Schedule in such a way that it avoids burnout. Check in, and make sure that everyone is doing good. If they need some kind of help, create a safe space where they can actually ask for help, if they want to step back, if they need someone to cover.
+
+I think that is most important. The releases are successful based on the thousands and thousands of contributors. But when it comes to a release team, you need to have a healthy team where people feel they are in a good place and they just want to make good contributions, which means they want to be heard. That's one thing that I want to tell Rey.
+
+Also collaborate and learn from each other. I constantly learn. I think the team was 39 folks, including me. Every day I learned something or the other, even starting from how to interact.
+
+Sometimes I have learned more leadership skills from my release lead shadows. They are awesome, and they are mature. I constantly learn from them, and I admire them a lot.
+
+It also helps to have good, strong individuals in the team who can step up and help when needed. For example, unfortunately, we lost one of our teammates after the start of the release cycle. That was tragic. His name was [Peeyush Gupta](https://github.com/cncf/memorials/blob/main/peeyush-gupta.md). He was an awesome and wonderful human — very warm.
+
+I didn't get more of a chance to interact with him. I had exchanged a few Slack messages, but I got his warm personality. I just want to take a couple of seconds to remember him. He was awesome.
+
+After we lost him, we had this strong person from the team step up and lead the communications, who had never been a part of the release team before at all. He was a shadow for the first time. His name is Jesse Butler. So he stepped up, and he just took it away. He ran the comms show for 1.22.
+
+That's what the community is about. You take care of team members, and the team will take care of you. So that's one other thing that I want to let Rey know, and maybe whoever — I think it's applicable overall.
+
+**CRAIG BOX: There's a link to a [family education fund for Peeyush Gupta](https://milaap.org/fundraisers/support-peeyush-gupta-family-education), which you can find in the show notes.**
+
+**Five releases in a row now you've been a member of the release team. Will you be putting your feet up now for 1.23?**
+
+SAVITHA RAGHUNATHAN: I am going to take a break for a while. In the future, I want to be contributing, if not the release team, the SIG Release and the release management effort. But right now, I have been there for five releases. And I feel like, OK, I just need a little bit of fresh air.
+
+And also the pandemic and the burnout has caught up, so I'm going to take a break from certain contributions. You will see me in the future. I will be around, but I might not be actively participating in the release team activities. I will be around the community. Anyone can reach out to me. They all know my Slack, so they can just reach out to me via Slack or Twitter.
+
+**CRAIG BOX: Yes, your Twitter handle is CoffeeArtGirl. Does that mean that you'll be spending some time working on your lattes?**
+
+SAVITHA RAGHUNATHAN: I am very bad at making lattes. The coffee art means that I used to [make art with coffee](https://twitter.com/KubernetesPod/status/1423188323347177474/photo/1). You get  instant coffee powder and just mix it with water. You get the colours, very beautiful brown colours. I used to make art using that.
+
+And I love coffee. So I just combined all the words together. And I had to come up with it in a span of one hour or so because I was joining this 'meet our contributors' panel. And Paris asked me, "do you have a Twitter handle?" I was planning to create one, but I didn't have the time.
+
+I'm like, well, let me just think what I could just come up with real quick. So I just came up with that. So that's the story behind my Twitter handle. Everyone's interested in it. You are not the first person you have asked me or mentioned about it. So many others are like, why coffee art?
+
+**CRAIG BOX: And you are also interested in art with perhaps other materials?**
+
+SAVITHA RAGHUNATHAN: Yes. My interests keep changing. I used to do pebble art. It's just collecting pebbles from wherever I go, and I used to paint on them. I used to use watercolour, but I want to come back to watercolour sometime.
+
+My recent interests are coloured pencils, which came back. When I was very young, I used to do a lot of coloured pencils. And then I switched to watercolours and oil painting. So I just go around in circles.
+
+One of the hobbies that I picked up during a pandemic is crochet. I made a scarf for Mother's Day. My mum and my dad were here last year. They got stuck because of the pandemic, and they couldn't go back home. So they stayed with me for 10 months. That is the jackpot that I had, that I got to spend so much time with my parents after I moved to the US.
+
+**CRAIG BOX: And they got rewarded with a scarf.**
+
+SAVITHA RAGHUNATHAN: Yeah.
+
+**CRAIG BOX: One to share between them.**
+
+SAVITHA RAGHUNATHAN: I started making a blanket for my dad. And it became so heavy, I might have to just pick up some lighter yarn. I still don't know the differences between different kinds of yarns, but I'm getting better.
+
+I started out because I wanted to make these little toys. They call them [amigurumi](https://en.wikipedia.org/wiki/Amigurumi) in the crochet world. I wanted to make them. That's why I started out. I'm trying. I made [a little cat](https://twitter.com/KubernetesPod/status/1423188323347177474/photo/2) which doesn't look like a cat, but it is a cat. I have to tell everyone that it's a cat so that they don't mock me later, but.
+
+**CRAIG BOX: It's an artistic interpretation of a cat.**
+
+SAVITHA RAGHUNATHAN: It definitely is!
+
+---
+
+_[Savitha Raghunathan](https://twitter.com/coffeeartgirl), now a Senior Software Engineer at Red Hat, served as the Kubernetes 1.22 release team lead._
+
+_You can find the [Kubernetes Podcast from Google](http://www.kubernetespodcast.com/) at [@KubernetesPod](https://twitter.com/KubernetesPod) on Twitter, and you can [subscribe](https://kubernetespodcast.com/subscribe/) so you never miss an episode._
diff --git a/content/en/blog/_posts/2021-12-07-kubernetes-release-1.23.md b/content/en/blog/_posts/2021-12-07-kubernetes-release-1.23.md
new file mode 100644
index 0000000000..f0bce232dd
--- /dev/null
+++ b/content/en/blog/_posts/2021-12-07-kubernetes-release-1.23.md
@@ -0,0 +1,189 @@
+---
+layout: blog
+title: 'Kubernetes 1.23: The Next Frontier'
+date: 2021-12-07
+slug: kubernetes-1-23-release-announcement
+evergreen: true
+---
+
+**Authors:** [Kubernetes 1.23 Release Team](https://github.com/kubernetes/sig-release/blob/master/releases/release-1.23/release-team.md)
+
+We’re pleased to announce the release of Kubernetes 1.23, the last release of 2021!
+
+This release consists of 47 enhancements: 11 enhancements have graduated to stable, 17 enhancements are moving to beta, and 19 enhancements are entering alpha. Also, 1 feature has been deprecated.     
+
+## Major Themes
+
+### Deprecation of FlexVolume
+
+FlexVolume is deprecated. The out-of-tree CSI driver is the recommended way to write volume drivers in Kubernetes. See [this doc](https://github.com/kubernetes/community/blob/master/sig-storage/volume-plugin-faq.md#kubernetes-volume-plugin-faq-for-storage-vendors) for more information. Maintainers of FlexVolume drivers should implement a CSI driver and move users of FlexVolume to CSI. Users of FlexVolume should move their workloads to the CSI driver.
+
+### Deprecation of klog specific flags
+
+To simplify the code base, several [logging flags were marked as deprecated](https://kubernetes.io/docs/concepts/cluster-administration/system-logs/#klog) in Kubernetes 1.23. The code which implements them will be removed in a future release, so users of those need to start replacing the deprecated flags with some alternative solutions.
+
+### Software Supply Chain SLSA Level 1 Compliance in the Kubernetes Release Process
+
+Kubernetes releases now generate provenance attestation files describing the staging and release phases of the release process. Artifacts are now verified as they are handed over from one phase to the next. This final piece completes the work needed to comply with Level 1 of the [SLSA security framework](https://slsa.dev/) (Supply-chain Levels for Software Artifacts).
+
+### IPv4/IPv6 Dual-stack Networking graduates to GA
+
+[IPv4/IPv6 dual-stack networking](https://github.com/kubernetes/enhancements/tree/master/keps/sig-network/563-dual-stack) graduates to GA. Since 1.21, Kubernetes clusters have been enabled to support dual-stack networking by default. In 1.23, the `IPv6DualStack` feature gate is removed. The use of dual-stack networking is not mandatory. Although clusters are enabled to support dual-stack networking, Pods and Services continue to default to single-stack. To use dual-stack networking Kubernetes nodes must have routable IPv4/IPv6 network interfaces, a dual-stack capable CNI network plugin must be used, Pods must be configured to be dual-stack and Services must have their `.spec.ipFamilyPolicy` field set to either `PreferDualStack` or `RequireDualStack`.
+
+### HorizontalPodAutoscaler v2 graduates to GA
+
+The HorizontalPodAutscaler `autoscaling/v2` stable API moved to GA in 1.23. The HorizontalPodAutoscaler `autoscaling/v2beta2` API has been deprecated.
+
+### Generic Ephemeral Volume feature graduates to GA
+
+The generic ephemeral volume feature moved to GA in 1.23. This feature allows any existing storage driver that supports dynamic provisioning to be used as an ephemeral volume with the volume’s lifecycle bound to the Pod. All StorageClass parameters for volume provisioning and all features supported with PersistentVolumeClaims are supported.
+
+### Skip Volume Ownership change graduates to GA
+
+The feature to configure volume permission and ownership change policy for Pods moved to GA in 1.23. This allows users to skip recursive permission changes on mount and speeds up the pod start up time.
+
+### Allow CSI drivers to opt-in to volume ownership and permission change graduates to GA
+
+The feature to allow CSI Drivers to declare support for fsGroup based permissions graduates to GA in 1.23.
+
+### PodSecurity graduates to Beta
+
+[PodSecurity](https://kubernetes.io/docs/concepts/security/pod-security-admission/) moves to Beta. `PodSecurity` replaces the deprecated `PodSecurityPolicy` admission controller. `PodSecurity` is an admission controller that enforces Pod Security Standards on Pods in a Namespace based on specific namespace labels that set the enforcement level. In 1.23, the `PodSecurity` feature gate is enabled by default.
+
+### Container Runtime Interface (CRI) v1 is default
+
+The Kubelet now supports the CRI `v1` API, which is now the project-wide default. 
+If a container runtime does not support the `v1` API, Kubernetes will fall back to the `v1alpha2` implementation. There is no intermediate action required by end-users, because `v1` and `v1alpha2` do not differ in their implementation. It is likely that `v1alpha2` will be removed in one of the future Kubernetes releases to be able to develop `v1`.
+
+### Structured logging graduate to Beta
+
+Structured logging reached its Beta milestone. Most log messages from kubelet and kube-scheduler have been converted. Users are encouraged to try out JSON output or parsing of the structured text format and provide feedback on possible solutions for the open issues, such as handling of multi-line strings in log values.
+
+### Simplified Multi-point plugin configuration for scheduler
+
+The kube-scheduler is adding a new, simplified config field for Plugins to allow multiple extension points to be enabled in one spot. The new `multiPoint` plugin field is intended to simplify most scheduler setups for administrators. Plugins that are enabled via `multiPoint` will automatically be registered for each individual extension point that they implement. For example, a plugin that implements Score and Filter extensions can be simultaneously enabled for both. This means entire plugins can be enabled and disabled without having to manually edit individual extension point settings. These extension points can now be abstracted away due to their irrelevance for most users.
+
+### CSI Migration updates
+
+CSI Migration enables the replacement of existing in-tree storage plugins such as `kubernetes.io/gce-pd` or `kubernetes.io/aws-ebs` with a corresponding CSI driver. 
+If CSI Migration is working properly, Kubernetes end users shouldn’t notice a difference. 
+After migration, Kubernetes users may continue to rely on all the functionality of in-tree storage plugins using the existing interface.
+- CSI Migration feature is turned on by default but stays in Beta for GCE PD, AWS EBS, and Azure Disk in 1.23.
+- CSI Migration is introduced as an Alpha feature for Ceph RBD and Portworx in 1.23.
+
+### Expression language validation for CRD is alpha
+
+Expression language validation for CRD is in alpha starting in 1.23. If the `CustomResourceValidationExpressions` feature gate is enabled, custom resources will be validated by validation rules using the [Common Expression Language (CEL)](https://github.com/google/cel-spec).
+
+### Server Side Field Validation is Alpha
+
+If the `ServerSideFieldValidation` feature gate is enabled starting 1.23, users will receive warnings from the server when they send Kubernetes objects in the request that contain unknown or duplicate fields. Previously unknown fields and all but the last duplicate fields would be dropped by the server.
+
+With the feature gate enabled, we also introduce the `fieldValidation` query parameter so that users can specify the desired behavior of the server on a per request basis. Valid values for the `fieldValidation` query parameter are:
+
+- Ignore (default when feature gate is disabled, same as pre-1.23 behavior of dropping/ignoring unkonwn fields)
+- Warn (default when feature gate is enabled).
+- Strict (this will fail the request with an Invalid Request error)
+
+### OpenAPI v3 is Alpha
+
+If the `OpenAPIV3` feature gate is enabled starting 1.23, users will be able to request the OpenAPI v3.0 spec for all Kubernetes types. OpenAPI v3 aims to be fully transparent and includes support for a set of fields that are dropped when publishing OpenAPI v2: `default`, `nullable`, `oneOf`, `anyOf`. A separate spec is published per Kubernetes group version (at the `$cluster/openapi/v3/apis/<group>/<version>` endpoint) for improved performance and discovery, for all group versions can be found at the `$cluster/openapi/v3` path.
+
+## Other Updates
+
+### Graduated to Stable
+
+- [IPv4/IPv6 Dual-Stack Support](https://github.com/kubernetes/enhancements/issues/563)
+- [Skip Volume Ownership Change](https://github.com/kubernetes/enhancements/issues/695)
+- [TTL After Finished Controller](https://github.com/kubernetes/enhancements/issues/592)
+- [Config FSGroup Policy in CSI Driver object](https://github.com/kubernetes/enhancements/issues/1682)
+- [Generic Ephemeral Inline Volumes](https://github.com/kubernetes/enhancements/issues/1698)
+- [Defend Against Logging Secrets via Static Analysis](https://github.com/kubernetes/enhancements/issues/1933)
+- [Namespace Scoped Ingress Class Parameters](https://github.com/kubernetes/enhancements/issues/2365)
+- [Reducing Kubernetes Build Maintenance](https://github.com/kubernetes/enhancements/issues/2420)
+- [Graduate HPA API to GA](https://github.com/kubernetes/enhancements/issues/2702)
+
+
+### Major Changes
+
+- [Priority and Fairness for API Server Requests](https://github.com/kubernetes/enhancements/issues/1040)
+
+### Release Notes
+
+Check out the full details of the Kubernetes 1.23 release in our [release notes](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.23.md).
+
+### Availability
+
+Kubernetes 1.23 is available for download on [GitHub](https://github.com/kubernetes/kubernetes/releases/tag/v1.23.0). To get started with Kubernetes, check out these [interactive tutorials](https://kubernetes.io/docs/tutorials/) or run local Kubernetes clusters using Docker container “nodes” with [kind](https://kind.sigs.k8s.io/). You can also easily install 1.23 using [kubeadm](https://kubernetes.io/docs/setup/independent/create-cluster-kubeadm/). 
+
+### Release Team
+
+This release was made possible by a very dedicated group of individuals, who came together as a team to deliver technical content, documentation, code, and a host of other components that go into every Kubernetes release.
+
+A huge thank you to the release lead Rey Lejano for leading us through a successful release cycle, and to everyone else on the release team for supporting each other, and working so hard to deliver the 1.23 release for the community.
+
+### Release Theme and Logo 
+
+**Kubernetes 1.23: The Next Frontier**
+
+{{< figure src="/images/blog/2021-12-07-kubernetes-release-1.23/kubernetes-1.23.png" alt="" class="release-logo" >}}
+
+
+"The Next Frontier" theme represents the new and graduated enhancements in 1.23, Kubernetes' history of Star Trek references, and the growth of community members in the release team.
+
+Kubernetes has a history of Star Trek references. The original codename for Kubernetes within Google is Project 7, a reference to Seven of Nine from Star Trek Voyager. And of course Borg was the name for the predecessor to Kubernetes. "The Next Frontier" theme continues the Star Trek references. "The Next Frontier" is a fusion of two Star Trek titles, Star Trek V: The Final Frontier and Star Trek the Next Generation.
+
+"The Next Frontier" represents a line in the SIG Release charter, "Ensure there is a consistent group of community members in place to support the release process across time." With each release team, we grow the community with new release team members and for many it's their first contribution in their open source frontier.
+
+Reference: https://kubernetes.io/blog/2015/04/borg-predecessor-to-kubernetes/
+Reference: https://github.com/kubernetes/community/blob/master/sig-release/charter.md
+
+The Kubernetes 1.23 release logo continues with the theme's Star Trek reference. Every star is a helm from the Kubernetes logo. The ship represents the collective teamwork of the release team.
+
+Rey Lejano designed the logo. 
+
+### User Highlights
+
+- [Findings of the latest CNCF End User Technology Radar](https://www.cncf.io/announcements/2021/09/22/cncf-end-user-technology-radar-provides-insights-into-devsecops/) were themed around DevSecOps. Check out the [Radar Page](https://radar.cncf.io/) for the full details and findings.
+- Learn about how [end user Aegon Life India migrated core processes from its traditional monolith to a microservice-based architecture](https://www.cncf.io/case-studies/aegon-life-india/) in its effort to transform into a leading digital service company.
+- Utilizing multiple cloud native projects, [Seagate engineered edgerX to run Real-time Analytics at the Edge](https://www.cncf.io/case-studies/seagate/). 
+- Check out how [Zambon worked with SparkFabrik to develop 16 websites, with cloud native technologies, to enable stakeholders to easily update content while maintaining a consistent brand identity](https://www.cncf.io/case-studies/zambon/).
+- Using Kubernetes, [InfluxData was able to deliver on the promise of multi-cloud, multi-region service availability](https://www.cncf.io/case-studies/influxdata/) by creating a true cloud abstraction layer that allows for the seamless delivery of InfluxDB as a single application to multiple global clusters across three major cloud providers.
+
+    
+### Ecosystem Updates
+
+- [KubeCon + CloudNativeCon NA 2021](https://www.cncf.io/events/kubecon-cloudnativecon-north-america-2021/) was held in October 2021, both online and in person. All talks are [now available on-demand](https://www.youtube.com/playlist?list=PLj6h78yzYM2Nd1U4RMhv7v88fdiFqeYAP) for anyone that would like to catch up!
+- [Kubernetes and Cloud Native Essentials Training and KCNA Certification are now generally available for enrollment and scheduling](https://www.cncf.io/announcements/2021/11/18/kubernetes-and-cloud-native-essentials-training-and-kcna-certification-now-available/). Additionally, a new online training course, [Kubernetes and Cloud Native Essentials (LFS250)](https://www.cncf.io/announcements/2021/10/13/entry-level-kubernetes-certification-to-help-advance-cloud-careers/), has been released to both prepare individuals for entry-level cloud roles and to sit for the KCNA exam.
+- [New resources are now available from the Inclusive Naming Initiative](https://www.cncf.io/announcements/2021/10/13/inclusive-naming-initiative-announces-new-community-resources-for-a-more-inclusive-future/), including an Inclusive Strategies for Open Source (LFC103) course, Language Evaluation Framework, and Implementation Path.
+
+    
+### Project Velocity
+
+The [CNCF K8s DevStats](https://k8s.devstats.cncf.io/d/12/dashboards?orgId=1&refresh=15m) project aggregates a number of interesting data points related to the velocity of Kubernetes and various sub-projects. This includes everything from individual contributions to the number of companies that are contributing, and is an illustration of the depth and breadth of effort that goes into evolving this ecosystem.
+
+In the v1.23 release cycle, which ran for 16 weeks (August 23 to December 7), we saw contributions from [1032 companies](https://k8s.devstats.cncf.io/d/9/companies-table?orgId=1&var-period_name=v1.22.0%20-%20now&var-metric=contributions) and [1084 individuals](https://k8s.devstats.cncf.io/d/66/developer-activity-counts-by-companies?orgId=1&var-period_name=v1.22.0%20-%20now&var-metric=contributions&var-repogroup_name=Kubernetes&var-country_name=All&var-companies=All&var-repo_name=kubernetes%2Fkubernetes).
+
+### Event Update
+
+- [KubeCon + CloudNativeCon China 2021](https://www.lfasiallc.com/kubecon-cloudnativecon-open-source-summit-china/) is happening this month from December 9 - 11. After taking a break last year, the event will be virtual this year and includes 105 sessions. Check out the event schedule [here](https://www.lfasiallc.com/kubecon-cloudnativecon-open-source-summit-china/program/schedule/).
+- KubeCon + CloudNativeCon Europe 2022 will take place in Valencia, Spain, May 4 – 7, 2022! You can find more information about the conference and registration on the [event site](https://events.linuxfoundation.org/archive/2021/kubecon-cloudnativecon-europe/).
+- Kubernetes Community Days has upcoming events scheduled in Pakistan, Brazil, Chengdu, and in Australia.
+
+### Upcoming Release Webinar
+
+Join members of the Kubernetes 1.23 release team on January 4, 2022 to learn about the major features of this release, as well as deprecations and removals to help plan for upgrades. For more information and registration, visit the [event page](https://community.cncf.io/e/mrey9h/) on the CNCF Online Programs site.
+
+### Get Involved
+
+The simplest way to get involved with Kubernetes is by joining one of the many [Special Interest Groups](https://github.com/kubernetes/community/blob/master/sig-list.md) (SIGs) that align with your interests. Have something you’d like to broadcast to the Kubernetes community? Share your voice at our weekly [community meeting](https://github.com/kubernetes/community/tree/master/communication), and through the channels below:
+
+- Find out more about contributing to Kubernetes at the [Kubernetes Contributors](https://www.kubernetes.dev/) website
+- Follow us on Twitter [@Kubernetesio](https://twitter.com/kubernetesio) for the latest updates
+- Join the community discussion on [Discuss](https://discuss.kubernetes.io/)
+- Join the community on [Slack](http://slack.k8s.io/)
+- Post questions (or answer questions) on [Stack Overflow](http://stackoverflow.com/questions/tagged/kubernetes)
+- Share your Kubernetes [story](https://docs.google.com/a/linuxfoundation.org/forms/d/e/1FAIpQLScuI7Ye3VQHQTwBASrgkjQDSS5TP0g3AXfFhwSM9YpHgxRKFA/viewform)
+- Read more about what’s happening with Kubernetes on the [blog](https://kubernetes.io/blog/)
+- Learn more about the [Kubernetes Release Team](https://github.com/kubernetes/sig-release/tree/master/release-team)
+
diff --git a/content/en/blog/_posts/2021-12-08-dual-stack-networking-ga.md b/content/en/blog/_posts/2021-12-08-dual-stack-networking-ga.md
new file mode 100644
index 0000000000..4955bf3c0a
--- /dev/null
+++ b/content/en/blog/_posts/2021-12-08-dual-stack-networking-ga.md
@@ -0,0 +1,56 @@
+---
+layout: blog
+title: 'Kubernetes 1.23: Dual-stack IPv4/IPv6 Networking Reaches GA'
+date: 2021-12-08
+slug: dual-stack-networking-ga
+---
+
+**Author:** Bridget Kromhout (Microsoft)
+
+"When will Kubernetes have IPv6?" This question has been asked with increasing frequency ever since alpha support for IPv6 was first added in k8s v1.9. While Kubernetes has supported IPv6-only clusters since v1.18, migration from IPv4 to IPv6 was not yet possible at that point. At long last, [dual-stack IPv4/IPv6 networking](https://github.com/kubernetes/enhancements/tree/master/keps/sig-network/563-dual-stack/) has reached general availability (GA) in Kubernetes v1.23.
+
+What does dual-stack networking mean for you? Let’s take a look…
+
+
+## Service API updates
+
+[Services](/docs/concepts/services-networking/service/) were single-stack before 1.20, so using both IP families meant creating one Service per IP family. The user experience was simplified in 1.20, when Services were re-implemented to allow both IP families, meaning a single Service can handle both IPv4 and IPv6 workloads. Dual-stack load balancing is possible between services running any combination of IPv4 and IPv6.
+
+The Service API now has new fields to support dual-stack, replacing the single ipFamily field.
+* You can select your choice of IP family by setting `ipFamilyPolicy` to one of three options: SingleStack, PreferDualStack, or RequireDualStack. A service can be changed between single-stack and dual-stack (within some limits).
+* Setting `ipFamilies` to a list of families assigned allows you to set the order of families used.
+* `clusterIPs` is inclusive of the previous `clusterIP` but allows for multiple entries, so it’s no longer necessary to run duplicate services, one in each of the two IP families. Instead, you can assign cluster IP addresses in both IP families.
+
+Note that Pods are also dual-stack. For a given pod, there is no possibility of setting multiple IP addresses in the same family.
+
+
+## Default behavior remains single-stack
+
+
+Starting in 1.20 with the re-implementation of dual-stack services as alpha, the underlying networking for Kubernetes has included dual-stack whether or not a cluster was configured with the feature flag to enable dual-stack.
+
+Kubernetes 1.23 removed that feature flag as part of graduating the feature to stable. Dual-stack networking is always available if you want to configure it. You can set your cluster network to operate as single-stack IPv4, as single-stack IPv6, or as dual-stack IPv4/IPv6.
+
+While Services are set according to what you configure, Pods default to whatever the CNI plugin sets. If your CNI plugin assigns single-stack IPs, you will have single-stack unless `ipFamilyPolicy` specifies PreferDualStack or RequireDualStack. If your CNI plugin assigns dual-stack IPs, `pod.status.PodIPs` defaults to dual-stack.
+
+Even though dual-stack is possible, it is not mandatory to use it. Examples in the documentation show the variety possible in [dual-stack service configurations](/docs/concepts/services-networking/dual-stack/#dual-stack-service-configuration-scenarios).
+
+
+## Try dual-stack right now
+
+While upstream Kubernetes now supports [dual-stack networking](/docs/concepts/services-networking/dual-stack/) as a GA or stable feature, each provider’s support of dual-stack Kubernetes may vary. Nodes need to be provisioned with routable IPv4/IPv6 network interfaces. Pods need to be dual-stack. The [network plugin](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/) is what assigns the IP addresses to the Pods, so it's the network plugin being used for the cluster that needs to support dual-stack. Some Container Network Interface (CNI) plugins support dual-stack, as does kubenet.
+
+Ecosystem support of dual-stack is increasing; you can create [dual-stack clusters with kubeadm](/docs/setup/production-environment/tools/kubeadm/dual-stack-support/), try a [dual-stack cluster locally with KIND](https://kind.sigs.k8s.io/docs/user/configuration/#ip-family), and deploy dual-stack clusters in cloud providers (after checking docs for CNI or kubenet availability).
+
+## Get involved with SIG Network
+
+SIG-Network wants to learn from community experiences with dual-stack networking to find out more about evolving needs and your use cases. The [SIG-network update video from KubeCon NA 2021](https://www.youtube.com/watch?v=uZ0WLxpmBbY&list=PLj6h78yzYM2Nd1U4RMhv7v88fdiFqeYAP&index=4) summarizes the SIG’s recent updates, including dual-stack going to stable in 1.23.
+
+The current SIG-Network [KEPs](https://github.com/orgs/kubernetes/projects/10) and [issues](https://github.com/kubernetes/kubernetes/issues?q=is%3Aopen+is%3Aissue+label%3Asig%2Fnetwork) on GitHub illustrate the SIG’s areas of emphasis. The [dual-stack API server](https://github.com/kubernetes/enhancements/issues/2438) is one place to consider contributing.
+
+[SIG-Network meetings](https://github.com/kubernetes/community/tree/master/sig-network#meetings) are a friendly, welcoming venue for you to connect with the community and share your ideas. Looking forward to hearing from you!
+
+## Acknowledgments
+
+The dual-stack networking feature represents the work of many Kubernetes contributors. Thanks to all who contributed code, experience reports, documentation, code reviews, and everything in between. Bridget Kromhout details this community effort in [Dual-Stack Networking in Kubernetes](https://containerjournal.com/features/dual-stack-networking-in-kubernetes/). KubeCon keynotes by Tim Hockin & Khaled (Kal) Henidak in 2019 ([The Long Road to IPv4/IPv6 Dual-stack Kubernetes](https://www.youtube.com/watch?v=o-oMegdZcg4)) and by Lachlan Evenson in 2021 ([And Here We Go: Dual-stack Networking in Kubernetes](https://www.youtube.com/watch?v=lVrt8F2B9CM)) talk about the dual-stack journey, spanning five years and a great many lines of code.
+
diff --git a/content/en/blog/_posts/2021-12-09-pod-security-admission-beta.md b/content/en/blog/_posts/2021-12-09-pod-security-admission-beta.md
new file mode 100644
index 0000000000..f1eec3ef76
--- /dev/null
+++ b/content/en/blog/_posts/2021-12-09-pod-security-admission-beta.md
@@ -0,0 +1,782 @@
+---
+layout: blog
+title: 'Kubernetes 1.23: Pod Security Graduates to Beta'
+date: 2021-12-09
+slug: pod-security-admission-beta
+---
+
+**Authors:** Jim Angel (Google), Lachlan Evenson (Microsoft)
+
+With the release of Kubernetes v1.23, [Pod Security admission](/docs/concepts/security/pod-security-admission/) has now entered beta. Pod Security is a [built-in](/docs/reference/access-authn-authz/admission-controllers/) admission controller that evaluates pod specifications against a predefined set of [Pod Security Standards](/docs/concepts/security/pod-security-standards/) and determines whether to `admit` or `deny` the pod from running.
+
+Pod Security is the successor to [PodSecurityPolicy](/docs/concepts/security/pod-security-policy/) which was deprecated in the v1.21 release, and will be removed in Kubernetes v1.25. In this article, we cover the key concepts of Pod Security along with how to use it. We hope that cluster administrators and developers alike will use this new mechanism to enforce secure defaults for their workloads.
+
+## Why Pod Security
+
+The overall aim of Pod Security is to let you isolate workloads. You can run a cluster that runs different workloads and, without adding extra third-party tooling, implement controls that require Pods for a workload to restrict their own privileges to a defined bounding set.
+
+Pod Security overcomes key shortcomings of Kubernetes' existing, but deprecated, PodSecurityPolicy (PSP) mechanism:
+
+   * Policy authorization model — challenging to deploy with controllers.
+   * Risks around switching — a lack of dry-run/audit capabilities made it hard to enable PodSecurityPolicy.
+   * Inconsistent and Unbounded API — the large configuration surface and evolving constraints led to a complex and confusing API.
+
+The shortcomings of PSP made it very difficult to use which led the community to reevaluate whether or not a better implementation could achieve the same goals. One of those goals was to provide an out-of-the-box solution to apply security best practices. Pod Security ships with predefined Pod Security levels that a cluster administrator can configure to meet the desired security posture.
+
+It's important to note that Pod Security doesn't have complete feature parity with the deprecated PodSecurityPolicy. Specifically, it doesn't have the ability to mutate or change Kubernetes resources to auto-remediate a policy violation on behalf of the user. Additionally, it doesn't provide fine-grained control over each allowed field and value within a pod specification or any other Kubernetes resource that you may wish to evaluate. If you need more fine-grained policy control then take a look at these [other](/docs/concepts/security/pod-security-standards/#faq) projects which support such use cases.
+
+Pod Security also adheres to Kubernetes best practices of declarative object management by denying resources that violate the policy. This requires resources to be updated in source repositories, and tooling to be updated prior to being deployed to Kubernetes.
+
+## How Does Pod Security Work?
+    
+Pod Security is a built-in [admission controller](/docs/reference/access-authn-authz/admission-controllers/) starting with Kubernetes v1.22, but can also be run as a standalone [webhook](/docs/concepts/security/pod-security-admission/#webhook). Admission controllers function by intercepting requests in the Kubernetes API server prior to persistence to storage. They can either `admit` or `deny` a request. In the case of Pod Security, pod specifications will be evaluated against a configured policy in the form of a Pod Security Standard. This means that security sensitive fields in a pod specification will only be allowed to have [specific](h/docs/concepts/security/pod-security-standards/#profile-details) values. 
+
+## Configuring Pod Security
+    
+### Pod Security Standards
+    
+In order to use Pod Security we first need to understand [Pod Security Standards](/docs/concepts/security/pod-security-standards/). These standards define three different policy levels that range from permissive to restrictive. These levels are as follows:
+   * `privileged` — open and unrestricted
+   * `baseline` — Covers known privilege escalations while minimizing restrictions
+   * `restricted` — Highly restricted, hardening against known and unknown privilege escalations. May cause compatibility issues
+
+Each of these policy levels define which fields are restricted within a pod specification and the allowed values. Some of the fields restricted by these policies include:
+   * `spec.securityContext.sysctls`
+   * `spec.hostNetwork`
+   * `spec.volumes[*].hostPath`
+   * `spec.containers[*].securityContext.privileged`
+
+Policy levels are applied via labels on Namespace resources, which allows for granular per-namespace policy selection. The AdmissionConfiguration in the API server can also be configured to set cluster-wide default levels and exemptions.
+
+### Policy modes
+
+Policies are applied in a specific mode. Multiple modes (with different policy levels) can be set on the same namespace. Here is a list of modes:
+   * `enforce` — Any Pods that violate the policy will be rejected
+   * `audit` — Violations will be recorded as an annotation in the audit logs, but don't affect whether the pod is allowed.
+   * `warn` — Violations will send a warning message back to the user, but don't affect whether the pod is allowed.
+
+In addition to modes you can also pin the policy to a specific version (for example v1.22). Pinning to a specific version allows the behavior to remain consistent if the policy definition changes in future Kubernetes releases.
+
+## Hands on demo
+
+### Prerequisites
+
+- [KinD](https://kind.sigs.k8s.io/docs/user/quick-start/#installation)
+- [kubectl](/docs/tasks/tools/)
+- [Docker](https://docs.docker.com/get-docker/) or [Podman](https://podman.io/getting-started/installation) container runtime & CLI
+
+### Deploy a kind cluster
+
+```shell
+kind create cluster --image kindest/node:v1.23.0
+```
+
+It might take a while to start and once it's started it might take a minute or so before the node becomes ready.
+
+```shell
+kubectl cluster-info --context kind-kind
+```
+
+Wait for the node STATUS to become ready.
+
+```shell
+kubectl get nodes
+```
+
+The output is similar to this:
+
+```
+NAME                 STATUS   ROLES                  AGE   VERSION
+kind-control-plane   Ready    control-plane,master   54m   v1.23.0
+```
+
+### Confirm Pod Security is enabled
+
+The best way to [confirm the API's default enabled plugins](/docs/reference/access-authn-authz/admission-controllers/#which-plugins-are-enabled-by-default) is to check the Kubernetes API container's help arguments.
+
+```shell
+kubectl -n kube-system exec kube-apiserver-kind-control-plane -it -- kube-apiserver -h | grep "default enabled ones"
+```
+
+The output is similar to this:
+
+```
+...
+      --enable-admission-plugins strings
+admission plugins that should be enabled in addition
+to default enabled ones (NamespaceLifecycle, LimitRanger,
+ServiceAccount, TaintNodesByCondition, PodSecurity, Priority,
+DefaultTolerationSeconds, DefaultStorageClass,
+StorageObjectInUseProtection, PersistentVolumeClaimResize,
+RuntimeClass, CertificateApproval, CertificateSigning,
+CertificateSubjectRestriction, DefaultIngressClass,
+MutatingAdmissionWebhook, ValidatingAdmissionWebhook,
+ResourceQuota).
+...
+```
+
+`PodSecurity` is listed in the group of default enabled admission plugins.
+
+If using a cloud provider, or if you don't have access to the API server, the best way to check would be to run a quick end-to-end test:
+
+```shell
+kubectl create namespace verify-pod-security
+kubectl label namespace verify-pod-security pod-security.kubernetes.io/enforce=restricted
+# The following command does NOT create a workload (--dry-run=server)
+kubectl -n verify-pod-security run test --dry-run=server --image=busybox --privileged
+kubectl delete namespace verify-pod-security
+```
+
+The output is similar to this:
+
+```
+Error from server (Forbidden): pods "test" is forbidden: violates PodSecurity "restricted:latest": privileged (container "test" must not set securityContext.privileged=true), allowPrivilegeEscalation != false (container "test" must set securityContext.allowPrivilegeEscalation=false), unrestricted capabilities (container "test" must set securityContext.capabilities.drop=["ALL"]), runAsNonRoot != true (pod or container "test" must set securityContext.runAsNonRoot=true), seccompProfile (pod or container "test" must set securityContext.seccompProfile.type to "RuntimeDefault" or "Localhost")
+```
+
+### Configure Pod Security
+
+Policies are applied to a namespace via labels. These labels are as follows:
+   * `pod-security.kubernetes.io/<MODE>: <LEVEL>` (required to enable pod security)
+   * `pod-security.kubernetes.io/<MODE>-version: <VERSION>` (*optional*, defaults to latest)
+
+A specific version can be supplied for each enforcement mode. The version pins the policy to the version that was shipped as part of the Kubernetes release. Pinning to a specific Kubernetes version allows for deterministic policy behavior while allowing flexibility for future updates to Pod Security Standards. The possible <MODE(S)> are `enforce`, `audit` and `warn`.
+
+### When to use `warn`?
+
+The typical uses for `warn` are to get ready for a future change where you want to enforce a different policy. The most two common cases would be:
+
+* `warn` at the same level but a different version (e.g. pin `enforce` to *restricted+v1.23* and `warn` at *restricted+latest*)
+* `warn` at a stricter level (e.g. `enforce` baseline, `warn` restricted)
+
+It's not recommended to use `warn` for the exact same level+version of the policy as `enforce`. In the admission sequence, if `enforce` fails, the entire sequence fails before evaluating the `warn`.
+
+First, create a namespace called `verify-pod-security` if not created earlier. For the demo, `--overwrite` is used when labeling to allow repurposing a single namespace for multiple examples.
+
+```shell
+kubectl create namespace verify-pod-security
+```
+
+### Deploy demo workloads
+
+Each workload represents a higher level of security that would not pass the profile that comes after it.
+
+For the following examples, use the `busybox` container runs a `sleep` command for 1 million seconds (≅11 days) or until deleted. Pod Security is not interested in which container image you chose, but rather the Pod level settings and their implications for security.
+
+### Privileged level and workload
+
+For the privileged pod, use the [privileged policy](/docs/concepts/security/pod-security-standards/#privileged). This allows the process inside a container to gain new processes (also known as "privilege escalation") and can be dangerous if untrusted.
+
+First, let's apply a restricted Pod Security level for a test.
+
+```shell
+# enforces a "restricted" security policy and audits on restricted
+kubectl label --overwrite ns verify-pod-security \
+  pod-security.kubernetes.io/enforce=restricted \
+  pod-security.kubernetes.io/audit=restricted
+```
+
+Next, try to deploy a privileged workload in the namespace.
+
+```shell
+cat <<EOF | kubectl -n verify-pod-security apply -f -
+apiVersion: v1
+kind: Pod
+metadata:
+  name: busybox-privileged
+spec:
+  containers:
+  - name: busybox
+    image: busybox
+    args:
+    - sleep
+    - "1000000"
+    securityContext:
+      allowPrivilegeEscalation: true
+EOF
+```
+
+The output is similar to this:
+
+```
+Error from server (Forbidden): error when creating "STDIN": pods "busybox-privileged" is forbidden: violates PodSecurity "restricted:latest": allowPrivilegeEscalation != false (container "busybox" must set securityContext.allowPrivilegeEscalation=false), unrestricted capabilities (container "busybox" must set securityContext.capabilities.drop=["ALL"]), runAsNonRoot != true (pod or container "busybox" must set securityContext.runAsNonRoot=true), seccompProfile (pod or container "busybox" must set securityContext.seccompProfile.type to "RuntimeDefault" or "Localhost")
+```
+
+Now let's apply the privileged Pod Security level and try again.
+
+```shell
+# enforces a "privileged" security policy and warns / audits on baseline
+kubectl label --overwrite ns verify-pod-security \
+  pod-security.kubernetes.io/enforce=privileged \
+  pod-security.kubernetes.io/warn=baseline \
+  pod-security.kubernetes.io/audit=baseline
+```
+
+```shell
+cat <<EOF | kubectl -n verify-pod-security apply -f -
+apiVersion: v1
+kind: Pod
+metadata:
+  name: busybox-privileged
+spec:
+  containers:
+  - name: busybox
+    image: busybox
+    args:
+    - sleep
+    - "1000000"
+    securityContext:
+      allowPrivilegeEscalation: true
+EOF
+```
+
+The output is similar to this:
+
+```
+pod/busybox-privileged created
+```
+
+We can run `kubectl -n verify-pod-security get pods` to verify it is running. Clean up with:
+
+```shell
+kubectl -n verify-pod-security delete pod busybox-privileged
+```
+
+### Baseline level and workload
+
+The [baseline policy](/docs/concepts/security/pod-security-standards/#baseline) demonstrates sensible defaults while preventing common container exploits.
+
+Let's revert back to a restricted Pod Security level for a quick test.
+
+```shell
+# enforces a "restricted" security policy and audits on restricted
+kubectl label --overwrite ns verify-pod-security \
+  pod-security.kubernetes.io/enforce=restricted \
+  pod-security.kubernetes.io/audit=restricted
+```
+
+Apply the workload.
+
+```shell
+cat <<EOF | kubectl -n verify-pod-security apply -f -
+apiVersion: v1
+kind: Pod
+metadata:
+  name: busybox-baseline
+spec:
+  containers:
+  - name: busybox
+    image: busybox
+    args:
+    - sleep
+    - "1000000"
+    securityContext:
+      allowPrivilegeEscalation: false
+      capabilities:
+        add:
+          - NET_BIND_SERVICE
+          - CHOWN
+EOF
+```
+
+The output is similar to this:
+
+```
+Error from server (Forbidden): error when creating "STDIN": pods "busybox-baseline" is forbidden: violates PodSecurity "restricted:latest": unrestricted capabilities (container "busybox" must set securityContext.capabilities.drop=["ALL"]; container "busybox" must not include "CHOWN" in securityContext.capabilities.add), runAsNonRoot != true (pod or container "busybox" must set securityContext.runAsNonRoot=true), seccompProfile (pod or container "busybox" must set securityContext.seccompProfile.type to "RuntimeDefault" or "Localhost")
+```
+
+Let's apply the baseline Pod Security level and try again.
+
+```shell
+# enforces a "baseline" security policy and warns / audits on restricted
+kubectl label --overwrite ns verify-pod-security \
+  pod-security.kubernetes.io/enforce=baseline \
+  pod-security.kubernetes.io/warn=restricted \
+  pod-security.kubernetes.io/audit=restricted
+```
+
+```shell
+cat <<EOF | kubectl -n verify-pod-security apply -f -
+apiVersion: v1
+kind: Pod
+metadata:
+  name: busybox-baseline
+spec:
+  containers:
+  - name: busybox
+    image: busybox
+    args:
+    - sleep
+    - "1000000"
+    securityContext:
+      allowPrivilegeEscalation: false
+      capabilities:
+        add:
+          - NET_BIND_SERVICE
+          - CHOWN
+EOF
+```
+
+The output is similar to the following. Note that the warnings match the error message from the test above, but the pod is still successfully created.
+
+```
+Warning: would violate PodSecurity "restricted:latest": unrestricted capabilities (container "busybox" must set securityContext.capabilities.drop=["ALL"]; container "busybox" must not include "CHOWN" in securityContext.capabilities.add), runAsNonRoot != true (pod or container "busybox" must set securityContext.runAsNonRoot=true), seccompProfile (pod or container "busybox" must set securityContext.seccompProfile.type to "RuntimeDefault" or "Localhost")
+pod/busybox-baseline created
+```
+
+Remember, we set the `verify-pod-security` namespace to `warn` based on the restricted profile. We can run `kubectl -n verify-pod-security get pods` to verify it is running.  Clean up with:
+
+```shell
+kubectl -n verify-pod-security delete pod busybox-baseline
+```
+
+### Restricted level and workload
+
+The [restricted policy](/docs/concepts/security/pod-security-standards/#restricted) requires rejection of all privileged parameters. It is the most secure with a trade-off for complexity.
+The restricted policy allows containers to add the `NET_BIND_SERVICE` capability only.
+
+While we've already tested restricted as a blocking function, let's try to get something running that meets all the criteria.
+
+First we need to reapply the restricted profile, for the last time.
+
+```shell
+# enforces a "restricted" security policy and audits on restricted
+kubectl label --overwrite ns verify-pod-security \
+  pod-security.kubernetes.io/enforce=restricted \
+  pod-security.kubernetes.io/audit=restricted
+```
+
+```shell
+cat <<EOF | kubectl -n verify-pod-security apply -f -
+apiVersion: v1
+kind: Pod
+metadata:
+  name: busybox-restricted
+spec:
+  containers:
+  - name: busybox
+    image: busybox
+    args:
+    - sleep
+    - "1000000"
+    securityContext:
+      allowPrivilegeEscalation: false
+      capabilities:
+        add:
+          - NET_BIND_SERVICE
+EOF
+```
+
+The output is similar to this:
+
+```
+Error from server (Forbidden): error when creating "STDIN": pods "busybox-restricted" is forbidden: violates PodSecurity "restricted:latest": unrestricted capabilities (container "busybox" must set securityContext.capabilities.drop=["ALL"]), runAsNonRoot != true (pod or container "busybox" must set securityContext.runAsNonRoot=true), seccompProfile (pod or container "busybox" must set securityContext.seccompProfile.type to "RuntimeDefault" or "Localhost")
+```
+
+This is because the restricted profile explicitly requires that certain values are set to the most secure parameters.
+
+By requiring explicit values, manifests become more declarative and your entire security model can shift left. With the `restricted` level of enforcement, a company could audit their cluster's compliance based on permitted manifests.
+
+Let's fix each warning resulting in the following file:
+
+```shell
+cat <<EOF | kubectl -n verify-pod-security apply -f -
+apiVersion: v1
+kind: Pod
+metadata:
+  name: busybox-restricted
+spec:
+  containers:
+  - name: busybox
+    image: busybox
+    args:
+    - sleep
+    - "1000000"
+    securityContext:
+      seccompProfile:
+        type: RuntimeDefault
+      runAsNonRoot: true
+      allowPrivilegeEscalation: false
+      capabilities:
+        drop:
+          - ALL
+        add:
+          - NET_BIND_SERVICE
+EOF
+```
+
+The output is similar to this:
+
+```
+pod/busybox-restricted created
+```
+
+Run `kubectl -n verify-pod-security get pods` to verify it is running. The output is similar to this:
+
+```
+NAME               READY   STATUS                       RESTARTS   AGE
+busybox-restricted   0/1     CreateContainerConfigError   0          2m26s
+```
+
+Let's figure out why the container is not starting with `kubectl -n verify-pod-security describe pod busybox-restricted`. The output is similar to this:
+
+```
+Events:
+  Type     Reason     Age                    From               Message
+  ----     ------     ----                   ----               -------
+  Warning  Failed     2m29s (x8 over 3m55s)  kubelet            Error: container has runAsNonRoot and image will run as root (pod: "busybox-restricted_verify-pod-security(a4c6a62d-2166-41a9-b288-20df17cf5c90)", container: busybox)
+```
+
+To solve this, set the effective UID (`runAsUser`) to a non-zero (root) value or use the `nobody` UID (65534).
+
+```shell
+# delete the original pod
+kubectl -n verify-pod-security delete pod busybox-restricted
+
+# create the pod again with new runAsUser
+cat <<EOF | kubectl -n verify-pod-security apply -f -
+apiVersion: v1
+kind: Pod
+metadata:
+  name: busybox-restricted
+spec:
+  securityContext:
+    runAsUser: 65534
+  containers:
+  - name: busybox
+    image: busybox
+    args:
+    - sleep
+    - "1000000"
+    securityContext:
+      seccompProfile:
+        type: RuntimeDefault
+      runAsNonRoot: true
+      allowPrivilegeEscalation: false
+      capabilities:
+        drop:
+          - ALL
+        add:
+          - NET_BIND_SERVICE
+EOF
+```
+
+Run `kubectl -n verify-pod-security get pods` to verify it is running. The output is similar to this:
+
+```
+NAME                 READY   STATUS    RESTARTS   AGE
+busybox-restricted   1/1     Running   0          25s
+```
+
+Clean up the demo (restricted pod and namespace) with:
+
+```shell
+kubectl delete namespace verify-pod-security
+```
+
+At this point, if you wanted to dive deeper into linux permissions or what is permitted for a certain container, exec into the control plane and play around with `containerd` and `crictl inspect`.
+
+```shell
+# if using docker, shell into the control plane
+docker exec -it kind-control-plane bash
+
+# list running containers
+crictl ps
+
+# inspect each one by container ID
+crictl inspect <CONTAINER ID>
+```
+
+### Applying a cluster-wide policy
+
+In addition to applying labels to namespaces to configure policy you can also configure cluster-wide policies and exemptions using the AdmissionConfiguration resource. 
+
+Using this resource, policy definitions are applied cluster-wide by default and any policy that is applied via namespace labels will take precedence. 
+
+There is no runtime configurable API for the `AdmissionConfiguration` configuration file so a cluster administrator would need to specify a path to the file below via the `--admission-control-config-file` flag on the API server. 
+
+In the following resource we are enforcing the baseline policy and warning and auditing the baseline policy. We are also making the kube-system namespace exempt from this policy.
+
+It's not recommended to alter control plane / clusters after install, so let's build a new cluster with a default policy on all namespaces.
+
+First, delete the current cluster.
+
+```shell
+kind delete cluster
+```
+
+Create a Pod Security configuration that `enforce` and `audit` baseline policies while using a restricted profile to `warn` the end user.
+
+```shell
+cat <<EOF > pod-security.yaml
+apiVersion: apiserver.config.k8s.io/v1
+kind: AdmissionConfiguration
+plugins:
+- name: PodSecurity
+  configuration:
+    apiVersion: pod-security.admission.config.k8s.io/v1beta1
+    kind: PodSecurityConfiguration
+    defaults:
+      enforce: "baseline"
+      enforce-version: "latest"
+      audit: "baseline"
+      audit-version: "latest"
+      warn: "restricted"
+      warn-version: "latest"
+    exemptions:
+      # Array of authenticated usernames to exempt.
+      usernames: []
+      # Array of runtime class names to exempt.
+      runtimeClasses: []
+      # Array of namespaces to exempt.
+      namespaces: [kube-system]
+EOF
+```
+
+For additional options, check out the official [_standards admission controller_](/docs/tasks/configure-pod-container/enforce-standards-admission-controller/#configure-the-admission-controller) docs.
+
+We now have a default baseline policy. Next pass it to the kind configuration to enable the `--admission-control-config-file` API server argument and pass the policy file. To pass a file to a kind cluster, use a configuration file to pass additional setup instructions. Kind uses `kubeadm` to provision the cluster and the configuration file has the ability to pass `kubeadmConfigPatches` for further customization. In our case, the local file is mounted into the control plane node as `/etc/kubernetes/policies/pod-security.yaml` which is then mounted into the `apiServer` container. We also pass the `--admission-control-config-file` argument pointing to the policy's location.
+
+```shell
+cat <<EOF > kind-config.yaml
+kind: Cluster
+apiVersion: kind.x-k8s.io/v1alpha4
+nodes:
+- role: control-plane
+  kubeadmConfigPatches:
+  - |
+    kind: ClusterConfiguration
+    apiServer:
+        # enable admission-control-config flag on the API server
+        extraArgs:
+          admission-control-config-file: /etc/kubernetes/policies/pod-security.yaml
+        # mount new file / directories on the control plane
+        extraVolumes:
+          - name: policies
+            hostPath: /etc/kubernetes/policies
+            mountPath: /etc/kubernetes/policies
+            readOnly: true
+            pathType: "DirectoryOrCreate"
+  # mount the local file on the control plane
+  extraMounts:
+  - hostPath: ./pod-security.yaml
+    containerPath: /etc/kubernetes/policies/pod-security.yaml
+    readOnly: true
+EOF
+```
+
+Create a new cluster using the kind configuration file defined above.
+
+```shell
+kind create cluster --image kindest/node:v1.23.0 --config kind-config.yaml
+```
+
+Let's look at the default namespace.
+
+```shell
+kubectl describe namespace default
+```
+
+The output is similar to this:
+
+```
+Name:         default
+Labels:       kubernetes.io/metadata.name=default
+Annotations:  <none>
+Status:       Active
+
+No resource quota.
+
+No LimitRange resource.
+```
+
+Let's create a new namespace and see if the labels apply there.
+
+```shell
+kubectl create namespace test-defaults
+kubectl describe namespace test-defaults
+```
+
+Same.
+
+```
+Name:         test-defaults
+Labels:       kubernetes.io/metadata.name=test-defaults
+Annotations:  <none>
+Status:       Active
+
+No resource quota.
+
+No LimitRange resource.
+```
+
+Can a privileged workload be deployed?
+
+```shell
+cat <<EOF | kubectl -n test-defaults apply -f -
+apiVersion: v1
+kind: Pod
+metadata:
+  name: busybox-privileged
+spec:
+  containers:
+  - name: busybox
+    image: busybox
+    args:
+    - sleep
+    - "1000000"
+    securityContext:
+      allowPrivilegeEscalation: true
+EOF
+```
+
+Hmm... yep. The default `warn` level is working at least.
+
+```
+Warning: would violate PodSecurity "restricted:latest": allowPrivilegeEscalation != false (container "busybox" must set securityContext.allowPrivilegeEscalation=false), unrestricted capabilities (container "busybox" must set securityContext.capabilities.drop=["ALL"]), runAsNonRoot != true (pod or container "busybox" must set securityContext.runAsNonRoot=true), seccompProfile (pod or container "busybox" must set securityContext.seccompProfile.type to "RuntimeDefault" or "Localhost")
+pod/busybox-privileged created
+```
+
+Let's delete the pod with `kubectl -n test-defaults delete pod/busybox-privileged`.
+
+Is my config even working?
+
+```shell
+# if using docker, shell into the control plane
+docker exec -it kind-control-plane bash
+
+# cat out the file we mounted
+cat /etc/kubernetes/policies/pod-security.yaml
+
+# check the api server logs
+cat /var/log/containers/kube-apiserver*.log 
+
+# check the api server config
+cat /etc/kubernetes/manifests/kube-apiserver.yaml 
+```
+
+**UPDATE:** The baseline policy permits `allowPrivilegeEscalation`. While I cannot see the Pod Security default levels of enforcement, they are there. Let's try to provide a manifest that violates the baseline by requesting hostNetwork access.
+
+```shell
+# delete the original pod
+kubectl -n test-defaults delete pod busybox-privileged
+
+cat <<EOF | kubectl -n test-defaults apply -f -
+apiVersion: v1
+kind: Pod
+metadata:
+  name: busybox-privileged
+spec:
+  containers:
+  - name: busybox
+    image: busybox
+    args:
+    - sleep
+    - "1000000"
+  hostNetwork: true
+EOF
+```
+
+The output is similar to this:
+
+```
+Error from server (Forbidden): error when creating "STDIN": pods "busybox-privileged" is forbidden: violates PodSecurity "baseline:latest": host namespaces (hostNetwork=true)
+```
+
+#### Yes!!! It worked! 🎉🎉🎉 {#it-worked}
+
+I later found out, another way to check if things are operating as intended is to check the raw API server metrics endpoint.
+
+Run the following command:
+
+```
+kubectl get --raw /metrics | grep pod_security_evaluations_total
+```
+
+The output is similar to this:
+
+```
+# HELP pod_security_evaluations_total [ALPHA] Number of policy evaluations that occurred, not counting ignored or exempt requests.
+# TYPE pod_security_evaluations_total counter
+pod_security_evaluations_total{decision="allow",mode="enforce",policy_level="baseline",policy_version="latest",request_operation="create",resource="pod",subresource=""} 2
+pod_security_evaluations_total{decision="allow",mode="enforce",policy_level="privileged",policy_version="latest",request_operation="create",resource="pod",subresource=""} 0
+pod_security_evaluations_total{decision="allow",mode="enforce",policy_level="privileged",policy_version="latest",request_operation="update",resource="pod",subresource=""} 0
+pod_security_evaluations_total{decision="deny",mode="audit",policy_level="baseline",policy_version="latest",request_operation="create",resource="pod",subresource=""} 1
+pod_security_evaluations_total{decision="deny",mode="enforce",policy_level="baseline",policy_version="latest",request_operation="create",resource="pod",subresource=""} 1
+pod_security_evaluations_total{decision="deny",mode="warn",policy_level="restricted",policy_version="latest",request_operation="create",resource="controller",subresource=""} 2
+pod_security_evaluations_total{decision="deny",mode="warn",policy_level="restricted",policy_version="latest",request_operation="create",resource="pod",subresource=""} 2
+```
+
+A monitoring tool could ingest these metrics too for reporting, assessments, or measuring trends.
+
+## Clean up
+
+When finished, delete the kind cluster.
+
+```shell
+kind delete cluster
+```
+
+## Auditing
+
+Auditing is another way to track what policies are being enforced in your cluster. To set up auditing with kind, review the official docs for [enabling auditing](https://kind.sigs.k8s.io/docs/user/auditing/). As of [version 1.11](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.11.md#sig-auth), Kubernetes audit logs include two annotations that indicate whether or not a request was authorized (`authorization.k8s.io/decision`) and the reason for the decision (`authorization.k8s.io/reason`). Audit events can be streamed to a webhook for monitoring, tracking, or alerting.
+
+The audit events look similar to the following:
+
+```yaml
+{"authorization.k8s.io/decision":"allow","authorization.k8s.io/reason":"","pod-security.kubernetes.io/audit":"allowPrivilegeEscalation != false (container \"busybox\" must set securityContext.allowPrivilegeEscalation=false), unrestricted capabilities (container \"busybox\" must set securityContext.capabilities.drop=[\"ALL\"]), runAsNonRoot != true (pod or container \"busybox\" must set securityContext.runAsNonRoot=true), seccompProfile (pod or container \"busybox\" must set securityContext.seccompProfile.type to \"RuntimeDefault\" or \"Localhost\")"}}
+```
+
+Auditing is also a good first step in evaluating your cluster's current compliance with Pod Security. The Kubernetes Enhancement Proposal (KEP) hints at a future where `baseline` [could be the default for unlabeled namespaces](https://github.com/kubernetes/enhancements/blob/master/keps/sig-auth/2579-psp-replacement/README.md#rollout-of-baseline-by-default-for-unlabeled-namespaces).
+
+
+Example `audit-policy.yaml` configuration tuned for Pod Security events:
+
+```
+apiVersion: audit.k8s.io/v1
+kind: Policy
+rules:
+- level: RequestResponse
+  resources:
+    - group: "" # core API group
+      resources: ["pods", "pods/ephemeralcontainers", "podtemplates", "replicationcontrollers"]
+    - group: "apps"
+      resources: ["daemonsets", "deployments", "replicasets", "statefulsets"]
+    - group: "batch"
+      resources: ["cronjobs", "jobs"]
+  verbs: ["create", "update"]
+  omitStages:
+    - "RequestReceived"
+    - "ResponseStarted"
+    - "Panic"
+```
+
+Once auditing is enabled, look at the configured local file if using `--audit-log-path` or the destination of a webhook if using `--audit-webhook-config-file`.
+
+If using a file (`--audit-log-path`), run `cat /PATH/TO/API/AUDIT.log | grep "is forbidden:"` to see all rejected workloads audited.
+
+## PSP migrations
+
+If you're already using PSP, SIG Auth has created a guide and [published the steps to migrate off of PSP](/docs/tasks/configure-pod-container/migrate-from-psp/).
+
+To summarize the process:
+- Update all existing PSPs to be non-mutating
+- Apply Pod Security policies in `warn` or `audit` mode
+- Upgrade Pod Security policies to `enforce` mode
+- Remove `PodSecurityPolicy` from `--enable-admission-plugins`
+
+Listed as "optional future extensions" and currently out of scope, SIG Auth has kicked around the idea of providing a tool to assist with migrations. More [details in the KEP](https://github.com/kubernetes/enhancements/blob/master/keps/sig-auth/2579-psp-replacement/README.md#automated-psp-migration-tooling).
+
+## Wrap up
+
+Pod Security is a promising new feature that provides an out-of-the-box way to allow users to improve the security posture of their workloads. Like any new enhancement that has matured to beta, we ask that you try it out, provide feedback, or share your experience via either raising a Github issue or joining SIG Auth community meetings. It's our hope that Pod Security will be deployed on every cluster in our ongoing pursuit as a community to make Kubernetes security a priority.
+
+For a step by step guide on how to enable "baseline" Pod Security Standards with Pod Security Admission feature please refer to these dedicated [tutorials](/docs/tutorials/security/) that cover the configuration needed at cluster level and namespace level.
+
+## Additional resources
+
+- [Official Pod Security Docs](/docs/concepts/security/pod-security-admission/)
+- [Enforce Pod Security Standards with Namespace Labels](/docs/tasks/configure-pod-container/enforce-standards-namespace-labels/)
+- [Enforce Pod Security Standards by Configuring the Built-in Admission Controller](/docs/tasks/configure-pod-container/enforce-standards-admission-controller/)
+- [Official Kubernetes Enhancement Proposal](https://github.com/kubernetes/enhancements/blob/master/keps/sig-auth/2579-psp-replacement/README.md) (KEP)
+- [PodSecurityPolicy Deprecation: Past, Present, and Future](/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/)
+- [Hands on with Kubernetes Pod Security](https://medium.com/@LachlanEvenson/hands-on-with-kubernetes-pod-security-admission-b6cac495cd11)
\ No newline at end of file
diff --git a/content/en/blog/_posts/2021-12-10-csi-migration-status.md b/content/en/blog/_posts/2021-12-10-csi-migration-status.md
new file mode 100644
index 0000000000..0fa192c2cb
--- /dev/null
+++ b/content/en/blog/_posts/2021-12-10-csi-migration-status.md
@@ -0,0 +1,135 @@
+---
+layout: blog
+title: "Kubernetes 1.23: Kubernetes In-Tree to CSI Volume Migration Status Update"
+date: 2021-12-10
+slug: storage-in-tree-to-csi-migration-status-update
+---
+
+**Author:** Jiawei Wang (Google)
+
+The Kubernetes in-tree storage plugin to [Container Storage Interface (CSI)](/blog/2019/01/15/container-storage-interface-ga/) migration infrastructure has already been [beta](/blog/2019/12/09/kubernetes-1-17-feature-csi-migration-beta/) since v1.17. CSI migration was introduced as alpha in Kubernetes v1.14.
+
+Since then, SIG Storage and other Kubernetes special interest groups are working to ensure feature stability and compatibility in preparation for GA.
+This article is intended to give a status update to the feature as well as changes between Kubernetes 1.17 and 1.23. In addition, I will also cover the future roadmap for the CSI migration feature GA for each storage plugin.
+
+## Quick recap: What is CSI Migration, and why migrate?
+
+The Container Storage Interface (CSI) was designed to help Kubernetes replace its existing, in-tree storage driver mechanisms - especially vendor specific plugins.
+Kubernetes support for the [Container Storage Interface](https://github.com/container-storage-interface/spec/blob/master/spec.md#README) has been 
+[generally available](/blog/2019/01/15/container-storage-interface-ga/) since Kubernetes v1.13.
+Support for using CSI drivers was introduced to make it easier to add and maintain new integrations between Kubernetes and storage backend technologies. Using CSI drivers allows for for better maintainability (driver authors can define their own release cycle and support lifecycle) and reduce the opportunity for vulnerabilities (with less in-tree code, the risks of a mistake are reduced, and cluster operators can select only the storage drivers that their cluster requires).
+
+As more CSI Drivers were created and became production ready, SIG Storage group wanted all Kubernetes users to benefit from the CSI model. However, we cannot break API compatibility with the existing storage API types. The solution we came up with was CSI migration: a feature that translates in-tree APIs to equivalent CSI APIs and delegates operations to a replacement CSI driver.
+
+The CSI migration effort enables the replacement of existing in-tree storage plugins such as `kubernetes.io/gce-pd` or `kubernetes.io/aws-ebs` with a corresponding [CSI driver](https://kubernetes-csi.github.io/docs/introduction.html) from the storage backend.
+If CSI Migration is working properly, Kubernetes end users shouldn’t notice a difference. Existing `StorageClass`, `PersistentVolume` and `PersistentVolumeClaim` objects should continue to work.
+When a Kubernetes cluster administrator updates a cluster to enable CSI migration, existing workloads that utilize PVCs which are backed by in-tree storage plugins will continue to function as they always have. 
+However, behind the scenes, Kubernetes hands control of all storage management operations (previously targeting in-tree drivers) to CSI drivers.
+
+For example, suppose you are a `kubernetes.io/gce-pd` user, after CSI migration, you can still use `kubernetes.io/gce-pd` to provision new volumes, mount existing GCE-PD volumes or delete existing volumes. All existing API/Interface will still function correctly. However, the underlying function calls are all going through the [GCE PD CSI driver](https://github.com/kubernetes-sigs/gcp-compute-persistent-disk-csi-driver) instead of the in-tree Kubernetes function.
+
+This enables a smooth transition for end users. Additionally as storage plugin developers, we can reduce the burden of maintaining the in-tree storage plugins and eventually remove them from the core Kubernetes binary.
+
+## What has been changed, and what's new?
+
+Building on the work done in Kubernetes v1.17 and earlier, the releases since then have
+made a series of changes:
+
+### New feature gates
+
+The Kubernetes v1.21 release deprecated the `CSIMigration{provider}Complete` feature flags, and stopped honoring them. In their place came new feature flags named `InTreePlugin{vendor}Unregister`, that replace the old feature flag and retain all the functionality that `CSIMigration{provider}Complete` provided.
+
+`CSIMigration{provider}Complete` was introduced before as a supplementary feature gate once CSI migration is enabled on all of the nodes. This flag unregisters the in-tree storage plugin you specify with the `{provider}` part of the flag name.
+
+When you enable that feature gate, then instead of using the in-tree driver code, your cluster directly selects and uses the relevant CSI driver. This happens without any check for whether CSI migration is enabled on the node, or whether you have in fact deployed that CSI driver.
+
+While this feature gate is a great helper, SIG Storage (and, I'm sure, lots of cluster operators) also wanted a feature gate that lets you disable an in-tree storage plugin, even without also enabling CSI migration. For example, you might want to disable the EBS storage plugin on a GCE cluster, because EBS volumes are specific to a different vendor's cloud (AWS).
+
+To make this possible, Kubernetes v1.21 introduced a new feature flag set: `InTreePlugin{vendor}Unregister`.
+
+`InTreePlugin{vendor}Unregister` is a standalone feature gate that can be enabled and disabled independently from CSI Migration. When enabled, the component will not register the specific in-tree storage plugin to the supported list. If the cluster operator only enables this flag, end users will get an error from PVC saying it cannot find the plugin when the plugin is used. The cluster operator may want to enable this regardless of CSI Migration if they do not want to support the legacy in-tree APIs and only support CSI moving forward.
+
+### Observability
+
+Kubernetes v1.21 introduced [metrics](https://github.com/kubernetes/kubernetes/issues/98279) for tracking CSI migration.
+You can use these metrics to observe how your cluster is using storage services and whether access to that storage is using the legacy in-tree driver or its CSI-based replacement.
+
+| Components                                   | Metrics                            | Notes                                                                                                                                                                                  |
+| -------------------------------------------- | ---------------------------------- | -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
+| Kube-Controller-Manager                      | storage_operation_duration_seconds | A new label `migrated` is added to the metric to indicate whether this storage operation is a CSI migration operation(string value `true` for enabled and `false` for not enabled).    |
+| Kubelet                                      | csi_operations_seconds             | The new metric exposes labels including `driver_name`, `method_name`, `grpc_status_code` and `migrated`. The meaning of these labels is identical to `csi_sidecar_operations_seconds`. |
+| CSI Sidecars(provisioner, attacher, resizer) | csi_sidecar_operations_seconds     | A new label `migrated` is added to the metric to indicate whether this storage operation is a CSI migration operation(string value `true` for enabled and `false` for not enabled).    |
+
+### Bug fixes and feature improvement
+
+We have fixed numerous bugs like dangling attachment, garbage collection, incorrect topology label through the help of our beta testers.
+
+### Cloud Provider && Cluster Lifecycle Collaboration
+
+SIG Storage has been working closely with SIG Cloud Provider and SIG Cluster Lifecycle on the rollout of CSI migration.
+
+If you are a user of a managed Kubernetes service, check with your provider if anything needs to be done. In many cases, the provider will manage the migration and no additional work is required.
+
+If you use a distribution of Kubernetes, check its official documentation for information about support for this feature. For the CSI Migration feature graduation to GA, SIG Storage and SIG Cluster Lifecycle are collaborating towards making the migration mechanisms available in tooling (such as kubeadm) as soon as they're available in Kubernetes itself.
+
+## What is the timeline / status? {#timeline-and-status}
+
+The current and targeted releases for each individual driver is shown in the table below:
+
+| Driver           | Alpha | Beta (in-tree deprecated) | Beta (on-by-default) | GA            | Target "in-tree plugin" removal |
+| ---------------- | ----- | ------------------------- | -------------------- | ------------- | ------------------------------- |
+| AWS EBS          | 1.14  | 1.17                      | 1.23                 | 1.24 (Target) | 1.26 (Target)                   |
+| GCE PD           | 1.14  | 1.17                      | 1.23                 | 1.24 (Target) | 1.26 (Target)                   |
+| OpenStack Cinder | 1.14  | 1.18                      | 1.21                 | 1.24 (Target) | 1.26 (Target)                   |
+| Azure Disk       | 1.15  | 1.19                      | 1.23                 | 1.24 (Target) | 1.26 (Target)                   |
+| Azure File       | 1.15  | 1.21                      | 1.24 (Target)        | 1.25 (Target) | 1.27 (Target)                   |
+| vSphere          | 1.18  | 1.19                      | 1.24 (Target)        | 1.25 (Target) | 1.27 (Target)                   |
+| Ceph RBD         | 1.23  |
+| Portworx         | 1.23  |
+
+The following storage drivers will not have CSI migration support. The ScaleIO driver was already removed; the others are deprecated and will be removed from core Kubernetes.
+
+| Driver    | Deprecated | Code Removal  |
+| --------- | ---------- | ------------- |
+| ScaleIO   | 1.16       | 1.22          |
+| Flocker   | 1.22       | 1.25 (Target) |
+| Quobyte   | 1.22       | 1.25 (Target) |
+| StorageOS | 1.22       | 1.25 (Target) |
+
+## What's next?
+
+With more CSI drivers graduating to GA, we hope to soon mark the overall CSI Migration feature as GA. We are expecting cloud provider in-tree storage plugins code removal to happen by Kubernetes v1.26 and v1.27.
+
+## What should I do as a user?
+
+Note that all new features for the Kubernetes storage system (such as volume snapshotting) will only be added to the CSI interface. Therefore, if you are starting up a new cluster, creating stateful applications for the first time, or require these new features we recommend using CSI drivers natively (instead of the in-tree volume plugin API). Follow the [updated user guides for CSI drivers](https://kubernetes-csi.github.io/docs/drivers.html) and use the new CSI APIs.
+
+However, if you choose to roll a cluster forward or continue using specifications with the legacy volume APIs, CSI Migration will ensure we continue to support those deployments with the new CSI drivers. However, if you want to leverage new features like snapshot, it will require a manual migration to re-import an existing intree PV as a CSI PV.
+
+## How do I get involved?
+
+The Kubernetes Slack channel [#csi-migration](https://kubernetes.slack.com/messages/csi-migration) along with any of the standard [SIG Storage communication channels](https://github.com/kubernetes/community/blob/master/sig-storage/README.md#contact) are great mediums to reach out to the SIG Storage and migration working group teams.
+
+This project, like all of Kubernetes, is the result of hard work by many contributors from diverse backgrounds working together. We offer a huge thank you to the contributors who stepped up these last quarters to help move the project forward:
+
+* Michelle Au (msau42)
+* Jan Šafránek (jsafrane)
+* Hemant Kumar (gnufied)
+
+Special thanks to the following people for the insightful reviews, thorough consideration and valuable contribution to the CSI migration feature:
+
+* Andy Zhang (andyzhangz)
+* Divyen Patel (divyenpatel)
+* Deep Debroy (ddebroy)
+* Humble Devassy Chirammal (humblec)
+* Jing Xu (jingxu97)
+* Jordan Liggitt (liggitt)
+* Matthew Cary (mattcary)
+* Matthew Wong (wongma7)
+* Neha Arora (nearora-msft)
+* Oksana Naumov (trierra)
+* Saad Ali (saad-ali)
+* Tim Bannister (sftim)
+* Xing Yang (xing-yang)
+
+Those interested in getting involved with the design and development of CSI or any part of the Kubernetes Storage system, join the [Kubernetes Storage Special Interest Group (SIG)](https://github.com/kubernetes/community/tree/master/sig-storage). We’re rapidly growing and always welcome new contributors.
diff --git a/content/en/blog/_posts/2021-12-15-prevent-persistentvolume-leaks-when-deleting-out-of-order.md b/content/en/blog/_posts/2021-12-15-prevent-persistentvolume-leaks-when-deleting-out-of-order.md
new file mode 100644
index 0000000000..c57296026f
--- /dev/null
+++ b/content/en/blog/_posts/2021-12-15-prevent-persistentvolume-leaks-when-deleting-out-of-order.md
@@ -0,0 +1,199 @@
+---
+layout: blog
+title: "Kubernetes 1.23: Prevent PersistentVolume leaks when deleting out of order"
+date: 2021-12-15T10:00:00-08:00
+slug: kubernetes-1-23-prevent-persistentvolume-leaks-when-deleting-out-of-order
+---
+
+**Author:** Deepak Kinni (VMware)
+
+[PersistentVolume](/docs/concepts/storage/persistent-volumes/) (or PVs for short) are
+associated with [Reclaim Policy](https://kubernetes.io/docs/concepts/storage/persistent-volumes/#reclaim-policy).
+The Reclaim Policy is used to determine the actions that need to be taken by the storage
+backend on deletion of the PV.
+Where the reclaim policy is `Delete`, the expectation is that the storage backend
+releases the storage resource that was allocated for the PV. In essence, the reclaim
+policy needs to honored on PV deletion.
+
+With the recent Kubernetes v1.23 release, an alpha feature lets you configure your
+cluster to behave that way and honor the configured reclaim policy.
+
+
+## How did reclaim work in previous Kubernetes releases?
+
+[PersistentVolumeClaim](/docs/concepts/storage/persistent-volumes/#Introduction) (or PVC for short) is
+a request for storage by a user. A PV and PVC are considered [Bound](/docs/concepts/storage/persistent-volumes/#Binding)
+if there is a newly created PV or a matching PV is found. The PVs themselves are
+backed by a volume allocated by the storage backend. 
+
+Normally, if the volume is to be deleted, then the expectation is to delete the
+PVC for a bound PV-PVC pair. However, there are no restrictions to delete a PV
+prior to deleting a PVC.
+
+First, I'll demonstrate the behavior for clusters that are running an older version of Kubernetes.
+
+#### Retrieve an PVC that is bound to a PV
+
+Retrieve an existing PVC `example-vanilla-block-pvc`
+```
+kubectl get pvc example-vanilla-block-pvc
+```
+The following output shows the PVC and it's `Bound` PV, the PV is shown under the `VOLUME` column:
+```
+NAME                        STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS               AGE
+example-vanilla-block-pvc   Bound    pvc-6791fdd4-5fad-438e-a7fb-16410363e3da   5Gi        RWO            example-vanilla-block-sc   19s
+```
+
+#### Delete PV
+
+When I try to delete a bound PV, the cluster blocks and the `kubectl` tool does
+not return back control to the shell; for example:
+
+```
+kubectl delete pv pvc-6791fdd4-5fad-438e-a7fb-16410363e3da
+```
+
+```
+persistentvolume "pvc-6791fdd4-5fad-438e-a7fb-16410363e3da" deleted
+^C
+```
+
+Retrieving the PV:
+```
+kubectl get pv pvc-6791fdd4-5fad-438e-a7fb-16410363e3da
+```
+
+It can be observed that the PV is in `Terminating` state
+```
+NAME                                       CAPACITY   ACCESS MODES   RECLAIM POLICY   STATUS        CLAIM                               STORAGECLASS               REASON   AGE
+pvc-6791fdd4-5fad-438e-a7fb-16410363e3da   5Gi        RWO            Delete           Terminating   default/example-vanilla-block-pvc   example-vanilla-block-sc            2m23s
+```
+
+#### Delete PVC
+
+```
+kubectl delete pvc example-vanilla-block-pvc
+```
+
+The following output is seen if the PVC gets successfully deleted:
+```
+persistentvolumeclaim "example-vanilla-block-pvc" deleted
+```
+
+The PV object from the cluster also gets deleted. When attempting to retrieve the PV
+it will be observed that the PV is no longer found:
+
+```
+kubectl get pv pvc-6791fdd4-5fad-438e-a7fb-16410363e3da
+```
+
+```
+Error from server (NotFound): persistentvolumes "pvc-6791fdd4-5fad-438e-a7fb-16410363e3da" not found
+```
+
+Although the PV is deleted the underlying storage resource is not deleted, and
+needs to be removed manually.
+
+To sum it up, the reclaim policy associated with the Persistent Volume is currently
+ignored under certain circumstance. For a `Bound` PV-PVC pair the ordering of PV-PVC
+deletion determines whether the PV reclaim policy is honored. The reclaim policy 
+is honored if the PVC is deleted first, however, if the PV is deleted prior to 
+deleting the PVC then the reclaim policy is not exercised. As a result of this behavior,
+the associated storage asset in the external infrastructure is not removed.
+
+## PV reclaim policy with Kubernetes v1.23
+
+The new behavior ensures that the underlying storage object is deleted from the backend when users attempt to delete a PV manually.
+
+#### How to enable new behavior?
+
+To make use of the new behavior, you must have upgraded your cluster to the v1.23 release of Kubernetes.
+You need to make sure that you are running the CSI [`external-provisioner`](https://github.com/kubernetes-csi/external-provisioner) version `4.0.0`, or later.
+You must also enable the `HonorPVReclaimPolicy` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) for the
+`external-provisioner` and for the `kube-controller-manager`.
+
+If you're not using a CSI driver to integrate with your storage backend, the fix isn't
+available. The Kubernetes project doesn't have a current plan to fix the bug for in-tree
+storage drivers: the future of those in-tree drivers is deprecation and migration to CSI.
+
+#### How does it work?
+
+The new behavior is achieved by adding a finalizer `external-provisioner.volume.kubernetes.io/finalizer` on new and existing PVs, the finalizer is only removed after the storage from backend is deleted.
+
+An example of a PV with the finalizer, notice the new finalizer in the finalizers list
+
+```
+kubectl get pv pvc-a7b7e3ba-f837-45ba-b243-dec7d8aaed53 -o yaml
+```
+
+```yaml
+apiVersion: v1
+kind: PersistentVolume
+metadata:
+  annotations:
+    pv.kubernetes.io/provisioned-by: csi.vsphere.vmware.com
+  creationTimestamp: "2021-11-17T19:28:56Z"
+  finalizers:
+  - kubernetes.io/pv-protection
+  - external-provisioner.volume.kubernetes.io/finalizer
+  name: pvc-a7b7e3ba-f837-45ba-b243-dec7d8aaed53
+  resourceVersion: "194711"
+  uid: 087f14f2-4157-4e95-8a70-8294b039d30e
+spec:
+  accessModes:
+  - ReadWriteOnce
+  capacity:
+    storage: 1Gi
+  claimRef:
+    apiVersion: v1
+    kind: PersistentVolumeClaim
+    name: example-vanilla-block-pvc
+    namespace: default
+    resourceVersion: "194677"
+    uid: a7b7e3ba-f837-45ba-b243-dec7d8aaed53
+  csi:
+    driver: csi.vsphere.vmware.com
+    fsType: ext4
+    volumeAttributes:
+      storage.kubernetes.io/csiProvisionerIdentity: 1637110610497-8081-csi.vsphere.vmware.com
+      type: vSphere CNS Block Volume
+    volumeHandle: 2dacf297-803f-4ccc-afc7-3d3c3f02051e
+  persistentVolumeReclaimPolicy: Delete
+  storageClassName: example-vanilla-block-sc
+  volumeMode: Filesystem
+status:
+  phase: Bound
+```
+
+The presence of the finalizer prevents the PV object from being removed from the
+cluster. As stated previously, the finalizer is only removed from the PV object
+after it is successfully deleted from the storage backend. To learn more about
+finalizers, please refer to [Using Finalizers to Control Deletion](/blog/2021/05/14/using-finalizers-to-control-deletion/).
+
+#### What about CSI migrated volumes?
+
+The fix is applicable to CSI migrated volumes as well. However, when the feature
+`HonorPVReclaimPolicy` is enabled on 1.23, and CSI Migration is disabled, the finalizer
+is removed from the PV object if it exists.
+
+### Some caveats
+
+1. The fix is applicable only to CSI volumes and migrated volumes. In-tree volumes will exhibit older behavior.
+2. The fix is introduced as an alpha feature in the [external-provisioner](https://github.com/kubernetes-csi/external-provisioner) under the feature gate `HonorPVReclaimPolicy`. The feature is disabled by default, and needs to be enabled explicitly.
+
+### References
+
+* [KEP-2644](https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/2644-honor-pv-reclaim-policy)
+* [Volume leak issue](https://github.com/kubernetes-csi/external-provisioner/issues/546)
+
+### How do I get involved?
+
+The Kubernetes Slack channel [SIG Storage communication channels](https://github.com/kubernetes/community/blob/master/sig-storage/README.md#contact) are great mediums to reach out to the SIG Storage and migration working group teams.
+
+Special thanks to the following people for the insightful reviews, thorough consideration and valuable contribution:
+
+* Jan Šafránek (jsafrane)
+* Xing Yang (xing-yang)
+* Matthew Wong (wongma7)
+
+Those interested in getting involved with the design and development of CSI or any part of the Kubernetes Storage system, join the [Kubernetes Storage Special Interest Group (SIG)](https://github.com/kubernetes/community/tree/master/sig-storage). We’re rapidly growing and always welcome new contributors.
\ No newline at end of file
diff --git a/content/en/blog/_posts/2021-12-16-StatefulSet-PVC-Auto-Deletion.md b/content/en/blog/_posts/2021-12-16-StatefulSet-PVC-Auto-Deletion.md
new file mode 100644
index 0000000000..a436694640
--- /dev/null
+++ b/content/en/blog/_posts/2021-12-16-StatefulSet-PVC-Auto-Deletion.md
@@ -0,0 +1,103 @@
+---
+layout: blog
+title: 'Kubernetes 1.23: StatefulSet PVC Auto-Deletion (alpha)'
+date: 2021-12-16
+slug: kubernetes-1-23-statefulset-pvc-auto-deletion
+---
+
+**Author:** Matthew Cary (Google)
+
+Kubernetes v1.23 introduced a new, alpha-level policy for
+[StatefulSets](/docs/concepts/workloads/controllers/statefulset/) that controls the lifetime of
+[PersistentVolumeClaims](/docs/concepts/storage/persistent-volumes/) (PVCs) generated from the
+StatefulSet spec template for cases when they should be deleted automatically when the StatefulSet
+is deleted or pods in the StatefulSet are scaled down.
+
+## What problem does this solve?
+A StatefulSet spec can include Pod and PVC templates. When a replica is first created, the
+Kubernetes control plane creates a PVC for that replica if one does not already exist. The behavior
+before Kubernetes v1.23 was that the control plane never cleaned up the PVCs created for
+StatefulSets - this was left up to the cluster administrator, or to some add-on automation that
+you’d have to find, check suitability, and deploy. The common pattern for managing PVCs, either
+manually or through tools such as Helm, is that the PVCs are tracked by the tool that manages them,
+with explicit lifecycle. Workflows that use StatefulSets must determine on their own what PVCs are
+created by a StatefulSet and what their lifecycle should be.
+
+Before this new feature, when a StatefulSet-managed replica disappears, either because the
+StatefulSet is reducing its replica count, or because its StatefulSet is deleted, the PVC and its
+backing volume remains and must be manually deleted. While this behavior is appropriate when the
+data is critical, in many cases the persistent data in these PVCs is either temporary, or can be
+reconstructed from another source. In those cases, PVCs and their backing volumes remaining after
+their StatefulSet or replicas have been deleted are not necessary, incur cost, and require manual
+cleanup.
+
+## The new StatefulSet PVC retention policy
+
+If you enable the alpha feature, a StatefulSet spec includes a PersistentVolumeClaim retention
+policy.  This is used to control if and when PVCs created from a StatefulSet’s `volumeClaimTemplate`
+are deleted.  This first iteration of the retention policy contains two situations where PVCs may be
+deleted.
+
+The first situation is when the StatefulSet resource is deleted (which implies that all replicas are
+also deleted). This is controlled by the `whenDeleted` policy. The second situation, controlled by
+`whenScaled` is when the StatefulSet is scaled down, which removes some but not all of the replicas
+in a StatefulSet. In both cases the policy can either be `Retain`, where the corresponding PVCs are
+not touched, or `Delete`, which means that PVCs are deleted. The deletion is done with a normal
+[object deletion](/docs/concepts/architecture/garbage-collection/), so that, for example, all
+retention policies for the underlying PV are respected.
+
+This policy forms a matrix with four cases. I’ll walk through and give an example for each one.
+
+  * **`whenDeleted` and `whenScaled` are both `Retain`.** This matches the existing behavior for
+    StatefulSets, where no PVCs are deleted. This is also the default retention policy. It’s
+    appropriate to use when data on StatefulSet volumes may be irreplaceable and should only be
+    deleted manually.
+
+  * **`whenDeleted` is `Delete` and `whenScaled` is `Retain`.** In this case, PVCs are deleted only when
+    the entire StatefulSet is deleted. If the StatefulSet is scaled down, PVCs are not touched,
+    meaning they are available to be reattached if a scale-up occurs with any data from the previous
+    replica. This might be used for a temporary StatefulSet, such as in a CI instance or ETL
+    pipeline, where the data on the StatefulSet is needed only during the lifetime of the
+    StatefulSet lifetime, but while the task is running the data is not easily reconstructible. Any
+    retained state is needed for any replicas that scale down and then up.
+
+  * **`whenDeleted` and `whenScaled` are both `Delete`.** PVCs are deleted immediately when their
+    replica is no longer needed. Note this does not include when a Pod is deleted and a new version
+    rescheduled, for example when a node is drained and Pods need to migrate elsewhere. The PVC is
+    deleted only when the replica is no longer needed as signified by a scale-down or StatefulSet
+    deletion. This use case is for when data does not need to live beyond the life of its
+    replica. Perhaps the data is easily reconstructable and the cost savings of deleting unused PVCs
+    is more important than quick scale-up, or perhaps that when a new replica is created, any data
+    from a previous replica is not usable and must be reconstructed anyway.
+
+  * **`whenDeleted` is `Retain` and `whenScaled` is `Delete`.** This is similar to the previous case,
+    when there is little benefit to keeping PVCs for fast reuse during scale-up. An example of a
+    situation where you might use this is an Elasticsearch cluster. Typically you would scale that
+    workload up and down to match demand, whilst ensuring a minimum number of replicas (for example:
+    3). When scaling down, data is migrated away from removed replicas and there is no benefit to
+    retaining those PVCs. However, it can be useful to bring the entire Elasticsearch cluster down
+    temporarily for maintenance. If you need to take the Elasticsearch system offline, you can do
+    this by temporarily deleting the StatefulSet, and then bringing the Elasticsearch cluster back
+    by recreating the StatefulSet. The PVCs holding the Elasticsearch data will still exist and the
+    new replicas will automatically use them.
+
+Visit the
+[documentation](/docs/concepts/workloads/controllers/statefulset/#persistentvolumeclaim-policies) to
+see all the details.
+
+## What’s next?
+
+Enable the feature and try it out! Enable the `StatefulSetAutoDeletePVC` feature gate on a cluster,
+then create a StatefulSet using the new policy. Test it out and tell us what you think!
+
+I'm very curious to see if this owner reference mechanism works well in practice. For example, we
+realized there is no mechanism in Kubernetes for knowing who set a reference, so it’s possible that
+the StatefulSet controller may fight with custom controllers that set their own
+references. Fortunately, maintaining the existing retention behavior does not involve any new owner
+references, so default behavior will be compatible.
+
+Please tag any issues you report with the label `sig/apps` and assign them to Matthew Cary
+([@mattcary](https://github.com/mattcary) at GitHub).
+
+Enjoy!
+
diff --git a/content/en/blog/_posts/2021-12-17-security-profiles-operator-v0.4.0/index.md b/content/en/blog/_posts/2021-12-17-security-profiles-operator-v0.4.0/index.md
new file mode 100644
index 0000000000..39dfb8cb52
--- /dev/null
+++ b/content/en/blog/_posts/2021-12-17-security-profiles-operator-v0.4.0/index.md
@@ -0,0 +1,148 @@
+---
+layout: blog
+title: "What's new in Security Profiles Operator v0.4.0"
+date: 2021-12-17
+slug: security-profiles-operator
+---
+
+**Authors:** Jakub Hrozek, Juan Antonio Osorio, Paulo Gomes, Sascha Grunert
+
+---
+
+The [Security Profiles Operator (SPO)](https://sigs.k8s.io/security-profiles-operator)
+is an out-of-tree Kubernetes enhancement to make the management of
+[seccomp](https://en.wikipedia.org/wiki/Seccomp),
+[SELinux](https://en.wikipedia.org/wiki/Security-Enhanced_Linux) and
+[AppArmor](https://en.wikipedia.org/wiki/AppArmor) profiles easier and more
+convenient. We're happy to announce that we recently [released
+v0.4.0](https://github.com/kubernetes-sigs/security-profiles-operator/releases/tag/v0.4.0)
+of the operator, which contains a ton of new features, fixes and usability
+improvements.
+
+## What's new
+
+It has been a while since the last
+[v0.3.0](https://github.com/kubernetes-sigs/security-profiles-operator/releases/tag/v0.3.0)
+release of the operator. We added new features, fine-tuned existing ones and
+reworked our documentation in 290 commits over the past half year.
+
+One of the highlights is that we're now able to record seccomp and SELinux
+profiles using the operators [log enricher](https://github.com/kubernetes-sigs/security-profiles-operator/blob/71b3915/installation-usage.md#log-enricher-based-recording).
+This allows us to reduce the dependencies required for profile recording to have
+[auditd](https://linux.die.net/man/8/auditd) or
+[syslog](https://en.wikipedia.org/wiki/Syslog) (as fallback) running on the
+nodes. All profile recordings in the operator work in the same way by using the
+`ProfileRecording` CRD as well as their corresponding [label
+selectors](/docs/concepts/overview/working-with-objects/labels). The log
+enricher itself can be also used to gather meaningful insights about seccomp and
+SELinux messages of a node. Checkout the [official
+documentation](https://github.com/kubernetes-sigs/security-profiles-operator/blob/71b3915/installation-usage.md#using-the-log-enricher)
+to learn more about it.
+
+### seccomp related improvements
+
+Beside the log enricher based recording we now offer an alternative to record
+seccomp profiles by utilizing [ebpf](https://ebpf.io). This optional feature can
+be enabled by setting `enableBpfRecorder` to `true`. This results in running a
+dedicated container, which ships a custom bpf module on every node to collect
+the syscalls for containers. It even supports older Kernel versions which do not
+expose the [BPF Type Format (BTF)](https://www.kernel.org/doc/html/latest/bpf/btf.html) per
+default as well as the `amd64` and `arm64` architectures. Checkout
+[our documentation](https://github.com/kubernetes-sigs/security-profiles-operator/blob/71b3915/installation-usage.md#ebpf-based-recording)
+to see it in action. By the way, we now add the seccomp profile architecture of
+the recorder host to the recorded profile as well.
+
+We also graduated the seccomp profile API from `v1alpha1` to `v1beta1`. This
+aligns with our overall goal to stabilize the CRD APIs over time. The only thing
+which has changed is that the seccomp profile type `Architectures` now points to
+`[]Arch` instead of `[]*Arch`.
+
+### SELinux enhancements
+
+Managing SELinux policies (an equivalent to using `semodule` that
+you would normally call on a single server) is not done by SPO
+itself, but by another container called selinuxd to provide better
+isolation. This release switched to using selinuxd containers from
+a personal repository to images located under [our team's quay.io
+repository](https://quay.io/organization/security-profiles-operator).
+The selinuxd repository has moved as well to [the containers GitHub
+organization](https://github.com/containers/selinuxd).
+
+Please note that selinuxd links dynamically to `libsemanage` and mounts the
+SELinux directories from the nodes, which means that the selinuxd container
+must be running the same distribution as the cluster nodes. SPO defaults
+to using CentOS-8 based containers, but we also build Fedora based ones.
+If you are using another distribution and would like us to add support for
+it, please file [an issue against selinuxd](https://github.com/containers/selinuxd/issues).
+
+#### Profile Recording
+
+This release adds support for recording of SELinux profiles.
+The recording itself is managed via an instance of a `ProfileRecording` Custom
+Resource as seen in an
+[example](https://github.com/kubernetes-sigs/security-profiles-operator/blob/main/examples/profilerecording-selinux-logs.yaml)
+in our repository. From the user's point of view it works pretty much the same
+as recording of seccomp profiles.
+
+Under the hood, to know what the workload is doing SPO installs a special
+permissive policy called [selinuxrecording](https://github.com/kubernetes-sigs/security-profiles-operator/blob/main/deploy/base/profiles/selinuxrecording.cil)
+on startup which allows everything and logs all AVCs to `audit.log`.
+These AVC messages are scraped by the log enricher component and when
+the recorded workload exits, the policy is created.
+
+#### `SELinuxProfile` CRD graduation
+
+An `v1alpha2` version of the `SelinuxProfile` object has been introduced. This
+removes the raw Common Intermediate Language (CIL) from the object itself and
+instead adds a simple policy language to ease the writing and parsing
+experience.
+
+Alongside, a `RawSelinuxProfile` object was also introduced. This contains a
+wrapped and raw representation of the policy. This was intended for folks to be
+able to take their existing policies into use as soon as possible. However, on
+validations are done here.
+
+### AppArmor support
+
+This version introduces the initial support for AppArmor, allowing users to load and 
+unload AppArmor profiles into cluster nodes by using the new [AppArmorProfile](https://github.com/kubernetes-sigs/security-profiles-operator/blob/main/deploy/base/crds/apparmorprofile.yaml) CRD.
+
+To enable AppArmor support use the [enableAppArmor feature gate](https://github.com/kubernetes-sigs/security-profiles-operator/blob/main/examples/config.yaml#L10) switch of your SPO configuration.
+Then use our [apparmor example](https://github.com/kubernetes-sigs/security-profiles-operator/blob/main/examples/apparmorprofile.yaml) to deploy your first profile across your cluster.
+
+### Metrics
+
+The operator now exposes metrics, which are described in detail in
+our new [metrics documentation](https://github.com/kubernetes-sigs/security-profiles-operator/blob/71b3915/installation-usage.md#using-metrics).
+We decided to secure the metrics retrieval process by using
+[kube-rbac-proxy](https://github.com/brancz/kube-rbac-proxy), while we ship an
+additional `spo-metrics-client` cluster role (and binding) to retrieve the
+metrics from within the cluster. If you're using
+[OpenShift](https://www.redhat.com/en/technologies/cloud-computing/openshift),
+then we provide an out of the box working
+[`ServiceMonitor`](https://github.com/kubernetes-sigs/security-profiles-operator/blob/71b3915/installation-usage.md#automatic-servicemonitor-deployment)
+to access the metrics.
+
+#### Debuggability and robustness
+
+Beside all those new features, we decided to restructure parts of the Security
+Profiles Operator internally to make it better to debug and more robust. For
+example, we now maintain an internal [gRPC](https://grpc.io) API to communicate
+within the operator across different features. We also improved the performance
+of the log enricher, which now caches results for faster retrieval of the log
+data. The operator can be put into a more [verbose log mode](https://github.com/kubernetes-sigs/security-profiles-operator/blob/71b3915/installation-usage.md#set-logging-verbosity)
+by setting `verbosity` from `0` to `1`.
+
+We also print the used `libseccomp` and `libbpf` versions on startup, as well as
+expose CPU and memory profiling endpoints for each container via the
+[`enableProfiling` option](https://github.com/kubernetes-sigs/security-profiles-operator/blob/71b3915/installation-usage.md#enable-cpu-and-memory-profiling).
+Dedicated liveness and startup probes inside of the operator daemon will now
+additionally improve the life cycle of the operator.
+
+## Conclusion
+
+Thank you for reading this update. We're looking forward to future enhancements
+of the operator and would love to get your feedback about the latest release.
+Feel free to reach out to us via the Kubernetes slack
+[#security-profiles-operator](https://kubernetes.slack.com/messages/security-profiles-operator)
+for any feedback or question.
diff --git a/content/en/blog/_posts/2021-12-21-admission-controllers-for-container-drift/index.md b/content/en/blog/_posts/2021-12-21-admission-controllers-for-container-drift/index.md
new file mode 100644
index 0000000000..977a65c147
--- /dev/null
+++ b/content/en/blog/_posts/2021-12-21-admission-controllers-for-container-drift/index.md
@@ -0,0 +1,108 @@
+---
+layout: blog
+title: "Using Admission Controllers to Detect Container Drift at Runtime"
+date: 2021-12-21
+slug: admission-controllers-for-container-drift
+---
+
+**Author:** Saifuding Diliyaer (Box)
+{{< figure src="intro-illustration.png" alt="Introductory illustration" attr="Illustration by Munire Aireti" >}}
+
+At Box, we use Kubernetes (K8s) to manage hundreds of micro-services that enable Box to stream data at a petabyte scale. When it comes to the deployment process, we run [kube-applier](https://github.com/box/kube-applier) as part of the GitOps workflows with declarative configuration and automated deployment. Developers declare their K8s apps manifest into a Git repository that requires code reviews and automatic checks to pass, before any changes can get merged and applied inside our K8s clusters. With `kubectl exec` and other similar commands, however, developers are able to directly interact with running containers and alter them from their deployed state. This interaction could then subvert the change control and code review processes that are enforced in our CI/CD pipelines. Further, it allows such impacted containers to continue receiving traffic long-term in production.
+
+To solve this problem, we developed our own K8s component called [kube-exec-controller](https://github.com/box/kube-exec-controller) along with its corresponding [kubectl plugin](https://github.com/box/kube-exec-controller#kubectl-pi). They function together in detecting and terminating potentially mutated containers (caused by interactive kubectl commands), as well as revealing the interaction events directly to the target Pods for better visibility.
+
+## Admission control for interactive kubectl commands
+Once a request is sent to K8s, it needs to be authenticated and authorized by the API server to proceed. Additionally, K8s has a separate layer of protection called [admission controllers](/docs/reference/access-authn-authz/admission-controllers/), which can intercept the request before an object is persisted in *etcd*. There are various predefined admission controls compiled into the API server binary (e.g. ResourceQuota to enforce hard resource usage limits per namespace). Besides, there are two dynamic admission controls named [MutatingAdmissionWebhook](/docs/reference/access-authn-authz/admission-controllers/#mutatingadmissionwebhook) and [ValidatingAdmissionWebhook](/docs/reference/access-authn-authz/admission-controllers/#validatingadmissionwebhook), used for mutating or validating K8s requests respectively. The latter is what we adopted to detect container drift at runtime caused by interactive kubectl commands. This whole process can be divided into three steps as explained in detail below.
+
+### 1. Admit interactive kubectl command requests
+First of all, we needed to enable a validating webhook that sends qualified requests to *kube-exec-controller*. To add the new validation mechanism applying to interactive kubectl commands specifically, we configured the webhook’s rules with resources as `[pods/exec, pods/attach]`, and operations as `CONNECT`. These rules tell the cluster's API server that all `exec` and `attach` requests should be subject to our admission control webhook. In the ValidatingAdmissionWebhook that we configured, we specified a `service` reference (could also be replaced with `url` that gives the location of the webhook) and `caBundle` to allow validating its X.509 certificate, both under the `clientConfig` stanza.
+
+Here is a short example of what our ValidatingWebhookConfiguration object looks like:
+```yaml
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  name: example-validating-webhook-config
+webhooks:
+  - name: validate-pod-interaction.example.com
+    sideEffects: None
+    rules:
+      - apiGroups: ["*"]
+        apiVersions: ["*"]
+        operations: ["CONNECT"]
+        resources: ["pods/exec", "pods/attach"]
+    failurePolicy: Fail
+    clientConfig:
+      service:
+        # reference to kube-exec-controller service deployed inside the K8s cluster
+        name: example-service
+        namespace: kube-exec-controller
+        path: "/admit-pod-interaction"
+      caBundle: "{{VALUE}}" # PEM encoded CA bundle to validate kube-exec-controller's certificate
+    admissionReviewVersions: ["v1", "v1beta1"]
+```
+
+### 2. Label the target Pod with potentially mutated containers
+Once a request of `kubectl exec` comes in, *kube-exec-controller* makes an internal note to label the associated Pod. The added labels mean that we can not only query all the affected Pods, but also enable the security mechanism to retrieve previously identified Pods, in case the controller service itself gets restarted.
+
+The admission control process cannot directly modify the targeted in its admission response. This is because the `pods/exec` request is against a subresource of the Pod API, and the API kind for that subresource is `PodExecOptions`. As a result, there is a separate process in *kube-exec-controller* that patches the labels asynchronously. The admission control always permits the `exec` request, then acts as a client of the K8s API to label the target Pod and to log related events. Developers can check whether their Pods are affected or not using `kubectl` or similar tools. For example:
+
+```
+$ kubectl get pod --show-labels
+NAME      READY  STATUS   RESTARTS  AGE  LABELS
+test-pod  1/1    Running  0         2s   box.com/podInitialInteractionTimestamp=1632524400,box.com/podInteractorUsername=username-1,box.com/podTTLDuration=1h0m0s
+
+$ kubectl describe pod test-pod
+...
+Events:
+Type       Reason            Age     From                            Message
+----       ------            ----    ----                            -------
+Warning    PodInteraction    5s      admission-controller-service    Pod was interacted with 'kubectl exec' command by user 'username-1' initially at time 2021-09-24 16:00:00 -0800 PST
+Warning    PodInteraction    5s      admission-controller-service    Pod will be evicted at time 2021-09-24 17:00:00 -0800 PST (in about 1h0m0s).
+```
+
+### 3. Evict the target Pod after a predefined period
+As you can see in the above event messages, the affected Pod is not evicted immediately. At times, developers might have to get into their running containers necessarily for debugging some live issues. Therefore, we define a time to live (TTL) of affected Pods based on the environment of clusters they are running. In particular, we allow a longer time in our dev clusters as it is more common to run `kubectl exec` or other interactive commands for active development.
+
+For our production clusters, we specify a lower time limit so as to avoid the impacted Pods serving traffic abidingly. The *kube-exec-controller* internally sets and tracks a timer for each Pod that matches the associated TTL. Once the timer is up, the controller evicts that Pod using K8s API. The eviction (rather than deletion) is to ensure service availability, since the cluster respects any configured [PodDisruptionBudget](/docs/concepts/workloads/pods/disruptions/) (PDB). Let's say if a user has defined *x* number of Pods as critical in their PDB, the eviction (as requested by *kube-exec-controller*) does not continue when the target workload has fewer than *x* Pods running.
+
+Here comes a sequence diagram of the entire workflow mentioned above:
+
+ <!-- Mermaid Live Editor link - https://mermaid-js.github.io/mermaid-live-editor/edit/#pako:eNp9kjFPAzEMhf-KlalIbWd0QpUQdGJB3JrFTUyJmjhHzncFof53nGtpqYTYEuu958-Wv4zLnkxjenofiB09BtwWTJbRSS6QCLCHu01ZPdJIMXdUYNZTGYOjRd4zlRvLHRYJLnTIArvbtozV83TbAnZhUcVUrkXo04OU2I6uKu99Cn0fMsNDZik5Rm3SHntYTrRYrabUBl4GBmt2w4acRKAPcrBcLq0Bl1NC9pYnoRouHZopX9RX9aotddJeADaf4DDGwFuQN4IRY_Ao9bunzVvOO13COeYCcR9j3k-OCQDP9KfgC8TJsFbZIHSxnGljzp1lgKs2v9HXugMBwe2WPHTZ94CvottB6Ap5eg2s9cBaUnrLVEP_Yp5ynrOf3fxPV2V1lBOhmZtEJWHweiFfldQa1SWyptGnAuAQxRrLB5UOna6P1j7o4ZhGykBzg4Pk9pPdz_-oOR3ZsXj4BjrP5rU-->
+
+![Sequence Diagram](/images/sequence_diagram.svg)
+
+## A new kubectl plugin for better user experience
+Our admission controller component works great for solving the container drift issue we had on the platform. It is also able to submit all related Events to the target Pod that has been affected. However, K8s clusters don't retain Events very long (the default retention period is one hour). We need to provide other ways for developers to get their Pod interaction activity. A [kubectl plugin](/docs/tasks/extend-kubectl/kubectl-plugins/) is a perfect choice for us to expose this information. We named our plugin `kubectl pi` (short for `pod-interaction`) and provide two subcommands: `get` and `extend`.
+
+When the `get` subcommand is called, the plugin checks the metadata attached by our admission controller and transfers it to human-readable information. Here is an example output from running `kubectl pi get`:
+
+```
+$ kubectl pi get test-pod
+POD-NAME  INTERACTOR  POD-TTL  EXTENSION  EXTENSION-REQUESTER  EVICTION-TIME
+test-pod  username-1  1h0m0s   /          /                    2021-09-24 17:00:00 -0800 PST
+```
+
+The plugin can also be used to extend the TTL for a Pod that is marked for future eviction. This is useful in case developers need extra time to debug ongoing issues. To achieve this, a developer uses the `kubectl pi extend` subcommand, where the plugin patches the relevant *annotations* for the given Pod. These *annotations* include the duration and username who made the extension request for transparency (displayed in the table returned from the `kubectl pi get` command).
+
+Correspondingly, there is another webhook defined in *kube-exec-controller* which admits valid annotation updates. Once admitted, those updates reset the eviction timer of the target Pod as requested. An example of requesting the extension from the developer side would be:
+
+```
+$ kubectl pi extend test-pod --duration=30m
+Successfully extended the termination time of pod/test-pod with a duration=30m
+ 
+$ kubectl pi get test-pod
+POD-NAME  INTERACTOR  POD-TTL  EXTENSION  EXTENSION-REQUESTER  EVICTION-TIME
+test-pod  username-1  1h0m0s   30m        username-2           2021-09-24 17:30:00 -0800 PST
+```
+
+## Future improvement
+Although our admission controller service works great in handling interactive requests to a Pod, it could as well evict the Pod while the actual commands are no-op in these requests. For instance, developers sometimes run `kubectl exec` merely to check their service logs stored on hosts. Nevertheless, the target Pods would still get bounced despite the state of their containers not changing at all. One of the improvements here could be adding the ability to distinguish the commands that are passed to the interactive requests, so that no-op commands should not always force a Pod eviction. However, this becomes challenging when developers get a shell to a running container and execute commands inside the shell, since they will no longer be visible to our admission controller service.
+
+Another item worth pointing out here is the choice of using K8s *labels* and *annotations*. In our design, we decided to have all immutable metadata attached as *labels* for better enforcing the immutability in our admission control. Yet some of these metadata could fit better as *annotations*. For instance, we had a label with the key `box.com/podInitialInteractionTimestamp` used to list all affected Pods in *kube-exec-controller* code, although its value would be unlikely to query for. As a more ideal design in the K8s world, a single *label* could be preferable in our case for identification with other metadata applied as *annotations* instead.
+
+## Summary
+With the power of admission controllers, we are able to secure our K8s clusters by detecting potentially mutated containers at runtime, and evicting their Pods without affecting service availability. We also utilize kubectl plugins to provide flexibility of the eviction time and hence, bringing a better and more self-independent experience to service owners. We are proud to announce that we have open-sourced the whole project for the community to leverage in their own K8s clusters. Any contribution is more than welcomed and appreciated. You can find this project hosted on GitHub at https://github.com/box/kube-exec-controller
+
+*Special thanks to Ayush Sobti and Ethan Goldblum for their technical guidance on this project.*
diff --git a/content/en/blog/_posts/2021-12-21-admission-controllers-for-container-drift/intro-illustration.png b/content/en/blog/_posts/2021-12-21-admission-controllers-for-container-drift/intro-illustration.png
new file mode 100644
index 0000000000..c52b432b28
Binary files /dev/null and b/content/en/blog/_posts/2021-12-21-admission-controllers-for-container-drift/intro-illustration.png differ
diff --git a/content/en/blog/_posts/2021-12-21-admission-controllers-for-container-drift/workflow-diagram.svg b/content/en/blog/_posts/2021-12-21-admission-controllers-for-container-drift/workflow-diagram.svg
new file mode 100644
index 0000000000..746b862fbd
--- /dev/null
+++ b/content/en/blog/_posts/2021-12-21-admission-controllers-for-container-drift/workflow-diagram.svg
@@ -0,0 +1,6902 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
+<svg version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" width="1982px" height="1400px" viewBox="0 0 1982 1400" enable-background="new 0 0 1982 1400" xml:space="preserve">  <image id="image0" width="1982" height="1400" x="0" y="0"
+    href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAB74AAAV4CAYAAAA3xnIQAAABOmlDQ1BpY2MAACiRY2BgEkgsKMhh
+YWBgyM0rKQpyd1KIiIxSYH/KwMUgxCDGwMggkJhcXOAYEOADVMIAo1HBt2tAdUBwWRdkFsfk1s72
+ffpeS0TOqDz6ulcBUz0K4EpJLU4G0n+AOCW5oKiEgYExAchWLi8pALFbgGyRIqCjgOwZIHY6hL0G
+xE6CsA+A1YQEOQPZV4BsgeSMxBQg+wmQrZOEJJ6OxIbaC3aDj7uCh0uQgok3AceSCkpSK0pAtHN+
+QWVRZnpGiYIjMIRSFTzzkvV0FIwMjAwZGEDhDVH9WQwcjoxipxBildcZGCwCgYwYhFjITQaGXQEM
+DNyzEWIaagwMvMBwO25akFiUCHcA4zeW4jRjIwibp4iBgfXH//+fZRkY2HcxMPwt+v//99z///8u
+YWBgBpp5oBAAFZ9dxoUSB3gAAAAgY0hSTQAAeiYAAICEAAD6AAAAgOgAAHUwAADqYAAAOpgAABdw
+nLpRPAAAAAZiS0dEAP8A/wD/oL2nkwAAAAlwSFlzAAAWJQAAFiUBSVIk8AAAAXp6VFh0UmF3IHBy
+b2ZpbGUgdHlwZSBpY2MAADiNrVPZbeQwDP1XFVsCb0rlyJINbP8NLHU4O5NJggTIgw2aong90ulv
+a+nPgFJOMEAIhg4O1kDmCVi308VJSVyIQLMWrQTgp4a5AmAoaPGN40mGxs4OggoK0mDjvf4Vrsia
+VsSFztTfKsuFs+aS/TjpkloFpTWSUPTo9BIsfSfjA6qJqbPxrmVXbJKiMXDyxcxseYDYPRiC+zxv
+5nCwNtlaasn3eTJ/NNR2G+zJ4aZqBpIYwKoI+50gyGbLQfjOfG4DNfvEIRJ/Euip5/9cSIvkIFnC
+jYBFjq/J+ynZvx/IRyd5D2MEErYrplOcrJhbmKKhvUum8V3sNKaTWjRIPN65d2+b/ljRxfeqTyBa
+q+8vzipK9yFjU/ddbfe9p9ZUehnyqLoOjnJ8FJAyrYXrSzRnTT5+VzKEV+BlIDFRY+bHSBieS9cr
+XwOMfVXkx1y8qztNw1H6lL0uMnlV2sAx/QNjKeG+t1FH5AAAAVt6VFh0UmF3IHByb2ZpbGUgdHlw
+ZSB4bXAAACiRlVNLcoMwDN3rFD2CkWTJHIdie9eZLnv8PhlaJyHNTPEkEP3eB4W+Pj7pLS7NiWT3
+IpsXq56sWna1hVP8tt2aS+SkMttiat3YsmxH/Le6M3OiOQbB92jJRWtOnFSsOxo5SeYmik9ilpY2
+TnFAgTHcZMusSmoP+EcyOBRXnCQbMLuPi5ujiNuAcO6yyBqHO0kSRoDxXY8huIuvGAvaXrgGQKQn
+l0dGqpbJxQSBdUhb4UIDw7MAvjCw4UQwhBF3g26PF5qiYF3BqCeyBqc27cYz/LOKzNkT0pZhYr9S
+/xHwC7DlBObFsu14IcEf7y1AQglZkzYsKzBinxiv26LrHpae4GYUZ2cd9M92lZYPN/M5rsA9ndD0
+qvUfUld6RhpSFWuR/pS6Xrvouh3cb/fjuh63uz1rKdZbLZIjfPnfRYa+AfG11o/yanNeAACAAElE
+QVR42uz9aXMcV5bm+z7bx5gHzABBcKbGrBw6q/uc2/eYdds1u2/6Q7dVtVVXVVZlZ5ZmiRJBgiRm
+IObBx31eBMIJSJSogRIA5f+XGQJEICLcNwKUezy+1jLWWisAAAAAAAAAAAAAAK4p57I3AAAAAAAA
+AAAAAACAn4LgGwAAAAAAAAAAAABwrRF8AwAAAAAAAAAAAACuNYJvAAAAAAAAAAAAAMC1RvANAAAA
+AAAAAAAAALjWCL4BAAAAAAAAAAAAANcawTcAAAAAAAAAAAAA4Foj+AYAAAAAAAAAAAAAXGsE3wAA
+AAAAAAAAAACAa43gGwAAAAAAAAAAAABwrRF8AwAAAAAAAAAAAACuNYJvAAAAAAAAAAAAAMC1RvAN
+AAAAAAAAAAAAALjWCL4BAAAAAAAAAAAAANcawTcAAAAAAAAAAAAA4Foj+AYAAAAAAAAAAAAAXGsE
+3wAAAAAAAAAAAACAa43gGwAAAAAAAAAAAABwrRF8AwAAAAAAAAAAAACuNYJvAAAAAAAAAAAAAMC1
+RvANAAAAAAAAAAAAALjWCL4BAAAAAAAAAAAAANcawTcAAAAAAAAAAAAA4Foj+AYAAAAAAAAAAAAA
+XGsE3wAAAAAAAAAAAACAa43gGwAAAAAAAAAAAABwrRF8AwAAAAAAAAAAAACuNYJvAAAAAAAAAAAA
+AMC1RvANAAAAAAAAAAAAALjWCL4BAAAAAAAAAAAAANcawTcAAAAAAAAAAAAA4FrzLnsDgB8rz3Ol
+aaosyzQZTzSejJUkSfFnxhhJkud68gNfvu+rXC6rXC7L930ZY4rvAQAAAAAAAAAAAHB9EXzj2sqy
+TFEUaTKZ6Pj4WMfHxxoMBppMJoqiSMYYua6rIAhUq9VUq9W0tLSk5eVlGWPkeR7BNwAAAAAAAAAA
+APArQPCNa8FaK2ttEXbHUazReKTBYKh+v6e9/QMdHByq1+tpPJlqOp3IcVw5xqhULqleq6nZbGit
+19doNFKr1VKpVFa5XFIQBAr8QI7rEIQDAAAAAAAAAAAA1xDBN66FNE01mUw0Ho+1vf1ET57uaH9/
+X51OR91uV9M40zTOlaS50swqzXIZaVbZ7Rr53uxWLvkqh74W2m2tra9rY31dN25s6ObNm6rVanJd
+V47jXPbuAgAAAAAAAAAAAPgBCL5xLaRpqvF4rJOTE3308cf6t3/7d21vP9Hx8ZG63a78UkN+uSnX
+K0uOLzm+jKwkK5slstlYeTJVGo+VJmMttJu6d+++3n7rbf32t3+nRqOpcrksxzgSuTcAAAAAAAAA
+AABwrRB848qy1hZV3nt7e3q8va3Hj5/o0eMd7eye6nQoTW1DtlSRyg055aaMX5JxAhnXl+zL4DtL
+x5I3lXUGyjTUMPG0fzKRHj1Rkku9/kB3bt/S5s1N3djYkOu6zAAHAAAAAAAAAAAArgljrbWXvRHA
+q+R5rsPDQx0eHuqTTz7Vn/7t3/QfH3yoKAsVZaFytyonbMkJm3K9krygJMfxJONKxpFkZSRZm8vm
+qWyWKIlGSuORbNKXSXpysqFajZJa9ZIe3L+r/8///X/p//ov/0VBGKhcKsv13MteBgAAAAAAAAAA
+AACvQcU3rhxrrfIsV5zEOjw81JdffaWPPv5Ef/3gE330ySNVWjdUbW2p2thQZWFLldaWjDEyjiPp
+uyq0rdJkojyZatJ9ocHRlxp1T3Xa7crJRur3+2q12rpxY0MLi4tyF12VvfJlLwcAAAAAAAAAAACA
+1yD4xpWTJInG47G63a4++uhj/elPf9JXO/sap6Fa6++r1FhXubmuUm1Zfql5LvB+XVtyI8fxJc8q
+rC3J2lxBua5ouK9keKje2OqDjz9XFE30u9/+Vn/4wx8UhuEsVKflOQAAAAAAAAAAAHBlEXzjyonj
+WP1+XwcHh/rk00/1z//8rzoZJCovPlB784HC6pJK9WW5QUWOM5/D/f2CacfxZBxXjhvILzeVpVsa
+HHyhYW7Un5zok8++1M6TR3IcV3fv3tXS0qJc1yX4BgAAAAAAAAAAAK4wgm9cOYPBQI8efalPP/1M
+T54daBQ7yr2mvPKSys0N+aWGvLAux/V/+IMbIyMj4zqS68vxSirVV5RnsaK+o8lwT9PxiZ7v7umr
+x48VhoEWFhbUarUue1kAAAAAAAAAAAAAfAuCb1w5p52OPv7kE/3vf/5XHXZiOeUV1YIFlZsbCquL
+clxfxnHfyHMZGQXVRTleIMd1lcUjTcenOjrq6rPPvpDvubp//wHBNwAAAAAAAAAAAHCFEXzjysjz
+XGma6vS0o8ePH+vjTz6RW9mQW7mhsHFD5caa/FLjzT6pMfJLDfmlumyWaNLbl3UOdNId6otHXyoM
+PC20F3Tv3t3LXh4AAAAAAAAAAAAA34LgG1eCtVbD4VCj0UhHR0fq9gYajyNVq4Gq9RWVGqtyg+rP
+uAVGblBVqbGuPIs1jkf6antH5dDX/fv3L3t5AAAAAAAAAAAAAHwHgm9cCdZajcdjHR0d6fj4RL1e
+X5NppIoJFdbXVGqsyXF+3perG5RVbm7IcQONDj/S0e5zlXyj45MTWWslScaYy14qAAAAAAAAAAAA
+AF/jXPYGAJJkc6t+v6+9vT0dHZ8oSqzcoCYnqMn1K3Lc8I3N9f42juPLLzUU1pZk3VBRnGk0Hmkw
+GKrX62k6nSrP88teKgAAAAAAAAAAAABfQ8U3roQsz9Tr9fX8+QsdHXeU5L6C6rL8Ul2O6/8ildbG
+8eUGZckYuV5ZxnGVZVbD0UgnxydqNBtyXVdBEFz2cgEAAAAAAAAAAAA4h+AbV4K1VoNBXwcHBzrt
+9JVaT0FlUW5Yl/mZW5zPGceR65RkjCvXD2VcX1kujccTnZ6eyvVc1Wq1y14qAAAAAAAAAAAAAF9D
+q3NcGVEUazAcaTyZKrOOvLAixw0k88u/TF0vkBeU5bi+4iRVrz9rdZ6m6WUvEwAAAAAAAAAAAICv
+IfjGlWCt1TSKNBgOzoJv92y2dyDzSwffxshxfHl+RcYNFSepBoOBJpMJM74BAAAAAAAAAACAK4jg
+G1dGnufK0kxZnstKMo47C71//vHeFxhJMo4cx5GMozy3StOU0BsAAAAAAAAAAAC4ogi+cTWZ4h9X
+irX2sjcBAAAAAAAAAAAAwNcQfOPKcBxHruvKdRwZK9k8mwXNl5E1Wyub55LN5Rgj13XlOI6MuXph
+PAAAAAAAAAAAAPC3juAbV4IxRmEYqlavqVwuyTW5smSsPItl7S/bYtxaqzxPlCYT2SyW77uq1Woq
+lUqz9ucAAAAAAAAAAAAArhRSPFwZYRCoXquqUg7lmExpPAu+9QsH35KUZ4myZCqbJwp8T/V6XaVS
+Sa7rXvYyAQAAAAAAAAAAAPgagm9cCcYY1WpVraysqN1qyDOZksmpsngom2e/yDZYmytPI6XxWFk8
+VZbGMspVKZe1uLioarVK8A0AAAAAAAAAAABcQQTfuBJcx1Wz2dTG+rqWFlrynUTx6FjpdCCbJ/ol
+Bn3bPFOWRkqjodJ0ojxL5DpG1WpZy8vLqtVq8lzvspcKAAAAAAAAAAAAwNeQ4uFKMI5Rvd7Q+vq6
+lp+9UOhJWTRQlgyVJbMQ2hhXxvn5Kq7zLFEyHSganUhZJN9zVC6XVK/V1Ww2ZYyRMeaylwoAAAAA
+AAAAAADA1xB840qYtzrP82UtLS2qXq8qDDwpnWo6OJBxA/mlhvxS42fbhiwZa9Lb1aS7o7Kfqn1z
+Q3fu3NHi0gKBNwAAAAAAAAAAAHCFEXzjSjDGqFatqVQqaWV5WY16TYHvSflU0fBIxg1lHO/nDb7j
+iab9PY1OvlJ7taWtG5u6d++uFhYIvgEAAAAAAAAAAICrjOAbV4bruXJcR+12W3fv3tHe3oFOhrk6
+wz2N0lTGceWFNTmuJ8cNZMwbGFFvrZJ4qDQaadrfVTo5kZKB2s0NPXxwXw8fPNDS4uJlLw0AAAAA
+AAAAAACA70DwjSvFGKOFhbbee+9dyUr//tePdXz4mabDgdygorC6JC+syhhPxv3pwbeVVTLpnbU4
+f65s2pGrREuLTb3z9lt66623tLS4dNnLAgAAAAAAAAAAAOA7EHzjymk2m3r44IGqlYqOjo705ecf
+aTrsKB0fadLbVVhdkCS5flmO48k47g94dCtrJWsz2SxRlkaaDg407uwomxwpdFOVW1Vtbqzq/v27
+un37ljyXXxMAAAAAAAAAAADgKiPRw5UTBIEajYZsbvX2O2+r3+9r+9mBTvpDne78m8rNGyo3b6hU
+X5JfbikoN8/u+fo53DbPleeJ0ulA0fBQ0+GRosGeosG+mlVf927d0f07m/rNb36jhXZbnuvJOMz3
+BgAAAAAAAAAAAK4ygm9cOUEQqN1qq1Kp6P333pPruir/9T/073/+q57sfql40lOWTmXzVMbx5Jca
+kozMa/NpK5unyrNEybij0ckTDU+fKJ92lUU91dobeu+dB/r////+u5ZXlrWwsCDHdWRe/8AAAAAA
+AAAAAAAALhHBN64cY4xcz1XJKWl1dUVZlilNU0VRJGNyxXlFkQZK+jsaJj1Nui/k+qFcryTjejLG
+lcx8/reVzXMpT2eV3tFIaTxWHvdlkq4a5VyNxSU1qut6cP+O3n3nLW3d2lK5XJbv+4TeAAAAAAAA
+AAAAwDVA8I0ryxijVqulIAjkB75qtZpu3tzUF1/t6KsnL9TpPtXoNFecSUG5oaDckuNVZFxfxvUl
+ayVZ2SxRnk6UJxPF466iaV8l39FCq67llYYe3L2thw/u6c7tLW1tbaler8vzPLnuD5kdDgAAAAAA
+AAAAAOCyEHzjyjLGqF6vq16vq1qtamlxUbdv3VIY/m9NRj1lk4760UDJZCibD5TlI+VuWXL82c3a
+2QPlkZRNZdOJbDSQEw1VCmpabrV179a6fvfb9/Sf//6P2tjYUBAECoLgsncdAAAAAAAAAAAAwA9A
+8I1rIQgC1et1SdLvf/c7tVotHRwcqtvtqtvraTRJNJokmkSpoihRlKRyjJFjHAVBVeWwpUrJU6Uc
+qFIOtNBuaXV1VWtra9rauql2u60gCOQ6VHkDAAAAAAAAAAAA142xdl4WC1xd1lrlWa4szxRFkaZR
+pOFgoE6no5OTU+08e6Znz57r6OhInV5f/UFfvuvJcz3VGzUtLS5qeXlZN29u6ubNTS0tLqparapa
+rSoMQ/m+L8+bXQfCXG8AAAAAAAAAAADgeqHiG1dGnueyuVUURxqPx5pMJppOp5pOp4qi+OzzSEmS
+KI4jTSYT9Qd99Xt9HR4d6ujwSL1eT6PR7L6O68p1HU3GQ03GIw36PQ0HfZ2enKjeqKtUKqkUhgrC
+ksIgVBgGsz8rhSqVyiqXS2f/XlIYhgTiAAAAAAAAAAAAwBVF8I0rI8sypWmqfr+vw8PDWfV2p6tO
+tzP72Omq2+1pNBppNBpqMh5rGk0VTaeKokhRHCtNM+U2V57PGhkYGTmOkeu68j1HYamscqmksFRS
+GM4C7UajoUajoWazqXarpYWFlhYXF7WwsKCFhQUtLS4pDENZawm/AQAAAAAAAAAAgCuI4BuXIksz
+pVmqJEmUpqnieFbRPZlMdXJyot29Pe3v7evo5FTHxyc6PjnV8cmpOp2ehsOBRsOR4jhSmiXK0kyu
+48g47lmVtyfH9WRlZXMrm2fKslR5ns6e3EqO68j3AvlB8DL0bre0tLig5aUFLS8vaXV5WaurKxoM
+hhqNR0U7dN8PFAS+Aj+QcYyMMQTiAAAAAAAAAAAAwCVixjd+cXmeq9frqdPp6OjoSHv7Bzo8PFSn
+01Wv19VwNNYkSjSZpppGuaZxqmmUaRrPbmlmlaZWmbWav3qNcWUcI8dxZRxXxnFmX7D2rIV6pjzP
+JGtlZWVkZYzkGsn3Hfmeq9B3VA49lUNXpcBVKXRUKfmqVEqqVipaaC9oYXFBqysrWl/f0Pr6qkql
+ksqlslzPvexlBQAAAAAAAAAAAP5mUfGNX5zNrXq9nnZ3d/Xo0Zf69LPP9ejLRzo8PNTx0ZHSzMoL
+avJKNTl+VY5XlePX5AYNufWqAr8mL6zK8Upy3EDG9WcV18bRrPB6XoH9MhiX7Cz0tmcheBYrTyNl
+SaQ0GiiLhxrGI/UnI+VxV1ncVxb1ZbNYspkcY3XjxoZu3tzSg/v39d77E1XKJdmmVRAEckXwDQAA
+AAAAAAAAAFwWgm/87OZtzbvdrvb29rV/cDD7uH+g3YMj7e4d67CbahiXlLiLsp4nlepyyg05fkWu
+X5UX1s4+nt2CilwvlOP6s+BbRvoe7catzWVtfhZ8z25JVFMaDZXGI2XxSJk/lvVqyt268mSiLIlk
+81jdsStzOFCqHQ3GU714savVlRWtrq1qeWlZi4uLWlxcoO05AAAAAAAAAAAA8Auj1Tl+VtZaRVGk
+6XSqR4++1L/+6U/6jw8+VLfbV6/X1yQxSlVWaqqyblnGLcvxy/L8stygPAu2HV/GDYqQ23FmM7yN
+48kYR8Y40lml9/fYoNns77PK71n1d6I8S2TzVDZLZLO4CMbTZKosGSmLJ3LsWE4+laeJPEUKnERb
+W1u6dWtLDx8+1Hvvvqf3339Xkgi/AQAAAAAAAAAAgF8QFd/4WVlr1R8MdHpyoi8efam//PVD/enf
+/qwoSRVFmZywqXKzpnJrWaX6qsqNVfmlmozjy3F/hpenMTIys7Dcef3jZ2mkNB4rjYaadF9o0t/T
+tNfXuH+geHSs49Oejk5OFcWJGo2GtrY2FQShwjCQM58zDgAAAAAAAAAAAOBnRfCNn1Wapnr81WP9
+xwcf6JPPvtTe0UDWbyms1lUOGvJKLQXltvzygvxSXW5QnlVyX5HQ2HE8uV44qyVvrskLKgqrCyo1
+byiddGTcSMedib56vKN2a0G1alXr62taX19XrVa77M0HAAAAAAAAAAAA/iYQfONnlWWZtp880T/9
+0//W9rMDjRJfuddSrX1b1cW78ivtWXW348k47uz2Ped1/xKM48j1S3K9cBZ611eUp7GyJFIej9Tf
+/0jHhx/LZs9Vq1VUCj3leaZWq03wDQAAAAAAAAAAAPxCCL7xs8jSTFEcqdfr6eDgULt7++p0R3Jr
+N1RZ2FTY2FBQW5YX1M4y7qsRdH+Tmc3rNpJxXDmSrFeS52fKwqqCwYr8yokiO9LuwakcfaRGo6G7
+d+9d9oYDAAAAAAAAAAAAfzMIvvGziJNY/X5fR0dH6nQ66vf6ihKjRnlR9eUH8sK6XK80C5WvGSMj
+Oa5chQrry6rlsdLRno5OD9U/eaHbt29pMplc9mYCAAAAAAAAAAAAfzMIvvGziONY3W5X+/v76nR7
+Gk9jpbYir9RSpb2lopL6OjKzbTfGKKguyjieRnmi7slzRZ3nOjg40Gg0UpIkcl1XzhWZVw4AAAAA
+AAAAAAD8WpHI4WcxHo+1v7+vx9tP1B9GcsKGwkpbrl85C40vewvfAKPZ7O9SY9ay3fWV5dJkGun0
+9FTdblfT6fSytxIAAAAAAAAAAAD41aPiGz+LyWSig4MDbW8/UX8UyQ0aCvwFeUFFV3ee9w9l5Hih
+AjdQFNbkuL6slSaTqTrdrjqdjlzHVaVSuewNBQAAAAAAAAAAAH7VqPjGz2I8mWhv/0BPnjydVXwH
+DQWVBbl+6bI37Y0yxpFx3Fnld1CVG9Y1iXLt7R1ob29fg+HgsjcRAAAAAAAAAAAA+NWj4hs/i8l4
+osODQz199lx5sCqntCa/siDH/3VWPxs3lFdqKqguaJpY7e7ta3GhqYWF9mVvGgAAAAAAAAAAAPCr
+R8U33ihrrbI002g01vHJiQ4PDjWeJr/aiu854/rySw0FlWVNIqsXewd68WJX/X7/sjcNAAAAAAAA
+AAAA+NWj4htvjLVWURRpOp2qP+hrNB4rimOV5cgvNeSXGnK84LI382fheoG8UlNhbUWTpK+9vUO1
+GxX1+7Q6BwAAAAAAAAAAAH5uBN94o6Io0nA41HAw0Hg8VhRHyuXKC+vySw0Zx73sTfxZGNdXUG4p
+T2NNu30Nukdq1UP1CL4BAAAAAAAAAACAnx3BN96YPMvV7/e1u7urw+NTxankBTV5QUWOV5JxPBnz
+ijtaKysra3MpzyTjyBhXxrnsTvxW1lrZPJPNUxnHl3FcmVfshOP48kp1BXmqadfTeDrVoD/QYDDQ
+cDiU7/vyfV/Ope8TAAAAAAAAAAAA8OtD8I03Jre5Op2OdnZ2dHh0rDR3VaotyQ8bclzvlYHx+dA7
+T2PlWSrjGLluIOOEl7g3VtZKNs+UpVPlaSzXL8k1Jcl8s2rdcX15QVWSkXECJUmmyWSiwWCgbrer
+Wq0mx3EIvgEAAAAAAAAAAICfAcE33pg8z9XtdvX06Y4ODk+U5J5KtWX55boc13/lfazNleeJ8jRW
+Go2URkMZ11NQbsp3PMmYs8Dc/LCN+an7kqXKs1hZMlEyHSiNxgqrbZmKcxZ+X9we47hy/fKsItwL
+ZeUoSlINBkMdHx/LWqswDOX7/o/cIgAAAAAAAAAAAADfhuAbb4y1VqenXe08e66DwxPFma+wtiIv
+aMg4r36pZVmkZNJXPD7V6PSZxt1duUFZjeX7qi3dleuHcr3SLzob3NpcyaSjaHisyeBQk/6BotGp
+mqtvqbn+rsKqL+M4MuZi9bYxkjGOvLCqoNKW8Tx1ekN99dVXyvNcjUZD5XL5Un9GAAAAAAAAAAAA
+wK8RwTfemDzP1el29ez5Cx0cDaTyhsL6qrxS/VuD6zyNZ6F394W6e5+od/C5/FJDxjgq1ZYk1eW4
+gYx+ueBb1ioedzQ6faLB8RMNT59q0j+UjFG5uaGg3JSM/43gWzKz4NuvKqwuSl6iTm+ox48fq1ar
+aXNz89J+NgAAAAAAAAAAAMCvGQOH8ZPlea4kSTQeT9Tv99U5PdVwNJE1gcLqkryw/q0V33kaK5n0
+FA0OFE86SqKh0mioZDpQPOkpS6ayefaL79OsxXlPybSjZNpXNB0pmfQUj08UT/rKkum33tcLKwqq
+i7JuVZ3eSF893tbh0ZGiKPrF9wMAAAAAAAAAAAD4W0DwjZ8syzJFUaTxeKThcKDBoK9pFElOqLC2
+JC+syvmW4NtmsdJpV/HoSHkylpGVlCtLp0qmfWXJRNb+0sG3lc1iZfFQeTKW8lTGSHky0XR4omh0
+8u3BtzFy/YrC6qKsW1GnN9T29lMdHR4riuJfeD8AAAAAAAAAAACAvw0E3/jJ0jTVaDRSp9PRYDjS
+dBopy6yMFygot+T5ZRnnVS81qzyNFE97ikfHstlUnufI8zzJpkrikbI0krX5L75PeZYoT6eyeSzX
+NSoFvqRUyaSjeHyiPJl8yz2N3KCqoLIoeRX1BxO92N3TyWlHk8lUeZ7LWvuL7w8AAAAAAAAAAADw
+a8aMb/xk0+lUBwcHevLkqYajqdywrsCvyvUrZ4G3Obu9ZG0uWas0nSqe9BWNuvI9qdxoyi+35Ieh
+dPY9l8Vaq8APVGo05TYrUhDIJgMl41Nl9ZVX3scYyQ3KCqptJZMTJWmuyVkV/HA40Hg8VhAECoLg
+0vYLAAAAAAAAAAAA+LUh+MZPNh5PZsH306cajCJ5YV0l05QXVGTMtzQVsFbW5sqSSMmkr3jSU6XZ
+VKvdkl9uK3HLyq2VlaRLyb6tZK1831e9UlGt7Kk/yTWc9mfB93dVfPtlOa6vaVBTkuUajUYaDAYa
+DgeaTCZyHIfgGwAAAAAAAAAAAHiDaHWOn2w8Hmt//0Db20/UG0xlgrr8cluuX3r1HaxVlk6UTLrK
+k5E816hcClWulFWtVFUqV+T7l3xNxlnY7geBFtptbW7eUK1aUh6PFE86SuOxrM1e2YbdGFeOG8j1
+S3L9ihyvpGmU6uDgSPv7hxoOh5e7bwAAAAAAAAAAAMCvDME3frLxZKy9gwNtP91RbzCR8RryK205
+XvmV329llUYTTYfHypOhSoGnRrOlWq2ucrks3/fluO5l75YkKQwCLSwuamvrlurVkrJkrOm4pzQe
+Kc+zomX7ecZIkpHrBgpKdZVqC4oSaXf/ULu7zwm+AQAAAAAAAAAAgDeM4Bs/mrVW1lqNxxMdHR3p
++fNdDcaRTNCQX16Q65e/7Y7K4qGi0YnyZKRyOdTS0rIajabCUijP87+9RfovzPcDtdotbWysq16t
+yFUqm0yVJVPlyUR5lryi6tvIGCPHC+WXmwqqi5qm0t7+gZ4/31Wv17/s3QIAAAAAAAAAAAB+VZjx
+jR8tz3KlWarxeKxet6dut6uqv6Zqqamw8u2tzq2s0nikeHis0Ey02K5rodZQkqRKkkRJctl79pJx
+HHmepzAMVavX1Wi2ZCJPTh5r0j9QUG7JlJtynW9WqBs3kFdqKqwuaxzlerG7r2ajovv37132bgEA
+AAAAAAAAAAC/KlejrBbXjrVWWZ4pSRJNJmP1ej31e13FaS6v1FRQbb+m4nukeHwsJx9rsV3Xvbt3
+tbS0KD/wL3vXLnCMeRl812pqtduqVcqSjTUdHCqZ9GXz9NX3dX35pab86oomsfRi71DPn79Ql4pv
+AAAAAAAAAAAA4I2i4hs/irVWw8FQ3V5XJycdxUkm44Zy3LI8vyTHDWVeUQUta2XzVGk8UjQ6lYJA
+7WZNt+/cUm6tev2BpOiyd+8lo1nbcsdRs9nU+tq63GCkQZxpODiUF1QUZsuvvKvjBfJLDYW1WHHn
+VKNeX6cnJxoM+orjWK7jynEdmdlQcAAAAAAAAAAAAAA/EhXf+FFsbtXr9/Ts2TMdHp0oyY3CSkt+
+qSbHK8k4roy+FuhaKysra3Ml0VjRqCNlE7Vbdd29c0cLCwvy/at5LYbjOGo1m7q1tan1tWWFXq54
+dKA06svmr+7N7riB/HJT5caqMutpOByo2+1oOBxqOp0qSRNZay971wAAAAAAAAAAAIBr72qmjLjy
+cpur1+vpxYsXOjntKM1dhZWm/LAqx/VlzDevqbA2V54nypKpsmSsLBnLNTW1GjXdvHlTj7efyPe+
+/pK8pGDYXPzEGKNWq6lyuaRMrvaPThUNj5Q2N5Vnr251bhxPXliT4/qyxlMUxRqNJhqNRppMJpIk
+13XlOFx/AgAAAAAAAAAAAPwUBN/4Uay1mkwm6nZ7GgxHSnNXbtiQ45cl8+ogN89ipdFQ8fhUjlJV
+yiXV6w3VGw1VqlWFYUmO48joLG629tJyb0k6X7BujFGz2VQQBBpPYvnOZ5oOT5VM+7JZLGvzWYX7
+ubbls08dGceV54Xyw7Icz1cUJTo9PVW73VYYhpe4gwAAAAAAAAAAAMCvA8E3fhRrrcbjsTqdjvqD
+sVLrzYJvt/zq2d6S8ixRPOlrOjqRo0zlSkWNRmMWftdqCoJAjuOeJcZXpwW4tbPgu9FoaHl5Wf3B
+UL6TaTo6VTwdKE9jyeayxvlae3cjY4yM8eT6ofygKscNFMWxOp2OwjBUo9G47N0DAAAAAAAAAAAA
+rj2Cb/xo1lplWaY8PwupjXuh4vmb358rS6fK47E8x8ivVlWr1VQKQzmOI8cYyXzPJ78EpVJJjUZD
+tVpVnuvK5plslirPU9k8k3Fevf3GzP5hjCMjR9ZKeZ7L5lZ5nl/2bgEAAAAAAAAAAADXHsE3fjRj
+zCywdmZpr7VW31WpbfNceZYoSyOVPEclbxZ8B99o931Fqr3neb6Z7avv+SqXyyqFJXm+J3NWmW7z
+THmeyTGOjNxvf7iz9THObN3mHwEAAAAAAAAAAAD8NKRu+NGMMXJdpwhvjfLvzKytzZVnmfIsles4
+KpdDlcoled756y+uVuh9fntcz1UYhrOW7K5bfN3aXLKvqdy2VvbssRzjyHXds+AcAAAAAAAAAAAA
+wE9F8I0fbVbtPatcNub1Fd+zeddGMo6spDybBeH2LDS+mDVf3VDYysrm+exmNSsJf23l9iwgt8pl
+jJHnebO1I/wGAAAAAAAAAAAAfjKCb/xoxsyCb9dxZjG1zWdVzfbbwu+zOdfOLPjOcqssz88Cc2kW
+Ds9y71n2fUVnftvZbO7sbH+NcWSM85r55nZWFW7tuRbx/PoBAAAAAAAAAAAAbwLJG340Zz6r2hgZ
+Mw+8v6vie/YPY2YvuyzLlF8Ivl95r8vezW+wdta2PUuz2bYbI2Ne17r85foYo6LVORXfAAAAAAAA
+AAAAwE9H8I0f7WXlsjmLp/PvqPaW7Lzi2ziyVrOq6Sx7TfB9FVnZfNbufLYOZxXf3xXS27NZ4LJy
+jJHrunKLOeEAAAAAAAAAAAAAfgqCb/xo5izAfdmy+zUV35rP+X4ZfM9u1yf4ttYqz2chdpblkpWM
+HMl897xuq1mV+KxA/HylPBXfAAAAAAAAAAAAwE9F8I0fZR7aOo4jxxgZMwt2v7PduTHnqqOlLM++
+VvF9tUNga+3Z7WWArbPbLL9+XcX3N1udAwAAAAAAAAAAAPjpCL7xo32j4vuslfd33GNWGe24s8rp
+LD+b8Z2/8luvGmvt2VzyV4X7r6v2fhmaG2PkOucr5QEAAAAAAAAAAAD8FCRv+NEuzPg29rurvc/d
+R2cV39bmRfhdfF3maxHy1WmDbnN7Lqg3ct3Xtzgv7mvPZoJbO1s3l1bnAAAAAAAAAAAAwJviXfYG
+4Pp6GXw7Z2H1y3be3/b9s4rv+YxvqyzPz7U611nhtJGZlUlfpdxbuT0/k9zIcVw537c03VrJzvZ1
+3urcMVx3AgAAAAAAAAAAALwJBN/40RxzFnrPq5ZtLqPZ/OtvMw+/c0l5ll8IvosI2UhXKvE+Y61V
+mqazCnWjWdW2Y/Tavuz2ZbtzWSujswsG3O9XLQ4AAAAAAAAAAADgu1Fyih/NcZ2zGd9Gxsxal1v7
+3TO+jXFk5EhWyvPsrNX51Qu5Zy5WnM+qvXNlWTbbf8ectSv/Pg91NuNbVsYx8jyPGd8AAAAAAAAA
+AADAG0Lyhh+taHVuHBnNWnmf1TZ/yx1m9zGOI6tZ8J3l2WvC8ktUbNYs4LbWKsuys5nkZhbgG0ev
+rfjW2Yxvm0t2tgau687Wj3bnAAAAAAAAAAAAwE9G6oYf7eWMb3PWnTzXd/U5Nzqb8W1cWWuV51Z5
+9roq8cvcwQsfLrY6l2Tmbd6/V7fyefBtZ8G348p13cveQwAAAAAAAAAAAOBXgeAbP8qsxfc8+HYk
+czbDWt+j1bk5a3We5bJXueJ7tsmFWVifvwy+jdGsz/n3rfg+a3VujFzPPat+Z8Y3AAAAAAAAAAAA
+8FMRfONHM2Y+q/qs4luvqd42mrUGP2vvndtZiFzc58plwLNQ2+pl6H2h1bnjnM0s/x7sWSt4m8tI
+cubV4gAAAAAAAAAAAAB+MoJv/Gjzam/HcaT5jO/vrPo+q/h2XFlriurp82G5ecVnV0Ux4/tse2eh
+9/fbTiur/HzFt+uerRsAAAAAAAAAAACAn4rkDT/a+eDbSLMZ1rLfmnvPWoM7Mo4jKynPrbI8O7vf
+/JuuZOR9oc25za0utG03r/s1ml0MYPP5jG/Jdd2iXTwAAAAAAAAAAACAn8a77A3A9eV5nsrlsgI/
+kDG58jSWzVJ9W/JtbS6bp8rTRI6x8jxXvufLcdxz33XVku95dfesSjsIArmeKxkpzzPlNpO12dn3
+Xdzw2VzvTHkaSTaX47hyHE+e58txHLmu+8M3BwAAAAAAAAAAAMA3UPGNH8UxjoIgULVaVRgGMsqV
+pZHyLLlYwX2OtbnyNFKWTmWMFASBgrB0LgD+euNwq6vE8zyVSiUFgS8jqyxLZvt71q79G/PN7exi
+gCydSsrluq78wJPreVR8AwAAAAAAAAAAAG8QFd/4UYxjFASharWaqtWyPGOKUDtPJsrSqRzHn7U1
+t5KsVZ7GSqKh0klXnmMVVquq16sqlcJzD6xXhN8/JAC33+i2biTpDQTMs4rvUKWwJM/z5Bgj2Uxp
+MlYaj+S4gVw3KJ47zyKl0VDJpCtjU5VKocrlqoIgYL43AAAAAAAAAAAA8AYRfONHMcaoWq1ocXFR
+7VZLYSmQUaZ02tOos6M8zxVU2vLLTeVnldHx6ESTzo4mvR2ttitaX13Xra0tNZvNN7BFZ4G3zYvb
+y211ZBx3No/7J3AdV77vqVKtaGFhQYsLi/KdVNPOE9ksVam+qrC2rNlM8FzJpKdR55kmvRfyNdHq
+6pI2Nzff0P4CAAAAAAAAAAAAmCP4xo9WqVQUBIHa7ZbKJV9GmZJpT+POc1k7C5u9Un3W7juZKhqd
+atx7rsnptsorD3V7657u3Lmtdqv10zfGzmdqn80Rz1PNa8cd40oyMu5PDL692YzvaqWqhfaClpaX
+FGWZJt0dJXEs47jyK23J5rJ5pnjS1bizo+HRF1pZrGttdUU3b95Uu0XwDQAAAAAAAAAAALxJBN/4
+UYwx8jxPxhgtLy/prYcPdHJyqsFE6k/GSgY7GsR9jU53ZPNENktkk75qQabW6qJu37qhhw/vn1V8
+N37i1lhlWaQ8jRSPe5oOjxSNTmaV3saRX26p0tpQubH2Rva71Wrp/oN76va6erHf1d5RV5PkRJMT
+o3h8Oqs2t1Y2HsjNOmrVfG3dWNHD+7f0zjtvaWl5+bJ/fAAAAAAAAAAAAMCvCsE3fjRjjFzX1cry
+iv74n/6T6vW6Pvr0S336+WMdnzzT4OixojiRMUaOIzXqFa0vL2hz46Hee+ctvfvOO9rauqlarf7T
+NsRKWTJVOh1o1Hmq7t6nGh4/lnE8OY6ravumjPRGgm9Jardb+rvf/EbNRlN/+Y+PlH/4iXb3j9Q/
+PtFoPC2+r1IOtNCsanFtQW89vKP/9Pvf6cH9u1om+AYAAAAAAAAAAADeKIJv/GjGGBljtLi4oPff
+f09ra6uSjHqdYyXjU+XTnuJpX57nyfU8NcNAt24s6t333tU7b7+le/fuanFxUcYYTafTH70dVlZ5
+GiuJhpoOjjQ62dbJ7mdy3VnwnWWxqou3fuxefuNPGvWG7t+/p42NdaVpokH/VGk0UB51NYkPZczs
+PuVqWysLi7p796beeeuB/u437+vGjQ15Hr92AAAAAAAAAAAAwJtEAoefzPM8VSoVLS4u6u9+876q
+lYqOjo80HA41Ho2K4LvVamljY0Mb6+taX19XuVwpQuI3xXE8BWFJ9VpNeZ4rz62MXhVf/xDmwnYa
+xygIAllrdf/+fTmOowf376vT6ajX7xcXBFSrVS0tLWl5eVm3b91Ss9GQ67hvfJ8BAAAAAAAAAACA
+v3UE3/jJPM9TtVpVqVRSrVbT22+/rSRJlCSxsiyT47hyXUe+78vzAwW+pyAI5Pv+G98W13UVhiWl
+lYqSOFYcJzI/PfmWpCKwdpyzffE8PXz4QLdubSmOY8VxrDRNz1q7O/I8T57nyfd9BUGoMAjkuA7B
+NwAAAAAAAAAAAPCGEXzjJ5tXOM8D4VqtJmut8ixXbnO5rlt8zy+zLa4cx5WMIxXP+eOf+1X3nO9P
+uVxWuVyWtXZ2y62M83JfCbkBAAAAAAAAAACAnx/BN34WxphZdbM1v1jofdn7K0nGNd/4MwAAAAAA
+AAAAAAA/L4Jv/Gz+FgLvr+8vAAAAAAAAAAAAgF+ec9kbAAAAAAAAAAAAAADAT0HwDQAAAAAAAAAA
+AAC41gi+AQAAAAAAAAAAAADXGsE3AAAAAAAAAAAAAOBaI/gGAAAAAAAAAAAAAFxrBN8AAAAAAAAA
+AAAAgGuN4BsAAAAAAAAAAAAAcK0RfAMAAAAAAAAAAAAArjWCbwAAAAAAAAAAAADAtUbwDQAAAAAA
+AAAAAAC41gi+gW9hZSVZSZIx5rI3BwAAAAAAAAAAAMC3IPgGvqaIu1/m3gAAAAAAAAAAAACuMIJv
+4HUo9gYAAAAAAAAAAACuNIJv4GvMuRsAAAAAAAAAAACAq4/gGwAAAAAAAAAAAABwrRF8AwAAAAAA
+AAAAAACuNYJvAAAAAAAAAAAAAMC1RvANAAAAAAAAAAAAALjWCL4BAAAAAAAAAAAAANcawTeuDHPZ
+GwAAAAAAAAAAAADgWiL4xhVjJBkZI1l72dsCAAAAAAAAAAAA4Dog+MaVQtU3AAAAAAAAAAAAgB+K
+4BsAAAAAAAAAAAAAcK0RfAMAAAAAAAAAAAAArjWCbwAAAAAAAAAAAADAtUbwDQAAAAAAAAAAAAC4
+1gi+AQAAAAAAAAAAAADXGsE3AAAAAAAAAAAAAOBaI/gGAAAAAAAAAAAAAFxrBN8AAAAAAAAAAAAA
+gGuN4BsAAAAAAAAAAAAAcK0RfAMAAAAAAAAAAAAArjWCbwAAAAAAAAAAAADAtUbwDQAAAAAAAAAA
+AAC41gi+AQAAAAAAAAAAAADXGsE3AAAAAAAAAAAAAOBaI/gGAAAAAAAAAAAAAFxrBN+4Oswbehhz
+9lhGkuzZn9of+CgXv9+YN7RxAAAAAAAAAAAAAN44gm9cLcboZcb8Q8Pqcw9z9r8fwxY3wm8AAAAA
+AAAAAADgOiD4xpXhOI4815XjuLM/sFbW5t/z3lY2zyRZOa4rz/PkOOZlWG2trJ1H2q99qNk/bC4p
+n22X58lxHMJvAAAAAAAAAAAA4AryLnsDAGlWTV0KQ9XrNVUrffUmibJkLJsl3yv8zrNUWTKRUaZK
+uaSy2pKR4jiWtbNQ3Gax5LgyxpW+M8C2yrNEaTKVzR2Fvqdms6lSqSTH4VoRAAAAAAAAAAAA4Koh
+xcOVYIxRqRSqXqupUinJc3JlyWQWVtvXVGlbqzyLlSYTGaWqlMtaaC+oUinLdRzJ5srzTHmWKM/T
+b7Qwf+VDZomyZCplscLAV6PRULlcludxrQgAAAAAAAAAAABw1ZDi4Uowxqher2ttbVWHJz092z1W
+NDxUXF9RGo/kBhU5jiczb4MuFa3Q8yxRMulp2t9X2RmruVTWarsp40h5lis1VTnZSKPTJwoqCwqq
+bble+RvbkGeJ0nisdDpQGg1llMkPPFWqFbVaLVUrVSq+AQAAAAAAAAAAgCuI4BtXgmMctVotbW1t
+ae/gWJ4+1aS/r3JjXcmkJy+sS34o91zwbWVl81R5Fiken2jSfaZSzdFCa1EP7t+S67oyxlF3mCjJ
+BhocfqHqwm15QUWuV5J0sd15lkwVDY80HRwqjfpyjZ21X6/V1G63FQQBFd8AAAAAAAAAAADAFUSK
+hyvBOLOK7/X1da2tLKle8eWbWDbpKx4dyXEDeaW6/LBa3CfPUmVppCweKh2fSnFPJbemtaWmHj58
+IM/z5Qe+nu8e6+B4qEHnqTw/VFBpzJ9Uxjiz1uc2VzzuaNrf06T3Qq6dqlGvanGhrXa7pXq9LmOM
+zHfOBgcAAAAAAAAAAABwGQi+cSUYY1SpVGSt1c2bm3r33Xc0HI3Vmxj1Tz7XqPNMQbl9FlobSUZ5
+OlU86SuNBiq5E62tLOjunRu6e/eu7t69q2qtppXVVS18ta0PPvxc3W5Hcf+ZuvFQbliX45fluCXZ
+PJbNYiXTgeLRibJpTzdvLOrOzd/qvXceanPzBoE3AAAAAAAAAAAAcIURfONKMMaoVCopDEJtbW3p
+N++/L2ut/vofH+ngxWcaTVKF1UWF1YWzENoojceaDo+VRgNtbW7oxq2bevjgvh7cv6/79+9rfX1d
+4/FEtVpNR4f7evzlRNPBM0WnO5ITyis15IUN5clYeTJRloyUJ2M5SrS6sKn/+7/8vf7uN+9pY2OD
+4BsAAAAAAAAAAAC4wgi+cWU4jiM5UqPR1O3btyVJRkaB76rTG8o6oeSEsnYWQts8kMlLcpXozp3b
+unv3rh4+fKD19TWVy2W5rqtKpaLbt7b0d7/5jdI0Va83UK8/VJRYWSeQNYEcOTK2JN9tK/CNKiVf
+v//tb/TWw/taW1tXrVa77KUBAAAAAAAAAAAA8B2MtdZe9kYA502nU/X7ffV6PT1//kLPXzzX0fGp
+er2heoORcpsrz61KYaBmvapmo6qNjQ3d2NjQysqKFhYW1G63lOe5sixTt9vT3t6e9vb3tb9/oIOD
+Q3X7A43GkSbTSKUwUCn01WzUtbS4oOWlBd24cUObm5tqNhsKgkBBEFz2sgAAAAAAAAAAAAD4FgTf
+uLKstRoMBhoMhjo+PtLu7q729/eVZZnyPFetVtPa2prW19fVbrfVbrcVhuG3Plae5Xr+4rlevHih
+w8NDdTod9Xo91et11Wo1LS8v6+bNm7px44Y8z5PnebMqdAAAAAAAAAAAAABXGq3OcaUFQaBarVp8
+3m63Za2VtVZhGKrRaKjRaKhcLstzv/3lbIyRcYwajYastarX6xqPx5pOpwqCQKVSSbVaTa1WS57n
+yXVc5noDAAAAAAAAAAAA1wQV37jS5iF3mqbK81xpmhZfcxxHrusWH40xrw2rszRTms0ey1qrLMtk
+jCkex3Eced4sQCf4BgAAAAAAAAAAAK4Hgm8AAAAAAAAAAAAAwLXGAGMAAAAAAAAAAAAAwLVG8A0A
+AAAAAAAAAAAAuNYIvgEAAAAAAAAAAAAA1xrBNwAAAAAAAAAAAADgWiP4BgAAAAAAAAAAAABcawTf
+AAAAAAAAAAAAAIBrjeAbAAAAAAAAAAAAAHCtEXwDAAAAAAAAAAAAAK41gm8AAAAAAAAAAAAAwLVG
+8A0AAAAAAAAAAAAAuNYIvgEAAAAAAAAAAAAA1xrBNwAAAAAAAAAAAADgWiP4BgAAAAAAAAAAAABc
+awTfAAAAAAAAAAAAAIBrjeAbAAAAAAAAAAAAAHCtEXwDAAAAAAAAAAAAAK41gm8AAAAAAAAAAAAA
+wLVG8A0AAAAAAAAAAAAAuNYIvgEAAAAAAAAAAAAA1xrBNwAAAAAAAAAAAADgWiP4BgAAAAAAAAAA
+AABcawTfAAAAAAAAAAAAAIBrjeAbAAAAAAAAAAAAAHCtEXwDAAAAAAAAAAAAAK41gm8AAAAAAAAA
+AAAAwLVG8A0AAAAAAAAAAAAAuNYIvgEAAAAAAAAAAAAA1xrBNwAAAAAAAAAAAADgWiP4BgAAAAAA
+AAAAAABcawTfAAAAAAAAAAAAAIBrjeAbAAAAAAAAAAAAAHCteZe9AX8rkiRRkiSK41jWWmVZ9srv
+c8zsWgTjGDmOI2OMPM+T67ryXE/GMTJmdsP3kySJoihSHMWSpNzm8jxPQRDI9325rsuaAgAAAAAA
+AAAAANcYwfcvpNvtamdnRy9evFAcx5pOp8rzvPj6PHh1HEee58nzPJVKJZVKJTWbTbWaLTVbTZVK
+JZVLZbmee9m7dG10u109fvxYOzs7yrJMSZKo2Wxqa2tLm5ubrCkAAAAAAAAAAABwzRF8/0K63a4+
+/fRTffTRRxqNRhoOh0rTVNI3Q2/f9xWGoRqNhhqNhlZXV7W1tSVJsk2rIAjkipD2++p2u/rkk0/0
+7//+70XV/fr6uqIoUr1WZ00BAAAAAAAAAACAa47g+xcyHo+1v7+vr776Sv1+X8PhUEmSFF+fB9+u
+68p1Xfm+r0qlokqlona7rS+++ELLy8taW1vT6uqqVlZWtLS0pMXFxeL+eLXxeKy9vT09evRo1vI8
+jjUej7WxsaHhaKiwFF6ovgcAAAAAAAAAAABwvRB8/0Imk4lOTk60u7urXq+nfr9fVHxLL4Pr89Xf
+ruvK8zyFYahSqaRKpaKtrS3dvn1bb7/9tn7zm9+o3WrLOObCY+CiyWSio6MjPX/+vAi+Pc/T6emp
+ptOp0jSVtfayNxMAAAAAAAAAAADAj0Tw/QtJkkT9fl8nJyfq9XrqdDrKsky+78v3fTmOcyG4ttYq
+z3MlSaIsy5TnuVzX1d7envb39zWdTlWtVrWysqJKpaJqpcqM6m+RJIl6vZ5OTk4URZHG47Hq9boG
+g4HiOFaSJATfAAAAAAAAAAAAwDVG8H2JarWams2mWq2WarWaKpWKHMdRmqaK41j9fl/9fl/j8ViT
+yUTj8Vj9fl87OztyHEfWWvX7fb311lt6++231Ww2L3uXAAAAAAAAAAAAAOAXR/B9iUqlklZXV3X7
+9m2trq5qdXVVrutqMploNBppZ2dHL1680NHRkbIs02AwUKfT0WAw0HQ61Xg81unpqay12ty8SfAN
+AAAAAAAAAAAA4G8Swfcl8n1fzWZTN27cKGZ3h2FYhNrr6+s6ODjQ7u6udnd3tb+/X7RJHwwG2t3d
+lbVWN2/e1LNnOwoCX7VaTeVy+ZXPl+e5sizTeDzWYDDQcDhUHMeK41g2t3Lc2VzxMAwVhuGshXq1
+qlKppMPDIx0fH2kymchaK2OMWq2WWq2WKpVKcZ+vs9aq1+up1+sVletRFKlcLp89fk2NRl31ev3C
+ffIsV5ql6vf7GgwGmkwmxba6rivHceT7fjH/vFatqVqrKgiCNzLrfN5ifjKZqN/vazgcKkkSJXEi
+SXJcR47jqFqtFutULpdVKpW+83EHg4GOjo50cnyiLM9krVUYhqpWq6pWq4rjWNPpVHEcK8sypWkq
+3/fleZ6qlarqjboajUYx//1V+3p+/QaDQbF+8/nm8/XzPE+lUql4/nq9/sr1Gw6HOjo60vHRcbHN
+pVKp+PmPxxONxyNNp9PZGiWJms2mms2mqtXqt742AAAAAAAAAAAAgDeF4PsSeZ6ner2u5eVl3bx5
+U/fu3VO9XleWZkrSRKPRSKPRSLu7u3r8+LEeP36sjz76SNPpVKPRSNIszH7y5Im++uorlctlra+v
+vzL4ttYWLdRPT0+1s7Oj58+fazAYqN/vy1orz/MUBEHRfn1lZUUbGxtaWFjQ9vZjffDBBzo9PVWW
+ZXIcR3fv3tW9e/e0vr6uVqv1ynAzz3IdHh7qyZMn2t/f18nJiQaDgZaWlrS0tKSNjQ3dunXrQvCd
+Z7niZBYAv3jxQjs7Ozo5OVG/39doNCqC4POt4jc3N3XDuyHf9yXpJ4Xf87WajCc6PDos1mo0Gmk8
+HivPc/m+ryAItLa2ptXVVa2srGh5efm1wXev19NHH32kjz/+WFmWKcsy1et13bhxQ+vr6+p0Oup2
+u0VV//wigWq1quXlZd25c6cI/B3jvHKue57lStJEURRpd3dXz54909HRURHge54n3/dVrVYvrN/8
+z7++fr1eX5988ok++OCDYptbrZbu37+ve/fu6ejoSIeHh8UFGaPRSLdv39bdu3e1sbHxra8NAAAA
+AAAAAAAA4E0h+L5EnuepXC6r3W5rZWVFN2/eVKvV+sb3HRwc6ObNm1pdXdVoNNLe3p5Go5EGg4Hi
+ONaLFy+0vb2tdrutWrWmlZWV4r7z6t8kTdTr9dTtdvX06VN98cUX2t7eVqfTUa/XK8LcMAy1uLio
+hYUF3bx5s6hy/vLLL/XBBx/o4OBAURTJGKPhcChjjFzHLQLzr8vyTIeHh/rss8+0vb2t/f19dbvd
+osLddV0tLS1JuliR3u121el09Pnnn+uLL74o7jcYDOT7vnzfV6PR0MLCgpaWljSZTGSM0fLyclF9
+/UPNnz9NUx0fH+v4+Fg7Ozt69OiRtre3i+B4vlalUkmbm5va3NzU1tZWUU0dhqHCIHxlKN3v9/Xl
+l1/qX//1X5WmaVEdfefOHd26dWtWWX18XIT80+lU1WpVtVpNN27c0HQ6lTFGCwsLWlhYUKVSkTFG
+xphi+yeTibrdrrrdbrF+e3t76na76vV6CoJAvu+rXq9rYWFBi4uLGo/HkmaV7vMq9rnBoK9Hjx5d
+2OalpSWNRiOlaard3d2iJX+v1yvCb9/3VS6XFYbhK1/XAAAAAAAAAAAAwJtC8H0NVCoVbWxsKM9z
+bW9va2dnR9ZaDQYDRVGkbrer7e1tLS4uam1t7cJ94zguguQPPvhAn3zyiXZ2dnRwcKCjoyNFUaTp
+dCprrVzXleu6qlQqKpfLWl5e1qNHj7S2tqadnZ0ieO71eppMJkWbbM/zVKvXtL6+fuG5rbXKskz7
++/v65JNP9NVXX6nb7WoymajZbMp1XZXLZfmeL2utxuOxRqORnjx5oo8++kiff/659vf3dXBwcKEC
+er6dQRAUbcYfP36szz//XPfv39c777yjt956qwiEv68oiopW8h9++KE+/vhj7ezs6Pj4WCcnJ4rj
+WFEUFWvleZ6eP3+uZrOp9fV13bt3T/fv3y+qnV91IcB0OtXR0ZF2dnaUpqnSNNXBwUFxccB4PNZ4
+PFYURUXb8CAIFASBnj17pqdPn+rjjz/Wb3/7W/3+97/XjRs3igsB5vd99uyZPvzwQ3366affWL/p
+dFq0Og/DsGg5//X1e+edd4r1m06nxUUA820+Pj7W6empHj16VLSyH41GRTv1hYWFoop9YWHhsn+F
+AAAAAAAAAAAA8CtH8H0NVKuz2dXValVffvmlHj9+rMlkojRNNR6P1ev19PTpU62srOidd965cN84
+jtXr9bS7u6s///nP+p//83/qxYsXRbg6D6fnHMeRMUaO46jRaOjLL7/U6upq0eJ6MBjo8PBQvV5P
+vu/LdV1Vq1Vtbm6+ctvTNNXe3p4+/fRTPX78WNPpVFmWaWtrq6iOdj23CL5PT0/1xRdf6B/+4R/0
+L//yL5pMJsW+zrd1vn3zYNbzPD1+/FgbGxs6PDxUtVrVwwcPJeeHrXMURUUb+D/96U/6x3/8R714
+8UJxHCtJkln1fJ5fWKv5bXFxUTs7O9rf31eSJFpZWX1l8D2ZTHR0dKTd3V0lSaI0TZXnuTzPk+M4
+xXOc/+i6rowx8n1fjx49UqPRUBRFWl9f1+LCYrEGk8mkCKP/8R//Uf/0T/9UrN98+1+1fo7j6MmT
+J0Vlfblc1sOHD+W6s4r1efB9fpuNMXr27Jl83y+qwM9v99raWtHWPoqiy/4VAgAAAAAAAAAAwK8c
+wfc1MK/OrdVqWlpa0ubmpo6Pj9XtdpXnuSaTSVGVPG9Zba2VJHU6HX366afFXOkXL15oOBwW1dJh
+GCoMQxljZK1VkiQaDAYaDocajUY6PDzUeDxWtVpVtVot5l+Px2N1Oh09f/5ca2trxZxwaTYfOo5j
+TSYTnZyc6OTkRJ1OR6PRSEmSFC2wl5eXtbS0pHK5rDRN9fz5c3388cf685//rK+++krHx8cKw1DV
+alVhGCoIAoVhqCzLZK3VZDJRv9/XZDJRr9dTmqaq1+u6f/++dp7tqF6vq9FovHZ95/s0X6u//vWv
++uSTT4qW8vOW9OVyWaVSSY7jFGHvvOX86empnjx5ojRN1Wq1ziqxZ3PIz7cNn69xHMdFBfm8Kn2+
+r7VaTUEQFOF0r9dTv99XmqbF/s6D6mq1qvX1da0sr+jFixf6+OOP9Ze//EWPHj3S0dGRgiAo2um/
+av3mP+tut6s0TVWtVnXv3j09e/asWL88z7+xzfOw3vM8hWFYzF2fV8K32+3igg3P468ZAJdj/t+l
+r/+7zV/+eW7zb/3+73osAPi1+K4OSee/5piXV5Uax7zye35ItyUAAF6FY3gAAIA354ee83/b+f7r
+HusqIZG6RhzHUavV0sbGhnZ3d/X8+XPleV606O52u5pOp8X3W2t1dHSkv/71r/pf/+t/6fnz5xoM
+BgqCQKurq9rY2NDi4qIWFxfluq6SJNF4PNajR4/05MkTjUYjjUYjTSYTWWtVLpeLKuEsyzQajbS/
+v6+9vT31+33lWV78Usyrp3d3d3V6eqrxeKw4juV5noIgULvd1o0bN7S2tqZKpaI4jvX48WP90z/9
+kz7++GPt7e0Vs6Q3NjaKkLzdbhcB7N7enr766iu9ePFCSZKo2+0W886/+OIL3bx5U2EYvnZd57Ox
+j4+O9cEHH+gf/uEfdHBwoNFoVFS+t9vtYs08z9NwONRwONSTJ0+UZZniONbJyYmm06lWV1e1tbWl
+SqWi9fX1C8H3q8yr+RuNhjY3N3Xr1i0tLCwoCAK5rqtPPvlEjx490snJiaIo0mQy0cHBgT777DOV
+y2W5rqvFxUVtb2/rn//5n/XBBx9od3dXURRpYWFBGxsbWllZKX7W8/U7ODjQ48ePixbm3W5Xu7u7
+Raj+XetnrS1u5XJZrVZL9Xq9uEDg7t27Wl1dVb1eVxAEl/2rA+BvzPk3uKy1xZtkuc0v/P1VvIl2
+rsvG+fvzRhmAvzXzk9jzHx3HKT4vbvlZ5yDjyMrKOKa4kPb8/QEA+L6+fgwvzcLurx/Dz79+vivf
+178GAACAbzp/rj///Hx34PNfm5/zzzO/63TOT/B9jTiOo3q9rrW1NS0uLqpUKslaW4Td8znO86ri
+NE11eHiozz//XB999JEmk4lGo5HK5bIWFxd19+5dra+va319Xb7vazqdqt/vazweF9Xj0+lUk8mk
+qPaez4d2HEeTyWQWGJ9Vn48nY/m+ryAINJ1OdXJyop2dHZ2enmo6nSrPc/m+r3q9roWFBa2trand
+bivLMvX7fT19+lQffvhh0RI9z/MiPL5z547W19e1tramyWSiKIpUqVTU6/V0fHys8XiswWCg4+Nj
+PXv2TNvb2yqXy1pbXfvONZ2v1Wg00v7Bvh49eqRPP/1USZJoOp2q1WppeXlZd+/e1d27d3Xv3j0F
+QaBut6vT01MZYzQcDnV8fFxcfPD06VN99dVXarVaqlQq35i7/nVBEBQXNLz77rv6u7/7O62vr6tU
+KhWzzKfTqdI01enpqbrdrk5OTvTll1+qXq9raWlJt27dKmZ7f/nll0V7+HK5rLW1Nd27d09ra2va
+2NgoZn3X63X1+30dHBwU1d/Hx8d6/vy5Hj9+rFKppJWVlVdus+/7RceA5eVl3bx5U0tLS6rVamo0
+Grp9+7bW19fVbDa/18UHAPCmfCO8zq2yfNbpIstzZWmuLM+V57nSzCo/+1qeW0mzj9bmmt397E0z
+O/+s+AQArj8z+4cpPj8Luo2R684+Oo6R67gyzsVROfNRPPM/c+UWY4bmJ8NX/UQYAHB1vPoYPpe1
+8+P2XFmWK8+t0iw/u2g1l82tbHEML1mbi2N4AAAAvTznP3dqPg+zXXd2vu8YI9dxLpzznx/xm5tc
+jnVm1eDX6Jyf4Pua8X1fpVJpNhv7bAZzkiRyXVdxHBdtrPv9/jcqrvM8L1pPp2mq4XBYhJ7z9t3T
+6VTD4bCYGz2v8HAcR57nFS2u52FmHMdFS/SdnR0tLCxoYWFBk8lEu7u7evz4sU5OTpSmqUqlktrt
+tjY3N7W0tKRSWFIURep2u9rf29fh4aH6/X4xE/r8c3S7XWVZpl6vV4T6R0dHRev0+Ztv83bge3t7
+2tjYUJIm37me87UajUba3d1Vt9tVHMcyxqhUKmlxcVHvvfee/ut//a9aXl7W8vKyfN8vguL5mgVB
+oJOTE52enqrf7+vJkydaWlp6begtSZVKRXfu3NEf/vAH3bt3T/fv39fi4qI8z5MxRvfv39doNCoq
+7Y+OjjQcDrW3t6d2u621tTWtrKwUs9fn6zev0J9Xw+d5XmxzkiQ6OjpSHMcKgkBxHBevgX6/r93d
+Xa2vryuOX71+jUZDN2/e1J07d3Tr1i1tbW3NfqZnr815dXmr1VK5XL7sXxsAfyMuVHqcD7yzXFmW
+ahJlmkwTjaNU07NbUryJdvbm2fwx7NeqTs7eMLO8awbgV8LI6Oz/Z4G25DpGge8o9IxKgaswcOR7
+rlzXket6Zx9duY4r15tdEOu6rnInfxmCn52jSFf/KnAAwOX7tmP4PM+VppmmUarxNNEknh2/T6JM
+SZpxDA8AAPAdXp7zz873jZF811HgGwWeUTl0FfiufM85K3h15Z2d58+zQdd1i2JYk88ujJdz9cNv
+gu9rxBhzodLWdd2iYjnP8yL4nldQ7+7uam9vT51OR/1+X+VyuZjDnKZp0cb8+Pi4eKHOA3FJRfAq
+qXiRzyu6gyBQkiSKokij0aiotDbGqFaraTwe6+DgQNvb2+p0OkrTVGEYamlpSbdv39bKyorCUqgk
+TnR8fKydZztF8D2dTouZ3tKsbfp8HxzHKU5ohsOh4jgugm/HcZQkiXq9nvb394uQ/LvMg+/xeKzd
+3V31ej2Nx2NVKhUFQaDl5WX99re/1f/4H/9DgR8oCGezt7MsUxLP9n88HivLMkVRpOPjY/X7fe3s
+7Gh5eVlvvfXWa3+u1WpV9+/f13/7b/9Nq6urWl9fV71eL7ZvOBwWofTR0ZEkFes7n/G9tramg4MD
+DQYDTSaTYv2MMcXFBYPB4ML6jUYjRVF0Yf3mr539/X11u10lSfyt2/zWW2/pv//3/67bt2/r3t17
+arfbxZVB81nf878YAeDndv4NrvlFYPlZZXeSpEqzTKPxVJ1BrN4gUn+UqD+OFSfpyyrwedXIWfX3
+vOr74kcA+PUwZ1eAO47kOLOT30poVC25qpc91SqeSoEr3/fkeS9vvu/LzVx5rqfcy4tjv+LcwTgy
+7tU+EQYAXL4LIfVZ6P2NY/hJpO5gduuPEw1GiaZxevb+17lj+FnJ9zeO3S0V3wAA4G/R10JvxzUq
++Y4qoVGt5Khe8VQve/L92W2e/50/9z9fDDsvkp13fLvK4TfB96/AvO3AvPXgPCw9Pj5Wp9Mp2l4n
+SSJjjMbjsU5PT5Vl2Tcea37feSj69XlJvu+r2Wwqz3P1+31lWabpdKrDw0M9fvy4aC8+D2Z3dnbU
+7XaVpqmq1apWVlZ07949ra6uKgxDxUmsfr9fhN5pmipN0yKIHQwG2t/fV6fT+ca2zkP3+fzwedAR
+x3HxZ/Pt/y7z9eh2u4qiSFmWyfd91Wo1tdttLS0taXlpuZhdOP9FztJMS0tLWl9f1+7url68eFFs
+V7fbLdb+dVzXVaVSUavZUqPRULVaValUKta91WoVM7rn7e3n7dm73a6Oj491cHCgfr+vJEmUJEnx
+ehgMBjo4OFCv1/vG886r9UejkeI4VpqmZyeXSbF+3zYby/d9tVotbW5uam1tTUvLS2o2m5f1KwAA
+knRW3Z2dXciVKU5STaaJOv1InUGk7jBSdxCrP0o0niYaT2fVInmeKzv/ZpnOvQlnz9WH2Nf/NwUA
+rhVz1t3JnF1k60kl3yj0HdXK8VkAPrvVyq6CwFcp9BX4gfzAn50U57Mg3FpbhN+5chlrrvSJMADg
+arDWFqH3/Bh+GiU6HcTq9qfqDmJ1h7F6o1jjSapxlM6O4bPvewwvSRzHAwCAvzXOuS5v84vdpdA3
+KgeOauVU1dCoXpmd81fLnoLAVxjMil993y+C8PkYZM+bRcrGvhyBdhURfF8jL1s9za5szfO8aCdY
+KpXk+35R0TsPc3u9XhFgzivDJRXtr1/1HPOQfB5qn//avI11rVbTixcvNJ1OFUWRjo6O9PjxYy0v
+L2synWo8Huvw8FDPnz9Xv99XHMcKw1Crq6t68OCBVlZWFASBer1eMad7PjN8Xj09Dy/G4/Erq4az
+LCuC8nlwO1+j+fbb15Tn5XmuyWSiXq+nwWBQtDkPw1CNRkPNZlOVSkWOO3tT8Ou/yNVqVUtLS2q3
+298IpeeP91OFYUnNZlO1Wu1CFbwkDYdDdTodHR0daTQaFes3D/273a4mk8n3Wr/5es3vn2WzE8lX
+McYoCIIipJ9f7QMAl+FCpcjZfwfiJNV4GqvTj7S9O9T23kidQaLBePZmWZrOZ3zP5gLa2Ttls8fQ
+y88vPI+u5sEcAPxYZh4LmNnnztnJsOfkKgdW5cCoVTVabRqttIwqpVBJKVCplCjMwuKC0QuPeTYT
+zOa2uAocAICvu9Cx6azSe37hancY6cnuUNu7I532Yw0mqUbTVGmWK01nQXn+qmP4V1R3z/6V/xYB
+AIC/NefeyZyf8ztGrrHy3VzlMFE5MFqsGa22jBYbriqlQNXyrNtzGIZnY2UuHlzNq7/n5/zS1Tvv
+J/i+ZpIk0XQ6vVDNPL/yYt6y2lqrKIqK2dVpml54jHm4+V1twOePVyqV5LquGo2GarWaGo1GUdEx
+Go2KOdHHx8fa3t7W1taWBoO++v2+jo+PdXx8XDxPpVLR6uqq7t27p+XlZYVhqDRNNR6P1ev1NJ1O
+i306X70+r0R+FcdxitbrtVqtCIjnrcq/TyA7D6rPr9W84rter6tUKr3yF9c4RuVyWa3WrFJ7Hkqn
+aarJZKLJZPJGgu8g8FWtVlWtVi/MdZ+H9oPBQN1uV9PpVFmWXdjW+YUS32f9JKler19cP9f51vvN
+Xx/z1x0AXKZ5pcg8+J5ME3X7sfZPJnqyN9LnOwP1hqnGUaYoodchAHy72d+RgZcrdHO1q1ZpYmVy
+qV5JlFYDZWeh9/wk2JiXx4zGmOIqcFeujHu1ToABAFfH14/hp9Es9D44PTuGfzZQZ5BoEmWaxhzD
+AwAA/DSz4ynH2Nk5v5Nr3LTKUsmmjhq1RHmaqFRKLpzznzfvNpzbfNb2/Aoi+L5G5tXPJycnRSX3
+vDq5UqmoWq0qDMPie+fVv9ZaOY6jer2uarWqxcXFYi709+G67qzd9/KygiBQlmUaj8fa39/XkydP
+NJ1O1el09OzZM+3s7Gh7e7uYlx3HsVzXVbVaVbPZ1OLiolZWVlSr1WYhff5yO+fhbLlcVq1WK+ZX
+b2xsqFqtfq9trdVqWl5e1urqqu7evatq5fX3m8+Pmj///Bd3Pqv6u65WedX3zdvCv+ovhZ/ys/96
+ReP5Cu3z61cqlYr1W1tb08bGRjEz/HWq1aqWl5e1srKi+/fvq1arvZHtB4Cf27w9YpbN5gGe9iNt
+7w70ZH+kF8dTDcaZpkmujC6HAPC95LlRLEfDaabDrpSkuZYbkbI0Vp69HJPzcjTSywtYz58IG2uK
+PwcA4OtymxcX7XcGsbZ3h3qyN9KLo4kGo1TTOFea/fTnAQAAwIyVUZYbRXLUHedyzKzzzkqUKU+n
+qqWlIn/6esY1P7c3xlzZTm8E39fIvMr65ORE3W5XcRwXlbfValX1er1oNXg+DJ0H35VKRUtLS3r4
+8KH++Mc/6ne/+933el5jjCqVisrlsrIs03A41NHRkT777DN5nqfJZCJjjNI01dOnT/XkyRMdHx+r
+3+9rMpmo0WioXC4X87JXV1flOm5RTZzn+YVtDYJAjUZDq6ur+sMf/qC///u/1+rq6vfa1iAIVClX
+VKlW1Gq1ValWvte6zp97/ks8f8Nu/qbdt3EcR57nfSP4nr8J+CaC71c9xvlw/etV3fP1W1lZ0e9/
+/3v9/d//vTY2Nr7Xc/m+r3K5rEqlooWFxe8dmAPAZZr/PTm7GChVmmXq9Kd6vDvSo+cD9UeZBuNU
+aWZFnQgAfD9ZbpRbo2FklaSp+uNMWZLJt5kcG13oKDTv1mSMI9dxz/377ETYuMz6BgB8k83nI/0y
+JensGH57d6TPd/rqj2fH8EnKMTwAAMCbZK2UZo6y3KpvreLEajRJZdNMgTIpT7/lnP/lbO95dubK
+vXLn+wTf18A82BwOhzo8PNSTJ0+0v7+v8Xgsx3FUrVa1urpaVFJLswAzDMML7b7nbcM9z9PS0pLu
+378v6buvxpiHCfMQOMsy1Wo1hWGopaWloiX2vGX5ixcv9MEHH2gwGOj09FTWWlUqFa2srGhtbU3t
+drtoqy1JjjtrtT1vmT1vbz4P7mu1mm7evKmtra3vtZ0vK7A91WrV79WC2/O8C2s1X+/pdKrpdPqN
+VvHnJUmiyWRy4fvmFyMEQfBGWoDHcazhYKjhcHihFfv8Z1wqlVQqlYqWkvP1S9NUlUpFN27c0L17
+937w+lWrFVqYA7g2cpsry3JNokzj8VSng1idfqzuINU0OZvnzTtmAPC9zcemprmRtY6yzFV/nKjr
+T+XKufB36vmLRpPUlXFe/vu86vsqnQQDAC6ftfas2ttqGqUaTSJ1h7E6g1id4azSO0k5hgcAAPg5
+zM75jdLM0SR3ZOSoN45U96eyNrvQNXN+fj/vfjzP0Ywxcoxz5S52J/i+BtI0VRRFGg6H2t3d1ePH
+j7W7u6vxeCzXdVWv17W5uakbN26o0WjIGFNUgc9ndOd5rjiONRqNNJ1O5XmeWq1W8SbVqxRVxVmu
+LH/ZSnte/b24OKsI7nQ6iuNYURRpf39fkhRFkbrdrhzHUa1W0+bmpjY3N9VoNC48h+M4Rat23/fl
+OE4ROg+HQ2VZpmq1qna7XVxR8irz6uqLswZnv3Sv4/t+sU/z8DhNU41GIw2HQ0VR9Or1yV/OUj8f
+SnueV4TR8wr8n2IymajT7ajf7xczw+cXC5TLZVWr1eJihPn6RVGkwWCgLMtUqVReu37z6vGvdwkA
+gOvCWqs0yzSeJjodROoPYw0ms5neWT4LbwAAP5y1RrlcJTIaR7m6w1ju/OJYo+KK7/nN83w5Tlqc
+g1yVE18AwNVz/hi+O4jUHcQajFONp2fH8Je9gQAAAL9yuTWSPEWp1WiSqWOmkp3NmXGdl12P5x89
+z5t1dL7CF7sTfF8x59u1JklStBbvdrva29vTzs6Onj9/rtPTUyVJoiAI1G63dfv2bd28eVP1el3G
+GJVKJdXrddVqtSJ8TZJE4/FYo9FIk8lESZKoXC5fqBY2xihLM2V5piiKiqrneRgahqHq9boqlYoW
+FxfVbrd1fHysLMuKKu/xeFzMIzfGqNls6tatW7p58+Y3gm/PmwX0rVZL5XK5qCqfB/3j8VjT6bR4
+7jAMiwB3HtRmWVZsZ5IkRUDvuq5KpdJ3rrfjOCqVSmo0Ghdaxc/XajAYaDAYaDgcFlXWxhjlWa44
+idXv93V0dKTT01NNp9PiooNKpaJarXahuv27fuZZlilJkwst0vMsV5ql6vf72t/f1/HxcdFWPggC
+VSoVtVottdtttdttlctlua5bXDjgum5xoUOe5SqVZ2F80XbyrANAnueaTCaKokhxHBch+PdZPwC4
+Cmxuz/4utRpPE/UGsXqjWKNpqijh7TIA+CmsjDI7a3s+ia36NpZrU7mO5LtWruvOjpO92bFymiZy
+Xac4Vnccp5j7JV292V8AgMszO4bPNYlTdQeR+hzDAwAA/KLm5/xp7mgcWXXzSEapXMfKd2c5WxAE
+8jxPQRDI9/3Zhe+5e6Hq+yrN+ib4vmLmYWcURTo9PdXp6ameP3+uJ0+eaHt7Wx9++KF6vV4RBFcq
+Fa2vr+vhw4e6c+dOUcXdbDa1ubmp7e1tVSqVWdvBJJEkHR4e6qOPPlK73dbW1pbu3LmjRqMh3/Nl
+HKPBcBb27u7uamdnR7u7u6rVaqrX61pbW9Pt27e1vLyshYUF3bx5U/1+X1mWFXPH55Ikkeu6ajQa
+unXrlm7duqVms3lhf8ulkpaXl3Xz5k21Wi15njcLgZNEo9FI29vb+ud//meNRiPdvn1bW1tbZ5Uk
+nuJ4Fjz3ej09efJET58+VZIkqtVqajQaun379muDZ2NMMYP88PBQ5XJZ0qy9+GAw0OHhoba3t/Xx
+xx9rZWVFy8vL8n1f0+lU/X5fT58+1eeff66nT59qMBgUs9RXVla0urpatJ7/LlmWaTweq9PpqFqt
+amFhobjoYDgc6vHjx/rggw/0+eefq9vtSpKq1apWVla0ubmpra0t3bp1S+12W77vy1qrOI5ljNHT
+p0/1pz/9SVEU6fbt27p9+/aF9ZsH+9vb23r69Kmm02nxs759+7bu3Llz2b8SAPC9zKpFck2iVL1R
+rPF0NtMbAPDmpGmucZYrMJlKfqRyYBUEQTE2yI99hUE4q/bOclnXFhf2AgBw3vzi1Xmr8/440WiS
+KjnfVxMAAAC/iNxKcZpplOUKXKuSH6nkm+Kc3/d9xXFchODzIs6rOC6X4PuKyfJMcRxrPB5rb29P
+T58+1SeffKIPP/xQX3zxhbrdrnq9XlFZUa/XdePGDb3zzju6e/du0dq81WzJ5larq6uqVCoyxiiO
+Y8VxrOPjY3388ceSpD/+8Y9qtVpFJbBjnWKW+GeffaY///nP+uyzz7S2tqa1tTW9/fbbajabWl1d
+LSrNO52Out2urLVF1bU0az/u+75arZZu3779yuC7VC5peXlFWZYVwW2e5xqPx0qSRDs7O/q3f/s3
+JUkix3G0srKiMAzlOq6iKFKn09GLFy/0f/7P/9Gf//xnJUmitbU13bhxQ77va319/TvX2xijer2u
+Uqmk/f19VSoVSdJ4PNZkMtHR0ZGePHmiTz75RGmaFkH2YDDQycmJnj17pi+++ELPnz/XcDiUpGLm
++g8Nvk9PT9VutxXHsRzHKSroHz9+rI8++kiPHz9Wr9eTMUaVSqW4CGG+tgsLC8X6TadTxXGsZ8+e
+FetnjNHa2lpRNR/HsTqdjvb39/WXv/xFf/7znzWZTLS2tqb19XW5rqu1tbXL/pUAgO/FWqsszzSN
+Ug3Gyaw9IsE3ALwxVlKSWU2yTL4Slf1MYz+9EHyHQagkTeRlnrI8k2e9Yoarq6t3MgwAuHyzi1cz
+DUaJxlGqLOUYHgAA4JdmrVWSWo3zTKGTq+xnKvt5cc4fhqGSJFGSJPI8r7iI8Spe7E7wfYnG47Ge
+P3+uv/zlLzo6OtJXX32lIAiUJImm06n29/d1eHioZ8+e6enTpzo6OlKapvI8T41GQ5ubm7p7964e
+PnyopaUlVSoVua47a3VeLqlpZwH1vCJ4MBio2+1qPB5rd3dX1s5mVB8fH2txcbFoUTCvNN/Z2dGj
+R4+0u7sraTbbezweK01TGWO0sLCg27dv6/DwUE+fPpWkon12EATF7OmFhQUtLy+r2Wh+o3W253mq
+1WZVzhsbG7p165aSJNFwONRgMFCn09Hjx4+LVurPnj2T7/sKgkCTyaTY1s8//1xfffVVMWOg1WoV
+Ldpfp1wuF2H+5uambt26peFwqH6/r8FgoK+++kq+72tnZ0efffaZfN/XaDRSr9fTf/zHf2h/f1/j
+8ViSVK/Xtby8rHv37unOnTtqt9uvff7JZKInT57oX/7lX/TkyRN9/PHH8n2/aLX+l7/8Rc+fPy9m
+dtdqNS0vL+vBgwd6++23tbW1pcXFJa2vr+vWrVvF3PFut6tut6vt7W3leV7MiJ+v33Q61enpqTqd
+TrF+kooq/SiKlGXZZf+aAMBr5XY2IsLmVkmWaxqlStJM+RU88AKA6yzLrJI0V2RSTSOj6TQtxuUk
+SaIknY1qml/5PR/hM/872rhXo+0ZAODyvTyGz5WkmaZxqiTJlOccwwMAAPzSrDTrnpnmiuJUUZQp
+imxxzj8/75+f82d5Jjd3L1zsbq29Eu3OCb4v0byN9cnJiSqVShFcn59bPZlMNBqNirnc89BybW1N
+v/vd7/Sf//N/1ltvvaVms1mE3vM507VaTetr63rw4IGOj4/1+PFjRVGkyWSi4+NjjUYjHR4e6sMP
+PywqxY0xmk6nxYztwWCgKIq0uLioNE2LbXcdV4uLi7p7965evHjxjcrmUqmkWq2mpaUlLS0tqdls
+qlKtyPf8C9/neZ5KpZJarZZu3bql9957T1mW6enTp+p2u+r3+0qSRL1er2h77rpusU7z/RkMBur3
++2o2m4qi6Af9HIIgUK1W08rySrE/z549K+Z8b29v6/T0tAjyHccpftHnwXuapvJ9X+VyWevr63rn
+nXf08OFDLS4uvvb5R6ORHj9+rNPTU5VKpWLWeZqmSpJEp6enRRt513VVLpe1tram9957T7/5zW+0
+vLysRqOuW7du6d1331Wapnry5Ik6nY6Gw6HSdDYn/MmTJ/rXf/3Xb6zfvG37YDBQrVb7wesHAFdF
+nltlaa4kzZVlOW+aAcAblp/NYo2VKYpzTae2OHcowu8kUZqmReh9/kLU+ZXgV+FEGABw+eZvlM6P
+4dMs5+JVAACAy2Bn760maa44SRVFVtPpLEOKoqg41z8ffhcXul+xi90Jvi9Rr9dTv9/XixcvvtEO
+wBgjx3HkOE7R1nweZtfrdd25c0e///3v9f/8f/8fNZoNVatVOY5T3H/+/csry3r48KEmk0lR9dvt
+djWdTjUYDLS/v19U9c6Db2l28uE4ThFMO45ThLKu68o4ppgnvrGxoXq9rjAMi9De9301Gg2tra1p
+cXFRjUbjG9XekuQ4TtF6e2trS7/5zW+UJImiKCoqnPv9vk5PT2dXkWTZhYB/vm6e5xXP6XmeKpWK
+wjC8sCavYowpvn95ZVZF3e/3ZYwp5m53Oh0dHh5eWJv5m3jz561UKmo2m1pcXNSdO3f04MED3bp1
+S77v63UGg4HG47EODg6Kypj588z3zfM8lctl1Wo1tVot3blzR2+//bbu37+vUqmkIAh08+ZNvf/+
++0rTWeVNr9crKuU7nc5r18913eLii0qloiAIruR8BgD4uvnfyVk+C7zTNFOWW/GeGQC8Wbm1splV
+ajPFcarIyy5c+T0/AT5/8zzanQMAXm3+hmmW58rSWbU3x/AAAAC/PCspy61MlitOZuf8cewW5/tx
+HCtN0+Jc//zF7vNzfkfOlaj6Jvi+As6H3q7rynGcorI7CAJVKhXV63U1m03duHFDm5ubevDggd55
+5x01mo1ZGO28+k2kRr2he/fuFX34G42Gnj9/rpOTE3U6naLidz6XW5pVa389aH3rrbf08OFDbW1t
+FYH3/PEWFha0uLioxcVFTSYTDYdDhWFYtPxeWVmR7wffuQauM5snPQ/NK5WKFhYWdHx8rNPTU41G
+I0VRVLQUt9YWazRrlz67IGBra0tvv/22Hj58qNXVVYVh+L1/Do16Qw8ePCgqtyuVip49e1bMME/T
+VHEcX7goYF4FvrKyotu3b+v+/fv67W9/q6WlpSJMfh3f91WtVos292maKk3T4nVRq9VUrVa1vLys
+ra0t3b17V3/4wx+K/ZsH2SsrK3rvvfcUBIHK5bLa7XaxfvPK/fPr53lesX71el21Wk2bm5vF+q2t
+rb3yYgUAuIrOX2E4P+CaHbIBAN6Y+YVGNlWWJkqS7MLxa5ZlRbX3+au/AQD4NrP/VuTK7aza23IM
+DwAAcAlsMYYmy1IlaaokyYtz/q+f7+e5LS52Lx7hCoTeEsH3pTvf7m9e5R0EQRH+VioVLS8vF/Ob
+3333Xb3//vtaX19Xo9FQvVaXccy3vpiazabKlbI2NjbUarW0urqqzz//XF988YW2t7fV6/WKbZhX
+fs+D34WFBa2trenmzZt699139d577+nmzZtqNptF8B34gRYWFrS0tKR2uy1jjKIoUhiGWllZ0f37
+988C2u8Ovh3X0fr6uhYXF7W0tKTFxUVtbGzos88+06NHj3R4eKh+v19cTTKfdR6GoarVqlZXV7W+
+vq779+/r3Xff1VtvvaWlpaUfFHw3m029/fbbunnzpmq1mmq1mtrttr788ktlWabxeFxUTc8r6tvt
+ttbX1/XWW2/pD3/4g/74xz8WFwL4vv+9fsl93y9aw8/b2zuOcyH4XllZ0YMHD/THP/5R/+W//Bet
+rKxoeXm5qJY3xmhtbU0LCwtaWV65sH5ffPGFDg4O1Ov1lOd58cak7/sKw1CVSkVra2taX1/XvXv3
+9N577+mdd97R0tISwTeA6+Xs6sIiBL/s7QGAX5miKk/ZWYuztKj0vjDr6xVtzwAAOO/lRasXPwIA
+AOAS2HNdNbNMaZoojk2RJ83D7zybB9/ZlT3fJ/j+hSwsLOidd97ReDzWYDDQcDgsgua5eYA5b589
+rzpeXFzUysqK1tbWdPfuXd2+fVvNZlO+58v1vrui2PVclb2yAj/Q5uamHMdRtVpVu93WjRs31O/3
+NRwOFUVR8eZUpVIpKoZXVla0urqqW7du6caNG2q320UY6jiO5EjLy8t6//33NZ1O1e121ev1tLS0
+pPfee09vvfWW1tbWXhtAG2OKCveVlRUlSaJSqaR6va6VlRUdHR1pMBhoNBoVb6TN12heDb2ysqLN
+zU3dunVLy8srqtWqcl1XCwsLev/999Xr9RTHsaIo0s2bN/X2229rYWGhmNs9X6swDHXr1i3lea56
+vV7s/3g8LlrGz39GKysrWllZ0a1bt4rQfH5BwPe9sqVSqejGjRu6ffv2N94olFRU089noN++fVvl
+crloQT83X79sOdPd5K7CMCzmrM/Xb/66m+/D/DU2D9Ln27G8vKxarSbP84r1Ozo6Kv6Cu3Hjht5+
++2212+2iPToAXKbiQMvOPxcF3wDwJlnJWsnaXJnNv9HS/NsC7/kx7VU8GQYAXK75cfvs2P3c5wAA
+AP8ve+/ZJsdxpWnfkT6zvGsLR4AgKZLSuN2ZWTO7e1370/edlWalkaMkkiBh25vq8pU2It4PkZXd
+AEESlAU1eWt6QIJdVRkms+K459T8WdHl/5RWKLmx+UVViFrZ/a8JeL9t9n4d+P4zsbuzy3//7/+d
+hw8fkqYpWZZVvZyBKkj6auX3JjjZaDRoNBp0Oh1arRau42LZ1ht/vmVb9Pt9PM9UaN9/5z7zxbwK
+BN90UG2qmTfVwJvP3fTpvildALC1tcU///M/c/fu3Uo6fVOpPhwOabfa36nyOgxDdnd2aTab7Ozs
+8NFHH7Fer0nTlDzPq+vcyI1v5OA3suPtdtvMketi2za7O7v8r//1v3jw4EHlmGu32+zt7bG7s4vn
+e7jOdS/ujWy47/vs7u7y0UcfsVgsKkmHzWdvkgg2/b37/T5RFJn/9h3WptFo8O677/Iv//Iv1Tg2
+vRCBKhGh3W5X/dK/SUY9DEO2t7arSvgPP/yQ9XpdrfXXzV8URTSbzes9Vs7f9vY2//N//s8qML9J
+CNjf32dra8vsU7t+lNTU1PzluK7wLv+nKSUS1R/83jU1NTU11+gb0mcbWbObAe+vkzd/24zgmpqa
+mpq3B10pNoHJXK2/M2pqampqampq/iJojVYaxSb4zUv2/k273/z623luq6NVfyb6gz79Qf8v9vlC
+CFqtFq1Wi93d3T/qe/d6PXq9Hh999NEf5f1838f3/T/afG3m/u///u/feK663S7dbvePOk9fRxiG
+3Llzh//8n/4zoy1TuR5F0e/9fp7n/VH322Z933T+ampqav5SaK2v+wK+pQevmpqamu81lSytMpLn
+N6q9XzWC31bJs5qampqatwddyjTdTGCtqampqampqan5S7A5jylT9a0USvFadbe3PfhdB75rampq
+ampq/rqoHGg1NTU1NX9MTDFe+Yz9BklzXWaJb/69pqampqbmW9FQKzbV1NTU1NTU1Pzl0FWLszIA
+Xga+Xw14v+3J7nXgu6ampqampuavjrfz2FVTU1Pz/ce0YX3Z6H2d3JnS6q01gmtqampq3jJ0nbZa
+U1NTU1NTU/OXp0x01xql9I0g+OsT3t9W6sB3TU1NTU1NzV8HGrSqXWY1NTU1fzJM1Nv842syvN92
+47empqam5u3jurc3dYvvmpqampqampq3gfJ89rrA9+t8AG+bL6AOfNfU1NTU1NR873npcKV17TSr
+qamp+RNy8/H6OgP3df/+NhnBNTU1NTV/ea6/F3TVSkPrOom1pqampqampuZt4PtswteB75qaPyOu
+69LpdOj3+xRFQZ7n9Pt9ms0mrudi2zZCiL/0ZdbU1NR8L3nJTfZ9Pp3V1NTUfA+5KX/+0t8r/dI/
+C7s+69bU1NTUvMwmb7WmpqampqampuYvjAbEVyXNvy8y51AHvmtq/qzs7OzwP/7H/6DT6SClRErJ
+1tYWH3/8MaPRFo1GhOPUt2VNTU1NTU1NTc3byI2qPPhWY1ept9sYrqmpqampqampqampqampKdHG
+6tebf9n89SvB77edOsJWU/NnZHd3l//9v/83/+W//Fe0Vmit8TyPMAwJggDbsrFs6y99mTU1NTU1
+NTU1NTVf4SUT91uyvb8vBnFNTU1NTU1NTU1NTU1NzX949Kttzb7l199im78OfNfU/BnxPA/P8+j1
+en/pS6mpqampqampqan5vXidefs2G701NTU1NTU1NTU1NTU1NTVvyverwvtV6tLSmpqampqampqa
+mpqampqampqampqampqampqamprvNXXgu6ampqampqampqampqampqampqampqampqampqam4vtY
+9V0Hvmtqampqampqampqamq+M68awN9Hg7impqampqampqampqampuYGr5j2Wuvvlb1fB75rampq
+ampqampqampqvhMbm/d1BvD3ySCuqampqampqampqampqal5la/a9Rtb/223+evAd01NTU1NTU1N
+TU1NTc0fxPfFAK6pqampqampqampqampqflmNK+3778PNn8d+K6pqampqampqampqampqampqamp
+qampqampqamp+V5TB75rampqampqampqampqampqampqampqampqampqar7X1IHvmpqampqampqa
+mpqampqampqampqampqampqamprvNXXgu6ampqampqampqampqampqampqampqampqampqbme43z
+l76AbyPPc5IkIUkSptMps9mMLMsAsG2b4WBIf9AnDENcx8V27L/0JX+vkYXk9OyM8/Mz4jgGwLIs
+ut0unU6HRqOB7/v4vv+XvtSamu9EmqbM53MWiwVxHBPHMXmeAyCEYDAYMBwOaTQaOI6DZdV5QTU1
+Nd+dwLdpBA6+Z2NbYFmCLJckaUGaSQqpyQuN0iDK12g0aI3nWvieTeDZuI6N61oIYX5LSsU6KVjF
+OVJqNGAJqt+3bQvHFliWQCmN1po8V+RSkeUFea7ICoXWAKJ6X4RAIMqLEd95vH8OhDBjdWxBI3SJ
+QgfHstBotFIkaUGSFaS5oigUeaHN+KqxvX5cloAodGgETjV3lvXK72rzh9IKrTWF1OVnKJKsIMsk
+Smkzd5s5FALbMj+OYxEFDmFgl9f89Wht1i1JFcs4Y53Icq3+0LXR5bprrHI6XMci8Gw818a2BY5t
+IQTV7yllfsx+VeSFpChe3kPmwv4Y11dTU1NTU1NT8/bx+jOoQIM5g2aSJM3LM6g5N/1pztYaz7EI
+fIfAs3Acc3YrpCJNJWkuyQtFlpdnvrfibKYJPJtWw6MROtWZOssL4tT8SGnmTGlK2+Qvfc3fMI7I
+pRG5r4xDEqd5OQ7KcfCWjuPPiS7/z/yJ0FiAsMB3bXzPxrUtbMcyNgiAMLbQTfsjywvyQiPly/bd
+X4f9oRGAZZlnDJRD0xqpzF4CUW6379M4zZq7jqAZuTRCB0sY30MuJetEso5zpNIoZZ6tzcijETml
+nSooCsUqzlnHGVKBVLqcrbf5OfGHzdnGBhfCVKjatsD3LALPecnPoze+CaVRSiGlJpeKopBkhfke
+kpVv4q/lXvnuc+naglbDpdVwsYQFaAqpSFLJOi2MT0fqaz9OzV8tb33gO01TptMpl5eXPH78mMeP
+HxPHMVprgiDggw8+4MMPP2Q0HBE1ojrw/QdSyIKnT5/ws5/9jOl0itYax3F45513uH//Pru7u/R6
+vTrwXfO9I45jjo6OeP78OZeXl1xeXrJer7EsE1j68MMP+fjjj9nf30drXe/xmpqa34tG4LI7DBl2
+A1wHPEcwW6SMpzFX84RVYoKmGz8AbAKeEs9x6bUc+i2PVsOn1XCxy2BpmkmOLlacXEiSrDDfzxZ0
+mx6Dtk8UuAS+g+NYFIVCFpJlnLFYZ8yXkqUsSIsM44+zqh8s2zjo9Nsb/LaEMZ5D32ZnELA/auC7
+5jqLQnI5WTGeKWbLgkVRoKREWBZCOKXz0XpN8FtjWYJu02V3ENKMXDxX4NrGMNqsi/nTGNyFVMRJ
+wSrOWK4zJnNFkabGyYkw3hwhEMLGsi0816YR2GwPAnYGEb5rUb1heQ0G49SQyjg6LqcJh2eS1TpD
+COsVQ/+7YoLpaI1GI4TGFtDwLbotm27TJ/QdwsAtjWmN0posk+SFJE5yVnHBci1ZxZI8y5EKEBZC
+2K9c39u5f2pqampqampqvjsaSwgcG3MG7fvsbTUI3NKJXigupzGXU8liJVnIgkxKhOWYM+EfLeBg
+HPm+ZzPoeAw6HlFgEwUucZJzNUu4mqcs15qikBSKtyCp1VxzI3S4vRWxP2pUfzdfJZyP14xnknWq
+KOQmqdJ6C8+S5pqjwGF/q8HtretxLFYJ51drLqcF69QEZ68TjN+2cfzZp61KUEZLhNAIS2ADzcCm
+23JoRS5h4BIGDqJMypZSkeWSNJMs1inzpQmArmSBkkVpuzrmz+/zPJd2mSXAtoy/QKARGDssLzCJ
+FAjQxk78foz12u70XIetns/t7QaObRLCV4nk5HLJicxIc02uyt/r+9zebprfE7BOCo7PFxznCWmx
+Scgube3vzVy86Xy9PG+WpbEsCFyLbtNl0Par+8R1LJTWaAV5XpAVijTLWa0LlrFiFSuWhSSX8iu2
++l/PnH3bfOoyjmWx1fN5Z6+F65h9k2QF51cx55OYVVyQaEglCFEHv/+aeWsD3xtn42q14vTklCdP
+n/DJJ5/w6aefslqtcByHZrNJGIbcvn2bTqdDoIK/9GV/75FScnh4yM9//nNOT08BcF2XOI7xfZ8g
+CIii6C99mTU135k8z1ksFpyfn/Ps2TOePXtWJXdorSmKgkajged5dXJHTU3N700Y2Gz3Q+7uNgk9
+i9CHs8slQqWksSRLC7SSqBsVIQKFhSLyPbY7LntbDfrtkF7XB63JspzZKmW1Elw5EksrbMcm8Bx2
+y6Bqu6ym8FybvJBkuWK+TBnP1lx5mkuRU+SSpKw6l0pg2Q7CcrEsGywbIWzKtPy/9DS+hG2B51o0
+Q4vdQcB7t9s0QwdQpGnBc1ciVEKRSlZqTZHmWLaH5bhYllM6SG4kRmqNRmEJi07D4fYopN/1iXyH
+wH85OK20OZPmhXEmLtcZ06XDbG7hWgpdZKySnDyXZIUug9822C6u0ES+w3bf4+HtFq3Q4aaBexOl
+TXZ7LjWurRlPFiiZISwbsXHwXHs93hBjQAsUoLCFLvekQ7/tsd0P2epFNCOXZuRh20YtQKpN9VDO
+YpUxX2bMloLxVKFlTpwVFEogVVFen2uMai2+2+XV1NTU1NTU1LyVaECXZ1BBMxTsDALev92mGZrz
+cppKXngKoWJUJlnrlCLLXjqDaqzfM3Hx+jqMv0LhOQ69ps2tYUC35dNt+cwWCY7IyTNFmkhQBUpp
+rCo4CH+Jc/0miBP6FvujiI/ud8z5W8PppY3KE5bLgkwXIAu0KgOa9ua8/nYcKK/HIdgbBnx4v1Nu
+Dc3Z2EYVKctFQYZEqwIlhZl7y35rE4r/9HOmQCu0kggUAoVrWwSeIPBttnrGBum1ApoNj2bkmopg
+BIWUlRrA1czmKhBMF+AuFEILCqUoZIbC+l7P8+aethxo+DbN0MGywBZGsW0V5yySArSF1BawCV6+
+zeMsbVutUKrAtSyGbZeHt5p4pZLd1SIhS2PG45xCa3Ktce3N77XwXAvXFkzmMcl6ztl5jCgUqgCp
+LCzbAcsD/jqC35VPQKvyXpH4rk3oWXQaLtuDkJ1BSKu8TzzXKQPfiiQ3fqVVbPxE84XgaqZBFaAl
+hZQU0tjqluUC1vfyXvkOs2m+Y5R5Ftu4DDsu799pE/g2aM1ynWMhWccxRa5Jc1X6hd72e6vmD+Gt
+DHxvglBSSo6OjvjZv/+MX/ziFxwcHHBycoJt2/R6PbrdLmEY0mw2iaIIx3krh/O9QkrJZDLh6OiI
+w8NDADzPY2tri3feeecleeiamu8TQRCws7MDwGKx4MWLF6xWq+rH8zyKomA8HvPDH/6Qbrdbf/nV
+1NR8ZzzXptP02OoFNAOHRmiTpwmnVoLOp8hUUSQSWWYt27YgcCD0YLfb4N3bLe7fGhCFLo3Q5fJq
+xmQ84+xswmoeI4qUYavB3nabna0OvZZPrxUQBjau62BbAqkUSmrizBhD82XM8emY43M4OZtwej5l
+Oo9x/AaO38R2AyzHw8YvK5ZvPvuuA7RVofJLQdub1b4v/90fjnH2uY5FK4BR22G777M3imhGHmhN
+mufk2YoiESxnK07XZywv57hhGy/sYnshtuNj3ZD60lqhVI62BL6j6DZttro+rYZPFHgvjXFjj0ql
+kEqTZQXrVLKOM8bTFVezFkenVxwcXXB2OaXQDkrbOMpH2QG2UjT9Djv9gE4rvH7DV0eqIc0Lsqzg
+arrA1gl5PDNr44bGYLUsU8HzprOnFFpLbKFwLUnkw63tDrd2Omz1IrrtkE7Lw3cdfM/CEqbiW2qQ
+haKQkiSVxFnBOs44OZ9xcjHl7HLJ2XjF1TzD8QJsN8SyPeN84qt7R7803Osq92q3VP/4urG9bv+9
++f55dU+++T796ud++2v/MuP909x7NTU1NTU1/3ExAU+FYwlavs2wZbHd89gbRjQbHmhI85wiX5Mn
+gvU85jy9ZD1d4gYt3KBjznC2i7DftIXaq2cAE3xXMjfVrgoCx6cTaYZdl61+A8cquLzMEfkUnefk
+SUGhbGw3wHb88pBgvfYzXs/vf464eR7ZBB8cK6TTdNkbNqr/lmcxByJGJZcUiSKLNQoXyw1ABNeq
+VAiuE0a/2+f/Iee0l/6rkmiVY4vgK+Mo8oQjK0allxSJJo81UjtoN0C4IcbusG689x/bpvr9z8h/
+krNjWcWslUQVGVrlhJ4mdKHfCdnbbrO31aXTCui0ApqBi19K95trEki1adVl5LBXccFsGXM1WzOZ
+rTg4XXB8NmOVahwvBDe83i/im/bL6xO7vz14+ub775s/4/pXNBqlMpTM8TyX/WHE/f0Ovu8SeDbz
+ZcKzwwueHsxIpY2UDpIyeGn9Yev1JjbI6++P69e8fu+UFctoZJEi8wSdSyK/y6gXEHouvm/jWIrn
+dkoRjykyQZ5bELSIAtjqGxUyz3FwRI7HimxxSJpaZh7wcbwIxxdgOYB941re/F74U9mdv18gXqGV
+wqLAtRSeI9kdBNze6bAzatFrBXTbAaFn43mmNZvWpuVdUZgWb2lu1ADjRHJ2Oef0YsrZ5YKzqzVn
+V2uE7eN4AZbtm4T1P4mf53V75035rrby6z5XVwk3Mk9RRYJyPSJ/yM4gIgpdAKbzNacXCkcu0UWB
+zgVKCpPEb78qof/dxvTd99Wfy59W89ZGiqWUpGnKyckJP//5z/nXf/1XFosFy+WSdrttenq7Lr7v
+02w2aUQNrDc+UNZ8HUopJpMJx8fHVeDb931u377NdDplvV7Xge+a7yVRGLG7u8ugP+DZs2fYts1q
+teLi4oLLy0vyPGc2m7FcLul0Ovzwhz8Efl9p2Zqamv+o+I5Fu+Gy3QtpNVzaDZfF7IrAiiGfojJF
+HisKbWFZNsJ18FxB27fY7Qoe3m7x4cMRdtlvOl7NWC6mnJ0es0o1olCMOhE/erfDD97dw/ddQt/F
+tkzA2pj8BqWMXNp6nfK0A/0oheSCi+Mr1tMxXqOPpySeVoDAstxSFnxjuN88pG+yuOErTrOyN/T1
+8/KPUzW+UeRwbU07shh1HXb6AXujBu2Gj6m2yShin3wtODteoeIzlpMLwmILhMATGNlz7VYGqdYK
+LQu0pQgcTa9pqg967Yhm4/XqQZthq7JaJS8KFsuYxWLFJ5+lxNMjTo8uUNIhUx4OIcqLEMqiHQi2
++xHDXuMbxxonGUmScXgqsFRCGk/xdAfXctDCuiFH/0azVwb4C1y7IHAk7VBwfy/kHz7aYmfYJgxc
+fM+t+qndXHJdOnq0Bqk1eZbz7MDhRavgM7FmPkvI1lO0boNwKofTdXXRy3Lx5b+8PKPlfrneO68a
+vq/Zf99tA33l816WoPy6ffr6z/3m1940jvXNF/zJx/unuPdqampqamr+46LLitUCV9i0Q4tRy2Kn
+Z6TOzRkU0qygSGbka8HlaYJOL1lPxwStLaPWY1kIy8K4Xd/MgQ83W+2Y61AyRxUpKEHgSDoRjNou
+e8MIXaw5cFPsYobOCookp9C+kbm1zbneyLjy+jP863jTY8Tm/V4932iNVgWyyHEtTbfpsr/VrF62
+XEwIrBidXlUBYyVCXCHKik4TpCjf6qvX/MrnXs+bufhvPqd9+7n05t9txuEISbfpcuvGONbLKYGd
+oKpxgCTAQZiEB+FwHff+mjPeH/msWi7C16zXdSbnm33Gd0NvbA+ZIwsTfHI9QdsX7A8ifvigyw8/
+uE3guwS+h+tY1zbIS5epqxZQSsFytebyas75eIouVpyfrigS45MWdqnuVVaM66/b41q/duF8mAsA
+AIAASURBVIjfplal3/SeecPP0GVVqpIFKk/wbLg18vnHDwc0GyGtRsjZ5QyVTTk9WiFxSKSH0h6m
+g5f1By3V9bV8Vzvm+tdfa3eUKghaK2SRUaQrVKGIXM1216fZ8AkCHy0zAjtFxpcUmUMhPVAuDU+z
+0w+IAo/Ad5HZEk8syeZHpLlDWngo29jRluNjIcqEoq/xV3x1EW88p77DHHynuf3uwW/T077AEjme
+JWm4BXe2Bvz9D4bcvz0gDDzTjkwIk8T/kq2+8ZUY/4RSmsMTnxdHisduQrzOOEqmCCcqk0Psr7HV
+v2HNy+F8va35x7fVr+dyM9g3eP7dqPSWeUKRLtC+R8PT7I0aNCPjNwpceBZqLLVCFBItbZQ0PejR
+9lc+6uv3k3jN737dNf9l/Wk1b2nguygKzs7OOD4+5tNPP+XFixdcXV2hlMJxHHq9Hu+88w4ff/wx
+t2/fptEwQe86QPWHY1kWrVaL4XBImqaAkTrv9/u0Wi2CIKgr62u+l1i2RRiEeJ7HnTt3+PDDD0nT
+lDzPuby8ZLlccnx8TKPR4P79+zx+/Jhut0u73a5lz2tqat4YIcCxBY4r8FwL33NwbBAUaJkic4nM
+JQgb23KJXMHusM3dvTb37wzZ6jcJXIvZYsV8seTF4SmHx5dcXM3pdjqM9rvcvzVgb6tFr+UTJwmz
+yYLVes1iFZMmGZ7v43oenVaDfrdFp+mxO2pjUTCZzDg6chlfKiBFZisKy0bYnjG8LAe0AFRlwG5+
+NpHQl/JTy0rqjSElLKvqqS3Kv//9KKOuWuE6Dt2mx1YvpNv0iAIH3zNSiJbQdNsRu1s9XhyGuJZE
+pgsKP0JmLaTjYzseOIqqDzfX4xJobBtc28J1zM98sWQxXxKnGVmWkxcK13VwHIcwDGg1Q6LAx2p6
+hJ7F3b0+l+MBcbzkdBxzPl6TxgWxC4uFy4vjCzpNh72tDv1Og3YzwPM8XM8lSVJmswWz+ZLFKmG+
+THlxcMlytb5R3f3d59Ak3RvJyyi02RuF3NmOeGe/w+6wSavhoZUkS9YsV2tW64RCqmodfc/F81zC
+wKcRBQQNj07To9PwiDwbG2WqOaSRU9NaI/Qm23+zd0zv+m/bO0KIMgPdur6JbvQ7qyQTTZkEb+SM
++Iqz5sZnCQtdZbzfUDjQ1w4psz9kVb3CZjXKqpKXr1XfuNY3Hy/CunGP6GrO2Nxz3zZesckOv3FN
+ZWVXbRPV1NTU1NT8nuhNQELhOjbthsfWIKTb9gh9B98z/jBLaHrtiHSrx8HxJZ4lUfkKma+ReWIU
+h2wHrb1vCIhc93bVKPPPSlbnKa0kMk+ReYzKBUJlRsnHEfiejecILCSoHC1zlMzR2jIJnjJH33TQ
+bzIa+fqTlLlM8fpz/OZMVJ2xynOKEOX5SFTBlc3ZLUszZvMlJ+cTc0ZSirPzMbP5nDhek2c2Sllo
+a2NvbGR/RZUAq8tz5s3zFkactjrfbRSrhLBMsuhL165fOpe+dN66MRvVa4QobRlQ0rSoyrKM2awc
+hzJnvfOLMdP5nDiOKTILJW20Zfo0m3m5MV83z7ObcVZjuTn31o2xlGfVajzXywjqxpnxxvy8Xqbo
+xlqVn3Rjvb76Gb/PGbI8O6sCQYFnF9iWYrvf5N5ekwe3h9zb67LVi5BSolTGcpmxXqes48TsU8C2
+LDzPwfddGmFAFAa47RBbKHxX8NnjMwQSWWTYyqyN3th35Rn8pfN7dW+VZ/nNvLy0X60bdsLNOdaV
+eta1HaK/dvzX+ayvfsZmT76czCLzFK0sPFvTDG3aDZdOy2e1tnEtiS5WyMxBZjmFytHKx3bUjT1/
+/dGv/MNrbuzX2Aw375HN80dt9ujNeePl++01e6ecLfOnkihVgC6whMZzBa5j4TkWbvm80jJDSY2S
+wlQ8C3BtgefYeK6D54BQOTKPkbmDLBRau2iZww07q0y3eL3t9oot9pLdV83DtW/g2g5U5b76pvW+
+Obcv76Xr5IQ3SHbSClSB5wm2+hH7I4/7t3rsbzXptwKUlhRZwjpOWa0T0iwr31dUtnrgu0RhSKsR
+0Gl6tBsujdDBsZRpmybcG7Z66dMxC/XK81W9NF/VnFXfBa/uHW48k2/O2bfsxWr4r/7O9XMcYVXV
+6eKG/4bqHnplvcvPV0qiZIaUOXkO8/mC49MLGqEHaK6maybTGXEck+UCKQGc68vVb7KfNs+SG9fM
+jfu8ep7cHOeNOfrGe0t8jV3/Jvup5ut4KyOYeZ5zcHDAL37xC37zm99wdnZGkiREUUQURdy9e5e/
+//u/51/+5V/Y2toiDMPawfNHwrZttre3ee+992i324AJfN+/f5/RaESr1cLzvD/wU2pq/vwIIUyC
+jCW4d+9eGcAIieOY4+NjiqJgOp1ydHTE48eP+d3vfsfdu3crZYmampqa3x/jPFOyKA3dAtux8Szo
+RD5397r8w8d3uLXTo9+JKArJ6dklT58f89mTE54cnDOdx+zvbPPD925z99aQUa+FEDCdzjg5PePo
+5IKj4wuuZkvarTatdpt7t3f44N073Nob0W238H2Pi/GMFwdHnF94xIVmXcQUmYvtRmg3qFw/xtlW
+oJQsM2jlK86aGwa0ZYEoK9g3P8Ix0twbh9jvNWvGGPNsQbflsz1o0G542Nb1+9m2TafTwrJsBv1j
+I5enUlSRIovEVBzIAq0LwDHXUxkg5lNuGmdFUXBxecXBwQGX4zmz5Zp1khGFEVHUYGvU49buiJ2t
+PrZtE0UBO1s9Pnx4B9+x+cWnL7gYz0jinKVjI2ybzx8fcnU15t7egPfub3P/9hatVoOWbbNYLHn6
+/JAXhydcTNZcThLOphlXsxzb8UzFiPUaI+pbZq4yprWk1Qi4f3vI3743YGvQptUI0bpguVoxmy84
+ORtzfDYmSTLAxnJsuu0GnXaT0aDL9qhHt9PCsgSOY+PYpnrI7IuN0bxJjjCfudkzqsy+Nv3eFDez
+l6tECWHmybJuOAwqB+X1PuSGo/C1edTf6JwQ1TwKyykrikylur6RPq+V+TxjmMryc3UZixflHnfK
+Ci7j5KgcYq+M9+vuFSHsst+ajbaug+gbR+rmfb5uvJsxi40xbFnV+5lrA61rI7mmpqampub3wRwV
+zTnGdXx67YDtQYt2w8e+oTJp2zbtdgvLthi8OMP3TM9nXZhzqJL59fn5tUlp5Vm0rPozn1lcn6/K
+s1SRx6aKLbMoiqw8J6gbsZ9N8NOcI5Te9JsuuA6s3wy6vm7Em7OKeClgZ847m8rCG+9zI9Bn7AD7
+2g4QdnV+WScpx2cTPgtNJaiSOUcnl1yMZ6zjjKzwQN8IcADXARlVrYMq5+NmUO6lIMkmUGJdnyer
+gOZm3C+dTV8+Z5mxWzfey/xpzmOSdZxycjbhs8e6Gsfx6ZjziynrdUomfTQOQoiXkg02QabrdX31
+81W1Ctc2lf2KTWWDZb8cnNHXZ079lff7urPfplLxer42fbKFZT7ju6lLvYKSKFngUBA6isiDu3sd
+/vbDW9zbH9BpN3BcmyRNmC9WXI6nnJ5POL+YoAGlBb7v0W6FdNoRO6MBu9sDwsCn1QxxXYco9BFC
+lfdWXu19lDD3bTUnm71zI3m7SijYJKDePDvbpU2wCbCZoLdSxWvmWN+YyxtTe0PJ6eZnVGf+jRqC
+1miZIYsElQuUzK4TzUv7TeUJebqiSB2yNKFQPlqZ58kmGLkp/31VOvlVG6lKZkG8vOblHriZuKul
+LMesqmDpJigsrLJaeDMm2y5tGqdKBN4klV/vxVfVGnSZVCTR2r6RhPJVG25jA2opqrWkmvtN4HCT
+nHC9Rjftqdfe39bNZ5WxC28+J9WNZ/D1HPAVO7xKT6/uVcfYmJZbBjK/qWJ38+yXoAsC1+H2Tod/
++MGI3VGHQbeJZQtWi4TlcmVs9fMx8/majYxEq9Wg22nS77bY2TLV4QJw7I2tbu5Js48VNjcLGcq5
+1RIlr+fs1WdI9Sy0rFLBwr5RPU5lAysl0XLzHXRjzl/Zi29iqyNML3dLG1vdPK9eDnqr8l64eW+a
+NVcomZbJSnB+OeGzx4cEroXWisUy4fh0wmKVkmUOSjs3FrPcUa/uJ33j+7j67nnFDhc3ntebZP5N
+cnw5p0oV13Okbtwfpa/Msq73p9lHm/cqQ+N1zPP35q0KfGutUVKRxAmHh4d88sknfPnll4zHY5Ik
+od/vs7Ozw7vvvssPf/hD/u5v/+4bK72VUuR5jpSy+qlkg5SuXmvbNo7jYNs2tm1XX4Zfd41aa/I8
+r97bHMI0onTEWpaFZVnV+zqOYzZx+fo0TUmSBCUVSissYeG4ThVQLorCOMiVQkmFZVt4nodt29Xn
+aqW/8trN9W8+69XrzvOcoiiq/ulSymrcN6+z2+1y+/ZtgiBAa43jOOzs7NDr9Yii6CuB75tSTDfn
+ZbOe3zQvXzfXf+g8/zH3pNYarTR5Ya5lszZalQ9zS7x0HZs/XzcuWUiyPCPLspfG4zgOruu+9rVZ
+ln1l3TzP+9o1l4UkzVKyLENrjZQS27ZxXde8xrKxbAslFXESk6WZuV+0qj7fdd2X9uFmDm7eM57n
+4bobGSrxrXP4ur1xc/42c7i51tetpSzka695MzYp5cvXrfRr74/d3V0GgwEAT58+5fPPP2c2mzGf
+z7m4uODp06f85je/wbIshsMhnU6n/qKpqan5/bkhv6RljpYZnh/QiSy2+yH39nv84ME+7Zb53p3P
+VxyeXPLplwc8ORhzdrmgUIJGI+Lde9vsb/cIQ48izxlfTfjy8TO+fHrI0xenjCcLut0+3V6fXGoG
+/Q7boz5BGNBuN9kZdRn1m/TaPmquWKUJMveM0a0kCtM+TKAQWuIg0aIAS95wmulKCltpgZbm4K8s
+I09o2Q6WpRHCrTLcfx8vysZw9j2rCnw3I9OvW6nSIaEVYRDg+z79bosodHAsjaVz099pE/hWCmHf
+yGKuKoqvs54BpFRMJlOePT/m8PSC8WTBbJnSarVoNtvcWiRoLBzXpdNu0gt8Bv0OlgDfdTg6vcIR
+BessJ0l8tHCJ45jTM8l6HROFDqNeA9dzaUSK1Trm9OyCLx4/53SccDqOWRcuBSGW08CynZcrjL99
+s1UBfSE0jqVohQ63djr84P6O6R/nu1xNEs4vJxwdn/Ls4IyD4wvWcYawHGzHzOWg32EZ5ygsFBar
+dUYhNUpfz9+mimbjhEMLs8eVqQS3dIEQ0lyPra7PjJsV1hZoC61tpHBuOC0Frg22JVBSo6VEyoK8
+yJGFRJTnBuuGxH8hJYWUCASObZXOaVF9nlSglADtolAIrUvHjVONR6CwhETYxtGJtTGkzbi1ttFS
+oZWNsCy0KB0jpWPU4sZ4xdeMFwstHaTayKBuxqtfM94CWRRgWdivjFdqMyatLbRywHYRGiP/Zwn4
+Q5yXNTU1NTU1/2HZBGJMlWm3Hd44g/LKGdTH9z363TZR4ODaCnReJmCm2DI0lXboVwIh+oavKS8d
++AUCiS3M+QOh0EJiyYxCZLiiwBYSE1rVVQXpzQRErRWW0LgO+N4mUGACkkWRU0hp2im94ofTpVSu
+iS1ppAbLdrFt42OzLbAsUQYZJUorpJLmNdIEDJXlYtnmZxMAybKCq9mKwxOJzE1C6sXlhOl8RZzm
+FNou4wg3Kk+1rAKAQksE0pzNrK8Gq7UW5Y+FVhZYLspyTfLtJuERhYU25zOrACHL85us5mwzdqU3
+wT0HhF3thSxNGc8WHJyYoKQsMi7HU2bzFUmaU+CwkandzKvWEigrkeX1+jpCIiyFUUhS1bldI0z1
+OwKtHbRyrpM14UZlocaxwHIEWmpUeWYsihwpc4Qoz8hClEWEwrRqUgqlQUpQGoTtocv1snQpx19V
+u3+XA+S1HaBlju1ImqHFsO1zb6/LBw922dvqUpS+zMlsyfHpBUcnlxwcX3J8Ojb2JBAGAd1Og0G3
+RZZrEA6DXpsgcE31t2MjqurJUr1LC3MGFyBEgbDN+qLLdday9A9erzHCBKWV7WI7HkI7VVB4U90p
+kLi2wraN71KXgf1CFhSFxLItLHFzns28GptBoAtjPwnLQdvuSxLT5r0lnqOx7U1AflPLC44NvqPJ
+HIlfgG3l2LaDbRfXVbiVZD3lNRVorbEs4/MU4tpPK5VGSg2Wg7Tc68BalSht7jULiWMVaKHKoOzm
+2aLRWpjxYewOJc3etGxlgvw3niXVz4261pv/nZeCrDflnzfbadOyS6KVVSYFqBvXslEauw5+Cko7
+bOOzEPLGs5HyvhJoaSPlJsDoYtmqui6BwhEKy5Fl0NjsnUJKZKFu+K5Ftfaq2o+6DAbblNbY19ph
++obdaQtF6At2hi0+fHeHdjPEcx3SNGUynXF0fMrzwwteHJ1zNVuVCRUO3U6LQa/N9qiH1ALHdVms
+U7JMVra6+ca5oS5RJajnRrVNmTU3tqtCCMXGl2CWo0wQVxub176RNCJwbHAsEyxWlrk/8qKgyPOX
+/PyV7VrOpVYax7Gx7Zf9RFILlBJozHeM0Lq0029IMWiJjfmOFOWzHMs8WxQSjVEbKArJdL7g8Pgc
+z1wkcZIxma5YxymZFKgqf0RX3znoArGZF6t8jiArm7/aT6rcU8pCadNaxLJdxEu+m02ygcTSEiEK
+89y3b/jUykSD6ntM22hpV89mYRl/xR+mpPgfm7cq8J3nOXEcczm+5ODggCdPnnB6ekqSJARBwN7e
+Hv/wD//Aj370I7a3t7+1p/dyueTq6orJZMJ8Pmc+n18HHLXG932CIKDdbjMcDun1egRBQBRFrw1y
+bQLpaZpycX7B2fkZi8WC9XpNmqZVYC0MQ5rNJs1mk+FwyHA4JAiCaoxPnz7lyy+/ZLFYoJTCsiz2
+9vbY29tDa810OmU+n7Ner0mShGazyfb2Nv1+n9PTU87Ozliv19Vrd3d32d/fp9fr0Ww2iaLoq9cu
+Fefn55ydnXF1dVVdd7vdptvtMhgM2N7eptlsIqWR8kmSBCkllmWRpimWZb02oLsJam7m5fzivHr/
+JEleOy/9fp/BYEAYhF9JXlBKURQFWZZxfn7O+fn5S/Nx8/0ajcZX5vmbEhe+K0oq0iwliRPOL865
+uLhgsVgQxzFpmlYB90ajQbfbpd/v0+l06HQ6r60SXiwXPH/+nOPjY+I4Jo5jwjBkNBoxGo3odrv0
+er3qtVprLi4uOTs7ZTwes1gsWK1W7O/vs7+/T7/fp9FovLTm88WcZ8+e8eLFC7LMBNkbjQa7u7vs
+7e3RbDZpNBrM53MeP37M06dPq8SCKIqqa5nP59VYsywjz3OCICAMQ/q9PlvbW+zs7Hztvri5lkVR
+VPtvNpt9ZS2DIKjWcjAYMBgMaDQaX1nL2WzG48ePefzkcXXNzWazun+m02nVp3u9XhPHMTs7O+zu
+7tLv96v9Z1smWD4YDHj//fe5vLzk888/5+nTp6RpytHRET//+c9pNBo8ePCA3Z3d6ou7pqam5rui
+1HXlqkWOLXL67Tbv39/hw/ducXd/SBi4rOOEq6sZR2djvnh2xuODCVezDG35NBuReX5HIb7v4tg2
+6/Wak5NzfvvpFxweXzKerlmlBdLOSMkYjGNOLxdsj2Z0Wg2cdgPPNY6DVjNgHidolYDKq4x2tEQq
+ge9A4Gp8DwLXwXc3fcRLB1BekOcF6yRjuc6IM4mSLhoXZfvYrjn3CMsxFQS/R/WpJYxTJ/RtOs2A
+XrtB4DtorUjTgjTLKApppL58jygM6HXbDPptMlxymSHztMr81WUW7Tex6bU9m6+YzNZcTFNmi5RF
+6hHFKbGcsspgPIt5eG+PMPTxXJd2q0m/n9FsBviuwLaNJaW0RS4VSlskuSCXG4epMbCUhqxQpLki
+KSCVDrlywAmw3cD0Z7zRu+7NMA5R17XwhUOr4dII3HLfmO+xy6spv/rkM371m0fM1wWLdYHUDpYb
+4LgO8zThbK45mRQcnK3odxpIaYKws2VGJgWWEyBs51rSUurSsZeBzPAdTSOyaQQOvmvhuiajXimT
+lJdm5idJc9ZZSpJqhG2q3MOGz6jXYNAJQBsDdrFYcjGOmc2WNPyAZiMiDEwioOPYXE3nTKdrbNui
+123TaTcRAiwhWCc5k9mK2SJG6oIiN44xy/HRwqqMT9+FhmfTCCwC18f3BFJK1nHGOslYxZJlWlDI
+G/LsOgeV4zvQDM14PdfCdc2+34w3yyRpLonTnHWakaSqGm/Q8Bl1I4bdsBrvcrHk4mrCdDqn4Yc0
+IjNe3/dwXZvJbM1svibOFIVyKYocyw2uK0E2spU1NTU1NTU1b4gJKNuWxkYR+g7tZkC/2yD0XSgL
+WV49g4aBR6/TZNBrkeGSqQyVpyivTAa03Ou49yYgJPMysJOByrApaIY2rcicux1bYAlNkjikicvO
+IKLfDvA9G9exXvaBl5XjWiuiwGZ3FLE17AMmCLRerZjO5qxWMWEYEIV+GXhwEAKSJCVOMparmMVy
+TRLn+EGA7Yc0g5BWK6QVBYCp6EyShOUqZrWOWaeSOC5QwsXxQmzX+KaMH8fBtsB1bVzbAyWYB5sk
+VnUdFiul5a2N6o0qcG1N4GoCTxB4NoHrYtuCjfBTXhTkhSROJKs4JU4lUrlIvKpqzrZtfF8QeRaB
+a+G7Hr5TtnRCUxQ5eV6QZTmLVcJynZJlCqVtFJuKVgslzee6jgWWB56Fv/KwLMv0ot70Ua8k2jdt
+f/IykJJjk9MMbBqhQ+C5uI6FbQtTEKUkSSpZxRnrJCcrBGkh0MLDdjcS1yaY0ogcBu2AQds1e0vl
+rFcrJtMZ80VCGPhEoZFBdh0X27HJspQ0y1muEuaLmMU6QdiB6ZfshNhugA1lQqj7HZKWb1TKygIl
+M4LQYm+rzXt3O+zv9IgCjzTLmM0WTGcLPn18xKPHx5xezlmsc5ZrVVXjurFiso45uSo4neY8OZiy
+s9Vhf6fPzqjLOsnQXFcZa6UQQmMj8R1zfm8GDo4Fjm2uyxQQmbEvVwnrJCfNFGkOjheg3Airao11
+LUMc+Tb9VsCw7YI293EcJ8xmc2bzmCAMiEIP33dxHQfHtkiznCzLWcUZ86XZT8L2UU5oKoJL/2Yr
+tOn0O9zZbbPVbxCV9qSwBGHgsbPV4/0Ht1ilsEoFhbaxbA/L9m7oQInSzoHxZMb4akleSBpRSLMR
+llLYHkVRMJmvmc7WSOWQSwdEGYxXrklvFhLPhkZo0wzM3nRsgUAjpULKglWcsVonxKkkLQRZrrFd
+s3csxzOV4MJ6KTHlT/OILhUPZPngUxmonNAXNAOb0PcqWXWpTEA0zwtjd6Y5qyRjnRbkUmC5IZbj
+VwnQgWczaPuMug0soUqfQ8r4asp4siB0fRpRWK67h+95LOOc2SpnneYoISi0BZjEmdfbYdeJ46bV
+mkM7cmlEDoFvbFrLsliu1nz2xTP+37//msk8Zb6WpIVV7lWbRZpxuZhzcpVzfJnw5Ysr0GatxrOY
+NAfL8YwvYaOmJovyJ0OrFFcos+ah+c5xXRvbFkhpCsmy3NiuSVqwTnPWqa4q273AY9gK2epHWGWi
+RBLHXF5NuBwvCVyXRhRVzyLfd5kv1kymc/Jc0uu26HVaJvgtBHkhmc5jpvM1ubKrRBm0h+WUreqU
+xLEUjUDQ8B0Cz8N3BZZQrNZGEn42S5lmBUpqLEzLvMCzsSyTtGHbCUqX/hjrZRnyzbPasSSRZ9EI
+jPS+awssSyMLk2SUZjlJmhMnGetEsk5ysLzyeRrcSKxXCAocoWgE5v18z8VzLGxLlDENszeTrDA+
+kSQlziRY5r3Me7oI2+O6nVlt338X3qrAd5ZlLJcrxuMxR0dHPHv2jIuLC/I8p9FosL+/zz/90z/x
+0UcfsbOz861VpsYhfMKLFy9eChhvKkJN9Y4Jmt27dw9LWOiOCYi/ttpUSvI8Z71ec3h0yKNHjzg9
+PWU6nbJYLKoq3Ha7XQWSpZRGHtz1sGyLoih49uwZP/nJTzg/P6coCmzb5qOPPqoCeYeHh5ycnDCb
+zZjNZgyHQz744APu3r3Lp59+ymeffcZsNqsqeT/88MMqu8uxndcGvqWSXFxc8Nlnn3FwcMDZ2RnT
+6bQKCr7zzjsEvgk+FkVBnuckSUKWZeYhlOdGKtr6aoW9lJI0TVmtVhweHfLFF19wenpaVdBuqnE3
+87K1tcXdu3cJw7CqHrcd+6X3y7KM9XrN0dERjx494uTkpEoI2Mxzq9Wq3i/Pc6Iowvd8hP3HewgU
+siCJE+aLOc+fP+eLL76oAvHL5bK6lsFgwO3bt7lz504VQH5d4HsTbP7Vr35VJWO0223u37/Pe++9
+h5Typddqrbm8NOv24sULzs/Pubq64uOPP66SEmzLfjnwPZ/z6NEj/v3f/531es16vabf7/PRRx/h
+OA5KKXzfZz6f87vf/Y6f/OQnVXC61+vx4MEDHjx48JVA9Xq9roL6t27dQmlFv9/H8zyTHfe6yn2l
+KQozh8fHxzx69Ijj42Om0ynT6bTaG5uA93A45P79+6atQRh9ZS3nizm/+/R3/N//+3+rax4Oh3z8
+8cc4jsPh4SHHx8ecn59X98/777/Pxx9/DBiVgGazaVQUbI9+v88HH3yAEIIsyzg7O+Pi4oKTkxOW
+yyW3b99mNptRyAIHx5RB1tTU1HxnzEEdJRG6wBEZw67Ph+/u8o8/ekC73SAMPKZnC45OzvniyTFf
+Pj/jyeEEqW38oEmz1aXRaBI1fHzfSGjlec7J2Tmff/6Ys/GCTDlIPDKdE8uUs6uY04sFe1tzLMum
+2QhwHJtmI6TViPCnOSiJlJu+gEYSUaCxbOMk6jYduk2HTtPHcy0cy8iqLeOE9TphPE3ReUK6TpDK
+oVAelltUEonWpudRWaHwpk4UgS6djprQt2i3fPqdsMryTtOUxXJFnue0W038wCeKAvrdNqNBh8lK
+M13lRkauKCtpviXoDSZhK05SZssl4+mK8TRhsizwkhR3nTBbw9Us5vJqTuB7vHN7RLPbxHEc8kLR
+jEJ8R+CU7b2kMvnneQFpGfgupKnUBZBSkxeKJJOkuSaVFoV2cWwf2wkQtl1WrLyZkXMt3w6+I2j6
+Nq3IpRG6BP5GsUdzOb7i1797xP/3458hvDbCbWN7TRzfwfEV1jxBiITQW9JquLQih1bDp90ImC4y
+cmlhu76RcxOlk6+setYyBhnjuTbdKGK779Ns+LSiAEtAlhdkec58kTBfFlzNc9IkJU+yymAM2g57
+A49373QRmPvm7FyiEkkym9MJbbZ6gk4noNUICQKXp89XFOsEz/O4M3K5s981Gfm2xeVkyTO9IlnF
+JEVRSiQqnErmT4HSOELQbTiMejbdpk+35ZHnOZeTJeOJ5FwZx4/MVenAshA6BZXiOjadKGK759Ns
+BrQjH8sSJkmkKMe7UkzmBVmSkiWZ6f/p+Pgth92Bx3t3uwgKhC64uFTo7JL1ZE47sNnqNeh2fFrN
+iDAMeH6YodKcIjW9zIrCwRFGecEWlvGE1XZxTU1NTU3NG6LL6mONJcxP6Ft0WgH9brOS5X3tGTT0
+6XeaDPotZmuLbJ0hi7RUwVGmMg3bVCmioZRRlkWGUClCJViioBNE7PQDOi2P0HfxbMFy7bBe2XTa
+Eb2WT1gmMlb+l83Zr7y+KLC5td3kvXf6ZRWk5PISDq0Flzqn3w3odX2iMMB3TUX31WzBdJpzWmSs
+pnPS5RJXtLBdScu32e012BlF2EJjCZgt4Pwi5qLIyNYxebxG4qJVy1SdbyqVtWdUbRwbC7CFReC5
+WFYZ+BYaLa5b9CgljVy8zPDQhJFNr2HTbbl0W371WkvAOklZxxlXszUXMiNdx0jtopSLtlws20Pg
+EFgundCl03ToNF3akVONI80z1uuE5VJxqguy1YIsL5CFRa4cLMfDdly08spKehtbCCxsAs97aRxl
+W/CyilaXilMF6Axbp1hktIIGOz2PTjsgCjzCwCHPCrK8YLaIubhKGBcJMlPIVCHxQDfZyFQLyyZ0
+XfaHAe/eaplkSZUzmcBzMUenKb2WR7/r0GyGhIFP4LvMlzaL5Zpza02yXJGtp1hOiHAibK8AyqA3
+lPaS/WZ2W5VwoY28fpHiuSH72x1+9IPbDLttwsAlTTPGkxmHR6f85tOn/Py3zxlPE4QbYTkRlm3O
+6wiF0AlCr3hxMiPyBbd2uvzw/dvYtsUqLtCYoJLAVHoLDZaG0NUMWx7bfY/QswkDG4Eiz3KSLOXs
+IuNcZsh0TZrnpKsMVTRx/ALHb1ZzsJEz9m2L3UHAw1tNczZHMp/NeXG4pIhj+k2PXtem1QoJA48o
+8Jgv1yyWCZeTlGy9ZrKeYbkRwilMELKU1m73Q+7sRjy41WVn2DKBb8/FtmzCwGd/Z0iRpySZIs0U
+UgmTSG7ZZdW6mX7bNgG0L5+syJYpiU4ZNF22Bmb9W42QdVrw/DAmWcTEuYXKLSSm0t0E6SRCGIW1
+QTNke+ATBS6R72DbkGUmMeRiLDmnQOUxWSFJ1wWOn+Nqha11WfHqbEph/xSP52uVsbKftECCTBAq
+JWr6DNsO/Y5HM/RoNVyKvCDNC2Pbz9fMFxJdxKyXMVmqsWVWJeoA2F7AVrfBB+90cGyNhWY2X/C4
+mLKcLGj5MOqE9LserVaDdqvB8cWSwzPT/iCVFrkyNpjQ1tffPmVyjOMIGp5Fq2GuOQw8XMckis+X
+az5/9JT/78f/TqY8hNfFdlvYvo3j+1iLFCFSPGdJ62hCu+HQbAS0GgGF1MQ52LYPtgtlQsKmOh6Z
+oGWM5WpafsROz6Pd8mlGAb5rkxeSrChYLlPmy5jJQlJkKcssRQsXy/axfBh1Wnxwt43ngtAFi7nN
+IzlhcbWk5TUYdiIzV82IVivi6KRApQWpSNnrd3nnThvPc02Sepzx9DAjW6csU4tcSqSWJvnfdipf
+g7A0zcBmq+fQa/n0Wj62pbm8WjC+UujcYrkokNIkaXmOjR94uLZRXXMcc4+rzV4S5fcxORYFqBTH
+UnQij1HXo9nwaAYOnmeRl4kt8+Wa2bzgSuTkyZoiXqMtH8uNsN3cJKg4nvn+1TmWq2kHAVt9j3bT
+pxV5+J5t7q08Z7FMmC8Vk7mkSGMWSYIWAbYvcShbrgkbYYnSp/anPQn9tfFWBb5NoPqYx48fc3Z2
+xmq1QilFo9FgMBiwt7fHnTt32N7eptFovPY98jzn5OSEs9Mznj1/xpMnTzg4OODq6orpdEqappXU
+8qa6+9kz83v7+/u89957fPDBB/T7fVzXxXGMxMQmKPbixQtevHjB8+fPefHiBZPJhNVqRRzHleRy
+FEW0Wi36/T5HR0ccHR1x584d9vb2CIKA8/NzHj9+XPUVFkKwXq+5urpCKcXFxQXj8ZjVasVqtWJv
+b492u02r1WI8HjMej7m4uGC1Wr0kYy2EIAgC+oP+V+ZFSsnp6Sm/+93vePLkSfX+AN1ut7zxTbXL
+arXi/Pyck5OTKvA9Ho9Zr9eV1PdNyfbz8/NqPg4ODjg8POTq6orlcvnSvIRhSLvdptfr8eLFCw4P
+D7l75y63bt9iZ2eHLMuqqvHnL55zcHBQve+r7+c4TjXPvV6vCnhu5nlnZwfg96r81tpksMbrmLPz
+M54+fcrz58+rsU0mk6pieSML3mq1ODg44Msvv+TevXvcv3+f/f39Kpi7oSgKlssl4/GYs7Mzzs/P
+iaIIpRSO4xAEAVtbW9fXojTn5+d8/vnnfPHFF4zHY2azWRUs3gTe+4N+FQyYz03F9yeffEKSJKRp
+WqkCVDIjQrBarapg9CbZodFocHlpFBcmkwnT6ZTVamWymtOUKDIVh0dHR1xeXnJycsLdu3e5d+8e
+3W63mu/NPTMej79yz1xeXrJcLlmtVlXFfBiGtFotOp0Ox8fHHB8fc/fOXXb3zHVv1jKOY05OTl66
+5pOTExaLBWdnZ1xeXnJxccFsNqvuH8/zKkWHVqv10r4Iw5C9vT0sy+LRo0e0Wi2m0ylZljGdTqv7
+4OLigna7XfW9r6mpqfkubLKxPc9mZ9RmazTgvXf2uLM/pNdpkEvF+GrK4ckFj56e8ejZOedXMZks
+szvtAGF7RjqpzB0272kRBSGdTotlnFOsCtI8R+QZpCl5ngMay7avK5CVIsty49SR8lpeTxsZwXbD
+o9XwGHZ8hl2fYcen1XBphi6ea2MJE/iOk5Qky5jO1oynay4nK04vV5xdrclVhpYZquyFrHFKma03
+C3pv5izwLCLPoR15hIGLbVkslivzs1gymy/J84z9vR2jeBMGjIY9dndG5CcLpotF1edbFrmRmiur
+S67tcfGVT1daU0gjCVcoTHWvskBaxLnGXmUEnsU6zimkLluACFzXMRnyTinrVfZqMkaVwITxxSty
+65t/FEY6DlHJK1Z9/RDXElxfnaqXh1H+nigrWTZ7z7JEKVFp1kFJk8EexwmW8rF0gSMkytZo+/rN
+pdYUKifJJOtMsEogyRSZcrDdsJSzBEsUWELiWJJOJ6DXbDLoBGz1IwbdkEbo0Qg9hICiMApKy3XG
+Ks7M3hmvuLhaMV/lzNcxNgG9psPd3Ta2ZZzPnYZN4GpG3ZBer82g16HVjGhEAY5ts1rOubwQOI7J
+BG83HBqNkCgMaUUeeRaTJGvG84JkESMLaeQAbafq3eU7PqN+yIP9Jt2WcTzP50vW6xXn+ZoiS5FZ
+ii4ElmPjucYR22+3GHRDtnoNRr2QRugThR6WVY63KFitU5Zxznhq7pXNeGerBEv79BrleIXGshTd
+pkPgaPqtoBpvuxURhQGe55DEa67GVyyXBUlhstBtx696BNY2cU1NTU1NzXegkp/VBK5F6Lq0Gy5R
+4OBUZ9Ali8XqK2fQMAwYDjrsbg0oztZMl+vyDJqhVNmy5EYPUXSOTYFj5TRCi26zTa/tsj1osj1o
+0Gp4BJ6pNIuThCRJCQOfQa9Fr9smCgMsqzr8lfEgEzz2XItBJ+TubgdLmETSftuj03SYzjp02g3a
+rYjA83DLwPd80WK+XDMatBh0G1xNFrTbLdqdNv1eh+1hm2Gvac6UAparNluDJpdXbZ4fnmMLyTKW
+5ComjyWWE5hKZSukFflsDdqVLG6a5kSBqTSVmx7NskDJFMu2aEcWzTBi0PYY9gK2egHN0Kfd8PA9
+p2z7AnGSk2Y5s0XCeLbiarLmdLzmdBwjLE277dFpN9nqh2z1QzoNj1bk0AjtahxFUbCOU9Zxytao
+y3i7x9l4wfHZjIurJZTBF4sGjdBha9DGtQWOLciLgujwDEsoVClbrsre6kLm2EJi2wXNwKbX7tBv
+e4y6EaNeSKvhEwbGtioK06pnuUqZTDtczdecjdfmnLiWJEVOmi6xHKMS5Fim7/yd3XZZratYdH1a
+kcP2oEGn2aDVatCIAgLfxXWdshoyYdRv0W4GdFoBk1nK1XxNHht7UQiBdsOyDY8o+9J/2y2zkbWW
+WELhOSYo1e9G7Aw6RJGPY9tM4oTD4wt+9+g5h2dT5itJKh0cx8e1I7TlmpZZUPbXLdCZJiskzlVO
+cLgg0+ecXMbk0sZ1TUDfD2wGnYBhL2DQCRh0jA0beDa+ayHQ5IUJLo16LcajLhfjOWeXc87Hc+Ic
+4mxJJnPcoEwAKAdtWyawdne/iy00tlCs+hGthsuwF9FpNWi1m9U8+67LKjZVp+OrFp1mRLcdcjXP
+mS4T0iRF2C627RJ4EVv9Brtb5n70y9aMQgg8z6XX7aBR5LmiKBSFhk21p7FRFUKA45h+zo6QRIFN
+luX0e236vTaNMCCKfKbzFcv5jItzSZYXqEKjKbAdCFyXfjtg0A0ZdgNGvYBhNyDwXALfLu8RUzE9
+GrTZmXUZXy04Gy85Hy+Jc0FSxORpgeOGCILrftHoP3IAfKOWpnDQ2JYk8Cx6zSbdZqe8/pBeyyge
+hL5rihcLSZJmLFcJq1XCycWc0/GC8TRmsZbM13M2KSsignbD4c5uB9+1cWxYrRoErqDd8Gi3G/S7
+LbrtFlEU0AhDNIL5cs1ynVOoawnrb/6eMYiNrW5xw1df/helSfOceJ2QI7Cq7wyFtnV1bxYSlJak
+uWKVWqxS04IuyU1FO6IM++kCmxwhCtpth26rT7/tsdVvstWLaEY+UWQCxIU0tus6yVmtUybzmLPL
+JWdXK2bLjPkqBxnTiixub7cIAxtbaFZxhOso2qGxwfu9zVz5REGAzlOuxhfMC03kGaW0TiukEYWk
+uSTPM9JkhZikZIuUIsuN4obtlqogBbYr6LUj3tlvM+yYZ5lWBVkSc3mZIPM1qjBxrCjwGA46tJsB
+nuuwWCUcX65wLFF9/6Cl+W5yoB159FsRvZbDoO0z6Po0Q4cwcHFtUcYgClZxwmKVMJ2tOL2cc3a5
+YLbImK0zkiTH8wMcR9Fp+vQ7HfqdgK1exLAX0IpMkozrWBSlGsE6zliuE6bzmNOLOWfjJbNVwTIp
+SNOl8dcJk5hkWZs2HDVvylsV+F4ul7x48YJHjx4xHo8pigLP8+j1elUwczgc0m63q97Cr5KmKV98
+8QU//elP+eKLL3jx4gVnZ2ekpQO4KMyXmda6kln2fZ8wDBkMBvzLv/wLzWazCmbatk0cx0ynUz79
+9FN+/OMf86tf/YrZbMZ0OiVJkqr38uZBdTPQ+/jxY27dusXHH3/Mf/kv/4X779xnMplUAfHNa6+u
+rnj8+HFVqb553011+u3bt9nd3WW9XpeV8csqgLjptRwEAaPR6CtzspEiPzk54dNPP+XJkycsFguK
+omBnZ6cKuDqOg5SS2WzGyckJh4eHpGmKEIKzMyPrvuk3rbVmuVwymUyqquFf/vKXzGYzFosFSZJU
+/Zw387IJcgZBwM7ODrdu3eKjjz7iv/7X/8rOzg7r9ZrZbMbnjz7nxz/+MT//+c9fmueb7wdUQWff
+93n8+DGff/45H330Ef/8z//M1mgLYf3+kufz+ZzLy8uXxrZYLFgsFqRp+pU131xHo9Hg/v37PHz4
+kA8//JAf/vCHLwW+N6oBaZoymUw4OTmpEixc12U4HPLgwYPq95VWVeD70aNHlYR8q9Wi3W4TRRHd
+bpe7d+9W/bwXiwWHh4dVcHijKpAkSVVNvpGv3wS5N0Fk27Y5PDwkDEPyPK/We6NGsFnDZrPJkydP
++M1vfsN/+2//jXarTafTAcxBMUkSZrMZX3zxBT/+8Y/56U9/WlV5x3FcXdcmCL8Zv+u6PH78mNu3
+b/ODH/yAf/qnf6pkxgGSJOHi4oLDw8PqfnYcp0rq2MjHb9ZoUxF+7949bt26VfUG3+D7PqPRiCgy
+UvDdbpeLiwuyLCOOY66urqp7FagD3zU1Nb8Xm6qRyLcZjbYYbe1w59Y2u1t9HNdhOp8yvpry5bMT
+PntyyuMXYxLpYnkNLCcA20fhILVlWgmXjjnXddjaGvDg/l0UDunRJct4hV0kyNxH6ALPs2mEvumJ
+JiglAVNWq5gsl5UcslYK21Js9QIe3O6xv91mZ9hi1IvwXSOpaAmLTXsy892gSLKcOCkYTxf89NdP
+Wa2fsogztN70K3Qoy2d409i3URHRRL7DoG3RbbkEro1Uitl8wcnZBVdXU6bzBUWeE4QhW1tDwjBg
+ezRgf3eHyaKA06uqD5+paHdNzy696d340ipV/yQ2HdbKrHzLtrAst5RxcyiUJM2hUF+99k1bDNtE
+m42MtigN27LXYPnWN+ZClL2gMH2csKuqDpPiqzfduW701qbqS16mAbOZZK0VWpjed0qajObNcDfV
+2ZZt4Tourmf6IG6S5za/aCoSLBA2ubbQuSBfalZJgdSQKwfHs6vPFFriiJzIVbyzN+DDByN2Rh06
+rYB2wzdOmXIPmmtS5IUkzyXjyYqTiyuOTic8enbO6vkcS0e0Gw772x0cx8K1BduDFrtbPZbLFVEU
+EIVBKQnnoJTk9Oyc54GRwncsjW1BpxmyvdWn2QxIkjVpvCbL51xNlxR5YWQDHd84aZTEc00v+Q/u
+b5sM78jn6ETw7MUxq8WUJJZkaYHWAtfxiFzMeB/usbfVodMMaTUDPOd141XkuZEbPD6bcHw24dHT
+M9brBZbyaDVs9rfaZryOxfagze5Wj8XiNlEYEEUBvu/hlLKkl+MJBwcunqOx0gJVgJL5dU++Ovhd
+U1NTU1PzxujyDCUsIxfeb9p0Wx6B98oZdDJlNluQFwVheQaNAp/RsM/ezojp8gxxPkPmCUpm5Xm4
+VJcBtMpBFTgix3UKtvtN3rs34N07AzqtkG47wvdsbMtIYRdlsqrj2AS+R+AbmV3btl+9erRSRnGn
+HbC31cFxBK4tyIYdbu8OSbMUz3XxPRfbtsp+wFQSzdPZiovxhPl8TadjfE7NpknoC32vrAI2dkCc
+pMyXazqNL7F0zvHZjKtFSrxe43gN0ArH6tJtBezv9vEdC99zSNKEVsPHthSFMj16FTkUAse2GHZa
+3NvvcHu7zd5Wh+1BC8+z8UoJ4E3AX0pJIRVpVhAnpmru/33ylDh5jmXBnd0G925vsTNssTtq02p6
+eLYw5zM0liUqGWdjH2XEScajJ8f8v198xnR6hdQmAGSJDt2mz/5OH9+zCTyXLMvMOEQZwFdFGcDP
+sKSN6ypCV7I7bPH+/S3ev7dFM/RoRiaA75SJyUqbPt25VCSJkbp98uKc50fnHJzOOblYs1iucbzA
+SEtbmk7TY2/UwXEw65t1ubU7ZB0n+J6D77lGyt4yfXQ3svDT2ZLbe0NOz6745e+eMp9PWa+XgMCy
+HBwhULZjJN7fWG3KnKFd2/Qeb5YqUZ12o5TTt1mtEw6OLvjk02dMVgIpfNwgwA2auEGrTPi1yvuj
+7N1NgdKSWWzx5GjF+aRgOl+TKRvPN0m1rYbDg9tdPrg/YnfYoBkalavNvSOErmSbkyQnzjLOLyY8
+eX7MsxcnHJxMOTybkWXr0v60KkUnxwrptHxubXdwbBvXERSFZH93xHqd4PubeXbM5zkWeV5QSMV8
+vub2/oTzyzmffH7Ib744ZLmMsewA7Qb4rsWg12Q06NBuhriuWyV0eK5Lt9MiCHzTm1zrynTViCpR
+QgCO45b3u9nrhVQ0oqBKCnZdh5OzS45PLvBdsCiMCoUu8CyXlq94Z7/Nh+/ucHunSyN0aUYetrW5
+T0xfZqUUSVaQphmXV3Oevjjl2cEZh+dLjs+XxElsEnqEQKm8kvr/Y0a+TcF32S9ZCDxL02+GfPDO
+gPfvD+m1jDJZGBpFDNexyr7uZcupQlLkRWmDXfH88IJHz864upqVVbQWSIdm6LC/3SMKjPR3USi2
+Rz3eu3+LIPBohAFB4JU+bIdlknNyMWU8jUkKrvuPv8HdYxLuTQ/2zfdDlXhRyqB7noOS5b1RNZfW
+ZSs5CyybXAt0IShiiHMJQpPmDpZjVyomKIktchwrY39ryA8ebHNvv1cmwkTGdrUdI3WuzHdJLiV5
+rlisYo7PJ5yeTfni+QVfPL+AQtIMBLujNs2GX90fW/02D+/t4fumvV5QVrG7js1iMefFgUu61ri2
+xhaaZsNne6sHCNI0Jk1XZMWU6WJBkUks2zX+MK3QKscWLoNuxMO7I4a9kGYUsFqtOTg6I14vSeIV
+eZbg+aaYY2+nz6Dbwvc8pvMVz48meA7EuS4VIySuZZQO72w3eO9en7t77fJZ7ZbzUkqTl/dCUZgk
+kuUq4eT8ipPSpn/05JTlYo7vSDwh2B10+PDhDvdvj2g3jU/Ed+3y2WzmWSnzPZblBatVwvGZeb8v
+D8Y8fjFmuUzM89k2rRK0sBBYb7C7aja8dYHvo6Mjnjx5wtXVVSVf3e/3uX37Njs7O/R6vdf3sC57
+CS+XS548ecJPf/pTvvzyS87OzhiPx1Vl7M2ewbrsI7MJ+jWbTba2tvjbv/1btre3q2DwZDLh4OCA
+3/72t/zsZz/jl7/8ZRUI3Mh/Wzechpvgptaaq6srjo+PkVKyv7/PaDRiMplUldubgO7FxQWO41Tv
+s7lOy7JYrVZVwBtMwHcTeD47OyMMzRdlr9fj/ffff+28xHHM2dkZz5494+DgoOpPnWVZVcXrum71
+vjevTwjBdDp9qeJbSslkMuHZs2f85je/4ac//Sm/+MUvqrFvgsGbw/jNudZaM5lMuLi4wLIsHj58
+iJKK6XTK4eEhv/3tb/npT3/Kv//7v3/jPJuqNROYvbq6qirUd3d3+fDDD6s1/y59mbXW1fs9efKE
+Tz75pFpzVT7kNj2tb17Lpie5UorZbMZkMqmkw999990qGcIS1xXXcRwzmUyqSv0wDHn33XervaOk
+qYgaj8ccHBxwcHBAkiSs12u63W4lHf/OO+8AVNewqX4+ODioxjUcDiv1BN/3EUKQpimz2Yyrq6uq
+2n6jIGBZVpVQcdOgWi6XJEmC7/ucn5/z7Nkzer0eH330Eds729VrZrMZBwcH/O53v+NnP/sZP/nJ
+T6r5A6oEkZtreTMh4PT0lPV6zdbWFj/60Y/MWroeWZYxn88Zj8fVNW8C8ptkmM39s8mYXK1WVeV7
+IYuX1nuzR7rdLtvb2wwGA46OjpBSslqtmM/nnJyccHx8TLvd/lpJ95qamppvwsiL+/S7be7d2eG9
+d+/T63ZpNSPyvODyasbT5yc8eX7K86MrTi9XuGEXN2piux7YNlLbZLliFWc0kk0fJtdUjz98h1zC
+OjE9ghzfxS4l3pqRRyMyffwKaYLei8Wa2WJNmiuMo8PCtsC3YXsQ8f69Aff2e+yMuvQ7DbI8I8ty
+lKqip6VDwS4l1ixmyzVnF1M+/+IZq0QitZFOt2xVBmjfLDN1U7EiSnnJYcen1woIfct8xy6WHB2f
+cX55xXS6QGnF9vaWaRUSBGyNBtyer3hxMkZoiVQZWqbIIsVyPGOUf8UIf4Pnetlje3MesW+0ftHl
+hWutyozcMrJd9VnevIX12ve9fu/yjEDpbLrRB9Jkj6sbwelX69bLvs4lSuhSRl2SF6o8T+ny4wSB
+79HtNBkOuuQ6INc+wrGxXIFtaRB6U2hOUcqzp0IDsqwEsbEcC60kSkocR9IIoN9yuX+rw9/+4BY7
+oza2JbDExrBTlRNgU9Hgug67WzGjfsigHbBcLDk8lLhWTjuyGfYaeK6DV/YH398ZmH5fm2UrpyNJ
+U5ON7UCem4zwPM/wPIdBr00UeqyXC+LVksvJCiEzijzHzgMcLzKGL5LQE4x6Ee/c6uOX/chMeyFz
+/ojXmiLTOK5L5LkM2h73b3X5ux/ss7fde814dbVvTK9Fh3WcMOiEjLoBy+WSw6NTXKugGVhmvJ6D
+57pmvMXrx5vlBaHv4ToCITaOdF3tEY1ZwpqampqamprvgDYV36HvMOy69No+oWejlGK+WHJ0fMrF
+5YTpbIFUmu3RCCklYRgwGvTY39vm4HQG2sg+K5mipFEd2pwVlSoQOifwNO3AYn874sMHW/zw/X1z
+9vDc0sekkKaRbeXfcBy7TGbd+DX1S9cOGtc21YmjQQPPMcEvAShpAs1ZZvpaA5WPzfNcPNc1PqL5
+gvU6JooiGlGIEBaFNAU5ovx917Fxy8KZIo2JVzOKLGO5XpPFyyqIaCNpRi5b/RaB7xIEHmcXV4S+
+a2SKtQl8Q45QAtdyGXZ83r/b58GdEbtbXbYGnVKtqlSfZFORa1V2iG3bZLlJxH324hjbtnhnv8nH
+D4dsDzvsjjo4tkWem7FXHbnLc/0mQOvYNp5j8ez5Aa5VIAuNLoxcfCN0GfVbBKFP5HtcXE2JAg8b
+BZhxaJEjpINWNqFr0W+73Nlp8fG72/z9R3fNORwT7C4KiVQKqyoGMXMqhKAVeTQDC0toVquEs8vY
+qJoLgU1BI3AY9iI81/SgFYIqwFeUFc5KbYJvgrbbwPdddkd9dkddLrf7jK8mPH78hHmxRhU+eepj
+WQ7aCdC2881SzTf3XBmMc2yIHJtm5NCMfBpRUFW+ruKU04sJTw/O0E4X7XZx/RaO38T2GqXKlSjP
+uboKpmtVsC4kq0mOHielqePQCExyx6gf8u6dHn/z/g67o+YmdZm8TNC+XmPb9Jl3Ha62ezRDh8jV
+ZFnK+cUFq7xAOS5F5mFZjpHtFopm6DLqNY0t4pm1qRIVCmnmWZoxaqDdbOB7DsWWZGfUYTpbMJvP
+efJccSVjE+gUAq1zbCFwLKvyEW+qjrEEtmPjKgetTWDU+EzNZwSBZ15r28Zm8FxG/TZF6TvfrNnG
+pp4vloSehWMZaXAtCywbmqFgux/w4FaXv3l/lzt7Azbm5+bZs7mPLcsy8+c4zOZLmpFD6EEhJeOr
+GYsiRdk2MndMOyn9Onv7D3oslxLnCiUlnm/Tjmx2hiEP7/b5x49v47lWpUwnlUl42CTJ2LaF55pn
+3KDbZNRrEHiC8WTCUx2TFxqpBbqIiDzBsNek1QiNDLclKLZ7RimvTI+/Vl3XhIGH79rYZZep64D/
+14z/xmNbaZBSUUiFlCZIv/E5O45Nq9VgOOizyiwy7aMtG9uzsGyj7y9KP4JU5icrACFLF4SFsB1Q
+EiVzXEsSepqW73Bnp8UP39vlvXvbWJbAtsy+NkkiukrCcBxjk+a5ZNCN2OlHpFnKydk5aZrTCCwG
+3ZBO29jrliXY3eoiZemz2NiumLmKQlPpLIRRWsvzDNuy6LZMG6/VckG8XjKZxRyKCTKLkU6A4+WA
+Al3g2i69dsDd/T79TkjguYwdgUCxXC6I1yuKPMX3HaLQY9hvM+p3CAMf13NpNnxs21R8G/tfEfmC
+Qdvlzk6THz4c8e6doUnaL/ud50WBVLryYWy+L/Isp99pMOiErNYrnr2Q6HyNbwd0Gxa3dxp8/O42
+P3h3r2zRIar4h5SbeTbv57lGoWDQa7A9aFDIgvOLCZfjGJSPKsLrwggc3riipObtCnyv12suLi44
+OjpiPp8jpSQIAra3t3nw4AFbW1u4jvu1r51OpxwdHVUy2pPJBCklzWaT0WjE9vY2URS9FBBbrVZV
+VfHmS3kTdFRKVRXkP/nJT/j1r39dBbHb7TbdbpdWq0Wr1SKKoirouwncTafTlwKXT548od1uc3V1
+VVWebz5vs/mDwPTZjqKoqiK+d+8ee3t79Pt9sizDsqyq8lUpxXK55PT0tOoLvgkU3wxuHh8fc3V1
+xXq9roKbm4Dfppq+2Wx+6xrdDFI+fvyYH//4x/z617+ugs6b6vlNULbf71fB69VqxWQyYT6fE4ah
+OTSUwdAsz3j8+DH/9m//xi9/+UuOj4/J85xOp1MFeZvNJo1GozrMTadTTk9PK3WAq6srDg8PefLk
+CY8ePWI0GrG1tUUYhm+0/zbrnqYpT5484V//9V/59a9/zenpaSUD3mg0aLVadLtdut1uKRMaM5vN
+uLy85PLykvl8zsHBAY1Go6ps7/cHDAZ9XM8kKOzu7vLixYtKSn9TwT+fz8vDeP7S3lytVmRZViU/
+rNdrzs/POT09ZbFYoLWurmMymZAkCVqbfvUbWfRms2n6zXse9tf0Od1I9W8qoXd2dmi325VB9Pz5
+c46OjlitTE+r2WzG6ekpT58+pdvtMhwOGfQHVR/7X/ziFxwcHJj+V+U9s1nLZrNZreVsNqv6a0sp
+q3v56dOnfPbZZ2xvb78kAf/qum32ZbPZJIqiqn+853ncu3ePra0t2u32a/uub9j0Lr+8vOTw8LCS
+9z85OeHo6Ijd3d0/w1Owpqbmr5Fet8ODB/cZDgZsbQ0ZDHpYwkgmTudLPvvygN98+oyjixWrFGy/
+heNFOG5gDBZhekNfTmIePb8gyTrsDFtGcm80ACAMGwwGQ04vrsgKyAp4eG+L3VGXRuST5xmX6zWn
+ZxecnI+5GM/IVABWgOf7tBoB/U7IVr/B3rYJeDs2LMrA3NHxKUmaoxAIsekbFtHtthn2O6XRbxwL
+lpCo0vDchGe/k9S5VgigEbmMehH9bkDgO0ilmE5nHB6fcHp+xWIZIyyb2SKmKMwZajjos1qntJvP
+sC0FeYYqUmSRYEsjv2YuQ3Fteb5smOpSdlHJHJUnFGlugtJAw2vQb0fc2m7Rawe4jmUyosv+YXGa
+k6QFeaGxXav8vi2rqTcB8TeZhU3/srLqYdOTS8nihoTajcD3JsgujLy6ZQlSrdBSs1hnrOKcJE2r
+7P/RoMff/+1HNKKIySJjskhZp5o0h7SQJqs/l0glUNhlPz0X2zZV70ILtBIoaRy7jabPvf0uD+90
+uX97RLcdkaUpl+MJ46sJi+Wa5SpGKY1tW/i+x97OiFt720ZlqRmxuwM7o3O2BqaHZeBtziqVe7KK
+7c/mS+aLJXGSkueSdZxyeDJmscrIC8n5eAnWmF6vS15IAt9nOOiSphlPjyYIkaNyWfaAT/FdgecK
+WpFNI3IJA9MPPc9zlss1V5M555dXZNKl0A6dVsTdWwN+8GCPB3e26XWa5FnGyfiKy/GE5SpmsYyR
+SuHYFp7rsLe7zd7uFoHv0WqGCGvI7pYZb7PhEwWvmmWiOs/P5gvmixVJkpLmBUlacHB8yXyVkhUC
+hYXlWGU2uF0mQvxln3s1NTU1NTXfK8oeqMIqz6D9Bv1ORBi4SKWYzOYcnZxzen7FfBljWTazZUwh
+NUHgMxz0WccZ7eYBNhKtclSRoYoEYTkolRs57CLDtSTDboP7+w3evTNge9gm8F0je7peM52vuJou
+mM2XZWGCoNNqMBp06XdNX1TP8/hKy56vkdjNsozVOmY+X3B0csbxyQVSaaKoQbPZ5NbeFrf3trBt
+mygKsS2LNMu5HF9xNZ1xfjFhMlvQiCKiKGI46LG3M6DXbbE1GvD+w3eIU8Xp5Yw8WZhgme0iixRV
+BtCuL3JztjXnWyVtXNsl8i06TYdRv8n+do9Bt4Xn2KxWaw6Pzzg+OWcVJyhtpHybjZBmw7R8GvY6
+BFFAGHgMukY6emfUZXfUIwpd5KbQ5uiE49Pzqk9yEAQ0mw3azSaDfofhoGssFmHOVJa8jiJWp9HN
+WDaJDFpVykGKAsvKEMpm1OvxwTtDHt4bsT3sYFsW88XS2H+zJdP5ivlije+ZhIBup83OVp9hv0Ov
+2+KdO7ukheZqmnB5NSNTmkxmRslKvVzQkeem2Gm1XnN0csHJ6QWrdVL2hXW4c2ubd27vlBWYPoN+
+m1G/xbDfJEkLMq0oshXS9XFUDspDizdVDjLz4DmCRujQCBw819g7SioKKcnSnDiTJJnGsSxsyygu
+WbZTSvdu1LYwqgLaJARrSyA2aglV8rKi1Qi4u9/lg3s97u716TR9iqIwrbBmCybTOZPZEqk0ge8T
+RSE7WwO2Rz1832N3e4jj2EwWMWcXV8hiTk5GniywHB/bDcoArnxppEYaPyGOY45PLyt7VJXV2Hf2
+t7lza5t2M8TzPfq9DoNei1GvwXIVk+SCtMi5uJzwyWfPSNOE997ZIfBt/NJ/uVytODw65eDwhLTQ
+JJmikFRJ1Xf2R9zZHTLs3/Dfl/ZClufMS5shywvyQnFyPuHscs46NUnRQggaYcDd/SF/84N73L8z
+otuKkFKxWCyYL5ZMZkums6WxoQKfwPfYGvbY2Rrgui7bwz62ZTNb5sankOVkuiDPY7TcJC3ob5b8
+fvMHc7XHtCrQMqXX7vLunR4P7wzY3+kQBh5XkwmXl2OmsxnzRcxqHVfJLO1Wk729LfZ3TaC332ux
+tz1gZ9hm1AuZLxIW6wyZx0iZ3/jczfRaCKFZLNcslkvWcUqWG/WyF0cXTObxtRpcuU7im+4eIRBY
+SKWJM8UqLljFGXGSYglwXRP0/uiDd9FKMZ7GTJYpi7UkyyEpNGmWkeYJuaS01S2EZXq3Y5VqcJu+
+3jLDcWBvq8O7t9o8fGebUb+FRnN6dsl4fGXk2ldrsqzAti0c22Z7e8D+7jbtVosw8Nje6rM7umJ7
+0GS5TogCp7TNX+6/JoRguVwxX65Yr2MjY15Inh+eMV0krGLJxWSFtsY0Wy3297Zot5v0um3u3Nrh
+8HyBayuzHkWCLBI818J3oR1ZtCKHKPBwbFPYsVrHTGYLLsYz5suYvFDX8nr65b2kywSKjXqA58De
+qMn77wx5cLtf+sCMim2SmGfvxeWExSrGth1sx6HXMS1HQt8lSTMsYVTe0AWOrdndavPxD+7w/v1d
+tgZtBHB2Puby8pLFYs1itSbNchzbwXFstkZ99ne3yvc087y3PWN7cMFsviDVkMkEVdhlmzllqr5r
+W/+NeKsC35tg7iaYl+d5JYv97rvvMhqNjCTj17z28vKy6id8cnLCZDLBtm2CIODWrVv8zd/8DaPR
+qKoC3vRYfv78eVUtvgnGSiWR0vx88cUX/Ou//itPnz6tgtmdTod3332Xu3fvsru7y3A4rIKgjx8/
+5pe//GVVZbpcLjk+Pubp06e02+0qUHuTTSXxRtp908e82Wxy+/btMnjax7IsGo0G8/mcJ0+eVJWp
+mx7ei8WiCmyDkX7fyDVvAt9ZluF5Hr7vV9X0u7u7OI5DHMffuEYmwGj6ez99+pQf//jHfPnll8zn
+c7Iso9ls0m63uXXrFu+//z7vvvtuVVF/dnbG48ePOTw8rJIPNnOc53n1fo8ePar6LLdaLR48eFDN
+8/b2dvUAevr0Kb/61a+qMW2kw58+fcqjR4/QStPpdL5T4LuQBVma8eTJE/7t3/6NL7/8sgryhmHI
+aDTi1q1b3L9/nzt37jCbzZjNZjx79qySrF8sFqxWK2zbZn9/n3v37pVB2UY155u+7bZtV0HuTeB7
+I9G9WCy4OL+oqu2Xy2V1cFiv15ydnVX9rYFKmnsT+JZSVpL7m6B3s9H8Rgn4jWR+q9Xi4cOH/O3f
+/i17e3smWG7b/J//83+q+c/zvKouf/bsGcPhEMdx6Ha7PHv2jH/7t3/jk08+YT6fV73q33nnHe7d
+u8fu7i67u7vVPXNwcMCvfvUrlsslWZZVcvvVWmpNu9X+xrUzmdYhW1tb9Pv9Krj+4MEDtre3vzXw
+3e12uX37Nufn50wmk6/M83w+/5M9+2pqav666XY7vO97ZZWmTxAEzOcLptMVh8dnfP7lAb/47WNW
+mY3wurhBG8dvYjmBkX3T2gS+pyu+eGEqUaLAo9sK2NkeMRz02d3d5sH9CeOrKZPpgslsyd7OkL3t
+Lo3Q52K9Zjy+4vT8itOLCZdXM5zAxola+L5Ps2H6e20P2uxv92g3PIoiZzZf8uTZC375yafMlzFS
+WdiOx7DfY2vY487tHVzHrtR4rDJz3bDpaH2dCf+t5/PSiSQQNAOb7UHEoB2aPl2FZDpbcHh8xunZ
+mOU6x/UC5os1hZR02g2Gwz5SadrNCFsotCxQRWLkJl3jfNsotrxsCKkbl7DJKM+ReUKRZ6UvRuEK
+h0G7w52dNoNOiGNbRj4tz0iSlCTNiTNFXmiEtnAsp8x6l28y+vLz1Y2s9rx0CuZl5VBe9k674UTU
+VDLqwnawbA9t2SRSkwnNap2yilPiJCPwPWzHZms04D///Q959/5dXhyecnh0zvl4ztVszdVszUwl
+5ElGnmukdlC42F5gqiYqmS0zv7pIifyQB7f7/OOP7tDvNum2G1xcXHJweMyjL59wfjnlYjxFSonn
+uURRyA9/8B6e67CzPSqdlw12t47Z7jdoNjzCwC7XxZxpN33tQTKfLzk8PmUynROnRmrs+OSS+So3
+FQ9iSVbArf0d8ryg2WiyNexh2xadT59jUVDkCXZu9objeTQDl1bDphEaB2SaZqRpzmK55moyY3w1
+QTgRlhMShQ7v3B7xT3/3gH63TbfdMAmYRyd8/ugJ52Mz3qIoyrNYwI8+fIjj2OzvbtFshMbBOeqw
+M2jgey5hYN+o4tfVXEtgvlhxdHzCZLpgnZj+6IenE2arjKww/eNtx0VYbrkXvsXhUlNTU1NTU/MS
+Wm/kZlV5Bm0y7IYm+VJKZrNlFfhergoc12exTJCFJGxFDIc9lC7PoJZCS1PxLfMMy87NmUkrtMwQ
+QjHqh3z8cIe7e322hh18z2O1XnM1nXFwdM6zA3PeNe3mbHa3h+T3C/zSJ+o6N925ovz/rw82ZVlu
+1OxOz/nkt5/zye++oJCKbrfPaDRCa8Vo0KXbaVbVZ+vzCy7GY548PeSzL55xeHxOt9ej3+vz4P4t
+wsBjNOiyvdUnDDwm8xW/+ewxRbYq5Wk9E/gu8pc6DG0k5auqXl1gWYrQF/RaHlv9iL3tPqN+k7zI
+Wccxz14c8evffM54uigD3zaDfpfRoMut/W0c22YnML19B90mzWbI3laPve2OKbbIc84vLvntp4/4
+3WdfIJWgUNBsmsD99taI+3KfRiM00sDCwracUlVn069Yv7phyvN4GfRWBZocLQWWthkNGvzo/X3e
+vTui2QxxbBPEPz455+D4gsOTS07PJ7SaIa1mxO29bVzHYtBr0+u06LSb5FJzfDrm+MRmtlJkeYoq
+UrR+2Z9cFAWL5YrL8RWffv4lv/n0SybTJUo42I7Pf/qbD2hEAbf3RoShTxQFjAamT/tyuWa6kiTJ
+CsdroGSBLiWAvz1kUN4zWuE4FlHg0gg8XMec3aUyvt4kLUhSRZJpAt/CKfeHZbulxPnNM6sog98W
+GhtsXc61RmjT0qfZDHnn1oD//PEerUZAs+GzXq+5uppycHTC88MzDo/PyHJFp22KqbKsoBmF9Ptt
+9nZGjIY9Ts8uefHigOViyTzOWSdzXL9RSnYXX1EKK6RktVpzNZny6Mvn/Pbzp1yOp0gtkNriH370
+PoHvEPq7BIFLpxWZee5HTGc+V4uCOM24uJxQZMavGvg2u1sddMO0Y12tYp48O+Dnv/oty1iyjCVZ
+IYwEu+Xwj3/7Lt1WxLDfqqZto+iVZTmX4wlHx2esk4w4ybmcLDkfT0lSSS7NLzcaAe/cGvLPf3ef
+djOi3QqN+uZ0xuHRKS+OLzg6viROc9qtBq1Wk/cf3qXRiNgedtnZGrA16nMxnnF0dMx8tmCeFiTx
++roj1x+56psy8K2KjH7b5wf3R3z47jb9dpMw8FgsFnz55BnPnh9xMZ5wOZ7guh6e77E9GvI36fu0
+GhGNRsSgZ6qS97babPdDZJ6yWqUURWwSlDZ+AV1qJgiBsASr9ZqT0zHjyYx1UhCnBSeXK6bzhCTX
+FEq8gQ0mqj8KqSmUYhVLVklBnGQ4jkl0ajUafPzhQ+7e3uXw+JyD43NOzidcTVaMZ2tmi5QizUgz
+idIOEsf4joTAFnYZ+BblnCV4kcetnRb/+Df32B526Hdb5HnG2fkFn37+mNPzSy7GU+J1gluqj33w
+3jsIIPA9wjCg3+uwuz1mZ9Bg5mqaofMV98bGz7Jax5ycnnM5nrJKMuI45/BkzGQes0okeroiyQq2
+hn3iJMdzHPq9Nr7v8vmTU1xbI/MYlceoPMFxPULPpl3a6lHgY5dtOparhOlsweXVjHVcgOVV1fDX
+67h5jG++e8x+8mzN3laTv/vBLjvDFp12hCVgvY4Zj6c8fnbAl08PObucloWFAbs7I+7d2WWr36GQ
+EssuFf50gWtr9rfa/KeP73F7b0S/10Iryfn5BZ9+/gUnZ5dcXE5ZrWI83yS7vPfgLlorwsAnDAN6
+3TanW1N2hg0urzymK00apyjLRSu/LKjQta3/hrwVge/NwSxJEubzOfP5vJIw9n2f4XDI7du36ff7
+X9vbexO4nk6nLJfLqqf3zd7XDx8+ZG9vjzAMsW27kvPe3d1lZ2eH+XzOBx98wHA4xLZslsslq9WK
+09NTzs7OqqC34zilzJCZvjzPq77CG7nrjfTypkp3vV5zeXn5UjX7Btd1GY1G9Pt9dnd3uX37Nvv7
++0SbbMrhkP39fba2tmg2m/T7fU5PT2k2m3ieR1EU1dxdXl5ydnZWVUevVmtOT0959uwZk8mEPM/x
+PI92u83W1haDwYBms1nJX38bJig5ZTabcnJywvn5ObPZrAqmb21t8fDhQx4+fMiDBw+4d+9eFcgd
+j8eMRiNOTk6q/tH7+/tYlsXJyQknJycvVcpvel87pdxPnues1+uX5nlTuZ5lWfXfx+MxR0dHDIdD
+8jz/1jFt2FTHb5IvNj3UNxLhOzs7/PCHP+Thw4fcunWLvb29qu93u92u9sFqtar+/vj4mEePHhGG
+Ibu7u/i+X1V8dzqdqq/6Zv2WyyVxHLNcLrm4uODg8IDJZFLdD0BVyb9YLJhOp8xms6rf+sXFBVdX
+VyRJApge1u12m16vR7PZxHa+WWo2DEP29va4f/8+H330ER9//DG7u7tlzxmLg4MDnj59ajIBy3vV
+HDCvOD09JQxDgiCo1nOzlpvA+WYtN/L7N9fSsix8368q3pMkqar4B4MBaZa+9ppbrRa9Xo/BYMCt
+W7e4c+cOw+HQSHM1TO/uW/u36PV635gE0Ww22dnZYXt7m2fPnr20Jza9yWtqamp+H7zyGRophWOb
+ntFKa9ZJwnxuMv8Xy4RM+/iOwLE9sJxS9s1Co1AKZouM4zNJM3AYdAO6TSPFHIbGyHEdh3YrYtBb
+M18sabeaNEKfJE05Ozvn8ZNnPH9xwHQ6J88LLE8jMO07Qt+lEXqEgUvgOcaQkNIkAJ1f8uz5AdN5
+jBYmQ38yj7mcrrlapFxOYhqNiBcnE9apRGJ6Qwthl1nPb96HSAiwBbg2NEJTtdFtB2X/upzpdMbp
+6RlnF1PSXBCEhclQXsa0mg0c26ERhbRbIe1WRC5TtFAm+F1kOKowWdH69WF427bptpvs722hsGm2
+VoyWGX7QwA+b7G51uX9nxDu3Rwz7LVzXZrmKOT275NnBKeOrJVLbCMc1/aNt1xicSr/hFGhsW+C7
+giByaHgOoWeZKvpN4HtTWVJqh2mgkIpCapK0MMZlWrYusW1my4SD4yt+2/bYGbbZHrbxPYdOq0kY
++FiWTRT4DIdLpvM1s0XMYpWxWKUs45x1IlklOatYsU5j06/SNkFWWxR4HrQbLoNug+2hqUJCq+r8
+V+QSIQS+5yKVjeu45Rlak5Xf+VEU4nsurWbIoNcgDAJ8333JXzJfLDk9Pef0/JLDY9OvbrHOyJVF
+VsDVLGOZGXnJYq1RIme+KkhSCRp8z6PVbNBuBLQij8UyQ5Aj8xjPsem1IgatgChwEQiWqzXj8ZTz
+ywnLdUohBaFvE4Y+3XbIqN9iZ9TF91wEuhyvUbLZjNe2LRzHxS17rGW5keqMwgDPdWg3I/rd/5+9
+//yuI8myfMGfmbkWV+JCEJShMlJUZVe/1zO91nRX9x//ZnrqdVelzgzJoIK+WrgW88HcHQDJYJCR
+WVk51Ti5kGCQgF83c3N3O2efvbev8xXrdlq22Ww5v5hyfnnFydmUk7Mpm11CXimyUrDYpGwSQV7b
+1NJCmbqIqL3h5S3p+7u4i7u4i7u4i7t4dwhRI6kwhN6DToY+/Z6HaSiyLGO53nBxccXF1Yo0B8f1
+WW01e6sFNn3PJQxceoFLVmZARVkkyEK/o5UEywTfUYx6TgNAaJnYNCt4dXrFl9+84OR8xsV0y2Id
+aYsdpcgrU9d2+iFSShzn9ab++q1/BK2U8+13z/ny6+/46ukrXry6okKxjhVJafPooWbJ3bSGvLic
+8ts/fMHTZye8PJ1yNd+yTQXbVBH0R2xjbXHoOg5SSnqBh21KDZi2bPfvkT1urXtaixYpwDYlvmPq
+XMQ2UUqQZhVxnDCdzXn+6pSr2ZoaE6TBYpMwXUTM1imzVcLBZMHZ5YKyAsu0sC0TyzSIy4IsL1it
+Nrw6OeObb55RoagwcP2A+Srmcp6w3GRcznZMFxuuFhFFbVCLSksKt366b43GkqiqUKrGsSH0FMPQ
+YTz0CX0HJQVRkvDqbMrvvnzOq9MZs2XEcpPgbis8NyerLVwvwHUdemFAP/Tohy7745Dj/QHV5Y51
+FFGWmVawuhGb7Zbvnr3gq2+e8fV3Jzx7ecEmypHKxbDhYh4zne/ohSFKGviehec69AMX37PYJCll
+nnZs8rqqqNWHgJY1SgosU2JZ2l+7rqEoSuI4IU4zirKibnJEGh/tjun95t3ItXiRVugSosZUJpZS
+DHs2w77LaOCjJFRlyXyx4qtvnvG7P37FbLljuoypkSx2gt5O4vorgnBBLVq1AI/xsMfxwR7rbUx2
+uWOx2jXS3oZunq6rW2e120Y8e3HKN98+49sXFzw/mTX5sQHC4HK+43K2od8PGaseQaDXc893CTyL
+bVxRVTlJkrEUgvlK51x5XlAUWictLwo225jpfM0mhk0MWSmRskKoilVUkZe3r83l1Yzzi0tOz6ec
+nF1xcnZFUUnyUrFLC5brgqQwUYZJYMB4GLI37rE3ClFSUVcVi+WGb5+d8rs/fsNsGTFbaTULb1vh
+rytsZ04QBFqKP3Dphz7jQcjR/oDlJiK7jFms40aBTHUNEX9u1E0zj5A1linwXcUgtJmMAsZ9H8uU
+FIXOJ4uioKzKRl3MxjANLFPXoouyJElSXMfGMCSuq33o90Yhq02Emms1jroqbz2u4iTl4mrG5dWc
+08slpxcLlquYrKzJC8E6KlhFkBaKCnUtR/2OPEwIqGtBjaSuFXFWcX614Q9fn3Fvv8/BpE/Ptwl8
+D8/Vz1fHthj0QpabiNU6Zh2lbHcZmyjTuXqcE6U1UZqTZXnTKGEhRY5t1oSeYtz3ONzr0wtdlISo
+yCmaL4GuWVVOg2cZBgJBXhSkWYbrOlimSeA5DPs+Umrp8ps4UpKknF9ccX4x5eT8itPzKfPllryU
+5JVkuUlYx4KksChjSIuC5S4nTnOKqtIqcL6gF7iEvo3nKIQoKfMYQ0r6vs14oPN4wxAkacJsvuT8
+cspmm1JUUivTSYVQRqfY9+YjpsZQAs9U9AKLYc9hMvQJfRtTiq7Z6k9fPeXV2YyzyyWrTYLl+Jh2
+TVSu2WYmo36MkqBkzWqbYpgWg37I3rjP4f6Qfs9DSaHHV+QUeQ51jWka2I6NaeoGAyGgLEqyLMPp
+JNkdhj2PUc8nKXLqXUFdarsP1Sr/iTu58/eJvwngG/TGpwWIW1lnzQqxGI1G3L9/nzAMb/kN34wW
+dGyZ4nVdN96TqgPPnzx5wqNHjzrv7iTREiXL5ZKrqyt2ux2PHj3i/v37AJ1E+NXVVXdc7dGn5Q9b
+lnHrn93Kdk+n0w64bZnNeZ6zXC65uLhgu92+AXzfu3ePX/7yl3z22Wc8fvyYBw8edMCv67pa/tz1
+Gp/NjGfPntHr9XAcp/N2bsHSFy9edCBrFO065mwrsW5ZFuPxmEePHrG/v4/jOLc2uO+KNE25urrq
+ZOk3mw1pmnY+1Y8fP+a//bf/xs9+9jP29vYYjUadDHUcx3z++ees12tWqxXr9bprInjx4gWXl5cd
+c/z75nk6nXbS6bPZjDRNu3mWUnv2rNdrzs/PO9D9fSNN0863uh1jex1byfn/8l/+Cz/96U/p9/sE
+QdAB+P1+nzRNSZKEV69edf7Tl5eXfPXVVx1TvW1cKIqCXq+HYRjd2gU64Huz3txqWHh9HK2U+XK5
+7MDv2WzWsZXTVIPELcN8b2/vvZjvvu/zySef8N//+3/n0aNHPHnyhOFw2K2N4+Njjo+PWSwWnex6
+67s9nU67tXSzIUII8YaveJqmzGaz7loul8vOd/7mPdN6bD969Kj7vNfD8zw+/fRT/uEf/oGHDx/y
+0UcfdU0yhmEQhiG+7+O67jsZ30EQsL+/z2QywXGc7rmy3W5ZrVZdM8Fd3MVd3MWHhmh8uGqlOh+3
+sixJ4oQoismyomlEFV2yKDrZai3RVFYV26iAoqTnSfaHDsPApN8LOs+qMPCxbYswCNjPR0ipfYU3
+my0vXr7i93/4I8+enbLZrDtJNhrfM8tUOLZqfJe0T5xuKNMJxenZJctNglAuwnBZbnPOZwknl1u+
+eTHDsR1my4hNVFFUCpShZZel6rpRf3iboRniUtZYSuB7GkwNfe1RvttlLFdrLi6uuJqtqYSFXwnW
+6x2L1YZe6OP7DqZp0ms64bNCEBU1WRajrJS6lS+7KRV+I7k1lGSyN+azjx4xHo5YbRPiJCcIQvwg
+ZDzsMdnT8oCB52KZJheXM7559oo/fPGM8+mKEhNl2kjTRijt1Uz9/oxvQwk8WzEITO5NXI4nHraJ
+ZmBUDVuorlpzcaq6Yhdl7OKE86sNL8+WrJc7astBWQ7rTcK3L6YURc5PPz7AsU3GA2394zo2B5Mh
+YeBynOSkWU6Sl2SZ9otfrLZcTpecXy15fjLjxemCKCkRykEaFrYtCVzBIDDohzZh4DXegrohUUqJ
+5zkYlkm/16OuQUqBaRoEvkdVacC4tenxXJtRXzdkvg4Ez+dLfvv7L/jdH77gcr7lahaRlgJlBQjT
+Jy8gr/R7Pk1rSmAbl8RZ3vi8SVzHJgxchn2PzS4lzkuKbIdr+uwNXMZDF8/W3prr9ZaXJ2ecXUyJ
+4wxlaDufQc9jPAgYDgJ6gfbguh6vwPNcDNOkH4ZUzXgNQxEGHlQ1RZ53no6uYzIaBChl4NjWjbUJ
+i+Wa3//xC37zuz9xOd9xtdiR5Hq80vTJK0VZWZTCAGmhpIUyLF3o+IBmk7u4i7u4i7u4i7to96AV
+piHwPYvxMKAfaFubaJezWq65uJwyna2ppE1RSb0HXW4IAw/f1Z6wuokvICt3eg+aJxr0LnNsQ+Jb
+2k902HcZ9n0C30Eg2Owivn12yv/3n//A5WxHWppkpdF4FBcYVszBfMv+3hbHselX7w9MLlcr/vTl
+t/zzv/yOq0XEbJUgDIdUZNRmxjqqKKprkCovCl68OuVffvU7Xp5esYlr4lxQyIyMlMO1VjjS/qT6
+HB1b+7dKWSNadmYHfL9txq//JCWYpoFjG52HeZuLxEnCfLnm/HzK5XwD0kYol+W24GIac3K54emr
+Of0wwLI0AWkiroGndl+63my5vJry6vQUpA3SxnQSZusc/yrm1cWawdML0qzgarYhrzSQJRVIZTfM
+ZKjfktC0vtRK1gSOwahv0w8sPFfnMFmes4tinp1c8Zs/fsfZ5Zq8timx2KQlxiYlr1fYtoWhah7e
+P8CxLS0xPe7x4HiPdVxyNt1QFhnVa8D3crXhT1895Z/+56+YLRPmq5gcC8OWuIbNKqq5XEQM+hGu
+Y+N7NrZlaAasa6Nk0oDeecP4rt5kuH/fNWxUtKQQGEo3aajG8irLcnZRQpKk2iNXXTd2i+8FvW9G
+Y0vVzLlrK0LHYBjahJ6FYxnkRU6SZlxczvjDl9/y//m/f00pHCocpOWzyXKWcYIbrHG9KQjJ/UMI
+fZtBP+T+/X1W24j5KiHPdghlUJo2VZW/pcEg4ptvn/H//r9/xWJTsdwWpIVEGAplWCx3FZfzHcPB
+BtdxGAG2aeL7Dr5rYxja7iAvK0hL4rQky8vG21nndlVVk2YlUVIQpQZRYZJXClmbCEyyUlF1Msd6
+Xl6dnPHPv/od33z3isvZhqv5FmkGKCuglhZZKShKC981CTyDyXhAP/RxbYuiLEnTjOlsyRdfv+Cf
+/vkPFNgU0kUqm3VSYG4TbHeF7V5S1zUPjib0Ao8wdLl3tMdyE7PYaKU0IQykYTZy0u/wun7vR7Nu
+LJFCX/9Bz2YYOvQDB8+1KQttN1ZVFaah6IUeju0wHAxRUiKVlg13HZu8yMmLkqrWVlSh7zAZ9bm4
+WiJE3eXaN895u4v48uvn/Pb3X3G5iJmuMqK0BmWDtChrRV4qKmFSCwMh3icP06oGtVDUQhFnNS/O
+VhR5xOdPDlCGxDEVRuNLPxr2cRyb/cmYJM3J8pK0sSXb7BIur5ZczpY8P53z4mRBnCb6OSktXFvg
+2zDwda7e6/mYhmwsCDKE0E1Uo1GfwA8oq1rXq6Sg3+8hhSDLsgaTqHFsowF0wXUsXedppmu3i/jy
+66f86te/5/RqydUiYheXSNNHmgFFJchLk7JWZHlNnFdsoooo0c3jUgps22pAX5dBYBEXNXEeYUpH
+K4IMfQLPQgrBZhtzcnbFy5MLNlGCUDbCqJDSQDYqaN93GSxLYtoa9B6EDoHvYJmKqq5YrTd88fUz
+/q//8S8sNjlpaVBiY2Q1liPY5gkXyymuvcSxJI4F202CZbv0woC9kb6/LNOgau4vAdi2xWjYw/cD
+ylLbv0klGQ76SCVJs4yyKKGqsUyTfs9n2PeYb3dQJ1o1prHVQN3xvd83/s2B79ZXuazKDvher9fN
+5k536QwGAy1zbpody/qtx6mqDkir67oDc2Uj+dd2SrZgeOv3fXx8rDuDygrXcbBsi/l8znq95uTk
+pPP6jeO486ZuZZ7fBsa1P3sziqJgt9t1x7opP2QYBvv7+/zyl7/kH/7hH3j06BEPHjx46zirSjNo
+9vf3GQwGuK7byanHcaxZwi9fduB2C8o/e/aM5VJLLrae50+ePGEymbw32xvoPms+nzObzYjjuJMB
+d12Xhw8f8p/+03/i5z//OY7jdOD1zetUFAXT6ZSrq6sOAG/nebfbdfMspewkv98GYMdx/MY8l2XJ
+drtlNpux3W4/CPhuGcatLHySJB173/d9Hjx4wD/8wz/wd7/4O4TU66kN0zCZzWa3APo8z5nP57x4
+8YLpdNqB9P1+HyEkvV4Py7IaSZqsk63f7XYslton/sWLFyyXWhq0vR9M0+yuQ6ty0M7n5eVlByIL
+IXBdtwO+fd//wTlwHIeHDx/yf/4f/yeTfe2R3srXVlXF/v5+t/bm8zlwDQ4vFgsMw6Cua6bTKVEU
+EUURnudhGEZ3D3zfunr938qGadhdy/zt17Jdd//5P//nTkp9OBy+93W/eZzRaMRoNOoA/FZFYLfb
+kaZp91y5i7u4i7v4UVHV1Dc2qUKAlBpsNU2DqtLSVq/7TrfPnaqqyYuKLCtJkowoSlBSIBqWsJbm
+E7iOSy9UVFWlGbVFTrTbsViuiHYRVVlhNCA8aK+6ViKtPbeamqrWoKou5lxjxXUFuzgjSresNgln
+lyuU0glfhU52paGQP9jNfzP0eJUEQ4BjSULPotdz8V1byxQWBUWuv6qqQpoCUxlUVU3cyIy7LZM2
+9JmMh+ziimyVEyUJZsM8uZZif5O5oaRiNOwhxAP2J9p/KS9K+r2QXhjieS6e52BbVlfEurha8PT5
+GV89PWG2qUFYKNNDGQ5SGVR1iSi7q/6OGaipESgpsC1JPzB5cBDwsycjQk9dSynWdSNlqX+vLDVA
+PV9uoMy5vNJgLkIglMUuyTi5XBMnKZZp0A/dZs+rvayVshj0beSw2Svf2N/M5ktenl7y4pVFmScs
+F3OKLCcvK/Iyw3BcAtehF5iEno3r2MRJTZLoZlHPcxgO+0jZKgBovzEpJYO+9m68Xufg2ha90Mey
+zEbK83rhrTc7nj57ya9/+0cW24LVtqCSHrZfYfta3s0wHf0RZUElBJu4ZLNNidMMz3Ua1rfL3iBg
+tYrI1wVpEmGbNZOBw97Aw3NM3ZS32nByesnF5ZwoKZDKwnEcBj2PYd+jH7i4rk2SQJwUICSe6zIc
+9puC3vV4hRAMBwGmdaOBtykS90IfJWXDcL9RaNnu+O7Zq2a8JatdQSVcLL/G9kyU5WKYFtJwkIaJ
+ocxOBlE30PxbPOTu4i7u4i7u4i7+/y2u96BKgGsJQt+kH/r4rnO9By21kk1V10h0U1tV1cRxQprm
+DZNQAy+TcZ9dUpNvNGNZGjaVmSJtWzc3hhaDwKYXuJimQZKkbLY7Xp1N+eLrlyw2BcoZoOxed37B
+Jme5TdlF+vOqbs/ww3vM9WbLq5Nzvv72GXGhSAsTadmUqsTYVUSJVpdqoyxLptM53373nLPLJZX0
+wQyozYJSlayjiixr5k1JVJPLKCVQQvswa+ZweQP4/n4ATKBtaaUU1+q0DdOzaryC9W5Q+3tXtdDA
+YLJluU04n26wbIvDyYiD/RFF4+Hd5i9lqXOaqqo6+epa1KRZQV5F7JKa+SrCPJ1RC0VZQVXLxjdX
+ds28b53jGj1eKpQCz1GMejahr5W0hGyUMzdbzi7nPH1xwdU8wfKGmK6n2eKUIBMCd4lngu+5HO2P
+dbPqMOT+4YiXZ0skJVWZUpUtOKfndLeLGrudb0lLk6Q0EaaJoxSytIhSWG0z1ruUcVYihW6O9n0X
+x7FRAqoy63yt39ubub7+g2iun7phrZgXBWmakqaZBr4bNbBWhvj9amsN4xuBbSn6ob5/PNfEsgyS
+NGG3i5nOFjx/ccY33zzHCvZwggmW5xOXNbuyYjBL6YVrPNem39M1ziDwuHcw4Wq2wnl2QZUnVKaj
+mb9vadpoWftfff2MDI8cl1p6qNrAkDa7BJabhNUmZpLqZmvTUHiOpZ8PKqKuK8qyphYVaV5TFDXl
+jTVe1ZCXNUlWkxaSrFTklY3EQAqTsjaa++B67i6vZnzx5Tf86etnLDY5y22B7Y+wfTDtUPuWKxvT
+tun3HcbDHmHgYVkm2TYnihOm8yUvTy/45rsTTG+EE5oYtouQIJOScBYT+At812DQ07Vl33M5mAyZ
+zjd892pOlSegLBDiLyp1Xtc1StQa+A5NeoFu3nAsk6gqKNIcpSRBoJuqhVTI9n5t8q0w8G4d01BK
+5239EM+1UEJQVeUbdmhxnHJyesnv/vQN803FOpFklYVh+Zi2QJkKaeiG/5ue9T+8tEWj0KWbNy7n
+O7abAkMpQt/BUgrXtfS5SYNeGDLoaxusm4TQ7S7SUugnDqIu2KzXRFFOVlbkeYZv2XiWRd836Xk2
+nuuglUgK6rrGbpjkvTBs6jaSVlKuF/pvKItohTYPIcCxTXTZQD9o4yTl5aszfvv7P3Exj1jtSpLS
+wPYKLM/AsByUYSGl0mSEKmObNA38UaqvqW3he5rtPOi5lOuCbRxhyh7Dns3BOCD0LITU6mznlzNO
+z6/YRhlCWai6vf6Gft688czW52oZCt83GN54VksBSZqyWK558eqMP375LWlpYbhjTNfBqCUmik1a
+US93KAmeBa4tsI0Ky3aZjHwG/RA/8LCUIC71O9CyTPq9xn5WqVvNEWHg4b4xzwaB7zZ1kfTaiqWu
+dMXoL+gi8O89/s2Bb4C8yJuX4bWcs2EYnQ+1ZVka9Fbff7qO4zAejzk6OiIMww5oy7KM5XLJr3/9
+a+I4Zn9/nzAMCcOQXq9Hv99nOBx2X+1nl2XJZrPpwN2Wzd0C3fP5nCzL3spAb6XH2zGVZdkBvi2r
+5eZGQgiBaZp4nofrut8r597+rJKqk2U+Pj7m6urqFsP4m2++odfr8ejRI3a7HZeXl7x69YrVatX5
+pu/v7/PJJ5+wv7//Bjj9zmvVAP7z+bybF8uy8H2f0WhEv9/H97WXtZJvZ+crpToQVm+op11DwOvz
+3DKL39bw0M5zlmUkSULRPLhbz/D2vz9kbLvdrvPIbsfmeR7D4ZAwDDVQ/RaPbNPSgPb+/j6+76OU
+6s5rtVoRRVHnva6Pee273ev1Os/s1qu+ZY6/fPmS1WrVNSz0+33CMOzkt/M8Zzab8fTpU169esXF
+xcUtxrfjOOzt7TEej98L+P6hkFJimmYnfd5ew9ebVlrf+fbfWnZ6y6B/PVq59/aeaRsW2t/XCWb1
+vedk23Yn2X+zIeFDwrIsgiDA87zuHNvPb+/ju7iLu7iLHxNt0l+VFbat9za+53J0eEBZCWarlNkq
+YrGtSKqqAS2l9j1rJJosW3K87/H4wOXRUcjDe33CwGY2m/PV19+QpAVFWaKUyWQy4nAywvdcbNuk
+F/b4yU8+xbZt/vT1c/709XNens4ohaQsU9I0Yr1xWCx37OKUsqpwlInnuuzvjfmP/+EX+L7Hch2R
+5JBkFXFSEKUFUZwSRRlxWlAhqBBaEvADN+N1w142TEHPMdkbWASegSEb0L/WjWgPH9zj//iPv2C9
+jZHKxvN7fPT4iND3ME2pGwekot8LOD6csI1yVtGcqki0VHiRXUvIN3uEW3syKXFdlxrwfY881wVO
+x7Z1YUhKiqIkSbecXcw4v5zzzXdnPH01Z7oqSCsLYboYhneDfZs3SeT7haBpADAEnmsx6HsMAksn
+OjeKh9fAt/67qqpwnQVK1FRlBrVm4pSVJMkFq13N1y+WbOOCcd+hH5j0fAvfs/E9i9DT69JzbSxL
+qwi4rsv+3gilFGmuZQyfncw4uVgxX66QPYlne/iOgWHoMRrK0J32wz5SKfq9XtOMegPklkL7WDl6
+T2TbFiCQSmJaFoZhvPE+r6qKvChJ85IahTRNpOFj2iGGHaJMB2XopLGucoTUhdzzqxWBa7A/EfR8
+h17gcXQwYrWJ2MYLVqsdrgn7ez32x308T3tnrbcRJ+dzLmcrkqxEmTau4xD4HoHndIwkZSgcx2Y4
+6KGkoNcLAHlbElOA6zh4rqVtYWwbhN4Tt3uqN8Zb1+RlRdaMVxkG0vAw7QDTacZrOo0/omoKLaqZ
+63Yl3cVd3MVd3MVd3MX7hGkIQttir28QOCaGcXMPqnhwfMh//A8/v96DegEfPz4kDDxMQ4O/AP3Q
+597BmE1UsInXFHmEMmzKIkWicCyDwLOwbYUQkKUZq9VGe6FGGSUGQimUqd/51Lo1UhkOQlk3wIkm
+xA+rKgmaRlShkLLxVzYshHIQygapOhhVQ2oCIRVKmSjD0p6pymmYz1bXZHf7M7ixB6mv963fU5Pr
+PgdBUcI2zllsEqKk0LUz6eA6DuPRkF/+4qc4jst8sSXJtFd0lGREcaabceOMJCuI4oTFasdiFREn
+GVA3LHyPjx4/5B//X/+Zo8NDkqwkyWqSrCBOK5KsYNuAL1mRU1WSgoa9Kd9DRaduwTmwbZPA1aCc
+FJI80/7bs9mSOM61So8lUJaPaXmNdVENUjM/l5uEKC0oyhrH1uBcvxfohtC6oirfAkwLoXNGaSCx
+9FezTzQsD5RFhaS8cTmUkpiNf7wQ3GDodkP6gNAN2FV13aigT0silEI2jd/teug+5kMAdlFjSG07
+5DkmlqFzuThOtBLmakWWFwilfc2V5WFYAabjY9gBJSZxWrNNKrJc506ObRGGPoHvYRiSqtSM96pq
+6/bVa6MUzZ7dRAmLSjjUysWwXAzTRUiTqpYa2G7n2WhqqI13czc3HfB5w6i7u5yiabhQyNpGVSai
+aXDVgO7te6+satK8JC9qkCaGbWPYAaYdauBbGQhlYjtOk/fZmE2NPU4SlssVy/WWLK80SG66KNPD
+sPym6cOkxGQXl6x3OUmm58W2THqBTxBcz59AUiuzuf//fHSubhjfommM7/k2nmNgSIWQQktFI9if
+7GFZFkmSdo33opkn01Sdf7LnOhjKIJPaxtaybQzD0j7Nsm3KuLn0BHklyEtBLSyUZWPiYlie9oOX
+BlKZusm7Bb15n6b/dj1pWfisqqjTiudnO9LiJU9fTen5Fn3fIvA0GBx4Nr7vEHgOtmVqyWzLYjzs
+o6TsPNwDz+bV+YqzqxWUNY5l43smlqkbo6VQjS1qqGsentsQKG5jOI5j4joOrmvjNSRQISWmYWoJ
++dcwn5qaoqxI85KylgjDwFQOphNiNbmrNDTxsi5zqtIgzQWXc90UNBn3cWyLwHM42BtwNRkQpzOu
+ZjsMWWmp9smwkWqX7KKEi6sFZ5dLojhHKt3Eo++hBlx+G+7dSp3bJoFrYVla1j1JE+aLFdOZtjkr
+a6mf16bb3E/6i6aOJEVFKUuSosQyBZ5n0++HuI6NEgJDGdh2TRiG3Duq8by2MUN2a1PPs9WsT71G
+hZRIqWsEpmXrGoCUlO/dLHQXN+PfHPiu67oD/FrWawsEW5Z1C/wGvvci3wS+e70eSqmOQdt6CX/7
+7bcEQcBgMGA4HLK/v8/h4SEfffQRP/nJT+j3+4AuQhVFwXq9Zj6fd4BsC+S10tTL5fKt59OCr+3v
+6M6Ma0C2fMtGpWUVu677vaz2dvxSyQ74fvjwYScJ3cqQf/fdd9y/f58kSbQ358UFJycnxHFMlmXY
+ts3h4SGfffYZBwcH75R/fj3eBnybponv+4zHYwaDAb7nfy+Y3rLwgyDAdV22220H3r4+z2mavvc8
+t39uv7dr6UNetK1PfMvabj3EW1A/DMNbgO/NsCyL4XDIwcGB9tJu1lAcx6zXa+I47ljblmVR13UH
+euuHX9Wxi1tv8ZOTk84TvigKbNvufKyfP39OFEVkWcZsNuPZs2dcXFx0EuMt8N16xLf+8H9utAXa
+m/PQqhDEcdyx9Fvgu6qqDtBumwDedS1vKje8bxNDO6dBEOA4zvfaIfxQtM0nN4Hv9rpcS7vcxV3c
+xV18eJRFQRzFZHkGhM0zS3fQOo7DbLllPl+hLrZcrkqSONJM4dJumLICSykeHPT5T3+/z71JyCB0
+qMqCL7/6hl/95o8s1xvSvEIZFp998piyKDk62MOy+gz7PbyffsbHHz1mMPwDeVERRSnrRLJJMtIk
+ZrOJWK4jokTLQpuGTih1QSDg737+E5arDYvllvlqzXS64mqx5vR8zsn5nF0UUwGlUFBXKHhPpncb
+eq9kGYJeYLA3sHXRUerEoq5qDCV5/OgYISFNtXeVZVkc7I8JAwdDSWTDXO/3Qo7vHTBd7nh1saTI
+Y8oioSwzZGmANLvPvBlSClzXwbHta7Y7Wr5PStVILqas11u+e3HGH796xrNXM04utkzXBYbtomwf
+ZXpIQ1+/6gNA73bapBSYhiTwbIY9n3G/AXRfmzPQwHdVlZRlge9o/8iqumYpVLUkKSR5VLN9teTZ
+yZSeqxj1TMY9m/HQY2/oszfqMRn3GA97AJiGoaUQbYNB38dQgtAzMZVgtVxxEa9RePiOxHcMLEM2
+e3hdRDNN3dlcVvVbV0GryKRl6HRDgVJGs88w3g4EFyVZVlJhoEwXaQcYTojp9LSMqGFBXVOWOYKC
+KCk5n64IfRPfc+kHLv2ez9HBmNl8zen5jDLb4FqC/XHI/l6foAW+NxFnl1OuZiuSVGKYNrajgfPQ
+dxpGup4nQyks06IXhpRV9Xa3QimQQjPqdRFV2zIZhqnnQL5exEID/VlJhYk0HaQVYDoa+JaGfUva
+vJOMvAO97+Iu7uIu7uIuPij0HlTS8y32BjahZ6IakKrdgz56cA8hatK0QEj93j/YH9ELXAxDdnZG
+/Z7PvcMJ02XMycWGMk8ozaQBvm1sSxJ6JrZpIKUgy3NW6y1X0wW7OKPC1NLJlo9hhw2ApBvw5I13
+/u03/Q+892ULjCoNigq7AdI1mI009DHqWkt5C5BSaeBNWQhlUxsWUloIaYEweEM5qQHgRStP3clF
+vSOEBv/KsmYXFyzXKdtY+70qQ+EpD8ex+Y+//Cmff/aE1XrHcrVlsdxwNV9zNVtxdrnk5GJOlKTE
+cUqF9mqOE12/sS0LyzD5+KNHHB7s8//8f/wDi8WaxWrDdLbiar7iarbk5emUNNkR5wUFJmWtQUvB
+DzUW1B14LaTAsRSBb+HYmgGvPZsj5osVcVo0ylAmhuVh2EEnB13LiiSrNPAda1sc07DxPId+P9TK
+QFTUZaHlt2427jaNCrq510BJR+8bTRdpughpUdWaKd/+lpRKS8MbWgVM5w035ak/DLRs2flVVdOq
+8LcMcNmxSOvr47/34a/n1zQEnm3g2tcNt3GcMF8sWa42pFkJUqshaUZugGGHGLavgdukZhcVpI2f
+fQv+BYGWf66qXOdQZUFdl03TyY1TFaLzD5bSQkmX2vAaoFgD32WtGwzKbg4khqEwmnmmZUK397EQ
+jeLb7XtCSN3IoJRJJe1O1Unv+28vyKIoyfJCA9/CwrScrlHWsEOdc0mF7did7LptaTZskqQsVmtW
+qy1pUSMNRwN9lm4YEFIzmctaECUVm52W2gYt3RwEvm5ANwRVlSOFulZ6+AsA322+LqVmwfYCG7dp
+TGprwaZpYtkWo+GgUUZ77YYVosnldT4vpUAksiFc2pim1QD88o2bva6bnKyEWlooFSBV0MyR0zQd
+qxsqBh+Q9zcEhxrIypq0qkkutpxczHGtmlHPYq9nMx74jIc+k3HI3jCkHg+ofbfxMjcZj/oMBiGG
+qfAcA9dSRFHEy5cbRGXgWH3dbGUpBGAYCmUoLNPE9z0O9ydvP71mzoTQjV2iqYfoXL1ANj7gN+eq
+HOXMawAAgABJREFUKCuyoqKqJdJwMVXTgOH0kKaNUiYIockIhUGSw9V8x8n5Atu22Bv18D2H/cmQ
+w7m2WyuzLZYqGA897h0O8D0PIQW7KOFyuuL8ckFUWEjlUIumUaJtYnj7ksJQAtdumtCa5p8kSVks
+lsxmC6IooawkwrBRpt+MIUDZfnONa+qqoiwziiIlFAaeZzLohRq8brA7W9lYhonnuRzsT7rmsnfN
+s5QCpSRGg4uqZm0KpNa++JAS21382wPfcA0u3QQqW8/m9vsPdTVYlkUYhuzv7/Pxxx/zs5/9jDAM
+Wa/XnWd4C4JHUdQxZi8vL5lOpx0r+pNPPuHTTz8lSZIOsGtBN8uyOp/gli3+Lnb2zej3+xwdHXVe
+0LPZ7Na/t1LsUsobEpxvDy0d6XF0dMSTJ0+Yz+ecnp52IOiLFy94+fJl50++XC6J45i61h0mvV6P
+yWTCvXv36Pf77wTa33atWiZ9Oy8tC7htUFANA+Zd0Y61BYhvznMLQNq2TRiG9Pv992alh2HIvXv3
+uH//PoeHh51X8/tE24Tx+tgMw8C27c5/+vvGY5omjqO9RYUQbwC3rZpBe61bQL3X63Ue7W2jgpSS
+s7MzZrNZx9Lv9/vcv3+fzz77rGPyF0XBYrHg+fPnndR6660tG9ba3t4ek8mkkyz/c6PdnLXX+PXG
+jpYd3TZF3LyWrS/9+0Tb3HHv3j2Oj49xXZfFYvHO9fTndD+167H1qGrH1q75qqp+9LHv4i7u4n/v
+WG92vDo5Y7laMegPGA4HOkkMfMIw4P69fXZRgrIuyKsZcRohqpQqjzEsW3dTewajvsPBOGAQag+i
+dRxxcTXj66fPWK4TKgxM2wPlk5Q2823J47Tk+BBc26Tf73F4MOHB8SHz5ZpX51s20Y40jYkSl+Um
+5uXZnD98fcq9/T4938b3nIah7hH4Hv1ewHAdMOz3mKw2jAc9xsM+51drLuYRV4uYqsyoy5SqtLUs
+YF2DqKEW37NJb4tjFZZhMggsJkOP0DeRqrWq0eoek70RhlIUZdkkByZhqM/NtqzmPV0z6Pc4vnfA
+6eUC2zyhLjPKItVFR2UggbrWBaSbUVYV69Wa1XpDFCfEjY9WjaSuBWlWEMUZ623M85NLXpysmS4L
+4sIAw0c0xQ9p2AhldEWND4myqsnyil1ccDbd8u3LKZczo2FiNA2VNwpGVVmxWK2ZL9ZcLXZNA4Td
+MAM0K6CuBUUlKArN6CiKiqysiNKSVVwyXef0pjG9YE0/dBj1fcYDn0E/YNDz8T2XvdEA6pqr+QrP
+MaBKkRQYEpQSSEHHvIjihM12x3K1Y73d6QYOZSBFm7C1aX4bgqKouJjOubicM+j5DPp9rmlM7Xu5
+uWJCM5ylMvWXYXV/rusaCYhasEtKLuYRg96Ogz29N+oFuiA9m695eXrJdGYQeCah72JbBkWRs0sL
+lusdi3XCNsopsJHKxjAtTNO4xdpIkna8EcvVjtVmpwvTjZ1AO97X1Z7quub8cs755ZwwcOkP+rfX
+SntbNIwQzda4Hqcu0DReiXeA913cxV3cxV3cxY+K9vVsWwaDnsH+yCX0raYA/doe1Gj2oEiUMggD
+jyBo96CaGdzv9bh3tM/p5RrHOrulOlRXBRLNXG2xrrIsSbOMOEkoigpomLvNO55aQKXZs/LmPuGD
+X/kdMq0BnrYR73UG+c3fEPKaYX7zi7fv6dsdWwPlUr8LQG2ZeQjKWpCXNdu45OxyzZ++PmW7jemH
+LoFvN7VYrbrTC30GvYDhIGRv1GM86jMe9bmYrlhuMlablPlixXcvLxj1XXqBSz90cWyDXi+g39dy
+s4P+lkG/x954wP7ekMFA//nscsXFbMNsEVGhAbyqyDuJ9HesJIQAJQWmYXSy7VVZk+eFlvsuq0a0
+WzYMUXXtJUWtAba8oqzqxtpa+2abhkIpgUCzkL+PFCIa4E3WqlMDklJ110wLbDVWV4IbjZOvgdLv
+u6JEdyDKCtJcN6i2alSGoXRDsWNhKIGghLqgrnIthV8bjZ3grWlsvrXKXC2AWkJtosS1LQFAWen7
+J88KzaZswWmhtKRwMw81kqLQjNTWultKzXo3DaMB/1ulgrqz+nrttJomA3mDUSq7poNb83zj56W4
+zn3apup33KXNrSE6MFUrSd3877eRiZrfkQZCtLmC1SjI6XNWUmEo1Y1Xz19FluVked7Mn+zmT2qD
+e4RU1NTkZUlelBRV0xje1MuNG80TnYLBXzRanEg3hhtK31tFUTYWqAmL1Zblak2SZs3z09TPuO9h
+yUZRzNnlnIvLBfNNQlFJLGVpBa035lfbHiCUzjXbeZXWrWvy4eXodrHrtVbVgqSAutQ+71WVkWY1
+67hitk45n0f0ghW9YMao7+uvgcegHzLoB4wGPcqiZBclfP30JaLOEHWOIWtMJbprnqb6fbPdRqzW
+OxbrrT5/de1P/mbuqtfy5WzJxeUCqAnDXmO5cS070sr16/eYQnS5uv4uGkXDtqkkyWtmq4jzmclk
+PKCua3zP4WB/zGqz49XZFaFrEHoGPd/Bc2yoS3bbiPUmZrmJ2ewySqVVTOpKNwcJ8WYTw815l0Jg
+KNE0UDT3QvcuzijKSltdtA1jytTsfmneOG5BXUmqWoLU6mymaXa2cWmWkcQJ212sCSSrjS6LSfON
+OsHrMVusuZwuOb3asotLEGbzPH8PBZK7uBV/E8B3Cy7dlAC/CQS/T5iGSRAE7O/v83d/93fkec4X
+X3zBN998w8nJCVEUdazUtki12Ww6NvTXX3/NwcEB//iP/8hgMCCJkw6Mb8NxHHq9Hnt7e3zyySf8
+9Kc/JQzD9zo/3/fp9XpIKVmtVnz33Xd/1pwFQcDx8TGr1Ypnz55hGAabzaZjRz9//pxnz55xcnLS
+MYAdRxev+/0+e3t7HBwc4DjOBwHfr3up37xWb5Ol/MHjVW96s7uuSxiGjEYjPv30Uz7//HMGg8F7
+Ha8F9kejEQ8fPvxgsPf1dQi8VwPG63PQviTa+Xp9Y9qy3ieTCcPhkO12S13XbLdbzs7OqKqKi4sL
+lstlJyW/v7/PkydP+Pzzz3n16hWWZRHHMYvFghcvXrBer9lsNh3wDdq3en9/n8lk8heROm/P/V1r
+4yZI3ALeg8GATz/9lJ/85Cfs7e291+fYts1gMKDf7/Pw4cP3vtf+nHG9DqC36+Ft1/Au7uIu7uJ9
+Y7la8+3TF7w6OWc8HrG3N+be4YT7x4caoD2aaF8fabJYRyyWGwpSinyHtAS+bTLsmfQCLf1kmY0y
+zXbHxeWM5y9O2UQlygmxXUVaL7hYC2YbDdoKavZGPUzTIAg87t87YL3ZsYlecXKxIM8kSZKy3iZ8
+9/IKqHh8POLR0ZDjw0EjraXlmZXSBYzhoE+SZjy8H7NcbTm7XPIvv/+OzfYZUZZQl3YnKy5Viagl
+9RvslOvQPn4lpmEz6NkcjD1C39KFQSkwDJ20D4fDa5moJpG1TBPTMjGU7qava+j3NWv52csLHFtR
+lyl1kVIVCaUyAdl0o99+thd5wfnFFd89e8HldMF8FbHaxtS1QYWW+46ykiQt2cUFUVKQlQaVtLXv
+sumiTKcBedWNxOj9E5SiqonTksU649mrBUm0wzIqyiKnLPLO67srK9Y1UZQTJSlXi4goBcPyUYaN
+lGZX1BRCdoyevK7ZppAWNctdijnNMFSNISssA472Qu7tBzy+P+GTJ/cIA5deL8AwTSYnl/iuQlAg
+qZCi7jDXqq5Zb7ZMpzOevzrnm2cnvDy50pKDTTNAV0Rtrru4AWpv45RdFPPw3oTDg/Gbk9NKOdKO
+STWd+9dFGkSNrCtEDVFSMZ1HjHouUZojGyny4/qAxXLDs5cnTC9t+qFN4GuGfhzHLNdbVptI+4Nn
+NdJSGIalJT9v7Anrmma8c168Oueb56c8f3V5Pd6GldF1htftktBj3kYp2yjh+GDI4f64G2O3ZLpi
+lwKaIl7H6JE3CpYftsbu4i7u4i7u4i7u4naYpmIYOhzu+YSB/cYedDQc4Hlus3e83oNalqnZWYbR
+7EFDoOb5yQzbMqjLTPsnF2nnody6VYOWhy6LkjwvNYjQgc3i2prnL0jxamV4u++v78/rmz/Z8bev
+PZlFWxN61/l8CONbaFCyFMRZzcvTBZKSq9mSx/fH3D8cEQYuQWONI6XEdWwG/ZDD/TEPdwmLdcRs
+sebXf3zG7798yXy+4ItvTkjzkodHI54cjxgPAwLfxXUsAt/FavKiyd6IB2nKo4dbVqstf/rmBf/r
+118ym15R14VWVSoS6kozyMXbxlTfHJJAE0fb/a0Gq8uupnQDvOwMzfXf13XdyJE3AKK4rlMJRPM5
+3zen4vqr3S+3LNR3SS/Xr//hQ8Dv9vMkRVmSpAVRVlCUDaO6ITD5Tf4qKBrgW39VVYmkoq7fBuRW
+ndpBXVWIuoKqAKoGWtbnWLU15a4xoVm34np9t1Nc1TpXuYU7NA0uNBL9dTfHb5uHG/N5w6f8Nijd
+zsv3TXR7X/zAHN/8sdae63svQ/v5OkeS4mbOIG/MhWaTyhvMZF3HLW/UPK/XUI2g0Txo1C9emz9o
+GP3NM6S55/+ildP61kprGkr0f+V5znyxZDqd8fXTl3z99CXz1Q7T1PLzN3Om1yMvSrZRzC5KmU53
+ZKUkbHK3W5evu87XOVjbNNTaIFyXyD/kGd3m8VXXIgQ0TesWFRW7XJBtYR1nXCwyTLlFNfn6/sjj
+aC/g4b0Rnzw5phd4eJ7DwWTEarMj8GykKJCibBTxrpfnLoqYTmecnl3x9XenPH1xpm3EDFs3Vne5
++g1lhmaNRbHOXcPAY288pKrq14Z9fX/o91jbFNLmro0tlzSQdU2a1cxXMYGreBxlVDUNO3qPOEl5
+/uKUUd+h3/i6m6ZBFCVaon+zY73NiNIKZUuUaWn58eadKd5xPdrGn+umlOZdXFWUVanB+3bSuvex
+eO24Ok9viQ6yUbFr36lxFHM5nXF2fslX377k22cnlJXEaOzZurX5FowlyUqiJGcXl6x2FUizsRpp
+7u33lNO/i78R4PsvEaqRapBS8tmnn3Xgacu+XS6XOI5Dnucd0LrdbknTFCkljuPw8uVLJpMJP//5
+z5FSkuf57ckyDDzPYzQa8fnnn/Pf//t/5+Dg4L3Or5Xg2G63/OY3v/kgsPlt4Xkeh4eHJEnCeDzG
+NE2KomCz2VCWJS9fvuTrr79mOp12QGjrbT4ejxmPx52n+YfG64xf4EZH3Ie/4l4HUlum8nA45Cc/
++Qn/+I//yP379z9onk3T7KSv/5Jje9f43gZyv+14AFLIDvgej8dcXl5SVRW73Y6TkxOqqmI2m7Fc
+Ljk4OKDX63Hv3j0ePXrEZ599xm9/+9tuPa1Wq07Kvv0qiqJjW4/HY/b29nBd90dd79fn923X7PXx
+tmEYBq7rdsD3f/2v/5UnT56892e1suqt9/a/dvzYNXwXd3EXd/Gu2EUxZ5dXPH3+ivlqy2y5pShr
+wjBg0NeM6fGwx2aX8Or0gulswSapWScxsjJxTZeeJwldA9cxUQrStCSKYmbLFZdXc3YZOL6JVXrs
+8h2Xa6iFQejZDEIH27YYDUI812F/MmK53vL05RVUOUWlZRZ3UcLp5YokzdjtWguaomHf5liNJKOS
+ikHPwTINirIky3KOZ0uu5iu++fYZWV5QV7rAp4zG44u6KVK85f3RJvR1jW0JBoHDwdin51lIKcjz
+giRNyTJdcJJKSwe2SUJZQ5nmGKrCqmtMpf3wLNPURUrHQhPBC826UVbnp/U6s6GsSuaLJd89f8nz
+V5ecT9fMljtqYVMLi7yUpHlNVgmU0jKChmlqH0ZLA81SmU1yd9M//PXvb05B+6ey1D5tmyinLDKW
+KxB1SpGnumhalQ1L4vqYRamlxeK0Ji2l9qGyHO0Jpa79yqpSUAtJUVUUGUR1pY9VFpRlRpknyDpn
+NvdYLAOoK/bGAx4Lgdf4og36IbZlICmhY55UXUVJW5tseHVywR/+9C1ffP0Sw/YwLE/LZbYA9Q2f
+8nbrUDb+gJZls4uy1woVrzEfui7sJqm+mYxKA2pIsozZKme2StjFmsngug6WaXJ0uMfx4YjFfMh4
+GOK5NlCxiyKupgtW64goLckLsCztFyjbLvVuHdckScpqtebV2SV//OIpf/jyGYblacn7xovzerxt
+k4AukpSVZvgrZbDZpW+si1uFu7bI0ibI72B93MVd3MVd3MVd3MX7RbsHcWyTQc9jfxwSvmUPKqTQ
+Mq03fqmsIU5zDCWxajBu7EGHgx6ea6JEjaiLBvxuPYTrW/u46la9qeV76n+7iYDd2kX+iLJF23sn
+atHtRa5VdcQ7fusGhPA239RbUb/jv95+AapGmSjJKs6nG+Jox3a71SzUsmTYDxgOAu0rq7QFUa/n
+Mzb61HVNmmWsNxHz5Zpvnr5itdnx8uSS9S4l2sXUVUGcZAz6Pr3AaySPBY7j0gtDTFORZhlZlmEo
+wcuXr/hG5hQ15HlNkSdU1Q9Y39XX3+r6Rg5wg0HZ/cTN690xjFti0Y15r9vj1bfAse+Zxua7QNRc
+g083mP7fe9otvqWlht4Ll73+XH18nYeUxElBVlSNmqdWzfQ9B88xcCyJlFWjxJUhlEFVmrfBn+4c
+Wrlx3WRrqBopdPNvVRUN05QOuJI3FaI60LqC+k359uuPqqkq3lIDvNFEcONvuj+1dV5E08LSfv+B
+JfJaM8jbyqrXP1J366JdK6J++8W5ltm+kSPJtkH2NR/x+uZMtH228npObiix0Xy+6Fj39VvhttdX
+5188M7k53BvzVxQFURQzX6x4+uwVv/rtn7i4WmLaAZbTQxotw1i9cbC6hrKR509iLWst1Zu+1QK9
+xpASUev5rG81H/+Y0baNAzVC6HUqZN2wpQWVUJSVoMxrkqymqorGEzunzFPKIuFg5DCfe2RZzKAf
+8Mnjezi2jWPbjIZ9PNfGkDWiuweusYosy9lsdpxfTvnim+f89g/fUGLo/NWwX8vVr+8Z0Sg7VHXN
+ZNxnuUm6+/DWhHWNN3qurmX925pE07BOTVZmLDc5nh2z2aXkeYlta9/yLMs4Ohhx73DIZBwS+g5K
+asLGbLZkudqxi3PSAhxbYRoWlAVVVbzWiPJ6iLdWZoS80chy6x+vyQb6OS1v//et5/l1k0qW52y3
+Oy4up3z5zTN+/dsvyEuF6QQYlqfZ8LcUBm5UhISiRlELkxILhNM0JWiLgh8hL/C/bfxNAN8tOGY1
+EpV1XVMUBVLKN7yaf0guUklFr9/juD5GStmB1Ov1mtVqxWazYbvdsl6vOT095eLigiRJOk/p6XTK
+s2fP8H2fPM/xfb8Dz8tSy2hsNhvquiYIgg48fhcL9uZLNEmSP1uSGTQbdjgckqYp4/GYMAzZbred
+v/XZ2Rn/8i//0nlWSykJw5Dj42Pu379Pr9f7UZ+rlMJxHDzPw7K0rEfLpF+tVtrLuijf/3iGPp7v
++9i23TUctIz8sizxfZ/BYPC9EiVvm+e22+ZDx+a6LkEQdOeSZVnn092uk7eFfuFGLJfL7udaP+yb
+a/tmtCzu0WiE6+rO4fV6zatXrzr2N+gmh/39fe7fv99JuLeMt8ViQZIkTKfTTqK9LEuEEPi+38mL
++77/3nLxPzaUUh073bJ0J27r8d36lDuO88HXEviL3DM/FEVekCRJ1zjQjqmV8f9zm1Xu4i7u4n/f
+0O8k7Y01Xey4XGSUwqI/6NPr9XAdE8e22Rv1+NlnD1FK8dXzOdGLGaKMUfgocc2srWstxVSVJXXV
+Jpo6qdDsV4UyTKoa4rRgvU1J0tbCQ2AYqgGxG0ZBVUKtO73jJGOOVrxYb7Z8++wc3zUJXBvXNXFt
+g9B3uH+0x/HRHo6tLU5cx2bYc5mMQ0oSdnlNUqSo0mkS5vr780IBUtQgKxxL0Q8dxoMAz7WRAs4v
+pnzz3XNOTs5Amp28s5TGLWnGybjH/aMJh5NB46Vm4Hsug0HIaBBQCIOiyjTrWxqNf1t1K+Opa8jy
+gl2UsYsztnHJLlUoy0aaHrUyUYbCRjUScvYtqW3dCd6+L66LWVRlU0Co2r++/sDuZ+uusFVUkJc1
+UQpFWUMtKQuDuqyoa0Vd6WS0DZ2EQiEAAyypfddsy8RQEg1QlyRJRpyn2ndbXHfAC6lQmNqfsJYk
+OSzWCfNNQpLeLvSpZg1pdn1NmhVkmfYiRAocx6bXD3E9l1ookrzElIJSGShhIoWBEMb13LRedzdL
+MI0k+o+637rfV+QlVEXFZlew3qVstlFja6IYDwd8+vFjbMvi8YN7eI5DkqRcXM159vwVy3VELQyU
+5WrQ2zCpaklaVGRFqWUoETiNBZLn+SAUSVZhCoHRjlcqBKorHr2VRdKB6Xfs7bu4i7u4i7u4i79m
+tAxI1zYY9D32hiGBZyOE4OJyyrdPn3NyetFYyDSF57YRrQGD9kZawelof4CSRrMHdej3fIZ9nwKD
+rM7Ji1TLzKYp+Q17PcsysG0tkVpXOVVZU5Y5Rpl1DY9VaXVqRX+rzfo3CaodEPZDp1rfgCFqSLKC
+uqyoqoLNLubZi3N8zybwbFzHwrUVvmdxfDjh/r0Jgae9bl3HZhB67I/8rr57fjEnz3KuZit6oYvv
+WgSehWubeI7JeNjj+GjE4b6u65qmSeC7jAch++Meq23Oaqvtkury++qcogN7dB5REqc5RaEZ/KaS
+eK5DL/CxTAVVTllWlEVClSfXYImqsZTAcwwsUyGlzsfSNCeKEvK8agAj4wdAnR9z1V4X6H7PuMGI
+zIqabZmziXKSZvya2SnwXJv9cZ+H98ZsUpNtlpInGzqG9k25/Qakq0rNCrdNQc+zCH0Lz6opCs32
+LHKdn1iWSRj4eL6LUtpnuioyyiKhzJJGVthAYmObFrYpdQM1kOe6lh0nCWVZdUpS18pKfwle5WtA
+962GE/1V1bd/vq6rG/d9RlUL7Vus9H3xYwlnRVWR5hVJWnS1bdO0CHwP33UxlGjmTtuDqSJBSIO6
+KhCuwjYlrqUwlZ6XoiiJk6SR8UfbMwgFUvzl6rfNnFWNf3SSaT/zqq4bcqLLcNjHsmzKsiZOC0oF
+VSFRQudiOjevr5s7uOE/LtAN010z9b92DnZtKWDKGkNqiy4tR1ASpxlxU9tvWebas1o1Vm2azZyV
+gtU2ZbaIiJLilriGtlyQGEqDpLqBKycvKmqa51zgEwQhSpkkWUUlBJUyUPK1XL2qqKluNGK18ePn
+Si9/bfNblIKoqNhEBetdxnYXQW1jGIow8Pno8X2KPOPB/Xv0eyFZnjOdr3j28pTpfEVeis5mTkqr
+aTL/4fOqqpqsKEizgqK5FyzTIAwCemGAZSr9Lm6eJUUWI4Sikg3wTE1dlZRFSpUn5KlJktTEsU3e
+4AmWaRL4HmEQIqVBklXklaBUElOZSEyUMK+P1zW1VI06g9E09zf3Vdf8/q+8RP+dxb85kiOEwDTN
+zkO7BQdbtnUL5Gnfj3df3bqukUoyGAzo9XocHh7yi5//gjRLWa/XbLdbptMp5+fnvHz5kv/1v/5X
+J4GepilpmjKfz3n+/Dnj8bjzxG6B7xaQ3W63VFXVAbLvAuVameSiKCiKAqV+2P/6faIFvoUQHfA9
+m820z2AUcX5+3o1ttVqhlKLX6/Hw4UPu379Pv9//UZ+rlNJen01DwE2ger1eE0URZfUBwLe6Br5f
+n+fNZkNVVXiex3A4/KB51i8J8YN+6TdDSnlrbEKIZqOZstlsNKj/DuB7t9t14H9VVR0Q3DYJ3ATi
+hRSdJ/3e3h62bXfAd5qmnRw/XLP7Hz58yPHxMUdHRwyHQ1zXRUpJHMdst9vuXmm9xlsQv9frEQTB
+vzpwfHP+2qaIm9eyKIofdS3zPP/gJoYfE3mhz7X1m4dr4PttjQt3cRd3cRfvG0IopNLeYleLHbNl
+gjBs7h1OOD7cQxDiOg6TcR8lH9MLPKL4jzx/cQZlhCRDSQ18AxpAa6SYbvqEdZ5mDeu4qiVRUrDe
+avBSM0vVtSyjFE1iXVBXOsGO4owkLViutryocyQFlimxDEHgmQxCh/1xSPKzTwh8BzXs4dg2nmsz
+7HkcjAPirCZdVZRpqv2+q4pa1d9TUNEbfCn0l2tJBqHDZBg0bAzJ5dWMX/369/z2918glIUwbN2R
+3fpoN/HkwSF1VWn/J8/Bck1832HUDxkPeqwTySbJKUiRytaShdVtj++6qkizgl2csIlytknNLhNY
+ysKyAqTpYUhDF1EakFszcbV/dcusaD2465vd+lV9O1/sMO8bvnp1RVVXmvVd1ORAnAOVpKoUdW3d
+AFBvHuaGtKEJJuA4isA1UFI3HlRlRZGklNmOogTZSHd342iTqUqRFgXzVcxyHROntxWQhBAopZWW
+6hqyLCPJCopCJ8WO7dALQ1zXp0YneaUSmIXCkBZSmEhh6uJtVUGtmePUJVLSeF5qb3K6sX3IDaf/
+TyDJCkGZVWyinM02ZbNLCDwb23IYjwZ8/ulHHO3vMR6PcF2Hy+mci8sZ3704ZbHeUWFgWBbScJDK
+oqohyyuyvKCotCeh7dj0wgDf86mFHm+lBFWpdPEA3c3dSjVej7fqxlv/GcWDu7iLu7iLu7iLu/hx
+IYT2ClZK4Domo57P/ijUdndScnU141e//SO//f0Xei9gOE2jY+u/rfdkTx4eUpTXe1DbdvE9h2Ev
+YDwIWMU1WVxQ5ClplhLHOVmh65xt3chxbJSCuiooy6opuGfNfqlV+2ka6OofxpP/6vE6Hf2WZPQP
+/WLLkqtJ0oK4ylitc16e5khKLFNiGwLfM+gFNuO+x9//XOcitmlg2zaua2vG/ihks0vYTCOmyxWz
++YpvnyssU2EZAseS9EOXQejy0cMDoGTQ87FtC8s0CQOXvVHI4aRHUa5ZbWLKPKWq8neMoZGGrmry
+oiJOcrJce0krW+G6Nr3QxzZ1Y0OZXzM3W8agqBSmYeI7BpbRgkIVWZYRxUlTo5I3vKT/NkIzECuy
+oiYrSrZRTpRoMEkpiYGB51rs74U8vr/Hq8uY3VVMkRfXdkAtwAcN2FZSlSlVkeNIk9A1ONozkaKm
+yFPiOKUoW+DbIgy1jL1h3ABu84QiTxDKQCkDUUss08KxBKaiI9zFcUKapJRl3YDeRtcc/Jerob5+
+w75Ffv5WI3YDOFYFVZlTVQJUpT3eG7n3D7hAHctWq4oVpHlJXur7zrIMDXz7DfBdtvOXUhhJNycS
+C8t0cGzZNFVDXhTEcUqcZLqpus2Lb6pT/UXWmP5eFFUH4FaVxn+0wmgfy7bIK0jSksqoqU2pm5Ck
+hRDmNVO+bURH52FKcg0wt2zaf+1o8n5p1DimBsCpKkRVUWYZUbGjSMvOF1vKBvxU2kZNSEVeZqw2
+GbNVRBRntxn3QqAMiWEoBLqpP03zrs5tW1pVNQgChDJJi5pK6GYBQ1lIYTS5etW9f0Az/4UEJWud
+u/7YuWpzdWnod2Jes4lKNlHKehtjGgrTNOiFAR89fsggDOn1Agb9kKIomS9XPHtxynS+IS8Fhukh
+DVs3p1XFD687oRXXsrwiTUvKUjcEWKZFGPj0ewGWpYHv62dJ3NR8Giu7ugG+c/1+yNKCJK6JEps8
+zxvFC5MwDAjDAKlM0qwiqySVIagKhRImqnKuVQLrpk5QV0il9yBKaPCbtjnorl7wwfFvDnwDGMoA
+i45V2YKOLSAdRRGbzQbLsjom7uvRMptbZm6apriuy2g0otfrYVs2o9GIQV97Bvu+z+npKd99910H
+EJdl2X2mEBqYbB8GSimqSm86ttstJycn/PGPf6SqKvb29hgOhyipkOoaCI6iiKurK2azGUVR3PJk
+Lsv3B4ffFm3DgOM4jEYjjo6OWK/XzGazDoBuAcRWzr3X6/Ho0SMePHjwo/2SW8C9rmvCMEQpRVmW
+Hbh5dnbG119/jWVZXQNC3bSv7SINDK/X61uy3FmWcXh4SBiGGIbRsdZ3ux2np6d88cUXKKWYTCaM
+RqNunovimqF7dXXFdDolz3Msy8KyLA4ODjg8PMQ13k/i27btbi57vR5KKfI879jsFxcXPH/+nDDs
+NQ+vkCzLyPOc6XTKixcv+Oabb7rrbRhGJ2fe7/cxDfPW57We9DdlyG+CrmVZIqWWRL937x7Hx8eM
+RiMcx+l82q+urthsNl2TQF3Xzab/eu07jvNXAY5N06Tf73Pv3j16vR6maVKWJXmes9vtODs744sv
+vsB1Xfb2Jkwme29cy5a9Pp1OSZKkk60/2D/g4PD9bAV+bCRJwnK5ZLlckmVZl4Tato3jOJim+ed/
+yF3cxV38bxpCd80Kg6JSpIVgtkp4+mKG75/y5OEBjmNjGgaDfkBRljy6v8/55ZysqJGU7DZr0iyh
+rkukNLBsE99z6YcBo0GP1a4AWVFkEUoZ1IWJEgGeY9ALHBzb6CQbd1HMdhuRZSUtY3XY9+kP+xim
+gWWaxNGO9XpFtI1JIr0J39iKzdoiSRL2J2NW6x2e53SNcEpJLNPAMCSS11i8jWzd2/IjCdiWxDVM
+Qt/Ec01MQ5JkGdtdxuV0wcn5jJenU5QdYJg+hgXSlCjjWhrKDzMu5jGHyx0IidtIc++NBxwejCmv
+IjZRRFklVKbT+SzeTBRblkpVNVJjKM08lhbCcLuCp1RNZ3iTiLwhdVbXTbGi6AqXVZl1kn03pc/b
+rv6qKiiLkhKFKgvN6O88thS10HRu7fn3ds85qBE1SFljWwaeo+j7itA38CzJ6cWciyvBdpeQ5CVZ
+kVMXkrIBmQU1Stb4tkE/CBj2fTxHv//Komz8+3TBoSgFUVKw3GRsdilpds288H2fvfGA48M97h/t
+k1ZNUl2kVFWFLEsMBYYhcG2LwLfxXYsiL8iLjGHPxXNuMOdv303XY/7e+02DyRpQ1t7si3XM2eWC
+/fEAx7GxbYvhoIfr6H2TUoo4yZnOVrw6u2K9qTXj27BQpo1QFlkB613GapuRprq73jJNPN9nNOxx
+73CPh8f7JKVJWlQUjTS9kAaG1IU2x7YIfc1cyouCIs8Y9T1c5x3KPOIH/+Iu7uIu7uIu7uIuPjCE
+ENi2wncUvcDCcw1MQ722B53z6myB4QQYFigTOoyk0uxUP8y4mu+YLrfsCc3wdV2bvVGfw4MhxeWO
+dRSRpQm7Xcx6GxEnmbZ3MQ3CwGc06BN6NrYJSZZTFRF5IpFC7+sM4eKYet9kWaqRdm6jBY7ftT+4
+sX96n22EeNuvvmMPJt7nQK/9fdM4YBmC0LcIQh8papQoSeId6/Wa3WZHmtRs6pL1RrBeGWy3Lvv7
+I5arDb3A03Vky2Q07PH44SFCGbjeBs/bsosStruYKI3Y1dofere1Wa9sbEtxfDRmt0toPdulVB3w
+oqS4AZS9ex0JoSgqQZTkLDcpUZJTViWGaRN4HqNhn9EgZNx3NShOQhYvNbghBY7pszfweHA8ZjwM
+sUxFXhSs1jsuZyt2ca59eJXZ1Pf+FuxumvxDSmqhKGtFlFbMljtenk7phx6DfoDvejw8PiDLcizn
+ipoZ83VGVqUUSXntxSyVzg+UwPMVrm0zHnjcPxxy76DP+eWcy6sFi6UkjrVFkOPY9Hsh49GQyXjI
+3mhAbSgoEspsjalAWorQcTkY6iZt39V77iiOmc0XzJdr0rzSrNFOxct4LwDt/eep/YVru6IamuaG
+nKLU9VwpBLal8ByDpCip8oiyzFG2jWmCEuUtj/O3nlP95l8KIciLmu2uYL3NSLOCGp2X9Hoh49GA
+vWHIaOBRSUFVRhRJjWlaKMsicG0O93wOJ33CQFuKxnHKbLFivtyQ5iVSJ+gNY/4vw/pulbyqqiZK
+SxbrlG2UkxclUmilsZqa/cmYB8cHpFlJWtlkVUZVSHIERl1hGPq+9l2XwHewDE3Uyouc5bIkz6JG
+Be9fuaWolbGnwhC1bsRxFaHv0fNMpvMlF1eKxWpHklekeUxVSqpaNqWUGllXuJak77vsDUP8RqGk
+LCuKsiBJMrKsoqwESVbq3HWTEKfa+tcwDXzfZTDocbg/4uHxPpu4JikERZFqQLcsMaRASbAdbZ8X
++g5VVVIUOcOBj+9ab/ind0Yd77z0OpuvBc2LVKu0rTYpZ5dLlBS6IcPVqimmoXRjkmURrbcslhte
+nc1YrBKKCqTpaHux9jnyrmdjcx8WRcU2yljtUs2Yr2rMpglkPOxzsDfm6GDMNoGSjCJZQVVAVeC6
+Dq5j4VgGSvoY0kORkWcxs5lgu40oywrTMPBcl+Ggz9HBmIf3D1lsc7JSUpSZXg41GEqiDIlt6s8P
+PRtowPmiZpcKoqxVDvyba3n7m49/c+BbCIFsusBaZqXruvoBlOdkWcZ6vWaxWNALexiG8VYQb7Va
+8+233/L06dMOvBqPx/zkJz/h448/7gBswzCwbA2m7e/v0+v1OqDrpqe367pMJpMO6G09tFup8u++
++47/8T/+B9vtll/84hcdM9ySuiA8n8+5uLjgD3/4A1988QVVVTEajbBtm/Pz8zf8w39sKKUYjUY8
+evSI1WpFFEWABlBbILQois5n+cmTJzx8+PBHM75bJnHLdjcM49a8vHz5kt/+9rcIIfj444/xPK+T
+YlosFnzzzTd89913zOdz5vM5YRjy5MkTHj161M1zC9YDPHv2jH/6p38ijmN+9rOfdexpE7Nj6E+n
+U37/+9/zxRdfkGUZo9GIyWTCT3/6U/q9/nt7WzuOw97eHnEcd+eS5zlRFFHXNScnJ3z55Zd4nsfD
+hw/xPb9jW5+dnfH06VO+/PJLrq6uyLIMz/MYDAbcv3+f0WiEZV8XNFsp8oODAyaTCa7rIoSgruuu
+KaJVOfB9vwO+wzBECEGv1+Po6IirqyvyPL/1Oy3gvr+/T7/f/6tJdFuWxXg85vHjx4xGo07JoQXz
+W5WFPM/5+c9/ThgG3bXM85zlcslsNuMPf/gDf/rTn9jtdp0f/U9/+lPC3o9r1njfiKKI2WzGfD7v
+2PatDcNNaf+7uIu7uIsPDSkbTyOpdDJtwCau+ObFjLwSSKk42OvTC1xsy2LQ7/HkwQFZmnB2ueRq
+sWOxXBDtoi5ZcXHohQGTvSH3DieIqxXbuCRNNigpUEpiyh7DwGR/LyT0bZQUpGnGarVhtlgSpxkI
+he+5HE76HB/v4/s2oedwNZ3x4lXGeb4jSXKSNCMvIEtT6rpkvliz3uwY9H1cx+YNDzRx67++JzTT
+WUjwbYNBAIPQwrUUVV2z20UsliuuZgum8w3zdYLtuViegSktDOmihEOb3W9Tg8U653K+w7ZtBoNK
+M+n3Rtw7OmAdn3N+taIq0bJUZU71tgS3k6FTSFmjDJDK0l+G1fh4N35MNwDvpvm3YXk3TPpSe52X
+eUJZOFRFwc2u/7rpFq7KnKrQDJAKSWWm1KajpeJaj7a3zN31OcvmeA2TWFRYpiJwFUeTgCfHIw73
+fJ4+d3n+UgPgV/MN89WOvKgpCs08UEqgLJNhz+HR0YCHR0N6gd7LZXlOkqZEcUKSlaR5zTYuUeuE
+5SbtmOGGYRD4kv29IZ9+dEySpry6WHN2tSVKUmqhqISB5Zq4hsX+MODR8YTjwyHL9ZbVesfhJMT3
+/hyLFtHce5JaGuQlzFcRL88WGKbJcOAT+g6O42KaFoahUEqSZhmzxZaTszkpPggXZTZS58oiyTOW
+m6wZr76W3XgnQz55co84jnl1seH0ckMe76iEro5bjolrWkyGPo+O97h/b4/VestqvWVvFBK6N8d7
+Q37vDvS+i7u4i7u4i7v4VwkpwHcMxn2LUWjj2MZre9AV8+WOxSbDLsEWJoawUcK9Vq+pKzaJYr7O
+uZxtdA1xUOM6Nnt7A+4d7rPanXM+XZOmGoRdbDRLrygrAt9m0A/Ji5J+38W3BVGUU+RbqjLHMhXK
+VFiqh+coeqGLY5sI+WMUca7/Q7z5l+/+PfFDjYevHV/8wM823aZ1XWNbkr2hy9FBH8818G2T5XLJ
+i1cVJ0VEkmSkaU6eV2QpZHnKbL5mtd4SDXs4jo3jOkzGA8qPH9Dr9zg83HIxXfHi1SUvTy9Zr9LG
+rz2nKjPiOKHf95kvN2x2EaZl4Hka4L62URY/jC+37EUhKSvYRQWzVcwmysiLGkMpgtBHSMHBpM/R
+fo80y1jtMrZRjLRMlG3iOx6Hkx6fPTlmfzzAtkyW64TFesvZ5ZxtlFAL2QA8f/ka34+xGGoli2ka
+vJEmSQYX0w1fPT3l0fE+rmMTBC6PHhxpuXfLRQrBi7M500XMbLXuGLemaWI5Jr5tcjQZcXw44Phg
+xNHBiINJn39KYp4+e0VdFeyipAFubeRAcrA/5v7hhAfH+yx3JettTBlX1AYYlaLv7/HgMOT+gc65
+ATabiIvLGVezJWlWNHt+C2WYjZ+ufPugb+S5H1oj1ErFer3UtSAvKg1U5jl1pW3JbMsk8Cw2kZZr
+L0uQZoAjJaYsdIN5p6jwnh+KJM0KlnXBYpsRpSV1rZWr+lJyMBlydDDk+HDIaluyinYURYKBi2F6
+DPw9Hh4NeXS8xyD0AMEujrmcLpjOlqRpgTJskMa15PlfQpmgUQUoa8EuLpitEta7jCyvkFJhWxam
+YXD/3j4//8kTDMPg5GLD2XRLVZdQFcjawjQdfMvm/oHPw+M9Atdu8s4tsozZrmrqpin+XzO6R0td
+YiiJZwnGA4eP7o/46MGIk7NLvnthcHIumM42XM0j0qIiL7S1mVI6X+/5PR4cDfjowR6jvt+RR5Mk
+ZRclJKn2vq7iCrlJma9joqRomq0UruMwHvb56NEhm82aF2crTi83LDc73fgvFIZl4FgWo8Di4f0h
+Tx7sE8UZq/UG27EYhA7ytffK7XfLO+4NIRB14y+vTEpq1ruMl2cLbMugF3j0Aq8jyMpGur0oShar
+HScXc5Y7QV57GE3DSmtR8O6GFX1eaV5S7TLmq4Qo1iorjm0QBD7j8ZAHxxM+eXLM6eWG2TJhFy2g
+TBFViuUOmIQmeyOHMHDoeTYXV5e8fLXi4ipivdlRlAWO7eC4DqNhn48e3WO1WvP8dMHJ5YbFekdZ
+aWKE4VjYymYYWjy8N+Dx8R55UbLaxizWCefzjCjNqMoCaXyA2sNdAH8DwDe0MgyqA70dR3cPZVlG
+mqYd21YIged7b2Ve7naahf3VV19xenrK+fk5+/v7nd/yeDxmsjfBMA2K/NpLRzOUVPe9ZVH3+332
+9/c1Y2VvjyAI2Gw2ndT56ekpv/nNbzov8tYH2LZt1us1FxcXvHr1in/5l3/hN7/5DVJKHjx4wGg0
+YrlcdqzePzeklIzHYx49etTJuNd13TUOSCk12N8wsO/fv8+9e/d+NONby8iEVFXFeDzG931c173F
++P79738P0M1NXddUVcWrV6/43e9+x1dffcXV1RXz+byTXj8+PmZvb48wDPE8r5vns7Mzfvvb33bz
+5ThON8/b7ZaLi4vOz/w3v/kNZVly//59Hj9+zN7eHlmefdDYRqMRdV0zHo8JgqAbW+ub/sUXX2Ca
+ZtdYsFwuWa1WfP311zx9+pSXL192XtuO4zCZTHjy5AmTyeSWx3YLaEuhfejbxomqqjoQu2X1h2HI
+0dFRx4qXQtLv9zk6OuLs7IzlcnnL48UwjE7qfzAY/Kt7e7dhmiaDwYDj42Mmk0nnLZ6maXetfv/7
+33cy9K2vu23bxHHM+fk5l5eX/OpXv+LXv/41SZJwfHzMw4cPGY/HfPTRR/+q598qNEynU+I47sbU
+eqXbtv1Xmce7uIu7+PcXNS3wbSBVjTQlcQpnVxvysuZgPODJgzVKKgLfIQxcHtwbYxo1hiHZbGNW
+24g4iUmSDN+1MU2DMPQ5Otzjo8f3MUyby/mO9S7D9QwcXzHqWeyPb3a210Rxwmyx5vJqQRTnCGni
+eh6jYciDwyHjkc9k6HPaNxBVQl0krLcGW0NRVSVSaDmwuq4pqpKirCjLChC6Yz0vtH9Uk8joYghv
+9yNqsFspalzHYK9vMgwtHFsffxfFXE3nTGcrVpuEXVxSGpLasagql6p2UbjdwXaZyXxXMl3GDAea
+ReO6DvuTMffvbTi9XCPqkrKsqYq8kXh/PbnVDAoptc+XbDrWNcu7lRszr+X43oimE7cuEXWJpMQ2
+wUTiOwrbNhqQVc+HoSS2ZeK5Np4jCJyapAIhKqoiR5mymT75HonctWe7FBWmoXBsxbjv8vHDMZ8+
+GhHYFb5V4lo1liqRdUKS1SRpjRAS01R4rsnxfsjHjyY8vDemFzrN9UhYrjYsVjuitKLEIMlBRCWr
+bcZ6m7LZxtiWbmTdG/f56PE9qCss64yyKFltU80uF5Keb9ELXR4dhfzskwkfPTzk5HzG2YWiFzq4
+tqnnk5tz3SbUrdPY98+HaLrIhTLIC1isEl6d1wz7AUVRNRYteo9UFiV5oYtoi9WO2XKHtC2k08Mw
+tbSpkCZ5lVPG7XgTNttY+3Ja2ify40dH1FXZjLdgsRYNm14SBhb9wOXBYY/PP9rns4/ucXo+4/RC
+4XsOrnPbt/16vNfjfjv96i7u4i7u4i7u4i5+TEipPZX3+q7eg5rG9R50tmC6WLHaJuzSmsqS1KWN
+WbmoykVJi6qRJt3lBvNtztV8x3DQo6hqXMdhfzxkdTTh5HKFoCLPMnZxwnoTs90lxElGP3Rxm+L4
+ZNTnYNKjqiEpFEUFrqP3ZuO+zbDnEvoujm3dYnzX9TXTTrzVA/RaWrn1Lf5hydRrZqoQrWHRu3+n
+k4cWQisVfY/acbunbXnqplL0A5PjScBo4DEZ+kznDhINDKw3Edud0rWkukRKBbX2GM4LbbdTVzWe
+6zAZD3Fdh71Rn3v7AxwT6jLlUlVstoLdDpRhoJTe81eVJp+UZUlV6npcXpTa+7WqAcktD+q3zFO7
+Ty8rQZyWrDYZm23GdpeQDwNMw6DfDzmcDHl0f09bFE63CGI8R+F5BocjlweHAx42YLGQgihOmc43
+nF0s2EQ5FUYH8Lw2oc23H1ZFevNaiM6q6YNldLXE0g0JYJM0r7mcbfnGLDU5ZhSyNwzZH4/YGw3J
+8pKy0DZeSlaUedysE4FtC8LAoB9afHTc47OPDnhwtMdkPGA07PHHL54RRdpTerWJ2MUZliHxPY/J
+eMiDB4d8Mn3I+eWK86s1RSUJQ4NB3+Bw5HG832N/HOLYBnlesN5sObuYcjVbkWQlhumiTG1vJFs7
+g7dO3+25ug1+vz6H1/eRXvNtfqzXX5YXbHcJYeBTNAoQvdBjf29IWq6I0oKsgF7PpNez6Xkmpvr+
+z7iNQwq6/wlJXtaUhWZ8b3YZuyjFshS+5zEeDXhwtMfHj444n25Q0x1JURN4iiBQHI418/5wMsR1
+tLrnehNzMV1xNV8TZxXSdJt7oVFE+761+K4GeXHz9EU3V1Wt2curbc5qm7LeJkRxhmUZuK7FvcMJ
+URTpe9s4Jc1ySgxqYWKZJv3Qot/z+Oh4wE8/PSTwHU7OppxeVCzmJkrWVJX2Dn+/O+fPiKbhR0mw
+DMEgtHh4r88vf3KPcajwzBLPqnGMkrqKiZOCJK0oa4FpSAxTcbQX8NH9PZ482Gc08FFSso1iFqsN
+s8WaXVJQVoqqFIikYrXLWW0TNttI2y5YJoN+wKPjA4o8w7LOqSptTVciqCpB4Fn0AofDvZCfPJnw
+88/us1htOTk3qOoKz7Pe0oD1+vOkefO8/UXQyOOX1JSsNyknFyWDnsfxgcYNWjxD26GWREnKchMx
+XWxICgdpByjb7iThq+YdJMT3O3236gdZlWNvU9a7hG2cYpoulqUV4R4cH/L5p4+w7QuknKNWEYYt
+sGzBXl9xf9/j/lGfYc9j2Peo8g3fPU3YbHYsVmvWm0jXREyTfj/k4f1DPc/2GVV9hqZKGNTCIPBM
+eqHD/l7IZ4/3+Nmnx2x3CacXC6SsWe9yqAvAuFZR/Isvyn+/8TcBfLfhui7j8Zi9vT0Wi0UnfXxx
+ccG3337bsZtbYPxtUVUVm82G8/NzptMps9mMP/7xjx3jW0pJWZZEUdSB5C1LWksw73Ws6P3JPqZl
+8ujRI376059iGEYnXb5er3nx4gVJknB6esr//J//E8MwMAyjA/pWqxVnZ2ecn58ThiGTyeQvPmdK
+qQ4UPD8/58svv7z1761/9mg0Ym9vj8FggOd5P5oF3DJgLcviwYMHfPbZZwAdU3Y2m/GnP/2J2WzG
+F198wWQy6YDv9XrN5eUls9msY4G359jv93n06BGff/45QgguLy+5vLxks9nw8uVLkiTpAG7TNDEM
+gyzLOpnvdp49z+vY4j9mLl3Xpd/vc//+fT755BPKsmQ2mzGdTrm8vOTXv/41p6en/PM//zOj0Yg4
+jkmShPPzc7777rvus1up8cePH/P3f//3HB8fv8E8NwwDx3U6YLXf72v/nhvrsZ2bwWBAv9fHtvUG
+uNfrcXx8zOnpKScnJ28c9ybw/ddifLd+7b2wx4MHD/j8888pioKrqyviOGaz2XByckKaplxdXfGb
+3/ymszbI85ztdstms+kaV0zTZDwe/1XOHWC5XPLy5UtevXrFZrPprsFkMuHg4IAgCP5q53IXd3EX
+/76iKygIiZQGUmkJ5lIYxLni5eWaX/3xOR8/jPno4QH7ox79nn7mrLcJs8UWKaEsck7Op5RVRT8M
+sG2Ljx4/AODj6ZLZYscuznFcH8fzuH804aOHB/RDH8OQJEnK1WzJ81eXfPfyktU2QRgOynSR0kQp
+SRh4HO4P6Icuw57Hpx8ds4tS4iRt5NfAdWw+enjAg3sHBL7bgaLz5Y7z6YblOiEvrYYl2/ikvaXr
+V0uMVwgBvmsyGfmMeh6ubeh9w2bH+cWU+VI3CBimi2F5GJaPaXsYloc0mz1hXVNhEiU183XGLikp
+S3BdzfjeRQlfPj3VgHNWdp5prWfVm9erLUrUOqF7X5+yRrJRyQpDga0MxuGYUbjPo3sDPn44YdAP
+cV0HJRVh4PHo4T0QgnvLlOkq4XKRc7HIWWxTDb4rs3ENrxEfkuE0yWbdnLeSivFoQA30+z0ePThi
+tY7Ii5q8rBvGt8SyDCajkMO9PuNhgO865EXB+eWMr797xbfPztnFJYbdQ5outXTYJjUvzxb84asX
+HE6GHB2M8FyHewdjLMNgMBzx5PEDoiSnqqGuBZ5r4jkWo2HI4WTAsOezXG+153WjWvT6ddH3kEKg
+ELwuMf9m4t0qLeRVzXqbca5KHh5rBs71JavZRhHr9ZbpbMU2zsgrhYmJUpaWPVQmQplQm5SYbKKS
+l6dzfvflC472Bxztj/A8l4P9MYZSDAdDHj96wC7Obo3XtU1GAz3evVFPswwE156d33P+7Xhp1uad
+As1d3MVd3MVd3MWfH1KA7xpMhg7DnoNra4vDzTbi4mLGcrklLyWm7WNYfrcPlaaNUiay8eKtMNjF
+ld6DxgVVWeG6NpO9Mbs4pf/0HEMK0qoizwqiKGe23HJyPsNQgl6gwezPPn5IXdXMllvirCLLwfdt
+AtfhcH/A4/sTer2g8QNvbWpEB8xe74vEa+Ns9g/SQKCgks0+6npvcTtEJ98thGb/XfuLvp3JJ27s
+W1oteCFu+sCKGz/X/qyEsvn3ZhsUeA4HkwHjQcAg9Pjo0RFRlBIlKVVZIkSNZUo+enikWcS9ECkF
+213EdL7iar6iriH0XXr3AyzL5HB/zHq9Y5ckJEmOUlrpZ3884KNHh4xH2powy3JWmx1XszUXV2t2
+UQ7SQhmOBttvDfga8BZSIWvtxVpikBaSq2XEty8ugYqDvT6Dvs/x0YSy/Jzjo3u6gTJKsS0L2zaY
+jAY8ebCP5znUVU0UxRr0vlrx8nzFKqqp0BY88m0NuO2esW58it8As8Wtb3Cd77TXQnSgEe8NqmjF
+K71WlGGSVwXTZUqRJ3ieR7/nATWB7xF4Nvt7Q6qqZDQa8PFHEct1TLvnNUyFY5m4jslk1GMy7jPs
++ziOra1Hi5IsLymSnJOLFV9+d85kGDIZBfR6AZ99/BjHtlmu9XGrWuB6Pp7n8/j+PgeTIZapKApt
+aXl+ueD5yZSzyxVxJjGdAMN0m71/w1p+relUyJtzJZs863pNvzbJ14oAyEZNTOcyUhmUlWAbpZxP
+1/iBx35R4HsuTx4eYxqKj9YJi1VMXoLragvGR/f26AV6TjuBKCGQzb16nSPJ689vzq2qJXUt2SYl
+Z1crvvj2jMk4ZH8cEvguH3/0CNM0WW4SlpuEotTKFbbj8Oh4j6P9IbZlUBQlq41WVHh1ttCqXqnE
+MN0um9HN4+q1ZXTzudKstbeoKnTPB6H0XNVaSr9GkVeK+Srh6csppiE4mvQ5nPTphSEPH9zDdT0O
+9vf5yacfUda60cBQBp5r4zoWB5M+h3sDqqpkNltee1i3udgtRTXRfe+k24X4sHz8++6bN2cGhKDf
+D3n04JDA97l/b5/PVzuyvCQvaqpaaGU/Q7A3DDkY99gb9eiFAQiYLtZ8/e1L/vTtK+brBGkHWh1C
+OSS55Oxqw++/fMH9wz0OD4Y4tsn+ZIhSgn5/wIP791htYqoaqpruXuyHHkf7Aw72RuSFZqqnaaF9
+yd94Hujri9RrXrMmpG5Wf9u0CX1PVXXNJs45n2Yc7Sek+W1yQpykbDZbLi/nbLYJWSEpa9Uo8dmN
+NcGN91lXu7mxuMT12qrqmrwU7JKKi9mOr55fcX+/z2QYYlsW948PEUJwfHyfzxdbdnGGMiwMw2bQ
+8xmPQnqBo3P4qqSqSvK8YBMlnJ7P+MOXz3n84KCpEdjs742QUhD2Bjy4f8xiHTW2bELPs2vTC1wO
+JwMOJ30uWGKoJXWpj01VUsu2PvIOq4O7eCP+poBvx3EYj8ccHh6S53nn131xccHTp08ZjUZ8/PHH
+7zzGTYA1jmOePXvWgWstANjKSadpShzHDePDxvM89vf3+fjjj3ny5Am+7wN04GXrZX15ecl8Pmez
+2XBxcdF5UEt5XYhq/cKLouj8gn8sIPuuaJsBPvnkE168eNGdcxu2bXeg+3g87vzNf2zBrAWHwzDk
+4cOH/PSnPyXLMrIs4+rqiqurK9brNc+fP8c0TZRSt+a8KIrOH3wwGACaad0C33/3d3/XSaefn5+z
+WCzYbrdcXl7y5ZdfdhIXN+e59ZHO85zJZNLJVH9oGIbRbIBVN7Y0TcnzvAPil8slX331Vdfk0DK0
+2+ucpilBEHRr+cmTJ/zyl/8B3/feCnwrpfB9n16vRxiGbLdbsizr5sX3ffr9fnft2m6qfr/P8fEx
+JycnfPHFF28ct5VC/2syvtv7KOyFPHr0iF/84hekaUqWZZyennZS/FdXV3z99dffey3buWwbC/5a
+0QLfZ2dn7HY7QAPf+/v72vc97P3VzuUu7uIu/v2FaDb1QkmkqinRcs9xbnByuSHPYqqqYtjXoFgv
+DPA9l+0u4Wq6oMgyijzn9GKGEBLLNNkb9/j4ySPu3zvSwN1mR5zkOI6Na9u4roPvOViWQZIkxEnK
+bLHmxekFz15eUAoXoRyd4CsLaSh6gcu9/RGObfDZk6Mm0crJMi1jrZTCUEr7GjkWVVmSpBnb7Y7Z
+YsP51ZrlrgbTRloWQpq6qHWr8HUdda0B18A12B/5jAcOtmVQVhXrzZbzyymL1YaiFBh2A3jbPsoK
+UJbuyqduIHQh2MQ1803OLi6pKi11frC/R1nV9HshSkqoNOBdl0XjlXTjOgEts0Mn5fUHJLhNElKX
+KAmuKeh7Bj95vMfPPt7jaBIy7Pv0AqfZI0nCMODJw3uMBn3Wu4T1NuGL72ZkX1wwXSwQytA+5LXx
+ASSMt1SrhMAwFHujPoN+wOMHev9SVhVVdbtxWEqBYUhMw0ApgRSSLC84u5zzhy++4+nLGdu4wnJ6
+CMOmljbbuOLF2RLHFlQ1jAYhvVA3Su5Pxnyaa3/woqioap20KWVgKIlhKCxTUVU155ezdwDB14wS
+Ud8s2H6/jF57HYsyZ7XLqIqa1TajKK+T6bqRNL2azpnOl2zjnKKSGEIn0vre0JKHZWlQYrKNCy3F
+prRk3LAfMuh53DuYsL834pOP3jJeqTAM1c2tEEKPVzVM/deA/psWCTfH+wHipHdxF3dxF3dxF3fx
+jhBSELgm+0OXUd/GaYDv9WbL+dWskSMVHeCt96DXFij6/V1QItjGNbN1xq6Rk/Uch/3JqNmDfouh
+JHWVk+UluyRnvtxxcj7FtU1MQzEZ9/nJx495cHxAFCVEcUqal4S+i++7uLaFbZtYhtGoEt0AYm41
+bb59hyBbVm59Y//U+fC+jQncALpSUrcAKTea78Sbe02d7yiQEuRNtSLx2s/JG1+tio/W8Ql8h8O9
+IWFg88mTQ4qiJMv0vNV11UjeyiYXsZtaa8YuipnOV7w6vcL3XPZGfR7d3+f4YKxrTHlBXhTkeYGU
+CkNp5U7XsbAtgyRNG8XRLZezFRfTFQUWtbBRpo2U2uaobSjVUy+RN5oUW5/rrFTMFjuevrjAUDW2
+ZTAahhzf22eyNyQvNEhSllWjPmpgmgrb0mthu43Y7RJmiw1nl2tena+olEstNSj7JhNZdtdXVO1+
+8cbci9dBbzrAu1W54pZM8IdAe6LBmgwENVlZMV1FzBcJvcBjb+DiWgolJb3AZW9vwGAQ8kmhlcOK
+orrFWFdSfzeUgWnq85NCUNYVRVmT5hVRnHF2ueKrp5dUD2t6vkMvCPj8s4958vgBeV5QFCU1Queu
+hoFlmjrHLAvW2x2r9ZaL6YJXpzMupxuwehh2D2Xaurmg81K/OdKbIPON++dGc8GbrHvRgXHX+aVC
+SoOyFmyjnIvZhsnegDwvGYx7fPT4PvePDygKDfbXNV3t1FACKcRrtvOik4unfu3cuG4yqQpJVSl2
+ccX51ZYvn55SlgeEvs2w7/Ppxw959EDn/3r+QLUqsqaBZRlNY9CO7Tbicrri1fmCi+kWzABlhZ36
+WOvz/foEXj97boKT7UPqzeePXtPX91ZRKebrhKcvrzBkhWVoy7hhPyQIXI6PjijKgjxvcrBKy2Eo
+ZWi2dLOuFssNtqWoGwW4urrpn3y7biFuPrMQ2pv6LxA3WdHtfTTsBQS+y4NjfQ2K8kauXrdLSejn
+V2PVpaQ+r9l8zZdPX/LlNycs1hnKCkEY1MokzhVnV2v+8NXLBpNx6Ycek70ho2Gfxw+L7n6sKj13
++tprjMQydd6+2mwxlCCpqyZff+MGaRpDRDNX7Z+7H3hjDoQ0KOuKbVSQJQmLdUqS3VZJjqKY2XzJ
+5XTOZpeRF4JKmYguT1c3rpN44xpeL0B9L9RUFKVglxRczLZ88+wKavAci4NJjwfHRxzsa8nxrH1W
+N2vANHU9rKxK5vMls8VKN+bkWj3u5HzOH79+AULgex6DfsDe3pDhoMfjh2WjVFJqkmijRm0Y+piG
+YWAZkihOMJSgKpv1WZddfaSGuzrAB8TfFPDteR6Hh4fcv3+/A69bAPTp06c8ePCAJEmoquq626aJ
+lpl5fHzMxcUFV1dXLBaLDrhswefqBoOkle3u9Xrs7e1xfHzMT37yk47dadt6E3V8fMzf/d3fAbrg
+a9s2URQRRVEHnrdgpRCiA087Bmyvx7179zqZ8VevXnWA8J8bQojOR3symTAcDhkOh2RZRhzHne/y
+w4cPOy/pt3mkf8jntQDn8fExv/zlLzs5ddM02e12xHFMnuckSXJL0t2yLCzLwnEcRqMRx8fHPHjw
+oPPTvnfvHr/4xS8A/VK3LIvdbkcURWRZ1kmO35zn9rNt2+5Yzvfv3+9k5S3z/UHfdk1ZpsW9e/f4
++7//e72xaADaKIq6scVx3El2w7X3+XA4ZH9/n8PDQ37xi1/wySefMBwOOpD7bZ/XsrrH4zF1XZMk
+CUKIrmFhOBziui7KuG4iCEO9plo5ftPUUjOtx3cLjP81ge92bRiGwcHBAT/72c+awrZ+eLfXMm0S
+ivV6fWse2maC9r48PDzk+Pi480j/15Aab/3ksyxjNpt1TS1pmiKEIAgCjo6OOD4+pte/A77v4i7u
+4seFEBKpDM0eVTXSqDWQqSwqIdnGJXWVMrzYcHQ+px86BJ5DELiMBiEPjw9QSpEVNRdXa/IC0rxk
+vUvwXRvfswmDANt2qMpCv3OkoqwqdlHEdJZyOV1wOVvyp69PuFokZJWFMB2UEVBLhyitma1SruY7
+zq7WDHsOjmXg2CaObSLD6+c1Ndqbbr1lvtxwNV3x6mzGq4s1cS6pUChla3aEMhDCuGYP3JwXdPJm
+GALftZgMPQahh2OZVFXBLkqZLrasdzkFCmW5SMNtjmve8HFCyx1WNbukYrHJ2SUlRaXfQY6t56ff
+7zEc9imIqKV5oxh0DZ4KCVIpXewwTKQSzT+/zlp5e7T9t0Lomp9lKvo9l6P9PvvjHo5tYlnXewLT
+MAjDAMMwcdwU30u4XKbY5lR7jNUf2tl7LS+ZZhXLbcX5dMe3L2ZIKlzbwHUMHMvEskw8Q3XWP9A0
+KlYlWVoQJwnbRmZ/Nl/zx69PeHG+ZrEpKGoTw3E020mZpKXJdJWhXiyRyqFGsj8O9fp0LSxLFxZV
+09ENNWVZUVU1aZaziGI225izqxWXiy29wCPNCm5WQIRQKGXp4mNlIyvtcagLSN9zXZqu87IuSAuB
+qEs2cc5qkzDopdo3U0rW25izywVX8y1pXqNMD2k4Wk5StV51BkKZyKokLSqulilQavAfycFeSODZ
++K6tZfdeH29VUZU1aZ6zWm/ZRSlnl0suZ1s81yFJyxsgvl6X8v/H3n9+x5Fkd+L3NyLSlS94RwPa
+brLNTPf0WGkkraT9Y5/fG52zRtqzWmlnR6MxPTPt6UmAAOFR3qaNeF5EZlQVCNB0k02Acz/noMEm
+gar0FRE37g1hQ1guhHKRKDstB8dH1y0hhBBCXhpLM79sIVDI2ZipuqgWHDi2QCJD9Ach6s1+2ga1
+YDl5HRAT6dq/2eexApiyEasEPV+i3Y0w8CUiqQezPc9FuVxEuVJCpVpGpHwo7iGRHI22jwcbDSSS
+I4wlEqnguTaKhbxeFzmI0iCtDiQkMoHvS0QigmPrZWWyQDMXDriIwU2b5UjghgsIYcOyPSTSAZeO
+zpRLs+SeaqczgAtLL/diR1DMgRJOuu8ibYscPaZCt1nsHBRzIZkuGa2zZsd/LmvfOOCwwaUFCY7+
+MEGtPcRho4e9WgtxUoDn2rBtAce2wTkmxoHDMNLLQXX6OGx0cFjv4LDZRa3ZQ7UUIVcowsvl4TkW
+XEcgn/OQbTZPXyeOJcIoRKfbw/5hEwe1Ju483Eat5SNSDpiVh2V5Ostf6CU3+fh+WDa47YInDkTi
+QDJHT4hgNlr9BBu7XZ0VDK7Xc0/biZ7rIJ/zIDgzsbYojtHrDzEY+tg/bGHvsIUHGwc4bAWIlAPO
+HHChg7L6+hudMB08d9Pz6+k2cnauTFZtWj0o7StwzsFEeu1YbjqZwx5lTr5kaCVb1kvKBImyoKSF
+g2aAu4/rGPgxlltDNNoD5D0H+ZzOcs/n3HQyqD63MpGIEj05Yej7aLZDDHx9P3YHATZ3mwhihlBa
+OGyHePCkla5HzLAwXUQ+56CQc+C6LkRWsStNjB4OdRW1ZquL3YMGdvfrWN9qoOsrJMyDZeVhu0V9
+D6XHYSJrOj2GJsOU2eDMgjLZyxzjmcqmwgEbZXibZbMsB9xykCiOVi/C1kEP5XIblVJDT9zOOch7
+LuDp99VBtQRxHI2qpo8HibnQa5Pbaf9IOaPnwPjEE6YrMQQxcNj0wRDr4wdgcbaMQs5BPueiWHBG
+E2vS63PoB2i2Bmi2e+n12cT6Vh3dgUQCF4J7sJwcZJJAyWj0rBh/DoGZZxEXFriyTPb8xDWXPSNs
+D1xyCDhAem8xbqM3lNg5HILxFsAtJFKhWNDnPuc68BwHpcIo8VH3b3VAdzAM0GoH2D9sYr/WRq3R
+R9+PIJkFYXn6+h/PTs4yz4UNZrb3WywLMHq0mhMYRArdfoz9xhDr203kXI5i3tV9dVeXyS66Tnp/
+6/fVcS2FMIoQBBEGfoB2p492d4jb95/g8XYbh+0QfixguyV933MLktlodhOsb3fAxSEUBNqdAQp5
+D8WCC8e2UcjZsIQwfVcp9XHTywL04Qchdg9b2K93EYQRhkEMKc1egUGM+q42QyIdwKz3zsxtdPTD
+mEFXIogShjgCusMYnbScvevooPtgGOCg3sbuYRs9PwasHLjw9CR1bqXXNjeVL0zFgac+C3n6OanA
+lIVYctQ7IdZ3ulAQkBLoDQMUPDt9TjnpZ8eoMkkUJ2kF4j72D1vY2jtErdlHGDNI5qLVi/F4pwvL
+qYMLB/2hXqqwWHDg2DbyeRv2Cce53++j5ofY2W9iv95Fo+NjGCbps0eMTYKn0PeLOlWB7yzItLq6
+ip2dHQgh4Ps+Dg8P4boubty4YdbsFmJykKtYLOLcuXOQUsL3fURRhO3tbTSbTXQ6HRNsywb2hBAo
+l8uoVqu4cOEC3n33Xdy4cQPXr1/HzMwMXNc1GeLLy8so5EflqBcWFrC5uYnt7W20Wi2THSrTB6md
+NkKzctdZKfIbN27g3LlzePTo0SstP+15HizLwtTUFGZmZjA1NYVer4c4juG6Lubm5nDlypWn1pn+
+LoQQpnx3uVxGuVzG1NQUtra2sLOzg06ng+FwaM4V59xkilerVVy6dAnXr1/HO++8g5mZGQghsLS4
+ZH5m/DhvbW0de5yziQVZIH16ehqXLl0y53FxcRGO+/L7ywXHysqKmbRQKBRQLBaxvb2N3d1dcz0l
+SWKy2guFAqampjA7O4sbN27g5s2buH79Oi5fvmx+5qRBWdd1Ua1WsbCwAN/30Wq1IIQwa7LPzs4+
+dd5KpSKA0brftm2nDffYBL6Xl5cxVZ363kqdZxhjWFhYMJMRKpUK5ufnzblsNBro9/tmIkp2z3ie
+Z9ZZz8rE37x5Ezdu3MDy8vJTGfOvQlZivdfroVarmYoFUaTLXxWLRRN8r1QqVFqUEPKtZAM8elBB
+ggsd+NZBNYEgCRH1A+zVfaw/qcO1BM4vTcPzHFQqRVxeXUGxVMT9tV082TtAozNEvT3AzGEHy/MV
+LM9PIZ9z9Kxf24KUClLpbJVsPe+HG3tY39zD3mEbjW4C5pQg7CKEW0LCPbQHCruHA7h2C5xJzE0X
+MFXKoVz04LkOPE+vm6SUbpQ3Wh00mh1sbtfwaHMPG1s17DdGAXVu6zLkXNhjM2+PzPBlOqvVsQRK
+RRezUwVMlT24joDvRxj4IRrtAXqDCFLZsF1HD8CZoPf4oIJCnCj0/QR2Dxj4sSlnnbUXqpUy5ufn
+EKODfpCW4co6SWOBRM4t3WGzXHBLZ+jrQaCTs2ImqfR1ACEYPNdGqZhHseBBCJ2lkg3cCSHgQJls
+CyE4cq4DyxJjy8KkM3tfYHpv1plWYOgHeuBISYkwDNBoNDE7lcP8dAGVUg7lUgHFgpfO4NZtBT2w
+oss8ttq6BOfGk31sbtewV+9jv+7ryQ3Mg+N5ZmAohkK9m2Dg9xHEe2i2u1iZL+sy4LNllEoFFAs5
+OI4Fnh7nIIwwHPpodfqoNbo4bHTwaHMfT3ZbmJ8F+n6E8ZnhTAhwy4Vl55BID3GSDeplWQ382COi
+Bwk4YskRgKM3SFBv91EtuWlpUWsy8B1zWG4xnWjhTAxwc24DlkKkIjS6ep3OMAZanR6W58pYnq9i
+ab6CUjGPUjEHx7FH+xtEGPoB2t0Bao0Oao0OHm3sY2u3helqCYOj+8s4hO3o/VUuhHQAYaWlQ5+3
+hiMhhBBCTqIzS/V6qcWcjemyh3LBhWtzDIfAwI/QaA/RG8RIlJVmgbpgIiunOnodBSBJGAZSotWP
+MQhixLEy7TzPc3UbdG4OCXoYRBZiZaPWCpCs1zH0EwRphaW56TLmpsuwLQHb0m3Pfn+AXl9XwrME
+h+PYqJSL6RiTbptwy4GwJISQut1iki6y9VU5hO3CcnOIYx2kZdZoAuFTGY5gOpDm5GDZCRg8JHws
+8M3EU2u7ciEgbBe2m0cCF5zpvg/nApyzNJ87DTxYNiwnB8EsWEoglhztXoTdgy5cxwJnEq2ZEqYq
+6aRYz4Xn6mpJSinEcYJmq4tGq4etvTrWNg/wZLeJIFIIY4WpagxuuUgShmoph6mKh0LOgZdmzUul
+Sxr3BwM0Wh0c1tt4uL6NRxu72NprotYOwNMlfbiVg+0W0qxvZkr2Zv07y85BMBecOQBzwS0PzHLR
+HUpE+334YYxBEKHT6WJproqlhSoqJT25wXOdtOphgk5vgMNGG4f1FtY2a1jfqmGvPkCjE4E7pfT6
+y9afFun1l12HHNxyYDk5xIkLkThAGiQclTM/si415xDpBATLdtM+ljMK+H6L9b514MsCbA+ScdQ7
+MYK1BvbrPSwftLA8V8TCbBnzM2VMVXRmayHvgTMGwTmiOMZg6KPX91Fr6r7mQb2Dg0YfB/Uedg4H
+8GNdTr7eSRA+0RPCh36IcwtFzM+UsDhTRM7TAVDOkVZgSlCrt3BQb+HJ9gEePd7D2uYuai0fw9iC
+5Xmw3DIsr2iC2FxYujM3FjhjnKXXrodEuUhgA8wyE6SzSSFM6Cz17NwIy4awnbH+pQ7ixkqg1Y3h
++xFyuRY8RyCKAszPVDA3W4aVjqVnkyJ6fR85z0U+506M83Jh6eUX7ByE1BMxsmfVxFrLZgmoBLV2
+hG5/iDCSGAx91Od11bml+TLyngsvncCbJBJRHKPWaKNWb2Frr4a1zUOsbR6g0Q4xiASEW9bVMOw8
+GI8gE55eS2KyjzY+JpIIcDU2kX0iwzq9nm0PlhIQzIKCayYMDCOG/WYIP+rAD2I0Gm0szpawOFfG
+7JS+rsrFnMmST6TEcBhg6PuoNTqoNzrY3m9gffMAW/ttdHoJJPT9Y9nORH/fTHCxXL29Zv3ybxl8
+ZACUnkThRzEanRhRHOlKBJ025qYKmJsqYLqaQ6mYR7mUh+tYUMqC4ByxTCATvSRcq93FQa2F9SeH
+2Ng6wF6th/1GH90hQ8IcWG7eTGSRDGgPEvj+EGFyiE5/iJ39Gpbnp7C8UEW5mEeplEfO1et2c8Z1
+QqUfoNcfotbsot7oYH2rhie7LSgwdPvRZGV4ziCEA8vxIBIGIV2A22YCDp7VV2cWYsWhEpEmMgzR
+bPVQKeVgWxb6wxD7hx3sHbYx9CUsO6+D3+kkdVPlgIt0acH0c5BlpfRZmqyXLhdhKXDmIEnvwTDq
+ww8S9Ac+6s02FmZLWJotoVjQ95tr2yZDu9vro9Xq4KDewvrmAR4/2cPuYQehtMCsAnoBx9aBjwR1
+9IcR9g/bWJovY2mugnIpj3IxB3huepwZwijB0B/q49zooN5o4/F2A5s7DRw0ehj4FsBdsPFxNRoC
+eGGnKvCdz+extLSEdruNe/fuwXVds1Y25xz7+/uo1+smA3Y8AzQrSWzbNnzfh1IK1WoVu7u7ODw8
+RL/fR7/fN9nitm1jbm4O8/PzuHHjBn70ox/hhz/8oQm62rZtXnt2dhazs7MolooTZcNzuRz29/fR
+6XTQ7XZNEM9xHOTzeZRKJSwtLeHcuXO4dOkS3n33XczPz+PcuXOYn5+HlBJRFMFxHExNTcHzPN14
+5S9+BTPGTCb17Owszp07h4sXL6LRaMDzPCwuLuLSpUu4du2aCUY+7/WyNcG73a7JfK1Wq8jlcrBt
+22QGzc3NYW5uDuVy2WQt3717F57n4fDwEN1uF/1+3wR9S6USZmZmMDc3h3feeQc3b97EpUuXMD09
+A845pmemMT0zjVKphFKphPn5edy+fRv5fN4EnDudzkSwNJ/Po1gsYnl5GSsrK+Y4X7lyBaVS6VsF
++hljo3NeLMGyLOTzeTx48ACu66JWq5nM9ixLuVqtmqz+jz76CJ988gkuXLhgjtmzeJ6H+fl5XLp0
+CVEUIQgCWJaFCxcu4Nq1a5ifn4frehPbV8gX4LoulpZ08HthYQFxHCNJEpNxvrS4hHKlfOL7u66L
+SqWC6elpxHGMKIowPa2Pv2VbTwXrs/smK78+PT2NpaUlzMzMoFqtmioJAEzlgUq5gmKxiLm5OXMu
+s7Ln2blMksQc40KhgOXlZSwvL+PSpUt45513cOXyFZQrZbiuC8dxUC6XzTbHcWy22XEcM8niRYVh
+iEajYdaIb7Va6PV6cF0XxWIRU1NTWFxcxOLi4lPLCBBCyHHiRKE/TNDqhIijBEEQodXzMQwUEiWg
+wMEEwKEHGsAEwkhCxjHq7RAbOy1YHJBKwbJteK7uJOfyRQQxw0GjhyhWOGz5qDYHGPgREglUSznk
+cy4cx9ZLkEQxarUW9g5r2No5xL1HO3j4eAfDAEiYA25XINwCbK8IyWz0AwCtEJboIElCtLsDzFbz
+mKkWUMh7KBQ8cMahZIIgjLF/2MD+YQOPNvZxf10PEsVwkTAPwi7ojndaJu6krIEs+Ju1e2IFDIME
+fpCg2+uh1hzqtRIDpTtvjgthezrrNu1Ij70a4gRIYoXeIEazG6LWHABKt/sGgwCK2SgUK8j3gQh6
+IDOMFTr9EM3uEIli4AzoDiKECYOCzqYQlhqb9f/iHQ2loDOaowTDQM9cTv/lmJ+V8IMYQRgjjBUS
+OZnV8sLMzHyGIJLwkxhRFGI4HKDZbGNproBOt4TZ6SKq5QCVtDPtODaUApI4Tgc3Oqg12lh/so8H
+a9t4vHkIPxHwIwGIHGxPl/zMBniSJEbf99HrB4ijGN1uF622zmoOggjVso9KpQjPccAtPVigyzgO
+UGt2sZdmtmwftLHfGIBbOdRbPmqtgS5LZwm0ugHChIFZeTBpQ3AHsNJr4YR1vvXh0Ou7ScWBhKPd
+C7F72IVjCUxXQxRyDnYPO9g+6KDe9hEmArZbhOXkJjI+GOM6+xvpdRaE6MQR4qiNTqeLVquHft9H
+EMV6f8sF5FwXXHAIztDtD9HrDdFodbB70MJ+rYXtfb2/kjk4bPmoZ/srBFq9AEHEwawcuHLBEkd3
+eM3+vooV5gghhJC/PAx66VGeZtzGicIwjDAMFLrdHmqtIZqdEINApQERF9z20olw41mMOlM6kUAi
+JXpDoNkJUWv2waDAGDAYhlDMQqFQQn7IkQwZkgDo+QkGYQ+J1K+hpMRgqCdu5j0HnOlMz1qjg3qz
+BSkVbFtX7ZkahJieStDo+BgEEpEUkLDAhItECfSHCertIWzOYAmBdj9CmAhwkYNgaRtKZO10gSDS
+r+XYOqDa7w8wDCQgXAg7AZgHMFeXlWUCUSLR7Uc4aA6QrYvb6UeIlQ1hF8CYDQmd+TwIFeqtIRwn
+guvYaHVDBDEHhAcuLXBLIIGNQaBQawWwrA6kjNHpDTE3VcTsdBHFvIdCIQeRTcKNE5Ohvf7kEA8e
+H2Bzp5FW6/EwjC1w0UaUALPVPGZ7OZRLORRyHvI5B0olkFKh1e5j/7COvYM67jzcxv1H22h1A70f
+TgXc9mA5HpTIqmMN4dgRXEeg2QsQxAyKu2DCBYMDwd10fWgHwzBAbxDDDxPEUYxBv4/eQJdsn54K
+USx4yOc8vWxjnKDZ6mB3v4Gd/QYebtawtllDZygBkYdwSumkAxtKCQz80fkVQqDVDXUbWeT1hIPs
+/KZt2EQCfiDRHcRodn3kGxZa6fUdJQKKuxBOXmevC71M1cu2Mk2wkNvQcXmOrj9Eq9NHo91HpztA
+s9VBqzNAfxCgOwhQKeZRKhbScs1MZ/H3B+j0Btg/aGLvsIXdgxa2D7rYq3WRwEUMB+Auuj5DPwoA
+dBAGAfoDH/2h7n8X8g4KaZZmHEUIwhA7ezXs7NfweHMP99d3sbaxB3APyspDeAXYXgmWU0DWT5OK
+YzCUqLUGcLK2eceHH0FPQFAOeHqNm/6QBIII6A9jNDs+9us9tLoBesMEYcQgmQVue2nw24VUAv0g
+RG8QorjfhWsDcRxjGMSIEgXb0mXwozhCq91Hu9vXAcpiQWfL27q6ZncQI4Gtt4s7eiLGWOB5bKaO
+LrGeKHTCCEkUmOTBXl+PK8RJjGI+h0LehRACcaSXCdjdr2Fnv47NrUM82DjA2pNDgHuAVYDl5sHt
+dAkyE5izMAwl6m0fwyCB61podIYYBgkUs3VpfW4B4BiGEo2ODz+I4dq6lLkfARAemBBgyoJgo6oE
+um+dYBj48H09ubvZqaI/DNAfBqiUCpiqBBDcAhccSZyg2++j1x9i/7CJ3f0G9g5a2Dpoo94O4IdK
+v5eVgx8C9fYAwzCGbQk02vpZqLfZ0muoP2epred++qTZz1EsESQx/DBGGAZoNVtYnC2iNVfCfK+A
+aqWI6UEA19HZ30JwxLFeIrTe6qDe7GB7t4Z7j3bwYH0Hg5AhiAViuLBdb9RXZxxKSQzDIXphjDDu
+odfX92OnF8API0xXS6j2fRTyHgTXJdQHwwDd/hDtdg+7h00c1FrY3u9gr9aDZduotYeodYYIYglL
+CDTaQwwjANxLq+Y5ECytknLieBCgFAcgIZVAoiz0BzH2a31sFpuYHkYYhjH2ah1sH+p+8yAEuJ3X
+feQsISIrY854WnWDww/0daXA4TkRWp0hBoGEhA1wBaZsSGmh5yv0/BBRlKST1Pvo9gOEYYRqOY9y
+IacnTCUSUibpZKkW9g+bWN/cx8Z2Ha2u/vzjtgM/thF2EySqj+EwRKvTR6c3hO+HmJoqYaqc1xN+
+0iU3BsMA3d4A7Y4+zvuHDewc9LBb66PZiZFwW49/jY0D0CjAizt1ge/FxUWEYYiVlRVMT0+bdX/7
+/T6ePHmCL7/8EnEc4+LFi1haWjK/K4QwJb8vX76MfD6PK1euoNVqTWR8Z4HvLOO7UqlgaWkJ58+f
+R6VcgZfzTixDngXmbdtGpVLB6uoqOp0OBoOBKcGelZp2XVdnF1WrmJqawtzcXFpCvYSf/vSnyOfz
+aLVaJuiXBYGr1So8z3vRQzZhfn4eP/3pT1GtVk2gv1Kp4PLly7h06RLm5uaeG/h2HAcffPABwjBE
+rVYzpcrHs+GPZt4WCgWcP38ejuOYoHa73Ybv+ybLPivpXSwWTUnyxcVFzMzMoFicDCjmcjksLi7C
+tm2Uy2Wsrq6i1WphOBxiOBya45yVnR8/zrOzs1hYWEClXIHjOhD8u5WULxYLuHjxIlzXxfLyMt59
+910zISAMQ1PSPp/Po1qtYnp6GufPn8fsrD7WL1LSvlqp4saNG8jlcrh+/ToODw8hhDAB7dXV1aeO
+EeMMFiwsLy/jb//2b1GtVs2EgPn5efzgBz9ApVrR1QDE8bf5/Pw8/vqv/xrFYtHcZ7Ozs/jggw8w
+NzeHYrH41PYvLy/jo48+wtzcHN577z0cHByYa3tlZQXLy8sTP+/lPCwsLMCyLJRKeu3vZrNpysYf
+PZdZ9nu1Wh2dy7H9mJubw1//9V8jn8+bbZ6ZmcH777+P+fl5FIvFl8pw73S6uHv3Lj7//HM8fPgQ
+g8FgolLDhQsXMDMzg3w+/9wJDIQQAgDNToA7603Umj1wBBAqQL3Zxf5hG/VWhGFk6QEBNl4m0QZj
+wDAC9hoh/LCB7doQ3zw4gCX0gJwfxtjeb+GgGUGCoRvE6AyH6PTreLI/gOsI2Jzpme1xjDiOMBgG
+6PUGulR1RyLhJXBX6PJsIp0VbntglgXJGPyEo95NEMY+DpsBPLeDnKPXe3YsAUClWRa6DHl/4KPZ
+GaAz5FCiBM5dMO5B2Nn6c1n5xOOPlVKAVMAwiHF/o4kgCOHZCkom8IdDrG3U0RlwJNCzeW2ut5mP
+z2CfoAOcfqzwaKuFJImQcxiUjBH4Pja3D7DfjDCILMj0+O/Wffzx1g7ubzTg2BxMSezsN7B3MECn
+LxFJC8K2jmSun0yvZaXXlO77EjJJ8NW9PdQbPbgug0oSKJmkxzL9nXRAIlF64HS/3ketNRyVHGRi
+bLb+8+kOpB5wAFeIVaInD0gJPxrgsBki57XhOgKuLdIsC5hZzEmSYBiEGA4DtDpD1NsSIStAWTYs
+oQdV9PqWTlpObGwmvxAIlURnKCHrEXpBE5sHA7i2gOtYEOnMZgAI40h3MIch+sMI/WGITl8hSDzU
+uwpfPqij3lVgkGCQOKy3sLE3QKAcSKYHjJiVMxMhdOmvY84IS0vVcwtKAfuNIb68f4j1rSY8h8MW
+wPZeHXsHQ7T6DLFyYLlcZ9akA9wYy9oAt8CFBGwPjHOEkOj6EqoRoRe0sHU4hOvqdRqz/WUMCKMY
+YZTA90P00v3t9iX82EWjB3z9oI724IEeKEeCWqONx7s9hMpFwtIBd+GNZVtRh5cQQgj5NpQCEqkw
+8GM83GojThI4QiKJBhj2u1jfPER7wBDBBYQHi+uSqnqAnT81+VK3QQWCWOHRkybiOELeZVAqQRgE
+unJOM8Qg0Nmqwk4zQznHIOLYrocYhA083uuhmNuHLfQ6Pro0r4/BUCf3ZOvt5nIu8l4O3UGAg3oH
+9WaAnq8A7qDdl/j6QQ2tXgyoBAwJ9g7qeHLgI1AeJHfAuZsGiV1IxbG+3cH//eMmCh6HTGIE/hAP
+1hvo+RakyINxD5bQQWXFLTTaIT67s4fDRi9dgzTG9l4Nu/UAzC6Cc12au+sDtx7V0fPvQ3BAcOCw
+0cbGbg/D2EHCbHDb1gFdbiFUFpo9hVj6qLcj5NwOcp5em1f3RfRxSaTCYBigPwjQ7g7R7ANSFAHh
+AsLFMLKw34rhx31sHw6Rcxkci8EWXK+bKnUAww8C9Ps66HfYCOArD3BcWNzVwUPLBhcOekOGO+sN
+9IYROFMQTKHW7GBzu4thbEMyB0x4emJAWsYZSi/IK5lCewgk9Rhdv4EnB33kXKGz+gVHkiaD+GGM
+ft9Hd+Cj2Y4RIg/u8PR1PRNc7Qxj3HpUQ6fnA0jAVILDegOPdwcIlQvJXQjuglkeuKUnILf7ETb2
+e2j3fDzeqqOY46jVG6jXm6g3BxiEAo5XhuXkR8EV9rJjqQyMKQBpWxkMSkndLxESvQBQzQT9oIud
+mo98rgbHFnBtyyx/lUiJMIwRRGlfcxiiN4jQ8wWkKAHMgWBp+eS0nPEwFDjoSPhRH7V2iEdPWumE
+DwCQaYJQjG53gG5/iFZngM5QQLhV3Y+wdFa/lVZ6QlptqzdMcHvtEIPhAAwJGCQa7R42tjrwpe6L
+gLvmfDMu0OnH2NzrodMPsLHTRuXOFurNDprNjq5iNlSwnXzaV9YlrBVnUFyg6wObe0O0uhHWdjoo
+5XdNHyJOZFraOobrOvBcXSKeC933X9vYw2E7QQwXirv6XhVPLwll1lzO+jIA/BiodxXCeIh6+xCP
+ttqwLQ5bMHCmECf6+swyzltdH+0hB7PL6TWml4diQk/QFQAkAwaBxL31OgI/gOAMQgDdvo+t3SZ6
+PkcMAcVs9AOFB5tNRLGEYAqcSbQ7XTzebKMf2YjT5eGEyOn3yLLqlYBiCn4k0ewrJHtDNLsxHj5p
+w3E4PDstoZ8uNxVGEcJQX1e9QYD+IEKnz5HwAmBLWFwhkA7ub7Ygf30PlqWPbbcf4slOA/1AIGEW
+5Asuf/acOwVggOIWmFJQjGMYSci+Qih9NLox1ne68FwO19bB0exaSNIxdN1XD9Ht+6g3IwQyD5ku
+1+Ywz0ywAE/X2lYKsJXO/uYJ+oHEfkvCj9vYb/jwPBuurZ9L2XtFcXrdhQn6gxB9P0S3n6Af2hCJ
+hXuPOwjiR7AtDgZ9jaxtNPV5A0/7rbmxMaHjsuTT5wZLl15QNpq9CHfW6jhsdOHaAp7LcVjvYHe/
+g3pHwo91hQN93WVZ+Pp1ubAghY0wUVjbakHKR3BtAWEBvh/jyW4Lrb5EEOvxIM5H8YNAAu2+QpwE
+6A6a2DrQE+UdKx0rkRKJ1MHx4SBAbzBEu+ujPeAIlAdmc7jC0hPlhQPJOXohoNoKQdzDfjOE59bg
+2PrzLEvc1uuIR/CDaOy5l6AfWJBCZ3tz7o5NyKeM75fBlFIvsmDg90JK/aF0eFjD//f//f/w3/7b
+f8PGxgY6nQ7iOMYHH3yAH/3oR/j444/xox/9CO+99575XbNuQ5KY7NXsz9nax1KqdDF4PXBlpesa
+ZhnTjp2WdDghYzTbvuz1wzA0wcYkSSZ+NsuWzdY3ztbA5pybAO74+tf5XB65fO652/As2breWRA+
+C6pnAcVsG541UKaUMmsxR1Fsjle2fdla1ePbl2WuR1GEOI7NcUkSaX4/OyZ6bQoB27Zh27ZZhzRb
+v/q445ydy5c5zrZlpwOx3yJb6sg5D8PQ7NtoWyavJSG42Qbbtk3Q+0XeP4kTBGFg1qPP1nEafy3H
+diaOUXauwjDEYDAwZeCVUqbMfiFfeOYxGP3uACpdQ9S2beRyOb2mOBfgYnKQPwv4R2GEMNLHxbZt
+OLYD29El/scnV2TnMkkScxy/y7mMouilt/lZ1/rdu3fx3//7f8e//uu/Ynt7G3t7exBCYHV1FVev
+XsUvf/lL/MM//AOuXbv2na8lQsjrEwQBhsMh6q0ebq81cHe9jp16hIMO0B58v9tiCd3R5ogRDZoI
+hy39zJN67WvTwRa2KcukZKyDoTICUyEgQzAZQiURgPRzVAEJBBLFdadS2HotakhwyPQ19JeUOrgq
+lYSU2erQFqQSaYmwrISznWZ6ZCFkBaZiMBUBMoJKQigZjV5bybE1p3V4TjELEpYu82bl0iwHezTo
+g5NKUANQ+rOUIYHFYnBEUEmAJAoQRyGiKEQYRnrwxPL0+t6ODqwzbpt11EavJ802WiwCZzFUEkBG
+AeIo0G2UKNJZ91x3HGzbMkF9KL2fSaIQxQnALUDk9NpRtl6z3AwenPB5oGSiP59kCJWEQBKCqRBc
+RZBJCCVDJHFotne0riJPO24WFLeRKBuK2Wb2/LH7+0wq/ZyUgIzTayvWf1aROa9IIkglgWw98ey8
+MAaAQzExOr/ZOlqWDc5tMOGkCfAsfa80qC9DQOprCCo235WMx64fTc+Yt9IgvZWu0ycguIBjc1ic
+IUlCyCRCkp6/KJZ6zTcrB255aflR75ml6PU5SdecUxE4IiA9HzKJkEg9sKOYBSZyemKIlVYY4OMT
+D5S5bqWMoZJ0/2Ro9pWp7H6Z3F8zSMKF2Wd9fCf3Vyb6Wsmu1ziW+vq3X3x/XxulEPWeIO5tw0oa
+KAgfJcfHzMzMxNf09DQqlUq6ZFAROc8zk4stYb1wW40QQsjbLQgC+L6PZruHW2kbfrsW4qADtPqv
+972zdYUdS5c8T8IewkET4bCLKE4QxRLgjm53WnrCn14DNluTdvQ5NmoDRRAsglBx2uYLIOMIUZIg
+jiXAbNNeBtOVFBkkOBIw6HYZsrY3EigpIZWEGVYz5VrTbYDuX0gIgDsA18vlOHYa4I0DJHGIOArT
+8aZYL0Vk5dLS2Q4sy4YtFGzBoGTWDg8QRiHCINBri1reqP9gObAFgyUUBBK9j1GAKArhhwGiMAG3
+bPParqMDN0rGUEmkSycnCZIEOlPa0pP6OMsCWrE+FlK3V/X3BEolmKyrq4OziglIZutjK2wI4eiA
+IAM4U0Ay6tPoIH1kzpc+vrqvpCtzCT2hMj1HuqS7gOAKFksgWGLaaUmcjPYja5Nmk1aFA6X0ckOj
+9mE0ajPKON2fxLQTFbI2sQ4IKmangfS0LH3aFhVMB+kESyAjH0ns6/Mbhvr8Wu5kG9n2dECRKzAV
+QcUBkASIogBhOESSKChYUMyC5RZhuYW0nHo6+fOlpUs1KQWZnrvx/gBkBJb1Q1Siv2e/A6RrojNz
+LMD0pAhdMtlOqx9Zab9I94UZ4rT9rY+vSvsOKonS7P4EUikoxSAVh4KAQpp9befSdc71JIesP8kQ
+w0IEjhgyDvU5TxJEiUScAMLWWc5ZgJlzAYYYXOm+FhLdp88SdhIFKOZAMcecF8aF6TsyGabXSDi6
+9tX4mDpLnxliLJitAMh0zeEECnyiz2DZOvMbRyZv636RhFJx2j8cXZ9KRvqeye6TNNaSVdBSTB87
+MDt9loyyyxm39bGXMZiMIJDtUwKlYr2WMQQSJcCE/j0hBGwBWFzp4xwHiJMoHT+O9c9Zo0CusNx0
+WS/oiT0qBpPZ8yLtjyX6+pLj91h6nysmxu4zR/957DPB4vr+Qta3VUACC4kUYJaXVp/7LvcHkFUV
+0Ocge0bEo/tEjs6FPg9ZX12ZvjoYh2LptZyeE32s0vMh0us5TRVQUFBJOuak9LFiJ/TVswn6LB0P
+AOMAt03fVUE/F3UlBJ1koJ+JEaI4Rhgmejvssedi9tl5wmR+01dPIjBE4CpMnxP6K+urS5VWQ8v2
+NaswmPaHZRJCxvp5r+/fKH3O6D65ZDqr3FxX6f0BAEwlALJ7Ir0PzedHnD5LZHo/6Ex1cz1xJ93H
+dIyPCz1apmL9uub5n30GZZ8P6fhLNhpnxkX05znEaG17JmzzOfm6qXiIqLeNuLcFD10U7CHKnsLs
+7OxEf396etokFefzeXieZ+JhlmWdijjKqcr4zoLQpVIRFy5cwHvvvQelFNbX1836u7dv30Yul8Ps
+7Czm5+eRy+WQz+dNVjHn3ATCXtf2fdd1sh3HQaVSeeXbl23bd3ltxhiKxSKKxeJLHZcsuP4qvKrj
+/Kq2JVtH/HURlkDeyiOfz7/U7zHGzHGfmpp66ffNjnG1Wn3h33nZ85ydSwCv5J78Ntt8nEa9gVq9
+hlu3buHhw4d48uQJer0eAKBYLOL8+fP44Q9/iEuXLqFcLn+riSiEkL9McSIRxbpjEfkKoQ8Aep0w
+3Wg9sj4eYzrAyjgUFJJYTxyTcYIkjqFk1qllEJaVNs4tJLAgJUs7y4BMOGTCoCSDkjwdF0onYHE9
++1ekDWfdsc/WW7Ky5AlkGRQykZCJhEosyCRJXzt9TaV/WHduRRrgdiCsUQeLjZUue247lwFSMvix
+hIwlklhBJoBMAMABbCddu9BNS6c7Jtv16Ua07kgpxRDE0PsRKyQxIBMGKNusM5XtfwJgGOuAtUx0
+pjQDB2OWLs8l0g7V+OzaZ+0T07+fdUAlJJI4QRJHkAmDjDmUtNLBnbSTla55xQXTZbGtbIKCm5YG
+e7GJdE8dC/B0zSxAMYVEMUgJyERBJdl55npyhMwWENffdRbS5Pnl5vxaZrb9aLcFoHRgXgLpoBJD
+kjDIRJkvpRgwNnEwKx8uhA3GnPQ9LUgwDCPdGdTXgwIUB5gHYbN0AFYPvpr14555cpjJ1o7jBDJm
++iu91vT55mDc0VkF5tgfLW+f/ZmDcwsKDJLpnHSVcCSSQcZ6su1of/XUE72u3mh/uXDS9xVH9leN
+9hce+LfaX0IIIYQ8i47NKfihxDBIEIcxYl8hDphuk1h8FEiwsvY7H60ZOiFtAzGBMI7T9mfWpmVg
+TJeP5kIHvZhwTCUhpSQSGUMmQBLr5Y+k5FAyCz6MLeliMjfT/+U8Xc/U0VnWlg0JBj9SQJi2q2OZ
+DtB7EA5Mm1oHENNS57FeZ1y/f9oOgQ1mWSaQKyzbTByNpUIU64F7/R4KSnKA5WB5LJ0gqdvOQawQ
+REq3NxMA0BmnzLJM0GJ8XWkpR+0zmbZXVaKXDxorl6TXDk/7VzrQk50jCwpALJUOXCUcScxHfaWE
+6eMhFbK+kll7WGTrpTvpOWLpNkn4sYJKklE/RR3Zj2yt2awKEbOgmIKSDFJBt8MTnaylsnaxHJsM
+avbHTjPyR9njjNvZZYZEAnEY6WBuLJHESI+9C+644MJL98E2FasSJRFHMr3G0jmxCYdKHH0s07a+
+Xsd8strRy2Nm5SU9cVfoPqvSxz2RMNeYlAoq0X1gqLE+iDkfFjjXQR9hOab/yZg1dm4AJYVOSjPn
+met2fnYfSZjX1dnONixLr5krxq9BrvszUBwyUfDjGEms9PWXwEye5pZlAoymKhgXkIlEnF5nMmZI
+4rS/p7L+uAvL3HtpH0/oMtRSZf1wPR4gkwRKjl3y2faPBbFH80BsE4zNnlf6frXGJriPnSHGAM51
+qedEQUJfi/peTvv+6bHTE34BLkR67Kw06Jhen+mE6KzMtM7218u2BVGSPs+y7h83Ewz0c8WGYhxB
+nGAo02dPrNLxDxfMcif3R1i6RHoWzGVcnxuwtGqZHk+QMh27kKNJGFm1OGbuMdvc89k1K6VElEQI
+olAHN2W2xrdlgsn4zvdH9gRXo3EDWFAMkEo/K2QC01dPEpleB2PPP7CxsRgLwvRfx0pis8nMdAYF
+JiwoLtJxFoZYcijJR9d4eq9MTNrmfPJZy9NnLOMIEgk/klAyu585GFxwG+l5c9O+axoAfcaScVmp
+cggLMpaIYj7RV9fXl23GI7Jki2zMaXRtC32dQGesJ1EMJfX1qMfTsnGw0ZiGGUNKx0SkVJCx0ONg
+MRsbC9PHJ1u3nnORXkdOej+Mj/PxNJjPkSi9DbpNIM3rmccesuX/xj4D2NjzhY+qD3636+4v06kK
+fGds28bFixfx4x//GFJKtFotHB4eotlsIgxDU3J8ZWUFs7NzJiuWEEJexO7eLm7fvo3PP/8ca2tr
+qNfrUEqBc45KpYJLly7hxz/+MVZWVmhtb0LIS9IdJ3AL3M4hm8KVlYzjwjIlmUbBzHTgCw6ywSBl
+ORBJfqJyiung8NHaUqMsbDmRDTHqsGTrHY39rsgGDMYaz2n/i4t0EE1YUNKBkt7Ya0/0vvWkoGyf
+JgYieNohyF74xEMFpnTHmysbsNJBA+mk5cBH+2062xMl29jJr4c0k53r8mgTr5d2LMazp0cz36XZ
+bn28rHTg7lklujDx2nqgx0rnM6QDLJY7yng226LGNpyl54ibQQUmLDP49G0ye7OS52aiAJfgY8c3
+qzSgO9JjmdhsLCidbk82mYGPDUxOdF71TuvrIj12SljgVmIqEOgZ5kdmkWfZTun1g/FZzGlmNZcO
+lMxNHK+Ja45bz+xIm2OBNDMk7Tjqa9zV22XWoxNm0NQEmI+ZYKFfT5d55+lglxK23t9kdM9kQW+l
+VDpgxdJ9FOk69fyE/fWygzq2v2k2yQvsLyGEEEJelC61yoUN4RTSYPDYQDS3Tdv5pGoruv2ng9Cw
+ssF3J21ryVG7OG2HTLblEyhlpZnGus0zygRM2wInDHaP2mrCtFuBbD6rNH0KlbZHxgMmo0m4urSt
+UhxirH2E7JXYqB3O0j4FACjOoaQYe49RZqpu84xKkyulwJWJfJt9n+zXjF5Xt52TUTtN6Uqbo7Zg
+tu9jbUGzT3xsTq+E4jqLW421R7O2b/pCR14r3SYTbGYAl2Cc67btWDvNtImzNrI5Rvp6YGkNb844
+mLJ0kER6Zp8m+nkTx8Q6cp7GAjtc1wPjYwHip8+vpc8Zs03AD2m5ZB3otkbbYPo8OmCUVST7bll6
+Y/1Appf9UUxAKR2Yk5aXZmGO9y9HfUzdHxZpH8GabDeb/msa0DX9nPR3pG2um8lzzdMJE2lwduza
+Ma+dlQJnChx2ulySPlYyXaqKZcs88WztYjF5HZht0RMisvsoC7qP96nMfiiunxtcmMkxUsZH+vTZ
+dTXqmyil87DN32UZ4WLyWjy2vDQAxViaRcpH94k9fuye7vs/fb+lE4LMGIgw5xxpRTMxdq1PXt/c
+9IWY1Odh8lmC0fkfH7+YCObqigB6crENZXtHtn88Y368vz26v9J/BVcKKrt+xo591u+cuMe/c0ds
+8h5h5jkiIIWdjsMksMb2I6u6p48Ln3hu8bFrazQWM7kkR/ZM4nD1+eY2lNRVQPTzQGdGm2srvZaz
+6yrrp5vS4uk2KelAKC89b2nJcZ6NZYxvE4CTjpsZWxCmIiEXNqT09EydrPIdGxsrYdk1PvY6XOhl
+FsbuSTU2zqG3azTGA7NUGht7lggzZjD5rEr79On9kJ2z0WdGtq/Z80ml5eytdJzAMdemNNne2etl
++3fktbLP6fF7jLyUUxn4tiwLKysrsG0b7XYbjx49wtbWFoIgQLfbRalUwoMHD7C0tIQoipDzPDCm
+S0NTZiYh5DjjJfS3trbwzTff4JtvvsHW1hbq9TqmpqZQKpWwsLCAK1eu4P3330c+n6dJNYSQb0E3
+XIXl6k6QnmE4AACAAElEQVQCkGaHjGZqj3d2TKkyziDSQQGlZNpJzAZ41KiBPRH4zdaKlmONenVk
+WwAdXOdHOkLHBI7BoJQAxGiG9GRnK9uWLDOapZ2fLKj3klnJ6Xsi7RhBWeBPlcOefI+Ty32PvR5n
+4EwAXIKLZPL1zADi+OtkAVllOj+j92V48Rm2Y8fbdMQtCEuOjifGjuOoq2W2SS/v8SL7+6Lbknao
+IcxaYqPyben1cnTlo6zD9tSxPyEAnx13AEyk1xDPBjoT8x6j63MU1DWDMkfLyGfXQdopnJwnwMcm
+IrzIuRkdC56eFyhHTxQZPw/j1zKODhgcfb3seuOT+2sdt79j58GcU37s/up9HR9oyu758QkH1Osl
+hBBCXp00S9kGpOUc0xZ8Xjt3LLDNGBRP27NSjrX7sjbtWPlPlraZ0jZoVtI2K8073l6abH5lxVHZ
+qI8xtrxQVjx79HrZ+wNZn2C8TaHb/wC4hFLWM9rhgNmQNOP5aD9h4j2yrVVZ0HqsTWTagNm2pL+s
+hC56Azk6JpCjMr+jI27aSMe13fRUVKEDPKZPc7TtO8qkn8imPRr4VTrYo7gcbc+J+zE6pvql03K4
+UFBCjoKAE32C8f6JSPsCk/1Fc94ZTycqiLQ9e+TYMzHaD9PW1PubZWArZafHIA1UmfcdBce/+wzL
+8b7u2DFQTtovkmNt/MkzO2ovi2POBzv6Lqafw7gYBSzNfXS03zEWAB27D0d9sqy6WbYetkz75enr
+mOtMn6eJ/gIXul8wNtli/D6Cec/xgLTSMTfG0/63Pp/8uInSR/6L9Aoyf8eyvszR9zju9KS1o9Ll
+Asb7LpMT6Uf7PRrH4GPHcfI99KEQYCIN5IpRv2h0bo8uFyGguALSMZDx68EEx9noXnvqWgGguDBj
+CFn/bjJLGmP3Z/b+Y9dVtuRA2kcez65++vnwqqpujY1dvNB+jD2zzOcTM/f8iWM849cgxvrq6fXG
+0/vl2L76RKIGN8ciO2b65+WR8zaaOPZUf/eZhyM9P8KGSO9lbp63o+cpJsbTjk5Cw6gqABNQ4ugS
+GfzEc/nUs0Q6EEfH2MYnHxwd3zvufoACkAbf5ei5lB23k55N46/1vS9t9pY5lYFvIQQKhQJmZ+ew
+urqK9957D4PBAHt7eybz+8svv4Tv+/j444+hpMLyygoqlfJLlegmhPzlCIIAtVoN9Xodt2/fxjff
+fIO1tTW0220wxjA3N4fr16+bEue5XA62bUOIb7tuCyHkL1oWnEszLyYDVsdlQ4+VhcsCeUqkjeXx
+Hzsa+EpfS6UN76MBzPR30p98bodI/7guR8fYWAf/uG0Zb6B/68Z4lpPB0/c7Zj8mtvn5AU49qz4b
+yErLyx0zoDKJ69+beNvnBT9P3gadbZ0OFnJmZuSP1nF6eqt1ABdPXSuvxvOPi5mJPz6g8NS2vHjw
+X2XHMC2PDzOpYHIAZ/w6mvh7xvUxS79PDtqOfv7FT096DMD1AKAZvJrY8rHr7cVfd5RRro7Z36M/
+/vQ9PL6/+nbmo8SXickL7NVdEoQQQggZyTLujgR9X7yde7SdwXQ5YRxt005mC+p2d9pmzDJOj2vP
+P2u7xwK42ZboVs2R1zvSJxhtd9qGOa7dfEK7xQQ1n/Ue5jV0O3vyaLEjrz/+fmllHdNWE8e0q44E
+jZ5qux3f7jv+2B4NQB2dHJztkw5wPBWwPm4/jvy6UqNgNtJ23rP7ecf3F827MnXCsR8L/rOxrTRt
+c562VTE5ydJMong9QZbRMQDMusFZ/0hvzNg+nnQ+Tp54Mt6fZFA6m3ksmDnq3xzpd5yQEW1Oa3bO
+xypjTR7j4+7ltF/Jx++Bk/pUoz7aib/71L6O/994IC7b9pftt6XLM6XHXG/L6NyY43fkWcBw/LHT
+r5eeC84mJjCzE457lgiQHYeJvz/mWB899+ZeGOvfsaMTkM25HZtoM/HsVMgm9j+1DdnPvLYg5OjZ
+fdJ+TE5IOjIxxtwnL3fOWdbPTgcvju2rP/UZY26OUV9/rO86ft5eru960jEQYz9x9Pl40r7x9HS9
+7LnMniV6DOeZY2zj40QnjrEd83onPvdG408nfwaQl3UqA9+ccxSLReRyOVy5cgWNRgNRFOGLL75A
+o9FAo9GA7/vY39+HUgpTU1OwHRu2bVHgmxByLN/3cXBwgLW1Ndy9exd37tzBkydPEEUROOdYWFjA
+j3/8Y/z4xz/G5cuXUSgURjPoCCHkpaVlzhTP/hdH/nD876Sz8hmAZ0RIn36dF/qd573/6N9Hnahn
+vK758e/6nGTPfr8XOnbH7UPWgT5m+096qafe99sH9EcdocmA+oufolf9+fPs43J0WOC7bcv4gJA6
+eccnXv64QaexDv5TG/htjs/4QNrYtfZS98hJ+5t9f3p/J97ixO0f7e/EPfDargdCCCGEZEz21ndq
+Cx5pZxzb/nz69SbajMCz20w47jWP/Z+nX++Z7Z0T2s3Parc89z1O/Ktn/+vRttpJx+S5baQT2n14
++dcymdMn/8Qz9/GF+lYv3F884bWe+ftssg/wwr/3qrzgMXipY/Fir398U//5feKJc/5C99Az+p/P
+OTfP/N0XP8QvecyOP3YAe6rvOnnIXuTYjV7v+dfo6FkycazNP73A+MWLPjOeuR/sGdvwbY7rt2CC
+xU/vx7M36bud8xd7Nh79n2d8bn2XcZTjjsHJG3TyvqWTXV7+XLIX/0z+Nq/3Sp975HlOZeAb0MFv
+zjmmp6dx9epVAEA+n8fMzAwGgwEsy0KhUMCVK1cwOzuLfD4P27bf9GYTQk6p7JmRPVN6vR5WVlbM
+B9CPfvQjfPDBB1hdXcXU1BQtm0AIeQVeZobrkd8b+/b6fudNvu739X4v+XqvZT8nr4PT0Y15+ri8
+vu36Luf0dW7g93fPvPhbnLoLhRBCCPkL8m3b7q/qtd5wO/hU9UGOvOh3fv1XsZ2vYidf5fH6Dufr
+lW3Dmz4Gz3/97/Y23/c98X33vZ///t/f8XvF9+iZPP4n78fp7Ku/zg387skV3/1lXsNn8hu/tv6y
+nNrAd6ZSqeDKlSsmWPWLX/zCZGjato3FhUUsLC6gXC4jl8u96c0lhJxSrutiYWEBhUIB1WoV77//
+Pnq9ngl8Ly4uYnl5GVNTU/QsIYQQQgghhBBCCCGEEEIIOWNOfeA7n88jn89jaWnpTW8KIeQMcxwH
+juNgamoK58+ff9ObQwghhBBCCCGEEEIIIYQQQl4hquVLCCGEEEIIIYQQQgghhBBCCCHkTKPANyGE
+EEIIIYQQQgghhBBCCCGEkDONAt+EEEIIIYQQQgghhBBCCCGEEELONAp8E0IIIYQQQgghhBBCCCGE
+EEIIOdMo8E0IIYQQQgghhBBCCCGEEEIIIeRMo8A3IYQQQgghhBBCCCGEEEIIIYSQM40C34QQQggh
+hBBCCCGEEEIIIYQQQs40CnwTQgghhBBCCHkpjB39fzbxnRBCCCGEEEIIIWcTw9P9e8aY+TrNKPBN
+CCGEEEIIIeRbGe/0UvCbEEIIIYQQQgg545j5z5lEgW9CCCGEEEIIIS+NAtyEEEIIIYQQQsjb66xk
+eY+jwDchhBBCCCGEEEIIIYQQQgghhJAzjQLfhBBCCCGEEEIIIYQQQgghhBBCzjQKfBNCCCGEEEII
+eS525PvEv52hsmeEEEIIIYQQQggZw8b7+vp/zmo/nwLfhBBCCCGEEEJeCEv/k3WAT1rr66x2kAkh
+hBBCCCGEkL9ULA1/Mzy7T3+a+/wU+CaEEEIIIYQQ8gImc76P6+hyzsf+PPnvjJ/ejjEhhBBCCCGE
+EPIXjU18MxPdj36ddhT4JoQQQsiZxxgbm4nIAMaA098OI4SQM0YBAFj6HcCxHeDxjjDjZ6dzTAgh
+5E1g4Gzs84Qa8YQQQgghb4Yy/3lmi+y09+8p8E0IIYSQt4MZMKO4NyGEvE5K6Wfsae/sEkIIOb3M
+ZKn0v9lSGtSIJ4QQQgh5A9SR/x9rk53U9z+tWeAU+CaEEELIW4EBEBwQnIGfsgYXIYS8HRSg5MQ6
+3yeVPeOMupqEEEJeAAM4G7XhqRVPCCGEEPKmSEBJAAoMDJxzcM6fW+ntuP9/k2g0ghBCCCFvDcZ0
+8Jvz0zfbkBBCzjylACQAEjDgxE4wY4xKnBNCCHlhjANC6OA3fWwQQgghhLwhSkGpBAwyrajJnvt1
+GlHgmxBCCCFvBcYYBGewbQZLgLK+CSHklVLQs79jQCXgTJmO7nEBcOB0zfgmhBBy+mSfGYIz2BaH
+JU7vACohhBBCyNtt1OdnSge+x/v6R/v9pxkFvgkhhBBypo0CLwyOxZF3OFyLgVMrhxBCXimmEkCG
+4CoCZwpCCAghTAf4uOA3QAFwQgghJ+OMwREcOYfBtQFBHxmEEEIIIW+AAlMRuArAEYFzZfr74/3+
+LAh+mie805AwIYQQQt4KnDG4NkPB43BtToNmhBDyqskYPA18s7HA99HOMGV9E0IIeRFm8qoN5F0O
+1+IQNFJJCCGEEPIGKJ3tLQMwFYMzTPT5jwa/AZzafr/1pjeAEEIIIeS7YoxBCAbX5ih4HHmXwbUV
+bCEhJUOiTlcDjBBCzgwloWQMJUNA+uAIIVgCWwC2bcOyLNi2/VQAnLK+CSGEvAjOGVxboJjjKHgM
+ngPdhlcMUjKoN72BhBBCCCFvMaUSQEZQ8RAsCSAQweKALTgsyzJfJwXAT2Nfn+ZREkIIIeStwDmD
+53CU8haKOY68w+AICcEVTmEbjBBCzgSlEsh4CBl2wZIhBELYXMK2hAl8jwe/Lcs6tvQ5IYQQMm58
+uSLP4SjlLBRyHDkHpg0P+vgghBBCCHm9ZAQZDaGiHpjUfX5LKNi27vOP9/sn+/ocnPFT2d+nwDch
+hBBCzrRs0ExwDtexUPB04LvoKRQcCdeS4EyC8kUIIeQlKAWlEqgkgIp7kEETLOnDYjFsC3BsAcdx
+4DiO6QhPrvctTm0nmBBCyOnBGYPrCOQ9C6WcQMEDCq6EKyQEteEJIYQQQl4PJXWfP/ahoi5k2AaT
+Q9hCwrEYHNsy/f1sorup9sYFhOBgfFTq/DT1/6nUOSGEEELOPM71LEMhOCzLRiknsFBhCCOGRlch
+6caIwJEoDqlo3h8hhDyPkgFUEkKFbSj/EPAPIVgfrs3heQ48z4Pruib4nX1ZlgVLWBCCg4tRxnfW
+CT4tHWFCCCFvXrY8BucCtm2h6HEsVBiikKHekZA9iZDa8IQQQgghr5aSkEmgJ7oHDSj/ACxswGYD
+eI7u72d9/vF+vyl7bomJ7O9xp6HPT4FvQgghhJx5jDFwoRtbti1QygssTnGoREEmEr2BhFQCSjHI
+N72xhBBy6imoJIKM+lBBE2q4Bwx3YeVsuK6NXC5nOsJZZ3i8/FnWCdYlbE/PrG9CCCGnx/iEKJGu
+IVnMW1iscrC0Dd/3JRJJbXhCCCGEkFdJKQWVBGmfvwEM98CjBuycDc9zTJ9/PPA9nvk9vrSZWeKM
+n56J7hT4JmeeUgq+72M4GGIwHCDwA/iBj1wuZ27Q7DshhJC3z/igmWVZsC0bOddGMWdjumRhGIYI
+wwR9P8IgZAgiIJEKiVSQSkGptMGnAKUAQCH9NvrzOKq2SL4FBZWWjh5dc2AAAzPXr+4fnI5OAnnL
+MWD0oEsfakoBkGAqAVQCFQ/A4j543IZgAwgHyHkWCoUcCoUC8vn8sZ3h8ZLn4xneWQk0QgghJJMN
+lmbVQnKujVLeQhBa6Ae6Dd8dRhimbfj4pDY8oNtZALXhCSHfk8m+ndKDCRN9O90OpjYwIeQNONrn
+V/o7gwSUBGQExH3weAAWN2FxH7bDkMvZKOTzKBQKyOVyT/X7bduGbdkQwpoobc7Z6arMQ4FvcuYp
+pdDpdFCr1VCv11Gr1dBqtTAzM4PZ2VnMzs5iZmaGAt+EEPIWywbNhBCwbAuu6yCfcxDFEaI4hlAx
+Wt0AnX6MrooQhAp+kiCOlQmCKwnINPqtTCfWRMMNRaNm5FtQUkFKab6UlADTJT7ZWHmo0zI7lrzd
+GJiZjIGs46skoGIwFYLJEFyF4MqHxRK4IoHjeigW8ygWCygWiyb4nc/nJzvBR9b7zsqcE0IIIUeZ
+5TA41214x0bOc1EuRIiiGEIlaRs+Qneg2/DDRCJJJOKE2vCEkDdHKTXRt5NS16Wg/h0h5DQY9fkl
+kH1XElCR6e8zFUCoADZP4NgSnpNL+/sFFAoF0+c3k92dtNKbbcGyBLjQ47Cn8TlHgW/yVhgOh2g0
+GtjZ2cH29jYODw+xtLSEOI4hhEChUHjTm0gIIeQ1YZwByWTw27Et5HMuZBIBSQAHDC6TsJUPkfgY
+qAQ8ThAgQSwTRImElApJonSnVSkoJcGyDN0j76kUDZyRlyOlRBLH+ksmSOIYjDMIYUEICxACzLKA
+U9hhIG8XxvQ871HnVwEqAUMCyBhMBWAyhOAxbB7DsQRybg75vO74ZkHv7Gt89vfRjG8a7COEEHIS
+xhmYZHriqrBgWTYcx0bOcyATF0hCOGDwWAJbBRDJEAOZgMUJwiQBV9SGJ4S8OVJKyCRBHMdIkhhJ
+kgCADgZxvfwP0jYxIYR8nxhjaRtoPOCdgKkETEWADMARQTDd53ctB/mczuwen+h+tNKb4zrpRHd7
+or9vqrydor4/Bb4JIYQQcubptQGFLnVu23AcB3Ecw/M8xHEMKSXiRMd3BGfwnACeDQRhgjCUiKIY
+cZIgjpOJrFwp5US2iDrhz4Q8T4wYgQoQxiFkFEKGARjnsB0XtuPAFg5c7tLACHmtnu6IZuXOAAYF
+xhQ4BDhzYAkHtmBwHdssHZR1fo9mfOdyuYl1vyxhTXaEOZvoEBNCCCEZxhi44LAsAdu24bouEhNM
+ShAngFQMggGeE8JzQvhBgihSCKMYcZwgiRMk45V1lA6EZ6gNTwh51RIkCOIAiEOoKEQcBgAA5ri6
+jydsuNyFEOJNbyoh5C/IyX1+3e/nDODQZcoty4MtAM914Xme6d8XCgWUSiXT7396srsefx0PfJ+2
+pc0o8E0IIYSQM2+8TGIWAHcdPWiWJFkwW4FzwLEU8o7CwE7gBwxBoBAEMaIoQhRF+ndkAplIU74s
+Wzdw7NsEGkAjzxPKAFBDyGSIKBxCDn0ILsCRgyU8eMghJ/I0MEJeueOCzeN/ZZ6f6TOUCwuCO7Bt
+C7ZtwXUceJ73VPA7+3qq7JllQYx1hAU/naXPCCGEvHlH2/C27YwmoKZtcUAP0tpCIT9Q6NsJAp/D
+DySCULfh4yg2k12TJKE2PCHktYtUBKgBVOIjDoaQ/hBgDEx5sHgOruMhx/OwLftNbyoh5C33wn1+
+zsE5g+C2qZZp2xbcNPDteZ6Z4D6e8T1e7txxnHSN71Gff3yt79OCAt+EEEIIOdOy9WMVV3p9QMuC
+4zh6wEuNDZhxDiE4LMFhWwKuY8H3bQSBjTB0JgPfSTKZMWIGzJ6dLUKDZ+Qkvi9gcQWOBJARZMRg
+WRyeK1DMuygUcigU8rokHiGvyPEd4KfLkGUztbMS5Tr4YJsKGllHOJfLIZfLmSzv8Wxv27FNxne2
+ztf4zO/T1hEmhBDyZo234S3LGqu4ZENJpdvjSpqfFYLBsQVc18ZwaCEILGrDE0LemDAMYXEJwfSa
+uTLRlbtynoVC3kGhoEsG2zYFvgkhr8ez+vvjf54MfOv+/nF9/qy/n/X18/k88rn8iRPdT3Ofn0bW
+CCGEEHLmMc7AFINlWVBKwbbticGubGAtC4zbti7dGwQBwjBEGIYTg2byaKlEGiwj39FgMIBt26aU
+uZQStm2jVCqZr3K5TAMj5JV7kc7w0Yy7o0tHjAe/TQDcy8H1Rn/nuq4Jeps1vhk/cRsIIYSQrA2f
+tdHH291SSdOGzz6XnLEqJONt+Kws+kmBb4Da8ISQVysIAtP2BUbPk2KxiGKxiHK5jHK5DNd13/Sm
+EkLeci/a5z8a+D7a58/69eMBcM/z4Ll6fe/xie7Za2XZ3qetz0+Bb0IIIYSceUczRpRScBxn4t+E
+EBBjawf6vm8GzOI4nhg0OzpgZgbgTlgr8Fl/RwgAeJ43EfSO4xiO46BQKKBcLqNaraJSqVDgm7xS
+z+oAj68nn2V8m87r2CSh8VngnudNdIg914Pt6GfqeLmz8Znfp60DTAgh5PQYb8MLISYmrQIYBb1t
+Sy9l5LoIggCe55lJq9SGJ4S8Cb7vT/TvkiQBgIn+XbVapcA3IeS1eV7AO3tGHZ3sPr5M5Hif33Vd
+82WWNEvLm48HvSdKnJ+ytb0zFPgmhBBCyJnGGINS6qmMEQAm+A3ojJLxUuiOo0sjZoHvJEkmBs3G
+B8yOGzQbR4Nl5Hlc1zXrTWbXneM4JhugUqlgenp64pol5FU4KfB8XCf4aEc4K2U2Hvw++mXbNmzL
+NkEJE0Rn/GU2kxBCyF+Y49rw48FvpZT+PBGjz6XxjKTxak3Z+t4vEvgeR214Qsi3NRwOAcA8g8Iw
+BGPMBL4rlQqmpqaQy+Xe9KYSQt5iz5po/qzAdzY+Ol7y/GifX1d1c2DblhkbGO/zn+aJ7hT4JoQQ
+QshbgzMOpLGW8VI7WYMuC3pnmSHZ96NZIkmSHBv4PgkNmpHncRwHSZIgiiIEQQDf9+G6LorFIkql
+EqrVKqanp+F53pveVPKWeV5H9FmBb875xKzurCOc/Tn7Pj7rW3Bd7jHrBJ/WjjAhhJDTwUyWOtKG
+H1+CI8v2PlqpidrwhJA3pd/vm0peYRjC930wxp7q3xUKhTe9qYSQt9yz+txH1/lmjE2UKs/aWeN9
+/Bfp848HvU9jn58C34QQQgh5KzDGAA5wORo4yzK/s4aZEAJJksCyrIkM75PWBFRSQarJDBEaICPf
+1nA4xHA4xGAwMKWjcrkcCoWCGRyhUnjk+3C0Y5qVKDsp+D3eGRbCgmUJXdrcEpNrevNRqbPT2Pkl
+hBByOjHOnmrDm8FZPlqHMmvLH9eGzyrrZG14ABPteGrDE0JeJSGE6dtl6+ACQC6XQz6fR7FYRKVS
+ocA3IeSNmCh5nlZjy/r840udZf358bZWFugeX8/7aKb3ce9zmlDgmxBCCCFnnimVeCT4nQ2YSSl1
+UCbhkIk0ge8kkZByFPCWiYRUcqLE4vggGWWNkG9LSol+v49+vz+xVlIW+M4yAyjjm7xKLzLze/zP
+JvDNOLgY7wxbEOLpkmgTAe+x8uaneeY3IYSQ02Pic+KYNrwpx0lteELIKcMYQ7/fx2AwQK/XMxOY
+Pc8z/btyqYxCkQLfhJDX40Wqu43/ebyfnvX5R6XPBYRIA+FcQFijgPd4sFwIcSb6+xT4JoQQQshb
+YaJBJ/RagUqqp7IXkySBpSyTEZKVRBzP9AYAKbOBM8r4Jt9dFEXI5/Mm6D2+ZtJ48JvWgCPfh6Md
+VJYGrDk/EgA/0rkd//+jAe+jmd6nuRNMCCHkdDGfHS/Qhs/a7dSGJ4S8ad1ud6J/xxgzVb3y+TyK
+pSKKxeKb3kxCyF+gF+nzmwzusT7+ceXQx/v8Z6W/T4FvQgghhLxVjs3+ZqN/45ybwTEpJYQQT60D
+eFx5RIAGzMi353keHMeBbdtmnaTxNZMdx4HneZTxTb43x5U7BzARwD66DthTf3dkPe+TXpsQQgh5
+HmrDE0LOkiiKTMA7698BMOvjZhW+qH9HCHlTjit3Dhzf5x8Pch/t85/FSe4U+CaEEELIW2e8MaaY
+HuhinE2s2f3UQNmR71LKp16XBs3ItzWeCZAFvbNBEdu2TdCbBkbI9+W4zirn/Kl/H+/0Zv9/dLb3
+Sa9HCCGEvAxqwxNCzoogCCaC3lngO/s7Hfym/h0h5M15Vp//aBD7aL//rGV4H0WBb0IIIYS81Y5m
+jwjoDMXxjJCjg2FKKQghnnotGjQj35Zl2WZN5KxkVPY9Wy85ywYn5PtwUsf16ZJo7MTZ4c96HUII
+IeS7oDY8IeQ0Gw94W5Y1Kgec9vN0386i/h0h5I35Nn3+rL8//nNnsc9PgW9CCCGEvPUmBs6yvxP6
+7wSEGUAj5HWxLGEC3ONrJWUDIyb4bdHACDldjga6J/7tDHaACSGEnB3HfvZQG54QcgocndScZVGO
+/70lLOrfEUJOvZP6/Ge5v0+Bb0IIIYT8RTgpaKOUAhNntzFHzobxQPf4uknjf2dZFrjg3/3NCHnF
+znKHlxBCyNl33EAsteEJIW9SluV93Jq4ZoKzJah/Rwg5E962Pj89eQkhhBDyF+1ta9yRs+Esl4wi
+f1noGiWEEHIa0ecTIeRNO7o27tE/E0LIWfA2PrMo45sQQgghf/HexkYeOV2OGwCZKL1PgXBCCCGE
+kJdC7SZCyJtyXP9t/M9Z6XN6ThFCyPePMr4JIYQQQgj5ntDAByGEEEIIIYQQQgghrwcFvgkhhBBC
+CCGEEEIIIYQQQgghhJxpFPgmhBBCCCGEEEIIIYQQQgghhBByplHgmxBCCCGEEEIIIYQQQgghhBBC
+yJlGgW9CCCGEEEIIIYQQQgghhBBCCCFnGgW+CSGEEEIIIYQQQgghhBBCCCGEnGkU+CaEEEIIIYQQ
+QgghhBBCCCGEEHKmUeCbEEIIIYQQQgghhBBCCCGEEELImUaBb0IIIYQQQgghhBBCCCGEEEIIIWca
+Bb4JIYQQQgghhBBCCCGEEEIIIYScaRT4JoQQQgghhBBCCCGEEEIIIYQQcqZR4JsQQgghhBBCCCGE
+EEIIIYQQQsiZRoFvQgghhBBCCCGEEEIIIYQQQgghZxoFvgkhhBBCCCGEEEIIIYQQQgghhJxpFPgm
+hBBCCCGEEEIIIYQQQgghhBByplHgmxBCCCGEEEIIIYQQQgghhBBCyJlGgW9CCCGEEEIIIYQQQggh
+hBBCCCFnGgW+CSGEEEIIIYQQQgghhBBCCCGEnGkU+CaEEEIIIYQQQgghhBBCCCGEEHKmUeCbEEII
+IYQQQgghhBBCCCGEEELImWa96Q0ghJDjRFEE3/fh+z62t7exu7sLzjkuXLiAixcvYn9/H3t7ewiC
+AK7rwnVdVKtVVCtVBGGAjY0NPHnyBOfOncPq6iqmpqZgWzaEJb6X7U/iBFEcodVqYWNjA5ubmzh3
+7hwuXLiImZlpCCFg2/abPsyvdH/jJEa73cbG4w1sbG5gcXERFy5cwOzsLCzLguM4b3ozySsUBAF8
+30e73cbOzg52dnYwNzeHCxcuoFQsYf9gH/v7++Ccw3VdFItFzMzMYG527nu7D8nbJQxD7O7uYmdn
+B0op5HI55PN5TE1N6Wf8W/RMJYQQQgghhBBCCCGEvDwKfBNCTqUo0kHjer2O3/zmN/j0009hWRb+
+7u/+DlNTU/jmm2/w2WefodVqoVKpoFKp4MqVK7h27RqazSb+7d/+Db/+9a/x13/91/jHf/xH3Hj3
+BnL5HHJW7nvZ/jAK4fs+Hj9+jP/zf/4Pfv3rX+MXv/gF/uEf/gE5z0Mun3urgjRxEsP3fWxtbeHf
+/++/41e/+hU+/vhj/N3f/R0cx0GhUIBt22CMvelNJa/IcDhEvVbH+uN1/O53v8Onn36Kmzdv4u//
+/u9x4cIF/PGPf8Tnn38O27ZRqVSwuLiI999/H5VK5Xu7D8nbJQgC3LlzB3/4wx+QJAmmp6cxPz+P
+d955B/l8/q16phJCCCGEEEIIIYQQQl4eBb4JOcWUUuj1euj3+wjD8NifYYyBMQYhBIQQcBzHZEBn
+/3YWxXGMfr+PRqOBu3fv4re//S1s28a5c+fwN3/zN3jy5Am+/PJLHB4e6izSuTlYloWZmRkcHBzg
+888/x7/927+hWCzi/fffx+rqJdjO9xcUiWMdCN7b28MXX3yBX/3qV8jlcrh58yYuX74Cy7aQy52N
+4J9SClEUod/vo9frwfM85HI5uK4LIQQ450iSBGEY4vDwEF9++SX+3//7f5BS4urVq7hy5Qocm7K9
+3zZhGKLT7WBnZwdffPEFfvOb32AwGOD69esol8t4+PAh/vSnP8G2bczOzqLT6WB+fh5xHL/pTSdn
+VBRGePLkCT7//HPEcYylpSV0u11MT0/j8uXLb3rzCCGEEEIIIYQQQgghbxgFvgk5pZRSiOMYn3/+
+OT799FMcHBw89TPjAe9yuYxyuYzFxUVcvnwZV65cgWVZsCwLnPM3vTsvjXMO27LheZ7ZB8YYLMsy
+gX3HcSa+bNs+k/t6mimlIBOJ/f19fPrpp/jTn/6Eq1evppMJVlEoFFAoFN70ZpI3ICthnk2AAGBK
++HueZ/7Ntm1zv1qWdWYn4xBCCCGEEEIIIYQQQgg53SjwTcgppJQyge8vvvgC//RP/4T19fWJn8my
+ubPg9tzcHObn5/Huu++CMYaV5RV4OQ+CC+AMxoI557CdUeA72+ejQbXxDHcKqr16MpGIkxgHBwf4
+9a9/jX/6p3/CT3/6UzPZgjFGge+/UFmQ23EcCCEmnklHJ6dkf84C5IQQQgghhBBCCCGEEELIq0aB
+b0JOMaWUKffd7XZRLpdRqVROzG6u1Wp4+PAhisUihBA4f/48Ll68iEql8qZ35aVxzk2Q27ZtU1J7
+PKh29MuyLB3oJ69cGIZot9uo1WpotVoYDAaIoghSSiil3vTmkTcgW1ohm5ySVaBwHAeu456Y8U1V
+GQghhBBCCCGEEEIIIYS8DhT4JuSMKBQKWF1dxfXr11GpVFCpVCCEgO/78H0fGxsb2N7exs7ODgCg
+Xq/jZz/7Gaamps5k4DvLHM3lcibIn5V1z7JMj2Z827YNxinjm5DvA+f8qWUGhBCwLAuO6zyV8Z1N
+TiGEEEIIIYQQQgghhBBCXgcagSbkjPA8D+fOncPHH3+MhYUFLC4uwrIsdLtddDodMMZQq9XQaDSw
+vr6O3d1dzM7O4gc/+IFZpzmRCYbDIQaDgSlRXSgUTInicVlAPY5jcMbBhc62dhwHSZKg3+9jMBjA
+8zx4ngcAiKMYYRQiSSSUkmCMw7Ytk/HpOi6E9WIZ2Ywxk006nilqWZYJfI8H1LLM8BcpdR6GIeI4
+RhiG5iufyyOXz00E5gaDAYbDIQAgn8+jWCy+8LEKggBxHE/8XJIkCMMQg0EfcRyh3+9DSgWlJACY
+zPZsf8ZLt2fnMIojBEGAIAggpUQcx1BKpdvF4Ti2CURmX5mshL6SCkGoX0MfiwRSJuY1hOBmgkH2
+XrVaDcPhEFJK+L6PZrOJvb09xHFstiWKIpMJ/l1l+xsn+vV933/u/mbXZ7bNYRhCSokkSeB5HvL5
+PBzHMcdUSgklFcIoxHAwxGA4MMfedV0ILiAs8dS2BEGAJEmeuy3j1+NJxz7bp+w1OGcT1/jRc3ia
+WJYF13EnqjJk183RySnmmKYl0V/2OkhkAt/3zbFPEjlxzVqWgG3ZsGzLvK9SKv3ZZOK8JUly7HnL
+SrFnxztbbqLf76Pf75tqE0IIhGGYVjxQ5lnnus5TWe3ZNmfXYfZMHJ8wYNu22c+hr5/PYRiaZ5uU
+Mn2/ON0uOXF9ZNUwoiiC7/sT22VZFhzbgWVb5lyMX//ZMy47ptmzKDs+2WuPr+We7d9J2+x5ntnm
+OI7NtmS/az4PXHci+z87RlEUjZ2v0XkWQqDVaqHT6SAMQ7OdhBBCCCGEEEIIIYQQkqHANyFnBOcc
+nuehUqlgenoac3Nz8DwP09PTGA6HaLfbCIIAa2trODw8xP7+PprNpgmwDYdD9Ho9fPXVV/j666/h
+OA4++eQTfPLJJxPBDEAHEx4/fox79+6h0+mYoNXS4hIWlxbR6XTw2Wef4euvv8bly5dx9epVWJaF
+7e1t7O7umvd0HAczMzOYmZnBpUuXcPnSZUxNT71Q4EtwMbGet+M4JvANTJZZzn7mRcsoHx7WsLe3
+a7Z3d3cXN27cwM2bN7GwsGDKd3/11Vf46quvwBjDJ598gp/85CdmTfXx99nc3MS9e/fQarVMQGd6
+ehozMzMT7zscDnFwcIDbt2+jXq+jXq+bAI9lWahWq5iamjLHdG52DowzcK4D6cPhELVaDWtra3j8
++DG63S56vR7iODYBtMXFRSwtLWFpaclMkDCBrjRI5fs+Hj9+bCZI9Ho99Ho9s2/5fB4zMzOYnp5G
+q9Uy77m+vg4pJXZ2dvDrX/8ajx49Qi6XQz6fx/T0NGZnZ1Gv19FsNpEkyXe63rNgd71Wx9q63t92
+u41+v2+uLcuysLCwgOXlZSwtLWF+fgFLS4vY3d3F2toadnZ2zMSQ69ev44c//CEunL8ALjgYYwiC
+AP1+H/v7+/j6669x69YtXLx4ETdu3MDFixdRLpdRKpXMtjQaDXPs2+02er0ewjA0xz7blsXFRSws
+LGJxYcFM9JCJRBAG8Ic+Hm/oY7+zs2OOfVbaP5fLmWvn/PnzuHDhAubm5r7HJ82L45zDdkb3aBbw
+55xPrPU9HgB/2YzvMAwRBAGazSbW19extraGVquFXq9n7hvbts1zcWFhARcuXMDq6iriOEav10O9
+Xsfjx4+xsbGBdrttJmdkgeOFhQWcO3cuvYbmMTs7a67Ber2OP//5z/jyyy9RqVRw6dIlTE1NYXt7
+G9vb2yaY7jgOzp07h3PnzqFaraJQKEBKiYcPH2J9fd1ct5xzLC4uYnFxESsrKzh//jxmZ2fNc+DO
+nTv44osvsLOzg9XVVVy+fBmdTge7u7s4PDxEkiSQUmJ2dtZsczaBaW9vD48ePcLu7q6Z0FOtVrG4
+uIjl5WWsrKzgwoULcBwHSin0ej3cunULd+7cQavVmgjSSynN87dYLOLixYu4ePEiZmZmUamUUSgU
+zDbfv3cfn3/xOZ48eWKeXcPhEDs7Ozg8PDSfB4VCATMzM5ibm8OlS5dw9epV5HI5MMZMEN73fWxt
+beHhw4d48uSJmaglhEAul4OUErdv30atVkM+n38lk2wIIYQQQgghhBBCCCFvDwp8E3JGZAP/44Hv
+UqlkshJ93wegg9a1Wg31eh2tVssEHTqdDur1Ov7whz/gX/7lX5DP52HbNj744AOT3Yo0lquUwsbG
+Bn7729/i4OAAhUIBxWIRN27cgLAEtre38W//9m/413/9V3z88cf4q7/6K7iui2+++QZ3797FYDDA
+YDBALpcz64wHQYDZ2VlMTU+ZbMJnYWnmK2NsIvAthDDH49tmfNfrNdy9exfffPMNbt++jfv37+Nv
+//ZvTXZ5lhX66aef4l/+5V/M+374wYfwct7EsQJ04Pv3v/89tre3zbF65513nsrUHQwGODw8RBzH
+uH37Nu7du2cy5x3HwdLSElZWVvDzn/8cU1NTmJqaggUL4DoI1+l08OTJE/zxj3/En/70JxweHqLR
+aCAIAhN8vHbtGt577z3cvHkTQggsLCyYY5Jl/He7Xdy9exe///3vcf/+fdRqNTSbTZMxXa1Wcf78
+eayurmJnZwdbW1vY29tDo9FAkiTY29tDs9nEF198AcZ0YD4rw885R7PZ/M6ZmNk1u7W9hT/96U/4
+4x//iIODAzQaDfi+b/b3ypUrZn8555ifn8Pe3h4+//xz3Lp1C/v7+zg8PMTf/M3fYH5+HisrK2Cc
+mcB3p9PB2toa/u///b/493//d3z44YdIkgT5fB5CCBSLxdG2bG3hz3/+Mz799FPs7++bbcmuwaPb
+Mjc3CwFhjv1gMEC328WDBw/wu9/9zkyAaDab5noul8vm2P/gBz9AuVw+tYFvwcVENnc2AeBo4Dv7
+ygLfL5PxHUW6MsLe3h4+++wzfPrpp9je3kaj0TD3jeu6WFxcxIULF3Dt2jUwxrC8vIwwCNFoNPD4
+8WP84Q9/wJ/+9CccHByYSULZpJkrV67gww8/xAcffADGGKam9DNqOBxib28P//mf/4n/8T/+BxYW
+FvCTn/wEKysr+Oabb3Dr1i30+33EcQzP8/D+++/jo48+wvLyMqanp5EkCX7/+9/j008/RaPRwHA4
+hGVZuHr1Km7cuIEPP/wQxWIR01PTCIIAvV4fd+7cwf/8n/8T9+7dw0cffYSf/exnODw8xDfffION
+jQ1EUYQ4jrG6uooPP/wQN2/eNBMl7ty5g9/+9re4c+cOfN/HcDjE4uIi3nnnHdy8eRMAsLCwoAPf
+UmEwGODWrVv413/9VzMJYzAYmOef67ooFouYnZ3Fxx9/bCocOI6NfD6PMAzR6/Vx+85t/PM//zNu
+3bqFTz75BMPhEM1mE7du3cL6+rrJKs+eK9euXYNSCsvLy8jlcqYSgu/7aLfaePDgAX7zm9/gyy+/
+RLvdRqfTgW3bKJVK8DzPTPhhjD1VVYMQQgghhBBCCCGEEPKXjQLfhJwRWYAxy8rNAj6ALhGbz+eR
+z+dN+VhdYnZUtlZKiTiK0e120Ww24fu+LrWdyGODlMPhEJ1OB61WKy2dKzEcDhGGIXzfR6vVwu7u
+LjY2Nsya4/1+H8Vi0WRhAkCz2cRgMMDMzAzOnTsHz/NQKBRQKpWeu7+C67LIq6ur+MlPfgLGGC5c
+uAAAmJ2dxdWrV7GwsIBKpYKpqSlUq1VzTI6K4ygtk6sDj1999RUeP34MKSWWl5fNRALHcTAcDhFF
+EXq9HhqNBjjn6PV6SGRijum4LIDaarXMcc8CSOM6nQ7W19dN1mmxWDQBTyklut0uHj16hJmZGczP
+z8OyLExPT2N6ahrb29u4e/cuHj58iL29PSilTCBISmmCjWEY4uHDhyYTeW5uDrlcDo7joNPp4O7d
+u7h//z4ePHhgMkMLhQLy+bwJ8DuOgyiKsLu7iyRJMDc3B8uyEEUR6vU6CoUCpqenUS6XzfV47tw5
+LC8vIwgCuK77UsHNcVlJ8J2dHdy5cwcPHz7Ezs4OpJQoFovwPA9Jkpj9jeMYjx49QhiGsCwLs7Nz
+SJIE1WoV09PT2NnZQa1Ww5MnT/Do0SPMzs6aQOHh4SHu37+PW7dumfOclUQvFAqwLAtJkmB3d9ds
+y/b29onbkiQJ1tbWTCby7OysuaZ6vR7u3buHe/fumdcJwxD5fN5kvWb3TTa54Pz582ZCy2nEBYcF
+C+VyGe+++y5+8Ytf4L333sPc3Bxc18Xy8jJu3rwJ27ZRrVYxNzeHaqX63KoMWQltqSS2t7dx7949
+3L9/H48ePUKz2QTnHNPT05iamjLl1R3HQbfbxd7ennlm7e3v4auvvsKdO3ewublprs35+fmJyTe+
+7+Phw4em5HelUoHneSZrut1uo9FoII5j3L9/31TPKJfL4JxjMBhAKYX9/X18/vnn2NzcxPT0NCzL
+Qr1eh+M4KBQK4JwjSRLU63V8/fXXpkLDwsICfN9Hkuiy6o1GAwcHB3j8+DHK5bIphV+tVk0GdK/X
+w6NHj9Dtds2xaDQaCMPQPFey50EWMM8y1rPPEVN+XylTMaNcLpu/y4RhiCdPngAA+v0+HMfB9NR0
+mhmuJ3Q0Gg0cHh5ibW0N5XLZ/F6pVDKfV4wxHBwcII5jzMzM4MKFC0iSBIVCAUopPHr0CHfv3sW9
+e/ews7ODMAwnJlVk90m27EH2RQghhBBCCCGEEEIIIRkKfBPylsiC2wBM2WTLssward82EPk8zWYT
+9+/fNyWCP/zwQ0RRZIKkW1tbePz4MRYXF3H+/HkU8gUsr6y8UOCbCw6mGN67+R7y+TwYY7h8+TIA
+YGlpyaxBPb7O+En7qTMqe+j3dVblV199hX6/j6tXr+L69eu6vPWFiyiVSpCJfC0Bx263azIgq9Uq
+bt68ada1bbVa2Nraws7ODtbW1kxQ78qVKyiXy3j8+DF+85vfYGNjA7lcDvPz8yaAa9s2hsMhhsMh
+NjY28OTJE9TrdZM9PDU1hVKphP39ffzpT3/Cr371K0RRBKUUpqenTSnkbL3pLJDVarVw7tw5XLp0
+yWS2bm5uYmFhAT/84Q9x9epVFItFlEolk+meBay/zfWWBdySJDEVB9bW1uB5Hubm5jA1NYWZmRm4
+rmsCgE+ePMHm5iZqtRpKpRIunL8Ax3Zw/fp1WJaFvb093L17F41GAw8ePECpVML169dRrVaxv7+P
+L774Anfu3EGSJLh48SIuX75syotnay9vbm7it7/9LR49egTP83TlgqkpTE9Pw/M8c+yzbTk4OEC5
+XMa5c+cwNzuHUrmERqOBzz77DL/61a9MoLRSqWBpaQnLy8sA9Brww+EQjUYDzWbTHPPTjAuOarWK
+H//4x5ibmzNZ9Z7n4dKlSyiVSmZCQS6XM5MlnidOYkRRhMePH+M//uM/8M0335jrY2VlBcvLy6hW
+q2at9Sw4nZXDD4IAm5ub+MMf/oBvvvkGjuOgVCrh4sWLmJ+fR7FYRK/XQ7fbxf7+PjY3N7G1tQXP
+87CysoKZmRlYYnI7+/0+tra2kCQJZmZm8MEHH5jz1Wq10O/38fXXX8PzPFMmv1wu48qVK4jj2FRb
+2N/fx4MHD5DP53H16lWsrq6a6z+TPT/v3buHubk5LC0t4erVq+ba6Ha72N7eNsHx7P1KpRLm5ubM
+NVmr1XB4eIhms4lz587hww8/NOdCCIFyuWyeJeVy2QTNLctCq9UyVRZqtZop7X7+/Hlcv3b9qXMW
+hqHJTs8+D1ZXV83nwf7+Pp48eYL19XUsLS3h4sWLAICFhUUIwXH79m38+7//O2q1GqSUqFarmJ+f
+x8LCgrkXB4MB7t69i3a7/aYvfUIIIYQQQgghhBBCyClEgW9CzqgsCCQTiTjRQZV+vw/f9yGEMJmk
+L7ru9bfdhqwMdLVaNcGgbNvW1tZMGe2DgwNsbm7qLNhyCcDyc1+fMV2S+tLlS7hwUWd6Z6XO5+bm
+MDM9WkObcZYGsnoTr5EFc7NA0c7ODtbX13FwcADXdbGysoK//du/xeLiIubm5iCEwGAweC3HKwxD
+s77w7OysKUfOGDOlhtfX13F4eIiHDx/CdV3kcjksLS3hyZMnuHXrFg4ODvDOO+/gwoULuHLlCq5c
+uYJSqTQRLL1z5w7q9To2NzexubkJ3/dN4Onu3bv47LPPMDs7i5WVFaysrOD999/HBx98YILeBwcH
+uH//Pvr9PpaXl0354tu3b4MxhunpaXzwwQf42c9+htnZWczOziKKYkRRCMaYCXZ+m+spWzd4a2sL
+t2/fxvb2Nq5fv45z587hypUruHr1KiqVChqNhik1fvv2bQwGA2xubmJjcwPnzp3D+fPn4bkevv76
+a+RyOQyHQ6yvr5uy+AsLC9jZ2cG9e/ewsbGBhYUFvPvuu7h69SqWlpZQqVQQBAEGgwG2trZM1vD1
+69dx/fp1s5ZxtVpFs9k0VRTu3LmDTqdjjn0cxwijEAcHB7h37x4+++wzlEqliWP/4YcfmooKh4eH
+ePDgAQaDwWu9d1+FbHJDsVjEezffw7vvvmsy1xljOkC9pO9zxpn5nedNisgmnvR6fWxsbOCrr77C
+3bt3sbS0ZK6DDz74AOfPnzcB3rW1NTx48AC+7yOOY1Oa/s6dO3jw4IGZ0HDt2jW88847mJ+bx97+
+Hg4PD/GnP/0Jjx49QqPRwMWLF7G5uQkpJaampia2K0kSsw71zMwMPvzwQ4RhaAK633zzDba2tmBZ
+FiqVCubn5zE3N4fr16+bySlZEHp/fx9bW1vY399Hq9Uy5eDH7wVdSryH5eVls8Z2Vrr/zp075vfL
+5TKmpqZw+fJlXLlyBaurqxgOhwiCAF999RU2NjbQaDSwvb2NWq2GqeoUbMuGJSxMTU3h/PnzJkN/
+fn4etm3DdV08efLEVIe4f/8+1tbWUCwW9XINSQyZyKeOTxAEaLVamJ2dxeLioilrLqXE119/bcrU
+7+3tYWNjA57nQQgB27bx6NEjfPnll5BSYmVlBefOnTPny3EcDAYDs4TH1tbWC11LhBBCCCGEEEII
+IYSQvywU+CbkDIuiyJS93djYwJ07d7C7uwvP83D58mUsLi6aTOjXgTGGxcVFs9bs5cuXcfmSzsiW
+SkIIYbJgbds2pcNfNrDMGDMB7/FAx3gw7SS+76PZbGJjY8OsywsAV69exfLyMm7cuIGlpSWUS2XY
+tv1aS+cuLCzgo48+ws2bN3Hx4kVcuHDBBDYrlQra7TZ6vR4sy0Kz2cTDhw+Rz+dRLBZRr9cBAOVy
+GZcuXcInn3xiAmtZgHxqagpra2t4/Pgx6vU6giDAw4cP0Wq1UK/XzfrGSinMzc3ho48+wocffmgy
+aJM4QRRHmJmeMYG0c+fOmSBxVj0gC1RlQeRcLgfOAyglX3oN53FBEGB/fx/7+/uo1WqmnPvq6io+
+/vhjLC8vY3Z21mT4V6tVbGxs4Pz58zg8PEQYhnj06BFs28bMzAyqU1VcvXoVH330EbrdLg4ODjAc
+Ds018+DBA5Nduri4iB/96Ee4du0aqtUqgiDAwcEBDvYPzM9kGcPZOs6zs7PI5XJmWzY3N7G+vo69
+vT1EUYS1tTV0u13MzMyg3W6j1WpBSomZmRn84Ac/wA9+8ANTIh7QEyOyUuyrq6u4cOECZmdP5/re
+4xhjYJxBQJh7Mvt78LE/Ay90bURxhNphDds729jd3cVwOITjOLh48SJ+/vOfm+tyenoaYRgijmOU
+SiUsLS2ZEuQbGxvY29tDGIbI5XK4ePEifvKTn+DixYtYXFxEsVhEvpDH3NycycIWQiAMQ9y9exdR
+FD016WBqagoffPABfvCDH+DSpUu4evUqoigy2ef7+/u4f/8+isUirl69ips3b+LatWsm8B3HMXZ3
+d/H48WN4ngelFHq9Hur1OiqVCmzLNu/lui4uXLhgrskrV66Y7OdWq4UgCLCxsQHOORYXF3Hz5k0z
+KWNlZQVxHJv10R8+fIh2u40wDFGv13XGe0lXasieQbZto1wum7LjSimzPEUYhma5gWyJjG63a5bA
+yORyOZw/fx4//OEPzeSQleUVAPrzIKtIMRgMIIRAq9XCzs4OkiQBYwz1eh1xHGN6ehrvvfcePv74
+Y1MKPltqoVqtYn19HZVKZWJJDUIIIYQQQgghhBBCCAEo8E3ImZVlBHa7XTQaDWxsbODevXtoNpuY
+nZ3F+fPnsbi4iFwu99q2gTGG5eVl/PKXv8Qnn3yCmZkZzM3NjUquM45Hjx6Z7OUs8J0FH1/mfY7+
++bhsP70O+uTfZRmIvu/jq6++wh//+Ee8//77+OSTT/Dhhx/i2rVrWFpagiUscMFf65rKi4uL+MUv
+foGf/vSnmJ6eRrVaNfswNTWFTqeDwWCAnZ0dE6TN1kNvNBpQSqFareLy5cv46U9+Ci/nmUBztVqF
+lBKXLl3C+vo6GGMIgsCsi5yVge50OpBSYn5+Hp988gl+/vOfm+A1oK+rOI5x7fo1vW62sGDZFg4P
+D00gMAuUZb+XTa5IksQEx7+NIAhweKCz3ev1uikHfunSJfzkJz9BqVQyr5/tbxZsVkohiiKsr69j
+ZmbGlKO+evUqfN/H559/jq+++gqbm5vpdaKvzVqtZoKHP/3pT8263L7v42D/AA8ePkC9XjeB72y9
++XK5fOy2rK6uIkkShGGIx48fmxLcw+HQBL5nZ2fx8ccf42/+5m+Qy+Umjr2UEleuXEEURWZiwVnA
+OYdi6ql79dtMggjDEIe1Qzx69Aj7+/vwfR+2bePy5cv4L//lv2B5eRme58FxHBOkPX/+PKIwQqfb
+wdraGtbX17G/v28C36urq/jFL36BxcVFOI4DIQTm5vR68N1u16x3HwQBHjx4AMuyMDc3h0KhYLZr
+ZmYGP/rRj/CP//iPmJmZwczMjAkGV6tVfPXVV2CMoVwu48aNG/irv/ornal94SJsRwdonzx5gs8+
++8wEvvv9Pur1Omzbnlj+wbZtXLp0CX//93+Pq1evYmZmBsViEb7vw/d97O/v49NPP4UQAsvLy/jp
+T3+Kd955B6urq2YNc6UU9vb28Ic//MEE9ZvNJjqdDubm5uB5HlZXV7G8vDwxucgf+hgMByYgnSQJ
+vv76a1OKv9/vo9/vT5RmH9/mf/zHf8T169cxMzOLqamq+TzodDq4f/8+6vU6OOdotVrgnKPf7wOA
+CXxXq1V8+OGH+K//9b+aTHjGGJRSmJqawq1bt0yZewp8E0IIIYQQQgghhBBCxlHgm5AzYjAYYH19
+Hf/5n/9pgi6cc7NO7draGpIkwfT0NK5cuYJr167h8uXLyOfzr3W7PM/D9PQ0ZmdnUalUJt6vWCqi
+UCggn89DCIEoikwp4pf1bbOIG40Gbt26Bdd1UavVAOjs6tXVVZNFOV5i+HVyXRfVahWzs3MopRmX
+mXK5jLm5OSwuLpoS3oPBALVaDfv7+2g0Guj1emaN21/9v1+ZQNW4r776Ctvb22i1WoiiyBzrrJS2
+UgrFYjHdDp1dfFJJ7fFS+uPrxGeB4yywKYT4TgHvTBzHaHfaZl3hbrcLKSXu3buH//iP/zg2yHXr
+1i1sbW2h3W6btYT7/T6SJEEul8PKygqUUqjVaiYDe3d3F5999hniOMbU1JSZKDI/pzNhLctCv9dH
+p9vBwcEB6vU6er0eoijCgwcP8Otf//rYa+b27dvY2tqaOPZZMDtbUz2fz5tlAWZmZiC4gLAmz2M+
+n4dS6syVcX5V25sFow8ODkzJ96yc9/z8PKrV6rHXm1IKjDNIKVGv183vlkolVCoVs4710e2sVqpm
+3fZ+v2/W7A6CYCLwbds2KpWKedYV8vrfsmoLnueBcw7LslAoFDA9Pa1/rlgw10upVEIul4PjOOCc
+m/LgSZJMBJI558jn8+YeLZfL5vcKhQKKxaJZK911XXN8SqUSisWieZ1CoQDP88zPRlGEMAwhpUSS
+JBNro/d6PfOM8X0fQRDA9300Gg3U63VEUWQmdQRBAMEFuBidA8YYCoUCZmdnMTMzi0qlPPF5kG13
+Pp83E3M6nQ6SJDHnPZ/Pm3M1OzMLxtnEeS7kJ/fnrN0jhBBCCCGEEEIIIYSQ14sC34ScEb1eD/fu
+3cPh4SFc14XjOGCMmQBboVBAoVDAhQsX8OGHH+Ljjz82WYJHM/NepSwIOh4YHf+3LDM4C/JkwZPv
+y+HhIb788kvkcjkkSYKpqSksLi7iwoULWFlZmQhsvW7PCtIIIVAoFDAzMwPXdc0kgU6nY9aQbrVa
+GA6H+M///E+T1X1UrVYzGcozMzMQQpis8CiKYFkWqtUqyuUyPNd7Zmny7zuolK2hPL6/vV4Pv/vd
+70xZ56Pq9brJFM32N7vGXNfF4uIiCoUCNjY2cPfuXbRaLTSbTRweHpr1om/cuIHV1dWJDPo40eud
+t1ots356t9s123LcpINGo4FarWbWcB8/9lLq0v/VahWVSgW5XO5UHfvTJLsOWq2Wydi2bdsEe4UQ
+xx4fxhiUVBgOh+h0Oojj2GSG5/N5CH7877mei0qlgmq1apaO6Pf7iKLo2PcYf9ZxwWFBl9weX45h
+PNv96Htm10X281kQ+rj3Ovo62TUzfhyelVmfBeJt2wbnHFJKSCmhlEIQBNjc2MSdu3r9+qzSRBAE
+CILAbGsURdja2kIYhmYiR7a944HvbBv1RBj+1P0qhIDjOHBdF5xzRFGE4XA4EfTPJinkcrmnXpsQ
+QgghhBBCCCGEEEKehwLfhJwRg8EASil0Oh0T6BjPvnvnnXfwzjvvYGlpCdeuXcOHH3wIxvXPnVRa
+/FUExLNA0HHBqKNBlyRJkCTJa11H+7jjtre3Z9bKLhZ1Fnq5VDals08Dy7LgeR5KpRJs2zaZoIPB
+AN1uF/1+H77vo9frIUkStFqtY18nO8au60IIYUplD4dDxHEMIQRKpRIKhQIc1/nOWdqvUlY2enx/
++/0+dnd30Wq1jg3uZfubla/OAp3ZdTc1NYWpqSmzJvfjx49xcHCA3d1dTE9PY2FhAe+++y4WFhbM
+dXp0WwaDgTkXe3t7aLfbz9yW7HWyEs2+7yNJEnDOzfWXBf/I07KgbK/XQxzHcBwHxWLRBMCfddyk
+kgjDEP1+H3Ecw3Vdc7wZPz44bNs28vk8CoUCOOcm0/loMPqpQHT6fBWWeCogf1JAOgsMjwe+s7Lk
+xzk6qSj7/ywAnn0dN/EImAyyc87NkgDD4RDNZhNr62v48ssvsb6+jt3dXdTrdfOMtm3bXKfZ8VRK
+IUkSxHF87Hl4ViCeM73dWbZ29ozLqiFkGePFYtFM7CKEEEIIIYQQQgghhJCXQYFvQs6IUqmEpaUl
+LC8vI5fLwXVddDodbG5uYnd31wSWwzDUQYk0W+5FggevOxD9JgMY2XHL1hg/PDzEkydPcP/BfRRL
+RczOzmJubu6Nbd+4LJsSwEQpZymlKadcrVaxurqKS5cuHRt4yrIxHccxQd9arWZKdn/bdZdfdj++
+DSmVCQJ6nodqtYpisYjV1VVcvnz52EkK4/tbrVYxNTWFa9euoVKpTvzceGWC8d8dL/180vnItqVQ
+KODixYu4fPmyCd4dty3jAfdGo/G9Hvu3SXYdvexxO+n6e5nX+C7n6TSe4/Ft6na72NjYgFIKt27d
+wp07dyClxLlz53Djxg0zCSDLYu/3+/j0008xGAy+2zbwyfXfx/98NIB/Go8hIYQQQgghhBBCCCHk
+9KPANyFnRD6fx+XLl/HJJ5+YAN/W1hb+4z/+A41Gw5SyzoJ4Lxo4kOr7y75+EyqVCi5dugTLsnDv
+3j3U63VsbW1hbW0N09PTEEJgdnb2ucdrPCtTKgmBV5sprsaCvkez6JVScF0XU1NTKJfL+MUvfoFf
+/vKXxwZfs23MMo4dx8GXX36J4XCIer0O4OUDid+nLNic7W+hUMDPf/5z/PKXvzx2Xe3j9rdcLqNc
+Lk/83HEl+bPs1/G10I97/WxbPM/Dz372M/zN3/yNyaR/3rZ88803CMPwTBz70+JVBK5f5/IOz/Ki
+2/gqroGTSqk/T6/XQ7fbRafTwZ07d/Dw4UMsLi7i/fffx0cffYSVlRWsrKzoyhNxgp3dHXQ6Hdy/
+f/+1HKPnZckTQgghhBBCCCGEEELIi6LANyFnhG3bKJfLWFlZwdzcHBYWFlCpVNBut82axt1uF5ub
+m1hbW8P9+/fNurWmvK5tmYzXrGRtFEWwbfvYYO54BvJZVS6Xsbq6ikKhgCAIMBwOoZTCgwcPTBng
+xcVFuK4L27YBAEKMyrNngWcpdQll13WfCqpla+Y+q2Tx82RrSjebTURRZNYlzsqzd7td8z6lUgkX
+Llx45hrRnHHwdJ3dqakplEoluK6LVqtlyndHUWQmSTwr2HRcQCrblldJCB0wLhaLaDQa5j0KhQLO
+nTuHXC73Qvtr2zYc20EURej1euj1etjb2zPHtlQq6TW9PQ/7+/u4e/cuyuWyzqIfex3HcUzma7YO
+cbYt+Xz+hbZld3cXpVIJnueh3W6bMu7jE1Qo0DcpO4eFQgFCCLPetO/7ptw2gBPLaWfnrdFomN8N
+ggAyOf5ZlpVG7/V6ZtKF53nHTix5GwyHQ/OsCYIAlmWhWq3i3LlzePfddzE/P4/5+XmzDncUR8jn
+86+lNL8QwiwJ0Ol0MBwOzbIMr4qU0lw3lrDABad7jhBCCCGEEEIIIYSQt9TbOapLyFuIcw7P81Au
+lzEzM4OFhQWUSiVEUYRyuYyvv/4ad+7cQRiGmJ2dxdTUFC5fvjwRxHFd1wRLlVKI4xhBEMC27aeC
+mFmw93UEOL9PWZB4YWEBAOA4DtrtNtbW1tDv9zE9PY133nnHrHut188VE8cqW9M2DENEUfRUtu+r
+OFbZxIVarWYC7K7rmskLBwcHGAwGEEIgiiK4jgvHdY5dW31ctm5uuVxGLpdDFEVotVrodDoIggBK
+KoAfH0RUSul1jNVk4Hs8yP8qrw0hBPL5PKrVKnZ2dswkhWyt5lwu90L7yzkH4wzBIMDBwQG2traw
+sbGBg4MD+L6P6elpzMzMIAgCbG1twfd9LC4u4oc//CEsy4IDvfb5+LZkQddszekX3ZZ8Po9yuYx8
+Po84jk3wO1tD+qTXyDL//xIJIZDL5VAul2FZlgmGZmt+y0SapRzGZddrLpdDpVLB3t4efN83gd5E
+Jsce1zAI0W630Wq1zOSGfD7/1ga+oyhCt9tFu92GZVmYmZnB0tISLly4gPPnzyOXy8ESlqkGkt3j
+r+NzwLIseJ4HzjmklGaiShiGz/y9l9mW8SVAXNeFy92/2HuLEEIIIYQQQgghhJC33ds5qkvIWyjL
+QM3n8yiVSiZ4Z9s25ufn0Wq1cPfuXTSbTayvryOfzwMApqenMTs7awLn2bqtUkoMBgPUajVIKSGE
+QBzHplx6u91Gv99HEASvNPvu+1YoFLC0tGTWiC4Wi/jjH/+Ix48fo9fr4cqVK9jc3MTCwoKZHGBb
+tjlWnHPEsc7GPjw8hJIKnHGTLZ/ECTqdjjlWuVzuxKBMHMdpEK4P29bvla0L3Wq1cHh4iO3tbQRB
+YLKEFxYWMD8/j83NzYkM5k63g4IsIJfLmUx1YLRu9XhQWnAxUf671+uh1WqhVquh3qjD8zxTRjwL
+NGclwB3Hged5Zs1x27YhpUQQBOj3+/B9H2EYpl+RyYz+NizLQqlUwtzcHHK5HOI4Hu1vp2OuYcdx
+JvY3juOJSQeWZcFxHAyHQ2xvb+P27dvY3t7GcDiE4zhYXl7GzZs3cf/+fezu7qLT6WBzcxP7+/sA
+YAKu2bbk83lEUYQgCEyJ6Cxg97xt4ZyjXC6jUqkAAPr9PprNJhqNBhqNBjzPMxMpsmOfTbLIgv3j
+7/EsSZxgMBzA9/2JteLz+fxEtnwSJxj6Opic/RznHIVC4YV+LpfLoVAovLbgIeccxWIRMzMz5jrI
+MpQPDw/Nsc8m7GQl6+MoRrvTBufc/G4URRgMBmi1Wmg0GnAcB46jJ4wkSYIkSdBs6dfNzsf09DQq
+lcqxpfXfBkmSIAgC+L4PxvREgVKphHK5jFKpBACI4shMNqjX6xgMBq8l8G3bNorFImzbBmMM/X4f
+rVbLfAkhzOdVkiRoNptm4ki2L88zGAxQO6yh0+2gXCqjWCqae9exHTDOXks2OyGEEEIIIYQQQggh
+5PtHgW9CzjDHcVCtVsEZx/Xr103gtN/v49NPPwXnHJVKJV2n2EOxWEQ+n4fneRgMBtja2sLvfvc7
+rKysYHl5GZZlodFooFar4bPPPsPa2hp834fjOJiZmXnTu/ud5PN5XLhwAZVKBc1mE7u7u+j3+9jY
+2MD//t//Gz/84Q/hOA6WlpbguA5KvGQCgUEQYHt7G7///e9x7tw5LC8vw3EcE7z885//jLW1NXS7
+XViWhenp6WO3odPpYGNjA9PT06Zc/WAwwKA/wNr6Gm7duoV79+6ZDMyVlRWsrq7i0qVL2NzchOd5
+6PV6uHv3Lv75n/8ZKysrOHfuHKqVqinfmwWMhsOhydJWSmFmZgbnz5/H/fv3IaXE3t4e/vznPyOK
+IiwvL2N5eRlJnCCMQnQ6Hezt7eHg4ACXL1/Gu+/egBACnueZYOLOzg4ePHiAKIrAOUcYhvB9H51O
+57nZmidxXRcL8wuQUmJjY8OUZr937x7+1//6Xzh//jzOnTuHqeqU2d8sU3cwGJj9nZ+fx+LiIrrd
+Lu7fv///Z++9u+M6rjXvp0/qnHNANzIIgEnB9mv5jmVfz5076RPOh5hZa26yfcfp2kqURDEAIIBG
+6gY655xPv380a6vBTIoSRWn/1uKiDDb6VNWpqnNcz97PxqefforhcIhwOAyn04n19XVsbm5iPB7j
+4uICjUYD2WwWn332GTY2NrC+vg6n04lgcNYWMfaVSgXJZBK/+93vEI/HEY1E4fF4ntmW6XQKp9OJ
+eDxONZKLxSJu374NXdcRiUQQjUYxnU4xGAzQbrWRL+RRKBSQSCSwubmJWCz2QuPXarewu7uLBw8e
+kPjtcDhw9epVXLt2jYTcdqeN3d1d7O3tPfa5q1evkhD/pM/Z7XZc3b6Ka9evPbHO+etA0zT4fD6s
+rKzg4uKC1trx8TH+8pe/YHl5GeFwGG63m1wYyuUy8vk8Op0OHA4H4vE4crkcNE1DpVLB2dkZPv74
+YyQSCYRCISof0Gw2sbe3h+PjYxSLRaysrGBtbQ2JRAIOh+OFhNW3DSE2D4dDCgjIZDI4OztDMBik
+Eg/FYhHpdBrJZBLHx8evvK6fhcViQSgUgtVqxdHREYbDIQqFAu7du0eZ+06nE/1+H41GA5lMBru7
+u8jlcjCZTC/0XLq4uMBHH32Eg4MDBAIBBINBRCIRxGIxhIIhmMwmyjpnGIZhGIZhGIZhGIZhGObt
+hoVvhnmLEcK3zWbD5uYmhsMhNE3DvXv3cHR0BLvdjlgsBrvdjkgkAo/HTWJuu91GNpvFF198gWq1
+im63CwBIpVJIp9N48OAB0uk0JEmCy+V60139xlgsFrjdbmiahvPzcySTSZyenuL8/By5XA6qqpKg
+JrJCxVhVq1USiqvVKjqdDmRZRjqdprE6OzuDruuU2fskWq0WUqkUrFbrzHr5YaZ3pVLB0dERHjx4
+gOPjY1itVkQiEVy/fh0LsQXEE3Hcu3cPRqMRxWIRyWQSrVYLV65cQafTQSwWo4zsTCaD8/NzNJtN
++lkikcDKygoJl8BMfP3qq6/QbrextbUFg8GA0WiETqdDda+TySQ++OADhEIhyrI1m80YDofIZrNU
+99dsNlOmeavVovrVL4tRMyIQDMDhdGBnZwdmsxm5XA7Hx8fodDq4cuUK2u024vE4JEmCLMvIZrM4
+Pz9Ho9Gg/q6urkJRFHQ6HRwdHeH27duIxWK4evUqtre3sb6+jo2NDZTLZezs7JDw/fnnn8NgMCAY
+DMLv88Pv98Nut2N3d5cCIERbNjY2sL29jXg8TlmpuVwO5+fnlKkqSRIWFhawsrICWZ5l3U+nU5RK
+Jdy9exedTofGfjKZoNvtolgs4uDgAIeHh3jvvffg8/leWPhut9vY2dnB73//e6pXHQgEIMsyNjY2
+SPhutVrY2dnB7373O/qc3++HJM0CaEj4bnfo+0SNeZ/PN/u+KxvfmvCtKAoC/gCMRiP29/dhNBrR
+7/eRSqVgMBhQqVSwvb2NaDQ6CxzpdnF8fIzDw0P0ej188MEHuH79OlKpFGX+p9Np3Lp1C7VaDRsb
+Gwj4A8gX8jTep6enqFar2NzcxPr6OuLxOOx2O+r1+rfSxzeJEL5HoxHG4zGq1SpyuRzS6TTNA1mW
+cXR0hPv372N/fx+5XI7qpb9OzGYzQqEQfD4frFYrBoNZeYLd3V3ouk4idavVQiaTof02n8/D7Xa/
+UJsuLi7wH//xH/j4448Ri8UooGQ0GsFsNtOYsPDNMAzDMAzDMAzDMAzDMG8/LHwzzFuMwWCAqqpQ
+FAXhcJjsa0ulEvL5PFqtFu7du0f2yQ6HAx6PB2traySCnZ+fo9/vo1KpQFVVdDodylgVtcHnrbTf
+ViRplrFss9mwuLiIa9euQZIkZLNZ5HI5nJ6eYm9vj7JNfT4fgsEg1tfXIcsyAFA96Gq1CqPRiE6n
+g06nAwAkAj7LlrrX66FUKlF2aTKZRKfTQavVQrVaxWQyQSAQQCwWw/LyMhYXF+Hz+SiDVWTjjsdj
+1Ot1nJycoNfrIZlMQpIkSJJEtXsBwO12w+PxwGq1wuVyQdM0bGxsIJvNApjV+hUW6sVikSy22+02
+qtUqBoMBJpMJdF2HxWxBNBrF+vo6ptMpGo0GDg4O0Gw2kclkYLfbYbfbUa1WyYb4pe+R/LUdv+iv
+oihUG1v09+joiIRlkbWr6zo8Hg/cbjfa7TaOj4/JPn4ymcBmsyGRSGBjYwPRaBRutxvRaBSrq6uU
+NXx4eAiv14vl5WX4fX4oqkI14q9evUrlAFqtFk5PT9Hv93F8fExtabfbaDQa0HUdbrcbbvcs0MTp
+dMJms2FjYwO5XA7D4RCTyQQXFxcYj8czC/2HGd/dbheVSoXG/mVrGYt71263MZlMoCgKut3upUAE
+UUtZ2EaLWuOP2llPJmP6XLPZfOrnXjeyLMNsMUOSZ0EbV69epSzker2Oo6MjdDoduFwustkXASRG
+o5Fs6mOxGDY3NzGZTKBpGvL5PGWHi4zvVqtF/9tut2NpaQmJRAI+nw+qov4ghW+bzUZrpVAoIJPJ
+YDQa4ejoCL1eD6qqQlVVshQX9c6/DWt7VVWppEAikcDa2hoFMxwcHKBQKCCdTlNpDjGvVVWFpmkv
+JFb3+33aC8T/Fvb36XSayoZ4PB54PB64XK5ZLXCjkcVwhmEYhmEYhmEYhmEYhnnLYOGbYX4AGAwG
+qvc9Go1QKpVQr9cxGo1w//59NJtNsvr2+Xx45513YLfbKeO5Xq/j7OwMVquVBBGXy0U21jab7U13
+8bWO1UJsAT/96U+hqiq63S6Ojo5wcXGBe/fuQZIkbG1twe/3IxaN4f3334fFYsHp6SlSqdRjYyWE
+ElFX+1ljJURzITALAXQ8HkPTNDidTly/fh1Xr17F2toaYrHYrMazqmF5eRnD4RDBYBAnJydIpVKU
+7TydTslaWwhCHo+HLL9nmcsO2O0OvP/++7BardSfSqVCGcjArM60EKOEYKuqKqw2K5aXl/Gzn/2M
+fjefzyOdTkPTNMTjcWpjv99/ZWFUlmVIBgmLi4v4xS9+AZ/Ph9PTU5ydnSGXy+Hi4uKx/qqqSvbx
+oVAI3W4Xh4eHKBQKNPeDwSCWlpawvLwCm80KRVEQCoVw7do1AMDOzg7S6TQCgQA2NjYQiUTgdrth
+MpmQSCTwwQcfXGpLPp9HNpuFruuPtcXtdsPn89HYOxwOqKqKd955BxaLBcfHxzT2lUoF9+/fp7EX
+oq3NZoPVOmvnyyBqXuu6fqnW+NM+M//3075v/nPP+uzrXKOaqlH2/nA4RCAQwNnZGVKpFM7Pz5FO
+py/VsRd1qoPBIGw2G4yaEQsLs3XucDiQTqdxfn6OcrmM/f39S9ey2+1YWFhANBrF9vY2FhYWYDKZ
+vhVr7+8DYpwkSUKhUEA+n6dAmuPjY5hMJhiNRjidTni9XqysrFD5g9eNLMswm83weDzk6CDWejqd
+RiaTofrzQpAW//2iddjF3B0MBqjX6xgMBmg0Gkin07h9+zZ8Ph8CgQAWFxdx5coVrKyswO12Q5bl
+ZwYyMQzDMAzDMAzDMAzDMAzz/YOFb4b5HmMwGEhgnUwmcDgcMBqNUFX1sew7UQt1PB6jUCig1Woh
+nU7j4uKChPDBYAC/3w+TyQSLxYJut4tsNjurLfwwk05kO2uaRrbYDocDDodjJsJqGkwmE1wuF0Kh
+EFwuF9VHfbRNiqKQSCHsoG022wuJFa86XpIkUftETedZ5rpMbQwEA7DarFS/+cGDB9B1HdVqlWor
+A0AoHMKNGzegqir6/f6lsRqPx/B6vfD5fDAajbDb7VQr2eFwwGq1QlM1mM1muFwuBAIB2O12Ck4Q
+tbhFm7xeLwKBANlxLy0tIRAIUN8WFhZgs9ngdrupnnSxWEStVkOv17s0DzweDwnpsVgMPp8PdrsN
+mqbh6tWriEQi+Oyzz9Dv99FqtVCr1agtkiSRM8DMHt8Do9EIi8WCpaUlGAwG6LqOUqmESqWCTqeD
+8XgMs9mMYDBIFvGBQAButxsWi2UmZsvPz5wUAjIkIBqNkj29LMtoNBooFApUQ1sg2qqqKpxOJyKR
+CFm912o1qKqKaDSKeDyORCKBaDRCvxsIBLC9vQ1d15HL5TCdTjEcDtHr9dDtdmG3O6AoCiKRCMxm
+M9l8z7dFZPw/qS3hcPjh2NthNpuxvb2NcDgMm82GwWBAbRRZxWJ9uN1uhMNheL1esmJ+EeYFQkVR
+yHrfbDZfylyVZRlWqxVut5s+53K5YDabL61hWVYufW4ymTzxc9/GOpYVGbIi0zwIBAJQ1VkG9vw8
+ELbcwWAQdrsdoVBoVtLAqCEcCl8q1VAqldBsNtFoNDAYDMi6PxAIYHV1FdeuXcPa2hqCwSCm0yna
+7TatIxHkIrKfH80ElmUZdrudAodEwIhwi5j/nMi4drlctK+aTCYoD8fb4/GgVqvB6XRC07Sv18Uc
+Yo/zer20B6uqClm6fD2j0QiXy0XXs9lscLlciMVisFgsyGQyKBaLOD4+Ri6XQ61Wo3ERmdg+n4+C
+NOb7psgKZFmGxWKhrGmHwwGjZnzq80BcXzwPxF7pdDqxtrYGRVFgNpvR6/VQLpfR7/cxGo0AgMZW
+9F+0z2azPbNGtwiQEPvufFkEk8kEt9sNr9eLYrFITgsiaMhqtVLpC1mWv7XMd4ZhGIZhGIZhGIZh
+GIZhXg8sfDPM9xBxsK4oCm7evEk1k69cuYJ4PE6CyJNwOpzYvLIJs9mMSqWCarUKh8OBq1evwu12
+w2w2w+FwQNM0WCwWrK6ukhW6EIH8fj/6/T4JqkKYCYfC8Pv9MBqN+M1vfoNAIIAbN24gkUjAYrE8
+ZonucDiwtbUFo9EIWZZhMBjIYvrbQFVVWCwWLC4u4u///u/h8/lw7do1LC0tXWqfpmmYTqdYXFzE
+hx9+CK/XC6/Xi2AwiHA4jHA4DGCWGSn+22w2Y2lpierimkwmBAIBBAKBS2NlMplgMpkQCoUQDAVh
+d9jx61//Gl6vF1arFQ6HA5IkXbKUNxgMsNlsCIfDiMViJLjMYzQa4XQ4EY/HqXZzs9lEu92+VOfW
+arWSeCayWMV8EYKnwWDA1tYWrFYrNjc3H2uLEHl9Pt9svjlmv+/1+kiwCoVClL0+mUwQCoUQjUYh
+yzOx8p133sHGxgbW1tYoYONlMBqNcNgdWFhYoBrUjUYDrVbrUn8tFgv1NxqNUoCA3+9HrVbDYDDA
+cDjEysoK/P7ApWsIQXVzcxMGgwHxeByLi4uU8W+zzcZKZL/GojGM3xvD5/Oh0Wig3W5fsnUXbXG7
+3YjFYojFYpSlqsgKLBYLDAYDrc+NjQ2yyxdjbzKZ4PP54PV6EY/HSbR9Eex2O65duwZZltHv9ykQ
+Y/PK5qX9QnxOkqRLn9va3Lr0OZvN+sTPbW5ufmeZsGIeRCNRvPvuu/B6vWg0Guh0OhgOhxTs4nQ6
+qTzBwsIC2WB7PB76rnA4jEajgV6vh9FoRO4IgUAA0WgUkUgEPp+fxGpRf/oXv/gFbDYbotEoNjc3
+SQydF0AdDgd+9rOfwWAwwOfz4cqVKwiFQrDb7ZfEaKvVips3b9J/R6NRhEIhOJ1OGtv/8T/+BwqF
+Am7evAm/3w+z2fyYgL6ysoJ//Md/xPb2NmUpe71emMyX664vLCzgww8/xPLyMmKxGKLRKAKBAJwO
+J1RNxdraGmRZxubmJmq1GjqdDo2Lz+dDJBIhG/iNjQ1ySfB4PBR0sLW5hcFggJs3b+LGjRsIhoIw
+m82PuRX4/QHcvHmTAkgkSSJXBFmW6V6pqopgMIh8Pk+OGDabDV6vF3a7nazQTSYTZaVHo9EX3mOm
+0ymVERClHYSbQavVwvHxMYnsYk+ORqP0M84CZxiGYRiGYRiGYRiGYZjvL4bpt+1ZyjDfMiJr9/z8
+HJlMBplMBqVS6dKBtRCh3jZE1mGn08F0OiUB+lmZZ5PxBIPhAIPBAKPRCKPRGIoys5M1m82Xst/6
+/T4Gg+HDa+n0vaqqQp/o0KezusCSQYIkS1AUBZqmYTKZkFhqsVhgs9memJk4GU/Q6/cwHHxtGayo
+CtVP/TbGa17MEO2zWq0wGo3UvvnPdTtddHvdmU21okLVZqKP0WjEZDzBeDLGaDTCcDDEYDiArk9f
+aqx0XUe300W704YsK5BlibKmJ5MJtV2WZRKcNE2DqqiQla/FLl3XMdWnGI1HJOZOJhNMJjp0/evv
+kSQZiiKTTe98piIAautgMMBwMMRoPHpiW0TfNE2bZXDKEkajESaTCQaD2fwajyeYTmfW1+JaBoOB
+2mcymWZjrxlhkAwvVS93vr/D4ZAyMV+kvyKQYzwe0702Go3kWDB/DWE7L4IXxOeMRiNkaZZ1PJ1O
+oU90jCdj6vvT2iLP3Xsx9iLoQwhuYm2KgJZHx17MBeHu8GhAydOYjCfo9rro9XrUb2ElLQIevo3P
+fZs8a+yn06/rliuKQnNW7C9ivOfnrPjfX9vlS9AernlVVek7xLXH4zEFJ2iaRjbqkiw9tte1O220
+2x3ab00mE2RJvvRZXddp75Qkia4ryzIUWUGvP3MbGI3GsFotl+prz1+v1+tR0IvFbIHZMhOahaAs
+6Pf76Ha6GI6G0FQNqqbSXmeQDA+fAQNa2+PxGJIkQ5IMNBYikGIwGFBwkclkgmSYXUe0eTgcUuDN
+k9os1vFoOKKfqdrX81ysWVEGYvjwc/P7rSzJmOhf3z/RZ7FnP2lO/p//83/wv/7X/8Jvf/vbSz+f
+DzBTlK+fS0ajkcT+lZUV3LhxA9evX6fAmG/ieFAul3F+fo6LiwtkMhlks1mYzWZEIhEK3FlYWIDF
+YvnW1xbDMAzDMAzDMAzz6ogSWplMBhcXF8hmszAYDJf+/10sFoPT6XzTTWUYhvnRwRnfDPM9RtSf
+FZbjL4KsyLAolucenIvD/VflRSyYZWVm64vvqET4fNasyWR64c954Hni54TdstFo/EZ9MJlM8Hg9
+r/4FmNlYQ5q16Vl9ex6yIkPGTFh92T4J0fhl7LffdH+fdw0hUD9rLcxbb3+TgA2RnfyiQvbLIivy
+C+0Xr/tz3ybfZOznx/tV5pDBYKD5ISy2nzVWotzEs5Ak6ZljarPZXmhfFoFMz+N5e6HF8vxnBYBn
+zoEXbbMYy6chgjy+i/0FANWHFy4eo9EI3W4Xmqah2+2i2WxSMEC9XkcoFHroCuCD2+2Gy+WC3WaH
+zW6jNc026AzDMAzDMAzDMAzDMAzzZmHhm2EYhmEYhvnRItwBdH3mYKHrOkajEWXon5+fw2azweGY
+lV9YW1vD6uoqYrEYFrQFyuxnGIZhGIZhGIZhGIZhGObNwsI3wzAMwzAM86NG2PkL0RsAOp0OarUa
+WdKrqopYLIZ6vY5eb2bxPplM4Ha7ySZdlKoQQjhngTMMwzAMwzAMwzAMwzDMdwcL3wzDMAzDMAzz
+CLquYzweA/i65nupVML+/j4ajQYePHgAr9eLQCCAcDiMSCSCUCiEUCh0qT47wzAMwzAMwzAMwzAM
+wzDfDSx8MwzDMAzDMMwjCOvz8XiMwWAASZIwHo/RbrdxcXEBVVWhKArC4TA2NjawubmJzc3NS6K3
+JLEFOsMwDMMwDMMwDMMwDMN8V7DwzfxgEZlarVYL5+fnqNVqb7pJDMMwDMN8h5yfn6Pdbr/y70+n
+U/pb13X0+31MJhP0+33IsgwAGI/HVA+8UCjg9PQUbrcbFosFVqsVJpMJJpMJnU4H5XIZlUoFrVYL
+k8nkTQ8PwzAMwzAMwzAMwzAMw/ygYOGb+cGi6zqGwyGq1SpyuRyGw+GbbhLDMAzDMN8hyWQSrVbr
+tX2fEKvH4zEMBgMMBgMajQbG4zEqlQoODw9htVpht9vhcDjgcrngdrvhdrsxnU7R7/dJPNd1/U0P
+D8MwDMMwDMMwDMMwDMP8oGDhm/nBMplMMBqN0G63kcvlUCwW33STGIZhGIb5DkmlUmg2m6/t+4T1
++TzD4RCtVutSPW8hfjudTvh8Pni9XhiNRgCAJEmUDc4wDMMwDMMwDMMwDMMwzOuDhW/mB4mwJB2N
+RqjVajg5OcHR0dGbbhbDMAzDMN8hzWbztWZ8P43JZHKpnvdwOES32yVb9Gq1Ck3ToCgKTCYT/H4/
+NE1708PDMAzDMAzDMAzDMAzDMD8oWPhmfrBMJhMMh0PU63WkUins7++/6SYxDMMwDPMdMh6Pv/VS
+J9PplP4Ier0ehsMhJEmCLMtQFAWqqsJkMsFms0FVVXi93jc9PAzDMAzDMAzDMAzDMAzzg4KFb+YH
+i8FggCzLMJlMcDqdfMDMMAzDMD8y+v0+Op0OGo3Gt3odUe9bIDK7FUWBpmlQVRWapkHTNFitVphM
+pksZ4gzDMAzDMAzDMAzDMAzDfHNY+GZ+kAjRW1VVuFwuLC0tQVF4ujMMwzDMj4lCoYB0Ov2tCt/i
+nWNe+DabzVTH2+FwwOl0QtM0ejdxOp1QVfVNDw/DMAzDMAzDMAzDMAzD/KBgJZD5wSJJElRVhcfj
+gSRJ8Pv9b7pJDMMwDMN8hxwcHKBeryObzb627xQCt/jbaDRSVrcsy5BlGVarFU6nEy6XCz6fD4FA
+AKqqYjweYzKZQFEUDshjGIZhGIZhGIZhGIZhmNcMn7gxP1hEVpXNZoPf74csy2+6SQzDMAzDfIdM
+JhMkk8nX9n2SJEFRFMrwliQJdrsdXq8Xfr+f/nY6nbDb7bDZbLDb7XA4HBgMBmi1Wmg2m+j1euj1
+em96eBiGYRiGYRiGYRiGYRjmBwUL38wPFlmWoWkavF4vgsEgAoHAm24SwzAMwzDfIZVKBZ988slr
++z4hfKuqCkmSYDAYqKTKlStXsLGxgc3NTXi9XphMJqrlrSgKarUastkscrkc8vk8RqPRmx4ehmEY
+hmEYhmEYhmEYhvlBwcI384NGHDabzWY4nc433RyGYRiGYb5DLBbLKzu+GAwGqt8t3idsNhscDgdc
+LhesViusVivC4TCWlpawvLyMRCKB5eVlOBwOaKoGWfn62pPJBI1GAyaTCaqqXqoJzjAMwzAMwzAM
+wzAMwzDMN4eFb4ZhGIZhGIZ5BIPBAFVVoSgKNE2DLMvweDxYXl7GysoKIpEIotEofD4fXC4X3G43
+WZxrqgZJlt50FxiGYRiGYRiGYRiGYRjmRwUL3wzDMAzDMMyPHpGBLep3m81mGI1Gsiw3mUyIx+O4
+fv06rl+/jpXlFayurcJhd0CSJc7gZhiGYRiGYRiGYRiGYZg3DAvfDMMwDMMwzI8aSZIgyzIURYHR
+aISqqnC73QiHwwiHw/B6vfB6vQiFQohGo4jFYvD5fDCZTDBILHgzDMMwDMMwDMMwDMMwzPcBFr4Z
+hmEYhmGYHy0Gg4FqeGuaBpPJBIvFglgshuvXr+Pq1atIJBJIJBJwOBwwGo3QNA2KokBRFEgSW5oz
+DMMwDMMwDMMwDMMwzPcBFr4ZhmEYhmGYHwXCjtxgMECWZVgsFqiqCpvNBqfTCZfLBafTCafTiUQi
+gbW1NaytrSEUCiEcDsNoNLKlOcMwDMMwDMMwDMMwDMN8T2Hhm2EYhmEYhvnBYzAYKLvbYDBA0zRY
+rVY4HA7EYjGsrq5ieXkZPp8PPp8PHo8HHo8Hbrd7JpArKoveDMMwDMMwDMMwDMMwDPM9hoVvhmEY
+hmEY5geNJElQVRVGoxGKokBVVZhMJvj9fvj9fmxsbOCdd97BtWvX6GdGo/FNN5thGIZhGIZhGIZh
+GIZhmJeAhW+GYRiGYRjmB4nI8DYajXC5XHA4HPD7/QgEAgiHw/D5fPB6vYhGo1iILcDv98Nms0GR
++RWZYRiGYRiGYRiGYRiGYd42+FSPYRiGYRiG+UEihG9N0+B0OrGwsICNjQ1cu3YNm5ub8Hg8cLnc
+sFjMUFUVmqZBlmRIsvSmm84wDMMwDMMwDMMwDMMwzEvCwjfDMAzDMAzzg8Tv9+P69esYjUaIRCKI
+xWJYXl7G2toaFheXYLNZYbPaICvym24qwzAMwzAMwzAMwzAMwzDfEBa+GYZhGIZhmB8kCwsL+NWv
+foXV1VV4PB54vV54PB643W7Y7XZomsbZ3QzDMAzDMAzDMAzDMAzzA4GFb4ZhGIZhGOYHSSAQgMPh
+wM2bN2E2m2GxWCBJLHQzDMMwDMMwDMMwDMMwzA8RFr4ZhmEYhmGYHySKrMBoNEKWZaiqCoPB8Kab
+xDAMwzAMwzAMwzAMwzDMtwQL3wzDMAzDMMwPEkmWoEkaNE2DwWBg4ZthGIZhGIZhGIZhGIZhfsCw
+8M0wDMMwDMP8IGGxm2EYhmEYhmEYhmEYhmF+PHCRQ4ZhGIZhGIZhGIZhGIZhGIZhGIZhGOathoVv
+hmEYhmEYhmEYhmEYhmEYhmEYhmEY5q2GhW+GYRiGYRiGYRiGYRiGYRiGYRiGYRjmrYaFb4ZhGIZh
+GIZhGIZhGIZhGIZhGIZhGOathoVvhmEYhmEYhmEYhmEYhmEYhmEYhmEY5q2GhW+GYRiGYRiGYRiG
+YRiGYRiGYRiGYRjmrYaFb4ZhGIZhGIZhGIZhGIZhGIZhGIZhGOathoVvhmEYhmEYhmEYhmEYhmEY
+hmEYhmEY5q2GhW+GYRiGYRiGYRiGYRiGYRiGYRiGYRjmrYaFb4ZhGIZhGIZhGIZhGIZhGIZhGIZh
+GOathoVvhmEYhmEYhmEYhmEYhmEYhmEYhmEY5q2GhW+GYRiGYRiGYRiGYRiGYRiGYRiGYRjmrYaF
+b4ZhGIZhGIZhGIZhGIZhGIZhGIZhGOathoVvhmEYhmEYhmEYhmEYhmEYhmEYhmEY5q2GhW+GYRiG
+YRiGYRiGYRiGYRiGYRiGYRjmrYaFb4ZhGIZhGIZhGIZhGIZhGIZhGIZhGOathoVvhmEYhmEYhmEY
+hmEYhmEYhmEYhmEY5q2GhW+GYRiGYRiGYRiGYRiGYRiGYRiGYRjmrYaFb4ZhGIZhGIZhGIZhGIZh
+GIZhGIZhGOatRnnTDWAYhmEYhmEYhnlZ6vU6crkcisUiTCYTzGYzHA4H3G43nE7nm27ea2c0GqHf
+76Pb7SKbzSKbzULTNMTjcUSjURTyBRSKBQyHQxiNRphMJvh8Pvh8PpjN5jfd/DeOGL9+v49MJoNc
+LgdJkhCPx5FIJJDP51EoFDAYDGA0GmE0Gmn8LBbLm24+8x0znU4xGo0wmUxwfn6OdDqN4XCIhYUF
+LC4uwmg0QlEUSBLnEsyj6zrG4zGazSZSqRTS6TS8Xi/i8Th8Ph8kSYIkSchcZJBKp9DpdBCPxxGP
+x2E2m6EqKmRFftPd+E6ZTqcYj8cYj8fI5XJIp9NoNpuIx+NYXFycjYuq8lx7CmL8dF1HPp9HKpVC
+tVrFwsIC4vE4bDYbNFV7bfOqWqkik82gVqvBbDLDaDLC6XTC7XbD4XC86eFgvmXEc6FUKiGdTiOf
+zyO+EEdiMQGn0wlFVp4718Q+ORgMkE6nkUql6H1uYWEBsixDVVUYDIY33d2XHpdyuYx0Oo1sNouF
+hQUkEgm4XK4f5d7OMAzDvFlY+GYYhmEYhmEY5q2jVCrh1q1buHfvHjweD4krG+sbP0jhezAYoFar
+oVgs4qOPPsJnn30Gm82GX/3qV7Barbh3/x6++uortNttOJ1OuFwuXL16lYICfuyMRiPU63WUy2V8
+9NFHuHXrFlRVxYcffgi3242dnR189dVXqNfrcDqdcDqduHr1KoxGIwvfP0L0iY7BYIBer4c7d+7g
+T3/6E1qtFn71q1/R/DCbzdA07U039XvFaDTCYDBALpfDn//8Z/zlL3/BlStX8Otf/xrXrl2DoihQ
+FAX3d+7jj3/8IwqFAj788EMKNLHZbD86cWQ6ndJc29nZwR//+EdkMhl8+OGHsFgsCAaDAACj0fim
+m/q9RAjf/X4f+/v7+H//7//h6OgIf/d3f4ff/OY3iEajsNlsMCuv5zmYL+Tx2Wef4eDggN49FhcX
+sb6+zsL3DxwRENXtdpFMJvGHP/wBd+7cwS9/+Uv8wz/8A1RVhdlsfu4eNh6P0ev10Gg08Omnn+JP
+f/oT7HY7fv3rX8Plcs2+Q5Lfqr1wPB6j1+3h5OQEf/jDH/Dpp5/iww8/xG9+85vZ3mXGW9UfhmEY
+5u2HhW+GYRiGYRiGYV4b4hC/2+mi2+vSz41GI6xW62sTERuNBpLJJD7//HMEg0FEIhEAQCgU+s76
+qus6JpMJiRb9fh9msxkWiwWKokCWZBgkA9rtNjqdDgwGA8xmMx1qSrL0whk9k8kE7XYb5XIZe3t7
++Pjjj+FwOBCPx/GTn/wEqVQKd+7cQa1Wg8/nQzAYhMfjwfr6+nc2Ht9nxuMxOp0OqtUq9vf38fHH
+H0PTNESjUfzyl79EOp3G3bt3USqV4PV64ff74XK5sLq6+qabzrwE0+kUnU4HnU4Huq7TelNk5aXW
+mz7VMRqO0Ov1cHx8jE8++QTNZhPhcBgffPABzGYzC5FPQNdnAQPVahX379/HX//6V7TbbaysrGB5
+eRmqqkJVVZyenuLTTz9FNpuFz+fDzZs3YbFYoKoqANDzQ9M0Guu3TQgSTKdT9Ho9tNttjEZjWCxm
+ym6XZAlTfUpC2NnZGW7duoWzszP4/X785Cc/gcvl4gCL5yACLtLpNG7duoW9vT24XC7cuHEDbreb
+Mua73S663R4URYbZbIbJZHrpZ7F4hnzxxRcIhUIIh8OQZfm1vXtMp1P0+320220MBgNYzBaYLebZ
+O4UsQ5KkS+8e3W4Xw+HwiZ9jXj8iyCKTyeDLL7/ERx99BKfTiZs3byISidAe9ix0XcdwOES73cbB
+wcGl97mf/exnUGQFE+MEMt6O/U4EBPT6fWSzWdy+fRt//vOfKYAwHo9DURSYTKY33VSGYRjmRwQL
+3wzDMAzDMAzDvBam0yn0iY50Oo3bt29jd3eX/i2RSOC9997DjRs3YDAY3ioLx6f1tdvtzsSK0zPc
+u38PR0dH2NzcxPb2NiKRCCwWCzRNwxdffIEvvvgCsizj2rVr2N6+CqvVAqvV+kKHpABgMBigqipM
+JhMURYHBYIAkSXSYaDKZoGkajEYj/S3L8ls/zq8LSZKgKl+PnxAFFEUha3hN0y79YSvrt4fpdIrp
+dIrJZIKdnR3cunULnU4H29vbuH79OpxOJywWC4vV32NGwxEajQY6nQ7u3buH+/fvIxaLYWtrC8vL
+y7Db7bDb7W/VmhQC5cHBAW7duoVCoYDt7W1cu3YNPq8PFqsFqvJizwDm1RgOh2g2m6iUK7hz9w52
+dnbgdruxvb2NtbU1OBwO2G3270VQhZgvJycnuHXrFk5OTnD16lVcu3YNgUAAVqsVRqPxoYDfxdHR
+Ee7fv4/z83NsbW1he3sboVAIdrudnUoYhmEYhvlRw8I3wzAMwzAMwzCvhel0iok+q4n7xz/+EX/8
+4x9JeL1+/TrsdjuuXr0KWZ4dML/tomy/30etVsOD/Qf47W9/i88++wwffvghFEWBqqrwen2wWqe4
+c+cO/vf//t9QVRWDwQCBQAC67oXJZHph4VuSJKiqSrWFxdgJ4Vb8mRe/ZzUi3x6R6NtEkiSo2tfC
+N/3sYTDBo+NnNBrfuhqbP3Ymkwkmkwl2d3fxz//8z6hUKmg2m/D7/RQ4wsL395fBcIBur4uLiwv8
++c9/xu9//3tsbm5iOBzCZrMBACwWy1sjfItAjMlkgmQyiX/913/F0dER/uEf/oGykBVVYeH7W2Y0
+GmE4HKJUKuFvf/sbfve73yEWi2EwGFBZlBexp/62mU6nmOpT6LqO4+Nj/O53v8OXX36J//yf/zPs
+djuM2uzZr6kaut0uarUadnd38a//+q/Y2dnBr3/9a3qnkGWZhW+GYRiGYX7UsPDNMAzDMAzDMMw3
+Zjqdot1uo9Vqo1AooFwuo1arYTqdAgCKxSLy+TwKhQJsNttLZTt/X5FlGYqiwGKxwO12w+v1Un3G
+mbWqAfpER7vdRrVahaqqaLVaGA1H0HWdxuZFr6WqGh1sS5JE158XvkX2shBuJYmFW+BrkVvcG2EF
+O5/x/eg4svD9diGyvoWlfbVaRbPZxGg0wng0fqn1xnz3zAcnOBwO2k/Fs0JRFEhvaSBPt9tFtVpF
+pVJBo9HAYDDAaDR7DjDfLsJhRtM02O12eL1eOJ1O2Gy2h88C5Xuzz+tTnazOa7UaKpUK6vU6er0e
+RuMR9MlsvkiSBEVWYDab4XK5qE8isEsEFzIMwzAMw/xYYeGbYRiGYRiGYZhvjD7R0Ww2kc/nUSqV
+0O/3qRblfN3X8/NzhEIhEhbfZlRVhdVqRSQSwbVr16BpGq5evYpwOAybzQaj9vqyS2eikPJE4Xs+
+S/nRjOW3JTvy28ZgMJAtvBgXMYai7vD8+H1tic4CAsN8F4i9zO/3Y3NzE4PBAAsLC4jH43A4HDCZ
+TDBwIA/zkggHFkmSsLGxgV6vB6/Xi8XFRTidTphNpu+N8P0iGCQDjEYjrDYrFhYWqI751tYWgsEg
+rFbbW/9uxTAMwzAM801h4ZthGIZhGIZhmG/MRJ+g2Wwik8mgUqlgMpnAZDJhPB5jMplA13XUajWc
+n59D0zR4vV6YzebHvkfUCZ/oEwwGA/T7/Yd2sTp0fQJJkiFJBlQqFXS7Xfpuke2p6zpGoxHVwAQA
+o2aEqqkYDUcYjoaYTHRMp7PMqXlbcEmSYDAY0O/3MRgMHn73FNOpTp9RVZX+WwipTqcT4XAY/X4f
+wWAQTqcTkiSj1W6h0+mg3W5jMpnAYDCg1WohX8hjNB5hMBjAarXBaNRIqNY07YlitSRJ0DQNZrP5
+Uv1p0Q7xu/OZy8ISfb7+8WAwwHAwxGg8wng8ga5PHmbESVAU+VI/VVXFVJ+i1+9hOBhios9se2VZ
+htVqhdlsJsFg/r71ej30ej0AMwtZk8kERVYgyRJ99lXaMj8u4npiHAeDAXRdx3g8y+wV36OqChRZ
+od8xGk00fiJw4Emi98tkzIvxHQ6HaLfb6Ha7VHfdYDDQvBOZh8Je3Ww2z+auPn1uPzRNfWw8Hr2+
+GNN+v/9w3emXxlSSDND1Wdazqio0d8RYiPs2nU5htVphs9mozfP0+326hmSQIMmzuWnUjJBk6YXv
+r6qoUDX1ifN+OBxiOBxiNBo9/DOmNQuAMvbFPdN1Hd1uF51OB61Wi/addnvmQCFJEoaj4cwyeC5I
+RFXUF7Y4nk6nGI/HGAwGaLVa6Pf7UBQFk8kE0+mUxnE++GQwGKDXnWVrXgpU0YxPvO5kPEGn20G3
+26WgDDFfX8aBQKyP8WRM82oymTw2r8R9UNSvA2gGgwF6vR6GwyHVHBbfKX5PliVoqgbN+HAvlJVv
+bBUt3BfsdjuCwSASiQSCwSA8Hg/MZjMkScJkMkGnMxuf0WhE62wymWA4HGI8HtOePb++xZqeHz+x
+9gbDAfq9Pj0bnrZm5uespmnQNO2Z90O4fTSbTdTrdYxGI3IkKJVKsFqtGI1GsNlslAEu1pVYQ6PR
+CO12G4PBAIqiPLFvYq7Nrx9x30aj2b4i7uV4PH7sHop7/zJrQaw38YxVZOXSHHrSuAwGA3S7XQwG
+A7qu2INkWUa320Wv16PnvVjvYt6JNS/6K8bgeciyTM/DQCCAeDwOl8sFt9s9cwDRZg4g888w8Q4g
+9pHpdApJkiHLEqrVKrXz0Yx9MS7ze/DL9KPT6dB8GQ6HmE6n6PV6qFQqyOfzs2dMp03uFZqmIRAI
+wGAwUG1vo3G2l45GI3Q6HXQ6XciyRM80Yf0+v7aFC8r83vjoXjL/TjY/LqJPs/6Ldl1+V3qeED8c
+DmnMxfeJ/WC+LWKNDAYDAIBkkKCoX7vePPq50XAEYBYsMP99Yu0PR0NaH6IsAQBa+4++7z1pvs0/
+71qtFobDIVqtFnR9Su+sYu/QjBrMJvNTx0E8X6bTKXr9Pu0/06lO159/vjx6j+b3+0fvkXgfEnuX
++L5H943xeEztmD03ZnN4/l6LcdE07YXX4fy9Fnv17Bk/hsVinq1FRYUkS29VIArDMAzz/YWFb4Zh
+GIZhGIZhvjHT6RS1Wg3pdBr1eh1msxmRSGRmMzwew2q1otPp4OTkBE6nE4lE4onfMxqN0Ov10G53
+cHx8hOPjYxK5+/0+CanFYhHJZBKdTufSIa6wCL19+za++uorGAwGLC0tIRaLIZPJIJPJoN1u04F1
+LBbDwsICPB4PrFYrNFXD8ckxTk9PUavV6EA0FAohFAohEokgFltAJBKeHXiOJyiXy9jZ2cHt27cx
+Ho/h9/vRbDaRTCaRTCZx9+5ddDodAMDt27fRbDZhsVhgNpvh9/uxsLCAxcVFhEIhyhZ/FFmSLwnb
+4jBWHDg/eiA6L3yPx2P0ej10u12cnJzg9PQUpVLp4aF4hw6mnU4nIpEIwuEw9bfb7eL05BSnZ6do
+NptoNpvweDy4fv06bly/AYM0E0ZFsEG73cbOzg52dnZgMBiwtbWFzc1NOOwO2OwzIVUIrPNtabfb
+j7UlHA4jEokgFAohEAhcGhdxAF8sFnF6eorT01O0Wi0KMhCikMfjgdfrhc/nQzgcRjAQpPGbP7AV
+guV84MCLZsyLgw9xOG0AAIAASURBVNyLiwvcvn0bd+/excrKClZXV2E0GmnePZrRKuoX93o9lEol
+nJ6e4uzsDM1mE51OB+PxmMZDzD1xX4LBIB0Oj8dj9Pt99Ho9HB8f4/j4GIVCgYQpMS/mHRh8Ph8C
+gQB8Ph/cbjc8Hi92d3dw//596LqO9957Dz/96U8vBVkI0uk0kskkqtUqjVU8HkcinoDT6US3NxOw
+UmcpnJ6dIp/Po91uo91u032x2+2IRCKIRCIIBoMIBoNwOBx0jWKxiPPzc+RyOZRKJZRKJTrIlyQJ
+ZvPsoFysHUmScHh4iKOjI3z++eeo1WrodDrY29sjcVGUJIjH44jH43R9Uef3eUwmEzQaDZyfn+Pw
+8JBsq4fDmXjicDjgdrsRDAaxsrKCtbU1HB0dYW9vD6VSCU6nE06nEwsLC1hYWIDP53vsGo1GA1/d
++Qr37t2D0+lEMBik+x0OhV9YmBRCUq1Ww/HxMc7OzlCv19FutzEcDuk+uFwueDweBINBLCwsIJFI
+4OzsDHt7ezg/P6cgByEKCcHOZDIhFovROIq+fRP0yUx0aTabODg4wN/+9jesra3B6XTC7/fTHr+3
+t4evvvoK5XKZ1lmj0aCgq/n74fF4EAqFsLS0hOXlZRJl5wXKVCqF4+NjXFxc0D45L5aKvot7GwwG
+EYvFEIvFLolyj9LutOk5dOvWLVQqFQwGAxweHuKf/umf4HK5YLFYYLVa4fF44PF4kE6n0e12oes6
+BW2USiUqHSL6Jiy7A4EAlpeXsby8TIE28327uLjA6ekpPffa7TYF31gsFoTDYUSjUZpnbrf7he5V
+t9vFvXv3cP/+fRgMBrLbFhn6JpPpsd9Jp9O4e/cuzs/PaRzF3m40GrG7u4v9/X3UajUSN8V+JQR+
+u92OeDyOxcVFeL0+OJ2O59aynupTegYeHR3h448/RjgcJrcWo9E4Cz6azMTSRqOBo6MjnJycoFar
+odvtYjgc0rtHJpPByckJOp0OtVEEH3W7Xezu7uLBgweoVquP9UMEy9lstrl+zGzKZVnG/fv3cfv2
+bXz++ecoFAoYDoc4OjrCb3/7W9y6dYvmi9/vRyAQQKlUwsHBAUqlEiaTCQL+ACwWC60VMf9MJhNW
+VlYQDoeRzWaRzWYpoELXdXpOLiwsYGlpCQsLCwBAz/Z+v49ms0nPF/FONhgM6HlqMBgowC8QCCAQ
+CDx8X4ohFAo98x6VSmXs7z/A2dkZ7S/BYBCLi4vUFgCoVCo4PDzE2dkZBSoGg0Gsrq5icXGRPlet
+VpFMJpFKpSiwwu/3U9/6/T76vT5y+RxOTk5wcXFB7w/T6ZTm26PP3Sft2SKYJZ/PYzweo1KpoFqt
+0lo1Go20PlZWVrCysgKTyfRY6Y3hcEjPl3K5TO9FQiQW5XSi0ShWVlboHdpgMJDY3mq1cHJyglQq
+dem9WbwvejweRKNRxGIx+P1++P1+CkAV5Yo6nQ5yuRzOzs5oPxIBcWJcotEoFhYWEAwG4ff74fV6
+X2jfmE6nKBaLyGVzyOZm87BYLGJra4vckkQwE8MwDMN8U1j4ZhiGYRiGYRjmG6PrOur1Os7Pz1Gr
+1UiUEod/qqqi3W4jlUphYWEBo9Hoid8zHo/RbndQKhXx1Vdf4ZNPPsH5+Tnq9Tq63S5sNhvsdjsm
+kwll14jD23nh+9atW/i///f/QpIkvP/++7h+/Tru3buHvb09VKtVjMdjAMD29jZu3ryJRCIBr9cL
+q9WKL774Ap9++ilyuRy63S7G4zFWV1dx5coVXLt2DSaTCZFIeJZBORmjXC5jb28Pt27dgtvtxvb2
+NsbjMT755BN8/PHHqFQqaLfbGI1G2Nvbw9HRER3ahkIh3Lx5E++99x6JK08SvkXG0qPCtyRJkAzS
+Y5mmwtJbCN+ixuzu7i4+++wznJycoFqtol6v0++EQiFsbW1he3sbk8kEDocDzWYTew/28Nlnn6FQ
+KKBYLGJhYQEmkwlXr16FDBkG2fDwvrVRLpfx2Wef4fe//z0kSUKr1YLL5cJ0OoXJbIIkSeh2u6jV
+atjb28Onn36Kk5MTVCoV1Go1ansoFMLm5iaNpd1uvzQu4qD3/Pwct27dwueff45yuUwHzqJPQpzb
+2NiAqqpIJBI0fsLqHMAzx+95CNH/7OwMf/zjH/Hb3/4W77//Pv7Tf/pPsFqtuH//PnZ3d+m7hUgl
+7JybzSbS6fQT+yHu9/r6Ora3t7G1tQVVVREMBi+tvW63i3q9jt3dXXz00Uc4OjpCvV5Hs9kkkVhV
+VcrmSiQSWF1dxfLyMuLxOHRdx+eff45/+7d/I4Hz6tWrszGSZGBO/z8/P8enn36K8/Nzygzv9/tw
+u92w2qzodrtoNBo0b5LJJN1fcXAuxP+rV69iOJxlYs8L36VSCXt7e9jZ2SHhVggAsizD4XDA4XDg
++vXrdLD/0Ucf4ZNPPkG5XEaj0UC320UymcTZ2RlkWYbBYIDb7cb169fx/vvvYzQawW63v7Twnclk
+cHZ2hv39fWQyGQow8Pv9iEQiWF9fh8FgQDwex8nJCf70pz8hlUpRYEuv14PT6Xyy8N1s4Pbt2/iX
+f/kXBINBrK+v48qVK5AkCYFAADJeXPhutzvIZrO4ffs2rd9KpULjJdZ8IpHA2toaACAcDiOVSuFv
+f/sb7t69S2LQaDSieWGz2WCz2bC1tYX333+fXAGetG+91DNkqtO+nkwm8fnnn6Pf72NtbQ1ra2uU
+1b2zs4N//ud/RiqVwk9/+lMMBgNkMhns7u5eEmp8Ph8WFhawsbEBg8GAWCw2EzkfZmj2+3006g0c
+HBzgo48+ws7ODhqNBprNJhRFgcVigaZptGbC4TDW1tbo+0Kh0LOF73YHd+/exb/8y7/g/Pwc1WoV
+rVaLhGix91gsFqyurmJ9ff2S8N3pdFAsFlEul7G7u4uzszMS5r1eL2KxGNbX1wEA0WiUxLT5viWT
+SXz22We4f/8+1b0XwQsulwtXrlzB1tYWtra2KDDkReh2u9jZ2cG//du/QZIkhMNhEuJCodAThatM
+JoO//vWvuHv3LlZXV7GxsYGNjQ2qvb23t4d///d/J5FeOLpMJhMYjUbYbDb4fD68++67lMmqaepz
+hW99qtMeeXJygi+//BLxeBxLS0u4cf3GrNb6dOYU02q1UMgXcPv2bXzyySfIZrNoNBro9/v07iGy
+8EWWrxAwxTVEP4SY+qR+eDwevPvuu5Tdr2kaFFmhMRXPZxGYkc/naQ8zmUz0PlKtVumdxufz4caN
+G3C5XRRA8sknn+Cf/umfYLPZ8POf/xxbW1vY2dnB3t4eKpUKOp0OJpMJPSdv3LgBi9mCWCx2KbBK
+uBR89dVX+Pjjj3FxcUHvZBaLBRaLhURySZKwtLSEtbU1XL16FWaz+bnCd7lcIsFf7C/r6+uwWCyP
+Cd937tzBF198AVmWIcsy1tfXYbVaHxO+79+/jy+//JKytVdXV6lvg8EAjWYDJycn+PTTT3Hnzh0K
+LtF1fWYlb7ViY2MD29vb2NzchNFofKrw3e126f1IvOOJtSoCTBKJBAaDAfx+P2WdzzMej+n5srOz
+g93dXRSLRQq8EEGa165dg9lsRjwep3s0HA7RqDeQy+dw+/ZtfPHFF0in02g0Gmi32+QwE41Gce3a
+Ndy4cQP6RIfD4bjkvNTtdlEqlZBMJmlcxJ6o6zoFbWxtbeH69evY2tqCpmovJXyXSiU82H+A3d1d
+7O7u4uTkBH//938Pm80Gq9VKc5xhGIZhviksfDMMwzAMwzAM840QFsDVapUOrX0+HzweD2U8CQvi
+dDqNcrlMB8bzVtnT6RTlchkPHjzA/v4+Dg8PUavVMJ1OSegS2SDiUFEcKM9bnY/HY7RaLVQqFYzH
+YxwdHUFRFDQaDZhMJjgcDjpMrFQq2NnZQT6fh8fjgd1up0NmcZg7HA7RbDaxv78PSZIoc0hkgwth
+WRxyj8djmM1mBINBLC0tUSaNoiiU2ScyLkOhEBYWFuD3+2Gz2Z5qGWkwGCjre3l5GT/96U9hsTw8
+oJYM8Pv9WF9fR7fbhdPphMfjgdvthqqqqNfr2Nvbw+HhIVKpFFlxBwIBuFwuqnetqiry+Txl9zgc
+DhKAwuEwyuUyms0mstksTk9PcXBwAI/HC6/Xg3a7jdPTU+zv7yObzZKoaDabYbN9XXP00bZ0Oh0Y
+jcantqXb7V5qi8iAFtdPJpOU7a0oCvx+P4CZNbzIVK7X6yiXy+j1elAUBYuLi/jpT39K4iQAeL1e
+rK6uklW9yK6atxN91vzXdR39fh/1eh25XA6np6dwOBxwuVyoVCqUQSrEE1VVoU90XFxcYH9/H0dH
+R8jn8wBAh9G6rtN4DIdDJJNJDIdDqKoKv99Poni9Xsf+/j6tmWq1SmMmxl7TNAyHQ9RqNdRqNTid
+TsosFzbLrVYL1WqVLMJFlqI+1S8JrmI9CPtmYT8tfn5wcICDgwOcnZ2h1WpB0zT4fD44nU4YDAa6
+v6VSCV9++SUFWQgra7Fm9/b2kEqlMB6PEQgEqD2iXvu89bWuzw7xxXoTgo5YC8KW1ePxIJFIIBAI
+wOFwPFO4fJThcDg7tH/wAO12GwBozQpBtVAowGCYrcdQKESZmNPpFNVqlfbGra2tx75b7Ef5fB6Z
+TIbqzFN96+cEYcxbEl9cXODg4ACHh4c4Pj5Gs9mEJEkkUMzXt282mygWiw/teb/OXpVlGXa7nTJI
+5zMUxV69s7ODXq+Hd999F4FA4LU8TyaTyUPXjzbt02JfB2Z20NVqFYVCAcfHx7Db7WTlLtaWEJZy
+uRw5HCQSCdpnR6MRkskkzVWRrSmcOIQ7w2QyQa1WQ71eh8lkQr1ev5Tp+yxUVYHP58Pi4iL6/T5l
+XzocDtpbROZ1PB5HIBBArVajLPNSqYTd3V0S3h0OB/VNzDVd1+H3+xGPx8ktZDwe4/j4GPv7+zg9
+PUW1WoWqqnC73bDb7fQ8URQF9Xod9+/fx2QygcVigd1mh8k8e8Y+y+1i3o662+0in89jMpkgkUhg
+PBpfmidibpfLZWQyGeTzeUSjUVitVlit1llJjYdzblaOwkjzXvxsfp2k02la46JsyvPWhQgIEPNK
+ZNJO9AntKyLYRuzHjUYDBoMBTqcTLpeL3j1EVuyjZVYeveaz+jEajXB+fk7zWVVVxGIxqj3e6XTQ
+6/XQbDbJuUAELwkxOBAIoNfrUdDZfOmXyXhy6T2o0Whgf38fk8mE5oPdboeiKOSyc3p6CpPJNHN8
+CYdIiJx/J0smk6jX65Tl73K5aE6Ksi69Xg9utxvNZpNKEjyP+eCBZrOJRqMBp9NJ+6z4TLvdRj6f
+x8nJCT0bzWYzms3mpe/r9XrkGiLeucT+ORqNcHZ2hoODAxwfH6NcLkOSJLhcLlit1oe29hLZ7z94
+8ADj8Rgmkwlut/thOYWv177YI46Pj2E0GimQS4wLMHPySCaT8Pl8CIVC6PV6j9m/C4eG+/fvo1Kp
+0NxRVZUcblKpFDRNQygUQiwWIweASqWCnd0dCv5ptVpQVRVer/dS3yeTCdLpNJWysNpmQrPI2D87
+O8POzg6SySStabFOBeKdamdnB/1+H5Ikwe12PywVMcaTGA6HqNfrqNVqODw8xL1795BOpwHMgnbE
+viys/xmGYRjmdcDCN8MwDMMwDMMwr8z8obIQ/abTKWVUCavcTCaDYrGIUqmEarV6KVPKYDCQYJPL
+5fD555/jk08+IcEoHA6TLbMQGXO5HIl1z6Lf7yOXy8FgMMDn82FjYwO6rqNaraJWq6HdbpM4JMR1
+m82GaDSKaDSKXq9HmXepVAoGgwHLy8t0+Ps0Mcrn9eH9999HLBbD7373Ozpc3dzcxDvvvAO73Q67
+3Q6Px4NAIEC1bJ+W6WIwGCDJM8Fwe3t7ZsuuaVhcXITBYEA0GqWMXnFAL0QFkan1t7/9DSaTCRaL
+Bevr6ySOC+tx0cfj42MS7mOxGCKRCFwuFxqNWYZUu91GOp3GV199hfX1dZhNJjpY/+ijj9DpdODz
++RCLxZBIJBAOhynDulKp4KuvvsJf//pXykJaW1uD1+u91JZSqYRUKoWjoyOYzWYEAgGYTCbY7Q7Y
+7TYcHBzgD3/4A4kg4jA4EonAarWSWCSyHEXWqqIo2N7apqCG5eVlAEAkEoGmaRgMBjR+NpvtlTOP
+KpUK9vb24PV6YbfbkUgkHlqKe7CwsACv14uJPsHJyQn++te/4vz8nDLjxEG9qqo0HqlUCul0mkTr
+eDwOj8cDl8uFarWK27dv409/+hMJMcJCOBgMkmhYLpdxcHCARqPxre0DtVoNd+/exZ///GcKmlhZ
+WaE+ifrRlUoFqVQKd+7codq7kiTRfnF4eIiDgwPU63UsLS1hdXWV7OlFZlyj0YDL5aK6xRsbG1hf
+X8ef//xn1Ot1AMDa2hree+89uFwu2Gw2uN3uS+vtZbKUR6MRZfQJ2+vFxUUKvslkMri4uMDFxQWS
+ySStGZfLRaL2xcUFZfHNM8v8n4lUwpJckiS6htvtfq4gMJ1OMZ7M6qaenJzgL3/5C/b392mfXVhY
+QDgchtPpJNv4er2OarWKZrNJe7LFYoHH40EsFoPT6STxRVEUDIdDFItFFAoF9Ho9PHjwAIVCAS6X
+Czdu3HipWq/flNFohEKhgLt379LzYXFxkerC53I5svqORqNIJpOUuT0YDLC7u4s//OEPaLVamEwm
+8Hq9ZL8tnDIajQYODw/pOfMytWctFgtlZ1qtVjSbTfT7fSwuLuL999+Hz+cjJwuRNdvpdLC7u4vh
+cHipb16vF4lEgvqWz+dxcXGBk5MTRCIRxONxelbquo69vT388Y9/xGAwgNlsRiKRoDUoBOBGo4Gz
+szM8ePCA+u/z+eD1ep9b5kEEcS0uLuLi4oKyk6vVKsZz4pc+0dHr9dBqtVCr1dBsNtHr9cgRRgjg
+0+kUdrsdgUAAbrebnsNCXG80GigUCqhWq6hUKshms5QFu762/o3mka7Psr0zmQw+/fRTfPnllxR0
+JEoxeDweevc4Pz8nIfJRJEmifjgcDjidzkv9aDab5LxQrVaRy+XQ7/cRiUSwsrKCK1eu0L7Z6XRQ
+r9cRj8fx7rvvUmCDmDM2mw3T6RS7u7vP7WOn00EqlcJwOITX68XS0hJkWSbR+/z8HBcXF9A0jazJ
+hUOFeCe7desWuT6Ikiher5eetWLf6/f7z3w3ehJCVPb7/fRuVq/XaYzFHjYYDFCtVlEsFukaoVCI
+LMrnM6BbrRYajQbcbjc9ezXj7BmfTCbxpz/9CZVKBRaLBdFolOzeRTmWdruNs7MzsrV3Op0IhUKP
+1R0XbkdHR0fw+/1wuVyIxWL0XCiXy7i4uEAul8PR0RHcbjf6/T7C4fAll5Nut4t0Oo3JZELvCZqm
+YTQaYTAYIJ1Ok81+LBajEgWBQAD5fB63b9/G3/72N3LzWFpaQjAYhNfrJeeOcrmMQqGAZDIJRVEQ
+DAZh1IywO+zQNA3JZBL/8R//gXw+TwGJ4o8sy2Snns/n8eDBA9TrddhsNsRisafWQAdm7+Gifv2D
+Bw9w7949DIdDcvPY3NxELBajgAGGYRiGeR2w8M0wDMMwDMMwzCujT3SMxiN0OjN740qlQlm+y8vL
+6PV6JHaNRiOykxRZc+KwbDgaotftIZfL0cFYOBymmpMbGxtYXl6+VOu7WCwil8uRbfiTELavnU4H
+S0tL2NzchKZpKBaLyOfzuHfvHonoTqcTXq8Xm5ubWFxchMPhQL/fR6vVwieffELZeLlcDtVqlYTb
+J+F0OREIBnDlyhUcHR3hyy+/hKIoWFtbw4cffgifzwefz0cZo6Je97OEI1GbdXV1FUtLSwBA9qd+
+vx8+78yG0yB9ffg7GAyoHvr9+/extraGSCRC47myskLi8L1793B2doaLiwuk02mk02mqM7y2toa9
+vT04HA7UajXk83ncvXuXsn3K5TKOj4+xt7eHQCCAaDSKjY0NxONx+Hw+DAYDDAYDFAoFHB0d4d69
+e1hbW0M4HKa2rK6uUlvu37+PVCqFTCaD8/NzpNPph5mSfUwmY5ycnODOnTuoVCqIRCJkaXzt2jV4
+PB5yBDg8PMRkMqHxlSQJS8tLiCfiNH4AZnUqPV9nDora5S9zeD/PYDBArVajDLq1tTW65yK7qdPp
+4OLiAnt7eyiXy9jY2EAikZjVAV1egdVmpfFotVrY3d1FvV6nezMcDqlmZjKZxJ07d8hBYHl5Gevr
+69jY2KBsU2Gfm06nn7lmXgXheiDqjN+7d48yq9fX17G6uoqVlRXKKt/f3ycxQPRHCP39fp8O+UW2
+7s9//nMKRBCZcUKoEcEckUgE0WiU7L0HgwESiQR+8YtfIBKJwOfzwWF3QFFfbL09aS8R1vTBYJDq
+W4ss9i+++AKFQgH1eh0XFxdkA+9yuaAoCsrlMllXdzodjEYjmpOzYICv67qKABa/349YLPZCGd/z
+Ga2np6e4d+8ejo+Pqc7u6uoqrl69ikgkQuN8dHSEo6MjEvqAWRZ7OByGLMtUB91sNkPTNPR6Pezv
+78NoNOLg4ICE/Bs3bmAwGMBgMDyW/fptIfpbr9dpz1lcXCSB8ssvvySL8Ww2S/WDjUYjBoMBjo6O
+cPfuXapZK0oibG5uUkZxNpulEh5ir31RzCYz1VUulWZWzpVKBbFYDP/f//f/YXFxET6vDza7jQI+
+kskkTCYT1aSu1+tkob+8vEx9++qrr5DJZEg8TaVSMJvN5DxwenqK+/fvw263Y3Nzk8oarK2tYTgc
+0j4gaoibTCak02ksLCxAlmU4nc5nClCKolAWfavVorYIAXwynkCSJUz0CQlu9Xqd3ESsViui0SgC
+/gBMZhP6vVmpBCH2RSIRBAIBKo1wcXGBw8ND+nN6egqbzYZSqYTxZPyYI8GLIjLSO50OMpkM9vb2
+sLu7S2tmZWUF6+vriMfjFISkKAoKhQJqtRrNB/G3oigkfCqKQsK56Ecmk8Hh4SGSySQODw9xcnIC
+k8lEgXGJRALBYBCNRgN3796l7/jJT36CjY0NeL1eCqQRYv3T3kEeXSudTgeNRgMLCwtYXV2F0+mk
+LOpWq4WjoyOUSiVkMhkK8rNYLCRy3r9/n/ZYYVW/vLxMmd6iH6IvL4PRaKSgpGazSaJ1v98nRyFh
+JS/aK+6fcGEYDoeUqT0r9dCmTHAhfkuSRAEfu7u7GI1G2NzcxNLSElZWVrC6ugpZlukdRwRaiAz9
+TCZDIvo84noieEaUuzAYDDg+PqZnQrFYxOHhIWWqzwvf4hlaq9Vovft8Pui6Tq5JJycn5JyQSqWo
+bnwul8Ph4SF2d3exsrKCtbU1ev4vLy9TsNLOzg7S6TRSqRROT09xdnYGq9UK72BW5ieVSmFvbw/t
+dhtra2tYXFyk8g6KoqBYLJL9vyibsbS0hPPzc3LKmUcE3TUbTWSys8Cws7MzFItF2O12LCws4MMP
+PyQB/3llCxiGYRjmZWDhm2EYhmEYhmGYV2YwHJDFebPZxGg0gsPhoEPswWBAWYKiXmqj0UA+n6cs
+X6tlZqeZz+Vxfn6OVqsFSZIQjUbx05/+FGtrawiFQvD5fJTxJgS2i4sLGI3Gpx602mw2bGxs4N13
+3yWhVxwmiwx0YYW+uLiIra0tOtS12+1kI3p+fo6DgwMAX9dBdLvdT7VKliUZiqJCUVQSTIT9tqgh
+Layqhfj1ohaPwmZW/Df9LX397+JAuFAoIJPJoN/vkwi7vb2NK1euzITAhxbiNpsNrVYLJycnyOVy
+kGWZMjntdjui0SjVl0ylUuj1erh79y5dr9vtIpvNotPpwOFwUP3mYCBImcDFYvFSW0KhENXPnG+L
+3W4n8e7i4gKyLNOBsZgzpVJpZtVptWJtbQ0ffPABZekLK+PRaASr1UrCoahB+6TxA74OGHgdgnAw
+GMT29jaJ/4lEgqxjFUVBp9PBwcEBqtUqAMDpdGJpaQnvv//+LIjB54OmaTCbzXC73VTnWogByWSS
+sp7z+TxlcQcCAbzzzjvY3t6m7NXRaER20UdHRyQgv05LUVGnXIjsmqYhEAhga2sLV69ehc/nI7tg
+q9WK4XCI4+NjpNNpGI1GlEqlS2UPBoMB2cO73W7KDBUZ38IFQNh1CxFB2IML0UGsN1pzD+vMy7IM
+yfBy4r/IXn///fexuLhIWffiO0RG28XFBQDg7OwMS0tLlDl9eHhIYqbI+LRYLLO112zh4uIC2WwW
+AGgOiD69yL0SGem5XA6FQgH9fh9GoxGLi4v44IMPkEgkEIvFZra0D+ul22w2RCIRTKdTrK2tUf31
+7e1txONxOJ1OsqifTqdQFAWhUIgcBE5PT+meCzFqMpm8tnn1LEwmE5aWlnDz5s1ZsMjKCkLBEPTp
+zIa4VqshnU6TPX6tVkMmkwHwdWDKeDxGKBTCtWvXcPPmTcpyFYKo2WzGyckJHA4HLBbLSwVKGCQD
+CZ7Cmh8A2ajP5qP5Um1uEZBisViwuLiImzdvkmgdCUeob2K9DYdD6tvFxQWJv+12G6qqwufzYW1t
+De+88w7ZHk8mOq2lRCKBVCoFq9WKer2Ok5MTyoB9FsJGeWVlhUo0CIvqarV6qVxDtVrF2dkZ2cWL
+Pdxms8Fknq1Xk3m2P4syCA6HgzLBp9MpPB4PotEoBoMBstnspYC2TruD0XgEXX954VvM416vh4uL
+i0u24z//+c+xvLxMWbNiH202myQSz1vCi9rpovayCCB4Uj+GwyFyuRz1o91uo92a2XqrikoZ9/Ol
+IUSgnRC6RbDKi+xhDocDW1tbuHnzJom8VosV+lSn9xsRfCTcBiRJgq7rVL7GYDAgHA7jZz/7GVZX
+VxEKheD3+ymord1u4/j4GLlc7pnvZE9C04yU8X12dkZ7ab/fhz7RqVROq9WCLMuw2WxUFkMEqZRK
+JVjMFpgtZmqPcM7wer0wm81oNBoolUpkY+/xeLCysoL33nvvYVBaAJJkgMU8c2A4OjrC6ekpgNn+
+nkwmsbi4eMn6W5ZlRKNRvPvuu/S8j0ajdF80TaN3YxF0abfbqczK/D26cuUK3nnnHSwuLmJ5eRlO
+hxP6VMdwOKR7JMTkQqFAz8qLiwv0ej1yvnnnnXewublJThhmsxket4dKKDSbTRgMBqRSKUwmEwQC
+ATidTlQqFSo9srq6ig8++IBEafFu5vV6US6X6R1MBGksLy8/5pDT7/dRq9UwmUyws7ODBw8ekDvL
+wsICrly5MnMysNq+U7cQhmEY5scBP1kYhmEYhmEYhnll+r0+WY82Gg2Mx2OqJ7qwsIDxaIzReIRU
+KgWj0Uj25Pl8fmaz+FCQqlarODk9wcXFBdrtNmRZRiwWwy9+8QtsbGyQvaQ4QG61WggEAlQX8GmH
+rA6HA9euXcN//+//naxchaVyrVbDzs4OZVyvrq7iP/2n/3RJqBSHqnfu3KHDTmHVrGnapYydeWai
+h0Ji93xGmOiz+aHo8WjW2PN40ucfzU4WYnMqlUI2myXL20gkguvXruPK5pVZvWxlJjLoun4pmEBR
+FOTzeVitViQSCbLLfeedd2AwGHDnzh0kk0k6mNd1nWpyOxwObG9v48aNGzRm9XqdMriF8B2JRHDt
+2jVsbW09tS3pdJoy7ISVrsfjoUNXp9OJjY0N/OM//iNl/sqyTPNkYWEBw+EQsizToeyj4/ak8fum
+RCIR/OIXv8BPfvIT+P1+EmllWUa9Xsfx8TFlYAOAy+XC8vIyfvazn0HTNJozov7s8vIyZeP3+32q
+2yzEplarhel0imAwiPfffx/vv//+Y2tmMpkgGAxS7fXXKXy3Wi2cn5+j3++j1+vBaDRSYMPNmzcp
+w1pkrE6nUywuLiKVSkFVVcqCFgEhonaosN2ORqMwm80kwAaDQbI4F3MQAGXAiZ8L8fxJ6+1l1hww
+E1rX19fx3/7bf0MoFILb7b6UoSYELEmSkM/PgngCgQA8Hg+J7/1+H81mE5VKBZVKBQaDYWaD3WpS
+/WNgJnz7/X44HA4YjcYXmp+iBvnR0RGtF5PJhNXVVfzmN78hAWS+pnIsFqOazCbzLBAnGAzC7XZj
+MplQVrxw7ZBlGeFwGCaTCaenp5BlGZ1Oh4Tv+b3u20b07b/+1/+KeDxOTgqCYrGIo6MjdDodGAwG
+VKtVygYV9e7H4zHcbjdu3LiBX//613SfgNkeajFbcP/+fTidThKwX5T5+aeqKo2L+JnRaIT54byc
+jCcYyAOax5qmYXl5Gf/lv/wXyvwU9bkBoFqt4ujoiGq312o1yLJMWffiXvj9fly5cgXvvvsu2dXP
+1qCHAgfOzs4wGAzQaDRwenqKcDhM9dSfhizL9CwVAWHCmrtSqcDj8dD+Mi98i8AKj8cDu91O61FR
+FCqLIcbNYDCg1+2h25vVrjYYDCSgzbsbtNqtS3vAyyCE73w+j0wmg06nQ0FwH374IRKJBN0/sWYq
+lQr8fj/Oz8/p3UOsTyF8h0IhAKD1MN8PMbd2d3eh6zoJ+O1Om/a/eav5+fki/l3XdQqUeJF+u1wu
+vPPOO/Qe5Pf7KaNfZHsnk0ly5ikWi+Rwkc1maV+LxWL44IMPKEhm/vki3Ame9072JIxGDW63G6FQ
+iALDhC3+eDKrVV4qlUj4ttvt6Pf7VJ6h3W5TMKIkSzSm3W6XhG+LxYJSqYRCoYBGowFJkuDxeLC2
+toaf/vSn9IwyGAzQPTo8Xg+Wl5dxenpKZXGOj48pmE6gKAoWFhbwy1/+Ejdu3IDL5YbT+fV7oagL
+PxgMkM/nUSgUYDQaH6tLbrfbcf36dfzP//k/4fV64fV66Z1lOBgimUxSwNt4PEapVCIHEvHupSgK
+YrEY3n//fWxvb9O7hM/nozWdy+Uo0CyVStHzyOPxoFqtYjqdwuVyYWNjA7/68FdQVIVqgIdCISof
+lM1maSx3d3fJOUMgRPlarYZqtYq7d+/i7t27uH79Ot577z1cu3YN6+vrCIVCkCUZkvzy65dhGIZh
+ngUL3wzDMAzDMAzDvDLdXpdqQw8GA9jtdrjdbjidzlnGl1GnDBJR73I8HiObzVJGo9vtpowdke0t
+6vF6vV543B5I8uXMJmG9K7Klnya2iGzmQCAAu91OGbfiwF0IpbIsw2KxUNtFDU1gdvAsrjeZTOiw
+ejQaPdVelQS5uazS+Z9R1ukrHNaL73ruvel2UalUUC6X0Wg0qM7n5198jmwu+9jns9ks2XKKjGlh
+ySwOT9fW1ijbUJIkVKtV7O3tUabt6uoqFhcXEQqFZna5ivrstnz+OYl98+RyOZycnFBbhNWpqMc6
+GAxgNBqpTrrf74ciK0+cJ/O15F9m/L4JIrNRCKROp5P+rdlsUt14YWMuLKT//Oc/P7Ftd+/eRSaT
+uTQe8zbZAGC1Wmd2/R4vZSLPf5fJZHqhNfMqiEASYafb7XZxfn6OL7/8ErVa7bHPC4G2VqvBaDTS
+obxY9+K+iezKv/zlL3C5XLNMPKsFVqsVFouF7J0VRcFoNCKBbP6PJEm05l51vQGgPcLn810S7gQu
+lwuBQACFQgGFQoGy/ETWvsvlgsViwXQ6RalUwvn5ORRFgdfjJbvofD5PQkowGITNZnvhNo/HM4Go
+WCySJbPY0/x+P5xO52PC9Pz6EHS7XVSrVdTrdaoN2+12qcyEyPDMZDLodruUgTgczLLIv6vMPUmS
+YLVaqYSAyMoWiFrIYq8XQQeifvdkMoHFYoHL5ZrV9/V4YZAuC6imufn1KmtGzL8nBSlJkgRJlkj0
+eXTeWq1Wyvx3Op2X+iZs9EUwyHzfdF2ntZjL5XDv3j3ouv5Y21qtFvb391Eul0lINZvNZC/9LMQz
+0ePxwO12w26f1Qju9/vIZrMUKGA0GslWvdVqkeuFx+OBUftaHBVOMNVqFY1Gg7J15+ecCHwql8u0
+1kUW9qsGXOj6LOO5WCxSwJ3dbofL5YLP54Pb5X7smSKE6Sc9vyeTCRqNBmq12qV+iNIbYu3UarXH
++jEajkhgfNp8kSX50v79on0WQXrBYJDqpwvhW9dnDgBWq5XmgQgAAEDjIso2PGtcXvX5Mm91LvbI
+4XBI1t/CLabRaFBwjrCet1qt6PV65DgyGc/aLwIDTCYTzcd+v49isUjro1gsYnd394l28aPRCDs7
+OygUCjMB/mGgVbfbvRQYIgIePB4PPRfmA3DEmAWDQVQqFap5/2iNeFVVYbfbEQwE4XA64HA4yFFo
+oA7onbTf70PXZ1nwYu20WrPgD7vdDqfTCY/HQ+8c8/fB4XRQ4IOwgheuEbo+yywX71Uulwtuj/ux
+71AUhe6VCC4Q7+7z4yKeczs7OzAYDBTo5XQ6yX1JONswDMMwzLcBC98MwzAMwzAMw7wyvV6PshvH
+4zHVOLTb7WQnLIRsIVAAQD6fh8/nQywWw3Q6Rbc7qxEu7BqFFaqmat8oE+TRQ2PxM0VW6JD2UWH6
+SQe2wlJZfE6IsN9VPduXZapP0e/36RC+Xq+jVqvh/v37KJVKlw5mBe12myyYvV4vZeyIw0yPxwNN
+09BoNJBMJnF0dIRer4ejoyM6zBR1Jd1uN1RFpXv3aFsajQZ2dnZQqVSe2JZOp4NyuXypLeJAXYy9
+1WolMVFkVD7p3n1XGajzCHvaeYtjgQgoqNVqNB6DwQAfffQR2ao+iqidOp1O4fV6KStOVVUSG4UA
+pWrqS4kir4PBYAAAl0SfBw8eoF6vP9EVodfroVwuo1KpwOVyQdd1OBwO2O12JBIJpNNpTCYTVCoV
+fPnll6hUKmTbGggEEA6HEQqFKDPuuxJbnzWuQmCx2+0kRo7HYxiNRjgcDng8HsqSLZfLSKVScLlc
+VAdZZOKJsgKRSOSlap5OJhMSisbjMdmoC5HraRn+8xbzwCxTen9/H8fHx8hkMshkMlQTXIhJoq5s
+q9WC0WicBaSMvw7I+K6YDyB69L5IkgRN00hYGY1G6Ha7tH8LK2phJ/99yzh8kmguEM8jIZSKmuAG
+gwGj0Qj1eh31eh3D4RCtVgu3b99+7DtGoxFKpRIqlQosFgsmkwncbvcsoOs5tuFC7BM1rT0eDxwO
+B4bDIS4uLkh8E8FR5+fn0HWdnvk+nw+yMpsn4jmTTqWxf7BPLiXFYpGEYtHn0WiEi4sLDIdDco8Y
+j8eQDNIrnW6Kdw+xBwvx1mazQXn4/HqRfVRkPYv2PXjwgPpRKBQe68dkMkE6naaM5clkgtF4hMnk
+23unmA8CevTnwpK/2+3S/eh0OphOZ+8R8+9kqqq+9rWiaRpcLhf6/T4FJwpBt1QqIZvN4uLiAs1m
+ExaLBbFYDN1uF71eDzabjYRvEYwoHFBEaY35wIxqtXrpPaTf72Nvb++xNum6Ts9dRVEoA1vYqz9t
+jB9FUVQKCBVW8uLZ8MR79JQ5J0okCNcGIViPx2MMBgNomkbW+vPvtY+OswgWFMEko9GIgjmm0yms
+VivtiU/rkwgYstlsVHO91+tdKnMhbNXv3LkDo9FI+0s4HEYikUAkErlkGc8wDMMwrxsWvhmGYRiG
+YRiGeWW63S4KhQLVCtQ0Daqqot1uU61bAJSNJjLKstksPB4PHVAOh0O0220Mh0MSpM1mMxT1m1vn
+zotVZIGsyJey+J4legNfCyziwPP7LHoLxOG1OJQcDodkKf0koVCICNPpFAaDgWqQi2w6u90Ou92O
+YrFIGaT5fB6lUgnj8RjXrl3DtWvXEI/HZ4EPD4UNkaXd6XQo+204HKJSqZA955PaIrLrhciiqipZ
+5eu6DrPZTLbd3yST99tAzBdZflz4FlburVaLsgBFttSTsqOB2SHyZDKhzHpxKC0O0EWm4nwQwHeJ
+yFycn2vVahW9Xo8CRh4dA9Eng8FAYpPf78fCwgI5NFQqFRQKBdTr9Yc1WP0Ih8MUFJFIJC7ZHL+J
+IAeBqqqUiS4ESGG9LmqjBoNBaJqGSqWCVCqFWCxGdrXFYhH1eh3Ly8tYXl5GKBR6KeFbOFGIuWQ0
+Gi/Vc3/WGhHZfsPhENlsFru7u9jd3UU2m0U+n6f7C4DslhuNBtWtFcEo3/W++CxxWAj0Yv8SAtG8
+A4TIQBYC8veFRx0LniTqi8CaR/smbOnF/RQWy48iBFcRJCHqSKuqCoNkeG77RECBy+WC3+8ne/xM
+JgOPx4N4PA6j0YRarYZ8Pk8Zw4uLi/B6vLSfj0Yj1Go1nJ6d4s6dOzg9PUUul6N6w7qukzArSRI6
+nQ49p8QzS4iBL8u8yCvmsqqqs3cPRX7hOSFqdddqdZyenuLu3bs4OTlBLpe7lFEv9m5RIkCsqa+f
+d5MXut6rIBwvnnRvRSCFeMcZjUbo9Xq0L4h3MiFKv+61omkaWY/Pgg4UKjNTLBYpuHI4HMJsNsPp
+dJILxXQ6Ra/Xw/n5OQXICWt2s9lM2eyiX/PP3eFwSAEgT0I4QwjBX5SKeJkAO0WR6V1FlmWMx+NL
+++mT7tGjwQmP3iMAJPLPux4IF5KnBYIJ1xKHw4FisYjhcEhBhCLQQYzZ0/ZEySCRgG42myn7fDAY
+PNandrt9KQhLCPMiK144Ar0KItjkuw7yYxiGYd4eWPhmGIZhGIZhGOaVENlSwrZXHGI3Gg2Uy2V8
+8cUX9NlCoYDj42PkcjmYzWZYLBZ4vV6qc/joIf93dZj1otd43dbQ3xVCNLDb7fD5fEgkElhcXITL
+5Xrss0IIETUeRZ32SCTy2Jg9arU6nU4xHo+/toB/JGNQHFKKw1mfz4d4PI6lpaVntkXXdbKJnkwm
+KBaLKBaL1I638Z6I/um6DpPJRGOdSCSwvLz8xD4JYcRoNFKGpagTXa/XvxdBGEJ0sNls8Hq9iEaj
+WFpagtfrfWr/J5MJnE4nWaeK+rjXr1+Hrus4OztDp9OhOs2DwQDpdBqZTAa3b9/G5uYmbty4gZWV
+FbKafZMI4VcIGEJw1rRZbePFxUXKxgWAxcVFlMtlqiE7Go1gs9mQSCQQDAafaMH7vHsgeJl9dL7+
+7P379/HgwQPkcjk4HA5Eo1ESj4RoJ8sy7t27h6+++gqj0eiNjvnzmO+/mHNinL6p/f33CbHHCgt4
+sR5EduWTPj/vnuF2uxEMBrG8vEx1zl8Em82GUChEtcFzuRzcbjdWVlZgNBrRaDRQr9fJdn9paQle
+nxeyLKPVbCFfyCOVSmF3dxf7+/uYTCaIxWLY3NyExTIrayAEv06ng88//xzdbve1jdsl6/mXtBAX
+tNttnJ+fo16vUz+GwyEikQiuXLkCi8UCi8VCAnK/38etW7deaz9e1zgIRFCBsMl/Whbx60KWZSiy
+QtnEqqpiMBigUCggm80ik8lQCZFoNIput0vOKeVyGYVCAbIsQ9M09Ho9mEwm+Hw+2O12KIpCLgEA
+yKbfZDIhkUggkUg8sU3iHcRsNsPlcsHr9SIWiz3RpeZZzIu0JG6/wr7zrPH/rt+FRJ+edm1hax4K
+hSgYtlgs4vz8HMlkku6PcIF6GURAxnywyg9lH2cYhmFeHyx8MwzDMAzDMAzz0ohDr16vR1aUIsMs
+k8kgmUxeyjoZj8f076JedigUooxv4PIBtDjA/654WwXUZzEvNgu76Rs3buDv/u7vsLCw8NTfAWYZ
+WEajERaL5VJ96vnxEgfhBoOBhO/hcFbnV59erikrBEHRFl3XqS3xePyF2pLP5/Hll1+iWCy+1fdL
+3BchfIt6nB988AE+/PDDJ/ZtXqgzGo3QNA337t3D3bt3Ua1Wv5XMp/mD7Rf9rLi/wgHg7/7u77Cy
+svLU3wFA2Zwi00xkxkUiEVxcXOD09BSpVArFYpFEYiEeVyqVS3vFk4Iovium+mUhYN6CW9NU+P1+
+LC8vY39/H9lsFq1Wiyyd6/U6ZcfZbDYsLy+TMPMqzDtcvAjD4RD5fB77+/t48OABDg8P0Wq1EI1G
+8fOf/5zEU5HVOx6PYTKZkEqlUCgU3tiYv+g40D2aE3vnAxTe1v3kSf0T9cF9Ph/W19fxi1/8Atev
+X3/i74v5qigKrUGH3QGj9uLCt9VqJReGVCqFXC4Hp9OJcrkMm82Ger2OZrOJYDAIr9eLpaWlmRgp
+K2i2mkilUtjZ2cGDBw9wdHSEYDCIq1ev4p133kE0GkU0GoWqqpiMJ8jmZuvm4ODgtY7h8zLsn0en
+00E6ncZ0OqV++Hw+bG1t4b333kMkEkEsFoOmaZiMJyiWimi1Wjg8PHxt/XjdPOq6Isbq20CMvaIq
+sNlstM8Mh0MUCgXk83nkcjl4vV6YzWYsLi5SQJSu6zg/P0c2m6U5LOy7hTONEL6FiG+xWODxeBCN
+RvHBBx/gZz/72RPbJdaHLMuzmvWaEQbp5Z6z4tk4L3x/kyCC+d97VZeDR3/v0Z89713iRa4rSRJc
+LhdWVlag6zoODg5QLpdxfn6Oo6MjOBwOqIr6SsK3mBv9fv/SPs4wDMMw87DwzTAMwzAMwzDMSyEE
+7263i2q1imazicFgAIfDAafTSRaJj2YPiYPUZrOJZrOJRqOBarWKcrlMNQoVRSGbTXGo9by2fJ95
+9JB0Op1Cn343dsCapsFiscBkMpH1stFopMxa4OkH2UK0E3a60+kU7XabahFXKhV0Oh36PpvNhk6n
+g52dHZhMJkSjUTidTrLl1DQNZrOZhDxhn/oybRmPx3C5XLBarWSpLezxxeH82yBgybIMk8lEopCw
+B7Xb7VhYWHim8CIZJEiyRIfKwnp2Mpmg0+mg1+s9sXao4NF5Jw7i5y1UqebsQzvWpx2SCxEBmInX
+wtLcYDBgOBxCVWeH2gsLC8+8N+L+imw9VVWpnrywDne5XFQTPJvN4ujoCJ1OB/1+H4VCAZlMhjLL
+nyQGPqnvr5vBcGZZ3263YTAYYLFYYDabSTTx+/1YWVkh6/BWq4XT01Pcu3cPxWKR6rSL2qnPsqx9
+4tx4GBRhsVhQq9UwGAzQbrfR7/dJ6H3aPRBOHaJuN/C1oLm2toZ4PI5gMAi73U4BTA6H4zurrf66
+EHbBYo53u12qXf5t8Wjm/bwQ9rr7JvZXUeddlmVy7niRNSjqor9MDWer1YpIJIJ6vY5cLodms4ls
+Novj42MaY5PJRO8H4h1BkiX0+31UKhWUSiUMBgOqGR6LxXDlyhUEAgEEAgFIkjRzlBmPYLFYXpvI
+ZTAYLtmPC9vo+ezgF2EwGNDv9vt9qh//aD/ENfTpLMt+/n48KsB/2/PleYhgiPmAtvlSAd8Gwq3A
+6/Wi0+mg2+1ScFCj0YDD4YDFYkEoFEKv10Ov10O1WsV4PKZa9WazeSZSP9xz7XY7Pd9EzW+xPkRW
+8vPWh3juCtcRUa/9RRBlXsSz3mQyUfb/N0GUGzCZTJds3J9WPxyYBaB2u100m02Mx+NLFvZWq5We
+F8K6/EnPDH06y7YW72DiWWc0GukdQrTP6XRiaWmJAg+GwyEmkwkODg7ovSMYCtL7w4uu61qtRgEm
+Ho8HXq+XnHNELXXOAmcYhmHerv+XwjAMwzAMwzDMG2c6naLVaqFcLqNUKqHdbmM6nWJhYQHvvfce
+fD7fU20zO50Obt++jZ2dHRLOc7kc+v0+iV6DwQCNRgO9Xg+T8eSZ7fg+8zRL8O/qINtknIkNIgOq
+0WhgMBjQAfDz6v5SFtZDcatWqyGTyVDt0nq9DrfbjWg0CkVR0Gq18Pnnn8PpdOLKlSsIBoOYTqdU
+O9bpdD7WFkmSXrgtok6m0+lEoVBAp9NBo9GgWqnzh9PzPMuO802gKApZC+dyOXS73VlG40Mrc0VR
+npsRJg6brVYrjEYjRqMR6vU61b99Fo9mdgmBY752q7CtN5vNTxS+H63nLERqUW9YrF9RZ/VF55os
+yZcs8VVVhcViQTQaJaEjlUrBZrNhPB7DbDaTYLu0tHTpu0RbJ5PJYw4E3wazGr81NBoNALNABhGY
+oGka/H4/JEnC3t4eptMpGo0GTk9PoWka2u02uSu43W4KAnqZOStJEn1HPp9Ht9ulPXc8GkOf6E9d
+HyJwQohIon5rNBrF0uLMmno++/xNCHGvA1mWqS6trusUzPNt2bVLBglTw/QxMVMElLzOMdQ0jSyY
+xTNaWGmbTKYXyjQ1GAxQ5Jc7JrTb7YhGo+h0Orh37x46nQ4KhQKSyST6/T663S7cbjd8Ph8cDsdM
+IJNmAtlgMAsWaTQakGUZHo8H4XAY8XgcCwsLs1rbskLr93XPOYPBAKPRSOt0MBhQmyeT5+8Zoj2P
+it5ut/tSPywWC1RFvbQPPakvBoNE7w2PXkcEzX0XGAwG2nuF0CsCq77NIBFJkmCz2eDz+aDrOrrd
+LlqtFqrVKtrtNiaTCcxmMwKBAAmp6XSaAiorlQqVD7FarXC5XHA4HBTwYrPZ4HA4YDAYLmWMv+j6
+AIDJeIIBXk74Fm0T9a5FDe1vitFohN1upwzo+fehJ733CHG8UqlQVrwYL6fTiWKxSOux3+8DwBPF
+716vR+U5xD0T73Hzc8jhcGBxcRFOp5PWWqPRQDKZRLfbhdfrxfr6Omw220tlbRcKBXz00Uf44x//
+SG4Ki4uLWF1dpe8TgQEMwzDMjxcWvhmGYRiGYRiGeSnEIWM2m0W5XKbszoWFBfziF7/A0tLSY8L3
+/MFcvV5HMpnEcDhEtVpFNpvFYDCAzWaD2Wym76/X66jVa3QoLssyxuMxJpMJ6vU6ut0uZZB830QY
+g8EwE2Lnav0Cs4PHdrsNh8NBGW5inOatw7/x9SUDLNZZHXW73Y7pdIpOp4NWq4Vms0lZeI+KWWJ8
+5621RVZQuVxGMpnE6ekp1Sj2er24cuUKhsMh7t27R7bU2WwWwWBwZmf58ADd4/GQ5bo40G42m+h0
+OpeywZ/WlslkAovFAp/Ph7OzM/T7fTSbTXINMJlMlHUkhAJRB1IySDBbzC9dM/lleZF5KOzAA4EA
+Tk5OKCNMOCGILH2RQS36Ph6PL4llkiTB4XDAZrNdXjMPrcBlWYaiKDSOjUaD1oyo3SoEDnE9kZnV
+6/VQqVRIjBbXH4/GdLg+GAxIZDeZTHC73TSfxf0VnxVz7dGa8I+u3UfLHiiKAr/fj1AoRJ/x+/0o
+FAo4PT2lDDzhOiFJEhRFoYATMbbdbheDwQDD4fCV15uYT91uF71ej+6PEI6r1SoKhQKq1SokSYLX
+64XT6YTRaISqqPB6vbBarJSRJupqC3tzm82GhYUFynZ/2Ww1RVFINEqlUiTE1Wo1lMolAIBm1Cjj
+WWQJDodDlMtl2lN1XScR1eFwwOGciZW6rpNY1GnP9pLnBVl839A0DXa7ndwK2u02Go0GBSyI54yY
+n83m12vGYDBccjl4HgaDAQbJABnyJVFtPB6TY8pgMMDQNKQ1+U2eZZqmkcuGqCPdbrfRbDbRarVh
+sZgfE/aEs8P8ujMajTDKL251bjabEQwE0e12YbFYaK85OztDr9fDcDiEz+dDIBCAw+G4JEZNJhP0
++330+/1LwU0OhwN2ux0AMBqPyN2jUqnQHH0diGuKIKThcEj7aL1eg81mveQ4IvbZ+XcP0Q+x3oCZ
+lbboh3jmDUdDEvrL5TK63e4T7/W8A4a4brfbJXeC4XCI0XD0VEeO1zkuTqeTMoiFS4+wrhd7/WQy
+wWQyoQzgb9Iug8EAm80Gv9+PTqdDLh9ir5FlmWrFT8YTjCdjOBwOSJJEAZNi3NxuNwKBAJxO58MM
+4Nn68Pl80DSNHDHEe4jFbIHJbLq07z763J1OpxiNR489s+bvkaIoUFWVHI7q9ToKhQJyuRzG41l7
+hWX767hHHo+HxrvVaqFer6NaraLRaFAAlQg8rdfrFLAqRHO32w2/3w+v14uzszN6ntbrddSqNSiq
+Qi5Ouq5fcmlot9vQNI3W66MOIFarFaFQCNFolDLLP//8cxwfH2M4HOL09BTpdBqhUIjG7UVoNBrY
+3d3FJ598QsJ3qVSiwBOR/W2z2qAZtdk7rCQ/MfCLYRiG+eHCwjfDMAzDMAzDMC+FruuoVqtIpVKo
+VqtQVRWBQAChUAiBQOBhxrcESbp8wC6ES1Hr02AwoNls4uzsDA6HA+FwGK1WC5Ikod1u4/T0FJ9+
++inK5TIcDgesVivV9t3Z2UEymaR/+z4KMJL8tX2zyWTCcDhEpVLB/v4+WWUKu2CRhW0xWyAr8je8
+8uxQ1OVyY3FxEeVyGQ8ePAAAZDIZfPTRR6hUKohEIohGojBIswwzkcXTaDRIELTb7QiHw/B6vUil
+Urh9+zYymQxsNhtu3ryJjY0NbGxsoFarIZ/P4/z8HLVaDffv34ckSVhbW3uYpe3C4uIiKpXKpbZ8
+/PHHqFQqiEajiEVj1BYh2NXr9UvipCRJWF9fx9nZGVRVRbPZxMHBAX7/+98jEokgEonAYrFQNlg+
+n0ehUIDZbMbm5ia2trbe9LSAyWSibPiTkxMYjUZ0Oh3s7+/jX//1X+kg1+lw0kGtmPfCWlQcQnu9
+XoTDYezv76Pf7+P8/BxffPEFer0eZXE1m03UajUcHR1hf38fpVIJJpOJLIRFtrbVaoXJZEK73UYm
+k8Fnn32GWCyGaDQKo9GISqWCarWKL774AkdHR2g2m1BVFW63m2za2+029vf3YTAYUCgU8Nlnn6HV
+alGfhCg9GAzo/or5Cnyd2SiyHsXBvsvlBgDo+gSlUgm1Wg2tVgs2m42s0C0WC2X2iSzzer2Ow8ND
+Ei+E44FYbyaT6YWzwobDIYrFIvb29lCv1xEIBGA2m0lYv3//PnZ3d1EsFhEIBHDlyhUkEolZNps8
+E+RN5ll2nc/nIyEkn88jHo/D5/MhHo/D4/G80uG8qqpkp55Op6FpGt33P/3pT1Sn2+l0UkBIqVRC
+Pp9HqVRCs9kk+30hYqXTaRwfH8Nut1NAQyqVwvn5Oe7cuUP3721B2LdLkoRkMoler4dsNov79+9f
+suPu9Xqo1+tIp9PY399HPp+Hy+WC3+9/qesZDAZAAj0DVFVFq9XC8fHxJSFJCOEiS/9V+xaJRGC1
+WpFMJiFJEsrlMr766ivouk5rUASg6JPZc7zemFkwGwwGmEwmxKIxxBZiMBpfTPyWZRkms4lqM3s8
+HhIte70eAoEAIpEIwuEwrFbrpd8V4pvD4aDSJ5lMBmdnZwgGgxTAUiwWkU6nkUwmSTR7HYgsc0VR
+UCwWIUkSms0mjo+P8fHHHyMej8PhcMBkMlGAxN27d3F8fIxyuUzZtiLgSlEU+lwmk0EqlcLR0RH1
+o1Qq0Zo6Ojp6zDJbkr4O+BGBXN1uF2dnZ2Q7rus6lYL5ttwKJEmC0+lEIpGArus0LicnJ/j8889R
+Lpdpz63X62g0Grh79y5OTk4ujcurXFcI34VCAa1WC7lcjrKSvV4vLBYLgFlwnwIFZrMZLpcLLpcL
+0+kUlUoFZrMZKysrCIfDlPFttVoQiUQwGo1wfHwMVVVRr9dx//59aJqGaDSKSCQCm9VGVv+1Wg21
+Wg2j0YieSS6nC06Xk9o8nU5Rr9dxfHxMdcXFGuh2u3jw4AH29vZwdHREpV1WVlbg8Xi+0T2avePN
+3qtUVcWDBw8wGo2QyWTwxRdfoNPp0Pt4u91Gq9nC7u4ujo6OcHFxgZWVFXIkCAQCcLlcODk5gcFg
+QKPRwMHBAf78lz8jGAySTb8Q1g8ODihob21tDevr64jFYk8V861WKxLxBBwOB7k8DYdDnJyc4N//
+/d9x8+ZNvP/+T2CxWF4oGG0+cKvVaiGTyaDf76NUKuHBgwfwer3w+XwIh8NYWFhALBYjBxbOAmcY
+hvnxwMI3wzAMwzAMwzAvha7rqNfrOD8/R7VahaZpCAaDJHwHAgEAly0WRYaM3WZHKBT6+jCu1UI6
+ncbm5ibC4TBl7HQ6HaTTaXz55ZeoVCokvl5cXCCbzSKZTOLk5ASVSgV+v/97KXyLg1JRd3c0GqFa
+rSKZTAKYHfqLbHlVVeFyuWaZKa9J+PZ43DCbTCgWi3A4HJhOp8hms/jss89QKpWwvb2N6XRK2WXN
+ZhPn5+fIZDKUNSUEWovFglQqRVa2W1tbuHbtGjY2NrC+vk4CkThM3tvbo4zk9fV1eDxuWCxmlEol
+yoDL5XLUls3NTUynUxIlm80mLi4ucHFxQW3xer1YXl7GysoKvvzyS/qcEDY3NzcxHA7hdrvp0Hl/
+fx8HBwdks/59EL6NRiNCoRCcTidu375NonIymUSz2cTm5ia63S4ikQj1/eLiAufn52i1WvSzRCKB
+paUlxGIxaJpGIt5XX32FVquFcDiMWCyGXC6Hi4sLnJycIJlMolgskvgp5qc4FBbW5vl8Hl9++SWq
+1So6nQ5UVUUqlUI6ncbBwQFSqRQmkwmcTiem0ymJJN1uF06nE5IkoVgs4osvvkC5XMbW1ham0ym5
+B3Q6HZyfn+Pi4gIAyBFBWFCLOelwOBCPx5FIJADMAmiKxSKq1SparRbMZjPZxovav6KevJgfR0dH
+lMkqbNRVVaVMwBdF1JE9PDxEr9fDYDCA2WxGtVpFtVrF3t4e/dvCwgK2t7exuLhIorHIqHe5XCQ0
+VCoV1Go12hOXlpbg8XheqTapsFM3mUzY3d2lOXF6eorpdEpCZDgcpvVxdHSEw8ND1Go1BAIB+P1+
+yLKMdruNwWBA88Zms1Egwb1793D//n1cXFyg0Whccmr4vmOz2RCJRGiO9Pt95PN57OzsQNd1hMNh
+hMNh1Ot1ZLNZEi5LpRIFbLwMQsQRwRiqqqLdbuPk5IRq3E71KfqDPllsfxPhe2FhAS6XCx6PB7Is
+o1ar4d69e6hWq9ja2iIbe1EzO51OI5PJzFwxHu7XBoMBgWDghYVvEbjlcDjg8Xjg9/vR7/dRrVZR
+q9Xg9XoRjUYRjUZht9kv/a6qqrDb7bDb7RiPx6jVasjlckin01QaQJZlHB0d4f79+9jf30cul3vp
++/Cstnu9Xsp2NRgMaLVaSKVS+Pzzz1EoFGivPj8/RzabxeHhIc7OzlCtVhEIBDCZTOgZrmkaJpMJ
+arUaTCYTUqkUiYayLOPk5IT6kc1mKUN8fr7M72GappHwLfYP4coh3Cy+jXcfkTW7uLiITqcDSZLo
+Xe327duo1WoIh8PweDzIZrPIZrPY399HKpVCrVZ75XcyEWwXCARgsVjQ6XRQKpUQCoUQDAbh9/sp
+eEKSZmUERMa+x+Oh4CxRJiMUCsHpcFKNb7H2v/jiC2iahlarhb29PdRqNWxvb2N7exs+n49cHy4u
+LpBOp9Hv9+m+rKysYNW4Sm0WWd2np6dQVRWdToeyoqvVKh48eIAHDx7g7OwMHo+HLLndbvc3ukeS
+JMHlcmFpaYmCxEajEXK5HL766it0Oh1sbGxgOp2iUCigUChgf38fx8fHyOVyWF5exuLiIra3t+Hx
+eGC323Hr1i16biaTSciyjLW1NWxsbEBRFMpcPzw8RDqdhtVqhcPhwPXr1+FyuZ76LLBarfB4PFiS
+lpBKpZBMJnF+fo50Oo18Pg9N07C2toZAwP9CdvOi3IrIYheBNuIe+Hw+CgJ75513oGkadF2H0Whk
+4ZthGOZHBAvfDMMwDMMwDMO8FOKg7/z8HPV6nbJHfT4fLJZnZ1SYzCaqfynq0KbTaaqDGYlEsLKy
+gkKhAKPRSJ/JZrOw2+1U51ccRIosuu+rfaHBYEAgEMDKygqy2SxGoxFOTk7Q7XZRLBbpQDcYDEKW
+ZKrR+jrQVA2STUIoFMKVK1dQLBbJujOTyZCIKOzYhcVlq9WCx+OB2+2mDKJ2u41sNoterwdN0xAO
+h3H16lVEo1H4/X4Mh0MsLy9jY2MDw+EQ2WwWqqoiFothc3MTqqqS4LuxsYFCoUDWsaItlUqF2iJs
+8VutFtxuN9xuN0wmE+x2OzweD5aXl3H9+nVcXFxAkiQUCgVyEDCbzWRrLSw/rVbrt1qb9GUQ2Xyq
+qiKRSODq1auwWCx0iHt8fHxJQBbZds1mEwaDgcZDCL66rmNpaQmrq6swmUwol8sYjUYoFAq4uLig
+bNJ5O+F5K20hLgUCAWxsbNBaEllU1WoVJpOJxNLpdAqTyURCtshQFLVL19fXkclkMBgMMJlMkMvl
+MJ1OUa1WKeNb1D1tNptU11qUOdB1Ha1WC61WC9lsFvl8Hslkkg67RWaocI9YWlrC0tISvF4vJMPX
+ARJCeBHCRblcpvUmrNMtFssLW84KC+eLiwu0220Kymi1Wmi32yiXyyTCJBIJrK6uIhQK0fcLEdTh
+cNCaFy4Lom5tLBaD0+m6VCv1ZeaV1TqzZl5aWsK1a9dgNBohSRIF3MyXWRgOh2SLK0SU5eVl9Ho9
+5HI5ygb/7LPPSLQVlu4iU/5V2vkmEQEPovbs6uoqptMpms0mHjx4gHw+j7OzM4xGI8r6Ho1GJGzO
+2+i/DG63G0tLSxTYJcp7VKtVEvMsFguazeYrZ/CKfcXr9WJlZQU3btxAvV6/tM83Gg2aE7quXyqv
+4Ha7KXP5Zfo3L+57PB5Eo1GqnT4cDmGxWLCwsDDL+LZdzvi2WmeBCK1WC8VikUT4o6MjKicgsuQH
+g8GsVraqvlJgyNPaLpwfxLuHsPG+uLhAs9lEJpOB1WqlEgeipILRaCS7b7PZDJ/PR5njoh8nJyeX
+gtva7TZ6vR6tp6etHzE/8/k8ZFlGoVCg59np6SnsdjtsNhsajcZry35/dFzEXibGpVwuQ9M0ZDIZ
+dDodZDIZ2O12cirodDr0TBB9e9m1It6BhEW5eC8RLinzwvf8/fN6vQiFQuj1eqhWqzAYDLBarfD7
+/bDZbZSNL0pyLC0t4fr16/TuUa1WcXh4iFarBavVSvNLrA/hbGKz2S6VpwFmImy320U+n4fBYEA+
+n4fFYqE1UC6XYTAYEAwGKdtbvO9+U0RJCvFeVSwWoWkaZWULxw/xPBX3MB6PY3FxkVxAHI5ZOYvF
+xUVsbW2hUCgAAE5PT9HtdpHL5ciJSVj9izFfXFxEPB5/plW5oihUzmZxcRHXrl2Doij0fD89PaVg
+SZ/PB5/P90L9v1TO5uFcE+8XohyLWDfie71e78PgIC+sVgssFguL4QzDMD9QWPhmGIZhGIZhGOal
+EBnfImMpHo8jHo/D6/VC056dQSkElmg0il6vh0KhgHK5jFarBUVREI1GcfPmTQCzjGBhwytq9zqd
+TsqMFnaaVqv1sdqC3xckSaI+mc1mnJ2dUZbL3t4eIpEItre36aDWN3qxA78XurYsQZVm9sfvvvsu
+zGYzTk9PqUZ3pVLBvXv3SLiQZXlW39VohMPhICEkk8lgd3cX2WwWsizD6/ViYWEBGxsbsNvsMJvN
+lNnd7/cpo20ymWBtbQ3ZbJbEWp/v8bbUajVUq1Xcv3//sbaI+pEulwvBYJAOn0WG+NHREY3pyckJ
+jo+PL9XBFrWThV3t9wVZliEZJCwvL+OXv/wlQqEQTk9PcXZ2hmw2i/Pzc7L8FqKSpmnwer0IBAII
+h8Pw+/1wOJxQFAVbW1skRuRyOZTLZVxcXNC9FNnNInDAbreTaC3q0cdiMbz33nswmUxUq71eryOV
+SlHG1sx23IXRaARd12Gz2eiwWZZluN1u3Lx5EyaTCcfHx+TKIFwAAND91TSNMhsdDgd8Ph9lfJ+c
+nMxqU5dKVCbh0brzPp8PiUQCW1tbuHLlyixTWp65FFy7dg2SJFGWeqFQwMHBAXw+H7a3t3Ht2jUS
+TF6UyWSCdrtNWW+iLrMI4BBlAeLxODY3N7G8vAyXy/WYsG61WhEMBhGJRKjmqij1IKyqXyWQZz4A
+YWVlBcPhEKFQiMYglUrh7Ozs0vqwWCyw2WwIBoM0lqJEgLCOFRl5JpOJgi2WlpYwGAxQKpVeW73l
+7wIhfol50O12cX5+jmKxiJOTExLIrFYrZUaLZ43NZiPRWIh6L4rX68XW1hYmkwndDxHQYbfbsbi4
+iMXFRTQajVcWvsX9dzgc2NragiRJODo6wunpKfL5PI6Pj3F4eEifFX3TNA2xWAyxWAzBYBB2u/2V
+AhpEpuXi4iI9X3Rdp0CQcDj8mNjncNiRSCTIISKXy6Fer9NeLuy+nU4nCfqtVgv5fP61zIfZ3qrB
+YrEgHo/j3XffhaIoyOfzyOVyFDAg6qc7nU5yyJAkiURSkW3vdrtRLBaRz+dRqVRwenpK5SyElb7X
+68Xq6ira7fZT++HxeLCxsYHBYIDT01Ocn58jn8/j5OQEVqsVi4uLWF5e/taEbwBUAmNhYQE3b94k
+UVf0TwidwqpeiOWiLI0IUHipIApplvEtyuGYTCYa33A4jFAo9Jhdvgg6iEajqFarKBQKtGZ9Ph9M
+JhNkSb5kIb+xsQFd15FMJml8U6kUuWOI56JYH6FQiPbnR51CptMper0e1Z8XZVbEc8toNFJm9tWr
+V7G6ugq/3w9d19Fut7/RPRKuEaFQiDKbRSmK+fch0R8xVleuXMH169exuLgIv99PgXBra2vo9/tI
+JpNIpVLIZrMoFov0vBDf43a7sbGxgbW1NVy5cgXBYBDj8fi5c1GWZSQSCUwmE2iahna7Te9vd+7c
+ga7rlHX/ooi2iXIN4n5MJhMqmXN4eEj/3yEajV5qdygU+l4HzzIMwzCvzvfzdIhhGIZhGIZhmO8l
+4pBJ/LfRaEQgEKCMy+dlTkiSBI97ZvfY6/UoK0bU3HU4HLh69SrMZjO+/PJL1Go1yhzTdZ0yNIX1
+rtPpRDgchsvlgtVqpSwsu90Or9cLp9NJnxV1G+fbYrVa4fV66XeMRuNjGWUGgwEWiwUejwej0Yhs
+s00mE7Vb1O0VQpfImpNlGeFQGNevXwcANBoNZDIZtFotqhsZjUbR7/cxHo0vje83RRxSzkSXbQSD
+QVgsFsoAFjbLApPJBI/HQ+MbCASovmoul6Oa0sJ6WthPA7MMtZWVFWiahmq1iqOjI8qabLVasFpm
+h9Uejxubm1sIh8P49NNPL7WlWq1eaovI8rZarVRDXthpLi0uweV0kXAp+lKr1cjCW2QZeTweBAKB
+15pN/+g4C/cBl8uFcDhMc0RRHs+epBqWEhCPx2G32+F2u6mWt6hh3ev16HecTic8Hg8JMLFYDD6f
+D3a7DRaLGVeuXIGiKLh9+zYajQZljrbbbRJdVFVFv9/HYDB4LFjEIBkQCoVw/fp1+pwIbBF1ZD0e
+D7xeL4xGI2w2G3Rdh8PhIJt0IVCJA2WLxYLBYIBut4tyufz/s/en3W1d6Zn4fZ0Z8wwQAOdB1Dy5
+XK64KlXpTuL0yhfoj9bfoVevXp286H6S/FOJnUqVXbIta7AGkhIpziCJecYZnxfQ2QI02JIli6J0
+/dbiokwSwME+A2Bc+743KpWKeDxd15FKpcQyAJlMBlNTU6Liu1KpQFVVDAYDUfnvf4AfiUQwPT2N
+2dlZLC4uYnl5GXNzc6ISL5vNiskkfkv1TqeDer0O0zRRKBQwGAxEeP8isjIMOCORCFKpFJrNpgi6
+2u22WHPdr8rPZrNYWFjA+fPncfr0aUxOTj63As6fzJFMJhGLxRCJRMT1I5vJQpJ/fI3TFx2H/uPN
+zs4iGo0im81CVVXUajUcHh6ObbOiKOJYnZycFOPZbrexv78vOm0cHR1BURTRBn96ehrLy8uwLAuV
+SgX9fh+xWGxY1apqYlKDvyavX82vKqoIlv0xHQwGotrQb5ntH+P+bUOhEDRVE/vDn4QxGAwQjUZf
+WIVt6IYYW7/VtH+8JpNJLC8vi4kCvV4P5XJZTGTwPE8EeJFIBJ1OB6FQSJxHr1px7IdNkiSh3++L
+rgF+h41oNIpisTjWgj8Wi4lA6unn5ld6jj43//UrFAphaWkJ6XRaTA7zqz2r1arohOC33fev+X4F
+Zzwe/0nBt6IoyKQzIpCt1WpoNBpibfFsNvvM+RAOh0W4vbu7i8PDQzx48AD7+/uiXXgwGBTHciaT
+QbVaRblcFl0v/Ep8RXlyvfdf+/3Xc0VRxJj6E3j82xrGcPJNoTB8nfbfe4wGmbIsi0kifrW2v2yA
+f5xPTk6iUChgZ2cHh4eHAIC9vT3RIcFfliGTySCfz6NareLo6Ei8d/GPYwBIJBJYXl4WFc+lUklU
+7dZqNXG8+BMd/CpWv9raf/3z3wf5z1dRho8hS+Pvb/zA2nEccc0bXf7Cnyh0/fp1scxEu90W15xM
+JgPP80RnFX+fPl0d/TLXMP/9k79sTjabRbFYxMzMzHPXiQ8Gg6Lzh7/euH+7ZCIprqf+l2EYmJ2d
+RSKeEEvANJtNHB0doVKpiPDWD3j916lUKjVcA/zxBBh/bfFsNotIJAJN02CaJmq1GprNpnhd8Cc5
+nT9/HmfPnsXszCzCkTA67WFLdH8f+ePtv1cdHTe/sj0Wi6Hf74uJgZFIBLpuIBqN4OKFi0in0/jy
+yy/Fe6Fms4l2uy26GkQiEczMzODSpUs4deoUisUiEokEgOH7+bm5OXGc+hOg/Kp3v9OLP/Hi4sWL
+OHfuHBYWFpBOp0WI778PmpiYEO/X/GuYJEkoFAqIRqOwLAsbGxtYW1sTr/mHh4eYn5t/5WuP/77Z
+7wrjd8dRFAWHh4fQNE101SgWi2g2m+K66L+38a8V/teb6ipBRETHh8E3ERERERG9NL8K5sKFC+ID
+wqmpKUxNTr3UuqCKrGAiP4Hz7nBdwaWlJTQaDVy5ckV8SFYoFMSaqDMzM2i32yKM8D/UlmVZtG9O
+JBKIx+PIZDLIZXOIxqL45JNPoGkaQqEQLl++LCpcRz/QV1UVV65cgWmaUBQFZ8+eRbFYFGHK6N/5
+60c7jiPWK03EE4jFY1hYWMBnn32G6elpXLx4Uazr61fUxhNxTLvTYt1Mv/LPtm0kk0lR7ZfNZl96
+XdVXMfwgOwxZlnD+/HlEo1GcP39eTDrw+RVe0WgUU1NTmJycHG5/PI65uTkRmqbTaczNzY09hv/B
+sCzL+Mu//EuxVvC5c+fEmPrjEYmEoSgyzp8/j0gkgnPnzr1wWyKRCCYnJ0Vw4lcMBoIBxL242I58
+Po9OpyPWPPU/dPbXnPXX7v05+MfZ3Nwc/vqv/xqZTEYcB35r3hcxDAPxWBwzMzPwPA8TExPiw+rR
+dWzD4bCYpOGfb9HYMOhyHAf5fF4E/TMzM6jX6+K2fjDjj6/fevVpfsUyMAwT5ubmYFmWqFrzwwTT
+NNHr9eC6rpgAMjMzg1g0JgIiSZJw9sxZhEIhnDlzRjwn/wNq/4Nof83lqakpJOIJuJ4r1uHOZrNi
+XeperyeCb79S25+EkUqlREWf/zwmJyfFxJalpSVx7oZCIczPz2Nubk6E8y86ZwzDgCRJuHz5MlzX
+xeHhIaLRKOLxuGjva5qmmPgwMTEhjjN/Xd/n8asD6/U6gsEgJicnMTExMaz0/omh94uOq+npaTiO
+g0wmI1rUjm6zH7jn83lMT0/DMAxMFifxy1/+EoVCAbVaDfV6XVS9+vurWCyKY9GyLFy4cEFUY6qq
+ikKhgN/+9reIRqPDCvgzZxFPxEVIe/78eQwGA9TrdVy6dAm5XA7hUBiyIovb+iHNmTNnEE/EIUsy
+ZEXGhQsXYFkW6vU6rl69Kq4LT4/3RH4CV69eFdcxv/uGP4Ekm82KIKxQKIjuAn4ng2QyCdu2ce3a
+NdH690nYpL/SfvIDF0VRxLXCr0rUNA3FYlFUIi4vL2MwGODKlStizfann1sul8PVq1eHS2Q8rj4v
+FApifWL/uD516hR0Xcf8/Lw4B/0lH/xJBOFwGPl8HlNTUygUCojFYlDkVw++dV3HRH5CXK9mZmbQ
+6XTw0UcfIZVKiYkNo/xwKhQK4dSpU1AUBWfOnEGtVkOn0xGdLjKZjAgd/e4i/kSdVCo1nFShDl/D
+//7v/x6XLl3CpUuXMDk5iXgsDlkZBsGffvqpCPkvXryIRDyBQDAgxsIPkyORCObn59HpdEQlqf/e
+w29t7U+CSyaT4toYDAZx6tQpyLKM5eXlZ55HOp0Wk02i0ShOnTqFTCaDy5cviwkiijwcD/+abhiG
+GEvHcSDLsrhmtttt0UL/0qVLmJ6eHu6/x9evTz/9VASRFy5cQCQynKAkydLYfpubm4PjOOh2u+Jc
+n5+fF5NdisUiNFVDJBIR637745JIJJBMJrG1tSXa9/sTZX7s9e9po91A5ufn8dlnn2Fubg6Li4vD
+oLYwbMs9Khoddg3wj5OzZ88im81ieXl5LPQefQz//FhcXISqqpiamhLnh99xwe/C408CnJycRLFY
+hGEEYBg6lpaW8N/+238Tk4z8EL3T6aDX64nHTSQS4pqZz+cRCAagKqpY9ueXv/yleL975cqV575X
+VeRhpbRt22i1WmJiw/z8vNin8UQckizho48+QjqdRqVSEa+dfuW6H97776ee7oIznISWxZkzZ8QE
+Ab/Fv9/G3jAMcb3yJ374/1/geR4WFxfxt3/7t5icnMSlS5cwOzsr2on7fxcOh7GwsID/+l//q+he
+k8vlUCwWxTXkdfkhuCRJsCwL/X4fjuOILguVSkWc0xMTE5iamsL01DQy2WFLdL/zCivBiYhOLsl7
+kyUFRMfAdV1sbW1he3sbu7u72N3dxdHREQqFgvjAzm/dRURERHQcyuUytre3sbOzg93dXezt7SEY
+DIoPj6anp9/Ymn9vg+d5aLfb6Ha7ACCqjF6mUsLzPFiWJdbl84O1UCgkwgv/Z/76fLbtwPOGlZli
+7UhJhuMOQwq/itBvvemH4v6HuKFQCKFgCJIsjW2b/zz8yiU/xFMVdazixv8wc/T5+h9MyrIM27bF
+h53hUBih8JMKRUmS4NgOLHv4nIfPyYL3OODz1772q6NGq77e5P5yHReO6wzbcA5MWPaw2tWv/gOe
+tModbYHrf2hoWzYc1xHb7I/V6GP4LZ/9NdiBYYDqV3v6Ffeu48L13OFYvMK2jI6P67qilehgMMBg
+MHjmPvzjRVM1aLomPrT9Oc4Hf61J/7zw17v2w9MXfXjqui4814NlW+J4Hz4vF677ZE1yWVagqooI
+BfyWy6qqirG3bVvcx2i7ZP+c2VjfwP/7//0//Ou//quYDHDq1Cn88pe/xKeffgrP9WA79vD8HJgY
+mAO4rgfPcyFJMnR9eH77+w+ACCN1XYehG5AVGZ7nif3in+vP279+CDp6PvkfT/jtYofHlCvOl+FY
+ytA0VVxvnq4sdGwHtmOL820wMMX1Q1EUGLoB3dB/9Hrl75tu70nI7Yd3w+PPFfcLYOw49a+Jz9vv
+n3/+OX7/+99jZWVFTND45JNP8Nlnn+H8+fNv5JgcPa78cfCPq9Ft9o8Nf9t1XRchgX8s+vtNkmSo
+qiKeo23b6Pf7cF1PrJXqt823HVus+2sYxpPWx48rTXv93uNJKo64rR+2jt5W14dtqA3DELf194d/
+W79K8unzzDRN0UlD7CNDF8eL/zrjj4/1+O88zxX7eX9/H//rf/0v/N//+39F2HzlyhUsLy/j7Nmz
+L718gn9Mjp5bfgDtn1u6rsOxHXHe+ePiH9s/9tw0XRMV6f710T//Rlsvj7Yt9l/DRl/Dn379e1lP
+v7YPjzkXkUh47Hk873ae54mJVf5+GU5gUiDLknhtVxRF/J0/4SgQCIhjY2AORIcYv8JTVYaT2BzX
+eXxcdaFpw0lCo+8LXNcV70lGt3/0vYemamJyjud5InD3q879LhX9fn/seTx9vXvR8/CP46ev6YPB
+YOz66b8GOLYD0xpeJ/3qbE0dBs2u5z6eDNaFqio/+D7I3xbXeXxdV2TxvgTAC8fFvyYoioIvv/wS
+/+f//B/8+c9/xsWLF/HRRx/hwoULOHPmDBYWFl7pOAKAfr8v3lf5Fcu6rosxHz23/Ovc8Fw2oWnD
+yQsvek/tnx9+e+7R9w+jH5H77zdG30NIkgRFVjAwB2L7FEWF+nibRt+v+veha7q4vf+64L9Ovux7
+Vf+48veRJA8n7fivu7Ztw3XdsePFP9/9101VfbKEjN8FYfRx/DEYPe5G34v4x7E/kWP0fvxzYjAY
+PPN+eHRZFf/9qGmZ6HV76Pa6Y+/T/O37If/xH/+B//E//gf+5//8nz96PPnXHP/c8jvg+N8DgQCK
+xSIuXLiAy5cvY2lpCUtLS8MJdS+xpEWj0cDW1hZ2d3exs7ODvb09SJI09v93U1NTiMfjL30OEBHR
+m8GKbyIiIiIieiWSNFyHMRqN/qTb+h+YvYj/YevrTATw1+N8E8/Db6/8olbZfhD8IoqqQFGVY1tj
+WpKk4TZg+KE7XrHj9w89t9HH8IOTH3ue/rZomvbK2+LzA8OXebyfm/+Brv8h6qs+D8h4reNj9Jz6
+oXOmXC6LIP55/OPUMIyfvF/87fH3zU/1Ovt09Hn8lGuUz983P/VaN2p08km9Xsf+/j6q1SqKxSKm
+p6dRLBbf6MSn1zmuRgOvn8of/2Qy+dzf/9D19Mdu+7L744deZ/yWxLVaTSxXMdpWvN/vo9FooFQq
+oV6vo9/viwr5iYkJ0d3gVcbjTZxbL/PcgPHr49uaUPcyr+0vup1fhfsy2/pD+z6kvvg+/Nc/v7Xz
+88bsTRz7/mSv13keL3tN/yEKhh1mXvR8Rx/rh7a53W6LJWeG54kBTXsyicGfpHJ0dCSW2DAMA9ls
+Ful0+qXG4unteZVx/Cnvr0bPj1fdPt8PHWsv+zxlWX7p96o/9v7Cf719neN3dKLhqz630XXEf2hM
+/fejQXX4dymkfvL2vgx/IoM/ccSf7CQm+qiq6F41GAyws7OD1dVV0ap9uCRJHLFYVExOYRt0IqKT
+gcE3EREREREREdHPxPOG1deWZaFWq2F/fx/lchlzc3NYWFh448E3/bDBYIDt7W2srq6KkD0Wi4lK
+72q1ilKphPX1dWxvb6Pb7UJRFLGWczwR/0ntwIlOmkajibW1Nezs7IytCe8vB7O/v49SqYQ7d+7g
+8PAQtm2LJWv85Q+I3hV+NwX/u99S3nVdVKtVsfxDLpfD/Py8WBplfn4emUwGABh8ExGdEAy+iYiI
+iIiOib8GXb/fR6vVGmtPTET0JrXbbbHOpd/i1W8n22g0+GHuz8ixHXS6w/avBwcHojpSkiRRFWma
+JhqNxnFv6gehVqthfX0dt27dgmEYSKVSSCQSooXv4eEhtre3sbW1hXK5DNd1RVv9QCAA13XRare4
+/iu990qlfaytrWFlZQXpdBqZTEas2QwAW1tb2NnZwebmJlqtlqhWH7a31zAYDHhdozeq0+n85P9f
+8luyu+6TdvSmaaLb7aJcLouuH8lkEqVSCbVaDZ1OB647XDogEAggGAxClmUosoJ2py1au/uBOl8X
+iIjeDQy+iYiIiIiOgb+WXrfbxdbWllgXjojo57Czs4Pt7W20220RcvvrUQ/X02Xw/XPxw59Go4G7
+d++i0+nA8zyxPmi73cb29vaxt+3/UDQaDdy+fRurq6uwbVu0vPXXYe73++h2u+j1epAkCfl8HoFA
+AKVSCd9++y0URXnhmtVE75PNzU18//33WF9fF+2h/fNEkiTR6nwwGCAYDCISicB1XaytraFWq4nz
+iuhNuXPnDqrV6hu7P8dxYFnWyHroElqtFra2tsT/o3333XdIJpOIRqOIRCKIRqOIxWJwXRfNZhON
+RgO9Xk+cB0REdPwYfBMRERERHYPR4LvRaKBer7Pim4h+NpVKBTs7O2i32+L641d/+5V69PPo9/so
+l8sol8vY29tDp9MBALRaLezu7qJcLosgiX5+7XYba2trWF9fR7vdhmmaYg1YSZKgKAo0TUMgEBDt
+zQOBAA4ODtDtdsXfEb3v9vf38eDBA2xtbcE0TZimKaplZVkW50o0GkUmk0E6nYbrunj48CF2dnYA
+8FyhN2trawu1Wu2N3Z/f9ty2bXGs2raNwWCAo6MjMdEjEAggHo8jkUggk8kgl8shEAiI26qqClVV
+GXwTEb0jGHwTERERER0Dz/NgWRZ6vR52dnawsbEhPlAnInrTOp0ODg4ORJvQwWCAXq+HdruNw8ND
+hhM/I9M00Ww20Wq10Gq10O12IcsySqWSqB6mt6ff7+Pg4ACVSgX9fh+DwQCDwUD83jAM6LqOwWAg
+zot2u42DgwNomnbcm0/01tTrdRweHqLRaIjlMUYniQSDQWiaBtd1IUkSHMdBvV6Hruus9KafRbVa
+Rb1ef6P36Xne2HfTNOE4ztj7IsMw0Ol0UK/XUa1WcXBw8KTtuaIgkUggmUwe9/AQEdFj/L8rIiIi
+IqJjMFrxvbu7i3v37qHZbB73ZhHRe8q2bdHCeTAYoNPpoNlsolKpiPVa6efheR5M04RlWbAsC6Zp
+QpIk7O/vo9FocNLBW+a6Lnq9Hvr9vtgnjuOI3w8GAziOI1rgNhqNsfbORB8Kf4Kmf644jjO2PnKv
+1xM/7/V6qFQqkGVZrJVM9KaZpim6pvxcPM97Jvj2J0f5a4JXq1VomiYmSrmui1AodNzDQ0REjzH4
+JiIiIiI6Bp7nwXVdWJaFVquFarWKRqNx3JtFRO85RVHEh7qO46Df7x/3Jn1w/Arvfr/P8T9m/rrF
+L+K3dyb6kPkTP17EdV1ez+itcBznrVyT/erv0cft9/swTRODwQCyLEPXdQQCAQQCAfR6vbEJVERE
+dLwYfBMRERERHQNZlqGqKgzDQLFYxPLyMlqt1nFvFhERERER0Tun0+ng6OgIBwcHP9tjSJIESZIg
+y7L4maZpCAaDCAQCCAaDCIVCCAQCYm3vZDIJwzCOe3iIiOgxBt9ERERERMdAlmXxIcrk5CQURWGl
+DBERERER0XMcHBzAsqyfNfgGIFr2+3RdRzgcRjQaRTqdRjabRTAYFL8PhUJcNoaI6B3C4JuIiIiI
+6BhIkgRVVREKhTA1NYVcLje2biIRERERERENPXjwAPv7+2/s/iRJgqIoospbkiQEg0ERcodCIfHv
+WCyGeDyOZDKJZDIJVVXR6/XQ6/Xgui5bnRMRvUMYfBMRERERHQO/1Xk4HEY+n0ckEhHrvhIRERER
+EdETmqbh1q1bb+z+/OBb0zTIsgxJkhCNRjE5OYnp6WlMT09jZmYGmUwG4XAY4XBYtDwfDAYol8so
+l8uo1+toNBrHPTxERPQYP1kjIiIiIjoG/gctuq4jl8thenoaoVDouDeLiIiIiIjonVOr1RCLxX7y
+7SVJEt9lWYZhGAgGgzAMA5qmQdM0ZDIZLC8v4+zZszhz5gzOnTuHfD4PwzDG2pk3Gg1sbW3BMAx4
+nodOp3Pcw0NERI8x+CYiIiIiIiIiIiIioveSv8yULMvQNA2qqiIajWJiYgKFQgHpdFqs310oFFAs
+FjExMYFEIgFd16HIynE/BSIiekkMvomIiIiIiIiIiIiI6L3kB99+ZbemaUilUlhaWsLly5exuLiI
+xcVFZLNZGIaBQCAgAnIuR0VEdLLwqk1ERERERERERERERCeeJEminbmu69A0DYFAAPF4HIlEArFY
+DNFoFIVCAUtLSzh9+vRwXe+pacTjcciKLNqiExHRycPgm4iIiIiIiIiIiIiITjQ/9PYrtf01vLPZ
+LBYWFnDq1ClMTEygWCwik8kglUohlUohEokgFA5BVuTjfgpERPSaGHwTEREREREREREREdGJ41dn
++2G3ruswDAOGYSASiSASiWB6ehqXL1/G1atXMTMzg9nZWcTjcVZ2ExG9hxh8ExERERERERERERHR
+ieAH1n5Lc0mSEI1GEQqFkEwmUSgUMDk5iWQyiVQqhYmJCUxNTWF6ehqJRBKGYTD0JiJ6TzH4JiIi
+IiIiIiIiIiKiE0OSJCiKIlqbh8NhpFIpzM/P4/Lly7hy5QpyuRwmchOIxWPQdR26rkNRFKgqYxEi
+ovcVr/BERERERERERERERPTOGl2/OxKJIBgMIhwOIxqNIhaLIZvNIpfLYXp6GqdPn8bp06eRTCaR
+SCQQCASOe/OJiOgtYfBNRERERERERERERETvNFmWoSgKotEostkspqamMD8/j8XFRaRSKWQyGaSS
+KaRSKaTSKRiGAU3VjnuziYjoLWLwTURERERERERERERE7yxd1xGPx5HL5TA5OYnZ2VmcPn0aly5d
+wpXLVxCLxxCLxWAYxnFvKhERHSMG30RERERERERERERE9M7K5XL49NNPoWkacrkc8vk8CoUCJicn
+EU/EEQgEoCqMO4iIPnR8JSAiIiIiIiIiIiIiondWNpvFb3/7W5w7d06s6x0MBqHrOlRVhaIokCTp
+uDeTiIiOGYNvIiIiIiIiIiIiIiJ6ZwUDQWQyGcTjcRiGAUM3oKjKcW8WERG9Yxh8ExERERERERER
+ERHRO0tWZBiGIaq7ZUU+7k0iIqJ3EINvIiIiIiIiIiIiIiJ6Z0mSBE3ToGnacW8KERG9wzgtioiI
+iIiIiIiIiIiIiIiITjQG30REREREREREREREREREdKIx+CYiIiIiIiIiIiIiIiIiohONwTcRERER
+EREREREREREREZ1oDL6JiIiIiIiIiIiIiIiIiOhEY/BNREREREREREREREREREQnGoNvIiIiIiIi
+IiIiIiIiIiI60dTj3gAiIiIiIiIiIiIiop/C87xn/u25w++u5z73737oZ0Q/ZjAYwLIsWJYFx3Hg
+OA4kSYJt27AsC6ZpwjRNDAaD495UOiaSJP3gz2RpWJMqydJL/T0RvTwG30RERERERERERER04nie
+N/waCbrFz0a+XPfJz0dvS/RT9Pt9DAYDEXDbtg0AY4F3v9+HruvHval0jEaDa0mSIEkSZFkW/5Yk
+CZL7+OcjQbh/O/8axQCc6NUw+CYiIiIiIiIiIiKiE8UPsjudDrrdrgggbdseC7pd130m+GYATq+j
+3W7j4OAAh4eHKJfLqNVqkCQJmqZBURR4ngfLshCJRI57U+kY+EG1/13TNAQCARhGAJqmQlVUKKoC
+WZahKMp4IO4NQ/DRSnDP8xh+E70CBt9EREREREREREREdGL4IbZpmlhdXcXdu3dxcHCAZrOJdrv9
+TMjNwJveJNM00W63xaSLTqcDAAiHwwiHwwiFQohEIqz4/sDJsgxZlhGLxTA7O4u5uTkkk0nEY3GE
+wiEoigJVUSErwwBcUYZhuCd7IgCHzPCb6FUx+CYiIiIiIiIiIiKiE8c0TaytreHzzz/H2tqaqL59
+GkNuetMcxxnrKAA8CTolSYKiKMe9iXTM/CA7nU7j6tWrsCwLxWIRbnF4vKiaCkVRRKcAVVXFd1ke
+ht6yy/Cb6FUx+CYiIiIiIiIiIiKiE8VzPTiOg3K5jM3NTTSbTSSTSUxOTh73phERoVaroVarodvt
+YmtrC4qiYH5+Ht1uF8ViEZFIBOFwGIZhQFVVaJoGTdXgeR5U9XF0x/Cb6JUx+CYiIiIiIiIiIiKi
+E8PzPLieC9u20Wq1UC6XoWkaPvnkE3z66afHvXlERLhx4wa+/fZb7O/vo1KpoFqtotFowLIsmKaJ
+XC6HXC4Hx3Fg6AZc133+sgySBwUKw2+il8Tgm4iIiIiIiIiIiIhOFL/NdLfbRbPZxMTEBC5cuID/
+/t//+3FvGhERgsEgKpUK6vU6Go0GGo0GNE2DYRgAAMuyoCgKIpEIQqEQgm5QBN6q9yS6UxQFruey
+8pvoJTH4JiIiIiIiIiIiIqITxQ++iYjeRaqqQtd1RKNRhEIh5HI5KIqCUqmEXq+HbrcLx3GQyWSQ
+Tqfhui4cx4HrutB1Q4TgrutC0zRWfhO9JAbfRERERERERERERHRieK73OPj2xloCExG9KxRFEcF3
+JBJBJBLB9vY2tra2sL+/D9d1oaoqbNuGLMtQVfWZ65kfbMuyzMpvopfE4JuIiIiIiIiIiIiIThTP
+8+B5LoNvInonSZIESZKgaRpisRiy2SyAYSDebrdhmiZWV1fR6/VgWRZs20YikUAikXh8fRtf79sP
+yqGA4TfRD2DwTUREREREREREREQnih8MMfgmoneZLMsIBAKIx+OIRCKYmZlBtVrFgwcP8ODBA/R6
+PXEts20bmqYBwEjw7Y4F25Ikse050Q9g8E1EREREREREREREJ4brDdf25hrfRPSuk2UZhmEgEokg
+kUggHo/j6OgIlUoFd+7cQblcRiAQEAF2IBCA4zjw3CdhtiTJ8DwPuq6z7TnRj2DwTURERERERERE
+REQniuu6rPgmohMlFAohk8kgGo2iVqtBURRUq1W0Wi2srq7Ctm1IkoRcLgc7YwMYr/z2ua4LTdNY
++U30HAy+iYiIiIiIiIiIiOhEGW11zvCbiE6CYDCITCaDYDAIVVGRz+fxxz/+EV9++SXq9ToAQNM0
+EWwbhgEAY5Xf/r9Z+U30fAy+iYiIiIiIiIiIiIiIiH5GiqJA13VEo1EUigUYAQOVSgWVSgU7Oztw
+HAfr6+uwLAue58F1XSSTSQAYm+Dj/9t1XaiqCihg+E30GINvIiIiIiIiIiIiIjoxWOlNRCeZpmpI
+JBIIBAK4cOECZFnG6uoq1tbWsLGxgcFgIP7Wtm3ouj52e89zx4JtSZLY9pzoMQbfRERERERERERE
+RERERG+BoiqIRCKIRCJwXReRSAShUAiVSgV3795FtVrF7u4uFEWBJEkIBoNwHGfsPiRJhud50HUd
+sixDlodt0Fn5TR86Bt9EREREREREREREdOJ4Lqu+iehkG677ncXi4iIajQYURUG1WkWr1cLq6ips
+24YkScjlcs+E357nin/7ITkrv+lDx+CbiIiIiIiIiIiIiIiI6C0Lh8MwDAO6rkFVVeRyOfzxj3/E
+V199hWq1CgDQNE1UdxuGAQAizJYkWfxblmUoigLXc1n5TR8sBt9EREREREREREREREREb5ksy9B1
+HdFoFIVCEbquo1KpoFqtYmtrC67rYn19HZZlwfM8uK6LZDIJAGMdL/x/u64LVVUBBQy/6YPE4JuI
+iIiIiIiIiIiIiIjomGiqhng8BsPQceHCBSiKgvv37+PBgwfY2NiAaZoiuLZtG7quj93e89yxYJtt
+z+lDxeCbiIiIiIiIiIiIiIiI6JgoqoJIJIJIJALXdRGJRBAMBlGtVnH37l1Uq1Xs7u5CloetzYPB
+oFjze7Ttud8SnW3P6UPF4JuIiIiIiIiIiIiIiIjoHRAMBpHJZLG4uIhGowFFUVCtVtFqtbC6ugrH
+cSBJEnK5HFzXhST/SKAtY1j5TfQBYPBNRERERERERERERERE9A4Ih8MwDAO6rkFVVeRyOfzxj3/E
+V199hWq1KtYF9zwPhmHAMAwAw/XCh98lKLICSZJEGC5LT6q+id5nDL6JiIiIiIiIiIiIiIiI3gF+
+sB2NRlEoFKHrOiqVCqrVKra3t+E4DtbX12FZFgDAdV0kk8mRlufS2L9VVYUjOWPrfRO9rxh8ExER
+EREREREREREREb1DNFVDPB6DYei4cOECFEXBysoK1tbWsLGxgcFgINb89jwPgUAAkiRBlmXxc1mR
+RRAuSRJkV4YncZ1ven8x+CYiIiIiIiIiIiIiIiJ6wzzPg2VZ6PV66HQ6aDabCAaDr3QfmqaJ9bxd
+18XW1hZqtRpkWYZhGJBlGaqqIh6PQ1EUKIryJPh+6jtkQIb8w2uCE51gDL6JiIiIiIiIiIiIiIiI
+3jDTNFGpVOA4DgaDAer1OlKp1CvfT7vdRqvVQqVSgaZpyOfzcF0Xe3t7GAwGCAQCKBQKUFVVBOGK
+okDTNDi2I6rAPc8ToTfDb3ofMfgmIiIiIiIiIiIiIiIiesNs20atVkO9Xkej0cDR0REikcgr34/r
+unAcB/1+H7quo1gsYn9/H6VSCfV6HdlsFqdPn4ZhGNA0DZqmieBblmUorgLXdYeBt+txrW96bzH4
+JiIiIiIiIiIiIiIiInpDQqEQMpkM6vU6BoMBTNOE67ro9/vwPO8n369t29B1HYlEApVKBbZtw7Zt
+dDoddLtdhEIhEXxrmgbDMKCqKhzbES3QXc+FAuW4h4joZ8Hgm4iIiIiIiIiIiIiIiOgNiUajKBaL
+ME1TtClXVRWq+nqxnCzLCAQCUFUVhmFAkiQ4jgPLstDtdtHtdqHrOgKBACzLgmVZ4nFd132t0J3o
+JGDwTURERERERERERERERPSGxONxTE1NQZZl0er8TYfOu7u7UFUVtm3Dsiz0ej30+30MBgMMBgMY
+hgHLsqBpGlzXFcG353nwXA+Swlbn9P5h8E1ERERERERERERERET0hsRiMUxPTyMWi6HX66Hb7b7x
+4LtWq2FlZQW9Xg+2baPf748F337F97AdugNd98aqvj3P4zrf9N5h8E1ERERERERERERERET0hsSi
+MQSDQUxOTsJxHLiu+8YfY3V1FeFwGOVyGbZti8DbNE1YlgXTNGHb9uPHd+A4w3W+AYh1vhl+0/uG
+wTcRERERERERERER0QfG8zxRIVqtVLG7t4vDw0NMT09jdnYWAHBwcICjoyMEAgEYuoFYPIZsJotU
+OnXcm0/vsP39fezv76Pb7SIYDCIQCCAYDCIYDKLf72Nvbw97e3uYnJzEzMwMDMNAqVTC4eEhdF2H
+ruuIxWJIp9PIZrMnMphVVAWKqvzo3x0cHGBvbw+dTkeMUzweRyqVQigU+sHbBoNByLIMz/PEOt/j
+Vd7Dr2fanHOdb3qPMfgmIiIiIiIiIiIiIvoAtdttVCoV3L17F19++SVu376N3/3ud/ibv/kbAMD1
+69dx+/ZtxONxxONxzM3N4eLFiwy+6Qc9evQIX375JcrlMlKpFFKpFNLpNDKZDBqNBv70pz/h2rVr
++Iu/+Av87d/+LWKxGL755ht89913iEQiYn3sixcvIpPJnMjg+2VtbW7hT1/+CaVSSYzT4uIiVFX9
+0eB7lOu6IvQ2TROmaYpKc//7aNU5w296XzH4JiIiIiIiIiIiIqIPiud5aLVa6HQ6sCzrJ9+PJEmQ
+ZQWqqiAYDCIcCr9Ulee7wK/4bjQaePToEb755ht8+eWXiMfjuHz5MgDg/v37uHbtmggtbdtGPp+H
+aZrodrvo9XqQJElU9aqKClmRXzuo9EO5druNTqcDAKJiWJGVN/IYJ53neTBNE512B+1Oe3j8hcPQ
+NA2KokCW5WPbtlKphNu3b2N3dxf5fB7FYhHFYhGO4+Dw8BDffvstPv/8cxiGgfPnz8OyLKyuruLr
+r79GPB5HJpPBYDBAoVCA53rA8T2Vn3+sDkq4c+cONjY2kM/nUSgUEAqFMD09/dL3MVrx7Vd5O47z
+wmpvsca360FSPuzziN4/DL6JiIiIiIiIiIiI6INimiauX7+OP//5z6hUKj/5fnRdRygUQjQaxcWL
+F3Hp4qUTUw0tSRJUVYVhGNB1Xaz9K8syNE2DLMvid4ZhwDAMyLKMXq+Hw8ND3Lx5E7dv34aqqjh3
+7hzOnz+PaCSKSDQCXdd/8nb5wZxlWbh+/Tq+/vprAMCFCxdw4cIFRCIREfB+qFzXhed62N/fx7Vr
+1/DNN9/g7NmzuHTpEqanpxEKhRCJRI57M8f80LEWCATE7/zjzQ/w6eV4njdW3T1a5e0fL2xzTh8C
+Bt9ERERERERERERE9EHxg+///b//N3Z2dn7y/QQCAcTjceRyOdi2jdnZ2RMTfAOAoigicJRlGbIs
+i5/530fDb0mS0O12cXh4iK+++gr/9E//BF3X0Wq1kEql4E64CAQDrx18O44D0zRx48YN/MM//AM8
+z0Ov10M+n4fneSIY/VB5rgfbsbG3t4fPP/8c//iP/4jf/e530DQN4XAYkiS9c8G3oigi2PYDbf8Y
+Gw2+RwNwVWWE9TJGQ2//azT0dl0Xrsc25/Rh4FWDiIiIiIiIiIiIiD4oiqIgkUhgcnLyub/vdrto
+Nptot9tQVRWqqiIQCCAUCo2tu2sYhmjNnEgkTlxQpyrjVbh+FbimadBUbawCdzSQ1DQNkUgEyWQS
+uq4jEomM3cfr8itTO50OKpWKaE1vmRYcx2Fw95hlWajX69jf30e9Xkev14NlWWNrOb8rZFkWx5Kq
+qmKihaqqzxxjgUBgLCCnl+O3NB9tbe44DgA/HPeGrePB8JveXyfrVZiIiIiIiIiIiIiI6DWpqorT
+p0+j0+mgWq0+8/u9vT2srKxga2tLrJ2cyWQwPT2NYrEo/k7XdQSDQcRiMZw+ffqdq7L9MYqqjFXX
++hXffrjth5H+VygUQjgc97X7BQAAgABJREFURjwex9LSEtrtNhRFweLiIhKJBILB4LGuLU3vLv+4
+8rsJ+F+aNj7BYrT6m8H3y/OD7qfX8x79nc91XY4tvbcYfBMRERERERERERHRB0VVVczNzSMUCqHf
+7z/z+3v37qHf76NeryMejyOZTGJubg4XL17EuXPnxN/5Vay6riOVSiEYDMI0TfR6PfT7/cdthj14
+niuCJ1lWIMtP1tf2185WVXWsWtpfl9e0TAwGAwwGA9HOGAAkSYYsS4//1oOiyNA1Haqmim36sRB6
+tNW0pmlQVfWFgaT/FQgEEAwGkc1mMT09DUVRkMlkEAqFRPvxXq+HTqeDbreLQCCAQCAAYNhi3rZt
+OI4Lz3MhSTI0TX0SsusGLNtCq9VCrVZDq9USFd6tVgulgxIs28JgMEAkEoVhPKkgVhQFruuKsfJb
+PnueB0mSoCiKqC72g35N00QoOBgMntlmSZJgmRZMy4QkSZAkSaxJHQgE0O/30ev2YFrmM9W1w7+X
+oSiyGDtVVaHIChT1SegoQkrXQ6/fgzkwYdkWbNuB6zpj9+PvF/85lstlDAYDAEC/30e1WkWpVIJt
+2xgMBmOP64/RYDB44WOojydC+OPkr/X+9DHp7wP/GB89JhVFRqPREMerf9yPts73jzV/H4y2OB+t
+/H6ZDgqj49fpDvef47ji2LBtG5ZljR0P/liMhu3D7ZeG4bHjwnEdMc7+Mfu8sdI0TXyNjpV/Py8z
+Vv1+X7Qnfx1Ph96jYzPcpvGW50TvIwbfRERERERERERERPRBGa6BHIbnZWHb9jO/Pzw8RCQSEeF0
+IBBALBZDOp1GoVAYux8/UA0Gg5AkCaVSCffu3cPq6ir6/T76/b5oP+15nqhozWazmJ2dxezMLGLx
+GOLxuFgb2w9i+/0+9vf3sba2hkePHqHb7aLb7QKACHD9MC0cDiOXy2FiYgJTU1OYmpr6wQp0P8R1
+XVe0lh4N8Pww3n/+fjguSRJM08LGxgb+/Oc/i+ByZmYGnufBtm3s7+/j+vXruHv3LhYXF7G4uAhJ
+krC3t4dSqTQMX00ThmEglUohk8lgfn4eCwsLaLVauH79Om7evIkbN26g3W7DcRzcuHEDnU4HwWAQ
+oVBIVODPzc2JyQndbhcbGxvY3NxEq9USt/W3MZ/Po1gsIp/PI5/PY2JiAqZpwjRNbG1t4fr167h9
++zaWlpawvLwMVVWxu7uL3d1dEQbncjmcPn0aZ06fwerqKu7du4f9/X2xr/01lRVFEfva388T+QnE
+43HE43GxH1zHRa8/nCixsb6B9Y11HBwcoN1uj7XaD4fDSKfTSKVSqFarKJfL4rgAgN3dXXz++edY
+WVlBKBRCMBjE1NQUZmdnkc/nkUwmkUwmsbGxgUePHqFUKqHT6YjH0DQNsVgMxWIRxWIRuVwO+Xwe
+0WhUbKt/TB4cHGB9fR0PHz5Ep9NBr9eD67oIBoMIBAJYWVnB7u6uGFvP80Ro74+JH377EwpGJ4KM
+td+Xf7h1vn+uDAYD3LhxA9999x3a7TZmZ2exsLCAo6MjlEol1Go1sT2xWAyJRAL5fB6Li4s4deoU
+NFWDrMiwLAudTgetVgubm5vY2NjA4eEher0eut2uOEdisZg4z3K5HDKZzDNj1ev1cHR0hIcPH4qx
+6na74pwLBoNYW1vDzs4OOp0OTNP8Sdez57UtZytz+lAx+CYiIiIiIiIiIiKiD4okSYiEIwgGg88N
+iHZ3dxEOh0UlcigUQjQaRSaTeSb4Hv3ueR4ODw9x7do1/OEPfxDhq1+B7LouwuEwIpEI5ufn8Ytf
+/AKKoqDgFhAMBkXwDQwreBuNBjY2NvCnP/0J33zzDer1OhqNBgAgFAohEAjAcRzYto1kMonFxUUs
+Ly/Dtm2kUqkfbb2uKipg4JlKXD+M9NdbHv09AFiWic3NTXz77bcwDAPT09PD52g7UDUVDx8+xL/+
+67/i3//93/Hxxx/j17/+NRRFwZ07d7CysiLC0lAoJMLrwWCATCaDcrmMa9eu4Z/+6Z9QqVTQarVg
+mibu3buHhw8fQpZlSJKEiYkJXL58GR999BGmp6cxPTWNaq2KP//5z/jmm29QqVRQrVZh2zYMw0Aw
+GMTy8jLOnz+Pc+fOQdd1TExMwLIsdLtdPHr0CL///e/x//1//x9++ctfot1uIxAI4NatW7h7964Y
+h6WlJWiahlOnTuHBgwf493//d6ysrIig2q8s9sPqSCSCq1ev4uOPPwYAKIo6Fnzbjo1er4dmo4m7
+9+7iq6++wtramth+PwROJpNirLa2trCzs4ODgwPUajV4nofd3V1UKhWx/2RZxrlz5/DRRx/hzJkz
+mJ6ehud5uHv3Lq5duyYeo1arif2cy+Vw9uxZnD9/HmfOnEEsFnsmzG00Gtja2sJXX32Fr776CvV6
+HfV6HZ7nIRKJIBqNiuA4GAzCsiwAw+4Io5MoRivK/UkYT7fWf5l23I4zrMxutVr47rvv8I//+I+o
+VCr46KOP0Ol08ODBA9y/fx/7+/vo9Xro9XrIZrMoFAo4c+YMJEnCzMzMcDtkCY7joNFo4OjwCDdv
+3sTXX3+Nhw8fotFooNlsiueQy+Vw4cIFXL58GbZtIxwOPzNWzWYT29vbuHbtGr788ktUq1U0Gg04
+jiPGqtfrodVqQdd1MUngp3heW/PR+2IQTh8KBt9ERERERERERERE9MFRVAUKnh+s6dqw2tSvfPbX
+vvbDuefxK68990nwFAqFYBjGc9fcbTabWFtbg2mauHr1KhKJBMLhMADAsixsbm5iZWUF9+/fx87O
+Dvr9vqgU97dFVVURDnueh3Q6jXa7LSqPf4wkS1ChIpvN4uLFi+h2uzh79ixisRg0Tcf09DQ6nQ4S
+iQQSiQRSqRTC4bCosu12u6Kttuu6cCQHsiuLNvH7+/t49OgRYrEYIpEIut0uIpGIaDMNANVqFb1e
+D+l0WoSz0WgU8/Pz8DxPrCOeTCaRTqdFdXIul8PU1BRSqRQajQYqlQrK5TIODg4gSRLi8ThCoRBc
+1xX7sN/vY3V1FZZlwTAMZDIZ0Qq71+uNbXM8Hkc0GkW1WoWqqggEAiLIfnqf+hXA/tg8HTiWSiXc
+vHkTvV4PkixhcrIojpdyuYKVlftYXV3FgwcPcHBwANu2EYlEEAqFROt5wzAwGAywt7cHz/OQy+Wg
+qqqoEo5Go2Kygz9Gc3NzmJiYgKIo2Nrawvr6uqiG94+lRCIhgnJd10V1s+u6iEajT9qP6wa2t7dx
+//59rKysiA4EiqIglUqJMQoEAiLsHm3f7XdGSCaTOHfuHA4PD3H+/Hkkk0kEg0FMTk7iwoULiEaj
+SCQSyOVyiMViP3oM+y3FXddFp9NBtVoVFemRSAStVguSJI09F8/zcHBwAEVRkM1mkc/nkcvlkEql
+0Ov1cP/+fXz//ffY3NxEvV6HLMtIJBKIx+Njk1329vbQ7/cxGAxEmG8YBnRNx+7uLu7du4eVlRVs
+bGyg0+mI49jvBuBPXPHH6nXDaYbbRAy+iYiIiIiIiIiIiIjeGN3QkUgkUCgUEIvFEIvFEAgERCXu
+4eEhDg4O0Gq1sLGxgY2NDQQCASyfWkYmkxmu622aWFtbw7//+79jZ2cHjuMgFothYmIC+XxerF08
+GAywsrIyDFQl6ZW3VZIkQAYKhQL+6nd/hcXFRczPzyOZTEKWZZw5cwbZbHZsHXBZlkVY92M8z0O1
+WsX9+/cxMTEh2pNblgXLslAul7G7u4tHjx4hn89jenoahUIBy8vLKBQK+Jd/+RdUKhW4roszZ87g
+F7/4BSKRCGKxYWv4bDaLdDqNr7/+Gt9++y2q1SpCoRAKhYJoC66qqmgRv7m5ic3NTTSbTcTjcUxN
+TQ1bxmv62HaXy2XcuXMHqVQK0WgUs7OzSKVSSCaTmJmZQSaTAQCEw+HhPvM8sa/99aN7vR4ODg5w
+dHSETqeDmzdvolarIZvN4he/+AVs24Zt2zg8PMDXX3+NL774QrTD91vqFwoFUdHvh7q1Wg1zc3OY
+n58X7bs3NjaQz+dx5coVLCwsiGriTCaDbDaLRqOBb775Bt99953oYLC0tIRUKoVUKoV+v49ut4tK
+pYLNzU2sra3BMAzkcjmEw2Ex8WF9fR3/8R//gYcPH8JxHNFyfmJiApFIRGz/ysqKmBQxeqxJkoRs
+Notf//rXKBaLmJmZwURuAsFQEKdOnUIikRDV56FQCLFY7Ccd1/6xtbKygmQyicnJybHuCDs7O+Jr
+ZWUFsVgMS0tLkGUZ7XYbt27dwu9//3tIkgTDMDAzM4NcLodcLodut4t2uy3WU19bWwMApNNpcQzE
+43E8evQIf/jDH7C6ugrHcRAMBpFOpzExMYFoNCrGam1tDd1u97WqvZ8+515U9U30IWDwTURERERE
+RERERET0hoRCIUxMTGB+fh6FQgHFYhHxeFyExisrK1hdXcXq6iq2t7dxeHiIM2fOoNUetvS2LAvt
+dhsbGxu4desWGo0GJicnMTMzg+XlZZw9exbhcBjtdhuNRgPtdht7e3uisvlV+GFkJpNBKpnC5SuX
+ocgKZGV4P+FwGFNTU5ClYRto0zTR7XTRaDZe+jFM00Sz2UQymUQmk8HFixeHVbqui/X1dRwdHaFe
+r+Pg4ABbW1uIxWIiAH/48CG+/fZbeJ6HpaUl/O53v0Mmk0Emk0EgEIDnDScJdDodrK2todPp4PTp
+02K98KWlJQQCAVSrVVQqFTSbTXz//fdot9vY3t7G1taWCH99fjV7rVZDIBBAsVjE8vKyeNyJiQmk
+UilRVV4sFsVEh8nJyWHVr26gWqtiZWVFtNr2K6Q//vhj2LYtwub9/X3cu3cP169fRz6fx9TUFKan
+p3H+/HlcunQJ/X4fvV4PpVIJq6uraLfbmJycxCeffIJyuYzvv/8eAJDJZHD58mV8/PHHYlv9cPX7
+77/HwcEBbt26haWlJeTzeZw+fRqLi4tYWlxCvVFHtVrF3bt3sbW1hb29PWxtbWFrawvJZBKWZUGW
+ZWxubuL27dvY29tDsVjE1NQUlpeXcfr0abHGer/fR6fTwd7eHjqdzlhw7VdOX750GRcuXBg71qan
+p1EsFsWx9vQyAq/CdV3R/rxQKGBubm5siYJr167h4OAAzWYTu7u7CIVCkGUZkUhEtEf//vvvUSwW
+cerUKfF15swZUVG+traGvb097OzsIJvNYnFxEdlsVlTgb25u4vvvv8ejR49QLBYxPT0t1o7PZrPo
+9XqiWnx/f19Ulr9Jfujtej/e/YHofcHgm4iIiIiIiIiIiIjoNUmSBEVRkEgkcOrUKVH9mUgkoGka
+PM+DbdvI5XJi/d+trS2Ypoler4d2u41KpYpGo45yuYxyuYzBYIBwOIzl5WX86le/Qj6fR7FYFOsB
+t1otPHr0CGtraxgMBmNrhL/y9ssSFCiQ5PHA0V9n2Q/J/d+/7Jjk83lcvnwZZ8+excLCAubn5gEM
+wzhZlrG1tYXd3V3ouo52u416vY5CoQDDMESVPICxVtr+2uyVSgVHR0doNBqQZRnxeBwLCwtj4a+m
+aQgGg4jH43jw4AE2NjbQ6/XQ7XaxtraGubk5hEKhsW2emJjAhQsXsLy8jJmZGczOzoo2535FryIr
+KBQKuHz5MgaDARKJBGKxmKi2dVwHxeKwpXmpVAIwXLe93W6j1WyhXBnu462tLdGqPpfL4aOPPsKF
+CxcwOTmJfD4P27JhWiaSySRSqRQWFxeHFcjZHJrNptg/sixD0zQEjCdj5Ld/39vbE+24c7kczp07
+h/PnzyOTySCeiEM3dEQiEfR6Payvr2Nrawu6ruPo6Airq6uo1Woi8B0MBqJi/NNPP0WhUEA+n0co
+FBKV/Nvb21hbWxNt4H/KsTb6/VUFg0EsLS3h448/xuzsLGZnZ5FMJsXvW60Wms2maBv/6NEjsYa7
+4zhotVqiDfrFixdx5coV5HI5ZLNZRCIRJJNJaJqGw8NDHB0dQdd17O/v4+bNm8jn85iYmECpVEK/
+30cwGMTCwgJ+/etfi30aiUTEJJfd3V2kUimYpglN037ycyaiIQbfRERERERERERERESvyQ+G/bW6
+FxcXxfrMtm2LsNVfm9kPzEzTFO2TK5UySqUSdnZ2UC6XYZomstkszpw5g88++0y0HJckCZ7nod/v
+4+7du0gmk2g2m88NGV9l2z3JGwve/J//VIqiYGpqCr/73e/w0UcfIZ1Oi0pkYFiR+uDBA6yvr0PX
+dbRaLdTrddi2PdYeHhgG334b7EAggG63i2q1ivX1dTSbTTH2CwsL+OSTT8Qa6JIkiarl+fl5bGxs
+oFQqodfr4cGDBwiFQigWi2PPuVgs4i//8i/xi1/8ArlsDtlcVqzzLssyVEWFrMgoFoui1bmqqpBl
+WVTyAsPK42AwiHv37gGAqPJutVuiwn17exvNZhOe56FQKOBXv/oVfvGLXyAYDIqA3580cfr0aRGQ
+KoqCza3NseBb13UYAQPBYBChUAi7u7vY29sTIaxhGCgWi7hw4QIuXboETdOgqcP1yV3XhW3bePjw
+ITY3N0WwOxgMUK1Wnwm+l5eX8Xd/93cIh8LQDR2qqoptXV1dFWGuYRjPPabe9LE2KhQK4fTp0/j7
+v/97sXZ3MBgUv+90OmLt+FKphO3tbWiaBsMwoCiK+N3ExASuXr2KX/3qV9A0Dbquw3VdsV/39vaw
+v78v1vv2W6DXarWx4PvUqVP47LPPEI/Fnxmr9fV1pNNptNttGIbxRp4/0YeMwTcRERERERERERER
+0Rvgt8n2w69Wq4V2u41OpyPaQPf7fZimKdaa9tcd9lt212o1HB0dwbIsGIaBeDyOVCqFbCYrWkCP
+VsTqui6C0NcNDn/s9j/l/gOBAFKp1LC6OB4fq66ORqOIRCIIh8OQZRmmaWIwGMC27WeCUEmShq2x
+HwfQtj2szD08PEStVkO73YbjOLh//z4+//zz5+6b27dvo1QqodFowLZtOI6Dbrf7zJrl/trV+Xxe
+VHI/7/5arRZqtZpoOd9sNtHr9cbaWJumKQJjVVXF2uytVgvlchmNRgOSJCESiSCRSCCdTiOdTouQ
+/XmP62+7H3r74zP6Jcsy+v0+arUayuUyms0mOp0Otra28M0336BcLj9z34eHh3jw4AFqtRqCwSAs
+yxKTFBzHQb/fh67riMViSCaTyGaz0HX9mX1lGIZo7f+iY+bnrGxWFEWsv+6v0x4IBMTvU6kUJiYm
+cHh4iFKphGazKcbJD8jD4TDi8bhY3/zpbY5Go0in08jlcqjX6+h0Ouj3++I593o96LqOUCgkjv9w
+OPzCsXrR/iaiV8Pgm4iIiIiIiIiIiIjoNfnr6dbrdbGG9+7uLnZ3d9FsNkXg7VeB++2jAYhqW78F
+er1eh+d5iEajiMfjCAaDYi3kk9YK2Q9hZfnZYF6SJFFpK8syHMcZC1t/iOPYYqJArVZDvT5sEW9Z
+FtbW1p57m6OjI5TLZUiShHQ6DVVVn/t4sixDVVVRxf00v1p3f38fKysrWF9fx97eHnZ3d2GaJvr9
+PjzPEyH91tYWut0uQqGQmOjQ6XTQaDTQ7XahqiqSySRisRgCgcAPTmKQJAmyJMOVfnyM+v0+Go2G
+GKNms4k7d+6gWq0iGo0+8/fdbhflchmVSgWpVEpUsiuKAtd14TgOwuEwEomEWBf7TVZqv2kvapnu
+TyiJRqNigoA/ccF/zvF4HJFIRCwf8PR9aJqGSCSCdDqNXq+HWq0mJqvoug7bthEKhcRkD7/7wLs6
+VkTvCwbfRERERERERERERESvwfM8WJYF0zRxeHiI1dVVfPvtt9jd3UWpVEK324Vt2/A8T7Qr96uC
+/RDVdV0MBgN0Oh2x5nMoFEIkEhHtzU+iJxXIz26/HzD71cF+KPxywfewWrvVaqHT6WAwGIhxrlQq
+L7yNH0iqqopgMCge++ltflHw7dgOLNvCYDDA9vY2bt++jZWVFezt7eHg4ACO48B1h+uX+/u61WrB
+tm0ATyY59Pt9sd2qqiIajSIUCkHX9TdW+WtZlmij3+v1YJomKpUKut3uc9vi++G24zhj3QRs20ar
+1YLruggEAqKCWpFfv8vAz+lF26ZrOsLhMILBICRJEpMV/HGRZVn8/kWTEGRZRjAYRCwWg6ZpsCxL
+tFAPhUJirPzJDD9U/U5Ebw6DbyIiIiIiIiIiIiKi1+B5Ho6Oyjg4KOH27du4e/cuHjx4gFgshnPn
+ziESiSAUCiEUComK70ePHuH69et4+PDh2P344aPneaJa+n0PzH7K8/MnDHieh2AwiEQigWw2i5mZ
+GSwsLDz3Nv7YBgIBJBIJJJNJTE9PIxqNYn9//6Uet9vrolQq4eDgAHfu3MG9e/dQq9WQyWSwsLAg
+9rO/XrSiKPjzn/+Mmzdv/ugYvOn97I+PoiiIRqPIZDKYmprC/Pw8UqnUc//eD+79Ft+e56FcLuPo
+6GjseDzpx6TfocGffPG8yQ+vcj/+bV70RURvB4NvIiIiIiIiIiIiIqLX4DgOyuUjrK2t4d69e1hZ
+WcHm5iauXr2KS5cu4fTp0ygWiygUCqLq+I9//CNKpdIzwbf/+w8p+P6pRoPvdDqNTCaDTz/9FL/9
+7W9f+PfAcA3o0bWVX2V8e70e9vb2cP/+fdy7dw9ra2uQZRkLCwv4i7/4C0xOTmJychKRSGRs/fb1
+9fWxkPTpbfo59rE/kcKvKM9ms7h06RJ+85vfvHBygL89fgv6crmMGzduoFKpjIXeJ/mYdD0XruuO
+taN/3nHwY8/xRaG3P07vyyQBopOEwTcRERERERERERER0WvwPA/tdhsHBweo1WqwbRuBQEBUAS8v
+LyOXyyGTycA0TZimiWQyCcMwxu5HlmXoug7DMNBqtTAYDNDr9USb7Pfdi6plRTt4zx0Lr4PBIMLh
+MOr1uhijWCyG6enpHwwcZUmGrMiQZRmDwQD9fv+lt9E0TdRqNezt7aHT6UCWZUQiERSLRZw9exa5
+XA65XA7BQBCmNdzXkUgEiqKM7Udd1xEMBmEYBur1OlqtFrrdLizLeqkw/OkAerQC3qdpGkKhkGiV
+b5omdF1HLpfDzMzMDz6GoiiiCtpfp7rdbouW4JZlHe/B8hpM00Sj0UC73QYAhEIhhMNhRCIRGIYh
+ftftdse6L4xyHAe9Xg+NRgOmaYrW+aFQCMFgEP1+X7TfHwwGz530QERvHoNvIiIiIiIiIiIiIqLX
+4Hkeer0e6vU6+v0+gsEgstksJicnMTMzg0K+gGAo+MxtnqYoCgKBAMLhMI6OjsR6368SzL4PJEl6
+pgLXr14eDb5DoRASiQT29/fR6/XQbrfF2sp+Je+Phcf+etYvy1/vulKpwPM8xONxZLNZTE1NYW5u
+DsFgELquj93mefta13WxfrtlWajVami1WjAHJlzHhSQ/P7j3PG/4O0/60fDbMAzEYjGEQiHYto1G
+o4F+vw9JkoZrdI+E2y8an0AgINaaPzo6Qq/XQ6vVQq/XO45D443odrqoVqtoNBoAhpMl4vE4EomE
+mKBQr9fRbrdhmuaTcR/ZH7Zto91uo1KpYDAYiIkM0WgU0WgUjUYD3W4XiqJgMBj84Pb4+4vhONHr
+Y/BNRERERERERERERPSaLMtCv9+HZVlQVRWRSATRaBSJREKE3v1+H+12G+12G/V6/ZlATNM0hMNh
+JJNJbG9vo9vtotFooNFooF6vQ1EUqKoKz/Ng2zZ6vZ6oKLVtG67rHvcwvBF+m2g/vPY8D5Zlod1u
+IxaLiXELBoNIpVLQNA2DwQDtdhvNZhPNZhOBQACBQACapon7HW0j74eMpmm+UuDoui5M00S324Xn
+eTAMA9FoVISn/uMMg/gOOp02Op0OHMcZu59gMIhkMoloNCo6BtTrdZQrZVSqFbH9/rbatg3LsmCa
+JgKBAAzDEOOjqipc10Wv10On0xHVxqqqIhaLIRKJwPM8MZGi1Wqh0+mIxxgNzm3bFlXOAODYwzXR
+U6kUtre3MRgMxPFYrVVhGAZUdRg1+bf1g3HLsp553m+D67qwLAudTkdMRPAnTjiOg2qtioODA9G+
+PZ1Oi0p9vyq/0+mgXq+jVquhXq9D0zToug7XHbZJbzabqFQqODw8hCRJomI8k8kglUrh4OBAVHrX
+ajXUajWEw2FxXD89VqZpHstYEb1vGHwTEREREREREREREb2mYDCIeDyOQCCAcrmMSqWCnZ0drK+v
+w7IsyLIM13WxtbWF7e1t3LhxA6VSaew+AoEA8vk8dF3HxsYGTNPE0dER7t27hz/+8Y+IxWKIxWJw
+XReNRgPlchl37tzBzs4OXNdFMpk87mF4baNVzH4VbbvdRrVaxf3799Hv9+G6rggis9ksIpEIVFVF
+u93G3bt38f/+3/9DoVDA1NQUYtEYZGW41rIfQJqmKR4jHo+LwPplKIqCSCSCVCqFVquFRqMBWZax
+ubmJtbU1UWVer9exvb2Nra0t3LlzB51OB6FQSNxPPB6Hoihot9tYWVmB4zjY29vDtWvX0O12USwW
+MTk5Ccu0YFrD1tylUgmHh4dYXl7G2bNnoaoqAoEAIpEITNPE7u4u1tbWYNu2CFfF5ItgEJIkYW9v
+D19++SXq9bpYj9yv/O73+yLoHW0zDwALCwvY3NwcBsfVKlZWVvDFF18gkUggHotDkofj22g08N13
+32FrawvtdhuJROKtVzJbloXDw0Pcu3cPhUIB2WwWgUAAnU4HnU4Ht27dwt27d1Eul5HP5zE3N4fp
+6WnMzs6i1WqJ/XFwcIAbN24AgAjGu90u2u02Hjx4gNXVVWxubmJychJzc3OYmZlBMplEMplEqVSC
+53moVqtYXV3Ff/zHfyCVSiERT0CSh8dHvV7Hd999h83NTdRqtWMZK6L3DYNvIiIiIiIiIiIiIqLX
+4LeEjsfjMAwDvV4PR0dH2NnZwaNHj8aC75s3b+L27dvY2NjA0dHR2P2EQiGEQiEkk0lcu3YNlmWh
+XC5jZWUFhmEgn8+jWCzCtm3s7u5id3cX9+7dQ6lUgq7r701LdL/i2zAMEVhWq1Wsra2JKutkIglN
+05DL5cQa2o1GAysrK2g0Gjh79iz6/T4mJiZEsLu9vY3t7W20220oigJFUbC4uIilpaWX3jZV1cQ+
+2traEms8b29vY319XVRhl0ol3L59G3fu3MHu7u4zwXcikUA6nUa73RYV2QcHB7h+/TparRbOnTsH
+VVHR7XXR7Xaxt7eHlZUVrK2todfroVAoiOA7FAphMBhgd3cXwWBQtIF3HAfRaBSpVEpUdh8cHODr
+r79GuVzG2bNnxSQCP4Tf3t7Gzs6OqEyOx+OYn5/HqVOncP36dRF8r62twTAMFAoF5PN5SJI0dkzu
+7OyIKvO3zbIsHB0dYXV1Fb1eD4PBAIZhoFKpoFKp4O7du1hbW4NlWZibm8OFCxcwMzODqakplEol
+RKNRuK6Lo6Mj3L59G6Zp4tSpU5AkCdXqsFp8dXUVDx8+xO7uLnK5HIrFIi5evChanX///fdwXRf1
+eh0PHjxAMBhEoVBAoVCAoijY3d3F3t4e7t27h+3tbViWJboIENFPx+CbiIiIiIiIiIiIiOg1KLKC
+ZDKJ2dlZ1Go1lEolHB0dodFo4MaNG9jc3BThYrlcHltjeZSmaQgGh23RZ2ZmcOrUKVQqFfT7fdy/
+fx8HBwfY2tqCJEliTWvTNKEoCnRdh6qqkGV5bN3nk0qWZGSzWSwtLcEwDDiOg/X1dXS7XRwdHSGX
+yyGbzSKZTCKdTuPs2bM4OjqCbduo1Wp4+PAhut0uotGoCHGbzSYajQYURRGVuaqqvtJYBQMB5Cfy
+6J0aTm7Y29tDv9/Hzs4O/vM//xOapkHTNPT7fTSbTYRCIei6/sxa2oZhIBwOo1gs4uzZszg4OIAs
+yxgMBtjc3IRpmjg8PIRpmjBNE61WC9VqVbTE9jwP4XAYk5OTOH36NGRZRq1Ww/3799FoNLCzs4NM
+JoNMJgNVVTE9PY3Lly+LFtt7e3twXRfValVMDDBNU7SKTyQSSKVSCIVCIjyfmZnB0tISdF2H4zh4
+8OAByuUytre3oaqqaL3vt/uXZXms1fzbYts2ms0m9vb20G63xTnTbrfFOIZCIYTDYczNzWFpaQkT
+ExNIp9PwPA9LS0s4f/48JElCp9PB6uoq6vU6tra20O12xX0AENXeftV4IBBAMBjE9PQ0FhcXIcsy
+PM/D+vq66AKh6zq63a5oB++P1Y+tSU9EP47BNxERERERERERERHRa5BkCdlMFqoyDP8ODg5QLpfR
+brdx48YNUZnrr5XsV8hWq1VUKhVxP7Isi79bXl5Go9HAw4cPUSqVsLm5iZ2dHaiqimAwiFgshmAw
+KNYTD4VCIkx/OmQ9iSRZQrFYxOXLl2EYBjY3N7G9vY2DgwPcu3cP+Xwe586dw/nz55HNZvHrX/8a
+BwcH2NjYEH+7ubkJz/PGWqf7VeITExOYnJxEIpGArusvvV3BUBBT01MIhUM4ODhAqVTCzs4Odnd3
+sb29LarUo9EokskkTp8+jU6ng4ODg7H7URQFgUAAhUIBv/zlLxEOh/Ho0SNsbm6iXC7j8PBQtNn2
+PA+6riMSiSCZTCIcDkNTNRgBA0tLS2g0Gnj06BG2trbEsaLrOs6cOYPz588jk8lgeXkZ09PT2NjY
+wKNHj1CpVFCr1XDnzp3heEsSFEWBYRjQNA2RSASxWAz5fB7pdBqxWAyLi4v45JNPEI/Hsb+/j729
+PZRKJXHcJhIJ0e4/Ho+Ln79tjuOg0+ng6OgIu7u76Pf7YsKA4ziIxWKYnJzE7Owszp49i4WFBUSj
+UQQCATiOg0uXLkGSJDx69Ei0q9/a2oLruuJYMgwDiUQCc3NzuHLlChYWFkR3AVVVsbCwgF/+8peI
+RqMolUrY398XY+Xf1h+rWCwGz/MQCoUYfBO9JgbfREREREREREREREQjNF0TwaUfUEUikRcGpH5L
+6Eg0gnanjb29PVSrVezu7mJ/fx+2bSMQCCAcDmNiYgKzs7OIxWKoVqvodDpIJBIwDEOEppFwBAsL
+CwCGa4ebpomDgwP0+32xbnM4HEYkEkE4HEY4HEYwGEQwGISmaa9cxfwq/MpUP4Q1DEOssa2qqgh0
+E4kEJiYmkEgkEAgERCX62DirGsLhMBKJhGg9HolEYBgGJElCPp/HxYsXAQDNZhPb29totVqwLAue
+52FychK2bSOfzyObzYrW8Y1GA0dHR6hWq2Pt3/0qZl3XkUgkUCwWh4GnMazSTSQSyOfzP7jNgUAA
+mUwGyWRSBPGWZWF3dxdHR0di4oKqqpifn8fZs2dRq9VQLpcRDAYRjUbF+uSGYSCbzUJRVBSLRXz1
+1Veikr/ZbKJer4uJDPF4HOl0GpOTk0ilUtD0YTi9sLAg2ugfHR2hUqmg0+nAtm2k02l0u11RgZzN
+ZnHt2jUMBgN0Oh3R+ttnGAaSyaSo9PYnCCQSSQSDQczOzsJxHAQCAbiui4ODA1G17K9xn0gkRDCs
+KAomJiZEqPx0h4Ofk+d5cF1XrA/f7/fFsTsxMSGqupeXlzFZnISiPtm2M2fOIJlMIhAIoNlsolKp
+oNFooNlsinPUb29++fJlMakgmUyK+5iZmYFlWQiFQrh+/ToODw/R6/VgmqaYuOKv8+5fV45rrIje
+Jwy+iYiIiIiIiIiIiIhGZDIZfPzxx6K6NhqNYmJiAtls9oW3kWQJChRkMllcvnwZsVgMtVoN9Xod
+juNA0zRR4VssFtHr9ZDL5VAqlXDhwgUsLCwgFosNQ19ZQiKRwOzsLDRNQyaTwYULF0TFql85HgqF
+8PXXX6NarYq1mv3g+Oeo+lbkYUgXjUbx8ccfi+rWS5cuDcNrWYEkS1hcXMTf/u3fYnJyEpcuXcLs
+7Kxo+T0qFo/h/PnzYl1qSZKQTqdRLBaHv4/FMD09DUVRkEgkcObMGTiOA9u2xdrTc3NzYgKAv4Z2
+oVBAs9kUreB9/mSBdDqN6elpTE1NQdd1BAIBzM3N4W/+5m+Qy+Vw+fJlsc3Pa9Xth5J+EOy3uG80
+GiLUTiQSYk1nwzAwNzcHXddx6dIlpFIp8ZwBIBIJQ5YlnD9/HuFwGOfPn0e320Wn0xFt2kOhENLp
+NDKZjJg4MQzOcyIcLxQKqNVq4jiZnZ3F3NwcJiYmEAlHEI6EcfbsWYTDYZw5c0a0/vb5x08kEkGx
+WMTU1BSy2SwikTAkSUI8Fsf09DQ0TUMqlcLy8jJs24Zt29B1HZlMRoTtvV4PkiSJiSNTU1OIRCJv
+5fwNBAKYnZ3Fr3/9a7iuK6q9/YkM+Xx+eB4WisjlcpDkJ5MbFEVBLBqDJEm4fPky4vE4Dg8PxXNS
+VRW6rouq8cnJSUxMTIyt3z567Oq6jng8jqWlJViWBdu2xTmdTqfR7/fR7XYBDCdm+MdNLBZ7K2NF
+9L5h8E1ERERERERERERENCKXyyEajeLKlSuiStQPNF9ElmV4kodsNoNYLIqzZ8/CcRxYlgUAkCQZ
+siyJ+3FdFx9//DFM00Q4FEYwFISu6ZCVYTiXTCZFuHbp0iWY5vB+PM8V1dGWZePo6Ai3b9+GZVki
+lP65KkZlRYYhG9A1Hb/61a9w4cIFSJKEUCiEYDAIWRqG7UtLSygUCvjrv/5rhENhhMLD0Pvp6ulE
+IoELFy5g+dSy+JmqqaLiO5lIIhKJIJ/P4/z58xgMTHieO/w7VRVV8n44nM1mUSwW8dFHH8F1Xdi2
+Dc/znty3v+60qkHTNbFNkiSJavy/+qu/QigUEhX+T2+z//eSJGF+fh6FQkEEmrZtP/6dDFVVRGv1
+5VPL6PX7kOXhWIVCobH1nCPhiFhL+8zpM7BsS2y//zf+JANRLa4PJ0hksxmkUklMT0/jV7/6FWzb
+gee58DxPjI+/xrgsy4hEIlheXoZpmuIxRp+bP0a6rot14xV5eCzF43GEwiEUCgWcO3cOlmXBdT14
+ngtJkqFpw+1zHAeu+3g/KSqUx2Ohay/fUv51BAIBLCws4L/8l/8i2omPTmAYfW5Pr7+uaZro3pBK
+pXDu3LnH66K7cF3nufvX/xoViw6XIsjn8zh39hwG5uCZsVIVFa7nHutYEb1vGHwTERERERERERER
+0YnjPg5Afw5+MPaq/HWk/QD6p/I8D61ma1i96zqivbIkSZBlGZZlodVsoVqtolarodvtimrdQqGA
+RCIBVX3zH//7gS/kYUXri6pSg+qw7fqPEYHhCwqBFVWBoipizeyX8VPXlNY07aW2eXQs/LbmP+pH
+Cp0VVYEC5QfH4kX84/Rlt/15Fewv66fsj+OgKAqCwaBo2+5Xx78MSZLE/nid83h0rIjo7WHwTURE
+RERERERERET0DnEdF/ulfayursI0TSSTSSQTSajacB3tVquFUqmEnZ0drK+vo9lsIp1OIx6PY3Z2
+FolE4icF90RERCcZg28iIiIiIiIiIiIioneI4zo4OjrCysoKOp0OUqkUUqmUaHPdaDSwu7uLnZ0d
+lMtlyLKMWCyGTCaDQqEgWjATERF9SBh8ExERERERERERERG9Y1qtFsrlMvb29vDw4UMAEGt7O44D
+0zRh2zZSqRSKxSIWFxexuLgIwzDG1o8mIiL6UDD4JiIiIiIiIiIiIiJ6h3ieh263i3K5jEePHqFe
+r6PVaokw2zAMRCIRxONxXLx4EVevXsXy8jJmZmbEWsYMvomI6EPD4JuIiIiIiIiIiIiI6B0iSRIm
+JiZw9uxZhEIh1Ot1NJtN8TvDMBCNRpFMJnH27FmcOXMGU1NTiMfjDLzpg6LICjRdQzAYxNLSEj79
+9FP0+32cPn0a4XAYhmFAluXj3kwieksYfBMRERERERERERERvUNUVcXS0hLCoTAazQYGgwEGg8HY
+7w3DgGEYSKfTyGQyiEQiotqb6EMhKzIMw4Cqqrh69SrS6TRs28bMzAwSiQR0XYeiKMe9mUT0ljD4
+JiIiIiIiIiIiIiJ6h8iyjKmpKUxNTR33phC90yRJgq7rAIDTp0/j9OnTx71JRHSM2N+BiIiIiIiI
+iIiIiIiIiIhONAbfRERERERERERERERERER0ojH4JiIiIiIiIiIiIiIiIiKiE43BNxERERERERER
+ERERERERnWgMvomIiIiIiIiIiIiIiIiI6ERj8E1ERERERERERERERERERCcag28iIiIiIiIiIiIi
+IiIiIjrRGHwTEREREREREREREREREdGJxuCbiIiIiIiIiIiIiIiIiIhONAbfRERERERERERERERE
+RER0ojH4JiIiIiIiIiIiIiIiIjrhJEmCJEni3wAgS7L4N9H7jsE3ERERERERERERERER0Qnkh93P
+C70ZeNOHhsE3ERERERERERERERER0Qkmy8PKbv+7+JL9EFyGLDEWpPcbj3AiIiIiIiIiIiIiOnEY
+4BARDT1d9f109fdo5bcs89pJ7y8e3URERERERERERER0IrGNLxERRKW3oiiQZVl8jYbfsszrJb3/
+GHwTERERERERERER0YnxdPUiEdGHzA+9NU2Doijiyw/CR6+XEsNves8x+CYiIiIiIiIiIiKiE4cB
+DhHRk+BbVVXxNVr1Lctc25s+HOpxbwARERERERERERER0asarfyu1+v49ttvEY1Gj3uziIjeiuvX
+r6NerwMAFEWBruvQdR2apokv0fpckZ+7/jfR+4bBNxERERERERERERGdKKPBjSRJKJfL+MMf/oC1
+tbXj3jQiordif38f1WoVkiRBVVUYhiG+dF2HqqpQFGWsApzofcfgm4iIiIiIiIiIiIhODFl60r43
+HA4jHo+j0+ng4OAApVIJnueJLwBj//Y9/d9EL8t13bFjzHVdAIAsj1fUMmSkn8vYmt2ShHg8jlAo
+hGAwKEJvTdOeaXvuH5di0hCXi6D3EINvIiIiIiIiIiIiIjpRJEmCYRg4f/482u02Dg4OYFmW+DJN
+E5ZlwbZtWJYFx3Fg2zZc1xVfo+E3g3B6Wf6xNPoFYGx9Zb/Sluh1PR1y++G1LMuimjsajWJmZgaR
+SAThcBjBYBCBQACGYQxbnqsaZFmBIitjnTKevn+i9wGDbyIiIiIiIiIiIiI6Ufzg+8KFC8jn82i1
+Wuh0Ouh2u+h0OuLfvV4PvV4Pg8EAg8FAhOGO4zxTucvwm16G4zjodrvo9/viCwACgYD4CoVCDL7p
+tY2G06MV2/7kCr+teSgUQjweRywWE6G3ruvQtWHlt6IqUFVlbJ1vWZIZetN7icE3ERERERERERER
+EZ0okiRBURTE43FomoZ4PD4Weo+G391uF4PBAKZpwjTNsepvBt/0qkzTRLvdFsebqg5jlnA4LL4i
+kQg0TTvuTaUT7nnBt1/lrSiKCL79yRahUGis4ls3nqzzPVolzsCb3mcMvomIiIiIiIiIiIjoxJBk
+CZL7OABSHlc+6oao5PY8b6wyUtd1mKaJwWAg/sav+PbXZ2boTS+r3+8Pq2gfV3S7rgtJkhCJRBCJ
+RBCLxRCLxWAYxnFvKr0nXtTiXNM0EX77YbcfgPutzkfX+x5bh57re9N7isE3EREREREREREREZ0o
+IghSZGiaBtd1EXADAABZehIOaZqGQCAwtua367oiIPe/Awy/6eX0+/2x0NtxHADDiu9YLIZEIoFE
+IsHgm17baGW2X6ntX9v88FvXdei6LoJuv91+MBiErutQ1Seht7gPST7up0b0s2HwTURERERERERE
+REQnhh8GiXBb1cZalfuBuL8Grl/pbVnWWKW3H3wDDL3p5fV6PQAQLfNN04QkSSL4jsfjSCaTCAaD
+x72p9B4Yvd6NVn37HS00TROV36MV4H61t65rot25aJkuS2x3Tu8tBt9EREREREREREREdKLIkgxP
+8qCq6lhoPRoG6boOy7IQCATG1vX2q7y5tjf9FJ1OB67rwrIsmKaJfr8PAIhEIohGo0gkEkilUgiH
+w8e9qfQeES3Kn6r69jtbPPs1DL39Nud+1bcsyWNrhxO9bxh8ExEREREREREREdGJIskSFCjwvGH4
+LX4uSZDlYRjkB99+6O0H3q7rwnOHYbfruQy+6ZUoioJer4dut4tut4tAYNhiPxgMIhQKIRKJIB6P
+M/imN0ZUfUtPqrUlSRLtzkdbn/sTf/xAfLTae3Rtb4be9L5i8E1EREREREREREREJ4YIbGRA9sbX
+qpUVGYpiQ1UVuK4r1v92HGes0hvAC78T/RBJktDpdNDtdtFut8Va3oFAAOFwGJFIBLFoDOEIg296
+PaPh9GiVtv9vRVagqMpY63NFUcTP/TBctEh/XO3N0JveZwy+iYiIiIiIiIiIiOjEkSQJsiQD8pP/
+dhwHiqKIdbz9Nb39Sm/XfRJue577+DsDb3o1rVYLgUBArKMsSRICgcCTqu9oBJFI5Lg3k94T4wH4
+8IIny0+1PpcVyIo8tga4/+VfK/1qb6L3GYNvIiIiIiIiIiIiIjpRJEmC53mQZAmyOwy//RDIr+oe
+DcE9zxPtzYFhi3Mfg296FZZlicDbbyUNAKqqQtd1GIYBwzBEC3SiN2G03bn42Uj4Laq6R8JuSZKg
+yMpYe3NWe9P7jsE3EREREREREREREZ04ovWvIkHyJHiuNxZ8y7L8TBtz13XH7oOhN72qwWAwFnr7
+wbf/s2H4HWDwTW/U8wJrWZbF757+Gq3wHm2TTvS+Y/BNRERERERERERERCeSqPyWJEAGFCiistv1
+3GeCb0VRxm7P4Jte1Wjgrarqk1bSsgxFUaBpGjRNhaZpx72p9B55UWj9dKjNwJs+dAy+iYiIiIiI
+iIiIiOjEejrUkZTHYY83/D7a4pzodSmKIr78ttJP/1xVVGgqg296e54Ou8XPGXrTB4bBNxERERER
+ERERERGdeM8LfDzPE0E40ZvgV3mPrqP89BrLiqpAVuTXfzCil8SAm2iIV14iIiIiIiIiIiIiei8x
+DKKfw2gL6ef9m+ht4nFH9AQrvomIiIiIiIiIiIjovcVQiN6k562bPPpvv/U5jzsiorePFd9ERERE
+RERERERERERERHSiMfgmIiIiIiIiIiIiIiIiIqITjcE3ERERERERERERERERERGdaAy+iYiIiIiI
+iIiIiIiIiIjoRGPwTUREREREREREREREREREJxqDbyIiIiIiIiIiIiIiIiIiOtEYfBMRERERERER
+ERERERER0YnG4JuIiIiIiIiIiIiIiIiIiE40Bt9ERERERERERERERERERHSiMfgmIiIiIiIiIiIi
+IiIiIqITjcE3ERERERERERERERERERGdaAy+iYiIiIiIiIiIiIiIiIjoRGPwTURERERERERERERE
+REREJxqDbyIiIiIiIiIiIiIiIiIiOtEYfBMRERERERERERERERER0YnG4JuIiIiIiIiIiIiIiIiI
+iE40Bt9ERERERERERERERERERHSiMfgmIiIiIiIiIiIiIiIiIqITjcE3ERERERERERERERERERGd
+aAy+iYiIiIiIiIiIiIiIiIjoRGPwTUREREREREREREREREREJxqDbyIiIiIiIiIiIiIiIiIiOtHU
+494AIiIiIiIiolfheR48z4Npmmi32+h2uwiFQgiHw9A1Xfxdp9tBt9sFAIRCIQSDQSiKAkmSIEnS
+cT+NYxkzz/XEuHieh3A4jHAoDEmW3rlx8TwPruPCdmz0+330ej14nodQKIRQKATLstDv9WE7NmRZ
+hqIoMAwDhm5AUZXj3vxj97zxcxwXkUh4bPws24KiKFAUBZqmwTAMaJp23Jv/XIPBAL1eD5ZlQZEV
+KKoCXdehazr3ORERERERMfgmIiIiIiKik8WyLJimie3tbXz77be4desWLl68iCtXrqBQKEBVVciy
+jK+//hrfffcdAODy5cu4cuUKAoEAAoHAOxvs/Vxcx4VpmRgMBrhx4wauX78O27Zx9epV/OKjXyAQ
+DLxzgbFlWWg2m2i1Wrh37x7u3r0rtvnq1avY2trC6uoqGo0GQqEQIpEIZmdnMTc3h0wmc9ybf+xs
+20ar2UKz1cT9+/dx9+5d9Pt9XLlyBR999BH29vawtraGSqWCcDiMSCSCqakpzM/PI5fLHffmP9fO
+9g7u3L2Dw8NDxGIxxGIx5PN5TE1NcZ8TERERERGDbyIiIiIiIjpZbHtYwfro0SP827/9G/75n/8Z
+n332GaLRKMLhMFRVhaZpuH79Ov7hH/4BwDBEnZubQzweh67rr7cBJ5DjOuj3+2i322JcTNOE4zhY
+WloCgGHV7zsUfNu2jUa9gdJBCV999RV+//vfw7IsWJaF+fl53Lt3D1988QX29vaQTqeRTqfR7XaR
+TCQZgvrj12xgf38f165dw7/+67+i1Wqh3+9jdnYWq6ur+Pzzz7G5uSnG7+rVq0gkEu9u8L27g6++
++gorKyvI5/OYmJjAuXPnEIvFuM+JiIiIiIjBNxEREREREb19nucBACqVCjY3N7G1tSV+l0wmMTs7
+i9nZ2ee233ZdF67rot/vo16vo1QqoV6vo9/vw7IscZt2u41qtQrP89But2HbNhzHEY/9vvDbmG+s
+b2B9Yx22bWNychLT09Oi9TcAeK4Hx3HEuJimiVarBdu24XrucT+NH3x+3W4XtVoNpmmi2+1CkiTY
+to1ut4tWq4VAIIBgMDgM813nuDf5neEfG71eD/V6HY1GQ4yfZVnodDpot9tj4+e67+6xMBgM0Gw2
+Ua/XxTb3ej3Ytv1WHt91XZimCdM0sb+/j52dHXQ6HRSLRUxOTiISicAwjLc+ucafENJqtbCzs4Pt
+7W3EYjFMTk4il8shEAjAMAzIsvxWt4tOttFlRdbX17GxsQHDMDA1NYV8Pj98feFxRURERO8YBt9E
+RERERET01vnrTe/v7+Pzzz/HF198AQCQJAnz8/P47LPPMDM9Azz+PP1dWnv6XTK6jvOt27fwz//8
+z+h2u/j1r3+Nv/qrv0IymUQikTiRwYQkSVA1VbSm9yc0qKoqAhfDMBAIBKDrOgzDgKqqUOR3p2r9
+OPljFQgERPt/MX66Idr+67o+Nn48117McRx0O100W03cuHEDf/jDH1AqlfCrX/0Kv/nNbzA5OYlU
+KvXWg+/BYDAMvbd38PkXn+NPf/oTpqen8Rd/8Rf46KOPkEqlxDFA9LI878lkqWvXruFf/uVfEI/H
+8Zvf/Aaf/sWniMVjUBTlg+yiQkRERO8uBt9ERERERET01tm2jcFggFKphJs3b+I///M/xe8ODw8x
+NzeH3/72tyKUYxj3fJ7nwXEduK6L9fV1fPXVV2i320gmk7h06RICgQAikciJDCaGIa0mAtnR4Nav
+YPWra/1/a5oGSeaxAgzHT9O0sYkDsiwPgyrjSdj99PgxHH0xz/NgWiY6nQ52dnbw/fffY2dnB+l0
+GmfOnEEymUQsFnvr2+U4w6UMqrUqHj58iO+++w6NRgNTU1M4tXQKoVDovet0QW+H53no9/tYXV3F
+n/70JySTSeRyOZw9exaariEajR73JhIRERGNYfBNREREREREb1271Ua5Usbh4SF6vR5kWR5rq1qr
+1bC5uYlUKo10OoVAIHDcm0xv2TC4VUVVsqIokGUZqqqKCRGjoS2D23FikoDxZPz8n42G3qOTCDRN
+Y8X8D5AkCYZhIBKJYGZmBleuXEE+n8fp06eRzWYRDoehqm//ozZN0xAMBpHJZLC8vIxyuYzp6WnM
+zs4iFo8hEAhw8hARERERfRAYfBMREREREdFb5Xkemq0mSqUSDg8P0e/3IcuyWLvbD763t7cBAJFI
+mMH3B0iW5bGKZVmWx4Lvpyu+R/+OnlR8G4HHgfZzJg48t+Jb4fi9iKIoMAwD4XAYc7Nz6Pf7qNfr
+OHXqFLKZLCLhCDRNO5btCgaDSKfTOHfuHBRFQTqdxuzsLOLxOAKBABSFExqIiIiI6P3H4JuIiIiI
+iIjeukajgZ2dHZTLZSiKgkwmA9u2Yds2gsEgOp0O1tfXEQgEMDEx8cYf37Ed9Po9mAMTR+UjlMtl
+tNttDAYDmKYJRVGgqipCoRBSqRSSySQikQii0ShM00SpVEKpVIKqqtA0DZFIBOl0GtlsVjxGu93G
+4eEhDg4OAAyDyHA4jFwuN/acut0uDg4OcHh4CFmSIcnDv8tkMshkMj9YqdlqtbCxsYFHjx5hZWUF
+7XYbvV4PDx8+xL/9278hkUggFoshHA6LgPPo6AimaQ7XK+52US6XxQQE0zRhWRZs20Y4HEYkEkEi
+kUAmk0E2mxWhsj9BwbIslMtllI/KaDQbGAwG6Pf7UBRFhHGJRALxeBzxeByxWOylJzHIkjzW1lzT
+NNi2/dzK5bFW55IE13VhWRZM00SlUkG5XEaj0UC/3xcTLcT2xRNIJIfjFI/H4Xkejo6Gx0S320Wv
+14Ou65iensb09LRYB9sfg8FggP39fezs7MA0TRSLRRSLRQSDQRE4+ttSrVZRLpdRr9fFWEmSNLYt
+8cSTsQoGg2I8/P3S6XTGtq/f78NxHPGcwuGw2HehUAihUEgE3M8LwEfXSn/ZiQN+2+xOp4P9/X3s
+7++j1+uJ48rzPLiuKx7DP48ymQxCoRCCweBY+33LsmBZFjqdDg4PD3F0dDR2f5qmQdd13Lx5E/v7
+++j3+7Asa3guP27zXS6XsbW1hc3NTUQiEWQyGQSDQdRqNdTrdViWBc/zoKoqUqkUUqmU2A7P88Tj
+DgYD2LYNWZbF+ZNMJpFMJhEOh8Wx2el2UCqVcHR0hFQqhfn5ebieCwBi8k61WkWz2USz2US3233u
+uKTTaaTTaYRCIVGZXa1WUavV0Gg0Xuq2fpW5YzuoVqvY2tqCZVkoFApjLc7949U/hqrVKrrdLgaD
+ARzHgaIo0LRh++pkMolEIoFoNIpoZNjO2nZsdLtdPHr0CFtbWwgGg8jlcojFYmKcB4OB2DeRSATh
+cBipVAq5XA7xePylKs89zxOvBwcHB9jc3ES1WsXExATy+bwY33a7LY7lVCqFQqGAdDotrk31eh3l
+chnValWcbwDEutSJREJcn6LRKCKRyNhrhGmZ6HV7ODwaHhudTkccH/61399eSZIQi8WG9xOOIBwJ
+Q1EUbG9vY2dnB7FYDHNzc5icnIQsyZAVWYyFZVliIphlWeJ4z2QySKfTUGQFpmWi3++Lc7/T6Yhr
+tn+9jUajiMfjw+cUiyMai4ptdGwH1Vp1eEw2mmi2muh0OmLCmT+pIxAIIJVKIZ3OoN/rYb+0j/X1
+dayvr2MwGKDZbOLevXsIhUKIxWKIxWLifEqlUmI8T+LyGkRERPR+YPBNREREREREb5XneWg2m9jZ
+2UGlUoGu65iamhJhRTAYRK/Xw8bGBnK5HAaDwRvfBtMy0Wg0Ua/XcPv2bdy5cwe7u7toNptot9si
+bM1ms1haWsKZM2cwOTkJTdPQbDZx8+ZNfPPNNwgGgwgGgygWi7h48eJY8N1oNHH79m189913olo5
+n8/j6tWryOVyIvRoNBq4e/cubty4IUKciYkJXLx4EZlM5gefR7VaxbVr1/DFF19gbW0NzWYTpmni
+7t27ODw8FGFwPB7H1NQUpqensbe3J8LfVquFUqmE7e1tbG5uisCx3+8jl8uhUChgYWEBly5dQiad
+gScNAx7bttHr9dBqtXDv3j3cvn0bm5ubqNfrqNfroqI4lUphYWEBi4uLmJubw/zc/EsH35IsidDG
+3x+jwbcf0vlhzZNW54oI9Z/ePj9M9IOlZDI5tn2KosDzPKyuruLWrVsiHIxGo/jtb3+LXC4nQivb
+ttFut9FqtfDNN9/gT3/6E5rNJj755BP85je/QS6XQzqdBjCc3NBut8W2PHr0SIyVH2SObcvsHObm
+58aCb//x9vf3cfPmTdy5cwflchm1Wg2DwUAE2/5+m56extLSEk4vnxbt4v3gG8DY+P2UVvGu46LV
+auHmzZv485//jGq1KoJBx3HEJJZQKIRsNoszZ87g/PnzKBQKyGQyzwTfrVYL+/v7+O6773Dr1i1U
+q1W0Wi1YliWC/KOjI+zv78M0TZimKQLSXq+Hvb09fP755/jiiy8wMTGBCxcuIJ1O4+HDh3j48CG6
+3S4cx0EgEMDy8jLOnDmDdDqNWCwG27Zx8+ZN3L59G43GcAKHqqrDY3Z+XlwDQsEQHMeBZVvY29vD
+jRs3sL29jUgkgtOnTyMej4tJF1ubW7i/ch+bm5vY2dnB0dERHMcR2xCJRMbGJZ/PI5VKQZIkbG1u
+YWV1BZubm9je3sbR0RFc14Vt2+K2mUwGZ8+exfnz55FIJBAMBtFqt/DgwQN89dVXWFhYQD6fx+Li
+IgKBADx3uFZzrVbD/v4+vv/+e9y9e1dM+un3++I8mp6exqlTp7C4uIjp6WlxHPZ6PZRKJfzhD3/A
+F198gXQ6jUuXLmFqagoPHjzAxsYG6vW6CJjz+TwKhQJOnz6Ny5cvi4klPxZ+e56HwWCAXq+Hu3fv
+4ve//z0ePHiAK1eu4Be/+AWazSYePHiAvb09ManjzJkz+NWvfoVUKoV+v49WazgWt27dwoMHD8S5
+DwC6riMajWJ+fh6Li4uYn5/H7OzcWPBtWiba7TbK5TKuX7+OW7du4eDgAK1WC71eT1z7AYhJA9PT
+05iZmUGhUEA+n0cgEMAXX3yBP/3pT5iamsLf/d3fIZPJDK8/yvjx//DhQ3zzzTfivuPxOM6fPy8m
+LbXbbVSrVdy6dQvff/899vf3Ua/X0el0xBjk8/mx61kgGBDXUNuxsbu7i5WVFWxsbGBnZwelUkmc
+q/6YJBIJnD17FhcuXEC5XMZ3332H27dv4+HDh2Iyyo0bN7C1tSWuo8ViEWfOnMHZs2exsLAgrjdE
+REREx4HBNxEREREREb119Xodu7u7KJfLCAaDmJ2dxWAwENV0g8EAjx49wvz8vAhR3hTP89Dr9nBw
+UMLm5iZu376NGzduYHd3F51OB91uV3ygn81mRSW44ziIx+NoNBrY2NjArVu3RFDUaDQwMTExFuq0
+R0Iovxp3fn4eExMT+Oijj8T2tNttPHz4EF9//TUMw0AoFEK328Xk5OSPhkTdbhd7e3u4f/8+KpUK
+TNMU1aGtVguSJEGWZcTjcQwGAxHcO44D13VRrVaxsbGB9fV1rK6u4uDgAN1uF91uF5lMBhMTE2g2
+m4jFYjh16tQwHFU1DAYDHB0doVQq4d69e7h165YIc1ut1liY608m8DwPiXgCkWgEiqxAUX+49bIk
+SdDUYRAbi8WQzWYRCoUQjQ6rTwOBABKJBAaDgajcDIVCUFUFg8EA5XIZ+/v7ImxeX18XFbR+tWYy
+mUSj0UC73YbruojH49A0TVSZbmxsYGtrC5FIBLlcDh999BG8hIdAIADbtlGtVrG3t4c7d+7gm2++
+QbvdRiaTwYULFxCNRkXla7lcRqlUwv3798W21Ov1sW2Jx+NirFzXFZXffsjfbA6XB3jw4AG+//57
+fPvtt6hUKmKyw+gx6+/HVCoFRVUQj8eRzWZFVaosywgEAojH40in06K692XXqPY8D67notvpYnNz
+Ezdv3kS5XEav1xPniuu6Yg3xTCYD0zQhyzIcx0EwGEQsFhPVyK1WC3t7eyKo/Oabb0Q1suM4Ivg2
+TROdTgeqqooKbsdxYJomer0ebt++jT/84Q/I5/MYDAaYnJzEysoKHj58iHa7DdM0EQgE0Gw20ev1
+MDExgUwmA8dx8P333+PGjRtoNBro9XqQZVlU13qeh2w2i2w2K55bpVLBxsYGNjc3ce7cOfHc+70+
+ur0uNh5t4ObNm9jY2MDu7i6q1Sps24bjOKJdei6XE9XKuq5DVYch5aPNR7hx48YP3jabzYrb+uPY
+7/ext7eHtbU1yLKMSqUiOgU4roNWq42dnR0xzjdv3hQTFkzTFBNW/IriwWAgOnIoiiKC8zt37uA/
+//M/kU6nYVkWGo0GVldX8fDhQ9RqNfR6PbiuK7pb2LaNXC6Hqakpcbz/0HXNc4cTGvr9PjY3N3Ht
+2jXcuXMHvV4Pmqah1WphZWUFe3t7CAQCCAaDMAwDZ86cgWVZqNVq2Nvbw8rKCr7//nvcv39fnPvA
+cE30cDgszje/w0Umk4aqqJAVGZ3OsKJ/Y2NDnG8HBwdiXPzg2+84AABLS0tiEoHf4ePOnTv44x//
+iPn5ebF9/gSb0YrvnZ0d3Lp1C51OR0xsSKVSOHXqFGzLFhOU7t69KzofNBqNsderUqkkOgTIsoxM
+JgNZluF5HtrtNjY3N3Hr1i2srq5ib28PR0dHY8dVKBRCMpmEoihIJpM4PDzEgwcPsLa2hmq1Kjow
+OI6DWq0mXl8ajQYMwxBdHRzHeaOv2URERESvgsE3ERERERERvTV+UNVoNLC3t4dGo4FkMikC7sFg
+gGq1iv39fRweHqJSqaDf78N1XUiS9FJtcn+I4ziwLAuHR4e4fv06vvrqK3Q6HSj/f/buszmOK0sT
+8JumvPe+gIKnp1xL6umZ7o3pmf0N+x/2x23sp52Ynu6enmkjegIgAcIXCuW9zcqsNPuheK8AEjSS
+KJFUnyeCIYlEATezMhMU3nvOkSTk83leocpaU+u6jm63iz/96U+YzWbwer08ZIjH41AUBePxmIc9
+549TVVX0ej3U63UeELjdbgyHwwuhB2tf3W63kUgk4Pf7EYlE4PF43ni8wWAIt2/fhq7ruH//Pra2
+tiDLMvL5PJaWlnhbafY5Y7EYms0mDg8PMRwOUS6Xce/ePUiSxENA1u59PB6j3+/j8PAQ6XQai4uL
+PIzp9Xp4/Pgx7t69y4PuQqHAW2ezMIUFkvfv3wcA+P1+OJwO+Hw++P3+Nx6fIAqQIGF9fR3/83/+
+T0ynUz7DOJFI4ObNmxgOh/B6vfOwKBKF0+m8sL7BYABRFPn67HY7r55l63vw4AEAIBAIIJ1OIx6P
+4/PPP4dpmmg0GhiPxzg7O8PDhw+xuLiIXC6H2WyGg4MDPHjwAPV6nYfL+Xwe6XQawWAQNpsN3W4P
+W1tbuHPnDgaDAQRBwMLCAtbW1i5dy8OHD2FZFm8L73K54PF4cHBwgDt37mBvbw+dTgeiKCKbzcLj
+8cDhcFy4xg3DwGAwgKqqEEURKysr+O1vf4vhcIjr16/DZrMhFovh5s2byOVy/PzFojHezvttyDaZ
+b0pgxyvLMkRx3saZ3R+6rqNarfJQLhgMIplMwjRMmJaJk5MTfPPNN9jZ2UGr1eKt5dmxybIMWZZR
+rVZRLpff2AViPB7zdt9OpxPXrl3DZDLh52Q8HuPhw4e8pbfT6YSmaVheXoaiKDzEns1m2N3dhcfj
+wcLCwnzNpvnKYG80GqHf76PVamF3dxc7OzsAgEKhgGvXrvFnGHu/7XY7H+1Qr9d5t4Xd3V3s7u7C
+siwsLi5e+lqbzcZfO5lM+IaQVz1zdV1HqXSKv/3tb9je3uYBaygUgtvtht1u55X0hmGgVCqh2+3O
+N6w831hyvm06MN+wcHh4CE3TIAgCCoUC794xnU4xGo34Zo1sNsuDUVb1/F1omoZqtYr79+/zayKf
+z/MxCoVCAX6/H4qiYGdnB3fu3OGtw7PZLJaXl3lbe9ZGfTKZYGdnB7qu87EObJNFuVzGN998g62t
+LbTbbciyjFwux1vSs2u81WrxbiHvGmtv32g0cOfOHWxvb2MymcDr9WJtbY2fB/a8ZRsT7t69yzdF
+hEIh3vadXVeKoiCbzWJjY+PCdTWbzXhgrygKvF4vbt26hXg8jvv372M6ncJms2FhYQELCwt8nEMy
+meTdEVKp1IXnESGEEELIT42Cb0IIIYQQQgghPwnLsvgP8ln16nQ6hcPhwNLSEp+/LAgCisUiKpUK
+Wq0WpsoUlmlBkH5Y6A3MZ1PrMx2tVgubm5v4wx/+gEQigUQigVwuh+XlZaysrPBKz6OjI2xtbWFv
+bw8ejwe5XA7JZBIOhwPJZJJXrZ8Pvlk4pGkaer0ems0mAPBq29FoBMu0eNvw2WyG0WiEXq+HWCzG
+A9S3CSDD4RA+/fRTLCwsYDab4eTkBKIo4sqVK/iXf/kXRCIRPsvYsiyYhom9vT04HA40Gg1UKhVM
+JhMsLy9jfX2dV7QahoHHjx+jVqthOBzy4Ju1Wu52u9jc3MTvfvc7RKNRZLPZ5+2CF1AoFDAYDNDr
+9XB8fIx79+5ha2sLTqcT2Wz2+dzyeRX367BAxhIsrK+vI5PJwDAM+P1+yLKMZDKJYDDI5+2yObei
+KOL09BRbW1v4/e9/j1AohEwmg8XFRSwsLGBpaQnD4RC9Xg8nJye4e/cutre34XA4kMlkEAgEEI/H
+sbi4iGazic3NTXS7XZTLZWxtbQEAgsEgDMPgFf3APNTP5XIoFApIp9NwOBwQBAGDQR/b29t85nom
+k+GtiBcXFzEej9Hr9XB6esorW202GzKZDKKRKIKhICRRwuHhIf77v/8bz54947OE8/k8NjY2kEql
+eFjLKtWHwyEPJFdXV5FMJqHrOvx+P+x2O99kwdrHs7nHNvntA0lJmleTJxIJeDweJBIJhMNh3nr5
+7OwMh4eHOD09RbVaRb1eh8PhwPXr1+eBrDm/1k5PT/HXv/4VT548mc+U9vmwsLCA5eVlxONxHqTO
+NxJ0MZ1OXwphz2MbFXRdx9raGq5cuYLJZMJbpZ+enqJSqUCWZT6DulAoYG1tDZZl8ZnhOzs7ODw8
+hM/nw/Xr17GyssLD/cuw66pYLGJvbw8HBwf8uXLjxg2+MYR1IxgOh3A6nbyynXUBYK/NZrP45JNP
+Xvlal8uFyWSC8XjMuwtchoXlZ2dnuHv3Lh4/fox4PM4Dy+XlZcRiMbRaLX7cT548wXA4RCAQwPLy
+MizLutB6n53n09NTKIqClZUVXLlyBU6nk2+8ePjwIU5OTvhGhkQiwWenf5/gm3UySCaTyOfzyOVy
+iEajiMViyOVy8Pv9GI8n2N3dxR//+EcAQCaT4UFtoVCAaZrodruo1Wr45ptvsLe3B1VVkUwmkclk
+EIvGYLfbUa1WcffuXdy5cwd+vx/BYBC5XA5LS0vIZrN8k8KzZ88wHA4xHA6/0/G8Dfb9kgX+33zz
+DdLpNLLZLPL5PBYWFpBOp/l89adPn+Lu3bsol8sIhUJYXFzEaDTCZDJBu93G/v4+9vf3EQwGce3a
+NXz22Wf8uur1eqhWq+h0OvB4PFBVFaFQCLlcDoIgYDwe4/DwEH6/H7dv38Y//uM/8mDd7/fD4/HA
+4/HM25zbqM05IYQQQt4fCr4JIYQQQgghhPwkZrMZr7rs9XpQFIVXtubzeWiaBlVVMZlMIMsyFEVB
+v99Hu9NGpzv/Ybzb7f5Ba2DB1NnZGW/n63K5+AxfFpBEo1F0u11IksTbXk+nU5yenkLXdViWhWQy
+iWaziclkwlvOskrv6XTKW4rLssyrRGez2bxCvNflc5XZ7w0GA1iW9Z2Cb1mWecXq+Ypbv9/PK5ej
+0SgcDgem0ykUReHVig6HA9FolAd+GxsbvF27aZo8jJ1MJlAUBdVqdT4jWpTQard4K2q3243FxUVc
+uXIF2WwW2WwW4/EYw8EQoiiiWCzC6XRiNpvx0NHpdCKVSr5VBT+rQHS73DAtk8/4ZuGqZVoQROF5
+yDzAYDBApVLhLZxTqRQWFhZw7do1ZDIZ5HK5+XXYH/D1uVwuzGYz1Go1lMtlFAoFRKNRHnSxMHRz
+cxOWZfFZ2aenp6jX60ilUigUCvNzkMnC6XRCVVX0+30+y348HiORSCCfz+PatWv8XLFZ6TabDScn
+J7zjQL1ex+HRIcLhMG8F3mw2MZ1Okc/neRC7srKCWCzGRwWw4FgQBCSTSciyDIfDAZfTxc+fKIp8
+5vf588fO99u8J6Igwu1yI5PJ4MaNG89bRUcRCAR4a39JknjoWq/X0e/30el0MBgMeFg4Go1QLpd5
+dwd2ftjGgHA4zJ8Nw+GQB612u/2Va3W73Uin01hdXeUztBVFQafTQSAQQLfb5ZWzgUCAh9NXr16F
+KIqYzWYol8uoVqt8Xnyv1+Pz3l9VXc02u7Bny2w2g8PhQDqd5hX+NpsNsWgMkUgE/X6fV82yZyOb
+ua1pGt9g86rXso4AgUAATqfz0rEQrMMGa8vPZsKHQiFcu3YNy8vLWFhYQCQSQafTQafTwXQ6RbVa
+haIoGAwG2N/fh67ryGQyFz63y+VCKpXC0tIS1tfXcfXqVbjdbliWhU6nw5+dADAYDFCv1793K2yb
+zcbD58XFRSwtLSGfzyMYDPKqdUVRUK/X+f3GOjhcv34d2WwWuVwOhmFgOBzC5/Ph9PQUBwcHME0T
+rVYLBwcHGA6HGE/GfFPTaDRCNpvF1atX+blKJBJ8oxZrx95ut9/Ywv27YBvEyuUyarUaf9/Y2ImV
+lRVks1nEYjH+3BuNRjg6OuLfl05PT9Hv96HrOv8Y1mkgHo/zqnHWPj4cDqPT6fBrMhAIIBqNwrIs
++Hw+iKLI3we2iSkajcLlcvFnoiRKECXxnZwDQgghhJDvg4JvQgghhBBCCCE/ifNtzHu9Hm9DzIIn
+FpC1Wi0+Q5m1ym00GnzG8w/R6/XQbrdxenrKW5wnk0ncvn0bN2/eRCAQ4NW0rDqxXq+jXq9DkiSc
+nZ1B0zTEYjGk02ns7e1BURQ+/9YwDN76vN/vQxAE+Hw+PrscmM/lbjQa8Pv98Pv9vPXyaDQCMK8m
+ftvgW5IkHmzKssyrpCVJgsPhgNPphNvlhs1ug2mamM1mEMV5KOF2u7G2tobf/va3yGazvNqZVdKW
+y2UcHR2h0WjANE00m01eoc5mJDscDiQSCVy9ehU3b97klX+shbI207CwsMCrPlutFk5OThCLxWCZ
+FvCW+YggCBAkAYL1ckB7vhPAYDBAqVRCqVTCZDLhlc1Xr17FrVu34PP5eFvvYDAI3dBxdHR0YX3F
+YpG3YmahLnvvd3d3YRgGBEGAy+XC2dkZRqMRP5effPIJEol52NxoNHB6eso3D7Cw6cqVK7h9+zZf
+i8/n4xXkCwsLfKNAu93G3t4eD6Pq9TrvkLC8vIzf/OY3SKVSiEQicLvdz9tZG4hGo1heXgYAJBIJ
+XsEtSuIbz993Ce1ESYTb48bS0hLfdMECMDYmIBwOYzabYTqd4uDgALquQ1EUjEYjXnVbr9d5yGq3
+27G0tIRf//rXSKVSfG67rhswDB2VSoWHvq8LviORCD755BN89dVXyGQyyGQyfIOJ3+/H/v4+78Cw
+vr6OTz/9FEtLS1heXoZNtkE35mvf2dmBw+HgM5I7nQ4kUXrlvcnC+eFwCF3XYbPZ4PP5EIvFkMlk
+IIoiZFmeB4qx+dxzWZIhyRJKpRKfQ81ey2bLv+m1rO12r9d7aU2z2YwH2rVaDaqqwul0Ip/P46uv
+vnpeKR2A6/nmmXQ6zedbs/bXBwcHEAQBXq8XTqeTf+5wOIzbt2/j66+/RiaTQTab5eeLzUA/OjqC
+3W6Hqqo8SDZN8zs+uQGHw4HFxUX84z/+I1ZXV5FKpRCPx+cVxnYHRqMhms0mzs7OMBgMIEkSIpEI
+1tbW8Nlnn/F7jW0ucjqdODg4wMnJCSzLwmAwwMHBAQ+Iq9Uqnyefy+Xw9ddfo1AoIBAIwOPx8Pbx
+7XYb0WiUzxtnz9cfis3RPj4+Rq1Ww2w2g8fjQTabxe3bt7G4uAiv1zsfheD28I0Lx8fH/Dool8vo
+9Xp8A4phGJAkiW9SyWaz/LoKBoOIRCKYTqeQJIlvonI4HBiNRhe+v8iyDLvdDqfDyUNy9n3nXYwk
+IYQQQgj5ISj4JoQQQgghhBDyk1BVFc1mE6VSic86drlcCAaDSCQSPEiIx+Nwu90QRZGHxNVqFS6X
+C/F4/AetgVUD1+t1qKrKg9uNjQ1cv34dwMXwz9ANHozquo56vQ7DmIeLqVSKzwYej8cYj8dQVRWD
+wQCNRgO9Xg+CICAYDPJqa5vNxqspdV2HIIh8prCiKBBFEYFAAOHwPMx8mwCBtahm4RcLIGw227wq
+2jGfaz3TZhc+xuVyoVAo4Fe/+hXC4TCCweCFUCuTyfA55pZl8TBF0zRMJhOMRiMIggC73Q6v1/s8
+oNTR7/cvrI1VpLIwzOPxYDgczquPIb3V+/aqauQX/3s0GqFSqaBSqVy6Plb9ysiSzNcHgLf5HY/H
+sNlsSKVSuH79On/v2QYIWZbh8/n4rO1wOIzl5WVsbGzwGdej0QjVavWltbDOBS+uhZ0rVk3c6XSg
+qipGoxGGwyE6nQ4Mw4Db7UYul8MXX3yBQCDAv955bPPCm87X9w2o2Ovsdjuvtp3NZnzzCps7raoq
+D8/YHGFVVXk3h1qthpOTE7TbbcxmM35sn3/+OSLhyDysP7dG1t6eBeyvEgwGceXKFXz11Vd8BjTr
+uMDeL9ZJoFAo4NatW7wC326382OLxWJ8XjGrfmbh6WXOz4+2LIvfb6zjgyAIvGW43++/UCE7mUxw
+fHzMN8iw17IZ3a97LbtOLqPrOjqdDk5PT9Fut2EYBjweD9/UkUwmX7oWGo0GD1B1Xcfp6Smfc37+
+GREIBLCxsYFf/epX8Pv9CAVDkOT5Pe3z+ebt+qNRzGYzXg0/mUy+V/AtSRLS6TS+/PJLrK2tIRwO
+XxiXcHJygn6/j9PTU949w2azwe12w+v1AsCFduTsGejz+fi4AU3T+LO42WxC07Tn3SlSuH37NvL5
+/EvB7snJCQKBAL8m32XFd7/fR6lUQqPRgKqqvFMHG1fAZrIzsizz42VdIzweD3w+H2y2+eanF68r
+dt06nU54vd75802SIUoiv57Z1z7//cVut8Nmt8Fut/N7hhBCCCHkQ0DBNyGEEEIIIYSQn8R0OkWj
+0cDh4SE0TeOzlH0+HyRxXikmiiI8nnn1WjQahSiKaDQaODs7QyQS+cFrYBWZiqLw6kmPx8Nn9r4Y
+Wsg2GV6vl1fTjUYjTKdTOJ1OJBIJHiiwdsjtdhvVahWlUgntdht2ux2ZTIaHKV6vF5qm4fT0lFfF
+9vt9mKbJ2xbPK4E9P0mYwM75ZVWKrKqPrYMF3qIo8pbx/f58frWu6/jmm29e+hz9fh/Hx8c4OTnh
+Vdaapr12HvEPfX8HgwE6nQ6vut/e3oZhGLh79+5LHz8YDPj6PB4PAoEAVFXl6wv4A8jn8xiNRjg+
+Psbh4SFmsxmOj495Beknn3yCjY0NRKPR+axxUbqwlm63i06ng16vhydPnsA0TTx48OCltQyHQxwd
+HaFYLMLtdiMQCPCQCZgHmC6XCy6XC16vl7edvyxo+ykqLi3LwmQy4RX29XodrVYL/X6fb/QwTZO3
+zS+Xy5jNZryVvqZqvPJ7Npvx4NDj8UCWZAji9z8GFtCdDyklSYJlWbDb7RcqU1/8uPPYBhJ2fxiG
+8drZ4m63G4lEgofYqqri+PgYv//971EulxEMBhEMBvls5FAoBJ/PB7/Pz1+bSqX4a09OTl567fnX
++/1++H1+vI5pmnz0Auuy4XA44HK5+HG9eOwOh4N3ImBtw8fjMQ/lz2PPD1F4+RnCOk9YlgXLsjCb
+zd54Dl/3nrJNJ6z6+DxN0zAcDtHtdvnM6/39fUiShP39/Zc+n6qqODw8RLFY5BuOBEHAaDTioTLr
+SOLxeH7yamY2XqHf7/NjarVauHfvHiaTyaXt9uv1Ou/SEQgEEAwG4fP5EA6H4fP5UCwWoWkaSqUS
+/uu//gudTodfU6FQ6NvryueHz+/jzx5CCCGEkI8JBd+EEEIIIYQQQn4S6nRe8X1ycgJVVREOh5FK
+peYzgSUR4vO+1x6PB+FwmLcaZ8F3oVD4wWtg4Qirvg4Gg/B4PK9smyxJErxeL6LRKA+9WUvmZDI5
+D+0libcrb7VaqFarODs7Q7fbhd1u5zOlWWg8m834rHAAfBa4w+Hg1Xlej/cnmZPKZjFfFuiw0Ipt
+CmDBt2EY6PV6PFh+9uwZSqXSpUG9ruv8nEWjUX6uvm/49Sbnw2YWzCuKgnK5/Mb1RSIRiKJ4YX2B
+QABuz7yaeWdnB5FIBK1WC6VSCS6XC1988QW+/PJLXL16FdFo7EIVsqZqPITv9Xp8VnK5XOZVxJet
+ZTqdIhQK8QpxALxamQXibLPGixXRPxX23imKgpOTEzx48AD7+/s4OTnhlbKapsFmm1eEWpbFA25W
+aapq6kvBt9frnYeMz9t3/xAskGXnh80nlmWZB3ovht7nz+X5zgnsHjBN87XXrcfjQSKR4KGpqqoo
+lUoYjUbY3d1FMpnkLcEXFhaQzWb56zweD5LJJLrd7htfm8/nkcvleNX6a98r03op+Lbb7XC73fze
+f5HD4eCV8t1ulwffL25YYedOFMWXnleiMG+h7XQ6MZvN5psdNO17zfc+/57a7fYL7yEzm814Z4RO
+p4N+v49er4dGo4E7d+689LlM04SiKFBVFV6vF4IgwOl0YjQaQRRF/h6ySujLwvYfEwu+Wat6NqZD
+URQcHBzwa/I8VrHOuqewTRvhcBjJZBKPHz/GbDZDpVLhnyeRSCCdTvNrMp/Pw7IsuD1uCr4JIYQQ
+8lGi4JsQQgghhBBCyI/OsixM1SmazSaKxSJviwwAf/vb3zCZTPjHlkol7O3t8Tm5k8kEXq8X/X6f
+h07fNzRlLYdZy1ebzfbK8AcABEHk4RdrWQzMQ2Gn08nnWQPz0IHNKy6Xy1BVFdFoFNFolAffiqJg
+Op2iVCoBmFdVD4dDPmPV5/PB4XDwdsE/lVdVDbNQi51zFsCebyPMZpKz83DZ+TYMA+FwGPF4HEtL
+S/MQXHz3x2iaJnRdh2mafH2BQADRaPTSCskX1xeLxbC0tIRYLDbfFCBLkOT5TFw2yxaYB+ysXbDH
+44HT6YQsX7yODNPga2FBo8/nQzQavdCi+cW1mKaJYDDIW/6z64a1zmbX7PlQ96c2Go14W+mdnR1s
+b29jOBzyDSGSJH3bDvl5e/+joyP0ej1e8c3+yTYZsA4Dr7sfv6vLWru/qcr7xY8/f55Z5fKrsK4N
+AHD16lX0ej0+05pVE5fLZQyHQ1QqFcRiMaytrWFjY4NXYedyOVy7du2Nrz04OMD6+jo2Njb4aIjL
+mJbJg1D23LssOH7xuFl1tSAI/Lq8rEX5667D85sP2Ln7IRteXve+sWM0DIPPm7fb7YhGowiFQi99
+PGvjbZomn8N+viOFYRh8/e/ymmRf+20+hp13YL4ZgXUfOd+C/8VzwNrix2IxxGIxLCwsYHFxEbFY
+DFeuXEGn00G73ebX1WQy4fPMa7Ua9vf3sb6+jvX1dcRisQut7QkhhBBCPgYUfBNCCCGEEEII+VGd
+rw5ttVo4OzvjM19rtRrOzs4utMlmLcO73S4cDgdvN8vmtv7QSuEXX/82gcaLM5NFUYQkSjz4ZSFK
+vV5HrVZDuVzmM2kXFhagKArG4zEajQZOTk74n7M2wCygCQQCH9S81BfPDTv/kiTxEHd9fR03b95E
+Op2+9HOwkJPNno1Go8hkMj+olfXr3ie2Pva1VlZWcPPmTV5d+6b1RSIRZLPZCxWV5zcBnA/eDMPg
+Lesvuy5ZWM3a9y8vL+PmzZvI5XJvtRZN03BwcICjo6NL34/3pdfr4eTkBLu7u9jZ2cH+/j7C4TCW
+lpaQy+UQDod5Bb0gCCiXy/i3f/s3lMvllz7Xi+f1QzlGtrbL/v1VWPDt8Xjw1VdfIRaLoVqtotls
+otPp8Nnm9XodqqrC5XKh1WpB13XkcjkkEgnk83l89dVXiEajqNVqaDQal77W6XTy16bTaYTD4deu
+7cfosPChYcfodrsRjUaRSCRw48YNrK6uvvLj2ZgJr9cLURT56IM3Vff/lMdkt9v5XPdr167h1q1b
+CAQCl36sZVkQBAFerxderxehUAjxWBwerwe/+MUvEAqFUKlU0Gw20Wq1oCgKRqMRWq0Wn+XNZoqv
+rKwglUpR5TchhBBCPioUfBNCCCGEEPJ37nwF7YcWOpCfB9MwMdNnGI1G6HQ6aLVa/FpjM7dZBTTD
+foDPZmO3Wi0MBgOoqvrKkPFtsEpGURR5dfDr2m5bz6slWateVv3HWvt6PB4Eg0HMZjPMZjPUajUe
+VrEW6vl8ngffhmHg4OAAtVoNDocDbrebzzaOx+PfOfh+VZvm8+fwXTj/NVgFPJtHXigU8NVXX+Hq
+1auv/RySJEGWZMg2GQ6H4we3sn7VOllFKwuP2fquX7/+ndYnCAIM3cBMn0FRFH4NsA0Ldrsduq6j
+3W6j3+9DVdULGyTYWs6fq8XFRXz55Ze4efPmW62l2WpiNBqhVCrxyltWpXpZ9e1Phd2zh4eHKJVK
+aDQaiEajWFpawldffYVsNss3Gui6jp2dHTx58uSlAO18VfGLFa4/th/je50sy/B6vfOxBW4PlpaW
+UCwWcXBwgGKxiFqthnq9jna7jWq1CtM04XK5EAwG4XQ6kUgkkEwm4XF7UCgUXnpto9FAu91GrVbj
+re+DwSAAXFoBDMxbjrN7gnWtYNfQq7CNPOxZyyr4f8g9+2P/3eL8/ca6cWSzWXz22Wf45S9/+drX
+sue6oijQNA2VSgUAeFX0d70mX7WJ41XX+Pnn9PnnNjsm1jHCbrdjfX0dv/71r5FMJl/79c/PQ2cj
+KxwOB/L5PEqlEg4ODnBycsKvyW63yyu/z1+TPp/v0pCdEEIIIeRDRcE3IYQQQgghf+dYKMnmQbKZ
+kIS8C5ZlYTSet0VuNBoYDocwDAPZbBaLi4sIBoMvBQSs/bGu6ygWiyiVShiPx2i32zg7O3tjm97X
+cTgc8Pl8cLlcaDab6Ha7GI1G0DSNb/44T9d1DIdDtFotaJrG282ykIlVFrIW5mdnZ2i1WhiNRrDb
+7XA4HIjFYtA0DdPpFP1+HwDQ7/fRarXgdDoRDAYhSdL3Cr6ZF9sN87bC5rsLvwHAbrfD6/ViOp3C
+MAwMBgMoisLn476u7TF7n2VZ/tGeMez99Xg8/Ho7v77zrdtftb7zbcT7/T6arSafzd1ut2Gz2ZDN
+ZuFwODCdTnH//n3YbDak02kkEgm+MeDFtbx4rt5mLawSNRAI8KpfAHzWOgvmfuoNS2yW+nA4hM1m
+QyQS4XOCM+nMvDpVlGCYBq+cffE6ZIGex+NBt9vFdDqFaZqYTqev2Yjybq/nH4NlWRAFEXaHHQF/
+AJlMBg6HA6lUCv1+H8PhEDs7O9ja2kKz2YQgCKjVakilUlAU5a1f22g0IAgC6vU6n+F8fsY8I4jz
+68jv9/PzfH4jzmXPPVVV0e/30e12YZomPB4P3G73pZ//Q2Gz2eDxeODz+dBoNDAajTAej2FZ1lvf
+b6Zp8g0zsixDURQ+bsMw3hx+s2uTBfBsHjkAPuNcVTXYbDZYpgWIF197vspcFEU+Y1xVVWiahtFo
+BFVV+ez0Nz1vXxyJ4HA44Pf7kU6nYbPZkEgkMBgM0O/3cXBwgMePH6NUKkGSJDSbTTQaDSzkFxAM
+hl76/mIaH0ZFPCGEEELIiyj4JoQQQggh5O+cYRpQVZW3XZUl+cIPYwn5oYbDIRqNxoXgO51O4ze/
++Q1WVlb4HFVG13XeCv3//b//h3q9jslkgk6ng0qlAr/f/70r0NgP/p1OJ2azGfr9PkajEZ83/mII
+NJvNeBtYwzB48M3CadbCut/vYzKZoNfrod1uYzgcwu/38+CbVY3XajVYloXhcMhDVMuy+DzWQCDw
+ncMlURABEZduIDCtd1s9a7fb4fP5IIoidF1Hv9/HdDrlIY0kSZBE6dI25pb5bUgiSj9e8O33++Hx
+eC4N5t92fezPB8MBSqUSjo6OUC6X0ev1+Nxcl8uFYrGIw8NDhEIh3LhxA6qq8upK1p74xbUAeOu1
+nA++JUnCZDKBpmkYj8d8DvH5luz89S+05n/X2CYOFnzHYjHe1j+by0KWZIiSCMM0Xjq3/BoQRX4/
+iaIIRVGgqiqfZ/46H3rgJogCXE4XXE4XPF4PUqnUvMraMKEbOhKJBEzTxNOnT3nw3Ww2MZlM3vja
+ZDJ5YcNDrVZDNBrFZDK59LkoiiJcLhd/tkynU0ynU0wmE155/OJzj21s6PV6PAx2u92XXmsfCvZs
+8vl8AOZz6CeTCQ++RVGELMmvvd8Mw7gQfKuqyj+P+fxafpXz16QgCDz4ZvPBWaW9pqkwdCdMy4SE
+bzdwsS4OLPxmzyy/34/BYABN09Dv96FpGmRZhsvl4pX8rzoevp7nx+ywO+CwzzuNxOPx+Uxw3YBu
+6Hj48CGA+fdfWZZ58D1RJpAk8aVZ96ZFwTchhBBCPkwf7t9YCSGEEEIIIe8ca9urqiq63S56vR46
+nQ7a7TYmkwnW19dx5coVamtJ3qnBYB4eNptNAIDf70cqlcLS0hLW19fnlXjCt0GoYRrPAwIN29vb
+vJX4cDjE0dERMpkMnE7n91oLq3YbDAY4PDyEqqpoNBrY2dmB3W5HIBCA3+/n4dDR0RFOTk5wdnaG
+WCyGeDyOXC6HUCgEAHC75hXfbIbv2dkZD8gDgQBvd25ZFq9I9Hq9cLvdMAwD7XYbsiwjHo8jmUwi
+FAp954pvQRQgmvPqWbvdDlEUMRwOUSwWAYC3/Z5MJrxi8Pu2k/Z6vUilUhiPx9jf34dpmmg2m3j6
+9ClsNhvC4TDC4TAPSVi15Hg85p/D6XQiEo4gFA6982DW6/UinU6j2ZxXabNz/PTpUzidzpfWZxgG
+JpPJhRCQvXeBQACVSgVbW1t49uwZLMtCJpPB4uIiNjY2IIoiBoMBTk5O0G63sb+/j1AohHQ6jUw6
+w89Vu93GwcEBTNNEu93Gzs4O3G43XwsLxi5bi6ZpEAQB2WwWZ2dnEEURo9EIp6enuH//PpLJJMLh
+MFwu1/MuCQaGwwHvLJBOp5FOpSHJ73ZGryzJ/HozDAPj8RiDwQCdTud5FbMIURT4f+/u7vLW3ozN
+ZkMoFIKu66jVanxzwOnpKR4/foxYLMbDPUVRMJlMsLu7i0qlgn6/j2Aw+MEFb8PhEL1ej7cHFwQB
+LpcLbrd7Hr5KImzivKsKq15nGwCm0ylKpdKFsPR1r2WjF1hV8auqmWVZ5vO/G40GJEnCeDzm13av
+14PfH4DL6YQynUJVpzg8PESxWESj0UAsFkMul0M6nYbX633fp/iV3G43EokEer0ejo6OAMxn0e/v
+7+Pu3bsIhUIIhyOw2228tf54PObdEwDwDUqJRALVapW/p2dnZ9jc3ESv14PH44HNZuP36s7ODs7O
+ztDv9xEIBGCaJm8rzt47u92O2WyGarWKra0t/ry3LAuj0QiNRgP7+/v8HrHb7QiFQvD7/chms3xD
+zWw2Q6VSwcOHDzEYDBAOhxEIBM6NDtEwmYwxnU4vnJvzG2EkSYLT6eRjNth1JUkSv64EQeD3N7u2
+WJBvWRZ6vR5OT0/5sXq93gtt2alzECGEEELeJwq+CSGEEEII+TuiGzom4wl6/R729vawv7+P09NT
+nJ2dYTQa4V//9V+RyWQo+CbvjGVZ6Pf7KJVKaLVaF0LeRCKBeDwOAJe2UWWVkdFoFL1eD6PRCEdH
+R7Db7YjFYt9rPcFgED6fD5PJBA8fPoRhGKjVanj06BFUVcXCwgIWFhbQ6XTQ6XSws7ODg4MDnJ2d
+IRwOI5vNYnV1FdFoFIIgwOP1IBqNwufzQVEUVKtVBAIBhMNhxGIxHhSdDxwCgQAikQjG4zF6vR6f
+vZtMJr9zxTefvS0JfJZ0v99Hrze/xw3DgCiKCAQCvJpWURQe9HxXfr8f+XyeV5eyVst37txBp9PB
+ysoKVlZWeFiiKArq9TpvyywIAsLhMNbW1hAMBd958B0IBJDP59Hr9RAMBiGKIur1Ou7evYter4fl
+5WWsrqzCZp8HM+pURa0+n53MzmcgEMDi4iLsdjvK5TK2trZQLBYRi8Xw6aefYnl5GRsbG5hOpzg9
+PYXT6cRwOMSzZ8/4e8fey3w+j9FohMePH0MURTQaDdy7dw+DwQBLS0tYWVnh8841TUO1WkWz2eQV
+nw6HA6FQCEtLS/zaZ0H6f/7nf2J5eRnLy8uIRCL8/S2VSnzTw5dffolYLPbOg2+749tq9kqlgna7
+jXK5jJOTEwQCAd7F4ejoCPv7+3j27BlKpRI0TeOfQ5ZlRCNR+P1+HB8fA5gHlQcHB/jzn/+MdDqN
+SCQCh8PBO0Zsbm7i5OQEvV4PkUjkvc45v0y73Ua9Xkev1+PnIBKJIJVKIRQM8dbvrVYL3W4X4/EY
+gUAAwWAQhmHwTRRvem2v1+P3YDAY5N0lLsMq8sPhMA/Wp9MpisUi/va3v6HZbGJhYQGRSATtdhud
+Tge7u7s4OjpCo9FAOp3G6uoqFhcXEQgELryHHxI201vXdWxvb0OSJHS7XTx+/BiKomBpaQmrq6u8
+w4BhGKjX66jX65jNZrx6OhCYt5gvl8uQJIlvuPrb3/6GarXKn+vNZhP1eh1Pnz7F0dER2u02wuEw
+DMOYP+sdTj7qwOl0QtM0HB8fw+VyIZ/PYzgcYjqdolaroVQqYXNzE6enp3C5XPD5fJAkCeFwGEtL
+S5hOp7xzxOnpKf7rv/4LlUoFKysryOfzvKV5v99HvV5Hp9Ph1xAfe/F8k4UoigiFQkgmk4jFYnze
++/lr0ufzwe/38+4oLNB2uVwAgFarhWfPnsEwDNhsNvj9fthsNsiyzDuCUPBNCCGEkPeFgm9CCCGE
+EEJ+pizL4j/QnM+VnLfsZBV4jx8/xvb2No6Pj3F2dobJZIJCoXChMpOQH8oy58F3uVxGq9W6MAs5
+EokgGAy++rWWxcPx2WyGyWSC4+NjHvJ9Hz6fD16PF/1+H9FolFdCHx4eQtM0DIdDqKqKZrOJZrPJ
+w5/pdAqn04l8Po+lpaVvK77dbt6iXNd1NBoN3po6kUhcCL5Z69pgMIhEIoGzszN0Oh2MRiPIsoxk
+MolgMPidW52z8JhVEQ+HQ4zHYxweHvLWuZFIhFf9sdm+3yeYYFWVuj7flBAMBqGqKg4PDzEcDnkr
+bla1OplMUKlUUKvVYLPZ4HQ6MZ1OkUgkXppx+y74vD44nU70ej2+PhY4serO2WwGh8MBSZKgKAoq
+lQqq1SpfXzgchs1mg9vtRqlUwvHxMVqtFhYXF3H79m2srq5ieXkZ/X4fW1tbiEQimM1mOD4+5m3r
+r1y5AofDwWfosrXMZjOcnJxgPB7zduWs7TnbOFGtVvkM30gkgmg0imw2i1QqhXA4jHa7jW63i83N
+TYzHY2iahlgshslkAkVRcHJygqOjI9hsNuTzed7G/11yuVwIh8OIRCI4Pj7GdDpFq9XC8fExZFmG
+LMuQJAlHR0fY3d1FsVhEp9O5sBbWAcHhcCAej8Pj8QCYVyU/fvwY9XodiUQCTqcTjUYD9Xodx8fH
+6HQ6UFUVs9nsg6v4Ho/HqFarqFQqME0ThmEgGo3y5828Kl9HpVLBaDSCZVlwuVx8Nnyv10Oz2Zy3
+oH7Na4fDIW9BnkgkEA6H4XA4Lj0fkiTNn3teLzKZDMLhMOx2O3q9Hp48ecKvxVgshmazyd9H9n4F
+AgGsrq4inU7D7Xaj3W6/79N8KbfLDbvdDtM0kUgkEAqFMB6PUS6XMRqNMBqNMJvN5vPnJYlXYFer
+VViWxcck+Hw+JJNJJJNJHuK2221sbW2h3W4jlUohGAzy0JxtVmDPPl6J75jPr2cbnUajEZrNJra3
+tzEcDjEajTCdTlGtVnF2doazszMMBgMA4EE8q/geDAaIxWLweDx8zvtwOOSz2tn91u12+UYUNh+c
+dZNg16NhGAiFQuj1euh2u/z3SqUS+v0+DMOA0+lEPB5HLBbjLe69Xi8ikQjvasC6WLDr1Ov1Pt9U
+IPGAnBBCCCHkfaDgmxBCCCGEkJ8pFnSzNtNnZ2eo1WpotVpotVqoVqtoNBrodDoYj8e8xSUh71q/
+30elUkG320U4HL5QyfkmrDW5oigYjUYoFotYXFz83sG3KIqQbTJisRhu3brF23CPx2McHx+jVqvh
+8ePH0DQNmqZB13UEg0F89tlnuHnzJgqFAg8DgHmVYSwWQzQa5e3XWZCVSCTg8/kuVDU7HA5EIhFk
+s1m+EcVms8Hn8yEej8Pr9X7n4JtJpVK4fv06bDYbhsMhSqUSb/sbiUQQj8cRj8f5nPXvE3xLksSr
+Im/dugVVVdFqtdDpdHggUywWL1Qb6roOXdeRSqV4mPJjtUwWxHllPZu5PZ1O0Wg00O12MRwOsbu7
+i9PT00vXxyogfT4fGo0GWq0WTk9PYVkWgsEgMpkM1tbWkEqlePXl8vIyPv/8c5ydnaFer+Pg4ACF
+QgHlchmRSARut5uvRVEU/swdjUZ8Laxa88W1RKPReagZCsPr9WJlZQW/+tWvEI/H+Xztk5MTNJtN
+OBwO6LrOQyzTNBEIBHir8HctGAyiUChgNpuh3W6j0WjANE3s7u6iVCrB4XDw+5tVvrNwnOEzvj1e
+LC4u4tNPP4XT6eTjB7rdLorFIt+kwDYD+P1+aJr2ox3bD8E2BKiqimq1ilqthmq1ir29PciyzCtv
+x+MxvyeWl5dx/fp13kK60+nw173Na2/cuME7DPR6vUvXxWbOZ7NZfP7553A6nRiPx7xTwenpKex2
+O3/uGYbBW5tfvXoVmUzmtZuUPgSiJEKGDI/Hg42NDd6inP0d5+joiG9wYRuR2P0WDocRCoWQSqUQ
+jc67EGQyGdy4cQOz2Yw/54bDISqVCtxuNyRJgiRJPDAXBIH/Pvv8drsdhUIBX3zxBU5PT9Hv91Gr
+1fi4AofDwTfZhEIhTKdTPgoDAK9CT6VS+Pzzz3nHBzai5tGjR3j27BlvM87miIuiyDc5OJ1OmKbJ
+r8lGo4FKpYKDgwPYbDZ+XU0mE74paWlpCdevX8fy8jJCoRBkWUYul8Pt27dRLBZ5FXyn08H+/j7S
+6TSWlpawtLT0vEvFh32tEEIIIeTnjYJvQgghhBBCfqY0TUO/10elWsGjR4+wubnJZ3aySq7ZbAZd
+13kbTfYDUELeBcuyYFom+v0+qtUq+v0+kskkFhYWEIvF3jr4zmQy6Ha76HQ6vHJcVdXvda1KkgSb
+zYZ4LI5PPvkE4XAY9+7dw8OHD1EulzEej6EoCmw2GxwOB6LRKFZWVrCxsYHr16+jUCggGo1Ckuat
+o1mVKptHzH4vkUgglUrB7/df+Po2m523TG80GiiXy7Db7fB6vYhGo3A4HJDl7/e/6qlUCrdu3YIo
+ivx4WMV3MBjE+vo6rl+/jtFoBF3Xv1fAzlq2h8Nh3L59G/F4HPfv38fDhw9RLBZRLpd51SIA2O3z
+ltiBQADRaPRCJbwgvts25wD47G62vlgshgcPHuDRo0c4Pj5GuVzGcDjk1w5r08uqMln77mKxiGKx
+yNuOs80KVzauwOP1QJbmQeTKygoEQcAf//hH7O3todFooFgsolKp8Nb2oVAIN2/e5Gt5+PAhjo6O
+UKlUMBgMLl0Lm++bTqcRDofhdruxsrICl8uFbDaL+/fv4/HjxyiVSnxuOzv2eDzOR1a4XK533k4e
+mIfZLJCuVCo4OzvjYZqiKHC5XLxDwurqKiKRCBqNxoWgmrVy9/rmwfcXX3wBt9uNzc1N7O7uYjqd
+wjAM2O12pFIpZLNZPipgNpvB7Xb/KMf2QzidTkSjUWiaxjdDsOB1Op3y9YZCISQSCeTzeaysrOD2
+7dtQVRW1Wg2iKL7Va3O5HJaXl3Hr1i14vV4YhnFp8M3uWVmWkc1m8fXXXyMajeL+/ft49OgROp3O
+hU4NLCBfW1vjz718Lg/ZJmMymbzvU/xKgiBAlET4fD5cu3YNoVAIW1tbePDgAd+cwSqagfn3Ana/
+sVnqLPj2+XzI5XL45JNPIMsytra2sLOzg8lkwtt+J5NJZDIZfk3abDZ4vV7+vQGYb3RaWlqCYRhw
+u924d+8e6vU6qtUqDMNAJBJBPp/nFeoALrQUZ8F3Op3Gl19+iWQyyZ9nlUoFx8fHGI1G/NpwuVz8
+WZZOp3mIb5om70bAupmMRiMoisJfy57N7Lq6ceMG0uk039CVy+Xw6aefQpIkPHr0iI9UsCwL+Xwe
+qqrC6/UiGAj+KF0mCCGEEELeFgWFcde/AACAAElEQVTfhBBCCCGE/AxomobpdIrJZMJnE7Mfblar
+Vezv7+Po6AjNZhODwQD9fv/C3MfvO++XkNcRBAGiICKbzfLq6pWVFaytrSGZTPIfqL9ONBrF6uoq
+JElCIBBAPB7H+vo6IpEIvF4vbt++jdFohE8++eR5haIPsjyvxFtdXcXXX38NAHy2K2sr7XK7kEym
+eOttURSRSCR4C1qn0wmHw4FYLIaVlRWsr68jm82+NIObtWtOpVL49NNP0e/3cePGDVy9ehX5XP6l
+4NvtdiGTyfCgkrXWXVlZ4Wv7vmEemwXN5kM7nU6+ucXr9WJ5eRmLi4vQdR0ulwsulwtra2vwer2w
+2+0vVc/GYjGsr6/D7/dDFEVIkoSFhQV+HlmVOwvlotEout0uut0uD3MdDgefQ7y0tITFxUVe2f5j
+hZYsUI1F55srVFWFIAiIRCLodDro9Xq8uwWr1mTrKxQKfBOQKIqIx+OYTCYIBoNYXl6G1zc/V8A8
+oIrH4xAEAd1uF5qm8Ws8GAzC5XLxitBYNMbPFQCEw2F+rtha7HY7P1eFQgGFQmHeNcDvg81mez5T
+fR6EzWYzyLKMTqeDfr/PrydJkhCPx5FOp7G4uMhbaL9rNpuNn5+NjQ2oqopKpYJ6vY7xeAyHwwGn
+08lDNLbJxe/34+rVqxeuI1mWEQ6Hsby8DEmSYLfb4fP5MJlMoOs6r3hNp9NQVRWDwQCmaSIajfKQ
+n81WvnHjBjqdDjY2NpDL5eB0OnmFL+P1enHlyhX86le/Qi6Xw8rKCt9cIArf3gNutxvLy8v46quv
+EAqFsLq6yr+Wy+XCwsICfvGLXyCTyeDq1au8hTh7dqiqyttPs3nO7PpkweTCwgKWlpYQDocvzM5W
+VZW/v5e9NpVKYWFhgc93Z9XaoVAIV69eRaPRwOLiIhYXF+H1evmGGtY6m7X6lmUZrVaLt91ma2fn
+ZWVlBdlsFm7PfJOBaZoIhUK4du0aWq0WFhYWsLCwwN/H85tZbHYbMpkMrl27BkVRIIrzUDqVSr1x
+c48gCrzCn53neDyOa9eu8bbul13XgiBAlubXkyzL0HUdlmXB5/Px+202mwEAPx/BYBD5fB7Ly8u8
+jbndbuf3IQu6vV4vRqMRf20qlUIymUSn0+Etv198fkuShGg0yjvqsE05rJtIOBxGLpdDLBbDeDzm
+Yy9YBXgqleJV4alUir/PoiginU6j2+1e2GjkdrsRDAYRiUSwsrKChYUF/jxTFIV/r2s2m7xVOjtv
+wWAQ6XQamUwGy8vL884cHi9ESYSu63wTmGma/Pvx+W4e559X33fzFiGEEELIu0B/EyGEEEIIIeRn
+QFVVdDod1Ot17O7uYm9vD5VKhbcg7vV6GAwGUBQFqqryVrgAqMqb/KhEScSVK1fg8Xgwm80QCoUQ
+Dod56PU6rHrVbrcjnU7j5s2b6Pf7yGQyyGazMAwD//qv/4orV64gm80il8shEPDzytfPP/8csVgM
+wLxajQUasixDEiUEAn44HHZ89tlnWFhY4PO9Z7MZr5BkAUQoFILP53tpdikLX7LZLH77z7/FysoK
+bykeDod5RTjjdruRy+V4ReHnn38Om82GwmLhQovc74MF1GyW76effsorvlmQEwqFsLKygl/84hd8
+BrTP5+Mzuc/LZDKw2WwYjUYQBRGCOA+3g8Egn/lqt9tx9epVJBIJ9Pt9TKdTHtKx88NCUPb1/X7/
+W216+CFkWYbb44Zsk3HlyhXeHlxVVR72APOKSjYLNxAIPA/MbDz0ZwEVuwbPBzp2mx2hUIiHq4VC
+AbquI51O83nILKB7cS29Xu+NawmFQvD7/HC5XTzMDwQE2GwyXC4XlpaW+Pk2DINfOx6Ph8+Zj0Qi
+P0oIxaqIfT4fNjY2EAlHMBwN+fcYNuebVdTKsoyFhQV8+eWXiMVi/H5kobTP50Mmk4Hf50c2k8Un
+n3xyYV6y1+uFz+uDbuh8trfT6YTb7YbP54Pf54dpmfjNb37DuzLk8/mXKnCBeWXr119/zduDp1Kp
++cYElxOi9G3w7fP58NlnnyEej/PZ736/n1cH37hxA36/H4PBAPl8HqlkCqIkYjabIRwOIxwO48qV
+K5hOp1BVFbquX6jM9Xq98Pv9iETmG0jYs8nj8SAcDmNjY+OtXytLMt+I8I//+I9YWFhAMBjkzxq7
+3c43w4RCITgcDng8Hqyurl74ewFr3802YASDQfj9fthkG//ayWTywtdg51mW5ZfGOiwvL8Pv90Of
+6RBEATabDdHom7t9sOtdkiRcvXoVHo8HvV5vXh0dT8DlckGWLr+uRUnkm06Wl5cRDAZ5+D6dTvnf
+fdj5YJtf2Pt7fqZ1NptFwB9AOp3m1yS7V30+HzxuD57uPEW320Wr1Xpp85AkSfz7jtvtRjabRa/X
+g67rME0TLpeLf82ZNoM2m4fa5zuOOJ1OSOL8XrPZbLxyn3V6OD/2g20WcLlcCAaDCIcjsNnk52MU
+5rO919bWeIU/2wTAzoXX64XP50MkEoHH4+H3AxsfwTp4LC4u8k07pmnC5/MhGo0iEonwdRJCCCGE
+vC+CRT/hIh850zRxenqKUqmEcrmMcrmMZrPJW6GxH4pls9n3vVRCCCGE/J1qtVp8xna5XEalUoHL
+5eKVNblcDrlcjs90fBM2w1HXdWiaBlVV0W63Ua1WUSqV8ODBA2xubqJWq/E5sOdnvwK4NOgOhUL4
+X//rf+F//+//jStXrrzv00YIIYQQ8kH77//+b/yf//N/cO/ePSSTSaRSKVy/fh1ffPEFbt68+b6X
+Rwj5kfT7fZyenqJcLvNxH4IgXPj/O9YpiBBCyE+LKr4JIYQQQgj5iFiWhfF4jG63i3a7jdPTU5ye
+nqLZbPKKo3K5jFqtxtujzmYzXpXDPgchhBBCCCGEEEIIIT8nFHwTQgghhBDykWAtySeTCeq1Oo5P
+jnH//n08evQI9Xodk8mEt/JkleBvqvImhBBCCCGEEEIIIeTngIJvQgghhBBCPkCmacIyLUyUCUaj
+EQaDAbrdLrrdLhqNBmq1GiqVCvb29nB8fIzBYABN0/jMRl3XaXY3IYQQQgghhBBCCPm7QcE3IYQQ
+QgghHxjLsnildq/XQ6lUQqlUwv7+Pg4ODtButzEajTAajdDtdtHv9zGdTmEYBp/lTaE3IYQQQggh
+hBBCCPl7QsE3IYQQQggh74llWTBNE9PpFIPBAFNlCsOcB96qqkJVVVQqFRwcHODg4ABbW1vY3d3F
+YDCAYRiYzWaYzWbQNO2dhNyWZUHTNIyGI/T7/fd9egghhBBCPmiKokAQBNjtdkiSBEEQoOs6JpMJ
+/V2KkJ+xwWCA8XgMRVF4py1BEN73sgghhICCb0IIIYQQQt4L0zT5D0ZPTk5QLBahqipGoxGGwyH/
+1e120W630e12UavVMBqNoGkar+xm87vf1Zrq9ToePX6Edqf9vk8RIYQQQsgH7ezsDAAQjUbh8Xgg
+CAK63S729vbQ6/Xe9/IIIT8SRVHQ6XTQ7XahKApUVYXL5XrfyyKEEAIKvgkhhBBCCHkvWPA9Ho/R
+brf5r1arhU6nw3+QwlqYswpvVlUAgFd5v6uW5rquo9lsYmtrC9Vq9X2fIkIIIYSQD9psNgMAxGIx
+SJIEURTR7/f5xkZCyM/TbDbDdDqFoiiQZRmyLFPwTQghHwgKvgkhhBBCCHkPLMviQXa5XMbh4SGa
+zSaGwyGv+mbV3SzY/rFnd+u6jna7jadPn8Lr9b7vU0QIIYQQQgghHxz2/2SWZSEYDCIUCr3vJRFC
+CHmOgm9CCCGEEELeg/OtzqvVKvb399Htdnkb89lsBlVVL7Qy/zFDb+Db4FtVVcgy/a8CIYQQQggh
+hLxIkiTIsgy73Q7TNOF2u9/3kgghhDxHP80ihBBCCCHkPbAsC6ZpwrIsjMdjdLtddLtdmKYJwzB4
+MP7ia37sNY3HY+i6DkEQ3vcpIoQQQgghhJAPjizLcDgccDqdUBTlwmZlQggh7xcF34QQQgghhLwH
+oijyH5gkk0ksLy+j3W5DURQoioLpdIrJZMJnRwLzKnHTNH+0NcmyjGg0ilgsBofD8b5PESGEEEII
+IYR8cERR5L9CoRD9vxMhhHxAKPgmhBBCCCHkPRBFETabDS6XC6lUCoZhoNlsot1uo9vtotfrQdd1
+HnSzau8fs925LMuIRCJYX19HMBh836eIEEIIIYQQQj44pmliNpthNpvB7XbDbre/7yURQgh5joJv
+QgghhBBC3gNBECDLMtxuN3K5HKLRKAaDAfr9Pnq9HrrdLvr9PkajESaTCcbjMYbDIYbDITRN4+3Q
+32UVuCRJiMViuH79OpLJ5Ps+RYQQQgghhBDywdE0jf+/GRtVRQgh5MNAwTchhBBCCCHvAWt17na7
+EY/H4fV6YVkWptMpb3M+mUzQaDRQqVRwdnaG4+NjnJ6eYjweX6gyeFdV4Cz4vnnzJgqFwvs+RYQQ
+QgghhBDywRmPx2g0Gmg2m+j1euj3++97SYQQQp6j4JsQQgghhJD3QBAESJLEZ3zncjm43W4A83bm
+s9kMuq6jXC7j4OAAe3t7cDqdME0T3W4XmqZBVVUelGuaBtM0L7RE/65EUUQ4HMbq6iquXLnyvk8R
+IYQQQgghhHxw+v0+PB4P7HY7LMvCeDx+30sihBDyHAXfhBBCCCGEfGAEQYAkSoAMBINBLC4uwu12
+IxqNYm1tDa1WC51OB+12G+VyGbVaDePxGLquQ1VVmKYJXdd/tFnghBBCCCGEEEIIIYR8aCj4JoQQ
+Qggh5AMkSiJESUQwGITP50M2m8W1a9egqhoajTqKxSKOj4/x4MEDaJrG26QDwGw243PmKPwmhBBC
+CCGEEEIIIX8PKPgmhBBCCCHkAyQIAgDAZrPBZrPB6XTC6/UCANxuF/9vWZYRCARQr9cxGAwwHA7R
+7XbR7/d5C3RWBf6uZoETQgghhBBCCCGEEPKhoeCbEEIIIYSQj4QgCLAsCy6XC4l4Ah6PB9FoFFev
+XkWr1UKj0UC9XsezZ89wdHSEdruN8XgM0zRhGAZ0XQdAVeCEEEIIIYQQQggh5OeHgm9CCCGEEEI+
+IoIgwOl0wul0IhwJI5/PAwB6vR6q1SrOzs7g9XohSRLcbjc6nQ76/T40TeO/dF3nIThAQTghhBBC
+CCGEEEII+fhR8E0IIYQQQsjPgMPhQDgchiiKAIBEIoFarYZms4lms4lKpYJarYZ+v4/JZILRaARg
+HnqzNuiEEEIIIYQQQgghhHysKPgmhBBCCCHkZ4AF34FAAKlUCrdv30a320W9Xke5XMajR4+wubmJ
+s7MzWJYFVVVhGAYPvE3TfN+HQAghhBBCCCGEEELI90bBNyGEEEIIIT8DoihCFEXYbDY4nU4AgMvl
+gtvths/ngyAI8Hg8KJfLaDQaaLVaGAwGGA6HmEwmUBQFgiBAEIT3fSiEEEIIIYQQQgghhHxnFHwT
+QgghhBDyM+VwOBAMBuFwOOByubCwsIBOp4NWq4Vms4nDw0McHx+jWq2i2WxC0zQKvwkhhBBCCCGE
+EELIR4mCb0IIIYQQQn6mbDYbbDYbvF4vYrEYAEBRFPT7fbTbbTx8+BA+nw9utxuyLGM4HMLv90OS
+pPe9dEIIIYQQQgghhBBCvhMKvgkhhBBCCPk7IkkS3G43AGBjYwM+nw9LS0uo1WoYj8f47LPPEAgE
+3vcyCSGEEEIIIYQQQgj5Tij4JoQQQggh5O+IzWaDLMtwuVzw+/1YWVnBaDTCaDTCdDpFNBql4JsQ
+QgghhBBCCCGEfHQo+CaEEEIIIeTvCJvhLYoibDYb3G43PB4PgsEgdF2Hw+GAzWZ738skhBBCCCGE
+EEIIIeQ7oeCbEEIIIYSQv3OSJPHAWxRFCILwvpdECCGEEEIIIYQQQsh3QsE3IYQQQgghf+dEUYQo
+iu97GYQQQgghhBBCCCGEfG/00y1CCCGEEEIIIYQQQgghhBBCCCEfNQq+CSGEEEIIIYQQQgghhBBC
+CCGEfNQo+CaEEEIIIYQQQgghhBBCCCGEEPJRo+CbEEIIIYQQQgghhBBCCCGEEELIR42Cb0IIIYQQ
+QgghhBBCCCGEEEIIIR81Cr4JIYQQQgghhBBCCCGEEEIIIYR81Cj4JoQQQgghhBBCCCGEEEIIIYQQ
+8lGj4JsQQgghhBBCCCGEEEIIIYQQQshHjYJvQgghhBBCCCGEEEIIIYQQQgghHzUKvgkhhBBCCCGE
+EEIIIYQQQgghhHzUKPgmhBBCCCGEEEIIIYQQQgghhBDyUaPgmxBCCCGEEEIIIYQQQgghhBBCyEeN
+gm9CCCGEEEIIIYQQQgghhBBCCCEfNQq+CSGEEEIIIYQQQgghhBBCCCGEfNQo+CaEEEIIIYQQQggh
+hBBCCCGEEPJRo+CbEEIIIYQQQgghhBBCCCGEEELIR42Cb0IIIYQQQgghhBBCCCGEEEIIIR81Cr4J
+IYQQQgghhBBCCCGEEEIIIYR81Cj4JoQQQgghhBBCCCGEEEIIIYQQ8lGT3/cCCCGEkHfBNE1YpoWJ
+MsFkMoFpmnC73XC73ZAkCYIgQBCE971MzrIsmIYJ3dAxnU6hKAoMw4TX64Hb7cZsNsNUmWKmzyBJ
+EiRJgs1mg8PhgM1me9/Lf+/Onz9VVaEoCnTdgMczf891ff77mqbR+SPvjKZpUBQFqqpClmRI8vy6
+Yr8IIYQQQgghhBBCCCHvDwXfhBBCPnqmafKQ8/Hjx3j48CEURcHt27fx6aefwuv1wmF3QJKl971U
+Ttd1DAdDDIYD7O7u4unTp5hOp3zNlUoF+/v7aLfb8Hg88Hg8yOVyKBQKiMfj73v5793587e/v4+n
+T59iMBjg1q1b+PTTT9FqtbC/v496vQ6v1wuv14tMJoNCoYBkMvm+l08+UrVaDU+fPsXp6Sn8fj/8
+fj8SiQSy2SwSicT7Xh4hhBBCCCGEEEIIIX/XKPgmhBDy0TMMA6qqYjQa4fHjx/i///f/YjAYQNM0
+FAqFeWWmJH1wwXd/0Ee1WsWdO3fwu9/9DsPhENPpFAsLC9jb28Mf//hHFItFRCIRRCIRfPLJJwgG
+gxR8Y/6eD4YDVKtV3Lt3D//+7/+OZrOJyWSCXC6Hg4MD/Od//icODg74+bt16xYCgQAF3+R7q9fq
+uHv3Lh48eIB4PI5EIoH19XW43W4KvgkhhBBCCCGEEEIIec8o+CaEfLQsy0K308XR8RGOjo6+8+uD
+wSAWFxdRKBQ+yFbYPzXLsmBZFvr9Po6OjnB8fMwrGSORCBwOBxwOx3tbV7FYxNHREabTKTKZDLLZ
+LNxuNxz2+ZpMw4RhGBiNRuh0Ouj3+xgOh9B1HYZpwLKs932KX3lsiqKg1+uh3+9jMplAEATMZjOM
+x2OMRiM4nU64XC5omgbTNN/3sj8Y7D1l56/T6WA8HgOYB+OTyQSj0QgOhwMulwuqqkLX9fe9bPIR
+02YahsMhut0u7HY73G43FEXBbDZ730sjhBBCCCGEEEIIIeTvHgXfhJCPEgsMq7Uq/uM//gO/+93v
+vvPnWFhYwL/+678inU7DbrdDluW/++DbMAzU63X84Q9/wO9+9zvcvn0b//RP/4SrV68iGAzCbrf/
+pOeIzXE2TAPb29v4t3/7N3Q6Hfzyl7/Er3/9a0SjUQSDQcjyx/ftTBAEyLIMp9MJWZYhiiL/PYfd
+AafTCafTCbvdDrvdDofD8Xd/jZ7Hz9Xzmd3s/EmSxDdpOBwOfv7sdjtsNhsk6cOp+ieEEEIIIYQQ
+QgghhBDy7nx8SQEhhOB58G1a6HQ62NzcxO9+9zs4HPOwUBRFHoK9zmg0wrVr12AYBlXRArBMC6Zp
+otvtYmtrC3/6059gGAYWFhaQzWbhdDoRCAR+8nUZpgHDMHBycoJvvvkGjUYDwWAQN27cgNvlhtfr
+/WiDb5vNBqfTCZvNBkEQIIoiJEmC3fFt2M3+eT7gJS+fvxc3DpwPvun8EUIIIYQQQgghhBBCyM/f
+x5cUEELIK0SjUSSTSYTDYbjdbrhcrtd+fC6Xw9raGux2O291TshPhVd8O5wXrkFZli+E3k6n80Jw
+K4lUsQxcrJi32+0XKr5tdtuFwJtVz7PKekIIIYQQQgghhBBCCCE/PxR8E0J+NiKRCK5du4aVlRVE
+o1FEo9HXfnwgEMDi4iJkWab2x+QnxyqWHU4Hb8EtiiIPvl9Z8S1RcAsAovDtubLZbPw+fnHjwItt
+zyn4JoQQQgghhBBCCCGEkJ8nCr4JIT8bLpcLsVgM+XweqVQKqVTqtR9vmiZGoxEePXwEZapgOp3C
+5XIhl8shn89DEAQIggBDN6DNNGiahnK5jLOzM5imiVQqhXQ6DZfLBYfDAUmSoGkaZrMZWq0WWs0W
++oM+VFXFdDqFJEmQJAkulwvBYBCBQACBQAB+vx9Op5OvazabQdd1DIfD+edptaAo8/UZhsEDUo/H
+A5/XB6/PC6/XC5/Ph0qlglKpBMuysLi4iMXFRdjkeVh6vqK90WigVqthPB7z0HA0GmE4HGJnZwfV
+ahWGYaDZbOLhw4cYj8d8reFwGJFIBMFgEG63G263G51OB61WC71ejx8va9vtcrkQDAQRDAXh9/sR
+CAQuHO/rDIdDnJyc4OTkBLu7uxgOh1BVFUdHR/jjH/+IcDgMv98Pr9fLQ85mswlVVWGaJiaTCTqd
+Dnq9HqbTKX9/DMOA2+2Gx+NBIBBALBZDLBqDJEv82pjNZtA07dJjY5XF7NgCwW/fyzd1GmBYcHs+
+lL0sAD8f3LJW3W+7PqfTiVAwdGF9oiii0Wig1WphPB5DURTYbDZkMhnk83k+x900TWja/LqvVqs4
+OzvDdDrl173H4+Fzx9laut0uWq0Wut3upWsJBAIXrv3z58rQDcz0GSbjCRrN+fomkwmm0yl0XefX
+E3vffD4fv/5Yu3MWfvOW8Zecv++yycWyLH4/ttttfmzT6ZQfmyiKsNvt8Hq98Hg8CIfDCIfD8Hq9
+/Bx0u100m030+/PngaZpfI3sPQqHw/D5ffD5fHA6ndB1Hbquo1aroVgsotvtzq/TWAzT6RS9Xg+D
+wQCmacKyLPh8PoTDYQQCAX7cg/4AjWYDvV4Puq7z6569D6FQCKFQCKIgQjd0TCYTFItFFItFOJ1O
+xGIxeL1edLtdfn1ZlgVRFBGJRBAOh/nzjz1X2P03m80gCAKCwfl9z76W3++HZVkAgFarhUqlgmaz
+idlsxu9N9uc2mw02mw2BQACRSAShUAgulwtut5s/KxVFwcnJCU5PT/maA4EAer0evw5nsxksy4LX
+O39WhsNhxGIxBINB/lxkz3lloqDRnB/HeDyGqqowDAM227yLwO7uLsrlMhRFga7rfK2EEEIIIYQQ
+QgghhJD3j4JvQsjPht1u5+FPPB5/Y/DdarWwu7uLvb09tNttdDodRCIR/PrXv0Y6nYYkShCleSA0
+Go0w6A/wzTff4C9/+Qt0XccvfvEL/PKXv0QkEkEkEoFlWZiMJxiNR3j69Cm2trZwenqKbreLfr/P
+q3gjkQiWlpawvLyMxcVFFAqFl4Lv0WiEcrmMx48fY3t7m4e3mqbxgDSZTPIQMpvNIpfL4ZtvvsGf
+//xnGIaBf/7nf0YikQBcgA02HuoCQKlUwt27d1Gv1+FyueB0OtFsNlGv11EqlXBycgLTNFGr1fDn
+P/8Z29vbPIhdWVnBxsYGlpaWEI/HkUwm8fTpU2xvb/OArt/v86AoHA6jUCjw42Vh39vo9Xq4d+8e
+/vM//xPPnj1Dr9fDeDzGs2fP0Ol0+Lnw+/38HJRKJb5JYDgcolqtotFooFgsotFo8E0E0WgUqVQK
+hUIBN27cmAeAzzcIGIaByWSC0WiE3d1dbG5u4uTkBL1eD71ej5+LUCj07Xu5sIjFwuJbB9+COK/4
+tiyLt+s+H8xKkjSvCL8k+DYMA4qiYDgc4tmzZ9ja2sLx8TE/9yz0DQaDfH0LCwsoFAqw2WzY39/H
+1tYWGo0G2u02nE4n/umf/gmxWAyyJEOU5l9jMp6gP+jj4cOH+POf/4xWq8Wv+1QqhVAoBEEQXlrL
+0dERP1dsLYFA4MJ1v7h48VxpMw3j8RiNRgOPHj3C9vY2ms0mut0uFEXh908sFkMymUQul8PKygrW
+1tYubBxg895FUXzp/H3Xim/TMDGdTjEej/k5Ozg44MfGqva9Xi+/H9fW1nD16lW4XC4Mh0N0u108
+e/YM29vbOD4+xmAwwGg0giRJcDgcCAQC/DgWFxeRzWbhcDigqioURcH29jZ+//vf4+joCNeuXcPN
+mzfR6XRwcHCAcrkMXddhmibS6TTW1tZQKBR42HxycoLNzU0cHh5iOp1CVVXEYjH+3NnY2IDX64Uk
+SVAUBfV6Hf/1X/+FP/7xjwgGg7h+/TrS6TT29/dxdHSE4XAI0zQhyzLW1tawvr6OeDwOv98PAHj8
++DG2trb45gBBEPh7vbq6io2NDR58W6aFcrmMv/71r9ja2sJ4PMZ4PObhNwC+yWFxcRFXr17F6uoq
+YrE47HY7LMvCdDpFo9HAX/7yF/zhD39AIBDAzZs3sbi4iIODA34dKooCy7KQTCaRTCaxsbGBmzdv
+IhgMwrIsCIIAbaZhOByi3W7jwYMH2NzcRKPRwGAwgKqqcLvd8Hq96Pf7qFQqGI1GmE6nME3zR/ue
+RgghhBBCCCGEEEII+W4o+CaE/GzIsnyhmjESibx2bvd4PMZwOESxWMTJyQlKpRIikQhSqRQ+++wz
+HghrmoZ2u41yuYwnT57g7t27sCwLsVgMN27cgNfj5dWZzVYTtVoNOzs7PCzt9/sYDAYXgmAWfpmm
+iWAwCI/HA0mUIIgC+v0+arUa9vb2sLm5iQcPHvDqTl3X+eep1WpoNBro9/uwLAt+vx97e3v4y1/+
+AsMwsLCwgOl0ysNUCd8G341GAzs7OygWi7x6ttls8krgwWAAwzAwGAygaRoajQafoazrOj83qqpi
+MpnwcPj4+JgfLwuHg8Eg+v0+RqMRLMvilceSKF0I4y8znU5RqVTw7Nkz1Ot1Xmnb6XQwGo14xa3P
+54OqqrDZbBgMBrxKt9froVgsolQqYW9vD9VqFYqiYDKZIBwOI5FIoNvtwufzYXl5GV6vFzbZxqv2
+2Xt5Psxlx8YqUfv9Pg8E/YF5RfvbHJsgCJAlGYJD4FXngiDwqmxWIc0qXdl1wiqs2602qrUqdnd3
+eSDb7/fR7/dfub5AIACv14tms4lisYijoyOcnp7CZrMhFovh9u3b/GsbhoF2p41qtYqnT5/i3r17
+aLfbCIfDuHr1Kg9XdV1Hp9NBpVK5sBZ2rliA7/f7+XWg6zqvAmYV4cPhELVaDUdHR9je3sa9e/f4
+tcjeW7vdzjcsjMdjBINBXNm4Ar/fzyuh/X4/ZEl+7fl7E1bFq83m936tVsPu7i4ePXqEZ8+e8XMq
+CALsdjs8Hg9qtRqazSZkWUY6nUY8Hufn+cmTJ3j48CEODw8xHo8xmUx4pbjf78dwOOSbNdxuN3w+
+H6bTKRRFQbFYxJ07d7Czs4PBYADLstDtdrG/v4+zszNebZ9Op3nXhmg0ikgkgoODA2xubmJ/fx+K
+okBRFEQiETSbTQwGA7jdbuRyOTidTl6Z/uTJE/z5z39GIBDAdDrF0tISdnd3cXh4yDsuyLKMwWAA
+RVGQSqUQjUYhiiKePHmCx48fo91uYzqdwrIsNJtNtFotGIaBSCSCdDrNz3Gn08H+/j4ePnyIyWQC
+RVEuBN9OpxMulwudTgeGYfDneSg0r9RWVZWv+S9/+Qt8Ph80TeObYw4PD9HtdjGZTGAYBuLxOBKJ
+BGazGSKRCLLZLK8qH4/HqNVqODk5wfb2Nu7fv496vY7xeAxN0+DxeOD1evmmGMMwMJvN3knwbVkW
+TNOEqqr8/iDkXWCdawDwbhis28T5PyOEEEIIIYQQQgj5uaDgmxDys2JZ1ku/LiMIAjweD5aXl2FZ
+FgzD4CFHqVTCgwcPkMvlkM1mMRrNQ5QHDx6g1WrxdsK5XA7pdBo+nw+yLPNK1bt372I8HkOWZSwt
+LfG2w6zVMGt/fPfuXd4KmIX2Ho8He3t7uHPnDg4PD9Fut2Gz2ZDP5+HxeGC32/lxmqbJq5pVVf3B
+545V0LbbbTx8+BCdTgeJRAKFQgGJRAIulwsulwvZbBYLCwuw2+04OzvDnTt3eAVroVDglbmGYcAw
+DGiaBkVR8ODBAwDgrd39fj/8fv9rf/DOKjh1Xce9e/ewubkJURSRz+exvLwMt9sNl8sFn8+HaDSK
+WCyGfr+Po6Mjvlnh/v37PNiNRCK85flkMsFwOMTh4SHS6TTy+TySySTC4TBGozG2trZw9+5d9Pt9
+CIKAhYUFrK2twW63wzRN6LrOj+3Ro0f82NxuN/x+P3w+32uriwVBgCAKkCBhZWUFv/3tbzEcDnH9
++nW+3ps3byKXy/EWzZFIBC6XC4PBAJtbm7h79y56vR4AYGFhgVc1v7i+x48f83bYhUIB0WgUn376
+KQ8mh8MhyuUyHj16hKWlJWSzWYiCiKOjI9y/fx+VSgU+nw9+vx8LCwtIp9P8uh0MBvxcdTodWJaF
+fD6PlZUVOBwOvhbWlnpzc3O+SeD5uWLv4dHREe7cuYPd3V10Oh0AQDqdxurq6oUOAey6YoG4IApY
+WlrCP//zP6PdbuPWrVtwupyIRqO4fv06kskkP3/RaBQ+n++N94JpmNANHZ1OF48ePcK9e/dQqVTQ
+7XZ5dbfb7ebV+ewZwq4pRVHQ7/fx5MkT/PWvf0Wz2YSu60ilUvyYWSt5Xdehqiru3bsHRVHgcDh4
+Jfz555dhGGi1Wnj27BmcTieSySRisRgGgwEP4cvlMlqtFgKBAEKhEEzThM/nw5UrV3jwPZvN0G63
+sbm5iVgshvX1dQSDwZfC1slkwscm2O12/jkGgwHfgMI2uwQCAXg8HkynUywuLiIej/OP0XUd+/v7
+cDqdyOfzF65Tp9OJUCiEdDrNA2gWyFmWhdFohMlkAsuyeJcH0zSRzWbh8Xheet9GoxGOj495SL64
+uIhMJgNN03jlfr1ex+HhIbLZLGKxGEKhECKRCCqVCv72t79hc3MTrVYLoigilUrB4/HA5XLxNvrt
+dhulUgn9fv8HP3MB8PtDURScnZ2hXq9TGEl+MLahiI3NsMk2OJwO+Hw+eL1eOJ1OuF3uN27QIoQQ
+QgghhBBCCPnYUPBNCPnZYYE3qxp8kSiIgAh4vV6srKwgEU+gXC5jc3MTvV4PpVIJjx49gmmaz0PQ
+Ifb39/HXv/6VV2wvLS1hcXER6XSaV011Oh1sbm7id7/7HRKJBLLZLA96CoUC+v0+er0ejo6OcPfu
+XWxtbcHj8SCbzc7n7QZDkCQJ+/v7+NOf/oSTkxMeDrO2xNFolAdKJycnODo64kGUZf6wWbO5XA5X
+rlxBr9dDu93GkydPkEwm8fXXX+PWrVsIheZziNlMZdYu/fe//z2vnmRtjQuFAobDIXq9Hk5OTvjx
+Op1OZDIZxGIxiKIEn8/3xuD7k08+QT6fh67rKBaLMAwD6+vr+Jd/+RfE43G+Jva+n5yc8Gr0Wq0G
+RVGwvLyM9fV1JBIJGIYB0zSxtbWFra0t9Ho9ZDIZLCwsPA/5HBgM+tje3sZ//Md/IBAIIJvNXmgX
+Ph6P0e/3USwWcffuXTx9+hQ2mw2pVArxeByCIMDr8QJv6KotiiIswcLq6iqSySSvhLbb7UgkEryi
+ms2Hl2WZz+h+8uQJfv/738Pr9SKbzWJpaYmvj1Xvnp6e4u7du9jZ2YEkSUilUgiHw4hGo8jn8+h2
+u7zlebVaxfb2NkRRRCAQgM1m42H0bDaDz+dDOp1GoVBAJp2Bx+uBIAioVqt48uQJ/vCHP8DlciGT
+yaBQKPBrgVXlnp2d8bUAQDKZRDwe51XfJycnvK0+2ziQy+WwsbGBTCbDr/tSqcRbhquqCkEQeNt9
+tk4265lVALPQ0mazwW6zv/FeMMx5NW+v18Xm5ib+/d//Hbquw+fzIRaLYWNjA1euXIEsy1AUhV/n
+JycnGA6HmEwmGAwGePr0Kf70pz9BEAQkk0n+Pq2srEBRFLRaLf7s2d3dhaZpSCaTSKfTfKMJo6oq
+r5AuFApYX19HKpXinRpKpRLOzs7Q6/V4dXImk8HS0hJWV1d5i//Dw0Ps7u6iVCphaWmJV6m/OPt8
+PB7zVupra2u4cuUKZrMZGo0GarUaSqUSDg8P+SaiUCiExcVFrKys8NbpvV4PT548wfHxMRwOB65d
+u4Zerwe/3w+bzcaD72w2i0QigUQiAa/XyzdvHBwc4Pj4GOVyGUdHRzg4OEAqlcLXX3/N53y/uObT
+01NMJhPeWt3tdsMwDIxGIzx8+BDFYhGyLCObzSKZTMIwDHjcHlQqFdy5cwd/+9vf4PPNZ62z+z6b
+zfLwfH9/H71e750F3+x7laIoaDQaGA6HVPFNfjBW1c1Gi7CxCvF4HLFYDIFAAHa7nYJvQgghhBBC
+CCGE/OxQ8E0I+dlot9vY2tqCoigIh8OIRCKXfhyrrGbtkWPxGHK5HJaWllAqlTAej3kFr91uh6qq
+KJVKaDQafFb11atX+SzewWCAwWCAarWKTqeDyWQCt9uNxcVFXLlyBdls9nnl+AjDwRAAcHJyApfL
+BU3TUK1W+WzywXCASqWCVqsFTdMQiURw7do1rKysYGVlBaFQiAcwrEW5ZVlIJBIQxB9WJeh2uxGL
+xmC323ng5nQ6EQ6Hkc1meUX1ZKJgMhnzds+TyYRXgbPzks1m5+FffwBRFC8cb61WQ7FYnFetJhKv
+DYdtsg3BYBBOpxPBYJBXhPp8Pj7fPBqNwuVy8YpWp9PJ5ydHIhEUCgWsra1hY2MD6XQapmnCNE0M
+h0OUSiU+Q7per8PpdEIURT7rdzweIx6PI5/P49q1a8hkMsjlcnymtSzL/NhYKFgsFnlwfb69/Kuw
+4NDldMG0TF6lx2ZWW6YFQZxvrhgOhxgMBjg7O0O73cZkMkEkEkEul8P169f5uZ9OpxgOh7Db7SgW
+i3C73fNW/M0mzs7OUCgUeOBYKBSgqipUVcWTJ09gWRZsNhtcLheKxSJqtRoPyq9cuYJcLge3xw1N
+0/i8406ng/F4zDshnF+LpmkYDAZwOp0vreXw8BCRSATD4RBnZ2doNptQFAW5XA7Xrl3D6urqfHNK
+IsGv+0AgAJ/PB13XkU6nIcvyW50/dq7fpppWURS0222cnp6iVquh0+nwDRBXr17FysoKVldXIYoi
+P9derxeBQADRaBSapuH09JRX04fDYeRyOdy8eRP5fB75fB6z2QydToePGSiVStB1nY85SKfTvC04
+ANhsNj5Tfn19nW8IaLfbaLfbsCwLlUoFiqIgGAwiFothYWEBq6urWFhYgKZpUFUVs9kMJycn6Ha7
+/Dr3eDwvVVC73W6k02msrKzwoN80TbTbbUQiEfT7fRweHsJut8Pn8yGTyfBno91uh6ZpaDabqNfr
+2Nvbw2QyQb/fR6fTgSzL8Pl8CIVCWF5ehsvl4s8Xdg/OtPm4Alb5XSqV0Ov10O12MRqNeNvx81wu
+F5LJJJaWlviavV4vLMtCr9fj9ycADIdDVCoVAPPwmV1/4/EY6XQa165d4xs4UskUVE3l3SJKpRJa
+rRZsNtt3mhl/GdM0MZvNeIV9sVjEZDL5QZ+TkPMV3+xZ6PF4EAgE+DiYYDD47X8HgvD55109HA4H
+dR0ghBBCCCGEEELIR4uCb0LIz0atVoOqqnj27BlvL34ZVvG6vLyML774goeZN2/ehM1m47O8gecV
+uZaFcrmM8XgMr9eLjY0N3Lp1C8lkEgDQ7/dxenqKUqnEg9dEIoFr167hxo0bvLUoq4pUNRWHh4c8
+IG02mwCASCSCTqeDRqMBVVXhcrmwsrKCf/7nf0YsFkM4HIbL5YJhGNB1A9FoFKsrq9BmGq8E/iEk
+SYLNboPD4bgwC9Rmm/8em7fb6/VQrVZRqVQwnU7hcDiQSCRw9epV3Lp1ix+v1+udt1A2dBwdHaFY
+LMLhcKDVaqFYLCIWi82DyteEw4IozMNLy7pwjGx+OFsTm0mt6zr/GKfTidXVVfyP//E/UCgUkE6n
+EQqFePto1vKYabfbkCSJt+SeTCZwOByIx+O4cuUKbt++zY/N5/MhGAzCMAwsLi7yIL/dbuP4+BjR
+aPQ7z/4VJRGC9W0wy/8pfRtADIfzAJBVtbKW6BsbG/jkk0/g8Xjh83n57HgA/Fpjs5JPTk4QDodh
+t9uRTqdx/fp1AEC5XMazZ88wm80gCPO546VSCcPhENlsFqurq/jss8+QSCRgk228ivvk5ASj0Yiv
+ZX19HZ988gm8Xh9fSyAQgCiKODw85BsF2JxqFtzW63UoigK73Y5CoYB/+qd/Qi6XQyQSgcfj4ZX6
+sVgMhUIBlmkhkUzw+/xtzt/bhjksiD85OeHzpcPhMG7duoV/+Id/4BtrBEHg7fyTySSuXr3KZ3if
+np7yquBIJIKrV6/i66+/5sG9aZq89Xq9Xke9XockSWg2m9jZ2YEoiojFYnxNDocDi4uL+M1vfoOV
+lRVks1mEQiGMx2MMh0PeWp216P7iiy+wvr6OpaUlpNNp3iK+0+lga2sLzWYTmqah0+nM56K/MPs8
+FArh5s2b+OUvfznfxJDJwjANjMdjRKNRHB4eQhRF+Hw+rK2t4bPPPsPS0hKWl5fhdDihGzoajQZ2
+d3fhcrlgWRbG4zEP+9mz+MqVK8jn87zC3TQt6Pr8HkwkEgCARqMBWZb5iILRcISJX4FhXKyMDgaD
+uH37Nn75y18ik8kgm83C6XTy4Jt1yRBFEaqqol6v8zbj7BkvyzLy+Tz+4R/+AUtLSwj4A/D6vNB1
+A4aho9/v49mzZyiXyzyk/yFY8M3GbGxvb2M4HP6gz0kIwwJwQRD4OAG2WcXn8yGZTGJxcZF3DFlc
+WOQjVSj8JoQQQgghhBBCyMeIgm9CyM9Gv9+HqqpoNBo8tL1MNBpFPB6HLMt8ZnM6ncaNGzcwm81Q
+rVZRq9XgdDohyzIcDgf6/T5kWUYkEsHq6irW1tZgs9l4FW6lUkG1WsV4PIYgCHA4HPB6vXC5XNB1
+nc9hBuZhusvlQiAQgGmaaLVamE6n84rw4RDdbhemacLr9WJhYQG/+MUv4HK5eBj9rTQsy+Itk9vt
+9g86f+wH4+cDZhZ8sx+WOxwOTKdT3u54PB4DmFfGe71e3lb4fBtgURT5TG/LstDpdFCtVjEYDF45
+g/38mtga2A/v2e/Z7XbYbfM1ORwOaKoGURT5xzgcDiwsLOAf/uEfkEqlEAgELrSOZu2Vh8MhD8YA
+QNM0aJqG0WgEYB44ejyeS49NkiS4XC5+bN1uF9VqFf1+/zsF3y+GtS/+PjMej1Cr1VAul3k4dv7c
+W5aJwWBw6blnoafT6cRoNIIsy0gmk7h27RqfH802YciyjFAohHa7DVEUeaUxa+8tSiJGo/lazs7O
+XlqLx+N57Vp0XUe324Wqqvy6b7fb0HUdTqcT2WwWn332Gb9Pz1/3qVSKXzdvOl/fN7gZj8f82Ng9
+HQqFsL6+js8//xyyND8HL35+y7Kwt7eHx48f4+zsDJPJBLIsIxwOY3V1FTdv3nyp6tztdvPNCZ1O
+B91uF5qmIZFIXGh5Lcsy0uk0vvjiCxQKSwgE/PB4PPx6ZQGzKIqIRqO4evUq7zgRj8f559nd3YXf
+74ckSdB1HYPBgFfrn+f3+7G2toZf/vKXCPgD/M+1mQa3241IJMKfZQsLC7h9+zbfRMRmsgcCAV7F
+LQgCn30+nU5hmibcbjdsNhs0TcNsNns+73w+i3s8HkPXdTgcDthsNh4QT6dTTJQJVHX60vlna/7V
+P/wKgWCAt+wHgG63y8csTCYT6LqOdrvN73W24Yh9P/jk9idYXFx86X0ulUoIBoNwu92QZfkHh4OW
+ZfFjGwwGaDabF+4bQn4Idn2xf7INRD6fDy6XC/F4HLVaDf1+H4qizJ8Lhg632w232/3WXTIIIYQQ
+QgghhBBCPhQUfBNCfjZisRiSySTC4fC89fG5kPM8Nqt6YWEBmUwGwLxScHFxEYPBAEdHRzg6OoKq
+qjg4OOAVvl988QU2NjYQDocvzMSdTqcYDAY8tOr1etjc3MRsNsNf//rXl75+r9fD8fExTk5OeOWw
+KIq84tIwDLjdbgQCAXi93guh74vexw+l2fF2u110u130+/N52Lqu486dOy99PDunxWIRHo8HwWAQ
+qqryNsY/lvMh+WXnSJKkeXhut0MQBF5NKooiFEVBp9PhM4pN08SDBw9e+hzD4ZC/l+w9i0QiP9qM
+XlVVX7rWdnZ2YFkWb89/3mg04ufe6XQiEAggHA5D13WYpgm/349cLofJZILj42McHh7CMAycnJyg
+1WrB5/Ph1q1buHr1KmKx2Py6FyV+vs5fB71eD7u7u7AsC5ubmy+tZTweX6j8DwQCfOOIIAiYzWZw
+Op287bbdbudf67L39sekqiqGwyGGwyFEUYTf7+cbJ0RR5K3nL1sXC1JHoxEEQeCVlWyjzIskSeLd
+ICaTCW9BzsLhFz//vILz2409siQDdvANAuxjXvVsYM8a1qabBWKXHQv/xVrFiwKflX5+Iwq/1wTx
+0uM7//EseGObYNhs8larhVarhfF4jOl0ClVV+ccdHx/zjSmWZfGQ/MUqdXa/S7L00loEQeAbmTRN
+g2maUFUVoijCMAxMp1M+c9zj8UC2yT94fMTbYO+H3W5HMpnEysoKVXyTd4LdP7PZDLPZDKqqQlEU
+TKdTAPPv5WxMQrfbRblcxtHREVZWVrC2tsY3+L2Llv6EEEIIIYQQQgghPxUKvgkhPxuRSATXr1/H
+6uoqotEootHopR/ndrt5xXUymYQgCAgGg/D5fFAUBU+fPr3QdjwQCOCLL77Ar371K6yvryMSifAq
+QmAekvX7fR7+DQYDPHv2DKVSibcMPU/XdUynUyiKgmg0ykMP9meGYfCA2OPx8KrC14V9P2X4fT58
+7fV6vPXv2dnZG4+XVYmy4PvHxsKuy8JvFnyz95LN2WXzv9l7ub+/j3K5fGnrfHZs0+kUoVAIgiBA
+VVUYhvGjhPovhs2sWrdSqVy6PsMweNARDAZfWp/f5+cbRHZ3dxGNRnlFuc1mw+eff47PP/8c165d
+Qzwef+m6H41G/LpnM99ZC+i3WQu7Xli7cJfLxWfX22y2S6uqfwqs+pYF32wOrsvlemOV72w2uxB8
++/1++Hy+V87NFUURHo8H4XCYP3MmkwlUVX3pGjq/kYOHzZIIu2Tn4fJlH3eeJEmQZZnfF2zmvWW+
+fL2+uHHkfAeI81/r/Nc5//VYm+XzH8+qTlnwvbOzg62tLRwdHeH09BTD4ZBfo6ybw3g8Rq/XgyRJ
+/PWGYUASpUvXyzYnnA+/WUcLh8PB73P2dRRFgaqqfKSDz+eDLP80YR87Ry6Xi3czUBTlR/+65OeN
+3dfs+h6Px/z7NgvD2e/3+32USiWUSiXs7++jUqlAFEVks9n5M0+SAcq9CSGEEEIIIYQQ8pGg4JsQ
+8rPhcrkQi8WQy+WQSqWQTqcvDZpYtSOrLgXAwxy32w2n08lDRFVVMZ3OW+q63W4+//r852WzpU3T
+5J+DzRH3er0vff3zwU0kEkE8HofD4eBzpS3LutDeG/iwZm2ytrzseD0eDwKBAJ9X/LrjDYfDiMfj
+KBQKiMViP3qw9LrzxgIytgbLsmAYBj82u90Ot9sNn8+HaDQKv9//ymNjM7Xj8TgWFxcRi8X4e/dO
+z71h8s0R7FrzeDyIxWJvtb5YLIaFhQXeQlySJUiy9NJ1r2kaDyfZn71YscyuA8MwIMsyb40bjUZf
+apv94lpYC2yv13vhumeh7Plq4vfBNL69Zl8cAfCmNbHriL2WHdOrrnUW1rKPYa9/Vav8F8/LSzPN
+37C+14Xib/pa53/vssD7sgrpFz+OjX4oFos4PDzEzs4O9vb2oGkar6w/XwVts9lQq9Wg6zq/Ttgv
+0zJfu/ZXHfuL9zz79/PXnyT9NEkfG9vgdruRy+UQj8f5mgj5vs4/R9iGoxc3Kg0GA/7P0WiEfr/P
+Oyn4/X7Y7XYsLCygUCjwDh2EEEIIIYQQQgghHzoKvgkhPxs2mw1erxfhcHje9jyRvPTjxOdtglnV
+40t/zioGn4c1lmU9nz376vbcpmlCkiT4fD7EYjGsr6/j1q1bSKVSl66BtSBlwepkMsHBwQGOjo4A
+vJ8W5m+LhU6SJMHr9SIajfL5xax1/OuO1+v1IhKJIJvN/ijh8Hdx2TlmGw88Hg+i0SgKhQJu3bqF
+XC73VscWDoeRzWbnVXLvmGmZfH3sPBYKBdy8eRP5fP6163O5XBfX98K1f/66P/9aVVWfB9wvh4zn
+z1UkEsHCwgJu3LiBxcXFS9fC2mqztRiG8crr/n1f/+w6Z77ven7K4/hQzt2Lazr/vhqGgUajgeFw
+iL29Pezu7qJUKmFxcZF3FohEIvD7/fw1d+7cwWg0wunp6Y+6PhaI/5Tnj30v8ng8SCQS8Hq9l35f
+IuS7Ys8wfaZDN3RomgZFUaAoCsrlMqrVKo6Pj7G/v4+TkxMYhoHBYIBSqQRZljEcDvHVV18hFArx
+jVUf0rOFEEIIIYQQQggh5DL0kzVCyM+GLMtwuVzw+/0IBoMIR8Jv/VpWuaooCq92lSQJDocDdrsd
+mqah3W7zNrwsEPt25q7EK3B9Ph+Wlpbwy1/+Euvr66/9upIkQZZkVGtVDIdDnJ6eQhAEmKbJq8jf
+1vlwif3A+3WVo+zjzr/+bbCAlB2v1+tFoVDAV199hWvXrr3V8co2+ZWtn191XK/62HfZUpyFXzab
+jYezhUIBX375JW7evPnWx2a32yH+CBWjoiC+tL6FhQX84he/wO3bt99qfZI8v65lWYahG5jps5eu
+e7vdDkmSoOs6b6muqvOZ0y8Ghaza2+v1Ip/P4xe/+AU+/fTTN65FFEX0e32Mx2OcnZ3x+c/nZ0C/
+L2yWtSRJFyq42breNHZAFMWXXvuq42GbAdgz6Hx7/g/d9wnBDMNAp9OBpmk4OTlBpVJBv9+Hz+fD
+zZs3ceXKFWSzWcTjccxmM2iahul0ivv37/8owfeL1fbnf/1U55B9r0kmk8jlcnC73T/J1yZ/fyzL
+gmmYODk5wfHJMR8JM5lMMBgMMBgM0G63YRgGer0egsEg1tbWEIlEYLfbLx2pQQghhBBCCCGEEPIh
+oeCbEEIA9Pt9tFotHB4eolKpoNvtwuFwIJ/Pw+l0Yjwe45tvvoHNZkM6nUY0GuVht8PugN/vh9vt
+Rr1eR6/X4+3RnU7na9sjswDR6XDC6/UiEAig1+vxmbbj8ZiHka8Kf8/Prj0fmOn6vMJLn+kwHRfD
+bxa2vRgwvtgC+bIQyOGYH6/H40G9XsdgMICiKPx4z1dOvup4WfD5NsGZKIgwBfOljzcM47Wtjr8P
+u90On88HTdPQaDQwGAwwmUy+87G92A7/na3PMV+fx+PhVbPfd30AMBgO0Gq1cHBwgHK5jE6nA0mS
+kMlk4HA4oGkaHj16BFmWkUwmkU6neTtom80Gn88Hr9eLZrOJ4XDIZxO/7Vqmzim/7tvtNhRF4TOy
+Wcv599H9gHWP8Hg8aLfb6Pf76Pf7mE6nMA3ztbPHz5+XTqfDWwlPp9MLG2YY0zQxGo3Q6XSgKAof
+w/C2G0M+ZK/qjqEoyvPNFCrcbjfi8TgymQwWFhaQSCT4CIofO4Rmc+bdbjdmsxmm0ylmsxkmk8kb
+242/z40ZhPwQgiggEAwgn8/zMS6ZTAZbW1t49uwZf5Y3m00Ui0Xs7OzAbrcjlUohmUz+8AUQQggh
+hBBCCCGE/Igo+CaEEAD9Xh/FYhFHR0eoVqvo9XrIZDIoFAoQRRGnp6fY29tDIpHArVu3oGkar3xy
+OB3w+Xxwu93QdZ2HXKIowul0zoNGUbp0/q1lWvxzsFnZgiBgPB5DkiSMx2Poug6bbIMgXd6W+3zF
+IAtcWXv26XSKmWf2UkhzWfDNg1HxYsj+4sex4NvtdvPWqOeD77c5XgBvXREtiAJE62LQyNb/rsMn
+Fniqqnrh2AB8p2O77M/fBYfDwUNV0zRfCpu/y/oEQeBtbc8H36FQCPl8Hj6fD8ViEdvb2/D5fLh+
+/TpUVeUbLC5by2Qy+U5rURwKPB4P/H4/JEnCdDqFYRj8umfzw196/SUB8rtkt9vh8Xjg8Xj4dcDu
+a8OcB6KS/HKbfsuyYLfb4fV6L5yX4XAITdMurRZnx8uCb9b2mm2a+blhnTW63S40TYPH40EwGEQ2
+m+XBtyzLL93vP0bQfD74Ho1G0DSN31Nv2ymDkI8J+94eCATmo0oiUSwuLOLWrVuw2+1ot9uYTCaY
+Tqe8C82zZ8/g9Xp5VwJCCCGEEEIIIYSQDxkF34SQn43ZbIbxeIxutwuv1/vGdrGSKMFmt8Fut+Os
+fIbNzU0cHh5CEAQsLCxgeXkZGxsbmM1m6PV6vAp4b28PPq8PqXQKmUwGfr8fmUwGzWYT+/v7fIbt
+kydPIEkSwuEwwuEw/4GzruuYTCYYj8d8LVNlClmWkc/nUSqVIAgChsMhisUi7t27h0gkglAoBKfT
+CcMwoOsGBoN5FaplWQgGgwgGg3C5XHA4HFAUBa1WC9vb20in04jH43A4HBiPxxiPxtjZ2cHZ2Rm6
+3S5sNtuF+Z2SPG917XQ6MZvN0Gw2USqVAMyDYV3XeVhlt9thGAZarRaePHkCh8PBj5dVaBuGgclk
+gslkwsMkp9OJUCiESCTyxrbRlmVBFEQetkqShNFoxOeQSqIEn9+H8XiMyWQCVVW/U4v48zweD5LJ
+JHRdx8HBASzLQrvdxs7ODtxuNz82tsHgsmN78Ry8Sx6PB6lUCp1OBwcHBzBNk6+Pze9+0/rsdjsC
+gQCCwSBqtRq2t7exu7uL2WyGTCaDbDaLjY0NOBwODAYDFItFtNttHBwcIBaLIZ1OI51O83PF/sw0
+TXQ6Hezu7sLv9/O1sBDTNE1+3bO1zGYzAEAmk0G5XIYoijyMf/DgAbLZLEKhEN9koesGRqMhBv0B
+DNNAKpVCOp2GzWZ75+c5kUggnU7j6OgIhmGg3W7j2bNniEajCIfDCIVC/ByrqsoruyeTCex2O7LZ
+LI6OjqDrOn+/UqkUAoEAfD4fTNPEdDpFpVLByckJTk9PIUkS4vE4stksotHoz3LWM2stzu5lTdOg
+qip6vR46nQ5kef5eGoaOZrOJZrOJ3d1d9Pv9H2UtPp8P6XSab0zo9/solUrY3t7GcDiEy+WCzWbj
+99HTp09xdnaGfr+PQCDwxspwQj5ENpsNNpttPtrCYYfH68HKygpOT09hmiZqtRpqtRra7Tb29/fh
+9/uRSCTe97IJIYQQQgghhBBC3ujn9xNVQsjfLU3T+HxKm832xmpQ1tba5/Ph9PQUjx8/Rr1eRywW
+w2effYa1tTWsr6+j1+uhWCzyIPDp06fzYFEUkMlkEAwGsbCwgG63C7/fD1EUUa/X8c0336DdbmN5
+eRmrq6u8vbeiKKjX62g0Gt+2Onc6EQ6Hsbq6ir29PdhsNvR6Pezv7+M//uM/sLy8jOXlZQQCAahT
+FVN1ipOTExSLRdhsNnz22WfIZDLwer1wuVzodruoVqu4d+8e8vk8FhYW4HA4UK1WUavV8OjRIxwd
+HUFRFN5q+HwrbKfTCZfLhdlshkqlAr/fD9M04XA4MJvN4PP5EA6H4XK5IAgC6vU67t27h36/j6Wl
+JayurMJmt0EURahTFbV6DY1GA8A8zA6FQlhbW0MoGLq0cvY8QRAgSPPKTJfLBVmW0e/3eTAtiiIi
+agSKokBRlLdqU/wqPp8PuVwOlmXh8ePHEAQBjUaDH9vy8jJWVlbgcDggiiI0TUO9Xke9XufVvIFA
+AGtrawgEAu88+Pb7/cjn85hMJnj8+DEkSUKz2cT9+/cxGAz4+li18GXr83q9KCwWIMsyKpUKtre3
+sb+/j1gshps3b2J5eRnr6+sQBAFnZ2d49uwZRqMR9vf3YbfbYZomEokE/H4/crkcJpMJNjc3+Voe
+PHiA4XDI1+JyuSCKImazGV+LYRgQRRF2ux2hUAiLi4soFouw2+2YTqc4Pj7Gn/70J6ysrGB5eRmx
+WAyqqmI6neLs7AzFYhGz2QxffvklIpHIOw++fT4fstksxuMxtre3AQDtdhubm5swDANLS0tYWVmZ
+t2ufTtHv93l4HYvFsLa2hqWlJTx+/Jhvnnj69Cnf3JLP56FpGjqdDu8mcXp6imQyiVgsho2NDcTj
+8Z9l8M2ed8FgEP1+n88WPjs7w9HREUajEURRxHQ6xd7eHvb29rCzs4N2u/3O1yJJEoLBIBYXFzEe
+jyGKIkajEY6Pj/HNN9+gWq0iGo3C6/WiXq+j2Wzi6dOnODo6QqvVQigUouCbfNRYtxgAWFpaQrfb
+hWVZ0DQN1WoV/X4fx8fHCAaD2NjYuLRrBSGEEEIIIYQQQsiH5Of3E1VCyN8tRVHQaDRQLBYxHA7R
+7XZf+/FutxvRaBSRSASnp6c4Pj7GeDzG8vIyPv/8cywtLWF5eRm1Wg2ZTAbhcBiqquLo6AiiKCIe
+j+PatWtwOp1IJpPI5XJIJBLzcFpVcXh4yNs/z2YzXl01Ho9RrVZRrVZ5ZXU8Hkc8Hsfi4iJSqRRC
+oRBGoxFarRYeP36M8XgMTdMQDocxmUygKAqOjo5weHgIn8+HQqEAp9PJK2273S4GgwGePHmC4XCI
+0WgEh8OBSqWCarWKYrGITqcDAFBVlZ8T1vrX7/cjEolAFEU0Gg3Issxbi7vdbjidTvh8PgQCAYRC
+IWiaxkOryWQCXddht9shSRImkwk/Xja/OJlMIpFIwLRMSHhz8M3er2AwCI/Hw4+ftWGPxWK8/TD7
++t+H2+3mrZYTiQRCoRB0XcfJyQmvKJ/NZryVt6Io/NhYFWsikUAymfzeVeev4/V4eeV+IpFAMBiE
+rusoFosYjUYYj8eYzWZwuVy8dThbHws4QqHQvL2zx42zszOcnJygXq8jn8/j1q1bPLTVNA2bm5uI
+RCIwDAPFYhGmaSIajeLKxhW4PfMNE4qiIJlM8nN1enrKr4PZbAa32w1JkqCqKr/+2BgAVhWeyWSQ
+TqcRjUZRr9fR6/Wwvb3NW+6m02l+3bORBJZlIZvNfu/3+k3XQTKZhKIo/J42DAOlUgmapvFjY9d3
+t9vF4eEhjo+Pcf36dVy/fh25XA7xeBw+n4+fF8Mw+KxwNkO3XC6jWq1iPB7DZrPh/7N3n89xpeeZ
+8K+TT+fcjZwJgnGSNLIky7JXr/1lvf/rlsrrda0lq1yWPJrATIIZGQ00Ouc++f3QPM8AQ84MOUMO
+CPL6VaEmEOg+qU+DfT33fU9MTOD86nmYEfO1B/pvA0VRxJz6RqOBIAjQ6/VwcHCAhw8folariUrw
++/fv4+HDhyiXyyc6ZLwusiwjlUphamoKtVoN8XgckiSh0Wjg7t27qNfrYpHH0dERKpUKtre3UavV
+MBgMYNv2G3mdE/1UZFmGLMtQFAWzs7NwXRfD4RC7u7sn3r9zuRyazeb4vicrkBWZATgRERERERER
+vZUYfBPROyNs+VypVBCJRBCJRL7z+xOJBCYnJzE5OSnai+dyOdHqOZ/PIxqNIpVKYWVlBZ9++inK
+5TIqlQqePHmChYUFlPfLiCfiiMViyOVyuHr1KmzbRq1WQ6PRQLfbxfr6Ora2tsQHzOH8bdd1MTU1
+hVQqJYLDaDSKc+fO4e/+7u/w9OlTtNttdLtdbGxsoFKpQNM0eJ4nvgAglUrBNE1IkoSZmRl89NFH
+ME0TrVYL9Xodo9EIh4eHMM1xkBa2ug7D4jDsCcViMSwtLeGTTz5Bq9VCp9PBo0ePUKlUsL6+fqKC
+fHl5GZFIBPV6Xezv/fv3sb29/cL9nZycRKFQQLFYRDwehyy9fEV0qVTC5cuXIcsyut0u9vb20Gq1
+sLm5iVwuh0KhgFKphE6n84PD0LDiPZPJ4MqVKxiNRqhUKmg0Guj1enjw4IFoSR0es3DfJiYmkM/n
+USqVnjumr4skj7cvlUrj8uXLontAo9HAYDDAo0ePsLe399z2eZ6HYrGIXC6HVColrs+trS14nod0
+Oo3p6Wmsrq5iemoaiUQCw+EQi4uL+NnPfobt7e0T1/3u3i5KpZKYS3/p0iURkISzqr9rWwqFgjhW
+2WxWXHO/+tWvkM1mxXW/s7ODer0OwzCetTof/7zv+8hms4hGo2/kOKvKeBFD+Jq2LAuVSgWdTkeE
+8ltbWwBw4vUYjUaRTCbFPy9cuIBWq4VqtYp+v4+9vT00Gg3cv38fnufBtm24rgvTNHH58mVcunQJ
+KysrKBQLr32f3hbh+IdwMUG1WsVoNEKz2cQXX3wB0zRhGAY0TROLG8JwvNfrvdZtkSQJmqYhHotj
+bm4OH374IYIggGVZ4n62u7sr5toriiI6hQRBgFgsBkVRfvyGEJ0ySZKQTCYxMzMjRkzEYjEA48Vx
+vV4PrVYLrVYLkUhE/D5BRERERERERPS2YfBNRO+Mer2Ofr+Pzc1NMV/6u8TjcczMzGB2dlbMj81m
+s5idncX58+eh6zo0TYNjO1hdXYUsy/jTn/4k5s3u7OygfFDGRDCBSCSCXC6Hjz/+GBMTE7h27Rpu
+3LiB7e1t7O3todPpiOcNK6rD8DkMvrPZLGLRGNbW1hCPxzE9PY3r16/j1q1bqFar6PV6sG1bBMql
+UknMGI9EIpAlGVNTU/j5z38OwzBw7do1bG5u4ujoCJ7nIRaLYXZ2FouLi0ilUqJa+pshbTwWx8rK
+ClzXxfXr10V79LDi++LFiwiCAOfOncPKygo+/PBD3Lp1Czdu3MDW1hb29/fR7XZFBXY4QzydTovg
+tVQqIZFIQJJfPrQslUq4evUqJEnC9evXcXh4CMdx4Ps+EokE1tbW4Ps+ut0uXNf9QW3Gw/nDmUwG
+V69eRaFQwPXr13Hjxg1sbm6iXC6j0+k8t29h5Xs4BzWRSECRX38gFl7XmUxabN+NGzdw48YNPH36
+VLSm/eb2hduYSCSQTCaxubmJnZ0dHB0dwfd9ZDIZzMzMjNvPZzJQlfFc7uXlZQDjMQJPnjwRM7/L
+5TIMw4BhGEilUrhy5QpyuRxu3rz5UtuSTCbFvPJsNot4PC7aos/OzuKrr77CrVu3sLe3h263C8uy
+xL7n83kxYiBs6f7aj7Miw5AN5PN5fPTRRygUCuIaf/z4Mfb399Hr9USrfdM0MTk5ienp8aKBSCSC
+VCqFy5cvIx6Pi+OytbUlZkWHrd6TySSWl5fxwQcf4PLly1hdXUWpVBIdBt41qqqiWCxicXERQRCg
+XC6jXq+jWq1iY2MDkiQhEokgkUhgeXkZq6ur8H1fHPPXKexwEYuP742ffPIJTNPEnTt3cP/+fXQ6
+HdGWP5xtbxgGkskkVFVl8E3vjHBMRywWw97eHjKZjBhtMhwO0ev1xMIfYPx7DBERERERERHR24jB
+NxGdSZIkAfI4qL569aqYH/0qwrbWExMTsG0btm2LQOZ4GGxGTJRKJSiKgkajAcdxEAQBlpaWkEgk
+YJomVFWFqqooFAqIRCIYjUaQJAmFQgGNRgOtVksEgGFL8nQ6jeXlZSwsLHxdAa2MW++G87Y9zxPz
+vtvttgi+FUXBxMQEpqamsLi4OJ7RLUtiXm3Yftc0TViWJdpfz83NYWZmBsPhEP1+H77vIxaLIRqN
+YnZ2FvF4HLqhY2JiAsC4mlVVVRwcHIjK5tXVVczPz4vwMWy3DUC0Q221WmIbwnA0lUphaWlJbG9Y
+Tfaywn0Lj2MkEhH7Fo1Gsby8jMXFRRGcybKM8+fPI5FIQNf15wLScKZ6NBoViwnm5+eRSCRgGAYK
++YI4fuH3N5tNNJtNsW9h9Xw6ncbi4iIWFxe/rvh+hVD/Va99TdOQz+VhGAYsy0IQBMhkMuJaC7sB
+hMFquH1LS0tIpVIIggCKoqBQKGAwGIjgOZVKiXmvhmGgUBhXHrdaLViWhVarhXPnziGdTot565qm
+IZ/PQ9d12LaNIAiQTqfFsQq3RdM0cawWFhawvLyMyclJpFIpaKqGRCKB6elp0RZdURTU63XRGjy8
+7vP5PKampjA/P4/Jick3Mgc7fP0dP86u6yIIAqRSKbTbbbEAIgy+w2B0ZWUFmUxGHBdFUcTrI5VK
+idEDYev5sKPEuXPnsLCwgFwuJyrcgyDA/Pw8Pv30U0xMTODSpUuiVf03r+fJyUl88sknSCQSuHr1
+qugm8c2Aqlgs4urVq4hEIlhZWcHS0hImJiaQSo8Xw1y6dAnVahXz8/OYn58X97fj17Npmjh//jx+
+9atfoVAo4Ny5c6IC//h2maaJpaUl/OIXv0AkEsG5c+cwMzODYrGIdDqNmZkZXL58GaqqihnaQRDA
+MAwkEgkxSz2c416r1cSCj3g8LqrCL126hKOjI0xPT2NhYUFcm8e3WdM0TE5O4tKlS2KOeDQaxczM
+DCKRCHRNx8LCgrimY7EY2u02XNeFJEnifhsurrEsC4VCAYVCAbOzs0gmk2/k9U70Uwl/j4nH40in
+0+J+ZVkWbNtGt9tFtVqFIiuIRqPivYKIiIiIiIiI6G3C4JuIzqQwlJ6cmMTvfvc7LC4uvvJjhOFG
+PB4X7ZOjkSimpqdPVEBrmoZsNivClJWVlfFzP6vwDFt+KooyDo51HRcvXhRtt0ejEUajkXi8MPAy
+TRPpdFpUCoftysMq1rCicGVlBaPRCJZlwfM8EcrF43HE43GkUinkcjlIkoREIgFVURGNjucvf/DB
+B3BdF77vi4rbcOZwGFLqmg5NH++jCH0LBUSj4zbWq6ur6PV6okI8l8shn88jmUyKqt8LFy6gWCyi
+3W7DsiwMh0Oxv2EwaJomUqkUstnsif19WYlEArIsIxEft6j/+OOPxb6FAXQmk8H58+fx6aefQpIk
+zM7Oisq1bwakU1NT0DQNnU4HsiRDkset7jOZDBRFQTQWhaqpWFtbQ6FQEOHvd+1bJpNBMpFEJBp5
+o/NPj2/f+fPnkc/n0el0MBwOMRqNxOKAcPt0XUc6nUY2m4VhjCuZV1ZWRKttTdMwNTV14hipiop0
+Oi3aTi8sLGA4HGJ6ehrT09Mi+FAURbw2wm358MMPX7gt4fUSXvepZApmxBxXWBuGuO5N08Ti4iKG
+wyEsyxLhoyRJiEajJ657XXtzlYcvOs4ffPABbNsWCw5Eu+xnr8dwbrmiKEgmk9B1Hbo+XkzSarXE
+IhtJksRc+Gwmi3QmLV6fkiSJY3v58mUkEgm0223Mz8+jWCyOj7dy8npeWlrG//yf/xN/8zd/g6nJ
+KUxOTYrq8+NmZ2fxu9/9Dh999BEy6QzSmTTi8TgikQiCIMBvfvMbzM3NIZ1OY25uDvF4fBwiH+8K
+EY/j008/FeMgpqamUCqWYEbMExXQkUgEH3zwAbLZLDRNE+c9Hh/Pqp8oTeCTTz7BwsICBoOBmON9
+fFFAJpNBv9/H2toaBoMBZmdnMTs7i0gkIha5/OpXv8LMzAySyeS3brOmaVhaWkYikYBjO+P/p48X
+J5imiSAIMDU1hUQiIbpLWJYlFrmE5zcIAvG6iUajYhxGJpN5Y9ch0U9BkiSx8CSVSiGfz8P3fQyH
+Q7iui06nI0bJ5PK5095cIiIiIiIiIqIXkoLwE2miM8r3fezs7GB3dxf7+/vY399HtVrF5OQkZmZm
+MD09LWYWEhEREZ2GWq2G3d1d7O3tYX9/H+VyGZFIBFNTU5ienhahfjQaPe1NpffY+vo6/u///b/4
+05/+hJ2dHezt7SGVSuGXv/wl/uEf/gFra2u4cOEC8vn8aW8qEREREdGpCUcg7u/vY29vD+VyGZIk
+nfj73czMDFKp1GlvKhHRe+f1D8YkIiIiIqITuNaUzoKw40IsFoOmaZBlGb7vw7ZtDAYD2LYtOiEQ
+EREREREREb1tGHwTERERERGRGJERi8Wg67poge66LobDIRzH4SIOIiIiIiIiInprMfgmIiIiIiIi
+KIoCTdNgGAZUVT0RfNu2DcdxWPFNRERERERERG8tBt9EREREREQESZKgKAp0XYeiKM8F367rwvdZ
+8U1EREREREREbycG30RERERERARJkqCqKjRNOxF8+74Px3HgeR6CgBXfRERERERERPR2YvBNRERE
+REREAMbhNxERERERERHRWcTgm4iIiIiIiARJkk4E4EEQiC8iIiIiIiIiorcVg28iIiIiIiI64XjI
+HYbgrAYnIiIiIiIiorcZg28iIiIiIiICgG+t7GboTURERERERERvO/W0N4CIiIiIiE5XGHQGQfBc
+m2t6fwRBAN/34fv+c+G3LMvPrg2unSYiIiIiIiKitxODbyIiIiKi95zv+XBcB67rQtM0aJoGWWbA
++b4JggCu68K2bbiuiyAIIMsyVFWFrutQVRWyzEURRERERERERPR24qdZRERERETvOc/3YFkWBoMB
+bNtG4Ac//kHpzAn8cfBtWRY8z4Pv+5AkCaqqwjAMaJrGbgBERERERERE9NZixTcRERER0XvEcz04
+rgPLstBsNtFqtdBoNFCv1zEYDHD+/HlcuHABqVTqtDeVfmKuN672HgwGcBwHwHi2t6ZpME2TnQCI
+iIiIiIiI6K3G4JuIiIiI6D3iei4G/QFa7RYePXqEx48fY2dnB3t7e+j1evinf/onTE9PM/h+D/m+
+j9FoJCr/Pc+DLMvQNA2RSAS6rrPim4iIiIiIiIjeWgy+iYiIiIjeUeHMZt/3Yds2LMtCr9dDo9FA
+tVrFrVu3cPfuXWxubmJvbw+DwQCLi4vo9/unvel0ChzHwWAwQKfTgWVZCIIAkiTBMAzE43EYhgFF
+Vk57M4mIiIiIiIiIXojBNxERERHROyoMujudDnZ3d7G7u4tKpYJarYZarYaDgwMcHR2h0Wig3+8j
+CAL4vn/am02nIAgC2LaNdruNWq2Gfr8P13WhqioSiQRKpRKSySRUjX+FJCIiIiIiIqK3Ez+1ICIi
+IiJ6R9m2jXarjfJBGTdv3sStW7ews7Mjwm7XdeE4DlzXxWg0QiwWQxAECILgtDedfkLh+bYsC51O
+B/V6HcPhELZti+C7WCwikUhA07TT3lwiIiIiIiIiohdi8E1ERERE9A6wbVvMZ240GqKdebVaxcHB
+AR4/foyNjQ1Uq1V0Oh20220RcgdBAM/zTnsX6BQEQYBer4d+v49KpYJGo4HhcAjf9xGJRBCLxZBM
+JpHNZhGPx6EobHVORERERERERG8nBt9ERERERO8Ay7LQaDRQqVTw4MEDPHr0COVyGbVaDY1GA61W
+C51OB8PhEJZlwfM80dacVd7vt3a7jYPyAXZ3d9FsNjEajWAYBnRdRzweRzqdRjqdhq7rUFX+FZKI
+iIiIiIiI3k781IKIiIiI6IzxfR+u68J1Xdi2DcuyUK/XcXAwDi+vX7+O27dv4/DwEO12G91uF67r
+wvM8UdnNoPv9Fi52cF0XtVoNTzeeYnt7G61WC8PhENFoFIlEAtlsFqlUColEAgAgSdJpbzoRERER
+ERER0Qsx+CYiIiIiOkOCIEC/30ez2US9XsfOzg52dnZQrVbRbDZRq9Wwv7+Pw8NDdLtdjEYjOI4D
+3/dPVHjT+833fNiOjeFgiM3NTXz11Ve4e/cu6vU6JElCKpXCwsIClpeXkc/nATD0JiIiIiIiIqK3
+G4NvIiIiIqIzIqzSHQwGqBxWsLm1iWvXruHmzZuoVCoYDAYYDocYjUaiEpxV3vQinu/Bsix0e11s
+bm7i1q1bePToEbrdLmRZRjqdxsrKCs6dO4dcLsfQm4iIiIiIiIjeegy+iYiIiIjeQr7vI/ADDIYD
+9Ho9dDodNJtNNJtNHB0d4fDwEOVyGY8ePcLm5iY6nQ5s24Zt23AcB67rcnY3nRAEAXq9Hvr9PqrV
+KsrlMnZ3d3H79m3s7+9jMBhAURTkcjlMTU3h3LlzWF5eRjabPe1NJyIiIiIiIiL6Xgy+iYiIiIje
+MkEQiErtVquF3d1d7O7u4vHjx3jy5Anq9Tp6vR56vR6azSba7TZGoxE8zxOzvBl603FBEMD3fLRa
+LZTLZTx+/Bh37tzB+vo6dnd30Wg04Ps+YrEYkskk5ufnceHCBSwvLyOdTp/25hMRERERERERfS8G
+30REREREpyQIAvi+j9FohG63e6I1+Wg0gmVZKJfLePLkCZ48eYI7d+7gwYMH6HQ68DwPjuPAcRzY
+tv1aQu4gCGDbNvr9PjqdzmkfHnpF4TUQLnoI/AB+MJ7t7nkebNvG5uYmNjc3ce/ePVy/fh3r6+vi
+GorFYshms5idncXS0hKWl5cxMz0DWZFPe9eIiIiIiIiIiL4Xg28iIiIiolPg+z5c18VgMMDOzg72
+9/dFAN7tdtHpdER783q9jmazicPDQ/R6Pdi2LSq7w/ndr2ubqtUq7ty5g1arddqHiF5BuIgirPp3
+XVe0vh8MBuh2u+j1eqhWq6hWq6hUKjg8PIRlWdB1HZFIBJOTk7h48SI++OADXLp0CalUCpLM2d5E
+REREREREdDYw+CYiIiIiOgVhO/PRaCRmd9dqNVSrVdRqNdTrddTrddHCPKzwHg6HcF1XPMbxf/5Y
+nuehXq9jfX0d1Wr1tA8RvYLj14ht27AsC4PBAP1+H+12WyyeGAwGoptAOA8+EokglUphfn4eP/vZ
+z/C73/0OmUwG6XQassxqbyIiIiIiIiI6Gxh8ExERERGdAt/34TgO+v0+dnd3sbm5iWq1ik6ng3a7
+jV6vh06nc6KN+Zue3e26Lo6OjnD37l3E4/HTPkT0Cnz/65bmYQt8y7JgWRb6/b6o+A6vH03TkEwm
+EYvFMDMzg5mZGaytreHixYuYmpqCYRjQVO20d4uIiIiIiIiI6KUx+CYiIiIiOgVh8B0EAcrlMh48
+eIBGoyFCyzC4PN7K/E2G3gDgOA4ajQZs24amMfQ8S8Jrw/f9E23Pw+ssrAQ3TROGYSCdTmNmZgZz
+c3NYWVnB6uoq5ufmUZooIRKJQFVUzvYmIiIiIiIiojOFwTcRERER0SkIw0nHcdDpdEQr6jCw/Ob8
+7jcZeB9/jm63i9FoBEVRTvsQ0Q8kSRIk6evZ3LIsQ9M0mKaJWCyGRCKByclJrK2t4dKlS1hdXcXa
+2hry+fxzP0tEREREREREdFYw+CYiIiIiOgWyLENVVei6jlKphIWFBSQSCQyHQ1iWhdFohH6/L8Lv
+sJL3TQbgiqIgl8shl8vBMIzTPkT0ksKgWpZlKIoiri1VVaEoCkzTRDQaRSwWQzKZRCqVQj6fx8TE
+BCYnJ1EqlRCNRhl4ExEREREREdGZxuCbiIiIiOgUSJIkQslSqQTLspBKpdBsNtFqtdBut+F5HobD
+ofj+MAR/U+G3oijIZDI4d+4cksnkaR8iegWKokBRFGiaBl3XYRgGDMOAaZoi6C4UCkilUshkMohE
+ItB1HZqmiS8G30RERERERER0ljH4JiIiIiI6BbIsQ9d1xGIxzM3NIZvNotvtotPpoNPpiPC71+th
+OByi3++j2+2i2+3Ctm0xvzn8eh1UVUWhUMDly5cxMTFx2oeIXkFY7X08/A4D8Hg8jnQ6jUwmg3g8
+jlgsxhnuRERERERERPTOYfBNRERERHQKwnbUsVgMxWIRsWgMfuDDtm2MRiMMBgP0+31Uq1WUy2Xs
+7+9jc3MTOzs76Pf7Yj644zivrQW6qqoolUr46KOPsLi4eNqHiF5BOJs7bHUeXl/j+d46DEOHaZrQ
+NI3z24mIiIiIiIjoncTgm4iIiIjoFIQhpWEYmJycxOzsLKLRKIBxK3PHceC6Lvb39/HkyRM8evQI
+pmnC9300m03Yti1mgY9GI9i2LeaAh4/xqmRZRi6Xw/nz53HhwoXTPkREREREREREREQvjcE3ERER
+EdFbRpIkKLICqEA6ncbCwgKi0Sjy+TxWV1dRq9XQaDRQr9exv7+Pw8ND9Pt9uK4Ly7Lg+z5c131j
+s8CJiIiIiIiIiIjeNgy+iYiIiIjeQrIiQ1ZkpNNpJBIJzMzM4NKlS7AsG0dHFWxvb2NzcxPXr1+H
+bdsIggCj0QgA4DgOPM8D8MMqv4mIiIiIiIiIiM4aBt9ERERERG8hSZIAAJqmQdM0mKaJeDwOAIhG
+I+K/VVVFKpVCpVJBp9NBt9tFs9lEu90WLdDDKvDXNQuciIiIiIiIiIjobcPgm4iIiIjojJAkCUEQ
+IBKJoFQsIRaLIZ/P4+LFi6jVajg6OkKlUsHDhw+xsbGBer2Ofr8P3/fheR5c1wXAKnAiIiIiIiIi
+Inr3MPgmIiIiIjpDJEmCaZowTRPZXBZzc3MAgFarhYODA+zt7SEej0NRFESjUTQaDbTbbdi2Lb5c
+1xUhOMAgnIiIiIiIiIiIzj4G30RERERE7wDDMJDNZiHLMgCgVCrh8PAQ1WoV1WoV5XIZBwcH6HQ6
+GAwG6PV6AMahd9gGnYiIiIiIiIiI6Kxi8E1ERERE9A4Ig+9UKoXJyUl8+OGHaDabqFQq2N/fx82b
+N3H79m3s7e0hCAJYlgXP80Tg7fv+ae8CERERERERERHRD8bgm4iIiIjoHSDLMmRZhqZpME0TABCJ
+RBCNRpFIJCBJEmKxGPb393F0dIRarYZOp4Nut4vBYIDhcAhJkiBJ0mnvChERERERERER0Stj8E1E
+RERE9I4yDAPpdBqGYSASiWB+fh6NRgO1Wg3VahVPnz7F5uYmDg4OUK1WYds2w28iIiIiIiIiIjqT
+GHwTEREREb2jNE2DpmmIx+MoFAoAgOFwiHa7jXq9jhs3biCRSCAajUJVVXS7XSSTSSiKctqbTkRE
+RERERERE9EoYfBMRERERvUcURUE0GgUArK2tIZFIYGlpCYeHh+j3+/jkk0+QSqVOezOJiIiIiIiI
+iIheCYNvIiIiIqL3iKZpUFUVkUgEyWQSKysr6PV66PV6GI1GyOfzDL6JiIiIiIiIiOjMYfBNRERE
+RPQeCWd4y7IMTdMQjUYRi8WQTqfhui4Mw4Cmaae9mURERERERERERK+EwTcRERER0XtOURQReMuy
+DEmSTnuTiIiIiIiIiIiIXgmDbyIiIiKi95wsy5Bl+bQ3g4iIiIiIiIiI6Afjp1tERERERERERERE
+RERERHSmMfgmIiIiIiIiIiIiIiIiIqIzjcE3ERERERERERERERERERGdaQy+iYiIiIiIiIiIiIiI
+iIjoTGPwTUREREREREREREREREREZxqDbyIiIiIiIiIiIiIiIiIiOtMYfBMRERERERERERERERER
+0ZmmnvYGEBERERER0dspCILxlx9gOBrCtmy4nnvam0VEREREdGq6nS46nQ76/T4cx4Hv+5AkCbZt
+YzAYoNVqIRKJwLKs095UoneKqqhQNRWapkFVVaiqCkmSTnuz6C3D4JuIiIiIiIheKAgCeJ4H13XR
+bnfQajUxGo1Oe7OIiIiIiE7NcDhEvV5Hp9PBcDiE7/sAgNFohE6nA0VREAQBIpHIaW8q0TslEokg
+Go2KL1VlxEnP41VBREREREREzwmCAK7rYWRZGA5HqNfrqFQqGAz6p71pRERERESnxrZtdLtd9Ho9
+WJYFz/MgSZIIvn3fh23b0HX9tDeV6J0Si8WQSqaQTCURBAF0XRdV36z8phCDbyIiIiIiIjrB9314
+nodef4CjWhPVehON6iHqtQpGw8Fpbx4RERER0alxXRe2bcOyLNi2faLiOwgC2LaNXq/HalSi1ywW
+i6Hb7SIzyMB1XUiShEgkAtM0oWnaaW8evSV45yUiIiIiIqITPM8TwffhUR2b22V0mhV0mkewRgy+
+iYiIiOj95vs+giAQXwBEEC5JEmRZPu1NJHrnxGIxdDodDAbjv5OGYbeqqgy+SWDwTURERERERCf4
+vg/HcTAYWmi0+ziodjDsWxgMANfhXyPPEkUOoEgBVEWCpsrQNUV8GMuWgERERESvzvd9uK4L13Xh
+eR5c1wUwDt8URYGqqlBVleE30WswHsH19ettMBhAkiTEYjHE43Houo5IJHLam0lvEX5iQURERERE
+RCcEQQDP8zAa2Wh3R6g2h3AdwHUj8APOKjxLdCmApAKKLiEW1ZGMaSc+jGX4TURERPRqHMfBYDDA
+aDTCcDgUrc4Nw0AkEkE0GkUkEmGrc6LXwPM8DIdDDIdD2LYN27YRBAE6nQ7a7Tai0SjS6fRpbya9
+RXjnJSIiIiIiohOCIIDv+bAdF72BjXZvhCBQ4CMKgJUrZ0kQuJADF1BkmFETyaR5Yg5eGH4TERER
+0cuxLAvtdhvtdhu+78O2bQCAaZpIJBJIpVJIp9PQdS4YJfqxXNcVr7d2u43hcCgWn/T7fViWJbou
+EAEMvomIiIiIiOg7BJAQQIYLHU5gwIdy2ptEr8B1Bs8+jPWQjptQVBWxWAzpdBrRaFRUfxMRERHR
+y+n3+1BVFb7vw7Is9Pt9SJIEwzCQSCSQy+VQLBYRjUZPe1OJzrzRaCQWkYSBt+M4p71Z9Bbj326J
+iIiIiIjoe0hwocOSEvAC7bQ3hl6BbTuQHR8yPNhuAEVWEI1Gkc/lkUqnoOs6q5GIiIiIXkGn00EQ
+BLBtG71eD4oyXhgaiUSQSqWQz+cxNTWFRCJx2ptKdOYNh0PIsgzbttHv96EoCoNv+k4MvomIiIiI
+iOg7SAAkBFAQQIH/kn+NlABAkiBLQMRUETUUKIoE1wvgegEs24PlePC84LR38J0WBDI814fjevB8
+D0EQQJZlqJoKXddhGAYMwzjtzSQiIiI6MyzLgqqqUBQFsjweAyRJEmRZhqIoYmGhaZqnvalEZ57v
++9A0DaqqckwTvRQG30RERERERPT6SYAsA4osIZ3QUcpGYGgyhpaPkeWi2bXQ7AbwPO+0t/SdFgTB
++Mv34T/7Cv8fERERERER0buEwTcRERERERG9dhIkyJIERZGRieuYn4gjaqro9h10Bg48P0Bv6MKy
+GXy/WQECP4Af+PD9AL7vifCbiIiIiIiI6F3C4JuIiIiIiIheO+lZxbcqy0glDMyUYkjGNDTaNsy2
+hXbPhqqwTR0RERERERERvR4MvomIiIiIiOiNkCQJqiIhHdcxV4wjk9IRNYdQVQmHjQFURT7tTSQi
+IiIiIiKidwQ/ZSAiIiIiIqLXTwKkZ/9UVRmGLiNiqDA1BYaqQJUlSCz4JiIiIiIiIqLXhME3ERER
+ERERERERERERERGdaWx1TkRERERERG8VSRq3SZclQJYlSNK4OjwIxn8eBAF8P4AfjP89/P/fJEsS
+JHn8T1kCJFn6+nuD8c/7fjB+vODF2yFLEhRFghz+bBAgAIAACADI0rNvHD8ogmeP6fnfvl1ERERE
+RERE9Pox+CYiIiIiIqK3iiJLMHQVpqHA1BVEDBWqIomAejByMBh5GNkuXDeA4/ovfBxNk5/9vALT
+UGHqCsbZdQDb8TEYuegPXbieB8cdh+khWZIgy4BpqEjFdWQSOmzHh+X4cD1fhO+GrsLQZEiSBMf1
+4Xg++kMH/aED2/EZfhMRERERERH9RBh8ExERERER0VtFVSRETQWJmI5MXEc6acDQFHi+D98PUGtZ
+qLdHAIBh4MJxX/w4hqYgHh0H1+m4gXTCgB/48H2gP3JRb40QBAGGFuB5Lo7H55I8rjaPmiomshHM
+T8bRHTjoD12MbG9c1e35iMd0JCIaZBkYWh6GIxdHLQm248N2AkgSK7+JiIiIiIiIfgoMvomIiIiI
+iOitEDVVxCLjoLqQMVHMRpCI6EjENOiaBN8D/CBAMWOj2bXR6IxQbY5Qa41gOR4cx4ciS4g8e5x8
+OoJixkQmqSMZ0xGPas8qtYGh5aKVjaDZtcRjdAYOHMeD7fjjFueyhIihopg1sTyTxGDkYmCNnyds
+Zx41FcRMDZIEWI6PkeMiVR0gEdVQb4/QHbjo9u3TPrRERERERERE7zwG30RERERERHTqJAlIxjRM
+5qOYLsQwW4pjbjIGQ1WgaeMQOuxEPrI8jCwPh/UBHu12EADo9m10ejY0TUEhY2IiH8VcMY65iRhy
+KROaKsHQ5PFccACu62Nkjx/n4U4Hj3fakOt9dPoSbMeGJAGKIiNiKChmI1iZTsLxfDjuuGI8eDbk
+W1UkqKoMSQI8P4DnBiimI8inBtg96mH7sMfgm4iIiIiIiOgnwOCbiIiIiOgNkyTptDeB6K0lYfwa
+kWUgnTAwW4xjZTaB+YkEFqbicBwftucjeNaHXJIBVZagyhJyKR2uH2AwcnEoSbBsH6Yuo5iJ4NxM
+EguTCSxMxpCIanC9ALYbIHw1qso4TFdkGYAE23Hhej48b4BuH5Cl8ZxvU1OQTuiYLkZFy3LvWZtz
+zx+3MfeDALIkQVUkaKqMaERFIqJBUSR0+g7KR30EwXi2OLueExEREREREb0ZDL6JiIiIiIjo1Mjy
+uGLa0BXk0ibmJmKYzMdgaAq6fQeH9SEqjSEGlgtFGQfepWwEE7kodE3FVC4K3/OhqTIc14ehyZgq
+RLE8nRwH3j5w1LRQqQ9RaQ7HYbciIRHVxo+TjSAd17A4lYQfACPbw1FzBEgSvrlmJQgCeAEwGLpo
+dEdodmzYz1qjG/q40ryQNqGpMnJpA71hBLsVAxFTg+N6cN1xWE5ERERERERErx+DbyIiIiIiIjo1
+sizB0BXETBWFtIn5yQSmchFYro/uwMXWQQ8PtltodW3omgxdk3FhIYNYREM6bmAyH0UqrsFyA7Q6
+NjRNxlQuinOzCVi2B8sOcNQY4cF2Gw+3W9DU8WOUchFAAoppE+mEDl2TgQCo1IeQ5edDbwDwA8Dz
+fPRHDg6qQ2wf9sZzv0cuElENjpNEzNSgqzIKaROW7SOT1BEzFQwsiLngRERERERERPT6MfgmIiIi
+IiKiU6MoEmKmikzSQCquIR5RIEkS2l0bh40h9qp9lGsDtHs2VEWGpkpIxXTkUgYkCTB1BdmkiYls
+BPViDJoqIZcyETFUtHsOKo0Rdipd7FX7OKgPxjO5FRmu5yOT0FFImzC1cfCeTuhIRDVETRXyCyq+
+LdtDb+TiqDHC7lEfT/c7GFkeLNtDIqbB0BVETBW5tIFCyoRpyIhHNCTjOgKMq8OJiIiIiIiI6M1g
+8E1ERERERESnRlVkxKMaChkTiagOTVMwcjxUmkM82etg/6iPRnuE7sCFLEtQZOCwPkQ21Yemyihm
+DKTi+rNq8RhkSUIqrkGSxvO1d4962DroodIYoN13xOxuSZaQrQ6RSQxQzJgoZk1ETRXxqIZEVIPn
++XC9k9XZQ8tFo23hoDbAbqWPrXIXnheM54xbHiKGCk2VAQDJqAZNkRGLqMgkdDiuj97QBcDwm4iI
+iIiIiOhNYPBNREREREREp0ZVZMRMFbmkgXhEhaZIGFo+Gh0Lu5UejpojdPo2BqNxYCxJQL1jodIY
+IRnTkY7rMHUFmZQOx49BApCIa5AkoDd0cFgb4qDWR7NjYTB0vn5eVUKtNcJhfYCoqaIIwDRkEX4P
+LQ/+yD2xrSPbR2dgo96xUW0OcVgfij9zvQBRQ4GhyUgndEy7USiqhIihIBnX0ek7UGTpZQ4JERER
+EREREf0ADL6JiIiIiIjo1MgyoKkyTEOFpsmQJAl+4MNyPAxHLhzXw4mx2M/mbFu2h5HliapsU1OR
+immQnv17AMDxfIxsFyPbh/eN6m3fB2zXx8ByYTke/CCALMnjbdEVuK4PW375/fD9AI7nY2h7cBwf
+gQ8o6rituq4qUBUJzL2JiIiIiIiI3hwG30RERERERHRqZEmCrsmIGgp0VYYsSfD8ALbjY2CFIfLJ
+0NoVgbYLxxtXghu6jBQMAICpjxNr1w0wsn1Ytvtc23I/CGA7HgbD8XP4PiBLgK7KiBgKLNuDJL18
+Uh0EPhw3wGjkPQvrA0iQoCoSDF2Gosh4hYcjIiIiIiIiolfE4JuIiIiIiIhOVRCMg2icyKalE/94
+oeNJcvgY+MbDvMp2hF8/6AGkrzfp2Hb5fgDPCxAEwQ98XCIiIiIiIiJ6GQy+iYiIiIiI6NSEobfr
+BvD88X9L0rgtuKJIkCXpuUppSZKhyDJkGVDkZ9Xd/rg9OgBoqgQDCiQJkBUJ8guqrSUAsiyPW5DL
+z54jAHzfh+v68PxxWP2yJEmCIktQVRmKLEEC4AWB2C7X8xl8ExEREREREb1BrzCxjIiIiIiIiOj1
+CkNv2/Hheh6CIIAiAZomw9RVqKp0srL7WSCu6zIMTYXybHC27fjoDRz0By4cZ5wwK4oEQ5NhaAoU
+5WTyLcsSNFWCaShQtXHQ7gc+HC+A7frwXjGolp9tc8QczyqXFQlBADhOgJHtwXEDUZH+k5PGQf/4
+MEqv1MKdiIiIiIiI6Kxg8E1ERERERESnxvcDjGwXnYGDke3DCwKoqoJUTEMxayIR1aEq47+6StK4
+sjpiKMglTWRTOiKGiiAA+kMH1dYI1fYQ/ZELCUDUUJFLmsgkdJi6Ip5TkgBNlZGI6ShmI0hGNaiK
+As8HLNtHb+jAcrxXCqo1VUYqpmMyF0U6rkNXZXhegKHlotNzMLJceL5/Ksf4eMzN0JuIiIiIiIje
+VQy+iYiIiIiI6NR4/rgiujtwMLRceH4AXZWQjOsoZSKIRzVoavhX13FL8qihIpvUkUsaiBgyAgD9
+oYdq00K1aaE/dAEAUVNFNqUjmzRgGuNJX2HVs6pISEU1TGRNpGIaNFWC541D+P7QheX48P2XC77D
+ID0V1zBViCKTMKCpMjzfx9Dy0OnbGNkegpd8vNcrnJUuQ5IkSPK44psBOBEREREREb1rOOObiIiI
+iIiITo3rjSusa60hWr0YegMHmYSOdEzH3EQMjhdAAtDu25AlCYoiYXE6jolcFDFThe0GOGoOUa4N
+sFvpQ1Uk5NMGhlYUpi6jlI08mx8eQJHH87xlCShmo5gpxZBNGZBlGZ2Bg3pnhE7fwdDyIEuA/I1w
+2DRkpGMGSjkHnX4CrueP55HLQC4VwcJkHKVsBIYuY2h5aHZstHsOemE1+ykUfEsIxvPSn81DVxUV
+siwz+CYiIiIiIqJ3DoNvIiIiIiIiOjWu66Pbd+G4ARptG92+g2RMQyqhIxHVYGgq0nEdg5ELVZWg
+KRKmCjFM5iLQNRmtnoN2z8buUR87lS4MTcF0IYr+0IWuK5jIRhE1NcQiGgrpCFRFgqrKSMc1TBVi
+SCcMdHoO6u0RKo0ROj0blu1CVeRjleZjMVOFnJGgKICpKcinDCiqBFWWkIzpmMhFUcyYGI5cdPsO
+au0RWj0LnYENzxuH7z81SQJkOYAqA5qqQFVVKIoiwm8G4ERERERERPSuYPBNREREREREp8b1Angj
+FyPbRb09wlFzhERMQzquI5nQoT5rIe56AVRFgqbJiBgKYqaK3tBFozPC7lEfe0d9VOpDmIaCSnOI
+SnOIVMxAMq4hFlURNVQUMgY0RYGmSTA0BVFDha7IGIxcHNSGOKgO0OrZsB0fsgQEwcng29QV6JoC
+Q5OfPZ4JTZGgazI0TUFEV2DqCto9G0etIQ5qQzQ7FoYj76c9qEEABB6CwIUCF5riw9QAQ1dgGDo0
+TYMsK1AU5cc/FxEREREREdFbgsE3ERERERERnbIAQSCh2hphfauF3sjBdCGKmUIMgISIoY4rlyUJ
+kgzYtoduz0G1PcLGfheb5S4qjSGGlgfPD7B90IMiS+PHKEaRiBqQJCAdNyBLgCRJ8IMArb6Fo6aP
+p/tdbJQ72Kv00e7Z37qVrg94rg/XAxRVQtRUTlSG94YuGl0bm/sdbB30sHPYR7Nr/fRH03cQOB0E
+dheq1kfS9JCO60jEDESjURiGAU1TWfFNRERERERE7xQG30RERERERHSqggAAAtRbI9iOh07Phm37
+0FUFqbiOdFyDoSvwA8D3AnR7Do6aQ+xU+ni828GTvTYs24Pj+HA9GbuVHlo9G92BgwDAdGEceqfj
+OvwggO8DvaGDdtdBtTXE0/0OHu92UG0OYdvfXp3t+z5sz4fvB1BlGYohQXkWfFu2i95gXLW+We7h
+wXYLlfoQA8v96Q+ob8O32vAGh9CSEhKmhEwiimTMQDQShWmYYta3LMk//vmIiIiIiIiI3gIMvomI
+iIiIiOi1CwLA9wM4ro+D6gC3njSQjGpodG20OhaqTQuW45/4fst24QeALA+hqhJs10MiqiER1aCr
+z4LvwEejM36Mo9YQR40h+gMHvg/4QYAAPnpDB7YbwNT7CAKg3rKQjI0fJ3yMwchDq2Oj0bVQrvaf
+tSQfP/+3sRwf3b6DTt9Bu2+j07ehyBIUWYZle2j3bHT6DnYOe6i3LPSHDtyfcK534A0RuCPIbhcG
+ulB1C5l4BPlMHPlsGqlUArF4DLqhQw0rvmVWfBMREREREdG7gcE3ERERERERvXZBEMD1gCDwsHXY
+RWdgQ1MV2I4Hy/bQHTiwvlEN7XoBgsBFsxPAcTwcNUbQVBm6qkCWn42uBmA5Hmzbw9By0R+68Pzx
+84mw3fHhew4O6wN0Bw62dAWaKkNTFQQYP4jr+bAcD5bjYzB0MBi58P0A3xVTjywPrZ6NvaM+tso9
+bB/0AAmQJMD3AdtxYTvj4L03cOB6AfzgJwy+nQH8UQOy30FUHyERBQppE4V8Bvl8HqlUCrFYDKZp
+QtM0KLLCVudERERERET0zmDwTURERERERK9dEABeEMDzA1TqQ1Tqw+/9Gc8ff7/t+ugNHADf/zMv
+el7XC+B6Aay2hUb79c3YDkPtatPCxn4H9zaaP+Uh/fYdDjwEgQu4PUhOA7rcR8JUUExpKOYSKOaz
+yOVySKfTiEajME0TiqJAVtjmnIiIiIiIiN4dDL6JiIiIiIiIzqjAdxDYHfhOB0bQgWk4SEVVTOQT
+mMgnUSwWkM/nkclkEIvFYBiGqPYGwIpvIiIiIiIiemcw+CYiIiIiIiI6q3wbvt2C2z9EIuohFfVQ
+TEcwUUhhanIC+XxeVHtHIhEYhgFZliErMkNvIiIiIiIieqcw+CYiIiIiIiI6YwJviMC1ILldGOgh
+atjIJjQUM1GU8ikUC3kUCgWk02kkEglEIhHoug5VUSHJDLyJiIiIiIjo3cPgm4iIiIiIiOiMCZwB
+fKsBzesgqo+QiAQoZqOYLOVQKuRQKBSQy+UQi8VEi/Pjc71Z7U1ERERERETvGgbfRERERERE9B0C
+AD4QuJDgQgrGgWkQHP/zd4/vKQhkD46jodcboNbsotkeoNMZYjAYwHEswHd+wv2XAASQnv2r7PUh
+OS0Ycg/JiIJiUsdkIYWJYh6lUgmZTAbpdBqmacI0TWiqBkmWGHgTERERERHRO4vBNxEREREREb2Q
+BB8KXKiwoAUyXM+D7ysIggDwAwQIxv8evHvht2vLgCKhCgO30EC7tofewEFn4KDZsdBojhCMRj/N
+vksSJPGvAWQpgKF2YSYDJEwThUwMxWwcxWIBhUIBmUxGtDfXNA2KojD0JiIiIiIionceg28iIiIi
+IiJ6IQnBOPiWbCiBD8UbwfeAwPfhez78wEfg++9i7g1PAnwA9YGETkPG40cyvADw/QCuF8BzfQTe
+T7Pj0rMyb1kKIMs+VMlHPBogHQuQS0VRLGRRLOSRy+WQy+WQSqUQiURgmiZkWR63OJfl0z6kRERE
+RERERG8Ug28iIiIiIiJ6IQk+FMmBCguGZENSZASqAk3VoGo6fN+H7/vvZMX3dx2V8ddPGCRLEiQJ
+kCUJmhJAlYFkTEUmriKTiiGfzyObzSKVSiEejyMSiUDXdaiKykpvIiIiIiIiem8w+CYiIiIiIqIX
+kqQAChxokgVZATRJgm6YSCWjSKZS46pv3x+3O6c3RpLG4bUsS9BUBaqqIBHVEY+ZSMSjSKVSSKVS
+iEZjiMWiMAxjXOWtyOLniYiIiIiIiN51DL6JiIiIiIjohSQEkOFBhQNVBiRFQjxqYLIQRamUFRXf
+DL7frK+DbxmapkFVVUQiEUQiEUSjUfFlGGNFavwAAIAASURBVAZ0XYemaqz0JiIiIiIiovcOg28i
+IiIiIiL6XoqiQFEUxGIxZLNZTE9PIwiC8ZfP4PtNC4Ps8Dzoug7DMKBpOgwj/HcNiqIw9CYiIiIi
+IqL3EoNvIiIiIiIi+l5h2BqPx5HL5UTwDYAV32/Y8RBblmVIkgRVVaEoClRVhSzLIhAPq8OJiIiI
+iIiI3jcMvomIiIiIiOh7ha22VVWFaZqIxWLizxh8/zTCcxCG2+F/y5LMed5ERERERET03mPwTURE
+RERERN/rm3OmDcMQf8bg+6dxovJbkiHJ0on/z9CbiIiIiIiI3mcMvomIiIiIiOilhW21NU077U0h
+IiIiIiIiIhLk094AIiIiIiIiIiIiIiIiIiKiH4PBNxERERERERERERERERERnWkMvomIiIiIiIiI
+iIiIiIiI6Exj8E1ERERERERERERERERERGcag28iIiIiIiIiIiIiIiIiIjrTGHwTERERERERERER
+EREREdGZxuCbiIiIiIiIiIiIiIiIiIjONAbfRERERERERERERERERER0pjH4JiIiIiIiIiIiIiIi
+IiKiM43BNxERERERERERERERERERnWkMvomIiIiIiIiIiIiIiIiI6Exj8E1ERERERERERERERERE
+RGcag28iIiIiIiIiIiIiIiIiIjrTGHwTEREREREREREREREREdGZxuCbiIiIiIiIiIiIiIiIiIjO
+NAbfRERERERERERERERERER0pjH4JiIiIiIiIiIiIiIiIiKiM43BNxERERERERERERERERERnWkM
+vomIiIiIiIiIiIiIiIiI6Exj8E1ERERERERERERERERERGcag28iIiIiIiIiIiIiIiIiIjrTGHwT
+EREREREREREREREREdGZxuCbiIiIiIiIiIiIiIiIiIjONAbfRERERERERERERERERER0pjH4JiIi
+IiIiIiIiIiIiIiKiM43BNxERERERERERERERERERnWkMvomIiIiIiIiIiIiIiIiI6Exj8E1ERERE
+RERERERERERERGcag28iIiIiIiIiIiIiIiIiIjrTGHwTEREREREREREREREREdGZxuCbiIiIiIiI
+iIiIiIiIiIjONAbfRERERERERERERERERER0pqmnvQFERERERERERPS1SqWCcrmMXq+HSCSCSCSC
+VCqFbDaLaDR62pv3xgyHQxwcHKBcLkNRFEQiEcRiMWQyGWSzWcjy2ajf8H0ftm3Dtm00Gg1UKhW0
+Wi3Ytg3HcWAYhjinxWIRExMT0DTttDebzrhms4lyuYx6vY6IGYFhGkilUshkMkgmk6/lORzHgeM4
+GA1HOKoe4ejoCP1+H7Ztw/M8RKNRxGIxZLNZlEol5PP50z4sr4XneigflFEul+G6rrgvZzIZZDIZ
+GIZx2ptIr8BzPbiei0ajga2tLezt7WFmZgZzc/PIZNLQNI33ZCKiM4zBNxERERERERHRW2R3dxf/
+/d//jXK5jGw2i1wuh5WVFSiK8k4H3/1+H3fu3MHnn38OXdeRzWYxNTWFc+fOIZFInJlwyfM8DPoD
+dLodrK+v4+bNm3j69Cl6vR56vR6SySSKxSLm5ubwySefIJPJMGShH+3w8BCff/457t+/L+4b8/Pz
+WF1dfW3Bt+u66Ha7qNVquHHjBm7fvo1KpYJerwfLslAoFFAsFrG2toZPPvnknQm+Xc/Fo0eP8Pnn
+n2M4HCKTyaBQKGB1dRWmaZ6ZexONOa6D0WiEzc1N/OEPf8Cf//xn/PrXv8b/+B//A6urq4jFYrwn
+ExGdYQy+iYiIiIiI6L1jWRb6vT56/d4r/6yu64jFYojH4wAASZJ+0Db4vg/P8+A4DgaDAQaDgagi
+03Udqqr+qArXIAjQ6/XQ7/cRBAEikQii0SgUWYGsyK+83UEQoN/vo9/vw/f9H/149O2Ojo5w7949
+bGxsoFQqYWpqCpFIBDPTM6e9aW/UcDjE5uYmvvrqK0QiEUxOTmI4HCKbzcL3/dPevJfmed64+vag
+jAcPHuDGjRt4/PgxBoMBhsMhUqkUJicnMRqNRNV3Pp9HJBKBaZpQFOXMVLfT26PZbOLhw4f44osv
+MDExgampKUiShImJidf2HMPBEEdHR9ja2sK9e/dw7do1VCoVDAYDuK4rOhgAQDqdRiaTEe8Vmqad
+2Wvb8zzs7+/j5s2b6PV6mJiYwMzMDFKpFBYXF7/358P3e8uyMBwOMRqN3shxCYIAlmWh1+thOByK
+rhmqqp7ZY/8muK4Ly7JweHiIGzdu4I9//CNisRjW1tYwMzPDhQxERGccg28iIiIiIiJ6bwRBgCAI
+cHBwgM8//xzXrl175ceYmJjAz372M/ziF7+ALMtQVfUHhb6j0QiDwQB7e3u4desW7t27h/Pnz+PS
+pUuYnZ1DMplAIpH4wfvoeR5u376NL7/8EqPRCFeuXMGVK1eQSCQQi8Wg6/oPfrzhcIhLly7hgw8+
+eOXHI3rXjUYjPN14iuvXr2NnZweu6yKfzyORGL+mk8kkkskkIpEItre38fjxYywsLODy5cs4d+4c
+otEo4vE4Qyp66zSbTdy7dw+3b9/G4eEhNE3DzMyMuLYNw4BhGHBdF3/5y19w7do1rK2t4fLly5iY
+mEA8HheLxt4XQRCIRS8bGxu4c+cOnj59igsXLuDy5cuYmpp6LcfF930EfoCdnR188cUXuHfvHi5e
+vIirV69iamoKsVjsne4YQkREFGLwTURERERERO+VwA9weHiI//zP/8T//t//+5V/fnl5Gaqq4sMP
+P4Su61AU5YcF38MR2q02Hj9+jD/84Q/4j//4D/z617+GLMuIRCJQFBnxePwHPbbnefA8D3fv3sXv
+f/97UfldKpUQBAEMw3iloDp8vHv37uH3v/89Op0Out0uJkoTCIIAmqYx+CZ6ZjQaYWtrC19++SX6
+/T5UVUWhUMDa2houXrwI0zQBAPV6Hf/xH/+Bzz77DOfPn0cQBMhmswCASCTC4JveOo1GA/fv38dX
+X30FRVGgaRqmp6dx/vx5LC0tifeGhw8f4saNG9jb28Pf//3fwzRN0cnkfQy+R6MRms0mHjx4gH/7
+t3/Dl19+id/+9rfQdR2GYUBRlB99XAI/gOu52N3dxR//+Ef88Y9/xO9+9ztEo9Hx7xTyuz0qg4iI
+KMTgm4iIiIiIiN4bQRAAAGzbRqvVwsHBAXK5HBKJhGgx/n0B7tTUFNLpNGRZ/lHBlKzIUFQFpmki
+lUohm80inU6L1qc/9LHDCu2w1Xmj0UC320Wn04Ft2/A875XbRn/z8drtNrrdLizbgud54rgS0biN
+brPZRLlchq7rmJ2dxeLiIlZWVnDu3DlRESvLMoIgQLPZRKPRQK/Xe/YaPTtt3en9MhwNUavVUKlU
+MD09jampKSwvL2N1dRVLS0totVpot9sYDAY4ODgQrf3DcFdRlNPehVMhS+PuMJFIBOl0GtlsFqlU
+CqZpjtuQy6/nuIStztvtNo6OjtBqtUQbes/3TvswEBER/SQYfBMREREREdF7LZvNYnl5GVNTU0il
+UkilUt/5/aVSCefOnRtXe8s/rNobGM8Kj0ajmJycxJUrV+B5Hi5evIipqSnRMpZzs4nOHs/zMBgM
+0G63USgUMDExgbW1NSwuLmJiYgKqqsLzPPR6PUSjUb7O6cywbRvdbhfdbhemaWJxcRGrq6uYnZ1F
+qVhCPB5HJpMRi6UmJydx6dIlTE5OIh5PQNO0096Fn5wkSdANHbFYDNPT07h69SpM08Tly5e/Pi76
++3dciIiI3hQG30RERERERPReS6fTOHfuHC5evIhSqYSJiYnv/H5d1xGPx1Gt1qBpKjRNg6qq39k+
+fDAYYDAYwPM80e7V931omoZEIoFSqYSFhQVMTk6KKrAwIAiCAL7nw/VcjEYjWJYF3/fhui6CIIAk
+SZAkGZqmQlVU+IEPy7Jh2xa63S4cxxEhW6VSge/7sG0biUQShqGLKndN1aCoz1edOY4j2td2u91x
+5dizxzs6OgIAWJaFZDIFXddgGAY8zxPfF84HD/cl3F5FkaFrOvRn26DIyonnPz5b3LIs2JYN2xlX
+w/q+Jx5HliX4/rjiPDwfYet1XdefO36j0Qi+74ttk2UFsjwOHn0/gKKMK/PEY2g6ZEUW2+I4znh7
+bFuch2/uk6aPt+GbxzTcFscdP4ZlWaKNPADxGM1mE6PR6AdV04fHzXEcDAYD9Ho9aJoG0zQhyzJs
+2352bnwEwbiyWFVVKIoCwzDEtReGseGxcl1XbPPx4xfuu65/fcxVVYWqquIxjp9Lx3EwGo6eO5eK
+oqBaraLf74uuBN/c9/DYu64L27bhOK7YBwBi7IBhGOL8ffO6+j7hNXJ8P8N9AABZVk6cZ13XoSoq
+ZEWGZVkYDoc4qhyhXq+j2+0ilUqJSs9w1q8sy/DccThu27bYt3a7jUqlAtdxYVkjRKNR8TzhOQrP
+w3ddf6qmnnhNh9fdcDQUz2maJkzTFPeDrx9HEteBYRgvdcx83xczjMfX89fXVniNKIoCWZbFDGhF
+UaCq6it1tnjRfoSP5/s+HMeB67rw/QC+70GWFaiqAk3VYEZMGLohXsuu62IwGKDfH0BRZNGK27Zt
+2LYttluWx38WLlDwPR+e74nXQvhaOn5P0p4df1V9dh6OvZ5+iHC/Pd8T1+bx+2t4TdbrdQwGA/i+
+/8LXTzgD2nbs517LAMT9NHzthO9tqqqi3++Pr+2jIzSbTfE6DY+b67ro9XuQZRmpVAqlUgntdhuK
+oqBYLD5bzKVDluVj96Y+ZFkS9xzHccR17fsBgmD8HqkoCnRdF8/1ouPyXedDVRWxP+HX8evu+HEZ
+jUZiG8LjoigKRqMROp2OeD991fuyqqowTRPpdBpTU1OwbRulUgnJ5Ph9WJIkcVwGgwEAiNdgeE2O
+74vj4xKel7BVuq7r6PV76HQ6aDQaGI1GAIDhcIhGo4GDgwPY9nj/wp8JH0NRFPEe67gOXNf73uMn
+SdL4vu4H6PV737rN4XEKvz/8d1VRoTx7XMMwXngfsG0bw+H4tX78ucPrcjgciveS7/o9I7xHhJX1
+r/J+QEREZxODbyIiIiIiInqv6bqORCKBXC6HYrGIycnJ7/z+ZrOJe/fuYWtrC6lUCul0GqVSCbOz
+s5ifn3/hzzx69Ai3bt0az8WemECpVBLV5c1mE+vr6/jzn/+M4XCIbDaLXC4P0xx/iBt+oF+r1vB0
+4yk2NzfR7XbR6/Xguq748DqXyyGbzUKSJNTrddTrdVy7dg2dTgej0Qh37tyBZVmIxWKIRCLI5XKY
+nZ3FwsICJiYmMDU1hWQy+cL9vXbtGm7cuIFr166h3W5jOBzi7t27sCwL8XgckUgE2WwWMzMzmJub
+Q6fTQbPZRLfbFUFiGGaGQZJpmpidncXc3JwI/FOp1NeBq+djMBxgNBrh6dOnePr0KQ4PD098EB5+
+YB6GFPl8HsViERMTE5iZmcHs7Kz4sL9areLp06d48uQJ+v3+iYUIYXDm+z4Mw0ChUECpVML09DRm
+ZmaQTCTFtmxvb2NzcxMHBwfo9/vo9Xpi1m08HsfU1BSmpqbEIorjxzQMRmu1Gp4+fYqNjQ10u10R
+VpmmiUgkgidPnmB3dxe9Xg+WZb1SyBKGR5XDCq7fuI5bt24hn89jcXER8XgcBwcHODw8FAGaLMtI
+p9NIp9NYXFzE8vIyJiYmRFA5Go3Q7XZRr9exubmJ7e1tdDodDIdDOI4jwu5SqYSZmRlMTk6iWCyi
+kC+IgCEMK4fDIba3t/H06VPs7++LcxmGWqPRCOvr62g2m5AkCa7rnti3er2O3Z1d7Jf3Ua1WUa1W
+RSAkSRIikQgikQimp6cxNzeH6elpJBIJJBKJ7w1Yw3B+Z2cH6+vr2N7efu7aBSCu3cnJSSwsLIw7
+RSTH1+7Ozg5u376Nmzdv4sGDBxgOhzg8PMRf//pX7O7uIh6PIx6PixCo1Wrh3r17sG0bR0dH+Oyz
+z7C/vy9m8k5OTmJ+fh5TU1PIZDLIZDKoVCrY3NzE/v4+er0eer0eJGkcVoYdJKanp8X1l0qlYNvj
+oPP+/fu4efMmDg4ORNv1Xq+H/f19NBoNESrNz8/jwoUL33o/++Yx6/V6uHfvHu7fv49ms3kiVA0X
++JimiXg8jvn5eczPzyOXyyOVSr70XOOwhbNlWXj08BFu3LyB3d1dzM/PY3FxEYPBAJVKBbVaTSwM
+iEajSKVSKBaLWF5exvLyMkzTFIsMrl+/jps3byIej+PcuXOYnJzE3t4eyuWyuLZjsRgurF3A2oU1
+GIaB4XCITqeDzc1NbG5uihb1o9FIBJG5XA4TExOYnppGsTS+H73sIoJve02Hzxvew5rN5olFDJFI
+BOVyGU+fPhUt84+PtAjnTI+GI+yX97G5uYm9vT3xXgJAnKfJyUlMTU2J96p4PI579+7hzp07+PLL
+L7G3twfLsvD06VN4nieOYTKZFPeQw8NDfPXVV9ja2oLneSiVSojFYuKauH79Om7cuAFd17G8vIzp
+6WmUy2UcHByg0+mIRUHj98OcGBcwNzcHACIoHt+fetjc3MDm5iZqtZq4v4fXczabxeTkJCYnJ8U+
+RSKRE8clbM3+9OlTbG1tiXtT+H6lKArW19dRqVSgKAocx3mlc+j7PjzXQ7VaxZ07d3Djxg04joNi
+sYh4PA7f9zEcDnHt2jXcvHkTkiRheXkZ83Pz2C/v4+DgAO12WyxSyWQyyOVymJ6extLSEqanp7G+
+vo6bN2/iyy+/xP7+PjzPw/b2Nv7whz/g9u3biEajiMVimJmZwfz8PCZKE0ilU0gmk9jYGB+/arWK
+Xq934vilUqnn3tcM3YBlWxgMBuJcAsC5c+ewtLSE/f197O/vi/u7qqpiwZJpmkgmk8hkMpibm8Ps
+7OwLf/eoVmu4desm7t27J97Xw3/m83k8evRInJPji9p834eiKOJeHd5zisXiS3X1ISKis4/BNxER
+EREREb3XwuA7m82+VPDdbrexvr6Of//3fxeB8erqqgiMXuTx48f4wx/+gGq1itXVVayurmJxcRGK
+oqDVauHBgwf44osvEI/HcfHiRSwt2aJ6KWwtu7e/hy+//BJffvklqtUq6vX6iYrHqakpzM/PQ1EU
+7O7uYn9/X1SdDgYDPHr0CFtbW5BlGZIkIZfL4YMPPsAnn3yCy5cvI5VKvfDD50ajga+++gr/8i//
+gmq1ik6n88LHy2azuHLlCj766CNUKhXs7u6iVquJcC6sUFQUBbFYDIlEAlevXsXPfvYzUVmZTCZF
+8O16LobDIdrtNu7fv4+//OUvePjwIdrtNjqdDgzDEPPQwyq82dlZnDt3DhcuXICqqqKyrtvtYn9/
+H59//jk+++wzNBoNtFotuK6LaDSKaDQqqmej0SiWl5dx7tw5XL16FclkErFYDMPhEK1WC/fv38cX
+X3yBhw8folarodlsihA+l8vhwoULuHTpEtbW1pBIJE4c03Bbdnd38cUXX+Cvf/0rarUaOp0OXNdF
+PB5HIpHAcDhEr9eDqqpwHOeVgu+wknW/vI///M//xL/+679iYWEBP/vZz1AoFLC+vo7Hjx+L8FqW
+ZXEdf/rpp0gkEigUCgAAWZYxGAzQaDSwubmJv/71r/jqq69Qr9dFCBOGC+Hxunz5MhRFQTabhYJx
+8O354+rm8Pj95S9/wfr6OjqdDjqdjghFNU0TQVw0Gn1h8L1+fx13797F06fjRSCj0UhUKyeTSSQS
+CVy6dAk///nPRdeEaDT6ncH38Yr0nZ0d/OUvf8H169dPLDAJnyMMry9cuCCuXUmSEE/EsbOzg//6
+r//CZ599hkqlIqo3w3tG+FoJg2/f92FZFnq9HhzHQbfbxb1798T3LC0t4aOPPsKVK1cwMzMD13Xx
++PFj/PWvf8Xdu3fRaDTQaDREJXU6ncba2houXbqECxcuIBqNIplIPnuOPtbX1/F//s//wcOHD/HL
+X/4SruuKIG53d1dUen/yySdIp9PfG3wDQOAH6Pf7uHfvHv793/8d5XJZBGdhNwPDMBCPx5HP5/Hx
+xx+Lilld114p+LZte7wf99fxr//6r7h79y4+/PBDfPrpp2i323jw4AG2t7cxGIwXqSSTSUxMTGBp
+aUlU2EqSJBbC/Pd//zf+5V/+BdlsFr/5zW9w4cIF3L59G3fv3oVt29B1Hfl8HkEQYH5hHpIkodfr
+4+joCDdv3sQXX3yB3d1dEX6Hx292dlbcB/zARzab/VHBd3jfqFQquH79Ov77v/8b+/v7aLfbGI1G
+4r7hOI64Xkej0Yn7RhAEGA1HaLVb2NjYwF//+lfcunVL3MOCIIBhGEgkEjh//ry4hkxjXGW9vr6O
+f/u3f8PDhw9RrVbR7Xaxvb2Ng4MDsUgmGo3i008/heu6qFQquHHjBh4/foxcLoerV68im82K+9Pn
+n3+O3//+9zBNE7/85S9x9epV3LlzB+vr6yK8dl1XLKa6evUqIpEIZmdnv36PcF30+31Uq0e4c+cO
+Pv/8c2xvb6Ner4v3CNM0MTU1hYsXL47Ph+8jnU6fDL6H42rujY0N/OUvfxELvDqdDiRJQiKRQDQa
+Fe9lqVTqBwXfrueiVqvh3r17+PLLL5HNZnH16lUUCgW4rgvHcfDll1/i97//PSRJwi9/+UsMPhng
+7t27uHfvnuiIYdu2WNxz5coVmKaJUqmEBw8e4P/9v/8nFg95nofd3V0cHR2JDhyapuHSpUv4+OOP
+cf78eczMzGBiYgJ3797F559/LhZztFotcfwmJiZw4cIFXL58GZ7nIZ1Kj6vgnx23cJuDIMDf/u3f
+wvd93Lp1C3fv3kW73Ra/o4QLV6LRKKampjA9PQ3HcZDL5b4l+D7CX//6V/z7v/87VlZWsLq6irW1
+NSiKgkwmgydPnuBPf/oTHj9+LM5NeM9RVRWxWAzJZBIfffQRhsMhAEBRVAbfRETvAQbfRERERERE
+9F4L2/Aeb5H9XcIKV13X0e/3sbu7C13XsbS0JFpsAhAthG3bRrVaxf7+PjqdDhYXF0U78+NtX5vN
+pqiiDdv22raN7e1tPHz4EI8fP8bGxgY6nQ4URTkRToZV361WC6qqIhqNYmFhAQDQ6/UQiUSQTqeR
+y+VEVWI+n8fc3JxoQ6uqL/6IIPxQfXFxEb7vixa3qVQKuVxOHLNsNou5uTkUCgUR2qqqKkKDMFwM
+BUGASqWC27dvYzgcwvd9TE1OIZDG39PpdPDw4UM8fPgQDx48QLVahe/7iMfjiMViYj/Cashms4lE
+IoF2u41+vy8qTsvlMu7fv4+HDx+KUExVVeTzeREE6LqOVqslfq7VaokFA67jotft4dGjRyJYa7fb
+0DQN+XxeVKnLsgxN01Cv13Hjxg34vo9EIiFavxq6gf39fdy/fx8PHjzA5uamqBZPp9MnKtR830ev
+1xPVa68i/JnRaIR2u41GowFVHX/Y3+l00O/3RdtmwzBEELW1tYV0Oo1isQjTNJHNZpHNZlEul3H7
+9m08evQIOzs7YrFFsVg8cb2HiyHCcxkupDAMQ/zZgwcP8OjRo3E7b9dFJBIR7YtN0wQA8fPH2+S3
+223s7e3hyZMnePDgATY2NmBZFvL5/Im2w4qiQFEUcZ22Wi2kkqmXWjgQ+IG4RoMggKIo4tr9Ztvo
+IAhQr9dx7949DIdDfPzxx8jn80gkEpiamsLs7CxGoxHq9bpob5xMJk+0vQ4rmMNqxWg0imw2K1qj
+a5omuiFEIhFUKhXs7++jXC6LxRaZTAaJRELcx8J7wO3bt+F5nqgcdxwXruug3++j0WigWq3iyZMn
+J8LSsGI8FoshFot9730wPA7+sZbmYXiqqiqSyeRzr3nbtrG7uyvuS7qui/vYy5yf8bXticUY1WoV
+29vb4rk8z0MikRCVy5IkodFowPd95PN5Ue0btmIO20IPBgPcu3cPo9EIR0dHohNEGJyF12atVsOD
+Bw/w8OFD7OzsiBAvbPUd3gcAYG9vD6PRCJIkIZPJiI4OrxKAh8evVqthfX0dDx48wOPHj9FutyFJ
+kqheDe8b/X5fBMbHj314rW1ubYrXT61WgyzLyGQyiMfjz1qmy1AUBb1eD+vr6+I1qmqqCJ3D+2v4
++kin0+IYxOPxcYeMZFJU3ofV1+MW9OOq53B8Rr1ehyRJePDgAYDxwpZw/IemaaJbx+bmJgzDEAt0
+wveAer2O+/fvi3vTcDhEJBJBqVRCLpcT50NRFJTLZdH+O51OAwAMw4AkSdjc2hSPs7u7K9qBh+9v
+YSv2sPvG8Q4Qr3oubdvGYDAQ7y/h+73vjRdehd01HMfBw4cPoaoq6vW6eC9VVVUEyNvb29B1HRMT
+E5goTUCWZUxNTYmuC2Fon81mEYvFxAKthYUFlEolAMDW1pZYxDYYDGCaJorFItLpNGRZFr9fhF1C
+giBAMplEqVQSowW63S4ajQaGwyHW19ehaRoqlYpYPBKNRhGPx0VngXDBTb/fx9TUlDgvx+8Ttm2L
+Fu37+/uYmJgQ15hhGCfu1ZqmiQVq37zn+L6Pg4MD3Lx5E8PhEJIkYWpq8uVP3CsKFzQ5jiPO449Z
+9EIEQCyGAyBGq4TjE8JRB982rojofcXgm4iIiIiIiAhffzDtey/+QFt6Ngc6DP0WFxdRr9fRaDRg
+miY6nc6J73ddF4P+AN1eVwSpjuMgmUxiZWUF8XhcBCrPbYv/9WzrR48e4U9/+hM2NjYQBAFUVcXM
+zIwIAMJq1GazKao/z58/j6WlJfzxj38UH0ivrq7ik08+EVWxmUwGxWIRpVJJfDD+Iul0Gh9++CHi
+8Tj+8Ic/oNlsQpZl8XipVArxeBzpdBqFQgGFQkHMRA2Do2QyKYLwMFw6OjrCcDjEnTt3UKvVkMvl
+8PHHH0OTNQT+uA30rVu38Kc//Um0mw63d2JiQlRo1+t1UQn+3Ln0fWxtbYlqcc/zEIlEUCgUMDEx
+ceL4PX78WLRIPs7zPbTaLdy5cwf/8R//AVmWEYlEsLS0JNrwhi3MG40Gtre3cfv2bSiKgnw+j2Qy
+KVqJb21t4c9//jMePHgg5uOG7WOTyaQIWJ88eSKqVl91luyLhAs0HMdBJpPB2tqauEY7nY5o77y5
+uYlsNgtN07C8vIxIJILt7W18/vnnePDgAXRdFwseisUiYrGYmP1eqVSwtbWFcrk8DslmZsUCiVZr
+fPz++Mc/ioUTuVxOtJRXlPEc6na7LVqAh/vtui4ajQY2NjbEQoiDgwPRUjkajYqwu91uo91ui6Cx
+2+1iZL3aMTzetj+8dsNWvY7j4OjoCJVKBcPhUGxLKpXClctXMD09jV//+tdIJpNwXRf7+/vIZrO4
+fPkyVldXxXUgyzI8b9z2+L/+67/Q6XSQzWbxwQcf4OLFi6JtdDabFcHwF198gRs3bohreH5+XixO
+8DxPdEfY2trC/fv3RZvodDot2vmHbNvGwcEBgiBAOp1GIpHA4uIiMpkMstnseHFO8uWrIsNuDcVi
+EdlsFsnkuIV5OMe71Wrh6OgIjUYDtVoN+/v7sG0bs7OzWFtb+8Hzrx3HQaPRwJMnT5DP55HL5bCw
+sCC6S1QqFezt7WF/fx9PnjxBOp0et4Wemj7xON1uF0+ePEG320UikRDBXzabFfcbVVFRLpfFeYhE
+Ikgmk5ibm0M2m0UikRBzzg8ODrCzsyPa209NTYlxFK8SgvneuEq4XC7j888/x5dffgnf9yFJEiYn
+J0XAG97r9vb2xFzkUPhnw8H4ev3Tn/6EdrstguzwHhYEAYbDoajkfvz4MUajkfjzyclJ/MM//ANi
+sRg6nQ6q1SpmZmZw5cr4uk+lUshkMsjn8ygUCqjX6y+1eGIwGGBnZ0dU/s7Pz4suHsPhEDs7O9jf
+38fGxgZmZmYwPT2NiYkJTE5O4ujoCNeuXcMXX3wB0zQRi8UwNTUlKoiHw/F4hUqlgu3tbWxtbYlx
+AKqqitdGeFzK5bJYsBS+15imKQLrBw8eiPD2TQv33XVd0eo9XOhlWdaJ4zI9PY3JyUmk02n85je/
+QSqVwmg0QrlcxvT0ND766CPMzc2J+0o+n0c+nxfH7+7du2KOfXhNpdNp0e49XGCysbEhFhaEiwW/
+eS63t7dhWZZYFJFOp5HJZJBOp9FqtcRirGaziVqthmq1CsuyTlyvYReMZrMpFlqoqorJyUlxX5Yk
+CbFYTCxgO/57hqIoGAwGODo6Eq3bb968iVarhUKhgI8//viNnbcgCERL94ODA+zu7r7yIgmibzq+
+iCdcwBKJRMQIlLDrB4Nvoq8x+CYiIiIiIqL3WljhG87u/LaQLKzCHA6HSCaTWF5eFh9OHx0dodVq
+wXEcKLICWZHHoWK3g+pRVbSkVRQFyWRSVGP7/oufK2zz7TgONjY2cOvWLfEh9uzsLFZXV3HlyhXk
+83nx4f6jR4/g+z50Xcfa2hp+/etfY3d3F9evX0cQBFhcXMTf/d3foVgsjoOBRBKqNq6aDitlXyQe
+j2NtbQ1zc3PY3t7G9evX4fs+FhYW8Jvf/AalUgn5fB7xeByqqoq50P1+H7lcTswGDavmwkruMHDY
+2dlBu93GRx99dKLavVqt4vHjx7hx44aYZTo/P4+1tTVcvHhRPMfW1hYajQZ2dnZEK+njLaR3dnZw
+584dbG1tiWrcsB16WJ3e7/fhOA4qlQparZao2nTd8XkI54zfvn0b09PTuHDhAlZXV7G8vIyVlRX0
+ej00Gg08fvwYe3t7ODg4QC6Xw+7uLorFImzbhizL2NnZwd27d7GxsYHJyUmxLaurqygUCuK5wg/N
+w5/7scL9sG0b2WwWly5dEqHU0dGRqPhuNBp4+vSpqEzOZrPY29vD/fv3sbGxgeXlZSwuLmJlZQXn
+z59HJpMR4cLnn38uWs5ubW1he2cbnj9uO1uv1fH48WPcunVLhFPhvoch/GAwQLlcRr1ex/b2tjiX
+4aIO3/exu7sr5hKn02n8/Oc/Rz6fh2EYcBwHe3t72NvbE10PwtDvZUiyBCkYtzKfmJhAEARiXnZY
+0ToajfDw4UOYpomHDx9ib28PAHDlyhUMRyPRASAej+Pu3bui0v78+fP427/923Fl5sQklGf3h62t
+Lezu7uLmzZtIp9O4dOkS/v7v/x65XA75fF4E+uVyGa1WC+vr60gmk7hw4QJWVlawtLSEc+fOierI
+7e1tVCoVHB0dIRKJYHd3V8wHz2azJ66HwWCAWq2GWCyGXC6HxcVF5PN5Me4hkUx8/zGTJMiSDE0d
+V5/Pzs6KsQvFYlF8QL+7u4tHjx7h8ePHePToETY2NpBIJFCtVuG6rmiV/arCe0W/30epVBLzjkPr
+6+uo1+uoVqs4PDzEgwcPRLv6sFIegKhADqvow0r7QqGAfD6PTCYDx3XEY9y/fx/nz5/H/Pw8zp07
+h+XlZUxOTopA78svv8TTp0+xt7eH7e1t7OzsIB6Pi7D8ZQRBAMu2xjO59/exvr6Oe/fuifBveXkZ
+q6urmJ+fF/eNsNK2Xq+Lx/E8b9z9oTNeFHH37l1IkoQLFy5gaWlJzD6XJAnNZlOMyAgfY2dnZzwP
+emICq6urGA6HuH79OlRVRalUwocffoiLFy9icnJSdGBwHAcPHjx4Lhj9tntTv99Hu93G7OwslpeX
+kc1mxczrXq+Hp0+fiq4pW1tbAMYLVA4PD/Ho0SPcu3cP586dE/eU5eVlzM7Oipbd169fx9OnT7G/
+vy/ORzQaFYtINjY2cPv2bfT7ffEee+7cOZw/fx6xWEyMKwg7T4T3pjcpfI22Wi1xXefzefHeNhgM
+ROV+uVzG7u6uWEgiyzJu374NWZZRKpXw8ccf4+rVq8jn8+LYBkEgKqrv3LmD1dVVTE9Pi/e1xYVF
+NFvjxXS3bt3C1tYW9vf3sbOzg52dHcRisecWzIXjGsLfc6ampjAzMyMWpdRqNdTrdTFL/PDwUHRc
+8FxvfA+WJHFvEn/2bJFYuOAhrNRPpVKYnp4WCzOmpqbGi3x0A/XGeEGcpml4+PAhNjc3YVkWfvaz
+n4nuA29CGHxbliXeG/v9/hu9VujdF3amUhRFjA4Ix4cUi8VxAJ7OIJ6IQ1M1aPq4gxWrwOl9xuCb
+iIiIiIiI3mvlchmfffaZCGOOByLHhW1lw0rtlZUVUanWbrdFxXXYXng0HKFSqeDp06cYDAaiPWsm
+kxl/6O56sB37hc81Go3Eh75hRVQ0GsXKygp+9atficq3sFWx4ziIxWKYmZmBLMtYXFwct6h9Ntcz
+bIMctpSORCIwI6aoIFEU5Vs/yJelcQtvQzde+Hhh5UnYPnvcSnRKVBCmU2mk0ilRhS1L43asvu/j
+6OhIzNwN279aloV2u42dnR20Wi34vi/mkV++fBmTk5OYnJiE67minevGxgaSyaTY5+PBeVidaxgG
+FhcX8atf/UpUyCXiCVj2uG3s3t4estksHMeBruuQJElUQ4eVb2G1/9raGj744AMRioWtXF3XxcLC
+AnZ2dmCaJur1Oh49eiQCsYODAwyHQ5imiaWlJXEuS6USEokEbNuG67o4ODgQFejhtvwYuVwOH374
+Ia5cuYK5uTnMz8+L1va5XA7tdhu9Xg9BEKDb7eLp06eifXLYsjasMv7FL36B2dlZlEolRKNRMRO8
+1WqhWq3i4OAAo9FIzJktlUqilX9YhfzBBx/ggw8+ECErAPEcm5ubSKVSiEajUFVVBGDh9SRJkqh0
+Cqs7w+8Lq/nDtvPRaBT5fB6q8t0ff4XHdzxCoIiLFy+KysKwQjtcVFIqlUSnga2tLdHKudfrIh6P
+QVEUsZgkfD2E7fTHVZWRccW3Ow5zwvMQthQ+/hrt9Xqo1+vY2dlBv9+HpmkoFApYXV3FRx99hFwu
+96zi20csNn7up0+fisrWVms8zzkcrxCKRCJibvLi4iLm5uZEB4lwLn00Gn2pa0uSJZgRE3Nzc+K4
+f7PtcC6Xw8zMDCzLQrlcFhXqYWvu8IP8Vw2/TXP8vJ988gmWl5dFQBsKuwiEx/bg4ADpdBqLi4sn
+7vPpdFrMgJ6dnRXV9OG93rIsbG1toVKpiHvt9PQ0PvjgAywsLKCQLyCZGrf1T6VSqFar2NjYENXB
+u7u7ogK2WCjCD759hIEkSVBkBZ7viXBwb29PtBefmZnBL3/5SywtLWFiYgK5XE6Mxeh0Onjy5Akq
+lYoYpTEYDHBwcIB+vy/GZGQyGaysrIgW/fl8AbIsIRaNwTAMcQ0piiKq4XVdx+TkJDRNE8FveK2H
+12skEoFlWfA870Rr3u+STCZx8eJFfPjhh1hcXMTS0hIS8QT8YDyuIAxaFUURi5PCjgkHBwfivXF6
+ehqXL1/GuXPnkM/nkU6nxfloNpvY2NgQ3Ur29/dFG/xoNIparQbHccQir5///OfPtcXvdrtiHITr
+ui8V6v8YiUQCa2tr+Oijj8RxSSVT8IPxCJVwUUXY+aRarSKbzYrXYLiQTZZlcY7CrzCAPn5vn5yc
+xKVLl3D+/HkUCgWk0ilouoZ4PC7mnx8eHkJRFBweHor7zfHgO5lMYm1tDVeuXBGvo3BRXDQaRTKZ
+RCaTwXA4FNXzrVYLjUZj3IUgGoFhGGi1Wtjd3UW1WoWiKMjlcsjlcmJ0SHgNTk1NiYUW4WiN8J7j
+eq7488PDw/Es92eL5bqdLlzvzYTf4fmwbRvlchkPHz5Eo9F4o9cKvR/Cqu+wq0E4RiDsrBR23Zic
+nMTk5KToWhGO43nTi3WI3jYMvomIiIiIiOi9Flb5fl8AXCgUUCwWce7cOXzyySe4evUqrl27JkKH
+VquFer2OIAig6zos20KtVsPGxoYIvsMWotFoFKPRCI7rvPC5bMvG0dERDg8PcXR0JD7cX11dxT/9
+0z8hFouJFs/hB72zs7OiTXfYVjyspAxDCsMwYBqmmK18fF+/bb8lefyzZsQUwXf4HMc/TA/btofB
+dz6fF3Njwxbnw+EQsizD9VyYpolHjx5BkiRRwdbtdtFsNnF4eChmaXueh0KhgE8++QR/8zd/M96H
+Z+1nw+r8u3fvIpFIIBKJQFEU2LaNWq0Gz/NwdHSE0WgE0zSxvLyM3/3ud0glU9CNcVVzWP329OlT
+5HI5MXsYGLdA3t3dxWAwQL/fF8HnpUuX8NFHH4mA4Xhl8cLCggiNwkCl0Wig0WigUqnAsiyxcOL/
++93/h0wmA90Yt9IO92lzcxO5XA6dTkdUt/0YxWIRP//5z/Hb3/4W2WwWmUxGhIzFYlHMm93d3UWl
+UhHPaxgGjo6ORNi3uLiIv/3bv0U2m4Wu6yIQ9jwPrVYLBwcHosL04cOHYjGI7/uifXk+n8dHH32E
+3/72t+I5wpnXkUgEd+/ePbGIIXw8y7IwGo1Eq/l0Oo3p6Wlks1nx88ViEa7riuswbLUtK98fqIYf
+DBcKeaRSSXieJ34+bGWvqRqmJqdgGIaoSj9+7YYtRw3dOBE8qap64rUXBnfhPOzjM+LD11IkEhEt
+wnd3d08E3xcuXBiPBdA0cd34fhamaWJxcRGbm5twHAetVgubm5tIJBKYmZkR+6rrOpaXl/GP//iP
+WFlZQaFQEAF/eB8MA/mXOWamaWJhYQFTU1PiuAPAaDjCYDiu2ATGVax37949EXyH4bCu6cArFn1r
+moaFhQX8wz/8A1ZXV0/MPAfGi3a63a4IvyqVCtLp9HPtqrPZLD7++GP84z/+oxjXYJqmuJdsbGxg
+d3cXh4eHYnb67OwsPvzwQ8zMzIggLgze6vU6NjY2xDW/v78v2qKHXRCOz6Y/TlEUQB0fq1qthidP
+nmB/f1+0e56bm8Pf/ebvsLi0CF3Xoeu6uG80Gg0Ui0Xs7OyIhQRh6/V6vY5OpwNZlpHL5bC6uoqf
+//znJ0LSbDaLZCqJJ0+eYHNzE51OB91uF5ubm2JBQbiv4baGVf2maSIaiYqK15e9Z4WjNP75n/95
+3Okgl4dujO+//X4fT58+xaNHj8Q87HAG+2g0wuHhoQhuw4UIy8vL4r0vlUqJEQgLCws4OjqCLMti
+AVKj0UAsFkOtVoNt2ygUCrh06RL+6Z/+6cRijCAI0Ov1cP/+fWSz2RPvEW9KMpnEBx98gP/1v/6X
+CH7D91jbsvHkyRM8evQI7XZbXCtzc3MiEPvmOQrDb8MwMBgMsLe3dyL4Do/f6uqqqBQNx28MBgM8
+ffoU5XJZBN+6riObzWJqakpsczwex+XLl/HP//zP4velMCAPZ92HbfJVVUW3Ox4D02w20e60ISsy
+DMNAp93B7u4uarXas8VIBdG+PlxgB+DE7xlht5nxIrVxq/8gCGAYBu7fvz++H4UL7HrdNxYEHq/4
+Pjg4wIMHD3B0dPRGrxV6f3zzd3ZZliHLsgjAi8Uizp8/j7W1NaytrY0XnCSSgAwG3/TeYfBNRERE
+RERE77Ww/WwkEhEtnl8knIs5MTGBYrEowqJ4PC5asm5vb4tgJJxlHbbYzGQymJ6eRjqdFh/Mf9sH
+UY47br0bBqW6rouZv8ViEbqmQ1ZOtluNRCJfVzs9m3H7og/JJPnrD8teRvgB8Tc/KA7/OwzXw8cL
+ggCDwQCNegOtdgu9Xg+dTkdUTYchZtjOO2wBH35YHFa5hvOeY7EY0un0+MP/bE5s//H9DgPE4+2x
+w5nqw+FQBIrZbBb5fB6xWOy5/TEMQ4RA4eNbloVms4lut4t2uy0Cg+vXr6Pb7T53rOr1cUvvZrMJ
+VVVFS9UgGM9sHwwGIijKZDLIF/JIJBLPbUtY1XZ8ocGPEc7mDmeOx+NxsY+jZy26JyYmUK/XYdv2
++Pw1GqhWq+L4RaNRMU8ynLF6XDqdFnNj+/2+WAQSXiPh6yI8l/lc/oXnMqyWPr5gIwyCj46ORAi1
+sbGBP//5zygUCqLjQFhZGF4TrxpOhVXlYYV+r9cTrfC/ee3u7e1hMBicmOkaBrxhy97jrxNZliEr
+49eJIo8XS3zzHvD19473P1xQU6vV0Gq10O/3US6XcevWLRHwH9ftdvHgwQPUajWxXYZhPDcrXpZl
+xONxEfJ+MzB+Va7ritm9YfeAXq8nZl7bto3RaCRaaIevC9u2RZeDHyKs/g8r379ZqZ5Kp8S9ular
+ie0KFwiFNE1DOp3GxMSEmEd8/H1gNBqJKtkwDN7Y2MBnn312ooV8aGNjA9vb22L8RRhM7u3tIRKJ
+oFqtPjfbOJTP58X7RKVSQaVSQbfbhSzLSCQSyGQyyOVzyKQzL3wPCEPP8PVj2zba7TZ830ez2US/
+38fh4SHu3r37wvc6y7Kwvr6Oo6MjcU2HC5fCa+f4c4bPFb63HL/uX4aqqkgkEiiVSuN7UyJ+4nUb
+i8VENw3f98UCgHCBQXg+tra28MUXX4hW6Mdtb29jc3NTnA/HccR75WAwgG3bME1TvMcW8gWxL+F+
+hAvavm+B3Ouiadr4uBRLSKbG86vD42JpFuLxOOLxOEajkQinw+v6+HZ/831akRVxjwvfZ8PxFF9+
++aUY33BcOEu81WrBtm0xj/1Fr6OwxXn4OgrD+vB4q6p64rUaLk47ODgYXwvxBFrtFvb29lCv12EY
+Bubm5sR9/vjvGd1uF41GA51OB51OB71eT/yeYVmWWCx1fMFZOCP9+IKP1+n4LOZoNIpUKgXHcX78
+A9N7LXz/DhdZep4H13XhOI547ff7fTEiqdPpoF6v4+joCEtLS5icnMTExMRzv+MSvcsYfBMRERER
+EdF7LZvNYmVlBTMzM6Kd+YuEbdBLpRIWFhZE285sNotms4nBYCBawpZKJVjWuOJ7e3t7/GF6oSCe
+45u++SF6OPe00WiIwDBs/6woyrdWsIaVr6clfO7Dw0MxF7pcLmN/fx+j0Uh8SB+GB2ElYyKREB/k
+hfNUw4AjnU4jkUiMq+9eonIXgKgoHY1G8DwPsVgMiURCtM9+2WqvMOQMg9B2u40HDx6g3W7js88+
+e+77R6MRqtUqGo2GqP4M9zUMIsOWr7FYTIRIP0Ulzrc9j6qqYl6raZoioA/Dftd1EYlEEIvFRPvk
+Fz2OaZpIp9NIpVKihbUsy6JyMqzATCaT48d5yXMZXgOlUgmVSkUEXjdv3kS73RYz5ovFopgBG86U
+fZXgO7x2a9Ua1u+vi5nA5XIZ/X5fXEthBffh4aGooA3b277u2bHhzNxms4lWqyWCp263i2vXrr3w
++6vVKur1ugiVkskkXNd97r4QtkD+sQFQEASwLAs72zu4/+A+dnZ2UC6XRaeKMNwNW1Xv7e3Btm3x
+AX54zPzAh4Ifth3fdm2HC4bS6TQURRFB2DeD9jCo0nX9ubb44eshrExtNpuoVqu4du0aDg4OYBjG
+c88bVrUOBgPRkaDRaGBzcxO9Xg/37t3D/fv3n6s8B4CVlRX84he/wIULF8S8bsuyxGKZWCw2rrp+
+yddPGLyPRiNxHYWLEu7cufPc93ueJ64hXdeRy+UQi8VEWPy6Ha9alKXnQ/VwoVAYdocBj+/7YoZ3
+o9HAjRs3cHh4+MIW/d1uF7VaDZ1ORyxUCBdKhddi2Ir++L3ptCskJUl6bnFDKByLcPy4eJ6HwP/u
+c+QH/njm+7PxLOF1fefOHVSr1ROty0O9Xk8svsnlcgAgWtp/c3sVRYGu6S9c1KNp49bp6XQa2WwW
+6XQaQRCIdv6pVAoTExNot9sol8toNpvi3l4oFGAYX4fovueLiurNzU1xrw5f4+H1I8sydnZ2MBwO
+RQeAsCPBmwq+wyr7UqmElZUV5PP5N3yl0LsufL8M32/DLjThgg/P82DbNprNJmx73DFqb28PT58+
+FV2qwt+DATD4pvcCg28iIiIiIiJ6r6XTaayuruLSpUsolUqYnJh84ffphi5m6oXtyjOZDAqFgghs
+wxbVy8vLGA6HqNfrKJfLSKVSKBQKmJ2dRTqd/t5tCucad7tdMbs4bOX9uqqAX7fjFZy7u7u4d+8e
+1tfXcXBwgEqlcqIKPWyN2+l0RDVUWMUSVn2Hba3DkFjTtJfe73BbHMeB541nKYfH79uC2xcJQ6Ow
+kiwMwYfD4QtD1XAfwv0MW8yGjxG2t47H42/NuZRlWVQ76roO3/fFh6rHtzkWi33nHObj8yYBiLb2
+4TUcVhnHYjHo2svPLVcUBel0GjMzM9je3kYqlRKtm7vdruiCMDExgWq1imazibm5OVFdGH591/P5
+vi9GFuyX93H//n3cuXMHBwcHODg4OFHNHbYL7na7olI0XNQQfjD9uoQhX9iKPnx92baNw8PD574/
+7CwQLrAIOx286LVzfFboD70Gw+rZZrOJjc0N3Lp1C5ubm+L8eJ4H3/dFeClJEvr9vgjiv6vl98v6
+rm1XVVVck2FXCcdxnlucEIZV4aIiWfr6Gj8etoYVdWE3j16v98LXQxiuhYF6uO+9Xg+O4+DJkye4
+d+/eC7tGuK6LmZkZTE9Pi2pmx3FgGAai0eiJxTsvI5yBHIbdlmWh3+/Dtm1Uq9VvvYY8zxMLIyKR
+yCvdf1/1/B3vRvJNx2dWB0Egunh4nicWpIQLjsI56N92PgCI86Gq6oluA2HHiG+OADlNxxcEfNdx
+ASDeX/3g+xfehNdA+D4bXgu9Xu+FIw7C4xd28AgXM33ze8V4CU2FIj9/X9E0TVSF53I5FItFSJIk
+RhBMT0/D8zy0220cHh6i3+9jbm4Oy8vLKBaLMAwdnuvBduzxYpudHdy5cwcPHz4Ui23Ce87xRVfh
+uIPji23CBQOv2/GxMmGFbRjEE/1Q4X057O4wGAzQ6XRQq9XQaDTEe5NlWWi1WmKE0+HhIRqNBgzD
+wOTkJEqlEjKZzLd2tiJ6lzD4JiIiIiIioveaYRiihWyhUEBpovTC71MUFao6rgoMq/ySySRmZmZE
+ALS9vY2pqSnU63X0ej20Wi10Oh1IkoSJiQnMzs4ilUp95wfr3/Zh7NvyYfy3CWeuHh4eitC7Wq0i
+k8lgfn5eBFBh9a+iKLh27Rpu3rx54nGOh8fhfr/qvh8Pb3zf/zpY+QHHMKxQj8fjyGazmJiYwOLi
+IgqFwgufN9z+VCol5iZXq1XUarUT2/E2nc/weB0PAF91+8IwMQxHgOfb5P+QcxAe+3w+j8uXL8Nx
+HMzNzYkgEhgHsPv7+zg4OMCtW7dw7tw5XL16FWtra+NZs4UiFPXbq/ts20alUsHBwYGoxg3nMn/8
+8ceIxWKIRqMwTVOExXfv3sWNGzcwGAze+LmRJElcf9lsFgsLC5icnHzh9/q+D9/3RWVlPp/HzMzM
+CyuTf6xup4vDyiG2trbEcfN9HzMzM7hw4YJ4zYcBXb/fxxdffCHO208hXIzwY67t8LhqmiY6dszP
+z2NpaemFFcbhOQjnGqfTaTFiIHwdZLPZFx6HxcVFXLhwAflcHuV4+USHih96Lwz3PxqNIpvNIhaL
+YWFhAbOzsy/8mfC+GS7yKhQKWFlZQSQS+cnOW+hF+328bXYymUSpVMLs7CyWlpZe2LI/PB/AeKFb
+JpMRHVm+eV8+S37M9obHL5FIIJ/PY35+HouLiy/sSBO+PwRBII5f2F3jh4hEIiiVSpibmxNjAKLR
+KBYWFtBut9FqtUR7/kQigaWlpWcV3wYGwwEODw/FvXp9fR2dTgfFYhHLy8vinnN8ZMbnn3+OW7du
+/WTnJFzoMz09jZmZmTN3XdHbJ7znhQuxws4G3W5XjAeqVqs4OjoSi0DCsTB7e3u4ceMGfN/HlSv/
+P3t3+tzWeaYJ/zor9n0jQHCnRIlabMeJEyfppDM9b9f8tVNT/WG26uqedKeTdBJv2hdSIsEV+76d
+9f0AP49JW7JEWRZF6fpVsWRbxMHBwcEBjOu57/sGbt68iXA4/NZ9DiV63Rh8ExERERER0XtNtN9M
+pVJy1vHzKIoya8f6dWVaIpFAuVzGYDBApVLB/v4+lpeXZVVwp9OR81kLhQKWlpae2Ur0eUQI/qqh
+x5s0GU9wcHCABw8e4P79+3j8+DEcx8HS0hI+/fRTlMtllEolJBIJWZUKAE+fPj0VAJ0MrQGcmld7
+Ft+uUnuVbYgvGsV83Vwuh+vXr+NXv/oVNjY2nnsbAPLL706ngy+//BLtdlvuw9vUZtL3ffieL4Mh
+UaX67X18lfPvecH3syo7n0fTNEQiEeTzeUSjURQKBRweHso5ytVqVVY9icDk6OgIruvKKtV0Ov3C
+4Fu0zb137x4ePXqEdruNUqmETz75BKurqyiVSkin0/Lc/Kd/+idUKpUfNfg+ef5FIhFks1lsbGzg
+l7/8JW7evPnc2wCzaudAIDCrrld/nHOu1+9hd3dXht5bW1soFou4fv06PvroI/maNwwDruPi4PAA
+vV4Pjx49+tGO2bOOn7gGiEULZz0WIjw3TROJRALRaBQ//elP8Xd/93ey9fOz7ltRFLlQSrx2XNdF
+Pp/HxsbGM2f/plIpFItFOdtaBPU/ZMGMOCcikQgymQwWFxfxq1/9Cj/96U+/9/dFO23REeJZIf95
+Ec9HPB6HYRj4+OOP8etf//q579/iMYnnY29vD1999RWazeapY/s2v8eedNZZ6t8+FmIhRzweBwB8
+9NFH+NWvfoVyufxSx0/XdKia+krzq4PBIAqFAlZXV7G7u4tKpSIXiPV6PXS7XXS7XQQCAcTjcVy6
+dEmOO2m32zg4mHXlENccwzCwurqKX/ziFyiVSiiXy4hEIrKDzGQywfb29ht7XnRdRzAYRD6fR6FQ
+QDQafSP3Te8++XnN907N+t7b28POzg4ePnyIv/3tb7JL0WAwkGMJ2u02PM9DqVTCQnkBUN/+BbVE
+PwSDbyIiIiIiInqvybmUpil/XlYymcTCwgLa7TYqlQqazSb29/dlsGPbNiKRiJwdHo1GX2r7ov10
+NBpFv9+Xbc/FnOEXfUH/vC/xxZfXZ23x+X1Vd2KmqGVb6HQ6ODo6ki2Ao9EoisUiNjY2UCqWkMvn
+EAlHYNmzNuTRaPQ77VJPtqIV83XF4z7L/opWjqKdq2jze5bHLipVxTG3LAuGYSCbzWJhYeF7nwcR
+sBm6gWQyiUgkgl6vd6rV8Iv25U3Ma/c8D6PxSM6GNE1TtiSPRqPodruy/fx0On3uDGvbtmX7XN/3
+EQqFEAqFEA6HEQgE0Ov1ZGvis4YlYmZqIpGQM8lDoRASiQQajQaazSaOjo6wtbUlW9LXajXs7e0h
+m82+cO6267ro9/tybrfv+wiHwygUCrh8+TKWl5dRKBQQj8dlq/FEInGma8VJiqpA8ZTvhFffBLWz
+/RWtusPhMNrtNmzbhqZpSKfTL33+nZwJ+rpNJhM0Gg05z1vMY19YWMCVK1eQz+eRz+ehqrOAzLIt
+WWn2JogZ6aJ6NBgMyhEDL/1cfd3aWZzHoq19KBSSVa/Pezyqos5ap3/9PIjFOKFQCJlM5juzxgEg
+HAojFp9VLYvXj2jL7bouJpMJvOfMcRbnz0mapsn23e12W86pF8/Ty5xDYh78jzET+VUYhoFwOCwX
+NjmOg2AwiLm5OSwuLsrn7fse03g8RjweRygUku+t4/H4lYLct4VcmPf1Yxfn3bfPCzGWQnSBEK30
+RRX2yxw/z/Ne6VoOfFPxvbq6inq9jtFoVsX99OlT3L9/H91uF4ZhIBaLyc4pYp65mGN8dHSE4XAo
+P2eUSiVcuXIFhUIBuVwOoWAIlm1hMpnIBSRv6jkQP2LEyrOq6Ileh5MLLUOhkLzWh0IhVCoVHB4e
+YjgcotvtwnEcPHnyBNvb20in00gmkkimkm/VQkyi14nBNxEREREREdErSiaTWFxcRL1eh6Zp6PV6
+ODw8xIMHDxAMBuF5HvL5PDKZDOLxuGzz/SKapslgr1qtYjQaodvtYjQazYKLrwOV5wXbqqLCV/3v
+BNWe58mg+ixObu9kSOd5npwp6jgOhsMhWq2WbFEqZjMvLy8jHo8jGAx+Z1+/Tdd1hEIhBAIBOI6D
+Xq+H0WgEx3ZevKNif0/M92y323LhwFnDPzHjVlShi0UI4ovFF1WPKoqCQDCAUCiEaDQqAxdVVb8O
+sF48j/XHJo5xvV7HeDyWVYDJZBLJZFLOjhTP78nW0SdNJhNZce37PiKRCGKxGGKxmFw8INpyPivw
++z7iXBPz0cWXvMViEePxGOPxGIeHh/jjH/8of28wGODw8BArKysvvD8xL1iEy+I+5ufnsbS0hHw+
+/502zz90UcKzuhB8O6QyTVMuQPB9X8769n0fwWBQVue/aH75WY/3y5pOp+j3++j1etB1HZlMBsVi
+EQsLC1hYWJCzocWilTexkOPb+9fpdNBqteC6rjyWZ5lvKl7rYqGDZVno9XqwbVvOUH+Z64B4/L7v
+z8ZrRGPPnMdsGIa8H9G2WQR+4rXoui//fOq6LrtPHBwcoN/vYzgcnukcUhQFuvbyc8V/TGIhQjwe
+x3Q6hW3bckGRCPlf5vkIBoPy+Pq+j+Fw+NLvEW/6PD7LsVHUZy9SE9dtVZm9NyYSCYRCodPHT335
+42dZ1isHZiL49jwP9+7dky2bt7e35WKrSCSCXC6HRCIx26evZ4Y7joN+v49WqwXf95FIJOQYmeXl
+ZfnZQT72V/i8Q3RRKIoC3/cRj8ehaZocT7G+vo4//elP+POf/4xKpSIX7O3t7eHhw4dIJBJYWVlB
+LB5j8E3vLAbfRERERERE9F4TwZCYm/eiL74VRYGmatB0DbHY7Eujg4MDGIYh54ZubW0hHo/D930U
+i0Vks1k56/ZlnJy9ubOzg+l0il6vh1arhXq9jkg4gmBo9gW1CFNs24ZlWQBmrURPztJWFAW2bWMw
+GGA4GmI6nZ5qvyt+53nBhqIqUPzTM3JFEDoejzGZTDCdzCqZe70eHMeBaZoy+EwkEjIAm0wmsjL4
+WSGoaKsbjUbheZ6cld7pzkJVTdOg6zocx5Fh6mg0gmVZsgJQBCCBQADHx8eYTqdydmin00EkEjn1
+OMR2RAWbCOpEwCKqHkejkQz6BoPBqQobALL6UMxDBWbBciAQkFVrou2k2BfP8+T2xW17vZ6sXD5L
+pfv3nePT6RSj0UiGYOK/97qz0Pvw8BCj0Uh+cZrP55HL5dBsNmFZFsbjMbrdLtrttmzhLCr/xONp
+NBrodDoIBAJyHnUmk5EB/2AwkNvodDqnnkvP89DpdDAcDmX1sJjNKwJWx3Fkh4ZsNotCoSAf49HR
+Eer1OnZ2duSXvL1eD5PJ5KUq6y3Lwmg0gud5MnAWCwDEIpbRaDR7DQ2GMvx8FScrM79dmS2q4qfT
+qaxmjMfjUBQFk8kEg8FAhpcipDr5unVdF7Zty8fsud+0/H/dxOt5MpnIgDgWiyEej8tZy+LcEXNI
+RXD/Oojr3mg0mi3a0GcdGsQ52Wq1UK1WUa1WT80nPsusatFqP5fLyWuSCEnF61RcawTxniLCRuCb
+tuGmab70/YsRHCcDSnEdSyQS8twR9yUWCZ28Fop24KILhuje0Ov10O8PEAoGEQwFT4Ufon2ueN3K
+lu3q658Tf1YnZ5WL17Z4TYjHHwwGTy2yetbzcXKGuaZpcnGZuC6rqiqvQScX7Uyn01PH5m0jFtSI
+BQ0n33Mnkwks25LnRDgcPhX69/rPPn7Pe19znFd7bwoEAsjlcvIzgud56Pf72N/fl4s8RKCdSqVO
+ddbwXE9eqwHIqup4PC4rq8XnucFgiH5/9l7tuu5b07GA6HUS18RwOIx0Ko1isSg7HB0eHqLdbsvF
+IsfHx3j8+LHsQLW8vHzeu0/0o2HwTURERERERO81EZA1Gg3ZTvP7iC9rRYWFCHsymYwM+UR7wXw+
+j9XVVeTz+VNfJL9IIBCQVaY7OzvQdR39fh8PHz7EP//zP6NUKqFUKiEWi2E6ncKyLBnwmKaJK1eu
+YPPqJgKBgGzl2m638fDhQ9nuezKZyCBbtAB+VjB/MhwX8141TZPbEy27raklw7rpdCrb6lYqFWxv
+b8M0TSiKgl6vh729PVQqFdy6dUvOQBdisRgWFhYwHo/x6NEjjEYj7O/v48svv4TnebJtvAiBtre3
+8ejRI9TrdfmluWmayGazyOfzODo6gud5aLVaePz4Mf7jP/4D2WxWBtq9Xg+dTge3b99GpVJBu91G
+MpmE7/tyXwaDAR4+fAhVVVGr1fDXv/4Vo9FIzhM1DAOqqso2rJ1OR1ZFi2rx5eVl7O/vw/d9tFot
+PHr0CP/2b/+GXC6HeDwOXdfRbrfR7Xbx+eef4+nTp2i1Wkgmkz84ZOn3+9jb28ODBw+Qy+WQz+Ux
+taYYDobY29/D3bt38fDhQ9mafn5+HouLi1hcXES73YZhGOj1enj69Cn+8Ic/YGFhAYVCAeFwWC4C
+uHfvHra3t1Gr1bC+vo6NjQ1kMhmk02l5/CaTCQ4PD/Hll19CURQkEgnE43HZinN3dxf37t3D8fEx
+stkscrmcrFISiylENX8qlUI6nYaiqPB9D7VqDa1WS1Yfixa54XD4hRVNmjp7HadSKfklsThm29vb
+8rU+Ho+xu7uLvb09fPHFF2i1Wq/8nKiaKudwh0IhuK6LarUqX6OqMusKEA6Hkclk5ONoNBr4/PPP
+4bquPP/E4gvHcdBpd9DuzGZ5inmzyWQSyUTyB51DzyLaEcdiMVlZfXBwgN3dXRQKBVnRXqvVsLu7
+i62tLWxvb8sFOj+UeF1vbW0BgKwQHQwGGA6HuH37Nu7du4fd3V3Mzc1hdXUVy8vLZ2o9LBZZ2LaN
+g4MDRCIROI6Dp0+f4l//9V9RqVQwPz+PQr4gZ6mL7gH9fl8uKMpmsyiXy6cWa7zoftPpNJaXl3F0
+dCSvnU+ePMGf/vQnHB0dyVbdIqz96quvsLW1hUajgXg8DsdxEA6HUSwWEY1Gsb29DcMw5O9qmob5
++XmUSiVEo1F5vWq322i323KhiWEYKJfLz53//CaJNu3Ly8tQFAX379+H53nY29vDv/3bv+H4+Bil
+UgnFuaJ8Pkaj2SiHXq8nnw+xKGBlZQVPnjyBbduo1Wq4e/cuUqmUDFIdx0Gn00GtVsOtW7ewt7cH
+RVGQSqXO+1B8hwi9xft0KBTCZDJBpVKRM6/F+5G4Por2/fv7+/jDH/6Aer0+OyeKJXn8xuOxfG8S
+x090QTjLIhJBU2fjTCKRCJLJJDKZDCaTCbrdLh49eoRcLoe5uTnMz8/LGeTytvqsqjWVSqHf76PT
+6UDXdXl9EdecTqeDSqWCSqWC+/fvYzgcfmdbRO8aRVXkZ+2FhQXcvHkTjuNga2vr68VOfezs7MjP
+tm/rAh6i14HBNxEREREREb3XRPAt2pW/SCQSgaKoiMViMAxDtobOZDLI5XLodDqoVqsYj8coFotY
+W1vD3Nzcmb4gFm1YS8USvvjiC+i6LgMe13Vx9epVWJaFTCaD0WiE4XCIhw8f4tGjR4hEIggEAti8
+uilbQmuahk6ng8ePHwOYBeue58kqRNHG93kV6eLLblGtqGkaut3uqe2J9t0i+O50OphMJjI8FDNi
+G40Gbt26hTt37mB/fx/9fv9UECWqbIfDIUzTxGg0wuHhIW7duoXpdIpisYhSqYRqtYrDw0M5s7DR
+aCASiZyaw722toY7d+7AdV20221sb28jFovJhQO6ruPg4ABHR0e4e/cuDg4OMJ1OUSgUZPvIxcVF
+jMdjJJNJKIqCer2Ozz//HI1GA5ubm3J2sKga3NvbkwG3ps26AiwtLWFlZQV3796F7/vodrvY2tpC
+MBjE/Pw85ubmYBgGDg4OcHBwgPv372N/f19Waf/QCtnhcIi9vT0kk8lZ2/iv28U2Gg05V3V7exuX
+Ll1CoVDAzZs3MT8/j3K5jCdPnsA0TYzHY+zs7CAYDKLZbGJjYwOpVAq1Wg21Wg0PHz7E06dPMRgM
+cP36dVy9ehWFQgGxWAzValWGMCefy0KhgFKphGaziYODA+zs7MhFDKI6dTqdYn9/H0dHR3KhRiQS
+weLiIhzHkVWNtfo3wXcikZDhSCgUemHwrWqqDGE0TcNwOJTH7MmTJ7K6tt/v48svv8SdO3ewt7cn
+OxCc1cnFJN8OvkV4IxaifDv4brVauHXrFlqtFjY3N+E4juw8Yds2KpUK9vf34TgOVHX2uNbW1hAO
+h3/QOfQsonJUhKytVgtHR0fY3d1FNpuVVadbW1u4ffs2Hjx4gKOjo9c2b1xUdW9vbwMAxuMx0um0
+nPsuFnQcHh5ibm4Oa2trWF1dRTKZfOlOCrquI5vNIhwOY2dnR86W3tvbkwuOrl27Juevi2vc/v4+
+arWaPAbLy8uIRCIvH3yr2tcLOxRsb29DVVUMBgPs7Ozgr3/9K2q1GorFIhKJBPb393F4eIhHjx5h
+Z2cHzWYT+XweruvO3kdKJeTzefztb3+Druvodru4e/cu2u02rl27hslkgnQ6LavlxTkkFjKJyuBc
+Lvfaz6GzUlUVqVQKa2trcF0X0WgUrutif39fhtfXrl2TFb5ikdbe3p68hqiqilwuh6WlJaytreE/
+//M/Yds2Go0G7t+/D1VVUSgUUCwWMZ1OcXBwgL29Pdy7dw9HR0cIh8OYTCbnfSi+Q7xPi3EhwWBQ
+Bt+BQAC6riMYDMJ1XcTjcaRSKdmp4PDwEH/+85/l8ROdSMR7/d7eHg4PD08dv7W1NSwsLJz9OdRU
+BNSAfC5zuRwajQb6/T6Oj48RjUaRy+WwsLDwnUUquq7LTgiVSkXOLhafM8Q+Hx0d4datW7h37x4O
+Dg4wGo0YfNM7TywMNE0Ti4uLcjxNr9fD7u4uBoMB9vf3EQqF8MEHH8jOIG/DGAui143BNxERERER
+Eb3XRCA8HA5lBer3mZubw4cffohcLgtN1aBqs2Agm83KCoperyfnT66uriKXy51qhfsiopI8HApj
+bW0NN2/exO7uLlRVRb1eh6qq6Pf7CIfDsq1zq9VCp9OBaZqyiiOTyWBtbU1ud2dnB+PxGPV6HXNz
+cygUCpibm5OtEl9UlS62J4LY3d1dTCYTNBoNhMNhjEYjRKNRWQXqOA6Ojo7wxz/+EYFAAIZhwLIs
+dLtdhEIhWcF7kggCi8UiVldXcenSJQQCAbRaLRk8PH36FJPJBOPxGL1eD67ryuBezLSNRqPIZDJY
+WFjA2tqaDHVEReTe3p4MdEejkWzXLLYhKtzFXOBLly7hww8/lHPWj4+PAUBWRIuWw91uF71eTwYL
+ojIuk5lVfJ58PkRV9/7+vgz5xTxtEYq+aP7uy5hOp2g2m9jZ2UGj0cDjx4/l3HMx11oEDSsrK1hZ
+WUEmk5Ez2q9evSoXPhweHmI6naJeryMcDssWwO12Wy4AWVlZweLiIjKZjDynVlZWcOnSJQBAr9fD
+gwcPcHx8jN3dXdmuWsweFi2hxWMXz4Voyes4Dmq1Gra2tqAoimyJX6/XEQwGkc1msby8jLW1NWSz
+2ReG0yLcXF1dRbPZxNHRESzLQq1Ww1/+8hc5pkBUGIv58T90NmYgEECxWMTGxgYGgwFGoxEeP36M
+fr+Pw8ND5HI5ZLNZKIqCYrGI69evYzgczoL+r0PVbrcrzxPRJr/X68ngXwReP8YX29HobBFJr9dD
+tVrFwcEBLMvC1taWnBdvGIYcIxAKhV7rvog2zcfHx3BdF4eHhzBNU1bsiwUUxWIRS0tLWF9fx/z8
+PCKRCLrd7kvdh6IoCJiz41sqlbC5uSlfo+PxGJVKBbZtY39/X7aYFtelyWSCVCol2zWf5XwR7ysA
+UCqVsLa2hna7LV+Dg8EABwcHiEaj8rohFh4Fg0F5nEUImk6nsbKygps3b6JarcJ1XTQaDTx8+FCe
+L2L/RDcN0VkhmUz+aOfQWYnrUCQSQalUwpUrV9DpdOA4jlwkI953xPMxmUxkG3TxfIjrcjabxeLi
+ItbX19FutzGdTvHo0SNUq1VUKhUoiiJHHHieJ0dFvKgzzHmKRqNYWFjA5cuXoaoqms2mrFyvVCrI
+ZrPIZrMIBAJYXl7GZDKR7e0PDg5OXV/EQjbR2UMcP8MwXrl1uAzotVk3ilKphEajIccmBAIBzM3N
+oVwuf+fzWDAYRHFu1spZjOiwLAuVSgV/+MMf5DVHjIUIh8OyApbofSBeX6lUCsvLy+h2u7h3754c
+2TIYDNBqtdButzEYDGYLYA0Tms5RAPRueXvfpYmIiIiIiIjegFarBdu2sbe3B8MwTs2TfJaVlRVE
+o1HcvHlz9oWqqiAYDKJQKGB1dRXD4RD1el22215dXUUmkz1Tq3MR9IUjYVy+fFm2KtzZ2UGlUsHT
+p0/x5MkTOd8bmFWiixbsoVAIiqqgVCzh5s2b0HUdOzs72N/fl+2U8/k8Njc3AQCh4CwYeZFisYib
+N29C0zTZ8rlareLBgwdIJBIol8uyTbmo+j4+PsbBwYEMC6PRKNLpNC5duiRD+JNM00QkHMHc3Jys
+Rjw4OECtVpNV+aLqKx6Py4prMVdYtKsXsz/X1tbwySefIB6P4/j4GPv7+zg4ODj1O6LteSQSAQCE
+w2F5P7qmI56I44MPPoBpmtje3saTJ0/QbDbx8OFD3L9/H8A3bWZFtY3YdqFQQDqdRjwew+rqKn72
+s58hGo3i6OhItqcXt0smk0gkEggEAkgkEnIO7esIvkXVngjIRNAh2oJvbm7ixo0b2NjYwMLCgqwY
+XFpawi9+8QukUins7u5if38f9XpdPm7x2OPxOJaWllAul7G5uYlyuYxoNCrn0G9ubmI0GqFSqeD4
++Bg7OzuyelDMgdd1HZFIBKlUSj6Xomo+lUphf38f+/v7OD4+lnN7gVkAqqoqDMNAMpnE0tISrl69
+imvXriGVSkHXXjy+YG5uDoFAAN1uV3ZsaDabqNVqs/nGX7fmTafTWFpakhWiP6TyMxgMYnl5GR9/
+/DG2trZQqVRwdHSE/f19GUpdu3YNCwsLWFxcRKFQkFXo1WpVtvk/ef6JRQOiNXWhUJDn9+sWj8+6
+GYgRAMfHx+h0OrILg5h9PVv4MVs0I6o6XwfXdeXz1O125Wx0cW6LavlCoYBr165hfX1dXjPOEnyr
+mgodOubn5/Hzn/8ciUQCT548kdXVtVpNtpYXYbNoA59KpZDNZpFOp8/0HgBALuBZWFjAT37yE1nJ
+enx8LINJUXUvZtGL2eqRSOTUwpFQKISrV64CALa2tvDkyRPZZUG8l4j9F4uURGeMYrEo2/2/DcRj
+mpubw89+9jPEYjE8efJELiSq1+vy+QC+ma8eDoeRSCSQTqfldTmZTGJjYwO9Xg/b29s4OjpCpVKR
+16ZIJIJEIoFIJIJQKCTHJ5xlIdublkgksLGxgeFwKD8zHB8f4+nTpwiFQrhy5QquXbuGRCKBq1ev
+YmlpSR6/TqeDZrOJW7dunTqfxXuaWNCVzWYRCUd+8L4mk0ksLCygXq+j3W5D0zTE43EsLCw8M/iO
+RCIozc8jGAqiVqvh6OgIh4eHsio/EAjI10E6ncbly5cxHA5RrVbP+2kheqNisRjm5+fRarWQyWQQ
+CoUwHo9h2zYGg4Ec82MYBtSYyuCb3jkMvomIiIiIiOi9oSgKfMwqSpPJJIrFIgDIqumXEQwG0el0
+4HmerKwOBoOYm5vD5cuX0ev10Gq1EIvFUCwWsbi4OAtDje8G6qI6L5lMYm5uDslkUlZFii9wV1ZW
+kEwmkcvloCgKWq2WrNYQrWhFVV8ymUShUEA0GgUA5At5XLt2DQAwGAywt7eH4XCITqcD27YxNzc3
++yLMsV+qnXYul5PbE62gT26vXC5jbm5OBj+Hh4c4PDyU89ODwSBUVcXy8rKscm02mzI4nVVrmQiF
+Q9B0DVevXkUwGMTnn38uq4pt25azZ0XYEw6HEQ6HEQqFZMAu/rtoiR0MBvHFF1+gVqvJik3xe6FQ
+SFZ2+76PYDAoA3Td0BGPx3H58mXk83nZTn00GsmWyuLYmaYpZ0+Hw2HkcjmUSiWk02lEIhEsLCzA
+cRyEQiF8/vnncl8sy5KhggiYxOxVEVyGQqEf9MWk7/uwLAudTgftdhsAZMiQzWZx/fp1XLt2DSsr
+K6faMYuW8CKIr1arsqpY7LdY+HH58mVcu3ZNHiuxiERRFGxsbMjW+2LmrvgSVlRci3byokI1k8kg
+Ho/P5pLn8xgMBrJrgNgHEXCFQiEZ9q6trWF9fR0rKyvQVO2Fx80wDGTSGSQSCTQaDRwdHcmK2kaj
+IVuPe56HcrmM9fV1eJ4nA9d4PH6qOl+E9el0GqlUCtFoVFZInlzEEAgEZJcIMftdhO62bSMUCmFx
+cRGGYWBubg7ZbBaPHj2C4zgYDAZoNBpotVpyAYCY5y2+5M5kMpibm5OLCERwL6rzRSXkqy6siEQi
+8rUiFqdsb2/j8PAQnU5HvrZisRhyuRwymQxarRYajYY8Lrquv3IoLxb++L6P0WiEVquFfr8vW1wn
+EgksLi7i+vXruHLlCsrlMkzTxGAwkIGxeI5mQfGzq5oVRYGma8jlcjAMA/lcXnYgEAt8er3eqeOS
+SqWQSCTk4pdsNnumcRei+4SoWL9x44a8FrZaLQyHQ9i2DWC2UEcEs7quyzEbJ0PaUDCEldUVJFNJ
+Gf6Lqvhmsym3JdpPi24B6XRabku8LyWTSRkai/sUs5XFAgzxfiR+LxAIQNd0aLp2ajyIOA/E7b99
+DMR1UbSSF4/VNE3EYjFomoZ8Po9gMCg7d3S73VMLG8T1JBaLIRqNolAooFAoIJlMIhKJYHV1VV5D
+LMtCvV7HaDSCbdvwPE8eDwDyepfL5RCNRuV72ss8nyePi7jeBYNBeVx0T0csFkMmk0EsFpOLF1Tt
+9LE5eVwmk4l8v5gt2NIRDs86xYguJNVqFZ1OB4PBAL7vI5PJYDweY35+Xs68F6HYeDxGo9FAp9OR
+9xcMBuV7WjQaRT6fRz6fRzQ2e/2Ka10wGEQkEpk9l+qLryuKeroqtdvtYjAYoFQqYX5+/pmdcoLB
+IPL5HFKppFzI5zgODg8PZcePYDAoF0FdvXoV7XYbjUZDPv8nu7qI50N8/hJjS1ghThddKBSS3ZPE
+Z1DLsuQIHfH/KmKR49u8mIfoVTD4JiIiIiIioveKoiqYm5vDb3/7WxkQn4VodS5aHcvQbb4svwRe
+W1tDMBiUv6dpGhT19BepouJ4cXERv/vd75BKpWRVYiwWk19CiS+4l5aW4HkeCoWCbIts27bch3Q6
+jWw2K6v0RJhcni/LIG59fR2O48jZqMvLy1hdWUUun3upUCYej2O+NA9VVRGNRrG+vg7btuG6rpy7
+vLy8fKqaRAStJ+ehi32MxWJYXFyEoii4efMmstkcotGI/CI/n8/L6vdyuYxWqwXXdeG6LhKJBFKp
+FHq9Hv72t7/h6OhIBgIiGAGAeCyOcrkMwzCQSqVw6dIlGWiI/5ZKpfDll1/KFsmGYcggSdM06Jr+
+9Wx3BVeuXEEoFMLly5fl74vgW1SiR6NRFItFlMvlWUAQjcrnY35+XgbJ6+vrsCwLjuPMwtdMBplM
+Rn4xCUBWgZdKJcRjrzajNJVKYXNzE+vr65hOp7AsS4ZU4XBYzk0Xz8lJompWPMZisYh+vy8XD4gW
+83Nzc5ifn0exWJy1F1e/CZsNw5ALN0R770ajIc9FEYKJdvnD4RDRaBSJRGIWHkZjiMVjcl+uX78u
+QxoRfJumKY/fwsICstmcHEXwwmuCokBRFejQUSqV8PHHHyOfz8vz99vtlUulEgqFAsrlMsbjMa5f
+v45SqSRDlXg8jl/84hdyFu7m5iaKxaIM6gRN05DJZGQolsvlZBtq13VRKBSwvLyMcrmMSCSCSCQq
+z9uVlRXZZl7MqxbzzyORCIrFIubn51EoFGZfapsBbG5uyrnUs3ENOXmOvwoR8ofDYVy6dAmapsnW
+08PhUHbQENcl0aVhY2MDc3NzuHHjhgxPX2UfTNNEqVSSXRSm06m8JqqqinQ6fapqWVyzRXD5y1/+
+Ui5QuXbtGqLRCAKBwHeu1SfvLxaLwfd9fPDBB0gmk2i1WvJ6LIhrUCKRwPz8PBYWFpBOp88UfJ8k
+zjtDn12XlpeXMRwO5YIHce0XCwBs20YikZCBXjqdhqp9s8hqdXUVmqZhYWFBtrAW2xJVzmIe+fz8
+vLz26LqOxcVF/MM//AMWFxdx5coVXL58WZ5H4rUuzof/9t/+Gy5fvoybN29icXERiWQCmqYhGAzi
+5z//uVx8cOPGjVMdHgRd17G8vAzXdTEcDmVXh5WVFYTDYfl+C0Buo9lsYjAYYDgcyu2Ibg3x+Oy9
+YH5+HplMVp53qVRKvq6y2Sxu3LgBx3FOdQ1IJpMYjUYYjUYyVE2lUiiXyy9VyS/ej9bW1vCP//iP
+WF5exvXr17G0tCSPi+M4+NnPfiYXCH344YeIRqPyM4S8bqgaFhcX8Ytf/AL9fl8ufpt1o5mNZRDv
+nZqmYX5+Xo4E8X0fy8vLWF5eluF9KBTCtWvXEIvFcP36dfT7/VPHT1z7xPvX/Pw8UqmUDIl/9rOf
+yarwjz76SH5+edFrWlEUZLNZXLp0CaFQCPPz8/jJT36Cjz76CKVSaXY+qN/dhugisry8DMdxsLy8
+jHa7jW63K685YmFjsViUCwiDwSBu3rwp59mL8+sf/uEfkMvlcOPGDayursqFTEQXmaIo8H1fdh/J
+ZDKwbVt+/h0MBqhWq7PXdiwOnP1/h4jeagy+iYiIiIiI6L0hwr5isYj/77/+f/j000/PvA3xJfDJ
+atZwOIzyQhn5Qh5Xr1zF1JpCURREIl8HKc+oqhRVR0tLS8hlc/j1r3/9TTWbYcrwRVSLizD1448/
+hud5cF0Pvu+d2p6hG9ANXd5nPBZHOBxGvpDHlStXMJ1a8jaapiFgBmAGTBlKv8jLbs91XdmK2nVd
+2Lb99TFQoeuaDEs3Lm9gak0BQFZsnwwr8/k8MpkMlpaWYFkWbFu0tvZkxdb29jb29/fx2WefnQq+
+DcOAqqhIJBIIR2bh7tWrV7/+0s+H73tQFBWGMWtnPhqNcP/+fXQ6HRmoyGpGTZXVrWJhg2VZp9pt
+i3NBhA0nZ8Fqqnbq+Zibm8Pm1U1Mrekz98Xzv+kmIKoBTdN8ZteAl5HJZHDz5k383d/9nazuEVWK
+Yl/Fc/Lt+xDVcyL0+OSTT74+/9wT7ZFVmKYh22yLY3byNSPCo8XFRXz88cewbUeeO+K51FQNrjc7
+d0SYI1oO6/qs1fT1a9dh2RZ83//OPui6BkM3YAZm+/HtSsnvo6oqfMVHqVRCJpPBhx9+KFtmz55b
+FZqmwjRMGKYhZwq7rodwODQL4rTZ49Y1Hb/85S9x48YN2ekgGAzK8+DkazadTsuFDR999JE8LmLW
+uWidL8LcVCqJlZUVWJYlA3KxKEGcf6IFtnhdK4oCTdVw/fp1rK6uwrYdRCJhGR6+anWjuF00GsXG
+xgaWl5flQhjHcaCqGlT1m9bfmqZhc3MT0+kUpmnKc1Hs81npuo5yuYxPP/0Uy8vLCIVC8vGK43vy
+OIhrtlhM85vf/AYff/xTGMasSjYUDH3vOWOaJvSvK2rFYpLZY3Xhee6Jc0mDpqnyfsRr4lUXGIj3
+m2w2i/VL6/K8E68fce0HIF8/ItgTj1+8T4lxE4uLi6euYc86hwzdgPH161qc24uLi0in05hMJrKr
+hq7r8jwS93f58mXMz89jMpkgEo4gHAnLffSiHn71q1/hgw8+hK7PFk6EQ2EoqnLqPNB1HaurqyiV
+SvDc2WMVo0XEe5ymanJe99UrV2E79ks9H+L4iAp3cX27efMmLGtW/e773xxHXdfl+5po/31yey96
+nYj3+0uXLqFUKmE8Hn/3uPgePv30U3zwwQdQVfW5x0XVZl1T5ubmTh2XQCCAgDlbuFEoFOR753Q6
+PfU+JbqiGIYhF87FYjFc2bgC27Gf+b4mjpW4JomqaFVR8fOf/xw3btyQ51gkHHm5iu+vg+9EIoGV
+lRW5KCsajcrZ3M+6jTieKysrKBaL8looOsGI91Lxup8t+LKgabOK+3A4DFWZHc/gymwRzG9+85tT
+n79eZsEU0dtOvFZEZ5/BYIDBYCCD73q9jmw2C8t+uY5XRBcJg28iIiIiIiJ674gvftOZF8+1fhli
+RvNZqoTEF7giFHvevqiqCqiApmtnnhGr6bM2z4FA4DuVvK/idW/v+ypMptMp2u022u02TMNEIPjN
+F/WaqmE4GsoZ4p1OB9PpVFbv5fN5xGIxKKqCXq8n28J/0wZ1Fuy4riurAxuNBobDoZyrPTc3J9v9
+nmzhKyoaf+jxe5NEJbpooRuLxV46aBSBq6hCfBUiEAPwytsAcObz/1X286yv42fRdE1Wq7/o/kQ4
+87KPTcwqfhWiG8HrPmYi8HqZ/Xot140T9x0MBpFIJJDNZhGLxV5qH8T5KCpDz3J/mq5Bgyarv9+E
+V3l/ed52fuhrWVxDv+8Yveh80PDyr48X3d/J5+NVnfU1+CrEcRHth3/s4yLO75e9Vpim+coVny+z
+z88jjv1Zr2kvcwyE77vmvcrnKqKLRLT0F4s5NU2D53mwLOtU9x6idw2DbyIiIiIiIiJ664xGI+zs
+7ODRo0eIxWKnZgIbhoFqtYqjoyM8fvwYBwcHmEwm0HUduVwO8/PziMfiUBQF9Xodjx8/RqfTkW3N
+RQXmdDLF0fERjo+P8fjxY7RaLQCQFZHZbI4tT4mIiIjowjk5qkV0j/E8D7ZtYzKZYDqdyg5DRO8S
+Bt9ERERERERE9NaZTCY4ODjA3bt3ZbVyNBqVrXQPDw9xcHCA/f19DAYDhEIhWe2dy+VgmiYURUGr
+1cLjx49RrVaRTqeRyWRkNdx4PMb+/j4ODg5wfHwM3/flLMRisYhEIoGAyeCbiIiIiC4WTZt1GRLj
+AxRFkeNqJpOJnPlN9K5h8E1EREREREREbx3LstDtdnF8fAzbns1cPTlD27IsWNZsLuHS0hI2Njbw
+k5/8BMViUc6kBYDxeIxWq4WdnR3s7OwAmLX81TQNvu9/PTvcRjQaxYcffoj5+XlsbGx8M/9YfbX5
+x0RERERE50V8bhadjlRVhe/7cF0XlmXBcRwG3/ROYvBNRERERERERG8dx3bQ7XZRq9XQaDTQ6XQw
+mUygKLMgOhKJIBaLoVgs4sqVK/jJT36CpaUlGXwLo9EIzWYTe3t76HQ66Ha78u8Mw0A0GkUsFsPV
+q1fxwQcf4Pr161goL3wTfCsMvomIiIjoYlEURY4I0jRNfqZ1HEcu/PQ9/7x3k+i1Y/BNRERERERE
+RG+dcCSMxcVFfPDBB2g2m2i325hMJgBmX+RFIhHE43EUi0Vsbm5iY2MDqVQKkUjkVFidyWRw+fJl
+KIqCTqeDTqcD3/ehKAoMw0AsFkM8Hsfly5exubmJpaUlJJPJCxt667qOQCCAXC6Hmzdvot1u4+bN
+myiXywgGgzAM40I+Lnq/Kersy/tgMIilpSV88sknyOVyuHbtGtLpNAKBADRNO+/dJCIiequIqu+T
+n/1834fnebM/fVZ807uHwTcRERERERERvXVisRhu3ryJfD6P8XiMyWQCx3Hk3wcCAZimiUgkgkwm
+g1w2h2AoCNMwT21neXkZpmni2rVrmE6nmE6n8P1ZdYto/2iaJjKZDDKZzGyud+DizvU2dANKWMH8
+/Dx+97vfYW1tDfl8HouLi4hGo9/58pPoIlAURYbbm5ubiEQi6HQ6WFxcxFxhDqFQSI43ICIiohcT
+n4eJ3jX8REhEREREREREb51oNIpLly7h0qVLP2g7hUIBhULhvB/OG6PpGjRdQz6fRz6fx09/+tPz
+3iWiH0x0aDAMA8vLy1heXj7vXSIiInrrKYoifwTf9xl60ztNPe8dICIiIiIiIiIiIiIiIqLXR4Tc
+J4PubwfhRO8aBt9ERERERERERERERERE75hnVXcz/KZ3GVudExERERERERERERERvQN834fjOHBd
+F5qmQdd1hpzvId/34boubNuG4zgyANc0DYZhQNM0aJp23rtJ9Nqx4puIiIiIiIiIiIiIiOgd4Lke
+bNvGeDyGbdvwXO+8d4nOgVgAYVkWXNeF7/tQFAW6rsM0TRiGwQUR9E5ixTcREREREREREREREdEF
+I+Y3u64rQ87RaIR+v49+v49sNotcLoewHj7vXaU3zPN82LaN6XQK27Zl8K1pmgy+VZW1sfTuYfBN
+RERERERERERERER0wXiuh/FkjMlkgv39fRweHuLw8BDVahXVahWffPIJfv3rX2N5efm8d5XeMM9z
+YVkWhsOhrPoWFd+hUAimaTL4pncSg28iIiIiIiIiIiIiIqILxnGdWYV3r4+trS3cunULDx8+RKVS
+wcHBAXzfx8blDQbf7yHf9zGdTjEcDjGdTuF5npzvHQwGvw6+OeOb3j0MvomIiIiIiIiIiIiIiN5i
+ruNiak0xGU/QbrfRarXQarfQaDTQarWwvb2NJ0+e4ODgAPV6HdVqFd1uF5Ztnfeu0zlwHAf9fh+t
+VgvD4RCO48AwDIRCIaTTacRiMZimcd67SfTaMfgmIiIiIiIiIiIiIiJ6i9mOjW63i06ngwcPHuDR
+o0eoVCqo1WpoNBro9Xro9/sYDocYj8dwHAee5533btMb5vs+AMCyLPT7fTSbTQyHQ9i2jWg0img0
+ikKhgGQyCdM0z3t3iV47Bt9ERERERERERERERERvCd/3ZXBtWRam0yl6vR6Oj49Rq9Xw5Zdf4tat
+W9jZ2UGz2USz2YTv+3BdV/7peR5835dBKL0fHMeB4zgYDofodrtot9sYj8fwPA+6riMWiyGbzSIe
+jzP4pncSg28iIiIiIiIiIiIiIqK3hGVZsoK7Uqlgb28PR0dHaDQaqNfrODw8xPHxMdrtNkajERzH
+kSG3CLzp/TQYDNBqtrC7u4tms4nJZALf9xEMBhGNRhGPx5FKpRCJRKBpnPFN7x4G30RERERERERE
+RERERG8Jy7LQ6XRwfHyML774Al999ZWs7u52u5hOp7AsC5ZlwbZtOI4jb8vQ+/3W7/dxcHiASqWC
+ZrOJ6XQKRVFgmiZisRji8TiSySQi4QhUTT3v3SV67Rh8ExERERERERERERERnQPLsjAajTAcjtBs
+NtBut2Vld61Ww6NHj7C1tYVarYbhcIjBYCDboLuuC4Bh9/tOtMZ3XReHh4e4c+cO7ty5g3q9jul0
+ilQqhUKhgIWFBWSzWQQCAWg6q73p3cTgm4iIiIiIiIiIiIiI6A0SYfVkMkGtVkO1WsX9+/fx8OFD
+HBwcyFbnrVYL3W4Xo9EItm3DsizO76ZTPNfDdDrFZDLB3t4evvrqK9y6dQu1Wg2u6yIWi2FxcREb
+GxsoFApQVVZ607uLwTcREREREREREREREdGPyPd9eK4H25m1JremFqbWFI1GA3t7e6hUKvj888/x
+1Vdf4ejoCNPpVLY0t20brusy6KZTXMeF4zoYj8dot9tot9t4/Pgx7t+/j93dXdi2DcMwkEwmsbq6
+io2NDeTzec72pncag28iIiIiIiIiIiIiIqIfiWhLPhgMUK/XUa/XcXBwgP39fdTrdbRaLbRaLRwc
+HKBer2M0Gs3CccuSbc0ZepMgzoVev4dGo4GjoyM8fvwY29vbuHv3Lo6Pj+E4DkzTRDQaxcLCAi5f
+vozLly8jm81CVVjxTe8uBt9EREREREREREREREQ/Etd14TgOer0eKpUKtre3cevWLdy9exfValVW
+dk+nU4zHY0yn01NhN0Nv+jbf99HtdnFwcID79+/jL3/5C7744gu0Wi30+334vo9YLIZ0Oi3bnF++
+fBmBQACqxuCb3l0MvomIiIiIiIiIiIiIiF6R7/vwPA+2baNer2MymUBVVUwmE0ynUwyHQwyHQzSb
+TRwcHODw8BBPnjxBpVJBp9ORt3UcR1Z4vw69Xg+7u7vIZDLnfYjoDMT8ds/z5I9jO3BcB7ZtYzwe
+YzKZ4OjoCIeHh9jZ2cHjx49xfHwM13Wh6zqi0SiWl5dx6dIlbG5uolQqIRqNQlEUKIpy3g+R6EfD
+4JuIiIiIiIiIiIiIiOgV+b4vW5MfHBxgOp1iMBig3W6j0+mg1Wqh3W6j3+9jOBxiPB6j1+uh3+9j
+MpnI+d2ve453p9PBw4cPX1uQTm+GDLudWdBtWRYmkwkmkwmGw6E8r3q9HrrdLnq9Hnq9HobDIUKh
+EKLRKEqlEj744AN8+umnWFtbQzabZeBN7wUG30RERERERERERERERK9IBN/T6RRHR0c4OjpCtVo9
+Nb+70+lgOBzK3xdzv3/MNuatVgsPHz5Er9c770NEZyDODRF6W5aF0WiE0WiEwWAgzyfRHt91XRiG
+AcMwkEgkUCgUcPnyZXz44Yf45S9/iUQigVAoxOCb3gsMvomIiIiIiIiIiIiIiF6RqM61LAvHx8e4
+f/8+jo+PMR6PMRqN5Nxu13VP3ebHJiq+Dw8Pz/sQ0RmcbHMu5sOfrP4ejUaYTCZQFAXBYBDBYBDp
+dBq5XA4LCwtYWVnB2toaLl26hFgshkAgAE3TzvthEb0RDL6JiIiIiIiIiIiIiIhe0cmK7+PjY2xt
+baFarcJ1XRmKf7u6+8es9BYajQYGg8EzK30VRfneffix/v687vei7hfwTRB+slOA4zgy1E6n07h0
+6RKuXr2KjY0NXLt2DYuLiwgGgwiHwlA1ldXe9N5g8E1ERERERERERERERPSKFEWBqqrQNA3hcBiJ
+RALj8Ri2bcO2bTiOg8lkAsdxAMyCzBcFoa9DOBxGOBxGIBA470NEZ6QoijyvFEWBpmlQFAW6rsM0
+TRiGgWg0ing8jlwuh+XlZaytrWFpcQkLCwvIZDJyG0TvEwbfREREREREREREREREr0gEk4ZhyBAy
+GAxiMBhgMBjI2d7j8RjANxW84p9/LPF4HOVyGYlE4rwPEZ2BqqpQVRW6rkPXdRiGIcNusbBC/CST
+yVN/xuNxxGIxht703mLwTURERERERERERERE9IpE8B0IBJDP56EoCrLZLJrNJjqdDtrtNjqdDkaj
+EVzXheu6sG0bk8kEtm0D+CYAf51BeDKZxPr6Osrl8nkfIjoD0T1ABN6maSIUCiEQCMgK71wuh2Qy
+iXg8jlAodN67TPTWYPBNRERERERERERERET0ihRFgWEYCAQCWFxcxMLCAmzbxnA4lFXf/X4f3W4X
+zWYT7XYb1WoV9Xodo9EIjuPAcRw5D/x1hd+ZTAbXrl3D1atXz/sQ0RmIim9R9W0YxuxP3UAgGEAs
+FkMkEkEoFIKuM+YjOomvCCIiIiIiIiIiIiIiolckZi8Hg0Hk83kUCgVEIhFZ3W1ZFqyphWqtiq2t
+LTx58gS3b9+W879Fhe90On2ts78zmQw++OAD/OIXv/jO34k548/zY/39ed3vRdwv8e/fnvctQnEx
+95uIvsHgm4iIiIiIiIiIiIiI6BWJYFJRFASDQcRisVNztV3HheM6iEQjME0TsVgMoVAImUwG1WpV
+VoW32210u13ZAt1xHLiuC9/3XykMN00TkUiEM76J6L3B4JuIiIiIiIiIiIiIiOhHomoqdOiIx+NY
+WFhAKplCeb6Mjz76CLVaDdVqFdVqFQ8fPsT29jaazSYsy8J0OoXjON+ZA05ERM/G4JuIiIiIiIiI
+iIiIiOhHoigKNF1DWA8jHA6jUChg1V8FAHQ6Hezu7qJSqSAUCgGYVWqPRiOMRiNMp1NMp1NMJhM5
+AxxgCE5E9CwMvomIiIiIiIiIiIiIiN4gMcs7GAwil8tD0zTouo5SqYTj42O02220Wi0cHBzg6OgI
+nU4Hk8kEo9EInuf9oBboRETvKgbfREREREREREREREREb5iiKAgEAsjlskinU1hcXIRlWeh0Ojg6
+OsLR0RE+++wz3Lp1CwDQ7XZh27YMvV3XlQE6EREx+CYiIiIiIiIiIiIiIjoXqqrCNE0AkK3Oo9Eo
+gsEg4vE4fN9HJBJBuVxGo9FAs9lEt9tFt9vFaDSCZVmyChz4pgU6w3Aieh8x+CYiIiIiIiIiIiIi
+InpL6LqOZDKJYDCIUCiEpaUlNBoN1Go11Go1bG1tYWtrC8fHx+j1ephOp1BVVbY+d133vB8CEdG5
+YPBNRERERERERERERET0ljAMA4ZhIBaLIZfLAQBGoxFqtRrqtToymQwCgQCCwSDq9ToMw4BlWXAc
+B47jYDKZwLKs834YRERvHINvIiIiIiIiIiIiIiKit5iu64jH4lBVFdevX0cymcTGxgYajQYajQaO
+jo5QrVbRbDbR6/XQarWgqioURTnvXSciemMYfBMREREREREREREREb3FDMNAIpFANBZFOp3G1atX
+MRgM0G630el08MUXX+DOnTt4/PgxPM9Dr9dj6E1E7x0G30RERERERERERERERG8xRVGg6Ro0aDBN
+EwAQiUQQjc6CcMdxEAwGkc1msb+/j6OjI2xubiKVSp33rhMRvTEMvomIiIiIiIiIiIiIiC4YXdcR
+Doeh6zouXbqEbDaLK1euoNlsotVqYWNjA9ls9rx3k4jojWHwTUREREREREREREREdMGoqopAIIBA
+IIBYLIaFhQXYto3xeIzxeIxQKIRQKHTeu0lE9MYw+CYiIiIiIiIiIiIiInoHaNqsFbqiKDAMA5qm
+nfcuERG9MQy+iYiIiIiIiIiIiIiI3gGiClyE34qinPcuERG9MQy+iYiIiIiIiIiIiIiI3hEMvIno
+faWe9w4QERERERERERERERERERH9EAy+iYiIiIiIiIiIiIiIiIjoQmPwTURERERERERERERERERE
+FxqDbyIiIiIiIiIiIiIiIiIiutAYfBMRERERERERERERERER0YXG4JuIiIiIiIiIiIiIiIiIiC40
+/bx3gIiIiIiIiC4Oz/Pgui5s2z7vXSEiIiIieuNs24bruvA8D77vAwB834fv+/A8D47jwHX4eZno
+dbBtG47jwPO8U685oudh8E1EREREREQvJL7Is20bg8EAzWbzvHeJiIiIiOiN6/f7GAwGGI1GsG0b
+nudBURTYto3xeIx+v492uw3Lts57V4kuvMlkgl6vd+r1RvR9GHwTERERERHRC4ngezqdot/vM/gm
+IiIiovfSaDhCv9/HeDyGZVmy2tuyLIxGs78LmAFMppPz3lWiC0/8/+d4PMZ0OmXwTS/E4JuIiIiI
+iIhOURQFiqpA13UEg0GEw2EAszbno9EItVqNXzgQERER0XvJsiz0+30ZxrmuCwAYj8fodDpwXRfj
+8RiGYZz3rhJdeI7jYDAYYDgcYjKZQFEUBAIBBAIBBINB6LoOTdPOezfpLcLgm4iIiIiIiE5RFAWa
+psE0TYTDYcTjcUwmE0wmEwyHQ7iui263e967SURERET0xrnubH63bduwLAuO40BRFNmKeTgcotls
+Mowjeg3EuC3btgHM/l81GAwiFAohFAohEAhAVdXz3k16izD4JiIiIiIiolMURYGqqggEAkgkEshk
+Muh0OrBtG9PpFLZto9/vn/duEhERERGdC9HeXPwAs4DOsqxZ9yRFOe9dJHrniMA7Ho8jFoshFosh
+GAxykQmdwuCbiIiIiIiITtHUWbV3NBpFoVCAqqqoVqswDAPD4fC8d4+IiIiI6Nx4ngfHcWDbNhzH
+geM4AABd12EYBnRdh67rrEIles2i0Sii0SjS6TQKhQIymQxisRjHCtApDL6JiIiIiIjoFFVToWqq
+/BIhkUjAMAx4nodAIHDeu0dEREREdG4cx8F4PMZ0OsVkMoHneQAAwzAQDAblj64zfiF6neLxOFKp
+FDKZDLLZLHK5HAzdgKpxkQl9g1deIiIiIiIiOkW0ZhQr5zVNQz6fh+/7GI1G5717RERERETnZjqd
+otPpoNfrQVEUWfEdCoWQSCQQi8WQTCa5YJToNYtEIrLFeSwWg2ma7KxA38Hgm4iIiIiIiJ5JURQY
+hgFVVZHJZBAKhWDb9nnvFhERERHRuRkOh6hWq9B1HY7jyIWh4XAY6XQa+Xwe+XwekUjkvHeV6J1i
+miZMw4RhGjBNUy7YJjqJwTcRERERERE9k6IoUBQFqqoikUggkUic9y4REREREZ2rbrcLx3EwmUzQ
+6/WgqioURUEoFEIsFkM2m0WpVOJnZyKic8AeAEREmlSQmQAAgABJREFUREREREREREREREREdKEx
++CYiIiIiIiIiIiIiIiIioguNwTcREREREREREREREREREV1oDL6JiIiIiIiIiIiIiIiIiOhCY/BN
+REREREREREREREREREQXGoNvIiIiIiIiIiIiIiIiIiK60Bh8ExERERERERERERERERHRhcbgm4iI
+iIiIiIiIiIiIiIiILjQG30REREREREREREREREREdKEx+CYiIiIiIiIiIiIiIiIioguNwTcRERER
+EREREREREREREV1oDL6JiIiIiIiIiIiIiIiIiOhCY/BNREREREREREREREREREQXGoNvIiIiIiIi
+IiIiIiIiIiK60Bh8ExERERERERERERERERHRhcbgm4iIiIiIiIiIiIiIiIiILjQG30RERERERERE
+REREREREdKEx+CYiIiIiIiIiIiIiIiIioguNwTcREREREREREREREREREV1oDL7pwvM9/7x3gYiI
+iIiIiIiIiIiIiIjOEYNvIiIiIiIiIiIiIiIiIiK60Bh8ExERERERERERERERERHRhcbgm4iIiIiI
+iIiIiIiIiIiILjQG30REREREREREREREREREdKEx+CYiIiIiIiIiIiIiIiIioguNwTcRERERERER
+EREREREREV1oDL6JiIiIiIiIiIiIiIiIiOhCY/BNREREREREREREREREREQXGoNvIiIiIiIiIiIi
+IiIiIiK60Bh8ExERERERERERERERERHRhcbgm4iIiIiIiIiIiIiIiIiILjQG30RERERERERERERE
+REREdKEx+CYiIiIiIiIiIiIiIiIioguNwTcREREREREREREREREREV1o+nnvABERERERERER0dtq
+Op1iPB7Dtm1oqgZN12AYhvwRPM+D67pwHAfj0Rij8QiGYSAUCsE0TSiKAkVRTmzPQSgYRDAUhK7r
+0HUdqsoaFSIiIiKiV8Xgm4iIiIiIiIiI6DkODg5w9+5dVKtVxONxxGIxFItFlMtlZLNZ+XuTyQT9
+fh+1Wg337t3D/fv3kc/ncfnyZSwuLsI0TQQCATx58gR3795Fo9HA2toa1tbWkM/nkUqlEIvFzvvh
+EhERERFdWAy+iYiIiIiIiIiInmN/fx9/+tOf8PDhQ+TzeczNzWFzcxOxaOx08D2eoNVqYXt7G//6
+r/+K3//+91haWsLf//3fAwAikQgikQhu3bqF//N//g92d3fx85//HLZtw3VdBAIBBt9ERERERD8A
+g28iIiIiIiIioh+B7/vo9Xp48uQJnj59CsdxznT7aDSKlZUVrKysnGqVfVaWZcGyLPT7fVQqFRwc
+HCCTyaBUKiGXyyEQCCAYDL7Stn3fh+/7qFQq2NnZQb/fR7lcRrlcRigUQiAQgGEY8H0fAFCpVPD0
+6VPUarVT2xGPTVVVqKqKcDiMSCSCWCyGTCaLTCb9g47BDzGdTtHv99HpdBAIBBCJRGatyh371HGo
+N+q4e/cu7ty5g2azCdM0EY1GkUgkkIgnEAwFEQ6FEYvFkEwm0Wg00Gq18OWXX8J1XUSjUWQzWSiq
+wpbnRERERESvgME3EREREREREdFrJgLhZrOJf/u3f8P//b//F5ZlnWkbc3Nz+K//9b8il8shHo9D
+1/VXCn2n0yl6vT52dp7i97//Pf74xz9iY2MDn376KW7cuIF0Oo1AIHDmbfu+D8/14HouHjx4gP/9
+v/83Dg8P8atf/Qq/+c1vMDc3B1VVZfDtez4ePnyI//W//hfu3Llzalsi0BZzs7PZLObm5rCwsICr
+V68iHA7Jv3/TwffLHAff91GtVvHll1/i9u3bUFUVa2tr2NzcxPr6OhaXFqFps9ngKysr+OCDD2AY
+BlqtFr744gsoioKFhQWsra1B07RzCfiJiIiIiC46Bt9ERERERERERD8C3/PR7XZx9+5d/OEPf8Bk
+MkEwGISmaVBV9YXB5vz8PK5cuQLbtuF5HnzPB16hENh1XUzGYzQaDTx69AhffPEFHMfB4uIiVlZW
+EIlEXnnbnu/BdV1UKhX85S9/we7uLpLJJDY3NxGNRhEOh2W1t+d72N/fx1//+lf86U9/QjAYhGma
+8niIkFzXdaRSKeTzeTQaDWiahkwmg2w2i1gshlAodN5PreT7vqyoPz4+xqNHj/DkyRNcunQJV65c
+webmJpaXl1EoFORtyuUyxuMxFEXBn/70J1QqFSSTSRwdHaHb7cpqdwbfRERERERnw+CbiIiIiIiI
+iOgNyGQyKBQKyGazCIfDCIVC3xtuFgoFXLlyBcFgcBaUq68WhOq6jnAkjHw+j6tXr6LT6eDy5ctY
+XFxELBabtTl/xW2/qnA4jGKxiGKxKMNs0zThui5c18V4PMZ4PMaTJ0+gaRpGoxGuXLmCK1euYGFh
+4Y3u6/exLAv1eh31eh37+/vo9/tQFAXZbBbXrl3D2uoaEonEqdvE43EsLCxgOp3iyZMniEQisG0b
+BwcHePDgAcrzZSwsLsA0zfN+eEREREREFwqDbyIiIiIiIiKiNyCZTMrwNpPJIJfLQdO05/5+NBrF
+0tISQqHQK7c5BwDDMBAOh5HP5XH9+nUYhoFSqYTFxUUkEolXanP+QwWDQczPz+NnP/sZisUiMpkM
+QqEQ+v0++v0+7t+/j7t37+Lo6Ajj8RjVahWWZSGXy71Vwbdt26jX69ja2sLh4SEGgwEAIJ/P48MP
+P0SpVEI4HD51m3gsLhc9fPXVV4hEIrAsSwbfhmGgWCoy+CYiIiIiOiMG30REREREREREb0AwGEQ2
+m8XCwoKsdv6+4NtxHLRaLezt7SEYDCIcDiMWiyGdTiOTyUBVv9ub/OjoCJVKBf1+H4l4AvFEHMFg
+EIFAAJZtodFoYHd3F6qqYn5+XrYhB2YhruM4GA6HaDQaqNfrsvLadV2oqgpN0xAOhxGNRqFpGnq9
+Hvr9Pu7evYtutwvLsrCzs4N///d/x/3795FIJJBIJJBKpZBKpXB8fIzJZAJVVRGLxTA3N4fFxUUU
+i0VEo1EMh0MMh0N4nofRaARFUeA4DnZ3d1Eul9Hr9WRrcdu20Wq2UG/U0ev1MJ1OYVmW3M9QKDS7
+32QKsXjsO23SbduGbdsYDoeyans0GsGyLLiuC8MwYJombt26JQN427a/c8xqtRoeP36MVquFQCCA
+QqGAXC6HZDKFSCQCXT/99Zuma1A1FfF4HIVCAeVyGbZto9ls4vHjxygUCrBt+7xPVyIiIiKiC4fB
+NxERERERERHRG2AYBmKxGDKZDPL5/AuD73q9ji+//BJ/+9vfEI1GkcvlUC6XcfXqVSQSiWdWBD95
+8gT/7//9PxwcHGBxcRHLy8soFosoFAro9Xp49OgR/vjHP2IwGGB+fh6Li4sIBoPwfR+O42AwGOD4
++BhfffUV7ty5g0ajgXa7jclkgkAgAMMwkM/nMTc3h2AwiOPjYxwfH2N7exvtdhuj0QiPHj1Cq9VC
+MBiEYRhIJpNy5vXe3p4MtE3TRDwel9XvqVQKjuPAsiwZLodCITx69AgHBwc4Pj5Gv9/HZDKRgfvD
+hw9x584d7OzsyGpxXdcRCASQSqWwvr6Oy5cvY2lpCeVy+TvBd7/fx/HxMb744gvcunULzWYTg8EA
+lmUhEokgEomg2Wzi8PBQBu4ng2/LslCtVvH48WP0ej0kEgmk02nkcjmEgsHnVuorigLTMJHP53Hp
+0iXs7++jXq9jOBziypUrcB33vE9XIiIiIqILh8E3EREREREREdEboOs6QqEQYrEYkokk0uk0DMN4
+7u/3ej3UajXcunULoVAIuVwO3W4XqVQKGxsb8vd834fv+3BdF/v7+/jss8/w9OlT9Ho96LouA+bx
+eIz9/X08fvwY8Xgc7XYbju3AcRy4roterydD7Dt37uCzzz5Do9GQVdaiAjqXy6FYLCIcDqNaraLR
+aKDZbGI8HsOyLBkeq6oKVZ1VNiuKgng8jk6nA9u2oaoqTNOUVezJZBLZbFY+JjHrezKZ4OnTp+h2
+u+h0OhgOhxiPx6jVajg4OMCdO3fwxRdf4MmTJxgOhxiNRtA0DYFAAIlEQgblrusiEokgkUhAU2cV
+1/1+H4eHh9je3sbt27fx17/+VYb3juMgEokgGo3CsiwMh0NomiYrvsWPZc2q6Hd2dmCaJsrlMlZW
+VpDP52EGzGdW5QuGOVtEsL6+jn6/jydPnmA8HqPRaGBqTeF5HhRFeeNt6ImIiIiILioG30RERERE
+REREb4gITD3fm/3pec/8PUVRYBgGstkslpaWMBwO0e12sb+/j06nc+p2nuthNB5hPB6j3W7Ltt/R
+aBQrKyuYm5tDOBxGt9v9zv14vgfHcTCdTrG9vY2//OUvePjwIVqtFhRFQblcRiQSQSAQkLcRobTj
+OFhdXcWHH36Ie/fu4datW/B9H4uLi1hbW0M0GkUoFEIymcTCwgKWlpbQ7XZx9+5dDIfDFx4rRVFk
+eC4CZN/3MegPcOfOHfztb39Ds9mE67qYn59HKBRCJBKB67qwLAuO42A8HuMvf/kLJpMJQqEQwuEw
+IpEIwuEw9vb28Kc//Qn37t1Do9GAaZqYn59HJBJB8OtqbV3XcXx8jIODA4zHY1ntLSrkRfV5q9VC
+NptFKpXC4uIi0un091bzA7MOAOl0GsvLy9jZ2YHv++j3++j1euh2u4hGowgEApz1TURERET0khh8
+ExERERERERG9YSL0dt3vtrRWFRVQIYPv1dVVbG9vo1KpwLIsdDqdU7dzPRfj8RidTgedTkdWaEci
+EayuriKZTD43hBUBrjW1sL29jX//93/HgwcPEI/HEY/Hsbi4iCtXrqBYLGIymWA6nWJ3dxdPnz6F
+4zhYW1vDL37xC4RCIVQqFYzHY1y6dAn/+I//iGKxiHQ6jXg8/nXoHMHTp09PtRt/HlHpLEJv8e+u
+66LX7+H+/fv4/e9/D9M0MTc3h4WFBayurmJ9fV3OKN/b28Pt27dx//59uK6Lubk5FItFuK4LXddR
+qVTw5z//Gbdu3UI8HkcsFsPS0hLW1tZQKBQwnU4xnU5x7949tNttjMfjU8dNBOy9Xg/tdhvJ5KyK
+f2Vl5aWCb03TkM1mYZomvvrqq1moPxjI4DuVSn1nPjgRERERET0fPz0TEREREREREb0B7XYb9+7d
+g+u6SKfTyGQyz2yFLSqXgdkM6aWlJTQaDViWhel0+nVV92yWtWmYsCwLrVYLe3t7sr15NBpFMplE
+KpVCOBx+ZsAOAI7joN1uo9Fo4PDwEI1GA5PJBIuLi7h+/TrW19exvr6OfD4vg+BYLIZYLAbHcXDp
+0iWUy2Ukk0mYpglN0xCLxVAoFFAul5HNZpFIJGSIHQqFnhsIe54n7+Pw8BBPnjxBpVKB4zhIJBII
+BALo9/vY399Ho9FAv99HsVjE0tISrl+/Lmeaj8djtFotRCIR1Go17O7uwnEcHB0d4f79+8jn88jn
+83Kutni8165dw8rKCpaWlpDL5jCZzoL+fr+P3d1dDIdDGIYBRVHgOI6cVT4ajWBZlmzrnsvlEIlE
+oKkvDr6DwSAURUE0GpVt7y3LQrfbxXA4RDAYfKmFAkRERERExOCbiIiIiIiIiOiNqNfr+Pzzz7G9
+vY1AIHCqffhJYt713NwcFhcXsbS0hCdPnsDzPPT7fXQ6HTSbDRiGjng8Dsdx0Gg08PTpUwwGA9nO
+O5lMIhKJwDRNTCaTZ96XCM1brRaq1SomkwkCgQBWV1fx93//9yiVSkin07KFuOd5sgpdBPixWEwG
+wgDkjG0R2gaDQXl/onr720Tleb/fR7fbxdOnT3Hnzh08evQI0+kU+XweoVAI7XYbtm2j3+9DVVVk
+s1lcv34dn376KeLxOBLxBBzXkeHz8fExqtUqAoEAarUa7ty5g0KhgGaziaOjI4zHY5imiZWVFfz2
+t79FqVRCMplEOByG47hw3Vlgns1m0el0EAgEoCgKbNvGcDiE7/tyhriu64jFYkin0wiHw1DU75/N
+rSgKTGM2BzwYDCIQCMAwDNi2jW63i16vh3g8ft6nLRERERHRhcHgm4iIiIiIiIjoDRAtyBuNxqn2
+3d+WTqeRz+dh2zbK5TIWFhaQSqWgqqpsrV2v12WoLLYpgu9IJCIDWFFhbVnWM/fJcRy0Wi3s7u6i
+1WrBcRyEw2EsLi7ipz/9qWy3fbIyvVgsylnljuPAdV1omiZ/R9M06LoOwzBgmiZM05StwcXj9jwP
+4/EYzWYTx8fHUFUV3W4XjUYDrVYLW1tbePLkCWq1mlwEkEwmMRwO0e/3MR6Poes6MpkM1tfXcePG
+je8cz0AggO3tbezu7qLT6aDVaqHX62EwGGA0GqHRaMC2bYTDYZTLZXz88cfIZXNQtdPh/NzcHBKJ
+BEKhkAz4bdvGaDSC67qwbRsAZKV9IpE4dTyeR1EUaLoGTdcQCoXk9l3XRb/fx3A4hOM4533aEhER
+ERFdGAy+iYiIiIiIiIjegEwmg7m5OWSzWYTD4VlV8DOCb9GivFQqYW1tTf57Op3GaDTCZDLBzs4O
+TNOULcebzSZ2d3fheZ687cvMmRYtuzudjgyBA4EAIpEIDN2ApmrP3EdFUeD7/isfi8lkgu3tbbm/
+omp8PB5jNBqh2+1iNBohnU5jfX0dV65cged5GAwGaLVa0DQN8Xgc0WgUpmk+cxGBqqqIRCJIp9OY
+TCZot9uyfXggEIBt2wiFQtB1HZFIBLquv7BKW/A8D7Ztw3GcWeW2aSIQCEDXdWjas4/Z99F1XVbJ
+q6qK6XQqt09ERERERC+HwTcRERERERER0RuQSqVw9epVXL16FdlsFrlc7plVwcFgEOFwGLFYDLlc
+DqlUCqlUCplMBt1uVwbfiUQC5XIZANBsNrG3t4dMJoNSqYSlpSUkk0moqgrP8567T57nYTQaod1u
+w3EchEIhGSjrhv6d6ueTnlex/jKGwyF2d3dxdHR0qvrd9314nod4PI50Oo3FxUVsbGzgt7/9Lfb3
+93H79m0MBgMoioJ4PI5YLCaD728TFdjpdBqtVgu2baPX6yEQCMA0Z7PRxTz1aDT6ncr27+O6LqbT
+qQy+xTYNw3jpbXx7X4PBoJz5LWadf99zR0REREREpzH4JiIiIiKiM3MdF447+7L/LEEBEdH7LBgM
+IpvNYmFhAcViEcViEbr+3a9mNE2DYRgIBoOzymvDQDwex9zcHHq9HhzHwd7enpy1reu6bOWdTCaR
+yWSwuLiIdDr9wuBbBM2O48D3fXnfomr5VYPtFzEMA5FIBIlE4juhsaZpyGQyKBQKWFxcxJUrV1Aq
+ldDr9aBpGlzXle8/L6quVlVVvk+JduviB4BsyX7WKm1x3Hzfh6Iocr9f9XiJbYhjLrb9Q6rqiYiI
+iIjeNwy+iYiIiIjoTHzfh+3YmE6nMvA2TfO8d4uI6K0nWmqnUilks1kUCgXo2ne/mlE1VQa2IhiP
+xWIolUrodrtot9vY399HoVBAo9FAKBRCp9NBr9cDAORyOSwtLSGVSkHTtBe2yxYhq/Bjhd0nBYNB
+lEolXLlyRVa1x2Ix2YY8FoshkUgglUwhl8/JVujfXmh11n0Vvy8CZhE4/1Ant/dDMewmIiIiIno1
+DL6JiIiIiOh7eZ4H35uF3ZZlYTqdYjAYoNfrIRgMIp/PM/gmInoJuq7LVuLJZBKZdAaarr3UbePx
+OMrlMrrdLlqtFqrVKg4PD3F0dIR4PI5+vw/LsmAYhmx3Ltpmv4imaTJgF9XfZ2mx/e37eJng1jAM
+zM3N4ebNm1hZWUGpVEIul0M4HEYkEkEgEIBhGDAMQ97GNE1Z5S2qt0Wl+vO4rgvbtuF5HhRFkRXt
+uq7L27que+aw+WTQLVq0/5AK7ZMV5ABOVX8TEREREdHLYfBNRERERETP5fs+ptMpJpMJ6vU69vf3
+cXh4iOPjY9RqNZRKJfz617/GT3/60/PeVSKid1osFkO5XEan08HDhw/R7/dxeHiIhw8fIplMwrIs
+pNNpZDIZxGIxBAIBaNqLQ3VN0xAMBhGPx9FutzEajeD7PobDoQzAvy+AVRUVnuLJoFb4dhX5tymK
+AtM0EYvFEI/H5Rxz0zRhmiY0TfvO/huGgWg0ikgkglarhW63KwN/0XL8JMdxMBwO0Ww2MR6PYRgG
+YrEYotEootEoLMvCZDKB67qYTCbPDfvFdk8+HlVVEQgE4LouPM+DZVmwLEuG6WcNrB3HwWQywWQy
+ge/7CAQCCAQCHCVCRERERHQGDL6JiIiIiOi5RPDd6/VQqVTw1Vdf4e7du9jZ2cH+/j42NjZQLBYZ
+fBMR/cji8TgWFhbQ7XZhGAb6/T6Ojo7w8OFDZLNZ2LaNbDaLbDaLeDyOQCDwUhXDmqohHA4jkUhA
+0zSMx2NMp1MZfLuu+8w55N8OgU+2ED9Z/fy88FsE39FodNbSPJVCMpmEqqhQ1Ge3DRdBeTQaheu6
+6PV6p4JvsV3BdV0MBgO0Wi1MJhM5Nz0ejyMWi6Hb7WI8Hssf33v2vj7rcWiaBtM0ZbW46Ihysnr8
+LOG34zhyoZkIvkVlOhERERERvRx+eiYiIiIiIgDfhNzT6VTOkG2322g0Gmi1WqhUKtje3kalUkGt
+VkOj0UChUMB4PD7vXSciuhAcx8FoNEKn00E0GkU4HP7eqmxd1+XMa9M0ZYv0RCKBSCQC27ZxcHCA
+4XCIUCiE+fl5FAoFhMPhl64U1g0dqVQKjuPg8PAQqqpiOByiUqngs88+Q7FYRCqVQjgc/rq1uIt+
+v4dutwvf91EsFjE3Nwdd12WV+XA4xN7eHkzThKqqp0JjUWEtZmufbD1+sq35s0SjURSLRbRaLWxv
+b8O2bTSbTWxtbSGXyyEejyMRT8B2bEwmE+zv72NnZ0fuSz6fRz6fl5Xx/X4fnueh3++jUqng1u1b
+yOfzCIVCUFUV4/EYo9EIDx48wNHREbrdLhKJBDzPg2EYCIfD8H0fhmHA933Yto3RaITBYADTNOXi
+g+fxfV8uLhiPx5hMJnAcB5qmIRaLIRKJMPgmIiIiIjoDfnomIiIiIiIAsy/gB4MBup0unu48xaNH
+j7C9vY1arYZ6vY52u41+v4/BYCArAl/UypaIiL5h2zb6/T4ajQYMw5Azp58nEAggnU4jm8meakku
+gtvhcIharYbBYID19XUsLS1hbm4OkXDkpffJNE3kcjkkEgk8ffoUpmmi0WjgyZMn+P3vf4+1tTWs
+r68jk8nIiuRKpYJKpQLP8/DJJ58gl8vJampd19Hr9bC9vS3DbTlfW52F4q7rvtLxE1Xvo9EIX331
+FXzfR6PRwO3btwEAi4uLWF5exng8RrPZxM7ODh49eoTd3V0sLCygUChgc3MTiUQCyWQSR0dHAIBO
+p4Pt7W38x3/8B+bn55HJZBAIBOT73+3bt/H06VO0Wi1kMhl4ngdd1xGJRKAoigy4RWv1TqeDeDwO
+0zRfGHzbto3pdCqDb9u2YRgGksmk3AYREREREb0cBt9ERERERO8p13Hhei4sy/q6Sm2MWq2KarWK
++/fv49atW7h//z6azSZarRbG4zE8z4PnebKV6/e1sSUiotMmkwnq9ToqlQoGgwHa7fb3VmbHYjGs
+rq4ikUjANE3ouo5oNIp0Oo1CoYC9vT20221Mp1Pouo6VlRUUi0WEI+GX3iexzUAggFKphEwmIzt9
+3L59G8PhEJZloVAoYDQaYTweY2dnB0+ePIGmaVhYWIDrugiHw0ilUojFYphOp3j69Cl834fnebIi
+PRwOYzgcwrbtVzp+4XAYhmFgPB4jl8shFovBtm3s7u7K1ueTyQTD4RD1eh37+/uoVqtyvnexWMTm
+5ibC4TAikQgePHiASGS2SKBWq+Grr75CrVZDoVBAKBRCtVpFrVbDkydP5PvgdDqF7/vQdR2hUEj+
+aRgGPM9Dr9dDo9GAqqqIRCLf+/y6rovRaIRer4fBYCCPi2maSCaSiEajL6yCJyIiIiKibzD4JiIi
+IiJ6D3meh/6gj16vh+pxFZW9Cvb399FoNFCv13F8fIyjoyPU63WMRiNMp1M4jiNDDAbeRERn1263
+8fDhQzSbTYRCIYRCoe+tCC4UCvjNb36DUqkEVVWh6zpM00Q2m8XKygrG4zF6vR40TUM6ncby8rJs
+1f2yVFWFaZoIh8NYW1vDr371K2SzWfR6PfR6Pezu7qLRaCAQCMi23K7rwvM8pNNp+Rjy+TyuXbsm
+W4eL1uC7u7vI5XJYWlrCysoKer3eKwffmqbB930kEglsbm6i2+2i2WzK1uqNRgN3796F684WdTmO
+g1AohBs3buDmzZtYX19HPp+XreOXlpbwk5/8BIFAANPpFPV6HZ1OB7u7u7Jtu2jhHovF5HFSVVU+
+H6IKP5VKwTAMtFotPH36FLquI5vNfm9w7TgOms0m9vb20Gq1oCgKotEo4vE44om4DNaJiIiIiOjl
+8NMzEREREdF7yPd89Pt9VI+ruHf/Hr744gvcu3cPzWYT7XYbo9EIlmXJanARegNg4E1E9IparRZG
+oxEqlYpsA/59xMzuX/3qVwiFQvC92TzpfD6PlZUVNBoNHB4eAgDS6TRWVlbOHnwrqqxaXl+/hHAo
+jHK5jM8++wxfffUV9vb2MBgMMJlMoGkaFEVBLpfD/Pw8EomEnIedy+Vw/fp1KIqCv/3tb6hWq5hM
+JvB9H7FYDB999BFM00S324XjOK90/FRVlW3Ab9y4gVgshi+//BJffPEFdnd3MRwOMRqNoGkaTNNE
+IpHA+vo6rly5guvXr2N9fR1zc3OzY6+oWFlZwXA4RDgcxu3bt3H//n2MRiO4rgvTNFEsFlEulxEK
+hZBIJGDbtgy+FUU5FXxnMhlomoZWq4WdnR1kMpkXPk4xo3xnZ0cG37FYbBZ8x+OylToREREREb0c
+Bt9ERERERO840WZ2NBqh0+mg1Wqh1WqhWq2iXq9jZ2cHjx8/RqVSwXA4xHA4xGQyged58kt7ht1E
+RGenqAoSiQSuXbuGX//617As60y3n5ubQ7lchmEYs7BVnc2Tnpubw5UrV+D7PqLRKHzfx+bmJlKp
+1KxKWDv9dY+o6k6n07hx4wZarRY2NzexuLiIcCSMQCAAXdeRSMShqgpUTYVlWdB1Hc1mE91uF9Pp
+FKqqQtM05HI5lEolLC8vY25uDpqmIZFIYGlpCcDsPSMUCmE8HsO2bUQiEVy+fBnz8/OwbRuu62I4
+HOKDDz7A/Pz8mWZZK4oC0zSRz+eh67p8n0qlUuj3++j3+zAMA6ZpIpVKYX19HZcuXcLS0hLS6fSp
++0mlUlhdXZVBeTQaxXA4hOM40DQNxWIRpVIJlmWh3+/DcRzkcjnkcjmUy2XEYjEYhiEr2ofDIdrt
+Np4+fYrFxcVTi8a+HWD7vg/LslCtVvH48WN0Oh1Eo1Fks9nZjHEz8MKFEUREREREdBqDbyIiIiKi
+d5jv+3AcB+12G7VaDVtbW3jw4AG2t7dlG9tOp4Nut4terwfHcTCZTGQbW7ENIiI6GxF0ZjIZ/OY3
+v8HCwsKZK52j0ShWVlYQjUah6zoURZGzuKPRKEqlEj744AMAwNLS0iyI1Q2o2unAVNdmFd2lUgm/
++93vsLq6ilwuh4WFBSQSCdlOOxAIAAAWFhYQCoWwtraG8Xgs3xcURYGiKAiHw4jFYkgkEshkMtA1
+HbFYTFYsFwoFfPjhh7BtG57nydA9m81ieXkZ165dg2VZKM4VUSwVEY1Gz1Slruu6bD1uGrPKbBHO
+27YtA/pgMIhUMoV0Oo1YPIZoNHpqO7FYDOVyGYlEAvOleXz44YewLAue50FVVUSjUcSiMbieK/+7
+mFWeTCaRSCTgOA4KhQIuXbqEp0+fYn9/H71eD5ubm5hOp/Bc7zvPhxgXMp1+E3w7joNUKoVSqYRc
+Lgfd4Fd2RERERERnxU/RREREREQ/wPNC4ZP/XczEPjkb+9s/4u+e5WXbnIptOY4Dx3FgWRam0ylG
+oxF2d3dRqVRw9+5dfPHFF3j8+DEmkwmm06lsZ27bNkNuIqLXSFFmFd8fffQRPvroo9eyTTHjO5vN
+YnV19aVuo+kaNGjydh9//PEzf88wDBiGgWg0inw+f6b9CumzmeW5XO6l9+tVqaqKcDiMcDiMVCqF
+tfW1V9qOmLP+Q/Z5MBggn89jY2MD3W4XW1tb6PV6cl54KBRCMBg8VWnuOA5s20a320G1WsXe3h6S
+ySRWVlZw+fJlWc1ORERERERnw0/RRERERERndHLWte/58PzTgfbJ3wEgZ2WLQNp1XbiueyqgtqaW
+/JJbVNSJGaSKqsjw+3kh+MnAu1arybmvBwcHODo6ku3Nj4+PcXR0hMFgIO/bcZzvDd6JiIjo2USr
+cwDY29tDNBpFt9tFvV7HnTt3MB6PUS6Xkc1m5W263S6q1SoePnyIarWK8XiMQqGA+fl5bGxsoFAo
+MPgmIiIiInoF/BRNRERERPQKfN+X7cBFaOy67ncCcACyovpk8H0q9LYsTK0pNF07FXprmgZVVaH6
+KlRF/U6r1JM814PruphMJjg+Psbjx49x79493LlzB1tbW9/cz3Qqq8C/XYVOREREZ2OaJnK5HBKJ
+BLa2tuTM9Xq9jnv37kFVVcTj8VPBd6/Xw87ODh49eiSD70AggHK5jCtXriAcDjP4JiIiIiJ6BfwU
+TURERET0kkQ4LMJr27ZhWzZsx5bBtuu48HxPzscGgHa7jWaziU6ng36/L6utu92ubIFqGAZCoRA0
+VYOqqdB1HYZhwDRMGKYBTdMwGU8wnkwwnc5alItW5dPpFOPxGMPhEP1+HwcHBzg8PMTu7i52dnZQ
+q9Vk2G7btvzn12E8HuPw8BC3b98+76eHiIjoXIjPB91uV76fdzod3Lp1C5PJBJZlodloAgAUVcH2
+9jbu3r2Lra0tdDodhMNhaJqGfr+Pvb09aJoGTdPO+2EREdFzDIdD1Go11Ot1dLtdOI4DwzDOe7eI
+iAgMvomIiIiIXor4UttzPRkgTyYTjEYjjMdjGUKfbGUubiNmfTYaDRl+W5YF0zRlRZfnebPgW9Og
+6zoCgQCCwaCcP6rrOhqNBur1OlqtFrrdLjqdjvxT/HS7XYxGI4xGIwwGA/T7fYzHY1mdLirTX5fh
+cIinT5/iP//zP8/7KSIiIjpX+/v7UFUVsVgM3W4X+/v78v356dOnsqPL7u6urPYOBAJIJpPQNA0H
+BwenOr8QEdHbybIs9Pt99Pt9eN6s8xaDbyKitwODbyIiIiKil+T7PlzPlaH3YDhEr9tFv9/HcDTG
+cDiGZduwbefrcNmH7wPDwQCtdnv25Xd3gP5wgonlQdV78BUNtqtgansIBoOy0jscDiMcCiMWiyIe
+dxEMmKjVanj69CmOjo5Qq9VQq9XQbDbRarVOheBiX0+2Y/+xjEYj7Ozs8IseIiJ6700mE4zHYwCz
+6u/Dw8PZZ4ThUIbiiqLg6OgIe3t7GAwGKBQKiEajmE6nsksLERG93TzPm3X/sm2Ew2FEIpHz3iUi
+Ivoag28iIiIiopdwMkSeTqcYDodot9toNJpoNtvoDCbo9i1MLRu248J1RdjsYzKZYDgcYTh0MRoq
+GNoB6L4Or69g4tnoTQdoDICAaULTdJiGgXBkjHB4jEzKQtHyEIuYODo6xs7ODnZ3d3F4eIh6vY7x
+eCx/JpPJqWpuUeH9YxqNRtjb28NwODzvp4iIiOhciTEok8kE3W5Xfl44Pj5Gr9eTldz9fh+j0QiW
+ZaHb7cL3fTQaDQQCAc72JiK6AFRVlT+5XI6LgImI3iL8NE1ERERE9JJ834fjOLNq78EA7XYb1WoN
+x9UGGj0bzZ6D8XQ259v5Ovj2MbuNY1uwLBe2rcK2TaiOhokH9C0bxmAIw7Rh6AY0XYOum4hGJohE
+phhOXKiqCs+eBd+7u7vY3t7GwcEB6vW6DOPF3O6TQfePHXoDQL/fx3Q6ZYUaERERIEediEpA13Ux
+Ho9PzewWAbkYjdLv92WAwhbnRERvP03TEAwG5YKlVCp13rtERERfY/BNRERERPQSfO+b1uG2bWMy
+nqDXH6HVGaPWmaI71tC3g7BcBa7vwYMP+D58AJ7qwdNd+IoDRXehmy6gKFA0DZ6mwdYNeNDgeCpU
+V4MGDe40gKmiQ+8BkbAF33NhexrCkSiSySRGo5GcNS5+LMvCZDL57r7/iAF4MBhENBpFOBw+76eI
+iIiIiIjoR6dpGnRdh2maCIVCpxY3ERHR+WLwTURERET0kjzPg+d5sCwL48kY/eEE7YGFZt/DxI/A
+VuPwAgbg+1C+DpsVAMrX/676HnTPh+f7s/+uqlAVRf4JRYGvKHBVFRPosG0NxlhHqOfD922oRgSF
+uRIMXUM0GkUqlUK/35c/w+EQjuMAOD3j+8cUiUQwPz+Pcrl83k8PERERERHRj078v5bv+0gmkwgE
+Aue9S0RE9DUG30REREREL8HzPRkki8rq0dhCb2ijO/TgmQG4ZhK++t0vPRQAL1MD4H/9AwAuAHjA
+wPLQGXgwVBeRYBSlaBnZdAK5XA6dTgeNRgPNZhOtVgutVguhUEi2ThVV4NPp9NS879dZAR4Oh7G0
+tIQPPvjgnJ8hIiIiIiKiH59t25hMJhiPx9B1HbrOmIWI6G3BKzIRERER0Rn4vv/NTG3XgeN6cD0f
+vvfjtBP3fMD1fLi+glg8gflMDob6Tfg+GAwwHA5l1Xev15NBeL1eR61WQ7vdlmG44zhyLvjrEAqF
+sLy8jE8++eRNPg1ERERERETnYjweo9Vqod1uYzweYzwen/cuERHR1xh8ExERERG9JFE17XneLEB2
+3Fnw7fqny7VfI9/z4bo+PA+IxRJYXMwhnQjLuXKe68H1XFiWDcuaYjAYYGtrC1tbW7h//z6A2Rcz
+juPAcRwoiiIfy+sQjUaxtraGTz/99E09DUREREREROem1+vh8PAQh4eHqFarqFar571LRET0NQbf
+RERERERnIGa5zeZ9fzPbDb4PBa8nTH7WfQIKNE1DIBBAOBxGIBCAaZryd0QYP5lMoGkawuEwotEo
+kskkyuWynAHe7XbR6XQwGAxg2zYcx5Gzy18lDNc0DcFgEIlE4ryeEiIiIiIiojeq0+kgFApB13W5
+uJiIiM4fg28iIiIioh9AFHr/2F91vGgst6Io0HUdwWAQc4U5RCIRzM3N4erVq2g2m6hWqzg+PsaT
+J0/w+PFj7O/vw7IsOQfccZxvQnwiIiIiIiIiIqILhsE3EREREdGr8vF1Iv3jhcU+Xq6LuqIoUBQF
+pmkinUkjnUljaWkJvu/Dsizs7u6iUqkgnU5D0zT4vo/hcChn0k2nU0wmEzkDXATgDMKJiIiIiIiI
+iOgiYPBNRERERPQKfN+H/yMG3q+TrulIpVIAAMMwkE6nceXKFbTbbbRaLRwfH+Pw8BD1eh2TyQTj
+8RiWZcH3fbiuKx8vERERERERERHR24rBNxERERHRO0xRFKiaimQyiVgshmKxiBvXb2A0HuHo8AiH
+R4e4f/8+vvjiC3ieh263Kyu+xfxvht5ERERERERERPS2Y/BNRERERHRGFy0IVhQFhmHAMAwEg0EA
+QNJLwjRNRGNRGIYB0zSRzWbRaDTQbDbRbrfR7XbR7/dhWRbG4zFs2z71+C/acSAiIiIiIiIioncX
+g28iIiIioveQoiiIxWLQNR2hUAhzc3O4ceMGqtUq6vU6dnZ2sLW1hUqlgm63K0NuUQHOSnAiIiIi
+IiIiInqbMPgmIiIiInoPKYqCUCiEUCiEdCaN5eVluI6LeqOOWq2GBw8eIBKJwDAMVKtVmKaJ0WgE
+27bhOA4sy4JlWXJbRERERERERERE54nBNxERERERAQAUVUE4HEYul4PrugiFQlhaWkK9Xkej0cDx
+8TGq1SpqtRq63S663S5UVWXwTURERERERERE547BNxERERERAQBUVUU0GkUoFEIymcTq6iomkwna
+7Tba7TYeP36MW7du4f79+9jb28NkMmHoTUREREREREREbwUG30REREREJKmqClVVYRgGQqEQ4vE4
+wuEwkskkdE2HpmlIJBIol8s4ODjA2toaSqXSee82ERERERERERG95xh8ExERERHR9woEAtA0DYtL
+i4jFY1hdXUWr1UKz2UQmk8Ha6tp57yIREREREREREb3nGHwTEREREdFzKYoC0zRhmibC4TAKhQJ8
+38d4PMZoNIKmaQiFQue9m0RERERERERE9J5j8E1ERERERGem6zrC4TAURYGmaee9O0RERERERERE
+9J5j8E1ERERERGeiKAoMw4Cu6/LfiYiIiIiIiIiIzhODbyIiIiIiOjNFURh4ExERERERERHRW0M9
+7x0gIiIiIiIiIiIiIiIiIiL6IRh8ExERERERERERERERERHRhcbgm4iIiIiIiIiIiIiIiIiILjQG
+30REREREREREREREREREdKEx+CYiIiIiIiIiIiIiIiIioguNwTcREREREREREREREREREV1oDL6J
+iIiIiIiIiIiIiIiIiOhCY/BNREREREREREREREREREQXGoNvIiIiIiIiIiIiIiIiIiK60Bh8ExER
+ERERERERERERERHRhcbgm4iIiIiIiIiIiIiIiIiILjQG30REREREREREREREREREdKEx+CYiIiIi
+IiIiIiIiIiIioguNwTcREREREREREREREREREV1oDL6JiIiIiIiIiIiIiIiIiOhCY/BNRERERERE
+REREREREREQXGoNvIiIiIiIiIiIiIiIiIiK60Bh8ExERERERERERERERERHRhcbgm4iIiIiIiIiI
+iIiIiIiILjT9vHeAiIjeHb7vw7ZtuK6LSqWCSqUCx3GwuLiIxcVFBAIB6LoOVeW6KyI6X7Zt4/Dw
+EIeHh/B9H6FQCOFwGMlkEqlUCqZpnvcuEhERERERERER0Rkw+CYiotfGcz1Mp1OMx2N8+eWX+Jd/
++ReMRiP87ne/QzweRyKRQDAYZKBEROduOp3iwYMH+POf/wzXdZFOp5HP57GxsYFwOMzrFBERERER
+ERER0QXD4JuIXovpdIrhYIjBcHDm25qmiUgkgmg0CgBQFOW8H865E5XTw+EQg8EAwWAQkUgEhmFA
+07Rzq5j2fR/D4RDD4RCe5yEUCiEUCkHXdKiaCtdzYVs2xuMxtre38ec//xmDwQClUgm//OUvGXq/
+gO/78H0frutiPB5jPB7DcVyEw7PjrGkadF1/5deI7/twHEeeV6ZpIhwOIxAIyPPK8zz4ng/bsTEa
+jjAaj2CaJkKh0Oz3VA2arp33oSL6wWzbxt7eHr788kvYto25uTksLS0hlUphdXX1vHePiIiIiIiI
+iIiIzojBNxH9ICKoOzo6wn/+53/is88+O/M25ubm8LOf/QyffPIJVFX9QcHeu0AEj0dHR/jLX/6C
+zz77DJcvX8aN6zewuLR4apHAm3IykL19+zb++te/Yjgc4vr167h58ybi8TjC4fB7/by9Dp7rYTga
+YjQa4d69e7h9+zb6/T42Nzdx7do1pNNpxGIxBIPBM2/b9314rodms4k///nP+Oyzz1Aul3Hjxg2s
+rq4iEokgEonAsiyMhiNUa1XcunULt2/fRrlcxrVr17CysoJYLIZYLMZ29URERERERERERET0VmHw
+TUQ/mO/5ODw8xL/8y7/gn/7pn858+/X1dRiGgQ8//BCmacL3/fc6QPU9H47r4Pj4GL///e/xP/7H
+/8Avf/lL6LqOaCwKVVURiUTe+DFyXReu6+Lu3bv4p3/6J7TbbfR6PeRyOQCAYRis5v6BHHdWjd1q
+tfD555/jf/7P/4lGo4H/8l/+C2KxGBRFgWmarxx8u56LZrOJP/7xj/jv//2/49q1a1AUBclkEoqi
+IBwKYzqdotvr4unTp/iXf/kX/PM//zOuXr0K27YRiUQAANFIFGDuTURERERERERERERvEQbfRPSD
++L4PYNYyttvt4vj4/2fvPpvjyNIzYd/pq7K8QxW8I+iaZLvRjDQaSSFtKBRvxEbsD9hfuJ+1UuyG
+QrvSrrStnulpQweSILxHeZ8+3w+FPARI0DabAMj7isGwu1lApS1k5n2e5xygUCgglUohHo9D1/XX
+hqGTk5PIZrNQFOWTDryfF23TarWKVqt13PbaQxAE57I8UdV3v99Hs9lEs9lEt9uF67rwfV8cC/Tu
+JEmCoijQNA3JZBK5XA5BECCdTsMwjJ/X5jwIRQv9TqeDRqOBZrOJfr8P13XFcRUtg2EYyGQyKBQK
+yGazotW+qvLSgYiIiIiIiIiIiIguHj69JqL3SpIk5PN5XLlyBRMTE8hkMkin06/8nkqlgqWlJaiq
+CkVm+E2fLkUeBc6pVApzc3P4+uuv0el0cO3aNRSLRRE+/5I0TYNpmiiVSrhx4wYcx8H09DRmZmaQ
+TqcRi8UgyTxHiYiIiIiIiIiIiOhiYfBNRO9dNpvF0tISbty4gXK5jEql8srXG4aBbDaLTqeDIAgQ
+BAEURUEikUA8HhdBeDRHcRAGGAwGGA6HAIBYLIZ4PA5VUSErsnit7/uwbRuO7cD1XHiejyDwIUkS
+JEmGqirQdR2qqkLXdWiadmre4uj9PN+DZVmwbRtBEMDzPNGOXZJkaJoKVVGhaio0TYOiKBgOh2L5
+TNNEMpk8fv3pwNCyLFiWBc/zIEsyZEWGbduwbRu1Wg3D4RBhGMK2bTQaDRwcHMB1XViWhVgsJpZb
+VVUoivLa9dVUDZquibbkbzpPc1Ql3O120e124XkePM9Dr9fD4eEhJEmCbduIx+OjZXAcWJY1mq88
+DOF5HmzbRq/Xg23bUBQFQRAiDAOx7LquwzAMGIZxap9H+9J1XfGzo/0QrZuiyNA1XaybpmpQVOWt
+j92T+zzaD77vv7DPdV07te01TYNt2xj0B3A9F4qiiOPK0I0zl8X3fDGfd1TlLcsywjCEoRvI5XKi
+G8LY2BgSiQQMwxCvCcMQYRDCduyXbhdZlsTyOY4jjqvBYCCOq1ardeq4UhQFYRhCURTkcjnMzMyg
+Uqkgl8uNzrPjqvMgCET7+5PbKqr+f35bRedaVDEeVZ8PBgP0+31omgbDMKAoClzHheu54j2eP35j
+sdg7DQCItpvnPTunR8scnHmuqJoqjsvoOHyb9Y32a/TenjdqZd/v96Gqqqjit237uOp+dE5IkgzD
+eLbNovP05OdQtF2042WMjkdN08RxPLSGGAwGcBxHnFtBEMBxHLiud7xcgfg8iD6/ZFkWx8PJ5VJV
+FbqmQ9VGy67rujhXg+DZ53K0TcMwEOsedRKQZVksS3SeRMf0Wcsci8XEMo86XoyWJfre6LiJzo1I
+tI2iz43R/nq2nxVFQafTQafTEecOu1YQERERERERERFdbgy+iei9MwwD6XQahUIBY2NjGB8ff+Xr
++/0+NjY2UK1W0e120el0kM1m8fnnn+OLz7+AJI8CY8/zMBgMMBgMcPfuXdy/fx9hGOLGjRv47LPP
+kEwmkUqlIMsyLMvCcDjE2toaNjY2cHh4iF6vJwInTdOQyWQwPj6OiYkJVMoVjJXHkEqlxHJFYcnR
+0RHW19exvr6ObreLXq8Hz/NEiFcoFJDP51EoFFAqlVAslnD//j3cu3cPAPCrX/0Kv/71r8XrT4Yz
+W1tbePz4MVqtlghvGo0GGo0Gnj59is3NTYThaA71f/3Xf8XKygri8ThM08TU1BRmZmYwPj6ObDaL
+XC6Hrc0trG+s4+DgAL1eD71eT6xvKpXCxMQEJiYmxICEk+v7Ks1mE99//z1++OEHfPfdd2g2mxgM
+Bnjw4AEcx0EymYRpmkilUsjlcigUCtjZ2REhWLfbxcHBAVZWVlCr1dBut+E4DhzHEe20x8fHMT8/
+j4WFhWfhqh9gMBzAsixsbm5ifX0d+/v7Yl9GwWIqlRL7Mlq313UaOItt27AsC41GA6urq9jc3ES7
+3Uav14PjOCJYLJfLo+OmUkG5XEGlXMb6+jru3buHo6MjZLNZZDIZTE1NYXp6GsVi8YX3arfb+OHH
+H3Dv3j2k02mUy2XRVjybzWJvbw/ff/89Go0GJEnC5OQkTNNELBZDGIajQRNDC5tbm1hbW8Pe3p7Y
+57IsQ9M0xONxcWx2Oh3U63Vsbm7i6dOncF0XR0dH+Pd//3dsbW2J4yo6bwHg0aNHePLkCW7cuIFM
+JoNyuSxCYMuy0O12Ua/XsbGxgc3NTXQ6HQwGA7iuK8LYcrmMqakpjI+Po1QqYaw0Bj/w4TgOqtUq
+vv/+e/z0008oFAq4cuWKWPfd3V0Mh0PYtg1ZlsVxNTs7i4WFBVQqlbfuDhGFua1WC2tra1hfX0ez
+2RQDMqJzJfr8KpfLmJmZwezsLHzfR6/XQ6PRwPr6ujg2Tq5vdGxMTk5iYmICY2NjYt9Hg1f++Mc/
+4qeffkI6ncb8/Dzy+Tx2dnawt7cHy7Lg+z40TRPHTjabhWmaCMMQa2trWF1dRb/fh+M4kGX5+Bgc
+beOpqSmUSiXx2fXo0SP8+OOP2NnZwdzcHBYXF9HtdrG3t4dqtQrf9xEEAQqFAqanpzE+Pi4G6hwc
+HIjjKjpXs9ksKpUKJiYmMDk5ienpaXE89Pt9PHjwAMvLy2g2m6dC+iAIRECdSqUwMzODubk5FApF
+ZDJpJBIJMXjj8aPH+OHHH7C9vY2FhQVcuXIFw+FQLHP0ukQigXw+j7GxMfG5kUgkxKAMy7IwGAyw
+s7OD1dVVbG9vi98fiqIgHo8jCAIsLy+jVqshHo/D87z38SuQiIiIiIiIiIiIzgmDbyJ676IgMgrQ
+JiYmXvn6zc1NbG9v49tvv8Xh4SGOjo4wPj4OXddx+/ZtKFAgKaPgu9vtotFo4A9/+AP+x//4HwiC
+AH/zN3+DXC6HSqWCWCwGVVXR7/fRbrfx8OFDfPvtt3j69Cnq9ToajQZisRgMw0C5XMb169dx69Yt
+eJ6HVDp1Kgh2HAfdbhe7u7v4wx/+gG+//Ra1Wg2NRgOO44hK0MnJSczOzmJubg5XrlwBAPzhD3/A
+P/7jPwIYtX+/desWTNOEIivAiSLr7e1t/Md//Ad2dnaQTCaRSCSwu7uL3d1dHB4eotlswvd97O3t
+oV6vi+BckiTcuHEDX331FW7cuIHp6WmEYYgHDx/g22+/xcrKiljfKFCPWlffunULjuMglUq9cfDd
+arXw3Xff4e///u9RrVbR6XTQ7/exsrKCjY0NsUzpdBpXrlzBtWvXsLu7C8uyAADdbhf7+/tYXV3F
+gwcPsLOzI6pDK5UKpqencePGDSiKgtnZWVEV7PkehsMhWq0WlpeX8e233+Lx48eo1WpoNpsiTCsW
+i2IAxPXr15FIJN8p+HYcB51OBzs7O/jjH/+IP/zhDzg8PES9Xodt22JbLi4u4ubNm/jss88gyzJK
+pSI2NjbwL//yL1hdXcX4+DgmJydx584dZDKZs4PvThvff/89/uEf/gGlUgnXrl3DlStXMD8/j3g8
+jt3dXfz00084PDxEpVLBn/zJn8BxnlVBDwYDdLtdPHnyBN988w0ePnwo9nlUQZ9OpzE9PY3Z2VnU
+ajVsb2/j4OAAzWYTtm3j8PAQ7XYbd+/eFftwenoa165dQzKZxP3797GysgLP80QXB9/zAQDWcDRA
+YGNjA//xH/+B7777DtVqVQxqiMViiMViuHLlCj7//HPcunVLTIUQBIEIM//v//2/+Id/+AdMT0/j
+t7/9LaampnDv3j0sLy+Lue0lScLU1BRmZ2fx9ddfI5VKoVwui/PrbfZvv9/H4cEhfvjhB3z77bfY
+3d1FvV7HYDAQ53SlUsHMzAyWlpYAAOPj4/A8T6zvt99+i++++w5HR0dot9uiA0M8Hsfi4iJu376N
+27dvAwByuRzCMMRwOMT+/j7+/d//HX//93+PsbEx/Mmf/Ammp6dx7949PHz4UAyqicViuHXrFr78
+8kuMj4+jWCzC93188803+Pbbb1Gv12FZFmRZxtLSEq5fv47bt28jkUigkC8cd1fo4+HDh/jv//2/
+Y3l5GV9++SX+9E//FPV6Hffv38fm5iZc14XneZiZmcHnn3+OmzdvolAooFAoYHl5Gd988w0ePHgg
+OlOUy2Vcu3YNN2/eBIBnAyGCZ8H3P/3TP2F3dxfdbheDwUBUxRuGgWQyiWKxiK+++uq4ejuAro9a
+60f7ZvnRMv7xH/8R9+7dw5/8yZ+g3++j0+ng/v37WFtbw3A4qgjP5XKYnp7GlStXEAQBxsfHkUgk
+RCeEwWCAdquNlZUV/Pu//zt+/PFHtNtttNtt8TsqFouJwSL5fB6u677T7zwiIiIiIiIiIiK6GBh8
+E9F7J8vyqTa0r2tJbJqjyr2JiQk0Gg10u10AwMbGBh49eiQqVnu9HjY2NvD48WPs7u7C8zxRpZpK
+pUTr7na7jUePHuHx48fY3NxEv99HLBbD2NgYstksZFmGLMvQdR3VahXfffcdwjBEKpUSy6vrOjY3
+N/H48WM8efIEa2tr6Ha7UFUVpVJJrGdUxd1qtXB0dISxsbFTAb0kSej3+6Lq8Xm2baPb7aLdbouA
+SNd1jI+PQ9M0uK6LarWKZDKJfD6PVCol3nN+fh6VSgWapmF7exvr6+vY2tpCr9cTQXc2m4UkSafW
+949//CN830c6nRathGOx2CsDxGigwMLCAsIwFIFWVK0dbbOomrNUKiGZTEJVVQyHQxwcHODevXvo
+dDoiII9CxijYlyQJ5XIZc3NzyGazSCaT6Pf7ePLkCR49eoSNjQ10Oh3ouv7Cummahnq9jh9++AFB
+ECCVSsE042+0bsCzFtj7+/tYXl7G06dPsbe3hyAIkEwmEYvF4Pu+CId938f6+jpc14WqqigWixgM
+BuJ9ms0mhsMhisUi+v3+qfdyXReu66LVauHw8BB7e3ui7XO0XYBRSBu1AY/a4QeBL9qDR9XYKysr
+oirXNE0xPUB0/vm+j6OjIwRBgGKxCE3TRIibSCSQy+WQyWRE2/aocj5qzd/v90VVs+/78HwPruti
+d28X9+7dw6NHj7C1tXUq7I5aWwOj9txPnjzBcDhEEATIZrPQdf243baLdrstzpXl5WVxPsTjcYRh
+CF3X4fs++v0+nj59KjoXFApFJJMJ0eXhVfs2miJhb28Pjx49wsrKCp4+fYpmswlZlkXXBkVRoCij
+edajNv7tdhuu4+Lg8AB3794V6xsNhBgbG3thfZ8+fXpqfWOxmFjfTqeDRqMBz/OwsrIC27bR7/eR
+TqchyzIGgwEA4OjoCD/++CO2t7eRz+fFMR4FyIqiwPd9NBoNPHjwALquiy4Eo8rxZ4NGarUaNjc3
+kclkEAQBJElCNpsVIfJgMMDa2hp6vR5yuRzy+TwajQZs2xafOVH7862tLbiui0wmg7m5OfE5eHJ7
+Ry3cM5mMOLcijuNge3sbADAYDGAYBvK5vGjTPxgM0Gw2UavVsL6+jnQ6DUmS4Lou0um0+KyRJAlH
+R0dwXRfFYhEzMzMIggCJRAIAsL62jofLD/HkyRPs7u6K49MwDNENQZblU1Xpl6HVeRgG6PV7qFar
+sPqtt+56QPQy0bVR9Lsg+h0di8XEVDI83oiIiIiIiIjoomPwTUTvnZh/+Pgr8IMzXyfJoweoyWQC
+S0tLME0TnU5HBDDb29v44YcfsLS0hFgshm63i8ePH+Pf/u3f0Ov1RHvs2dlZUSEuyzLq9Tp+/PFH
+/Mu//Iuowrxy5Qry+Tzy+byYf7tWq2FrawsrKysiGI/H40inM0inU3jy5An+1//6X1hfX0cYhtA0
+DdPT05iYmEAymRTzXDebTRHY27b9s7dfNKdytVqF67rY3NxEuVzGF198gcXFRSSTSdGKuVQqodvt
+4rvvvsOPP/4ITRtVTy4uLooBA1Hb96jN9Q8//ABN0zA2Nmrtns/nEYvFXrlM2WwWX37xJRKJBP75
+n/8ZrdYocFlaWsLXX38tguqoaj0ej2N/fx/3799Hq9USwXbUBWBubk4EwDs7O9jZ2cH6+rqono9a
+Y7dbo2rk//2//zdkWUY8HsfCwoIIKm3bxnA4RKPRwObmJu7evQtFUVAsFkUof3LO8Fcdr77vY3Nz
+E//v//0/rK6uIhaLoVgsiiAwFouJoHBnZwdbW1uoVqtIpVKYmpqC7/soFouiHfbu7i6Ojo5EkBlx
+XVcMjIjaqEuShFKphNnZWSQSiZcGudFcx41GA99//z3+9V//Ff1+H2EYnmrdDwC+74tt02w2UalU
+MD8/jzAM8U//9E84ODhAsVjEF198ISq8U6mU2Ie1Wg2PHj2Copyen9z3fRFefvvtt3j48KGoLo/2
+byKRENMCHB4eYnNzE7u7u4jFYpicnEQul3thQEyn0xFtvIvFIq5evXpqe21vb2N3dxfpdBpTU1Mo
+FAqYnJxEPB4XgwVeJgrr19fX8W//9m+4d++e2O9RW/JcLifO6SiMj/bP0LLE+t67d0+07J6dncXY
+2BiSySR6vR663S6Ojo6ws7OD7e1txGIxTExMoFgsQlVOX3L1+33s7OyI4+b27dtif7VaLfT7fdy7
+dw+xWAzpdBqpVArpdBoLCwvwvFGoHb1f9BkWdQyIjuuTx1yj0cCTJ09QKpUwPj6OK1euiGMj6myx
+sbGBVCqFTCYjOkKUSqVTn5nVahX1eh1TU1O4c/sO4vG4CJFTqRTGxsaQy+WQTqdFQK+qKtrtNg4P
+D9FoNFCv18VgjYmJCVxduvrCPrNtG9VqFQ8ePDieQqKI2dlZ8blxeHiI7e1tbGxsYGJiAjMzM8eD
+ZypQVQUPHj7AP//zP6NWqyEIAmQyGYyNjaFcLkPXdVGF/+jRI7Tb7Z/9uf2hBL6PTruDnZ0eFLhw
+HOe9/N4hiqZriMVi4vdA9PsvHo9DhQpFVX7+GxERERERERER/YIYfBPRe+c4jqhmVRTlzCo6SZLE
+/MxRUDlWGsPy8jIymQyq1SoODw/x448/ivl92+02VldXcf/+fTF3+LVr1zA7O4tisSjmta1Wq3j6
+9Cnu3r2LK1eu4ObNm7h27RoWFhawtLQkguoHDx5ge3sbe3t72NrawtbWFjKZzHEFoI+1tTX89NNP
+ODg4wMTEBKanp3H16lXcvn0bxWJRhEFPnjyB7/tQFOWVladvqlKp4KuvvhLLKMsyisUi7ty5g9/8
+5jcoFAooFosiuHv48CGq1Sru3r2Lubk5jI2N4erVq7hy5QoWFxfR6XTQbDaxvLyM7e1t7O/vi/WN
+QqBCofDKcDiRSODqtauYmp7C9vY2vv/+eziOg7m5Ofzud78T7ZhjsZhoi/z999/DMAwR0jUaDYyN
+jWF6ehpTU1OiwjIKnKMwbGNjQ1TdNptNrK6u4u7du5iamsKNGzdOrVsUMq+srGBnZwf7+/soFArY
+3t7GxMQEdF1HPpc/1V7+eWEYimNnZ2cHy8vL2NrawtWrV3H16lUxz3A2m0Wz2USz2cS//uu/Ynl5
+GZ1OR2xLx3HEcdhoNHB0dIRarYZ+vw/XdcXxEVW01ut19Ho9uK4rKvQnJyfh+wHC8OzBIo7jIAxD
+HB0d4cmTJ/j++++RSCQwOTmJyclJ3Lx5E59//rkI9Wq1mqi2Hh8fx1dffQVN0/Dw4UMoioJcLofP
+PvsMf/EXf4F8Po9SqSS2x5MnT0QVciSaOzkIQrGtnj59isXFRczOzoptVigUcHh4iGq1ij/84Q9Y
+WVlBu93GxsYGtra24Ps+stnsqXXzPE/M3b6wsIAbN26I+aOr1SparRZ6vZ4IlicmJmCaJiqVyivP
+p8AfLXOv18fW1hbu3r2Lhw8fYmJiAlNTU1hYWMDt27cxMzMjzun19XWsrKxgMBgcL1cXOzs7olp8
+cXFRtEK/du0axkpjODg8EB0koqkVornPo4EJJ0UDE2zbRj6fx+3bt8W869vb27h37x52dnagKAqy
+2ayYL3xpaQm6rsOyLFSrVTSbTRwdHYnpEVqtlmjJf/K9HMdBr9fDxMQEZmdnMTs7i6OjIxwdHeHR
+o0fY2dnB4eEh0uk0crkcFhYWsLCwgPn5ebGc9+7dO3Wu1uo1ZHNZaOqoU0bUflzTNExOTmJsbExM
+R7CzsyM6FDx+/Bjr6+tIJBL4zW9+A8/3XhggFc0j32q1xCCnpaWl0WCqIMC9e/fEFBD7+/vY3NxE
+PB4Xbf6jz2/f9zE5OYmpqSmxvwzDEIOBms0mtre3RTeHiy4IAnTaPfi9HhyrKwZnEP1chmFA13XR
+RSeTyaBUKmFsbAyZdAZGbFT9rev6KCRXNUiy9F6ue4iIiIiIiIiI3hcG30T03u3t7eGbb77B6urq
+S+eRjtpdZzIZTExMYGlpCVevXsX09DRu376NtbU12LaNn376SXyP4zjY29tDr9fDwsKCmNc2mus3
+aje+vb2N4XAo5uq9efMmbt68iWKxKFrlJpNJ0d53a2sLmqaJysl6vY5CoYBqtQrbtkXFeDT/8OTk
+JFKplKg8jILHqHLz54rakkeDAqL/FrX4jSoso3bAe3t7sCxLtCO/efMmbt26hWKxKNosJ5NJ2LYt
+1tcwDFSrVayvr4/ak0/PvDIclqXR+xv6qIVx1AY7CqhPtkz3/QC+54uH4YlEAouLi/jyyy+xsLCA
+xcVFFAtFBMfhblQRXK/XEYYharUaDMNAEARinuAoGL5+/Tru3LmDUqmEXC4H0zRF9f3c3By2trYQ
+i8VQr9exvr6OZDKJ6elpKHh5lZpt26MA8PBIVIemUinMzc3hyy+/FBW78fiodXo2m8XW1hbW19dx
+cHAA13WxtrYmKuMkSRKhaavVQrPZRLvdFm3Ie70ednZ2sLe3hzAMRSeCTCaDeDwOx3HgOGfPNRxt
+j/X1dTH/e6FQwOeff47PP/9cHJ/R+RJVrM/Pz6NcLmNiYgKtVuvM48qMj5bP93wEQXjmQI5oUEvU
+vt5xHMTjcczMzOA3v/mNqIBOJBJIJpMolUrodDoimLVtG48ePYLjOFhcXDz1s6Pw9/bt25ifn8eV
+K1egazqCMEA+n8f29jY2NzdhmiYsy0KtVhMDKF7F9VzUqjXs7u1if38fw+EQuq5jdnYWf/Znf4b5
++XlMT0+LOZ6jltqVSgW9Xg+pVApbW1un1nd6ehq//vWvMTs7i3K5PGqtnzBFB4ajoyMoigLHcfDk
+yRN4nocrV66cWq5cLodbt27hiy++wPz8PBYXF+H7PiYmJpDP53F4eIgnT54gmUziypUruHHjhghu
+o3b1BwcHYkqIMBzNs12r1ZDNjsLoSCwWw/T0NL766itcvXoVi4uLKJfLKJfLYk72jY0NyLIsPjOv
+Xr2KpaUlTE1NwfM80WI/GsQQdR7odDqiGj2quo7anIs5t8NQVOjbto29vT34vg/LstDv99HtduG6
+7ql9GS3zF198IQagTE1OAQCCcDRHfDS1g6IoaLVaYgoMVVVRr9fheZ4Y3PH111+jXC6jUqlAVVW4
+rotcLof19XUxBcbJlu0XVeAHaHWbaAz20WqMBi40m83zXiz6CERTPUSDVQzDEJ/l2WxWdJmJumTk
+83nR4YWIiIiIiIiI6KK4+E/4iOhSieZJbjabIjg7q4pOkiQUi0WUy2XcunULpmnizp07mJmZwRdf
+fAFJkvDDDz/g4cOHImSVZRl7e3tiPtwoNIrmdG21Wtja2sLu7q4IgsfHx3Hr1i3cuXNnNOexqiGd
+TouW0aurq9jc3BTBd1R9GVXs2rYN0zRx9epV/N3f/R1M04Rpmqcq2aenp+G5HoaWhX6/97Or76KK
+RV3XTwWUuq6LcNmMm9jb28P+/j729/fF+lYqFbFdNE2DpmrwA1/MYTs3NyfWN5r3d2pqCkEYvDIc
+luRRmBWLx8R8v1HAFYXeUTA8Cskc8Zp4PI7r16/jP//n/4zx8XEUCgUkk0nxs7e3t7GysiJCr1qt
+Jqo9o9biuq6Ldfvyyy/FoICo+hMA5ubmsL6+DlVVUavVsLGxgcnJydcGo47j4OjwCE9WnqBeryMI
+AqTTaczPz+PXv/410um0CPuz2SzCMMTW1hbm5uZEJe36+jo0TcPs7CySySQMw8BgMEC73RZV4sAo
+zOt0OtjdHYWwUSBYKpWQTqfFvNavCr6j6tZ2uy3m7f7666/xV3/1V2I/ROdiEAS4cuUKHMeBqqpQ
+FAXD4VAcV5Ikida2RswQwbvne2KdT3JdVwy2ODw8hOu6ME0T8/Pz+N2f/w6lsZLYN9GczZ1OB/v7
++/A8D7Zt4/Hjx1AUBWNjY6dalI+NjeHXv/41/uav/wbFUhGFQkEEkfl8Hk+fPsXKygpUVYVlWajX
+6+j3+68Pvl0X1VoVq6urODg4EMH3/Pw8/vqv/xoTExOiXXoU0k5PT4tlX11dFYMconmi5+bm8Nvf
+/hbj4+NifcfGxkTV+sHBAWzbFsG3LMuiJXokn8/j66+/xt/+7d+iUCigUCiI4z6fz4tuF+l0Gjdu
+3MBf/MVfYGZmBrMzs9CN0bLu7u7i+++/F8dN1AFB07RTA46i9f1P/+k/YWlpSZyDUXeGarWK3//+
+95BlGePj4/j1r3+NmzdvYmZmRsxhDozmHf/973+P7e1t0dmg3W5jbGwMsVhMTDsRfTYAwHAwxGA4
+gO/7AEYVy/fv3xcV71GV//OdQVRVxcLCAv72b//2uItAEblc9tS58PTpU9RqNSiKgna7DVmW0e/3
+IcsyarWaCL5v376Nv/3bvxVhniRJCMMQjUYT9+/fRyaTge/7L7Tfv4j8IEC73UT7YAf7uxujyvta
+7bwXiz4C0bVW9M+yLIswPJ1OY3JyEjMzM7h16xZ83xe/Uxh8ExEREREREdFFwuCbiN470zRFiBdV
+Lp+lWCyKNprJZBKyLKNQKODKlSvodDrY3NyEqqpoNpt49OjRaI5JVcWVK1cwNzeHcrmMTCYjKhuj
+1rX1eh3tdhuDwQBbW1v47rvvUK1WX3j/w8NDrK6uotVqwXEcUXEYhqEI6QzDQCaTQT6fH7XtVTXI
+yukwPxaLIQxDxIZD+L73s4Pvk0H/SbIsP/tSZBE8nVzf7e1tfPfdd2g0Gi/83Gq1ipWVFTQaDRFQ
+5/N5OI7zRst0ctmeX86TgxxkST71OlmWkUgkUCqVkM/nkUqlTj0oj+YGj1ozD4dDdDodSJIkwuNo
+Xu0//vGPZ87HW6/XsbKygmazKaphc7kcLMs6s9X+Sa7rotPtoFqtotFoiPbjjx8/xv/5P//nVMvo
+yMOHD7Gzs4NWqwXXdcXc0FEFeiaTgWmaooJ9b29v1Fo8m0Ov18P+/r6YCmBiYgKlUgmJRAKKrLyy
+3fLJObuDIIBpmshms6JqXJGVM+dgDcMQgR/A871X7kNFHoUcL1sG3/PR6/VQq9UwHA6hqip0XUcm
+k0Eul0MqlXrhe6NKwWw2i36/L45X27ZPBd+apiGbzaI0VkImkxGfCSePkUQiIQJ1y7Lged5r96/v
+j5a5Wq1iMBhAVVUkk0nkcjkUiyVks9kXqtujc1qSJARBgEajIQYMRC2AX7e++XwevV5PVPxblnUq
++I7C6WKxiHQqjYSZEO+dy+UQi8VEgJxIJJDNZkevSybEMZlMJhGPx6FpGmRZhu/7sG37he0iyzJM
+0xTLdfLzOZFIIJFIiIEOhmEgnU6LObpPLrNpmjAMQ4Ta0bHv+z583xdzo3c6HTHH+2AwgGVZsG0b
+lmWJzyzXdeH7vvisVWQFsiK/sMzFYhGFQhGZTBqmaYq/j5bbNE1IkgTbttHtdsVAiOh8TKfTyOfz
+KBaKL7RlNk0LsVhM/I66DK3OZUmCoRtIJEfHxHA4fO3gD6I34fu+mH4k+p3muqN55C3Lgu/74nxu
+NpvY2trC/Pw85ubmkE6lkUwlT32mExERERERERGdBwbfRPReSZKEfD6PpaUlTE5OIpPJvDC3bSRq
+j1upVDAxMQFg1P5X0zR0u12srKwgn8/Dsiysrq4ik8lgfn4eX331Fa5fv458Pi+CaACwLEsEL81m
+E51OB/fv30e9Xj+z3fpgMECtVkO9Xkc+nxcVprIsIwgC+L4P0zRFiKkop4OZ59f7Q7OtUdATrW+7
+3cbDhw/RbDaRTqdfeH0053O9Xkc2m0UQBLBtG67rvsO7v7mTwerJ0DVyssIdgGipDEBUsLbbbSwv
+L6PVap15PEVVq/V6HZlMRsxTHVWZvkoQBGLe7WhbdrtdfPPNN9jc3BTV0Sc1Gg1RUVooFET1uWGM
+qqZFEK0oaDQa2NzcRDKZxNTUlAi+j46OUCwWMT4+jkqlcirUe+k+t210Oh3R3jmbzYoQ86wK7ZP7
+4H3wA18MRvA8T1SYm6b5woCQiGEYyGazyGQyGAwG6Pf7Yt7zs46Ts7pERJXphmHAtm3RseFNgu/A
+D9Dv98UghWhbJRIJ6Lr20qBfkiQEfiAGYriuK0JS0zRf2s0iGggQrW9U0ex53svXVz4eJKLIUKGK
+bg/R+RK9Nnrds58hi9bE0eujwTtnrc/JZY5C9WjbRoHw8687SVEUqKp66nMyej/btrG9vY3l5WXR
+eSPqmmHbtvh+z/Owvb0t5quPQvNo/c9aZkWRzxwIpOu6qOB2XRfD4fDUOZ9KpZDNZhGPx1/62X3Z
+SLKEVDqNtDGOlKmLKQWIfq4o6I6mIOj3+xgMBuL8bjQa6Pf7aDabWF1dxezsLL744gtYloXp6WlM
+a9MMvomIiIiIiIjo3DH4JqL3LpfL4dq1a7hx4wbK5TLGK+Nnvk43RmFnVLUKQMwJ3mg0MDY2hkwm
+g8PDQ1SrVTiOg88++wy3b9/GzPQM0un0qepW13XR7/fR6/UwHA7hOA7q9ToGg8GZVedRuO37o/mo
+DcMQ1cJR5WA8HhcVyq8KFoHTVdEfguM66PV6p9Y3qkx90/U9We34S3pVmBbNMx1VkUYVoFHrZsuy
+Tq3bWQ/Wn1+3KCR9kzl7gyCAZVli/mzbtjEYDHBwcIB2u33mMkfvpeu62JZRAJxKpZDP51Eqjdp+
+1+t1bG9vY3x8HI7joNPp4PDwEM1mExMTE6I99Ju0i/U8D8PhUFQfR1XQhm68EAz+EkZt2B30+334
+vg/DMES1/svePzrHE4kEJEnCcDgU1YNnHSdnDY6I5pPXdV2E3Z7nvVGlqx+M2tFHlfxRlbNpmiLA
+femxEQZifT3PE/s5FoudOSAiWt9oXtyoEjmqTn/d+kqSBEVVRHvh132WyLIkwuhoeV4WfJ/1flHw
+frJjw1ndHZ7fD9F2i46H4XCIZrOJtbU1/PTTT1hbW8P+/j7q9Tp8fzTVQnRORu3Io/0YVfCftR9e
+djwAp0N4SZJEtXs0oEKSJFEVHoXjHwNZlpHJZJHWDbjFLMbGxsRAIaJ3FZ3L0Wdlu91Gq9VCs9lE
+q9XCYDAYdUfpdNBut0U3E9/3oSgKfN9HKpUa/d5V1DM7jxARERERERERfQgMvonovdP1URVaFP6V
+K+UzX6coKlRVEVV7J51V/XmyBbnruS8EZ9H8vKqqIpVKoVAoYGZmBnNzc8jn8y+8f1RtGAQBstms
+mL/56OgIR0dHp5blfXndXNpvKwxDEYAWCgVMTk5ifn4ehULhzNdGAXHUqnlychJTU1OQpYtVDRnt
+S1mWxbE0Pj6Oubm5M6sbn1+3bDYr5iN9WUD5/HuFYYhYLIZsNotEIoHZ2VksLCycGZ5H76VpGnK5
+HHK5HJaWlpDPj7Z7sVjE7OysqDTe2trCzMwM2u1RaNButzEcDmGapmjbH81V/ybbJvKyUPAiO49l
+fn6bnfzzl36/59/3XVyUfXzWvuv1etjc3AQAPHjwAMvLy/A8D1NTU7hx44YY9BBVpQ8GA/z+979/
+r2HtyWV6fo7iy3iOvIoiq8hm4pgeK0NXAlGlS/RzRdMWWJaF4XCIwWCAVquFVquFarWKg4MDHB4e
+ot1ui+kMnj59CsuyYFkWdF0/dT1FRERERERERHQeGHwT0XunaZqYQ3esNIZKpfLS10ZzQp/Vhjaq
+LoyCiyj4dhxHzEV5UhReKoqCdDoNz/Nw584d/O53v8P8/PwLP//k90fViNVqFX/84x9F8P0+QrJo
+ud63l63vn//5n+PKlStvtL7xeByZTObCtQGOguwo1B8bG8OtW7fwu9/9DlevXn3tukVVxul0+o2q
+voFRmG0YBnK5HOLxOP7sz/4Mf/mXf4lYLPbS94vaLeu6LuZF7vV6KJVKWFhYwNraGra3tzEYDI4D
+g1GIEM1bHo/Hsbi4iHK5/EYV38+//3kFetGxdx7v/67veVb4/Ut8b/Tan/N+P/f73tW7vF+v10O3
+20Wn08Hy8jKePn0qztevvvoKU1NTmJiYgK7r8H0f+/v76Ha7ePz48XtZ3rOq0gGI0PtDdEL4kGRF
+Ri6fx9xcCfnMqGvBh+jaQR8/MQgsCOEHo0GBUcC9vr6On376Cffu3cP6+rqY8sK2bezt7UHXdZRK
+JSSTSTENBxERERERERHReWDwTUTvXdQ6V9M0qJr6VnM+drtd9Pt97O7uol6vo9frwTAMlEolJBIJ
+DAYD3Lt3D4ZhYGJ8AtlsVrTp1TQN8XhcBIiO44iHsdPT0wBeHuxEPyMIAmQyGSQSCXS7XQyHQ9Fu
+O/CDl85j/OznqKLtcBTWR/MRx2Kxl4b1z7cnPqvF78nKZACn1leSJDiOA03TUCwWMTU19cpKx2h9
+o/bRbxJ4vWyZgiBAGLzfYD+aR9lxHMiyDNu2oWkaCoXCW6/b60ThdTKZRKPREF0AEokEJicnYZrm
+S98rGrQRHX+6NgrBS8US5ufnUa/XsbKyguFwiK2tLTx69AiNRgOyLCOdTou5oBOJBDT19eGVoiiI
+xWKIxWJot9uiPbvjOgiC4LXVrc/vw5PHVPAG+1CSJNHKu9PpwLIssX9e1nY8ahXe6/UQBIFY/tdV
+4r8vJ5dZURQxt3TUfvxVgwhkSRbfq6qqWM9XzR9/csqFaH0Nw/hg6/uhRfMBN5tN2LYNVVWRzWYx
+NTWF69evj7p+lMuQZRmu68J1XTFH+vumKIpoax59fg+Hw9dWRP8SA5N+Mcdzs8diMdHGnfMq0y8l
+nU5jOBiK88o0TSSTSei6joODA/R6PbRaLWxvb+PHH38U136Tk5MfXbcFIiIiIiIiIrocGHwT0YXS
+arWwu7uLtbU17O3todlsIpfLYXx8HJqmodfr4fe//z0ymQyuXr2KcqUsKm5jsRjS6TTi8Tg8z0O7
+3RbBXBS0vSpskSQJ8XgcyWQSmUwGR0dHoqppMBjA8z2oUM8Mv6PqV1VVxNzSkiSJ+Wsd24HrumdW
+DwdBcCr4PhlOPh9SngwXDcNAOp2GaZpifYfDIWRZRjwef6P1lSQJivxmgZwsyQjl8OzwOwzea3gU
+BdFRwBiFWNE+ept1e92Dd0VRYJomMpkMVFUVgajnedB1Xbzf6wJlWZYhyaOQtTRWQhAGePr0KVzX
+Rb1ex/r6OvL5PKrVKmKxGFKpFHK5HMz48VzTiozAf/Wc1dGc2tE+73Q6IoCO5lo9aznDMIQkS5DC
+F+dafzbw4vXzZSuyIroEVKtVMf/6YDBA4AdnVoFbliWq3AGcml/7Q1CU0TJH1f/D4VAE057niQEt
+Z20zWZHF+u7v74uQt9/vi3P2+fW1LVvMjxuGoWj1/aHW90NzHAfdbhftdhuKoiCfz2NiYgIzMzOY
+np5GPB6HqqgIjo+vXzJkjgJhRVEQBIGoRn9V8H1WhT4RjeiaDikhYbwyDl3XMTk5KQZrPX78GJub
+m2i32zg6OsKPP/4IABgbG8Pnn38uBvsw/CYiIiIiIiKiD+njfApLROcqmv/YcRw4jgPbtl/5ehFS
+KgpqtRpWVlawtrYmgqN8Po/r16/D933RZnNjYwP7+/uYmJhAJpMRAWU+n0cmk4EkSej3+6IFb7/f
+RywWO9VOOmqdfrJtuu/5ME0TpVIJm5ubsCwL7XYbjUYD1WoVZtxELD4KVqJKWdd14TiOCEtjsZiY
+z9bzPAwGA1RrVQCj8Nj3/dFrXQ+tVgv9fl98fySa31yWZaiqijAMxZybw+EQjuOIFufJZBIAMBgM
+RAAVrW8sFnthjvST6yvL8qgaVX19+B0Fp6qqitA5qm4dDAawbXtU1em58FzvzHb0byqaa9uyLEiS
+JNat0+mg1+shHo+/8bq9rko/mhN+bGwMGxsbcF0Xtm2L94vCtJNVldGAhpMDFqK/1zUd+XxerEO0
+/Pv7+7h//z7CMEQ8HkepVBq9Lh5741bFhmGI+VOjY7zZbKLRaKDRaIh9fnKbRNMD6LouKo+jingA
+sG0b/X4ftmXDdmy4riu+7/n9p6gKUqkUSqUSdnd3xbZqt9toNptQ1FGVvaIo8H0fvu+j1WqhVquh
+2WzCMAzk83mk0+kzB4H8EhRFQSKRQKFQQDweF8dss9lErVaDpmninD15Tnuuh063A1mWUSgUxGCD
+Xq8nPhOiattT69serW+0P3K5HDKZzAdb3w/N933Yti3O1Xg8jlQqhXQ6jVQqBQBwPVd0z6jVaqOB
+EsHrB1q8rWiajaiLRb/fF/uq1WqJz9Pod1Sz2XzW0eN4ABIRPaOoChR11GkkX8iLKUg0TYMkSej1
+etjd3RUDsOLxOG7fvi269Rj6m11fEBERERERERG9Lwy+iei9cxwH7XYbtVpNhEKvoqqqCDI3Nzfx
+ww8/YHt7G6Zp4ssvv8S1a9dw7do1dLtdHB4eilD8wYMHUBQFV69eRTqdRjabxdzcHBqNBpaXlyFJ
+Evb29vDNN9+g2WyKuWaj4M+yLDSbTbRarVNVzJIkYWlpCRsbG1BVFb1eD48fP8Y//dM/YXJyEuPj
+40gmkyLYPzw8xOHhIVRVxcL8AhYXF5FIJBCPxzEcDrG3t4dvv/0Wk5OTmJychK7rIqj84x//iNXV
+VXS7Xaiqinw+L5YlCuRM04Rt29jd3cWTJ0/guq4I1aO51KMQ+ODgAN9++y263a5Y3yiotm1brG+0
+nslkElNTU5ienn5tBTUA8cA7qoJutVp4/PixaB+dyWREOD8cDl/aDvp1kskkpqen4TgOHj9+DFmW
+cXR0hN///vfo9/tiW2qaJtat1Wqh2WyK5U0kEqN1m5p+5YN3XddRLpcRBAE2NzcRi8VQr9fx5MkT
+/M//+T8xMzODyYlJ5PN5EaJHFb2DwUDsr0qlgumpaWRzWRGCZzIZFAoFHB4eot/vY3V1FcViEWNj
+Y5ienhYB9ptKp9OYmpoS2yUMQ1SrVXz//fcIwxATExOYmJgAMAq0e90eDg4PcHR0hOnpaVy/fl20
+g45C4P39fTx58gSO40CSJYRBCMu20Ol0YNv2C/OnF4tFJBIJ7O/vQ9M0tFotrK+v49/+/d8wOzuL
+sbExJBIJ9Ho9dDodPHz4EKurqzg6OsLi4iKuXr2K2dlZpFKp1w6KeR80TRNzru/s7MAwDNTrdayt
+reFf/uVfsLCwgImJCeRyOTjOqDNDrVbD4eEhut0uMpkMpqenxTy2w+EQGxsb+OabbzA7O4tyuYxU
+KoVut4tut4uHDx/i6dOnYn2XlpbE+n6MVcVR2Bx97jebTezu7mJzcxOVSkV0GKhWq9jc3MTTp0/x
+9OlTOI7z3pclHo+jUqkglUqJbguHh4e4f/++6OSRTqfFYI1oMMre3h5isRiKxeJ5b06iC02SJIyN
+jeGzzz7DcDjE/v4+tre3xYC+TqeD/f19PH78GOVyGeVyGaZqnvdiExEREREREdEnhME3Eb13juOg
+0+mgWq2+0by2MSOGbC6LTCaDra0t3L17F51OBzdu3MCdO3dw9epVXLt2DQcHB3j06JGY3/jBgwcA
+RmHgtWvXRABcr9dF1ffBwQF+//vf4+joCJ999hnCMISiKFAUBd1uF9vb29jZ2REVsLlcDouLi7iy
+eAU//vgjNE1Ds9nEysoKfN/HjRs3cPPmTRSLRVHp/OjRIzx58gSmacIwDNy+c1sE32EYYn9/H999
+9x3q9Tr6/T5UVcXm5ia2trbw+PFjbGxsIAgCpNPpZ9XKkizmc47H43AcB3t7ezBNc9SaO24iCAOk
+Uink83lRyX50dITvvvsOtVoNN2/ehO/7YvBBr9cT6xu15h4bG4Ou6ZianAJeM+VuFPCebP/dbrex
+srICYFSNbNu2qP4cDAbvHHynUinMzMzA933kcjlIkoSjoyN8//33p9Ytams8GAywvb2N7e3t0faT
+ZZRKJaiqOhrsgJcfh4ZuYGxsDKlUCg8ePEA8Hodt21hdXUW/38e1a9fw2WefYWZmRhw70cP+qIpU
+lmXcvHkTmUwG+UJeVALncjkRFHc6HRweHkLTNFy9ehVzc3PI5/JvNddxKpVCJpMRc9EDQK1Ww08/
+/YR+v4+bN28CGFWkDwYDHB0d4fHjx3jy5Am++uorFItFZNIZcVz5vo+DgwM8ffpUVOtKkgTXdc8M
+vqMW9Lpu4PHjxzAMA4PBAJubm/j222/RaDRw7do1EfZH77++vo5Op4ObN2/ixo0bmJycRDqdRrVa
+ffcPmjekqipKxRIM49kyW5aFjY0NAEC9Xsdnn32GqakpDAYDDAYDrK6u4smTJxgMBvjtb3+L27dv
+Y2trSwTfW1tbYn2vXr2KSrkiBhg8evQI6+vrqNfruH79ugj60+m0aPf+MdE0DalUSnQJaDQa2N/f
+x+bmJorFoqiyfvr0Ke7du4dHjx5hf3//Fxn0YJomKpUKxsbGxFQJR0dHePDgAYIgQKVSwfj4uKhS
+3drawvLyMg4ODkSHCSJ6uWiQVz6fh+M4WFlZwaNHj0SHlG63i729PaysrIwGw6UzME0G30RERERE
+RET04TD4JqL3rtVqYWVlBf1+H+l0Gul0+pWvTyQSKJfLGBsbw/b2NgaDATRNQ6VSwa1btzAxMYFS
+qQTf9zE/P4/r16+LSmtN0zA9PS1aFhvGKMS8evUq9vb2RPvr/f19hGGIer0uKr6jgL7T6SCXyyGX
+y4k5vnO5HBYWFnDnzh1sbm5ClmVUq1XIsoxutwvTNEXFd71eR7vdhmEYAABN1VAul3H16lURau7u
+7sK2bdH+OArNAYiA3DCMU5XnpmlicnIS165dE9v18ePH6HQ62NnZQbFYRLFYhKIomJ6exhdffAHH
+cU6tb6PREBXfUZjZbreRzWaRy+VGofhbtiEtFApYXFwUofbW1hYsy0KtVkOhUBBzUHe73XcOvqOq
+8ng8jitXruCLL74QQfrBwQEAoNlsiorvaN06nQ7S6TRyuRw0TRNzrb+KrMhiXvbp6WncunVLVNR3
+u12sr6/Dsiysrq6KYydqdx0EgTh2TraAj/ZjKpXC+Pg4KpUKbNsWXRBExXcu+1bBdzToYHx8HNeu
+XcPe3h4cx0EQBNjd3YXv+6jVagjDELZtYzAYoF6vi7nSwzCEbuji+y3LQq/Xw5MnT9DtdrG/vy9a
+VDebTQyHw9PbSpYRi8VERf7169cRBAF0XcfBwQEcx0GtVoNpmmJ+5UajIeYzn5+fx8zMzGj/qG/W
+3v3nUhQFcTMOWZExOzuLW7duiXVpt9tYXV3FYDDAysqKOKdbrRbq9Tp0XT+uaE5hcnISN27cEHO/
+Hx4eiurwkxXf9XodyWQSyWQS8/PzmJubQ7FYhKZqH2XwnUgkkMvlkM1mcXh4iN3dXTiOg9XVVViW
+BU3ToGkaut0ubNuGaZrivH3fomkLSqUSZmdnsbS0hH6/j+FwiCdPnuDw8BBbW1tiYEiv1xPH75t0
+JyEiiM/FfD6PyclJzMzMYGdnB8PhUFznbG5ujsJx9/13diAiIiIiIiIiehUG30T0XkXhsuu62Nra
+gqZpp+ZGPksymcTk5CSmpqawvb0NSZJQKBQwNTWF69evI5FIwDRNpNMZXL16FcPhEPfu3cPy8jIc
+x8GVK1ewu7srAshSqYQvv/wSpmlidXUV6+vraDQaaDabuH///qk5xQ3DEK16M5kMyuUy8vk8zISJ
+q1evwvM8PH36FBsbG9ja2sL6+jrW1tbEXMDR8ieTSaTT6VHFrCxhamoKv/rVr2CaJtbW1rC5uYlW
+q4WNjQ0kEgnk83nk83lks1nRJjyRSJzaLqlUCleuXEG73cb6+jo2NzdxcHCAzc1N6LouKpFLpRKu
+XLmC6elprK2tiWrTVquFhw8fAoBY3yjgSSQSSKfToi21JL95u+1KpYLbt29DlmVsbGxge3sbh4eH
+ePz4sWg3Pz8/j263C8/z3ingipY3n8/j888/h2EYWF1dxdraGur1Oh4/fozl5WXx2mg+b13XEYvF
+kEqlUC6XkUwmIUvyG72XLMmYm5vDb3/7WxSLRbHfDg4OsLe3hyAITrWh1zRNVHRHFXDR4IdIJpPB
+xMQEpqam0Gq1cHR0BNM0MT4+jpmZGWSz2bcK26IuAMViEV9++SXi8TjW1tawsbGBer2Oer2Oe/fu
+iXNRVVUkk0mkUikkk0kxoGBhYQG/+tWvsLq6iq2tLVHBbhgGJicnsbCwAFmWz2xXHx1H09PT+M1v
+fiM6Nezs7KBareLRo0entm1UvT81NYWbN29iamoKuq7/Iq2uX7Z/dU2HLMtYXFyEbdtiPvfNzU1s
+b29ja2vr1DkdzVMdVQ4bho6ZmRn85je/QTqdxubmJnZ2dlCr1fD48eMX1ndqagqTk5Oikjzq2vAx
+SqVSqFQqUBQFR0dHODg4QLPZxNraGlZXV2EYBmKxmGj7v7i4iG63KwawvE/R+ZHL5cT0GOvr6zg4
+OMDW1pYYuJJIJJDNZmEYBkzTRDY76jjy/PlLRGeLphOZmJjA1atXYVmWuPZrNpvY2dnBzMzMR/u5
+R0REREREREQXF4NvIvpZJElCiBC6riObzWJ8fBwARMvrN5FMJkXg5Hke8vk8ZmZmMDs7i9nZWfG6
+VCqJhYUFGIaBVquF1dVVOI6D4XCIXq+HZCIJAMjlcrh58ybGx8cRj8dF2+1arYZGoyF+XhSQ5PN5
+JBIJjI2NoVKpIJvNIhaLYX5+Hpl0BsViEZIkoV6vo9lsotlswrZt0cI3Ho8jl8uJoDVqBXrnzh2o
+qirm+bZtG71eT6xjoVCAYRhIJpOi1XkUniuqAtM0MT8/D0mSEAQBjo6O0Gg00O/3xc/o9/uYmZnB
+9PS0aKntOA76/b4IQiOGYSCXy4mwp1QqHS9z6q32ealUEi21+/0+tre30e/3xZzXmUwGU1NTMAwD
+mUxGtMdWFAWKrLxQgW0YBlKplAiBFUU5DhsN0ca+XC6LKvtoX9brdXHcRG3F8/n8c+uWfKNQX5Zl
+QAYmJiYQj8dFJX3UnrzZbIoKfWDUXj+fz0PTNGQyGYyPj58ZfKfTaczMzKDdbov5j8fHx8Vc8bqu
+v7A9JEmCqioinHMcB+l0WgxaiPZfdIxHc2V3Op1T85wriiKqcSuVCgqFAmKxGGKxGGZnZ0XQW6/X
+cXR0hMFgAM/zoGkaxsbGkE6nkUgkUCgURDeEKPDXNA2TE5NQVRXZbBbAqM1+1FHAcRzxXlEHhlu3
+bmFpaQljY2MIggC9Xg+6rotANHqPs6r0ZVmGaZoinJRlGel0Wsxt/7rPKEVVoKgKpqamYJomyuUy
+VFVFq9XCwcGBOHajKQ+iY2d8fFwEpJVyBfIXspiXvVqtot1uo9PpwLIs0T6+VCphaWlJrG+5XAYA
+9Ho9GPromC4UCuJYjToFnDxOFUUR0xjk8/nj9vKjiuST6xuFuIVCQVTqR1MuqMqzz6Z8Pi/OxbMG
+opx8XTabFVXZinx6UEb0OV8oFJDNZkV3jMnJSSQSCezu7uLo6Airq6vY29tDs9kU2yWZTKJUKqFY
+LKLZbKJWq4l10zQNqqKOpnEwTbHe0XEfzRN+kqZp4hyJPjfS6bQYxLS0tDSq9j/+HVCtVmFZFlzX
+RRiG4j2i3wXR8iUSCdF9g4heLhrEtbS0hL29PaytrcGyLHQ6HXH+u4573otJRERERERERJ8YBt9E
+9LNJsoTx8XH89V//9Wvbmp/lZADteR5c10U+n8fi4uKp1+m6jnx+NCfyb3/7WxQKBUiShBs3bmBi
+YgKpVEqEJIlEArIs48aNG0gkErhx4wa63S56vZ74eVGldzKZFFW5UfARLVcmm8Hc3BzCMES5XEav
+18NgMIDruiKMKRQKKBQKmJiYwMTEBACI0CyaN3l+fh6u68L3fdGOfWxsTLSjDsMQ8XgcsVgMMzMz
+IuArFktiDulKpYJmsynat8/MzGBubg6VSgXJRBKJZAI3b9xEIpHA1atX0ev10Ov1RDgcBUUn13dU
+0Zp4q5AnqmiNAurFxUWxbrFYDBMTE5icnMTk5CSuX78OVVXxxRdfjAYUxGNQldO/eiYnJ/GrX/1K
+hPyyLIt22KqiwjRNsZ9Nc1SJH7WVjtYtqmyOtnu0bqlU6q3WLQrrpyan4H7lolgsot1uo9frnZr/
+1zRNUbkfdSuIAtKTstksFhYWEIvFUC6X8dlnn2FpaQnz8/PQdR2qcjrklWRJhOG3bt0S7fjv3LmD
+sbExMce7IiuntkssFsPVq1dPtdCXJElUhxcKBbFNdV0X5040z3u1WoXv+/A8D6VSSQxcmJycxOef
+f475+XncvHET6dSzsDkWjyGfz4t9MD4+jk6ncypA13Ud5XIZk5OTYsoCVVHhS75o2f4Xf/EXYoBA
+1OHh+QEBUcv7aP7x6Byfm5t7bUeJ5z9DojnSv/76axQKBbTbbfT7fTiOI7ZJJjMa8FIulzEzMyNC
+51wuJwYMlMtltNttDIdDuK4r1ndsbOzE+o5BVVWxDuVKGX/+538uzsHofH1+fVOpFH79619DkiQx
+kKdSqSCdTp8Ko03TxJdffik+Z6amplCpVJDJZJBOp3Hz5k04joODgwN8/vnnGBsbE4MLTpqfn8ff
+/d3f4caNG7hx4wYWFhZGAyXisVOvm56exl/91V9hfn5eVLWXSiWk02kYhoGlpSXIsozr16+j2Wyi
+3++L7VIsFjExMSG6YywtLYnuEdHnuqIouHH9Bqz/z8KdO3fwxRdfoFKpnLnMxWIJn3/+OQqFgqjk
+LpfL4hiLjs1on3zxxRfiGE8mk2KwQHTOnKxKn5ycZPU30Wvo2rMBj6lUCoqiwPd9MfCu1+vB9Rh8
+ExEREREREdGHJYXRE2uiS8r3fGzvbGN7exu7u7vY3d1FtVoV4VcUSk1NTZ33on7Uoirjk8Hym5Jl
+BaqqiJbPUYvmKAiOhGEoQl/LskQQGb1OVVTIiixe6/s+bNuG67pwXRdBEMDzPPHzJEmGosiidXM0
+J3RUgRkEAcIghOu5sG1bzKXseadbP2uaClVRoemaqMj1PR9+4I/mDLYd2M6o+j0IQsiyBFVVoWma
+WE4AoprTMIxRa2ZFFoGy4zjH6+Idr18AwzBEq/YoHHddV6zzy9ZXlmVRPayqKhRZeat5vn3Ph+eP
+BihE6xYE4fG+lETQ5TgOXNeFJEmjoNgctVQ/OY858Kw7gOd6ouo1Wi9VVcU2+hDrFoYhAj+A53ti
+n/u+jyAITrX8joI2TdWgaqoIRqP/HnFdVwzmiNbTjJswE6YI1p4P5qNgdTAYiHnNTdN8oRr6ZdvF
+94MTyzk6vqN9Em3T6DyK1tHzPARBiDAMxGtlWRZ/bxjGqBJWNyDJkjg/fN8XP8e2bfH+YRhAkmRx
+rJ/cJ1GAGYYhXNfFcDhEvz+Aro8GZkTB+sntEgSBeI/osiVqb/821bmv27/ScVt8VVVO7VvDMMT2
+fpv1jbb9yc+vwWDw2vX1PR+9/miQTVS1bBgGFFmBrDyrfg6CQMxhLUmSeF9ZlqEqKmzHPg71XSQS
+pqgwf/79ornebduBaR5/nqrqC8dzNFDHcZxTx5OmapBkSWyX6LiPtunJ7RIdV7btQNNUUaEeTUnw
+psvsuu6ogttxxeeGqqrisyN6/2je9tH5EYrzIlq/aP9HHTxOTglx1nEVnW9Rt4udnR2sbtXwZKuJ
+7aMhpFgFUrwMKPE3/tx5EwnDR970MZaV8PnVCr64Po5SPiWmeCD60LrdLo4Oj7B/sI//9t/+G/7x
+H/8Rh4eHSKfTyGQy+C//5b/gv/7X/4rbt2+f96ISEREREb137XYbW1tb2N3dxc7ODvb29iBJkigG
+mZ6extTUFDKZzHkvKhHRJ4cV30T0XkRBQS6X+8Xe4+TcyicD8Ze9VpZlETq9i6j9taIqr32/5ymq
+AgWjAAXJd1/nKNCIx98sRNE0DaZpvvsbvum6qaP50X/OukWi8PJlTu7LX3rdTrbFfh8Vn9Hx+qb7
+L1oGSZJEBfsvsV3e9Dx6lWiwxbv+nGiQh2EYol36q94rHo+/1XZ82Xu+6/49ub3fdX2jz8nXra+i
+KshkMq+9QZZlGalUCqnU2dMVmKr5RsdG1Jb+dV53rr7pPnrZ8r7NMkfH8Ov+/ucc40T0cqqqwkyY
+YpqKaEBUNKApGhxERERERERERPQhyT//RxAREREREdGnIupGkUwmR10bZPnMLiRERERERERERB8S
+K76JiIiIiIjojSnyqHNGKpkS0xhEFd+KojD4JiIiIiIiIqJzwYpvIiIiIiIiemOSLEFRFGi6BkVR
+IEkSgiCA53nwfR++7yMMQ4RheN6LSkRERERERESfEFZ8ExERERER0RuTJAmapiEMQ6iqCkmSAACe
+58GyLBGAA0AYhuLviYiIiIiIiIh+Saz4JiIiIiIiojcmSdILXwBElffJLyIiIiIiIiKiD4XBNxER
+EREREb21syq5GXYTERERERER0Xlh8E1ERERERETvhOE3EREREREREV0UDL6JiIiIiIjonZwVcnNO
+byIiIiIiIiI6Dwy+iYiIiIiI6K2cnMP7ZPgdhd4Mv4mIiIiIiIjoQ1PPewGIiIiIiOjy8T0fnu9B
+kiSoqgpZ5pjaT0UYhgj8AJ7nwfd9EXyrqgpN06AoCmRJZvhNRERERERERB8Ug28iIiIiInorYRjC
+9VzYti0Cb13Xz3ux6AM5uf89z0MYhpBlGaqqQtf10UAIhcE3EREREREREX1YDL6JiIiIiOiVgiBA
+GIzCTsdxYNs2er0eOp0OYrEYxsbGGHx/Qnzfh+u6sCxLBN+SJEHTNGiaxg4ARERERERERHQuGHwT
+EREREdFLhWEI27ZhWRaq1Sp2dnawt7eHg4MDHB0dYWJiAr/73e/wq1/96rwXlT6QIAhgWRa63S5s
+20YQBKLi2zAMaJrGam8iIiIiIiIi+uAYfBMRERER0UtFwXen08HW1hZ++uknPHjwABsbG9jZ2cG1
+a9cwPj7O4PsT4vv+C8G3oiii1bmu66z4JiIiIiIiIqIPjsE3EREREREBeBZy27aNdruNZrOJZrOJ
+Wq2GRqOBra0trK6uYmtrC0dHR6jVaiiXyxgOh+e96PQBOY6DTqeDo6Mj9Ho9+L4PTdMQi8WQyWRg
+miZUlbeaRERERERERPRh8WkEEREREREBGAXfvV4P7VYb6xvrePLkCVZXV3F0dIRqtYpms4lut4te
+r4fhcCiqfcMwPO9Fpw/IcRw0m03s7e2h0+nA933IsoxEIoFCoYBUKsXgm4iIiIiIiIg+OD6NICIi
+IiL6RPmeDz/w4TgOXNfFYDDE0dEhDg8Psby8jLt372J5eRn1eh2NRgPD4RBBECAIAvi+jzAMxRd9
+OmzbRq1Ww9bWFlqtFjzPg6qqSCaTKJVKSKfT0DTtvBeTiIiIiIiIiD4xDL6JiIiIiD5BQRCg2+ui
+0+ng8OAQW9tb2NnZQa1WQ7VaxcHBAfb391GtVjEYDGDbNjzPQxiGosqbgfenqd/vY29vD48ePUKt
+VoPjODAMA9lsFlNTU8jn8wy+iYiIiIiIiOiDY/BNRERERPQJCoMQ3W4XhweHeLj8ED/88AMePnyI
+er2OZrOJwWAAx3FENXgUegNg4P0JC8MQg8EAu7u7ePr0Ker1OlzXRSKRQDabxfT0NPL5PAzDOO9F
+JSIiIiIiIqJPDINvIiIiIqKPXBAE6Pf7GAwGaLVaaDQaaDQaODw8RLVaxcbGBlZWVrC1tYV+v49+
+vw/LshAEATzPA8Cw+1MXhiGajSaazSZWVlawvb2NWq0G27YS2RNUAACAAElEQVQhSRISiQQqlQoW
+FxdRKpUYfBMRERERERHRB8fgm4iIiIjoIxaGITzPQ7PZxNHREZ4+fYpHjx5hdXUVnU4HnU4HrVYL
+7XYbnU4HnufBsiz4vo8gCMTPoE9bGIY4PDrE48ePce/ePWxvb6Pb7UKSJGiahnQ6jfHxcVxduopU
+OsXgm4iIiIiIiIg+OAbfREREREQfiWjebc/z4HkeHMeBbdsYDAbY3NzE1tYWHjx4gB9++AErKyuw
+LAu2bYt25q7rMuQmAM+OJdd14TgOLMvC2toa7t69i+XlZRwcHKDVaqFQKCCVSqFcLmNychLTM9NQ
+ZAWyIp/3KhARERERERHRJ4bBNxERERHRR+Bk4H10dIRarYa9vT3s7u5if39ftDc/ODjA/v4+er2e
+CMc9z0MQBAy9SYgGTTQaDWxvb2N7ext3797FgwcPsLm5iXa7DUVRUCqVsLS0hC+//BKTk5NQZAWS
+LJ334hMRERERERHRJ4jBNxERERHRRyDwA/i+D8uycHBwgJWVFTx8+BD379/H06dP4TiOCDOjKvAw
+DEXgzdCbImEYwnEcDAYD7O3t4aeffsLdu3fx5MkTrK2tod1uw3VdyLKMcrmMr7/+Gr/61a8wPT0N
+WZEhSQy+iYiIiIiIiOjDY/BNRERERHQJhGGAXr+HarWKYa8JAPB9H7Zlw7It9Pt99Pt9dLtd7O7u
+Ym9vD5ubm9jY2MDR0RF834fneXBdV/zz+xAF7cvLy+e9iegthGEo5nEPgtGgiaitueM4aLfbaLfb
+2N3dxdOnT7G+vo7Dw0P0ej3IsoxSqYRcLocbN27g+vXrmJ2dRS6XY+hNREREREREROeGwTcRERER
+0SUQ+D467Q52dnqQAlsE3c1mU3w1Gg20220MBgMMBgP0ej10u10Mh0MRckaB5/sSzR/+3Xffnfcm
+orcQBd2e54l53ofDIbrdLrrdLprNJlqtFtrtNjqdDrrdLmzbhu/7yGQyWFxcxI0bN/Dll19iaWkJ
+45VxxM34ea8WEREREREREX3CGHwTEREREV0CQRCg0+7B7/Uw7LfQaDRQr9dRq9VQr9dRr9dFWAlA
+tC+PAu9fymAwwMbGBuJxhp6Xie/7orrbsiw4joNeryeC7k6ng16vh+FwCEVRoCgKDMNAMpnE+Pg4
+bt68iT/7sz/DlStXMDc3h1wud96rRERERERERESfOAbfRERERESXQOAHaHWbaAz20agd4ODgALVa
+TVR3D4dDWJZ1qpo7qvD+JfX7fWxtbWEwGJz3JqK3ELU3j9reR0F4NAe8bdvwPA+maSKVSiGVSqFc
+LqNSqWBhYQHXrl3D9evXUSwWEYvFznt1iIiIiIiIiIgYfBMRERERXQZ+EKDdbqJ9sIP93Q3s7e2h
+VquJ8DKq7D4ZfP/SoTcAdDod2LaN/f39895E9I7CMBSDJE4eQ5IkIZlMIp/PY3p6Gp999hnu3LmD
+hYUFlMtllMtlqKoKVeVtJRERERERERGdPz6hICIiIiK6BGRJgqEbSCQTyGQy6Pf7cBwHnufBdV24
+rgvHcV5oa/5Lh99R+2vTNM97E9FbkmUZsixDkiTIsgxFUUSQbRgGDMNALpdDpVLBxMQErly5MprP
+e3yc+5yIiIiIiIiILhwG30REREREl4AkS0il00gb40jEVMTjcWQyGfR6PXS7XfT7ffR6PXieJ74n
+muP7lwy/TdPE+Pg4xsfHz3sT0VtQFAWapok/NU1DLBZDIpFAIjEaXJHL5ZDJZJDJZJBOp5HL5ZDN
+ZpFMJlnlTUREREREREQXDp9WEBERERFdArIsI5PJIq0bsPNp5PN5tFotNBoNNBoNNJtNtFotdLtd
+MWez53li3uaT832/zyDcNE1MT0/j9u3b572J6C0oigJd16HruqjuTiQSSKfTyGazKJVKKJVKSKVS
+0FQNiqqc9yITEREREREREb0Sg28iIiIioktAkVVkM3FMj5WhyT4sy4Jt2+j3+xgMBuh2u+j1euh0
+OiIMPzo6QrVaRbPZFPOAR6H48y3R35VpmlhcXMSf/umfnvcmoregKMqp1uYn25ubcRPJVBLxeByK
+okCSpfNeXCIiIiIiIiKi12LwTURERER0CciKjFw+j7m5EvIZE6qqQlEUEWK7rgfHsdHr9bCysoLV
+1VUsLy/jwYMHGA6H8DwPnudBkkYh5vsKvpPJJJaWlvCXf/mX572J6C1Fx4IkSWKe7+jPaM7v6O+I
+iIiIiIiIiC46Bt9ERERERJeBJEFVVTEPs2EY0HVd/HUQBPA8D5ZlQVEUJBIJJJNJZLNZTE1NiXnA
+2+02Wq0Wer0eXNeF53kIgkB8va1omTKZzHlvISIiIiIiIiIi+oQx+CYiIiIi+ghIJ4LxSrmCRCKB
+SqWCGzduoF6v4/DwEAcHB1hbW8PKygp2dnbgOA5c14XjOPA8D2EYvtf5v4mIiIiIiIiIiD4UBt9E
+RERERB+BqCW1ruvIF/LIF/KYnZ1FGIZwHAebm5vY2tpCPp+HoigIwxD9fh/D4RDD4RC2bcOyLDEH
+eBSAMwgnIiIiIiIiIqLLgME3EREREdFHTlVU5HI5AICmacjn87h+/TqazSYajQYODg6wt7eHarUK
+y7IwHA7hOA7CMITv+wAYgBMRERERERER0cXG4JuIiIiI6CMmSRJkRUY2m0UqlcL4+Dhu37qNwXCA
+/b197O3vYXl5GT/88AOCIEC73RYV39H83wy9iYiIiIiIiIjoomPwTURERET0kZMkCZqmQdM0xGIx
+AEA2yELXdSRTSWiaBl3XUSwWUavVUK/X0Ww20W630e124TgOhsMhXNcFALZBJyIiIiIiIiKiC4fB
+NxERERHRJ0iSJKRSKaiKing8jkqlgtu3b+Pw8BDVahUbGxt4+vQptra20G63RcgdVYCzEpyIiIiI
+iIiIiC4SBt9ERERERJ8gSZIQj8cRj8eRL+QxNzcH3/NRrVVxdHSER48eIZFIQNM0HB4eQtd1DAYD
+uK4Lz/PgOA4cxxE/i4iIiIiIiIiI6Dwx+CYiIiIiIgCAJEswTROlUgm+7yMej2N2dhbVahW1Wg0H
+Bwc4PDzE0dER2u022u02ZFlm8E1EREREREREROeOwTcREREREQEAZFlGMplEPB5HNpvFwsICLMtC
+s9lEs9nEysoK7t69i+XlZWxvb8OyLIbeRERERERERER0ITD4JiIiIiIiQZZlyLIMTdMQj8eRTqdh
+miay2SxURYWiKMhkMpiamsLu7i4WFxcxMTFx3otNRERERERERESfOAbfRERERET0SoZhQFEUzMzO
+IJVOYWFhAY1GA/V6HYVCAYsLi+e9iERERERERERE9Ilj8E1ERERERC8lSRJ0XYeu6zBNE+VyGWEY
+YjgcYjAYQFEUxOPx815MIiIiIiIiIiL6xDH4JiIiIiKit6aqKkzThCRJUBTlvBeHiIiIiIiIiIg+
+cQy+iYiIiIjorUiSBE3ToKqq+HciIiIiIiIiIqLzxOCbiIiIiOgtMegdbQNuByIiIiIiIiIiuijk
+814AIiIiIqLLSJIkMPYlIiIiIiIiIiK6GBh8ExERERG9K1Y9ExERERERERERXQgMvomIiIiIfqZf
+svZbOvFFREREREREREREZ2PwTURERET0DkSr8w+RSEsAC8uJiIiIiIiIiIhejsE3EREREdFbkCQJ
+sixDURTIqgJFViArCiRZBqRf4PJakkYV5ZI8CtuZgBMREREREREREb2AwTcRERER0RuSZflU8K2q
+KlRVHYXgsvyLFX9LsgRZliDJEsNvIiIiIiIiIiKiMzD4JiIiIiJ6A/JxxbUijwJvTdOgafrxlwZF
+kX+RQFoE7bIMRVYgSbII4ImIiIiIiIiIiGhEPe8FICIiIiK6LCRJgqzI0DQN8XgcCTOOhDlEwvQx
+DDVYv0DNtyxL0DQZcUODrqlQVYbeREREREREREREz2PFNxERERHRG4jajCuKAsMwEI/HR+F3woRp
+xqDrGmT5/QfSiixD11QYhgZNU0dzissy5F9iPnEiIiIiIiIiIqJLihXfRERERERvKJrb2zAMmKaJ
+fNZFeejD9WU0Bhq0gQTHDxCEQBiG4vuCIITv+wiCAEHgIfD90VzdsjIKshXluFW6DEiABAmKIkOR
+JRQyGioFA+PFODKpGHRdPf5eVn0TERERERERERFFGHwTEREREb0BSZIgS8+C70QigUI+hB8Auqoi
+2Q4Q6/gYWAE8P4TvP/tez3PhOA4cx4Hr23AcB7IsQ9d1aIoBXdOh6wZkJYQsyZBlQNcl6LqCct7A
+bDmJmfEkChkThj6q+iYiIiIiIiIiIqJnGHwTEREREb0hSZYghzIMwwAAhAAUWULcUBGLW9B1C33L
+h+MFcL1nFd+O5WIw8DCQhhj6Q4RBD4qkwlQSiBuAaaowEzJUVR1VlcujOb3jMQ1j+TimK0lMFFOI
+x3VoqiLarhMREREREREREdEIg28iIiIiojcQBc2KoiAIAhiGgSAEZEmBphsw4i4yGRuOG8D1Q/h+
+IL633++j0Wig1XTQUvpo+TY0LUAum0Q2F0Mum0Yun4eu65AkGbIiw9AU6LqKdMJAPm0iHjegH8/x
+zdCbiIiIiIiIiIjoNAbfRERERERvKAqcNU2DLMuQZQWGriOZ9JHL+vA8H34QIgjCU3N8N5tN7JsO
+DtQetCBAOLQQiwFjGWC8HEOlkkFlvAwzHock47jd+aituqaOAnBVUaDIo1CcwTcREREREREREdFp
+DL6JiIiIiN7Cycrv0Zzf8qgCPAwRBKMq7yAITgXfoW+h1zHQjWuI6wp0VYKhyTBjKpKmjnQyhlw6
+DtM0AeA4VB8F3JIkjaq8j9ubM/QmIiIiIiIiIiJ6EYNvIiIiIqK3FIXPkiJBCiXIkgwACMLgzNcb
+hgFd06GqKjRNg6qqUBQFqqpCVVXoug7DMMTc4QDEzzw5nzdDbyIiIiIiIiIiorMx+CYiIiIiegen
+wuhRRg0FypmvVVUVqjYKuaNqbkVRxFcUiGuadt6rRUREREREREREdCnJ570ARERERERERERERERE
+REREPweDbyIiIiIiIiIiIiIiIiIiutQYfBMRERERERERERERERER0aXG4JuIiIiIiIiIiIiIiIiI
+iC41Bt9ERERERERERERERERERHSpMfgmIiIiIiIiIiIiIiIiIqJLjcE3ERERERERERERERERERFd
+agy+iYiIiIiIiIiIiIiIiIjoUmPwTURERERERERERERERERElxqDbyIiIiIiIiIiIiIiIiIiutQY
+fBMRERERERERERERERER0aXG4JuIiIiIiIiIiIiIiIiIiC41Bt9ERERERERERERERERERHSpMfgm
+IiIiIiIiIiIiIiIiIqJLjcE3ERERERERERERERERERFdagy+iYiIiIiIiIiIiIiIiIjoUmPwTURE
+RERERERERERERERElxqDbyIiIiIiIiIiIiIiIiIiutQYfBMRERERERERERERERER0aXG4JuIiIiI
+iIiIiIiIiIiIiC41Bt9ERERERERERERERERERHSpMfgmIiIiIiIiIiIiIiIiIqJLjcE3ERERERER
+ERERERERERFdagy+iYiIiIiIiIiIiIiIiIjoUlPPewGIiIiIPoQwDH/W3xP9HEEQiK8wDF/4Ovn3
+RBeFJEnv5TVERETvitfwRHQRRfd1J+/vAIh/9n1f/D0R0UX1uvv5y3q/z+CbiIiIPjonH4CJG9Ag
+RBAGp//bczeoZ33/SbxppXdlWRZs24brunAcB57nwXVd8e+2bWM4HJ73YtInRJbPbv518sY2+mdJ
+kk79MwDIkgxJlhCG4Qs3w5f15piIiM4Xr+GJ6LKwLAu2ZcNxHLiuC8/zAACu68K2R/99OBxCVRm/
+ENH5eN09//P3/i+75z/rtRcdP3mJiIjoo/L8Q7DoYdnJytrnR2a/MEI7OP3QLHrYRvSuLMsSAbfn
+eeIrCr4ty4JlWZfiBoI+LrJ0+mZYkqUXAu/oS5Zl8c+BFEAO5dH3H/+I6PvOCsOJiIhe5XXX8Cc7
+5PAanojOm2VZsJ1RwB0NbAYggvDo/k7TtPNeVCL6xL3tPX903x9KIaRQeuGe/zLc7zP4pktPkiWo
+qgrTNJFKpZDNZhEEAbLZLJLJJGKxGC8yiIg+Ac8/9IoelAXB6CGZ43pwXB+268N1PTheAN8PEQQ+
+giA8o/00ABw/PAujf2IrRXo33U4P1aaD9lDGwNPhyQm4MNCzVTS6AeSYDU/pwNDt815U+oRIkHD8
+P0CSoMiAqkhQFQm6KkNVZSiyAlUd3fwqsgJZkcXN8MkvSZLEiPDLcjNMREQXg7j+Pg6ufXF9PrqG
+t50AtuvBdX04ns9reCI6d4N+H9WGjWYfGHg6XMmEBAkDV0ezF0Jp2vCVDsyOf96LSkSfLOn4Xv/Z
+Pb+mAIoiQVXk43t+CaqiiPv65+/5leO/kwIJiqwgRHhmFfhFw+CbPgqGYSCRSCCXyyEIAsRiMeTz
+eWSzWSQSCei6ft6LSEREv6CzQu+oIsTzfPi+j/7QRWfgoNd30Lc89IcuHHf0d88emgUIQyAIQ+D4
+nwEgfPbUjOidWLaFXs9Fvy9j6CcQqCFcWUPXNRD0gEFgodFvsRUefVjS6FZYkiXIEqCpEmKahLgu
+w4ypMA0Zhq5CURRo2uhPVT3+U1GhqKObYFVVIcsyQimEAgWQL89IcCIiOj+vu4YPghPX8AMXvaGL
+wdCF4wTwAh+B/1xFOK/hiegDcRwHvZ6Dfl9C34vDV3IAgL4XR9iXYMFB0+pA16zzXlQi+pSduOdX
+ZEBXJcQ0GXFDRiKmwIyp0FRZ3N+P7v01KIoCRVbEf1MUBWEYjgLx4FkFOHAxA3A+WaNLT5Ik6LqO
+ZDKJMAyhqRpSqZT4SiaTfIhMRPQJOPnAzPcD+L4P1/MwtFxYtotWz0GzbaPVs9Dpu+gOPDiud/za
+4Dj0Hj0wO2vOQIR8akbvzvN9OI4P11XheSZcWYUHGZ6jY9iR0B460Lo9KC+Zg4noFyHm7gJkWYKu
+SjANGaYhI20qSMYVJGIqDEOFoSnQdQ2apkPT1NHNsD+6KQ7DUITfkiSJG+GLeANMREQXz4vX8D4s
+28XQctDpOWh0bDS7DroDB92BC9vhNTwRnS/P9+E6LlxXHt3fSaNnz4GrY9hV0LU9aL0BFJnBNxGd
+o+N7cuX4/jyuyzAN6fieX0XKVBEzFMR0FbqmQtdVcc+vqirUQD11zw8AkHHh7/mZBtJHwTAMAICm
+aUgkEnAdF7qhwzAMxGIxVnwTEX0ioioRx3Vh2z66Axv7tQH26xaaXRudvovewIPt+rBcH74fnGqR
+CEC0WAzPeEgW8sEZvaMwlOD7Knwf8H0ZQaCNAkJPPh49q0JRJLAsiT6U0Q1qePzPgCSFUGQJuhZC
+UwKYhoeEISNtysinZOSTMgxDQ9zQYRxfZ2uahiAIoGuja21VVcVcYFHl97P3IiIietEotB5dw7uu
+B8vx0B842KsNsF8fotmx0RmMBq3ajg/bDUTHpoDX8ER0Tk7e3wWBAt8fxSyKP6qMlG0FijK6xiYi
+Og9n3fNraghNkWFoAUwjQMJwkEmM7vmzCQUxQ0fM0GAYBnRdf3bPr+svhN8KFAC4kJ3eGHzTpSdJ
+0ujBm6rBNE0RXkjSaH5BRVEu3IlHRETvz8mHXaM5vQO4no+B5aDRsbC218OjzS6aXQd9K8DQ8RGE
+AMQcgKd/DtEvIQwlAArCUD7+9/DZ/MpSND/SeS8lfVpe/MyLHszJEhDTAhgqkE8EmCrICF0gYRrw
+4wZ834PneYjFYi98dkqSBFmWEYSBuBEmIiJ63suu4YeWg1bXwvp+D483O6h1XPSHPq/hieiCkRCG
+ChAqx9MqhAAkwMML93lEROfj7Ht+SQogS0BcC2AoIcaywHQe8LMKkqYOzzTged5ooOHxtDLPnltJ
+4p9l6eJWfTP4po+CJEmj+Qb4cI2I6JN0slLE8zy0u6NK752jAbaPhjhq2ceV3iEcjw/H6LxIx18n
+8HCkC8r3AVsZzY2qyi6CQEI+GcJLefB9F7FYTMzDejJ0kCTpWeV3EF7YG2EiIjp/L1zD9xzs1/rY
+rQ6wfTjAYctBp+/BdgJewxPRBSQ99yd4f0dEl4IkAZ4PWHIIRQ6hSCFcz0c+FcD3XPimB9/z4cd9
+BGEA4PRgQ1VV4Us+FCiQlIt3v8/gm4iIiC69qFIkGpHY6NhY2+tjdbeHWts+ns87hBfwLpSI6E14
+gYQwlNCzfYRtYGh5sB0Xkh8i9DV4nidC72jUtyRJkJVRVwPRfQnKhWx9RkRE5+/ZNbwP3/ePK737
+WN3podp20en7sJ0APq/hiYiIiN6fEPADCWEoozMcDUIcWj5c14USAoHvjiq+w9E9vyydvs8/2elN
+Cp9Vg18UDL6JiIjoUjtdKRLAsl00Ow52jgbYOhxgYPsYWAH4vIyI6M0FoYQgBAJHhusFGAwBRXIR
+lx0oUBCc+FCVZfnUza8kSQiCALIsIwxCSIrE8JuIiE45dQ3v+7BtD82Ojd2jITYORtfwQzuAH5z3
+khIRERF9XEKMgm8fEvpBCNsFLDuAJjkwFRcIPFHhLUvyaDphWYIsK5BleRR6B4Ho9HbR7vkZfBMR
+EdGlF1WKDCwX7a6NVs9Gd+hhYPtwvZDdxoiI3lEICX6owAEwtC20ujYUyPBDCdLx3IWqokJRFCiK
+Ak3T4Hu+uBkGAEmWLswNMBERXRxhGMIPQgwtF+2ejVbPQXfoPruG50U8ERER0S8qiO75/QA9K0Cj
+bSMMAwTAqc5u0T2+qirwff/UAHgpvFj3/Ay+iYiI6NIbPTQLMLBctLoWWl0H3YGPgR0gDMGHZkRE
+7ygIR+3PAklC3w7RCl3IgQ8JgKYAiqJAVVUo6uhP13UhyzKUQDk1AhyjDPxC3QwTEdH58z0fA8tD
+qzMaXNUdjCq9A17DExEREf3iglBGGEqwEaA/9NEKLEihCxmAKuM47FbFvb+qqqN7fmU0rVkYhqLq
++6Jg8E1ERESXWnjcbtf3QwxsD+2+i77lwfF8BGyNSET0s4WQgBBw3BD9wIMmudBVCTEthKqq0DRN
+fOm6DlVVEQSBaHdORET0vGh+bz8IMLRddPoO+pYH2/XZ3pyIiIjoAwohIQgl2G6IXuBCU3wYmgRD
+g7jn1zUdru5C13Vxvx8F3wDY6pyIiIjofQrDEJ4fYGj5aPcdDCwPvscnZkRE70sIwPUCDL0AOjzE
+NaCv+SLsNgwDruvCdV2oqgrf98UI8CAMoEA571UgIqILRrQ6t/3R4NWhB89nmTcRERHRhxaGIRw3
+QN8NoCs+YlqIuA5omoZYLAbbsaG7OjzXg6f60NRAtDy/aBh8ExER0aUWhIGoFrFdD72BC8vx4Ad8
+aEZE9D55fgjL96GFHuK6j4TuwbKs0U2wbcMwDHieB9/3Xxz9fcFanxER0fkLwxC+78NxffSHx9fw
+HLxKRERE9MGFIeB6IeD7iCk+hpqPgRbAMAxYlgVd1xGLxeB6LjRfE89jTw52vyhV3wy+iYiI6NIb
+zScTwPMCuF4A3x/NC0hERO9PEAKeF8CRfDhOCMtyYVkWHMeB67rwPG8UfHvPgu/oT5z/vS8REV0g
+Jx+Wuv7oGt7zA/ASnoiIiOjDCwEEQTi653c92A5g2wFs2xb3/K7rioHuJwe7X7R5vhl8ExER0aUX
+BAH8YFQx4nne6KFZyMdmRETvUxCECP0QLjzYTgDbDuA4zqmv0WewNxqA5AcIlWcjwKVwdBN8EUaA
+ExHR+Rs9NA3hewFcz4fvhwh4DU9ERET0wYUh4AchAi+A43ij0Fv3RfAt7vdPDHaPvk7/nPOv+mbw
+TURERJfayZGFQRiOHpgFIYNvIqL3LOqu4YceXNeD4wSnqr1PjvwOAl9U8xEREb1MNDgqCsH5a4OI
+iIjoPIQIw2DUUdP3j+/5/VOV3tGffuDD9wOEx+02Tw52P+/QG2DwTURERB+JECfa64Rgm0Qiovcs
+al3uwYfveXBdX4z4jm6APc87NfL75DzfREREETEnZBB1Bol+X/B3BhEREdEHFz675/c9H57nwnXl
+U9Oanb7XDy7sYHcG30RERHTpjR6cBc8emoHJNxHR+xZiNIrbD4PjsPt06B1VfPu+/0LgfRFvhomI
+6Pyd7N7Ea3giIiKi8xEVFAVhcDyo3T812D265z9rju+LhsE3ERERfRSeVXuHYI9EIqL37Hj0N45H
+gAdB+MKNb/TnyZvfi3gTTEREF8Pod0Rw6jqevzWIiIiIzkc0vVmAAIHvIwiklwbe0etP/nlRMPgm
+IiKiS+1Z2A0Ex6HM6HIrOO9FIyL6uIQY3eQeh9zP3/yeDL1Z7U1ERG8iGlT17HcFf2cQERERnQdR
+9X18f+/7ODXIPbrnPyv8vkgYfBMREdFHIYq7QwAIAz4yIyJ6z8Tn7MnKvBM3xc+H3hfxBpiIiC4O
+8ftC/DsHrhIRERGdj1B0egsR3efjVNh9kdubn8Tgm4iIiD4uF/zii4joMntd4H1qrtZLcENMREQX
+QMjBUkRERETnLar4Fn+GOPt+P7zY9/sMvomIiOijcdzxnNXeRES/hBDHg4tef+MbsGqPiIjewAV9
+XkpERET0yXo22D08c7B79Jrnv+eikM97AYiIiIjeiyiQYfJNRPSLu8iju4mI6OI7+Tvk2VQa4HU8
+ERER0YVw4lrtJff+F7XymxXfREREdOlFbXiO/+1ZAE5ERO/dyY/Xs250T/0zW54TEdErPWujiTDk
+JTwRERHRBfCqW/iLfn/Pim8iIiIiIiJ6A+GpP89qbRYEz1qcB8Fzfx9c7JtjIiIiIiIiok/Wcfed
+8MQ9/2WZ1/skBt9ERERERET0RsLj/zs5r9dluPElIiIiIiIiolcTofdr+vBc5OcADL6JiIiIiIjo
+tcLn/jz1d2dUfxMRERERERHRJXBq1sjw1ID3y4bBNxERERERERERERERERERXWoMvomIiIiIiIiI
+iIiIiIiI6FJj8E1ERERERERv7bK2PSMiIiIiIiKi1wvDUHxdFgy+iYiIiIiI6J2cvAF+/k8iIiIi
+IiIiumRC8X+XEoNvIiIiIiIieivPZ9sMvYmIiIiIiIg+DiFevL+/LNXfDL6JiIiIiIiIiIiIiIiI
+iOhSY/BNRERERERERERERERERESXGoNvIiIiIiIiIiIiIiIiIiK61Bh8ExERERERERERERERERHR
+paae9wJ8KlzXheu6cBwHYRjC9/0zXydLo7EIkixBlmVIkgRVVaEoClRFhSRLkKTRF70Z13Vh2zYc
+2wEABGEAVVWh6zo0TYOiKNymRET0XiiyBFWRIMsSIAGSJCMIAoRBCD8IEYRAEIRnfq8sS1BkCbIM
+SJIEWZKA499NYRjA90P4fogw+nYJp14vjd4SIUb/F4RAGIYIXvO+F510/H+ydLxtFUlcL4XhaLuG
+QQj/eF3DN1xN6Xj7KYo82oZ48VpA/KgwRIjRzw7DZ+/7svcb7ToJcrSPTizzWcLj9wBC+AHg+aP9
+/UtuS0WWjq8rAVkSf4sQIY7/hzAcrV+0nkH45tuXiIiI6DJ7m2vQMBhdJ/1Snt0njK4vJUk6cZ0f
+IgiOr9fOe6OdoMgSVFWGqjy7Bg6CQFxDByEQXrBlfvl6SFAV5dR6BCfu7y7Depyn6BYrOoaje1dZ
+3HpJ4l4LGG3P6P71Y77/iO4ZR1vg2T3h6D7svJfu3cnS6JxRFAnS6KHIqecZQTi62ZTe8HWXeFO8
+leh3jnR8r67IAMRznrPu1U/fr3/M58rbiI4/VZHF+RWEx5/Zfiiek3FbffwYfH8grVYLW1tb2N3d
+heM4sCwLQRCIv4+CV1mWoaoqVFVFLBZDLBZDJpNBNpNFJptBLBZDPBaHoio/Y2k+La1WC2tra9ja
+2oLv+3BdF5lMBjMzM5iamuI2JSKi98aMa8inDaQTGjRFhqrKGFguOgMP/YGLoe3BcvwzQ+iYriCV
+0JCMa4gbCuKGClmSEAJwvQD1jo1m24LrBwjD0QOwlKkhaWqIaTI0TYEiS8cPYQDb8TCwPVi2j6Ht
+Y2h7lzL8lo8HE+iaglwmhmLagKaOHqD5QYjuwEV34GBgjdbRdvw3+rmKLCGXNpBLG4jr6ujBnPzi
+ILgQo4eJfhDCcX1Yrg/L9tEfehgMXbh+8MINuSJL0DQZMV1FNmUgl9TFMr9MFNx3+g5qLRutrv3+
+t6UyuomOGSqScRWJuAZDk6GrCiRZEjeAnh/C8304bgDL8WE7PoaOD9v24P0CgTwRERHRRSPLo0DG
+OL4GLaQN6O/hGvRdxHQFmaSOVEKDoamI6TJsN0B34KI/PF4Gy4N/ga71E3ENY/k4CmlD/LeB7aPd
+s9Hpu7BdD44TXKhlPosZ1zCWi6GYiYn/NrR9tHoOun0H1iVZj/MiBhvLEhJxDWZcRdxQR/cgmiLC
+vuB48K/rBeLe1bJ92K4H2wl+7mJcOLIsQVOOQ19JhiSNBq4Hvg/XD0+FmpeNrssoZmMoZeNisIPt
++Gh0bTQ7NlzPh+eF0LTR64rZONRXvO5TObfk422gawpSpoqEGd2rq1CV43t1RPfqo3Mlule3bB+W
+48FxP75z5W1pmoxSLoZy3hTPd1wvQKvvoNNzMLR9OK4P1+O2+tgx+P5AWq0WlpeXcf/+ffT7ffR6
+PXieB+DF0FvTNBiGgXQ6jXQ6jXK5jJmZGQBAmAmh6zoUMKR9U61WCw8fPsR3330nqu7Hx8dh2zZS
+yRS3KRERvTfJuIKJUhyTpQRiuoq4oaDesbFXHeCwMQQAOK6Psy6xY4aCQiaGcj6OXMpALq1DkWWE
+YYi+5WFttwPb8TC0fYQhoCkS8hkDlYKJdFxDPK5CV2V4fgjX89Huu2h1bDS7DgAbtuPhMl7ay7IE
+VVVgxlRMluJYnMwgERtdwjp+gP3qAPv1IertITw/fOOHjrIsIZcyMD+eQi5lwIgpiD03CG40kjqA
+64dw3QB9y0O776DddVFtDWG7HvxAQvBc8q0oEmK6ilRCx9RYArOVpFjms4QAXD+A5wXYrfZhu8F7
+D76jh06qqiAZVzGWj6OUjSFpakjGNMjKaNBEEISwXR+2E6A3dNHpu2j3HUg9G57rj6qbPo1nD0RE
+RPQJk2UJ2hteg/pvcQ36LmKGglIujvFiHOmEjpSpoTdwcdAY4qghQYID5/g67aJImipmKkksTaXF
+f6t3LGwf9BFiAGkAeJ57oZb5LImYgulKEtemM+K/NToWto/62EN4adbjvMjSKNzVVAXppI5SNoZs
+anQMJ2LaqJpVHoV5luNjaPloHgef7Z6DIAw/zuBbAlRVQUyXRRX86D4MCMLRQPnLOt44pquoFExc
+nclA12RoioRO38P6Xhe242NgA0Hgj16XN3F19tWv+1TOLfm4u4QZU5DPxFAuxJGOa0jENei6jOC4
+WtlxfdhugL7lotNz0Rk4aPcceL4P17vc3QLeB11TMF4wcXMxJ57v9C0PO0d97Eg9SJIDPwjgeue9
+pPRLY/D9gQwGAxwcHGB1dRWdTge9Xg+u64q/j4JvRVGgKAo0TYNpmjBNE7lcDk+ePEGpVEKlUkGl
+UkGpVEKxWEShUBDfT2cbDAbY39/HysrKqOW542AwGGBiYgK9fg9GzDhVfU9ERPSudE1FLhXDeMFE
+Mq7CjGtQ5RDdbg9NyYYU2PA9B74fQpJkyBKgaxI0VUIxrWC2bGJmPI10QkPa1DGwbLQ6fTjWAPAs
+qHCQSyrIJOPIpOIo5UYjpJNxBTFNhabJ8PwAnheiN/TQ7TtodR0cNXqoNoFWZ4BOz0J/6EKWFUiK
+CklSjr+etVa/OEKoCpCIycinNVTyccyUE0gmNACA4/iQ4SH0bXi2h06zA7s/gKxokBUNkqxCkqMW
+V8frdty2HGEI05BRyuoo5WJImBrMmHbyrcUoez8Yjaoe2r7YrqWWjnpLR709QKvdR7tnjSrDQwmB
+rEEOQxiyjGxCwVTJRDqlv3wtgxCuF8B2PFiWjU3Zg+cMIMkKZFkFjqsAxDq80aYbraciA6oC6JqM
+fMZAIRNHIRtHKRNDPmPANFTEYgpUSUaA0Yh61w3gej4G1mh9e0MHR/U+aq0Bmh0L3b6N3sD9ectH
+REREdCGNrv9UJUQiJiGfUlHJxTBdNpFKjK7nRtegPsLAhmf76LV7cIZDyIoKWdGPKzjln31tHYYB
+EIZQpQAJAyimNXE912gPMRwO0JYdyKGNwLMQ+IAkKed6bRYts6ZKKGR0zE4kxd+pSohWqws1GEDy
+HPiuB9/H6Jpdiqp/L8b15LP1AArp0+uhqyFanS7UcAB4LgLXO76/UyHJF2s9PuAWO565KQAQQlcl
+6JqEZFxHNhNDLhVH/rhzQjqhw4ypiMeU4+m9RsG34wawXR+dvoNu30Wr66DVtUZfndGftutf4u0c
+Ht9fBtB0FaWshkrBhKap0FQZlu3iqNFHtW7B9kZV8EH4rA34xXXcfjsMEAYeZMhImzKmSnEYugJd
+VVDvDFFrdCD5A8DzEXgBFEhIJ5TnXjdAte4idFoI7ACeHcDzpeNnFxqAj2Wq0tH5Ikuj5x2qAuTS
++vG9uoli1kAxG0cipiJmjLZNGAJ+GBzfq4cY2h76lof+cDQov9boo9EeotO30e07CCGPzhNJvgTH
+0M/ZlNH0AD7CwIMUhEibMqbHTPF8p9O10e8PUVU8KKELhB7CIDj+XfmRbhdi8P2hDIdD1Ot17O3t
+od1uo9PpiIrvSHSinZzbO5qLOhaLwTRNzMzMYH5+HteuXcOdO3eQy+YgHbdt4Il6tuFwiGq1ip2d
+Hdi2Ddu2oaoqGo0GhsMhPM9D+KkPhyIiovfC0GRkEhrKuRiSCQ2phAZ7OMCuYkPyugg9F77rjh7w
+SDJkVYYhq0jHFUzkFFyZSmBpNgtDVaDrMnb3Lez1uqgeNTDsu1ADF+V0GldmU5idyI+qdU0duqaM
+2oMpQOCPAlvHH90U9QYOdg8l7B54WN/pwep20Oz1oOgmFC0uQmIoGqQQF+iGaHQzqKujG+KxrIZy
+zsB4KY6U+Sz49pwBfDtEu2kBbgPDTguakYRqJKFoBmTogKxCGq3caP64wANCCTEtRC6pYCyrI5U0
+kDT15xcBwKgNeRgCnhfC9X04ToBWb4h2x8L6Tg3/P3t/9ibHkZz5wj93jz1yz9pRAAFwa6q1zJHO
+uZqbmev5o+dIn2ZGy6gldXPFjgJqzX2N3f278MisAgmSYEtnejRKe55iESQywt3DPdLMXrP3/fb5
+nOV0TlUJykpQCQ/j+TgIWqHhsOfTvUOP+IOZGsiygix3uB4KlEkpsyXS8cH1EdIF5C96NFYnT6ME
+BA60QsnHJyGff9RjvxfTiDzi0MWVEuVsEgi1RlhVa43riqKwQfXFjcvlDby+KHiZ5UyzJdIJfu/x
+7WxnO9vZzna2s53972g2PaRxlaQVSvbbisOex8le+A7wXRUJOoPFNOOinJOtZjhejOPFSMdFSteC
+0L//SDDaAkkCl9DTdGLYbzsc9kMUOTeDEsesoEypioyqlEjHQyoPY/4QAJHZgl+u1HQaDid74fb/
+psmawMkQxYwqLymzkkorpOOjnAAjNkq2f3in8u482t+bR56uCVWOKGbooqLMSkqtUI6HEv97zeN/
+0WrV1NwaowvQFZ7n0A4Ux3uKx/dbPD7tE9fdq76nalkwcbc22ervak1WWAaq5TpjPF0znq345kXB
+apGyzgu7X/7NrXO9RrpCVwWBI7i/5/Onn/WIQo8wcJjMEr5+nrOe51AJCiMwWkBdqP6/rZlaHqzK
+qcocUQliz3DQcQkDD99zkFSETgH5DJNDVQBaEvuGg65PFLh4noOkIJAJVTKkTAxFLii0g+MFqE1B
+Ef/yoqI/tNkCCIMQBl8ZQg8e7Pt89rDL6WGLRuzSCD08x8rZSXUnVtdW03tDd15UmqvBnIsbwdvL
+ipfnCdPJEiNcpOPbXM8G/P4/0DZNDbrK0WWOKTWRbzjqhTTqvFHoCi6uDQ4pwuSgNUYbhHTgf+ez
+tbN/ke2A7/9FVhQF8/mc0WjEbDZjMplQVRWu6+K67hbs3pgx9su+KAqqqkJrjVKKq6srrq+vSdOU
+RqPBwcEBURQRR/FOo/pHrCgKZrMZo9GILMtYr9e0Wi0WiwVFUVAUxQ743tnOdraznf2rmKMEcejQ
+bnm0Y492w2MYgidzRLW03QB5iTYSpRyUcGiGisOuw+lBwKPjiIdHMUVRUhQVRZ4wHo0YDIYgHGLf
+5bjn8dmDJp8/6iIxCAFlWVKWlfUtlK3qbccOruujdUDLL2h6BdlqwvVlhs5nYCqMMSg3BCFQ0sFs
+cw8bn+SWwvt935TivX/41wmo7Fez7RZpRw4HXY/9rsde26dZA9R5UZAlLmXmchmUyHJGthrYBKFQ
+NiAWAiVVnfyzCRmtS4wWuErTCATthkO36dOIPYqipKxKqrKi0hpjDI6USCFwAgfHsX5bknokaYgn
+UmYTxWhQMl9bLewSj9KrKHNBVaZQpTjCwXddHEehlA3adVVRlCVZnlOSQ5VjyoQqTyjzFQ4CWXfl
+c7dr/edXjxrBxlGSVuRw1HN5dBzzx4+77PciG0ALQVlVlEWJ3vhCApRXsxBJW4SptabhF4QqJVnN
+ubjMKdMlygchFUoo+8F3EhDv0r9/f/982N754eb7fTy2H97r59bxRzb9T+7x/7Xz/f/y7O1sZzvb
+2c529u/bLCDhKmhFgoOOx17bY68T3PFBy60Pen2tUXpJvhqD1rYzUQiMUIhfJKn3Pb/bGIwu0FWB
+0C6essn8VqTotT3SRBGoAlGtoMyo8pyqqpl4pIuFSfQW7Pg5H0r81H/4QNdoA+xZsL7ClRB6Ysu9
+64ociiVFNqPMKsrcUBkPhEIqjUDai4kf3vTDYpEf84V+/lp3P20bl+08oMKThsgT29yhKwtEtaRM
+Z7YjNTdoYzv9fziP99/YvOe+713UD5jPT83ppy/9rxu3CaPBVEhR0ghsjPvwKORXH7X4o096tY6z
+zXmXhaaqyu24hRBIT6CUg6MUjqNIs4LJzGU0dRiPJjwno8yzOkZyESgM4k4I8ktj1w9f4w+NQd5/
+D7PdO1oX6CrHEQ57HYfPHzRoNQKaccDVcM5weMMLmZEgoBLoSiEVYOS/6BmJd//x/vl+yPn4wd65
+ZVPTukSXGaaS+I4tfIlDjyDwSJMET+XoYkmVQ1Uo0B6hB92GSxR5BJ5LshK4JqFcDykSSVFISgIr
+E6u8mm1MfA/E/QXn+wPjuQ8+T7/vWbIvS5QwxIGi31Z8dBTyRw/bfHSvjSMlSgoqXdVyY7dMtdKV
+KCVRysVRDkop2oEmUhk6X3I9KKjyNUb6CCExQtqmyXeG+K/xTvrXidV/eIsPiNW3t7bFVugKXRZU
+RUJVlEhTEDiG0LV/a6VKy4xSrNBliSkF2kikkbfv6x+9x0+M94PGbH52jX7Z/Hf2obYDvv+A1mg0
+aLfbdDodGo0GURQhpaQsS/I8Zz6fM5/PWa/XJEnCer1mPp9zdnaGrDU/F4sFn332Gb/61a9ot9v/
+8kHtbGc729nOdrazf6GZd34bbTtCymxNmReUeYVQLq5raIUuD44a/OrRHg/v9Wg3Qoqi5OJqwOXN
+iO+eX/Dk+QWD8YKP7p/w6OE+D0/32GvHSAyT6ZzpdMZwNOFmOGaxXBOGAVEYcXTY58G9I/q9Ns1G
+xOkRDMdzzs6vGASG3GTkOWBq2nXpYKNqeTt+swnS64DinflRU2bdJnY2FFriF4G0P76OxmhcR9Bp
+uhx0A5qRiyNvr6ukohFHHO5XdFrXKArKZIaUDsrxEVIipcIoXY9JboNMo+suGqPtnzGUZcVwNOL6
+Zsh8sWS5SkjTHD/wCXyPTrvN/l6PXsdqFQa+y0G/yacf7WN0xbOzIYvliPVqjTQZwuR89U3OcnLD
+6XGX05M9Tg669TMKmS+XXF7dcD0YMZ6lTGZrXl+tGIyW27Fti/PML11SDVQ0Qo+HJy0++6jDR8dt
+mrGHrjTJOmOdrBmNpowmM7KswGC1xRpxRCMO6bRbdDst4jhEYJDCIEyJqVLKYo1QLsYNMKaqq+/N
+tuL/LqU8d/9c7xsD271zS7N/d5K3n70tUDS/V7GieM+9xDYZ+W7SxJj33Xdzoe9TDW7GzP/y+d6e
+sXev969z9na2s53tbGc7+/dqdzqWlUu74XHQC2jGLuodH1TSbIQcVh3azQGOKKjyGaVyUG5g2Yak
+AlmnXYX4ifvZ3z/wu42mKjN0mVOVEl2ktpvN0jthTEVZpDbGKAqqIkdrD6FcpCprQFDWILre+iU/
+Zrc+Tv3zjov0Q99EAEbI7fy2QJTRGK1Zr1LOr0d8/dRgqgKtS87OB1xeXTOfTkgyRVkoG3+Yyn5u
+4x/d9Yne8Y/M90d8S1Vr7o7/3TV+109733psmDRv4xpLm1vV8xjz1VO5ncfbywEXF9fMZhOS1KEs
+FFpKZE3zfTcefK9v+b37vxtT3TIx/dCv+6nr/bS993n9qE/8C83ommmqwnMNgUMd4/b56KTD0V4T
+z5EkSUqaZsznS0bTGZPJzIZmgOs6xFFIHEX0ui363Q6Oq4hDHxAEvrIxSJ4g5Oac2bXanKF316Z+
+Flt3+3a/IATC/Fjcevcc/kRc8P09drd8/Ac+P9vzbSoLDlelQtf7ycpvGnRVUeYJWTKjyBRl7lBp
+F6M10vmXNWz9UNrs+wXLd87Y3f15hxFuI9/w7rvizhrV3exV5djCEXP7LjNGo8ucMltSFQpduOiq
+RFfVO5rURlcUeUper0FRuGhp7PPWGoSGTUFRTXH9g3fE9jyYd+b6/vH/1Br83Jq+e70Pi8M2V9Vg
+CnzX4d5BzK8etnl40qXbDlBCkCQJWZYxGs8YjacsV8n2ClEU0ohDWs0G3fqsUMfqkgpT5VTFCpTB
+OB4YF4OxEekHxOrb03J3H8P31uxODLx9N9er/gvj9bvvJvHO2fnhPt2cybvflcZUtoO7ytFlRpaW
+XA+GfPPUJ/QdMJrZMuXtxYDZbEaylhSlC9q1+2l7fH/i+/hHvnvePec/VkzxI2fr7vW+915iW9Cz
+i+v/JbYDvv+AFgQBh4eHPHz4kMPDQw4PD1FKkSQJq9WKs7Mzzs/PGQwGVFXFYrFgMpmwWCxI05T1
+es14PEZrzenp/R3wvbOd7WxnO9vZ/zZ268waXVIVKUW+pMwryrzC8zx8Ce0o4sFRk//rixP2ujGB
+75HnGZdXQ7789hlPXlzx7NUN66zis8cn/NHHB9w/7tNqRQhhmE5nvHz9lmcvXvPs5RmDwZh2u02r
+3eaPPntM4Pv0+23azZBWM+RmOGa/7XERaWbrnCQv0Aak42GMd8fRvhNU6OoOAPtuwmkTEFlnX9YU
+WvJOfPz7OuqbAEHjOdBtehz1QlqRi7yTdJRS0GxYTbBu08clo0ynKMeldCNL9ej4SFN3XohNUF4D
+36ZCm8rqO2GoqoqbwYinz15weX3DcDRjvkxoNGIacZMHp8dorQkDnyDwCQKPo70mmJLQF8wXC16+
+WpGure54kaesZgNev6p4fH+f//Drx4SuLV70PY/5Ysmr12/59ukLroYrrkYr5mtYlz7G+LBN2Og6
+sPrQvWfAVAhT0YoUj++1+YsvjmhGHo3YJ01Tlsslw9GE56/e8vLVOcv12q6pUuz1O+z3e9w7PkA5
+iigKAY1EI0yBLjPKPLGUlLrEaBcjdP3s671SJzg2a/suELzZIHf3jroT4LLVVTSmem9A/YNZm/et
+wyYBJbbd/1JYrTMjZL3f391zm323ve/d/V6P016x/uw2abApVNC31/kF86U+Y7fJoZ+Z7zug93uu
+twuSd7azne1sZzv75WaFQjG6wnOg3XA56IU0I+8d4FtKQTMO8V1FtxXgypwynSNVQOXFSMdDK9f6
+oD/hw90CdroGtG/9AVs8a7W7q0JSlTm6LNG6YgsylRllbotrq6KkMgbp+PZabPyFH4Ia77O7/tK7
+hX7vAwPu+DdC3PpIQmz9oXWScHE9IRAJVZlR5SnXwwmXVzfMZhNyE1JpH+G46JplSRhj/fUNbXbN
+ULX1jbb+0e04hZSW8lqounOPd/y7je60BbINFnDa+G/1vO4AGBsQw3Z8VyRJyuX1hG9VRlWmVEXK
+zXDK5fWA2XRKZkJKHSBcd+sP2pjI3O6nu76l0T/0MTcg02YtN6wB5m7NhPje9W4Bxdvr/bj/t/Vd
+7zwvgbA+8baY8/fzHzdSUsqpCFxNJ4IHRzF/+vkR9486uI7CdRSzPGcynXF+ecOr1+ecvb1EG9DG
+EAY+/V6HvV6Hhw9OCAOfjtckimzMFXgCU2VUeYLjhmhdIe8AjpvY7tYnvwX03tkvQoDczF/WBSKb
+ud/u9XcKpO8WI//oi+M27tj651LVayvqc12hq5JqU8xSFXWsXW3/f1Uk5OmcMnMpcpfK+Pbed4C1
+dzrcf9Y2oKXeFrnfFjuwjVu0qbbz/eH52MQdEnFn7bZx2+bdoCt0maNLidblbSwL9dwyynxFmbuW
+3baeP0aD3jQNaMpiTb6ekxcOZeljHGmLfkyFMap+T9y5r7Gx7/Y5ff95bfbIhiq9pksXd9dg8059
+Xyz3I8fi9nqb9fj5c3T7Lq3AVASuw+lhg7/44phuK6QZB4BmvU6ZTKe8fH3Oy9dvGY6mG+iafrfN
+Xr/D8dEeCEG71URgEEIjKDHanhMchXJLpKMtGwPqTtxq6vX84XztrpE/XLcNQFtP5Afr/i+N1ev3
+uaX1/94+vROr67rD+/Y9aPM5VVlQlTl5Bjc3Q757pvEUaF2xSnPOr5dMpwuS0qciwmzWY7OL734f
+v3OP979Lbt+l4h22wXemWL8b39mbd8/Wnetsztbmu2jDWLiL639/2wHff0BzXZd2u829e/d48OAB
+Dx8+xPf9Lah9fHzM9fU1FxcXXFxccHV1taVJXywWXFxcAHD//n3evDnD81wajQZhGL73flprqqpi
+vV6zWCxYLpfkeU6e5xhtkMrSWvq+j+/7lkI9jgmCgJubAcPhgCRJag0KQafTodPpEEXR9jPfN2MM
+s9mM2Wy27VzPsowwDOvrN2i1mjSbzXc+oytNWZXM53MWiwVJkmzHqpRCSonruvi+TxAENOIGcSPG
+87x/FQ2jDcV8kiTM53OWy6WlRc8LAKSSSCmJ43i7TmEYEgTBT153sVgwGAwYDUdUdfWb7/vEcUwc
+x+R5Tpqm5HlOVVWUZYnrujiOQxzFNFtNWq0WSikcx3nvXO+u32Kx2K5flmXvrJ/jOARBsL1/s9l8
+7/otl0sGgwHDwXA75iAIts9/tVqRJAlpmm6p49vtNu12mziOf3Rv7GxnO9vZvxfTxtj3Z1UgdIWi
+ohWFPDhu8/GDfR4cd+m1IwSGyXTKcDTl2asLvnt+wcXNlHVWoRyPMArodWJaDZtkS5OU65sbvv72
+KS9ev+X8YsB0vmK+rmguK5qtLqfDKceHS6IoJI584tCjGbk0QsU6LdFlCTh1tXllw3JjcB2J64Cr
+wFUKJRVSmC3QV2n7XZMXFVmZU5QGrSUa66xL5dwG+r9nB6oUBikg9BSthk+3FREGLmDI84KqKqmq
+yvounkscBTQbPs3YBQdMrXWo3DqhIIXFvWvbJs+2sY4NolarNYPRmIurEdeDKdP5mjBOiKOUdQ5Z
+Cauk5PRkn9OTfcLQp99tUpQlrdjDkRqjc6rSIRUlRZ6xWhW0mmuW65S8KKiq2w7z5SphMlsymq4Z
+TdYkpYNWHtJxENK5Dc5/oX/jKoFSkkbo0GkG9FohrqtwlGQ6m/Ptkxc8efaKy8GE68GUNK8sbbly
+mSxKbsYZg2nGYJpwsDdmtbaFmfNVQl4UdxaSLUCttQBTgrHUlr4n8RyJUgJH1TSb2qCNoazsT1Fq
+8qqkKKmLKBSB79CIXKLAqZMvuparyUiyDM918L1b2nglJUmSs04zpBREgUfge9tgPS9KkrQkzXMq
+o2xngVAIuaEgtcGsq8BzBb6jcJSLK0EbTVGUZEVFVhryIqeqNolRiU2e6vqzEt+181WyptZ/z3yL
+qiTfzFcqAs8hDh3i0N3ON89zVuuUJLXz9TwXdzNfpUjTnHVaUlSaygi0lgjpINnsGX6vc7ezne1s
+Zzvb2b9rE7UPKg2Br2g3fPrt2Pokd3zQsqpwlMLzXOLQpxn5NCMX45jaD8wtAG0s0LrtJAZuwdgN
+CFuihMb3FYGrULLG5dAUmaHIK3otl0YocR3rU4ktkKa3AK3WJb4X0G17tNqNDcZJURSkaUaeF7iu
+g+s4KHUL8haFzT2leUGWV+SlxnGc7d8NfQfPc7bgkGWpLMnygqIy5IUGJKKW59l0emptalkfXXd1
+WklHq0tbUVFtuxDFlq7WYIzAkQLXBVeCoySOUkhptiu4iUWK0pCXhY1FTB2LILcggucIXEdYPema
+OthCR1WdI7U/aV6SFyVlVZd6GrEF5HQlKauSoqzsPLSdW1layaKKagvW33ZBavSmTNGUSKHxaz/R
+UXYcUgqM1ls/MS80WVlSaUFZgq51nS21s92cvitphB5RIG1xqbESmUmSkWY5Xv3crL8oa1ZRK4eV
+5RVpXpDmJYg6zpDWH5bK5ffuMDQW2NG6xFWCg27I/YOA08MW/XZkO73ThPE64fmrc16+vuD8YsD1
+aMpwNN+Ceb7vMZrlXA1XjOYZ18MFh/td+r02rWaDPC/qAolNEYFGUOEIieNIfFfgOx6iPr/CGLS2
+FNF5XpHnBUWlKSooC6zfrNztGmzYq4wxeI4gjh3iwGHj65dFQZoWJFmG67h4rkI5EikFSkrKSlOW
+mqKoSIuSNKvusD7cnv3IF/iRz1E/otP08VwH11FIIfBdh24r5vSgwzJXrHKHwrgo5SMd2/m+7WGu
+w+z1OmO1TtFG47senmefv6MUldYkaUGS5VRGUJWbuLJ+7tj3neOA5wh8x0FKtudEG43W2u7NoqKs
+SspKUGpu949Q23W7WwhszPdKber3ldYWvL4tcr4Dlm6BwgqtC4sNm8075U5RkNkUedtn47vgO8K+
+2+rxa63RRlNVhqrS9oyVBXlpqO6Mf3NP15HEsSIOfJv3wFCUJeskJ0lSHEdt4zHHUThKkeUVSa4p
+qsrmfCzF1wecI4Oq900jrL9nOhFx6OG5itl8zcvXb/j62+dcXI+4GU6ZL1ObX5EO40XJzSTjepIy
+mNizkuc5y1XCbL62TG5ms1vM92J1e3aU0PiesrGrrL9XhM2RGG0otaGsoCgNRWXXzdTvVtd1aEQ2
+Xhc1kF6WJet1yirJUErib9ZKKZSjyLKcdZJRVZoo9AkDz8qC1O/zJC1YZwWVlmhToY1ECMey99Xz
+UAI8D3xH4ioHpez3ZJblFHnBcmVYFRVVab/T8qK0he7Yd3ZVf/eUVYUWxhId1oC/MAaJfXd4jr2H
+2nxniM2etGfcfoeV5KUhL21Bgd1PcpvPsGVn2o7ZF/iOxFECVad1Nt+Rm725yRFkpamvp2r9cbkF
+13f2y20HfP8BzXEcms0m+/v73L9/n08//ZQ4ju0BrUpWqxWr1YqLiwtevHjBixcv+PLLL7e052DB
+7FevXvH8+XPCMOT4+Pi9wLcxZkuhPh6POTs7482bN1tgVGu91RvfAJoHBwecnJzQ6/V4+fIFv/3t
+bxmNRmitkVLy6NEjPvnkE46Ojuh2u+8FN3Wlubm54dWrV1xeXjIej5nP5/T7ffb397l37x4fffTR
+O8C3TaRbAPj8/JyzszOGwyGLxYLValU74C5xHG/Henp6yj3nHq7rAvyLwO/NWiXrhJvBDWdnZ7x9
++3b7PIwxOI6D53kcHR1xdHTEwcEB+/v7Pwt8T6dTvvzyS7788kuqyjqfzWaT09NTjo+PmUwmTCYT
+lsslaZqSpilRFBFFEQcHBzx69GgL+Esh36vrbp3/gizLuLi44PXr1wyHwy2AvwXS76zfycnJdl2/
+v36z2Zyvv/6a3/72t5SlBRm63S6ffPIJH3/8MTc3N9zc3GzHvVqtePjwIY8fP+bk5IROp7MDvne2
+s539uzaBsbRcpkKJEldq9jo+Xzze408+v8/Rfpsw8JjOZpxfXPPi9QVPnr/h6asr1pkB6RM3rSxK
+HAb4vtU9y4uSi4trvvnmW86vxsxXGWluKExKUvr0RyuuBnNuRlP2jMH3XRwliQKXOPRw5gW6TDG4
+6DJDVyXSGJAaRygavtWGjkOHKFB4jkTWFFBJXpBlOfNlxWResMhzjJaUWoG04LS82w3+CzsIBNik
+nzCEvqIV+3TbIUrZbuk8z0mShKIoieOIKAqJQp9uO2av02RVKlZFTlWkmE0lvRAY1LZS+A7ivf13
+ow3rJGU6WzKazBmMV4zna7wVeIFhkcJsmTGcLCi1Zq/foRWHtBoxWV7aYFXZQBJAG4GuJIUWpIUg
+LwxlpdHaJscqbSjKijQrSXNNWggK46BcD+WENhkjFOKXdHsbmz7yXEHoSpr18/N9ByXtdYbDCf/0
+u2/527//J9LSjs0IF+UGSEczmle47prW5ZwXZzd0WxGe5+J5ivE0Ic21TRTUAKtBW2Z1Y5O3wpR4
+jqIbu3RbLqFvf4TAaoqXFau0YJ2ULNYF02VJUgPvQjoEseK473PvoIGoO82nswXnVwnDPKEdRrRa
+AY3YJ/RtguBqMON6WOA6ioN9j4NuEykFQknmy5SrwYLBOCcrJVkl0ThIx0UosS2CcDxJJ1L0Wg5x
+oGiELmVVMV+mzJYpk3nBJM/RJduEqqBCUOG6km7Dp9t0CQOXyLcFina+mnUNVM9XJfNVQVKUdYDs
+4IWS477P6WHDUsqjmc6WXF6vuU7XtMOYVtOn2bBJAt9zuB7MuR4lLFYFmZYUpUA6VndUyrvJy53t
+bGc729nOdvbhZlDCIJQh9CTtZkivE+Hc8UHXtQ/auOuDtiL6nZh1pVgXee1bhxhTg4zfd4VrOnWo
+kJQ4QtMOffY6PlHg4LsKR8I6USSJoNcO6LYCAt/BUbJOnLOlrd2ASJGvON2PuH+/a5P4AuaLFcNx
+wWKhacSSVtPH92w8IYRguU5YLDXTeckoXbNOUtwwxHV92mHEXjeg04qs5I2g9pUrpvOS+SojyQq0
+kSg3QChvOzAhLJOQ6zoIJ0D4DsFyjVIKbcAIoNZW3YBmeqN76wli16EZKRp1caDnWpBRQA3SlyxX
+OdNFxazIMUaiK8vqI6VCofAdl1asaEQOsS+JfLUtbCjLkjQrSJKcySxjMk+oKo2uBJW+7Rw3RqGk
+wHUVwvERnkMQJijloDe08NtuT3HLWAQgNFJUOFS0I59eUxFHLr7r4Ls1WFpVrJKC2TxluixZZxbQ
+r4xCOm69lrabMPQdjvcC7u1HCKMRaBbLFTfDnPG0oBk7NCJFGPpb4Gmd5iRpznS+YjhOWWUrkL7V
+gVee9R9rcOW2i/dDnUhTd3tbeuXA9Tk5aPAnn/a5d9Am9F2yPGc0nnI9GPHPXz7ht18952owJa8E
+eVV3SkoHpTQ34wzHnfH6ckK3+YZ7x3t8/vEDPnl0j+Uqpap0vcR2z0shULIi9gTdpkO35VkA15UI
+NGVZkZcl09ma6axivsqoqooiKZFOgHJ9pPKQyrESTvV1fdfhuB9wehBuO2nXq5TBaMZwXNCIFY3Y
+J6qBSs91SbKcJC2YLVKGk4x1noJyQXp3GAWg2XA46gY8PGlx0I2JQt8C31ISBC7HBx0+//iEJBek
+paDUtvhBSBeDLaoX2MIJqQQXV2MurguKoqTdcGi3HcLAI/I9sqLkelhyM8pICygrQaVtkbqQFjhU
+0hA6im7To9vy8D1J4CpkHbcVZclskTKd5yzWOatCU2YGoTyU49XgHHWH6u276H2dv2ZD927uUG6/
+5+/cZTUw36fkxtj3qpYICgQVsefSbXq0YpfAl4SeUwOKJVluwetVkjNdFpRZTpYbG2crb3NTQtfl
+oBPw4LCBUjYPsVpnXN7kXGYJjSCg3bLsaWHgEQUeo1nKzSRhtizIK0VZUctLqB+JwzbjB8cVRI6g
+GTk0Qgfft+dVCFgslnzz3Qv+3//f37BYl6SFoDQK5fhI12c817huQnQ549XbEf32G3zfw/cd1knJ
+Oi22rAY2G2XzUcYUCFMhTIHjQCv06DV9otAl9C0rQ1lWlJUmyUrWScEyKZktC9KixAgFwiHwBPud
+kAfHTVwlEGiSdcrFdcZFlhAFPu2mV8euLqHvMZouuR6syYqSg17E0V6z3veCNC+5Hi65GqUkWWlj
+dS2RytTyF5YBRDrQDB16TYdmnadSAmaLNbP5moER5OsKo0ukANdxCALHsrUIheMkttDmDuubqdkd
+hLA/noRO5NBtukSBIvAUjhJ2XcqCdZqzWuUs1xWzZU6a5/Z5K8++UzfFRBgQGuWYep09otAWkrlK
+bnMiSVayWtv9aa9XoIVj383KbAuT7ggp7OwX2A74/gOa4ziEYUi32+Xg4IB79+7R6XR+8Peur685
+PT3l4OCA5XLJ+fn5tmu7KArOz895+fIl3W6XRtzg4OBg+9lN929RFsxmM6bTKa9fv+bJkye8fPmS
+yWTCbDbbAt++79Pv9+n1ety/f5+isADqs2fP+O1vf8vV1RV5niOEYLVaIaVESdsl/j6q9UpX3Nzc
+8O233/Ly5Uuurq6YTqfbDnfHcdjb2wPe7UifTqdMJhO+++47njx5sv3cYrHYAvStVoter8f+/j5J
+kiCEYH9/f9t9/Uttc/+yLBkOhwyHQ87Oznj69CkvX77cAsebtQqCgNPTU05PT3nw4MG2m9r3fXzP
+fy8ovVgsePbsGX/3d39HWZbb7uibmxs++ugj21ldg9Sr1Yo0TYnjmEajwb1790jTFCEEvV6PXq9H
+FEXbKt3N+JMkYTqdMp1Ot+t3eXnJdDplNpvheR6u69JsNun1evT7fdbrNVJKiqLYdrHfjnnO06dP
++du//dvtmPf29litVpRlyfn5ORcXFwwGVitjU6DgeR5hGOL7/nv39c52trOd/fsxG+BIYQg8Raeh
+ONlr8OmDfb54fIhybMXzZDLn1dklT5694eXbAVeDBSifRqtJGDcJgojA9/Bc675pXbJYLRkOx0ym
+U5JcUGhFSUmmC2aLjOkisVTdcYQxpg4AbPeDZFNJnaMr26XrSIHnKlqRZL/j0W95dBou7YaP54qa
+4tGwSmwCZTgVeKrCESWLdUWZluhan88IYUFwI355QZoAxxH4UhAHDs3YoxkHZHlOlmYsVysWiwVZ
+liGk2CYd+90mB/striclq2yTdKy1EOWms/fOk9nq4tnf2hjyomS1TlgsM+arjNmyxM1LVJaTFss6
+MMk4PjogzwtUu0HoKFqNiChwcJWpq8SxnSdaorWiqASlFmh9q5duu0U0RakpK0GhJRUuSnoot07C
+SPWubuLPbDWbVzU4CgJPEvoC33fwXGebaJgvlrw+e8s33z1Deg2E28TxGijPwfFcjMnApAzGKy4H
+NtnYaTXotBusM01e1MkCeUt1JtAIAZ5j8JWk11Qc7gUc9UIakUcj8mwCpdRkecl8nbFYZQwmgKko
+i4pKG8qqwlM+hx2Pzx+0UMICwYMxUK6gkOz1PPZ6IZ1WRCMO8FwHUa1ZzQs8V3PYVjw8DnE9F891
+GE4dTJmQrDVmXZFVUJlqS0tmaro5T7n0Wg73D0K6LZ9u0ydJMy5vSkxZsVoVUGVUJZZBRyg8BwJX
+0Gk6HPVt90Yj9GjGt/PNy5L5MmO2yhnP7NkrCk2lbce2pzwOOh6fP2gjhUZhGE4EslpRZUv2ei57
+vYhOO6IZW7pHqTPWyynJOiOrBFWxoSB0MMLcoWzc2c52trOd7WxnH2a2Q1cp8KUkDhxaUe2DZjlZ
+mrJY2lxclmcIYX3QMPDodmL2e00Gc2O71ooMxyswRiOMsfLT3PU768I5pfGVIAps0d/JfkQr9oh8
+B9cRrNYu68QnDl36Hcvg5Hm37H93ASFjNIEvOd6P+NVHHetDCZjMJLFbMPZKOp2IXjsiCr1tl+lk
+rpjNBVeqoCoEVaFpRoZm02G/53NyEHHQb27ZmBZLh5ugInAKhM5I1xlpBbrQCK23tK1Sgu86NCLf
++rZCM1+scR1nS/+8mYOp18SR4EhDM1TstR36bY9uw6fdtFqtUoEU2C7MtGA8k/iOtrFIollWtpvU
+cwS+79Fruux3PbpNj3bs1LJJBiWhKEpWScZqlRK6JUpkTOYli3VJnld3KJ19XEfaeQgPJQ2rdYLr
+bfTbb39tQDtRd4x6yhC6gsiv/cRuSKfpEYUege9QFCVlafVnbwKD72omixyjS9JSYwzoUiCkRkiJ
+7/gc9kI+f9Cq9Xw105kkUDm+TOm0bSFwHAa2WNJ3Wa5SlquUa69CF9YfLnRGXhaYqsKh1hKXDka5
+v4D2/K4GdgWmJHB9Dnsxnz7cp9mI8D2H2XzN9WDE85dnPHl+xtdPXjOepTh+A8ePkUrZMA2NrkqM
+LhmMFvgujKYrjHBw/YDJfE1ZGVvUoCSOssxgjUjRa3kcdkMOev4WrJLCUBQFeVFwHRpCp8BVBWKW
+k2e5XduilmUy3qYN0wLfjsN+x699c2P37tIldAocUjrtgG47ohEFhIGL77mskjq2GRtMlZImmkKX
+5JVGG7ktCG+ETe4dNHlw3GKvGxH4NsctpcB3PQ722piqIq+70ysj6oIEaWNHY8+AkpY9wBcZOl+S
+5YK9ns9+P6YR+TSigOU6o8pXzKY5Ra4xJejK7mlHCgJHEQWKbtPloBdw1A+JAgv4KSEoyoKirBiM
+JDe+YTjRCDLKIrc1z5UFJDdnZaOF/JME7Jv31U/8LfPO3rql4d4UyAgErtx0qSv2Oy5H/ZB+26cR
+usSRS1mUlGXFOs2ZL1PmK4krNbq0LBmlNpRFtbkhDoJ+y+HTBy08R6CkYb5MUCQUqaLTsvFnrx3T
+iAOacciryxlFnpKmFZXGMlZsGNt+puPbEQbfFTZWdxW+a/c1QJJmvL244utvn1EaF+E2UV4D5Skc
+z8OQY7TGkUtuhguiQNFuxXQ7TZAOSVYiRN2BjLjznQOe0vgKGpHiqOdx3A9pxj7N2MOrge+81CzX
+GbNlzmSRIoWmLHLyylBojULRazp8ctokdCVSGJYrF2USitShGbvs9SxbYSOyxepnb3PSpWZFzn5L
+8PAoIAx8PFexTgukyUnWum6GLKjKmvJbOlsmASkk7Uhxby+g3/bpNAOkNFxel0i9Zjm3LBAb9ok4
+CmjGPo4jUW6G7y9/kFORgJJWXi9wJI1QctjzOexZFpc4dPEcSVGWFEXJYpUym6+ZzAxKFJRFRVZ3
+gVdViXJcJB6uK/BdQSNUHPV8jvohrdiyL3quQ1Ha/blYZcyXislcICkpcsuGVxmBLkE6LmYjUbBj
+dPvFtgO+/w1YFEWcnJygtebly5e8fv0aYJvwnU6nvHz5kn6/z9HR0TufzfN8CyT/9re/5euvv+bs
+7Izr62sGgwFZlpGmKcYYlFIopYiiiDAM2d/f5+nTpxweHvLmzRum0ynL5ZLZbEaSJARBgOd5OI5D
+o9ng+Pj4nXsbY7Uyr66u+Prrr3n+/DnT6ZQkSWi32yilCMMQ17FVdev1mtVqxatXr/jyyy/57rvv
+uLq64vr6eqtrnmXZdpye521pxp8/f853333Hp59+yq9+9Ss+//zzW22eD7Qsy7ZU8r/73e/46quv
+tt3mo9GIPM/Jsmy7Vo7j8PbtW9rtNsfHx3z88cd88skn227n9xUCpGnKYDDg7OyMsiwpy5Lr6+tt
+ccB6vWa9XpNl2ZY23PM8PM/jzZs3vH79mq+++oo/+7M/4y/+/C84PjneFgJsPnt2dsaXX37JN998
+84P1S9N0S3Xu+/6Wcv7Fixd89913fPLJJ3zxxRd88cUX2/VL03RbBLAZ83A4ZDwe8/Tp0y2V/Wq1
+2tKpbwonjo6O6PV6f+gjtLOd7Wxnf1DbdC+HgUu/3yJqtHn80QmH+22UEiyXSxarNU9fvuWrJ2c8
+eXnJZF4gvQbSDRFuiBEeGklVUyIJIXAdl/1+n0ePHiAcn+vhktmqsFWmSuG4HlFogzLfcy2VYVmy
+XK9ZLBekWYauNEiNMSWO1Ox3fE4Omhz2Yw57EXvtkDCQBL6DKwU1Axx5WZEXBat1znyVMZomPHl5
+w/PXA9aFxmhJVQqUI24Drg82m1SLfId25NBuegSeoqoq5vMFo/GUyXTKbDYnz3OkUnTabcLAZ3+v
+x/HRAat8wmA6tTp8pQX2hVTITdD8g3vedlSLmp5KKhfHteCpE8S4XgPluRgpKLVrExh35yWw1HrC
+JiNMre0mlQtSWq3xu9Tl9aeFlEjpIhUoR2KEj3Jsx4yljJT1qvA+cawfrB0bzbOaXlJXtxpnG79I
+KYVXy8UYJwQnRLkhrh+j3NviN6VAS0FaSWZrQaYLigpy7aJchayr5KWwVN+BK7h30OD0oMl+L6LX
+tuCx7zr4vqUy09p2vadZSZKXjGdrrgZLrkZLLm8WXI2WKDJaseJkv4lSluay0wpoNQIene7RaoQ0
+GzZp63sOAsN4PObcrRBCoyiQQtOMPHqdBkHgkiYpWbrG6ITFKkWXtsvJUtzpWk/e56Ab8emDLs3Y
+oxX7DEYzrq+HLOZTknVJkRWgBY7yCF2Pe4ct7h+1OehF9NohvZalLAw8W7GvtaHUdr5pVjGer7ke
+LrgarrgcLLgcLpHGoxkpTvYbKGUTOZ12QLsR8OBen1YjtIUV9XyVEkwmcy6vDI7IoTJUOdt9i3Lg
+Hf3yne1sZzvb2c529tNmQRUpDbGvaIWKTtMj8K0POpsvGI8nTKYzphsfVCi6HeuD7vXaHB/2WZcL
+BtM5lUm3xZdWQ1nVbpqlN3eExnU0/bbPyUHMvf2Yfiek3wmIAptolxLyoqTIczzPoRn5NOKAKAxQ
+St0Z+W0HrOdKOs2Ae7UP5SjBXidgv9tglaREwW2XqpI2kb5Obdfz/ZMlH43mTOZrWo2YVrNBuxXR
+bga0Yt92cAtI0oLT4x7T+YonLy9xVcVomrDMMpIkQyrX+tEyotMKuHfUw3UEnmNjkVdnVzgSNMZq
+qOoKowswDnutsI5DQg76MYfdkCBw6+JSgRTWv8nLiiK3HYmLdc5knvL0bMTz1wMQhoO9iIO9Dgf9
+iMN+TLvhErqKwLcMVkJAVVXkeUVWFDxYpiyWGWcXQ757fsXrtwPKSlIZiRIRnYbHvcMurmtB9aqq
+ePXmGlfacgZxh3LemBJPWerlfifg9LDB6WGDTiOg0/KIfNu97jqWilpXmiQreLDOWSwzzm/mXNzM
+GUwTJvOS6WpVr6mDI0M6sbv1kR0Je92QfidmvtwjCjyi0K8pma3EYZYXZFnB8UGHo/0W926mvD4f
+c3Y5YZ0mYBoASMev9cU3+rU/e2S2QLErDdKFRqisD920BdtKSVbrhNdvrvjnL59yNVhSiRAvCnGD
+Jo7ftPGRsvCE0SVGVyhRoUXFPFE8ezNnnrzi/HpOVklcr5bvanicHrV5cNzioBvSafi0GxZwcpVE
+CJuTLivN0X7KYp0xGM05v55wfjVhPMsYz1fkeYLxG9w9UUr4tBoeJwfNGmCGPG/S7zR5eLpHFNp1
+9l0X15U4jmVjy7KC6SLhaK/N6dGcs8sZZ5dzlut8y2zlO0267ZD9XrMu4HVRNfuC6ylazSZSSCoD
+lbY/1Hrvm/2CEDjKduj6nsN+r0FZapqNkFYjxPNdAlcxGC8YDMd4MkfokiqvMMbB9yVx4HF6FPHg
+pMNRP6bd8Og0fDzXSlUJUd9Pa44OclbrjMF4xcXNlIvrGeN5wWRpZaiU4yGUVxcRfIju+O/zira0
+5kpqPCVpNxSnhy3uHcT0WgG9VkAzcq3UlutYmvvKUBRVzVZXcDmYczWcczlYcjlYcD1aoHV9+Qoa
+geR4r0EYuCglyPOCViPg3mGHOPRpNULiKMD3bIf2Oiu4Gc3wlSYTm8IXudUg//GDU2MmurIsE8Z2
+gW+65qWyLAKBH5AbD+OESC/E8WMcL95eSQqDdiA3gkWqKKYVQsI6V0g3RCq/LqC3Z9SRhuO9mNPD
+Jod7Eb1WSK8dEHoOft3ZXFVW1i7LS5LMsnpcDZdcjxZcDhZcDFZQJcSB4KjfIA5cXAey3BZcHB+0
+CAPPrlXoE/gW6E3Way4uDVmSo8htp36g6HSaVNqyeKTZGmNWrJOcKrcPRii11Y93cOm1fB6fdtnr
+WFA7z3NGwzHr5ZxkPafI1lbuLQ44OezRadkCnOki5WKwxHMleQVVTUXuORD4gsN+yOl+zNFeRLth
+GQR818H3JI60Z6GsNFlWkGQli2XC1XDO9dC+r89vlsyXa5wwwvPguNfi9KjJyX6Tbiug2/aJ/Hqd
+paivZ+VTkqyqr7fkajjnarjiapQwWxdAYHNK0uaU/jXkff892Q74/jdgcWy1q+M45tmzZzx//pw0
+TWv9hDWz2YzXr19zcHDAF1988c5n8zxnNptxcXHBP/zDP/Bf/+t/3XaMb0Dcqqq2f1/Wh0hKSavV
+4tmzZxweHm5puReLBTc3N8xmM9z6yzmOY+7fv//esZdlyeXlJd988w0vXrwgTVOqquLBgwfb7mjb
+6WaB7/F4zJMnT/jLv/xL/uZv/oYkSUiShLIst2PdjG8DzDqOw4sXLzg5OWEwGBBFEZ99+tndHPYH
+WZZlWxr4v/u7v+Ov/uqvOD8/J89ziqLY6hHdXavNT7/f5+zsjKurK4qi4ODg8L3Ad5IkDAYDLi4u
+KIqCsizR2uonSSm397j7e+sAuS5Pnz6l1WqRZRknJyd0u93tGiRJsl2/v/qrv+K//bf/tl2/zfjf
+t35SSl69erXtrA/DkM8++2wbSG2A77tjFkLw5s0bXNfddoHfHffR0dGWnj7Lsj/0EdrZzna2sz+o
+CWGZpkLf4eG9PR49+oijwz32+x0cR7FYrbm4uOLZy7d8++wtz14PkF4T6bVw/QjpWODboNCVDZKE
+AMdRHOz3+fTjh+SVZJFcMl/PkdLSoTmORxgENKIQ33dRUlIUJevVmsViRZ5bCnC0rhMMmqOexx8/
+7vLRSYfj/TZ73djSqMl3YzdTU5NZzazKVuPrgqvrG7I8p9TS6jJJZQM/+MAO1E3QB1Gg2OtYmqnA
+k2itmc2XnF9cMRiOmUzGFHlJp93mwf2SKAw42OtxenLAzThB6NxqRJX5Nplm3huIvzumDRgqHQ/l
+guNrXL+JG7RQrkRLTakVlVGY7zkbArbAt64fvBACgaoTAmpLdWc/ILeFCtIRKFdj8O29N5pztYCb
++aAkwm01vNbaBtNaYyrzzvyUspItnh9gVIB2ApQXorwY14+34LzAaqNlWpMlINICsHT2juds9QCl
+0LhSE/uKRycN/u8/vse9wzZR4BEGLlK8S7ttjO2u19owna+4vJnw9nLCb6qcwXCEIqcdK+4dNHCU
+xHMVlTY8vNcjL0qrhee6W6rPPC84e/OWwLH+qqRAiopWw+P4oGM7tZIV6XrOfJFAmVDmAqEcpPbB
+VBht9eEO9yI+e2gTWnHoYqocQclyMSNdVeRZBcJBeYbQUzw6bvD//Ok9Tg87dRLM+4n5wmyx4vJm
+ysXVmN+YgsFwjCSz1esHzR/ON6/n67g4dRKq1Jrzi2tCT+OQQ6UpC20rwnVgOy8+mB5/Zzvb2c52
+trOdbTS3BVZmx/qgHr6n0Nowm89rH3TEeDKlLEq6nTZFec8WX/a7nBzvczPNQZdoU7MOVWXdrVWr
+lBqNMCWuowlczVHf408/3eOPPzkgjjzimvZ440dsdHIl1D651W7efs9vtMI3wLcj6TZ961M4Ctex
+VatlXRAphdzqe9/O3VAZw3KZMJkuWK1TWq0G7WbDSixJheOId9aqrDTrJMVXFWU6R5cpWZowT3KU
+F9iCSmXoNkNOj7oEvovvOSxXCa1GYKmEtdlSvusqRxiXvbbHrx62eXyvy73DNod7bYQE9R7fahOL
+aG27E6X4jsHNECHh0XHEZx/3OdlvcrzfJq6Zh6T4/nO3ury6tD7z7749Yzmfcf42qeMIiaKk3fA5
+Perh+y6B77JOMlqN0FLgarZ62xvw25WC2Bec7Hn8h8/3+bPPj/E9t6aYl7U+861/r42pQbqSp6+u
+eP7a4dmbMXk2ZzRZYRwfY3wcaWg1vNpHvvN8S01Vy1JKKba+qBBi63OvVgmjSYfrwRRT5lxcXFAm
+Nl8npAvIbZGuLdb46bjtlmK/xJEG34FG6NBqBLSb8TbnuFxZ4Pt3Xz8nrXy0DPDjGDew8dVWa7k+
+H5Y2PcNUObNUszqf8/pyQakFlRH4fkAc+nSbHh/fb/EXXxxz76BV6xWrLe32pgPfcAsYD0Yznjx/
+SzMwPHk5YDpdk6eWPn0zBpsnNbQbHvcOWriOsjT3WB+8Kn98nY0xrFYZo+MFw+mc//6bF1zfDJmk
+C0up7rh4rqHXjtjrNmg1rJzU5r6e69JtN2k1o3qPU++PjSyn1ScGtjrjh3tNsuzQnn/PxXWdely2
+4/TszMGTOVLn6CJH4+JJj1YY8fheg7/49QkfnXTt+nmOnQ+3es9A/f7QjCYLnr26pB3Ck7MJ88WS
+MivAREgkxlQfGLP+gnfzZrdtZBCExnc0/Zbii4dd/u9fH9OILPW4V49f3jlbmzNutOHyZszl9Zhn
+rwdk6ZrzyyVVZSzXh3ZpRIp7h01bPFKz7N0/7pHlhZU8da2+92Z9x9Mlr98qXFVZuWhtanrxn5lQ
+fSZ1ZZlbzR2sQQir/e15Pn4YQOmhnRDhRThejOs33mksMKYkMxV5JljmFQiDEa4tZJF2DsJoHCoC
+pbm3H/AXf3TIpx/t14Uy3vaddNe0MegKVmnG1c2Eq8GUf/pWM5nOKKuiLhKIaTUCvJrx9v5RhzQr
+cJTC85x31mo0GhD7MBcZigJhCuLQ4bDfxHFc0nRNul6wXCbcjHLKPLf0/o4PGHRVoqSi1wn49EGX
+ficmCj1miyVPnmvWqznJakmRJajQpxn73Dvq0+82CQKP5mzN09cDW/SVG6sPj8ZThtgX3D+I+fMv
+Dvj0QRffdwl95/Z7Z8MGgS1qN9qwTnOubkZc3kz4p2/eMB5PGWcLhA++VBzvefz5Fwd88eiQMPSI
+AvfOu5/t+bZMzYYkzbm8GXNxM+F3T65YLNeMp0ts17uLEQJh3F1h+y+0HfD9b8A23bmNRoO9vT1O
+T08ZjUZMp1OMMSRJsu1K3mh/b17wk8mEb775hi+//JKvvvqK8/Nzlsvltlva93183986XEVRsFgs
+tlrNNzc3rNdr4jgmjuOt/vWmi/zt27ccHR0xm83e6SbaaG+ORiNGoxGTyYTVakVRFLiuu+0o39vb
+IwxDyrLk7du3fPXVV/zDP/wDz58/Zzgc4vs+cRzj+z6e5+H7vv1SqOc9n89JkoTZbEZZlrRaLT7+
++GPO3pzRbDZptVo/u76bOW3W6p/+6Z/4+uuvuby83GqKh2FIGIYEQYCUcgv2rmqq1fF4zOvXrynL
+cqs57roOjUbjHdrwzRrneb7tIN8EHJu5NhoNPM/bgtOz2Yz5fE5Zltv5boDqKIo4Pj7mYP+A8/Nz
+vvrqK37zm9/w9OlTBoPBlm682+2+d/02z3o6nVKWJXEc8/HHH/PmzZvt+mmtfzDmDVjvOA6+7291
+wzed8N1ud1uw4Ti718zOdrazf9/WaEScHh8Q+C6n9064f7JPGAaUZcHNYsGLl+d8++wVz19dM57n
+lMbFU6Glf/NChHIptWS6yDi7HFNVJe1WiOs6HBzs8dmnj5FOQBg1uLiegfQxKuD+cYf9foso8qkq
+zWy+YDiecjOaMhzPWGcOBgfPcQgDh1bssd+NeXDc5nivQafp4SrDZDplMp2T54XVFBOCwPfxA584
+DIjjkHYjIPBsYghdYkSJEdWG/ww+lHbZtjUjgTh02OvaSmTfd9BaM53ZpOPl9ZDpbI7Wmo9mS6qq
+Iqg7vperhGevBha0rXJ0lVnKc+UineqOxvc7N32/iTv/IsD3XFqRZK8f0owDVK0PXZYVeZaTZQVZ
+nlOUGstQrkBY2swf1+q29HW2QdyC5NTA86Yr6K7W2Wbs5n3DrE1jyEWJNKXV9ctzG7Arq6PV7TT5
+7OOHLFcJ68IhyRWF8TDSRwuPsjIUFTVNu0FvdA5NXRQgbNeJ/W8Vgetw3G9w7yDi4WmXk/0Wka9I
+1gsmo4w0z0jTrO6kkjhK0em06HZaNEKXg14TKQQXN1PeXDg0QknoK7w60bRJPHiupKo0WZaRrBbk
+RWllctKM8WTCer2kKCrG4wmB59BtNZASmg2f/V6L9Trh/GaBMDlloVGOj3EDHGlwPWiEklbs0WkG
+uI5ESevTzuYzhoMB60JRFIpmo8lRP+LB6R6PTruc7DdpRA7Jesl0ktnxpbmlZKsT1N12m06nRRw6
+HPRiXMfO96ypaAYQ+gLXUbVOoNXK811FGVT2esmSPC/s/POC0XjCerUmzzPKymqVbZJ7m8B8Fxfv
+bGc729nOdvahZv0sAcSRw173thOu0prZbMnbi2uurodM53OMgY9mK6pKWx+032G5Snh+NkaKEl2C
+rgrbwVopjLTgltG2OK/d9DjqxTy61+H0qMV+N7Zj0CXz+ZLlKiFJ0i14GIYBzUZEoxEBd4HoLSy0
+Be6Vsp2jXu1XlKXtqM7yjOlszmQ6w2iD47oEgU+v06bXbeO1Y3xPkaY2TyVMwXy6YL5csV6nVh7R
+82g0IrqdJt12zMlhj8XikCwvmcxW5OkM15R1h16BlAbfc/A8lyCwnX9SYOMF7aB1iVIVvguNwHan
+Pzhqc++wRbcd4rkwndoxpzU9tTEQBD6Bb9mt4jii3QrpNj0bv7gOJwcNPjpq02kFNCKXskgZTmfM
+ZostEOw4LoHvEQQ+jdiubSPy8JRBmAIqiS4tsCQleJ5D4NvP+J6DlPb/bTu9RYnSFsDvNCMeHDX4
+5EGf08MW/U5MnmekyYokyVitE5I0w3UdXMchigLarSatRsjxfhtjKopKM1tkjCZzKipKbYt5lTB1
+57nEdZwt6F5VBePRgsl0TpoXgGWy2ut16Pc7ln2s28RzFQe9iE5DsU4MxuSU2RIhJHpTePshHd92
+Q2O0xnUEsa+IA2VjQiVrOUZNkhYsVinTRYrwAoQbofwmjt9A1QW3G9B5cz1dufX5KSxdeFEhlYNU
+Do045OSgxaP7fR6ddDnaa9CMHLIsZ7ZeslonLFdrtNZ4NUNmu92g3Wqy122Q3tur9ZtzhqMpeZ5j
+dGbXoO7KRpcoAZ7rbH1zYwwUOZqKyWTCdLYkTXMMBm1gr9dhr9cmDBz6nYgwUBz0YjoNh8XcUOiC
+otDMZnPevL0idG2xQhS421xqlmVbdrO8qChLTWnAyhkJuu0G3U6TZhzZuKHWcQ98K9uZphnz9XKr
+03x1PWA6m5ImCUVRoquSIPA47Ed8+mifR6c9jvYatBoueZazmK9YrVNWa9uA5rkujuvSbjXotBr0
+uzFZ2kUJwyorGU+XZHlGRYEuU1twXndm/+t0fm9iYAt6a13RikJODho8utex3f49e7ZmswlJkpKm
+GWleWP13JQkCn06rRa/botMIkHTI8oI3l0NaoWCd5KRZSVUEdVGSLQDwavp5z3UoK6+Wu0hYllab
+uao0o9GU9XpNURQ1gO7WRf8/P/dKV2R5xTopSNKCLLO61MpRRGHAw4/u8Rf/4Y+Zrw1JqUgr17IA
+Co+ygkJjC38qWRdGCKz6u0LIu7G6xlGWGeJ4L+Dj+z3uHbTpND2SJOXmZkKa5qRZRlFWKGmB91ar
+SafdJPQ8+p0I1xFcjxa8uXBJ0pLoDkW75zpIKXAdSRjcrtUiL7asC8PRhMVywXq1ZjKd2bxKM+Ke
+2aMRe+x1m6RJl+vREiUqqiJBOR66CnAUeK4hCgTN0KXTColDF8cRVGXJcrFkOBoxXyzJi4IgcFH1
+O9vfvrNznFqP3CLOFa6CfsfnwVGbR/fa3Dto0msFtvmzyJgubcNIkmZIKSxLcv2dI6XEd23uIHAF
+QmcIndJrdnn4oMvHp11OD1p0Wn7dBDkhTTOSdLPOtnim1WzQaTcJfJ9eJ8ZVgtF0zfnVmPEUtKyo
+qhxdS7QJI/kRAfmdvcd2iNS/IZNS0ul0uHfvHpeXl7x9+5aqqt6h6E6SZPv3jTEMBgP+8R//kb/+
+67/m7du3LBYLPM/j6OiIk5MTer0ee3t7KKW2tOjPnj3j5cuXrFYrVqsVSZKgtSYMw63TXVUVy+WS
+q6srLi8vmc/n6Eoj6vLJTff0+fk54/GY9XpNnue2Qsrz6Ha73Lt3j6OjI6IoIs9znj9/zl//9V9v
+QeeNlvTJyQkHBwf0+3263e4WgL28vOTFixe8ffuWoii2QPyLFy948uQJ9+/fx/f9n13XjTb2zc0N
+v/3tb/nLv/xLrq+vtxrmGy3xw8NDjo8ttfhyuWS5XPLy5Uuqqtp2RSdJwuHhIQ8ePCAIAk5OTt4B
+vt9nm27+VqvF/fv3+eijj+j1etuO+m+++YYnT54wGo3qxGfC9fU133zzDUFgKa56vR4vX77kv//3
+/87vfvc7Li4uyLKMXq/HyckJh4eH9Pt9+v3+dv2urq548eLFlsJ8Op1u9eJ/bv02GqHGGMIwpNPp
+0Gw2t9Tpjx8/5vDwkGazied5f+ijs7Od7Wxnf1Drtlt8+slD7q0P6wCiRZblLJcrLq9HfPPsFf/w
+z08YzTJWmcQLO7hBC9dvIh1LaVRqwXC65smrAVVV8lD22evGHB3sEYUBvV6f03sn3IymrNOSdVrx
+4PSQ44M2UeizXK2ZTldc3Qy5uh4yGE4xThPjeHi+SzPy6bUC9nsNjvfbdNsBUsJiubJ6bM9eslyt
+qUqDUIpOq0W32+b4cI/Te4c4jovRuq7ytj/Iylbt13qJm07un7JN54AQgjhQHHRDem2f0HMoy4rJ
+dMbZ+SWXV0PmixVSKuaLFUVZ0WrE7PV7ZHlJs/EcJSrQBl3lVGWOdOoO9/pO75q+M4Z6JMbcmVOJ
+qUp8N2C/F/PRvW4dACp0ZQvEkjqQWac5eaFxXXClrHW3TQ1mU3cUcJtMqikbN3qImE31tq5/m9vu
+B623YxN35mCDXFFfQyAw5FVBScFylbFeW+pJ37cJy729Pn/xf/2aw8N9bkZLBpMVs2XBMq1YpZpV
+UrBKKjJtbocp1ZZKe9OZYekIC+LA59FJmz/5bJ+Tgw7tZsB6veLN20venl8ynswZT2dUVYXnuoSh
+zyePP+KzTx7RbtU0f57L0V6Dg45Pq+EQeht9QXNnmWx59Gy2YDAcsViuSNKc5Srh7M0lk+mCoqjQ
+xuo27u91yPOCZiNir9eiqjTfvrhCmBxdFFRuiCpz3EBZWtNIEQcuYeDW9Jc5i+WS0WjCzc0NRkUY
+FRL6LT661+Ev/vg+9w46dFoRWZrw5vyat+cXjCczxlNbtOg6DkHg8enHD/n044/odtrEUUDge9v5
+hoFD5Ml357tZd2A+tzSF84Wd7ypJOXtzzXi6IElzqkoB7vc+tbOd7WxnO9vZzj7YzB3gO3A57MX0
+WpZmuyorJrM5by+uuLgesViskUqxWCWUZUWzEbPX75IVmlbjDCUqTKVrH7QA6SB1he1aK3AdzX63
+xReP+zy+1+GgZzurF4sVq9Waq8GIi4trBqOJTY4rxcFelwenx5wc7xMG71Kdb6VufgC42EK4oiiY
+zeeMxhO+e/KSp89fUVaGRjOm2+7wq88eE0U2mR8R4CjJbLZgvlhyfnHNqzcXXF0PabWaNBsN7t87
+4tNPPuLBvSMO9joYY1isUl68vqBI53YMQlIVGUZXVqbpDr2v1laDVVcFppJIryJ0odOwBQfH+236
+nRglIUlSXr5+y9NnL5ktlpSVwRhBu9Wk221xuL/H/XsHdDsdwsCh2/KJwoCjfpPjgxZKgq5KboYT
+njx9zsvXZ5SFpiw1YRTS7XbodTvcPznk1Dmsqcor24WuBVpvChj0OzieMRpT2Tlo7WC0wmD/LE3B
+fjfi158c8Mn9Pgf9ppW3WiUMBuNtPDYcTYnikEYccHSwx+OH94mjgE4rwvMc8sJYquqBZJlWLDNN
+VWZoXW62LABFWbJYLpnOFjx7/opnL14zmS3RRiCVw68//5g/+fWn7O/ZTkbXadHvROy1A5bLhFVR
+sM4snbpyfYx2QMmf9ybNRkBK4ziCKHQsJX3d/VlVFUVZkuUlaa7JcnA9B28jr+RFOI5fM2TZ4GgD
+mlpWJs/GbqZCa20ZyISg2Yj56LTPn39xzEEvphn5lGXBeDLlZjDm8uqaq+sBRVkSRw0azZjHH53y
++KEFzQ/3ezTikOFkwcXlFUmSsC4zkkxvu7J1Vdh41mg2dKJlWbJcrlgsljx9fsbzV28ZTWa2A9TA
+H33+MX/8R59wdNC3RRKBR78dstf2mM0U83VFmpXc3Az5nU5Yr5dorek2A8IwIBSCxXLFi5ev+Oa7
+Z6zWBcskp6yMjb2Uwx//6hF/8sVjmnG4fQybDtI8yxkORwyGI5I0J80KrodTLq+GLJZrssxgKkPk
+Kx6cdPiLP7nP0V6LTjOgKivGkxmD4ZjL6wFX10PSPCeOIhpRxMMH9/j40SmtVoOD/Q5xHDKeJ1xf
+j1mtVqzzknWub4t9PhD8/QUvaPs8dEG36fHZR11+9XCvptV2GY1GvD57w+XVwMadkxmOYyVSe70O
+nz5+gFIPUcqh025ynBUc9WP2Oy5DnZIlKWW+roH7d+9sw3TBar1mMBgzmy9JspwsK3l1MWM0XpAk
+BUUpwHwAzGZbiCkrg84LlmvFKs1ZpymOCqwOfCPij7/4hFYz5ma8YjBZMp5lLNOKdaJZJCWrtCSt
+NKZuMBBSIaW7Ld64jdVLPOVy76DBf/j8gPsnXfa6EVobrq4HvD47r4st5iRpius4eK7Dw49O+fTj
+hxwf7RN4LtF+wPHehINOyGKVEAfqnXwE2E57LQTr9ZqbwYjpbL7diy9enTMcTZktViAEWVbQaTd4
+dP+Y/X6HbjsGs8fLtyNcWVEVayo3QFU5jquIPKvv3YxcosB2qZdFyWq1ZjKZcXMzZL6yzIM04w3H
+yvdeWXVOpaZOd5XhZC/izz7f5/SwTbcdIqVguUxZLJe8Ob/i9dkF4+msbv5z2d/rce/4gE67SZoV
+9YVLdJmiyDnqR/yHL054dHrAXq8BGK5vBpy9uWAwtHIpq00hmetw//4Jn338EfeOD+06H3Q5Hs45
+6IWMJ3OWWcWyyKASGKkwUtU9Jbt4/0NsB3z/GzIpJc1mk6OjI/r9vtVlNIY0TQFYLpdb+vINJfXN
+zQ1Pnjzhyy+/JEkSVqsVYRjS6/V49OgRx8fHWzA3TVPm8znr9ZrhcMh6vSZNU5Ik2XZ736X3TpKE
+qqoYDofMZjPWyRrXdfE8jzRNGY1GvHnzhvF4TJqmaK1xXZdms0mv1+Po6Ihut1trds632tQbSnSt
+9bajeTPWo6MjkiQhyzKiKGI2mzEYDFiv1ywWC0ajEW/fvuXly5eEYcjR4dFPrulmrTbd7U+fPuWb
+b76hKArSNKXT6bC/v8/jx495/PgxH3/8MZ7nMZ1OGY/HGGNYLpc2kJjNmE6nvH79mhcvXtDpdIjj
++Ae66983z/PodDqcnJzwxRdf8Kd/+qccHx9vQW3P87Z07+PxmOl0ymg04vnz5zSbTfb29njw4AFv
+3rzhyy+/5NmzZ9u/H0URR0dHfPzxx9tih43Wd6PRYD6fc319ve3+Ho1GnJ+f8+LFC4Ig4ODg4L1j
+dl13yxhwcHDA6ekpe3t7NJtNms0mDx8+5OjoiHa7/UHFBzvb2c529n+yNeKYIPC38hWO4zDKJ6xW
+a65vhrx5e8PzVxdkpYsb93FDC3orL9pWv1daMJ6mvHw7xHcFnVZIvxPRarXodDrs7fU5PTlgOlsy
+ma2Yzhf0u232ug1cR7Farbi4uubycsBgOGU2X+M3QnzXFqRFoU+n5dFrB/S7EZHvkGYZy9Was7cX
+/Parb5nOFpQlSOmwt9djr99nuc4wSJrNBqtVQlkWaF1hRHXbnWwsWPuhYJyoNb7j0GW/G9Fthfie
+oqoKZrMFF5c3XF4NWSU5juczWyZkWYlqK9qtJkWpaTVjfFexSi0wWxUZjhvUwPeG+mwDrN6alJZm
+OgwC4sgnTqHQFV7o4vkue52I06MOj0779LuNWs+tYL5YMhpN66RCSVGCw0Y/uu7AERvE++5kRT3n
+DZlgTWEpBY6yenJKArqm1TIatPlBMsF2+opaP9vS+VW6xJiCxSpjNF0yHM9pNmPaTUG7FRN/9oiH
+D+5xdjHg/HLAYLxkPEuYzFOmy4zZ0upN5QXklUAbq3NokDXAXtPXG00zVJwetfji40PimsprOskY
+jSe8fP2WwXDMYDi2wLfnEsURYRBwuN+nEYc0Q59mI2SvE7LX9YkCh8CVNfhvz0BRFKzXNgh9e37J
+2ZtLxrM5SZKzSjIubyZM52vKUpOXhqyoeDxbkucljlK0mxFCQCsOcJVG6BxT2R9P+TQjl1bkEIc2
+2F/U+386W1g9z+kcPwI/cmiEDqeHbX798TGN2GplLuYzxuPxdr7D4Zi8LPE9lyAMCYOA/b0ezUZM
+sxkQ+L5NOnYCPFfhe7I+K5YOtSgq1knCapXw9vyKs7eXjCcz1mnBKsm5GS2YzVckOZSVqgsTat2v
+TZHAzna2s53tbGc7+wWmkUJYH7QX02uHBJ6iqkrrg14Nubwask4LHC9gtkjI8pKOUrRaTYrK0GwG
+eI6VgUGX6CpDVg5aeUhhkFS40tBvB3xyv8v94zatOEIKwXK54u3FNa/fnPPitQWbHUehlOL+vSNc
+16XVjBFC1XmW74Pcm87Id/3EdZJyMxjx+uwtX37zhN999R1VZWh1uuzvH9BstXj88D6tpkT5VrLl
+cn3Nm7fnPHn+mm+fvuLt+Q2dbodet0tRGfb3+zy8L+h1moSBx/nlDYErKLOFlV1Sbi03VL67xMYW
+lWq9AZcVUmgCD1qRBa73ujHN2K9jkYS3F1d8+e1ThsMJRWm5ofr9Dvv9HotlgkFQaasfHgUunWZA
+rxPSa0ekWV530U549uIV//y7byiKiqI0NOKYvf09Dg/3a7Ymh8lsSZpmFpyvRC0rfEvfrLfTuFuY
+WqJ1iRAlUlS4smKv7fPJgz4P73XxXRdjDJPJjJdnb3l1dsmb8xuuboa1XxgzXyaEYchev4PveTQb
+bdZJxtl5zHnHo5rkLJO8XtPKUirXtQ9ZljEaTXh7cck33z7jd988YTReoIWDUh6u63N4uGfv1YiJ
+Q4duO6LX8hlNFNm8pMoLSjfEqUqko7dSVT9rdUOMoyDwFGFwy0Zg9XBzstwWBRda4uAh3RDHi5Bu
+gHT8beFufTmgpiE2pi5C0CijUbVGcbsZc3rY5ovHfTzX6lxPJgsur254+vw1Z28veXt+RV6UtNot
+2q0OUjp02i2CwKfdjOh3W9w7POewFzGbLSjmJYssQzoBDmENGG7En+0/sjxnPJ5ycXXDt09f8tW3
+z7kZTNEGKiO2oFir2aDVjGg2Y7sXWz6DWJFmltJ/PC1I1gtMVXDQb7F+eIiSEt+3HbhvL6756tun
+zBYZs2VOXpoakLdNU48enGBua7bJspzVas1wNOH1m3PO3l6QpDnrpGAyX3M9nLNaZ5TGvksascfJ
+QZs/enxYd8IqZvMFV9cDnr884/XbK95e3JCkeT2XBghJp9MkCgMacUi/2+LNxQ2H/ZDJzKGaVSyK
+vC5q0fZs/CtSngs0Ulh9727L4/G9Dp886BIFHq5SLFdrLq8GvHj1hpvhmOFgYossPI/Dw32ajYjj
+owO67SbNRkBRNG3c2fZIVoaJySnzBF0V1FXrAFSVZp0kJGnKxdWAtxglANwAAIAASURBVOfX3Ayn
+JGlOkpYMZznjWU6SQYl7W4XwAXFYqQ26MKySkul8zWA0Q2tNu2nj5EcP73F675CLqxHnVyOuBlNG
+s5TJrI7VVzmrpCAroCih0ooKieFWKs2GhRWB63G81+DXnxzSaUXEUbBlf31zfsHl1ZDBcMx6neB5
+Lp7noKSk3+vQ67ZoNZs0Ww36nZi9boArKyJ/Q49evxsrzSpJSNYJ55fXnL254GY4tuxzScn1cMJ4
+umK5TilLy7hw7+SAdZpZvKsR4bsOnVaI54iadSO3gLIIiEOHdtPS0fu+i9El6yRhOlsynS+Yzhak
+uUa5wZ1vxdt/btkDdAWG+ntHctCP+OyjnmVp8F2qqmQynfLm7RXPXr7h6YszbgZjXM/D83xOjg5I
+spKDvR5S2i77PC8wprCyaf2ILx4fcLjXJY58siytWR4uuLgaMBiOWS7X9TrbRsFep0W/17HnrdVg
+rxuz3w64bioKbVikOdoopPLsHHax/gfbDvj+N2au6xIEgdXGVreJwE3H9obGej6fMx6Pubi42HZc
+a6231NO2Um25BT039N1pmrJcLre60Xc1vx3H2VJcb8DMPM+3oPHZ2Rm9Xo9er0eSJFxcXPDixQtG
+oxFlWRIEAd1udwuSBn5AlmVMp1OuLq+4ublhPp9vNaHv3mM6nVptz9lsC+oPBgOKothSbAshKIqC
++XzO5eUlJycnFGXxk+u5WavVasXFxQXTqaW5EUIQBAH9fp9f//rX/Mf/+B/Z399nf38f13W3QHFR
+FGRZhud5jEYjxuMx8/mcV69e0e/3fxb0BoiiiEePHvHnf/7nfPzxx3zyySf0+30cx0EIwSeffMJq
+tdp22g8GA5bLJRcXF3Q6HY6Ojjg4ONhqr2/Wb9Ohv+mG11qzWCy2NO2DwYA8z/E8jzzPt3tgPp9z
+cXHB8fExef7+9dt0pz969IiPPvqIBw8e2Gda781+v8/e3h7tdpswDH92DXa2s53t7P9kk0ri4KCN
+3n5flbqqqY5SilKDcBDKQyofx7Uaz1I6CCm39GmrpOBmVNBpLNjvxnQaHnFkg0/HUZZySSnCMKDb
+aRL4Hq7jsFiuePP2gq+/+Y6Xr89YLNe1trStHFeOW2t6KVzHutAbmYv1es1oPOHi4prpfI3GjnOR
+aAbTnJtJwuvzKWEU8uLNgPmytLTLjqxpvuUdSPcD1qoGU11lk469dkSz4eMoySotmM4WXF8PGI1n
+5CWEkWK5zJjNlzSbEb5nKRSbcUiv26A0KYXQVEVCVQaoqqyLCd4PxCsp2et1+eTxAxqtNqfznGWq
+iaIGYdzgoN/i3kGb44PWtqhgPJ7w7MVrvnt2xuXNmFIrlOvaBIX0MKaEbaf5z5mlpwx9SbPp0mv7
+7LV8XIdbGsVaj2qTSzAYsrwiywqm85TBZMV0nmyLgKeLNU9fXSNMzuP7+3z84IBmI6x9HZ+DfgfP
+cdjvZ6ySgnVWsk4L1mnJfJkxXSRMZmuGk4ThNCErcktNKR0CV+P7glbs0Gr4NCO/1tzOtxRecRRg
++l2CIEAbg6M2Ej4RWmvyPEdrO54w8Og0QsLAJmHu2ngy5bsnz3n2/BUX10Murkes0xKNS2UUy3XO
+KlMYoygSqETJYlWSZgWVtmfPUln6dJoBq6SgECVVscZ3Pfptn34nIPIVxhimM5tAu7gasFpnyPrz
+rWZErx3RaYU0GwFSQJHnlGWJlJIo8un37HztfSWe69JsxhijKfKi1tgUhIFLpxniuorA29DR2V+T
+6ZQnT1/w9NlLLq5HXN6MWK0LrEKbwzrVrHNBoR2MDHBkiHS8bWf+zna2s53tbGc7+3ATwoJqnhLE
+kUuvE9FshChHkqwKZvMlg8GI0WRGUUnCyGGxzJjOljTiEN/zcF1FKw7odWIKk1NJTVVkSGn9QseT
+toC14dBt+nTbEVHgISWsk4QnL874zT99w/n1kMk8ZbnKtlrCwo3Z259zsDfHcRyajYgPLSqdTGd8
+/e1T/vl3X/Pm/Iab0RyDQ6o9Krlitsy2usEAZVXy+s05f/c//5FXZ5dcjxZMFwmFcckqj/2DhCSz
+gLZyVE077uIoC+xjCnSZUVWW5vZdM9vCWFMDZBLr+/uuwJUWrNHaUBYlSZIymcy5uhpyPZphjIOR
+DsvUxiJX44TXlzP6Pastm2UlnVZ8O5eyJMty5vM5V9c3vDl7S4VCG4UfZExXFTeTjOuh1X9dLBLO
+LidkpaQy4jZmek933S0rkwXAHdcQ+5Jey6Pd8OquREVRFmRZwYuzC/7hn7/jzcWQxSpjnVYss4Tx
+oqTCIwwu8DyXg/0eR/t9As9hr9vg9KhNms8YTROq0oKLd206m9fP9yveXAy5uBqzziqECvACn+mi
+4Ga0pNNe1PTuLp6jiCOf0HeQ5JRFilM26m7dmqr6A8wYA1ojhS3YdWrd602T0TpJSZKMyggb3zpu
+HePWElDi3c5yq31bs2Cx6WStMEhCXxL7gl47oBlbunmjrQTS1c2IL79+yt//5p+ZL3NbnC0U81Qx
+Xkri1piocUWpYb9v5cBajYh7R33my5RlOqHIljgYhJToqtyyb21sPl/y3bOX/ONvv+LiasLF9Yzl
+2jI6IBXjRcn1cEanY7uNW80GnqeIQpfId3BUhtElZSFJjGadVeS5BYp1LfirjSGv6a/XGSSFIq8k
+0nhI45JXCmPklm0V4OzNOU+eveD12VsLkF6PqHDQuOSlYZVUJKVr468wYK/XptOMiEKPDaA/GE74
+5slL/v43v2O2zFmucyojmCeCcF4RRAOiqEFVGfb3uhzu92jGAUf7HabzNat0Rlms6/hU3Cl8/5fa
+poAcQl/RaTh0Gh7Nhk/ou4BhnaYYXeI4imYcWea4OLYNB0rR7bYIg8BiCZUtGlFK0oh8+p2Y4XiG
+NLZIqdIltrzFjn25WvHk+SuePT/j8mbC1WDGfJlSGUVlFGkhSAtJrl2Mui1E/olvmnqfy1reTJHm
+Fa/Px/ytLHh8f4/HDw446LcRAqv53mkilaLdatTMfjZOX6UlyyRjOkuYzhNG04TBJGGZ5BipQDv4
+jsZ3odOQtBoezdgWXFdlQZ4XSCEJfI9+t22xgcJKoyklabWtFFlerxvG4HuKdiNAGF2v/+1jXq7X
+PHn6nKfPXvLmYsDlzYjZfF3vRYd1UrBKDEXhUhpIy5LZsmCd5BRliQB83yMOfTpNn1bsUgpNVaZ4
+0qPTcNnvhjRCFylgtlxzcXnDm/NL5ss1CKeWmqvZ6b73btloqxujbdG569Br+bQb9p6uozBGM5st
++Oa7F/zPf/ydLTaYrFinBa5ncDxBUs4ZL9/QaoztdXzFzdB2hO/1WvTaDVqNGK8umsuzHLBNj912
+C9dxyIqyXmdFu9PCcdTt/jTguYpmI6DTDJmtU0yVYoxCax9pNAK5I3j7QNsB3/+GTAjxTqetUmrr
+TGwSh1VVbTuoLy4uuLy8ZDKZMJ/PCcNwCxKXZbmlMR8Oh1uN7w0gDmyBV6DWJ1Tbjm7P87ag72q1
+YjAY8ObNm5qSo8F6veb6+pqXL18ymUwoyxLf99nb2+Phw4ccHBzgBz5FXjAcDjl7c7YFvtM03Wp6
+g61e3MxBSrml2F4ul1vgNk3TLXA7m824urraguQ/ZRvge71ec3FxYTvX12uiKMLzPPb39/mzP/sz
+/st/+S94rofnW+3tqqoo8mLbEb+hnB8Oh8znc16/fs3e3h6ff/75zz7XOI755JNP+E//6T9t6dSb
+zeZ2fMvlcju3wWAAsF3fOI45Pj7m8PCQ6+trFosFSZL8YP2m0ymLxeKd9VutVmRZtqVU38xrPp9z
+dXXFdDqlKPIfHfPnn3/Of/7P/5lHjx7x+NFjut0uQortXtnstXcpuHa2s53t7N+fCSGQSiKR2+/V
+qtKkWcp6nVJUGlMD38oNUK4FsKRybIew0WijWSY5eZrTargcjmb02/Y9Hwa+1d9yHKIwRHcsRXdZ
+asqqZDyec/bmnC+//o7Xb29YrtYgLAWWVC6Osh2uoefgKBus3QLfCaPRhMurG6bzBFSIcELGsxzl
+rQgvJoTRFZ7rkZaCrDAIFSKVREl5p8v5A7u9hbF6ao6kEXn0OzGt2AdjyPOypnweMRwvEE6AkYHV
+jJst6XVbdi6eS6sZWp2ozDBLDcVGc2xLDfh9nW9rSin29/toozk6TFinBUVp6urbJu1mRLMR1fre
+EtdRllbwxRn//OW3XA3WVCiUE6AcH6EcqMAI/bNLYGpSeFdB5Cu6LZfHJ00+vd+iESpbPa+rbReP
+2VRXa818mTBfpLy6MCyXcwY1XaFUDrNFwvPXGYv5FKMNvU5M4Lv4vofvuez1HXqdFtpoqgr7Wxsq
+rWsKwBFvLkZ8/fyG+XxGUhYgXITycH1JM3ToNF3aDY9GHJKmudV6KwuUFERhQBiE9Pu3c3WUotmI
+0UZTliWV1ggBge/SbUV4vov/DhBsGI+n/O7Lr/mbv/sNN+Mlw8mCQitcv4njtxDKBekhhEQWhkJX
+LNYFSZpvNepC36cZB3RbPrNFwjKrSIuEwG3Tbwf0OyFh4KK1YTZfcPb2kqvrG9brBCEdQt+j0wrp
+dWI6zYhWIyLNrH55UZR2vkE9X9OrN7WlfWs2YozW5LXfzgbob4UoJW3l+p0OrclkxpdffcN//5u/
+ZzBeMZysyCuBG2zm6yOdEOl6KM9HeSGqBr5B7OjPdrazne1sZzv7YDN1Nza4DjRDj363QasRgDFM
+84L5fMlgOGY8WYIMMCpksU6ZzBZ02k2UUviuSyMO2evGpDnMM0Nephbsq3yUcIgDC4x2W34NPvno
+qmK5Snn+8g3/4+//mcF4iZY+Rtx2w7renOPDOadHS+I4tr7E1jZFpu8HmiaTKd9894S//5//xGJd
+sExKhApYFy6FWFvgW99+tihK3rw55ze/+S1vr4bkpUOJQ1a6rAuXk6n1kYUQuI5T+98OjgJBials
+Z7KuMktP/M5Kc6eIs2YzwnYM+57EcSRSWv82LwqSJGU8mXN1M+JmOMeoAKSPmmYoZ4lfxyKNKGKv
+32G/36lFluxqVJUmy3Pm8yXX10POLy4w0gcZoNwUd5LgBQtevh0ShSEGQZKWZHVnOcLZgijv2zcW
+mLPaw0pqGqGk13JpN1zi0EUpSV7kLFYrXp1d8E+/e8rlzQThxkgnAFEhREpWCqvX7Npxd9stfN9l
+rxPz4KjLYJQgKKnKrI5nbp/XdDrn2yfP+R9/+w8s1xWLpMQIHyfwCIRksswZjBb0u0uajQa9TgPX
+c4ijgChQKCqqPEWX2S2tu/p50HKjK7+RqVJKopRgg8nmecl6nZCkOVpTFwXbGELUBd7vKyiw/0mA
+2HTeSgSGKHToNhX9dkQr8gk8lyRNybKCm5shX3/3lL/5u39EOhHCjXDcCGcp8QMI4xFhGNhGLs9l
+v9+i3bLA92S25PzaAt8IgZQuuqaIvrvOi+WSp09f8jd/+xtWmWCVCUrjolyF49p1vh7N6fdmtJtW
+8tJ1FHFg2bAcKdC6ojCaspKs04qstDropqaN19qyVq2TknUmWBcOhVZI7SC1Q14ptJF3F4o3b8/5
+u7//B7757gWDOkZy/CbOlkHOA+UTNyI6nSb7ex3arQZB4JGmGVmWczMa883TV/zdP/wOo0KkG9s4
+Q2mUzPGCEUHgoRS4rsPhfpdmHHBy2GEyX3ExWFIVCQaFlKouavmX053bkN3gCIg8Safh0Wl6tBsB
+YeBt4zCtNa6jaDQi4kbMQa2JLoSNRQPfNnwVhaVhdx1FI/bpdxrEgUJSWmmGqrjTIGxYLNd89/Ql
+/+1//E9uRmvG84ykAOWEKC9CuvZHuXbeclOA/BNx2O3+liAVaZ7z5mLEbHJDkRc0GyHtZkjge3ie
+S7/bpt1qoLWhMgZdafvv2jBfppxfDTm/GvPdywGr1Yrlco3RLkY4KEcSB5JOw6Hd8Gg2IySGLMso
+iryOvz1U16HT7WzTIwLotFsIKciznKqyOZTAd2k3AqQwhIF7O01jWK/WfPfdM/7qv/0tF9djhpMl
+60zjeE2coIlQrt2LwkWUFcIUzFYlq7QgL0o8155NW6Tu0264LFLDMktxVINu0+WgG9KIXIQQLFfr
+ugv/isUyBeFa4PsnChA29OeeI4hi134PN3wasYfnSMqqZDZf8N3TF/z1//ifLJMSLWzOyfUkjqcY
+zaeoyzme6xCHrh0PBsdx6XUa9Lot2k3LrJhlOVmWW1Dfc+h0mrQ7LTBi25Xf7TTt90SN6dkCA9tU
+0GkFXI0zdGUbDzbSD3bhP5xR8d+z7YDvf4P2fbqQDfX45qW+AUuHw+FW93vT5StqrYXxePyeystb
+oHUDim6c6Q1Y6rou7XbbJlnn862+9c3NDS9evNjSi2+A2bOzM6bTKWVZEscxBwcHfPzxxxweHuL7
+PnlhKy83oHdZlpRluQViF4sFV1dXTCaTH4x1A7pv9MOrqtoWAGz+27vBwPttsx7T6ZQsy6iqCtd1
+aTQadLtd9vb22N/bR8jbL06AqqzY39/n+PiYi4sLzs/Pt+OaTqc/0Fz/MVNKEUURnXaHVqtFHMcE
+QbBd906ns9U439Dbb+jZp9Mpw+GQ6+tr5vM5RVFQFMV2PywWC66vr5nNZj+476Zbf7VakdedSnc7
+/PI8/1FqGtd16XQ6nJ6ecnR0xN6+7e7e2c52trOd/dCqsqKsyi1rig24PbqdNkeHexxeLzjYW7DK
+HYzrbEHZjSsrhLDVys2YvVaD06Mm/U4D15FMJvZ74BY8tJp3rWYD13W3Xb1HB/t88vghSA/kANQK
+6VvgvKwq0ixnuU7JCktVLmtNrFarwaOP7vNnf/prSyOtHUqtKDWUlaXoqirNIs+oUBhcpLLd3puO
+7w83g6MEkavoNC2dtO9JHCkpqwolBb1em4cPTul010gVEjfbHOx38TxbcSzAVig3Y44OeqxSzXqY
+sEgSnDJDVyXKthLw3o5vJWlEIXqvT7tVkOcllTHEYUgUhfiei+sqtK6YTKZMZwu+fvKKZ68uOb+a
+Mc+ETcY5EdLxkdJ2+gv9YZRnmzk4CgJX0m1aWrJ27N3RmbsFvcHSio2mDr4jGE1mKArKPEG5BiEV
+RWmYr0q0rnjy6gaAw36DRuzTiHxLxe27NRju4/suUiocR+EqgSMMriPJSqvTdzVcMJ3nrNIFKoqI
+AodGoPBcxxYDuBKtLQPB/n4f5Ti2U2mbBLC0783YdlLZwkyFQOA6Ej9wcR17rbua11leMFusGI6n
+zJcFSabRwgPPQ4gApQKUY3XRMBWVEKySisF4QbsZ0mk3CQKPViPgoN9htszJRimrZE3gGg56Efvd
+BlHooo1mNltyfnnD9WBCkpVIx8cPLCV7s+ETBrYY0qkLIOI4ZH+/j6yDbSnlOw+1GYc044gosoWo
+CHCUrbKXUqDUu/ujKEtmizXD8cxWw2c28Ebb+TrKJvWUF6LcEMcNbEJB1PR2u0B4Zzvb2c52trMP
+MOtnuI4kUNYHjSOHwHOshmhpC9v6vTYPPzql3VkjnJC42eJwv4vvubX2sEQoSbsVc7DXY5lCMiqo
+khSpPJSTI5EEnqIRWS1kz7WFjcvVivFkynS2tp3AmUb5HsqLtiOshEdlFGVlu0O3nuAWefjx733L
+7pizSlLyUqCNQgiPSvhoPNuRp28/b4whL0rWaUaWl9bHV27NsuNSGmcLvomaTlcKgcRqeW80su8W
+bP5g1c3t2tuC4JzVKiXLcqrKIKUFghtxxEcPTviTP/4Vw5Eteiy1IC81RaHrWMRqjHu+/Vmuc7Lc
+3tv6Wj6H+31+9dnH5FlOoUUdz0jbuYmkrAxJmlFWgkqDQW1Bbyl/GsjadEgrYQg8q0Eb+LYJRFcV
+q2XCeDJjvshYpSVZpXBdH+k2wRi00WSVw2xZMBjPOV5aRjDPVTTiwNLJ+wp0ga5y9DaXW6+frkiz
+jNU6JSsUGgXSR6gQ4TTQwicrBXlp7yUAV0l818aloNE6x5g73d4fQlN95xluKM/fBTuNvVS9T7cd
+3ls/9ed8VcEmbBPCntE4tAUFvmdplrMsZzafM5nOmc9XrJIULwzwPA+jIoyKqEREWkimC8uOleQb
+EM+n223Rasa4jqTKE5Ty0G6OqQsA7lqlDUleskoycu2j8RHKRzi2MNzgkZeQ5eW2kERJiec5uK5C
+SiwgXO8nW2qzKVe5XRODRG+K1B0HUbmgXFBOHcvLurjDWprljKcLxtMFi3VOWoCnZB0jhSjHR6oA
+P4xoNmLaNbuWFII8z5kvFkynC5arhFVa4vgSzwuQTgxSoaUiKQSTecZ4lrBON+vn0W7aYmDPEVRF
+arvf8X4Ra8DPbzJbmOR7kmbsEYeWscBxFG5lmWlbrRbHRwe0mo1tLLbZQ67j1JICEUHgb/PlrusQ
+hl6tSV+/t76nC11VmuX/n73/bpIkya480Z8So849PFhG8iJdhWrsgApW5K3sF92PsZ/giezMYGYe
+0ItGk2LJg4dzYtzU3h9qbhGRmUW60RgAu36rIpk4MVVTM9N7zz3nbFIm8w3LKCfOJZnRaHwqArTw
+kdI24whZqxn8ZNP/Nh+2ahKlMWySnDzLeHE6RWnJzXhOu+XTaXlNnu57Lp7n4vseqiachb6DpMR3
+JEVhyPMCR9tzNV9vEJ6L7/i0Q43vKrSSdb3EWrvt7Q3qhgsQ8s5xVxVhGNBpB7RaYU2sEygpcF2N
+l9vn412p87woWUcJk+mcxSqyjR2lonIcBDZXl9q358ZYO7o4r5jOrcz7oNfGcx1agc9o2GV/2KGY
+JCzXMa4qGXZ9DkddOq0AKSWbKObyesLZ5Zh1lCK0hzTY6+YH61C1NYOWBL5DJ3Tts15K8qJgtVoz
+mc6YzlcslhFpKdGeRjkh6BboNkYISxLIreR4YQytQNFpeQz6XVqtAMfRNSHQKqLsDQd1w7+xzRF3
+6gRh4Dfz7LkOQora+sDBdR1bI6gMVdMsZqd8l+n/vNgB3/+BoqoqjDENq9uYbVedwvd9HMdpGL1b
+MHexWDQA5pYZDlYe/WNgMtCA5Hmek2XZve/fyli3223Ozs5IkoQ0Tbm5ueHFixfs7+8TJwlRFHF9
+fc3p6SnL5ZIsy/A8j8PDQz7//PMG+J7P5ywWi8ZTfDu2LQC9Hcu94mEdxph7x1oURTNHeZ437/+x
+MMYQxzGLxYLVatXInHue1/imhmGIVLeb+rvRarUYjUYMh0M8z7sHSm8/718anufT6/Vot9v3WNxg
+fd1nsxk3N7azazt/W9B/Pp8TRdFHWdfb+SuK4p5M/vb9ZVliyo9vVIQQuK71l/E876PnZxe72MUu
+dmEjLwriOCLPC8IwqL21Qo4OD5HKYbrMmC8jruY5y1gTlxZ8VpVlhQrAdSSPjrr88nmPh4cdDoct
+fBe+f/GaFy9fs1pvSNMcpSRPHj/k2dNH7A36dLtter0uX3zxKfujIaPR9zju1xhxQVK6JKUhS1OW
+q5jpPGITpbU8s0MYBBwe7PO3f/2feHhyxGwZsYkzVpuM5SpmsU6YzjdMZmsW65SqshLMSH2ni1/e
+Fop+dHde1bJOkl5HMer5dEIHVT9fqspKRj95dMLf/c3/wibOkdLBC0OePzmh07bgqVQCgZUCe3C0
+z3ydMZ4nDYuhKjNM88xS269uQgiBH/gopShLQ1k3IWitcbTGVBVFLdv34tU7Xrx6x3evznnx5oqr
+aQSqhdQhymuhHB+hNKLpyv15IQRIiWV++45lGHe9+4WkO/sb6+dtyPMM35GIKqfIozrh9zGVICmg
+3MC3r8dcXk/pt10rsdn1GfRbDHotBv0Og77tKA98DyV9At9jf69H4HtUlcBzJMFLybfpFfPZEjlQ
+tNyQ0FfWi0tYfzshBAPRw/d99kd7t/unO8VZ11HW28pxcOrGBSktiKy1Qr6XrJqqIi8MaW6o0GjX
+Bd3CCwe4wcCqJWjPquuVBUoaNimcX89ph65VTQo86/F2OGC+ipgtYsp8Q+AKDvc6HOx1aPkulalY
+rDacXdxwdTMnSUuU9vD9gG4rsDJxrkYI6vFKhLQS7qO9YdPBfddH3nWsGoGjdbOfs1ZCCinFB+Mt
+TUVRGrJ6vMp10bqFG/bxwqEFu93ANlhoF6mcGnDf+rr9T7/V7WIXu9jFLnbxHzYcLei2XPb7Dp1Q
+o6RogDylJI8fPeBv/+rP2UQZUjn4QcCzJw/sHlQplLJ79l4n5ORoyGKTM1lMKfMYqT1MkSLQ+I5L
+J9B4jrL2MGnGfLHiZjxjE2eUOEitcfwu2u81wLHjdawdktpKuN4+6H9ymylEvUewQJpCo9w22m2j
+3DZK+VCPVwiBQCCVQmmn3lsFVCq0DEfXMkGF/Fg5uUJgGh/vW4uejxzSnV+LomQTZcwWG9ZRSlEW
+KNUi8APkUPGX/8uXHB/uM1tuWG0yVpuU5SpisYqZLjZM5xsW64Q0M8yWKbNVQlzb9rmui1KK58+e
+4Ac+X37xGatN0vwsVynLdcx4tmYyW1OmJVQCUDanEbUs9w/VvO7I5woh8FxJO3TwXdv4meUFq/Wa
+yWROnFqmvXYlbtDDDfoN01dqRZoL5ouEKLb1TB24hIG12XFdBVWBKfIPWPQWIFZIpVGVgxIOwmnj
+BF28sGdBG+lgkFTVraqn1lsgrMKUtkkW88dIVFeYholq2IoHSCmQyjZ3Njnhlkz0R2xVHUcS+pow
+UGjH5nFRlNTNyEvSvEBIF+20cPwuXjhAuy0cr41RIZtcsk4rLO4t8DyHTrtlbcMklIVlVpois4zv
+9+rJ1gbU+qYrFeA4FljXdSOqdAKM0JSVxNTzrJRVMbgFCWuLM6ksQCvuy5bba7X+DsdF4aEra4Em
+lYN2vJrNevuWbb6QG9uA7fqezRdaQ7TXRikrMe+HHdqtFq3Q2iwBJEnKbL5gvliR5RVKBzheBzfo
+o70OUmmk0lTSZZNWrKKcLC/r82EbU9qhj5YVZZEiZIUQqlFy+BdHc22B5yq6LRffre+3QuDWOMj+
+aEi7FVrV1/oetp0kq9Kmb/NOrUlEZlVttVNb0X1cEa4CSgNFKUEFOL6LwEe7LbQXorTf5GHbXGzb
+sPHjIUAqZKWpMGSlJs8Ur88XTOdLuqFm0HEZdn0GvTaDXot+v8OwzteDwCPwfVxH28YY36NCoGvL
+tG9eXTOZrBBhC9/xaPka17H3MK0VQlgVYV2T2qjMHZU+Ow/Oe7mrFfKzNriOYxuCxL25qsjLkjQv
+KStr/eY6Pm7Yxw2HaMe3eauQdQNPRlZIbiYrzi7GSCHodVq0Qo+DUY/JtMdinVEWEY4sGfYDjvd7
+dNs+SsJqnXB5PeP8asYmNkjtgREgRa3SUaugfSS0FoSeph1qPNee/yRJmc3m9lkcJZRGWGUQr43X
+GqDdNo7XrusatdIHJUlZECqPMPTp9azdoK2J2AYzpSRKa3q9zta84R4o72j53jwLRN3Y4NYEgi1g
+/0ONZLv44dgB3//BIs+tvPZdNrPjOM3PVv48TdPGu7ooinufsQU3xY/cibefF4YhSim63S7tdptu
+t4vjOI1U9tYnejwe8/r1a548ecJqtWS5XDIejxmPx43ceBiGHB4e8vz5c0ajEa7rUhQFURQ13tTb
+Md1lr289Ez8Wsi4yWq/IdgMQb6XKfw4guwWq787VlvHdbrfxff/j8jvS+oD3+306nU5TxCyKgjiO
+ieP4TwJ8u65Dq9VqPEq2x7wF7VerFYvFgiRJPjiv20aJH2oAkFI20vUAnU7n/vypH573rd/8NpHY
+xS52sYtdfDzS1CaUcRTT7XYwpsLzXAb9Lq7rMJ6uWa4i5NmC8iYhWRZQWZaElLZTPPQ0x/sd/uyz
+Q46GLULfYbOJuBlP+M3vvmUynZGkOVo7rKKUspLkhUEqzUHgc3J8xONHJyA1s9WGxTpmsjCk65I8
+S1lHCYvlhtkiYrrYoJXAdTTtVovPP33G558+Zb2JmS1WTGcrbiZLbqZLzq5mOO4E5JI4E8QZdQf7
+H8Y43bI+XK3otRz2Bx7twMpzbT/FcTQPHxziuZq8KBGiTtZ6HdqtsE7A7Ot73TYnxwdcTdY4+oay
+iCnLjLLMLRgt5O2z8f2iBtwCh6Zqmsqsb2BGFNl5+Ob7d/z2m5ecXky5nqxZxQav5eA5LbR7h/Et
+8jvJzc+Yk6aAZhN9Y6x84t1k/C7juygMpswxZW7HWKRW1t2xRQlTCUwpyAvDer3hLF8TeoJBx2HY
+9RgNO/Znr8/+Xsxo2KfXbdHrtgkDj1bg02mFVMYQeIIsjjk7v6LM18gqxHfAdwR6uxWoO5HtXkHf
+jrueg7szUBQVRZFBnFGUJcuVba4IfEFpDNxZR1UFRVlRlIB0UI6HdDs4Xhc37Fs2g/aAClPkCAri
+tORqvKTX9hkOuhwKQbcTcnw4ZDJbcXoxQVYZoScY9kMG3QDX1WR5zmK54epmznS+Ii1dlOPhep6V
+bvdcnO0eaVuwrPdGPz3enDix+7jFcsMmTvFcpx7v3WvCAt95WYF0baHL7eD4Pdygh3QCOwd1kUUI
+XSfKP5dFs4td7GIXu9jFLrbhOtY/dtS/bb6UdW3FcRxOjg9wHU1RGrsH1Zper02n3cJxnWYP2u20
+OD4acTWNcM8s8K0dn7IMEJWPo8F3JY624EiW5azXG2bzBUmaW/UkR6HcNl7QbfZ/2mtZG50tk+3e
+Y/6nnvm2GVUqjcJFCRflWKle5YTWLma736o/bgukSu2A9KiUj3SCWv7YQ4j75WRRMyVFzWBmC3pX
+t+zf98PioJY9FycZ81XMfBkxna9pBS6uYxtxP3n2mE+ePSKKU2bzFdP5mvFsyc1kyfnVjHcXU8TN
+gtJIojhnvoxr39uoBhMUhwcjDg9GmMowmy2ZzReMp0tupguux0venI8RUjFbJGySkjgziDtyyT9W
+P7Vbd8tKdbQg8DSOlihpQf0oSlgs12S5QSgP7blor4MT9G6BPceQlyXrOCPJCky9l/Y9l1bo42gJ
+VYkxNRO5ute5axuOpUZqFy19hBui3bYFL7VPJRwqbpnCUlomrJICgWkY+lX1B0hU35kSY+yetShL
+yppAI2uQTCvnVqX0D74yb49FKduE67lWlQogy1KWqzXrdWRzX6mRjo/jtdF+F9ezc4B0yApFkhry
+omr8k1thQBh4SFlhioyyyK2/d7lV2ro7XEs8k8pFCR8jWqBt3mebUX1AU1Xidp6FQEtZ309uFVxt
+M4XiQ0swax8plEZqDy1CqsprfNGl8j5owrDNsiWlAaFctOfh+B2coIvjdex7lcbzAoLAx/e3LGdB
+mmWs1hvWm4i8BKmtfZLj2fdvrbOQFWmB9SXPDRW2qTcMPCuBLsGUGaIS9vV1U/u/NKoaYBS1Alno
+K3zXrluwFl1387DbBuAP87Ass57qkLBcb1itY5I0Jy9KTAXqY/lTJTBIykpaVTevjVQttNuyjUDb
+8yLfl9f+6ZUuhARp8ZWyKijLgmi24vJqhSMLm6t3PPYGHfb3Ouzv9RgN++xvUnrdNr1ui1YY1g0c
+IWBwHYGocq6ux5h8Y32+VUXgSFx1e/1VlaUMWyXCrb75h3NWllCWBUlaAIL5Ym2VJdLaj/rOO6pq
+2yRQUYl6/ao2rt/FC3qNnR8I66depKSF5Ga+4eJqTq/bwRhDKwg4HPWZzVecXy9QVYbvVAy6IaNB
+p34Ol6w3VhltPF2QVSFC+SglrHncDzWC1zUnJQWeqwg8B13n9Fl9LSyWq/pZrOwYvDaO37PXlNeq
+rQgrKlNSFil5noD08IOQdivE97zmebG93rVWeJ53uzbem+v780w9zylJVlKWlW1Y2vEN/6jYAd//
+gWLLfp5MJg2Te8tODsOwYd9uX7st1FaVfQh0Oh1arRZ7e3scHx9zdHT0s75XKWXlvvf3cV2XsiyJ
+ooiLiwscxyFJEubzOe/evePt27e8evWq8cvOMttF1Wq16PV67O3tcXBwQLvdtiD9nYLyFvQOgoB2
+u934Vz948IBWq/WzjrXT6TAajRqAvRX+9PtsQdk037/dkG29qn9sg7uVmb/7um1XsGk8Tf405/7u
+Z23P7/b3rUw5gO/79+bvrmf4T0Wr1WJ/f5+DgwM+/fRT2u32n+T4d7GLXezi/80xXyz4/sUrrq5u
+2NsbMhgM2N/fY39viOf7PDiyntLKuSItrojiJUbklGWK57i0PI9Bx/oydUMPRyuKomS92XB1PebV
+m1Pmyw0GjeMGmFc3zCPF1TThi01GVuT0Om16nRbtVsiDw32msxW5mTJZzsgykInLYhXz8s0VgQsP
+j/oc7nUZDdv4nkfge3ieS6/bRmtbJBjt9TjYH/LowT6XNwtevJvw6nRKWhRQlbfeXj/LfsgWfVwt
+6bU9DoYtOi0PLS2Qp5WViRoMejiOBQmlkEip8AN7fK7roOsGwH63w4PjQ95eTPE9XXfvp/ZHKqRy
+ajaKuVfWKYqCy6trLi6vmc2XrFYRmyimrIRlTmcFUZyziRKuJwvGkyWrGIxq4bekTYq8lk3slIYf
+8K77sSiMIU5KZouEF2/HlHlM4FZ1IcayPKqy5Nbju2K9jlluIk4vF6zWCVKpRuZNKI1gm1xVCCko
+Zck6ExTLik264WqWEZ4tCLxzWoHL4X6fo/0eDw73OHlwwMFoSKcdYKohe8MJvgeUCcLkQMm2M9wY
+w3K1YrFccnk95ez8iuvxrPaT17es5qZTevtXKys5W66Zz9ccHg7o9bo8frhdOzUvSMhGFk4KC0Yr
+x7vtttcu2wUnKkmUVlxPI4a9iCjOEVLQ7bR4cHTAdL7h9MLaAnVbLi3fSo4nScp6vWG+3LBcp8Rp
+SaWkZV0o21wh7zRortZr5osl1+Mpp2dXXN1Ma1lMfduA+ZHxVhVMl2tm8zX7oz7dbocnj+4WXEQ9
+XnsOlXAR2rUAv3OfXUA9L9v37UDvXexiF7vYxS7+sHC1ot/xOBiGdEIXreo9qFa1JHLP1sOMsSCy
+lPj+7R50q1LU63Y4OT7k9HKB5+rG69oUW/nkEnEHWNw2uhWlwSAR2kVWum7o8+1e1ZS3Erq2Q/MP
+Gtu2KU5smd/ohgFubVLuStxu37QFfO1ehG2TXQ30vH8Md8St35O9/tEjA+weOy8FUVLx+mzCf/vV
+t1xd73E06rO/1yXwPXzf2vN0uy0cRxO2AoZ9a3l08mCfm8mKN2dT3l5MmM2XfP39O6gKDva6HI66
+dDuh9cx1NGHo17VUn16vy8F+zOHhiOePl7w+u+H7V5e8PRtTSUNlajb0R6wib0d++7M9Pbf1QStN
+b4yhQtR7YlDaRSorCS2qCinLunkY4BYUsbXJmkFa5y7vg9Ji+1+zT1YNU/eWifqeEtedY6+4lSjf
+5hc/p5J5R3OAojAkiW3uLEo7Ftd1LcO4FeC5GiWsFD6VgcZH/McSxVuWo/3d2FyG92qjxbaeXAPG
+yjYAWKazZ+daKkA18uLNGpfK2lpupa6rGvzH3Gs03r4erMqTFPb6od7zC+nc2jr9wPVpMbcPz93t
+Z9/5nrqZVRhp87h7MvF88BmizoslDkrafEFpq4a1BdhlbSmq5C0j2a5vy9i3r3GsF3ut9mDXq0LI
+rd3WLagvhGVTy5rJXpkSIcxts/afrB5OLe1cIe9Mb5blLBYL5oslZxfXnJ1fslht7PHX9zW5PR/3
+jkWQZDmz+ZLZYs359YI0N/jBLWP77iLfsu0VLkZ4VMpr1pUQdwDvn2E78ZGTV9+XNVJ54Jb1tZ4R
+F4LJGuIiZrIqeHuxIvCvCDzN/l6Po/0uRwdDHj444OHJIWEQsL/XZ77Y0A40ssoQVYbAnheEnYP1
+ZsNisWQymXN2ccPZ5Q2mEo1H+e16vJ+7gmCxjpjN13ieS9hq8+TR8e21dPcZI0HWuavUHqrJXd36
+2WIHn+UVk3nCZWvNg+MUU0Gr5XOwv8c6Sji7mDDouPTaLq3AxXEUWZ6ziSKbq28SoqQERyAdvwGk
+hfiRGswdH/O7l+uWeFmWhqq+lwhVX0uO19yzLWhd3daRKns/V0qjlG4UHDabyM7zdMbp+RVnF9eU
+hluVtrtrpjFXt39fbRLbBLZImMwzqO83Qm6VM/4kl9b/K2IHfP8Hii3LejKZMJ/PybKs6WpqtVp0
+Op2GaXIXTN4C32EYMhqN+Pzzz/mbv/kb/uIv/uJnfa8QgjAMCYKAIi/YRJbp/fXXX6O1Jo5jhBDk
+ec6bN294/fo14/GY5XJJHMd0u12CIGj8sg8PD1FSNWziLSt5e6zWU7TL4eEhf/VXf8Xf/u3fcnh4
++LOO1XVdwiAkbIX0+wPCVviz5nX73U33XQ18y58oWG87GLee5Hc/708FfH/sM+6C61vJ8i3wvZ2/
+g4MD/vIv/5K//du/5cGDBz/ruxzHIQgCwjBkONz72YD5Lnaxi13s4odjPl/y4uUbXr56zWi0z/7+
+iDTN8D2fTqfDyfGI0bBLaSTXkwXX4xlJmVOUKRJJyw8Ydlz6bc9KNmtBmuas1xGX1xPenJ6zXmco
+r4PjV8zjG95exsxXKRXWD4uq9hhuh5wc77PexIxnMZhrssKA8llsYl69uyLaLBk/GvHF8yO0gn4P
+W3DyPDzHodMKMaM+xlSNX+DVzQLE77i8npIXOVT5PU9q4EfqGrcFDdcR9Lseh8OATuiipGiexUpp
+HO3Q63Zv3yqoAXDZeAxWFfR6XRzXZf/tBZ6rrMR5YTuLt6yWqnI/eMYWZcnV1Q2///03vD275Opm
+xmS2pDCC0kjSrCROSyu3LRwqoUFZDzSvFVo2jtuuEyP9gwWKH4uirIjSHLmMMUXEeHyDrFKKLKLI
+Y6rSMhHAbMnhZLkhy0tWUclqU9ZFSSvxte1E3ybkQjoYk7HJMjZJztikVCaHMqMyOUoYHj0Y8vRk
+yBefPak94vfotFuEgc9o0CZ0BcIkUOWIqrSyltjiyXK14vziiq+/fcWvf/cd3714g1I24d12X29B
+Y+pu863kV1ZUFGXFZ+kjnj85uTcvW9mvbVFHVk6dSHtIx0NpB6k8W0BEQCWJs4ybacqwv2ET24bR
+bqeN42jmixVv3nS47nh0Wy5h4KKkZJ1EzBcrlsuI1SYhSQ3aF2hl5UWVlLYAid2PLVcrLi6v+Oa7
+1/z6t9/xzfev7Xi1W6sLfGS8dfEqLyzr5NnTE54+ftCsaTteWbN37HiFvE28pfbteLVbe5jtwO5d
+7GIXu9jFLv7YsHUoRb/rczSyzZfy3h5U4Tjv70GF9bV+fw/a7eC6DqO3N/iOpDLJbfNlmUNVNwzW
+sbVyyQtbbJfKRVEr22jXsnClqvd1soY4//DYsiC3wIRQumnUEx9R8LOgwC2QemtlpG8Bvo9OZjOp
+jSrOxw+IBvSpKmmB77Tk7dmEaL1gMpnx5ScnVlGo38Xzrb+tlVcO2DMVxlSkac4mTpkt1vx///5r
+Lq+nzGYLvnlZMVts+PzZIVVlwSQlJYHv0m6FBL5Pv2+VuIrCEMUxmzjl1797xXq15vT0HGMqjKis
+BPiP+RVvN+RUCFGDc++tL1MbVYu6FiqVY9n0W8a3sm+ygOtdYFbWYJR9HeYH/LdrNnXT2NAA31up
+dlW/5iO0wRpU3uZFTePyz1tYgM2hkrQgTnLywvqIe46DbEvarQDX0UhRIWuA9L6s9MeSxK2XbT0/
+db4oqGrcp2qun9KUlKZufBWq9lp2bD5W/wglqYS8B3zba7tm89ffYxu3b+vDH3DfG7BcI4WGmhEt
+VS39vG0iER+OZ/sdd7pLmmvg3nXBVgW1zgWqOteV77PDb18razBeaYei2gL+FqDdXvvbplw7f7f1
+a1uPp1aFsKC3VC6iHpu97ksqUXzYOFA3Zlg/95JKmttGhT9F3Lu2bBPPFqzM8ozpbM75xQX/96+/
+5te/+Zqr8QylrR3UXQuo2zysZoqbirysyMqKzSYhzSo7Zqk+UNOw6hcOEhelfCoV1GvLa873Fsj9
+w6OWPFf69nOEpipTkjInzjKmq4TKrMDkVGVGVWY8OOjy+GSPT589QGvF8dGIVujheQ7L5YaW7yBM
+ijA18H3HFT7axFxfj3nx+h3/9Jtv+d3vX1BW8tY6627uuuV017lrURryAkajAQ9PDq26xx28v2nA
+kAIpHNDbBnW/zo1tQ4KpPe7TImO6iGl5glWcYqqKMPQ5PBhSFAWv356z13PptVzagYtWis0mYrXa
+sFhuWK4ToqTAUxJX2zqAKbKfVOmw90qaRgqBVU4o6yY026Tk1NeAe6fJ3rsHfG/vYUpb0NsqO9hr
+LIpjrm/GvHz9lv/7n7/mN7/7lrwEpe362eb5zX1w+4wQgsIICqMo0eSVR4XfNDDtmtz/sNgB3/8B
+Ygtsrtdrrq+vef36NZeXl433davV4vDwsGFSgwUwPc+7J/e97V7RWjMajfj0008BfvRmsH1YbUHg
+sizpJJ3G63srib2VLD87O+PXv/41q9WK6XRKVVWEYcjBwQFHR0cMBoNGVhtAKiu1vfUo395ct8B9
+u93m0aNHPH78+Gcd5y1TW9Nut36WBLfW+t5cbec7SRKSJPlAKv5u5HlOHMf3XrdtRvhTSYBnWcZ6
+tWa9Xt+TYt+eY9/3CYIArXUzF1sWeKvV4uTkhE8++eQPnr9WK9xJmO9iF7vYxZ8gSmNIs5zVJiUt
+JtzMIgqjaHe6dLsdHEfTCn2O9vt88uSANCu5mKRczjJUpXBVieeAo0FJhcBuyrM8J80K0jQnKwye
+pzB45KWmKiTrxLBYZ8yWCcN+jqmszJL1OQ5wtKwBYU1VFpR5yXKdYkyBqSqSNONqPKfbDui2g5ol
+YQtG/V6X4aBLGLh4nqaqYH/QZtj1KE1GYgxFkdWSeyWiklQ/Im8nhO3B91xFv+0xGrRohQ5CwGy2
+4Or6hulsTs1ZrqXBbiUoATrtkOHAelQjBK3Qp9Nu0esEdFoewpENAG4LHB8yJipTEcUJk9mS6/GC
+y+s549naypAJl8JI8tL+aMeziYsT1BJ3LaTjoxy3Bpv1R4p9P10EMLVEWJwbzLokigsoE/Ispsxj
+K79nisYzsarfUxrISokREu1qXM8nCDy0tvKCCEGWKdK0xBhFJRxMzbIxRmBMRZkbRGWYLVJcd8Xe
+3oootrYtSkmUkriuRkmQGExZkGUZeV7cUc5RuI5DaSqWq5jr8RLthijH3JHlvvWqqjlINcvFHmeS
+15Lm4v3iXF20pWZC17/bIs7dbvsKTEVaCCgKFuuMVZQRJylgGzlGe32ePj4mLzJOjkYEvkea5Yyn
+M96eXjBbrilKAdJFKFs0q5Dkpakl8apmvI7jYCrbnX0zXiLdAO0Et+OVoikC3Urp1+NFkuaVlSf8
+8Mqo52rL0lF3xnuXubNLfnexi13sYhe7+GNCCFDCylP3OwH7gzatwALf9/agW7/QumZyGxXtVsje
+oEev1wYBYeDTaQV02z7twAUtMCanyFOyLCXJcoq8gKpCCoGjlZWd/iHFwT+hr6fdA9/xwBVbt+33
+v/fWOmX7WtFQ5D72+nsHfPvzo4fdoN+AwlSKdVxY2x5TkWU54+mcTjuk220ReA6eq/Fch0G/w7Df
+JfDtv7lasjdo0e/6FEXOah2RJDllWbDexAz713TbPp2W9cV1HUm7FTLot+l12igVEgYBh6Meo35I
+v+MSpRWbNMUUiQW/f2ww4raJIc0LirKgqqyCppVs93EcfQdkvc+Ml0LgOBLf07hODdYZQ1HkZFl6
+a2Eofngmmz1hdcvWb5iYP3im3hvTHwRY2k+uhCTLDWuTsY4y0rSwFj5C4Cibew77IQd7HXLpUoiy
+9oOWFgi7HcHtMVWWga2V9U0PXEngQlnmZGlGUcupO1oR+D5+4KK0bRAQbEHrWya7lPZzPFejahJW
+WZakaUaWZh9YDvHeMTXjFbfXRXP9NL7lW9b9/dHw3p9/1hTfVU248/tH1+D2mOrcQKKaZoe7TH+7
+PkuyvKQ0VsFAa23nz7Oez9z5nu08isrUMvMOnuOgdU1iK0uyLCPN8kbe/l8lxK0yRpYXFGWJMRVS
+yLox3iXNSqbzNVfjBY5bor2qkWkXW2nqu2dUbLUDJGWloG6WkEJ98N3NeZXqVv2ibnIQf1QeZu+L
+StofgQCjqAzkuSKtFIVRGFFRCW7z9RLKoqTMBbN1gTte02kvWG2SxmbMlTZX10qgKKlMQZ5npHmt
+xMAtgU8IySbOuZmtrCe3DmzdZrtm7lw/t2O1zSPtzFhJ8w+W41Zd5E7uum3aqIFewbYBqKIwOZu4
+ZL7OWK1TNpuEVujiuS79bofHJwfMZ094/PCAbiegNIb5cs3Z+SWT6ZIkq25zdWUbxYwsP2IhcH/+
+jako8vpaKO3acLQiCHxaYWDt2rak96YBh9sGe+40C9XWdHlRkhdFfa+25AytbS1gE2fcTJdkuUB7
+Bu2YRplje73fu5xlDXIrQVUrs9i1XK+7f72r7f9xsQO+/wPEFoRdrVacn5/z4sULzs/P2Ww2KKXo
+dDo8fPiQk5MTut0uQoiGBe77PkopjDFkWcZmsyFJErTW9Pv9H2U0N6zi0lCaWynyVqtFEATs7VlG
+8Gw2I8sykiTh8vKSqqrIsoz5fI6UsgGvHz58SPduhyy3Ht1hGNZ+HLIZ73q9pixLWq0Wg8HgRzt2
+tuznu8xxIcStpOaPxNbL/C54vPX9Xq/XpGn68e80FUmSsFwuWa1WjZe51hrf9xsw/18acRwzm89Y
+LpeNZ/i2WSAIAlqtFu12G8/z7s3farWiKArCMPzZ81eZqjnXP8cffRe72MUudvHTIWrZsLIS3ExW
+rKIJlXA42B9ZCelagnxv2OHLTx7iey6/+t05k9klwgiUyNHS+sYhts/mElPeed4py3bVrmUda7cN
+KiTNBKt1RpLdKsC4joOjFUIYTJFjjC0smKoiyQpKU5EkM66up/iuwHclvitphx6dls+w3+bzT5/w
+xWdPrK+h1gS+S6/jsz8ISHNDuTakeVIzVQyV3MrSffw5JIUdX+BKeh2f0aCF59qE7PL6hv/fP/4T
+3373AoSiqiUXVb3538bDB4d8+cVzPn16YtnpvksrCOh3Wwz7bZJSkZiMMregtNl6D95l3RhjmSNR
+wjpKWSeGdQrK9dBOCI6LdjVa1BJ6dSe9le/y7iTYNaui+egfKFTUjIoP7EyMlXwsy4rYGExZUeaS
+stA1KUM0wLd9Ty0ViQKtcV2HMGzRDgMcx3ZdV1XFykCWmrrL2c6D0lZm0ZQ5pZOByckQzFc582VK
+nN2XdtzKzElhpR/TNCFOUuu7LgW+79Htdmi12gjlWjC+1GjHQ+JaFopQNlkUt93n9pi2MmsuQn6Y
+pjS1heoWPGbr49YUYmW9TgxFIciLitUmZ7lOWK0jfM8yhvYGPT775DG9bovHj44JAo/V2toHvHx9
+ynyxxqBRjkQ5Pko5mEqS5iVZnpOXBiEEvufR7XRptToI5ZIaiWM0FR4KD4FCoKCRTLRwN5VoxiuU
+d28t353tpuC8Lbbd02Xbgd672MUudrGLXfyxIQAlBUpC4Dn0uyGjQRvXdRDYPeg//urXfPPdSwt8
+y20DWu3NW+8jHz445MvPn/Pp80f1PsOjFXr0OiHDXkiUK6I8Jy8ykiRt9k3Wx1nheU7drFjvBe6A
+XtXWmqeWzP7TjVy896cfepW4t4P96V3HFgz5+ccqhEAoiVCKtCjJ84IkXXAzmfP7797ge5rAlbRC
+j07o0e+FfP7pU7787BmDfhftOPi+R78bsD8IieOE+SpluohYbSLend/gexrfFQSuph26dFoeD4/3
++fyTR3jPHLS2gHM79Bj2W+wPQ66nEesoo8gSKmNJKOKjbGv7iwWuSuIkJcstOOc6FkzpdNp4roMQ
+23Na1kzyCjBIYX3mW4Fj2dE18ShNMzZRTJbldb7wQ2fszjkVt1C3QPz4Sb6bq/wx66tmJedlRZEW
+LDcZcVZQ5EVNqpG0Ao/DUY+nD/cYrwSTdUGWxw1z+q4scbWVEDYlmBKlFL3AY6/vEzgVRZERx2lD
+CnJdl07beh072gK3pp7fytz+aKnsGvAUjraWQ3leEMcJSZJSFOV9T/eaffuxqfuYV3l1718+1ryy
+/ak++GdjqvdeVzW+8VsGOsIgKsEPM6nvA/LiHvho/16aijQvSbOibhyocF2HVjuk1bbzV1VFM2fG
+lM31b+9TisDXto4AZHlBFKfEcWLn705O9ocqnv3w+qqnpYKiKEnilCwrKKsKpRRhGDAY9PH8gKKS
+pDkYJakqt8473Ttg9q3CwJaprqRClhKla6D8vTr4dh3cNhfczb/+yDyssutcS/BdgSNtswqVYBNB
+kVcUcCulXyt/mLJAFT6lk2FExSoqmS4TNnF+b10IQMoKKaEyhrTGa/I8t97srkun06HT6aC0R1ZK
+ytpeQ+M3jeV2HZp6ddu6htgq4yrPMqI/Nv5tTi4E1Z35EnfXp9BICUUhyfOKZVSy3KSs1hFaCXzP
+pdMJefb4AVop9kcDup0WeZ4zHs949fqUm+mcouS2DqMdTAmilD+pi1Ia20Sx9SoHcF3Hkia6bXzX
+QWwVGkyJMQWyvi4QdVONsY0FlSkockOaQhxn5Lm1pHNdh06nRbfTQWqPrBCkpaQyDgYPhWNZ8R+s
+TXvuda1WYYRHJb33pM53NYCfGzvg+99Z3JWWyfOcsixZr9fM53MuLi54+/Ytp6enTKdT8jzHdV0G
+gwFPnz7l0aNHdDodW4TzrXxqu91uwNc8z4miiM1mQxzH5HlOEAT4vt8AvkII20FkStI0bVjPWzDZ
+87x7wPdgMGA8HlOWZcPyjqKo8SMXQtDr9Xj8+DGPHj36APjW2gL0/X6fIAjubO5S1us1URSRJEnz
+3Z7nNRuRLdBdlmVznHmeNwC9Ugrf9390vq0vk0+3270nFb9lsK9WK1arFev1umFZCyEwpSHLM1ar
+FTc3N8xmM5IkaZoOwjCk3W7fY7f/2Dkvy5K8yO9JpJvSUJQFy+WSy8tLxuNxIyvvui5hGNLv9xkM
+Bs38KaUoiuKD+TOlwQ8sGH9XtmQrkR7HMWmakmVZA4L/nPnbxS52sYtd/HRs5bEqNIv1movrOUHY
+4c3ZNYcHI46rijDw6XVC3MeSwNfcTNa8Ob2ySQsFlclsce1OvUNIgeNoXNcjr0A7rvUX0gGOF6K0
+hxGKwgirigeN5GBV+x+ZskAgcZTE83TtgyVZRRtuohVFFiMpUKKkFbj0OgGH+z081+X4cA/f83Ac
+jedq2qFDr+0yXSYsowJT2M9vZKB+hKGgFWgBoa/ptjx6bb9+xudc30z4/dff8Q+/+meEdKzUonKs
+b5u63cou1zGdTpuD0QAhbJEpDD2Ggw6jYZfpqiLe5FRliind2sPtPhOlAvLSkGQ5cVqSZBVpqXEr
+D6nalt2t3Vqqq5YDuyNxZ70P6w7jqmq+o7rTEfxh3JG3qn9KA6IEYwRVKTCloiwUpnSojLwnrWXn
+VTbSYkI5aMc2yLVbrmXCaIGUoGVJVeSkEts5jmi+VioHrV0rX64KSpPXa+d2b2r3LLcF2CzL2UQp
+8R3lG8/z6NbJdBC2cNwA4fhUok7cxHaeLIiulEAridaywXQ930cr9R4D5K4M4C0QfL/TfstKsuB3
+bgRFXrFOShbrhNl8w6BHDc63eSIE+3t9Ou0WvudyM55yfTPj9bsL5suISmiUo+oGB5fSCOI0J0oK
+isLU43Xpdtt0u3a8rheACqiERyk8O1ahELWvoVYCrSVaq6agdncv/v610RQu7zJKdrGLXexiF7vY
+xb88BGglGsCx17H78bt70N998z3/8KvfWGaqdC0rsJaP3u6HFquYdrvNwf4QIYS1jwt8hv0Wo2GX
+m3luwcAsIU0Sok1CmlqwYush3m4FeK5jpb1zA6awnuCVgapE1kCJkuKe4pGNnwdY3ttRfUyN+Sfe
+u2UV/6z33ZEo/qnYNua6vo8pBKas2MQbptMlWbxByRIljM0TOgGjoa3dHR+OCMMA7Wg8z2HQDTg+
+6FkwLiuZrRIm05jLIqcyBYoSJSt6bY9eJ2C9juh0Qh4cjQhDge+6BL5Lt+XQb3sslxGUWc1At+DI
+xxiO2/+20uvrdUqa5pTGoLVDGAb0um3C0MdzFEqWiKqgKrNmsrRStEKPQS+kFXpoZWWFozhhsVzX
+62XL4v7hk2sZ5e+f4J84YX9sP8W2tigUeQllWrKJctabhOU6JgxcfOkRBq5VNnt6hDzfkOQRJskR
+VUZVasu+3crwY5uhpTJIZegFDodDj5ODgChKiKKYTRSTZneA7067nl8Px1UoUUFVYErb0EuV4zke
+3dCh23JxXcsM39ZN15uIvChrEP+nmLx3ZL6bqfupC2Lrn/7h51Tm1sKSWonbArICgaGqCoyRWJK6
+aPKJ+6dB3Dndd9QcuP/3oqiIk5wozsnzO1aZnTbdToswcHG0RIqKyuRUZV5Ly1d42ubo3ZaP71og
+Oc8L1puITT1/Nt+5k6v8yXIWy1bPsoJNnJFkOaawZK0wCDClodVu4/sh2vURyqOsNBUuYHNPKW3D
+sVYCR0uUvGXmVwiKsmy80D/89tscbAvmip97H/zIWtgqGmgFviMJPYWrFK4jmC4qMAVUClPVrPTq
+tgnCaAdd5kiVYSjIS8sGh/uWqJUxgCEvcqI4ZROlZHlR23o4tNstur0eYauN64dkpbbzJr36POpm
+rUkJjpY1cYIacwpr1vjHL4/3GzHuzORt87rUFJWkKCBOS1brlOl8jesq28QfBDw4PqDbDvEDq+S3
+WsdM5wvenF4wmS3JjUC5QU1AcK0dwvYe+YMnSFCUhjjN2SQZWWbrNY5j56XX69BuhfieQ2FF0DFF
+hlEZRjlopdBKIBVUUlApiZaGLEtYR5o0y6hMheNavKvX79FutXC9kAKopIfBBeFS4Vr5fuyzXWur
+ACNlTfKQmgKH3Ojaf35HUPxDYwd8/zuLLdiZpinT6ZTpdMrp6SmvX7/m1atX/PM//zPL5bIBgsMw
+5Pj4mM8//5xnz57R7/cbsPnhw4e8evWKMAyRUjaM5Ovra37zm98wGAx4/Pgxz549o9vt4mgHIQWr
+9aphl799+5bz83Pa7TadToejoyOePn3K/v4+w+GQR48esVwuKYqi8R3fRp7nKKXodrs8efKEJ0+e
+0Ov17o038H329/d59OgR/X4frbUFgWvG9atXr/iv//W/stlsePr0KY8fP0YphdaaLMtYLpcsFgte
+v37NmzdvyPOcdrtNt9vl6dOnPwk8CyEaD/Lr62uCIACsvPhqteL6+ppXr17x29/+loODA/b393Ec
+p2F6v3nzhm+++YY3b96wXq8bL/WDgwMODw8b6fkfi7IsiaKI2WxGq9ViOBw2TQfr9ZqXL1/y61//
+mm+++Yb5fA7QyNs/fPiQx48f8+TJEwaDAY7jNIx7IQSvX7/mv//3/06apjx9+pSnT5/em78tsP/q
+1SvevHlDkiTNuX769CnPnj37t74kdrGLXeziP35s/dmUtuxgt8UqLvnu1RVSufzyi6d0O20C38Vx
+NP1emycneyzXEfNlTFoUzGZzoni/lnxzCPyAXrfD/mjA8eGI8SIjryRlkaHdDFHl+K5kr9/ieL9H
+p+OjpCTLc+bzJdPpnChKqKgIfJeDUYeDw/26E95lsVxyfa2ZzqDIUrI8I0pKDAlKaaaLNcvVhk6r
+ZaWgsN3qTYd47RW29TGs3uuDvw2bTAWeouNr+m2HwLO2I1Ecs1pHXN9MuZksmM43KDdEuQ7a0VZS
+vLp9zi8SyWSRcjVeoqSm07H+fft7Qx4c7ZOZJdPVksKAVF4tGf6hbKFNZG2zgnJ8tOPgeG0cv2Pl
+q7VXFz9r37A7P02CV92yOSpTYMqcqmkCeM/6vAbIjTGY0mBQqMp2CgshEdq13d7KaZghH/jDNWxg
+WxBTSuF5Lq3A4WAYcjTq0O94nF9OObucMl1sWKxtEpxXUJSmKWw4WjLqtTkYeDw5GdHrtuzeIs/J
+spwoTojjlCTNWW5i1GzFbB4RxZntInccCAMOD/b47Pkj1puU2bpgsTFkBU2XsucqK23fCRgN2wy7
+LeKaBXV00Kfd8po18oddb/UvQlqpfeWRl4LpfMPb8zGGirAd4juaIAzQWuF6HlJI4iRjPJ1zdnHD
+MpZUaLTjo7Rn2dy5Yb5MmC1ioiRvkuQwgIPRkE+fPWS5jpmvSuabkjSnSbw9V+E5il7bZ7TXYdRv
+EyVWfv34oE+ntWs23MUudrGLXezif2ZIIQh9h17bod/x8F1t96BRzGq94Xo8YzxbMV0kOJ5CuxLl
+OIjKNl9umamLWDCeJ1zeLJBK0+m08X2X0bDP8eEeSTFjukxJk4TlOmK23LCJU4rS0Alder0O+2lO
+rxsSepI0L8AkFNkaJcFRAt8xhIHTAOTy32MjXLUF96qft3urgRrPlYz6AXvDHq4GR1WsVkuurx0m
+E0GRZ+R5SpJXVKuEqhJMZ2vmixX9nvVUD3zN3rDLp08f4AcBe3srriZrxpM5N5M5URRRZBVZkbOO
+c0xVMZlvmC8jNlGMUhrfM7cAkykwprR7eFOAKX98SyoEeWlYRRnj+YbVJiUvDFopOu0QYwyHox7H
++11MtSI1BVmyRDsWUOr4bY73O3zyZMT+XhfX0URxxHS25OJyzGoTU1XiVrr538v5b1jFGqRDnFVc
+XC/49uU7jvaHHB8OCcOAxycHOFrhBzdoZ8L1NGYdF2yyJVUt36u0xNUS31UMugGDXsDBoMXxQYfD
+UYdvXpxyfX2DFAWbKAEgCHyqqsvB/h4PDvd5eLRPWvlkJqXM1ghX4QqHfrvLyWGbk4MuvTrH2Gwi
+Lq/GXI+nJGlufZvrpmbLRP9TzrG40zhyy8gvypI4yWiFJaYyKCnwPYdO6JKWQGzVBrQO8ByJq4xV
+gfv5X9uoYyVZyWKVM1tZX+SqAt9z6XY7HIwGHO8PeHDYJykdsiqlTJco38fRHv12m0dHPR49GNLr
+hIBgHcVc30y5Hs+Jkxyh3FpRTNbr4k80b8Ky1TdxzngWsVxnZEWBEALPcxFC8OjkkD/74jnaDVhE
+JfONaZp0lLIWAp7rMuq3GA3bBJ6u87CEq6uKIo1qksGfSlXjB+KOb72WVr5/r+dyuNfmaK/F9WTB
+2eWM8WTJYpPW95GK3FRgDFKUSF0x6Ibs912ePdxjr99BCkFeFOR5wWoTE8UpSVpgqgTtbJjM16yj
+tCG5Bb7PXr/H86fHjGfPGc9S5uuSKKVmaYPjKHxX0woc9vc6HAw7ZHlBnKR0WgH9blBLov8xp1XU
+zHSFVC6mqpivE95djJFSEPgege/ie54lSWhrUVAUObP5mrOLCbNFTlEq9NY/XGqEyH/63iisMsdy
+nRLMIzZJRmkqXEfTboWMhn1Ojkc8f3rMbG2Ii5IiXSGFwQiD1/bpd8O6CSTEdwWb1YLlfML1dcJy
+/YCiKPF9q+QyHPR5/vSE/2U842oSMd8YovRWjd11FJ7r0Apc9odtRoM2poIkK4mSgtmqYLYxHygV
+7uLnxQ74/ncWpbEeGVEUcXFxwZs3b/jd737HP//zP/Ptt98yn89ZLBYoZf0Eu90uJycnfPnllzx/
+/ryRNu/3+lSm4vDwkDAMEUKQZRlZljEej/ntb38LwN/8zd/Q7/cbJrCsZOMl/vXXX/MP//APfP31
+1xwdHXF0dMQXX3xBr9fj8PCwYZrPZjPm8zlVVTWsa7ByoY7j0O/3efr06UeBbz/w2d8/oCzLBri1
+iUZEnue8ffuW//E//gd5niOl5ODgAM/zUFKRpimz2YyzszP+8R//kX/4h3+gKAoODw85OTmxHaDH
+xz8630IIOp0Ovu9zeXlJGIYARFFEHMfc3Nzw+vVrfve731EUBe1220qFrlZMJhPevn3Lt99+y+np
+Kev1GrgFpf9Q4Hs6nTIYDMiyDCllw6B/+fIlv/nNb3j58iWLxQIhBGEYcnh42IDZT58+ZTgcNvOX
+JAlZlvHu3btm/oQQHB0dNaz5LMuYzWZcXl7yq1/9in/4h38gjmOOjo44Pj5GKcXR0dG/9SWxi13s
+Yhf/4cN2GGukdqwHtFexig3fv71mE+d0WiGfPDm20oiuS7+rePZwhBQlL9+Oefnuhvk8Jo4ijKnq
+jb+i221zMNrj5MEBRi6YrUqiNAOTISgIPMleP+T4oEevHSClIE1TFssV4+mMKLaKKqHvcjjq8vzJ
+fl1kaHFxOUaJnDxLWFUVSVoQFwVZnkAF0/mG5Spi0E9otwOkVLeA99aD2giqqrzHZL6PflspRCEg
+9DR7fc2g4+K5GqiIopjJdM7NZMZ4umS6iHBDB9cInEqjcNGV35TWVrFgvEi5GS/ptFocmoogcNnf
+63NyvM9kkYGZUOYlyvUxZWYLlu+dr62Hl1QO0hFor0J7bRy/i3ICex6lrhN6dQs4c1ekagtm2/kw
+ZY4xBVX5XtJSGSv5bUwNkJcYtO3SrmhYB1IJKipUw5z5WNKzlb+rUNIykVuhw9GozS8/PeDpSZ/v
+X7v0W/DmvOLsMiNPUkxRNbLdSltwdn+vw6ePBjx9dEC/Y/dGWZY3LIsoyYnTArlOqNgwXW6IktR2
+N2uN4zgcHoz4xaePqYDv30zJT2eUm9wm00Lguw6dlsvJYZ9fPD/i2aMR15Mlk+mSfq9FpxUABviY
+BPhPhWgY8EY5FIVgOo94ezGm1Qo4PijQgVcXQrymez1JMsbTJeeXE0rVxagu0gmshJrySIuIYpky
+WyXEaYa5M96D/aEdbwXfv52Sv5tSmsyy6gV4rkM3dHlwOOAXnxzx6eMDbqYLbiYrurUP/S52sYtd
+7GIXu/ifF1IKQl+z1/MZdDwCr96DxjHj6YybyZzxdM1iFeOWHi4ajYusPGTl2IbPytg96DziejKn
+3Q45LA2B57I/6vHgaI+beYKopqRZyXrjMF9uiJMMU5a4jkO/28EYGHRD2oFiHWcUZUJhQHsKrTSe
+Ay1f02kHeJ5GyK0G8L8+VvOz4qfsvD/y+u2e1nM1+8OQZ4+GdNsu3ZbLzXjGd6qiyDNW64isMMRp
+RpJa5uJkvmax3BBFMe1WiFKK0bCHoxV7wx4PjzdcT5Z8++IMU2aYMmeT52SZtYtKkrwBvlebBN/3
+MFXYMCbv5jS39kg/EHXjaVlUrKMUNbPAd1GUOI5G1z7fR/s9Hhx0SNKc8SJnE63QwkErl3bQ4cF+
+h8+fP6DbaeG6mtm8YLZYcXE1YbVOKCt5Cyz+u4gtA31rM+SQZIarmznfvbRy0oN+h16nxZNHRxwe
+DNGOh8CgpeH82tpLIrVVhMIy97u+y6NDl08eDXh0NOBg1GM0aHN1dc1qvSLLYqI4psKqOLmOw+H+
+HifH+zw62edmnjNZZpTZCllqXOHTb0seHrZ5eNhpmk1Xm4jL6xvGkxlJmiHVfUWHPxrU+5F1ctcb
+vKogK0riNCUvitqWzIKNnZbPMk6pypiqkChfETiuBb75Q695e56yImWxSpktU+JaccLzPJvHjAYc
+Hw15eDSw87fKyLMC6RhcUTHoaB4f93lyPKTXDRDCNg7YBvU5SZrfNg1s8+M/gRTzVj7dVLCJM8Qs
+YrFOSLMCKQSea60lHj88ZrWKcN2A799N2SRTK9ItLHs+8Kxy3dNHI37x7JBu2+dmsuRmtqDIEuaz
+Wc2S/te/mW7l/LUUBJ5g1PP4xZMhv/zskNOLMXttwWu/5Owqp0gyqsJQ1NZnulZKG/ZaPH004NMn
+B4yGHYRUFHlGFCd1rp4RpwVZAZWImMw2bKKUoiytT3uoGY36fPL0hCIv+e7NhBfvpqRFRFUJSgSe
+69AOHQ72Ovzi+TFffnrEch1zM1kihaDfaaHUH3OORfObkMpKlFOyXCW8PZ/QCjwORj32BtYa13Xd
+JlfPcntPPL+ask4URtv6jFKurUfVHuI/9tUCQZqXJGWK68dEcUZZloS+j1aaveGAxyeHfPbsAW8u
+llyMI5LNEiFKhCjxleSw1+LBQUC/6zPohnz/MmNyHXO9TFiuNhSmREsf7QfsDQyfPH1ImuZ8/+aG
+799NyCYbyxYX1lu8FXgc7LX57NkRX3xySJrkjOdrriYbymrDPNpg6kaxH3EP3MVHYgd8/xtGFEWc
+np7yq1/9ipubG168eIHruuR53vhlX19f8+7dO16/fs3NzQ1FUaC1ptvt8vDhQz755BM+//xzRqMR
+YWg3e0II/MCnV1mAessIXq1WzOe20/H8/JyqstIu4/GYvb09HMdBKdUwzd++fct3333H+fk5AGEY
+ktRSlkII9vb2ePr0KdfX17x+/Rqgkc92Xbfxnh4Oh+zv79Pr9j6QztZa025blvODBw948uQJeZ6z
+Xq9ZrVbMZjNevnzZSKm/e/cOx3FwXZc4jplOp0wmE7799ltevHjRgAH9fr+RaP+pCIKgAfMfPnzI
+kydPWK/XjXf3ixcvcByHt2/f8vXXX+M4DpvNhsViwT/90z9xeXlJFEUAdDod9vf3+fTTT3n27BmD
+weAnvz+OY16/fs3f//3f8/r1a37729/iOE4jtf6rX/2K09NTVqsVZVnSbrfZ39/n888/54svvuDx
+48cMh0OOj4958uRJ4+89n8+Zz+e8evUKYwzr9Zrz8/Nm/pIkYTqdMpvN+Oabb3jx4gVAw9JP05Sy
+LH/y+Hexi13sYhc/FaIBU5X2UBpMVRGlguky4835lN9++4anDw84Otij3QoYDtqAIUkLZos1s8WG
+NEu5mcyhMgSBR+DbJO8v/vzPODxaMFmkbBJDEHYIWl2ePdrn8YM9+r02jlbkecF0tuTd2SVv3p2z
+WEVUQqId1yY2gcv+sMPJ4YBuy8V3FQfDDqt1wnoT1T5fhlbg8vzJAwb9Dr7rYExFkiYsVhsmswXL
+VUReKIRwgTs+RB/doFdIIWgFiv2+z6DrEbgaYyqWqzWXV9eMpwvizFAJB2SAdNpIt4NyQ6Tj159S
+UYqAdVwxWWYcJjlFWVnG92jIchXx6nSKoKQqS+ttXuaW8f1B5aDuxJfKSs2rrYe6U4Pe9s8Ns5g7
+Umdb4FlUKA1KS4J2G9/xeHLc4/iwT6cd4nlWZScIAg72hzx9ckyrV9Ab5CwiwSZTxHmOFE5deLmb
+xP1wQr6V3JSyQgqJEuBqSStwGHYDTg56SEpaocuo32Y835Dmhsz2LKK1lbx/dNjj8VGPo4Me7VZA
+URSMJzNOz6948+6STZQhapmurFQsNwUX13Nevj2n12kz6LXptkMePjhASkm702c4nLOJC0okIGmH
+Du3Q42i/y5OTEccHXSpjmwEdZaXZPxxpXWDbSrr9gAShEFZjwDYwaPLSsFinnF8bjg4S8tzcs36x
+fpsJ0/mS5TpmkxToAJTrWm9y7SOVQ1loyhKW65Tzyxnfvz6j32sz6HXotEMeHu8jhaTV6TEcDlhF
+RS0pL2kHDu3QNpk8Pdnj4fGAqiqJohhXiw885bZjubvOmn/bZbu72MUudrGLXfyLQwpoBQ6jeg/q
+ubLZg15dj5nOVqRZRSU90C27B3VadUOcY323TUmBzyqGyTzm8CCnLA2+7zEaDnlwFPHqdIYQFWVW
+kKYZ603KdLHiejLHcRSB79IKfZ48OuQ/ffUpD+YxaSEpjCbwXULf4fHJkIcPhnQ7Ib7vomTdGHhn
+S1A1frQfjrXxV/3Ap/YH4j2Q7tZXlB/6goYhK+68/mMghLjzWVV1awVj1apCHux3GfV8Ql+xN2iz
+3sSsopgiz6Aq8RzBp88fsbc3wPd9jIEkSWqmfoQxhmGvRbcd4mpFp+0zma1Y10xIKUAJwcPjPR4+
+2KfdClC1SuZ6s2E2WzCezNjECWUjnfvDnk1bL2WDJCsgTismi4h352NcR9Bttwh8lwcHQ778zBKC
+JouMxSbH9xwCz+HkeMiTh/v0e220kmRpVoPeM96ej1mscgzS2u8off/83Z33O3//OSHEnb3mH0jR
+tarqAmqvbqlc0qLkZrpBVimu59PvtpGitgZqt3hwOCDPM8Iw4GC04WYWg7AS066rafmaduBwctjn
+5LDP/l6HfjckDDzAkMQpSZxweT3jzemYbtu37NNel0+ePSLLMybzlOkyxaBptbt0ul0+f7LP8ahL
+GFi7q9V6w/XNlLenl1xcTYiTwiqLOVYyWSr9Udnre+v/Z8/X7RwLcVsXKI1gE9mm2zAM2ctLgsDj
++HifL+Pn7B3EHM9S8lLSCn1a7ZAnDwa0AsfKnVd3j+dOTlq9/2/2OwsjKEtYRzlXkxWv313T7YR0
+2wHddpunj45I4oTJMmO6yilKauuwgF88O+R4v0+77QMV6/WG8XTB6cUNF9czoqRAOX69Dm5Z3z82
+fT+Vz9xVM6sqSVEKktwwnUe8u5jSCV363Ra9bovhoMfzpyc4nke3P2R/tKC0dxa049Jp+bRDjycP
+hjw52UNrQZGnLFcCLa2dhLUoM3cPgJ93pD8/qnt/qu99UhD6in7Hoyw6mLLAdxXDfpvDUY84M6R5
+hTE0wPeD/TYPj3qcHPbpd1tIAbPFktPzK168esdsuQHpYoQmN4pNUnI1XvL9qwsO9/sMem0C3+P4
+cERlKvywQ38wYDqPKSuBqSShr2mHLnuDkKcnI56cjLi6mTee7h9x6WpsH+4+iG7lzd+7d1Tba0Fj
+qFhtMi6ucw72eiSptTKQ0n5OmlpVuMlsyWIVs4kysipAOY5tplHurVT9ezZo98+ePbbSVBSlYRXl
+3EzXvD2fcLDXpdsOCEOfkwcHxMmn7I2WXE0illGBdgO047O/1+F4v8to0MJzJL4r0aoiz1LmiyUX
+lze8eHXGg6MRg14H3/c4OhhRloaw1aU/3ONmFlGhqLDP/3bLY6/X4vHJkGcne0zma5I0ZSpBCusz
+XlE2taYfsxHcxf3YAd//hrGVsR6Px4Rh2ADX7/tWbzabxpd7C1oeHR3xF3/xF/zd3/0dn3/+Ob1e
+rwG9tz7T7Xab46NjPvvsMyaTCS9fviRNU6IoYjwes9lsuLq64p//+Z8ti1oppJT3vne1WpGmKXt7
+e413I4CSir29PZ4/f87Z2dkHzGbf92m324xGI0ajEb1ej7AV4mjn3uu01vi+T7/f58mTJ3z11VcY
+Y3j9+jXz+Zzlckme5w2A+1/+y39ppLq3XtZb2fHVakWv1yNN0z/oPLiuW/sxHfD8+fNG4n3rif7q
+1SsmkwntdptWq4WUsmHPb4HjoihwHIcgCDg+PubLL7/kF7/4BXt7ez/5/ZvNhpcvXzKZTBrPdSkl
+RVGQ53nDqM+yzEqSBAFHR0d89dVX/Pmf/zn7+/uNnPxXX31FURS8fv2a2WzGer2mKIpGDv7v//7v
+UUo16yxNU9I0beav3W6TJMm/9aWxi13sYhf/z4r62Swb+WxBacBIQVwo3l0t0L9+QZJmuK5Lr2t9
+tlzHYblJGE/mVCanyDPOLm4oS8PRfp9Wy+f5s0f0um1miw2LVUyUFARBiB8EDAcd9gdt+p2AsiyJ
+44Tr8ZRXb8958fqUdQIVDlK7NUAo6LR8Dvd7HI46PDjss948JkkyktSCxNaDT3Ew6rG/18N1FFUF
+603EZLrk/GrGdJmT00bUvkSNt9h7u/OqlvoSddHxYBgy7Ab4nsIYY4Hvy2tmixVFCdpr4fod3LCH
+43fRbgvlBDS+acohyiSTpW0AMKYiDAP2RyPSrKT79RsktXRhzfyoygLLKr57vmq5c1kzvwXNn4VQ
+TVLV4JHbN93x6laqwtPQ8hRPjro8Pgw5OezwYL/LoNcl8D20UnQ7IU8fPyAMfGbrnPkq483lmu/f
+rdjcxCBEzS4X94qEPxiVsMMRt77c2/FprdgbdPA929Vv5d0KSmMoDLXcmEBJRafl0gldWqFH6LsU
+ZcnZxTW//u23fP/qlFWUob02Qlsf61VU8OZsTO/3L3n+5ITA9wgDjweHIzrtFg+OD/nqFxlZZjB1
+ncZzFa6ja+94H9fR3NzMEFVp2fEfaV7cSgNuWQQ/PBvbAqBESk1hMmarFEzKfJWQ32nsqyq7J59M
+Z9yMp5ahYwSK2prAqeXTlIMpNaXRLDc5b05vaPsVnzw9IfBcgsCrG1daHB8d8NUvUtLteKt6vFoR
+hh7dtk8rcBlP5ghR2fFW5YdjuFMkuzuuXexiF7vYxS528S8PIQWtQHMwCBh2XXxP13vQDReXN3YP
+Wgmr/ON1cII+jteugW+3trQxoCRRCuNFZpv8KrsHPdgfkOUF3W/eomRFWeakWcY6TplMV7w7v8HR
+koPRgE4r4LNnD+m2ApablCgtyYuKdugThh79TsBev0WvE6K1qgGBehy1nPGP+hLfA6Lff6342Dvu
++9reBc5/bE6FbNR9Ptb4uoVCbnMDu1GqTAGUtAKXg1EX52jA8UGf1eePSNLMMlTL8taWZ6/P4aiP
+71m7v9Um4no85+JqjOu6HB+OOBn2GfbbPHt8RJSkpElGmmZIJVFS0G2H7O912Rt0asvAnMVizeV4
+yvnlDUmhqCpZy4t/TIFo2xxg8wQjFGWlSAu4ma74/vU5kpInjw5ptUYcH43wfY9PNylRWpBmZc0G
+V3RaHsN+m1bokyQpmyhmMl1wdjnlzdmEtPQwlWMtl4T+4WP52XvF9xog/si95hbkkkpTaZe8TLie
+xayWKa1WyF6/hVaC0bCH77mMhj1c1+H46IAoyUnSHOtbK5BS4DgSR0vaoUc79Ak8jetaW4EsK0hS
+a7d0ej7h9y/OeHy8h/PAKqF9/skT9oYDkrSwlkRIXM/D83z2+gHDfgtXS+I4JYojLq4mvH53yfnl
+lKzy0G5o/YIbye4Pz/mWeXqba/zUfH3YcHILfMNqk3B1Paff7ZDlJd22z/PHDxj0OmySkiguKCtw
+HW0t0Tp+rYoF91uEP3Iuxe11bFnTkspIVnHJ+fWc330veXyyj6P3abcDPn32iOGgS5yU1uKsAsfV
+uI7DsGfPpasVSZqyzlIur2e8Pbvh/HpGZgKUG9br4Y4q2g/6pIsfXmrb+5SQCGR9T5GUlSQ3iuki
+5sXrK7SseP74kG6nRa/bRknJcNjn2ZOU5Tq1HtmVldP2POsbbX3KA6I45lILTJlSljnG5BgjMVXV
+rMd/taiZu1tbhYqyWUu9TgslFaNBhyjJiOKCwhhbO6oqlBAICe3AgvmtwCUIrXrZeDLn99++5Hff
+vLUWcU4IUmGkR5zB+eWc3/z+JXHyAK1O2Bt02R/2CX2Pw8N9frHOiJMcU2HPvSPxtCaslUZ6HZ/N
+JkZLyE2OKd/P1W8bQpp8/QfrF7Vffd00YyhZRRmmyHm0sIz+uxEnCZPpnKvrG5armKyEUii0cmti
+idOoNAjxY/dC++/GCHIDUVJwMV7x7atLsrzgycmIbtvn4ckR7XaLTzcZmzgjy8uaBKEJPZdWy8PV
+giiKieMYU+QkScxyteL0/Irf/O4FaZqhnj3kYK/P/l6fIPA4PDjg80+3VgMCg2V8e44m8J26CcWz
+1sGioiyzmrBRUAn148oju/ho7IDvf8NYLBYsl8uGbXI3hLDMDyllI2u+BbM7nQ7Pnj3jL//yL/nf
+/j//G91etwFkt7F9/f6BZQbHcdywpufzecMKvry8bFi9W+AcqCVWZANMSynxfb8ByIW0PuJCCB48
+eECn08HzvAa038qwHx0dsbe3R7fb/YDtDSClbKS3Hz9+zJ//+Z83jPctw3m5XDKdTjHGUJblPYB/
+O2+6lpnsdrtorQnDEM/zfoA9c3+et6/fP9jns88+Y7lcAjS+27PZjOvr63tzs5U/chyneX+v12Nv
+b49nz57x6aef8vjxYxzH4aditVoRRRFXV1dWUqku9N4dm9aaIAhot9v0+32ePXvGF198waefforv
++7iuy6NHj/jqq6/IssxK2S4WzTmfzWY/OX9KKcIwbMbjui5K/THyorvYxS52sYv7cddvWKK0xpSA
+kGQl3Ew2ZPEaz3c4Ptjj+HAPrTWDvsfhqM/4sE9Z+8udX01tIqJV/Zo++3tD8jy3XoF5XjfJOfX9
+HoqiYLVes1yuOT2/4fT8hqvrGThthO4glEtpRM2CBd/VdNs+R/s9hNh6dxu2BYnt86OqKtabmOVq
+zfnlDVc3M8umSCTKB+06d2TiPl5Qq7hl2+z3Q4Y9H99TFGXJarXm8nrCfLGmNALthmjfSo67QQ+9
+ZXzXna+VFGwymK1LNmmJMRWu4zIc9CiKopYNlMi4gqqWL/wgeZCNJ7tNnCqEFHd8vOWdhOojI6qs
+N6AUFZ6u6IaKR0dd/vLLIw73WoS+i++56PpZHAY+x0cj+r0Omyi18oj6mqtJQlnMEcqpvb5pOt5/
+erlZsLs0tkAUJznrKGG1jpBa0e+12Bt06n2m+GAsVWXtakpTUhQlSZqyWK55c3rFN9+/4d35jE1i
+5d+ldkF5RCmcXS1wZIVSDr1Oi9Gwi++7tFsBJ/We1n5+1ex1hBD1dxmSJKMsbUFLSSjLwp6P7bDu
+MCREJT/oJv9gGoSwcmeVoTCCTVxS5hmrjS2Y5YX10dsWS6+uJ9xMZlburNJU0kXqmu2tLcu/FA6V
+cNjUBSNZxWhtx3sw6jfjfVDP7VZ+/mPjzbKcsihJk4TKaMqy/AHZ/brog2zk/m6voF3sYhe72MUu
+dvHHhBCgpFXF2R94DDoevqMoypzVOuLqZsp8uaEwEsdr4/gdXL+D9jo1K9SpPb4NlTJsMsNslbNJ
+SkwJbuDQ7/XIc0O308JzFVIIyrIiSQrG8zVvT29wHVvvCX277z8+GJBmOXGSkxc5vucS+B5Kynov
+RF2nuYWQ+aDYf3+PIO+wkoVQCHNXkeljwIS43Q83fr0S8RP7LlnvlbcM3vs5wO3vt/LYNQhRVWR5
+YUHQyuC5mr1ei8O9LlLavZOpa1dS3M9FosSqTs3ma04vbji9mNDvttnbG1iwphvy+ETCVsLcVLUN
+1Z19aWmYL1csFivOr8bcjOfM5hvQIeiw9o9VIKApMYq77F2JqBQChcEyLKfzhJdvr9C1/VCvExIG
+Pt12eG/vLaVs8q2yLK337GrDdLbk9GLCxfWCm2mE8pRlJNfH8sEZ+8geWdwDFz927rY5qmzWx20D
+xc+6ikBUCKy9UKVcyjJnFeXMsw3Dizl7vQAtBWVpGhLTwV6Po32JVPLWq95SQKmqirK0e2VjDHlh
+/byTNGe1ikgSm/Ne3Mz59uUlIGiFPvt7Xfb39zg+Omisn2zuaue3KEvK0rBeb5jMlownU85qtvJs
+GeEEPjpooXRQe33r23pys3RFs26381VtgeztOfiYytmd1zeN1VJb4HudcH5Tsbc3YLWJ6LR9hsMe
+B/vDWwstUzXXgDGGojDcT2Fv1yG1slZzrTZgu1WgKitFlJRc3az4RqZ2/gKPw4MBe8Meh/vDe/jE
+3fkzpWETJ0znC6azBWcXYy5vFswXCTqwss71Ef+AVPyda+YeOPrekoLbe852TQtFhaasFLNlwuuz
+CVIYXMdl0GvjOppet81g0EVJ2xhkgeWquXcIISxmYQxxvKEocuIoJktTyrKgwr1VgntfSQP50Ub+
+f0kYY8hziOOc9SZhsYrrOkxAvxda9TZ1p+5QXyMApr5GirIky3LGm4i3Z1d8++KUl28uWWwMym2B
+tESEtJBcTVZ8/f0pUko6rRDfc3AczWivx8HIftf7uasdf1V/n7Vyy7KMOMkoioL3+9TvrXMEVXMf
++qGGrLppyCji1JBGCfN1SpRYv3KlbA0hihPGkxnX1xNWm4S8VOA4COXWJI47KgN31td9mjlNLl1R
+UVSQZIabyZrv3tj3BJ6H62g67Rb9XqdZo7e30dvnURwnXGYx0zgmjhLSNCOOUy6vp3zz4gzluLTb
+LcLARzsOo6F3O89CNNf13diuT2NK8jwjiWPyvLbMk259NnZVgD8kdsD3v4O4+1DZsq63zG7XdQnD
+kE6nQ6/X4+TkhEePHvHpp5/y5Zdf0utb+XAlPw5QdjtdPvnkE9za96Lb7XJ6espkMmE2mzWM6a0v
+N1i29vtA6y9+8Qs+//xzHj9+TL/ft3LqNZA9HA7Z29tjb2+POI5Zr9d4nsf+/j6ffPIJBwcHOI77
+o3OgpPWT3oLmYRgyHA4Zj8dMp1M2m03DVt/O2XaOrFy6bQh4/PgxX3zxBZ9//jmHh4d43s/3S+x2
+unz22WcNczsMQ969e9cwrouiIMuye00BWzn3g4MDnj17xieffMJ/+k//idFo1IDJPxWO49BqtRqZ
++6IoKGp/F6Bhmu/v7/P48WOeP3/OX/3VX3F0eHTbiCAEBwcHfPXVV838DQYDbm5umM1mDXP/7vxp
+rZv563Q6tNttHj582Mzf0dHRR5sVdrGLXexiF39YCGFZtFJppDIIVdniVZ2UpSZjvsm4uNnw/Zsr
+fN9pOkO7nRZPHx0T+D6XN3Mux3NW64T5csPoaspo0GY07OI4qpa+ss89YwybTcRqEzObL3nz7oLT
+80u+f3XGZJGAbqGcDsrrYHCZb0rOrlcEvouSglE/pN3yCAPXNtMpjVRQ1kWZ1TpitdpwcTXh3fkV
+b95d8+r0hrRQiBostFJ8Tl1M+TBRFMIW4hwtGhmtXjvAczV5ZgHKm+mS5SqlMArtttCN37Jl4Erp
+QO2TZaqKKDEs1wVxUt7xrZb4vke/22F/b0hZrckr+z4bt1JsAiwzv5Yzl9Ie5M/zeKtZ1jVzRWAB
+cN/TtEOPVmBZzbpuIBRCoJTCc53b0qUQBJ6DFFUtxV4zn+UfIGdVFwM3sZV1l8JgypTZdEq/69Pr
+BHRaPmEQEAZeU4QCKM1tUWgTxdxMLHPm7GLMizcXnF6tWMVghIfruwjtorRLgWS6zCnNgpK3rNYR
+x4d99vo99gZt+12hb/cs9WFmWUGW503zxHS+5LuX57x9d81w2OPpo/cUfGrPbqldpHGQlVMXWH+Y
+USAQ1jewUhSVIisk66hgMtvQa/u0Qsu8Xyw3nF6MuR4vSXKsmoAO7HcpByGd2oPMRZmAgozJIiPP
+Uiresd7EPDgYsDfosjfsEPgBrdBHa9Ws9SwvyLLteDfM5iu+fXXO63fX1vvwYXqHw24LslJqlPYo
+KwdZ6fc62Xexi13sYhe72MUfE1JYSxVXS9q+Ztjx6bZdPFeSpRWbKGU8W7Fc22Y47Sq7/6yb4WyR
+3UFUJZUwlFVBlJYsNwVxat7bg7r0Om1Gwz6FcchKjUExnm747fcXbNKcqJZv7nbb9LshQljWKyiS
+JGW5XDdAveNowjCgFYY1gGtBNCF1rbak7u0TtiCSVHZPURgHKTRSaruPqsHp97cWSirrm6ocKulQ
+1UpOt+DC+/t6y9xT2sVIh0rcsmbv7VtqoEOqei9XavLCMF8mnF7OCVyNkobDvS7tlk879K1PtnZQ
+SlDW4OhqtWG9ibi4nvDu/IbzywnLdcYqyhj2E6R2KUtot3w6LQ/PdXC0wnG0BcLKkiRJWa03LJdr
+Xr+75O3pBS9en3E1saC3dFtIHaKdwNoc3QFSrDqUtuMQLhIHhGtlsrXDMip4e7GiKCrSrGC5Wtt9
+4sCOy3NdtFbkRWHztihhuVwxW6x4c3rNu7Nr3pxNuZknSK+W2HcD25QpbxsftnMvlWMBW+MicOo1
+cQcEbYBt6qYGu4dWqh6Ddu17mvXwB4DfVCAUUhkq7SLdFlAxXmT883cXjGdrTg7HnBxdM+i1GfQ7
+dFohQeDh+x5SSIQUFEVZ16hTlquIxXLNfLlhMre2X79/cUmUGXKjGS9y5Ns5uZGkac6Dgy7DfptB
+r4XrWE91IQVFXmKMYb6wjQ2X1xNevz3nzekF37++JM4E2us0qg6WPVrv/8V9uW6BQCqFUg6lqFUA
+GnnlO4D4HcawuAPgyu16qfPMwghmq5QiTwnDGwLPIYlj+r0O/V67aVIuS0Oc2HnR2jKwlXt7XFIq
+lK7P4b2c4ZZhzh0LqKIquJmnZGlEXgriJOXhUZ9hr8tw0MFzNZ7rIGv5f1NVzfxd3Ux5e3rFm9Mr
+Xp2OiTKB8toop412g7oZqGzW0j1MW9hjtU0FGlHVICXi3jxbBQFl832tkJW9B0lt2b1RCheThMLM
+yIqK+WLB3qDDaNCm123VymN+0yhkTEWaZWT1dbhYbji/mvD9q1Penl0zW2woSpp74v3lLW0dR1sP
++tu6xr8g6uaSOC2ZmJTK5AhKNuslw15Iv1vn6qFPK/DRjkYrjZACU9qGkCi2tg7zxYrzyzGX1xNe
+vrnk1emM2aYkNy7a85rnQiUVi43BXCypxDlxnHF2cc1o2GU07NEKfYLA3pe25yovLKgexwmL5Ybl
+asN3ry959faSoqx49ODgHp61lS23149AVPZZeU9N4v3nRr0uq0pRoMAoNnHJbLFhOl8RBj7tls96
+k3BxPeXsasYmKVBOgHAClPaaPH17j5Pbhgnx/nPNXgu2JidRuJSVZrbK4WxFXkIUp1yPJ+z12wwH
+Vg5+S1qwzVYQxQnrzYbpbMXb00venF1yenlDkhkq4bKIDG8ul6AuSNKSy+spo4FVFmnm2XO3t2J7
+38ty4sSSDZarDS/eXPHyzQXn13NWm9tj/3HFu118LHbA979xVHc6j7Ysb9d1G/AyDEP29/d58OAB
+jx8/5s/+7M/45S9/yfHxMd1ul0670xRPPxa9Xo8gDHjw4AH9fp/Dw0O++eYbvv32W169esVisWiO
+Ycv83gK/w+GQo6MjHj16xJ/92Z/x1Vdf8fjx44bp7XmeZVINh4xGIwaDAUJY7wXP8zg4OODTTz+t
+AegfB76lkhwfH7O3t8doNGJvb48HDx7w9ddf891333F9fc1yuWwY5Vuvc8/zaLVaHB4ecnxsZd3/
+7M/+jF/84heMRqM/CPju9Xp88cUXPHr0iHa7TbvdZjAY8P3331OW1nNyy5reMuoHgwHHx8f84he/
+4K//+q/567/+66YRwHGcn/VAdBynkYZPkoQ4jpFS3gO+Dw4O+Oyzz/ibv/kb/u7v/o6DgwP29/cb
+trwQgqOjI4bDIQf7B4xGo2b+vv32W66urlgsFnV3YNFIs3ueRxiGHB0dcXx8zCeffMJXX33Fl19+
+yWg02gHfu9jFLnbxp4imuKCRyno/U9lkDiFIM0OUJ1yMN/TeXuNqe/8f9Dv0OjZ563Y6TJcx1zdL
+ynLG5c2UYb/D88eHCFEx6HUIA1vUyfKCoihZrDZcXN3w9vSC3/z+JV9/+4rZMibJKtBtpNtG+z0K
+4bFYF4jrFUpUVEXCYr/DwV6H0aBDqxWgwhBRSYwxpGnOdLbg4mrMt9+/4XffvubV20uiTJGWCukE
+yAagrosC4sOCWgN8K0m75TIatOh3LViYJinrTcJkumK5TigqhXZ9lBOgtG+LPsoWdaraH6uoCqKs
+QG8KNklJURoqBI7W+L5Ht9tmNBoQ55JlVDX2SPeOSXJbjFOO9feW1YdFux8IC3qXjcS4EhLPUbRb
+Ae2W33zG9ncpJZ7r4tTzZBV2HJSs7niQW99uWxz4ycVmu6srwSbJ2WwSkmjNajnl4kI3fnkHez32
+Bl2ktPsQ6k7msrSJ12K55no85cXrU373zSu+f3nKYlOwjAqM8NCujxt0ENpBKpfC5EyWEdPFmvUm
+4vrmmsfHQ549PqZ4fMSgbxk7fsNYgjRLWa0jxpM551djzi/GvDod8/bshsLAJkqbMdk5kwjl2MKO
+cRCmLvBumxY+dn6E7dCvUBRGUiFZRhmzxZpFz0MpSSuQLJYbzi7GXI8XpDk4ni0uqtrbW9YFbqWt
+t1aRG2armMmsbhAY3/DwaMDzJ8c8L27HG/he3T0PaZqxWm8YTxZ2vJcTXr+74e3ZDQf7QzbRfasZ
+KcStr7yxRSzuFqj5Oc0Yu9jFLnaxi13s4v2wILKoJZUd9noB/ZaL1pI0qVhHCZPZurY/0WjPq5sv
+3ds9olRUSERVUZqKOMtZbMxH96C9XpvR3oCkUCyjiigVTOYRq3XEJkoo8hxT5jw83sdz9e3+QWjL
+/p0uKI3BdRS+51IBvufdYWXfAbJrYFreG69sgFFlXKTRCKEbYE98AGILhNJ1A6BngW/5XgPe+/su
+KS1Qrn2E8CilW+cB9z+/aexTLrKyfsB5WTFfJZRmhhYGUyaslj3296zHc6fdot2yDZDbmtZsvuDy
+esJ3L8/4/XdvePH6EpRHJV1G6xyEoiyNZQIPu/S7Ie0wsMB3WWGqkvUm4upmwvnFDb/+7Xf87puX
+XI0XbOLSerrrEO21bUOkcpDy/hxJpSzIUzoN8K1qv9lltGGxtM2O682a2XzKs4dHlE+OqEwfOqC1
+taPKspzFcsXZ+RWn59f8/rtTvnlxynSZkVUe0unU/tNboMeW8rcQyG2z5Pb81s0Zd87VPY/37fE3
+jdlO3VT84fn6mVeUXUvSQSpTW1HBZLlhMptxdn7D2X6LhwcdHp0c8vjhAQejAYOqg9YaKStkJSiK
+gs0mZrFcc3E15uJqzOnFmHcXU84up2xyTZxKjHAYLzKWyYIkzdmsN8zmPZ6c7CExNndVCokFbtOs
+4PpmxvnFJd+/esfvvn7F19+/ISslSS6Rboj2urh+B6G2DdDbxoG7w9wquLlI4SDQ0CgxiEaW24Jv
+d2SflW4+U0rHNm8rTW4k01XEbJ7geRpXGcoi5eGDA3zfQSsrb55mOcvVhsViTafTotOWuK5zqywt
+pc0Xts3BRt8BAu/6fCuEcsiLkvEi5Wa8JopTVssFs2mfp48PkbKi0w6RUuFoyPLcvn4y4/T8ipdv
+zvn627d88/1b0tIhqxyk20F5LbTbspLhZX7H5/u+sbNtAHDsPFfbe1D9GnnHCEFu71fSAt/CMnul
+9omyjCiJWa4iloslF+fnPHm4z/PH+5wc7dHrdqxyrlZIJWvLt5T1JuL88obzyzHvzm949e6K07Mb
+VrH1M9827N89ZoGwx6ochPmR+9/PvlLqX4UiyTLiKGGzzok3C64vFQ8Oezw86nE46rM36CIAv/LA
+BVlJytLe/xbLNePJjLenl/zum9f8/rtXzJcZi6gkKxXKc9B+p8ljqQyLaMNssWETpUwmU84uOjx/
+8oDnT44ZDXsMKxq2vFKSLLPqJ/P5krMaXH/1bszrswlKa5bruK553K51uX1uaIE0de66raP8WK4u
+FKVRlKVkk5TMlhHTmVVIDkOPzSbh8mrKxdWETVwgdYB0Q9uMdodoIZpmsPpZ+B7YLqRsyCgSl6xU
+TFcFi3XKahOzmC+4GYc8fbjP02KfYb+NFALl27m3BJA1N+MZZ5c3fP/ylBevTrkcry3wLV3bAJet
+iNOS2WLJ5dU1zx4d8ezxAaNhn0EFSkmUtKoXWyKAnecbLq/sHL8+m3I9jcgJqfBr9YVtU80O/v65
+sQO+/yfFcDjkyy+/JIoiVqsV6/W6AZq3sX1YbmW7t6zjvb09Dg4OODo64vnz5zx9+pRer4ejHZT+
+cUax0opAB7iOy8OHD5FS0mq1GAwGnJycsFwuWa/XpGmKMVaeMwxDgiBgMBhwcHDA4eEhT5484eTk
+hH6/34ChUkqQsL+/zy9/+UvSNGU+n7NYLBiNRnz11Vf84he/4Ojo6CcBaCFEw3A/ODggz3N836fT
+6XBwcMDNzQ2r1YrNZkNZlo3MeBAEDRv64OCAhw8f8uTJE/b3D2i3WyilGA6H/PKXv2SxWDQy4I8e
+PeKLL75gOBzSbttOuu1ceZ7HkydPMMbQ6XSa8UdRZL0bjGnO0cHBAQcHBzx58qQBzbcNAT93sxiG
+IScnJzx9+rQB1rfnAmjY9FsP76dPn97zAt/Gdv7K/ZLn+XM8z2t81rfzt1132zFs19gWSN8ex/7+
+Pu12G611M383NzcNaH5ycsIXX3zBYDAgCIKdJPoudrGLXdSxijJeX6wwpsSTGY7MObsY8+p0xnxV
+kGQKhEZKywZASOszXZZsEji9Xtuu9FXO6eUcz9VQCdZRwnevr7mc2Oegt86ZSunKnQAAd/tJREFU
+rQs2acV4HtMOfVxXoZWiKKx6yGKxYjJbcj2e8e5iwXSVkRaKSvs4yrdehV4boTyKSrOODdfTmKIo
+uJlH9M5ndFoevqcJfLfpmM6LnNl0xXSx5PxizPn1hsWmopIa6QS2QOSEVnZK6R/coFdVRYWVNjy/
+WvKrry/o+JLKFKzXa759fcN0aY8Z5eLoLfDt1gwV1QC2VSWokJRGEmfw9mLBf/v1O3qhpqoK4ijm
++7djlpvSAqACQDGeR/z2+0uuZxtC34Gq5LuX51yMN6yjgqKSSK1qn+07TIkfDYExJUlaMFsWfP/m
+BkVBO9RUpqwlrax8vNjKYWNZDkVZ8eJ0wXwZ3RYC/oDkWmBtvrc+bsZINmlJtchJkpQoMUwXEd3W
+jE7NolFaWmZyI59Xsliu6saJCW/P54wXGXmpMTJAqhbKa1uP75r9U5XaJoOFYRVDVaUUZk6Uws0s
+ssB/zdiR0p6zpJYDW6wiZvMV0/mam9mGZVzhzjN+/2qMcl+iZIUU8Ob0govx2jKlhINU3q0H3w+s
+MSuxRlOoMqZkPIv57fdX3EyXtEMPz1V8/e1bXp/PmK5ycqPqNbxNpG8Tdsv6dqiMh5EZZVWwSsBM
+E/JyTpzZ8XZaAe1WgLsdr4A4sZ3cy1XEdLZittjY8W4qpJvz9asxrv8KKSuUgHfn15zdrMhKh1I6
+COnW471bPNglvbvYxS52sYtd/KFRYT1Ms8JwMYn59fcT2n5FkSeslnO+eXnNbJnbPaj00DJEOX7D
+LGskoevPqup9V5wZ3l4u+G//9Jpey4HKECcx3725YbEpyEtFJSVSS0oMaVExWxa8OV+Q5xWX4w2v
+ziZ4jq733aZhgBlTopW2MqydFt1Om8l8zau319wsEqK0AuGwjg0v3s7wvTdIYZCi4sXLUy6nEXnl
+YISHUF6jzGQqwcXNmv/xm3O+fzOmMgWbaMPLd1OiTFBJ+3qhfau0JDSLdc43r8ZoaTBFSWVyvv7u
+lJtFCspHKB8tfaIUXp7N+M//+BJHC7QSvD294ny8Ii0VJRqhPZAOuVFEKVzPrE3jbBHTvZzTawf4
+nkMQuCgpqSpDURpm8yWz+YqLqxlnNxvmUYVyBMqxzMbzcURupraxuD0l9F0C386fMSVVZVivI6bz
+JdPpnFenE25mCVEqMdLDCVy0G6CckDgXvDpf8J//8Q2OBq3g3dkNZ9cr0kJRohDSRdV+s5bNW1BS
+EmWG61lKUc6JEpu39ToBQeDhubre/xvbHDlbMJksOb1cMluXxLlCuj7aaVt5fe0TpYZXp3P+yz+9
+QWKQGN6cXnA+Xts9o3AQyqvzMNtkvY5LLicRVVUxX6559dbh3dkFp6c2t0wygXJDpLJ7348x+n8y
+tsCv0sjK1n9zU1BkGaukRM0y8mLJOoHxPKLfuyEMLKNVSIEUgrwoieOEKE6YzlfM5ivGszXj2YbZ
+uqSSDkIFKOVihCYvNfNNibyJSPOS+Trj4maB7zp4rkaIiqIoyPOc8WTOZDLj4nrC+XjNOq5AeyjP
+R7mW8a3cVs1aFcRpxatTu3alsCpeF1cTTi+XpEZTKQWyBrLrXGSTFFyMN1AZllHKu/MxpxfXnF/c
+cDFesUmqWhXNrb3aJca4FKZkssh5dTZnkxScX694+e4GJa0sclGUbKKETZQQhiGtVmAJc0qilOB3
+Ly6ZrXLKyqmbD7YN4ttccnuKJFIoSqExaArjWEnscUyWVyyigsublb3efBcpbTNCURZMJgsm0wWX
+N1POb9asEkA7CG0bQ7Qb2qaP0t4f06zizfmM//qPL2oGvmI8W/P6bEqUYe+FQpPlhneXS/7bb07x
+FChZcTOe8vZiTpwLyspBSA+lbpn4BluTSIqC2dpKQudmyirOOb1YENY5rpQCWd9HozglSTJ7vc+W
+TGZrbmYJm1xaZS1Hk1eaNxcL/vM/fIfnarSSTOf2mONMUFaSSm1VAP7IPEzQvNdUAlNJklwwXeak
+SUqcFcyXEaeXCzotj3Y7wNEarW3+t2V8L1cbFqsN48mMN2cTrmcJSS4p8BCOj3Jtrr5tiDKmxJiS
+sijZpIbreUpeVqSFZLZK6LQD2mGA77mN0kCa5XXDQMx0sWY2X3Mzi5ivcpQD37+d0fm/XxN4Gilh
+Nl/w+mxWz5UDd2TIt835H942BNQNI0gN0mO+zvj2zZg4jum0PDotj9dvL/j+7YTreUKcy7oR6E6u
+Xn8OtfpFVla8u5zz33/9mlbg4DqK9SblxdsJ66gkKzWV0Ajl2HkpBau4Qk5TsrxgkxjGsw2twCP0
+XRxH1XNvlQ/nyxXT2YLL6xmXk4hVApXw0F5gP1M6bDLJeJFTmDVJfs1sldBt3xCGvr2+hLg3z5tN
+zGR735tHzFY5SSGplLLP4EZx5Y9bev9vDVG9by69i3+VmE6mvDt9x+XlJVmWkWXZPS3/uwygu8zv
+u+Bkq9Wi1+vR7/dxHRepfn4nXlVVrNdrNpsNy+Wy+dkCwVug9a4E9pYN3Gq16Ha7jU/3FvTdxnw+
+5+zsjIuLC7IsI0nsw3g0GjEajeh2urQ7bVzX/VnHmqYpm7Xtitz6oEdR1Mzb9ji3cuNbOfgwDGm3
+2/R6PdrtdsPKns/mvH7zmtPT04Yx3u12OTk54fjoGD/w8VyvaSKoqorFYtH8rFYrVqtVI0O+/W4p
+5b3zMhwOGQwGzXF97Nz8X//X/8X/8X/8H/yf/+f/2cz9w4cP+V//1/+V//1//9+bz9NaN8D3thGh
+2+02IPjW9/tjHuZZlrHZbFiv18zn82b+8jwnTdMP5m8rtb6dv263S6fTaeZvsVjw+vVr3rx503iQ
+dzodHj58yMnJSQP0/1QTxi52sYtd/GtFmqbEccxkvuZ3L6d8/WrC+STnegmL6H/usbQDRa/tELoV
+RTQmjya2kzrKiLMKI0OMbFk/olpCrSxSyjzFkRmeLPB0ge9KPIfaJxiK0oLqq00BQjYd4J4rCTyF
+FBWCsvautj9ZnpNlOUmaEyU5myQD4SB1aAFqN0Q5rcZmRStwRIGjCpQo0KJA1QUzQQ3W1uColaku
+SNKSKC1JM4N0wlqGL6yLB0FdDPiYxxeAgcqgpaEXVPRCgawyijwmTTaMx1Mmkxm5EaDsZ7tBFyfo
+1UWl2m8P7LEZW3hTlPRCQb8lkNjPy1LbRTtfrEnzCoOV6R502wz6LXxHILDvX64iVuuYrJQUwqeS
+NZjvhkjlNT54H0ZlC2mmQFQZ0qTIKqPtVbR8kGSYPKUsM+sHWZnG58wCs5YBsElhsYFNKuz3eq2a
+3fFD83j/GOz/BlNkmDJDmAxFijQZjipxlJ1zVRdxhLCM+e3+oDIVRVmSF2V9fguStKBSPkgf5dTn
+1wkaULgyBWWeYPIEKVI0OY40uA54WqBlZdnz4s5cldTeZBV5QZ18C7K8wg8Chv0Og15IZXKqMme9
+jhhP58wXa/7/7Z3XexzHuebfqs49OWCQCYCkmETJlsOxdx/7+Nnn/Ld7u3u3lxssH9tKlihGEERO
+A0ye6Vh70V01PcAABINE0P5+j2GQ1ExPd1V1T33f+wVu5MHM1NFiFWBYuXR8tDOOumQ84jhAFHoQ
+kY+8GSFnC1g8BEMIiACdTh/d3gBeAITMgeA2DLuY9jG3VLlIOb9x6CP0h4iDITg8aAhg8AiWwWAZ
+gM6TezfbGjCKBeJYIIwE/FAgDAEvArwAsC0b1UoBlVJOXW+/P0DzpI3TdhfMyKX3VtJjVDOT6+Xn
+rvcnRggEvS2EvR3o0Qly2ggFc6T2p/KnWq2iVCqhWCwil8vDsW3YTlLqXk/Ly1G5doIgCEK23jtt
+9/BDuoffOfZx2AFa/Z/uc1na69PQGCpFC9WiCYQ9jHpNDLpNNE8TcSSK9eQ7OBURDDuf7gXlnkz2
+Ww0gIh9cBCi5QNkFOEv2HoHvod0ZoN0dwI84BHcgmKXiGk0dsA0ByxAwdcDUADCRVPyJYwRBgCAI
+IUTSXzppjWjCMHQEIdAfBRh6AqEwEAgTuZyLWjmHSsFCHHmIwhE67aSncavVAdNzYLoLzcxBt3Iw
+bRe1golq0YTOQ4T+AN6oj6OjExw3TxBEDNzIp693oZs5FHI2qkUNJVdDGIwQ+gO0Wy0cHJ/itNVO
+svE0G/lCDvVKEdVysr9BnGT0nrS66PSGgOYkJcU1A5qmQ9NYsn/UIug8gs5j6CxOBay07U9abjYI
+Q/hBnFTO8iKMAiSVeoykXK9j6bAtDRqLobMIDOMfkfZQTdoZBvC8AP1RgMHARwgOrjlgaa9nzbCQ
+c21UChbKeT3Zp8U++v0hTls9tLtDMCMpRc50V/V/j0MPUeCDwYfJA+gsgGkAtg7oGgNjAlzaVmlf
+az+I4QUxRoHA0BNJlquZg2bmUoFHR87RUcnpKOc0ROEIUThEr9PFcfMEJ602mC73jDkYdgG6lYNr
+aXAtDkuPYLIAGvPQ7XTQ7bTQHyY2qhcwmG4FVq4KzcwpAf/qJPMiRAQRBYijEFEwRBQMgNiHySPo
+PEzWuC5gaMleWVN75WSfnLTVihGEyX7ZD4EgAvyIgevJvKh7kGswtRiGFsPSIhiagKUl9jBDCBFH
+iKIwzar34XkBRn6IwTDEYBQkYr+RZCobVh6alVNXYxtQ93IcJTbEYDDCabuP084AmlkANwvJeOtJ
+FQhbj2DrybmYegRTCzHoD9EfDDAcRRiFHKNQV/cR4xxx6ENEPiw9gqWFMPUYhpaMj9Ssk97eQBTF
+0A0TumEmvZ/TqmfJ86qLkR+BGXkwXc59PhEH02oNQqR+/8jP+B8CGCy1Y/QYpg5wFie2vxj3Fff9
+AF4QwfMiDP0YQy9K1omZh2YkIqRm2IijJOPb1CIUU/s+8VEk/oN2P0BnEADcATQ3qYiRN1EtGEDs
+Iw6HGAySKhfN03YSSKPnwA1X2ePJ/RuCiRAaPGjCh6mL5EeLwRnAeQyW9nqX91ccRcmaCpL15UUC
+fsgQx0m1NNPSUSu5qJbdxEYWMbwgaWHR7gdgeh7MLKTPN+MN74/MnSLiJOA88hGHPhD70IQHLjwY
+PIKuRTC4SIK/eRoiz2SpOvn8ixCGyfkNRiGGowCCWxCaDa476ZrOqcx/EceprT4EEx40+NB5BPuM
+7Zrcj0nQtrRdozi5D8NQwIsY/FCAawaq5QJq5TwYIsRxAG80SuetA6E5me+NxGZnqe9r0p+RfofG
+EaJghCjw4BohclYEx4jBEYKzCP3+EN3uEAMvRMQcxMxJA/Fz0AxblcyPgiFCfwANPkoOQynHoPGk
+El8YJnPZ6UeIuQ1m5ABuQfq4dBZChw9DC2FqMSxNJPcCi8FElPoBYgRhgCCI4AcRRn7iB4ugI2ZJ
+xRHZykDXYuhcwGAxTEPA1pHOaeKDkc+9KI7TbPI49REIeBFHEMugDBfcSHwS8vtFtbD4iRDhEEFv
+B2FvGza6yBlDFG2hKjRLe79araJYLKJUKsF1Xdi2rVrySl3sQ9v8lPH9M1GtVVGtVfGLX/zig3w+
+YwyFQgGFQgFzc3Pv9djlchnlchmffvrpezmeZVmwLAvVWvW9HE+O/a9+9asrj5W8pp8Dx3Fw48YN
+/ObXv8FMI8lcd133rY8nM78rlQqWl5ff+fwqlQoqlQq++OKLn2U8CIIgPma6gxDdvo8wGGBwuoNB
+excAUmPQgWkzmI6ujCWZQcy4hsATGAxHCL0+Qr+P0B8AIobsySWzDhg3EmOOBYhScTMKPSXsiThx
+lCWVndKeYroFzchD053U2HYTh0YabS6EQBBHGPoBosBD6A8Q+QOEwTAxYENfGWkAxn3hdCvJwjZy
+4GmJM2n4cs28tFyeSHx6GIUh+r0hNv0BAq+HcNRDFAwhEAOCQzNs6IablJ82HBVZPyn4JVG+Ahx+
+FGHvuIet3V5mLIeq1Jumm+CGCY2bOOl6OOkMEYUB4miEOPTTHoUcmuHCsHUYuj29R+E5mOpRFoWA
+H8QIfR/N4y4Cr5uO6RBROFL9z5CWnUtKJdrQTBuGmYduF2BYhYxj9Q367DGRZFxwXZXfDIIIUeAj
+9L1EsA1HiXEZ+knAgEgyX+RIyuvluplkPutJFr9huuMy9rqcXw0iLf0WcR1RoGHoD9D1B4nxGQxT
+ET5Qa0hAJOPMGLiWOBW1TG/4cAh0hx1s7JwmRno0Stc0B2MWdG7B0Ky0vJkOsLTXIbtgPFhSAjIW
+Aq2eh6Nmd+I+k73mNMOBYVswpOCdljKV2dWqjKMO6GDqen2/j64fKAdfHAbnrpen6yop1565XsNG
+6DF09zrY2G0hDkbJGomj9P61oLP0WtPylkz1w/vQTzyCIAiC+PhIBDoBLxbYPx5g76gPr9/EoL0L
+r99U+y/NsGHqyf47+x08/gJOcr4Z4xCMI4gY9o972Bp1kj1GMEQUeKqctKY70O1kbyUDH/3Qw2CU
+7BHDcIjQH0Kk7W6EEJd+32u6mbZmcWFYJnTLxGAk0N9rY2MnROgNEPl9xHGYBlza0LRkXy336rHg
+ODgZYO+whdDvI/B6iPxB2r5HT/ZDupPswTUL4Dq6Ax+tjpfs87w+Qq+HOA6TEdHzan8z8jm29jvY
+3BvvbwCkpdkN6LoFXbfT9k8ckQD80RDtwEPoJ6JuFAwhohBxFI57FLG0LLGmJ3aC7kAzHUC3wHQH
+fszgDSKInjex/46C1F6KM/veNAiV61ayF0+Dg3XTUeW/R0GE7YMuXm2PEAWJfQQhxtdhGNA0Oy0N
+nwpijAFcRxxoGPgxwsBD5CXvlTZbHEdyBaVlxxMbRTfc9BzcRFQ0nXRPyDH0QvR6HbwMhghHia0T
+RX46NhZ0bqfj76js7f4oRG8QIfKHCEYdBKMuonCEMBiBMZ58luWq95wrUX0lZFsrDdAYeMbGjQIP
+w6CPcBgg9ofpvHqJjRmHY6OQJSWgOedpr3RL2dCaYYPpDnTTSQW0ZF/thz5GvodW4KdrcZAef4Qo
+DJSNo0qQ60Yyz3YuHePEfuVG8llJYEWMke+h2+niZXo/REGSMZ/0QjcBmODcGverZhoGowDdMLHl
+k/uolyQ0iUQoTMRIO23bZapzirmBoddDx/fVGpF+ABUoLcuvM570FQeAdB2P+7Xb0LmVVq0yz9mR
+0haGZiRdyBlH4DOMgiQzP/T6iIIBotBLbLc4SoOjZSuw5Hmgm4noqKXiqiw3Ldc9YwyeP8Rut4tX
+o07qqwiSCremHHcNmq5jFACDox529r3xsyTyk/NkOjTNgqHJ9ZxWk+MAFwbiKEAQAKMgQrs3GM99
+6CEOPRVonvSgT8ZBtnxIbFwH3LDBtDQTXkTYPepje6+JOAqTYHbO1RoxNA2azE5+JzGPpfeGDqYJ
+xAA8P0IUBAj9JJAoDkcZ/86krY70ecHSZ4Zm2tB0N/0eSJ8ZxtjPw5gGIRK7MtZ0RL4OL2DojwY4
+CQbp5/njNmtqzrlqk8FTW121nIt17Bz2sX3QTYJ8whHiKEg/z4CuJVn6XE8rpaS26/msb/kdypIK
+e7pAf+Sj1eoiSNdj6A8y7Tps6LYJMxW8E3+anin7n2R8h36I/eMutna6SYBB+v2kG0nAl2Fx6NCh
+yeAFxhCFHvwgQtRPvjdCr59+b4wQRz5ELCBElKluIX1hyfedbrowMutURCG8cIRB4CFsJz4C9R0U
+hRBI7+/Ux8Ayzz3dcNJkEgdMc9R3C0t9HhQ/fnVI+CYIgiAIgnhPyFLTjGswrBwstwIAStzTTRdM
+lmeWffKSDoGJsQ0kjo/UGJPVP8YOGSvtmZU65FKHgRKn43DszJGbcs5VhnkiMNpJKTKeMVBT55YG
+2RdJR6Rb0AIXcRxkNufJ+fBUUGeamTjdlABuja/vtWXAxv3GpCGD1DHBDSsNABbQdCM9tpOW7btA
+gE7HnQsBTbcSh1QqAGu6o16TZJWYYJoB2ehbM0LEoZVEjyvHSDJfUgBNsomBS9VGWa5L08FiE5oh
+UocEh6bbiC0PUegrRwZSZxtjyZwnmSV26uiyoenZ8l1vIH6nTlim6dAggxXkWFgqYCIOAwhEyrma
+uN5SQzztAzee38SoS9aSnpa7TA1Yrqe9JGXloqQkeBTY0EI3cVjGY2MaqTGdOLfSXnlpv3AZECLS
+MdJ0C1HkjINAGE+dkul6uKxv2HhhJM5JIaAZSWS3us9MdxzskM65EvZlf7wJhxGS69WEahvGuQZN
+MxEZNqLQTTJdUiezjM5PhP5EONd02UM+GVswpoIhYt2EFtqpc4OlDsnEocuzmf9k8RIEQRDEeyHR
+KA0YVn5CJJPBlzLLSrXZmfgKTnsop3sDzbAgRE4FnsZmoKq0cMNSxxNpxhbX9LSftgUtcKAbXrKf
+l4IdLt7jcG6k+8exQAjGARGDyz21pmeEXpZek5MK2smeLtmYscRBzFgmk1Gk9oOjhHKuGemeDErM
+kKV0od6flP1mjKUVhWLEugUtctKXJKKNbtjghpMGMfJ0D8pT+8JCFNqIQxdxFEGIrPDNkh7lWtIr
+XJYBT+wJI9nNphnzSa9gKxXDgkTAEHEiYKhr4Gnf5fFePCltLysbRWkQpRT/7FT41jLByVa6l03a
+AHEpZqTzxzUdkWZCC52xzSYitYbkvntsr8kAyeS42XXANDOZq1SQ1KJQrYnEjpA2WVqGGwyCcQg9
+hm7mADDwyIZm+Ok6t5Qtl33P295LkLaBEGC63Icnok6sJ3vlOPIT+0DOaza4mo3nQ9lH+jiwIGml
+ldhcmj4OXkhsShNx6KTBveGE8I00EDY7zzy9FzQ96YUsRAwmOKB6lQsl+CYCtq5EbDU36TlzXQdg
+JmuDAWGmMhnjOnTDToNozExJeQ7OIujIgXGGMF0juummwbPSHtDGY5NmzEpbKStQJmKuk6zF1I4Z
+T2VSaQBIxkEA0Iyx6KhpBiI5dpEMGhjPC+f6OIA39SnwVHxUQmx6xsoGZgxxlPgqwFgiXBrp+/Rx
+kHxSxS35HWfWs27YygZKxlpXthVnUkBO7TzdQhy4SXU1dZ+ntphcI/IatPGzU9pVIo7AdRNRaKWV
+5JK2ZFoayDPuJ6299f0xcY+kzxQAgClUcIGmm2NbXc5D5hmePPu19Jmhp88KM20JZ40DcGSrNvUM
+EuOe76lAHKVBMtNs9aR/fXbeTWW/ygoCEBGi0IIWWkmgRDqfyp+hm+CalgSpX2arp+fEEKffoXkw
+zhGl16WSObSkBQWfaEmW7eGdvEYYAnoqUsepf4wxqLmUQT7ZAHdoY7+bPI6ch/H9IJNSxs8bTTfA
+jXFLvsS/oUHw9LtAs5J7y7DT4wVJ5ZBMwA+TQT/yOyD9TufquWdm7n+qdf4mkPBNEARBEATxvkiV
+b851aGYOVi51DKVR2tlMALlx5dyAkI40rqWGeIA48tKo88RIYZqRlk7SMmWrktJhsgRzUn4vnhDN
+kBrCycZbzzgMNGVkJog0EthIxLe0TJ2Ig8SZJeKM8ZtERidOCV2J6NLZo0S+y4aKJTKrNLzUcXVr
+wuDlmjY2stLjY0omuertpOngsJLXpJkgcRQASgDWVeBBctkiFR1D5dgCWOqENFMnn6YixS/XG5nK
+LoYulCNG063UeI3SIIJMZoN8jybnxxwbOGmQw3kn6xUWIuPgDIljlWsQcRJBrETZjIGbzeaX86Ac
+cFyumcwcszPR7mLsTOCahlg3wSMHuhko4y6OwonPkcdIAigMlbmdrB8oY1DE2SwfabgbqqzgOPv/
+YiNQZuJDM6ClInRiOCeOt8SRzVPns5kGHEzL8mdjh4GWOrm5nlyv4UCPMtcbh0AcQ47q2OGmjbM2
+uJb2PRuXvRtf73h9aLoxDjiQWUTU4IsgCIIg3p1UhOC6CcMuJAGW4EpU4Hoq4mp6uj+a9v2bZrdq
+ADds6EwD1+1kXxCHKtCTpaKGLPkKJIFvXDehRQ6Eme7RVCCrGDvFp50646oSkgwgRCo2Q8RpwKM9
+If4oWyCzH+apsMZ5snfWTSejfYwF2UQA0dJjpfs+rkEz7KQyT3JSqUgmbYy0BHZ6TclrMpmEerYt
+ktzjRYgjG3okbZswFdbVrmosxKWiTLJHze6r0kxb3UQcOdDjsV0ztpWAsfAmRYp0j8mNZNx5UiaY
+a/p4fxsFk9ehy+tIbCzONAjGAZHu9TQdwrCgGangm91/y+uRohzX032fHO/EzlLWWprxJ3giJmm6
+mRl7mQlvqj0758m5MJGZH02HntqOcswZ1zMBHu8SYCkDmwUETCX+xJqRrBMzSDKx1RhEaq7GghIf
+z4WmpwGn6Vrl44ppchzG85aIZIndMWm/yvuWp4HbyZ4/a9skrSQFkkpoHAK6mQa36jZiM1T31HiO
+0uOwbOsDpmyKJINcPiK4ChyR9p6sCiBEpOyhxAcwDtBAxvYei95j2z25Nq7uCSlQqvv73PMqtSkz
+gbRc0yEMM3l2SfswSu+TiQBqTZVxZhm7n8tqVIwhZkm/doDBSG02cWatZd+f+DPSgJI0gzapipYO
+28TrjbTNU3r1XKQBFUYSvBClwfrxuPJWcm9khW9NnbMMOpIHTMrAB9DT4OWk4gYy68RUdvA7Z3zL
+54cKGpCBIdKmDNPnnnxeRRMVL2TQNk+fOcrXpGVt2LG/hAlAaCwdMy319diIzSAJhI8zAnsyGCpg
+Rd136hmZ2MfyOaoZobLz2YStbp7pwY0LTVf5rOUwAF1ARxrIYcqgibHfQAauMG289iSJD0aOURKE
+pQJEJuYy60eAOu/xejKhmWHGbxKMAymyGdryma/WqbwXkix7Hqe+DMOCFsnjjSu6jAP70+tPA3MY
+H/vs1PeACsYn+/9NIOGbIAiCIAjivSE39Wk2KfLp36XgpU86FKQxwuRGH8qAj2NTZVQkh5CR3tq4
+BF0q2nIRI46TqFv5b2oTPSG4ZY6hjLax8QzNSLK5GYfgOriWKa2V6SuVbPYz0edcOgPT31fakEsx
+l48zhlODRtPjzMsmjdSLM8nHx+NcB9MTI11oOnhsqmtMrjsdw9R+HEeEp5HUbCxGj4X814uNyZSw
+9PixKiOXZNtYqjfU2Asiz5tlMqA1JXgr585bGDnJuXAwLgBhgLEk6l5wDTw1bJM1IwMaxDnnCtL5
+Ha+dsWMju3ZU5DoYwBk4CxODL3XAIM1mVg4+aUynzlHliGAcqjF2GvQBYYBpSak9NV7ZtcyvUPKL
+AQypQ5XrgM7SSHUdPLaSccmUjVM9yCZKmU6OLdLjgTNo6fmL1Pkqr1c6pOQ9Lu/H7H08ztpI71uh
+T1yvSM9ZOnOVc4tsXoIgCIJ4DyTiLE+Fv3FwpQzOlOKOlu4lphxB7YPSYNP0vdANxHE85XiaCsoT
+IlZ7f6EZ4CogUQp28tjTPjgjBsg9kbIPhNrPi7QXcLKn4Jn9uwzshBKtNKYBwpj8jIl9i5Zuf9Is
+4lSknNjbZgMk0wpOQhhKoJX7IbXvSm0VKfLL64m1CBAm4jiGJrL7ZzZx7UpozwjoTO5rZTap0DN7
+X4HJUudM2QbjsVTqSSLiqtfogG6kh85m+2uJHSSvAwyCCXCRHEfI84wNFbgssnZeZt+dnAMf7/sy
+wk6SFZ/MgZbu67NjP7bL5DXwNMuXgXMB6Mlnje0ejOc3FYDfrM3SxfdVsuyT0seMMcSZvbJI7VYp
+MCIT5DE5FvyMDXJ2H5zYpCJjV4g4uY/kPZQVvs/ZxOrYTK1XxjLVrNJAAX4uaGM8xkytRx3JLcgg
+OE+rKWTviawtLu1weW7yfWmgSWylZcbP2PRqFQDn7MnsWGXvBTZ9bpIA9LTSVjrmQougCVPZbeMi
+C3zSVuVnrkWOVcaul/fMubWmnida+tkMQvC0opw+3f+RvmfC/oQAuKH8Gown5y9iE1oaUJF8tryV
+x6X0s/e7QggIriXPbGQCJrL2MNPV/f2uSL+BrAgmbXX57BMizqzjTJC6qnDAzo8nzzyDsn4eaQsz
+kd6PHCINdOKaobK3hbK/BcbPWLl2x39PnmlJ72wRJ7Z69vwmfAcqiP/ySoByDXMY6s9qDM74Z7g6
+7pnvZFX5Qd4T2uR3qZrLzHnJ0vNI5gFMU2tRficjs56yz5KJZ3XWx5aK44LFyThzDVyLEMu1GcfI
+ZnyP/UHZ5/ekj4Qyvd8OEr4JgiAIgiDeIyqiXDcz0a18nO3B5WZYbnJTo4cDHEn2t+A6eFaQhBTO
+eMaZhFSrTBxB2dcLGTWfOsvGBtCk4H2uVGPGeSAyhgIgDd+M+KiMruw5SePh6mW5WTo+4HrSD45r
+SixU4ykNL5Yduzc9XtZYTLPDJRPjBnWMrGPiatclS8glDpNE/I0gYj0tO5kdyzNrZmI82RnD6W2M
+nPRcBBsHWUiHUGpAc2ncjiMAMmM0/mzZT26yt/Rk9kDSWzydK2Gkhp6WZJhMEdcnjDx1zRnnnnJK
+ivQY2bdJx6scs7Pnc34s1Pml60LwJBNn3BaAjcc9vUdxoYE5eb0QDBwcgmng8piZ9ZQtsZd1Xkkj
+VgBgaS9wiBgsW/IRSSACzjmwyPAlCIIgiPdDmvGc9vEe/9vkXhAXfv9OBnOyNMNWBqcqp77MLFaO
+cwYmkgxTcWbPOrE/u6iizZm9lBRx1L5C7XWymYJyPz0OZGQ8yRKX++akxHLmMzJ7FrUXFqkgfPYz
+AJwNkJT7v8l9dvacM8fliWgtuA6WCqPn9qtqLzUucT35mamRJAV6ZdNcdCxkxoNn9oIYnz830vGR
++7zJ60Ca1SgDLcEEmEhsKs6TsINkfseZflPtHUiBMROAwbJnkq4hkYqVaelndTV80jZjaTWypBWX
+rtpVTQppfDyO/D0KLIxBmSJcB1djoI8rHWWDYtV4MmRtZ2TKNZ+1Q5SACwDcBGcRwOMp99FYXM7a
+lWdFwjRuRK3LZM4zQQrn1lxmb57eC4ngpSXvO3NPjG3xsf0iIFQFOMGjdI1KW0J97Pg5Ml6V6trk
+WpywmadUSMtMzthmTcdYy9iIZ9fnOdtfBe9k12jmXuI6RCoyjjNbcWZtZgRz9QzUMWEoy8CV7DMo
+c07q2cHYmfPPCLhpxvf48yd9GOObS2TGP+OD4enzcsIWfh92WPbeztrqybNP3R/nnlnZdZh5Zp1d
+j2fvYQb1TErKg2vQWJQERykfxaStPg7qGD9vk/sR43uMZ5+r6adKsXyaCH/RaDCWBgIAXGPpd0t6
+XLW+2KXHTT5bAxNp8NEZP5A6/yl+DbWGwSBSf9j4eX+V76CMjw3pc0l+x6f3Npt49k/zi0zxBcmg
+DbL93woSvgniZ8QwDJRKJVSrVYRhiCAIUK1Wkc/nYZgGtIv6lhIEQRAfFbLcdVKODshGcmdepX6P
+nWU8zfSUhq4UzrJOpMnjjMW18etF1ghO3nDmsy5xoLGkN/bY2D1zLtkjT3FAvMVgJZt6wcCgTVyH
+Gif1cVfY9F9yPDUu075rz37uW1+bHGMtHUsN4JnPP6t6n5uXN7ze15zL+HAsNSgTY3VyXDLXrnwD
+k+fyegFeftYV1tDY/3TmuGMHQGLjnhHkM3NzftyuOBbZtaE+KGMwT71Hr3i9amCn3b+Z4505f3aF
+682OEUEQBEEQ7xmWlJoVPH7Lfa50yo/3WtK5fenxmEg12nHgH3Bmb3bZZ8o/TYjSIt2jaJfsoTJ7
+nlTtY+BX2IdLrvYZE1xlf5PupZLxG/dIPmeLTFQemm5fyf8mxNlg1/Pjm63sdG5vmW7Uzs7Rpddx
+bp8IAInoO76m88Li+M9nryd7nmlA5aVjn7kOteQYIHi6B86KqmzKObwn1JrPjkHWPsjasTiz1i6Y
+j8kPgMzkvGiOBMT512eCUaYeL4maSI93gQB9Zo7G9h9P9MdL52a83uX4jOcGZ9bpG+z+32gumVpP
+ySNAm+6HwFnbf/JzLp4PTFlrU8YvidS5+no+95/lc1eef2b8MkE/yesvem7It2nnx/7S9fI+YGeu
+A1PWwaQP4dz9cSU78fwzSbDxmE0Gw19ku2bGLV0jZ/0K8vVvbruOq0Scvxcu+h46K+7L9ZlWE3ij
+uRyPJUPme+OcL+n8vE1bn9L/kvyPq++zs+M86RO5+HjE20HCN0H8jMzNzeHf//3fUSqVEEURoihC
+o9HAw4cPMTPTQC7nQtfptiQIgvjnYNIgPp9dPe31IimVjbPGxkXHgTKQJv0z0w2Cq22gpQHMphip
+58743UTv11xH9vzfzM4cR+xPHxc27S3v8dom5xLSqZCO7ZSLf8frfddxyVznlHX65udydg1lsgqm
+Dum0dY1z43f2zW9nEGbG4MzFXeRkvPr1ynO+7Hqnj+ll13vWhCYIgiAI4v0iv4ez/ULfJQBSCExx
+hE873kV7xqt/7tmyu9k9/OV7qCnvueI+/CqfMXWQZebdBbbK+O+X7CPPjPXln3t23zdxVRccb4rN
+c8E+7fLrmLyes+N2seh6+fHebo980V41Mxo/6TbzNWPApr/nTfb6V5ujq1/v1cbqsnv5/Gde/LnT
+3/tmU/K6z7jsfZfYMZNnOeGXeLPjTR/7i9fz2ddfLupOHb+pA8EuHB8GlpRoV8/g6ef803FFH4JM
+hrjSfEz/HDlHADv/fXWFtZt971Q/yhuf02VjcP7zX/+8TQMJ3nIuX+9jO3s8dqXjXTzOb3Y84mqQ
+wkYQPyPz8/P4j//4D/z+979XvTNM04TjOHAcBxrXwDX+7h9EEARBfHDeLlv37aI7316wu/g8xsf9
+OTbdlzkR3v6Yb36893mtFzivmLjw9T8PrxsXgfc1/sBFc3q1z7iacfuuY/D+jnl9r5cgCIIgiMt5
+nxlWb3qsqwmeb3QGb3G8N903v905v9nr3o9t8DY2wWXHeJvjvGvg5vs4l5/C3npfY/DGuc3vcVyu
+cry3uZff1g/wPs79za8VeJ9r482O937mjb2THSbf9iZBRz8NV/EhvD9bHbjofvxpvjfebgze4tqU
+tvx24vv7vbaLfGvvy+9CXAQJ3wTxM2KaJkzTRKVS+dCnQhAEQRDEB+G6Gzc/X6DDvw7/atdLEARB
+EARBEFeF9srET8U/y9r6Oa/jn2XMrjs0zj81lFpKEARBEARBEARBEARBEARBEARBEARBfNSQ8E0Q
+BEEQBEEQBEEQBEEQBEEQBEEQBEF81JDwTRAEQRAEQRAEQRAEQRAEQRAEQRAEQXzUkPBNEARBEARB
+EARBEARBEARBEARBEARBfNSQ8E0QBEEQBEEQBEEQBEEQBEEQBEEQBEF81JDwTRAEQRAEQRAEQRAE
+QRAEQRAEQRAEQXzUkPBNEARBEARBEARBvBOMsYnfBEEQBEEQBEEQBEF8nDBMt+8/BpufhG+CIAiC
+IAiCIAjijZC2LmPsnOj9MRjCBEEQBEEQBEEQBEFcxMWi93W3+Un4JgiCIAiCIAiCIN6Y627sEgRB
+EARBEARBEATxhpwx9bMB7x8D+oc+gdcRBAFGoxFGoxFarRba7TZ83wcAaJqGeq2Oaq0Kx3Fg6AY0
+XfvQp/xRE4UR9g8OcHh4gOFwCADgnKNcLqNUKiGXy8GyLFiW9aFPlSDeCM/z0Ol00O12MRwOMRwO
+EQQBgOTBXavVUK/XkcvloOs6OKe4IIIgCIIgCIIgCIIgCIIgCIIg/jX5mARvybUXvj3PQ6vVwvHx
+MV68eIH19XUMBgMAgGVZuHfvHh48eICZ+gzcnEvC9zsSRiFevlzH3//+d5yengJIAgzW1tZw8+ZN
+zM/Po1KpkPBNfHQMh0Ps7Ozg1atXOD4+xvHxMYbDoYpWevDgAR4+fIjFxUUIIWiNEwRBEARBEARB
+EARBEARBEARBfERcW+FbCAEA6Pf72N/bx/rLdfzjH//Ajz/+iH6/D13Xkc/n4TgOlpeXUSqVYMf2
+hz7tj54oirC9vY2vvvoKe3t7AADDMDAcDmFZFmzbhuu6H/o0CeKNCYIA3W4Xh4eH2NjYwMbGBlqt
+FoQQEEIgDEPkcjmYpknBHQRBEARBEJcwLd77Y4wCJwiCIAiCIAiCIAjiLB9HL++LuJbCtxShoijC
+zs4O/vb3v+Hrr7/G1tYW9vb2oGkaKpUKyuUyHMdBPp+H67rQ9Wt5OR8VURTh9PQUOzs72NraAgCY
+polGo4G1tbWJ8tAE8TFh2zbm5uYAAN1uF5ubm+j3++rHNE2EYYhms4nPPvsM5XL5o32wEwRBEARB
+/BRM7IzY2BCetmeifRRBEARBEARBEARBfCSwSZv/dSb9dbb5r61SHEURPM/D3t4evv76a/yf//N/
+0Ov10O12USwWk57ehgHLspDP55Fzc+Aa9eR9V+I4xunpKXZ3d7GzswMgKSl/cHCAVquFwWBAwjfx
+UeI6Lubn51Gr1rCxsQFN09Dv93F0dIRms4kwDNHpdNDv91EqlfDZZ58BuN4PcIIgCIIgiJ8XlhjC
+LPn9un0S57SPIgiCIAiCIAiCIIiPApZY/Uz+BUllbsY+rgzwayl8h2GIg4MD7O7u4scff8SrV69w
+cnKCOI6h6zoqlQrW1tbw8OFDLC8vI5dLRO+PZdCvM5xzFAoF1Go1jEYjAEmp82q1ikKhANu2KbOe
++CjhGodjOzBNEzdu3MCDBw/geR6CIMDx8TG63S52dnbgui7W1tbw4sULlMtlFItFKntOEB8JLBuX
+yMabM4IgCOJ9cfFzVWZ+cz4ZjMwy4jcjIZwgCIKYAstkGDHQPp4gCIIgCOKDcGYLlq3wxl5T9e06
+cS0VzCAIsLW1ha+//ho//PADDg4OMBqN4LouXNfFysoKvvjiC/z7v/87Go0GHMe59gP9saBpGmZn
+Z3Hnzh0UCgUASanztbU1zMzMoFAowDTND32aBPHGMMaSABnOsLq6Ck3TYNs2BoMBdnd3EUURWq0W
+dnZ28OLFCzx69AgrKyuqsgRBENeb8eZLbsAwvQktQRAE8e6IsTU8zeid9ney1wiCIIgs4++FcRUR
++q4gCIIgCIL40Mgs7w99Hm/PtRK+hRCIoxij4Qjb29v4xz/+gWfPnqHZbGI0GqFarWJubg63b9/G
+559/ji9++cWlmd5xHCMIAkRRpH5E6qQRsVDv1TQNuq5D0zRomnbpZlsIASEEgiBQx47jGCIWKoOB
+cw7OuTqurusq80EIAc/zMBqNEEcxYhGDMw7d0JWgHIYh4jhOfqIYXOMwTROapqnPFbE49155/mez
+LOTnBkGAMAxV//QoitR1Z8+zXC5jeXkZtm1DCAFd1zE/P49KpQLXdc8J32pMz4yLnM/LxuWisX7X
+cX6fa1IIARELBGFyLnJuRJw+ADibOA/5e9p1RWEEP/Dh+/7E9ei6DsMwpr7X9/1z82aa5oVzHoUR
+PN+D7/sQQiCKImiaBsMwkvdwDVzjiKMYw9EQvucn94uI1ecbhjGxDuUYZO8Z0zRhGEYyBpc8BafN
+pVwb2fGTYyjPddpcRmE09ZzltUVRNHnesZh6f8zPz6NWq4Exho2NDTx9+hTtdhudTgdHR0d4+fIl
+vv/+e3DOUa/XUSqVyAAniI+BjOhNujdBEMRPRboHxvnobxItCIIgiDclG7jKGAMYZXsTBEEQBEH8
+7Ijk/4QQyqmatfOn2fwX/fuH5loJ30EQYDgc4rh5jK2tLayvr2N/fx+j0Qi2bWNhYQG//vWv8fnn
+n2N2dva1Pb17vR5OTk5wenqKTqeDTqczFhyFgGVZsG0bxWIR9XodlUoFtm3Ddd2pkySFdM/zcHR4
+hIPDA3S7XQwGA3iep4Q1x3GQz+eRz+dRr9dRr9dh27a6xpcvX+L58+fodruI4xiccywsLGBhYQFC
+CLRaLXQ6HQwGA4xGI+TzeczOzqJarWJ/fx8HBwcYDAbqvfPz81hcXESlUkE+n4fruufPPYpxeHiI
+g4MDnJycqPMuFosol8uo1WqYnZ1FPp9HFEUIggCj0QhRFIFzDs/zwDmfKuhKUVOOy+HRoTr+aDSa
+Oi7VahW1Wg2O7ZwLXojjGGEYwvd9HB4e4vDwcGI8ssfL5XLnxvl93mRxFMPzPXieh4ODAxwdHaHb
+7WI4HMLzPCW453I5lMtlVKtVlEollEqlqVnC3V4Xr169wu7uLobDIYbDIRzHwczMDGZmZlAul1Gp
+VNR7hRA4OjrGwcE+ms0mut0u+v0+FhcXsbi4iGq1ilwuNzHnnW4HGxsb2NzchO8nInsul8P8/DwW
+FhaQz+eRy+XQ6XTw4sULvHz5UgUWuK6rzqXT6ahr9X0fQRDAtm04joNqpYrGbANzc3MXrovsXIZh
+qNZfu90+N5e2bau5rNVqqNVqyOVy5+ay3W7jxYsXeLH+Qp1zPp9X90+r1UK73Uav18NgMMBwOMTc
+3Bzm5+dRrVbV+tN4IpbXajXcvXsXx8fHePLkCV6+fAnP87Czs4OvvvoKuVwOt27dwvzcvBLoCYK4
+vjAAnAF6er8yFoPKJBIEQbxPYkBEYIjBGNJnLVO/syI4Z9SKiiAIgrganAEaZ9A4AyPhmyAIgiAI
+4gMhwCBt/otF7+smdJ/lWgnfYRii1+uj2WxiZ2cHGxsbODo6QhiGcF0Xi4uL+Ld/+zc8fPgQs7Oz
+r80yHQwG2Nvbw+bmJvb393F4eIjBYJBkTAuhRLCFhQWsra2BMw5RSgTxqdmmqSA8GAywvbONp0+f
+4uDgAK1WC91uV2XhFotF1Go1NBoNxHGclAc3THCNIwxDbGxs4Msvv8Th4SHCMISu63jw4IHKhN3e
+3sbe3h7a7Tba7TZqtRru3buHlZUV/Pjjj3jy5AlarRbiOMl2ffDgAcIwTLKzNX2q8B3FEY6OjvDk
+yRNsbm7i8PAQp6enmJ+fx9zcHG7dugXbSsTHMAyV8O37PhhjCIJgwql1dlw8z0O/38f2zjaeP3+O
+/f19NS6GYcAwjIlxWV1dheM4Kntc07WJ4/m+r0pQP336FHt7eyogQGb3FotFVKtVNBoNBEGAfC4P
+y7TAtPd3w4VRiNFwhE63g83NTTx9+hSHh4mw3+v11JxXq1UsLy/jxo0bSkCeJnxLsfnbb79Ft9tF
+p9NBoVDArVu38Mknn5x7rxACx8dHePz4sZq3k5MTPHz4UAUl6PrknHc6HTx9+hRfffUVBoMBBoMB
+qtUqPv30U+i6jjiOYVkWOp0OHj16hL/85S9KnC6Xy7h16xZu376Ng4MDHB4eot1uo9/vYzgcKlF/
+aWkJsYhRrVZhmiaEENMz92OBMEzGcHd3F8+ePcPOzg5arRZarZYaPyl41+t13Lx5M2lr4Ljn5rLT
+7eDRj4/w5z//WZ1zrVbDw4cPYRgGtre3sbOzg6OjI3X/3L17F59++imAxDmbz+eTKgpaMm/37t0D
+Ywy+72N/fx/Hx8fY29tDv9/H8vIy2u02wiiEDh0g3ZsgrjcM4JxB0xg0ThnfBEEQ7xeRlDgXMSDi
+TIbeBT98sg8YQRAEQVwEYwyazsA59fgmCIIgCIL4MEh7PwIywe7ZQPfsn6+z+H2thO9er4e9vV28
+ePECBwcH6Pf7Sgis1WpYWFjAysqKykyeRhAE2Nvbw8H+ATZebWB9fR1bW1s4OTlBq9WC53lKYJbZ
+3RsbyesWFxdx584d3Lt3D9VqFYZhQNd1eF5SNvrg4ACbm5vY3NzEq1evsLm5idPTUyUKypLLruui
+UCigWq1iZ2cH29vbuHHjBhYWFmDbNg4PD/HixQvs7u4iDEMwxtDv93FycoI4jnF0dIRms4l+v49+
+v4+FhQUUi0UUCgU0m00cHx/j6OgI/X5/QvxkjMG2bVRr1XPjEkUR9vf38cMPP2B9fV0dHwBKpVKS
+PSuSTPh+v4/Dw0Ps7e0p4bvZbKqgAZkxL0u2Hx4eqvHY2trC9vY2Tk5O0Ov1JsbFcRwUi0VUKhX1
+2pUbK1haXsLc3Bx831dZ4682X2Fra0sd9+zxpNhbKBRQqVSwvb2N3d1dNc5zc3MA3s7RJoTAaDTC
+cDDEweEBXr58iVevXqlrOz09VRnLsix4oVDA1tYWnj9/jtXVVdy8eROLi4tKzJUkwR09NJtNJSy7
+rquCGGzbxszMzPhcYoHDw0M8efJElf1vt9tKLJbCcaVSUSXFO50k4/u7777DaDSC53kq2zv7YOr3
++9jd3cWTJ09UsEMul8PxcVJx4fT0FK1WC/1+H56XZL27rot8Po/t7W0cHR1hb28PKysrWF1dRblc
+VuMt75lms3nunjk+Pkav10O/31cZ847joFAooFQqYWdnBzs7O1i5sYL5haSagZzL4XCIvb29iXMu
+Fovodrs4ODhQ94YU6/v9vsrsrlQqqm+9PE/HcdS4PH36FMViEe12G77v4/T0VN0HR0dHKBaLKBaL
+H/oxSRDEJXDGYGiAbTKYOgPn5DQjCIJ4r4gIED4YwiQ7L9NKZlr293U1ggmCIIjrQVIhhMHQGWxD
+7uFp/04QBEEQBPFBEBEQ++A8BGeTLWqnCeDA9Qx2v3bCt8yqbTabCMNQiXpSzKzX6ygWi6q38Fk8
+z8OzZ8/wt7/9Dc+ePVPZ3p7nqR7XAFTvatmr2HVdVKtV/Pu//zvy+bwSMzVNw3A4RKvVwo8//ogv
+v/wS3377rcpYlceVAjRj437Ntm3jxYsXWF5exsOHD/H73/8eN9du4vT0VIl7sh/x6ekpXrx4ASEE
+hsMhRqORymiN4xjLy8uYn5/HYDCA7/vo9XpKQLQsS31eVjSVyFLke3t7+PHHH7G+vo5er4cwDDE3
+Nwdd12HbNnRdRxRFaLfb2N3dxfb2tipxfnCQlHWX/aaFEOj1ejg9PcWjR4/w5Zdf4ptvvlEl5bPn
+P21c5ubmsLi4iIcPH+K//tf/irm5OQwGA7TbbTx5+gRffvklvvrqK1W6ejgcnjuenDvLsvDixQs8
+ffoUDx48wO9//3s0Zhpg/O2dbZ1OB8fHxyojWl5br9dT15adc3keruvi5s2buHPnDu7fv4/PPvts
+QviWVQM8z8Pp6Sn29vZURrxpmqjX67h165Z6fSySQIinT5/iyZMnqoR3oVBAsVhUJdZXVlZUP+9e
+r4ft7aQigRwzTdOUcC0rGnieh+PjY2xvb6t7g3OOnZ0dOI6jyptn16EUqguFAtbX1/H999/jD3/4
+A4qFIkqlEoDkQTcajdBut/Hs2TP8+c9/xt/+9jecnp6qucx+npxLOQbr6+t48uQJ7t+/j9/97neq
+zDgAjEajc+dsGAb29/fx448/qvLmnuep867X61hbW0vWb9obXGJZFmZmZuC6OczNzaFcLuPo6Ai+
+72M4HE7cqwBI+CaIa4radDEG0+BwTQbLSEomEgRBEO8PJiKw2AdHAM40aJo5YQSfLXmu3ncNDWGC
+IAjieqBpHKbO4JoMtgG8xyJ+BEEQBEEQxJURgAjAhA+GKLX5J4Pds3Y/cH1t/WsnfO/s7GB9fR0n
+JycIgkAJ0svLy5ibm0OlUpnewzrtJdzr9bC+vo7//M//xPPnz3FwcIBms6kyY7OOGCGEel8QBMjn
+82g0GvjFL36B2dlZJQafnp5ia2sLP/zwA/7617/im2++Uf2FWSbqQWbcSnFTCIGTkxOV2b2wsICZ
+mRmcnp6i2Wyi2WxiNBohCAIcHh5C13V1nGzkRL/fV4I3AOi6roTng4MDOI4DXddRqVRw9+7dqeMy
+HA5xcHCAjY0NbG1tqf7Uvu+rLF7DMNRxT05O1PkxxtBqtSYyvqMowunpKTY2NvD999/jr3/9K77+
++mt17YwxGIYBTdPOjbUcl8PDQ3DOcfv2bcRRjFarhe3tbfzwww/4z//8T/z973+/dJzjOFZCfLPZ
+xN7enspufvDggZrzN+nLLERSmvvk5ATr6+v4xz/+oeY8jmPVVz07V/I9sn98u93G6ekpgiBApVLB
+7du3lbArex3K7OXT01OVqW/bNm7duqXWThwlPeWPj49VhvxoNMJgMECpVFKl41dXVwFAnUOn08HB
+wQG2trbUddXrdURRhFwuB8uywBiD53lot9toNpsq2z6KIvUgM01zYg7lPToajWBZllpPlUoFDx48
+wOzcrHpPu93G1tYWHj16hL/97W/485//rMYPgBK7s3MpAwJOTk6wt7eHwWCARqOBzz//PJlLw4Tv
+++fOWQryMhhG3j+apqnMdiWGR+HEfMs1Ui6XMTc3h1qthp2dHURRhH6/j3a7jb29Pezu7qJYLF5Y
+0p0giA9Pct9zWDpDztZgGxyGFoMzASEY5X0TBEG8NUmJcyEiQATgIit8n/+5qPQZ7aEIgiCIs8jv
+CdNI9/Am7eEJgiAIgiB+XtK2ZnEIJgLw2AOHgMZ1ZefLJGLOOTSunQt4v272/rUSvgeDAY6OjrCz
+s4NOp4MoimDbNmZnZ3Hr1i00Gg0YunHhe1utFnZ2drC5ualKUkdRhHw+j5mZGczOzsJ13QlBTIpb
+rVYLQiRbaik6xnGsMsi//PJLfPfdd9jd3UUURSgWiyiXyygUCigUCnBdV4m+p6enqsd1EARoNpvY
+2trC+vo6isUiTk5OVOa5/Dwp/tl20mfbdV0YhgHLsrC6uoqFhQVUq1X4vg/OOUajEY6OjhDHMXq9
+Hvb391VfcCkUZ8XN3d1dnJycYDAYKHFTCn4ym/6i8vFZsiLlixcv8Oc//xnfffedKotuWZYqaV6r
+1VCtVpV43e/3cXp6ik6nA8dxwBhTYqgf+Hjx4oXKrt7d3UUQBCiVSiiXyygWi8jn88jlcoiiCGEY
+otVqYX9/X1UHODk5wfb2NtbX1/H06VPMzMyg0WjAcZwrrT85757nYX19Hf/3//5ffPfdd9jf31dl
+wHO5HAqFAsrlMsrlMjzPw3A4RLvdxvHxMY6Pj9HpdLC1tYVcLskiXlpaQrVaQ61WhWEaqFQqmJ+f
+x+bmpiqlLzP4O50OgiBAEAQTa7Pf78P3fRX8MBgMcHh4iP39fXS7XVUpQIruo9EIQiT96mVZ9Hw+
+n/SbN01oXJs6BrJUv8yEnpubQ7FYVEEHr169ws7ODvr9PoIgQLvdxv7+Pl6+fIlyuYx6vY5atab6
+2H/99dfY2tpSJcmzc5nP59VcttttHBwc4OjoCFEUqXv55cuXePz4MWZnZ9FoNC6cN7ku8/k8XNdV
+/eNN08Tq6ioajQaKxeLUvusS2btcZpTL8v57e3vY2dnB/Pz8z/AUJAjiXeCcwbY0FFwdOceHYwqY
+eowo4ghjcpwRBEG8DSKOICIPIhoB4QAcPnQew9CZqlwkW0QpQ3iKAE4QBEEQWcYJHwy2qSHv6sg7
+GhwrSPbwMUMYcwjaxBMEQRAEQfxkiDhMbP6gBx4NwVkAg2swjERDlFWAlc2vycxv7dra+9dK+JZi
+7v7+Pnq9HoIgUGWxb926hZmZGRimceF7s5mxe3t7OD09VX2TFxcX8Ytf/AIzMzMq4/Xw8FD17ZbZ
+4lKMjeIIUZT8vHjxAv/v//0/rK+vKzG7VCrh9u3buHHjBubn5zEzM4PRaITRaITnz5/j22+/Vf2V
+e70ednd38fLlSxSLRSXUZpGZxLK0e6PRUOLg8vIyFhcXUa1WwTlHLpdDp9PB+vq6ykyVPby73a4S
+tgGoDNqdnR3Vm9r3fVWau1qtYmlpCfPz89B1HcPh8NI5SgTGpL/3y5cv8ec//xnPnz9Hp9OB7/vI
+5/MoFotYWlrC3bt3cevWLVVyen9/Hy9evMDOzo5yhElRPAgCdbynT5+i1WrB930UCgXcunULKysr
+mJubw+zsrBKbNzY28O2336prkqXDNzY28Pz5c4hYoFwuv5HwHUZJ9r+sGvDs2TMl8jqOg5mZGSwt
+LWFtbQ03btxAu91Gu93Gq1evlPje7XZV/2r52kSUzakxl33bNU1TInez2US321Xj1e12cXx8rLLt
+e72eCs4YDAY4ODjA3t4eut0uAGA4HOLk5EQJ31EUqdLyUvTO5/KXloCXry8UCrh9+zZ++ctfYnFx
+UWV+/+///b/VOg+CQPXWfvXqFer1OnRdR7lcxsbGBv7yl7/g+++/R7vdxmAwwMLCAlZXV7G6uqp6
+jstjbW1t4dtvv0Wv11NZ3fv7+9jY2MCzZ88ghECxULx07qIoguM4aDQaqFarKkjh1q1bmJ2dfa3w
+XS6Xsby8jMPDQ5yenk6M8/7+Pjqdzk/27CMI4t1hjEHjDLbBE+Hb1uCYgMljeAKA0KjdN0EQxNsg
+YohohNjvQYuH0OBD5xEMnU+I3tIIlpWRLip7ThAEQRBZOGOwDA0FR0fOSkqemzyGD44oFhCg7xGC
+IAiCIIifChEHiIMBEPTA4iE0FkDX2Dmb/6y9z/m46q7kutj/10L4lmLeaDSa6BEdxzEsy0K9XseN
+GzdQrVYv7O0thetWq4Vut6t6b0shr9Fo4M6dO1hYWIDjONA0TZUblxnPnU4H9+7dQ71eh8Y19Ho9
+9Pt97O7uTmRwZyeZMaZKiXueB9/3Vf9wwzBUlu5gMMDx8fFENrvEMAzMzMygWq1ibm4ON27cwOLi
+IlzXheu6qNfrWFxcVGJ4tVrF/v4+8vk8TNNEGIZq7I6Pj3FwcKCyo/v9gRIQZfl40zRRLBbRaDRQ
+q9VQKBRUMMDrSETJFtrtFvb29nB4eIh2u63E9EajgU8++QSffPIJbt26hdXVVSXkLi0todFoYG9v
+D0EQwPd9LC4ugjGGvb097O3tTYxz1ok2bZzjOFaZ67IftRznra0tlSF/VWR2vAy+ODo6Qq/XQxzH
+cF0Xc3Nz+Oyzz/DJJ59gaWkJCwsL6Ha76Ha7KJVKCIIAo9EI/X4f3W4XnU4HOzs7ePLkCWzbxvz8
+PCzLUhnfpVJJ9VWXPbG73S6GwyF6vR6Ojo6wubmJ09NTVdIbgMrk73a7qge67Ld+dHSEk5MTjEYj
+AEkP61KphEqlgnw+D03XLh0Dx3GwsLCAmzdv4tNPP8Vnn32G+fn5pEw759je3sbGxoa6vk6ng8Fg
+gGazif39fTiOA9u21XzKku9SOJfHiaLo3FxyzmFZlsp4Hw6HqlpCtVqF53tTz7lQKKBSqaBWq2Fp
+aQk3btxAvV6H67rI5XKYn5/H0uISKpXKpUEQ+XxeBVdsbGxMrInT09PXBoUQBPHhkO0wGGPQdR2m
+oaHoaKgVGAZDoDOM0R4KRDFHLBg5zwiCIK6AiEMgDhAHPQjvBMI7AY96MDXAtkzYlqWqC8l2N3LP
+l/1RGX3s6u2HCIIgiH8NknKZHIbOYRoaCq6Gap6hVxRoD2N0hEAY0R6eIAiCIAjivSIEhAgh4gDC
+b0OMTsCCE+jxEKauKZs/a+/L7O+zbc7U79Tmvw7i97UQvoFE/JYCsSzrHEURTNNUWcmFQmGi33AW
+KZR1u13VI1lOgGVZqNVqWFtbw8rKiurdPRwOMRqNlGDY7/exurqKpaUlAFAlwo+OjtRxZe9qACrL
+eDgc4vDwUGUvHx8fT4h9jDEEQYBWq4WDgwP0er1zwvfCwgI+//xz3LlzB6urq1heXoahG9ANXQl4
+ruPCDxIhfWNjA8ViEbZtq97OUizd2trC3NwcLMvCaDjE3t4eXr58qUqsyzFdWVlBo9FQovdVFqTn
+eTg6OlJl6WWQgexTvbq6ij/96U+4f/9+Uva6VkMcx6oU9927d5Vg2m631Rhtbm7i8PBQZY4zxmCa
+5sQ4y6x+Oc7NZhOe56ljcM4RBAE6nQ729/eV6H5VPM/D4eEhXr16hePjY9XTPFty/g9/+APu37+P
+UqmEfD6vBPxSqQTP8zAajbC9va36Tx8eHuLZs2eYnZ3FaDRSgQthGKJYLELXdbV2gaSH9nA4RLfT
+VT20W63WueuQpcxbrZYSv5vNJg4PD9FqteB5iUgshfZ6vX6lzHfXdXH79m386U9/wurqKtbW1lAu
+l1Wf9IWFBSwuLuL09FQFFci+4sfHx7BtW1VTkAERjDG1xmQ2t+d5aDabql+8PGf54JT3TLfbxf7+
+PlZWVi4MYpDn/MUXX2BlZQVra2uoVqvqQZzP5ZEv5OE4zqUZ3/l8Ho1GAzMzM7BtWz1XZMl5OaYE
+QVxfku99DsPQUXA1zJYYolCAnwp4vsBIaAA0ROLDb8AIgiCuOyL2IYIhhN+CGB4AowPoRgTT0OA4
+FmzbVj9SAM9Gg2eNYAllgBMEQRBZGGNgabaQYSSlzhtlhigEtNMYfiAwjGkPTxAEQRAE8X5JK7sF
+I4jRCcRwLxG+jQi2baoER2nvW5albP2sHpdtb8b49dmrfXDhW/ZVjuJICd+dTkc5SSzLQrlcTsqc
+pwN74XFSEU0KreN+QVz9ZMVw2e97cXERYRgiimI4tg3TMnFycqIydmWv3+FwCMdxlMDa7XaninHy
+tVnCMFTlrAeDgcpyBwBd19FoNPDLX/4Sv/zlL5XwPY04jhGGIRqNhirjLcupD4dDlSVsGAZqtRr6
+g/45AVUKfGtra0rku6oDSn7WyckJms0mhsOhKgPuOA5u3LiB3/72t/j0009h27YSr7PzFIYhjo+P
+cXR0hHa7PTHO/X5/6jhPE7CHw+G5cY6iCL1eD81mE71e742E79FopPqEN5tNVXVA15Pgg+XlZXzx
+xRf47OFnYHzSiWfoBprNpgqEkMEPJycnePXqFe7du6dE+lKpBMY4isUiTNNUgrAsW9/v93HaSsq2
+y4zvKIrU/WAYhpoHWeVAjqcs0y2DERzHQa1WQ71eRy6Xe+0YqDn8zW8x00h6pLuuq9ae7LVdLpdx
+cnICIBGHZca5rusQQqjAgcFgANd1oeu6qsogpjTo8jwP/X7/3Fz2+30cHx8ncxmEF57zysoK/st/
++S9YW1vD6uoqKpXKlec9e5xqtYpqtaruCSl89/t9FWxAzlqCuH5wNt5oaVpSKSTn6KiXNIiIww9C
+9IchGGJ4UQyW9goUYlz9/Oyz6fW9BOMPfdkEQRBvidzDnn2OpQ8+IZI/Bz0IvwvhnYAFTfDgBKZp
+w7Edtfc/J3rrYwP4bLnz62QEEwRBEB8euYeXPSJ1XUfe0VEvcCC7hxfJHj6gPTxBEARBEMQVuMTm
+F/J3COH3gKAH+E3woAk96sC07Ql7X/5kM7+lza9x7VpmewPXQPgGgCAM4HneRDlnXddVH2o5oLp2
+8enato1arYb5+XkUCgUltPm+j1arhW+++QbD4RCNRgOFQgGFQgHFYlGVgZY/8rOjKEK321XibhzH
+iONYCd0nJyfwfX9qBrosPS6vKYoiJfiGYaiEeYnMInddF47jXFjOXb5W45oqy7y4uIijo6OJDOPn
+z5+jWCxiZWUF/X4fh4eH2N7eRrvdVn3TG40Gbt++jUajcU6cvnSuUiH65OREjYtpmsjlcqhWqyiV
+Ssjlkl7WGp+ena9pmhJhoyjC8fGxCgg4O87Z8vIXjbPv+xiNRgjDUPV6DoJA/f1Nrq3f76vscnlt
+ruuiUqmgUCgkQvWUHtmGmQjajUYDuVwOmqap85I9rmXv9eSYjuq7XSwWVc9smdUuM8e3trbQbrdV
+wEKpVEKhUEC73VZj02w2sb6+ju3tbRwcHCjhW94XMvP+KsL36+B83NdBCv9RdD5oRfadl/9NZqfL
+DPqzyHLv8p6RAQvy/WEYIhbxhedkWRby+Twsy5oISHgTTNNEPp+H67rqHOXny/uYIIjri3SaJRnf
+BixTR842MXJ9NIoRRBihM/DQG0YYegJ+GCOIBKI4+RGxUI4yIQQERPIdIv9tWoNw6hlOEMTHSHYb
+K0VuEQMQYCICRACIECwagkdDaGIIXQtg5Gzk8276k1dVqbICuGGOxW+NU5lzgiAI4vUk7Yq01A9o
+wHUsFIMQM8UIcRij0/fRG0UYeDH8IEYYCYS0hycIgiAIgjjPWd15wuaPxzZ/HIBHQ/A4tfmNGKZt
+o5DPIZ9LbP1cLqc0Syl+Z6u8SZ3suojdWT648C2EUIKfzHqVQrCMIpDiN3BxxEBW+C4Wi9A0TWWM
+yl7C6+vrSjysVCqYnZ3F3Nwc1tbWcPfuXZRKJQCJkBaGoRJ4pSArhTx5vu12e+r5nM08l8K3fK/8
++8RE6LpyHF2U1S6vn2tcCd83btxQ5b1lGfKXL19iaWkJnudhMBjg8PAQu7u7KjvbsizMzc3hzp07
+qtT5VZHicFb4NgwDuVwOtVoN5XIZOTd3oZgub4R8Pg/bttHr9ZR4O22ch8MhWq3WVDEzO77yffLv
+ci29ifAtM5Jl1rbsIS6vrVAoTAi+WUzTVGsqn89D0zTVk7zT6WA4HKqsbdM0IYRQorfruojjWPUo
+l9nqOzs7qie8LFEv+1i/evUKg8EAvu+j2WxiY2MDh4eHqsS4FL4dx0G9Xlf94d8V2ac7Ow6yCsFw
+OFT3jhS+4zhWgra8Z6aN39mKDWfvmcuCGOSY5nI5WKZ1YTuE1yGDT7LCt5wXKb4TBHF9GWd8y8ou
+JlzHQhT5EJEPExFO9RFOMUI78jCIYgyiGEEYQ0QCIoohYiAWArEQECKGiJPNoZDRkCnjxxF5zQiC
++NhIbBfGkPT0kgawiJKfOAAXHljsQUMAznwYGoNtGbDtVPjO5ZHL5ZDP51UkuGVZSvzWjaTyBtf4
+tTWCCYIgiA+PdJbKCiG6rsMyDbiOiTgMEAUeTIRoGUOctNM9fBhjEMdAQHt4giAIgiCI85y1+eMJ
+m5/FPljsgQkPHAE4C2AaGmzLgGM7yOdc5PM5JXxPq/Ym29XKPdx15IML38BYXMoKlSpdPlMr/jJM
+00ShUECj0cCtW7fw4MEDFAoFdDod1TO83++rHuIyY/bg4ECViN7e3sbt27fxySefYDQaKcFcim6m
+aSrHjswWvyw7O0upVML8/LzqBd1sNif++0RJ9tdkRDDG4Lou5ufnsba2hpOTE+zu7ioRdHNzE1tb
+W9jZ2cHR0RFOT09VeXXHcVAsFjEzM4OFhQWUy+VLhfZpc+X7vhIChRAqC1gufE3XXjtfUqyUAnF2
+nKUAaVkWCoUCSqXSlbPSC4UCFhYWsLS0hLm5OdWr+SrIIIyz1yarD8gb+qLrMYzEIWgYBhhj54Rb
+Wc1AzrXMki8Wi6pH+2AwwP7+Pjjn2NvbQ7PZVFn6pVIJS0tLuHPnjsrkD8MQp6enePXqlSq1Lntr
+c87hui7q9TpmZmZUyfJ3Jdu3QY5b9lpldrQMisjOpexLfxVkcIfsK+44Dk5PTy8cf03TwLW3f9DK
+Y+i6PnFtUtiX80cQxPWDcQYWM5VhaBgGTN1AYBpwbBthLgCTGYwihMYCWHoMi0fwghB+ECEII8RR
+jDB9fsVxDMHixIEGMVE3UWT+nyAI4uODgU04/wXAYjAWg7EITATgWgiDC+iaDsvUYaflzqTgnc/n
+zxnCpmnCNEzo+rjHt6Zpqsw5ieAEQRDEWaR/RNf1ceXHIEBoByiEVrqHj4AoBEcAS4thaRFG/uQe
+PkpbKMo9vBACsfyOU9nf4/8nCIIgCIL45+Vim5+zEIyH4CyGwRl0rsO2k0B2WdUtl8uhUCioP9t2
+0vIsK3zrmj7Z4oxfL3v/WgjfUlzKlgDPCsFXwdCTrONGo4GHDx8iCAL8+OOPePHiBXZ2djAYDFRp
+bCGE6pF8eHiInZ0dPH/+HLOzs/jjH/+IcrmM0XCkxHiJbdsoFouo1Wq4ffs27t+/j0KhcKXzy+Vy
+KhO91WphfX39ncYsn89jcXER7XYbGxsb0DQN/X4frVYLjDFsbm5iY2MDu7u7KgNYliMolUqo1+uY
+nZ1NsjLeQPg+m5mbnSvp4HqjuY/P92Z3HAeFQgHVahW3b9/GvXv3UC6Xr3Q813VRLBZRrVaxvLz8
+xmLv2XUI4EoBGOMSu+PXSUH47PHk6/P5PGZmZlCpVFTv616vh729PcRxjIODA7RaLZXNLPuy37t3
+D9vb2zBNE8PhEKenp9jc3ESn00G320Wn01Gl4h3HQaPRwMzMzHspdS7P/bK1kRWJpeBdLpfxySef
+4O7du6jValf6HCn2l8tl3Lhx48r32rtcV7YXJTBeD9PmkCCI64XK+NY1aJEGwzRgRdZkFYk0fkXX
+ANvw4BgxPC+E58fw/QBhGCEIQ8RS/I6iNHNEpFGSKWJK0UQhyI1GEMS1gwFpqPfZf2fpfxRg6Uvk
+b841aEyDoXMYugbTNFSEd9YQluK367qTpc5lxveZfRVBEARBnOVsxrdMqpCVAOM4RhQnu2xdB/qm
+B8eMMfIieF4MPwgRBiHt4QmCIAiC+Jdkms0//jeh/s5Yau8zgLM0cUhPfizLVMHurusqW1+2OHMc
+B5adEb11PfG/poHunF0/u/9aCN/vA03X4OgONE3D3Tt34bruuCczY2i1WrBtG0EQKCd4t9uF53ng
+nMO2bWxubqJer+PTTz8F5xxBEEwOlq7DdV3UajXcv38f/+2//TfMzs5e6fxkhnOv18O333575Uzx
+i3BdF3NzcxiNRqjVajBNE61WC91uF1EUYXNzE8+ePcPx8bHKAJYZt7VaDbVaTfU0f1POZvwC46zf
+txEHz94UnHM4joNKpYK7d+/iT3/6E5aWlt5onA3DUOXU3+e1XXZ9014z7XgAwBlXwnetVsPh4SHi
+OEa/38fOzg7iOEaz2USr1cLs7CyKxSIWFhawsrKCO3fu4LvvvlPrqd1uY2dnB8PhUP2EYaiyrWu1
+Gur1OhzHeav5Pju+0+bs7PVKdF2H4zhK+P7jH/+ItbW1K3+WLKsuH7I/NW+7hgmC+PBwNo4yNAxj
+ImglG7yiccDUGRyTYWDGGI1ieF4Mz+MIgghBIBCGcbpXGL8fgDrGtOcEPTsIgriuTNu3Zf9Nig7Z
+QM5sexvTNJWwLTO8swJ4VviW+/BsFZ3raAQTBEEQHx75HRGzWH1vGIYxkRgh0TiDoQG2weAY6R7e
+jOB5IYIACAKBKBJJ5jft4QmCIAiC+BfiMptf/pY2v7T3szZ/tnWZtPmlrS9/W5Z1zubPZntfdB4f
+imshfEtxTJa+FkIgDENwzs/1an7d4GlcQ7FUxKJYBOcc1WoV9+7dQ6fTQbvdRrfbRa/XQ6fTwe7u
+Lg4ODjAajRBFETzPw/HxMTY2NpDL5RAEAXK5nCpdHUURhsMhut0uhBDI5/NKPL4sCza7kR6NRu8l
+88GyLFQqFXiep/pP93o91d96b28PX331lepZzTlHoVDA4uIilpaWUCwW3+pzNU1T2R4yqED2d263
+20kv6zC6+vH05Hi5XA6WZamAg9FohG63iziOkcvlUC6XLy2POE1wftPsc03T4DgO8vm8Ohff91Wf
+brlOphGGIQaDAVqtlnqdfHhk13YWmcVdrVbhOA6EEOh0Otje3lbZ30AS5NBoNLC0tKRKuFcqFbiu
+i9PTU4xGIxwfH6sS7VEUgTGmSlIUi0Xkcrkrl4t/WzRNU9nppmmCc656fMs+5bZtv/FcAvhZsoXC
+IFQtDmQ/bzmHb1oZgSCInxfGGAQEGGPQdR1CiNRxZk48U7J9wKWY43keRqOReobKai9Zhxs5zQiC
++Ji5ihGczbiTBqxhGKrsrKwcJUVuWd5c/j1p9zNuDaRKnKdlzi86D4IgCOJfG8YZuEi+e+I4Tvp8
+WxaASd+A/H4yTVPt4eUP7eEJgiAIgvhX5SqB7sCk8C33VdLml6K2ZVkTdn72z5ZlJUK5biibP9u2
++brZ+x9cyWGMwTAM1UNbioNBEChRVQrfrxs8IQS4xlEul1EoFDA3N4cHDx7A83z0el10u10cHx9j
+f38f29vb+Otf/6pKoMsN88nJCV69eoVarQYhBFzXVcK3FGR7vd6EIHuZKCczzsIwRBiGygn0rpim
+iUqlAsaYEr6bzSZGo5HqEy2vrd1uQ9M0FAoF3LhxA0tLSyiVSm/1uZqmqcgPwzAmhOpOp4PBYIAo
+fgPhWxsL32fHWWavu66LSqXyRuMchqGKHr4qnPOJa2OMIY5jeJ6HbrebiPqXCN+yd/xwOEQcx+rh
+IYMEskI84wyFQgEzMzOo1+uwLEsJ357nQQihypXL7P7l5WUsLi5ifn4elUoFjuOAc47hcKiCHmSm
+t3ww5fN5FItF5PP5n/zhkx0/GRSRncswDN9qLoMgeOMghrchCJNzlYYzgInIp4v6uxMEcT1gnEGD
+pkRv6SjjfFLUkQ4zuaELggCe5ynhW/6czRgHJh1j5DgjCOJj4KpGcFb4zvZazZadlQGd0uiVgncS
+9W3BNA1lOKtjpdne180IJgiCIK4PsnKT3MNnye7h5feRZVnwfR+e5yEIgisL32f/fNm/EQRBEARB
+fAy8qfB9tspb1uaXQe/TbH7pE9Azrc1koPt1tPc/uPANALqmAyZUVmVWAPU8D4PBAN1uVzmqp4lg
+MrNZZuZ6ngfHcVCtVlEsFuHYNqrVKirlCsrlMvL5PHZ3d7GxsaEEYikcep4HxhJhMp/PI5/Pq+hT
+3/fR6/Wws7ODR48eIY5j1Ot1VCoVaFwD18ZC8GAwwNHREZrNJsIwnOjJfJGAelWkM8lOr2t+fh6d
+TgfNZlMJ0NJpL8u5l0olrKysYHl5+a37JctMcyEECoUCNE1DFEVK3Nzb28OzZ89gmibK5TKKxSJE
+2o+pP0iE4U6nM1GW2/d9zM3NoVAoQNd1lbXe7/exu7uLx48fQ9M0zMzMoFqtqnGWPduHwyGOjo5w
+fHyMIAhUBPDs7Czm5ubg6Fcr8W1ZlhpL2Y89CAKVzX5wcIBXr16hUCiiUMijUCjA930EQYDj42Ns
+bm7i+fPnar51XVfidqlUgqFPlrfP5/OYnZ2dKEOeFV2jKALnSUn0hYUFLC0toVqtqt7X9XodR0dH
+6Ha7KjteCKEic+Tat237ZxGODcNAqVTCwsICisWiKlEWBAH6/T729vbw+PFjOI6Den0GMzP1c3Mp
+s9ePj48xGo1U6YzZxixm567WVuBtGY1GaLVaaLVa8H0fQggV6OE4zju3JyAI4qeFMQZwgMWTzjEA
+ME3rXLa33NTJ57h0msm9QFb4npYlQk4zgiA+Bt5E+D6b9S2zt+V+TO6x5c/Y+DWV6J3N9uZsXPKM
+IAiCIKYxbQ9/luzeXn7/yD18tvId7eEJgiAIgvhX421tftWre4rNny1rLn+kL/VsoPt15YML34wx
+cI1Dh64G13Ec5YT2fR+dTgenp6coFopqYM/Sbnfw4sULvHz5Eqenp2i1WqjX67hz5w5u3bqlBGxd
+12FaSRm+RqOBYrGohK5sT2/HcTAzM6OEXiniyVLlL1++xJdffol+v49PP/1UZYab3FSZ40eHR/j+
+h+/x+PFjxHGMarUK0zSxv79/rn/426JpGqrVKlZWVtButzEYDAAkAqrc7IdhqPosr66u4saNG2+d
+8S0ziWW2u67rSrTknGNrawvfffcdGGO4ffs2XNdVBsfp6SmeP3+OjY0NNJtNnJycoFAoYG1tDTdu
+3FDjLMV6xhhevXqFv/zlLxgOh3jw4IHKxjZgqHE+Pj7GDz/8gB9//BFBEKBaraJer+P+/fsoFUtX
+7m1t2zbq9TqGwyHK5TIMw1DCtxACOzs7ePLkCVzXxY0bN5BzcxOC/8uXL/HkyRNVdtx1XZTLZSVY
+G+ZYOJWlyLPCN2MMQggVFCGrHORyOczPz2NhYQGFQgGMMRSLRczNzeHo6EhFNkt0XUc+n0ej0UCp
+VPrZSnSbpolarYaVlZXketNKDlLM39rawt/+9jeEYYgHDx6gUMgnD00k49xqtdBsNvHDDz/g8ePH
+6Pf7qFarqNVquH//PgrFtwvWuCrD4RDNZlOVj5djKUt6yCx2giCuH/L5Kf+cdZqNBe9x/2/5E4bh
+1ExvWWlG/r6sPKKEHGYEQVxXLtu/XGQEnxW/s89O0zRh6AYMM/mzDFyWr1eZ3tc08psgCIK4HmT3
+8BpP9u5n/RcycFV+15imqfyF0hcihW8petMeniAIgiCIfyXexObP9ua+zOaXtr60/2Wmd7bEubT5
+r6Pd/8GFbyDdyOqaEr1t2wYAVbpIZtsyxuDm3KmZl/1+TwmTu7u72N/fR6PRUOWpa7UaZuoz0A0d
+YZBk1J7tYycnWGbUNhoN5HI51Ot15PN5dLtdVep8d3cX33zzjSrJni251Ol0cHBwgO3tbfz973/H
+t99+C845lpeXUa1W0Wq1VFbvu8I5V2KjLOMuhFBGgIzekBnYy8vLSkB9G0zTRKFQQBzHqNVqqtl9
+VgD+/vvvAUCVG5clpra3t/GPf/wDT58+xdHREU5OTlTp9aWlJdTrdRQKBbiuO3G87777To1XtrRC
+r9fDwcEB9vb21DhHUYSlpSWsrq6iXq/DD/w3urZqtQohhJpzeW2e56mMZcMwVGBBq9VCu93Gs2fP
+8OLFC2xtbSkRxbZtzMzMYG1tTQVRZNd8LpcDZ8n8ycAJaaTJ1xiGgUKhgIWFBczPz6NQKIAzrjKr
+9/f30Wq1Jow1XdeVMF4ul3/y3t4SwzCU0D8zM6N6i3uep+bq+++/V3Mp+7pbloXhcIj9/X0cHh7i
+66+/xjfffIPRaITFxUXcuHEDtVoNN2/e/EnPv9/v4+joCEdHRxgOh+qaZK/07PwRBHE9kRs4WWlE
+ijjZjV0URap/jczyzjrLwjBU31vSYXYVp9lV/jtBEMTPzesM0LNGcFYAz/btksJ2thSa/HvWWM5m
+ep/tI04QBEEQ05BZ3xrG4nd2D58VvrNlzeXv1+3hARK/CYIgCIL45+Qqorf8c9beZ4ypPVfWtpc2
+f7b12USQ+0cS6H4thG+J4zio1Wqo1+sq63I0GuHg4AAvXrxQ2c1SGJ9GHMfodrvY39/H8fExms0m
+Hj16pDK+pdN7MBjg6dOn2N3dVVnSSQnmuspAbsw0YJgGVlZWcP/+fei6rkqXdzodbG5uYjQaYXd3
+F3/961/VYpBCX7vdxt7eHvb391XJ6/eNpmlKFNzf38eTJ08m/rvsny2zoMvlMlzXfessYJkBa5om
+lpeXcefOHQBQGdzNZhM//vgjms0mHj9+jJmZGWV8dDodHB4eotlsThghMtBgZWUF9+7dA2MMh4eH
+ODw8RLfbxdbWFkajEfb29vDVV1+pm8/3fVXmW46z67rwPO+tx9JxHJRKJSwtLeH27duIogjNZhPH
+x8c4PDzEN998g93dXfz9739HtVrFcDjEaDTC/v4+Xr58qT5blhpfXV3F559/jsXFxXOZ57quw3Zs
+JayWSiX4vj+xHuXYlMtllIolWJYFxpOM78XFRezu7mJnZ+fccbPC98+V8S37tRcLRSwvL+PevXsI
+w1AJyd1uFzs7O/A8D0dHR/j222/VwzMIAvR6PXS7XRW4YhgGarXaz3LuANBqtbC1tYXt7W10u101
+BzMzM5idnUU+n//ZzoUgiDdnIuubMzDBVIUYXdfV5i4MQ9WmQ7bXkM6ys329Xyd6k5OMIIiPkbPG
+6bSs74my51yDpksRXIOuaxNitxTHGWPQuEaiN0EQBHFlrrqH1/j4u0fXdZU0kM30zu7lAZwTvyW0
+hycIgiAI4p+Vi0qfZ230bKW3s0Hv0s7XNV35AbJZ4h9LoPu1Er5t20atVsPs7CyCIFD9ug8ODrC+
+vo5qtYpbt25deoyswDocDvHq1auJ6AT5miiK4HkeRqMRGGOwLAuu66LRaODmzZtYWVlFoZAIXaur
+q/jss89UqfPDw0Ocnp6i1+vh8PAQjx8/nohIleVRZQRqEASq5PP7RgYD3Lx5E69evUIul5v475Zl
+KdG9VquhVCohl8u99YKU4nChUMCNGzdw//59eJ4H3/dVtmyn08GrV6+UQC2NimzPpWKxiHK5DCDJ
+tJbC92effaZKp+/v70+M89OnTyf6BmbHWZarnZmZUWWq35Ss8+7GjRu4d+8eRqMRgiBQQnyr1cKz
+Z8/OGVuyLL/necjn82otr62t4fPPP1fZ49M+L5fLoVgsolAooNfrwfd9NS65XA6lUgnVahWlUkn1
+SSyVSlhcXMT29va5OZfC9/z8PEql0s+W8c05T9ZbMVkbDx8+VGtjd3dXleI/OjrC8+fPL53LIAhQ
+qVRU5vXPQbvdxvb2Nvb29tDv9wEkwnej0Uj6vheKP9u5EATxdmS/22Tm99metZqmTZRBzArd2bKI
+lznMyFlGEMTHzuvEb2DcU/Xsc/Tsn9V//0gMYIIgCOJ6cZU9fBRF0GJtYs8+rbQ57eEJgiAIgiCm
+2/zTKr5lbfxppdCz/+1jsvmvlfDtui7m5uawvLyMbreLw8NDJYCur69jeXkZo9EIcRyfqx0vMzMX
+FxdxcHCAo6MjnJ6eKuHN87yJDC4gERbz+TyKxSLq9ToWFxdx9+5dzM3NoVhMShsLIbC4uIjPP/9c
+TbxlWRgMBhgMBvA8D8PhUImV2VJMKgO2WMTCwgKWlpawsLCA7e1t1Xv0XWGMwXVd1Ot1NBoNVCoV
+VCoV+L6P4XCo+i7fuHEDMzMzcBxnao/0N/k8KXAuLi7iF7/4xUTP1H6/j+FwiCAIMBqNJkq6y94A
+tm2jUqlgcXERy8vLqrf3wsICHj58CCBxtJmmiX6/j8FgoK7n7DjLKBQp8M/NzWFpaUmVlTeNq4u+
+ck2ZhomFhYWJa+OcYzAYqHMYDAaqlDsw7n1eqVTQaDQwNzeHhw8f4vbt26hWq0rknvZ5Mqu7VqtB
+CKGCMWTAQqVSgeu60PTk/UIIFArJmpqdnVV9z6Wxp+u6EsYrlcrPJnzLtaHrOubm5vDgwQMIIVRU
+tpxLGXAiA0HkOMhgAllOf25uDouLi6pH+k9Ralz2k/d9H8fHxzg4OMDJyYnqMZ/P5zE/P4/FxUUU
+SyR8E8THgAymyZZMlM4z+ZySTjIZwCQdY2f7AQK4MOObHGcEQXysvC4CPPt3zji4xs/1AM/+GcBH
+ZQATBEEQ14/3sYcHcOFvCe3hCYIgCIL4Z+eyQPezv2Ww+7Tqb2eD3Kcd47pyrYRvKTKtrq5id3cX
+mqZhNBrh6OgItm3j/v37GI1GSaRnOiHZ9y4uLiKOYyVO7u7u4vT0FJ1OB57nwfM85ZzRNE1lHS8v
+L+P+/fu4f/8+PvnkE9RqNViWpUpELywswHEcJZI3Gg1sbW1hZ2cHrVZLZYfKTbhsAC/LXctM9Xv3
+7mF5eRkvXrx4r+WnbduGruuoVCqo1WqoVCro9XoIwxCWZWFmZga3bt3CzMzMexNBNU1T5btltnKl
+UsH29jZ2d3fR6XRUf3UpUMsxLJfLuHnzJu7cuYO7d++iVqtB0zTMz83Dtmw1zrOzs9jc3MT29vbU
+cZaBBbZtq3FeW1vDvXv3cOfOHczNzcG03vx6ucaxsLAA27ZRKBSQy+WQz+exs7ODvb09tZ6iKFI9
+DnK5HCqVCur1Ou7du4cHDx7g7t27WFtbU6+56GFgWRbK5TJmZ2cxGo3QarWgaZrql12r1c7NW1KN
+YB5zc3MoFAowDEOV8JXC98LCAirlys9W6lzCGMPs7CxM00SxWESpVMLMzAw2Nzexs7ODk5MT9Pv9
+iQhtwzBg27bqs16tVrGysoIHDx7g/v376h583wRBgH6/j263i+PjYxwfH6PT6SAIAmiapp4rS0tL
+Scb9NX+gEwSRMOE4A5TzjDOOKI7GvcAzmSHSiUZOMoIg/tW4aunzi6LDzx6D9ksEQRDE23Du+4P2
+8ARBEARBEO/Mm9j8E6J42srs7Hs+Bq6V8O26Lubn59Fut/HkyRNYlqV6ZXPOcXBwgGaziUqlAsdx
+JjJAHcdRYpssdV2pVLC3t4ejoyP0+330+32VLW4YBmZmZtBoNHD//n38+te/xi9/+UvVa1mWRQeA
+er2Oer2OYrGohO/Hjx/DcRwcHByg0+mg2+0qEc80Tbiui0KhgPn5eSwtLWFtbQ33799Ho9HA0tIS
+Go0G4jhGEAQwTROVSkUJ2HIxXQXGmMqkrtfrWFpawsrKCk5OTmDbNubm5rC2toZPPvkEs7Ozr82a
+ZYypnuBS4GWMoVwuw3Eclf3MOcfMzAxmZmZQLBZh2zbK5TIeP34M27ZxdHSEbreLfr+vRN9CoYBa
+rYaZmRncvXsXDx48wNraGqrVGjjnqNaqqNaqKJaKSvh+9OgRXNdVgnOn05kQS13XRT6fx8LCAhYX
+F5XwfevWLRQKhbcS+hlj6try+YL6nGfPnsGyLBwfH6vMdpmlXC6XVVb/F198gd/85je4ceOGGrPL
+sG0bjUYDa2trCIIAnudB13XcuHEjM2/2xPnl3Bwsy8L8fCJ+z87OIgxDRFGkMs7n5+ZRLBUv/HzL
+slQZdVlevFqtolAoQDf0c2K9vG+y5dfn5+dRq9VQLpeRz+fV+pKVB8ql5N9nZmbw6NEj5HI5VfZc
+zqXss+u6LnK5HBYWFrCwsIC1tTXcvXsXt27eQrFUhGVZSkyX5xyGoTpn0zRVkMVV8X0fzWZT9YiX
+pfUty0I+n0elUsHc3Bzm5ubOlZQnCOJ6c/b5JYQA0xgYZxBx4gCLRQwAF2Z5ZyGnGUEQ/6xclAGe
+/bMqf86SfdbHavwSBEEQ15/sdwvt4QmCIAiCIN6Nt7X5P2Z7/9oJ33Nzc/B9H4uLi6hWq6rvb7/f
+x9bWFr799luEYYiVlRXMz8+r92qaBtd1IYTAzZs34boubt26hVarNZHxLYVvmfFdKpUwPz+P5eVl
+lIol2I59YRlyKcwbhoFSqYTV1VV0Oh0MBgNVgl2WmrYsS4nBlUoFMzMzmJ2dRT5fwO9+9zu4rotW
+q6VEPykCl8tl2LZ91SGboNFo4He/+x3K5bIS+kulEm7evIm1tTXMzMy8Vvg2TROfffYZgiDA0dGR
+KlV+//593LlzB7Va7VzmbS6Xw/LyMkzTVKJ2u91W5axlxIhtj7O5pZhYq9WQz08Kio7jYG5uDoZh
+oFgsYnV1Fa1WC8PhEMPhUI2zLDufHed6vY7Z2VmUiiWYlgmNv1tJ+Xw+h5WVFViWhYWFBdy7dw/d
+bleVx5Yl7V3XRblcRrVaxfLyMur1ZKyvUtK+XCrj/v37cBwHd+7cwdHRETRNU4L26urquTFinEGH
+joWFBfzpT39CuVxWAQGNRgO/+MUvUCqXkmAKbfpt3mg08Ic//AH5fF7dZ/V6HZ999lkq+ufPnf/C
+wgK++OILzMzM4NNPP8Xh4aFa24uLi1hYWJh4ve3YmJ2dha7rKBQKWFlZwenpqSobf3YuZfZ7uVwe
+z2XmOmZmZvCHP/wBruuqc67Vanj48CEajQby+fwbZbh3Ol08fvwYX3/9NZ4/f47BYKAqNcgWAbVa
+Da7rvjaAgSCI683Z8olAkkECACIWyoGWhRxlBEH8qzHNoD0rdp993cdoBBMEQRAfB7SHJwiCIAiC
+eH9cZPOfTcb9mEVvAGDiGu0I4zhGGIY4PDzEf//v/x3/43/8D7x69QqdTgdRFOHhw4f49a9/jV/9
+6lf49a9/jU8//VS9N9vbJwxD+L6PKIwQRkkWbBwLCDHu7y17CmuaBsMwkmxSwwTj7MKMUZmhHUUR
+fN9Xf46iGHEcjQeVMTDGoWlc9TfWdV1lSw+HQ9UjWpJzc3BcR53T2/Thln2wk97aEeI4EdUt04Lt
+2OocLlusQgj0ej0MBgMEQaDGy3EcJf6dPb8ojBCEAYIgUJnDUpTMLi/ONei6pvp3G4aRXC/XVP/q
+7DqQx/J9f+o4y2NyPu4PrWlacmzdUFEp73JzZq8t8AMEYYAwjM6tJSmAy17npmkm2ftX+PwojOD5
+nhLTgyAAYxyGkfS7lmszO0ZyrnzfR7/XR3/QV/8mKw44jjPRo2HaepEBEvL+kSX6HceBxjXV01Ei
+A0h831f3mbxWea7Z4Iq3mUtN06BrOnQjWa/yvmSMqdLk2XOWGfkXnfNla/3x48f4n//zf+J//a//
+he3tbezv70PTNKyuruL27dv44x//iP/4j//AJ5988s5riSCI68lFZREJgiCIhI/d4CUIgiD++aA9
+PEEQBEEQxPvhn9Hmv1YZ31IQLRaLWFlZwaeffgohBF6+fInj42McHR3h0aNHcBwH9XodjUZDCbLZ
+ZuuGYfwk/YA550rUc133rY9jmiZKpdJ7Pz9Z8vxdji1LkhcKhSu/R9MT4fptM9XPItfB++pH/i68
+72u76DNc3X3jNcUYU0JztVZ948+VY1ypVK78nrPC9ut433P5Nuc8jZPmCY6bx/jhhx/w7NkzbG5u
+otfrAQDy+TyWl5fxy1/+EmtraygWi28ViEIQxMfBuX7gBEEQxDnoGUkQBEFcJ+h7iSAIgiAI4v3w
+z7ivulbCt8QwDKysrOC3v/0toihCq9XC0dERTk9PEQSBKjm+uLiIen1GZWwTBEFchf2DfTx69Ahf
+f/011tfX0Ww2IYQA5xylUglra2v47W9/i4WFBertTRD/AvwzbvAIgiAIgiAI4p8d2scTBEEQBEEQ
+Z7mWwreu61hcXIRhGGi321hfX8f29jY8z0O320U+n8ezZ88wPz+PIAjg2LYqXU6ZmQRBTCNbdn1r
+awv/+Mc/8I9//APb29toNpuoVCooFAqYnZ3FrVu38PDhQ7iuS0E1BEEQBEEQBEEQBEEQBEEQBEEQ
+HwHXUvjWNA25XA71+gxWV1fx6aefYjAYYH9/X2V+f/vttxiNRvjVr34FEQssLC6iVCoin89/6NMn
+COIa4nkejo+P0Ww28ejRI3z//fdYX19Hu90GYwwzMzO4c+eOKnHuOI7qaU8QBEEQBEEQBEEQBEEQ
+BEEQBEFcb66l8M05R87NwbZtrK2todlsIggCfPPNNzg5OcHJyQlGoxEODw8hhEC1WoVhGjAMnYRv
+giCmIp8ZL1++xOPHj/Hjjz9ia2sLURSBc47Z2Vn85je/wb/927/h5s2bcB0XXONUOo0gCIIgCIIg
+CIIgCIIgCIIgCOIj4FoK3wCg6Ro0aKjX6/jkk0/AGIPruqjVahgMBtB1HblcDrdu3UKtVoPrujAM
+40OfNkEQ1xT5zKhUKrh9+zZ6vR4WFxeVsP3rX/8an3/+OVZXV1GpVKDplOlNEARBEARBEARBEARB
+EARBEATxscCEEOJDn8RlDAYDnJ620G630Gw2VfY35xyGYWB+bh6zc7MoFotwHIf68RIEMRXf99Hv
+99Hr9XBwcIDDw0P0ej0lfM/Pz2NhYQGVSgW2bcNxnA99ygRBEARBEARBEARBEARBEARBEMQVufbC
+N0EQBEEQBEEQBEEQBEEQBEEQBEEQBEFcBv/QJ0AQBEEQBEEQBEEQBEEQBEEQBEEQBEEQ7wIJ3wRB
+EARBEARBEARBEARBEARBEARBEMRHDQnfBEEQBEEQBEEQBEEQBEEQBEEQBEEQxEcNCd8EQRAEQRAE
+QRAEQRAEQRAEQRAEQRDERw0J3wRBEARBEARBEARBEARBEARBEARBEMRHzf8HYUAUlGQscmUAAACK
+ZVhJZk1NACoAAAAIAAQBGgAFAAAAAQAAAD4BGwAFAAAAAQAAAEYBKAADAAAAAQACAACHaQAEAAAA
+AQAAAE4AAAAAAAAAkAAAAAEAAACQAAAAAQADkoYABwAAABIAAAB4oAIABAAAAAEAAAe+oAMABAAA
+AAEAAAV4AAAAAEFTQ0lJAAAAU2NyZWVuc2hvdKvE71EAAAAldEVYdGRhdGU6Y3JlYXRlADIwMjEt
+MTEtMzBUMDY6MTM6MDQrMDA6MDCEuH2lAAAAJXRFWHRkYXRlOm1vZGlmeQAyMDIxLTExLTMwVDA2
+OjEzOjA1KzAwOjAwU5LOrQAAABJ0RVh0ZXhpZjpFeGlmT2Zmc2V0ADc4ydR7JwAAABl0RVh0ZXhp
+ZjpQaXhlbFhEaW1lbnNpb24AMTk4Mu6YIC8AAAAZdEVYdGV4aWY6UGl4ZWxZRGltZW5zaW9uADE0
+MDB5bIOwAAAAXHRFWHRleGlmOlVzZXJDb21tZW50ADY1LCA4MywgNjcsIDczLCA3MywgMCwgMCwg
+MCwgODMsIDk5LCAxMTQsIDEwMSwgMTAxLCAxMTAsIDExNSwgMTA0LCAxMTEsIDExNkC4H3IAAAAo
+dEVYdGljYzpjb3B5cmlnaHQAQ29weXJpZ2h0IEFwcGxlIEluYy4sIDIwMjF9ve4mAAAAGXRFWHRp
+Y2M6ZGVzY3JpcHRpb24ATEcgSERSIDRLavavUwAAABh0RVh0eG1wOlBpeGVsWERpbWVuc2lvbgAx
+OTgyfYvQ/wAAABh0RVh0eG1wOlBpeGVsWURpbWVuc2lvbgAxNDAw6n9zYAAAABp0RVh0eG1wOlVz
+ZXJDb21tZW50AFNjcmVlbnNob3TT4LJ8AAAAAElFTkSuQmCC" />
+</svg>
diff --git a/content/en/blog/_posts/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm.md b/content/en/blog/_posts/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm.md
new file mode 100644
index 0000000000..12eaaf3ff4
--- /dev/null
+++ b/content/en/blog/_posts/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm.md
@@ -0,0 +1,201 @@
+---
+layout: blog
+title: "Kubernetes-in-Kubernetes and the WEDOS PXE bootable server farm"
+slug: kubernetes-in-kubernetes-and-pxe-bootable-server-farm
+date: 2021-12-22
+---
+
+**Author**: Andrei Kvapil (WEDOS)
+
+
+When you own two data centers, thousands of physical servers, virtual machines and hosting for hundreds of thousands sites, Kubernetes can actually simplify the management of all these things. As practice has shown, by using Kubernetes, you can declaratively describe and manage not only applications, but also the infrastructure itself. I work for the largest Czech hosting provider **WEDOS Internet a.s** and today I'll show you two of my projects — [Kubernetes-in-Kubernetes](https://github.com/kvaps/kubernetes-in-kubernetes) and [Kubefarm](https://github.com/kvaps/kubefarm).
+
+With their help you can deploy a fully working Kubernetes cluster inside another Kubernetes using Helm in just a couple of commands. How and why?
+
+Let me introduce you to how our infrastructure works. All our physical servers can be divided into two groups: **control-plane** and **compute** nodes. Control plane nodes are usually set up manually, have a stable OS installed, and designed to run all cluster services including Kubernetes control-plane. The main task of these nodes is to ensure the smooth operation of the cluster itself. Compute nodes do not have any operating system installed by default, instead they are booting the OS image over the network directly from the control plane nodes. Their work is to carry out the workload.
+
+{{< figure src="/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/scheme01.svg" alt="Kubernetes cluster layout" >}}
+
+Once nodes have downloaded their image, they can continue to work without keeping connection to the PXE server. That is, a PXE server is just keeping rootfs image and does not hold any other complex logic. After our nodes have booted, we can safely restart the PXE server, nothing critical will happen to them.
+
+{{< figure src="/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/scheme02.svg" alt="Kubernetes cluster after bootstrapping" >}}
+
+After booting, the first thing our nodes do is join to the existing Kubernetes cluster, namely, execute the **kubeadm join** command so that kube-scheduler could schedule some pods on them and launch various workloads afterwards. From the beginning we used the scheme when nodes were joined into the same cluster used for the control-plane nodes.
+
+{{< figure src="/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/scheme03.svg" alt="Kubernetes scheduling containers to the compute nodes" >}}
+
+This scheme worked stably for over two years. However later we decided to add containerized Kubernetes to it. And now we can spawn new Kubernetes-clusters very easily right on our control-plane nodes which are now member special admin-clusters. Now, compute nodes can be joined directly to their own clusters - depending on the configuration.
+
+{{< figure src="/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/scheme04.svg" alt="Multiple clusters are running in single Kubernetes, compute nodes joined to them" >}}
+
+## Kubefarm
+
+This project came with the goal of enabling anyone to deploy such an infrastructure in just a couple of commands using Helm and get about the same in the end.
+
+At this time, we moved away from the idea of a monocluster. Because it turned out to be not very convenient for managing work of several development teams in the same cluster. The fact is that Kubernetes was never designed as a multi-tenant solution and at the moment it does not provide sufficient means of isolation between projects. Therefore, running separate clusters for each team turned out to be a good idea. However, there should not be too many clusters, to let them be convenient to manage. Nor is it too small to have sufficient independence between development teams.
+
+The scalability of our clusters became noticeably better after that change. The more clusters you have per number of nodes, the smaller the failure domain and the more stable they work. And as a bonus, we got a fully declaratively described infrastructure. Thus, now you can deploy a new Kubernetes cluster in the same way as deploying any other application in Kubernetes.
+
+It uses [Kubernetes-in-Kubernetes](http://github.com/kvaps/kubernetes-in-kubernetes) as a basis, [LTSP](https://github.com/ltsp/ltsp/) as PXE-server from which the nodes are booted, and automates the DHCP server configuration using [dnsmasq-controller](https://github.com/kvaps/dnsmasq-controller):
+
+
+{{< figure src="/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/kubefarm.png" alt="Kubefarm" >}}
+
+## How it works
+
+Now let's see how it works. In general, if you look at Kubernetes as from an application perspective, you can note that it follows all the principles of [The Twelve-Factor App](https://12factor.net/), and is actually written very well. Thus, it means running Kubernetes as an app in a different Kubernetes shouldn't be a big deal.
+
+### Running Kubernetes in Kubernetes
+
+Now let's take a look at the [Kubernetes-in-Kubernetes](https://github.com/kvaps/kubernetes-in-kubernetes) project, which provides a ready-made Helm chart for running Kubernetes in Kubernetes. 
+
+Here is the parameters that you can pass to Helm in the values file:
+
+* [**kubernetes/values.yaml**](https://github.com/kvaps/kubernetes-in-kubernetes/tree/v0.13.1/deploy/helm/kubernetes)
+
+<img alt="Kubernetes is just five binaries" style="float: right; max-height: 280px;" src="/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/5binaries.png">
+
+Beside **persistence** (storage parameters for the cluster), the Kubernetes control-plane components are described here: namely: **etcd cluster**, **apiserver**, **controller-manager** and **scheduler**. These are pretty much standard Kubernetes components. There is a light-hearted saying that “Kubernetes is just five binaries”. So here is where the configuration for these binaries is located.
+
+If you ever tried to bootstrap a cluster using kubeadm, then this config will remind you it's configuration. But in addition to Kubernetes entities, you also have an admin container. In fact, it is a container which holds two binaries inside: **kubectl** and **kubeadm**. They are used to generate kubeconfig for the above components and to perform the initial configuration for the cluster. Also, in an emergency, you can always exec into it to check and manage your cluster.
+
+After the release [has been deployed](https://asciinema.org/a/407280), you can see a list of pods: **admin-container**, **apiserver** in two replicas, **controller-manager**, **etcd-cluster**, **scheduller** and the initial job that initializes the cluster. In the end you have a command, which allows you to get shell into the admin container, you can use it to see what is happening inside:
+
+[![](/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot01.svg)](https://asciinema.org/a/407280?autoplay=1)
+
+Also, let's take look at the certificates. If you've ever installed Kubernetes, then you know that it has a _scary_ directory `/etc/kubernetes/pki` with a bunch of some certificates. In case of Kubernetes-in-Kubernetes, you have fully automated management of them with cert-manager. Thus, it is enough to pass all certificates parameters to Helm during installation, and all the certificates will automatically be generated for your cluster.
+
+[![](/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot02.svg)](https://asciinema.org/a/407280?t=15&autoplay=1)
+
+Looking at one of the certificates, eg. apiserver, you can see that it has a list of DNS names and IP addresses. If you want to make this cluster accessible outside, then just describe the additional DNS names in the values file and update the release. This will update the certificate resource, and cert-manager will regenerate the certificate. You'll no longer need to think about this. If kubeadm certificates need to be renewed at least once a year, here the cert-manager will take care and automatically renew them.
+
+[![](/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot03.svg)](https://asciinema.org/a/407280?t=25&autoplay=1)
+
+Now let's log into the admin container and look at the cluster and nodes. Of course, there are no nodes, yet, because at the moment you have deployed just the blank control-plane for Kubernetes. But in kube-system namespace you can see some coredns pods waiting for scheduling and configmaps already appeared. That is, you can conclude that the cluster is working:
+
+[![](/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot04.svg)](https://asciinema.org/a/407280?t=30&autoplay=1)
+
+Here is the [diagram of the deployed cluster](https://kvaps.github.io/images/posts/Kubernetes-in-Kubernetes-and-PXE-bootable-servers-farm/Argo_CD_kink_network.html). You can see services for all Kubernetes components: **apiserver**, **controller-manager**, **etcd-cluster** and **scheduler**. And the pods on right side to which they forward traffic.
+
+[![](/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/argocd01.png)](https://kvaps.github.io/images/posts/Kubernetes-in-Kubernetes-and-PXE-bootable-servers-farm/Argo_CD_kink_network.html)
+
+*By the way, the diagram, is drawn in [ArgoCD](https://argoproj.github.io/argo-cd/) — the GitOps tool we use to manage our clusters, and cool diagrams are one of its features.*
+
+### Orchestrating physical servers
+
+OK, now you can see the way how is our Kubernetes control-plane deployed, but what about worker nodes, how are we adding them? As I already said, all our servers are bare metal. We do not use virtualization to run Kubernetes, but we orchestrate all physical servers by ourselves.
+
+Also, we do use Linux network boot feature very actively. Moreover, this is exactly the booting, not some kind of automation of the installation. When the nodes are booting, they just run a ready-made system image for them. That is, to update any node, we just need to reboot it - and it will download a new image. It is very easy, simple and convenient.
+
+For this, the [Kubefarm](https://github.com/kvaps/kubefarm) project was created, which allows you to automate this. The most commonly used examples can be found in the [examples](https://github.com/kvaps/kubefarm/tree/v0.13.1/examples) directory. The most standard of them named [generic](https://github.com/kvaps/kubefarm/tree/v0.13.1/examples/generic). Let's take a look at values.yaml:
+
+* [**generic/values.yaml**](https://github.com/kvaps/kubefarm/blob/v0.13.1/examples/generic/values.yaml)
+
+Here you can specify the parameters which are passed into the upstream Kubernetes-in-Kubernetes chart. In order for you control-plane to be accessible from the outside, it is enough to specify the IP address here, but if you wish, you can specify some DNS name here.
+
+In the PXE server configuration you can specify a timezone. You can also add an SSH key for logging in without a password (but you can also specify a password), as well as kernel modules and parameters that should be applied during booting the system.
+
+Next comes the **nodePools** configuration, i.e. the nodes themselves. If you've ever used a terraform module for gke, then this logic will remind you of it. Here you statically describe all nodes with a set of parameters:
+
+-   **Name** (hostname);
+    
+-   **MAC-addresses** — we have nodes with two network cards, and each one can boot from any of the MAC addresses specified here.
+    
+-   **IP-address**, which the DHCP server should issue to this node.
+    
+
+In this example, you have two pools: the first has five nodes, the second has only one, the second pool has also two tags assigned. Tags are the way to describe configuration for specific nodes. For example, you can add specific DHCP options for some pools, options for the PXE server for booting (e.g. here is debug option enabled) and set of **kubernetesLabels** and **kubernetesTaints** options. What does that mean?
+
+For example, in this configuration you have a second nodePool with one node. The pool has **debug** and **foo** tags assigned. Now see the options for **foo** tag in **kubernetesLabels**. This means that the m1c43 node will boot with these two labels and taint assigned. Everything seems to be simple. Now [let's try](https://asciinema.org/a/407282) this in practice.
+
+### Demo
+
+Go to [examples](https://github.com/kvaps/kubefarm/tree/v0.13.1/examples) and update previously deployed chart to Kubefarm. Just use the [generic](https://github.com/kvaps/kubefarm/tree/v0.13.1/examples/generic) parameters and look at the pods. You can see that a PXE server and one more job were added. This job essentially goes to the deployed Kubernetes cluster and creates a new token. Now it will run repeatedly every 12 hours to generate a new token, so that the nodes can connect to your cluster.
+
+[![](/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot05.svg)](https://asciinema.org/a/407282?autoplay=1)
+
+In a [graphical representation](https://kvaps.github.io/images/posts/Kubernetes-in-Kubernetes-and-PXE-bootable-servers-farm/Argo_CD_Applications_kubefarm-network.html), it looks about the same, but now apiserver started to be exposed outside.
+
+[![](/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/argocd02.png)](https://kvaps.github.io/images/posts/Kubernetes-in-Kubernetes-and-PXE-bootable-servers-farm/Argo_CD_Applications_kubefarm-network.html)
+
+In the diagram, the IP is highlighted in green, the PXE server can be reached through it. At the moment, Kubernetes does not allow creating a single LoadBalancer service for TCP and UDP protocols by default, so you have to create two different services with the same IP address. One is for TFTP, and the second for HTTP, through which the system image is downloaded.
+
+But this simple example is not always enough, sometimes you might need to modify the logic at boot. For example, here is a directory [advanced_network](https://github.com/kvaps/kubefarm/tree/v0.13.1/examples/advanced_network), inside which there is a [values file](https://github.com/kvaps/kubefarm/tree/v0.13.1/examples/advanced_network) with a simple shell script. Let's call it `network.sh`:
+
+* [**network.sh**](https://github.com/kvaps/kubefarm/blob/v0.13.1/examples/advanced_network/values.yaml#L14-L78)
+
+All this script does is take environment variables at boot time, and generates a network configuration based on them. It creates a directory and puts the netplan config inside. For example, a bonding interface is created here. Basically, this script can contain everything you need. It can hold the network configuration or generate the system services, add some hooks or describe any other logic. Anything that can be described in bash or shell languages will work here, and it will be executed at boot time.
+
+Let's see how it can be [deployed](https://asciinema.org/a/407284). Let's pass the generic values file as the first parameter, and an additional values file as the second parameter. This is a standard Helm feature. This way you can also pass the secrets, but in this case, the configuration is just expanded by the second file: 
+
+[![](/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot06.svg)](https://asciinema.org/a/407284?autoplay=1)
+
+Let's look at the configmap **foo-kubernetes-ltsp** for the netboot server and make sure that `network.sh` script is really there. These commands used to configure the network at boot time:
+
+[![](/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot07.svg)](https://asciinema.org/a/407284?t=15&autoplay=1)
+
+[Here](https://asciinema.org/a/407286) you can see how it works in principle. The chassis interface (we use HPE Moonshots 1500) have the nodes, you can enter `show node list` command to get a list of all the nodes. Now you can see the booting process.
+
+[![](/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot08.svg)](https://asciinema.org/a/407286?autoplay=1)
+
+You can also get their MAC addresses by `show node macaddr all` command. We have a clever operator that collects MAC-addresses from chassis automatically and passes them to the DHCP server. Actually, it's just creating custom configuration resources for dnsmasq-controller which is running in same admin Kubernetes cluster. Also, trough this interface you can control the nodes themselves, e.g. turn them on and off.
+
+If you have no such opportunity to enter the chassis through iLO and collect a list of MAC addresses for your nodes, you can consider using [catchall cluster](https://asciinema.org/a/407287) pattern. Purely speaking, it is just a cluster with a dynamic DHCP pool. Thus, all nodes that are not described in the configuration to other clusters will automatically join to this cluster.
+
+[![](/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot09.svg)](https://asciinema.org/a/407287?autoplay=1)
+
+For example, you can see a special cluster with some nodes. They are joined to the cluster with an auto-generated name based on their MAC address. Starting from this point you can connect to them and see what happens there. Here you can somehow prepare them, for example, set up the file system and then rejoin them to another cluster. 
+
+Now let's try connecting to the node terminal and see how it is booting. After the BIOS, the network card is configured, here it sends a request to the DHCP server from a specific MAC address, which redirects it to a specific PXE server. Later the kernel and initrd image are downloaded from the server using the standard HTTP protocol:
+
+[![](/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot10.svg)](https://asciinema.org/a/407286?t=28&autoplay=1)
+
+After loading the kernel, the node downloads the rootfs image and transfers control to systemd. Then the booting proceeds as usual, and after that the node joins Kubernetes: 
+
+[![](/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot11.svg)](https://asciinema.org/a/407286?t=80&autoplay=1)
+
+If you take a look at **fstab**, you can see only two entries there: **/var/lib/docker** and **/var/lib/kubelet**, they are mounted as **tmpfs** (in fact, from RAM). At the same time, the root partition is mounted as **overlayfs**, so all changes that you make here on the system will be lost on the next reboot. 
+
+Looking into the block devices on the node, you can see some nvme disk, but it has not yet been mounted anywhere. There is also a loop device - this is the exact rootfs image downloaded from the server. At the moment it is located in RAM, occupies 653 MB and mounted with the **loop** option.
+
+If you look in **/etc/ltsp**, you find the `network.sh` file that was executed at boot. From containers, you can see running `kube-proxy` and `pause` container for it.
+
+[![](/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot12.svg)](https://asciinema.org/a/407286?t=100&autoplay=1)
+
+## Details
+
+### Network Boot Image
+
+But where does the main image come from? There is a little trick here. The image for the nodes is built through the [Dockerfile](https://github.com/kvaps/kubefarm/tree/v0.13.1/build/ltsp) along with the server. The [Docker multi-stage build](https://docs.docker.com/develop/develop-images/multistage-build/) feature allows you to easily add any packages and kernel modules exactly at the stage of the image build. It looks like this:
+
+* [**Dockerfile**](https://github.com/kvaps/kubefarm/blob/v0.13.1/build/ltsp/Dockerfile)
+
+What's going on here? First, we take a regular Ubuntu 20.04 and install all the packages we need. First of all we install the **kernel**, **lvm**, **systemd**, **ssh**. In general, everything that you want to see on the final node should be described here. Here we also install `docker` with `kubelet` and `kubeadm`, which are used to join the node to the cluster.
+
+And then we perform an additional configuration. In the last stage, we simply install `tftp` and `nginx` (which serves our image to clients), **grub** (bootloader). Then root of the previous stages copied into the final image and generate squashed image from it. That is, in fact, we get a docker image, which has both the server and the boot image for our nodes. At the same time, it can be easily updated by changing the Dockerfile.
+
+### Webhooks and API aggregation layer
+
+I want to pay special attention to the problem of webhooks and aggregation layer. In general, webhooks is a Kubernetes feature that allows you to respond to the creation or modification of any resources. Thus, you can add a handler so that when resources are applied, Kubernetes must send request to some pod and check if configuration of this resource is correct, or make additional changes to it.
+
+But the point is, in order for the webhooks to work, the apiserver must have direct access to the cluster for which it is running. And if it is started in a separate cluster, like our case, or even separately from any cluster, then Konnectivity service can help us here. Konnectivity is one of the optional but officially supported Kubernetes components.
+
+Let's take cluster of four nodes for example, each of them is running a `kubelet` and we have other Kubernetes components running outside: `kube-apiserver`, `kube-scheduler` and `kube-controller-manager`. By default, all these components interact with the apiserver directly - this is the most known part of the Kubernetes logic. But in fact, there is also a reverse connection. For example, when you want to view the logs or run a `kubectl exec command`, the API server establishes a connection to the specific kubelet independently:
+
+{{< figure src="/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/konnectivity01.svg" alt="Kubernetes apiserver reaching kubelet" >}}
+
+But the problem is that if we have a webhook, then it usually runs as a standard pod with a service in our cluster. And when apiserver tries to reach it, it will fail because it will try to access an in-cluster service named **webhook.namespace.svc** being outside of the cluster where it is actually running:
+
+{{< figure src="/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/konnectivity02.svg" alt="Kubernetes apiserver can't reach webhook" >}}
+
+And here Konnectivity comes to our rescue. Konnectivity is a tricky proxy server developed especially for Kubernetes. It can be deployed as a server next to the apiserver. And Konnectivity-agent is deployed in several replicas directly in the cluster you want to access. The agent establishes a connection to the server and sets up a stable channel to make apiserver able to access all webhooks and all kubelets in the cluster. Thus, now all communication with the cluster will take place through the Konnectivity-server:
+
+{{< figure src="/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/konnectivity03.svg" alt="Kubernetes apiserver reaching webhook via konnectivity" >}}
+
+## Our plans
+
+Of course, we are not going to stop at this stage. People interested in the project often write to me. And if there will be a sufficient number of interested people, I hope to move Kubernetes-in-Kubernetes project under [Kubernetes SIGs](https://github.com/kubernetes-sigs), by representing it in form of the official Kubernetes Helm chart. Perhaps, by making this project independent we'll gather an even larger community.
+
+I am also thinking of integrating it with the Machine Controller Manager, which would allow creating worker nodes, not only of physical servers, but also,  for example, for creating virtual machines using kubevirt and running them in the same Kubernetes cluster. By the way, it also allows to spawn virtual machines in the clouds, and have a control-plane deployed locally.
+
+I am also considering the option of integrating with the Cluster-API so that you can create physical Kubefarm clusters directly through the Kubernetes environment. But at the moment I'm not completely sure about this idea. If you have any thoughts on this matter, I'll be happy to listen to them.
diff --git a/content/en/blog/_posts/2022-01-07-kubernetes-is-moving-on-from-dockershim.md b/content/en/blog/_posts/2022-01-07-kubernetes-is-moving-on-from-dockershim.md
new file mode 100644
index 0000000000..9e7672f2b8
--- /dev/null
+++ b/content/en/blog/_posts/2022-01-07-kubernetes-is-moving-on-from-dockershim.md
@@ -0,0 +1,103 @@
+---
+layout: blog
+title: "Kubernetes is Moving on From Dockershim: Commitments and Next Steps"
+date: 2022-01-07
+slug: kubernetes-is-moving-on-from-dockershim
+---
+
+**Authors:** Sergey Kanzhelev (Google), Jim Angel (Google), Davanum Srinivas (VMware), Shannon Kularathna (Google), Chris Short (AWS), Dawn Chen (Google)
+
+Kubernetes is removing dockershim in the upcoming v1.24 release. We're excited
+to reaffirm our community values by supporting open source container runtimes,
+enabling a smaller kubelet, and increasing engineering velocity for teams using
+Kubernetes. If you [use Docker Engine as a container runtime](/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use/)
+for your Kubernetes cluster, get ready to migrate in 1.24! To check if you're
+affected, refer to [Check whether dockershim removal affects you](/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you/).
+
+## Why we’re moving away from dockershim
+
+Docker was the first container runtime used by Kubernetes. This is one of the
+reasons why Docker is so familiar to many Kubernetes users and enthusiasts.
+Docker support was hardcoded into Kubernetes – a component the project refers to
+as dockershim.
+As containerization became an industry standard, the Kubernetes project added support
+for additional runtimes. This culminated in the implementation of the
+container runtime interface (CRI), letting system components (like the kubelet)
+talk to container runtimes in a standardized way. As a result, dockershim became
+an anomaly in the Kubernetes project. 
+Dependencies on Docker and dockershim have crept into various tools
+and projects in the CNCF ecosystem ecosystem, resulting in fragile code.
+
+By removing the
+dockershim CRI, we're embracing the first value of CNCF: "[Fast is better than
+slow](https://github.com/cncf/foundation/blob/master/charter.md#3-values)".
+Stay tuned for future communications on the topic!
+
+## Deprecation timeline
+
+We [formally announced](/blog/2020/12/08/kubernetes-1-20-release-announcement/) the dockershim deprecation in December 2020. Full removal is targeted
+in Kubernetes 1.24, in April 2022. This timeline
+aligns with our [deprecation policy](/docs/reference/using-api/deprecation-policy/#deprecating-a-feature-or-behavior),
+which states that deprecated behaviors must function for at least 1 year
+after their announced deprecation.
+
+We'll support Kubernetes version 1.23, which includes
+dockershim, for another year in the Kubernetes project. For managed
+Kubernetes providers, vendor support is likely to last even longer, but this is
+dependent on the companies themselves. Regardless, we're confident all cluster operations will have
+time to migrate. If you have more questions about the dockershim removal, refer
+to the [Dockershim Deprecation FAQ](/dockershim).
+
+We asked you whether you feel prepared for the migration from dockershim in this
+survey: [Are you ready for Dockershim removal](/blog/2021/11/12/are-you-ready-for-dockershim-removal/).
+We had over 600 responses. To everybody who took time filling out the survey,
+thank you.
+
+The results show that we still have a lot of ground to cover to help you to
+migrate smoothly. Other container runtimes exist, and have been promoted
+extensively. However, many users told us they still rely on dockershim,
+and sometimes have dependencies that need to be re-worked. Some of these
+dependencies are outside of your control. Based on your feedback, here are some
+of the steps we are taking to help.
+
+## Our next steps
+
+Based on the feedback you provided:
+
+- CNCF and the 1.24 release team are committed to delivering documentation in
+  time for the 1.24 release. This includes more informative blog posts like this
+  one, updating existing code samples, tutorials, and tasks, and producing a
+  migration guide for cluster operators.
+- We are reaching out to the rest of the CNCF community to help prepare them for
+  this change.
+
+If you're part of a project with dependencies on dockershim, or if you're
+interested in helping with the migration effort, please join us! There's always
+room for more contributors, whether to our transition tools or to our
+documentation. To get started, say hello in the
+[#sig-node](https://kubernetes.slack.com/archives/C0BP8PW9G)
+channel on [Kubernetes Slack](https://slack.kubernetes.io/)!
+
+## Final thoughts
+
+As a project, we've already seen cluster operators increasingly adopt other
+container runtimes through 2021. 
+We believe there are no major blockers to migration. The steps we're taking to
+improve the migration experience will light the path more clearly for you.
+
+We understand that migration from dockershim is yet another action you may need to
+do to keep your Kubernetes infrastructure up to date. For most of you, this step
+will be straightforward and transparent. In some cases, you will encounter
+hiccups or issues. The community has discussed at length whether postponing the
+dockershim removal would be helpful. For example, we recently talked about it in
+the [SIG Node discussion on November 11th](https://docs.google.com/document/d/1Ne57gvidMEWXR70OxxnRkYquAoMpt56o75oZtg-OeBg/edit#bookmark=id.r77y11bgzid)
+and in the [Kubernetes Steering committee meeting held on December 6th](https://docs.google.com/document/d/1qazwMIHGeF3iUh5xMJIJ6PDr-S3bNkT8tNLRkSiOkOU/edit#bookmark=id.m0ir406av7jx).
+We already [postponed](https://github.com/kubernetes/enhancements/pull/2481/) it
+once in 2021 because the adoption rate of other
+runtimes was lower than we wanted, which also gave us more time to identify
+potential blocking issues.
+
+At this point, we believe that the value that you (and Kubernetes) gain from
+dockershim removal makes up for the migration effort you'll have. Start planning
+now to avoid surprises. We'll have more updates and guides before Kubernetes
+1.24 is released.
diff --git a/content/en/blog/_posts/2022-01-10-meet-our-contributors-APAC-India-region-01.md b/content/en/blog/_posts/2022-01-10-meet-our-contributors-APAC-India-region-01.md
new file mode 100644
index 0000000000..a1ac132c48
--- /dev/null
+++ b/content/en/blog/_posts/2022-01-10-meet-our-contributors-APAC-India-region-01.md
@@ -0,0 +1,105 @@
+---
+layout: blog
+title: "Meet Our Contributors - APAC (India region)"
+date: 2022-01-10
+slug: meet-our-contributors-india-ep-01
+canonicalUrl: https://www.kubernetes.dev/blog/2022/01/10/meet-our-contributors-india-ep-01/
+---
+
+**Authors & Interviewers:** [Anubhav Vardhan](https://github.com/anubha-v-ardhan), [Atharva Shinde](https://github.com/Atharva-Shinde), [Avinesh Tripathi](https://github.com/AvineshTripathi), [Debabrata Panigrahi](https://github.com/Debanitrkl), [Kunal Verma](https://github.com/verma-kunal), [Pranshu Srivastava](https://github.com/PranshuSrivastava), [Pritish Samal](https://github.com/CIPHERTron), [Purneswar Prasad](https://github.com/PurneswarPrasad), [Vedant Kakde](https://github.com/vedant-kakde)
+
+**Editor:** [Priyanka Saggu](https://psaggu.com)
+
+---
+
+Good day, everyone 👋
+
+Welcome to the first episode of the APAC edition of the "Meet Our Contributors" blog post series.
+
+
+In this post, we'll introduce you to five amazing folks from the India region who have been actively contributing to the upstream Kubernetes projects in a variety of ways, as well as being the leaders or maintainers of numerous community initiatives.
+
+💫 *Let's get started, so without further ado…*
+
+
+## [Arsh Sharma](https://github.com/RinkiyaKeDad)
+
+Arsh is currently employed with Okteto as a Developer Experience engineer. As a new contributor, he realised that 1:1 mentorship opportunities were quite beneficial in getting him started with the upstream project.
+
+He is presently a CI Signal shadow on the Kubernetes 1.23 release team. He is also contributing to the SIG Testing and SIG Docs projects, as well as to the [cert-manager](https://github.com/cert-manager/infrastructure) tools development work that is being done under the aegis of SIG Architecture.
+
+To the newcomers, Arsh helps plan their early contributions sustainably.
+
+> _I would encourage folks to contribute in a way that's sustainable. What I mean by that
+> is that it's easy to be very enthusiastic early on and take up more stuff than one can
+> actually handle. This can often lead to burnout in later stages. It's much more sustainable
+> to work on things iteratively._
+
+## [Kunal Kushwaha](https://github.com/kunal-kushwaha)
+
+Kunal Kushwaha is a core member of the Kubernetes marketing council. He is also a CNCF ambassador and one of the founders of the [CNCF Students Program](https://community.cncf.io/cloud-native-students/).. He also served as a Communications role shadow during the 1.22 release cycle.
+
+At the end of his first year, Kunal began contributing to the [fabric8io kubernetes-client](https://github.com/fabric8io/kubernetes-client) project. He was then selected to work on the same project as part of Google Summer of Code. Kunal mentored people on the same project, first through Google Summer of Code then through Google Code-in.
+
+As an open-source enthusiast, he believes that diverse participation in the community is beneficial since it introduces new perspectives and opinions and respect for one's peers. He has worked on various open-source projects, and his participation in communities has considerably assisted his development as a developer.
+
+
+> _I believe if you find yourself in a place where you do not know much about the
+> project, that's a good thing because now you can learn while contributing and the
+> community is there to help you. It has helped me a lot in gaining skills, meeting
+> people from around the world and also helping them. You can learn on the go,
+> you don't have to be an expert. Make sure to also check out no code contributions
+> because being a beginner is a skill and you can bring new perspectives to the
+> organisation._
+
+## [Madhav Jivarajani](https://github.com/MadhavJivrajani)
+
+
+Madhav Jivarajani works on the VMware Upstream Kubernetes stability team. He began contributing to the Kubernetes project in January 2021 and has since made significant contributions to several areas of work under SIG Architecture, SIG API Machinery, and SIG ContribEx (contributor experience).
+
+Among several significant contributions are his recent efforts toward the Archival of [design proposals](https://github.com/kubernetes/community/issues/6055), refactoring the ["groups" codebase](https://github.com/kubernetes/k8s.io/pull/2713) under k8s-infra repository to make it mockable and testable, and improving the functionality of the [GitHub k8s bot](https://github.com/kubernetes/test-infra/issues/23129).
+
+In addition to his technical efforts, Madhav oversees many projects aimed at assisting new contributors. He organises bi-weekly "KEP reading club" sessions to help newcomers understand the process of adding new features, deprecating old ones, and making other key changes to the upstream project. He has also worked on developing [Katacoda scenarios](https://github.com/kubernetes-sigs/contributor-katacoda) to assist new contributors to become acquainted with the process of contributing to k/k. In addition to his current efforts to meet with community members every week, he has organised several [new contributors workshops (NCW)](https://www.youtube.com/watch?v=FgsXbHBRYIc).
+
+> _I initially did not know much about Kubernetes. I joined because the community was
+> super friendly. But what made me stay was not just the people, but the project itself.
+> My solution to not feeling overwhelmed in the community was to gain as much context
+> and knowledge into the topics that I was interested in and were being discussed. And
+> as a result I continued to dig deeper into Kubernetes and the design of it.
+> I am a systems nut & thus Kubernetes was an absolute goldmine for me._
+
+
+## [Rajas Kakodkar](https://github.com/rajaskakodkar)
+
+Rajas Kakodkar currently works at VMware as a Member of Technical Staff. He has been engaged in many aspects of the upstream Kubernetes project since 2019.
+
+He is now a key contributor to the Testing special interest group. He is also active in the SIG Network community. Lately, Rajas has contributed significantly to the [NetworkPolicy++](https://docs.google.com/document/d/1AtWQy2fNa4qXRag9cCp5_HsefD7bxKe3ea2RPn8jnSs/) and [`kpng`](https://github.com/kubernetes-sigs/kpng) sub-projects.
+
+One of the first challenges he ran across was that he was in a different time zone than the upstream project's regular meeting hours. However, async interactions on community forums progressively corrected that problem.
+
+> _I enjoy contributing to Kubernetes not just because I get to work on
+> cutting edge tech but more importantly because I get to work with
+> awesome people and help in solving real world problems._
+
+## [Rajula Vineet Reddy](https://github.com/rajula96reddy)
+
+Rajula Vineet Reddy, a Junior Engineer at CERN, is a member of the Marketing Council team under SIG ContribEx . He also served as a release shadow for SIG Release during the 1.22 and 1.23 Kubernetes release cycles.
+
+He started looking at the Kubernetes project as part of a university project with the help of one of his professors. Over time, he spent a significant amount of time reading the project's documentation, Slack discussions, GitHub issues, and blogs, which helped him better grasp the Kubernetes project and piqued his interest in contributing upstream. One of his key contributions was his assistance with automation in the SIG ContribEx Upstream Marketing subproject.
+
+According to Rajula, attending project meetings and shadowing various project roles are vital for learning about the community.
+
+> _I find the community very helpful and it's always_
+> “you get back as much as you contribute”.
+> _The more involved you are, the more you will understand, get to learn and
+> contribute new things._
+> 
+> _The first step to_ “come forward and start” _is hard. But it's all gonna be
+> smooth after that. Just take that jump._
+
+---
+
+If you have any recommendations/suggestions for who we should interview next, please let us know in #sig-contribex. We're thrilled to have other folks assisting us in reaching out to even more wonderful individuals of the community. Your suggestions would be much appreciated.
+
+
+We'll see you all in the next one. Everyone, till then, have a happy contributing! 👋
diff --git a/content/en/blog/_posts/2022-01-19-Securing-Admission-Controllers.md b/content/en/blog/_posts/2022-01-19-Securing-Admission-Controllers.md
new file mode 100644
index 0000000000..002b2bd531
--- /dev/null
+++ b/content/en/blog/_posts/2022-01-19-Securing-Admission-Controllers.md
@@ -0,0 +1,44 @@
+---
+layout: blog
+title: "Securing Admission Controllers"
+date: 2022-01-19
+slug: secure-your-admission-controllers-and-webhooks
+---
+
+**Author:** Rory McCune (Aqua Security)
+
+[Admission control](/docs/reference/access-authn-authz/admission-controllers/) is a key part of Kubernetes security, alongside authentication and authorization. Webhook admission controllers are extensively used to help improve the security of Kubernetes clusters in a variety of ways including restricting the privileges of workloads and ensuring that images deployed to the cluster meet organization’s security requirements.
+
+However, as with any additional component added to a cluster, security risks can present themselves. A security risk example is if the deployment and management of the admission controller are not handled correctly. To help admission controller users and designers manage these risks appropriately, the [security documentation](https://github.com/kubernetes/community/tree/master/sig-security#security-docs) subgroup of SIG Security has spent some time developing a [threat model for admission controllers](https://github.com/kubernetes/sig-security/tree/main/sig-security-docs/papers/admission-control). This threat model looks at likely risks which may arise from the incorrect use of admission controllers, which could allow security policies to be bypassed, or even allow an attacker to get unauthorised access to the cluster.
+
+From the threat model, we developed a set of security best practices that should be adopted to ensure that cluster operators can get the security benefits of admission controllers whilst avoiding any risks from using them.
+
+## Admission controllers and good practices for security
+
+From the threat model, a couple of themes emerged around how to ensure the security of admission controllers.
+
+### Secure webhook configuration
+
+It’s important to ensure that any security component in a cluster is well configured and admission controllers are no different here. There are a couple of security best practices to consider when using admission controllers
+
+* **Correctly configured TLS for all webhook traffic**. Communications between the API server and the admission controller webhook should be authenticated and encrypted to ensure that attackers who may be in a network position to view or modify this traffic cannot do so. To achieve this access the API server and webhook must be using certificates from a trusted certificate authority so that they can validate their mutual identities
+* **Only authenticated access allowed**. If an attacker can send an admission controller large numbers of requests, they may be able to overwhelm the service causing it to fail. Ensuring all access requires strong authentication should mitigate that risk.
+* **Admission controller fails closed**. This is a security practice that has a tradeoff, so whether a cluster operator wants to configure it will depend on the cluster’s threat model. If an admission controller fails closed, when the API server can’t get a response from it, all deployments will fail. This stops attackers bypassing the admission controller by disabling it, but, can disrupt the cluster’s operation. As clusters can have multiple webhooks, one approach to hit a middle ground might be to have critical controls on a fail closed setups and less critical controls allowed to fail open.
+* **Regular reviews of webhook configuration**. Configuration mistakes can lead to security issues, so it’s important that the admission controller webhook configuration is checked to make sure the settings are correct. This kind of review could be done automatically by an Infrastructure As Code scanner or manually by an administrator.
+
+
+### Secure cluster configuration for admission control
+
+In most cases, the admission controller webhook used by a cluster will be installed as a workload in the cluster. As a result, it’s important to ensure that Kubernetes' security features that could impact its operation are well configured.
+
+* **Restrict [RBAC](/docs/reference/access-authn-authz/rbac/) rights**. Any user who has rights which would allow them to modify the configuration of the webhook objects or the workload that the admission controller uses could disrupt its operation. So it’s important to make sure that only cluster administrators have those rights.
+* **Prevent privileged workloads**. One of the realities of container systems is that if a workload is given certain privileges, it will be possible to break out to the underlying cluster node and impact other containers on that node. Where admission controller services run in the cluster they’re protecting, it’s important to ensure that any requirement for privileged workloads is carefully reviewed and restricted as much as possible.
+* **Strictly control external system access**. As a security service in a cluster admission controller systems will have access to sensitive information like credentials. To reduce the risk of this information being sent outside the cluster, [network policies](/docs/concepts/services-networking/network-policies/) should be used to restrict the admission controller services access to external networks.
+* **Each cluster has a dedicated webhook**. Whilst it may be possible to have admission controller webhooks that serve multiple clusters, there is a risk when using that model that an attack on the webhook service would have a larger impact where it’s shared. Also where multiple clusters use an admission controller there will be increased complexity and access requirements, making it harder to secure.
+
+
+### Admission controller rules
+
+A key element of any admission controller used for Kubernetes security is the rulebase it uses. The rules need to be able to accurately meet their goals avoiding false positive and false negative results. 
+
+* **Regularly test and review rules**. Admission controller rules need to be tested to ensure their accuracy. They also need to be regularly reviewed as the Kubernetes API will change with each new version, and rules need to be assessed with each Kubernetes release to understand any changes that may be required to keep them up to date.
diff --git a/content/en/blog/_posts/2022-02-07-sig-multicluster-spotlight/index.md b/content/en/blog/_posts/2022-02-07-sig-multicluster-spotlight/index.md
new file mode 100644
index 0000000000..4f155ed54d
--- /dev/null
+++ b/content/en/blog/_posts/2022-02-07-sig-multicluster-spotlight/index.md
@@ -0,0 +1,63 @@
+---
+layout: blog
+title: "Spotlight on SIG Multicluster"
+date: 2022-02-07
+slug: sig-multicluster-spotlight-2022
+canonicalUrl: https://www.kubernetes.dev/blog/2022/02/04/sig-multicluster-spotlight-2022/
+---
+
+**Authors:** Dewan Ahmed (Aiven) and Chris Short (AWS)
+
+## Introduction
+
+[SIG Multicluster](https://github.com/kubernetes/community/tree/master/sig-multicluster) is the SIG focused on how Kubernetes concepts are expanded and used beyond the cluster boundary. Historically, Kubernetes resources only interacted within that boundary - KRU or Kubernetes Resource Universe (not an actual Kubernetes concept). Kubernetes clusters, even now, don't really know anything about themselves or, about other clusters. Absence of cluster identifiers is a case in point. With the growing adoption of multicloud and multicluster deployments, the work SIG Multicluster doing is gaining a lot of attention. In this blog, [Jeremy Olmsted-Thompson, Google](https://twitter.com/jeremyot) and [Chris Short, AWS](https://twitter.com/ChrisShort) discuss the interesting problems SIG Multicluster is solving and how you can get involved. Their initials **JOT** and **CS** will be used for brevity.
+
+## A summary of their conversation
+
+**CS**: How long has the SIG Multicluster existed and how was the SIG in its infancy? How long have you been with this SIG?
+
+**JOT**: I've been around for almost two years in the SIG Multicluster. All I know about the infancy years is from the lore but even in the early days, it was always about solving this same problem. Early efforts have been things like [KubeFed](https://github.com/kubernetes-sigs/kubefed). I think there are still folks using KubeFed but it's a smaller slice. Back then, I think people out there deploying large numbers of Kubernetes clusters were really not at a point where we had a ton of real concrete use cases. Projects like KubeFed and [Cluster Registry](https://github.com/kubernetes-retired/cluster-registry) were developed around that time and the need back then can be associated to these projects. The motivation for these projects were how do we solve the problems that we think people are **going to have**, when they start expanding to multiple clusters. Honestly, in some ways, it was trying to do too much at that time.
+
+**CS**: How does KubeFed differ from the current state of SIG Multicluster? How does the **lore** differ from the **now**?
+
+**JOT**: Yeah, it was like trying to get ahead of potential problems instead of addressing specific problems. I think towards the end of 2019, there was a slow down in SIG multicluster work and we kind of picked it back up with one of the most active recent projects that is the [SIG Multicluster services (MCS)](https://github.com/kubernetes-sigs/mcs-api). 
+
+Now this is the shift to solving real specific problems. For example, 
+
+> I've got workloads that are spread across multiple clusters and I need them to talk to each other. 
+ 
+Okay, that's very straightforward and we know that we need to solve that. To get started, let's make sure that these projects can work together on a common API so you get the same kind of portability that you get with Kubernetes.
+
+There's a few implementations of the MCS API out there and more are being developed. But, we didn't build an implementation because depending on how you're deploying things there could be hundreds of implementations. As long as you only need the basic Multicluster service functionality, it'll just work on whatever background you want, whether it's Submariner, GKE, or a service mesh.
+
+My favorite example of "then vs. now" is cluster ID. A few years ago, there was an effort to define a cluster ID. A lot of really good thought went into this concept, for example, how do we make a cluster ID is unique across multiple clusters. How do we make this ID globally unique so it'll work in every contact? Let's say, there's an acquisition or merger of teams - does the cluster IDs still remain unique for those teams? 
+
+With Multicluster services, we found the need for an actual cluster ID, and it has a very specific need. To address this specific need, we're no longer considering every single Kubernetes cluster out there rather the ClusterSets - a grouping of clusters that work together in some kind of bounds. That's a much narrower scope than considering clusters everywhere in time and space. It also leaves flexibility for an implementer to define the boundary (a ClusterSet) beyond which this cluster ID will no longer be unique. 
+
+
+**CS**: How do you feel about the current state of SIG Multicluster versus where you're hoping to be in future?
+
+**JOT**: There's a few projects that are kind of getting started, for example, Work API. In the future, I think that some common practices around how do we deploy things across clusters are going to develop. 
+> If I have clusters deployed in a bunch of different regions; what's the best way to actually do that?
+
+The answer is, almost always, "it depends". Why are you doing this? Is it because there's some kind of compliance that makes you care about locality? Is it performance? Is it availability? 
+
+I think revisiting registry patterns will probably be a natural step after we have cluster IDs, that is, how do you actually associate these clusters together? Maybe you've got a distributed deployment that you run in your own data centers all over the world. I imagine that expanding the API in that space is going to be important as more multi cluster features develop. It really depends on what the community starts doing with these tools.
+
+**CS**: In the early days of Kubernetes, we used to have a few large Kubernetes clusters and now we're dealing with many small Kubernetes clusters - even multiple clusters for our own dev environments. How has this shift from a few large clusters to many small clusters affected the SIG? Has it accelerated the work or make it challenging in any way?
+
+**JOT**: I think that it has created a lot of ambiguity that needs solving. Originally, you'd have a dev cluster, a staging cluster, and a prod cluster. When the multi region thing came in, we started needing  dev/staging/prod clusters, per region. And then, sometimes clusters really need more isolation due to compliance or some regulations issues. Thus, we're ending up with a lot of clusters. I think figuring out the right balance on how many clusters should you actually have is important. The power of Kubernetes is being able to deploy a lot of things managed by a single control plane. So, it's not like every single workload that gets deployed should be in its own cluster. But I think it's pretty clear that we can't put every single workload in a single cluster.
+
+**CS**: What are some of your favorite things about this SIG?
+
+**JOT**: The complexity of the problems, the people and the newness of the space. We don't have right answers and we have to figure this out. At the beginning, we couldn't even think about multi clusters because there was no way to connect services across clusters. Now there is and we're starting to go tackle those problems, I think that this is a really fun place to be in because I expect that the SIG is going to get a lot busier the next couple of years. It's a very collaborative group and we definitely would like more people to come join us, get involved, raise their problems and bring their ideas. 
+
+**CS**: What do you think keeps people in this group? How has the pandemic affected you?
+
+**JOT**: I think it definitely got a little bit quieter during the pandemic. But for the most part; it's a very distributed group so whether you're calling in to our weekly meetings from a conference room or from your home, it doesn't make that huge of a difference. During the pandemic, a lot of people had time to focus on what's next for their scale and growth. I think that's what keeps people in the group - we have real problems that need to be solved which are very new in this space. And it's fun :)
+
+## Wrap up
+
+**CS**: That's all we have for today. Thanks Jeremy for your time.
+
+**JOT**: Thanks Chris. Everybody is welcome at our [bi-weekly meetings](https://github.com/kubernetes/community/tree/master/sig-multicluster#meetings). We love as many people to come as possible and welcome all questions and all ideas. It's a new space and it'd be great to grow the community.
\ No newline at end of file
diff --git a/content/en/blog/_posts/2022-02-16-sig-node-ci-subproject-celebrates/index.md b/content/en/blog/_posts/2022-02-16-sig-node-ci-subproject-celebrates/index.md
new file mode 100644
index 0000000000..86d31f5443
--- /dev/null
+++ b/content/en/blog/_posts/2022-02-16-sig-node-ci-subproject-celebrates/index.md
@@ -0,0 +1,192 @@
+---
+layout: blog
+title: 'SIG Node CI Subproject Celebrates Two Years of Test Improvements'
+date: 2022-02-16
+slug: sig-node-ci-subproject-celebrates
+canonicalUrl: https://www.kubernetes.dev/blog/2022/02/16/sig-node-ci-subproject-celebrates-two-years-of-test-improvements/
+---
+
+**Authors:** Sergey Kanzhelev (Google), Elana Hashman (Red Hat)
+
+Ensuring the reliability of SIG Node upstream code is a continuous effort
+that takes a lot of behind-the-scenes effort from many contributors.
+There are frequent releases of Kubernetes, base operating systems,
+container runtimes, and test infrastructure that result in a complex matrix that
+requires attention and steady investment to "keep the lights on."
+In May 2020, the Kubernetes node special interest group ("SIG Node") organized a new
+subproject for continuous integration (CI) for node-related code and tests. Since its
+inauguration, the SIG Node CI subproject has run a weekly meeting, and even the full hour
+is often not enough to complete triage of all bugs, test-related PRs and issues, and discuss all
+related ongoing work within the subgroup.
+
+Over the past two years, we've fixed merge-blocking and release-blocking tests, reducing time to merge Kubernetes contributors' pull requests thanks to reduced test flakes. When we started, Node test jobs only passed 42% of the time, and through our efforts, we now ensure a consistent >90% job pass rate. We've closed 144 test failure issues and merged 176 pull requests just in kubernetes/kubernetes. And we've helped subproject participants ascend the Kubernetes contributor ladder, with 3 new org members, 6 new reviewers, and 2 new approvers.
+
+The Node CI subproject is an approachable first stop to help new contributors
+get started with SIG Node. There is a low barrier to entry for new contributors
+to address high-impact bugs and test fixes, although there is a long
+road before contributors can climb the entire contributor ladder:
+it took over a year to establish two new approvers for the group.
+The complexity of all the different components that power Kubernetes nodes
+and its test infrastructure requires a sustained investment over a long period
+for developers to deeply understand the entire system,
+both at high and low levels of detail.
+
+We have several regular contributors at our meetings, however; our reviewers
+and approvers pool is still small. It is our goal to continue to grow
+contributors to ensure a sustainable distribution of work
+that does not just fall to a few key approvers.
+
+It's not always obvious how subprojects within SIGs are formed, operate,
+and work. Each is unique to its sponsoring SIG and tailored to the projects
+that the group is intended to support. As a group that has welcomed many
+first-time SIG Node contributors, we'd like to share some of the details and
+accomplishments over the past two years,
+helping to demystify our inner workings and celebrate the hard work
+of all our dedicated contributors!
+
+## Timeline
+
+***May 2020.*** SIG Node CI group was formed on May 11, 2020, with more than
+[30 volunteers](https://docs.google.com/document/d/1fb-ugvgdSVIkkuJ388_nhp2pBTy_4HEVg5848Xy7n5U/edit#bookmark=id.vsb8pqnf4gib)
+signed up, to improve SIG Node CI signal and overall observability.
+Victor Pickard focused on getting
+[testgrid jobs](https://testgrid.k8s.io/sig-node) passing
+when Ning Liao suggested forming a group around this effort and came up with
+the [original group charter document](https://docs.google.com/document/d/1yS-XoUl6GjZdjrwxInEZVHhxxLXlTIX2CeWOARmD8tY/edit#heading=h.te6sgum6s8uf).
+The SIG Node chairs sponsored group creation with Victor as a subproject lead.
+Sergey Kanzhelev joined Victor shortly after as a co-lead.
+
+At the kick-off meeting, we discussed which tests to concentrate on fixing first
+and discussed merge-blocking and release-blocking tests, many of which were failing due
+to infrastructure issues or buggy test code.
+
+The subproject launched weekly hour-long meetings to discuss ongoing work
+discussion and triage.
+
+***June 2020.*** Morgan Bauer, Karan Goel, and Jorge Alarcon Ochoa were
+recognized as reviewers for the SIG Node CI group for their contributions,
+helping significantly with the early stages of the subproject.
+David Porter and Roy Yang also joined the SIG test failures GitHub team.
+
+***August 2020.*** All merge-blocking and release-blocking tests were passing,
+with some flakes. However, only 42% of all SIG Node test jobs were green, as there
+were many flakes and failing tests.
+
+***October 2020.*** Amim Knabben becomes a Kubernetes org member for his
+contributions to the subproject.
+
+***January 2021.*** With healthy presubmit and critical periodic jobs passing,
+the subproject discussed its goal for cleaning up the rest of periodic tests
+and ensuring they passed without flakes.
+
+Elana Hashman joined the subproject, stepping up to help lead it after
+Victor's departure.
+
+***February 2021.*** Artyom Lukianov becomes a Kubernetes org member for his
+contributions to the subproject.
+
+***August 2021.*** After SIG Node successfully ran a [bug scrub](https://groups.google.com/g/kubernetes-dev/c/w2ghO4ihje0/m/VeEql1LJBAAJ)
+to clean up its bug backlog, the scope of the meeting was extended to
+include bug triage to increase overall reliability, anticipating issues
+before they affect the CI signal.
+
+Subproject leads Elana Hashman and Sergey Kanzhelev are both recognized as
+approvers on all node test code, supported by SIG Node and SIG Testing.
+
+***September 2021.*** After significant deflaking progress with serial tests in
+the 1.22 release spearheaded by Francesco Romani, the subproject set a goal
+for getting the serial job fully passing by the 1.23 release date.
+
+Mike Miranda becomes a Kubernetes org member for his contributions
+to the subproject.
+
+***November 2021.*** Throughout 2021, SIG Node had no merge or
+release-blocking test failures. Many flaky tests from past releases are removed
+from release-blocking dashboards as they had been fully cleaned up.
+
+Danielle Lancashire was recognized as a reviewer for SIG Node's subgroup, test code.
+
+The final node serial tests were completely fixed. The serial tests consist of
+many disruptive and slow tests which tend to be flakey and are hard
+to troubleshoot. By the 1.23 release freeze, the last serial tests were
+fixed and the job was passing without flakes.
+
+[![Slack announcement that Serial tests are green](serial-tests-green.png)](https://kubernetes.slack.com/archives/C0BP8PW9G/p1638211041322900)
+
+The 1.23 release got a special shout out for the tests quality and CI signal.
+The SIG Node CI subproject was proud to have helped contribute to such
+a high-quality release, in part due to our efforts in identifying
+and fixing flakes in Node and beyond.
+
+[![Slack shoutout that release was mostly green](release-mostly-green.png)](https://kubernetes.slack.com/archives/C92G08FGD/p1637175755023200)
+
+***December 2021.*** An estimated 90% of test jobs were passing at the time of
+the 1.23 release (up from 42% in August 2020).
+
+Dockershim code was removed from Kubernetes. This affected nearly half of SIG Node's
+test jobs and the SIG Node CI subproject reacted quickly and retargeted all the
+tests. SIG Node was the first SIG to complete test migrations off dockershim,
+providing examples for other affected SIGs. The vast majority of new jobs passed
+at the time of introduction without further fixes required. The [effort of
+removing dockershim](https://k8s.io/dockershim)) from Kubernetes is ongoing.
+There are still some wrinkles from the dockershim removal as we uncover more
+dependencies on dockershim, but we plan to stabilize all test jobs
+by the 1.24 release.
+
+## Statistics
+
+Our regular meeting attendees and subproject participants for the past few months:
+
+- Aditi Sharma
+- Artyom Lukianov
+- Arnaud Meukam
+- Danielle Lancashire
+- David Porter
+- Davanum Srinivas
+- Elana Hashman
+- Francesco Romani
+- Matthias Bertschy
+- Mike Miranda
+- Paco Xu
+- Peter Hunt
+- Ruiwen Zhao
+- Ryan Phillips
+- Sergey Kanzhelev
+- Skyler Clark
+- Swati Sehgal
+- Wenjun Wu
+
+The [kubernetes/test-infra](https://github.com/kubernetes/test-infra/) source code repository contains test definitions. The number of
+Node PRs just in that repository:
+- 2020 PRs (since May): [183](https://github.com/kubernetes/test-infra/pulls?q=is%3Apr+is%3Aclosed+label%3Asig%2Fnode+created%3A2020-05-01..2020-12-31+-author%3Ak8s-infra-ci-robot+)
+- 2021 PRs: [264](https://github.com/kubernetes/test-infra/pulls?q=is%3Apr+is%3Aclosed+label%3Asig%2Fnode+created%3A2021-01-01..2021-12-31+-author%3Ak8s-infra-ci-robot+)
+
+Triaged issues and PRs on CI board (including triaging away from the subgroup scope):
+
+- 2020 (since May): [132](https://github.com/issues?q=project%3Akubernetes%2F43+created%3A2020-05-01..2020-12-31)
+- 2021: [532](https://github.com/issues?q=project%3Akubernetes%2F43+created%3A2021-01-01..2021-12-31+)
+
+## Future
+
+Just "keeping the lights on" is a bold task and we are committed to improving this experience.
+We are working to simplify the triage and review processes for SIG Node.
+
+Specifically, we are working on better test organization, naming,
+and tracking:
+
+- https://github.com/kubernetes/enhancements/pull/3042
+- https://github.com/kubernetes/test-infra/issues/24641
+- [Kubernetes SIG-Node CI Testgrid Tracker](https://docs.google.com/spreadsheets/d/1IwONkeXSc2SG_EQMYGRSkfiSWNk8yWLpVhPm-LOTbGM/edit#gid=0)
+
+We are also constantly making progress on improved tests debuggability and de-flaking.
+
+If any of this interests you, we'd love for you to join us!
+There's plenty to learn in debugging test failures, and it will help you gain
+familiarity with the code that SIG Node maintains.
+
+You can always find information about the group on the
+[SIG Node](https://github.com/kubernetes/community/tree/master/sig-node) page.
+We give group updates at our maintainer track sessions, such as
+[KubeCon + CloudNativeCon Europe 2021](https://kccnceu2021.sched.com/event/iE8E/kubernetes-sig-node-intro-and-deep-dive-elana-hashman-red-hat-sergey-kanzhelev-google) and
+[KubeCon + CloudNative North America 2021](https://kccncna2021.sched.com/event/lV9D/kubenetes-sig-node-intro-and-deep-dive-elana-hashman-derek-carr-red-hat-sergey-kanzhelev-dawn-chen-google?iframe=no&w=100%&sidebar=yes&bg=no).
+Join us in our mission to keep the kubelet and other SIG Node components reliable and ensure smooth and uneventful releases!
diff --git a/content/en/blog/_posts/2022-02-16-sig-node-ci-subproject-celebrates/release-mostly-green.png b/content/en/blog/_posts/2022-02-16-sig-node-ci-subproject-celebrates/release-mostly-green.png
new file mode 100644
index 0000000000..c88eb3b37e
Binary files /dev/null and b/content/en/blog/_posts/2022-02-16-sig-node-ci-subproject-celebrates/release-mostly-green.png differ
diff --git a/content/en/blog/_posts/2022-02-16-sig-node-ci-subproject-celebrates/serial-tests-green.png b/content/en/blog/_posts/2022-02-16-sig-node-ci-subproject-celebrates/serial-tests-green.png
new file mode 100644
index 0000000000..4ea64fedb7
Binary files /dev/null and b/content/en/blog/_posts/2022-02-16-sig-node-ci-subproject-celebrates/serial-tests-green.png differ
diff --git a/content/en/blog/_posts/2022-02-17-updated-dockershim-faq.md b/content/en/blog/_posts/2022-02-17-updated-dockershim-faq.md
new file mode 100644
index 0000000000..4950f88097
--- /dev/null
+++ b/content/en/blog/_posts/2022-02-17-updated-dockershim-faq.md
@@ -0,0 +1,224 @@
+---
+layout: blog
+title: "Updated: Dockershim Removal FAQ"
+linkTitle: "Dockershim Removal FAQ"
+date: 2022-02-17
+slug: dockershim-faq
+aliases: [ '/dockershim' ]
+---
+
+**This supersedes the original
+[Dockershim Deprecation FAQ](/blog/2020/12/02/dockershim-faq/) article,
+published in late 2020. The article includes updates from the v1.24
+release of Kubernetes.**
+
+---
+
+This document goes over some frequently asked questions regarding the
+removal of _dockershim_ from Kubernetes. The removal was originally
+[announced](/blog/2020/12/08/kubernetes-1-20-release-announcement/)
+as a part of the Kubernetes v1.20 release. The Kubernetes
+[v1.24 release](/releases/#release-v1-24) actually removed the dockershim
+from Kubernetes.
+
+For more on what that means, check out the blog post
+[Don't Panic: Kubernetes and Docker](/blog/2020/12/02/dont-panic-kubernetes-and-docker/).
+
+To determine the impact that the removal of dockershim would have for you or your organization,
+you can read [Check whether dockershim removal affects you](/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you/).
+
+In the months and days leading up to the Kubernetes 1.24 release, Kubernetes contributors worked hard to try to make this a smooth transition.
+
+- A blog post detailing our [commitment and next steps](/blog/2022/01/07/kubernetes-is-moving-on-from-dockershim/).
+- Checking if there were major blockers to migration to [other container runtimes](/docs/setup/production-environment/container-runtimes/#container-runtimes).
+- Adding a [migrating from dockershim](/docs/tasks/administer-cluster/migrating-from-dockershim/) guide.
+- Creating a list of
+  [articles on dockershim removal and on using CRI-compatible runtimes](/docs/reference/node/topics-on-dockershim-and-cri-compatible-runtimes/).
+  That list includes some of the already mentioned docs, and also covers selected external sources
+  (including vendor guides).
+
+### Why was the dockershim removed from Kubernetes?
+
+Early versions of Kubernetes only worked with a specific container runtime:
+Docker Engine. Later, Kubernetes added support for working with other container runtimes.
+The CRI standard was [created](/blog/2016/12/container-runtime-interface-cri-in-kubernetes/) to
+enable interoperability between orchestrators (like Kubernetes) and many different container
+runtimes.
+Docker Engine doesn't implement that interface (CRI), so the Kubernetes project created
+special code to help with the transition, and made that _dockershim_ code part of Kubernetes
+itself.
+
+The dockershim code was always intended to be a temporary solution (hence the name: shim).
+You can read more about the community discussion and planning in the
+[Dockershim Removal Kubernetes Enhancement Proposal][drkep].
+In fact, maintaining dockershim had become a heavy burden on the Kubernetes maintainers.
+
+Additionally, features that were largely incompatible with the dockershim, such
+as cgroups v2 and user namespaces are being implemented in these newer CRI
+runtimes. Removing the dockershim from Kubernetes allows further development in those areas.
+
+[drkep]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2221-remove-dockershim
+
+### Are Docker and containers the same thing?
+
+Docker popularized the Linux containers pattern and has been instrumental in
+developing the underlying technology, however containers in Linux have existed
+for a long time. The container ecosystem has grown to be much broader than just
+Docker. Standards like OCI and CRI have helped many tools grow and thrive in our
+ecosystem, some replacing aspects of Docker while others enhance existing
+functionality.
+
+### Will my existing container images still work?
+
+Yes, the images produced from `docker build` will work with all CRI implementations.
+All your existing images will still work exactly the same.
+
+#### What about private images?
+
+Yes. All CRI runtimes support the same pull secrets configuration used in
+Kubernetes, either via the PodSpec or ServiceAccount.
+
+### Can I still use Docker Engine in Kubernetes 1.23?
+
+Yes, the only thing changed in 1.20 is a single warning log printed at [kubelet]
+startup if using Docker Engine as the runtime. You'll see this warning in all versions up to 1.23. The dockershim removal occurred
+in Kubernetes 1.24.
+
+If you're running Kubernetes v1.24 or later, see [Can I still use Docker Engine as my container runtime?](#can-i-still-use-docker-engine-as-my-container-runtime).
+(Remember, you can switch away from the dockershim if you're using any supported Kubernetes release; from release v1.24, you
+**must** switch as Kubernetes no longer includes the dockershim).
+
+[kubelet]: /docs/reference/command-line-tools-reference/kubelet/
+
+### Which CRI implementation should I use?
+
+That’s a complex question and it depends on a lot of factors. If Docker Engine is
+working for you, moving to containerd should be a relatively easy swap and
+will have strictly better performance and less overhead. However, we encourage you
+to explore all the options from the [CNCF landscape] in case another would be an
+even better fit for your environment.
+
+[CNCF landscape]: https://landscape.cncf.io/card-mode?category=container-runtime&grouping=category
+
+#### Can I still use Docker Engine as my container runtime?
+
+First off, if you use Docker on your own PC to develop or test containers: nothing changes.
+You can still use Docker locally no matter what container runtime(s) you use for your
+Kubernetes clusters. Containers make this kind of interoperability possible.
+
+Mirantis and Docker have [committed][mirantis] to maintaining a replacement adapter for
+Docker Engine, and to maintain that adapter even after the in-tree dockershim is removed
+from Kubernetes. The replacement adapter is named [`cri-dockerd`](https://github.com/Mirantis/cri-dockerd).
+
+You can install `cri-dockerd` and use it to connect the kubelet to Docker Engine. Read [Migrate Docker Engine nodes from dockershim to cri-dockerd](/docs/tasks/administer-cluster/migrating-from-dockershim/migrate-dockershim-dockerd/) to learn more.
+
+[mirantis]: https://www.mirantis.com/blog/mirantis-to-take-over-support-of-kubernetes-dockershim-2/
+
+### Are there examples of folks using other runtimes in production today?
+
+All Kubernetes project produced artifacts (Kubernetes binaries) are validated
+with each release.
+
+Additionally, the [kind] project has been using containerd for some time and has
+seen an improvement in stability for its use case. Kind and containerd are leveraged
+multiple times every day to validate any changes to the Kubernetes codebase. Other
+related projects follow a similar pattern as well, demonstrating the stability and
+usability of other container runtimes. As an example, OpenShift 4.x has been
+using the [CRI-O] runtime in production since June 2019.
+
+For other examples and references you can look at the adopters of containerd and
+CRI-O, two container runtimes under the Cloud Native Computing Foundation ([CNCF]).
+
+- [containerd](https://github.com/containerd/containerd/blob/master/ADOPTERS.md)
+- [CRI-O](https://github.com/cri-o/cri-o/blob/master/ADOPTERS.md)
+
+[CRI-O]: https://cri-o.io/
+[kind]: https://kind.sigs.k8s.io/
+[CNCF]: https://cncf.io
+
+### People keep referencing OCI, what is that?
+
+OCI stands for the [Open Container Initiative], which standardized many of the
+interfaces between container tools and technologies. They maintain a standard
+specification for packaging container images (OCI image-spec) and running containers
+(OCI runtime-spec). They also maintain an actual implementation of the runtime-spec
+in the form of [runc], which is the underlying default runtime for both
+[containerd] and [CRI-O]. The CRI builds on these low-level specifications to
+provide an end-to-end standard for managing containers.
+
+[Open Container Initiative]: https://opencontainers.org/about/overview/
+[runc]: https://github.com/opencontainers/runc
+[containerd]: https://containerd.io/
+
+### What should I look out for when changing CRI implementations?
+
+While the underlying containerization code is the same between Docker and most
+CRIs (including containerd), there are a few differences around the edges. Some
+common things to consider when migrating are:
+
+- Logging configuration
+- Runtime resource limitations
+- Node provisioning scripts that call docker or use Docker Engine via its control socket
+- Plugins for `kubectl` that require the `docker` CLI or the Docker Engine control socket
+- Tools from the Kubernetes project that require direct access to Docker Engine
+  (for example: the deprecated `kube-imagepuller` tool)
+- Configuration of functionality like `registry-mirrors` and insecure registries
+- Other support scripts or daemons that expect Docker Engine to be available and are run
+  outside of Kubernetes (for example, monitoring or security agents)
+- GPUs or special hardware and how they integrate with your runtime and Kubernetes
+
+If you use Kubernetes resource requests/limits or file-based log collection
+DaemonSets then they will continue to work the same, but if you've customized
+your `dockerd` configuration, you’ll need to adapt that for your new container
+runtime where possible.
+
+Another thing to look out for is anything expecting to run for system maintenance
+or nested inside a container when building images will no longer work. For the
+former, you can use the [`crictl`][cr] tool as a drop-in replacement (see
+[mapping from docker cli to crictl](https://kubernetes.io/docs/tasks/debug/debug-cluster/crictl/#mapping-from-docker-cli-to-crictl))
+and for the latter you can use newer container build options like [img], [buildah],
+[kaniko], or [buildkit-cli-for-kubectl] that don’t require Docker.
+
+[cr]: https://github.com/kubernetes-sigs/cri-tools
+[img]: https://github.com/genuinetools/img
+[buildah]: https://github.com/containers/buildah
+[kaniko]: https://github.com/GoogleContainerTools/kaniko
+[buildkit-cli-for-kubectl]: https://github.com/vmware-tanzu/buildkit-cli-for-kubectl
+
+For containerd, you can start with their [documentation] to see what configuration
+options are available as you migrate things over.
+
+[documentation]: https://github.com/containerd/cri/blob/master/docs/registry.md
+
+For instructions on how to use containerd and CRI-O with Kubernetes, see the
+Kubernetes documentation on [Container Runtimes].
+
+[Container Runtimes]: /docs/setup/production-environment/container-runtimes/
+
+### What if I have more questions?
+
+If you use a vendor-supported Kubernetes distribution, you can ask them about
+upgrade plans for their products. For end-user questions, please post them
+to our end user community forum: https://discuss.kubernetes.io/.
+
+You can discuss the decision to remove dockershim via a dedicated
+[GitHub issue](https://github.com/kubernetes/kubernetes/issues/106917).
+
+You can also check out the excellent blog post
+[Wait, Docker is deprecated in Kubernetes now?][dep] a more in-depth technical
+discussion of the changes.
+
+[dep]: https://dev.to/inductor/wait-docker-is-deprecated-in-kubernetes-now-what-do-i-do-e4m
+
+### Is there any tooling that can help me find dockershim in use?
+
+Yes! The [Detector for Docker Socket (DDS)][dds] is a kubectl plugin that you can
+install and then use to check your cluster. DDS can detect if active Kubernetes workloads
+are mounting the Docker Engine socket (`docker.sock`) as a volume.
+Find more details and usage patterns in the DDS project's [README][dds].
+
+[dds]: https://github.com/aws-containers/kubectl-detector-for-docker-socket
+
+### Can I have a hug?
+
+Yes, we're still giving hugs as requested. 🤗🤗🤗
diff --git a/content/en/blog/_posts/2022-03-15-meet-our-contributors-APAC-AU-NZ-region-02.md b/content/en/blog/_posts/2022-03-15-meet-our-contributors-APAC-AU-NZ-region-02.md
new file mode 100644
index 0000000000..e8d9cfdf89
--- /dev/null
+++ b/content/en/blog/_posts/2022-03-15-meet-our-contributors-APAC-AU-NZ-region-02.md
@@ -0,0 +1,72 @@
+---
+layout: blog
+title: "Meet Our Contributors - APAC (Aus-NZ region)"
+date: 2022-03-16
+slug: meet-our-contributors-au-nz-ep-02
+canonicalUrl: https://www.kubernetes.dev/blog/2022/03/14/meet-our-contributors-au-nz-ep-02/
+---
+
+**Authors & Interviewers:** [Anubhav Vardhan](https://github.com/anubha-v-ardhan), [Atharva Shinde](https://github.com/Atharva-Shinde), [Avinesh Tripathi](https://github.com/AvineshTripathi), [Brad McCoy](https://github.com/bradmccoydev), [Debabrata Panigrahi](https://github.com/Debanitrkl), [Jayesh Srivastava](https://github.com/jayesh-srivastava), [Kunal Verma](https://github.com/verma-kunal), [Pranshu Srivastava](https://github.com/PranshuSrivastava), [Priyanka Saggu](github.com/Priyankasaggu11929/), [Purneswar Prasad](https://github.com/PurneswarPrasad), [Vedant Kakde](https://github.com/vedant-kakde)
+
+---
+
+Good day, everyone 👋
+
+Welcome back to the second episode of the "Meet Our Contributors" blog post series for APAC.
+
+This post will feature four outstanding contributors from the Australia and New Zealand regions, who have played diverse leadership and community roles in the Upstream Kubernetes project.
+
+So, without further ado, let's get straight to the blog.
+
+## [Caleb Woodbine](https://github.com/BobyMCbobs)
+
+Caleb Woodbine is currently a member of the ii.nz organisation.
+
+He began contributing to the Kubernetes project in 2018 as a member of the Kubernetes Conformance working group. His experience was positive, and he benefited from early guidance from [Hippie Hacker](https://github.com/hh), a fellow contributor from New Zealand.
+
+He has made major contributions to Kubernetes project since then through `SIG k8s-infra` and `k8s-conformance` working group.
+
+Caleb is also a co-organizer of the [CloudNative NZ](https://www.meetup.com/cloudnative-nz/) community events, which aim to expand the reach of Kubernetes project throughout New Zealand in order to encourage technical education and improved employment opportunities.
+
+> _There need to be more outreach in APAC and the educators and universities must pick up Kubernetes, as they are very slow and about 8+ years out of date. NZ tends to rather pay overseas than educate locals on the latest cloud tech Locally._
+
+## [Dylan Graham](https://github.com/DylanGraham)
+
+Dylan Graham is a cloud engineer from Adeliade, Australia. He has been contributing to the upstream Kubernetes project since 2018.
+
+He stated that being a part of such a large-scale project was initially overwhelming, but that the community's friendliness and openness assisted him in getting through it.
+
+He began by contributing to the project documentation and is now mostly focused on the community support for the APAC region.
+
+He believes that consistent attendance at community/project meetings, taking on project tasks, and seeking community guidance as needed can help new aspiring developers become effective contributors.
+
+> _The feeling of being a part of a large community is really special. I've met some amazing people, even some before the pandemic in real life :)_
+
+## [Hippie Hacker](https://github.com/hh)
+
+Hippie has worked for the CNCF.io as a Strategic Initiatives contractor from New Zealand for almost 5+ years. He is an active contributor to k8s-infra, API conformance testing, Cloud provider conformance submissions, and apisnoop.cncf.io domains of the upstream Kubernetes & CNCF projects.
+
+He recounts their early involvement with the Kubernetes project, which began roughly 5 years ago when their firm, ii.nz, demonstrated [network booting from a Raspberry Pi using PXE and running Gitlab in-cluster to install Kubernetes on servers](https://ii.nz/post/bringing-the-cloud-to-your-community/).
+
+He describes their own contributing experience as someone who, at first, tried to do all of the hard lifting on their own, but eventually saw the benefit of group contributions which reduced burnout and task division which allowed folks to keep moving forward on their own momentum.
+
+He recommends that new contributors use pair programming.
+
+> _The cross pollination of approaches and two pairs of eyes on the same work can often yield a much more amplified effect than a PR comment / approval alone can afford._
+
+## [Nick Young](https://github.com/youngnick)
+
+Nick Young works at VMware as a technical lead for Contour, a CNCF ingress controller. He was active with the upstream Kubernetes project from the beginning, and eventually became the chair of the LTS working group, where he advocated user concerns. He is currently the SIG Network Gateway API subproject's maintainer.
+
+His contribution path was notable in that he began working on major areas of the Kubernetes project early on, skewing his trajectory.
+
+He asserts the best thing a new contributor can do is to "start contributing". Naturally, if it is relevant to their employment, that is excellent; however, investing non-work time in contributing can pay off in the long run in terms of work. He believes that new contributors, particularly those who are currently Kubernetes users, should be encouraged to participate in higher-level project discussions.
+
+> _Just being active and contributing will get you a long way. Once you've been active for a while, you'll find that you're able to answer questions, which will mean you're asked questions, and before you know it you are an expert._
+
+---
+
+If you have any recommendations/suggestions for who we should interview next, please let us know in #sig-contribex. Your suggestions would be much appreciated. We're thrilled to have additional folks assisting us in reaching out to even more wonderful individuals of the community.
+
+
+We'll see you all in the next one. Everyone, till then, have a happy contributing! 👋
diff --git a/content/en/blog/_posts/2022-03-31-ready-for-dockershim-removal.md b/content/en/blog/_posts/2022-03-31-ready-for-dockershim-removal.md
new file mode 100644
index 0000000000..4362a0daa7
--- /dev/null
+++ b/content/en/blog/_posts/2022-03-31-ready-for-dockershim-removal.md
@@ -0,0 +1,34 @@
+---
+layout: blog
+title: "Is Your Cluster Ready for v1.24?"
+date: 2022-03-31
+slug: ready-for-dockershim-removal
+---
+
+**Author:** Kat Cosgrove
+
+
+Way back in December of 2020, Kubernetes announced the [deprecation of Dockershim](/blog/2020/12/02/dont-panic-kubernetes-and-docker/). In Kubernetes, dockershim is a software shim that allows you to use the entire Docker engine as your container runtime within Kubernetes. In the upcoming v1.24 release, we are removing Dockershim - the delay between deprecation and removal in line with the [project’s policy](https://kubernetes.io/docs/reference/using-api/deprecation-policy/) of supporting features for at least one year after deprecation. If you are a cluster operator, this guide includes the practical realities of what you need to know going into this release. Also, what do you need to do to ensure your cluster doesn’t fall over!
+
+## First, does this even affect you?
+
+If you are rolling your own cluster or are otherwise unsure whether or not this removal affects you, stay on the safe side and [check to see if you have any dependencies on Docker Engine](/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you/). Please note that using Docker Desktop to build your application containers is not a Docker dependency for your cluster. Container images created by Docker are compliant with the [Open Container Initiative (OCI)](https://opencontainers.org/), a Linux Foundation governance structure that defines industry standards around container formats and runtimes. They will work just fine on any container runtime supported by Kubernetes.
+
+If you are using a managed Kubernetes service from a cloud provider, and you haven’t explicitly changed the container runtime, there may be nothing else for you to do. Amazon EKS, Azure AKS, and Google GKE all default to containerd now, though you should make sure they do not need updating if you have any node customizations. To check the runtime of your nodes, follow [Find Out What Container Runtime is Used on a Node](/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use/).
+
+Regardless of whether you are rolling your own cluster or using a managed Kubernetes service from a cloud provider, you may need to [migrate telemetry or security agents that rely on Docker Engine](/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents/). 
+
+## I have a Docker dependency. What now?
+
+If your Kubernetes cluster depends on Docker Engine and you intend to upgrade to Kubernetes v1.24 (which you should eventually do for security and similar reasons), you will need to change your container runtime from Docker Engine to something else or use [cri-dockerd](https://github.com/Mirantis/cri-dockerd). Since [containerd](https://containerd.io/) is a graduated CNCF project and the runtime within Docker itself, it’s a safe bet as an alternative container runtime. Fortunately, the Kubernetes project has already documented the process of [changing a node’s container runtime](/docs/tasks/administer-cluster/migrating-from-dockershim/change-runtime-containerd/), using containerd as an example. Instructions are similar for switching to one of the other supported runtimes.
+
+## I want to upgrade Kubernetes, and I need to maintain compatibility with Docker as a runtime. What are my options?
+
+Fear not, you aren’t being left out in the cold and you don’t have to take the security risk of staying on an old version of Kubernetes. Mirantis and Docker have jointly released, and are maintaining, a replacement for dockershim. That replacement is called [cri-dockerd](https://github.com/Mirantis/cri-dockerd). If you do need to maintain compatibility with Docker as a runtime, install cri-dockerd following the instructions in the project’s documentation.
+
+## Is that it?
+
+
+Yes. As long as you go into this release aware of the changes being made and the details of your own clusters, and you make sure to communicate clearly with your development teams, it will be minimally dramatic. You may have some changes to make to your cluster, application code, or scripts, but all of these requirements are documented. Switching from using Docker Engine as your runtime to using [one of the other supported container runtimes](/docs/setup/production-environment/container-runtimes/) effectively means removing the middleman, since the purpose of dockershim is to access the container runtime used by Docker itself. From a practical perspective, this removal is better both for you and for Kubernetes maintainers in the long-run.
+
+If you still have questions, please first check the [Dockershim Removal FAQ](/blog/2022/02/17/dockershim-faq/).
diff --git a/content/en/blog/_posts/2022-04-07-Kubernetes-1-24-removals-and-deprecations.md b/content/en/blog/_posts/2022-04-07-Kubernetes-1-24-removals-and-deprecations.md
new file mode 100644
index 0000000000..6428e64ad5
--- /dev/null
+++ b/content/en/blog/_posts/2022-04-07-Kubernetes-1-24-removals-and-deprecations.md
@@ -0,0 +1,133 @@
+---
+layout: blog
+title: "Kubernetes Removals and Deprecations In 1.24"
+date: 2022-04-07
+slug: upcoming-changes-in-kubernetes-1-24
+---
+
+**Author**: Mickey Boxell (Oracle)
+
+As Kubernetes evolves, features and APIs are regularly revisited and removed. New features may offer
+an alternative or improved approach to solving existing problems, motivating the team to remove the
+old approach. 
+
+We want to make sure you are aware of the changes coming in the Kubernetes 1.24 release. The release will 
+**deprecate** several (beta) APIs in favor of stable versions of the same APIs. The major change coming 
+in the Kubernetes 1.24 release is the 
+[removal of Dockershim](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2221-remove-dockershim). 
+This is discussed below and will be explored in more depth at release time. For an early look at the 
+changes coming in Kubernetes 1.24, take a look at the in-progress 
+[CHANGELOG](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.24.md).
+
+## A note about Dockershim
+
+It's safe to say that the removal receiving the most attention with the release of Kubernetes 1.24 
+is Dockershim. Dockershim was deprecated in v1.20. As noted in the [Kubernetes 1.20 changelog](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.20.md#deprecation): 
+"Docker support in the kubelet is now deprecated and will be removed in a future release. The kubelet 
+uses a module called "dockershim" which implements CRI support for Docker and it has seen maintenance 
+issues in the Kubernetes community." With the upcoming release of Kubernetes 1.24, the Dockershim will 
+finally be removed. 
+
+In the article [Don't Panic: Kubernetes and Docker](/blog/2020/12/02/dont-panic-kubernetes-and-docker/),
+the authors succinctly captured the change's impact and encouraged users to remain calm: 
+> Docker as an underlying runtime is being deprecated in favor of runtimes that use the
+> Container Runtime Interface (CRI) created for Kubernetes. Docker-produced images
+> will continue to work in your cluster with all runtimes, as they always have.
+
+Several guides have been created with helpful information about migrating from dockershim
+to container runtimes that are directly compatible with Kubernetes. You can find them on the
+[Migrating from dockershim](/docs/tasks/administer-cluster/migrating-from-dockershim/)
+page in the Kubernetes documentation.
+
+For more information about why Kubernetes is moving away from dockershim, check out the aptly 
+named: [Kubernetes is Moving on From Dockershim](/blog/2022/01/07/kubernetes-is-moving-on-from-dockershim/) 
+and the [updated dockershim removal FAQ](/blog/2022/02/17/dockershim-faq/).
+
+Take a look at the [Is Your Cluster Ready for v1.24?](/blog/2022/03/31/ready-for-dockershim-removal/) post to learn about how to ensure your cluster continues to work after upgrading from v1.23 to v1.24. 
+
+## The Kubernetes API removal and deprecation process
+
+Kubernetes contains a large number of components that evolve over time. In some cases, this 
+evolution results in APIs, flags, or entire features, being removed. To prevent users from facing 
+breaking changes, Kubernetes contributors adopted a feature [deprecation policy](/docs/reference/using-api/deprecation-policy/). 
+This policy ensures that stable APIs may only be deprecated when a newer stable version of that 
+same API is available and that APIs have a minimum lifetime as indicated by the following stability levels: 
+
+* Generally available (GA) or stable API versions may be marked as deprecated but must not be removed within a major version of Kubernetes. 
+* Beta or pre-release API versions must be supported for 3 releases after deprecation. 
+* Alpha or experimental API versions may be removed in any release without prior deprecation notice. 
+
+Removals follow the same deprecation policy regardless of whether an API is removed due to a beta feature 
+graduating to stable or because that API was not proven to be successful. Kubernetes will continue to make 
+sure migration options are documented whenever APIs are removed. 
+
+**Deprecated** APIs are those that have been marked for removal in a future Kubernetes release. **Removed** 
+APIs are those that are no longer available for use in current, supported Kubernetes versions after having 
+been deprecated. These removals have been superseded by newer, stable/generally available (GA) APIs. 
+
+## API removals, deprecations, and other changes for Kubernetes 1.24
+
+* [Dynamic kubelet configuration](https://github.com/kubernetes/enhancements/issues/281): `DynamicKubeletConfig` is used to enable the dynamic configuration of the kubelet. The `DynamicKubeletConfig` flag was deprecated in Kubernetes 1.22. In v1.24, this feature gate will be removed from the kubelet. See [Reconfigure kubelet](/docs/tasks/administer-cluster/reconfigure-kubelet/). Refer to the ["Dynamic kubelet config is removed" KEP](https://github.com/kubernetes/enhancements/issues/281) for more information. 
+* [Dynamic log sanitization](https://github.com/kubernetes/kubernetes/pull/107207): The experimental dynamic log sanitization feature is deprecated and will be removed in v1.24. This feature introduced a logging filter that could be applied to all Kubernetes system components logs to prevent various types of sensitive information from leaking via logs. Refer to [KEP-1753: Kubernetes system components logs sanitization](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/1753-logs-sanitization#deprecation) for more information and an [alternative approach](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/1753-logs-sanitization#alternatives=).
+* In-tree provisioner to CSI driver migration: This applies to a number of in-tree plugins, including [Portworx](https://github.com/kubernetes/enhancements/issues/2589). Refer to the [In-tree Storage Plugin to CSI Migration Design Doc](https://git.k8s.io/design-proposals-archive/storage/csi-migration.md#background-and-motivations) for more information. 
+* [Removing Dockershim from kubelet](https://github.com/kubernetes/enhancements/issues/2221): the Container Runtime Interface (CRI) for Docker (i.e. Dockershim) is currently a built-in container runtime in the kubelet code base. It was deprecated in v1.20. As of v1.24, the kubelet will no longer have dockershim. Check out this blog on [what you need to do be ready for v1.24](/blog/2022/03/31/ready-for-dockershim-removal/). 
+* [Storage capacity tracking for pod scheduling](https://github.com/kubernetes/enhancements/issues/1472): The CSIStorageCapacity API supports exposing currently available storage capacity via CSIStorageCapacity objects and enhances scheduling of pods that use CSI volumes with late binding. In v1.24, the CSIStorageCapacity API will be stable. The API graduating to stable initates the deprecation of the v1beta1 CSIStorageCapacity API. Refer to the [Storage Capacity Constraints for Pod Scheduling KEP](https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/1472-storage-capacity-tracking) for more information. 
+* [The `master` label is no longer present on kubeadm control plane nodes](https://github.com/kubernetes/kubernetes/pull/107533). For new clusters, the label 'node-role.kubernetes.io/master' will no longer be added to control plane nodes, only the label 'node-role.kubernetes.io/control-plane' will be added. For more information, refer to [KEP-2067: Rename the kubeadm "master" label and taint](https://github.com/kubernetes/enhancements/tree/master/keps/sig-cluster-lifecycle/kubeadm/2067-rename-master-label-taint).
+* [VolumeSnapshot v1beta1 CRD will be removed](https://github.com/kubernetes/enhancements/issues/177). Volume snapshot and restore functionality for Kubernetes and the [Container Storage Interface](https://github.com/container-storage-interface/spec/blob/master/spec.md) (CSI), which provides standardized APIs design (CRDs) and adds PV snapshot/restore support for CSI volume drivers, moved to GA in v1.20. VolumeSnapshot v1beta1 was deprecated in v1.20 and will become unsupported with the v1.24 release. Refer to [KEP-177: CSI Snapshot](https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/177-volume-snapshot#kep-177-csi-snapshot) and the [Volume Snapshot GA blog](/blog/2020/12/10/kubernetes-1.20-volume-snapshot-moves-to-ga/) blog article for more information. 
+
+## What to do
+
+### Dockershim removal
+
+As stated earlier, there are several guides about 
+[Migrating from dockershim](/docs/tasks/administer-cluster/migrating-from-dockershim/). 
+You can start with [Finding what container runtime are on your nodes](/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use/).
+If your nodes are using dockershim, there are other possible Docker Engine dependencies such as 
+Pods or third-party tools executing Docker commands or private registries in the Docker configuration file. You can follow the 
+[Check whether Dockershim removal affects you](/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you/) guide to review possible 
+Docker Engine dependencies. Before upgrading to v1.24, you decide to either remain using Docker Engine and 
+[Migrate Docker Engine nodes from dockershim to cri-dockerd](/docs/tasks/administer-cluster/migrating-from-dockershim/migrate-dockershim-dockerd/) or migrate to a CRI-compatible runtime. Here's a guide to 
+[change the container runtime on a node from Docker Engine to containerd](/docs/tasks/administer-cluster/migrating-from-dockershim/change-runtime-containerd/).
+
+### `kubectl convert`
+
+The [`kubectl convert`](/docs/tasks/tools/included/kubectl-convert-overview/) plugin for `kubectl` 
+can be helpful to address migrating off deprecated APIs. The plugin facilitates the conversion of 
+manifests between different API versions, for example, from a deprecated to a non-deprecated API 
+version. More general information about the API migration process can be found in the [Deprecated API Migration Guide](/docs/reference/using-api/deprecation-guide/). 
+Follow the [install `kubectl convert` plugin](https://kubernetes.io/docs/tasks/tools/install-kubectl-linux/#install-kubectl-convert-plugin) 
+documentation to download and install the `kubectl-convert` binary. 
+    
+### Looking ahead
+
+The Kubernetes 1.25 and 1.26 releases planned for later this year will stop serving beta versions 
+of several currently stable Kubernetes APIs. The v1.25 release will also remove PodSecurityPolicy, 
+which was deprecated with Kubernetes 1.21 and will not graduate to stable. See [PodSecurityPolicy 
+Deprecation: Past, Present, and Future](/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/) for more information. 
+
+The official [list of API removals planned for Kubernetes 1.25](/docs/reference/using-api/deprecation-guide/#v1-25) is:
+
+* The beta CronJob API (batch/v1beta1)
+* The beta EndpointSlice API (discovery.k8s.io/v1beta1)
+* The beta Event API (events.k8s.io/v1beta1)
+* The beta HorizontalPodAutoscaler API (autoscaling/v2beta1)
+* The beta PodDisruptionBudget API (policy/v1beta1)
+* The beta PodSecurityPolicy API (policy/v1beta1)
+* The beta RuntimeClass API (node.k8s.io/v1beta1)
+
+
+The official [list of API removals planned for Kubernetes 1.26](/docs/reference/using-api/deprecation-guide/#v1-26) is:
+
+* The beta FlowSchema and PriorityLevelConfiguration APIs (flowcontrol.apiserver.k8s.io/v1beta1)
+* The beta HorizontalPodAutoscaler API (autoscaling/v2beta2)
+
+    
+### Want to know more?
+Deprecations are announced in the Kubernetes release notes. You can see the announcements of pending deprecations in the release notes for:
+* [Kubernetes 1.21](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.21.md#deprecation)
+* [Kubernetes 1.22](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.22.md#deprecation)
+* [Kubernetes 1.23](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.23.md#deprecation)
+* We will formally announce the deprecations that come with [Kubernetes 1.24](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.24.md#deprecation) as part of the CHANGELOG for that release.
+
+For information on the process of deprecation and removal, check out the official Kubernetes [deprecation policy](/docs/reference/using-api/deprecation-policy/#deprecating-parts-of-the-api) document.
+
diff --git a/content/en/blog/_posts/2022-04-28-Increasing-the-security-bar-in-Ingress-NGINX/index.md b/content/en/blog/_posts/2022-04-28-Increasing-the-security-bar-in-Ingress-NGINX/index.md
new file mode 100644
index 0000000000..6c21c5f3c1
--- /dev/null
+++ b/content/en/blog/_posts/2022-04-28-Increasing-the-security-bar-in-Ingress-NGINX/index.md
@@ -0,0 +1,155 @@
+---
+layout: blog
+title: 'Increasing the security bar in Ingress-NGINX v1.2.0'
+date: 2022-04-28
+slug: ingress-nginx-1-2-0
+---
+
+**Authors:** Ricardo Katz (VMware), James Strong (Chainguard)
+
+The [Ingress](/docs/concepts/services-networking/ingress/) may be one of the most targeted components
+of Kubernetes. An Ingress typically defines an HTTP reverse proxy, exposed to the Internet, containing
+multiple websites, and with some privileged access to Kubernetes API (such as to read Secrets relating to
+TLS certificates and their private keys).
+
+While it is a risky component in your architecture, it is still the most popular way to properly expose your services.
+
+Ingress-NGINX has been part of security assessments that figured out we have a big problem: we don't
+do all proper sanitization before turning the configuration into an `nginx.conf` file, which may lead to information
+disclosure risks.
+
+While we understand this risk and the real need to fix this, it's not an easy process to do, so we took another approach to reduce (but not remove!) this risk in the current (v1.2.0) release.
+
+## Meet Ingress NGINX v1.2.0 and the chrooted NGINX process
+
+One of the main challenges is that Ingress-NGINX runs the web proxy server (NGINX) alongside the Ingress
+controller (the component that has access to Kubernetes API that and that creates the `nginx.conf` file).
+
+So, NGINX does have the same access to the filesystem of the controller (and Kubernetes service account token, and other configurations from the container). While splitting those components is our end goal, the project needed a fast response; that lead us to the idea of using `chroot()`.
+
+Let's take a look into what an Ingress-NGINX container looked like before this change:
+
+![Ingress NGINX pre chroot](ingress-pre-chroot.png)
+
+As we can see, the same container (not the Pod, the container!) that provides HTTP Proxy is the one that watches Ingress objects and writes the Container Volume
+
+Now, meet the new architecture:
+
+![Ingress NGINX post chroot](ingress-post-chroot.png)
+
+What does all of this mean? A basic summary is: that we are isolating the NGINX service as a container inside the
+controller container.
+
+While this is not strictly true, to understand what was done here, it's good to understand how
+Linux containers (and underlying mechanisms such as kernel namespaces) work.
+You can read about cgroups in the Kubernetes glossary: [`cgroup`](https://kubernetes.io/docs/reference/glossary/?fundamental=true#term-cgroup) and learn more about cgroups interact with namespaces in the NGINX project article
+[What Are Namespaces and cgroups, and How Do They Work?](https://www.nginx.com/blog/what-are-namespaces-cgroups-how-do-they-work/).
+(As you read that, bear in mind that Linux kernel namespaces are a different thing from
+[Kubernetes namespaces](/docs/concepts/overview/working-with-objects/namespaces/)).
+
+## Skip the talk, what do I need to use this new approach?
+
+While this increases the security, we made this feature an opt-in in this release so you can have
+time to make the right adjustments in your environment(s). This new feature is only available from
+release v1.2.0 of the Ingress-NGINX controller.
+
+There are two required changes in your deployments to use this feature:
+* Append the suffix "-chroot" to the container image name. For example: `gcr.io/k8s-staging-ingress-nginx/controller-chroot:v1.2.0`
+* In your Pod template for the Ingress controller, find where you add the capability `NET_BIND_SERVICE` and add the capability `SYS_CHROOT`. After you edit the manifest, you'll see a snippet like:
+
+```yaml
+capabilities:
+  drop:
+  - ALL
+  add:
+  - NET_BIND_SERVICE
+  - SYS_CHROOT
+```
+
+If you deploy the controller using the official Helm chart then change the following setting in
+`values.yaml`:
+
+```yaml
+controller:
+  image:
+    chroot: true
+```
+
+Ingress controllers are normally set up cluster-wide (the IngressClass API is cluster scoped). If you manage the
+Ingress-NGINX controller but you're not the overall cluster operator, then check with your cluster admin about
+whether you can use the `SYS_CHROOT` capability, **before** you enable it in your deployment.
+
+## OK, but how does this increase the security of my Ingress controller?
+
+Take the following configuration snippet and imagine, for some reason it was added to your `nginx.conf`:
+```
+location /randomthing/ {
+      alias /;
+      autoindex on;
+}
+```
+
+If you deploy this configuration, someone can call `http://website.example/randomthing` and get some listing (and access) to the whole filesystem of the Ingress controller.
+
+Now, can you spot the difference between chrooted and non chrooted Nginx on the listings below?
+
+| Without extra `chroot()`             | With extra `chroot()` |
+|----------------------------|--------|
+| `bin`                      | `bin`  |
+| `dev`                      | `dev`  |
+| `etc`                      | `etc`  |
+| `home`                     |        |
+| `lib`                      | `lib`  |
+| `media`                    |        |
+| `mnt`                      |        |
+| `opt`                      | `opt`  |
+| `proc`                     | `proc` |
+| `root`                     |        |
+| `run`                      | `run`  |
+| `sbin`                     |        |
+| `srv`                      |        |
+| `sys`                      |        |
+| `tmp`                      | `tmp`  |
+| `usr`                      | `usr`  |
+| `var`                      | `var`  |
+| `dbg`                      |        |
+| `nginx-ingress-controller` |        |
+| `wait-shutdown`            |        |
+
+The one in left side is not chrooted. So NGINX has full access to the filesystem. The one in right side is chrooted, so a new filesystem with only the required files to make NGINX work is created.
+
+## What about other security improvements in this release?
+
+We know that the new `chroot()` mechanism helps address some portion of the risk, but still, someone
+can try to inject commands to read, for example, the `nginx.conf` file and extract sensitive information.
+
+So, another change in this release (this is opt-out!) is the _deep inspector_.
+We know that some directives or regular expressions may be dangerous to NGINX, so the deep inspector
+checks all fields from an Ingress object (during its reconciliation, and also with a
+[validating admission webhook](/docs/reference/access-authn-authz/admission-controllers/#validatingadmissionwebhook))
+to verify if any fields contains these dangerous directives.
+
+The ingress controller already does this for annotations, and our goal is to move this existing validation to happen inside
+deep inspection as part of a future release.
+
+You can take a look into the existing rules in [https://github.com/kubernetes/ingress-nginx/blob/main/internal/ingress/inspector/rules.go](https://github.com/kubernetes/ingress-nginx/blob/main/internal/ingress/inspector/rules.go).
+
+Due to the nature of inspecting and matching all strings within relevant Ingress objects, this new feature may consume a bit more CPU. You can disable it by running the ingress controller with the command line argument `--deep-inspect=false`.
+
+## What's next?
+
+This is not our final goal. Our final goal is to split the control plane and the data plane processes.
+In fact, doing so will help us also achieve a [Gateway](https://gateway-api.sigs.k8s.io/) API implementation,
+as we may have a different controller as soon as it "knows" what to provide to the data plane
+(we need some help here!!)
+
+Some other projects in Kubernetes already take this approach
+(like [KPNG](https://github.com/kubernetes-sigs/kpng), the proposed replacement for `kube-proxy`),
+and we plan to align with them and get the same experience for Ingress-NGINX.
+
+## Further reading
+
+If you want to take a look into how chrooting was done in Ingress NGINX, take a look 
+into [https://github.com/kubernetes/ingress-nginx/pull/8337](https://github.com/kubernetes/ingress-nginx/pull/8337)
+The release v1.2.0 containing all the changes can be found at 
+[https://github.com/kubernetes/ingress-nginx/releases/tag/controller-v1.2.0](https://github.com/kubernetes/ingress-nginx/releases/tag/controller-v1.2.0)
diff --git a/content/en/blog/_posts/2022-04-28-Increasing-the-security-bar-in-Ingress-NGINX/ingress-post-chroot.png b/content/en/blog/_posts/2022-04-28-Increasing-the-security-bar-in-Ingress-NGINX/ingress-post-chroot.png
new file mode 100644
index 0000000000..d5d588a3bb
Binary files /dev/null and b/content/en/blog/_posts/2022-04-28-Increasing-the-security-bar-in-Ingress-NGINX/ingress-post-chroot.png differ
diff --git a/content/en/blog/_posts/2022-04-28-Increasing-the-security-bar-in-Ingress-NGINX/ingress-pre-chroot.png b/content/en/blog/_posts/2022-04-28-Increasing-the-security-bar-in-Ingress-NGINX/ingress-pre-chroot.png
new file mode 100644
index 0000000000..38c7d54a55
Binary files /dev/null and b/content/en/blog/_posts/2022-04-28-Increasing-the-security-bar-in-Ingress-NGINX/ingress-pre-chroot.png differ
diff --git a/content/en/blog/_posts/2022-04-29-kubernetes-1.23-release-interview.md b/content/en/blog/_posts/2022-04-29-kubernetes-1.23-release-interview.md
new file mode 100644
index 0000000000..c2532638d0
--- /dev/null
+++ b/content/en/blog/_posts/2022-04-29-kubernetes-1.23-release-interview.md
@@ -0,0 +1,319 @@
+---
+layout: blog
+title: "Frontiers, fsGroups and frogs: the Kubernetes 1.23 release interview"
+date: 2022-04-29
+---
+
+**Author**: Craig Box (Google)
+
+One of the highlights of hosting the weekly [Kubernetes Podcast from Google](https://kubernetespodcast.com/) is talking to the release managers for each new Kubernetes version. The release team is constantly refreshing. Many working their way from small documentation fixes, step up to shadow roles, and then eventually lead a release.
+
+As we prepare for the 1.24 release next week, [in accordance with long-standing tradition](https://www.google.com/search?q=%22release+interview%22+site%3Akubernetes.io%2Fblog), I'm pleased to bring you a look back at the story of 1.23. The release was led by [Rey Lejano](https://twitter.com/reylejano), a Field Engineer at SUSE. [I spoke to Rey](https://kubernetespodcast.com/episode/167-kubernetes-1.23/) in December, as he was awaiting the birth of his first child.
+
+Make sure you [subscribe, wherever you get your podcasts](https://kubernetespodcast.com/subscribe/), so you hear all our stories from the Cloud Native community, including the story of 1.24 next week.
+
+*This transcript has been lightly edited and condensed for clarity.*
+
+---
+
+**CRAIG BOX: I'd like to start with what is, of course, on top of everyone's mind at the moment. Let's talk African clawed frogs!**
+
+REY LEJANO: [CHUCKLES] Oh, you mean [Xenopus lavis](https://en.wikipedia.org/wiki/African_clawed_frog), the scientific name for the African clawed frog?
+
+**CRAIG BOX: Of course.**
+
+REY LEJANO: Not many people know, but my background and my degree is actually in microbiology, from the University of California Davis. I did some research for about four years in biochemistry, in a biochemistry lab, and I [do have a research paper published](https://www.sciencedirect.com/science/article/pii/). It's actually on glycoproteins, particularly something called "cortical granule lectin". We used frogs, because they generate lots and lots of eggs, from which we can extract the protein. That protein prevents polyspermy. When the sperm goes into the egg, the egg releases a glycoprotein, cortical granule lectin, to the membrane, and prevents any other sperm from going inside the egg.
+
+**CRAIG BOX: Were you able to take anything from the testing that we did on frogs and generalize that to higher-order mammals, perhaps?**
+
+REY LEJANO: Yes. Since mammals also have cortical granule lectin, we were able to analyze both the convergence and the evolutionary pattern, not just from multiple species of frogs, but also into mammals as well.
+
+**CRAIG BOX: Now, there's a couple of different threads to unravel here. When you were young, what led you into the fields of biology, and perhaps more the technical side of it?**
+
+REY LEJANO: I think it was mostly from family, since I do have a family history in the medical field that goes back generations. So I kind of felt like that was the natural path going into college.
+
+**CRAIG BOX: Now, of course, you're working in a more abstract tech field. What led you out of microbiology?**
+
+REY LEJANO: [CHUCKLES] Well, I've always been interested in tech. Taught myself a little programming when I was younger, before high school, did some web dev stuff. Just kind of got burnt out being in a lab. I was literally in the basement. I had a great opportunity to join a consultancy that specialized in [ITIL](https://www.axelos.com/certifications/itil-service-management/what-is-itil). I actually started off with application performance management, went into monitoring, went into operation management and also ITIL, which is aligning your IT asset management and service managements with business services. Did that for a good number of years, actually.
+
+**CRAIG BOX: It's very interesting, as people describe the things that they went through and perhaps the technologies that they worked on, you can pretty much pinpoint how old they might be. There's a lot of people who come into tech these days that have never heard of ITIL. They have no idea what it is. It's basically just SRE with more process.**
+
+REY LEJANO: Yes, absolutely. It's not very cloud native. [CHUCKLES]
+
+**CRAIG BOX: Not at all.**
+
+REY LEJANO: You don't really hear about it in the cloud native landscape. Definitely, you can tell someone's been in the field for a little bit, if they specialize or have worked with ITIL before.
+
+**CRAIG BOX: You mentioned that you wanted to get out of the basement. That is quite often where people put the programmers. Did they just give you a bit of light in the new basement?**
+
+REY LEJANO: [LAUGHS] They did give us much better lighting. Able to get some vitamin D sometimes, as well.
+
+**CRAIG BOX: To wrap up the discussion about your previous career — over the course of the last year, with all of the things that have happened in the world, I could imagine that microbiology skills may be more in demand than perhaps they were when you studied them?**
+
+REY LEJANO: Oh, absolutely. I could definitely see a big increase of numbers of people going into the field. Also, reading what's going on with the world currently kind of brings back all the education I've learned in the past, as well.
+
+**CRAIG BOX: Do you keep in touch with people you went through school with?**
+
+REY LEJANO: Just some close friends, but not in the microbiology field.
+
+**CRAIG BOX: One thing that I think will probably happen as a result of the pandemic is a renewed interest in some of these STEM fields. It will be interesting to see what impact that has on society at large.**
+
+REY LEJANO: Yeah. I think that'll be great.
+
+**CRAIG BOX: You mentioned working at a consultancy doing IT management, application performance monitoring, and so on. When did Kubernetes come into your professional life?**
+
+REY LEJANO: One of my good friends at the company I worked at, left in mid-2015. He went on to a company that was pretty heavily into Docker. He taught me a little bit. I did my first "docker run" around 2015, maybe 2016. Then, one of the applications we were using for the ITIL framework was containerized around 2018 or so, also in Kubernetes. At that time, it was pretty buggy. That was my initial introduction to Kubernetes and containerised applications.
+
+Then I left that company, and I actually joined my friend over at [RX-M](https://rx-m.com/), which is a cloud native consultancy and training firm. They specialize in Docker and Kubernetes. I was able to get my feet wet. I got my CKD, got my CKA as well. And they were really, really great at encouraging us to learn more about Kubernetes and also to be involved in the community.
+
+**CRAIG BOX: You will have seen, then, the life cycle of people adopting Kubernetes and containerization at large, through your own initial journey and then through helping customers. How would you characterize how that journey has changed from the early days to perhaps today?**
+
+REY LEJANO: I think the early days, there was a lot of questions of, why do I have to containerize? Why can't I just stay with virtual machines?
+
+**CRAIG BOX: It's a line item on your CV.**
+
+REY LEJANO: [CHUCKLES] It is. And nowadays, I think people know the value of using containers, of orchestrating containers with Kubernetes. I don't want to say "jumping on the bandwagon", but it's become the de-facto standard to orchestrate containers.
+
+**CRAIG BOX: It's not something that a consultancy needs to go out and pitch to customers that they should be doing. They're just taking it as, that will happen, and starting a bit further down the path, perhaps.**
+
+REY LEJANO: Absolutely.
+
+**CRAIG BOX: Working at a consultancy like that, how much time do you get to work on improving process, perhaps for multiple customers, and then looking at how you can upstream that work, versus paid work that you do for just an individual customer at a time?**
+
+REY LEJANO: Back then, it would vary. They helped me introduce myself, and I learned a lot about the cloud native landscape and Kubernetes itself. They helped educate me as to how the cloud native landscape, and the tools around it, can be used together. My boss at that company, Randy, he actually encouraged us to start contributing upstream, and encouraged me to join the release team. He just said, this is a great opportunity. Definitely helped me with starting with the contributions early on.
+
+**CRAIG BOX: Was the release team the way that you got involved with upstream Kubernetes contribution?**
+
+REY LEJANO: Actually, no. My first contribution was  with SIG Docs. I met Taylor Dolezal — he was the release team lead for 1.19, but he is involved with SIG Docs as well. I met him at KubeCon 2019, I sat at his table during a luncheon. I remember Paris Pittman was hosting this luncheon at the Marriott. Taylor says he was involved with SIG Docs. He encouraged me to join. I started joining into meetings, started doing a few drive-by PRs. That's what we call them — drive-by — little typo fixes. Then did a little bit more, started to send better or higher quality pull requests, and also reviewing PRs.
+
+**CRAIG BOX: When did you first formally take your release team role?**
+
+REY LEJANO: That was in [1.18](https://github.com/kubernetes/sig-release/blob/master/releases/release-1.18/release_team.md), in December. My boss at the time encouraged me to apply. I did, was lucky enough to get accepted for the release notes shadow. Then from there, stayed in with release notes for a few cycles, then went into Docs, naturally then led Docs, then went to Enhancements, and now I'm the release lead for 1.23.
+
+**CRAIG BOX: I don't know that a lot of people think about what goes into a good release note. What would you say does?**
+
+REY LEJANO: [CHUCKLES] You have to tell the end user what has changed or what effect that they might see in the release notes. It doesn't have to be highly technical. It could just be a few lines, and just saying what has changed, what they have to do if they have to do anything as well.
+
+**CRAIG BOX: As you moved through the process of shadowing, how did you learn from the people who were leading those roles?**
+
+REY LEJANO: I said this a few times when I was the release lead for this cycle. You get out of the release team as much as you put in, or it directly aligns to how much you put in. I learned a lot. I went into the release team having that mindset of learning from the role leads, learning from the other shadows, as well. That's actually a saying that my first role lead told me. I still carry it to heart, and that was back in 1.18. That was Eddie, in the very first meeting we had, and I still carry it to heart.
+
+**CRAIG BOX: You, of course, were [the release lead for 1.23](https://github.com/kubernetes/sig-release/tree/master/releases/release-1.23). First of all, congratulations on the release.**
+
+REY LEJANO: Thank you very much.
+
+**CRAIG BOX: The theme for this release is [The Next Frontier](https://kubernetes.io/blog/2021/12/07/kubernetes-1-23-release-announcement/). Tell me the story of how we came to the theme and then the logo.**
+
+REY LEJANO: The Next Frontier represents a few things. It not only represents the next enhancements in this release, but Kubernetes itself also has a history of Star Trek references. The original codename for Kubernetes was Project Seven, a reference to Seven of Nine, originally from Star Trek Voyager. Also the seven spokes in the helm in the logo of Kubernetes as well. And, of course, Borg, the predecessor to Kubernetes.
+
+The Next Frontier continues that Star Trek reference. It's a fusion of two titles in the Star Trek universe. One is [Star Trek V, the Final Frontier](https://en.wikipedia.org/wiki/Star_Trek_V:_The_Final_Frontier), and the Star Trek: The Next Generation.
+
+**CRAIG BOX: Do you have any opinion on the fact that Star Trek V was an odd-numbered movie, and they are [canonically referred to as being lesser than the even-numbered ones](https://screenrant.com/star-trek-movies-odd-number-curse-explained/)?**
+
+REY LEJANO: I can't say, because I am such a sci-fi nerd that I love all of them even though they're bad. Even the post-Next Generation movies, after the series, I still liked all of them, even though I know some weren't that great.
+
+**CRAIG BOX: Am I right in remembering that Star Trek V was the one directed by William Shatner?**
+
+REY LEJANO: Yes, that is correct.
+
+**CRAIG BOX: I think that says it all.**
+
+REY LEJANO: [CHUCKLES] Yes.
+
+**CRAIG BOX: Now, I understand that the theme comes from a part of the [SIG Release charter](https://github.com/kubernetes/community/blob/master/sig-release/charter.md)?**
+
+REY LEJANO: Yes. There's a line in the SIG Release charter, "ensure there is a consistent group of community members in place to support the release process across time." With the release team, we have new shadows that join every single release cycle. With this, we're growing with this community. We're growing the release team members. We're growing SIG Release. We're growing the Kubernetes community itself. For a lot of people, this is their first time contributing to open source, so that's why I say it's their new open source frontier.
+
+**CRAIG BOX: And the logo is obviously very Star Trek-inspired. It sort of surprised me that it took that long for someone to go this route.**
+
+REY LEJANO: I was very surprised as well. I had to relearn Adobe Illustrator to create the logo.
+
+**CRAIG BOX: This your own work, is it?**
+
+REY LEJANO: This is my own work.
+
+**CRAIG BOX: It's very nice.**
+
+REY LEJANO: Thank you very much. Funny, the galaxy actually took me the longest time versus the ship. Took me a few days to get that correct. I'm always fine-tuning it, so there might be a final change when this is actually released.
+
+**CRAIG BOX: No frontier is ever truly final.**
+
+REY LEJANO: True, very true.
+
+**CRAIG BOX: Moving now from the theme of the release to the substance, perhaps, what is new in 1.23?**
+
+REY LEJANO: We have 47 enhancements. I'm going to run through most of the stable ones, if not all of them, some of the key Beta ones, and a few of the Alpha enhancements for 1.23.
+
+One of the key enhancements is [dual-stack IPv4/IPv6](https://github.com/kubernetes/enhancements/issues/563), which went GA in 1.23.
+
+Some background info: dual-stack was introduced as Alpha in 1.15. You probably saw a keynote at KubeCon 2019. Back then, the way dual-stack worked was that you needed two services — you needed a service per IP family. You would need a service for IPv4 and a service for IPv6. It was refactored in 1.20. In 1.21, it was in Beta; clusters were enabled to be dual-stack by default.
+
+And then in 1.23 we did remove the IPv6 dual-stack feature flag. It's not mandatory to use dual-stack. It's actually not "default" still. The pods, the services still default to single-stack. There are some requirements to be able to use dual-stack. The nodes have to be routable on IPv4 and IPv6 network interfaces. You need a CNI plugin that supports dual-stack. The pods themselves have to be configured to be dual-stack. And the services need the ipFamilyPolicy field to specify prefer dual-stack, or require dual-stack.
+
+**CRAIG BOX: This sounds like there's an implication in this that v4 is still required. Do you see a world where we can actually move to v6-only clusters?**
+
+REY LEJANO: I think we'll be talking about IPv4 and IPv6 for many, many years to come. I remember a long time ago, they kept saying "it's going to be all IPv6", and that was decades ago.
+
+**CRAIG BOX: I think I may have mentioned on the show before, but there was [a meeting in London that Vint Cerf attended](https://www.youtube.com/watch?v=AEaJtZVimqs), and he gave a public presentation at the time to say, now is the time of v6. And that was 10 years ago at least. It's still not the time of v6, and my desktop still doesn't have Linux on it. One day.**
+
+REY LEJANO: [LAUGHS] In my opinion, that's one of the big key features that went stable for 1.23.
+
+One of the other highlights of 1.23 is [pod security admission going to Beta](/blog/2021/12/09/pod-security-admission-beta/). I know this feature is going to Beta, but I highlight this because as some people might know, PodSecurityPolicy, which was deprecated in 1.21, is targeted to be removed in 1.25. Pod security admission replaces pod security policy. It's an admission controller. It evaluates the pods against a predefined set of pod security standards to either admit or deny the pod for running.
+
+There's three levels of pod security standards. Privileged, that's totally open. Baseline, known privileges escalations are minimized. Or Restricted, which is hardened. And you could set pod security standards either to run in three modes, which is enforce: reject any pods that are in violation; to audit: pods are allowed to be created, but the violations are recorded; or warn: it will send a warning message to the user, and the pod is allowed.
+
+**CRAIG BOX: You mentioned there that PodSecurityPolicy is due to be deprecated in two releases' time. Are we lining up these features so that pod security admission will be GA at that time?**
+
+REY LEJANO: Yes. Absolutely. I'll talk about that for another feature in a little bit as well. There's also another feature that went to GA. It was an API that went to GA, and therefore the Beta API is now deprecated. I'll talk about that a little bit.
+
+**CRAIG BOX: All right. Let's talk about what's next on the list.**
+
+REY LEJANO: Let's move on to more stable enhancements. One is the [TTL controller](https://github.com/kubernetes/enhancements/issues/592). This cleans up jobs and pods after the jobs are finished. There is a TTL timer that starts when the job or pod is finished. This TTL controller watches all the jobs, and ttlSecondsAfterFinished needs to be set. The controller will see if the ttlSecondsAfterFinished, combined with the last transition time, if it's greater than now. If it is, then it will delete the job and the pods of that job.
+
+**CRAIG BOX: Loosely, it could be called a garbage collector?**
+
+REY LEJANO: Yes. Garbage collector for pods and jobs, or jobs and pods.
+
+**CRAIG BOX: If Kubernetes is truly becoming a programming language, it of course has to have a garbage collector implemented.**
+
+REY LEJANO: Yeah. There's another one, too, coming in Alpha. [CHUCKLES]
+
+**CRAIG BOX: Tell me about that.**
+
+REY LEJANO: That one is coming in in Alpha. It's actually one of my favorite features, because there's only a few that I'm going to highlight today. [PVCs for StafeulSet will be cleaned up](https://github.com/kubernetes/enhancements/issues/1847). It will auto-delete PVCs created by StatefulSets, when you delete that StatefulSet.
+
+**CRAIG BOX: What's next on our tour of stable features?**
+
+REY LEJANO: Next one is, [skip volume ownership change goes to stable](https://github.com/kubernetes/enhancements/issues/695). This is from SIG Storage. There are times when you're running a stateful application, like many databases, they're sensitive to permission bits changing underneath. Currently, when a volume is bind mounted inside the container, the permissions of that volume will change recursively. It might take a really long time.
+
+Now, there's a field, the fsGroupChangePolicy, which allows you, as a user, to tell Kubernetes how you want the permission and ownership change for that volume to happen. You can set it to always, to always change permissions, or just on mismatch, to only do it when the permission ownership changes at the top level is different from what is expected.
+
+**CRAIG BOX: It does feel like a lot of these enhancements came from a very particular use case where someone said, "hey, this didn't work for me and I've plumbed in a feature that works with exactly the thing I need to have".**
+
+REY LEJANO: Absolutely. People create issues for these, then create Kubernetes enhancement proposals, and then get targeted for releases.
+
+**CRAIG BOX: Another GA feature in this release — ephemeral volumes.**
+
+REY LEJANO: We've always been able to use empty dir for ephemeral volumes, but now we could actually have [ephemeral inline volumes](https://github.com/kubernetes/enhancements/issues/1698), meaning that you could take your standard CSI driver and be able to use ephemeral volumes with it.
+
+**CRAIG BOX: And, a long time coming, [CronJobs](https://github.com/kubernetes/enhancements/issues/19).**
+
+REY LEJANO: CronJobs is a funny one, because it was stable before 1.23. For 1.23, it was still tracked,but it was just cleaning up some of the old controller. With CronJobs, there's a v2 controller. What was cleaned up in 1.23 is just the old v1 controller.
+
+**CRAIG BOX: Were there any other duplications or major cleanups of note in this release?**
+
+REY LEJANO: Yeah. There were a few you might see in the major themes. One's a little tricky, around FlexVolumes. This is one of the efforts from SIG Storage. They have an effort to migrate in-tree plugins to CSI drivers. This is a little tricky, because FlexVolumes were actually deprecated in November 2020. We're [formally announcing it in 1.23](https://github.com/kubernetes/community/blob/master/sig-storage/volume-plugin-faq.md#kubernetes-volume-plugin-faq-for-storage-vendors).
+
+**CRAIG BOX: FlexVolumes, in my mind, predate CSI as a concept. So it's about time to get rid of them.**
+
+REY LEJANO: Yes, it is. There's another deprecation, just some [klog specific flags](https://kubernetes.io/docs/concepts/cluster-administration/system-logs/#klog), but other than that, there are no other big deprecations in 1.23.
+
+**CRAIG BOX: The buzzword of the last KubeCon, and in some ways the theme of the last 12 months, has been secure software supply chain. What work is Kubernetes doing to improve in this area?**
+
+REY LEJANO: For 1.23, Kubernetes is now SLSA compliant at Level 1, which means that provenance attestation files that describe the staging and release phases of the release process are satisfactory for the SLSA framework.
+
+**CRAIG BOX: What needs to happen to step up to further levels?**
+
+REY LEJANO: Level 1 means a few things — that the build is scripted; that the provenance is available, meaning that the artifacts are verified and they're handed over from one phase to the next; and describes how the artifact is produced. Level 2 means that the source is version-controlled, which it is, provenance is authenticated, provenance is service-generated, and there is a build service. There are four levels of SLSA compliance.
+
+**CRAIG BOX: It does seem like the levels were largely influenced by what it takes to build a big, secure project like this. It doesn't seem like it will take a lot of extra work to move up to verifiable provenance, for example. There's probably just a few lines of script required to meet many of those requirements.**
+
+REY LEJANO: Absolutely. I feel like we're almost there; we'll see what will come out of 1.24. And I do want to give a big shout-out to SIG Release and Release Engineering, primarily to Adolfo García Veytia, who is aka Puerco on GitHub and on Slack. He's been driving this forward.
+
+**CRAIG BOX: You've mentioned some APIs that are being graduated in time to replace their deprecated version. Tell me about the new HPA API.**
+
+REY LEJANO: The [horizontal pod autoscaler v2 API](https://github.com/kubernetes/enhancements/issues/2702), is now stable, which means that the v2beta2 API is deprecated. Just for everyone's knowledge, the v1 API is not being deprecated. The difference is that v2 adds support for multiple and custom metrics to be used for HPA.
+
+**CRAIG BOX: There's also now a facility to validate my CRDs with an expression language.**
+
+REY LEJANO: Yeah. You can use the [Common Expression Language, or CEL](https://github.com/google/cel-spec), to validate your CRDs, so you no longer need to use webhooks. This also makes the CRDs more self-contained and declarative, because the rules are now kept within the CRD object definition.
+
+**CRAIG BOX: What new features, perhaps coming in Alpha or Beta, have taken your interest?**
+
+REY LEJANO: Aside from pod security policies, I really love [ephemeral containers](https://github.com/kubernetes/enhancements/issues/277) supporting kubectl debug. It launches an ephemeral container and a running pod, shares those pod namespaces, and you can do all your troubleshooting with just running kubectl debug.
+
+**CRAIG BOX: There's also been some interesting changes in the way that events are handled with kubectl.**
+
+REY LEJANO: Yeah. kubectl events has always had some issues, like how things weren't sorted. [kubectl events improved](https://github.com/kubernetes/enhancements/issues/1440) that so now you can do `--watch`, and it will also sort with the `--watch` option as well. That is something new. You can actually combine fields and custom columns. And also, you can list events in the timeline with doing the last N number of minutes. And you can also sort events using other criteria as well.
+
+**CRAIG BOX: You are a field engineer at SUSE. Are there any things that are coming in that your individual customers that you deal with are looking out for?**
+
+REY LEJANO: More of what I look out for to help the customers.
+
+**CRAIG BOX: Right.**
+
+REY LEJANO: I really love kubectl events. Really love the PVCs being cleaned up with StatefulSets. Most of it's for selfish reasons that it will improve troubleshooting efforts. [CHUCKLES]
+
+**CRAIG BOX: I have always hoped that a release team lead would say to me, "yes, I have selfish reasons. And I finally got something I wanted in."**
+
+REY LEJANO: [LAUGHS]
+
+**CRAIG BOX: Perhaps I should run to be release team lead, just so I can finally get init containers fixed once and for all.**
+
+REY LEJANO: Oh, init containers, I've been looking for that for a while. I've actually created animated GIFs on how init containers will be run with that Kubernetes enhancement proposal, but it's halted currently.
+
+**CRAIG BOX: One day.**
+
+REY LEJANO: One day. Maybe I shouldn't stay halted.
+
+**CRAIG BOX: You mentioned there are obviously the things you look out for. Are there any things that are coming down the line, perhaps Alpha features or maybe even just proposals you've seen lately, that you're personally really looking forward to seeing which way they go?**
+
+REY LEJANO: Yeah. Oone is a very interesting one, it affects the whole community, so it's not just for personal reasons. As you may have known, Dockershim is deprecated. And we did release a blog that it will be removed in 1.24.
+
+**CRAIG BOX: Scared a bunch of people.**
+
+REY LEJANO: Scared a bunch of people. From a survey, we saw that a lot of people are still using Docker and Dockershim. One of the enhancements for 1.23 is, [kubelet CRI goes to Beta](https://github.com/kubernetes/enhancements/issues/2040). This promotes the CRI API, which is required. This had to be in Beta for Dockershim to be removed in 1.24.
+
+**CRAIG BOX: Now, in the last release team lead interview, [we spoke with Savitha Raghunathan](https://kubernetespodcast.com/episode/157-kubernetes-1.22/), and she talked about what she would advise you as her successor. It was to look out for the mental health of the team members. How were you able to take that advice on board?**
+
+REY LEJANO: That was great advice from Savitha. A few things I've made note of with each release team meeting. After each release team meeting, I stop the recording, because we do record all the meetings and post them on YouTube. And I open up the floor to anyone who wants to say anything that's not recorded, that's not going to be on the agenda. Also, I tell people not to work on weekends. I broke this rule once, but other than that, I told people it could wait. Just be mindful of your mental health.
+
+**CRAIG BOX: It's just been announced that [James Laverack from Jetstack](https://twitter.com/JamesLaverack/status/1466834312993644551) will be the release team lead for 1.24. James and I shared an interesting Mexican dinner at the last KubeCon in San Diego.**
+
+REY LEJANO: Oh, nice. I didn't know you knew James.
+
+**CRAIG BOX: The British tech scene. We're a very small world. What will your advice to James be?**
+
+REY LEJANO: What I would tell James for 1.24 is use teachable moments in the release team meetings. When you're a shadow for the first time, it's very daunting. It's very difficult, because you don't know the repos. You don't know the release process. Everyone around you seems like they know the release process, and very familiar with what the release process is. But as a first-time shadow, you don't know all the vernacular for the community. I just advise to use teachable moments. Take a few minutes in the release team meetings to make it a little easier for new shadows to ramp up and to be familiar with the release process.
+
+**CRAIG BOX: Has there been major evolution in the process in the time that you've been involved? Or do you think that it's effectively doing what it needs to do?**
+
+REY LEJANO: It's always evolving. I remember my first time in release notes, 1.18, we said that our goal was to automate and program our way out so that we don't have a release notes team anymore. That's changed [CHUCKLES] quite a bit. Although there's been significant advancements in the release notes process by Adolfo and also James, they've created a subcommand in krel to generate release notes.
+
+But nowadays, all their release notes are richer. Still not there at the automation process yet. Every release cycle, there is something a little bit different. For this release cycle, we had a production readiness review deadline. It was a soft deadline. A production readiness review is a review by several people in the community. It's actually been required since 1.21, and it ensures that the enhancements are observable, scalable, supportable, and it's safe to operate in production, and could also be disabled or rolled back. In 1.23, we had a deadline to have the production readiness review completed by a specific date.
+
+**CRAIG BOX: How have you found the change of schedule to three releases per year rather than four?**
+
+REY LEJANO: Moving to three releases a year from four, in my opinion, has been an improvement, because we support the last three releases, and now we can actually support the last releases in a calendar year instead of having 9 months out of 12 months of the year.
+
+**CRAIG BOX: The next event on the calendar is a [Kubernetes contributor celebration](https://www.kubernetes.dev/events/kcc2021/) starting next Monday. What can we expect from that event?**
+
+REY LEJANO: This is our second time running this virtual event. It's a virtual celebration to recognize the whole community and all of our accomplishments of the year, and also contributors. There's a number of events during this week of celebration. It starts the week of December 13.
+
+There's events like the Kubernetes Contributor Awards, where SIGs honor and recognize the hard work of the community and contributors. There's also a DevOps party game as well. There is a cloud native bake-off. I do highly suggest people to go to [kubernetes.dev/celebration](https://www.kubernetes.dev/events/past-events/2021/kcc2021/) to learn more.
+
+**CRAIG BOX: How exactly does one judge a virtual bake-off?**
+
+REY LEJANO: That I don't know. [CHUCKLES]
+
+**CRAIG BOX: I tasted my scones. I think they're the best. I rate them 10 out of 10.**
+
+REY LEJANO: Yeah. That is very difficult to do virtually. I would have to say, probably what the dish is, how closely it is tied with Kubernetes or open source or to CNCF. There's a few judges. I know Josh Berkus and Rin Oliver are a few of the judges running the bake-off.
+
+**CRAIG BOX: Yes. We spoke with Josh about his love of the kitchen, and so he seems like a perfect fit for that role.**
+
+REY LEJANO: He is.
+
+**CRAIG BOX: Finally, your wife and yourself are expecting your first child in January. Have you had a production readiness review for that?**
+
+REY LEJANO: I think we failed that review. [CHUCKLES]
+
+**CRAIG BOX: There's still time.**
+
+REY LEJANO: We are working on refactoring. We're going to refactor a little bit in December, and `--apply` again.
+
+---
+
+_[Rey Lejano](https://twitter.com/reylejano) is a field engineer at SUSE, by way of Rancher Labs, and was the release team lead for Kubernetes 1.23. He is now also a co-chair for SIG Docs. His son Liam is now 3 and a half months old._
+
+_You can find the [Kubernetes Podcast from Google](http://www.kubernetespodcast.com/) at [@KubernetesPod](https://twitter.com/KubernetesPod) on Twitter, and you can [subscribe](https://kubernetespodcast.com/subscribe/) so you never miss an episode._
diff --git a/content/en/blog/_posts/2022-05-03-dockershim-historical-context.md b/content/en/blog/_posts/2022-05-03-dockershim-historical-context.md
new file mode 100644
index 0000000000..6bdfac570d
--- /dev/null
+++ b/content/en/blog/_posts/2022-05-03-dockershim-historical-context.md
@@ -0,0 +1,25 @@
+---
+layout: blog
+title: "Dockershim: The Historical Context"
+date: 2022-05-03
+slug: dockershim-historical-context
+---
+
+**Author:** Kat Cosgrove
+
+
+Dockershim has been removed as of Kubernetes v1.24, and this is a positive move for the project. However, context is important for fully understanding something, be it socially or in software development, and this deserves a more in-depth review. Alongside the dockershim removal in Kubernetes v1.24, we’ve seen some confusion (sometimes at a panic level) and dissatisfaction with this decision in the community, largely due to a lack of context around this removal. The decision to deprecate and eventually remove dockershim from Kubernetes was not made quickly or lightly. Still, it’s been in the works for so long that many of today’s users are newer than that decision, and certainly newer than the choices that led to the dockershim being necessary in the first place.
+
+So what is the dockershim, and why is it going away?
+
+In the early days of Kubernetes, we only supported one container runtime. That runtime was Docker Engine. Back then, there weren’t really a lot of other options out there and Docker was the dominant tool for working with containers, so this was not a controversial choice. Eventually, we started adding more container runtimes, like rkt and hypernetes, and it became clear that Kubernetes users want a choice of runtimes working best for them. So Kubernetes needed a way to allow cluster operators the flexibility to use whatever runtime they choose.
+
+The [Container Runtime Interface](/blog/2016/12/container-runtime-interface-cri-in-kubernetes/) (CRI) was released to allow that flexibility. The introduction of CRI was great for the project and users alike, but it did introduce a problem: Docker Engine’s use as a container runtime predates CRI, and Docker Engine is not CRI-compatible. To solve this issue, a small software shim (dockershim) was introduced as part of the kubelet component specifically to fill in the gaps between Docker Engine and CRI, allowing cluster operators to continue using Docker Engine as their container runtime largely uninterrupted.
+
+However, this little software shim was never intended to be a permanent solution. Over the course of years, its existence has introduced a lot of unnecessary complexity to the kubelet itself. Some integrations are inconsistently implemented for Docker because of this shim, resulting in an increased burden on maintainers, and maintaining vendor-specific code is not in line with our open source philosophy. To reduce this maintenance burden and move towards a more collaborative community in support of open standards, [KEP-2221 was introduced](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2221-remove-dockershim), proposing the removal of the dockershim. With the release of Kubernetes v1.20, the deprecation was official.
+
+We didn’t do a great job communicating this, and unfortunately, the deprecation announcement led to some panic within the community. Confusion around what this meant for Docker as a company, if container images built by Docker would still run, and what Docker Engine actually is led to a conflagration on social media. This was our fault; we should have more clearly communicated what was happening and why at the time. To combat this, we released [a blog](/blog/2020/12/02/dont-panic-kubernetes-and-docker/) and [accompanying FAQ](/blog/2020/12/02/dockershim-faq/) to allay the community’s fears and correct some misconceptions about what Docker is and how containers work within Kubernetes. As a result of the community’s concerns, Docker and Mirantis jointly agreed to continue supporting the dockershim code in the form of [cri-dockerd](https://www.mirantis.com/blog/the-future-of-dockershim-is-cri-dockerd/), allowing you to continue using Docker Engine as your container runtime if need be. For the interest of users who want to try other runtimes, like containerd or cri-o, [migration documentation was written](/docs/tasks/administer-cluster/migrating-from-dockershim/change-runtime-containerd/).
+
+We later [surveyed the community](https://kubernetes.io/blog/2021/11/12/are-you-ready-for-dockershim-removal/) and [discovered that there are still many users with questions and concerns](/blog/2022/01/07/kubernetes-is-moving-on-from-dockershim). In response, Kubernetes maintainers and the CNCF committed to addressing these concerns by extending documentation and other programs. In fact, this blog post is a part of this program. With so many end users successfully migrated to other runtimes, and improved documentation, we believe that everyone has a paved way to migration now.
+
+Docker is not going away, either as a tool or as a company. It’s an important part of the cloud native community and the history of the Kubernetes project. We wouldn’t be where we are without them. That said, removing dockershim from kubelet is ultimately good for the community, the ecosystem, the project, and open source at large. This is an opportunity for all of us to come together to support open standards, and we’re glad to be doing so with the help of Docker and the community.
diff --git a/content/en/blog/_posts/2022-05-03-kubernetes-release-1.24.md b/content/en/blog/_posts/2022-05-03-kubernetes-release-1.24.md
new file mode 100644
index 0000000000..f29c6c92fe
--- /dev/null
+++ b/content/en/blog/_posts/2022-05-03-kubernetes-release-1.24.md
@@ -0,0 +1,242 @@
+---
+layout: blog
+title: "Kubernetes 1.24: Stargazer"
+date: 2022-05-03
+slug: kubernetes-1-24-release-announcement
+---
+
+**Authors**: [Kubernetes 1.24 Release Team](https://github.com/kubernetes/sig-release/blob/master/releases/release-1.24/release-team.md)
+
+We are excited to announce the release of Kubernetes 1.24, the first release of 2022!
+
+This release consists of 46 enhancements: fourteen enhancements have graduated to stable, 
+fifteen enhancements are moving to beta, and thirteen enhancements are entering alpha. 
+Also, two features have been deprecated, and two features have been removed.     
+
+## Major Themes
+
+### Dockershim Removed from kubelet
+
+After its deprecation in v1.20, the dockershim component has been removed from the kubelet in Kubernetes v1.24.
+From v1.24 onwards, you will need to either use one of the other [supported runtimes](/docs/setup/production-environment/container-runtimes/) (such as containerd or CRI-O) 
+or use cri-dockerd if you are relying on Docker Engine as your container runtime. 
+For more information about ensuring your cluster is ready for this removal, please 
+see [this guide](/blog/2022/03/31/ready-for-dockershim-removal/). 
+
+### Beta APIs Off by Default 
+
+[New beta APIs will not be enabled in clusters by default](https://github.com/kubernetes/enhancements/issues/3136). 
+Existing beta APIs and new versions of existing beta APIs will continue to be enabled by default.
+  
+### Signing Release Artifacts
+
+Release artifacts are [signed](https://github.com/kubernetes/enhancements/issues/3031) using [cosign](https://github.com/sigstore/cosign) 
+signatures,
+and there is experimental support for [verifying image signatures](/docs/tasks/administer-cluster/verify-signed-images/). 
+Signing and verification of release artifacts is part of [increasing software supply chain security for the Kubernetes release process](https://github.com/kubernetes/enhancements/issues/3027). 
+
+### OpenAPI v3
+
+Kubernetes 1.24 offers beta support for publishing its APIs in the [OpenAPI v3 format](https://github.com/kubernetes/enhancements/issues/2896). 
+  
+### Storage Capacity and Volume Expansion Are Generally Available
+
+[Storage capacity tracking](https://github.com/kubernetes/enhancements/issues/1472) 
+supports exposing currently available storage capacity via [CSIStorageCapacity objects](/docs/concepts/storage/storage-capacity/#api) 
+and enhances scheduling of pods that use CSI volumes with late binding.
+
+[Volume expansion](https://github.com/kubernetes/enhancements/issues/284) adds support 
+for resizing existing persistent volumes. 
+
+### NonPreemptingPriority to Stable
+
+This feature adds [a new option to PriorityClasses](https://github.com/kubernetes/enhancements/issues/902), 
+which can enable or disable pod preemption. 
+
+### Storage Plugin Migration
+
+Work is underway to [migrate the internals of in-tree storage plugins](https://github.com/kubernetes/enhancements/issues/625) to call out to CSI Plugins
+while maintaining the original API.
+The [Azure Disk](https://github.com/kubernetes/enhancements/issues/1490)
+and [OpenStack Cinder](https://github.com/kubernetes/enhancements/issues/1489) plugins
+have both been migrated.
+
+### gRPC Probes Graduate to Beta
+
+With Kubernetes 1.24, the [gRPC probes functionality](https://github.com/kubernetes/enhancements/issues/2727) 
+has entered beta and is available by default. You can now [configure startup, liveness, and readiness probes](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes) for your gRPC app 
+natively within Kubernetes without exposing an HTTP endpoint or
+using an extra executable.
+
+### Kubelet Credential Provider Graduates to Beta
+
+Originally released as Alpha in Kubernetes 1.20, the kubelet's support for
+[image credential providers](/docs/tasks/kubelet-credential-provider/kubelet-credential-provider/)
+has now graduated to Beta.
+This allows the kubelet to dynamically retrieve credentials for a container image registry
+using exec plugins rather than storing credentials on the node's filesystem.
+
+### Contextual Logging in Alpha
+
+Kubernetes 1.24 has introduced [contextual logging](https://github.com/kubernetes/enhancements/issues/3077) 
+that enables the caller of a function to control all aspects of logging (output formatting, verbosity, additional values, and names).
+
+### Avoiding Collisions in IP allocation to Services
+
+Kubernetes 1.24 introduces a new opt-in feature that allows you to
+[soft-reserve a range for static IP address assignments](/docs/concepts/services-networking/service/#service-ip-static-sub-range)
+to Services.
+With the manual enablement of this feature, the cluster will prefer automatic assignment from 
+the pool of Service IP addresses, thereby reducing the risk of collision. 
+
+A Service `ClusterIP` can be assigned:
+
+* dynamically, which means the cluster will automatically pick a free IP within the configured Service IP range.
+* statically, which means the user will set one IP within the configured Service IP range.
+
+Service `ClusterIP` are unique; hence, trying to create a Service with a `ClusterIP` that has already been allocated will return an error.
+
+### Dynamic Kubelet Configuration is Removed from the Kubelet
+
+After being deprecated in Kubernetes 1.22, Dynamic Kubelet Configuration has been removed from the kubelet. The feature will be removed from the API server in Kubernetes 1.26.
+
+## CNI Version-Related Breaking Change
+
+Before you upgrade to Kubernetes 1.24, please verify that you are using/upgrading to a container 
+runtime that has been tested to work correctly with this release.
+
+For example, the following container runtimes are being prepared, or have already been prepared, for Kubernetes:
+
+* containerd v1.6.4 and later, v1.5.11 and later
+* CRI-O 1.24 and later
+
+Service issues exist for pod CNI network setup and tear down in containerd
+v1.6.0–v1.6.3 when the CNI plugins have not been upgraded and/or the CNI config
+version is not declared in the CNI config files. The containerd team reports, "these issues are resolved in containerd v1.6.4."
+
+With containerd v1.6.0–v1.6.3, if you do not upgrade the CNI plugins and/or
+declare the CNI config version, you might encounter the following "Incompatible
+CNI versions" or "Failed to destroy network for sandbox" error conditions.
+
+## CSI Snapshot
+
+_This information was added after initial publication._
+
+[VolumeSnapshot v1beta1 CRD has been removed](https://github.com/kubernetes/enhancements/issues/177). 
+Volume snapshot and restore functionality for Kubernetes and the Container Storage Interface (CSI), which provides standardized APIs design (CRDs) and adds PV snapshot/restore support for CSI volume drivers, moved to GA in v1.20. VolumeSnapshot v1beta1 was deprecated in v1.20 and is now unsupported. Refer to [KEP-177: CSI Snapshot](https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/177-volume-snapshot#kep-177-csi-snapshot) and [Volume Snapshot GA blog](https://kubernetes.io/blog/2020/12/10/kubernetes-1.20-volume-snapshot-moves-to-ga/) for more information.
+
+## Other Updates
+
+### Graduations to Stable
+
+This release saw fourteen enhancements promoted to stable: 
+
+* [Container Storage Interface (CSI) Volume Expansion](https://github.com/kubernetes/enhancements/issues/284)
+* [Pod Overhead](https://github.com/kubernetes/enhancements/issues/688): Account for resources tied to the pod sandbox but not specific containers.
+* [Add non-preempting option to PriorityClasses](https://github.com/kubernetes/enhancements/issues/902)
+* [Storage Capacity Tracking](https://github.com/kubernetes/enhancements/issues/1472) 
+* [OpenStack Cinder In-Tree to CSI Driver Migration](https://github.com/kubernetes/enhancements/issues/1489)
+* [Azure Disk In-Tree to CSI Driver Migration](https://github.com/kubernetes/enhancements/issues/1490)
+* [Efficient Watch Resumption](https://github.com/kubernetes/enhancements/issues/1904): Watch can be efficiently resumed after kube-apiserver reboot. 
+* [Service Type=LoadBalancer Class Field](https://github.com/kubernetes/enhancements/issues/1959): Introduce a new Service annotation `service.kubernetes.io/load-balancer-class` that allows multiple implementations of `type: LoadBalancer` Services in the same cluster.
+* [Indexed Job](https://github.com/kubernetes/enhancements/issues/2214): Add a completion index to Pods of Jobs with a fixed completion count.
+* [Add Suspend Field to Jobs API](https://github.com/kubernetes/enhancements/issues/2232): Add a suspend field to the Jobs API to allow orchestrators to create jobs with more control over when pods are created.
+* [Pod Affinity NamespaceSelector](https://github.com/kubernetes/enhancements/issues/2249): Add a `namespaceSelector` field for to pod affinity/anti-affinity spec.
+* [Leader Migration for Controller Managers](https://github.com/kubernetes/enhancements/issues/2436): kube-controller-manager and cloud-controller-manager can apply new controller-to-controller-manager assignment in HA control plane without downtime.
+* [CSR Duration](https://github.com/kubernetes/enhancements/issues/2784): Extend the CertificateSigningRequest API with a mechanism to allow clients to request a specific duration for the issued certificate.
+
+### Major Changes
+
+This release saw two major changes: 
+
+* [Dockershim Removal](https://github.com/kubernetes/enhancements/issues/2221)
+* [Beta APIs are off by Default](https://github.com/kubernetes/enhancements/issues/3136)
+
+### Release Notes
+
+Check out the full details of the Kubernetes 1.24 release in our [release notes](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.24.md).
+    
+### Availability
+
+Kubernetes 1.24 is available for download on [GitHub](https://github.com/kubernetes/kubernetes/releases/tag/v1.24.0).
+To get started with Kubernetes, check out these [interactive tutorials](/docs/tutorials/) or run local 
+Kubernetes clusters using containers as “nodes”, with [kind](https://kind.sigs.k8s.io/).
+You can also easily install 1.24 using [kubeadm](/docs/setup/independent/create-cluster-kubeadm/).
+
+### Release Team
+
+This release would not have been possible without the combined efforts of committed individuals 
+comprising the Kubernetes 1.24 release team. This team came together to deliver all of the components 
+that go into each Kubernetes release, including code, documentation, release notes, and more. 
+
+Special thanks to James Laverack, our release lead, for guiding us through a successful release cycle, 
+and to all of the release team members for the time and effort they put in to deliver the v1.24 
+release for the Kubernetes community. 
+
+### Release Theme and Logo 
+
+**Kubernetes 1.24: Stargazer**
+
+{{< figure src="/images/blog/2022-05-03-kubernetes-release-1.24/kubernetes-1.24.png" alt="" class="release-logo" >}}
+
+The theme for Kubernetes 1.24 is _Stargazer_.
+
+Generations of people have looked to the stars in awe and wonder, from ancient astronomers to the 
+scientists who built the James Webb Space Telescope. The stars have inspired us, set our imagination 
+alight, and guided us through long nights on difficult seas.
+
+With this release we gaze upwards, to what is possible when our community comes together. Kubernetes 
+is the work of hundreds of contributors across the globe and thousands of end-users supporting 
+applications that serve millions. Every one is a star in our sky, helping us chart our course.
+
+The release logo is made by [Britnee Laverack](https://www.instagram.com/artsyfie/), and depicts a telescope set upon starry skies and the 
+[Pleiades](https://en.wikipedia.org/wiki/Pleiades), often known in mythology as the “Seven Sisters”. The number seven is especially auspicious 
+for the Kubernetes project, and is a reference back to our original “Project Seven” name.
+
+This release of Kubernetes is named for those that would look towards the night sky and wonder — for 
+all the stargazers out there. ✨
+   
+### User Highlights
+
+* Check out how leading retail e-commerce company [La Redoute used Kubernetes, alongside other CNCF projects, to transform and streamline its software delivery lifecycle](https://www.cncf.io/case-studies/la-redoute/) - from development to operations. 
+* Trying to ensure no change to an API call would cause any breaks, [Salt Security built its microservices entirely on Kubernetes, and it communicates via gRPC while Linkerd ensures messages are encrypted](https://www.cncf.io/case-studies/salt-security/).
+* In their effort to migrate from private to public cloud, [Allainz Direct engineers redesigned its CI/CD pipeline in just three months while managing to condense 200 workflows down to 10-15](https://www.cncf.io/case-studies/allianz/).
+* Check out how [Bink, a UK based fintech company, updated its in-house Kubernetes distribution with Linkerd to build a cloud-agnostic platform that scales as needed whilst allowing them to keep a close eye on performance and stability](https://www.cncf.io/case-studies/bink/).
+* Using Kubernetes, the Dutch organization [Stichting Open Nederland](http://www.stichtingopennederland.nl/) created a testing portal in just one-and-a-half months to help safely reopen events in the Netherlands. The [Testing for Entry (Testen voor Toegang)](https://www.testenvoortoegang.org/) platform [leveraged the performance and scalability of Kubernetes to help individuals book over 400,000 COVID-19 testing appointments per day. ](https://www.cncf.io/case-studies/true/)
+* Working alongside SparkFabrik and utilizing Backstage, [Santagostino created the developer platform Samaritan to centralize services and documentation, manage the entire lifecycle of services, and simplify the work of Santagostino developers](https://www.cncf.io/case-studies/santagostino/).
+
+### Ecosystem Updates
+
+* KubeCon + CloudNativeCon Europe 2022 will take place in Valencia, Spain, from 16 – 20 May 2022! You can find more information about the conference and registration on the [event site](https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/).
+* In the [2021 Cloud Native Survey](https://www.cncf.io/announcements/2022/02/10/cncf-sees-record-kubernetes-and-container-adoption-in-2021-cloud-native-survey/), the CNCF saw record Kubernetes and container adoption. Take a look at the [results of the survey](https://www.cncf.io/reports/cncf-annual-survey-2021/). 
+* The [Linux Foundation](https://www.linuxfoundation.org/) and [The Cloud Native Computing Foundation](https://www.cncf.io/) (CNCF) announced the availability of a new [Cloud Native Developer Bootcamp](https://training.linuxfoundation.org/training/cloudnativedev-bootcamp/?utm_source=lftraining&utm_medium=pr&utm_campaign=clouddevbc0322) to provide participants with the knowledge and skills to design, build, and deploy cloud native applications. Check out the [announcement](https://www.cncf.io/announcements/2022/03/15/new-cloud-native-developer-bootcamp-provides-a-clear-path-to-cloud-native-careers/) to learn more.
+
+### Project Velocity
+
+The [CNCF K8s DevStats](https://k8s.devstats.cncf.io/d/12/dashboards?orgId=1&refresh=15m) project 
+aggregates a number of interesting data points related to the velocity of Kubernetes and various 
+sub-projects. This includes everything from individual contributions to the number of companies that 
+are contributing, and is an illustration of the depth and breadth of effort that goes into evolving this ecosystem.
+
+In the v1.24 release cycle, which [ran for 17 weeks](https://github.com/kubernetes/sig-release/tree/master/releases/release-1.24) (January 10 to May 3), we saw contributions from [1029 companies](https://k8s.devstats.cncf.io/d/9/companies-table?orgId=1&var-period_name=v1.23.0%20-%20v1.24.0&var-metric=contributions) and [1179 individuals](https://k8s.devstats.cncf.io/d/66/developer-activity-counts-by-companies?orgId=1&var-period_name=v1.23.0%20-%20v1.24.0&var-metric=contributions&var-repogroup_name=Kubernetes&var-country_name=All&var-companies=All&var-repo_name=kubernetes%2Fkubernetes).
+
+## Upcoming Release Webinar
+
+Join members of the Kubernetes 1.24 release team on Tue May 24, 2022 9:45am – 11am PT to learn about 
+the major features of this release, as well as deprecations and removals to help plan for upgrades. 
+For more information and registration, visit the [event page](https://community.cncf.io/e/mck3kd/) 
+on the CNCF Online Programs site.
+
+## Get Involved
+
+The simplest way to get involved with Kubernetes is by joining one of the many [Special Interest Groups](https://github.com/kubernetes/community/blob/master/sig-list.md) (SIGs) that align with your interests. 
+Have something you’d like to broadcast to the Kubernetes community? Share your voice at our weekly [community meeting](https://github.com/kubernetes/community/tree/master/communication), and through the channels below:
+
+* Find out more about contributing to Kubernetes at the [Kubernetes Contributors](https://www.kubernetes.dev/) website
+* Follow us on Twitter [@Kubernetesio](https://twitter.com/kubernetesio) for the latest updates
+* Join the community discussion on [Discuss](https://discuss.kubernetes.io/)
+* Join the community on [Slack](http://slack.k8s.io/)
+* Post questions (or answer questions) on [Server Fault](https://serverfault.com/questions/tagged/kubernetes).
+* Share your Kubernetes [story](https://docs.google.com/a/linuxfoundation.org/forms/d/e/1FAIpQLScuI7Ye3VQHQTwBASrgkjQDSS5TP0g3AXfFhwSM9YpHgxRKFA/viewform)
+* Read more about what’s happening with Kubernetes on the [blog](https://kubernetes.io/blog/)
+* Learn more about the [Kubernetes Release Team](https://github.com/kubernetes/sig-release/tree/master/release-team)
diff --git a/content/en/blog/_posts/2022-05-05-volume-expansion-ga.md b/content/en/blog/_posts/2022-05-05-volume-expansion-ga.md
new file mode 100644
index 0000000000..c823ae8a2c
--- /dev/null
+++ b/content/en/blog/_posts/2022-05-05-volume-expansion-ga.md
@@ -0,0 +1,103 @@
+---
+layout: blog
+title: "Kubernetes 1.24: Volume Expansion Now A Stable Feature"
+date: 2022-05-05
+slug: volume-expansion-ga
+---
+
+**Author:** Hemant Kumar (Red Hat)
+
+Volume expansion was introduced as a alpha feature in Kubernetes 1.8 and it went beta in 1.11 and with Kubernetes 1.24 we are excited to announce general availability(GA)
+of volume expansion.
+
+This feature allows Kubernetes users to simply edit their `PersistentVolumeClaim` objects and specify new size in PVC Spec and Kubernetes will automatically expand the volume
+using storage backend and also expand the underlying file system in-use by the Pod without requiring any downtime at all if possible.
+
+
+### How to use volume expansion
+
+You can trigger expansion for a PersistentVolume by editing the `spec` field of a PVC, specifying a different
+(and larger) storage request. For example, given following PVC:
+
+```
+kind: PersistentVolumeClaim
+apiVersion: v1
+metadata:
+  name: myclaim
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 1Gi # specify new size here
+```
+
+You can request expansion of the underlying PersistentVolume by specifying a new value instead of old `1Gi` size.
+Once you've changed the requested size, watch the `status.conditions` field of the PVC to see if the
+resize has completed.
+
+When Kubernetes starts expanding the volume - it will add `Resizing` condition to the PVC, which will be removed once expansion completes. More information about progress of
+expansion operation can also be obtained by monitoring events associated with the PVC:
+
+```
+kubectl describe pvc <pvc>
+```
+
+### Storage driver support
+
+Not every volume type however is expandable by default. Some volume types such as - intree hostpath volumes are not expandable at all. For CSI volumes - the CSI driver
+must have capability `EXPAND_VOLUME` in controller or node service (or both if appropriate). Please refer to documentation of your CSI driver, to find out
+if it supports volume expansion.
+
+Please refer to volume expansion documentation for intree volume types which support volume expansion - [Expanding Persistent Volumes](/docs/concepts/storage/persistent-volumes/#expanding-persistent-volumes-claims).
+
+
+In general to provide some degree of control over volumes that can be expanded, only dynamically provisioned PVCs whose storage class has `allowVolumeExpansion` parameter set to `true` are expandable.
+
+A Kubernetes cluster administrator must edit the appropriate StorageClass object and set
+the `allowVolumeExpansion` field to `true`. For example:
+
+```
+apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: gp2-default
+provisioner: kubernetes.io/aws-ebs
+parameters:
+  secretNamespace: ""
+  secretName: ""
+allowVolumeExpansion: true
+```
+
+### Online expansion compared to offline expansion
+
+By default, Kubernetes attempts to expand volumes immediately after user requests a resize.
+If one or more Pods are using the volume, Kubernetes tries to expands the volume using an online resize;
+as a result volume expansion usually requires no application downtime.
+Filesystem expansion on the node is also performed online and hence does not require shutting
+down any Pod that was using the PVC.
+
+If you expand a PersistentVolume that is not in use, Kubernetes does an offline resize (and,
+because the volume isn't in use, there is again no workload disruption).
+
+In some cases though - if underlying Storage Driver can only support offline expansion, users of the PVC must take down their Pod before expansion can succeed. Please refer to documentation of your storage
+provider to find out - what mode of volume expansion it supports.
+
+When volume expansion was introduced as an alpha feature, Kubernetes only supported offline filesystem
+expansion on the node and hence required users to restart their pods for file system resizing to finish. 
+His behaviour has been changed and Kubernetes tries its best to fulfil any resize request regardless
+of whether the underlying PersistentVolume volume is online or offline. If your storage provider supports
+online expansion then no Pod restart should be necessary for volume expansion to finish.
+
+## Next steps
+
+Although volume expansion is now stable as part of the recent v1.24 release,
+SIG Storage are working to make it even simpler for users of Kubernetes to expand their persistent storage.
+Kubernetes 1.23 introduced features for triggering recovery from failed volume expansion, allowing users
+to attempt self-service healing after a failed resize.
+See [Recovering from volume expansion failure](/docs/concepts/storage/persistent-volumes/#recovering-from-failure-when-expanding-volumes) for more details.
+
+The Kubernetes contributor community is also discussing the potential for StatefulSet-driven storage expansion. This proposed
+feature would let you trigger expansion for all underlying PVs that are providing storage to a StatefulSet,
+by directly editing the StatefulSet object.
+See the [Support Volume Expansion Through StatefulSets](https://github.com/kubernetes/enhancements/issues/661) enhancement proposal for more details.
diff --git a/content/en/blog/_posts/2022-05-06-storage-capacity-GA/index.md b/content/en/blog/_posts/2022-05-06-storage-capacity-GA/index.md
new file mode 100644
index 0000000000..2bb85059e3
--- /dev/null
+++ b/content/en/blog/_posts/2022-05-06-storage-capacity-GA/index.md
@@ -0,0 +1,79 @@
+---
+layout: blog
+title: "Kubernetes 1.24: Storage Capacity Tracking Now Generally Available"
+date: 2022-05-06
+slug: storage-capacity-ga
+---
+
+ **Authors:** Patrick Ohly (Intel)
+
+The v1.24 release of Kubernetes brings [storage capacity](/docs/concepts/storage/storage-capacity/)
+tracking as a generally available feature.
+
+## Problems we have solved
+
+As explained in more detail in the [previous blog post about this
+feature](/blog/2021/04/14/local-storage-features-go-beta/), storage capacity
+tracking allows a CSI driver to publish information about remaining
+capacity. The kube-scheduler then uses that information to pick suitable nodes
+for a Pod when that Pod has volumes that still need to be provisioned.
+
+Without this information, a Pod may get stuck without ever being scheduled onto
+a suitable node because kube-scheduler has to choose blindly and always ends up
+picking a node for which the volume cannot be provisioned because the
+underlying storage system managed by the CSI driver does not have sufficient
+capacity left.
+
+Because CSI drivers publish storage capacity information that gets used at a
+later time when it might not be up-to-date anymore, it can still happen that a
+node is picked that doesn't work out after all. Volume provisioning recovers
+from that by informing the scheduler that it needs to try again with a
+different node.
+
+[Load
+tests](https://github.com/kubernetes-csi/csi-driver-host-path/blob/master/docs/storage-capacity-tracking.md)
+that were done again for promotion to GA confirmed that all storage in a
+cluster can be consumed by Pods with storage capacity tracking whereas Pods got
+stuck without it.
+
+## Problems we have *not* solved
+
+Recovery from a failed volume provisioning attempt has one known limitation: if a Pod
+uses two volumes and only one of them could be provisioned, then all future
+scheduling decisions are limited by the already provisioned volume. If that
+volume is local to a node and the other volume cannot be provisioned there, the
+Pod is stuck. This problem pre-dates storage capacity tracking and while the
+additional information makes it less likely to occur, it cannot be avoided in
+all cases, except of course by only using one volume per Pod.
+
+An idea for solving this was proposed in a [KEP
+draft](https://github.com/kubernetes/enhancements/pull/1703): volumes that were
+provisioned and haven't been used yet cannot have any valuable data and
+therefore could be freed and provisioned again elsewhere. SIG Storage is
+looking for interested developers who want to continue working on this.
+
+Also not solved is support in Cluster Autoscaler for Pods with volumes. For CSI
+drivers with storage capacity tracking, a prototype was developed and discussed
+in [a PR](https://github.com/kubernetes/autoscaler/pull/3887). It was meant to
+work with arbitrary CSI drivers, but that flexibility made it hard to configure
+and slowed down scale up operations: because autoscaler was unable to simulate
+volume provisioning, it only scaled the cluster by one node at a time, which
+was seen as insufficient.
+
+Therefore that PR was not merged and a different approach with tighter coupling
+between autoscaler and CSI driver will be needed. For this a better
+understanding is needed about which local storage CSI drivers are used in
+combination with cluster autoscaling. Should this lead to a new KEP, then users
+will have to try out an implementation in practice before it can move to beta
+or GA. So please reach out to SIG Storage if you have an interest in this
+topic.
+
+## Acknowledgements
+
+Thanks a lot to the members of the community who have contributed to this
+feature or given feedback including members of [SIG
+Scheduling](https://github.com/kubernetes/community/tree/master/sig-scheduling),
+[SIG
+Autoscaling](https://github.com/kubernetes/community/tree/master/sig-autoscaling),
+and of course [SIG
+Storage](https://github.com/kubernetes/community/tree/master/sig-storage)!
diff --git a/content/en/blog/_posts/2022-05-13-grpc-probes-in-beta.md b/content/en/blog/_posts/2022-05-13-grpc-probes-in-beta.md
new file mode 100644
index 0000000000..5ff495410b
--- /dev/null
+++ b/content/en/blog/_posts/2022-05-13-grpc-probes-in-beta.md
@@ -0,0 +1,209 @@
+---
+layout: blog
+title: "Kubernetes 1.24: gRPC container probes in beta"
+date: 2022-05-13
+slug: grpc-probes-now-in-beta
+---
+
+**Author**: Sergey Kanzhelev (Google)
+
+
+With Kubernetes 1.24 the gRPC probes functionality entered beta and is available by default.
+Now you can configure startup, liveness, and readiness probes for your gRPC app
+without exposing any HTTP endpoint, nor do you need an executable. Kubernetes can natively connect to your your workload via gRPC and query its status.
+
+## Some history
+
+It's useful to let the system managing your workload check that the app is
+healthy, has started OK, and whether the app considers itself good to accept
+traffic. Before the gRPC support was added, Kubernetes already allowed you to
+check for health based on running an executable from inside the container image,
+by making an HTTP request, or by checking whether a TCP connection succeeded.
+
+For most apps, those checks are enough. If your app provides a gRPC endpoint
+for a health (or readiness) check, it is easy
+to repurpose the `exec` probe to use it for gRPC health checking.
+In the blog article [Health checking gRPC servers on Kubernetes](/blog/2018/10/01/health-checking-grpc-servers-on-kubernetes/),
+Ahmet Alp Balkan described how you can do that — a mechanism that still works today.
+
+There is a commonly used tool to enable this that was [created](https://github.com/grpc-ecosystem/grpc-health-probe/commit/2df4478982e95c9a57d5fe3f555667f4365c025d)
+on August 21, 2018, and with
+the first release at [Sep 19, 2018](https://github.com/grpc-ecosystem/grpc-health-probe/releases/tag/v0.1.0-alpha.1).
+
+This approach for gRPC apps health checking is very popular. There are [3,626 Dockerfiles](https://github.com/search?l=Dockerfile&q=grpc_health_probe&type=code)
+with the `grpc_health_probe` and [6,621 yaml](https://github.com/search?l=YAML&q=grpc_health_probe&type=Code) files that are discovered with the
+basic search on GitHub (at the moment of writing). This is good indication of the tool popularity
+and the need to support this natively.
+
+Kubernetes v1.23 introduced an alpha-quality implementation of native support for
+querying a workload status using gRPC. Because it was an alpha feature,
+this was disabled by default for the v1.23 release.
+
+## Using the feature
+
+We built gRPC health checking in similar way with other probes and believe
+it will be [easy to use](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#define-a-grpc-liveness-probe)
+if you are familiar with other probe types in Kubernetes.
+The natively supported health probe has many benefits over the workaround involving `grpc_health_probe` executable.
+
+With the native gRPC support you don't need to download and carry `10MB` of an additional executable with your image.
+Exec probes are generally slower than a gRPC call as they require instantiating a new process to run an executable.
+It also makes the checks less sensible for edge cases when the pod is running at maximum resources and has troubles
+instantiating new processes.
+
+There are a few limitations though. Since configuring a client certificate for probes is hard,
+services that require client authentication are not supported. The built-in probes are also
+not checking the server certificates and ignore related problems.
+
+Built-in checks also cannot be configured to ignore certain types of errors
+(`grpc_health_probe` returns different exit codes for different errors),
+and cannot be "chained" to run the health check on multiple services in a single probe.
+
+But all these limitations are quite standard for gRPC and there are easy workarounds
+for those.
+
+## Try it for yourself
+
+### Cluster-level setup
+
+You can try this feature today. To try native gRPC probes, you can spin up a Kubernetes cluster
+yourself with the `GRPCContainerProbe` feature gate enabled, there are many [tools available](/docs/tasks/tools/).
+
+Since the feature gate `GRPCContainerProbe` is enabled by default in 1.24,
+many vendors will have this functionality working out of the box.
+So you may just create an 1.24 cluster on platform of your choice. Some vendors
+allow to enable alpha features on 1.23 clusters.
+
+For example, at the moment of writing, you can spin up the test cluster on GKE for a quick test.
+Other vendors may also have similar capabilities, especially if you
+are reading this blog post long after the Kubernetes 1.24 release.
+
+On GKE use the following command (note, version is `1.23` and `enable-kubernetes-alpha` are specified).
+
+```shell
+gcloud container clusters create test-grpc \
+    --enable-kubernetes-alpha \
+    --no-enable-autorepair \
+    --no-enable-autoupgrade \
+    --release-channel=rapid \
+    --cluster-version=1.23
+```
+
+You will also need to configure `kubectl` to access the cluster:
+
+```shell
+gcloud container clusters get-credentials test-grpc
+```
+
+### Trying the feature out
+
+Let's create the pod to test how gRPC probes work. For this test we will use the `agnhost` image.
+This is a k8s maintained image with that can be used for all sorts of workload testing.
+For example, it has a useful [grpc-health-checking](https://github.com/kubernetes/kubernetes/blob/b2c5bd2a278288b5ef19e25bf7413ecb872577a4/test/images/agnhost/README.md#grpc-health-checking) module
+that exposes two ports - one is serving health checking service,
+another - http port to react on commands `make-serving` and `make-not-serving`.
+
+Here is an example pod definition. It starts the `grpc-health-checking` module,
+exposes ports `5000` and `8080`, and configures gRPC readiness probe:
+
+``` yaml
+---
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-grpc
+spec:
+  containers:
+  - name: agnhost
+    image: k8s.gcr.io/e2e-test-images/agnhost:2.35
+    command: ["/agnhost", "grpc-health-checking"]
+    ports:
+    - containerPort: 5000
+    - containerPort: 8080
+    readinessProbe:
+      grpc:
+        port: 5000
+```
+
+If the file called `test.yaml`, you can create the pod and check it's status.
+The pod will be in ready state as indicated by the snippet of the output.
+
+```shell
+kubectl apply -f test.yaml
+kubectl describe test-grpc
+```
+
+The output will contain something like this:
+
+```
+Conditions:
+  Type              Status
+  Initialized       True
+  Ready             True
+  ContainersReady   True
+  PodScheduled      True
+```
+
+Now let's change the health checking endpoint status to NOT_SERVING.
+In order to call the http port of the Pod, let's create a port forward:
+
+```shell
+kubectl port-forward test-grpc 8080:8080
+```
+
+You can `curl` to call the command...
+
+```shell
+curl http://localhost:8080/make-not-serving
+```
+
+... and in a few seconds the port status will switch to not ready.
+
+```shell
+kubectl describe pod test-grpc
+```
+
+The output now will have:
+
+```
+Conditions:
+  Type              Status
+  Initialized       True
+  Ready             False
+  ContainersReady   False
+  PodScheduled      True
+
+...
+
+  Warning  Unhealthy  2s (x6 over 42s)  kubelet            Readiness probe failed: service unhealthy (responded with "NOT_SERVING")
+```
+
+Once it is switched back, in about one second the Pod will get back to ready status:
+
+``` bsh
+curl http://localhost:8080/make-serving
+kubectl describe test-grpc
+```
+
+The output indicates that the Pod went back to being `Ready`:
+
+```
+Conditions:
+  Type              Status
+  Initialized       True
+  Ready             True
+  ContainersReady   True
+  PodScheduled      True
+```
+
+This new built-in gRPC health probing on Kubernetes makes implementing a health-check via gRPC
+much easier than the older approach that relied on using a separate `exec` probe. Read through
+the official
+[documentation](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#define-a-grpc-liveness-probe)
+to learn more and provide feedback before the feature will be promoted to GA.
+
+## Summary
+
+Kubernetes is a popular workload orchestration platform and we add features based on feedback and demand.
+Features like gRPC probes support is a minor improvement that will make life of many app developers
+easier and apps more resilient. Try it today and give feedback, before the feature went into GA.
diff --git a/content/en/blog/_posts/2022-05-16-volume-populators-beta.md b/content/en/blog/_posts/2022-05-16-volume-populators-beta.md
new file mode 100644
index 0000000000..4558f07eae
--- /dev/null
+++ b/content/en/blog/_posts/2022-05-16-volume-populators-beta.md
@@ -0,0 +1,162 @@
+---
+layout: blog
+title: "Kubernetes 1.24: Volume Populators Graduate to Beta"
+date: 2022-05-16
+slug: volume-populators-beta
+---
+
+**Author:**
+Ben Swartzlander (NetApp)
+
+The volume populators feature is now two releases old and entering beta! The `AnyVolumeDataSource` feature
+gate defaults to enabled in Kubernetes v1.24, which means that users can specify any custom resource
+as the data source of a PVC.
+
+An [earlier blog article](/blog/2021/08/30/volume-populators-redesigned/) detailed how the
+volume populators feature works. In short, a cluster administrator can install a CRD and
+associated populator controller in the cluster, and any user who can create instances of 
+the CR can create pre-populated volumes by taking advantage of the populator.
+
+Multiple populators can be installed side by side for different purposes. The SIG storage
+community is already seeing some implementations in public, and more prototypes should
+appear soon.
+
+Cluster administrations are **strongly encouraged** to install the
+volume-data-source-validator controller and associated `VolumePopulator` CRD before installing
+any populators so that users can get feedback about invalid PVC data sources.
+
+## New Features
+
+The [lib-volume-populator](https://github.com/kubernetes-csi/lib-volume-populator) library
+on which populators are built now includes metrics to help operators monitor and detect
+problems. This library is now beta and latest release is v1.0.1.
+
+The [volume data source validator](https://github.com/kubernetes-csi/volume-data-source-validator)
+controller also has metrics support added, and is in beta. The `VolumePopulator` CRD is
+beta and the latest release is v1.0.1.
+
+## Trying it out
+
+To see how this works, you can install the sample "hello" populator and try it
+out.
+
+First install the volume-data-source-validator controller.
+
+```shell
+kubectl apply -f https://raw.githubusercontent.com/kubernetes-csi/volume-data-source-validator/v1.0.1/client/config/crd/populator.storage.k8s.io_volumepopulators.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes-csi/volume-data-source-validator/v1.0.1/deploy/kubernetes/rbac-data-source-validator.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes-csi/volume-data-source-validator/v1.0.1/deploy/kubernetes/setup-data-source-validator.yaml
+```
+
+Next install the example populator.
+
+```shell
+kubectl apply -f https://raw.githubusercontent.com/kubernetes-csi/lib-volume-populator/v1.0.1/example/hello-populator/crd.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes-csi/lib-volume-populator/87a47467b86052819e9ad13d15036d65b9a32fbb/example/hello-populator/deploy.yaml
+```
+
+Your cluster now has a new CustomResourceDefinition that provides a test API named Hello.
+Create an instance of the `Hello` custom resource, with some text:
+
+```yaml
+apiVersion: hello.example.com/v1alpha1
+kind: Hello
+metadata:
+  name: example-hello
+spec:
+  fileName: example.txt
+  fileContents: Hello, world!
+```
+
+Create a PVC that refers to that CR as its data source.
+
+```yaml
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: example-pvc
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Mi
+  dataSourceRef:
+    apiGroup: hello.example.com
+    kind: Hello
+    name: example-hello
+  volumeMode: Filesystem
+```
+
+Next, run a Job that reads the file in the PVC.
+
+```yaml
+apiVersion: batch/v1
+kind: Job
+metadata:
+  name: example-job
+spec:
+  template:
+    spec:
+      containers:
+        - name: example-container
+          image: busybox:latest
+          command:
+            - cat
+            - /mnt/example.txt
+          volumeMounts:
+            - name: vol
+              mountPath: /mnt
+      restartPolicy: Never
+      volumes:
+        - name: vol
+          persistentVolumeClaim:
+            claimName: example-pvc
+```
+
+Wait for the job to complete (including all of its dependencies).
+
+```shell
+kubectl wait --for=condition=Complete job/example-job
+```
+
+And last examine the log from the job.
+
+```shell
+kubectl logs job/example-job
+```
+
+The output should be:
+
+```terminal
+Hello, world!
+```
+
+Note that the volume already contained a text file with the string contents from
+the CR. This is only the simplest example. Actual populators can set up the volume
+to contain arbitrary contents.
+
+## How to write your own volume populator
+
+Developers interested in writing new poplators are encouraged to use the
+[lib-volume-populator](https://github.com/kubernetes-csi/lib-volume-populator) library
+and to only supply a small controller wrapper around the library, and a pod image
+capable of attaching to volumes and writing the appropriate data to the volume.
+
+Individual populators can be extremely generic such that they work with every type
+of PVC, or they can do vendor specific things to rapidly fill a volume with data
+if the volume was provisioned by a specific CSI driver from the same vendor, for
+example, by communicating directly with the storage for that volume.
+
+## How can I learn more?
+
+The enhancement proposal,
+[Volume Populators](https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/1495-volume-populators), includes lots of detail about the history and technical implementation
+of this feature.
+
+[Volume populators and data sources](/docs/concepts/storage/persistent-volumes/#volume-populators-and-data-sources), within the documentation topic about persistent volumes,
+explains how to use this feature in your cluster.
+
+Please get involved by joining the Kubernetes storage SIG to help us enhance this
+feature. There are a lot of good ideas already and we'd be thrilled to have more!
+
diff --git a/content/en/blog/_posts/2022-05-18-prevent-unauthorised-volume-mode-conversion.md b/content/en/blog/_posts/2022-05-18-prevent-unauthorised-volume-mode-conversion.md
new file mode 100644
index 0000000000..920d578d01
--- /dev/null
+++ b/content/en/blog/_posts/2022-05-18-prevent-unauthorised-volume-mode-conversion.md
@@ -0,0 +1,117 @@
+---
+layout: blog
+title: 'Kubernetes 1.24: Prevent unauthorised volume mode conversion'
+date: 2022-05-18
+slug: prevent-unauthorised-volume-mode-conversion-alpha
+---
+
+**Author:** Raunak Pradip Shah (Mirantis)
+
+Kubernetes v1.24 introduces a new alpha-level feature that prevents unauthorised users 
+from modifying the volume mode of a [`PersistentVolumeClaim`](/docs/concepts/storage/persistent-volumes/) created from an 
+existing [`VolumeSnapshot`](/docs/concepts/storage/volume-snapshots/) in the Kubernetes cluster.  
+
+
+
+### The problem
+
+The [Volume Mode](/docs/concepts/storage/persistent-volumes/#volume-mode) determines whether a volume 
+is formatted into a filesystem or presented as a raw block device.   
+
+Users can leverage the `VolumeSnapshot` feature, which has been stable since Kubernetes v1.20, 
+to create a `PersistentVolumeClaim` (shortened as PVC) from an existing `VolumeSnapshot` in
+the Kubernetes cluster. The PVC spec includes a `dataSource` field, which can point to an 
+existing `VolumeSnapshot` instance.
+Visit [Create a PersistentVolumeClaim from a Volume Snapshot](/docs/concepts/storage/persistent-volumes/#create-persistent-volume-claim-from-volume-snapshot) for more details.
+
+When leveraging the above capability, there is no logic that validates whether the mode of the
+original volume, whose snapshot was taken, matches the mode of the newly created volume.
+
+This presents a security gap that allows malicious users to potentially exploit an 
+as-yet-unknown vulnerability in the host operating system.
+
+Many popular storage backup vendors convert the volume mode during the course of a 
+backup operation, for efficiency purposes, which prevents Kubernetes from blocking
+the operation completely and presents a challenge in distinguishing trusted
+users from malicious ones.
+
+### Preventing unauthorised users from converting the volume mode
+
+In this context, an authorised user is one who has access rights to perform `Update` 
+or `Patch` operations on `VolumeSnapshotContents`, which is a cluster-level resource.  
+It is upto the cluster administrator to provide these rights only to trusted users
+or applications, like backup vendors.
+
+If the alpha feature is [enabled](https://kubernetes-csi.github.io/docs/) in 
+`snapshot-controller`, `snapshot-validation-webhook` and `external-provisioner`,
+then unauthorised users will not be allowed to modify the volume mode of a PVC
+when it is being created from a `VolumeSnapshot`.
+
+To convert the volume mode, an authorised user must do the following:
+
+1. Identify the `VolumeSnapshot` that is to be used as the data source for a newly 
+created PVC in the given namespace. 
+2. Identify the `VolumeSnapshotContent` bound to the above `VolumeSnapshot`.
+
+  ```shell
+  kubectl get volumesnapshot -n <namespace>
+  ```
+
+3. Add the annotation [`snapshot.storage.kubernetes.io/allowVolumeModeChange`](/docs/reference/labels-annotations-taints/#snapshot-storage-kubernetes-io-allowvolumemodechange)
+to the `VolumeSnapshotContent`. 
+
+4. This annotation can be added either via software or manually by the authorised 
+user. The `VolumeSnapshotContent` annotation must look like following manifest fragment:
+
+  ```yaml
+  kind: VolumeSnapshotContent
+  metadata:
+    annotations:
+      - snapshot.storage.kubernetes.io/allowVolumeModeChange: "true"
+  ...
+  ```
+
+**Note**: For pre-provisioned `VolumeSnapshotContents`, you must take an extra
+step of setting `spec.sourceVolumeMode` field to either `Filesystem` or `Block`,
+depending on the mode of the volume from which this snapshot was taken.
+
+An example is shown below:
+
+   ```yaml
+   apiVersion: snapshot.storage.k8s.io/v1
+   kind: VolumeSnapshotContent
+   metadata:
+     annotations:
+     - snapshot.storage.kubernetes.io/allowVolumeModeChange: "true"
+     name: new-snapshot-content-test
+   spec:
+     deletionPolicy: Delete
+     driver: hostpath.csi.k8s.io
+     source:
+       snapshotHandle: 7bdd0de3-aaeb-11e8-9aae-0242ac110002
+     sourceVolumeMode: Filesystem
+     volumeSnapshotRef:
+       name: new-snapshot-test
+       namespace: default
+   ```
+
+Repeat steps 1 to 3 for all `VolumeSnapshotContents` whose volume mode needs to be 
+converted during a backup or restore operation.
+
+If the annotation shown in step 4 above is present on a `VolumeSnapshotContent`
+object, Kubernetes will not prevent the volume mode from being converted.
+Users should keep this in mind before they attempt to add the annotation 
+to any `VolumeSnapshotContent`. 
+
+
+### What's next
+
+[Enable this feature](https://kubernetes-csi.github.io/docs/) and let us know 
+what you think!
+
+We hope this feature causes no disruption to existing workflows while preventing
+malicious users from exploiting security vulnerabilities in their clusters. 
+
+For any queries or issues, join [Kubernetes on Slack](https://slack.k8s.io/) and
+create a thread in the #sig-storage channel. Alternately, create an issue in the
+CSI external-snapshotter [repository](https://github.com/kubernetes-csi/external-snapshotter).
\ No newline at end of file
diff --git a/content/en/blog/_posts/2022-05-20-non-graceful-node-shutdown.md b/content/en/blog/_posts/2022-05-20-non-graceful-node-shutdown.md
new file mode 100644
index 0000000000..f8f4876285
--- /dev/null
+++ b/content/en/blog/_posts/2022-05-20-non-graceful-node-shutdown.md
@@ -0,0 +1,96 @@
+---
+layout: blog
+title: "Kubernetes 1.24: Introducing Non-Graceful Node Shutdown Alpha"
+date: 2022-05-20
+slug: kubernetes-1-24-non-graceful-node-shutdown-alpha
+---
+
+**Authors** Xing Yang and Yassine Tijani (VMware)
+
+Kubernetes v1.24 introduces alpha support for [Non-Graceful Node Shutdown](https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/2268-non-graceful-shutdown). This feature allows stateful workloads to failover to a different node after the original node is shutdown or in a non-recoverable state such as hardware failure or broken OS.
+
+## How is this different from Graceful Node Shutdown
+
+You might have heard about the [Graceful Node Shutdown](/docs/concepts/architecture/nodes/#graceful-node-shutdown) capability of Kubernetes,
+and are wondering how the Non-Graceful Node Shutdown feature is different from that. Graceful Node Shutdown
+allows Kubernetes to detect when a node is shutting down cleanly, and handles that situation appropriately.
+A Node Shutdown can be "graceful" only if the node shutdown action can be detected by the kubelet ahead
+of the actual shutdown. However, there are cases where a node shutdown action may not be detected by
+the kubelet. This could happen either because the shutdown command does not trigger the systemd inhibitor
+locks mechanism that kubelet relies upon, or because of a configuration error
+(the `ShutdownGracePeriod` and `ShutdownGracePeriodCriticalPods` are not configured properly).
+
+Graceful node shutdown relies on Linux-specific support. The kubelet does not watch for upcoming
+shutdowns on Windows nodes (this may change in a future Kubernetes release).
+
+When a node is shutdown but without the kubelet detecting it, pods on that node
+also shut down ungracefully. For stateless apps, that's often not a problem (a ReplicaSet adds a new pod once
+the cluster detects that the affected node or pod has failed). For stateful apps, the story is more complicated.
+If you use a StatefulSet and have a pod from that StatefulSet on a node that fails uncleanly, that affected pod
+will be marked as terminating; the StatefulSet cannot create a replacement pod because the pod
+still exists in the cluster.
+As a result, the application running on the StatefulSet may be degraded or even offline. If the original, shut
+down node comes up again, the kubelet on that original node reports in, deletes the existing pods, and
+the control plane makes a replacement pod for that StatefulSet on a different running node.
+If the original node has failed and does not come up, those stateful pods would be stuck in a
+terminating status on that failed node indefinitely.
+
+```
+$ kubectl get pod -o wide
+NAME    READY   STATUS        RESTARTS   AGE   IP           NODE                      NOMINATED NODE   READINESS GATES
+web-0   1/1     Running       0          100m   10.244.2.4   k8s-node-876-1639279816   <none>           <none>
+web-1   1/1     Terminating   0          100m   10.244.1.3   k8s-node-433-1639279804   <none>           <none>
+```
+
+## Try out the new non-graceful shutdown handling
+
+To use the non-graceful node shutdown handling, you must enable the `NodeOutOfServiceVolumeDetach`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/) for the `kube-controller-manager`
+component.
+
+In the case of a node shutdown, you can manually taint that node as out of service. You should make certain that
+the node is truly shutdown (not in the middle of restarting) before you add that taint. You could add that
+taint following a shutdown that the kubelet did not detect and handle in advance; another case where you
+can use that taint is when the node is in a non-recoverable state due to a hardware failure or a broken OS.
+The values you set for that taint can be `node.kubernetes.io/out-of-service=nodeshutdown: "NoExecute"`
+or `node.kubernetes.io/out-of-service=nodeshutdown:" NoSchedule"`.
+Provided you have enabled the feature gate mentioned earlier, setting the out-of-service taint on a Node
+means that pods on the node will be deleted unless if there are matching tolerations on the pods.
+Persistent volumes attached to the shutdown node will be detached, and for StatefulSets, replacement pods will
+be created successfully on a different running node.
+
+```
+$ kubectl taint nodes <node-name> node.kubernetes.io/out-of-service=nodeshutdown:NoExecute
+
+$ kubectl get pod -o wide
+NAME    READY   STATUS    RESTARTS   AGE    IP           NODE                      NOMINATED NODE   READINESS GATES
+web-0   1/1     Running   0          150m   10.244.2.4   k8s-node-876-1639279816   <none>           <none>
+web-1   1/1     Running   0          10m    10.244.1.7   k8s-node-433-1639279804   <none>           <none>
+```
+
+Note: Before applying the out-of-service taint, you **must** verify that a node is already in shutdown or power off state (not in the middle of restarting), either because the user intentionally shut it down or the node is down due to hardware failures, OS issues, etc.
+
+Once all the workload pods that are linked to the out-of-service node are moved to a new running node, and the shutdown node has been recovered, you should remove
+that taint on the affected node after the node is recovered.
+If you know that the node will not return to service, you could instead delete the node from the cluster.
+
+## What’s next?
+
+Depending on feedback and adoption, the Kubernetes team plans to push the Non-Graceful Node Shutdown implementation to Beta in either 1.25 or 1.26.
+
+This feature requires a user to manually add a taint to the node to trigger workloads failover and remove the taint after the node is recovered. In the future, we plan to find ways to automatically detect and fence nodes that are shutdown/failed and automatically failover workloads to another node.
+
+## How can I learn more?
+
+Check out the [documentation](/docs/concepts/architecture/nodes/#non-graceful-node-shutdown)
+for non-graceful node shutdown.
+
+## How to get involved?
+
+This feature has a long story. Yassine Tijani ([yastij](https://github.com/yastij)) started the KEP more than two years ago. Xing Yang ([xing-yang](https://github.com/xing-yang)) continued to drive the effort. There were many discussions among SIG Storage, SIG Node, and API reviewers to nail down the design details. Ashutosh Kumar ([sonasingh46](https://github.com/sonasingh46)) did most of the implementation and brought it to Alpha in Kubernetes 1.24.
+
+We want to thank the following people for their insightful reviews: Tim Hockin  ([thockin](https://github.com/thockin)) for his guidance on the design, Jing Xu ([jingxu97](https://github.com/jingxu97)), Hemant Kumar ([gnufied](https://github.com/gnufied)), and Michelle Au ([msau42](https://github.com/msau42)) for reviews from SIG Storage side, and Mrunal Patel ([mrunalp](https://github.com/mrunalp)), David Porter ([bobbypage](https://github.com/bobbypage)), Derek Carr ([derekwaynecarr](https://github.com/derekwaynecarr)), and Danielle Endocrimes ([endocrimes](https://github.com/endocrimes)) for reviews from SIG Node side.
+
+There are many people who have helped review the design and implementation along the way. We want to thank everyone who has contributed to this effort including the about 30 people who have reviewed the [KEP](https://github.com/kubernetes/enhancements/pull/1116) and implementation over the last couple of years.
+
+This feature is a collaboration between SIG Storage and SIG Node. For those interested in getting involved with the design and development of any part of the Kubernetes Storage system, join the [Kubernetes Storage Special Interest Group](https://github.com/kubernetes/community/tree/master/sig-storage) (SIG). For those interested in getting involved with the design and development of the components that support the controlled interactions between pods and host resources, join the [Kubernetes Node SIG](https://github.com/kubernetes/community/tree/master/sig-node).
diff --git a/content/en/blog/_posts/2022-05-23-service-ip-dynamic-and-static-allocation.md b/content/en/blog/_posts/2022-05-23-service-ip-dynamic-and-static-allocation.md
new file mode 100644
index 0000000000..c17453a6de
--- /dev/null
+++ b/content/en/blog/_posts/2022-05-23-service-ip-dynamic-and-static-allocation.md
@@ -0,0 +1,137 @@
+---
+layout: blog
+title: "Kubernetes 1.24: Avoid Collisions Assigning IP Addresses to Services"
+date: 2022-05-23
+slug: service-ip-dynamic-and-static-allocation
+---
+
+**Author:** Antonio Ojea (Red Hat)
+
+
+In Kubernetes, [Services](/docs/concepts/services-networking/service/) are an abstract way to expose
+an application running on a set of Pods. Services
+can have a cluster-scoped virtual IP address (using a Service of `type: ClusterIP`).
+Clients can connect using that virtual IP address, and Kubernetes then load-balances traffic to that
+Service across the different backing Pods.
+
+## How Service ClusterIPs are allocated?
+
+A Service `ClusterIP` can be assigned:
+
+_dynamically_
+: the cluster's control plane automatically picks a free IP address from within the configured IP range for `type: ClusterIP` Services.
+
+_statically_
+: you specify an IP address of your choice, from within the configured IP range for Services.
+
+Across your whole cluster, every Service `ClusterIP` must be unique.
+Trying to create a Service with a specific `ClusterIP` that has already
+been allocated will return an error.
+
+## Why do you need to reserve Service Cluster IPs?
+
+Sometimes you may want to have Services running in well-known IP addresses, so other components and
+users in the cluster can use them.
+
+The best example is the DNS Service for the cluster. Some Kubernetes installers assign the 10th address from
+the Service IP range to the DNS service. Assuming you configured your cluster with Service IP range
+10.96.0.0/16 and you want your DNS Service IP to be 10.96.0.10, you'd have to create a Service like
+this:
+
+```yaml
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    k8s-app: kube-dns
+    kubernetes.io/cluster-service: "true"
+    kubernetes.io/name: CoreDNS
+  name: kube-dns
+  namespace: kube-system
+spec:
+  clusterIP: 10.96.0.10
+  ports:
+  - name: dns
+    port: 53
+    protocol: UDP
+    targetPort: 53
+  - name: dns-tcp
+    port: 53
+    protocol: TCP
+    targetPort: 53
+  selector:
+    k8s-app: kube-dns
+  type: ClusterIP
+```
+
+but as I explained before, the IP address 10.96.0.10 has not been reserved; if other Services are created
+before or in parallel with dynamic allocation, there is a chance they can allocate this IP, hence,
+you will not be able to create the DNS Service because it will fail with a conflict error.
+
+## How can you avoid Service ClusterIP conflicts? {#avoid-ClusterIP-conflict}
+
+In Kubernetes 1.24, you can enable a new feature gate `ServiceIPStaticSubrange`.
+Turning this on allows you to use a different IP
+allocation strategy for Services, reducing the risk of collision.
+
+The `ClusterIP` range will be divided, based on the formula `min(max(16, cidrSize / 16), 256)`,
+described as _never less than 16 or more than 256 with a graduated step between them_.
+
+Dynamic IP assignment will use the upper band by default, once this has been exhausted it will
+use the lower range. This will allow users to use static allocations on the lower band with a low
+risk of collision.
+
+Examples:
+
+#### Service IP CIDR block: 10.96.0.0/24
+
+Range Size: 2<sup>8</sup> - 2 = 254  
+Band Offset: `min(max(16, 256/16), 256)` = `min(16, 256)` = 16  
+Static band start: 10.96.0.1  
+Static band end: 10.96.0.16  
+Range end: 10.96.0.254   
+
+{{< mermaid >}}
+pie showData
+    title 10.96.0.0/24
+    "Static" : 16
+    "Dynamic" : 238
+{{< /mermaid >}}
+
+#### Service IP CIDR block: 10.96.0.0/20
+
+Range Size: 2<sup>12</sup> - 2 = 4094  
+Band Offset: `min(max(16, 4096/16), 256)` = `min(256, 256)` = 256  
+Static band start: 10.96.0.1  
+Static band end: 10.96.1.0  
+Range end: 10.96.15.254  
+
+{{< mermaid >}}
+pie showData
+    title 10.96.0.0/20
+    "Static" : 256
+    "Dynamic" : 3838
+{{< /mermaid >}}
+
+#### Service IP CIDR block: 10.96.0.0/16
+
+Range Size: 2<sup>16</sup> - 2 = 65534  
+Band Offset: `min(max(16, 65536/16), 256)` = `min(4096, 256)` = 256  
+Static band start: 10.96.0.1  
+Static band ends: 10.96.1.0  
+Range end: 10.96.255.254  
+
+{{< mermaid >}}
+pie showData
+    title 10.96.0.0/16
+    "Static" : 256
+    "Dynamic" : 65278
+{{< /mermaid >}}
+
+## Get involved with SIG Network
+
+The current SIG-Network [KEPs](https://github.com/orgs/kubernetes/projects/10) and [issues](https://github.com/kubernetes/kubernetes/issues?q=is%3Aopen+is%3Aissue+label%3Asig%2Fnetwork) on GitHub illustrate the SIG’s areas of emphasis.
+
+[SIG Network meetings](https://github.com/kubernetes/community/tree/master/sig-network) are a friendly, welcoming venue for you to connect with the community and share your ideas.
+Looking forward to hearing from you!
+
diff --git a/content/en/blog/_posts/2022-05-25-contextual-logging/index.md b/content/en/blog/_posts/2022-05-25-contextual-logging/index.md
new file mode 100644
index 0000000000..2d5ef5c4c7
--- /dev/null
+++ b/content/en/blog/_posts/2022-05-25-contextual-logging/index.md
@@ -0,0 +1,251 @@
+---
+layout: blog
+title: "Contextual Logging in Kubernetes 1.24"
+date: 2022-05-25
+slug: contextual-logging
+canonicalUrl: https://kubernetes.dev/blog/2022/05/25/contextual-logging/
+---
+
+ **Authors:** Patrick Ohly (Intel)
+
+The [Structured Logging Working
+Group](https://github.com/kubernetes/community/blob/master/wg-structured-logging/README.md)
+has added new capabilities to the logging infrastructure in Kubernetes
+1.24. This blog post explains how developers can take advantage of those to
+make log output more useful and how they can get involved with improving Kubernetes.
+
+## Structured logging
+
+The goal of [structured
+logging](https://github.com/kubernetes/enhancements/blob/master/keps/sig-instrumentation/1602-structured-logging/README.md)
+is to replace C-style formatting and the resulting opaque log strings with log
+entries that have a well-defined syntax for storing message and parameters
+separately, for example as a JSON struct.
+
+When using the traditional klog text output format for structured log calls,
+strings were originally printed with `\n` escape sequences, except when
+embedded inside a struct. For structs, log entries could still span multiple
+lines, with no clean way to split the log stream into individual entries:
+
+```
+I1112 14:06:35.783529  328441 structured_logging.go:51] "using InfoS" longData={Name:long Data:Multiple
+lines
+with quite a bit
+of text. internal:0}
+I1112 14:06:35.783549  328441 structured_logging.go:52] "using InfoS with\nthe message across multiple lines" int=1 stringData="long: Multiple\nlines\nwith quite a bit\nof text." str="another value"
+```
+
+Now, the `<` and `>` markers along with indentation are used to ensure that splitting at a
+klog header at the start of a line is reliable and the resulting output is human-readable:
+
+```
+I1126 10:31:50.378204  121736 structured_logging.go:59] "using InfoS" longData=<
+	{Name:long Data:Multiple
+	lines
+	with quite a bit
+	of text. internal:0}
+ >
+I1126 10:31:50.378228  121736 structured_logging.go:60] "using InfoS with\nthe message across multiple lines" int=1 stringData=<
+	long: Multiple
+	lines
+	with quite a bit
+	of text.
+ > str="another value"
+```
+
+Note that the log message itself is printed with quoting. It is meant to be a
+fixed string that identifies a log entry, so newlines should be avoided there.
+
+Before Kubernetes 1.24, some log calls in kube-scheduler still used `klog.Info`
+for multi-line strings to avoid the unreadable output. Now all log calls have
+been updated to support structured logging.
+
+## Contextual logging
+
+[Contextual logging](https://github.com/kubernetes/enhancements/blob/master/keps/sig-instrumentation/3077-contextual-logging/README.md)
+is based on the [go-logr API](https://github.com/go-logr/logr#a-minimal-logging-api-for-go). The key
+idea is that libraries are passed a logger instance by their caller and use
+that for logging instead of accessing a global logger. The binary decides about
+the logging implementation, not the libraries. The go-logr API is designed
+around structured logging and supports attaching additional information to a
+logger.
+
+This enables additional use cases:
+
+- The caller can attach additional information to a logger:
+  - [`WithName`](https://pkg.go.dev/github.com/go-logr/logr#Logger.WithName) adds a prefix
+  - [`WithValues`](https://pkg.go.dev/github.com/go-logr/logr#Logger.WithValues) adds key/value pairs
+
+  When passing this extended logger into a function and a function uses it
+  instead of the global logger, the additional information is
+  then included in all log entries, without having to modify the code that
+  generates the log entries. This is useful in highly parallel applications
+  where it can become hard to identify all log entries for a certain operation
+  because the output from different operations gets interleaved.
+
+- When running unit tests, log output can be associated with the current test.
+  Then when a test fails, only the log output of the failed test gets shown
+  by `go test`. That output can also be more verbose by default because it
+  will not get shown for successful tests. Tests can be run in parallel
+  without interleaving their output.
+
+One of the design decisions for contextual logging was to allow attaching a
+logger as value to a `context.Context`. Since the logger encapsulates all
+aspects of the intended logging for the call, it is *part* of the context and
+not just *using* it. A practical advantage is that many APIs already have a
+`ctx` parameter or adding one has additional advantages, like being able to get
+rid of `context.TODO()` calls inside the functions.
+
+Another decision was to not break compatibility with klog v2:
+
+- Libraries that use the traditional klog logging calls in a binary that has
+  set up contextual logging will work and log through the logging backend
+  chosen by the binary. However, such log output will not include the
+  additional information and will not work well in unit tests, so libraries
+  should be modified to support contextual logging. The [migration guide](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-instrumentation/migration-to-structured-logging.md)
+  for structured logging has been extended to also cover contextual logging.
+
+- When a library supports contextual logging and retrieves a logger from its
+  context, it will still work in a binary that does not initialize contextual
+  logging because it will get a logger that logs through klog.
+
+In Kubernetes 1.24, contextual logging is a new alpha feature with
+`ContextualLogging` as feature gate. When disabled (the default), the new klog
+API calls for contextual logging (see below) become no-ops to avoid performance
+or functional regressions.
+
+No Kubernetes component has been converted yet. An [example program](https://github.com/kubernetes/kubernetes/blob/v1.24.0-beta.0/staging/src/k8s.io/component-base/logs/example/cmd/logger.go)
+in the Kubernetes repository demonstrates how to enable contextual logging in a
+binary and how the output depends on the binary's parameters:
+
+```console
+$ cd $GOPATH/src/k8s.io/kubernetes/staging/src/k8s.io/component-base/logs/example/cmd/
+$ go run . --help
+...
+      --feature-gates mapStringBool  A set of key=value pairs that describe feature gates for alpha/experimental features. Options are:
+                                     AllAlpha=true|false (ALPHA - default=false)
+                                     AllBeta=true|false (BETA - default=false)
+                                     ContextualLogging=true|false (ALPHA - default=false)
+$ go run . --feature-gates ContextualLogging=true
+...
+I0404 18:00:02.916429  451895 logger.go:94] "example/myname: runtime" foo="bar" duration="1m0s"
+I0404 18:00:02.916447  451895 logger.go:95] "example: another runtime" foo="bar" duration="1m0s"
+```
+
+The `example` prefix and `foo="bar"` were added by the caller of the function
+which logs the `runtime` message and `duration="1m0s"` value.
+
+The sample code for klog includes an
+[example](https://github.com/kubernetes/klog/blob/v2.60.1/ktesting/example/example_test.go)
+for a unit test with per-test output.
+
+## klog enhancements
+
+### Contextual logging API
+
+The following calls manage the lookup of a logger:
+
+[`FromContext`](https://pkg.go.dev/k8s.io/klog/v2#FromContext)
+: from a `context` parameter, with fallback to the global logger
+
+[`Background`](https://pkg.go.dev/k8s.io/klog/v2#Background)
+: the global fallback, with no intention to support contextual logging
+
+[`TODO`](https://pkg.go.dev/k8s.io/klog/v2#TODO)
+: the global fallback, but only as a temporary solution until the function gets extended to accept
+  a logger through its parameters
+
+[`SetLoggerWithOptions`](https://pkg.go.dev/k8s.io/klog/v2#SetLoggerWithOptions)
+: changes the fallback logger; when called with [`ContextualLogger(true)`](https://pkg.go.dev/k8s.io/klog/v2#ContextualLogger),
+  the logger is ready to be called directly, in which case logging will be done
+  without going through klog
+
+To support the feature gate mechanism in Kubernetes, klog has wrapper calls for
+the corresponding go-logr calls and a global boolean controlling their behavior:
+
+- [`LoggerWithName`](https://pkg.go.dev/k8s.io/klog/v2#LoggerWithName)
+- [`LoggerWithValues`](https://pkg.go.dev/k8s.io/klog/v2#LoggerWithValues)
+- [`NewContext`](https://pkg.go.dev/k8s.io/klog/v2#NewContext)
+- [`EnableContextualLogging`](https://pkg.go.dev/k8s.io/klog/v2#EnableContextualLogging)
+
+Usage of those functions in Kubernetes code is enforced with a linter
+check. The klog default for contextual logging is to enable the functionality
+because it is considered stable in klog. It is only in Kubernetes binaries
+where that default gets overridden and (in some binaries) controlled via the
+`--feature-gate` parameter.
+
+### ktesting logger
+
+The new [ktesting](https://pkg.go.dev/k8s.io/klog/v2@v2.60.1/ktesting) package
+implements logging through `testing.T` using klog's text output format. It has
+a [single API call](https://pkg.go.dev/k8s.io/klog/v2@v2.60.1/ktesting#NewTestContext) for
+instrumenting a test case and [support for command line flags](https://pkg.go.dev/k8s.io/klog/v2@v2.60.1/ktesting/init).
+
+### klogr
+
+[`klog/klogr`](https://pkg.go.dev/k8s.io/klog/v2@v2.60.1/klogr) continues to be
+supported and it's default behavior is unchanged: it formats structured log
+entries using its own, custom format and prints the result via klog.
+
+However, this usage is discouraged because that format is neither
+machine-readable (in contrast to real JSON output as produced by zapr, the
+go-logr implementation used by Kubernetes) nor human-friendly (in contrast to
+the klog text format).
+
+Instead, a klogr instance should be created with
+[`WithFormat(FormatKlog)`](https://pkg.go.dev/k8s.io/klog/v2@v2.60.1/klogr#WithFormat)
+which chooses the klog text format. A simpler construction method with the same
+result is the new
+[`klog.NewKlogr`](https://pkg.go.dev/k8s.io/klog/v2#NewKlogr). That is the
+logger that klog returns as fallback when nothing else is configured.
+
+### Reusable output test
+
+A lot of go-logr implementations have very similar unit tests where they check
+the result of certain log calls. If a developer didn't know about certain
+caveats like for example a `String` function that panics when called, then it
+is likely that both the handling of such caveats and the unit test are missing.
+
+[`klog.test`](https://pkg.go.dev/k8s.io/klog/v2@v2.60.1/test) is a reusable set
+of test cases that can be applied to a go-logr implementation.
+
+### Output flushing
+
+klog used to start a goroutine unconditionally during `init` which flushed
+buffered data at a hard-coded interval. Now that goroutine is only started on
+demand (i.e. when writing to files with buffering) and can be controlled with
+[`StopFlushDaemon`](https://pkg.go.dev/k8s.io/klog/v2#StopFlushDaemon) and
+[`StartFlushDaemon`](https://pkg.go.dev/k8s.io/klog/v2#StartFlushDaemon).
+
+When a go-logr implementation buffers data, flushing that data can be
+integrated into [`klog.Flush`](https://pkg.go.dev/k8s.io/klog/v2#Flush) by
+registering the logger with the
+[`FlushLogger`](https://pkg.go.dev/k8s.io/klog/v2#FlushLogger) option.
+
+### Various other changes
+
+For a description of all other enhancements see in the [release notes](https://github.com/kubernetes/klog/releases).
+
+## logcheck
+
+Originally designed as a linter for structured log calls, the
+ [`logcheck`](https://github.com/kubernetes/klog/tree/788efcdee1e9be0bfbe5b076343d447314f2377e/hack/tools/logcheck)
+tool has been enhanced to support also contextual logging and traditional klog
+log calls. These enhanced checks already found bugs in Kubernetes, like calling
+`klog.Info` instead of `klog.Infof` with a format string and parameters.
+
+It can be included as a plugin in a `golangci-lint` invocation, which is how
+[Kubernetes uses it now](https://github.com/kubernetes/kubernetes/commit/17e3c555c5115f8c9176bae10ba45baa04d23a7b),
+or get invoked stand-alone.
+
+We are in the process of [moving the tool](https://github.com/kubernetes/klog/issues/312) into a new repository because it isn't
+really related to klog and its releases should be tracked and tagged properly.
+
+## Next steps
+
+The [Structured Logging WG](https://github.com/kubernetes/community/tree/master/wg-structured-logging)
+is always looking for new contributors. The migration
+away from C-style logging is now going to target structured, contextual logging
+in one step to reduce the overall code churn and number of PRs. Changing log
+calls is good first contribution to Kubernetes and an opportunity to get to
+know code in various different areas.
diff --git a/content/en/blog/_posts/2022-05-27-maxunavailable-for-statefulset.md b/content/en/blog/_posts/2022-05-27-maxunavailable-for-statefulset.md
new file mode 100644
index 0000000000..aa6257eb3e
--- /dev/null
+++ b/content/en/blog/_posts/2022-05-27-maxunavailable-for-statefulset.md
@@ -0,0 +1,148 @@
+---
+layout: blog
+title: 'Kubernetes 1.24: Maximum Unavailable Replicas for StatefulSet'
+date: 2022-05-27
+slug: maxunavailable-for-statefulset
+---
+
+**Author:** Mayank Kumar (Salesforce)
+
+Kubernetes [StatefulSets](/docs/concepts/workloads/controllers/statefulset/), since their introduction in 
+1.5 and becoming stable in 1.9, have been widely used to run stateful applications. They provide stable pod identity, persistent
+per pod storage and ordered graceful deployment, scaling and rolling updates. You can think of StatefulSet as the atomic building
+block for running complex stateful applications. As the use of Kubernetes has grown, so has the number of scenarios requiring
+StatefulSets. Many of these scenarios, require faster rolling updates than the currently supported one-pod-at-a-time updates, in the 
+case where you're using the `OrderedReady` Pod management policy for a StatefulSet.
+
+ 
+Here are some examples:
+
+-  I am using a StatefulSet to orchestrate a multi-instance, cache based application where the size of the cache is large. The cache 
+   starts cold and requires some siginificant amount of time before the container can start. There could be more initial startup tasks
+   that are required. A RollingUpdate on this StatefulSet would take a lot of time before the application is fully updated. If the 
+   StatefulSet supported updating more than one pod at a time, it would result in a much faster update.
+
+-  My stateful application is composed of leaders and followers or one writer and multiple readers. I have multiple readers or 
+   followers and my application can tolerate multiple pods going down at the same time. I want to update this application more than
+   one pod at a time so that i get the new updates rolled out quickly, especially if the number of instances of my application are
+   large. Note that my application still requires unique identity per pod.
+
+
+In order to support such scenarios, Kubernetes 1.24 includes a new alpha feature to help. Before you can use the new feature you must
+enable the `MaxUnavailableStatefulSet` feature flag. Once you enable that, you can specify a new field called `maxUnavailable`, part 
+of the `spec` for a StatefulSet. For example: 
+
+```
+apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: web
+  namespace: default
+spec:
+  podManagementPolicy: OrderedReady  # you must set OrderedReady
+  replicas: 5
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      - image: k8s.gcr.io/nginx-slim:0.8
+        imagePullPolicy: IfNotPresent
+        name: nginx
+  updateStrategy:
+    rollingUpdate:
+      maxUnavailable: 2 # this is the new alpha field, whose default value is 1
+      partition: 0
+    type: RollingUpdate
+```
+
+If you enable the new feature and you don't specify a value for `maxUnavailable` in a StatefulSet, Kubernetes applies a default
+`maxUnavailable: 1`. This matches the behavior you would see if you don't enable the new feature.
+
+I'll run through a scenario based on that example manifest to demonstrate how this feature works. I will deploy a StatefulSet that
+has 5 replicas, with `maxUnavailable` set to 2 and `partition` set to 0.
+
+I can trigger a rolling update by changing the image to `k8s.gcr.io/nginx-slim:0.9`. Once I initiate the rolling update, I can 
+watch the pods update 2 at a time as the current value of maxUnavailable is 2. The below output shows a span of time and is not 
+complete.  The maxUnavailable can be an absolute number (for example, 2) or a percentage of desired Pods (for example, 10%). The 
+absolute number is calculated from percentage by rounding down.  
+```
+kubectl get pods --watch 
+```
+
+```
+NAME    READY   STATUS    RESTARTS   AGE
+web-0   1/1     Running   0          85s
+web-1   1/1     Running   0          2m6s
+web-2   1/1     Running   0          106s
+web-3   1/1     Running   0          2m47s
+web-4   1/1     Running   0          2m27s
+web-4   1/1     Terminating   0          5m43s ----> start terminating 4
+web-3   1/1     Terminating   0          6m3s  ----> start terminating 3
+web-3   0/1     Terminating   0          6m7s
+web-3   0/1     Pending       0          0s
+web-3   0/1     Pending       0          0s
+web-4   0/1     Terminating   0          5m48s
+web-4   0/1     Terminating   0          5m48s
+web-3   0/1     ContainerCreating   0          2s
+web-3   1/1     Running             0          2s
+web-4   0/1     Pending             0          0s
+web-4   0/1     Pending             0          0s
+web-4   0/1     ContainerCreating   0          0s
+web-4   1/1     Running             0          1s
+web-2   1/1     Terminating         0          5m46s ----> start terminating 2 (only after both 4 and 3 are running)
+web-1   1/1     Terminating         0          6m6s  ----> start terminating 1
+web-2   0/1     Terminating         0          5m47s
+web-1   0/1     Terminating         0          6m7s
+web-1   0/1     Pending             0          0s
+web-1   0/1     Pending             0          0s
+web-1   0/1     ContainerCreating   0          1s
+web-1   1/1     Running             0          2s
+web-2   0/1     Pending             0          0s
+web-2   0/1     Pending             0          0s
+web-2   0/1     ContainerCreating   0          0s
+web-2   1/1     Running             0          1s
+web-0   1/1     Terminating         0          6m6s ----> start terminating 0 (only after 2 and 1 are running)
+web-0   0/1     Terminating         0          6m7s
+web-0   0/1     Pending             0          0s
+web-0   0/1     Pending             0          0s
+web-0   0/1     ContainerCreating   0          0s
+web-0   1/1     Running             0          1s
+```
+Note that as soon as the rolling update starts, both 4 and 3 (the two highest ordinal pods) start terminating at the same time. Pods 
+with ordinal 4 and 3 may become ready at their own pace. As soon as both pods 4 and 3 are ready, pods 2 and 1 start terminating at the
+same time. When pods 2 and 1 are both running and ready, pod 0 starts terminating. 
+
+In Kubernetes, updates to StatefulSets follow a strict ordering when updating Pods. In this example, the update starts at replica 4, then
+replica 3, then replica 2, and so on, one pod at a time. When going one pod at a time, its not possible for 3 to be running and ready 
+before 4. When `maxUnavailable` is more than 1 (in the example scenario I set `maxUnavailable` to 2), it is possible that replica 3 becomes 
+ready and running before replica 4 is ready&mdash;and that is ok. If you're a developer and you set `maxUnavailable` to more than 1, you should 
+know that this outcome is possible and you must ensure that your application is able to handle such ordering issues that occur
+if any. When you set `maxUnavailable` greater than 1, the ordering is guaranteed in between each batch of pods being updated. That guarantee
+means that pods in update batch 2 (replicas 2 and 1) cannot start updating until the pods from batch 0 (replicas 4 and 3) are ready.
+
+Although Kubernetes refers to these as _replicas_, your stateful application may have a different view and each pod of the StatefulSet may
+be holding completely different data than other pods. The important thing here is that updates to StatefulSets happen in batches, and you can
+now have a batch size larger than 1 (as an alpha feature).
+
+Also note, that the above behavior is with `podManagementPolicy: OrderedReady`. If you defined a StatefulSet as `podManagementPolicy: Parallel`,
+not only `maxUnavailable` number of replicas are terminated at the same time; `maxUnavailable` number of replicas start in `ContainerCreating`
+phase at the same time as well. This is called bursting.
+
+So, now you may have a lot of questions about:-
+- What is the behavior when you set `podManagementPolicy: Parallel`?
+- What is the behavior when `partition` to a value other than `0`?
+
+It might be better to try and see it for yourself. This is an alpha feature, and the Kubernetes contributors are looking for feedback on this feature. Did
+this help you achieve your stateful scenarios Did you find a bug or do you think the behavior as implemented is not intuitive or can
+break applications or catch them by surprise? Please [open an issue](https://github.com/kubernetes/kubernetes/issues) to let us know.
+
+## Further reading and next steps {#next-steps}
+- [Maximum unavailable Pods](/docs/concepts/workloads/controllers/statefulset/#maximum-unavailable-pods)
+- [KEP for MaxUnavailable for StatefulSet](https://github.com/kubernetes/enhancements/tree/master/keps/sig-apps/961-maxunavailable-for-statefulset)
+- [Implementation](https://github.com/kubernetes/kubernetes/pull/82162/files)
+- [Enhancement Tracking Issue](https://github.com/kubernetes/enhancements/issues/961)
diff --git a/content/en/blog/_posts/2022-06-01-annual-report-2021.md b/content/en/blog/_posts/2022-06-01-annual-report-2021.md
new file mode 100644
index 0000000000..e0a4130357
--- /dev/null
+++ b/content/en/blog/_posts/2022-06-01-annual-report-2021.md
@@ -0,0 +1,19 @@
+---
+layout: blog
+title: "Annual Report Summary 2021"
+date: 2022-06-01
+slug: annual-report-summary-2021
+---
+
+**Author:** Paris Pittman (Steering Committee)
+
+Last year, we published our first [Annual Report Summary](/blog/2021/06/28/announcing-kubernetes-community-group-annual-reports/) for 2020 and it's already time for our second edition!
+
+[2021 Annual Report Summary](https://www.cncf.io/reports/kubernetes-annual-report-2021/)
+
+This summary reflects the work that has been done in 2021 and the initiatives on deck for the rest of 2022. Please forward to organizations and indidviduals participating in upstream activities, planning cloud native strategies, and/or those looking to help out. To find a specific community group's complete report, go to the [kubernetes/community repo](https://github.com/kubernetes/community) under the groups folder. Example: [sig-api-machinery/annual-report-2021.md](https://github.com/kubernetes/community/blob/master/sig-api-machinery/annual-report-2021.md)
+
+You’ll see that this report summary is a growth area in itself. It takes us roughly 6 months to prepare and execute, which isn’t helpful or valuable to anyone as a fast moving project with short and long term needs. How can we make this better? Provide your feedback here: https://github.com/kubernetes/steering/issues/242
+
+Reference:
+[Annual Report Documentation](https://github.com/kubernetes/community/blob/master/committee-steering/governance/annual-reports.md)
diff --git a/content/en/blog/_posts/2022-07-13-gateway-api-in-beta.md b/content/en/blog/_posts/2022-07-13-gateway-api-in-beta.md
new file mode 100644
index 0000000000..54457cd336
--- /dev/null
+++ b/content/en/blog/_posts/2022-07-13-gateway-api-in-beta.md
@@ -0,0 +1,178 @@
+---
+layout: blog
+title: Kubernetes Gateway API Graduates to Beta
+date: 2022-07-13
+slug: gateway-api-graduates-to-beta
+canonicalUrl: https://gateway-api.sigs.k8s.io/blog/2022/graduating-to-beta/
+---
+
+**Authors:** Shane Utt (Kong), Rob Scott (Google), Nick Young (VMware), Jeff Apple (HashiCorp)
+
+We are excited to announce the v0.5.0 release of Gateway API. For the first
+time, several of our most important Gateway API resources are graduating to
+beta. Additionally, we are starting a new initiative to explore how Gateway API
+can be used for mesh and introducing new experimental concepts such as URL
+rewrites. We'll cover all of this and more below.
+
+## What is Gateway API?
+
+Gateway API is a collection of resources centered around [Gateway][gw] resources
+(which represent the underlying network gateways / proxy servers) to enable
+robust Kubernetes service networking through expressive, extensible and
+role-oriented interfaces that are implemented by many vendors and have broad
+industry support.
+
+Originally conceived as a successor to the well known [Ingress][ing] API, the
+benefits of Gateway API include (but are not limited to) explicit support for
+many commonly used networking protocols (e.g. `HTTP`, `TLS`, `TCP`, `UDP`) as
+well as tightly integrated support for Transport Layer Security (TLS). The
+`Gateway` resource in particular enables implementations to manage the lifecycle
+of network gateways as a Kubernetes API.
+
+If you're an end-user interested in some of the benefits of Gateway API we
+invite you to jump in and find an implementation that suits you. At the time of
+this release there are over a dozen [implementations][impl] for popular API
+gateways and service meshes and guides are available to start exploring quickly.
+
+[gw]:https://gateway-api.sigs.k8s.io/api-types/gateway/
+[ing]:https://kubernetes.io/docs/reference/kubernetes-api/service-resources/ingress-v1/
+[impl]:https://gateway-api.sigs.k8s.io/implementations/
+
+### Getting started
+
+Gateway API is an official Kubernetes API like
+[Ingress](https://kubernetes.io/docs/concepts/services-networking/ingress/).
+Gateway API represents a superset of Ingress functionality, enabling more
+advanced concepts. Similar to Ingress, there is no default implementation of
+Gateway API built into Kubernetes. Instead, there are many different
+[implementations][impl] available, providing significant choice in terms of underlying
+technologies while providing a consistent and portable experience.
+
+Take a look at the [API concepts documentation][concepts] and check out some of
+the [Guides][guides] to start familiarizing yourself with the APIs and how they
+work. When you're ready for a practical application open the [implementations
+page][impl] and select an implementation that belongs to an existing technology
+you may already be familiar with or the one your cluster provider uses as a
+default (if applicable). Gateway API is a [Custom Resource Definition
+(CRD)][crd] based API so you'll need to [install the CRDs][install-crds] onto a
+cluster to use the API.
+
+If you're specifically interested in helping to contribute to Gateway API, we
+would love to have you! Please feel free to [open a new issue][issue] on the
+repository, or join in the [discussions][disc]. Also check out the [community
+page][community] which includes links to the Slack channel and community meetings.
+
+[crd]:https://kubernetes.io/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/
+[concepts]:https://gateway-api.sigs.k8s.io/concepts/api-overview/
+[guides]:https://gateway-api.sigs.k8s.io/guides/getting-started/
+[impl]:https://gateway-api.sigs.k8s.io/implementations/
+[install-crds]:https://gateway-api.sigs.k8s.io/guides/getting-started/#install-the-crds
+[issue]:https://github.com/kubernetes-sigs/gateway-api/issues/new/choose
+[disc]:https://github.com/kubernetes-sigs/gateway-api/discussions
+[community]:https://gateway-api.sigs.k8s.io/contributing/community/
+
+## Release highlights
+
+### Graduation to beta
+
+The `v0.5.0` release is particularly historic because it marks the growth in
+maturity to a beta API version (`v1beta1`) release for some of the key APIs:
+
+- [GatewayClass](https://gateway-api.sigs.k8s.io/api-types/gatewayclass/)
+- [Gateway](https://gateway-api.sigs.k8s.io/api-types/gateway/)
+- [HTTPRoute](https://gateway-api.sigs.k8s.io/api-types/httproute/)
+
+This achievement was marked by the completion of several graduation criteria:
+
+- API has been [widely implemented][impl].
+- Conformance tests provide basic coverage for all resources and have multiple implementations passing tests.
+- Most of the API surface is actively being used.
+- Kubernetes SIG Network API reviewers have approved graduation to beta.
+
+For more information on Gateway API versioning, refer to the [official
+documentation](https://gateway-api.sigs.k8s.io/concepts/versioning/). To see
+what's in store for future releases check out the [next steps](#next-steps)
+section.
+
+[impl]:https://gateway-api.sigs.k8s.io/implementations/
+
+### Release channels
+
+This release introduces the `experimental` and `standard` [release channels][ch]
+which enable a better balance of maintaining stability while still enabling
+experimentation and iterative development.
+
+The `standard` release channel includes:
+
+- resources that have graduated to beta
+- fields that have graduated to standard (no longer considered experimental)
+
+The `experimental` release channel includes everything in the `standard` release
+channel, plus:
+
+- `alpha` API resources
+- fields that are considered experimental and have not graduated to `standard` channel
+
+Release channels are used internally to enable iterative development with
+quick turnaround, and externally to indicate feature stability to implementors
+and end-users.
+
+For this release we've added the following experimental features:
+
+- [Routes can attach to Gateways by specifying port numbers](https://gateway-api.sigs.k8s.io/geps/gep-957/)
+- [URL rewrites and path redirects](https://gateway-api.sigs.k8s.io/geps/gep-726/)
+
+[ch]:https://gateway-api.sigs.k8s.io/concepts/versioning/#release-channels-eg-experimental-standard
+
+### Other improvements
+
+For an exhaustive list of changes included in the `v0.5.0` release, please see
+the [v0.5.0 release notes](https://github.com/kubernetes-sigs/gateway-api/releases/tag/v0.5.0).
+
+## Gateway API for service mesh: the GAMMA Initiative
+Some service mesh projects have [already implemented support for the Gateway
+API](https://gateway-api.sigs.k8s.io/implementations/). Significant overlap
+between the Service Mesh Interface (SMI) APIs and the Gateway API has [inspired
+discussion in the SMI
+community](https://github.com/servicemeshinterface/smi-spec/issues/249) about
+possible integration.
+
+We are pleased to announce that the service mesh community, including
+representatives from Cilium Service Mesh, Consul, Istio, Kuma, Linkerd, NGINX
+Service Mesh and Open Service Mesh, is coming together to form the [GAMMA
+Initiative](https://gateway-api.sigs.k8s.io/contributing/gamma/), a dedicated
+workstream within the Gateway API subproject focused on Gateway API for Mesh
+Management and Administration.
+
+This group will deliver [enhancement
+proposals](https://gateway-api.sigs.k8s.io/v1beta1/contributing/gep/) consisting
+of resources, additions, and modifications to the Gateway API specification for
+mesh and mesh-adjacent use-cases.
+
+This work has begun with [an exploration of using Gateway API for
+service-to-service
+traffic](https://docs.google.com/document/d/1T_DtMQoq2tccLAtJTpo3c0ohjm25vRS35MsestSL9QU/edit#heading=h.jt37re3yi6k5)
+and will continue with enhancement in areas such as authentication and
+authorization policy.
+
+## Next steps
+
+As we continue to mature the API for production use cases, here are some of the highlights of what we'll be working on for the next Gateway API releases:
+
+- [GRPCRoute][gep1016] for [gRPC][grpc] traffic routing
+- [Route delegation][pr1085]
+- Layer 4 API maturity: Graduating [TCPRoute][tcpr], [UDPRoute][udpr] and
+  [TLSRoute][tlsr] to beta
+- [GAMMA Initiative](https://gateway-api.sigs.k8s.io/contributing/gamma/) - Gateway API for Service Mesh
+
+If there's something on this list you want to get involved in, or there's
+something not on this list that you want to advocate for to get on the roadmap
+please join us in the #sig-network-gateway-api channel on Kubernetes Slack or our weekly [community calls](https://gateway-api.sigs.k8s.io/contributing/community/#meetings).
+
+[gep1016]:https://github.com/kubernetes-sigs/gateway-api/blob/master/site-src/geps/gep-1016.md
+[grpc]:https://grpc.io/
+[pr1085]:https://github.com/kubernetes-sigs/gateway-api/pull/1085
+[tcpr]:https://github.com/kubernetes-sigs/gateway-api/blob/main/apis/v1alpha2/tcproute_types.go
+[udpr]:https://github.com/kubernetes-sigs/gateway-api/blob/main/apis/v1alpha2/udproute_types.go
+[tlsr]:https://github.com/kubernetes-sigs/gateway-api/blob/main/apis/v1alpha2/tlsroute_types.go
+[community]:https://gateway-api.sigs.k8s.io/contributing/community/
diff --git a/content/en/blog/_posts/2022-08-02-sig-docs-spotlight/index.md b/content/en/blog/_posts/2022-08-02-sig-docs-spotlight/index.md
new file mode 100644
index 0000000000..63fc79e01c
--- /dev/null
+++ b/content/en/blog/_posts/2022-08-02-sig-docs-spotlight/index.md
@@ -0,0 +1,114 @@
+---
+layout: blog
+title: "Spotlight on SIG Docs"
+date: 2022-08-02
+slug: sig-docs-spotlight-2022
+canonicalUrl: https://kubernetes.dev/blog/2022/08/02/sig-docs-spotlight-2022/
+---
+
+**Author:** Purneswar Prasad
+
+## Introduction
+
+The official documentation is the go-to source for any open source project. For Kubernetes, 
+it's an ever-evolving Special Interest Group (SIG) with people constantly putting in their efforts
+to make details about the project easier to consume for new contributors and users. SIG Docs publishes 
+the official documentation on [kubernetes.io](https://kubernetes.io) which includes, 
+but is not limited to, documentation of the core APIs, core architectural details, and CLI tools 
+shipped with the Kubernetes release. 
+
+To learn more about the work of SIG Docs and its future ahead in shaping the community, I have summarised 
+my conversation with the co-chairs, [Divya Mohan](https://twitter.com/Divya_Mohan02) (DM), 
+[Rey Lejano](https://twitter.com/reylejano) (RL) and Natali Vlatko (NV), who ran through the
+SIG's goals and how fellow contributors can help.
+
+## A summary of the conversation
+
+### Could you tell us a little bit about what SIG Docs does?
+
+SIG Docs is the special interest group for documentation for the Kubernetes project on kubernetes.io, 
+generating reference guides for the Kubernetes API, kubeadm and kubectl as well as maintaining the official 
+website’s infrastructure and analytics. The remit of their work also extends to docs releases, translation of docs, 
+improvement and adding new features to existing documentation, pushing and reviewing content for the official 
+Kubernetes blog and engaging with the Release Team for each cycle to get docs and blogs reviewed.
+
+
+### There are 2 subprojects under Docs: blogs and localization. How has the community benefited from it and are there some interesting contributions by those teams you want to highlight?
+
+**Blogs**: This subproject highlights new or graduated Kubernetes enhancements, community reports, SIG updates 
+or any relevant news to the Kubernetes community such as thought leadership, tutorials and project updates, 
+such as the Dockershim removal and removal of PodSecurityPolicy, which is upcoming in the 1.25 release.
+Tim Bannister, one of the SIG Docs tech leads, does awesome work and is a major force when pushing contributions 
+through to the docs and blogs.
+
+**Localization**: With this subproject, the Kubernetes community has been able to achieve greater inclusivity 
+and diversity among both users and contributors. This has also helped the project gain more contributors, 
+especially students, since a couple of years ago.
+One of the major highlights and up-and-coming localizations are Hindi and Bengali. The efforts for Hindi 
+localization are currently being spearheaded by students in India.
+
+In addition to that, there are two other subprojects: [reference-docs](https://github.com/kubernetes-sigs/reference-docs) and the [website](https://github.com/kubernetes/website), which is built with Hugo and is an important ownership area.
+
+### Recently there has been a lot of buzz around the Kubernetes ecosystem as well as the industry regarding the removal of dockershim in the latest 1.24 release. How has SIG Docs helped the project to ensure a smooth change among the end-users? {#dockershim-removal}
+
+Documenting the removal of Dockershim was a mammoth task, requiring the revamping of existing documentation 
+and communicating to the various stakeholders regarding the deprecation efforts. It needed a community effort, 
+so ahead of the 1.24 release, SIG Docs partnered with Docs and Comms verticals, the Release Lead from the 
+Release Team, and also the CNCF to help put the word out. Weekly meetings and a GitHub project board were 
+set up to track progress, review issues and approve PRs and keep the Kubernetes website updated. This has 
+also helped new contributors know about the depreciation, so that if any good-first-issue pops up, they could chip in. 
+A dedicated Slack channel was used to communicate meeting updates, invite feedback or to solicit help on 
+outstanding issues and PRs. The weekly meeting also continued for a month after the 1.24 release to review related issues and fix them.
+A huge shoutout to [Celeste Horgan](https://twitter.com/celeste_horgan), who kept the ball rolling on this 
+conversation throughout the deprecation process.
+
+### Why should new and existing contributors consider joining this SIG?
+
+Kubernetes is a vast project and can be intimidating at first for a lot of folks to find a place to start. 
+Any open source project is defined by its quality of documentation and SIG Docs aims to be a welcoming, 
+helpful place for new contributors to get onboard. One gets the perks of working with the project docs 
+as well as learning by reading it. They can also bring their own, new perspective to create and improve 
+the documentation. In the long run if they stick to SIG Docs, they can rise up the ladder to be maintainers. 
+This will help make a big project like Kubernetes easier to parse and navigate. 
+
+### How do you help new contributors get started? Are there any prerequisites to join?
+
+There are no such prerequisites to get started with contributing to Docs. But there is certainly a fantastic 
+Contribution to Docs guide which is always kept as updated and relevant as possible and new contributors 
+are urged to read it and keep it handy. Also, there are a lot of useful pins and bookmarks in the 
+community Slack channel [#sig-docs](https://kubernetes.slack.com/archives/C1J0BPD2M). GitHub issues with 
+the good-first-issue labels in the kubernetes/website repo is a great place to create your first PR.
+Now, SIG Docs has a monthly New Contributor Meet and Greet on the first Tuesday of the month with the 
+first occupant of the New Contributor Ambassador role, [Arsh Sharma](https://twitter.com/RinkiyaKeDad). 
+This has helped in making a more accessible point of contact within the SIG for new contributors.
+
+### Any SIG related accomplishment that you’re really proud of?
+
+**DM & RL** : The formalization of the localization subproject in the last few months has been a big win 
+for SIG Docs, given all the great work put in by contributors from different countries. Earlier the 
+localization efforts didn’t have any streamlined process and focus was given to provide a structure by 
+drafting a KEP over the past couple of months for localization to be formalized as a subproject, which 
+is planned to be pushed through by the end of third quarter.
+
+**DM** : Another area where there has been a lot of success is the New Contributor Ambassador role, 
+which has helped in making a more accessible point of contact for the onboarding of new contributors into the project.
+
+**NV** : For each release cycle, SIG Docs have to review release docs and feature blogs highlighting 
+release updates within a short window. This is always a big effort for the docs and blogs reviewers. 
+
+### Is there something exciting coming up for the future of SIG Docs that you want the community to know?
+
+SIG Docs is now looking forward to establishing a roadmap, having a steady pipeline of folks being able 
+to push improvements to the documentation and streamlining community involvement in triaging issues and 
+reviewing PRs being filed. To build one such contributor and reviewership base, a mentorship program is 
+being set up to help current contributors become reviewers. This definitely is a space to watch out for more!
+
+
+## Wrap Up
+
+SIG Docs hosted a [deep dive talk](https://www.youtube.com/watch?v=GDfcBF5et3Q) 
+during  on KubeCon + CloudNativeCon North America 2021, covering their awesome SIG. 
+They are very welcoming and have been the starting ground into Kubernetes 
+for a lot of new folks who want to contribute to the project. 
+Join the [SIG's meetings](https://github.com/kubernetes/community/blob/master/sig-docs/README.md) to find out 
+about the most recent research results, their plans for the forthcoming year, and how to get involved in the upstream Docs team as a contributor!
diff --git a/content/en/blog/_posts/2022-08-04-kubernetes-1.24-deprecations-and-removals.md b/content/en/blog/_posts/2022-08-04-kubernetes-1.24-deprecations-and-removals.md
new file mode 100644
index 0000000000..eccfa35a0a
--- /dev/null
+++ b/content/en/blog/_posts/2022-08-04-kubernetes-1.24-deprecations-and-removals.md
@@ -0,0 +1,78 @@
+---
+layout: blog
+title: "Kubernetes Removals and Major Changes In 1.25"
+date: 2022-08-04
+slug: upcoming-changes-in-kubernetes-1-25
+---
+
+**Authors**: Kat Cosgrove, Frederico Muñoz, Debabrata Panigrahi
+
+As Kubernetes grows and matures, features may be deprecated, removed, or replaced with improvements for the health of the project. Kubernetes v1.25 includes several major changes and one major removal.
+
+## The Kubernetes API Removal and Deprecation process
+
+The Kubernetes project has a well-documented [deprecation policy](/docs/reference/using-api/deprecation-policy/) for features. This policy states that stable APIs may only be deprecated when a newer, stable version of that same API is available and that APIs have a minimum lifetime for each stability level. A deprecated API is one that has been marked for removal in a future Kubernetes release; it will continue to function until removal (at least one year from the deprecation), but usage will result in a warning being displayed. Removed APIs are no longer available in the current version, at which point you must migrate to using the replacement.
+
+* Generally available (GA) or stable API versions may be marked as deprecated but must not be removed within a major version of Kubernetes. 
+* Beta or pre-release API versions must be supported for 3 releases after deprecation. 
+* Alpha or experimental API versions may be removed in any release without prior deprecation notice.
+
+Whether an API is removed as a result of a feature graduating from beta to stable or because that API simply did not succeed, all removals comply with this deprecation policy. Whenever an API is removed, migration options are communicated in the documentation. 
+
+## A Note About PodSecurityPolicy
+
+In Kubernetes v1.25, we will be removing PodSecurityPolicy [after its deprecation in v1.21](/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/). PodSecurityPolicy has served us honorably, but its complex and often confusing usage necessitated changes, which unfortunately would have been breaking changes. To address this, it is being removed in favor of a replacement, Pod Security Admission, which is graduating to stable in this release as well. If you are currently relying on PodSecurityPolicy, follow the instructions for [migration to Pod Security Admission](/docs/tasks/configure-pod-container/migrate-from-psp/).
+
+## Major Changes for Kubernetes v1.25
+
+Kubernetes v1.25 includes several major changes, in addition to the removal of PodSecurityPolicy.
+
+### [CSI Migration](https://github.com/kubernetes/enhancements/issues/625)
+
+The effort to  move the in-tree volume plugins to out-of-tree CSI drivers continues, with the core CSI Migration feature going GA in v1.25. This is an important step towards removing the in-tree volume plugins entirely.
+
+### Volume Plugin Deprecations and Removals
+
+Several volume are being deprecated or removed.
+
+[GlusterFS will be deprecated in v1.25](https://github.com/kubernetes/enhancements/issues/3446). While a CSI driver was built for it, it has not been maintained. The possibility of migration to a compatible CSI driver [was discussed](https://github.com/kubernetes/kubernetes/issues/100897), but a decision was ultimately made to begin the deprecation of the GlusterFS plugin from in-tree drivers. The [Portworx in-tree volume plugin](https://github.com/kubernetes/enhancements/issues/2589) is also being deprecated with this release. The Flocker, Quobyte, and StorageOS in-tree volume plugins are being removed.
+
+### [Declare Unsupported vSphere Versions](https://github.com/kubernetes/kubernetes/pull/111255)
+
+From Kubernetes v1.25, the in-tree vSphere volume driver will not support any vSphere release before 7.0u2. Check the v1.25 detailed release notes for more advice on how to handle this.
+
+### [Signing Release Artifacts](https://github.com/kubernetes/enhancements/issues/3031)
+
+An additional step in improving the security posture of the release process, the signing of Kubernetes release artifacts will graduate to Beta in this release. This is in line with the proposed enhancement of targeting SLSA Level 3 compliance for the Kubernetes release process.
+
+### [Support for cgroup v2 Graduating to Stable](https://github.com/kubernetes/enhancements/issues/2254)
+
+The new kernel cgroups v2 API was declared stable more than two years ago, and in this release we're taking solid steps towards full adoption of it. While cgroup v1 will continue to be supported, this change makes us ready to deal with the eventual deprecation of cgroup v1 and its replacement by cgroup v2.
+
+### [Cleaning up IPTables Chain Ownership](https://github.com/kubernetes/enhancements/issues/3178)
+
+From the Kubernetes 1.25 release, the iptables chains created by Kubernetes will only support for internal Kubernetes use cases. Starting with v1.25, the Kubelet will gradually move towards not creating the following iptables chains in the `nat` table:
+
+  - `KUBE-MARK-DROP`
+  - `KUBE-MARK-MASQ`
+  - `KUBE-POSTROUTING`
+
+This change will be phased in via the `IPTablesCleanup` feature gate.
+    
+## Looking ahead
+
+The official [list of API removals planned for Kubernetes 1.26](/docs/reference/using-api/deprecation-guide/#v1-26) is:
+
+* The beta FlowSchema and PriorityLevelConfiguration APIs (flowcontrol.apiserver.k8s.io/v1beta1)
+* The beta HorizontalPodAutoscaler API (autoscaling/v2beta2)
+
+    
+### Want to know more?
+Deprecations are announced in the Kubernetes release notes. You can see the announcements of pending deprecations in the release notes for:
+* [Kubernetes 1.21](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.21.md#deprecation)
+* [Kubernetes 1.22](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.22.md#deprecation)
+* [Kubernetes 1.23](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.23.md#deprecation)
+* [Kubernetes 1.24](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.24.md#deprecation)
+* We will formally announce the deprecations that come with [Kubernetes 1.25](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.25.md#deprecation) as part of the CHANGELOG for that release.
+
+For information on the process of deprecation and removal, check out the official Kubernetes [deprecation policy](/docs/reference/using-api/deprecation-policy/#deprecating-parts-of-the-api) document.
diff --git a/content/en/case-studies/peardeck/index.html b/content/en/case-studies/peardeck/index.html
index 4398277677..77d94873fd 100644
--- a/content/en/case-studies/peardeck/index.html
+++ b/content/en/case-studies/peardeck/index.html
@@ -20,7 +20,7 @@ case_study_details:
 
 <h2>Solution</h2>
 
-<p>In 2016, the company began moving their code from Heroku to <a href="https://www.docker.com/">Docker</a> containers running on <a href="https://cloud.google.com/kubernetes-engine/">Google Kubernetes Engine</a>, orchestrated by <a href="http://kubernetes.io/">Kubernetes</a> and monitored with <a href="https://prometheus.io/">Prometheus</a>.</p>
+<p>In 2016, the company began moving their code from Heroku to containers running on <a href="https://cloud.google.com/kubernetes-engine/">Google Kubernetes Engine</a>, orchestrated by <a href="http://kubernetes.io/">Kubernetes</a> and monitored with <a href="https://prometheus.io/">Prometheus</a>.</p>
 
 <h2>Impact</h2>
 
@@ -42,7 +42,7 @@ With the speed befitting a startup, Pear Deck delivered its first prototype to c
 
 <p>On top of that, many of Pear Deck's customers are behind government firewalls and connect through Firebase, not Pear Deck's servers, making troubleshooting even more difficult.</p>
 
-<p>The team began looking around for another solution, and finally decided in early 2016 to start moving the app from Heroku to <a href="https://www.docker.com/">Docker</a> containers running on <a href="https://cloud.google.com/kubernetes-engine/">Google Kubernetes Engine</a>, orchestrated by <a href="http://kubernetes.io/">Kubernetes</a> and monitored with <a href="https://prometheus.io/">Prometheus</a>.</p>
+<p>The team began looking around for another solution, and finally decided in early 2016 to start moving the app from Heroku to containers running on <a href="https://cloud.google.com/kubernetes-engine/">Google Kubernetes Engine</a>, orchestrated by <a href="http://kubernetes.io/">Kubernetes</a> and monitored with <a href="https://prometheus.io/">Prometheus</a>.</p>
 
 {{< case-studies/quote image="/images/case-studies/peardeck/banner1.jpg" >}}
 "When it became clear that Google Kubernetes Engine was going to have a lot of support from Google and be a fully-managed Kubernetes platform, it seemed very obvious to us that was the way to go," says Eynon-Lynch.
diff --git a/content/en/case-studies/prowise/index.html b/content/en/case-studies/prowise/index.html
index b8b584aa41..8e2a89c385 100644
--- a/content/en/case-studies/prowise/index.html
+++ b/content/en/case-studies/prowise/index.html
@@ -70,7 +70,7 @@ If you haven't set foot in a school in awhile, you might be surprised by what yo
 
 <p>Recently, the team launched a new single sign-on solution for use in an internal application. "Due to the resource based architecture of the Kubernetes platform, we were able to bring that application into an entirely new production environment in less than a day, most of that time used for testing after applying the already well-known resource definitions from staging to the new environment," says van den Bosch. "On a traditional VM this would have likely cost a day or two, and then probably a few weeks to iron out the kinks in our provisioning scripts as we apply updates."</p>
 
-<p>Legacy applications are also being moved to Kubernetes. Not long ago, the team needed to set up a Java-based application for compiling and running a frontend. "On a traditional VM, it would have taken quite a bit of time to set it up and keep it up to date, not to mention maintenance for that setup down the line," says van den Bosch. Instead, it took less than half a day to Dockerize it and get it running on Kubernetes. "It was much easier, and we were able to save costs too because we didn't have to spin up new VMs specially for it."</p>
+<p>Legacy applications are also being moved to Kubernetes. Not long ago, the team needed to set up a Java-based application for compiling and running a frontend. "On a traditional VM, it would have taken quite a bit of time to set it up and keep it up to date, not to mention maintenance for that setup down the line," says van den Bosch. Instead, it took less than half a day to containerize it and get it running on Kubernetes. "It was much easier, and we were able to save costs too because we didn't have to spin up new VMs specially for it."</p>
 
 {{< case-studies/quote author="VICTOR VAN DEN BOSCH, SENIOR DEVOPS ENGINEER, PROWISE" >}}
 "We're really trying to deliver integrated solutions with our hardware and software and making it as easy as possible for users to use and collaborate from different places," says van den Bosch. And, says Haalstra, "We cannot do it without Kubernetes."
diff --git a/content/en/case-studies/squarespace/index.html b/content/en/case-studies/squarespace/index.html
index 461e466d8c..d39ce0b6f6 100644
--- a/content/en/case-studies/squarespace/index.html
+++ b/content/en/case-studies/squarespace/index.html
@@ -46,7 +46,7 @@ Since it was started in a dorm room in 2003, Squarespace has made it simple for
 After experimenting with another container orchestration platform and "breaking it in very painful ways," Lynch says, the team began experimenting with Kubernetes in mid-2016 and found that it "answered all the questions that we had."
 {{< /case-studies/quote >}}
 
-<p>Within a couple months, they had a stable cluster for their internal use, and began rolling out Kubernetes for production. They also added Zipkin and CNCF projects <a href="https://prometheus.io/">Prometheus</a> and <a href="https://www.fluentd.org/">fluentd</a> to their cloud native stack. "We switched to Kubernetes, a new world, and we revamped all our other tooling as well," says Lynch. "It allowed us to streamline our process, so we can now easily create an entire microservice project from templates, generate the code and deployment pipeline for that, generate the Docker file, and then immediately just ship a workable, deployable project to Kubernetes." Deployments across Dev/QA/Stage/Prod were also "simplified drastically," Lynch adds. "Now there is little configuration variation."</p>
+<p>Within a couple months, they had a stable cluster for their internal use, and began rolling out Kubernetes for production. They also added Zipkin and CNCF projects <a href="https://prometheus.io/">Prometheus</a> and <a href="https://www.fluentd.org/">fluentd</a> to their cloud native stack. "We switched to Kubernetes, a new world, and we revamped all our other tooling as well," says Lynch. "It allowed us to streamline our process, so we can now easily create an entire microservice project from templates, generate the code and deployment pipeline for that, generate the Dockerfile, and then immediately just ship a workable, deployable project to Kubernetes." Deployments across Dev/QA/Stage/Prod were also "simplified drastically," Lynch adds. "Now there is little configuration variation."</p>
 
 <p>And the whole process takes only five minutes, an almost 85% reduction in time compared to their VM deployment. "From end to end that probably took half an hour, and that's not accounting for the fact that an infrastructure engineer would be responsible for doing that, so there's some business delay in there as well."</p>
 
diff --git a/content/en/case-studies/wink/index.html b/content/en/case-studies/wink/index.html
index 1f8ea4c89d..7b5a3f8541 100644
--- a/content/en/case-studies/wink/index.html
+++ b/content/en/case-studies/wink/index.html
@@ -58,9 +58,9 @@ How many people does it take to turn on a light bulb?
 
 <p>In addition, Wink had other requirements: horizontal scalability, the ability to encrypt everything quickly, connections that could be easily brought back up if something went wrong. "Looking at this whole structure we started, we decided to make a secure socket-based service," says Klein. "We've always used, I would say, some sort of clustering technology to deploy our services and so the decision we came to was, this thing is going to be containerized, running on Docker."</p>
 
-<p>At the time – just over two years ago – Docker wasn't yet widely used, but as Klein points out, "it was certainly understood by the people who were on the frontier of technology. We started looking at potential technologies that existed. One of the limiting factors was that we needed to deploy multi-port non-http/https services. It wasn't really appropriate for some of the early cluster technology. We liked the project a lot and we ended up using it on other stuff for a while, but initially it was too targeted toward http workloads."</p>
+<p>In 2015, Docker wasn't yet widely used, but as Klein points out, "it was certainly understood by the people who were on the frontier of technology. We started looking at potential technologies that existed. One of the limiting factors was that we needed to deploy multi-port non-http/https services. It wasn't really appropriate for some of the early cluster technology. We liked the project a lot and we ended up using it on other stuff for a while, but initially it was too targeted toward http workloads."</p>
 
-<p>Once Wink's backend engineering team decided on a Dockerized workload, they had to make decisions about the OS and the container orchestration platform. "Obviously you can't just start the containers and hope everything goes well," Klein says with a laugh. "You need to have a system that is helpful [in order] to manage where the workloads are being distributed out to. And when the container inevitably dies or something like that, to restart it, you have a load balancer. All sorts of housekeeping work is needed to have a robust infrastructure."</p>
+<p>Once Wink's backend engineering team decided on a containerized workload, they had to make decisions about the OS and the container orchestration platform. "Obviously you can't just start the containers and hope everything goes well," Klein says with a laugh. "You need to have a system that is helpful [in order] to manage where the workloads are being distributed out to. And when the container inevitably dies or something like that, to restart it, you have a load balancer. All sorts of housekeeping work is needed to have a robust infrastructure."</p>
 
 {{< case-studies/quote image="/images/case-studies/wink/banner4.jpg" >}}
 "Obviously you can't just start the containers and hope everything goes well," Klein says with a laugh. "You need to have a system that is helpful [in order] to manage where the workloads are being distributed out to. And when the container inevitably dies or something like that, to restart it, you have a load balancer. All sorts of housekeeping work is needed to have a robust infrastructure."
@@ -68,7 +68,7 @@ How many people does it take to turn on a light bulb?
 
 <p>Wink considered building directly on a general purpose Linux distro like Ubuntu (which would have required installing tools to run a containerized workload) and cluster management systems like Mesos (which was targeted toward enterprises with larger teams/workloads), but ultimately set their sights on CoreOS Container Linux. "A container-optimized Linux distribution system was exactly what we needed," he says. "We didn't have to futz around with trying to take something like a Linux distro and install everything. It's got a built-in container orchestration system, which is Fleet, and an easy-to-use API. It's not as feature-rich as some of the heavier solutions, but we realized that, at that moment, it was exactly what we needed."</p>
 
-<p>Wink's hub (along with a revamped app) was introduced in July 2014 with a short-term deployment, and within the first month, they had moved the service to the Dockerized CoreOS deployment. Since then, they've moved almost every other piece of their infrastructure – from third-party cloud-to-cloud integrations to their customer service and payment portals – onto CoreOS Container Linux clusters.</p>
+<p>Wink's hub (along with a revamped app) was introduced in July 2014 with a short-term deployment, and within the first month, they had moved the service to the containerized CoreOS deployment. Since then, they've moved almost every other piece of their infrastructure – from third-party cloud-to-cloud integrations to their customer service and payment portals – onto CoreOS Container Linux clusters.</p>
 
 <p>Using this setup did require some customization. "Fleet is really nice as a basic container orchestration system, but it doesn't take care of routing, sharing configurations, secrets, et cetera, among instances of a service," Klein says. "All of those layers of functionality can be implemented, of course, but if you don't want to spend a lot of time writing unit files manually – which of course nobody does – you need to create a tool to automate some of that, which we did."</p>
 
diff --git a/content/en/community/_index.html b/content/en/community/_index.html
index b41323c69e..de7fcee9a4 100644
--- a/content/en/community/_index.html
+++ b/content/en/community/_index.html
@@ -1,256 +1,183 @@
----
-title: Community
-layout: basic
-cid: community
----
-
-<div class="newcommunitywrapper">
-<div class="banner1">
-  <img src="/images/community/kubernetes-community-final-02.jpg" alt="Kubernetes Conference Gallery" style="width:100%;padding-left:0px" class="desktop">
-  <img src="/images/community/kubernetes-community-02-mobile.jpg" alt="Kubernetes Conference Gallery" style="width:100%;padding-left:0px" class="mobile">
-</div>
-
-<div class="intro">
-<br class="mobile">
-<p>The Kubernetes community -- users, contributors, and the culture we've built together -- is one of the biggest reasons for the meteoric rise of this open source project. Our culture and values continue to grow and change as the project itself grows and changes. We all work together toward constant improvement of the project and the ways we work on it.
-<br><br>We are the people who file issues and pull requests, attend SIG meetings, Kubernetes meetups, and KubeCon, advocate for its adoption and innovation, run <code>kubectl get pods</code>, and contribute in a thousand other vital ways. Read on to learn how you can get involved and become part of this amazing community.</p>
-<br class="mobile">
-</div>
-
-<div class="community__navbar">
-
-<a href="#values">Community Values</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
-<a href="#conduct">Code of conduct </a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
-<a href="#videos">Videos</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
-<a href="#discuss">Discussions</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
-<a href="#events">Events and meetups</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
-<a href="#news">News</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
-<a href="/releases">Releases</a>
-
-</div>
-<br class="mobile"><br class="mobile">
-<div class="imagecols">
-<br class="mobile">
-  <div class="imagecol">
-    <img src="/images/community/kubernetes-community-final-03.jpg" alt="Kubernetes Conference Gallery" style="width:100%" class="desktop">
-  </div>
-
-  <div class="imagecol">
-    <img src="/images/community/kubernetes-community-final-04.jpg" alt="Kubernetes Conference Gallery" style="width:100%" class="desktop">
-  </div>
-
-  <div class="imagecol" style="margin-right:0% important">
-    <img src="/images/community/kubernetes-community-final-05.jpg" alt="Kubernetes Conference Gallery" style="width:100%;margin-right:0% important" class="desktop">
-  </div>
-  <img src="/images/community/kubernetes-community-04-mobile.jpg" alt="Kubernetes Conference Gallery" style="width:100%;margin-bottom:3%" class="mobile">
-<a name="values"></a>
-</div>
-
-<div><a name="values"></a></div>
-<div class="conduct">
-<div class="conducttext">
-<br class="mobile"><br class="mobile">
-<br class="tablet"><br class="tablet">
-<div class="conducttextnobutton" style="margin-bottom:2%"><h1>Community Values</h1>
-The Kubernetes Community values are the keystone to the ongoing success of the project.<br>
-These principles guide every aspect of the Kubernetes project.
-<br>
-<a href="/community/values/">
-<br class="mobile"><br class="mobile">
-<span class="fullbutton">
-  READ MORE
-  </span>
-  </a>
-  </div><a name="conduct"></a>
-  </div>
-  </div>
-
-
-
-<div class="conduct">
-<div class="conducttext">
-<br class="mobile"><br class="mobile">
-<br class="tablet"><br class="tablet">
-<div class="conducttextnobutton" style="margin-bottom:2%"><h1>Code of Conduct</h1>
-The Kubernetes community values respect and inclusiveness, and enforces a Code of Conduct in all interactions. If you notice a violation of the Code of Conduct at an event or meeting, in Slack, or in another communication mechanism, reach out to the Kubernetes Code of Conduct Committee at <a href="mailto:conduct@kubernetes.io" style="color:#0662EE;font-weight:300">conduct@kubernetes.io</a>. All reports are kept confidential. You can read about the committee&nbsp;<a href="https://github.com/kubernetes/community/tree/master/committee-code-of-conduct" style="color:#0662EE;font-weight:300">here</a>.
-<br>
-<a href="https://kubernetes.io/community/code-of-conduct/">
-<br class="mobile"><br class="mobile">
-
-<span class="fullbutton">
-READ MORE
-</span>
-</a>
-</div><a name="videos"></a>
-</div>
-</div>
-
-
-
-<div class="videos">
-<br class="mobile"><br class="mobile">
-<br class="tablet"><br class="tablet">
-<h1 style="margin-top:0px">Videos</h1>
-
-<div style="margin-bottom:4%;font-weight:300;text-align:center;padding-left:10%;padding-right:10%">We're on YouTube, a lot. Subscribe for a wide range of&nbsp;topics.</div>
-
-<div class="videocontainer">
-
-<div class="video">
-
-  <iframe width="100%" height="250" src="https://www.youtube.com/embed/videoseries?list=PL69nYSiGNLP3azFUvYJjGn45YbF6C-uIg" title="Monthly office hours" frameborder="0" allow="autoplay; encrypted-media" allowfullscreen></iframe>
-
-<a href="https://www.youtube.com/playlist?list=PL69nYSiGNLP3azFUvYJjGn45YbF6C-uIg">
-<div class="videocta">
-Watch monthly office hours&nbsp;&#9654;</div>
-</a>
-</div>
-
-<div class="video">
-  <iframe width="100%" height="250" src="https://www.youtube.com/embed/videoseries?list=PL69nYSiGNLP1pkHsbPjzAewvMgGUpkCnJ" title="Weekly community meetings" frameborder="0" allow="autoplay; encrypted-media" allowfullscreen></iframe>
-<a href="https://www.youtube.com/playlist?list=PL69nYSiGNLP1pkHsbPjzAewvMgGUpkCnJ">
-<div class="videocta">
-Watch weekly community meetings&nbsp;&#9654;
-</div>
-</a>
-</div>
-
-<div class="video">
-
-<iframe width="100%" height="250" src="https://www.youtube.com/embed/videoseries?list=PL69nYSiGNLP3QpQrhZq_sLYo77BVKv09F" title="Talk from a community member" frameborder="0" allow="autoplay; encrypted-media" allowfullscreen></iframe>
-
-<a href="https://www.youtube.com/playlist?list=PL69nYSiGNLP3QpQrhZq_sLYo77BVKv09F">
-<div class="videocta">
-Watch a talk from a community member&nbsp;&#9654;
-</div>
-
-</a>
-<a name="discuss"></a>
-</div>
-</div>
-</div>
-
-
-<div class="resources">
-<br class="mobile"><br class="mobile">
-<br class="tablet"><br class="tablet">
-<h1 style="padding-top:1%">Discussions</h1>
-
-<div style="font-weight:300;text-align:center">We talk a lot. Find us and join the conversation on any of these&nbsp;platforms.</div>
-
-<div class="resourcecontainer">
-
-<div class="resourcebox">
-<img src="/images/community/discuss.png" alt=Forum" style="width:80%;padding-bottom:2%">
-<a href="https://discuss.kubernetes.io/" style="color:#0662EE;display:block;margin-top:1%">
-forum&nbsp;&#9654;
-</a>
-<div class="resourceboxtext" style="font-size:12px;text-transform:none !important;font-weight:300;line-height:1.4em;color:#333333;margin-top:4%">
-Topic-based technical discussions that bridge docs, StackOverflow, and so much&nbsp;more
-</div>
-</div>
-
-<div class="resourcebox">
-<img src="/images/community/twitter.png" alt="Twitter" style="width:80%;padding-bottom:2%">
-<a href="https://twitter.com/kubernetesio" style="color:#0662EE;display:block;margin-top:1%">
-twitter&nbsp;&#9654;
-</a>
-<div class="resourceboxtext" style="font-size:12px;text-transform:none !important;font-weight:300;line-height:1.4em;color:#333333;margin-top:4%">Real-time announcements of blog posts, events, news, ideas
-</div>
-</div>
-
-<div class="resourcebox">
-<img src="/images/community/github.png" alt="GitHub" style="width:80%;padding-bottom:2%">
-<a href="https://github.com/kubernetes/kubernetes" style="color:#0662EE;display:block;margin-top:1%">
-github&nbsp;&#9654;
-</a>
-<div class="resourceboxtext" style="font-size:12px;text-transform:none !important;font-weight:300;line-height:1.4em;color:#333333;margin-top:4%">
-All the project and issue tracking, plus of course code
-</div>
-</div>
-
-<div class="resourcebox">
-<img src="/images/community/stack.png" alt="Stack Overflow" style="width:80%;padding-bottom:2%">
-<a href="https://stackoverflow.com/search?q=kubernetes" style="color:#0662EE;display:block;margin-top:1%">
-stack overflow&nbsp;&#9654;
-</a>
-<div class="resourceboxtext" style="font-size:12px;text-transform:none !important;font-weight:300;line-height:1.4em;color:#333333;margin-top:4%">
-  Technical troubleshooting for any use&nbsp;case
-  <a name="events"></a>
-</div>
-</div>
-
-<!--
-<div class="resourcebox">
-
-<img src="/images/community/slack.png" style="width:80%">
-
-slack&nbsp;&#9654;
-
-<div class="resourceboxtext" style="font-size:11px;text-transform:none !important;font-weight:200;line-height:1.4em;color:#333333;margin-top:4%">
-With 170+ channels, you'll find one that fits your needs.
-</div>
-
-</div>-->
-
-</div>
-</div>
-<div class="events">
-  <br class="mobile"><br class="mobile">
-  <br class="tablet"><br class="tablet">
-<div class="eventcontainer">
- <h1 style="color:white !important">Upcoming Events</h1>
-    {{< upcoming-events >}}
-</div>
-</div>
-
-<div class="meetups">
-<div class="meetupcol">
-<div class="meetuptext">
-<h1 style="text-align:left">Global Community</h1>
-With over 150 meetups in the world and growing, go find your local kube people. If one isn't near, take charge and create your own.
-</div>
-<a href="https://www.meetup.com/topics/kubernetes/">
-<div class="button">
-FIND A MEETUP
-</div>
-</a>
-<a name="news"></a>
-</div>
-</div>
-
-
-<!--
-<div class="contributor">
-<div class="contributortext">
-<br>
-<h1 style="text-align:left">
-New Contributors Site
- </h1>
-Text about new contributors site.
-
-<br><br>
-
-<div class="button">
-VISIT SITE
-</div>
-</div>
-</div>
-
--->
-
-<div class="news">
-<br class="mobile"><br class="mobile">
-<br class="tablet"><br class="tablet">
-<h1 style="margin-bottom:2%">Recent News</h1>
-
-<br>
-<div class="twittercol1">
-<a class="twitter-timeline" data-tweet-limit="1" href="https://twitter.com/kubernetesio?ref_src=twsrc%5Etfw">Tweets by kubernetesio</a> <script async src="https://platform.twitter.com/widgets.js" charset="utf-8"></script>
-</div>
-
-<br>
-<br><br><br><br>
-</div>
-
-</div>
+---
+title: Community
+layout: basic
+cid: community
+community_styles_migrated: true
+---
+<img
+  id="banner"
+  srcset="/images/community/kubernetes-community-final-02.jpg 1500w, /images/community/kubernetes-community-02-mobile.jpg 900w"
+  sizes="(max-width: 900px) 900px, (max-width: 1920px) 1500px"
+  src="/images/community/kubernetes-community-final-02.jpg"
+  alt="Kubernetes conference photo">
+
+<div class="community-section" id="introduction">
+  <p>The Kubernetes community — users, contributors, and the culture we've
+  built together — is one of the biggest reasons for the meteoric rise of
+  this open source project. Our culture and values continue to grow and change
+  as the project itself grows and changes. We all work together toward constant
+  improvement of the project and the ways we work on it.</p>
+  <p> We are the people who file issues and pull requests, attend SIG meetings,
+  Kubernetes meetups, and KubeCon, advocate for its adoption and innovation,
+  run <code>kubectl get pods</code>, and contribute in a thousand other vital
+  ways. Read on to learn how you can get involved and become part of this amazing
+  community.</p>
+</div>
+
+<div id="navigation-items">
+  <div class="community-nav-item external-link">
+    <a href="https://www.kubernetes.dev/">Contributor community</a>
+  </div>
+  <div class="community-nav-item">
+    <a href="#values">Community values</a>
+  </div>
+  <div class="community-nav-item">
+    <a href="#conduct">Code of conduct</a>
+  </div>
+  <div class="community-nav-item">
+    <a href="#videos">Videos</a>
+  </div>
+  <div class="community-nav-item">
+    <a href="#discuss">Discussions</a>
+  </div>
+  <div class="community-nav-item">
+    <a href="#meetups">Meetups</a>
+  </div>
+  <div class="community-nav-item">
+    <a href="#news">News</a>
+  </div>
+  <div class="community-nav-item">
+    <a href="/releases">Releases</a>
+  </div>
+</div>
+
+<div class="community-section" id="gallery">
+  <img src="/images/community/kubernetes-community-final-03.jpg" alt="Kubernetes conference gallery photo" class="community-gallery-desktop">
+  <img src="/images/community/kubernetes-community-final-04.jpg" alt="Kubernetes conference gallery photo" class="community-gallery-desktop">
+  <img src="/images/community/kubernetes-community-final-05.jpg" alt="Kubernetes conference gallery photo" class="community-gallery-desktop">
+  <img src="/images/community/kubernetes-community-04-mobile.jpg" alt="Kubernetes conference gallery photo" class="community-gallery-mobile">
+</div>
+
+<div class="community-section" id="values">
+  <h2>Community Values</h2>
+  <p>The Kubernetes Community values are the keystone to the ongoing success of the project.<br class="optional"/>
+  These principles guide every aspect of the Kubernetes project.</p>
+  <a href="https://www.kubernetes.dev/community/values/" class="community-cta-button">
+    <span class="community-cta">Read more</span>
+  </a>
+</div>
+
+<div class="community-section" id="conduct">
+  <h2>Code of Conduct</h2>
+  <p>The Kubernetes community values respect and inclusiveness, and enforces a Code of Conduct in all interactions.</p>
+  <p>If you notice a violation of the Code of Conduct at an event or meeting, in <a href="#slack">Slack</a>, or in another communication mechanism, reach out to the Kubernetes Code of Conduct Committee at <a href="mailto:conduct@kubernetes.io">conduct@kubernetes.io</a>. All reports are kept confidential. You can read <a href="https://github.com/kubernetes/community/tree/master/committee-code-of-conduct">about the committee</a> in the Kubernetes community repository on GitHub.</p>
+  <a href="/community/code-of-conduct/" class="community-cta-button">
+    <span class="community-cta">Read more</span>
+  </a>
+</div>
+
+<div id="videos" class="community-section">
+  <h2>Videos</h2>
+
+  <p class="community-simple">Kubernetes is on YouTube, a lot. Subscribe for a wide range of&nbsp;topics.</p>
+
+  <div class="container">
+    <div class="video youtube">
+      <iframe src="https://www.youtube.com/embed/videoseries?list=PL69nYSiGNLP3azFUvYJjGn45YbF6C-uIg" title="Monthly office hours" allow="camera 'none'; microphone 'none'; geolocation 'none'; fullscreen https://www.youtube.com/" ></iframe>
+      <a href="https://www.youtube.com/playlist?list=PL69nYSiGNLP3azFUvYJjGn45YbF6C-uIg">
+       <span class="videocta">Watch monthly office hours&nbsp;&#9654;</span>
+      </a>
+    </div>
+
+    <div class="video youtube">
+      <iframe src="https://www.youtube.com/embed/videoseries?list=PL69nYSiGNLP1pkHsbPjzAewvMgGUpkCnJ" title="Weekly community meetings" allow="camera 'none'; microphone 'none'; geolocation 'none'; fullscreen https://www.youtube.com/"></iframe>
+      <a href="https://www.youtube.com/playlist?list=PL69nYSiGNLP1pkHsbPjzAewvMgGUpkCnJ">
+        <span class="videocta">Watch weekly community meetings&nbsp;&#9654;</span>
+      </a>
+    </div>
+
+    <div class="video youtube" id="discuss">
+      <iframe src="https://www.youtube.com/embed/videoseries?list=PL69nYSiGNLP3QpQrhZq_sLYo77BVKv09F" title="Talk from a community member" allow="camera 'none'; microphone 'none'; geolocation 'none'; fullscreen https://www.youtube.com/"></iframe>
+      <a href="https://www.youtube.com/playlist?list=PL69nYSiGNLP3QpQrhZq_sLYo77BVKv09F">
+        <span class="videocta">Watch a talk from a community member&nbsp;&#9654;</span>
+      </a>
+    </div>
+  </div>
+</div>
+
+<div id="resources" class="community-section">
+  <h2>Discussions</h2>
+
+  <p class="community-simple">We talk a lot. Find us and join the conversation on any of these&nbsp;platforms.</p>
+
+  <div class="container">
+    <div class="community-resource">
+      <a href="https://discuss.kubernetes.io/">
+        <img src="/images/community/discuss.png" alt="Forum">
+      </a>
+      <a href="https://discuss.kubernetes.io/">Community forums&nbsp;&#9654;</a>
+      <p>Topic-based technical discussions that bridge docs,
+         troubleshooting, and so much&nbsp;more.</p>
+    </div>
+
+    <div id="twitter" class="community-resource">
+      <a href="https://twitter.com/kubernetesio">
+        <img src="/images/community/twitter.png" alt="Twitter">
+      </a>
+      <a href="https://twitter.com/kubernetesio">Twitter&nbsp;&#9654;</a>
+      <p><em>#kubernetesio</em></p>
+      <p>Real-time announcements of blog posts, events, news, ideas.</p>
+    </div>
+
+    <div id="github" class="community-resource">
+      <a href="https://github.com/kubernetes/kubernetes">
+        <img src="/images/community/github.png" alt="GitHub">
+      </a>
+      <a href="https://github.com/kubernetes/kubernetes">GitHub&nbsp;&#9654;</a>
+      <p>All the project and issue tracking, plus of course code.</p>
+    </div>
+
+    <div id="server-fault" class="community-resource">
+      <a href="https://serverfault.com/questions/tagged/kubernetes">
+        <img src="/images/community/serverfault.png" alt="Server Fault">
+      </a>
+      <a href="https://serverfault.com/questions/tagged/kubernetes">Server Fault&nbsp;&#9654;</a>
+      <p>Kubernetes-related discussion on Server Fault. Ask a question, or answer one.</p>
+    </div>
+
+    <div id="slack" class="community-resource">
+      <a href="https://kubernetes.slack.com/">
+        <img src="/images/community/slack.png" alt="Slack">
+      </a>
+      <a href="https://kubernetes.slack.com/">Slack&nbsp;&#9654;</a>
+      <p>With 170+ channels, you'll find one that fits your needs.</p>
+      <details><summary><em>Need an invitation?</em></summary>
+        Visit <a href="https://slack.k8s.io/">https://slack.k8s.io/</a>
+        for an invitation.</details>
+    </div>
+  </div>
+</div>
+
+<div class="community-section" id="events">
+  <div class="container">
+   <h2>Upcoming Events</h2>
+   {{< upcoming-events >}}
+  </div>
+</div>
+
+<div class="community-section" id="meetups">
+  <h2>Global community</h2>
+  <p>
+    With over 150 meetups in the world and growing, go find your local kube people. If one isn't near, take charge and create your own.
+  </p>
+  <a href="https://www.meetup.com/topics/kubernetes/" class="community-cta-button">
+    <span class="community-cta">Find a meetup</span>
+  </a>
+</div>
+
+<div class="community-section community-frame" id="news">
+  <h2>Recent News</h2>
+  <div class="twittercol1">
+    <a class="twitter-timeline" data-tweet-limit="1" href="https://twitter.com/kubernetesio?ref_src=twsrc%5Etfw">Tweets by kubernetesio</a>
+  </div>
+</div>
diff --git a/content/en/community/code-of-conduct.md b/content/en/community/code-of-conduct.md
index 5dd0cb28e8..84c95370a3 100644
--- a/content/en/community/code-of-conduct.md
+++ b/content/en/community/code-of-conduct.md
@@ -1,27 +1,29 @@
 ---
-title: Community
+title: Kubernetes Community Code of Conduct
 layout: basic
 cid: community
-css: /css/community.css
+community_styles_migrated: true
 ---
 
-<div class="community_main">
-<h1>Kubernetes Community Code of Conduct</h1>
-
+<div class="community-section" id="cncf-code-of-conduct-intro">
+<p>
 Kubernetes follows the
-<a href="https://github.com/cncf/foundation/blob/master/code-of-conduct.md">CNCF Code of Conduct</a>.
+<a href="https://github.com/cncf/foundation/blob/main/code-of-conduct.md">CNCF Code of Conduct</a>.
 The text of the CNCF CoC is replicated below, as of
-<a href="https://github.com/cncf/foundation/blob/214585e24aab747fb85c2ea44fbf4a2442e30de6/code-of-conduct.md">commit 214585e</a>.
+<a href="https://github.com/cncf/foundation/blob/71b12a2f8b4589788ef2d69b351a3d035c68d927/code-of-conduct.md">commit 71b12a2</a>.
 If you notice that this is out of date, please
 <a href="https://github.com/kubernetes/website/issues/new">file an issue</a>.
+</p>
 
+<p>
 If you notice a violation of the Code of Conduct at an event or meeting, in
 Slack, or in another communication mechanism, reach out to
 the <a href="https://git.k8s.io/community/committee-code-of-conduct">Kubernetes Code of Conduct Committee</a>. 
 You can reach us by email at <a href="mailto:conduct@kubernetes.io">conduct@kubernetes.io</a>.
 Your anonymity will be protected.
+</p>
+</div>
 
-<div class="cncf_coc_container">
+<div id="cncf-code-of-conduct">
 {{< include "/static/cncf-code-of-conduct.md" >}}
 </div>
-</div>
diff --git a/content/en/community/static/OWNERS b/content/en/community/static/OWNERS
new file mode 100644
index 0000000000..3db354af14
--- /dev/null
+++ b/content/en/community/static/OWNERS
@@ -0,0 +1,7 @@
+# See the OWNERS docs at https://go.k8s.io/owners
+
+# Disable inheritance to encourage careful review of any changes here.
+options:
+  no_parent_owners: true
+approvers:
+- sig-docs-leads
diff --git a/content/en/community/static/README.md b/content/en/community/static/README.md
index ef8e8d5a3e..bc44990c07 100644
--- a/content/en/community/static/README.md
+++ b/content/en/community/static/README.md
@@ -1,2 +1,5 @@
 The files in this directory have been imported from other sources. Do not
-edit them directly, except by replacing them with new versions.
\ No newline at end of file
+edit them directly, except by replacing them with new versions.
+
+Localization note: you do not need to create localized versions of any of
+                   the files in this directory.
\ No newline at end of file
diff --git a/content/en/community/static/cncf-code-of-conduct.md b/content/en/community/static/cncf-code-of-conduct.md
index d07444c418..fb3202b24a 100644
--- a/content/en/community/static/cncf-code-of-conduct.md
+++ b/content/en/community/static/cncf-code-of-conduct.md
@@ -1,45 +1,72 @@
 <!-- Do not edit this file directly. Get the latest from
-     https://github.com/cncf/foundation/blob/master/code-of-conduct.md -->
-## CNCF Community Code of Conduct v1.0
+     https://github.com/cncf/foundation/blob/main/code-of-conduct.md -->
+## CNCF Community Code of Conduct v1.1
 
 ### Contributor Code of Conduct
 
-As contributors and maintainers of this project, and in the interest of fostering
+As contributors and maintainers in the CNCF community, and in the interest of fostering
 an open and welcoming community, we pledge to respect all people who contribute
 through reporting issues, posting feature requests, updating documentation,
 submitting pull requests or patches, and other activities.
 
-We are committed to making participation in this project a harassment-free experience for
-everyone, regardless of level of experience, gender, gender identity and expression,
+We are committed to making participation in the CNCF community a harassment-free experience for everyone, regardless of level of experience, gender, gender identity and expression,
 sexual orientation, disability, personal appearance, body size, race, ethnicity, age,
 religion, or nationality.
 
-Examples of unacceptable behavior by participants include:
+## Scope
 
-* The use of sexualized language or imagery
-* Personal attacks
-* Trolling or insulting/derogatory comments
+This code of conduct applies both within project spaces and in public spaces when an individual is representing the project or its community.
+
+### CNCF Events
+
+CNCF events, or events run by the Linux Foundation with professional events staff, are governed by the Linux Foundation [Events Code of Conduct](https://events.linuxfoundation.org/code-of-conduct/) available on the event page. This is designed to be used in conjunction with the CNCF Code of Conduct.
+
+## Our Standards
+
+Examples of behavior that contributes to a positive environment include:
+
+* Demonstrating empathy and kindness toward other people
+* Being respectful of differing opinions, viewpoints, and experiences
+* Giving and gracefully accepting constructive feedback
+* Accepting responsibility and apologizing to those affected by our mistakes,
+  and learning from the experience
+* Focusing on what is best not just for us as individuals, but for the
+  overall community
+
+Examples of unacceptable behavior include:
+
+* The use of sexualized language or imagery, and sexual attention or
+  advances of any kind
+* Trolling, insulting or derogatory comments, and personal or political attacks
 * Public or private harassment
-* Publishing other's private information, such as physical or electronic addresses,
- without explicit permission
-* Other unethical or unprofessional conduct.
+* Publishing others' private information, such as a physical or email
+  address, without their explicit permission
+* Other conduct which could reasonably be considered inappropriate in a
+  professional setting
 
-Project maintainers have the right and responsibility to remove, edit, or reject
-comments, commits, code, wiki edits, issues, and other contributions that are not
-aligned to this Code of Conduct. By adopting this Code of Conduct, project maintainers
-commit themselves to fairly and consistently applying these principles to every aspect
-of managing this project. Project maintainers who do not follow or enforce the Code of
+Project maintainers have the right and responsibility to remove, edit, or reject comments, commits, code, wiki edits, issues, and other contributions that are not aligned to this Code of Conduct.
+By adopting this Code of Conduct, project maintainers commit themselves to fairly and consistently applying these principles to every aspect
+of managing this project.
+Project maintainers who do not follow or enforce the Code of
 Conduct may be permanently removed from the project team.
 
-This code of conduct applies both within project spaces and in public spaces
-when an individual is representing the project or its community.
+## Reporting
 
-Instances of abusive, harassing, or otherwise unacceptable behavior in Kubernetes may be reported by contacting the [Kubernetes Code of Conduct Committee](https://git.k8s.io/community/committee-code-of-conduct) via <conduct@kubernetes.io>. For other projects, please contact a CNCF project maintainer or our mediator, Mishi Choudhary <mishi@linux.com>.
+For incidents occurring in the Kubernetes community, contact the [Kubernetes Code of Conduct Committee](https://git.k8s.io/community/committee-code-of-conduct) via <conduct@kubernetes.io>. You can expect a response within three business days.
+
+For other projects, please contact the CNCF staff via <conduct@cncf.io>. You can expect a response within three business days.
+
+In matters that require an outside mediator, CNCF has retained Mishi Choudhary (mishi@linux.com). Use of an outside mediator can be requested when reporting or used at CNCF staff's discretion. In general, contacting <conduct@cncf.io> directly is preferred.
+
+
+## Enforcement
+
+The Kubernetes project's [Code of Conduct Committee](https://github.com/kubernetes/community/tree/master/committee-code-of-conduct) enforces code of conduct issues. For all other projects, the CNCF enforces code of conduct issues.
+
+Both bodies try to resolve incidents without punishment, but may remove people from the project or CNCF communities at their discretion.
+
+## Acknowledgements
 
 This Code of Conduct is adapted from the Contributor Covenant
-(https://contributor-covenant.org), version 1.2.0, available at
-https://contributor-covenant.org/version/1/2/0/
-
-### CNCF Events Code of Conduct
-
-CNCF events are governed by the Linux Foundation [Code of Conduct](https://events.linuxfoundation.org/code-of-conduct/) available on the event page. This is designed to be compatible with the above policy and also includes more details on responding to incidents.
+(http://contributor-covenant.org), version 2.0 available at
+http://contributor-covenant.org/version/2/0/code_of_conduct/
\ No newline at end of file
diff --git a/content/en/community/static/community-values.md b/content/en/community/static/community-values.md
index f6469a3e61..6fd1a1a06c 100644
--- a/content/en/community/static/community-values.md
+++ b/content/en/community/static/community-values.md
@@ -3,26 +3,26 @@
 
 # Kubernetes Community Values
 
-Kubernetes Community culture is frequently cited as a substantial contributor to the meteoric rise of this Open Source project.  Below are the distilled values which have evolved over the last many years in our community pushing our project and peers toward constant improvement.
+Kubernetes Community culture contributes substantially to the project's success. The following values have evolved over time, pushing our project and peers toward constant improvement.
 
 ## Distribution is better than centralization
 
-The scale of the Kubernetes project is only viable through high-trust and high-visibility distribution of work, which includes delegation of authority, decision making, technical design, code ownership, and documentation.  Distributed asynchronous ownership, collaboration, communication and decision making are the cornerstone of our world-wide community.
+The scale of the Kubernetes project is only viable through high-trust and high-visibility distribution of work, which includes delegation of authority, decision making, technical design, code ownership, and documentation.  Distributed asynchronous ownership, collaboration, communication and decision making are the cornerstones of our world-wide community.
 
 ## Community over product or company
 
-We are here as a community first, our allegiance is to the intentional stewardship of the Kubernetes project for the benefit of all its members and users everywhere.  We support working together publicly for the common goal of a vibrant interoperable ecosystem providing an excellent experience for our users. Individuals gain status through work, companies gain status through their commitments to support this community and fund the resources necessary for the project  to operate.
+We are here as a community first. Our allegiance is to the intentional stewardship of the Kubernetes project for the benefit of all its members and users everywhere. We support working together publicly for the common goal of a vibrant interoperable ecosystem, providing an excellent experience for our users. Individuals gain status through work. Companies gain status through their commitments to support this community and fund the resources necessary for the project to operate.
 
 ## Automation over process
 
-Large projects have a lot of less exciting, yet, hard work.  We value time spent automating repetitive work more highly than toil. Where that work cannot be automated, it is our culture to recognize and reward all types of contributions. However, heroism is not sustainable.
+Large projects have a lot of hard yet less exciting work. We value time spent automating repetitive work more highly than toil. Where work cannot be automated, our culture recognizes and rewards all types of contributions while recognizing that heroism is not sustainable.
 
 ## Inclusive is better than exclusive
 
-Broadly successful and useful technology requires different perspectives and skill sets which can only be heard in a welcoming and respectful environment.  Community membership is a privilege, not a right. Community Leadership is earned through effort, scope, quality, quantity, and duration of contributions. Our community shows respect for the time and effort put into a discussion regardless of where a contributor is on their growth path.
+Broadly successful and useful technologies require different perspectives and skill sets, which can only be heard in a welcoming and respectful environment. Community membership is a privilege, not a right. Community members earn leadership through effort, scope, quality, quantity, and duration of contributions. Our community respects the time and effort put into a discussion, regardless of where a contributor is on their growth path.
 
 ## Evolution is better than stagnation
 
-Openness to new ideas and studied technological evolution make Kubernetes a stronger project.  Continual improvement, servant leadership, mentorship and respect are the foundations of the Kubernetes project culture. It is the duty for leaders in the Kubernetes community to find, sponsor, and promote new community members. Leaders should expect to step aside. Community members should expect to step up.
+Openness to new ideas and studied technological evolution make Kubernetes a stronger project. Continual improvement, servant leadership, mentorship, and respect are the foundations of Kubernetes culture. Kubernetes community leaders have a duty to find, sponsor, and promote new community members. Leaders should expect to step aside. Community members should expect to step up.
 
 **"Culture eats strategy for breakfast."   --Peter Drucker**
diff --git a/content/en/community/values.md b/content/en/community/values.md
index 4ae1fe30b6..2974dc1e43 100644
--- a/content/en/community/values.md
+++ b/content/en/community/values.md
@@ -1,13 +1,26 @@
 ---
-title: Community
+title: Kubernetes Community Values
 layout: basic
 cid: community
-css: /css/community.css
+community_styles_migrated: true
+
+# this page is deprecated
+# canonical page is https://www.kubernetes.dev/community/values/
+sitemap:
+  priority: 0.1
 ---
 
-<div class="community_main">
-
-<div class="cncf_coc_container">
+<div class="community-section" id="values-legacy">
+<p>
+This page is a replicated version of
+<a href="https://www.kubernetes.dev/community/values/">Kubernetes Community Values</a>, as of
+<a href="https://github.com/kubernetes/community/blob/5c642749a030c5f7b2363a6bb9bad00a56a92161/values.md">commit 5c64274</a>.
+If you notice that this is out of date, please
+<a href="https://github.com/kubernetes/website/issues/new">file an issue</a>.
+</p>
 {{< include "/static/community-values.md" >}}
 </div>
-</div>
+
+<!-- no need to localize this file, nor the contents of the static directory -->
+<!-- if localizing, find the appropriate localized version of the CNCF code of
+     conduct, and link directly to that -->
diff --git a/content/en/docs/concepts/architecture/cloud-controller.md b/content/en/docs/concepts/architecture/cloud-controller.md
index 229cc489f9..e6eadaa56f 100644
--- a/content/en/docs/concepts/architecture/cloud-controller.md
+++ b/content/en/docs/concepts/architecture/cloud-controller.md
@@ -43,11 +43,11 @@ The controllers inside the cloud controller manager include:
 
 ### Node controller
 
-The node controller is responsible for creating {{< glossary_tooltip text="Node" term_id="node" >}} objects
+The node controller is responsible for updating {{< glossary_tooltip text="Node" term_id="node" >}} objects
 when new servers are created in your cloud infrastructure. The node controller obtains information about the
 hosts running inside your tenancy with the cloud provider. The node controller performs the following functions:
 
-1. Initialize a Node object for each server that the controller discovers through the cloud provider API.
+1. Update a Node object with the corresponding server's unique identifier obtained from the cloud provider API.
 2. Annotating and labelling the Node object with cloud-specific information, such as the region the node
    is deployed into and the resources (CPU, memory, etc) that it has available.
 3. Obtain the node's hostname and network addresses.
@@ -78,7 +78,7 @@ when you declare a Service resource that requires them.
 
 ## Authorization
 
-This section breaks down the access that the cloud controller managers requires
+This section breaks down the access that the cloud controller manager requires
 on various API objects, in order to perform its operations.
 
 ### Node controller {#authorization-node-controller}
diff --git a/content/en/docs/concepts/architecture/control-plane-node-communication.md b/content/en/docs/concepts/architecture/control-plane-node-communication.md
index a4814aab4b..785040cda3 100644
--- a/content/en/docs/concepts/architecture/control-plane-node-communication.md
+++ b/content/en/docs/concepts/architecture/control-plane-node-communication.md
@@ -2,7 +2,7 @@
 reviewers:
 - dchen1107
 - liggitt
-title: Control Plane-Node Communication
+title: Communication between Nodes and the Control Plane
 content_type: concept
 weight: 20
 aliases:
@@ -11,62 +11,109 @@ aliases:
 
 <!-- overview -->
 
-This document catalogs the communication paths between the control plane (apiserver) and the Kubernetes cluster. The intent is to allow users to customize their installation to harden the network configuration such that the cluster can be run on an untrusted network (or on fully public IPs on a cloud provider).
-
-
+This document catalogs the communication paths between the API server and the Kubernetes cluster.
+The intent is to allow users to customize their installation to harden the network configuration
+such that the cluster can be run on an untrusted network (or on fully public IPs on a cloud
+provider).
 
 <!-- body -->
 
 ## Node to Control Plane
-Kubernetes has a "hub-and-spoke" API pattern. All API usage from nodes (or the pods they run) terminates at the apiserver. None of the other control plane components are designed to expose remote services. The apiserver is configured to listen for remote connections on a secure HTTPS port (typically 443) with one or more forms of client [authentication](/docs/reference/access-authn-authz/authentication/) enabled.
-One or more forms of [authorization](/docs/reference/access-authn-authz/authorization/) should be enabled, especially if [anonymous requests](/docs/reference/access-authn-authz/authentication/#anonymous-requests) or [service account tokens](/docs/reference/access-authn-authz/authentication/#service-account-tokens) are allowed.
 
-Nodes should be provisioned with the public root certificate for the cluster such that they can connect securely to the apiserver along with valid client credentials. A good approach is that the client credentials provided to the kubelet are in the form of a client certificate. See [kubelet TLS bootstrapping](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/) for automated provisioning of kubelet client certificates.
+Kubernetes has a "hub-and-spoke" API pattern. All API usage from nodes (or the pods they run)
+terminates at the API server. None of the other control plane components are designed to expose
+remote services. The API server is configured to listen for remote connections on a secure HTTPS
+port (typically 443) with one or more forms of client
+[authentication](/docs/reference/access-authn-authz/authentication/) enabled.
+One or more forms of [authorization](/docs/reference/access-authn-authz/authorization/) should be
+enabled, especially if [anonymous requests](/docs/reference/access-authn-authz/authentication/#anonymous-requests)
+or [service account tokens](/docs/reference/access-authn-authz/authentication/#service-account-tokens)
+are allowed.
 
-Pods that wish to connect to the apiserver can do so securely by leveraging a service account so that Kubernetes will automatically inject the public root certificate and a valid bearer token into the pod when it is instantiated.
-The `kubernetes` service (in `default` namespace) is configured with a virtual IP address that is redirected (via kube-proxy) to the HTTPS endpoint on the apiserver.
+Nodes should be provisioned with the public root certificate for the cluster such that they can
+connect securely to the API server along with valid client credentials. A good approach is that the
+client credentials provided to the kubelet are in the form of a client certificate. See
+[kubelet TLS bootstrapping](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/)
+for automated provisioning of kubelet client certificates.
 
-The control plane components also communicate with the cluster apiserver over the secure port.
+Pods that wish to connect to the API server can do so securely by leveraging a service account so
+that Kubernetes will automatically inject the public root certificate and a valid bearer token
+into the pod when it is instantiated.
+The `kubernetes` service (in `default` namespace) is configured with a virtual IP address that is
+redirected (via `kube-proxy`) to the HTTPS endpoint on the API server.
 
-As a result, the default operating mode for connections from the nodes and pods running on the nodes to the control plane is secured by default and can run over untrusted and/or public networks.
+The control plane components also communicate with the API server over the secure port.
 
-## Control Plane to node
+As a result, the default operating mode for connections from the nodes and pods running on the
+nodes to the control plane is secured by default and can run over untrusted and/or public
+networks.
 
-There are two primary communication paths from the control plane (apiserver) to the nodes. The first is from the apiserver to the kubelet process which runs on each node in the cluster. The second is from the apiserver to any node, pod, or service through the apiserver's proxy functionality.
+## Control plane to node
 
-### apiserver to kubelet
+There are two primary communication paths from the control plane (the API server) to the nodes.
+The first is from the API server to the kubelet process which runs on each node in the cluster.
+The second is from the API server to any node, pod, or service through the API server's _proxy_
+functionality.
 
-The connections from the apiserver to the kubelet are used for:
+### API server to kubelet
+
+The connections from the API server to the kubelet are used for:
 
 * Fetching logs for pods.
-* Attaching (through kubectl) to running pods.
+* Attaching (usually through `kubectl`) to running pods.
 * Providing the kubelet's port-forwarding functionality.
 
-These connections terminate at the kubelet's HTTPS endpoint. By default, the apiserver does not verify the kubelet's serving certificate, which makes the connection subject to man-in-the-middle attacks and **unsafe** to run over untrusted and/or public networks.
+These connections terminate at the kubelet's HTTPS endpoint. By default, the API server does not
+verify the kubelet's serving certificate, which makes the connection subject to man-in-the-middle
+attacks and **unsafe** to run over untrusted and/or public networks.
 
-To verify this connection, use the `--kubelet-certificate-authority` flag to provide the apiserver with a root certificate bundle to use to verify the kubelet's serving certificate.
+To verify this connection, use the `--kubelet-certificate-authority` flag to provide the API
+server with a root certificate bundle to use to verify the kubelet's serving certificate.
 
-If that is not possible, use [SSH tunneling](#ssh-tunnels) between the apiserver and kubelet if required to avoid connecting over an
+If that is not possible, use [SSH tunneling](#ssh-tunnels) between the API server and kubelet if
+required to avoid connecting over an
 untrusted or public network.
 
-Finally, [Kubelet authentication and/or authorization](/docs/reference/command-line-tools-reference/kubelet-authentication-authorization/) should be enabled to secure the kubelet API.
 
-### apiserver to nodes, pods, and services
+Finally, [Kubelet authentication and/or authorization](/docs/reference/access-authn-authz/kubelet-authn-authz/)
+should be enabled to secure the kubelet API.
 
-The connections from the apiserver to a node, pod, or service default to plain HTTP connections and are therefore neither authenticated nor encrypted. They can be run over a secure HTTPS connection by prefixing `https:` to the node, pod, or service name in the API URL, but they will not validate the certificate provided by the HTTPS endpoint nor provide client credentials. So while the connection will be encrypted, it will not provide any guarantees of integrity. These connections **are not currently safe** to run over untrusted or public networks.
+### API server to nodes, pods, and services
+
+The connections from the API server to a node, pod, or service default to plain HTTP connections
+and are therefore neither authenticated nor encrypted. They can be run over a secure HTTPS
+connection by prefixing `https:` to the node, pod, or service name in the API URL, but they will
+not validate the certificate provided by the HTTPS endpoint nor provide client credentials. So
+while the connection will be encrypted, it will not provide any guarantees of integrity. These
+connections **are not currently safe** to run over untrusted or public networks.
 
 ### SSH tunnels
 
-Kubernetes supports SSH tunnels to protect the control plane to nodes communication paths. In this configuration, the apiserver initiates an SSH tunnel to each node in the cluster (connecting to the ssh server listening on port 22) and passes all traffic destined for a kubelet, node, pod, or service through the tunnel.
-This tunnel ensures that the traffic is not exposed outside of the network in which the nodes are running.
+Kubernetes supports SSH tunnels to protect the control plane to nodes communication paths. In this
+configuration, the API server initiates an SSH tunnel to each node in the cluster (connecting to
+the SSH server listening on port 22) and passes all traffic destined for a kubelet, node, pod, or
+service through the tunnel.
+This tunnel ensures that the traffic is not exposed outside of the network in which the nodes are
+running.
 
-SSH tunnels are currently deprecated, so you shouldn't opt to use them unless you know what you are doing. The Konnectivity service is a replacement for this communication channel.
+{{< note >}}
+SSH tunnels are currently deprecated, so you shouldn't opt to use them unless you know what you
+are doing. The [Konnectivity service](#konnectivity-service) is a replacement for this
+communication channel.
+{{< /note >}}
 
 ### Konnectivity service
 
 {{< feature-state for_k8s_version="v1.18" state="beta" >}}
 
-As a replacement to the SSH tunnels, the Konnectivity service provides TCP level proxy for the control plane to cluster communication. The Konnectivity service consists of two parts: the Konnectivity server in the control plane network and the Konnectivity agents in the nodes network. The Konnectivity agents initiate connections to the Konnectivity server and maintain the network connections.
-After enabling the Konnectivity service, all control plane to nodes traffic goes through these connections.
+As a replacement to the SSH tunnels, the Konnectivity service provides TCP level proxy for the
+control plane to cluster communication. The Konnectivity service consists of two parts: the
+Konnectivity server in the control plane network and the Konnectivity agents in the nodes network.
+The Konnectivity agents initiate connections to the Konnectivity server and maintain the network
+connections.
+After enabling the Konnectivity service, all control plane to nodes traffic goes through these
+connections.
+
+Follow the [Konnectivity service task](/docs/tasks/extend-kubernetes/setup-konnectivity/) to set
+up the Konnectivity service in your cluster.
 
-Follow the [Konnectivity service task](/docs/tasks/extend-kubernetes/setup-konnectivity/) to set up the Konnectivity service in your cluster.
diff --git a/content/en/docs/concepts/architecture/cri.md b/content/en/docs/concepts/architecture/cri.md
new file mode 100644
index 0000000000..02f6d8a199
--- /dev/null
+++ b/content/en/docs/concepts/architecture/cri.md
@@ -0,0 +1,51 @@
+---
+title: Container Runtime Interface (CRI)
+content_type: concept
+weight: 50
+---
+
+<!-- overview -->
+
+The CRI is a plugin interface which enables the kubelet to use a wide variety of
+container runtimes, without having a need to recompile the cluster components.
+
+You need a working
+{{<glossary_tooltip text="container runtime" term_id="container-runtime">}} on
+each Node in your cluster, so that the
+{{< glossary_tooltip text="kubelet" term_id="kubelet" >}} can launch
+{{< glossary_tooltip text="Pods" term_id="pod" >}} and their containers.
+
+{{< glossary_definition prepend="The Container Runtime Interface (CRI) is" term_id="container-runtime-interface" length="all" >}}
+
+<!-- body -->
+
+## The API {#api}
+
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
+
+The kubelet acts as a client when connecting to the container runtime via gRPC.
+The runtime and image service endpoints have to be available in the container
+runtime, which can be configured separately within the kubelet by using the
+`--image-service-endpoint` and `--container-runtime-endpoint` [command line
+flags](/docs/reference/command-line-tools-reference/kubelet)
+
+For Kubernetes v{{< skew currentVersion >}}, the kubelet prefers to use CRI `v1`.
+If a container runtime does not support `v1` of the CRI, then the kubelet tries to
+negotiate any older supported version.
+The v{{< skew currentVersion >}} kubelet can also negotiate CRI `v1alpha2`, but
+this version is considered as deprecated.
+If the kubelet cannot negotiate a supported CRI version, the kubelet gives up
+and doesn't register as a node.
+
+## Upgrading
+
+When upgrading Kubernetes, then the kubelet tries to automatically select the
+latest CRI version on restart of the component. If that fails, then the fallback
+will take place as mentioned above. If a gRPC re-dial was required because the
+container runtime has been upgraded, then the container runtime must also
+support the initially selected version or the redial is expected to fail. This
+requires a restart of the kubelet.
+
+## {{% heading "whatsnext" %}}
+
+- Learn more about the CRI [protocol definition](https://github.com/kubernetes/cri-api/blob/c75ef5b/pkg/apis/runtime/v1/api.proto)
diff --git a/content/en/docs/concepts/architecture/garbage-collection.md b/content/en/docs/concepts/architecture/garbage-collection.md
index 7c70675fff..a6fa885bfc 100644
--- a/content/en/docs/concepts/architecture/garbage-collection.md
+++ b/content/en/docs/concepts/architecture/garbage-collection.md
@@ -13,7 +13,7 @@ allows the clean up of resources like the following:
   * [Objects without owner references](#owners-dependents)
   * [Unused containers and container images](#containers-images)
   * [Dynamically provisioned PersistentVolumes with a StorageClass reclaim policy of Delete](/docs/concepts/storage/persistent-volumes/#delete)
-  * [Stale or expired CertificateSigningRequests (CSRs)](/reference/access-authn-authz/certificate-signing-requests/#request-signing-process)
+  * [Stale or expired CertificateSigningRequests (CSRs)](/docs/reference/access-authn-authz/certificate-signing-requests/#request-signing-process)
   * {{<glossary_tooltip text="Nodes" term_id="node">}} deleted in the following scenarios:
     * On a cloud when the cluster uses a [cloud controller manager](/docs/concepts/architecture/cloud-controller/)
     * On-premises when the cluster uses an addon similar to a cloud controller
@@ -124,7 +124,8 @@ resource type.
 ### Container image lifecycle
 
 Kubernetes manages the lifecycle of all images through its *image manager*,
-which is part of the kubelet, with the cooperation of cadvisor. The kubelet
+which is part of the kubelet, with the cooperation of 
+{{< glossary_tooltip text="cadvisor" term_id="cadvisor" >}}. The kubelet
 considers the following disk usage limits when making garbage collection
 decisions:
 
@@ -136,7 +137,7 @@ collection, which deletes images in order based on the last time they were used,
 starting with the oldest first. The kubelet deletes images
 until disk usage reaches the `LowThresholdPercent` value.
 
-### Container image garbage collection {#container-image-garbage-collection}
+### Container garbage collection {#container-image-garbage-collection}
 
 The kubelet garbage collects unused containers based on the following variables,
 which you can define: 
@@ -151,11 +152,11 @@ which you can define:
 In addition to these variables, the kubelet garbage collects unidentified and
 deleted containers, typically starting with the oldest first. 
 
-`MaxPerPodContainer` and `MaxContainer` may potentially conflict with each other
+`MaxPerPodContainer` and `MaxContainers` may potentially conflict with each other
 in situations where retaining the maximum number of containers per Pod
 (`MaxPerPodContainer`) would go outside the allowable total of global dead
 containers (`MaxContainers`). In this situation, the kubelet adjusts
-`MaxPodPerContainer` to address the conflict. A worst-case scenario would be to
+`MaxPerPodContainer` to address the conflict. A worst-case scenario would be to
 downgrade `MaxPerPodContainer` to `1` and evict the oldest containers.
 Additionally, containers owned by pods that have been deleted are removed once
 they are older than `MinAge`.
@@ -179,4 +180,4 @@ configure garbage collection:
 
 * Learn more about [ownership of Kubernetes objects](/docs/concepts/overview/working-with-objects/owners-dependents/).
 * Learn more about Kubernetes [finalizers](/docs/concepts/overview/working-with-objects/finalizers/).
-* Learn about the [TTL controller](/docs/concepts/workloads/controllers/ttlafterfinished/) (beta) that cleans up finished Jobs.
\ No newline at end of file
+* Learn about the [TTL controller](/docs/concepts/workloads/controllers/ttlafterfinished/) (beta) that cleans up finished Jobs.
diff --git a/content/en/docs/concepts/architecture/nodes.md b/content/en/docs/concepts/architecture/nodes.md
index 1d4f6455b7..f57179df8e 100644
--- a/content/en/docs/concepts/architecture/nodes.md
+++ b/content/en/docs/concepts/architecture/nodes.md
@@ -33,9 +33,9 @@ There are two main ways to have Nodes added to the {{< glossary_tooltip text="AP
 1. The kubelet on a node self-registers to the control plane
 2. You (or another human user) manually add a Node object
 
-After you create a Node object, or the kubelet on a node self-registers, the
-control plane checks whether the new Node object is valid. For example, if you
-try to create a Node from the following JSON manifest:
+After you create a Node {{< glossary_tooltip text="object" term_id="object" >}},
+or the kubelet on a node self-registers, the control plane checks whether the new Node object is
+valid. For example, if you try to create a Node from the following JSON manifest:
 
 ```json
 {
@@ -72,7 +72,8 @@ The name of a Node object must be a valid
 The [name](/docs/concepts/overview/working-with-objects/names#names) identifies a Node. Two Nodes
 cannot have the same name at the same time. Kubernetes also assumes that a resource with the same
 name is the same object. In case of a Node, it is implicitly assumed that an instance using the
-same name will have the same state (e.g. network settings, root disk contents). This may lead to
+same name will have the same state (e.g. network settings, root disk contents)
+and attributes like node labels. This may lead to
 inconsistencies if an instance was modified without changing its name. If the Node needs to be
 replaced or updated significantly, the existing Node object needs to be removed from API server
 first and re-added after the update.
@@ -84,19 +85,38 @@ register itself with the API server.  This is the preferred pattern, used by mos
 
 For self-registration, the kubelet is started with the following options:
 
-  - `--kubeconfig` - Path to credentials to authenticate itself to the API server.
-  - `--cloud-provider` - How to talk to a {{< glossary_tooltip text="cloud provider" term_id="cloud-provider" >}} to read metadata about itself.
-  - `--register-node` - Automatically register with the API server.
-  - `--register-with-taints` - Register the node with the given list of {{< glossary_tooltip text="taints" term_id="taint" >}} (comma separated `<key>=<value>:<effect>`).
+- `--kubeconfig` - Path to credentials to authenticate itself to the API server.
+- `--cloud-provider` - How to talk to a {{< glossary_tooltip text="cloud provider" term_id="cloud-provider" >}}
+  to read metadata about itself.
+- `--register-node` - Automatically register with the API server.
+- `--register-with-taints` - Register the node with the given list of
+  {{< glossary_tooltip text="taints" term_id="taint" >}} (comma separated `<key>=<value>:<effect>`).
 
-    No-op if `register-node` is false.
-  - `--node-ip` - IP address of the node.
-  - `--node-labels` - {{< glossary_tooltip text="Labels" term_id="label" >}} to add when registering the node in the cluster (see label restrictions enforced by the [NodeRestriction admission plugin](/docs/reference/access-authn-authz/admission-controllers/#noderestriction)).
-  - `--node-status-update-frequency` - Specifies how often kubelet posts node status to master.
+  No-op if `register-node` is false.
+- `--node-ip` - IP address of the node.
+- `--node-labels` - {{< glossary_tooltip text="Labels" term_id="label" >}} to add when registering the node
+  in the cluster (see label restrictions enforced by the
+  [NodeRestriction admission plugin](/docs/reference/access-authn-authz/admission-controllers/#noderestriction)).
+- `--node-status-update-frequency` - Specifies how often kubelet posts its node status to the API server.
 
 When the [Node authorization mode](/docs/reference/access-authn-authz/node/) and
-[NodeRestriction admission plugin](/docs/reference/access-authn-authz/admission-controllers/#noderestriction) are enabled,
-kubelets are only authorized to create/modify their own Node resource.
+[NodeRestriction admission plugin](/docs/reference/access-authn-authz/admission-controllers/#noderestriction)
+are enabled, kubelets are only authorized to create/modify their own Node resource.
+
+{{< note >}}
+As mentioned in the [Node name uniqueness](#node-name-uniqueness) section,
+when Node configuration needs to be updated, it is a good practice to re-register
+the node with the API server. For example, if the kubelet being restarted with
+the new set of `--node-labels`, but the same Node name is used, the change will
+not take an effect, as labels are being set on the Node registration.
+
+Pods already scheduled on the Node may misbehave or cause issues if the Node
+configuration will be changed on kubelet restart. For example, already running
+Pod may be tainted against the new labels assigned to the Node, while other
+Pods, that are incompatible with that Pod will be scheduled based on this new
+label.  Node re-registration ensures all Pods will be drained and properly
+re-scheduled.
+{{< /note >}}
 
 ### Manual Node administration
 
@@ -152,8 +172,10 @@ Each section of the output is described below.
 
 The usage of these fields varies depending on your cloud provider or bare metal configuration.
 
-* HostName: The hostname as reported by the node's kernel. Can be overridden via the kubelet `--hostname-override` parameter.
-* ExternalIP: Typically the IP address of the node that is externally routable (available from outside the cluster).
+* HostName: The hostname as reported by the node's kernel. Can be overridden via the kubelet
+  `--hostname-override` parameter.
+* ExternalIP: Typically the IP address of the node that is externally routable (available from
+  outside the cluster).
 * InternalIP: Typically the IP address of the node that is routable only within the cluster.
 
 
@@ -273,7 +295,6 @@ and for updating their related Leases.
   updates to the Node's `.status`. If the Lease update fails, the kubelet retries,
   using exponential backoff that starts at 200 milliseconds and capped at 7 seconds.
 
-
 ## Node controller
 
 The node {{< glossary_tooltip text="controller" term_id="controller" >}} is a
@@ -290,16 +311,19 @@ controller deletes the node from its list of nodes.
 
 The third is monitoring the nodes' health. The node controller is
 responsible for:
-- In the case that a node becomes unreachable, updating the NodeReady condition
-  of within the Node's `.status`. In this case the node controller sets the
-  NodeReady condition to `ConditionUnknown`.
+
+- In the case that a node becomes unreachable, updating the `Ready` condition
+  in the Node's `.status` field. In this case the node controller sets the
+  `Ready` condition to `Unknown`.
 - If a node remains unreachable: triggering
   [API-initiated eviction](/docs/concepts/scheduling-eviction/api-eviction/)
   for all of the Pods on the unreachable node. By default, the node controller
-  waits 5 minutes between marking the node as `ConditionUnknown` and submitting
+  waits 5 minutes between marking the node as `Unknown` and submitting
   the first eviction request.
 
-The node controller checks the state of each node every `--node-monitor-period` seconds.
+By default, the node controller checks the state of each node every 5 seconds.
+This period can be configured using the `--node-monitor-period` flag on the
+`kube-controller-manager` component.
 
 ### Rate limits on eviction
 
@@ -309,8 +333,9 @@ from more than 1 node per 10 seconds.
 
 The node eviction behavior changes when a node in a given availability zone
 becomes unhealthy. The node controller checks what percentage of nodes in the zone
-are unhealthy (NodeReady condition is `ConditionUnknown` or `ConditionFalse`) at
+are unhealthy (the `Ready` condition is `Unknown` or `False`) at
 the same time:
+
 - If the fraction of unhealthy nodes is at least `--unhealthy-zone-threshold`
   (default 0.55), then the eviction rate is reduced.
 - If the cluster is small (i.e. has less than or equal to
@@ -319,7 +344,7 @@ the same time:
   (default 0.01) per second.
 
 The reason these policies are implemented per availability zone is because one
-availability zone might become partitioned from the master while the others remain
+availability zone might become partitioned from the control plane while the others remain
 connected. If your cluster does not span multiple cloud provider availability zones,
 then the eviction mechanism does not take per-zone unavailability into account.
 
@@ -361,7 +386,7 @@ If you want to explicitly reserve resources for non-Pod processes, see
 
 ## Node topology
 
-{{< feature-state state="alpha" for_k8s_version="v1.16" >}}
+{{< feature-state state="beta" for_k8s_version="v1.18" >}}
 
 If you have enabled the `TopologyManager`
 [feature gate](/docs/reference/command-line-tools-reference/feature-gates/), then
@@ -375,7 +400,9 @@ for more information.
 
 The kubelet attempts to detect node system shutdown and terminates pods running on the node.
 
-Kubelet ensures that pods follow the normal [pod termination process](/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination) during the node shutdown.
+Kubelet ensures that pods follow the normal
+[pod termination process](/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)
+during the node shutdown.
 
 The Graceful node shutdown feature depends on systemd since it takes advantage of
 [systemd inhibitor locks](https://www.freedesktop.org/wiki/Software/systemd/inhibit/) to
@@ -386,42 +413,190 @@ Graceful node shutdown is controlled with the `GracefulNodeShutdown`
 enabled by default in 1.21.
 
 Note that by default, both configuration options described below,
-`ShutdownGracePeriod` and `ShutdownGracePeriodCriticalPods` are set to zero,
-thus not activating Graceful node shutdown functionality.
-To activate the feature, the two kubelet config settings should be configured appropriately and set to non-zero values.
+`shutdownGracePeriod` and `shutdownGracePeriodCriticalPods` are set to zero,
+thus not activating the graceful node shutdown functionality.
+To activate the feature, the two kubelet config settings should be configured appropriately and
+set to non-zero values.
 
 During a graceful shutdown, kubelet terminates pods in two phases:
 
 1. Terminate regular pods running on the node.
-2. Terminate [critical pods](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical) running on the node.
+2. Terminate [critical pods](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical)
+   running on the node.
 
-Graceful node shutdown feature is configured with two [`KubeletConfiguration`](/docs/tasks/administer-cluster/kubelet-config-file/) options:
-* `ShutdownGracePeriod`:
-  * Specifies the total duration that the node should delay the shutdown by. This is the total grace period for pod termination for both regular and [critical pods](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical).
-* `ShutdownGracePeriodCriticalPods`:
-  * Specifies the duration used to terminate [critical pods](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical) during a node shutdown. This value should be less than `ShutdownGracePeriod`.
+Graceful node shutdown feature is configured with two
+[`KubeletConfiguration`](/docs/tasks/administer-cluster/kubelet-config-file/) options:
 
-For example, if `ShutdownGracePeriod=30s`, and
-`ShutdownGracePeriodCriticalPods=10s`, kubelet will delay the node shutdown by
+* `shutdownGracePeriod`:
+  * Specifies the total duration that the node should delay the shutdown by. This is the total
+    grace period for pod termination for both regular and
+    [critical pods](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical).
+* `shutdownGracePeriodCriticalPods`:
+  * Specifies the duration used to terminate
+    [critical pods](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical)
+    during a node shutdown. This value should be less than `shutdownGracePeriod`.
+
+For example, if `shutdownGracePeriod=30s`, and
+`shutdownGracePeriodCriticalPods=10s`, kubelet will delay the node shutdown by
 30 seconds. During the shutdown, the first 20 (30-10) seconds would be reserved
 for gracefully terminating normal pods, and the last 10 seconds would be
 reserved for terminating [critical pods](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical).
 
 {{< note >}}
-When pods were evicted during the graceful node shutdown, they are marked as failed.
-Running `kubectl get pods` shows the status of the the evicted pods as `Shutdown`.
+When pods were evicted during the graceful node shutdown, they are marked as shutdown.
+Running `kubectl get pods` shows the status of the the evicted pods as `Terminated`.
 And `kubectl describe pod` indicates that the pod was evicted because of node shutdown:
 
 ```
-Status:         Failed
-Reason:         Shutdown
-Message:        Node is shutting, evicting pods
+Reason:         Terminated
+Message:        Pod was terminated in response to imminent node shutdown.
 ```
 
-Failed pod objects will be preserved until explicitly deleted or [cleaned up by the GC](/docs/concepts/workloads/pods/pod-lifecycle/#pod-garbage-collection).
-This is a change of behavior compared to abrupt node termination.
 {{< /note >}}
 
+## Non Graceful node shutdown {#non-graceful-node-shutdown}
+
+{{< feature-state state="alpha" for_k8s_version="v1.24" >}}
+
+A node shutdown action may not be detected by kubelet's Node Shutdown Manager, 
+either because the command does not trigger the inhibitor locks mechanism used by 
+kubelet or because of a user error, i.e., the ShutdownGracePeriod and 
+ShutdownGracePeriodCriticalPods are not configured properly. Please refer to above 
+section [Graceful Node Shutdown](#graceful-node-shutdown) for more details.
+
+When a node is shutdown but not detected by kubelet's Node Shutdown Manager, the pods 
+that are part of a StatefulSet will be stuck in terminating status on 
+the shutdown node and cannot move to a new running node. This is because kubelet on 
+the shutdown node is not available to delete the pods so the StatefulSet cannot 
+create a new pod with the same name. If there are volumes used by the pods, the 
+VolumeAttachments will not be deleted from the original shutdown node so the volumes 
+used by these pods cannot be attached to a new running node. As a result, the 
+application running on the StatefulSet cannot function properly. If the original 
+shutdown node comes up, the pods will be deleted by kubelet and new pods will be 
+created on a different running node. If the original shutdown node does not come up,  
+these pods will be stuck in terminating status on the shutdown node forever.
+
+To mitigate the above situation, a  user can manually add the taint `node 
+kubernetes.io/out-of-service` with either `NoExecute` or `NoSchedule` effect to 
+a Node marking it out-of-service. 
+If the `NodeOutOfServiceVolumeDetach`[feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+is enabled on `kube-controller-manager`, and a Node is marked out-of-service with this taint, the
+pods on the node will be forcefully deleted if there are no matching tolerations on it and volume
+detach operations for the pods terminating on the node will happen immediately. This allows the
+Pods on the out-of-service node to recover quickly on a different node. 
+
+During a non-graceful shutdown, Pods are terminated in the two phases:
+
+1. Force delete the Pods that do not have matching `out-of-service` tolerations.
+2. Immediately perform detach volume operation for such pods. 
+
+{{< note >}}
+- Before adding the taint `node.kubernetes.io/out-of-service` , it should be verified
+  that the node is already in shutdown or power off state (not in the middle of
+  restarting).
+- The user is required to manually remove the out-of-service taint after the pods are
+  moved to a new node and the user has checked that the shutdown node has been
+  recovered since the user was the one who originally added the taint.
+{{< /note >}}
+
+### Pod Priority based graceful node shutdown {#pod-priority-graceful-node-shutdown}
+
+{{< feature-state state="alpha" for_k8s_version="v1.23" >}}
+
+To provide more flexibility during graceful node shutdown around the ordering
+of pods during shutdown, graceful node shutdown honors the PriorityClass for
+Pods, provided that you enabled this feature in your cluster. The feature
+allows cluster administers to explicitly define the ordering of pods
+during graceful node shutdown based on
+[priority classes](/docs/concepts/scheduling-eviction/pod-priority-preemption/#priorityclass).
+
+The [Graceful Node Shutdown](#graceful-node-shutdown) feature, as described
+above, shuts down pods in two phases, non-critical pods, followed by critical
+pods. If additional flexibility is needed to explicitly define the ordering of
+pods during shutdown in a more granular way, pod priority based graceful
+shutdown can be used.
+
+When graceful node shutdown honors pod priorities, this makes it possible to do
+graceful node shutdown in multiple phases, each phase shutting down a
+particular priority class of pods. The kubelet can be configured with the exact
+phases and shutdown time per phase.
+
+Assuming the following custom pod
+[priority classes](/docs/concepts/scheduling-eviction/pod-priority-preemption/#priorityclass)
+in a cluster,
+
+|Pod priority class name|Pod priority class value|
+|-------------------------|------------------------|
+|`custom-class-a`         | 100000                 |
+|`custom-class-b`         | 10000                  |
+|`custom-class-c`         | 1000                   |
+|`regular/unset`          | 0                      |
+
+Within the [kubelet configuration](/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
+the settings for `shutdownGracePeriodByPodPriority` could look like:
+
+|Pod priority class value|Shutdown period|
+|------------------------|---------------|
+| 100000                 |10 seconds     |
+| 10000                  |180 seconds    |
+| 1000                   |120 seconds    |
+| 0                      |60 seconds     |
+
+The corresponding kubelet config YAML configuration would be:
+
+```yaml
+shutdownGracePeriodByPodPriority:
+  - priority: 100000
+    shutdownGracePeriodSeconds: 10
+  - priority: 10000
+    shutdownGracePeriodSeconds: 180
+  - priority: 1000
+    shutdownGracePeriodSeconds: 120
+  - priority: 0
+    shutdownGracePeriodSeconds: 60
+```
+
+The above table implies that any pod with `priority` value >= 100000 will get
+just 10 seconds to stop, any pod with value >= 10000 and < 100000 will get 180
+seconds to stop, any pod with value >= 1000 and < 10000 will get 120 seconds to stop.
+Finally, all other pods will get 60 seconds to stop.
+
+One doesn't have to specify values corresponding to all of the classes. For
+example, you could instead use these settings:
+
+|Pod priority class value|Shutdown period|
+|------------------------|---------------|
+| 100000                 |300 seconds    |
+| 1000                   |120 seconds    |
+| 0                      |60 seconds     |
+
+
+In the above case, the pods with `custom-class-b` will go into the same bucket
+as `custom-class-c` for shutdown.
+
+If there are no pods in a particular range, then the kubelet does not wait
+for pods in that priority range. Instead, the kubelet immediately skips to the
+next priority class value range.
+
+If this feature is enabled and no configuration is provided, then no ordering
+action will be taken.
+
+Using this feature requires enabling the `GracefulNodeShutdownBasedOnPodPriority`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+, and setting `ShutdownGracePeriodByPodPriority` in the
+[kubelet config](/docs/reference/config-api/kubelet-config.v1beta1/)
+to the desired configuration containing the pod priority class values and
+their respective shutdown periods.
+
+{{< note >}}
+The ability to take Pod priority into account during graceful node shutdown was introduced
+as an Alpha feature in Kubernetes v1.23. In Kubernetes {{< skew currentVersion >}}
+the feature is Beta and is enabled by default.
+{{< /note >}}
+
+Metrics `graceful_shutdown_start_time_seconds` and `graceful_shutdown_end_time_seconds`
+are emitted under the kubelet subsystem to monitor node shutdowns.
+
 ## Swap memory management {#swap-memory}
 
 {{< feature-state state="alpha" for_k8s_version="v1.22" >}}
@@ -435,6 +610,11 @@ the kubelet, and the `--fail-swap-on` command line flag or `failSwapOn`
 [configuration setting](/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
 must be set to false.
 
+{{< warning >}}
+When the memory swap feature is turned on, Kubernetes data such as the content
+of Secret objects that were written to tmpfs now could be swapped to disk.
+{{< /warning >}}
+
 A user can also optionally configure `memorySwap.swapBehavior` in order to
 specify how a node will use swap memory. For example,
 
@@ -469,6 +649,7 @@ see [KEP-2400](https://github.com/kubernetes/enhancements/issues/2400) and its
 
 * Learn about the [components](/docs/concepts/overview/components/#node-components) that make up a node.
 * Read the [API definition for Node](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#node-v1-core).
-* Read the [Node](https://git.k8s.io/community/contributors/design-proposals/architecture/architecture.md#the-kubernetes-node)
+* Read the [Node](https://git.k8s.io/design-proposals-archive/architecture/architecture.md#the-kubernetes-node)
   section of the architecture design document.
 * Read about [taints and tolerations](/docs/concepts/scheduling-eviction/taint-and-toleration/).
+
diff --git a/content/en/docs/concepts/cluster-administration/_index.md b/content/en/docs/concepts/cluster-administration/_index.md
index 7d5aec5078..d5d6a273e2 100644
--- a/content/en/docs/concepts/cluster-administration/_index.md
+++ b/content/en/docs/concepts/cluster-administration/_index.md
@@ -11,31 +11,37 @@ no_list: true
 ---
 
 <!-- overview -->
+
 The cluster administration overview is for anyone creating or administering a Kubernetes cluster.
 It assumes some familiarity with core Kubernetes [concepts](/docs/concepts/).
 
-
 <!-- body -->
+
 ## Planning a cluster
 
-See the guides in [Setup](/docs/setup/) for examples of how to plan, set up, and configure Kubernetes clusters. The solutions listed in this article are called *distros*.
+See the guides in [Setup](/docs/setup/) for examples of how to plan, set up, and configure
+Kubernetes clusters. The solutions listed in this article are called *distros*.
 
-   {{< note  >}}
-   Not all distros are actively maintained. Choose distros which have been tested with a recent version of Kubernetes.
-   {{< /note >}}
+{{< note  >}}
+Not all distros are actively maintained. Choose distros which have been tested with a recent
+version of Kubernetes.
+{{< /note >}}
 
 Before choosing a guide, here are some considerations:
 
- - Do you want to try out Kubernetes on your computer, or do you want to build a high-availability, multi-node cluster? Choose distros best suited for your needs.
- - Will you be using **a hosted Kubernetes cluster**, such as [Google Kubernetes Engine](https://cloud.google.com/kubernetes-engine/), or **hosting your own cluster**?
- - Will your cluster be **on-premises**, or **in the cloud (IaaS)**? Kubernetes does not directly support hybrid clusters. Instead, you can set up multiple clusters.
- - **If you are configuring Kubernetes on-premises**, consider which [networking model](/docs/concepts/cluster-administration/networking/) fits best.
- - Will you be running Kubernetes on **"bare metal" hardware** or on **virtual machines (VMs)**?
- - Do you **want to run a cluster**, or do you expect to do **active development of Kubernetes project code**? If the
-   latter, choose an actively-developed distro. Some distros only use binary releases, but
-   offer a greater variety of choices.
- - Familiarize yourself with the [components](/docs/concepts/overview/components/) needed to run a cluster.
-
+- Do you want to try out Kubernetes on your computer, or do you want to build a high-availability,
+  multi-node cluster? Choose distros best suited for your needs.
+- Will you be using **a hosted Kubernetes cluster**, such as
+  [Google Kubernetes Engine](https://cloud.google.com/kubernetes-engine/), or **hosting your own cluster**?
+- Will your cluster be **on-premises**, or **in the cloud (IaaS)**? Kubernetes does not directly
+  support hybrid clusters. Instead, you can set up multiple clusters.
+- **If you are configuring Kubernetes on-premises**, consider which
+  [networking model](/docs/concepts/cluster-administration/networking/) fits best.
+- Will you be running Kubernetes on **"bare metal" hardware** or on **virtual machines (VMs)**?
+- Do you **want to run a cluster**, or do you expect to do **active development of Kubernetes project code**?
+  If the latter, choose an actively-developed distro. Some distros only use binary releases, but
+  offer a greater variety of choices.
+- Familiarize yourself with the [components](/docs/concepts/overview/components/) needed to run a cluster.
 
 ## Managing a cluster
 
@@ -45,29 +51,43 @@ Before choosing a guide, here are some considerations:
 
 ## Securing a cluster
 
-* [Generate Certificates](/docs/tasks/administer-cluster/certificates/) describes the steps to generate certificates using different tool chains.
+* [Generate Certificates](/docs/tasks/administer-cluster/certificates/) describes the steps to
+  generate certificates using different tool chains.
 
-* [Kubernetes Container Environment](/docs/concepts/containers/container-environment/) describes the environment for Kubelet managed containers on a Kubernetes node.
+* [Kubernetes Container Environment](/docs/concepts/containers/container-environment/) describes
+  the environment for Kubelet managed containers on a Kubernetes node.
 
-* [Controlling Access to the Kubernetes API](/docs/concepts/security/controlling-access) describes how Kubernetes implements access control for its own API.
+* [Controlling Access to the Kubernetes API](/docs/concepts/security/controlling-access) describes
+  how Kubernetes implements access control for its own API.
 
-* [Authenticating](/docs/reference/access-authn-authz/authentication/) explains authentication in Kubernetes, including the various authentication options.
+* [Authenticating](/docs/reference/access-authn-authz/authentication/) explains authentication in
+  Kubernetes, including the various authentication options.
 
-* [Authorization](/docs/reference/access-authn-authz/authorization/) is separate from authentication, and controls how HTTP calls are handled.
+* [Authorization](/docs/reference/access-authn-authz/authorization/) is separate from
+  authentication, and controls how HTTP calls are handled.
 
-* [Using Admission Controllers](/docs/reference/access-authn-authz/admission-controllers/) explains plug-ins which intercepts requests to the Kubernetes API server after authentication and authorization.
+* [Using Admission Controllers](/docs/reference/access-authn-authz/admission-controllers/)
+  explains plug-ins which intercepts requests to the Kubernetes API server after authentication
+  and authorization.
 
-* [Using Sysctls in a Kubernetes Cluster](/docs/tasks/administer-cluster/sysctl-cluster/) describes to an administrator how to use the `sysctl` command-line tool to set kernel parameters .
+* [Using Sysctls in a Kubernetes Cluster](/docs/tasks/administer-cluster/sysctl-cluster/)
+  describes to an administrator how to use the `sysctl` command-line tool to set kernel parameters
+.
 
-* [Auditing](/docs/tasks/debug-application-cluster/audit/) describes how to interact with Kubernetes' audit logs.
+* [Auditing](/docs/tasks/debug/debug-cluster/audit/) describes how to interact with Kubernetes'
+  audit logs.
 
 ### Securing the kubelet
-  * [Control Plane-Node communication](/docs/concepts/architecture/control-plane-node-communication/)
-  * [TLS bootstrapping](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/)
-  * [Kubelet authentication/authorization](/docs/reference/command-line-tools-reference/kubelet-authentication-authorization/)
+
+* [Control Plane-Node communication](/docs/concepts/architecture/control-plane-node-communication/)
+* [TLS bootstrapping](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/)
+* [Kubelet authentication/authorization](/docs/reference/access-authn-authz/kubelet-authn-authz/)
 
 ## Optional Cluster Services
 
-* [DNS Integration](/docs/concepts/services-networking/dns-pod-service/) describes how to resolve a DNS name directly to a Kubernetes service.
+* [DNS Integration](/docs/concepts/services-networking/dns-pod-service/) describes how to resolve
+  a DNS name directly to a Kubernetes service.
+
+* [Logging and Monitoring Cluster Activity](/docs/concepts/cluster-administration/logging/)
+  explains how logging in Kubernetes works and how to implement it.
 
-* [Logging and Monitoring Cluster Activity](/docs/concepts/cluster-administration/logging/) explains how logging in Kubernetes works and how to implement it.
diff --git a/content/en/docs/concepts/cluster-administration/addons.md b/content/en/docs/concepts/cluster-administration/addons.md
index 5ed93ad20b..5f7df077c9 100644
--- a/content/en/docs/concepts/cluster-administration/addons.md
+++ b/content/en/docs/concepts/cluster-administration/addons.md
@@ -18,19 +18,19 @@ This page lists some of the available add-ons and links to their respective inst
 * [ACI](https://www.github.com/noironetworks/aci-containers) provides integrated container networking and network security with Cisco ACI.
 * [Antrea](https://antrea.io/) operates at Layer 3/4 to provide networking and security services for Kubernetes, leveraging Open vSwitch as the networking data plane.
 * [Calico](https://docs.projectcalico.org/latest/introduction/) is a networking and network policy provider. Calico supports a flexible set of networking options so you can choose the most efficient option for your situation, including non-overlay and overlay networks, with or without BGP. Calico uses the same engine to enforce network policy for hosts, pods, and (if using Istio & Envoy) applications at the service mesh layer.
-* [Canal](https://github.com/tigera/canal/tree/master/k8s-install) unites Flannel and Calico, providing networking and network policy.
+* [Canal](https://projectcalico.docs.tigera.io/getting-started/kubernetes/flannel/flannel) unites Flannel and Calico, providing networking and network policy.
 * [Cilium](https://github.com/cilium/cilium) is a L3 network and network policy plugin that can enforce HTTP/API/L7 policies transparently. Both routing and overlay/encapsulation mode are supported, and it can work on top of other CNI plugins.
-* [CNI-Genie](https://github.com/Huawei-PaaS/CNI-Genie) enables Kubernetes to seamlessly connect to a choice of CNI plugins, such as Calico, Canal, Flannel, Romana, or Weave.
-* [Contiv](https://contiv.github.io) provides configurable networking (native L3 using BGP, overlay using vxlan, classic L2, and Cisco-SDN/ACI) for various use cases and a rich policy framework. Contiv project is fully [open sourced](https://github.com/contiv). The [installer](https://github.com/contiv/install) provides both kubeadm and non-kubeadm based installation options.
+* [CNI-Genie](https://github.com/cni-genie/CNI-Genie) enables Kubernetes to seamlessly connect to a choice of CNI plugins, such as Calico, Canal, Flannel, or Weave.
+* [Contiv](https://contivpp.io/) provides configurable networking (native L3 using BGP, overlay using vxlan, classic L2, and Cisco-SDN/ACI) for various use cases and a rich policy framework. Contiv project is fully [open sourced](https://github.com/contiv). The [installer](https://github.com/contiv/install) provides both kubeadm and non-kubeadm based installation options.
 * [Contrail](https://www.juniper.net/us/en/products-services/sdn/contrail/contrail-networking/), based on [Tungsten Fabric](https://tungsten.io), is an open source, multi-cloud network virtualization and policy management platform. Contrail and Tungsten Fabric are integrated with orchestration systems such as Kubernetes, OpenShift, OpenStack and Mesos, and provide isolation modes for virtual machines, containers/pods and bare metal workloads.
 * [Flannel](https://github.com/flannel-io/flannel#deploying-flannel-manually) is an overlay network provider that can be used with Kubernetes.
 * [Knitter](https://github.com/ZTE/Knitter/) is a plugin to support multiple network interfaces in a Kubernetes pod.
-* [Multus](https://github.com/Intel-Corp/multus-cni) is a Multi plugin for multiple network support in Kubernetes to support all CNI plugins (e.g. Calico, Cilium, Contiv, Flannel), in addition to SRIOV, DPDK, OVS-DPDK and VPP based workloads in Kubernetes.
+* [Multus](https://github.com/k8snetworkplumbingwg/multus-cni) is a Multi plugin for multiple network support in Kubernetes to support all CNI plugins (e.g. Calico, Cilium, Contiv, Flannel), in addition to SRIOV, DPDK, OVS-DPDK and VPP based workloads in Kubernetes.
 * [OVN-Kubernetes](https://github.com/ovn-org/ovn-kubernetes/) is a networking provider for Kubernetes based on [OVN (Open Virtual Network)](https://github.com/ovn-org/ovn/), a virtual networking implementation that came out of the Open vSwitch (OVS) project. OVN-Kubernetes provides an overlay based networking implementation for Kubernetes, including an OVS based implementation of load balancing and network policy.
-* [OVN4NFV-K8S-Plugin](https://github.com/opnfv/ovn4nfv-k8s-plugin) is OVN based CNI controller plugin to provide cloud native based Service function chaining(SFC), Multiple OVN overlay networking, dynamic subnet creation, dynamic creation of virtual networks, VLAN Provider network, Direct provider network and pluggable with other Multi-network plugins, ideal for edge based cloud native workloads in Multi-cluster networking
-* [NSX-T](https://docs.vmware.com/en/VMware-NSX-T/2.0/nsxt_20_ncp_kubernetes.pdf) Container Plug-in (NCP) provides integration between VMware NSX-T and container orchestrators such as Kubernetes, as well as integration between NSX-T and container-based CaaS/PaaS platforms such as Pivotal Container Service (PKS) and OpenShift.
+* [OVN4NFV-K8S-Plugin](https://github.com/opnfv/ovn4nfv-k8s-plugin) is OVN based CNI controller plugin to provide cloud native based Service function chaining(SFC), Multiple OVN overlay networking, dynamic subnet creation, dynamic creation of virtual networks, VLAN Provider network, Direct provider network and pluggable with other Multi-network plugins, ideal for edge based cloud native workloads in Multi-cluster networking.
+* [NSX-T](https://docs.vmware.com/en/VMware-NSX-T-Data-Center/index.html) Container Plug-in (NCP) provides integration between VMware NSX-T and container orchestrators such as Kubernetes, as well as integration between NSX-T and container-based CaaS/PaaS platforms such as Pivotal Container Service (PKS) and OpenShift.
 * [Nuage](https://github.com/nuagenetworks/nuage-kubernetes/blob/v5.1.1-1/docs/kubernetes-1-installation.rst) is an SDN platform that provides policy-based networking between Kubernetes Pods and non-Kubernetes environments with visibility and security monitoring.
-* [Romana](https://romana.io) is a Layer 3 networking solution for pod networks that also supports the [NetworkPolicy API](/docs/concepts/services-networking/network-policies/). Kubeadm add-on installation details available [here](https://github.com/romana/romana/tree/master/containerize).
+* [Romana](https://github.com/romana) is a Layer 3 networking solution for pod networks that also supports the [NetworkPolicy](/docs/concepts/services-networking/network-policies/) API.
 * [Weave Net](https://www.weave.works/docs/net/latest/kubernetes/kube-addon/) provides networking and network policy, will carry on working on both sides of a network partition, and does not require an external database.
 
 ## Service Discovery
@@ -45,6 +45,11 @@ This page lists some of the available add-ons and links to their respective inst
 ## Infrastructure
 
 * [KubeVirt](https://kubevirt.io/user-guide/#/installation/installation) is an add-on to run virtual machines on Kubernetes. Usually run on bare-metal clusters.
+* The
+  [node problem detector](https://github.com/kubernetes/node-problem-detector)
+  runs on Linux nodes and reports system issues as either
+  [Events](/docs/reference/kubernetes-api/cluster-resources/event-v1/) or
+  [Node conditions](/docs/concepts/architecture/nodes/#condition).
 
 ## Legacy Add-ons
 
diff --git a/content/en/docs/concepts/cluster-administration/flow-control.md b/content/en/docs/concepts/cluster-administration/flow-control.md
index 46f0a1eadc..ccf1eb5887 100644
--- a/content/en/docs/concepts/cluster-administration/flow-control.md
+++ b/content/en/docs/concepts/cluster-administration/flow-control.md
@@ -26,6 +26,10 @@ fair queuing technique so that, for example, a poorly-behaved
 {{< glossary_tooltip text="controller" term_id="controller" >}} need not
 starve others (even at the same priority level).
 
+This feature is designed to work well with standard controllers, which
+use informers and react to failures of API requests with exponential
+back-off, and other clients that also work this way.
+
 {{< caution >}}
 Requests classified as "long-running" — primarily watches — are not
 subject to the API Priority and Fairness filter. This is also true for
@@ -38,21 +42,21 @@ Fairness feature enabled.
 ## Enabling/Disabling API Priority and Fairness
 
 The API Priority and Fairness feature is controlled by a feature gate
-and is enabled by default.  See
-[Feature Gates](/docs/reference/command-line-tools-reference/feature-gates/)
+and is enabled by default.  See [Feature
+Gates](/docs/reference/command-line-tools-reference/feature-gates/)
 for a general explanation of feature gates and how to enable and
 disable them.  The name of the feature gate for APF is
 "APIPriorityAndFairness".  This feature also involves an {{<
 glossary_tooltip term_id="api-group" text="API Group" >}} with: (a) a
-`v1alpha1` version, disabled by default, and (b) a `v1beta1`
-version,  enabled by default.  You can disable the feature
-gate and API group v1beta1 version by adding the following
+`v1alpha1` version, disabled by default, and (b) `v1beta1` and
+`v1beta2` versions, enabled by default.  You can disable the feature
+gate and API group beta versions by adding the following
 command-line flags to your `kube-apiserver` invocation:
 
 ```shell
 kube-apiserver \
 --feature-gates=APIPriorityAndFairness=false \
---runtime-config=flowcontrol.apiserver.k8s.io/v1beta1=false \
+--runtime-config=flowcontrol.apiserver.k8s.io/v1beta1=false,flowcontrol.apiserver.k8s.io/v1beta2=false \
  # …and other flags as usual
 ```
 
@@ -102,6 +106,8 @@ name of the matching FlowSchema plus a _flow distinguisher_ — which
 is either the requesting user, the target resource's namespace, or nothing — and the
 system attempts to give approximately equal weight to requests in different
 flows of the same priority level.
+To enable distinct handling of distinct instances, controllers that have
+many instances should authenticate with distinct usernames
 
 After classifying a request into a flow, the API Priority and Fairness
 feature then may assign the request to a queue.  This assignment uses
@@ -121,86 +127,13 @@ any of the limitations imposed by this feature. These exemptions prevent an
 improperly-configured flow control configuration from totally disabling an API
 server.
 
-## Defaults
-
-The Priority and Fairness feature ships with a suggested configuration that
-should suffice for experimentation; if your cluster is likely to
-experience heavy load then you should consider what configuration will work
-best. The suggested configuration groups requests into five priority
-classes:
-
-* The `system` priority level is for requests from the `system:nodes` group,
-  i.e. Kubelets, which must be able to contact the API server in order for
-  workloads to be able to schedule on them.
-
-* The `leader-election` priority level is for leader election requests from
-  built-in controllers (in particular, requests for `endpoints`, `configmaps`,
-  or `leases` coming from the `system:kube-controller-manager` or
-  `system:kube-scheduler` users and service accounts in the `kube-system`
-  namespace). These are important to isolate from other traffic because failures
-  in leader election cause their controllers to fail and restart, which in turn
-  causes more expensive traffic as the new controllers sync their informers.
-
-* The `workload-high` priority level is for other requests from built-in
-  controllers.
-
-* The `workload-low` priority level is for requests from any other service
-  account, which will typically include all requests from controllers running in
-  Pods.
-
-* The `global-default` priority level handles all other traffic, e.g.
-  interactive `kubectl` commands run by nonprivileged users.
-
-Additionally, there are two PriorityLevelConfigurations and two FlowSchemas that
-are built in and may not be overwritten:
-
-* The special `exempt` priority level is used for requests that are not subject
-  to flow control at all: they will always be dispatched immediately. The
-  special `exempt` FlowSchema classifies all requests from the `system:masters`
-  group into this priority level. You may define other FlowSchemas that direct
-  other requests to this priority level, if appropriate.
-
-* The special `catch-all` priority level is used in combination with the special
-  `catch-all` FlowSchema to make sure that every request gets some kind of
-  classification. Typically you should not rely on this catch-all configuration,
-  and should create your own catch-all FlowSchema and PriorityLevelConfiguration
-  (or use the `global-default` configuration that is installed by default) as
-  appropriate. To help catch configuration errors that miss classifying some
-  requests, the mandatory `catch-all` priority level only allows one concurrency
-  share and does not queue requests, making it relatively likely that traffic
-  that only matches the `catch-all` FlowSchema will be rejected with an HTTP 429
-  error.
-
-## Health check concurrency exemption
-
-The suggested configuration gives no special treatment to the health
-check requests on kube-apiservers from their local kubelets --- which
-tend to use the secured port but supply no credentials.  With the
-suggested config, these requests get assigned to the `global-default`
-FlowSchema and the corresponding `global-default` priority level,
-where other traffic can crowd them out.
-
-If you add the following additional FlowSchema, this exempts those
-requests from rate limiting.
-
-{{< caution >}}
-Making this change also allows any hostile party to then send
-health-check requests that match this FlowSchema, at any volume they
-like.  If you have a web traffic filter or similar external security
-mechanism to protect your cluster's API server from general internet
-traffic, you can configure rules to block any health check requests
-that originate from outside your cluster.
-{{< /caution >}}
-
-{{< codenew file="priority-and-fairness/health-for-strangers.yaml" >}}
-
 ## Resources
 
 The flow control API involves two kinds of resources.
-[PriorityLevelConfigurations](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io)
+[PriorityLevelConfigurations](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io)
 define the available isolation classes, the share of the available concurrency
 budget that each can handle, and allow for fine-tuning queuing behavior.
-[FlowSchemas](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#flowschema-v1beta1-flowcontrol-apiserver-k8s-io)
+[FlowSchemas](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#flowschema-v1beta2-flowcontrol-apiserver-k8s-io)
 are used to classify individual inbound requests, matching each to a
 single PriorityLevelConfiguration.  There is also a `v1alpha1` version
 of the same API group, and it has the same Kinds with the same syntax and
@@ -241,7 +174,7 @@ to balance progress between request flows.
 
 The queuing configuration allows tuning the fair queuing algorithm for a
 priority level. Details of the algorithm can be read in the
-[enhancement proposal](#whats-next), but in short:
+[enhancement proposal](https://github.com/kubernetes/enhancements/tree/master/keps/sig-api-machinery/1040-priority-and-fairness), but in short:
 
 * Increasing `queues` reduces the rate of collisions between different flows, at
   the cost of increased memory usage. A value of 1 here effectively disables the
@@ -323,6 +256,153 @@ omitted entirely), in which case all requests matched by this FlowSchema will be
 considered part of a single flow. The correct choice for a given FlowSchema
 depends on the resource and your particular environment.
 
+## Defaults
+
+Each kube-apiserver maintains two sorts of APF configuration objects:
+mandatory and suggested.
+
+### Mandatory Configuration Objects
+
+The four mandatory configuration objects reflect fixed built-in
+guardrail behavior.  This is behavior that the servers have before
+those objects exist, and when those objects exist their specs reflect
+this behavior.  The four mandatory objects are as follows.
+
+* The mandatory `exempt` priority level is used for requests that are
+  not subject to flow control at all: they will always be dispatched
+  immediately. The mandatory `exempt` FlowSchema classifies all
+  requests from the `system:masters` group into this priority
+  level. You may define other FlowSchemas that direct other requests
+  to this priority level, if appropriate.
+
+* The mandatory `catch-all` priority level is used in combination with
+  the mandatory `catch-all` FlowSchema to make sure that every request
+  gets some kind of classification. Typically you should not rely on
+  this catch-all configuration, and should create your own catch-all
+  FlowSchema and PriorityLevelConfiguration (or use the suggested
+  `global-default` priority level that is installed by default) as
+  appropriate. Because it is not expected to be used normally, the
+  mandatory `catch-all` priority level has a very small concurrency
+  share and does not queue requests.
+
+### Suggested Configuration Objects
+
+The suggested FlowSchemas and PriorityLevelConfigurations constitute a
+reasonable default configuration.  You can modify these and/or create
+additional configuration objects if you want.  If your cluster is
+likely to experience heavy load then you should consider what
+configuration will work best.
+
+The suggested configuration groups requests into six priority levels:
+
+* The `node-high` priority level is for health updates from nodes.
+
+* The `system` priority level is for non-health requests from the
+  `system:nodes` group, i.e. Kubelets, which must be able to contact
+  the API server in order for workloads to be able to schedule on
+  them.
+
+* The `leader-election` priority level is for leader election requests from
+  built-in controllers (in particular, requests for `endpoints`, `configmaps`,
+  or `leases` coming from the `system:kube-controller-manager` or
+  `system:kube-scheduler` users and service accounts in the `kube-system`
+  namespace). These are important to isolate from other traffic because failures
+  in leader election cause their controllers to fail and restart, which in turn
+  causes more expensive traffic as the new controllers sync their informers.
+
+* The `workload-high` priority level is for other requests from built-in
+  controllers.
+
+* The `workload-low` priority level is for requests from any other service
+  account, which will typically include all requests from controllers running in
+  Pods.
+
+* The `global-default` priority level handles all other traffic, e.g.
+  interactive `kubectl` commands run by nonprivileged users.
+
+The suggested FlowSchemas serve to steer requests into the above
+priority levels, and are not enumerated here.
+
+### Maintenance of the Mandatory and Suggested Configuration Objects
+
+Each `kube-apiserver` independently maintains the mandatory and
+suggested configuration objects, using initial and periodic behavior.
+Thus, in a situation with a mixture of servers of different versions
+there may be thrashing as long as different servers have different
+opinions of the proper content of these objects.
+
+Each `kube-apiserver` makes an initial maintenance pass over the
+mandatory and suggested configuration objects, and after that does
+periodic maintenance (once per minute) of those objects.
+
+For the mandatory configuration objects, maintenance consists of
+ensuring that the object exists and, if it does, has the proper spec.
+The server refuses to allow a creation or update with a spec that is
+inconsistent with the server's guardrail behavior.
+
+Maintenance of suggested configuration objects is designed to allow
+their specs to be overridden.  Deletion, on the other hand, is not
+respected: maintenance will restore the object.  If you do not want a
+suggested configuration object then you need to keep it around but set
+its spec to have minimal consequences.  Maintenance of suggested
+objects is also designed to support automatic migration when a new
+version of the `kube-apiserver` is rolled out, albeit potentially with
+thrashing while there is a mixed population of servers.
+
+Maintenance of a suggested configuration object consists of creating
+it --- with the server's suggested spec --- if the object does not
+exist.  OTOH, if the object already exists, maintenance behavior
+depends on whether the `kube-apiservers` or the users control the
+object.  In the former case, the server ensures that the object's spec
+is what the server suggests; in the latter case, the spec is left
+alone.
+
+The question of who controls the object is answered by first looking
+for an annotation with key `apf.kubernetes.io/autoupdate-spec`.  If
+there is such an annotation and its value is `true` then the
+kube-apiservers control the object.  If there is such an annotation
+and its value is `false` then the users control the object.  If
+neither of those condtions holds then the `metadata.generation` of the
+object is consulted.  If that is 1 then the kube-apiservers control
+the object.  Otherwise the users control the object.  These rules were
+introduced in release 1.22 and their consideration of
+`metadata.generation` is for the sake of migration from the simpler
+earlier behavior.  Users who wish to control a suggested configuration
+object should set its `apf.kubernetes.io/autoupdate-spec` annotation
+to `false`.
+
+Maintenance of a mandatory or suggested configuration object also
+includes ensuring that it has an `apf.kubernetes.io/autoupdate-spec`
+annotation that accurately reflects whether the kube-apiservers
+control the object.
+
+Maintenance also includes deleting objects that are neither mandatory
+nor suggested but are annotated
+`apf.kubernetes.io/autoupdate-spec=true`.
+
+## Health check concurrency exemption
+
+The suggested configuration gives no special treatment to the health
+check requests on kube-apiservers from their local kubelets --- which
+tend to use the secured port but supply no credentials.  With the
+suggested config, these requests get assigned to the `global-default`
+FlowSchema and the corresponding `global-default` priority level,
+where other traffic can crowd them out.
+
+If you add the following additional FlowSchema, this exempts those
+requests from rate limiting.
+
+{{< caution >}}
+Making this change also allows any hostile party to then send
+health-check requests that match this FlowSchema, at any volume they
+like.  If you have a web traffic filter or similar external security
+mechanism to protect your cluster's API server from general internet
+traffic, you can configure rules to block any health check requests
+that originate from outside your cluster.
+{{< /caution >}}
+
+{{< codenew file="priority-and-fairness/health-for-strangers.yaml" >}}
+
 ## Diagnostics
 
 Every HTTP response from an API server with the priority and fairness feature
@@ -391,11 +471,15 @@ poorly-behaved workloads that may be harming system health.
   requests, broken down by the labels `phase` (which takes on the
   values `waiting` and `executing`) and `request_kind` (which takes on
   the values `mutating` and `readOnly`).  The observations are made
-  periodically at a high rate.
+  periodically at a high rate.  Each observed value is a ratio,
+  between 0 and 1, of a number of requests divided by the
+  corresponding limit on the number of requests (queue length limit
+  for waiting and concurrency limit for executing).
 
 * `apiserver_flowcontrol_read_vs_write_request_count_watermarks` is a
   histogram vector of high or low water marks of the number of
-  requests broken down by the labels `phase` (which takes on the
+  requests (divided by the corresponding limit to get a ratio in the
+  range 0 to 1) broken down by the labels `phase` (which takes on the
   values `waiting` and `executing`) and `request_kind` (which takes on
   the values `mutating` and `readOnly`); the label `mark` takes on
   values `high` and `low`.  The water marks are accumulated over
@@ -422,11 +506,15 @@ poorly-behaved workloads that may be harming system health.
   values `waiting` and `executing`) and `priority_level`.  Each
   histogram gets observations taken periodically, up through the last
   activity of the relevant sort.  The observations are made at a high
-  rate.
+  rate.  Each observed value is a ratio, between 0 and 1, of a number
+  of requests divided by the corresponding limit on the number of
+  requests (queue length limit for waiting and concurrency limit for
+  executing).
 
 * `apiserver_flowcontrol_priority_level_request_count_watermarks` is a
   histogram vector of high or low water marks of the number of
-  requests broken down by the labels `phase` (which takes on the
+  requests (divided by the corresponding limit to get a ratio in the
+  range 0 to 1) broken down by the labels `phase` (which takes on the
   values `waiting` and `executing`) and `priority_level`; the label
   `mark` takes on values `high` and `low`.  The water marks are
   accumulated over windows bounded by the times when an observation
@@ -434,6 +522,31 @@ poorly-behaved workloads that may be harming system health.
   `apiserver_flowcontrol_priority_level_request_count_samples`.  These
   water marks show the range of values that occurred between samples.
 
+* `apiserver_flowcontrol_priority_level_seat_count_samples` is a
+  histogram vector of observations of the utilization of a priority
+  level's concurrency limit, broken down by `priority_level`.  This
+  utilization is the fraction (number of seats occupied) /
+  (concurrency limit).  This metric considers all stages of execution
+  (both normal and the extra delay at the end of a write to cover for
+  the corresponding notification work) of all requests except WATCHes;
+  for those it considers only the initial stage that delivers
+  notifications of pre-existing objects.  Each histogram in the vector
+  is also labeled with `phase: executing` (there is no seat limit for
+  the waiting phase).  Each histogram gets observations taken
+  periodically, up through the last activity of the relevant sort.
+  The observations
+  are made at a high rate.  
+
+* `apiserver_flowcontrol_priority_level_seat_count_watermarks` is a
+  histogram vector of high or low water marks of the utilization of a
+  priority level's concurrency limit, broken down by `priority_level`
+  and `mark` (which takes on values `high` and `low`).  Each histogram
+  in the vector is also labeled with `phase: executing` (there is no
+  seat limit for the waiting phase).  The water marks are accumulated
+  over windows bounded by the times when an observation was added to
+  `apiserver_flowcontrol_priority_level_seat_count_samples`.  These
+  water marks show the range of values that occurred between samples.
+
 * `apiserver_flowcontrol_request_queue_length_after_enqueue` is a
   histogram vector of queue lengths for the queues, broken down by
   the labels `priority_level` and `flow_schema`, as sampled by the
@@ -476,6 +589,22 @@ poorly-behaved workloads that may be harming system health.
   and `priority_level` (indicating the one to which the request was
   assigned).
 
+* `apiserver_flowcontrol_watch_count_samples` is a histogram vector of
+  the number of active WATCH requests relevant to a given write,
+  broken down by `flow_schema` and `priority_level`.
+
+* `apiserver_flowcontrol_work_estimated_seats` is a histogram vector
+  of the number of estimated seats (maximum of initial and final stage
+  of execution) associated with requests, broken down by `flow_schema`
+  and `priority_level`.
+
+* `apiserver_flowcontrol_request_dispatch_no_accommodation_total` is a
+  counter vec of the number of events that in principle could have led
+  to a request being dispatched but did not, due to lack of available
+  concurrency, broken down by `flow_schema` and `priority_level`.  The
+  relevant sorts of events are arrival of a request and completion of
+  a request.
+
 ### Debug endpoints
 
 When you enable the API Priority and Fairness feature, the `kube-apiserver`
diff --git a/content/en/docs/concepts/cluster-administration/logging.md b/content/en/docs/concepts/cluster-administration/logging.md
index 1bf057f23e..4916548a73 100644
--- a/content/en/docs/concepts/cluster-administration/logging.md
+++ b/content/en/docs/concepts/cluster-administration/logging.md
@@ -12,7 +12,9 @@ weight: 60
 Application logs can help you understand what is happening inside your application. The logs are particularly useful for debugging problems and monitoring cluster activity. Most modern applications have some kind of logging mechanism. Likewise, container engines are designed to support logging. The easiest and most adopted logging method for containerized applications is writing to standard output and standard error streams.
 
 However, the native functionality provided by a container engine or runtime is usually not enough for a complete logging solution.
-For example, you may want access your application's logs if a container crashes; a pod gets evicted; or a node dies.
+
+For example, you may want to access your application's logs if a container crashes, a pod gets evicted, or a node dies.
+
 In a cluster, logs should have a separate storage and lifecycle independent of nodes, pods, or containers. This concept is called _cluster-level logging_.
 
 <!-- body -->
@@ -55,7 +57,15 @@ The output is:
 ...
 ```
 
-You can use `kubectl logs --previous` to retrieve logs from a previous instantiation of a container. If your pod has multiple containers, specify which container's logs you want to access by appending a container name to the command. See the [`kubectl logs` documentation](/docs/reference/generated/kubectl/kubectl-commands#logs) for more details.
+You can use `kubectl logs --previous` to retrieve logs from a previous instantiation of a container.
+If your pod has multiple containers, specify which container's logs you want to access by
+appending a container name to the command, with a `-c` flag, like so:
+
+```console
+kubectl logs counter -c count
+```
+
+See the [`kubectl logs` documentation](/docs/reference/generated/kubectl/kubectl-commands#logs) for more details.
 
 ## Logging at the node level
 
@@ -141,7 +151,7 @@ as a `DaemonSet`.
 
 Node-level logging creates only one agent per node and doesn't require any changes to the applications running on the node.
 
-Containers write stdout and stderr, but with no agreed format. A node-level agent collects these logs and forwards them for aggregation.
+Containers write to stdout and stderr, but with no agreed format. A node-level agent collects these logs and forwards them for aggregation.
 
 ### Using a sidecar container with the logging agent {#sidecar-container-with-logging-agent}
 
diff --git a/content/en/docs/concepts/cluster-administration/manage-deployment.md b/content/en/docs/concepts/cluster-administration/manage-deployment.md
index 4d98cf820c..c90715da09 100644
--- a/content/en/docs/concepts/cluster-administration/manage-deployment.md
+++ b/content/en/docs/concepts/cluster-administration/manage-deployment.md
@@ -154,7 +154,7 @@ deployment.apps/my-deployment created
 persistentvolumeclaim/my-pvc created
 ```
 
-If you're interested in learning more about `kubectl`, go ahead and read [kubectl Overview](/docs/reference/kubectl/overview/).
+If you're interested in learning more about `kubectl`, go ahead and read [Command line tool (kubectl)](/docs/reference/kubectl/).
 
 ## Using labels effectively
 
@@ -461,7 +461,7 @@ That's it! The Deployment will declaratively update the deployed nginx applicati
 ## {{% heading "whatsnext" %}}
 
 
-- Learn about [how to use `kubectl` for application introspection and debugging](/docs/tasks/debug-application-cluster/debug-application-introspection/).
+- Learn about [how to use `kubectl` for application introspection and debugging](/docs/tasks/debug/debug-application/debug-running-pod/).
 - See [Configuration Best Practices and Tips](/docs/concepts/configuration/overview/).
 
 
diff --git a/content/en/docs/concepts/cluster-administration/networking.md b/content/en/docs/concepts/cluster-administration/networking.md
index c517b13175..b780ef15ca 100644
--- a/content/en/docs/concepts/cluster-administration/networking.md
+++ b/content/en/docs/concepts/cluster-administration/networking.md
@@ -30,46 +30,7 @@ insert dynamic port numbers into configuration blocks, services have to know
 how to find each other, etc.  Rather than deal with this, Kubernetes takes a
 different approach.
 
-## The Kubernetes network model
-
-Every `Pod` gets its own IP address. This means you do not need to explicitly
-create links between `Pods` and you almost never need to deal with mapping
-container ports to host ports.  This creates a clean, backwards-compatible
-model where `Pods` can be treated much like VMs or physical hosts from the
-perspectives of port allocation, naming, service discovery, load balancing,
-application configuration, and migration.
-
-Kubernetes imposes the following fundamental requirements on any networking
-implementation (barring any intentional network segmentation policies):
-
-   * pods on a node can communicate with all pods on all nodes without NAT
-   * agents on a node (e.g. system daemons, kubelet) can communicate with all
-     pods on that node
-
-Note: For those platforms that support `Pods` running in the host network (e.g.
-Linux):
-
-   * pods in the host network of a node can communicate with all pods on all
-     nodes without NAT
-
-This model is not only less complex overall, but it is principally compatible
-with the desire for Kubernetes to enable low-friction porting of apps from VMs
-to containers.  If your job previously ran in a VM, your VM had an IP and could
-talk to other VMs in your project.  This is the same basic model.
-
-Kubernetes IP addresses exist at the `Pod` scope - containers within a `Pod`
-share their network namespaces - including their IP address and MAC address.
-This means that containers within a `Pod` can all reach each other's ports on
-`localhost`. This also means that containers within a `Pod` must coordinate port
-usage, but this is no different from processes in a VM.  This is called the
-"IP-per-pod" model.
-
-How this is implemented is a detail of the particular container runtime in use.
-
-It is possible to request ports on the `Node` itself which forward to your `Pod`
-(called host ports), but this is a very niche operation. How that forwarding is
-implemented is also a detail of the container runtime. The `Pod` itself is
-blind to the existence or non-existence of host ports.
+To learn about the Kubernetes networking model, see [here](/docs/concepts/services-networking/).
 
 ## How to implement the Kubernetes networking model
 
@@ -91,18 +52,6 @@ imply any preferential status.
 Project [Antrea](https://github.com/vmware-tanzu/antrea) is an opensource Kubernetes networking solution intended to be Kubernetes native. It leverages Open vSwitch as the networking data plane. Open vSwitch is a high-performance programmable virtual switch that supports both Linux and Windows. Open vSwitch enables Antrea to implement Kubernetes Network Policies in a high-performance and efficient manner.
 Thanks to the "programmable" characteristic of Open vSwitch, Antrea is able to implement an extensive set of networking and security features and services on top of Open vSwitch.
 
-### AOS from Apstra
-
-[AOS](https://www.apstra.com/products/aos/) is an Intent-Based Networking system that creates and manages complex datacenter environments from a simple integrated platform.  AOS leverages a highly scalable distributed design to eliminate network outages while minimizing costs.
-
-The AOS Reference Design currently supports Layer-3 connected hosts that eliminate legacy Layer-2 switching problems.  These Layer-3 hosts can be Linux servers (Debian, Ubuntu, CentOS) that create BGP neighbor relationships directly with the top of rack switches (TORs).  AOS automates the routing adjacencies and then provides fine grained control over the route health injections (RHI) that are common in a Kubernetes deployment.
-
-AOS has a rich set of REST API endpoints that enable Kubernetes to quickly change the network policy based on application requirements.  Further enhancements will integrate the AOS Graph model used for the network design with the workload provisioning, enabling an end to end management system for both private and public clouds.
-
-AOS supports the use of common vendor equipment from manufacturers including Cisco, Arista, Dell, Mellanox, HPE, and a large number of white-box systems and open network operating systems like Microsoft SONiC, Dell OPX, and Cumulus Linux.
-
-Details on how the AOS system works can be accessed here: https://www.apstra.com/products/how-it-works/
-
 ### AWS VPC CNI for Kubernetes
 
 The [AWS VPC CNI](https://github.com/aws/amazon-vpc-cni-k8s) offers integrated AWS Virtual Private Cloud (VPC) networking for Kubernetes clusters. This CNI plugin offers high throughput and availability, low latency, and minimal network jitter. Additionally, users can apply existing AWS VPC networking and security best practices for building Kubernetes clusters. This includes the ability to use VPC flow logs, VPC routing policies, and security groups for network traffic isolation.
@@ -116,18 +65,9 @@ Additionally, the CNI can be run alongside [Calico for network policy enforcemen
 
 Azure CNI is available natively in the [Azure Kubernetes Service (AKS)](https://docs.microsoft.com/en-us/azure/aks/configure-azure-cni).
 
-
-### Big Cloud Fabric from Big Switch Networks
-
-[Big Cloud Fabric](https://www.bigswitch.com/container-network-automation) is a cloud native networking architecture, designed to run Kubernetes in private cloud/on-premises environments. Using unified physical & virtual SDN, Big Cloud Fabric tackles inherent container networking problems such as load balancing, visibility, troubleshooting, security policies & container traffic monitoring.
-
-With the help of the Big Cloud Fabric's virtual pod multi-tenant architecture, container orchestration systems such as Kubernetes, RedHat OpenShift, Mesosphere DC/OS & Docker Swarm will be natively integrated alongside with VM orchestration systems such as VMware, OpenStack & Nutanix. Customers will be able to securely inter-connect any number of these clusters and enable inter-tenant communication between them if needed.
-
-BCF was recognized by Gartner as a visionary in the latest [Magic Quadrant](https://go.bigswitch.com/17GatedDocuments-MagicQuadrantforDataCenterNetworking_Reg.html). One of the BCF Kubernetes on-premises deployments (which includes Kubernetes, DC/OS & VMware running on multiple DCs across different geographic regions) is also referenced [here](https://portworx.com/architects-corner-kubernetes-satya-komala-nio/).
-
 ### Calico
 
-[Calico](https://docs.projectcalico.org/) is an open source networking and network security solution for containers, virtual machines, and native host-based workloads. Calico supports multiple data planes including: a pure Linux eBPF dataplane, a standard Linux networking dataplane, and a Windows HNS dataplane. Calico provides a full networking stack but can also be used in conjunction with [cloud provider CNIs](https://docs.projectcalico.org/networking/determine-best-networking#calico-compatible-cni-plugins-and-cloud-provider-integrations) to provide network policy enforcement.
+[Calico](https://projectcalico.docs.tigera.io/about/about-calico/) is an open source networking and network security solution for containers, virtual machines, and native host-based workloads. Calico supports multiple data planes including: a pure Linux eBPF dataplane, a standard Linux networking dataplane, and a Windows HNS dataplane. Calico provides a full networking stack but can also be used in conjunction with [cloud provider CNIs](https://projectcalico.docs.tigera.io/networking/determine-best-networking#calico-compatible-cni-plugins-and-cloud-provider-integrations) to provide network policy enforcement.
 
 ### Cilium
 
@@ -139,9 +79,9 @@ addressing, and it can be used in combination with other CNI plugins.
 
 ### CNI-Genie from Huawei
 
-[CNI-Genie](https://github.com/Huawei-PaaS/CNI-Genie) is a CNI plugin that enables Kubernetes to [simultaneously have access to different implementations](https://github.com/Huawei-PaaS/CNI-Genie/blob/master/docs/multiple-cni-plugins/README.md#what-cni-genie-feature-1-multiple-cni-plugins-enables) of the [Kubernetes network model](/docs/concepts/cluster-administration/networking/#the-kubernetes-network-model) in runtime. This includes any implementation that runs as a [CNI plugin](https://github.com/containernetworking/cni#3rd-party-plugins), such as [Flannel](https://github.com/coreos/flannel#flannel), [Calico](https://docs.projectcalico.org/), [Romana](https://romana.io), [Weave-net](https://www.weave.works/products/weave-net/).
+[CNI-Genie](https://github.com/cni-genie/CNI-Genie) is a CNI plugin that enables Kubernetes to [simultaneously have access to different implementations](https://github.com/cni-genie/CNI-Genie/blob/master/docs/multiple-cni-plugins/README.md#what-cni-genie-feature-1-multiple-cni-plugins-enables) of the [Kubernetes network model](/docs/concepts/cluster-administration/networking/#how-to-implement-the-kubernetes-networking-model) in runtime. This includes any implementation that runs as a [CNI plugin](https://github.com/containernetworking/cni#3rd-party-plugins), such as [Flannel](https://github.com/flannel-io/flannel#flannel), [Calico](https://projectcalico.docs.tigera.io/about/about-calico/), [Weave-net](https://www.weave.works/oss/net/).
 
-CNI-Genie also supports [assigning multiple IP addresses to a pod](https://github.com/Huawei-PaaS/CNI-Genie/blob/master/docs/multiple-ips/README.md#feature-2-extension-cni-genie-multiple-ip-addresses-per-pod), each from a different CNI plugin.
+CNI-Genie also supports [assigning multiple IP addresses to a pod](https://github.com/cni-genie/CNI-Genie/blob/master/docs/multiple-ips/README.md#feature-2-extension-cni-genie-multiple-ip-addresses-per-pod), each from a different CNI plugin.
 
 ### cni-ipvlan-vpc-k8s
 [cni-ipvlan-vpc-k8s](https://github.com/lyft/cni-ipvlan-vpc-k8s) contains a set
@@ -164,9 +104,10 @@ network complexity required to deploy Kubernetes at scale within AWS.
 [Coil](https://github.com/cybozu-go/coil) is a CNI plugin designed for ease of integration, providing flexible egress networking.
 Coil operates with a low overhead compared to bare metal, and allows you to define arbitrary egress NAT gateways for external networks.
 
-### Contiv
+### Contiv-VPP
 
-[Contiv](https://github.com/contiv/netplugin) provides configurable networking (native l3 using BGP, overlay using vxlan,  classic l2, or Cisco-SDN/ACI) for various use cases. [Contiv](https://contiv.io) is all open sourced.
+[Contiv-VPP](https://contivpp.io/) is a user-space, performance-oriented network plugin for
+Kubernetes, using the [fd.io](https://fd.io/) data plane.
 
 ### Contrail / Tungsten Fabric
 
@@ -186,52 +127,13 @@ With this toolset DANM is able to provide multiple separated network interfaces,
 
 ### Flannel
 
-[Flannel](https://github.com/coreos/flannel#flannel) is a very simple overlay
+[Flannel](https://github.com/flannel-io/flannel#flannel) is a very simple overlay
 network that satisfies the Kubernetes requirements. Many
 people have reported success with Flannel and Kubernetes.
 
-### Google Compute Engine (GCE)
+### Hybridnet
 
-For the Google Compute Engine cluster configuration scripts, [advanced
-routing](https://cloud.google.com/vpc/docs/routes) is used to
-assign each VM a subnet (default is `/24` - 254 IPs).  Any traffic bound for that
-subnet will be routed directly to the VM by the GCE network fabric.  This is in
-addition to the "main" IP address assigned to the VM, which is NAT'ed for
-outbound internet access.  A linux bridge (called `cbr0`) is configured to exist
-on that subnet, and is passed to docker's `--bridge` flag.
-
-Docker is started with:
-
-```shell
-DOCKER_OPTS="--bridge=cbr0 --iptables=false --ip-masq=false"
-```
-
-This bridge is created by Kubelet (controlled by the `--network-plugin=kubenet`
-flag) according to the `Node`'s `.spec.podCIDR`.
-
-Docker will now allocate IPs from the `cbr-cidr` block.  Containers can reach
-each other and `Nodes` over the `cbr0` bridge.  Those IPs are all routable
-within the GCE project network.
-
-GCE itself does not know anything about these IPs, though, so it will not NAT
-them for outbound internet traffic.  To achieve that an iptables rule is used
-to masquerade (aka SNAT - to make it seem as if packets came from the `Node`
-itself) traffic that is bound for IPs outside the GCE project network
-(10.0.0.0/8).
-
-```shell
-iptables -t nat -A POSTROUTING ! -d 10.0.0.0/8 -o eth0 -j MASQUERADE
-```
-
-Lastly IP forwarding is enabled in the kernel (so the kernel will process
-packets for bridged containers):
-
-```shell
-sysctl net.ipv4.ip_forward=1
-```
-
-The result of all this is that all `Pods` can reach each other and can egress
-traffic to the internet.
+[Hybridnet](https://github.com/alibaba/hybridnet) is an open source CNI plugin designed for hybrid clouds which provides both overlay and underlay networking for containers in one or more clusters. Overlay and underlay containers can run on the same node and have cluster-wide bidirectional network connectivity.
 
 ### Jaguar
 
@@ -267,9 +169,9 @@ Lars Kellogg-Stedman.
 
 ### Multus (a Multi Network plugin)
 
-[Multus](https://github.com/Intel-Corp/multus-cni) is a Multi CNI plugin to support the Multi Networking feature in Kubernetes using CRD based network objects in Kubernetes.
+Multus is a Multi CNI plugin to support the Multi Networking feature in Kubernetes using CRD based network objects in Kubernetes.
 
-Multus supports all [reference plugins](https://github.com/containernetworking/plugins) (eg. [Flannel](https://github.com/containernetworking/plugins/tree/master/plugins/meta/flannel), [DHCP](https://github.com/containernetworking/plugins/tree/master/plugins/ipam/dhcp), [Macvlan](https://github.com/containernetworking/plugins/tree/master/plugins/main/macvlan)) that implement the CNI specification and 3rd party plugins (eg. [Calico](https://github.com/projectcalico/cni-plugin), [Weave](https://github.com/weaveworks/weave), [Cilium](https://github.com/cilium/cilium), [Contiv](https://github.com/contiv/netplugin)). In addition to it, Multus supports [SRIOV](https://github.com/hustcat/sriov-cni), [DPDK](https://github.com/Intel-Corp/sriov-cni), [OVS-DPDK & VPP](https://github.com/intel/vhost-user-net-plugin) workloads in Kubernetes with both cloud native and NFV based applications in Kubernetes.
+Multus supports all [reference plugins](https://github.com/containernetworking/plugins) (eg. [Flannel](https://github.com/containernetworking/cni.dev/blob/main/content/plugins/v0.9/meta/flannel.md), [DHCP](https://github.com/containernetworking/plugins/tree/master/plugins/ipam/dhcp), [Macvlan](https://github.com/containernetworking/plugins/tree/master/plugins/main/macvlan)) that implement the CNI specification and 3rd party plugins (eg. [Calico](https://github.com/projectcalico/cni-plugin), [Weave](https://github.com/weaveworks/weave), [Cilium](https://github.com/cilium/cilium), [Contiv](https://github.com/contiv/netplugin)). In addition to it, Multus supports [SRIOV](https://github.com/hustcat/sriov-cni), [DPDK](https://github.com/Intel-Corp/sriov-cni), [OVS-DPDK & VPP](https://github.com/intel/vhost-user-net-plugin) workloads in Kubernetes with both cloud native and NFV based applications in Kubernetes.
 
 ### OVN4NFV-K8s-Plugin (OVN based CNI controller & plugin)
 
@@ -281,18 +183,6 @@ Multus supports all [reference plugins](https://github.com/containernetworking/p
 
 [NSX-T Container Plug-in (NCP)](https://docs.vmware.com/en/VMware-NSX-T/2.0/nsxt_20_ncp_kubernetes.pdf) provides integration between NSX-T and container orchestrators such as Kubernetes, as well as integration between NSX-T and container-based CaaS/PaaS platforms such as Pivotal Container Service (PKS) and OpenShift.
 
-### Nuage Networks VCS (Virtualized Cloud Services)
-
-[Nuage](https://www.nuagenetworks.net) provides a highly scalable policy-based Software-Defined Networking (SDN) platform. Nuage uses the open source Open vSwitch for the data plane along with a feature rich SDN Controller built on open standards.
-
-The Nuage platform uses overlays to provide seamless policy-based networking between Kubernetes Pods and non-Kubernetes environments (VMs and bare metal servers). Nuage's policy abstraction model is designed with applications in mind and makes it easy to declare fine-grained policies for applications.The platform's real-time analytics engine enables visibility and security monitoring for Kubernetes applications.
-
-### OpenVSwitch
-
-[OpenVSwitch](https://www.openvswitch.org/) is a somewhat more mature but also
-complicated way to build an overlay network.  This is endorsed by several of the
-"Big Shops" for networking.
-
 ### OVN (Open Virtual Networking)
 
 OVN is an opensource network virtualization solution developed by the
@@ -301,13 +191,9 @@ stateful ACLs, load-balancers etc to build different virtual networking
 topologies.  The project has a specific Kubernetes plugin and documentation
 at [ovn-kubernetes](https://github.com/openvswitch/ovn-kubernetes).
 
-### Romana
-
-[Romana](https://romana.io) is an open source network and security automation solution that lets you deploy Kubernetes without an overlay network. Romana supports Kubernetes [Network Policy](/docs/concepts/services-networking/network-policies/) to provide isolation across network namespaces.
-
 ### Weave Net from Weaveworks
 
-[Weave Net](https://www.weave.works/products/weave-net/) is a
+[Weave Net](https://www.weave.works/oss/net/) is a
 resilient and simple to use network for Kubernetes and its hosted applications.
 Weave Net runs as a [CNI plug-in](https://www.weave.works/docs/net/latest/cni-plugin/)
 or stand-alone.  In either version, it doesn't require any configuration or extra code
@@ -317,4 +203,4 @@ to run, and in both cases, the network provides one IP address per pod - as is s
 
 The early design of the networking model and its rationale, and some future
 plans are described in more detail in the
-[networking design document](https://git.k8s.io/community/contributors/design-proposals/network/networking.md).
+[networking design document](https://git.k8s.io/design-proposals-archive/network/networking.md).
diff --git a/content/en/docs/concepts/cluster-administration/system-logs.md b/content/en/docs/concepts/cluster-administration/system-logs.md
index 0466837356..f468de32b7 100644
--- a/content/en/docs/concepts/cluster-administration/system-logs.md
+++ b/content/en/docs/concepts/cluster-administration/system-logs.md
@@ -22,14 +22,62 @@ generates log messages for the Kubernetes system components.
 
 For more information about klog configuration, see the [Command line tool reference](/docs/reference/command-line-tools-reference/).
 
-An example of the klog native format:
+Kubernetes is in the process of simplifying logging in its components. The
+following klog command line flags [are
+deprecated](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components)
+starting with Kubernetes 1.23 and will be removed in a future release:
+
+- `--add-dir-header`
+- `--alsologtostderr`
+- `--log-backtrace-at`
+- `--log-dir`
+- `--log-file`
+- `--log-file-max-size`
+- `--logtostderr`
+- `--one-output`
+- `--skip-headers`
+- `--skip-log-headers`
+- `--stderrthreshold`
+
+Output will always be written to stderr, regardless of the output
+format. Output redirection is expected to be handled by the component which
+invokes a Kubernetes component. This can be a POSIX shell or a tool like
+systemd.
+
+In some cases, for example a distroless container or a Windows system service,
+those options are not available. Then the
+[`kube-log-runner`](https://github.com/kubernetes/kubernetes/blob/d2a8a81639fcff8d1221b900f66d28361a170654/staging/src/k8s.io/component-base/logs/kube-log-runner/README.md)
+binary can be used as wrapper around a Kubernetes component to redirect
+output. A prebuilt binary is included in several Kubernetes base images under
+its traditional name as `/go-runner` and as `kube-log-runner` in server and
+node release archives.
+
+This table shows how `kube-log-runner` invocations correspond to shell redirection:
+
+| Usage                                    | POSIX shell (such as bash) | `kube-log-runner <options> <cmd>`                           |
+| -----------------------------------------|----------------------------|-------------------------------------------------------------|
+| Merge stderr and stdout, write to stdout | `2>&1`                     | `kube-log-runner` (default behavior)                        |
+| Redirect both into log file              | `1>>/tmp/log 2>&1`         | `kube-log-runner -log-file=/tmp/log`                        |
+| Copy into log file and to stdout         | `2>&1 \| tee -a /tmp/log`  | `kube-log-runner -log-file=/tmp/log -also-stdout`           |
+| Redirect only stdout into log file       | `>/tmp/log`                | `kube-log-runner -log-file=/tmp/log -redirect-stderr=false` |
+
+### Klog output
+
+An example of the traditional klog native format:
 ```
 I1025 00:15:15.525108       1 httplog.go:79] GET /api/v1/namespaces/kube-system/pods/metrics-server-v0.3.1-57c75779f-9p8wg: (1.512ms) 200 [pod_nanny/v0.0.0 (linux/amd64) kubernetes/$Format 10.56.1.19:51756]
 ```
 
+The message string may contain line breaks:
+```
+I1025 00:15:15.525108       1 example.go:79] This is a message
+which has a line break.
+```
+
+
 ### Structured Logging
 
-{{< feature-state for_k8s_version="v1.19" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
 
 {{< warning >}}
 Migration to structured log messages is an ongoing process. Not all log messages are structured in this version. When parsing log files, you must also handle unstructured log messages.
@@ -38,9 +86,11 @@ Log formatting and value serialization are subject to change.
 {{< /warning>}}
 
 Structured logging introduces a uniform structure in log messages allowing for programmatic extraction of information. You can store and process structured logs with less effort and cost.
-New message format is backward compatible and enabled by default.
+The code which generates a log message determines whether it uses the traditional unstructured klog output
+or structured logging.
 
-Format of structured logs:
+The default formatting of structured log messages is as text, with a format that
+is backward compatible with traditional klog:
 
 ```ini
 <klog header> "<message>" <key1>="<value1>" <key2>="<value2>" ...
@@ -52,6 +102,62 @@ Example:
 I1025 00:15:15.525108       1 controller_utils.go:116] "Pod status updated" pod="kube-system/kubedns" status="ready"
 ```
 
+Strings are quoted. Other values are formatted with
+[`%+v`](https://pkg.go.dev/fmt#hdr-Printing), which may cause log messages to
+continue on the next line [depending on the data](https://github.com/kubernetes/kubernetes/issues/106428).
+```
+I1025 00:15:15.525108       1 example.go:116] "Example" data="This is text with a line break\nand \"quotation marks\"." someInt=1 someFloat=0.1 someStruct={StringField: First line,
+second line.}
+```
+
+### Contextual Logging
+
+{{< feature-state for_k8s_version="v1.24" state="alpha" >}}
+
+Contextual logging builds on top of structured logging. It is primarily about
+how developers use logging calls: code based on that concept is more flexible
+and supports additional use cases as described in the [Contextual Logging
+KEP](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/3077-contextual-logging).
+
+If developers use additional functions like `WithValues` or `WithName` in
+their components, then log entries contain additional information that gets
+passed into functions by their caller.
+
+Currently this is gated behind the `StructuredLogging` feature gate and
+disabled by default. The infrastructure for this was added in 1.24 without
+modifying components. The
+[`component-base/logs/example`](https://github.com/kubernetes/kubernetes/blob/v1.24.0-beta.0/staging/src/k8s.io/component-base/logs/example/cmd/logger.go)
+command demonstrates how to use the new logging calls and how a component
+behaves that supports contextual logging.
+
+```console
+$ cd $GOPATH/src/k8s.io/kubernetes/staging/src/k8s.io/component-base/logs/example/cmd/
+$ go run . --help
+...
+      --feature-gates mapStringBool  A set of key=value pairs that describe feature gates for alpha/experimental features. Options are:
+                                     AllAlpha=true|false (ALPHA - default=false)
+                                     AllBeta=true|false (BETA - default=false)
+                                     ContextualLogging=true|false (ALPHA - default=false)
+$ go run . --feature-gates ContextualLogging=true
+...
+I0404 18:00:02.916429  451895 logger.go:94] "example/myname: runtime" foo="bar" duration="1m0s"
+I0404 18:00:02.916447  451895 logger.go:95] "example: another runtime" foo="bar" duration="1m0s"
+```
+
+The `example` prefix and `foo="bar"` were added by the caller of the function
+which logs the `runtime` message and `duration="1m0s"` value, without having to
+modify that function.
+
+With contextual logging disable, `WithValues` and `WithName` do nothing and log
+calls go through the global klog logger. Therefore this additional information
+is not in the log output anymore:
+
+```console
+$ go run . --feature-gates ContextualLogging=false
+...
+I0404 18:03:31.171945  452150 logger.go:94] "runtime" duration="1m0s"
+I0404 18:03:31.171962  452150 logger.go:95] "another runtime" duration="1m0s"
+```
 
 ### JSON log format
 
@@ -82,7 +188,7 @@ Example of JSON log format (pretty printed):
 
 Keys with special meaning:
 * `ts` - timestamp as Unix time (required, float)
-* `v` - verbosity (required, int, default 0)
+* `v` - verbosity (only for info and not for error messages, int)
 * `err` - error string (optional, string)
 * `msg` - message (required, string)
 
@@ -93,27 +199,6 @@ List of components currently supporting JSON format:
 * {{< glossary_tooltip term_id="kube-scheduler" text="kube-scheduler" >}}
 * {{< glossary_tooltip term_id="kubelet" text="kubelet" >}}
 
-### Log sanitization
-
-{{< feature-state for_k8s_version="v1.20" state="alpha" >}}
-
-{{<warning >}}
-Log sanitization might incur significant computation overhead and therefore should not be enabled in production.
-{{< /warning >}}
-
-The `--experimental-logging-sanitization` flag enables the klog sanitization filter.
-If enabled all log arguments are inspected for fields tagged as sensitive data (e.g. passwords, keys, tokens) and logging of these fields will be prevented.
-
-List of components currently supporting log sanitization:
-* kube-controller-manager
-* kube-apiserver
-* kube-scheduler
-* kubelet
-
-{{< note >}}
-The Log sanitization filter does not prevent user workload logs from leaking sensitive data.
-{{< /note >}}
-
 ### Log verbosity level
 
 The `-v` flag controls log verbosity. Increasing the value increases the number of logged events. Decreasing the value decreases the number of logged events.
@@ -125,7 +210,8 @@ There are two types of system components: those that run in a container and thos
 that do not run in a container. For example:
 
 * The Kubernetes scheduler and kube-proxy run in a container.
-* The kubelet and container runtime, for example Docker, do not run in containers.
+* The kubelet and {{<glossary_tooltip term_id="container-runtime" text="container runtime">}}
+  do not run in containers.
 
 On machines with systemd, the kubelet and container runtime write to journald.
 Otherwise, they write to `.log` files in the `/var/log` directory.
@@ -139,4 +225,6 @@ The `logrotate` tool rotates logs daily, or once the log size is greater than 10
 
 * Read about the [Kubernetes Logging Architecture](/docs/concepts/cluster-administration/logging/)
 * Read about [Structured Logging](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/1602-structured-logging)
+* Read about [Contextual Logging](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/3077-contextual-logging)
+* Read about [deprecation of klog flags](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components)
 * Read about the [Conventions for logging severity](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-instrumentation/logging.md)
diff --git a/content/en/docs/concepts/configuration/configmap.md b/content/en/docs/concepts/configuration/configmap.md
index 47ecaedba6..4f5ace4348 100644
--- a/content/en/docs/concepts/configuration/configmap.md
+++ b/content/en/docs/concepts/configuration/configmap.md
@@ -15,7 +15,6 @@ If the data you want to store are confidential, use a
 or use additional (third party) tools to keep your data private.
 {{< /caution >}}
 
-
 <!-- body -->
 ## Motivation
 
@@ -42,7 +41,7 @@ that lets you store configuration for other objects to use. Unlike most
 Kubernetes objects that have a `spec`, a ConfigMap has `data` and `binaryData`
 fields. These fields accept key-value pairs as their values.  Both the `data`
 field and the `binaryData` are optional. The `data` field is designed to
-contain UTF-8 byte sequences while the `binaryData` field is designed to
+contain UTF-8 strings while the `binaryData` field is designed to
 contain binary data as base64-encoded strings.
 
 The name of a ConfigMap must be a valid
@@ -239,6 +238,10 @@ propagation delay, where the cache propagation delay depends on the chosen cache
 
 ConfigMaps consumed as environment variables are not updated automatically and require a pod restart. 
 
+{{< note >}}
+A container using a ConfigMap as a [subPath](/docs/concepts/storage/volumes#using-subpath) volume mount will not receive ConfigMap updates.
+{{< /note >}}
+
 ## Immutable ConfigMaps {#configmap-immutable}
 
 {{< feature-state for_k8s_version="v1.21" state="stable" >}}
@@ -276,7 +279,6 @@ to the deleted ConfigMap, it is recommended to recreate these pods.
 
 * Read about [Secrets](/docs/concepts/configuration/secret/).
 * Read [Configure a Pod to Use a ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/).
+* Read about [changing a ConfigMap (or any other Kubernetes object)](/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/)
 * Read [The Twelve-Factor App](https://12factor.net/) to understand the motivation for
   separating code from configuration.
-
-
diff --git a/content/en/docs/concepts/configuration/manage-resources-containers.md b/content/en/docs/concepts/configuration/manage-resources-containers.md
index cbcfff67ef..9428da09e3 100644
--- a/content/en/docs/concepts/configuration/manage-resources-containers.md
+++ b/content/en/docs/concepts/configuration/manage-resources-containers.md
@@ -1,22 +1,24 @@
 ---
-title: Managing Resources for Containers
+title: Resource Management for Pods and Containers
 content_type: concept
 weight: 40
 feature:
   title: Automatic bin packing
   description: >
-    Automatically places containers based on their resource requirements and other constraints, while not sacrificing availability. Mix critical and best-effort workloads in order to drive up utilization and save even more resources.
+    Automatically places containers based on their resource requirements and other constraints, while not sacrificing availability.
+    Mix critical and best-effort workloads in order to drive up utilization and save even more resources.
 ---
 
 <!-- overview -->
 
 When you specify a {{< glossary_tooltip term_id="pod" >}}, you can optionally specify how
-much of each resource a {{< glossary_tooltip text="Container" term_id="container" >}} needs.
+much of each resource a {{< glossary_tooltip text="container" term_id="container" >}} needs.
 The most common resources to specify are CPU and memory (RAM); there are others.
 
-When you specify the resource _request_ for Containers in a Pod, the scheduler uses this
+When you specify the resource _request_ for containers in a Pod, the
+{{< glossary_tooltip text="kube-scheduler" term_id="kube-scheduler" >}} uses this
 information to decide which node to place the Pod on. When you specify a resource _limit_
-for a Container, the kubelet enforces those limits so that the running container is not
+for a container, the kubelet enforces those limits so that the running container is not
 allowed to use more of that resource than the limit you set. The kubelet also reserves
 at least the _request_ amount of that system resource specifically for that container
 to use.
@@ -33,7 +35,7 @@ For example, if you set a `memory` request of 256 MiB for a container, and that
 a Pod scheduled to a Node with 8GiB of memory and no other Pods, then the container can try to use
 more RAM.
 
-If you set a `memory` limit of 4GiB for that Container, the kubelet (and
+If you set a `memory` limit of 4GiB for that container, the kubelet (and
 {{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}) enforce the limit.
 The runtime prevents the container from using more than the configured resource limit. For example:
 when a process in the container tries to consume more than the allowed amount of memory,
@@ -45,10 +47,9 @@ or by enforcement (the system prevents the container from ever exceeding the lim
 runtimes can have different ways to implement the same restrictions.
 
 {{< note >}}
-If a Container specifies its own memory limit, but does not specify a memory request, Kubernetes
-automatically assigns a memory request that matches the limit. Similarly, if a Container specifies its own
-CPU limit, but does not specify a CPU request, Kubernetes automatically assigns a CPU request that matches
-the limit.
+If you specify a limit for a resource, but do not specify any request, and no admission-time
+mechanism has applied a default request for that resource, then Kubernetes copies the limit
+you specified and uses it as the requested value for the resource.
 {{< /note >}}
 
 ## Resource types
@@ -56,7 +57,7 @@ the limit.
 *CPU* and *memory* are each a *resource type*. A resource type has a base unit.
 CPU represents compute processing and is specified in units of [Kubernetes CPUs](#meaning-of-cpu).
 Memory is specified in units of bytes.
-If you're using Kubernetes v1.14 or newer, you can specify _huge page_ resources.
+For Linux workloads, you can specify _huge page_ resources.
 Huge pages are a Linux-specific feature where the node kernel allocates blocks of memory
 that are much larger than the default page size.
 
@@ -76,9 +77,10 @@ consumed. They are distinct from
 [Services](/docs/concepts/services-networking/service/) are objects that can be read and modified
 through the Kubernetes API server.
 
-## Resource requests and limits of Pod and Container
+## Resource requests and limits of Pod and container
 
-Each Container of a Pod can specify one or more of the following:
+For each container, you can specify resource limits and requests,
+including the following:
 
 * `spec.containers[].resources.limits.cpu`
 * `spec.containers[].resources.limits.memory`
@@ -87,48 +89,64 @@ Each Container of a Pod can specify one or more of the following:
 * `spec.containers[].resources.requests.memory`
 * `spec.containers[].resources.requests.hugepages-<size>`
 
-Although requests and limits can only be specified on individual Containers, it
-is convenient to talk about Pod resource requests and limits. A
-*Pod resource request/limit* for a particular resource type is the sum of the
-resource requests/limits of that type for each Container in the Pod.
+Although you can only specify requests and limits for individual containers,
+it is also useful to think about the overall resource requests and limits for
+a Pod.
+For a particular resource, a *Pod resource request/limit* is the sum of the
+resource requests/limits of that type for each container in the Pod.
 
 ## Resource units in Kubernetes
 
-### Meaning of CPU
+### CPU resource units {#meaning-of-cpu}
 
 Limits and requests for CPU resources are measured in *cpu* units.
-One cpu, in Kubernetes, is equivalent to **1 vCPU/Core** for cloud providers and **1 hyperthread** on bare-metal Intel processors.
+In Kubernetes, 1 CPU unit is equivalent to **1 physical CPU core**,
+or **1 virtual core**, depending on whether the node is a physical host
+or a virtual machine running inside a physical machine.
 
-Fractional requests are allowed. A Container with
-`spec.containers[].resources.requests.cpu` of `0.5` is guaranteed half as much
-CPU as one that asks for 1 CPU. The expression `0.1` is equivalent to the
+Fractional requests are allowed. When you define a container with
+`spec.containers[].resources.requests.cpu` set to `0.5`, you are requesting half
+as much CPU time compared to if you asked for `1.0` CPU.
+For CPU resource units, the [quantity](/docs/reference/kubernetes-api/common-definitions/quantity/) expression `0.1` is equivalent to the
 expression `100m`, which can be read as "one hundred millicpu". Some people say
-"one hundred millicores", and this is understood to mean the same thing. A
-request with a decimal point, like `0.1`, is converted to `100m` by the API, and
-precision finer than `1m` is not allowed. For this reason, the form `100m` might
-be preferred.
+"one hundred millicores", and this is understood to mean the same thing.
 
-CPU is always requested as an absolute quantity, never as a relative quantity;
-0.1 is the same amount of CPU on a single-core, dual-core, or 48-core machine.
+CPU resource is always specified as an absolute amount of resource, never as a relative amount. For example,
+`500m` CPU represents the roughly same amount of computing power whether that container
+runs on a single-core, dual-core, or 48-core machine.
 
-### Meaning of memory
+{{< note >}}
+Kubernetes doesn't allow you to specify CPU resources with a precision finer than
+`1m`. Because of this, it's useful to specify CPU units less than `1.0` or `1000m` using
+the milliCPU form; for example, `5m` rather than `0.005`.
+{{< /note >}}
+
+### Memory resource units {#meaning-of-memory}
 
 Limits and requests for `memory` are measured in bytes. You can express memory as
-a plain integer or as a fixed-point number using one of these suffixes:
+a plain integer or as a fixed-point number using one of these
+[quantity](/docs/reference/kubernetes-api/common-definitions/quantity/) suffixes:
 E, P, T, G, M, k. You can also use the power-of-two equivalents: Ei, Pi, Ti, Gi,
 Mi, Ki. For example, the following represent roughly the same value:
 
 ```shell
-128974848, 129e6, 129M, 123Mi
+128974848, 129e6, 129M,  128974848000m, 123Mi
 ```
 
-Here's an example.
-The following Pod has two Containers. Each Container has a request of 0.25 cpu
-and 64MiB (2<sup>26</sup> bytes) of memory. Each Container has a limit of 0.5
-cpu and 128MiB of memory. You can say the Pod has a request of 0.5 cpu and 128
-MiB of memory, and a limit of 1 cpu and 256MiB of memory.
+Pay attention to the case of the suffixes. If you request `400m` of memory, this is a request
+for 0.4 bytes. Someone who types that probably meant to ask for 400 mebibytes (`400Mi`)
+or 400 megabytes (`400M`).
+
+## Container resources example {#example-1}
+
+The following Pod has two containers. Both containers are defined with a request for
+0.25 CPU
+and 64MiB (2<sup>26</sup> bytes) of memory. Each container has a limit of 0.5
+CPU and 128MiB of memory. You can say the Pod has a request of 0.5 CPU and 128
+MiB of memory, and a limit of 1 CPU and 256MiB of memory.
 
 ```yaml
+---
 apiVersion: v1
 kind: Pod
 metadata:
@@ -161,60 +179,58 @@ When you create a Pod, the Kubernetes scheduler selects a node for the Pod to
 run on. Each node has a maximum capacity for each of the resource types: the
 amount of CPU and memory it can provide for Pods. The scheduler ensures that,
 for each resource type, the sum of the resource requests of the scheduled
-Containers is less than the capacity of the node. Note that although actual memory
+containers is less than the capacity of the node.
+Note that although actual memory
 or CPU resource usage on nodes is very low, the scheduler still refuses to place
 a Pod on a node if the capacity check fails. This protects against a resource
 shortage on a node when resource usage later increases, for example, during a
 daily peak in request rate.
 
-## How Pods with resource limits are run
+## How Kubernetes applies resource requests and limits {#how-pods-with-resource-limits-are-run}
 
-When the kubelet starts a Container of a Pod, it passes the CPU and memory limits
-to the container runtime.
+When the kubelet starts a container as part of a Pod, the kubelet passes that container's
+requests and limits for memory and CPU to the container runtime.
 
-When using Docker:
+On Linux, the container runtime typically configures
+kernel {{< glossary_tooltip text="cgroups" term_id="cgroup" >}} that apply and enforce the
+limits you defined.
 
-- The `spec.containers[].resources.requests.cpu` is converted to its core value,
-  which is potentially fractional, and multiplied by 1024. The greater of this number
-  or 2 is used as the value of the
-  [`--cpu-shares`](https://docs.docker.com/engine/reference/run/#cpu-share-constraint)
-  flag in the `docker run` command.
+- The CPU limit defines a hard ceiling on how much CPU time that the container can use.
+  During each scheduling interval (time slice), the Linux kernel checks to see if this
+  limit is exceeded; if so, the kernel waits before allowing that cgroup to resume execution.
+- The CPU request typically defines a weighting. If several different containers (cgroups)
+  want to run on a contended system, workloads with larger CPU requests are allocated more
+  CPU time than workloads with small requests.
+- The memory request is mainly used during (Kubernetes) Pod scheduling. On a node that uses
+  cgroups v2, the container runtime might use the memory request as a hint to set
+  `memory.min` and `memory.low`.
+- The memory limit defines a memory limit for that cgroup. If the container tries to
+  allocate more memory than this limit, the Linux kernel out-of-memory subsystem activates
+  and, typically, intervenes by stopping one of the processes in the container that tried
+  to allocate memory. If that process is the container's PID 1, and the container is marked
+  as restartable, Kubernetes restarts the container.
+- The memory limit for the Pod or container can also apply to pages in memory backed
+  volumes, such as an `emptyDir`. The kubelet tracks `tmpfs` emptyDir volumes as container
+  memory use, rather than as local ephemeral storage.
 
-- The `spec.containers[].resources.limits.cpu` is converted to its millicore value and
-  multiplied by 100. The resulting value is the total amount of CPU time in microseconds
-  that a container can use every 100ms. A container cannot use more than its share of
-  CPU time during this interval.
+If a container exceeds its memory request and the node that it runs on becomes short of
+memory overall, it is likely that the Pod the container belongs to will be
+{{< glossary_tooltip text="evicted" term_id="eviction" >}}.
 
-  {{< note >}}
-  The default quota period is 100ms. The minimum resolution of CPU quota is 1ms.
-  {{</ note >}}
+A container might or might not be allowed to exceed its CPU limit for extended periods of time.
+However, container runtimes don't terminate Pods or containers for excessive CPU usage.
 
-- The `spec.containers[].resources.limits.memory` is converted to an integer, and
-  used as the value of the
-  [`--memory`](https://docs.docker.com/engine/reference/run/#/user-memory-constraints)
-  flag in the `docker run` command.
-
-If a Container exceeds its memory limit, it might be terminated. If it is
-restartable, the kubelet will restart it, as with any other type of runtime
-failure.
-
-If a Container exceeds its memory request, it is likely that its Pod will
-be evicted whenever the node runs out of memory.
-
-A Container might or might not be allowed to exceed its CPU limit for extended
-periods of time. However, it will not be killed for excessive CPU usage.
-
-To determine whether a Container cannot be scheduled or is being killed due to
-resource limits, see the
-[Troubleshooting](#troubleshooting) section.
+To determine whether a container cannot be scheduled or is being killed due to resource limits,
+see the [Troubleshooting](#troubleshooting) section.
 
 ### Monitoring compute & memory resource usage
 
-The resource usage of a Pod is reported as part of the Pod status.
+The kubelet reports the resource usage of a Pod as part of the Pod
+[`status`](/docs/concepts/overview/working-with-objects/kubernetes-objects/#object-spec-and-status).
 
-If optional [tools for monitoring](/docs/tasks/debug-application-cluster/resource-usage-monitoring/)
+If optional [tools for monitoring](/docs/tasks/debug/debug-cluster/resource-usage-monitoring/)
 are available in your cluster, then Pod resource usage can be retrieved either
-from the [Metrics API](/docs/tasks/debug-application-cluster/resource-metrics-pipeline/#the-metrics-api)
+from the [Metrics API](/docs/tasks/debug/debug-cluster/resource-metrics-pipeline/#metrics-api)
 directly or from your monitoring tools.
 
 ## Local ephemeral storage
@@ -236,7 +252,7 @@ The kubelet also uses this kind of storage to hold
 container images, and the writable layers of running containers.
 
 {{< caution >}}
-If a node fails, the data in its ephemeral storage can be lost.  
+If a node fails, the data in its ephemeral storage can be lost.
 Your applications cannot expect any performance SLAs (disk IOPS for example)
 from local ephemeral storage.
 {{< /caution >}}
@@ -308,21 +324,30 @@ than as local ephemeral storage.
 
 ### Setting requests and limits for local ephemeral storage
 
-You can use _ephemeral-storage_ for managing local ephemeral storage. Each Container of a Pod can specify one or more of the following:
+You can specify `ephemeral-storage` for managing local ephemeral storage. Each
+container of a Pod can specify either or both of the following:
 
 * `spec.containers[].resources.limits.ephemeral-storage`
 * `spec.containers[].resources.requests.ephemeral-storage`
 
-Limits and requests for `ephemeral-storage` are measured in bytes. You can express storage as
-a plain integer or as a fixed-point number using one of these suffixes:
-E, P, T, G, M, K. You can also use the power-of-two equivalents: Ei, Pi, Ti, Gi,
-Mi, Ki. For example, the following represent roughly the same value:
+Limits and requests for `ephemeral-storage` are measured in byte quantities.
+You can express storage as a plain integer or as a fixed-point number using one of these suffixes:
+E, P, T, G, M, k. You can also use the power-of-two equivalents: Ei, Pi, Ti, Gi,
+Mi, Ki. For example, the following quantities all represent roughly the same value:
 
-```shell
-128974848, 129e6, 129M, 123Mi
-```
+- `128974848`
+- `129e6`
+- `129M`
+- `123Mi`
 
-In the following example, the Pod has two Containers. Each Container has a request of 2GiB of local ephemeral storage. Each Container has a limit of 4GiB of local ephemeral storage. Therefore, the Pod has a request of 4GiB of local ephemeral storage, and a limit of 8GiB of local ephemeral storage.
+Pay attention to the case of the suffixes. If you request `400m` of ephemeral-storage, this is a request
+for 0.4 bytes. Someone who types that probably meant to ask for 400 mebibytes (`400Mi`)
+or 400 megabytes (`400M`).
+
+In the following example, the Pod has two containers. Each container has a request of
+2GiB of local ephemeral storage. Each container has a limit of 4GiB of local ephemeral
+storage. Therefore, the Pod has a request of 4GiB of local ephemeral storage, and
+a limit of 8GiB of local ephemeral storage.
 
 ```yaml
 apiVersion: v1
@@ -359,9 +384,11 @@ spec:
 ### How Pods with ephemeral-storage requests are scheduled
 
 When you create a Pod, the Kubernetes scheduler selects a node for the Pod to
-run on. Each node has a maximum amount of local ephemeral storage it can provide for Pods. For more information, see [Node Allocatable](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable).
+run on. Each node has a maximum amount of local ephemeral storage it can provide for Pods.
+For more information, see
+[Node Allocatable](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable).
 
-The scheduler ensures that the sum of the resource requests of the scheduled Containers is less than the capacity of the node.
+The scheduler ensures that the sum of the resource requests of the scheduled containers is less than the capacity of the node.
 
 ### Ephemeral storage consumption management {#resource-emphemeralstorage-consumption}
 
@@ -375,7 +402,7 @@ kubelet measures storage use in:
 If a Pod is using more ephemeral storage than you allow it to, the kubelet
 sets an eviction signal that triggers Pod eviction.
 
-For container-level isolation, if a Container's writable layer and log
+For container-level isolation, if a container's writable layer and log
 usage exceeds its storage limit, the kubelet marks the Pod for eviction.
 
 For pod-level isolation the kubelet works out an overall Pod storage limit by
@@ -440,7 +467,7 @@ Kubernetes does not use them.
 Quotas are faster and more accurate than directory scanning. When a
 directory is assigned to a project, all files created under a
 directory are created in that project, and the kernel merely has to
-keep track of how many blocks are in use by files in that project.  
+keep track of how many blocks are in use by files in that project.
 If a file is created and deleted, but has an open file descriptor,
 it continues to consume space. Quota tracking records that space accurately
 whereas directory scans overlook the storage used by deleted files.
@@ -492,15 +519,19 @@ Plugin](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)
 for how to advertise device plugin managed resources on each node.
 
 ##### Other resources
+
 To advertise a new node-level extended resource, the cluster operator can
 submit a `PATCH` HTTP request to the API server to specify the available
 quantity in the `status.capacity` for a node in the cluster. After this
 operation, the node's `status.capacity` will include a new resource. The
 `status.allocatable` field is updated automatically with the new resource
-asynchronously by the kubelet. Note that because the scheduler uses the	node
-`status.allocatable` value when evaluating Pod fitness, there may be a short
-delay between patching the node capacity with a new resource and the first Pod
-that requests the resource to be scheduled on that node.
+asynchronously by the kubelet.
+
+Because the scheduler uses the node's `status.allocatable` value when
+evaluating Pod fitness, the scheduler only takes account of the new value after
+that asynchronous update. There may be a short delay between patching the
+node capacity with a new resource and the time when the first Pod that requests
+the resource can be scheduled on that node.
 
 **Example:**
 
@@ -528,7 +559,7 @@ Cluster-level extended resources are not tied to nodes. They are usually managed
 by scheduler extenders, which handle the resource consumption and resource quota.
 
 You can specify the extended resources that are handled by scheduler extenders
-in [scheduler policy configuration](/docs/reference/config-api/kube-scheduler-policy-config.v1/)
+in [scheduler configuration](/docs/reference/config-api/kube-scheduler-config.v1beta3/)
 
 **Example:**
 
@@ -610,27 +641,32 @@ spec:
 
 ## PID limiting
 
-Process ID (PID) limits allow for the configuration of a kubelet to limit the number of PIDs that a given Pod can consume. See [Pid Limiting](/docs/concepts/policy/pid-limiting/) for information.
+Process ID (PID) limits allow for the configuration of a kubelet
+to limit the number of PIDs that a given Pod can consume. See
+[PID Limiting](/docs/concepts/policy/pid-limiting/) for information.
 
 ## Troubleshooting
 
-### My Pods are pending with event message failedScheduling
+### My Pods are pending with event message `FailedScheduling`
 
 If the scheduler cannot find any node where a Pod can fit, the Pod remains
-unscheduled until a place can be found. An event is produced each time the
-scheduler fails to find a place for the Pod, like this:
+unscheduled until a place can be found. An
+[Event](/docs/reference/kubernetes-api/cluster-resources/event-v1/) is produced
+each time the scheduler fails to find a place for the Pod. You can use `kubectl`
+to view the events for a Pod; for example:
 
 ```shell
-kubectl describe pod frontend | grep -A 3 Events
+kubectl describe pod frontend | grep -A 9999999999 Events
 ```
 ```
 Events:
-  FirstSeen LastSeen   Count  From          Subobject   PathReason      Message
-  36s   5s     6      {scheduler }              FailedScheduling  Failed for reason PodExceedsFreeCPU and possibly others
+  Type     Reason            Age   From               Message
+  ----     ------            ----  ----               -------
+  Warning  FailedScheduling  23s   default-scheduler  0/42 nodes available: insufficient cpu
 ```
 
 In the preceding example, the Pod named "frontend" fails to be scheduled due to
-insufficient CPU resource on the node. Similar error messages can also suggest
+insufficient CPU resource on any node. Similar error messages can also suggest
 failure due to insufficient memory (PodExceedsFreeMemory). In general, if a Pod
 is pending with a message of this type, there are several things to try:
 
@@ -639,6 +675,9 @@ is pending with a message of this type, there are several things to try:
 - Check that the Pod is not larger than all the nodes. For example, if all the
   nodes have a capacity of `cpu: 1`, then a Pod with a request of `cpu: 1.1` will
   never be scheduled.
+- Check for node taints. If most of your nodes are tainted, and the new Pod does
+  not tolerate that taint, the scheduler only considers placements onto the
+  remaining nodes that don't have that taint.
 
 You can check node capacities and amounts allocated with the
 `kubectl describe nodes` command. For example:
@@ -673,31 +712,46 @@ Allocated resources:
   680m (34%)      400m (20%)    920Mi (11%)        1070Mi (13%)
 ```
 
-In the preceding output, you can see that if a Pod requests more than 1120m
-CPUs or 6.23Gi of memory, it will not fit on the node.
+In the preceding output, you can see that if a Pod requests more than 1.120 CPUs
+or more than 6.23Gi of memory, that Pod will not fit on the node.
 
-By looking at the `Pods` section, you can see which Pods are taking up space on
+By looking at the “Pods” section, you can see which Pods are taking up space on
 the node.
 
-The amount of resources available to Pods is less than the node capacity, because
-system daemons use a portion of the available resources. The `allocatable` field
-[NodeStatus](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#nodestatus-v1-core)
-gives the amount of resources that are available to Pods. For more information, see
-[Node Allocatable Resources](https://git.k8s.io/community/contributors/design-proposals/node/node-allocatable.md).
+The amount of resources available to Pods is less than the node capacity because
+system daemons use a portion of the available resources. Within the Kubernetes API,
+each Node has a `.status.allocatable` field
+(see [NodeStatus](/docs/reference/kubernetes-api/cluster-resources/node-v1/#NodeStatus)
+for details).
 
-The [resource quota](/docs/concepts/policy/resource-quotas/) feature can be configured
-to limit the total amount of resources that can be consumed. If used in conjunction
-with namespaces, it can prevent one team from hogging all the resources.
+The `.status.allocatable` field describes the amount of resources that are available
+to Pods on that node (for example: 15 virtual CPUs and 7538 MiB of memory).
+For more information on node allocatable resources in Kubernetes, see
+[Reserve Compute Resources for System Daemons](/docs/tasks/administer-cluster/reserve-compute-resources/).
 
-### My Container is terminated
+You can configure [resource quotas](/docs/concepts/policy/resource-quotas/)
+to limit the total amount of resources that a namespace can consume.
+Kubernetes enforces quotas for objects in particular namespace when there is a
+ResourceQuota in that namespace.
+For example, if you assign specific namespaces to different teams, you
+can add ResourceQuotas into those namespaces. Setting resource quotas helps to
+prevent one team from using so much of any resource that this over-use affects other teams.
 
-Your Container might get terminated because it is resource-starved. To check
-whether a Container is being killed because it is hitting a resource limit, call
+You should also consider what access you grant to that namespace:
+**full** write access to a namespace allows someone with that access to remove any
+resource, including a configured ResourceQuota.
+
+### My container is terminated
+
+Your container might get terminated because it is resource-starved. To check
+whether a container is being killed because it is hitting a resource limit, call
 `kubectl describe pod` on the Pod of interest:
 
 ```shell
 kubectl describe pod simmemleak-hra99
 ```
+
+The output is similar to:
 ```
 Name:                           simmemleak-hra99
 Namespace:                      default
@@ -708,57 +762,48 @@ Status:                         Running
 Reason:
 Message:
 IP:                             10.244.2.75
-Replication Controllers:        simmemleak (1/1 replicas created)
 Containers:
   simmemleak:
-    Image:  saadali/simmemleak
+    Image:  saadali/simmemleak:latest
     Limits:
-      cpu:                      100m
-      memory:                   50Mi
-    State:                      Running
-      Started:                  Tue, 07 Jul 2015 12:54:41 -0700
-    Last Termination State:     Terminated
-      Exit Code:                1
-      Started:                  Fri, 07 Jul 2015 12:54:30 -0700
-      Finished:                 Fri, 07 Jul 2015 12:54:33 -0700
-    Ready:                      False
-    Restart Count:              5
+      cpu:          100m
+      memory:       50Mi
+    State:          Running
+      Started:      Tue, 07 Jul 2019 12:54:41 -0700
+    Last State:     Terminated
+      Reason:       OOMKilled
+      Exit Code:    137
+      Started:      Fri, 07 Jul 2019 12:54:30 -0700
+      Finished:     Fri, 07 Jul 2019 12:54:33 -0700
+    Ready:          False
+    Restart Count:  5
 Conditions:
   Type      Status
   Ready     False
 Events:
-  FirstSeen                         LastSeen                         Count  From                              SubobjectPath                       Reason      Message
-  Tue, 07 Jul 2015 12:53:51 -0700   Tue, 07 Jul 2015 12:53:51 -0700  1      {scheduler }                                                          scheduled   Successfully assigned simmemleak-hra99 to kubernetes-node-tf0f
-  Tue, 07 Jul 2015 12:53:51 -0700   Tue, 07 Jul 2015 12:53:51 -0700  1      {kubelet kubernetes-node-tf0f}    implicitly required container POD   pulled      Pod container image "k8s.gcr.io/pause:0.8.0" already present on machine
-  Tue, 07 Jul 2015 12:53:51 -0700   Tue, 07 Jul 2015 12:53:51 -0700  1      {kubelet kubernetes-node-tf0f}    implicitly required container POD   created     Created with docker id 6a41280f516d
-  Tue, 07 Jul 2015 12:53:51 -0700   Tue, 07 Jul 2015 12:53:51 -0700  1      {kubelet kubernetes-node-tf0f}    implicitly required container POD   started     Started with docker id 6a41280f516d
-  Tue, 07 Jul 2015 12:53:51 -0700   Tue, 07 Jul 2015 12:53:51 -0700  1      {kubelet kubernetes-node-tf0f}    spec.containers{simmemleak}         created     Created with docker id 87348f12526a
+  Type    Reason     Age   From               Message
+  ----    ------     ----  ----               -------
+  Normal  Scheduled  42s   default-scheduler  Successfully assigned simmemleak-hra99 to kubernetes-node-tf0f
+  Normal  Pulled     41s   kubelet            Container image "saadali/simmemleak:latest" already present on machine
+  Normal  Created    41s   kubelet            Created container simmemleak
+  Normal  Started    40s   kubelet            Started container simmemleak
+  Normal  Killing    32s   kubelet            Killing container with id ead3fb35-5cf5-44ed-9ae1-488115be66c6: Need to kill Pod
 ```
 
 In the preceding example, the `Restart Count:  5` indicates that the `simmemleak`
-Container in the Pod was terminated and restarted five times.
+container in the Pod was terminated and restarted five times (so far).
+The `OOMKilled` reason shows that the container tried to use more memory than its limit.
 
-You can call `kubectl get pod` with the `-o go-template=...` option to fetch the status
-of previously terminated Containers:
-
-```shell
-kubectl get pod -o go-template='{{range.status.containerStatuses}}{{"Container Name: "}}{{.name}}{{"\r\nLastState: "}}{{.lastState}}{{end}}'  simmemleak-hra99
-```
-```
-Container Name: simmemleak
-LastState: map[terminated:map[exitCode:137 reason:OOM Killed startedAt:2015-07-07T20:58:43Z finishedAt:2015-07-07T20:58:43Z containerID:docker://0e4095bba1feccdfe7ef9fb6ebffe972b4b14285d5acdec6f0d3ae8a22fad8b2]]
-```
-
-You can see that the Container was terminated because of `reason:OOM Killed`, where `OOM` stands for Out Of Memory.
+Your next step might be to check the application code for a memory leak. If you
+find that the application is behaving how you expect, consider setting a higher
+memory limit (and possibly request) for that container.
 
 ## {{% heading "whatsnext" %}}
 
-* Get hands-on experience [assigning Memory resources to Containers and Pods](/docs/tasks/configure-pod-container/assign-memory-resource/).
-* Get hands-on experience [assigning CPU resources to Containers and Pods](/docs/tasks/configure-pod-container/assign-cpu-resource/).
-* For more details about the difference between requests and limits, see
-  [Resource QoS](https://git.k8s.io/community/contributors/design-proposals/node/resource-qos.md).
-* Read the [Container](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core) API reference
-* Read the [ResourceRequirements](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#resourcerequirements-v1-core) API reference
-* Read about [project quotas](https://xfs.org/docs/xfsdocs-xml-dev/XFS_User_Guide/tmp/en-US/html/xfs-quotas.html) in XFS
-* Read more about the [kube-scheduler Policy reference (v1)](/docs/reference/config-api/kube-scheduler-policy-config.v1/)
+* Get hands-on experience [assigning Memory resources to containers and Pods](/docs/tasks/configure-pod-container/assign-memory-resource/).
+* Get hands-on experience [assigning CPU resources to containers and Pods](/docs/tasks/configure-pod-container/assign-cpu-resource/).
+* Read how the API reference defines a [container](/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container)
+  and its [resource requirements](/docs/reference/kubernetes-api/workload-resources/pod-v1/#resources)
+* Read about [project quotas](https://xfs.org/index.php/XFS_FAQ#Q:_Quota:_Do_quotas_work_on_XFS.3F) in XFS
+* Read more about the [kube-scheduler configuration reference (v1beta3)](/docs/reference/config-api/kube-scheduler-config.v1beta3/)
 
diff --git a/content/en/docs/concepts/configuration/organize-cluster-access-kubeconfig.md b/content/en/docs/concepts/configuration/organize-cluster-access-kubeconfig.md
index b27fcdee61..87c4737ad7 100644
--- a/content/en/docs/concepts/configuration/organize-cluster-access-kubeconfig.md
+++ b/content/en/docs/concepts/configuration/organize-cluster-access-kubeconfig.md
@@ -18,7 +18,7 @@ It does not mean that there is a file named `kubeconfig`.
 {{< /note >}}
 
 {{< warning >}}
-Only use kubeconfig files from trusted sources. Using a specially-crafted kubeconfig file could result in malicious code execution or file exposure. 
+Only use kubeconfig files from trusted sources. Using a specially-crafted kubeconfig file could result in malicious code execution or file exposure.
 If you must use an untrusted kubeconfig file, inspect it carefully first, much as you would a shell script.
 {{< /warning>}}
 
@@ -53,7 +53,7 @@ clusters and namespaces.
 A *context* element in a kubeconfig file is used to group access parameters
 under a convenient name. Each context has three parameters: cluster, namespace, and user.
 By default, the `kubectl` command-line tool uses parameters from
-the *current context* to communicate with the cluster. 
+the *current context* to communicate with the cluster.
 
 To choose the current context:
 ```
@@ -148,7 +148,27 @@ File references on the command line are relative to the current working director
 In `$HOME/.kube/config`, relative paths are stored relatively, and absolute paths
 are stored absolutely.
 
+## Proxy
 
+You can configure `kubectl` to use a proxy per cluster using `proxy-url` in your kubeconfig file, like this:
+
+```yaml
+apiVersion: v1
+kind: Config
+
+clusters:
+- cluster:
+    proxy-url: http://proxy.example.org:3128
+    server: https://k8s.example.org/k8s/clusters/c-xxyyzz
+  name: development
+
+users:
+- name: developer
+
+contexts:
+- context:
+  name: development
+```
 
 
 ## {{% heading "whatsnext" %}}
diff --git a/content/en/docs/concepts/configuration/overview.md b/content/en/docs/concepts/configuration/overview.md
index 36eebe3abc..5dc5a64826 100644
--- a/content/en/docs/concepts/configuration/overview.md
+++ b/content/en/docs/concepts/configuration/overview.md
@@ -55,7 +55,7 @@ DNS server watches the Kubernetes API for new `Services` and creates a set of DN
 
   If you only need access to the port for debugging purposes, you can use the [apiserver proxy](/docs/tasks/access-application-cluster/access-cluster/#manually-constructing-apiserver-proxy-urls) or [`kubectl port-forward`](/docs/tasks/access-application-cluster/port-forward-access-application-cluster/).
 
-  If you explicitly need to expose a Pod's port on the node, consider using a [NodePort](/docs/concepts/services-networking/service/#nodeport) Service before resorting to `hostPort`.
+  If you explicitly need to expose a Pod's port on the node, consider using a [NodePort](/docs/concepts/services-networking/service/#type-nodeport) Service before resorting to `hostPort`.
 
 - Avoid using `hostNetwork`, for the same reasons as `hostPort`.
 
@@ -63,7 +63,7 @@ DNS server watches the Kubernetes API for new `Services` and creates a set of DN
 
 ## Using Labels
 
-- Define and use [labels](/docs/concepts/overview/working-with-objects/labels/) that identify __semantic attributes__ of your application or Deployment, such as `{ app: myapp, tier: frontend, phase: test, deployment: v3 }`. You can use these labels to select the appropriate Pods for other resources; for example, a Service that selects all `tier: frontend` Pods, or all `phase: test` components of `app: myapp`. See the [guestbook](https://github.com/kubernetes/examples/tree/master/guestbook/) app for examples of this approach.
+- Define and use [labels](/docs/concepts/overview/working-with-objects/labels/) that identify __semantic attributes__ of your application or Deployment, such as `{ app.kubernetes.io/name: MyApp, tier: frontend, phase: test, deployment: v3 }`. You can use these labels to select the appropriate Pods for other resources; for example, a Service that selects all `tier: frontend` Pods, or all `phase: test` components of `app.kubernetes.io/name: MyApp`. See the [guestbook](https://github.com/kubernetes/examples/tree/master/guestbook/) app for examples of this approach.
 
 A Service can be made to span multiple Deployments by omitting release-specific labels from its selector. When you need to update a running service without downtime, use a [Deployment](/docs/concepts/workloads/controllers/deployment/).
 
diff --git a/content/en/docs/concepts/configuration/secret.md b/content/en/docs/concepts/configuration/secret.md
index e1c7dfb79b..f83372532f 100644
--- a/content/en/docs/concepts/configuration/secret.md
+++ b/content/en/docs/concepts/configuration/secret.md
@@ -6,7 +6,8 @@ content_type: concept
 feature:
   title: Secret and configuration management
   description: >
-    Deploy and update secrets and application configuration without rebuilding your image and without exposing secrets in your stack configuration.
+    Deploy and update secrets and application configuration without rebuilding your image
+    and without exposing secrets in your stack configuration.
 weight: 30
 ---
 
@@ -22,8 +23,8 @@ application code.
 Because Secrets can be created independently of the Pods that use them, there
 is less risk of the Secret (and its data) being exposed during the workflow of
 creating, viewing, and editing Pods. Kubernetes, and applications that run in
-your cluster, can also take additional precautions with Secrets, such as
-avoiding writing confidential data to nonvolatile storage.
+your cluster, can also take additional precautions with Secrets, such as avoiding
+writing secret data to nonvolatile storage.
 
 Secrets are similar to {{< glossary_tooltip text="ConfigMaps" term_id="configmap" >}}
 but are specifically intended to hold confidential data.
@@ -35,19 +36,21 @@ Additionally, anyone who is authorized to create a Pod in a namespace can use th
 In order to safely use Secrets, take at least the following steps:
 
 1. [Enable Encryption at Rest](/docs/tasks/administer-cluster/encrypt-data/) for Secrets.
-2. Enable or configure [RBAC rules](/docs/reference/access-authn-authz/authorization/) that
-   restrict reading data in Secrets (including via indirect means).
-3. Where appropriate, also use mechanisms such as RBAC to limit which principals are allowed to create new Secrets or replace existing ones.
+1. [Enable or configure RBAC rules](/docs/reference/access-authn-authz/authorization/) that
+   restrict reading and writing the Secret. Be aware that secrets can be obtained
+   implicitly by anyone with the permission to create a Pod.
+1. Where appropriate, also use mechanisms such as RBAC to limit which principals are allowed
+   to create new Secrets or replace existing ones.
 
 {{< /caution >}}
 
+See [Information security for Secrets](#information-security-for-secrets) for more details.
+
 <!-- body -->
 
-## Overview of Secrets
-
-To use a Secret, a Pod needs to reference the Secret.
-A Secret can be used with a Pod in three ways:
+## Uses for Secrets
 
+There are three main ways for a Pod to use a Secret:
 - As [files](#using-secrets-as-files-from-a-pod) in a
   {{< glossary_tooltip text="volume" term_id="volume" >}} mounted on one or more of
   its containers.
@@ -58,8 +61,50 @@ The Kubernetes control plane also uses Secrets; for example,
 [bootstrap token Secrets](#bootstrap-token-secrets) are a mechanism to
 help automate node registration.
 
+### Alternatives to Secrets
+
+Rather than using a Secret to protect confidential data, you can pick from alternatives.
+
+Here are some of your options:
+
+- if your cloud-native component needs to authenticate to another application that you
+  know is running within the same Kubernetes cluster, you can use a
+  [ServiceAccount](/docs/reference/access-authn-authz/authentication/#service-account-tokens)
+  and its tokens to identify your client.
+- there are third-party tools that you can run, either within or outside your cluster,
+  that provide secrets management. For example, a service that Pods access over HTTPS,
+  that reveals a secret if the client correctly authenticates (for example, with a ServiceAccount
+  token).
+- for authentication, you can implement a custom signer for X.509 certificates, and use
+  [CertificateSigningRequests](/docs/reference/access-authn-authz/certificate-signing-requests/)
+  to let that custom signer issue certificates to Pods that need them.
+- you can use a [device plugin](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)
+  to expose node-local encryption hardware to a specific Pod. For example, you can schedule
+  trusted Pods onto nodes that provide a Trusted Platform Module, configured out-of-band.
+
+You can also combine two or more of those options, including the option to use Secret objects themselves.
+
+For example: implement (or deploy) an {{< glossary_tooltip text="operator" term_id="operator-pattern" >}}
+that fetches short-lived session tokens from an external service, and then creates Secrets based
+on those short-lived session tokens. Pods running in your cluster can make use of the session tokens,
+and operator ensures they are valid. This separation means that you can run Pods that are unaware of
+the exact mechanisms for issuing and refreshing those session tokens.
+
+## Working with Secrets
+
+### Creating a Secret
+
+There are several options to create a Secret:
+
+- [create Secret using `kubectl` command](/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
+- [create Secret from config file](/docs/tasks/configmap-secret/managing-secret-using-config-file/)
+- [create Secret using kustomize](/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
+
+#### Constraints on Secret names and data {#restriction-names-data}
+
 The name of a Secret object must be a valid
 [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
+
 You can specify the `data` and/or the `stringData` field when creating a
 configuration file for a Secret.  The `data` and the `stringData` fields are optional.
 The values for all keys in the `data` field have to be base64-encoded strings.
@@ -72,21 +117,734 @@ merged into the `data` field. If a key appears in both the `data` and the
 `stringData` field, the value specified in the `stringData` field takes
 precedence.
 
+#### Size limit {#restriction-data-size}
+
+Individual secrets are limited to 1MiB in size. This is to discourage creation
+of very large secrets that could exhaust the API server and kubelet memory.
+However, creation of many smaller secrets could also exhaust memory. You can
+use a [resource quota](/docs/concepts/policy/resource-quotas/) to limit the
+number of Secrets (or other resources) in a namespace.
+
+### Editing a Secret
+
+You can edit an existing Secret using kubectl:
+
+```shell
+kubectl edit secrets mysecret
+```
+
+This opens your default editor and allows you to update the base64 encoded Secret
+values in the `data` field; for example:
+
+```yaml
+# Please edit the object below. Lines beginning with a '#' will be ignored,
+# and an empty file will abort the edit. If an error occurs while saving this file, it will be
+# reopened with the relevant failures.
+#
+apiVersion: v1
+data:
+  username: YWRtaW4=
+  password: MWYyZDFlMmU2N2Rm
+kind: Secret
+metadata:
+  annotations:
+    kubectl.kubernetes.io/last-applied-configuration: { ... }
+  creationTimestamp: 2020-01-22T18:41:56Z
+  name: mysecret
+  namespace: default
+  resourceVersion: "164619"
+  uid: cfee02d6-c137-11e5-8d73-42010af00002
+type: Opaque
+```
+
+That example manifest defines a Secret with two keys in the `data` field: `username` and `password`.
+The values are Base64 strings in the manifest; however, when you use the Secret with a Pod
+then the kubelet provides the _decoded_ data to the Pod and its containers.
+
+You can package many keys and values into one Secret, or use many Secrets, whichever is convenient.
+
+### Using a Secret
+
+Secrets can be mounted as data volumes or exposed as
+{{< glossary_tooltip text="environment variables" term_id="container-env-variables" >}}
+to be used by a container in a Pod. Secrets can also be used by other parts of the
+system, without being directly exposed to the Pod. For example, Secrets can hold
+credentials that other parts of the system should use to interact with external
+systems on your behalf.
+
+Secret volume sources are validated to ensure that the specified object
+reference actually points to an object of type Secret. Therefore, a Secret
+needs to be created before any Pods that depend on it.  
+
+If the Secret cannot be fetched (perhaps because it does not exist, or
+due to a temporary lack of connection to the API server) the kubelet
+periodically retries running that Pod. The kubelet also reports an Event
+for that Pod, including details of the problem fetching the Secret.
+
+#### Optional Secrets {#restriction-secret-must-exist}
+
+When you define a container environment variable based on a Secret,
+you can mark it as _optional_. The default is for the Secret to be
+required.
+
+None of a Pod's containers will start until all non-optional Secrets are
+available.
+
+If a Pod references a specific key in a Secret and that Secret does exist, but
+is missing the named key, the Pod fails during startup.
+
+### Using Secrets as files from a Pod {#using-secrets-as-files-from-a-pod}
+
+If you want to access data from a Secret in a Pod, one way to do that is to
+have Kubernetes make the value of that Secret be available as a file inside
+the filesystem of one or more of the Pod's containers.
+
+To configure that, you:
+
+1. Create a secret or use an existing one. Multiple Pods can reference the same secret.
+1. Modify your Pod definition to add a volume under `.spec.volumes[]`. Name the volume anything, and have a `.spec.volumes[].secret.secretName` field equal to the name of the Secret object.
+1. Add a `.spec.containers[].volumeMounts[]` to each container that needs the secret. Specify `.spec.containers[].volumeMounts[].readOnly = true` and `.spec.containers[].volumeMounts[].mountPath` to an unused directory name where you would like the secrets to appear.
+1. Modify your image or command line so that the program looks for files in that directory. Each key in the secret `data` map becomes the filename under `mountPath`.
+
+This is an example of a Pod that mounts a Secret named `mysecret` in a volume:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: mypod
+spec:
+  containers:
+  - name: mypod
+    image: redis
+    volumeMounts:
+    - name: foo
+      mountPath: "/etc/foo"
+      readOnly: true
+  volumes:
+  - name: foo
+    secret:
+      secretName: mysecret
+      optional: false # default setting; "mysecret" must exist
+```
+
+Each Secret you want to use needs to be referred to in `.spec.volumes`.
+
+If there are multiple containers in the Pod, then each container needs its
+own `volumeMounts` block, but only one `.spec.volumes` is needed per Secret.
+
+{{< note >}}
+Versions of Kubernetes before v1.22 automatically created credentials for accessing
+the Kubernetes API. This older mechanism was based on creating token Secrets that
+could then be mounted into running Pods.
+In more recent versions, including Kubernetes v{{< skew currentVersion >}}, API credentials
+are obtained directly by using the [TokenRequest](/docs/reference/kubernetes-api/authentication-resources/token-request-v1/) API,
+and are mounted into Pods using a [projected volume](/docs/reference/access-authn-authz/service-accounts-admin/#bound-service-account-token-volume).
+The tokens obtained using this method have bounded lifetimes, and are automatically
+invalidated when the Pod they are mounted into is deleted.
+
+You can still [manually create](/docs/tasks/configure-pod-container/configure-service-account/#manually-create-a-service-account-api-token)
+a service account token Secret; for example, if you need a token that never expires.
+However, using the [TokenRequest](/docs/reference/kubernetes-api/authentication-resources/token-request-v1/)
+subresource to obtain a token to access the API is recommended instead.
+You can use the [`kubectl create token`](/docs/reference/generated/kubectl/kubectl-commands#-em-token-em-)
+command to obtain a token from the `TokenRequest` API.
+{{< /note >}}
+
+#### Projection of Secret keys to specific paths
+
+You can also control the paths within the volume where Secret keys are projected.
+You can use the `.spec.volumes[].secret.items` field to change the target path of each key:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: mypod
+spec:
+  containers:
+  - name: mypod
+    image: redis
+    volumeMounts:
+    - name: foo
+      mountPath: "/etc/foo"
+      readOnly: true
+  volumes:
+  - name: foo
+    secret:
+      secretName: mysecret
+      items:
+      - key: username
+        path: my-group/my-username
+```
+
+What will happen:
+
+* the `username` key from `mysecret` is available to the container at the path
+  `/etc/foo/my-group/my-username` instead of at `/etc/foo/username`.
+* the `password` key from that Secret object is not projected.
+
+If `.spec.volumes[].secret.items` is used, only keys specified in `items` are projected.
+To consume all keys from the Secret, all of them must be listed in the `items` field.
+
+If you list keys explicitly, then all listed keys must exist in the corresponding Secret.
+Otherwise, the volume is not created.
+
+#### Secret files permissions
+
+You can set the POSIX file access permission bits for a single Secret key.
+If you don't specify any permissions, `0644` is used by default.
+You can also set a default mode for the entire Secret volume and override per key if needed.
+
+For example, you can specify a default mode like this:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: mypod
+spec:
+  containers:
+  - name: mypod
+    image: redis
+    volumeMounts:
+    - name: foo
+      mountPath: "/etc/foo"
+  volumes:
+  - name: foo
+    secret:
+      secretName: mysecret
+      defaultMode: 0400
+```
+
+The secret is mounted on `/etc/foo`; all the files created by the
+secret volume mount have permission `0400`.
+
+
+{{< note >}}
+If you're defining a Pod or a Pod template using JSON, beware that the JSON
+specification doesn't support octal notation. You can use the decimal value
+for the `defaultMode` (for example, 0400 in octal is 256 in decimal) instead.  
+If you're writing YAML, you can write the `defaultMode` in octal.
+{{< /note >}}
+
+#### Consuming Secret values from volumes
+
+Inside the container that mounts a secret volume, the secret keys appear as
+files. The secret values are base64 decoded and stored inside these files.
+
+This is the result of commands executed inside the container from the example above:
+
+```shell
+ls /etc/foo/
+```
+
+The output is similar to:
+
+```
+username
+password
+```
+
+```shell
+cat /etc/foo/username
+```
+
+The output is similar to:
+
+```
+admin
+```
+
+```shell
+cat /etc/foo/password
+```
+
+The output is similar to:
+
+```
+1f2d1e2e67df
+```
+
+The program in a container is responsible for reading the secret data from these
+files, as needed.
+
+#### Mounted Secrets are updated automatically
+
+When a volume contains data from a Secret, and that Secret is updated, Kubernetes tracks
+this and updates the data in the volume, using an eventually-consistent approach.
+
+{{< note >}}
+A container using a Secret as a
+[subPath](/docs/concepts/storage/volumes#using-subpath) volume mount does not receive
+automated Secret updates.
+{{< /note >}}
+
+The kubelet keeps a cache of the current keys and values for the Secrets that are used in
+volumes for pods on that node.
+You can configure the way that the kubelet detects changes from the cached values. The `configMapAndSecretChangeDetectionStrategy` field in
+the [kubelet configuration](/docs/reference/config-api/kubelet-config.v1beta1/) controls which strategy the kubelet uses. The default strategy is `Watch`.
+
+Updates to Secrets can be either propagated by an API watch mechanism (the default), based on
+a cache with a defined time-to-live, or polled from the cluster API server on each kubelet
+synchronisation loop.
+
+As a result, the total delay from the moment when the Secret is updated to the moment
+when new keys are projected to the Pod can be as long as the kubelet sync period + cache
+propagation delay, where the cache propagation delay depends on the chosen cache type
+(following the same order listed in the previous paragraph, these are:
+watch propagation delay, the configured cache TTL, or zero for direct polling).
+
+### Using Secrets as environment variables
+
+To use a Secret in an {{< glossary_tooltip text="environment variable" term_id="container-env-variables" >}}
+in a Pod:
+
+1. Create a Secret (or use an existing one).  Multiple Pods can reference the same Secret.
+1. Modify your Pod definition in each container that you wish to consume the value of a secret
+   key to add an environment variable for each secret key you wish to consume. The environment
+   variable that consumes the secret key should populate the secret's name and key in `env[].valueFrom.secretKeyRef`.
+1. Modify your image and/or command line so that the program looks for values in the specified
+   environment variables.
+
+This is an example of a Pod that uses a Secret via environment variables:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: secret-env-pod
+spec:
+  containers:
+  - name: mycontainer
+    image: redis
+    env:
+      - name: SECRET_USERNAME
+        valueFrom:
+          secretKeyRef:
+            name: mysecret
+            key: username
+            optional: false # same as default; "mysecret" must exist
+                            # and include a key named "username"
+      - name: SECRET_PASSWORD
+        valueFrom:
+          secretKeyRef:
+            name: mysecret
+            key: password
+            optional: false # same as default; "mysecret" must exist
+                            # and include a key named "password"
+  restartPolicy: Never
+```
+
+
+#### Invalid environment variables {#restriction-env-from-invalid}
+
+Secrets used to populate environment variables by the `envFrom` field that have keys
+that are considered invalid environment variable names will have those keys
+skipped. The Pod is allowed to start.
+
+If you define a Pod with an invalid variable name, the failed Pod startup includes
+an event with the reason set to `InvalidVariableNames` and a message that lists the
+skipped invalid keys. The following example shows a Pod that refers to a Secret
+named `mysecret`, where `mysecret` contains 2 invalid keys: `1badkey` and `2alsobad`.
+
+```shell
+kubectl get events
+```
+
+The output is similar to:
+
+```
+LASTSEEN   FIRSTSEEN   COUNT     NAME            KIND      SUBOBJECT                         TYPE      REASON
+0s         0s          1         dapi-test-pod   Pod                                         Warning   InvalidEnvironmentVariableNames   kubelet, 127.0.0.1      Keys [1badkey, 2alsobad] from the EnvFrom secret default/mysecret were skipped since they are considered invalid environment variable names.
+```
+
+
+#### Consuming Secret values from environment variables
+
+Inside a container that consumes a Secret using environment variables, the secret keys appear
+as normal environment variables. The values of those variables are the base64 decoded values
+of the secret data.
+
+This is the result of commands executed inside the container from the example above:
+
+```shell
+echo "$SECRET_USERNAME"
+```
+
+The output is similar to:
+
+```
+admin
+```
+
+```shell
+echo "$SECRET_PASSWORD"
+```
+
+The output is similar to:
+
+```
+1f2d1e2e67df
+```
+
+{{< note >}}
+If a container already consumes a Secret in an environment variable,
+a Secret update will not be seen by the container unless it is
+restarted. There are third party solutions for triggering restarts when
+secrets change.
+{{< /note >}}
+
+### Container image pull secrets {#using-imagepullsecrets}
+
+If you want to fetch container images from a private repository, you need a way for
+the kubelet on each node to authenticate to that repository. You can configure
+_image pull secrets_ to make this possible. These secrets are configured at the Pod
+level.
+
+The `imagePullSecrets` field for a Pod is a list of references to Secrets in the same namespace
+as the Pod.
+You can use an `imagePullSecrets` to pass image registry access credentials to
+the kubelet. The kubelet uses this information to pull a private image on behalf of your Pod.
+See `PodSpec` in the [Pod API reference](/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodSpec)
+for more information about the `imagePullSecrets` field.
+
+#### Using imagePullSecrets
+
+The `imagePullSecrets` field is a list of references to secrets in the same namespace.
+You can use an `imagePullSecrets` to pass a secret that contains a Docker (or other) image registry
+password to the kubelet. The kubelet uses this information to pull a private image on behalf of your Pod.
+See the [PodSpec API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core) for more information about the `imagePullSecrets` field.
+
+##### Manually specifying an imagePullSecret
+
+You can learn how to specify `imagePullSecrets` from the [container images](/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod)
+documentation.
+
+##### Arranging for imagePullSecrets to be automatically attached
+
+You can manually create `imagePullSecrets`, and reference these from
+a ServiceAccount. Any Pods created with that ServiceAccount
+or created with that ServiceAccount by default, will get their `imagePullSecrets`
+field set to that of the service account.
+See [Add ImagePullSecrets to a service account](/docs/tasks/configure-pod-container/configure-service-account/#add-imagepullsecrets-to-a-service-account)
+ for a detailed explanation of that process.
+
+### Using Secrets with static Pods {#restriction-static-pod}
+
+You cannot use ConfigMaps or Secrets with
+{{< glossary_tooltip text="static Pods" term_id="static-pod" >}}.
+
+## Use cases
+
+### Use case: As container environment variables
+
+Create a secret
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: mysecret
+type: Opaque
+data:
+  USER_NAME: YWRtaW4=
+  PASSWORD: MWYyZDFlMmU2N2Rm
+```
+
+Create the Secret:
+```shell
+kubectl apply -f mysecret.yaml
+```
+
+Use `envFrom` to define all of the Secret's data as container environment variables. The key from the Secret becomes the environment variable name in the Pod.
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: secret-test-pod
+spec:
+  containers:
+    - name: test-container
+      image: k8s.gcr.io/busybox
+      command: [ "/bin/sh", "-c", "env" ]
+      envFrom:
+      - secretRef:
+          name: mysecret
+  restartPolicy: Never
+```
+
+### Use case: Pod with SSH keys
+
+Create a Secret containing some SSH keys:
+
+```shell
+kubectl create secret generic ssh-key-secret --from-file=ssh-privatekey=/path/to/.ssh/id_rsa --from-file=ssh-publickey=/path/to/.ssh/id_rsa.pub
+```
+
+The output is similar to:
+
+```
+secret "ssh-key-secret" created
+```
+
+You can also create a `kustomization.yaml` with a `secretGenerator` field containing ssh keys.
+
+{{< caution >}}
+Think carefully before sending your own SSH keys: other users of the cluster may have access
+to the Secret.
+
+You could instead create an SSH private key representing a service identity that you want to be
+accessible to all the users with whom you share the Kubernetes cluster, and that you can revoke
+if the credentials are compromised.
+{{< /caution >}}
+
+Now you can create a Pod which references the secret with the SSH key and
+consumes it in a volume:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: secret-test-pod
+  labels:
+    name: secret-test
+spec:
+  volumes:
+  - name: secret-volume
+    secret:
+      secretName: ssh-key-secret
+  containers:
+  - name: ssh-test-container
+    image: mySshImage
+    volumeMounts:
+    - name: secret-volume
+      readOnly: true
+      mountPath: "/etc/secret-volume"
+```
+
+When the container's command runs, the pieces of the key will be available in:
+
+```
+/etc/secret-volume/ssh-publickey
+/etc/secret-volume/ssh-privatekey
+```
+
+The container is then free to use the secret data to establish an SSH connection.
+
+### Use case: Pods with prod / test credentials
+
+This example illustrates a Pod which consumes a secret containing production
+credentials and another Pod which consumes a secret with test environment
+credentials.
+
+You can create a `kustomization.yaml` with a `secretGenerator` field or run
+`kubectl create secret`.
+
+```shell
+kubectl create secret generic prod-db-secret --from-literal=username=produser --from-literal=password=Y4nys7f11
+```
+
+The output is similar to:
+
+```
+secret "prod-db-secret" created
+```
+
+You can also create a secret for test environment credentials.
+
+```shell
+kubectl create secret generic test-db-secret --from-literal=username=testuser --from-literal=password=iluvtests
+```
+
+The output is similar to:
+
+```
+secret "test-db-secret" created
+```
+
+{{< note >}}
+Special characters such as `$`, `\`, `*`, `=`, and `!` will be interpreted by your [shell](https://en.wikipedia.org/wiki/Shell_(computing)) and require escaping.
+
+In most shells, the easiest way to escape the password is to surround it with single quotes (`'`).
+For example, if your actual password is `S!B\*d$zDsb=`, you should execute the command this way:
+
+```shell
+kubectl create secret generic dev-db-secret --from-literal=username=devuser --from-literal=password='S!B\*d$zDsb='
+```
+
+You do not need to escape special characters in passwords from files (`--from-file`).
+{{< /note >}}
+
+Now make the Pods:
+
+```shell
+cat <<EOF > pod.yaml
+apiVersion: v1
+kind: List
+items:
+- kind: Pod
+  apiVersion: v1
+  metadata:
+    name: prod-db-client-pod
+    labels:
+      name: prod-db-client
+  spec:
+    volumes:
+    - name: secret-volume
+      secret:
+        secretName: prod-db-secret
+    containers:
+    - name: db-client-container
+      image: myClientImage
+      volumeMounts:
+      - name: secret-volume
+        readOnly: true
+        mountPath: "/etc/secret-volume"
+- kind: Pod
+  apiVersion: v1
+  metadata:
+    name: test-db-client-pod
+    labels:
+      name: test-db-client
+  spec:
+    volumes:
+    - name: secret-volume
+      secret:
+        secretName: test-db-secret
+    containers:
+    - name: db-client-container
+      image: myClientImage
+      volumeMounts:
+      - name: secret-volume
+        readOnly: true
+        mountPath: "/etc/secret-volume"
+EOF
+```
+
+Add the pods to the same `kustomization.yaml`:
+
+```shell
+cat <<EOF >> kustomization.yaml
+resources:
+- pod.yaml
+EOF
+```
+
+Apply all those objects on the API server by running:
+
+```shell
+kubectl apply -k .
+```
+
+Both containers will have the following files present on their filesystems with the values
+for each container's environment:
+
+```
+/etc/secret-volume/username
+/etc/secret-volume/password
+```
+
+Note how the specs for the two Pods differ only in one field; this facilitates
+creating Pods with different capabilities from a common Pod template.
+
+You could further simplify the base Pod specification by using two service accounts:
+
+1. `prod-user` with the `prod-db-secret`
+1. `test-user` with the `test-db-secret`
+
+The Pod specification is shortened to:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: prod-db-client-pod
+  labels:
+    name: prod-db-client
+spec:
+  serviceAccount: prod-db-client
+  containers:
+  - name: db-client-container
+    image: myClientImage
+```
+
+### Use case: dotfiles in a secret volume
+
+You can make your data "hidden" by defining a key that begins with a dot.
+This key represents a dotfile or "hidden" file. For example, when the following secret
+is mounted into a volume, `secret-volume`:
+
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: dotfile-secret
+data:
+  .secret-file: dmFsdWUtMg0KDQo=
+---
+apiVersion: v1
+kind: Pod
+metadata:
+  name: secret-dotfiles-pod
+spec:
+  volumes:
+  - name: secret-volume
+    secret:
+      secretName: dotfile-secret
+  containers:
+  - name: dotfile-test-container
+    image: k8s.gcr.io/busybox
+    command:
+    - ls
+    - "-l"
+    - "/etc/secret-volume"
+    volumeMounts:
+    - name: secret-volume
+      readOnly: true
+      mountPath: "/etc/secret-volume"
+```
+
+The volume will contain a single file, called `.secret-file`, and
+the `dotfile-test-container` will have this file present at the path
+`/etc/secret-volume/.secret-file`.
+
+{{< note >}}
+Files beginning with dot characters are hidden from the output of  `ls -l`;
+you must use `ls -la` to see them when listing directory contents.
+{{< /note >}}
+
+### Use case: Secret visible to one container in a Pod
+
+Consider a program that needs to handle HTTP requests, do some complex business
+logic, and then sign some messages with an HMAC. Because it has complex
+application logic, there might be an unnoticed remote file reading exploit in
+the server, which could expose the private key to an attacker.
+
+This could be divided into two processes in two containers: a frontend container
+which handles user interaction and business logic, but which cannot see the
+private key; and a signer container that can see the private key, and responds
+to simple signing requests from the frontend (for example, over localhost networking).
+
+With this partitioned approach, an attacker now has to trick the application
+server into doing something rather arbitrary, which may be harder than getting
+it to read a file.
+
 ## Types of Secret {#secret-types}
 
 When creating a Secret, you can specify its type using the `type` field of
-a Secret resource, or certain equivalent `kubectl` command line flags (if available).
-The `type` of a Secret is used to facilitate programmatic handling of different
-kinds of confidential data.
+the [Secret](/docs/reference/kubernetes-api/config-and-storage-resources/secret-v1/)
+resource, or certain equivalent `kubectl` command line flags (if available).
+The Secret type is used to facilitate programmatic handling of the Secret data.
 
-Kubernetes provides several builtin types for some common usage scenarios.
+Kubernetes provides several built-in types for some common usage scenarios.
 These types vary in terms of the validations performed and the constraints
 Kubernetes imposes on them.
 
-| Builtin Type | Usage |
+| Built-in Type | Usage |
 |--------------|-------|
 | `Opaque`     |  arbitrary user-defined data |
-| `kubernetes.io/service-account-token` | service account token |
+| `kubernetes.io/service-account-token` | ServiceAccount token |
 | `kubernetes.io/dockercfg` | serialized `~/.dockercfg` file |
 | `kubernetes.io/dockerconfigjson` | serialized `~/.docker/config.json` file |
 | `kubernetes.io/basic-auth` | credentials for basic authentication |
@@ -95,11 +853,16 @@ Kubernetes imposes on them.
 | `bootstrap.kubernetes.io/token` | bootstrap token data |
 
 You can define and use your own Secret type by assigning a non-empty string as the
-`type` value for a Secret object. An empty string is treated as an `Opaque` type.
+`type` value for a Secret object (an empty string is treated as an `Opaque` type).
+
 Kubernetes doesn't impose any constraints on the type name. However, if you
-are using one of the builtin types, you must meet all the requirements defined
+are using one of the built-in types, you must meet all the requirements defined
 for that type.
 
+If you are defining a type of secret that's for public use, follow the convention
+and structure the secret type to have your domain name before the name, separated
+by a `/`. For example: `cloud-hosting.example.net/cloud-api-credentials`.
+
 ### Opaque secrets
 
 `Opaque` is the default Secret type if omitted from a Secret configuration file.
@@ -120,16 +883,35 @@ empty-secret   Opaque   0      2m6s
 ```
 
 The `DATA` column shows the number of data items stored in the Secret.
-In this case, `0` means we have created an empty Secret.
+In this case, `0` means you have created an empty Secret.
 
-###  Service account token Secrets
+### Service account token Secrets
 
 A `kubernetes.io/service-account-token` type of Secret is used to store a
-token that identifies a service account. When using this Secret type, you need
-to ensure that the `kubernetes.io/service-account.name` annotation is set to an
-existing service account name. A Kubernetes controller fills in some other
-fields such as the `kubernetes.io/service-account.uid` annotation and the
-`token` key in the `data` field set to actual token content.
+token credential that identifies a
+{{< glossary_tooltip text="service account" term_id="service-account" >}}.
+
+Since 1.22, this type of Secret is no longer used to mount credentials into Pods,
+and obtaining tokens via the [TokenRequest](/docs/reference/kubernetes-api/authentication-resources/token-request-v1/)
+API is recommended instead of using service account token Secret objects.
+Tokens obtained from the `TokenRequest` API are more secure than ones stored in Secret objects,
+because they have a bounded lifetime and are not readable by other API clients.
+You can use the [`kubectl create token`](/docs/reference/generated/kubectl/kubectl-commands#-em-token-em-)
+command to obtain a token from the `TokenRequest` API.
+
+You should only create a service account token Secret object
+if you can't use the `TokenRequest` API to obtain a token,
+and the security exposure of persisting a non-expiring token credential
+in a readable API object is acceptable to you.
+
+When using this Secret type, you need to ensure that the
+`kubernetes.io/service-account.name` annotation is set to an existing
+service account name. If you are creating both the ServiceAccount and
+the Secret objects, you should create the ServiceAccount object first.
+
+After the Secret is created, a Kubernetes {{< glossary_tooltip text="controller" term_id="controller" >}}
+fills in some other fields such as the `kubernetes.io/service-account.uid` annotation, and the
+`token` key in the `data` field, which is populated with an authentication token.
 
 The following example configuration declares a service account token Secret:
 
@@ -146,25 +928,19 @@ data:
   extra: YmFyCg==
 ```
 
-When creating a `Pod`, Kubernetes automatically creates a service account Secret
-and automatically modifies your Pod to use this Secret. The service account token
-Secret contains credentials for accessing the API.
-
-The automatic creation and use of API credentials can be disabled or
-overridden if desired. However, if all you need to do is securely access the
-API server, this is the recommended workflow.
+After creating the Secret, wait for Kubernetes to populate the `token` key in the `data` field.
 
 See the [ServiceAccount](/docs/tasks/configure-pod-container/configure-service-account/)
-documentation for more information on how service accounts work.
+documentation for more information on how service accounts work.  
 You can also check the `automountServiceAccountToken` field and the
 `serviceAccountName` field of the
 [`Pod`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#pod-v1-core)
-for information on referencing service account from Pods.
+for information on referencing service account credentials from within Pods.
 
 ### Docker config Secrets
 
 You can use one of the following `type` values to create a Secret to
-store the credentials for accessing a Docker registry for images.
+store the credentials for accessing a container image registry:
 
 - `kubernetes.io/dockercfg`
 - `kubernetes.io/dockerconfigjson`
@@ -201,52 +977,64 @@ If you do not want to perform the base64 encoding, you can choose to use the
 {{< /note >}}
 
 When you create these types of Secrets using a manifest, the API
-server checks whether the expected key does exists in the `data` field, and
+server checks whether the expected key exists in the `data` field, and
 it verifies if the value provided can be parsed as a valid JSON. The API
 server doesn't validate if the JSON actually is a Docker config file.
 
 When you do not have a Docker config file, or you want to use `kubectl`
-to create a Docker registry Secret, you can do:
+to create a Secret for accessing a container registry, you can do:
 
 ```shell
 kubectl create secret docker-registry secret-tiger-docker \
+  --docker-email=tiger@acme.example \
   --docker-username=tiger \
-  --docker-password=pass113 \
-  --docker-email=tiger@acme.com
+  --docker-password=pass1234 \
+  --docker-server=my-registry.example:5000
 ```
 
-This command creates a Secret of type `kubernetes.io/dockerconfigjson`.
-If you dump the `.dockerconfigjson` content from the `data` field, you will
-get the following JSON content which is a valid Docker configuration created
-on the fly:
+That command creates a Secret of type `kubernetes.io/dockerconfigjson`.
+If you dump the `.data.dockerconfigjson` field from that new Secret and then
+decode it from base64:
+
+```shell
+kubectl get secret secret-tiger-docker -o jsonpath='{.data.*}' | base64 -d
+```
+
+then the output is equivalent to this JSON document (which is also a valid
+Docker configuration file):
 
 ```json
 {
   "auths": {
-    "https://index.docker.io/v1/": {
+    "my-registry.example:5000": {
       "username": "tiger",
-      "password": "pass113",
-      "email": "tiger@acme.com",
-      "auth": "dGlnZXI6cGFzczExMw=="
+      "password": "pass1234",
+      "email": "tiger@acme.example",
+      "auth": "dGlnZXI6cGFzczEyMzQ="
     }
   }
 }
 ```
 
+{{< note >}}
+The `auth` value there is base64 encoded; it is obscured but not secret.
+Anyone who can read that Secret can learn the registry access bearer token.
+{{< /note >}}
+
 ### Basic authentication Secret
 
 The `kubernetes.io/basic-auth` type is provided for storing credentials needed
 for basic authentication. When using this Secret type, the `data` field of the
-Secret must contain the following two keys:
+Secret must contain one of the following two keys:
 
-- `username`: the user name for authentication;
-- `password`: the password or token for authentication.
+- `username`: the user name for authentication
+- `password`: the password or token for authentication
 
 Both values for the above two keys are base64 encoded strings. You can, of
 course, provide the clear text content using the `stringData` for Secret
 creation.
 
-The following YAML is an example config for a basic authentication Secret:
+The following manifest is an example of a basic authentication Secret:
 
 ```yaml
 apiVersion: v1
@@ -255,15 +1043,17 @@ metadata:
   name: secret-basic-auth
 type: kubernetes.io/basic-auth
 stringData:
-  username: admin
-  password: t0p-Secret
+  username: admin      # required field for kubernetes.io/basic-auth
+  password: t0p-Secret # required field for kubernetes.io/basic-auth
 ```
 
-The basic authentication Secret type is provided only for user's convenience.
-You can create an `Opaque` for credentials used for basic authentication.
-However, using the builtin Secret type helps unify the formats of your credentials
-and the API server does verify if the required keys are provided in a Secret
-configuration.
+The basic authentication Secret type is provided only for convenience.
+You can create an `Opaque` type for credentials used for basic authentication.
+However, using the defined and public Secret type (`kubernetes.io/basic-auth`) helps other
+people to understand the purpose of your Secret, and sets a convention for what key names
+to expect.
+The Kubernetes API verifies that the required keys are set for a Secret
+of this type.
 
 ### SSH authentication secrets
 
@@ -272,7 +1062,8 @@ SSH authentication. When using this Secret type, you will have to specify a
 `ssh-privatekey` key-value pair in the `data` (or `stringData`) field
 as the SSH credential to use.
 
-The following YAML is an example config for a SSH authentication Secret:
+The following manifest is an example of a Secret used for SSH public/private
+key authentication:
 
 ```yaml
 apiVersion: v1
@@ -287,8 +1078,10 @@ data:
 ```
 
 The SSH authentication Secret type is provided only for user's convenience.
-You can create an `Opaque` for credentials used for SSH authentication.
-However, using the builtin Secret type helps unify the formats of your credentials
+You could instead create an `Opaque` type Secret for credentials used for SSH authentication.
+However, using the defined and public Secret type (`kubernetes.io/ssh-auth`) helps other
+people to understand the purpose of your Secret, and sets a convention for what key names
+to expect.
 and the API server does verify if the required keys are provided in a Secret
 configuration.
 
@@ -302,9 +1095,11 @@ ConfigMap.
 ### TLS secrets
 
 Kubernetes provides a builtin Secret type `kubernetes.io/tls` for storing
-a certificate and its associated key that are typically used for TLS . This
-data is primarily used with TLS termination of the Ingress resource, but may
-be used with other resources or directly by a workload.
+a certificate and its associated key that are typically used for TLS.
+
+One common use for TLS secrets is to configure encryption in transit for
+an [Ingress](/docs/concepts/services-networking/ingress/), but you can also use it
+with other resources or directly in your workload.
 When using this type of Secret, the `tls.key` and the `tls.crt` key must be provided
 in the `data` (or `stringData`) field of the Secret configuration, although the API
 server doesn't actually validate the values for each key.
@@ -339,20 +1134,28 @@ kubectl create secret tls my-tls-secret \
   --key=path/to/key/file
 ```
 
-The public/private key pair must exist beforehand. The public key certificate
-for `--cert` must be .PEM encoded (Base64-encoded DER format), and match the
-given private key for `--key`.
-The private key must be in what is commonly called PEM private key format,
-unencrypted. In both cases, the initial and the last lines from PEM (for
-example, `--------BEGIN CERTIFICATE-----` and `-------END CERTIFICATE----` for
-a certificate) are *not* included.
+The public/private key pair must exist before hand. The public key certificate
+for `--cert` must be DER format as per
+[Section 5.1 of RFC 7468](https://datatracker.ietf.org/doc/html/rfc7468#section-5.1),
+and must match the given private key for `--key` (PKCS #8 in DER format;
+[Section 11 of RFC 7468](https://datatracker.ietf.org/doc/html/rfc7468#section-11)).
+
+{{< note >}}
+A kubernetes.io/tls Secret stores the Base64-encoded DER data for keys and
+certificates. If you're familiar with PEM format for private keys and for certificates,
+the base64 data are the same as that format except that you omit
+the initial and the last lines that are used in PEM.
+
+For example, for a certificate, you do **not** include `--------BEGIN CERTIFICATE-----`
+and `-------END CERTIFICATE----`.
+{{< /note >}}
 
 ### Bootstrap token Secrets
 
 A bootstrap token Secret can be created by explicitly specifying the Secret
 `type` to `bootstrap.kubernetes.io/token`. This type of Secret is designed for
 tokens used during the node bootstrap process. It stores tokens used to sign
-well known ConfigMaps.
+well-known ConfigMaps.
 
 A bootstrap token Secret is usually created in the `kube-system` namespace and
 named in the form `bootstrap-token-<token-id>` where `<token-id>` is a 6 character
@@ -414,367 +1217,23 @@ stringData:
   usage-bootstrap-signing: "true"
 ```
 
-## Creating a Secret
-
-There are several options to create a Secret:
-
-- [create Secret using `kubectl` command](/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
-- [create Secret from config file](/docs/tasks/configmap-secret/managing-secret-using-config-file/)
-- [create Secret using kustomize](/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
-
-## Editing a Secret
-
-An existing Secret may be edited with the following command:
-
-```shell
-kubectl edit secrets mysecret
-```
-
-This will open the default configured editor and allow for updating the base64 encoded Secret values in the `data` field:
-
-```yaml
-# Please edit the object below. Lines beginning with a '#' will be ignored,
-# and an empty file will abort the edit. If an error occurs while saving this file will be
-# reopened with the relevant failures.
-#
-apiVersion: v1
-data:
-  username: YWRtaW4=
-  password: MWYyZDFlMmU2N2Rm
-kind: Secret
-metadata:
-  annotations:
-    kubectl.kubernetes.io/last-applied-configuration: { ... }
-  creationTimestamp: 2016-01-22T18:41:56Z
-  name: mysecret
-  namespace: default
-  resourceVersion: "164619"
-  uid: cfee02d6-c137-11e5-8d73-42010af00002
-type: Opaque
-```
-
-## Using Secrets
-
-Secrets can be mounted as data volumes or exposed as
-{{< glossary_tooltip text="environment variables" term_id="container-env-variables" >}}
-to be used by a container in a Pod. Secrets can also be used by other parts of the
-system, without being directly exposed to the Pod. For example, Secrets can hold
-credentials that other parts of the system should use to interact with external
-systems on your behalf.
-
-### Using Secrets as files from a Pod
-
-To consume a Secret in a volume in a Pod:
-
-1. Create a secret or use an existing one. Multiple Pods can reference the same secret.
-1. Modify your Pod definition to add a volume under `.spec.volumes[]`. Name the volume anything, and have a `.spec.volumes[].secret.secretName` field equal to the name of the Secret object.
-1. Add a `.spec.containers[].volumeMounts[]` to each container that needs the secret. Specify `.spec.containers[].volumeMounts[].readOnly = true` and `.spec.containers[].volumeMounts[].mountPath` to an unused directory name where you would like the secrets to appear.
-1. Modify your image or command line so that the program looks for files in that directory. Each key in the secret `data` map becomes the filename under `mountPath`.
-
-This is an example of a Pod that mounts a Secret in a volume:
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: mypod
-spec:
-  containers:
-  - name: mypod
-    image: redis
-    volumeMounts:
-    - name: foo
-      mountPath: "/etc/foo"
-      readOnly: true
-  volumes:
-  - name: foo
-    secret:
-      secretName: mysecret
-```
-
-Each Secret you want to use needs to be referred to in `.spec.volumes`.
-
-If there are multiple containers in the Pod, then each container needs its
-own `volumeMounts` block, but only one `.spec.volumes` is needed per Secret.
-
-You can package many files into one secret, or use many secrets, whichever is convenient.
-
-#### Projection of Secret keys to specific paths
-
-You can also control the paths within the volume where Secret keys are projected.
-You can use the `.spec.volumes[].secret.items` field to change the target path of each key:
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: mypod
-spec:
-  containers:
-  - name: mypod
-    image: redis
-    volumeMounts:
-    - name: foo
-      mountPath: "/etc/foo"
-      readOnly: true
-  volumes:
-  - name: foo
-    secret:
-      secretName: mysecret
-      items:
-      - key: username
-        path: my-group/my-username
-```
-
-What will happen:
-
-* `username` secret is stored under `/etc/foo/my-group/my-username` file instead of `/etc/foo/username`.
-* `password` secret is not projected.
-
-If `.spec.volumes[].secret.items` is used, only keys specified in `items` are projected.
-To consume all keys from the secret, all of them must be listed in the `items` field.
-All listed keys must exist in the corresponding secret. Otherwise, the volume is not created.
-
-#### Secret files permissions
-
-You can set the file access permission bits for a single Secret key.
-If you don't specify any permissions, `0644` is used by default.
-You can also set a default mode for the entire Secret volume and override per key if needed.
-
-For example, you can specify a default mode like this:
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: mypod
-spec:
-  containers:
-  - name: mypod
-    image: redis
-    volumeMounts:
-    - name: foo
-      mountPath: "/etc/foo"
-  volumes:
-  - name: foo
-    secret:
-      secretName: mysecret
-      defaultMode: 0400
-```
-
-Then, the secret will be mounted on `/etc/foo` and all the files created by the
-secret volume mount will have permission `0400`.
-
-Note that the JSON spec doesn't support octal notation, so use the value 256 for
-0400 permissions. If you use YAML instead of JSON for the Pod, you can use octal
-notation to specify permissions in a more natural way.
-
-Note if you `kubectl exec` into the Pod, you need to follow the symlink to find
-the expected file mode. For example,
-
-Check the secrets file mode on the pod.
-```
-kubectl exec mypod -it sh
-
-cd /etc/foo
-ls -l
-```
-
-The output is similar to this:
-```
-total 0
-lrwxrwxrwx 1 root root 15 May 18 00:18 password -> ..data/password
-lrwxrwxrwx 1 root root 15 May 18 00:18 username -> ..data/username
-```
-
-Follow the symlink to find the correct file mode.
-
-```
-cd /etc/foo/..data
-ls -l
-```
-
-The output is similar to this:
-```
-total 8
--r-------- 1 root root 12 May 18 00:18 password
--r-------- 1 root root  5 May 18 00:18 username
-```
-
-You can also use mapping, as in the previous example, and specify different
-permissions for different files like this:
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: mypod
-spec:
-  containers:
-  - name: mypod
-    image: redis
-    volumeMounts:
-    - name: foo
-      mountPath: "/etc/foo"
-  volumes:
-  - name: foo
-    secret:
-      secretName: mysecret
-      items:
-      - key: username
-        path: my-group/my-username
-        mode: 0777
-```
-
-In this case, the file resulting in `/etc/foo/my-group/my-username` will have
-permission value of `0777`. If you use JSON, owing to JSON limitations, you
-must specify the mode in decimal notation, `511`.
-
-Note that this permission value might be displayed in decimal notation if you
-read it later.
-
-#### Consuming Secret values from volumes
-
-Inside the container that mounts a secret volume, the secret keys appear as
-files and the secret values are base64 decoded and stored inside these files.
-This is the result of commands executed inside the container from the example above:
-
-```shell
-ls /etc/foo/
-```
-
-The output is similar to:
-
-```
-username
-password
-```
-
-```shell
-cat /etc/foo/username
-```
-
-The output is similar to:
-
-```
-admin
-```
-
-```shell
-cat /etc/foo/password
-```
-
-The output is similar to:
-
-```
-1f2d1e2e67df
-```
-
-The program in a container is responsible for reading the secrets from the
-files.
-
-#### Mounted Secrets are updated automatically
-
-When a secret currently consumed in a volume is updated, projected keys are eventually updated as well.
-The kubelet checks whether the mounted secret is fresh on every periodic sync.
-However, the kubelet uses its local cache for getting the current value of the Secret.
-The type of the cache is configurable using the `ConfigMapAndSecretChangeDetectionStrategy` field in
-the [KubeletConfiguration struct](/docs/reference/config-api/kubelet-config.v1beta1/).
-A Secret can be either propagated by watch (default), ttl-based, or by redirecting
-all requests directly to the API server.
-As a result, the total delay from the moment when the Secret is updated to the moment
-when new keys are projected to the Pod can be as long as the kubelet sync period + cache
-propagation delay, where the cache propagation delay depends on the chosen cache type
-(it equals to watch propagation delay, ttl of cache, or zero correspondingly).
-
-{{< note >}}
-A container using a Secret as a
-[subPath](/docs/concepts/storage/volumes#using-subpath) volume mount will not receive
-Secret updates.
-{{< /note >}}
-
-### Using Secrets as environment variables
-
-To use a secret in an {{< glossary_tooltip text="environment variable" term_id="container-env-variables" >}}
-in a Pod:
-
-1. Create a secret or use an existing one.  Multiple Pods can reference the same secret.
-1. Modify your Pod definition in each container that you wish to consume the value of a secret key to add an environment variable for each secret key you wish to consume. The environment variable that consumes the secret key should populate the secret's name and key in `env[].valueFrom.secretKeyRef`.
-1. Modify your image and/or command line so that the program looks for values in the specified environment variables.
-
-This is an example of a Pod that uses secrets from environment variables:
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: secret-env-pod
-spec:
-  containers:
-  - name: mycontainer
-    image: redis
-    env:
-      - name: SECRET_USERNAME
-        valueFrom:
-          secretKeyRef:
-            name: mysecret
-            key: username
-      - name: SECRET_PASSWORD
-        valueFrom:
-          secretKeyRef:
-            name: mysecret
-            key: password
-  restartPolicy: Never
-```
-
-#### Consuming Secret Values from environment variables
-
-Inside a container that consumes a secret in the environment variables, the secret keys appear as
-normal environment variables containing the base64 decoded values of the secret data.
-This is the result of commands executed inside the container from the example above:
-
-```shell
-echo $SECRET_USERNAME
-```
-
-The output is similar to:
-
-```
-admin
-```
-
-```shell
-echo $SECRET_PASSWORD
-```
-
-The output is similar to:
-
-```
-1f2d1e2e67df
-```
-
-#### Environment variables are not updated after a secret update
-
-If a container already consumes a Secret in an environment variable, a Secret update will not be seen by the container unless it is restarted.
-There are third party solutions for triggering restarts when secrets change.
 
 ## Immutable Secrets {#secret-immutable}
 
 {{< feature-state for_k8s_version="v1.21" state="stable" >}}
 
-The Kubernetes feature _Immutable Secrets and ConfigMaps_ provides an option to set
-individual Secrets and ConfigMaps as immutable. For clusters that extensively use Secrets
-(at least tens of thousands of unique Secret to Pod mounts), preventing changes to their
-data has the following advantages:
+Kubernetes lets you mark specific Secrets (and ConfigMaps) as _immutable_.
+Preventing changes to the data of an existing Secret has the following benefits:
 
 - protects you from accidental (or unwanted) updates that could cause applications outages
-- improves performance of your cluster by significantly reducing load on kube-apiserver, by
-closing watches for secrets marked as immutable.
+- (for clusters that extensively use Secrets - at least tens of thousands of unique Secret
+  to Pod mounts), switching to immutable Secrets improves the performance of your cluster
+  by significantly reducing load on kube-apiserver. The kubelet does not need to maintain
+  a [watch] on any Secrets that are marked as immutable.
 
-This feature is controlled by the `ImmutableEphemeralVolumes`
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/),
-which is enabled by default since v1.19. You can create an immutable
-Secret by setting the `immutable` field to `true`. For example,
+### Marking a Secret as immutable {#secret-immutable-create}
+
+You can create an immutable Secret by setting the `immutable` field to `true`. For example,
 ```yaml
 apiVersion: v1
 kind: Secret
@@ -785,6 +1244,8 @@ data:
 immutable: true
 ```
 
+You can also update any existing mutable Secret to make it immutable.
+
 {{< note >}}
 Once a Secret or ConfigMap is marked as immutable, it is _not_ possible to revert this change
 nor to mutate the contents of the `data` field. You can only delete and recreate the Secret.
@@ -792,388 +1253,10 @@ Existing Pods maintain a mount point to the deleted Secret - it is recommended t
 these pods.
 {{< /note >}}
 
-### Using imagePullSecrets
+## Information security for Secrets
 
-The `imagePullSecrets` field is a list of references to secrets in the same namespace.
-You can use an `imagePullSecrets` to pass a secret that contains a Docker (or other) image registry
-password to the kubelet. The kubelet uses this information to pull a private image on behalf of your Pod.
-See the [PodSpec API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core) for more information about the `imagePullSecrets` field.
-
-#### Manually specifying an imagePullSecret
-
-You can learn how to specify `ImagePullSecrets` from the [container images documentation](/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod).
-
-### Arranging for imagePullSecrets to be automatically attached
-
-You can manually create `imagePullSecrets`, and reference it from
-a ServiceAccount. Any Pods created with that ServiceAccount
-or created with that ServiceAccount by default, will get their `imagePullSecrets`
-field set to that of the service account.
-See [Add ImagePullSecrets to a service account](/docs/tasks/configure-pod-container/configure-service-account/#add-imagepullsecrets-to-a-service-account)
- for a detailed explanation of that process.
-
-## Details
-
-### Restrictions
-
-Secret volume sources are validated to ensure that the specified object
-reference actually points to an object of type Secret. Therefore, a secret
-needs to be created before any Pods that depend on it.
-
-Secret resources reside in a {{< glossary_tooltip text="namespace" term_id="namespace" >}}.
-Secrets can only be referenced by Pods in that same namespace.
-
-Individual secrets are limited to 1MiB in size. This is to discourage creation
-of very large secrets which would exhaust the API server and kubelet memory.
-However, creation of many smaller secrets could also exhaust memory. More
-comprehensive limits on memory usage due to secrets is a planned feature.
-
-The kubelet only supports the use of secrets for Pods where the secrets
-are obtained from the API server.
-This includes any Pods created using `kubectl`, or indirectly via a replication
-controller. It does not include Pods created as a result of the kubelet
-`--manifest-url` flag, its `--config` flag, or its REST API (these are
-not common ways to create Pods). 
-The `spec` of a {{< glossary_tooltip text="static Pod" term_id="static-pod" >}} cannot refer to a Secret
-or any other API objects.
-
-
-Secrets must be created before they are consumed in Pods as environment
-variables unless they are marked as optional. References to secrets that do
-not exist will prevent the Pod from starting.
-
-References (`secretKeyRef` field) to keys that do not exist in a named Secret
-will prevent the Pod from starting.
-
-Secrets used to populate environment variables by the `envFrom` field that have keys
-that are considered invalid environment variable names will have those keys
-skipped. The Pod will be allowed to start. There will be an event whose
-reason is `InvalidVariableNames` and the message will contain the list of
-invalid keys that were skipped. The example shows a pod which refers to the
-default/mysecret that contains 2 invalid keys: `1badkey` and `2alsobad`.
-
-```shell
-kubectl get events
-```
-
-The output is similar to:
-
-```
-LASTSEEN   FIRSTSEEN   COUNT     NAME            KIND      SUBOBJECT                         TYPE      REASON
-0s         0s          1         dapi-test-pod   Pod                                         Warning   InvalidEnvironmentVariableNames   kubelet, 127.0.0.1      Keys [1badkey, 2alsobad] from the EnvFrom secret default/mysecret were skipped since they are considered invalid environment variable names.
-```
-
-### Secret and Pod lifetime interaction
-
-When a Pod is created by calling the Kubernetes API, there is no check if a referenced
-secret exists. Once a Pod is scheduled, the kubelet will try to fetch the
-secret value. If the secret cannot be fetched because it does not exist or
-because of a temporary lack of connection to the API server, the kubelet will
-periodically retry. It will report an event about the Pod explaining the
-reason it is not started yet. Once the secret is fetched, the kubelet will
-create and mount a volume containing it. None of the Pod's containers will
-start until all the Pod's volumes are mounted.
-
-## Use cases
-
-### Use-Case: As container environment variables
-
-Create a secret
-
-```yaml
-apiVersion: v1
-kind: Secret
-metadata:
-  name: mysecret
-type: Opaque
-data:
-  USER_NAME: YWRtaW4=
-  PASSWORD: MWYyZDFlMmU2N2Rm
-```
-
-Create the Secret:
-
-```shell
-kubectl apply -f mysecret.yaml
-```
-
-Use `envFrom` to define all of the Secret's data as container environment variables. The key from the Secret becomes the environment variable name in the Pod.
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: secret-test-pod
-spec:
-  containers:
-    - name: test-container
-      image: k8s.gcr.io/busybox
-      command: [ "/bin/sh", "-c", "env" ]
-      envFrom:
-      - secretRef:
-          name: mysecret
-  restartPolicy: Never
-```
-
-### Use-Case: Pod with ssh keys
-
-Create a secret containing some ssh keys:
-
-```shell
-kubectl create secret generic ssh-key-secret --from-file=ssh-privatekey=/path/to/.ssh/id_rsa --from-file=ssh-publickey=/path/to/.ssh/id_rsa.pub
-```
-
-The output is similar to:
-
-```
-secret "ssh-key-secret" created
-```
-
-You can also create a `kustomization.yaml` with a `secretGenerator` field containing ssh keys.
-
-{{< caution >}}
-Think carefully before sending your own ssh keys: other users of the cluster may have access to the secret. Use a service account which you want to be accessible to all the users with whom you share the Kubernetes cluster, and can revoke this account if the users are compromised.
-{{< /caution >}}
-
-Now you can create a Pod which references the secret with the ssh key and
-consumes it in a volume:
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: secret-test-pod
-  labels:
-    name: secret-test
-spec:
-  volumes:
-  - name: secret-volume
-    secret:
-      secretName: ssh-key-secret
-  containers:
-  - name: ssh-test-container
-    image: mySshImage
-    volumeMounts:
-    - name: secret-volume
-      readOnly: true
-      mountPath: "/etc/secret-volume"
-```
-
-When the container's command runs, the pieces of the key will be available in:
-
-```
-/etc/secret-volume/ssh-publickey
-/etc/secret-volume/ssh-privatekey
-```
-
-The container is then free to use the secret data to establish an ssh connection.
-
-### Use-Case: Pods with prod / test credentials
-
-This example illustrates a Pod which consumes a secret containing production
-credentials and another Pod which consumes a secret with test environment
-credentials.
-
-You can create a `kustomization.yaml` with a `secretGenerator` field or run
-`kubectl create secret`.
-
-```shell
-kubectl create secret generic prod-db-secret --from-literal=username=produser --from-literal=password=Y4nys7f11
-```
-
-The output is similar to:
-
-```
-secret "prod-db-secret" created
-```
-
-You can also create a secret for test environment credentials.
-
-```shell
-kubectl create secret generic test-db-secret --from-literal=username=testuser --from-literal=password=iluvtests
-```
-
-The output is similar to:
-
-```
-secret "test-db-secret" created
-```
-
-{{< note >}}
-Special characters such as `$`, `\`, `*`, `=`, and `!` will be interpreted by your [shell](https://en.wikipedia.org/wiki/Shell_(computing)) and require escaping.
-In most shells, the easiest way to escape the password is to surround it with single quotes (`'`).
-For example, if your actual password is `S!B\*d$zDsb=`, you should execute the command this way:
-
-```shell
-kubectl create secret generic dev-db-secret --from-literal=username=devuser --from-literal=password='S!B\*d$zDsb='
-```
-
-You do not need to escape special characters in passwords from files (`--from-file`).
-{{< /note >}}
-
-Now make the Pods:
-
-```shell
-cat <<EOF > pod.yaml
-apiVersion: v1
-kind: List
-items:
-- kind: Pod
-  apiVersion: v1
-  metadata:
-    name: prod-db-client-pod
-    labels:
-      name: prod-db-client
-  spec:
-    volumes:
-    - name: secret-volume
-      secret:
-        secretName: prod-db-secret
-    containers:
-    - name: db-client-container
-      image: myClientImage
-      volumeMounts:
-      - name: secret-volume
-        readOnly: true
-        mountPath: "/etc/secret-volume"
-- kind: Pod
-  apiVersion: v1
-  metadata:
-    name: test-db-client-pod
-    labels:
-      name: test-db-client
-  spec:
-    volumes:
-    - name: secret-volume
-      secret:
-        secretName: test-db-secret
-    containers:
-    - name: db-client-container
-      image: myClientImage
-      volumeMounts:
-      - name: secret-volume
-        readOnly: true
-        mountPath: "/etc/secret-volume"
-EOF
-```
-
-Add the pods to the same kustomization.yaml:
-
-```shell
-cat <<EOF >> kustomization.yaml
-resources:
-- pod.yaml
-EOF
-```
-
-Apply all those objects on the API server by running:
-
-```shell
-kubectl apply -k .
-```
-
-Both containers will have the following files present on their filesystems with the values for each container's environment:
-
-```
-/etc/secret-volume/username
-/etc/secret-volume/password
-```
-
-Note how the specs for the two Pods differ only in one field; this facilitates
-creating Pods with different capabilities from a common Pod template.
-
-You could further simplify the base Pod specification by using two service accounts:
-
-1. `prod-user` with the `prod-db-secret`
-1. `test-user` with the `test-db-secret`
-
-The Pod specification is shortened to:
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: prod-db-client-pod
-  labels:
-    name: prod-db-client
-spec:
-  serviceAccount: prod-db-client
-  containers:
-  - name: db-client-container
-    image: myClientImage
-```
-
-### Use-case: dotfiles in a secret volume
-
-You can make your data "hidden" by defining a key that begins with a dot.
-This key represents a dotfile or "hidden" file. For example, when the following secret
-is mounted into a volume, `secret-volume`:
-
-```yaml
-apiVersion: v1
-kind: Secret
-metadata:
-  name: dotfile-secret
-data:
-  .secret-file: dmFsdWUtMg0KDQo=
----
-apiVersion: v1
-kind: Pod
-metadata:
-  name: secret-dotfiles-pod
-spec:
-  volumes:
-  - name: secret-volume
-    secret:
-      secretName: dotfile-secret
-  containers:
-  - name: dotfile-test-container
-    image: k8s.gcr.io/busybox
-    command:
-    - ls
-    - "-l"
-    - "/etc/secret-volume"
-    volumeMounts:
-    - name: secret-volume
-      readOnly: true
-      mountPath: "/etc/secret-volume"
-```
-
-The volume will contain a single file, called `.secret-file`, and
-the `dotfile-test-container` will have this file present at the path
-`/etc/secret-volume/.secret-file`.
-
-{{< note >}}
-Files beginning with dot characters are hidden from the output of  `ls -l`;
-you must use `ls -la` to see them when listing directory contents.
-{{< /note >}}
-
-### Use-case: Secret visible to one container in a Pod
-
-Consider a program that needs to handle HTTP requests, do some complex business
-logic, and then sign some messages with an HMAC. Because it has complex
-application logic, there might be an unnoticed remote file reading exploit in
-the server, which could expose the private key to an attacker.
-
-This could be divided into two processes in two containers: a frontend container
-which handles user interaction and business logic, but which cannot see the
-private key; and a signer container that can see the private key, and responds
-to simple signing requests from the frontend (for example, over localhost networking).
-
-With this partitioned approach, an attacker now has to trick the application
-server into doing something rather arbitrary, which may be harder than getting
-it to read a file.
-
-<!-- TODO: explain how to do this while still using automation. -->
-
-## Best practices
-
-### Clients that use the Secret API
-
-When deploying applications that interact with the Secret API, you should
-limit access using [authorization policies](
-/docs/reference/access-authn-authz/authorization/) such as [RBAC](
-/docs/reference/access-authn-authz/rbac/).
+Although ConfigMap and Secret work similarly, Kubernetes applies some additional
+protection for Secret objects.
 
 Secrets often hold values that span a spectrum of importance, many of which can
 cause escalations within Kubernetes (e.g. service account tokens) and to
@@ -1181,78 +1264,78 @@ external systems. Even if an individual app can reason about the power of the
 Secrets it expects to interact with, other apps within the same namespace can
 render those assumptions invalid.
 
-For these reasons `watch` and `list` requests for secrets within a namespace are
-extremely powerful capabilities and should be avoided, since listing secrets allows
-the clients to inspect the values of all secrets that are in that namespace. The ability to
-`watch` and `list` all secrets in a cluster should be reserved for only the most
-privileged, system-level components.
+A Secret is only sent to a node if a Pod on that node requires it.
+For mounting secrets into Pods, the kubelet stores a copy of the data into a `tmpfs`
+so that the confidential data is not written to durable storage.
+Once the Pod that depends on the Secret is deleted, the kubelet deletes its local copy
+of the confidential data from the Secret.
 
-Applications that need to access the Secret API should perform `get` requests on
-the secrets they need. This lets administrators restrict access to all secrets
-while [white-listing access to individual instances](/docs/reference/access-authn-authz/rbac/#referring-to-resources) that
-the app needs.
+There may be several containers in a Pod. By default, containers you define
+only have access to the default ServiceAccount and its related Secret.
+You must explicitly define environment variables or map a volume into a
+container in order to provide access to any other Secret.
 
-For improved performance over a looping `get`, clients can design resources that
-reference a secret then `watch` the resource, re-requesting the secret when the
-reference changes. Additionally, a ["bulk watch" API](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/bulk_watch.md)
-to let clients `watch` individual resources has also been proposed, and will likely
-be available in future releases of Kubernetes.
+There may be Secrets for several Pods on the same node. However, only the
+Secrets that a Pod requests are potentially visible within its containers.
+Therefore, one Pod does not have access to the Secrets of another Pod.
 
-## Security properties
+{{< warning >}}
+Any privileged containers on a node are liable to have access to all Secrets used
+on that node.
+{{< /warning >}}
 
-### Protections
 
-Because secrets can be created independently of the Pods that use
-them, there is less risk of the secret being exposed during the workflow of
-creating, viewing, and editing Pods. The system can also take additional
-precautions with Secrets, such as avoiding writing them to disk where
-possible.
+### Security recommendations for developers
 
-A secret is only sent to a node if a Pod on that node requires it.
-The kubelet stores the secret into a `tmpfs` so that the secret is not written
-to disk storage. Once the Pod that depends on the secret is deleted, the kubelet
-will delete its local copy of the secret data as well.
+- Applications still need to protect the value of confidential information after reading it
+  from an environment variable or volume. For example, your application must avoid logging
+  the secret data in the clear or transmitting it to an untrusted party.
+- If you are defining multiple containers in a Pod, and only one of those
+  containers needs access to a Secret, define the volume mount or environment
+  variable configuration so that the other containers do not have access to that
+  Secret.
+- If you configure a Secret through a {{< glossary_tooltip text="manifest" term_id="manifest" >}},
+  with the secret data encoded as base64, sharing this file or checking it in to a
+  source repository means the secret is available to everyone who can read the manifest.
+  Base64 encoding is _not_ an encryption method, it provides no additional confidentiality
+  over plain text.
+- When deploying applications that interact with the Secret API, you should
+  limit access using
+  [authorization policies](/docs/reference/access-authn-authz/authorization/) such as
+  [RBAC](/docs/reference/access-authn-authz/rbac/).
+- In the Kubernetes API, `watch` and `list` requests for Secrets within a namespace
+  are extremely powerful capabilities. Avoid granting this access where feasible, since
+  listing Secrets allows the clients to inspect the values of every Secret in that
+  namespace.
 
-There may be secrets for several Pods on the same node. However, only the
-secrets that a Pod requests are potentially visible within its containers.
-Therefore, one Pod does not have access to the secrets of another Pod.
+### Security recommendations for cluster administrators
 
-There may be several containers in a Pod. However, each container in a Pod has
-to request the secret volume in its `volumeMounts` for it to be visible within
-the container. This can be used to construct useful [security partitions at the
-Pod level](#use-case-secret-visible-to-one-container-in-a-pod).
+{{< caution >}}
+A user who can create a Pod that uses a Secret can also see the value of that Secret. Even
+if cluster policies do not allow a user to read the Secret directly, the same user could
+have access to run a Pod that then exposes the Secret.
+{{< /caution >}}
 
-On most Kubernetes distributions, communication between users
-and the API server, and from the API server to the kubelets, is protected by SSL/TLS.
-Secrets are protected when transmitted over these channels.
-
-{{< feature-state for_k8s_version="v1.13" state="beta" >}}
-
-You can enable [encryption at rest](/docs/tasks/administer-cluster/encrypt-data/)
-for secret data, so that the secrets are not stored in the clear into {{< glossary_tooltip term_id="etcd" >}}.
-
-### Risks
-
- - In the API server, secret data is stored in {{< glossary_tooltip term_id="etcd" >}};
-   therefore:
-   - Administrators should enable encryption at rest for cluster data (requires v1.13 or later).
-   - Administrators should limit access to etcd to admin users.
-   - Administrators may want to wipe/shred disks used by etcd when no longer in use.
-   - If running etcd in a cluster, administrators should make sure to use SSL/TLS
-     for etcd peer-to-peer communication.
- - If you configure the secret through a manifest (JSON or YAML) file which has
-   the secret data encoded as base64, sharing this file or checking it in to a
-   source repository means the secret is compromised. Base64 encoding is _not_ an
-   encryption method and is considered the same as plain text.
- - Applications still need to protect the value of secret after reading it from the volume,
-   such as not accidentally logging it or transmitting it to an untrusted party.
- - A user who can create a Pod that uses a secret can also see the value of that secret. Even
-   if the API server policy does not allow that user to read the Secret, the user could
-   run a Pod which exposes the secret.
+- Reserve the ability to `watch` or `list` all secrets in a cluster (using the Kubernetes
+  API), so that only the most privileged, system-level components can perform this action.
+- When deploying applications that interact with the Secret API, you should
+  limit access using
+  [authorization policies](/docs/reference/access-authn-authz/authorization/) such as
+  [RBAC](/docs/reference/access-authn-authz/rbac/).
+- In the API server, objects (including Secrets) are persisted into
+  {{< glossary_tooltip term_id="etcd" >}}; therefore:
+  - only allow cluster admistrators to access etcd (this includes read-only access);
+  - enable [encryption at rest](/docs/tasks/administer-cluster/encrypt-data/)
+    for Secret objects, so that the data of these Secrets are not stored in the clear
+    into {{< glossary_tooltip term_id="etcd" >}};
+  - consider wiping / shredding the durable storage used by etcd once it is
+    no longer in use;
+  - if there are multiple etcd instances, make sure that etcd is
+    using SSL/TLS for communication between etcd peers.
 
 ## {{% heading "whatsnext" %}}
 
-- Learn how to [manage Secret using `kubectl`](/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
-- Learn how to [manage Secret using config file](/docs/tasks/configmap-secret/managing-secret-using-config-file/)
-- Learn how to [manage Secret using kustomize](/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
+- Learn how to [manage Secrets using `kubectl`](/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
+- Learn how to [manage Secrets using config file](/docs/tasks/configmap-secret/managing-secret-using-config-file/)
+- Learn how to [manage Secrets using kustomize](/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
 - Read the [API reference](/docs/reference/kubernetes-api/config-and-storage-resources/secret-v1/) for `Secret`
diff --git a/content/en/docs/concepts/configuration/windows-resource-management.md b/content/en/docs/concepts/configuration/windows-resource-management.md
new file mode 100644
index 0000000000..955fea194a
--- /dev/null
+++ b/content/en/docs/concepts/configuration/windows-resource-management.md
@@ -0,0 +1,79 @@
+---
+reviewers:
+- jayunit100
+- jsturtevant
+- marosset
+- perithompson
+title: Resource Management for Windows nodes
+content_type: concept
+weight: 75
+---
+
+<!-- overview -->
+
+This page outlines the differences in how resources are managed between Linux and Windows.
+
+<!-- body -->
+
+On Linux nodes, {{< glossary_tooltip text="cgroups" term_id="cgroup" >}} are used
+as a pod boundary for resource control. Containers are created within that boundary
+for network, process and file system isolation. The Linux cgroup APIs can be used to
+gather CPU, I/O, and memory use statistics.
+
+In contrast, Windows uses a [_job object_](https://docs.microsoft.com/windows/win32/procthread/job-objects) per container with a system namespace filter
+to contain all processes in a container and provide logical isolation from the
+host.
+(Job objects are a Windows process isolation mechanism and are different from
+what Kubernetes refers to as a {{< glossary_tooltip term_id="job" text="Job" >}}).
+
+There is no way to run a Windows container without the namespace filtering in
+place. This means that system privileges cannot be asserted in the context of the
+host, and thus privileged containers are not available on Windows.
+Containers cannot assume an identity from the host because the Security Account Manager
+(SAM) is separate.
+
+## Memory management {#resource-management-memory}
+
+Windows does not have an out-of-memory process killer as Linux does. Windows always
+treats all user-mode memory allocations as virtual, and pagefiles are mandatory.
+
+Windows nodes do not overcommit memory for processes. The
+net effect is that Windows won't reach out of memory conditions the same way Linux
+does, and processes page to disk instead of being subject to out of memory (OOM)
+termination. If memory is over-provisioned and all physical memory is exhausted,
+then paging can slow down performance.
+
+## CPU management {#resource-management-cpu}
+
+Windows can limit the amount of CPU time allocated for different processes but cannot
+guarantee a minimum amount of CPU time.
+
+On Windows, the kubelet supports a command-line flag to set the
+[scheduling priority](https://docs.microsoft.com/windows/win32/procthread/scheduling-priorities) of the
+kubelet process: `--windows-priorityclass`. This flag allows the kubelet process to get
+more CPU time slices when compared to other processes running on the Windows host.
+More information on the allowable values and their meaning is available at
+[Windows Priority Classes](https://docs.microsoft.com/en-us/windows/win32/procthread/scheduling-priorities#priority-class).
+To ensure that running Pods do not starve the kubelet of CPU cycles, set this flag to `ABOVE_NORMAL_PRIORITY_CLASS` or above.
+
+## Resource reservation {#resource-reservation}
+
+To account for memory and CPU used by the operating system, the container runtime, and by
+Kubernetes host processes such as the kubelet, you can (and should) reserve
+memory and CPU resources with the  `--kube-reserved` and/or `--system-reserved` kubelet flags.
+On Windows these values are only used to calculate the node's
+[allocatable](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable) resources.
+
+{{< caution >}}
+As you deploy workloads, set resource memory and CPU limits on containers.
+This also subtracts from `NodeAllocatable` and helps the cluster-wide scheduler in determining which pods to place on which nodes.
+
+Scheduling pods without limits may over-provision the Windows nodes and in extreme
+cases can cause the nodes to become unhealthy.
+{{< /caution >}}
+
+On Windows, a good practice is to reserve at least 2GiB of memory.
+
+To determine how much CPU to reserve,
+identify the maximum pod density for each node and monitor the CPU usage of
+the system services running there, then choose a value that meets your workload needs.
diff --git a/content/en/docs/concepts/containers/container-environment.md b/content/en/docs/concepts/containers/container-environment.md
index 3c4c153927..f773178b54 100644
--- a/content/en/docs/concepts/containers/container-environment.md
+++ b/content/en/docs/concepts/containers/container-environment.md
@@ -35,13 +35,12 @@ The Pod name and namespace are available as environment variables through the
 [downward API](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/).
 
 User defined environment variables from the Pod definition are also available to the Container,
-as are any environment variables specified statically in the Docker image.
+as are any environment variables specified statically in the container image.
 
 ### Cluster information
 
 A list of all services that were running when a Container was created is available to that Container as environment variables.
 This list is limited to services within the same namespace as the new Container's Pod and Kubernetes control plane services.
-Those environment variables match the syntax of Docker links.
 
 For a service named *foo* that maps to a Container named *bar*,
 the following variables are defined:
diff --git a/content/en/docs/concepts/containers/container-lifecycle-hooks.md b/content/en/docs/concepts/containers/container-lifecycle-hooks.md
index 96569f9518..cb953eecbc 100644
--- a/content/en/docs/concepts/containers/container-lifecycle-hooks.md
+++ b/content/en/docs/concepts/containers/container-lifecycle-hooks.md
@@ -59,7 +59,7 @@ Resources consumed by the command are counted against the Container.
 ### Hook handler execution
 
 When a Container lifecycle management hook is called,
-the Kubernetes management system execute the handler according to the hook action,
+the Kubernetes management system executes the handler according to the hook action,
 `httpGet` and `tcpSocket` are executed by the kubelet process, and `exec` is executed in the container.
 
 Hook handler calls are synchronous within the context of the Pod containing the Container.
@@ -105,22 +105,22 @@ The logs for a Hook handler are not exposed in Pod events.
 If a handler fails for some reason, it broadcasts an event.
 For `PostStart`, this is the `FailedPostStartHook` event,
 and for `PreStop`, this is the `FailedPreStopHook` event.
-You can see these events by running `kubectl describe pod <pod_name>`.
-Here is some example output of events from running this command:
+To generate a failed `FailedPreStopHook` event yourself, modify the [lifecycle-events.yaml](https://raw.githubusercontent.com/kubernetes/website/main/content/en/examples/pods/lifecycle-events.yaml) file to change the postStart command to "badcommand" and apply it.
+Here is some example output of the resulting events you see from running `kubectl describe pod lifecycle-demo`:
 
 ```
 Events:
-  FirstSeen  LastSeen  Count  From                                                   SubObjectPath          Type      Reason               Message
-  ---------  --------  -----  ----                                                   -------------          --------  ------               -------
-  1m         1m        1      {default-scheduler }                                                          Normal    Scheduled            Successfully assigned test-1730497541-cq1d2 to gke-test-cluster-default-pool-a07e5d30-siqd
-  1m         1m        1      {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}  spec.containers{main}  Normal    Pulling              pulling image "test:1.0"
-  1m         1m        1      {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}  spec.containers{main}  Normal    Created              Created container with docker id 5c6a256a2567; Security:[seccomp=unconfined]
-  1m         1m        1      {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}  spec.containers{main}  Normal    Pulled               Successfully pulled image "test:1.0"
-  1m         1m        1      {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}  spec.containers{main}  Normal    Started              Started container with docker id 5c6a256a2567
-  38s        38s       1      {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}  spec.containers{main}  Normal    Killing              Killing container with docker id 5c6a256a2567: PostStart handler: Error executing in Docker Container: 1
-  37s        37s       1      {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}  spec.containers{main}  Normal    Killing              Killing container with docker id 8df9fdfd7054: PostStart handler: Error executing in Docker Container: 1
-  38s        37s       2      {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}                         Warning   FailedSync           Error syncing pod, skipping: failed to "StartContainer" for "main" with RunContainerError: "PostStart handler: Error executing in Docker Container: 1"
-  1m         22s       2      {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}  spec.containers{main}  Warning   FailedPostStartHook
+  Type     Reason               Age              From               Message
+  ----     ------               ----             ----               -------
+  Normal   Scheduled            7s               default-scheduler  Successfully assigned default/lifecycle-demo to ip-XXX-XXX-XX-XX.us-east-2...
+  Normal   Pulled               6s               kubelet            Successfully pulled image "nginx" in 229.604315ms
+  Normal   Pulling              4s (x2 over 6s)  kubelet            Pulling image "nginx"
+  Normal   Created              4s (x2 over 5s)  kubelet            Created container lifecycle-demo-container
+  Normal   Started              4s (x2 over 5s)  kubelet            Started container lifecycle-demo-container
+  Warning  FailedPostStartHook  4s (x2 over 5s)  kubelet            Exec lifecycle hook ([badcommand]) for Container "lifecycle-demo-container" in Pod "lifecycle-demo_default(30229739-9651-4e5a-9a32-a8f1688862db)" failed - error: command 'badcommand' exited with 126: , message: "OCI runtime exec failed: exec failed: container_linux.go:380: starting container process caused: exec: \"badcommand\": executable file not found in $PATH: unknown\r\n"
+  Normal   Killing              4s (x2 over 5s)  kubelet            FailedPostStartHook
+  Normal   Pulled               4s               kubelet            Successfully pulled image "nginx" in 215.66395ms
+  Warning  BackOff              2s (x2 over 3s)  kubelet            Back-off restarting failed container
 ```
 
 
diff --git a/content/en/docs/concepts/containers/images.md b/content/en/docs/concepts/containers/images.md
index 9300561e46..c07880a458 100644
--- a/content/en/docs/concepts/containers/images.md
+++ b/content/en/docs/concepts/containers/images.md
@@ -29,8 +29,7 @@ and possibly a port number as well; for example: `fictional.registry.example:104
 
 If you don't specify a registry hostname, Kubernetes assumes that you mean the Docker public registry.
 
-After the image name part you can add a _tag_ (as also using with commands such
-as `docker` and `podman`).
+After the image name part you can add a _tag_ (in the same way you would when using with commands like `docker` or `podman`).
 Tags let you identify different versions of the same series of images.
 
 Image tags consist of lowercase and uppercase letters, digits, underscores (`_`),
@@ -91,7 +90,7 @@ the image's digest;
 replace `<image-name>:<tag>` with `<image-name>@<digest>`
 (for example, `image@sha256:45b23dee08af5e43a7fea6c4cf9c25ccf269ee113168c19722f87876677c5cb2`).
 
-When using image tags, if the image registry were to change the code that the tag on that image represents, you might end up with a mix of Pods running the old and new code. An image digest uniquely identifies a specific version of the image, so Kubernetes runs the same code every time it starts a container with that image name and digest specified. Specifying an image fixes the code that you run so that a change at the registry cannot lead to that mix of versions.
+When using image tags, if the image registry were to change the code that the tag on that image represents, you might end up with a mix of Pods running the old and new code. An image digest uniquely identifies a specific version of the image, so Kubernetes runs the same code every time it starts a container with that image name and digest specified. Specifying an image by digest fixes the code that you run so that a change at the registry cannot lead to that mix of versions.
 
 There are third-party [admission controllers](/docs/reference/access-authn-authz/admission-controllers/)
 that mutate Pods (and pod templates) when they are created, so that the
@@ -108,7 +107,7 @@ When you (or a controller) submit a new Pod to the API server, your cluster sets
   `:latest`, `imagePullPolicy` is automatically set to `Always`;
 - if you omit the `imagePullPolicy` field, and you don't specify the tag for the
   container image, `imagePullPolicy` is automatically set to `Always`;
-- if you omit the `imagePullPolicy` field, and you don't specify the tag for the
+- if you omit the `imagePullPolicy` field, and you specify the tag for the
   container image that isn't `:latest`, the `imagePullPolicy` is automatically set to
   `IfNotPresent`.
 
@@ -175,95 +174,79 @@ These options are explained in more detail below.
 
 ### Configuring nodes to authenticate to a private registry
 
-If you run Docker on your nodes, you can configure the Docker container
-runtime to authenticate to a private container registry.
+Specific instructions for setting credentials depends on the container runtime and registry you chose to use. You should refer to your solution's documentation for the most accurate information.
 
-This approach is suitable if you can control node configuration.
+For an example of configuring a private container image registry, see the
+[Pull an Image from a Private Registry](/docs/tasks/configure-pod-container/pull-image-private-registry)
+task. That example uses a private registry in Docker Hub.
 
-{{< note >}}
-Default Kubernetes only supports the `auths` and `HttpHeaders` section in Docker configuration.
-Docker credential helpers (`credHelpers` or `credsStore`) are not supported.
-{{< /note >}}
+### Interpretation of config.json {#config-json}
 
+The interpretation of `config.json` varies between the original Docker
+implementation and the Kubernetes interpretation. In Docker, the `auths` keys
+can only specify root URLs, whereas Kubernetes allows glob URLs as well as
+prefix-matched paths. This means that a `config.json` like this is valid:
 
-Docker stores keys for private registries in the `$HOME/.dockercfg` or `$HOME/.docker/config.json` file.  If you put the same file
-in the search paths list below, kubelet uses it as the credential provider when pulling images.
-
-* `{--root-dir:-/var/lib/kubelet}/config.json`
-* `{cwd of kubelet}/config.json`
-* `${HOME}/.docker/config.json`
-* `/.docker/config.json`
-* `{--root-dir:-/var/lib/kubelet}/.dockercfg`
-* `{cwd of kubelet}/.dockercfg`
-* `${HOME}/.dockercfg`
-* `/.dockercfg`
-
-{{< note >}}
-You may have to set `HOME=/root` explicitly in the environment of the kubelet process.
-{{< /note >}}
-
-Here are the recommended steps to configuring your nodes to use a private registry.  In this
-example, run these on your desktop/laptop:
-
-   1. Run `docker login [server]` for each set of credentials you want to use.  This updates `$HOME/.docker/config.json` on your PC.
-   1. View `$HOME/.docker/config.json` in an editor to ensure it contains only the credentials you want to use.
-   1. Get a list of your nodes; for example:
-      - if you want the names: `nodes=$( kubectl get nodes -o jsonpath='{range.items[*].metadata}{.name} {end}' )`
-      - if you want to get the IP addresses: `nodes=$( kubectl get nodes -o jsonpath='{range .items[*].status.addresses[?(@.type=="ExternalIP")]}{.address} {end}' )`
-   1. Copy your local `.docker/config.json` to one of the search paths list above.
-      - for example, to test this out: `for n in $nodes; do scp ~/.docker/config.json root@"$n":/var/lib/kubelet/config.json; done`
-
-{{< note >}}
-For production clusters, use a configuration management tool so that you can apply this
-setting to all the nodes where you need it.
-{{< /note >}}
-
-Verify by creating a Pod that uses a private image; for example:
-
-```shell
-kubectl apply -f - <<EOF
-apiVersion: v1
-kind: Pod
-metadata:
-  name: private-image-test-1
-spec:
-  containers:
-    - name: uses-private-image
-      image: $PRIVATE_IMAGE_NAME
-      imagePullPolicy: Always
-      command: [ "echo", "SUCCESS" ]
-EOF
-```
-```
-pod/private-image-test-1 created
+```json
+{
+    "auths": {
+        "*my-registry.io/images": {
+            "auth": "…"
+        }
+    }
+}
 ```
 
-If everything is working, then, after a few moments, you can run:
+The root URL (`*my-registry.io`) is matched by using the following syntax:
 
-```shell
-kubectl logs private-image-test-1
 ```
-and see that the command outputs:
-```
-SUCCESS
+pattern:
+    { term }
+
+term:
+    '*'         matches any sequence of non-Separator characters
+    '?'         matches any single non-Separator character
+    '[' [ '^' ] { character-range } ']'
+                character class (must be non-empty)
+    c           matches character c (c != '*', '?', '\\', '[')
+    '\\' c      matches character c
+
+character-range:
+    c           matches character c (c != '\\', '-', ']')
+    '\\' c      matches character c
+    lo '-' hi   matches character c for lo <= c <= hi
 ```
 
-If you suspect that the command failed, you can run:
-```shell
-kubectl describe pods/private-image-test-1 | grep 'Failed'
-```
-In case of failure, the output is similar to:
-```
-  Fri, 26 Jun 2015 15:36:13 -0700    Fri, 26 Jun 2015 15:39:13 -0700    19    {kubelet node-i2hq}    spec.containers{uses-private-image}    failed        Failed to pull image "user/privaterepo:v1": Error: image user/privaterepo:v1 not found
+Image pull operations would now pass the credentials to the CRI container
+runtime for every valid pattern. For example the following container image names
+would match successfully:
+
+- `my-registry.io/images`
+- `my-registry.io/images/my-image`
+- `my-registry.io/images/another-image`
+- `sub.my-registry.io/images/my-image`
+- `a.sub.my-registry.io/images/my-image`
+
+The kubelet performs image pulls sequentially for every found credential. This
+means, that multiple entries in `config.json` are possible, too:
+
+```json
+{
+    "auths": {
+        "my-registry.io/images": {
+            "auth": "…"
+        },
+        "my-registry.io/images/subpath": {
+            "auth": "…"
+        }
+    }
+}
 ```
 
+If now a container specifies an image `my-registry.io/images/subpath/my-image`
+to be pulled, then the kubelet will try to download them from both
+authentication sources if one of them fails.
 
-You must ensure all nodes in the cluster have the same `.docker/config.json`.  Otherwise, pods will run on
-some nodes and fail to run on others.  For example, if you use node autoscaling, then each instance
-template needs to include the `.docker/config.json` or mount a drive that contains it.
-
-All pods will have read access to images in any private registry once private
-registry keys are added to the `.docker/config.json`.
 
 ### Pre-pulled images
 
@@ -295,6 +278,8 @@ Kubernetes supports specifying container image registry keys on a Pod.
 
 #### Creating a Secret with a Docker config
 
+You need to know the username, registry password and client email address for authenticating
+to the registry, as well as its hostname.
 Run the following command, substituting the appropriate uppercase values:
 
 ```shell
@@ -359,14 +344,13 @@ There are a number of solutions for configuring private registries.  Here are so
 common use cases and suggested solutions.
 
 1. Cluster running only non-proprietary (e.g. open-source) images.  No need to hide images.
-   - Use public images on the Docker hub.
+   - Use public images from a public registry
      - No configuration required.
      - Some cloud providers automatically cache or mirror public images, which improves availability and reduces the time to pull images.
 1. Cluster running some proprietary images which should be hidden to those outside the company, but
    visible to all cluster users.
-   - Use a hosted private [Docker registry](https://docs.docker.com/registry/).
-     - It may be hosted on the [Docker Hub](https://hub.docker.com/signup), or elsewhere.
-     - Manually configure .docker/config.json on each node as described above.
+   - Use a hosted private registry
+     - Manual configuration may be required on the nodes that need to access to private registry
    - Or, run an internal private registry behind your firewall with open read access.
      - No Kubernetes configuration is required.
    - Use a hosted container image registry service that controls image access
@@ -383,10 +367,9 @@ common use cases and suggested solutions.
 
 
 If you need access to multiple registries, you can create one secret for each registry.
-Kubelet will merge any `imagePullSecrets` into a single virtual `.docker/config.json`
-
 
 ## {{% heading "whatsnext" %}}
 
 * Read the [OCI Image Manifest Specification](https://github.com/opencontainers/image-spec/blob/master/manifest.md).
 * Learn about [container image garbage collection](/docs/concepts/architecture/garbage-collection/#container-image-garbage-collection).
+* Learn more about [pulling an Image from a Private Registry](/docs/tasks/configure-pod-container/pull-image-private-registry).
diff --git a/content/en/docs/concepts/containers/runtime-class.md b/content/en/docs/concepts/containers/runtime-class.md
index 96858d32af..cd8f74aa29 100644
--- a/content/en/docs/concepts/containers/runtime-class.md
+++ b/content/en/docs/concepts/containers/runtime-class.md
@@ -1,7 +1,7 @@
 ---
 reviewers:
-- tallclair
-- dchen1107
+  - tallclair
+  - dchen1107
 title: Runtime Class
 content_type: concept
 weight: 20
@@ -16,9 +16,6 @@ This page describes the RuntimeClass resource and runtime selection mechanism.
 RuntimeClass is a feature for selecting the container runtime configuration. The container runtime
 configuration is used to run a Pod's containers.
 
-
-
-
 <!-- body -->
 
 ## Motivation
@@ -62,12 +59,15 @@ The RuntimeClass resource currently only has 2 significant fields: the RuntimeCl
 (`metadata.name`) and the handler (`handler`). The object definition looks like this:
 
 ```yaml
-apiVersion: node.k8s.io/v1  # RuntimeClass is defined in the node.k8s.io API group
+# RuntimeClass is defined in the node.k8s.io API group
+apiVersion: node.k8s.io/v1
 kind: RuntimeClass
 metadata:
-  name: myclass  # The name the RuntimeClass will be referenced by
-  # RuntimeClass is a non-namespaced resource
-handler: myconfiguration  # The name of the corresponding CRI configuration
+  # The name the RuntimeClass will be referenced by.
+  # RuntimeClass is a non-namespaced resource.
+  name: myclass 
+# The name of the corresponding CRI configuration
+handler: myconfiguration 
 ```
 
 The name of a RuntimeClass object must be a valid
@@ -75,14 +75,14 @@ The name of a RuntimeClass object must be a valid
 
 {{< note >}}
 It is recommended that RuntimeClass write operations (create/update/patch/delete) be
-restricted to the cluster administrator. This is typically the default. See [Authorization
-Overview](/docs/reference/access-authn-authz/authorization/) for more details.
+restricted to the cluster administrator. This is typically the default. See
+[Authorization Overview](/docs/reference/access-authn-authz/authorization/) for more details.
 {{< /note >}}
 
 ## Usage
 
-Once RuntimeClasses are configured for the cluster, using them is very simple. Specify a
-`runtimeClassName` in the Pod spec. For example:
+Once RuntimeClasses are configured for the cluster, you can specify a
+`runtimeClassName` in the Pod spec to use it. For example:
 
 ```yaml
 apiVersion: v1
@@ -97,7 +97,7 @@ spec:
 This will instruct the kubelet to use the named RuntimeClass to run this pod. If the named
 RuntimeClass does not exist, or the CRI cannot run the corresponding handler, the pod will enter the
 `Failed` terminal [phase](/docs/concepts/workloads/pods/pod-lifecycle/#pod-phase). Look for a
-corresponding [event](/docs/tasks/debug-application-cluster/debug-application-introspection/) for an
+corresponding [event](/docs/tasks/debug/debug-application/debug-running-pod/) for an
 error message.
 
 If no `runtimeClassName` is specified, the default RuntimeHandler will be used, which is equivalent
@@ -107,11 +107,6 @@ to the behavior when the RuntimeClass feature is disabled.
 
 For more details on setting up CRI runtimes, see [CRI installation](/docs/setup/production-environment/container-runtimes/).
 
-#### dockershim
-
-RuntimeClasses with dockershim must set the runtime handler to `docker`. Dockershim does not support
-custom configurable runtime handlers.
-
 #### {{< glossary_tooltip term_id="containerd" >}}
 
 Runtime handlers are configured through containerd's configuration at
@@ -121,14 +116,14 @@ Runtime handlers are configured through containerd's configuration at
 [plugins."io.containerd.grpc.v1.cri".containerd.runtimes.${HANDLER_NAME}]
 ```
 
-See containerd's config documentation for more details:
-https://github.com/containerd/cri/blob/master/docs/config.md
+See containerd's [config documentation](https://github.com/containerd/containerd/blob/main/docs/cri/config.md)
+for more details:
 
 #### {{< glossary_tooltip term_id="cri-o" >}}
 
 Runtime handlers are configured through CRI-O's configuration at `/etc/crio/crio.conf`. Valid
-handlers are configured under the [crio.runtime
-table](https://github.com/cri-o/cri-o/blob/master/docs/crio.conf.5.md#crioruntime-table):
+handlers are configured under the
+[crio.runtime table](https://github.com/cri-o/cri-o/blob/master/docs/crio.conf.5.md#crioruntime-table):
 
 ```
 [crio.runtime.runtimes.${HANDLER_NAME}]
@@ -156,27 +151,24 @@ can add `tolerations` to the RuntimeClass. As with the `nodeSelector`, the toler
 with the pod's tolerations in admission, effectively taking the union of the set of nodes tolerated
 by each.
 
-To learn more about configuring the node selector and tolerations, see [Assigning Pods to
-Nodes](/docs/concepts/scheduling-eviction/assign-pod-node/).
+To learn more about configuring the node selector and tolerations, see
+[Assigning Pods to Nodes](/docs/concepts/scheduling-eviction/assign-pod-node/).
 
 ### Pod Overhead
 
-{{< feature-state for_k8s_version="v1.18" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 You can specify _overhead_ resources that are associated with running a Pod. Declaring overhead allows
 the cluster (including the scheduler) to account for it when making decisions about Pods and resources.
-To use Pod overhead, you must have the PodOverhead [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
-enabled (it is on by default).
 
-Pod overhead is defined in RuntimeClass through the `overhead` fields. Through the use of these fields,
+Pod overhead is defined in RuntimeClass through the `overhead` field. Through the use of this field,
 you can specify the overhead of running pods utilizing this RuntimeClass and ensure these overheads
 are accounted for in Kubernetes.
 
-
 ## {{% heading "whatsnext" %}}
 
-
 - [RuntimeClass Design](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/585-runtime-class/README.md)
 - [RuntimeClass Scheduling Design](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/585-runtime-class/README.md#runtimeclass-scheduling)
 - Read about the [Pod Overhead](/docs/concepts/scheduling-eviction/pod-overhead/) concept
 - [PodOverhead Feature Design](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/688-pod-overhead)
+
diff --git a/content/en/docs/concepts/extend-kubernetes/_index.md b/content/en/docs/concepts/extend-kubernetes/_index.md
index 083dca6964..5404f8c463 100644
--- a/content/en/docs/concepts/extend-kubernetes/_index.md
+++ b/content/en/docs/concepts/extend-kubernetes/_index.md
@@ -17,44 +17,61 @@ no_list: true
 
 <!-- overview -->
 
-Kubernetes is highly configurable and extensible. As a result,
-there is rarely a need to fork or submit patches to the Kubernetes
-project code.
+Kubernetes is highly configurable and extensible. As a result, there is rarely a need to fork or
+submit patches to the Kubernetes project code.
 
-This guide describes the options for customizing a Kubernetes
-cluster. It is aimed at {{< glossary_tooltip text="cluster operators" term_id="cluster-operator" >}} who want to
-understand how to adapt their Kubernetes cluster to the needs of
-their work environment. Developers who are prospective {{< glossary_tooltip text="Platform Developers" term_id="platform-developer" >}} or Kubernetes Project {{< glossary_tooltip text="Contributors" term_id="contributor" >}} will also find it
-useful as an introduction to what extension points and patterns
-exist, and their trade-offs and limitations.
+This guide describes the options for customizing a Kubernetes cluster. It is aimed at
+{{< glossary_tooltip text="cluster operators" term_id="cluster-operator" >}} who want to understand
+how to adapt their Kubernetes cluster to the needs of their work environment. Developers who are
+prospective {{< glossary_tooltip text="Platform Developers" term_id="platform-developer" >}} or
+Kubernetes Project {{< glossary_tooltip text="Contributors" term_id="contributor" >}} will also
+find it useful as an introduction to what extension points and patterns exist, and their
+trade-offs and limitations.
 
 <!-- body -->
 
 ## Overview
 
-Customization approaches can be broadly divided into *configuration*, which only involves changing flags, local configuration files, or API resources; and *extensions*, which involve running additional programs or services. This document is primarily about extensions.
+Customization approaches can be broadly divided into *configuration*, which only involves changing
+flags, local configuration files, or API resources; and *extensions*, which involve running
+additional programs or services. This document is primarily about extensions.
 
 ## Configuration
 
-*Configuration files* and *flags* are documented in the Reference section of the online documentation, under each binary:
+*Configuration files* and *flags* are documented in the Reference section of the online
+documentation, under each binary:
 
 * [kubelet](/docs/reference/command-line-tools-reference/kubelet/)
+* [kube-proxy](/docs/reference/command-line-tools-reference/kube-proxy/)
 * [kube-apiserver](/docs/reference/command-line-tools-reference/kube-apiserver/)
 * [kube-controller-manager](/docs/reference/command-line-tools-reference/kube-controller-manager/)
 * [kube-scheduler](/docs/reference/command-line-tools-reference/kube-scheduler/).
 
-Flags and configuration files may not always be changeable in a hosted Kubernetes service or a distribution with managed installation. When they are changeable, they are usually only changeable by the cluster administrator. Also, they are subject to change in future Kubernetes versions, and setting them may require restarting processes. For those reasons, they should be used only when there are no other options.
+Flags and configuration files may not always be changeable in a hosted Kubernetes service or a
+distribution with managed installation. When they are changeable, they are usually only changeable
+by the cluster administrator. Also, they are subject to change in future Kubernetes versions, and
+setting them may require restarting processes. For those reasons, they should be used only when
+there are no other options.
 
-*Built-in Policy APIs*, such as [ResourceQuota](/docs/concepts/policy/resource-quotas/), [PodSecurityPolicies](/docs/concepts/policy/pod-security-policy/), [NetworkPolicy](/docs/concepts/services-networking/network-policies/) and Role-based Access Control ([RBAC](/docs/reference/access-authn-authz/rbac/)), are built-in Kubernetes APIs. APIs are typically used with hosted Kubernetes services and with managed Kubernetes installations. They are declarative and use the same conventions as other Kubernetes resources like pods, so new cluster configuration can be repeatable and be managed the same way as applications. And, where they are stable, they enjoy a [defined support policy](/docs/reference/using-api/deprecation-policy/) like other Kubernetes APIs. For these reasons, they are preferred over *configuration files* and *flags* where suitable.
+*Built-in Policy APIs*, such as [ResourceQuota](/docs/concepts/policy/resource-quotas/),
+[PodSecurityPolicies](/docs/concepts/security/pod-security-policy/),
+[NetworkPolicy](/docs/concepts/services-networking/network-policies/) and Role-based Access Control
+([RBAC](/docs/reference/access-authn-authz/rbac/)), are built-in Kubernetes APIs.
+APIs are typically used with hosted Kubernetes services and with managed Kubernetes installations.
+They are declarative and use the same conventions as other Kubernetes resources like pods,
+so new cluster configuration can be repeatable and be managed the same way as applications.
+And, where they are stable, they enjoy a
+[defined support policy](/docs/reference/using-api/deprecation-policy/) like other Kubernetes APIs.
+For these reasons, they are preferred over *configuration files* and *flags* where suitable.
 
 ## Extensions
 
 Extensions are software components that extend and deeply integrate with Kubernetes.
 They adapt it to support new types and new kinds of hardware.
 
-Most cluster administrators will use a hosted or distribution
-instance of Kubernetes. As a result, most Kubernetes users will not need to
-install extensions and fewer will need to author new ones.
+Many cluster administrators use a hosted or distribution instance of Kubernetes. 
+These clusters come with extensions pre-installed. As a result, most Kubernetes 
+users will not need to install extensions and even fewer users will need to author new ones.
 
 ## Extension Patterns
 
@@ -69,15 +86,14 @@ There is a specific pattern for writing client programs that work well with
 Kubernetes called the *Controller* pattern. Controllers typically read an
 object's `.spec`, possibly do things, and then update the object's `.status`.
 
-A controller is a client of Kubernetes. When Kubernetes is the client and
-calls out to a remote service, it is called a *Webhook*. The remote service
-is called a *Webhook Backend*. Like Controllers, Webhooks do add a point of
-failure.
+A controller is a client of Kubernetes. When Kubernetes is the client and calls out to a remote
+service, it is called a *Webhook*. The remote service is called a *Webhook Backend*. Like
+Controllers, Webhooks do add a point of failure.
 
 In the webhook model, Kubernetes makes a network request to a remote service.
 In the *Binary Plugin* model, Kubernetes executes a binary (program).
 Binary plugins are used by the kubelet (e.g.
-[Flex Volume Plugins](/docs/concepts/storage/volumes/#flexVolume)
+[Flex Volume Plugins](/docs/concepts/storage/volumes/#flexvolume)
 and [Network Plugins](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/))
 and by kubectl.
 
@@ -94,15 +110,35 @@ This diagram shows the extension points in a Kubernetes system.
 <!-- image source diagrams: https://docs.google.com/drawings/d/1k2YdJgNTtNfW7_A8moIIkij-DmVgEhNrn3y2OODwqQQ/view -->
 ![Extension Points](/docs/concepts/extend-kubernetes/extension-points.png)
 
-1.   Users often interact with the Kubernetes API using `kubectl`. [Kubectl plugins](/docs/tasks/extend-kubectl/kubectl-plugins/) extend the kubectl binary. They only affect the individual user's local environment, and so cannot enforce site-wide policies.
-2.   The apiserver handles all requests. Several types of extension points in the apiserver allow authenticating requests, or blocking them based on their content, editing content, and handling deletion. These are described in the [API Access Extensions](#api-access-extensions) section.
-3.   The apiserver serves various kinds of *resources*. *Built-in resource kinds*, like `pods`, are defined by the Kubernetes project and can't be changed. You can also add resources that you define, or that other projects have defined, called *Custom Resources*, as explained in the [Custom Resources](#user-defined-types) section. Custom Resources are often used with API Access Extensions.
-4.   The Kubernetes scheduler decides which nodes to place pods on. There are several ways to extend scheduling. These are described in the [Scheduler Extensions](#scheduler-extensions) section.
-5.   Much of the behavior of Kubernetes is implemented by programs called Controllers which are clients of the API-Server. Controllers are often used in conjunction with Custom Resources.
-6.   The kubelet runs on servers, and helps pods appear like virtual servers with their own IPs on the cluster network. [Network Plugins](#network-plugins) allow for different implementations of pod networking.
-7.  The kubelet also mounts and unmounts volumes for containers. New types of storage can be supported via [Storage Plugins](#storage-plugins).
+1. Users often interact with the Kubernetes API using `kubectl`.
+   [Kubectl plugins](/docs/tasks/extend-kubectl/kubectl-plugins/) extend the kubectl binary.
+   They only affect the individual user's local environment, and so cannot enforce site-wide policies.
 
-If you are unsure where to start, this flowchart can help. Note that some solutions may involve several types of extensions.
+1. The API server handles all requests. Several types of extension points in the API server allow
+   authenticating requests, or blocking them based on their content, editing content, and handling
+   deletion. These are described in the [API Access Extensions](#api-access-extensions) section.
+
+1. The API server serves various kinds of *resources*. *Built-in resource kinds*, like `pods`, are
+   defined by the Kubernetes project and can't be changed. You can also add resources that you
+   define, or that other projects have defined, called *Custom Resources*, as explained in the
+   [Custom Resources](#user-defined-types) section. Custom Resources are often used with API access
+   extensions.
+
+1. The Kubernetes scheduler decides which nodes to place pods on. There are several ways to extend
+   scheduling. These are described in the [Scheduler Extensions](#scheduler-extensions) section.
+
+1. Much of the behavior of Kubernetes is implemented by programs called Controllers which are
+   clients of the API server. Controllers are often used in conjunction with Custom Resources.
+
+1. The kubelet runs on servers, and helps pods appear like virtual servers with their own IPs on
+   the cluster network. [Network Plugins](#network-plugins) allow for different implementations of
+   pod networking.
+
+1. The kubelet also mounts and unmounts volumes for containers. New types of storage can be
+   supported via [Storage Plugins](#storage-plugins).
+
+If you are unsure where to start, this flowchart can help. Note that some solutions may involve
+several types of extensions.
 
 <!-- image source drawing: https://docs.google.com/drawings/d/1sdviU6lDz4BpnzJNHfNpQrqI9F19QZ07KnhnxVrp2yg/edit -->
 ![Flowchart for Extension](/docs/concepts/extend-kubernetes/flowchart.png)
@@ -111,58 +147,86 @@ If you are unsure where to start, this flowchart can help. Note that some soluti
 
 ### User-Defined Types
 
-Consider adding a Custom Resource to Kubernetes if you want to define new controllers, application configuration objects or other declarative APIs, and to manage them using Kubernetes tools, such as `kubectl`.
+Consider adding a Custom Resource to Kubernetes if you want to define new controllers, application
+configuration objects or other declarative APIs, and to manage them using Kubernetes tools, such
+as `kubectl`.
 
 Do not use a Custom Resource as data storage for application, user, or monitoring data.
 
-For more about Custom Resources, see the [Custom Resources concept guide](/docs/concepts/extend-kubernetes/api-extension/custom-resources/).
+For more about Custom Resources, see the
+[Custom Resources concept guide](/docs/concepts/extend-kubernetes/api-extension/custom-resources/).
 
 
 ### Combining New APIs with Automation
 
-The combination of a custom resource API and a control loop is called the [Operator pattern](/docs/concepts/extend-kubernetes/operator/). The Operator pattern is used to manage specific, usually stateful, applications. These custom APIs and control loops can also be used to control other resources, such as storage or policies.
+The combination of a custom resource API and a control loop is called the
+[Operator pattern](/docs/concepts/extend-kubernetes/operator/). The Operator pattern is used to manage
+specific, usually stateful, applications. These custom APIs and control loops can also be used to
+control other resources, such as storage or policies.
 
 ### Changing Built-in Resources
 
-When you extend the Kubernetes API by adding custom resources, the added resources always fall into a new API Groups. You cannot replace or change existing API groups.
-Adding an API does not directly let you affect the behavior of existing APIs (e.g. Pods), but API Access Extensions do.
+When you extend the Kubernetes API by adding custom resources, the added resources always fall
+into a new API Groups. You cannot replace or change existing API groups.
+Adding an API does not directly let you affect the behavior of existing APIs (e.g. Pods), but API
+Access Extensions do.
 
 
 ### API Access Extensions
 
-When a request reaches the Kubernetes API Server, it is first Authenticated, then Authorized, then subject to various types of Admission Control. See [Controlling Access to the Kubernetes API](/docs/concepts/security/controlling-access/) for more on this flow.
+When a request reaches the Kubernetes API Server, it is first Authenticated, then Authorized, then
+subject to various types of Admission Control. See
+[Controlling Access to the Kubernetes API](/docs/concepts/security/controlling-access/)
+for more on this flow.
 
 Each of these steps offers extension points.
 
-Kubernetes has several built-in authentication methods that it supports. It can also sit behind an authenticating proxy, and it can send a token from an Authorization header to a remote service for verification (a webhook). All of these methods are covered in the [Authentication documentation](/docs/reference/access-authn-authz/authentication/).
+Kubernetes has several built-in authentication methods that it supports. It can also sit behind an
+authenticating proxy, and it can send a token from an Authorization header to a remote service for
+verification (a webhook). All of these methods are covered in the
+[Authentication documentation](/docs/reference/access-authn-authz/authentication/).
 
 ### Authentication
 
-[Authentication](/docs/reference/access-authn-authz/authentication/) maps headers or certificates in all requests to a username for the client making the request.
-
-Kubernetes provides several built-in authentication methods, and an [Authentication webhook](/docs/reference/access-authn-authz/authentication/#webhook-token-authentication) method if those don't meet your needs.
+[Authentication](/docs/reference/access-authn-authz/authentication/) maps headers or certificates
+in all requests to a username for the client making the request.
 
+Kubernetes provides several built-in authentication methods, and an
+[Authentication webhook](/docs/reference/access-authn-authz/authentication/#webhook-token-authentication)
+method if those don't meet your needs.
 
 ### Authorization
 
-[Authorization](/docs/reference/access-authn-authz/webhook/) determines whether specific users can read, write, and do other operations on API resources. It works at the level of whole resources -- it doesn't discriminate based on arbitrary object fields. If the built-in authorization options don't meet your needs, and [Authorization webhook](/docs/reference/access-authn-authz/webhook/) allows calling out to user-provided code to make an authorization decision.
-
+[Authorization](/docs/reference/access-authn-authz/authorization/) determines whether specific
+users can read, write, and do other operations on API resources. It works at the level of whole
+resources -- it doesn't discriminate based on arbitrary object fields. If the built-in
+authorization options don't meet your needs, [Authorization webhook](/docs/reference/access-authn-authz/webhook/)
+allows calling out to user-provided code to make an authorization decision.
 
 ### Dynamic Admission Control
 
-After a request is authorized, if it is a write operation, it also goes through [Admission Control](/docs/reference/access-authn-authz/admission-controllers/) steps. In addition to the built-in steps, there are several extensions:
+After a request is authorized, if it is a write operation, it also goes through
+[Admission Control](/docs/reference/access-authn-authz/admission-controllers/) steps.
+In addition to the built-in steps, there are several extensions:
 
-*   The [Image Policy webhook](/docs/reference/access-authn-authz/admission-controllers/#imagepolicywebhook) restricts what images can be run in containers.
-*   To make arbitrary admission control decisions, a general [Admission webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks) can be used. Admission Webhooks can reject creations or updates.
+* The [Image Policy webhook](/docs/reference/access-authn-authz/admission-controllers/#imagepolicywebhook)
+  restricts what images can be run in containers.
+* To make arbitrary admission control decisions, a general
+  [Admission webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks)
+  can be used. Admission Webhooks can reject creations or updates.
 
 ## Infrastructure Extensions
 
 ### Storage Plugins
 
-[Flex Volumes](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/storage/flexvolume-deployment.md
-) allow users to mount volume types without built-in support by having the
-Kubelet call a Binary Plugin to mount the volume.
+[Flex Volumes](https://git.k8s.io/design-proposals-archive/storage/flexvolume-deployment.md)
+allow users to mount volume types without built-in support by having the kubelet call a binary
+plugin to mount the volume.
 
+FlexVolume is deprecated since Kubernetes v1.23. The out-of-tree CSI driver is the recommended way
+to write volume drivers in Kubernetes. See
+[Kubernetes Volume Plugin FAQ for Storage Vendors](https://github.com/kubernetes/community/blob/master/sig-storage/volume-plugin-faq.md#kubernetes-volume-plugin-faq-for-storage-vendors)
+for more information.
 
 ### Device Plugins
 
@@ -170,7 +234,6 @@ Device plugins allow a node to discover new Node resources (in addition to the
 builtin ones like cpu and memory) via a
 [Device Plugin](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/).
 
-
 ### Network Plugins
 
 Different networking fabrics can be supported via node-level
@@ -188,7 +251,7 @@ This is a significant undertaking, and almost all Kubernetes users find they
 do not need to modify the scheduler.
 
 The scheduler also supports a
-[webhook](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/scheduling/scheduler_extender.md)
+[webhook](https://git.k8s.io/design-proposals-archive/scheduling/scheduler_extender.md)
 that permits a webhook backend (scheduler extension) to filter and prioritize
 the nodes chosen for a pod.
 
diff --git a/content/en/docs/concepts/extend-kubernetes/api-extension/custom-resources.md b/content/en/docs/concepts/extend-kubernetes/api-extension/custom-resources.md
index 3d72f279b6..258014a432 100644
--- a/content/en/docs/concepts/extend-kubernetes/api-extension/custom-resources.md
+++ b/content/en/docs/concepts/extend-kubernetes/api-extension/custom-resources.md
@@ -26,7 +26,7 @@ many core Kubernetes functions are now built using custom resources, making Kube
 Custom resources can appear and disappear in a running cluster through dynamic registration,
 and cluster admins can update custom resources independently of the cluster itself.
 Once a custom resource is installed, users can create and access its objects using
-[kubectl](/docs/reference/kubectl/overview/), just as they do for built-in resources like
+[kubectl](/docs/reference/kubectl/), just as they do for built-in resources like
 *Pods*.
 
 ## Custom controllers
@@ -35,11 +35,11 @@ On their own, custom resources let you store and retrieve structured data.
 When you combine a custom resource with a *custom controller*, custom resources
 provide a true _declarative API_.
 
-A [declarative API](/docs/concepts/overview/kubernetes-api/)
-allows you to _declare_ or specify the desired state of your resource and tries to
-keep the current state of Kubernetes objects in sync with the desired state.
-The controller interprets the structured data as a record of the user's
-desired state, and continually maintains this state.
+The Kubernetes [declarative API](/docs/concepts/overview/kubernetes-api/)
+enforces a separation of responsibilities. You declare the desired state of
+your resource. The Kubernetes controller keeps the current state of Kubernetes
+objects in sync with your declared desired state. This is in contrast to an
+imperative API, where you *instruct* a server what to do.
 
 You can deploy and update a custom controller on a running cluster, independently
 of the cluster's lifecycle. Custom controllers can work with any kind of resource,
@@ -148,8 +148,8 @@ and use a controller to handle events.
 Usually, each resource in the Kubernetes API requires code that handles REST requests and manages persistent storage of objects. The main Kubernetes API server handles built-in resources like *pods* and *services*, and can also generically handle custom resources through [CRDs](#customresourcedefinitions).
 
 The [aggregation layer](/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/) allows you to provide specialized
-implementations for your custom resources by writing and deploying your own standalone API server.
-The main API server delegates requests to you for the custom resources that you handle,
+implementations for your custom resources by writing and deploying your own API server.
+The main API server delegates requests to your API server for the custom resources that you handle,
 making them available to all of its clients.
 
 ## Choosing a method for adding custom resources
diff --git a/content/en/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins.md b/content/en/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins.md
index 868d8d56e8..6f265f57f3 100644
--- a/content/en/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins.md
+++ b/content/en/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins.md
@@ -1,7 +1,6 @@
 ---
-reviewers:
 title: Device Plugins
-description: Use the Kubernetes device plugin framework to implement plugins for GPUs, NICs, FPGAs, InfiniBand, and similar resources that require vendor-specific setup.
+description: Device plugins let you configure your cluster with support for devices or resources that require vendor-specific setup, such as GPUs, NICs, FPGAs, or non-volatile main memory.
 content_type: concept
 weight: 20
 ---
@@ -9,7 +8,7 @@ weight: 20
 <!-- overview -->
 {{< feature-state for_k8s_version="v1.10" state="beta" >}}
 
-Kubernetes provides a [device plugin framework](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/resource-management/device-plugin.md)
+Kubernetes provides a [device plugin framework](https://git.k8s.io/design-proposals-archive/resource-management/device-plugin.md)
 that you can use to advertise system hardware resources to the
 {{< glossary_tooltip term_id="kubelet" >}}.
 
@@ -48,12 +47,14 @@ For example, after a device plugin registers `hardware-vendor.example/foo` with
 and reports two healthy devices on a node, the node status is updated
 to advertise that the node has 2 "Foo" devices installed and available.
 
-Then, users can request devices in a
-[Container](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core)
-specification as they request other types of resources, with the following limitations:
-
+Then, users can request devices as part of a Pod specification
+(see [`container`](/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container)).
+Requesting extended resources is similar to how you manage requests and limits for
+other resources, with the following differences:
 * Extended resources are only supported as integer resources and cannot be overcommitted.
-* Devices cannot be shared among Containers.
+* Devices cannot be shared between containers.
+
+### Example {#example-pod}
 
 Suppose a Kubernetes cluster is running a device plugin that advertises resource `hardware-vendor.example/foo`
 on certain nodes. Here is an example of a pod requesting this resource to run a demo workload:
@@ -174,7 +175,7 @@ a Kubernetes release with a newer device plugin API version, upgrade your device
 to support both versions before upgrading these nodes. Taking that approach will
 ensure the continuous functioning of the device allocations during the upgrade.
 
-## Monitoring Device Plugin Resources
+## Monitoring device plugin resources
 
 {{< feature-state for_k8s_version="v1.15" state="beta" >}}
 
@@ -197,6 +198,8 @@ service PodResourcesLister {
 }
 ```
 
+### `List` gRPC endpoint {#grpc-endpoint-list}
+
 The `List` endpoint provides information on resources of running pods, with details such as the
 id of exclusively allocated CPUs, device id as it was reported by device plugins and id of
 the NUMA node where these devices are allocated. Also, for NUMA-based machines, it contains the information about memory and hugepages reserved for a container.
@@ -246,10 +249,35 @@ message ContainerDevices {
     TopologyInfo topology = 3;
 }
 ```
+{{< note >}}
+cpu_ids in the `ContainerResources` in the `List` endpoint correspond to exclusive CPUs allocated
+to a partilar container. If the goal is to evaluate CPUs that belong to the shared pool, the `List`
+endpoint needs to be used in conjunction with the `GetAllocatableResources` endpoint as explained
+below:
+1. Call `GetAllocatableResources` to get a list of all the allocatable CPUs
+2. Call `GetCpuIds` on all `ContainerResources` in the system
+3. Subtract out all of the CPUs from the `GetCpuIds` calls from the `GetAllocatableResources` call
+{{< /note >}}
+
+### `GetAllocatableResources` gRPC endpoint {#grpc-endpoint-getallocatableresources}
+
+{{< feature-state state="beta" for_k8s_version="v1.23" >}}
 
 GetAllocatableResources provides information on resources initially available on the worker node.
 It provides more information than kubelet exports to APIServer.
 
+{{< note >}}
+`GetAllocatableResources` should only be used to evaluate [allocatable](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)
+resources on a node. If the goal is to evaluate free/unallocated resources it should be used in
+conjunction with the List() endpoint. The result obtained by `GetAllocatableResources` would remain
+the same unless the underlying resources exposed to kubelet change. This happens rarely but when
+it does (for example: hotplug/hotunplug, device health changes), client is expected to call
+`GetAlloctableResources` endpoint.
+However, calling `GetAllocatableResources` endpoint is not sufficient in case of cpu and/or memory
+update and Kubelet needs to be restarted to reflect the correct resource capacity and allocatable.
+{{< /note >}}
+
+
 ```gRPC
 // AllocatableResourcesResponses contains informations about all the devices known by the kubelet
 message AllocatableResourcesResponse {
@@ -259,6 +287,13 @@ message AllocatableResourcesResponse {
 }
 
 ```
+Starting from Kubernetes v1.23, the `GetAllocatableResources` is enabled by default.
+You can disable it by turning off the
+`KubeletPodResourcesGetAllocatable` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/).
+
+Preceding Kubernetes v1.23, to enable this feature `kubelet` must be started with the following flag:
+
+`--feature-gates=KubeletPodResourcesGetAllocatable=true`
 
 `ContainerDevices` do expose the topology information declaring to which NUMA cells the device is affine.
 The NUMA cells are identified using a opaque integer ID, which value is consistent to what device
@@ -276,7 +311,7 @@ DaemonSet, `/var/lib/kubelet/pod-resources` must be mounted as a
 Support for the `PodResourcesLister service` requires `KubeletPodResources` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) to be enabled.
 It is enabled by default starting with Kubernetes 1.15 and is v1 since Kubernetes 1.20.
 
-## Device Plugin integration with the Topology Manager
+## Device plugin integration with the Topology Manager
 
 {{< feature-state for_k8s_version="v1.18" state="beta" >}}
 
@@ -285,7 +320,7 @@ The Topology Manager is a Kubelet component that allows resources to be co-ordin
 
 ```gRPC
 message TopologyInfo {
-	repeated NUMANode nodes = 1;
+    repeated NUMANode nodes = 1;
 }
 
 message NUMANode {
@@ -304,15 +339,16 @@ pluginapi.Device{ID: "25102017", Health: pluginapi.Healthy, Topology:&pluginapi.
 
 ## Device plugin examples {#examples}
 
+{{% thirdparty-content %}}
+
 Here are some examples of device plugin implementations:
 
 * The [AMD GPU device plugin](https://github.com/RadeonOpenCompute/k8s-device-plugin)
-* The [Intel device plugins](https://github.com/intel/intel-device-plugins-for-kubernetes) for Intel GPU, FPGA and QuickAssist devices
+* The [Intel device plugins](https://github.com/intel/intel-device-plugins-for-kubernetes) for Intel GPU, FPGA, QAT, VPU, SGX, DSA, DLB and IAA devices
 * The [KubeVirt device plugins](https://github.com/kubevirt/kubernetes-device-plugins) for hardware-assisted virtualization
-* The [NVIDIA GPU device plugin](https://github.com/NVIDIA/k8s-device-plugin)
-    * Requires [nvidia-docker](https://github.com/NVIDIA/nvidia-docker) 2.0, which allows you to run GPU-enabled Docker containers.
 * The [NVIDIA GPU device plugin for Container-Optimized OS](https://github.com/GoogleCloudPlatform/container-engine-accelerators/tree/master/cmd/nvidia_gpu)
 * The [RDMA device plugin](https://github.com/hustcat/k8s-rdma-device-plugin)
+* The [SocketCAN device plugin](https://github.com/collabora/k8s-socketcan)
 * The [Solarflare device plugin](https://github.com/vikaschoudhary16/sfc-device-plugin)
 * The [SR-IOV Network device plugin](https://github.com/intel/sriov-network-device-plugin)
 * The [Xilinx FPGA device plugins](https://github.com/Xilinx/FPGA_as_a_Service/tree/master/k8s-fpga-device-plugin) for Xilinx FPGA devices
@@ -323,5 +359,5 @@ Here are some examples of device plugin implementations:
 
 * Learn about [scheduling GPU resources](/docs/tasks/manage-gpus/scheduling-gpus/) using device plugins
 * Learn about [advertising extended resources](/docs/tasks/administer-cluster/extended-resource-node/) on a node
-* Read about using [hardware acceleration for TLS ingress](https://kubernetes.io/blog/2019/04/24/hardware-accelerated-ssl/tls-termination-in-ingress-controllers-using-kubernetes-device-plugins-and-runtimeclass/) with Kubernetes
 * Learn about the [Topology Manager](/docs/tasks/administer-cluster/topology-manager/)
+* Read about using [hardware acceleration for TLS ingress](/blog/2019/04/24/hardware-accelerated-ssl/tls-termination-in-ingress-controllers-using-kubernetes-device-plugins-and-runtimeclass/) with Kubernetes
diff --git a/content/en/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins.md b/content/en/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins.md
index 0ec8bf81b1..38d2c7afbc 100644
--- a/content/en/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins.md
+++ b/content/en/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins.md
@@ -11,36 +11,52 @@ weight: 10
 
 <!-- overview -->
 
-Network plugins in Kubernetes come in a few flavors:
+Kubernetes {{< skew currentVersion >}} supports [Container Network Interface](https://github.com/containernetworking/cni)
+(CNI) plugins for cluster networking. You must use a CNI plugin that is compatible with your cluster and that suits your needs. Different plugins are available (both open- and closed- source) in the wider Kubernetes ecosystem.
 
-* CNI plugins: adhere to the [Container Network Interface](https://github.com/containernetworking/cni) (CNI) specification, designed for interoperability.
-  * Kubernetes follows the [v0.4.0](https://github.com/containernetworking/cni/blob/spec-v0.4.0/SPEC.md) release of the CNI specification.
-* Kubenet plugin: implements basic `cbr0` using the `bridge` and `host-local` CNI plugins
+A CNI plugin is required to implement the [Kubernetes network model](/docs/concepts/services-networking/#the-kubernetes-network-model). 
+
+You must use a CNI plugin that is compatible with the 
+[v0.4.0](https://github.com/containernetworking/cni/blob/spec-v0.4.0/SPEC.md) or later
+releases of the CNI specification. The Kubernetes project recommends using a plugin that is
+compatible with the [v1.0.0](https://github.com/containernetworking/cni/blob/spec-v1.0.0/SPEC.md)
+CNI specification (plugins can be compatible with multiple spec versions).
 
 <!-- body -->
 
 ## Installation
 
-The kubelet has a single default network plugin, and a default network common to the entire cluster. It probes for plugins when it starts up, remembers what it finds, and executes the selected plugin at appropriate times in the pod lifecycle (this is only true for Docker, as CRI manages its own CNI plugins). There are two Kubelet command line parameters to keep in mind when using plugins:
+A Container Runtime, in the networking context, is a daemon on a node configured to provide CRI Services for kubelet. In particular, the Container Runtime must be configured to load the CNI plugins required to implement the Kubernetes network model.
 
-* `cni-bin-dir`: Kubelet probes this directory for plugins on startup
-* `network-plugin`: The network plugin to use from `cni-bin-dir`.  It must match the name reported by a plugin probed from the plugin directory.  For CNI plugins, this is `cni`.
+{{< note >}}
+Prior to Kubernetes 1.24, the CNI plugins could also be managed by the kubelet using the `cni-bin-dir` and `network-plugin` command-line parameters.
+These command-line parameters were removed in Kubernetes 1.24, with management of the CNI no longer in scope for kubelet.
+
+See [Troubleshooting CNI plugin-related errors](/docs/tasks/administer-cluster/migrating-from-dockershim/troubleshooting-cni-plugin-related-errors/)
+if you are facing issues following the removal of dockershim.
+{{< /note >}}
+
+For specific information about how a Container Runtime manages the CNI plugins, see the documentation for that Container Runtime, for example:
+- [containerd](https://github.com/containerd/containerd/blob/main/script/setup/install-cni)
+- [CRI-O](https://github.com/cri-o/cri-o/blob/main/contrib/cni/README.md)
+
+For specific information about how to install and manage a CNI plugin, see the documentation for that plugin or [networking provider](/docs/concepts/cluster-administration/networking/#how-to-implement-the-kubernetes-networking-model).
 
 ## Network Plugin Requirements
 
-Besides providing the [`NetworkPlugin` interface](https://github.com/kubernetes/kubernetes/tree/{{< param "fullversion" >}}/pkg/kubelet/dockershim/network/plugins.go) to configure and clean up pod networking, the plugin may also need specific support for kube-proxy.  The iptables proxy obviously depends on iptables, and the plugin may need to ensure that container traffic is made available to iptables.  For example, if the plugin connects containers to a Linux bridge, the plugin must set the `net/bridge/bridge-nf-call-iptables` sysctl to `1` to ensure that the iptables proxy functions correctly.  If the plugin does not use a Linux bridge (but instead something like Open vSwitch or some other mechanism) it should ensure container traffic is appropriately routed for the proxy.
+For plugin developers and users who regularly build or deploy Kubernetes, the plugin may also need specific configuration to support kube-proxy.
+The iptables proxy depends on iptables, and the plugin may need to ensure that container traffic is made available to iptables.
+For example, if the plugin connects containers to a Linux bridge, the plugin must set the `net/bridge/bridge-nf-call-iptables` sysctl to `1` to ensure that the iptables proxy functions correctly.
+If the plugin does not use a Linux bridge, but uses something like Open vSwitch or some other mechanism instead, it should ensure container traffic is appropriately routed for the proxy.
 
-By default if no kubelet network plugin is specified, the `noop` plugin is used, which sets `net/bridge/bridge-nf-call-iptables=1` to ensure simple configurations (like Docker with a bridge) work correctly with the iptables proxy.
+By default, if no kubelet network plugin is specified, the `noop` plugin is used, which sets `net/bridge/bridge-nf-call-iptables=1` to ensure simple configurations (like Docker with a bridge) work correctly with the iptables proxy.
 
-### CNI
+### Loopback CNI
 
-The CNI plugin is selected by passing Kubelet the `--network-plugin=cni` command-line option.  Kubelet reads a file from `--cni-conf-dir` (default `/etc/cni/net.d`) and uses the CNI configuration from that file to set up each pod's network.  The CNI configuration file must match the [CNI specification](https://github.com/containernetworking/cni/blob/master/SPEC.md#network-configuration), and any required CNI plugins referenced by the configuration must be present in `--cni-bin-dir` (default `/opt/cni/bin`).
+In addition to the CNI plugin installed on the nodes for implementing the Kubernetes network model, Kubernetes also requires the container runtimes to provide a loopback interface `lo`, which is used for each sandbox (pod sandboxes, vm sandboxes, ...).
+Implementing the loopback interface can be accomplished by re-using the [CNI loopback plugin.](https://github.com/containernetworking/plugins/blob/master/plugins/main/loopback/loopback.go) or by developing your own code to achieve this (see [this example from CRI-O](https://github.com/cri-o/ocicni/blob/release-1.24/pkg/ocicni/util_linux.go#L91)).
 
-If there are multiple CNI configuration files in the directory, the kubelet uses the configuration file that comes first by name in lexicographic order.
-
-In addition to the CNI plugin specified by the configuration file, Kubernetes requires the standard CNI [`lo`](https://github.com/containernetworking/plugins/blob/master/plugins/main/loopback/loopback.go) plugin, at minimum version 0.2.0
-
-#### Support hostPort
+### Support hostPort
 
 The CNI networking plugin supports `hostPort`. You can use the official [portmap](https://github.com/containernetworking/plugins/tree/master/plugins/meta/portmap)
 plugin offered by the CNI plugin team or use your own plugin with portMapping functionality.
@@ -51,7 +67,7 @@ For example:
 ```json
 {
   "name": "k8s-pod-network",
-  "cniVersion": "0.3.0",
+  "cniVersion": "0.4.0",
   "plugins": [
     {
       "type": "calico",
@@ -77,7 +93,7 @@ For example:
 }
 ```
 
-#### Support traffic shaping
+### Support traffic shaping
 
 **Experimental Feature**
 
@@ -90,7 +106,7 @@ If you want to enable traffic shaping support, you must add the `bandwidth` plug
 ```json
 {
   "name": "k8s-pod-network",
-  "cniVersion": "0.3.0",
+  "cniVersion": "0.4.0",
   "plugins": [
     {
       "type": "calico",
@@ -129,37 +145,4 @@ metadata:
 ...
 ```
 
-### kubenet
-
-Kubenet is a very basic, simple network plugin, on Linux only.  It does not, of itself, implement more advanced features like cross-node networking or network policy.  It is typically used together with a cloud provider that sets up routing rules for communication between nodes, or in single-node environments.
-
-Kubenet creates a Linux bridge named `cbr0` and creates a veth pair for each pod with the host end of each pair connected to `cbr0`.  The pod end of the pair is assigned an IP address allocated from a range assigned to the node either through configuration or by the controller-manager.  `cbr0` is assigned an MTU matching the smallest MTU of an enabled normal interface on the host.
-
-The plugin requires a few things:
-
-* The standard CNI `bridge`, `lo` and `host-local` plugins are required, at minimum version 0.2.0. Kubenet will first search for them in `/opt/cni/bin`. Specify `cni-bin-dir` to supply additional search path. The first found match will take effect.
-* Kubelet must be run with the `--network-plugin=kubenet` argument to enable the plugin
-* Kubelet should also be run with the `--non-masquerade-cidr=<clusterCidr>` argument to ensure traffic to IPs outside this range will use IP masquerade.
-* The node must be assigned an IP subnet through either the `--pod-cidr` kubelet command-line option or the `--allocate-node-cidrs=true --cluster-cidr=<cidr>` controller-manager command-line options.
-
-### Customizing the MTU (with kubenet)
-
-The MTU should always be configured correctly to get the best networking performance.  Network plugins will usually try
-to infer a sensible MTU, but sometimes the logic will not result in an optimal MTU.  For example, if the
-Docker bridge or another interface has a small MTU, kubenet will currently select that MTU.  Or if you are
-using IPSEC encapsulation, the MTU must be reduced, and this calculation is out-of-scope for
-most network plugins.
-
-Where needed, you can specify the MTU explicitly with the `network-plugin-mtu` kubelet option.  For example,
-on AWS the `eth0` MTU is typically 9001, so you might specify `--network-plugin-mtu=9001`.  If you're using IPSEC you
-might reduce it to allow for encapsulation overhead; for example: `--network-plugin-mtu=8873`.
-
-This option is provided to the network-plugin; currently **only kubenet supports `network-plugin-mtu`**.
-
-## Usage Summary
-
-* `--network-plugin=cni` specifies that we use the `cni` network plugin with actual CNI plugin binaries located in `--cni-bin-dir` (default `/opt/cni/bin`) and CNI plugin configuration located in `--cni-conf-dir` (default `/etc/cni/net.d`).
-* `--network-plugin=kubenet` specifies that we use the `kubenet` network plugin with CNI `bridge`, `lo` and `host-local` plugins placed in `/opt/cni/bin` or `cni-bin-dir`.
-* `--network-plugin-mtu=9001` specifies the MTU to use, currently only used by the `kubenet` network plugin.
-
 ## {{% heading "whatsnext" %}}
diff --git a/content/en/docs/concepts/extend-kubernetes/operator.md b/content/en/docs/concepts/extend-kubernetes/operator.md
index 72fe12f1e7..133814e98a 100644
--- a/content/en/docs/concepts/extend-kubernetes/operator.md
+++ b/content/en/docs/concepts/extend-kubernetes/operator.md
@@ -31,9 +31,7 @@ built-in automation from the core of Kubernetes. You can use Kubernetes
 to automate deploying and running workloads, *and* you can automate how
 Kubernetes does that.
 
-Kubernetes' {{< glossary_tooltip text="controllers" term_id="controller" >}}
-concept lets you extend the cluster's behaviour without modifying the code
-of Kubernetes itself.
+Kubernetes' {{< glossary_tooltip text="operator pattern" term_id="operator-pattern" >}} concept lets you extend the cluster's behaviour without modifying the code of Kubernetes itself by linking {{< glossary_tooltip text="controllers" term_id="controller" >}} to one or more custom resources.
 Operators are clients of the Kubernetes API that act as controllers for
 a [Custom Resource](/docs/concepts/extend-kubernetes/api-extension/custom-resources/).
 
@@ -113,6 +111,9 @@ Operator.
 {{% thirdparty-content %}}
 
 * [Charmed Operator Framework](https://juju.is/)
+* [Java Operator SDK](https://github.com/java-operator-sdk/java-operator-sdk)
+* [Kopf](https://github.com/nolar/kopf) (Kubernetes Operator Pythonic Framework)
+* [kube-rs](https://kube.rs/) (Rust)
 * [kubebuilder](https://book.kubebuilder.io/)
 * [KubeOps](https://buehler.github.io/dotnet-operator-sdk/) (.NET operator SDK)
 * [KUDO](https://kudo.dev/) (Kubernetes Universal Declarative Operator)
diff --git a/content/en/docs/concepts/extend-kubernetes/service-catalog.md b/content/en/docs/concepts/extend-kubernetes/service-catalog.md
deleted file mode 100644
index 26517de9c6..0000000000
--- a/content/en/docs/concepts/extend-kubernetes/service-catalog.md
+++ /dev/null
@@ -1,238 +0,0 @@
----
-title: Service Catalog
-reviewers:
-- chenopis
-content_type: concept
-weight: 40
----
-
-<!-- overview -->
-{{< glossary_definition term_id="service-catalog" length="all" prepend="Service Catalog is" >}}  
-
-A service broker, as defined by the [Open service broker API spec](https://github.com/openservicebrokerapi/servicebroker/blob/v2.13/spec.md), is an endpoint for a set of managed services offered and maintained by a third-party, which could be a cloud provider such as AWS, GCP, or Azure.
-Some examples of managed services are Microsoft Azure Cloud Queue, Amazon Simple Queue Service, and Google Cloud Pub/Sub, but they can be any software offering that can be used by an application.
-
-Using Service Catalog, a {{< glossary_tooltip text="cluster operator" term_id="cluster-operator" >}} can browse the list of managed services offered by a service broker, provision an instance of a managed service, and bind with it to make it available to an application in the Kubernetes cluster.
-
-
-
-
-<!-- body -->
-## Example use case
-
-An {{< glossary_tooltip text="application developer" term_id="application-developer" >}} wants to use message queuing as part of their application running in a Kubernetes cluster.
-However, they do not want to deal with the overhead of setting such a service up and administering it themselves.
-Fortunately, there is a cloud provider that offers message queuing as a managed service through its service broker.
-
-A cluster operator can setup Service Catalog and use it to communicate with the cloud provider's service broker to provision an instance of the message queuing service and make it available to the application within the Kubernetes cluster.
-The application developer therefore does not need to be concerned with the implementation details or management of the message queue.
-The application can access the message queue as a service.
-
-## Architecture
-
-Service Catalog uses the [Open service broker API](https://github.com/openservicebrokerapi/servicebroker) to communicate with service brokers, acting as an intermediary for the Kubernetes API Server to negotiate the initial provisioning and retrieve the credentials necessary for the application to use a managed service.
-
-It is implemented using a [CRDs-based](/docs/concepts/extend-kubernetes/api-extension/custom-resources/#custom-resources) architecture.
-
-<br>
-
-![Service Catalog Architecture](/images/docs/service-catalog-architecture.svg)
-
-
-### API Resources
-
-Service Catalog installs the `servicecatalog.k8s.io` API and provides the following Kubernetes resources:
-
-* `ClusterServiceBroker`: An in-cluster representation of a service broker, encapsulating its server connection details.
-These are created and managed by cluster operators who wish to use that broker server to make new types of managed services available within their cluster.
-* `ClusterServiceClass`: A managed service offered by a particular service broker.
-When a new `ClusterServiceBroker` resource is added to the cluster, the Service Catalog controller connects to the service broker to obtain a list of available managed services. It then creates a new `ClusterServiceClass` resource corresponding to each managed service.
-* `ClusterServicePlan`: A specific offering of a managed service. For example, a managed service may have different plans available, such as a free tier or paid tier, or it may have different configuration options, such as using SSD storage or having more resources. Similar to `ClusterServiceClass`, when a new `ClusterServiceBroker` is added to the cluster, Service Catalog creates a new `ClusterServicePlan` resource corresponding to each Service Plan available for each managed service.
-* `ServiceInstance`: A provisioned instance of a `ClusterServiceClass`.
-These are created by cluster operators to make a specific instance of a managed service available for use by one or more in-cluster applications.
-When a new `ServiceInstance` resource is created, the Service Catalog controller connects to the appropriate service broker and instruct it to provision the service instance.
-* `ServiceBinding`: Access credentials to a `ServiceInstance`.
-These are created by cluster operators who want their applications to make use of a `ServiceInstance`.
-Upon creation, the Service Catalog controller creates a Kubernetes `Secret` containing connection details and credentials for the Service Instance, which can be mounted into Pods.
-
-### Authentication
-
-Service Catalog supports these methods of authentication:
-
-* Basic (username/password)
-* [OAuth 2.0 Bearer Token](https://tools.ietf.org/html/rfc6750)
-
-## Usage
-
-A cluster operator can use Service Catalog API Resources to provision managed services and make them available within a Kubernetes cluster. The steps involved are:
-
-1. Listing the managed services and Service Plans available from a service broker.
-1. Provisioning a new instance of the managed service.
-1. Binding to the managed service, which returns the connection credentials.
-1. Mapping the connection credentials into the application.
-
-### Listing managed services and Service Plans
-
-First, a cluster operator must create a `ClusterServiceBroker` resource within the `servicecatalog.k8s.io` group. This resource contains the URL and connection details necessary to access a service broker endpoint.
-
-This is an example of a `ClusterServiceBroker` resource:
-
-```yaml
-apiVersion: servicecatalog.k8s.io/v1beta1
-kind: ClusterServiceBroker
-metadata:
-  name: cloud-broker
-spec:
-  # Points to the endpoint of a service broker. (This example is not a working URL.)
-  url:  https://servicebroker.somecloudprovider.com/v1alpha1/projects/service-catalog/brokers/default
-  #####
-  # Additional values can be added here, which may be used to communicate
-  # with the service broker, such as bearer token info or a caBundle for TLS.
-  #####
-```
-
-The following is a sequence diagram illustrating the steps involved in listing managed services and Plans available from a service broker:
-
-![List Services](/images/docs/service-catalog-list.svg)
-
-1. Once the `ClusterServiceBroker` resource is added to Service Catalog, it triggers a call to the external service broker for a list of available services.
-1. The service broker returns a list of available managed services and a list of Service Plans, which are cached locally as `ClusterServiceClass` and `ClusterServicePlan` resources respectively.
-1. A cluster operator can then get the list of available managed services using the following command:
-
-        kubectl get clusterserviceclasses -o=custom-columns=SERVICE\ NAME:.metadata.name,EXTERNAL\ NAME:.spec.externalName
-
-    It should output a list of service names with a format similar to:
-
-        SERVICE NAME                           EXTERNAL NAME
-        4f6e6cf6-ffdd-425f-a2c7-3c9258ad2468   cloud-provider-service
-        ...                                    ...
-
-    They can also view the Service Plans available using the following command:
-
-        kubectl get clusterserviceplans -o=custom-columns=PLAN\ NAME:.metadata.name,EXTERNAL\ NAME:.spec.externalName
-
-    It should output a list of plan names with a format similar to:
-
-        PLAN NAME                              EXTERNAL NAME
-        86064792-7ea2-467b-af93-ac9694d96d52   service-plan-name
-        ...                                    ...
-
-
-### Provisioning a new instance
-
-A cluster operator can initiate the provisioning of a new instance by creating a `ServiceInstance` resource.
-
-This is an example of a `ServiceInstance` resource:
-
-```yaml
-apiVersion: servicecatalog.k8s.io/v1beta1
-kind: ServiceInstance
-metadata:
-  name: cloud-queue-instance
-  namespace: cloud-apps
-spec:
-  # References one of the previously returned services
-  clusterServiceClassExternalName: cloud-provider-service
-  clusterServicePlanExternalName: service-plan-name
-  #####
-  # Additional parameters can be added here,
-  # which may be used by the service broker.
-  #####
-```
-
-The following sequence diagram illustrates the steps involved in provisioning a new instance of a managed service:
-
-![Provision a Service](/images/docs/service-catalog-provision.svg)
-
-1. When the `ServiceInstance` resource is created, Service Catalog initiates a call to the external service broker to provision an instance of the service.
-1. The service broker creates a new instance of the managed service and returns an HTTP response.
-1. A cluster operator can then check the status of the instance to see if it is ready.
-
-### Binding to a managed service
-
-After a new instance has been provisioned, a cluster operator must bind to the managed service to get the connection credentials and service account details necessary for the application to use the service. This is done by creating a `ServiceBinding` resource.
-
-The following is an example of a `ServiceBinding` resource:
-
-```yaml
-apiVersion: servicecatalog.k8s.io/v1beta1
-kind: ServiceBinding
-metadata:
-  name: cloud-queue-binding
-  namespace: cloud-apps
-spec:
-  instanceRef:
-    name: cloud-queue-instance
-  #####
-  # Additional information can be added here, such as a secretName or
-  # service account parameters, which may be used by the service broker.
-  #####
-```
-
-The following sequence diagram illustrates the steps involved in binding to a managed service instance:
-
-![Bind to a managed service](/images/docs/service-catalog-bind.svg)
-
-1. After the `ServiceBinding` is created, Service Catalog makes a call to the external service broker requesting the information necessary to bind with the service instance.
-1. The service broker enables the application permissions/roles for the appropriate service account.
-1. The service broker returns the information necessary to connect and access the managed service instance. This is provider and service-specific so the information returned may differ between Service Providers and their managed services.
-
-### Mapping the connection credentials
-
-After binding, the final step involves mapping the connection credentials and service-specific information into the application.
-These pieces of information are stored in secrets that the application in the cluster can access and use to connect directly with the managed service.
-
-<br>
-
-![Map connection credentials](/images/docs/service-catalog-map.svg)
-
-#### Pod configuration File
-
-One method to perform this mapping is to use a declarative Pod configuration.
-
-The following example describes how to map service account credentials into the application. A key called `sa-key` is stored in a volume named `provider-cloud-key`, and the application mounts this volume at `/var/secrets/provider/key.json`. The environment variable `PROVIDER_APPLICATION_CREDENTIALS` is mapped from the value of the mounted file.
-
-```yaml
-...
-    spec:
-      volumes:
-        - name: provider-cloud-key
-          secret:
-            secretName: sa-key
-      containers:
-...
-          volumeMounts:
-          - name: provider-cloud-key
-            mountPath: /var/secrets/provider
-          env:
-          - name: PROVIDER_APPLICATION_CREDENTIALS
-            value: "/var/secrets/provider/key.json"
-```
-
-The following example describes how to map secret values into application environment variables. In this example, the messaging queue topic name is mapped from a secret named `provider-queue-credentials` with a key named `topic` to the environment variable `TOPIC`.
-
-
-```yaml
-...
-          env:
-          - name: "TOPIC"
-            valueFrom:
-                secretKeyRef:
-                   name: provider-queue-credentials
-                   key: topic
-```
-
-
-
-
-## {{% heading "whatsnext" %}}
-
-* If you are familiar with {{< glossary_tooltip text="Helm Charts" term_id="helm-chart" >}}, [install Service Catalog using Helm](/docs/tasks/service-catalog/install-service-catalog-using-helm/) into your Kubernetes cluster. Alternatively, you can [install Service Catalog using the SC tool](/docs/tasks/service-catalog/install-service-catalog-using-sc/).
-* View [sample service brokers](https://github.com/openservicebrokerapi/servicebroker/blob/master/gettingStarted.md#sample-service-brokers).
-* Explore the [kubernetes-sigs/service-catalog](https://github.com/kubernetes-sigs/service-catalog) project.
-* View [svc-cat.io](https://svc-cat.io/docs/).
-
-
-
-
-
diff --git a/content/en/docs/concepts/overview/components.md b/content/en/docs/concepts/overview/components.md
index 6c5c0eefa1..387fc157d9 100644
--- a/content/en/docs/concepts/overview/components.md
+++ b/content/en/docs/concepts/overview/components.md
@@ -19,11 +19,7 @@ When you deploy Kubernetes, you get a cluster.
 This document outlines the various components you need to have for
 a complete and working Kubernetes cluster.
 
-Here's the diagram of a Kubernetes cluster with all the components tied together.
-
-![Components of Kubernetes](/images/docs/components-of-kubernetes.svg)
-
-
+{{< figure src="/images/docs/components-of-kubernetes.svg" alt="Components of Kubernetes" caption="The components of a Kubernetes cluster" class="diagram-large" >}}
 
 <!-- body -->
 ## Control Plane Components
@@ -34,7 +30,7 @@ Control plane components can be run on any machine in the cluster. However,
 for simplicity, set up scripts typically start all control plane components on
 the same machine, and do not run user containers on this machine. See
 [Creating Highly Available clusters with kubeadm](/docs/setup/production-environment/tools/kubeadm/high-availability/)
-for an example control plane setup that runs across multiple VMs.
+for an example control plane setup that runs across multiple machines.
 
 ### kube-apiserver
 
@@ -118,7 +114,7 @@ Containers started by Kubernetes automatically include this DNS server in their
 
 ### Container Resource Monitoring
 
-[Container Resource Monitoring](/docs/tasks/debug-application-cluster/resource-usage-monitoring/) records generic time-series metrics
+[Container Resource Monitoring](/docs/tasks/debug/debug-cluster/resource-usage-monitoring/) records generic time-series metrics
 about containers in a central database, and provides a UI for browsing that data.
 
 ### Cluster-level Logging
diff --git a/content/en/docs/concepts/overview/kubernetes-api.md b/content/en/docs/concepts/overview/kubernetes-api.md
index 07b5d559d7..b72d1aab1f 100644
--- a/content/en/docs/concepts/overview/kubernetes-api.md
+++ b/content/en/docs/concepts/overview/kubernetes-api.md
@@ -23,7 +23,7 @@ The Kubernetes API lets you query and manipulate the state of API objects in Kub
 (for example: Pods, Namespaces, ConfigMaps, and Events).
 
 Most operations can be performed through the
-[kubectl](/docs/reference/kubectl/overview/) command-line interface or other
+[kubectl](/docs/reference/kubectl/) command-line interface or other
 command-line tools, such as
 [kubeadm](/docs/reference/setup-tools/kubeadm/), which in turn use the
 API. However, you can also access the API directly using REST calls.
@@ -37,8 +37,11 @@ if you are writing an application using the Kubernetes API.
 
 Complete API details are documented using [OpenAPI](https://www.openapis.org/).
 
-The Kubernetes API server serves an OpenAPI spec via the `/openapi/v2` endpoint.
-You can request the response format using request headers as follows:
+### OpenAPI V2
+
+The Kubernetes API server serves an aggregated OpenAPI v2 spec via the
+`/openapi/v2` endpoint. You can request the response format using
+request headers as follows:
 
 <table>
   <caption style="display:none">Valid request header values for OpenAPI v2 queries</caption>
@@ -73,10 +76,80 @@ You can request the response format using request headers as follows:
 
 Kubernetes implements an alternative Protobuf based serialization format that
 is primarily intended for intra-cluster communication. For more information
-about this format, see the [Kubernetes Protobuf serialization](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/protobuf.md) design proposal and the
+about this format, see the [Kubernetes Protobuf serialization](https://git.k8s.io/design-proposals-archive/api-machinery/protobuf.md) design proposal and the
 Interface Definition Language (IDL) files for each schema located in the Go
 packages that define the API objects.
 
+### OpenAPI V3
+
+{{< feature-state state="beta"  for_k8s_version="v1.24" >}}
+
+Kubernetes {{< param "version" >}} offers beta support for publishing its APIs as OpenAPI v3; this is a
+beta feature that is enabled by default.
+You can disable the beta feature by turning off the
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/) named `OpenAPIV3`
+for the kube-apiserver component.
+
+A discovery endpoint `/openapi/v3` is provided to see a list of all
+group/versions available. This endpoint only returns JSON. These group/versions
+are provided in the following format:
+```json
+{
+    "paths": {
+        ...
+        "api/v1": {
+            "serverRelativeURL": "/openapi/v3/api/v1?hash=CC0E9BFD992D8C59AEC98A1E2336F899E8318D3CF4C68944C3DEC640AF5AB52D864AC50DAA8D145B3494F75FA3CFF939FCBDDA431DAD3CA79738B297795818CF"
+        },
+        "apis/admissionregistration.k8s.io/v1": {
+            "serverRelativeURL": "/openapi/v3/apis/admissionregistration.k8s.io/v1?hash=E19CC93A116982CE5422FC42B590A8AFAD92CDE9AE4D59B5CAAD568F083AD07946E6CB5817531680BCE6E215C16973CD39003B0425F3477CFD854E89A9DB6597"
+        },
+        ...
+}
+```
+
+The relative URLs are pointing to immutable OpenAPI descriptions, in
+order to improve client-side caching. The proper HTTP caching headers
+are also set by the API server for that purpose (`Expires` to 1 year in
+the future, and `Cache-Control` to `immutable`). When an obsolete URL is
+used, the API server returns a redirect to the newest URL.
+
+The Kubernetes API server publishes an OpenAPI v3 spec per Kubernetes
+group version at the `/openapi/v3/apis/<group>/<version>?hash=<hash>`
+endpoint.
+
+Refer to the table below for accepted request headers.
+
+<table>
+  <caption style="display:none">Valid request header values for OpenAPI v3 queries</caption>
+  <thead>
+     <tr>
+        <th>Header</th>
+        <th style="min-width: 50%;">Possible values</th>
+        <th>Notes</th>
+     </tr>
+  </thead>
+  <tbody>
+     <tr>
+        <td><code>Accept-Encoding</code></td>
+        <td><code>gzip</code></td>
+        <td><em>not supplying this header is also acceptable</em></td>
+     </tr>
+     <tr>
+        <td rowspan="3"><code>Accept</code></td>
+        <td><code>application/com.github.proto-openapi.spec.v3@v1.0+protobuf</code></td>
+        <td><em>mainly for intra-cluster use</em></td>
+     </tr>
+     <tr>
+        <td><code>application/json</code></td>
+        <td><em>default</em></td>
+     </tr>
+     <tr>
+        <td><code>*</code></td>
+        <td><em>serves </em><code>application/json</code></td>
+     </tr>
+  </tbody>
+</table>
+
 ## Persistence
 
 Kubernetes stores the serialized state of objects by writing them into
diff --git a/content/en/docs/concepts/overview/what-is-kubernetes.md b/content/en/docs/concepts/overview/what-is-kubernetes.md
index d72f1beb48..b9cc6bf6be 100644
--- a/content/en/docs/concepts/overview/what-is-kubernetes.md
+++ b/content/en/docs/concepts/overview/what-is-kubernetes.md
@@ -4,7 +4,7 @@ reviewers:
 - mikedanese
 title: What is Kubernetes?
 description: >
-  Kubernetes is a portable, extensible, open-source platform for managing containerized workloads and services, that facilitates both declarative configuration and automation. It has a large, rapidly growing ecosystem. Kubernetes services, support, and tools are widely available.
+  Kubernetes is a portable, extensible, open source platform for managing containerized workloads and services, that facilitates both declarative configuration and automation. It has a large, rapidly growing ecosystem. Kubernetes services, support, and tools are widely available.
 content_type: concept
 weight: 10
 card:
@@ -19,7 +19,7 @@ This page is an overview of Kubernetes.
 
 
 <!-- body -->
-Kubernetes is a portable, extensible, open-source platform for managing containerized workloads and services, that facilitates both declarative configuration and automation. It has a large, rapidly growing ecosystem. Kubernetes services, support, and tools are widely available.
+Kubernetes is a portable, extensible, open source platform for managing containerized workloads and services, that facilitates both declarative configuration and automation. It has a large, rapidly growing ecosystem. Kubernetes services, support, and tools are widely available.
 
 The name Kubernetes originates from Greek, meaning helmsman or pilot. K8s as an abbreviation results from counting the eight letters between the "K" and the "s". Google open-sourced the Kubernetes project in 2014. Kubernetes combines [over 15 years of Google's experience](/blog/2015/04/borg-predecessor-to-kubernetes/) running production workloads at scale with best-of-breed ideas and practices from the community.
 
diff --git a/content/en/docs/concepts/overview/working-with-objects/common-labels.md b/content/en/docs/concepts/overview/working-with-objects/common-labels.md
index 3053544cd2..210d33dcd4 100644
--- a/content/en/docs/concepts/overview/working-with-objects/common-labels.md
+++ b/content/en/docs/concepts/overview/working-with-objects/common-labels.md
@@ -42,9 +42,10 @@ on every resource object.
 | `app.kubernetes.io/managed-by`      | The tool being used to manage the operation of an application | `helm` | string |
 | `app.kubernetes.io/created-by`      | The controller/user who created this resource | `controller-manager` | string |
 
-To illustrate these labels in action, consider the following StatefulSet object:
+To illustrate these labels in action, consider the following {{< glossary_tooltip text="StatefulSet" term_id="statefulset" >}} object:
 
 ```yaml
+# This is an excerpt
 apiVersion: apps/v1
 kind: StatefulSet
 metadata:
diff --git a/content/en/docs/concepts/overview/working-with-objects/finalizers.md b/content/en/docs/concepts/overview/working-with-objects/finalizers.md
index 9516b935c9..9241ae7e2a 100644
--- a/content/en/docs/concepts/overview/working-with-objects/finalizers.md
+++ b/content/en/docs/concepts/overview/working-with-objects/finalizers.md
@@ -21,18 +21,21 @@ your own.
 
 When you create a resource using a manifest file, you can specify finalizers in
 the `metadata.finalizers` field. When you attempt to delete the resource, the
-controller that manages it notices the values in the `finalizers` field and does
-the following: 
+API server handling the delete request notices the values in the `finalizers` field
+and does the following: 
 
   * Modifies the object to add a `metadata.deletionTimestamp` field with the
     time you started the deletion.
-  * Marks the object as read-only until its `metadata.finalizers` field is empty.
+  * Prevents the object from being removed until its `metadata.finalizers` field is empty.
+  * Returns a `202` status code (HTTP "Accepted")
 
+The controller managing that finalizer notices the update to the object setting the
+`metadata.deletionTimestamp`, indicating deletion of the object has been requested.
 The controller then attempts to satisfy the requirements of the finalizers
 specified for that resource. Each time a finalizer condition is satisfied, the
 controller removes that key from the resource's `finalizers` field. When the
-field is empty, garbage collection continues. You can also use finalizers to
-prevent deletion of unmanaged resources.
+`finalizers` field is emptied, an object with a `deletionTimestamp` field set
+is automatically deleted. You can also use finalizers to prevent deletion of unmanaged resources.
 
 A common example of a finalizer is `kubernetes.io/pv-protection`, which prevents
 accidental deletion of `PersistentVolume` objects. When a `PersistentVolume`
@@ -44,7 +47,8 @@ and the controller deletes the volume.
 
 ## Owner references, labels, and finalizers {#owners-labels-finalizers}
 
-Like {{<glossary_tooltip text="labels" term_id="label">}}, [owner references](/concepts/overview/working-with-objects/owners-dependents/)
+Like {{<glossary_tooltip text="labels" term_id="label">}},
+[owner references](/docs/concepts/overview/working-with-objects/owners-dependents/)
 describe the relationships between objects in Kubernetes, but are used for a
 different purpose. When a
 {{<glossary_tooltip text="controller" term_id="controller">}} manages objects
@@ -62,16 +66,18 @@ Kubernetes also processes finalizers when it identifies owner references on a
 resource targeted for deletion. 
 
 In some situations, finalizers can block the deletion of dependent objects,
-which can cause the targeted owner object to remain in a read-only state for
+which can cause the targeted owner object to remain for
 longer than expected without being fully deleted. In these situations, you
 should check finalizers and owner references on the target owner and dependent
 objects to troubleshoot the cause. 
 
 {{<note>}}
-In cases where objects are stuck in a deleting state, try to avoid manually
+In cases where objects are stuck in a deleting state, avoid manually
 removing finalizers to allow deletion to continue. Finalizers are usually added
 to resources for a reason, so forcefully removing them can lead to issues in
-your cluster. 
+your cluster. This should only be done when the purpose of the finalizer is
+understood and is accomplished in another way (for example, manually cleaning
+up some dependent object).
 {{</note>}}
 
 ## {{% heading "whatsnext" %}}
diff --git a/content/en/docs/concepts/overview/working-with-objects/kubernetes-objects.md b/content/en/docs/concepts/overview/working-with-objects/kubernetes-objects.md
index c763b40e05..8e4214991c 100644
--- a/content/en/docs/concepts/overview/working-with-objects/kubernetes-objects.md
+++ b/content/en/docs/concepts/overview/working-with-objects/kubernetes-objects.md
@@ -8,21 +8,29 @@ card:
 ---
 
 <!-- overview -->
-This page explains how Kubernetes objects are represented in the Kubernetes API, and how you can express them in `.yaml` format.
-
+This page explains how Kubernetes objects are represented in the Kubernetes API, and how you can
+express them in `.yaml` format.
 
 <!-- body -->
 ## Understanding Kubernetes objects {#kubernetes-objects}
 
-*Kubernetes objects* are persistent entities in the Kubernetes system. Kubernetes uses these entities to represent the state of your cluster. Specifically, they can describe:
+*Kubernetes objects* are persistent entities in the Kubernetes system. Kubernetes uses these
+entities to represent the state of your cluster. Specifically, they can describe:
 
 * What containerized applications are running (and on which nodes)
 * The resources available to those applications
 * The policies around how those applications behave, such as restart policies, upgrades, and fault-tolerance
 
-A Kubernetes object is a "record of intent"--once you create the object, the Kubernetes system will constantly work to ensure that object exists. By creating an object, you're effectively telling the Kubernetes system what you want your cluster's workload to look like; this is your cluster's *desired state*.
+A Kubernetes object is a "record of intent"--once you create the object, the Kubernetes system
+will constantly work to ensure that object exists. By creating an object, you're effectively
+telling the Kubernetes system what you want your cluster's workload to look like; this is your
+cluster's *desired state*.
 
-To work with Kubernetes objects--whether to create, modify, or delete them--you'll need to use the [Kubernetes API](/docs/concepts/overview/kubernetes-api/). When you use the `kubectl` command-line interface, for example, the CLI makes the necessary Kubernetes API calls for you. You can also use the Kubernetes API directly in your own programs using one of the [Client Libraries](/docs/reference/using-api/client-libraries/).
+To work with Kubernetes objects--whether to create, modify, or delete them--you'll need to use the
+[Kubernetes API](/docs/concepts/overview/kubernetes-api/). When you use the `kubectl` command-line
+interface, for example, the CLI makes the necessary Kubernetes API calls for you. You can also use
+the Kubernetes API directly in your own programs using one of the
+[Client Libraries](/docs/reference/using-api/client-libraries/).
 
 ### Object Spec and Status
 
@@ -48,11 +56,17 @@ the status to match your spec. If any of those instances should fail
 between spec and status by making a correction--in this case, starting
 a replacement instance.
 
-For more information on the object spec, status, and metadata, see the [Kubernetes API Conventions](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md).
+For more information on the object spec, status, and metadata, see the
+[Kubernetes API Conventions](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md).
 
 ### Describing a Kubernetes object
 
-When you create an object in Kubernetes, you must provide the object spec that describes its desired state, as well as some basic information about the object (such as a name). When you use the Kubernetes API to create the object (either directly or via `kubectl`), that API request must include that information as JSON in the request body. **Most often, you provide the information to `kubectl` in a .yaml file.** `kubectl` converts the information to JSON when making the API request.
+When you create an object in Kubernetes, you must provide the object spec that describes its
+desired state, as well as some basic information about the object (such as a name). When you use
+the Kubernetes API to create the object (either directly or via `kubectl`), that API request must
+include that information as JSON in the request body. **Most often, you provide the information to
+`kubectl` in a .yaml file.** `kubectl` converts the information to JSON when making the API
+request.
 
 Here's an example `.yaml` file that shows the required fields and object spec for a Kubernetes Deployment:
 
@@ -63,7 +77,7 @@ One way to create a Deployment using a `.yaml` file like the one above is to use
 in the `kubectl` command-line interface, passing the `.yaml` file as an argument. Here's an example:
 
 ```shell
-kubectl apply -f https://k8s.io/examples/application/deployment.yaml --record
+kubectl apply -f https://k8s.io/examples/application/deployment.yaml
 ```
 
 The output is similar to this:
@@ -81,12 +95,23 @@ In the `.yaml` file for the Kubernetes object you want to create, you'll need to
 * `metadata` - Data that helps uniquely identify the object, including a `name` string, `UID`, and optional `namespace`
 * `spec` - What state you desire for the object
 
-The precise format of the object `spec` is different for every Kubernetes object, and contains nested fields specific to that object. The [Kubernetes API Reference](https://kubernetes.io/docs/reference/kubernetes-api/) can help you find the spec format for all of the objects you can create using Kubernetes.
-
-For example, the reference for Pod details the [`spec` field](/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodSpec)
-for a Pod in the API, and the reference for Deployment details the [`spec` field](/docs/reference/kubernetes-api/workload-resources/deployment-v1/#DeploymentSpec) for Deployments.
-In those API reference pages you'll see mention of PodSpec and DeploymentSpec. These names are implementation details of the Golang code that Kubernetes uses to implement its API.
+The precise format of the object `spec` is different for every Kubernetes object, and contains
+nested fields specific to that object. The [Kubernetes API Reference](/docs/reference/kubernetes-api/)
+can help you find the spec format for all of the objects you can create using Kubernetes.
 
+For example, see the [`spec` field](/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodSpec)
+for the Pod API reference.
+For each Pod, the `.spec` field specifies the pod and its desired state (such as the container image name for
+each container within that pod).
+Another example of an object specification is the
+[`spec` field](/docs/reference/kubernetes-api/workload-resources/stateful-set-v1/#StatefulSetSpec)
+for the StatefulSet API. For StatefulSet, the `.spec` field specifies the StatefulSet and
+its desired state.
+Within the `.spec` of a StatefulSet is a [template](/docs/concepts/workloads/pods/#pod-templates)
+for Pod objects. That template describes Pods that the StatefulSet controller will create in order to
+satisfy the StatefulSet specification.
+Different kinds of object can also have different `.status`; again, the API reference pages
+detail the structure of that `.status` field, and its content for each different type of object.
 
 ## {{% heading "whatsnext" %}}
 
@@ -94,5 +119,3 @@ In those API reference pages you'll see mention of PodSpec and DeploymentSpec. T
 * Learn about [controllers](/docs/concepts/architecture/controller/) in Kubernetes.
 * [Using the Kubernetes API](/docs/reference/using-api/) explains some more API concepts.
 
-
-
diff --git a/content/en/docs/concepts/overview/working-with-objects/names.md b/content/en/docs/concepts/overview/working-with-objects/names.md
index 9bafb1584c..7b6b380e35 100644
--- a/content/en/docs/concepts/overview/working-with-objects/names.md
+++ b/content/en/docs/concepts/overview/working-with-objects/names.md
@@ -100,4 +100,4 @@ UUIDs are standardized as ISO/IEC 9834-8 and as ITU-T X.667.
 ## {{% heading "whatsnext" %}}
 
 * Read about [labels](/docs/concepts/overview/working-with-objects/labels/) in Kubernetes.
-* See the [Identifiers and Names in Kubernetes](https://git.k8s.io/community/contributors/design-proposals/architecture/identifiers.md) design document.
+* See the [Identifiers and Names in Kubernetes](https://git.k8s.io/design-proposals-archive/architecture/identifiers.md) design document.
diff --git a/content/en/docs/concepts/overview/working-with-objects/namespaces.md b/content/en/docs/concepts/overview/working-with-objects/namespaces.md
index 6664a2ad4c..77998a74c4 100644
--- a/content/en/docs/concepts/overview/working-with-objects/namespaces.md
+++ b/content/en/docs/concepts/overview/working-with-objects/namespaces.md
@@ -10,8 +10,7 @@ weight: 30
 
 <!-- overview -->
 
-Kubernetes supports multiple virtual clusters backed by the same physical cluster.
-These virtual clusters are called namespaces.
+In Kubernetes, _namespaces_ provides a mechanism for isolating groups of resources within a single cluster. Names of resources need to be unique within a namespace, but not across namespaces. Namespace-based scoping is applicable only for namespaced objects _(e.g. Deployments, Services, etc)_ and not for cluster-wide objects _(e.g. StorageClass, Nodes, PersistentVolumes, etc)_.
 
 <!-- body -->
 
@@ -99,6 +98,24 @@ is local to a namespace.  This is useful for using the same configuration across
 multiple namespaces such as Development, Staging and Production.  If you want to reach
 across namespaces, you need to use the fully qualified domain name (FQDN).
 
+As a result, all namespace names must be valid
+[RFC 1123 DNS labels](/docs/concepts/overview/working-with-objects/names/#dns-label-names).
+
+{{< warning >}}
+By creating namespaces with the same name as [public top-level
+domains](https://data.iana.org/TLD/tlds-alpha-by-domain.txt), Services in these
+namespaces can have short DNS names that overlap with public DNS records.
+Workloads from any namespace performing a DNS lookup without a [trailing dot](https://datatracker.ietf.org/doc/html/rfc1034#page-8) will
+be redirected to those services, taking precedence over public DNS. 
+
+To mitigate this, limit privileges for creating namespaces to trusted users. If
+required, you could additionally configure third-party security controls, such
+as [admission
+webhooks](/docs/reference/access-authn-authz/extensible-admission-controllers/),
+to block creating any namespace with the name of [public
+TLDs](https://data.iana.org/TLD/tlds-alpha-by-domain.txt).
+{{< /warning >}}
+
 ## Not All Objects are in a Namespace
 
 Most Kubernetes resources (e.g. pods, services, replication controllers, and others) are
diff --git a/content/en/docs/concepts/overview/working-with-objects/object-management.md b/content/en/docs/concepts/overview/working-with-objects/object-management.md
index b85c622823..10b6dacf85 100644
--- a/content/en/docs/concepts/overview/working-with-objects/object-management.md
+++ b/content/en/docs/concepts/overview/working-with-objects/object-management.md
@@ -169,9 +169,9 @@ Disadvantages compared to imperative object configuration:
 ## {{% heading "whatsnext" %}}
 
 - [Managing Kubernetes Objects Using Imperative Commands](/docs/tasks/manage-kubernetes-objects/imperative-command/)
-- [Managing Kubernetes Objects Using Object Configuration (Imperative)](/docs/tasks/manage-kubernetes-objects/imperative-config/)
-- [Managing Kubernetes Objects Using Object Configuration (Declarative)](/docs/tasks/manage-kubernetes-objects/declarative-config/)
-- [Managing Kubernetes Objects Using Kustomize (Declarative)](/docs/tasks/manage-kubernetes-objects/kustomization/)
+- [Imperative Management of Kubernetes Objects Using Configuration Files](/docs/tasks/manage-kubernetes-objects/imperative-config/)
+- [Declarative Management of Kubernetes Objects Using Configuration Files](/docs/tasks/manage-kubernetes-objects/declarative-config/)
+- [Declarative Management of Kubernetes Objects Using Kustomize](/docs/tasks/manage-kubernetes-objects/kustomization/)
 - [Kubectl Command Reference](/docs/reference/generated/kubectl/kubectl-commands/)
 - [Kubectl Book](https://kubectl.docs.kubernetes.io)
 - [Kubernetes API Reference](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)
diff --git a/content/en/docs/concepts/policy/limit-range.md b/content/en/docs/concepts/policy/limit-range.md
index 8158b78437..f5a7e66cac 100644
--- a/content/en/docs/concepts/policy/limit-range.md
+++ b/content/en/docs/concepts/policy/limit-range.md
@@ -53,7 +53,7 @@ Neither contention nor changes to a LimitRange will affect already created resou
 
 ## {{% heading "whatsnext" %}}
 
-Refer to the [LimitRanger design document](https://git.k8s.io/community/contributors/design-proposals/resource-management/admission_control_limit_range.md) for more information.
+Refer to the [LimitRanger design document](https://git.k8s.io/design-proposals-archive/resource-management/admission_control_limit_range.md) for more information.
 
 For examples on using limits, see:
 
diff --git a/content/en/docs/concepts/policy/resource-quotas.md b/content/en/docs/concepts/policy/resource-quotas.md
index d31efd09bc..8d9490b828 100644
--- a/content/en/docs/concepts/policy/resource-quotas.md
+++ b/content/en/docs/concepts/policy/resource-quotas.md
@@ -22,8 +22,7 @@ be consumed by resources in that namespace.
 
 Resource quotas work like this:
 
-- Different teams work in different namespaces.  Currently this is voluntary, but
-  support for making this mandatory via ACLs is planned.
+- Different teams work in different namespaces. This can be enforced with [RBAC](/docs/reference/access-authn-authz/rbac/).
 
 - The administrator creates one ResourceQuota for each namespace.
 
@@ -442,7 +441,7 @@ pods        0     10
 
 ### Cross-namespace Pod Affinity Quota
 
-{{< feature-state for_k8s_version="v1.22" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 Operators can use `CrossNamespacePodAffinity` quota scope to limit which namespaces are allowed to
 have pods with affinity terms that cross namespaces. Specifically, it controls which pods are allowed
@@ -493,10 +492,6 @@ With the above configuration, pods can use `namespaces` and `namespaceSelector`
 if the namespace where they are created have a resource quota object with 
 `CrossNamespaceAffinity` scope and a hard limit greater than or equal to the number of pods using those fields.
 
-This feature is beta and enabled by default. You can disable it using the
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
-`PodAffinityNamespaceSelector` in both kube-apiserver and kube-scheduler.
-
 ## Requests compared to Limits {#requests-vs-limits}
 
 When allocating compute resources, each container may specify a request and a limit value for either CPU or memory.
@@ -702,7 +697,7 @@ and it is to be created in a namespace other than `kube-system`.
 
 ## {{% heading "whatsnext" %}}
 
-- See [ResourceQuota design doc](https://git.k8s.io/community/contributors/design-proposals/resource-management/admission_control_resource_quota.md) for more information.
+- See [ResourceQuota design doc](https://git.k8s.io/design-proposals-archive/resource-management/admission_control_resource_quota.md) for more information.
 - See a [detailed example for how to use resource quota](/docs/tasks/administer-cluster/quota-api-object/).
-- Read [Quota support for priority class design doc](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/scheduling/pod-priority-resourcequota.md).
+- Read [Quota support for priority class design doc](https://git.k8s.io/design-proposals-archive/scheduling/pod-priority-resourcequota.md).
 - See [LimitedResources](https://github.com/kubernetes/kubernetes/pull/36765)
diff --git a/content/en/docs/concepts/scheduling-eviction/_index.md b/content/en/docs/concepts/scheduling-eviction/_index.md
index 21e9371f03..fd1c0bbf00 100644
--- a/content/en/docs/concepts/scheduling-eviction/_index.md
+++ b/content/en/docs/concepts/scheduling-eviction/_index.md
@@ -23,6 +23,7 @@ of terminating one or more Pods on Nodes.
 * [Kubernetes Scheduler](/docs/concepts/scheduling-eviction/kube-scheduler/)
 * [Assigning Pods to Nodes](/docs/concepts/scheduling-eviction/assign-pod-node/)
 * [Pod Overhead](/docs/concepts/scheduling-eviction/pod-overhead/)
+* [Pod Topology Spread Constraints](/docs/concepts/scheduling-eviction/topology-spread-constraints/)
 * [Taints and Tolerations](/docs/concepts/scheduling-eviction/taint-and-toleration/)
 * [Scheduling Framework](/docs/concepts/scheduling-eviction/scheduling-framework)
 * [Scheduler Performance Tuning](/docs/concepts/scheduling-eviction/scheduler-perf-tuning/)
diff --git a/content/en/docs/concepts/scheduling-eviction/api-eviction.md b/content/en/docs/concepts/scheduling-eviction/api-eviction.md
index e7f1942df2..b4e92c40bf 100644
--- a/content/en/docs/concepts/scheduling-eviction/api-eviction.md
+++ b/content/en/docs/concepts/scheduling-eviction/api-eviction.md
@@ -6,14 +6,117 @@ weight: 70
 
 {{< glossary_definition term_id="api-eviction" length="short" >}} </br>
 
-You can request eviction by directly calling the Eviction API 
-using a client of the kube-apiserver, like the `kubectl drain` command. 
-This creates an `Eviction` object, which causes the API server to terminate the Pod. 
+You can request eviction by calling the Eviction API directly, or programmatically
+using a client of the {{<glossary_tooltip term_id="kube-apiserver" text="API server">}}, like the `kubectl drain` command. This
+creates an `Eviction` object, which causes the API server to terminate the Pod.
 
 API-initiated evictions respect your configured [`PodDisruptionBudgets`](/docs/tasks/run-application/configure-pdb/)
 and [`terminationGracePeriodSeconds`](/docs/concepts/workloads/pods/pod-lifecycle#pod-termination). 
 
+Using the API to create an Eviction object for a Pod is like performing a
+policy-controlled [`DELETE` operation](/docs/reference/kubernetes-api/workload-resources/pod-v1/#delete-delete-a-pod)
+on the Pod. 
+
+## Calling the Eviction API
+
+You can use a [Kubernetes language client](/docs/tasks/administer-cluster/access-cluster-api/#programmatic-access-to-the-api)
+to access the Kubernetes API and create an `Eviction` object. To do this, you
+POST the attempted operation, similar to the following example:
+
+{{< tabs name="Eviction_example" >}}
+{{% tab name="policy/v1" %}}
+{{< note >}}
+`policy/v1` Eviction is available in v1.22+. Use `policy/v1beta1` with prior releases.
+{{< /note >}}
+
+```json
+{
+  "apiVersion": "policy/v1",
+  "kind": "Eviction",
+  "metadata": {
+    "name": "quux",
+    "namespace": "default"
+  }
+}
+```
+{{% /tab %}}
+{{% tab name="policy/v1beta1" %}}
+{{< note >}}
+Deprecated in v1.22 in favor of `policy/v1`
+{{< /note >}}
+
+```json
+{
+  "apiVersion": "policy/v1beta1",
+  "kind": "Eviction",
+  "metadata": {
+    "name": "quux",
+    "namespace": "default"
+  }
+}
+```
+{{% /tab %}}
+{{< /tabs >}}
+
+Alternatively, you can attempt an eviction operation by accessing the API using
+`curl` or `wget`, similar to the following example:
+
+```bash
+curl -v -H 'Content-type: application/json' https://your-cluster-api-endpoint.example/api/v1/namespaces/default/pods/quux/eviction -d @eviction.json
+```
+
+## How API-initiated eviction works
+
+When you request an eviction using the API, the API server performs admission
+checks and responds in one of the following ways:
+
+* `200 OK`: the eviction is allowed, the `Eviction` subresource is created, and
+  the Pod is deleted, similar to sending a `DELETE` request to the Pod URL.
+* `429 Too Many Requests`: the eviction is not currently allowed because of the
+  configured {{<glossary_tooltip term_id="pod-disruption-budget" text="PodDisruptionBudget">}}.
+  You may be able to attempt the eviction again later. You might also see this
+  response because of API rate limiting. 
+* `500 Internal Server Error`: the eviction is not allowed because there is a
+  misconfiguration, like if multiple PodDisruptionBudgets reference the same Pod.
+
+If the Pod you want to evict isn't part of a workload that has a
+PodDisruptionBudget, the API server always returns `200 OK` and allows the
+eviction. 
+
+If the API server allows the eviction, the Pod is deleted as follows:
+
+1. The `Pod` resource in the API server is updated with a deletion timestamp,
+   after which the API server considers the `Pod` resource to be terminated. The
+   `Pod` resource is also marked with the configured grace period.
+1. The {{<glossary_tooltip term_id="kubelet" text="kubelet">}} on the node where the local Pod is running notices that the `Pod`
+   resource is marked for termination and starts to gracefully shut down the
+   local Pod.
+1. While the kubelet is shutting the Pod down, the control plane removes the Pod
+   from {{<glossary_tooltip term_id="endpoint" text="Endpoint">}} and
+   {{<glossary_tooltip term_id="endpoint-slice" text="EndpointSlice">}}
+   objects. As a result, controllers no longer consider the Pod as a valid object.
+1. After the grace period for the Pod expires, the kubelet forcefully terminates
+   the local Pod.
+1. The kubelet tells the API server to remove the `Pod` resource.
+1. The API server deletes the `Pod` resource.
+
+## Troubleshooting stuck evictions
+
+In some cases, your applications may enter a broken state, where the Eviction
+API will only return `429` or `500` responses until you intervene. This can 
+happen if, for example, a ReplicaSet creates pods for your application but new 
+pods do not enter a `Ready` state. You may also notice this behavior in cases
+where the last evicted Pod had a long termination grace period.
+
+If you notice stuck evictions, try one of the following solutions: 
+
+* Abort or pause the automated operation causing the issue. Investigate the stuck
+  application before you restart the operation.
+* Wait a while, then directly delete the Pod from your cluster control plane
+  instead of using the Eviction API.
+
 ## {{% heading "whatsnext" %}}
 
-* Learn about [Node-pressure Eviction](/docs/concepts/scheduling-eviction/node-pressure-eviction/)
-* Learn about [Pod Priority and Preemption](/docs/concepts/scheduling-eviction/pod-priority-preemption/)
+* Learn how to protect your applications with a [Pod Disruption Budget](/docs/tasks/run-application/configure-pdb/).
+* Learn about [Node-pressure Eviction](/docs/concepts/scheduling-eviction/node-pressure-eviction/).
+* Learn about [Pod Priority and Preemption](/docs/concepts/scheduling-eviction/pod-priority-preemption/).
diff --git a/content/en/docs/concepts/scheduling-eviction/assign-pod-node.md b/content/en/docs/concepts/scheduling-eviction/assign-pod-node.md
index 9216ec2ff9..9cd70f9e97 100644
--- a/content/en/docs/concepts/scheduling-eviction/assign-pod-node.md
+++ b/content/en/docs/concepts/scheduling-eviction/assign-pod-node.md
@@ -11,163 +11,189 @@ weight: 20
 
 <!-- overview -->
 
-You can constrain a {{< glossary_tooltip text="Pod" term_id="pod" >}} so that it can only run on particular set of
-{{< glossary_tooltip text="Node(s)" term_id="node" >}}.
+You can constrain a {{< glossary_tooltip text="Pod" term_id="pod" >}} so that it is 
+_restricted_ to run on particular {{< glossary_tooltip text="node(s)" term_id="node" >}},
+or to _prefer_ to run on particular nodes.
 There are several ways to do this and the recommended approaches all use
 [label selectors](/docs/concepts/overview/working-with-objects/labels/) to facilitate the selection.
-Generally such constraints are unnecessary, as the scheduler will automatically do a reasonable placement
-(e.g. spread your pods across nodes so as not place the pod on a node with insufficient free resources, etc.)
-but there are some circumstances where you may want to control which node the pod deploys to - for example to ensure
-that a pod ends up on a machine with an SSD attached to it, or to co-locate pods from two different
-services that communicate a lot into the same availability zone.
-
+Often, you do not need to set any such constraints; the
+{{< glossary_tooltip text="scheduler" term_id="kube-scheduler" >}}  will automatically do a reasonable placement
+(for example, spreading your Pods across nodes so as not place Pods on a node with insufficient free resources).
+However, there are some circumstances where you may want to control which node
+the Pod deploys to, for example, to ensure that a Pod ends up on a node with an SSD attached to it,
+or to co-locate Pods from two different services that communicate a lot into the same availability zone.
 
 <!-- body -->
 
+You can use any of the following methods to choose where Kubernetes schedules
+specific Pods:
+
+  * [nodeSelector](#nodeselector) field matching against [node labels](#built-in-node-labels)
+  * [Affinity and anti-affinity](#affinity-and-anti-affinity)
+  * [nodeName](#nodename) field
+  * [Pod topology spread constraints](#pod-topology-spread-constraints)
+
+## Node labels {#built-in-node-labels}
+
+Like many other Kubernetes objects, nodes have
+[labels](/docs/concepts/overview/working-with-objects/labels/). You can [attach labels manually](/docs/tasks/configure-pod-container/assign-pods-nodes/#add-a-label-to-a-node).
+Kubernetes also populates a standard set of labels on all nodes in a cluster. See [Well-Known Labels, Annotations and Taints](/docs/reference/labels-annotations-taints/)
+for a list of common node labels.
+
+{{<note>}}
+The value of these labels is cloud provider specific and is not guaranteed to be reliable.
+For example, the value of `kubernetes.io/hostname` may be the same as the node name in some environments
+and a different value in other environments.
+{{</note>}}
+
+### Node isolation/restriction
+
+Adding labels to nodes allows you to target Pods for scheduling on specific
+nodes or groups of nodes. You can use this functionality to ensure that specific
+Pods only run on nodes with certain isolation, security, or regulatory
+properties. 
+
+If you use labels for node isolation, choose label keys that the {{<glossary_tooltip text="kubelet" term_id="kubelet">}}
+cannot modify. This prevents a compromised node from setting those labels on
+itself so that the scheduler schedules workloads onto the compromised node.
+
+The [`NodeRestriction` admission plugin](/docs/reference/access-authn-authz/admission-controllers/#noderestriction)
+prevents the kubelet from setting or modifying labels with a
+`node-restriction.kubernetes.io/` prefix. 
+
+To make use of that label prefix for node isolation:
+
+1. Ensure you are using the [Node authorizer](/docs/reference/access-authn-authz/node/) and have _enabled_ the `NodeRestriction` admission plugin.
+2. Add labels with the `node-restriction.kubernetes.io/` prefix to your nodes, and use those labels in your [node selectors](#nodeselector).
+   For example, `example.com.node-restriction.kubernetes.io/fips=true` or `example.com.node-restriction.kubernetes.io/pci-dss=true`.
+
 ## nodeSelector
 
 `nodeSelector` is the simplest recommended form of node selection constraint.
-`nodeSelector` is a field of PodSpec. It specifies a map of key-value pairs. For the pod to be eligible
-to run on a node, the node must have each of the indicated key-value pairs as labels (it can have
-additional labels as well). The most common usage is one key-value pair.
+You can add the `nodeSelector` field to your Pod specification and specify the
+[node labels](#built-in-node-labels) you want the target node to have.
+Kubernetes only schedules the Pod onto nodes that have each of the labels you
+specify. 
 
-Let's walk through an example of how to use `nodeSelector`.
-
-### Step Zero: Prerequisites
-
-This example assumes that you have a basic understanding of Kubernetes pods and that you have [set up a Kubernetes cluster](/docs/setup/).
-
-### Step One: Attach label to the node
-
-Run `kubectl get nodes` to get the names of your cluster's nodes. Pick out the one that you want to add a label to, and then run `kubectl label nodes <node-name> <label-key>=<label-value>` to add a label to the node you've chosen. For example, if my node name is 'kubernetes-foo-node-1.c.a-robinson.internal' and my desired label is 'disktype=ssd', then I can run `kubectl label nodes kubernetes-foo-node-1.c.a-robinson.internal disktype=ssd`.
-
-You can verify that it worked by re-running `kubectl get nodes --show-labels` and checking that the node now has a label. You can also use `kubectl describe node "nodename"` to see the full list of labels of the given node.
-
-### Step Two: Add a nodeSelector field to your pod configuration
-
-Take whatever pod config file you want to run, and add a nodeSelector section to it, like this. For example, if this is my pod config:
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: nginx
-  labels:
-    env: test
-spec:
-  containers:
-  - name: nginx
-    image: nginx
-```
-
-Then add a nodeSelector like so:
-
-{{< codenew file="pods/pod-nginx.yaml" >}}
-
-When you then run `kubectl apply -f https://k8s.io/examples/pods/pod-nginx.yaml`,
-the Pod will get scheduled on the node that you attached the label to. You can
-verify that it worked by running `kubectl get pods -o wide` and looking at the
-"NODE" that the Pod was assigned to.
-
-## Interlude: built-in node labels {#built-in-node-labels}
-
-In addition to labels you [attach](#step-one-attach-label-to-the-node), nodes come pre-populated
-with a standard set of labels. See [Well-Known Labels, Annotations and Taints](/docs/reference/labels-annotations-taints/) for a list of these.
-
-{{< note >}}
-The value of these labels is cloud provider specific and is not guaranteed to be reliable.
-For example, the value of `kubernetes.io/hostname` may be the same as the Node name in some environments
-and a different value in other environments.
-{{< /note >}}
-
-## Node isolation/restriction
-
-Adding labels to Node objects allows targeting pods to specific nodes or groups of nodes.
-This can be used to ensure specific pods only run on nodes with certain isolation, security, or regulatory properties.
-When using labels for this purpose, choosing label keys that cannot be modified by the kubelet process on the node is strongly recommended.
-This prevents a compromised node from using its kubelet credential to set those labels on its own Node object,
-and influencing the scheduler to schedule workloads to the compromised node.
-
-The `NodeRestriction` admission plugin prevents kubelets from setting or modifying labels with a `node-restriction.kubernetes.io/` prefix.
-To make use of that label prefix for node isolation:
-
-1. Ensure you are using the [Node authorizer](/docs/reference/access-authn-authz/node/) and have _enabled_ the [NodeRestriction admission plugin](/docs/reference/access-authn-authz/admission-controllers/#noderestriction).
-2. Add labels under the `node-restriction.kubernetes.io/` prefix to your Node objects, and use those labels in your node selectors.
-For example, `example.com.node-restriction.kubernetes.io/fips=true` or `example.com.node-restriction.kubernetes.io/pci-dss=true`.
+See [Assign Pods to Nodes](/docs/tasks/configure-pod-container/assign-pods-nodes) for more
+information.
 
 ## Affinity and anti-affinity
 
-`nodeSelector` provides a very simple way to constrain pods to nodes with particular labels. The affinity/anti-affinity
-feature, greatly expands the types of constraints you can express. The key enhancements are
+`nodeSelector` is the simplest way to constrain Pods to nodes with specific
+labels. Affinity and anti-affinity expands the types of constraints you can
+define. Some of the benefits of affinity and anti-affinity include:
 
-1. The affinity/anti-affinity language is more expressive. The language offers more matching rules
-   besides exact matches created with a logical AND operation;
-2. you can indicate that the rule is "soft"/"preference" rather than a hard requirement, so if the scheduler
-   can't satisfy it, the pod will still be scheduled;
-3. you can constrain against labels on other pods running on the node (or other topological domain),
-   rather than against labels on the node itself, which allows rules about which pods can and cannot be co-located
+* The affinity/anti-affinity language is more expressive. `nodeSelector` only
+  selects nodes with all the specified labels. Affinity/anti-affinity gives you
+  more control over the selection logic.
+* You can indicate that a rule is *soft* or *preferred*, so that the scheduler
+  still schedules the Pod even if it can't find a matching node.
+* You can constrain a Pod using labels on other Pods running on the node (or other topological domain),
+  instead of just node labels, which allows you to define rules for which Pods
+  can be co-located on a node.
 
-The affinity feature consists of two types of affinity, "node affinity" and "inter-pod affinity/anti-affinity".
-Node affinity is like the existing `nodeSelector` (but with the first two benefits listed above),
-while inter-pod affinity/anti-affinity constrains against pod labels rather than node labels, as
-described in the third item listed above, in addition to having the first and second properties listed above.
+The affinity feature consists of two types of affinity:
+
+* *Node affinity* functions like the `nodeSelector` field but is more expressive and
+  allows you to specify soft rules. 
+* *Inter-pod affinity/anti-affinity* allows you to constrain Pods against labels
+  on other Pods.
 
 ### Node affinity
 
-Node affinity is conceptually similar to `nodeSelector` -- it allows you to constrain which nodes your
-pod is eligible to be scheduled on, based on labels on the node.
+Node affinity is conceptually similar to `nodeSelector`, allowing you to constrain which nodes your
+Pod can be scheduled on based on node labels. There are two types of node
+affinity:
 
-There are currently two types of node affinity, called `requiredDuringSchedulingIgnoredDuringExecution` and
-`preferredDuringSchedulingIgnoredDuringExecution`. You can think of them as "hard" and "soft" respectively,
-in the sense that the former specifies rules that *must* be met for a pod to be scheduled onto a node (similar to
-`nodeSelector` but using a more expressive syntax), while the latter specifies *preferences* that the scheduler
-will try to enforce but will not guarantee. The "IgnoredDuringExecution" part of the names means that, similar
-to how `nodeSelector` works, if labels on a node change at runtime such that the affinity rules on a pod are no longer
-met, the pod continues to run on the node. In the future we plan to offer
-`requiredDuringSchedulingRequiredDuringExecution` which will be identical to `requiredDuringSchedulingIgnoredDuringExecution`
-except that it will evict pods from nodes that cease to satisfy the pods' node affinity requirements.
+  * `requiredDuringSchedulingIgnoredDuringExecution`: The scheduler can't
+    schedule the Pod unless the rule is met. This functions like `nodeSelector`,
+    but with a more expressive syntax.
+  * `preferredDuringSchedulingIgnoredDuringExecution`: The scheduler tries to
+    find a node that meets the rule. If a matching node is not available, the
+    scheduler still schedules the Pod.
 
-Thus an example of `requiredDuringSchedulingIgnoredDuringExecution` would be "only run the pod on nodes with Intel CPUs"
-and an example `preferredDuringSchedulingIgnoredDuringExecution` would be "try to run this set of pods in failure
-zone XYZ, but if it's not possible, then allow some to run elsewhere".
+{{<note>}}
+In the preceding types, `IgnoredDuringExecution` means that if the node labels
+change after Kubernetes schedules the Pod, the Pod continues to run.
+{{</note>}}
 
-Node affinity is specified as field `nodeAffinity` of field `affinity` in the PodSpec.
+You can specify node affinities using the `.spec.affinity.nodeAffinity` field in
+your Pod spec.
 
-Here's an example of a pod that uses node affinity:
+For example, consider the following Pod spec:
 
 {{< codenew file="pods/pod-with-node-affinity.yaml" >}}
 
-This node affinity rule says the pod can only be placed on a node with a label whose key is
-`kubernetes.io/e2e-az-name` and whose value is either `e2e-az1` or `e2e-az2`. In addition,
-among nodes that meet that criteria, nodes with a label whose key is `another-node-label-key` and whose
-value is `another-node-label-value` should be preferred.
+In this example, the following rules apply:
 
-You can see the operator `In` being used in the example. The new node affinity syntax supports the following operators: `In`, `NotIn`, `Exists`, `DoesNotExist`, `Gt`, `Lt`.
-You can use `NotIn` and `DoesNotExist` to achieve node anti-affinity behavior, or use
-[node taints](/docs/concepts/scheduling-eviction/taint-and-toleration/) to repel pods from specific nodes.
+  * The node *must* have a label with the key `topology.kubernetes.io/zone` and
+    the value of that label *must* be either `antarctica-east1` or `antarctica-west1`.
+  * The node *preferably* has a label with the key `another-node-label-key` and
+    the value `another-node-label-value`.
 
-If you specify both `nodeSelector` and `nodeAffinity`, *both* must be satisfied for the pod
-to be scheduled onto a candidate node.
+You can use the `operator` field to specify a logical operator for Kubernetes to use when
+interpreting the rules. You can use `In`, `NotIn`, `Exists`, `DoesNotExist`,
+`Gt` and `Lt`.
 
-If you specify multiple `nodeSelectorTerms` associated with `nodeAffinity` types, then the pod can be scheduled onto a node **if one of the** `nodeSelectorTerms` can be satisfied.
+`NotIn` and `DoesNotExist` allow you to define node anti-affinity behavior.
+Alternatively, you can use [node taints](/docs/concepts/scheduling-eviction/taint-and-toleration/) 
+to repel Pods from specific nodes.
 
-If you specify multiple `matchExpressions` associated with `nodeSelectorTerms`, then the pod can be scheduled onto a node **only if all** `matchExpressions` is satisfied.
+{{<note>}}
+If you specify both `nodeSelector` and `nodeAffinity`, *both* must be satisfied
+for the Pod to be scheduled onto a node.
 
-If you remove or change the label of the node where the pod is scheduled, the pod won't be removed. In other words, the affinity selection works only at the time of scheduling the pod.
+If you specify multiple `nodeSelectorTerms` associated with `nodeAffinity`
+types, then the Pod can be scheduled onto a node if one of the specified `nodeSelectorTerms` can be
+satisfied.
 
-The `weight` field in `preferredDuringSchedulingIgnoredDuringExecution` is in the range 1-100. For each node that meets all of the scheduling requirements (resource request, RequiredDuringScheduling affinity expressions, etc.), the scheduler will compute a sum by iterating through the elements of this field and adding "weight" to the sum if the node matches the corresponding MatchExpressions. This score is then combined with the scores of other priority functions for the node. The node(s) with the highest total score are the most preferred.
+If you specify multiple `matchExpressions` associated with a single `nodeSelectorTerms`,
+then the Pod can be scheduled onto a node only if all the `matchExpressions` are
+satisfied. 
+{{</note>}}
+
+See [Assign Pods to Nodes using Node Affinity](/docs/tasks/configure-pod-container/assign-pods-nodes-using-node-affinity/)
+for more information.
+
+#### Node affinity weight
+
+You can specify a `weight` between 1 and 100 for each instance of the
+`preferredDuringSchedulingIgnoredDuringExecution` affinity type. When the
+scheduler finds nodes that meet all the other scheduling requirements of the Pod, the
+scheduler iterates through every preferred rule that the node satisfies and adds the
+value of the `weight` for that expression to a sum.
+
+The final sum is added to the score of other priority functions for the node.
+Nodes with the highest total score are prioritized when the scheduler makes a
+scheduling decision for the Pod.
+
+For example, consider the following Pod spec: 
+
+{{< codenew file="pods/pod-with-affinity-anti-affinity.yaml" >}}
+
+If there are two possible nodes that match the
+`preferredDuringSchedulingIgnoredDuringExecution` rule, one with the
+`label-1:key-1` label and another with the `label-2:key-2` label, the scheduler
+considers the `weight` of each node and adds the weight to the other scores for
+that node, and schedules the Pod onto the node with the highest final score.
+
+{{<note>}}
+If you want Kubernetes to successfully schedule the Pods in this example, you
+must have existing nodes with the `kubernetes.io/os=linux` label.
+{{</note>}}
 
 #### Node affinity per scheduling profile
 
 {{< feature-state for_k8s_version="v1.20" state="beta" >}}
 
 When configuring multiple [scheduling profiles](/docs/reference/scheduling/config/#multiple-profiles), you can associate
-a profile with a Node affinity, which is useful if a profile only applies to a specific set of Nodes.
-To do so, add an `addedAffinity` to the args of the [`NodeAffinity` plugin](/docs/reference/scheduling/config/#scheduling-plugins)
+a profile with a node affinity, which is useful if a profile only applies to a specific set of nodes.
+To do so, add an `addedAffinity` to the `args` field of the [`NodeAffinity` plugin](/docs/reference/scheduling/config/#scheduling-plugins)
 in the [scheduler configuration](/docs/reference/scheduling/config/). For example:
 
 ```yaml
-apiVersion: kubescheduler.config.k8s.io/v1beta1
+apiVersion: kubescheduler.config.k8s.io/v1beta3
 kind: KubeSchedulerConfiguration
 
 profiles:
@@ -188,29 +214,41 @@ profiles:
 
 The `addedAffinity` is applied to all Pods that set `.spec.schedulerName` to `foo-scheduler`, in addition to the
 NodeAffinity specified in the PodSpec.
-That is, in order to match the Pod, Nodes need to satisfy `addedAffinity` and the Pod's `.spec.NodeAffinity`.
+That is, in order to match the Pod, nodes need to satisfy `addedAffinity` and
+the Pod's `.spec.NodeAffinity`.
 
-Since the `addedAffinity` is not visible to end users, its behavior might be unexpected to them. We
-recommend to use node labels that have clear correlation with the profile's scheduler name.
+Since the `addedAffinity` is not visible to end users, its behavior might be
+unexpected to them. Use node labels that have a clear correlation to the
+scheduler profile name.
 
 {{< note >}}
-The DaemonSet controller, which [creates Pods for DaemonSets](/docs/concepts/workloads/controllers/daemonset/#scheduled-by-default-scheduler)
-is not aware of scheduling profiles. For this reason, it is recommended that you keep a scheduler profile, such as the
-`default-scheduler`, without any `addedAffinity`. Then, the Daemonset's Pod template should use this scheduler name.
-Otherwise, some Pods created by the Daemonset controller might remain unschedulable.
+The DaemonSet controller, which [creates Pods for DaemonSets](/docs/concepts/workloads/controllers/daemonset/#scheduled-by-default-scheduler),
+does not support scheduling profiles. When the DaemonSet controller creates
+Pods, the default Kubernetes scheduler places those Pods and honors any
+`nodeAffinity` rules in the DaemonSet controller.
 {{< /note >}}
 
 ### Inter-pod affinity and anti-affinity
 
-Inter-pod affinity and anti-affinity allow you to constrain which nodes your pod is eligible to be scheduled *based on
-labels on pods that are already running on the node* rather than based on labels on nodes. The rules are of the form
-"this pod should (or, in the case of anti-affinity, should not) run in an X if that X is already running one or more pods that meet rule Y".
-Y is expressed as a LabelSelector with an optional associated list of namespaces; unlike nodes, because pods are namespaced
-(and therefore the labels on pods are implicitly namespaced),
-a label selector over pod labels must specify which namespaces the selector should apply to. Conceptually X is a topology domain
-like node, rack, cloud provider zone, cloud provider region, etc. You express it using a `topologyKey` which is the
-key for the node label that the system uses to denote such a topology domain; for example, see the label keys listed above
-in the section [Interlude: built-in node labels](#built-in-node-labels).
+Inter-pod affinity and anti-affinity allow you to constrain which nodes your
+Pods can be scheduled on based on the labels of **Pods** already running on that
+node, instead of the node labels.
+
+Inter-pod affinity and anti-affinity rules take the form "this
+Pod should (or, in the case of anti-affinity, should not) run in an X if that X
+is already running one or more Pods that meet rule Y", where X is a topology
+domain like node, rack, cloud provider zone or region, or similar and Y is the
+rule Kubernetes tries to satisfy.
+
+You express these rules (Y) as [label selectors](/docs/concepts/overview/working-with-objects/labels/#label-selectors)
+with an optional associated list of namespaces. Pods are namespaced objects in
+Kubernetes, so Pod labels also implicitly have namespaces. Any label selectors
+for Pod labels should specify the namespaces in which Kubernetes should look for those
+labels.
+
+You express the topology domain (X) using a `topologyKey`, which is the key for
+the node label that the system uses to denote the domain. For examples, see
+[Well-Known Labels, Annotations and Taints](/docs/reference/labels-annotations-taints/).
 
 {{< note >}}
 Inter-pod affinity and anti-affinity require substantial amount of
@@ -219,80 +257,101 @@ not recommend using them in clusters larger than several hundred nodes.
 {{< /note >}}
 
 {{< note >}}
-Pod anti-affinity requires nodes to be consistently labelled, in other words every node in the cluster must have an appropriate label matching `topologyKey`. If some or all nodes are missing the specified `topologyKey` label, it can lead to unintended behavior.
+Pod anti-affinity requires nodes to be consistently labelled, in other words,
+every node in the cluster must have an appropriate label matching `topologyKey`.
+If some or all nodes are missing the specified `topologyKey` label, it can lead
+to unintended behavior.
 {{< /note >}}
 
-As with node affinity, there are currently two types of pod affinity and anti-affinity, called `requiredDuringSchedulingIgnoredDuringExecution` and
-`preferredDuringSchedulingIgnoredDuringExecution` which denote "hard" vs. "soft" requirements.
-See the description in the node affinity section earlier.
-An example of `requiredDuringSchedulingIgnoredDuringExecution` affinity would be "co-locate the pods of service A and service B
-in the same zone, since they communicate a lot with each other"
-and an example `preferredDuringSchedulingIgnoredDuringExecution` anti-affinity would be "spread the pods from this service across zones"
-(a hard requirement wouldn't make sense, since you probably have more pods than zones).
+#### Types of inter-pod affinity and anti-affinity
 
-Inter-pod affinity is specified as field `podAffinity` of field `affinity` in the PodSpec.
-And inter-pod anti-affinity is specified as field `podAntiAffinity` of field `affinity` in the PodSpec.
+Similar to [node affinity](#node-affinity) are two types of Pod affinity and
+anti-affinity as follows:
 
-#### An example of a pod that uses pod affinity:
+  * `requiredDuringSchedulingIgnoredDuringExecution`
+  * `preferredDuringSchedulingIgnoredDuringExecution`
+
+For example, you could use
+`requiredDuringSchedulingIgnoredDuringExecution` affinity to tell the scheduler to
+co-locate Pods of two services in the same cloud provider zone because they
+communicate with each other a lot. Similarly, you could use
+`preferredDuringSchedulingIgnoredDuringExecution` anti-affinity to spread Pods
+from a service across multiple cloud provider zones.
+
+To use inter-pod affinity, use the `affinity.podAffinity` field in the Pod spec.
+For inter-pod anti-affinity, use the `affinity.podAntiAffinity` field in the Pod
+spec.
+
+#### Pod affinity example {#an-example-of-a-pod-that-uses-pod-affinity}
+
+Consider the following Pod spec:
 
 {{< codenew file="pods/pod-with-pod-affinity.yaml" >}}
 
-The affinity on this pod defines one pod affinity rule and one pod anti-affinity rule. In this example, the
-`podAffinity` is `requiredDuringSchedulingIgnoredDuringExecution`
-while the `podAntiAffinity` is `preferredDuringSchedulingIgnoredDuringExecution`. The
-pod affinity rule says that the pod can be scheduled onto a node only if that node is in the same zone
-as at least one already-running pod that has a label with key "security" and value "S1". (More precisely, the pod is eligible to run
-on node N if node N has a label with key `topology.kubernetes.io/zone` and some value V
-such that there is at least one node in the cluster with key `topology.kubernetes.io/zone` and
-value V that is running a pod that has a label with key "security" and value "S1".) The pod anti-affinity
-rule says that the pod should not be scheduled onto a node if that node is in the same zone as a pod with
-label having key "security" and value "S2". See the
-[design doc](https://git.k8s.io/community/contributors/design-proposals/scheduling/podaffinity.md)
-for many more examples of pod affinity and anti-affinity, both the `requiredDuringSchedulingIgnoredDuringExecution`
-flavor and the `preferredDuringSchedulingIgnoredDuringExecution` flavor.
+This example defines one Pod affinity rule and one Pod anti-affinity rule. The
+Pod affinity rule uses the "hard"
+`requiredDuringSchedulingIgnoredDuringExecution`, while the anti-affinity rule
+uses the "soft" `preferredDuringSchedulingIgnoredDuringExecution`.
 
-The legal operators for pod affinity and anti-affinity are `In`, `NotIn`, `Exists`, `DoesNotExist`.
+The affinity rule says that the scheduler can only schedule a Pod onto a node if
+the node is in the same zone as one or more existing Pods with the label
+`security=S1`. More precisely, the scheduler must place the Pod on a node that has the
+`topology.kubernetes.io/zone=V` label, as long as there is at least one node in
+that zone that currently has one or more Pods with the Pod label `security=S1`. 
 
-In principle, the `topologyKey` can be any legal label-key. However,
-for performance and security reasons, there are some constraints on topologyKey:
+The anti-affinity rule says that the scheduler should try to avoid scheduling
+the Pod onto a node that is in the same zone as one or more Pods with the label
+`security=S2`. More precisely, the scheduler should try to avoid placing the Pod on a node that has the
+`topology.kubernetes.io/zone=R` label if there are other nodes in the
+same zone currently running Pods with the `Security=S2` Pod label.
 
-1. For pod affinity, empty `topologyKey` is not allowed in both `requiredDuringSchedulingIgnoredDuringExecution`
-and `preferredDuringSchedulingIgnoredDuringExecution`.
-2. For pod anti-affinity, empty `topologyKey` is also not allowed in both `requiredDuringSchedulingIgnoredDuringExecution`
-and `preferredDuringSchedulingIgnoredDuringExecution`.
-3. For `requiredDuringSchedulingIgnoredDuringExecution` pod anti-affinity, the admission controller `LimitPodHardAntiAffinityTopology` was introduced to limit `topologyKey` to `kubernetes.io/hostname`. If you want to make it available for custom topologies, you may modify the admission controller, or disable it.
-4. Except for the above cases, the `topologyKey` can be any legal label-key.
+To get yourself more familiar with the examples of Pod affinity and anti-affinity,
+refer to the [design proposal](https://git.k8s.io/design-proposals-archive/scheduling/podaffinity.md).
 
-In addition to `labelSelector` and `topologyKey`, you can optionally specify a list `namespaces`
-of namespaces which the `labelSelector` should match against (this goes at the same level of the definition as `labelSelector` and `topologyKey`).
-If omitted or empty, it defaults to the namespace of the pod where the affinity/anti-affinity definition appears.
+You can use the `In`, `NotIn`, `Exists` and `DoesNotExist` values in the
+`operator` field for Pod affinity and anti-affinity.
 
-All `matchExpressions` associated with `requiredDuringSchedulingIgnoredDuringExecution` affinity and anti-affinity
-must be satisfied for the pod to be scheduled onto a node.
+In principle, the `topologyKey` can be any allowed label key with the following
+exceptions for performance and security reasons:
+
+* For Pod affinity and anti-affinity, an empty `topologyKey` field is not allowed in both `requiredDuringSchedulingIgnoredDuringExecution`
+  and `preferredDuringSchedulingIgnoredDuringExecution`.
+* For `requiredDuringSchedulingIgnoredDuringExecution` Pod anti-affinity rules,
+  the admission controller `LimitPodHardAntiAffinityTopology` limits
+  `topologyKey` to `kubernetes.io/hostname`. You can modify or disable the
+  admission controller if you want to allow custom topologies.
+
+In addition to `labelSelector` and `topologyKey`, you can optionally specify a list
+of namespaces which the `labelSelector` should match against using the
+`namespaces` field at the same level as `labelSelector` and `topologyKey`.
+If omitted or empty, `namespaces` defaults to the namespace of the Pod where the
+affinity/anti-affinity definition appears.
 
 #### Namespace selector
-{{< feature-state for_k8s_version="v1.22" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
-Users can also select matching namespaces using `namespaceSelector`, which is a label query over the set of namespaces.
-The affinity term is applied to the union of the namespaces selected by `namespaceSelector` and the ones listed in the `namespaces` field.
+You can also select matching namespaces using `namespaceSelector`, which is a label query over the set of namespaces.
+The affinity term is applied to namespaces selected by both `namespaceSelector` and the `namespaces` field.
 Note that an empty `namespaceSelector` ({}) matches all namespaces, while a null or empty `namespaces` list and 
-null `namespaceSelector` means "this pod's namespace".
+null `namespaceSelector` matches the namespace of the Pod where the rule is defined.
 
-This feature is beta and enabled by default. You can disable it via the
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
-`PodAffinityNamespaceSelector` in both kube-apiserver and kube-scheduler.
+#### More practical use-cases
 
-#### More Practical Use-cases
+Inter-pod affinity and anti-affinity can be even more useful when they are used with higher
+level collections such as ReplicaSets, StatefulSets, Deployments, etc.  These
+rules allow you to configure that a set of workloads should
+be co-located in the same defined topology; for example, preferring to place two related
+Pods onto the same node.
 
-Interpod Affinity and AntiAffinity can be even more useful when they are used with higher
-level collections such as ReplicaSets, StatefulSets, Deployments, etc.  One can easily configure that a set of workloads should
-be co-located in the same defined topology, eg., the same node.
+For example: imagine a three-node cluster. You use the cluster to run a web application
+and also an in-memory cache (such as Redis). For this example, also assume that latency between
+the web application and the memory cache should be as low as is practical. You could use inter-pod
+affinity and anti-affinity to co-locate the web servers with the cache as much as possible.
 
-##### Always co-located in the same node
-
-In a three node cluster, a web application has in-memory cache such as redis. We want the web-servers to be co-located with the cache as much as possible.
-
-Here is the yaml snippet of a simple redis deployment with three replicas and selector label `app=store`. The deployment has `PodAntiAffinity` configured to ensure the scheduler does not co-locate replicas on a single node.
+In the following example Deployment for the Redis cache, the replicas get the label `app=store`. The
+`podAntiAffinity` rule tells the scheduler to avoid placing multiple replicas
+with the `app=store` label on a single node. This creates each cache in a
+separate node.
 
 ```yaml
 apiVersion: apps/v1
@@ -324,7 +383,10 @@ spec:
         image: redis:3.2-alpine
 ```
 
-The below yaml snippet of the webserver deployment has `podAntiAffinity` and `podAffinity` configured. This informs the scheduler that all its replicas are to be co-located with pods that have selector label `app=store`. This will also ensure that each web-server replica does not co-locate on a single node.
+The following example Deployment for the web servers creates replicas with the label `app=web-store`.
+The Pod affinity rule tells the scheduler to place each replica on a node that has a Pod
+with the label `app=store`. The Pod anti-affinity rule tells the scheduler never to place
+multiple `app=web-store` servers on a single node.
 
 ```yaml
 apiVersion: apps/v1
@@ -365,56 +427,41 @@ spec:
         image: nginx:1.16-alpine
 ```
 
-If we create the above two deployments, our three node cluster should look like below.
+Creating the two preceding Deployments results in the following cluster layout,
+where each web server is co-located with a cache, on three separate nodes.
 
 |       node-1         |       node-2        |       node-3       |
 |:--------------------:|:-------------------:|:------------------:|
 | *webserver-1*        |   *webserver-2*     |    *webserver-3*   |
 |  *cache-1*           |     *cache-2*       |     *cache-3*      |
 
-As you can see, all the 3 replicas of the `web-server` are automatically co-located with the cache as expected.
+The overall effect is that each cache instance is likely to be accessed by a single client, that
+is running on the same node. This approach aims to minimize both skew (imbalanced load) and latency.
 
-```
-kubectl get pods -o wide
-```
-The output is similar to this:
-```
-NAME                           READY     STATUS    RESTARTS   AGE       IP           NODE
-redis-cache-1450370735-6dzlj   1/1       Running   0          8m        10.192.4.2   kube-node-3
-redis-cache-1450370735-j2j96   1/1       Running   0          8m        10.192.2.2   kube-node-1
-redis-cache-1450370735-z73mh   1/1       Running   0          8m        10.192.3.1   kube-node-2
-web-server-1287567482-5d4dz    1/1       Running   0          7m        10.192.2.3   kube-node-1
-web-server-1287567482-6f7v5    1/1       Running   0          7m        10.192.4.3   kube-node-3
-web-server-1287567482-s330j    1/1       Running   0          7m        10.192.3.2   kube-node-2
-```
-
-##### Never co-located in the same node
-
-The above example uses `PodAntiAffinity` rule with `topologyKey: "kubernetes.io/hostname"` to deploy the redis cluster so that
-no two instances are located on the same host.
-See [ZooKeeper tutorial](/docs/tutorials/stateful-application/zookeeper/#tolerating-node-failure)
-for an example of a StatefulSet configured with anti-affinity for high availability, using the same technique.
+You might have other reasons to use Pod anti-affinity.
+See the [ZooKeeper tutorial](/docs/tutorials/stateful-application/zookeeper/#tolerating-node-failure)
+for an example of a StatefulSet configured with anti-affinity for high
+availability, using the same technique as this example.
 
 ## nodeName
 
-`nodeName` is the simplest form of node selection constraint, but due
-to its limitations it is typically not used.  `nodeName` is a field of
-PodSpec.  If it is non-empty, the scheduler ignores the pod and the
-kubelet running on the named node tries to run the pod.  Thus, if
-`nodeName` is provided in the PodSpec, it takes precedence over the
-above methods for node selection.
+`nodeName` is a more direct form of node selection than affinity or
+`nodeSelector`. `nodeName` is a field in the Pod spec. If the `nodeName` field
+is not empty, the scheduler ignores the Pod and the kubelet on the named node
+tries to place the Pod on that node. Using `nodeName` overrules using
+`nodeSelector` or affinity and anti-affinity rules.
 
 Some of the limitations of using `nodeName` to select nodes are:
 
--   If the named node does not exist, the pod will not be run, and in
+-   If the named node does not exist, the Pod will not run, and in
     some cases may be automatically deleted.
 -   If the named node does not have the resources to accommodate the
-    pod, the pod will fail and its reason will indicate why,
+    Pod, the Pod will fail and its reason will indicate why,
     for example OutOfmemory or OutOfcpu.
 -   Node names in cloud environments are not always predictable or
     stable.
 
-Here is an example of a pod config file using the `nodeName` field:
+Here is an example of a Pod spec using the `nodeName` field:
 
 ```yaml
 apiVersion: v1
@@ -428,21 +475,26 @@ spec:
   nodeName: kube-01
 ```
 
-The above pod will run on the node kube-01.
+The above Pod will only run on the node `kube-01`.
 
+## Pod topology spread constraints
 
+You can use _topology spread constraints_ to control how {{< glossary_tooltip text="Pods" term_id="Pod" >}}
+are spread across your cluster among failure-domains such as regions, zones, nodes, or among any other
+topology domains that you define. You might do this to improve performance, expected availability, or
+overall utilization.
+
+Read [Pod topology spread constraints](/docs/concepts/scheduling-eviction/topology-spread-constraints/)
+to learn more about how these work.
 
 ## {{% heading "whatsnext" %}}
 
-
-[Taints](/docs/concepts/scheduling-eviction/taint-and-toleration/) allow a Node to *repel* a set of Pods.
-
-The design documents for
-[node affinity](https://git.k8s.io/community/contributors/design-proposals/scheduling/nodeaffinity.md)
-and for [inter-pod affinity/anti-affinity](https://git.k8s.io/community/contributors/design-proposals/scheduling/podaffinity.md) contain extra background information about these features.
-
-Once a Pod is assigned to a Node, the kubelet runs the Pod and allocates node-local resources.
-The [topology manager](/docs/tasks/administer-cluster/topology-manager/) can take part in node-level
-resource allocation decisions. 
+* Read more about [taints and tolerations](/docs/concepts/scheduling-eviction/taint-and-toleration/) .
+* Read the design docs for [node affinity](https://git.k8s.io/design-proposals-archive/scheduling/nodeaffinity.md)
+  and for [inter-pod affinity/anti-affinity](https://git.k8s.io/design-proposals-archive/scheduling/podaffinity.md).
+* Learn about how the [topology manager](/docs/tasks/administer-cluster/topology-manager/) takes part in node-level
+  resource allocation decisions. 
+* Learn how to use [nodeSelector](/docs/tasks/configure-pod-container/assign-pods-nodes/).
+* Learn how to use [affinity and anti-affinity](/docs/tasks/configure-pod-container/assign-pods-nodes-using-node-affinity/).
 
 
diff --git a/content/en/docs/concepts/scheduling-eviction/kube-scheduler.md b/content/en/docs/concepts/scheduling-eviction/kube-scheduler.md
index 916f050513..c27013f6b7 100644
--- a/content/en/docs/concepts/scheduling-eviction/kube-scheduler.md
+++ b/content/en/docs/concepts/scheduling-eviction/kube-scheduler.md
@@ -83,9 +83,9 @@ of the scheduler:
 ## {{% heading "whatsnext" %}}
 
 * Read about [scheduler performance tuning](/docs/concepts/scheduling-eviction/scheduler-perf-tuning/)
-* Read about [Pod topology spread constraints](/docs/concepts/workloads/pods/pod-topology-spread-constraints/)
+* Read about [Pod topology spread constraints](/docs/concepts/scheduling-eviction/topology-spread-constraints/)
 * Read the [reference documentation](/docs/reference/command-line-tools-reference/kube-scheduler/) for kube-scheduler
-* Read the [kube-scheduler config (v1beta2)](/docs/reference/config-api/kube-scheduler-config.v1beta2/) reference
+* Read the [kube-scheduler config (v1beta3)](/docs/reference/config-api/kube-scheduler-config.v1beta3/) reference
 * Learn about [configuring multiple schedulers](/docs/tasks/extend-kubernetes/configure-multiple-schedulers/)
 * Learn about [topology management policies](/docs/tasks/administer-cluster/topology-manager/)
 * Learn about [Pod Overhead](/docs/concepts/scheduling-eviction/pod-overhead/)
diff --git a/content/en/docs/concepts/scheduling-eviction/node-pressure-eviction.md b/content/en/docs/concepts/scheduling-eviction/node-pressure-eviction.md
index e832d1d48c..244298d150 100644
--- a/content/en/docs/concepts/scheduling-eviction/node-pressure-eviction.md
+++ b/content/en/docs/concepts/scheduling-eviction/node-pressure-eviction.md
@@ -66,8 +66,8 @@ the signal.
 
 The value for `memory.available` is derived from the cgroupfs instead of tools
 like `free -m`. This is important because `free -m` does not work in a
-container, and if users use the [node
-allocatable](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable) feature, out of resource decisions
+container, and if users use the [node allocatable](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)
+feature, out of resource decisions
 are made local to the end user Pod part of the cgroup hierarchy as well as the
 root node. This [script](/examples/admin/resource/memory-available.sh)
 reproduces the same set of steps that the kubelet performs to calculate
@@ -85,10 +85,15 @@ The kubelet supports the following filesystem partitions:
 Kubelet auto-discovers these filesystems and ignores other filesystems. Kubelet
 does not support other configurations.
 
-{{<note>}}
-Some kubelet garbage collection features are deprecated in favor of eviction.
-For a list of the deprecated features, see [kubelet garbage collection deprecation](/docs/concepts/cluster-administration/kubelet-garbage-collection/#deprecation).
-{{</note>}}
+Some kubelet garbage collection features are deprecated in favor of eviction:
+
+| Existing Flag | New Flag | Rationale |
+| ------------- | -------- | --------- |
+| `--image-gc-high-threshold` | `--eviction-hard` or `--eviction-soft` | existing eviction signals can trigger image garbage collection |
+| `--image-gc-low-threshold` | `--eviction-minimum-reclaim` | eviction reclaims achieve the same behavior |
+| `--maximum-dead-containers` | - | deprecated once old logs are stored outside of container's context |
+| `--maximum-dead-containers-per-container` | - | deprecated once old logs are stored outside of container's context |
+| `--minimum-container-ttl-duration` | - | deprecated once old logs are stored outside of container's context |
 
 ### Eviction thresholds
 
@@ -211,7 +216,7 @@ the kubelet frees up disk space in the following order:
 If the kubelet's attempts to reclaim node-level resources don't bring the eviction
 signal below the threshold, the kubelet begins to evict end-user pods. 
 
-The kubelet uses the following parameters to determine pod eviction order:
+The kubelet uses the following parameters to determine the pod eviction order:
 
 1. Whether the pod's resource usage exceeds requests
 1. [Pod Priority](/docs/concepts/scheduling-eviction/pod-priority-preemption/)
@@ -234,8 +239,8 @@ so the above scenario will not apply if the node is, for example, under `DiskPre
 
 `Guaranteed` pods are guaranteed only when requests and limits are specified for
 all the containers and they are equal. These pods will never be evicted because
-of another pod's resource consumption. If a system daemon (such as `kubelet`,
-`docker`, and `journald`) is consuming more resources than were reserved via 
+of another pod's resource consumption. If a system daemon (such as `kubelet`
+and `journald`) is consuming more resources than were reserved via 
 `system-reserved` or `kube-reserved` allocations, and the node only has
 `Guaranteed` or `Burstable` pods using less resources than requests left on it,
 then the kubelet must choose to evict one of these pods to preserve node stability
@@ -314,7 +319,7 @@ The kubelet sets an `oom_score_adj` value for each container based on the QoS fo
 
 {{<note>}}
 The kubelet also sets an `oom_score_adj` value of `-997` for containers in Pods that have
-`system-node-critical` {{<glossary_tooltip text="Priority" term_id="pod-priority">}}
+`system-node-critical` {{<glossary_tooltip text="Priority" term_id="pod-priority">}}.
 {{</note>}}
 
 If the kubelet can't reclaim memory before a node experiences OOM, the
@@ -396,7 +401,7 @@ counted as `active_file`. If enough of these kernel block buffers are on the
 active LRU list, the kubelet is liable to observe this as high resource use and 
 taint the node as experiencing memory pressure - triggering pod eviction.
 
-For more more details, see [https://github.com/kubernetes/kubernetes/issues/43916](https://github.com/kubernetes/kubernetes/issues/43916)
+For more details, see [https://github.com/kubernetes/kubernetes/issues/43916](https://github.com/kubernetes/kubernetes/issues/43916)
 
 You can work around that behavior by setting the memory limit and memory request
 the same for containers likely to perform intensive I/O activity. You will need 
diff --git a/content/en/docs/concepts/scheduling-eviction/pod-overhead.md b/content/en/docs/concepts/scheduling-eviction/pod-overhead.md
index eebc235084..2610ea80ad 100644
--- a/content/en/docs/concepts/scheduling-eviction/pod-overhead.md
+++ b/content/en/docs/concepts/scheduling-eviction/pod-overhead.md
@@ -10,17 +10,12 @@ weight: 30
 
 <!-- overview -->
 
-{{< feature-state for_k8s_version="v1.18" state="beta" >}}
-
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 When you run a Pod on a Node, the Pod itself takes an amount of system resources. These
 resources are additional to the resources needed to run the container(s) inside the Pod.
-_Pod Overhead_ is a feature for accounting for the resources consumed by the Pod infrastructure
-on top of the container requests & limits.
-
-
-
-
+In Kubernetes, _Pod Overhead_ is a way to account for the resources consumed by the Pod
+infrastructure on top of the container requests & limits.
 
 <!-- body -->
 
@@ -29,33 +24,30 @@ In Kubernetes, the Pod's overhead is set at
 time according to the overhead associated with the Pod's
 [RuntimeClass](/docs/concepts/containers/runtime-class/).
 
-When Pod Overhead is enabled, the overhead is considered in addition to the sum of container
-resource requests when scheduling a Pod. Similarly, the kubelet will include the Pod overhead when sizing
-the Pod cgroup, and when carrying out Pod eviction ranking.
+A pod's overhead is considered in addition to the sum of container resource requests when
+scheduling a Pod. Similarly, the kubelet will include the Pod overhead when sizing the Pod cgroup,
+and when carrying out Pod eviction ranking.
 
-## Enabling Pod Overhead {#set-up}
+## Configuring Pod overhead {#set-up}
 
-You need to make sure that the `PodOverhead`
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled (it is on by default as of 1.18)
-across your cluster, and a `RuntimeClass` is utilized which defines the `overhead` field.
+You need to make sure a `RuntimeClass` is utilized which defines the `overhead` field.
 
 ## Usage example
 
-To use the PodOverhead feature, you need a RuntimeClass that defines the `overhead` field. As
-an example, you could use the following RuntimeClass definition with a virtualizing container runtime
-that uses around 120MiB per Pod for the virtual machine and the guest OS:
+To work with Pod overhead, you need a RuntimeClass that defines the `overhead` field. As
+an example, you could use the following RuntimeClass definition with a virtualization container
+runtime that uses around 120MiB per Pod for the virtual machine and the guest OS:
 
 ```yaml
----
-kind: RuntimeClass
 apiVersion: node.k8s.io/v1
+kind: RuntimeClass
 metadata:
-    name: kata-fc
+  name: kata-fc
 handler: kata-fc
 overhead:
-    podFixed:
-        memory: "120Mi"
-        cpu: "250m"
+  podFixed:
+    memory: "120Mi"
+    cpu: "250m"
 ```
 
 Workloads which are created which specify the `kata-fc` RuntimeClass handler will take the memory and
@@ -72,7 +64,7 @@ spec:
   runtimeClassName: kata-fc
   containers:
   - name: busybox-ctr
-    image: busybox
+    image: busybox:1.28
     stdin: true
     tty: true
     resources:
@@ -92,62 +84,70 @@ updates the workload's PodSpec to include the `overhead` as described in the Run
 the Pod will be rejected. In the given example, since only the RuntimeClass name is specified, the admission controller mutates the Pod
 to include an `overhead`.
 
-After the RuntimeClass admission controller, you can check the updated PodSpec:
+After the RuntimeClass admission controller has made modifications, you can check the updated
+Pod overhead value:
 
 ```bash
 kubectl get pod test-pod -o jsonpath='{.spec.overhead}'
 ```
 
 The output is:
+
 ```
 map[cpu:250m memory:120Mi]
 ```
 
-If a ResourceQuota is defined, the sum of container requests as well as the
+If a [ResourceQuota](/docs/concepts/policy/resource-quotas/) is defined, the sum of container requests as well as the
 `overhead` field are counted.
 
 When the kube-scheduler is deciding which node should run a new Pod, the scheduler considers that Pod's
 `overhead` as well as the sum of container requests for that Pod. For this example, the scheduler adds the
 requests and the overhead, then looks for a node that has 2.25 CPU and 320 MiB of memory available.
 
-Once a Pod is scheduled to a node, the kubelet on that node creates a new {{< glossary_tooltip text="cgroup" term_id="cgroup" >}}
-for the Pod. It is within this pod that the underlying container runtime will create containers.
+Once a Pod is scheduled to a node, the kubelet on that node creates a new {{< glossary_tooltip
+text="cgroup" term_id="cgroup" >}} for the Pod. It is within this pod that the underlying
+container runtime will create containers.
 
-If the resource has a limit defined for each container (Guaranteed QoS or Bustrable QoS with limits defined),
+If the resource has a limit defined for each container (Guaranteed QoS or Burstable QoS with limits defined),
 the kubelet will set an upper limit for the pod cgroup associated with that resource (cpu.cfs_quota_us for CPU
 and memory.limit_in_bytes memory). This upper limit is based on the sum of the container limits plus the `overhead`
 defined in the PodSpec.
 
-For CPU, if the Pod is Guaranteed or Burstable QoS, the kubelet will set `cpu.shares` based on the sum of container
-requests plus the `overhead` defined in the PodSpec.
+For CPU, if the Pod is Guaranteed or Burstable QoS, the kubelet will set `cpu.shares` based on the
+sum of container requests plus the `overhead` defined in the PodSpec.
 
 Looking at our example, verify the container requests for the workload:
+
 ```bash
 kubectl get pod test-pod -o jsonpath='{.spec.containers[*].resources.limits}'
 ```
 
 The total container requests are 2000m CPU and 200MiB of memory:
+
 ```
 map[cpu: 500m memory:100Mi] map[cpu:1500m memory:100Mi]
 ```
 
 Check this against what is observed by the node:
+
 ```bash
 kubectl describe node | grep test-pod -B2
 ```
 
-The output shows 2250m CPU and 320MiB of memory are requested, which includes PodOverhead:
+The output shows requests for 2250m CPU, and for 320MiB of memory. The requests include Pod overhead:
+
 ```
-  Namespace                   Name                CPU Requests  CPU Limits   Memory Requests  Memory Limits  AGE
-  ---------                   ----                ------------  ----------   ---------------  -------------  ---
-  default                     test-pod            2250m (56%)   2250m (56%)  320Mi (1%)       320Mi (1%)     36m
+  Namespace    Name       CPU Requests  CPU Limits   Memory Requests  Memory Limits  AGE
+  ---------    ----       ------------  ----------   ---------------  -------------  ---
+  default      test-pod   2250m (56%)   2250m (56%)  320Mi (1%)       320Mi (1%)     36m
 ```
 
 ## Verify Pod cgroup limits
 
-Check the Pod's memory cgroups on the node where the workload is running. In the following example, [`crictl`](https://github.com/kubernetes-sigs/cri-tools/blob/master/docs/crictl.md)
+Check the Pod's memory cgroups on the node where the workload is running. In the following example,
+[`crictl`](https://github.com/kubernetes-sigs/cri-tools/blob/master/docs/crictl.md)
 is used on the node, which provides a CLI for CRI-compatible container runtimes. This is an
-advanced example to show PodOverhead behavior, and it is not expected that users should need to check
+advanced example to show Pod overhead behavior, and it is not expected that users should need to check
 cgroups directly on the node.
 
 First, on the particular node, determine the Pod identifier:
@@ -158,17 +158,21 @@ POD_ID="$(sudo crictl pods --name test-pod -q)"
 ```
 
 From this, you can determine the cgroup path for the Pod:
+
 ```bash
 # Run this on the node where the Pod is scheduled
 sudo crictl inspectp -o=json $POD_ID | grep cgroupsPath
 ```
 
 The resulting cgroup path includes the Pod's `pause` container. The Pod level cgroup is one directory above.
+
 ```
-        "cgroupsPath": "/kubepods/podd7f4b509-cf94-4951-9417-d1087c92a5b2/7ccf55aee35dd16aca4189c952d83487297f3cd760f1bbf09620e206e7d0c27a"
+  "cgroupsPath": "/kubepods/podd7f4b509-cf94-4951-9417-d1087c92a5b2/7ccf55aee35dd16aca4189c952d83487297f3cd760f1bbf09620e206e7d0c27a"
 ```
 
-In this specific case, the pod cgroup path is `kubepods/podd7f4b509-cf94-4951-9417-d1087c92a5b2`. Verify the Pod level cgroup setting for memory:
+In this specific case, the pod cgroup path is `kubepods/podd7f4b509-cf94-4951-9417-d1087c92a5b2`.
+Verify the Pod level cgroup setting for memory:
+
 ```bash
 # Run this on the node where the Pod is scheduled.
 # Also, change the name of the cgroup to match the cgroup allocated for your pod.
@@ -176,22 +180,20 @@ In this specific case, the pod cgroup path is `kubepods/podd7f4b509-cf94-4951-94
 ```
 
 This is 320 MiB, as expected:
+
 ```
 335544320
 ```
 
 ### Observability
 
-A `kube_pod_overhead` metric is available in [kube-state-metrics](https://github.com/kubernetes/kube-state-metrics)
-to help identify when PodOverhead is being utilized and to help observe stability of workloads
-running with a defined Overhead. This functionality is not available in the 1.9 release of
-kube-state-metrics, but is expected in a following release. Users will need to build kube-state-metrics
-from source in the meantime.
-
-
+Some `kube_pod_overhead_*` metrics are available in [kube-state-metrics](https://github.com/kubernetes/kube-state-metrics)
+to help identify when Pod overhead is being utilized and to help observe stability of workloads
+running with a defined overhead.
 
 ## {{% heading "whatsnext" %}}
 
+* Learn more about [RuntimeClass](/docs/concepts/containers/runtime-class/)
+* Read the [PodOverhead Design](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/688-pod-overhead)
+  enhancement proposal for extra context
 
-* [RuntimeClass](/docs/concepts/containers/runtime-class/)
-* [PodOverhead Design](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/688-pod-overhead)
diff --git a/content/en/docs/concepts/scheduling-eviction/pod-priority-preemption.md b/content/en/docs/concepts/scheduling-eviction/pod-priority-preemption.md
index fff925b6c5..cee15e966e 100644
--- a/content/en/docs/concepts/scheduling-eviction/pod-priority-preemption.md
+++ b/content/en/docs/concepts/scheduling-eviction/pod-priority-preemption.md
@@ -104,9 +104,9 @@ description: "This priority class should be used for XYZ service pods only."
 
 ## Non-preempting PriorityClass {#non-preempting-priority-class}
 
-{{< feature-state for_k8s_version="v1.19" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
-Pods with `PreemptionPolicy: Never` will be placed in the scheduling queue
+Pods with `preemptionPolicy: Never` will be placed in the scheduling queue
 ahead of lower-priority pods,
 but they cannot preempt other pods.
 A non-preempting pod waiting to be scheduled will stay in the scheduling queue,
@@ -122,16 +122,16 @@ allowing other pods with lower priority to be scheduled before them.
 Non-preempting pods may still be preempted by other,
 high-priority pods.
 
-`PreemptionPolicy` defaults to `PreemptLowerPriority`,
+`preemptionPolicy` defaults to `PreemptLowerPriority`,
 which will allow pods of that PriorityClass to preempt lower-priority pods
 (as is existing default behavior).
-If `PreemptionPolicy` is set to `Never`,
+If `preemptionPolicy` is set to `Never`,
 pods in that PriorityClass will be non-preempting.
 
 An example use case is for data science workloads.
 A user may submit a job that they want to be prioritized above other workloads,
 but do not wish to discard existing work by preempting running pods.
-The high priority job with `PreemptionPolicy: Never` will be scheduled
+The high priority job with `preemptionPolicy: Never` will be scheduled
 ahead of other queued pods,
 as soon as sufficient cluster resources "naturally" become free.
 
@@ -203,9 +203,10 @@ resources reserved for Pod P and also gives users information about preemptions
 in their clusters.
 
 Please note that Pod P is not necessarily scheduled to the "nominated Node".
+The scheduler always tries the "nominated Node" before iterating over any other nodes.
 After victim Pods are preempted, they get their graceful termination period. If
 another node becomes available while scheduler is waiting for the victim Pods to
-terminate, scheduler will use the other node to schedule Pod P. As a result
+terminate, scheduler may use the other node to schedule Pod P. As a result
 `nominatedNodeName` and `nodeName` of Pod spec are not always the same. Also, if
 scheduler preempts Pods on Node N, but then a higher priority Pod than Pod P
 arrives, scheduler may give Node N to the new higher priority Pod. In such a
diff --git a/content/en/docs/concepts/scheduling-eviction/resource-bin-packing.md b/content/en/docs/concepts/scheduling-eviction/resource-bin-packing.md
index 17a426e35b..951d3f273d 100644
--- a/content/en/docs/concepts/scheduling-eviction/resource-bin-packing.md
+++ b/content/en/docs/concepts/scheduling-eviction/resource-bin-packing.md
@@ -3,70 +3,100 @@ reviewers:
 - bsalamat
 - k82cn
 - ahg-g
-title: Resource Bin Packing for Extended Resources
+title: Resource Bin Packing
 content_type: concept
 weight: 80
 ---
 
 <!-- overview -->
 
-{{< feature-state for_k8s_version="v1.16" state="alpha" >}}
-
-The kube-scheduler can be configured to enable bin packing of resources along
-with extended resources using `RequestedToCapacityRatioResourceAllocation`
-priority function. Priority functions can be used to fine-tune the
-kube-scheduler as per custom needs. 
+In the [scheduling-plugin](/docs/reference/scheduling/config/#scheduling-plugins)  `NodeResourcesFit` of kube-scheduler, there are two 
+scoring strategies that support the bin packing of resources: `MostAllocated` and `RequestedToCapacityRatio`.
 
 <!-- body -->
 
-## Enabling Bin Packing using RequestedToCapacityRatioResourceAllocation
+## Enabling bin packing using MostAllocated strategy
+The `MostAllocated` strategy scores the nodes based on the utilization of resources, favoring the ones with higher allocation.
+For each resource type, you can set a weight to modify its influence in the node score.
 
-Kubernetes allows the users to specify the resources along with weights for
+To set the `MostAllocated` strategy for the `NodeResourcesFit` plugin, use a
+[scheduler configuration](/docs/reference/scheduling/config) similar to the following:
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+- pluginConfig:
+  - args:
+      scoringStrategy:
+        resources:
+        - name: cpu
+          weight: 1
+        - name: memory
+          weight: 1
+        - name: intel.com/foo
+          weight: 3
+        - name: intel.com/bar
+          weight: 3
+        type: MostAllocated
+    name: NodeResourcesFit
+```
+
+To learn more about other parameters and their default configuration, see the API documentation for 
+[`NodeResourcesFitArgs`](/docs/reference/config-api/kube-scheduler-config.v1beta3/#kubescheduler-config-k8s-io-v1beta3-NodeResourcesFitArgs).
+
+## Enabling bin packing using RequestedToCapacityRatio
+
+The `RequestedToCapacityRatio` strategy allows the users to specify the resources along with weights for
 each resource to score nodes based on the request to capacity ratio. This
 allows users to bin pack extended resources by using appropriate parameters
-and improves the utilization of scarce resources in large clusters. The
-behavior of the `RequestedToCapacityRatioResourceAllocation` priority function
-can be controlled by a configuration option called `RequestedToCapacityRatioArgs`. 
-This argument consists of two parameters `shape` and `resources`. The `shape` 
+to improve the utilization of scarce resources in large clusters. It favors nodes according to a
+configured function of the allocated resources. The behavior of the `RequestedToCapacityRatio` in
+the `NodeResourcesFit` score function can be controlled by the
+[scoringStrategy](/docs/reference/config-api/kube-scheduler-config.v1beta3/#kubescheduler-config-k8s-io-v1beta3-ScoringStrategy) field.
+Within the `scoringStrategy` field, you can configure two parameters: `requestedToCapacityRatioParam` and
+`resources`. The `shape` in `requestedToCapacityRatioParam` 
 parameter allows the user to tune the function as least requested or most 
 requested based on `utilization` and `score` values.  The `resources` parameter 
 consists of `name` of the resource to be considered during scoring and `weight` 
 specify the weight of each resource.
 
 Below is an example configuration that sets
-`requestedToCapacityRatioArguments` to bin packing behavior for extended
-resources `intel.com/foo` and `intel.com/bar`.
+the bin packing behavior for extended resources `intel.com/foo` and `intel.com/bar`
+using the `requestedToCapacityRatio` field.
 
 ```yaml
-apiVersion: kubescheduler.config.k8s.io/v1beta1
+apiVersion: kubescheduler.config.k8s.io/v1beta3
 kind: KubeSchedulerConfiguration
 profiles:
-# ...
-  pluginConfig:
-  - name: RequestedToCapacityRatio
-    args: 
-      shape:
-      - utilization: 0
-        score: 10
-      - utilization: 100
-        score: 0
-      resources:
-      - name: intel.com/foo
-        weight: 3
-      - name: intel.com/bar
-        weight: 5
+- pluginConfig:
+  - args:
+      scoringStrategy:
+        resources:
+        - name: intel.com/foo
+          weight: 3
+        - name: intel.com/bar
+          weight: 3
+        requestedToCapacityRatioParam:
+          shape:
+          - utilization: 0
+            score: 0
+          - utilization: 100
+            score: 10
+        type: RequestedToCapacityRatio
+    name: NodeResourcesFit
 ```
 
 Referencing the `KubeSchedulerConfiguration` file with the kube-scheduler 
 flag `--config=/path/to/config/file` will pass the configuration to the 
 scheduler.
 
-**This feature is disabled by default**
+To learn more about other parameters and their default configuration, see the API documentation for 
+[`NodeResourcesFitArgs`](/docs/reference/config-api/kube-scheduler-config.v1beta3/#kubescheduler-config-k8s-io-v1beta3-NodeResourcesFitArgs).
 
-### Tuning the Priority Function
+### Tuning the score function
 
-`shape` is used to specify the behavior of the
-`RequestedToCapacityRatioPriority` function.
+`shape` is used to specify the behavior of the `RequestedToCapacityRatio` function.
 
 ```yaml
 shape:
diff --git a/content/en/docs/concepts/scheduling-eviction/scheduler-perf-tuning.md b/content/en/docs/concepts/scheduling-eviction/scheduler-perf-tuning.md
index 5894398c9b..00302166ce 100644
--- a/content/en/docs/concepts/scheduling-eviction/scheduler-perf-tuning.md
+++ b/content/en/docs/concepts/scheduling-eviction/scheduler-perf-tuning.md
@@ -43,7 +43,7 @@ If you set `percentageOfNodesToScore` above 100, kube-scheduler acts as if you
 had set a value of 100.
 
 To change the value, edit the
-[kube-scheduler configuration file](/docs/reference/config-api/kube-scheduler-config.v1beta2/)
+[kube-scheduler configuration file](/docs/reference/config-api/kube-scheduler-config.v1beta3/)
 and then restart the scheduler.
 In many cases, the configuration file can be found at `/etc/kubernetes/config/kube-scheduler.yaml`.
 
@@ -161,5 +161,5 @@ After going over all the Nodes, it goes back to Node 1.
 
 ## {{% heading "whatsnext" %}}
 
-* Check the [kube-scheduler configuration reference (v1beta2)](/docs/reference/config-api/kube-scheduler-config.v1beta2/)
+* Check the [kube-scheduler configuration reference (v1beta3)](/docs/reference/config-api/kube-scheduler-config.v1beta3/)
 
diff --git a/content/en/docs/concepts/scheduling-eviction/scheduling-framework.md b/content/en/docs/concepts/scheduling-eviction/scheduling-framework.md
index e08052c017..52db68bf3d 100644
--- a/content/en/docs/concepts/scheduling-eviction/scheduling-framework.md
+++ b/content/en/docs/concepts/scheduling-eviction/scheduling-framework.md
@@ -52,7 +52,7 @@ equivalent to "Predicate" and "Scoring" is equivalent to "Priority function".
 One plugin may register at multiple extension points to perform more complex or
 stateful tasks.
 
-{{< figure src="/images/docs/scheduling-framework-extensions.png" title="scheduling framework extension points" >}}
+{{< figure src="/images/docs/scheduling-framework-extensions.png" title="scheduling framework extension points" class="diagram-large">}}
 
 ### QueueSort {#queue-sort}
 
diff --git a/content/en/docs/concepts/scheduling-eviction/taint-and-toleration.md b/content/en/docs/concepts/scheduling-eviction/taint-and-toleration.md
index 030f28e7d1..82e812c53b 100644
--- a/content/en/docs/concepts/scheduling-eviction/taint-and-toleration.md
+++ b/content/en/docs/concepts/scheduling-eviction/taint-and-toleration.md
@@ -15,15 +15,15 @@ is a property of {{< glossary_tooltip text="Pods" term_id="pod" >}} that *attrac
 a set of {{< glossary_tooltip text="nodes" term_id="node" >}} (either as a preference or a
 hard requirement). _Taints_ are the opposite -- they allow a node to repel a set of pods.
 
-_Tolerations_ are applied to pods, and allow (but do not require) the pods to schedule
-onto nodes with matching taints.
+_Tolerations_ are applied to pods. Tolerations allow the scheduler to schedule pods with matching
+taints. Tolerations allow scheduling but don't guarantee scheduling: the scheduler also
+[evaluates other parameters](/docs/concepts/scheduling-eviction/pod-priority-preemption/)
+as part of its function.
 
 Taints and tolerations work together to ensure that pods are not scheduled
 onto inappropriate nodes. One or more taints are applied to a node; this
 marks that the node should not accept any pods that do not tolerate the taints.
 
-
-
 <!-- body -->
 
 ## Concepts
@@ -267,7 +267,8 @@ This ensures that DaemonSet pods are never evicted due to these problems.
 ## Taint Nodes by Condition
 
 The control plane, using the node {{<glossary_tooltip text="controller" term_id="controller">}},
-automatically creates taints with a `NoSchedule` effect for [node conditions](/docs/concepts/scheduling-eviction/node-pressure-eviction/#node-conditions).
+automatically creates taints with a `NoSchedule` effect for
+[node conditions](/docs/concepts/scheduling-eviction/node-pressure-eviction/#node-conditions).
 
 The scheduler checks taints, not node conditions, when it makes scheduling
 decisions. This ensures that node conditions don't directly affect scheduling.
@@ -298,7 +299,7 @@ arbitrary tolerations to DaemonSets.
 
 ## {{% heading "whatsnext" %}}
 
-* Read about [Node-pressure Eviction](/docs/concepts/scheduling-eviction/node-pressure-eviction/) and how you can configure it
+* Read about [Node-pressure Eviction](/docs/concepts/scheduling-eviction/node-pressure-eviction/)
+  and how you can configure it
 * Read about [Pod Priority](/docs/concepts/scheduling-eviction/pod-priority-preemption/)
 
-
diff --git a/content/en/docs/concepts/scheduling-eviction/topology-spread-constraints.md b/content/en/docs/concepts/scheduling-eviction/topology-spread-constraints.md
new file mode 100644
index 0000000000..77f4d1ea55
--- /dev/null
+++ b/content/en/docs/concepts/scheduling-eviction/topology-spread-constraints.md
@@ -0,0 +1,570 @@
+---
+title: Pod Topology Spread Constraints
+content_type: concept
+weight: 40
+---
+
+
+<!-- overview -->
+
+You can use _topology spread constraints_ to control how
+{{< glossary_tooltip text="Pods" term_id="Pod" >}} are spread across your cluster
+among failure-domains such as regions, zones, nodes, and other user-defined topology
+domains. This can help to achieve high availability as well as efficient resource
+utilization.
+
+You can set [cluster-level constraints](#cluster-level-default-constraints) as a default,
+or configure topology spread constraints for individual workloads.
+
+<!-- body -->
+
+## Motivation
+
+Imagine that you have a cluster of up to twenty nodes, and you want to run a
+{{< glossary_tooltip text="workload" term_id="workload" >}}
+that automatically scales how many replicas it uses. There could be as few as
+two Pods or as many as fifteen.
+When there are only two Pods, you'd prefer not to have both of those Pods run on the
+same node: you would run the risk that a single node failure takes your workload
+offline.
+
+In addition to this basic usage, there are some advanced usage examples that
+enable your workloads to benefit on high availability and cluster utilization.
+
+As you scale up and run more Pods, a different concern becomes important. Imagine
+that you have three nodes running five Pods each. The nodes have enough capacity
+to run that many replicas; however, the clients that interact with this workload
+are split across three different datacenters (or infrastructure zones). Now you
+have less concern about a single node failure, but you notice that latency is
+higher than you'd like, and you are paying for network costs associated with
+sending network traffic between the different zones.
+
+You decide that under normal operation you'd prefer to have a similar number of replicas
+[scheduled](/docs/concepts/scheduling-eviction/) into each infrastructure zone,
+and you'd like the cluster to self-heal in the case that there is a problem.
+
+Pod topology spread constraints offer you a declarative way to configure that.
+
+
+## `topologySpreadConstraints` field
+
+The Pod API includes a field, `spec.topologySpreadConstraints`. Here is an example:
+
+```yaml
+---
+apiVersion: v1
+kind: Pod
+metadata:
+  name: example-pod
+spec:
+  # Configure a topology spread constraint
+  topologySpreadConstraints:
+    - maxSkew: <integer>
+      minDomains: <integer> # optional; alpha since v1.24
+      topologyKey: <string>
+      whenUnsatisfiable: <string>
+      labelSelector: <object>
+  ### other Pod fields go here
+```
+
+You can read more about this field by running `kubectl explain Pod.spec.topologySpreadConstraints`.
+
+### Spread constraint definition
+
+You can define one or multiple `topologySpreadConstraints` entries to instruct the
+kube-scheduler how to place each incoming Pod in relation to the existing Pods across
+your cluster. Those fields are:
+
+- **maxSkew** describes the degree to which Pods may be unevenly distributed. You must
+  specify this field and the number must be greater than zero. Its semantics differ
+  according to the value of `whenUnsatisfiable`:
+
+  - if you select `whenUnsatisfiable: DoNotSchedule`, then `maxSkew` defines the
+    maximum permitted difference between the number of matching pods in the target
+    topology and the _global minimum_
+    (the minimum number of pods that match the label selector in a topology domain).
+    For example, if you have 3 zones with 2, 4 and 5 matching pods respectively,
+    then the global minimum is 2 and `maxSkew` is compared relative to that number.
+  - if you select `whenUnsatisfiable: ScheduleAnyway`, the scheduler gives higher
+    precedence to topologies that would help reduce the skew.
+
+- **minDomains** indicates a minimum number of eligible domains. This field is optional.
+  A domain is a particular instance of a topology. An eligible domain is a domain whose
+  nodes match the node selector.
+
+  {{< note >}}
+  The `minDomains` field is an alpha field added in 1.24. You have to enable the
+  `MinDomainsInPodToplogySpread` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+  in order to use it.
+  {{< /note >}}
+
+  - The value of `minDomains` must be greater than 0, when specified.
+    You can only specify `minDomains` in conjunction with `whenUnsatisfiable: DoNotSchedule`.
+  - When the number of eligible domains with match topology keys is less than `minDomains`,
+    Pod topology spread treats global minimum as 0, and then the calculation of `skew` is performed.
+    The global minimum is the minimum number of matching Pods in an eligible domain,
+    or zero if the number of eligible domains is less than `minDomains`.
+  - When the number of eligible domains with matching topology keys equals or is greater than
+    `minDomains`, this value has no effect on scheduling.
+  - If you do not specify `minDomains`, the constraint behaves as if `minDomains` is 1.
+
+- **topologyKey** is the key of [node labels](#node-labels). If two Nodes are labelled
+  with this key and have identical values for that label, the scheduler treats both
+  Nodes as being in the same topology. The scheduler tries to place a balanced number
+  of Pods into each topology domain.
+
+- **whenUnsatisfiable** indicates how to deal with a Pod if it doesn't satisfy the spread constraint:
+  - `DoNotSchedule` (default) tells the scheduler not to schedule it.
+  - `ScheduleAnyway` tells the scheduler to still schedule it while prioritizing nodes that minimize the skew.
+
+- **labelSelector** is used to find matching Pods. Pods
+  that match this label selector are counted to determine the
+  number of Pods in their corresponding topology domain.
+  See [Label Selectors](/docs/concepts/overview/working-with-objects/labels/#label-selectors)
+  for more details.
+
+When a Pod defines more than one `topologySpreadConstraint`, those constraints are
+combined using a logical AND operation: the kube-scheduler looks for a node for the incoming Pod
+that satisfies all the configured constraints.
+
+### Node labels
+
+Topology spread constraints rely on node labels to identify the topology
+domain(s) that each {{< glossary_tooltip text="node" term_id="node" >}} is in.
+For example, a node might have labels:
+```yaml
+  region: us-east-1
+  zone: us-east-1a
+```
+
+{{< note >}}
+For brevity, this example doesn't use the
+[well-known](/docs/reference/labels-annotations-taints/) label keys
+`topology.kubernetes.io/zone` and `topology.kubernetes.io/region`. However,
+those registered label keys are nonetheless recommended rather than the private
+(unqualified) label keys `region` and `zone` that are used here.
+
+You can't make a reliable assumption about the meaning of a private label key
+between different contexts.
+{{< /note >}}
+
+
+Suppose you have a 4-node cluster with the following labels:
+
+```
+NAME    STATUS   ROLES    AGE     VERSION   LABELS
+node1   Ready    <none>   4m26s   v1.16.0   node=node1,zone=zoneA
+node2   Ready    <none>   3m58s   v1.16.0   node=node2,zone=zoneA
+node3   Ready    <none>   3m17s   v1.16.0   node=node3,zone=zoneB
+node4   Ready    <none>   2m43s   v1.16.0   node=node4,zone=zoneB
+```
+
+Then the cluster is logically viewed as below:
+
+{{<mermaid>}}
+graph TB
+    subgraph "zoneB"
+        n3(Node3)
+        n4(Node4)
+    end
+    subgraph "zoneA"
+        n1(Node1)
+        n2(Node2)
+    end
+
+    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+    class n1,n2,n3,n4 k8s;
+    class zoneA,zoneB cluster;
+{{< /mermaid >}}
+
+## Consistency
+
+You should set the same Pod topology spread constraints on all pods in a group.
+
+Usually, if you are using a workload controller such as a Deployment, the pod template
+takes care of this for you. If you mix different spread constraints then Kubernetes
+follows the API definition of the field; however, the behavior is more likely to become
+confusing and troubleshooting is less straightforward.
+
+You need a mechanism to ensure that all the nodes in a topology domain (such as a
+cloud provider region) are labelled consistently.
+To avoid you needing to manually label nodes, most clusters automatically
+populate well-known labels such as `topology.kubernetes.io/hostname`. Check whether
+your cluster supports this.
+
+## Topology spread constraint examples
+
+### Example: one topology spread constraint {#example-one-topologyspreadconstraint}
+
+Suppose you have a 4-node cluster where 3 Pods labelled `foo: bar` are located in
+node1, node2 and node3 respectively:
+
+{{<mermaid>}}
+graph BT
+    subgraph "zoneB"
+        p3(Pod) --> n3(Node3)
+        n4(Node4)
+    end
+    subgraph "zoneA"
+        p1(Pod) --> n1(Node1)
+        p2(Pod) --> n2(Node2)
+    end
+
+    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+    class n1,n2,n3,n4,p1,p2,p3 k8s;
+    class zoneA,zoneB cluster;
+{{< /mermaid >}}
+
+If you want an incoming Pod to be evenly spread with existing Pods across zones, you
+can use a manifest similar to:
+
+{{< codenew file="pods/topology-spread-constraints/one-constraint.yaml" >}}
+
+From that manifest, `topologyKey: zone` implies the even distribution will only be applied
+to nodes that are labelled `zone: <any value>` (nodes that don't have a `zone` label
+are skipped). The field `whenUnsatisfiable: DoNotSchedule` tells the scheduler to let the
+incoming Pod stay pending if the scheduler can't find a way to satisfy the constraint.
+
+If the scheduler placed this incoming Pod into zone `A`, the distribution of Pods would
+become `[3, 1]`. That means the actual skew is then 2 (calculated as `3 - 1`), which
+violates `maxSkew: 1`. To satisfy the constraints and context for this example, the
+incoming Pod can only be placed onto a node in zone `B`:
+
+{{<mermaid>}}
+graph BT
+    subgraph "zoneB"
+        p3(Pod) --> n3(Node3)
+        p4(mypod) --> n4(Node4)
+    end
+    subgraph "zoneA"
+        p1(Pod) --> n1(Node1)
+        p2(Pod) --> n2(Node2)
+    end
+
+    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+    class n1,n2,n3,n4,p1,p2,p3 k8s;
+    class p4 plain;
+    class zoneA,zoneB cluster;
+{{< /mermaid >}}
+
+OR
+
+{{<mermaid>}}
+graph BT
+    subgraph "zoneB"
+        p3(Pod) --> n3(Node3)
+        p4(mypod) --> n3
+        n4(Node4)
+    end
+    subgraph "zoneA"
+        p1(Pod) --> n1(Node1)
+        p2(Pod) --> n2(Node2)
+    end
+
+    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+    class n1,n2,n3,n4,p1,p2,p3 k8s;
+    class p4 plain;
+    class zoneA,zoneB cluster;
+{{< /mermaid >}}
+
+You can tweak the Pod spec to meet various kinds of requirements:
+
+- Change `maxSkew` to a bigger value - such as `2` -  so that the incoming Pod can
+  be placed into zone `A` as well.
+- Change `topologyKey` to `node` so as to distribute the Pods evenly across nodes
+  instead of zones. In the above example, if `maxSkew` remains `1`, the incoming
+  Pod can only be placed onto the node `node4`.
+- Change `whenUnsatisfiable: DoNotSchedule` to `whenUnsatisfiable: ScheduleAnyway`
+  to ensure the incoming Pod to be always schedulable (suppose other scheduling APIs
+  are satisfied). However, it's preferred to be placed into the topology domain which
+  has fewer matching Pods. (Be aware that this preference is jointly normalized
+  with other internal scheduling priorities such as resource usage ratio).
+
+### Example: multiple topology spread constraints {#example-multiple-topologyspreadconstraints}
+
+This builds upon the previous example. Suppose you have a 4-node cluster where 3
+existing Pods labeled `foo: bar` are located on node1, node2 and node3 respectively:
+
+{{<mermaid>}}
+graph BT
+    subgraph "zoneB"
+        p3(Pod) --> n3(Node3)
+        n4(Node4)
+    end
+    subgraph "zoneA"
+        p1(Pod) --> n1(Node1)
+        p2(Pod) --> n2(Node2)
+    end
+
+    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+    class n1,n2,n3,n4,p1,p2,p3 k8s;
+    class p4 plain;
+    class zoneA,zoneB cluster;
+{{< /mermaid >}}
+
+You can combine two topology spread constraints to control the spread of Pods both
+by node and by zone:
+
+{{< codenew file="pods/topology-spread-constraints/two-constraints.yaml" >}}
+
+In this case, to match the first constraint, the incoming Pod can only be placed onto
+nodes in zone `B`; while in terms of the second constraint, the incoming Pod can only be
+scheduled to the node `node4`. The scheduler only considers options that satisfy all
+defined constraints, so the only valid placement is onto node `node4`.
+
+### Example: conflicting topology spread constraints {#example-conflicting-topologyspreadconstraints}
+
+Multiple constraints can lead to conflicts. Suppose you have a 3-node cluster across 2 zones:
+
+{{<mermaid>}}
+graph BT
+    subgraph "zoneB"
+        p4(Pod) --> n3(Node3)
+        p5(Pod) --> n3
+    end
+    subgraph "zoneA"
+        p1(Pod) --> n1(Node1)
+        p2(Pod) --> n1
+        p3(Pod) --> n2(Node2)
+    end
+
+    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+    class n1,n2,n3,n4,p1,p2,p3,p4,p5 k8s;
+    class zoneA,zoneB cluster;
+{{< /mermaid >}}
+
+If you were to apply
+[`two-constraints.yaml`](https://raw.githubusercontent.com/kubernetes/website/main/content/en/examples/pods/topology-spread-constraints/two-constraints.yaml)
+(the manifest from the previous example)
+to **this** cluster, you would see that the Pod `mypod` stays in the `Pending` state.
+This happens because: to satisfy the first constraint, the Pod `mypod` can only
+be placed into zone `B`; while in terms of the second constraint, the Pod `mypod`
+can only schedule to node `node2`. The intersection of the two constraints returns
+an empty set, and the scheduler cannot place the Pod.
+
+To overcome this situation, you can either increase the value of `maxSkew` or modify
+one of the constraints to use `whenUnsatisfiable: ScheduleAnyway`. Depending on
+circumstances, you might also decide to delete an existing Pod manually - for example,
+if you are troubleshooting why a bug-fix rollout is not making progress.
+
+#### Interaction with node affinity and node selectors
+
+The scheduler will skip the non-matching nodes from the skew calculations if the
+incoming Pod has `spec.nodeSelector` or `spec.affinity.nodeAffinity` defined.
+
+### Example: topology spread constraints with node affinity {#example-topologyspreadconstraints-with-nodeaffinity}
+
+Suppose you have a 5-node cluster ranging across zones A to C:
+
+{{<mermaid>}}
+graph BT
+    subgraph "zoneB"
+        p3(Pod) --> n3(Node3)
+        n4(Node4)
+    end
+    subgraph "zoneA"
+        p1(Pod) --> n1(Node1)
+        p2(Pod) --> n2(Node2)
+    end
+
+classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+class n1,n2,n3,n4,p1,p2,p3 k8s;
+class p4 plain;
+class zoneA,zoneB cluster;
+{{< /mermaid >}}
+
+{{<mermaid>}}
+graph BT
+    subgraph "zoneC"
+        n5(Node5)
+    end
+
+classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+class n5 k8s;
+class zoneC cluster;
+{{< /mermaid >}}
+
+and you know that zone `C` must be excluded. In this case, you can compose a manifest
+as below, so that Pod `mypod` will be placed into zone `B` instead of zone `C`.
+Similarly, Kubernetes also respects `spec.nodeSelector`.
+
+{{< codenew file="pods/topology-spread-constraints/one-constraint-with-nodeaffinity.yaml" >}}
+
+## Implicit conventions
+
+There are some implicit conventions worth noting here:
+
+- Only the Pods holding the same namespace as the incoming Pod can be matching candidates.
+
+- The scheduler bypasses any nodes that don't have any `topologySpreadConstraints[*].topologyKey`
+  present. This implies that:
+
+  1. any Pods located on those bypassed nodes do not impact `maxSkew` calculation - in the
+     above example, suppose the node `node1` does not have a label "zone", then the 2 Pods will
+     be disregarded, hence the incoming Pod will be scheduled into zone `A`.
+  2. the incoming Pod has no chances to be scheduled onto this kind of nodes -
+     in the above example, suppose a node `node5` has the **mistyped** label `zone-typo: zoneC`
+     (and no `zone` label set). After node `node5` joins the cluster, it will be bypassed and
+     Pods for this workload aren't scheduled there.
+
+- Be aware of what will happen if the incoming Pod's
+  `topologySpreadConstraints[*].labelSelector` doesn't match its own labels. In the
+  above example, if you remove the incoming Pod's labels, it can still be placed onto
+  nodes in zone `B`, since the constraints are still satisfied. However, after that
+  placement, the degree of imbalance of the cluster remains unchanged - it's still zone `A`
+  having 2 Pods labelled as `foo: bar`, and zone `B` having 1 Pod labelled as
+  `foo: bar`. If this is not what you expect, update the workload's
+  `topologySpreadConstraints[*].labelSelector` to match the labels in the pod template.
+
+## Cluster-level default constraints
+
+It is possible to set default topology spread constraints for a cluster. Default
+topology spread constraints are applied to a Pod if, and only if:
+
+- It doesn't define any constraints in its `.spec.topologySpreadConstraints`.
+- It belongs to a Service, ReplicaSet, StatefulSet or ReplicationController.
+
+Default constraints can be set as part of the `PodTopologySpread` plugin
+arguments in a [scheduling profile](/docs/reference/scheduling/config/#profiles).
+The constraints are specified with the same [API above](#api), except that
+`labelSelector` must be empty. The selectors are calculated from the Services,
+ReplicaSets, StatefulSets or ReplicationControllers that the Pod belongs to.
+
+An example configuration might look like follows:
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+
+profiles:
+  - schedulerName: default-scheduler
+    pluginConfig:
+      - name: PodTopologySpread
+        args:
+          defaultConstraints:
+            - maxSkew: 1
+              topologyKey: topology.kubernetes.io/zone
+              whenUnsatisfiable: ScheduleAnyway
+          defaultingType: List
+```
+
+{{< note >}}
+The [`SelectorSpread` plugin](/docs/reference/scheduling/config/#scheduling-plugins)
+is disabled by default. The Kubernetes project recommends using `PodTopologySpread`
+to achieve similar behavior.
+{{< /note >}}
+
+### Built-in default constraints {#internal-default-constraints}
+
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
+
+If you don't configure any cluster-level default constraints for pod topology spreading,
+then kube-scheduler acts as if you specified the following default topology constraints:
+
+```yaml
+defaultConstraints:
+  - maxSkew: 3
+    topologyKey: "kubernetes.io/hostname"
+    whenUnsatisfiable: ScheduleAnyway
+  - maxSkew: 5
+    topologyKey: "topology.kubernetes.io/zone"
+    whenUnsatisfiable: ScheduleAnyway
+```
+
+Also, the legacy `SelectorSpread` plugin, which provides an equivalent behavior,
+is disabled by default.
+
+{{< note >}}
+The `PodTopologySpread` plugin does not score the nodes that don't have
+the topology keys specified in the spreading constraints. This might result
+in a different default behavior compared to the legacy `SelectorSpread` plugin when
+using the default topology constraints.
+
+If your nodes are not expected to have **both** `kubernetes.io/hostname` and
+`topology.kubernetes.io/zone` labels set, define your own constraints
+instead of using the Kubernetes defaults.
+{{< /note >}}
+
+If you don't want to use the default Pod spreading constraints for your cluster,
+you can disable those defaults by setting `defaultingType` to `List` and leaving
+empty `defaultConstraints` in the `PodTopologySpread` plugin configuration:
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+
+profiles:
+  - schedulerName: default-scheduler
+    pluginConfig:
+      - name: PodTopologySpread
+        args:
+          defaultConstraints: []
+          defaultingType: List
+```
+
+## Comparison with podAffinity and podAntiAffinity {#comparison-with-podaffinity-podantiaffinity}
+
+In Kubernetes, [inter-Pod affinity and anti-affinity](/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity)
+control how Pods are scheduled in relation to one another - either more packed
+or more scattered.
+
+`podAffinity`
+: attracts Pods; you can try to pack any number of Pods into qualifying
+  topology domain(s)
+`podAntiAffinity`
+: repels Pods. If you set this to `requiredDuringSchedulingIgnoredDuringExecution` mode then
+  only a single Pod can be scheduled into a single topology domain; if you choose
+  `preferredDuringSchedulingIgnoredDuringExecution` then you lose the ability to enforce the
+  constraint.
+
+For finer control, you can specify topology spread constraints to distribute
+Pods across different topology domains - to achieve either high availability or
+cost-saving. This can also help on rolling update workloads and scaling out
+replicas smoothly.
+
+For more context, see the
+[Motivation](https://github.com/kubernetes/enhancements/tree/master/keps/sig-scheduling/895-pod-topology-spread#motivation)
+section of the enhancement proposal about Pod topology spread constraints.
+
+## Known limitations
+
+- There's no guarantee that the constraints remain satisfied when Pods are removed. For
+  example, scaling down a Deployment may result in imbalanced Pods distribution.
+
+  You can use a tool such as the [Descheduler](https://github.com/kubernetes-sigs/descheduler)
+  to rebalance the Pods distribution.
+- Pods matched on tainted nodes are respected.
+  See [Issue 80921](https://github.com/kubernetes/kubernetes/issues/80921).
+- The scheduler doesn't have prior knowledge of all the zones or other topology
+  domains that a cluster has. They are determined from the existing nodes in the
+  cluster. This could lead to a problem in autoscaled clusters, when a node pool (or
+  node group) is scaled to zero nodes, and you're expecting the cluster to scale up,
+  because, in this case, those topology domains won't be considered until there is
+  at least one node in them.  
+  You can work around this by using an cluster autoscaling tool that is aware of
+  Pod topology spread constraints and is also aware of the overall set of topology
+  domains.
+
+
+## {{% heading "whatsnext" %}}
+
+- The blog article [Introducing PodTopologySpread](/blog/2020/05/introducing-podtopologyspread/)
+  explains `maxSkew` in some detail, as well as covering some advanced usage examples.
+- Read the [scheduling](/docs/reference/kubernetes-api/workload-resources/pod-v1/#scheduling) section of
+  the API reference for Pod.
diff --git a/content/en/docs/concepts/security/controlling-access.md b/content/en/docs/concepts/security/controlling-access.md
index 1a0c93d8cf..1718aa4a54 100644
--- a/content/en/docs/concepts/security/controlling-access.md
+++ b/content/en/docs/concepts/security/controlling-access.md
@@ -4,6 +4,7 @@ reviewers:
 - lavalamp
 title: Controlling Access to the Kubernetes API
 content_type: concept
+weight: 50
 ---
 
 <!-- overview -->
@@ -22,10 +23,11 @@ following diagram:
 
 ## Transport security
 
-In a typical Kubernetes cluster, the API serves on port 443, protected by TLS.
+By default, the Kubernetes API server listens on port 6443 on the first non-localhost network interface, protected by TLS. In a typical production Kubernetes cluster, the API serves on port 443. The port can be changed with the `--secure-port`, and the listening IP address with the `--bind-address` flag.
+
 The API server presents a certificate. This certificate may be signed using
 a private certificate authority (CA), or based on a public key infrastructure linked
-to a generally recognized CA.
+to a generally recognized CA. The certificate and corresponding private key can be set by using the `--tls-cert-file` and `--tls-private-key-file` flags.
 
 If your cluster uses a private certificate authority, you need a copy of that CA
 certificate configured into your `~/.kube/config` on the client, so that you can
@@ -129,34 +131,12 @@ The available Admission Control modules are described in [Admission Controllers]
 Once a request passes all admission controllers, it is validated using the validation routines
 for the corresponding API object, and then written to the object store (shown as step **4**).
 
+## Auditing
 
-## API server ports and IPs
+Kubernetes auditing provides a security-relevant, chronological set of records documenting the sequence of actions in a cluster.
+The cluster audits the activities generated by users, by applications that use the Kubernetes API, and by the control plane itself.
 
-The previous discussion applies to requests sent to the secure port of the API server
-(the typical case).  The API server can actually serve on 2 ports:
-
-By default, the Kubernetes API server serves HTTP on 2 ports:
-
-  1. `localhost` port:
-
-      - is intended for testing and bootstrap, and for other components of the master node
-        (scheduler, controller-manager) to talk to the API
-      - no TLS
-      - default is port 8080
-      - default IP is localhost, change with `--insecure-bind-address` flag.
-      - request **bypasses** authentication and authorization modules.
-      - request handled by admission control module(s).
-      - protected by need to have host access
-
-  2. “Secure port”:
-
-      - use whenever possible
-      - uses TLS.  Set cert with `--tls-cert-file` and key with `--tls-private-key-file` flag.
-      - default is port 6443, change with `--secure-port` flag.
-      - default IP is first non-localhost network interface, change with `--bind-address` flag.
-      - request handled by authentication and authorization modules.
-      - request handled by admission control module(s).
-      - authentication and authorization modules run.
+For more information, see [Auditing](/docs/tasks/debug/debug-cluster/audit/).
 
 ## {{% heading "whatsnext" %}}
 
diff --git a/content/en/docs/concepts/security/multi-tenancy.md b/content/en/docs/concepts/security/multi-tenancy.md
new file mode 100755
index 0000000000..a1c70fe370
--- /dev/null
+++ b/content/en/docs/concepts/security/multi-tenancy.md
@@ -0,0 +1,271 @@
+---
+title: Multi-tenancy
+content_type: concept
+weight: 70
+---
+
+<!-- overview -->
+
+This page provides an overview of available configuration options and best practices for cluster multi-tenancy.
+
+Sharing clusters saves costs and simplifies administration. However, sharing clusters also presents challenges such as security, fairness, and managing _noisy neighbors_.
+
+Clusters can be shared in many ways. In some cases, different applications may run in the same cluster. In other cases, multiple instances of the same application may run in the same cluster, one for each end user. All these types of sharing are frequently described using the umbrella term _multi-tenancy_.
+
+While Kubernetes does not have first-class concepts of end users or tenants, it provides several features to help manage different tenancy requirements. These are discussed below.
+
+<!-- body -->
+## Use cases
+
+The first step to determining how to share your cluster is understanding your use case, so you can evaluate the patterns and tools available. In general, multi-tenancy in Kubernetes clusters falls into two broad categories, though many variations and hybrids are also possible.
+
+### Multiple teams 
+
+A common form of multi-tenancy is to share a cluster between multiple teams within an organization, each of whom may operate one or more workloads. These workloads frequently need to communicate with each other, and with other workloads located on the same or different clusters.
+
+In this scenario, members of the teams often have direct access to Kubernetes resources via tools such as `kubectl`, or indirect access through GitOps controllers or other types of release automation tools. There is often some level of trust between members of different teams, but Kubernetes policies such as RBAC, quotas, and network policies are essential to safely and fairly share clusters.
+
+### Multiple customers 
+
+The other major form of multi-tenancy frequently involves a Software-as-a-Service (SaaS) vendor running multiple instances of a workload for customers. This business model is so strongly associated with this deployment style that many people call it "SaaS tenancy." However, a better term might be "multi-customer tenancy,” since SaaS vendors may also use other deployment models, and this deployment model can also be used outside of SaaS.
+
+
+In this scenario, the customers do not have access to the cluster; Kubernetes is invisible from their perspective and is only used by the vendor to manage the workloads. Cost optimization is frequently a critical concern, and Kubernetes policies are used to ensure that the workloads are strongly isolated from each other.
+
+
+## Terminology
+
+### Tenants
+
+When discussing multi-tenancy in Kubernetes, there is no single definition for a "tenant". Rather, the definition of a tenant will vary depending on whether multi-team or multi-customer tenancy is being discussed.
+
+In multi-team usage, a tenant is typically a team, where each team typically deploys a small number of workloads that scales with the complexity of the service. However, the definition of "team" may itself be fuzzy, as teams may be organized into higher-level divisions or subdivided into smaller teams.
+
+
+By contrast, if each team deploys dedicated workloads for each new client, they are using a multi-customer model of tenancy. In this case, a "tenant" is simply a group of users who share a single workload. This may be as large as an entire company, or as small as a single team at that company.
+
+In many cases, the same organization may use both definitions of "tenants" in different contexts. For example, a platform team may offer shared services such as security tools and databases to multiple internal “customers” and a SaaS vendor may also have multiple teams sharing a development cluster. Finally, hybrid architectures are also possible, such as a SaaS provider using a combination of per-customer workloads for sensitive data, combined with multi-tenant shared services.
+
+
+{{< figure src="/images/docs/multi-tenancy.png" title="A cluster showing coexisting tenancy models" class="diagram-large" >}}
+
+
+### Isolation
+
+There are several ways to design and build multi-tenant solutions with Kubernetes. Each of these methods comes with its own set of tradeoffs that impact the isolation level, implementation effort, operational complexity, and cost of service. 
+
+
+A Kubernetes cluster consists of a control plane which runs Kubernetes software, and a data plane consisting of worker nodes where tenant workloads are executed as pods. Tenant isolation can be applied in both the control plane and the data plane based on organizational requirements.
+
+The level of isolation offered is sometimes described using terms like “hard” multi-tenancy, which implies strong isolation, and “soft” multi-tenancy, which implies weaker isolation. In particular, "hard" multi-tenancy is often used to describe cases where the tenants do not trust each other, often from security and resource sharing perspectives (e.g. guarding against attacks such as data exfiltration or DoS). Since data planes typically have much larger attack surfaces, "hard" multi-tenancy often requires extra attention to isolating the data-plane, though control plane isolation  also remains critical. 
+
+However, the terms "hard" and "soft" can often be confusing, as there is no single definition that will apply to all users. Rather, "hardness" or "softness" is better understood as a broad spectrum, with many different techniques that can be used to maintain different types of isolation in your clusters, based on your requirements.
+
+
+In more extreme cases, it may be easier or necessary to forgo any cluster-level sharing at all and assign each tenant their dedicated cluster, possibly even running on dedicated hardware if VMs are not considered an adequate security boundary. This may be easier with managed Kubernetes clusters, where the overhead of creating and operating clusters is at least somewhat taken on by a cloud provider. The benefit of stronger tenant isolation must be evaluated against the cost and complexity of managing multiple clusters. The [Multi-cluster SIG](https://git.k8s.io/community/sig-multicluster/README.md) is responsible for addressing these types of use cases.
+
+
+
+The remainder of this page focuses on isolation techniques used for shared Kubernetes clusters. However, even if you are considering dedicated clusters, it may be valuable to review these recommendations, as it will give you the flexibility to shift to shared clusters in the future if your needs or capabilities change.
+
+
+## Control plane isolation
+
+Control plane isolation ensures that different tenants cannot access or affect each others' Kubernetes API resources. 
+
+### Namespaces
+
+In Kubernetes, a {{< glossary_tooltip text="Namespace" term_id="namespace" >}} provides a mechanism for isolating groups of API resources within a single cluster. This isolation has two key dimensions:
+
+1. Object names within a namespace can overlap with names in other namespaces, similar to files in folders. This allows tenants to name their resources without having to consider what other tenants are doing.
+
+2. Many Kubernetes security policies are scoped to namespaces. For example, RBAC Roles and Network Policies are namespace-scoped resources. Using RBAC, Users and Service Accounts can be restricted to a namespace.
+
+In a multi-tenant environment, a Namespace helps segment a tenant's workload into a logical and distinct management unit. In fact, a common practice is to isolate every workload in its own namespace, even if multiple workloads are operated by the same tenant. This ensures that each workload has its own identity and can be configured with an appropriate security policy.
+
+The namespace isolation model requires configuration of several other Kubernetes resources, networking plugins, and adherence to security best practices to properly isolate tenant workloads. These considerations are discussed below.
+
+### Access controls
+
+The most important type of isolation for the control plane is authorization. If teams or their workloads can access or modify each others' API resources, they can change or disable all other types of policies thereby negating any protection those policies may offer. As a result, it is critical to ensure that each tenant has the appropriate access to only the namespaces they need, and no more. This is known as the "Principle of Least Privilege."
+
+
+Role-based access control (RBAC) is commonly used to enforce authorization in the Kubernetes control plane, for both users and workloads (service accounts). [Roles](/docs/reference/access-authn-authz/rbac/#role-and-clusterrole) and [role bindings](/docs/reference/access-authn-authz/rbac/#rolebinding-and-clusterrolebinding) are Kubernetes objects that are used at a namespace level to enforce access control in your application; similar objects exist for authorizing access to cluster-level objects, though these are less useful for multi-tenant clusters.
+
+In a multi-team environment, RBAC must be used to restrict tenants' access to the appropriate namespaces, and ensure that cluster-wide resources can only be accessed or modified by privileged users such as cluster administrators. 
+
+If a policy ends up granting a user more permissions than they need, this is likely a signal that the namespace containing the affected resources should be refactored into finer-grained namespaces. Namespace management tools may simplify the management of these finer-grained namespaces by applying common RBAC policies to different namespaces, while still allowing fine-grained policies where necessary.
+
+### Quotas 
+
+Kubernetes workloads consume node resources, like CPU and memory.  In a multi-tenant environment, you can use
+[Resource Quotas](/docs/concepts/policy/resource-quotas/) to manage resource usage of tenant workloads.
+For the multiple teams use case, where tenants have access to the Kubernetes API, you can use resource quotas
+to limit the number of API resources (for example: the number of Pods, or the number of ConfigMaps)
+that a tenant can create. Limits on object count ensure fairness and aim to avoid _noisy neighbor_ issues from
+affecting other tenants that share a control plane.
+
+Resource quotas are namespaced objects. By mapping tenants to namespaces, cluster admins can use quotas to ensure that a tenant cannot monopolize a cluster's resources or overwhelm its control plane. Namespace management tools simplify the administration of quotas. In addition, while Kubernetes quotas only apply within a single namespace, some namespace management tools allow groups of namespaces to share quotas, giving administrators far more flexibility with less effort than built-in quotas.
+
+Quotas prevent a single tenant from consuming greater than their allocated share of resources hence minimizing the “noisy neighbor” issue, where one tenant negatively impacts the performance of other tenants' workloads. 
+
+When you apply a quota to namespace, Kubernetes requires you to also specify resource requests and limits for each container. Limits are the upper bound for the amount of resources that a container can consume. Containers that attempt to consume resources that exceed the configured limits will either be throttled or killed, based on the resource type. When resource requests are set lower than limits, each container is guaranteed the requested amount but there may still be some potential for impact across workloads.
+
+Quotas cannot protect against all kinds of resource sharing, such as network traffic. Node isolation (described below) may be a better solution for this problem.
+
+## Data Plane Isolation
+
+Data plane isolation ensures that pods and workloads for different tenants are sufficiently isolated.
+
+### Network isolation
+
+By default, all pods in a Kubernetes cluster are allowed to communicate with each other, and all network traffic is unencrypted. This can lead to security vulnerabilities where traffic is accidentally or maliciously sent to an unintended destination, or is intercepted by a workload on a compromised node.
+
+Pod-to-pod communication can be controlled  using [Network Policies](/docs/concepts/services-networking/network-policies/), which restrict communication between pods using namespace labels or IP address ranges. In a multi-tenant environment where strict network isolation between tenants is required,   starting with a default policy that denies communication between pods is recommended with another rule that allows all pods to query the DNS server for name resolution. With such a default policy in place, you can begin adding more permissive rules that allow for communication within a namespace. This scheme can be further refined as required. Note that this only applies to pods within a single control plane; pods that belong to different virtual control planes cannot talk to each other via Kubernetes networking.
+
+Namespace management tools may simplify the creation of default or common network policies. In addition, some of these tools allow you to enforce a consistent set of namespace labels across your cluster, ensuring that they are a trusted basis for your policies.
+
+{{< warning >}}
+Network policies require a [CNI plugin](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/#cni) that supports the implementation of network policies. Otherwise, NetworkPolicy resources will be ignored.
+{{< /warning >}}
+
+More advanced network isolation may be provided by service meshes, which provide OSI Layer 7 policies based on workload identity, in addition to namespaces. These higher-level policies can make it easier to manage namespace-based multi-tenancy, especially when multiple namespaces are dedicated to a single tenant. They frequently also offer encryption using mutual TLS, protecting your data even in the presence of a compromised node, and work across dedicated or virtual clusters. However, they can be significantly more complex to manage and may not be appropriate for all users.
+
+### Storage isolation
+
+Kubernetes offers several types of volumes that can be used as persistent storage for workloads. For security and data-isolation, [dynamic volume provisioning](/docs/concepts/storage/dynamic-provisioning/) is recommended and volume types that use node resources should be avoided. 
+
+[StorageClasses](/docs/concepts/storage/storage-classes/) allow you to describe custom "classes" of storage offered by your cluster, based on quality-of-service levels, backup policies, or custom policies determined by the cluster administrators. 
+
+Pods can request storage using a [PersistentVolumeClaim](/docs/concepts/storage/persistent-volumes/). A PersistentVolumeClaim is a namespaced resource, which enables isolating portions of the storage system and dedicating it to tenants within the shared Kubernetes cluster. However, it is important to note that a PersistentVolume is a cluster-wide resource and has a lifecycle independent of workloads and namespaces.
+
+For example, you can configure a separate StorageClass for each tenant and use this to strengthen isolation.
+If a StorageClass is shared, you should set a [reclaim policy of `Delete`](/docs/concepts/storage/storage-classes/#reclaim-policy)
+to ensure that a PersistentVolume cannot be reused across different namespaces.
+
+### Sandboxing containers
+
+{{% thirdparty-content %}}
+
+Kubernetes pods are composed of one or more containers that execute on worker nodes. Containers utilize OS-level virtualization and hence offer a weaker isolation boundary than virtual machines that utilize hardware-based virtualization.
+
+In a shared environment, unpatched vulnerabilities in the application and system layers can be exploited by attackers for container breakouts and remote code execution that allow access to host resources. In some applications, like a Content Management System (CMS), customers may be allowed the ability to upload and execute untrusted scripts or code. In either case, mechanisms to further isolate and protect workloads using strong isolation are desirable.
+
+Sandboxing provides a way to isolate workloads running in a shared cluster. It typically involves running each pod in a separate execution environment such as a virtual machine or a userspace kernel. Sandboxing is often recommended when you are running untrusted code, where workloads are assumed to be malicious. Part of the reason this type of isolation is necessary is because containers are processes running on a shared kernel; they mount file systems like /sys and /proc from the underlying host, making them less secure than an application that runs on a virtual machine which has its own kernel. While controls such as seccomp, AppArmor, and SELinux can be used to strengthen the security of containers, it is hard to apply a universal set of rules to all workloads running in a shared cluster. Running workloads in a sandbox environment helps to insulate the host from container escapes, where an attacker exploits a vulnerability to gain access to the host system and all the processes/files running on that host.
+
+Virtual machines and userspace kernels are 2 popular approaches to sandboxing. The following sandboxing implementations are available:
+* [gVisor](https://gvisor.dev/) intercepts syscalls from containers and runs them through a userspace kernel, written in Go, with limited access to the underlying host.
+* [Kata Containers](https://katacontainers.io/) is an OCI compliant runtime that allows you to run containers in a VM. The hardware virtualization available in Kata offers an added layer of security for containers running untrusted code. 
+
+### Node Isolation
+
+Node isolation is another technique that you can use to isolate tenant workloads from each other. With node isolation, a set of nodes is dedicated to running pods from a particular tenant and co-mingling of tenant pods is prohibited. This configuration reduces the noisy tenant issue, as all pods running on a node will belong to a single tenant. The risk of information disclosure is slightly lower with node isolation because an attacker that manages to escape from a container will only have access to the containers and volumes mounted to that node.
+
+Although workloads from different tenants are running on different nodes, it is important to be aware that the kubelet and (unless using virtual control planes) the API service are still shared services. A skilled attacker could use the permissions assigned to the kubelet or other pods running on the node to move laterally within the cluster and gain access to tenant workloads running on other nodes. If this is a major concern, consider implementing compensating controls such as seccomp, AppArmor or SELinux or explore using sandboxed containers or creating separate clusters for each tenant. 
+
+Node isolation is a little easier to reason about from a billing standpoint than sandboxing containers since you can charge back per node rather than per pod. It also has fewer compatibility and performance issues and may be easier to implement than sandboxing containers. For example, nodes for each tenant can be configured with taints so that only pods with the corresponding toleration can run on them. A mutating webhook could then be used to automatically add tolerations and node affinities to pods deployed into tenant namespaces so that they run on a specific set of nodes designated for that tenant.
+
+Node isolation can be implemented using an [pod node selectors](/docs/concepts/scheduling-eviction/assign-pod-node/) or a [Virtual Kubelet](https://github.com/virtual-kubelet).
+
+## Additional Considerations
+
+This section discusses other Kubernetes constructs and patterns that are relevant for multi-tenancy.
+
+### API Priority and Fairness
+
+[API priority and fairness](/docs/concepts/cluster-administration/flow-control/) is a Kubernetes feature that allows you to assign a priority to certain pods running within the cluster. When an application calls the Kubernetes API, the API server evaluates the priority assigned to pod. Calls from pods with higher priority are fulfilled before those with a lower priority. When contention is high, lower priority calls can be queued until the server is less busy or you can reject the requests. 
+
+Using API priority and fairness will not be very common in SaaS environments unless you are allowing customers to run applications that interface with the Kubernetes API, e.g. a controller.
+
+### Quality-of-Service (QoS) {#qos}
+
+When you’re running a SaaS application, you may want the ability to offer different Quality-of-Service (QoS) tiers of service to different tenants. For example, you may have freemium service that comes with fewer performance guarantees and features and a for-fee service tier with specific performance guarantees. Fortunately, there are several Kubernetes constructs that can help you accomplish this within a shared cluster, including network QoS, storage classes, and pod priority and preemption. The idea with each of these is to provide tenants with the quality of service that they paid for. Let’s start by looking at networking QoS. 
+
+Typically, all pods on a node share a network interface. Without network QoS, some pods may consume an unfair share of the available bandwidth at the expense of other pods. The Kubernetes [bandwidth plugin](https://www.cni.dev/plugins/current/meta/bandwidth/) creates an [extended resource](/docs/concepts/configuration/manage-resources-containers/#extended-resources) for networking that allows you to use Kubernetes resources constructs, i.e. requests/limits, to apply rate limits to pods by using Linux tc queues. Be aware that the plugin is considered experimental as per the [Network Plugins](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/#support-traffic-shaping) documentation and should be thoroughly tested before use in production environments. 
+
+For storage QoS, you will likely want to create different storage classes or profiles with different performance characteristics. Each storage profile can be associated with a different tier of service that is optimized for different workloads such IO, redundancy, or throughput. Additional logic might be necessary to allow the tenant to associate the appropriate storage profile with their workload.
+
+Finally, there’s [pod priority and preemption](/docs/concepts/scheduling-eviction/pod-priority-preemption/) where you can assign priority values to pods. When scheduling pods, the scheduler will try evicting pods with lower priority when there are insufficient resources to schedule pods that are assigned a higher priority. If you have a use case where tenants have different service tiers in a shared cluster e.g. free and paid, you may want to give higher priority to certain tiers using this feature.
+
+### DNS
+
+Kubernetes clusters include a Domain Name System (DNS) service to provide translations from names to IP addresses, for all Services and Pods. By default, the Kubernetes DNS service allows lookups across all namespaces in the cluster.
+
+In multi-tenant environments where tenants can access pods and other Kubernetes resources, or where
+stronger isolation is required, it may be necessary to prevent pods from looking up services in other
+Namespaces.
+You can restrict cross-namespace DNS lookups by configuring security rules for the DNS service.
+For example, CoreDNS (the default DNS service for Kubernetes) can leverage Kubernetes metadata
+to restrict queries to Pods and Services within a namespace. For more information, read an
+[example](https://github.com/coredns/policy#kubernetes-metadata-multi-tenancy-policy) of configuring
+this within the CoreDNS documentation.
+
+When a [Virtual Control Plane per tenant](#virtual-control-plane-per-tenant) model is used, a DNS service must be configured per tenant or a multi-tenant DNS service must be used. Here is an example of a [customized version of CoreDNS](https://github.com/kubernetes-sigs/cluster-api-provider-nested/blob/main/virtualcluster/doc/tenant-dns.md) that supports multiple tenants.
+
+### Operators
+
+[Operators](/docs/concepts/extend-kubernetes/operator/) are Kubernetes controllers that manage applications. Operators can simplify the management of multiple instances of an application, like a database service, which makes them a common building block in the multi-consumer (SaaS) multi-tenancy use case.  
+
+Operators used in a multi-tenant environment should follow a stricter set of guidelines. Specifically, the Operator should: 
+* Support creating resources within different tenant namespaces, rather than just in the namespace in which the Operator is deployed.
+* Ensure that the Pods are configured with resource requests and limits, to ensure scheduling and fairness.  
+* Support configuration of Pods for data-plane isolation techniques such as node isolation and sandboxed containers.
+
+## Implementations
+
+{{% thirdparty-content %}}
+
+There are two primary ways to share a Kubernetes cluster for multi-tenancy: using Namespaces (i.e. a Namespace per tenant) or by virtualizing the control plane (i.e. Virtual control plane per tenant).
+
+In both cases, data plane isolation, and management of additional considerations such as API Priority and Fairness, is also recommended. 
+
+Namespace isolation is well-supported by Kubernetes, has a negligible resource cost, and provides mechanisms to allow tenants to interact appropriately, such as by allowing service-to-service communication. However, it can be difficult to configure, and doesn't apply to Kubernetes resources that can't be namespaced, such as Custom Resource Definitions, Storage Classes, and Webhooks.
+
+Control plane virtualization allows for isolation of non-namespaced resources at the cost of somewhat higher resource usage and more difficult cross-tenant sharing. It is a good option when namespace isolation is insufficient but dedicated clusters are undesirable, due to the high cost of maintaining them (especially on-prem) or due to their higher overhead and lack of resource sharing. However, even within a virtualized control plane, you will likely see benefits by using namespaces as well.
+
+The two options are discussed in more detail in the following sections:
+
+### Namespace per tenant
+
+As previously mentioned, you should consider isolating each workload in its own namespace, even if you are using dedicated clusters or virtualized control planes. This ensures that each workload only has access to its own resources, such as Config Maps and Secrets, and allows you to tailor dedicated security policies for each workload. In addition, it is a best practice to give each namespace names that are unique across your entire fleet (i.e., even if they are in separate clusters), as this gives you the flexibility to switch between dedicated and shared clusters in the future, or to use multi-cluster tooling such as service meshes.
+
+Conversely, there are also advantages to assigning namespaces at the tenant level, not just the workload level, since there are often policies that apply to all workloads owned by a single tenant. However, this raises its own problems. Firstly, this makes it difficult or impossible to customize policies to individual workloads, and secondly, it may be challenging to come up with a single level of "tenancy" that should be given a namespace. For example, an organization may have divisions, teams, and subteams - which should be assigned a namespace?
+
+To solve this, Kubernetes provides the [Hierarchical Namespace Controller (HNC)](https://github.com/kubernetes-sigs/hierarchical-namespaces), which allows you to organize your namespaces into hierarchies, and share certain policies and resources between them. It also helps you manage namespace labels, namespace lifecycles, and delegated management, and share resource quotas across related namespaces. These capabilities can be useful in both multi-team and multi-customer scenarios.
+
+Other projects that provide similar capabilities and aid in managing namespaced resources are listed below:
+
+#### Multi-team tenancy
+
+* [Capsule](https://github.com/clastix/capsule)
+* [Kiosk](https://github.com/loft-sh/kiosk)
+
+#### Multi-customer tenancy
+
+* [Kubeplus](https://github.com/cloud-ark/kubeplus)
+
+#### Policy engines
+
+Policy engines provide features to validate and generate tenant configurations:
+
+* [Kyverno](https://kyverno.io/)
+* [OPA/Gatekeeper](https://github.com/open-policy-agent/gatekeeper)
+
+### Virtual control plane per tenant
+
+Another form of control-plane isolation is to use Kubernetes extensions to provide each tenant a virtual control-plane that enables segmentation of cluster-wide API resources. [Data plane isolation](#data-plane-isolation) techniques can be used with this model to securely manage worker nodes across tenants.
+
+The virtual control plane based multi-tenancy model extends namespace-based multi-tenancy by providing each tenant with dedicated control plane components, and hence complete control over cluster-wide resources and add-on services. Worker nodes are shared across all tenants, and are managed by a Kubernetes cluster that is normally inaccessible to tenants. This cluster is often referred to as a _super-cluster_ (or sometimes as a _host-cluster_). Since a tenant’s control-plane is not directly associated with underlying compute resources it is referred to as a _virtual control plane_.
+
+A virtual control plane typically consists of the Kubernetes API server, the controller manager, and the etcd data store. It interacts with the super cluster via a metadata synchronization controller which coordinates changes across tenant control planes and the control plane of the super--cluster. 
+
+By using per-tenant dedicated control planes, most of the isolation problems due to sharing one API server among all tenants are solved. Examples include noisy neighbors in the control plane, uncontrollable blast radius of policy misconfigurations, and conflicts between cluster scope objects such as webhooks and CRDs.  Hence, the virtual control plane model is particularly suitable for cases where each tenant requires access to a Kubernetes API server and expects the full cluster manageability. 
+
+The improved isolation comes at the  cost of running and maintaining an individual virtual control plane per tenant. In addition, per-tenant control planes do not solve isolation problems in the data plane, such as node-level noisy neighbors or security threats. These must still be addressed separately.
+
+The Kubernetes [Cluster API - Nested (CAPN)](https://github.com/kubernetes-sigs/cluster-api-provider-nested/tree/main/virtualcluster) project provides an implementation of virtual control planes. 
+
+#### Other implementations
+* [Kamaji](https://github.com/clastix/kamaji)
+* [vcluster](https://github.com/loft-sh/vcluster)
+
diff --git a/content/en/docs/concepts/security/overview.md b/content/en/docs/concepts/security/overview.md
index ce75653dfd..9373e78ea9 100644
--- a/content/en/docs/concepts/security/overview.md
+++ b/content/en/docs/concepts/security/overview.md
@@ -29,7 +29,7 @@ computing approach to security, which is widely regarded as a best practice for
 software systems.
 {{< /note >}}
 
-{{< figure src="/images/docs/4c.png" title="The 4C's of Cloud Native Security" >}}
+{{< figure src="/images/docs/4c.png" title="The 4C's of Cloud Native Security" class="diagram-large" >}}
 
 Each layer of the Cloud Native security model builds upon the next outermost layer.
 The Code layer benefits from strong base (Cloud, Cluster, Container) security layers.
@@ -60,6 +60,7 @@ Amazon Web Services | https://aws.amazon.com/security/ |
 Google Cloud Platform | https://cloud.google.com/security/ |
 IBM Cloud | https://www.ibm.com/cloud/security |
 Microsoft Azure | https://docs.microsoft.com/en-us/azure/security/azure-security |
+Oracle Cloud Infrastructure | https://www.oracle.com/security/ |
 VMWare VSphere | https://www.vmware.com/security/hardening-guides.html |
 
 {{< /table >}}
@@ -73,10 +74,10 @@ Suggestions for securing your infrastructure in a Kubernetes cluster:
 Area of Concern for Kubernetes Infrastructure | Recommendation |
 --------------------------------------------- | -------------- |
 Network access to API Server (Control plane) | All access to the Kubernetes control plane is not allowed publicly on the internet and is controlled by network access control lists restricted to the set of IP addresses needed to administer the cluster.|
-Network access to Nodes (nodes) | Nodes should be configured to _only_ accept connections (via network access control lists)from the control plane on the specified ports, and accept connections for services in Kubernetes of type NodePort and LoadBalancer. If possible, these nodes should not be exposed on the public internet entirely.
+Network access to Nodes (nodes) | Nodes should be configured to _only_ accept connections (via network access control lists) from the control plane on the specified ports, and accept connections for services in Kubernetes of type NodePort and LoadBalancer. If possible, these nodes should not be exposed on the public internet entirely.
 Kubernetes access to Cloud Provider API | Each cloud provider needs to grant a different set of permissions to the Kubernetes control plane and nodes. It is best to provide the cluster with cloud provider access that follows the [principle of least privilege](https://en.wikipedia.org/wiki/Principle_of_least_privilege) for the resources it needs to administer. The [Kops documentation](https://github.com/kubernetes/kops/blob/master/docs/iam_roles.md#iam-roles) provides information about IAM policies and roles.
 Access to etcd | Access to etcd (the datastore of Kubernetes) should be limited to the control plane only. Depending on your configuration, you should attempt to use etcd over TLS. More information can be found in the [etcd documentation](https://github.com/etcd-io/etcd/tree/master/Documentation).
-etcd Encryption | Wherever possible it's a good practice to encrypt all drives at rest, but since etcd holds the state of the entire cluster (including Secrets) its disk should especially be encrypted at rest.
+etcd Encryption | Wherever possible it's a good practice to encrypt all storage at rest, and since etcd holds the state of the entire cluster (including Secrets) its disk should especially be encrypted at rest.
 
 {{< /table >}}
 
@@ -98,7 +99,7 @@ good information practices, read and follow the advice about
 Depending on the attack surface of your application, you may want to focus on specific
 aspects of security. For example: If you are running a service (Service A) that is critical
 in a chain of other resources and a separate workload (Service B) which is
-vulnerable to a resource exhaustion attack then the risk of compromising Service A
+vulnerable to a resource exhaustion attack, then the risk of compromising Service A
 is high if you do not limit the resources of Service B. The following table lists
 areas of security concerns and recommendations for securing workloads running in Kubernetes:
 
@@ -107,10 +108,10 @@ Area of Concern for Workload Security | Recommendation |
 RBAC Authorization (Access to the Kubernetes API) | https://kubernetes.io/docs/reference/access-authn-authz/rbac/
 Authentication | https://kubernetes.io/docs/concepts/security/controlling-access/
 Application secrets management (and encrypting them in etcd at rest) | https://kubernetes.io/docs/concepts/configuration/secret/ <br> https://kubernetes.io/docs/tasks/administer-cluster/encrypt-data/
-Pod Security Policies | https://kubernetes.io/docs/concepts/policy/pod-security-policy/
+Ensuring that pods meet defined Pod Security Standards | https://kubernetes.io/docs/concepts/security/pod-security-standards/#policy-instantiation
 Quality of Service (and Cluster resource management) | https://kubernetes.io/docs/tasks/configure-pod-container/quality-service-pod/
 Network Policies | https://kubernetes.io/docs/concepts/services-networking/network-policies/
-TLS For Kubernetes Ingress | https://kubernetes.io/docs/concepts/services-networking/ingress/#tls
+TLS for Kubernetes Ingress | https://kubernetes.io/docs/concepts/services-networking/ingress/#tls
 
 ## Container
 
@@ -122,7 +123,7 @@ Area of Concern for Containers | Recommendation |
 Container Vulnerability Scanning and OS Dependency Security | As part of an image build step, you should scan your containers for known vulnerabilities.
 Image Signing and Enforcement | Sign container images to maintain a system of trust for the content of your containers.
 Disallow privileged users | When constructing containers, consult your documentation for how to create users inside of the containers that have the least level of operating system privilege necessary in order to carry out the goal of the container.
-Use container runtime with stronger isolation | Select [container runtime classes](/docs/concepts/containers/runtime-class/) that provider stronger isolation
+Use container runtime with stronger isolation | Select [container runtime classes](/docs/concepts/containers/runtime-class/) that provide stronger isolation
 
 ## Code
 
@@ -136,7 +137,7 @@ are recommendations to protect application code:
 
 Area of Concern for Code | Recommendation |
 -------------------------| -------------- |
-Access over TLS only | If your code needs to communicate by TCP, perform a TLS handshake with the client ahead of time. With the exception of a few cases, encrypt everything in transit. Going one step further, it's a good idea to encrypt network traffic between services. This can be done through a process known as mutual or [mTLS](https://en.wikipedia.org/wiki/Mutual_authentication) which performs a two sided verification of communication between two certificate holding services. |
+Access over TLS only | If your code needs to communicate by TCP, perform a TLS handshake with the client ahead of time. With the exception of a few cases, encrypt everything in transit. Going one step further, it's a good idea to encrypt network traffic between services. This can be done through a process known as mutual TLS authentication or [mTLS](https://en.wikipedia.org/wiki/Mutual_authentication) which performs a two sided verification of communication between two certificate holding services. |
 Limiting port ranges of communication | This recommendation may be a bit self-explanatory, but wherever possible you should only expose the ports on your service that are absolutely essential for communication or metric gathering. |
 3rd Party Dependency Security | It is a good practice to regularly scan your application's third party libraries for known security vulnerabilities. Each programming language has a tool for performing this check automatically. |
 Static Code Analysis | Most languages provide a way for a snippet of code to be analyzed for any potentially unsafe coding practices. Whenever possible you should perform checks using automated tooling that can scan codebases for common security errors. Some of the tools can be found at: https://owasp.org/www-community/Source_Code_Analysis_Tools |
diff --git a/content/en/docs/concepts/security/pod-security-admission.md b/content/en/docs/concepts/security/pod-security-admission.md
index a1c87767c9..60f87c04d9 100644
--- a/content/en/docs/concepts/security/pod-security-admission.md
+++ b/content/en/docs/concepts/security/pod-security-admission.md
@@ -13,15 +13,15 @@ min-kubernetes-server-version: v1.22
 
 <!-- overview -->
 
-{{< feature-state for_k8s_version="v1.22" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
 
 The Kubernetes [Pod Security Standards](/docs/concepts/security/pod-security-standards/) define
 different isolation levels for Pods. These standards let you define how you want to restrict the
 behavior of pods in a clear, consistent fashion.
 
-As an Alpha feature, Kubernetes offers a built-in _Pod Security_ {{< glossary_tooltip
+As a beta feature, Kubernetes offers a built-in _Pod Security_ {{< glossary_tooltip
 text="admission controller" term_id="admission-controller" >}}, the successor
-to [PodSecurityPolicies](/docs/concepts/policy/pod-security-policy/). Pod security restrictions
+to [PodSecurityPolicies](/docs/concepts/security/pod-security-policy/). Pod security restrictions
 are applied at the {{< glossary_tooltip text="namespace" term_id="namespace" >}} level when pods
 are created.
 
@@ -30,17 +30,40 @@ The PodSecurityPolicy API is deprecated and will be
 [removed](/docs/reference/using-api/deprecation-guide/#v1-25) from Kubernetes in v1.25.
 {{< /note >}}
 
-<!-- body -->
 
-## Enabling the Alpha feature
+## {{% heading "prerequisites" %}}
 
-Setting pod security controls by namespace is an alpha feature. You must enable the `PodSecurity`
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/) in order to use it.
+To use this mechanism, your cluster must enforce Pod Security admission.
 
+### Built-in Pod Security admission enforcement
+
+From Kubernetes v1.23, the `PodSecurity` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is a beta feature and is enabled by default.
+This page is part of the documentation for Kubernetes v{{< skew currentVersion >}}.
+If you are running a different version of Kubernetes, consult the documentation for that release.
+
+### Alternative: installing the `PodSecurity` admission webhook {#webhook}
+
+The `PodSecurity` admission logic is also available as a [validating admission webhook](https://git.k8s.io/pod-security-admission/webhook). This implementation is also beta.
+For environments where the built-in `PodSecurity` admission plugin cannot be enabled, you can instead enable that logic via a validating admission webhook.
+
+A pre-built container image, certificate generation scripts, and example manifests
+are available at [https://git.k8s.io/pod-security-admission/webhook](https://git.k8s.io/pod-security-admission/webhook).
+
+To install:
 ```shell
---feature-gates="...,PodSecurity=true"
+git clone https://github.com/kubernetes/pod-security-admission.git
+cd pod-security-admission/webhook
+make certs
+kubectl apply -k .
 ```
 
+{{< note >}}
+The generated certificate is valid for 2 years. Before it expires,
+regenerate the certificate or remove the webhook in favor of the built-in admission plugin.
+{{< /note >}}
+
+<!-- body -->
+
 ## Pod Security levels
 
 Pod Security admission places requirements on a Pod's [Security
@@ -52,7 +75,7 @@ page for an in-depth look at those requirements.
 
 ## Pod Security Admission labels for namespaces
 
-Provided that you have enabled this feature, you can configure namespaces to define the admission
+Once the feature is enabled or the webhook is installed, you can configure namespaces to define the admission
 control mode you want to use for pod security in each namespace. Kubernetes defines a set of 
 {{< glossary_tooltip term_id="label" text="labels" >}} that you can set to define which of the 
 predefined Pod Security Standard levels you want to use for a namespace. The label you select
@@ -63,7 +86,7 @@ takes if a potential violation is detected:
 Mode | Description
 :---------|:------------
 **enforce** | Policy violations will cause the pod to be rejected.
-**audit** | Policy violations will trigger the addition of an audit annotation to the event recorded in the [audit log](/docs/tasks/debug-application-cluster/audit/), but are otherwise allowed.
+**audit** | Policy violations will trigger the addition of an audit annotation to the event recorded in the [audit log](/docs/tasks/debug/debug-cluster/audit/), but are otherwise allowed.
 **warn** | Policy violations will trigger a user-facing warning, but are otherwise allowed.
 {{< /table >}}
 
@@ -79,7 +102,7 @@ For each mode, there are two labels that determine the policy used:
 pod-security.kubernetes.io/<MODE>: <LEVEL>
 
 # Optional: per-mode version label that can be used to pin the policy to the
-# version that shipped with a given Kubernetes minor version (for example v{{< skew latestVersion >}}).
+# version that shipped with a given Kubernetes minor version (for example v{{< skew currentVersion >}}).
 #
 # MODE must be one of `enforce`, `audit`, or `warn`.
 # VERSION must be a valid Kubernetes minor version, or `latest`.
@@ -100,7 +123,7 @@ applied to workload resources, only to the resulting pod objects.
 
 ## Exemptions
 
-You can define _exemptions_ from pod security enforcement in order allow the creation of pods that
+You can define _exemptions_ from pod security enforcement in order to allow the creation of pods that
 would have otherwise been prohibited due to the policy associated with a given namespace.
 Exemptions can be statically configured in the
 [Admission Controller configuration](/docs/tasks/configure-pod-container/enforce-standards-admission-controller/#configure-the-admission-controller).
diff --git a/content/en/docs/concepts/policy/pod-security-policy.md b/content/en/docs/concepts/security/pod-security-policy.md
similarity index 79%
rename from content/en/docs/concepts/policy/pod-security-policy.md
rename to content/en/docs/concepts/security/pod-security-policy.md
index 36172faba5..c296f31cc2 100644
--- a/content/en/docs/concepts/policy/pod-security-policy.md
+++ b/content/en/docs/concepts/security/pod-security-policy.md
@@ -11,8 +11,13 @@ weight: 30
 
 {{< feature-state for_k8s_version="v1.21" state="deprecated" >}}
 
-PodSecurityPolicy is deprecated as of Kubernetes v1.21, and will be removed in v1.25. For more information on the deprecation,
+{{< caution >}}
+PodSecurityPolicy is deprecated as of Kubernetes v1.21, and **will be removed in v1.25**. We recommend migrating to
+[Pod Security Admission](/docs/concepts/security/pod-security-admission/), or a 3rd party admission plugin.
+For a migration guide, see [Migrate from PodSecurityPolicy to the Built-In PodSecurity Admission Controller](/docs/tasks/configure-pod-container/migrate-from-psp/).
+For more information on the deprecation,
 see [PodSecurityPolicy Deprecation: Past, Present, and Future](/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/).
+{{< /caution >}}
 
 Pod Security Policies enable fine-grained authorization of pod creation and
 updates.
@@ -22,7 +27,8 @@ updates.
 ## What is a Pod Security Policy?
 
 A _Pod Security Policy_ is a cluster-level resource that controls security
-sensitive aspects of the pod specification. The [PodSecurityPolicy](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritypolicy-v1beta1-policy) objects
+sensitive aspects of the pod specification. The
+[PodSecurityPolicy](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritypolicy-v1beta1-policy) objects
 define a set of conditions that a pod must run with in order to be accepted into
 the system, as well as defaults for the related fields. They allow an
 administrator to control the following:
@@ -49,10 +55,10 @@ administrator to control the following:
 
 ## Enabling Pod Security Policies
 
-Pod security policy control is implemented as an optional [admission
-controller](/docs/reference/access-authn-authz/admission-controllers/#podsecuritypolicy).
-PodSecurityPolicies are enforced by [enabling the admission
-controller](/docs/reference/access-authn-authz/admission-controllers/#how-do-i-turn-on-an-admission-control-plug-in),
+Pod security policy control is implemented as an optional
+[admission controller](/docs/reference/access-authn-authz/admission-controllers/#podsecuritypolicy).
+PodSecurityPolicies are enforced by
+[enabling the admission controller](/docs/reference/access-authn-authz/admission-controllers/#how-do-i-turn-on-an-admission-control-plug-in),
 but doing so without authorizing any policies **will prevent any pods from being created** in the
 cluster.
 
@@ -64,9 +70,9 @@ controller.
 ## Authorizing Policies
 
 When a PodSecurityPolicy resource is created, it does nothing. In order to use
-it, the requesting user or target pod's [service
-account](/docs/tasks/configure-pod-container/configure-service-account/) must be
-authorized to use the policy, by allowing the `use` verb on the policy.
+it, the requesting user or target pod's
+[service account](/docs/tasks/configure-pod-container/configure-service-account/)
+must be authorized to use the policy, by allowing the `use` verb on the policy.
 
 Most Kubernetes pods are not created directly by users. Instead, they are
 typically created indirectly as part of a
@@ -127,6 +133,7 @@ subjects:
 If a `RoleBinding` (not a `ClusterRoleBinding`) is used, it will only grant
 usage for pods being run in the same namespace as the binding. This can be
 paired with system groups to grant access to all pods run in the namespace:
+
 ```yaml
 # Authorize all service accounts in a namespace:
 - kind: Group
@@ -138,45 +145,47 @@ paired with system groups to grant access to all pods run in the namespace:
   name: system:authenticated
 ```
 
-For more examples of RBAC bindings, see [Role Binding
-Examples](/docs/reference/access-authn-authz/rbac#role-binding-examples).
-For a complete example of authorizing a PodSecurityPolicy, see
-[below](#example).
+For more examples of RBAC bindings, see
+[RoleBinding examples](/docs/reference/access-authn-authz/rbac#role-binding-examples).
+For a complete example of authorizing a PodSecurityPolicy, see [below](#example).
 
 ### Recommended Practice
 
-PodSecurityPolicy is being replaced by a new, simplified `PodSecurity` {{< glossary_tooltip
-text="admission controller" term_id="admission-controller" >}}. For more details on this change, see
-[PodSecurityPolicy Deprecation: Past, Present, and
-Future](/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/). Follow these
-guidelines to simplify migration from PodSecurityPolicy to the new admission controller:
+PodSecurityPolicy is being replaced by a new, simplified `PodSecurity`
+{{< glossary_tooltip text="admission controller" term_id="admission-controller" >}}.
+For more details on this change, see
+[PodSecurityPolicy Deprecation: Past, Present, and Future](/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/).
+Follow these guidelines to simplify migration from PodSecurityPolicy to the
+new admission controller:
 
-1. Limit your PodSecurityPolicies to the policies defined by the [Pod Security Standards](/docs/concepts/security/pod-security-standards):
-    - {{< example file="policy/privileged-psp.yaml" >}}Privileged{{< /example >}}
-    - {{< example file="policy/baseline-psp.yaml" >}}Baseline{{< /example >}}
-    - {{< example file="policy/restricted-psp.yaml" >}}Restricted{{< /example >}}
+1. Limit your PodSecurityPolicies to the policies defined by the
+   [Pod Security Standards](/docs/concepts/security/pod-security-standards):
 
-2. Only bind PSPs to entire namespaces, by using the `system:serviceaccounts:<namespace>` group
+   - {{< example file="policy/privileged-psp.yaml" >}}Privileged{{< /example >}}
+   - {{< example file="policy/baseline-psp.yaml" >}}Baseline{{< /example >}}
+   - {{< example file="policy/restricted-psp.yaml" >}}Restricted{{< /example >}}
+
+1. Only bind PSPs to entire namespaces, by using the `system:serviceaccounts:<namespace>` group
    (where `<namespace>` is the target namespace). For example:
 
-    ```yaml
-    apiVersion: rbac.authorization.k8s.io/v1
-    # This cluster role binding allows all pods in the "development" namespace to use the baseline PSP.
-    kind: ClusterRoleBinding
-    metadata:
-      name: psp-baseline-namespaces
-    roleRef:
-      kind: ClusterRole
-      name: psp-baseline
-      apiGroup: rbac.authorization.k8s.io
-    subjects:
-    - kind: Group
-      name: system:serviceaccounts:development
-      apiGroup: rbac.authorization.k8s.io
-    - kind: Group
-      name: system:serviceaccounts:canary
-      apiGroup: rbac.authorization.k8s.io
-    ```
+   ```yaml
+   apiVersion: rbac.authorization.k8s.io/v1
+   # This cluster role binding allows all pods in the "development" namespace to use the baseline PSP.
+   kind: ClusterRoleBinding
+   metadata:
+     name: psp-baseline-namespaces
+   roleRef:
+     kind: ClusterRole
+     name: psp-baseline
+     apiGroup: rbac.authorization.k8s.io
+   subjects:
+   - kind: Group
+     name: system:serviceaccounts:development
+     apiGroup: rbac.authorization.k8s.io
+   - kind: Group
+     name: system:serviceaccounts:canary
+     apiGroup: rbac.authorization.k8s.io
+   ```
 
 ### Troubleshooting
 
@@ -205,6 +214,9 @@ controller selects policies according to the following criteria:
 2. If the pod must be defaulted or mutated, the first PodSecurityPolicy
    (ordered by name) to allow the pod is selected.
 
+When a Pod is validated against a PodSecurityPolicy, [a `kubernetes.io/psp` annotation](/docs/reference/labels-annotations-taints/#kubernetes-io-psp)
+is added to the Pod, with the name of the PodSecurityPolicy as the annotation value.
+
 {{< note >}}
 During update operations (during which mutations to pod specs are disallowed)
 only non-mutating PodSecurityPolicies are used to validate the pod.
@@ -212,8 +224,8 @@ only non-mutating PodSecurityPolicies are used to validate the pod.
 
 ## Example
 
-_This example assumes you have a running cluster with the PodSecurityPolicy
-admission controller enabled and you have cluster admin privileges._
+This example assumes you have a running cluster with the PodSecurityPolicy
+admission controller enabled and you have cluster admin privileges.
 
 ### Set up
 
@@ -236,8 +248,7 @@ alias kubectl-user='kubectl --as=system:serviceaccount:psp-example:fake-user -n
 
 ### Create a policy and a pod
 
-Define the example PodSecurityPolicy object in a file. This is a policy that
-prevents the creation of privileged pods.
+This is a policy that prevents the creation of privileged pods.
 The name of a PodSecurityPolicy object must be a valid
 [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 
@@ -246,7 +257,7 @@ The name of a PodSecurityPolicy object must be a valid
 And create it with kubectl:
 
 ```shell
-kubectl-admin create -f example-psp.yaml
+kubectl-admin create -f https://k8s.io/examples/policy/example-psp.yaml
 ```
 
 Now, as the unprivileged user, try to create a simple pod:
@@ -275,6 +286,11 @@ pod's service account nor `fake-user` have permission to use the new policy:
 
 ```shell
 kubectl-user auth can-i use podsecuritypolicy/example
+```
+
+The output is similar to this:
+
+```
 no
 ```
 
@@ -291,14 +307,27 @@ kubectl-admin create role psp:unprivileged \
     --verb=use \
     --resource=podsecuritypolicy \
     --resource-name=example
-role "psp:unprivileged" created
+```
 
+```
+role "psp:unprivileged" created
+```
+
+```shell
 kubectl-admin create rolebinding fake-user:psp:unprivileged \
     --role=psp:unprivileged \
     --serviceaccount=psp-example:fake-user
-rolebinding "fake-user:psp:unprivileged" created
+```
 
+```
+rolebinding "fake-user:psp:unprivileged" created
+```
+
+```shell
 kubectl-user auth can-i use podsecuritypolicy/example
+```
+
+```
 yes
 ```
 
@@ -323,7 +352,20 @@ The output is similar to this
 pod "pause" created
 ```
 
-It works as expected! But any attempts to create a privileged pod should still
+It works as expected! You can verify that the pod was validated against the
+newly created PodSecurityPolicy:
+
+```shell
+kubectl-user get pod pause -o yaml | grep kubernetes.io/psp
+```
+
+The output is similar to this
+
+```
+kubernetes.io/psp: example
+```
+
+But any attempts to create a privileged pod should still
 be denied:
 
 ```shell
@@ -359,12 +401,24 @@ Let's try that again, slightly differently:
 
 ```shell
 kubectl-user create deployment pause --image=k8s.gcr.io/pause
+```
+
+```none
 deployment "pause" created
-
+```
+```shell
 kubectl-user get pods
-No resources found.
+```
 
+```
+No resources found.
+```
+
+```shell
 kubectl-user get events | head -n 2
+```
+
+```
 LASTSEEN   FIRSTSEEN   COUNT     NAME              KIND         SUBOBJECT                TYPE      REASON                  SOURCE                                  MESSAGE
 1m         2m          15        pause-7774d79b5   ReplicaSet                            Warning   FailedCreate            replicaset-controller                   Error creating: pods "pause-7774d79b5-" is forbidden: no providers available to validate pod request
 ```
@@ -385,6 +439,9 @@ is `default`:
 kubectl-admin create rolebinding default:psp:unprivileged \
     --role=psp:unprivileged \
     --serviceaccount=psp-example:default
+```
+
+```none
 rolebinding "default:psp:unprivileged" created
 ```
 
@@ -393,6 +450,9 @@ eventually succeed in creating the pod:
 
 ```shell
 kubectl-user get pods --watch
+```
+
+```none
 NAME                    READY     STATUS    RESTARTS   AGE
 pause-7774d79b5-qrgcb   0/1       Pending   0         1s
 pause-7774d79b5-qrgcb   0/1       Pending   0         1s
@@ -406,6 +466,9 @@ Delete the namespace to clean up most of the example resources:
 
 ```shell
 kubectl-admin delete ns psp-example
+```
+
+```
 namespace "psp-example" deleted
 ```
 
@@ -414,6 +477,9 @@ up separately:
 
 ```shell
 kubectl-admin delete psp example
+```
+
+```
 podsecuritypolicy "example" deleted
 ```
 
@@ -430,7 +496,8 @@ several security mechanisms.
 
 {{< codenew file="policy/restricted-psp.yaml" >}}
 
-See [Pod Security Standards](/docs/concepts/security/pod-security-standards/#policy-instantiation) for more examples.
+See [Pod Security Standards](/docs/concepts/security/pod-security-standards/#policy-instantiation)
+for more examples.
 
 ## Policy Reference
 
@@ -466,17 +533,17 @@ and `max`(inclusive). Defaults to no allowed host ports.
 **Volumes** - Provides a list of allowed volume types. The allowable values
 correspond to the volume sources that are defined when creating a volume. For
 the complete list of volume types, see [Types of
-Volumes](/docs/concepts/storage/volumes/#types-of-volumes). Additionally, `*`
-may be used to allow all volume types.
+Volumes](/docs/concepts/storage/volumes/#types-of-volumes). Additionally,
+`*` may be used to allow all volume types.
 
 The **recommended minimum set** of allowed volumes for new PSPs are:
 
-- configMap
-- downwardAPI
-- emptyDir
-- persistentVolumeClaim
-- secret
-- projected
+- `configMap`
+- `downwardAPI`
+- `emptyDir`
+- `persistentVolumeClaim`
+- `secret`
+- `projected`
 
 {{< warning >}}
 PodSecurityPolicy does not limit the types of `PersistentVolume` objects that
@@ -488,10 +555,10 @@ should be granted permission to create `PersistentVolume` objects.
 **FSGroup** - Controls the supplemental group applied to some volumes.
 
 - *MustRunAs* - Requires at least one `range` to be specified. Uses the
-minimum value of the first range as the default. Validates against all ranges.
+  minimum value of the first range as the default. Validates against all ranges.
 - *MayRunAs* - Requires at least one `range` to be specified. Allows
-`FSGroups` to be left unset without providing a default. Validates against
-all ranges if `FSGroups` is set.
+  `FSGroups` to be left unset without providing a default. Validates against
+  all ranges if `FSGroups` is set.
 - *RunAsAny* - No default provided. Allows any `fsGroup` ID to be specified.
 
 **AllowedHostPaths** - This specifies a list of host paths that are allowed
@@ -510,7 +577,8 @@ For example:
       readOnly: true # only allow read-only mounts
 ```
 
-{{< warning >}}There are many ways a container with unrestricted access to the host
+{{< warning >}}
+There are many ways a container with unrestricted access to the host
 filesystem can escalate privileges, including reading data from other
 containers, and abusing the credentials of system services, such as Kubelet.
 
@@ -551,33 +619,33 @@ spec:
 **RunAsUser** - Controls which user ID the containers are run with.
 
 - *MustRunAs* - Requires at least one `range` to be specified. Uses the
-minimum value of the first range as the default. Validates against all ranges.
+  minimum value of the first range as the default. Validates against all ranges.
 - *MustRunAsNonRoot* - Requires that the pod be submitted with a non-zero
-`runAsUser` or have the `USER` directive defined (using a numeric UID) in the
-image. Pods which have specified neither `runAsNonRoot` nor `runAsUser` settings
-will be mutated to set `runAsNonRoot=true`, thus requiring a defined non-zero 
-numeric `USER` directive in the container. No default provided. Setting 
-`allowPrivilegeEscalation=false` is strongly recommended with this strategy.
+  `runAsUser` or have the `USER` directive defined (using a numeric UID) in the
+  image. Pods which have specified neither `runAsNonRoot` nor `runAsUser` settings
+  will be mutated to set `runAsNonRoot=true`, thus requiring a defined non-zero 
+  numeric `USER` directive in the container. No default provided. Setting 
+  `allowPrivilegeEscalation=false` is strongly recommended with this strategy.
 - *RunAsAny* - No default provided. Allows any `runAsUser` to be specified.
 
 **RunAsGroup** - Controls which primary group ID the containers are run with.
 
 - *MustRunAs* - Requires at least one `range` to be specified. Uses the
-minimum value of the first range as the default. Validates against all ranges.
+  minimum value of the first range as the default. Validates against all ranges.
 - *MayRunAs* - Does not require that RunAsGroup be specified. However, when RunAsGroup
-is specified, they have to fall in the defined range.
+  is specified, they have to fall in the defined range.
 - *RunAsAny* - No default provided. Allows any `runAsGroup` to be specified.
 
 
 **SupplementalGroups** - Controls which group IDs containers add.
 
 - *MustRunAs* - Requires at least one `range` to be specified. Uses the
-minimum value of the first range as the default. Validates against all ranges.
+  minimum value of the first range as the default. Validates against all ranges.
 - *MayRunAs* - Requires at least one `range` to be specified. Allows
-`supplementalGroups` to be left unset without providing a default.
-Validates against all ranges if `supplementalGroups` is set.
+  `supplementalGroups` to be left unset without providing a default.
+  Validates against all ranges if `supplementalGroups` is set.
 - *RunAsAny* - No default provided. Allows any `supplementalGroups` to be
-specified.
+  specified.
 
 ### Privilege Escalation
 
@@ -622,9 +690,8 @@ added. Capabilities listed in `RequiredDropCapabilities` must not be included in
 `AllowedCapabilities` or `DefaultAddCapabilities`.
 
 **DefaultAddCapabilities** - The capabilities which are added to containers by
-default, in addition to the runtime defaults. See the [Docker
-documentation](https://docs.docker.com/engine/reference/run/#runtime-privilege-and-linux-capabilities)
-for the default list of capabilities when using the Docker runtime.
+default, in addition to the runtime defaults. See the
+documentation for your container runtime for information on working with Linux capabilities.
 
 ### SELinux
 
@@ -650,16 +717,17 @@ denoted as the string `Unmasked`.
 
 ### AppArmor
 
-Controlled via annotations on the PodSecurityPolicy. Refer to the [AppArmor
-documentation](/docs/tutorials/clusters/apparmor/#podsecuritypolicy-annotations).
+Controlled via annotations on the PodSecurityPolicy. Refer to the
+[AppArmor documentation](/docs/tutorials/security/apparmor/#podsecuritypolicy-annotations).
 
 ### Seccomp
 
 As of Kubernetes v1.19, you can use the `seccompProfile` field in the
-`securityContext` of Pods or containers to [control use of seccomp
-profiles](/docs/tutorials/clusters/seccomp). In prior versions, seccomp was
-controlled by adding annotations to a Pod. The same PodSecurityPolicies can be
-used with either version to enforce how these fields or annotations are applied.
+`securityContext` of Pods or containers to
+[control use of seccomp profiles](/docs/tutorials/security/seccomp/).
+In prior versions, seccomp was controlled by adding annotations to a Pod. The
+same PodSecurityPolicies can be used with either version to enforce how these
+fields or annotations are applied.
 
 **seccomp.security.alpha.kubernetes.io/defaultProfileName** - Annotation that
 specifies the default seccomp profile to apply to containers. Possible values
@@ -676,10 +744,10 @@ are:
   flag is not defined, the default path will be used, which is
   `<root-dir>/seccomp` where `<root-dir>` is specified by the `--root-dir` flag.
 
-{{< note >}}
+  {{< note >}}
   The `--seccomp-profile-root` flag is deprecated since Kubernetes
   v1.19. Users are encouraged to use the default path.
-{{< /note >}}
+  {{< /note >}}
 
 **seccomp.security.alpha.kubernetes.io/allowedProfileNames** - Annotation that
 specifies which values are allowed for the pod seccomp annotations. Specified as
@@ -691,18 +759,22 @@ default cannot be changed.
 
 By default, all safe sysctls are allowed. 
 
-- `forbiddenSysctls` - excludes specific sysctls. You can forbid a combination of safe and unsafe sysctls in the list. To forbid setting any sysctls, use `*` on its own.
-- `allowedUnsafeSysctls` - allows specific sysctls that had been disallowed by the default list, so long as these are not listed in `forbiddenSysctls`.
+- `forbiddenSysctls` - excludes specific sysctls. You can forbid a combination
+  of safe and unsafe sysctls in the list. To forbid setting any sysctls, use
+  `*` on its own.
+- `allowedUnsafeSysctls` - allows specific sysctls that had been disallowed by
+  the default list, so long as these are not listed in `forbiddenSysctls`.
 
-Refer to the [Sysctl documentation](
-/docs/tasks/administer-cluster/sysctl-cluster/#podsecuritypolicy).
+Refer to the [Sysctl documentation](/docs/tasks/administer-cluster/sysctl-cluster/#podsecuritypolicy).
 
 ## {{% heading "whatsnext" %}}
 
-- See [PodSecurityPolicy Deprecation: Past, Present, and
-  Future](/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/) to learn about
-  the future of pod security policy.
+- See [PodSecurityPolicy Deprecation: Past, Present, and Future](/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/)
+  to learn about the future of pod security policy.
 
-- See [Pod Security Standards](/docs/concepts/security/pod-security-standards/) for policy recommendations.
+- See [Pod Security Standards](/docs/concepts/security/pod-security-standards/)
+  for policy recommendations.
+
+- Refer to [PodSecurityPolicy reference](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritypolicy-v1beta1-policy)
+  for the API details.
 
-- Refer to [Pod Security Policy Reference](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritypolicy-v1beta1-policy) for the api details.
diff --git a/content/en/docs/concepts/security/pod-security-standards.md b/content/en/docs/concepts/security/pod-security-standards.md
index f3b43344bf..d60f3b0ae1 100644
--- a/content/en/docs/concepts/security/pod-security-standards.md
+++ b/content/en/docs/concepts/security/pod-security-standards.md
@@ -29,10 +29,9 @@ This guide outlines the requirements of each policy.
 **The _Privileged_ policy is purposely-open, and entirely unrestricted.** This type of policy is
 typically aimed at system- and infrastructure-level workloads managed by privileged, trusted users.
 
-The Privileged policy is defined by an absence of restrictions. For allow-by-default enforcement
-mechanisms (such as gatekeeper), the Privileged policy may be an absence of applied constraints
-rather than an instantiated profile. In contrast, for a deny-by-default mechanism (such as Pod
-Security Policy) the Privileged policy should enable all controls (disable all restrictions).
+The Privileged policy is defined by an absence of restrictions. Allow-by-default
+mechanisms (such as gatekeeper) may be Privileged by default. In contrast, for a deny-by-default mechanism (such as Pod
+Security Policy) the Privileged policy should disable all restrictions.
 
 ### Baseline
 
@@ -52,13 +51,13 @@ fail validation.
 	<caption style="display:none">Baseline policy specification</caption>
 	<tbody>
 		<tr>
-			<td><strong>Control</strong></td>
-			<td><strong>Policy</strong></td>
+			<th>Control</th>
+			<th>Policy</th>
 		</tr>
 		<tr>
 			<td style="white-space: nowrap">HostProcess</td>
 			<td>
-				<p>Windows pods offer the ability to run <a href="/docs/tasks/configure-pod-container/create-hostprocess-pod">HostProcess containers</a> which enables privileged access to the Windows node. Privileged access to the host is disallowed in the baseline policy. HostProcess pods are an <strong>alpha</strong> feature as of Kubernetes <strong>v1.22</strong>.</p>
+				<p>Windows pods offer the ability to run <a href="/docs/tasks/configure-pod-container/create-hostprocess-pod">HostProcess containers</a> which enables privileged access to the Windows node. Privileged access to the host is disallowed in the baseline policy. {{< feature-state for_k8s_version="v1.23" state="beta" >}}</p>
 				<p><strong>Restricted Fields</strong></p>
 				<ul>
 					<li><code>spec.securityContext.windowsOptions.hostProcess</code></li>
@@ -305,34 +304,22 @@ fail validation.
 		<tr>
 			<td style="white-space: nowrap">Volume Types</td>
 			<td>
-				<p>In addition to restricting HostPath volumes, the restricted policy limits usage of non-core volume types to those defined through PersistentVolumes.</p>
+				<p>The restricted policy only permits the following volume types.</p>
 				<p><strong>Restricted Fields</strong></p>
 				<ul>
-					<li><code>spec.volumes[*].hostPath</code></li>
-					<li><code>spec.volumes[*].gcePersistentDisk</code></li>
-					<li><code>spec.volumes[*].awsElasticBlockStore</code></li>
-					<li><code>spec.volumes[*].gitRepo</code></li>
-					<li><code>spec.volumes[*].nfs</code></li>
-					<li><code>spec.volumes[*].iscsi</code></li>
-					<li><code>spec.volumes[*].glusterfs</code></li>
-					<li><code>spec.volumes[*].rbd</code></li>
-					<li><code>spec.volumes[*].flexVolume</code></li>
-					<li><code>spec.volumes[*].cinder</code></li>
-					<li><code>spec.volumes[*].cephfs</code></li>
-					<li><code>spec.volumes[*].flocker</code></li>
-					<li><code>spec.volumes[*].fc</code></li>
-					<li><code>spec.volumes[*].azureFile</code></li>
-					<li><code>spec.volumes[*].vsphereVolume</code></li>
-					<li><code>spec.volumes[*].quobyte</code></li>
-					<li><code>spec.volumes[*].azureDisk</code></li>
-					<li><code>spec.volumes[*].portworxVolume</code></li>
-					<li><code>spec.volumes[*].scaleIO</code></li>
-					<li><code>spec.volumes[*].storageos</code></li>
-					<li><code>spec.volumes[*].photonPersistentDisk</code></li>
+					<li><code>spec.volumes[*]</code></li>
 				</ul>
 				<p><strong>Allowed Values</strong></p>
+				Every item in the <code>spec.volumes[*]</code> list must set one of the following fields to a non-null value:
 				<ul>
-					<li>Undefined/nil</li>
+					<li><code>spec.volumes[*].configMap</code></li>
+					<li><code>spec.volumes[*].csi</code></li>
+					<li><code>spec.volumes[*].downwardAPI</code></li>
+					<li><code>spec.volumes[*].emptyDir</code></li>
+					<li><code>spec.volumes[*].ephemeral</code></li>
+					<li><code>spec.volumes[*].persistentVolumeClaim</code></li>
+					<li><code>spec.volumes[*].projected</code></li>
+					<li><code>spec.volumes[*].secret</code></li>
 				</ul>
 			</td>
 		</tr>
@@ -374,22 +361,20 @@ fail validation.
 			</td>
 		</tr>
 		<tr>
-			<td style="white-space: nowrap">Non-root groups <em>(optional)</em></td>
+			<td style="white-space: nowrap">Running as Non-root user (v1.23+)</td>
 			<td>
-				<p>Containers should be forbidden from running with a root primary or supplementary GID.</p>
+				<p>Containers must not set <tt>runAsUser</tt> to 0</p>
 				<p><strong>Restricted Fields</strong></p>
 				<ul>
-					<li><code>spec.securityContext.runAsGroup</code></li>
-					<li><code>spec.securityContext.supplementalGroups[*]</code></li>
-					<li><code>spec.securityContext.fsGroup</code></li>
-					<li><code>spec.containers[*].securityContext.runAsGroup</code></li>
-					<li><code>spec.initContainers[*].securityContext.runAsGroup</code></li>
-					<li><code>spec.ephemeralContainers[*].securityContext.runAsGroup</code></li>
+					<li><code>spec.securityContext.runAsUser</code></li>
+					<li><code>spec.containers[*].securityContext.runAsUser</code></li>
+					<li><code>spec.initContainers[*].securityContext.runAsUser</code></li>
+					<li><code>spec.ephemeralContainers[*].securityContext.runAsUser</code></li>
 				</ul>
 				<p><strong>Allowed Values</strong></p>
 				<ul>
-					<li>Undefined/nil (except for <code>*.runAsGroup</code>)</li>
-					<li>Non-zero</li>
+					<li>any non-zero value</li>
+					<li><code>undefined/null</code></li>
 				</ul>
 			</td>
 		</tr>
@@ -466,12 +451,22 @@ of individual policies are not defined here.
 - {{< example file="security/podsecurity-baseline.yaml" >}}Baseline namespace{{< /example >}}
 - {{< example file="security/podsecurity-restricted.yaml" >}}Restricted namespace{{< /example >}}
 
-[**PodSecurityPolicy**](/docs/concepts/profile/pod-security-profile/) (Deprecated)
+[**PodSecurityPolicy**](/docs/concepts/security/pod-security-policy/) (Deprecated)
 
 - {{< example file="policy/privileged-psp.yaml" >}}Privileged{{< /example >}}
 - {{< example file="policy/baseline-psp.yaml" >}}Baseline{{< /example >}}
 - {{< example file="policy/restricted-psp.yaml" >}}Restricted{{< /example >}}
 
+### Alternatives
+
+{{% thirdparty-content %}}
+
+Other alternatives for enforcing policies are being developed in the Kubernetes ecosystem, such as: 
+
+- [Kubewarden](https://github.com/kubewarden)
+- [Kyverno](https://kyverno.io/policies/pod-security/)
+- [OPA Gatekeeper](https://github.com/open-policy-agent/gatekeeper)
+
 ## FAQ
 
 ### Why isn't there a profile between privileged and baseline?
@@ -492,23 +487,15 @@ in the Pod manifest, and represent parameters to the container runtime.
 
 Security profiles are control plane mechanisms to enforce specific settings in the Security Context,
 as well as other related parameters outside the Security Context. As of July 2021, 
-[Pod Security Policies](/docs/concepts/profile/pod-security-profile/) are deprecated in favor of the
+[Pod Security Policies](/docs/concepts/security/pod-security-policy/) are deprecated in favor of the
 built-in [Pod Security Admission Controller](/docs/concepts/security/pod-security-admission/). 
 
-{{% thirdparty-content %}}
-
-Other alternatives for enforcing security profiles are being developed in the Kubernetes
-ecosystem, such as: 
-- [OPA Gatekeeper](https://github.com/open-policy-agent/gatekeeper).
-- [Kubewarden](https://github.com/kubewarden).
-- [Kyverno](https://kyverno.io/policies/pod-security/).
-
 ### What profiles should I apply to my Windows Pods?
 
 Windows in Kubernetes has some limitations and differentiators from standard Linux-based
-workloads. Specifically, many of the Pod SecurityContext fields [have no effect on
-Windows](/docs/setup/production-environment/windows/intro-windows-in-kubernetes/#v1-podsecuritycontext). As
-such, no standardized Pod Security profiles currently exist.
+workloads. Specifically, many of the Pod SecurityContext fields
+[have no effect on Windows](/docs/concepts/windows/intro/#compatibility-v1-pod-spec-containers-securitycontext).
+As such, no standardized Pod Security profiles currently exist.
 
 If you apply the restricted profile for a Windows pod, this **may** have an impact on the pod
 at runtime. The restricted profile requires enforcing Linux-specific restrictions (such as seccomp
@@ -517,7 +504,9 @@ these Linux-specific values, then the Windows pod should still work normally wit
 profile. However, the lack of enforcement means that there is no additional restriction, for Pods
 that use Windows containers, compared to the baseline profile.
 
-The use of the HostProcess flag to create a HostProcess pod should only be done in alignment with the privileged policy. Creation of a Windows HostProcess pod is blocked under the baseline and restricted policies, so any HostProcess pod should be considered privileged.
+The use of the HostProcess flag to create a HostProcess pod should only be done in alignment with the privileged policy.
+Creation of a Windows HostProcess pod is blocked under the baseline and restricted policies,
+so any HostProcess pod should be considered privileged.
 
 ### What about sandboxed Pods?
 
@@ -531,3 +520,4 @@ kernel. This allows for workloads requiring heightened permissions to still be i
 
 Additionally, the protection of sandboxed workloads is highly dependent on the method of
 sandboxing. As such, no single recommended profile is recommended for all sandboxed workloads.
+
diff --git a/content/en/docs/concepts/security/rbac-good-practices.md b/content/en/docs/concepts/security/rbac-good-practices.md
new file mode 100644
index 0000000000..fe858bba72
--- /dev/null
+++ b/content/en/docs/concepts/security/rbac-good-practices.md
@@ -0,0 +1,189 @@
+---
+reviewers:
+title: Role Based Access Control Good Practices
+description: >
+  Principles and practices for good RBAC design for cluster operators.
+content_type: concept
+weight: 60
+---
+
+<!-- overview -->
+
+Kubernetes {{< glossary_tooltip text="RBAC" term_id="rbac" >}} is a key security control 
+to ensure that cluster users and workloads have only the access to resources required to 
+execute their roles. It is important to ensure that, when designing permissions for cluster
+users, the cluster administrator understands the areas where privilge escalation could occur, 
+to reduce the risk of excessive access leading to security incidents.
+
+The good practices laid out here should be read in conjunction with the general
+[RBAC documentation](/docs/reference/access-authn-authz/rbac/#restrictions-on-role-creation-or-update).
+
+<!-- body -->
+
+## General good practice
+
+### Least privilege
+
+Ideally, minimal RBAC rights should be assigned to users and service accounts. Only permissions 
+explicitly required for their operation should be used. While each cluster will be different, 
+some general rules that can be applied are :
+
+ - Assign permissions at the namespace level where possible. Use RoleBindings as opposed to 
+   ClusterRoleBindings to give users rights only within a specific namespace.
+ - Avoid providing wildcard permissions when possible, especially to all resources.
+   As Kubernetes is an extensible system, providing wildcard access gives rights
+   not just to all object types that currently exist in the cluster, but also to all future object types
+   which are created in the future.
+ - Administrators should not use `cluster-admin` accounts except where specifically needed. 
+   Providing a low privileged account with
+   [impersonation rights](/docs/reference/access-authn-authz/authentication/#user-impersonation)
+   can avoid accidental modification of cluster resources.
+ - Avoid adding users to the `system:masters` group. Any user who is a member of this group 
+   bypasses all RBAC rights checks and will always have unrestricted superuser access, which cannot be 
+   revoked by removing RoleBindings or ClusterRoleBindings. As an aside, if a cluster is 
+   using an authorization webhook, membership of this group also bypasses that webhook (requests 
+   from users who are members of that group are never sent to the webhook)
+
+### Minimize distribution of privileged tokens
+
+Ideally, pods shouldn't be assigned service accounts that have been granted powerful permissions
+(for example, any of the rights listed under [privilege escalation risks](#privilege-escalation-risks)). 
+In cases where a workload requires powerful permissions, consider the following practices:
+
+ - Limit the number of nodes running powerful pods. Ensure that any DaemonSets you run
+  are necessary and are run with least privilege to limit the blast radius of container escapes.
+ - Avoid running powerful pods alongside untrusted or publicly-exposed ones. Consider using 
+   [Taints and Toleration](/docs/concepts/scheduling-eviction/taint-and-toleration/),
+   [NodeAffinity](/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity), or
+   [PodAntiAffinity](/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity)
+   to ensure pods don't run alongside untrusted or less-trusted Pods. Pay especial attention to
+   situations where less-trustworthy Pods are not meeting the **Restricted** Pod Security Standard.
+
+### Hardening
+
+Kubernetes defaults to providing access which may not be required in every cluster. Reviewing 
+the RBAC rights provided by default can provide opportunities for security hardening.
+In general, changes should not be made to rights provided to `system:` accounts some options 
+to harden cluster rights exist:
+
+- Review bindings for the `system:unauthenticated` group and remove them where possible, as this gives 
+  access to anyone who can contact the API server at a network level.
+- Avoid the default auto-mounting of service account tokens by setting
+  `automountServiceAccountToken: false`. For more details, see
+  [using default service account token](/docs/tasks/configure-pod-container/configure-service-account/#use-the-default-service-account-to-access-the-api-server).
+  Setting this value for a Pod will overwrite the service account setting, workloads
+  which require service account tokens can still mount them.
+
+### Periodic review
+
+It is vital to periodically review the Kubernetes RBAC settings for redundant entries and 
+possible privilege escalations.
+If an attacker is able to create a user account with the same name as a deleted user,
+they can automatically inherit all the rights of the deleted user, especially the
+rights assigned to that user.
+
+## Kubernetes RBAC - privilege escalation risks {#privilege-escalation-risks}
+
+Within Kubernetes RBAC there are a number of privileges which, if granted, can allow a user or a service account
+to escalate their privileges in the cluster or affect systems outside the cluster.
+
+This section is intended to provide visibility of the areas where cluster operators 
+should take care, to ensure that they do not inadvertently allow for more access to clusters than intended.
+
+### Listing secrets
+
+It is generally clear that allowing `get` access on Secrets will allow a user to read their contents.
+It is also important to note that `list` and `watch` access also effectively allow for users to reveal the Secret contents.
+For example, when a List response is returned (for example, via `kubectl get secrets -A -o yaml`), the response
+includes the contents of all Secrets.
+
+### Workload creation
+
+Users who are able to create workloads (either Pods, or
+[workload resources](/docs/concepts/workloads/controllers/) that manage Pods) will
+be able to gain access to the underlying node unless restrictions based on the Kubernetes
+[Pod Security Standards](/docs/concepts/security/pod-security-standards/) are in place.
+
+Users who can run privileged Pods can use that access to gain node access and potentially to
+further elevate their privileges. Where you do not fully trust a user or other principal
+with the ability to create suitably secure and isolated Pods, you should enforce either the
+**Baseline** or **Restricted** Pod Security Standard.
+You can use [Pod Security admission](/docs/concepts/security/pod-security-admission/)
+or other (third party) mechanisms to implement that enforcement.
+
+You can also use the deprecated [PodSecurityPolicy](/docs/concepts/security/pod-security-policy/) mechanism
+to restrict users' abilities to create privileged Pods (N.B. PodSecurityPolicy is scheduled for removal
+in version 1.25).
+
+Creating a workload in a namespace also grants indirect access to Secrets in that namespace. 
+Creating a pod in kube-system or a similarly privileged namespace can grant a user access to 
+Secrets they would not have through RBAC directly.
+
+### Persistent volume creation
+
+As noted in the [PodSecurityPolicy](/docs/concepts/security/pod-security-policy/#volumes-and-file-systems)
+documentation, access to create PersistentVolumes can allow for escalation of access to the underlying host.
+Where access to persistent storage is required trusted administrators should create 
+PersistentVolumes, and constrained users should use PersistentVolumeClaims to access that storage.
+
+### Access to `proxy` subresource of Nodes
+
+Users with access to the proxy sub-resource of node objects have rights to the Kubelet API, 
+which allows for command execution on every pod on the node(s) to which they have rights. 
+This access bypasses audit logging and admission control, so care should be taken before 
+granting rights to this resource.
+
+### Escalate verb
+
+Generally, the RBAC system prevents users from creating clusterroles with more rights than the user possesses. 
+The exception to this is the `escalate` verb. As noted in the [RBAC documentation](/docs/reference/access-authn-authz/rbac/#restrictions-on-role-creation-or-update),
+users with this right can effectively escalate their privileges.
+
+### Bind verb
+
+Similar to the `escalate` verb, granting users this right allows for the bypass of Kubernetes 
+in-built protections against privilege escalation, allowing users to create bindings to 
+roles with rights they do not already have.
+
+### Impersonate verb
+
+This verb allows users to impersonate and gain the rights of other users in the cluster. 
+Care should be taken when granting it, to ensure that excessive permissions cannot be gained 
+via one of the impersonated accounts.
+
+### CSRs and certificate issuing
+
+The CSR API allows for users with `create` rights to CSRs and `update` rights on `certificatesigningrequests/approval` 
+where the signer is `kubernetes.io/kube-apiserver-client` to create new client certificates 
+which allow users to authenticate to the cluster. Those client certificates can have arbitrary 
+names including duplicates of Kubernetes system components. This will effectively allow for privilege escalation.
+
+### Token request
+
+Users with `create` rights on `serviceaccounts/token` can create TokenRequests to issue 
+tokens for existing service accounts. 
+
+### Control admission webhooks
+
+Users with control over `validatingwebhookconfigurations` or `mutatingwebhookconfigurations` 
+can control webhooks that can read any object admitted to the cluster, and in the case of 
+mutating webhooks, also mutate admitted objects.
+
+
+## Kubernetes RBAC - denial of service risks {#denial-of-service-risks}
+
+### Object creation denial-of-service {#object-creation-dos}
+Users who have rights to create objects in a cluster may be able to create sufficient large 
+objects to create a denial of service condition either based on the size or number of objects, as discussed in
+[etcd used by Kubernetes is vulnerable to OOM attack](https://github.com/kubernetes/kubernetes/issues/107325). This may be
+specifically relevant in multi-tenant clusters if semi-trusted or untrusted users 
+are allowed limited access to a system.
+
+One option for mitigation of this issue would be to use
+[resource quotas](/docs/concepts/policy/resource-quotas/#object-count-quota)
+to limit the quantity of objects which can be created.
+
+## {{% heading "whatsnext" %}}
+
+* To learn more about RBAC, see the [RBAC documentation](/docs/reference/access-authn-authz/rbac/).
+
diff --git a/content/en/docs/concepts/security/windows-security.md b/content/en/docs/concepts/security/windows-security.md
new file mode 100644
index 0000000000..c6523e3a43
--- /dev/null
+++ b/content/en/docs/concepts/security/windows-security.md
@@ -0,0 +1,62 @@
+---
+reviewers:
+- jayunit100
+- jsturtevant
+- marosset
+- perithompson
+title:    Security For Windows Nodes
+content_type: concept
+weight: 40
+---
+
+<!-- overview -->
+
+This page describes security considerations and best practices specific to the Windows operating system.
+
+<!-- body -->
+
+## Protection for Secret data on nodes
+
+On Windows, data from Secrets are written out in clear text onto the node's local
+storage (as compared to using tmpfs / in-memory filesystems on Linux). As a cluster
+operator, you should take both of the following additional measures:
+
+1. Use file ACLs to secure the Secrets' file location.
+1. Apply volume-level encryption using
+   [BitLocker](https://docs.microsoft.com/windows/security/information-protection/bitlocker/bitlocker-how-to-deploy-on-windows-server).
+
+## Container users
+
+[RunAsUsername](/docs/tasks/configure-pod-container/configure-runasusername)
+can be specified for Windows Pods or containers to execute the container
+processes as specific user. This is roughly equivalent to
+[RunAsUser](/docs/concepts/security/pod-security-policy/#users-and-groups).
+
+Windows containers offer two default user accounts, ContainerUser and ContainerAdministrator.
+The differences between these two user accounts are covered in
+[When to use ContainerAdmin and ContainerUser user accounts](https://docs.microsoft.com/virtualization/windowscontainers/manage-containers/container-security#when-to-use-containeradmin-and-containeruser-user-accounts)
+within Microsoft's _Secure Windows containers_ documentation.
+
+Local users can be added to container images during the container build process.
+
+{{< note >}}
+
+* [Nano Server](https://hub.docker.com/_/microsoft-windows-nanoserver) based images run as
+  `ContainerUser` by default
+* [Server Core](https://hub.docker.com/_/microsoft-windows-servercore) based images run as
+  `ContainerAdministrator` by default
+
+{{< /note >}}
+
+Windows containers can also run as Active Directory identities by utilizing
+[Group Managed Service Accounts](/docs/tasks/configure-pod-container/configure-gmsa/)
+
+## Pod-level security isolation
+
+Linux-specific pod security context mechanisms (such as SELinux, AppArmor, Seccomp, or custom
+POSIX capabilities) are not supported on Windows nodes.
+
+Privileged containers are [not supported](/docs/concepts/windows/intro/#compatibility-v1-pod-spec-containers-securitycontext)
+on Windows.
+Instead [HostProcess containers](/docs/tasks/configure-pod-container/create-hostprocess-pod)
+can be used on Windows to perform many of the tasks performed by privileged containers on Linux.
diff --git a/content/en/docs/concepts/services-networking/_index.md b/content/en/docs/concepts/services-networking/_index.md
index 2e7d91427e..b4f7861075 100644
--- a/content/en/docs/concepts/services-networking/_index.md
+++ b/content/en/docs/concepts/services-networking/_index.md
@@ -5,8 +5,49 @@ description: >
   Concepts and resources behind networking in Kubernetes.
 ---
 
+## The Kubernetes network model
+
+Every [`Pod`](/docs/concepts/workloads/pods/) in a cluster gets its own unique cluster-wide IP address. 
+This means you do not need to explicitly create links between `Pods` and you 
+almost never need to deal with mapping container ports to host ports.  
+This creates a clean, backwards-compatible model where `Pods` can be treated 
+much like VMs or physical hosts from the perspectives of port allocation, 
+naming, service discovery, [load balancing](/docs/concepts/services-networking/ingress/#load-balancing), 
+application configuration, and migration.
+
+Kubernetes imposes the following fundamental requirements on any networking
+implementation (barring any intentional network segmentation policies):
+
+   * pods can communicate with all other pods on any other [node](/docs/concepts/architecture/nodes/) 
+     without NAT
+   * agents on a node (e.g. system daemons, kubelet) can communicate with all
+     pods on that node
+
+Note: For those platforms that support `Pods` running in the host network (e.g.
+Linux), when pods are attached to the host network of a node they can still communicate 
+with all pods on all nodes without NAT.
+
+This model is not only less complex overall, but it is principally compatible
+with the desire for Kubernetes to enable low-friction porting of apps from VMs
+to containers.  If your job previously ran in a VM, your VM had an IP and could
+talk to other VMs in your project.  This is the same basic model.
+
+Kubernetes IP addresses exist at the `Pod` scope - containers within a `Pod`
+share their network namespaces - including their IP address and MAC address.
+This means that containers within a `Pod` can all reach each other's ports on
+`localhost`. This also means that containers within a `Pod` must coordinate port
+usage, but this is no different from processes in a VM.  This is called the
+"IP-per-pod" model.
+
+How this is implemented is a detail of the particular container runtime in use.
+
+It is possible to request ports on the `Node` itself which forward to your `Pod`
+(called host ports), but this is a very niche operation. How that forwarding is
+implemented is also a detail of the container runtime. The `Pod` itself is
+blind to the existence or non-existence of host ports.
+
 Kubernetes networking addresses four concerns:
-- Containers within a Pod use networking to communicate via loopback.
+- Containers within a Pod [use networking to communicate](/docs/concepts/services-networking/dns-pod-service/) via loopback.
 - Cluster networking provides communication between different Pods.
-- The Service resource lets you expose an application running in Pods to be reachable from outside your cluster.
-- You can also use Services to publish services only for consumption inside your cluster.
+- The [Service resource](/docs/concepts/services-networking/service/) lets you [expose an application running in Pods](/docs/concepts/services-networking/connect-applications-service/) to be reachable from outside your cluster.
+- You can also use Services to [publish services only for consumption inside your cluster](/docs/concepts/services-networking/service-traffic-policy/).
diff --git a/content/en/docs/concepts/services-networking/connect-applications-service.md b/content/en/docs/concepts/services-networking/connect-applications-service.md
index 89d2daddb2..4aa4c4d29b 100644
--- a/content/en/docs/concepts/services-networking/connect-applications-service.md
+++ b/content/en/docs/concepts/services-networking/connect-applications-service.md
@@ -13,11 +13,9 @@ weight: 30
 
 ## The Kubernetes model for connecting containers
 
-Now that you have a continuously running, replicated application you can expose it on a network. Before discussing the Kubernetes approach to networking, it is worthwhile to contrast it with the "normal" way networking works with Docker.
+Now that you have a continuously running, replicated application you can expose it on a network. 
 
-By default, Docker uses host-private networking, so containers can talk to other containers only if they are on the same machine. In order for Docker containers to communicate across nodes, there must be allocated ports on the machine's own IP address, which are then forwarded or proxied to the containers. This obviously means that containers must either coordinate which ports they use very carefully or ports must be allocated dynamically.
-
-Coordinating port allocations across multiple developers or teams that provide containers is very difficult to do at scale, and exposes users to cluster-level issues outside of their control. Kubernetes assumes that pods can communicate with other pods, regardless of which host they land on. Kubernetes gives every pod its own cluster-private IP address, so you do not need to explicitly create links between pods or map container ports to host ports. This means that containers within a Pod can all reach each other's ports on localhost, and all pods in a cluster can see each other without NAT. The rest of this document elaborates on how you can run reliable services on such a networking model.
+Kubernetes assumes that pods can communicate with other pods, regardless of which host they land on. Kubernetes gives every pod its own cluster-private IP address, so you do not need to explicitly create links between pods or map container ports to host ports. This means that containers within a Pod can all reach each other's ports on localhost, and all pods in a cluster can see each other without NAT. The rest of this document elaborates on how you can run reliable services on such a networking model.
 
 This guide uses a simple nginx server to demonstrate proof of concept.
 
@@ -52,9 +50,9 @@ kubectl get pods -l run=my-nginx -o yaml | grep podIP
     podIP: 10.244.2.5
 ```
 
-You should be able to ssh into any node in your cluster and curl both IPs. Note that the containers are *not* using port 80 on the node, nor are there any special NAT rules to route traffic to the pod. This means you can run multiple nginx pods on the same node all using the same containerPort and access them from any other pod or node in your cluster using IP. Like Docker, ports can still be published to the host node's interfaces, but the need for this is radically diminished because of the networking model.
+You should be able to ssh into any node in your cluster and use a tool such as `curl` to make queries against both IPs. Note that the containers are *not* using port 80 on the node, nor are there any special NAT rules to route traffic to the pod. This means you can run multiple nginx pods on the same node all using the same `containerPort`, and access them from any other pod or node in your cluster using the assigned IP address for the Service. If you want to arrange for a specific port on the host Node to be forwarded to backing Pods, you can - but the networking model should mean that you do not need to do so.
 
-You can read more about [how we achieve this](/docs/concepts/cluster-administration/networking/#how-to-achieve-this) if you're curious.
+You can read more about the [Kubernetes Networking Model](/docs/concepts/cluster-administration/networking/#the-kubernetes-network-model) if you're curious.
 
 ## Creating a Service
 
diff --git a/content/en/docs/concepts/services-networking/dns-pod-service.md b/content/en/docs/concepts/services-networking/dns-pod-service.md
index f43eeff22b..939269f8ec 100644
--- a/content/en/docs/concepts/services-networking/dns-pod-service.md
+++ b/content/en/docs/concepts/services-networking/dns-pod-service.md
@@ -8,8 +8,8 @@ weight: 20
 ---
 <!-- overview -->
 
-Kubernetes creates DNS records for services and pods. You can contact
-services with consistent DNS names instead of IP addresses. 
+Kubernetes creates DNS records for Services and Pods. You can contact
+Services with consistent DNS names instead of IP addresses. 
 
 <!-- body -->
 
@@ -25,21 +25,21 @@ Pod's own namespace and the cluster's default domain.
 
 ### Namespaces of Services 
 
-A DNS query may return different results based on the namespace of the pod making 
-it. DNS queries that don't specify a namespace are limited to the pod's 
-namespace. Access services in other namespaces by specifying it in the DNS query. 
+A DNS query may return different results based on the namespace of the Pod making 
+it. DNS queries that don't specify a namespace are limited to the Pod's 
+namespace. Access Services in other namespaces by specifying it in the DNS query. 
 
-For example, consider a pod in a `test` namespace. A `data` service is in 
+For example, consider a Pod in a `test` namespace. A `data` Service is in 
 the `prod` namespace. 
 
-A query for `data` returns no results, because it uses the pod's `test` namespace. 
+A query for `data` returns no results, because it uses the Pod's `test` namespace. 
 
 A query for `data.prod` returns the intended result, because it specifies the 
 namespace. 
 
-DNS queries may be expanded using the pod's `/etc/resolv.conf`. Kubelet 
-sets this file for each pod. For example, a query for just `data` may be 
-expanded to `data.test.cluster.local`. The values of the `search` option 
+DNS queries may be expanded using the Pod's `/etc/resolv.conf`. Kubelet 
+sets this file for each Pod. For example, a query for just `data` may be 
+expanded to `data.test.svc.cluster.local`. The values of the `search` option 
 are used to expand queries. To learn more about DNS queries, see 
 [the `resolv.conf` manual page.](https://www.man7.org/linux/man-pages/man5/resolv.conf.5.html) 
 
@@ -49,7 +49,7 @@ search <namespace>.svc.cluster.local svc.cluster.local cluster.local
 options ndots:5
 ```
 
-In summary, a pod in the _test_ namespace can successfully resolve either 
+In summary, a Pod in the _test_ namespace can successfully resolve either 
 `data.prod` or `data.prod.svc.cluster.local`.
 
 ### DNS Records
@@ -70,14 +70,14 @@ For more up-to-date specification, see
 ### A/AAAA records
 
 "Normal" (not headless) Services are assigned a DNS A or AAAA record,
-depending on the IP family of the service, for a name of the form
+depending on the IP family of the Service, for a name of the form
 `my-svc.my-namespace.svc.cluster-domain.example`.  This resolves to the cluster IP
 of the Service.
 
 "Headless" (without a cluster IP) Services are also assigned a DNS A or AAAA record,
-depending on the IP family of the service, for a name of the form
+depending on the IP family of the Service, for a name of the form
 `my-svc.my-namespace.svc.cluster-domain.example`.  Unlike normal
-Services, this resolves to the set of IPs of the pods selected by the Service.
+Services, this resolves to the set of IPs of the Pods selected by the Service.
 Clients are expected to consume the set or else use standard round-robin
 selection from the set.
 
@@ -87,37 +87,36 @@ SRV Records are created for named ports that are part of normal or [Headless
 Services](/docs/concepts/services-networking/service/#headless-services).
 For each named port, the SRV record would have the form
 `_my-port-name._my-port-protocol.my-svc.my-namespace.svc.cluster-domain.example`.
-For a regular service, this resolves to the port number and the domain name:
+For a regular Service, this resolves to the port number and the domain name:
 `my-svc.my-namespace.svc.cluster-domain.example`.
-For a headless service, this resolves to multiple answers, one for each pod
-that is backing the service, and contains the port number and the domain name of the pod
+For a headless Service, this resolves to multiple answers, one for each Pod
+that is backing the Service, and contains the port number and the domain name of the Pod
 of the form `auto-generated-name.my-svc.my-namespace.svc.cluster-domain.example`.
 
 ## Pods
 
 ### A/AAAA records
 
-In general a pod has the following DNS resolution:
+In general a Pod has the following DNS resolution:
 
 `pod-ip-address.my-namespace.pod.cluster-domain.example`.
 
-For example, if a pod in the `default` namespace has the IP address 172.17.0.3,
+For example, if a Pod in the `default` namespace has the IP address 172.17.0.3,
 and the domain name for your cluster is `cluster.local`, then the Pod has a DNS name:
 
 `172-17-0-3.default.pod.cluster.local`.
 
-Any pods created by a Deployment or DaemonSet exposed by a Service have the
-following DNS resolution available:
+Any Pods exposed by a Service have the following DNS resolution available:
 
-`pod-ip-address.deployment-name.my-namespace.svc.cluster-domain.example`.
+`pod-ip-address.service-name.my-namespace.svc.cluster-domain.example`.
 
 ### Pod's hostname and subdomain fields
 
-Currently when a pod is created, its hostname is the Pod's `metadata.name` value.
+Currently when a Pod is created, its hostname is the Pod's `metadata.name` value.
 
 The Pod spec has an optional `hostname` field, which can be used to specify the
 Pod's hostname. When specified, it takes precedence over the Pod's name to be
-the hostname of the pod. For example, given a Pod with `hostname` set to
+the hostname of the Pod. For example, given a Pod with `hostname` set to
 "`my-host`", the Pod will have its hostname set to "`my-host`".
 
 The Pod spec also has an optional `subdomain` field which can be used to specify
@@ -174,14 +173,14 @@ spec:
     name: busybox
 ```
 
-If there exists a headless service in the same namespace as the pod and with
+If there exists a headless Service in the same namespace as the Pod and with
 the same name as the subdomain, the cluster's DNS Server also returns an A or AAAA
 record for the Pod's fully qualified hostname.
 For example, given a Pod with the hostname set to "`busybox-1`" and the subdomain set to
 "`default-subdomain`", and a headless Service named "`default-subdomain`" in
-the same namespace, the pod will see its own FQDN as
+the same namespace, the Pod will see its own FQDN as
 "`busybox-1.default-subdomain.my-namespace.svc.cluster-domain.example`". DNS serves an
-A or AAAA record at that name, pointing to the Pod's IP. Both pods "`busybox1`" and
+A or AAAA record at that name, pointing to the Pod's IP. Both Pods "`busybox1`" and
 "`busybox2`" can have their distinct A or AAAA records.
 
 The Endpoints object can specify the `hostname` for any endpoint addresses,
@@ -190,7 +189,7 @@ along with its IP.
 {{< note >}}
 Because A or AAAA records are not created for Pod names, `hostname` is required for the Pod's A or AAAA
 record to be created. A Pod with no `hostname` but with `subdomain` will only create the
-A or AAAA record for the headless service (`default-subdomain.my-namespace.svc.cluster-domain.example`),
+A or AAAA record for the headless Service (`default-subdomain.my-namespace.svc.cluster-domain.example`),
 pointing to the Pod's IP address. Also, Pod needs to become ready in order to have a
 record unless `publishNotReadyAddresses=True` is set on the Service.
 {{< /note >}}
@@ -206,27 +205,28 @@ When you set `setHostnameAsFQDN: true` in the Pod spec, the kubelet writes the P
 {{< note >}}
 In Linux, the hostname field of the kernel (the `nodename` field of `struct utsname`) is limited to 64 characters.
 
-If a Pod enables this feature and its FQDN is longer than 64 character, it will fail to start. The Pod will remain in `Pending` status (`ContainerCreating` as seen by `kubectl`) generating error events, such as Failed to construct FQDN from pod hostname and cluster domain, FQDN `long-FQDN` is too long (64 characters is the max, 70 characters requested). One way of improving user experience for this scenario is to create an [admission webhook controller](/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks) to control FQDN size when users create top level objects, for example, Deployment.
+If a Pod enables this feature and its FQDN is longer than 64 character, it will fail to start. The Pod will remain in `Pending` status (`ContainerCreating` as seen by `kubectl`) generating error events, such as Failed to construct FQDN from Pod hostname and cluster domain, FQDN `long-FQDN` is too long (64 characters is the max, 70 characters requested). One way of improving user experience for this scenario is to create an [admission webhook controller](/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks) to control FQDN size when users create top level objects, for example, Deployment.
 {{< /note >}}
 
 ### Pod's DNS Policy
 
-DNS policies can be set on a per-pod basis. Currently Kubernetes supports the
-following pod-specific DNS policies. These policies are specified in the
+DNS policies can be set on a per-Pod basis. Currently Kubernetes supports the
+following Pod-specific DNS policies. These policies are specified in the
 `dnsPolicy` field of a Pod Spec.
 
 - "`Default`": The Pod inherits the name resolution configuration from the node
-  that the pods run on.
-  See [related discussion](/docs/tasks/administer-cluster/dns-custom-nameservers/#inheriting-dns-from-the-node)
+  that the Pods run on.
+  See [related discussion](/docs/tasks/administer-cluster/dns-custom-nameservers)
   for more details.
 - "`ClusterFirst`": Any DNS query that does not match the configured cluster
   domain suffix, such as "`www.kubernetes.io`", is forwarded to the upstream
   nameserver inherited from the node. Cluster administrators may have extra
   stub-domain and upstream DNS servers configured.
-  See [related discussion](/docs/tasks/administer-cluster/dns-custom-nameservers/#effects-on-pods)
+  See [related discussion](/docs/tasks/administer-cluster/dns-custom-nameservers)
   for details on how DNS queries are handled in those cases.
 - "`ClusterFirstWithHostNet`": For Pods running with hostNetwork, you should
   explicitly set its DNS policy "`ClusterFirstWithHostNet`".
+  - Note: This is not supported on Windows. See [below](#dns-windows) for details
 - "`None`": It allows a Pod to ignore DNS settings from the Kubernetes
   environment. All DNS settings are supposed to be provided using the
   `dnsConfig` field in the Pod Spec.
@@ -307,7 +307,7 @@ For IPv6 setup, search path and name server should be setup like this:
 kubectl exec -it dns-example -- cat /etc/resolv.conf
 ```
 The output is similar to this:
-```shell
+```
 nameserver fd00:79:30::a
 search default.svc.cluster-domain.example svc.cluster-domain.example cluster-domain.example
 options ndots:5
@@ -324,19 +324,25 @@ If the feature gate `ExpandedDNSConfig` is enabled for the kube-apiserver and
 the kubelet, it is allowed for Kubernetes to have at most 32 search domains and
 a list of search domains of up to 2048 characters.
 
-### Feature availability
-
-The availability of Pod DNS Config and DNS Policy "`None`" is shown as below.
-
-| k8s version | Feature support |
-| :---------: |:-----------:|
-| 1.14 | Stable |
-| 1.10 | Beta (on by default)|
-| 1.9 | Alpha |
+## DNS resolution on Windows nodes {#dns-windows}
 
+- ClusterFirstWithHostNet is not supported for Pods that run on Windows nodes.
+  Windows treats all names with a `.` as a FQDN and skips FQDN resolution.
+- On Windows, there are multiple DNS resolvers that can be used. As these come with
+  slightly different behaviors, using the
+  [`Resolve-DNSName`](https://docs.microsoft.com/powershell/module/dnsclient/resolve-dnsname)
+  powershell cmdlet for name query resolutions is recommended.
+- On Linux, you have a DNS suffix list, which is used after resolution of a name as fully
+  qualified has failed.
+  On Windows, you can only have 1 DNS suffix, which is the DNS suffix associated with that
+  Pod's namespace (example: `mydns.svc.cluster.local`). Windows can resolve FQDNs, Services,
+  or network name which can be resolved with this single suffix. For example, a Pod spawned
+  in the `default` namespace, will have the DNS suffix `default.svc.cluster.local`.
+  Inside a Windows Pod, you can resolve both `kubernetes.default.svc.cluster.local`
+  and `kubernetes`, but not the partially qualified names (`kubernetes.default` or
+  `kubernetes.default.svc`).
 
 ## {{% heading "whatsnext" %}}
 
-
 For guidance on administering DNS configurations, check
 [Configure DNS Service](/docs/tasks/administer-cluster/dns-custom-nameservers/)
diff --git a/content/en/docs/concepts/services-networking/dual-stack.md b/content/en/docs/concepts/services-networking/dual-stack.md
index a85226beed..1716d7483b 100644
--- a/content/en/docs/concepts/services-networking/dual-stack.md
+++ b/content/en/docs/concepts/services-networking/dual-stack.md
@@ -1,28 +1,27 @@
 ---
-reviewers:
-- lachie83
-- khenidak
-- aramase
-- bridgetkromhout
 title: IPv4/IPv6 dual-stack
 feature:
   title: IPv4/IPv6 dual-stack
   description: >
     Allocation of IPv4 and IPv6 addresses to Pods and Services
-
 content_type: concept
+reviewers:
+  - lachie83
+  - khenidak
+  - aramase
+  - bridgetkromhout
 weight: 70
 ---
 
 <!-- overview -->
 
-{{< feature-state for_k8s_version="v1.21" state="beta" >}}
-
-IPv4/IPv6 dual-stack networking enables the allocation of both IPv4 and IPv6 addresses to {{< glossary_tooltip text="Pods" term_id="pod" >}} and {{< glossary_tooltip text="Services" term_id="service" >}}.
-
-IPv4/IPv6 dual-stack networking is enabled by default for your Kubernetes cluster starting in 1.21, allowing the simultaneous assignment of both IPv4 and IPv6 addresses.
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
 
+IPv4/IPv6 dual-stack networking enables the allocation of both IPv4 and IPv6 addresses to
+{{< glossary_tooltip text="Pods" term_id="pod" >}} and {{< glossary_tooltip text="Services" term_id="service" >}}.
 
+IPv4/IPv6 dual-stack networking is enabled by default for your Kubernetes cluster starting in
+1.21, allowing the simultaneous assignment of both IPv4 and IPv6 addresses.
 
 <!-- body -->
 
@@ -30,65 +29,78 @@ IPv4/IPv6 dual-stack networking is enabled by default for your Kubernetes cluste
 
 IPv4/IPv6 dual-stack on your Kubernetes cluster provides the following features:
 
-   * Dual-stack Pod networking (a single IPv4 and IPv6 address assignment per Pod)
-   * IPv4 and IPv6 enabled Services
-   * Pod off-cluster egress routing (eg. the Internet) via both IPv4 and IPv6 interfaces
+* Dual-stack Pod networking (a single IPv4 and IPv6 address assignment per Pod)
+* IPv4 and IPv6 enabled Services
+* Pod off-cluster egress routing (eg. the Internet) via both IPv4 and IPv6 interfaces
 
 ## Prerequisites
 
 The following prerequisites are needed in order to utilize IPv4/IPv6 dual-stack Kubernetes clusters:
 
-   * Kubernetes 1.20 or later  
-     For information about using dual-stack services with earlier
-     Kubernetes versions, refer to the documentation for that version
-     of Kubernetes.
-   * Provider support for dual-stack networking (Cloud provider or otherwise must be able to provide Kubernetes nodes with routable IPv4/IPv6 network interfaces)
-   * A network plugin that supports dual-stack (such as Kubenet or Calico)
+* Kubernetes 1.20 or later
+
+  For information about using dual-stack services with earlier
+  Kubernetes versions, refer to the documentation for that version
+  of Kubernetes.
+
+* Provider support for dual-stack networking (Cloud provider or otherwise must be able to provide
+  Kubernetes nodes with routable IPv4/IPv6 network interfaces)
+* A [network plugin](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/) that
+  supports dual-stack networking.
 
 ## Configure IPv4/IPv6 dual-stack
 
-To use IPv4/IPv6 dual-stack, ensure the `IPv6DualStack` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled for the relevant components of your cluster. (Starting in 1.21, IPv4/IPv6 dual-stack defaults to enabled.)
-
 To configure IPv4/IPv6 dual-stack, set dual-stack cluster network assignments:
 
-   * kube-apiserver:
-      * `--service-cluster-ip-range=<IPv4 CIDR>,<IPv6 CIDR>`
-   * kube-controller-manager:
-      * `--cluster-cidr=<IPv4 CIDR>,<IPv6 CIDR>`
-      * `--service-cluster-ip-range=<IPv4 CIDR>,<IPv6 CIDR>`
-      * `--node-cidr-mask-size-ipv4|--node-cidr-mask-size-ipv6` defaults to /24 for IPv4 and /64 for IPv6
-   * kube-proxy:
-      * `--cluster-cidr=<IPv4 CIDR>,<IPv6 CIDR>`
+* kube-apiserver:
+  * `--service-cluster-ip-range=<IPv4 CIDR>,<IPv6 CIDR>`
+* kube-controller-manager:
+  * `--cluster-cidr=<IPv4 CIDR>,<IPv6 CIDR>`
+  * `--service-cluster-ip-range=<IPv4 CIDR>,<IPv6 CIDR>`
+  * `--node-cidr-mask-size-ipv4|--node-cidr-mask-size-ipv6` defaults to /24 for IPv4 and /64 for IPv6
+* kube-proxy:
+  * `--cluster-cidr=<IPv4 CIDR>,<IPv6 CIDR>`
+* kubelet:
+  * when there is no `--cloud-provider` the administrator can pass a comma-separated pair of IP
+    addresses via `--node-ip` to manually configure dual-stack `.status.addresses` for that Node.
+    If a Pod runs on that node in HostNetwork mode, the Pod reports these IP addresses in its
+    `.status.podIPs` field.
+    All `podIPs` in a node match the IP family preference defined by the `.status.addresses`
+    field for that Node.
 
 {{< note >}}
 An example of an IPv4 CIDR: `10.244.0.0/16` (though you would supply your own address range)
 
-An example of an IPv6 CIDR: `fdXY:IJKL:MNOP:15::/64` (this shows the format but is not a valid address - see [RFC 4193](https://tools.ietf.org/html/rfc4193))
-
-Starting in 1.21, IPv4/IPv6 dual-stack defaults to enabled.
-You can disable it when necessary by specifying `--feature-gates="IPv6DualStack=false"`
-on the kube-apiserver, kube-controller-manager, kubelet, and kube-proxy command line.
+An example of an IPv6 CIDR: `fdXY:IJKL:MNOP:15::/64` (this shows the format but is not a valid
+address - see [RFC 4193](https://tools.ietf.org/html/rfc4193))
 {{< /note >}}
 
 ## Services
 
 You can create {{< glossary_tooltip text="Services" term_id="service" >}} which can use IPv4, IPv6, or both.
 
-The address family of a Service defaults to the address family of the first service cluster IP range (configured via the `--service-cluster-ip-range` flag to the kube-apiserver).
+The address family of a Service defaults to the address family of the first service cluster IP
+range (configured via the `--service-cluster-ip-range` flag to the kube-apiserver).
 
 When you define a Service you can optionally configure it as dual stack. To specify the behavior you want, you
 set the `.spec.ipFamilyPolicy` field to one of the following values:
 
-* `SingleStack`: Single-stack service. The control plane allocates a cluster IP for the Service, using the first configured service cluster IP range.
+* `SingleStack`: Single-stack service. The control plane allocates a cluster IP for the Service,
+  using the first configured service cluster IP range.
 * `PreferDualStack`:
-  * Allocates IPv4 and IPv6 cluster IPs for the Service. (If the cluster has `--feature-gates="IPv6DualStack=false"`, this setting follows the same behavior as `SingleStack`.)
+  * Allocates IPv4 and IPv6 cluster IPs for the Service.
 * `RequireDualStack`: Allocates Service `.spec.ClusterIPs` from both IPv4 and IPv6 address ranges.
-  * Selects the `.spec.ClusterIP` from the list of `.spec.ClusterIPs` based on the address family of the first element in the `.spec.ipFamilies` array.
+  * Selects the `.spec.ClusterIP` from the list of `.spec.ClusterIPs` based on the address family
+    of the first element in the `.spec.ipFamilies` array.
 
-If you would like to define which IP family to use for single stack or define the order of IP families for dual-stack, you can choose the address families by setting an optional field, `.spec.ipFamilies`, on the Service. 
+If you would like to define which IP family to use for single stack or define the order of IP
+families for dual-stack, you can choose the address families by setting an optional field,
+`.spec.ipFamilies`, on the Service.
 
 {{< note >}}
-The `.spec.ipFamilies` field is immutable because the `.spec.ClusterIP` cannot be reallocated on a Service that already exists. If you want to change `.spec.ipFamilies`, delete and recreate the Service.
+The `.spec.ipFamilies` field is immutable because the `.spec.ClusterIP` cannot be reallocated on a
+Service that already exists. If you want to change `.spec.ipFamilies`, delete and recreate the
+Service.
 {{< /note >}}
 
 You can set `.spec.ipFamilies` to any of the following array values:
@@ -106,139 +118,197 @@ These examples demonstrate the behavior of various dual-stack Service configurat
 
 #### Dual-stack options on new Services
 
-1. This Service specification does not explicitly define `.spec.ipFamilyPolicy`. When you create this Service, Kubernetes assigns a cluster IP for the Service from the first configured `service-cluster-ip-range` and sets the `.spec.ipFamilyPolicy` to `SingleStack`. ([Services without selectors](/docs/concepts/services-networking/service/#services-without-selectors) and [headless Services](/docs/concepts/services-networking/service/#headless-services) with selectors will behave in this same way.)
+1. This Service specification does not explicitly define `.spec.ipFamilyPolicy`. When you create
+   this Service, Kubernetes assigns a cluster IP for the Service from the first configured
+   `service-cluster-ip-range` and sets the `.spec.ipFamilyPolicy` to `SingleStack`. ([Services
+   without selectors](/docs/concepts/services-networking/service/#services-without-selectors) and
+   [headless Services](/docs/concepts/services-networking/service/#headless-services) with selectors
+   will behave in this same way.)
 
-{{< codenew file="service/networking/dual-stack-default-svc.yaml" >}}
+   {{< codenew file="service/networking/dual-stack-default-svc.yaml" >}}
 
-1. This Service specification explicitly defines `PreferDualStack` in `.spec.ipFamilyPolicy`. When you create this Service on a dual-stack cluster, Kubernetes assigns both IPv4 and IPv6 addresses for the service. The control plane updates the `.spec` for the Service to record the IP address assignments. The field `.spec.ClusterIPs` is the primary field, and contains both assigned IP addresses; `.spec.ClusterIP` is a secondary field with its value calculated from `.spec.ClusterIPs`.
-   
-      * For the `.spec.ClusterIP` field, the control plane records the IP address that is from the same address family as the first service cluster IP range. 
-      * On a single-stack cluster, the `.spec.ClusterIPs` and `.spec.ClusterIP` fields both only list one address. 
-      * On a cluster with dual-stack enabled, specifying `RequireDualStack` in `.spec.ipFamilyPolicy` behaves the same as `PreferDualStack`.
+1. This Service specification explicitly defines `PreferDualStack` in `.spec.ipFamilyPolicy`. When
+   you create this Service on a dual-stack cluster, Kubernetes assigns both IPv4 and IPv6
+   addresses for the service. The control plane updates the `.spec` for the Service to record the IP
+   address assignments. The field `.spec.ClusterIPs` is the primary field, and contains both assigned
+   IP addresses; `.spec.ClusterIP` is a secondary field with its value calculated from
+   `.spec.ClusterIPs`.
 
-{{< codenew file="service/networking/dual-stack-preferred-svc.yaml" >}}
+   * For the `.spec.ClusterIP` field, the control plane records the IP address that is from the
+     same address family as the first service cluster IP range.
+   * On a single-stack cluster, the `.spec.ClusterIPs` and `.spec.ClusterIP` fields both only list
+     one address.
+   * On a cluster with dual-stack enabled, specifying `RequireDualStack` in `.spec.ipFamilyPolicy`
+     behaves the same as `PreferDualStack`.
 
-1. This Service specification explicitly defines `IPv6` and `IPv4` in `.spec.ipFamilies` as well as defining `PreferDualStack` in `.spec.ipFamilyPolicy`. When Kubernetes assigns an IPv6 and IPv4 address in `.spec.ClusterIPs`, `.spec.ClusterIP` is set to the IPv6 address because that is the first element in the `.spec.ClusterIPs` array, overriding the default.
+   {{< codenew file="service/networking/dual-stack-preferred-svc.yaml" >}}
 
-{{< codenew file="service/networking/dual-stack-preferred-ipfamilies-svc.yaml" >}}
+1. This Service specification explicitly defines `IPv6` and `IPv4` in `.spec.ipFamilies` as well
+   as defining `PreferDualStack` in `.spec.ipFamilyPolicy`. When Kubernetes assigns an IPv6 and
+   IPv4 address in `.spec.ClusterIPs`, `.spec.ClusterIP` is set to the IPv6 address because that is
+   the first element in the `.spec.ClusterIPs` array, overriding the default.
+
+   {{< codenew file="service/networking/dual-stack-preferred-ipfamilies-svc.yaml" >}}
 
 #### Dual-stack defaults on existing Services
 
-These examples demonstrate the default behavior when dual-stack is newly enabled on a cluster where Services already exist. (Upgrading an existing cluster to 1.21 will enable dual-stack unless `--feature-gates="IPv6DualStack=false"` is set.)
+These examples demonstrate the default behavior when dual-stack is newly enabled on a cluster
+where Services already exist. (Upgrading an existing cluster to 1.21 or beyond will enable
+dual-stack.)
 
-1. When dual-stack is enabled on a cluster, existing Services (whether `IPv4` or `IPv6`) are configured by the control plane to set `.spec.ipFamilyPolicy` to `SingleStack` and set `.spec.ipFamilies` to the address family of the existing Service. The existing Service cluster IP will be stored in `.spec.ClusterIPs`.
+1. When dual-stack is enabled on a cluster, existing Services (whether `IPv4` or `IPv6`) are
+   configured by the control plane to set `.spec.ipFamilyPolicy` to `SingleStack` and set
+   `.spec.ipFamilies` to the address family of the existing Service. The existing Service cluster IP
+   will be stored in `.spec.ClusterIPs`.
 
-{{< codenew file="service/networking/dual-stack-default-svc.yaml" >}}
+   {{< codenew file="service/networking/dual-stack-default-svc.yaml" >}}
 
    You can validate this behavior by using kubectl to inspect an existing service.
 
-```shell
-kubectl get svc my-service -o yaml
-```
+   ```shell
+   kubectl get svc my-service -o yaml
+   ```
 
-```yaml
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app: MyApp
-  name: my-service
-spec:
-  clusterIP: 10.0.197.123
-  clusterIPs:
-  - 10.0.197.123
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - port: 80
-    protocol: TCP
-    targetPort: 80
-  selector:
-    app: MyApp
-  type: ClusterIP
-status:
-  loadBalancer: {}
-```
+   ```yaml
+   apiVersion: v1
+   kind: Service
+   metadata:
+     labels:
+       app.kubernetes.io/name: MyApp
+     name: my-service
+   spec:
+     clusterIP: 10.0.197.123
+     clusterIPs:
+     - 10.0.197.123
+     ipFamilies:
+     - IPv4
+     ipFamilyPolicy: SingleStack
+     ports:
+     - port: 80
+       protocol: TCP
+       targetPort: 80
+     selector:
+       app.kubernetes.io/name: MyApp
+     type: ClusterIP
+   status:
+     loadBalancer: {}
+   ```
 
-1. When dual-stack is enabled on a cluster, existing [headless Services](/docs/concepts/services-networking/service/#headless-services) with selectors are configured by the control plane to set `.spec.ipFamilyPolicy` to `SingleStack` and set `.spec.ipFamilies` to the address family of the first service cluster IP range (configured via the `--service-cluster-ip-range` flag to the kube-apiserver) even though `.spec.ClusterIP` is set to `None`.
+1. When dual-stack is enabled on a cluster, existing
+   [headless Services](/docs/concepts/services-networking/service/#headless-services) with selectors are
+   configured by the control plane to set `.spec.ipFamilyPolicy` to `SingleStack` and set
+   `.spec.ipFamilies` to the address family of the first service cluster IP range (configured via the
+   `--service-cluster-ip-range` flag to the kube-apiserver) even though `.spec.ClusterIP` is set to
+   `None`.
 
-{{< codenew file="service/networking/dual-stack-default-svc.yaml" >}}
+   {{< codenew file="service/networking/dual-stack-default-svc.yaml" >}}
 
    You can validate this behavior by using kubectl to inspect an existing headless service with selectors.
 
-```shell
-kubectl get svc my-service -o yaml
-```
+   ```shell
+   kubectl get svc my-service -o yaml
+   ```
 
-```yaml
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app: MyApp
-  name: my-service
-spec:
-  clusterIP: None
-  clusterIPs:
-  - None
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - port: 80
-    protocol: TCP
-    targetPort: 80
-  selector:
-    app: MyApp
-```
+   ```yaml
+   apiVersion: v1
+   kind: Service
+   metadata:
+     labels:
+       app.kubernetes.io/name: MyApp
+     name: my-service
+   spec:
+     clusterIP: None
+     clusterIPs:
+     - None
+     ipFamilies:
+     - IPv4
+     ipFamilyPolicy: SingleStack
+     ports:
+     - port: 80
+       protocol: TCP
+       targetPort: 80
+     selector:
+       app.kubernetes.io/name: MyApp
+   ```
 
 #### Switching Services between single-stack and dual-stack
 
 Services can be changed from single-stack to dual-stack and from dual-stack to single-stack.
 
-1. To change a Service from single-stack to dual-stack, change `.spec.ipFamilyPolicy` from `SingleStack` to `PreferDualStack` or `RequireDualStack` as desired. When you change this Service from single-stack to dual-stack, Kubernetes assigns the missing address family so that the Service now has IPv4 and IPv6 addresses.
+1. To change a Service from single-stack to dual-stack, change `.spec.ipFamilyPolicy` from
+   `SingleStack` to `PreferDualStack` or `RequireDualStack` as desired. When you change this
+   Service from single-stack to dual-stack, Kubernetes assigns the missing address family so that the
+   Service now has IPv4 and IPv6 addresses.
 
    Edit the Service specification updating the `.spec.ipFamilyPolicy` from `SingleStack` to `PreferDualStack`.
 
-Before:
-```yaml
-spec:
-  ipFamilyPolicy: SingleStack
-```
-After:
-```yaml
-spec:
-  ipFamilyPolicy: PreferDualStack
-```
+   Before:
 
-1. To change a Service from dual-stack to single-stack, change `.spec.ipFamilyPolicy` from `PreferDualStack` or `RequireDualStack` to `SingleStack`. When you change this Service from dual-stack to single-stack, Kubernetes retains only the first element in the `.spec.ClusterIPs` array, and sets `.spec.ClusterIP` to that IP address and sets `.spec.ipFamilies` to the address family of `.spec.ClusterIPs`.
+   ```yaml
+   spec:
+     ipFamilyPolicy: SingleStack
+   ```
+
+   After:
+
+   ```yaml
+   spec:
+     ipFamilyPolicy: PreferDualStack
+   ```
+
+1. To change a Service from dual-stack to single-stack, change `.spec.ipFamilyPolicy` from
+   `PreferDualStack` or `RequireDualStack` to `SingleStack`. When you change this Service from
+   dual-stack to single-stack, Kubernetes retains only the first element in the `.spec.ClusterIPs`
+   array, and sets `.spec.ClusterIP` to that IP address and sets `.spec.ipFamilies` to the address
+   family of `.spec.ClusterIPs`.
 
 ### Headless Services without selector
 
-For [Headless Services without selectors](/docs/concepts/services-networking/service/#without-selectors) and without `.spec.ipFamilyPolicy` explicitly set, the `.spec.ipFamilyPolicy` field defaults to `RequireDualStack`.
+For [Headless Services without selectors](/docs/concepts/services-networking/service/#without-selectors)
+and without `.spec.ipFamilyPolicy` explicitly set, the `.spec.ipFamilyPolicy` field defaults to
+`RequireDualStack`.
 
 ### Service type LoadBalancer
 
 To provision a dual-stack load balancer for your Service:
-   * Set the `.spec.type` field to `LoadBalancer`
-   * Set `.spec.ipFamilyPolicy` field to `PreferDualStack` or `RequireDualStack`
+
+* Set the `.spec.type` field to `LoadBalancer`
+* Set `.spec.ipFamilyPolicy` field to `PreferDualStack` or `RequireDualStack`
 
 {{< note >}}
-To use a dual-stack `LoadBalancer` type Service, your cloud provider must support IPv4 and IPv6 load balancers.
+To use a dual-stack `LoadBalancer` type Service, your cloud provider must support IPv4 and IPv6
+load balancers.
 {{< /note >}}
 
 ## Egress traffic
 
-If you want to enable egress traffic in order to reach off-cluster destinations (eg. the public Internet) from a Pod that uses non-publicly routable IPv6 addresses, you need to enable the Pod to use a publicly routed IPv6 address via a mechanism such as transparent proxying or IP masquerading. The [ip-masq-agent](https://github.com/kubernetes-sigs/ip-masq-agent) project supports IP masquerading on dual-stack clusters.
+If you want to enable egress traffic in order to reach off-cluster destinations (eg. the public
+Internet) from a Pod that uses non-publicly routable IPv6 addresses, you need to enable the Pod to
+use a publicly routed IPv6 address via a mechanism such as transparent proxying or IP
+masquerading. The [ip-masq-agent](https://github.com/kubernetes-sigs/ip-masq-agent) project
+supports IP masquerading on dual-stack clusters.
 
 {{< note >}}
 Ensure your {{< glossary_tooltip text="CNI" term_id="cni" >}} provider supports IPv6.
 {{< /note >}}
 
+## Windows support
+
+Kubernetes on Windows does not support single-stack "IPv6-only" networking. However,
+dual-stack IPv4/IPv6 networking for pods and nodes with single-family services
+is supported.
+
+You can use IPv4/IPv6 dual-stack networking with `l2bridge` networks.
+
+{{< note >}}
+Overlay (VXLAN) networks on Windows **do not** support dual-stack networking.
+{{< /note >}}
+
+You can read more about the different network modes for Windows within the
+[Networking on Windows](/docs/concepts/services-networking/windows-networking#network-modes) topic.
+
 ## {{% heading "whatsnext" %}}
 
-
 * [Validate IPv4/IPv6 dual-stack](/docs/tasks/network/validate-dual-stack) networking
-* [Enable dual-stack networking using kubeadm
-](/docs/setup/production-environment/tools/kubeadm/dual-stack-support/)
+* [Enable dual-stack networking using kubeadm](/docs/setup/production-environment/tools/kubeadm/dual-stack-support/)
+
diff --git a/content/en/docs/concepts/services-networking/endpoint-slices.md b/content/en/docs/concepts/services-networking/endpoint-slices.md
index da8d09d9d5..cd90ecdcfd 100644
--- a/content/en/docs/concepts/services-networking/endpoint-slices.md
+++ b/content/en/docs/concepts/services-networking/endpoint-slices.md
@@ -147,9 +147,9 @@ In the v1 API, the per endpoint `topology` was effectively removed in favor of
 the dedicated fields `nodeName` and `zone`.
 
 Setting arbitrary topology fields on the `endpoint` field of an `EndpointSlice`
-resource has been deprecated and is not be supported in the v1 API. Instead,
-the v1 API supports setting individual `nodeName` and `zone` fields. These
-fields are automatically translated between API versions. For example, the
+resource has been deprecated and is not supported in the v1 API.
+Instead, the v1 API supports setting individual `nodeName` and `zone` fields.
+These fields are automatically translated between API versions. For example, the
 value of the `"topology.kubernetes.io/zone"` key in the `topology` field in
 the v1beta1 API is accessible as the `zone` field in the v1 API.
 {{< /note >}}
diff --git a/content/en/docs/concepts/services-networking/ingress-controllers.md b/content/en/docs/concepts/services-networking/ingress-controllers.md
index 0ee1d53ef9..f2d593448e 100644
--- a/content/en/docs/concepts/services-networking/ingress-controllers.md
+++ b/content/en/docs/concepts/services-networking/ingress-controllers.md
@@ -23,16 +23,17 @@ Kubernetes as a project supports and maintains [AWS](https://github.com/kubernet
 
 {{% thirdparty-content %}}
 
-* [AKS Application Gateway Ingress Controller](https://azure.github.io/application-gateway-kubernetes-ingress/) is an ingress controller that configures the [Azure Application Gateway](https://docs.microsoft.com/azure/application-gateway/overview).
+* [AKS Application Gateway Ingress Controller](https://docs.microsoft.com/azure/application-gateway/tutorial-ingress-controller-add-on-existing?toc=https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Faks%2Ftoc.json&bc=https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Fbread%2Ftoc.json) is an ingress controller that configures the [Azure Application Gateway](https://docs.microsoft.com/azure/application-gateway/overview).
 * [Ambassador](https://www.getambassador.io/) API Gateway is an [Envoy](https://www.envoyproxy.io)-based ingress
   controller.
 * [Apache APISIX ingress controller](https://github.com/apache/apisix-ingress-controller) is an [Apache APISIX](https://github.com/apache/apisix)-based ingress controller.
 * [Avi Kubernetes Operator](https://github.com/vmware/load-balancer-and-ingress-services-for-kubernetes) provides L4-L7 load-balancing using [VMware NSX Advanced Load Balancer](https://avinetworks.com/).
+* [BFE Ingress Controller](https://github.com/bfenetworks/ingress-bfe) is a [BFE](https://www.bfe-networks.net)-based ingress controller.
 * The [Citrix ingress controller](https://github.com/citrix/citrix-k8s-ingress-controller#readme) works with
   Citrix Application Delivery Controller.
 * [Contour](https://projectcontour.io/) is an [Envoy](https://www.envoyproxy.io/) based ingress controller.
 * [EnRoute](https://getenroute.io/) is an [Envoy](https://www.envoyproxy.io) based API gateway that can run as an ingress controller.
-* [Easegress IngressController](https://github.com/megaease/easegress/blob/main/doc/ingresscontroller.md) is an [Easegress](https://megaease.com/easegress/) based API gateway that can run as an ingress controller.
+* [Easegress IngressController](https://github.com/megaease/easegress/blob/main/doc/reference/ingresscontroller.md) is an [Easegress](https://megaease.com/easegress/) based API gateway that can run as an ingress controller.
 * F5 BIG-IP [Container Ingress Services for Kubernetes](https://clouddocs.f5.com/containers/latest/userguide/kubernetes/)
   lets you use an Ingress to configure F5 BIG-IP virtual servers.
 * [Gloo](https://gloo.solo.io) is an open-source ingress controller based on [Envoy](https://www.envoyproxy.io),
@@ -45,8 +46,10 @@ Kubernetes as a project supports and maintains [AWS](https://github.com/kubernet
   is an [Istio](https://istio.io/) based ingress controller.
 * The [Kong Ingress Controller for Kubernetes](https://github.com/Kong/kubernetes-ingress-controller#readme)
   is an ingress controller driving [Kong Gateway](https://konghq.com/kong/).
+* [Kusk Gateway](https://kusk.kubeshop.io/) is an OpenAPI-driven ingress controller based on [Envoy](https://www.envoyproxy.io).
 * The [NGINX Ingress Controller for Kubernetes](https://www.nginx.com/products/nginx-ingress-controller/)
   works with the [NGINX](https://www.nginx.com/resources/glossary/nginx/) webserver (as a proxy).
+* The [Pomerium Ingress Controller](https://www.pomerium.com/docs/k8s/ingress.html) is based on [Pomerium](https://pomerium.com/), which offers context-aware access policy.
 * [Skipper](https://opensource.zalando.com/skipper/kubernetes/ingress-controller/) HTTP router and reverse proxy for service composition, including use cases like Kubernetes Ingress, designed as a library to build your custom proxy.
 * The [Traefik Kubernetes Ingress provider](https://doc.traefik.io/traefik/providers/kubernetes-ingress/) is an
   ingress controller for the [Traefik](https://traefik.io/traefik/) proxy.
@@ -56,12 +59,11 @@ Kubernetes as a project supports and maintains [AWS](https://github.com/kubernet
 
 ## Using multiple Ingress controllers
 
-You may deploy [any number of ingress controllers](https://git.k8s.io/ingress-nginx/docs/user-guide/multiple-ingress.md#multiple-ingress-controllers) 
-within a cluster. When you create an ingress, you should annotate each ingress with the appropriate
-[`ingress.class`](https://git.k8s.io/ingress-gce/docs/faq/README.md#how-do-i-run-multiple-ingress-controllers-in-the-same-cluster) 
-to indicate which ingress controller should be used if more than one exists within your cluster.
+You may deploy any number of ingress controllers using [ingress class](/docs/concepts/services-networking/ingress/#ingress-class)
+within a cluster. Note the `.metadata.name` of your ingress class resource. When you create an ingress you would need that name to specify the `ingressClassName` field on your Ingress object (refer to [IngressSpec v1 reference](/docs/reference/kubernetes-api/service-resources/ingress-v1/#IngressSpec). `ingressClassName` is a replacement of the older [annotation method](/docs/concepts/services-networking/ingress/#deprecated-annotation).
 
-If you do not define a class, your cloud provider may use a default ingress controller.
+If you do not specify an IngressClass for an Ingress, and your cluster has exactly one IngressClass marked as default, then Kubernetes [applies](/docs/concepts/services-networking/ingress/#default-ingress-class) the cluster's default IngressClass to the Ingress.
+You mark an IngressClass as default by setting the [`ingressclass.kubernetes.io/is-default-class` annotation](/docs/reference/labels-annotations-taints/#ingressclass-kubernetes-io-is-default-class) on that IngressClass, with the string value `"true"`.
 
 Ideally, all ingress controllers should fulfill this specification, but the various ingress
 controllers operate slightly differently.
diff --git a/content/en/docs/concepts/services-networking/ingress.md b/content/en/docs/concepts/services-networking/ingress.md
index 6879b998db..aebcc800c6 100644
--- a/content/en/docs/concepts/services-networking/ingress.md
+++ b/content/en/docs/concepts/services-networking/ingress.md
@@ -30,28 +30,13 @@ For clarity, this guide defines the following terms:
 Traffic routing is controlled by rules defined on the Ingress resource.
 
 Here is a simple example where an Ingress sends all its traffic to one Service:
-{{< mermaid >}}
-graph LR;
-  client([client])-. Ingress-managed <br> load balancer .->ingress[Ingress];
-  ingress-->|routing rule|service[Service];
-  subgraph cluster
-  ingress;
-  service-->pod1[Pod];
-  service-->pod2[Pod];
-  end
-  classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-  classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-  classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-  class ingress,service,pod1,pod2 k8s;
-  class client plain;
-  class cluster cluster;
-{{</ mermaid >}}
 
+{{< figure src="/docs/images/ingress.svg" alt="ingress-diagram" class="diagram-large" caption="Figure. Ingress" link="https://mermaid.live/edit#pako:eNqNkstuwyAQRX8F4U0r2VHqPlSRKqt0UamLqlnaWWAYJygYLB59KMm_Fxcix-qmGwbuXA7DwAEzzQETXKutof0Ovb4vaoUQkwKUu6pi3FwXM_QSHGBt0VFFt8DRU2OWSGrKUUMlVQwMmhVLEV1Vcm9-aUksiuXRaO_CEhkv4WjBfAgG1TrGaLa-iaUw6a0DcwGI-WgOsF7zm-pN881fvRx1UDzeiFq7ghb1kgqFWiElyTjnuXVG74FkbdumefEpuNuRu_4rZ1pqQ7L5fL6YQPaPNiFuywcG9_-ihNyUkm6YSONWkjVNM8WUIyaeOJLO3clTB_KhL8NQDmVe-OJjxgZM5FhFiiFTK5zjDkxHBQ9_4zB4a-x20EGNSZhyaKmXrg7f5hSsvufUwTMXThtMWiot5Jh6p9ffimHijIezaSVoeN0uiqcfMJvf7w" >}}
 
 An Ingress may be configured to give Services externally-reachable URLs, load balance traffic, terminate SSL / TLS, and offer name-based virtual hosting. An [Ingress controller](/docs/concepts/services-networking/ingress-controllers) is responsible for fulfilling the Ingress, usually with a load balancer, though it may also configure your edge router or additional frontends to help handle the traffic.
 
 An Ingress does not expose arbitrary ports or protocols. Exposing services other than HTTP and HTTPS to the internet typically
-uses a service of type [Service.Type=NodePort](/docs/concepts/services-networking/service/#nodeport) or
+uses a service of type [Service.Type=NodePort](/docs/concepts/services-networking/service/#type-nodeport) or
 [Service.Type=LoadBalancer](/docs/concepts/services-networking/service/#loadbalancer).
 
 ## Prerequisites
@@ -74,13 +59,13 @@ A minimal Ingress resource example:
 
 {{< codenew file="service/networking/minimal-ingress.yaml" >}}
 
-As with all other Kubernetes resources, an Ingress needs `apiVersion`, `kind`, and `metadata` fields.
+An Ingress needs `apiVersion`, `kind`, `metadata` and `spec` fields.
 The name of an Ingress object must be a valid
 [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 For general information about working with config files, see [deploying applications](/docs/tasks/run-application/run-stateless-application-deployment/), [configuring containers](/docs/tasks/configure-pod-container/configure-pod-configmap/), [managing resources](/docs/concepts/cluster-administration/manage-deployment/).
  Ingress frequently uses annotations to configure some options depending on the Ingress controller, an example of which
  is the [rewrite-target annotation](https://github.com/kubernetes/ingress-nginx/blob/master/docs/examples/rewrite/README.md).
-Different [Ingress controller](/docs/concepts/services-networking/ingress-controllers) support different annotations. Review the documentation for
+Different [Ingress controllers](/docs/concepts/services-networking/ingress-controllers) support different annotations. Review the documentation for
  your choice of Ingress controller to learn which annotations are supported.
 
 The Ingress [spec](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status)
@@ -88,6 +73,15 @@ has all the information needed to configure a load balancer or proxy server. Mos
 contains a list of rules matched against all incoming requests. Ingress resource only supports rules
 for directing HTTP(S) traffic.
 
+If the `ingressClassName` is omitted, a [default Ingress class](#default-ingress-class)
+should be defined.
+
+There are some ingress controllers, that work without the definition of a
+default `IngressClass`. For example, the Ingress-NGINX controller can be
+configured with a [flag](https://kubernetes.github.io/ingress-nginx/#what-is-the-flag-watch-ingress-without-class)
+`--watch-ingress-without-class`. It is [recommended](https://kubernetes.github.io/ingress-nginx/#i-have-only-one-instance-of-the-ingresss-nginx-controller-in-my-cluster-what-should-i-do)  though, to specify the
+default `IngressClass` as shown [below](#default-ingress-class).
+
 ### Ingress rules
 
 Each HTTP rule contains the following information:
@@ -109,8 +103,14 @@ match a path in the spec.
 
 ### DefaultBackend {#default-backend}
 
-An Ingress with no rules sends all traffic to a single default backend. The `defaultBackend` is conventionally a configuration option
-of the [Ingress controller](/docs/concepts/services-networking/ingress-controllers) and is not specified in your Ingress resources.
+An Ingress with no rules sends all traffic to a single default backend and `.spec.defaultBackend`
+is the backend that should handle requests in that case.
+The `defaultBackend` is conventionally a configuration option of the
+[Ingress controller](/docs/concepts/services-networking/ingress-controllers) and
+is not specified in your Ingress resources.
+If no `.spec.rules` are specified, `.spec.defaultBackend` must be specified.
+If `defaultBackend` is not set, the handling of requests that do not match any of the rules will be up to the
+ingress controller (consult the documentation for your ingress controller to find out how it handles this case).
 
 If none of the hosts or paths match the HTTP request in the Ingress objects, the traffic is
 routed to your default backend.
@@ -219,25 +219,98 @@ of the controller that should implement the class.
 
 {{< codenew file="service/networking/external-lb.yaml" >}}
 
-IngressClass resources contain an optional parameters field. This can be used to
-reference additional implementation-specific configuration for this class.
+The `.spec.parameters` field of an IngressClass lets you reference another
+resource that provides configuration related to that IngressClass.
 
-#### Namespace-scoped parameters
+The specific type of parameters to use depends on the ingress controller
+that you specify in the `.spec.controller` field of the IngressClass.
 
-{{< feature-state for_k8s_version="v1.22" state="beta" >}}
+### IngressClass scope
 
-`Parameters` field has a `scope` and `namespace` field that can be used to
-reference a namespace-specific resource for configuration of an Ingress class.
-`Scope` field defaults to `Cluster`, meaning, the default is cluster-scoped
-resource. Setting `Scope` to `Namespace` and setting the `Namespace` field
-will reference a parameters resource in a specific namespace:
+Depending on your ingress controller, you may be able to use parameters
+that you set cluster-wide, or just for one namespace.
 
-Namespace-scoped parameters avoid the need for a cluster-scoped CustomResourceDefinition
-for a parameters resource. This further avoids RBAC-related resources
-that would otherwise be required to grant permissions to cluster-scoped
-resources.
+{{< tabs name="tabs_ingressclass_parameter_scope" >}}
+{{% tab name="Cluster" %}}
+The default scope for IngressClass parameters is cluster-wide.
 
-{{< codenew file="service/networking/namespaced-params.yaml" >}}
+If you set the `.spec.parameters` field and don't set
+`.spec.parameters.scope`, or if you set `.spec.parameters.scope` to
+`Cluster`, then the IngressClass refers to a cluster-scoped resource.
+The `kind` (in combination the `apiGroup`) of the parameters
+refers to a cluster-scoped API (possibly a custom resource), and
+the `name` of the parameters identifies a specific cluster scoped
+resource for that API.
+
+For example:
+```yaml
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  name: external-lb-1
+spec:
+  controller: example.com/ingress-controller
+  parameters:
+    # The parameters for this IngressClass are specified in a
+    # ClusterIngressParameter (API group k8s.example.net) named
+    # "external-config-1". This definition tells Kubernetes to
+    # look for a cluster-scoped parameter resource.
+    scope: Cluster
+    apiGroup: k8s.example.net
+    kind: ClusterIngressParameter
+    name: external-config-1
+```
+{{% /tab %}}
+{{% tab name="Namespaced" %}}
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
+
+If you set the `.spec.parameters` field and set
+`.spec.parameters.scope` to `Namespace`, then the IngressClass refers
+to a namespaced-scoped resource. You must also set the `namespace`
+field within `.spec.parameters` to the namespace that contains
+the parameters you want to use.
+
+The `kind` (in combination the `apiGroup`) of the parameters
+refers to a namespaced API (for example: ConfigMap), and
+the `name` of the parameters identifies a specific resource
+in the namespace you specified in `namespace`.
+
+Namespace-scoped parameters help the cluster operator delegate control over the
+configuration (for example: load balancer settings, API gateway definition)
+that is used for a workload. If you used a cluster-scoped parameter then either:
+
+- the cluster operator team needs to approve a different team's changes every
+  time there's a new configuration change being applied.
+- the cluster operator must define specific access controls, such as
+  [RBAC](/docs/reference/access-authn-authz/rbac/) roles and bindings, that let
+  the application team make changes to the cluster-scoped parameters resource.
+
+The IngressClass API itself is always cluster-scoped.
+
+Here is an example of an IngressClass that refers to parameters that are
+namespaced:
+```yaml
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  name: external-lb-2
+spec:
+  controller: example.com/ingress-controller
+  parameters:
+    # The parameters for this IngressClass are specified in an
+    # IngressParameter (API group k8s.example.com) named "external-config",
+    # that's in the "external-configuration" namespace.
+    scope: Namespace
+    apiGroup: k8s.example.com
+    kind: IngressParameter
+    namespace: external-configuration
+    name: external-config
+```
+
+{{% /tab %}}
+{{< /tabs >}}
 
 ### Deprecated annotation
 
@@ -266,6 +339,14 @@ an `ingressClassName` specified. You can resolve this by ensuring that at most 1
 IngressClass is marked as default in your cluster.
 {{< /caution >}}
 
+There are some ingress controllers, that work without the definition of a
+default `IngressClass`. For example, the Ingress-NGINX controller can be
+configured with a [flag](https://kubernetes.github.io/ingress-nginx/#what-is-the-flag-watch-ingress-without-class)
+`--watch-ingress-without-class`. It is [recommended](https://kubernetes.github.io/ingress-nginx/#i-have-only-one-instance-of-the-ingresss-nginx-controller-in-my-cluster-what-should-i-do)  though, to specify the
+default `IngressClass`:
+
+{{< codenew file="service/networking/default-ingressclass.yaml" >}}
+
 ## Types of Ingress
 
 ### Ingress backed by a single Service {#single-service-ingress}
@@ -302,25 +383,8 @@ A fanout configuration routes traffic from a single IP address to more than one
 based on the HTTP URI being requested. An Ingress allows you to keep the number of load balancers
 down to a minimum. For example, a setup like:
 
-{{< mermaid >}}
-graph LR;
-  client([client])-. Ingress-managed <br> load balancer .->ingress[Ingress, 178.91.123.132];
-  ingress-->|/foo|service1[Service service1:4200];
-  ingress-->|/bar|service2[Service service2:8080];
-  subgraph cluster
-  ingress;
-  service1-->pod1[Pod];
-  service1-->pod2[Pod];
-  service2-->pod3[Pod];
-  service2-->pod4[Pod];
-  end
-  classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-  classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-  classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-  class ingress,service1,service2,pod1,pod2,pod3,pod4 k8s;
-  class client plain;
-  class cluster cluster;
-{{</ mermaid >}}
+{{< figure src="/docs/images/ingressFanOut.svg" alt="ingress-fanout-diagram" class="diagram-large" caption="Figure. Ingress Fan Out" link="https://mermaid.live/edit#pako:eNqNUslOwzAQ_RXLvYCUhMQpUFzUUzkgcUBwbHpw4klr4diR7bCo8O8k2FFbFomLPZq3jP00O1xpDpjijWHtFt09zAuFUCUFKHey8vf6NE7QrdoYsDZumGIb4Oi6NAskNeOoZJKpCgxK4oXwrFVgRyi7nCVXWZKRPMlysv5yD6Q4Xryf1Vq_WzDPooJs9egLNDbolKTpT03JzKgh3zWEztJZ0Niu9L-qZGcdmAMfj4cxvWmreba613z9C0B-AMQD-V_AdA-A4j5QZu0SatRKJhSqhZR0wjmPrDP6CeikrutQxy-Cuy2dtq9RpaU2dJKm6fzI5Glmg0VOLio4_5dLjx27hFSC015KJ2VZHtuQvY2fuHcaE43G0MaCREOow_FV5cMxHZ5-oPX75UM5avuXhXuOI9yAaZjg_aLuBl6B3RYaKDDtSw4166QrcKE-emrXcubghgunDaY1kxYizDqnH99UhakzHYykpWD9hjS--fEJoIELqQ" >}}
+
 
 would require an Ingress such as:
 
@@ -364,25 +428,7 @@ you are using, you may need to create a default-http-backend
 
 Name-based virtual hosts support routing HTTP traffic to multiple host names at the same IP address.
 
-{{< mermaid >}}
-graph LR;
-  client([client])-. Ingress-managed <br> load balancer .->ingress[Ingress, 178.91.123.132];
-  ingress-->|Host: foo.bar.com|service1[Service service1:80];
-  ingress-->|Host: bar.foo.com|service2[Service service2:80];
-  subgraph cluster
-  ingress;
-  service1-->pod1[Pod];
-  service1-->pod2[Pod];
-  service2-->pod3[Pod];
-  service2-->pod4[Pod];
-  end
-  classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-  classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-  classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-  class ingress,service1,service2,pod1,pod2,pod3,pod4 k8s;
-  class client plain;
-  class cluster cluster;
-{{</ mermaid >}}
+{{< figure src="/docs/images/ingressNameBased.svg" alt="ingress-namebase-diagram" class="diagram-large" caption="Figure. Ingress Name Based Virtual hosting" link="https://mermaid.live/edit#pako:eNqNkl9PwyAUxb8KYS-atM1Kp05m9qSJJj4Y97jugcLtRqTQAPVPdN_dVlq3qUt8gZt7zvkBN7xjbgRgiteW1Rt0_zjLNUJcSdD-ZBn21WmcoDu9tuBcXDHN1iDQVWHnSBkmUMEU0xwsSuK5DK5l745QejFNLtMkJVmSZmT1Re9NcTz_uDXOU1QakxTMJtxUHw7ss-SQLhehQEODTsdH4l20Q-zFyc84-Y67pghv5apxHuweMuj9eS2_NiJdPhix-kMgvwQShOyYMNkJoEUYM3PuGkpUKyY1KqVSdCSEiJy35gnoqCzLvo5fpPAbOqlfI26UsXQ0Ho9nB5CnqesRGTnncPYvSqsdUvqp9KRdlI6KojjEkB0mnLgjDRONhqENBYm6oXbLV5V1y6S7-l42_LowlIN2uFm_twqOcAW2YlK0H_i9c-bYb6CCHNO2FFCyRvkc53rbWptaMA83QnpjMS2ZchBh1nizeNMcU28bGEzXkrV_pArN7Sc0rBTu" >}}
 
 
 The following Ingress tells the backing load balancer to route requests based on
@@ -395,9 +441,7 @@ web traffic to the IP address of your Ingress controller can be matched without
 virtual host being required.
 
 For example, the following Ingress routes traffic
-requested for `first.bar.com` to `service1`, `second.bar.com` to `service2`, and any traffic
-to the IP address without a hostname defined in request (that is, without a request header being
-presented) to `service3`.
+requested for `first.bar.com` to `service1`, `second.bar.com` to `service2`, and any traffic whose request host header doesn't match `first.bar.com` and `second.bar.com` to `service3`.
 
 {{< codenew file="service/networking/name-virtual-host-ingress-no-third-host.yaml" >}}
 
@@ -570,6 +614,6 @@ You can expose a Service in multiple ways that don't directly involve the Ingres
 
 ## {{% heading "whatsnext" %}}
 
-* Learn about the [Ingress API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#ingress-v1beta1-networking-k8s-io)
+* Learn about the [Ingress](/docs/reference/kubernetes-api/service-resources/ingress-v1/) API
 * Learn about [Ingress controllers](/docs/concepts/services-networking/ingress-controllers/)
 * [Set up Ingress on Minikube with the NGINX Controller](/docs/tasks/access-application-cluster/ingress-minikube/)
diff --git a/content/en/docs/concepts/services-networking/network-policies.md b/content/en/docs/concepts/services-networking/network-policies.md
index e3f3a203b7..9a97abfb5b 100644
--- a/content/en/docs/concepts/services-networking/network-policies.md
+++ b/content/en/docs/concepts/services-networking/network-policies.md
@@ -10,7 +10,7 @@ weight: 50
 
 <!-- overview -->
 
-If you want to control traffic flow at the IP address or port level (OSI layer 3 or 4), then you might consider using Kubernetes NetworkPolicies for particular applications in your cluster.  NetworkPolicies are an application-centric construct which allow you to specify how a {{< glossary_tooltip text="pod" term_id="pod">}} is allowed to communicate with various network "entities" (we use the word "entity" here to avoid overloading the more common terms such as "endpoints" and "services", which have specific Kubernetes connotations) over the network.
+If you want to control traffic flow at the IP address or port level (OSI layer 3 or 4), then you might consider using Kubernetes NetworkPolicies for particular applications in your cluster.  NetworkPolicies are an application-centric construct which allow you to specify how a {{< glossary_tooltip text="pod" term_id="pod">}} is allowed to communicate with various network "entities" (we use the word "entity" here to avoid overloading the more common terms such as "endpoints" and "services", which have specific Kubernetes connotations) over the network. NetworkPolicies apply to a connection with a pod on one or both ends, and are not relevant to other connections.
 
 The entities that a Pod can communicate with are identified through a combination of the following 3 identifiers:
 
@@ -27,15 +27,17 @@ Meanwhile, when IP based NetworkPolicies are created, we define policies based o
 
 Network policies are implemented by the [network plugin](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/). To use network policies, you must be using a networking solution which supports NetworkPolicy. Creating a NetworkPolicy resource without a controller that implements it will have no effect.
 
-## Isolated and Non-isolated Pods
+## The Two Sorts of Pod Isolation
 
-By default, pods are non-isolated; they accept traffic from any source.
+There are two sorts of isolation for a pod: isolation for egress, and isolation for ingress.  They concern what connections may be established.  "Isolation" here is not absolute, rather it means "some restrictions apply".  The alternative, "non-isolated for $direction", means that no restrictions apply in the stated direction.  The two sorts of isolation (or not) are declared independently, and are both relevant for a connection from one pod to another.
 
-Pods become isolated by having a NetworkPolicy that selects them. Once there is any NetworkPolicy in a namespace selecting a particular pod, that pod will reject any connections that are not allowed by any NetworkPolicy. (Other pods in the namespace that are not selected by any NetworkPolicy will continue to accept all traffic.)
+By default, a pod is non-isolated for egress; all outbound connections are allowed.  A pod is isolated for egress if there is any NetworkPolicy that both selects the pod and has "Egress" in its `policyTypes`; we say that such a policy applies to the pod for egress.  When a pod is isolated for egress, the only allowed connections from the pod are those allowed by the `egress` list of some NetworkPolicy that applies to the pod for egress.  The effects of those `egress` lists combine additively.
 
-Network policies do not conflict; they are additive. If any policy or policies select a pod, the pod is restricted to what is allowed by the union of those policies' ingress/egress rules. Thus, order of evaluation does not affect the policy result.
+By default, a pod is non-isolated for ingress; all inbound connections are allowed.  A pod is isolated for ingress if there is any NetworkPolicy that both selects the pod and has "Ingress" in its `policyTypes`; we say that such a policy applies to the pod for ingress.  When a pod is isolated for ingress, the only allowed connections into the pod are those from the pod's node and those allowed by the `ingress` list of some NetworkPolicy that applies to the pod for ingress.  The effects of those `ingress` lists combine additively.
 
-For a network flow between two pods to be allowed, both the egress policy on the source pod and the ingress policy on the destination pod need to allow the traffic. If either the egress policy on the source, or the ingress policy on the destination denies the traffic, the traffic will be denied.
+Network policies do not conflict; they are additive. If any policy or policies apply to a given pod for a given direction, the connections allowed in that direction from that pod is the union of what the applicable policies allow. Thus, order of evaluation does not affect the policy result.
+
+For a connection from a source pod to a destination pod to be allowed, both the egress policy on the source pod and the ingress policy on the destination pod need to allow the connection. If either side does not allow the connection, it will not happen.
 
 ## The NetworkPolicy resource {#networkpolicy-resource}
 
@@ -43,42 +45,7 @@ See the [NetworkPolicy](/docs/reference/generated/kubernetes-api/{{< param "vers
 
 An example NetworkPolicy might look like this:
 
-```yaml
-apiVersion: networking.k8s.io/v1
-kind: NetworkPolicy
-metadata:
-  name: test-network-policy
-  namespace: default
-spec:
-  podSelector:
-    matchLabels:
-      role: db
-  policyTypes:
-  - Ingress
-  - Egress
-  ingress:
-  - from:
-    - ipBlock:
-        cidr: 172.17.0.0/16
-        except:
-        - 172.17.1.0/24
-    - namespaceSelector:
-        matchLabels:
-          project: myproject
-    - podSelector:
-        matchLabels:
-          role: frontend
-    ports:
-    - protocol: TCP
-      port: 6379
-  egress:
-  - to:
-    - ipBlock:
-        cidr: 10.0.0.0/24
-    ports:
-    - protocol: TCP
-      port: 5978
-```
+{{< codenew file="service/networking/networkpolicy.yaml" >}}
 
 {{< note >}}
 POSTing this to the API server for your cluster will have no effect unless your chosen networking solution supports network policy.
@@ -87,7 +54,7 @@ POSTing this to the API server for your cluster will have no effect unless your
 __Mandatory Fields__: As with all other Kubernetes config, a NetworkPolicy
 needs `apiVersion`, `kind`, and `metadata` fields.  For general information
 about working with config files, see
-[Configure Containers Using a ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/),
+[Configure a Pod to Use a ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/),
 and [Object Management](/docs/concepts/overview/working-with-objects/object-management).
 
 __spec__: NetworkPolicy [spec](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#spec-and-status) has all the information needed to define a particular network policy in the given namespace.
@@ -176,18 +143,20 @@ in that namespace.
 
 ### Default deny all ingress traffic
 
-You can create a "default" isolation policy for a namespace by creating a NetworkPolicy that selects all pods but does not allow any ingress traffic to those pods.
+You can create a "default" ingress isolation policy for a namespace by creating a NetworkPolicy that selects all pods but does not allow any ingress traffic to those pods.
 
 {{< codenew file="service/networking/network-policy-default-deny-ingress.yaml" >}}
 
-This ensures that even pods that aren't selected by any other NetworkPolicy will still be isolated. This policy does not change the default egress isolation behavior.
+This ensures that even pods that aren't selected by any other NetworkPolicy will still be isolated for ingress. This policy does not affect isolation for egress from any pod.
 
-### Default allow all ingress traffic
+### Allow all ingress traffic
 
-If you want to allow all traffic to all pods in a namespace (even if policies are added that cause some pods to be treated as "isolated"), you can create a policy that explicitly allows all traffic in that namespace.
+If you want to allow all incoming connections to all pods in a namespace, you can create a policy that explicitly allows that.
 
 {{< codenew file="service/networking/network-policy-allow-all-ingress.yaml" >}}
 
+With this policy in place, no additional policy or policies can cause any incoming connection to those pods to be denied.  This policy has no effect on isolation for egress from any pod.
+
 ### Default deny all egress traffic
 
 You can create a "default" egress isolation policy for a namespace by creating a NetworkPolicy that selects all pods but does not allow any egress traffic from those pods.
@@ -195,14 +164,16 @@ You can create a "default" egress isolation policy for a namespace by creating a
 {{< codenew file="service/networking/network-policy-default-deny-egress.yaml" >}}
 
 This ensures that even pods that aren't selected by any other NetworkPolicy will not be allowed egress traffic. This policy does not
-change the default ingress isolation behavior.
+change the ingress isolation behavior of any pod.
 
-### Default allow all egress traffic
+### Allow all egress traffic
 
-If you want to allow all traffic from all pods in a namespace (even if policies are added that cause some pods to be treated as "isolated"), you can create a policy that explicitly allows all egress traffic in that namespace.
+If you want to allow all connections from all pods in a namespace, you can create a policy that explicitly allows all outgoing connections from pods in that namespace.
 
 {{< codenew file="service/networking/network-policy-allow-all-egress.yaml" >}}
 
+With this policy in place, no additional policy or policies can cause any outgoing connection from those pods to be denied.  This policy has no effect on isolation for ingress to any pod.
+
 ### Default deny all ingress and all egress traffic
 
 You can create a "default" policy for a namespace which prevents all ingress AND egress traffic by creating the following NetworkPolicy in that namespace.
@@ -261,7 +232,7 @@ The following restrictions apply when using this field:
 at a cluster level, you (or your cluster administrator) need to disable the 
 `NetworkPolicyEndPort` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) 
 for the API server with `--feature-gates=NetworkPolicyEndPort=false,…`.
-* The `endPort` field must be equal than or greater to the `port` field.
+* The `endPort` field must be equal to or greater than the `port` field.
 * `endPort` can only be defined if `port` is also defined.
 * Both ports must be numeric.
 
@@ -275,7 +246,7 @@ the policy will be applied only for the single `port` field.
 
 ## Targeting a Namespace by its name
 
-{{< feature-state state="beta" for_k8s_version="1.21" >}}
+{{< feature-state for_k8s_version="1.22" state="stable" >}}
 
 The Kubernetes control plane sets an immutable label `kubernetes.io/metadata.name` on all
 namespaces, provided that the `NamespaceDefaultLabelName`
@@ -287,7 +258,7 @@ standardized label to target a specific namespace.
 
 ## What you can't do with network policies (at least, not yet)
 
-As of Kubernetes {{< skew latestVersion >}}, the following functionality does not exist in the NetworkPolicy API, but you might be able to implement workarounds using Operating System components (such as SELinux, OpenVSwitch, IPTables, and so on) or Layer 7 technologies (Ingress controllers, Service Mesh implementations) or admission controllers.  In case you are new to network security in Kubernetes, its worth noting that the following User Stories cannot (yet) be implemented using the NetworkPolicy API.
+As of Kubernetes {{< skew currentVersion >}}, the following functionality does not exist in the NetworkPolicy API, but you might be able to implement workarounds using Operating System components (such as SELinux, OpenVSwitch, IPTables, and so on) or Layer 7 technologies (Ingress controllers, Service Mesh implementations) or admission controllers.  In case you are new to network security in Kubernetes, its worth noting that the following User Stories cannot (yet) be implemented using the NetworkPolicy API.
 
 - Forcing internal cluster traffic to go through a common gateway (this might be best served with a service mesh or other proxy).
 - Anything TLS related (use a service mesh or ingress controller for this).
diff --git a/content/en/docs/concepts/services-networking/service-traffic-policy.md b/content/en/docs/concepts/services-networking/service-traffic-policy.md
index fb55a3d833..8755b5298b 100644
--- a/content/en/docs/concepts/services-networking/service-traffic-policy.md
+++ b/content/en/docs/concepts/services-networking/service-traffic-policy.md
@@ -9,7 +9,7 @@ weight: 45
 
 <!-- overview -->
 
-{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
 
 _Service Internal Traffic Policy_ enables internal traffic restrictions to only route
 internal traffic to endpoints within the node the traffic originated from. The
@@ -20,9 +20,9 @@ cluster. This can help to reduce costs and improve performance.
 
 ## Using Service Internal Traffic Policy
 
-Once you have enabled the `ServiceInternalTrafficPolicy`
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/),
-you can enable an internal-only traffic policy for a
+The `ServiceInternalTrafficPolicy` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+is a Beta feature and enabled by default.
+When the feature is enabled, you can enable the internal-only traffic policy for a
 {{< glossary_tooltip text="Services" term_id="service" >}}, by setting its
 `.spec.internalTrafficPolicy` to `Local`.
 This tells kube-proxy to only use node local endpoints for cluster internal traffic.
@@ -43,7 +43,7 @@ metadata:
   name: my-service
 spec:
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   ports:
     - protocol: TCP
       port: 80
@@ -60,14 +60,8 @@ considered.
 When the [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
 `ServiceInternalTrafficPolicy` is enabled, `spec.internalTrafficPolicy` defaults to "Cluster".
 
-## Constraints
-
-* Service Internal Traffic Policy is not used when `externalTrafficPolicy` is set
-  to `Local` on a Service. It is possible to use both features in the same cluster
-  on different Services, just not on the same Service.
-
 ## {{% heading "whatsnext" %}}
 
-* Read about [enabling Topology Aware Hints](/docs/tasks/administer-cluster/enabling-topology-aware-hints)
+* Read about [Topology Aware Hints](/docs/concepts/services-networking/topology-aware-hints)
 * Read about [Service External Traffic Policy](/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip)
 * Read [Connecting Applications with Services](/docs/concepts/services-networking/connect-applications-service/)
diff --git a/content/en/docs/concepts/services-networking/service.md b/content/en/docs/concepts/services-networking/service.md
index ee1c7514da..eda3b6b9b3 100644
--- a/content/en/docs/concepts/services-networking/service.md
+++ b/content/en/docs/concepts/services-networking/service.md
@@ -25,7 +25,7 @@ and can load-balance across them.
 ## Motivation
 
 Kubernetes {{< glossary_tooltip term_id="pod" text="Pods" >}} are created and destroyed
-to match the state of your cluster. Pods are nonpermanent resources.
+to match the desired state of your cluster. Pods are nonpermanent resources.
 If you use a {{< glossary_tooltip term_id="deployment" >}} to run your app,
 it can create and destroy Pods dynamically.
 
@@ -75,7 +75,7 @@ The name of a Service object must be a valid
 [RFC 1035 label name](/docs/concepts/overview/working-with-objects/names#rfc-1035-label-names).
 
 For example, suppose you have a set of Pods where each listens on TCP port 9376
-and contains a label `app=MyApp`:
+and contains a label `app.kubernetes.io/name=MyApp`:
 
 ```yaml
 apiVersion: v1
@@ -84,7 +84,7 @@ metadata:
   name: my-service
 spec:
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   ports:
     - protocol: TCP
       port: 80
@@ -92,7 +92,7 @@ spec:
 ```
 
 This specification creates a new Service object named "my-service", which
-targets TCP port 9376 on any Pod with the `app=MyApp` label.
+targets TCP port 9376 on any Pod with the `app.kubernetes.io/name=MyApp` label.
 
 Kubernetes assigns this Service an IP address (sometimes called the "cluster IP"),
 which is used by the Service proxies
@@ -109,12 +109,45 @@ field.
 {{< /note >}}
 
 Port definitions in Pods have names, and you can reference these names in the
-`targetPort` attribute of a Service. This works even if there is a mixture
-of Pods in the Service using a single configured name, with the same network
-protocol available via different port numbers.
-This offers a lot of flexibility for deploying and evolving your Services.
-For example, you can change the port numbers that Pods expose in the next
-version of your backend software, without breaking clients.
+`targetPort` attribute of a Service. For example, we can bind the `targetPort`
+of the Service to the Pod port in the following way:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: nginx
+  labels:
+    app.kubernetes.io/name: proxy
+spec:
+  containers:
+  - name: nginx
+    image: nginx:stable
+    ports:
+      - containerPort: 80
+        name: http-web-svc
+
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: nginx-service
+spec:
+  selector:
+    app.kubernetes.io/name: proxy
+  ports:
+  - name: name-of-service-port
+    protocol: TCP
+    port: 80
+    targetPort: http-web-svc
+```
+
+
+This works even if there is a mixture of Pods in the Service using a single
+configured name, with the same network protocol available via different
+port numbers. This offers a lot of flexibility for deploying and evolving
+your Services. For example, you can change the port numbers that Pods expose
+in the next version of your backend software, without breaking clients.
 
 The default protocol for Services is TCP; you can also use any other
 [supported protocol](#protocol-support).
@@ -125,9 +158,9 @@ Each port definition can have the same `protocol`, or a different one.
 
 ### Services without selectors
 
-Services most commonly abstract access to Kubernetes Pods, but they can also
-abstract other kinds of backends.
-For example:
+Services most commonly abstract access to Kubernetes Pods thanks to the selector,
+but when used with a corresponding Endpoints object and without a selector, the Service can abstract other kinds of backends,
+including ones that run outside the cluster. For example:
 
 * You want to have an external database cluster in production, but in your
   test environment you use your own databases.
@@ -159,6 +192,7 @@ where it's running, by adding an Endpoints object manually:
 apiVersion: v1
 kind: Endpoints
 metadata:
+  # the name here should match the name of the Service
   name: my-service
 subsets:
   - addresses:
@@ -170,6 +204,10 @@ subsets:
 The name of the Endpoints object must be a valid
 [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 
+When you create an [Endpoints](/docs/reference/kubernetes-api/service-resources/endpoints-v1/)
+object for a Service, you set the name of the new object to be the same as that
+of the Service.
+
 {{< note >}}
 The endpoint IPs _must not_ be: loopback (127.0.0.0/8 for IPv4, ::1/128 for IPv6), or
 link-local (169.254.0.0/16 and 224.0.0.0/24 for IPv4, fe80::/64 for IPv6).
@@ -183,6 +221,13 @@ Accessing a Service without a selector works the same as if it had a selector.
 In the example above, traffic is routed to the single endpoint defined in
 the YAML: `192.0.2.42:9376` (TCP).
 
+{{< note >}}
+The Kubernetes API server does not allow proxying to endpoints that are not mapped to
+pods. Actions such as `kubectl proxy <service-name>` where the service has no
+selector will fail due to this constraint. This prevents the Kubernetes API server
+from being used as a proxy to endpoints the caller may not be authorized to access.
+{{< /note >}}
+
 An ExternalName Service is a special case of Service that does not have
 selectors and uses DNS names instead. For more information, see the
 [ExternalName](#externalname) section later in this document.
@@ -244,7 +289,7 @@ There are a few reasons for using proxying for Services:
 
 Later in this page you can read about various kube-proxy implementations work. Overall,
 you should note that, when running `kube-proxy`, kernel level rules may be
-modified (for example, iptables rules might get created), which won't get cleaned up, 
+modified (for example, iptables rules might get created), which won't get cleaned up,
 in some cases until you reboot.  Thus, running kube-proxy is something that should
 only be done by an administrator which understands the consequences of having a
 low level, privileged network proxying service on a computer.  Although the `kube-proxy`
@@ -254,9 +299,14 @@ thus is only available to use as-is.
 ### Configuration
 
 Note that the kube-proxy starts up in different modes, which are determined by its configuration.
-- The kube-proxy's configuration is done via a ConfigMap, and the ConfigMap for kube-proxy effectively deprecates the behaviour for almost all of the flags for the kube-proxy.
+- The kube-proxy's configuration is done via a ConfigMap, and the ConfigMap for kube-proxy
+  effectively deprecates the behaviour for almost all of the flags for the kube-proxy.
 - The ConfigMap for the kube-proxy does not support live reloading of configuration.
-- The ConfigMap parameters for the kube-proxy cannot all be validated and verified on startup.  For example, if your operating system doesn't allow you to run iptables commands, the standard kernel kube-proxy implementation will not work.  Likewise, if you have an operating system which doesn't support `netsh`, it will not run in Windows userspace mode.
+- The ConfigMap parameters for the kube-proxy cannot all be validated and verified on startup.
+  For example, if your operating system doesn't allow you to run iptables commands,
+  the standard kernel kube-proxy implementation will not work.
+  Likewise, if you have an operating system which doesn't support `netsh`,
+  it will not run in Windows userspace mode.
 
 ### User space proxy mode {#proxy-mode-userspace}
 
@@ -354,6 +404,10 @@ You can also set the maximum session sticky time by setting
 `service.spec.sessionAffinityConfig.clientIP.timeoutSeconds` appropriately.
 (the default value is 10800, which works out to be 3 hours).
 
+{{< note >}}
+On Windows, setting the maximum session sticky time for Services is not supported.
+{{< /note >}}
+
 ## Multi-Port Services
 
 For some Services, you need to expose more than one port.
@@ -369,7 +423,7 @@ metadata:
   name: my-service
 spec:
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   ports:
     - name: http
       protocol: TCP
@@ -407,14 +461,14 @@ server will return a 422 HTTP status code to indicate that there's a problem.
 
 You can set the `spec.externalTrafficPolicy` field to control how traffic from external sources is routed.
 Valid values are `Cluster` and `Local`. Set the field to `Cluster` to route external traffic to all ready endpoints
-and `Local` to only route to ready node-local endpoints. If the traffic policy is `Local` and there are are no node-local
+and `Local` to only route to ready node-local endpoints. If the traffic policy is `Local` and there are no node-local
 endpoints, the kube-proxy does not forward any traffic for the relevant Service.
 
 {{< note >}}
 {{< feature-state for_k8s_version="v1.22" state="alpha" >}}
 If you enable the `ProxyTerminatingEndpoints`
 [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
-`ProxyTerminatingEndpoints` for the kube-proxy, the kube-proxy checks if the node
+for the kube-proxy, the kube-proxy checks if the node
 has local endpoints and whether or not all the local endpoints are marked as terminating.
 If there are local endpoints and **all** of those are terminating, then the kube-proxy ignores
 any external traffic policy of `Local`. Instead, whilst the node-local endpoints remain as all
@@ -443,11 +497,11 @@ variables and DNS.
 ### Environment variables
 
 When a Pod is run on a Node, the kubelet adds a set of environment variables
-for each active Service.  It supports both [Docker links
-compatible](https://docs.docker.com/userguide/dockerlinks/) variables (see
-[makeLinkVariables](https://releases.k8s.io/{{< param "fullversion" >}}/pkg/kubelet/envvars/envvars.go#L49))
-and simpler `{SVCNAME}_SERVICE_HOST` and `{SVCNAME}_SERVICE_PORT` variables,
+for each active Service. It adds `{SVCNAME}_SERVICE_HOST` and `{SVCNAME}_SERVICE_PORT` variables,
 where the Service name is upper-cased and dashes are converted to underscores.
+It also supports variables (see [makeLinkVariables](https://github.com/kubernetes/kubernetes/blob/dd2d12f6dc0e654c15d5db57a5f9f6ba61192726/pkg/kubelet/envvars/envvars.go#L72))
+that are compatible with Docker Engine's
+"_[legacy container links](https://docs.docker.com/network/links/)_" feature.
 
 For example, the Service `redis-master` which exposes TCP port 6379 and has been
 allocated cluster IP address 10.0.0.11, produces the following environment
@@ -544,7 +598,7 @@ The default is `ClusterIP`.
 * `ClusterIP`: Exposes the Service on a cluster-internal IP. Choosing this value
   makes the Service only reachable from within the cluster. This is the
   default `ServiceType`.
-* [`NodePort`](#nodeport): Exposes the Service on each Node's IP at a static port
+* [`NodePort`](#type-nodeport): Exposes the Service on each Node's IP at a static port
   (the `NodePort`). A `ClusterIP` Service, to which the `NodePort` Service
   routes, is automatically created.  You'll be able to contact the `NodePort` Service,
   from outside the cluster,
@@ -559,10 +613,12 @@ The default is `ClusterIP`.
   to use the `ExternalName` type.
   {{< /note >}}
 
-You can also use [Ingress](/docs/concepts/services-networking/ingress/) to expose your Service. Ingress is not a Service type, but it acts as the entry point for your cluster. It lets you consolidate your routing rules
-into a single resource as it can expose multiple services under the same IP address.
+You can also use [Ingress](/docs/concepts/services-networking/ingress/) to expose your Service.
+Ingress is not a Service type, but it acts as the entry point for your cluster.
+It lets you consolidate your routing rules into a single resource as it can expose multiple
+services under the same IP address.
 
-### Type NodePort {#nodeport}
+### Type NodePort {#type-nodeport}
 
 If you set the `type` field to `NodePort`, the Kubernetes control plane
 allocates a port from a range specified by `--service-node-port-range` flag (default: 30000-32767).
@@ -575,9 +631,14 @@ field of the
 [kube-proxy configuration file](/docs/reference/config-api/kube-proxy-config.v1alpha1/)
 to particular IP block(s).
 
-This flag takes a comma-delimited list of IP blocks (e.g. `10.0.0.0/8`, `192.0.2.0/25`) to specify IP address ranges that kube-proxy should consider as local to this node.
+This flag takes a comma-delimited list of IP blocks (e.g. `10.0.0.0/8`, `192.0.2.0/25`)
+to specify IP address ranges that kube-proxy should consider as local to this node.
 
-For example, if you start kube-proxy with the `--nodeport-addresses=127.0.0.0/8` flag, kube-proxy only selects the loopback interface for NodePort Services. The default for `--nodeport-addresses` is an empty list. This means that kube-proxy should consider all available network interfaces for NodePort. (That's also compatible with earlier Kubernetes releases).
+For example, if you start kube-proxy with the `--nodeport-addresses=127.0.0.0/8` flag,
+kube-proxy only selects the loopback interface for NodePort Services.
+The default for `--nodeport-addresses` is an empty list.
+his means that kube-proxy should consider all available network interfaces for NodePort.
+(That's also compatible with earlier Kubernetes releases).
 
 If you want a specific port number, you can specify a value in the `nodePort`
 field. The control plane will either allocate you that port or report that
@@ -605,7 +666,7 @@ metadata:
 spec:
   type: NodePort
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   ports:
       # By default and for convenience, the `targetPort` is set to the same value as the `port` field.
     - port: 80
@@ -631,7 +692,7 @@ metadata:
   name: my-service
 spec:
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   ports:
     - protocol: TCP
       port: 80
@@ -644,7 +705,8 @@ status:
     - ip: 192.0.2.127
 ```
 
-Traffic from the external load balancer is directed at the backend Pods. The cloud provider decides how it is load balanced.
+Traffic from the external load balancer is directed at the backend Pods.
+The cloud provider decides how it is load balanced.
 
 Some cloud providers allow you to specify the `loadBalancerIP`. In those cases, the load-balancer is created
 with the user-specified `loadBalancerIP`. If the `loadBalancerIP` field is not specified,
@@ -659,52 +721,57 @@ to create a static type public IP address resource. This public IP address resou
 be in the same resource group of the other automatically created resources of the cluster.
 For example, `MC_myResourceGroup_myAKSCluster_eastus`.
 
-Specify the assigned IP address as loadBalancerIP. Ensure that you have updated the securityGroupName in the cloud provider configuration file. For information about troubleshooting `CreatingLoadBalancerFailed` permission issues see, [Use a static IP address with the Azure Kubernetes Service (AKS) load balancer](https://docs.microsoft.com/en-us/azure/aks/static-ip) or [CreatingLoadBalancerFailed on AKS cluster with advanced networking](https://github.com/Azure/AKS/issues/357).
+Specify the assigned IP address as loadBalancerIP. Ensure that you have updated the
+`securityGroupName` in the cloud provider configuration file.
+For information about troubleshooting `CreatingLoadBalancerFailed` permission issues see,
+[Use a static IP address with the Azure Kubernetes Service (AKS) load balancer](https://docs.microsoft.com/en-us/azure/aks/static-ip)
+or [CreatingLoadBalancerFailed on AKS cluster with advanced networking](https://github.com/Azure/AKS/issues/357).
 
 {{< /note >}}
 
 #### Load balancers with mixed protocol types
 
-{{< feature-state for_k8s_version="v1.20" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.24" state="beta" >}}
 
 By default, for LoadBalancer type of Services, when there is more than one port defined, all
 ports must have the same protocol, and the protocol must be one which is supported
 by the cloud provider.
 
-If the feature gate `MixedProtocolLBService` is enabled for the kube-apiserver it is allowed to use different protocols when there is more than one port defined.
+The feature gate `MixedProtocolLBService` (enabled by default for the kube-apiserver as of v1.24) allows the use of
+different protocols for LoadBalancer type of Services, when there is more than one port defined.
 
 {{< note >}}
 
-The set of protocols that can be used for LoadBalancer type of Services is still defined by the cloud provider.
+The set of protocols that can be used for LoadBalancer type of Services is still defined by the cloud provider. If a
+cloud provider does not support mixed protocols they will provide only a single protocol.
 
 {{< /note >}}
 
 #### Disabling load balancer NodePort allocation {#load-balancer-nodeport-allocation}
 
-{{< feature-state for_k8s_version="v1.20" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
-Starting in v1.20, you can optionally disable node port allocation for a Service Type=LoadBalancer by setting
+You can optionally disable node port allocation for a Service of `type=LoadBalancer`, by setting
 the field `spec.allocateLoadBalancerNodePorts` to `false`. This should only be used for load balancer implementations
 that route traffic directly to pods as opposed to using node ports. By default, `spec.allocateLoadBalancerNodePorts`
 is `true` and type LoadBalancer Services will continue to allocate node ports. If `spec.allocateLoadBalancerNodePorts`
-is set to `false` on an existing Service with allocated node ports, those node ports will NOT be de-allocated automatically.
+is set to `false` on an existing Service with allocated node ports, those node ports will **not** be de-allocated automatically.
 You must explicitly remove the `nodePorts` entry in every Service port to de-allocate those node ports.
-You must enable the `ServiceLBNodePortControl` feature gate to use this field.
 
 #### Specifying class of load balancer implementation {#load-balancer-class}
 
-{{< feature-state for_k8s_version="v1.22" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
-`spec.loadBalancerClass` enables you to use a load balancer implementation other than the cloud provider default. This feature is available from v1.21, you must enable the `ServiceLoadBalancerClass` feature gate to use this field in v1.21, and the feature gate is enabled by default from v1.22 onwards.
+`spec.loadBalancerClass` enables you to use a load balancer implementation other than the cloud provider default.
 By default, `spec.loadBalancerClass` is `nil` and a `LoadBalancer` type of Service uses
 the cloud provider's default load balancer implementation if the cluster is configured with
-a cloud provider using the `--cloud-provider` component flag. 
+a cloud provider using the `--cloud-provider` component flag.
 If `spec.loadBalancerClass` is specified, it is assumed that a load balancer
 implementation that matches the specified class is watching for Services.
 Any default load balancer implementation (for example, the one provided by
 the cloud provider) will ignore Services that have this field set.
 `spec.loadBalancerClass` can be set on a Service of type `LoadBalancer` only.
-Once set, it cannot be changed. 
+Once set, it cannot be changed.
 The value of `spec.loadBalancerClass` must be a label-style identifier,
 with an optional prefix such as "`internal-vip`" or "`example.com/internal-vip`".
 Unprefixed names are reserved for end-users.
@@ -714,7 +781,8 @@ Unprefixed names are reserved for end-users.
 In a mixed environment it is sometimes necessary to route traffic from Services inside the same
 (virtual) network address block.
 
-In a split-horizon DNS environment you would need two Services to be able to route both external and internal traffic to your endpoints.
+In a split-horizon DNS environment you would need two Services to be able to route both external
+and internal traffic to your endpoints.
 
 To set an internal load balancer, add one of the following annotations to your Service
 depending on the cloud Service provider you're using.
@@ -816,6 +884,17 @@ metadata:
 [...]
 ```
 
+{{% /tab %}}
+{{% tab name="OCI" %}}
+
+```yaml
+[...]
+metadata:
+    name: my-service
+    annotations:
+        service.beta.kubernetes.io/oci-load-balancer-internal: true
+[...]
+```
 {{% /tab %}}
 {{< /tabs >}}
 
@@ -868,7 +947,9 @@ you can use the following annotations:
 In the above example, if the Service contained three ports, `80`, `443`, and
 `8443`, then `443` and `8443` would use the SSL certificate, but `80` would be proxied HTTP.
 
-From Kubernetes v1.9 onwards you can use [predefined AWS SSL policies](https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-security-policy-table.html) with HTTPS or SSL listeners for your Services.
+From Kubernetes v1.9 onwards you can use
+[predefined AWS SSL policies](https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-security-policy-table.html)
+with HTTPS or SSL listeners for your Services.
 To see which policies are available for use, you can use the `aws` command line tool:
 
 ```bash
@@ -924,14 +1005,17 @@ specifies the logical hierarchy you created for your Amazon S3 bucket.
     metadata:
       name: my-service
       annotations:
-        service.beta.kubernetes.io/aws-load-balancer-access-log-enabled: "true"
         # Specifies whether access logs are enabled for the load balancer
-        service.beta.kubernetes.io/aws-load-balancer-access-log-emit-interval: "60"
+        service.beta.kubernetes.io/aws-load-balancer-access-log-enabled: "true"
+
         # The interval for publishing the access logs. You can specify an interval of either 5 or 60 (minutes).
-        service.beta.kubernetes.io/aws-load-balancer-access-log-s3-bucket-name: "my-bucket"
+        service.beta.kubernetes.io/aws-load-balancer-access-log-emit-interval: "60"
+
         # The name of the Amazon S3 bucket where the access logs are stored
-        service.beta.kubernetes.io/aws-load-balancer-access-log-s3-bucket-prefix: "my-bucket-prefix/prod"
+        service.beta.kubernetes.io/aws-load-balancer-access-log-s3-bucket-name: "my-bucket"
+
         # The logical hierarchy you created for your Amazon S3 bucket, for example `my-bucket-prefix/prod`
+        service.beta.kubernetes.io/aws-load-balancer-access-log-s3-bucket-prefix: "my-bucket-prefix/prod"
 ```
 
 #### Connection Draining on AWS
@@ -940,7 +1024,8 @@ Connection draining for Classic ELBs can be managed with the annotation
 `service.beta.kubernetes.io/aws-load-balancer-connection-draining-enabled` set
 to the value of `"true"`. The annotation
 `service.beta.kubernetes.io/aws-load-balancer-connection-draining-timeout` can
-also be used to set maximum time, in seconds, to keep the existing connections open before deregistering the instances.
+also be used to set maximum time, in seconds, to keep the existing connections open before
+deregistering the instances.
 
 ```yaml
     metadata:
@@ -958,50 +1043,56 @@ There are other annotations to manage Classic Elastic Load Balancers that are de
     metadata:
       name: my-service
       annotations:
+        # The time, in seconds, that the connection is allowed to be idle (no data has been sent
+        # over the connection) before it is closed by the load balancer
         service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: "60"
-        # The time, in seconds, that the connection is allowed to be idle (no data has been sent over the connection) before it is closed by the load balancer
 
-        service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
         # Specifies whether cross-zone load balancing is enabled for the load balancer
+        service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
 
-        service.beta.kubernetes.io/aws-load-balancer-additional-resource-tags: "environment=prod,owner=devops"
         # A comma-separated list of key-value pairs which will be recorded as
         # additional tags in the ELB.
+        service.beta.kubernetes.io/aws-load-balancer-additional-resource-tags: "environment=prod,owner=devops"
 
-        service.beta.kubernetes.io/aws-load-balancer-healthcheck-healthy-threshold: ""
         # The number of successive successful health checks required for a backend to
         # be considered healthy for traffic. Defaults to 2, must be between 2 and 10
+        service.beta.kubernetes.io/aws-load-balancer-healthcheck-healthy-threshold: ""
 
-        service.beta.kubernetes.io/aws-load-balancer-healthcheck-unhealthy-threshold: "3"
         # The number of unsuccessful health checks required for a backend to be
         # considered unhealthy for traffic. Defaults to 6, must be between 2 and 10
+        service.beta.kubernetes.io/aws-load-balancer-healthcheck-unhealthy-threshold: "3"
 
-        service.beta.kubernetes.io/aws-load-balancer-healthcheck-interval: "20"
         # The approximate interval, in seconds, between health checks of an
         # individual instance. Defaults to 10, must be between 5 and 300
+        service.beta.kubernetes.io/aws-load-balancer-healthcheck-interval: "20"
 
-        service.beta.kubernetes.io/aws-load-balancer-healthcheck-timeout: "5"
         # The amount of time, in seconds, during which no response means a failed
         # health check. This value must be less than the service.beta.kubernetes.io/aws-load-balancer-healthcheck-interval
         # value. Defaults to 5, must be between 2 and 60
+        service.beta.kubernetes.io/aws-load-balancer-healthcheck-timeout: "5"
 
-        service.beta.kubernetes.io/aws-load-balancer-security-groups: "sg-53fae93f"
         # A list of existing security groups to be configured on the ELB created. Unlike the annotation
-        # service.beta.kubernetes.io/aws-load-balancer-extra-security-groups, this replaces all other security groups previously assigned to the ELB and also overrides the creation 
+        # service.beta.kubernetes.io/aws-load-balancer-extra-security-groups, this replaces all other
+        # security groups previously assigned to the ELB and also overrides the creation
         # of a uniquely generated security group for this ELB.
-        # The first security group ID on this list is used as a source to permit incoming traffic to target worker nodes (service traffic and health checks).
-        # If multiple ELBs are configured with the same security group ID, only a single permit line will be added to the worker node security groups, that means if you delete any
+        # The first security group ID on this list is used as a source to permit incoming traffic to
+        # target worker nodes (service traffic and health checks).
+        # If multiple ELBs are configured with the same security group ID, only a single permit line
+        # will be added to the worker node security groups, that means if you delete any
         # of those ELBs it will remove the single permit line and block access for all ELBs that shared the same security group ID.
         # This can cause a cross-service outage if not used properly
+        service.beta.kubernetes.io/aws-load-balancer-security-groups: "sg-53fae93f"
 
+        # A list of additional security groups to be added to the created ELB, this leaves the uniquely
+        # generated security group in place, this ensures that every ELB
+        # has a unique security group ID and a matching permit line to allow traffic to the target worker nodes
+        # (service traffic and health checks).
+        # Security groups defined here can be shared between services.
         service.beta.kubernetes.io/aws-load-balancer-extra-security-groups: "sg-53fae93f,sg-42efd82e"
-        #  A list of additional security groups to be added to the created ELB, this leaves the uniquely generated security group in place, this ensures that every ELB
-        # has a unique security group ID and a matching permit line to allow traffic to the target worker nodes (service traffic and health checks).
-        # Security groups defined here can be shared between services. 
 
-        service.beta.kubernetes.io/aws-load-balancer-target-node-labels: "ingress-gw,gw-name=public-api"
         # A comma separated list of key-value pairs which are used
         # to select the target nodes for the load balancer
+        service.beta.kubernetes.io/aws-load-balancer-target-node-labels: "ingress-gw,gw-name=public-api"
 ```
 
 #### Network Load Balancer support on AWS {#aws-nlb-support}
@@ -1018,7 +1109,8 @@ To use a Network Load Balancer on AWS, use the annotation `service.beta.kubernet
 ```
 
 {{< note >}}
-NLB only works with certain instance classes; see the [AWS documentation](https://docs.aws.amazon.com/elasticloadbalancing/latest/network/target-group-register-targets.html#register-deregister-targets)
+NLB only works with certain instance classes; see the
+[AWS documentation](https://docs.aws.amazon.com/elasticloadbalancing/latest/network/target-group-register-targets.html#register-deregister-targets)
 on Elastic Load Balancing for a list of supported instance types.
 {{< /note >}}
 
@@ -1066,6 +1158,9 @@ in those modified security groups.
 
 {{< /note >}}
 
+Further documentation on annotations for Elastic IPs and other common use-cases may be found
+in the [AWS Load Balancer Controller documentation](https://kubernetes-sigs.github.io/aws-load-balancer-controller/latest/guide/service/annotations/).
+
 #### Other CLB annotations on Tencent Kubernetes Engine (TKE)
 
 There are other annotations for managing Cloud Load Balancers on TKE as shown below.
@@ -1122,7 +1217,8 @@ spec:
 ```
 
 {{< note >}}
-ExternalName accepts an IPv4 address string, but as a DNS names comprised of digits, not as an IP address. ExternalNames that resemble IPv4 addresses are not resolved by CoreDNS or ingress-nginx because ExternalName
+ExternalName accepts an IPv4 address string, but as a DNS name comprised of digits, not as an IP address.
+ExternalNames that resemble IPv4 addresses are not resolved by CoreDNS or ingress-nginx because ExternalName
 is intended to specify a canonical DNS name. To hardcode an IP address, consider using
 [headless Services](#headless-services).
 {{< /note >}}
@@ -1136,9 +1232,13 @@ can start its Pods, add appropriate selectors or endpoints, and change the
 Service's `type`.
 
 {{< warning >}}
-You may have trouble using ExternalName for some common protocols, including HTTP and HTTPS. If you use ExternalName then the hostname used by clients inside your cluster is different from the name that the ExternalName references.
+You may have trouble using ExternalName for some common protocols, including HTTP and HTTPS.
+If you use ExternalName then the hostname used by clients inside your cluster is different from
+the name that the ExternalName references.
 
-For protocols that use hostnames this difference may lead to errors or unexpected responses. HTTP requests will have a `Host:` header that the origin server does not recognize; TLS servers will not be able to provide a certificate matching the hostname that the client connected to.
+For protocols that use hostnames this difference may lead to errors or unexpected responses.
+HTTP requests will have a `Host:` header that the origin server does not recognize;
+TLS servers will not be able to provide a certificate matching the hostname that the client connected to.
 {{< /warning >}}
 
 {{< note >}}
@@ -1163,7 +1263,7 @@ metadata:
   name: my-service
 spec:
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   ports:
     - name: http
       protocol: TCP
@@ -1208,7 +1308,8 @@ someone else's choice.  That is an isolation failure.
 
 In order to allow you to choose a port number for your Services, we must
 ensure that no two Services can collide. Kubernetes does that by allocating each
-Service its own IP address.
+Service its own IP address from within the `service-cluster-ip-range`
+CIDR range that is configured for the API server.
 
 To ensure each Service receives a unique IP, an internal allocator atomically
 updates a global allocation map in {{< glossary_tooltip term_id="etcd" >}}
@@ -1222,6 +1323,25 @@ in-memory locking). Kubernetes also uses controllers to check for invalid
 assignments (eg due to administrator intervention) and for cleaning up allocated
 IP addresses that are no longer used by any Services.
 
+#### IP address ranges for `type: ClusterIP` Services {#service-ip-static-sub-range}
+
+{{< feature-state for_k8s_version="v1.24" state="alpha" >}}
+However, there is a problem with this `ClusterIP` allocation strategy, because a user
+can also [choose their own address for the service](#choosing-your-own-ip-address).
+This could result in a conflict if the internal allocator selects the same IP address
+for another Service.
+
+If you enable the `ServiceIPStaticSubrange`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/),
+the allocation strategy divides the `ClusterIP` range into two bands, based on
+the size of the configured `service-cluster-ip-range` by using the following formula
+`min(max(16, cidrSize / 16), 256)`, described as _never less than 16 or more than 256,
+with a graduated step function between them_. Dynamic IP allocations will be preferentially
+chosen from the upper band, reducing risks of conflicts with the IPs
+assigned from the lower band.
+This allows users to use the lower band of the `service-cluster-ip-range` for their
+Services with static IPs assigned with a very low risk of running into conflicts.
+
 ### Service IP addresses {#ips-and-vips}
 
 Unlike Pod IP addresses, which actually route to a fixed destination,
@@ -1277,12 +1397,15 @@ through a load-balancer, though in those cases the client IP does get altered.
 #### IPVS
 
 iptables operations slow down dramatically in large scale cluster e.g 10,000 Services.
-IPVS is designed for load balancing and based on in-kernel hash tables. So you can achieve performance consistency in large number of Services from IPVS-based kube-proxy. Meanwhile, IPVS-based kube-proxy has more sophisticated load balancing algorithms (least conns, locality, weighted, persistence).
+IPVS is designed for load balancing and based on in-kernel hash tables.
+So you can achieve performance consistency in large number of Services from IPVS-based kube-proxy.
+Meanwhile, IPVS-based kube-proxy has more sophisticated load balancing algorithms
+(least conns, locality, weighted, persistence).
 
 ## API Object
 
 Service is a top-level resource in the Kubernetes REST API. You can find more details
-about the API object at: [Service API object](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#service-v1-core).
+about the [Service API object](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#service-v1-core).
 
 ## Supported protocols {#protocol-support}
 
@@ -1308,7 +1431,8 @@ provider offering this facility. (Most do not).
 ##### Support for multihomed SCTP associations {#caveat-sctp-multihomed}
 
 {{< warning >}}
-The support of multihomed SCTP associations requires that the CNI plugin can support the assignment of multiple interfaces and IP addresses to a Pod.
+The support of multihomed SCTP associations requires that the CNI plugin can support the
+assignment of multiple interfaces and IP addresses to a Pod.
 
 NAT for multihomed SCTP associations requires special logic in the corresponding kernel modules.
 {{< /warning >}}
diff --git a/content/en/docs/concepts/services-networking/topology-aware-hints.md b/content/en/docs/concepts/services-networking/topology-aware-hints.md
index f471caff6b..cd02b4015c 100644
--- a/content/en/docs/concepts/services-networking/topology-aware-hints.md
+++ b/content/en/docs/concepts/services-networking/topology-aware-hints.md
@@ -9,7 +9,7 @@ weight: 45
 
 <!-- overview -->
 
-{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
 
 _Topology Aware Hints_ enable topology aware routing by including suggestions
 for how clients should consume endpoints. This approach adds metadata to enable
@@ -19,6 +19,12 @@ those network endpoints can be routed closer to where it originated.
 For example, you can route traffic within a locality to reduce
 costs, or to improve network performance.
 
+{{< note >}}
+The "topology-aware hints" feature is at Beta stage and it is **NOT** enabled
+by default. To try out this feature, you have to enable the `TopologyAwareHints`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/).
+{{< /note >}}
+
 <!-- body -->
 
 ## Motivation
@@ -30,13 +36,12 @@ Routing". When calculating the endpoints for a {{< glossary_tooltip term_id="Ser
 the EndpointSlice controller considers the topology (region and zone) of each endpoint
 and populates the hints field to allocate it to a zone.
 Cluster components such as the {{< glossary_tooltip term_id="kube-proxy" text="kube-proxy" >}}
-can then consume those hints, and use them to influence how traffic to is routed
+can then consume those hints, and use them to influence how the traffic is routed
 (favoring topologically closer endpoints).
 
 ## Using Topology Aware Hints
 
-If you have [enabled](/docs/tasks/administer-cluster/enabling-topology-aware-hints) the
-overall feature, you can activate Topology Aware Hints for a Service by setting the
+You can activate Topology Aware Hints for a Service by setting the
 `service.kubernetes.io/topology-aware-hints` annotation to `auto`. This tells
 the EndpointSlice controller to set topology hints if it is deemed safe.
 Importantly, this does not guarantee that hints will always be set.
@@ -156,5 +161,4 @@ zone.
 
 ## {{% heading "whatsnext" %}}
 
-* Read about [enabling Topology Aware Hints](/docs/tasks/administer-cluster/enabling-topology-aware-hints/)
 * Read [Connecting Applications with Services](/docs/concepts/services-networking/connect-applications-service/)
diff --git a/content/en/docs/concepts/services-networking/windows-networking.md b/content/en/docs/concepts/services-networking/windows-networking.md
new file mode 100644
index 0000000000..6aa79f0a03
--- /dev/null
+++ b/content/en/docs/concepts/services-networking/windows-networking.md
@@ -0,0 +1,164 @@
+---
+reviewers:
+- aravindhp
+- jayunit100
+- jsturtevant
+- marosset
+title: Networking on Windows
+content_type: concept
+weight: 75
+---
+
+<!-- overview -->
+
+Kubernetes supports running nodes on either Linux or Windows. You can mix both kinds of node
+within a single cluster.
+This page provides an overview to networking specific to the Windows operating system.
+
+<!-- body -->
+## Container networking on Windows {#networking}
+
+Networking for Windows containers is exposed through
+[CNI plugins](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/).
+Windows containers function similarly to virtual machines in regards to
+networking. Each container has a virtual network adapter (vNIC) which is connected
+to a Hyper-V virtual switch (vSwitch). The Host Networking Service (HNS) and the
+Host Compute Service (HCS) work together to create containers and attach container
+vNICs to networks. HCS is responsible for the management of containers whereas HNS
+is responsible for the management of networking resources such as:
+
+* Virtual networks (including creation of vSwitches)
+* Endpoints / vNICs
+* Namespaces
+* Policies including packet encapsulations, load-balancing rules, ACLs, and NAT rules.
+
+The Windows HNS and vSwitch implement namespacing and can
+create virtual NICs as needed for a pod or container. However, many configurations such
+as DNS, routes, and metrics are stored in the Windows registry database rather than as
+files inside `/etc`, which is how Linux stores those configurations. The Windows registry for the container
+is separate from that of the host, so concepts like mapping `/etc/resolv.conf` from
+the host into a container don't have the same effect they would on Linux. These must
+be configured using Windows APIs run in the context of that container. Therefore
+CNI implementations need to call the HNS instead of relying on file mappings to pass
+network details into the pod or container.
+
+## Network modes
+
+Windows supports five different networking drivers/modes: L2bridge, L2tunnel,
+Overlay (Beta), Transparent, and NAT. In a heterogeneous cluster with Windows and Linux
+worker nodes, you need to select a networking solution that is compatible on both
+Windows and Linux. The following table lists the out-of-tree plugins are supported on Windows,
+with recommendations on when to use each CNI:
+
+| Network Driver | Description | Container Packet Modifications | Network Plugins | Network Plugin Characteristics |
+| -------------- | ----------- | ------------------------------ | --------------- | ------------------------------ |
+| L2bridge       | Containers are attached to an external vSwitch. Containers are attached to the underlay network, although the physical network doesn't need to learn the container MACs because they are rewritten on ingress/egress. | MAC is rewritten to host MAC, IP may be rewritten to host IP using HNS OutboundNAT policy. | [win-bridge](https://github.com/containernetworking/plugins/tree/master/plugins/main/windows/win-bridge), [Azure-CNI](https://github.com/Azure/azure-container-networking/blob/master/docs/cni.md), Flannel host-gateway uses win-bridge | win-bridge uses L2bridge network mode, connects containers to the underlay of hosts, offering best performance. Requires user-defined routes (UDR) for inter-node connectivity. |
+| L2Tunnel | This is a special case of l2bridge, but only used on Azure. All packets are sent to the virtualization host where SDN policy is applied. | MAC rewritten, IP visible on the underlay network | [Azure-CNI](https://github.com/Azure/azure-container-networking/blob/master/docs/cni.md) | Azure-CNI allows integration of containers with Azure vNET, and allows them to leverage the set of capabilities that [Azure Virtual Network provides](https://azure.microsoft.com/en-us/services/virtual-network/). For example, securely connect to Azure services or use Azure NSGs. See [azure-cni for some examples](https://docs.microsoft.com/azure/aks/concepts-network#azure-cni-advanced-networking) |
+| Overlay | Containers are given a vNIC connected to an external vSwitch. Each overlay network gets its own IP subnet, defined by a custom IP prefix.The overlay network driver uses VXLAN encapsulation. | Encapsulated with an outer header. | [win-overlay](https://github.com/containernetworking/plugins/tree/master/plugins/main/windows/win-overlay), Flannel VXLAN (uses win-overlay) | win-overlay should be used when virtual container networks are desired to be isolated from underlay of hosts (e.g. for security reasons). Allows for IPs to be re-used for different overlay networks (which have different VNID tags)  if you are restricted on IPs in your datacenter.  This option requires [KB4489899](https://support.microsoft.com/help/4489899) on Windows Server 2019. |
+| Transparent (special use case for [ovn-kubernetes](https://github.com/openvswitch/ovn-kubernetes)) | Requires an external vSwitch. Containers are attached to an external vSwitch which enables intra-pod communication via logical networks (logical switches and routers). | Packet is encapsulated either via [GENEVE](https://datatracker.ietf.org/doc/draft-gross-geneve/) or [STT](https://datatracker.ietf.org/doc/draft-davie-stt/) tunneling to reach pods which are not on the same host.  <br/> Packets are forwarded or dropped via the tunnel metadata information supplied by the ovn network controller. <br/> NAT is done for north-south communication. | [ovn-kubernetes](https://github.com/openvswitch/ovn-kubernetes) | [Deploy via ansible](https://github.com/openvswitch/ovn-kubernetes/tree/master/contrib). Distributed ACLs can be applied via Kubernetes policies. IPAM support. Load-balancing can be achieved without kube-proxy. NATing is done without using iptables/netsh. |
+| NAT (*not used in Kubernetes*) | Containers are given a vNIC connected to an internal vSwitch. DNS/DHCP is provided using an internal component called [WinNAT](https://techcommunity.microsoft.com/t5/virtualization/windows-nat-winnat-capabilities-and-limitations/ba-p/382303) | MAC and IP is rewritten to host MAC/IP. | [nat](https://github.com/Microsoft/windows-container-networking/tree/master/plugins/nat) | Included here for completeness |
+
+As outlined above, the [Flannel](https://github.com/coreos/flannel)
+[CNI plugin](https://github.com/flannel-io/cni-plugin)
+is also [supported](https://github.com/flannel-io/cni-plugin#windows-support-experimental) on Windows via the
+[VXLAN network backend](https://github.com/coreos/flannel/blob/master/Documentation/backends.md#vxlan) (**Beta support** ; delegates to win-overlay)
+and [host-gateway network backend](https://github.com/coreos/flannel/blob/master/Documentation/backends.md#host-gw) (stable support; delegates to win-bridge).
+
+This plugin supports delegating to one of the reference CNI plugins (win-overlay,
+win-bridge), to work in conjunction with Flannel daemon on Windows (Flanneld) for
+automatic node subnet lease assignment and HNS network creation. This plugin reads
+in its own configuration file (cni.conf), and aggregates it with the environment
+variables from the FlannelD generated subnet.env file. It then delegates to one of
+the reference CNI plugins for network plumbing, and sends the correct configuration
+containing the node-assigned subnet to the IPAM plugin (for example: `host-local`).
+
+For Node, Pod, and Service objects, the following network flows are supported for
+TCP/UDP traffic:
+
+* Pod → Pod (IP)
+* Pod → Pod (Name)
+* Pod → Service (Cluster IP)
+* Pod → Service (PQDN, but only if there are no ".")
+* Pod → Service (FQDN)
+* Pod → external (IP)
+* Pod → external (DNS)
+* Node → Pod
+* Pod → Node
+
+## IP address management (IPAM) {#ipam}
+
+The following IPAM options are supported on Windows:
+
+* [host-local](https://github.com/containernetworking/plugins/tree/master/plugins/ipam/host-local)
+* [azure-vnet-ipam](https://github.com/Azure/azure-container-networking/blob/master/docs/ipam.md) (for azure-cni only)
+* [Windows Server IPAM](https://docs.microsoft.com/windows-server/networking/technologies/ipam/ipam-top) (fallback option if no IPAM is set)
+
+## Load balancing and Services
+
+A Kubernetes {{< glossary_tooltip text="Service" term_id="service" >}} is an abstraction
+that defines a logical set of Pods and a means to access them over a network.
+In a cluster that includes Windows nodes, you can use the following types of Service:
+
+* `NodePort`
+* `ClusterIP`
+* `LoadBalancer`
+* `ExternalName`
+
+Windows container networking differs in some important ways from Linux networking.
+The [Microsoft documentation for Windows Container Networking](https://docs.microsoft.com/en-us/virtualization/windowscontainers/container-networking/architecture)
+provides additional details and background.
+
+On Windows, you can use the following settings to configure Services and load
+balancing behavior:
+
+{{< table caption="Windows Service Settings" >}}
+| Feature | Description | Minimum Supported Windows OS build | How to enable |
+| ------- | ----------- | -------------------------- | ------------- |
+| Session affinity | Ensures that connections from a particular client are passed to the same Pod each time. | Windows Server 2022 | Set `service.spec.sessionAffinity` to "ClientIP" |
+| Direct Server Return (DSR) | Load balancing mode where the IP address fixups and the LBNAT occurs at the container vSwitch port directly; service traffic arrives with the source IP set as the originating pod IP. | Windows Server 2019 | Set the following flags in kube-proxy: `--feature-gates="WinDSR=true" --enable-dsr=true` |
+| Preserve-Destination | Skips DNAT of service traffic, thereby preserving the virtual IP of the target service in packets reaching the backend Pod. Also disables node-node forwarding. | Windows Server, version 1903 | Set `"preserve-destination": "true"` in service annotations and enable DSR in kube-proxy. |
+| IPv4/IPv6 dual-stack networking | Native IPv4-to-IPv4 in parallel with IPv6-to-IPv6 communications to, from, and within a cluster | Windows Server 2019 | See [IPv4/IPv6 dual-stack](#ipv4ipv6-dual-stack) |
+| Client IP preservation | Ensures that source IP of incoming ingress traffic gets preserved. Also disables node-node forwarding. |  Windows Server 2019  | Set `service.spec.externalTrafficPolicy` to "Local" and enable DSR in kube-proxy |
+{{< /table >}}
+
+{{< warning >}}
+There are known issue with NodePort Services on overlay networking, if the destination node is running Windows Server 2022.
+To avoid the issue entirely, you can configure the service with `externalTrafficPolicy: Local`.
+
+There are known issues with Pod to Pod connectivity on l2bridge network on Windows Server 2022 with KB5005619 or higher installed.
+To workaround the issue and restore Pod to Pod connectivity, you can disable the WinDSR feature in kube-proxy.
+
+These issues require OS fixes.
+Please follow https://github.com/microsoft/Windows-Containers/issues/204 for updates.
+{{< /warning >}}
+
+## Limitations
+
+The following networking functionality is _not_ supported on Windows nodes:
+
+* Host networking mode
+* Local NodePort access from the node itself (works for other nodes or external clients)
+* More than 64 backend pods (or unique destination addresses) for a single Service
+* IPv6 communication between Windows pods connected to overlay networks
+* Local Traffic Policy in non-DSR mode
+* Outbound communication using the ICMP protocol via the `win-overlay`, `win-bridge`, or using the Azure-CNI plugin.\
+  Specifically, the Windows data plane ([VFP](https://www.microsoft.com/research/project/azure-virtual-filtering-platform/))
+  doesn't support ICMP packet transpositions, and this means:
+  * ICMP packets directed to destinations within the same network (such as pod to pod communication via ping) 
+    work as expected;
+  * TCP/UDP packets work as expected;
+  * ICMP packets directed to pass through a remote network (e.g. pod to external internet communication via ping) 
+    cannot be transposed and thus will not be routed back to their source;
+  * Since TCP/UDP packets can still be transposed, you can substitute `ping <destination>` with
+    `curl <destination>` when debugging connectivity with the outside world.
+
+Other limitations:
+
+* Windows reference network plugins win-bridge and win-overlay do not implement
+  [CNI spec](https://github.com/containernetworking/cni/blob/master/SPEC.md) v0.4.0,
+  due to a missing `CHECK` implementation.
+* The Flannel VXLAN CNI plugin has the following limitations on Windows:
+  * Node-pod connectivity is only possible for local pods with Flannel v0.12.0 (or higher).
+  * Flannel is restricted to using VNI 4096 and UDP port 4789. See the official
+    [Flannel VXLAN](https://github.com/coreos/flannel/blob/master/Documentation/backends.md#vxlan)
+    backend docs for more details on these parameters.
diff --git a/content/en/docs/concepts/storage/dynamic-provisioning.md b/content/en/docs/concepts/storage/dynamic-provisioning.md
index 63263fb370..6da1850ada 100644
--- a/content/en/docs/concepts/storage/dynamic-provisioning.md
+++ b/content/en/docs/concepts/storage/dynamic-provisioning.md
@@ -116,7 +116,7 @@ can enable this behavior by:
   is enabled on the API server.
 
 An administrator can mark a specific `StorageClass` as default by adding the
-`storageclass.kubernetes.io/is-default-class` annotation to it.
+`storageclass.kubernetes.io/is-default-class` [annotation](/docs/reference/labels-annotations-taints/#storageclass-kubernetes-io-is-default-class) to it.
 When a default `StorageClass` exists in a cluster and a user creates a
 `PersistentVolumeClaim` with `storageClassName` unspecified, the
 `DefaultStorageClass` admission controller automatically adds the
diff --git a/content/en/docs/concepts/storage/ephemeral-volumes.md b/content/en/docs/concepts/storage/ephemeral-volumes.md
index e76f76f492..045bcafe76 100644
--- a/content/en/docs/concepts/storage/ephemeral-volumes.md
+++ b/content/en/docs/concepts/storage/ephemeral-volumes.md
@@ -7,7 +7,7 @@ reviewers:
 - pohly
 title: Ephemeral Volumes
 content_type: concept
-weight: 50
+weight: 30
 ---
 
 <!-- overview -->
@@ -76,8 +76,8 @@ is managed by kubelet, or injecting different data.
 
 {{< feature-state for_k8s_version="v1.16" state="beta" >}}
 
-This feature requires the `CSIInlineVolume` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) to be enabled. It
-is enabled by default starting with Kubernetes 1.16.
+This feature requires the `CSIInlineVolume` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+to be enabled. It is enabled by default starting with Kubernetes 1.16.
 
 {{< note >}}
 CSI ephemeral volumes are only supported by a subset of CSI drivers.
@@ -107,7 +107,7 @@ metadata:
 spec:
   containers:
     - name: my-frontend
-      image: busybox
+      image: busybox:1.28
       volumeMounts:
       - mountPath: "/data"
         name: my-csi-inline-vol
@@ -125,15 +125,26 @@ driver. These attributes are specific to each driver and not
 standardized. See the documentation of each CSI driver for further
 instructions.
 
-As a cluster administrator, you can use a [PodSecurityPolicy](/docs/concepts/policy/pod-security-policy/) to control which CSI drivers can be used in a Pod, specified with the
-[`allowedCSIDrivers` field](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritypolicyspec-v1beta1-policy).
+### CSI driver restrictions
+
+CSI ephemeral volumes allow users to provide `volumeAttributes`
+directly to the CSI driver as part of the Pod spec. A CSI driver
+allowing `volumeAttributes` that are typically restricted to
+administrators is NOT suitable for use in an inline ephemeral volume.
+For example, parameters that are normally defined in the StorageClass
+should not be exposed to users through the use of inline ephemeral volumes.
+
+Cluster administrators who need to restrict the CSI drivers that are
+allowed to be used as inline volumes within a Pod spec may do so by:
+
+- Removing `Ephemeral` from `volumeLifecycleModes` in the CSIDriver spec, which prevents the
+  driver from being used as an inline ephemeral volume.
+- Using an [admission webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/)
+  to restrict how this driver is used.
 
 ### Generic ephemeral volumes
 
-{{< feature-state for_k8s_version="v1.21" state="beta" >}}
-
-This feature requires the `GenericEphemeralVolume` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) to be
-enabled. Because this is a beta feature, it is enabled by default.
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
 
 Generic ephemeral volumes are similar to `emptyDir` volumes in the
 sense that they provide a per-pod directory for scratch data that is
@@ -146,7 +157,7 @@ features:
   parameters.
 - Typical operations on volumes are supported assuming that the driver
   supports them, including
-  ([snapshotting](/docs/concepts/storage/volume-snapshots/),
+  [snapshotting](/docs/concepts/storage/volume-snapshots/),
   [cloning](/docs/concepts/storage/volume-pvc-datasource/),
   [resizing](/docs/concepts/storage/persistent-volumes/#expanding-persistent-volumes-claims),
   and [storage capacity tracking](/docs/concepts/storage/storage-capacity/).
@@ -161,7 +172,7 @@ metadata:
 spec:
   containers:
     - name: my-frontend
-      image: busybox
+      image: busybox:1.28
       volumeMounts:
       - mountPath: "/scratch"
         name: scratch-volume
@@ -199,7 +210,7 @@ because then the scheduler is free to choose a suitable node for
 the Pod. With immediate binding, the scheduler is forced to select a node that has
 access to the volume once it is available.
 
-In terms of [resource ownership](/docs/concepts/workloads/controllers/garbage-collection/#owners-and-dependents),
+In terms of [resource ownership](/docs/concepts/architecture/garbage-collection/#owners-dependents),
 a Pod that has generic ephemeral storage is the owner of the PersistentVolumeClaim(s)
 that provide that ephemeral storage. When the Pod is deleted,
 the Kubernetes garbage collector deletes the PVC, which then usually
@@ -243,19 +254,12 @@ same namespace, so that these conflicts can't occur.
 Enabling the GenericEphemeralVolume feature allows users to create
 PVCs indirectly if they can create Pods, even if they do not have
 permission to create PVCs directly. Cluster administrators must be
-aware of this. If this does not fit their security model, they have
-two choices:
-- Explicitly disable the feature through the feature gate.
-- Use a [Pod Security
-  Policy](/docs/concepts/policy/pod-security-policy/) where the
-  `volumes` list does not contain the `ephemeral` volume type
-  (deprecated in Kubernetes 1.21).
-- Use an [admission webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/)
-  which rejects objects like Pods that have a generic ephemeral
-  volume.
+aware of this. If this does not fit their security model, they should
+use an [admission webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/)
+that rejects objects like Pods that have a generic ephemeral volume.
 
-The normal [namespace quota for PVCs](/docs/concepts/policy/resource-quotas/#storage-resource-quota) still applies, so
-even if users are allowed to use this new mechanism, they cannot use
+The normal [namespace quota for PVCs](/docs/concepts/policy/resource-quotas/#storage-resource-quota)
+still applies, so even if users are allowed to use this new mechanism, they cannot use
 it to circumvent other policies.
 
 ## {{% heading "whatsnext" %}}
@@ -266,12 +270,13 @@ See [local ephemeral storage](/docs/concepts/configuration/manage-resources-cont
 
 ### CSI ephemeral volumes
 
-- For more information on the design, see the [Ephemeral Inline CSI
-  volumes KEP](https://github.com/kubernetes/enhancements/blob/ad6021b3d61a49040a3f835e12c8bb5424db2bbb/keps/sig-storage/20190122-csi-inline-volumes.md).
-- For more information on further development of this feature, see the [enhancement tracking issue #596](https://github.com/kubernetes/enhancements/issues/596).
+- For more information on the design, see the
+  [Ephemeral Inline CSI volumes KEP](https://github.com/kubernetes/enhancements/blob/ad6021b3d61a49040a3f835e12c8bb5424db2bbb/keps/sig-storage/20190122-csi-inline-volumes.md).
+- For more information on further development of this feature, see the
+  [enhancement tracking issue #596](https://github.com/kubernetes/enhancements/issues/596).
 
 ### Generic ephemeral volumes
 
 - For more information on the design, see the
-[Generic ephemeral inline volumes KEP](https://github.com/kubernetes/enhancements/blob/master/keps/sig-storage/1698-generic-ephemeral-volumes/README.md).
-- For more information on further development of this feature, see the [enhancement tracking issue #1698](https://github.com/kubernetes/enhancements/issues/1698).
+  [Generic ephemeral inline volumes KEP](https://github.com/kubernetes/enhancements/blob/master/keps/sig-storage/1698-generic-ephemeral-volumes/README.md).
+
diff --git a/content/en/docs/concepts/storage/persistent-volumes.md b/content/en/docs/concepts/storage/persistent-volumes.md
index a029ceaeda..07521f42ee 100644
--- a/content/en/docs/concepts/storage/persistent-volumes.md
+++ b/content/en/docs/concepts/storage/persistent-volumes.md
@@ -10,14 +10,13 @@ feature:
   title: Storage orchestration
   description: >
     Automatically mount the storage system of your choice, whether from local storage, a public cloud provider such as <a href="https://cloud.google.com/storage/">GCP</a> or <a href="https://aws.amazon.com/products/storage/">AWS</a>, or a network storage system such as NFS, iSCSI, Gluster, Ceph, Cinder, or Flocker.
-
 content_type: concept
 weight: 20
 ---
 
 <!-- overview -->
 
-This document describes the current state of _persistent volumes_ in Kubernetes. Familiarity with [volumes](/docs/concepts/storage/volumes/) is suggested.
+This document describes _persistent volumes_ in Kubernetes. Familiarity with [volumes](/docs/concepts/storage/volumes/) is suggested.
 
 <!-- body -->
 
@@ -131,7 +130,9 @@ The `Retain` reclaim policy allows for manual reclamation of the resource. When
 
 1. Delete the PersistentVolume. The associated storage asset in external infrastructure (such as an AWS EBS, GCE PD, Azure Disk, or Cinder volume) still exists after the PV is deleted.
 1. Manually clean up the data on the associated storage asset accordingly.
-1. Manually delete the associated storage asset, or if you want to reuse the same storage asset, create a new PersistentVolume with the storage asset definition.
+1. Manually delete the associated storage asset.
+
+If you want to reuse the same storage asset, create a new PersistentVolume with the same storage asset definition.
 
 #### Delete
 
@@ -174,6 +175,74 @@ spec:
 
 However, the particular path specified in the custom recycler Pod template in the `volumes` part is replaced with the particular path of the volume that is being recycled.
 
+### PersistentVolume deletion protection finalizer
+{{< feature-state for_k8s_version="v1.23" state="alpha" >}}
+
+Finalizers can be added on a PersistentVolume to ensure that PersistentVolumes
+having `Delete` reclaim policy are deleted only after the backing storage are deleted.
+
+The newly introduced finalizers `kubernetes.io/pv-controller` and `external-provisioner.volume.kubernetes.io/finalizer` 
+are only added to dynamically provisioned volumes.
+
+The finalizer `kubernetes.io/pv-controller` is added to in-tree plugin volumes. The following is an example
+
+```shell
+kubectl describe pv pvc-74a498d6-3929-47e8-8c02-078c1ece4d78
+Name:            pvc-74a498d6-3929-47e8-8c02-078c1ece4d78
+Labels:          <none>
+Annotations:     kubernetes.io/createdby: vsphere-volume-dynamic-provisioner
+                 pv.kubernetes.io/bound-by-controller: yes
+                 pv.kubernetes.io/provisioned-by: kubernetes.io/vsphere-volume
+Finalizers:      [kubernetes.io/pv-protection kubernetes.io/pv-controller]
+StorageClass:    vcp-sc
+Status:          Bound
+Claim:           default/vcp-pvc-1
+Reclaim Policy:  Delete
+Access Modes:    RWO
+VolumeMode:      Filesystem
+Capacity:        1Gi
+Node Affinity:   <none>
+Message:         
+Source:
+    Type:               vSphereVolume (a Persistent Disk resource in vSphere)
+    VolumePath:         [vsanDatastore] d49c4a62-166f-ce12-c464-020077ba5d46/kubernetes-dynamic-pvc-74a498d6-3929-47e8-8c02-078c1ece4d78.vmdk
+    FSType:             ext4
+    StoragePolicyName:  vSAN Default Storage Policy
+Events:                 <none>
+```
+
+The finalizer `external-provisioner.volume.kubernetes.io/finalizer` is added for CSI volumes.
+The following is an example:
+```shell
+Name:            pvc-2f0bab97-85a8-4552-8044-eb8be45cf48d
+Labels:          <none>
+Annotations:     pv.kubernetes.io/provisioned-by: csi.vsphere.vmware.com
+Finalizers:      [kubernetes.io/pv-protection external-provisioner.volume.kubernetes.io/finalizer]
+StorageClass:    fast
+Status:          Bound
+Claim:           demo-app/nginx-logs
+Reclaim Policy:  Delete
+Access Modes:    RWO
+VolumeMode:      Filesystem
+Capacity:        200Mi
+Node Affinity:   <none>
+Message:         
+Source:
+    Type:              CSI (a Container Storage Interface (CSI) volume source)
+    Driver:            csi.vsphere.vmware.com
+    FSType:            ext4
+    VolumeHandle:      44830fa8-79b4-406b-8b58-621ba25353fd
+    ReadOnly:          false
+    VolumeAttributes:      storage.kubernetes.io/csiProvisionerIdentity=1648442357185-8081-csi.vsphere.vmware.com
+                           type=vSphere CNS Block Volume
+Events:                <none>
+```
+
+Enabling the `CSIMigration` feature for a specific in-tree volume plugin will remove
+the `kubernetes.io/pv-controller` finalizer, while adding the `external-provisioner.volume.kubernetes.io/finalizer`
+finalizer. Similarly, disabling `CSIMigration` will remove the `external-provisioner.volume.kubernetes.io/finalizer`
+finalizer, while adding the `kubernetes.io/pv-controller` finalizer.
+
 ### Reserving a PersistentVolume
 
 The control plane can [bind PersistentVolumeClaims to matching PersistentVolumes](#binding) in the
@@ -219,19 +288,19 @@ to `Retain`, including cases where you are reusing an existing PV.
 
 {{< feature-state for_k8s_version="v1.11" state="beta" >}}
 
-Support for expanding PersistentVolumeClaims (PVCs) is now enabled by default. You can expand
+Support for expanding PersistentVolumeClaims (PVCs) is enabled by default. You can expand
 the following types of volumes:
 
-* gcePersistentDisk
+* azureDisk
+* azureFile
 * awsElasticBlockStore
-* Cinder
+* cinder (deprecated)
+* {{< glossary_tooltip text="csi" term_id="csi" >}}
+* flexVolume (deprecated)
+* gcePersistentDisk
 * glusterfs
 * rbd
-* Azure File
-* Azure Disk
-* Portworx
-* FlexVolumes
-* {{< glossary_tooltip text="CSI" term_id="csi" >}}
+* portworxVolume
 
 You can only expand a PVC if its storage class's `allowVolumeExpansion` field is set to true.
 
@@ -253,6 +322,16 @@ To request a larger volume for a PVC, edit the PVC object and specify a larger
 size. This triggers expansion of the volume that backs the underlying PersistentVolume. A
 new PersistentVolume is never created to satisfy the claim. Instead, an existing volume is resized.
 
+{{< warning >}}
+Directly editing the size of a PersistentVolume can prevent an automatic resize of that volume.
+If you edit the capacity of a PersistentVolume, and then edit the `.spec` of a matching
+PersistentVolumeClaim to make the size of the PersistentVolumeClaim match the PersistentVolume,
+then no storage resize happens.
+The Kubernetes control plane will see that the desired state of both resources matches,
+conclude that the backing volume size has been manually
+increased and that no resize is necessary.
+{{< /warning >}}
+
 #### CSI Volume expansion
 
 {{< feature-state for_k8s_version="v1.16" state="beta" >}}
@@ -268,23 +347,18 @@ When a volume contains a file system, the file system is only resized when a new
 the PersistentVolumeClaim in `ReadWrite` mode. File system expansion is either done when a Pod is starting up
 or when a Pod is running and the underlying file system supports online expansion.
 
-FlexVolumes allow resize if the driver is set with the `RequiresFSResize` capability to `true`.
-The FlexVolume can be resized on Pod restart.
+FlexVolumes (deprecated since Kubernetes v1.23) allow resize if the driver is configured with the
+`RequiresFSResize` capability to `true`. The FlexVolume can be resized on Pod restart.
 
 #### Resizing an in-use PersistentVolumeClaim
 
-{{< feature-state for_k8s_version="v1.15" state="beta" >}}
-
-{{< note >}}
-Expanding in-use PVCs is available as beta since Kubernetes 1.15, and as alpha since 1.11. The `ExpandInUsePersistentVolumes` feature must be enabled, which is the case automatically for many clusters for beta features. Refer to the [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) documentation for more information.
-{{< /note >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 In this case, you don't need to delete and recreate a Pod or deployment that is using an existing PVC.
 Any in-use PVC automatically becomes available to its Pod as soon as its file system has been expanded.
 This feature has no effect on PVCs that are not in use by a Pod or deployment. You must create a Pod that
 uses the PVC before the expansion can complete.
 
-
 Similar to other volume types - FlexVolume volumes can also be expanded when in-use by a Pod.
 
 {{< note >}}
@@ -297,6 +371,11 @@ Expanding EBS volumes is a time-consuming operation. Also, there is a per-volume
 
 #### Recovering from Failure when Expanding Volumes
 
+If a user specifies a new size that is too big to be satisfied by underlying storage system, expansion of PVC will be continuously retried until user or cluster administrator takes some action. This can be undesirable and hence Kubernetes provides following methods of recovering from such failures.
+
+{{< tabs name="recovery_methods" >}}
+{{% tab name="Manually with Cluster Administrator access" %}}
+
 If expanding underlying storage fails, the cluster administrator can manually recover the Persistent Volume Claim (PVC) state and cancel the resize requests. Otherwise, the resize requests are continuously retried by the controller without administrator intervention.
 
 1. Mark the PersistentVolume(PV) that is bound to the PersistentVolumeClaim(PVC) with `Retain` reclaim policy.
@@ -305,6 +384,30 @@ If expanding underlying storage fails, the cluster administrator can manually re
 4. Re-create the PVC with smaller size than PV and set `volumeName` field of the PVC to the name of the PV. This should bind new PVC to existing PV.
 5. Don't forget to restore the reclaim policy of the PV.
 
+{{% /tab %}}
+{{% tab name="By requesting expansion to smaller size" %}}
+{{% feature-state for_k8s_version="v1.23" state="alpha" %}}
+
+{{< note >}}
+Recovery from failing PVC expansion by users is available as an alpha feature since Kubernetes 1.23. The `RecoverVolumeExpansionFailure` feature must be enabled for this feature to work. Refer to the [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) documentation for more information.
+{{< /note >}}
+
+If the feature gates `RecoverVolumeExpansionFailure` is
+enabled in your cluster, and expansion has failed for a PVC, you can retry expansion with a
+smaller size than the previously requested value. To request a new expansion attempt with a
+smaller proposed size, edit `.spec.resources` for that PVC and choose a value that is less than the
+value you previously tried.
+This is useful if expansion to a higher value did not succeed because of capacity constraint.
+If that has happened, or you suspect that it might have, you can retry expansion by specifying a
+size that is within the capacity limits of underlying storage provider. You can monitor status of resize operation by watching `.status.resizeStatus` and events on the PVC.
+
+Note that,
+although you can specify a lower amount of storage than what was requested previously,
+the new value must still be higher than `.status.capacity`.
+Kubernetes does not support shrinking a PVC to less than its current size.
+{{% /tab %}}
+{{% /tabs %}}
+
 
 ## Types of Persistent Volumes
 
@@ -316,7 +419,6 @@ PersistentVolume types are implemented as plugins. Kubernetes currently supports
 * [`cephfs`](/docs/concepts/storage/volumes/#cephfs) - CephFS volume
 * [`csi`](/docs/concepts/storage/volumes/#csi) - Container Storage Interface (CSI)
 * [`fc`](/docs/concepts/storage/volumes/#fc) - Fibre Channel (FC) storage
-* [`flexVolume`](/docs/concepts/storage/volumes/#flexVolume) - FlexVolume
 * [`gcePersistentDisk`](/docs/concepts/storage/volumes/#gcepersistentdisk) - GCE Persistent Disk
 * [`glusterfs`](/docs/concepts/storage/volumes/#glusterfs) - Glusterfs volume
 * [`hostPath`](/docs/concepts/storage/volumes/#hostpath) - HostPath volume
@@ -334,6 +436,8 @@ The following types of PersistentVolume are deprecated. This means that support
 
 * [`cinder`](/docs/concepts/storage/volumes/#cinder) - Cinder (OpenStack block storage)
   (**deprecated** in v1.18)
+* [`flexVolume`](/docs/concepts/storage/volumes/#flexvolume) - FlexVolume
+  (**deprecated** in v1.23)
 * [`flocker`](/docs/concepts/storage/volumes/#flocker) - Flocker storage
   (**deprecated** in v1.22)
 * [`quobyte`](/docs/concepts/storage/volumes/#quobyte) - Quobyte volume
@@ -381,7 +485,7 @@ Helper programs relating to the volume type may be required for consumption of a
 
 ### Capacity
 
-Generally, a PV will have a specific storage capacity.  This is set using the PV's `capacity` attribute.  See the Kubernetes [Resource Model](https://git.k8s.io/community/contributors/design-proposals/scheduling/resources.md) to understand the units expected by `capacity`.
+Generally, a PV will have a specific storage capacity.  This is set using the PV's `capacity` attribute.  Read the glossary term [Quantity](/docs/reference/glossary/?all=true#term-quantity) to understand the units expected by `capacity`.
 
 Currently, storage size is the only resource that can be set or requested.  Future attributes may include IOPS, throughput, etc.
 
@@ -412,11 +516,22 @@ A PersistentVolume can be mounted on a host in any way supported by the resource
 
 The access modes are:
 
-* ReadWriteOnce -- the volume can be mounted as read-write by a single node
-* ReadOnlyMany -- the volume can be mounted read-only by many nodes
-* ReadWriteMany -- the volume can be mounted as read-write by many nodes
-* ReadWriteOncePod -- the volume can be mounted as read-write by a single Pod.
-  This is only supported for CSI volumes and Kubernetes version 1.22+.
+`ReadWriteOnce` 
+: the volume can be mounted as read-write by a single node. ReadWriteOnce access mode still can allow multiple pods to access the volume when the pods are running on the same node.
+
+`ReadOnlyMany`
+: the volume can be mounted as read-only by many nodes.
+
+`ReadWriteMany`
+: the volume can be mounted as read-write by many nodes.
+
+ `ReadWriteOncePod`
+: the volume can be mounted as read-write by a single Pod. Use ReadWriteOncePod access mode if you want to ensure that only one pod across whole cluster can read that PVC or write to it. This is only supported for CSI volumes and Kubernetes version 1.22+.
+
+
+
+The blog article [Introducing Single Pod Access Mode for PersistentVolumes](/blog/2021/09/13/read-write-once-pod-access-mode-alpha/) covers this in more detail.
+ 
 
 In the CLI, the access modes are abbreviated to:
 
@@ -425,6 +540,15 @@ In the CLI, the access modes are abbreviated to:
 * RWX - ReadWriteMany
 * RWOP - ReadWriteOncePod
 
+{{< note >}}
+Kubernetes uses volume access modes to match PersistentVolumeClaims and PersistentVolumes.
+In some cases, the volume access modes also constrain where the PersistentVolume can be mounted.
+Volume access modes do **not** enforce write protection once the storage has been mounted.
+Even if the access modes are specified as ReadWriteOnce, ReadOnlyMany, or ReadWriteMany, they don't set any constraints on the volume.
+For example, even if a PersistentVolume is created as ReadOnlyMany, it is no guarantee that it will be read-only.
+If the access modes are specified as ReadWriteOncePod, the volume is constrained and can be mounted on only a single Pod.
+{{< /note >}}
+
 > __Important!__ A volume can only be mounted using one access mode at a time, even if it supports many.  For example, a GCEPersistentDisk can be mounted as ReadWriteOnce by a single node or ReadOnlyMany by many nodes, but not at the same time.
 
 
@@ -434,7 +558,7 @@ In the CLI, the access modes are abbreviated to:
 | AzureFile            | &#x2713;               | &#x2713;              | &#x2713;      | -                      |
 | AzureDisk            | &#x2713;               | -                     | -             | -                      |
 | CephFS               | &#x2713;               | &#x2713;              | &#x2713;      | -                      |
-| Cinder               | &#x2713;               | -                     | -             | -                      |
+| Cinder               | &#x2713;               | -                     | ([if multi-attach volumes are available](https://github.com/kubernetes/cloud-provider-openstack/blob/master/docs/cinder-csi-plugin/features.md#multi-attach-volumes))            | -                      |
 | CSI                  | depends on the driver  | depends on the driver | depends on the driver | depends on the driver |
 | FC                   | &#x2713;               | &#x2713;              | -             | -                      |
 | FlexVolume           | &#x2713;               | &#x2713;              | depends on the driver | -              |
@@ -483,19 +607,19 @@ Not all Persistent Volume types support mount options.
 
 The following volume types support mount options:
 
-* AWSElasticBlockStore
-* AzureDisk
-* AzureFile
-* CephFS
-* Cinder (OpenStack block storage)
-* GCEPersistentDisk
-* Glusterfs
-* NFS
-* Quobyte Volumes
-* RBD (Ceph Block Device)
-* StorageOS
-* VsphereVolume
-* iSCSI
+* `awsElasticBlockStore`
+* `azureDisk`
+* `azureFile`
+* `cephfs`
+* `cinder` (**deprecated** in v1.18)
+* `gcePersistentDisk`
+* `glusterfs`
+* `iscsi`
+* `nfs`
+* `quobyte` (**deprecated** in v1.22)
+* `rbd`
+* `storageos` (**deprecated** in v1.22)
+* `vsphereVolume`
 
 Mount options are not validated. If a mount option is invalid, the mount fails.
 
@@ -558,7 +682,7 @@ Claims use [the same convention as volumes](#volume-mode) to indicate the consum
 
 ### Resources
 
-Claims, like Pods, can request specific quantities of a resource. In this case, the request is for storage. The same [resource model](https://git.k8s.io/community/contributors/design-proposals/scheduling/resources.md) applies to both volumes and claims.
+Claims, like Pods, can request specific quantities of a resource. In this case, the request is for storage. The same [resource model](https://git.k8s.io/design-proposals-archive/scheduling/resources.md) applies to both volumes and claims.
 
 ### Selector
 
@@ -797,17 +921,12 @@ spec:
 
 ## Volume populators and data sources
 
-{{< feature-state for_k8s_version="v1.22" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.24" state="beta" >}}
 
-{{< note >}}
-Kubernetes supports custom volume populators; this alpha feature was introduced
-in Kubernetes 1.18. Kubernetes 1.22 reimplemented the mechanism with a redesigned API.
-Check that you are reading the version of the Kubernetes documentation that matches your
-cluster. {{% version-check %}}
+Kubernetes supports custom volume populators.
 To use custom volume populators, you must enable the `AnyVolumeDataSource`
 [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) for
 the kube-apiserver and kube-controller-manager.
-{{< /note >}}
 
 Volume populators take advantage of a PVC spec field called `dataSourceRef`. Unlike the
 `dataSource` field, which can only contain either a reference to another PersistentVolumeClaim
@@ -825,6 +944,7 @@ contents.
 
 There are two differences between the `dataSourceRef` field and the `dataSource` field that
 users should be aware of:
+
 * The `dataSource` field ignores invalid values (as if the field was blank) while the
   `dataSourceRef` field never ignores values and will cause an error if an invalid value is
   used. Invalid values are any core object (objects with no apiGroup) except for PVCs.
@@ -901,7 +1021,7 @@ and need persistent storage, it is recommended that you use the following patter
 
 * Learn more about [Creating a PersistentVolume](/docs/tasks/configure-pod-container/configure-persistent-volume-storage/#create-a-persistentvolume).
 * Learn more about [Creating a PersistentVolumeClaim](/docs/tasks/configure-pod-container/configure-persistent-volume-storage/#create-a-persistentvolumeclaim).
-* Read the [Persistent Storage design document](https://git.k8s.io/community/contributors/design-proposals/storage/persistent-storage.md).
+* Read the [Persistent Storage design document](https://git.k8s.io/design-proposals-archive/storage/persistent-storage.md).
 
 ### API references {#reference}
 
diff --git a/content/en/docs/concepts/storage/projected-volumes.md b/content/en/docs/concepts/storage/projected-volumes.md
new file mode 100644
index 0000000000..a404a26e5e
--- /dev/null
+++ b/content/en/docs/concepts/storage/projected-volumes.md
@@ -0,0 +1,127 @@
+---
+reviewers:
+- marosset
+- jsturtevant
+- zshihang
+title: Projected Volumes
+content_type: concept
+weight: 21 # just after persistent volumes
+---
+
+<!-- overview -->
+
+This document describes _projected volumes_ in Kubernetes. Familiarity with [volumes](/docs/concepts/storage/volumes/) is suggested.
+
+<!-- body -->
+
+## Introduction
+
+A `projected` volume maps several existing volume sources into the same directory.
+
+Currently, the following types of volume sources can be projected:
+
+* [`secret`](/docs/concepts/storage/volumes/#secret)
+* [`downwardAPI`](/docs/concepts/storage/volumes/#downwardapi)
+* [`configMap`](/docs/concepts/storage/volumes/#configmap)
+* [`serviceAccountToken`](#serviceaccounttoken)
+
+All sources are required to be in the same namespace as the Pod. For more details,
+see the [all-in-one volume](https://git.k8s.io/design-proposals-archive/node/all-in-one-volume.md) design document.
+
+### Example configuration with a secret, a downwardAPI, and a configMap {#example-configuration-secret-downwardapi-configmap}
+
+{{< codenew file="pods/storage/projected-secret-downwardapi-configmap.yaml" >}}
+
+### Example configuration: secrets with a non-default permission mode set {#example-configuration-secrets-nondefault-permission-mode}
+
+{{< codenew file="pods/storage/projected-secrets-nondefault-permission-mode.yaml" >}}
+
+Each projected volume source is listed in the spec under `sources`. The
+parameters are nearly the same with two exceptions:
+
+* For secrets, the `secretName` field has been changed to `name` to be consistent
+  with ConfigMap naming.
+* The `defaultMode` can only be specified at the projected level and not for each
+  volume source. However, as illustrated above, you can explicitly set the `mode`
+  for each individual projection.
+
+## serviceAccountToken projected volumes {#serviceaccounttoken}
+When the `TokenRequestProjection` feature is enabled, you can inject the token
+for the current [service account](/docs/reference/access-authn-authz/authentication/#service-account-tokens)
+into a Pod at a specified path. For example:
+
+{{< codenew file="pods/storage/projected-service-account-token.yaml" >}}
+
+The example Pod has a projected volume containing the injected service account
+token. Containers in this Pod can use that token to access the Kubernetes API
+server, authenticating with the identity of [the pod's ServiceAccount](/docs/tasks/configure-pod-container/configure-service-account/).
+The `audience` field contains the intended audience of the
+token. A recipient of the token must identify itself with an identifier specified
+in the audience of the token, and otherwise should reject the token. This field
+is optional and it defaults to the identifier of the API server.
+
+The `expirationSeconds` is the expected duration of validity of the service account
+token. It defaults to 1 hour and must be at least 10 minutes (600 seconds). An administrator
+can also limit its maximum value by specifying the `--service-account-max-token-expiration`
+option for the API server. The `path` field specifies a relative path to the mount point
+of the projected volume.
+
+{{< note >}}
+A container using a projected volume source as a [`subPath`](/docs/concepts/storage/volumes/#using-subpath)
+volume mount will not receive updates for those volume sources.
+{{< /note >}}
+
+## SecurityContext interactions
+
+The [proposal](https://git.k8s.io/enhancements/keps/sig-storage/2451-service-account-token-volumes#proposal) for file permission handling in projected service account volume enhancement introduced the projected files having the correct owner permissions set.
+
+### Linux
+
+In Linux pods that have a projected volume and `RunAsUser` set in the Pod
+[`SecurityContext`](/docs/reference/kubernetes-api/workload-resources/pod-v1/#security-context),
+the projected files have the correct ownership set including container user
+ownership.
+
+### Windows
+
+In Windows pods that have a projected volume and `RunAsUsername` set in the
+Pod `SecurityContext`, the ownership is not enforced due to the way user
+accounts are managed in Windows. Windows stores and manages local user and group
+accounts in a database file called Security Account Manager (SAM). Each
+container maintains its own instance of the SAM database, to which the host has
+no visibility into while the container is running. Windows containers are
+designed to run the user mode portion of the OS in isolation from the host,
+hence the maintenance of a virtual SAM database. As a result, the kubelet running
+on the host does not have the ability to dynamically configure host file
+ownership for virtualized container accounts. It is recommended that if files on
+the host machine are to be shared with the container then they should be placed
+into their own volume mount outside of `C:\`.
+
+By default, the projected files will have the following ownership as shown for
+an example projected volume file:
+
+```powershell
+PS C:\> Get-Acl C:\var\run\secrets\kubernetes.io\serviceaccount\..2021_08_31_22_22_18.318230061\ca.crt | Format-List
+
+Path   : Microsoft.PowerShell.Core\FileSystem::C:\var\run\secrets\kubernetes.io\serviceaccount\..2021_08_31_22_22_18.318230061\ca.crt
+Owner  : BUILTIN\Administrators
+Group  : NT AUTHORITY\SYSTEM
+Access : NT AUTHORITY\SYSTEM Allow  FullControl
+         BUILTIN\Administrators Allow  FullControl
+         BUILTIN\Users Allow  ReadAndExecute, Synchronize
+Audit  :
+Sddl   : O:BAG:SYD:AI(A;ID;FA;;;SY)(A;ID;FA;;;BA)(A;ID;0x1200a9;;;BU)
+```
+
+This implies all administrator users like `ContainerAdministrator` will have
+read, write and execute access while, non-administrator users will have read and
+execute access.
+
+{{< note >}}
+In general, granting the container access to the host is discouraged as it can
+open the door for potential security exploits.
+
+Creating a Windows Pod with `RunAsUser` in it's `SecurityContext` will result in
+the Pod being stuck at `ContainerCreating` forever. So it is advised to not use
+the Linux only `RunAsUser` option with Windows Pods.
+{{< /note >}}
diff --git a/content/en/docs/concepts/storage/storage-capacity.md b/content/en/docs/concepts/storage/storage-capacity.md
index 13ae8ab722..38c1a56c7e 100644
--- a/content/en/docs/concepts/storage/storage-capacity.md
+++ b/content/en/docs/concepts/storage/storage-capacity.md
@@ -7,7 +7,7 @@ reviewers:
 - pohly
 title: Storage Capacity
 content_type: concept
-weight: 45
+weight: 70
 ---
 
 <!-- overview -->
@@ -16,38 +16,41 @@ Storage capacity is limited and may vary depending on the node on
 which a pod runs: network-attached storage might not be accessible by
 all nodes, or storage is local to a node to begin with.
 
-{{< feature-state for_k8s_version="v1.19" state="alpha" >}}
-{{< feature-state for_k8s_version="v1.21" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 This page describes how Kubernetes keeps track of storage capacity and
-how the scheduler uses that information to schedule Pods onto nodes
+how the scheduler uses that information to [schedule Pods](/docs/concepts/scheduling-eviction/) onto nodes
 that have access to enough storage capacity for the remaining missing
 volumes. Without storage capacity tracking, the scheduler may choose a
 node that doesn't have enough capacity to provision a volume and
 multiple scheduling retries will be needed.
 
-Tracking storage capacity is supported for {{< glossary_tooltip
-text="Container Storage Interface" term_id="csi" >}} (CSI) drivers and
-[needs to be enabled](#enabling-storage-capacity-tracking) when installing a CSI driver.
+## {{% heading "prerequisites" %}}
+
+Kubernetes v{{< skew currentVersion >}} includes cluster-level API support for
+storage capacity tracking. To use this you must also be using a CSI driver that
+supports capacity tracking. Consult the documentation for the CSI drivers that
+you use to find out whether this support is available and, if so, how to use
+it. If you are not running Kubernetes v{{< skew currentVersion >}}, check the
+documentation for that version of Kubernetes.
 
 <!-- body -->
 
 ## API
 
 There are two API extensions for this feature:
-- CSIStorageCapacity objects:
+- [CSIStorageCapacity](/docs/reference/kubernetes-api/config-and-storage-resources/csi-storage-capacity-v1/) objects:
   these get produced by a CSI driver in the namespace
   where the driver is installed. Each object contains capacity
   information for one storage class and defines which nodes have
   access to that storage.
-- [The `CSIDriverSpec.StorageCapacity` field](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#csidriverspec-v1-storage-k8s-io):
+- [The `CSIDriverSpec.StorageCapacity` field](/docs/reference/kubernetes-api/config-and-storage-resources/csi-driver-v1/#CSIDriverSpec):
   when set to `true`, the Kubernetes scheduler will consider storage
   capacity for volumes that use the CSI driver.
 
 ## Scheduling
 
 Storage capacity information is used by the Kubernetes scheduler if:
-- the `CSIStorageCapacity` feature gate is true,
 - a Pod uses a volume that has not been created yet,
 - that volume uses a {{< glossary_tooltip text="StorageClass" term_id="storage-class" >}} which references a CSI driver and
   uses `WaitForFirstConsumer` [volume binding
@@ -98,20 +101,9 @@ multiple volumes: one volume might have been created already in a
 topology segment which then does not have enough capacity left for
 another volume. Manual intervention is necessary to recover from this,
 for example by increasing capacity or deleting the volume that was
-already created. [Further
-work](https://github.com/kubernetes/enhancements/pull/1703) is needed
-to handle this automatically.
-
-## Enabling storage capacity tracking
-
-Storage capacity tracking is a beta feature and enabled by default in
-a Kubernetes cluster since Kubernetes 1.21. In addition to having the
-feature enabled in the cluster, a CSI driver also has to support
-it. Please refer to the driver's documentation for details.
+already created.
 
 ## {{% heading "whatsnext" %}}
 
  - For more information on the design, see the
 [Storage Capacity Constraints for Pod Scheduling KEP](https://github.com/kubernetes/enhancements/blob/master/keps/sig-storage/1472-storage-capacity-tracking/README.md).
-- For more information on further development of this feature, see the [enhancement tracking issue #1472](https://github.com/kubernetes/enhancements/issues/1472).
-- Learn about [Kubernetes Scheduler](/docs/concepts/scheduling-eviction/kube-scheduler/)
diff --git a/content/en/docs/concepts/storage/storage-classes.md b/content/en/docs/concepts/storage/storage-classes.md
index 36615098c6..8fda0b2ff3 100644
--- a/content/en/docs/concepts/storage/storage-classes.md
+++ b/content/en/docs/concepts/storage/storage-classes.md
@@ -87,7 +87,7 @@ for provisioning PVs. This field must be specified.
 You are not restricted to specifying the "internal" provisioners
 listed here (whose names are prefixed with "kubernetes.io" and shipped
 alongside Kubernetes). You can also run and specify external provisioners,
-which are independent programs that follow a [specification](https://git.k8s.io/community/contributors/design-proposals/storage/volume-provisioning.md)
+which are independent programs that follow a [specification](https://git.k8s.io/design-proposals-archive/storage/volume-provisioning.md)
 defined by Kubernetes. Authors of external provisioners have full discretion
 over where their code lives, how the provisioner is shipped, how it needs to be
 run, what volume plugin it uses (including Flex), etc. The repository
@@ -241,8 +241,8 @@ allowedTopologies:
 - matchLabelExpressions:
   - key: failure-domain.beta.kubernetes.io/zone
     values:
-    - us-central1-a
-    - us-central1-b
+    - us-central-1a
+    - us-central-1b
 ```
 
 ## Parameters
@@ -434,7 +434,7 @@ provisioner: example.com/external-nfs
 parameters:
   server: nfs-server.example.com
   path: /share
-  readOnly: false
+  readOnly: "false"
 ```
 
 * `server`: Server is the hostname or IP address of the NFS server.
@@ -470,14 +470,14 @@ This internal provisioner of OpenStack is deprecated. Please use [the external c
 
 There are two types of provisioners for vSphere storage classes: 
 
-- [CSI provisioner](#csi-provisioner): `csi.vsphere.vmware.com`
+- [CSI provisioner](#vsphere-provisioner-csi): `csi.vsphere.vmware.com`
 - [vCP provisioner](#vcp-provisioner): `kubernetes.io/vsphere-volume`
 
 In-tree provisioners are [deprecated](/blog/2019/12/09/kubernetes-1-17-feature-csi-migration-beta/#why-are-we-migrating-in-tree-plugins-to-csi). For more information on the CSI provisioner, see [Kubernetes vSphere CSI Driver](https://vsphere-csi-driver.sigs.k8s.io/) and [vSphereVolume CSI migration](/docs/concepts/storage/volumes/#csi-migration-5).
 
 #### CSI Provisioner {#vsphere-provisioner-csi}
 
-The vSphere CSI StorageClass provisioner works with Tanzu Kubernetes clusters. For an example, refer to the [vSphere CSI repository](https://raw.githubusercontent.com/kubernetes-sigs/vsphere-csi-driver/master/example/vanilla-k8s-file-driver/example-sc.yaml).
+The vSphere CSI StorageClass provisioner works with Tanzu Kubernetes clusters. For an example, refer to the [vSphere CSI repository](https://github.com/kubernetes-sigs/vsphere-csi-driver/blob/master/example/vanilla-k8s-RWM-filesystem-volumes/example-sc.yaml).
 
 #### vCP Provisioner 
 
@@ -797,7 +797,7 @@ parameters:
   storagePool: sp1
   storageMode: ThinProvisioned
   secretRef: sio-secret
-  readOnly: false
+  readOnly: "false"
   fsType: xfs
 ```
 
diff --git a/content/en/docs/concepts/storage/volume-health-monitoring.md b/content/en/docs/concepts/storage/volume-health-monitoring.md
index c5fb9c1929..0e39011a0f 100644
--- a/content/en/docs/concepts/storage/volume-health-monitoring.md
+++ b/content/en/docs/concepts/storage/volume-health-monitoring.md
@@ -24,7 +24,7 @@ If a CSI Driver supports Volume Health Monitoring feature from the controller si
 
 The External Health Monitor {{< glossary_tooltip text="controller" term_id="controller" >}} also watches for node failure events. You can enable node failure monitoring by setting the `enable-node-watcher` flag to true. When the external health monitor detects a node failure event, the controller reports an Event will be reported on the PVC to indicate that pods using this PVC are on a failed node.
 
-If a CSI Driver supports Volume Health Monitoring feature from the node side, an Event will be reported on every Pod using the PVC when an abnormal volume condition is detected on a CSI volume.
+If a CSI Driver supports Volume Health Monitoring feature from the node side, an Event will be reported on every Pod using the PVC when an abnormal volume condition is detected on a CSI volume. In addition, Volume Health information is exposed as Kubelet VolumeStats metrics. A new metric kubelet_volume_stats_health_status_abnormal is added. This metric includes two labels: `namespace` and `persistentvolumeclaim`. The count is either 1 or 0. 1 indicates the volume is unhealthy, 0 indicates volume is healthy. For more information, please check [KEP](https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/1432-volume-health-monitor#kubelet-metrics-changes).
 
 {{< note >}}
 You need to enable the `CSIVolumeHealth` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) to use this feature from the node side.
diff --git a/content/en/docs/concepts/storage/volume-pvc-datasource.md b/content/en/docs/concepts/storage/volume-pvc-datasource.md
index 9e59560d1d..f800d9107a 100644
--- a/content/en/docs/concepts/storage/volume-pvc-datasource.md
+++ b/content/en/docs/concepts/storage/volume-pvc-datasource.md
@@ -6,7 +6,7 @@ reviewers:
 - msau42
 title: CSI Volume Cloning
 content_type: concept
-weight: 30
+weight: 60
 ---
 
 <!-- overview -->
diff --git a/content/en/docs/concepts/storage/volume-snapshot-classes.md b/content/en/docs/concepts/storage/volume-snapshot-classes.md
index ee781d665f..485ca0a4a4 100644
--- a/content/en/docs/concepts/storage/volume-snapshot-classes.md
+++ b/content/en/docs/concepts/storage/volume-snapshot-classes.md
@@ -8,7 +8,7 @@ reviewers:
 - yuxiangqian
 title: Volume Snapshot Classes
 content_type: concept
-weight: 30
+weight: 41 # just after volume snapshots
 ---
 
 <!-- overview -->
@@ -39,6 +39,10 @@ request a particular class. Administrators set the name and other parameters
 of a class when first creating VolumeSnapshotClass objects, and the objects cannot
 be updated once they are created.
 
+{{< note >}}
+Installation of the CRDs is the responsibility of the Kubernetes distribution. Without the required CRDs present, the creation of a VolumeSnapshotClass fails.  
+{{< /note >}}
+
 ```yaml
 apiVersion: snapshot.storage.k8s.io/v1
 kind: VolumeSnapshotClass
diff --git a/content/en/docs/concepts/storage/volume-snapshots.md b/content/en/docs/concepts/storage/volume-snapshots.md
index 7673ecf2b4..0b4d2c2f2b 100644
--- a/content/en/docs/concepts/storage/volume-snapshots.md
+++ b/content/en/docs/concepts/storage/volume-snapshots.md
@@ -8,7 +8,7 @@ reviewers:
 - yuxiangqian
 title: Volume Snapshots
 content_type: concept
-weight: 20
+weight: 40
 ---
 
 <!-- overview -->
@@ -120,6 +120,7 @@ spec:
   driver: hostpath.csi.k8s.io
   source:
     volumeHandle: ee0cfb94-f8d4-11e9-b2d8-0242ac110002
+  sourceVolumeMode: Filesystem
   volumeSnapshotClassName: csi-hostpath-snapclass
   volumeSnapshotRef:
     name: new-snapshot-test
@@ -141,6 +142,7 @@ spec:
   driver: hostpath.csi.k8s.io
   source:
     snapshotHandle: 7bdd0de3-aaeb-11e8-9aae-0242ac110002
+  sourceVolumeMode: Filesystem
   volumeSnapshotRef:
     name: new-snapshot-test
     namespace: default
@@ -148,6 +150,51 @@ spec:
 
 `snapshotHandle` is the unique identifier of the volume snapshot created on the storage backend. This field is required for the pre-provisioned snapshots. It specifies the CSI snapshot id on the storage system that this `VolumeSnapshotContent` represents.
 
+`sourceVolumeMode` is the mode of the volume whose snapshot is taken. The value 
+of the `sourceVolumeMode` field can be either `Filesystem` or `Block`. If the 
+source volume mode is not specified, Kubernetes treats the snapshot as if the 
+source volume's mode is unknown.
+
+## Converting the volume mode of a Snapshot {#convert-volume-mode}
+
+If the `VolumeSnapshots` API installed on your cluster supports the `sourceVolumeMode`
+field, then the API has the capability to prevent unauthorized users from converting 
+the mode of a volume.
+
+To check if your cluster has capability for this feature, run the following command:
+
+```yaml
+$ kubectl get crd volumesnapshotcontent -o yaml
+```
+
+If you want to allow users to create a `PersistentVolumeClaim` from an existing 
+`VolumeSnapshot`, but with a different volume mode than the source, the annotation 
+`snapshot.storage.kubernetes.io/allowVolumeModeChange: "true"`needs to be added to 
+the `VolumeSnapshotContent` that corresponds to the `VolumeSnapshot`. 
+
+For pre-provisioned snapshots, `Spec.SourceVolumeMode` needs to be populated 
+by the cluster administrator.
+
+An example `VolumeSnapshotContent` resource with this feature enabled would look like:
+
+```yaml
+apiVersion: snapshot.storage.k8s.io/v1
+kind: VolumeSnapshotContent
+metadata:
+  name: new-snapshot-content-test
+  annotations:
+    - snapshot.storage.kubernetes.io/allowVolumeModeChange: "true"
+spec:
+  deletionPolicy: Delete
+  driver: hostpath.csi.k8s.io
+  source:
+    snapshotHandle: 7bdd0de3-aaeb-11e8-9aae-0242ac110002
+  sourceVolumeMode: Filesystem
+  volumeSnapshotRef:
+    name: new-snapshot-test
+    namespace: default
+```
+
 ## Provisioning Volumes from Snapshots
 
 You can provision a new volume, pre-populated with data from a snapshot, by using
diff --git a/content/en/docs/concepts/storage/volumes.md b/content/en/docs/concepts/storage/volumes.md
index 56694dee66..fd994c97fa 100644
--- a/content/en/docs/concepts/storage/volumes.md
+++ b/content/en/docs/concepts/storage/volumes.md
@@ -33,8 +33,8 @@ drivers, but the functionality is somewhat limited.
 Kubernetes supports many types of volumes. A {{< glossary_tooltip term_id="pod" text="Pod" >}}
 can use any number of volume types simultaneously.
 Ephemeral volume types have a lifetime of a pod, but persistent volumes exist beyond
-the lifetime of a pod. When a pod ceases to exist, Kubernetes destroys ephemeral volumes; 
-however, Kubernetes does not destroy persistent volumes. 
+the lifetime of a pod. When a pod ceases to exist, Kubernetes destroys ephemeral volumes;
+however, Kubernetes does not destroy persistent volumes.
 For any kind of volume in a given pod, data is preserved across container restarts.
 
 At its core, a volume is a directory, possibly with some data in it, which
@@ -44,18 +44,29 @@ volume type used.
 
 To use a volume, specify the volumes to provide for the Pod in `.spec.volumes`
 and declare where to mount those volumes into containers in `.spec.containers[*].volumeMounts`.
-A process in a container sees a filesystem view composed from their Docker
-image and volumes. The [Docker image](https://docs.docker.com/userguide/dockerimages/)
-is at the root of the filesystem hierarchy. Volumes mount at the specified paths within
-the image. Volumes can not mount onto other volumes or have hard links to
-other volumes. Each Container in the Pod's configuration must independently specify where to
-mount each volume.
+A process in a container sees a filesystem view composed from the initial contents of
+the {{< glossary_tooltip text="container image" term_id="image" >}}, plus volumes
+(if defined) mounted inside the container.
+The process sees a root filesystem that initially matches the contents of the container
+image.
+Any writes to within that filesystem hierarchy, if allowed, affect what that process views
+when it performs a subsequent filesystem access.
+Volumes mount at the [specified paths](#using-subpath) within
+the image.
+For each container defined within a Pod, you must independently specify where
+to mount each volume that the container uses.
+
+Volumes cannot mount within other volumes (but see [Using subPath](#using-subpath)
+for a related mechanism). Also, a volume cannot contain a hard link to anything in
+a different volume.
 
 ## Types of Volumes {#volume-types}
 
 Kubernetes supports several types of volumes.
 
-### awsElasticBlockStore {#awselasticblockstore}
+### awsElasticBlockStore (deprecated) {#awselasticblockstore}
+
+{{< feature-state for_k8s_version="v1.17" state="deprecated" >}}
 
 An `awsElasticBlockStore` volume mounts an Amazon Web Services (AWS)
 [EBS volume](https://aws.amazon.com/ebs/) into your pod. Unlike
@@ -106,7 +117,7 @@ spec:
       fsType: ext4
 ```
 
-If the EBS volume is partitioned, you can supply the optional field `partition: "<partition number>"` to specify which parition to mount on.
+If the EBS volume is partitioned, you can supply the optional field `partition: "<partition number>"` to specify which partition to mount on.
 
 #### AWS EBS CSI migration
 
@@ -126,7 +137,9 @@ beta features must be enabled.
 To disable the `awsElasticBlockStore` storage plugin from being loaded by the controller manager
 and the kubelet, set the `InTreePluginAWSUnregister` flag to `true`.
 
-### azureDisk {#azuredisk}
+### azureDisk (deprecated) {#azuredisk}
+
+{{< feature-state for_k8s_version="v1.19" state="deprecated" >}}
 
 The `azureDisk` volume type mounts a Microsoft Azure [Data Disk](https://docs.microsoft.com/en-us/azure/aks/csi-storage-drivers) into a pod.
 
@@ -134,16 +147,24 @@ For more details, see the [`azureDisk` volume plugin](https://github.com/kuberne
 
 #### azureDisk CSI migration
 
-{{< feature-state for_k8s_version="v1.19" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 The `CSIMigration` feature for `azureDisk`, when enabled, redirects all plugin operations
 from the existing in-tree plugin to the `disk.csi.azure.com` Container
-Storage Interface (CSI) Driver. In order to use this feature, the [Azure Disk CSI
-Driver](https://github.com/kubernetes-sigs/azuredisk-csi-driver)
-must be installed on the cluster and the `CSIMigration` and `CSIMigrationAzureDisk`
-features must be enabled.
+Storage Interface (CSI) Driver. In order to use this feature, the
+[Azure Disk CSI Driver](https://github.com/kubernetes-sigs/azuredisk-csi-driver)
+must be installed on the cluster and the `CSIMigration` feature must be enabled.
 
-### azureFile {#azurefile}
+#### azureDisk CSI migration complete
+
+{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+
+To disable the `azureDisk` storage plugin from being loaded by the controller manager
+and the kubelet, set the `InTreePluginAzureDiskUnregister` flag to `true`.
+
+### azureFile (deprecated) {#azurefile}
+
+{{< feature-state for_k8s_version="v1.21" state="deprecated" >}}
 
 The `azureFile` volume type mounts a Microsoft Azure File volume (SMB 2.1 and 3.0)
 into a pod.
@@ -161,7 +182,15 @@ Driver](https://github.com/kubernetes-sigs/azurefile-csi-driver)
 must be installed on the cluster and the `CSIMigration` and `CSIMigrationAzureFile`
 [feature gates](/docs/reference/command-line-tools-reference/feature-gates/) must be enabled.
 
-Azure File CSI driver does not support using same volume with different fsgroups, if Azurefile CSI migration is enabled, using same volume with different fsgroups won't be supported at all.
+Azure File CSI driver does not support using same volume with different fsgroups. If
+`CSIMigrationAzureFile` is enabled, using same volume with different fsgroups won't be supported at all.
+
+#### azureFile CSI migration complete
+
+{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+
+To disable the `azureFile` storage plugin from being loaded by the controller manager
+and the kubelet, set the `InTreePluginAzureFileUnregister` flag to `true`.
 
 ### cephfs
 
@@ -178,7 +207,9 @@ You must have your own Ceph server running with the share exported before you ca
 
 See the [CephFS example](https://github.com/kubernetes/examples/tree/master/volumes/cephfs/) for more details.
 
-### cinder
+### cinder (deprecated) {#cinder}
+
+{{< feature-state for_k8s_version="v1.18" state="deprecated" >}}
 
 {{< note >}}
 Kubernetes must be configured with the OpenStack cloud provider.
@@ -210,17 +241,17 @@ spec:
 
 #### OpenStack CSI migration
 
-{{< feature-state for_k8s_version="v1.21" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
-The `CSIMigration` feature for Cinder is enabled by default in Kubernetes 1.21.
+The `CSIMigration` feature for Cinder is enabled by default since Kubernetes 1.21.
 It redirects all plugin operations from the existing in-tree plugin to the
 `cinder.csi.openstack.org` Container Storage Interface (CSI) Driver.
 [OpenStack Cinder CSI Driver](https://github.com/kubernetes/cloud-provider-openstack/blob/master/docs/cinder-csi-plugin/using-cinder-csi-plugin.md)
 must be installed on the cluster.
-You can disable Cinder CSI migration for your cluster by setting the `CSIMigrationOpenStack` 
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/) to `false`.
-If you disable the `CSIMigrationOpenStack` feature, the in-tree Cinder volume plugin takes responsibility
-for all aspects of Cinder volume storage management.
+
+To disable the in-tree Cinder plugin from being loaded by the controller manager
+and the kubelet, you can enable the `InTreePluginOpenStackUnregister`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/).
 
 ### configMap
 
@@ -242,7 +273,7 @@ metadata:
 spec:
   containers:
     - name: test
-      image: busybox
+      image: busybox:1.28
       volumeMounts:
         - name: config-vol
           mountPath: /etc/config
@@ -272,15 +303,17 @@ keyed with `log_level`.
 
 ### downwardAPI {#downwardapi}
 
-A `downwardAPI` volume makes downward API data available to applications.
-It mounts a directory and writes the requested data in plain text files.
+A `downwardAPI` volume makes {{< glossary_tooltip term_id="downward-api" text="downward API" >}}
+data available to applications. Within the volume, you can find the exposed
+data as read-only files in plain text format.
 
 {{< note >}}
-A container using the downward API as a [`subPath`](#using-subpath) volume mount will not
-receive downward API updates.
+A container using the downward API as a [`subPath`](#using-subpath) volume mount does not
+receive updates when field values change.
 {{< /note >}}
 
-See the [downward API example](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/) for more details.
+See [Expose Pod Information to Containers Through Files](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/)
+to learn more.
 
 ### emptyDir {#emptydir}
 
@@ -367,7 +400,9 @@ You must have your own Flocker installation running before you can use it.
 
 See the [Flocker example](https://github.com/kubernetes/examples/tree/master/staging/volumes/flocker) for more details.
 
-### gcePersistentDisk
+### gcePersistentDisk (deprecated) {#gcepersistentdisk}
+
+{{< feature-state for_k8s_version="v1.17" state="deprecated" >}}
 
 A `gcePersistentDisk` volume mounts a Google Compute Engine (GCE)
 [persistent disk](https://cloud.google.com/compute/docs/disks) (PD) into your Pod.
@@ -801,143 +836,8 @@ For more details, see the [Portworx volume](https://github.com/kubernetes/exampl
 
 ### projected
 
-A `projected` volume maps several existing volume sources into the same directory.
-
-Currently, the following types of volume sources can be projected:
-
-* [`secret`](#secret)
-* [`downwardAPI`](#downwardapi)
-* [`configMap`](#configmap)
-* `serviceAccountToken`
-
-All sources are required to be in the same namespace as the Pod. For more details,
-see the [all-in-one volume design document](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/node/all-in-one-volume.md).
-
-#### Example configuration with a secret, a downwardAPI, and a configMap {#example-configuration-secret-downwardapi-configmap}
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: volume-test
-spec:
-  containers:
-  - name: container-test
-    image: busybox
-    volumeMounts:
-    - name: all-in-one
-      mountPath: "/projected-volume"
-      readOnly: true
-  volumes:
-  - name: all-in-one
-    projected:
-      sources:
-      - secret:
-          name: mysecret
-          items:
-            - key: username
-              path: my-group/my-username
-      - downwardAPI:
-          items:
-            - path: "labels"
-              fieldRef:
-                fieldPath: metadata.labels
-            - path: "cpu_limit"
-              resourceFieldRef:
-                containerName: container-test
-                resource: limits.cpu
-      - configMap:
-          name: myconfigmap
-          items:
-            - key: config
-              path: my-group/my-config
-```
-
-#### Example configuration: secrets with a non-default permission mode set {#example-configuration-secrets-nondefault-permission-mode}
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: volume-test
-spec:
-  containers:
-  - name: container-test
-    image: busybox
-    volumeMounts:
-    - name: all-in-one
-      mountPath: "/projected-volume"
-      readOnly: true
-  volumes:
-  - name: all-in-one
-    projected:
-      sources:
-      - secret:
-          name: mysecret
-          items:
-            - key: username
-              path: my-group/my-username
-      - secret:
-          name: mysecret2
-          items:
-            - key: password
-              path: my-group/my-password
-              mode: 511
-```
-
-Each projected volume source is listed in the spec under `sources`. The
-parameters are nearly the same with two exceptions:
-
-* For secrets, the `secretName` field has been changed to `name` to be consistent
-  with ConfigMap naming.
-* The `defaultMode` can only be specified at the projected level and not for each
-  volume source. However, as illustrated above, you can explicitly set the `mode`
-  for each individual projection.
-
-When the `TokenRequestProjection` feature is enabled, you can inject the token
-for the current [service account](/docs/reference/access-authn-authz/authentication/#service-account-tokens)
-into a Pod at a specified path. For example:
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: sa-token-test
-spec:
-  containers:
-  - name: container-test
-    image: busybox
-    volumeMounts:
-    - name: token-vol
-      mountPath: "/service-account"
-      readOnly: true
-  volumes:
-  - name: token-vol
-    projected:
-      sources:
-      - serviceAccountToken:
-          audience: api
-          expirationSeconds: 3600
-          path: token
-```
-
-The example Pod has a projected volume containing the injected service account
-token. This token can be used by a Pod's containers to access the Kubernetes API
-server. The `audience` field contains the intended audience of the
-token. A recipient of the token must identify itself with an identifier specified
-in the audience of the token, and otherwise should reject the token. This field
-is optional and it defaults to the identifier of the API server.
-
-The `expirationSeconds` is the expected duration of validity of the service account
-token. It defaults to 1 hour and must be at least 10 minutes (600 seconds). An administrator
-can also limit its maximum value by specifying the `--service-account-max-token-expiration`
-option for the API server. The `path` field specifies a relative path to the mount point
-of the projected volume.
-
-{{< note >}}
-A container using a projected volume source as a [`subPath`](#using-subpath) volume mount will not
-receive updates for those volume sources.
-{{< /note >}}
+A projected volume maps several existing volume sources into the same
+directory. For more details, see [projected volumes](/docs/concepts/storage/projected-volumes/).
 
 ### quobyte (deprecated) {#quobyte}
 
@@ -956,11 +856,11 @@ GitHub project has [instructions](https://github.com/quobyte/quobyte-csi#quobyte
 ### rbd
 
 An `rbd` volume allows a
-[Rados Block Device](https://docs.ceph.com/en/latest/rbd/) (RBD) volume to mount into your
-Pod. Unlike `emptyDir`, which is erased when a pod is removed, the contents of
-an `rbd` volume are preserved and the volume is unmounted. This
-means that a RBD volume can be pre-populated with data, and that data can
-be shared between pods.
+[Rados Block Device](https://docs.ceph.com/en/latest/rbd/) (RBD) volume to mount
+into your Pod. Unlike `emptyDir`, which is erased when a pod is removed, the
+contents of an `rbd` volume are preserved and the volume is unmounted. This
+means that a RBD volume can be pre-populated with data, and that data can be
+shared between pods.
 
 {{< note >}}
 You must have a Ceph installation running before you can use RBD.
@@ -975,6 +875,38 @@ Simultaneous writers are not allowed.
 See the [RBD example](https://github.com/kubernetes/examples/tree/master/volumes/rbd)
 for more details.
 
+#### RBD CSI migration {#rbd-csi-migration}
+
+{{< feature-state for_k8s_version="v1.23" state="alpha" >}}
+
+The `CSIMigration` feature for `RBD`, when enabled, redirects all plugin
+operations from the existing in-tree plugin to the `rbd.csi.ceph.com` {{<
+glossary_tooltip text="CSI" term_id="csi" >}} driver. In order to use this
+feature, the
+[Ceph CSI driver](https://github.com/ceph/ceph-csi)
+must be installed on the cluster and the `CSIMigration` and `csiMigrationRBD`
+[feature gates](/docs/reference/command-line-tools-reference/feature-gates/)
+must be enabled.
+
+{{< note >}}
+
+As a Kubernetes cluster operator that administers storage, here are the
+prerequisites that you must complete before you attempt migration to the
+RBD CSI driver:
+
+* You must install the Ceph CSI driver (`rbd.csi.ceph.com`), v3.5.0 or above,
+  into your Kubernetes cluster.
+* considering the `clusterID` field is a required parameter for CSI driver for
+  its operations, but in-tree StorageClass has `monitors` field as a required
+  parameter, a Kubernetes storage admin has to create a clusterID based on the
+  monitors hash ( ex:`#echo -n
+  '<monitors_string>' | md5sum`) in the CSI config map and keep the monitors
+  under this clusterID configuration.
+* Also, if the value of `adminId` in the in-tree Storageclass is different from
+ `admin`, the `adminSecretName` mentioned in the in-tree Storageclass has to be
+  patched with the base64 value of the `adminId` parameter value, otherwise this
+  step can be skipped. {{< /note >}}
+
 ### secret
 
 A `secret` volume is used to pass sensitive information, such as passwords, to
@@ -1049,66 +981,15 @@ spec:
 For more information about StorageOS, dynamic provisioning, and PersistentVolumeClaims, see the
 [StorageOS examples](https://github.com/kubernetes/examples/blob/master/volumes/storageos).
 
-### vsphereVolume {#vspherevolume}
+### vsphereVolume (deprecated) {#vspherevolume}
 
 {{< note >}}
-You must configure the Kubernetes vSphere Cloud Provider. For cloudprovider
-configuration, refer to the [vSphere Getting Started guide](https://vmware.github.io/vsphere-storage-for-kubernetes/documentation/).
+We recommend to use vSphere CSI out-of-tree driver instead.
 {{< /note >}}
 
 A `vsphereVolume` is used to mount a vSphere VMDK volume into your Pod.  The contents
 of a volume are preserved when it is unmounted. It supports both VMFS and VSAN datastore.
 
-{{< note >}}
-You must create vSphere VMDK volume using one of the following methods before using with a Pod.
-{{< /note >}}
-
-#### Creating a VMDK volume {#creating-vmdk-volume}
-
-Choose one of the following methods to create a VMDK.
-
-{{< tabs name="tabs_volumes" >}}
-{{% tab name="Create using vmkfstools" %}}
-First ssh into ESX, then use the following command to create a VMDK:
-
-```shell
-vmkfstools -c 2G /vmfs/volumes/DatastoreName/volumes/myDisk.vmdk
-```
-
-{{% /tab %}}
-{{% tab name="Create using vmware-vdiskmanager" %}}
-Use the following command to create a VMDK:
-
-```shell
-vmware-vdiskmanager -c -t 0 -s 40GB -a lsilogic myDisk.vmdk
-```
-
-{{% /tab %}}
-
-{{< /tabs >}}
-
-#### vSphere VMDK configuration example {#vsphere-vmdk-configuration}
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: test-vmdk
-spec:
-  containers:
-  - image: k8s.gcr.io/test-webserver
-    name: test-container
-    volumeMounts:
-    - mountPath: /test-vmdk
-      name: test-volume
-  volumes:
-  - name: test-volume
-    # This VMDK volume must already exist.
-    vsphereVolume:
-      volumePath: "[DatastoreName] volumes/myDisk"
-      fsType: ext4
-```
-
 For more information, see the [vSphere volume](https://github.com/kubernetes/examples/tree/master/staging/volumes/vsphere) examples.
 
 #### vSphere CSI migration {#vsphere-csi-migration}
@@ -1120,8 +1001,15 @@ from the existing in-tree plugin to the `csi.vsphere.vmware.com` {{< glossary_to
 [vSphere CSI driver](https://github.com/kubernetes-sigs/vsphere-csi-driver)
 must be installed on the cluster and the `CSIMigration` and `CSIMigrationvSphere`
 [feature gates](/docs/reference/command-line-tools-reference/feature-gates/) must be enabled.
+You can find additional advice on how to migrate in VMware's
+documentation page [Migrating In-Tree vSphere Volumes to vSphere Container Storage Plug-in](https://docs.vmware.com/en/VMware-vSphere-Container-Storage-Plug-in/2.0/vmware-vsphere-csp-getting-started/GUID-968D421F-D464-4E22-8127-6CB9FF54423F.html).
 
-This also requires minimum vSphere vCenter/ESXi Version to be 7.0u1 and minimum HW Version to be VM version 15.
+Kubernetes v{{< skew currentVersion >}} requires that you are using vSphere 7.0u2 or later
+in order to migrate to the out-of-tree CSI driver.
+If you are running a version of Kubernetes other than v{{< skew currentVersion >}}, consult
+the documentation for that version of Kubernetes.
+If you are running Kubernetes v{{< skew currentVersion >}} and an older version of vSphere,
+consider upgrading to at least vSphere 7.0u2.
 
 {{< note >}}
 The following StorageClass parameters from the built-in `vsphereVolume` plugin are not supported by the vSphere CSI driver:
@@ -1144,6 +1032,16 @@ but new volumes created by the vSphere CSI driver will not be honoring these par
 
 To turn off the `vsphereVolume` plugin from being loaded by the controller manager and the kubelet, you need to set `InTreePluginvSphereUnregister` feature flag to `true`. You must install a `csi.vsphere.vmware.com` {{< glossary_tooltip text="CSI" term_id="csi" >}} driver on all worker nodes.
 
+#### Portworx CSI migration
+{{< feature-state for_k8s_version="v1.23" state="alpha" >}}
+
+The `CSIMigration` feature for Portworx has been added but disabled by default in Kubernetes 1.23 since it's in alpha state.
+It redirects all plugin operations from the existing in-tree plugin to the
+`pxd.portworx.com` Container Storage Interface (CSI) Driver.
+[Portworx CSI Driver](https://docs.portworx.com/portworx-install-with-kubernetes/storage-operations/csi/)
+must be installed on the cluster.
+To enable the feature, set `CSIMigrationPortworx=true` in kube-controller-manager and kubelet.
+
 ## Using subPath {#using-subpath}
 
 Sometimes, it is useful to share one volume for multiple uses in a single pod.
@@ -1212,11 +1110,12 @@ spec:
         fieldRef:
           apiVersion: v1
           fieldPath: metadata.name
-    image: busybox
+    image: busybox:1.28
     command: [ "sh", "-c", "while [ true ]; do echo 'Hello'; sleep 10; done | tee -a /logs/hello.txt" ]
     volumeMounts:
     - name: workdir1
       mountPath: /logs
+      # The variable expansion uses round brackets (not curly brackets).
       subPathExpr: $(POD_NAME)
   restartPolicy: Never
   volumes:
@@ -1239,8 +1138,7 @@ To learn about requesting space using a resource specification, see
 ## Out-of-tree volume plugins
 
 The out-of-tree volume plugins include
-{{< glossary_tooltip text="Container Storage Interface" term_id="csi" >}} (CSI)
-and FlexVolume. These plugins enable storage vendors to create custom storage plugins
+{{< glossary_tooltip text="Container Storage Interface" term_id="csi" >}} (CSI), and also FlexVolume (which is deprecated). These plugins enable storage vendors to create custom storage plugins
 without adding their plugin source code to the Kubernetes repository.
 
 Previously, all volume plugins were "in-tree". The "in-tree" plugins were built, linked, compiled,
@@ -1260,7 +1158,7 @@ to the [volume plugin FAQ](https://github.com/kubernetes/community/blob/master/s
 (CSI) defines a standard interface for container orchestration systems (like
 Kubernetes) to expose arbitrary storage systems to their container workloads.
 
-Please read the [CSI design proposal](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/storage/container-storage-interface.md) for more information.
+Please read the [CSI design proposal](https://git.k8s.io/design-proposals-archive/storage/container-storage-interface.md) for more information.
 
 {{< note >}}
 Support for CSI spec versions 0.2 and 0.3 are deprecated in Kubernetes
@@ -1280,9 +1178,8 @@ CSI driver.
 A `csi` volume can be used in a Pod in three different ways:
 
 * through a reference to a [PersistentVolumeClaim](#persistentvolumeclaim)
-* with a [generic ephemeral volume](/docs/concepts/storage/ephemeral-volumes/#generic-ephemeral-volume)
-(alpha feature)
-* with a [CSI ephemeral volume](/docs/concepts/storage/ephemeral-volumes/#csi-ephemeral-volume)
+* with a [generic ephemeral volume](/docs/concepts/storage/ephemeral-volumes/#generic-ephemeral-volumes)
+* with a [CSI ephemeral volume](/docs/concepts/storage/ephemeral-volumes/#csi-ephemeral-volumes)
 if the driver supports that (beta feature)
 
 The following fields are available to storage administrators to configure a CSI
@@ -1349,12 +1246,26 @@ You can set up your
 You can directly configure CSI volumes within the Pod
 specification. Volumes specified in this way are ephemeral and do not
 persist across pod restarts. See [Ephemeral
-Volumes](/docs/concepts/storage/ephemeral-volumes/#csi-ephemeral-volume)
+Volumes](/docs/concepts/storage/ephemeral-volumes/#csi-ephemeral-volumes)
 for more information.
 
 For more information on how to develop a CSI driver, refer to the
 [kubernetes-csi documentation](https://kubernetes-csi.github.io/docs/)
 
+#### Windows CSI proxy
+
+{{< feature-state for_k8s_version="v1.22" state="stable" >}}
+
+CSI node plugins need to perform various privileged
+operations like scanning of disk devices and mounting of file systems. These operations
+differ for each host operating system. For Linux worker nodes, containerized CSI node
+node plugins are typically deployed as privileged containers. For Windows worker nodes,
+privileged operations for containerized CSI node plugins is supported using
+[csi-proxy](https://github.com/kubernetes-csi/csi-proxy), a community-managed,
+stand-alone binary that needs to be pre-installed on each Windows node.
+
+For more details, refer to the deployment guide of the CSI plugin you wish to deploy.
+
 #### Migrating to CSI drivers from in-tree plugins
 
 {{< feature-state for_k8s_version="v1.17" state="beta" >}}
@@ -1371,15 +1282,37 @@ provisioning/delete, attach/detach, mount/unmount and resizing of volumes.
 In-tree plugins that support `CSIMigration` and have a corresponding CSI driver implemented
 are listed in [Types of Volumes](#volume-types).
 
+The following in-tree plugins support persistent storage on Windows nodes:
+
+* [`awsElasticBlockStore`](#awselasticblockstore)
+* [`azureDisk`](#azuredisk)
+* [`azureFile`](#azurefile)
+* [`gcePersistentDisk`](#gcepersistentdisk)
+* [`vsphereVolume`](#vspherevolume)
+
 ### flexVolume
 
-FlexVolume is an out-of-tree plugin interface that has existed in Kubernetes
-since version 1.2 (before CSI). It uses an exec-based model to interface with
-drivers. The FlexVolume driver binaries must be installed in a pre-defined volume
-plugin path on each node and in some cases the control plane nodes as well.
+{{< feature-state for_k8s_version="v1.23" state="deprecated" >}}
 
-Pods interact with FlexVolume drivers through the `flexvolume` in-tree volume plugin.
-For more details, see the [FlexVolume](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-storage/flexvolume.md) examples.
+FlexVolume is an out-of-tree plugin interface that uses an exec-based model to interface
+with storage drivers. The FlexVolume driver binaries must be installed in a pre-defined
+volume plugin path on each node and in some cases the control plane nodes as well.
+
+Pods interact with FlexVolume drivers through the `flexVolume` in-tree volume plugin.
+For more details, see the FlexVolume [README](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-storage/flexvolume.md#readme) document.
+
+The following FlexVolume [plugins](https://github.com/Microsoft/K8s-Storage-Plugins/tree/master/flexvolume/windows),
+deployed as PowerShell scripts on the host, support Windows nodes:
+
+* [SMB](https://github.com/microsoft/K8s-Storage-Plugins/tree/master/flexvolume/windows/plugins/microsoft.com~smb.cmd)
+* [iSCSI](https://github.com/microsoft/K8s-Storage-Plugins/tree/master/flexvolume/windows/plugins/microsoft.com~iscsi.cmd)
+
+{{< note >}}
+FlexVolume is deprecated. Using an out-of-tree CSI driver is the recommended way to integrate external storage with Kubernetes.
+
+Maintainers of FlexVolume driver should implement a CSI Driver and help to migrate users of FlexVolume drivers to CSI.
+Users of FlexVolume should move their workloads to use the equivalent CSI Driver.
+{{< /note >}}
 
 ## Mount propagation
 
diff --git a/content/en/docs/concepts/storage/windows-storage.md b/content/en/docs/concepts/storage/windows-storage.md
new file mode 100644
index 0000000000..b8f40177ca
--- /dev/null
+++ b/content/en/docs/concepts/storage/windows-storage.md
@@ -0,0 +1,71 @@
+---
+reviewers:
+- jingxu97
+- mauriciopoppe
+- jayunit100
+- jsturtevant
+- marosset
+- aravindhp
+title: Windows Storage
+content_type: concept
+---
+
+<!-- overview -->
+
+This page provides an storage overview specific to the Windows operating system.
+
+<!-- body -->
+
+## Persistent storage {#storage}
+
+Windows has a layered filesystem driver to mount container layers and create a copy
+filesystem based on NTFS. All file paths in the container are resolved only within
+the context of that container.
+
+* With Docker, volume mounts can only target a directory in the container, and not
+  an individual file. This limitation does not apply to containerd.
+* Volume mounts cannot project files or directories back to the host filesystem.
+* Read-only filesystems are not supported because write access is always required
+  for the Windows registry and SAM database. However, read-only volumes are supported.
+* Volume user-masks and permissions are not available. Because the SAM is not shared
+  between the host & container, there's no mapping between them. All permissions are
+  resolved within the context of the container.
+
+As a result, the following storage functionality is not supported on Windows nodes:
+
+* Volume subpath mounts: only the entire volume can be mounted in a Windows container
+* Subpath volume mounting for Secrets
+* Host mount projection
+* Read-only root filesystem (mapped volumes still support `readOnly`)
+* Block device mapping
+* Memory as the storage medium (for example, `emptyDir.medium` set to `Memory`)
+* File system features like uid/gid; per-user Linux filesystem permissions
+* Setting [secret permissions with DefaultMode](/docs/concepts/configuration/secret/#secret-files-permissions) (due to UID/GID dependency)
+* NFS based storage/volume support
+* Expanding the mounted volume (resizefs)
+
+Kubernetes {{< glossary_tooltip text="volumes" term_id="volume" >}} enable complex
+applications, with data persistence and Pod volume sharing requirements, to be deployed
+on Kubernetes. Management of persistent volumes associated with a specific storage
+back-end or protocol includes actions such as provisioning/de-provisioning/resizing
+of volumes, attaching/detaching a volume to/from a Kubernetes node and
+mounting/dismounting a volume to/from individual containers in a pod that needs to
+persist data.
+
+Volume management components are shipped as Kubernetes volume
+[plugin](/docs/concepts/storage/volumes/#types-of-volumes).
+The following broad classes of Kubernetes volume plugins are supported on Windows:
+
+* [`FlexVolume plugins`](/docs/concepts/storage/volumes/#flexVolume)
+  * Please note that FlexVolumes have been deprecated as of 1.23
+* [`CSI Plugins`](/docs/concepts/storage/volumes/#csi)
+
+##### In-tree volume plugins
+
+The following in-tree plugins support persistent storage on Windows nodes:
+
+* [`awsElasticBlockStore`](/docs/concepts/storage/volumes/#awselasticblockstore)
+* [`azureDisk`](/docs/concepts/storage/volumes/#azuredisk)
+* [`azureFile`](/docs/concepts/storage/volumes/#azurefile)
+* [`gcePersistentDisk`](/docs/concepts/storage/volumes/#gcepersistentdisk)
+* [`vsphereVolume`](/docs/concepts/storage/volumes/#vspherevolume)
diff --git a/content/en/docs/setup/production-environment/windows/_index.md b/content/en/docs/concepts/windows/_index.md
similarity index 100%
rename from content/en/docs/setup/production-environment/windows/_index.md
rename to content/en/docs/concepts/windows/_index.md
diff --git a/content/en/docs/concepts/windows/intro.md b/content/en/docs/concepts/windows/intro.md
new file mode 100644
index 0000000000..f3867ea86c
--- /dev/null
+++ b/content/en/docs/concepts/windows/intro.md
@@ -0,0 +1,387 @@
+---
+reviewers:
+- jayunit100
+- jsturtevant
+- marosset
+- perithompson
+title: Windows containers in Kubernetes
+content_type: concept
+weight: 65
+---
+
+<!-- overview -->
+
+Windows applications constitute a large portion of the services and applications that
+run in many organizations. [Windows containers](https://aka.ms/windowscontainers)
+provide a way to encapsulate processes and package dependencies, making it easier
+to use DevOps practices and follow cloud native patterns for Windows applications.
+
+Organizations with investments in Windows-based applications and Linux-based
+applications don't have to look for separate orchestrators to manage their workloads,
+leading to increased operational efficiencies across their deployments, regardless
+of operating system.
+
+<!-- body -->
+
+## Windows nodes in Kubernetes
+
+To enable the orchestration of Windows containers in Kubernetes, include Windows nodes
+in your existing Linux cluster. Scheduling Windows containers in
+{{< glossary_tooltip text="Pods" term_id="pod" >}} on Kubernetes is similar to
+scheduling Linux-based containers.
+
+In order to run Windows containers, your Kubernetes cluster must include
+multiple operating systems.
+While you can only run the {{< glossary_tooltip text="control plane" term_id="control-plane" >}} on Linux,
+you can deploy worker nodes running either Windows or Linux.
+
+Windows {{< glossary_tooltip text="nodes" term_id="node" >}} are
+[supported](#windows-os-version-support) provided that the operating system is
+Windows Server 2019.
+
+This document uses the term *Windows containers* to mean Windows containers with
+process isolation. Kubernetes does not support running Windows containers with
+[Hyper-V isolation](https://docs.microsoft.com/en-us/virtualization/windowscontainers/manage-containers/hyperv-container).
+
+## Compatibility and limitations {#limitations}
+
+Some node features are only available if you use a specific
+[container runtime](#container-runtime); others are not available on Windows nodes,
+including:
+
+* HugePages: not supported for Windows containers
+* Privileged containers: not supported for Windows containers.
+  [HostProcess Containers](/docs/tasks/configure-pod-container/create-hostprocess-pod/) offer similar functionality.
+* TerminationGracePeriod: requires containerD
+
+Not all features of shared namespaces are supported. See [API compatibility](#api)
+for more details.
+
+See [Windows OS version compatibility](#windows-os-version-support) for details on
+the Windows versions that Kubernetes is tested against.
+
+From an API and kubectl perspective, Windows containers behave in much the same
+way as Linux-based containers. However, there are some notable differences in key
+functionality which are outlined in this section.
+
+### Comparison with Linux {#compatibility-linux-similarities}
+
+Key Kubernetes elements work the same way in Windows as they do in Linux. This
+section refers to several key workload abstractions and how they map to Windows.
+
+* [Pods](/docs/concepts/workloads/pods/)
+
+  A Pod is the basic building block of Kubernetes–the smallest and simplest unit in
+  the Kubernetes object model that you create or deploy. You may not deploy Windows and
+  Linux containers in the same Pod. All containers in a Pod are scheduled onto a single
+  Node where each Node represents a specific platform and architecture. The following
+  Pod capabilities, properties and events are supported with Windows containers:
+
+  * Single or multiple containers per Pod with process isolation and volume sharing
+  * Pod `status` fields
+  * Readiness, liveness, and startup probes
+  * postStart & preStop container lifecycle hooks
+  * ConfigMap, Secrets: as environment variables or volumes
+  * `emptyDir` volumes
+  * Named pipe host mounts
+  * Resource limits
+  * OS field: 
+
+    The `.spec.os.name` field should be set to `windows` to indicate that the current Pod uses Windows containers.
+    The `IdentifyPodOS` feature gate needs to be enabled for this field to be recognized.
+
+    {{< note >}}
+    Starting from 1.24, the `IdentifyPodOS` feature gate is in Beta stage and defaults to be enabled.
+    {{< /note >}}
+
+    If the `IdentifyPodOS` feature gate is enabled and you set the `.spec.os.name` field to `windows`,
+    you must not set the following fields in the `.spec` of that Pod:
+
+    * `spec.hostPID`
+    * `spec.hostIPC`
+    * `spec.securityContext.seLinuxOptions`
+    * `spec.securityContext.seccompProfile`
+    * `spec.securityContext.fsGroup`
+    * `spec.securityContext.fsGroupChangePolicy`
+    * `spec.securityContext.sysctls`
+    * `spec.shareProcessNamespace`
+    * `spec.securityContext.runAsUser`
+    * `spec.securityContext.runAsGroup`
+    * `spec.securityContext.supplementalGroups`
+    * `spec.containers[*].securityContext.seLinuxOptions`
+    * `spec.containers[*].securityContext.seccompProfile`
+    * `spec.containers[*].securityContext.capabilities`
+    * `spec.containers[*].securityContext.readOnlyRootFilesystem`
+    * `spec.containers[*].securityContext.privileged`
+    * `spec.containers[*].securityContext.allowPrivilegeEscalation`
+    * `spec.containers[*].securityContext.procMount`
+    * `spec.containers[*].securityContext.runAsUser`
+    * `spec.containers[*].securityContext.runAsGroup`
+
+    In the above list, wildcards (`*`) indicate all elements in a list.
+    For example, `spec.containers[*].securityContext` refers to the SecurityContext object
+    for all containers. If any of these fields is specified, the Pod will
+    not be admitted by the API server.
+
+* [Workload resources](/docs/concepts/workloads/controllers/) including:
+  * ReplicaSet
+  * Deployment
+  * StatefulSet
+  * DaemonSet
+  * Job
+  * CronJob
+  * ReplicationController
+* {{< glossary_tooltip text="Services" term_id="service" >}}
+  See [Load balancing and Services](/docs/concepts/services-networking/windows-networking/#load-balancing-and-services) for more details.
+
+Pods, workload resources, and Services are critical elements to managing Windows
+workloads on Kubernetes. However, on their own they are not enough to enable
+the proper lifecycle management of Windows workloads in a dynamic cloud native
+environment.
+
+* `kubectl exec`
+* Pod and container metrics
+* {{< glossary_tooltip text="Horizontal pod autoscaling" term_id="horizontal-pod-autoscaler" >}}
+* {{< glossary_tooltip text="Resource quotas" term_id="resource-quota" >}}
+* Scheduler preemption
+
+### Command line options for the kubelet {#kubelet-compatibility}
+
+Some kubelet command line options behave differently on Windows, as described below:
+
+* The `--windows-priorityclass` lets you set the scheduling priority of the kubelet process
+  (see [CPU resource management](/docs/concepts/configuration/windows-resource-management/#resource-management-cpu))
+* The `--kube-reserved`, `--system-reserved` , and `--eviction-hard` flags update
+  [NodeAllocatable](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)
+* Eviction by using `--enforce-node-allocable` is not implemented
+* Eviction by using `--eviction-hard` and `--eviction-soft` are not implemented
+* When running on a Windows node the kubelet does not have memory or CPU
+  restrictions. `--kube-reserved` and `--system-reserved` only subtract from `NodeAllocatable`
+  and do not guarantee resource provided for workloads.
+  See [Resource Management for Windows nodes](/docs/concepts/configuration/windows-resource-management/#resource-reservation)
+  for more information.
+* The `MemoryPressure` Condition is not implemented
+* The kubelet does not take OOM eviction actions
+
+### API compatibility {#api}
+
+There are subtle differences in the way the Kubernetes APIs work for Windows due to the OS
+and container runtime. Some workload properties were designed for Linux, and fail to run on Windows.
+
+At a high level, these OS concepts are different:
+
+* Identity - Linux uses userID (UID) and groupID (GID) which
+  are represented as integer types. User and group names
+  are not canonical - they are just an alias in `/etc/groups`
+  or `/etc/passwd` back to UID+GID. Windows uses a larger binary
+  [security identifier](https://docs.microsoft.com/en-us/windows/security/identity-protection/access-control/security-identifiers) (SID)
+  which is stored in the Windows Security Access Manager (SAM) database. This
+  database is not shared between the host and containers, or between containers.
+* File permissions - Windows uses an access control list based on (SIDs), whereas
+  POSIX systems such as Linux use a bitmask based on object permissions and UID+GID,
+  plus _optional_ access control lists.
+* File paths - the convention on Windows is to use `\` instead of `/`. The Go IO
+  libraries typically accept both and just make it work, but when you're setting a
+  path or command line that's interpreted inside a container, `\` may be needed.
+* Signals - Windows interactive apps handle termination differently, and can
+  implement one or more of these:
+  * A UI thread handles well-defined messages including `WM_CLOSE`.
+  * Console apps handle Ctrl-C or Ctrl-break using a Control Handler.
+  * Services register a Service Control Handler function that can accept
+    `SERVICE_CONTROL_STOP` control codes.
+
+Container exit codes follow the same convention where 0 is success, and nonzero is failure.
+The specific error codes may differ across Windows and Linux. However, exit codes
+passed from the Kubernetes components (kubelet, kube-proxy) are unchanged.
+
+#### Field compatibility for container specifications {#compatibility-v1-pod-spec-containers}
+
+The following list documents differences between how Pod container specifications
+work between Windows and Linux:
+
+* Huge pages are not implemented in the Windows container
+  runtime, and are not available. They require [asserting a user
+  privilege](https://docs.microsoft.com/en-us/windows/desktop/Memory/large-page-support)
+  that's not configurable for containers.
+* `requests.cpu` and `requests.memory` - requests are subtracted
+  from node available resources, so they can be used to avoid overprovisioning a
+  node. However, they cannot be used to guarantee resources in an overprovisioned
+  node. They should be applied to all containers as a best practice if the operator
+  wants to avoid overprovisioning entirely.
+* `securityContext.allowPrivilegeEscalation` -
+   not possible on Windows; none of the capabilities are hooked up
+* `securityContext.capabilities` -
+   POSIX capabilities are not implemented on Windows
+* `securityContext.privileged` -
+   Windows doesn't support privileged containers
+* `securityContext.procMount` -
+   Windows doesn't have a `/proc` filesystem
+* `securityContext.readOnlyRootFilesystem` -
+   not possible on Windows; write access is required for registry & system
+   processes to run inside the container
+* `securityContext.runAsGroup` -
+   not possible on Windows as there is no GID support
+* `securityContext.runAsNonRoot` -
+   this setting will prevent containers from running as `ContainerAdministrator`
+   which is the closest equivalent to a root user on Windows.
+* `securityContext.runAsUser` -
+   use [`runAsUserName`](/docs/tasks/configure-pod-container/configure-runasusername)
+   instead
+* `securityContext.seLinuxOptions` -
+   not possible on Windows as SELinux is Linux-specific
+* `terminationMessagePath` -
+   this has some limitations in that Windows doesn't support mapping single files. The
+   default value is `/dev/termination-log`, which does work because it does not
+   exist on Windows by default.
+
+#### Field compatibility for Pod specifications {#compatibility-v1-pod}
+
+The following list documents differences between how Pod specifications work between Windows and Linux:
+
+* `hostIPC` and `hostpid` - host namespace sharing is not possible on Windows
+* `hostNetwork` - There is no Windows OS support to share the host network
+* `dnsPolicy` - setting the Pod `dnsPolicy` to `ClusterFirstWithHostNet` is
+   not supported on Windows because host networking is not provided. Pods always
+   run with a container network.
+* `podSecurityContext` (see below)
+* `shareProcessNamespace` - this is a beta feature, and depends on Linux namespaces
+  which are not implemented on Windows. Windows cannot share process namespaces or
+  the container's root filesystem. Only the network can be shared.
+* `terminationGracePeriodSeconds` - this is not fully implemented in Docker on Windows,
+  see the [GitHub issue](https://github.com/moby/moby/issues/25982).
+  The behavior today is that the ENTRYPOINT process is sent CTRL_SHUTDOWN_EVENT,
+  then Windows waits 5 seconds by default, and finally shuts down
+  all processes using the normal Windows shutdown behavior. The 5
+  second default is actually in the Windows registry
+  [inside the container](https://github.com/moby/moby/issues/25982#issuecomment-426441183),
+  so it can be overridden when the container is built.
+* `volumeDevices` - this is a beta feature, and is not implemented on Windows.
+  Windows cannot attach raw block devices to pods.
+* `volumes`
+  * If you define an `emptyDir` volume, you cannot set its volume source to `memory`.
+* You cannot enable `mountPropagation` for volume mounts as this is not
+  supported on Windows.
+
+#### Field compatibility for Pod security context {#compatibility-v1-pod-spec-containers-securitycontext}
+
+None of the Pod [`securityContext`](/docs/reference/kubernetes-api/workload-resources/pod-v1/#security-context) fields work on Windows.
+
+## Node problem detector
+
+The node problem detector (see
+[Monitor Node Health](/docs/tasks/debug/debug-cluster/monitor-node-health/))
+has preliminary support for Windows.
+For more information, visit the project's [GitHub page](https://github.com/kubernetes/node-problem-detector#windows).
+
+## Pause container
+
+In a Kubernetes Pod, an infrastructure or “pause” container is first created
+to host the container. In Linux, the cgroups and namespaces that make up a pod
+need a process to maintain their continued existence; the pause process provides
+this. Containers that belong to the same pod, including infrastructure and worker
+containers, share a common network endpoint (same IPv4 and / or IPv6 address, same
+network port spaces). Kubernetes uses pause containers to allow for worker containers
+crashing or restarting without losing any of the networking configuration.
+
+Kubernetes maintains a multi-architecture image that includes support for Windows.
+For Kubernetes v{{< skew currentVersion >}} the recommended pause image is `k8s.gcr.io/pause:3.6`.
+The [source code](https://github.com/kubernetes/kubernetes/tree/master/build/pause)
+is available on GitHub.
+
+Microsoft maintains a different multi-architecture image, with Linux and Windows
+amd64 support, that you can find as `mcr.microsoft.com/oss/kubernetes/pause:3.6`.
+This image is built from the same source as the Kubernetes maintained image but
+all of the Windows binaries are [authenticode signed](https://docs.microsoft.com/en-us/windows-hardware/drivers/install/authenticode) by Microsoft.
+The Kubernetes project recommends using the Microsoft maintained image if you are
+deploying to a production or production-like environment that requires signed
+binaries.
+
+## Container runtimes {#container-runtime}
+
+You need to install a
+{{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}
+into each node in the cluster so that Pods can run there.
+
+The following container runtimes work with Windows:
+
+{{% thirdparty-content %}}
+
+### ContainerD
+
+{{< feature-state for_k8s_version="v1.20" state="stable" >}}
+
+You can use {{< glossary_tooltip term_id="containerd" text="ContainerD" >}} 1.4.0+
+as the container runtime for Kubernetes nodes that run Windows.
+
+Learn how to [install ContainerD on a Windows node](/docs/setup/production-environment/container-runtimes/#install-containerd).
+
+{{< note >}}
+There is a [known limitation](/docs/tasks/configure-pod-container/configure-gmsa/#gmsa-limitations)
+when using GMSA with containerd to access Windows network shares, which requires a
+kernel patch.
+{{< /note >}}
+
+### Mirantis Container Runtime {#mcr}
+
+[Mirantis Container Runtime](https://docs.mirantis.com/mcr/20.10/overview.html) (MCR)
+is available as a container runtime for all Windows Server 2019 and later versions.
+
+See [Install MCR on Windows Servers](https://docs.mirantis.com/mcr/20.10/install/mcr-windows.html) for more information.
+
+## Windows OS version compatibility {#windows-os-version-support}
+
+On Windows nodes, strict compatibility rules apply where the host OS version must
+match the container base image OS version. Only Windows containers with a container
+operating system of Windows Server 2019 are fully supported.
+
+For Kubernetes v{{< skew currentVersion >}}, operating system compatibility for Windows nodes (and Pods)
+is as follows:
+
+Windows Server LTSC release
+: Windows Server 2019
+: Windows Server 2022
+
+Windows Server SAC release
+:  Windows Server version 20H2
+
+The Kubernetes [version-skew policy](/docs/setup/release/version-skew-policy/) also applies.
+
+## Getting help and troubleshooting {#troubleshooting}
+
+Your main source of help for troubleshooting your Kubernetes cluster should start
+with the [Troubleshooting](/docs/tasks/debug/)
+page.
+
+Some additional, Windows-specific troubleshooting help is included
+in this section. Logs are an important element of troubleshooting
+issues in Kubernetes. Make sure to include them any time you seek
+troubleshooting assistance from other contributors. Follow the
+instructions in the
+SIG Windows [contributing guide on gathering logs](https://github.com/kubernetes/community/blob/master/sig-windows/CONTRIBUTING.md#gathering-logs).
+
+### Reporting issues and feature requests
+
+If you have what looks like a bug, or you would like to
+make a feature request, please follow the [SIG Windows contributing guide](https://github.com/kubernetes/community/blob/master/sig-windows/CONTRIBUTING.md#reporting-issues-and-feature-requests) to create a new issue.
+You should first search the list of issues in case it was
+reported previously and comment with your experience on the issue and add additional
+logs. SIG Windows channel on the Kubernetes Slack is also a great avenue to get some initial support and
+troubleshooting ideas prior to creating a ticket.
+
+## Deployment tools
+
+The kubeadm tool helps you to deploy a Kubernetes cluster, providing the control
+plane to manage the cluster it, and nodes to run your workloads.
+[Adding Windows nodes](/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes/)
+explains how to deploy Windows nodes to your cluster using kubeadm.
+
+The Kubernetes [cluster API](https://cluster-api.sigs.k8s.io/) project also provides means to automate deployment of Windows nodes.
+
+## Windows distribution channels
+
+For a detailed explanation of Windows distribution channels see the
+[Microsoft documentation](https://docs.microsoft.com/en-us/windows-server/get-started-19/servicing-channels-19).
+
+Information on the different Windows Server servicing channels
+including their support models can be found at
+[Windows Server servicing channels](https://docs.microsoft.com/en-us/windows-server/get-started/servicing-channels-comparison).
diff --git a/content/en/docs/setup/production-environment/windows/user-guide-windows-containers.md b/content/en/docs/concepts/windows/user-guide.md
similarity index 72%
rename from content/en/docs/setup/production-environment/windows/user-guide-windows-containers.md
rename to content/en/docs/concepts/windows/user-guide.md
index ec47f5637a..da5b8a6fec 100644
--- a/content/en/docs/setup/production-environment/windows/user-guide-windows-containers.md
+++ b/content/en/docs/concepts/windows/user-guide.md
@@ -3,7 +3,6 @@ reviewers:
 - jayunit100
 - jsturtevant
 - marosset
-- perithompson
 title: Guide for scheduling Windows containers in Kubernetes
 content_type: concept
 weight: 75
@@ -11,31 +10,29 @@ weight: 75
 
 <!-- overview -->
 
-Windows applications constitute a large portion of the services and applications that run in many organizations. 
-This guide walks you through the steps to configure and deploy a Windows container in Kubernetes.
-
-
+Windows applications constitute a large portion of the services and applications that run in many organizations.
+This guide walks you through the steps to configure and deploy Windows containers in Kubernetes.
 
 <!-- body -->
 
 ## Objectives
 
 * Configure an example deployment to run Windows containers on the Windows node
-* (Optional) Configure an Active Directory Identity for your Pod using Group Managed Service Accounts (GMSA)
+* Highlight Windows specific funcationality in Kubernetes
 
 ## Before you begin
 
-* Create a Kubernetes cluster that includes a 
+* Create a Kubernetes cluster that includes a
 control plane and a [worker node running Windows Server](/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes/)
-* It is important to note that creating and deploying services and workloads on Kubernetes 
-behaves in much the same way for Linux and Windows containers. 
-[Kubectl commands](/docs/reference/kubectl/overview/) to interface with the cluster are identical. 
+* It is important to note that creating and deploying services and workloads on Kubernetes
+behaves in much the same way for Linux and Windows containers.
+[Kubectl commands](/docs/reference/kubectl/) to interface with the cluster are identical.
 The example in the section below is provided to jumpstart your experience with Windows containers.
 
 ## Getting Started: Deploying a Windows container
 
-To deploy a Windows container on Kubernetes, you must first create an example application. 
-The example YAML file below creates a simple webserver application. 
+The example YAML file below deploys a simple webserver application running inside a Windows container.
+
 Create a service spec named `win-webserver.yaml` with the contents below:
 
 ```yaml
@@ -83,8 +80,8 @@ spec:
 ```
 
 {{< note >}}
-Port mapping is also supported, but for simplicity in this example 
-the container port 80 is exposed directly to the service.
+Port mapping is also supported, but for simplicity this example exposes
+port 80 of the container directly to the Service.
 {{< /note >}}
 
 1. Check that all nodes are healthy:
@@ -104,20 +101,19 @@ the container port 80 is exposed directly to the service.
 
 1. Check that the deployment succeeded. To verify:
 
-    * Two containers per pod on the Windows node, use `docker ps` 
-    * Two pods listed from the Linux control plane node, use `kubectl get pods` 
-    * Node-to-pod communication across the network, `curl` port 80 of your pod IPs from the Linux control plane node 
+    * Two pods listed from the Linux control plane node, use `kubectl get pods`
+    * Node-to-pod communication across the network, `curl` port 80 of your pod IPs from the Linux control plane node
       to check for a web server response
-    * Pod-to-pod communication, ping between pods (and across hosts, if you have more than one Windows node) 
-      using docker exec or kubectl exec
-    * Service-to-pod communication, `curl` the virtual service IP (seen under `kubectl get services`) 
+    * Pod-to-pod communication, ping between pods (and across hosts, if you have more than one Windows node)
+      using `docker exec` or `kubectl exec`
+    * Service-to-pod communication, `curl` the virtual service IP (seen under `kubectl get services`)
       from the Linux control plane node and from individual pods
     * Service discovery, `curl` the service name with the Kubernetes [default DNS suffix](/docs/concepts/services-networking/dns-pod-service/#services)
     * Inbound connectivity, `curl` the NodePort from the Linux control plane node or machines outside of the cluster
-    * Outbound connectivity, `curl` external IPs from inside the pod using kubectl exec
+    * Outbound connectivity, `curl` external IPs from inside the pod using `kubectl exec`
 
 {{< note >}}
-Windows container hosts are not able to access the IP of services scheduled on them due to current platform limitations of the Windows networking stack. 
+Windows container hosts are not able to access the IP of services scheduled on them due to current platform limitations of the Windows networking stack.
 Only Windows pods are able to access service IPs.
 {{< /note >}}
 
@@ -125,64 +121,85 @@ Only Windows pods are able to access service IPs.
 
 ### Capturing logs from workloads
 
-Logs are an important element of observability; they enable users to gain insights 
-into the operational aspect of workloads and are a key ingredient to troubleshooting issues. 
-Because Windows containers and workloads inside Windows containers behave differently from Linux containers, 
-users had a hard time collecting logs, limiting operational visibility. 
-Windows workloads for example are usually configured to log to ETW (Event Tracing for Windows) 
-or push entries to the application event log. 
-[LogMonitor](https://github.com/microsoft/windows-container-tools/tree/master/LogMonitor), an open source tool by Microsoft, 
-is the recommended way to monitor configured log sources inside a Windows container. 
-LogMonitor supports monitoring event logs, ETW providers, and custom application logs, 
+Logs are an important element of observability; they enable users to gain insights
+into the operational aspect of workloads and are a key ingredient to troubleshooting issues.
+Because Windows containers and workloads inside Windows containers behave differently from Linux containers,
+users had a hard time collecting logs, limiting operational visibility.
+Windows workloads for example are usually configured to log to ETW (Event Tracing for Windows)
+or push entries to the application event log.
+[LogMonitor](https://github.com/microsoft/windows-container-tools/tree/master/LogMonitor), an open source tool by Microsoft,
+is the recommended way to monitor configured log sources inside a Windows container.
+LogMonitor supports monitoring event logs, ETW providers, and custom application logs,
 piping them to STDOUT for consumption by `kubectl logs <pod>`.
 
-Follow the instructions in the LogMonitor GitHub page to copy its binaries and configuration files 
+Follow the instructions in the LogMonitor GitHub page to copy its binaries and configuration files
 to all your containers and add the necessary entrypoints for LogMonitor to push your logs to STDOUT.
 
-## Using configurable Container usernames
+## Configuring container user
 
-Starting with Kubernetes v1.16, Windows containers can be configured to run their entrypoints and processes 
-with different usernames than the image defaults. 
-The way this is achieved is a bit different from the way it is done for Linux containers. 
+### Using configurable Container usernames
+
+Windows containers can be configured to run their entrypoints and processes
+with different usernames than the image defaults.
 Learn more about it [here](/docs/tasks/configure-pod-container/configure-runasusername/).
 
-## Managing Workload Identity with Group Managed Service Accounts
+### Managing Workload Identity with Group Managed Service Accounts
 
-Starting with Kubernetes v1.14, Windows container workloads can be configured to use Group Managed Service Accounts (GMSA). 
-Group Managed Service Accounts are a specific type of Active Directory account that provides automatic password management, 
-simplified service principal name (SPN) management, and the ability to delegate the management to other administrators across multiple servers. 
-Containers configured with a GMSA can access external Active Directory Domain resources while carrying the identity configured with the GMSA. 
+Windows container workloads can be configured to use Group Managed Service Accounts (GMSA).
+Group Managed Service Accounts are a specific type of Active Directory account that provide automatic password management,
+simplified service principal name (SPN) management, and the ability to delegate the management to other administrators across multiple servers.
+Containers configured with a GMSA can access external Active Directory Domain resources while carrying the identity configured with the GMSA.
 Learn more about configuring and using GMSA for Windows containers [here](/docs/tasks/configure-pod-container/configure-gmsa/).
 
 ## Taints and Tolerations
 
-Users today need to use some combination of taints and node selectors in order to 
-keep Linux and Windows workloads on their respective OS-specific nodes. 
-This likely imposes a burden only on Windows users. The recommended approach is outlined below, 
+Users need to use some combination of taints and node selectors in order to
+schedule Linux and Windows workloads to their respective OS-specific nodes.
+The recommended approach is outlined below,
 with one of its main goals being that this approach should not break compatibility for existing Linux workloads.
 
+If the `IdentifyPodOS` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is
+enabled, you can (and should) set `.spec.os.name` for a Pod to indicate the operating system
+that the containers in that Pod are designed for. For Pods that run Linux containers, set
+`.spec.os.name` to `linux`. For Pods that run Windows containers, set `.spec.os.name`
+to Windows.
+
+{{< note >}}
+Starting from 1.24, the `IdentifyPodOS` feature is in Beta stage and defaults to be enabled.
+{{< /note >}}
+
+The scheduler does not use the value of `.spec.os.name` when assigning Pods to nodes. You should
+use normal Kubernetes mechanisms for
+[assigning pods to nodes](/docs/concepts/scheduling-eviction/assign-pod-node/)
+to ensure that the control plane for your cluster places pods onto nodes that are running the
+appropriate operating system.
+
+The `.spec.os.name` value has no effect on the scheduling of the Windows pods,
+so taints and tolerations and node selectors are still required
+ to ensure that the Windows pods land onto appropriate Windows nodes.
+
 ### Ensuring OS-specific workloads land on the appropriate container host
 
-Users can ensure Windows containers can be scheduled on the appropriate host using Taints and Tolerations. 
+Users can ensure Windows containers can be scheduled on the appropriate host using Taints and Tolerations.
 All Kubernetes nodes today have the following default labels:
 
 * kubernetes.io/os = [windows|linux]
 * kubernetes.io/arch = [amd64|arm64|...]
 
-If a Pod specification does not specify a nodeSelector like `"kubernetes.io/os": windows`, 
-it is possible the Pod can be scheduled on any host, Windows or Linux. 
-This can be problematic since a Windows container can only run on Windows and a Linux container can only run on Linux. 
+If a Pod specification does not specify a nodeSelector like `"kubernetes.io/os": windows`,
+it is possible the Pod can be scheduled on any host, Windows or Linux.
+This can be problematic since a Windows container can only run on Windows and a Linux container can only run on Linux.
 The best practice is to use a nodeSelector.
 
-However, we understand that in many cases users have a pre-existing large number of deployments for Linux containers, 
-as well as an ecosystem of off-the-shelf configurations, such as community Helm charts, and programmatic Pod generation cases, such as with Operators. 
-In those situations, you may be hesitant to make the configuration change to add nodeSelectors. 
-The alternative is to use Taints. Because the kubelet can set Taints during registration, 
+However, we understand that in many cases users have a pre-existing large number of deployments for Linux containers,
+as well as an ecosystem of off-the-shelf configurations, such as community Helm charts, and programmatic Pod generation cases, such as with Operators.
+In those situations, you may be hesitant to make the configuration change to add nodeSelectors.
+The alternative is to use Taints. Because the kubelet can set Taints during registration,
 it could easily be modified to automatically add a taint when running on Windows only.
 
 For example:  `--register-with-taints='os=windows:NoSchedule'`
 
-By adding a taint to all Windows nodes, nothing will be scheduled on them (that includes existing Linux Pods). 
+By adding a taint to all Windows nodes, nothing will be scheduled on them (that includes existing Linux Pods).
 In order for a Windows Pod to be scheduled on a Windows node, 
 it would need both the nodeSelector and the appropriate matching toleration to choose Windows.
 
@@ -202,26 +219,24 @@ tolerations:
 The Windows Server version used by each pod must match that of the node. If you want to use multiple Windows
 Server versions in the same cluster, then you should set additional node labels and nodeSelectors.
 
-Kubernetes 1.17 automatically adds a new label `node.kubernetes.io/windows-build` to simplify this. 
+Kubernetes 1.17 automatically adds a new label `node.kubernetes.io/windows-build` to simplify this.
 If you're running an older version, then it's recommended to add this label manually to Windows nodes.
 
-This label reflects the Windows major, minor, and build number that need to match for compatibility. 
+This label reflects the Windows major, minor, and build number that need to match for compatibility.
 Here are values used today for each Windows Server version.
 
 | Product Name                         |   Build Number(s)      |
 |--------------------------------------|------------------------|
 | Windows Server 2019                  | 10.0.17763             |
-| Windows Server version 1809          | 10.0.17763             |
-| Windows Server version 1903          | 10.0.18362             |
-
+| Windows Server, Version 20H2         | 10.0.19042             |
+| Windows Server 2022                  | 10.0.20348             |
 
 ### Simplifying with RuntimeClass
 
-[RuntimeClass] can be used to simplify the process of using taints and tolerations. 
+[RuntimeClass] can be used to simplify the process of using taints and tolerations.
 A cluster administrator can create a `RuntimeClass` object which is used to encapsulate these taints and tolerations.
 
-
-1. Save this file to `runtimeClasses.yml`. It includes the appropriate `nodeSelector` 
+1. Save this file to `runtimeClasses.yml`. It includes the appropriate `nodeSelector`
 for the Windows OS, architecture, and version.
 
 ```yaml
@@ -292,7 +307,4 @@ spec:
     app: iis-2019
 ```
 
-
-
-
-[RuntimeClass]: https://kubernetes.io/docs/concepts/containers/runtime-class/
+[RuntimeClass]: /docs/concepts/containers/runtime-class/
diff --git a/content/en/docs/concepts/workloads/_index.md b/content/en/docs/concepts/workloads/_index.md
index 2c9dd8aa8e..dffd727505 100644
--- a/content/en/docs/concepts/workloads/_index.md
+++ b/content/en/docs/concepts/workloads/_index.md
@@ -70,7 +70,7 @@ visit [Configuration](/docs/concepts/configuration/).
 
 There are two supporting concepts that provide backgrounds about how Kubernetes manages pods
 for applications:
-* [Garbage collection](/docs/concepts/workloads/controllers/garbage-collection/) tidies up objects
+* [Garbage collection](/docs/concepts/architecture/garbage-collection/) tidies up objects
   from your cluster after their _owning resource_ has been removed.
 * The [_time-to-live after finished_ controller](/docs/concepts/workloads/controllers/ttlafterfinished/)
   removes Jobs once a defined time has passed since they completed.
diff --git a/content/en/docs/concepts/workloads/controllers/cron-jobs.md b/content/en/docs/concepts/workloads/controllers/cron-jobs.md
index c6cd4d1336..2d2416226a 100644
--- a/content/en/docs/concepts/workloads/controllers/cron-jobs.md
+++ b/content/en/docs/concepts/workloads/controllers/cron-jobs.md
@@ -17,8 +17,6 @@ A _CronJob_ creates {{< glossary_tooltip term_id="job" text="Jobs" >}} on a repe
 One CronJob object is like one line of a _crontab_ (cron table) file. It runs a job periodically
 on a given schedule, written in [Cron](https://en.wikipedia.org/wiki/Cron) format.
 
-In addition, the CronJob schedule supports timezone handling, you can specify the timezone by adding "CRON_TZ=<time zone>" at the beginning of the CronJob schedule, and it is recommended to always set `CRON_TZ`.
-
 {{< caution >}}
 All **CronJob** `schedule:` times are based on the timezone of the
 {{< glossary_tooltip term_id="kube-controller-manager" text="kube-controller-manager" >}}.
@@ -28,6 +26,16 @@ containers, the timezone set for the kube-controller-manager container determine
 that the cron job controller uses.
 {{< /caution >}}
 
+{{< caution >}}
+The [v1 CronJob API](/docs/reference/kubernetes-api/workload-resources/cron-job-v1/)
+does not officially support setting timezone as explained above.
+
+Setting variables such as `CRON_TZ` or `TZ` is not officially supported by the Kubernetes project.
+`CRON_TZ` or `TZ` is an implementation detail of the internal library being used
+for parsing and calculating the next Job creation time. Any usage of it is not
+recommended in a production cluster.
+{{< /caution >}}
+
 When creating the manifest for a CronJob resource, make sure the name you provide
 is a valid [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 The name must be no longer than 52 characters. This is because the CronJob controller will automatically
@@ -55,16 +63,15 @@ takes you through this example in more detail).
 ### Cron schedule syntax
 
 ```
-#      ┌────────────────── timezone (optional)
-#      |      ┌───────────── minute (0 - 59)
-#      |      │ ┌───────────── hour (0 - 23)
-#      |      │ │ ┌───────────── day of the month (1 - 31)
-#      |      │ │ │ ┌───────────── month (1 - 12)
-#      |      │ │ │ │ ┌───────────── day of the week (0 - 6) (Sunday to Saturday;
-#      |      │ │ │ │ │                                   7 is also Sunday on some systems)
-#      |      │ │ │ │ │
-#      |      │ │ │ │ │
-# CRON_TZ=UTC * * * * *
+# ┌───────────── minute (0 - 59)
+# │ ┌───────────── hour (0 - 23)
+# │ │ ┌───────────── day of the month (1 - 31)
+# │ │ │ ┌───────────── month (1 - 12)
+# │ │ │ │ ┌───────────── day of the week (0 - 6) (Sunday to Saturday;
+# │ │ │ │ │                                   7 is also Sunday on some systems)
+# │ │ │ │ │                                   OR sun, mon, tue, wed, thu, fri, sat
+# │ │ │ │ │
+# * * * * *
 ```
 
 
@@ -78,12 +85,27 @@ takes you through this example in more detail).
 
 
 
-For example, the line below states that the task must be started every Friday at midnight, as well as on the 13th of each month at midnight(in UTC):
+For example, the line below states that the task must be started every Friday at midnight, as well as on the 13th of each month at midnight:
 
-`CRON_TZ=UTC 0 0 13 * 5`
+`0 0 13 * 5`
 
 To generate CronJob schedule expressions, you can also use web tools like [crontab.guru](https://crontab.guru/).
 
+## Time zones
+For CronJobs with no time zone specified, the kube-controller-manager interprets schedules relative to its local time zone.
+
+{{< feature-state for_k8s_version="v1.24" state="alpha" >}}
+
+If you enable the  `CronJobTimeZone` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/),
+you can specify a time zone for a CronJob (if you don't enable that feature gate, or if you are using a version of
+Kubernetes that does not have experimental time zone support, all CronJobs in your cluster have an unspecified
+timezone).
+
+When you have the feature enabled, you can set `spec.timeZone` to the name of a valid [time zone](https://en.wikipedia.org/wiki/List_of_tz_database_time_zones) name. For example, setting
+`spec.timeZone: "Etc/UTC"` instructs Kubernetes to interpret the schedule relative to Coordinated Universal Time.
+
+A time zone database from the Go standard library is included in the binaries and used as a fallback in case an external database is not available on the system.
+
 ## CronJob limitations {#cron-job-limitations}
 
 A cron job creates a job object _about_ once per execution time of its schedule. We say "about" because there
@@ -136,9 +158,16 @@ and set this flag to `false`. For example:
 
 ## {{% heading "whatsnext" %}}
 
-[Cron expression format](https://en.wikipedia.org/wiki/Cron)
-documents the format of CronJob `schedule` fields.
-
-For instructions on creating and working with cron jobs, and for an example of CronJob
-manifest, see [Running automated tasks with cron jobs](/docs/tasks/job/automated-tasks-with-cron-jobs).
-
+* Learn about [Pods](/docs/concepts/workloads/pods/) and
+  [Jobs](/docs/concepts/workloads/controllers/job/), two concepts
+  that CronJobs rely upon.
+* Read about the [format](https://pkg.go.dev/github.com/robfig/cron/v3#hdr-CRON_Expression_Format)
+  of CronJob `.spec.schedule` fields.
+* For instructions on creating and working with CronJobs, and for an example
+  of a CronJob manifest,
+  see [Running automated tasks with CronJobs](/docs/tasks/job/automated-tasks-with-cron-jobs/).
+* For instructions to clean up failed or completed jobs automatically,
+  see [Clean up Jobs automatically](/docs/concepts/workloads/controllers/job/#clean-up-finished-jobs-automatically)
+* `CronJob` is part of the Kubernetes REST API.
+  Read the {{< api-reference page="workload-resources/cron-job-v1" >}}
+  object definition to understand the API for Kubernetes cron jobs.
diff --git a/content/en/docs/concepts/workloads/controllers/daemonset.md b/content/en/docs/concepts/workloads/controllers/daemonset.md
index c5d3c4c6c8..d74a4a0c62 100644
--- a/content/en/docs/concepts/workloads/controllers/daemonset.md
+++ b/content/en/docs/concepts/workloads/controllers/daemonset.md
@@ -76,9 +76,9 @@ A Pod Template in a DaemonSet must have a [`RestartPolicy`](/docs/concepts/workl
 The `.spec.selector` field is a pod selector.  It works the same as the `.spec.selector` of
 a [Job](/docs/concepts/workloads/controllers/job/).
 
-As of Kubernetes 1.8, you must specify a pod selector that matches the labels of the
-`.spec.template`. The pod selector will no longer be defaulted when left empty. Selector
-defaulting was not compatible with `kubectl apply`. Also, once a DaemonSet is created,
+You must specify a pod selector that matches the labels of the
+`.spec.template`.
+Also, once a DaemonSet is created,
 its `.spec.selector` can not be mutated. Mutating the pod selector can lead to the
 unintentional orphaning of Pods, and it was found to be confusing to users.
 
@@ -91,8 +91,8 @@ The `.spec.selector` is an object consisting of two fields:
 
 When the two are specified the result is ANDed.
 
-If the `.spec.selector` is specified, it must match the `.spec.template.metadata.labels`.
-Config with these not matching will be rejected by the API.
+The `.spec.selector` must match the `.spec.template.metadata.labels`.
+Config with these two not matching will be rejected by the API.
 
 ### Running Pods on select Nodes
 
@@ -107,7 +107,7 @@ If you do not specify either, then the DaemonSet controller will create Pods on
 
 ### Scheduled by default scheduler
 
-{{< feature-state state="stable" for-kubernetes-version="1.17" >}}
+{{< feature-state for_k8s_version="1.17" state="stable" >}}
 
 A DaemonSet ensures that all eligible nodes run a copy of a Pod. Normally, the
 node that a Pod runs on is selected by the Kubernetes scheduler. However,
@@ -185,7 +185,7 @@ You can modify the Pods that a DaemonSet creates.  However, Pods do not allow al
 fields to be updated.  Also, the DaemonSet controller will use the original template the next
 time a node (even with the same name) is created.
 
-You can delete a DaemonSet.  If you specify `--cascade=false` with `kubectl`, then the Pods
+You can delete a DaemonSet.  If you specify `--cascade=orphan` with `kubectl`, then the Pods
 will be left on the nodes.  If you subsequently create a new DaemonSet with the same selector,
 the new DaemonSet adopts the existing Pods. If any Pods need replacing the DaemonSet replaces
 them according to its `updateStrategy`.
@@ -235,3 +235,18 @@ all or certain hosts, if the DaemonSet provides node-level functionality that al
 For example, [network plugins](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/) often include a component that runs as a DaemonSet. The DaemonSet component makes sure that the node where it's running has working cluster networking.
 
 
+## {{% heading "whatsnext" %}}
+
+* Learn about [Pods](/docs/concepts/workloads/pods).
+  * Learn about [static Pods](#static-pods), which are useful for running Kubernetes
+    {{< glossary_tooltip text="control plane" term_id="control-plane" >}} components.
+* Find out how to use DaemonSets
+  * [Perform a rolling update on a DaemonSet](/docs/tasks/manage-daemon/update-daemon-set/)
+  * [Perform a rollback on a DaemonSet](/docs/tasks/manage-daemon/rollback-daemon-set/)
+    (for example, if a roll out didn't work how you expected).
+* Understand [how Kubernetes assigns Pods to Nodes](/docs/concepts/scheduling-eviction/assign-pod-node/).
+* Learn about [device plugins](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/) and
+  [add ons](/docs/concepts/cluster-administration/addons/), which often run as DaemonSets.
+* `DaemonSet` is a top-level resource in the Kubernetes REST API.
+  Read the {{< api-reference page="workload-resources/daemon-set-v1" >}}
+  object definition to understand the API for daemon sets.
diff --git a/content/en/docs/concepts/workloads/controllers/deployment.md b/content/en/docs/concepts/workloads/controllers/deployment.md
index 22b95255c5..30a7457d4c 100644
--- a/content/en/docs/concepts/workloads/controllers/deployment.md
+++ b/content/en/docs/concepts/workloads/controllers/deployment.md
@@ -32,7 +32,7 @@ The following are typical use cases for Deployments:
 * [Declare the new state of the Pods](#updating-a-deployment) by updating the PodTemplateSpec of the Deployment. A new ReplicaSet is created and the Deployment manages moving the Pods from the old ReplicaSet to the new one at a controlled rate. Each new ReplicaSet updates the revision of the Deployment.
 * [Rollback to an earlier Deployment revision](#rolling-back-a-deployment) if the current state of the Deployment is not stable. Each rollback updates the revision of the Deployment.
 * [Scale up the Deployment to facilitate more load](#scaling-a-deployment).
-* [Pause the Deployment](#pausing-and-resuming-a-deployment) to apply multiple fixes to its PodTemplateSpec and then resume it to start a new rollout.
+* [Pause the rollout of a Deployment](#pausing-and-resuming-a-deployment) to apply multiple fixes to its PodTemplateSpec and then resume it to start a new rollout.
 * [Use the status of the Deployment](#deployment-status) as an indicator that a rollout has stuck.
 * [Clean up older ReplicaSets](#clean-up-policy) that you don't need anymore.
 
@@ -75,11 +75,6 @@ Follow the steps given below to create the above Deployment:
    kubectl apply -f https://k8s.io/examples/controllers/nginx-deployment.yaml
    ```
 
-  {{< note >}}
-  You can specify the `--record` flag to write the command executed in the resource annotation `kubernetes.io/change-cause`.
-  The recorded change is useful for future introspection. For example, to see the commands executed in each Deployment revision.
-  {{< /note >}}
-
 
 2. Run `kubectl get deployments` to check if the Deployment was created.
 
@@ -169,13 +164,13 @@ Follow the steps given below to update your Deployment:
 1. Let's update the nginx Pods to use the `nginx:1.16.1` image instead of the `nginx:1.14.2` image.
 
     ```shell
-    kubectl --record deployment.apps/nginx-deployment set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1
+    kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1
     ```
 
     or use the following command:
 
     ```shell
-    kubectl set image deployment/nginx-deployment nginx=nginx:1.16.1 --record
+    kubectl set image deployment/nginx-deployment nginx=nginx:1.16.1
     ```
   
     The output is similar to:
@@ -187,7 +182,7 @@ Follow the steps given below to update your Deployment:
     Alternatively, you can `edit` the Deployment and change `.spec.template.spec.containers[0].image` from `nginx:1.14.2` to `nginx:1.16.1`:
 
     ```shell
-    kubectl edit deployment.v1.apps/nginx-deployment
+    kubectl edit deployment/nginx-deployment
     ```
 
     The output is similar to:
@@ -260,10 +255,11 @@ up to 3 replicas, as well as scaling down the old ReplicaSet to 0 replicas.
     Deployment also ensures that only a certain number of Pods are created above the desired number of Pods.
     By default, it ensures that at most 125% of the desired number of Pods are up (25% max surge).
 
-    For example, if you look at the above Deployment closely, you will see that it first created a new Pod,
-    then deleted some old Pods, and created new ones. It does not kill old Pods until a sufficient number of
+    For example, if you look at the above Deployment closely, you will see that it first creates a new Pod,
+    then deletes an old Pod, and creates another new one. It does not kill old Pods until a sufficient number of
     new Pods have come up, and does not create new Pods until a sufficient number of old Pods have been killed.
-    It makes sure that at least 2 Pods are available and that at max 4 Pods in total are available.
+    It makes sure that at least 3 Pods are available and that at max 4 Pods in total are available. In case of
+    a Deployment with 4 replicas, the number of Pods would be between 3 and 5.
 
 * Get details of your Deployment:
   ```shell
@@ -310,10 +306,17 @@ up to 3 replicas, as well as scaling down the old ReplicaSet to 0 replicas.
     ```
     Here you see that when you first created the Deployment, it created a ReplicaSet (nginx-deployment-2035384211)
     and scaled it up to 3 replicas directly. When you updated the Deployment, it created a new ReplicaSet
-    (nginx-deployment-1564180365) and scaled it up to 1 and then scaled down the old ReplicaSet to 2, so that at
-    least 2 Pods were available and at most 4 Pods were created at all times. It then continued scaling up and down
-    the new and the old ReplicaSet, with the same rolling update strategy. Finally, you'll have 3 available replicas
-    in the new ReplicaSet, and the old ReplicaSet is scaled down to 0.
+    (nginx-deployment-1564180365) and scaled it up to 1 and waited for it to come up. Then it scaled down the old ReplicaSet
+    to 2 and scaled up the new ReplicaSet to 2 so that at least 3 Pods were available and at most 4 Pods were created at all times.
+    It then continued scaling up and down the new and the old ReplicaSet, with the same rolling update strategy.
+    Finally, you'll have 3 available replicas in the new ReplicaSet, and the old ReplicaSet is scaled down to 0.
+
+{{< note >}}
+Kubernetes doesn't count terminating Pods when calculating the number of `availableReplicas`, which must be between
+`replicas - maxUnavailable` and `replicas + maxSurge`. As a result, you might notice that there are more Pods than
+expected during a rollout, and that the total resources consumed by the Deployment is more than `replicas + maxSurge`
+until the `terminationGracePeriodSeconds` of the terminating Pods expires.
+{{< /note >}}
 
 ### Rollover (aka multiple updates in-flight)
 
@@ -370,7 +373,7 @@ rolled back.
 * Suppose that you made a typo while updating the Deployment, by putting the image name as `nginx:1.161` instead of `nginx:1.16.1`:
 
     ```shell
-    kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.161 --record=true
+    kubectl set image deployment/nginx-deployment nginx=nginx:1.161 
     ```
 
     The output is similar to this:
@@ -479,26 +482,25 @@ Follow the steps given below to check the rollout history:
 
 1. First, check the revisions of this Deployment:
     ```shell
-    kubectl rollout history deployment.v1.apps/nginx-deployment
+    kubectl rollout history deployment/nginx-deployment
     ```
     The output is similar to this:
     ```
     deployments "nginx-deployment"
     REVISION    CHANGE-CAUSE
-    1           kubectl apply --filename=https://k8s.io/examples/controllers/nginx-deployment.yaml --record=true
-    2           kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1 --record=true
-    3           kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.161 --record=true
+    1           kubectl apply --filename=https://k8s.io/examples/controllers/nginx-deployment.yaml
+    2           kubectl set image deployment/nginx-deployment nginx=nginx:1.16.1
+    3           kubectl set image deployment/nginx-deployment nginx=nginx:1.161
     ```
 
     `CHANGE-CAUSE` is copied from the Deployment annotation `kubernetes.io/change-cause` to its revisions upon creation. You can specify the`CHANGE-CAUSE` message by:
 
-    * Annotating the Deployment with `kubectl annotate deployment.v1.apps/nginx-deployment kubernetes.io/change-cause="image updated to 1.16.1"`
-    * Append the `--record` flag to save the `kubectl` command that is making changes to the resource.
+    * Annotating the Deployment with `kubectl annotate deployment/nginx-deployment kubernetes.io/change-cause="image updated to 1.16.1"`
     * Manually editing the manifest of the resource.
 
 2. To see the details of each revision, run:
     ```shell
-    kubectl rollout history deployment.v1.apps/nginx-deployment --revision=2
+    kubectl rollout history deployment/nginx-deployment --revision=2
     ```
 
     The output is similar to this:
@@ -506,7 +508,7 @@ Follow the steps given below to check the rollout history:
     deployments "nginx-deployment" revision 2
       Labels:       app=nginx
               pod-template-hash=1159050644
-      Annotations:  kubernetes.io/change-cause=kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1 --record=true
+      Annotations:  kubernetes.io/change-cause=kubectl set image deployment/nginx-deployment nginx=nginx:1.16.1
       Containers:
        nginx:
         Image:      nginx:1.16.1
@@ -523,7 +525,7 @@ Follow the steps given below to rollback the Deployment from the current version
 
 1. Now you've decided to undo the current rollout and rollback to the previous revision:
     ```shell
-    kubectl rollout undo deployment.v1.apps/nginx-deployment
+    kubectl rollout undo deployment/nginx-deployment
     ```
 
     The output is similar to this:
@@ -533,7 +535,7 @@ Follow the steps given below to rollback the Deployment from the current version
     Alternatively, you can rollback to a specific revision by specifying it with `--to-revision`:
 
     ```shell
-    kubectl rollout undo deployment.v1.apps/nginx-deployment --to-revision=2
+    kubectl rollout undo deployment/nginx-deployment --to-revision=2
     ```
 
     The output is similar to this:
@@ -567,7 +569,7 @@ Follow the steps given below to rollback the Deployment from the current version
     CreationTimestamp:      Sun, 02 Sep 2018 18:17:55 -0500
     Labels:                 app=nginx
     Annotations:            deployment.kubernetes.io/revision=4
-                            kubernetes.io/change-cause=kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1 --record=true
+                            kubernetes.io/change-cause=kubectl set image deployment/nginx-deployment nginx=nginx:1.16.1
     Selector:               app=nginx
     Replicas:               3 desired | 3 updated | 3 total | 3 available | 0 unavailable
     StrategyType:           RollingUpdate
@@ -610,7 +612,7 @@ Follow the steps given below to rollback the Deployment from the current version
 You can scale a Deployment by using the following command:
 
 ```shell
-kubectl scale deployment.v1.apps/nginx-deployment --replicas=10
+kubectl scale deployment/nginx-deployment --replicas=10
 ```
 The output is similar to this:
 ```
@@ -622,7 +624,7 @@ in your cluster, you can setup an autoscaler for your Deployment and choose the
 Pods you want to run based on the CPU utilization of your existing Pods.
 
 ```shell
-kubectl autoscale deployment.v1.apps/nginx-deployment --min=10 --max=15 --cpu-percent=80
+kubectl autoscale deployment/nginx-deployment --min=10 --max=15 --cpu-percent=80
 ```
 The output is similar to this:
 ```
@@ -651,7 +653,7 @@ For example, you are running a Deployment with 10 replicas, [maxSurge](#max-surg
 
 * You update to a new image which happens to be unresolvable from inside the cluster.
     ```shell
-    kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:sometag
+    kubectl set image deployment/nginx-deployment nginx=nginx:sometag
     ```
 
     The output is similar to this:
@@ -703,12 +705,16 @@ nginx-deployment-1989198191   7         7         0         7m
 nginx-deployment-618515232    11        11        11        7m
 ```
 
-## Pausing and Resuming a Deployment
+## Pausing and Resuming a rollout of a Deployment {#pausing-and-resuming-a-deployment}
 
-You can pause a Deployment before triggering one or more updates and then resume it. This allows you to
+When you update a Deployment, or plan to, you can pause rollouts
+for that Deployment before you trigger one or more updates. When
+you're ready to apply those changes, you resume rollouts for the
+Deployment. This approach allows you to
 apply multiple fixes in between pausing and resuming without triggering unnecessary rollouts.
 
 * For example, with a Deployment that was created:
+
   Get the Deployment details:
   ```shell
   kubectl get deploy
@@ -730,7 +736,7 @@ apply multiple fixes in between pausing and resuming without triggering unnecess
 
 * Pause by running the following command:
     ```shell
-    kubectl rollout pause deployment.v1.apps/nginx-deployment
+    kubectl rollout pause deployment/nginx-deployment
     ```
 
     The output is similar to this:
@@ -740,7 +746,7 @@ apply multiple fixes in between pausing and resuming without triggering unnecess
 
 * Then update the image of the Deployment:
     ```shell
-    kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1
+    kubectl set image deployment/nginx-deployment nginx=nginx:1.16.1
     ```
 
     The output is similar to this:
@@ -750,7 +756,7 @@ apply multiple fixes in between pausing and resuming without triggering unnecess
 
 * Notice that no new rollout started:
     ```shell
-    kubectl rollout history deployment.v1.apps/nginx-deployment
+    kubectl rollout history deployment/nginx-deployment
     ```
 
     The output is similar to this:
@@ -759,7 +765,7 @@ apply multiple fixes in between pausing and resuming without triggering unnecess
     REVISION  CHANGE-CAUSE
     1   <none>
     ```
-* Get the rollout status to ensure that the Deployment is updated successfully:
+* Get the rollout status to verify that the existing ReplicaSet has not changed:
     ```shell
     kubectl get rs
     ```
@@ -772,7 +778,7 @@ apply multiple fixes in between pausing and resuming without triggering unnecess
 
 * You can make as many updates as you wish, for example, update the resources that will be used:
     ```shell
-    kubectl set resources deployment.v1.apps/nginx-deployment -c=nginx --limits=cpu=200m,memory=512Mi
+    kubectl set resources deployment/nginx-deployment -c=nginx --limits=cpu=200m,memory=512Mi
     ```
 
     The output is similar to this:
@@ -780,12 +786,12 @@ apply multiple fixes in between pausing and resuming without triggering unnecess
     deployment.apps/nginx-deployment resource requirements updated
     ```
 
-    The initial state of the Deployment prior to pausing it will continue its function, but new updates to
-    the Deployment will not have any effect as long as the Deployment is paused.
+    The initial state of the Deployment prior to pausing its rollout will continue its function, but new updates to
+    the Deployment will not have any effect as long as the Deployment rollout is paused.
 
-* Eventually, resume the Deployment and observe a new ReplicaSet coming up with all the new updates:
+* Eventually, resume the Deployment rollout and observe a new ReplicaSet coming up with all the new updates:
     ```shell
-    kubectl rollout resume deployment.v1.apps/nginx-deployment
+    kubectl rollout resume deployment/nginx-deployment
     ```
 
     The output is similar to this:
@@ -844,6 +850,13 @@ Kubernetes marks a Deployment as _progressing_ when one of the following tasks i
 * The Deployment is scaling down its older ReplicaSet(s).
 * New Pods become ready or available (ready for at least [MinReadySeconds](#min-ready-seconds)).
 
+When the rollout becomes “progressing”, the Deployment controller adds a condition with the following
+attributes to the Deployment's `.status.conditions`:
+
+* `type: Progressing`
+* `status: "True"`
+* `reason: NewReplicaSetCreated` | `reason: FoundNewReplicaSet` | `reason: ReplicaSetUpdated`
+
 You can monitor the progress for a Deployment by using `kubectl rollout status`.
 
 ### Complete Deployment
@@ -855,6 +868,17 @@ updates you've requested have been completed.
 * All of the replicas associated with the Deployment are available.
 * No old replicas for the Deployment are running.
 
+When the rollout becomes “complete”, the Deployment controller sets a condition with the following
+attributes to the Deployment's `.status.conditions`:
+
+* `type: Progressing`
+* `status: "True"`
+* `reason: NewReplicaSetAvailable`
+
+This `Progressing` condition will retain a status value of `"True"` until a new rollout
+is initiated. The condition holds even when availability of replicas changes (which
+does instead affect the `Available` condition).
+
 You can check if a Deployment has completed by using `kubectl rollout status`. If the rollout completed
 successfully, `kubectl rollout status` returns a zero exit code.
 
@@ -892,10 +916,10 @@ number of seconds the Deployment controller waits before indicating (in the Depl
 Deployment progress has stalled.
 
 The following `kubectl` command sets the spec with `progressDeadlineSeconds` to make the controller report
-lack of progress for a Deployment after 10 minutes:
+lack of progress of a rollout for a Deployment after 10 minutes:
 
 ```shell
-kubectl patch deployment.v1.apps/nginx-deployment -p '{"spec":{"progressDeadlineSeconds":600}}'
+kubectl patch deployment/nginx-deployment -p '{"spec":{"progressDeadlineSeconds":600}}'
 ```
 The output is similar to this:
 ```
@@ -904,21 +928,24 @@ deployment.apps/nginx-deployment patched
 Once the deadline has been exceeded, the Deployment controller adds a DeploymentCondition with the following
 attributes to the Deployment's `.status.conditions`:
 
-* Type=Progressing
-* Status=False
-* Reason=ProgressDeadlineExceeded
+* `type: Progressing`
+* `status: "False"`
+* `reason: ProgressDeadlineExceeded`
+
+This condition can also fail early and is then set to status value of `"False"` due to reasons as `ReplicaSetCreateError`.
+Also, the deadline is not taken into account anymore once the Deployment rollout completes.
 
 See the [Kubernetes API conventions](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties) for more information on status conditions.
 
 {{< note >}}
 Kubernetes takes no action on a stalled Deployment other than to report a status condition with
-`Reason=ProgressDeadlineExceeded`. Higher level orchestrators can take advantage of it and act accordingly, for
+`reason: ProgressDeadlineExceeded`. Higher level orchestrators can take advantage of it and act accordingly, for
 example, rollback the Deployment to its previous version.
 {{< /note >}}
 
 {{< note >}}
-If you pause a Deployment, Kubernetes does not check progress against your specified deadline.
-You can safely pause a Deployment in the middle of a rollout and resume without triggering
+If you pause a Deployment rollout, Kubernetes does not check progress against your specified deadline.
+You can safely pause a Deployment rollout in the middle of a rollout and resume without triggering
 the condition for exceeding the deadline.
 {{< /note >}}
 
@@ -986,7 +1013,7 @@ Conditions:
 You can address an issue of insufficient quota by scaling down your Deployment, by scaling down other
 controllers you may be running, or by increasing quota in your namespace. If you satisfy the quota
 conditions and the Deployment controller then completes the Deployment rollout, you'll see the
-Deployment's status update with a successful condition (`Status=True` and `Reason=NewReplicaSetAvailable`).
+Deployment's status update with a successful condition (`status: "True"` and `reason: NewReplicaSetAvailable`).
 
 ```
 Conditions:
@@ -996,11 +1023,11 @@ Conditions:
   Progressing   True    NewReplicaSetAvailable
 ```
 
-`Type=Available` with `Status=True` means that your Deployment has minimum availability. Minimum availability is dictated
-by the parameters specified in the deployment strategy. `Type=Progressing` with `Status=True` means that your Deployment
+`type: Available` with `status: "True"` means that your Deployment has minimum availability. Minimum availability is dictated
+by the parameters specified in the deployment strategy. `type: Progressing` with `status: "True"` means that your Deployment
 is either in the middle of a rollout and it is progressing or that it has successfully completed its progress and the minimum
 required new replicas are available (see the Reason of the condition for the particulars - in our case
-`Reason=NewReplicaSetAvailable` means that the Deployment is complete).
+`reason: NewReplicaSetAvailable` means that the Deployment is complete).
 
 You can check if a Deployment has failed to progress by using `kubectl rollout status`. `kubectl rollout status`
 returns a non-zero exit code if the Deployment has exceeded the progression deadline.
@@ -1056,7 +1083,7 @@ A Deployment also needs a [`.spec` section](https://git.k8s.io/community/contrib
 
 ### Pod Template
 
-The `.spec.template` and `.spec.selector` are the only required field of the `.spec`.
+The `.spec.template` and `.spec.selector` are the only required fields of the `.spec`.
 
 The `.spec.template` is a [Pod template](/docs/concepts/workloads/pods/#pod-templates). It has exactly the same schema as a {{< glossary_tooltip text="Pod" term_id="pod" >}}, except it is nested and does not have an `apiVersion` or `kind`.
 
@@ -1070,6 +1097,18 @@ allowed, which is the default if not specified.
 
 `.spec.replicas` is an optional field that specifies the number of desired Pods. It defaults to 1.
 
+Should you manually scale a Deployment, example via `kubectl scale deployment
+deployment --replicas=X`, and then you update that Deployment based on a manifest
+(for example: by running `kubectl apply -f deployment.yaml`),
+then applying that manifest overwrites the manual scaling that you previously did.
+
+If a [HorizontalPodAutoscaler](/docs/tasks/run-application/horizontal-pod-autoscale/) (or any
+similar API for horizontal scaling) is managing scaling for a Deployment, don't set `.spec.replicas`.
+
+Instead, allow the Kubernetes
+{{< glossary_tooltip text="control plane" term_id="control-plane" >}} to manage the
+`.spec.replicas` field automatically.
+
 ### Selector
 
 `.spec.selector` is a required field that specifies a [label selector](/docs/concepts/overview/working-with-objects/labels/)
@@ -1145,8 +1184,8 @@ total number of Pods running at any time during the update is at most 130% of de
 
 `.spec.progressDeadlineSeconds` is an optional field that specifies the number of seconds you want
 to wait for your Deployment to progress before the system reports back that the Deployment has
-[failed progressing](#failed-deployment) - surfaced as a condition with `Type=Progressing`, `Status=False`.
-and `Reason=ProgressDeadlineExceeded` in the status of the resource. The Deployment controller will keep
+[failed progressing](#failed-deployment) - surfaced as a condition with `type: Progressing`, `status: "False"`.
+and `reason: ProgressDeadlineExceeded` in the status of the resource. The Deployment controller will keep
 retrying the Deployment. This defaults to 600. In the future, once automatic rollback will be implemented, the Deployment
 controller will roll back a Deployment as soon as it observes such a condition.
 
@@ -1176,4 +1215,12 @@ a paused Deployment and one that is not paused, is that any changes into the Pod
 Deployment will not trigger new rollouts as long as it is paused. A Deployment is not paused by default when
 it is created.
 
+## {{% heading "whatsnext" %}}
 
+* Learn about [Pods](/docs/concepts/workloads/pods).
+* [Run a Stateless Application Using a Deployment](/docs/tasks/run-application/run-stateless-application-deployment/).
+* `Deployment` is a top-level resource in the Kubernetes REST API.
+  Read the {{< api-reference page="workload-resources/deployment-v1" >}}
+  object definition to understand the API for deployments.
+* Read about [PodDisruptionBudget](/docs/concepts/workloads/pods/disruptions/) and how
+  you can use it to manage application availability during disruptions.
diff --git a/content/en/docs/concepts/workloads/controllers/job.md b/content/en/docs/concepts/workloads/controllers/job.md
index 1635caf7b3..cb1b72fd03 100644
--- a/content/en/docs/concepts/workloads/controllers/job.md
+++ b/content/en/docs/concepts/workloads/controllers/job.md
@@ -25,6 +25,9 @@ due to a node hardware failure or a node reboot).
 
 You can also use a Job to run multiple Pods in parallel.
 
+If you want to run a Job (either a single task, or several in parallel) on a schedule,
+see [CronJob](/docs/concepts/workloads/controllers/cron-jobs/).
+
 <!-- body -->
 
 ## Running an example Job
@@ -39,18 +42,17 @@ You can run the example with this command:
 ```shell
 kubectl apply -f https://kubernetes.io/examples/controllers/job.yaml
 ```
+
 The output is similar to this:
+
 ```
 job.batch/pi created
 ```
 
 Check on the status of the Job with `kubectl`:
 
-```shell
-kubectl describe jobs/pi
-```
-The output is similar to this:
-```
+{{< tabs name="Check status of Job" >}}
+{{< tab name="kubectl describe job pi" codelang="bash" >}}
 Name:           pi
 Namespace:      default
 Selector:       controller-uid=c9948307-e56d-4b5d-8302-ae2d7b7da67c
@@ -69,7 +71,7 @@ Pod Template:
            job-name=pi
   Containers:
    pi:
-    Image:      perl
+    Image:      perl:5.34.0
     Port:       <none>
     Host Port:  <none>
     Command:
@@ -84,7 +86,62 @@ Events:
   Type    Reason            Age   From            Message
   ----    ------            ----  ----            -------
   Normal  SuccessfulCreate  14m   job-controller  Created pod: pi-5rwd7
-```
+{{< /tab >}}
+{{< tab name="kubectl get job pi -o yaml" codelang="bash" >}}
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    kubectl.kubernetes.io/last-applied-configuration: |
+      {"apiVersion":"batch/v1","kind":"Job","metadata":{"annotations":{},"name":"pi","namespace":"default"},"spec":{"backoffLimit":4,"template":{"spec":{"containers":[{"command":["perl","-Mbignum=bpi","-wle","print bpi(2000)"],"image":"perl","name":"pi"}],"restartPolicy":"Never"}}}}
+  creationTimestamp: "2022-06-15T08:40:15Z"
+  generation: 1
+  labels:
+    controller-uid: 863452e6-270d-420e-9b94-53a54146c223
+    job-name: pi
+  name: pi
+  namespace: default
+  resourceVersion: "987"
+  uid: 863452e6-270d-420e-9b94-53a54146c223
+spec:
+  backoffLimit: 4
+  completionMode: NonIndexed
+  completions: 1
+  parallelism: 1
+  selector:
+    matchLabels:
+      controller-uid: 863452e6-270d-420e-9b94-53a54146c223
+  suspend: false
+  template:
+    metadata:
+      creationTimestamp: null
+      labels:
+        controller-uid: 863452e6-270d-420e-9b94-53a54146c223
+        job-name: pi
+    spec:
+      containers:
+      - command:
+        - perl
+        - -Mbignum=bpi
+        - -wle
+        - print bpi(2000)
+        image: perl:5.34.0
+        imagePullPolicy: Always
+        name: pi
+        resources: {}
+        terminationMessagePath: /dev/termination-log
+        terminationMessagePolicy: File
+      dnsPolicy: ClusterFirst
+      restartPolicy: Never
+      schedulerName: default-scheduler
+      securityContext: {}
+      terminationGracePeriodSeconds: 30
+status:
+  active: 1
+  ready: 1
+  startTime: "2022-06-15T08:40:15Z"
+{{< /tab >}}
+{{< /tabs >}}
 
 To view completed Pods of a Job, use `kubectl get pods`.
 
@@ -94,7 +151,9 @@ To list all the Pods that belong to a Job in a machine readable form, you can us
 pods=$(kubectl get pods --selector=job-name=pi --output=jsonpath='{.items[*].metadata.name}')
 echo $pods
 ```
+
 The output is similar to this:
+
 ```
 pi-5rwd7
 ```
@@ -107,8 +166,10 @@ View the standard output of one of the pods:
 ```shell
 kubectl logs $pods
 ```
+
 The output is similar to this:
-```shell
+
+```
 3.1415926535897932384626433832795028841971693993751058209749445923078164062862089986280348253421170679821480865132823066470938446095505822317253594081284811174502841027019385211055596446229489549303819644288109756659334461284756482337867831652712019091456485669234603486104543266482133936072602491412737245870066063155881748815209209628292540917153643678925903600113305305488204665213841469519415116094330572703657595919530921861173819326117931051185480744623799627495673518857527248912279381830119491298336733624406566430860213949463952247371907021798609437027705392171762931767523846748184676694051320005681271452635608277857713427577896091736371787214684409012249534301465495853710507922796892589235420199561121290219608640344181598136297747713099605187072113499999983729780499510597317328160963185950244594553469083026425223082533446850352619311881710100031378387528865875332083814206171776691473035982534904287554687311595628638823537875937519577818577805321712268066130019278766111959092164201989380952572010654858632788659361533818279682303019520353018529689957736225994138912497217752834791315155748572424541506959508295331168617278558890750983817546374649393192550604009277016711390098488240128583616035637076601047101819429555961989467678374494482553797747268471040475346462080466842590694912933136770289891521047521620569660240580381501935112533824300355876402474964732639141992726042699227967823547816360093417216412199245863150302861829745557067498385054945885869269956909272107975093029553211653449872027559602364806654991198818347977535663698074265425278625518184175746728909777727938000816470600161452491921732172147723501414419735685481613611573525521334757418494684385233239073941433345477624168625189835694855620992192221842725502542568876717904946016534668049886272327917860857843838279679766814541009538837863609506800642251252051173929848960841284886269456042419652850222106611863067442786220391949450471237137869609563643719172874677646575739624138908658326459958133904780275901
 ```
 
@@ -187,7 +248,7 @@ parallelism, for a variety of reasons:
 
 ### Completion mode
 
-{{< feature-state for_k8s_version="v1.22" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 Jobs with _fixed completion count_ - that is, jobs that have non null
 `.spec.completions` - can have a completion mode that is specified in `.spec.completionMode`:
@@ -203,7 +264,8 @@ Jobs with _fixed completion count_ - that is, jobs that have non null
     When you use an Indexed Job in combination with a
     {{< glossary_tooltip term_id="Service" >}}, Pods within the Job can use
     the deterministic hostnames to address each other via DNS.
-  - From the containarized task, in the environment variable `JOB_COMPLETION_INDEX`.
+  - From the containerized task, in the environment variable `JOB_COMPLETION_INDEX`.
+  
   The Job is considered complete when there is one successfully completed Pod
   for each index. For more information about how to use this mode, see
   [Indexed Job for Parallel Processing with Static Work Assignment](/docs/tasks/job/indexed-parallel-processing-static/).
@@ -241,12 +303,22 @@ due to a logical error in configuration etc.
 To do so, set `.spec.backoffLimit` to specify the number of retries before
 considering a Job as failed. The back-off limit is set by default to 6. Failed
 Pods associated with the Job are recreated by the Job controller with an
-exponential back-off delay (10s, 20s, 40s ...) capped at six minutes. The
-back-off count is reset when a Job's Pod is deleted or successful without any
-other Pods for the Job failing around that time.
+exponential back-off delay (10s, 20s, 40s ...) capped at six minutes.
+
+The number of retries is calculated in two ways:
+- The number of Pods with `.status.phase = "Failed"`.
+- When using `restartPolicy = "OnFailure"`, the number of retries in all the
+  containers of Pods with `.status.phase` equal to `Pending` or `Running`.
+
+If either of the calculations reaches the `.spec.backoffLimit`, the Job is
+considered failed.
+
+When the [`JobTrackingWithFinalizers`](#job-tracking-with-finalizers) feature is
+disabled, the number of failed Pods is only based on Pods that are still present
+in the API.
 
 {{< note >}}
-If your job has `restartPolicy = "OnFailure"`, keep in mind that your container running the Job
+If your job has `restartPolicy = "OnFailure"`, keep in mind that your Pod running the Job
 will be terminated once the job backoff limit has been reached. This can make debugging the Job's executable more difficult. We suggest setting
 `restartPolicy = "Never"` when debugging the Job or using a logging system to ensure output
 from failed Jobs is not lost inadvertently.
@@ -284,7 +356,7 @@ spec:
     spec:
       containers:
       - name: pi
-        image: perl
+        image: perl:5.34.0
         command: ["perl",  "-Mbignum=bpi", "-wle", "print bpi(2000)"]
       restartPolicy: Never
 ```
@@ -304,7 +376,7 @@ cleaned up by CronJobs based on the specified capacity-based cleanup policy.
 
 ### TTL mechanism for finished Jobs
 
-{{< feature-state for_k8s_version="v1.21" state="beta" >}}
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
 
 Another way to clean up finished Jobs (either `Complete` or `Failed`)
 automatically is to use a TTL mechanism provided by a
@@ -330,7 +402,7 @@ spec:
     spec:
       containers:
       - name: pi
-        image: perl
+        image: perl:5.34.0
         command: ["perl",  "-Mbignum=bpi", "-wle", "print bpi(2000)"]
       restartPolicy: Never
 ```
@@ -342,6 +414,25 @@ If the field is set to `0`, the Job will be eligible to be automatically deleted
 immediately after it finishes. If the field is unset, this Job won't be cleaned
 up by the TTL controller after it finishes.
 
+{{< note >}}
+It is recommended to set `ttlSecondsAfterFinished` field because unmanaged jobs
+(Jobs that you created directly, and not indirectly through other workload APIs
+such as CronJob) have a default deletion
+policy of `orphanDependents` causing Pods created by an unmanaged Job to be left around
+after that Job is fully deleted.
+Even though the {{< glossary_tooltip text="control plane" term_id="control-plane" >}} eventually
+[garbage collects](/docs/concepts/workloads/pods/pod-lifecycle/#pod-garbage-collection)
+the Pods from a deleted Job after they either fail or complete, sometimes those
+lingering pods may cause cluster performance degradation or in worst case cause the
+cluster to go offline due to this degradation.
+
+You can use [LimitRanges](/docs/concepts/policy/limit-range/) and
+[ResourceQuotas](/docs/concepts/policy/resource-quotas/) to place a
+cap on the amount of resources that a particular namespace can
+consume.
+{{< /note >}}
+
+
 ## Job patterns
 
 The Job object can be used to support reliable parallel execution of Pods.  The Job object is not
@@ -374,7 +465,7 @@ The pattern names are also links to examples and more detailed description.
 | ----------------------------------------- |:-----------------:|:---------------------------:|:-------------------:|
 | [Queue with Pod Per Work Item]            |         ✓         |                             |      sometimes      |
 | [Queue with Variable Pod Count]           |         ✓         |             ✓               |                     |
-| [Indexed Job with Static Work Assignment] |         ✓         |                             |          ✓          | 
+| [Indexed Job with Static Work Assignment] |         ✓         |                             |          ✓          |
 | [Job Template Expansion]                  |                   |                             |          ✓          |
 
 When you specify completions with `.spec.completions`, each Pod created by the Job controller
@@ -402,18 +493,15 @@ Here, `W` is the number of work items.
 
 ### Suspending a Job
 
-{{< feature-state for_k8s_version="v1.22" state="beta" >}}
-
-{{< note >}}
-In Kubernetes version 1.21, this feature was in alpha, which required additional
-steps to enable this feature; make sure to read the [right documentation for the
-version of Kubernetes you're using](/docs/home/supported-doc-versions/).
-{{< /note >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 When a Job is created, the Job controller will immediately begin creating Pods
 to satisfy the Job's requirements and will continue to do so until the Job is
 complete. However, you may want to temporarily suspend a Job's execution and
-resume it later. To suspend a Job, you can update the `.spec.suspend` field of
+resume it later, or start Jobs in suspended state and have a custom controller
+decide later when to start them.
+
+To suspend a Job, you can update the `.spec.suspend` field of
 the Job to true; later, when you want to resume it again, update it to false.
 Creating a Job with `.spec.suspend` set to true will create it in the suspended
 state.
@@ -422,8 +510,7 @@ When a Job is resumed from suspension, its `.status.startTime` field will be
 reset to the current time. This means that the `.spec.activeDeadlineSeconds`
 timer will be stopped and reset when a Job is suspended and resumed.
 
-Remember that suspending a Job will delete all active Pods. When the Job is
-suspended, your [Pods will be terminated](/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)
+When you suspend a Job, any running Pods that don't have a status of `Completed` will be [terminated](/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination).
 with a SIGTERM signal. The Pod's graceful termination period will be honored and
 your Pod must handle this signal in this period. This may involve saving
 progress for later or undoing changes. Pods terminated this way will not count
@@ -449,6 +536,20 @@ spec:
       ...
 ```
 
+You can also toggle Job suspension by patching the Job using the command line.
+
+Suspend an active Job:
+
+```shell
+kubectl patch job/myjob --type=strategic --patch '{"spec":{"suspend":true}}'
+```
+
+Resume a suspended Job:
+
+```shell
+kubectl patch job/myjob --type=strategic --patch '{"spec":{"suspend":false}}'
+```
+
 The Job's status can be used to determine if a Job is suspended or has been
 suspended in the past:
 
@@ -456,7 +557,7 @@ suspended in the past:
 kubectl get jobs/myjob -o yaml
 ```
 
-```json
+```yaml
 apiVersion: batch/v1
 kind: Job
 # .metadata and .spec omitted
@@ -499,6 +600,32 @@ directly a result of toggling the `.spec.suspend` field. In the time between
 these two events, we see that no Pods were created, but Pod creation restarted
 as soon as the Job was resumed.
 
+### Mutable Scheduling Directives
+
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
+
+{{< note >}}
+In order to use this behavior, you must enable the `JobMutableNodeSchedulingDirectives`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+on the [API server](/docs/reference/command-line-tools-reference/kube-apiserver/).
+It is enabled by default.
+{{< /note >}}
+
+In most cases a parallel job will want the pods to run with constraints, 
+like all in the same zone, or all either on GPU model x or y but not a mix of both.
+
+The [suspend](#suspending-a-job) field is the first step towards achieving those semantics. Suspend allows a 
+custom queue controller to decide when a job should start; However, once a job is unsuspended,
+a custom queue controller has no influence on where the pods of a job will actually land.
+
+This feature allows updating a Job's scheduling directives before it starts, which gives custom queue
+controllers the ability to influence pod placement while at the same time offloading actual 
+pod-to-node assignment to kube-scheduler. This is allowed only for suspended Jobs that have never 
+been unsuspended before.
+
+The fields in a Job's pod template that can be updated are node affinity, node selector, 
+tolerations, labels and annotations.
+
 ### Specifying your own Pod selector
 
 Normally, when you create a Job object, you do not specify `.spec.selector`.
@@ -523,13 +650,15 @@ to keep running, but you want the rest of the Pods it creates
 to use a different pod template and for the Job to have a new name.
 You cannot update the Job because these fields are not updatable.
 Therefore, you delete Job `old` but _leave its pods
-running_, using `kubectl delete jobs/old --cascade=false`.
+running_, using `kubectl delete jobs/old --cascade=orphan`.
 Before deleting it, you make a note of what selector it uses:
 
 ```shell
 kubectl get job old -o yaml
 ```
+
 The output is similar to this:
+
 ```yaml
 kind: Job
 metadata:
@@ -563,23 +692,23 @@ spec:
 ```
 
 The new Job itself will have a different uid from `a8f3d00d-c6d2-11e5-9f87-42010af00002`.  Setting
-`manualSelector: true` tells the system to that you know what you are doing and to allow this
+`manualSelector: true` tells the system that you know what you are doing and to allow this
 mismatch.
 
 ### Job tracking with finalizers
 
-{{< feature-state for_k8s_version="v1.22" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
 
 {{< note >}}
 In order to use this behavior, you must enable the `JobTrackingWithFinalizers`
 [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
 on the [API server](/docs/reference/command-line-tools-reference/kube-apiserver/)
 and the [controller manager](/docs/reference/command-line-tools-reference/kube-controller-manager/).
-It is disabled by default.
 
 When enabled, the control plane tracks new Jobs using the behavior described
-below. Existing Jobs are unaffected. As a user, the only difference you would
-see is that the control plane tracking of Job completion is more accurate.
+below. Jobs created before the feature was enabled are unaffected. As a user,
+the only difference you would see is that the control plane tracking of Job
+completion is more accurate.
 {{< /note >}}
 
 When this feature isn't enabled, the Job {{< glossary_tooltip term_id="controller" >}}
@@ -638,6 +767,19 @@ driver, and then cleans up.
 An advantage of this approach is that the overall process gets the completion guarantee of a Job
 object, but maintains complete control over what Pods are created and how work is assigned to them.
 
-## Cron Jobs {#cron-jobs}
+## {{% heading "whatsnext" %}}
 
-You can use a [`CronJob`](/docs/concepts/workloads/controllers/cron-jobs/) to create a Job that will run at specified times/dates, similar to the Unix tool `cron`.
+* Learn about [Pods](/docs/concepts/workloads/pods).
+* Read about different ways of running Jobs:
+   * [Coarse Parallel Processing Using a Work Queue](/docs/tasks/job/coarse-parallel-processing-work-queue/)
+   * [Fine Parallel Processing Using a Work Queue](/docs/tasks/job/fine-parallel-processing-work-queue/)
+   * Use an [indexed Job for parallel processing with static work assignment](/docs/tasks/job/indexed-parallel-processing-static/) (beta)
+   * Create multiple Jobs based on a template: [Parallel Processing using Expansions](/docs/tasks/job/parallel-processing-expansion/)
+* Follow the links within [Clean up finished jobs automatically](#clean-up-finished-jobs-automatically)
+  to learn more about how your cluster can clean up completed and / or failed tasks.
+* `Job` is part of the Kubernetes REST API.
+  Read the {{< api-reference page="workload-resources/job-v1" >}}
+  object definition to understand the API for jobs.
+* Read about [`CronJob`](/docs/concepts/workloads/controllers/cron-jobs/), which you
+  can use to define a series of Jobs that will run based on a schedule, similar to
+  the UNIX tool `cron`.
diff --git a/content/en/docs/concepts/workloads/controllers/replicaset.md b/content/en/docs/concepts/workloads/controllers/replicaset.md
index e7b36d1b4a..a282b8455a 100644
--- a/content/en/docs/concepts/workloads/controllers/replicaset.md
+++ b/content/en/docs/concepts/workloads/controllers/replicaset.md
@@ -13,9 +13,6 @@ weight: 20
 A ReplicaSet's purpose is to maintain a stable set of replica Pods running at any given time. As such, it is often
 used to guarantee the availability of a specified number of identical Pods.
 
-
-
-
 <!-- body -->
 
 ## How a ReplicaSet works
@@ -26,14 +23,14 @@ it should create to meet the number of replicas criteria. A ReplicaSet then fulf
 and deleting Pods as needed to reach the desired number. When a ReplicaSet needs to create new Pods, it uses its Pod
 template.
 
-A ReplicaSet is linked to its Pods via the Pods' [metadata.ownerReferences](/docs/concepts/workloads/controllers/garbage-collection/#owners-and-dependents)
+A ReplicaSet is linked to its Pods via the Pods' [metadata.ownerReferences](/docs/concepts/architecture/garbage-collection/#owners-and-dependents)
 field, which specifies what resource the current object is owned by. All Pods acquired by a ReplicaSet have their owning
 ReplicaSet's identifying information within their ownerReferences field. It's through this link that the ReplicaSet
 knows of the state of the Pods it is maintaining and plans accordingly.
 
-A ReplicaSet identifies new Pods to acquire by using its selector. If there is a Pod that has no OwnerReference or the
-OwnerReference is not a {{< glossary_tooltip term_id="controller" >}} and it matches a ReplicaSet's selector, it will be immediately acquired by said
-ReplicaSet.
+A ReplicaSet identifies new Pods to acquire by using its selector. If there is a Pod that has no
+OwnerReference or the OwnerReference is not a {{< glossary_tooltip term_id="controller" >}} and it
+matches a ReplicaSet's selector, it will be immediately acquired by said ReplicaSet.
 
 ## When to use a ReplicaSet
 
@@ -78,7 +75,7 @@ kubectl describe rs/frontend
 
 And you will see output similar to:
 
-```shell
+```
 Name:         frontend
 Namespace:    default
 Selector:     tier=frontend
@@ -130,7 +127,7 @@ kubectl get pods frontend-b2zdv -o yaml
 
 The output will look similar to this, with the frontend ReplicaSet's info set in the metadata's ownerReferences field:
 
-```shell
+```yaml
 apiVersion: v1
 kind: Pod
 metadata:
@@ -181,7 +178,7 @@ kubectl get pods
 
 The output shows that the new Pods are either already terminated, or in the process of being terminated:
 
-```shell
+```
 NAME             READY   STATUS        RESTARTS   AGE
 frontend-b2zdv   1/1     Running       0          10m
 frontend-vcmts   1/1     Running       0          10m
@@ -210,7 +207,7 @@ kubectl get pods
 ```
 
 Will reveal in its output:
-```shell
+```
 NAME             READY   STATUS    RESTARTS   AGE
 frontend-hmmj2   1/1     Running   0          9s
 pod1             1/1     Running   0          36s
@@ -223,8 +220,6 @@ In this manner, a ReplicaSet can own a non-homogenous set of Pods
 
 As with all other Kubernetes API objects, a ReplicaSet needs the `apiVersion`, `kind`, and `metadata` fields.
 For ReplicaSets, the `kind` is always a ReplicaSet.
-In Kubernetes 1.9 the API version `apps/v1` on the ReplicaSet kind is the current version and is enabled by default. The API version `apps/v1beta2` is deprecated.
-Refer to the first lines of the `frontend.yaml` example for guidance.
 
 The name of a ReplicaSet object must be a valid
 [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
@@ -255,7 +250,9 @@ In the ReplicaSet, `.spec.template.metadata.labels` must match `spec.selector`,
 be rejected by the API.
 
 {{< note >}}
-For 2 ReplicaSets specifying the same `.spec.selector` but different `.spec.template.metadata.labels` and `.spec.template.spec` fields, each ReplicaSet ignores the Pods created by the other ReplicaSet.
+For 2 ReplicaSets specifying the same `.spec.selector` but different
+`.spec.template.metadata.labels` and `.spec.template.spec` fields, each ReplicaSet ignores the
+Pods created by the other ReplicaSet.
 {{< /note >}}
 
 ### Replicas
@@ -269,11 +266,14 @@ If you do not specify `.spec.replicas`, then it defaults to 1.
 
 ### Deleting a ReplicaSet and its Pods
 
-To delete a ReplicaSet and all of its Pods, use [`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands#delete). The [Garbage collector](/docs/concepts/workloads/controllers/garbage-collection/) automatically deletes all of the dependent Pods by default.
+To delete a ReplicaSet and all of its Pods, use
+[`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands#delete). The
+[Garbage collector](/docs/concepts/architecture/garbage-collection/) automatically deletes all of
+the dependent Pods by default.
+
+When using the REST API or the `client-go` library, you must set `propagationPolicy` to
+`Background` or `Foreground` in the `-d` option. For example:
 
-When using the REST API or the `client-go` library, you must set `propagationPolicy` to `Background` or `Foreground` in
-the -d option.
-For example:
 ```shell
 kubectl proxy --port=8080
 curl -X DELETE  'localhost:8080/apis/apps/v1/namespaces/default/replicasets/frontend' \
@@ -283,9 +283,12 @@ curl -X DELETE  'localhost:8080/apis/apps/v1/namespaces/default/replicasets/fron
 
 ### Deleting just a ReplicaSet
 
-You can delete a ReplicaSet without affecting any of its Pods using [`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands#delete) with the `--cascade=orphan` option.
+You can delete a ReplicaSet without affecting any of its Pods using
+[`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands#delete)
+with the `--cascade=orphan` option.
 When using the REST API or the `client-go` library, you must set `propagationPolicy` to `Orphan`.
 For example:
+
 ```shell
 kubectl proxy --port=8080
 curl -X DELETE  'localhost:8080/apis/apps/v1/namespaces/default/replicasets/frontend' \
@@ -297,7 +300,8 @@ Once the original is deleted, you can create a new ReplicaSet to replace it.  As
 as the old and new `.spec.selector` are the same, then the new one will adopt the old Pods.
 However, it will not make any effort to make existing Pods match a new, different pod template.
 To update Pods to a new spec in a controlled way, use a
-[Deployment](/docs/concepts/workloads/controllers/deployment/#creating-a-deployment), as ReplicaSets do not support a rolling update directly.
+[Deployment](/docs/concepts/workloads/controllers/deployment/#creating-a-deployment), as
+ReplicaSets do not support a rolling update directly.
 
 ### Isolating Pods from a ReplicaSet
 
@@ -312,17 +316,19 @@ ensures that a desired number of Pods with a matching label selector are availab
 
 When scaling down, the ReplicaSet controller chooses which pods to delete by sorting the available pods to
 prioritize scaling down pods based on the following general algorithm:
- 1. Pending (and unschedulable) pods are scaled down first
- 2. If controller.kubernetes.io/pod-deletion-cost annotation is set, then
-    the pod with the lower value will come first.
- 3. Pods on nodes with more replicas come before pods on nodes with fewer replicas.
- 4. If the pods' creation times differ, the pod that was created more recently
-    comes before the older pod (the creation times are bucketed on an integer log scale
-    when the `LogarithmicScaleDown` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled)
+
+1. Pending (and unschedulable) pods are scaled down first
+1. If `controller.kubernetes.io/pod-deletion-cost` annotation is set, then
+   the pod with the lower value will come first.
+1. Pods on nodes with more replicas come before pods on nodes with fewer replicas.
+1. If the pods' creation times differ, the pod that was created more recently
+   comes before the older pod (the creation times are bucketed on an integer log scale
+   when the `LogarithmicScaleDown` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled)
     
 If all of the above match, then selection is random.
 
 ### Pod deletion cost 
+
 {{< feature-state for_k8s_version="v1.22" state="beta" >}}
 
 Using the [`controller.kubernetes.io/pod-deletion-cost`](/docs/reference/labels-annotations-taints/#pod-deletion-cost) 
@@ -346,6 +352,7 @@ This feature is beta and enabled by default. You can disable it using the
 {{< /note >}}
 
 #### Example Use Case
+
 The different pods of an application could have different utilization levels. On scale down, the application 
 may prefer to remove the pods with lower utilization. To avoid frequently updating the pods, the application
 should update `controller.kubernetes.io/pod-deletion-cost` once before issuing a scale down (setting the 
@@ -389,12 +396,17 @@ As such, it is recommended to use Deployments when you want ReplicaSets.
 
 ### Bare Pods
 
-Unlike the case where a user directly created Pods, a ReplicaSet replaces Pods that are deleted or terminated for any reason, such as in the case of node failure or disruptive node maintenance, such as a kernel upgrade. For this reason, we recommend that you use a ReplicaSet even if your application requires only a single Pod. Think of it similarly to a process supervisor, only it supervises multiple Pods across multiple nodes instead of individual processes on a single node. A ReplicaSet delegates local container restarts to some agent on the node (for example, Kubelet or Docker).
+Unlike the case where a user directly created Pods, a ReplicaSet replaces Pods that are deleted or
+terminated for any reason, such as in the case of node failure or disruptive node maintenance,
+such as a kernel upgrade. For this reason, we recommend that you use a ReplicaSet even if your
+application requires only a single Pod. Think of it similarly to a process supervisor, only it
+supervises multiple Pods across multiple nodes instead of individual processes on a single node. A
+ReplicaSet delegates local container restarts to some agent on the node such as Kubelet.
 
 ### Job
 
-Use a [`Job`](/docs/concepts/workloads/controllers/job/) instead of a ReplicaSet for Pods that are expected to terminate on their own
-(that is, batch jobs).
+Use a [`Job`](/docs/concepts/workloads/controllers/job/) instead of a ReplicaSet for Pods that are
+expected to terminate on their own (that is, batch jobs).
 
 ### DaemonSet
 
@@ -404,9 +416,21 @@ to a machine lifetime: the Pod needs to be running on the machine before other P
 safe to terminate when the machine is otherwise ready to be rebooted/shutdown.
 
 ### ReplicationController
-ReplicaSets are the successors to [_ReplicationControllers_](/docs/concepts/workloads/controllers/replicationcontroller/).
+
+ReplicaSets are the successors to [ReplicationControllers](/docs/concepts/workloads/controllers/replicationcontroller/).
 The two serve the same purpose, and behave similarly, except that a ReplicationController does not support set-based
 selector requirements as described in the [labels user guide](/docs/concepts/overview/working-with-objects/labels/#label-selectors).
 As such, ReplicaSets are preferred over ReplicationControllers
 
+## {{% heading "whatsnext" %}}
+
+* Learn about [Pods](/docs/concepts/workloads/pods).
+* Learn about [Deployments](/docs/concepts/workloads/controllers/deployment/).
+* [Run a Stateless Application Using a Deployment](/docs/tasks/run-application/run-stateless-application-deployment/),
+  which relies on ReplicaSets to work.
+* `ReplicaSet` is a top-level resource in the Kubernetes REST API.
+  Read the {{< api-reference page="workload-resources/replica-set-v1" >}}
+  object definition to understand the API for replica sets.
+* Read about [PodDisruptionBudget](/docs/concepts/workloads/pods/disruptions/) and how
+  you can use it to manage application availability during disruptions.
 
diff --git a/content/en/docs/concepts/workloads/controllers/replicationcontroller.md b/content/en/docs/concepts/workloads/controllers/replicationcontroller.md
index 2b06539fd6..b55db484e0 100644
--- a/content/en/docs/concepts/workloads/controllers/replicationcontroller.md
+++ b/content/en/docs/concepts/workloads/controllers/replicationcontroller.md
@@ -185,16 +185,16 @@ delete`](/docs/reference/generated/kubectl/kubectl-commands#delete).  Kubectl wi
 for it to delete each pod before deleting the ReplicationController itself.  If this kubectl
 command is interrupted, it can be restarted.
 
-When using the REST API or Go client library, you need to do the steps explicitly (scale replicas to
+When using the REST API or [client library](/docs/reference/using-api/client-libraries), you need to do the steps explicitly (scale replicas to
 0, wait for pod deletions, then delete the ReplicationController).
 
 ### Deleting only a ReplicationController
 
 You can delete a ReplicationController without affecting any of its pods.
 
-Using kubectl, specify the `--cascade=false` option to [`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands#delete).
+Using kubectl, specify the `--cascade=orphan` option to [`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands#delete).
 
-When using the REST API or Go client library, you can delete the ReplicationController object.
+When using the REST API or [client library](/docs/reference/using-api/client-libraries), you can delete the ReplicationController object.
 
 Once the original is deleted, you can create a new ReplicationController to replace it.  As long
 as the old and new `.spec.selector` are the same, then the new one will adopt the old pods.
@@ -248,7 +248,7 @@ The ReplicationController ensures that the desired number of pods matches its la
 
 The ReplicationController is forever constrained to this narrow responsibility. It itself will not perform readiness nor liveness probes. Rather than performing auto-scaling, it is intended to be controlled by an external auto-scaler (as discussed in [#492](https://issue.k8s.io/492)), which would change its `replicas` field. We will not add scheduling policies (for example, [spreading](https://issue.k8s.io/367#issuecomment-48428019)) to the ReplicationController. Nor should it verify that the pods controlled match the currently specified template, as that would obstruct auto-sizing and other automated processes. Similarly, completion deadlines, ordering dependencies, configuration expansion, and other features belong elsewhere. We even plan to factor out the mechanism for bulk pod creation ([#170](https://issue.k8s.io/170)).
 
-The ReplicationController is intended to be a composable building-block primitive. We expect higher-level APIs and/or tools to be built on top of it and other complementary primitives for user convenience in the future. The "macro" operations currently supported by kubectl (run, scale) are proof-of-concept examples of this. For instance, we could imagine something like [Asgard](https://techblog.netflix.com/2012/06/asgard-web-based-cloud-management-and.html) managing ReplicationControllers, auto-scalers, services, scheduling policies, canaries, etc.
+The ReplicationController is intended to be a composable building-block primitive. We expect higher-level APIs and/or tools to be built on top of it and other complementary primitives for user convenience in the future. The "macro" operations currently supported by kubectl (run, scale) are proof-of-concept examples of this. For instance, we could imagine something like [Asgard](https://netflixtechblog.com/asgard-web-based-cloud-management-and-deployment-2c9fc4e4d3a1) managing ReplicationControllers, auto-scalers, services, scheduling policies, canaries, etc.
 
 ## API Object
 
@@ -266,7 +266,7 @@ Note that we recommend using Deployments instead of directly using Replica Sets,
 
 ### Deployment (Recommended)
 
-[`Deployment`](/docs/concepts/workloads/controllers/deployment/) is a higher-level API object that updates its underlying Replica Sets and their Pods. Deployments are recommended if you want this rolling update functionality because, they are declarative, server-side, and have additional features.
+[`Deployment`](/docs/concepts/workloads/controllers/deployment/) is a higher-level API object that updates its underlying Replica Sets and their Pods. Deployments are recommended if you want the rolling update functionality,  because they are declarative, server-side, and have additional features.
 
 ### Bare Pods
 
@@ -284,6 +284,11 @@ machine-level function, such as machine monitoring or machine logging.  These po
 to a machine lifetime: the pod needs to be running on the machine before other pods start, and are
 safe to terminate when the machine is otherwise ready to be rebooted/shutdown.
 
-## For more information
+## {{% heading "whatsnext" %}}
 
-Read [Run Stateless Application Deployment](/docs/tasks/run-application/run-stateless-application-deployment/).
+* Learn about [Pods](/docs/concepts/workloads/pods).
+* Learn about [Deployment](/docs/concepts/workloads/controllers/deployment/), the replacement
+  for ReplicationController.
+* `ReplicationController` is part of the Kubernetes REST API.
+  Read the {{< api-reference page="workload-resources/replication-controller-v1" >}}
+  object definition to understand the API for replication controllers.
diff --git a/content/en/docs/concepts/workloads/controllers/statefulset.md b/content/en/docs/concepts/workloads/controllers/statefulset.md
index 289722fb07..1687399abd 100644
--- a/content/en/docs/concepts/workloads/controllers/statefulset.md
+++ b/content/en/docs/concepts/workloads/controllers/statefulset.md
@@ -39,10 +39,18 @@ that provides a set of stateless replicas.
 
 ## Limitations
 
-* The storage for a given Pod must either be provisioned by a [PersistentVolume Provisioner](https://github.com/kubernetes/examples/tree/master/staging/persistent-volume-provisioning/README.md) based on the requested `storage class`, or pre-provisioned by an admin.
-* Deleting and/or scaling a StatefulSet down will *not* delete the volumes associated with the StatefulSet. This is done to ensure data safety, which is generally more valuable than an automatic purge of all related StatefulSet resources.
-* StatefulSets currently require a [Headless Service](/docs/concepts/services-networking/service/#headless-services) to be responsible for the network identity of the Pods. You are responsible for creating this Service.
-* StatefulSets do not provide any guarantees on the termination of pods when a StatefulSet is deleted. To achieve ordered and graceful termination of the pods in the StatefulSet, it is possible to scale the StatefulSet down to 0 prior to deletion.
+* The storage for a given Pod must either be provisioned by a
+  [PersistentVolume Provisioner](https://github.com/kubernetes/examples/tree/master/staging/persistent-volume-provisioning/README.md)
+  based on the requested `storage class`, or pre-provisioned by an admin.
+* Deleting and/or scaling a StatefulSet down will *not* delete the volumes associated with the
+  StatefulSet. This is done to ensure data safety, which is generally more valuable than an
+  automatic purge of all related StatefulSet resources.
+* StatefulSets currently require a [Headless Service](/docs/concepts/services-networking/service/#headless-services)
+  to be responsible for the network identity of the Pods. You are responsible for creating this
+  Service.
+* StatefulSets do not provide any guarantees on the termination of pods when a StatefulSet is
+  deleted. To achieve ordered and graceful termination of the pods in the StatefulSet, it is
+  possible to scale the StatefulSet down to 0 prior to deletion.
 * When using [Rolling Updates](#rolling-updates) with the default
   [Pod Management Policy](#pod-management-policies) (`OrderedReady`),
   it's possible to get into a broken state that requires
@@ -77,6 +85,7 @@ spec:
       app: nginx # has to match .spec.template.metadata.labels
   serviceName: "nginx"
   replicas: 3 # by default is 1
+  minReadySeconds: 10 # by default is 0
   template:
     metadata:
       labels:
@@ -107,14 +116,37 @@ In the above example:
 
 * A Headless Service, named `nginx`, is used to control the network domain.
 * The StatefulSet, named `web`, has a Spec that indicates that 3 replicas of the nginx container will be launched in unique Pods.
-* The `volumeClaimTemplates` will provide stable storage using [PersistentVolumes](/docs/concepts/storage/persistent-volumes/) provisioned by a PersistentVolume Provisioner.
+* The `volumeClaimTemplates` will provide stable storage using
+  [PersistentVolumes](/docs/concepts/storage/persistent-volumes/) provisioned by a
+  PersistentVolume Provisioner.
 
 The name of a StatefulSet object must be a valid
 [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 
-## Pod Selector
+### Pod Selector
 
-You must set the `.spec.selector` field of a StatefulSet to match the labels of its `.spec.template.metadata.labels`. Prior to Kubernetes 1.8, the `.spec.selector` field was defaulted when omitted. In 1.8 and later versions, failing to specify a matching Pod Selector will result in a validation error during StatefulSet creation.
+You must set the `.spec.selector` field of a StatefulSet to match the labels of its
+`.spec.template.metadata.labels`. Failing to specify a matching Pod Selector will result in a
+validation error during StatefulSet creation.
+
+### Volume Claim Templates
+
+You can set the `.spec.volumeClaimTemplates` which can provide stable storage using
+[PersistentVolumes](/docs/concepts/storage/persistent-volumes/) provisioned by a PersistentVolume
+Provisioner.
+
+
+### Minimum ready seconds
+
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
+
+`.spec.minReadySeconds` is an optional field that specifies the minimum number of seconds for which a newly
+created Pod should be ready without any of its containers crashing, for it to be considered available.
+Please note that this feature is beta and enabled by default. Please opt out by unsetting the
+StatefulSetMinReadySeconds flag, if you don't
+want this feature to be enabled. This field defaults to 0 (the Pod will be considered 
+available as soon as it is ready). To learn more about when a Pod is considered ready, see
+[Container Probes](/docs/concepts/workloads/pods/pod-lifecycle/#container-probes).
 
 ## Pod Identity
 
@@ -150,8 +182,8 @@ remembered and reused, even after the Pod is running, for at least a few seconds
 If you need to discover Pods promptly after they are created, you have a few options:
 
 - Query the Kubernetes API directly (for example, using a watch) rather than relying on DNS lookups.
-- Decrease the time of caching in your Kubernetes DNS provider (typically this means editing the config map for CoreDNS, which currently caches for 30 seconds).
-
+- Decrease the time of caching in your Kubernetes DNS provider (typically this means editing the
+  config map for CoreDNS, which currently caches for 30 seconds).
 
 As mentioned in the [limitations](#limitations) section, you are responsible for
 creating the [Headless Service](/docs/concepts/services-networking/service/#headless-services)
@@ -173,7 +205,9 @@ Cluster Domain will be set to `cluster.local` unless
 
 ### Stable Storage
 
-For each VolumeClaimTemplate entry defined in a StatefulSet, each Pod receives one PersistentVolumeClaim. In the nginx example above, each Podreceives a single PersistentVolume with a StorageClass of `my-storage-class` and 1 Gib of provisioned storage. If no StorageClass
+For each VolumeClaimTemplate entry defined in a StatefulSet, each Pod receives one
+PersistentVolumeClaim. In the nginx example above, each Pod receives a single PersistentVolume
+with a StorageClass of `my-storage-class` and 1 Gib of provisioned storage. If no StorageClass
 is specified, then the default StorageClass will be used. When a Pod is (re)scheduled
 onto a node, its `volumeMounts` mount the PersistentVolumes associated with its
 PersistentVolume Claims. Note that, the PersistentVolumes associated with the
@@ -194,7 +228,9 @@ the StatefulSet.
 * Before a scaling operation is applied to a Pod, all of its predecessors must be Running and Ready.
 * Before a Pod is terminated, all of its successors must be completely shutdown.
 
-The StatefulSet should not specify a `pod.Spec.TerminationGracePeriodSeconds` of 0. This practice is unsafe and strongly discouraged. For further explanation, please refer to [force deleting StatefulSet Pods](/docs/tasks/run-application/force-delete-stateful-set-pod/).
+The StatefulSet should not specify a `pod.Spec.TerminationGracePeriodSeconds` of 0. This practice
+is unsafe and strongly discouraged. For further explanation, please refer to
+[force deleting StatefulSet Pods](/docs/tasks/run-application/force-delete-stateful-set-pod/).
 
 When the nginx example above is created, three Pods will be deployed in the order
 web-0, web-1, web-2. web-1 will not be deployed before web-0 is
@@ -210,7 +246,7 @@ is completely shutdown, but prior to web-1's termination, web-1 would not be ter
 until web-0 is Running and Ready.
 
 ### Pod Management Policies
-In Kubernetes 1.7 and later, StatefulSet allows you to relax its ordering guarantees while
+StatefulSet allows you to relax its ordering guarantees while
 preserving its uniqueness and identity guarantees via its `.spec.podManagementPolicy` field.
 
 #### OrderedReady Pod Management
@@ -240,7 +276,8 @@ annotations for the Pods in a StatefulSet. There are two possible values:
   create new Pods that reflect modifications made to a StatefulSet's `.spec.template`.
 
 `RollingUpdate`
-: The `RollingUpdate` update strategy implements automated, rolling update for the Pods in a StatefulSet. This is the default update strategy.
+: The `RollingUpdate` update strategy implements automated, rolling update for the Pods in a
+  StatefulSet. This is the default update strategy.
 
 ## Rolling Updates
 
@@ -250,7 +287,9 @@ in the same order as Pod termination (from the largest ordinal to the smallest),
 each Pod one at a time.
 
 The Kubernetes control plane waits until an updated Pod is Running and Ready prior
-to updating its predecessor. If you have set `.spec.minReadySeconds` (see [Minimum Ready Seconds](#minimum-ready-seconds)), the control plane additionally waits that amount of time after the Pod turns ready, before moving on.
+to updating its predecessor. If you have set `.spec.minReadySeconds` (see
+[Minimum Ready Seconds](#minimum-ready-seconds)), the control plane additionally waits that
+amount of time after the Pod turns ready, before moving on.
 
 ### Partitioned rolling updates {#partitions}
 
@@ -264,6 +303,27 @@ updates to its `.spec.template` will not be propagated to its Pods.
 In most cases you will not need to use a partition, but they are useful if you want to stage an
 update, roll out a canary, or perform a phased roll out.
 
+### Maximum unavailable Pods
+
+{{< feature-state for_k8s_version="v1.24" state="alpha" >}}
+
+You can control the maximum number of Pods that can be unavailable during an update
+by specifying the `.spec.updateStrategy.rollingUpdate.maxUnavailable` field.
+The value can be an absolute number (for example, `5`) or a percentage of desired
+Pods (for example, `10%`). Absolute number is calculated from the percentage value
+by rounding it up. This field cannot be 0. The default setting is 1.
+
+This field applies to all Pods in the range `0` to `replicas - 1`. If there is any
+unavailable Pod in the range `0` to `replicas - 1`, it will be counted towards
+`maxUnavailable`.
+
+{{< note >}}
+The `maxUnavailable` field is in Alpha stage and it is honored only by API servers
+that are running with the `MaxUnavailableStatefulSet`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+enabled.
+{{< /note >}}
+
 ### Forced rollback
 
 When using [Rolling Updates](#rolling-updates) with the default
@@ -284,21 +344,115 @@ After reverting the template, you must also delete any Pods that StatefulSet had
 already attempted to run with the bad configuration.
 StatefulSet will then begin to recreate the Pods using the reverted template.
 
-### Minimum ready seconds
 
-{{< feature-state for_k8s_version="v1.22" state="alpha" >}}
+## PersistentVolumeClaim retention
 
-`.spec.minReadySeconds` is an optional field that specifies the minimum number of seconds for which a newly
-created Pod should be ready without any of its containers crashing, for it to be considered available.
-This defaults to 0 (the Pod will be considered available as soon as it is ready). To learn more about when
-a Pod is considered ready, see [Container Probes](/docs/concepts/workloads/pods/pod-lifecycle/#container-probes).
+{{< feature-state for_k8s_version="v1.23" state="alpha" >}}
 
-Please note that this field only works if you enable the `StatefulSetMinReadySeconds` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/).
+The optional `.spec.persistentVolumeClaimRetentionPolicy` field controls if
+and how PVCs are deleted during the lifecycle of a StatefulSet. You must enable the
+`StatefulSetAutoDeletePVC` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+to use this field. Once enabled, there are two policies you can configure for each
+StatefulSet:
+
+`whenDeleted`
+: configures the volume retention behavior that applies when the StatefulSet is deleted
+
+`whenScaled`
+: configures the volume retention behavior that applies when the replica count of
+  the StatefulSet   is reduced; for example, when scaling down the set.
+  
+For each policy that you can configure, you can set the value to either `Delete` or `Retain`.
+
+`Delete`
+: The PVCs created from the StatefulSet `volumeClaimTemplate` are deleted for each Pod
+  affected by the policy. With the `whenDeleted` policy all PVCs from the
+  `volumeClaimTemplate` are deleted after their Pods have been deleted. With the
+  `whenScaled` policy, only PVCs corresponding to Pod replicas being scaled down are
+  deleted, after their Pods have been deleted.
+
+`Retain` (default)
+: PVCs from the `volumeClaimTemplate` are not affected when their Pod is
+  deleted. This is the behavior before this new feature.
+
+Bear in mind that these policies **only** apply when Pods are being removed due to the
+StatefulSet being deleted or scaled down. For example, if a Pod associated with a StatefulSet
+fails due to node failure, and the control plane creates a replacement Pod, the StatefulSet
+retains the existing PVC.  The existing volume is unaffected, and the cluster will attach it to
+the node where the new Pod is about to launch.
+  
+The default for policies is `Retain`, matching the StatefulSet behavior before this new feature.
+
+Here is an example policy.
+
+```yaml
+apiVersion: apps/v1
+kind: StatefulSet
+...
+spec:
+  persistentVolumeClaimRetentionPolicy:
+    whenDeleted: Retain
+    whenScaled: Delete
+...
+```
+
+The StatefulSet {{<glossary_tooltip text="controller" term_id="controller">}} adds
+[owner references](/docs/concepts/overview/working-with-objects/owners-dependents/#owner-references-in-object-specifications)
+to its PVCs, which are then deleted by the {{<glossary_tooltip text="garbage collector"
+term_id="garbage-collection">}} after the Pod is terminated. This enables the Pod to
+cleanly unmount all volumes before the PVCs are deleted (and before the backing PV and
+volume are deleted, depending on the retain policy).  When you set the `whenDeleted`
+policy to `Delete`, an owner reference to the StatefulSet instance is placed on all PVCs
+associated with that StatefulSet.
+
+The `whenScaled` policy must delete PVCs only when a Pod is scaled down, and not when a
+Pod is deleted for another reason. When reconciling, the StatefulSet controller compares
+its desired replica count to the actual Pods present on the cluster. Any StatefulSet Pod
+whose id greater than the replica count is condemned and marked for deletion. If the
+`whenScaled` policy is `Delete`, the condemned Pods are first set as owners to the
+associated StatefulSet template PVCs, before the Pod is deleted. This causes the PVCs
+to be garbage collected after only the condemned Pods have terminated.
+
+This means that if the controller crashes and restarts, no Pod will be deleted before its
+owner reference has been updated appropriate to the policy. If a condemned Pod is
+force-deleted while the controller is down, the owner reference may or may not have been
+set up, depending on when the controller crashed. It may take several reconcile loops to
+update the owner references, so some condemned Pods may have set up owner references and
+other may not. For this reason we recommend waiting for the controller to come back up,
+which will verify owner references before terminating Pods. If that is not possible, the
+operator should verify the owner references on PVCs to ensure the expected objects are
+deleted when Pods are force-deleted.
+
+### Replicas
+
+`.spec.replicas` is an optional field that specifies the number of desired Pods. It defaults to 1.
+
+Should you manually scale a deployment, example via `kubectl scale
+statefulset statefulset --replicas=X`, and then you update that StatefulSet
+based on a manifest (for example: by running `kubectl apply -f
+statefulset.yaml`), then applying that manifest overwrites the manual scaling
+that you previously did.
+
+If a [HorizontalPodAutoscaler](/docs/tasks/run-application/horizontal-pod-autoscale/)
+(or any similar API for horizontal scaling) is managing scaling for a
+Statefulset, don't set `.spec.replicas`. Instead, allow the Kubernetes
+{{<glossary_tooltip text="control plane" term_id="control-plane" >}} to manage
+the `.spec.replicas` field automatically.
 
 ## {{% heading "whatsnext" %}}
 
-
-* Follow an example of [deploying a stateful application](/docs/tutorials/stateful-application/basic-stateful-set/).
-* Follow an example of [deploying Cassandra with Stateful Sets](/docs/tutorials/stateful-application/cassandra/).
-* Follow an example of [running a replicated stateful application](/docs/tasks/run-application/run-replicated-stateful-application/).
+* Learn about [Pods](/docs/concepts/workloads/pods).
+* Find out how to use StatefulSets
+  * Follow an example of [deploying a stateful application](/docs/tutorials/stateful-application/basic-stateful-set/).
+  * Follow an example of [deploying Cassandra with Stateful Sets](/docs/tutorials/stateful-application/cassandra/).
+  * Follow an example of [running a replicated stateful application](/docs/tasks/run-application/run-replicated-stateful-application/).
+  * Learn how to [scale a StatefulSet](/docs/tasks/run-application/scale-stateful-set/).
+  * Learn what's involved when you [delete a StatefulSet](/docs/tasks/run-application/delete-stateful-set/).
+  * Learn how to [configure a Pod to use a volume for storage](/docs/tasks/configure-pod-container/configure-volume-storage/).
+  * Learn how to [configure a Pod to use a PersistentVolume for storage](/docs/tasks/configure-pod-container/configure-persistent-volume-storage/).
+* `StatefulSet` is a top-level resource in the Kubernetes REST API.
+  Read the {{< api-reference page="workload-resources/stateful-set-v1" >}}
+  object definition to understand the API for stateful sets.
+* Read about [PodDisruptionBudget](/docs/concepts/workloads/pods/disruptions/) and how
+  you can use it to manage application availability during disruptions.
 
diff --git a/content/en/docs/concepts/workloads/controllers/ttlafterfinished.md b/content/en/docs/concepts/workloads/controllers/ttlafterfinished.md
index 266e72a79f..a51c88602f 100644
--- a/content/en/docs/concepts/workloads/controllers/ttlafterfinished.md
+++ b/content/en/docs/concepts/workloads/controllers/ttlafterfinished.md
@@ -1,75 +1,68 @@
 ---
 reviewers:
 - janetkuo
-title: TTL Controller for Finished Resources
+title: Automatic Clean-up for Finished Jobs 
 content_type: concept
 weight: 70
 ---
 
 <!-- overview -->
 
-{{< feature-state for_k8s_version="v1.21" state="beta" >}}
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
 
-The TTL controller provides a TTL (time to live) mechanism to limit the lifetime of resource
-objects that have finished execution. TTL controller only handles
-{{< glossary_tooltip text="Jobs" term_id="job" >}} for now,
-and may be expanded to handle other resources that will finish execution,
-such as Pods and custom resources.
-
-This feature is currently beta and enabled by default, and can be disabled via 
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
-`TTLAfterFinished` in both kube-apiserver and kube-controller-manager.
+TTL-after-finished {{<glossary_tooltip text="controller" term_id="controller">}} provides a 
+TTL (time to live) mechanism to limit the lifetime of resource objects that 
+have finished execution. TTL controller only handles 
+{{< glossary_tooltip text="Jobs" term_id="job" >}}.
 
 <!-- body -->
 
-## TTL Controller
+## TTL-after-finished Controller
 
-The TTL controller only supports Jobs for now. A cluster operator can use this feature to clean
+The TTL-after-finished controller is only supported for Jobs. A cluster operator can use this feature to clean
 up finished Jobs (either `Complete` or `Failed`) automatically by specifying the
 `.spec.ttlSecondsAfterFinished` field of a Job, as in this
 [example](/docs/concepts/workloads/controllers/job/#clean-up-finished-jobs-automatically).
-The TTL controller will assume that a resource is eligible to be cleaned up
-TTL seconds after the resource has finished, in other words, when the TTL has expired. When the
-TTL controller cleans up a resource, it will delete it cascadingly, that is to say it will delete
-its dependent objects together with it. Note that when the resource is deleted,
+The TTL-after-finished controller will assume that a job is eligible to be cleaned up
+TTL seconds after the job has finished, in other words, when the TTL has expired. When the
+TTL-after-finished controller cleans up a job, it will delete it cascadingly, that is to say it will delete
+its dependent objects together with it. Note that when the job is deleted,
 its lifecycle guarantees, such as finalizers, will be honored.
 
 The TTL seconds can be set at any time. Here are some examples for setting the
 `.spec.ttlSecondsAfterFinished` field of a Job:
 
-* Specify this field in the resource manifest, so that a Job can be cleaned up
+* Specify this field in the job manifest, so that a Job can be cleaned up
   automatically some time after it finishes.
-* Set this field of existing, already finished resources, to adopt this new
+* Set this field of existing, already finished jobs, to adopt this new
   feature.
 * Use a
   [mutating admission webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks)
-  to set this field dynamically at resource creation time. Cluster administrators can
-  use this to enforce a TTL policy for finished resources.
+  to set this field dynamically at job creation time. Cluster administrators can
+  use this to enforce a TTL policy for finished jobs.
 * Use a
   [mutating admission webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks)
-  to set this field dynamically after the resource has finished, and choose
-  different TTL values based on resource status, labels, etc.
+  to set this field dynamically after the job has finished, and choose
+  different TTL values based on job status, labels, etc.
 
 ## Caveat
 
 ### Updating TTL Seconds
 
 Note that the TTL period, e.g. `.spec.ttlSecondsAfterFinished` field of Jobs,
-can be modified after the resource is created or has finished. However, once the
+can be modified after the job is created or has finished. However, once the
 Job becomes eligible to be deleted (when the TTL has expired), the system won't
 guarantee that the Jobs will be kept, even if an update to extend the TTL
 returns a successful API response.
 
 ### Time Skew
 
-Because TTL controller uses timestamps stored in the Kubernetes resources to
+Because TTL-after-finished controller uses timestamps stored in the Kubernetes jobs to
 determine whether the TTL has expired or not, this feature is sensitive to time
-skew in the cluster, which may cause TTL controller to clean up resource objects
+skew in the cluster, which may cause TTL-after-finish controller to clean up job objects
 at the wrong time.
 
-In Kubernetes, it's required to run NTP on all nodes
-(see [#6159](https://github.com/kubernetes/kubernetes/issues/6159#issuecomment-93844058))
-to avoid time skew. Clocks aren't always correct, but the difference should be
+Clocks aren't always correct, but the difference should be
 very small. Please be aware of this risk when setting a non-zero TTL.
 
 
diff --git a/content/en/docs/concepts/workloads/pods/_index.md b/content/en/docs/concepts/workloads/pods/_index.md
index 7132d19529..77994f754f 100644
--- a/content/en/docs/concepts/workloads/pods/_index.md
+++ b/content/en/docs/concepts/workloads/pods/_index.md
@@ -48,6 +48,21 @@ with shared namespaces and shared filesystem volumes.
 
 ## Using Pods
 
+The following is an example of a Pod which consists of a container running the image `nginx:1.14.2`.
+
+{{< codenew file="pods/simple-pod.yaml" >}}
+
+To create the Pod shown above, run the following command:
+```shell
+kubectl apply -f https://k8s.io/examples/pods/simple-pod.yaml
+```
+
+Pods are generally not created directly and are created using workload resources.
+See [Working with Pods](#working-with-pods) for more information on how Pods are used
+with workload resources.
+
+### Workload resources for managing pods
+
 Usually you don't need to create Pods directly, even singleton Pods. Instead, create them using workload resources such as {{< glossary_tooltip text="Deployment"
 term_id="deployment" >}} or {{< glossary_tooltip text="Job" term_id="job" >}}.
 If your Pods need to track state, consider the
@@ -97,7 +112,7 @@ For example, you might have a container that
 acts as a web server for files in a shared volume, and a separate "sidecar" container
 that updates those files from a remote source, as in the following diagram:
 
-{{< figure src="/images/docs/pod.svg" alt="example pod diagram" width="50%" >}}
+{{< figure src="/images/docs/pod.svg" alt="Pod creation diagram" class="diagram-medium" >}}
 
 Some Pods have {{< glossary_tooltip text="init containers" term_id="init-container" >}} as well as {{< glossary_tooltip text="app containers" term_id="app-container" >}}. Init containers run and complete before the app containers are started.
 
@@ -165,7 +180,7 @@ spec:
     spec:
       containers:
       - name: hello
-        image: busybox
+        image: busybox:1.28
         command: ['sh', '-c', 'echo "Hello, Kubernetes!" && sleep 3600']
       restartPolicy: OnFailure
     # The pod template ends here
@@ -246,8 +261,7 @@ Within a Pod, containers share an IP address and port space, and
 can find each other via `localhost`. The containers in a Pod can also communicate
 with each other using standard inter-process communications like SystemV semaphores
 or POSIX shared memory.  Containers in different Pods have distinct IP addresses
-and can not communicate by IPC without
-[special configuration](/docs/concepts/policy/pod-security-policy/).
+and can not communicate by OS-level IPC without special configuration.
 Containers that want to interact with a container running in a different Pod can
 use IP networking to communicate.
 
@@ -306,12 +320,12 @@ in the Pod Lifecycle documentation.
 * Learn about the [lifecycle of a Pod](/docs/concepts/workloads/pods/pod-lifecycle/).
 * Learn about [RuntimeClass](/docs/concepts/containers/runtime-class/) and how you can use it to
   configure different Pods with different container runtime configurations.
-* Read about [Pod topology spread constraints](/docs/concepts/workloads/pods/pod-topology-spread-constraints/).
 * Read about [PodDisruptionBudget](/docs/concepts/workloads/pods/disruptions/) and how you can use it to manage application availability during disruptions.
 * Pod is a top-level resource in the Kubernetes REST API.
-  The [Pod](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#pod-v1-core)
+  The {{< api-reference page="workload-resources/pod-v1" >}}
   object definition describes the object in detail.
-* [The Distributed System Toolkit: Patterns for Composite Containers](https://kubernetes.io/blog/2015/06/the-distributed-system-toolkit-patterns) explains common layouts for Pods with more than one container.
+* [The Distributed System Toolkit: Patterns for Composite Containers](/blog/2015/06/the-distributed-system-toolkit-patterns/) explains common layouts for Pods with more than one container.
+* Read about [Pod topology spread constraints](/docs/concepts/scheduling-eviction/topology-spread-constraints/)
 
 To understand the context for why Kubernetes wraps a common Pod API in other resources (such as {{< glossary_tooltip text="StatefulSets" term_id="statefulset" >}} or {{< glossary_tooltip text="Deployments" term_id="deployment" >}}), you can read about the prior art, including:
 
diff --git a/content/en/docs/concepts/workloads/pods/disruptions.md b/content/en/docs/concepts/workloads/pods/disruptions.md
index 430d4b7155..055fc0a65d 100644
--- a/content/en/docs/concepts/workloads/pods/disruptions.md
+++ b/content/en/docs/concepts/workloads/pods/disruptions.md
@@ -128,8 +128,8 @@ The "intended" number of pods is computed from the `.spec.replicas` of the workl
 that is managing those pods. The control plane discovers the owning workload resource by
 examining the `.metadata.ownerReferences` of the Pod.
 
-PDBs cannot prevent [involuntary disruptions](#voluntary-and-involuntary-disruptions) from
-occurring, but they do count against the budget.
+[Involuntary disruptions](#voluntary-and-involuntary-disruptions) cannot be prevented by PDBs; however they
+do count against the budget.
 
 Pods which are deleted or unavailable due to a rolling upgrade to an application do count
 against the disruption budget, but workload resources (such as Deployment and StatefulSet)
diff --git a/content/en/docs/concepts/workloads/pods/downward-api.md b/content/en/docs/concepts/workloads/pods/downward-api.md
new file mode 100644
index 0000000000..fcee383c45
--- /dev/null
+++ b/content/en/docs/concepts/workloads/pods/downward-api.md
@@ -0,0 +1,131 @@
+---
+title: Downward API
+content_type: concept
+description: >
+  There are two ways to expose Pod and container fields to a running container:
+  environment variables, and as files that are populated by a special volume type.
+  Together, these two ways of exposing Pod and container fields are called the downward API.
+---
+
+<!-- overview -->
+
+It is sometimes useful for a container to have information about itself, without
+being overly coupled to Kubernetes. The _downward API_ allows containers to consume
+information about themselves or the cluster without using the Kubernetes client
+or API server.
+
+An example is an existing application that assumes a particular well-known
+environment variable holds a unique identifier. One possibility is to wrap the
+application, but that is tedious and error-prone, and it violates the goal of low
+coupling. A better option would be to use the Pod's name as an identifier, and
+inject the Pod's name into the well-known environment variable.
+
+In Kubernetes, there are two ways to expose Pod and container fields to a running container:
+
+* as [environment variables](/docs/tasks/inject-data-application/environment-variable-expose-pod-information/#the-downward-api)
+* as [files in a `downwardAPI` volume](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/)
+
+Together, these two ways of exposing Pod and container fields are called the
+_downward API_.
+
+<!-- body -->
+
+## Available fields
+
+Only some Kubernetes API fields are available through the downward API. This
+section lists which fields you can make available.
+
+You can pass information from available Pod-level fields using `fieldRef`.
+At the API level, the `spec` for a Pod always defines at least one
+[Container](/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container).
+You can pass information from available Container-level fields using
+`resourceFieldRef`.
+
+### Information available via `fieldRef` {#downwardapi-fieldRef}
+
+For most Pod-level fields, you can provide them to a container either as
+an environment variable or using a `downwardAPI` volume. The fields available
+via either mechanism are:
+
+`metadata.name`
+: the pod's name
+
+`metadata.namespace`
+: the pod's {{< glossary_tooltip text="namespace" term_id="namespace" >}}
+
+`metadata.uid`
+: the pod's unique ID
+
+`metadata.annotations['<KEY>']`
+: the value of the pod's {{< glossary_tooltip text="annotation" term_id="annotation" >}} named `<KEY>` (for example, `metadata.annotations['myannotation']`)
+
+`metadata.labels['<KEY>']`
+: the text value of the pod's {{< glossary_tooltip text="label" term_id="label" >}} named `<KEY>` (for example, `metadata.labels['mylabel']`)
+
+`spec.serviceAccountName`
+: the name of the pod's {{< glossary_tooltip text="service account" term_id="service-account" >}}
+
+`spec.nodeName`
+: the name of the {{< glossary_tooltip term_id="node" text="node">}} where the Pod is executing
+
+`status.hostIP`
+: the primary IP address of the node to which the Pod is assigned
+
+`status.podIP`
+: the pod's primary IP address (usually, its IPv4 address)
+
+In addition, the following information is available through
+a `downwardAPI` volume `fieldRef`, but **not as environment variables**:
+
+`metadata.labels`
+: all of the pod's labels, formatted as `label-key="escaped-label-value"` with one label per line
+
+`metadata.annotations`
+: all of the pod's annotations, formatted as `annotation-key="escaped-annotation-value"` with one annotation per line  
+
+### Information available via `resourceFieldRef` {#downwardapi-resourceFieldRef}
+
+These container-level fields allow you to provide information about
+[requests and limits](/docs/concepts/configuration/manage-resources-containers/#requests-and-limits)
+for resources such as CPU and memory.
+
+
+`resource: limits.cpu`
+: A container's CPU limit
+
+`resource: requests.cpu`
+: A container's CPU request
+
+`resource: limits.memory`
+: A container's memory limit
+
+`resource: requests.memory`
+: A container's memory request
+
+`resource: limits.hugepages-*`
+: A container's hugepages limit (provided that the `DownwardAPIHugePages` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled)
+
+`resource: requests.hugepages-*`
+: A container's hugepages request (provided that the `DownwardAPIHugePages` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled)
+
+`resource: limits.ephemeral-storage`
+: A container's ephemeral-storage limit
+
+`resource: requests.ephemeral-storage`
+: A container's ephemeral-storage request
+
+#### Fallback information for resource limits
+
+If CPU and memory limits are not specified for a container, and you use the
+downward API to try to expose that information, then the
+kubelet defaults to exposing the maximum allocatable value for CPU and memory
+based on the [node allocatable](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)
+calculation.
+
+## {{% heading "whatsnext" %}}
+
+You can read about [`downwardAPI` volumes](/docs/concepts/storage/volumes/#downwardapi).
+
+You can try using the downward API to expose container- or Pod-level information:
+* as [environment variables](/docs/tasks/inject-data-application/environment-variable-expose-pod-information/#the-downward-api)
+* as [files in `downwardAPI` volume](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/)
diff --git a/content/en/docs/concepts/workloads/pods/ephemeral-containers.md b/content/en/docs/concepts/workloads/pods/ephemeral-containers.md
index c26a63b183..0a70fedd6f 100644
--- a/content/en/docs/concepts/workloads/pods/ephemeral-containers.md
+++ b/content/en/docs/concepts/workloads/pods/ephemeral-containers.md
@@ -9,22 +9,13 @@ weight: 80
 
 <!-- overview -->
 
-{{< feature-state state="alpha" for_k8s_version="v1.22" >}}
+{{< feature-state state="beta" for_k8s_version="v1.23" >}}
 
 This page provides an overview of ephemeral containers: a special type of container
 that runs temporarily in an existing {{< glossary_tooltip term_id="pod" >}} to
 accomplish user-initiated actions such as troubleshooting. You use ephemeral
 containers to inspect services rather than to build applications.
 
-{{< warning >}}
-Ephemeral containers are in alpha state and are not suitable for production
-clusters. In accordance with the [Kubernetes Deprecation Policy](
-/docs/reference/using-api/deprecation-policy/), this alpha feature could change
-significantly in the future or be removed entirely.
-{{< /warning >}}
-
-
-
 <!-- body -->
 
 ## Understanding ephemeral containers
@@ -79,5 +70,5 @@ you can view processes in other containers.
 
 ## {{% heading "whatsnext" %}}
 
-* Learn how to [debug pods using ephemeral containers](/docs/tasks/debug-application-cluster/debug-running-pod/#ephemeral-container).
+* Learn how to [debug pods using ephemeral containers](/docs/tasks/debug/debug-application/debug-running-pod/#ephemeral-container).
 
diff --git a/content/en/docs/concepts/workloads/pods/init-containers.md b/content/en/docs/concepts/workloads/pods/init-containers.md
index edf9407845..85c5ec413b 100644
--- a/content/en/docs/concepts/workloads/pods/init-containers.md
+++ b/content/en/docs/concepts/workloads/pods/init-containers.md
@@ -28,7 +28,7 @@ Init containers are exactly like regular containers, except:
 * Init containers always run to completion.
 * Each init container must complete successfully before the next one starts.
 
-If a Pod's init container fails, the kubelet repeatedly restarts that init container until it succeeds. 
+If a Pod's init container fails, the kubelet repeatedly restarts that init container until it succeeds.
 However, if the Pod has a `restartPolicy` of Never, and an init container fails during startup of that Pod, Kubernetes treats the overall Pod as failed.
 
 To specify an init container for a Pod, add the `initContainers` field into
@@ -115,7 +115,7 @@ kind: Pod
 metadata:
   name: myapp-pod
   labels:
-    app: myapp
+    app.kubernetes.io/name: MyApp
 spec:
   containers:
   - name: myapp-container
@@ -159,7 +159,7 @@ The output is similar to this:
 Name:          myapp-pod
 Namespace:     default
 [...]
-Labels:        app=myapp
+Labels:        app.kubernetes.io/name=MyApp
 Status:        Pending
 [...]
 Init Containers:
@@ -282,7 +282,7 @@ define readiness distinct from completion. This is enforced during validation.
 
 Use `activeDeadlineSeconds` on the Pod to prevent init containers from failing forever.
 The active deadline includes init containers.
-However it is recommended to use `activeDeadlineSeconds` if user deploy their application
+However it is recommended to use `activeDeadlineSeconds` only if teams deploy their application
 as a Job, because `activeDeadlineSeconds` has an effect even after initContainer finished.
 The Pod which is already running correctly would be killed by `activeDeadlineSeconds` if you set.
 
@@ -332,5 +332,5 @@ Kubernetes, consult the documentation for the version you are using.
 ## {{% heading "whatsnext" %}}
 
 * Read about [creating a Pod that has an init container](/docs/tasks/configure-pod-container/configure-pod-initialization/#create-a-pod-that-has-an-init-container)
-* Learn how to [debug init containers](/docs/tasks/debug-application-cluster/debug-init-containers/)
+* Learn how to [debug init containers](/docs/tasks/debug/debug-application/debug-init-containers/)
 
diff --git a/content/en/docs/concepts/workloads/pods/pod-lifecycle.md b/content/en/docs/concepts/workloads/pods/pod-lifecycle.md
index 291c8e6af3..596d835d73 100644
--- a/content/en/docs/concepts/workloads/pods/pod-lifecycle.md
+++ b/content/en/docs/concepts/workloads/pods/pod-lifecycle.md
@@ -55,7 +55,7 @@ exists. If that Pod is deleted for any reason, and even if an identical replacem
 is created, the related thing (a volume, in this example) is also destroyed and
 created anew.
 
-{{< figure src="/images/docs/pod.svg" title="Pod diagram" width="50%" >}}
+{{< figure src="/images/docs/pod.svg" title="Pod diagram" class="diagram-medium" >}}
 
 *A multi-container Pod that contains a file puller and a
 web server that uses a persistent volume for shared storage between the containers.*
@@ -136,7 +136,7 @@ completion or failed for some reason. When you use `kubectl` to query a Pod with
 a container that is `Terminated`, you see a reason, an exit code, and the start and
 finish time for that container's period of execution.
 
-If a container has a `preStop` hook configured, that runs before the container enters
+If a container has a `preStop` hook configured, this hook runs before the container enters
 the `Terminated` state.
 
 ## Container restart policy {#restart-policy}
@@ -159,7 +159,7 @@ through which the Pod has or has not passed:
 * `PodScheduled`: the Pod has been scheduled to a node.
 * `ContainersReady`: all containers in the Pod are ready.
 * `Initialized`: all [init containers](/docs/concepts/workloads/pods/init-containers/)
-  have started successfully.
+  have completed successfully.
 * `Ready`: the Pod is able to serve requests and should be added to the load
   balancing pools of all matching Services.
 
@@ -229,61 +229,91 @@ when both the following statements apply:
 * All conditions specified in `readinessGates` are `True`.
 
 When a Pod's containers are Ready but at least one custom condition is missing or
-`False`, the kubelet sets the Pod's [condition](#pod-condition) to `ContainersReady`.
+`False`, the kubelet sets the Pod's [condition](#pod-conditions) to `ContainersReady`.
 
 ## Container probes
 
-A [Probe](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#probe-v1-core) is a diagnostic
+A _probe_ is a diagnostic
 performed periodically by the
 [kubelet](/docs/reference/command-line-tools-reference/kubelet/)
-on a Container. To perform a diagnostic,
-the kubelet calls a
-[Handler](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#handler-v1-core) implemented by
-the container. There are three types of handlers:
+on a container. To perform a diagnostic,
+the kubelet either executes code within the container, or makes
+a network request.
 
-* [ExecAction](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#execaction-v1-core):
-  Executes a specified command inside the container. The diagnostic
+### Check mechanisms {#probe-check-methods}
+
+There are four different ways to check a container using a probe.
+Each probe must define exactly one of these four mechanisms:
+
+`exec`
+: Executes a specified command inside the container. The diagnostic
   is considered successful if the command exits with a status code of 0.
 
-* [TCPSocketAction](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#tcpsocketaction-v1-core):
-  Performs a TCP check against the Pod's IP address on
-  a specified port. The diagnostic is considered successful if the port is open.
+`grpc`
+: Performs a remote procedure call using [gRPC](https://grpc.io/).
+  The target should implement
+  [gRPC health checks](https://grpc.io/grpc/core/md_doc_health-checking.html).
+  The diagnostic is considered successful if the `status`
+  of the response is `SERVING`.  
+  gRPC probes are an alpha feature and are only available if you
+  enable the `GRPCContainerProbe`
+  [feature gate](/docs/reference/command-line-tools-reference/feature-gates/).
 
-* [HTTPGetAction](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#httpgetaction-v1-core):
-  Performs an HTTP `GET` request against the Pod's IP
-  address on a specified port and path. The diagnostic is considered successful
-  if the response has a status code greater than or equal to 200 and less than 400.
+`httpGet`
+: Performs an HTTP `GET` request against the Pod's IP
+  address on a specified port and path. The diagnostic is
+  considered successful if the response has a status code
+  greater than or equal to 200 and less than 400.
+
+`tcpSocket`
+: Performs a TCP check against the Pod's IP address on
+  a specified port. The diagnostic is considered successful if
+  the port is open. If the remote system (the container) closes
+  the connection immediately after it opens, this counts as healthy.
+
+### Probe outcome
 
 Each probe has one of three results:
 
-* `Success`: The container passed the diagnostic.
-* `Failure`: The container failed the diagnostic.
-* `Unknown`: The diagnostic failed, so no action should be taken.
+`Success`
+: The container passed the diagnostic.
+
+`Failure`
+: The container failed the diagnostic.
+
+`Unknown`
+: The diagnostic failed (no action should be taken, and the kubelet
+  will make further checks).
+
+### Types of probe
 
 The kubelet can optionally perform and react to three kinds of probes on running
 containers:
 
-* `livenessProbe`: Indicates whether the container is running. If
-   the liveness probe fails, the kubelet kills the container, and the container
-   is subjected to its [restart policy](#restart-policy). If a Container does not
-   provide a liveness probe, the default state is `Success`.
+`livenessProbe`
+: Indicates whether the container is running. If
+  the liveness probe fails, the kubelet kills the container, and the container
+  is subjected to its [restart policy](#restart-policy). If a container does not
+  provide a liveness probe, the default state is `Success`.
 
-* `readinessProbe`: Indicates whether the container is ready to respond to requests.
-   If the readiness probe fails, the endpoints controller removes the Pod's IP
-   address from the endpoints of all Services that match the Pod. The default
-   state of readiness before the initial delay is `Failure`. If a Container does
-   not provide a readiness probe, the default state is `Success`.
+`readinessProbe`
+: Indicates whether the container is ready to respond to requests.
+  If the readiness probe fails, the endpoints controller removes the Pod's IP
+  address from the endpoints of all Services that match the Pod. The default
+  state of readiness before the initial delay is `Failure`. If a container does
+  not provide a readiness probe, the default state is `Success`.
 
-* `startupProbe`: Indicates whether the application within the container is started.
-   All other probes are disabled if a startup probe is provided, until it succeeds.
-   If the startup probe fails, the kubelet kills the container, and the container
-   is subjected to its [restart policy](#restart-policy). If a Container does not
-   provide a startup probe, the default state is `Success`.
+`startupProbe`
+: Indicates whether the application within the container is started.
+  All other probes are disabled if a startup probe is provided, until it succeeds.
+  If the startup probe fails, the kubelet kills the container, and the container
+ is subjected to its [restart policy](#restart-policy). If a container does not
+  provide a startup probe, the default state is `Success`.
 
 For more information about how to set up a liveness, readiness, or startup probe,
 see [Configure Liveness, Readiness and Startup Probes](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/).
 
-### When should you use a liveness probe?
+#### When should you use a liveness probe?
 
 {{< feature-state for_k8s_version="v1.0" state="stable" >}}
 
@@ -295,7 +325,7 @@ with the Pod's `restartPolicy`.
 If you'd like your container to be killed and restarted if a probe fails, then
 specify a liveness probe, and specify a `restartPolicy` of Always or OnFailure.
 
-### When should you use a readiness probe?
+#### When should you use a readiness probe?
 
 {{< feature-state for_k8s_version="v1.0" state="stable" >}}
 
@@ -329,7 +359,7 @@ The Pod remains in the unready state while it waits for the containers in the Po
 to stop.
 {{< /note >}}
 
-### When should you use a startup probe?
+#### When should you use a startup probe?
 
 {{< feature-state for_k8s_version="v1.20" state="stable" >}}
 
@@ -451,13 +481,13 @@ This avoids a resource leak as Pods are created and terminated over time.
 ## {{% heading "whatsnext" %}}
 
 * Get hands-on experience
-  [attaching handlers to Container lifecycle events](/docs/tasks/configure-pod-container/attach-handler-lifecycle-event/).
+  [attaching handlers to container lifecycle events](/docs/tasks/configure-pod-container/attach-handler-lifecycle-event/).
 
 * Get hands-on experience
   [configuring Liveness, Readiness and Startup Probes](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/).
 
 * Learn more about [container lifecycle hooks](/docs/concepts/containers/container-lifecycle-hooks/).
 
-* For detailed information about Pod / Container status in the API, see [PodStatus](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podstatus-v1-core)
-and
-[ContainerStatus](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#containerstatus-v1-core).
+* For detailed information about Pod and container status in the API, see
+  the API reference documentation covering
+  [`.status`](/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodStatus) for Pod.
diff --git a/content/en/docs/concepts/workloads/pods/pod-topology-spread-constraints.md b/content/en/docs/concepts/workloads/pods/pod-topology-spread-constraints.md
deleted file mode 100644
index 719fcee457..0000000000
--- a/content/en/docs/concepts/workloads/pods/pod-topology-spread-constraints.md
+++ /dev/null
@@ -1,402 +0,0 @@
----
-title: Pod Topology Spread Constraints
-content_type: concept
-weight: 40
----
-
-{{< feature-state for_k8s_version="v1.19" state="stable" >}}
-<!-- leave this shortcode in place until the note about EvenPodsSpread is
-obsolete -->
-
-<!-- overview -->
-
-You can use _topology spread constraints_ to control how {{< glossary_tooltip text="Pods" term_id="Pod" >}} are spread across your cluster among failure-domains such as regions, zones, nodes, and other user-defined topology domains. This can help to achieve high availability as well as efficient resource utilization.
-
-{{< note >}}
-In versions of Kubernetes before v1.18, you must enable the `EvenPodsSpread`
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/) on
-the [API server](/docs/concepts/overview/components/#kube-apiserver) and the
-[scheduler](/docs/reference/command-line-tools-reference/kube-scheduler/) in order to use Pod
-topology spread constraints.
-{{< /note >}}
-
-<!-- body -->
-
-## Prerequisites
-
-### Node Labels
-
-Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in. For example, a Node might have labels: `node=node1,zone=us-east-1a,region=us-east-1`
-
-Suppose you have a 4-node cluster with the following labels:
-
-```
-NAME    STATUS   ROLES    AGE     VERSION   LABELS
-node1   Ready    <none>   4m26s   v1.16.0   node=node1,zone=zoneA
-node2   Ready    <none>   3m58s   v1.16.0   node=node2,zone=zoneA
-node3   Ready    <none>   3m17s   v1.16.0   node=node3,zone=zoneB
-node4   Ready    <none>   2m43s   v1.16.0   node=node4,zone=zoneB
-```
-
-Then the cluster is logically viewed as below:
-
-{{<mermaid>}}
-graph TB
-    subgraph "zoneB"
-        n3(Node3)
-        n4(Node4)
-    end
-    subgraph "zoneA"
-        n1(Node1)
-        n2(Node2)
-    end
-
-    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-    class n1,n2,n3,n4 k8s;
-    class zoneA,zoneB cluster;
-{{< /mermaid >}}
-
-Instead of manually applying labels, you can also reuse the [well-known labels](/docs/reference/labels-annotations-taints/) that are created and populated automatically on most clusters.
-
-## Spread Constraints for Pods
-
-### API
-
-The API field `pod.spec.topologySpreadConstraints` is defined as below:
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: mypod
-spec:
-  topologySpreadConstraints:
-    - maxSkew: <integer>
-      topologyKey: <string>
-      whenUnsatisfiable: <string>
-      labelSelector: <object>
-```
-
-You can define one or multiple `topologySpreadConstraint` to instruct the kube-scheduler how to place each incoming Pod in relation to the existing Pods across your cluster. The fields are:
-
-- **maxSkew** describes the degree to which Pods may be unevenly distributed.
-  It must be greater than zero. Its semantics differs according to the value of `whenUnsatisfiable`:
-  - when `whenUnsatisfiable` equals to "DoNotSchedule", `maxSkew` is the maximum
-    permitted difference between the number of matching pods in the target
-    topology and the global minimum 
-    (the minimum number of pods that match the label selector in a topology domain. For example, if you have 3 zones with 0, 2 and 3 matching pods respectively, The global minimum is 0).
-  - when `whenUnsatisfiable` equals to "ScheduleAnyway", scheduler gives higher
-    precedence to topologies that would help reduce the skew.
-- **topologyKey** is the key of node labels. If two Nodes are labelled with this key and have identical values for that label, the scheduler treats both Nodes as being in the same topology. The scheduler tries to place a balanced number of Pods into each topology domain.
-- **whenUnsatisfiable** indicates how to deal with a Pod if it doesn't satisfy the spread constraint:
-  - `DoNotSchedule` (default) tells the scheduler not to schedule it.
-  - `ScheduleAnyway` tells the scheduler to still schedule it while prioritizing nodes that minimize the skew.
-- **labelSelector** is used to find matching Pods. Pods that match this label selector are counted to determine the number of Pods in their corresponding topology domain. See [Label Selectors](/docs/concepts/overview/working-with-objects/labels/#label-selectors) for more details.
-
-When a Pod defines more than one `topologySpreadConstraint`, those constraints are ANDed: The kube-scheduler looks for a node for the incoming Pod that satisfies all the constraints.
-
-You can read more about this field by running `kubectl explain Pod.spec.topologySpreadConstraints`.
-
-### Example: One TopologySpreadConstraint
-
-Suppose you have a 4-node cluster where 3 Pods labeled `foo:bar` are located in node1, node2 and node3 respectively:
-
-{{<mermaid>}}
-graph BT
-    subgraph "zoneB"
-        p3(Pod) --> n3(Node3)
-        n4(Node4)
-    end
-    subgraph "zoneA"
-        p1(Pod) --> n1(Node1)
-        p2(Pod) --> n2(Node2)
-    end
-
-    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-    class n1,n2,n3,n4,p1,p2,p3 k8s;
-    class zoneA,zoneB cluster;
-{{< /mermaid >}}
-
-If we want an incoming Pod to be evenly spread with existing Pods across zones, the spec can be given as:
-
-{{< codenew file="pods/topology-spread-constraints/one-constraint.yaml" >}}
-
-`topologyKey: zone` implies the even distribution will only be applied to the nodes which have label pair "zone:&lt;any value&gt;" present. `whenUnsatisfiable: DoNotSchedule` tells the scheduler to let it stay pending if the incoming Pod can't satisfy the constraint.
-
-If the scheduler placed this incoming Pod into "zoneA", the Pods distribution would become [3, 1], hence the actual skew is 2 (3 - 1) - which violates `maxSkew: 1`. In this example, the incoming Pod can only be placed onto "zoneB":
-
-{{<mermaid>}}
-graph BT
-    subgraph "zoneB"
-        p3(Pod) --> n3(Node3)
-        p4(mypod) --> n4(Node4)
-    end
-    subgraph "zoneA"
-        p1(Pod) --> n1(Node1)
-        p2(Pod) --> n2(Node2)
-    end
-
-    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-    class n1,n2,n3,n4,p1,p2,p3 k8s;
-    class p4 plain;
-    class zoneA,zoneB cluster;
-{{< /mermaid >}}
-
-OR
-
-{{<mermaid>}}
-graph BT
-    subgraph "zoneB"
-        p3(Pod) --> n3(Node3)
-        p4(mypod) --> n3
-        n4(Node4)
-    end
-    subgraph "zoneA"
-        p1(Pod) --> n1(Node1)
-        p2(Pod) --> n2(Node2)
-    end
-
-    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-    class n1,n2,n3,n4,p1,p2,p3 k8s;
-    class p4 plain;
-    class zoneA,zoneB cluster;
-{{< /mermaid >}}
-
-You can tweak the Pod spec to meet various kinds of requirements:
-
-- Change `maxSkew` to a bigger value like "2" so that the incoming Pod can be placed onto "zoneA" as well.
-- Change `topologyKey` to "node" so as to distribute the Pods evenly across nodes instead of zones. In the above example, if `maxSkew` remains "1", the incoming Pod can only be placed onto "node4".
-- Change `whenUnsatisfiable: DoNotSchedule` to `whenUnsatisfiable: ScheduleAnyway` to ensure the incoming Pod to be always schedulable (suppose other scheduling APIs are satisfied). However, it's preferred to be placed onto the topology domain which has fewer matching Pods. (Be aware that this preferability is jointly normalized with other internal scheduling priorities like resource usage ratio, etc.)
-
-### Example: Multiple TopologySpreadConstraints
-
-This builds upon the previous example. Suppose you have a 4-node cluster where 3 Pods labeled `foo:bar` are located in node1, node2 and node3 respectively:
-
-{{<mermaid>}}
-graph BT
-    subgraph "zoneB"
-        p3(Pod) --> n3(Node3)
-        n4(Node4)
-    end
-    subgraph "zoneA"
-        p1(Pod) --> n1(Node1)
-        p2(Pod) --> n2(Node2)
-    end
-
-    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-    class n1,n2,n3,n4,p1,p2,p3 k8s;
-    class p4 plain;
-    class zoneA,zoneB cluster;
-{{< /mermaid >}}
-
-You can use 2 TopologySpreadConstraints to control the Pods spreading on both zone and node:
-
-{{< codenew file="pods/topology-spread-constraints/two-constraints.yaml" >}}
-
-In this case, to match the first constraint, the incoming Pod can only be placed onto "zoneB"; while in terms of the second constraint, the incoming Pod can only be placed onto "node4". Then the results of 2 constraints are ANDed, so the only viable option is to place on "node4".
-
-Multiple constraints can lead to conflicts. Suppose you have a 3-node cluster across 2 zones:
-
-{{<mermaid>}}
-graph BT
-    subgraph "zoneB"
-        p4(Pod) --> n3(Node3)
-        p5(Pod) --> n3
-    end
-    subgraph "zoneA"
-        p1(Pod) --> n1(Node1)
-        p2(Pod) --> n1
-        p3(Pod) --> n2(Node2)
-    end
-
-    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-    class n1,n2,n3,n4,p1,p2,p3,p4,p5 k8s;
-    class zoneA,zoneB cluster;
-{{< /mermaid >}}
-
-If you apply "two-constraints.yaml" to this cluster, you will notice "mypod" stays in `Pending` state. This is because: to satisfy the first constraint, "mypod" can only be put to "zoneB"; while in terms of the second constraint, "mypod" can only put to "node2". Then a joint result of "zoneB" and "node2" returns nothing.
-
-To overcome this situation, you can either increase the `maxSkew` or modify one of the constraints to use `whenUnsatisfiable: ScheduleAnyway`.
-
-### Interaction With Node Affinity and Node Selectors
-
-The scheduler will skip the non-matching nodes from the skew calculations if the incoming Pod has `spec.nodeSelector` or `spec.affinity.nodeAffinity` defined.
-
-    Suppose you have a 5-node cluster ranging from zoneA to zoneC:
-
-    {{<mermaid>}}
-    graph BT
-        subgraph "zoneB"
-            p3(Pod) --> n3(Node3)
-            n4(Node4)
-        end
-        subgraph "zoneA"
-            p1(Pod) --> n1(Node1)
-            p2(Pod) --> n2(Node2)
-        end
-
-    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-    class n1,n2,n3,n4,p1,p2,p3 k8s;
-    class p4 plain;
-    class zoneA,zoneB cluster;
-    {{< /mermaid >}}
-
-    {{<mermaid>}}
-    graph BT
-        subgraph "zoneC"
-            n5(Node5)
-        end
-
-    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-    class n5 k8s;
-    class zoneC cluster;
-    {{< /mermaid >}}
-
-    and you know that "zoneC" must be excluded. In this case, you can compose the yaml as below, so that "mypod" will be placed onto "zoneB" instead of "zoneC". Similarly `spec.nodeSelector` is also respected.
-
-    {{< codenew file="pods/topology-spread-constraints/one-constraint-with-nodeaffinity.yaml" >}}
-
-The scheduler doesn't have prior knowledge of all the zones or other topology domains that a cluster has. They are determined from the existing nodes in the cluster. This could lead to a problem in autoscaled clusters, when a node pool (or node group) is scaled to zero nodes and the user is expecting them to scale up, because, in this case, those topology domains won't be considered until there is at least one node in them.
-
-### Other Noticeable Semantics
-
-There are some implicit conventions worth noting here:
-
-- Only the Pods holding the same namespace as the incoming Pod can be matching candidates.
-
-- The scheduler will bypass the nodes without `topologySpreadConstraints[*].topologyKey` present. This implies that:
-
-  1. the Pods located on those nodes do not impact `maxSkew` calculation - in the above example, suppose "node1" does not have label "zone", then the 2 Pods will be disregarded, hence the incoming Pod will be scheduled into "zoneA".
-  2. the incoming Pod has no chances to be scheduled onto this kind of nodes - in the above example, suppose a "node5" carrying label `{zone-typo: zoneC}` joins the cluster, it will be bypassed due to the absence of label key "zone".
-
-- Be aware of what will happen if the incomingPod's `topologySpreadConstraints[*].labelSelector` doesn't match its own labels. In the above example, if we remove the incoming Pod's labels, it can still be placed onto "zoneB" since the constraints are still satisfied. However, after the placement, the degree of imbalance of the cluster remains unchanged - it's still zoneA having 2 Pods which hold label {foo:bar}, and zoneB having 1 Pod which holds label {foo:bar}. So if this is not what you expect, we recommend the workload's `topologySpreadConstraints[*].labelSelector` to match its own labels.
-
-### Cluster-level default constraints
-
-It is possible to set default topology spread constraints for a cluster. Default
-topology spread constraints are applied to a Pod if, and only if:
-
-- It doesn't define any constraints in its `.spec.topologySpreadConstraints`.
-- It belongs to a service, replication controller, replica set or stateful set.
-
-Default constraints can be set as part of the `PodTopologySpread` plugin args
-in a [scheduling profile](/docs/reference/scheduling/config/#profiles).
-The constraints are specified with the same [API above](#api), except that
-`labelSelector` must be empty. The selectors are calculated from the services,
-replication controllers, replica sets or stateful sets that the Pod belongs to.
-
-An example configuration might look like follows:
-
-```yaml
-apiVersion: kubescheduler.config.k8s.io/v1beta1
-kind: KubeSchedulerConfiguration
-
-profiles:
-  - pluginConfig:
-      - name: PodTopologySpread
-        args:
-          defaultConstraints:
-            - maxSkew: 1
-              topologyKey: topology.kubernetes.io/zone
-              whenUnsatisfiable: ScheduleAnyway
-          defaultingType: List
-```
-
-{{< note >}}
-The score produced by default scheduling constraints might conflict with the
-score produced by the
-[`SelectorSpread` plugin](/docs/reference/scheduling/config/#scheduling-plugins).
-It is recommended that you disable this plugin in the scheduling profile when
-using default constraints for `PodTopologySpread`.
-{{< /note >}}
-
-#### Internal default constraints
-
-{{< feature-state for_k8s_version="v1.20" state="beta" >}}
-
-With the `DefaultPodTopologySpread` feature gate, enabled by default, the
-legacy `SelectorSpread` plugin is disabled.
-kube-scheduler uses the following default topology constraints for the
-`PodTopologySpread` plugin configuration:
-
-```yaml
-defaultConstraints:
-  - maxSkew: 3
-    topologyKey: "kubernetes.io/hostname"
-    whenUnsatisfiable: ScheduleAnyway
-  - maxSkew: 5
-    topologyKey: "topology.kubernetes.io/zone"
-    whenUnsatisfiable: ScheduleAnyway
-```
-
-Also, the legacy `SelectorSpread` plugin, which provides an equivalent behavior,
-is disabled.
-
-{{< note >}}
-If your nodes are not expected to have **both** `kubernetes.io/hostname` and
-`topology.kubernetes.io/zone` labels set, define your own constraints
-instead of using the Kubernetes defaults.
-
-The `PodTopologySpread` plugin does not score the nodes that don't have
-the topology keys specified in the spreading constraints.
-{{< /note >}}
-
-If you don't want to use the default Pod spreading constraints for your cluster,
-you can disable those defaults by setting `defaultingType` to `List` and leaving
-empty `defaultConstraints` in the `PodTopologySpread` plugin configuration:
-
-```yaml
-apiVersion: kubescheduler.config.k8s.io/v1beta1
-kind: KubeSchedulerConfiguration
-
-profiles:
-  - pluginConfig:
-      - name: PodTopologySpread
-        args:
-          defaultConstraints: []
-          defaultingType: List
-```
-
-## Comparison with PodAffinity/PodAntiAffinity
-
-In Kubernetes, directives related to "Affinity" control how Pods are
-scheduled - more packed or more scattered.
-
-- For `PodAffinity`, you can try to pack any number of Pods into qualifying
-  topology domain(s)
-- For `PodAntiAffinity`, only one Pod can be scheduled into a
-  single topology domain.
-
-For finer control, you can specify topology spread constraints to distribute
-Pods across different topology domains - to achieve either high availability or
-cost-saving. This can also help on rolling update workloads and scaling out
-replicas smoothly. See
-[Motivation](https://github.com/kubernetes/enhancements/tree/master/keps/sig-scheduling/895-pod-topology-spread#motivation)
-for more details.
-
-## Known Limitations
-
-- There's no guarantee that the constraints remain satisfied when Pods are removed. For example, scaling down a Deployment may result in imbalanced Pods distribution. 
-You can use [Descheduler](https://github.com/kubernetes-sigs/descheduler) to rebalance the Pods distribution.
-- Pods matched on tainted nodes are respected. See [Issue 80921](https://github.com/kubernetes/kubernetes/issues/80921)
-
-## {{% heading "whatsnext" %}}
-
-- [Blog: Introducing PodTopologySpread](https://kubernetes.io/blog/2020/05/introducing-podtopologyspread/)
-  explains `maxSkew` in details, as well as bringing up some advanced usage examples.
diff --git a/content/en/docs/contribute/_index.md b/content/en/docs/contribute/_index.md
index 1db65ec56d..b4c7d838fa 100644
--- a/content/en/docs/contribute/_index.md
+++ b/content/en/docs/contribute/_index.md
@@ -18,8 +18,15 @@ card:
 {{< note >}}
 To learn more about contributing to Kubernetes in general, see the
 [contributor documentation](https://www.kubernetes.dev/docs/).
+
+You can also read the
+{{< glossary_tooltip text="CNCF" term_id="cncf" >}}
+[page](https://contribute.cncf.io/contributors/projects/#kubernetes)
+about contributing to Kubernetes.
 {{< /note >}}
 
+---
+
 This website is maintained by [Kubernetes SIG Docs](/docs/contribute/#get-involved-with-sig-docs).
 
 Kubernetes documentation contributors:
@@ -29,6 +36,8 @@ Kubernetes documentation contributors:
 - Translate the documentation
 - Manage and publish the documentation parts of the Kubernetes release cycle
 
+
+
 <!-- body -->
 
 ## Getting started
@@ -44,19 +53,99 @@ to work effectively in the Kubernetes community.
 To get involved with documentation:
 
 1. Sign the CNCF [Contributor License Agreement](https://github.com/kubernetes/community/blob/master/CLA.md).
-1. Familiarize yourself with the [documentation repository](https://github.com/kubernetes/website)
+2. Familiarize yourself with the [documentation repository](https://github.com/kubernetes/website)
    and the website's [static site generator](https://gohugo.io).
-1. Make sure you understand the basic processes for
+3. Make sure you understand the basic processes for
    [opening a pull request](/docs/contribute/new-content/open-a-pr/) and
    [reviewing changes](/docs/contribute/review/reviewing-prs/).
 
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
+
+{{< mermaid >}}
+flowchart TB
+subgraph third[Open PR]
+direction TB
+U[ ] -.-
+Q[Improve content] --- N[Create content]
+N --- O[Translate docs]
+O --- P[Manage/publish docs parts<br>of K8s release cycle]
+
+end
+
+subgraph second[Review]
+direction TB
+   T[ ] -.-
+   D[Look over the<br>K8s/website<br>repository] --- E[Check out the<br>Hugo static site<br>generator]
+   E --- F[Understand basic<br>GitHub commands]
+   F --- G[Review open PR<br>and change review <br>processes]
+end
+
+subgraph first[Sign up]
+    direction TB
+    S[ ] -.-
+    B[Sign the CNCF<br>Contributor<br>License Agreement] --- C[Join sig-docs<br>Slack channel] 
+    C --- V[Join kubernetes-sig-docs<br>mailing list]
+    V --- M[Attend weekly<br>sig-docs calls<br>or slack meetings]
+end
+
+A([fa:fa-user New<br>Contributor]) --> first
+A --> second
+A --> third
+A --> H[Ask Questions!!!]
+
+
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class A,B,C,D,E,F,G,H,M,Q,N,O,P,V grey
+class S,T,U spacewhite
+class first,second,third white
+{{</ mermaid >}}
+Figure 1. Getting started for a new contributor.
+
+Figure 1 outlines a roadmap for new contributors. You can follow some or all of the steps for `Sign up` and `Review`. Now you are ready to open PRs that achieve your contribution objectives with some listed under `Open PR`. Again, questions are always welcome!
+
 Some tasks require more trust and more access in the Kubernetes organization.
 See [Participating in SIG Docs](/docs/contribute/participate/) for more details about
 roles and permissions.
 
 ## Your first contribution
 
-- Read the [Contribution overview](/docs/contribute/new-content/overview/) to
+You can prepare for your first contribution by reviewing several steps beforehand. Figure 2 outlines the steps and the details follow. 
+
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
+
+{{< mermaid >}}
+flowchart LR
+    subgraph second[First Contribution]
+    direction TB
+    S[ ] -.-
+    G[Review PRs from other<br>K8s members] -->
+    A[Check K8s/website<br>issues list for<br>good first PRs] --> B[Open a PR!!]
+    end
+    subgraph first[Suggested Prep]
+    direction TB
+       T[ ] -.-
+       D[Read contribution overview] -->E[Read K8s content<br>and style guides]
+       E --> F[Learn about Hugo page<br>content types<br>and shortcodes]
+    end
+    
+
+    first ----> second
+     
+
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class A,B,D,E,F,G grey
+class S,T spacewhite
+class first,second white
+{{</ mermaid >}}
+Figure 2. Preparation for your first contribution.
+
+- Read the [Contribution overview](/docs/contribute/new-content/) to
   learn about the different ways you can contribute.
 - Check [`kubernetes/website` issues list](https://github.com/kubernetes/website/issues/)
   for issues that make good entry points.
@@ -92,10 +181,13 @@ SIG Docs communicates with different methods:
   introduce yourself!
 - [Join the `kubernetes-sig-docs` mailing list](https://groups.google.com/forum/#!forum/kubernetes-sig-docs),
   where broader discussions take place and official decisions are recorded.
-- Join the [weekly SIG Docs video meeting](https://github.com/kubernetes/community/tree/master/sig-docs). Meetings are always announced on `#sig-docs` and added to the [Kubernetes community meetings calendar](https://calendar.google.com/calendar/embed?src=cgnt364vd8s86hr2phapfjc6uk%40group.calendar.google.com&ctz=America/Los_Angeles). You'll need to download the [Zoom client](https://zoom.us/download) or dial in using a phone.
+- Join the [SIG Docs video meeting](https://github.com/kubernetes/community/tree/master/sig-docs) held every two weeks. Meetings are always announced on `#sig-docs` and added to the [Kubernetes community meetings calendar](https://calendar.google.com/calendar/embed?src=cgnt364vd8s86hr2phapfjc6uk%40group.calendar.google.com&ctz=America/Los_Angeles). You'll need to download the [Zoom client](https://zoom.us/download) or dial in using a phone.
+- Join the SIG Docs async Slack standup meeting on those weeks when the in-person Zoom video meeting does not take place. Meetings are always announced on `#sig-docs`. You can contribute to any one of the threads up to 24 hours after meeting announcement. 
 
 ## Other ways to contribute
 
 - Visit the [Kubernetes community site](/community/). Participate on Twitter or Stack Overflow, learn about local Kubernetes meetups and events, and more.
-- Read the [contributor cheatsheet](https://github.com/kubernetes/community/tree/master/contributors/guide/contributor-cheatsheet) to get involved with Kubernetes feature development.
+- Read the [contributor cheatsheet](https://www.kubernetes.dev/docs/contributor-cheatsheet/) to get involved with Kubernetes feature development.
+- Visit the contributor site to learn more about [Kubernetes Contributors](https://www.kubernetes.dev/) and [additional contributor resources](https://www.kubernetes.dev/resources/).
 - Submit a [blog post or case study](/docs/contribute/new-content/blogs-case-studies/).
+
diff --git a/content/en/docs/contribute/advanced.md b/content/en/docs/contribute/advanced.md
index 2bddacbc3f..b825ad5e2c 100644
--- a/content/en/docs/contribute/advanced.md
+++ b/content/en/docs/contribute/advanced.md
@@ -8,7 +8,7 @@ weight: 98
 <!-- overview -->
 
 This page assumes that you understand how to
-[contribute to new content](/docs/contribute/new-content/overview) and
+[contribute to new content](/docs/contribute/new-content/) and
 [review others' work](/docs/contribute/review/reviewing-prs/), and are ready
 to learn about more ways to contribute. You need to use the Git command line
 client and other tools for some of these tasks.
@@ -27,7 +27,7 @@ the documentation, the website style, the processes for reviewing and merging
 pull requests, or other aspects of the documentation. For maximum transparency,
 these types of proposals need to be discussed in a SIG Docs meeting or on the
 [kubernetes-sig-docs mailing list](https://groups.google.com/forum/#!forum/kubernetes-sig-docs).
-In addition, it can really help to have some context about the way things
+In addition, it can help to have some context about the way things
 currently work and why past decisions have been made before proposing sweeping
 changes. The quickest way to get answers to questions about how the documentation
 currently works is to ask in the `#sig-docs` Slack channel on
@@ -54,7 +54,7 @@ refer to
 The SIG Docs representative for a given release coordinates the following tasks:
 
 - Monitor the feature-tracking spreadsheet for new or changed features with an
-  impact on documentation. If documentation for a given feature won't be ready
+  impact on documentation. If the documentation for a given feature won't be ready
   for the release, the feature may not be allowed to go into the release.
 - Attend sig-release meetings regularly and give updates on the status of the
   docs for the release.
@@ -82,12 +82,13 @@ few PR submissions.
 Responsibilities for New Contributor Ambassadors include:
 
 - Monitoring the [#sig-docs Slack channel](https://kubernetes.slack.com) for questions from new contributors.
-- Working with PR wranglers to identify good first issues for new contributors.
+- Working with PR wranglers to identify [good first issues](https://kubernetes.dev/docs/guide/help-wanted/#good-first-issue) for new contributors.
 - Mentoring new contributors through their first few PRs to the docs repo.
 - Helping new contributors create the more complex PRs they need to become Kubernetes members.
 - [Sponsoring contributors](/docs/contribute/advanced/#sponsor-a-new-contributor) on their path to becoming Kubernetes members.
+- Hosting a monthly meeting to help and mentor new contributors.
 
-Current New Contributor Ambassadors are announced at each SIG-Docs meeting, and in the [Kubernetes #sig-docs channel](https://kubernetes.slack.com).
+Current New Contributor Ambassadors are announced at each SIG-Docs meeting and in the [Kubernetes #sig-docs channel](https://kubernetes.slack.com).
 
 ## Sponsor a new contributor
 
@@ -110,22 +111,22 @@ membership in the Kubernetes organization.
 
 ## Serve as a SIG Co-chair
 
-SIG Docs [approvers](/docs/contribute/participate/roles-and-responsibilities/#approvers)
+SIG Docs [members](/docs/contribute/participate/roles-and-responsibilities/#members)
 can serve a term as a co-chair of SIG Docs.
 
 ### Prerequisites
 
-Approvers must meet the following requirements to be a co-chair:
+A Kubernetes member must meet the following requirements to be a co-chair:
 
-- Have been a SIG Docs approver for at least 6 months
-- Have [led a Kubernetes docs release](/docs/contribute/advanced/#coordinate-docs-for-a-kubernetes-release) or shadowed two releases
 - Understand SIG Docs workflows and tooling: git, Hugo, localization, blog subproject
 - Understand how other Kubernetes SIGs and repositories affect the SIG Docs
   workflow, including:
-  [teams in k/org](https://github.com/kubernetes/org/blob/master/config/kubernetes/sig-docs/teams.yaml),
+  [teams in k/org](https://github.com/kubernetes/org/blob/master/config/kubernetes/sig-docs/teams.yaml), the
   [process in k/community](https://github.com/kubernetes/community/tree/master/sig-docs),
   plugins in [k/test-infra](https://github.com/kubernetes/test-infra/), and the role of
   [SIG Architecture](https://github.com/kubernetes/community/tree/master/sig-architecture).
+  In addition, understand how the [Kubernetes docs release process](/docs/contribute/advanced/#coordinate-docs-for-a-kubernetes-release) works.
+- Approved by the SIG Docs community either directly or via lazy consensus.
 - Commit at least 5 hours per week (and often more) to the role for a minimum of 6 months
 
 ### Responsibilities
@@ -135,7 +136,7 @@ The role of co-chair is one of service: co-chairs build contributor capacity, ha
 Responsibilities include:
 
 - Keep SIG Docs focused on maximizing developer happiness through excellent documentation
-- Exemplify the [community code of conduct](https://github.com/cncf/foundation/blob/master/code-of-conduct.md) and hold SIG members accountable to it
+- Exemplify the [community code of conduct](https://github.com/cncf/foundation/blob/main/code-of-conduct.md) and hold SIG members accountable to it
 - Learn and set best practices for the SIG by updating contribution guidelines
 - Schedule and run SIG meetings: weekly status updates, quarterly retro/planning sessions, and others as needed
 - Schedule and run doc sprints at KubeCon events and other conferences
@@ -146,7 +147,7 @@ Responsibilities include:
 
 To schedule and run effective meetings, these guidelines show what to do, how to do it, and why.
 
-**Uphold the [community code of conduct](https://github.com/cncf/foundation/blob/master/code-of-conduct.md)**:
+**Uphold the [community code of conduct](https://github.com/cncf/foundation/blob/main/code-of-conduct.md)**:
 
 - Hold respectful, inclusive discussions with respectful, inclusive language.
 
diff --git a/content/en/docs/contribute/generate-ref-docs/contribute-upstream.md b/content/en/docs/contribute/generate-ref-docs/contribute-upstream.md
index 4abf2de68b..ffce805718 100644
--- a/content/en/docs/contribute/generate-ref-docs/contribute-upstream.md
+++ b/content/en/docs/contribute/generate-ref-docs/contribute-upstream.md
@@ -27,6 +27,8 @@ API or the `kube-*` components from the upstream code, see the following instruc
   - [Golang](https://golang.org/doc/install) version 1.13+
   - [Docker](https://docs.docker.com/engine/installation/)
   - [etcd](https://github.com/coreos/etcd/)
+  - [make](https://www.gnu.org/software/make/)
+  - [gcc compiler/linker](https://gcc.gnu.org/)
 
 - Your `GOPATH` environment variable must be set, and the location of `etcd`
   must be in your `PATH` environment variable.
@@ -142,8 +144,9 @@ Run `git status` to see what was generated.
 On branch master
 ...
     modified:   api/openapi-spec/swagger.json
+    modified:   api/openapi-spec/v3/apis__apps__v1_openapi.json
+    modified:   pkg/generated/openapi/zz_generated.openapi.go
     modified:   staging/src/k8s.io/api/apps/v1/generated.proto
-    modified:   staging/src/k8s.io/api/apps/v1/types.go
     modified:   staging/src/k8s.io/api/apps/v1/types_swagger_doc_generated.go
 ```
 
diff --git a/content/en/docs/contribute/localization.md b/content/en/docs/contribute/localization.md
index c9cd5a5385..1c741b32e5 100644
--- a/content/en/docs/contribute/localization.md
+++ b/content/en/docs/contribute/localization.md
@@ -13,14 +13,19 @@ card:
 
 <!-- overview -->
 
-This page shows you how to [localize](https://blog.mozilla.org/l10n/2011/12/14/i18n-vs-l10n-whats-the-diff/) the docs for a different language.
+This page shows you how to
+[localize](https://blog.mozilla.org/l10n/2011/12/14/i18n-vs-l10n-whats-the-diff/) the docs for a
+different language.
 
 
 <!-- body -->
 
 ## Contribute to an existing localization
 
-You can help add or improve content to an existing localization. In [Kubernetes Slack](https://slack.k8s.io/) you'll find a channel for each localization. There is also a general [SIG Docs Localizations Slack channel](https://kubernetes.slack.com/messages/sig-docs-localizations) where you can say hello.
+You can help add or improve content to an existing localization. In [Kubernetes
+Slack](https://slack.k8s.io/) you'll find a channel for each localization. There is also a general
+[SIG Docs Localizations Slack channel](https://kubernetes.slack.com/messages/sig-docs-localizations)
+where you can say hello.
 
 {{< note >}}
 If you want to work on a localization that already exists, check
@@ -30,11 +35,14 @@ English original. You might see extra details there.
 
 ### Find your two-letter language code
 
-First, consult the [ISO 639-1 standard](https://www.loc.gov/standards/iso639-2/php/code_list.php) to find your localization's two-letter language code. For example, the two-letter code for Korean is `ko`.
+First, consult the [ISO 639-1 standard](https://www.loc.gov/standards/iso639-2/php/code_list.php)
+to find your localization's two-letter language code. For example, the two-letter code for Korean
+is `ko`.
 
 ### Fork and clone the repo
 
-First, [create your own fork](/docs/contribute/new-content/open-a-pr/#fork-the-repo) of the [kubernetes/website](https://github.com/kubernetes/website) repository.
+First, [create your own fork](/docs/contribute/new-content/open-a-pr/#fork-the-repo) of the
+[kubernetes/website](https://github.com/kubernetes/website) repository.
 
 Then, clone your fork and `cd` into it:
 
@@ -43,7 +51,8 @@ git clone https://github.com/<username>/website
 cd website
 ```
 
-The website content directory includes sub-directories for each language. The localization you want to help out with is inside `content/<two-letter-code>`.
+The website content directory includes sub-directories for each language. The localization you
+want to help out with is inside `content/<two-letter-code>`.
 
 ### Suggest changes
 
@@ -57,8 +66,9 @@ equivalent fix by updating the localization you're working on.
 Please limit pull requests to a single localization, since pull requests that change
 content in multiple localizations could be difficult to review.
 
-Follow [Suggesting Content Improvements](/docs/contribute/suggest-improvements/) to propose changes to
-that localization. The process is very similar to proposing changes to the upstream (English) content.
+Follow [Suggesting Content Improvements](/docs/contribute/suggesting-improvements/)
+to propose changes to that localization. The process is very similar to proposing changes to the
+upstream (English) content.
 
 ## Start a new localization
 
@@ -86,57 +96,92 @@ can incrementally work towards that goal.
 
 ### Find community
 
-Let Kubernetes SIG Docs know you're interested in creating a localization! Join the [SIG Docs Slack channel](https://kubernetes.slack.com/messages/sig-docs) and the [SIG Docs Localizations Slack channel](https://kubernetes.slack.com/messages/sig-docs-localizations). Other localization teams are happy to help you get started and answer any questions you have.
+Let Kubernetes SIG Docs know you're interested in creating a localization! Join the
+[SIG Docs Slack channel](https://kubernetes.slack.com/messages/sig-docs) and the
+[SIG Docs Localizations Slack channel](https://kubernetes.slack.com/messages/sig-docs-localizations).
+Other localization teams are happy to help you get started and answer any questions you have.
 
-Please also consider participating in the [SIG Docs Localization Subgroup meeting](https://github.com/kubernetes/community/tree/master/sig-docs).  The mission of the SIG Docs localization subgroup is to work across the SIG Docs localization teams to collaborate on defining and documenting the processes for creating localized contribution guides. In addition, the SIG Docs localization subgroup will look for opportunities for the creation and sharing of common tools across localization teams and also serve to identify new requirements to the SIG Docs Leadership team.  If you have questions about this meeting, please inquire on the [SIG Docs Localizations Slack channel](https://kubernetes.slack.com/messages/sig-docs-localizations).
+Please also consider participating in the
+[SIG Docs Localization Subgroup meeting](https://github.com/kubernetes/community/tree/master/sig-docs).
+The mission of the SIG Docs localization subgroup is to work across the SIG Docs localization
+teams to collaborate on defining and documenting the processes for creating localized contribution
+guides. In addition, the SIG Docs localization subgroup will look for opportunities for the
+creation and sharing of common tools across localization teams and also serve to identify new
+requirements to the SIG Docs Leadership team.  If you have questions about this meeting, please
+inquire on the [SIG Docs Localizations Slack channel](https://kubernetes.slack.com/messages/sig-docs-localizations).
 
-You can also create a Slack channel for your localization in the `kubernetes/community` repository. For an example of adding a Slack channel, see the PR for [adding a channel for Persian](https://github.com/kubernetes/community/pull/4980).
+You can also create a Slack channel for your localization in the `kubernetes/community`
+repository. For an example of adding a Slack channel, see the PR for
+[adding a channel for Persian](https://github.com/kubernetes/community/pull/4980).
 
 ### Join the Kubernetes GitHub organization
 
-Once you've opened a localization PR, you can become members of the Kubernetes GitHub organization. Each person on the team needs to create their own [Organization Membership Request](https://github.com/kubernetes/org/issues/new/choose) in the `kubernetes/org` repository.
+Once you've opened a localization PR, you can become members of the Kubernetes GitHub
+organization. Each person on the team needs to create their own
+[Organization Membership Request](https://github.com/kubernetes/org/issues/new/choose)
+in the `kubernetes/org` repository.
 
 ### Add your localization team in GitHub
 
-Next, add your Kubernetes localization team to [`sig-docs/teams.yaml`](https://github.com/kubernetes/org/blob/main/config/kubernetes/sig-docs/teams.yaml). For an example of adding a localization team, see the PR to add the [Spanish localization team](https://github.com/kubernetes/org/pull/685).
-
-Members of `@kubernetes/sig-docs-**-owners` can approve PRs that change content within (and only within) your localization directory: `/content/**/`.
-
-For each localization, The `@kubernetes/sig-docs-**-reviews` team automates review assignment for new PRs.
+Next, add your Kubernetes localization team to
+[`sig-docs/teams.yaml`](https://github.com/kubernetes/org/blob/main/config/kubernetes/sig-docs/teams.yaml).
+For an example of adding a localization team, see the PR to add the
+[Spanish localization team](https://github.com/kubernetes/org/pull/685).
 
+Members of `@kubernetes/sig-docs-**-owners` can approve PRs that change content within (and only
+within) your localization directory: `/content/**/`.
+For each localization, The `@kubernetes/sig-docs-**-reviews` team automates review assignment for
+new PRs.
 Members of `@kubernetes/website-maintainers` can create new localization branches to coordinate translation efforts.
-
-Members of `@kubernetes/website-milestone-maintainers` can use the `/milestone` [Prow command](https://prow.k8s.io/command-help) to assign a milestone to issues or PRs.
+Members of `@kubernetes/website-milestone-maintainers` can use the `/milestone`
+[Prow command](https://prow.k8s.io/command-help) to assign a milestone to issues or PRs.
 
 ### Configure the workflow
 
-Next, add a GitHub label for your localization in the `kubernetes/test-infra` repository. A label lets you filter issues and pull requests for your specific language.
-
-For an example of adding a label, see the PR for adding the [Italian language label](https://github.com/kubernetes/test-infra/pull/11316).
+Next, add a GitHub label for your localization in the `kubernetes/test-infra` repository. A label
+lets you filter issues and pull requests for your specific language.
 
+For an example of adding a label, see the PR for adding the
+[Italian language label](https://github.com/kubernetes/test-infra/pull/11316).
 
 ### Modify the site configuration
 
-The Kubernetes website uses Hugo as its web framework. The website's Hugo configuration resides in the  [`config.toml`](https://github.com/kubernetes/website/tree/main/config.toml) file. To support a new localization, you'll need to modify `config.toml`.
+The Kubernetes website uses Hugo as its web framework. The website's Hugo configuration resides in
+the  [`config.toml`](https://github.com/kubernetes/website/tree/main/config.toml) file.
+To support a new localization, you'll need to modify `config.toml`.
 
-Add a configuration block for the new language to `config.toml`, under the existing `[languages]` block. The German block, for example, looks like:
+Add a configuration block for the new language to `config.toml`, under the existing `[languages]` block.
+The German block, for example, looks like:
 
 ```toml
 [languages.de]
 title = "Kubernetes"
 description = "Produktionsreife Container-Verwaltung"
-languageName = "Deutsch"
+languageName = "Deutsch (German)"
+languageNameLatinScript = "Deutsch"
 contentDir = "content/de"
-weight = 3
+weight = 8
 ```
 
-When assigning a `weight` parameter for your block, find the language block with the highest weight and add 1 to that value.
+The value for `languageName` will be listed in language selection bar. Assign "language name in
+native script and language (English language name in latin script)" to `languageName`.
+For example, `languageName = "한국어 (Korean)"` or `languageName = "Deutsch (German)"`.
 
-For more information about Hugo's multilingual support, see "[Multilingual Mode](https://gohugo.io/content-management/multilingual/)".
+`languageNameLatinScript` can be used to access the language name in latin script and use it in
+the theme. Assign "language name in latin script" to `languageNameLatinScript`. For example,
+`languageNameLatinScript ="Korean"` or `languageNameLatinScript = "Deutsch"`. 
+
+When assigning a `weight` parameter for your block, find the language block with the highest
+weight and add 1 to that value.
+
+For more information about Hugo's multilingual support, see
+"[Multilingual Mode](https://gohugo.io/content-management/multilingual/)".
 
 ### Add a new localization directory
 
-Add a language-specific subdirectory to the [`content`](https://github.com/kubernetes/website/tree/main/content) folder in the repository. For example, the two-letter code for German is `de`:
+Add a language-specific subdirectory to the
+[`content`](https://github.com/kubernetes/website/tree/main/content) folder in the repository.
+For example, the two-letter code for German is `de`:
 
 ```shell
 mkdir content/de
@@ -146,28 +191,34 @@ You also need to create a directory inside `data/i18n` for
 [localized strings](#site-strings-in-i18n); look at existing localizations
 for an example. To use these new strings, you must also create a symbolic link
 from `i18n/<localization>.toml` to the actual string configuration in
-`data/i18n/<localization>/<localization>.toml` (remember to commit the symbolic
-link).
+`data/i18n/<localization>/<localization>.toml` (remember to commit the symbolic link).
 
 For example, for German the strings live in `data/i18n/de/de.toml`, and
 `i18n/de.toml` is a symbolic link to `data/i18n/de/de.toml`.
 
 ### Localize the community code of conduct
 
-Open a PR against the [`cncf/foundation`](https://github.com/cncf/foundation/tree/master/code-of-conduct-languages) repository to add the code of conduct in your language.
-
+Open a PR against the [`cncf/foundation`](https://github.com/cncf/foundation/tree/main/code-of-conduct-languages)
+repository to add the code of conduct in your language.
 
 ### Setting up the OWNERS files
 
-To set the roles of each user contributing to the localization, create an `OWNERS` file inside the language-specific subdirectory with:
+To set the roles of each user contributing to the localization, create an `OWNERS` file inside the
+language-specific subdirectory with:
 
-- **reviewers**: A list of kubernetes teams with reviewer roles, in this case, the `sig-docs-**-reviews` team created in [Add your localization team in GitHub](#add-your-localization-team-in-github).
-- **approvers**: A list of kubernetes teams with approvers roles, in this case, the `sig-docs-**-owners` team created in [Add your localization team in GitHub](#add-your-localization-team-in-github).
-- **labels**: A list of GitHub labels to automatically apply to a PR, in this case, the language label created in [Configure the workflow](#configure-the-workflow).
+- **reviewers**: A list of kubernetes teams with reviewer roles, in this case, the
+  `sig-docs-**-reviews` team created in
+  [Add your localization team in GitHub](#add-your-localization-team-in-github).
+- **approvers**: A list of kubernetes teams with approvers roles, in this case, the
+  `sig-docs-**-owners` team created in
+  [Add your localization team in GitHub](#add-your-localization-team-in-github).
+- **labels**: A list of GitHub labels to automatically apply to a PR, in this case, the language
+  label created in [Configure the workflow](#configure-the-workflow).
 
 More information about the `OWNERS` file can be found at [go.k8s.io/owners](https://go.k8s.io/owners).
 
-The [Spanish OWNERS file](https://git.k8s.io/website/content/es/OWNERS), with language code `es`, looks like:
+The [Spanish OWNERS file](https://git.k8s.io/website/content/es/OWNERS),
+with language code `es`, looks like:
 
 ```yaml
 # See the OWNERS docs at https://go.k8s.io/owners
@@ -185,9 +236,13 @@ labels:
 - language/es
 ```
 
-After adding the language-specific `OWNERS` file, update the [root `OWNERS_ALIASES`](https://git.k8s.io/website/OWNERS_ALIASES) file with the new Kubernetes teams for the localization, `sig-docs-**-owners` and `sig-docs-**-reviews`.
+After adding the language-specific `OWNERS` file, update the [root
+`OWNERS_ALIASES`](https://git.k8s.io/website/OWNERS_ALIASES) file with the new Kubernetes teams
+for the localization, `sig-docs-**-owners` and `sig-docs-**-reviews`.
 
-For each team, add the list of GitHub users requested in [Add your localization team in GitHub](#add-your-localization-team-in-github), in alphabetical order.
+For each team, add the list of GitHub users requested in
+[Add your localization team in GitHub](#add-your-localization-team-in-github),
+in alphabetical order.
 
 ```diff
 --- a/OWNERS_ALIASES
@@ -211,33 +266,45 @@ For each team, add the list of GitHub users requested in [Add your localization
 
 ### Open a pull request
 
-Next, [open a pull request](/docs/contribute/new-content/open-a-pr/#open-a-pr) (PR) to add a localization to the `kubernetes/website` repository.
+Next, [open a pull request](/docs/contribute/new-content/open-a-pr/#open-a-pr) (PR) to add a
+localization to the `kubernetes/website` repository.
+The PR must include all of the [minimum required content](#minimum-required-content) before it can
+be approved.
 
-The PR must include all of the [minimum required content](#minimum-required-content) before it can be approved.
-
-For an example of adding a new localization, see the PR to enable [docs in French](https://github.com/kubernetes/website/pull/12548).
+For an example of adding a new localization, see the PR to enable
+[docs in French](https://github.com/kubernetes/website/pull/12548).
 
 ### Add a localized README file
 
-To guide other localization contributors, add a new [`README-**.md`](https://help.github.com/articles/about-readmes/) to the top level of [k/website](https://github.com/kubernetes/website/), where `**` is the two-letter language code. For example, a German README file would be `README-de.md`.
+To guide other localization contributors, add a new
+[`README-**.md`](https://help.github.com/articles/about-readmes/) to the top level of
+[kubernetes/website](https://github.com/kubernetes/website/), where `**` is the two-letter language code.
+For example, a German README file would be `README-de.md`.
 
-Provide guidance to localization contributors in the localized `README-**.md` file. Include the same information contained in `README.md` as well as:
+Provide guidance to localization contributors in the localized `README-**.md` file.
+Include the same information contained in `README.md` as well as:
 
 - A point of contact for the localization project
 - Any information specific to the localization
 
-After you create the localized README, add a link to the file from the main English `README.md`, and include contact information in English. You can provide a GitHub ID, email address, [Slack channel](https://slack.com/), or other method of contact. You must also provide a link to your localized Community Code of Conduct.
+After you create the localized README, add a link to the file from the main English `README.md`,
+and include contact information in English. You can provide a GitHub ID, email address,
+[Slack channel](https://slack.com/), or other method of contact. You must also provide a link to your
+localized Community Code of Conduct.
 
 ### Launching your new localization
 
 Once a localization meets requirements for workflow and minimum output, SIG Docs will:
 
 - Enable language selection on the website
-- Publicize the localization's availability through [Cloud Native Computing Foundation](https://www.cncf.io/about/) (CNCF) channels, including the [Kubernetes blog](https://kubernetes.io/blog/).
+- Publicize the localization's availability through
+  [Cloud Native Computing Foundation](https://www.cncf.io/about/)(CNCF) channels, including the
+  [Kubernetes blog](/blog/).
 
 ## Translating content
 
-Localizing *all* of the Kubernetes documentation is an enormous task. It's okay to start small and expand over time.
+Localizing *all* of the Kubernetes documentation is an enormous task. It's okay to start small and
+expand over time.
 
 ### Minimum required content
 
@@ -248,22 +315,29 @@ Description | URLs
 Home | [All heading and subheading URLs](/docs/home/)
 Setup | [All heading and subheading URLs](/docs/setup/)
 Tutorials | [Kubernetes Basics](/docs/tutorials/kubernetes-basics/), [Hello Minikube](/docs/tutorials/hello-minikube/)
-Site strings | [All site strings](#Site-strings-in-i18n) in a new localized TOML file
+Site strings | [All site strings](#site-strings-in-i18n) in a new localized TOML file
+Releases | [All heading and subheading URLs](/releases)
 
-Translated documents must reside in their own `content/**/` subdirectory, but otherwise follow the same URL path as the English source. For example, to prepare the [Kubernetes Basics](/docs/tutorials/kubernetes-basics/) tutorial for translation into German, create a subfolder under the `content/de/` folder and copy the English source:
+Translated documents must reside in their own `content/**/` subdirectory, but otherwise follow the
+same URL path as the English source. For example, to prepare the
+[Kubernetes Basics](/docs/tutorials/kubernetes-basics/) tutorial for translation into German,
+create a subfolder under the `content/de/` folder and copy the English source:
 
 ```shell
 mkdir -p content/de/docs/tutorials
 cp content/en/docs/tutorials/kubernetes-basics.md content/de/docs/tutorials/kubernetes-basics.md
 ```
 
-Translation tools can speed up the translation process. For example, some editors offers plugins to quickly translate text.
+Translation tools can speed up the translation process. For example, some editors offers plugins
+to quickly translate text.
 
 {{< caution >}}
-Machine-generated translation is insufficient on its own. Localization requires extensive human review to meet minimum standards of quality.
+Machine-generated translation is insufficient on its own. Localization requires extensive human
+review to meet minimum standards of quality.
 {{< /caution >}}
 
-To ensure accuracy in grammar and meaning, members of your localization team should carefully review all machine-generated translations before publishing.
+To ensure accuracy in grammar and meaning, members of your localization team should carefully
+review all machine-generated translations before publishing.
 
 ### Source files
 
@@ -274,17 +348,21 @@ To find source files for your target version:
 
 1. Navigate to the Kubernetes website repository at https://github.com/kubernetes/website.
 2. Select a branch for your target version from the following table:
-    Target version | Branch
-    -----|-----
-    Latest version | [`main`](https://github.com/kubernetes/website/tree/main)
-    Previous version | [`release-{{< skew prevMinorVersion >}}`](https://github.com/kubernetes/website/tree/release-{{< skew prevMinorVersion >}})
-    Next version | [`dev-{{< skew nextMinorVersion >}}`](https://github.com/kubernetes/website/tree/dev-{{< skew nextMinorVersion >}})
 
-The `main` branch holds content for the current release `{{< latest-version >}}`. The release team will create a `{{< release-branch >}}` branch before the next release: v{{< skew nextMinorVersion >}}.
+   Target version | Branch
+   -----|-----
+   Latest version | [`main`](https://github.com/kubernetes/website/tree/main)
+   Previous version | [`release-{{< skew prevMinorVersion >}}`](https://github.com/kubernetes/website/tree/release-{{< skew prevMinorVersion >}})
+   Next version | [`dev-{{< skew nextMinorVersion >}}`](https://github.com/kubernetes/website/tree/dev-{{< skew nextMinorVersion >}})
+
+The `main` branch holds content for the current release `{{< latest-version >}}`. The release team
+will create a `{{< release-branch >}}` branch before the next release: v{{< skew nextMinorVersion >}}.
 
 ### Site strings in i18n
 
-Localizations must include the contents of [`data/i18n/en/en.toml`](https://github.com/kubernetes/website/blob/main/data/i18n/en/en.toml) in a new language-specific file. Using German as an example: `data/i18n/de/de.toml`.
+Localizations must include the contents of
+[`data/i18n/en/en.toml`](https://github.com/kubernetes/website/blob/main/data/i18n/en/en.toml)
+in a new language-specific file. Using German as an example: `data/i18n/de/de.toml`.
 
 Add a new localization directory and file to `data/i18n/`. For example, with German (`de`):
 
@@ -302,17 +380,22 @@ placeholder text for the search form:
 other = "Suchen"
 ```
 
-Localizing site strings lets you customize site-wide text and features: for example, the legal copyright text in the footer on each page.
+Localizing site strings lets you customize site-wide text and features: for example, the legal
+copyright text in the footer on each page.
 
 ### Language specific style guide and glossary
 
-Some language teams have their own language-specific style guide and glossary. For example, see the [Korean Localization Guide](/ko/docs/contribute/localization_ko/).
+Some language teams have their own language-specific style guide and glossary.
+For example, see the [Korean Localization Guide](/ko/docs/contribute/localization_ko/).
 
 ### Language specific Zoom meetings
 
-If the localization project needs a separate meeting time, contact a SIG Docs Co-Chair or Tech Lead to create a new reoccurring Zoom meeting and calendar invite. This is only needed when the the team is large enough to sustain and require a separate meeting.
+If the localization project needs a separate meeting time, contact a SIG Docs Co-Chair or Tech
+Lead to create a new reoccurring Zoom meeting and calendar invite. This is only needed when 
+the team is large enough to sustain and require a separate meeting.
 
-Per CNCF policy, the localization teams must upload their meetings to the SIG Docs YouTube playlist. A SIG Docs Co-Chair or Tech Lead can help with the process until SIG Docs automates it.
+Per CNCF policy, the localization teams must upload their meetings to the SIG Docs YouTube
+playlist. A SIG Docs Co-Chair or Tech Lead can help with the process until SIG Docs automates it.
 
 ## Branching strategy
 
@@ -322,44 +405,66 @@ when starting out and the localization is not yet live.
 
 To collaborate on a localization branch:
 
-1. A team member of [@kubernetes/website-maintainers](https://github.com/orgs/kubernetes/teams/website-maintainers) opens a localization branch from a source branch on https://github.com/kubernetes/website.
+1. A team member of
+   [@kubernetes/website-maintainers](https://github.com/orgs/kubernetes/teams/website-maintainers)
+   opens a localization branch from a source branch on https://github.com/kubernetes/website.
 
-    Your team approvers joined the `@kubernetes/website-maintainers` team when you [added your localization team](#add-your-localization-team-in-github) to the [`kubernetes/org`](https://github.com/kubernetes/org) repository.
+   Your team approvers joined the `@kubernetes/website-maintainers` team when you
+   [added your localization team](#add-your-localization-team-in-github) to the
+   [`kubernetes/org`](https://github.com/kubernetes/org) repository.
 
-    We recommend the following branch naming scheme:
+   We recommend the following branch naming scheme:
 
-    `dev-<source version>-<language code>.<team milestone>`
+   `dev-<source version>-<language code>.<team milestone>`
 
-    For example, an approver on a German localization team opens the localization branch `dev-1.12-de.1` directly against the k/website repository, based on the source branch for Kubernetes v1.12.
+   For example, an approver on a German localization team opens the localization branch
+   `dev-1.12-de.1` directly against the `kubernetes/website` repository, based on the source branch for
+   Kubernetes v1.12.
 
 2. Individual contributors open feature branches based on the localization branch.
 
-    For example, a German contributor opens a pull request with changes to `kubernetes:dev-1.12-de.1` from `username:local-branch-name`.
+   For example, a German contributor opens a pull request with changes to
+   `kubernetes:dev-1.12-de.1` from `username:local-branch-name`.
 
 3. Approvers review and merge feature branches into the localization branch.
 
-4. Periodically, an approver merges the localization branch to its source branch by opening and approving a new pull request. Be sure to squash the commits before approving the pull request.
+4. Periodically, an approver merges the localization branch to its source branch by opening and
+   approving a new pull request. Be sure to squash the commits before approving the pull request.
 
-Repeat steps 1-4 as needed until the localization is complete. For example, subsequent German localization branches would be: `dev-1.12-de.2`, `dev-1.12-de.3`, etc.
+Repeat steps 1-4 as needed until the localization is complete. For example, subsequent German
+localization branches would be: `dev-1.12-de.2`, `dev-1.12-de.3`, etc.
 
 Teams must merge localized content into the same branch from which the content was sourced.
-
 For example:
+
 - a localization branch sourced from `main` must be merged into `main`.
-- a localization branch sourced from `release-{{ skew "prevMinorVersion" }}` must be merged into `release-{{ skew "prevMinorVersion" }}`.
+- a localization branch sourced from `release-{{% skew "prevMinorVersion" %}}` must be merged into
+  `release-{{% skew "prevMinorVersion" %}}`.
 
 {{< note >}}
-If your localization branch was created from `main` branch but it is not merged into `main` before new release branch `{{< release-branch >}}` created, merge it into both `main` and new release branch `{{< release-branch >}}`. To merge your localization branch into new release branch `{{< release-branch >}}`, you need to switch upstream branch of your localization branch to `{{< release-branch >}}`.
+If your localization branch was created from `main` branch but it is not merged into `main` before
+new release branch `{{< release-branch >}}` created, merge it into both `main` and new release
+branch `{{< release-branch >}}`. To merge your localization branch into new release branch
+`{{< release-branch >}}`, you need to switch upstream branch of your localization branch to
+`{{< release-branch >}}`.
 {{< /note >}}
 
-At the beginning of every team milestone, it's helpful to open an issue comparing upstream changes between the previous localization branch and the current localization branch. There are two scripts for comparing upstream changes. [`upstream_changes.py`](https://github.com/kubernetes/website/tree/main/scripts#upstream_changespy) is useful for checking the changes made to a specific file. And [`diff_l10n_branches.py`](https://github.com/kubernetes/website/tree/main/scripts#diff_l10n_branchespy) is useful for creating a list of outdated files for a specific localization branch.
+At the beginning of every team milestone, it's helpful to open an issue comparing upstream changes
+between the previous localization branch and the current localization branch.
+There are two scripts for comparing upstream changes.
 
-While only approvers can open a new localization branch and merge pull requests, anyone can open a pull request for a new localization branch. No special permissions are required.
+- [`upstream_changes.py`](https://github.com/kubernetes/website/tree/main/scripts#upstream_changespy)
+  is useful for checking the changes made to a specific file. And
+- [`diff_l10n_branches.py`](https://github.com/kubernetes/website/tree/main/scripts#diff_l10n_branchespy)
+  is useful for creating a list of outdated files for a specific localization branch.
 
-For more information about working from forks or directly from the repository, see ["fork and clone the repo"](#fork-and-clone-the-repo).
+While only approvers can open a new localization branch and merge pull requests, anyone can open a
+pull request for a new localization branch. No special permissions are required.
+
+For more information about working from forks or directly from the repository, see
+["fork and clone the repo"](#fork-and-clone-the-repo).
 
 ## Upstream contributions
 
 SIG Docs welcomes upstream contributions and corrections to the English source.
 
-
diff --git a/content/en/docs/contribute/new-content/_index.md b/content/en/docs/contribute/new-content/_index.md
index 4992a37654..93bbeb750b 100644
--- a/content/en/docs/contribute/new-content/_index.md
+++ b/content/en/docs/contribute/new-content/_index.md
@@ -1,4 +1,120 @@
 ---
 title: Contributing new content
+content_type: concept
+main_menu: true
 weight: 20
 ---
+
+
+
+<!-- overview -->
+
+This section contains information you should know before contributing new
+content. 
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
+
+{{< mermaid >}}
+flowchart LR 
+    subgraph second[Before you begin]
+    direction TB
+    S[ ] -.-
+    A[Sign the CNCF CLA] --> B[Choose Git branch]
+    B --> C[One language per PR]
+    C --> F[Check out<br>contributor tools]
+    end
+    subgraph first[Contributing Basics]
+    direction TB
+       T[ ] -.-
+       D[Write docs in markdown<br>and build site with Hugo] --- E[source in GitHub]
+       E --- G['/content/../docs' folder contains docs<br>for multiple languages]
+       G --- H[Review Hugo page content<br>types and shortcodes]
+    end
+    
+
+    first ----> second
+     
+
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class A,B,C,D,E,F,G,H grey
+class S,T spacewhite
+class first,second white
+{{</ mermaid >}}
+
+***Figure - Contributing new content preparation***
+
+The figure above depicts the information you should know
+prior to submitting new content. The information details follow.
+
+
+
+<!-- body -->
+
+## Contributing basics
+
+- Write Kubernetes documentation in Markdown and build the Kubernetes site
+  using [Hugo](https://gohugo.io/).
+- Kubernetes documentation uses [CommonMark](https://commonmark.org/) as its flavor of  Markdown. 
+- The source is in [GitHub](https://github.com/kubernetes/website). You can find
+  Kubernetes documentation at `/content/en/docs/`. Some of the reference
+  documentation is automatically generated from scripts in
+  the `update-imported-docs/` directory.
+- [Page content types](/docs/contribute/style/page-content-types/) describe the
+  presentation of documentation content in Hugo.
+- You can use [Docsy shortcodes](https://www.docsy.dev/docs/adding-content/shortcodes/) or [custom Hugo shortcodes](/docs/contribute/style/hugo-shortcodes/) to contribute to Kubernetes documentation.
+- In addition to the standard Hugo shortcodes, we use a number of
+  [custom Hugo shortcodes](/docs/contribute/style/hugo-shortcodes/) in our
+  documentation to control the presentation of content.
+- Documentation source is available in multiple languages in `/content/`. Each
+  language has its own folder with a two-letter code determined by the
+  [ISO 639-1 standard](https://www.loc.gov/standards/iso639-2/php/code_list.php)
+  . For example, English documentation source is stored in `/content/en/docs/`.
+- For more information about contributing to documentation in multiple languages
+  or starting a new translation,
+  see [localization](/docs/contribute/localization).
+
+## Before you begin {#before-you-begin}
+
+### Sign the CNCF CLA {#sign-the-cla}
+
+All Kubernetes contributors **must** read
+the [Contributor guide](https://github.com/kubernetes/community/blob/master/contributors/guide/README.md)
+and [sign the Contributor License Agreement (CLA)](https://github.com/kubernetes/community/blob/master/CLA.md)
+.
+
+Pull requests from contributors who haven't signed the CLA fail the automated
+tests. The name and email you provide must match those found in
+your `git config`, and your git name and email must match those used for the
+CNCF CLA.
+
+### Choose which Git branch to use
+
+When opening a pull request, you need to know in advance which branch to base
+your work on.
+
+Scenario | Branch
+:---------|:------------
+Existing or new English language content for the current release | `main`
+Content for a feature change release | The branch which corresponds to the major and minor version the feature change is in, using the pattern `dev-<version>`. For example, if a feature changes in the `v{{< skew nextMinorVersion >}}` release, then add documentation changes to the ``dev-{{< skew nextMinorVersion >}}`` branch.
+Content in other languages (localizations) | Use the localization's convention. See the [Localization branching strategy](/docs/contribute/localization/#branching-strategy) for more information.
+
+If you're still not sure which branch to choose, ask in `#sig-docs` on Slack.
+
+{{< note >}} If you already submitted your pull request and you know that the
+base branch was wrong, you (and only you, the submitter) can change it. {{<
+/note >}}
+
+### Languages per PR
+
+Limit pull requests to one language per PR. If you need to make an identical
+change to the same code sample in multiple languages, open a separate PR for
+each language.
+
+## Tools for contributors
+
+The [doc contributors tools](https://github.com/kubernetes/website/tree/main/content/en/docs/doc-contributor-tools)
+directory in the `kubernetes/website` repository contains tools to help your
+contribution journey go more smoothly.
+
diff --git a/content/en/docs/contribute/new-content/blogs-case-studies.md b/content/en/docs/contribute/new-content/blogs-case-studies.md
index ee06f204cb..3034f66ce8 100644
--- a/content/en/docs/contribute/new-content/blogs-case-studies.md
+++ b/content/en/docs/contribute/new-content/blogs-case-studies.md
@@ -16,80 +16,184 @@ Case studies require extensive review before they're approved.
 
 ## The Kubernetes Blog
 
-The Kubernetes blog is used by the project to communicate new features, community reports, and any news that might be relevant to the Kubernetes community. 
-This includes end users and developers. 
-Most of the blog's content is about things happening in the core project, but we encourage you to submit about things happening elsewhere in the ecosystem too!
+The Kubernetes blog is used by the project to communicate new features, community reports, and any
+news that might be relevant to the Kubernetes community. This includes end users and developers. 
+Most of the blog's content is about things happening in the core project, but we encourage you to
+submit about things happening elsewhere in the ecosystem too!
 
 Anyone can write a blog post and submit it for review.
 
+### Submit a Post
+
+Blog posts should not be commercial in nature and should consist of original content that applies
+broadly to the Kubernetes community. Appropriate blog content includes:
+
+- New Kubernetes capabilities
+- Kubernetes projects updates
+- Updates from Special Interest Groups
+- Tutorials and walkthroughs
+- Thought leadership around Kubernetes
+- Kubernetes Partner OSS integration
+- **Original content only**
+
+Unsuitable content includes:
+
+- Vendor product pitches
+- Partner updates without an integration and customer story
+- Syndicated posts (language translations ok)
+
+To submit a blog post, follow these steps:
+
+1. [Sign the CLA](https://github.com/kubernetes/community/blob/master/CLA.md)
+   if you have not yet done so.
+
+1. Have a look at the Markdown format for existing blog posts in the
+   [website repository](https://github.com/kubernetes/website/tree/master/content/en/blog/_posts).
+
+1. Write out your blog post in a text editor of your choice.
+
+1. On the same link from step 2, click the Create new file button. Paste your content into the editor.
+   Name the file to match the proposed title of the blog post, but don’t put the date in the file name.
+   The blog reviewers will work with you on the final file name and the date the blog will be published.
+
+1. When you save the file, GitHub will walk you through the pull request process.
+
+1. A blog post reviewer will review your submission and work with you on feedback and final details.
+   When the blog post is approved, the blog will be scheduled for publication.
+
 ### Guidelines and expectations
 
 - Blog posts should not be vendor pitches. 
-  - Articles must contain content that applies broadly to the Kubernetes community. For example, a submission should focus on upstream Kubernetes as opposed to vendor-specific configurations. Check the [Documentation style guide](/docs/contribute/style/content-guide/#what-s-allowed) for what is typically allowed on Kubernetes properties. 
-  - Links should primarily be to the official Kubernetes documentation. When using external references, links should be diverse - For example a submission shouldn't contain only links back to a single company's blog.
-  - Sometimes this is a delicate balance. The [blog team](https://kubernetes.slack.com/messages/sig-docs-blog/) is there to give guidance on whether a post is appropriate for the Kubernetes blog, so don't hesitate to reach out. 
+
+  - Articles must contain content that applies broadly to the Kubernetes community. For example, a
+    submission should focus on upstream Kubernetes as opposed to vendor-specific configurations.
+    Check the [Documentation style guide](/docs/contribute/style/content-guide/#what-s-allowed) for
+    what is typically allowed on Kubernetes properties. 
+  - Links should primarily be to the official Kubernetes documentation. When using external
+    references, links should be diverse - For example a submission shouldn't contain only links
+    back to a single company's blog.
+  - Sometimes this is a delicate balance. The [blog team](https://kubernetes.slack.com/messages/sig-docs-blog/)
+    is there to give guidance on whether a post is appropriate for the Kubernetes blog, so don't
+    hesitate to reach out. 
+
 - Blog posts are not published on specific dates.
-    - Articles are reviewed by community volunteers. We'll try our best to accommodate specific timing, but we make no guarantees.
-  - Many core parts of the Kubernetes projects submit blog posts during release windows, delaying publication times. Consider submitting during a quieter period of the release cycle.
-  - If you are looking for greater coordination on post release dates, coordinating with [CNCF marketing](https://www.cncf.io/about/contact/) is a more appropriate choice than submitting a blog post.
-  - Sometimes reviews can get backed up. If you feel your review isn't getting the attention it needs, you can reach out to the blog team via [this slack channel](https://kubernetes.slack.com/messages/sig-docs-blog/) to ask in real time. 
+
+    - Articles are reviewed by community volunteers. We'll try our best to accommodate specific
+      timing, but we make no guarantees.
+  - Many core parts of the Kubernetes projects submit blog posts during release windows, delaying
+    publication times. Consider submitting during a quieter period of the release cycle.
+  - If you are looking for greater coordination on post release dates, coordinating with
+    [CNCF marketing](https://www.cncf.io/about/contact/) is a more appropriate choice than submitting a blog post.
+  - Sometimes reviews can get backed up. If you feel your review isn't getting the attention it needs,
+    you can reach out to the blog team via [this slack channel](https://kubernetes.slack.com/messages/sig-docs-blog/)
+    to ask in real time. 
+
 - Blog posts should be relevant to Kubernetes users.
-  - Topics related to participation in or results of Kubernetes SIGs activities are always on topic (see the work in the [Upstream Marketing Team](https://github.com/kubernetes/community/blob/master/communication/marketing-team/blog-guidelines.md#upstream-marketing-blog-guidelines) for support on these posts). 
-  - The components of Kubernetes are purposely modular, so tools that use existing integration points like CNI and CSI are on topic. 
-  - Posts about other CNCF projects may or may not be on topic. We recommend asking the blog team before submitting a draft.
-    - Many CNCF projects have their own blog. These are often a better choice for posts. There are times of major feature or milestone for a CNCF project that users would be interested in reading on the Kubernetes blog.
+
+  - Topics related to participation in or results of Kubernetes SIGs activities are always on
+    topic (see the work in the [Upstream Marketing Team](https://github.com/kubernetes/community/blob/master/communication/marketing-team/blog-guidelines.md#upstream-marketing-blog-guidelines)
+    for support on these posts). 
+  - The components of Kubernetes are purposely modular, so tools that use existing integration
+    points like CNI and CSI are on topic. 
+  - Posts about other CNCF projects may or may not be on topic. We recommend asking the blog team
+    before submitting a draft.
+    - Many CNCF projects have their own blog. These are often a better choice for posts. There are
+      times of major feature or milestone for a CNCF project that users would be interested in
+      reading on the Kubernetes blog.
+  - Blog posts about contributing to the Kubernetes project should be in the
+    [Kubernetes Contributors site](https://kubernetes.dev)
+
 - Blog posts should be original content
+
   - The official blog is not for repurposing existing content from a third party as new content.
-  - The [license](https://github.com/kubernetes/website/blob/main/LICENSE) for the blog allows commercial use of the content for commercial purposes, but not the other way around.
+  - The [license](https://github.com/kubernetes/website/blob/main/LICENSE) for the blog allows
+    commercial use of the content for commercial purposes, but not the other way around.
+
 - Blog posts should aim to be future proof
-  - Given the development velocity of the project, we want evergreen content that won't require updates to stay accurate for the reader. 
-  - It can be a better choice to add a tutorial or update official documentation than to write a high level overview as a blog post.
-    - Consider concentrating the long technical content as a call to action of the blog post, and focus on the problem space or why readers should care.
+
+  - Given the development velocity of the project, we want evergreen content that won't require
+    updates to stay accurate for the reader. 
+  - It can be a better choice to add a tutorial or update official documentation than to write a
+    high level overview as a blog post.
+    - Consider concentrating the long technical content as a call to action of the blog post, and
+      focus on the problem space or why readers should care.
 
 ### Technical Considerations for submitting a blog post
 
-Submissions need to be in Markdown format to be used by the [Hugo](https://gohugo.io/) generator for the blog. There are [many resources available](https://gohugo.io/documentation/) on how to use this technology stack.
+Submissions need to be in Markdown format to be used by the [Hugo](https://gohugo.io/) generator
+for the blog. There are [many resources available](https://gohugo.io/documentation/) on how to use
+this technology stack.
 
-We recognize that this requirement makes the process more difficult for less-familiar folks to submit, and we're constantly looking at solutions to lower this bar. If you have ideas on how to lower the barrier, please volunteer to help out. 
+We recognize that this requirement makes the process more difficult for less-familiar folks to
+submit, and we're constantly looking at solutions to lower this bar. If you have ideas on how to
+lower the barrier, please volunteer to help out. 
 
-The SIG Docs [blog subproject](https://github.com/kubernetes/community/tree/master/sig-docs/blog-subproject) manages the review process for blog posts. For more information, see [Submit a post](https://github.com/kubernetes/community/tree/master/sig-docs/blog-subproject#submit-a-post).
+The SIG Docs [blog subproject](https://github.com/kubernetes/community/tree/master/sig-docs/blog-subproject)
+manages the review process for blog posts. For more information, see
+[Submit a post](https://github.com/kubernetes/community/tree/master/sig-docs/blog-subproject#submit-a-post).
 
 To submit a blog post follow these directions:
 
-- [Open a pull request](/docs/contribute/new-content/open-a-pr/#fork-the-repo) with a new blog post. New blog posts go under the [`content/en/blog/_posts`](https://github.com/kubernetes/website/tree/main/content/en/blog/_posts) directory.
+- [Open a pull request](/docs/contribute/new-content/open-a-pr/#fork-the-repo) with a new blog post.
+  New blog posts go under the [`content/en/blog/_posts`](https://github.com/kubernetes/website/tree/main/content/en/blog/_posts)
+  directory.
 
-- Ensure that your blog post follows the correct naming conventions and the following frontmatter (metadata) information:
+- Ensure that your blog post follows the correct naming conventions and the following frontmatter
+  (metadata) information:
 
-  - The Markdown file name must follow the format `YYYY-MM-DD-Your-Title-Here.md`. For example, `2020-02-07-Deploying-External-OpenStack-Cloud-Provider-With-Kubeadm.md`.
-  - Do **not** include dots in the filename. A name like `2020-01-01-whats-new-in-1.19.md` causes failures during a build.
+  - The Markdown file name must follow the format `YYYY-MM-DD-Your-Title-Here.md`. For example,
+    `2020-02-07-Deploying-External-OpenStack-Cloud-Provider-With-Kubeadm.md`.
+  - Do **not** include dots in the filename. A name like `2020-01-01-whats-new-in-1.19.md` causes
+    failures during a build.
   - The front matter must include the following:
 
-  ```yaml
-  ---
-  layout: blog
-  title: "Your Title Here"
-  date: YYYY-MM-DD
-  slug: text-for-URL-link-here-no-spaces
-  ---
-  ```
-  - The first or initial commit message should be a short summary of the work being done and should stand alone as a description of the blog post. Please note that subsequent edits to your blog will be squashed into this main commit, so it should be as useful as possible. 
+    ```yaml
+    ---
+    layout: blog
+    title: "Your Title Here"
+    date: YYYY-MM-DD
+    slug: text-for-URL-link-here-no-spaces
+    ---
+    ```
+
+  - The first or initial commit message should be a short summary of the work being done and
+    should stand alone as a description of the blog post. Please note that subsequent edits to
+    your blog will be squashed into this main commit, so it should be as useful as possible. 
+
     - Examples of a good commit message:
-      -  _Add blog post on the foo kubernetes feature_
-      -  _blog: foobar announcement_
+      - _Add blog post on the foo kubernetes feature_
+      - _blog: foobar announcement_
     - Examples of bad commit message:
       - _Add blog post_
       - _._
       - _initial commit_
       - _draft post_
-  - The blog team will then review your PR and give you comments on things you might need to fix. After that the bot will merge your PR and your blog post will be published. 
 
+  - The blog team will then review your PR and give you comments on things you might need to fix.
+    After that the bot will merge your PR and your blog post will be published. 
+
+  - If the content of the blog post contains only content that is not expected to require updates
+    to stay accurate for the reader, it can be marked as evergreen and exempted from the automatic
+    warning about outdated content added to blog posts older than one year.
+
+    - To mark a blog post as evergreen, add this to the front matter:
+      
+      ```yaml
+      evergreen: true
+      ```
+    - Examples of content that should not be marked evergreen:
+      - **Tutorials** that only apply to specific releases or versions and not all future versions
+      - References to pre-GA APIs or features
 
 ## Submit a case study
 
-Case studies highlight how organizations are using Kubernetes to solve
-real-world problems. The Kubernetes marketing team and members of the {{< glossary_tooltip text="CNCF" term_id="cncf" >}} collaborate with you on all case studies.
+Case studies highlight how organizations are using Kubernetes to solve real-world problems. The
+Kubernetes marketing team and members of the {{< glossary_tooltip text="CNCF" term_id="cncf" >}}
+collaborate with you on all case studies.
 
 Have a look at the source for the
 [existing case studies](https://github.com/kubernetes/website/tree/main/content/en/case-studies).
 
-Refer to the [case study guidelines](https://github.com/cncf/foundation/blob/master/case-study-guidelines.md) and submit your request as outlined in the guidelines.
+Refer to the [case study guidelines](https://github.com/cncf/foundation/blob/master/case-study-guidelines.md)
+and submit your request as outlined in the guidelines.
+
diff --git a/content/en/docs/contribute/new-content/new-features.md b/content/en/docs/contribute/new-content/new-features.md
index 268c447402..d40195c32d 100644
--- a/content/en/docs/contribute/new-content/new-features.md
+++ b/content/en/docs/contribute/new-content/new-features.md
@@ -37,7 +37,7 @@ the techniques described in
 ### Find out about upcoming features
 
 To find out about upcoming features, attend the weekly SIG Release meeting (see
-the [community](https://kubernetes.io/community/) page for upcoming meetings)
+the [community](/community/) page for upcoming meetings)
 and monitor the release-specific documentation
 in the [kubernetes/sig-release](https://github.com/kubernetes/sig-release/)
 repository. Each release has a sub-directory in the [/sig-release/tree/master/releases/](https://github.com/kubernetes/sig-release/tree/master/releases)
diff --git a/content/en/docs/contribute/new-content/open-a-pr.md b/content/en/docs/contribute/new-content/open-a-pr.md
index 973a29167d..50b5a00608 100644
--- a/content/en/docs/contribute/new-content/open-a-pr.md
+++ b/content/en/docs/contribute/new-content/open-a-pr.md
@@ -15,53 +15,89 @@ upcoming Kubernetes release, see
 [Document a new feature](/docs/contribute/new-content/new-features/).
 {{< /note >}}
 
-To contribute new content pages or improve existing content pages, open a pull request (PR). Make sure you follow all the requirements in the [Before you begin](/docs/contribute/new-content/overview/#before-you-begin) section.
-
-If your change is small, or you're unfamiliar with git, read [Changes using GitHub](#changes-using-github) to learn how to edit a page.
-
-If your changes are large, read [Work from a local fork](#fork-the-repo) to learn how to make changes locally on your computer.
+To contribute new content pages or improve existing content pages, open a pull request (PR).
+Make sure you follow all the requirements in the
+[Before you begin](/docs/contribute/new-content/) section.
 
+If your change is small, or you're unfamiliar with git, read
+[Changes using GitHub](#changes-using-github) to learn how to edit a page.
 
+If your changes are large, read [Work from a local fork](#fork-the-repo) to learn how to make
+changes locally on your computer.
 
 <!-- body -->
 
 ## Changes using GitHub
 
 If you're less experienced with git workflows, here's an easier method of
-opening a pull request.
+opening a pull request. Figure 1 outlines the steps and the details follow.
 
-1.  On the page where you see the issue, select the pencil icon at the top right.
-    You can also scroll to the bottom of the page and select **Edit this page**.
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
 
-2.  Make your changes in the GitHub markdown editor.
+{{< mermaid >}}
+flowchart LR
+A([fa:fa-user New<br>Contributor]) --- id1[(K8s/Website<br>GitHub)]
+subgraph tasks[Changes using GitHub]
+direction TB
+    0[ ] -.-
+    1[1. Edit this page] --> 2[2. Use GitHub markdown<br>editor to make changes]
+    2 --> 3[3. fill in Propose file change]
 
-3.  Below the editor, fill in the **Propose file change**
-    form. In the first field, give your commit message a title. In
-    the second field, provide a description.
+end
+subgraph tasks2[ ]
+direction TB
+4[4. select Propose file change] --> 5[5. select Create pull request] --> 6[6. fill in Open a pull request]
+6 --> 7[7. select Create pull request] 
+end
 
-    {{< note >}}
-    Do not use any [GitHub Keywords](https://help.github.com/en/github/managing-your-work-on-github/linking-a-pull-request-to-an-issue#linking-a-pull-request-to-an-issue-using-a-keyword) in your commit message. You can add those to the pull request
-    description later.
-    {{< /note >}}
+id1 --> tasks --> tasks2
 
-4.  Select **Propose file change**.
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+classDef k8s fill:#326ce5,stroke:#fff,stroke-width:1px,color:#fff;
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class A,1,2,3,4,5,6,7 grey
+class 0 spacewhite
+class tasks,tasks2 white
+class id1 k8s
+{{</ mermaid >}}
 
-5.  Select **Create pull request**.
+Figure 1. Steps for opening a PR using GitHub.
 
-6.  The **Open a pull request** screen appears. Fill in the form:
+1. On the page where you see the issue, select the pencil icon at the top right.
+   You can also scroll to the bottom of the page and select **Edit this page**.
 
-    - The **Subject** field of the pull request defaults to the commit summary.
-    You can change it if needed.
-    - The **Body** contains your extended commit message, if you have one,
-    and some template text. Add the
-    details the template text asks for, then delete the extra template text.
-    - Leave the **Allow edits from maintainers** checkbox selected.
+1. Make your changes in the GitHub markdown editor.
 
-    {{< note >}}
-    PR descriptions are a great way to help reviewers understand your change. For more information, see [Opening a PR](#open-a-pr).
-    {{</ note >}}
+1. Below the editor, fill in the **Propose file change** form.
+   In the first field, give your commit message a title.
+   In the second field, provide a description.
 
-7.  Select **Create pull request**.
+   {{< note >}}
+   Do not use any [GitHub Keywords](https://help.github.com/en/github/managing-your-work-on-github/linking-a-pull-request-to-an-issue#linking-a-pull-request-to-an-issue-using-a-keyword)
+   in your commit message. You can add those to the pull request description later.
+   {{< /note >}}
+
+1. Select **Propose file change**.
+
+1. Select **Create pull request**.
+
+1. The **Open a pull request** screen appears. Fill in the form:
+
+   - The **Subject** field of the pull request defaults to the commit summary.
+     You can change it if needed.
+   - The **Body** contains your extended commit message, if you have one,
+     and some template text. Add the
+     details the template text asks for, then delete the extra template text.
+   - Leave the **Allow edits from maintainers** checkbox selected.
+
+   {{< note >}}
+   PR descriptions are a great way to help reviewers understand your change.
+   For more information, see [Opening a PR](#open-a-pr).
+   {{</ note >}}
+
+1. Select **Create pull request**.
 
 ### Addressing feedback in GitHub
 
@@ -73,12 +109,12 @@ leave a comment with their GitHub username in it.
 If a reviewer asks you to make changes:
 
 1. Go to the **Files changed** tab.
-2. Select the pencil (edit) icon on any files changed by the
-pull request.
-3. Make the changes requested.
-4. Commit the changes.
+1. Select the pencil (edit) icon on any files changed by the pull request.
+1. Make the changes requested.
+1. Commit the changes.
 
-If you are waiting on a reviewer, reach out once every 7 days. You can also post a message in the `#sig-docs` Slack channel.
+If you are waiting on a reviewer, reach out once every 7 days. You can also post a message in the
+`#sig-docs` Slack channel.
 
 When your review is complete, a reviewer merges your PR and your changes go live a few minutes later.
 
@@ -87,80 +123,118 @@ When your review is complete, a reviewer merges your PR and your changes go live
 If you're more experienced with git, or if your changes are larger than a few lines,
 work from a local fork.
 
-Make sure you have [git](https://git-scm.com/book/en/v2/Getting-Started-Installing-Git) installed on your computer. You can also use a git UI application.
+Make sure you have [git](https://git-scm.com/book/en/v2/Getting-Started-Installing-Git) installed
+on your computer. You can also use a git UI application.
+
+Figure 2 shows the steps to follow when you work from a local fork. The details for each step follow.
+
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
+
+{{< mermaid >}}
+flowchart LR
+1[Fork the K8s/website<br>repository] --> 2[Create local clone<br>and set upstream]
+subgraph changes[Your changes]
+direction TB
+S[ ] -.-
+3[Create a branch<br>example: my_new_branch] --> 3a[Make changes using<br>text editor] --> 4["Preview your changes<br>locally using Hugo<br>(localhost:1313)<br>or build container image"]
+end
+subgraph changes2[Commit / Push]
+direction TB
+T[ ] -.-
+5[Commit your changes] --> 6[Push commit to<br>origin/my_new_branch]
+end
+
+2 --> changes --> changes2
+
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+classDef k8s fill:#326ce5,stroke:#fff,stroke-width:1px,color:#fff;
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class 1,2,3,3a,4,5,6 grey
+class S,T spacewhite
+class changes,changes2 white
+{{</ mermaid >}}
+
+Figure 2. Working from a local fork to make your changes.
 
 ### Fork the kubernetes/website repository
 
 1. Navigate to the [`kubernetes/website`](https://github.com/kubernetes/website/) repository.
-2. Select **Fork**.
+1. Select **Fork**.
 
 ### Create a local clone and set the upstream
 
-3. In a terminal window, clone your fork and update the [Docsy Hugo theme](https://github.com/google/docsy#readme):
+1. In a terminal window, clone your fork and update the [Docsy Hugo theme](https://github.com/google/docsy#readme):
 
-    ```bash
-    git clone git@github.com/<github_username>/website
-    cd website
-    git submodule update --init --recursive --depth 1
-    ```
+   ```shell
+   git clone git@github.com/<github_username>/website
+   cd website
+   git submodule update --init --recursive --depth 1
+   ```
 
-4. Navigate to the new `website` directory. Set the `kubernetes/website` repository as the `upstream` remote:
+1. Navigate to the new `website` directory. Set the `kubernetes/website` repository as the `upstream` remote:
 
-      ```bash
-      cd website
+   ```shell
+   cd website
 
-      git remote add upstream https://github.com/kubernetes/website.git
-      ```
+   git remote add upstream https://github.com/kubernetes/website.git
+   ```
 
-5. Confirm your `origin` and `upstream` repositories:
+1. Confirm your `origin` and `upstream` repositories:
 
-    ```bash
-    git remote -v
-    ```
+   ```shell
+   git remote -v
+   ```
 
-    Output is similar to:
+   Output is similar to:
 
-    ```bash
-    origin	git@github.com:<github_username>/website.git (fetch)
-    origin	git@github.com:<github_username>/website.git (push)
-    upstream	https://github.com/kubernetes/website.git (fetch)
-    upstream	https://github.com/kubernetes/website.git (push)
-    ```
+   ```none
+   origin	git@github.com:<github_username>/website.git (fetch)
+   origin	git@github.com:<github_username>/website.git (push)
+   upstream	https://github.com/kubernetes/website.git (fetch)
+   upstream	https://github.com/kubernetes/website.git (push)
+   ```
 
-6. Fetch commits from your fork's `origin/main` and `kubernetes/website`'s `upstream/main`:
+1. Fetch commits from your fork's `origin/main` and `kubernetes/website`'s `upstream/main`:
 
-    ```bash
-    git fetch origin
-    git fetch upstream
-    ```
+   ```shell
+   git fetch origin
+   git fetch upstream
+   ```
 
-    This makes sure your local repository is up to date before you start making changes.
+   This makes sure your local repository is up to date before you start making changes.
 
-    {{< note >}}
-    This workflow is different than the [Kubernetes Community GitHub Workflow](https://github.com/kubernetes/community/blob/master/contributors/guide/github-workflow.md). You do not need to merge your local copy of `main` with `upstream/main` before pushing updates to your fork.
-    {{< /note >}}
+   {{< note >}}
+   This workflow is different than the
+   [Kubernetes Community GitHub Workflow](https://github.com/kubernetes/community/blob/master/contributors/guide/github-workflow.md).
+   You do not need to merge your local copy of `main` with `upstream/main` before pushing updates
+   to your fork.
+   {{< /note >}}
 
 ### Create a branch
 
 1. Decide which branch base to your work on:
 
-  - For improvements to existing content, use `upstream/main`.
-  - For new content about existing features, use `upstream/main`.
-  - For localized content, use the localization's conventions. For more information, see [localizing Kubernetes documentation](/docs/contribute/localization/).
-  - For new features in an upcoming Kubernetes release, use the feature branch. For more information, see [documenting for a release](/docs/contribute/new-content/new-features/).
-  - For long-running efforts that multiple SIG Docs contributors collaborate on,
-    like content reorganization, use a specific feature branch created for that
-    effort.
+   - For improvements to existing content, use `upstream/main`.
+   - For new content about existing features, use `upstream/main`.
+   - For localized content, use the localization's conventions. For more information, see
+     [localizing Kubernetes documentation](/docs/contribute/localization/).
+   - For new features in an upcoming Kubernetes release, use the feature branch. For more
+     information, see [documenting for a release](/docs/contribute/new-content/new-features/).
+   - For long-running efforts that multiple SIG Docs contributors collaborate on,
+     like content reorganization, use a specific feature branch created for that effort.
 
-    If you need help choosing a branch, ask in the `#sig-docs` Slack channel.
+   If you need help choosing a branch, ask in the `#sig-docs` Slack channel.
 
-2. Create a new branch based on the branch identified in step 1. This example assumes the base branch is `upstream/main`:
+1. Create a new branch based on the branch identified in step 1. This example assumes the base
+   branch is `upstream/main`:
 
-    ```bash
-    git checkout -b <my_new_branch> upstream/main
-    ```
+   ```shell
+   git checkout -b <my_new_branch> upstream/main
+   ```
 
-3.  Make your changes using a text editor.
+1. Make your changes using a text editor.
 
 At any time, use the `git status` command to see what files you've changed.
 
@@ -170,167 +244,202 @@ When you are ready to submit a pull request, commit your changes.
 
 1. In your local repository, check which files you need to commit:
 
-    ```bash
-    git status
-    ```
+   ```shell
+   git status
+   ```
 
-    Output is similar to:
+   Output is similar to:
 
-    ```bash
-    On branch <my_new_branch>
-    Your branch is up to date with 'origin/<my_new_branch>'.
+   ```none
+   On branch <my_new_branch>
+   Your branch is up to date with 'origin/<my_new_branch>'.
 
-    Changes not staged for commit:
-    (use "git add <file>..." to update what will be committed)
-    (use "git checkout -- <file>..." to discard changes in working directory)
+   Changes not staged for commit:
+   (use "git add <file>..." to update what will be committed)
+   (use "git checkout -- <file>..." to discard changes in working directory)
 
-    modified:   content/en/docs/contribute/new-content/contributing-content.md
+   modified:   content/en/docs/contribute/new-content/contributing-content.md
 
-    no changes added to commit (use "git add" and/or "git commit -a")
-    ```
+   no changes added to commit (use "git add" and/or "git commit -a")
+   ```
 
-2. Add the files listed under **Changes not staged for commit** to the commit:
+1. Add the files listed under **Changes not staged for commit** to the commit:
 
-    ```bash
-    git add <your_file_name>
-    ```
+   ```shell
+   git add <your_file_name>
+   ```
 
-    Repeat this for each file.
+   Repeat this for each file.
 
-3.  After adding all the files, create a commit:
+1. After adding all the files, create a commit:
 
-    ```bash
-    git commit -m "Your commit message"
-    ```
+   ```shell
+   git commit -m "Your commit message"
+   ```
 
-    {{< note >}}
-    Do not use any [GitHub Keywords](https://help.github.com/en/github/managing-your-work-on-github/linking-a-pull-request-to-an-issue#linking-a-pull-request-to-an-issue-using-a-keyword) in your commit message. You can add those to the pull request
-    description later.
-    {{< /note >}}
+   {{< note >}}
+   Do not use any [GitHub Keywords](https://help.github.com/en/github/managing-your-work-on-github/linking-a-pull-request-to-an-issue#linking-a-pull-request-to-an-issue-using-a-keyword)
+   in your commit message. You can add those to the pull request
+   description later.
+   {{< /note >}}
 
-4. Push your local branch and its new commit to your remote fork:
+1. Push your local branch and its new commit to your remote fork:
 
-    ```bash
-    git push origin <my_new_branch>
-    ```
+   ```shell
+   git push origin <my_new_branch>
+   ```
 
 ### Preview your changes locally {#preview-locally}
 
-It's a good idea to preview your changes locally before pushing them or opening a pull request. A preview lets you catch build errors or markdown formatting problems.
+It's a good idea to preview your changes locally before pushing them or opening a pull request.
+A preview lets you catch build errors or markdown formatting problems.
 
-You can either build the website's container image or run Hugo locally. Building the container image is slower but displays [Hugo shortcodes](/docs/contribute/style/hugo-shortcodes/), which can be useful for debugging.
+You can either build the website's container image or run Hugo locally. Building the container
+image is slower but displays [Hugo shortcodes](/docs/contribute/style/hugo-shortcodes/), which can
+be useful for debugging.
 
 {{< tabs name="tab_with_hugo" >}}
 {{% tab name="Hugo in a container" %}}
 
 {{< note >}}
-The commands below use Docker as default container engine. Set the `CONTAINER_ENGINE` environment variable to override this behaviour.
+The commands below use Docker as default container engine. Set the `CONTAINER_ENGINE` environment
+variable to override this behaviour.
 {{< /note >}}
 
-1.  Build the image locally:
+1. Build the container image locally  
+   _You only need this step if you are testing a change to the Hugo tool itself_
 
-      ```bash
-      # Use docker (default)
-      make container-image
+   ```shell
+   # Run this in a terminal (if required)
+   make container-image
+   ```
 
-      ### OR ###
+1. Start Hugo in a container:
 
-      # Use podman
-      CONTAINER_ENGINE=podman make container-image
-      ```
+   ```shell
+   # Run this in a terminal
+   make container-serve
+   ```
 
-2. After building the `kubernetes-hugo` image locally, build and serve the site:
+1. In a web browser, navigate to `https://localhost:1313`. Hugo watches the
+   changes and rebuilds the site as needed.
 
-      ```bash
-      # Use docker (default)
-      make container-serve
-
-      ### OR ###
-
-      # Use podman
-      CONTAINER_ENGINE=podman make container-serve
-      ```
-
-3.  In a web browser, navigate to `https://localhost:1313`. Hugo watches the
-    changes and rebuilds the site as needed.
-
-4.  To stop the local Hugo instance, go back to the terminal and type `Ctrl+C`,
-    or close the terminal window.
+1. To stop the local Hugo instance, go back to the terminal and type `Ctrl+C`,
+   or close the terminal window.
 
 {{% /tab %}}
 {{% tab name="Hugo on the command line" %}}
 
 Alternately, install and use the `hugo` command on your computer:
 
-1.  Install the [Hugo](https://gohugo.io/getting-started/installing/) version specified in [`website/netlify.toml`](https://raw.githubusercontent.com/kubernetes/website/main/netlify.toml).
+1. Install the [Hugo](https://gohugo.io/getting-started/installing/) version specified in
+   [`website/netlify.toml`](https://raw.githubusercontent.com/kubernetes/website/main/netlify.toml).
 
-2.  If you have not updated your website repository, the `website/themes/docsy` directory is empty.
-    The site cannot build without a local copy of the theme. To update the website theme, run:
+1. If you have not updated your website repository, the `website/themes/docsy` directory is empty.
+   The site cannot build without a local copy of the theme. To update the website theme, run:
 
-    ```bash
-    git submodule update --init --recursive --depth 1
-    ```
+   ```shell
+   git submodule update --init --recursive --depth 1
+   ```
 
-3.  In a terminal, go to your Kubernetes website repository and start the Hugo server:
+1. In a terminal, go to your Kubernetes website repository and start the Hugo server:
 
-      ```bash
-      cd <path_to_your_repo>/website
-      hugo server --buildFuture
-      ```
+   ```shell
+   cd <path_to_your_repo>/website
+   hugo server --buildFuture
+   ```
 
-4.  In a web browser, navigate to `https://localhost:1313`. Hugo watches the
-    changes and rebuilds the site as needed.
+1. In a web browser, navigate to `https://localhost:1313`. Hugo watches the
+   changes and rebuilds the site as needed.
 
-5.  To stop the local Hugo instance, go back to the terminal and type `Ctrl+C`,
-    or close the terminal window.
+1. To stop the local Hugo instance, go back to the terminal and type `Ctrl+C`,
+   or close the terminal window.
 
 {{% /tab %}}
 {{< /tabs >}}
 
 ### Open a pull request from your fork to kubernetes/website {#open-a-pr}
 
+Figure 3 shows the steps to open a PR from your fork to the K8s/website. The details follow.
+
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
+
+{{< mermaid >}}
+flowchart LR
+subgraph first[ ]
+direction TB
+1[1. Go to K8s/website repository] --> 2[2. Select New Pull Request]
+2 --> 3[3. Select compare across forks]
+3 --> 4[4. Select your fork from<br>head repository drop-down menu]
+end
+subgraph second [ ]
+direction TB
+5[5. Select your branch from<br>the compare drop-down menu] --> 6[6. Select Create Pull Request]
+6 --> 7[7. Add a description<br>to your PR]
+7 --> 8[8. Select Create pull request]
+end
+
+first --> second
+
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+class 1,2,3,4,5,6,7,8 grey
+class first,second white
+{{</ mermaid >}}
+
+Figure 3. Steps to open a PR from your fork to the K8s/website.
+
 1. In a web browser, go to the [`kubernetes/website`](https://github.com/kubernetes/website/) repository.
-2. Select **New Pull Request**.
-3. Select **compare across forks**.
-4. From the **head repository** drop-down menu, select your fork.
-5. From the **compare** drop-down menu, select your branch.
-6. Select **Create Pull Request**.
-7. Add a description for your pull request:
+1. Select **New Pull Request**.
+1. Select **compare across forks**.
+1. From the **head repository** drop-down menu, select your fork.
+1. From the **compare** drop-down menu, select your branch.
+1. Select **Create Pull Request**.
+1. Add a description for your pull request:
+
     - **Title** (50 characters or less): Summarize the intent of the change.
     - **Description**: Describe the change in more detail.
-      - If there is a related GitHub issue, include `Fixes #12345` or `Closes #12345` in the description. GitHub's automation closes the mentioned issue after merging the PR if used. If there are other related PRs, link those as well.
-      - If you want advice on something specific, include any questions you'd like reviewers to think about in your description.
 
-8. Select the **Create pull request** button.
+      - If there is a related GitHub issue, include `Fixes #12345` or `Closes #12345` in the
+        description. GitHub's automation closes the mentioned issue after merging the PR if used.
+        If there are other related PRs, link those as well.
+      - If you want advice on something specific, include any questions you'd like reviewers to
+        think about in your description.
 
-  Congratulations! Your pull request is available in [Pull requests](https://github.com/kubernetes/website/pulls).
+1. Select the **Create pull request** button.
 
+Congratulations! Your pull request is available in [Pull requests](https://github.com/kubernetes/website/pulls).
 
-After opening a PR, GitHub runs automated tests and tries to deploy a preview using [Netlify](https://www.netlify.com/).
+After opening a PR, GitHub runs automated tests and tries to deploy a preview using
+[Netlify](https://www.netlify.com/).
 
-  - If the Netlify build fails, select **Details** for more information.
-  - If the Netlify build succeeds, select **Details** opens a staged version of the Kubernetes website with your changes applied. This is how reviewers check your changes.
+- If the Netlify build fails, select **Details** for more information.
+- If the Netlify build succeeds, select **Details** opens a staged version of the Kubernetes
+  website with your changes applied. This is how reviewers check your changes.
 
-GitHub also automatically assigns labels to a PR, to help reviewers. You can add them too, if needed. For more information, see [Adding and removing issue labels](/docs/contribute/review/for-approvers/#adding-and-removing-issue-labels).
+GitHub also automatically assigns labels to a PR, to help reviewers. You can add them too, if
+needed. For more information, see [Adding and removing issue labels](/docs/contribute/review/for-approvers/#adding-and-removing-issue-labels).
 
 ### Addressing feedback locally
 
 1. After making your changes, amend your previous commit:
 
-    ```bash
-    git commit -a --amend
-    ```
+   ```shell
+   git commit -a --amend
+   ```
 
-    - `-a`: commits all changes
-    - `--amend`: amends the previous commit, rather than creating a new one
+   - `-a`: commits all changes
+   - `--amend`: amends the previous commit, rather than creating a new one
 
-2. Update your commit message if needed.
+1. Update your commit message if needed.
 
-3. Use `git push origin <my_new_branch>` to push your changes and re-run the Netlify tests.
+1. Use `git push origin <my_new_branch>` to push your changes and re-run the Netlify tests.
 
-    {{< note >}}
-      If you use `git commit -m` instead of amending, you must [squash your commits](#squashing-commits) before merging.
-    {{< /note >}}
+   {{< note >}}
+   If you use `git commit -m` instead of amending, you must [squash your commits](#squashing-commits)
+   before merging.
+   {{< /note >}}
 
 #### Changes from reviewers
 
@@ -338,90 +447,97 @@ Sometimes reviewers commit to your pull request. Before making any other changes
 
 1. Fetch commits from your remote fork and rebase your working branch:
 
-    ```bash
-    git fetch origin
-    git rebase origin/<your-branch-name>
-    ```
+   ```shell
+   git fetch origin
+   git rebase origin/<your-branch-name>
+   ```
 
-2. After rebasing, force-push new changes to your fork:
+1. After rebasing, force-push new changes to your fork:
 
-    ```bash
-    git push --force-with-lease origin <your-branch-name>
-    ```
+   ```shell
+   git push --force-with-lease origin <your-branch-name>
+   ```
 
 #### Merge conflicts and rebasing
 
 {{< note >}}
-For more information, see [Git Branching - Basic Branching and Merging](https://git-scm.com/book/en/v2/Git-Branching-Basic-Branching-and-Merging#_basic_merge_conflicts), [Advanced Merging](https://git-scm.com/book/en/v2/Git-Tools-Advanced-Merging), or ask in the `#sig-docs` Slack channel for help.
+For more information, see [Git Branching - Basic Branching and Merging](https://git-scm.com/book/en/v2/Git-Branching-Basic-Branching-and-Merging#_basic_merge_conflicts),
+[Advanced Merging](https://git-scm.com/book/en/v2/Git-Tools-Advanced-Merging), or ask in the
+`#sig-docs` Slack channel for help.
 {{< /note >}}
 
-If another contributor commits changes to the same file in another PR, it can create a merge conflict. You must resolve all merge conflicts in your PR.
+If another contributor commits changes to the same file in another PR, it can create a merge
+conflict. You must resolve all merge conflicts in your PR.
 
 1. Update your fork and rebase your local branch:
 
-    ```bash
-    git fetch origin
-    git rebase origin/<your-branch-name>
-    ```
+   ```shell
+   git fetch origin
+   git rebase origin/<your-branch-name>
+   ```
 
-    Then force-push the changes to your fork:
+   Then force-push the changes to your fork:
 
-    ```bash
-    git push --force-with-lease origin <your-branch-name>
-    ```
+   ```shell
+   git push --force-with-lease origin <your-branch-name>
+   ```
 
-2. Fetch changes from `kubernetes/website`'s `upstream/main` and rebase your branch:
+1. Fetch changes from `kubernetes/website`'s `upstream/main` and rebase your branch:
 
-    ```bash
-    git fetch upstream
-    git rebase upstream/main
-    ```
+   ```shell
+   git fetch upstream
+   git rebase upstream/main
+   ```
 
-3. Inspect the results of the rebase:
+1. Inspect the results of the rebase:
 
-    ```bash
-    git status
-    ```
+   ```shell
+   git status
+   ```
 
-  This results in a number of files marked as conflicted.
+   This results in a number of files marked as conflicted.
 
-4. Open each conflicted file and look for the conflict markers: `>>>`, `<<<`, and `===`. Resolve the conflict and delete the conflict marker.
+1. Open each conflicted file and look for the conflict markers: `>>>`, `<<<`, and `===`.
+   Resolve the conflict and delete the conflict marker.
 
-    {{< note >}}
-    For more information, see [How conflicts are presented](https://git-scm.com/docs/git-merge#_how_conflicts_are_presented).
-    {{< /note >}}
+   {{< note >}}
+   For more information, see [How conflicts are presented](https://git-scm.com/docs/git-merge#_how_conflicts_are_presented).
+   {{< /note >}}
 
-5. Add the files to the changeset:
+1. Add the files to the changeset:
 
-    ```bash
-    git add <filename>
-    ```
-6.  Continue the rebase:
+   ```shell
+   git add <filename>
+   ```
 
-    ```bash
-    git rebase --continue
-    ```
+1. Continue the rebase:
 
-7.  Repeat steps 2 to 5 as needed.
+   ```shell
+   git rebase --continue
+   ```
 
-    After applying all commits, the `git status` command shows that the rebase is complete.
+1. Repeat steps 2 to 5 as needed.
 
-8. Force-push the branch to your fork:
+   After applying all commits, the `git status` command shows that the rebase is complete.
 
-    ```bash
-    git push --force-with-lease origin <your-branch-name>
-    ```
+1. Force-push the branch to your fork:
 
-    The pull request no longer shows any conflicts.
+   ```shell
+   git push --force-with-lease origin <your-branch-name>
+   ```
 
+   The pull request no longer shows any conflicts.
 
 ### Squashing commits
 
 {{< note >}}
-For more information, see [Git Tools - Rewriting History](https://git-scm.com/book/en/v2/Git-Tools-Rewriting-History), or ask in the `#sig-docs` Slack channel for help.
+For more information, see [Git Tools - Rewriting History](https://git-scm.com/book/en/v2/Git-Tools-Rewriting-History),
+or ask in the `#sig-docs` Slack channel for help.
 {{< /note >}}
 
-If your PR has multiple commits, you must squash them into a single commit before merging your PR. You can check the number of commits on your PR's **Commits** tab or by running the `git log` command locally.
+If your PR has multiple commits, you must squash them into a single commit before merging your PR.
+You can check the number of commits on your PR's **Commits** tab or by running the `git log`
+command locally.
 
 {{< note >}}
 This topic assumes `vim` as the command line text editor.
@@ -429,82 +545,83 @@ This topic assumes `vim` as the command line text editor.
 
 1. Start an interactive rebase:
 
-    ```bash
-    git rebase -i HEAD~<number_of_commits_in_branch>
-    ```
+   ```shell
+   git rebase -i HEAD~<number_of_commits_in_branch>
+   ```
 
-    Squashing commits is a form of rebasing. The `-i` switch tells git you want to rebase interactively. `HEAD~<number_of_commits_in_branch` indicates how many commits to look at for the rebase.
+   Squashing commits is a form of rebasing. The `-i` switch tells git you want to rebase interactively.
+   `HEAD~<number_of_commits_in_branch` indicates how many commits to look at for the rebase.
 
-    Output is similar to:
+   Output is similar to:
 
-    ```bash
-    pick d875112ca Original commit
-    pick 4fa167b80 Address feedback 1
-    pick 7d54e15ee Address feedback 2
+   ```none
+   pick d875112ca Original commit
+   pick 4fa167b80 Address feedback 1
+   pick 7d54e15ee Address feedback 2
 
-    # Rebase 3d18sf680..7d54e15ee onto 3d183f680 (3 commands)
+   # Rebase 3d18sf680..7d54e15ee onto 3d183f680 (3 commands)
 
-    ...
+   ...
 
-    # These lines can be re-ordered; they are executed from top to bottom.
-    ```
+   # These lines can be re-ordered; they are executed from top to bottom.
+   ```
 
-    The first section of the output lists the commits in the rebase. The second section lists the options for each commit. Changing the word `pick` changes the status of the commit once the rebase is complete.
+   The first section of the output lists the commits in the rebase. The second section lists the
+   options for each commit. Changing the word `pick` changes the status of the commit once the rebase
+   is complete.
 
-    For the purposes of rebasing, focus on `squash` and `pick`.
+   For the purposes of rebasing, focus on `squash` and `pick`.
 
-    {{< note >}}
-    For more information, see [Interactive Mode](https://git-scm.com/docs/git-rebase#_interactive_mode).
-    {{< /note >}}
+   {{< note >}}
+   For more information, see [Interactive Mode](https://git-scm.com/docs/git-rebase#_interactive_mode).
+   {{< /note >}}
 
-2. Start editing the file.
+1. Start editing the file.
 
-    Change the original text:
+   Change the original text:
 
-    ```bash
-    pick d875112ca Original commit
-    pick 4fa167b80 Address feedback 1
-    pick 7d54e15ee Address feedback 2
-    ```
+   ```none
+   pick d875112ca Original commit
+   pick 4fa167b80 Address feedback 1
+   pick 7d54e15ee Address feedback 2
+   ```
 
-    To:
+   To:
 
-    ```bash
-    pick d875112ca Original commit
-    squash 4fa167b80 Address feedback 1
-    squash 7d54e15ee Address feedback 2
-    ```
+   ```none
+   pick d875112ca Original commit
+   squash 4fa167b80 Address feedback 1
+   squash 7d54e15ee Address feedback 2
+   ```
 
-    This squashes commits `4fa167b80 Address feedback 1` and `7d54e15ee Address feedback 2` into `d875112ca Original commit`, leaving only `d875112ca Original commit` as a part of the timeline.
+   This squashes commits `4fa167b80 Address feedback 1` and `7d54e15ee Address feedback 2` into
+   `d875112ca Original commit`, leaving only `d875112ca Original commit` as a part of the timeline.
 
-3. Save and exit your file.
+1. Save and exit your file.
 
-4. Push your squashed commit:
+1. Push your squashed commit:
 
-    ```bash
-    git push --force-with-lease origin <branch_name>
-    ```
+   ```shell
+   git push --force-with-lease origin <branch_name>
+   ```
 
 ## Contribute to other repos
 
-The [Kubernetes project](https://github.com/kubernetes) contains 50+ repositories. Many of these repositories contain documentation: user-facing help text, error messages, API references or code comments.
+The [Kubernetes project](https://github.com/kubernetes) contains 50+ repositories. Many of these
+repositories contain documentation: user-facing help text, error messages, API references or code
+comments.
 
-If you see text you'd like to improve, use GitHub to search all repositories in the Kubernetes organization.
-This can help you figure out where to submit your issue or PR.
-
-Each repository has its own processes and procedures. Before you file an
-issue or submit a PR, read that repository's `README.md`, `CONTRIBUTING.md`, and
-`code-of-conduct.md`, if they exist.
-
-Most repositories use issue and PR templates. Have a look through some open
-issues and PRs to get a feel for that team's processes. Make sure to fill out
-the templates with as much detail as possible when you file issues or PRs.
+If you see text you'd like to improve, use GitHub to search all repositories in the Kubernetes
+organization. This can help you figure out where to submit your issue or PR.
 
+Each repository has its own processes and procedures. Before you file an issue or submit a PR,
+read that repository's `README.md`, `CONTRIBUTING.md`, and `code-of-conduct.md`, if they exist.
 
+Most repositories use issue and PR templates. Have a look through some open issues and PRs to get
+a feel for that team's processes. Make sure to fill out the templates with as much detail as
+possible when you file issues or PRs.
 
 ## {{% heading "whatsnext" %}}
 
-
 - Read [Reviewing](/docs/contribute/review/reviewing-prs) to learn more about the review process.
 
-
diff --git a/content/en/docs/contribute/new-content/overview.md b/content/en/docs/contribute/new-content/overview.md
deleted file mode 100644
index 8b4da4970a..0000000000
--- a/content/en/docs/contribute/new-content/overview.md
+++ /dev/null
@@ -1,65 +0,0 @@
----
-title: Contributing new content overview
-linktitle: Overview
-content_type: concept
-main_menu: true
-weight: 5
----
-
-<!-- overview -->
-
-This section contains information you should know before contributing new content.
-
-
-
-
-<!-- body -->
-
-## Contributing basics
-
-- Write Kubernetes documentation in Markdown and build the Kubernetes site using [Hugo](https://gohugo.io/).
-- The source is in [GitHub](https://github.com/kubernetes/website). You can find Kubernetes documentation at `/content/en/docs/`. Some of the reference documentation is automatically generated from scripts in the `update-imported-docs/` directory.
-- [Page content types](/docs/contribute/style/page-content-types/) describe the presentation of documentation content in Hugo.
-- In addition to the standard Hugo shortcodes, we use a number of
-  [custom Hugo shortcodes](/docs/contribute/style/hugo-shortcodes/) in our documentation to control the presentation of content.
-- Documentation source is available in multiple languages in `/content/`. Each
-  language has its own folder with a two-letter code determined by the
-  [ISO 639-1 standard](https://www.loc.gov/standards/iso639-2/php/code_list.php). For
-  example, English documentation source is stored in `/content/en/docs/`.
-- For more information about contributing to documentation in multiple languages or starting a new translation, see [localization](/docs/contribute/localization).
-
-## Before you begin {#before-you-begin}
-
-### Sign the CNCF CLA {#sign-the-cla}
-
-All Kubernetes contributors **must** read the [Contributor guide](https://github.com/kubernetes/community/blob/master/contributors/guide/README.md) and [sign the Contributor License Agreement (CLA)](https://github.com/kubernetes/community/blob/master/CLA.md).
-
-Pull requests from contributors who haven't signed the CLA fail the automated tests. The name and email you provide must match those found in your `git config`, and your git name and email must match those used for the CNCF CLA.
-
-### Choose which Git branch to use
-
-When opening a pull request, you need to know in advance which branch to base your work on.
-
-Scenario | Branch
-:---------|:------------
-Existing or new English language content for the current release | `main`
-Content for a feature change release | The branch which corresponds to the major and minor version the feature change is in, using the pattern `dev-<version>`. For example, if a feature changes in the `v{{< skew nextMinorVersion >}}` release, then add documentation changes to the ``dev-{{< skew nextMinorVersion >}}`` branch.
-Content in other languages (localizations) | Use the localization's convention. See the [Localization branching strategy](/docs/contribute/localization/#branching-strategy) for more information.
-
-
-If you're still not sure which branch to choose, ask in `#sig-docs` on Slack.
-
-{{< note >}}
-If you already submitted your pull request and you know that the base branch
-was wrong, you (and only you, the submitter) can change it.
-{{< /note >}}
-
-### Languages per PR
-
-Limit pull requests to one language per PR. If you need to make an identical change to the same code sample in multiple languages, open a separate PR for each language.
-
-## Tools for contributors
-
-The [doc contributors tools](https://github.com/kubernetes/website/tree/main/content/en/docs/doc-contributor-tools) directory in the `kubernetes/website` repository contains tools to help your contribution journey go more smoothly.
-
-
diff --git a/content/en/docs/contribute/participate/_index.md b/content/en/docs/contribute/participate/_index.md
index ff4714f803..b76423eded 100644
--- a/content/en/docs/contribute/participate/_index.md
+++ b/content/en/docs/contribute/participate/_index.md
@@ -115,6 +115,6 @@ SIG Docs approvers. Here's how it works.
 
 For more information about contributing to the Kubernetes documentation, see:
 
-- [Contributing new content](/docs/contribute/new-content/overview/)
+- [Contributing new content](/docs/contribute/new-content/)
 - [Reviewing content](/docs/contribute/review/reviewing-prs)
 - [Documentation style guide](/docs/contribute/style/)
diff --git a/content/en/docs/contribute/participate/pr-wranglers.md b/content/en/docs/contribute/participate/pr-wranglers.md
index 727a8a81d5..ee553c64d6 100644
--- a/content/en/docs/contribute/participate/pr-wranglers.md
+++ b/content/en/docs/contribute/participate/pr-wranglers.md
@@ -26,9 +26,16 @@ Each day in a week-long shift as PR Wrangler:
     - If you need to verify content, comment on the PR and request more details.
     - Assign relevant `sig/` label(s).
     - If needed, assign reviewers from the `reviewers:` block in the file's front matter.
+    - You can also tag a [SIG](https://github.com/kubernetes/community/blob/master/sig-list.md) for a review by commenting `@kubernetes/<sig>-pr-reviews` on the PR.
 - Use the `/approve` comment to approve a PR for merging. Merge the PR when ready.
     - PRs should have a `/lgtm` comment from another member before merging.
-    - Consider accepting technically accurate content that doesn't meet the [style guidelines](/docs/contribute/style/style-guide/). Open a new issue with the label `good first issue` to address style concerns.
+    - Consider accepting technically accurate content that doesn't meet the
+      [style guidelines](/docs/contribute/style/style-guide/). As you approve the change,
+      open a new issue to address the style concern. You can usually write these style fix
+      issues as [good first issues](https://kubernetes.dev/docs/guide/help-wanted/#good-first-issue).
+    - Using style fixups as good first issues is a good way to ensure a supply of easier tasks
+      to help onboard new contributors.
+
 
 ### Helpful GitHub queries for wranglers
 
@@ -77,6 +84,20 @@ To close a pull request, leave a `/close` comment on the PR.
 
 {{< note >}}
 
-The [`fejta-bot`](https://github.com/fejta-bot) bot marks issues as stale after 90 days of inactivity. After 30 more days it marks issues as rotten and closes them.  PR wranglers should close issues after 14-30 days of inactivity.
+The [`k8s-triage-robot`](https://github.com/k8s-triage-robot) bot marks issues as stale after 90 days of inactivity. After 30 more days it marks issues as rotten and closes them.  PR wranglers should close issues after 14-30 days of inactivity.
 
 {{< /note >}}
+
+## PR Wrangler shadow program
+
+In late 2021, SIG Docs introduced the PR Wrangler Shadow Program. The program was introduced to help new contributors understand the PR wrangling process.
+
+### Become a shadow
+
+- If you are interested in shadowing as a PR wrangler, please visit the [PR Wranglers Wiki page](https://github.com/kubernetes/website/wiki/PR-Wranglers) to see the PR wrangling schedule for this year and sign up.
+
+- Kubernetes org members can edit the [PR Wranglers Wiki page](https://github.com/kubernetes/website/wiki/PR-Wranglers) and sign up to shadow an existing PR Wrangler for a week.
+
+- Others can reach out on the [#sig-docs Slack channel](https://kubernetes.slack.com/messages/sig-docs) for requesting to shadow an assigned PR Wrangler for a specific week. Feel free to reach out to Brad Topol (`@bradtopol`) or one of the [SIG Docs co-chairs/leads](https://github.com/kubernetes/community/tree/master/sig-docs#leadership).
+
+- Once you've signed up to shadow a PR Wrangler, introduce yourself to the PR Wrangler on the [Kubernetes Slack](https://slack.k8s.io).
diff --git a/content/en/docs/contribute/participate/roles-and-responsibilities.md b/content/en/docs/contribute/participate/roles-and-responsibilities.md
index e59ffe4fe3..10d6072ce3 100644
--- a/content/en/docs/contribute/participate/roles-and-responsibilities.md
+++ b/content/en/docs/contribute/participate/roles-and-responsibilities.md
@@ -32,7 +32,7 @@ Anyone can:
 - Suggest improvements on [Slack](https://slack.k8s.io/) or the
   [SIG docs mailing list](https://groups.google.com/forum/#!forum/kubernetes-sig-docs).
 
-After [signing the CLA](/docs/contribute/new-content/overview/#sign-the-cla), anyone can also:
+After [signing the CLA](https://github.com/kubernetes/community/blob/master/CLA.md), anyone can also:
 
 - Open a pull request to improve existing content, add new content, or write a blog post or case study
 - Create diagrams, graphics assets, and embeddable screencasts and videos
@@ -147,7 +147,7 @@ separately for reviewer status in SIG Docs.
 To apply:
 
 1. Open a pull request that adds your GitHub user name to a section of the
-   [OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS) file
+   [OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS_ALIASES) file
    in the `kubernetes/website` repository.
 
    {{< note >}}
@@ -219,7 +219,7 @@ separately for approver status in SIG Docs.
 To apply:
 
 1. Open a pull request adding yourself to a section of the
-   [OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS)
+   [OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS_ALIASES)
    file in the `kubernetes/website` repository.
 
     {{< note >}}
diff --git a/content/en/docs/contribute/review/for-approvers.md b/content/en/docs/contribute/review/for-approvers.md
index 5c781ec53f..5d0606d60d 100644
--- a/content/en/docs/contribute/review/for-approvers.md
+++ b/content/en/docs/contribute/review/for-approvers.md
@@ -79,7 +79,7 @@ The most common prow commands reviewers and approvers use are:
 {{< table caption="Prow commands for reviewing" >}}
 Prow Command | Role Restrictions | Description
 :------------|:------------------|:-----------
-`/lgtm` | Anyone, but triggers automation if a Reviewer or Approver uses it | Signals that you've finished reviewing a PR and are satisfied with the changes.
+`/lgtm` | Organization members | Signals that you've finished reviewing a PR and are satisfied with the changes.
 `/approve` | Approvers | Approves a PR for merging.
 `/assign` | Reviewers or Approvers | Assigns a person to review or approve a PR
 `/close` | Reviewers or Approvers | Closes an issue or PR.
@@ -121,7 +121,7 @@ finds issues that might need triage.
   `priority/important-longterm` | Do this within 6 months.
   `priority/backlog` | Deferrable indefinitely. Do when resources are available.
   `priority/awaiting-more-evidence` | Placeholder for a potentially good issue so it doesn't get lost.
-  `help` or `good first issue` | Suitable for someone with very little Kubernetes or SIG Docs experience. See [Help Wanted and Good First Issue Labels](https://github.com/kubernetes/community/blob/master/contributors/guide/help-wanted.md) for more information.
+  `help` or `good first issue` | Suitable for someone with very little Kubernetes or SIG Docs experience. See [Help Wanted and Good First Issue Labels](https://kubernetes.dev/docs/guide/help-wanted/) for more information.
 
   {{< /table >}}
 
@@ -141,7 +141,7 @@ To add a label, leave a comment in one of the following formats:
 To remove a label, leave a comment in one of the following formats:
 
 - `/remove-<label-to-remove>` (for example, `/remove-help`)
-- `/remove-<label-category> <label-to-remove>` (for example, `/remove-triage needs-information`)`
+- `/remove-<label-category> <label-to-remove>` (for example, `/remove-triage needs-information`)
 
 In both cases, the label must already exist. If you try to add a label that does not exist, the command is
 silently ignored.
@@ -181,7 +181,7 @@ If the dead link issue is in the API or `kubectl` documentation, assign them `/p
 
 ### Blog issues
 
-We expect [Kubernetes Blog](https://kubernetes.io/blog/) entries to become
+We expect [Kubernetes Blog](/blog/) entries to become
 outdated over time. Therefore, we only maintain blog entries less than a year old.
 If an issue is related to a blog entry that is more than one year old,
 close the issue without fixing.
diff --git a/content/en/docs/contribute/review/reviewing-prs.md b/content/en/docs/contribute/review/reviewing-prs.md
index ff6ef9d709..41aaecea17 100644
--- a/content/en/docs/contribute/review/reviewing-prs.md
+++ b/content/en/docs/contribute/review/reviewing-prs.md
@@ -7,11 +7,11 @@ weight: 10
 
 <!-- overview -->
 
-Anyone can review a documentation pull request. Visit the [pull requests](https://github.com/kubernetes/website/pulls) section in the Kubernetes website repository to see open pull requests.
+Anyone can review a documentation pull request. Visit the [pull requests](https://github.com/kubernetes/website/pulls)
+section in the Kubernetes website repository to see open pull requests.
 
-Reviewing documentation pull requests is a
-great way to introduce yourself to the Kubernetes community.
-It helps you learn the code base and build trust with other contributors.
+Reviewing documentation pull requests is a great way to introduce yourself to the Kubernetes
+community.  It helps you learn the code base and build trust with other contributors.
 
 Before reviewing, it's a good idea to:
 
@@ -27,7 +27,8 @@ Before reviewing, it's a good idea to:
 
 Before you start a review:
 
-- Read the [CNCF Code of Conduct](https://github.com/cncf/foundation/blob/master/code-of-conduct.md) and ensure that you abide by it at all times.
+- Read the [CNCF Code of Conduct](https://github.com/cncf/foundation/blob/main/code-of-conduct.md)
+  and ensure that you abide by it at all times.
 - Be polite, considerate, and helpful.
 - Comment on positive aspects of PRs as well as changes.
 - Be empathetic and mindful of how your review may be received.
@@ -36,33 +37,85 @@ Before you start a review:
 
 ## Review process
 
-In general, review pull requests for content and style in English.
+In general, review pull requests for content and style in English. Figure 1 outlines the steps for
+the review process. The details for each step follow.
 
-1.  Go to
-    [https://github.com/kubernetes/website/pulls](https://github.com/kubernetes/website/pulls).
-    You see a list of every open pull request against the Kubernetes website and
-    docs.
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
 
-2.  Filter the open PRs using one or all of the following labels:
-    - `cncf-cla: yes` (Recommended): PRs submitted by contributors who have not signed the CLA cannot be merged. See [Sign the CLA](/docs/contribute/new-content/overview/#sign-the-cla) for more information.
-    - `language/en` (Recommended): Filters for english language PRs only.
-    - `size/<size>`: filters for PRs of a certain size. If you're new, start with smaller PRs.
+{{< mermaid >}}
+flowchart LR
+    subgraph fourth[Start review]
+    direction TB
+    S[ ] -.-
+    M[add comments] --> N[review changes]
+    N --> O[new contributors should<br>choose Comment]
+    end
+    subgraph third[Select PR]
+    direction TB
+    T[ ] -.-
+    J[read description<br>and comments]--> K[preview changes in<br>Netlify preview build]
+    end
+ 
+  A[Review open PR list]--> B[Filter open PRs<br>by label]
+  B --> third --> fourth
+     
 
-    Additionally, ensure the PR isn't marked as a work in progress. PRs using the `work in progress` label are not ready for review yet.
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class A,B,J,K,M,N,O grey
+class S,T spacewhite
+class third,fourth white
+{{</ mermaid >}}
 
-3.  Once you've selected a PR to review, understand the change by:
-    - Reading the PR description to understand the changes made, and read any linked issues
-    - Reading any comments by other reviewers
-    - Clicking the **Files changed** tab to see the files and lines changed
-    - Previewing the changes in the Netlify preview build by scrolling to the PR's build check section at the bottom of the **Conversation** tab and clicking the **deploy/netlify** line's **Details** link.
+Figure 1. Review process steps.
 
-4.  Go to the **Files changed** tab to start your review.
-    1. Click on the `+` symbol  beside the line you want to comment on.
-    2. Fill in any comments you have about the line and click either **Add single comment** (if you have only one comment to make) or  **Start a review** (if you have multiple comments to make).
-    3. When finished, click **Review changes** at the top of the page. Here, you can add
-       add a summary of your review (and leave some positive comments for the contributor!),
-      approve the PR, comment or request changes as needed. New contributors should always
-      choose **Comment**.
+
+1. Go to [https://github.com/kubernetes/website/pulls](https://github.com/kubernetes/website/pulls).
+   You see a list of every open pull request against the Kubernetes website and docs.
+
+2. Filter the open PRs using one or all of the following labels:
+
+   - `cncf-cla: yes` (Recommended): PRs submitted by contributors who have not signed the CLA
+     cannot be merged. See [Sign the CLA](/docs/contribute/new-content/#sign-the-cla)
+     for more information.
+   - `language/en` (Recommended): Filters for english language PRs only.
+   - `size/<size>`: filters for PRs of a certain size. If you're new, start with smaller PRs.
+
+   Additionally, ensure the PR isn't marked as a work in progress. PRs using the `work in
+   progress` label are not ready for review yet.
+
+3. Once you've selected a PR to review, understand the change by:
+
+   - Reading the PR description to understand the changes made, and read any linked issues
+   - Reading any comments by other reviewers
+   - Clicking the **Files changed** tab to see the files and lines changed
+   - Previewing the changes in the Netlify preview build by scrolling to the PR's build check
+     section at the bottom of the **Conversation** tab.
+     Here's a screenshot (this shows GitHub's desktop site; if you're reviewing
+     on a tablet or smartphone device, the GitHub web UI is slightly different):
+     {{< figure src="/images/docs/github_netlify_deploy_preview.png" alt="GitHub pull request details including link to Netlify preview" >}}
+     To open the preview, click on the  **Details** link of the **deploy/netlify** line in the
+     list of checks.
+
+4. Go to the **Files changed** tab to start your review.
+
+   1. Click on the `+` symbol  beside the line you want to comment on.
+   1. Fill in any comments you have about the line and click either **Add single comment**
+      (if you have only one comment to make) or **Start a review** (if you have multiple comments to make).
+   1. When finished, click **Review changes** at the top of the page. Here, you can add
+      a summary of your review (and leave some positive comments for the contributor!).
+      Please always use the "Comment"
+
+     - Avoid clicking the "Request changes" button when finishing your review.
+       If you want to block a PR from being merged before some further changes are made,
+       you can leave a "/hold" comment.
+       Mention why you are setting a hold, and optionally specify the conditions under
+       which the hold can be removed by you or other reviewers.
+
+     - Avoid clicking the "Approve" button when finishing your review.
+       Leaving a "/approve" comment is recommended most of the time.
 
 ## Reviewing checklist
 
@@ -84,14 +137,22 @@ When reviewing, use the following as a starting point.
 
 ### Website
 
-- Did this PR change or remove a page title, slug/alias or anchor link? If so, are there broken links as a result of this PR? Is there another option, like changing the page title without changing the slug?
+- Did this PR change or remove a page title, slug/alias or anchor link? If so, are there broken
+  links as a result of this PR? Is there another option, like changing the page title without
+  changing the slug?
+
 - Does the PR introduce a new page? If so:
-  - Is the page using the right [page content type](/docs/contribute/style/page-content-types/) and associated Hugo shortcodes?
+
+  - Is the page using the right [page content type](/docs/contribute/style/page-content-types/)
+    and associated Hugo shortcodes?
   - Does the page appear correctly in the section's side navigation (or at all)?
   - Should the page appear on the [Docs Home](/docs/home/) listing?
-- Do the changes show up in the Netlify preview? Be particularly vigilant about lists, code blocks, tables, notes and images.
+
+- Do the changes show up in the Netlify preview? Be particularly vigilant about lists, code
+  blocks, tables, notes and images.
 
 ### Other
 
-For small issues with a PR, like typos or whitespace, prefix your comments with `nit:`.  This lets the author know the issue is non-critical.
+For small issues with a PR, like typos or whitespace, prefix your comments with `nit:`.
+This lets the author know the issue is non-critical.
 
diff --git a/content/en/docs/contribute/style/diagram-guide.md b/content/en/docs/contribute/style/diagram-guide.md
new file mode 100644
index 0000000000..ac3a4fd529
--- /dev/null
+++ b/content/en/docs/contribute/style/diagram-guide.md
@@ -0,0 +1,779 @@
+---
+title: Diagram Guide
+linktitle: Diagram guide
+content_type: concept
+weight: 15
+---
+
+<!--Overview-->
+
+This guide shows you how to create, edit and share diagrams using the Mermaid
+JavaScript library. Mermaid.js allows you to generate diagrams using a simple
+markdown-like syntax inside Markdown files. You can also use Mermaid to
+generate `.svg` or `.png` image files that you can add to your documentation.
+
+The target audience for this guide is anybody wishing to learn about Mermaid
+and/or how to create and add diagrams to Kubernetes documentation.
+
+Figure 1 outlines the topics covered in this section. 
+
+{{< mermaid >}}
+flowchart LR
+subgraph m[Mermaid.js]
+direction TB
+S[ ]-.-
+C[build<br>diagrams<br>with markdown] -->
+D[on-line<br>live editor]
+end
+A[Why are diagrams<br>useful?] --> m
+m --> N[3 x methods<br>for creating<br>diagrams]
+N --> T[Examples]
+T --> X[Styling<br>and<br>captions]
+X --> V[Tips]
+
+
+
+    classDef box fill:#fff,stroke:#000,stroke-width:1px,color:#000;
+    classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+    class A,C,D,N,X,m,T,V box
+    class S spacewhite
+
+%% you can hyperlink Mermaid diagram nodes to a URL using click statements
+
+click A "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgc3ViZ3JhcGggbVtNZXJtYWlkLmpzXVxuICAgIGRpcmVjdGlvbiBUQlxuICAgICAgICBTWyBdLS4tXG4gICAgICAgIENbYnVpbGQ8YnI-ZGlhZ3JhbXM8YnI-d2l0aCBtYXJrZG93bl0gLS0-XG4gICAgICAgIERbb24tbGluZTxicj5saXZlIGVkaXRvcl1cbiAgICBlbmRcbiAgICBBW1doeSBhcmUgZGlhZ3JhbXM8YnI-dXNlZnVsP10gLS0-IG1cbiAgICBtIC0tPiBOWzMgeCBtZXRob2RzPGJyPmZvciBjcmVhdGluZzxicj5kaWFncmFtc11cbiAgICBOIC0tPiBUW0V4YW1wbGVzXVxuICAgIFQgLS0-IFhbU3R5bGluZzxicj5hbmQ8YnI-Y2FwdGlvbnNdXG4gICAgWCAtLT4gVltUaXBzXVxuICAgIFxuIFxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzRGVmIHNwYWNld2hpdGUgZmlsbDojZmZmZmZmLHN0cm9rZTojZmZmLHN0cm9rZS13aWR0aDowcHgsY29sb3I6IzAwMFxuICAgIGNsYXNzIEEsQyxELE4sWCxtLFQsViBib3hcbiAgICBjbGFzcyBTIHNwYWNld2hpdGUiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOnRydWV9" _blank
+click C "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgc3ViZ3JhcGggbVtNZXJtYWlkLmpzXVxuICAgIGRpcmVjdGlvbiBUQlxuICAgICAgICBTWyBdLS4tXG4gICAgICAgIENbYnVpbGQ8YnI-ZGlhZ3JhbXM8YnI-d2l0aCBtYXJrZG93bl0gLS0-XG4gICAgICAgIERbb24tbGluZTxicj5saXZlIGVkaXRvcl1cbiAgICBlbmRcbiAgICBBW1doeSBhcmUgZGlhZ3JhbXM8YnI-dXNlZnVsP10gLS0-IG1cbiAgICBtIC0tPiBOWzMgeCBtZXRob2RzPGJyPmZvciBjcmVhdGluZzxicj5kaWFncmFtc11cbiAgICBOIC0tPiBUW0V4YW1wbGVzXVxuICAgIFQgLS0-IFhbU3R5bGluZzxicj5hbmQ8YnI-Y2FwdGlvbnNdXG4gICAgWCAtLT4gVltUaXBzXVxuICAgIFxuIFxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzRGVmIHNwYWNld2hpdGUgZmlsbDojZmZmZmZmLHN0cm9rZTojZmZmLHN0cm9rZS13aWR0aDowcHgsY29sb3I6IzAwMFxuICAgIGNsYXNzIEEsQyxELE4sWCxtLFQsViBib3hcbiAgICBjbGFzcyBTIHNwYWNld2hpdGUiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOnRydWV9" _blank
+click D "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgc3ViZ3JhcGggbVtNZXJtYWlkLmpzXVxuICAgIGRpcmVjdGlvbiBUQlxuICAgICAgICBTWyBdLS4tXG4gICAgICAgIENbYnVpbGQ8YnI-ZGlhZ3JhbXM8YnI-d2l0aCBtYXJrZG93bl0gLS0-XG4gICAgICAgIERbb24tbGluZTxicj5saXZlIGVkaXRvcl1cbiAgICBlbmRcbiAgICBBW1doeSBhcmUgZGlhZ3JhbXM8YnI-dXNlZnVsP10gLS0-IG1cbiAgICBtIC0tPiBOWzMgeCBtZXRob2RzPGJyPmZvciBjcmVhdGluZzxicj5kaWFncmFtc11cbiAgICBOIC0tPiBUW0V4YW1wbGVzXVxuICAgIFQgLS0-IFhbU3R5bGluZzxicj5hbmQ8YnI-Y2FwdGlvbnNdXG4gICAgWCAtLT4gVltUaXBzXVxuICAgIFxuIFxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzRGVmIHNwYWNld2hpdGUgZmlsbDojZmZmZmZmLHN0cm9rZTojZmZmLHN0cm9rZS13aWR0aDowcHgsY29sb3I6IzAwMFxuICAgIGNsYXNzIEEsQyxELE4sWCxtLFQsViBib3hcbiAgICBjbGFzcyBTIHNwYWNld2hpdGUiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOnRydWV9" _blank
+click N "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgc3ViZ3JhcGggbVtNZXJtYWlkLmpzXVxuICAgIGRpcmVjdGlvbiBUQlxuICAgICAgICBTWyBdLS4tXG4gICAgICAgIENbYnVpbGQ8YnI-ZGlhZ3JhbXM8YnI-d2l0aCBtYXJrZG93bl0gLS0-XG4gICAgICAgIERbb24tbGluZTxicj5saXZlIGVkaXRvcl1cbiAgICBlbmRcbiAgICBBW1doeSBhcmUgZGlhZ3JhbXM8YnI-dXNlZnVsP10gLS0-IG1cbiAgICBtIC0tPiBOWzMgeCBtZXRob2RzPGJyPmZvciBjcmVhdGluZzxicj5kaWFncmFtc11cbiAgICBOIC0tPiBUW0V4YW1wbGVzXVxuICAgIFQgLS0-IFhbU3R5bGluZzxicj5hbmQ8YnI-Y2FwdGlvbnNdXG4gICAgWCAtLT4gVltUaXBzXVxuICAgIFxuIFxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzRGVmIHNwYWNld2hpdGUgZmlsbDojZmZmZmZmLHN0cm9rZTojZmZmLHN0cm9rZS13aWR0aDowcHgsY29sb3I6IzAwMFxuICAgIGNsYXNzIEEsQyxELE4sWCxtLFQsViBib3hcbiAgICBjbGFzcyBTIHNwYWNld2hpdGUiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOnRydWV9" _blank
+click T "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgc3ViZ3JhcGggbVtNZXJtYWlkLmpzXVxuICAgIGRpcmVjdGlvbiBUQlxuICAgICAgICBTWyBdLS4tXG4gICAgICAgIENbYnVpbGQ8YnI-ZGlhZ3JhbXM8YnI-d2l0aCBtYXJrZG93bl0gLS0-XG4gICAgICAgIERbb24tbGluZTxicj5saXZlIGVkaXRvcl1cbiAgICBlbmRcbiAgICBBW1doeSBhcmUgZGlhZ3JhbXM8YnI-dXNlZnVsP10gLS0-IG1cbiAgICBtIC0tPiBOWzMgeCBtZXRob2RzPGJyPmZvciBjcmVhdGluZzxicj5kaWFncmFtc11cbiAgICBOIC0tPiBUW0V4YW1wbGVzXVxuICAgIFQgLS0-IFhbU3R5bGluZzxicj5hbmQ8YnI-Y2FwdGlvbnNdXG4gICAgWCAtLT4gVltUaXBzXVxuICAgIFxuIFxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzRGVmIHNwYWNld2hpdGUgZmlsbDojZmZmZmZmLHN0cm9rZTojZmZmLHN0cm9rZS13aWR0aDowcHgsY29sb3I6IzAwMFxuICAgIGNsYXNzIEEsQyxELE4sWCxtLFQsViBib3hcbiAgICBjbGFzcyBTIHNwYWNld2hpdGUiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOnRydWV9" _blank
+click X "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgc3ViZ3JhcGggbVtNZXJtYWlkLmpzXVxuICAgIGRpcmVjdGlvbiBUQlxuICAgICAgICBTWyBdLS4tXG4gICAgICAgIENbYnVpbGQ8YnI-ZGlhZ3JhbXM8YnI-d2l0aCBtYXJrZG93bl0gLS0-XG4gICAgICAgIERbb24tbGluZTxicj5saXZlIGVkaXRvcl1cbiAgICBlbmRcbiAgICBBW1doeSBhcmUgZGlhZ3JhbXM8YnI-dXNlZnVsP10gLS0-IG1cbiAgICBtIC0tPiBOWzMgeCBtZXRob2RzPGJyPmZvciBjcmVhdGluZzxicj5kaWFncmFtc11cbiAgICBOIC0tPiBUW0V4YW1wbGVzXVxuICAgIFQgLS0-IFhbU3R5bGluZzxicj5hbmQ8YnI-Y2FwdGlvbnNdXG4gICAgWCAtLT4gVltUaXBzXVxuICAgIFxuIFxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzRGVmIHNwYWNld2hpdGUgZmlsbDojZmZmZmZmLHN0cm9rZTojZmZmLHN0cm9rZS13aWR0aDowcHgsY29sb3I6IzAwMFxuICAgIGNsYXNzIEEsQyxELE4sWCxtLFQsViBib3hcbiAgICBjbGFzcyBTIHNwYWNld2hpdGUiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOnRydWV9" _blank
+click V "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgc3ViZ3JhcGggbVtNZXJtYWlkLmpzXVxuICAgIGRpcmVjdGlvbiBUQlxuICAgICAgICBTWyBdLS4tXG4gICAgICAgIENbYnVpbGQ8YnI-ZGlhZ3JhbXM8YnI-d2l0aCBtYXJrZG93bl0gLS0-XG4gICAgICAgIERbb24tbGluZTxicj5saXZlIGVkaXRvcl1cbiAgICBlbmRcbiAgICBBW1doeSBhcmUgZGlhZ3JhbXM8YnI-dXNlZnVsP10gLS0-IG1cbiAgICBtIC0tPiBOWzMgeCBtZXRob2RzPGJyPmZvciBjcmVhdGluZzxicj5kaWFncmFtc11cbiAgICBOIC0tPiBUW0V4YW1wbGVzXVxuICAgIFQgLS0-IFhbU3R5bGluZzxicj5hbmQ8YnI-Y2FwdGlvbnNdXG4gICAgWCAtLT4gVltUaXBzXVxuICAgIFxuIFxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzRGVmIHNwYWNld2hpdGUgZmlsbDojZmZmZmZmLHN0cm9rZTojZmZmLHN0cm9rZS13aWR0aDowcHgsY29sb3I6IzAwMFxuICAgIGNsYXNzIEEsQyxELE4sWCxtLFQsViBib3hcbiAgICBjbGFzcyBTIHNwYWNld2hpdGUiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOnRydWV9" _blank
+
+{{< /mermaid >}}
+
+Figure 1. Topics covered in this section.
+
+All you need to begin working with Mermaid is the following:
+
+* Basic understanding of markdown.
+* Using the Mermaid live editor.
+* Using [Hugo shortcodes](/docs/contribute/style/hugo-shortcodes/).
+* Using the [Hugo {{</* figure */>}} shortcode](https://gohugo.io/content-management/shortcodes/#figure).   
+* Performing [Hugo local previews](/docs/contribute/new-content/open-a-pr/#preview-locally).
+* Familiar with the [Contributing new content](/docs/contribute/new-content/) process.
+
+{{< note >}}
+You can click on each diagram in this section to view the code and rendered
+diagram in the Mermaid live editor.
+{{< /note >}}
+
+<!--body-->
+
+## Why you should use diagrams in documentation
+
+Diagrams improve documentation clarity and comprehension. There are advantages for both the user and the contributor.
+
+The user benefits include:
+
+* __Friendly landing spot__. A detailed text-only greeting page could
+  intimidate users, in particular, first-time Kubernetes users. 
+* __Faster grasp of concepts__. A diagram can help users understand the key
+  points of a complex topic. Your diagram can serve as a visual learning guide
+  to dive into the topic details. 
+* __Better retention__. For some, it is easier to recall pictures rather than text.
+
+The contributor benefits include:
+
+* __Assist in developing the structure and content__ of your contribution. For
+  example, you can start with a simple diagram covering the high-level points
+  and then dive into details.  
+* __Expand and grow the user community__. Easily consumed documentation
+  augmented with diagrams attracts new users who might previously have been
+  reluctant to engage due to perceived complexities. 
+
+You should consider your target audience. In addition to experienced K8s
+users, you will have many who are new to Kubernetes. Even a simple diagram can
+assist new users in absorbing Kubernetes concepts. They become emboldened and
+more confident to further explore Kubernetes and the documentation.  
+
+## Mermaid
+
+[Mermaid](https://mermaid-js.github.io/mermaid/#/) is an open source
+JavaScript library that allows you to create, edit and easily share diagrams
+using a simple, markdown-like syntax configured inline in Markdown files.
+
+The following lists features of Mermaid: 
+
+* Simple code syntax.
+* Includes a web-based tool allowing you to code and preview your diagrams.
+* Supports multiple formats including flowchart, state and sequence.
+* Easy collaboration with colleagues by sharing a per-diagram URL. 
+* Broad selection of shapes, lines, themes and styling. 
+
+The following lists advantages of using Mermaid:
+
+* No need for separate, non-Mermaid diagram tools.
+* Adheres to existing PR workflow. You can think of Mermaid code as just
+  Markdown text included in your PR.
+* Simple tool builds simple diagrams. You don't want to get bogged down
+  (re)crafting an overly complex and detailed picture. Keep it simple! 
+
+Mermaid provides a simple, open and transparent method for the SIG communities
+to add, edit and collaborate on diagrams for new or existing documentation.
+
+{{< note >}}
+You can still use Mermaid to create/edit diagrams even if it's not supported
+in your environment. This method is called __Mermaid+SVG__ and is explained
+below.
+{{< /note >}}
+
+### Live editor
+
+The [Mermaid live editor](https://mermaid-js.github.io/mermaid-live-editor) is
+a web-based tool that enables you to create, edit and review diagrams. 
+
+The following lists live editor functions:
+
+* Displays Mermaid code and rendered diagram. 
+* Generates a URL for each saved diagram. The URL is displayed in the URL
+  field of your browser. You can share the URL with colleagues who can access
+  and modify the diagram. 
+* Option to download `.svg` or `.png` files. 
+
+{{< note >}}
+The live editor is the easiest and fastest way to create and edit Mermaid diagrams. 
+{{< /note >}}
+
+## Methods for creating diagrams
+
+Figure 2 outlines the three methods to generate and add diagrams.
+
+{{< mermaid >}}
+graph TB
+A[Contributor]
+B[Inline<br><br>Mermaid code<br>added to .md file]
+C[Mermaid+SVG<br><br>Add mermaid-generated<br>svg file to .md file]
+D[External tool<br><br>Add external-tool-<br>generated svg file<br>to .md file]
+
+    A --> B
+    A --> C
+    A --> D
+
+    classDef box fill:#fff,stroke:#000,stroke-width:1px,color:#000;
+    class A,B,C,D box
+
+%% you can hyperlink Mermaid diagram nodes to a URL using click statements
+
+click A "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZ3JhcGggVEJcbiAgICBBW0NvbnRyaWJ1dG9yXVxuICAgIEJbSW5saW5lPGJyPjxicj5NZXJtYWlkIGNvZGU8YnI-YWRkZWQgdG8gLm1kIGZpbGVdXG4gICAgQ1tNZXJtYWlkK1NWRzxicj48YnI-QWRkIG1lcm1haWQtZ2VuZXJhdGVkPGJyPnN2ZyBmaWxlIHRvIC5tZCBmaWxlXVxuICAgIERbRXh0ZXJuYWwgdG9vbDxicj48YnI-QWRkIGV4dGVybmFsLXRvb2wtPGJyPmdlbmVyYXRlZCBzdmcgZmlsZTxicj50byAubWQgZmlsZV1cblxuICAgIEEgLS0-IEJcbiAgICBBIC0tPiBDXG4gICAgQSAtLT4gRFxuXG4gICAgY2xhc3NEZWYgYm94IGZpbGw6I2ZmZixzdHJva2U6IzAwMCxzdHJva2Utd2lkdGg6MXB4LGNvbG9yOiMwMDA7XG4gICAgY2xhc3MgQSxCLEMsRCBib3giLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ" _blank
+
+click B "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZ3JhcGggVEJcbiAgICBBW0NvbnRyaWJ1dG9yXVxuICAgIEJbSW5saW5lPGJyPjxicj5NZXJtYWlkIGNvZGU8YnI-YWRkZWQgdG8gLm1kIGZpbGVdXG4gICAgQ1tNZXJtYWlkK1NWRzxicj48YnI-QWRkIG1lcm1haWQtZ2VuZXJhdGVkPGJyPnN2ZyBmaWxlIHRvIC5tZCBmaWxlXVxuICAgIERbRXh0ZXJuYWwgdG9vbDxicj48YnI-QWRkIGV4dGVybmFsLXRvb2wtPGJyPmdlbmVyYXRlZCBzdmcgZmlsZTxicj50byAubWQgZmlsZV1cblxuICAgIEEgLS0-IEJcbiAgICBBIC0tPiBDXG4gICAgQSAtLT4gRFxuXG4gICAgY2xhc3NEZWYgYm94IGZpbGw6I2ZmZixzdHJva2U6IzAwMCxzdHJva2Utd2lkdGg6MXB4LGNvbG9yOiMwMDA7XG4gICAgY2xhc3MgQSxCLEMsRCBib3giLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ" _blank
+
+click C "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZ3JhcGggVEJcbiAgICBBW0NvbnRyaWJ1dG9yXVxuICAgIEJbSW5saW5lPGJyPjxicj5NZXJtYWlkIGNvZGU8YnI-YWRkZWQgdG8gLm1kIGZpbGVdXG4gICAgQ1tNZXJtYWlkK1NWRzxicj48YnI-QWRkIG1lcm1haWQtZ2VuZXJhdGVkPGJyPnN2ZyBmaWxlIHRvIC5tZCBmaWxlXVxuICAgIERbRXh0ZXJuYWwgdG9vbDxicj48YnI-QWRkIGV4dGVybmFsLXRvb2wtPGJyPmdlbmVyYXRlZCBzdmcgZmlsZTxicj50byAubWQgZmlsZV1cblxuICAgIEEgLS0-IEJcbiAgICBBIC0tPiBDXG4gICAgQSAtLT4gRFxuXG4gICAgY2xhc3NEZWYgYm94IGZpbGw6I2ZmZixzdHJva2U6IzAwMCxzdHJva2Utd2lkdGg6MXB4LGNvbG9yOiMwMDA7XG4gICAgY2xhc3MgQSxCLEMsRCBib3giLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ" _blank
+
+click D "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZ3JhcGggVEJcbiAgICBBW0NvbnRyaWJ1dG9yXVxuICAgIEJbSW5saW5lPGJyPjxicj5NZXJtYWlkIGNvZGU8YnI-YWRkZWQgdG8gLm1kIGZpbGVdXG4gICAgQ1tNZXJtYWlkK1NWRzxicj48YnI-QWRkIG1lcm1haWQtZ2VuZXJhdGVkPGJyPnN2ZyBmaWxlIHRvIC5tZCBmaWxlXVxuICAgIERbRXh0ZXJuYWwgdG9vbDxicj48YnI-QWRkIGV4dGVybmFsLXRvb2wtPGJyPmdlbmVyYXRlZCBzdmcgZmlsZTxicj50byAubWQgZmlsZV1cblxuICAgIEEgLS0-IEJcbiAgICBBIC0tPiBDXG4gICAgQSAtLT4gRFxuXG4gICAgY2xhc3NEZWYgYm94IGZpbGw6I2ZmZixzdHJva2U6IzAwMCxzdHJva2Utd2lkdGg6MXB4LGNvbG9yOiMwMDA7XG4gICAgY2xhc3MgQSxCLEMsRCBib3giLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ" _blank
+
+{{< /mermaid >}} 
+
+Figure 2. Methods to create diagrams.
+
+
+### Inline
+
+Figure 3 outlines the steps to follow for adding a diagram using the Inline
+method. 
+
+{{< mermaid >}}
+graph LR
+A[1. Use live editor<br> to create/edit<br>diagram] -->
+B[2. Store diagram<br>URL somewhere] -->
+C[3. Copy Mermaid code<br>to page markdown file] -->
+D[4. Add caption]
+
+
+    classDef box fill:#fff,stroke:#000,stroke-width:1px,color:#000;
+    class A,B,C,D box
+
+%% you can hyperlink Mermaid diagram nodes to a URL using click statements
+
+click A "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZ3JhcGggTFJcbiAgICBBWzEuIFVzZSBsaXZlIGVkaXRvcjxicj4gdG8gY3JlYXRlL2VkaXQ8YnI-ZGlhZ3JhbV0gLS0-XG4gICAgQlsyLiBTdG9yZSBkaWFncmFtPGJyPlVSTCBzb21ld2hlcmVdIC0tPlxuICAgIENbMy4gQ29weSBNZXJtYWlkIGNvZGU8YnI-dG8gcGFnZSBtYXJrZG93biBmaWxlXSAtLT5cbiAgICBEWzQuIEFkZCBjYXB0aW9uXVxuIFxuXG4gICAgY2xhc3NEZWYgYm94IGZpbGw6I2ZmZixzdHJva2U6IzAwMCxzdHJva2Utd2lkdGg6MXB4LGNvbG9yOiMwMDA7XG4gICAgY2xhc3MgQSxCLEMsRCBib3hcbiAgICAiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ" _blank
+
+click B "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZ3JhcGggTFJcbiAgICBBWzEuIFVzZSBsaXZlIGVkaXRvcjxicj4gdG8gY3JlYXRlL2VkaXQ8YnI-ZGlhZ3JhbV0gLS0-XG4gICAgQlsyLiBTdG9yZSBkaWFncmFtPGJyPlVSTCBzb21ld2hlcmVdIC0tPlxuICAgIENbMy4gQ29weSBNZXJtYWlkIGNvZGU8YnI-dG8gcGFnZSBtYXJrZG93biBmaWxlXSAtLT5cbiAgICBEWzQuIEFkZCBjYXB0aW9uXVxuIFxuXG4gICAgY2xhc3NEZWYgYm94IGZpbGw6I2ZmZixzdHJva2U6IzAwMCxzdHJva2Utd2lkdGg6MXB4LGNvbG9yOiMwMDA7XG4gICAgY2xhc3MgQSxCLEMsRCBib3hcbiAgICAiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ" _blank
+
+click C "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZ3JhcGggTFJcbiAgICBBWzEuIFVzZSBsaXZlIGVkaXRvcjxicj4gdG8gY3JlYXRlL2VkaXQ8YnI-ZGlhZ3JhbV0gLS0-XG4gICAgQlsyLiBTdG9yZSBkaWFncmFtPGJyPlVSTCBzb21ld2hlcmVdIC0tPlxuICAgIENbMy4gQ29weSBNZXJtYWlkIGNvZGU8YnI-dG8gcGFnZSBtYXJrZG93biBmaWxlXSAtLT5cbiAgICBEWzQuIEFkZCBjYXB0aW9uXVxuIFxuXG4gICAgY2xhc3NEZWYgYm94IGZpbGw6I2ZmZixzdHJva2U6IzAwMCxzdHJva2Utd2lkdGg6MXB4LGNvbG9yOiMwMDA7XG4gICAgY2xhc3MgQSxCLEMsRCBib3hcbiAgICAiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ" _blank
+
+click D "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZ3JhcGggTFJcbiAgICBBWzEuIFVzZSBsaXZlIGVkaXRvcjxicj4gdG8gY3JlYXRlL2VkaXQ8YnI-ZGlhZ3JhbV0gLS0-XG4gICAgQlsyLiBTdG9yZSBkaWFncmFtPGJyPlVSTCBzb21ld2hlcmVdIC0tPlxuICAgIENbMy4gQ29weSBNZXJtYWlkIGNvZGU8YnI-dG8gcGFnZSBtYXJrZG93biBmaWxlXSAtLT5cbiAgICBEWzQuIEFkZCBjYXB0aW9uXVxuIFxuXG4gICAgY2xhc3NEZWYgYm94IGZpbGw6I2ZmZixzdHJva2U6IzAwMCxzdHJva2Utd2lkdGg6MXB4LGNvbG9yOiMwMDA7XG4gICAgY2xhc3MgQSxCLEMsRCBib3hcbiAgICAiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ" _blank
+
+
+
+{{< /mermaid >}}
+
+Figure 3. Inline Method steps.
+
+
+The following lists the steps you should follow for adding a diagram using the Inline method:
+
+1. Create your diagram using the live editor. 
+2. Store the diagram URL somewhere for later access.
+3. Copy the mermaid code to the location in your `.md` file where you want the diagram to appear. 
+4. Add a caption below the diagram using Markdown text.
+
+A Hugo build runs the Mermaid code and turns it into a diagram.
+
+{{< note >}}
+You may find keeping track of diagram URLs is cumbersome. If so, make a note
+in the `.md` file that the Mermaid code is self-documenting. Contributors can
+copy the Mermaid code to and from the live editor for diagram edits.
+{{< /note >}}
+
+Here is a sample code snippet contained in an `.md` file:    
+
+```
+---
+title: My PR
+---
+Figure 17 shows a simple A to B process.
+some markdown text
+...
+{{</* mermaid */>}} 
+    graph TB
+    A --> B
+{{</* /mermaid */>}}
+
+Figure 17. A to B
+more text
+```
+{{< note >}}
+You must include the Hugo Mermaid shortcode
+tags at the start and end of the Mermaid code block. You should add a diagram
+caption below the diagram. 
+{{< /note >}}
+
+For more details on diagram captions, see [How to use captions](#how-to-use-captions).
+
+The following lists advantages of the Inline method:
+
+* Live editor tool. 
+* Easy to copy Mermaid code to and from the live editor and your `.md` file.
+* No need for separate `.svg` image file handling.
+* Content text, diagram code and diagram caption contained in the same `.md` file.
+
+You should use the [local](/docs/contribute/new-content/open-a-pr/#preview-locally)
+and Netlify previews to verify the diagram is properly rendered. 
+
+{{< caution >}}
+The Mermaid live editor feature set may not support the K8s/website Mermaid feature set. 
+You might see a syntax error or a blank screen after the Hugo build.
+If that is the case, consider using the Mermaid+SVG method. 
+{{< /caution >}}
+
+### Mermaid+SVG
+
+Figure 4 outlines the steps to follow for adding a diagram using the Mermaid+SVG method.
+
+{{< mermaid >}}
+flowchart LR
+A[1. Use live editor<br> to create/edit<br>diagram]
+B[2. Store diagram<br>URL somewhere]
+C[3. Generate .svg file<br>and download to<br>images/ folder]
+subgraph w[ ]
+direction TB
+D[4. Use figure shortcode<br>to reference .svg<br>file in page<br>.md file] -->
+E[5. Add caption]
+end
+A --> B
+B --> C
+C --> w
+
+    classDef box fill:#fff,stroke:#000,stroke-width:1px,color:#000;
+    class A,B,C,D,E,w box
+
+click A "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgQVsxLiBVc2UgbGl2ZSBlZGl0b3I8YnI-IHRvIGNyZWF0ZS9lZGl0PGJyPmRpYWdyYW1dXG4gICAgQlsyLiBTdG9yZSBkaWFncmFtPGJyPlVSTCBzb21ld2hlcmVdXG4gICAgQ1szLiBHZW5lcmF0ZSAuc3ZnIGZpbGU8YnI-YW5kIGRvd25sb2FkIHRvPGJyPmltYWdlcy8gZm9sZGVyXVxuICAgIHN1YmdyYXBoIHdbIF1cbiAgICBkaXJlY3Rpb24gVEJcbiAgICBEWzQuIFVzZSBmaWd1cmUgc2hvcnRjb2RlPGJyPnRvIHJlZmVyZW5jZSAuc3ZnPGJyPmZpbGUgaW4gcGFnZTxicj4ubWQgZmlsZV0gLS0-XG4gICAgRVs1LiBBZGQgY2FwdGlvbl1cbiAgICBlbmRcbkEgLS0-IEJcbkIgLS0-IENcbkMgLS0-IHdcblxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzIEEsQixDLEQsRSx3IGJveFxuICAgICIsIm1lcm1haWQiOiJ7XG4gIFwidGhlbWVcIjogXCJkZWZhdWx0XCJcbn0iLCJ1cGRhdGVFZGl0b3IiOmZhbHNlLCJhdXRvU3luYyI6dHJ1ZSwidXBkYXRlRGlhZ3JhbSI6dHJ1ZX0" _blank
+
+click B "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgQVsxLiBVc2UgbGl2ZSBlZGl0b3I8YnI-IHRvIGNyZWF0ZS9lZGl0PGJyPmRpYWdyYW1dXG4gICAgQlsyLiBTdG9yZSBkaWFncmFtPGJyPlVSTCBzb21ld2hlcmVdXG4gICAgQ1szLiBHZW5lcmF0ZSAuc3ZnIGZpbGU8YnI-YW5kIGRvd25sb2FkIHRvPGJyPmltYWdlcy8gZm9sZGVyXVxuICAgIHN1YmdyYXBoIHdbIF1cbiAgICBkaXJlY3Rpb24gVEJcbiAgICBEWzQuIFVzZSBmaWd1cmUgc2hvcnRjb2RlPGJyPnRvIHJlZmVyZW5jZSAuc3ZnPGJyPmZpbGUgaW4gcGFnZTxicj4ubWQgZmlsZV0gLS0-XG4gICAgRVs1LiBBZGQgY2FwdGlvbl1cbiAgICBlbmRcbkEgLS0-IEJcbkIgLS0-IENcbkMgLS0-IHdcblxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzIEEsQixDLEQsRSx3IGJveFxuICAgICIsIm1lcm1haWQiOiJ7XG4gIFwidGhlbWVcIjogXCJkZWZhdWx0XCJcbn0iLCJ1cGRhdGVFZGl0b3IiOmZhbHNlLCJhdXRvU3luYyI6dHJ1ZSwidXBkYXRlRGlhZ3JhbSI6dHJ1ZX0" _blank
+
+click C "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgQVsxLiBVc2UgbGl2ZSBlZGl0b3I8YnI-IHRvIGNyZWF0ZS9lZGl0PGJyPmRpYWdyYW1dXG4gICAgQlsyLiBTdG9yZSBkaWFncmFtPGJyPlVSTCBzb21ld2hlcmVdXG4gICAgQ1szLiBHZW5lcmF0ZSAuc3ZnIGZpbGU8YnI-YW5kIGRvd25sb2FkIHRvPGJyPmltYWdlcy8gZm9sZGVyXVxuICAgIHN1YmdyYXBoIHdbIF1cbiAgICBkaXJlY3Rpb24gVEJcbiAgICBEWzQuIFVzZSBmaWd1cmUgc2hvcnRjb2RlPGJyPnRvIHJlZmVyZW5jZSAuc3ZnPGJyPmZpbGUgaW4gcGFnZTxicj4ubWQgZmlsZV0gLS0-XG4gICAgRVs1LiBBZGQgY2FwdGlvbl1cbiAgICBlbmRcbkEgLS0-IEJcbkIgLS0-IENcbkMgLS0-IHdcblxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzIEEsQixDLEQsRSx3IGJveFxuICAgICIsIm1lcm1haWQiOiJ7XG4gIFwidGhlbWVcIjogXCJkZWZhdWx0XCJcbn0iLCJ1cGRhdGVFZGl0b3IiOmZhbHNlLCJhdXRvU3luYyI6dHJ1ZSwidXBkYXRlRGlhZ3JhbSI6dHJ1ZX0" _blank
+
+click D "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgQVsxLiBVc2UgbGl2ZSBlZGl0b3I8YnI-IHRvIGNyZWF0ZS9lZGl0PGJyPmRpYWdyYW1dXG4gICAgQlsyLiBTdG9yZSBkaWFncmFtPGJyPlVSTCBzb21ld2hlcmVdXG4gICAgQ1szLiBHZW5lcmF0ZSAuc3ZnIGZpbGU8YnI-YW5kIGRvd25sb2FkIHRvPGJyPmltYWdlcy8gZm9sZGVyXVxuICAgIHN1YmdyYXBoIHdbIF1cbiAgICBkaXJlY3Rpb24gVEJcbiAgICBEWzQuIFVzZSBmaWd1cmUgc2hvcnRjb2RlPGJyPnRvIHJlZmVyZW5jZSAuc3ZnPGJyPmZpbGUgaW4gcGFnZTxicj4ubWQgZmlsZV0gLS0-XG4gICAgRVs1LiBBZGQgY2FwdGlvbl1cbiAgICBlbmRcbkEgLS0-IEJcbkIgLS0-IENcbkMgLS0-IHdcblxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzIEEsQixDLEQsRSx3IGJveFxuICAgICIsIm1lcm1haWQiOiJ7XG4gIFwidGhlbWVcIjogXCJkZWZhdWx0XCJcbn0iLCJ1cGRhdGVFZGl0b3IiOmZhbHNlLCJhdXRvU3luYyI6dHJ1ZSwidXBkYXRlRGlhZ3JhbSI6dHJ1ZX0" _blank
+
+click E "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgQVsxLiBVc2UgbGl2ZSBlZGl0b3I8YnI-IHRvIGNyZWF0ZS9lZGl0PGJyPmRpYWdyYW1dXG4gICAgQlsyLiBTdG9yZSBkaWFncmFtPGJyPlVSTCBzb21ld2hlcmVdXG4gICAgQ1szLiBHZW5lcmF0ZSAuc3ZnIGZpbGU8YnI-YW5kIGRvd25sb2FkIHRvPGJyPmltYWdlcy8gZm9sZGVyXVxuICAgIHN1YmdyYXBoIHdbIF1cbiAgICBkaXJlY3Rpb24gVEJcbiAgICBEWzQuIFVzZSBmaWd1cmUgc2hvcnRjb2RlPGJyPnRvIHJlZmVyZW5jZSAuc3ZnPGJyPmZpbGUgaW4gcGFnZTxicj4ubWQgZmlsZV0gLS0-XG4gICAgRVs1LiBBZGQgY2FwdGlvbl1cbiAgICBlbmRcbkEgLS0-IEJcbkIgLS0-IENcbkMgLS0-IHdcblxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzIEEsQixDLEQsRSx3IGJveFxuICAgICIsIm1lcm1haWQiOiJ7XG4gIFwidGhlbWVcIjogXCJkZWZhdWx0XCJcbn0iLCJ1cGRhdGVFZGl0b3IiOmZhbHNlLCJhdXRvU3luYyI6dHJ1ZSwidXBkYXRlRGlhZ3JhbSI6dHJ1ZX0" _blank
+
+
+
+{{< /mermaid >}}
+
+Figure 4. Mermaid+SVG method steps.
+
+The following lists the steps you should follow for adding a diagram using the Mermaid+SVG method:
+
+1. Create your diagram using the live editor. 
+2. Store the diagram URL somewhere for later access.
+3. Generate an `.svg` image file for the diagram and download it to the appropriate `images/` folder. 
+4. Use the `{{</* figure */>}}` shortcode to reference the diagram in the `.md` file. 
+5. Add a caption using the `{{</* figure */>}}` shortcode's `caption` parameter.
+
+For example, use the live editor to create a diagram called `boxnet`.
+Store the diagram URL somewhere for later access. Generate and download a
+`boxnet.svg` file to the appropriate `../images/` folder. 
+
+Use the `{{</* figure */>}}` shortcode in your PR's `.md` file to reference
+the `.svg` image file and add a caption.
+
+```json
+{{</* figure src="/static/images/boxnet.svg" alt="Boxnet figure" class="diagram-large" caption="Figure 14. Boxnet caption" */>}}
+```
+
+For more details on diagram captions, see [How to use captions](#how-to-use-captions).
+
+{{< note >}}
+The `{{</* figure */>}}` shortcode is the preferred method for adding `.svg` image files
+to your documentation. You can also use the standard markdown image syntax like so:
+`![my boxnet diagram](static/images/boxnet.svg)`.
+And you will need to add a caption below the diagram. 
+{{< /note >}}
+
+You should add the live editor URL as a comment block in the `.svg` image file using a text editor.
+For example, you would include the following at the beginning of the `.svg` image file:
+
+```
+<!-- To view or edit the mermaid code, use the following URL: -->
+<!-- https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb ... <remainder of the URL> -->
+```
+
+The following lists advantages of the Mermaid+SVG method:
+
+* Live editor tool.
+* Live editor tool supports the most current Mermaid feature set.  
+* Employ existing K8s/website methods for handling `.svg` image files.
+* Environment doesn't require Mermaid support.
+
+Be sure to check that your diagram renders properly using the
+[local](/docs/contribute/new-content/open-a-pr/#preview-locally)
+and Netlify previews.
+
+### External tool
+
+Figure 5 outlines the steps to follow for adding a diagram using the External Tool method. 
+
+First, use your external tool to create the diagram and save it as an `.svg`
+or `.png` image file. After that, use the same steps as the __Mermaid+SVG__
+method for adding `.svg` image files.
+
+{{< mermaid >}}
+flowchart LR
+A[1. Use external<br>tool to create/edit<br>diagram]
+B[2. If possible, save<br>diagram coordinates<br>for contributor<br>access]
+C[3. Generate .svg <br>or.png file<br>and download to<br>appropriate<br>images/ folder]
+subgraph w[ ]
+direction TB
+D[4. Use figure shortcode<br>to reference svg or<br>png file in<br>page .md file] -->
+E[5. Add caption]
+end
+A --> B
+B --> C
+C --> w
+classDef box fill:#fff,stroke:#000,stroke-width:1px,color:#000;
+class A,B,C,D,E,w box
+
+click A "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgQVsxLiBVc2UgZXh0ZXJuYWw8YnI-dG9vbCB0byBjcmVhdGUvZWRpdDxicj5kaWFncmFtXVxuICAgIEJbMi4gSWYgcG9zc2libGUsIHNhdmU8YnI-ZGlhZ3JhbSBjb29yZGluYXRlczxicj5mb3IgY29udHJpYnV0b3I8YnI-YWNjZXNzXVxuICAgIENbMy4gR2VuZXJhdGUgLnN2ZyA8YnI-b3IucG5nIGZpbGU8YnI-YW5kIGRvd25sb2FkIHRvPGJyPmFwcHJvcHJpYXRlPGJyPmltYWdlcy8gZm9sZGVyXVxuICAgIHN1YmdyYXBoIHdbIF1cbiAgICBkaXJlY3Rpb24gVEJcbiAgICBEWzQuIFVzZSBmaWd1cmUgc2hvcnRjb2RlPGJyPnRvIHJlZmVyZW5jZSBzdmcgb3I8YnI-cG5nIGZpbGUgaW48YnI-cGFnZSAubWQgZmlsZV0gLS0-XG4gICAgRVs1LiBBZGQgY2FwdGlvbl1cbiAgICBlbmRcbiAgICBBIC0tPiBCXG4gICAgQiAtLT4gQ1xuICAgIEMgLS0-IHdcbiAgICBjbGFzc0RlZiBib3ggZmlsbDojZmZmLHN0cm9rZTojMDAwLHN0cm9rZS13aWR0aDoxcHgsY29sb3I6IzAwMDtcbiAgICBjbGFzcyBBLEIsQyxELEUsdyBib3hcbiAgICAiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ"
+
+click B "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgQVsxLiBVc2UgZXh0ZXJuYWw8YnI-dG9vbCB0byBjcmVhdGUvZWRpdDxicj5kaWFncmFtXVxuICAgIEJbMi4gSWYgcG9zc2libGUsIHNhdmU8YnI-ZGlhZ3JhbSBjb29yZGluYXRlczxicj5mb3IgY29udHJpYnV0b3I8YnI-YWNjZXNzXVxuICAgIENbMy4gR2VuZXJhdGUgLnN2ZyA8YnI-b3IucG5nIGZpbGU8YnI-YW5kIGRvd25sb2FkIHRvPGJyPmFwcHJvcHJpYXRlPGJyPmltYWdlcy8gZm9sZGVyXVxuICAgIHN1YmdyYXBoIHdbIF1cbiAgICBkaXJlY3Rpb24gVEJcbiAgICBEWzQuIFVzZSBmaWd1cmUgc2hvcnRjb2RlPGJyPnRvIHJlZmVyZW5jZSBzdmcgb3I8YnI-cG5nIGZpbGUgaW48YnI-cGFnZSAubWQgZmlsZV0gLS0-XG4gICAgRVs1LiBBZGQgY2FwdGlvbl1cbiAgICBlbmRcbiAgICBBIC0tPiBCXG4gICAgQiAtLT4gQ1xuICAgIEMgLS0-IHdcbiAgICBjbGFzc0RlZiBib3ggZmlsbDojZmZmLHN0cm9rZTojMDAwLHN0cm9rZS13aWR0aDoxcHgsY29sb3I6IzAwMDtcbiAgICBjbGFzcyBBLEIsQyxELEUsdyBib3hcbiAgICAiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ"
+
+click C "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgQVsxLiBVc2UgZXh0ZXJuYWw8YnI-dG9vbCB0byBjcmVhdGUvZWRpdDxicj5kaWFncmFtXVxuICAgIEJbMi4gSWYgcG9zc2libGUsIHNhdmU8YnI-ZGlhZ3JhbSBjb29yZGluYXRlczxicj5mb3IgY29udHJpYnV0b3I8YnI-YWNjZXNzXVxuICAgIENbMy4gR2VuZXJhdGUgLnN2ZyA8YnI-b3IucG5nIGZpbGU8YnI-YW5kIGRvd25sb2FkIHRvPGJyPmFwcHJvcHJpYXRlPGJyPmltYWdlcy8gZm9sZGVyXVxuICAgIHN1YmdyYXBoIHdbIF1cbiAgICBkaXJlY3Rpb24gVEJcbiAgICBEWzQuIFVzZSBmaWd1cmUgc2hvcnRjb2RlPGJyPnRvIHJlZmVyZW5jZSBzdmcgb3I8YnI-cG5nIGZpbGUgaW48YnI-cGFnZSAubWQgZmlsZV0gLS0-XG4gICAgRVs1LiBBZGQgY2FwdGlvbl1cbiAgICBlbmRcbiAgICBBIC0tPiBCXG4gICAgQiAtLT4gQ1xuICAgIEMgLS0-IHdcbiAgICBjbGFzc0RlZiBib3ggZmlsbDojZmZmLHN0cm9rZTojMDAwLHN0cm9rZS13aWR0aDoxcHgsY29sb3I6IzAwMDtcbiAgICBjbGFzcyBBLEIsQyxELEUsdyBib3hcbiAgICAiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ"
+
+click D "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgQVsxLiBVc2UgZXh0ZXJuYWw8YnI-dG9vbCB0byBjcmVhdGUvZWRpdDxicj5kaWFncmFtXVxuICAgIEJbMi4gSWYgcG9zc2libGUsIHNhdmU8YnI-ZGlhZ3JhbSBjb29yZGluYXRlczxicj5mb3IgY29udHJpYnV0b3I8YnI-YWNjZXNzXVxuICAgIENbMy4gR2VuZXJhdGUgLnN2ZyA8YnI-b3IucG5nIGZpbGU8YnI-YW5kIGRvd25sb2FkIHRvPGJyPmFwcHJvcHJpYXRlPGJyPmltYWdlcy8gZm9sZGVyXVxuICAgIHN1YmdyYXBoIHdbIF1cbiAgICBkaXJlY3Rpb24gVEJcbiAgICBEWzQuIFVzZSBmaWd1cmUgc2hvcnRjb2RlPGJyPnRvIHJlZmVyZW5jZSBzdmcgb3I8YnI-cG5nIGZpbGUgaW48YnI-cGFnZSAubWQgZmlsZV0gLS0-XG4gICAgRVs1LiBBZGQgY2FwdGlvbl1cbiAgICBlbmRcbiAgICBBIC0tPiBCXG4gICAgQiAtLT4gQ1xuICAgIEMgLS0-IHdcbiAgICBjbGFzc0RlZiBib3ggZmlsbDojZmZmLHN0cm9rZTojMDAwLHN0cm9rZS13aWR0aDoxcHgsY29sb3I6IzAwMDtcbiAgICBjbGFzcyBBLEIsQyxELEUsdyBib3hcbiAgICAiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ"
+
+click E "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgQVsxLiBVc2UgZXh0ZXJuYWw8YnI-dG9vbCB0byBjcmVhdGUvZWRpdDxicj5kaWFncmFtXVxuICAgIEJbMi4gSWYgcG9zc2libGUsIHNhdmU8YnI-ZGlhZ3JhbSBjb29yZGluYXRlczxicj5mb3IgY29udHJpYnV0b3I8YnI-YWNjZXNzXVxuICAgIENbMy4gR2VuZXJhdGUgLnN2ZyA8YnI-b3IucG5nIGZpbGU8YnI-YW5kIGRvd25sb2FkIHRvPGJyPmFwcHJvcHJpYXRlPGJyPmltYWdlcy8gZm9sZGVyXVxuICAgIHN1YmdyYXBoIHdbIF1cbiAgICBkaXJlY3Rpb24gVEJcbiAgICBEWzQuIFVzZSBmaWd1cmUgc2hvcnRjb2RlPGJyPnRvIHJlZmVyZW5jZSBzdmcgb3I8YnI-cG5nIGZpbGUgaW48YnI-cGFnZSAubWQgZmlsZV0gLS0-XG4gICAgRVs1LiBBZGQgY2FwdGlvbl1cbiAgICBlbmRcbiAgICBBIC0tPiBCXG4gICAgQiAtLT4gQ1xuICAgIEMgLS0-IHdcbiAgICBjbGFzc0RlZiBib3ggZmlsbDojZmZmLHN0cm9rZTojMDAwLHN0cm9rZS13aWR0aDoxcHgsY29sb3I6IzAwMDtcbiAgICBjbGFzcyBBLEIsQyxELEUsdyBib3hcbiAgICAiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ"
+
+{{< /mermaid >}}
+
+Figure 5. External Tool method steps
+
+
+The following lists the steps you should follow for adding a diagram using the External Tool method:
+
+1. Use your external tool to create a diagram. 
+2. Save the diagram coordinates for contributor access. For example, your tool
+   may offer a link to the diagram image, or you could place the source code
+   file, such as an `.xml` file, in a public repository for later contributor access.
+3. Generate and save the diagram as an `.svg` or `.png` image file.
+   Download this file to the appropriate `../images/` folder.
+4. Use the `{{</* figure */>}}` shortcode to reference the diagram in the `.md` file.
+5. Add a caption using the `{{</* figure */>}}` shortcode's `caption` parameter.
+
+Here is the `{{</* figure */>}}` shortcode for the `images/apple.svg` diagram: 
+```text
+{{</* figure src="/static/images/apple.svg" alt="red-apple-figure" class="diagram-large" caption="Figure 9. A Big Red Apple" */>}} 
+```
+
+If your external drawing tool permits:
+
+* You can incorporate multiple `.svg` or `.png` logos, icons and images into your diagram.
+  However, make sure you observe copyright and follow the Kubernetes documentation
+  [guidelines](/docs/contribute/style/content-guide/) on the use of third party content.
+* You should save the diagram source coordinates for later contributor access.
+  For example, your tool may offer a link to the diagram image, or you could
+  place the source code file, such as an `.xml` file, somewhere for contributor access.
+
+For more information on K8s and CNCF logos and images, check out
+[CNCF Artwork](https://github.com/cncf/artwork).
+
+The following lists advantages of the External Tool method: 
+
+* Contributor familiarity with external tool.
+* Diagrams require more detail than what Mermaid can offer.
+
+Don't forget to check that your diagram renders correctly using the
+[local](/docs/contribute/new-content/open-a-pr/#preview-locally) and Netlify previews.
+
+## Examples
+
+This section shows several examples of Mermaid diagrams. 
+
+{{< note >}}
+The code block examples omit the Hugo Mermaid
+shortcode tags. This allows you to copy the code block into the live editor
+to experiment on your own.
+Note that the live editor doesn't recognize Hugo shortcodes. 
+{{< /note >}}
+
+### Example 1 - Pod topology spread constraints
+
+Figure 6 shows the diagram appearing in the
+[Pod topology spread constraints](/docs/concepts/scheduling-eviction/topology-spread-constraints/#node-labels)
+page.
+
+{{< mermaid >}}
+    graph TB
+    subgraph "zoneB"
+    n3(Node3)
+    n4(Node4)
+    end
+    subgraph "zoneA"
+    n1(Node1)
+    n2(Node2)
+    end
+    
+    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+    class n1,n2,n3,n4 k8s;
+    class zoneA,zoneB cluster;
+
+click n3 "https://mermaid-js.github.io/mermaid-live-editor/edit/#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" _blank
+
+click n4 "https://mermaid-js.github.io/mermaid-live-editor/edit/#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" _blank
+
+click n1 "https://mermaid-js.github.io/mermaid-live-editor/edit/#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" _blank
+
+click n2 "https://mermaid-js.github.io/mermaid-live-editor/edit/#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" _blank
+
+{{< /mermaid >}}
+
+Figure 6. Pod Topology Spread Constraints.
+
+Code block:
+
+``` 
+graph TB
+   subgraph "zoneB"
+       n3(Node3)
+       n4(Node4)
+   end
+   subgraph "zoneA"
+       n1(Node1)
+       n2(Node2)
+   end
+ 
+   classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+   classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+   classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+   class n1,n2,n3,n4 k8s;
+   class zoneA,zoneB cluster;
+```
+
+### Example 2 - Ingress
+
+Figure 7 shows the diagram appearing in the [What is Ingress](/docs/concepts/services-networking/ingress/#what-is-ingress) page.
+
+{{< mermaid >}}
+graph LR;
+client([client])-. Ingress-managed <br> load balancer .->ingress[Ingress];
+ingress-->|routing rule|service[Service];
+subgraph cluster
+ingress;
+service-->pod1[Pod];
+service-->pod2[Pod];
+end
+classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+class ingress,service,pod1,pod2 k8s;
+class client plain;
+class cluster cluster;
+
+click client "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZ3JhcGggIExSXG4gIGNsaWVudChbY2xpZW50XSktLiBJbmdyZXNzLW1hbmFnZWQgPGJyPiBsb2FkIGJhbGFuY2VyIC4tPmluZ3Jlc3NbSW5ncmVzc107XG4gIGluZ3Jlc3MtLT58cm91dGluZyBydWxlfHNlcnZpY2VbU2VydmljZV07XG4gIHN1YmdyYXBoIGNsdXN0ZXJcbiAgaW5ncmVzcztcbiAgc2VydmljZS0tPnBvZDFbUG9kXTtcbiAgc2VydmljZS0tPnBvZDJbUG9kXTtcbiAgZW5kXG4gIGNsYXNzRGVmIHBsYWluIGZpbGw6I2RkZCxzdHJva2U6I2ZmZixzdHJva2Utd2lkdGg6NHB4LGNvbG9yOiMwMDA7XG4gIGNsYXNzRGVmIGs4cyBmaWxsOiMzMjZjZTUsc3Ryb2tlOiNmZmYsc3Ryb2tlLXdpZHRoOjRweCxjb2xvcjojZmZmO1xuICBjbGFzc0RlZiBjbHVzdGVyIGZpbGw6I2ZmZixzdHJva2U6I2JiYixzdHJva2Utd2lkdGg6MnB4LGNvbG9yOiMzMjZjZTU7XG4gIGNsYXNzIGluZ3Jlc3Msc2VydmljZSxwb2QxLHBvZDIgazhzO1xuICBjbGFzcyBjbGllbnQgcGxhaW47XG4gIGNsYXNzIGNsdXN0ZXIgY2x1c3RlcjtcbiIsIm1lcm1haWQiOiJ7XG4gIFwidGhlbWVcIjogXCJkZWZhdWx0XCJcbn0iLCJ1cGRhdGVFZGl0b3IiOmZhbHNlLCJhdXRvU3luYyI6dHJ1ZSwidXBkYXRlRGlhZ3JhbSI6ZmFsc2V9" _blank
+
+click ingress "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZ3JhcGggIExSXG4gIGNsaWVudChbY2xpZW50XSktLiBJbmdyZXNzLW1hbmFnZWQgPGJyPiBsb2FkIGJhbGFuY2VyIC4tPmluZ3Jlc3NbSW5ncmVzc107XG4gIGluZ3Jlc3MtLT58cm91dGluZyBydWxlfHNlcnZpY2VbU2VydmljZV07XG4gIHN1YmdyYXBoIGNsdXN0ZXJcbiAgaW5ncmVzcztcbiAgc2VydmljZS0tPnBvZDFbUG9kXTtcbiAgc2VydmljZS0tPnBvZDJbUG9kXTtcbiAgZW5kXG4gIGNsYXNzRGVmIHBsYWluIGZpbGw6I2RkZCxzdHJva2U6I2ZmZixzdHJva2Utd2lkdGg6NHB4LGNvbG9yOiMwMDA7XG4gIGNsYXNzRGVmIGs4cyBmaWxsOiMzMjZjZTUsc3Ryb2tlOiNmZmYsc3Ryb2tlLXdpZHRoOjRweCxjb2xvcjojZmZmO1xuICBjbGFzc0RlZiBjbHVzdGVyIGZpbGw6I2ZmZixzdHJva2U6I2JiYixzdHJva2Utd2lkdGg6MnB4LGNvbG9yOiMzMjZjZTU7XG4gIGNsYXNzIGluZ3Jlc3Msc2VydmljZSxwb2QxLHBvZDIgazhzO1xuICBjbGFzcyBjbGllbnQgcGxhaW47XG4gIGNsYXNzIGNsdXN0ZXIgY2x1c3RlcjtcbiIsIm1lcm1haWQiOiJ7XG4gIFwidGhlbWVcIjogXCJkZWZhdWx0XCJcbn0iLCJ1cGRhdGVFZGl0b3IiOmZhbHNlLCJhdXRvU3luYyI6dHJ1ZSwidXBkYXRlRGlhZ3JhbSI6ZmFsc2V9" _blank
+
+click service "https://mermaid-js.github.io/mermaid-live-editor/edit/#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" _blank
+
+click pod1 "https://mermaid-js.github.io/mermaid-live-editor/edit/#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" _blank
+
+click pod2 "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZ3JhcGggIExSXG4gIGNsaWVudChbY2xpZW50XSktLiBJbmdyZXNzLW1hbmFnZWQgPGJyPiBsb2FkIGJhbGFuY2VyIC4tPmluZ3Jlc3NbSW5ncmVzc107XG4gIGluZ3Jlc3MtLT58cm91dGluZyBydWxlfHNlcnZpY2VbU2VydmljZV07XG4gIHN1YmdyYXBoIGNsdXN0ZXJcbiAgaW5ncmVzcztcbiAgc2VydmljZS0tPnBvZDFbUG9kXTtcbiAgc2VydmljZS0tPnBvZDJbUG9kXTtcbiAgZW5kXG4gIGNsYXNzRGVmIHBsYWluIGZpbGw6I2RkZCxzdHJva2U6I2ZmZixzdHJva2Utd2lkdGg6NHB4LGNvbG9yOiMwMDA7XG4gIGNsYXNzRGVmIGs4cyBmaWxsOiMzMjZjZTUsc3Ryb2tlOiNmZmYsc3Ryb2tlLXdpZHRoOjRweCxjb2xvcjojZmZmO1xuICBjbGFzc0RlZiBjbHVzdGVyIGZpbGw6I2ZmZixzdHJva2U6I2JiYixzdHJva2Utd2lkdGg6MnB4LGNvbG9yOiMzMjZjZTU7XG4gIGNsYXNzIGluZ3Jlc3Msc2VydmljZSxwb2QxLHBvZDIgazhzO1xuICBjbGFzcyBjbGllbnQgcGxhaW47XG4gIGNsYXNzIGNsdXN0ZXIgY2x1c3RlcjtcbiIsIm1lcm1haWQiOiJ7XG4gIFwidGhlbWVcIjogXCJkZWZhdWx0XCJcbn0iLCJ1cGRhdGVFZGl0b3IiOmZhbHNlLCJhdXRvU3luYyI6dHJ1ZSwidXBkYXRlRGlhZ3JhbSI6ZmFsc2V9" _blank
+
+
+
+{{< /mermaid >}}
+Figure 7. Ingress
+
+Code block:
+
+```mermaid
+graph LR;
+ client([client])-. Ingress-managed <br> load balancer .->ingress[Ingress];
+ ingress-->|routing rule|service[Service];
+ subgraph cluster
+ ingress;
+ service-->pod1[Pod];
+ service-->pod2[Pod];
+ end
+ classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+ classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+ classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+ class ingress,service,pod1,pod2 k8s;
+ class client plain;
+ class cluster cluster;
+```
+
+### Example 3 - K8s system flow
+
+Figure 8 depicts a Mermaid sequence diagram showing the system flow between
+K8s components to start a container. 
+
+{{< figure src="/docs/images/diagram-guide-example-3.svg" alt="K8s system flow diagram" class="diagram-large" caption="Figure 8. K8s system flow diagram" link="https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiJSV7aW5pdDp7XCJ0aGVtZVwiOlwibmV1dHJhbFwifX0lJVxuc2VxdWVuY2VEaWFncmFtXG4gICAgYWN0b3IgbWVcbiAgICBwYXJ0aWNpcGFudCBhcGlTcnYgYXMgY29udHJvbCBwbGFuZTxicj48YnI-YXBpLXNlcnZlclxuICAgIHBhcnRpY2lwYW50IGV0Y2QgYXMgY29udHJvbCBwbGFuZTxicj48YnI-ZXRjZCBkYXRhc3RvcmVcbiAgICBwYXJ0aWNpcGFudCBjbnRybE1nciBhcyBjb250cm9sIHBsYW5lPGJyPjxicj5jb250cm9sbGVyPGJyPm1hbmFnZXJcbiAgICBwYXJ0aWNpcGFudCBzY2hlZCBhcyBjb250cm9sIHBsYW5lPGJyPjxicj5zY2hlZHVsZXJcbiAgICBwYXJ0aWNpcGFudCBrdWJlbGV0IGFzIG5vZGU8YnI-PGJyPmt1YmVsZXRcbiAgICBwYXJ0aWNpcGFudCBjb250YWluZXIgYXMgbm9kZTxicj48YnI-Y29udGFpbmVyPGJyPnJ1bnRpbWVcbiAgICBtZS0-PmFwaVNydjogMS4ga3ViZWN0bCBjcmVhdGUgLWYgcG9kLnlhbWxcbiAgICBhcGlTcnYtLT4-ZXRjZDogMi4gc2F2ZSBuZXcgc3RhdGVcbiAgICBjbnRybE1nci0-PmFwaVNydjogMy4gY2hlY2sgZm9yIGNoYW5nZXNcbiAgICBzY2hlZC0-PmFwaVNydjogNC4gd2F0Y2ggZm9yIHVuYXNzaWduZWQgcG9kcyhzKVxuICAgIGFwaVNydi0-PnNjaGVkOiA1LiBub3RpZnkgYWJvdXQgcG9kIHcgbm9kZW5hbWU9XCIgXCJcbiAgICBzY2hlZC0-PmFwaVNydjogNi4gYXNzaWduIHBvZCB0byBub2RlXG4gICAgYXBpU3J2LS0-PmV0Y2Q6IDcuIHNhdmUgbmV3IHN0YXRlXG4gICAga3ViZWxldC0-PmFwaVNydjogOC4gbG9vayBmb3IgbmV3bHkgYXNzaWduZWQgcG9kKHMpXG4gICAgYXBpU3J2LT4-a3ViZWxldDogOS4gYmluZCBwb2QgdG8gbm9kZVxuICAgIGt1YmVsZXQtPj5jb250YWluZXI6IDEwLiBzdGFydCBjb250YWluZXJcbiAgICBrdWJlbGV0LT4-YXBpU3J2OiAxMS4gdXBkYXRlIHBvZCBzdGF0dXNcbiAgICBhcGlTcnYtLT4-ZXRjZDogMTIuIHNhdmUgbmV3IHN0YXRlIiwibWVybWFpZCI6IntcbiAgXCJ0aGVtZVwiOiBcImRlZmF1bHRcIlxufSIsInVwZGF0ZUVkaXRvciI6ZmFsc2UsImF1dG9TeW5jIjp0cnVlLCJ1cGRhdGVEaWFncmFtIjp0cnVlfQ" >}}
+
+
+
+Code block:
+
+```
+%%{init:{"theme":"neutral"}}%%
+sequenceDiagram
+    actor me
+    participant apiSrv as control plane<br><br>api-server
+    participant etcd as control plane<br><br>etcd datastore
+    participant cntrlMgr as control plane<br><br>controller<br>manager
+    participant sched as control plane<br><br>scheduler
+    participant kubelet as node<br><br>kubelet
+    participant container as node<br><br>container<br>runtime
+    me->>apiSrv: 1. kubectl create -f pod.yaml
+    apiSrv-->>etcd: 2. save new state
+    cntrlMgr->>apiSrv: 3. check for changes
+    sched->>apiSrv: 4. watch for unassigned pods(s)
+    apiSrv->>sched: 5. notify about pod w nodename=" "
+    sched->>apiSrv: 6. assign pod to node
+    apiSrv-->>etcd: 7. save new state
+    kubelet->>apiSrv: 8. look for newly assigned pod(s)
+    apiSrv->>kubelet: 9. bind pod to node
+    kubelet->>container: 10. start container
+    kubelet->>apiSrv: 11. update pod status
+    apiSrv-->>etcd: 12. save new state
+```
+
+## How to style diagrams
+
+You can style one or more diagram elements using well-known CSS nomenclature.
+You accomplish this using two types of statements in the Mermaid code.
+
+* `classDef` defines a class of style attributes.
+* `class` defines one or more elements to apply the class to. 
+
+In the code for
+[figure 7](https://mermaid-js.github.io/mermaid-live-editor/edit/#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),
+you can see examples of both.
+
+```
+classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff; // defines style for the k8s class
+class ingress,service,pod1,pod2 k8s; // k8s class is applied to elements ingress, service, pod1 and pod2.
+```
+
+You can include one or multiple `classDef` and `class` statements in your diagram.
+You can also use the official K8s `#326ce5` hex color code for K8s components in your diagram.
+
+For more information on styling and classes, see
+[Mermaid Styling and classes docs](https://mermaid-js.github.io/mermaid/#/flowchart?id=styling-and-classes).
+
+## How to use captions
+
+A caption is a brief description of a diagram. A title or a short description
+of the diagram are examples of captions. Captions aren't meant to replace
+explanatory text you have in your documentation. Rather, they serve as a
+"context link" between that text and your diagram. 
+
+The combination of some text and a diagram tied together with a caption help
+provide a concise representation of the information you wish to convey to the
+user. 
+
+Without captions, you are asking the user to scan the text above or below the
+diagram to figure out a meaning. This can be frustrating for the user. 
+
+Figure 9 lays out the three components for proper captioning: diagram, diagram
+caption and the diagram referral.
+
+{{< mermaid >}}
+flowchart
+A[Diagram<br><br>Inline Mermaid or<br>SVG image files]
+B[Diagram Caption<br><br>Add Figure Number. and<br>Caption Text]
+C[Diagram Referral<br><br>Referenence Figure Number<br>in text]
+
+    classDef box fill:#fff,stroke:#000,stroke-width:1px,color:#000;
+    class A,B,C box
+
+click A "https://mermaid-js.github.io/mermaid-live-editor/edit#eyJjb2RlIjoiZmxvd2NoYXJ0XG4gICAgQVtEaWFncmFtPGJyPjxicj5JbmxpbmUgTWVybWFpZCBvcjxicj5TVkcgaW1hZ2UgZmlsZXNdXG4gICAgQltEaWFncmFtIENhcHRpb248YnI-PGJyPkFkZCBGaWd1cmUgTnVtYmVyLiBhbmQ8YnI-Q2FwdGlvbiBUZXh0XVxuICAgIENbRGlhZ3JhbSBSZWZlcnJhbDxicj48YnI-UmVmZXJlbmVuY2UgRmlndXJlIE51bWJlcjxicj5pbiB0ZXh0XVxuXG4gICAgY2xhc3NEZWYgYm94IGZpbGw6I2ZmZixzdHJva2U6IzAwMCxzdHJva2Utd2lkdGg6MXB4LGNvbG9yOiMwMDA7XG4gICAgY2xhc3MgQSxCLEMgYm94IiwibWVybWFpZCI6IntcbiAgXCJ0aGVtZVwiOiBcImRlZmF1bHRcIlxufSIsInVwZGF0ZUVkaXRvciI6ZmFsc2UsImF1dG9TeW5jIjp0cnVlLCJ1cGRhdGVEaWFncmFtIjpmYWxzZX0" _blank
+
+click B "https://mermaid-js.github.io/mermaid-live-editor/edit#eyJjb2RlIjoiZmxvd2NoYXJ0XG4gICAgQVtEaWFncmFtPGJyPjxicj5JbmxpbmUgTWVybWFpZCBvcjxicj5TVkcgaW1hZ2UgZmlsZXNdXG4gICAgQltEaWFncmFtIENhcHRpb248YnI-PGJyPkFkZCBGaWd1cmUgTnVtYmVyLiBhbmQ8YnI-Q2FwdGlvbiBUZXh0XVxuICAgIENbRGlhZ3JhbSBSZWZlcnJhbDxicj48YnI-UmVmZXJlbmVuY2UgRmlndXJlIE51bWJlcjxicj5pbiB0ZXh0XVxuXG4gICAgY2xhc3NEZWYgYm94IGZpbGw6I2ZmZixzdHJva2U6IzAwMCxzdHJva2Utd2lkdGg6MXB4LGNvbG9yOiMwMDA7XG4gICAgY2xhc3MgQSxCLEMgYm94IiwibWVybWFpZCI6IntcbiAgXCJ0aGVtZVwiOiBcImRlZmF1bHRcIlxufSIsInVwZGF0ZUVkaXRvciI6ZmFsc2UsImF1dG9TeW5jIjp0cnVlLCJ1cGRhdGVEaWFncmFtIjpmYWxzZX0" _blank
+
+click C "https://mermaid-js.github.io/mermaid-live-editor/edit#eyJjb2RlIjoiZmxvd2NoYXJ0XG4gICAgQVtEaWFncmFtPGJyPjxicj5JbmxpbmUgTWVybWFpZCBvcjxicj5TVkcgaW1hZ2UgZmlsZXNdXG4gICAgQltEaWFncmFtIENhcHRpb248YnI-PGJyPkFkZCBGaWd1cmUgTnVtYmVyLiBhbmQ8YnI-Q2FwdGlvbiBUZXh0XVxuICAgIENbRGlhZ3JhbSBSZWZlcnJhbDxicj48YnI-UmVmZXJlbmVuY2UgRmlndXJlIE51bWJlcjxicj5pbiB0ZXh0XVxuXG4gICAgY2xhc3NEZWYgYm94IGZpbGw6I2ZmZixzdHJva2U6IzAwMCxzdHJva2Utd2lkdGg6MXB4LGNvbG9yOiMwMDA7XG4gICAgY2xhc3MgQSxCLEMgYm94IiwibWVybWFpZCI6IntcbiAgXCJ0aGVtZVwiOiBcImRlZmF1bHRcIlxufSIsInVwZGF0ZUVkaXRvciI6ZmFsc2UsImF1dG9TeW5jIjp0cnVlLCJ1cGRhdGVEaWFncmFtIjpmYWxzZX0" _blank
+
+{{< /mermaid >}}
+Figure 9. Caption Components.
+
+{{< note >}}
+You should always add a caption to each diagram in your documentation.
+{{< /note >}}
+
+**Diagram**
+
+The `Mermaid+SVG` and `External Tool` methods generate `.svg` image files.
+
+Here is the `{{</* figure */>}}` shortcode for the diagram defined in an
+`.svg` image file saved to `/images/docs/components-of-kubernetes.svg`:
+
+```none
+{{</* figure src="/images/docs/components-of-kubernetes.svg" alt="Kubernetes pod running inside a cluster" class="diagram-large" caption="Figure 4. Kubernetes Architecture Components */>}}
+```
+
+You should pass the `src`, `alt`, `class` and `caption` values into the
+`{{</* figure */>}}` shortcode. You can adjust the size of the diagram using
+`diagram-large`, `diagram-medium` and `diagram-small` classes.  
+
+{{< note >}}
+Diagrams created using the `Inline` method don't use the `{{</* figure */>}}`
+shortcode. The Mermaid code defines how the diagram will render on your page.
+{{< /note >}}
+
+See [Methods for creating diagrams](#methods-for-creating-diagrams)
+for more information on the different methods for creating diagrams.
+
+**Diagram Caption**
+
+Next, add a diagram caption.
+
+If you define your diagram in an `.svg` image file, then you should use the
+`{{</* figure */>}}` shortcode's `caption` parameter.
+
+```none
+{{</* figure src="/images/docs/components-of-kubernetes.svg" alt="Kubernetes pod running inside a cluster" class="diagram-large" caption="Figure 4. Kubernetes Architecture Components" */>}}
+```
+
+If you define your diagram using inline Mermaid code, then you should use Markdown text.
+
+```none
+Figure 4. Kubernetes Architecture Components
+```
+
+The following lists several items to consider when adding diagram captions: 
+
+* Use the `{{</* figure */>}}` shortcode to add a diagram caption for `Mermaid+SVG`
+  and `External Tool` diagrams. 
+* Use simple Markdown text to add a diagram caption for the `Inline` method.
+* Prepend your diagram caption with `Figure NUMBER.`. You must use `Figure`
+  and the number must be unique for each diagram in your documentation page.
+  Add a period after the number.  
+* Add your diagram caption text after the `Figure NUMBER.` on the same line.
+  You must puncuate the caption with a period. Keep the caption text short.
+* Position your diagram caption __BELOW__ your diagram.
+
+**Diagram Referral**
+
+Finally, you can add a diagram referral. This is used inside your text and
+should precede the diagram itself. It allows a user to connect your text with
+the associated diagram. The `Figure NUMBER` in your referral and caption must
+match.   
+
+You should avoid using spatial references such as `..the image below..` or
+`..the following figure ..` 
+
+Here is an example of a diagram referral:
+
+```text
+Figure 10 depicts the components of the Kubernetes architecture.
+The control plane ...
+```
+Diagram referrals are optional and there are cases where they might not be
+suitable. If you are not sure, add a diagram referral to your text to see if
+it looks and sounds okay. When in doubt, use a diagram referral.
+
+**Complete picture**
+
+Figure 10 shows the Kubernetes Architecture diagram that includes the diagram,
+diagram caption and diagram referral. The `{{</* figure */>}}` shortcode
+renders the diagram, adds the caption and includes the optional `link`
+parameter so you can hyperlink the diagram. The diagram referral is contained
+in this paragraph. 
+
+Here is the `{{</* figure */>}}` shortcode for this diagram:
+
+```
+{{</* figure src="/images/docs/components-of-kubernetes.svg" alt="Kubernetes pod running inside a cluster" class="diagram-large" caption="Figure 10. Kubernetes Architecture." link="https://kubernetes.io/docs/concepts/overview/components/" */>}}
+```
+
+{{< figure src="/images/docs/components-of-kubernetes.svg" alt="Kubernetes pod running inside a cluster" class="diagram-large" caption="Figure 10. Kubernetes Architecture." link="https://kubernetes.io/docs/concepts/overview/components/" >}}
+
+## Tips
+
+* Always use the live editor to create/edit your diagram. 
+  
+* Always use Hugo local and Netlify previews to check out how the diagram
+  appears in the documentation.
+  
+* Include diagram source pointers such as a URL, source code location, or
+  indicate the code is self-documenting.
+  
+* Always use diagram captions.
+  
+* Very helpful to include the diagram `.svg` or `.png` image and/or Mermaid
+  source code in issues and PRs.
+
+* With the `Mermaid+SVG` and `External Tool` methods, use `.svg` image files
+  because they stay sharp when you zoom in on the diagram.
+
+* Best practice for `.svg` files is to load it into an SVG editing tool and use the
+  "Convert text to paths" function.
+  This ensures that the diagram renders the same on all systems, regardless of font
+  availability and font rendering support.
+  
+* No Mermaid support for additional icons or artwork.
+  
+* Hugo Mermaid shortcodes don't work in the live editor.
+  
+* Any time you modify a diagram in the live editor, you __must__ save it
+  to generate a new URL for the diagram.
+  
+* Click on the diagrams in this section to view the code and diagram rendering
+  in the live editor.
+
+* Look over the source code of this page, `diagram-guide.md`, for more examples.
+  
+* Check out the [Mermaid docs](https://mermaid-js.github.io/mermaid/#/)
+  for explanations and examples.
+
+Most important, __Keep Diagrams Simple__.
+This will save time for you and fellow contributors, and allow for easier reading
+by new and experienced users.
+
+
+
+
+
+
+
diff --git a/content/en/docs/contribute/style/hugo-shortcodes/index.md b/content/en/docs/contribute/style/hugo-shortcodes/index.md
index 2a836ffb91..5463019ac0 100644
--- a/content/en/docs/contribute/style/hugo-shortcodes/index.md
+++ b/content/en/docs/contribute/style/hugo-shortcodes/index.md
@@ -12,11 +12,13 @@ Read more about shortcodes in the [Hugo documentation](https://gohugo.io/content
 
 ## Feature state
 
-In a Markdown page (`.md` file) on this site, you can add a shortcode to display version and state of the documented feature.
+In a Markdown page (`.md` file) on this site, you can add a shortcode to
+display version and state of the documented feature.
 
 ### Feature state demo
 
-Below is a demo of the feature state snippet, which displays the feature as stable in the latest Kubernetes version.
+Below is a demo of the feature state snippet, which displays the feature as
+stable in the latest Kubernetes version.
 
 ```
 {{</* feature-state state="stable" */>}}
@@ -50,16 +52,22 @@ Renders to:
 
 There are two glossary shortcodes: `glossary_tooltip` and `glossary_definition`.
 
-You can reference glossary terms with an inclusion that automatically updates and replaces content with the relevant links from [our glossary](/docs/reference/glossary/). When the glossary term is moused-over, the glossary entry displays a tooltip. The glossary term also displays as a link.
+You can reference glossary terms with an inclusion that automatically updates
+and replaces content with the relevant links from [our glossary](/docs/reference/glossary/).
+When the glossary term is moused-over, the glossary entry displays a tooltip.
+The glossary term also displays as a link.
 
 As well as inclusions with tooltips, you can reuse the definitions from the glossary in
 page content.
 
-The raw data for glossary terms is stored at [https://github.com/kubernetes/website/tree/main/content/en/docs/reference/glossary](https://github.com/kubernetes/website/tree/main/content/en/docs/reference/glossary), with a content file for each glossary term.
+The raw data for glossary terms is stored at
+[the glossary directory](https://github.com/kubernetes/website/tree/main/content/en/docs/reference/glossary),
+with a content file for each glossary term.
 
 ### Glossary demo
 
-For example, the following include within the Markdown renders to {{< glossary_tooltip text="cluster" term_id="cluster" >}} with a tooltip:
+For example, the following include within the Markdown renders to
+{{< glossary_tooltip text="cluster" term_id="cluster" >}} with a tooltip:
 
 ```
 {{</* glossary_tooltip text="cluster" term_id="cluster" */>}}
@@ -83,9 +91,44 @@ You can also include a full definition:
 which renders as:
 {{< glossary_definition term_id="cluster" length="all" >}}
 
+## Links to API Reference
+
+You can link to a page of the Kubernetes API reference using the
+`api-reference` shortcode, for example to the
+{{< api-reference page="workload-resources/pod-v1" >}} reference:
+
+```
+{{</* api-reference page="workload-resources/pod-v1" */>}}
+```
+
+The content of the `page` parameter is the suffix of the URL of the API reference page.
+
+
+You can link to a specific place into a page by specifying an `anchor`
+parameter, for example to the {{< api-reference page="workload-resources/pod-v1" anchor="PodSpec" >}}
+reference or the {{< api-reference page="workload-resources/pod-v1" anchor="environment-variables" >}}
+section of the page:
+
+```
+{{</* api-reference page="workload-resources/pod-v1" anchor="PodSpec" */>}}
+{{</* api-reference page="workload-resources/pod-v1" anchor="environment-variables" */>}}
+```
+
+
+You can change the text of the link by specifying a `text` parameter, for
+example by linking to the
+{{< api-reference page="workload-resources/pod-v1" anchor="environment-variables" text="Environment Variables">}}
+section of the page:
+
+```
+{{</* api-reference page="workload-resources/pod-v1" anchor="environment-variables" text="Environment Variable" */>}}
+```
+
 ## Table captions
 
-You can make tables more accessible to screen readers by adding a table caption. To add a [caption](https://www.w3schools.com/tags/tag_caption.asp) to a table, enclose the table with a `table` shortcode and specify the caption with the `caption` parameter.
+You can make tables more accessible to screen readers by adding a table caption. To add a
+[caption](https://www.w3schools.com/tags/tag_caption.asp) to a table,
+enclose the table with a `table` shortcode and specify the caption with the `caption` parameter.
 
 {{< note >}}
 Table captions are visible to screen readers but invisible when viewed in standard HTML.
@@ -111,7 +154,8 @@ Parameter | Description | Default
 `logLevel` | The log level for log output | `INFO`
 {{< /table >}}
 
-If you inspect the HTML for the table, you should see this element immediately after the opening `<table>` element:
+If you inspect the HTML for the table, you should see this element immediately
+after the opening `<table>` element:
 
 ```html
 <caption style="display: none;">Configuration parameters</caption>
@@ -119,14 +163,25 @@ If you inspect the HTML for the table, you should see this element immediately a
 
 ## Tabs
 
-In a markdown page (`.md` file) on this site, you can add a tab set to display multiple flavors of a given solution.
+In a markdown page (`.md` file) on this site, you can add a tab set to display
+multiple flavors of a given solution.
 
 The `tabs` shortcode takes these parameters:
 
 * `name`: The name as shown on the tab.
-* `codelang`: If you provide inner content to the `tab` shortcode, you can tell Hugo what code language to use for highlighting.
-* `include`: The file to include in the tab. If the tab lives in a Hugo [leaf bundle](https://gohugo.io/content-management/page-bundles/#leaf-bundles), the file -- which can be any MIME type supported by Hugo -- is looked up in the bundle itself. If not, the content page that needs to be included is looked up relative to the current page. Note that with the `include`, you do not have any shortcode inner content and must use the self-closing syntax. For example, <code>{{</* tab name="Content File #1" include="example1" /*/>}}</code>. The language needs to be specified under `codelang` or the language is taken based on the file name. Non-content files are code-highlighted by default.
-* If your inner content is markdown, you must use the `%`-delimiter to surround the tab. For example, `{{%/* tab name="Tab 1" %}}This is **markdown**{{% /tab */%}}`
+* `codelang`: If you provide inner content to the `tab` shortcode, you can tell Hugo
+  what code language to use for highlighting.
+* `include`: The file to include in the tab. If the tab lives in a Hugo
+  [leaf bundle](https://gohugo.io/content-management/page-bundles/#leaf-bundles),
+  the file -- which can be any MIME type supported by Hugo -- is looked up in the bundle itself.
+  If not, the content page that needs to be included is looked up relative to the current page.
+  Note that with the `include`, you do not have any shortcode inner content and must use the
+  self-closing syntax. For example,
+  `{{</* tab name="Content File #1" include="example1" /*/>}}`. The language needs to be specified
+  under `codelang` or the language is taken based on the file name.
+  Non-content files are code-highlighted by default.
+* If your inner content is markdown, you must use the `%`-delimiter to surround the tab.
+  For example, `{{%/* tab name="Tab 1" %}}This is **markdown**{{% /tab */%}}`
 * You can combine the variations mentioned above inside a tab set.
 
 Below is a demo of the tabs shortcode.
@@ -215,6 +270,43 @@ Renders to:
 {{< tab name="JSON File" include="podtemplate.json" />}}
 {{< /tabs >}}
 
+## Third party content marker
+
+Running Kubernetes requires third-party software. For example: you
+usually need to add a
+[DNS server](/docs/tasks/administer-cluster/dns-custom-nameservers/#introduction)
+to your cluster so that name resolution works.
+
+When we link to third-party software, or otherwise mention it,
+we follow the [content guide](/docs/contribute/style/content-guide/)
+and we also mark those third party items.
+
+Using these shortcodes adds a disclaimer to any documentation page
+that uses them.
+
+### Lists {#third-party-content-list}
+
+For a list of several third-party items, add:
+```
+{{%/* thirdparty-content */%}}
+```
+just below the heading for the section that includes all items.
+
+### Items {#third-party-content-item}
+
+If you have a list where most of the items refer to in-project
+software (for example: Kubernetes itself, and the separate
+[Descheduler](https://github.com/kubernetes-sigs/descheduler)
+component), then there is a different form to use.
+
+Add the shortcode:
+```
+{{%/* thirdparty-content single="true" */%}}
+```
+
+before the item, or just below the heading for the specific item.
+
+
 ## Version strings
 
 To generate a version string for inclusion in the documentation, you can choose from
@@ -224,13 +316,17 @@ The two most commonly used version parameters are `latest` and `version`.
 
 ### `{{</* param "version" */>}}`
 
-The `{{</* param "version" */>}}` shortcode generates the value of the current version of
-the Kubernetes documentation from the `version` site parameter. The `param` shortcode accepts the name of one site parameter, in this case: `version`.
+The `{{</* param "version" */>}}` shortcode generates the value of the current
+version of the Kubernetes documentation from the `version` site parameter. The
+`param` shortcode accepts the name of one site parameter, in this case:
+`version`.
 
 {{< note >}}
-In previously released documentation, `latest` and `version` parameter values are not equivalent.
-After a new version is released, `latest` is incremented and the value of `version` for the documentation set remains unchanged. For example, a previously released version of the documentation displays `version` as
-`v1.19` and `latest` as `v1.20`.
+In previously released documentation, `latest` and `version` parameter values
+are not equivalent.  After a new version is released, `latest` is incremented
+and the value of `version` for the documentation set remains unchanged. For
+example, a previously released version of the documentation displays `version`
+as `v1.19` and `latest` as `v1.20`.
 {{< /note >}}
 
 Renders to:
@@ -249,7 +345,8 @@ Renders to:
 
 ### `{{</* latest-semver */>}}`
 
-The `{{</* latest-semver */>}}` shortcode generates the value of `latest` without the "v" prefix.
+The `{{</* latest-semver */>}}` shortcode generates the value of `latest`
+without the "v" prefix.
 
 Renders to:
 
@@ -266,8 +363,9 @@ Renders to:
 
 ### `{{</* latest-release-notes */>}}`
 
-The `{{</* latest-release-notes */>}}` shortcode generates a version string from `latest` and removes
-the "v" prefix. The shortcode prints a new URL for the release note CHANGELOG page with the modified version string.
+The `{{</* latest-release-notes */>}}` shortcode generates a version string
+from `latest` and removes the "v" prefix. The shortcode prints a new URL for
+the release note CHANGELOG page with the modified version string.
 
 Renders to:
 
@@ -280,3 +378,4 @@ Renders to:
 * Learn about [page content types](/docs/contribute/style/page-content-types/).
 * Learn about [opening a pull request](/docs/contribute/new-content/open-a-pr/).
 * Learn about [advanced contributing](/docs/contribute/advanced/).
+
diff --git a/content/en/docs/contribute/style/style-guide.md b/content/en/docs/contribute/style/style-guide.md
index 74379e4276..960efc01a7 100644
--- a/content/en/docs/contribute/style/style-guide.md
+++ b/content/en/docs/contribute/style/style-guide.md
@@ -14,7 +14,7 @@ For additional information on creating new content for the Kubernetes
 documentation, read the [Documentation Content Guide](/docs/contribute/style/content-guide/).
 
 Changes to the style guide are made by SIG Docs as a group. To propose a change
-or addition, [add it to the agenda](https://docs.google.com/document/d/1ddHwLK3kUMX1wVFIwlksjTk0MsqitBnWPe1LRa1Rx5A/edit) for an upcoming SIG Docs meeting, and attend the meeting to participate in the
+or addition, [add it to the agenda](https://bit.ly/sig-docs-agenda) for an upcoming SIG Docs meeting, and attend the meeting to participate in the
 discussion.
 
 <!-- body -->
@@ -46,10 +46,6 @@ When you refer specifically to interacting with an API object, use [UpperCamelCa
 
 When you are generally discussing an API object, use [sentence-style capitalization](https://docs.microsoft.com/en-us/style-guide/text-formatting/using-type/use-sentence-style-capitalization).
 
-You may use the word "resource", "API", or "object" to clarify a Kubernetes resource type in a sentence.
-
-Don't split an API object name into separate words. For example, use PodTemplateList, not Pod Template List.
-
 The following examples focus on capitalization. For more information about formatting API object names, review the related guidance on [Code Style](#code-style-inline-code).
 
 {{< table caption = "Do and Don't - Use Pascal case for API objects" >}}
@@ -187,6 +183,36 @@ Set the value of `image` to nginx:1.16. | Set the value of `image` to `nginx:1.1
 Set the value of the `replicas` field to 2. | Set the value of the `replicas` field to `2`.
 {{< /table >}}
 
+## Referring to Kubernetes API resources
+
+This section talks about how we reference API resources in the documentation.
+
+### Clarification about "resource"
+
+Kubernetes uses the word "resource" to refer to API resources, such as `pod`, `deployment`, and so on. We also use "resource" to talk about CPU and memory requests and limits. Always refer to API resources as "API resources" to avoid confusion with CPU and memory resources.
+
+### When to use Kubernetes API terminologies
+
+The different Kubernetes API terminologies are:
+
+- Resource type: the name used in the API URL (such as `pods`, `namespaces`)
+- Resource: a single instance of a resource type (such as `pod`, `secret`)
+- Object: a resource that serves as a "record of intent". An object is a desired state for a specific part of your cluster, which the Kubernetes control plane tries to maintain.
+
+Always use "resource" or "object" when referring to an API resource in docs. For example, use "a `Secret` object" over just "a `Secret`".
+
+### API resource names
+
+Always format API resource names using [UpperCamelCase](https://en.wikipedia.org/wiki/Camel_case), also known as PascalCase, and code formatting.
+
+For inline code in an HTML document, use the `<code>` tag. In a Markdown document, use the backtick (`` ` ``).
+
+Don't split an API object name into separate words. For example, use `PodTemplateList`, not Pod Template List.
+
+For more information about PascalCase and code formatting, please review the related guidance on [Use upper camel case for API objects](/docs/contribute/style/style-guide/#use-upper-camel-case-for-api-objects) and [Use code style for inline code, commands, and API objects](/docs/contribute/style/style-guide/#code-style-inline-code).
+
+For more information about Kubernetes API terminologies, please review the related guidance on [Kubernetes API terminology](/docs/reference/using-api/api-concepts/#standard-api-terminology).
+
 ## Code snippet formatting
 
 ### Don't include the command prompt
@@ -361,7 +387,7 @@ Beware.
 
 ### Katacoda Embedded Live Environment
 
-This button lets users run Minikube in their browser using the [Katacoda Terminal](https://www.katacoda.com/embed/panel).
+This button lets users run Minikube in their browser using the Katacoda Terminal.
 It lowers the barrier of entry by allowing users to use Minikube with one click instead of going through the complete
 Minikube and Kubectl installation process locally.
 
diff --git a/content/en/docs/contribute/suggesting-improvements.md b/content/en/docs/contribute/suggesting-improvements.md
index 9cab3f7a72..d79df11476 100644
--- a/content/en/docs/contribute/suggesting-improvements.md
+++ b/content/en/docs/contribute/suggesting-improvements.md
@@ -1,6 +1,5 @@
 ---
 title: Suggesting content improvements
-slug: suggest-improvements
 content_type: concept
 weight: 10
 card:
diff --git a/content/en/docs/doc-contributor-tools/linkchecker/README.md b/content/en/docs/doc-contributor-tools/linkchecker/README.md
index a575c4d1fe..6d4b714655 100644
--- a/content/en/docs/doc-contributor-tools/linkchecker/README.md
+++ b/content/en/docs/doc-contributor-tools/linkchecker/README.md
@@ -46,7 +46,7 @@ To run the link checker:
 2. Run the following command:
 
   ```
-  make docker-internal-linkcheck
+  make container-internal-linkcheck
   ```
 
 ## Understanding the output
diff --git a/content/en/docs/home/_index.md b/content/en/docs/home/_index.md
index b2ebb004a7..7297da2806 100644
--- a/content/en/docs/home/_index.md
+++ b/content/en/docs/home/_index.md
@@ -60,7 +60,7 @@ cards:
   title: K8s Release Notes
   description: If you are installing Kubernetes or upgrading to the newest version, refer to the current release notes.
   button: "Download Kubernetes"
-  button_path: "/docs/setup/release/notes"
+  button_path: "/releases/download"
 - name: about
   title: About the documentation
   description: This website contains documentation for the current and previous 4 versions of Kubernetes.
diff --git a/content/en/docs/home/supported-doc-versions.md b/content/en/docs/home/supported-doc-versions.md
index b955f95f56..fd3559a4d3 100644
--- a/content/en/docs/home/supported-doc-versions.md
+++ b/content/en/docs/home/supported-doc-versions.md
@@ -10,3 +10,8 @@ card:
 
 This website contains documentation for the current version of Kubernetes
 and the four previous versions of Kubernetes.
+
+The availability of documentation for a Kubernetes version is separate from whether
+that release is currently supported.
+Read [Support period](/releases/patch-releases/#support-period) to learn about
+which versions of Kubernetes are officially supported, and for how long.
\ No newline at end of file
diff --git a/content/en/docs/images/diagram-guide-example-3.svg b/content/en/docs/images/diagram-guide-example-3.svg
new file mode 100644
index 0000000000..85fef13910
--- /dev/null
+++ b/content/en/docs/images/diagram-guide-example-3.svg
@@ -0,0 +1 @@
+<svg id="graph-div" width="100%" xmlns="http://www.w3.org/2000/svg" height="747" style="max-width: 1540px;" viewBox="-50 -10 1540 747"><style>#graph-div {font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;fill:#000000;}#graph-div .error-icon{fill:#552222;}#graph-div .error-text{fill:#552222;stroke:#552222;}#graph-div .edge-thickness-normal{stroke-width:2px;}#graph-div .edge-thickness-thick{stroke-width:3.5px;}#graph-div .edge-pattern-solid{stroke-dasharray:0;}#graph-div .edge-pattern-dashed{stroke-dasharray:3;}#graph-div .edge-pattern-dotted{stroke-dasharray:2;}#graph-div .marker{fill:#666;stroke:#666;}#graph-div .marker.cross{stroke:#666;}#graph-div svg{font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;}#graph-div .actor{stroke:hsl(0, 0%, 83%);fill:#eee;}#graph-div text.actor&gt;tspan{fill:#333;stroke:none;}#graph-div .actor-line{stroke:#666;}#graph-div .messageLine0{stroke-width:1.5;stroke-dasharray:none;stroke:#333;}#graph-div .messageLine1{stroke-width:1.5;stroke-dasharray:2,2;stroke:#333;}#graph-div #arrowhead path{fill:#333;stroke:#333;}#graph-div .sequenceNumber{fill:white;}#graph-div #sequencenumber{fill:#333;}#graph-div #crosshead path{fill:#333;stroke:#333;}#graph-div .messageText{fill:#333;stroke:#333;}#graph-div .labelBox{stroke:hsl(0, 0%, 83%);fill:#eee;}#graph-div .labelText,#graph-div .labelText&gt;tspan{fill:#333;stroke:none;}#graph-div .loopText,#graph-div .loopText&gt;tspan{fill:#333;stroke:none;}#graph-div .loopLine{stroke-width:2px;stroke-dasharray:2,2;stroke:hsl(0, 0%, 83%);fill:hsl(0, 0%, 83%);}#graph-div .note{stroke:#999;fill:#666;}#graph-div .noteText,#graph-div .noteText&gt;tspan{fill:#fff;stroke:none;}#graph-div .activation0{fill:#f4f4f4;stroke:#666;}#graph-div .activation1{fill:#f4f4f4;stroke:#666;}#graph-div .activation2{fill:#f4f4f4;stroke:#666;}#graph-div .actorPopupMenu{position:absolute;}#graph-div .actorPopupMenuPanel{position:absolute;fill:#eee;box-shadow:0px 8px 16px 0px rgba(0,0,0,0.2);filter:drop-shadow(3px 5px 2px rgb(0 0 0 / 0.4));}#graph-div .actor-man line{stroke:hsl(0, 0%, 83%);fill:#eee;}#graph-div .actor-man circle,#graph-div line{stroke:hsl(0, 0%, 83%);fill:#eee;stroke-width:2px;}#graph-div :root{--mermaid-font-family:"trebuchet ms",verdana,arial,sans-serif;}</style><g></g><defs><symbol id="computer" width="24" height="24"><path transform="scale(.5)" d="M2 2v13h20v-13h-20zm18 11h-16v-9h16v9zm-10.228 6l.466-1h3.524l.467 1h-4.457zm14.228 3h-24l2-6h2.104l-1.33 4h18.45l-1.297-4h2.073l2 6zm-5-10h-14v-7h14v7z"></path></symbol></defs><defs><symbol id="database" fill-rule="evenodd" clip-rule="evenodd"><path transform="scale(.5)" d="M12.258.001l.256.004.255.005.253.008.251.01.249.012.247.015.246.016.242.019.241.02.239.023.236.024.233.027.231.028.229.031.225.032.223.034.22.036.217.038.214.04.211.041.208.043.205.045.201.046.198.048.194.05.191.051.187.053.183.054.18.056.175.057.172.059.168.06.163.061.16.063.155.064.15.066.074.033.073.033.071.034.07.034.069.035.068.035.067.035.066.035.064.036.064.036.062.036.06.036.06.037.058.037.058.037.055.038.055.038.053.038.052.038.051.039.05.039.048.039.047.039.045.04.044.04.043.04.041.04.04.041.039.041.037.041.036.041.034.041.033.042.032.042.03.042.029.042.027.042.026.043.024.043.023.043.021.043.02.043.018.044.017.043.015.044.013.044.012.044.011.045.009.044.007.045.006.045.004.045.002.045.001.045v17l-.001.045-.002.045-.004.045-.006.045-.007.045-.009.044-.011.045-.012.044-.013.044-.015.044-.017.043-.018.044-.02.043-.021.043-.023.043-.024.043-.026.043-.027.042-.029.042-.03.042-.032.042-.033.042-.034.041-.036.041-.037.041-.039.041-.04.041-.041.04-.043.04-.044.04-.045.04-.047.039-.048.039-.05.039-.051.039-.052.038-.053.038-.055.038-.055.038-.058.037-.058.037-.06.037-.06.036-.062.036-.064.036-.064.036-.066.035-.067.035-.068.035-.069.035-.07.034-.071.034-.073.033-.074.033-.15.066-.155.064-.16.063-.163.061-.168.06-.172.059-.175.057-.18.056-.183.054-.187.053-.191.051-.194.05-.198.048-.201.046-.205.045-.208.043-.211.041-.214.04-.217.038-.22.036-.223.034-.225.032-.229.031-.231.028-.233.027-.236.024-.239.023-.241.02-.242.019-.246.016-.247.015-.249.012-.251.01-.253.008-.255.005-.256.004-.258.001-.258-.001-.256-.004-.255-.005-.253-.008-.251-.01-.249-.012-.247-.015-.245-.016-.243-.019-.241-.02-.238-.023-.236-.024-.234-.027-.231-.028-.228-.031-.226-.032-.223-.034-.22-.036-.217-.038-.214-.04-.211-.041-.208-.043-.204-.045-.201-.046-.198-.048-.195-.05-.19-.051-.187-.053-.184-.054-.179-.056-.176-.057-.172-.059-.167-.06-.164-.061-.159-.063-.155-.064-.151-.066-.074-.033-.072-.033-.072-.034-.07-.034-.069-.035-.068-.035-.067-.035-.066-.035-.064-.036-.063-.036-.062-.036-.061-.036-.06-.037-.058-.037-.057-.037-.056-.038-.055-.038-.053-.038-.052-.038-.051-.039-.049-.039-.049-.039-.046-.039-.046-.04-.044-.04-.043-.04-.041-.04-.04-.041-.039-.041-.037-.041-.036-.041-.034-.041-.033-.042-.032-.042-.03-.042-.029-.042-.027-.042-.026-.043-.024-.043-.023-.043-.021-.043-.02-.043-.018-.044-.017-.043-.015-.044-.013-.044-.012-.044-.011-.045-.009-.044-.007-.045-.006-.045-.004-.045-.002-.045-.001-.045v-17l.001-.045.002-.045.004-.045.006-.045.007-.045.009-.044.011-.045.012-.044.013-.044.015-.044.017-.043.018-.044.02-.043.021-.043.023-.043.024-.043.026-.043.027-.042.029-.042.03-.042.032-.042.033-.042.034-.041.036-.041.037-.041.039-.041.04-.041.041-.04.043-.04.044-.04.046-.04.046-.039.049-.039.049-.039.051-.039.052-.038.053-.038.055-.038.056-.038.057-.037.058-.037.06-.037.061-.036.062-.036.063-.036.064-.036.066-.035.067-.035.068-.035.069-.035.07-.034.072-.034.072-.033.074-.033.151-.066.155-.064.159-.063.164-.061.167-.06.172-.059.176-.057.179-.056.184-.054.187-.053.19-.051.195-.05.198-.048.201-.046.204-.045.208-.043.211-.041.214-.04.217-.038.22-.036.223-.034.226-.032.228-.031.231-.028.234-.027.236-.024.238-.023.241-.02.243-.019.245-.016.247-.015.249-.012.251-.01.253-.008.255-.005.256-.004.258-.001.258.001zm-9.258 20.499v.01l.001.021.003.021.004.022.005.021.006.022.007.022.009.023.01.022.011.023.012.023.013.023.015.023.016.024.017.023.018.024.019.024.021.024.022.025.023.024.024.025.052.049.056.05.061.051.066.051.07.051.075.051.079.052.084.052.088.052.092.052.097.052.102.051.105.052.11.052.114.051.119.051.123.051.127.05.131.05.135.05.139.048.144.049.147.047.152.047.155.047.16.045.163.045.167.043.171.043.176.041.178.041.183.039.187.039.19.037.194.035.197.035.202.033.204.031.209.03.212.029.216.027.219.025.222.024.226.021.23.02.233.018.236.016.24.015.243.012.246.01.249.008.253.005.256.004.259.001.26-.001.257-.004.254-.005.25-.008.247-.011.244-.012.241-.014.237-.016.233-.018.231-.021.226-.021.224-.024.22-.026.216-.027.212-.028.21-.031.205-.031.202-.034.198-.034.194-.036.191-.037.187-.039.183-.04.179-.04.175-.042.172-.043.168-.044.163-.045.16-.046.155-.046.152-.047.148-.048.143-.049.139-.049.136-.05.131-.05.126-.05.123-.051.118-.052.114-.051.11-.052.106-.052.101-.052.096-.052.092-.052.088-.053.083-.051.079-.052.074-.052.07-.051.065-.051.06-.051.056-.05.051-.05.023-.024.023-.025.021-.024.02-.024.019-.024.018-.024.017-.024.015-.023.014-.024.013-.023.012-.023.01-.023.01-.022.008-.022.006-.022.006-.022.004-.022.004-.021.001-.021.001-.021v-4.127l-.077.055-.08.053-.083.054-.085.053-.087.052-.09.052-.093.051-.095.05-.097.05-.1.049-.102.049-.105.048-.106.047-.109.047-.111.046-.114.045-.115.045-.118.044-.12.043-.122.042-.124.042-.126.041-.128.04-.13.04-.132.038-.134.038-.135.037-.138.037-.139.035-.142.035-.143.034-.144.033-.147.032-.148.031-.15.03-.151.03-.153.029-.154.027-.156.027-.158.026-.159.025-.161.024-.162.023-.163.022-.165.021-.166.02-.167.019-.169.018-.169.017-.171.016-.173.015-.173.014-.175.013-.175.012-.177.011-.178.01-.179.008-.179.008-.181.006-.182.005-.182.004-.184.003-.184.002h-.37l-.184-.002-.184-.003-.182-.004-.182-.005-.181-.006-.179-.008-.179-.008-.178-.01-.176-.011-.176-.012-.175-.013-.173-.014-.172-.015-.171-.016-.17-.017-.169-.018-.167-.019-.166-.02-.165-.021-.163-.022-.162-.023-.161-.024-.159-.025-.157-.026-.156-.027-.155-.027-.153-.029-.151-.03-.15-.03-.148-.031-.146-.032-.145-.033-.143-.034-.141-.035-.14-.035-.137-.037-.136-.037-.134-.038-.132-.038-.13-.04-.128-.04-.126-.041-.124-.042-.122-.042-.12-.044-.117-.043-.116-.045-.113-.045-.112-.046-.109-.047-.106-.047-.105-.048-.102-.049-.1-.049-.097-.05-.095-.05-.093-.052-.09-.051-.087-.052-.085-.053-.083-.054-.08-.054-.077-.054v4.127zm0-5.654v.011l.001.021.003.021.004.021.005.022.006.022.007.022.009.022.01.022.011.023.012.023.013.023.015.024.016.023.017.024.018.024.019.024.021.024.022.024.023.025.024.024.052.05.056.05.061.05.066.051.07.051.075.052.079.051.084.052.088.052.092.052.097.052.102.052.105.052.11.051.114.051.119.052.123.05.127.051.131.05.135.049.139.049.144.048.147.048.152.047.155.046.16.045.163.045.167.044.171.042.176.042.178.04.183.04.187.038.19.037.194.036.197.034.202.033.204.032.209.03.212.028.216.027.219.025.222.024.226.022.23.02.233.018.236.016.24.014.243.012.246.01.249.008.253.006.256.003.259.001.26-.001.257-.003.254-.006.25-.008.247-.01.244-.012.241-.015.237-.016.233-.018.231-.02.226-.022.224-.024.22-.025.216-.027.212-.029.21-.03.205-.032.202-.033.198-.035.194-.036.191-.037.187-.039.183-.039.179-.041.175-.042.172-.043.168-.044.163-.045.16-.045.155-.047.152-.047.148-.048.143-.048.139-.05.136-.049.131-.05.126-.051.123-.051.118-.051.114-.052.11-.052.106-.052.101-.052.096-.052.092-.052.088-.052.083-.052.079-.052.074-.051.07-.052.065-.051.06-.05.056-.051.051-.049.023-.025.023-.024.021-.025.02-.024.019-.024.018-.024.017-.024.015-.023.014-.023.013-.024.012-.022.01-.023.01-.023.008-.022.006-.022.006-.022.004-.021.004-.022.001-.021.001-.021v-4.139l-.077.054-.08.054-.083.054-.085.052-.087.053-.09.051-.093.051-.095.051-.097.05-.1.049-.102.049-.105.048-.106.047-.109.047-.111.046-.114.045-.115.044-.118.044-.12.044-.122.042-.124.042-.126.041-.128.04-.13.039-.132.039-.134.038-.135.037-.138.036-.139.036-.142.035-.143.033-.144.033-.147.033-.148.031-.15.03-.151.03-.153.028-.154.028-.156.027-.158.026-.159.025-.161.024-.162.023-.163.022-.165.021-.166.02-.167.019-.169.018-.169.017-.171.016-.173.015-.173.014-.175.013-.175.012-.177.011-.178.009-.179.009-.179.007-.181.007-.182.005-.182.004-.184.003-.184.002h-.37l-.184-.002-.184-.003-.182-.004-.182-.005-.181-.007-.179-.007-.179-.009-.178-.009-.176-.011-.176-.012-.175-.013-.173-.014-.172-.015-.171-.016-.17-.017-.169-.018-.167-.019-.166-.02-.165-.021-.163-.022-.162-.023-.161-.024-.159-.025-.157-.026-.156-.027-.155-.028-.153-.028-.151-.03-.15-.03-.148-.031-.146-.033-.145-.033-.143-.033-.141-.035-.14-.036-.137-.036-.136-.037-.134-.038-.132-.039-.13-.039-.128-.04-.126-.041-.124-.042-.122-.043-.12-.043-.117-.044-.116-.044-.113-.046-.112-.046-.109-.046-.106-.047-.105-.048-.102-.049-.1-.049-.097-.05-.095-.051-.093-.051-.09-.051-.087-.053-.085-.052-.083-.054-.08-.054-.077-.054v4.139zm0-5.666v.011l.001.02.003.022.004.021.005.022.006.021.007.022.009.023.01.022.011.023.012.023.013.023.015.023.016.024.017.024.018.023.019.024.021.025.022.024.023.024.024.025.052.05.056.05.061.05.066.051.07.051.075.052.079.051.084.052.088.052.092.052.097.052.102.052.105.051.11.052.114.051.119.051.123.051.127.05.131.05.135.05.139.049.144.048.147.048.152.047.155.046.16.045.163.045.167.043.171.043.176.042.178.04.183.04.187.038.19.037.194.036.197.034.202.033.204.032.209.03.212.028.216.027.219.025.222.024.226.021.23.02.233.018.236.017.24.014.243.012.246.01.249.008.253.006.256.003.259.001.26-.001.257-.003.254-.006.25-.008.247-.01.244-.013.241-.014.237-.016.233-.018.231-.02.226-.022.224-.024.22-.025.216-.027.212-.029.21-.03.205-.032.202-.033.198-.035.194-.036.191-.037.187-.039.183-.039.179-.041.175-.042.172-.043.168-.044.163-.045.16-.045.155-.047.152-.047.148-.048.143-.049.139-.049.136-.049.131-.051.126-.05.123-.051.118-.052.114-.051.11-.052.106-.052.101-.052.096-.052.092-.052.088-.052.083-.052.079-.052.074-.052.07-.051.065-.051.06-.051.056-.05.051-.049.023-.025.023-.025.021-.024.02-.024.019-.024.018-.024.017-.024.015-.023.014-.024.013-.023.012-.023.01-.022.01-.023.008-.022.006-.022.006-.022.004-.022.004-.021.001-.021.001-.021v-4.153l-.077.054-.08.054-.083.053-.085.053-.087.053-.09.051-.093.051-.095.051-.097.05-.1.049-.102.048-.105.048-.106.048-.109.046-.111.046-.114.046-.115.044-.118.044-.12.043-.122.043-.124.042-.126.041-.128.04-.13.039-.132.039-.134.038-.135.037-.138.036-.139.036-.142.034-.143.034-.144.033-.147.032-.148.032-.15.03-.151.03-.153.028-.154.028-.156.027-.158.026-.159.024-.161.024-.162.023-.163.023-.165.021-.166.02-.167.019-.169.018-.169.017-.171.016-.173.015-.173.014-.175.013-.175.012-.177.01-.178.01-.179.009-.179.007-.181.006-.182.006-.182.004-.184.003-.184.001-.185.001-.185-.001-.184-.001-.184-.003-.182-.004-.182-.006-.181-.006-.179-.007-.179-.009-.178-.01-.176-.01-.176-.012-.175-.013-.173-.014-.172-.015-.171-.016-.17-.017-.169-.018-.167-.019-.166-.02-.165-.021-.163-.023-.162-.023-.161-.024-.159-.024-.157-.026-.156-.027-.155-.028-.153-.028-.151-.03-.15-.03-.148-.032-.146-.032-.145-.033-.143-.034-.141-.034-.14-.036-.137-.036-.136-.037-.134-.038-.132-.039-.13-.039-.128-.041-.126-.041-.124-.041-.122-.043-.12-.043-.117-.044-.116-.044-.113-.046-.112-.046-.109-.046-.106-.048-.105-.048-.102-.048-.1-.05-.097-.049-.095-.051-.093-.051-.09-.052-.087-.052-.085-.053-.083-.053-.08-.054-.077-.054v4.153zm8.74-8.179l-.257.004-.254.005-.25.008-.247.011-.244.012-.241.014-.237.016-.233.018-.231.021-.226.022-.224.023-.22.026-.216.027-.212.028-.21.031-.205.032-.202.033-.198.034-.194.036-.191.038-.187.038-.183.04-.179.041-.175.042-.172.043-.168.043-.163.045-.16.046-.155.046-.152.048-.148.048-.143.048-.139.049-.136.05-.131.05-.126.051-.123.051-.118.051-.114.052-.11.052-.106.052-.101.052-.096.052-.092.052-.088.052-.083.052-.079.052-.074.051-.07.052-.065.051-.06.05-.056.05-.051.05-.023.025-.023.024-.021.024-.02.025-.019.024-.018.024-.017.023-.015.024-.014.023-.013.023-.012.023-.01.023-.01.022-.008.022-.006.023-.006.021-.004.022-.004.021-.001.021-.001.021.001.021.001.021.004.021.004.022.006.021.006.023.008.022.01.022.01.023.012.023.013.023.014.023.015.024.017.023.018.024.019.024.02.025.021.024.023.024.023.025.051.05.056.05.06.05.065.051.07.052.074.051.079.052.083.052.088.052.092.052.096.052.101.052.106.052.11.052.114.052.118.051.123.051.126.051.131.05.136.05.139.049.143.048.148.048.152.048.155.046.16.046.163.045.168.043.172.043.175.042.179.041.183.04.187.038.191.038.194.036.198.034.202.033.205.032.21.031.212.028.216.027.22.026.224.023.226.022.231.021.233.018.237.016.241.014.244.012.247.011.25.008.254.005.257.004.26.001.26-.001.257-.004.254-.005.25-.008.247-.011.244-.012.241-.014.237-.016.233-.018.231-.021.226-.022.224-.023.22-.026.216-.027.212-.028.21-.031.205-.032.202-.033.198-.034.194-.036.191-.038.187-.038.183-.04.179-.041.175-.042.172-.043.168-.043.163-.045.16-.046.155-.046.152-.048.148-.048.143-.048.139-.049.136-.05.131-.05.126-.051.123-.051.118-.051.114-.052.11-.052.106-.052.101-.052.096-.052.092-.052.088-.052.083-.052.079-.052.074-.051.07-.052.065-.051.06-.05.056-.05.051-.05.023-.025.023-.024.021-.024.02-.025.019-.024.018-.024.017-.023.015-.024.014-.023.013-.023.012-.023.01-.023.01-.022.008-.022.006-.023.006-.021.004-.022.004-.021.001-.021.001-.021-.001-.021-.001-.021-.004-.021-.004-.022-.006-.021-.006-.023-.008-.022-.01-.022-.01-.023-.012-.023-.013-.023-.014-.023-.015-.024-.017-.023-.018-.024-.019-.024-.02-.025-.021-.024-.023-.024-.023-.025-.051-.05-.056-.05-.06-.05-.065-.051-.07-.052-.074-.051-.079-.052-.083-.052-.088-.052-.092-.052-.096-.052-.101-.052-.106-.052-.11-.052-.114-.052-.118-.051-.123-.051-.126-.051-.131-.05-.136-.05-.139-.049-.143-.048-.148-.048-.152-.048-.155-.046-.16-.046-.163-.045-.168-.043-.172-.043-.175-.042-.179-.041-.183-.04-.187-.038-.191-.038-.194-.036-.198-.034-.202-.033-.205-.032-.21-.031-.212-.028-.216-.027-.22-.026-.224-.023-.226-.022-.231-.021-.233-.018-.237-.016-.241-.014-.244-.012-.247-.011-.25-.008-.254-.005-.257-.004-.26-.001-.26.001z"></path></symbol></defs><defs><symbol id="clock" width="24" height="24"><path transform="scale(.5)" d="M12 2c5.514 0 10 4.486 10 10s-4.486 10-10 10-10-4.486-10-10 4.486-10 10-10zm0-2c-6.627 0-12 5.373-12 12s5.373 12 12 12 12-5.373 12-12-5.373-12-12-12zm5.848 12.459c.202.038.202.333.001.372-1.907.361-6.045 1.111-6.547 1.111-.719 0-1.301-.582-1.301-1.301 0-.512.77-5.447 1.125-7.445.034-.192.312-.181.343.014l.985 6.238 5.394 1.011z"></path></symbol></defs><line id="actor14" x1="75" y1="80" x2="75" y2="681" class="200" stroke-width="0.5px" stroke="#999"></line><g class="actor-man"><line id="actor-man-torso14" x1="75" y1="25" x2="75" y2="45"></line><line id="actor-man-arms14" x1="57" y1="33" x2="93" y2="33"></line><line x1="57" y1="60" x2="75" y2="45"></line><line x1="75" y1="45" x2="91" y2="60"></line><circle cx="75" cy="10" r="15" width="150" height="65"></circle><text x="75" y="67.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="75" dy="0">me</tspan></text></g><g><line id="actor15" x1="357" y1="5" x2="357" y2="681" class="200" stroke-width="0.5px" stroke="#999"></line><g id="root-15"><rect x="282" y="0" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="357" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="357" dy="-14">control plane</tspan></text><text x="357" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="357" dy="0"></tspan></text><text x="357" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="357" dy="14">api-server</tspan></text></g></g><g><line id="actor16" x1="561" y1="5" x2="561" y2="681" class="200" stroke-width="0.5px" stroke="#999"></line><g id="root-16"><rect x="486" y="0" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="561" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="561" dy="-14">control plane</tspan></text><text x="561" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="561" dy="0"></tspan></text><text x="561" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="561" dy="14">etcd datastore</tspan></text></g></g><g><line id="actor17" x1="761" y1="5" x2="761" y2="681" class="200" stroke-width="0.5px" stroke="#999"></line><g id="root-17"><rect x="686" y="0" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="761" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="761" dy="-21">control plane</tspan></text><text x="761" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="761" dy="-7"></tspan></text><text x="761" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="761" dy="7">controller</tspan></text><text x="761" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="761" dy="21">manager</tspan></text></g></g><g><line id="actor18" x1="961" y1="5" x2="961" y2="681" class="200" stroke-width="0.5px" stroke="#999"></line><g id="root-18"><rect x="886" y="0" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="961" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="961" dy="-14">control plane</tspan></text><text x="961" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="961" dy="0"></tspan></text><text x="961" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="961" dy="14">scheduler</tspan></text></g></g><g><line id="actor19" x1="1161" y1="5" x2="1161" y2="681" class="200" stroke-width="0.5px" stroke="#999"></line><g id="root-19"><rect x="1086" y="0" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="1161" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1161" dy="-14">node</tspan></text><text x="1161" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1161" dy="0"></tspan></text><text x="1161" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1161" dy="14">kubelet</tspan></text></g></g><g><line id="actor20" x1="1365" y1="5" x2="1365" y2="681" class="200" stroke-width="0.5px" stroke="#999"></line><g id="root-20"><rect x="1290" y="0" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="1365" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1365" dy="-21">node</tspan></text><text x="1365" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1365" dy="-7"></tspan></text><text x="1365" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1365" dy="7">container</tspan></text><text x="1365" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1365" dy="21">runtime</tspan></text></g></g><defs><marker id="arrowhead" refX="9" refY="5" markerUnits="userSpaceOnUse" markerWidth="12" markerHeight="12" orient="auto"><path d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs><defs><marker id="crosshead" markerWidth="15" markerHeight="8" orient="auto" refX="16" refY="4"><path fill="black" stroke="#000000" stroke-width="1px" d="M 9,2 V 6 L16,4 Z" style="stroke-dasharray: 0, 0;"></path><path fill="none" stroke="#000000" stroke-width="1px" d="M 0,1 L 6,7 M 6,1 L 0,7" style="stroke-dasharray: 0, 0;"></path></marker></defs><defs><marker id="filled-head" refX="18" refY="7" markerWidth="20" markerHeight="28" orient="auto"><path d="M 18,7 L9,13 L14,7 L9,1 Z"></path></marker></defs><defs><marker id="sequencenumber" refX="15" refY="15" markerWidth="60" markerHeight="40" orient="auto"><circle cx="15" cy="15" r="6"></circle></marker></defs><text x="216" y="80" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">1. kubectl create -f pod.yaml</text><line x1="75" y1="113" x2="357" y2="113" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></line><text x="459" y="128" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">2. save new state</text><line x1="357" y1="161" x2="561" y2="161" class="messageLine1" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="stroke-dasharray: 3, 3; fill: none;"></line><text x="559" y="176" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">3. check for changes</text><line x1="761" y1="209" x2="357" y2="209" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></line><text x="659" y="224" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">4. watch for unassigned pods(s)</text><line x1="961" y1="257" x2="357" y2="257" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></line><text x="659" y="272" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">5. notify about pod w nodename=" "</text><line x1="357" y1="305" x2="961" y2="305" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></line><text x="659" y="320" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">6. assign pod to node</text><line x1="961" y1="353" x2="357" y2="353" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></line><text x="459" y="368" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">7. save new state</text><line x1="357" y1="401" x2="561" y2="401" class="messageLine1" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="stroke-dasharray: 3, 3; fill: none;"></line><text x="759" y="416" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">8. look for newly assigned pod(s)</text><line x1="1161" y1="449" x2="357" y2="449" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></line><text x="759" y="464" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">9. bind pod to node</text><line x1="357" y1="497" x2="1161" y2="497" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></line><text x="1263" y="512" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">10. start container</text><line x1="1161" y1="545" x2="1365" y2="545" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></line><text x="759" y="560" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">11. update pod status</text><line x1="1161" y1="593" x2="357" y2="593" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></line><text x="459" y="608" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">12. save new state</text><line x1="357" y1="641" x2="561" y2="641" class="messageLine1" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="stroke-dasharray: 3, 3; fill: none;"></line><g class="actor-man"><line id="actor-man-torso20" x1="75" y1="686" x2="75" y2="706"></line><line id="actor-man-arms20" x1="57" y1="694" x2="93" y2="694"></line><line x1="57" y1="721" x2="75" y2="706"></line><line x1="75" y1="706" x2="91" y2="721"></line><circle cx="75" cy="671" r="15" width="150" height="65"></circle><text x="75" y="728.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="75" dy="0">me</tspan></text></g><g><rect x="282" y="661" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="357" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="357" dy="-14">control plane</tspan></text><text x="357" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="357" dy="0"></tspan></text><text x="357" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="357" dy="14">api-server</tspan></text></g><g><rect x="486" y="661" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="561" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="561" dy="-14">control plane</tspan></text><text x="561" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="561" dy="0"></tspan></text><text x="561" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="561" dy="14">etcd datastore</tspan></text></g><g><rect x="686" y="661" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="761" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="761" dy="-21">control plane</tspan></text><text x="761" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="761" dy="-7"></tspan></text><text x="761" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="761" dy="7">controller</tspan></text><text x="761" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="761" dy="21">manager</tspan></text></g><g><rect x="886" y="661" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="961" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="961" dy="-14">control plane</tspan></text><text x="961" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="961" dy="0"></tspan></text><text x="961" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="961" dy="14">scheduler</tspan></text></g><g><rect x="1086" y="661" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="1161" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1161" dy="-14">node</tspan></text><text x="1161" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1161" dy="0"></tspan></text><text x="1161" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1161" dy="14">kubelet</tspan></text></g><g><rect x="1290" y="661" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="1365" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1365" dy="-21">node</tspan></text><text x="1365" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1365" dy="-7"></tspan></text><text x="1365" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1365" dy="7">container</tspan></text><text x="1365" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1365" dy="21">runtime</tspan></text></g></svg>
\ No newline at end of file
diff --git a/content/en/docs/images/ingress.svg b/content/en/docs/images/ingress.svg
new file mode 100644
index 0000000000..450a0aae9b
--- /dev/null
+++ b/content/en/docs/images/ingress.svg
@@ -0,0 +1 @@
+<svg viewBox="0 0 683.28125 224" style="max-width: 683.28125px;" height="224" aria-labelledby="chart-title-graph-div chart-desc-graph-div" role="img" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg" width="100%" id="graph-div"><title id="chart-title-graph-div"></title><desc id="chart-desc-graph-div"></desc><style>#graph-div {font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;fill:#333;}#graph-div .error-icon{fill:#552222;}#graph-div .error-text{fill:#552222;stroke:#552222;}#graph-div .edge-thickness-normal{stroke-width:2px;}#graph-div .edge-thickness-thick{stroke-width:3.5px;}#graph-div .edge-pattern-solid{stroke-dasharray:0;}#graph-div .edge-pattern-dashed{stroke-dasharray:3;}#graph-div .edge-pattern-dotted{stroke-dasharray:2;}#graph-div .marker{fill:#333333;stroke:#333333;}#graph-div .marker.cross{stroke:#333333;}#graph-div svg{font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;}#graph-div .label{font-family:"trebuchet ms",verdana,arial,sans-serif;color:#333;}#graph-div .cluster-label text{fill:#333;}#graph-div .cluster-label span{color:#333;}#graph-div .label text,#graph-div span{fill:#333;color:#333;}#graph-div .node rect,#graph-div .node circle,#graph-div .node ellipse,#graph-div .node polygon,#graph-div .node path{fill:#ECECFF;stroke:#9370DB;stroke-width:1px;}#graph-div .node .label{text-align:center;}#graph-div .node.clickable{cursor:pointer;}#graph-div .arrowheadPath{fill:#333333;}#graph-div .edgePath .path{stroke:#333333;stroke-width:2.0px;}#graph-div .flowchart-link{stroke:#333333;fill:none;}#graph-div .edgeLabel{background-color:#e8e8e8;text-align:center;}#graph-div .edgeLabel rect{opacity:0.5;background-color:#e8e8e8;fill:#e8e8e8;}#graph-div .cluster rect{fill:#ffffde;stroke:#aaaa33;stroke-width:1px;}#graph-div .cluster text{fill:#333;}#graph-div .cluster span{color:#333;}#graph-div div.mermaidTooltip{position:absolute;text-align:center;max-width:200px;padding:2px;font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:12px;background:hsl(80, 100%, 96.2745098039%);border:1px solid #aaaa33;border-radius:2px;pointer-events:none;z-index:100;}#graph-div :root{--mermaid-font-family:"trebuchet ms",verdana,arial,sans-serif;}#graph-div .plain&gt;*{fill:#ddd!important;stroke:#fff!important;stroke-width:4px!important;color:#000!important;}#graph-div .plain span{fill:#ddd!important;stroke:#fff!important;stroke-width:4px!important;color:#000!important;}#graph-div .k8s&gt;*{fill:#326ce5!important;stroke:#fff!important;stroke-width:4px!important;color:#fff!important;}#graph-div .k8s span{fill:#326ce5!important;stroke:#fff!important;stroke-width:4px!important;color:#fff!important;}#graph-div .cluster&gt;*{fill:#fff!important;stroke:#bbb!important;stroke-width:2px!important;color:#326ce5!important;}#graph-div .cluster span{fill:#fff!important;stroke:#bbb!important;stroke-width:2px!important;color:#326ce5!important;}</style><g><g class="output"><g class="clusters"><g style="opacity: 1;" transform="translate(464.8125,112)" id="flowchart-cluster-82" class="cluster"><rect y="-104" x="-210.46875" height="208" width="420.9375"></rect><g id="graph-divText" transform="translate(0, -90)" class="label"><g transform="translate(-24.578125,-12)"><foreignObject height="24" width="49.15625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">cluster</div></foreignObject></g></g></g></g><g class="edgePaths"><g style="opacity: 1;" id="L-client-ingress" class="edgePath LS-client LE-ingress"><path style="fill:none;stroke-width:2px;stroke-dasharray:3;" marker-end="url(#arrowhead118)" d="M80.015625,112L94.54296875,112C109.0703125,112,138.125,112,167.1796875,112C196.234375,112,225.2890625,112,243.98307291666666,112C262.6770833333333,112,271.0104166666667,112,275.1770833333333,112L279.34375,112" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead118"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-ingress-service" class="edgePath LS-ingress LE-service"><path style="fill:none" marker-end="url(#arrowhead119)" d="M348.46875,112L359.6731770833333,112C370.8776041666667,112,393.2864583333333,112,415.6953125,112C438.1041666666667,112,460.5130208333333,112,471.7174479166667,112L482.921875,112" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead119"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-service-pod1" class="edgePath LS-service LE-pod1"><path style="fill:none" marker-end="url(#arrowhead120)" d="M547.2456781914893,90L552.6396276595744,85.83333333333333C558.0335771276596,81.66666666666667,568.8214760638298,73.33333333333333,578.3820921985815,69.16666666666667C587.9427083333334,65,596.2760416666666,65,600.4427083333334,65L604.609375,65" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead120"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-service-pod2" class="edgePath LS-service LE-pod2"><path style="fill:none" marker-end="url(#arrowhead121)" d="M547.2456781914893,134L552.6396276595744,138.16666666666666C558.0335771276596,142.33333333333334,568.8214760638298,150.66666666666666,578.3820921985815,154.83333333333334C587.9427083333334,159,596.2760416666666,159,600.4427083333334,159L604.609375,159" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead121"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g></g><g class="edgeLabels"><g style="opacity: 1;" transform="translate(167.1796875,112)" class="edgeLabel"><g class="label" transform="translate(-62.1640625,-24)"><rect height="48" width="124.328125" ry="0" rx="0"></rect><foreignObject height="48" width="124.328125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-client' L-LE-ingress" id="L-L-client-ingress">Ingress-managed <br/> load balancer</span></div></foreignObject></g></g><g style="opacity: 1;" transform="translate(415.6953125,112)" class="edgeLabel"><g class="label" transform="translate(-42.2265625,-12)"><rect height="24" width="84.453125" ry="0" rx="0"></rect><foreignObject height="24" width="84.453125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-ingress' L-LE-service" id="L-L-ingress-service">routing rule</span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-service' L-LE-pod1" id="L-L-service-pod1"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-service' L-LE-pod2" id="L-L-service-pod2"></span></div></foreignObject></g></g></g><g class="nodes"><g style="opacity: 1;" transform="translate(313.90625,112)" id="flowchart-ingress-74" class="node k8s"><rect class="label-container" height="44" width="69.125" y="-22" x="-34.5625" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-24.5625,-12)"><foreignObject height="24" width="49.125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Ingress</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(627.4453125,65)" id="flowchart-pod1-79" class="node k8s"><rect class="label-container" height="44" width="45.671875" y="-22" x="-22.8359375" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-12.8359375,-12)"><foreignObject height="24" width="25.671875"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Pod</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(518.765625,112)" id="flowchart-service-76" class="node k8s"><rect class="label-container" height="44" width="71.6875" y="-22" x="-35.84375" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-25.84375,-12)"><foreignObject height="24" width="51.6875"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Service</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(627.4453125,159)" id="flowchart-pod2-81" class="node k8s"><rect class="label-container" height="44" width="45.671875" y="-22" x="-22.8359375" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-12.8359375,-12)"><foreignObject height="24" width="25.671875"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Pod</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(44.0078125,112)" id="flowchart-client-73" class="node plain"><rect class="label-container" height="44" width="72.015625" y="-22" x="-36.0078125" ry="22" rx="22"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-20.5078125,-12)"><foreignObject height="24" width="41.015625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">client</div></foreignObject></g></g></g></g></g></g></svg>
\ No newline at end of file
diff --git a/content/en/docs/images/ingressFanOut.svg b/content/en/docs/images/ingressFanOut.svg
new file mode 100644
index 0000000000..a6bf202635
--- /dev/null
+++ b/content/en/docs/images/ingressFanOut.svg
@@ -0,0 +1 @@
+<svg viewBox="0 0 854.515625 412" style="max-width: 854.515625px;" height="412" aria-labelledby="chart-title-graph-div chart-desc-graph-div" role="img" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg" width="100%" id="graph-div"><title id="chart-title-graph-div"></title><desc id="chart-desc-graph-div"></desc><style>#graph-div {font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;fill:#333;}#graph-div .error-icon{fill:#552222;}#graph-div .error-text{fill:#552222;stroke:#552222;}#graph-div .edge-thickness-normal{stroke-width:2px;}#graph-div .edge-thickness-thick{stroke-width:3.5px;}#graph-div .edge-pattern-solid{stroke-dasharray:0;}#graph-div .edge-pattern-dashed{stroke-dasharray:3;}#graph-div .edge-pattern-dotted{stroke-dasharray:2;}#graph-div .marker{fill:#333333;stroke:#333333;}#graph-div .marker.cross{stroke:#333333;}#graph-div svg{font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;}#graph-div .label{font-family:"trebuchet ms",verdana,arial,sans-serif;color:#333;}#graph-div .cluster-label text{fill:#333;}#graph-div .cluster-label span{color:#333;}#graph-div .label text,#graph-div span{fill:#333;color:#333;}#graph-div .node rect,#graph-div .node circle,#graph-div .node ellipse,#graph-div .node polygon,#graph-div .node path{fill:#ECECFF;stroke:#9370DB;stroke-width:1px;}#graph-div .node .label{text-align:center;}#graph-div .node.clickable{cursor:pointer;}#graph-div .arrowheadPath{fill:#333333;}#graph-div .edgePath .path{stroke:#333333;stroke-width:2.0px;}#graph-div .flowchart-link{stroke:#333333;fill:none;}#graph-div .edgeLabel{background-color:#e8e8e8;text-align:center;}#graph-div .edgeLabel rect{opacity:0.5;background-color:#e8e8e8;fill:#e8e8e8;}#graph-div .cluster rect{fill:#ffffde;stroke:#aaaa33;stroke-width:1px;}#graph-div .cluster text{fill:#333;}#graph-div .cluster span{color:#333;}#graph-div div.mermaidTooltip{position:absolute;text-align:center;max-width:200px;padding:2px;font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:12px;background:hsl(80, 100%, 96.2745098039%);border:1px solid #aaaa33;border-radius:2px;pointer-events:none;z-index:100;}#graph-div :root{--mermaid-font-family:"trebuchet ms",verdana,arial,sans-serif;}#graph-div .plain&gt;*{fill:#ddd!important;stroke:#fff!important;stroke-width:4px!important;color:#000!important;}#graph-div .plain span{fill:#ddd!important;stroke:#fff!important;stroke-width:4px!important;color:#000!important;}#graph-div .k8s&gt;*{fill:#326ce5!important;stroke:#fff!important;stroke-width:4px!important;color:#fff!important;}#graph-div .k8s span{fill:#326ce5!important;stroke:#fff!important;stroke-width:4px!important;color:#fff!important;}#graph-div .cluster&gt;*{fill:#fff!important;stroke:#bbb!important;stroke-width:2px!important;color:#326ce5!important;}#graph-div .cluster span{fill:#fff!important;stroke:#bbb!important;stroke-width:2px!important;color:#326ce5!important;}</style><g><g class="output"><g class="clusters"><g style="opacity: 1;" transform="translate(550.4296875,206)" id="flowchart-cluster-158" class="cluster"><rect y="-198" x="-296.0859375" height="396" width="592.171875"></rect><g id="graph-divText" transform="translate(0, -184)" class="label"><g transform="translate(-24.578125,-12)"><foreignObject height="24" width="49.15625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">cluster</div></foreignObject></g></g></g></g><g class="edgePaths"><g style="opacity: 1;" id="L-client-ingress" class="edgePath LS-client LE-ingress"><path style="fill:none;stroke-width:2px;stroke-dasharray:3;" marker-end="url(#arrowhead193)" d="M80.015625,206L94.54296875,206C109.0703125,206,138.125,206,167.1796875,206C196.234375,206,225.2890625,206,243.98307291666666,206C262.6770833333333,206,271.0104166666667,206,275.1770833333333,206L279.34375,206" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead193"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-ingress-service1" class="edgePath LS-ingress LE-service1"><path style="fill:none" marker-end="url(#arrowhead194)" d="M406.0119680851064,184L423.35372340425533,172C440.6954787234043,160,475.37898936170217,136,499.54886968085106,124C523.71875,112,537.375,112,544.203125,112L551.03125,112" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead194"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-ingress-service2" class="edgePath LS-ingress LE-service2"><path style="fill:none" marker-end="url(#arrowhead195)" d="M406.0119680851064,228L423.35372340425533,240C440.6954787234043,252,475.37898936170217,276,499.54886968085106,288C523.71875,300,537.375,300,544.203125,300L551.03125,300" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead195"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-service1-pod1" class="edgePath LS-service1 LE-pod1"><path style="fill:none" marker-end="url(#arrowhead196)" d="M691.0531914893617,90L701.0182845744681,85.83333333333333C710.9833776595746,81.66666666666667,730.9135638297872,73.33333333333333,745.0453235815603,69.16666666666667C759.1770833333334,65,767.5104166666666,65,771.6770833333334,65L775.84375,65" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead196"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-service1-pod2" class="edgePath LS-service1 LE-pod2"><path style="fill:none" marker-end="url(#arrowhead197)" d="M691.0531914893617,134L701.0182845744681,138.16666666666666C710.9833776595746,142.33333333333334,730.9135638297872,150.66666666666666,745.0453235815603,154.83333333333334C759.1770833333334,159,767.5104166666666,159,771.6770833333334,159L775.84375,159" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead197"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-service2-pod3" class="edgePath LS-service2 LE-pod3"><path style="fill:none" marker-end="url(#arrowhead198)" d="M691.0531914893617,278L701.0182845744681,273.8333333333333C710.9833776595746,269.6666666666667,730.9135638297872,261.3333333333333,745.0453235815603,257.1666666666667C759.1770833333334,253,767.5104166666666,253,771.6770833333334,253L775.84375,253" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead198"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-service2-pod4" class="edgePath LS-service2 LE-pod4"><path style="fill:none" marker-end="url(#arrowhead199)" d="M691.0531914893617,322L701.0182845744681,326.1666666666667C710.9833776595746,330.3333333333333,730.9135638297872,338.6666666666667,745.0453235815603,342.8333333333333C759.1770833333334,347,767.5104166666666,347,771.6770833333334,347L775.84375,347" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead199"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g></g><g class="edgeLabels"><g style="opacity: 1;" transform="translate(167.1796875,206)" class="edgeLabel"><g class="label" transform="translate(-62.1640625,-24)"><rect height="48" width="124.328125" ry="0" rx="0"></rect><foreignObject height="48" width="124.328125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-client' L-LE-ingress" id="L-L-client-ingress">Ingress-managed <br/> load balancer</span></div></foreignObject></g></g><g style="opacity: 1;" transform="translate(510.0625,112)" class="edgeLabel"><g class="label" transform="translate(-15.7421875,-12)"><rect height="24" width="31.484375" ry="0" rx="0"></rect><foreignObject height="24" width="31.484375"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-ingress' L-LE-service1" id="L-L-ingress-service1">/foo</span></div></foreignObject></g></g><g style="opacity: 1;" transform="translate(510.0625,300)" class="edgeLabel"><g class="label" transform="translate(-15.96875,-12)"><rect height="24" width="31.9375" ry="0" rx="0"></rect><foreignObject height="24" width="31.9375"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-ingress' L-LE-service2" id="L-L-ingress-service2">/bar</span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-service1' L-LE-pod1" id="L-L-service1-pod1"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-service1' L-LE-pod2" id="L-L-service1-pod2"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-service2' L-LE-pod3" id="L-L-service2-pod3"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-service2' L-LE-pod4" id="L-L-service2-pod4"></span></div></foreignObject></g></g></g><g class="nodes"><g style="opacity: 1;" transform="translate(374.21875,206)" id="flowchart-ingress-144" class="node k8s"><rect class="label-container" height="44" width="189.75" y="-22" x="-94.875" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-84.875,-12)"><foreignObject height="24" width="169.75"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Ingress, 178.91.123.132</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(798.6796875,65)" id="flowchart-pod1-151" class="node k8s"><rect class="label-container" height="44" width="45.671875" y="-22" x="-22.8359375" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-12.8359375,-12)"><foreignObject height="24" width="25.671875"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Pod</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(638.4375,112)" id="flowchart-service1-146" class="node k8s"><rect class="label-container" height="44" width="174.8125" y="-22" x="-87.40625" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-77.40625,-12)"><foreignObject height="24" width="154.8125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Service service1:4200</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(798.6796875,159)" id="flowchart-pod2-153" class="node k8s"><rect class="label-container" height="44" width="45.671875" y="-22" x="-22.8359375" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-12.8359375,-12)"><foreignObject height="24" width="25.671875"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Pod</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(798.6796875,253)" id="flowchart-pod3-155" class="node k8s"><rect class="label-container" height="44" width="45.671875" y="-22" x="-22.8359375" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-12.8359375,-12)"><foreignObject height="24" width="25.671875"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Pod</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(638.4375,300)" id="flowchart-service2-148" class="node k8s"><rect class="label-container" height="44" width="174.8125" y="-22" x="-87.40625" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-77.40625,-12)"><foreignObject height="24" width="154.8125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Service service2:8080</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(798.6796875,347)" id="flowchart-pod4-157" class="node k8s"><rect class="label-container" height="44" width="45.671875" y="-22" x="-22.8359375" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-12.8359375,-12)"><foreignObject height="24" width="25.671875"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Pod</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(44.0078125,206)" id="flowchart-client-143" class="node plain"><rect class="label-container" height="44" width="72.015625" y="-22" x="-36.0078125" ry="22" rx="22"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-20.5078125,-12)"><foreignObject height="24" width="41.015625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">client</div></foreignObject></g></g></g></g></g></g></svg>
\ No newline at end of file
diff --git a/content/en/docs/images/ingressNameBased.svg b/content/en/docs/images/ingressNameBased.svg
new file mode 100644
index 0000000000..7e1d7be98c
--- /dev/null
+++ b/content/en/docs/images/ingressNameBased.svg
@@ -0,0 +1 @@
+<svg viewBox="0 0 934.40625 412" style="max-width: 934.40625px;" height="412" aria-labelledby="chart-title-graph-div chart-desc-graph-div" role="img" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg" width="100%" id="graph-div"><title id="chart-title-graph-div"></title><desc id="chart-desc-graph-div"></desc><style>#graph-div {font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;fill:#333;}#graph-div .error-icon{fill:#552222;}#graph-div .error-text{fill:#552222;stroke:#552222;}#graph-div .edge-thickness-normal{stroke-width:2px;}#graph-div .edge-thickness-thick{stroke-width:3.5px;}#graph-div .edge-pattern-solid{stroke-dasharray:0;}#graph-div .edge-pattern-dashed{stroke-dasharray:3;}#graph-div .edge-pattern-dotted{stroke-dasharray:2;}#graph-div .marker{fill:#333333;stroke:#333333;}#graph-div .marker.cross{stroke:#333333;}#graph-div svg{font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;}#graph-div .label{font-family:"trebuchet ms",verdana,arial,sans-serif;color:#333;}#graph-div .cluster-label text{fill:#333;}#graph-div .cluster-label span{color:#333;}#graph-div .label text,#graph-div span{fill:#333;color:#333;}#graph-div .node rect,#graph-div .node circle,#graph-div .node ellipse,#graph-div .node polygon,#graph-div .node path{fill:#ECECFF;stroke:#9370DB;stroke-width:1px;}#graph-div .node .label{text-align:center;}#graph-div .node.clickable{cursor:pointer;}#graph-div .arrowheadPath{fill:#333333;}#graph-div .edgePath .path{stroke:#333333;stroke-width:2.0px;}#graph-div .flowchart-link{stroke:#333333;fill:none;}#graph-div .edgeLabel{background-color:#e8e8e8;text-align:center;}#graph-div .edgeLabel rect{opacity:0.5;background-color:#e8e8e8;fill:#e8e8e8;}#graph-div .cluster rect{fill:#ffffde;stroke:#aaaa33;stroke-width:1px;}#graph-div .cluster text{fill:#333;}#graph-div .cluster span{color:#333;}#graph-div div.mermaidTooltip{position:absolute;text-align:center;max-width:200px;padding:2px;font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:12px;background:hsl(80, 100%, 96.2745098039%);border:1px solid #aaaa33;border-radius:2px;pointer-events:none;z-index:100;}#graph-div :root{--mermaid-font-family:"trebuchet ms",verdana,arial,sans-serif;}#graph-div .plain&gt;*{fill:#ddd!important;stroke:#fff!important;stroke-width:4px!important;color:#000!important;}#graph-div .plain span{fill:#ddd!important;stroke:#fff!important;stroke-width:4px!important;color:#000!important;}#graph-div .k8s&gt;*{fill:#326ce5!important;stroke:#fff!important;stroke-width:4px!important;color:#fff!important;}#graph-div .k8s span{fill:#326ce5!important;stroke:#fff!important;stroke-width:4px!important;color:#fff!important;}#graph-div .cluster&gt;*{fill:#fff!important;stroke:#bbb!important;stroke-width:2px!important;color:#326ce5!important;}#graph-div .cluster span{fill:#fff!important;stroke:#bbb!important;stroke-width:2px!important;color:#326ce5!important;}</style><g><g class="output"><g class="clusters"><g style="opacity: 1;" transform="translate(590.375,206)" id="flowchart-cluster-234" class="cluster"><rect y="-198" x="-336.03125" height="396" width="672.0625"></rect><g id="graph-divText" transform="translate(0, -184)" class="label"><g transform="translate(-24.578125,-12)"><foreignObject height="24" width="49.15625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">cluster</div></foreignObject></g></g></g></g><g class="edgePaths"><g style="opacity: 1;" id="L-client-ingress" class="edgePath LS-client LE-ingress"><path style="fill:none;stroke-width:2px;stroke-dasharray:3;" marker-end="url(#arrowhead271)" d="M80.015625,206L94.54296875,206C109.0703125,206,138.125,206,167.1796875,206C196.234375,206,225.2890625,206,243.98307291666666,206C262.6770833333333,206,271.0104166666667,206,275.1770833333333,206L279.34375,206" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead271"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-ingress-service1" class="edgePath LS-ingress LE-service1"><path style="fill:none" marker-end="url(#arrowhead272)" d="M417.32463430851067,184L440.83693484042556,172C464.34923537234044,160,511.3738364361702,136,549.7702515514185,124C588.1666666666666,112,617.9348958333334,112,632.8190104166666,112L647.703125,112" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead272"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-ingress-service2" class="edgePath LS-ingress LE-service2"><path style="fill:none" marker-end="url(#arrowhead273)" d="M417.32463430851067,228L440.83693484042556,240C464.34923537234044,252,511.3738364361702,276,549.7702515514185,288C588.1666666666666,300,617.9348958333334,300,632.8190104166666,300L647.703125,300" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead273"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-service1-pod1" class="edgePath LS-service1 LE-pod1"><path style="fill:none" marker-end="url(#arrowhead274)" d="M775.406914893617,90L784.6281582446809,85.83333333333333C793.8494015957446,81.66666666666667,812.2918882978723,73.33333333333333,825.6797983156029,69.16666666666667C839.0677083333334,65,847.4010416666666,65,851.5677083333334,65L855.734375,65" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead274"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-service1-pod2" class="edgePath LS-service1 LE-pod2"><path style="fill:none" marker-end="url(#arrowhead275)" d="M775.406914893617,134L784.6281582446809,138.16666666666666C793.8494015957446,142.33333333333334,812.2918882978723,150.66666666666666,825.6797983156029,154.83333333333334C839.0677083333334,159,847.4010416666666,159,851.5677083333334,159L855.734375,159" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead275"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-service2-pod3" class="edgePath LS-service2 LE-pod3"><path style="fill:none" marker-end="url(#arrowhead276)" d="M775.406914893617,278L784.6281582446809,273.8333333333333C793.8494015957446,269.6666666666667,812.2918882978723,261.3333333333333,825.6797983156029,257.1666666666667C839.0677083333334,253,847.4010416666666,253,851.5677083333334,253L855.734375,253" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead276"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-service2-pod4" class="edgePath LS-service2 LE-pod4"><path style="fill:none" marker-end="url(#arrowhead277)" d="M775.406914893617,322L784.6281582446809,326.1666666666667C793.8494015957446,330.3333333333333,812.2918882978723,338.6666666666667,825.6797983156029,342.8333333333333C839.0677083333334,347,847.4010416666666,347,851.5677083333334,347L855.734375,347" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead277"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g></g><g class="edgeLabels"><g style="opacity: 1;" transform="translate(167.1796875,206)" class="edgeLabel"><g class="label" transform="translate(-62.1640625,-24)"><rect height="48" width="124.328125" ry="0" rx="0"></rect><foreignObject height="48" width="124.328125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-client' L-LE-ingress" id="L-L-client-ingress">Ingress-managed <br/> load balancer</span></div></foreignObject></g></g><g style="opacity: 1;" transform="translate(558.3984375,112)" class="edgeLabel"><g class="label" transform="translate(-64.3046875,-12)"><rect height="24" width="128.609375" ry="0" rx="0"></rect><foreignObject height="24" width="128.609375"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-ingress' L-LE-service1" id="L-L-ingress-service1">Host: foo.bar.com</span></div></foreignObject></g></g><g style="opacity: 1;" transform="translate(558.3984375,300)" class="edgeLabel"><g class="label" transform="translate(-64.3046875,-12)"><rect height="24" width="128.609375" ry="0" rx="0"></rect><foreignObject height="24" width="128.609375"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-ingress' L-LE-service2" id="L-L-ingress-service2">Host: bar.foo.com</span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-service1' L-LE-pod1" id="L-L-service1-pod1"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-service1' L-LE-pod2" id="L-L-service1-pod2"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-service2' L-LE-pod3" id="L-L-service2-pod3"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-service2' L-LE-pod4" id="L-L-service2-pod4"></span></div></foreignObject></g></g></g><g class="nodes"><g style="opacity: 1;" transform="translate(374.21875,206)" id="flowchart-ingress-220" class="node k8s"><rect class="label-container" height="44" width="189.75" y="-22" x="-94.875" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-84.875,-12)"><foreignObject height="24" width="169.75"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Ingress, 178.91.123.132</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(878.5703125,65)" id="flowchart-pod1-227" class="node k8s"><rect class="label-container" height="44" width="45.671875" y="-22" x="-22.8359375" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-12.8359375,-12)"><foreignObject height="24" width="25.671875"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Pod</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(726.71875,112)" id="flowchart-service1-222" class="node k8s"><rect class="label-container" height="44" width="158.03125" y="-22" x="-79.015625" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-69.015625,-12)"><foreignObject height="24" width="138.03125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Service service1:80</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(878.5703125,159)" id="flowchart-pod2-229" class="node k8s"><rect class="label-container" height="44" width="45.671875" y="-22" x="-22.8359375" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-12.8359375,-12)"><foreignObject height="24" width="25.671875"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Pod</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(878.5703125,253)" id="flowchart-pod3-231" class="node k8s"><rect class="label-container" height="44" width="45.671875" y="-22" x="-22.8359375" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-12.8359375,-12)"><foreignObject height="24" width="25.671875"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Pod</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(726.71875,300)" id="flowchart-service2-224" class="node k8s"><rect class="label-container" height="44" width="158.03125" y="-22" x="-79.015625" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-69.015625,-12)"><foreignObject height="24" width="138.03125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Service service2:80</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(878.5703125,347)" id="flowchart-pod4-233" class="node k8s"><rect class="label-container" height="44" width="45.671875" y="-22" x="-22.8359375" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-12.8359375,-12)"><foreignObject height="24" width="25.671875"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Pod</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(44.0078125,206)" id="flowchart-client-219" class="node plain"><rect class="label-container" height="44" width="72.015625" y="-22" x="-36.0078125" ry="22" rx="22"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-20.5078125,-12)"><foreignObject height="24" width="41.015625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">client</div></foreignObject></g></g></g></g></g></g></svg>
\ No newline at end of file
diff --git a/content/en/docs/images/tutor-service-nodePort-fig01.svg b/content/en/docs/images/tutor-service-nodePort-fig01.svg
new file mode 100644
index 0000000000..bb4d866f85
--- /dev/null
+++ b/content/en/docs/images/tutor-service-nodePort-fig01.svg
@@ -0,0 +1 @@
+<svg viewBox="0 0 484.78125 84" style="max-width: 484.78125px;" height="84" aria-labelledby="chart-title-graph-div chart-desc-graph-div" role="img" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg" width="100%" id="graph-div"><title id="chart-title-graph-div"></title><desc id="chart-desc-graph-div"></desc><style>#graph-div {font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;fill:#333;}#graph-div .error-icon{fill:#552222;}#graph-div .error-text{fill:#552222;stroke:#552222;}#graph-div .edge-thickness-normal{stroke-width:2px;}#graph-div .edge-thickness-thick{stroke-width:3.5px;}#graph-div .edge-pattern-solid{stroke-dasharray:0;}#graph-div .edge-pattern-dashed{stroke-dasharray:3;}#graph-div .edge-pattern-dotted{stroke-dasharray:2;}#graph-div .marker{fill:#333333;stroke:#333333;}#graph-div .marker.cross{stroke:#333333;}#graph-div svg{font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;}#graph-div .label{font-family:"trebuchet ms",verdana,arial,sans-serif;color:#333;}#graph-div .cluster-label text{fill:#333;}#graph-div .cluster-label span{color:#333;}#graph-div .label text,#graph-div span{fill:#333;color:#333;}#graph-div .node rect,#graph-div .node circle,#graph-div .node ellipse,#graph-div .node polygon,#graph-div .node path{fill:#ECECFF;stroke:#9370DB;stroke-width:1px;}#graph-div .node .label{text-align:center;}#graph-div .node.clickable{cursor:pointer;}#graph-div .arrowheadPath{fill:#333333;}#graph-div .edgePath .path{stroke:#333333;stroke-width:2.0px;}#graph-div .flowchart-link{stroke:#333333;fill:none;}#graph-div .edgeLabel{background-color:#e8e8e8;text-align:center;}#graph-div .edgeLabel rect{opacity:0.5;background-color:#e8e8e8;fill:#e8e8e8;}#graph-div .cluster rect{fill:#ffffde;stroke:#aaaa33;stroke-width:1px;}#graph-div .cluster text{fill:#333;}#graph-div .cluster span{color:#333;}#graph-div div.mermaidTooltip{position:absolute;text-align:center;max-width:200px;padding:2px;font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:12px;background:hsl(80, 100%, 96.2745098039%);border:1px solid #aaaa33;border-radius:2px;pointer-events:none;z-index:100;}#graph-div :root{--mermaid-font-family:"trebuchet ms",verdana,arial,sans-serif;}#graph-div .plain&gt;*{fill:#ddd!important;stroke:#fff!important;stroke-width:4px!important;color:#000!important;}#graph-div .plain span{fill:#ddd!important;stroke:#fff!important;stroke-width:4px!important;color:#000!important;}#graph-div .k8s&gt;*{fill:#326ce5!important;stroke:#fff!important;stroke-width:4px!important;color:#fff!important;}#graph-div .k8s span{fill:#326ce5!important;stroke:#fff!important;stroke-width:4px!important;color:#fff!important;}</style><g><g class="output"><g class="clusters"></g><g class="edgePaths"><g style="opacity: 1;" id="L-client-node2" class="edgePath LS-client LE-node2"><path style="fill:none" marker-end="url(#arrowhead23)" d="M69.015625,36.50387051372273L73.18229166666667,35.753225428102276C77.34895833333333,35.00258034248182,85.68229166666667,33.50129017124091,94.015625,33.44708453891548C102.34895833333333,33.392878906590056,110.68229166666667,34.78575781318012,114.84895833333333,35.48219726647515L119.015625,36.178636719770175" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead23"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-node2-client" class="edgePath LS-node2 LE-client"><path style="fill:none" marker-end="url(#arrowhead24)" d="M119.015625,47.821363280229825L114.84895833333333,48.51780273352485C110.68229166666667,49.21424218681989,102.34895833333333,50.607121093409944,94.015625,50.55291546108452C85.68229166666667,50.49870982875908,77.34895833333333,48.99741965751818,73.18229166666667,48.246774571897724L69.015625,47.49612948627727" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead24"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-node2-node1" class="edgePath LS-node2 LE-node1"><path style="fill:none;stroke-width:2px;stroke-dasharray:3;" marker-end="url(#arrowhead25)" d="M188.671875,32.096334444107846L195.76171875,30.080278703423204C202.8515625,28.064222962738565,217.03125,24.03211148136928,231.2109375,24.03211148136928C245.390625,24.03211148136928,259.5703125,28.064222962738565,266.66015625,30.080278703423204L273.75,32.096334444107846" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead25"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-node1-node2" class="edgePath LS-node1 LE-node2"><path style="fill:none;stroke-width:2px;stroke-dasharray:3;" marker-end="url(#arrowhead26)" d="M273.75,51.903665555892154L266.66015625,53.919721296576796C259.5703125,55.93577703726144,245.390625,59.96788851863072,231.2109375,59.96788851863071C217.03125,59.96788851863072,202.8515625,55.93577703726144,195.76171875,53.919721296576796L188.671875,51.903665555892154" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead26"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-node1-endpoint" class="edgePath LS-node1 LE-endpoint"><path style="fill:none" marker-end="url(#arrowhead27)" d="M343.40625,42L347.5729166666667,42C351.7395833333333,42,360.0729166666667,42,368.40625,42C376.7395833333333,42,385.0729166666667,42,389.2395833333333,42L393.40625,42" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead27"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g></g><g class="edgeLabels"><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-client' L-LE-node2" id="L-L-client-node2"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-node2' L-LE-client" id="L-L-node2-client"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="translate(231.2109375,20)" class="edgeLabel"><g class="label" transform="translate(-17.5390625,-12)"><rect height="24" width="35.078125" ry="0" rx="0"></rect><foreignObject height="24" width="35.078125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-node2' L-LE-node1" id="L-L-node2-node1">SNAT</span></div></foreignObject></g></g><g style="opacity: 1;" transform="translate(231.2109375,64)" class="edgeLabel"><g class="label" transform="translate(-17.5390625,-12)"><rect height="24" width="35.078125" ry="0" rx="0"></rect><foreignObject height="24" width="35.078125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-node1' L-LE-node2" id="L-L-node1-node2">SNAT</span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-node1' L-LE-endpoint" id="L-L-node1-endpoint"></span></div></foreignObject></g></g></g><g class="nodes"><g style="opacity: 1;" transform="translate(38.5078125,42)" id="flowchart-client-10" class="node plain"><rect class="label-container" height="44" width="61.015625" y="-22" x="-30.5078125" ry="5" rx="5"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-20.5078125,-12)"><foreignObject height="24" width="41.015625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">client</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(153.84375,42)" id="flowchart-node2-11" class="node k8s"><rect class="label-container" height="44" width="69.65625" y="-22" x="-34.828125" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-24.828125,-12)"><foreignObject height="24" width="49.65625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Node 2</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(308.578125,42)" id="flowchart-node1-15" class="node k8s"><rect class="label-container" height="44" width="69.65625" y="-22" x="-34.828125" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-24.828125,-12)"><foreignObject height="24" width="49.65625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Node 1</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(435.09375,42)" id="flowchart-endpoint-19" class="node k8s"><rect class="label-container" height="44" width="83.375" y="-22" x="-41.6875" ry="5" rx="5"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-31.6875,-12)"><foreignObject height="24" width="63.375"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Endpoint</div></foreignObject></g></g></g></g></g></g></svg>
\ No newline at end of file
diff --git a/content/en/docs/images/tutor-service-nodePort-fig02.svg b/content/en/docs/images/tutor-service-nodePort-fig02.svg
new file mode 100644
index 0000000000..1a891575e5
--- /dev/null
+++ b/content/en/docs/images/tutor-service-nodePort-fig02.svg
@@ -0,0 +1 @@
+<svg viewBox="0 0 212.25 248" style="max-width: 212.25px;" height="248" aria-labelledby="chart-title-graph-div chart-desc-graph-div" role="img" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg" width="100%" id="graph-div"><title id="chart-title-graph-div"></title><desc id="chart-desc-graph-div"></desc><style>#graph-div {font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;fill:#333;}#graph-div .error-icon{fill:#552222;}#graph-div .error-text{fill:#552222;stroke:#552222;}#graph-div .edge-thickness-normal{stroke-width:2px;}#graph-div .edge-thickness-thick{stroke-width:3.5px;}#graph-div .edge-pattern-solid{stroke-dasharray:0;}#graph-div .edge-pattern-dashed{stroke-dasharray:3;}#graph-div .edge-pattern-dotted{stroke-dasharray:2;}#graph-div .marker{fill:#333333;stroke:#333333;}#graph-div .marker.cross{stroke:#333333;}#graph-div svg{font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;}#graph-div .label{font-family:"trebuchet ms",verdana,arial,sans-serif;color:#333;}#graph-div .cluster-label text{fill:#333;}#graph-div .cluster-label span{color:#333;}#graph-div .label text,#graph-div span{fill:#333;color:#333;}#graph-div .node rect,#graph-div .node circle,#graph-div .node ellipse,#graph-div .node polygon,#graph-div .node path{fill:#ECECFF;stroke:#9370DB;stroke-width:1px;}#graph-div .node .label{text-align:center;}#graph-div .node.clickable{cursor:pointer;}#graph-div .arrowheadPath{fill:#333333;}#graph-div .edgePath .path{stroke:#333333;stroke-width:2.0px;}#graph-div .flowchart-link{stroke:#333333;fill:none;}#graph-div .edgeLabel{background-color:#e8e8e8;text-align:center;}#graph-div .edgeLabel rect{opacity:0.5;background-color:#e8e8e8;fill:#e8e8e8;}#graph-div .cluster rect{fill:#ffffde;stroke:#aaaa33;stroke-width:1px;}#graph-div .cluster text{fill:#333;}#graph-div .cluster span{color:#333;}#graph-div div.mermaidTooltip{position:absolute;text-align:center;max-width:200px;padding:2px;font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:12px;background:hsl(80, 100%, 96.2745098039%);border:1px solid #aaaa33;border-radius:2px;pointer-events:none;z-index:100;}#graph-div :root{--mermaid-font-family:"trebuchet ms",verdana,arial,sans-serif;}#graph-div .plain&gt;*{fill:#ddd!important;stroke:#fff!important;stroke-width:4px!important;color:#000!important;}#graph-div .plain span{fill:#ddd!important;stroke:#fff!important;stroke-width:4px!important;color:#000!important;}#graph-div .k8s&gt;*{fill:#326ce5!important;stroke:#fff!important;stroke-width:4px!important;color:#fff!important;}#graph-div .k8s span{fill:#326ce5!important;stroke:#fff!important;stroke-width:4px!important;color:#fff!important;}</style><g><g class="output"><g class="clusters"></g><g class="edgePaths"><g style="opacity: 1;" id="L-client-node1" class="edgePath LS-client LE-node1"><path style="fill:none" marker-end="url(#arrowhead69)" d="M81.58909574468085,52L76.2851839539007,56.166666666666664C70.98127216312056,60.333333333333336,60.373448581560275,68.66666666666667,55.06953679078014,77C49.765625,85.33333333333333,49.765625,93.66666666666667,49.765625,97.83333333333333L49.765625,102" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead69"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-client-node2" class="edgePath LS-client LE-node2"><path style="fill:none" marker-end="url(#arrowhead70)" d="M137.59840425531914,52L142.9023160460993,56.166666666666664C148.20622783687944,60.333333333333336,158.8140514184397,68.66666666666667,164.11796320921985,77C169.421875,85.33333333333333,169.421875,93.66666666666667,169.421875,97.83333333333333L169.421875,102" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead70"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-node1-endpoint" class="edgePath LS-node1 LE-endpoint"><path style="fill:none" marker-end="url(#arrowhead71)" d="M45.084773936170215,146L44.198249113475185,150.16666666666666C43.31172429078015,154.33333333333334,41.538674645390074,162.66666666666666,41.538674645390074,171C41.538674645390074,179.33333333333334,43.31172429078015,187.66666666666666,44.19824911347518,191.83333333333334L45.084773936170215,196" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead71"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-endpoint-node1" class="edgePath LS-endpoint LE-node1"><path style="fill:none" marker-end="url(#arrowhead72)" d="M54.446476063829785,196L55.33300088652482,191.83333333333334C56.21952570921985,187.66666666666666,57.992575354609926,179.33333333333334,57.992575354609926,171C57.992575354609926,162.66666666666666,56.21952570921985,154.33333333333334,55.333000886524815,150.16666666666666L54.446476063829785,146" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead72"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g></g><g class="edgeLabels"><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-client' L-LE-node1" id="L-L-client-node1"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-client' L-LE-node2" id="L-L-client-node2"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-node1' L-LE-endpoint" id="L-L-node1-endpoint"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-endpoint' L-LE-node1" id="L-L-endpoint-node1"></span></div></foreignObject></g></g></g><g class="nodes"><g style="opacity: 1;" transform="translate(109.59375,30)" id="flowchart-client-66" class="node plain"><rect class="label-container" height="44" width="61.015625" y="-22" x="-30.5078125" ry="5" rx="5"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-20.5078125,-12)"><foreignObject height="24" width="41.015625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">client</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(49.765625,124)" id="flowchart-node1-67" class="node k8s"><rect class="label-container" height="44" width="69.65625" y="-22" x="-34.828125" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-24.828125,-12)"><foreignObject height="24" width="49.65625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Node 1</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(169.421875,124)" id="flowchart-node2-69" class="node k8s"><rect class="label-container" height="44" width="69.65625" y="-22" x="-34.828125" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-24.828125,-12)"><foreignObject height="24" width="49.65625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Node 2</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(49.765625,218)" id="flowchart-endpoint-71" class="node k8s"><rect class="label-container" height="44" width="83.53125" y="-22" x="-41.765625" ry="5" rx="5"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-31.765625,-12)"><foreignObject height="24" width="63.53125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">endpoint</div></foreignObject></g></g></g></g></g></g></svg>
\ No newline at end of file
diff --git a/content/en/docs/reference/_index.md b/content/en/docs/reference/_index.md
index c22e0ca836..2ed1396c8f 100644
--- a/content/en/docs/reference/_index.md
+++ b/content/en/docs/reference/_index.md
@@ -43,7 +43,7 @@ client libraries:
 
 ## CLI
 
-* [kubectl](/docs/reference/kubectl/overview/) - Main CLI tool for running commands and managing Kubernetes clusters.
+* [kubectl](/docs/reference/kubectl/) - Main CLI tool for running commands and managing Kubernetes clusters.
     * [JSONPath](/docs/reference/kubectl/jsonpath/) - Syntax guide for using [JSONPath expressions](https://goessner.net/articles/JsonPath/) with kubectl.
 * [kubeadm](/docs/reference/setup-tools/kubeadm/) - CLI tool to easily provision a secure Kubernetes cluster.
 
@@ -64,6 +64,9 @@ client libraries:
   * [Scheduler Policies](/docs/reference/scheduling/policies)
   * [Scheduler Profiles](/docs/reference/scheduling/config#profiles)
 
+* List of [ports and protocols](/docs/reference/ports-and-protocols/) that
+  should be open on control plane and worker nodes
+
 ## Config APIs
 
 This section hosts the documentation for "unpublished" APIs which are used to
@@ -72,14 +75,21 @@ by the API server in a RESTful way though they are essential for a user or an
 operator to use or manage a cluster.
 
 * [kube-apiserver configuration (v1alpha1)](/docs/reference/config-api/apiserver-config.v1alpha1/)
-* [kubelet configuration (v1beta1)](/docs/reference/config-api/kubelet-config.v1beta1/)
-* [kube-scheduler configuration (v1beta1)](/docs/reference/config-api/kube-scheduler-config.v1beta1/)
-* [kube-scheduler configuration (v1beta2)](/docs/reference/config-api/kube-scheduler-config.v1beta2/)
-* [kube-scheduler policy reference (v1)](/docs/reference/config-api/kube-scheduler-policy-config.v1/)
+* [kube-apiserver configuration (v1)](/docs/reference/config-api/apiserver-config.v1/)
+* [kube-apiserver encryption (v1)](/docs/reference/config-api/apiserver-encryption.v1/)
+* [kube-apiserver event rate limit (v1alpha1)](/docs/reference/config-api/apiserver-eventratelimit.v1alpha1/)
+* [kubelet configuration (v1alpha1)](/docs/reference/config-api/kubelet-config.v1alpha1/) and
+  [kubelet configuration (v1beta1)](/docs/reference/config-api/kubelet-config.v1beta1/)
+* [kubelet credential providers (v1alpha1)](/docs/reference/config-api/kubelet-credentialprovider.v1alpha1/)
+* [kubelet credential providers (v1beta1)](/docs/reference/config-api/kubelet-credentialprovider.v1beta1/)
+* [kube-scheduler configuration (v1beta2)](/docs/reference/config-api/kube-scheduler-config.v1beta2/) and
+  [kube-scheduler configuration (v1beta3)](/docs/reference/config-api/kube-scheduler-config.v1beta3/)
 * [kube-proxy configuration (v1alpha1)](/docs/reference/config-api/kube-proxy-config.v1alpha1/)
 * [`audit.k8s.io/v1` API](/docs/reference/config-api/apiserver-audit.v1/)
-* [Client authentication API (v1beta1)](/docs/reference/config-api/client-authentication.v1beta1/)
+* [Client authentication API (v1beta1)](/docs/reference/config-api/client-authentication.v1beta1/) and 
+  [Client authentication API (v1)](/docs/reference/config-api/client-authentication.v1/)
 * [WebhookAdmission configuration (v1)](/docs/reference/config-api/apiserver-webhookadmission.v1/)
+* [ImagePolicy API (v1alpha1)](/docs/reference/config-api/imagepolicy.v1alpha1/)
 
 ## Config API for kubeadm
 
@@ -89,6 +99,6 @@ operator to use or manage a cluster.
 ## Design Docs
 
 An archive of the design docs for Kubernetes functionality. Good starting points are
-[Kubernetes Architecture](https://git.k8s.io/community/contributors/design-proposals/architecture/architecture.md) and
-[Kubernetes Design Overview](https://git.k8s.io/community/contributors/design-proposals).
+[Kubernetes Architecture](https://git.k8s.io/design-proposals-archive/architecture/architecture.md) and
+[Kubernetes Design Overview](https://git.k8s.io/design-proposals-archive).
 
diff --git a/content/en/docs/reference/access-authn-authz/_index.md b/content/en/docs/reference/access-authn-authz/_index.md
index 86d06488a8..3677f79c57 100644
--- a/content/en/docs/reference/access-authn-authz/_index.md
+++ b/content/en/docs/reference/access-authn-authz/_index.md
@@ -24,3 +24,5 @@ Reference documentation:
 - Service accounts
   - [Developer guide](/docs/tasks/configure-pod-container/configure-service-account/)
   - [Administration](/docs/reference/access-authn-authz/service-accounts-admin/)
+- [Kubelet Authentication & Authorization](/docs/reference/access-authn-authz/kubelet-authn-authz/)
+  - including kubelet [TLS bootstrapping](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/)
diff --git a/content/en/docs/reference/access-authn-authz/abac.md b/content/en/docs/reference/access-authn-authz/abac.md
index 197901a170..4587bf1f83 100644
--- a/content/en/docs/reference/access-authn-authz/abac.md
+++ b/content/en/docs/reference/access-authn-authz/abac.md
@@ -33,13 +33,13 @@ properties:
       - `group`, type string; if you specify `group`, it must match one of the groups of the authenticated user. `system:authenticated` matches all authenticated requests. `system:unauthenticated` matches all unauthenticated requests.
     - Resource-matching properties:
       - `apiGroup`, type string; an API group.
-        - Ex: `extensions`
+        - Ex: `apps`, `networking.k8s.io`
         - Wildcard: `*` matches all API groups.
       - `namespace`, type string; a namespace.
         - Ex: `kube-system`
         - Wildcard: `*` matches all resource requests.
       - `resource`, type string; a resource type
-        - Ex: `pods`
+        - Ex: `pods`, `deployments`
         - Wildcard: `*` matches all resource requests.
     - Non-resource-matching properties:
       - `nonResourcePath`, type string; non-resource request paths.
diff --git a/content/en/docs/reference/access-authn-authz/admission-controllers.md b/content/en/docs/reference/access-authn-authz/admission-controllers.md
index 0461c09f53..f03b04f8e3 100644
--- a/content/en/docs/reference/access-authn-authz/admission-controllers.md
+++ b/content/en/docs/reference/access-authn-authz/admission-controllers.md
@@ -30,9 +30,9 @@ mutating and validating (respectively)
 which are configured in the API.
 
 Admission controllers may be "validating", "mutating", or both. Mutating
-controllers may modify the objects they admit; validating controllers may not.
+controllers may modify related objects to the requests they admit; validating controllers may not.
 
-Admission controllers limit requests to create, delete, modify or connect to (proxy). They do not support read requests.
+Admission controllers limit requests to create, delete, modify objects or connect to proxy. They do not limit requests to read objects.
 
 The admission control process proceeds in two phases. In the first phase,
 mutating admission controllers are run. In the second phase, validating
@@ -94,7 +94,7 @@ kube-apiserver -h | grep enable-admission-plugins
 In the current version, the default ones are:
 
 ```shell
-CertificateApproval, CertificateSigning, CertificateSubjectRestriction, DefaultIngressClass, DefaultStorageClass, DefaultTolerationSeconds, LimitRanger, MutatingAdmissionWebhook, NamespaceLifecycle, PersistentVolumeClaimResize, Priority, ResourceQuota, RuntimeClass, ServiceAccount, StorageObjectInUseProtection, TaintNodesByCondition, ValidatingAdmissionWebhook
+CertificateApproval, CertificateSigning, CertificateSubjectRestriction, DefaultIngressClass, DefaultStorageClass, DefaultTolerationSeconds, LimitRanger, MutatingAdmissionWebhook, NamespaceLifecycle, PersistentVolumeClaimResize, PodSecurity, Priority, ResourceQuota, RuntimeClass, ServiceAccount, StorageObjectInUseProtection, TaintNodesByCondition, ValidatingAdmissionWebhook
 ```
 
 ## What does each admission controller do?
@@ -139,7 +139,7 @@ requests with the `spec.signerName` requested on the CertificateSigningRequest r
 See [Certificate Signing Requests](/docs/reference/access-authn-authz/certificate-signing-requests/) for more
 information on the permissions required to perform different actions on CertificateSigningRequest resources.
 
-### CertificateSubjectRestrictions {#certificatesubjectrestrictions}
+### CertificateSubjectRestriction {#certificatesubjectrestriction}
 
 This admission controller observes creation of CertificateSigningRequest resources that have a `spec.signerName`
 of `kubernetes.io/kube-apiserver-client`. It rejects any request that specifies a 'group' (or 'organization attribute')
@@ -232,12 +232,10 @@ of it.
 This admission controller mitigates the problem where the API server gets flooded by
 event requests. The cluster admin can specify event rate limits by:
 
- * Enabling the `EventRateLimit` admission controller;
- * Referencing an `EventRateLimit` configuration file from the file provided to the API
-   server's command line flag `--admission-control-config-file`:
+* Enabling the `EventRateLimit` admission controller;
+* Referencing an `EventRateLimit` configuration file from the file provided to the API
+  server's command line flag `--admission-control-config-file`:
 
-{{< tabs name="eventratelimit_example" >}}
-{{% tab name="apiserver.config.k8s.io/v1" %}}
 ```yaml
 apiVersion: apiserver.config.k8s.io/v1
 kind: AdmissionConfiguration
@@ -246,19 +244,6 @@ plugins:
   path: eventconfig.yaml
 ...
 ```
-{{% /tab %}}
-{{% tab name="apiserver.k8s.io/v1alpha1" %}}
-```yaml
-# Deprecated in v1.17 in favor of apiserver.config.k8s.io/v1
-apiVersion: apiserver.k8s.io/v1alpha1
-kind: AdmissionConfiguration
-plugins:
-- name: EventRateLimit
-  path: eventconfig.yaml
-...
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 There are four types of limits that can be specified in the configuration:
 
@@ -283,7 +268,7 @@ limits:
   burst: 50
 ```
 
-See the [EventRateLimit proposal](https://git.k8s.io/community/contributors/design-proposals/api-machinery/admission_control_event_rate_limit.md)
+See the [EventRateLimit Config API (v1alpha1)](/docs/reference/config-api/apiserver-eventratelimit.v1alpha1/)
 for more details.
 
 ### ExtendedResourceToleration {#extendedresourcetoleration}
@@ -319,8 +304,6 @@ imagePolicy:
 
 Reference the ImagePolicyWebhook configuration file from the file provided to the API server's command line flag `--admission-control-config-file`:
 
-{{< tabs name="imagepolicywebhook_example1" >}}
-{{% tab name="apiserver.config.k8s.io/v1" %}}
 ```yaml
 apiVersion: apiserver.config.k8s.io/v1
 kind: AdmissionConfiguration
@@ -329,24 +312,9 @@ plugins:
   path: imagepolicyconfig.yaml
 ...
 ```
-{{% /tab %}}
-{{% tab name="apiserver.k8s.io/v1alpha1" %}}
-```yaml
-# Deprecated in v1.17 in favor of apiserver.config.k8s.io/v1
-apiVersion: apiserver.k8s.io/v1alpha1
-kind: AdmissionConfiguration
-plugins:
-- name: ImagePolicyWebhook
-  path: imagepolicyconfig.yaml
-...
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 Alternatively, you can embed the configuration directly in the file:
 
-{{< tabs name="imagepolicywebhook_example2" >}}
-{{% tab name="apiserver.config.k8s.io/v1" %}}
 ```yaml
 apiVersion: apiserver.config.k8s.io/v1
 kind: AdmissionConfiguration
@@ -360,31 +328,14 @@ plugins:
       retryBackoff: 500
       defaultAllow: true
 ```
-{{% /tab %}}
-{{% tab name="apiserver.k8s.io/v1alpha1" %}}
-```yaml
-# Deprecated in v1.17 in favor of apiserver.config.k8s.io/v1
-apiVersion: apiserver.k8s.io/v1alpha1
-kind: AdmissionConfiguration
-plugins:
-- name: ImagePolicyWebhook
-  configuration:
-    imagePolicy:
-      kubeConfigFile: <path-to-kubeconfig-file>
-      allowTTL: 50
-      denyTTL: 50
-      retryBackoff: 500
-      defaultAllow: true
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 The ImagePolicyWebhook config file must reference a
 [kubeconfig](/docs/tasks/access-application-cluster/configure-access-multiple-clusters/)
 formatted file which sets up the connection to the backend.
 It is required that the backend communicate over TLS.
 
-The kubeconfig file's cluster field must point to the remote service, and the user field must contain the returned authorizer.
+The kubeconfig file's `cluster` field must point to the remote service, and the `user` field
+must contain the returned authorizer.
 
 ```yaml
 # clusters refers to the remote service.
@@ -405,11 +356,21 @@ users:
 For additional HTTP configuration, refer to the
 [kubeconfig](/docs/tasks/access-application-cluster/configure-access-multiple-clusters/) documentation.
 
-#### Request Payloads
+#### Request payloads
 
-When faced with an admission decision, the API Server POSTs a JSON serialized `imagepolicy.k8s.io/v1alpha1` `ImageReview` object describing the action. This object contains fields describing the containers being admitted, as well as any pod annotations that match `*.image-policy.k8s.io/*`.
+When faced with an admission decision, the API Server POSTs a JSON serialized
+`imagepolicy.k8s.io/v1alpha1` `ImageReview` object describing the action.
+This object contains fields describing the containers being admitted, as well as
+any pod annotations that match `*.image-policy.k8s.io/*`.
 
-Note that webhook API objects are subject to the same versioning compatibility rules as other Kubernetes API objects. Implementers should be aware of looser compatibility promises for alpha objects and check the "apiVersion" field of the request to ensure correct deserialization. Additionally, the API Server must enable the imagepolicy.k8s.io/v1alpha1 API extensions group (`--runtime-config=imagepolicy.k8s.io/v1alpha1=true`).
+{{ note }}
+The webhook API objects are subject to the same versioning compatibility rules
+as other Kubernetes API objects. Implementers should be aware of looser compatibility
+promises for alpha objects and check the `apiVersion` field of the request to
+ensure correct deserialization.
+Additionally, the API Server must enable the `imagepolicy.k8s.io/v1alpha1` API extensions
+group (`--runtime-config=imagepolicy.k8s.io/v1alpha1=true`).
+{{ /note }}
 
 An example request body:
 
@@ -434,7 +395,9 @@ An example request body:
 }
 ```
 
-The remote service is expected to fill the `ImageReviewStatus` field of the request and respond to either allow or disallow access. The response body's "spec" field is ignored and may be omitted. A permissive response would return:
+The remote service is expected to fill the `ImageReviewStatus` field of the request and
+respond to either allow or disallow access. The response body's `spec` field is ignored and
+may be omitted. A permissive response would return:
 
 ```json
 {
@@ -459,19 +422,23 @@ To disallow access, the service would return:
 }
 ```
 
-For further documentation refer to the `imagepolicy.v1alpha1` API objects and `plugin/pkg/admission/imagepolicy/admission.go`.
+For further documentation refer to the
+[`imagepolicy.v1alpha1` API](/docs/reference/config-api/imagepolicy.v1alpha1/).
 
 #### Extending with Annotations
 
-All annotations on a Pod that match `*.image-policy.k8s.io/*` are sent to the webhook. Sending annotations allows users who are aware of the image policy backend to send extra information to it, and for different backends implementations to accept different information.
+All annotations on a Pod that match `*.image-policy.k8s.io/*` are sent to the webhook.
+Sending annotations allows users who are aware of the image policy backend to
+send extra information to it, and for different backends implementations to
+accept different information.
 
 Examples of information you might put here are:
 
- * request to "break glass" to override a policy, in case of emergency.
- * a ticket number from a ticket system that documents the break-glass request
- * provide a hint to the policy server as to the imageID of the image being provided, to save it a lookup
+* request to "break glass" to override a policy, in case of emergency.
+* a ticket number from a ticket system that documents the break-glass request
+* provide a hint to the policy server as to the imageID of the image being provided, to save it a lookup
 
-In any case, the annotations are provided by the user and are not validated by Kubernetes in any way. In the future, if an annotation is determined to be widely useful, it may be promoted to a named field of `ImageReviewSpec`.
+In any case, the annotations are provided by the user and are not validated by Kubernetes in any way.
 
 ### LimitPodHardAntiAffinityTopology {#limitpodhardantiaffinitytopology}
 
@@ -480,14 +447,16 @@ This admission controller denies any pod that defines `AntiAffinity` topology ke
 
 ### LimitRanger {#limitranger}
 
-This admission controller will observe the incoming request and ensure that it does not violate any of the constraints
-enumerated in the `LimitRange` object in a `Namespace`.  If you are using `LimitRange` objects in
-your Kubernetes deployment, you MUST use this admission controller to enforce those constraints. LimitRanger can also
-be used to apply default resource requests to Pods that don't specify any; currently, the default LimitRanger
-applies a 0.1 CPU requirement to all Pods in the `default` namespace.
+This admission controller will observe the incoming request and ensure that it does not violate
+any of the constraints enumerated in the `LimitRange` object in a `Namespace`.  If you are using
+`LimitRange` objects in your Kubernetes deployment, you MUST use this admission controller to
+enforce those constraints. LimitRanger can also be used to apply default resource requests to Pods
+that don't specify any; currently, the default LimitRanger applies a 0.1 CPU requirement to all
+Pods in the `default` namespace.
 
-See the [limitRange design doc](https://git.k8s.io/community/contributors/design-proposals/resource-management/admission_control_limit_range.md)
-and the [example of Limit Range](/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/) for more details.
+See the [LimitRange API reference](/docs/reference/kubernetes-api/policy-resources/limit-range-v1/)
+and the [example of LimitRange](/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
+for more details.
 
 ### MutatingAdmissionWebhook {#mutatingadmissionwebhook}
 
@@ -502,21 +471,20 @@ webhooks or validating admission controllers will permit the request to finish.
 
 If you disable the MutatingAdmissionWebhook, you must also disable the
 `MutatingWebhookConfiguration` object in the `admissionregistration.k8s.io/v1`
-group/version via the `--runtime-config` flag (both are on by default in
-versions >= 1.9).
+group/version via the `--runtime-config` flag, both are on by default.
 
 #### Use caution when authoring and installing mutating webhooks
 
- * Users may be confused when the objects they try to create are different from
-   what they get back.
- * Built in control loops may break when the objects they try to create are
-   different when read back.
-   * Setting originally unset fields is less likely to cause problems than
-     overwriting fields set in the original request. Avoid doing the latter.
- * Future changes to control loops for built-in resources or third-party resources
-   may break webhooks that work well today. Even when the webhook installation API
-   is finalized, not all possible webhook behaviors will be guaranteed to be supported
-   indefinitely.
+* Users may be confused when the objects they try to create are different from
+  what they get back.
+* Built in control loops may break when the objects they try to create are
+  different when read back.
+  * Setting originally unset fields is less likely to cause problems than
+    overwriting fields set in the original request. Avoid doing the latter.
+* Future changes to control loops for built-in resources or third-party resources
+  may break webhooks that work well today. Even when the webhook installation API
+  is finalized, not all possible webhook behaviors will be guaranteed to be supported
+  indefinitely.
 
 ### NamespaceAutoProvision {#namespaceautoprovision}
 
@@ -533,26 +501,28 @@ If the namespace referenced from a request doesn't exist, the request is rejecte
 
 ### NamespaceLifecycle {#namespacelifecycle}
 
-This admission controller enforces that a `Namespace` that is undergoing termination cannot have new objects created in it,
-and ensures that requests in a non-existent `Namespace` are rejected. This admission controller also prevents deletion of
-three system reserved namespaces `default`, `kube-system`, `kube-public`.
+This admission controller enforces that a `Namespace` that is undergoing termination cannot have
+new objects created in it, and ensures that requests in a non-existent `Namespace` are rejected.
+This admission controller also prevents deletion of three system reserved namespaces `default`,
+`kube-system`, `kube-public`.
 
-A `Namespace` deletion kicks off a sequence of operations that remove all objects (pods, services, etc.) in that
-namespace.  In order to enforce integrity of that process, we strongly recommend running this admission controller.
+A `Namespace` deletion kicks off a sequence of operations that remove all objects (pods, services,
+etc.) in that namespace.  In order to enforce integrity of that process, we strongly recommend
+running this admission controller.
 
 ### NodeRestriction {#noderestriction}
 
 This admission controller limits the `Node` and `Pod` objects a kubelet can modify. In order to be limited by this admission controller,
 kubelets must use credentials in the `system:nodes` group, with a username in the form `system:node:<nodeName>`.
 Such kubelets will only be allowed to modify their own `Node` API object, and only modify `Pod` API objects that are bound to their node.
-In Kubernetes 1.11+, kubelets are not allowed to update or remove taints from their `Node` API object.
+kubelets are not allowed to update or remove taints from their `Node` API object.
 
-In Kubernetes 1.13+, the `NodeRestriction` admission plugin prevents kubelets from deleting their `Node` API object,
+The `NodeRestriction` admission plugin prevents kubelets from deleting their `Node` API object,
 and enforces kubelet modification of labels under the `kubernetes.io/` or `k8s.io/` prefixes as follows:
 
 * **Prevents** kubelets from adding/removing/updating labels with a `node-restriction.kubernetes.io/` prefix.
-This label prefix is reserved for administrators to label their `Node` objects for workload isolation purposes,
-and kubelets will not be allowed to modify labels with that prefix.
+  This label prefix is reserved for administrators to label their `Node` objects for workload isolation purposes,
+  and kubelets will not be allowed to modify labels with that prefix.
 * **Allows** kubelets to add/remove/update these labels and label prefixes:
   * `kubernetes.io/hostname`
   * `kubernetes.io/arch`
@@ -566,9 +536,11 @@ and kubelets will not be allowed to modify labels with that prefix.
   * `kubelet.kubernetes.io/`-prefixed labels
   * `node.kubernetes.io/`-prefixed labels
 
-Use of any other labels under the `kubernetes.io` or `k8s.io` prefixes by kubelets is reserved, and may be disallowed or allowed by the `NodeRestriction` admission plugin in the future.
+Use of any other labels under the `kubernetes.io` or `k8s.io` prefixes by kubelets is reserved,
+and may be disallowed or allowed by the `NodeRestriction` admission plugin in the future.
 
-Future versions may add additional restrictions to ensure kubelets have the minimal set of permissions required to operate correctly.
+Future versions may add additional restrictions to ensure kubelets have the minimal set of
+permissions required to operate correctly.
 
 ### OwnerReferencesPermissionEnforcement {#ownerreferencespermissionenforcement}
 
@@ -580,15 +552,13 @@ subresource of the referenced *owner* can change it.
 
 ### PersistentVolumeClaimResize {#persistentvolumeclaimresize}
 
-This admission controller implements additional validations for checking incoming `PersistentVolumeClaim` resize requests.
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
-{{< note >}}
-Support for volume resizing is available as an alpha feature. Admins must set the feature gate `ExpandPersistentVolumes`
-to `true` to enable resizing.
-{{< /note >}}
+This admission controller implements additional validations for checking incoming
+`PersistentVolumeClaim` resize requests.
 
-After enabling the `ExpandPersistentVolumes` feature gate, enabling the `PersistentVolumeClaimResize` admission
-controller is recommended, too. This admission controller prevents resizing of all claims by default unless a claim's `StorageClass`
+Enabling the `PersistentVolumeClaimResize` admission controller is recommended.
+This admission controller prevents resizing of all claims by default unless a claim's `StorageClass`
  explicitly enables resizing by setting `allowVolumeExpansion` to `true`.
 
 For example: all `PersistentVolumeClaim`s created from the following `StorageClass` support volume expansion:
@@ -627,9 +597,10 @@ Starting from 1.11, this admission controller is disabled by default.
 
 {{< feature-state for_k8s_version="v1.5" state="alpha" >}}
 
-This admission controller defaults and limits what node selectors may be used within a namespace by reading a namespace annotation and a global configuration.
+This admission controller defaults and limits what node selectors may be used within a namespace
+by reading a namespace annotation and a global configuration.
 
-#### Configuration File Format
+#### Configuration file format
 
 `PodNodeSelector` uses a configuration file to set options for the behavior of the backend.
 Note that the configuration file format will move to a versioned file in a future release.
@@ -642,10 +613,9 @@ podNodeSelectorPluginConfig:
  namespace2: name-of-node-selector
 ```
 
-Reference the `PodNodeSelector` configuration file from the file provided to the API server's command line flag `--admission-control-config-file`:
+Reference the `PodNodeSelector` configuration file from the file provided to the API server's
+command line flag `--admission-control-config-file`:
 
-{{< tabs name="podnodeselector_example1" >}}
-{{% tab name="apiserver.config.k8s.io/v1" %}}
 ```yaml
 apiVersion: apiserver.config.k8s.io/v1
 kind: AdmissionConfiguration
@@ -654,22 +624,11 @@ plugins:
   path: podnodeselector.yaml
 ...
 ```
-{{% /tab %}}
-{{% tab name="apiserver.k8s.io/v1alpha1" %}}
-```yaml
-# Deprecated in v1.17 in favor of apiserver.config.k8s.io/v1
-apiVersion: apiserver.k8s.io/v1alpha1
-kind: AdmissionConfiguration
-plugins:
-- name: PodNodeSelector
-  path: podnodeselector.yaml
-...
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 #### Configuration Annotation Format
-`PodNodeSelector` uses the annotation key `scheduler.alpha.kubernetes.io/node-selector` to assign node selectors to namespaces.
+
+`PodNodeSelector` uses the annotation key `scheduler.alpha.kubernetes.io/node-selector` to assign
+node selectors to namespaces.
 
 ```yaml
 apiVersion: v1
@@ -681,15 +640,17 @@ metadata:
 ```
 
 #### Internal Behavior
+
 This admission controller has the following behavior:
 
-1. If the `Namespace` has an annotation with a key `scheduler.alpha.kubernetes.io/node-selector`, use its value as the
-node selector.
-2. If the namespace lacks such an annotation, use the `clusterDefaultNodeSelector` defined in the `PodNodeSelector`
-plugin configuration file as the node selector.
-3. Evaluate the pod's node selector against the namespace node selector for conflicts. Conflicts result in rejection.
-4. Evaluate the pod's node selector against the namespace-specific allowed selector defined the plugin configuration file.
-Conflicts result in rejection.
+1. If the `Namespace` has an annotation with a key `scheduler.alpha.kubernetes.io/node-selector`,
+   use its value as the node selector.
+2. If the namespace lacks such an annotation, use the `clusterDefaultNodeSelector` defined in the
+   `PodNodeSelector` plugin configuration file as the node selector.
+3. Evaluate the pod's node selector against the namespace node selector for conflicts. Conflicts
+   result in rejection.
+4. Evaluate the pod's node selector against the namespace-specific allowed selector defined the
+   plugin configuration file. Conflicts result in rejection.
 
 {{< note >}}
 PodNodeSelector allows forcing pods to run on specifically labeled nodes. Also see the PodTolerationRestriction
@@ -698,7 +659,7 @@ admission plugin, which allows preventing pods from running on specifically tain
 
 ### PodSecurity {#podsecurity}
 
-{{< feature-state for_k8s_version="v1.22" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
 
 This is the replacement for the deprecated [PodSecurityPolicy](#podsecuritypolicy) admission controller
 defined in the next section. This admission controller acts on creation and modification of the pod and
@@ -715,14 +676,15 @@ for more information.
 This admission controller acts on creation and modification of the pod and determines if it should be admitted
 based on the requested security context and the available Pod Security Policies.
 
-See also [Pod Security Policy documentation](/docs/concepts/policy/pod-security-policy/)
+See also the [PodSecurityPolicy](/docs/concepts/security/pod-security-policy/) documentation
 for more information.
 
 ### PodTolerationRestriction {#podtolerationrestriction}
 
 {{< feature-state for_k8s_version="v1.7" state="alpha" >}}
 
-The PodTolerationRestriction admission controller verifies any conflict between tolerations of a pod and the tolerations of its namespace.
+The PodTolerationRestriction admission controller verifies any conflict between tolerations of a
+pod and the tolerations of its namespace.
 It rejects the pod request if there is a conflict.
 It then merges the tolerations annotated on the namespace into the tolerations of the pod.
 The resulting tolerations are checked against a list of allowed tolerations annotated to the namespace.
@@ -749,54 +711,62 @@ metadata:
 
 ### Priority {#priority}
 
-The priority admission controller uses the `priorityClassName` field and populates the integer value of the priority. If the priority class is not found, the Pod is rejected.
+The priority admission controller uses the `priorityClassName` field and populates the integer
+value of the priority.
+If the priority class is not found, the Pod is rejected.
 
 ### ResourceQuota {#resourcequota}
 
-This admission controller will observe the incoming request and ensure that it does not violate any of the constraints
-enumerated in the `ResourceQuota` object in a `Namespace`.  If you are using `ResourceQuota`
-objects in your Kubernetes deployment, you MUST use this admission controller to enforce quota constraints.
+This admission controller will observe the incoming request and ensure that it does not violate
+any of the constraints enumerated in the `ResourceQuota` object in a `Namespace`.  If you are
+using `ResourceQuota` objects in your Kubernetes deployment, you MUST use this admission
+controller to enforce quota constraints.
 
-See the [resourceQuota design doc](https://git.k8s.io/community/contributors/design-proposals/resource-management/admission_control_resource_quota.md) and the [example of Resource Quota](/docs/concepts/policy/resource-quotas/) for more details.
+See the [ResourceQuota API reference](/docs/reference/kubernetes-api/policy-resources/resource-quota-v1/)
+and the [example of Resource Quota](/docs/concepts/policy/resource-quotas/) for more details.
 
 ### RuntimeClass {#runtimeclass}
 
 {{< feature-state for_k8s_version="v1.20" state="stable" >}}
 
-If you enable the `PodOverhead` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/), and define a RuntimeClass with [Pod overhead](/docs/concepts/scheduling-eviction/pod-overhead/) configured, this admission controller checks incoming
-Pods. When enabled, this admission controller rejects any Pod create requests that have the overhead already set.
-For Pods that have a  RuntimeClass is configured and selected in their `.spec`, this admission controller sets `.spec.overhead` in the Pod based on the value defined in the corresponding RuntimeClass.
-
-{{< note >}}
-The `.spec.overhead` field for Pod and the `.overhead` field for RuntimeClass are both in beta. If you do not enable the `PodOverhead` feature gate, all Pods are treated as if `.spec.overhead` is unset.
-{{< /note >}}
+If you define a RuntimeClass with [Pod overhead](/docs/concepts/scheduling-eviction/pod-overhead/)
+configured, this admission controller checks incoming Pods.
+When enabled, this admission controller rejects any Pod create requests
+that have the overhead already set.
+For Pods that have a RuntimeClass configured and selected in their `.spec`,
+this admission controller sets `.spec.overhead` in the Pod based on the value
+defined in the corresponding RuntimeClass.
 
 See also [Pod Overhead](/docs/concepts/scheduling-eviction/pod-overhead/)
 for more information.
 
 ### SecurityContextDeny {#securitycontextdeny}
 
-This admission controller will deny any pod that attempts to set certain escalating
+This admission controller will deny any Pod that attempts to set certain escalating
 [SecurityContext](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#securitycontext-v1-core)
 fields, as shown in the
 [Configure a Security Context for a Pod or Container](/docs/tasks/configure-pod-container/security-context/)
 task.
-This should be enabled if a cluster doesn't utilize 
-[pod security policies](/docs/concepts/policy/pod-security-policy/)
-to restrict the set of values a security context can take.
+If you don't use [Pod Security admission](/docs/concepts/security/pod-security-admission/),
+[PodSecurityPolicies](/docs/concepts/security/pod-security-policy/), nor any external enforcement mechanism,
+then you could use this admission controller to restrict the set of values a security context can take.
+
+See [Pod Security Standards](/docs/concepts/security/pod-security-standards/) for more context on restricting
+pod privileges.
 
 ### ServiceAccount {#serviceaccount}
 
 This admission controller implements automation for
 [serviceAccounts](/docs/tasks/configure-pod-container/configure-service-account/).
-We strongly recommend using this admission controller if you intend to make use of Kubernetes `ServiceAccount` objects.
+We strongly recommend using this admission controller if you intend to make use of Kubernetes
+`ServiceAccount` objects.
 
 ### StorageObjectInUseProtection
 
 The `StorageObjectInUseProtection` plugin adds the `kubernetes.io/pvc-protection` or `kubernetes.io/pv-protection`
 finalizers to newly created Persistent Volume Claims (PVCs) or Persistent Volumes (PV).
 In case a user deletes a PVC or PV the PVC or PV is not removed until the finalizer is removed
-from the PVC or PV by PVC or PV Protection Controller. 
+from the PVC or PV by PVC or PV Protection Controller.
 Refer to the
 [Storage Object in Use Protection](/docs/concepts/storage/persistent-volumes/#storage-object-in-use-protection)
 for more detailed information.
@@ -805,7 +775,10 @@ for more detailed information.
 
 {{< feature-state for_k8s_version="v1.17" state="stable" >}}
 
-This admission controller {{< glossary_tooltip text="taints" term_id="taint" >}} newly created Nodes as `NotReady` and `NoSchedule`. That tainting avoids a race condition that could cause Pods to be scheduled on new Nodes before their taints were updated to accurately reflect their reported conditions.
+This admission controller {{< glossary_tooltip text="taints" term_id="taint" >}} newly created
+Nodes as `NotReady` and `NoSchedule`. That tainting avoids a race condition that could cause Pods
+to be scheduled on new Nodes before their taints were updated to accurately reflect their reported
+conditions.
 
 ### ValidatingAdmissionWebhook {#validatingadmissionwebhook}
 
@@ -823,11 +796,11 @@ If you disable the ValidatingAdmissionWebhook, you must also disable the
 group/version via the `--runtime-config` flag (both are on by default in
 versions 1.9 and later).
 
-
 ## Is there a recommended set of admission controllers to use?
 
-Yes. The recommended admission controllers are enabled by default (shown [here](/docs/reference/command-line-tools-reference/kube-apiserver/#options)), so you do not need to explicitly specify them. You can enable additional admission controllers beyond the default set using the `--enable-admission-plugins` flag (**order doesn't matter**).
+Yes. The recommended admission controllers are enabled by default
+(shown [here](/docs/reference/command-line-tools-reference/kube-apiserver/#options)),
+so you do not need to explicitly specify them.
+You can enable additional admission controllers beyond the default set using the
+`--enable-admission-plugins` flag (**order doesn't matter**).
 
-{{< note >}}
-`--admission-control` was deprecated in 1.10 and replaced with `--enable-admission-plugins`.
-{{< /note >}}
diff --git a/content/en/docs/reference/access-authn-authz/authentication.md b/content/en/docs/reference/access-authn-authz/authentication.md
index 70d416af60..1641cb8e54 100644
--- a/content/en/docs/reference/access-authn-authz/authentication.md
+++ b/content/en/docs/reference/access-authn-authz/authentication.md
@@ -53,7 +53,7 @@ or be treated as an anonymous user.
 
 ## Authentication strategies
 
-Kubernetes uses client certificates, bearer tokens, an authenticating proxy, or HTTP basic auth to
+Kubernetes uses client certificates, bearer tokens, or an authenticating proxy to
 authenticate API requests through authentication plugins. As HTTP requests are
 made to the API server, plugins attempt to associate the following attributes
 with the request:
@@ -104,7 +104,7 @@ See [Managing Certificates](/docs/tasks/administer-cluster/certificates/) for ho
 ### Static Token File
 
 The API server reads bearer tokens from a file when given the `--token-auth-file=SOMEFILE` option on the command line.  Currently, tokens last indefinitely, and the token list cannot be
-changed without restarting API server.
+changed without restarting the API server.
 
 The token file is a csv file with a minimum of 3 columns: token, user name, user uid,
 followed by optional group names.
@@ -121,7 +121,7 @@ token,user,uid,"group1,group2,group3"
 
 When using bearer token authentication from an http client, the API
 server expects an `Authorization` header with a value of `Bearer
-THETOKEN`.  The bearer token must be a character sequence that can be
+<token>`.  The bearer token must be a character sequence that can be
 put in an HTTP header value using no more than the encoding and
 quoting facilities of HTTP.  For example: if the bearer token is
 `31ada4fd-adec-460c-809a-9e56ceb75269` then it would appear in an HTTP
@@ -356,7 +356,7 @@ You can use an existing public OpenID Connect Identity Provider (such as Google,
 Or, you can run your own Identity Provider, such as [dex](https://dexidp.io/),
 [Keycloak](https://github.com/keycloak/keycloak),
 CloudFoundry [UAA](https://github.com/cloudfoundry/uaa), or
-Tremolo Security's [OpenUnison](https://github.com/tremolosecurity/openunison).
+Tremolo Security's [OpenUnison](https://openunison.github.io/).
 
 For an identity provider to work with Kubernetes it must:
 
@@ -733,7 +733,7 @@ The following HTTP headers can be used to performing an impersonation request:
 
 * `Impersonate-User`: The username to act as.
 * `Impersonate-Group`: A group name to act as. Can be provided multiple times to set multiple groups. Optional. Requires "Impersonate-User".
-* `Impersonate-Extra-( extra name )`: A dynamic header used to associate extra fields with the user. Optional. Requires "Impersonate-User". In order to be preserved consistently, `( extra name )` should be lower-case, and any characters which aren't [legal in HTTP header labels](https://tools.ietf.org/html/rfc7230#section-3.2.6) MUST be utf8 and [percent-encoded](https://tools.ietf.org/html/rfc3986#section-2.1).
+* `Impersonate-Extra-( extra name )`: A dynamic header used to associate extra fields with the user. Optional. Requires "Impersonate-User". In order to be preserved consistently, `( extra name )` must be lower-case, and any characters which aren't [legal in HTTP header labels](https://tools.ietf.org/html/rfc7230#section-3.2.6) MUST be utf8 and [percent-encoded](https://tools.ietf.org/html/rfc3986#section-2.1).
 * `Impersonate-Uid`: A unique identifier that represents the user being impersonated. Optional. Requires "Impersonate-User". Kubernetes does not impose any format requirements on this string.
 
 {{< note >}}
@@ -856,6 +856,14 @@ rules:
   resourceNames: ["06f6ce97-e2c5-4ab8-7ba5-7654dd08d52b"]
 ```
 
+{{< note >}}
+Impersonating a user or group allows you to perform any action as if you were that user or group;
+for that reason, impersonation is not namespace scoped.
+If you want to allow impersonation using Kubernetes RBAC, 
+this requires using a `ClusterRole` and a `ClusterRoleBinding`,
+not a `Role` and `RoleBinding`.
+{{< /note >}}
+
 ## client-go credential plugins
 
 {{< feature-state for_k8s_version="v1.22" state="stable" >}}
@@ -905,7 +913,7 @@ users:
       #
       # The API version returned by the plugin MUST match the version listed here.
       #
-      # To integrate with tools that support multiple versions (such as client.authentication.k8s.io/v1alpha1),
+      # To integrate with tools that support multiple versions (such as client.authentication.k8s.io/v1beta1),
       # set an environment variable, pass an argument to the tool that indicates which version the exec plugin expects,
       # or read the version from the ExecCredential object in the KUBERNETES_EXEC_INFO environment variable.
       apiVersion: "client.authentication.k8s.io/v1"
@@ -978,7 +986,7 @@ users:
       #
       # The API version returned by the plugin MUST match the version listed here.
       #
-      # To integrate with tools that support multiple versions (such as client.authentication.k8s.io/v1alpha1),
+      # To integrate with tools that support multiple versions (such as client.authentication.k8s.io/v1),
       # set an environment variable, pass an argument to the tool that indicates which version the exec plugin expects,
       # or read the version from the ExecCredential object in the KUBERNETES_EXEC_INFO environment variable.
       apiVersion: "client.authentication.k8s.io/v1beta1"
@@ -1144,7 +1152,9 @@ If specified, `clientKeyData` and `clientCertificateData` must both must be pres
 {{< /tabs >}}
 
 Optionally, the response can include the expiry of the credential formatted as a
-RFC3339 timestamp. Presence or absence of an expiry has the following impact:
+[RFC 3339](https://datatracker.ietf.org/doc/html/rfc3339) timestamp.
+
+Presence or absence of an expiry has the following impact:
 
 - If an expiry is included, the bearer token and TLS credentials are cached until
   the expiry time is reached, or if the server responds with a 401 HTTP status code,
@@ -1232,3 +1242,5 @@ The following `ExecCredential` manifest describes a cluster information sample.
 ## {{% heading "whatsnext" %}}
 
 * Read the [client authentication reference (v1beta1)](/docs/reference/config-api/client-authentication.v1beta1/)
+* Read the [client authentication reference (v1)](/docs/reference/config-api/client-authentication.v1/)
+
diff --git a/content/en/docs/reference/access-authn-authz/authorization.md b/content/en/docs/reference/access-authn-authz/authorization.md
index af73a23350..ea6147fcba 100644
--- a/content/en/docs/reference/access-authn-authz/authorization.md
+++ b/content/en/docs/reference/access-authn-authz/authorization.md
@@ -74,9 +74,13 @@ PUT       | update
 PATCH     | patch
 DELETE    | delete (for individual resources), deletecollection (for collections)
 
+{{< caution >}}
+The `get`, `list` and `watch` verbs can all return the full details of a resource. In terms of the returned data they are equivalent. For example, `list` on `secrets` will still reveal the `data` attributes of any returned resources.
+{{< /caution >}}
+
 Kubernetes sometimes checks authorization for additional permissions using specialized verbs. For example:
 
-* [PodSecurityPolicy](/docs/concepts/policy/pod-security-policy/)
+* [PodSecurityPolicy](/docs/concepts/security/pod-security-policy/)
   * `use` verb on `podsecuritypolicies` resources in the `policy` API group.
 * [RBAC](/docs/reference/access-authn-authz/rbac/#privilege-escalation-prevention-and-bootstrapping)
   * `bind` and `escalate` verbs on `roles` and `clusterroles` resources in the `rbac.authorization.k8s.io` API group.
@@ -134,6 +138,21 @@ The output is similar to this:
 no
 ```
 
+Similarly, to check whether a ServiceAccount named `dev-sa` in Namespace `dev`
+can list Pods in the Namespace `target`:
+
+```bash
+kubectl auth can-i list pods \
+	--namespace target \
+	--as system:serviceaccount:dev:dev-sa
+```
+
+The output is similar to this:
+
+```
+yes
+```
+
 `SelfSubjectAccessReview` is part of the `authorization.k8s.io` API group, which
 exposes the API server authorization to external services. Other resources in
 this group include:
@@ -192,22 +211,33 @@ The following flags can be used:
 You can choose more than one authorization module. Modules are checked in order
 so an earlier module has higher priority to allow or deny a request.
 
-## Privilege escalation via pod creation
+## Privilege escalation via workload creation or edits {#privilege-escalation-via-pod-creation}
 
-Users who have the ability to create pods in a namespace can potentially
-escalate their privileges within that namespace.  They can create pods that
-access their privileges within that namespace. They can create pods that access
-secrets the user cannot themselves read, or that run under a service account
-with different/greater permissions.
+Users who can create/edit pods in a namespace, either directly or through a [controller](/docs/concepts/architecture/controller/)
+such as an operator, could escalate their privileges in that namespace.
 
 {{< caution >}}
-System administrators, use care when granting access to pod creation. A user
-granted permission to create pods (or controllers that create pods) in the
-namespace can: read all secrets in the namespace; read all config maps in the
-namespace; and impersonate any service account in the namespace and take any
-action the account could take. This applies regardless of authorization mode.
+System administrators, use care when granting access to create or edit workloads.
+Details of how these can be misused are documented in [escalation paths](/docs/reference/access-authn-authz/authorization/#escalation-paths)
 {{< /caution >}}
 
+### Escalation paths {#escalation-paths}
+- Mounting arbitrary secrets in that namespace
+  - Can be used to access secrets meant for other workloads
+  - Can be used to obtain a more privileged service account's service account token
+- Using arbitrary Service Accounts in that namespace
+  - Can perform Kubernetes API actions as another workload (impersonation)
+  - Can perform any privileged actions that Service Account has
+- Mounting configmaps meant for other workloads in that namespace
+  - Can be used to obtain information meant for other workloads, such as DB host names.
+- Mounting volumes meant for other workloads in that namespace
+  - Can be used to obtain information meant for other workloads, and change it.
+
+{{< caution >}}
+System administrators should be cautious when deploying CRDs that
+change the above areas. These may open privilege escalations paths.
+This should be considered when deciding on your RBAC controls.
+{{< /caution >}}
 
 ## {{% heading "whatsnext" %}}
 
diff --git a/content/en/docs/reference/access-authn-authz/bootstrap-tokens.md b/content/en/docs/reference/access-authn-authz/bootstrap-tokens.md
index 7e743be63d..74367d50c9 100644
--- a/content/en/docs/reference/access-authn-authz/bootstrap-tokens.md
+++ b/content/en/docs/reference/access-authn-authz/bootstrap-tokens.md
@@ -15,7 +15,7 @@ creating new clusters or joining new nodes to an existing cluster.  It was built
 to support [kubeadm](/docs/reference/setup-tools/kubeadm/), but can be used in other contexts
 for users that wish to start clusters without `kubeadm`. It is also built to
 work, via RBAC policy, with the
-[Kubelet TLS Bootstrapping](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/) system.
+[Kubelet TLS Bootstrapping](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/) system.
 
 
 <!-- body -->
@@ -70,7 +70,7 @@ controller on the controller manager.
 
 Each valid token is backed by a secret in the `kube-system` namespace.  You can
 find the full design doc
-[here](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/cluster-lifecycle/bootstrap-discovery.md).
+[here](https://git.k8s.io/design-proposals-archive/cluster-lifecycle/bootstrap-discovery.md).
 
 Here is what the secret looks like.
 
diff --git a/content/en/docs/reference/access-authn-authz/certificate-signing-requests.md b/content/en/docs/reference/access-authn-authz/certificate-signing-requests.md
index 73b43f38bf..e9c033ef3a 100644
--- a/content/en/docs/reference/access-authn-authz/certificate-signing-requests.md
+++ b/content/en/docs/reference/access-authn-authz/certificate-signing-requests.md
@@ -199,7 +199,7 @@ To allow signing a CertificateSigningRequest:
 ## Normal user
 
 A few steps are required in order to get a normal user to be able to
-authenticate and invoke an API. First, this user must have certificate issued
+authenticate and invoke an API. First, this user must have a certificate issued
 by the Kubernetes cluster, and then present that certificate to the Kubernetes API.
 
 ### Create private key
@@ -274,10 +274,10 @@ kubectl get csr myuser -o jsonpath='{.status.certificate}'| base64 -d > myuser.c
 
 ### Create Role and RoleBinding
 
-With the certificate created. it is time to define the Role and RoleBinding for
+With the certificate created it is time to define the Role and RoleBinding for
 this user to access Kubernetes cluster resources.
 
-This is a sample script to create a Role for this new user:
+This is a sample command to create a Role for this new user:
 
 ```shell
 kubectl create role developer --verb=create --verb=get --verb=list --verb=update --verb=delete --resource=pods
diff --git a/content/en/docs/reference/access-authn-authz/extensible-admission-controllers.md b/content/en/docs/reference/access-authn-authz/extensible-admission-controllers.md
index aa714bdaa2..05f9b8369c 100644
--- a/content/en/docs/reference/access-authn-authz/extensible-admission-controllers.md
+++ b/content/en/docs/reference/access-authn-authz/extensible-admission-controllers.md
@@ -16,8 +16,8 @@ In addition to [compiled-in admission plugins](/docs/reference/access-authn-auth
 admission plugins can be developed as extensions and run as webhooks configured at runtime.
 This page describes how to build, configure, use, and monitor admission webhooks.
 
-
 <!-- body -->
+
 ## What are admission webhooks?
 
 Admission webhooks are HTTP callbacks that receive admission requests and do
@@ -37,29 +37,25 @@ should use a validating admission webhook, since objects can be modified after b
 ## Experimenting with admission webhooks
 
 Admission webhooks are essentially part of the cluster control-plane. You should
-write and deploy them with great caution. Please read the [user
-guides](/docs/reference/access-authn-authz/extensible-admission-controllers/#write-an-admission-webhook-server) for
-instructions if you intend to write/deploy production-grade admission webhooks.
+write and deploy them with great caution. Please read the
+[user guides](/docs/reference/access-authn-authz/extensible-admission-controllers/#write-an-admission-webhook-server)
+for instructions if you intend to write/deploy production-grade admission webhooks.
 In the following, we describe how to quickly experiment with admission webhooks.
 
 ### Prerequisites
 
-* Ensure that the Kubernetes cluster is at least as new as v1.16 (to use `admissionregistration.k8s.io/v1`),
-  or v1.9 (to use `admissionregistration.k8s.io/v1beta1`).
-
 * Ensure that MutatingAdmissionWebhook and ValidatingAdmissionWebhook
   admission controllers are enabled.
   [Here](/docs/reference/access-authn-authz/admission-controllers/#is-there-a-recommended-set-of-admission-controllers-to-use)
   is a recommended set of admission controllers to enable in general.
 
-* Ensure that the `admissionregistration.k8s.io/v1` or `admissionregistration.k8s.io/v1beta1` API is enabled.
+* Ensure that the `admissionregistration.k8s.io/v1` API is enabled.
 
 ### Write an admission webhook server
 
-Please refer to the implementation of the [admission webhook
-server](https://github.com/kubernetes/kubernetes/blob/release-1.21/test/images/agnhost/webhook/main.go)
+Please refer to the implementation of the [admission webhook server](https://github.com/kubernetes/kubernetes/blob/release-1.21/test/images/agnhost/webhook/main.go)
 that is validated in a Kubernetes e2e test. The webhook handles the
-`AdmissionReview` request sent by the apiservers, and sends back its decision
+`AdmissionReview` request sent by the API servers, and sends back its decision
 as an `AdmissionReview` object in the same version it received.
 
 See the [webhook request](#request) section for details on the data sent to webhooks.
@@ -67,11 +63,11 @@ See the [webhook request](#request) section for details on the data sent to webh
 See the [webhook response](#response) section for the data expected from webhooks.
 
 The example admission webhook server leaves the `ClientAuth` field
-[empty](https://github.com/kubernetes/kubernetes/blob/v1.13.0/test/images/webhook/config.go#L47-L48),
+[empty](https://github.com/kubernetes/kubernetes/blob/v1.22.0/test/images/agnhost/webhook/config.go#L38-L39),
 which defaults to `NoClientCert`. This means that the webhook server does not
-authenticate the identity of the clients, supposedly apiservers. If you need
+authenticate the identity of the clients, supposedly API servers. If you need
 mutual TLS or other ways to authenticate the clients, see
-how to [authenticate apiservers](#authenticate-apiservers).
+how to [authenticate API servers](#authenticate-apiservers).
 
 ### Deploy the admission webhook service
 
@@ -79,7 +75,7 @@ The webhook server in the e2e test is deployed in the Kubernetes cluster, via
 the [deployment API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#deployment-v1-apps).
 The test also creates a [service](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#service-v1-core)
 as the front-end of the webhook server. See
-[code](https://github.com/kubernetes/kubernetes/blob/v1.15.0/test/e2e/apimachinery/webhook.go#L301).
+[code](https://github.com/kubernetes/kubernetes/blob/v1.22.0/test/e2e/apimachinery/webhook.go#L748).
 
 You may also deploy your webhooks outside of the cluster. You will need to update
 your webhook configurations accordingly.
@@ -95,8 +91,6 @@ or
 The following is an example `ValidatingWebhookConfiguration`, a mutating webhook configuration is similar.
 See the [webhook configuration](#webhook-configuration) section for details about each config field.
 
-{{< tabs name="ValidatingWebhookConfiguration_example_1" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
@@ -114,39 +108,18 @@ webhooks:
     service:
       namespace: "example-namespace"
       name: "example-service"
-    caBundle: "Ci0tLS0tQk...<`caBundle` is a PEM encoded CA bundle which will be used to validate the webhook's server certificate.>...tLS0K"
-  admissionReviewVersions: ["v1", "v1beta1"]
+    caBundle: <CA_BUNDLE>
+  admissionReviewVersions: ["v1"]
   sideEffects: None
   timeoutSeconds: 5
 ```
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# Deprecated in v1.16 in favor of admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: ValidatingWebhookConfiguration
-metadata:
-  name: "pod-policy.example.com"
-webhooks:
-- name: "pod-policy.example.com"
-  rules:
-  - apiGroups:   [""]
-    apiVersions: ["v1"]
-    operations:  ["CREATE"]
-    resources:   ["pods"]
-    scope:       "Namespaced"
-  clientConfig:
-    service:
-      namespace: "example-namespace"
-      name: "example-service"
-    caBundle: "Ci0tLS0tQk...<`caBundle` is a PEM encoded CA bundle which will be used to validate the webhook's server certificate>...tLS0K"
-  admissionReviewVersions: ["v1beta1"]
-  timeoutSeconds: 5
-```
-{{% /tab %}}
-{{< /tabs >}}
 
-The scope field specifies if only cluster-scoped resources ("Cluster") or namespace-scoped
+{{< note >}}
+You must replace the `<CA_BUNDLE>` in the above example by a valid CA bundle
+which is a PEM-encoded CA bundle for validating the webhook's server certificate.
+{{< /note >}}
+
+The `scope` field specifies if only cluster-scoped resources ("Cluster") or namespace-scoped
 resources ("Namespaced") will match this rule. "&lowast;" means that there are no scope restrictions.
 
 {{< note >}}
@@ -155,27 +128,26 @@ When using `clientConfig.service`, the server cert must be valid for
 {{< /note >}}
 
 {{< note >}}
-Default timeout for a webhook call is 10 seconds for webhooks registered created using `admissionregistration.k8s.io/v1`,
-and 30 seconds for webhooks created using `admissionregistration.k8s.io/v1beta1`. Starting in kubernetes 1.14 you
-can set the timeout and it is encouraged to use a small timeout for webhooks.
+Default timeout for a webhook call is 10 seconds,
+You can set the `timeout` and it is encouraged to use a short timeout for webhooks.
 If the webhook call times out, the request is handled according to the webhook's
 failure policy.
 {{< /note >}}
 
-When an apiserver receives a request that matches one of the `rules`, the
-apiserver sends an `admissionReview` request to webhook as specified in the
+When an API server receives a request that matches one of the `rules`, the
+API server sends an `admissionReview` request to webhook as specified in the
 `clientConfig`.
 
 After you create the webhook configuration, the system will take a few seconds
 to honor the new configuration.
 
-### Authenticate apiservers
+### Authenticate API servers   {#authenticate-apiservers}
 
 If your admission webhooks require authentication, you can configure the
-apiservers to use basic auth, bearer token, or a cert to authenticate itself to
+API servers to use basic auth, bearer token, or a cert to authenticate itself to
 the webhooks. There are three steps to complete the configuration.
 
-* When starting the apiserver, specify the location of the admission control
+* When starting the API server, specify the location of the admission control
   configuration file via the `--admission-control-config-file` flag.
 
 * In the admission control configuration file, specify where the
@@ -228,55 +200,55 @@ For more information about `AdmissionConfiguration`, see the
 [AdmissionConfiguration (v1) reference](/docs/reference/config-api/apiserver-webhookadmission.v1/).
 See the [webhook configuration](#webhook-configuration) section for details about each config field.
 
-* In the kubeConfig file, provide the credentials:
+In the kubeConfig file, provide the credentials:
 
-    ```yaml
-    apiVersion: v1
-    kind: Config
-    users:
-    # name should be set to the DNS name of the service or the host (including port) of the URL the webhook is configured to speak to.
-    # If a non-443 port is used for services, it must be included in the name when configuring 1.16+ API servers.
-    #
-    # For a webhook configured to speak to a service on the default port (443), specify the DNS name of the service:
-    # - name: webhook1.ns1.svc
-    #   user: ...
-    #
-    # For a webhook configured to speak to a service on non-default port (e.g. 8443), specify the DNS name and port of the service in 1.16+:
-    # - name: webhook1.ns1.svc:8443
-    #   user: ...
-    # and optionally create a second stanza using only the DNS name of the service for compatibility with 1.15 API servers:
-    # - name: webhook1.ns1.svc
-    #   user: ...
-    #
-    # For webhooks configured to speak to a URL, match the host (and port) specified in the webhook's URL. Examples:
-    # A webhook with `url: https://www.example.com`:
-    # - name: www.example.com
-    #   user: ...
-    #
-    # A webhook with `url: https://www.example.com:443`:
-    # - name: www.example.com:443
-    #   user: ...
-    #
-    # A webhook with `url: https://www.example.com:8443`:
-    # - name: www.example.com:8443
-    #   user: ...
-    #
-    - name: 'webhook1.ns1.svc'
-      user:
-        client-certificate-data: "<pem encoded certificate>"
-        client-key-data: "<pem encoded key>"
-    # The `name` supports using * to wildcard-match prefixing segments.
-    - name: '*.webhook-company.org'
-      user:
-        password: "<password>"
-        username: "<name>"
-    # '*' is the default match.
-    - name: '*'
-      user:
-        token: "<token>"
-    ```
+```yaml
+apiVersion: v1
+kind: Config
+users:
+# name should be set to the DNS name of the service or the host (including port) of the URL the webhook is configured to speak to.
+# If a non-443 port is used for services, it must be included in the name when configuring 1.16+ API servers.
+#
+# For a webhook configured to speak to a service on the default port (443), specify the DNS name of the service:
+# - name: webhook1.ns1.svc
+#   user: ...
+#
+# For a webhook configured to speak to a service on non-default port (e.g. 8443), specify the DNS name and port of the service in 1.16+:
+# - name: webhook1.ns1.svc:8443
+#   user: ...
+# and optionally create a second stanza using only the DNS name of the service for compatibility with 1.15 API servers:
+# - name: webhook1.ns1.svc
+#   user: ...
+#
+# For webhooks configured to speak to a URL, match the host (and port) specified in the webhook's URL. Examples:
+# A webhook with `url: https://www.example.com`:
+# - name: www.example.com
+#   user: ...
+#
+# A webhook with `url: https://www.example.com:443`:
+# - name: www.example.com:443
+#   user: ...
+#
+# A webhook with `url: https://www.example.com:8443`:
+# - name: www.example.com:8443
+#   user: ...
+#
+- name: 'webhook1.ns1.svc'
+  user:
+    client-certificate-data: "<pem encoded certificate>"
+    client-key-data: "<pem encoded key>"
+# The `name` supports using * to wildcard-match prefixing segments.
+- name: '*.webhook-company.org'
+  user:
+    password: "<password>"
+    username: "<name>"
+# '*' is the default match.
+- name: '*'
+  user:
+    token: "<token>"
+```
 
-Of course you need to set up the webhook server to handle these authentications.
+Of course you need to set up the webhook server to handle these authentication requests.
 
 ## Webhook request and response
 
@@ -289,39 +261,17 @@ serialized to JSON as the body.
 Webhooks can specify what versions of `AdmissionReview` objects they accept
 with the `admissionReviewVersions` field in their configuration:
 
-{{< tabs name="ValidatingWebhookConfiguration_admissionReviewVersions" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
-...
 webhooks:
 - name: my-webhook.example.com
   admissionReviewVersions: ["v1", "v1beta1"]
-  ...
 ```
 
-`admissionReviewVersions` is a required field when creating
-`admissionregistration.k8s.io/v1` webhook configurations.
+`admissionReviewVersions` is a required field when creating webhook configurations.
 Webhooks are required to support at least one `AdmissionReview`
 version understood by the current and previous API server.
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# Deprecated in v1.16 in favor of admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: ValidatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  admissionReviewVersions: ["v1beta1"]
-  ...
-```
-
-If no `admissionReviewVersions` are specified, the default when creating
-`admissionregistration.k8s.io/v1beta1` webhook configurations is `v1beta1`.
-{{% /tab %}}
-{{< /tabs >}}
 
 API servers send the first `AdmissionReview` version in the `admissionReviewVersions` list they support.
 If none of the versions in the list are supported by the API server, the configuration will not be allowed to be created.
@@ -331,154 +281,100 @@ versions the API server knows how to send, attempts to call to the webhook will
 This example shows the data contained in an `AdmissionReview` object
 for a request to update the `scale` subresource of an `apps/v1` `Deployment`:
 
-
-{{< tabs name="AdmissionReview_request" >}}
-{{% tab name="admission.k8s.io/v1" %}}
 ```yaml
-{
-  "apiVersion": "admission.k8s.io/v1",
-  "kind": "AdmissionReview",
-  "request": {
-    # Random uid uniquely identifying this admission call
-    "uid": "705ab4f5-6393-11e8-b7cc-42010a800002",
+apiVersion: admission.k8s.io/v1
+kind: AdmissionReview
+request:
+  # Random uid uniquely identifying this admission call
+  uid: 705ab4f5-6393-11e8-b7cc-42010a800002
 
-    # Fully-qualified group/version/kind of the incoming object
-    "kind": {"group":"autoscaling","version":"v1","kind":"Scale"},
-    # Fully-qualified group/version/kind of the resource being modified
-    "resource": {"group":"apps","version":"v1","resource":"deployments"},
-    # subresource, if the request is to a subresource
-    "subResource": "scale",
+  # Fully-qualified group/version/kind of the incoming object
+  kind:
+    group: autoscaling
+    version: v1
+    kind: Scale
 
-    # Fully-qualified group/version/kind of the incoming object in the original request to the API server.
-    # This only differs from `kind` if the webhook specified `matchPolicy: Equivalent` and the
-    # original request to the API server was converted to a version the webhook registered for.
-    "requestKind": {"group":"autoscaling","version":"v1","kind":"Scale"},
-    # Fully-qualified group/version/kind of the resource being modified in the original request to the API server.
-    # This only differs from `resource` if the webhook specified `matchPolicy: Equivalent` and the
-    # original request to the API server was converted to a version the webhook registered for.
-    "requestResource": {"group":"apps","version":"v1","resource":"deployments"},
-    # subresource, if the request is to a subresource
-    # This only differs from `subResource` if the webhook specified `matchPolicy: Equivalent` and the
-    # original request to the API server was converted to a version the webhook registered for.
-    "requestSubResource": "scale",
+  # Fully-qualified group/version/kind of the resource being modified
+  resource:
+    group: apps
+    version: v1
+    resource: deployments
 
-    # Name of the resource being modified
-    "name": "my-deployment",
-    # Namespace of the resource being modified, if the resource is namespaced (or is a Namespace object)
-    "namespace": "my-namespace",
+  # subresource, if the request is to a subresource
+  subResource: scale
 
-    # operation can be CREATE, UPDATE, DELETE, or CONNECT
-    "operation": "UPDATE",
+  # Fully-qualified group/version/kind of the incoming object in the original request to the API server.
+  # This only differs from `kind` if the webhook specified `matchPolicy: Equivalent` and the
+  # original request to the API server was converted to a version the webhook registered for.
+  requestKind:
+    group: autoscaling
+    version: v1
+    kind: Scale
 
-    "userInfo": {
-      # Username of the authenticated user making the request to the API server
-      "username": "admin",
-      # UID of the authenticated user making the request to the API server
-      "uid": "014fbff9a07c",
-      # Group memberships of the authenticated user making the request to the API server
-      "groups": ["system:authenticated","my-admin-group"],
-      # Arbitrary extra info associated with the user making the request to the API server.
-      # This is populated by the API server authentication layer and should be included
-      # if any SubjectAccessReview checks are performed by the webhook.
-      "extra": {
-        "some-key":["some-value1", "some-value2"]
-      }
-    },
+  # Fully-qualified group/version/kind of the resource being modified in the original request to the API server.
+  # This only differs from `resource` if the webhook specified `matchPolicy: Equivalent` and the
+  # original request to the API server was converted to a version the webhook registered for.
+  requestResource:
+    group: apps
+    version: v1
+    resource: deployments
 
-    # object is the new object being admitted.
-    # It is null for DELETE operations.
-    "object": {"apiVersion":"autoscaling/v1","kind":"Scale",...},
-    # oldObject is the existing object.
-    # It is null for CREATE and CONNECT operations.
-    "oldObject": {"apiVersion":"autoscaling/v1","kind":"Scale",...},
-    # options contains the options for the operation being admitted, like meta.k8s.io/v1 CreateOptions, UpdateOptions, or DeleteOptions.
-    # It is null for CONNECT operations.
-    "options": {"apiVersion":"meta.k8s.io/v1","kind":"UpdateOptions",...},
+  # subresource, if the request is to a subresource
+  # This only differs from `subResource` if the webhook specified `matchPolicy: Equivalent` and the
+  # original request to the API server was converted to a version the webhook registered for.
+  requestSubResource: scale
 
-    # dryRun indicates the API request is running in dry run mode and will not be persisted.
-    # Webhooks with side effects should avoid actuating those side effects when dryRun is true.
-    # See http://k8s.io/docs/reference/using-api/api-concepts/#make-a-dry-run-request for more details.
-    "dryRun": false
-  }
-}
+  # Name of the resource being modified
+  name: my-deployment
+
+  # Namespace of the resource being modified, if the resource is namespaced (or is a Namespace object)
+  namespace: my-namespace
+
+  # operation can be CREATE, UPDATE, DELETE, or CONNECT
+  operation: UPDATE
+
+  userInfo:
+    # Username of the authenticated user making the request to the API server
+    username: admin
+
+    # UID of the authenticated user making the request to the API server
+    uid: 014fbff9a07c
+
+    # Group memberships of the authenticated user making the request to the API server
+    groups:
+      - system:authenticated
+      - my-admin-group
+    # Arbitrary extra info associated with the user making the request to the API server.
+    # This is populated by the API server authentication layer and should be included
+    # if any SubjectAccessReview checks are performed by the webhook.
+    extra:
+      some-key:
+        - some-value1
+        - some-value2
+
+  # object is the new object being admitted.
+  # It is null for DELETE operations.
+  object:
+    apiVersion: autoscaling/v1
+    kind: Scale
+
+  # oldObject is the existing object.
+  # It is null for CREATE and CONNECT operations.
+  oldObject:
+    apiVersion: autoscaling/v1
+    kind: Scale
+
+  # options contains the options for the operation being admitted, like meta.k8s.io/v1 CreateOptions, UpdateOptions, or DeleteOptions.
+  # It is null for CONNECT operations.
+  options:
+    apiVersion: meta.k8s.io/v1
+    kind: UpdateOptions
+
+  # dryRun indicates the API request is running in dry run mode and will not be persisted.
+  # Webhooks with side effects should avoid actuating those side effects when dryRun is true.
+  # See http://k8s.io/docs/reference/using-api/api-concepts/#make-a-dry-run-request for more details.
+  dryRun: False
 ```
-{{% /tab %}}
-{{% tab name="admission.k8s.io/v1beta1" %}}
-```yaml
-{
-  # Deprecated in v1.16 in favor of admission.k8s.io/v1
-  "apiVersion": "admission.k8s.io/v1beta1",
-  "kind": "AdmissionReview",
-  "request": {
-    # Random uid uniquely identifying this admission call
-    "uid": "705ab4f5-6393-11e8-b7cc-42010a800002",
-
-    # Fully-qualified group/version/kind of the incoming object
-    "kind": {"group":"autoscaling","version":"v1","kind":"Scale"},
-    # Fully-qualified group/version/kind of the resource being modified
-    "resource": {"group":"apps","version":"v1","resource":"deployments"},
-    # subresource, if the request is to a subresource
-    "subResource": "scale",
-
-    # Fully-qualified group/version/kind of the incoming object in the original request to the API server.
-    # This only differs from `kind` if the webhook specified `matchPolicy: Equivalent` and the
-    # original request to the API server was converted to a version the webhook registered for.
-    # Only sent by v1.15+ API servers.
-    "requestKind": {"group":"autoscaling","version":"v1","kind":"Scale"},
-    # Fully-qualified group/version/kind of the resource being modified in the original request to the API server.
-    # This only differs from `resource` if the webhook specified `matchPolicy: Equivalent` and the
-    # original request to the API server was converted to a version the webhook registered for.
-    # Only sent by v1.15+ API servers.
-    "requestResource": {"group":"apps","version":"v1","resource":"deployments"},
-    # subresource, if the request is to a subresource
-    # This only differs from `subResource` if the webhook specified `matchPolicy: Equivalent` and the
-    # original request to the API server was converted to a version the webhook registered for.
-    # Only sent by v1.15+ API servers.
-    "requestSubResource": "scale",
-
-    # Name of the resource being modified
-    "name": "my-deployment",
-    # Namespace of the resource being modified, if the resource is namespaced (or is a Namespace object)
-    "namespace": "my-namespace",
-
-    # operation can be CREATE, UPDATE, DELETE, or CONNECT
-    "operation": "UPDATE",
-
-    "userInfo": {
-      # Username of the authenticated user making the request to the API server
-      "username": "admin",
-      # UID of the authenticated user making the request to the API server
-      "uid": "014fbff9a07c",
-      # Group memberships of the authenticated user making the request to the API server
-      "groups": ["system:authenticated","my-admin-group"],
-      # Arbitrary extra info associated with the user making the request to the API server.
-      # This is populated by the API server authentication layer and should be included
-      # if any SubjectAccessReview checks are performed by the webhook.
-      "extra": {
-        "some-key":["some-value1", "some-value2"]
-      }
-    },
-
-    # object is the new object being admitted.
-    # It is null for DELETE operations.
-    "object": {"apiVersion":"autoscaling/v1","kind":"Scale",...},
-    # oldObject is the existing object.
-    # It is null for CREATE and CONNECT operations (and for DELETE operations in API servers prior to v1.15.0)
-    "oldObject": {"apiVersion":"autoscaling/v1","kind":"Scale",...},
-    # options contains the options for the operation being admitted, like meta.k8s.io/v1 CreateOptions, UpdateOptions, or DeleteOptions.
-    # It is null for CONNECT operations.
-    # Only sent by v1.15+ API servers.
-    "options": {"apiVersion":"meta.k8s.io/v1","kind":"UpdateOptions",...},
-
-    # dryRun indicates the API request is running in dry run mode and will not be persisted.
-    # Webhooks with side effects should avoid actuating those side effects when dryRun is true.
-    # See http://k8s.io/docs/reference/using-api/api-concepts/#make-a-dry-run-request for more details.
-    "dryRun": false
-  }
-}
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 ### Response
 
@@ -492,8 +388,7 @@ At a minimum, the `response` stanza must contain the following fields:
 * `allowed`, either set to `true` or `false`
 
 Example of a minimal response from a webhook to allow a request:
-{{< tabs name="AdmissionReview_response_allow" >}}
-{{% tab name="admission.k8s.io/v1" %}}
+
 ```json
 {
   "apiVersion": "admission.k8s.io/v1",
@@ -504,55 +399,26 @@ Example of a minimal response from a webhook to allow a request:
   }
 }
 ```
-{{% /tab %}}
-{{% tab name="admission.k8s.io/v1beta1" %}}
-```json
-{
-  "apiVersion": "admission.k8s.io/v1beta1",
-  "kind": "AdmissionReview",
-  "response": {
-    "uid": "<value from request.uid>",
-    "allowed": true
-  }
-}
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 Example of a minimal response from a webhook to forbid a request:
-{{< tabs name="AdmissionReview_response_forbid_minimal" >}}
-{{% tab name="admission.k8s.io/v1" %}}
-```json
-{
-  "apiVersion": "admission.k8s.io/v1",
-  "kind": "AdmissionReview",
-  "response": {
-    "uid": "<value from request.uid>",
-    "allowed": false
-  }
-}
-```
-{{% /tab %}}
-{{% tab name="admission.k8s.io/v1beta1" %}}
-```json
-{
-  "apiVersion": "admission.k8s.io/v1beta1",
-  "kind": "AdmissionReview",
-  "response": {
-    "uid": "<value from request.uid>",
-    "allowed": false
-  }
-}
-```
-{{% /tab %}}
-{{< /tabs >}}
 
-When rejecting a request, the webhook can customize the http code and message returned to the user using the `status` field.
-The specified status object is returned to the user.
-See the [API documentation](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#status-v1-meta) for details about the status type.
+```json
+{
+  "apiVersion": "admission.k8s.io/v1",
+  "kind": "AdmissionReview",
+  "response": {
+    "uid": "<value from request.uid>",
+    "allowed": false
+  }
+}
+```
+
+When rejecting a request, the webhook can customize the http code and message returned to the user
+using the `status` field. The specified status object is returned to the user.
+See the [API documentation](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#status-v1-meta)
+for details about the `status` type.
 Example of a response to forbid a request, customizing the HTTP status code and message presented to the user:
-{{< tabs name="AdmissionReview_response_forbid_details" >}}
-{{% tab name="admission.k8s.io/v1" %}}
+
 ```json
 {
   "apiVersion": "admission.k8s.io/v1",
@@ -567,24 +433,6 @@ Example of a response to forbid a request, customizing the HTTP status code and
   }
 }
 ```
-{{% /tab %}}
-{{% tab name="admission.k8s.io/v1beta1" %}}
-```json
-{
-  "apiVersion": "admission.k8s.io/v1beta1",
-  "kind": "AdmissionReview",
-  "response": {
-    "uid": "<value from request.uid>",
-    "allowed": false,
-    "status": {
-      "code": 403,
-      "message": "You cannot do this because it is Tuesday and your name starts with A"
-    }
-  }
-}
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 When allowing a request, a mutating admission webhook may optionally modify the incoming object as well.
 This is done using the `patch` and `patchType` fields in the response.
@@ -592,13 +440,13 @@ The only currently supported `patchType` is `JSONPatch`.
 See [JSON patch](https://jsonpatch.com/) documentation for more details.
 For `patchType: JSONPatch`, the `patch` field contains a base64-encoded array of JSON patch operations.
 
-As an example, a single patch operation that would set `spec.replicas` would be `[{"op": "add", "path": "/spec/replicas", "value": 3}]`
+As an example, a single patch operation that would set `spec.replicas` would be
+`[{"op": "add", "path": "/spec/replicas", "value": 3}]`
 
 Base64-encoded, this would be `W3sib3AiOiAiYWRkIiwgInBhdGgiOiAiL3NwZWMvcmVwbGljYXMiLCAidmFsdWUiOiAzfV0=`
 
 So a webhook response to add that label would be:
-{{< tabs name="AdmissionReview_response_modify" >}}
-{{% tab name="admission.k8s.io/v1" %}}
+
 ```json
 {
   "apiVersion": "admission.k8s.io/v1",
@@ -611,27 +459,12 @@ So a webhook response to add that label would be:
   }
 }
 ```
-{{% /tab %}}
-{{% tab name="admission.k8s.io/v1beta1" %}}
-```json
-{
-  "apiVersion": "admission.k8s.io/v1beta1",
-  "kind": "AdmissionReview",
-  "response": {
-    "uid": "<value from request.uid>",
-    "allowed": true,
-    "patchType": "JSONPatch",
-    "patch": "W3sib3AiOiAiYWRkIiwgInBhdGgiOiAiL3NwZWMvcmVwbGljYXMiLCAidmFsdWUiOiAzfV0="
-  }
-}
-```
-{{% /tab %}}
-{{< /tabs >}}
 
-Starting in v1.19, admission webhooks can optionally return warning messages that are returned to the requesting client
+Admission webhooks can optionally return warning messages that are returned to the requesting client
 in HTTP `Warning` headers with a warning code of 299. Warnings can be sent with allowed or rejected admission responses.
 
 If you're implementing a webhook that returns a warning:
+
 * Don't include a "Warning:" prefix in the message
 * Use warning messages to describe problems the client making the API request should correct or be aware of
 * Limit warnings to 120 characters if possible
@@ -641,8 +474,6 @@ Individual warning messages over 256 characters may be truncated by the API serv
 If more than 4096 characters of warning messages are added (from all sources), additional warning messages are ignored.
 {{< /caution >}}
 
-{{< tabs name="AdmissionReview_response_warning" >}}
-{{% tab name="admission.k8s.io/v1" %}}
 ```json
 {
   "apiVersion": "admission.k8s.io/v1",
@@ -657,24 +488,6 @@ If more than 4096 characters of warning messages are added (from all sources), a
   }
 }
 ```
-{{% /tab %}}
-{{% tab name="admission.k8s.io/v1beta1" %}}
-```json
-{
-  "apiVersion": "admission.k8s.io/v1beta1",
-  "kind": "AdmissionReview",
-  "response": {
-    "uid": "<value from request.uid>",
-    "allowed": true,
-    "warnings": [
-      "duplicate envvar entries specified with name MY_ENV",
-      "memory request less than 4MB specified for container mycontainer, which will not start successfully"
-    ]
-  }
-}
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 ## Webhook configuration
 
@@ -683,9 +496,9 @@ The name of a `MutatingWebhookConfiguration` or a `ValidatingWebhookConfiguratio
 [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 
 Each configuration can contain one or more webhooks.
-If multiple webhooks are specified in a single configuration, each should be given a unique name.
-This is required in `admissionregistration.k8s.io/v1`, but strongly recommended when using `admissionregistration.k8s.io/v1beta1`,
-in order to make resulting audit logs and metrics easier to match up to active configurations.
+If multiple webhooks are specified in a single configuration, each must be given a unique name.
+This is required in order to make resulting audit logs and metrics easier to match up to active
+configurations.
 
 Each webhook defines the following things.
 
@@ -694,27 +507,31 @@ Each webhook defines the following things.
 Each webhook must specify a list of rules used to determine if a request to the API server should be sent to the webhook.
 Each rule specifies one or more operations, apiGroups, apiVersions, and resources, and a resource scope:
 
-* `operations` lists one or more operations to match. Can be `"CREATE"`, `"UPDATE"`, `"DELETE"`, `"CONNECT"`, or `"*"` to match all.
+* `operations` lists one or more operations to match. Can be `"CREATE"`, `"UPDATE"`, `"DELETE"`, `"CONNECT"`,
+  or `"*"` to match all.
 * `apiGroups` lists one or more API groups to match. `""` is the core API group. `"*"` matches all API groups.
 * `apiVersions` lists one or more API versions to match. `"*"` matches all API versions.
 * `resources` lists one or more resources to match.
-    * `"*"` matches all resources, but not subresources.
-    * `"*/*"` matches all resources and subresources.
-    * `"pods/*"` matches all subresources of pods.
-    * `"*/status"` matches all status subresources.
-* `scope` specifies a scope to match. Valid values are `"Cluster"`, `"Namespaced"`, and `"*"`. Subresources match the scope of their parent resource. Supported in v1.14+. Default is `"*"`, matching pre-1.14 behavior.
-    * `"Cluster"` means that only cluster-scoped resources will match this rule (Namespace API objects are cluster-scoped).
-    * `"Namespaced"` means that only namespaced resources will match this rule.
-    * `"*"` means that there are no scope restrictions.
 
-If an incoming request matches one of the specified operations, groups, versions, resources, and scope for any of a webhook's rules, the request is sent to the webhook.
+  * `"*"` matches all resources, but not subresources.
+  * `"*/*"` matches all resources and subresources.
+  * `"pods/*"` matches all subresources of pods.
+  * `"*/status"` matches all status subresources.
+
+* `scope` specifies a scope to match. Valid values are `"Cluster"`, `"Namespaced"`, and `"*"`.
+  Subresources match the scope of their parent resource. Default is `"*"`.
+
+  * `"Cluster"` means that only cluster-scoped resources will match this rule (Namespace API objects are cluster-scoped).
+  * `"Namespaced"` means that only namespaced resources will match this rule.
+  * `"*"` means that there are no scope restrictions.
+
+If an incoming request matches one of the specified `operations`, `groups`, `versions`,
+`resources`, and `scope` for any of a webhook's `rules`, the request is sent to the webhook.
 
 Here are other examples of rules that could be used to specify which resources should be intercepted.
 
 Match `CREATE` or `UPDATE` requests to `apps/v1` and `apps/v1beta1` `deployments` and `replicasets`:
 
-{{< tabs name="ValidatingWebhookConfiguration_rules_1" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
@@ -729,123 +546,56 @@ webhooks:
     scope: "Namespaced"
   ...
 ```
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# Deprecated in v1.16 in favor of admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: ValidatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  rules:
-  - operations: ["CREATE", "UPDATE"]
-    apiGroups: ["apps"]
-    apiVersions: ["v1", "v1beta1"]
-    resources: ["deployments", "replicasets"]
-    scope: "Namespaced"
-  ...
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 Match create requests for all resources (but not subresources) in all API groups and versions:
 
-{{< tabs name="ValidatingWebhookConfiguration_rules_2" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
-...
 webhooks:
-- name: my-webhook.example.com
-  rules:
-  - operations: ["CREATE"]
-    apiGroups: ["*"]
-    apiVersions: ["*"]
-    resources: ["*"]
-    scope: "*"
-  ...
+  - name: my-webhook.example.com
+    rules:
+      - operations: ["CREATE"]
+        apiGroups: ["*"]
+        apiVersions: ["*"]
+        resources: ["*"]
+        scope: "*"
 ```
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# Deprecated in v1.16 in favor of admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: ValidatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  rules:
-  - operations: ["CREATE"]
-    apiGroups: ["*"]
-    apiVersions: ["*"]
-    resources: ["*"]
-    scope: "*"
-  ...
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 Match update requests for all `status` subresources in all API groups and versions:
 
-{{< tabs name="ValidatingWebhookConfiguration_rules_3" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
-...
 webhooks:
-- name: my-webhook.example.com
-  rules:
-  - operations: ["UPDATE"]
-    apiGroups: ["*"]
-    apiVersions: ["*"]
-    resources: ["*/status"]
-    scope: "*"
-  ...
+  - name: my-webhook.example.com
+    rules:
+      - operations: ["UPDATE"]
+        apiGroups: ["*"]
+        apiVersions: ["*"]
+        resources: ["*/status"]
+        scope: "*"
 ```
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# Deprecated in v1.16 in favor of admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: ValidatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  rules:
-  - operations: ["UPDATE"]
-    apiGroups: ["*"]
-    apiVersions: ["*"]
-    resources: ["*/status"]
-    scope: "*"
-  ...
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 ### Matching requests: objectSelector
 
-In v1.15+, webhooks may optionally limit which requests are intercepted based on the labels of the
+Webhooks may optionally limit which requests are intercepted based on the labels of the
 objects they would be sent, by specifying an `objectSelector`. If specified, the objectSelector
 is evaluated against both the object and oldObject that would be sent to the webhook,
 and is considered to match if either object matches the selector.
 
-A null object (oldObject in the case of create, or newObject in the case of delete),
+A null object (`oldObject` in the case of create, or `newObject` in the case of delete),
 or an object that cannot have labels (like a `DeploymentRollback` or a `PodProxyOptions` object)
 is not considered to match.
 
-Use the object selector only if the webhook is opt-in, because end users may skip the admission webhook by setting the labels.
+Use the object selector only if the webhook is opt-in, because end users may skip
+the admission webhook by setting the labels.
 
 This example shows a mutating webhook that would match a `CREATE` of any resource with the label `foo: bar`:
 
-{{< tabs name="objectSelector_example" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: MutatingWebhookConfiguration
-...
 webhooks:
 - name: my-webhook.example.com
   objectSelector:
@@ -857,32 +607,10 @@ webhooks:
     apiVersions: ["*"]
     resources: ["*"]
     scope: "*"
-  ...
 ```
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# Deprecated in v1.16 in favor of admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: MutatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  objectSelector:
-    matchLabels:
-      foo: bar
-  rules:
-  - operations: ["CREATE"]
-    apiGroups: ["*"]
-    apiVersions: ["*"]
-    resources: ["*"]
-    scope: "*"
-  ...
-```
-{{% /tab %}}
-{{< /tabs >}}
 
-See https://kubernetes.io/docs/concepts/overview/working-with-objects/labels for more examples of label selectors.
+See [labels concept](/docs/concepts/overview/working-with-objects/labels)
+for more examples of label selectors.
 
 ### Matching requests: namespaceSelector
 
@@ -897,128 +625,75 @@ If the object is a cluster scoped resource other than a Namespace, `namespaceSel
 This example shows a mutating webhook that matches a `CREATE` of any namespaced resource inside a namespace
 that does not have a "runlevel" label of "0" or "1":
 
-{{< tabs name="MutatingWebhookConfiguration_namespaceSelector_1" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: MutatingWebhookConfiguration
-...
 webhooks:
-- name: my-webhook.example.com
-  namespaceSelector:
-    matchExpressions:
-    - key: runlevel
-      operator: NotIn
-      values: ["0","1"]
-  rules:
-  - operations: ["CREATE"]
-    apiGroups: ["*"]
-    apiVersions: ["*"]
-    resources: ["*"]
-    scope: "Namespaced"
-  ...
+  - name: my-webhook.example.com
+    namespaceSelector:
+      matchExpressions:
+        - key: runlevel
+          operator: NotIn
+          values: ["0","1"]
+    rules:
+      - operations: ["CREATE"]
+        apiGroups: ["*"]
+        apiVersions: ["*"]
+        resources: ["*"]
+        scope: "Namespaced"
 ```
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# Deprecated in v1.16 in favor of admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: MutatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  namespaceSelector:
-    matchExpressions:
-    - key: runlevel
-      operator: NotIn
-      values: ["0","1"]
-  rules:
-  - operations: ["CREATE"]
-    apiGroups: ["*"]
-    apiVersions: ["*"]
-    resources: ["*"]
-    scope: "Namespaced"
-  ...
-```
-{{% /tab %}}
-{{< /tabs >}}
 
-This example shows a validating webhook that matches a `CREATE` of any namespaced resource inside a namespace
-that is associated with the "environment" of "prod" or "staging":
+This example shows a validating webhook that matches a `CREATE` of any namespaced resource inside
+a namespace that is associated with the "environment" of "prod" or "staging":
 
-{{< tabs name="ValidatingWebhookConfiguration_namespaceSelector_2" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
-...
 webhooks:
-- name: my-webhook.example.com
-  namespaceSelector:
-    matchExpressions:
-    - key: environment
-      operator: In
-      values: ["prod","staging"]
-  rules:
-  - operations: ["CREATE"]
-    apiGroups: ["*"]
-    apiVersions: ["*"]
-    resources: ["*"]
-    scope: "Namespaced"
-  ...
+  - name: my-webhook.example.com
+    namespaceSelector:
+      matchExpressions:
+        - key: environment
+          operator: In
+          values: ["prod","staging"]
+    rules:
+      - operations: ["CREATE"]
+        apiGroups: ["*"]
+        apiVersions: ["*"]
+        resources: ["*"]
+        scope: "Namespaced"
 ```
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# Deprecated in v1.16 in favor of admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: ValidatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  namespaceSelector:
-    matchExpressions:
-    - key: environment
-      operator: In
-      values: ["prod","staging"]
-  rules:
-  - operations: ["CREATE"]
-    apiGroups: ["*"]
-    apiVersions: ["*"]
-    resources: ["*"]
-    scope: "Namespaced"
-  ...
-```
-{{% /tab %}}
-{{< /tabs >}}
 
-See https://kubernetes.io/docs/concepts/overview/working-with-objects/labels for more examples of label selectors.
+See [labels concept](/docs/concepts/overview/working-with-objects/labels)
+for more examples of label selectors.
 
 ### Matching requests: matchPolicy
 
 API servers can make objects available via multiple API groups or versions.
-For example, the Kubernetes API server may allow creating and modifying `Deployment` objects
-via `extensions/v1beta1`, `apps/v1beta1`, `apps/v1beta2`, and `apps/v1` APIs.
 
-For example, if a webhook only specified a rule for some API groups/versions (like `apiGroups:["apps"], apiVersions:["v1","v1beta1"]`),
+For example, if a webhook only specified a rule for some API groups/versions
+(like `apiGroups:["apps"], apiVersions:["v1","v1beta1"]`),
 and a request was made to modify the resource via another API group/version (like `extensions/v1beta1`),
 the request would not be sent to the webhook.
 
-In v1.15+, `matchPolicy` lets a webhook define how its `rules` are used to match incoming requests.
+The `matchPolicy` lets a webhook define how its `rules` are used to match incoming requests.
 Allowed values are `Exact` or `Equivalent`.
 
 * `Exact` means a request should be intercepted only if it exactly matches a specified rule.
-* `Equivalent` means a request should be intercepted if modifies a resource listed in `rules`, even via another API group or version.
+* `Equivalent` means a request should be intercepted if modifies a resource listed in `rules`,
+  even via another API group or version.
 
 In the example given above, the webhook that only registered for `apps/v1` could use `matchPolicy`:
 
 * `matchPolicy: Exact` would mean the `extensions/v1beta1` request would not be sent to the webhook
-* `matchPolicy: Equivalent` means the `extensions/v1beta1` request would be sent to the webhook (with the objects converted to a version the webhook had specified: `apps/v1`)
+* `matchPolicy: Equivalent` means the `extensions/v1beta1` request would be sent to the webhook
+  (with the objects converted to a version the webhook had specified: `apps/v1`)
 
 Specifying `Equivalent` is recommended, and ensures that webhooks continue to intercept the
 resources they expect when upgrades enable new versions of the resource in the API server.
 
-When a resource stops being served by the API server, it is no longer considered equivalent to other versions of that resource that are still served.
+When a resource stops being served by the API server, it is no longer considered equivalent to
+other versions of that resource that are still served.
 For example, `extensions/v1beta1` deployments were first deprecated and then removed (in Kubernetes v1.16).
 
 Since that removal, a webhook with a `apiGroups:["extensions"], apiVersions:["v1beta1"], resources:["deployments"]` rule
@@ -1028,12 +703,9 @@ for stable versions of resources.
 This example shows a validating webhook that intercepts modifications to deployments (no matter the API group or version),
 and is always sent an `apps/v1` `Deployment` object:
 
-{{< tabs name="ValidatingWebhookConfiguration_matchPolicy" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
-...
 webhooks:
 - name: my-webhook.example.com
   matchPolicy: Equivalent
@@ -1043,32 +715,9 @@ webhooks:
     apiVersions: ["v1"]
     resources: ["deployments"]
     scope: "Namespaced"
-  ...
 ```
 
-Admission webhooks created using `admissionregistration.k8s.io/v1` default to `Equivalent`.
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# Deprecated in v1.16 in favor of admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: ValidatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  matchPolicy: Equivalent
-  rules:
-  - operations: ["CREATE","UPDATE","DELETE"]
-    apiGroups: ["apps"]
-    apiVersions: ["v1"]
-    resources: ["deployments"]
-    scope: "Namespaced"
-  ...
-```
-
-Admission webhooks created using `admissionregistration.k8s.io/v1beta1` default to `Exact`.
-{{% /tab %}}
-{{< /tabs >}}
+The `matchPolicy` for an admission webhooks defaults to `Equivalent`.
 
 ### Contacting the webhook
 
@@ -1086,51 +735,32 @@ and can optionally include a custom CA bundle to use to verify the TLS connectio
 
 The `host` should not refer to a service running in the cluster; use
 a service reference by specifying the `service` field instead.
-The host might be resolved via external DNS in some apiservers
+The host might be resolved via external DNS in some API servers
 (e.g., `kube-apiserver` cannot resolve in-cluster DNS as that would
 be a layering violation). `host` may also be an IP address.
 
 Please note that using `localhost` or `127.0.0.1` as a `host` is
 risky unless you take great care to run this webhook on all hosts
-which run an apiserver which might need to make calls to this
+which run an API server which might need to make calls to this
 webhook. Such installations are likely to be non-portable or not readily
 run in a new cluster.
 
 The scheme must be "https"; the URL must begin with "https://".
 
-Attempting to use a user or basic auth (for example "user:password@") is not allowed.
-Fragments ("#...") and query parameters ("?...") are also not allowed.
+Attempting to use a user or basic auth (for example `user:password@`) is not allowed.
+Fragments (`#...`) and query parameters (`?...`) are also not allowed.
 
 Here is an example of a mutating webhook configured to call a URL
 (and expects the TLS certificate to be verified using system trust roots, so does not specify a caBundle):
 
-{{< tabs name="MutatingWebhookConfiguration_url" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: MutatingWebhookConfiguration
-...
 webhooks:
 - name: my-webhook.example.com
   clientConfig:
     url: "https://my-webhook.example.com:9443/my-webhook-path"
-  ...
 ```
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# Deprecated in v1.16 in favor of admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: MutatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  clientConfig:
-    url: "https://my-webhook.example.com:9443/my-webhook-path"
-  ...
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 #### Service reference
 
@@ -1143,43 +773,24 @@ Here is an example of a mutating webhook configured to call a service on port "1
 at the subpath "/my-path", and to verify the TLS connection against the ServerName
 `my-service-name.my-service-namespace.svc` using a custom CA bundle:
 
-{{< tabs name="MutatingWebhookConfiguration_service" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: MutatingWebhookConfiguration
-...
 webhooks:
 - name: my-webhook.example.com
   clientConfig:
-    caBundle: "Ci0tLS0tQk...<base64-encoded PEM bundle containing the CA that signed the webhook's serving certificate>...tLS0K"
+    caBundle: <CA_BUNDLE>
     service:
       namespace: my-service-namespace
       name: my-service-name
       path: /my-path
       port: 1234
-  ...
 ```
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# Deprecated in v1.16 in favor of admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: MutatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  clientConfig:
-    caBundle: "Ci0tLS0tQk...<`caBundle` is a PEM encoded CA bundle which will be used to validate the webhook's server certificate>...tLS0K"
-    service:
-      namespace: my-service-namespace
-      name: my-service-name
-      path: /my-path
-      port: 1234
-  ...
-```
-{{% /tab %}}
-{{< /tabs >}}
+
+{{< note >}}
+You must replace the `<CA_BUNDLE>` in the above example by a valid CA bundle
+which is a PEM-encoded CA bundle for validating the webhook's server certificate.
+{{< /note >}}
 
 ### Side effects
 
@@ -1199,46 +810,20 @@ or the dry-run request will not be sent to the webhook and the API request will
 
 Webhooks indicate whether they have side effects using the `sideEffects` field in the webhook configuration:
 
-* `Unknown`: no information is known about the side effects of calling the webhook.
-If a request with `dryRun: true` would trigger a call to this webhook, the request will instead fail, and the webhook will not be called.
 * `None`: calling the webhook will have no side effects.
-* `Some`: calling the webhook will possibly have side effects.
-If a request with the dry-run attribute would trigger a call to this webhook, the request will instead fail, and the webhook will not be called.
-* `NoneOnDryRun`: calling the webhook will possibly have side effects,
-but if a request with `dryRun: true` is sent to the webhook, the webhook will suppress the side effects (the webhook is `dryRun`-aware).
-
-Allowed values:
-
-* In `admissionregistration.k8s.io/v1beta1`, `sideEffects` may be set to `Unknown`, `None`, `Some`, or `NoneOnDryRun`, and defaults to `Unknown`.
-* In `admissionregistration.k8s.io/v1`, `sideEffects` must be set to `None` or `NoneOnDryRun`.
+* `NoneOnDryRun`: calling the webhook will possibly have side effects, but if a request with
+  `dryRun: true` is sent to the webhook, the webhook will suppress the side effects (the webhook
+  is `dryRun`-aware).
 
 Here is an example of a validating webhook indicating it has no side effects on `dryRun: true` requests:
 
-{{< tabs name="ValidatingWebhookConfiguration_sideEffects" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
-...
 webhooks:
-- name: my-webhook.example.com
-  sideEffects: NoneOnDryRun
-  ...
+  - name: my-webhook.example.com
+    sideEffects: NoneOnDryRun
 ```
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# Deprecated in v1.16 in favor of admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: ValidatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  sideEffects: NoneOnDryRun
-  ...
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 ### Timeouts
 
@@ -1253,35 +838,15 @@ The timeout value must be between 1 and 30 seconds.
 
 Here is an example of a validating webhook with a custom timeout of 2 seconds:
 
-{{< tabs name="ValidatingWebhookConfiguration_timeoutSeconds" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
-...
 webhooks:
-- name: my-webhook.example.com
-  timeoutSeconds: 2
-  ...
+  - name: my-webhook.example.com
+    timeoutSeconds: 2
 ```
 
-Admission webhooks created using `admissionregistration.k8s.io/v1` default timeouts to 10 seconds.
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# Deprecated in v1.16 in favor of admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: ValidatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  timeoutSeconds: 2
-  ...
-```
-
-Admission webhooks created using `admissionregistration.k8s.io/v1` default timeouts to 30 seconds.
-{{% /tab %}}
-{{< /tabs >}}
+The timeout for an admission webhook defaults to 10 seconds.
 
 ### Reinvocation policy
 
@@ -1290,50 +855,35 @@ A single ordering of mutating admissions plugins (including webhooks) does not w
 to the object (like adding a `container` to a `pod`), and other mutating plugins which have already
 run may have opinions on those new structures (like setting an `imagePullPolicy` on all containers).
 
-In v1.15+, to allow mutating admission plugins to observe changes made by other plugins,
+To allow mutating admission plugins to observe changes made by other plugins,
 built-in mutating admission plugins are re-run if a mutating webhook modifies an object,
 and mutating webhooks can specify a `reinvocationPolicy` to control whether they are reinvoked as well.
 
 `reinvocationPolicy` may be set to `Never` or `IfNeeded`. It defaults to `Never`.
 
-* `Never`: the webhook must not be called more than once in a single admission evaluation
+* `Never`: the webhook must not be called more than once in a single admission evaluation.
 * `IfNeeded`: the webhook may be called again as part of the admission evaluation if the object
-being admitted is modified by other admission plugins after the initial webhook call.
+  being admitted is modified by other admission plugins after the initial webhook call.
 
 The important elements to note are:
 
 * The number of additional invocations is not guaranteed to be exactly one.
-* If additional invocations result in further modifications to the object, webhooks are not guaranteed to be invoked again.
+* If additional invocations result in further modifications to the object, webhooks are not
+  guaranteed to be invoked again.
 * Webhooks that use this option may be reordered to minimize the number of additional invocations.
-* To validate an object after all mutations are guaranteed complete, use a validating admission webhook instead (recommended for webhooks with side-effects).
+* To validate an object after all mutations are guaranteed complete, use a validating admission
+  webhook instead (recommended for webhooks with side-effects).
 
-Here is an example of a mutating webhook opting into being re-invoked if later admission plugins modify the object:
+Here is an example of a mutating webhook opting into being re-invoked if later admission plugins
+modify the object:
 
-{{< tabs name="MutatingWebhookConfiguration_reinvocationPolicy" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: MutatingWebhookConfiguration
-...
 webhooks:
 - name: my-webhook.example.com
   reinvocationPolicy: IfNeeded
-  ...
 ```
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# Deprecated in v1.16 in favor of admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: MutatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  reinvocationPolicy: IfNeeded
-  ...
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 Mutating webhooks must be [idempotent](#idempotence), able to successfully process an object they have already admitted
 and potentially modified. This is true for all mutating admission webhooks, since any change they can make
@@ -1349,35 +899,15 @@ are handled. Allowed values are `Ignore` or `Fail`.
 
 Here is a mutating webhook configured to reject an API request if errors are encountered calling the admission webhook:
 
-{{< tabs name="MutatingWebhookConfiguration_failurePolicy" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: MutatingWebhookConfiguration
-...
 webhooks:
 - name: my-webhook.example.com
   failurePolicy: Fail
-  ...
 ```
 
-Admission webhooks created using `admissionregistration.k8s.io/v1` default `failurePolicy` to `Fail`.
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# Deprecated in v1.16 in favor of admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: MutatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  failurePolicy: Fail
-  ...
-```
-
-Admission webhooks created using `admissionregistration.k8s.io/v1beta1` default `failurePolicy` to `Ignore`.
-{{% /tab %}}
-{{< /tabs >}}
+The default `failurePolicy` for an admission webhooks is `Fail`.
 
 ## Monitoring admission webhooks
 
@@ -1388,121 +918,123 @@ monitoring mechanisms help cluster admins to answer questions like:
 
 2. What change did the mutating webhook applied to the object?
 
-3. Which webhooks are frequently rejecting API requests? What's the reason for a
-   rejection?
+3. Which webhooks are frequently rejecting API requests? What's the reason for a rejection?
 
 ### Mutating webhook auditing annotations
 
 Sometimes it's useful to know which mutating webhook mutated the object in a API request, and what change did the
 webhook apply.
 
-In v1.16+, kube-apiserver performs [auditing](/docs/tasks/debug-application-cluster/audit/) on each mutating webhook
-invocation. Each invocation generates an auditing annotation
-capturing if a request object is mutated by the invocation, and optionally generates an annotation capturing the applied
-patch from the webhook admission response. The annotations are set in the audit event for given request on given stage of
-its execution, which is then pre-processed according to a certain policy and written to a backend.
+The Kubernetes API server performs [auditing](/docs/tasks/debug/debug-cluster/audit/) on each
+mutating webhook invocation. Each invocation generates an auditing annotation
+capturing if a request object is mutated by the invocation, and optionally generates an annotation
+capturing the applied patch from the webhook admission response. The annotations are set in the
+audit event for given request on given stage of its execution, which is then pre-processed
+according to a certain policy and written to a backend.
 
 The audit level of a event determines which annotations get recorded:
 
 - At `Metadata` audit level or higher, an annotation with key
-`mutation.webhook.admission.k8s.io/round_{round idx}_index_{order idx}` gets logged with JSON payload indicating
-a webhook gets invoked for given request and whether it mutated the object or not.
+  `mutation.webhook.admission.k8s.io/round_{round idx}_index_{order idx}` gets logged with JSON
+  payload indicating a webhook gets invoked for given request and whether it mutated the object or not.
 
-For example, the following annotation gets recorded for a webhook being reinvoked. The webhook is ordered the third in the
-mutating webhook chain, and didn't mutated the request object during the invocation.
+  For example, the following annotation gets recorded for a webhook being reinvoked. The webhook is
+  ordered the third in the mutating webhook chain, and didn't mutated the request object during the
+  invocation.
 
-```yaml
-# the audit event recorded
-{
-    "kind": "Event",
-    "apiVersion": "audit.k8s.io/v1",
-    "annotations": {
-        "mutation.webhook.admission.k8s.io/round_1_index_2": "{\"configuration\":\"my-mutating-webhook-configuration.example.com\",\"webhook\":\"my-webhook.example.com\",\"mutated\": false}"
-        # other annotations
-        ...
-    }
-    # other fields
-    ...
-}
-```
+  ```yaml
+  # the audit event recorded
+  {
+      "kind": "Event",
+      "apiVersion": "audit.k8s.io/v1",
+      "annotations": {
+          "mutation.webhook.admission.k8s.io/round_1_index_2": "{\"configuration\":\"my-mutating-webhook-configuration.example.com\",\"webhook\":\"my-webhook.example.com\",\"mutated\": false}"
+          # other annotations
+          ...
+      }
+      # other fields
+      ...
+  }
+  ```
+  
+  ```yaml
+  # the annotation value deserialized
+  {
+      "configuration": "my-mutating-webhook-configuration.example.com",
+      "webhook": "my-webhook.example.com",
+      "mutated": false
+  }
+  ```
+  
+  The following annotation gets recorded for a webhook being invoked in the first round. The webhook
+  is ordered the first in the mutating webhook chain, and mutated the request object during the
+  invocation.
 
-```yaml
-# the annotation value deserialized
-{
-    "configuration": "my-mutating-webhook-configuration.example.com",
-    "webhook": "my-webhook.example.com",
-    "mutated": false
-}
-```
-
-The following annotation gets recorded for a webhook being invoked in the first round. The webhook is ordered the first in\
-the mutating webhook chain, and mutated the request object during the invocation.
-
-```yaml
-# the audit event recorded
-{
-    "kind": "Event",
-    "apiVersion": "audit.k8s.io/v1",
-    "annotations": {
-        "mutation.webhook.admission.k8s.io/round_0_index_0": "{\"configuration\":\"my-mutating-webhook-configuration.example.com\",\"webhook\":\"my-webhook-always-mutate.example.com\",\"mutated\": true}"
-        # other annotations
-        ...
-    }
-    # other fields
-    ...
-}
-```
-
-```yaml
-# the annotation value deserialized
-{
-    "configuration": "my-mutating-webhook-configuration.example.com",
-    "webhook": "my-webhook-always-mutate.example.com",
-    "mutated": true
-}
-```
+  ```yaml
+  # the audit event recorded
+  {
+      "kind": "Event",
+      "apiVersion": "audit.k8s.io/v1",
+      "annotations": {
+          "mutation.webhook.admission.k8s.io/round_0_index_0": "{\"configuration\":\"my-mutating-webhook-configuration.example.com\",\"webhook\":\"my-webhook-always-mutate.example.com\",\"mutated\": true}"
+          # other annotations
+          ...
+      }
+      # other fields
+      ...
+  }
+  ```
+  
+  ```yaml
+  # the annotation value deserialized
+  {
+      "configuration": "my-mutating-webhook-configuration.example.com",
+      "webhook": "my-webhook-always-mutate.example.com",
+      "mutated": true
+  }
+  ```
 
 - At `Request` audit level or higher, an annotation with key
-`patch.webhook.admission.k8s.io/round_{round idx}_index_{order idx}` gets logged with JSON payload indicating
-a webhook gets invoked for given request and what patch gets applied to the request object.
+  `patch.webhook.admission.k8s.io/round_{round idx}_index_{order idx}` gets logged with JSON payload indicating
+  a webhook gets invoked for given request and what patch gets applied to the request object.
 
-For example, the following annotation gets recorded for a webhook being reinvoked. The webhook is ordered the fourth in the
-mutating webhook chain, and responded with a JSON patch which got applied to the request object.
-
-```yaml
-# the audit event recorded
-{
-    "kind": "Event",
-    "apiVersion": "audit.k8s.io/v1",
-    "annotations": {
-        "patch.webhook.admission.k8s.io/round_1_index_3": "{\"configuration\":\"my-other-mutating-webhook-configuration.example.com\",\"webhook\":\"my-webhook-always-mutate.example.com\",\"patch\":[{\"op\":\"add\",\"path\":\"/data/mutation-stage\",\"value\":\"yes\"}],\"patchType\":\"JSONPatch\"}"
-        # other annotations
-        ...
-    }
-    # other fields
-    ...
-}
-```
-
-```yaml
-# the annotation value deserialized
-{
-    "configuration": "my-other-mutating-webhook-configuration.example.com",
-    "webhook": "my-webhook-always-mutate.example.com",
-    "patchType": "JSONPatch",
-    "patch": [
-        {
-            "op": "add",
-            "path": "/data/mutation-stage",
-            "value": "yes"
-        }
-    ]
-}
-```
+  For example, the following annotation gets recorded for a webhook being reinvoked. The webhook is ordered the fourth in the
+  mutating webhook chain, and responded with a JSON patch which got applied to the request object.
+  
+  ```yaml
+  # the audit event recorded
+  {
+      "kind": "Event",
+      "apiVersion": "audit.k8s.io/v1",
+      "annotations": {
+          "patch.webhook.admission.k8s.io/round_1_index_3": "{\"configuration\":\"my-other-mutating-webhook-configuration.example.com\",\"webhook\":\"my-webhook-always-mutate.example.com\",\"patch\":[{\"op\":\"add\",\"path\":\"/data/mutation-stage\",\"value\":\"yes\"}],\"patchType\":\"JSONPatch\"}"
+          # other annotations
+          ...
+      }
+      # other fields
+      ...
+  }
+  ```
+  
+  ```yaml
+  # the annotation value deserialized
+  {
+      "configuration": "my-other-mutating-webhook-configuration.example.com",
+      "webhook": "my-webhook-always-mutate.example.com",
+      "patchType": "JSONPatch",
+      "patch": [
+          {
+              "op": "add",
+              "path": "/data/mutation-stage",
+              "value": "yes"
+          }
+      ]
+  }
+  ```
 
 ### Admission webhook metrics
 
-Kube-apiserver exposes Prometheus metrics from the `/metrics` endpoint, which can be used for monitoring and
+The API server  exposes Prometheus metrics from the `/metrics` endpoint, which can be used for monitoring and
 diagnosing API server status. The following metrics record status related to admission webhooks.
 
 #### API server admission webhook rejection count
@@ -1510,7 +1042,7 @@ diagnosing API server status. The following metrics record status related to adm
 Sometimes it's useful to know which admission webhooks are frequently rejecting API requests, and the
 reason for a rejection.
 
-In v1.16+, kube-apiserver exposes a Prometheus counter metric recording admission webhook rejections. The
+The API server exposes a Prometheus counter metric recording admission webhook rejections. The
 metrics are labelled to identify the causes of webhook rejection(s):
 
 - `name`: the name of the webhook that rejected a request.
@@ -1519,11 +1051,13 @@ metrics are labelled to identify the causes of webhook rejection(s):
 - `type`: the admission webhook type, can be one of `admit` and `validating`.
 - `error_type`: identifies if an error occurred during the webhook invocation
   that caused the rejection. Its value can be one of:
-   - `calling_webhook_error`: unrecognized errors or timeout errors from the admission webhook happened and the
-   webhook's [Failure policy](#failure-policy) is set to `Fail`.
-   - `no_error`: no error occurred. The webhook rejected the request with `allowed: false` in the admission
-   response. The metrics label `rejection_code` records the `.status.code` set in the admission response.
-   - `apiserver_internal_error`: an API server internal error happened.
+
+  - `calling_webhook_error`: unrecognized errors or timeout errors from the admission webhook happened and the
+    webhook's [Failure policy](#failure-policy) is set to `Fail`.
+  - `no_error`: no error occurred. The webhook rejected the request with `allowed: false` in the admission
+    response. The metrics label `rejection_code` records the `.status.code` set in the admission response.
+  - `apiserver_internal_error`: an API server internal error happened.
+
 - `rejection_code`: the HTTP status code set in the admission response when a
   webhook rejected a request.
 
@@ -1553,7 +1087,8 @@ the initial application.
 2. For a `CREATE` pod request, if the field `.spec.containers[].resources.limits`
    of a container is not set, set default resource limits.
 
-3. For a `CREATE` pod request, inject a sidecar container with name `foo-sidecar` if no container with the name `foo-sidecar` already exists.
+3. For a `CREATE` pod request, inject a sidecar container with name `foo-sidecar` if no container
+   with the name `foo-sidecar` already exists.
 
 In the cases above, the webhook can be safely reinvoked, or admit an object that already has the fields set.
 
@@ -1587,21 +1122,25 @@ versions. See [Matching requests: matchPolicy](#matching-requests-matchpolicy) f
 
 ### Availability
 
-It is recommended that admission webhooks should evaluate as quickly as possible (typically in milliseconds), since they add to API request latency.
+It is recommended that admission webhooks should evaluate as quickly as possible (typically in
+milliseconds), since they add to API request latency.
 It is encouraged to use a small timeout for webhooks. See [Timeouts](#timeouts) for more detail.
 
-It is recommended that admission webhooks should leverage some format of load-balancing, to provide high availability and
-performance benefits. If a webhook is running within the cluster, you can run multiple webhook backends behind a service
-to leverage the load-balancing that service supports.
+It is recommended that admission webhooks should leverage some format of load-balancing, to
+provide high availability and performance benefits. If a webhook is running within the cluster,
+you can run multiple webhook backends behind a service to leverage the load-balancing that service
+supports.
 
 ### Guaranteeing the final state of the object is seen
 
 Admission webhooks that need to guarantee they see the final state of the object in order to enforce policy
 should use a validating admission webhook, since objects can be modified after being seen by mutating webhooks.
 
-For example, a mutating admission webhook is configured to inject a sidecar container with name "foo-sidecar" on every
-`CREATE` pod request. If the sidecar *must* be present, a validating admisson webhook should also be configured to intercept `CREATE` pod requests, and validate
-that a container with name "foo-sidecar" with the expected configuration exists in the to-be-created object.
+For example, a mutating admission webhook is configured to inject a sidecar container with name
+"foo-sidecar" on every `CREATE` pod request. If the sidecar *must* be present, a validating
+admisson webhook should also be configured to intercept `CREATE` pod requests, and validate that a
+container with name "foo-sidecar" with the expected configuration exists in the to-be-created
+object.
 
 ### Avoiding deadlocks in self-hosted webhooks
 
@@ -1614,7 +1153,8 @@ When a node that runs the webhook server pods
 becomes unhealthy, the webhook deployment will try to reschedule the pods to another node. However the requests will
 get rejected by the existing webhook server since the `"env"` label is unset, and the migration cannot happen.
 
-It is recommended to exclude the namespace where your webhook is running with a [namespaceSelector](#matching-requests-namespaceselector).
+It is recommended to exclude the namespace where your webhook is running with a
+[namespaceSelector](#matching-requests-namespaceselector).
 
 ### Side effects
 
@@ -1636,4 +1176,3 @@ If your admission webhooks don't intend to modify the behavior of the Kubernetes
 plane, exclude the `kube-system` namespace from being intercepted using a
 [`namespaceSelector`](#matching-requests-namespaceselector).
 
-
diff --git a/content/en/docs/reference/command-line-tools-reference/kubelet-authentication-authorization.md b/content/en/docs/reference/access-authn-authz/kubelet-authn-authz.md
similarity index 100%
rename from content/en/docs/reference/command-line-tools-reference/kubelet-authentication-authorization.md
rename to content/en/docs/reference/access-authn-authz/kubelet-authn-authz.md
diff --git a/content/en/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping.md b/content/en/docs/reference/access-authn-authz/kubelet-tls-bootstrapping.md
similarity index 99%
rename from content/en/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping.md
rename to content/en/docs/reference/access-authn-authz/kubelet-tls-bootstrapping.md
index 5d2458079e..78aee8cf06 100644
--- a/content/en/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping.md
+++ b/content/en/docs/reference/access-authn-authz/kubelet-tls-bootstrapping.md
@@ -126,7 +126,6 @@ of provisioning.
 2. [Token authentication file](#token-authentication-file)
 
 Bootstrap tokens are a simpler and more easily managed method to authenticate kubelets, and do not require any additional flags when starting kube-apiserver.
-Using bootstrap tokens is currently __beta__ as of Kubernetes version 1.12.
 
 Whichever method you choose, the requirement is that the kubelet be able to authenticate as a user with the rights to:
 
diff --git a/content/en/docs/reference/access-authn-authz/node.md b/content/en/docs/reference/access-authn-authz/node.md
index 141dc8bb61..bc9863219f 100644
--- a/content/en/docs/reference/access-authn-authz/node.md
+++ b/content/en/docs/reference/access-authn-authz/node.md
@@ -34,8 +34,8 @@ Write operations:
 
 Auth-related operations:
 
-* read/write access to the certificationsigningrequests API for TLS bootstrapping
-* the ability to create tokenreviews and subjectaccessreviews for delegated authentication/authorization checks
+* read/write access to the [CertificateSigningRequests API](/docs/reference/access-authn-authz/certificate-signing-requests/) for TLS bootstrapping
+* the ability to create TokenReviews and SubjectAccessReviews for delegated authentication/authorization checks
 
 In future releases, the node authorizer may add or remove permissions to ensure kubelets
 have the minimal set of permissions required to operate correctly.
@@ -43,7 +43,7 @@ have the minimal set of permissions required to operate correctly.
 In order to be authorized by the Node authorizer, kubelets must use a credential that identifies them as 
 being in the `system:nodes` group, with a username of `system:node:<nodeName>`.
 This group and user name format match the identity created for each kubelet as part of 
-[kubelet TLS bootstrapping](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/).
+[kubelet TLS bootstrapping](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/).
 
 The value of `<nodeName>` **must** match precisely the name of the node as registered by the kubelet. By default, this is the host name as provided by `hostname`, or overridden via the [kubelet option](/docs/reference/command-line-tools-reference/kubelet/) `--hostname-override`. However, when using the `--cloud-provider` kubelet option, the specific hostname may be determined by the cloud provider, ignoring the local `hostname` and the `--hostname-override` option. 
 For specifics about how the kubelet determines the hostname, see the [kubelet options reference](/docs/reference/command-line-tools-reference/kubelet/).
diff --git a/content/en/docs/reference/access-authn-authz/psp-to-pod-security-standards.md b/content/en/docs/reference/access-authn-authz/psp-to-pod-security-standards.md
new file mode 100644
index 0000000000..82394b363a
--- /dev/null
+++ b/content/en/docs/reference/access-authn-authz/psp-to-pod-security-standards.md
@@ -0,0 +1,275 @@
+---
+reviewers:
+- tallclair
+- liggitt
+title: Mapping PodSecurityPolicies to Pod Security Standards
+content_type: concept
+weight: 95
+---
+
+<!-- overview -->
+The tables below enumerate the configuration parameters on
+[PodSecurityPolicy](/docs/concepts/security/pod-security-policy/) objects, whether the field mutates
+and/or validates pods, and how the configuration values map to the
+[Pod Security Standards](/docs/concepts/security/pod-security-standards/).
+
+For each applicable parameter, the allowed values for the
+[Baseline](/docs/concepts/security/pod-security-standards/#baseline) and
+[Restricted](/docs/concepts/security/pod-security-standards/#restricted) profiles are listed.
+Anything outside the allowed values for those profiles would fall under the
+[Privileged](/docs/concepts/security/pod-security-standards/#privileged) profile. "No opinion"
+means all values are allowed under all Pod Security Standards.
+
+For a step-by-step migration guide, see
+[Migrate from PodSecurityPolicy to the Built-In PodSecurity Admission Controller](/docs/tasks/configure-pod-container/migrate-from-psp/).
+
+<!-- body -->
+
+## PodSecurityPolicy Spec
+
+The fields enumerated in this table are part of the `PodSecurityPolicySpec`, which is specified
+under the `.spec` field path.
+
+<table class="no-word-break">
+  <caption style="display:none">Mapping PodSecurityPolicySpec fields to Pod Security Standards</caption>
+  <tbody>
+    <tr>
+      <th><code>PodSecurityPolicySpec</code></th>
+      <th>Type</th>
+      <th>Pod Security Standards Equivalent</th>
+    </tr>
+    <tr>
+      <td><code>privileged</code></td>
+      <td>Validating</td>
+      <td><b>Baseline & Restricted</b>: <code>false</code> / undefined / nil</td>
+    </tr>
+    <tr>
+      <td><code>defaultAddCapabilities</code></td>
+      <td>Mutating & Validating</td>
+      <td>Requirements match <code>allowedCapabilities</code> below.</td>
+    </tr>
+    <tr>
+      <td><code>allowedCapabilities</code></td>
+      <td>Validating</td>
+      <td>
+        <p><b>Baseline</b>: subset of</p>
+        <ul>
+          <li><code>AUDIT_WRITE</code></li>
+          <li><code>CHOWN</code></li>
+          <li><code>DAC_OVERRIDE</code></li>
+          <li><code>FOWNER</code></li>
+          <li><code>FSETID</code></li>
+          <li><code>KILL</code></li>
+          <li><code>MKNOD</code></li>
+          <li><code>NET_BIND_SERVICE</code></li>
+          <li><code>SETFCAP</code></li>
+          <li><code>SETGID</code></li>
+          <li><code>SETPCAP</code></li>
+          <li><code>SETUID</code></li>
+          <li><code>SYS_CHROOT</code></li>
+        </ul>
+        <p><b>Restricted</b>: empty / undefined / nil OR a list containing <i>only</i> <code>NET_BIND_SERVICE</code>
+      </td>
+    </tr>
+    <tr>
+      <td><code>requiredDropCapabilities</code></td>
+      <td>Mutating & Validating</td>
+      <td>
+        <p><b>Baseline</b>: no opinion</p>
+        <p><b>Restricted</b>: must include <code>ALL</code></p>
+      </td>
+    </tr>
+    <tr>
+      <td><code>volumes</code></td>
+      <td>Validating</td>
+      <td>
+        <p><b>Baseline</b>: anything except</p>
+        <ul>
+          <li><code>hostPath</code></li>
+          <li><code>*</code></li>
+        </ul>
+        <p><b>Restricted</b>: subset of</p>
+        <ul>
+          <li><code>configMap</code></li>
+          <li><code>csi</code></li>
+          <li><code>downwardAPI</code></li>
+          <li><code>emptyDir</code></li>
+          <li><code>ephemeral</code></li>
+          <li><code>persistentVolumeClaim</code></li>
+          <li><code>projected</code></li>
+          <li><code>secret</code></li>
+        </ul>
+      </td>
+    </tr>
+    <tr>
+      <td><code>hostNetwork</code></td>
+      <td>Validating</td>
+      <td><b>Baseline & Restricted</b>: <code>false</code> / undefined / nil</td>
+    </tr>
+    <tr>
+      <td><code>hostPorts</code></td>
+      <td>Validating</td>
+      <td><b>Baseline & Restricted</b>: undefined / nil / empty</td>
+    </tr>
+    <tr>
+      <td><code>hostPID</code></td>
+      <td>Validating</td>
+      <td><b>Baseline & Restricted</b>: <code>false</code> / undefined / nil</td>
+    </tr>
+    <tr>
+      <td><code>hostIPC</code></td>
+      <td>Validating</td>
+      <td><b>Baseline & Restricted</b>: <code>false</code> / undefined / nil</td>
+    </tr>
+    <tr>
+      <td><code>seLinux</code></td>
+      <td>Mutating & Validating</td>
+      <td>
+        <p><b>Baseline & Restricted</b>:
+        <code>seLinux.rule</code> is <code>MustRunAs</code>, with the following <code>options</code></p>
+        <ul>
+          <li><code>user</code> is unset (<code>""</code> / undefined / nil)</li>
+          <li><code>role</code> is unset (<code>""</code> / undefined / nil)</li>
+          <li><code>type</code> is unset or one of: <code>container_t, container_init_t, container_kvm_t</code></li>
+          <li><code>level</code> is anything</li>
+        </ul>
+      </td>
+    </tr>
+    <tr>
+      <td><code>runAsUser</code></td>
+      <td>Mutating & Validating</td>
+      <td>
+        <p><b>Baseline</b>: Anything</p>
+        <p><b>Restricted</b>: <code>rule</code> is <code>MustRunAsNonRoot</code></p>
+      </td>
+    </tr>
+    <tr>
+      <td><code>runAsGroup</code></td>
+      <td>Mutating (MustRunAs) & Validating</td>
+      <td>
+        <i>No opinion</i>
+      </td>
+    </tr>
+    <tr>
+      <td><code>supplementalGroups</code></td>
+      <td>Mutating & Validating</td>
+      <td>
+        <i>No opinion</i>
+      </td>
+    </tr>
+    <tr>
+      <td><code>fsGroup</code></td>
+      <td>Mutating & Validating</td>
+      <td>
+        <i>No opinion</i>
+      </td>
+    </tr>
+    <tr>
+      <td><code>readOnlyRootFilesystem</code></td>
+      <td>Mutating & Validating</td>
+      <td>
+        <i>No opinion</i>
+      </td>
+    </tr>
+    <tr>
+      <td><code>defaultAllowPrivilegeEscalation</code></td>
+      <td>Mutating</td>
+      <td>
+        <i>No opinion (non-validating)</i>
+      </td>
+    </tr>
+    <tr>
+      <td><code>allowPrivilegeEscalation</code></td>
+      <td>Mutating & Validating</td>
+      <td>
+        <p><i>Only mutating if set to <code>false</code></i></p>
+        <p><b>Baseline</b>: No opinion</p>
+        <p><b>Restricted</b>: <code>false</code></p>
+      </td>
+    </tr>
+    <tr>
+      <td><code>allowedHostPaths</code></td>
+      <td>Validating</td>
+      <td><i>No opinion (volumes takes precedence)</i></td>
+    </tr>
+    <tr>
+      <td><code>allowedFlexVolumes</code></td>
+      <td>Validating</td>
+      <td><i>No opinion (volumes takes precedence)</i></td>
+    </tr>
+    <tr>
+      <td><code>allowedCSIDrivers</code></td>
+      <td>Validating</td>
+      <td><i>No opinion (volumes takes precedence)</i></td>
+    </tr>
+    <tr>
+      <td><code>allowedUnsafeSysctls</code></td>
+      <td>Validating</td>
+      <td><b>Baseline & Restricted</b>: undefined / nil / empty</td>
+    </tr>
+    <tr>
+      <td><code>forbiddenSysctls</code></td>
+      <td>Validating</td>
+      <td><i>No opinion</i></td>
+    </tr>
+    <tr>
+      <td><code>allowedProcMountTypes</code><br><i>(alpha feature)</i></td>
+      <td>Validating</td>
+      <td><b>Baseline & Restricted</b>: <code>["Default"]</code> OR undefined / nil / empty</td>
+    </tr>
+    <tr>
+      <td><code>runtimeClass</code><br><code>&nbsp;.defaultRuntimeClassName</code></td>
+      <td>Mutating</td>
+      <td><i>No opinion</i></td>
+    </tr>
+    <tr>
+      <td><code>runtimeClass</code><br><code>&nbsp;.allowedRuntimeClassNames</code></td>
+      <td>Validating</td>
+      <td><i>No opinion</i></td>
+    </tr>
+  </tbody>
+</table>
+
+## PodSecurityPolicy annotations
+
+The [annotations](/docs/concepts/overview/working-with-objects/annotations/) enumerated in this
+table can be specified under `.metadata.annotations` on the PodSecurityPolicy object.
+
+<table class="no-word-break">
+  <caption style="display:none">Mapping PodSecurityPolicy annotations to Pod Security Standards</caption>
+  <tbody>
+    <tr>
+      <th><code>PSP Annotation</code></th>
+      <th>Type</th>
+      <th>Pod Security Standards Equivalent</th>
+    </tr>
+    <tr>
+      <td><code>seccomp.security.alpha.kubernetes.io</code><br><code>/defaultProfileName</code></td>
+      <td>Mutating</td>
+      <td><i>No opinion</i></td>
+    </tr>
+    <tr>
+      <td><code>seccomp.security.alpha.kubernetes.io</code><br><code>/allowedProfileNames</code></td>
+      <td>Validating</td>
+      <td>
+        <p><b>Baseline</b>: <code>"runtime/default,"</code> <i>(Trailing comma to allow unset)</i></p>
+        <p><b>Restricted</b>: <code>"runtime/default"</code> <i>(No trailing comma)</i></p>
+        <p><i><code>localhost/*</code> values are also permitted for both Baseline & Restricted.</i></p>
+      </td>
+    </tr>
+    <tr>
+      <td><code>apparmor.security.beta.kubernetes.io</code><br><code>/defaultProfileName</code></td>
+      <td>Mutating</td>
+      <td><i>No opinion</i></td>
+    </tr>
+    <tr>
+      <td><code>apparmor.security.beta.kubernetes.io</code><br><code>/allowedProfileNames</code></td>
+      <td>Validating</td>
+      <td>
+        <p><b>Baseline</b>: <code>"runtime/default,"</code> <i>(Trailing comma to allow unset)</i></p>
+        <p><b>Restricted</b>: <code>"runtime/default"</code> <i>(No trailing comma)</i></p>
+        <p><i><code>localhost/*</code> values are also permitted for both Baseline & Restricted.</i></p>
+      </td>
+    </tr>
+  </tbody>
+</table>
diff --git a/content/en/docs/reference/access-authn-authz/rbac.md b/content/en/docs/reference/access-authn-authz/rbac.md
index a75897d04a..a681164fe9 100644
--- a/content/en/docs/reference/access-authn-authz/rbac.md
+++ b/content/en/docs/reference/access-authn-authz/rbac.md
@@ -31,7 +31,7 @@ kube-apiserver --authorization-mode=Example,RBAC --other-options --more-options
 The RBAC API declares four kinds of Kubernetes object: _Role_, _ClusterRole_,
 _RoleBinding_ and _ClusterRoleBinding_. You can
 [describe objects](/docs/concepts/overview/working-with-objects/kubernetes-objects/#understanding-kubernetes-objects),
-or amend them, using tools such as `kubectl,` just like any other Kubernetes object.
+or amend them, using tools such as `kubectl`, just like any other Kubernetes object.
 
 {{< caution >}}
 These objects, by design, impose access restrictions. If you are making changes
@@ -54,8 +54,8 @@ it can't be both.
 
 ClusterRoles have several uses. You can use a ClusterRole to:
 
-1. define permissions on namespaced resources and be granted within individual namespace(s)
-1. define permissions on namespaced resources and be granted across all namespaces
+1. define permissions on namespaced resources and be granted access within individual namespace(s)
+1. define permissions on namespaced resources and be granted access across all namespaces
 1. define permissions on cluster-scoped resources
 
 If you want to define a role within a namespace, use a Role; if you want to define
@@ -384,11 +384,11 @@ rules:
 ```
 
 Allow reading/writing Deployments (at the HTTP level: objects with `"deployments"`
-in the resource part of their URL) in both the `"extensions"` and `"apps"` API groups:
+in the resource part of their URL) in the `"apps"` API groups:
 
 ```yaml
 rules:
-- apiGroups: ["extensions", "apps"]
+- apiGroups: ["apps"]
   #
   # at the HTTP level, the name of the resource for accessing Deployment
   # objects is "deployments"
@@ -397,7 +397,7 @@ rules:
 ```
 
 Allow reading Pods in the core API group, as well as reading or writing Job
-resources in the `"batch"` or `"extensions"` API groups:
+resources in the `"batch"` API group:
 
 ```yaml
 rules:
@@ -407,7 +407,7 @@ rules:
   # objects is "pods"
   resources: ["pods"]
   verbs: ["get", "list", "watch"]
-- apiGroups: ["batch", "extensions"]
+- apiGroups: ["batch"]
   #
   # at the HTTP level, the name of the resource for accessing Job
   # objects is "jobs"
@@ -517,7 +517,7 @@ subjects:
   namespace: kube-system
 ```
 
-For all service accounts in the "qa" group in any namespace:
+For all service accounts in the "qa" namespace:
 
 ```yaml
 subjects:
@@ -525,15 +525,6 @@ subjects:
   name: system:serviceaccounts:qa
   apiGroup: rbac.authorization.k8s.io
 ```
-For all service accounts in the "dev" group in the "development" namespace:
-
-```yaml
-subjects:
-- kind: Group
-  name: system:serviceaccounts:dev
-  apiGroup: rbac.authorization.k8s.io
-  namespace: development
-```
 
 For all service accounts in any namespace:
 
@@ -807,7 +798,7 @@ This is commonly used by add-on API servers for unified authentication and autho
 <td><b>system:node-bootstrapper</b></td>
 <td>None</td>
 <td>Allows access to the resources required to perform
-<a href="/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/">kubelet TLS bootstrapping</a>.</td>
+<a href="/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/">kubelet TLS bootstrapping</a>.</td>
 </tr>
 <tr>
 <td><b>system:node-problem-detector</b></td>
@@ -817,7 +808,7 @@ This is commonly used by add-on API servers for unified authentication and autho
 <tr>
 <td><b>system:persistent-volume-provisioner</b></td>
 <td>None</td>
-<td>Allows access to the resources required by most <a href="/docs/concepts/storage/persistent-volumes/#provisioner">dynamic volume provisioners</a>.</td>
+<td>Allows access to the resources required by most <a href="/docs/concepts/storage/persistent-volumes/#dynamic">dynamic volume provisioners</a>.</td>
 </tr>
 <tr>
 <td><b>system:monitoring</b></td>
diff --git a/content/en/docs/reference/access-authn-authz/service-accounts-admin.md b/content/en/docs/reference/access-authn-authz/service-accounts-admin.md
index f40cc7d00c..820b9b6cca 100644
--- a/content/en/docs/reference/access-authn-authz/service-accounts-admin.md
+++ b/content/en/docs/reference/access-authn-authz/service-accounts-admin.md
@@ -72,7 +72,7 @@ The ServiceAccount admission controller will add the following projected volume
     defaultMode: 420 # 0644
     sources:
       - serviceAccountToken:
-          expirationSeconds: 3600
+          expirationSeconds: 3607
           path: token
       - configMap:
           items:
diff --git a/content/en/docs/reference/command-line-tools-reference/feature-gates.md b/content/en/docs/reference/command-line-tools-reference/feature-gates.md
index d639029659..d2d740c193 100644
--- a/content/en/docs/reference/command-line-tools-reference/feature-gates.md
+++ b/content/en/docs/reference/command-line-tools-reference/feature-gates.md
@@ -25,10 +25,11 @@ on each Kubernetes component.
 Each Kubernetes component lets you enable or disable a set of feature gates that
 are relevant to that component.
 Use `-h` flag to see a full set of feature gates for all components.
-To set feature gates for a component, such as kubelet, use the `--feature-gates` flag assigned to a list of feature pairs:
+To set feature gates for a component, such as kubelet, use the `--feature-gates`
+flag assigned to a list of feature pairs:
 
 ```shell
---feature-gates="...,GracefulNodeShutdown=true"
+--feature-gates=...,GracefulNodeShutdown=true
 ```
 
 The following tables are a summary of the feature gates that you can set on
@@ -53,153 +54,154 @@ different Kubernetes components.
 |---------|---------|-------|-------|-------|
 | `APIListChunking` | `false` | Alpha | 1.8 | 1.8 |
 | `APIListChunking` | `true` | Beta | 1.9 | |
-| `APIPriorityAndFairness` | `false` | Alpha | 1.17 | 1.19 |
+| `APIPriorityAndFairness` | `false` | Alpha | 1.18 | 1.19 |
 | `APIPriorityAndFairness` | `true` | Beta | 1.20 | |
 | `APIResponseCompression` | `false` | Alpha | 1.7 | 1.15 |
 | `APIResponseCompression` | `true` | Beta | 1.16 | |
 | `APIServerIdentity` | `false` | Alpha | 1.20 | |
 | `APIServerTracing` | `false` | Alpha | 1.22 | |
 | `AllowInsecureBackendProxy` | `true` | Beta | 1.17 | |
-| `AnyVolumeDataSource` | `false` | Alpha | 1.18 | |
+| `AnyVolumeDataSource` | `false` | Alpha | 1.18 | 1.23 |
+| `AnyVolumeDataSource` | `true` | Beta | 1.24 | |
 | `AppArmor` | `true` | Beta | 1.4 | |
-| `ControllerManagerLeaderMigration` | `false` | Alpha | 1.21 | |
 | `CPUManager` | `false` | Alpha | 1.8 | 1.9 |
 | `CPUManager` | `true` | Beta | 1.10 | |
-| `CPUManagerPolicyOptions` | `false` | Alpha | 1.22 | |
+| `CPUManagerPolicyAlphaOptions` | `false` | Alpha | 1.23 | |
+| `CPUManagerPolicyBetaOptions` | `true` | Beta | 1.23 | |
+| `CPUManagerPolicyOptions` | `false` | Alpha | 1.22 | 1.22 |
+| `CPUManagerPolicyOptions` | `true` | Beta | 1.23 | |
 | `CSIInlineVolume` | `false` | Alpha | 1.15 | 1.15 |
 | `CSIInlineVolume` | `true` | Beta | 1.16 | - |
 | `CSIMigration` | `false` | Alpha | 1.14 | 1.16 |
 | `CSIMigration` | `true` | Beta | 1.17 | |
-| `CSIMigrationAWS` | `false` | Alpha | 1.14 | |
-| `CSIMigrationAWS` | `false` | Beta | 1.17 | |
-| `CSIMigrationAzureDisk` | `false` | Alpha | 1.15 | 1.18 |
-| `CSIMigrationAzureDisk` | `false` | Beta | 1.19 | |
+| `CSIMigrationAWS` | `false` | Alpha | 1.14 | 1.16 |
+| `CSIMigrationAWS` | `false` | Beta | 1.17 | 1.22 |
+| `CSIMigrationAWS` | `true` | Beta | 1.23 | |
 | `CSIMigrationAzureFile` | `false` | Alpha | 1.15 | 1.19 |
-| `CSIMigrationAzureFile` | `false` | Beta | 1.21 | |
+| `CSIMigrationAzureFile` | `false` | Beta | 1.21 | 1.23 |
+| `CSIMigrationAzureFile` | `true` | Beta | 1.24 | |
 | `CSIMigrationGCE` | `false` | Alpha | 1.14 | 1.16 |
-| `CSIMigrationGCE` | `false` | Beta | 1.17 | |
-| `CSIMigrationOpenStack` | `false` | Alpha | 1.14 | 1.17 |
-| `CSIMigrationOpenStack` | `true` | Beta | 1.18 | |
+| `CSIMigrationGCE` | `false` | Beta | 1.17 | 1.22 |
+| `CSIMigrationGCE` | `true` | Beta | 1.23 | |
 | `CSIMigrationvSphere` | `false` | Beta | 1.19 | |
-| `CSIStorageCapacity` | `false` | Alpha | 1.19 | 1.20 |
-| `CSIStorageCapacity` | `true` | Beta | 1.21 | |
-| `CSIVolumeFSGroupPolicy` | `false` | Alpha | 1.19 | 1.19 |
-| `CSIVolumeFSGroupPolicy` | `true` | Beta | 1.20 | |
+| `CSIMigrationPortworx` | `false` | Alpha | 1.23 | |
+| `csiMigrationRBD` | `false` | Alpha | 1.23 | |
 | `CSIVolumeHealth` | `false` | Alpha | 1.21 | |
-| `CSRDuration` | `true` | Beta | 1.22 | |
-| `ConfigurableFSGroupPolicy` | `false` | Alpha | 1.18 | 1.19 |
-| `ConfigurableFSGroupPolicy` | `true` | Beta | 1.20 | |
-| `ControllerManagerLeaderMigration` | `false` | Alpha | 1.21 | 1.21 |
-| `ControllerManagerLeaderMigration` | `true` | Beta | 1.22 | |
+| `ContextualLogging` | `false` | Alpha | 1.24 | |
 | `CustomCPUCFSQuotaPeriod` | `false` | Alpha | 1.12 | |
+| `CustomResourceValidationExpressions` | `false` | Alpha | 1.23 | |
 | `DaemonSetUpdateSurge` | `false` | Alpha | 1.21 | 1.21 |
 | `DaemonSetUpdateSurge` | `true` | Beta | 1.22 | |
-| `DefaultPodTopologySpread` | `false` | Alpha | 1.19 | 1.19 |
-| `DefaultPodTopologySpread` | `true` | Beta | 1.20 | |
-| `DelegateFSGroupToCSIDriver` | `false` | Alpha | 1.22 | |
+| `DelegateFSGroupToCSIDriver` | `false` | Alpha | 1.22 | 1.22 |
+| `DelegateFSGroupToCSIDriver` | `true` | Beta | 1.23 | |
 | `DevicePlugins` | `false` | Alpha | 1.8 | 1.9 |
 | `DevicePlugins` | `true` | Beta | 1.10 | |
 | `DisableAcceleratorUsageMetrics` | `false` | Alpha | 1.19 | 1.19 |
 | `DisableAcceleratorUsageMetrics` | `true` | Beta | 1.20 | |
 | `DisableCloudProviders` | `false` | Alpha | 1.22 | |
+| `DisableKubeletCloudCredentialProviders` | `false` | Alpha | 1.23 | |
 | `DownwardAPIHugePages` | `false` | Alpha | 1.20 | 1.20 |
-| `DownwardAPIHugePages` | `false` | Beta | 1.21 | |
-| `EfficientWatchResumption` | `false` | Alpha | 1.20 | 1.20 |
-| `EfficientWatchResumption` | `true` | Beta | 1.21 | |
+| `DownwardAPIHugePages` | `false` | Beta | 1.21 | 1.21 |
+| `DownwardAPIHugePages` | `true` | Beta | 1.22 | |
 | `EndpointSliceTerminatingCondition` | `false` | Alpha | 1.20 | 1.21 |
 | `EndpointSliceTerminatingCondition` | `true` | Beta | 1.22 | |
-| `EphemeralContainers` | `false` | Alpha | 1.16 | |
-| `ExpandCSIVolumes` | `false` | Alpha | 1.14 | 1.15 |
-| `ExpandCSIVolumes` | `true` | Beta | 1.16 | |
+| `EphemeralContainers` | `false` | Alpha | 1.16 | 1.22 |
+| `EphemeralContainers` | `true` | Beta | 1.23 | |
 | `ExpandedDNSConfig` | `false` | Alpha | 1.22 | |
-| `ExpandInUsePersistentVolumes` | `false` | Alpha | 1.11 | 1.14 |
-| `ExpandInUsePersistentVolumes` | `true` | Beta | 1.15 | |
-| `ExpandPersistentVolumes` | `false` | Alpha | 1.8 | 1.10 |
-| `ExpandPersistentVolumes` | `true` | Beta | 1.11 | |
 | `ExperimentalHostUserNamespaceDefaulting` | `false` | Beta | 1.5 | |
-| `GenericEphemeralVolume` | `false` | Alpha | 1.19 | 1.20 |
-| `GenericEphemeralVolume` | `true` | Beta | 1.21 | |
 | `GracefulNodeShutdown` | `false` | Alpha | 1.20 | 1.20 |
 | `GracefulNodeShutdown` | `true` | Beta | 1.21 | |
+| `GracefulNodeShutdownBasedOnPodPriority` | `false` | Alpha | 1.23 | 1.23 |
+| `GracefulNodeShutdownBasedOnPodPriority` | `true` | Beta | 1.24 | |
+| `GRPCContainerProbe` | `false` | Alpha | 1.23 | 1.23 |
+| `GRPCContainerProbe` | `true` | Beta | 1.24 | |
+| `HonorPVReclaimPolicy` | `false` | Alpha | 1.23 |  |
 | `HPAContainerMetrics` | `false` | Alpha | 1.20 | |
 | `HPAScaleToZero` | `false` | Alpha | 1.16 | |
-| `IndexedJob` | `false` | Alpha | 1.21 | 1.21 |
-| `IndexedJob` | `true` | Beta | 1.22 | |
-| `JobTrackingWithFinalizers` | `false` | Alpha | 1.22 | |
-| `IngressClassNamespacedParams` | `false` | Alpha | 1.21 | 1.21 |
-| `IngressClassNamespacedParams` | `true` | Beta | 1.22 | |
+| `IdentifyPodOS` | `false` | Alpha | 1.23 | 1.23 |
+| `IdentifyPodOS` | `true` | Beta | 1.24 | |
 | `InTreePluginAWSUnregister` | `false` | Alpha | 1.21 | |
 | `InTreePluginAzureDiskUnregister` | `false` | Alpha | 1.21 | |
 | `InTreePluginAzureFileUnregister` | `false` | Alpha | 1.21 | |
 | `InTreePluginGCEUnregister` | `false` | Alpha | 1.21 | |
 | `InTreePluginOpenStackUnregister` | `false` | Alpha | 1.21 | |
+| `InTreePluginPortworxUnregister` | `false` | Alpha | 1.23 | |
+| `InTreePluginRBDUnregister` | `false` | Alpha | 1.23 | |
 | `InTreePluginvSphereUnregister` | `false` | Alpha | 1.21 | |
-| `IPv6DualStack` | `false` | Alpha | 1.15 | 1.20 |
-| `IPv6DualStack` | `true` | Beta | 1.21 | |
-| `JobTrackingWithFinalizers` | `false` | Alpha | 1.22 | |
-| `KubeletCredentialProviders` | `false` | Alpha | 1.20 | |
+| `JobMutableNodeSchedulingDirectives` | `true` | Beta | 1.23 | |
+| `JobReadyPods` | `false` | Alpha | 1.23 | 1.23 |
+| `JobReadyPods` | `true` | Beta | 1.24 | |
+| `JobTrackingWithFinalizers` | `false` | Alpha | 1.22 | 1.22 |
+| `JobTrackingWithFinalizers` | `true` | Beta | 1.23 | 1.23 |
+| `JobTrackingWithFinalizers` | `false` | Beta | 1.24 | |
+| `KubeletCredentialProviders` | `false` | Alpha | 1.20 | 1.23 |
+| `KubeletCredentialProviders` | `true` | Beta | 1.24 | |
+| `KubeletInUserNamespace` | `false` | Alpha | 1.22 | |
+| `KubeletPodResources` | `false` | Alpha | 1.13 | 1.14 |
+| `KubeletPodResources` | `true` | Beta | 1.15 | |
+| `KubeletPodResourcesGetAllocatable` | `false` | Alpha | 1.21 | 1.22 |
+| `KubeletPodResourcesGetAllocatable` | `true` | Beta | 1.23 | |
 | `LocalStorageCapacityIsolation` | `false` | Alpha | 1.7 | 1.9 |
 | `LocalStorageCapacityIsolation` | `true` | Beta | 1.10 | |
 | `LocalStorageCapacityIsolationFSQuotaMonitoring` | `false` | Alpha | 1.15 | |
 | `LogarithmicScaleDown` | `false` | Alpha | 1.21 | 1.21 |
 | `LogarithmicScaleDown` | `true` | Beta | 1.22 | |
-| `KubeletInUserNamespace` | `false` | Alpha | 1.22 | |
-| `KubeletPodResourcesGetAllocatable` | `false` | Alpha | 1.21 | |
+| `MaxUnavailableStatefulSet` | `false` | Alpha | 1.24 | |
 | `MemoryManager` | `false` | Alpha | 1.21 | 1.21 |
 | `MemoryManager` | `true` | Beta | 1.22 | |
 | `MemoryQoS` | `false` | Alpha | 1.22 | |
-| `MixedProtocolLBService` | `false` | Alpha | 1.20 | |
+| `MinDomainsInPodTopologySpread` | `false` | Alpha | 1.24 | |
+| `MixedProtocolLBService` | `false` | Alpha | 1.20 | 1.23 |
+| `MixedProtocolLBService` | `true` | Beta | 1.24 | |
 | `NetworkPolicyEndPort` | `false` | Alpha | 1.21 | 1.21 |
 | `NetworkPolicyEndPort` | `true` | Beta | 1.22 |  |
+| `NetworkPolicyStatus` | `false` | Alpha | 1.24 |  |
 | `NodeSwap` | `false` | Alpha | 1.22 | |
-| `NonPreemptingPriority` | `false` | Alpha | 1.15 | 1.18 |
-| `NonPreemptingPriority` | `true` | Beta | 1.19 | |
+| `NodeOutOfServiceVolumeDetach` | `false` | Alpha | 1.24 | |
+| `OpenAPIEnums` | `false` | Alpha | 1.23 | 1.23 |
+| `OpenAPIEnums` | `true` | Beta | 1.24 | |
+| `OpenAPIV3` | `false` | Alpha | 1.23 | 1.23 |
+| `OpenAPIV3` | `true` | Beta | 1.24 | |
+| `PodAndContainerStatsFromCRI` | `false` | Alpha | 1.23 | |
 | `PodDeletionCost` | `false` | Alpha | 1.21 | 1.21 |
 | `PodDeletionCost` | `true` | Beta | 1.22 | |
-| `PodAffinityNamespaceSelector` | `false` | Alpha | 1.21 | 1.21 |
-| `PodAffinityNamespaceSelector` | `true` | Beta | 1.22 | |
-| `PodOverhead` | `false` | Alpha | 1.16 | 1.17 |
-| `PodOverhead` | `true` | Beta | 1.18 | |
-| `PodSecurity` | `false` | Alpha | 1.22 | |
-| `PreferNominatedNode` | `false` | Alpha | 1.21 | 1.21 |
-| `PreferNominatedNode` | `true` | Beta | 1.22 | |
+| `PodSecurity` | `false` | Alpha | 1.22 | 1.22 |
+| `PodSecurity` | `true` | Beta | 1.23 | |
 | `ProbeTerminationGracePeriod` | `false` | Alpha | 1.21 | 1.21 |
 | `ProbeTerminationGracePeriod` | `false` | Beta | 1.22 | |
 | `ProcMountType` | `false` | Alpha | 1.12 | |
 | `ProxyTerminatingEndpoints` | `false` | Alpha | 1.22 | |
 | `QOSReserved` | `false` | Alpha | 1.11 | |
 | `ReadWriteOncePod` | `false` | Alpha | 1.22 | |
+| `RecoverVolumeExpansionFailure` | `false` | Alpha | 1.23 | |
 | `RemainingItemCount` | `false` | Alpha | 1.15 | 1.15 |
 | `RemainingItemCount` | `true` | Beta | 1.16 | |
-| `RemoveSelfLink` | `false` | Alpha | 1.16 | 1.19 |
-| `RemoveSelfLink` | `true` | Beta | 1.20 | |
 | `RotateKubeletServerCertificate` | `false` | Alpha | 1.7 | 1.11 |
 | `RotateKubeletServerCertificate` | `true` | Beta | 1.12 | |
 | `SeccompDefault` | `false` | Alpha | 1.22 | |
+| `ServerSideFieldValidation` | `false` | Alpha | 1.23 | - |
 | `ServiceInternalTrafficPolicy` | `false` | Alpha | 1.21 | 1.21 |
 | `ServiceInternalTrafficPolicy` | `true` | Beta | 1.22 | |
-| `ServiceLBNodePortControl` | `false` | Alpha | 1.20 | 1.21 |
-| `ServiceLBNodePortControl` | `true` | Beta | 1.22 | |
-| `ServiceLoadBalancerClass` | `false` | Alpha | 1.21 | 1.21 |
-| `ServiceLoadBalancerClass` | `true` | Beta | 1.22 | |
+| `ServiceIPStaticSubrange` | `false` | Alpha | 1.24 | |
 | `SizeMemoryBackedVolumes` | `false` | Alpha | 1.20 | 1.21 |
 | `SizeMemoryBackedVolumes` | `true` | Beta | 1.22 | |
-| `StatefulSetMinReadySeconds` | `false` | Alpha | 1.22 | |
+| `StatefulSetAutoDeletePVC` | `false` | Alpha | 1.22 | |
+| `StatefulSetMinReadySeconds` | `false` | Alpha | 1.22 | 1.22 |
+| `StatefulSetMinReadySeconds` | `true` | Beta | 1.23 | |
 | `StorageVersionAPI` | `false` | Alpha | 1.20 | |
 | `StorageVersionHash` | `false` | Alpha | 1.14 | 1.14 |
 | `StorageVersionHash` | `true` | Beta | 1.15 | |
-| `SuspendJob` | `false` | Alpha | 1.21 | 1.21 |
-| `SuspendJob` | `true` | Beta | 1.22 | |
-| `TTLAfterFinished` | `false` | Alpha | 1.12 | 1.20 |
-| `TTLAfterFinished` | `true` | Beta | 1.21 | |
-| `TopologyAwareHints` | `false` | Alpha | 1.21 | |
+| `TopologyAwareHints` | `false` | Alpha | 1.21 | 1.22 |
+| `TopologyAwareHints` | `false` | Beta | 1.23 | 1.23 |
+| `TopologyAwareHints` | `true` | Beta | 1.24 | |
 | `TopologyManager` | `false` | Alpha | 1.16 | 1.17 |
 | `TopologyManager` | `true` | Beta | 1.18 | |
 | `VolumeCapacityPriority` | `false` | Alpha | 1.21 | - |
 | `WinDSR` | `false` | Alpha | 1.14 | |
 | `WinOverlay` | `false` | Alpha | 1.14 | 1.19 |
 | `WinOverlay` | `true` | Beta | 1.20 | |
-| `WindowsHostProcessContainers` | `false` | Alpha | 1.22 | |
+| `WindowsHostProcessContainers` | `false` | Alpha | 1.22 | 1.22 |
+| `WindowsHostProcessContainers` | `true` | Beta | 1.23 | |
 {{< /table >}}
 
 ### Feature gates for graduated or deprecated features
@@ -228,6 +230,12 @@ different Kubernetes components.
 | `BoundServiceAccountTokenVolume` | `false` | Alpha | 1.13 | 1.20 |
 | `BoundServiceAccountTokenVolume` | `true` | Beta | 1.21 | 1.21 |
 | `BoundServiceAccountTokenVolume` | `true` | GA | 1.22 | - |
+| `ConfigurableFSGroupPolicy` | `false` | Alpha | 1.18 | 1.19 |
+| `ConfigurableFSGroupPolicy` | `true` | Beta | 1.20 | 1.22 |
+| `ConfigurableFSGroupPolicy` | `true` | GA | 1.23 | - |
+| `ControllerManagerLeaderMigration` | `false` | Alpha | 1.21 | 1.21 |
+| `ControllerManagerLeaderMigration` | `true` | Beta | 1.22 | 1.23 |
+| `ControllerManagerLeaderMigration` | `true` | GA | 1.24 | - |
 | `CRIContainerLogRotation` | `false` | Alpha | 1.10 | 1.10 |
 | `CRIContainerLogRotation` | `true` | Beta | 1.11 | 1.20 |
 | `CRIContainerLogRotation` | `true` | GA | 1.21 | - |
@@ -236,31 +244,47 @@ different Kubernetes components.
 | `CSIBlockVolume` | `true` | GA | 1.18 | - |
 | `CSIDriverRegistry` | `false` | Alpha | 1.12 | 1.13 |
 | `CSIDriverRegistry` | `true` | Beta | 1.14 | 1.17 |
-| `CSIDriverRegistry` | `true` | GA | 1.18 | |
+| `CSIDriverRegistry` | `true` | GA | 1.18 | - |
 | `CSIMigrationAWSComplete` | `false` | Alpha | 1.17 | 1.20 |
 | `CSIMigrationAWSComplete` | - | Deprecated | 1.21 | - |
+| `CSIMigrationAzureDisk` | `false` | Alpha | 1.15 | 1.18 |
+| `CSIMigrationAzureDisk` | `false` | Beta | 1.19 | 1.22 |
+| `CSIMigrationAzureDisk` | `true` | Beta | 1.23 | 1.23 |
+| `CSIMigrationAzureDisk` | `true` | GA | 1.24 | |
 | `CSIMigrationAzureDiskComplete` | `false` | Alpha | 1.17 | 1.20 |
 | `CSIMigrationAzureDiskComplete` | - | Deprecated | 1.21 | - |
 | `CSIMigrationAzureFileComplete` | `false` | Alpha | 1.17 | 1.20 |
 | `CSIMigrationAzureFileComplete` | - | Deprecated |  1.21 | - |
 | `CSIMigrationGCEComplete` | `false` | Alpha | 1.17 | 1.20 |
 | `CSIMigrationGCEComplete` | - | Deprecated | 1.21 | - |
+| `CSIMigrationOpenStack` | `false` | Alpha | 1.14 | 1.17 |
+| `CSIMigrationOpenStack` | `true` | Beta | 1.18 | 1.23 |
+| `CSIMigrationOpenStack` | `true` | GA | 1.24 | |
 | `CSIMigrationOpenStackComplete` | `false` | Alpha | 1.17 | 1.20 |
 | `CSIMigrationOpenStackComplete` | - | Deprecated | 1.21 | - |
 | `CSIMigrationvSphereComplete` | `false` | Beta | 1.19 | 1.21 |
 | `CSIMigrationvSphereComplete` | - | Deprecated | 1.22 | - |
 | `CSINodeInfo` | `false` | Alpha | 1.12 | 1.13 |
 | `CSINodeInfo` | `true` | Beta | 1.14 | 1.16 |
-| `CSINodeInfo` | `true` | GA | 1.17 | |
+| `CSINodeInfo` | `true` | GA | 1.17 | - |
 | `CSIPersistentVolume` | `false` | Alpha | 1.9 | 1.9 |
 | `CSIPersistentVolume` | `true` | Beta | 1.10 | 1.12 |
 | `CSIPersistentVolume` | `true` | GA | 1.13 | - |
 | `CSIServiceAccountToken` | `false` | Alpha | 1.20 | 1.20 |
 | `CSIServiceAccountToken` | `true` | Beta | 1.21 | 1.21 |
-| `CSIServiceAccountToken` | `true` | GA | 1.22 | |
+| `CSIServiceAccountToken` | `true` | GA | 1.22 | - |
+| `CSIStorageCapacity` | `false` | Alpha | 1.19 | 1.20 |
+| `CSIStorageCapacity` | `true` | Beta | 1.21 | 1.23 |
+| `CSIStorageCapacity` | `true` | GA | 1.24 | - |
+| `CSIVolumeFSGroupPolicy` | `false` | Alpha | 1.19 | 1.19 |
+| `CSIVolumeFSGroupPolicy` | `true` | Beta | 1.20 | 1.22 |
+| `CSIVolumeFSGroupPolicy` | `true` | GA | 1.23 | |
+| `CSRDuration` | `true` | Beta | 1.22 | 1.23 |
+| `CSRDuration` | `true` | GA | 1.24 | - |
 | `CronJobControllerV2` | `false` | Alpha | 1.20 | 1.20 |
 | `CronJobControllerV2` | `true` | Beta | 1.21 | 1.21 |
 | `CronJobControllerV2` | `true` | GA | 1.22 | - |
+| `CronJobTimeZone` | `false` | Alpha | 1.24 | |
 | `CustomPodDNS` | `false` | Alpha | 1.9 | 1.9 |
 | `CustomPodDNS` | `true` | Beta| 1.10 | 1.13 |
 | `CustomPodDNS` | `true` | GA | 1.14 | - |
@@ -279,6 +303,9 @@ different Kubernetes components.
 | `CustomResourceWebhookConversion` | `false` | Alpha | 1.13 | 1.14 |
 | `CustomResourceWebhookConversion` | `true` | Beta | 1.15 | 1.15 |
 | `CustomResourceWebhookConversion` | `true` | GA | 1.16 | - |
+| `DefaultPodTopologySpread` | `false` | Alpha | 1.19 | 1.19 |
+| `DefaultPodTopologySpread` | `true` | Beta | 1.20 | 1.23 |
+| `DefaultPodTopologySpread` | `true` | GA | 1.24 | - |
 | `DryRun` | `false` | Alpha | 1.12 | 1.12 |
 | `DryRun` | `true` | Beta | 1.13 | 1.18 |
 | `DryRun` | `true` | GA | 1.19 | - |
@@ -289,46 +316,64 @@ different Kubernetes components.
 | `DynamicKubeletConfig` | `false` | Deprecated | 1.22 | - |
 | `DynamicProvisioningScheduling` | `false` | Alpha | 1.11 | 1.11 |
 | `DynamicProvisioningScheduling` | - | Deprecated| 1.12 | - |
-| `DynamicKubeletConfig` | `false` | Alpha | 1.4 | 1.10 |
-| `DynamicKubeletConfig` | `true` | Beta | 1.11 | 1.21 |
-| `DynamicKubeletConfig` | `false` | Deprecated | 1.22 | - |
 | `DynamicVolumeProvisioning` | `true` | Alpha | 1.3 | 1.7 |
 | `DynamicVolumeProvisioning` | `true` | GA | 1.8 | - |
+| `EfficientWatchResumption` | `false` | Alpha | 1.20 | 1.20 |
+| `EfficientWatchResumption` | `true` | Beta | 1.21 | 1.23 |
+| `EfficientWatchResumption` | `true` | GA | 1.24 | - |
 | `EnableAggregatedDiscoveryTimeout` | `true` | Deprecated | 1.16 | - |
 | `EnableEquivalenceClassCache` | `false` | Alpha | 1.8 | 1.14 |
 | `EnableEquivalenceClassCache` | - | Deprecated | 1.15 | - |
 | `EndpointSlice` | `false` | Alpha | 1.16 | 1.16 |
 | `EndpointSlice` | `false` | Beta | 1.17 | 1.17 |
 | `EndpointSlice` | `true` | Beta | 1.18 | 1.20 |
-| `EndpointSlice` | `true` | GA | 1.21 | -  |
+| `EndpointSlice` | `true` | GA | 1.21 | - |
 | `EndpointSliceNodeName` | `false` | Alpha | 1.20 | 1.20 |
 | `EndpointSliceNodeName` | `true` | GA | 1.21 | - |
 | `EndpointSliceProxying` | `false` | Alpha | 1.18 | 1.18 |
 | `EndpointSliceProxying` | `true` | Beta | 1.19 | 1.21 |
 | `EndpointSliceProxying` | `true` | GA | 1.22 | - |
-| `ExperimentalCriticalPodAnnotation` | `false` | Alpha | 1.5 | 1.12 |
-| `ExperimentalCriticalPodAnnotation` | `false` | Deprecated | 1.13 | - |
 | `EvenPodsSpread` | `false` | Alpha | 1.16 | 1.17 |
 | `EvenPodsSpread` | `true` | Beta | 1.18 | 1.18 |
 | `EvenPodsSpread` | `true` | GA | 1.19 | - |
 | `ExecProbeTimeout` | `true` | GA | 1.20 | - |
+| `ExpandCSIVolumes` | `false` | Alpha | 1.14 | 1.15 |
+| `ExpandCSIVolumes` | `true` | Beta | 1.16 | 1.23 |
+| `ExpandCSIVolumes` | `true` | GA | 1.24 | - |
+| `ExpandInUsePersistentVolumes` | `false` | Alpha | 1.11 | 1.14 |
+| `ExpandInUsePersistentVolumes` | `true` | Beta | 1.15 | 1.23 |
+| `ExpandInUsePersistentVolumes` | `true` | GA | 1.24 | - |
+| `ExpandPersistentVolumes` | `false` | Alpha | 1.8 | 1.10 |
+| `ExpandPersistentVolumes` | `true` | Beta | 1.11 | 1.23 |
+| `ExpandPersistentVolumes` | `true` | GA | 1.24 |- |
+| `ExperimentalCriticalPodAnnotation` | `false` | Alpha | 1.5 | 1.12 |
+| `ExperimentalCriticalPodAnnotation` | `false` | Deprecated | 1.13 | - |
 | `ExternalPolicyForExternalIP` | `true` | GA | 1.18 | - |
 | `GCERegionalPersistentDisk` | `true` | Beta | 1.10 | 1.12 |
 | `GCERegionalPersistentDisk` | `true` | GA | 1.13 | - |
+| `GenericEphemeralVolume` | `false` | Alpha | 1.19 | 1.20 |
+| `GenericEphemeralVolume` | `true` | Beta | 1.21 | 1.22 |
+| `GenericEphemeralVolume` | `true` | GA | 1.23 | - |
 | `HugePageStorageMediumSize` | `false` | Alpha | 1.18 | 1.18 |
 | `HugePageStorageMediumSize` | `true` | Beta | 1.19 | 1.21 |
 | `HugePageStorageMediumSize` | `true` | GA | 1.22 | - |
 | `HugePages` | `false` | Alpha | 1.8 | 1.9 |
 | `HugePages` | `true` | Beta| 1.10 | 1.13 |
 | `HugePages` | `true` | GA | 1.14 | - |
-| `HugePageStorageMediumSize` | `false` | Alpha | 1.18 | 1.18 |
-| `HugePageStorageMediumSize` | `true` | Beta | 1.19 | 1.21 |
-| `HugePageStorageMediumSize` | `true` | GA | 1.22 | - |
 | `HyperVContainer` | `false` | Alpha | 1.10 | 1.19 |
 | `HyperVContainer` | `false` | Deprecated | 1.20 | - |
+| `IPv6DualStack` | `false` | Alpha | 1.15 | 1.20 |
+| `IPv6DualStack` | `true` | Beta | 1.21 | 1.22 |
+| `IPv6DualStack` | `true` | GA | 1.23 | - |
 | `ImmutableEphemeralVolumes` | `false` | Alpha | 1.18 | 1.18 |
 | `ImmutableEphemeralVolumes` | `true` | Beta | 1.19 | 1.20 |
 | `ImmutableEphemeralVolumes` | `true` | GA | 1.21 | |
+| `IndexedJob` | `false` | Alpha | 1.21 | 1.21 |
+| `IndexedJob` | `true` | Beta | 1.22 | 1.23 |
+| `IndexedJob` | `true` | GA | 1.24 | - |
+| `IngressClassNamespacedParams` | `false` | Alpha | 1.21 | 1.21 |
+| `IngressClassNamespacedParams` | `true` | Beta | 1.22 | 1.22 |
+| `IngressClassNamespacedParams` | `true` | GA | 1.23 | - |
 | `Initializers` | `false` | Alpha | 1.7 | 1.13 |
 | `Initializers` | - | Deprecated | 1.14 | - |
 | `KubeletConfigFile` | `false` | Alpha | 1.8 | 1.9 |
@@ -336,33 +381,40 @@ different Kubernetes components.
 | `KubeletPluginsWatcher` | `false` | Alpha | 1.11 | 1.11 |
 | `KubeletPluginsWatcher` | `true` | Beta | 1.12 | 1.12 |
 | `KubeletPluginsWatcher` | `true` | GA | 1.13 | - |
-| `KubeletPodResources` | `false` | Alpha | 1.13 | 1.14 |
-| `KubeletPodResources` | `true` | Beta | 1.15 | |
-| `KubeletPodResources` | `true` | GA | 1.20 | |
 | `LegacyNodeRoleBehavior` | `false` | Alpha | 1.16 | 1.18 |
 | `LegacyNodeRoleBehavior` | `true` | Beta | 1.19 | 1.20 |
 | `LegacyNodeRoleBehavior` | `false` | GA | 1.21 | - |
+| `LegacyServiceAccountTokenNoAutoGeneration` | `true` | Beta | 1.24 | |
 | `MountContainers` | `false` | Alpha | 1.9 | 1.16 |
 | `MountContainers` | `false` | Deprecated | 1.17 | - |
 | `MountPropagation` | `false` | Alpha | 1.8 | 1.9 |
 | `MountPropagation` | `true` | Beta | 1.10 | 1.11 |
 | `MountPropagation` | `true` | GA | 1.12 | - |
+| `NamespaceDefaultLabelName` | `true` | Beta | 1.21 | 1.21 |
+| `NamespaceDefaultLabelName` | `true` | GA | 1.22 | - |
 | `NodeDisruptionExclusion` | `false` | Alpha | 1.16 | 1.18 |
 | `NodeDisruptionExclusion` | `true` | Beta | 1.19 | 1.20 |
 | `NodeDisruptionExclusion` | `true` | GA | 1.21 | - |
 | `NodeLease` | `false` | Alpha | 1.12 | 1.13 |
 | `NodeLease` | `true` | Beta | 1.14 | 1.16 |
 | `NodeLease` | `true` | GA | 1.17 | - |
-| `NamespaceDefaultLabelName` | `true` | Beta | 1.21 | 1.21 |
-| `NamespaceDefaultLabelName` | `true` | GA | 1.22 | - |
+| `NonPreemptingPriority` | `false` | Alpha | 1.15 | 1.18 |
+| `NonPreemptingPriority` | `true` | Beta | 1.19 | 1.23 |
+| `NonPreemptingPriority` | `true` | GA | 1.24 | - |
 | `PVCProtection` | `false` | Alpha | 1.9 | 1.9 |
 | `PVCProtection` | - | Deprecated | 1.10 | - |
 | `PersistentLocalVolumes` | `false` | Alpha | 1.7 | 1.9 |
 | `PersistentLocalVolumes` | `true` | Beta | 1.10 | 1.13 |
 | `PersistentLocalVolumes` | `true` | GA | 1.14 | - |
+| `PodAffinityNamespaceSelector` | `false` | Alpha | 1.21 | 1.21 |
+| `PodAffinityNamespaceSelector` | `true` | Beta | 1.22 | 1.23 |
+| `PodAffinityNamespaceSelector` | `true` | GA | 1.24 | - |
 | `PodDisruptionBudget` | `false` | Alpha | 1.3 | 1.4 |
 | `PodDisruptionBudget` | `true` | Beta | 1.5 | 1.20 |
 | `PodDisruptionBudget` | `true` | GA | 1.21 | - |
+| `PodOverhead` | `false` | Alpha | 1.16 | 1.17 |
+| `PodOverhead` | `true` | Beta | 1.18 | 1.23 |
+| `PodOverhead` | `true` | GA | 1.24 | - |
 | `PodPriority` | `false` | Alpha | 1.8 | 1.10 |
 | `PodPriority` | `true` | Beta | 1.11 | 1.13 |
 | `PodPriority` | `true` | GA | 1.14 | - |
@@ -372,8 +424,14 @@ different Kubernetes components.
 | `PodShareProcessNamespace` | `false` | Alpha | 1.10 | 1.11 |
 | `PodShareProcessNamespace` | `true` | Beta | 1.12 | 1.16 |
 | `PodShareProcessNamespace` | `true` | GA | 1.17 | - |
+| `PreferNominatedNode` | `false` | Alpha | 1.21 | 1.21 |
+| `PreferNominatedNode` | `true` | Beta | 1.22 | 1.23 |
+| `PreferNominatedNode` | `true` | GA | 1.24 | - |
+| `RemoveSelfLink` | `false` | Alpha | 1.16 | 1.19 |
+| `RemoveSelfLink` | `true` | Beta | 1.20 | 1.23 |
+| `RemoveSelfLink` | `true` | GA | 1.24 | - |
 | `RequestManagement` | `false` | Alpha | 1.15 | 1.16 |
-| `RequestManagement` | - | Derecated | 1.17 | - |
+| `RequestManagement` | - | Deprecated | 1.17 | - |
 | `ResourceLimitsPriorityFunction` | `false` | Alpha | 1.9 | 1.18 |
 | `ResourceLimitsPriorityFunction` | - | Deprecated | 1.19 | - |
 | `ResourceQuotaScopeSelectors` | `false` | Alpha | 1.11 | 1.11 |
@@ -407,6 +465,12 @@ different Kubernetes components.
 | `ServiceAppProtocol` | `false` | Alpha | 1.18 | 1.18 |
 | `ServiceAppProtocol` | `true` | Beta | 1.19 | 1.19 |
 | `ServiceAppProtocol` | `true` | GA | 1.20 | - |
+| `ServiceLBNodePortControl` | `false` | Alpha | 1.20 | 1.21 |
+| `ServiceLBNodePortControl` | `true` | Beta | 1.22 | 1.23 |
+| `ServiceLBNodePortControl` | `true` | GA | 1.24 | - |
+| `ServiceLoadBalancerClass` | `false` | Alpha | 1.21 | 1.21 |
+| `ServiceLoadBalancerClass` | `true` | Beta | 1.22 | 1.23 |
+| `ServiceLoadBalancerClass` | `true` | GA | 1.24 | - |
 | `ServiceLoadBalancerFinalizer` | `false` | Alpha | 1.15 | 1.15 |
 | `ServiceLoadBalancerFinalizer` | `true` | Beta | 1.16 | 1.16 |
 | `ServiceLoadBalancerFinalizer` | `true` | GA | 1.17 | - |
@@ -437,8 +501,14 @@ different Kubernetes components.
 | `SupportPodPidsLimit` | `false` | Alpha | 1.10 | 1.13 |
 | `SupportPodPidsLimit` | `true` | Beta | 1.14 | 1.19 |
 | `SupportPodPidsLimit` | `true` | GA | 1.20 | - |
+| `SuspendJob` | `false` | Alpha | 1.21 | 1.21 |
+| `SuspendJob` | `true` | Beta | 1.22 | 1.23 |
+| `SuspendJob` | `true` | GA | 1.24 | - |
 | `Sysctls` | `true` | Beta | 1.11 | 1.20 |
-| `Sysctls` | `true` | GA | 1.21 | |
+| `Sysctls` | `true` | GA | 1.21 | - |
+| `TTLAfterFinished` | `false` | Alpha | 1.12 | 1.20 |
+| `TTLAfterFinished` | `true` | Beta | 1.21 | 1.22 |
+| `TTLAfterFinished` | `true` | GA | 1.23 | - |
 | `TaintBasedEvictions` | `false` | Alpha | 1.6 | 1.12 |
 | `TaintBasedEvictions` | `true` | Beta | 1.13 | 1.17 |
 | `TaintBasedEvictions` | `true` | GA | 1.18 | - |
@@ -478,7 +548,6 @@ different Kubernetes components.
 | `WindowsGMSA` | `false` | Alpha | 1.14 | 1.15 |
 | `WindowsGMSA` | `true` | Beta | 1.16 | 1.17 |
 | `WindowsGMSA` | `true` | GA | 1.18 | - |
-| `WindowsHostProcessContainers` | `false` | Alpha | 1.22 |
 | `WindowsRunAsUserName` | `false` | Alpha | 1.16 | 1.16 |
 | `WindowsRunAsUserName` | `true` | Beta | 1.17 | 1.17 |
 | `WindowsRunAsUserName` | `true` | GA | 1.18 | - |
@@ -534,8 +603,11 @@ Each feature gate is designed for enabling/disabling a specific feature:
 - `APIResponseCompression`: Compress the API responses for `LIST` or `GET` requests.
 - `APIServerIdentity`: Assign each API server an ID in a cluster.
 - `APIServerTracing`: Add support for distributed tracing in the API server.
-- `Accelerators`: Enable Nvidia GPU support when using Docker
-- `AdvancedAuditing`: Enable [advanced auditing](/docs/tasks/debug-application-cluster/audit/#advanced-audit)
+- `Accelerators`: Provided an early form of plugin to enable Nvidia GPU support when using
+  Docker Engine; no longer available. See
+  [Device Plugins](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/) for
+  an alternative.
+- `AdvancedAuditing`: Enable [advanced auditing](/docs/tasks/debug/debug-cluster/audit/#advanced-audit)
 - `AffinityInAnnotations`: Enable setting
   [Pod affinity or anti-affinity](/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity).
 - `AllowExtTrafficLocalEndpoints`: Enable a service to route external requests to node local endpoints.
@@ -543,37 +615,51 @@ Each feature gate is designed for enabling/disabling a specific feature:
   kubelets on Pod log requests.
 - `AnyVolumeDataSource`: Enable use of any custom resource as the `DataSource` of a
   {{< glossary_tooltip text="PVC" term_id="persistent-volume-claim" >}}.
-- `AppArmor`: Enable AppArmor based mandatory access control on Linux nodes when using Docker.
-  See [AppArmor Tutorial](/docs/tutorials/clusters/apparmor/) for more details.
+- `AppArmor`: Enable use of AppArmor mandatory access control for Pods running on Linux nodes.
+  See [AppArmor Tutorial](/docs/tutorials/security/apparmor/) for more details.
 - `AttachVolumeLimit`: Enable volume plugins to report limits on number of volumes
   that can be attached to a node.
-  See [dynamic volume limits](/docs/concepts/storage/storage-limits/#dynamic-volume-limits) for more details.
-- `BalanceAttachedNodeVolumes`: Include volume count on node to be considered for balanced resource allocation
-  while scheduling. A node which has closer CPU, memory utilization, and volume count is favored by the scheduler
-  while making decisions.
+  See [dynamic volume limits](/docs/concepts/storage/storage-limits/#dynamic-volume-limits)
+  for more details.
+- `BalanceAttachedNodeVolumes`: Include volume count on node to be considered for
+  balanced resource allocation while scheduling. A node which has closer CPU,
+  memory utilization, and volume count is favored by the scheduler while making decisions.
 - `BlockVolume`: Enable the definition and consumption of raw block devices in Pods.
   See [Raw Block Volume Support](/docs/concepts/storage/persistent-volumes/#raw-block-volume-support)
   for more details.
-- `BoundServiceAccountTokenVolume`: Migrate ServiceAccount volumes to use a projected volume consisting of a
-  ServiceAccountTokenVolumeProjection. Cluster admins can use metric `serviceaccount_stale_tokens_total` to
-  monitor workloads that are depending on the extended tokens. If there are no such workloads, turn off
-  extended tokens by starting `kube-apiserver` with flag `--service-account-extend-token-expiration=false`.
+- `BoundServiceAccountTokenVolume`: Migrate ServiceAccount volumes to use a projected volume
+  consisting of a ServiceAccountTokenVolumeProjection. Cluster admins can use metric
+  `serviceaccount_stale_tokens_total` to monitor workloads that are depending on the extended
+  tokens. If there are no such workloads, turn off extended tokens by starting `kube-apiserver` with
+  flag `--service-account-extend-token-expiration=false`.
   Check [Bound Service Account Tokens](https://github.com/kubernetes/enhancements/blob/master/keps/sig-auth/1205-bound-service-account-tokens/README.md)
-   for more details.
-- `ControllerManagerLeaderMigration`: Enables Leader Migration for 
-  [kube-controller-manager](/docs/tasks/administer-cluster/controller-manager-leader-migration/#initial-leader-migration-configuration) and 
-  [cloud-controller-manager](/docs/tasks/administer-cluster/controller-manager-leader-migration/#deploy-cloud-controller-manager) which allows a cluster operator to live migrate 
-  controllers from the kube-controller-manager into an external controller-manager 
+  for more details.
+- `ControllerManagerLeaderMigration`: Enables Leader Migration for
+  [kube-controller-manager](/docs/tasks/administer-cluster/controller-manager-leader-migration/#initial-leader-migration-configuration) and
+  [cloud-controller-manager](/docs/tasks/administer-cluster/controller-manager-leader-migration/#deploy-cloud-controller-manager)
+  which allows a cluster operator to live migrate
+  controllers from the kube-controller-manager into an external controller-manager
   (e.g. the cloud-controller-manager) in an HA cluster without downtime.
 - `CPUManager`: Enable container level CPU affinity support, see
   [CPU Management Policies](/docs/tasks/administer-cluster/cpu-management-policies/).
+- `CPUManagerPolicyAlphaOptions`: This allows fine-tuning of CPUManager policies,
+  experimental, Alpha-quality options
+  This feature gate guards *a group* of CPUManager options whose quality level is alpha.
+  This feature gate will never graduate to beta or stable.
+- `CPUManagerPolicyBetaOptions`: This allows fine-tuning of CPUManager policies,
+  experimental, Beta-quality options
+  This feature gate guards *a group* of CPUManager options whose quality level is beta.
+  This feature gate will never graduate to stable.
 - `CPUManagerPolicyOptions`: Allow fine-tuning of CPUManager policies.
-- `CRIContainerLogRotation`: Enable container log rotation for CRI container runtime. The default max size of a log file is 10MB and the
-  default max number of log files allowed for a container is 5. These values can be configured in the kubelet config.
-  See the [logging at node level](/docs/concepts/cluster-administration/logging/#logging-at-the-node-level) documentation for more details.
+- `CRIContainerLogRotation`: Enable container log rotation for CRI container runtime.
+  The default max size of a log file is 10MB and the default max number of
+  log files allowed for a container is 5.
+  These values can be configured in the kubelet config.
+  See [logging at node level](/docs/concepts/cluster-administration/logging/#logging-at-the-node-level)
+  for more details.
 - `CSIBlockVolume`: Enable external CSI volume drivers to support block storage.
-  See the [`csi` raw block volume support](/docs/concepts/storage/volumes/#csi-raw-block-volume-support)
-  documentation for more details.
+  See [`csi` raw block volume support](/docs/concepts/storage/volumes/#csi-raw-block-volume-support)
+  for more details.
 - `CSIDriverRegistry`: Enable all logic related to the CSIDriver API object in
   csi.storage.k8s.io.
 - `CSIInlineVolume`: Enable CSI Inline volumes support for pods.
@@ -581,8 +667,10 @@ Each feature gate is designed for enabling/disabling a specific feature:
   operations from in-tree plugins to corresponding pre-installed CSI plugins
 - `CSIMigrationAWS`: Enables shims and translation logic to route volume
   operations from the AWS-EBS in-tree plugin to EBS CSI plugin. Supports
-  falling back to in-tree EBS plugin if a node does not have EBS CSI plugin
-  installed and configured. Requires CSIMigration feature flag enabled.
+  falling back to in-tree EBS plugin for mount operations to nodes that have
+  the feature disabled or that do not have EBS CSI plugin installed and
+  configured. Does not support falling back for provision operations, for those
+  the CSI plugin must be installed and configured.
 - `CSIMigrationAWSComplete`: Stops registering the EBS in-tree plugin in
   kubelet and volume controllers and enables shims and translation logic to
   route volume operations from the AWS-EBS in-tree plugin to EBS CSI plugin.
@@ -592,21 +680,26 @@ Each feature gate is designed for enabling/disabling a specific feature:
   which prevents the registration of in-tree EBS plugin.
 - `CSIMigrationAzureDisk`: Enables shims and translation logic to route volume
   operations from the Azure-Disk in-tree plugin to AzureDisk CSI plugin.
-  Supports falling back to in-tree AzureDisk plugin if a node does not have
-  AzureDisk CSI plugin installed and configured. Requires CSIMigration feature
-  flag enabled.
+  Supports falling back to in-tree AzureDisk plugin for mount operations to
+  nodes that have the feature disabled or that do not have AzureDisk CSI plugin
+  installed and configured. Does not support falling back for provision
+  operations, for those the CSI plugin must be installed and configured.
+  Requires CSIMigration feature flag enabled.
 - `CSIMigrationAzureDiskComplete`: Stops registering the Azure-Disk in-tree
   plugin in kubelet and volume controllers and enables shims and translation
   logic to route volume operations from the Azure-Disk in-tree plugin to
   AzureDisk CSI plugin. Requires CSIMigration and CSIMigrationAzureDisk feature
   flags enabled and AzureDisk CSI plugin installed and configured on all nodes
   in the cluster. This flag has been deprecated in favor of the
-  `InTreePluginAzureDiskUnregister` feature flag which prevents the registration of in-tree AzureDisk plugin.
+  `InTreePluginAzureDiskUnregister` feature flag which prevents the registration
+  of in-tree AzureDisk plugin.
 - `CSIMigrationAzureFile`: Enables shims and translation logic to route volume
   operations from the Azure-File in-tree plugin to AzureFile CSI plugin.
-  Supports falling back to in-tree AzureFile plugin if a node does not have
-  AzureFile CSI plugin installed and configured. Requires CSIMigration feature
-  flag enabled.
+  Supports falling back to in-tree AzureFile plugin for mount operations to
+  nodes that have the feature disabled or that do not have AzureFile CSI plugin
+  installed and configured. Does not support falling back for provision
+  operations, for those the CSI plugin must be installed and configured.
+  Requires CSIMigration feature flag enabled.
 - `CSIMigrationAzureFileComplete`: Stops registering the Azure-File in-tree
   plugin in kubelet and volume controllers and enables shims and translation
   logic to route volume operations from the Azure-File in-tree plugin to
@@ -617,37 +710,58 @@ Each feature gate is designed for enabling/disabling a specific feature:
    of in-tree AzureFile plugin.
 - `CSIMigrationGCE`: Enables shims and translation logic to route volume
   operations from the GCE-PD in-tree plugin to PD CSI plugin. Supports falling
-  back to in-tree GCE plugin if a node does not have PD CSI plugin installed and
-  configured. Requires CSIMigration feature flag enabled.
+  back to in-tree GCE plugin for mount operations to nodes that have the
+  feature disabled or that do not have PD CSI plugin installed and configured.
+  Does not support falling back for provision operations, for those the CSI
+  plugin must be installed and configured. Requires CSIMigration feature flag
+  enabled.
 - `CSIMigrationGCEComplete`: Stops registering the GCE-PD in-tree plugin in
   kubelet and volume controllers and enables shims and translation logic to
   route volume operations from the GCE-PD in-tree plugin to PD CSI plugin.
   Requires CSIMigration and CSIMigrationGCE feature flags enabled and PD CSI
   plugin installed and configured on all nodes in the cluster. This flag has
-  been deprecated in favor of the `InTreePluginGCEUnregister` feature flag which prevents the registration of in-tree GCE PD plugin.
+  been deprecated in favor of the `InTreePluginGCEUnregister` feature flag which
+  prevents the registration of in-tree GCE PD plugin.
 - `CSIMigrationOpenStack`: Enables shims and translation logic to route volume
   operations from the Cinder in-tree plugin to Cinder CSI plugin. Supports
-  falling back to in-tree Cinder plugin if a node does not have Cinder CSI
-  plugin installed and configured. Requires CSIMigration feature flag enabled.
+  falling back to in-tree Cinder plugin for mount operations to nodes that have
+  the feature disabled or that do not have Cinder CSI plugin installed and
+  configured. Does not support falling back for provision operations, for those
+  the CSI plugin must be installed and configured. Requires CSIMigration
+  feature flag enabled.
 - `CSIMigrationOpenStackComplete`: Stops registering the Cinder in-tree plugin in
   kubelet and volume controllers and enables shims and translation logic to route
   volume operations from the Cinder in-tree plugin to Cinder CSI plugin.
   Requires CSIMigration and CSIMigrationOpenStack feature flags enabled and Cinder
   CSI plugin installed and configured on all nodes in the cluster. This flag has
-  been deprecated in favor of the `InTreePluginOpenStackUnregister` feature flag which prevents the registration of in-tree openstack cinder plugin.
+  been deprecated in favor of the `InTreePluginOpenStackUnregister` feature flag
+  which prevents the registration of in-tree openstack cinder plugin.
+- `csiMigrationRBD`: Enables shims and translation logic to route volume
+  operations from the RBD in-tree plugin to Ceph RBD CSI plugin. Requires
+  CSIMigration and csiMigrationRBD feature flags enabled and Ceph CSI plugin
+  installed and configured in the cluster. This flag has been deprecated in
+  favor of the `InTreePluginRBDUnregister` feature flag which prevents the registration of
+  in-tree RBD plugin.
 - `CSIMigrationvSphere`: Enables shims and translation logic to route volume operations
-  from the vSphere in-tree plugin to vSphere CSI plugin.
-  Supports falling back to in-tree vSphere plugin if a node does not have vSphere
-  CSI plugin installed and configured. Requires CSIMigration feature flag enabled.
+  from the vSphere in-tree plugin to vSphere CSI plugin. Supports falling back
+  to in-tree vSphere plugin for mount operations to nodes that have the feature
+  disabled or that do not have vSphere CSI plugin installed and configured.
+  Does not support falling back for provision operations, for those the CSI
+  plugin must be installed and configured. Requires CSIMigration feature flag
+  enabled.
 - `CSIMigrationvSphereComplete`: Stops registering the vSphere in-tree plugin in kubelet
   and volume controllers and enables shims and translation logic to route volume operations
   from the vSphere in-tree plugin to vSphere CSI plugin. Requires CSIMigration and
   CSIMigrationvSphere feature flags enabled and vSphere CSI plugin installed and
   configured on all nodes in the cluster. This flag has been deprecated in favor
-  of the `InTreePluginvSphereUnregister` feature flag which prevents the registration of in-tree vsphere plugin.
-- `CSINodeInfo`: Enable all logic related to the CSINodeInfo API object in csi.storage.k8s.io.
+  of the `InTreePluginvSphereUnregister` feature flag which prevents the
+  registration of in-tree vsphere plugin.
+- `CSIMigrationPortworx`: Enables shims and translation logic to route volume operations
+  from the Portworx in-tree plugin to Portworx CSI plugin.
+  Requires Portworx CSI driver to be installed and configured in the cluster.
+- `CSINodeInfo`: Enable all logic related to the CSINodeInfo API object in `csi.storage.k8s.io`.
 - `CSIPersistentVolume`: Enable discovering and mounting volumes provisioned through a
-  [CSI (Container Storage Interface)](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/storage/container-storage-interface.md)
+  [CSI (Container Storage Interface)](https://git.k8s.io/design-proposals-archive/storage/container-storage-interface.md)
   compatible volume plugin.
 - `CSIServiceAccountToken`: Enable CSI drivers to receive the pods' service account token
   that they mount volumes for. See
@@ -666,13 +780,19 @@ Each feature gate is designed for enabling/disabling a specific feature:
   for fsGroups when mounting a volume in a Pod. See
   [Configure volume permission and ownership change policy for Pods](/docs/tasks/configure-pod-container/security-context/#configure-volume-permission-and-ownership-change-policy-for-pods)
   for more details.
+- `ContextualLogging`: When you enable this feature gate, Kubernetes components that support
+   contextual logging add extra detail to log output.
 - `ControllerManagerLeaderMigration`: Enables leader migration for
   `kube-controller-manager` and `cloud-controller-manager`.
 - `CronJobControllerV2`: Use an alternative implementation of the
   {{< glossary_tooltip text="CronJob" term_id="cronjob" >}} controller. Otherwise,
   version 1 of the same controller is selected.
+- `CronJobTimeZone`: Allow the use of the `timeZone` optional field in [CronJobs](/docs/concepts/workloads/controllers/cron-jobs/)
 - `CustomCPUCFSQuotaPeriod`: Enable nodes to change `cpuCFSQuotaPeriod` in
   [kubelet config](/docs/tasks/administer-cluster/kubelet-config-file/).
+- `CustomResourceValidationExpressions`: Enable expression language validation in CRD
+  which will validate customer resource based on validation rules written in
+  the `x-kubernetes-validations` extension.
 - `CustomPodDNS`: Enable customizing the DNS settings for a Pod using its `dnsConfig` property.
   Check [Pod's DNS Config](/docs/concepts/services-networking/dns-pod-service/#pods-dns-config)
   for more details.
@@ -686,8 +806,9 @@ Each feature gate is designed for enabling/disabling a specific feature:
   on resources created from [CustomResourceDefinition](/docs/concepts/extend-kubernetes/api-extension/custom-resources/).
 - `DaemonSetUpdateSurge`: Enables the DaemonSet workloads to maintain
   availability during update per node.
+  See [Perform a Rolling Update on a DaemonSet](/docs/tasks/manage-daemon/update-daemon-set/).
 - `DefaultPodTopologySpread`: Enables the use of `PodTopologySpread` scheduling plugin to do
-  [default spreading](/docs/concepts/workloads/pods/pod-topology-spread-constraints/#internal-default-constraints).
+  [default spreading](/docs/concepts/scheduling-eviction/topology-spread-constraints/#internal-default-constraints).
 - `DelegateFSGroupToCSIDriver`: If supported by the CSI driver, delegates the
   role of applying `fsGroup` from a Pod's `securityContext` to the driver by
   passing `fsGroup` through the NodeStageVolume and NodePublishVolume CSI calls.
@@ -698,13 +819,16 @@ Each feature gate is designed for enabling/disabling a specific feature:
 - `DisableCloudProviders`: Disables any functionality in `kube-apiserver`,
   `kube-controller-manager` and `kubelet` related to the `--cloud-provider`
   component flag.
+- `DisableKubeletCloudCredentialProviders`: Disable the in-tree functionality in kubelet
+  to authenticate to a cloud provider container registry for image pull credentials.
 - `DownwardAPIHugePages`: Enables usage of hugepages in
   [downward API](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information).
 - `DryRun`: Enable server-side [dry run](/docs/reference/using-api/api-concepts/#dry-run) requests
   so that validation, merging, and mutation can be tested without committing.
 - `DynamicAuditing`: Used to enable dynamic auditing before v1.19.
-- `DynamicKubeletConfig`: Enable the dynamic configuration of kubelet. See
-  [Reconfigure kubelet](/docs/tasks/administer-cluster/reconfigure-kubelet/).
+- `DynamicKubeletConfig`: Enable the dynamic configuration of kubelet. The
+  feature is no longer supported outside of supported skew policy. The feature
+  gate was removed from kubelet in 1.24. See [Reconfigure kubelet](/docs/tasks/administer-cluster/reconfigure-kubelet/).
 - `DynamicProvisioningScheduling`: Extend the default scheduler to be aware of
   volume topology and handle PV provisioning.
   This feature is superseded by the `VolumeScheduling` feature completely in v1.12.
@@ -718,26 +842,27 @@ Each feature gate is designed for enabling/disabling a specific feature:
 - `EnableEquivalenceClassCache`: Enable the scheduler to cache equivalence of
   nodes when scheduling Pods.
 - `EndpointSlice`: Enables EndpointSlices for more scalable and extensible
-   network endpoints. See [Enabling EndpointSlices](/docs/tasks/administer-cluster/enabling-endpointslices/).
+   network endpoints. See [Enabling EndpointSlices](/docs/concepts/services-networking/endpoint-slices/).
 - `EndpointSliceNodeName`: Enables EndpointSlice `nodeName` field.
 - `EndpointSliceProxying`: When enabled, kube-proxy running
    on Linux will use EndpointSlices as the primary data source instead of
    Endpoints, enabling scalability and performance improvements. See
-   [Enabling Endpoint Slices](/docs/tasks/administer-cluster/enabling-endpointslices/).
+   [Enabling Endpoint Slices](/docs/concepts/services-networking/endpoint-slices/).
 - `EndpointSliceTerminatingCondition`: Enables EndpointSlice `terminating` and `serving`
    condition fields.
 - `EphemeralContainers`: Enable the ability to add
   {{< glossary_tooltip text="ephemeral containers" term_id="ephemeral-container" >}}
   to running pods.
 - `EvenPodsSpread`: Enable pods to be scheduled evenly across topology domains. See
-  [Pod Topology Spread Constraints](/docs/concepts/workloads/pods/pod-topology-spread-constraints/).
+  [Pod Topology Spread Constraints](/docs/concepts/scheduling-eviction/topology-spread-constraints/).
 - `ExecProbeTimeout`: Ensure kubelet respects exec probe timeouts.
   This feature gate exists in case any of your existing workloads depend on a
   now-corrected fault where Kubernetes ignored exec probe timeouts. See
   [readiness probes](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes).
 - `ExpandCSIVolumes`: Enable the expanding of CSI volumes.
 - `ExpandedDNSConfig`: Enable kubelet and kube-apiserver to allow more DNS
-  search paths and longer list of DNS search paths. See
+  search paths and longer list of DNS search paths. This feature requires container
+  runtime support(Containerd: v1.5.6 or higher, CRI-O: v1.22 or higher). See
   [Expanded DNS Configuration](/docs/concepts/services-networking/dns-pod-service/#expanded-dns-configuration).
 - `ExpandInUsePersistentVolumes`: Enable expanding in-use PVCs. See
   [Resizing an in-use PersistentVolumeClaim](/docs/concepts/storage/persistent-volumes/#resizing-an-in-use-persistentvolumeclaim).
@@ -751,7 +876,8 @@ Each feature gate is designed for enabling/disabling a specific feature:
   host mounts, or containers that are privileged or using specific non-namespaced
   capabilities (e.g. `MKNODE`, `SYS_MODULE` etc.). This should only be enabled
   if user namespace remapping is enabled in the Docker daemon.
-- `ExternalPolicyForExternalIP`: Fix a bug where ExternalTrafficPolicy is not applied to Service ExternalIPs.
+- `ExternalPolicyForExternalIP`: Fix a bug where ExternalTrafficPolicy is not
+  applied to Service ExternalIPs.
 - `GCERegionalPersistentDisk`: Enable the regional PD feature on GCE.
 - `GenericEphemeralVolume`: Enables ephemeral, inline volumes that support all features
   of normal volumes (can be provided by third-party storage vendors, storage capacity tracking,
@@ -762,6 +888,14 @@ Each feature gate is designed for enabling/disabling a specific feature:
   and gracefully terminate pods running on the node. See
   [Graceful Node Shutdown](/docs/concepts/architecture/nodes/#graceful-node-shutdown)
   for more details.
+- `GracefulNodeShutdownBasedOnPodPriority`: Enables the kubelet to check Pod priorities
+  when shutting down a node gracefully.
+- `GRPCContainerProbe`: Enables the gRPC probe method for {Liveness,Readiness,Startup}Probe.
+  See [Configure Liveness, Readiness and Startup Probes](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#define-a-grpc-liveness-probe).
+- `HonorPVReclaimPolicy`: Honor persistent volume reclaim policy when it is `Delete` irrespective of PV-PVC deletion ordering.
+  For more details, check the
+  [PersistentVolume deletion protection finalizer](/docs/concepts/storage/persistent-volumes/#persistentvolume-deletion-protection-finalizer)
+  documentation.
 - `HPAContainerMetrics`: Enable the `HorizontalPodAutoscaler` to scale based on
   metrics from individual containers in target pods.
 - `HPAScaleToZero`: Enables setting `minReplicas` to 0 for `HorizontalPodAutoscaler`
@@ -773,8 +907,19 @@ Each feature gate is designed for enabling/disabling a specific feature:
 - `HyperVContainer`: Enable
   [Hyper-V isolation](https://docs.microsoft.com/en-us/virtualization/windowscontainers/manage-containers/hyperv-container)
   for Windows containers.
+- `IdentifyPodOS`: Allows the Pod OS field to be specified. This helps in identifying
+  the OS of the pod authoritatively during the API server admission time.
+  In Kubernetes {{< skew currentVersion >}}, the allowed values for the `pod.spec.os.name`
+  are `windows` and `linux`.
 - `ImmutableEphemeralVolumes`: Allows for marking individual Secrets and ConfigMaps as
   immutable for better safety and performance.
+- `IndexedJob`: Allows the [Job](/docs/concepts/workloads/controllers/job/)
+  controller to manage Pod completions per completion index.
+- `IngressClassNamespacedParams`: Allow namespace-scoped parameters reference in
+  `IngressClass` resource. This feature adds two fields - `Scope` and `Namespace`
+  to `IngressClass.spec.parameters`.
+- `Initializers`: Allow asynchronous coordination of object creation using the
+  Initializers admission plugin.
 - `InTreePluginAWSUnregister`: Stops registering the aws-ebs in-tree plugin in kubelet
   and volume controllers.
 - `InTreePluginAzureDiskUnregister`: Stops registering the azuredisk in-tree plugin in kubelet
@@ -785,17 +930,21 @@ Each feature gate is designed for enabling/disabling a specific feature:
   and volume controllers.
 - `InTreePluginOpenStackUnregister`: Stops registering the OpenStack cinder in-tree plugin in kubelet
   and volume controllers.
+- `InTreePluginPortworxUnregister`: Stops registering the Portworx in-tree plugin in kubelet
+  and volume controllers.
+- `InTreePluginRBDUnregister`: Stops registering the RBD in-tree plugin in kubelet
+  and volume controllers.
 - `InTreePluginvSphereUnregister`: Stops registering the vSphere in-tree plugin in kubelet
   and volume controllers.
-- `IndexedJob`: Allows the [Job](/docs/concepts/workloads/controllers/job/)
-  controller to manage Pod completions per completion index.
-- `IngressClassNamespacedParams`: Allow namespace-scoped parameters reference in
-  `IngressClass` resource. This feature adds two fields - `Scope` and `Namespace`
-  to `IngressClass.spec.parameters`.
-- `Initializers`: Allow asynchronous coordination of object creation using the
-  Initializers admission plugin.
 - `IPv6DualStack`: Enable [dual stack](/docs/concepts/services-networking/dual-stack/)
   support for IPv6.
+- `JobMutableNodeSchedulingDirectives`: Allows updating node scheduling directives in
+  the pod template of [Job](/docs/concepts/workloads/controllers/job).
+- `JobReadyPods`: Enables tracking the number of Pods that have a `Ready`
+  [condition](/docs/concepts/workloads/pods/pod-lifecycle/#pod-conditions).
+  The count of `Ready` pods is recorded in the
+  [status](/docs/reference/kubernetes-api/workload-resources/job-v1/#JobStatus)
+  of a [Job](/docs/concepts/workloads/controllers/job) status.
 - `JobTrackingWithFinalizers`: Enables tracking [Job](/docs/concepts/workloads/controllers/job)
   completions without relying on Pods remaining in the cluster indefinitely.
   The Job controller uses Pod finalizers and a field in the Job status to keep
@@ -804,20 +953,26 @@ Each feature gate is designed for enabling/disabling a specific feature:
   a file specified using a config file.
   See [setting kubelet parameters via a config file](/docs/tasks/administer-cluster/kubelet-config-file/)
   for more details.
-- `KubeletCredentialProviders`: Enable kubelet exec credential providers for image pull credentials.
-- `KubeletInUserNamespace`: Enables support for running kubelet in a {{<glossary_tooltip text="user namespace" term_id="userns">}}.
+- `KubeletCredentialProviders`: Enable kubelet exec credential providers for
+  image pull credentials.
+- `KubeletInUserNamespace`: Enables support for running kubelet in a
+  {{<glossary_tooltip text="user namespace" term_id="userns">}}.
    See [Running Kubernetes Node Components as a Non-root User](/docs/tasks/administer-cluster/kubelet-in-userns/).
 - `KubeletPluginsWatcher`: Enable probe-based plugin watcher utility to enable kubelet
   to discover plugins such as [CSI volume drivers](/docs/concepts/storage/volumes/#csi).
 - `KubeletPodResources`: Enable the kubelet's pod resources gRPC endpoint. See
   [Support Device Monitoring](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/606-compute-device-assignment/README.md)
   for more details.
-- `KubeletPodResourcesGetAllocatable`: Enable the kubelet's pod resources `GetAllocatableResources` functionality.
-  This API augments the [resource allocation reporting](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/#monitoring-device-plugin-resources)
-  with informations about the allocatable resources, enabling clients to properly track the free compute resources on a node.
+- `KubeletPodResourcesGetAllocatable`: Enable the kubelet's pod resources
+  `GetAllocatableResources` functionality. This API augments the
+  [resource allocation reporting](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/#monitoring-device-plugin-resources)
+  with informations about the allocatable resources, enabling clients to properly
+  track the free compute resources on a node.
 - `LegacyNodeRoleBehavior`: When disabled, legacy behavior in service load balancers and
   node disruption will ignore the `node-role.kubernetes.io/master` label in favor of the
   feature-specific labels provided by `NodeDisruptionExclusion` and `ServiceNodeExclusion`.
+- `LegacyServiceAccountTokenNoAutoGeneration`: Stop auto-generation of Secret-based
+  [service account tokens](/docs/reference/access-authn-authz/authentication/#service-account-tokens).
 - `LocalStorageCapacityIsolation`: Enable the consumption of
   [local ephemeral storage](/docs/concepts/configuration/manage-resources-containers/)
   and also the `sizeLimit` property of an
@@ -831,39 +986,58 @@ Each feature gate is designed for enabling/disabling a specific feature:
   filesystem walk for better performance and accuracy.
 - `LogarithmicScaleDown`: Enable semi-random selection of pods to evict on controller scaledown
   based on logarithmic bucketing of pod timestamps.
+- `MaxUnavailableStatefulSet`: Enables setting the `maxUnavailable` field for the
+  [rolling update strategy](/docs/concepts/workloads/controllers/statefulset/#rolling-updates)
+  of a StatefulSet. The field specifies the maximum number of Pods
+  that can be unavailable during the update.
 - `MemoryManager`: Allows setting memory affinity for a container based on
   NUMA topology.
-- `MemoryQoS`: Enable memory protection and usage throttle on pod / container using cgroup v2 memory controller.
+- `MemoryQoS`: Enable memory protection and usage throttle on pod / container using
+  cgroup v2 memory controller.
+- `MinDomainsInPodTopologySpread`: Enable `minDomains` in Pod
+  [topology spread constraints](/docs/concepts/scheduling-eviction/topology-spread-constraints/).
 - `MixedProtocolLBService`: Enable using different protocols in the same `LoadBalancer` type
   Service instance.
 - `MountContainers`: Enable using utility containers on host as the volume mounter.
 - `MountPropagation`: Enable sharing volume mounted by one container to other containers or pods.
   For more details, please see [mount propagation](/docs/concepts/storage/volumes/#mount-propagation).
-- `NamespaceDefaultLabelName`: Configure the API Server to set an immutable {{< glossary_tooltip text="label" term_id="label" >}}
-  `kubernetes.io/metadata.name` on all namespaces, containing the namespace name.
-- `NetworkPolicyEndPort`: Enable use of the field `endPort` in NetworkPolicy objects, allowing the selection of a port range instead of a single port.
+- `NamespaceDefaultLabelName`: Configure the API Server to set an immutable
+  {{< glossary_tooltip text="label" term_id="label" >}} `kubernetes.io/metadata.name`
+  on all namespaces, containing the namespace name.
+- `NetworkPolicyEndPort`: Enable use of the field `endPort` in NetworkPolicy objects,
+  allowing the selection of a port range instead of a single port.
+- `NetworkPolicyStatus`: Enable the `status` subresource for NetworkPolicy objects.
 - `NodeDisruptionExclusion`: Enable use of the Node label `node.kubernetes.io/exclude-disruption`
   which prevents nodes from being evacuated during zone failures.
 - `NodeLease`: Enable the new Lease API to report node heartbeats, which could be used as a node health signal.
+- `NodeOutOfServiceVolumeDetach`: When a Node is marked out-of-service using the
+  `node.kubernetes.io/out-of-service` taint, Pods on the node will be forcefully deleted
+   if they can not tolerate this taint, and the volume detach operations for Pods terminating
+   on the node will happen immediately. The deleted Pods can recover quickly on different nodes.
 - `NodeSwap`: Enable the kubelet to allocate swap memory for Kubernetes workloads on a node.
   Must be used with `KubeletConfiguration.failSwapOn` set to false.
   For more details, please see [swap memory](/docs/concepts/architecture/nodes/#swap-memory)
 - `NonPreemptingPriority`: Enable `preemptionPolicy` field for PriorityClass and Pod.
-- `PVCProtection`: Enable the prevention of a PersistentVolumeClaim (PVC) from
-  being deleted when it is still used by any Pod.
+- `OpenAPIEnums`: Enables populating "enum" fields of OpenAPI schemas in the
+  spec returned from the API server.
+- `OpenAPIV3`: Enables the API server to publish OpenAPI v3.
 - `PodDeletionCost`: Enable the [Pod Deletion Cost](/docs/concepts/workloads/controllers/replicaset/#pod-deletion-cost)
    feature which allows users to influence ReplicaSet downscaling order.
 - `PersistentLocalVolumes`: Enable the usage of `local` volume type in Pods.
   Pod affinity has to be specified if requesting a `local` volume.
+- `PodAndContainerStatsFromCRI`: Configure the kubelet to gather container and
+  pod stats from the CRI container runtime rather than gathering them from cAdvisor.
 - `PodDisruptionBudget`: Enable the [PodDisruptionBudget](/docs/tasks/run-application/configure-pdb/) feature.
-- `PodAffinityNamespaceSelector`: Enable the [Pod Affinity Namespace Selector](/docs/concepts/scheduling-eviction/assign-pod-node/#namespace-selector)
-  and [CrossNamespacePodAffinity](/docs/concepts/policy/resource-quotas/#cross-namespace-pod-affinity-quota) quota scope features.
+- `PodAffinityNamespaceSelector`: Enable the
+  [Pod Affinity Namespace Selector](/docs/concepts/scheduling-eviction/assign-pod-node/#namespace-selector)
+  and [CrossNamespacePodAffinity](/docs/concepts/policy/resource-quotas/#cross-namespace-pod-affinity-quota)
+  quota scope features.
 - `PodOverhead`: Enable the [PodOverhead](/docs/concepts/scheduling-eviction/pod-overhead/)
   feature to account for pod overheads.
 - `PodPriority`: Enable the descheduling and preemption of Pods based on their
   [priorities](/docs/concepts/scheduling-eviction/pod-priority-preemption/).
 - `PodReadinessGates`: Enable the setting of `PodReadinessGate` field for extending
-  Pod readiness evaluation.  See [Pod readiness gate](/docs/concepts/workloads/pods/pod-lifecycle/#pod-readiness-gate)
+  Pod readiness evaluation. See [Pod readiness gate](/docs/concepts/workloads/pods/pod-lifecycle/#pod-readiness-gate)
   for more details.
 - `PodSecurity`: Enables the `PodSecurity` admission plugin.
 - `PodShareProcessNamespace`: Enable the setting of `shareProcessNamespace` in a Pod for sharing
@@ -874,21 +1048,30 @@ Each feature gate is designed for enabling/disabling a specific feature:
   the cluster.
 - `ProbeTerminationGracePeriod`: Enable [setting probe-level
   `terminationGracePeriodSeconds`](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#probe-level-terminationgraceperiodseconds)
-   on pods.  See the [enhancement proposal](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2238-liveness-probe-grace-period) for more details.
+  on pods. See the [enhancement proposal](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2238-liveness-probe-grace-period)
+  for more details.
 - `ProcMountType`: Enables control over the type proc mounts for containers
   by setting the `procMount` field of a SecurityContext.
 - `ProxyTerminatingEndpoints`: Enable the kube-proxy to handle terminating
   endpoints when `ExternalTrafficPolicy=Local`.
+- `PVCProtection`: Enable the prevention of a PersistentVolumeClaim (PVC) from
+  being deleted when it is still used by any Pod.
 - `QOSReserved`: Allows resource reservations at the QoS level preventing pods
   at lower QoS levels from bursting into resources requested at higher QoS levels
   (memory only for now).
 - `ReadWriteOncePod`: Enables the usage of `ReadWriteOncePod` PersistentVolume
   access mode.
+- `RecoverVolumeExpansionFailure`: Enables users to edit their PVCs to smaller
+  sizes so as they can recover from previously issued volume expansion failures.
+  See [Recovering from Failure when Expanding Volumes](/docs/concepts/storage/persistent-volumes/#recovering-from-failure-when-expanding-volumes)
+  for more details.
 - `RemainingItemCount`: Allow the API servers to show a count of remaining
   items in the response to a
   [chunking list request](/docs/reference/using-api/api-concepts/#retrieving-large-results-sets-in-chunks).
-- `RemoveSelfLink`: Deprecates and removes `selfLink` from ObjectMeta and
-  ListMeta.
+- `RemoveSelfLink`: Sets the `.metadata.selfLink` field to blank (empty string) for all
+  objects and collections. This field has been deprecated since the Kubernetes v1.16
+  release. When this feature is enabled, the `.metadata.selfLink` field remains part of
+  the Kubernetes API, but is always unset.
 - `RequestManagement`: Enables managing request concurrency with prioritization and fairness
   at each API server. Deprecated by `APIPriorityAndFairness` since 1.17.
 - `ResourceLimitsPriorityFunction`: Enable a scheduler priority function that
@@ -903,9 +1086,10 @@ Each feature gate is designed for enabling/disabling a specific feature:
   [Bound Service Account Tokens](https://github.com/kubernetes/enhancements/blob/master/keps/sig-auth/1205-bound-service-account-tokens/README.md)
   for more details.
 - `RotateKubeletClientCertificate`: Enable the rotation of the client TLS certificate on the kubelet.
-  See [kubelet configuration](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/#kubelet-configuration) for more details.
+  See [kubelet configuration](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/#kubelet-configuration)
+  for more details.
 - `RotateKubeletServerCertificate`: Enable the rotation of the server TLS certificate on the kubelet.
-  See [kubelet configuration](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/#kubelet-configuration)
+  See [kubelet configuration](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/#kubelet-configuration)
   for more details.
 - `RunAsGroup`: Enable control over the primary group ID set on the init
   processes of containers.
@@ -915,12 +1099,16 @@ Each feature gate is designed for enabling/disabling a specific feature:
   instead of the DaemonSet controller.
 - `SCTPSupport`: Enables the _SCTP_ `protocol` value in Pod, Service,
   Endpoints, EndpointSlice, and NetworkPolicy definitions.
-- `SeccompDefault`: Enables the use of `RuntimeDefault` as the default seccomp profile for all workloads.
+- `SeccompDefault`: Enables the use of `RuntimeDefault` as the default seccomp profile
+  for all workloads.
   The seccomp profile is specified in the `securityContext` of a Pod and/or a Container.
 - `SelectorIndex`: Allows label and field based indexes in API server watch
   cache to accelerate list operations.
 - `ServerSideApply`: Enables the [Sever Side Apply (SSA)](/docs/reference/using-api/server-side-apply/)
   feature on the API Server.
+- `ServerSideFieldValidation`: Enables server-side field validation. This means the validation
+  of resource schema is performed at the API server side rather than the client side
+  (for example, the `kubectl create` or `kubectl apply` command line).
 - `ServiceAccountIssuerDiscovery`: Enable OIDC discovery endpoints (issuer and
   JWKS URLs) for the service account issuer in the API server. See
   [Configure Service Accounts for Pods](/docs/tasks/configure-pod-container/configure-service-account/#service-account-issuer-discovery)
@@ -929,7 +1117,8 @@ Each feature gate is designed for enabling/disabling a specific feature:
 - `ServiceInternalTrafficPolicy`: Enables the `internalTrafficPolicy` field on Services
 - `ServiceLBNodePortControl`: Enables the `allocateLoadBalancerNodePorts` field on Services.
 - `ServiceLoadBalancerClass`: Enables the `loadBalancerClass` field on Services. See
-  [Specifying class of load balancer implementation](/docs/concepts/services-networking/service/#load-balancer-class) for more details.
+  [Specifying class of load balancer implementation](/docs/concepts/services-networking/service/#load-balancer-class)
+  for more details.
 - `ServiceLoadBalancerFinalizer`: Enable finalizer protection for Service load balancers.
 - `ServiceNodeExclusion`: Enable the exclusion of nodes from load balancers
   created by a cloud provider. A node is eligible for exclusion if labelled with
@@ -938,6 +1127,12 @@ Each feature gate is designed for enabling/disabling a specific feature:
   topology of the cluster. See
   [ServiceTopology](/docs/concepts/services-networking/service-topology/)
   for more details.
+- `ServiceIPStaticSubrange`: Enables a strategy for Services ClusterIP allocations, whereby the
+  ClusterIP range is subdivided. Dynamic allocated ClusterIP addresses will be allocated preferently
+  from the upper range allowing users to assign static ClusterIPs from the lower range with a low
+  risk of collision. See
+  [Avoiding collisions](/docs/concepts/services-networking/service/#avoiding-collisions)
+  for more details.
 - `SetHostnameAsFQDN`: Enable the ability of setting Fully Qualified Domain
   Name(FQDN) as the hostname of a pod. See
   [Pod's `setHostnameAsFQDN` field](/docs/concepts/services-networking/dns-pod-service/#pod-sethostnameasfqdn-field).
@@ -1011,7 +1206,7 @@ Each feature gate is designed for enabling/disabling a specific feature:
 - `WindowsEndpointSliceProxying`: When enabled, kube-proxy running on Windows
   will use EndpointSlices as the primary data source instead of Endpoints,
   enabling scalability and performance improvements. See
-  [Enabling Endpoint Slices](/docs/tasks/administer-cluster/enabling-endpointslices/).
+  [Enabling Endpoint Slices](/docs/concepts/services-networking/endpoint-slices/).
 - `WindowsGMSA`: Enables passing of GMSA credential specs from pods to container runtimes.
 - `WindowsHostProcessContainers`: Enables support for Windows HostProcess containers.
 - `WindowsRunAsUserName` : Enable support for running applications in Windows containers
@@ -1024,3 +1219,8 @@ Each feature gate is designed for enabling/disabling a specific feature:
 
 * The [deprecation policy](/docs/reference/using-api/deprecation-policy/) for Kubernetes explains
   the project's approach to removing features and components.
+* Since Kubernetes 1.24, new beta APIs are not enabled by default.  When enabling a beta
+  feature, you will also need to enable any associated API resources.
+  For example, to enable a particular resource like
+  `storage.k8s.io/v1beta1/csistoragecapacities`, set `--runtime-config=storage.k8s.io/v1beta1/csistoragecapacities`.
+  See [API Versioning](/docs/reference/using-api/#api-versioning) for more details on the command line flags.
diff --git a/content/en/docs/reference/command-line-tools-reference/kube-apiserver.md b/content/en/docs/reference/command-line-tools-reference/kube-apiserver.md
index 77b354dc70..ad2dc545b7 100644
--- a/content/en/docs/reference/command-line-tools-reference/kube-apiserver.md
+++ b/content/en/docs/reference/command-line-tools-reference/kube-apiserver.md
@@ -39,13 +39,6 @@ kube-apiserver [flags]
 </colgroup>
 <tbody>
 
-<tr>
-<td colspan="2">--add-dir-header</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, adds the file directory to the header of the log messages</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--admission-control-config-file string</td>
 </tr>
@@ -74,13 +67,6 @@ kube-apiserver [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, allow privileged containers. [default=false]</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--alsologtostderr</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>log to standard error as well as files</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--anonymous-auth&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: true</td>
 </tr>
@@ -95,13 +81,6 @@ kube-apiserver [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Identifiers of the API. The service account token authenticator will validate that tokens used against the API are bound to at least one of these audiences. If the --service-account-issuer flag is configured and this flag is not, this field defaults to a single element list containing the issuer URL.</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--apiserver-count int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 1</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The number of apiservers running in the cluster, must be a positive number. (In use when --endpoint-reconciler-type=master-count is enabled.)</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--audit-log-batch-buffer-size int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 10000</td>
 </tr>
@@ -169,7 +148,7 @@ kube-apiserver [flags]
 <td colspan="2">--audit-log-maxbackup int</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The maximum number of old audit log files to retain.</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The maximum number of old audit log files to retain. Setting a value of 0 will mean there's no restriction on the number of files.</p></td>
 </tr>
 
 <tr>
@@ -540,7 +519,7 @@ kube-apiserver [flags]
 <td colspan="2">--endpoint-reconciler-type string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "lease"</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Use an endpoint reconciler (master-count, lease, none)</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Use an endpoint reconciler (master-count, lease, none) master-count is deprecated, and will be removed in a future version.</p></td>
 </tr>
 
 <tr>
@@ -620,13 +599,6 @@ kube-apiserver [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Amount of time to retain events.</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--experimental-logging-sanitization</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>[Experimental] When enabled prevents logging of fields tagged as sensitive (passwords, keys, tokens).<br/>Runtime log sanitization may introduce significant computation overhead and therefore should not be enabled in production.</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--external-hostname string</td>
 </tr>
@@ -638,7 +610,7 @@ kube-apiserver [flags]
 <td colspan="2">--feature-gates &lt;comma-separated 'key=True|False' pairs&gt;</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for alpha/experimental features. Options are:<br/>APIListChunking=true|false (BETA - default=true)<br/>APIPriorityAndFairness=true|false (BETA - default=true)<br/>APIResponseCompression=true|false (BETA - default=true)<br/>APIServerIdentity=true|false (ALPHA - default=false)<br/>APIServerTracing=true|false (ALPHA - default=false)<br/>AllAlpha=true|false (ALPHA - default=false)<br/>AllBeta=true|false (BETA - default=false)<br/>AnyVolumeDataSource=true|false (ALPHA - default=false)<br/>AppArmor=true|false (BETA - default=true)<br/>CPUManager=true|false (BETA - default=true)<br/>CPUManagerPolicyOptions=true|false (ALPHA - default=false)<br/>CSIInlineVolume=true|false (BETA - default=true)<br/>CSIMigration=true|false (BETA - default=true)<br/>CSIMigrationAWS=true|false (BETA - default=false)<br/>CSIMigrationAzureDisk=true|false (BETA - default=false)<br/>CSIMigrationAzureFile=true|false (BETA - default=false)<br/>CSIMigrationGCE=true|false (BETA - default=false)<br/>CSIMigrationOpenStack=true|false (BETA - default=true)<br/>CSIMigrationvSphere=true|false (BETA - default=false)<br/>CSIStorageCapacity=true|false (BETA - default=true)<br/>CSIVolumeFSGroupPolicy=true|false (BETA - default=true)<br/>CSIVolumeHealth=true|false (ALPHA - default=false)<br/>CSRDuration=true|false (BETA - default=true)<br/>ConfigurableFSGroupPolicy=true|false (BETA - default=true)<br/>ControllerManagerLeaderMigration=true|false (BETA - default=true)<br/>CustomCPUCFSQuotaPeriod=true|false (ALPHA - default=false)<br/>DaemonSetUpdateSurge=true|false (BETA - default=true)<br/>DefaultPodTopologySpread=true|false (BETA - default=true)<br/>DelegateFSGroupToCSIDriver=true|false (ALPHA - default=false)<br/>DevicePlugins=true|false (BETA - default=true)<br/>DisableAcceleratorUsageMetrics=true|false (BETA - default=true)<br/>DisableCloudProviders=true|false (ALPHA - default=false)<br/>DownwardAPIHugePages=true|false (BETA - default=false)<br/>EfficientWatchResumption=true|false (BETA - default=true)<br/>EndpointSliceTerminatingCondition=true|false (BETA - default=true)<br/>EphemeralContainers=true|false (ALPHA - default=false)<br/>ExpandCSIVolumes=true|false (BETA - default=true)<br/>ExpandInUsePersistentVolumes=true|false (BETA - default=true)<br/>ExpandPersistentVolumes=true|false (BETA - default=true)<br/>ExpandedDNSConfig=true|false (ALPHA - default=false)<br/>ExperimentalHostUserNamespaceDefaulting=true|false (BETA - default=false)<br/>GenericEphemeralVolume=true|false (BETA - default=true)<br/>GracefulNodeShutdown=true|false (BETA - default=true)<br/>HPAContainerMetrics=true|false (ALPHA - default=false)<br/>HPAScaleToZero=true|false (ALPHA - default=false)<br/>IPv6DualStack=true|false (BETA - default=true)<br/>InTreePluginAWSUnregister=true|false (ALPHA - default=false)<br/>InTreePluginAzureDiskUnregister=true|false (ALPHA - default=false)<br/>InTreePluginAzureFileUnregister=true|false (ALPHA - default=false)<br/>InTreePluginGCEUnregister=true|false (ALPHA - default=false)<br/>InTreePluginOpenStackUnregister=true|false (ALPHA - default=false)<br/>InTreePluginvSphereUnregister=true|false (ALPHA - default=false)<br/>IndexedJob=true|false (BETA - default=true)<br/>IngressClassNamespacedParams=true|false (BETA - default=true)<br/>JobTrackingWithFinalizers=true|false (ALPHA - default=false)<br/>KubeletCredentialProviders=true|false (ALPHA - default=false)<br/>KubeletInUserNamespace=true|false (ALPHA - default=false)<br/>KubeletPodResources=true|false (BETA - default=true)<br/>KubeletPodResourcesGetAllocatable=true|false (ALPHA - default=false)<br/>LocalStorageCapacityIsolation=true|false (BETA - default=true)<br/>LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - default=false)<br/>LogarithmicScaleDown=true|false (BETA - default=true)<br/>MemoryManager=true|false (BETA - default=true)<br/>MemoryQoS=true|false (ALPHA - default=false)<br/>MixedProtocolLBService=true|false (ALPHA - default=false)<br/>NetworkPolicyEndPort=true|false (BETA - default=true)<br/>NodeSwap=true|false (ALPHA - default=false)<br/>NonPreemptingPriority=true|false (BETA - default=true)<br/>PodAffinityNamespaceSelector=true|false (BETA - default=true)<br/>PodDeletionCost=true|false (BETA - default=true)<br/>PodOverhead=true|false (BETA - default=true)<br/>PodSecurity=true|false (ALPHA - default=false)<br/>PreferNominatedNode=true|false (BETA - default=true)<br/>ProbeTerminationGracePeriod=true|false (BETA - default=false)<br/>ProcMountType=true|false (ALPHA - default=false)<br/>ProxyTerminatingEndpoints=true|false (ALPHA - default=false)<br/>QOSReserved=true|false (ALPHA - default=false)<br/>ReadWriteOncePod=true|false (ALPHA - default=false)<br/>RemainingItemCount=true|false (BETA - default=true)<br/>RemoveSelfLink=true|false (BETA - default=true)<br/>RotateKubeletServerCertificate=true|false (BETA - default=true)<br/>SeccompDefault=true|false (ALPHA - default=false)<br/>ServiceInternalTrafficPolicy=true|false (BETA - default=true)<br/>ServiceLBNodePortControl=true|false (BETA - default=true)<br/>ServiceLoadBalancerClass=true|false (BETA - default=true)<br/>SizeMemoryBackedVolumes=true|false (BETA - default=true)<br/>StatefulSetMinReadySeconds=true|false (ALPHA - default=false)<br/>StorageVersionAPI=true|false (ALPHA - default=false)<br/>StorageVersionHash=true|false (BETA - default=true)<br/>SuspendJob=true|false (BETA - default=true)<br/>TTLAfterFinished=true|false (BETA - default=true)<br/>TopologyAwareHints=true|false (ALPHA - default=false)<br/>TopologyManager=true|false (BETA - default=true)<br/>VolumeCapacityPriority=true|false (ALPHA - default=false)<br/>WinDSR=true|false (ALPHA - default=false)<br/>WinOverlay=true|false (BETA - default=true)<br/>WindowsHostProcessContainers=true|false (ALPHA - default=false)</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for alpha/experimental features. Options are:<br/>APIListChunking=true|false (BETA - default=true)<br/>APIPriorityAndFairness=true|false (BETA - default=true)<br/>APIResponseCompression=true|false (BETA - default=true)<br/>APIServerIdentity=true|false (ALPHA - default=false)<br/>APIServerTracing=true|false (ALPHA - default=false)<br/>AllAlpha=true|false (ALPHA - default=false)<br/>AllBeta=true|false (BETA - default=false)<br/>AnyVolumeDataSource=true|false (BETA - default=true)<br/>AppArmor=true|false (BETA - default=true)<br/>CPUManager=true|false (BETA - default=true)<br/>CPUManagerPolicyAlphaOptions=true|false (ALPHA - default=false)<br/>CPUManagerPolicyBetaOptions=true|false (BETA - default=true)<br/>CPUManagerPolicyOptions=true|false (BETA - default=true)<br/>CSIInlineVolume=true|false (BETA - default=true)<br/>CSIMigration=true|false (BETA - default=true)<br/>CSIMigrationAWS=true|false (BETA - default=true)<br/>CSIMigrationAzureFile=true|false (BETA - default=true)<br/>CSIMigrationGCE=true|false (BETA - default=true)<br/>CSIMigrationPortworx=true|false (ALPHA - default=false)<br/>CSIMigrationRBD=true|false (ALPHA - default=false)<br/>CSIMigrationvSphere=true|false (BETA - default=false)<br/>CSIVolumeHealth=true|false (ALPHA - default=false)<br/>ContextualLogging=true|false (ALPHA - default=false)<br/>CronJobTimeZone=true|false (ALPHA - default=false)<br/>CustomCPUCFSQuotaPeriod=true|false (ALPHA - default=false)<br/>CustomResourceValidationExpressions=true|false (ALPHA - default=false)<br/>DaemonSetUpdateSurge=true|false (BETA - default=true)<br/>DelegateFSGroupToCSIDriver=true|false (BETA - default=true)<br/>DevicePlugins=true|false (BETA - default=true)<br/>DisableAcceleratorUsageMetrics=true|false (BETA - default=true)<br/>DisableCloudProviders=true|false (ALPHA - default=false)<br/>DisableKubeletCloudCredentialProviders=true|false (ALPHA - default=false)<br/>DownwardAPIHugePages=true|false (BETA - default=true)<br/>EndpointSliceTerminatingCondition=true|false (BETA - default=true)<br/>EphemeralContainers=true|false (BETA - default=true)<br/>ExpandedDNSConfig=true|false (ALPHA - default=false)<br/>ExperimentalHostUserNamespaceDefaulting=true|false (BETA - default=false)<br/>GRPCContainerProbe=true|false (BETA - default=true)<br/>GracefulNodeShutdown=true|false (BETA - default=true)<br/>GracefulNodeShutdownBasedOnPodPriority=true|false (BETA - default=true)<br/>HPAContainerMetrics=true|false (ALPHA - default=false)<br/>HPAScaleToZero=true|false (ALPHA - default=false)<br/>HonorPVReclaimPolicy=true|false (ALPHA - default=false)<br/>IdentifyPodOS=true|false (BETA - default=true)<br/>InTreePluginAWSUnregister=true|false (ALPHA - default=false)<br/>InTreePluginAzureDiskUnregister=true|false (ALPHA - default=false)<br/>InTreePluginAzureFileUnregister=true|false (ALPHA - default=false)<br/>InTreePluginGCEUnregister=true|false (ALPHA - default=false)<br/>InTreePluginOpenStackUnregister=true|false (ALPHA - default=false)<br/>InTreePluginPortworxUnregister=true|false (ALPHA - default=false)<br/>InTreePluginRBDUnregister=true|false (ALPHA - default=false)<br/>InTreePluginvSphereUnregister=true|false (ALPHA - default=false)<br/>JobMutableNodeSchedulingDirectives=true|false (BETA - default=true)<br/>JobReadyPods=true|false (BETA - default=true)<br/>JobTrackingWithFinalizers=true|false (BETA - default=false)<br/>KubeletCredentialProviders=true|false (BETA - default=true)<br/>KubeletInUserNamespace=true|false (ALPHA - default=false)<br/>KubeletPodResources=true|false (BETA - default=true)<br/>KubeletPodResourcesGetAllocatable=true|false (BETA - default=true)<br/>LegacyServiceAccountTokenNoAutoGeneration=true|false (BETA - default=true)<br/>LocalStorageCapacityIsolation=true|false (BETA - default=true)<br/>LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - default=false)<br/>LogarithmicScaleDown=true|false (BETA - default=true)<br/>MaxUnavailableStatefulSet=true|false (ALPHA - default=false)<br/>MemoryManager=true|false (BETA - default=true)<br/>MemoryQoS=true|false (ALPHA - default=false)<br/>MinDomainsInPodTopologySpread=true|false (ALPHA - default=false)<br/>MixedProtocolLBService=true|false (BETA - default=true)<br/>NetworkPolicyEndPort=true|false (BETA - default=true)<br/>NetworkPolicyStatus=true|false (ALPHA - default=false)<br/>NodeOutOfServiceVolumeDetach=true|false (ALPHA - default=false)<br/>NodeSwap=true|false (ALPHA - default=false)<br/>OpenAPIEnums=true|false (BETA - default=true)<br/>OpenAPIV3=true|false (BETA - default=true)<br/>PodAndContainerStatsFromCRI=true|false (ALPHA - default=false)<br/>PodDeletionCost=true|false (BETA - default=true)<br/>PodSecurity=true|false (BETA - default=true)<br/>ProbeTerminationGracePeriod=true|false (BETA - default=false)<br/>ProcMountType=true|false (ALPHA - default=false)<br/>ProxyTerminatingEndpoints=true|false (ALPHA - default=false)<br/>QOSReserved=true|false (ALPHA - default=false)<br/>ReadWriteOncePod=true|false (ALPHA - default=false)<br/>RecoverVolumeExpansionFailure=true|false (ALPHA - default=false)<br/>RemainingItemCount=true|false (BETA - default=true)<br/>RotateKubeletServerCertificate=true|false (BETA - default=true)<br/>SeccompDefault=true|false (ALPHA - default=false)<br/>ServerSideFieldValidation=true|false (ALPHA - default=false)<br/>ServiceIPStaticSubrange=true|false (ALPHA - default=false)<br/>ServiceInternalTrafficPolicy=true|false (BETA - default=true)<br/>SizeMemoryBackedVolumes=true|false (BETA - default=true)<br/>StatefulSetAutoDeletePVC=true|false (ALPHA - default=false)<br/>StatefulSetMinReadySeconds=true|false (BETA - default=true)<br/>StorageVersionAPI=true|false (ALPHA - default=false)<br/>StorageVersionHash=true|false (BETA - default=true)<br/>TopologyAwareHints=true|false (BETA - default=true)<br/>TopologyManager=true|false (BETA - default=true)<br/>VolumeCapacityPriority=true|false (ALPHA - default=false)<br/>WinDSR=true|false (ALPHA - default=false)<br/>WinOverlay=true|false (BETA - default=true)<br/>WindowsHostProcessContainers=true|false (BETA - default=true)</p></td>
 </tr>
 
 <tr>
@@ -732,34 +704,6 @@ kube-apiserver [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>This option represents the maximum amount of time it should take for apiserver to complete its startup sequence and become live. From apiserver's start time to when this amount of time has elapsed, /livez will assume that unfinished post-start hooks will complete successfully and therefore return true.</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--log-backtrace-at &lt;a string in the form 'file:N'&gt;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: :0</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>when logging hits line file:N, emit a stack trace</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--log-dir string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If non-empty, write log files in this directory</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--log-file string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If non-empty, use this log file</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--log-file-max-size uint&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 1800</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Defines the maximum size a log file can grow to. Unit is megabytes. If the value is 0, the maximum file size is unlimited.</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--log-flush-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 5s</td>
 </tr>
@@ -771,14 +715,7 @@ kube-apiserver [flags]
 <td colspan="2">--logging-format string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "text"</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Sets the log format. Permitted formats: &quot;text&quot;.<br/>Non-default formats don't honor these flags: --add-dir-header, --alsologtostderr, --log-backtrace-at, --log-dir, --log-file, --log-file-max-size, --logtostderr, --one-output, --skip-headers, --skip-log-headers, --stderrthreshold, --vmodule, --log-flush-frequency.<br/>Non-default choices are currently alpha and subject to change without warning.</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--logtostderr&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: true</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>log to standard error instead of files</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Sets the log format. Permitted formats: &quot;text&quot;.<br/>Non-default formats don't honor these flags: --add-dir-header, --alsologtostderr, --log-backtrace-at, --log-dir, --log-file, --log-file-max-size, --logtostderr, --one-output, --skip-headers, --skip-log-headers, --stderrthreshold, --vmodule.<br/>Non-default choices are currently alpha and subject to change without warning.</p></td>
 </tr>
 
 <tr>
@@ -862,7 +799,7 @@ kube-apiserver [flags]
 <td colspan="2">--oidc-signing-algs strings&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "RS256"</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Comma-separated list of allowed JOSE asymmetric signing algorithms. JWTs with a 'alg' header value not in this list will be rejected. Values are defined by RFC 7518 https://tools.ietf.org/html/rfc7518#section-3.1.</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Comma-separated list of allowed JOSE asymmetric signing algorithms. JWTs with a supported 'alg' header values are: RS256, RS384, RS512, ES256, ES384, ES512, PS256, PS384, PS512. Values are defined by RFC 7518 https://tools.ietf.org/html/rfc7518#section-3.1.</p></td>
 </tr>
 
 <tr>
@@ -879,13 +816,6 @@ kube-apiserver [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If provided, all usernames will be prefixed with this value. If not provided, username claims other than 'email' are prefixed by the issuer URL to avoid clashes. To skip any prefixing, provide the value '-'.</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--one-output</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, only write logs to their native severity level (vs also writing to each lower severity level)</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--permit-address-sharing</td>
 </tr>
@@ -995,14 +925,14 @@ kube-apiserver [flags]
 <td colspan="2">--service-account-jwks-uri string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Overrides the URI for the JSON Web Key Set in the discovery doc served at /.well-known/openid-configuration. This flag is useful if the discovery docand key set are served to relying parties from a URL other than the API server's external (as auto-detected or overridden with external-hostname). Only valid if the ServiceAccountIssuerDiscovery feature gate is enabled.</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Overrides the URI for the JSON Web Key Set in the discovery doc served at /.well-known/openid-configuration. This flag is useful if the discovery docand key set are served to relying parties from a URL other than the API server's external (as auto-detected or overridden with external-hostname).</p></td>
 </tr>
 
 <tr>
 <td colspan="2">--service-account-key-file strings</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>File containing PEM-encoded x509 RSA or ECDSA private or public keys, used to verify ServiceAccount tokens. The specified file can contain multiple keys, and the flag can be specified multiple times with different files. If unspecified, --tls-private-key-file is used. Must be specified when --service-account-signing-key is provided</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>File containing PEM-encoded x509 RSA or ECDSA private or public keys, used to verify ServiceAccount tokens. The specified file can contain multiple keys, and the flag can be specified multiple times with different files. If unspecified, --tls-private-key-file is used. Must be specified when --service-account-signing-key-file is provided</p></td>
 </tr>
 
 <tr>
@@ -1055,24 +985,10 @@ kube-apiserver [flags]
 </tr>
 
 <tr>
-<td colspan="2">--skip-headers</td>
+<td colspan="2">--shutdown-send-retry-after</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, avoid header prefixes in the log messages</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--skip-log-headers</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, avoid headers when opening log files</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--stderrthreshold int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 2</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>logs at or above this threshold go to stderr</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true the HTTP Server will continue listening until all non long running request(s) in flight have been drained, during this window all incoming requests will be rejected with a status code 429 and a 'Retry-After' response header, in addition 'Connection: close' response header is set in order to tear down the TCP connection when idle.</p></td>
 </tr>
 
 <tr>
@@ -1107,7 +1023,7 @@ kube-apiserver [flags]
 <td colspan="2">--tls-cipher-suites strings</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Comma-separated list of cipher suites for the server. If omitted, the default Go cipher suites will be used.<br/>Preferred values: TLS_AES_128_GCM_SHA256, TLS_AES_256_GCM_SHA384, TLS_CHACHA20_POLY1305_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_GCM_SHA384.<br/>Insecure values: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_RC4_128_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_RC4_128_SHA.</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Comma-separated list of cipher suites for the server. If omitted, the default Go cipher suites will be used.<br/>Preferred values: TLS_AES_128_GCM_SHA256, TLS_AES_256_GCM_SHA384, TLS_CHACHA20_POLY1305_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_GCM_SHA384.<br/>Insecure values: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_RC4_128_SHA, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_RC4_128_SHA.</p></td>
 </tr>
 
 <tr>
@@ -1160,10 +1076,10 @@ kube-apiserver [flags]
 </tr>
 
 <tr>
-<td colspan="2">--vmodule &lt;comma-separated 'pattern=N' settings&gt;</td>
+<td colspan="2">--vmodule pattern=N,...</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>comma-separated list of pattern=N settings for file-filtered logging</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>comma-separated list of pattern=N settings for file-filtered logging (only works for text log format)</p></td>
 </tr>
 
 <tr>
diff --git a/content/en/docs/reference/command-line-tools-reference/kube-controller-manager.md b/content/en/docs/reference/command-line-tools-reference/kube-controller-manager.md
index a8389c69f0..f0d0ee4e98 100644
--- a/content/en/docs/reference/command-line-tools-reference/kube-controller-manager.md
+++ b/content/en/docs/reference/command-line-tools-reference/kube-controller-manager.md
@@ -43,13 +43,6 @@ kube-controller-manager [flags]
 </colgroup>
 <tbody>
 
-<tr>
-<td colspan="2">--add-dir-header</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, adds the file directory to the header of the log messages</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--allocate-node-cidrs</td>
 </tr>
@@ -64,13 +57,6 @@ kube-controller-manager [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The map from metric-label to value allow-list of this label. The key's format is &lt;MetricName&gt;,&lt;LabelName&gt;. The value's format is &lt;allowed_value&gt;,&lt;allowed_value&gt;...e.g. metric1,label1='v1,v2,v3', metric1,label2='v1,v2,v3' metric2,label1='v1,v2,v3'.</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--alsologtostderr</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>log to standard error as well as files</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--attach-detach-reconcile-sync-period duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 1m0s</td>
 </tr>
@@ -288,6 +274,13 @@ kube-controller-manager [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The number of endpoint syncing operations that will be done concurrently. Larger number = faster endpoint updating, but more CPU (and network) load</p></td>
 </tr>
 
+<tr>
+<td colspan="2">--concurrent-ephemeralvolume-syncs int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 5</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The number of ephemeral volume syncing operations that will be done concurrently. Larger number = faster ephemeral volume updating, but more CPU (and network) load</p></td>
+</tr>
+
 <tr>
 <td colspan="2">--concurrent-gc-syncs int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 20</td>
 </tr>
@@ -386,13 +379,6 @@ kube-controller-manager [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A list of controllers to enable. '*' enables all on-by-default controllers, 'foo' enables the controller named 'foo', '-foo' disables the controller named 'foo'.<br/>All controllers: attachdetach, bootstrapsigner, cloud-node-lifecycle, clusterrole-aggregation, cronjob, csrapproving, csrcleaner, csrsigning, daemonset, deployment, disruption, endpoint, endpointslice, endpointslicemirroring, ephemeral-volume, garbagecollector, horizontalpodautoscaling, job, namespace, nodeipam, nodelifecycle, persistentvolume-binder, persistentvolume-expander, podgc, pv-protection, pvc-protection, replicaset, replicationcontroller, resourcequota, root-ca-cert-publisher, route, service, serviceaccount, serviceaccount-token, statefulset, tokencleaner, ttl, ttl-after-finished<br/>Disabled-by-default controllers: bootstrapsigner, tokencleaner</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--deployment-controller-sync-period duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 30s</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Period for syncing the deployments.</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--disable-attach-detach-reconcile-sync</td>
 </tr>
@@ -456,13 +442,6 @@ kube-controller-manager [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The length of endpoint slice updates batching period. Processing of pod changes will be delayed by this duration to join them with potential upcoming updates and reduce the overall number of endpoints updates. Larger number = higher endpoint programming latency, but lower number of endpoints revision generated</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--experimental-logging-sanitization</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>[Experimental] When enabled prevents logging of fields tagged as sensitive (passwords, keys, tokens).<br/>Runtime log sanitization may introduce significant computation overhead and therefore should not be enabled in production.</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--external-cloud-volume-plugin string</td>
 </tr>
@@ -474,7 +453,7 @@ kube-controller-manager [flags]
 <td colspan="2">--feature-gates &lt;comma-separated 'key=True|False' pairs&gt;</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for alpha/experimental features. Options are:<br/>APIListChunking=true|false (BETA - default=true)<br/>APIPriorityAndFairness=true|false (BETA - default=true)<br/>APIResponseCompression=true|false (BETA - default=true)<br/>APIServerIdentity=true|false (ALPHA - default=false)<br/>APIServerTracing=true|false (ALPHA - default=false)<br/>AllAlpha=true|false (ALPHA - default=false)<br/>AllBeta=true|false (BETA - default=false)<br/>AnyVolumeDataSource=true|false (ALPHA - default=false)<br/>AppArmor=true|false (BETA - default=true)<br/>CPUManager=true|false (BETA - default=true)<br/>CPUManagerPolicyOptions=true|false (ALPHA - default=false)<br/>CSIInlineVolume=true|false (BETA - default=true)<br/>CSIMigration=true|false (BETA - default=true)<br/>CSIMigrationAWS=true|false (BETA - default=false)<br/>CSIMigrationAzureDisk=true|false (BETA - default=false)<br/>CSIMigrationAzureFile=true|false (BETA - default=false)<br/>CSIMigrationGCE=true|false (BETA - default=false)<br/>CSIMigrationOpenStack=true|false (BETA - default=true)<br/>CSIMigrationvSphere=true|false (BETA - default=false)<br/>CSIStorageCapacity=true|false (BETA - default=true)<br/>CSIVolumeFSGroupPolicy=true|false (BETA - default=true)<br/>CSIVolumeHealth=true|false (ALPHA - default=false)<br/>CSRDuration=true|false (BETA - default=true)<br/>ConfigurableFSGroupPolicy=true|false (BETA - default=true)<br/>ControllerManagerLeaderMigration=true|false (BETA - default=true)<br/>CustomCPUCFSQuotaPeriod=true|false (ALPHA - default=false)<br/>DaemonSetUpdateSurge=true|false (BETA - default=true)<br/>DefaultPodTopologySpread=true|false (BETA - default=true)<br/>DelegateFSGroupToCSIDriver=true|false (ALPHA - default=false)<br/>DevicePlugins=true|false (BETA - default=true)<br/>DisableAcceleratorUsageMetrics=true|false (BETA - default=true)<br/>DisableCloudProviders=true|false (ALPHA - default=false)<br/>DownwardAPIHugePages=true|false (BETA - default=false)<br/>EfficientWatchResumption=true|false (BETA - default=true)<br/>EndpointSliceTerminatingCondition=true|false (BETA - default=true)<br/>EphemeralContainers=true|false (ALPHA - default=false)<br/>ExpandCSIVolumes=true|false (BETA - default=true)<br/>ExpandInUsePersistentVolumes=true|false (BETA - default=true)<br/>ExpandPersistentVolumes=true|false (BETA - default=true)<br/>ExpandedDNSConfig=true|false (ALPHA - default=false)<br/>ExperimentalHostUserNamespaceDefaulting=true|false (BETA - default=false)<br/>GenericEphemeralVolume=true|false (BETA - default=true)<br/>GracefulNodeShutdown=true|false (BETA - default=true)<br/>HPAContainerMetrics=true|false (ALPHA - default=false)<br/>HPAScaleToZero=true|false (ALPHA - default=false)<br/>IPv6DualStack=true|false (BETA - default=true)<br/>InTreePluginAWSUnregister=true|false (ALPHA - default=false)<br/>InTreePluginAzureDiskUnregister=true|false (ALPHA - default=false)<br/>InTreePluginAzureFileUnregister=true|false (ALPHA - default=false)<br/>InTreePluginGCEUnregister=true|false (ALPHA - default=false)<br/>InTreePluginOpenStackUnregister=true|false (ALPHA - default=false)<br/>InTreePluginvSphereUnregister=true|false (ALPHA - default=false)<br/>IndexedJob=true|false (BETA - default=true)<br/>IngressClassNamespacedParams=true|false (BETA - default=true)<br/>JobTrackingWithFinalizers=true|false (ALPHA - default=false)<br/>KubeletCredentialProviders=true|false (ALPHA - default=false)<br/>KubeletInUserNamespace=true|false (ALPHA - default=false)<br/>KubeletPodResources=true|false (BETA - default=true)<br/>KubeletPodResourcesGetAllocatable=true|false (ALPHA - default=false)<br/>LocalStorageCapacityIsolation=true|false (BETA - default=true)<br/>LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - default=false)<br/>LogarithmicScaleDown=true|false (BETA - default=true)<br/>MemoryManager=true|false (BETA - default=true)<br/>MemoryQoS=true|false (ALPHA - default=false)<br/>MixedProtocolLBService=true|false (ALPHA - default=false)<br/>NetworkPolicyEndPort=true|false (BETA - default=true)<br/>NodeSwap=true|false (ALPHA - default=false)<br/>NonPreemptingPriority=true|false (BETA - default=true)<br/>PodAffinityNamespaceSelector=true|false (BETA - default=true)<br/>PodDeletionCost=true|false (BETA - default=true)<br/>PodOverhead=true|false (BETA - default=true)<br/>PodSecurity=true|false (ALPHA - default=false)<br/>PreferNominatedNode=true|false (BETA - default=true)<br/>ProbeTerminationGracePeriod=true|false (BETA - default=false)<br/>ProcMountType=true|false (ALPHA - default=false)<br/>ProxyTerminatingEndpoints=true|false (ALPHA - default=false)<br/>QOSReserved=true|false (ALPHA - default=false)<br/>ReadWriteOncePod=true|false (ALPHA - default=false)<br/>RemainingItemCount=true|false (BETA - default=true)<br/>RemoveSelfLink=true|false (BETA - default=true)<br/>RotateKubeletServerCertificate=true|false (BETA - default=true)<br/>SeccompDefault=true|false (ALPHA - default=false)<br/>ServiceInternalTrafficPolicy=true|false (BETA - default=true)<br/>ServiceLBNodePortControl=true|false (BETA - default=true)<br/>ServiceLoadBalancerClass=true|false (BETA - default=true)<br/>SizeMemoryBackedVolumes=true|false (BETA - default=true)<br/>StatefulSetMinReadySeconds=true|false (ALPHA - default=false)<br/>StorageVersionAPI=true|false (ALPHA - default=false)<br/>StorageVersionHash=true|false (BETA - default=true)<br/>SuspendJob=true|false (BETA - default=true)<br/>TTLAfterFinished=true|false (BETA - default=true)<br/>TopologyAwareHints=true|false (ALPHA - default=false)<br/>TopologyManager=true|false (BETA - default=true)<br/>VolumeCapacityPriority=true|false (ALPHA - default=false)<br/>WinDSR=true|false (ALPHA - default=false)<br/>WinOverlay=true|false (BETA - default=true)<br/>WindowsHostProcessContainers=true|false (ALPHA - default=false)</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for alpha/experimental features. Options are:<br/>APIListChunking=true|false (BETA - default=true)<br/>APIPriorityAndFairness=true|false (BETA - default=true)<br/>APIResponseCompression=true|false (BETA - default=true)<br/>APIServerIdentity=true|false (ALPHA - default=false)<br/>APIServerTracing=true|false (ALPHA - default=false)<br/>AllAlpha=true|false (ALPHA - default=false)<br/>AllBeta=true|false (BETA - default=false)<br/>AnyVolumeDataSource=true|false (BETA - default=true)<br/>AppArmor=true|false (BETA - default=true)<br/>CPUManager=true|false (BETA - default=true)<br/>CPUManagerPolicyAlphaOptions=true|false (ALPHA - default=false)<br/>CPUManagerPolicyBetaOptions=true|false (BETA - default=true)<br/>CPUManagerPolicyOptions=true|false (BETA - default=true)<br/>CSIInlineVolume=true|false (BETA - default=true)<br/>CSIMigration=true|false (BETA - default=true)<br/>CSIMigrationAWS=true|false (BETA - default=true)<br/>CSIMigrationAzureFile=true|false (BETA - default=true)<br/>CSIMigrationGCE=true|false (BETA - default=true)<br/>CSIMigrationPortworx=true|false (ALPHA - default=false)<br/>CSIMigrationRBD=true|false (ALPHA - default=false)<br/>CSIMigrationvSphere=true|false (BETA - default=false)<br/>CSIVolumeHealth=true|false (ALPHA - default=false)<br/>ContextualLogging=true|false (ALPHA - default=false)<br/>CronJobTimeZone=true|false (ALPHA - default=false)<br/>CustomCPUCFSQuotaPeriod=true|false (ALPHA - default=false)<br/>CustomResourceValidationExpressions=true|false (ALPHA - default=false)<br/>DaemonSetUpdateSurge=true|false (BETA - default=true)<br/>DelegateFSGroupToCSIDriver=true|false (BETA - default=true)<br/>DevicePlugins=true|false (BETA - default=true)<br/>DisableAcceleratorUsageMetrics=true|false (BETA - default=true)<br/>DisableCloudProviders=true|false (ALPHA - default=false)<br/>DisableKubeletCloudCredentialProviders=true|false (ALPHA - default=false)<br/>DownwardAPIHugePages=true|false (BETA - default=true)<br/>EndpointSliceTerminatingCondition=true|false (BETA - default=true)<br/>EphemeralContainers=true|false (BETA - default=true)<br/>ExpandedDNSConfig=true|false (ALPHA - default=false)<br/>ExperimentalHostUserNamespaceDefaulting=true|false (BETA - default=false)<br/>GRPCContainerProbe=true|false (BETA - default=true)<br/>GracefulNodeShutdown=true|false (BETA - default=true)<br/>GracefulNodeShutdownBasedOnPodPriority=true|false (BETA - default=true)<br/>HPAContainerMetrics=true|false (ALPHA - default=false)<br/>HPAScaleToZero=true|false (ALPHA - default=false)<br/>HonorPVReclaimPolicy=true|false (ALPHA - default=false)<br/>IdentifyPodOS=true|false (BETA - default=true)<br/>InTreePluginAWSUnregister=true|false (ALPHA - default=false)<br/>InTreePluginAzureDiskUnregister=true|false (ALPHA - default=false)<br/>InTreePluginAzureFileUnregister=true|false (ALPHA - default=false)<br/>InTreePluginGCEUnregister=true|false (ALPHA - default=false)<br/>InTreePluginOpenStackUnregister=true|false (ALPHA - default=false)<br/>InTreePluginPortworxUnregister=true|false (ALPHA - default=false)<br/>InTreePluginRBDUnregister=true|false (ALPHA - default=false)<br/>InTreePluginvSphereUnregister=true|false (ALPHA - default=false)<br/>JobMutableNodeSchedulingDirectives=true|false (BETA - default=true)<br/>JobReadyPods=true|false (BETA - default=true)<br/>JobTrackingWithFinalizers=true|false (BETA - default=false)<br/>KubeletCredentialProviders=true|false (BETA - default=true)<br/>KubeletInUserNamespace=true|false (ALPHA - default=false)<br/>KubeletPodResources=true|false (BETA - default=true)<br/>KubeletPodResourcesGetAllocatable=true|false (BETA - default=true)<br/>LegacyServiceAccountTokenNoAutoGeneration=true|false (BETA - default=true)<br/>LocalStorageCapacityIsolation=true|false (BETA - default=true)<br/>LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - default=false)<br/>LogarithmicScaleDown=true|false (BETA - default=true)<br/>MaxUnavailableStatefulSet=true|false (ALPHA - default=false)<br/>MemoryManager=true|false (BETA - default=true)<br/>MemoryQoS=true|false (ALPHA - default=false)<br/>MinDomainsInPodTopologySpread=true|false (ALPHA - default=false)<br/>MixedProtocolLBService=true|false (BETA - default=true)<br/>NetworkPolicyEndPort=true|false (BETA - default=true)<br/>NetworkPolicyStatus=true|false (ALPHA - default=false)<br/>NodeOutOfServiceVolumeDetach=true|false (ALPHA - default=false)<br/>NodeSwap=true|false (ALPHA - default=false)<br/>OpenAPIEnums=true|false (BETA - default=true)<br/>OpenAPIV3=true|false (BETA - default=true)<br/>PodAndContainerStatsFromCRI=true|false (ALPHA - default=false)<br/>PodDeletionCost=true|false (BETA - default=true)<br/>PodSecurity=true|false (BETA - default=true)<br/>ProbeTerminationGracePeriod=true|false (BETA - default=false)<br/>ProcMountType=true|false (ALPHA - default=false)<br/>ProxyTerminatingEndpoints=true|false (ALPHA - default=false)<br/>QOSReserved=true|false (ALPHA - default=false)<br/>ReadWriteOncePod=true|false (ALPHA - default=false)<br/>RecoverVolumeExpansionFailure=true|false (ALPHA - default=false)<br/>RemainingItemCount=true|false (BETA - default=true)<br/>RotateKubeletServerCertificate=true|false (BETA - default=true)<br/>SeccompDefault=true|false (ALPHA - default=false)<br/>ServerSideFieldValidation=true|false (ALPHA - default=false)<br/>ServiceIPStaticSubrange=true|false (ALPHA - default=false)<br/>ServiceInternalTrafficPolicy=true|false (BETA - default=true)<br/>SizeMemoryBackedVolumes=true|false (BETA - default=true)<br/>StatefulSetAutoDeletePVC=true|false (ALPHA - default=false)<br/>StatefulSetMinReadySeconds=true|false (BETA - default=true)<br/>StorageVersionAPI=true|false (ALPHA - default=false)<br/>StorageVersionHash=true|false (BETA - default=true)<br/>TopologyAwareHints=true|false (BETA - default=true)<br/>TopologyManager=true|false (BETA - default=true)<br/>VolumeCapacityPriority=true|false (ALPHA - default=false)<br/>WinDSR=true|false (ALPHA - default=false)<br/>WinOverlay=true|false (BETA - default=true)<br/>WindowsHostProcessContainers=true|false (BETA - default=true)</p></td>
 </tr>
 
 <tr>
@@ -593,7 +572,7 @@ kube-controller-manager [flags]
 <td colspan="2">--leader-elect-resource-lock string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "leases"</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The type of resource object that is used for locking during leader election. Supported options are 'endpoints', 'configmaps', 'leases', 'endpointsleases' and 'configmapsleases'.</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The type of resource object that is used for locking during leader election. Supported options are 'leases', 'endpointsleases' and 'configmapsleases'.</p></td>
 </tr>
 
 <tr>
@@ -624,34 +603,6 @@ kube-controller-manager [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Path to the config file for controller leader migration, or empty to use the value that reflects default configuration of the controller manager. The config file should be of type LeaderMigrationConfiguration, group controllermanager.config.k8s.io, version v1alpha1.</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--log-backtrace-at &lt;a string in the form 'file:N'&gt;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: :0</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>when logging hits line file:N, emit a stack trace</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--log-dir string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If non-empty, write log files in this directory</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--log-file string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If non-empty, use this log file</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--log-file-max-size uint&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 1800</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Defines the maximum size a log file can grow to. Unit is megabytes. If the value is 0, the maximum file size is unlimited.</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--log-flush-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 5s</td>
 </tr>
@@ -663,14 +614,7 @@ kube-controller-manager [flags]
 <td colspan="2">--logging-format string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "text"</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Sets the log format. Permitted formats: &quot;text&quot;.<br/>Non-default formats don't honor these flags: --add-dir-header, --alsologtostderr, --log-backtrace-at, --log-dir, --log-file, --log-file-max-size, --logtostderr, --one-output, --skip-headers, --skip-log-headers, --stderrthreshold, --vmodule, --log-flush-frequency.<br/>Non-default choices are currently alpha and subject to change without warning.</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--logtostderr&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: true</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>log to standard error instead of files</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Sets the log format. Permitted formats: &quot;text&quot;.<br/>Non-default formats don't honor these flags: --add-dir-header, --alsologtostderr, --log-backtrace-at, --log-dir, --log-file, --log-file-max-size, --logtostderr, --one-output, --skip-headers, --skip-log-headers, --stderrthreshold, --vmodule.<br/>Non-default choices are currently alpha and subject to change without warning.</p></td>
 </tr>
 
 <tr>
@@ -771,13 +715,6 @@ kube-controller-manager [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Amount of time which we allow starting Node to be unresponsive before marking it unhealthy.</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--one-output</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, only write logs to their native severity level (vs also writing to each lower severity level)</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--permit-address-sharing</td>
 </tr>
@@ -946,27 +883,6 @@ kube-controller-manager [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The previous version for which you want to show hidden metrics. Only the previous minor version is meaningful, other values will not be allowed. The format is &lt;major&gt;.&lt;minor&gt;, e.g.: '1.16'. The purpose of this format is make sure you have the opportunity to notice if the next release hides additional metrics, rather than being surprised when they are permanently removed in the release after that.</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--skip-headers</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, avoid header prefixes in the log messages</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--skip-log-headers</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, avoid headers when opening log files</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--stderrthreshold int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 2</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>logs at or above this threshold go to stderr</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--terminated-pod-gc-threshold int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 12500</td>
 </tr>
@@ -985,7 +901,7 @@ kube-controller-manager [flags]
 <td colspan="2">--tls-cipher-suites strings</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Comma-separated list of cipher suites for the server. If omitted, the default Go cipher suites will be used.<br/>Preferred values: TLS_AES_128_GCM_SHA256, TLS_AES_256_GCM_SHA384, TLS_CHACHA20_POLY1305_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_GCM_SHA384.<br/>Insecure values: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_RC4_128_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_RC4_128_SHA.</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Comma-separated list of cipher suites for the server. If omitted, the default Go cipher suites will be used.<br/>Preferred values: TLS_AES_128_GCM_SHA256, TLS_AES_256_GCM_SHA384, TLS_CHACHA20_POLY1305_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_GCM_SHA384.<br/>Insecure values: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_RC4_128_SHA, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_RC4_128_SHA.</p></td>
 </tr>
 
 <tr>
@@ -1038,10 +954,10 @@ kube-controller-manager [flags]
 </tr>
 
 <tr>
-<td colspan="2">--vmodule &lt;comma-separated 'pattern=N' settings&gt;</td>
+<td colspan="2">--vmodule pattern=N,...</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>comma-separated list of pattern=N settings for file-filtered logging</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>comma-separated list of pattern=N settings for file-filtered logging (only works for text log format)</p></td>
 </tr>
 
 <tr>
diff --git a/content/en/docs/reference/command-line-tools-reference/kube-proxy.md b/content/en/docs/reference/command-line-tools-reference/kube-proxy.md
index 3306668093..34ced450e0 100644
--- a/content/en/docs/reference/command-line-tools-reference/kube-proxy.md
+++ b/content/en/docs/reference/command-line-tools-reference/kube-proxy.md
@@ -43,7 +43,7 @@ kube-proxy [flags]
 <tbody>
 
 <tr>
-<td colspan="2">--add-dir-header</td>
+<td colspan="2">--add_dir_header</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, adds the file directory to the header of the log messages</p></td>
@@ -56,18 +56,11 @@ kube-proxy [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>log to standard error as well as files</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--azure-container-registry-config string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Path to the file containing Azure container registry configuration information.</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--bind-address string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 0.0.0.0</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The IP address for the proxy server to serve on (set to '0.0.0.0' for all IPv4 interfaces and '::' for all IPv6 interfaces)</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The IP address for the proxy server to serve on (set to '0.0.0.0' for all IPv4 interfaces and '::' for all IPv6 interfaces). This parameter is ignored if a config file is specified by --config.</p></td>
 </tr>
 
 <tr>
@@ -78,7 +71,7 @@ kube-proxy [flags]
 </tr>
 
 <tr>
-<td colspan="2">--boot-id-file string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/proc/sys/kernel/random/boot_id"</td>
+<td colspan="2">--boot_id_file string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/proc/sys/kernel/random/boot_id"</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Comma-separated list of files to check for boot-id. Use the first one that exists.</p></td>
@@ -91,25 +84,11 @@ kube-proxy [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true cleanup iptables and ipvs rules and exit.</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--cloud-provider-gce-l7lb-src-cidrs cidrs&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 130.211.0.0/22,35.191.0.0/16</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>CIDRs opened in GCE firewall for L7 LB traffic proxy &amp; health checks</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--cloud-provider-gce-lb-src-cidrs cidrs&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 130.211.0.0/22,209.85.152.0/22,209.85.204.0/22,35.191.0.0/16</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>CIDRs opened in GCE firewall for L4 LB traffic proxy &amp; health checks</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--cluster-cidr string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The CIDR range of pods in the cluster. When configured, traffic sent to a Service cluster IP from outside this range will be masqueraded and traffic sent from pods to an external LoadBalancer IP will be directed to the respective cluster IP instead</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The CIDR range of pods in the cluster. When configured, traffic sent to a Service cluster IP from outside this range will be masqueraded and traffic sent from pods to an external LoadBalancer IP will be directed to the respective cluster IP instead. For dual-stack clusters, a comma-separated list is accepted with at least one CIDR per IP family (IPv4 and IPv6). This parameter is ignored if a config file is specified by --config.</p></td>
 </tr>
 
 <tr>
@@ -154,39 +133,25 @@ kube-proxy [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Idle timeout for established TCP connections (0 to leave as-is)</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--default-not-ready-toleration-seconds int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 300</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Indicates the tolerationSeconds of the toleration for notReady:NoExecute that is added by default to every pod that does not already have such a toleration.</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--default-unreachable-toleration-seconds int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 300</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Indicates the tolerationSeconds of the toleration for unreachable:NoExecute that is added by default to every pod that does not already have such a toleration.</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--detect-local-mode LocalMode</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Mode to use to detect local traffic</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Mode to use to detect local traffic. This parameter is ignored if a config file is specified by --config.</p></td>
 </tr>
 
 <tr>
 <td colspan="2">--feature-gates &lt;comma-separated 'key=True|False' pairs&gt;</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for alpha/experimental features. Options are:<br/>APIListChunking=true|false (BETA - default=true)<br/>APIPriorityAndFairness=true|false (BETA - default=true)<br/>APIResponseCompression=true|false (BETA - default=true)<br/>APIServerIdentity=true|false (ALPHA - default=false)<br/>APIServerTracing=true|false (ALPHA - default=false)<br/>AllAlpha=true|false (ALPHA - default=false)<br/>AllBeta=true|false (BETA - default=false)<br/>AnyVolumeDataSource=true|false (ALPHA - default=false)<br/>AppArmor=true|false (BETA - default=true)<br/>CPUManager=true|false (BETA - default=true)<br/>CPUManagerPolicyOptions=true|false (ALPHA - default=false)<br/>CSIInlineVolume=true|false (BETA - default=true)<br/>CSIMigration=true|false (BETA - default=true)<br/>CSIMigrationAWS=true|false (BETA - default=false)<br/>CSIMigrationAzureDisk=true|false (BETA - default=false)<br/>CSIMigrationAzureFile=true|false (BETA - default=false)<br/>CSIMigrationGCE=true|false (BETA - default=false)<br/>CSIMigrationOpenStack=true|false (BETA - default=true)<br/>CSIMigrationvSphere=true|false (BETA - default=false)<br/>CSIStorageCapacity=true|false (BETA - default=true)<br/>CSIVolumeFSGroupPolicy=true|false (BETA - default=true)<br/>CSIVolumeHealth=true|false (ALPHA - default=false)<br/>CSRDuration=true|false (BETA - default=true)<br/>ConfigurableFSGroupPolicy=true|false (BETA - default=true)<br/>ControllerManagerLeaderMigration=true|false (BETA - default=true)<br/>CustomCPUCFSQuotaPeriod=true|false (ALPHA - default=false)<br/>DaemonSetUpdateSurge=true|false (BETA - default=true)<br/>DefaultPodTopologySpread=true|false (BETA - default=true)<br/>DelegateFSGroupToCSIDriver=true|false (ALPHA - default=false)<br/>DevicePlugins=true|false (BETA - default=true)<br/>DisableAcceleratorUsageMetrics=true|false (BETA - default=true)<br/>DisableCloudProviders=true|false (ALPHA - default=false)<br/>DownwardAPIHugePages=true|false (BETA - default=false)<br/>EfficientWatchResumption=true|false (BETA - default=true)<br/>EndpointSliceTerminatingCondition=true|false (BETA - default=true)<br/>EphemeralContainers=true|false (ALPHA - default=false)<br/>ExpandCSIVolumes=true|false (BETA - default=true)<br/>ExpandInUsePersistentVolumes=true|false (BETA - default=true)<br/>ExpandPersistentVolumes=true|false (BETA - default=true)<br/>ExpandedDNSConfig=true|false (ALPHA - default=false)<br/>ExperimentalHostUserNamespaceDefaulting=true|false (BETA - default=false)<br/>GenericEphemeralVolume=true|false (BETA - default=true)<br/>GracefulNodeShutdown=true|false (BETA - default=true)<br/>HPAContainerMetrics=true|false (ALPHA - default=false)<br/>HPAScaleToZero=true|false (ALPHA - default=false)<br/>IPv6DualStack=true|false (BETA - default=true)<br/>InTreePluginAWSUnregister=true|false (ALPHA - default=false)<br/>InTreePluginAzureDiskUnregister=true|false (ALPHA - default=false)<br/>InTreePluginAzureFileUnregister=true|false (ALPHA - default=false)<br/>InTreePluginGCEUnregister=true|false (ALPHA - default=false)<br/>InTreePluginOpenStackUnregister=true|false (ALPHA - default=false)<br/>InTreePluginvSphereUnregister=true|false (ALPHA - default=false)<br/>IndexedJob=true|false (BETA - default=true)<br/>IngressClassNamespacedParams=true|false (BETA - default=true)<br/>JobTrackingWithFinalizers=true|false (ALPHA - default=false)<br/>KubeletCredentialProviders=true|false (ALPHA - default=false)<br/>KubeletInUserNamespace=true|false (ALPHA - default=false)<br/>KubeletPodResources=true|false (BETA - default=true)<br/>KubeletPodResourcesGetAllocatable=true|false (ALPHA - default=false)<br/>LocalStorageCapacityIsolation=true|false (BETA - default=true)<br/>LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - default=false)<br/>LogarithmicScaleDown=true|false (BETA - default=true)<br/>MemoryManager=true|false (BETA - default=true)<br/>MemoryQoS=true|false (ALPHA - default=false)<br/>MixedProtocolLBService=true|false (ALPHA - default=false)<br/>NetworkPolicyEndPort=true|false (BETA - default=true)<br/>NodeSwap=true|false (ALPHA - default=false)<br/>NonPreemptingPriority=true|false (BETA - default=true)<br/>PodAffinityNamespaceSelector=true|false (BETA - default=true)<br/>PodDeletionCost=true|false (BETA - default=true)<br/>PodOverhead=true|false (BETA - default=true)<br/>PodSecurity=true|false (ALPHA - default=false)<br/>PreferNominatedNode=true|false (BETA - default=true)<br/>ProbeTerminationGracePeriod=true|false (BETA - default=false)<br/>ProcMountType=true|false (ALPHA - default=false)<br/>ProxyTerminatingEndpoints=true|false (ALPHA - default=false)<br/>QOSReserved=true|false (ALPHA - default=false)<br/>ReadWriteOncePod=true|false (ALPHA - default=false)<br/>RemainingItemCount=true|false (BETA - default=true)<br/>RemoveSelfLink=true|false (BETA - default=true)<br/>RotateKubeletServerCertificate=true|false (BETA - default=true)<br/>SeccompDefault=true|false (ALPHA - default=false)<br/>ServiceInternalTrafficPolicy=true|false (BETA - default=true)<br/>ServiceLBNodePortControl=true|false (BETA - default=true)<br/>ServiceLoadBalancerClass=true|false (BETA - default=true)<br/>SizeMemoryBackedVolumes=true|false (BETA - default=true)<br/>StatefulSetMinReadySeconds=true|false (ALPHA - default=false)<br/>StorageVersionAPI=true|false (ALPHA - default=false)<br/>StorageVersionHash=true|false (BETA - default=true)<br/>SuspendJob=true|false (BETA - default=true)<br/>TTLAfterFinished=true|false (BETA - default=true)<br/>TopologyAwareHints=true|false (ALPHA - default=false)<br/>TopologyManager=true|false (BETA - default=true)<br/>VolumeCapacityPriority=true|false (ALPHA - default=false)<br/>WinDSR=true|false (ALPHA - default=false)<br/>WinOverlay=true|false (BETA - default=true)<br/>WindowsHostProcessContainers=true|false (ALPHA - default=false)</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for alpha/experimental features. Options are:<br/>APIListChunking=true|false (BETA - default=true)<br/>APIPriorityAndFairness=true|false (BETA - default=true)<br/>APIResponseCompression=true|false (BETA - default=true)<br/>APIServerIdentity=true|false (ALPHA - default=false)<br/>APIServerTracing=true|false (ALPHA - default=false)<br/>AllAlpha=true|false (ALPHA - default=false)<br/>AllBeta=true|false (BETA - default=false)<br/>AnyVolumeDataSource=true|false (BETA - default=true)<br/>AppArmor=true|false (BETA - default=true)<br/>CPUManager=true|false (BETA - default=true)<br/>CPUManagerPolicyAlphaOptions=true|false (ALPHA - default=false)<br/>CPUManagerPolicyBetaOptions=true|false (BETA - default=true)<br/>CPUManagerPolicyOptions=true|false (BETA - default=true)<br/>CSIInlineVolume=true|false (BETA - default=true)<br/>CSIMigration=true|false (BETA - default=true)<br/>CSIMigrationAWS=true|false (BETA - default=true)<br/>CSIMigrationAzureFile=true|false (BETA - default=true)<br/>CSIMigrationGCE=true|false (BETA - default=true)<br/>CSIMigrationPortworx=true|false (ALPHA - default=false)<br/>CSIMigrationRBD=true|false (ALPHA - default=false)<br/>CSIMigrationvSphere=true|false (BETA - default=false)<br/>CSIVolumeHealth=true|false (ALPHA - default=false)<br/>CronJobTimeZone=true|false (ALPHA - default=false)<br/>CustomCPUCFSQuotaPeriod=true|false (ALPHA - default=false)<br/>CustomResourceValidationExpressions=true|false (ALPHA - default=false)<br/>DaemonSetUpdateSurge=true|false (BETA - default=true)<br/>DelegateFSGroupToCSIDriver=true|false (BETA - default=true)<br/>DevicePlugins=true|false (BETA - default=true)<br/>DisableAcceleratorUsageMetrics=true|false (BETA - default=true)<br/>DisableCloudProviders=true|false (ALPHA - default=false)<br/>DisableKubeletCloudCredentialProviders=true|false (ALPHA - default=false)<br/>DownwardAPIHugePages=true|false (BETA - default=true)<br/>EndpointSliceTerminatingCondition=true|false (BETA - default=true)<br/>EphemeralContainers=true|false (BETA - default=true)<br/>ExpandedDNSConfig=true|false (ALPHA - default=false)<br/>ExperimentalHostUserNamespaceDefaulting=true|false (BETA - default=false)<br/>GRPCContainerProbe=true|false (BETA - default=true)<br/>GracefulNodeShutdown=true|false (BETA - default=true)<br/>GracefulNodeShutdownBasedOnPodPriority=true|false (BETA - default=true)<br/>HPAContainerMetrics=true|false (ALPHA - default=false)<br/>HPAScaleToZero=true|false (ALPHA - default=false)<br/>HonorPVReclaimPolicy=true|false (ALPHA - default=false)<br/>IdentifyPodOS=true|false (BETA - default=true)<br/>InTreePluginAWSUnregister=true|false (ALPHA - default=false)<br/>InTreePluginAzureDiskUnregister=true|false (ALPHA - default=false)<br/>InTreePluginAzureFileUnregister=true|false (ALPHA - default=false)<br/>InTreePluginGCEUnregister=true|false (ALPHA - default=false)<br/>InTreePluginOpenStackUnregister=true|false (ALPHA - default=false)<br/>InTreePluginPortworxUnregister=true|false (ALPHA - default=false)<br/>InTreePluginRBDUnregister=true|false (ALPHA - default=false)<br/>InTreePluginvSphereUnregister=true|false (ALPHA - default=false)<br/>JobMutableNodeSchedulingDirectives=true|false (BETA - default=true)<br/>JobReadyPods=true|false (BETA - default=true)<br/>JobTrackingWithFinalizers=true|false (BETA - default=false)<br/>KubeletCredentialProviders=true|false (BETA - default=true)<br/>KubeletInUserNamespace=true|false (ALPHA - default=false)<br/>KubeletPodResources=true|false (BETA - default=true)<br/>KubeletPodResourcesGetAllocatable=true|false (BETA - default=true)<br/>LegacyServiceAccountTokenNoAutoGeneration=true|false (BETA - default=true)<br/>LocalStorageCapacityIsolation=true|false (BETA - default=true)<br/>LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - default=false)<br/>LogarithmicScaleDown=true|false (BETA - default=true)<br/>MaxUnavailableStatefulSet=true|false (ALPHA - default=false)<br/>MemoryManager=true|false (BETA - default=true)<br/>MemoryQoS=true|false (ALPHA - default=false)<br/>MinDomainsInPodTopologySpread=true|false (ALPHA - default=false)<br/>MixedProtocolLBService=true|false (BETA - default=true)<br/>NetworkPolicyEndPort=true|false (BETA - default=true)<br/>NetworkPolicyStatus=true|false (ALPHA - default=false)<br/>NodeOutOfServiceVolumeDetach=true|false (ALPHA - default=false)<br/>NodeSwap=true|false (ALPHA - default=false)<br/>OpenAPIEnums=true|false (BETA - default=true)<br/>OpenAPIV3=true|false (BETA - default=true)<br/>PodAndContainerStatsFromCRI=true|false (ALPHA - default=false)<br/>PodDeletionCost=true|false (BETA - default=true)<br/>PodSecurity=true|false (BETA - default=true)<br/>ProbeTerminationGracePeriod=true|false (BETA - default=false)<br/>ProcMountType=true|false (ALPHA - default=false)<br/>ProxyTerminatingEndpoints=true|false (ALPHA - default=false)<br/>QOSReserved=true|false (ALPHA - default=false)<br/>ReadWriteOncePod=true|false (ALPHA - default=false)<br/>RecoverVolumeExpansionFailure=true|false (ALPHA - default=false)<br/>RemainingItemCount=true|false (BETA - default=true)<br/>RotateKubeletServerCertificate=true|false (BETA - default=true)<br/>SeccompDefault=true|false (ALPHA - default=false)<br/>ServerSideFieldValidation=true|false (ALPHA - default=false)<br/>ServiceIPStaticSubrange=true|false (ALPHA - default=false)<br/>ServiceInternalTrafficPolicy=true|false (BETA - default=true)<br/>SizeMemoryBackedVolumes=true|false (BETA - default=true)<br/>StatefulSetAutoDeletePVC=true|false (ALPHA - default=false)<br/>StatefulSetMinReadySeconds=true|false (BETA - default=true)<br/>StorageVersionAPI=true|false (ALPHA - default=false)<br/>StorageVersionHash=true|false (BETA - default=true)<br/>TopologyAwareHints=true|false (BETA - default=true)<br/>TopologyManager=true|false (BETA - default=true)<br/>VolumeCapacityPriority=true|false (ALPHA - default=false)<br/>WinDSR=true|false (ALPHA - default=false)<br/>WinOverlay=true|false (BETA - default=true)<br/>WindowsHostProcessContainers=true|false (BETA - default=true)This parameter is ignored if a config file is specified by --config.</p></td>
 </tr>
 
 <tr>
 <td colspan="2">--healthz-bind-address ipport&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 0.0.0.0:10256</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The IP address with port for the health check server to serve on (set to '0.0.0.0:10256' for all IPv4 interfaces and '[::]:10256' for all IPv6 interfaces). Set empty to disable.</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The IP address with port for the health check server to serve on (set to '0.0.0.0:10256' for all IPv4 interfaces and '[::]:10256' for all IPv6 interfaces). Set empty to disable. This parameter is ignored if a config file is specified by --config.</p></td>
 </tr>
 
 <tr>
@@ -309,40 +274,33 @@ kube-proxy [flags]
 </tr>
 
 <tr>
-<td colspan="2">--log-backtrace-at &lt;a string in the form 'file:N'&gt;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: :0</td>
+<td colspan="2">--log_backtrace_at &lt;a string in the form 'file:N'&gt;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: :0</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>when logging hits line file:N, emit a stack trace</p></td>
 </tr>
 
 <tr>
-<td colspan="2">--log-dir string</td>
+<td colspan="2">--log_dir string</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If non-empty, write log files in this directory</p></td>
 </tr>
 
 <tr>
-<td colspan="2">--log-file string</td>
+<td colspan="2">--log_file string</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If non-empty, use this log file</p></td>
 </tr>
 
 <tr>
-<td colspan="2">--log-file-max-size uint&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 1800</td>
+<td colspan="2">--log_file_max_size uint&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 1800</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Defines the maximum size a log file can grow to. Unit is megabytes. If the value is 0, the maximum file size is unlimited.</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--log-flush-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 5s</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Maximum number of seconds between log flushes</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--logtostderr&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: true</td>
 </tr>
@@ -351,7 +309,7 @@ kube-proxy [flags]
 </tr>
 
 <tr>
-<td colspan="2">--machine-id-file string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/machine-id,/var/lib/dbus/machine-id"</td>
+<td colspan="2">--machine_id_file string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/machine-id,/var/lib/dbus/machine-id"</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Comma-separated list of files to check for machine-id. Use the first one that exists.</p></td>
@@ -375,18 +333,18 @@ kube-proxy [flags]
 <td colspan="2">--metrics-bind-address ipport&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 127.0.0.1:10249</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The IP address with port for the metrics server to serve on (set to '0.0.0.0:10249' for all IPv4 interfaces and '[::]:10249' for all IPv6 interfaces). Set empty to disable.</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The IP address with port for the metrics server to serve on (set to '0.0.0.0:10249' for all IPv4 interfaces and '[::]:10249' for all IPv6 interfaces). Set empty to disable. This parameter is ignored if a config file is specified by --config.</p></td>
 </tr>
 
 <tr>
 <td colspan="2">--nodeport-addresses strings</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A string slice of values which specify the addresses to use for NodePorts. Values may be valid IP blocks (e.g. 1.2.3.0/24, 1.2.3.4/32). The default empty string slice ([]) means to use all local addresses.</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A string slice of values which specify the addresses to use for NodePorts. Values may be valid IP blocks (e.g. 1.2.3.0/24, 1.2.3.4/32). The default empty string slice ([]) means to use all local addresses. This parameter is ignored if a config file is specified by --config.</p></td>
 </tr>
 
 <tr>
-<td colspan="2">--one-output</td>
+<td colspan="2">--one_output</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, only write logs to their native severity level (vs also writing to each lower severity level)</p></td>
@@ -396,21 +354,35 @@ kube-proxy [flags]
 <td colspan="2">--oom-score-adj int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: -999</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The oom-score-adj value for kube-proxy process. Values must be within the range [-1000, 1000]</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The oom-score-adj value for kube-proxy process. Values must be within the range [-1000, 1000]. This parameter is ignored if a config file is specified by --config.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--pod-bridge-interface string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A bridge interface name in the cluster. Kube-proxy considers traffic as local if originating from an interface which matches the value. This argument should be set if DetectLocalMode is set to BridgeInterface.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--pod-interface-name-prefix string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>An interface prefix in the cluster. Kube-proxy considers traffic as local if originating from interfaces that match the given prefix. This argument should be set if DetectLocalMode is set to InterfaceNamePrefix.</p></td>
 </tr>
 
 <tr>
 <td colspan="2">--profiling</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true enables profiling via web interface on /debug/pprof handler.</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true enables profiling via web interface on /debug/pprof handler. This parameter is ignored if a config file is specified by --config.</p></td>
 </tr>
 
 <tr>
 <td colspan="2">--proxy-mode ProxyMode</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Which proxy mode to use: 'userspace' (older) or 'iptables' (faster) or 'ipvs' or 'kernelspace' (windows). If blank, use the best-available proxy (currently iptables). If the iptables proxy is selected, regardless of how, but the system's kernel or iptables versions are insufficient, this always falls back to the userspace proxy.</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Which proxy mode to use: 'iptables' (Linux-only), 'ipvs' (Linux-only), 'kernelspace' (Windows-only), or 'userspace' (Linux/Windows, deprecated). The default value is 'iptables' on Linux and 'userspace' on Windows.This parameter is ignored if a config file is specified by --config.</p></td>
 </tr>
 
 <tr>
@@ -424,18 +396,18 @@ kube-proxy [flags]
 <td colspan="2">--show-hidden-metrics-for-version string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The previous version for which you want to show hidden metrics. Only the previous minor version is meaningful, other values will not be allowed. The format is &lt;major&gt;.&lt;minor&gt;, e.g.: '1.16'. The purpose of this format is make sure you have the opportunity to notice if the next release hides additional metrics, rather than being surprised when they are permanently removed in the release after that.</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The previous version for which you want to show hidden metrics. Only the previous minor version is meaningful, other values will not be allowed. The format is &lt;major&gt;.&lt;minor&gt;, e.g.: '1.16'. The purpose of this format is make sure you have the opportunity to notice if the next release hides additional metrics, rather than being surprised when they are permanently removed in the release after that.This parameter is ignored if a config file is specified by --config.</p></td>
 </tr>
 
 <tr>
-<td colspan="2">--skip-headers</td>
+<td colspan="2">--skip_headers</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, avoid header prefixes in the log messages</p></td>
 </tr>
 
 <tr>
-<td colspan="2">--skip-log-headers</td>
+<td colspan="2">--skip_log_headers</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, avoid headers when opening log files</p></td>
diff --git a/content/en/docs/reference/command-line-tools-reference/kube-scheduler.md b/content/en/docs/reference/command-line-tools-reference/kube-scheduler.md
index 621bac8aa2..84d1d84b15 100644
--- a/content/en/docs/reference/command-line-tools-reference/kube-scheduler.md
+++ b/content/en/docs/reference/command-line-tools-reference/kube-scheduler.md
@@ -27,7 +27,7 @@ each Pod in the scheduling queue according to constraints and available
 resources. The scheduler then ranks each valid Node and binds the Pod to a
 suitable Node. Multiple different schedulers may be used within a cluster;
 kube-scheduler is the reference implementation.
-See [scheduling](https://kubernetes.io/docs/concepts/scheduling-eviction/)
+See [scheduling](/docs/concepts/scheduling-eviction/)
 for more information about scheduling and the kube-scheduler component.
 
 ```
@@ -43,20 +43,6 @@ kube-scheduler [flags]
 </colgroup>
 <tbody>
 
-<tr>
-<td colspan="2">--add-dir-header</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, adds the file directory to the header of the log messages</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--address string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>DEPRECATED: the IP address on which to listen for the --port port (set to 0.0.0.0 or :: for listening in all interfaces and IP families). See --bind-address instead. This parameter is ignored if a config file is specified in --config.</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--allow-metric-labels stringToString&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: []</td>
 </tr>
@@ -64,13 +50,6 @@ kube-scheduler [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The map from metric-label to value allow-list of this label. The key's format is &lt;MetricName&gt;,&lt;LabelName&gt;. The value's format is &lt;allowed_value&gt;,&lt;allowed_value&gt;...e.g. metric1,label1='v1,v2,v3', metric1,label2='v1,v2,v3' metric2,label1='v1,v2,v3'.</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--alsologtostderr</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>log to standard error as well as files</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--authentication-kubeconfig string</td>
 </tr>
@@ -159,11 +138,11 @@ kube-scheduler [flags]
 <td colspan="2">--config string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The path to the configuration file. The following flags can overwrite fields in this file:<br/>--policy-config-file<br/>--policy-configmap<br/>--policy-configmap-namespace</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The path to the configuration file.</p></td>
 </tr>
 
 <tr>
-<td colspan="2">--contention-profiling</td>
+<td colspan="2">--contention-profiling&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: true</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>DEPRECATED: enable lock contention profiling, if profiling is enabled. This parameter is ignored if a config file is specified in --config.</p></td>
@@ -176,18 +155,11 @@ kube-scheduler [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>This flag provides an escape hatch for misbehaving metrics. You must provide the fully qualified metric name in order to disable it. Disclaimer: disabling metrics is higher in precedence than showing hidden metrics.</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--experimental-logging-sanitization</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>[Experimental] When enabled prevents logging of fields tagged as sensitive (passwords, keys, tokens).<br/>Runtime log sanitization may introduce significant computation overhead and therefore should not be enabled in production.</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--feature-gates &lt;comma-separated 'key=True|False' pairs&gt;</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for alpha/experimental features. Options are:<br/>APIListChunking=true|false (BETA - default=true)<br/>APIPriorityAndFairness=true|false (BETA - default=true)<br/>APIResponseCompression=true|false (BETA - default=true)<br/>APIServerIdentity=true|false (ALPHA - default=false)<br/>APIServerTracing=true|false (ALPHA - default=false)<br/>AllAlpha=true|false (ALPHA - default=false)<br/>AllBeta=true|false (BETA - default=false)<br/>AnyVolumeDataSource=true|false (ALPHA - default=false)<br/>AppArmor=true|false (BETA - default=true)<br/>CPUManager=true|false (BETA - default=true)<br/>CPUManagerPolicyOptions=true|false (ALPHA - default=false)<br/>CSIInlineVolume=true|false (BETA - default=true)<br/>CSIMigration=true|false (BETA - default=true)<br/>CSIMigrationAWS=true|false (BETA - default=false)<br/>CSIMigrationAzureDisk=true|false (BETA - default=false)<br/>CSIMigrationAzureFile=true|false (BETA - default=false)<br/>CSIMigrationGCE=true|false (BETA - default=false)<br/>CSIMigrationOpenStack=true|false (BETA - default=true)<br/>CSIMigrationvSphere=true|false (BETA - default=false)<br/>CSIStorageCapacity=true|false (BETA - default=true)<br/>CSIVolumeFSGroupPolicy=true|false (BETA - default=true)<br/>CSIVolumeHealth=true|false (ALPHA - default=false)<br/>CSRDuration=true|false (BETA - default=true)<br/>ConfigurableFSGroupPolicy=true|false (BETA - default=true)<br/>ControllerManagerLeaderMigration=true|false (BETA - default=true)<br/>CustomCPUCFSQuotaPeriod=true|false (ALPHA - default=false)<br/>DaemonSetUpdateSurge=true|false (BETA - default=true)<br/>DefaultPodTopologySpread=true|false (BETA - default=true)<br/>DelegateFSGroupToCSIDriver=true|false (ALPHA - default=false)<br/>DevicePlugins=true|false (BETA - default=true)<br/>DisableAcceleratorUsageMetrics=true|false (BETA - default=true)<br/>DisableCloudProviders=true|false (ALPHA - default=false)<br/>DownwardAPIHugePages=true|false (BETA - default=false)<br/>EfficientWatchResumption=true|false (BETA - default=true)<br/>EndpointSliceTerminatingCondition=true|false (BETA - default=true)<br/>EphemeralContainers=true|false (ALPHA - default=false)<br/>ExpandCSIVolumes=true|false (BETA - default=true)<br/>ExpandInUsePersistentVolumes=true|false (BETA - default=true)<br/>ExpandPersistentVolumes=true|false (BETA - default=true)<br/>ExpandedDNSConfig=true|false (ALPHA - default=false)<br/>ExperimentalHostUserNamespaceDefaulting=true|false (BETA - default=false)<br/>GenericEphemeralVolume=true|false (BETA - default=true)<br/>GracefulNodeShutdown=true|false (BETA - default=true)<br/>HPAContainerMetrics=true|false (ALPHA - default=false)<br/>HPAScaleToZero=true|false (ALPHA - default=false)<br/>IPv6DualStack=true|false (BETA - default=true)<br/>InTreePluginAWSUnregister=true|false (ALPHA - default=false)<br/>InTreePluginAzureDiskUnregister=true|false (ALPHA - default=false)<br/>InTreePluginAzureFileUnregister=true|false (ALPHA - default=false)<br/>InTreePluginGCEUnregister=true|false (ALPHA - default=false)<br/>InTreePluginOpenStackUnregister=true|false (ALPHA - default=false)<br/>InTreePluginvSphereUnregister=true|false (ALPHA - default=false)<br/>IndexedJob=true|false (BETA - default=true)<br/>IngressClassNamespacedParams=true|false (BETA - default=true)<br/>JobTrackingWithFinalizers=true|false (ALPHA - default=false)<br/>KubeletCredentialProviders=true|false (ALPHA - default=false)<br/>KubeletInUserNamespace=true|false (ALPHA - default=false)<br/>KubeletPodResources=true|false (BETA - default=true)<br/>KubeletPodResourcesGetAllocatable=true|false (ALPHA - default=false)<br/>LocalStorageCapacityIsolation=true|false (BETA - default=true)<br/>LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - default=false)<br/>LogarithmicScaleDown=true|false (BETA - default=true)<br/>MemoryManager=true|false (BETA - default=true)<br/>MemoryQoS=true|false (ALPHA - default=false)<br/>MixedProtocolLBService=true|false (ALPHA - default=false)<br/>NetworkPolicyEndPort=true|false (BETA - default=true)<br/>NodeSwap=true|false (ALPHA - default=false)<br/>NonPreemptingPriority=true|false (BETA - default=true)<br/>PodAffinityNamespaceSelector=true|false (BETA - default=true)<br/>PodDeletionCost=true|false (BETA - default=true)<br/>PodOverhead=true|false (BETA - default=true)<br/>PodSecurity=true|false (ALPHA - default=false)<br/>PreferNominatedNode=true|false (BETA - default=true)<br/>ProbeTerminationGracePeriod=true|false (BETA - default=false)<br/>ProcMountType=true|false (ALPHA - default=false)<br/>ProxyTerminatingEndpoints=true|false (ALPHA - default=false)<br/>QOSReserved=true|false (ALPHA - default=false)<br/>ReadWriteOncePod=true|false (ALPHA - default=false)<br/>RemainingItemCount=true|false (BETA - default=true)<br/>RemoveSelfLink=true|false (BETA - default=true)<br/>RotateKubeletServerCertificate=true|false (BETA - default=true)<br/>SeccompDefault=true|false (ALPHA - default=false)<br/>ServiceInternalTrafficPolicy=true|false (BETA - default=true)<br/>ServiceLBNodePortControl=true|false (BETA - default=true)<br/>ServiceLoadBalancerClass=true|false (BETA - default=true)<br/>SizeMemoryBackedVolumes=true|false (BETA - default=true)<br/>StatefulSetMinReadySeconds=true|false (ALPHA - default=false)<br/>StorageVersionAPI=true|false (ALPHA - default=false)<br/>StorageVersionHash=true|false (BETA - default=true)<br/>SuspendJob=true|false (BETA - default=true)<br/>TTLAfterFinished=true|false (BETA - default=true)<br/>TopologyAwareHints=true|false (ALPHA - default=false)<br/>TopologyManager=true|false (BETA - default=true)<br/>VolumeCapacityPriority=true|false (ALPHA - default=false)<br/>WinDSR=true|false (ALPHA - default=false)<br/>WinOverlay=true|false (BETA - default=true)<br/>WindowsHostProcessContainers=true|false (ALPHA - default=false)</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for alpha/experimental features. Options are:<br/>APIListChunking=true|false (BETA - default=true)<br/>APIPriorityAndFairness=true|false (BETA - default=true)<br/>APIResponseCompression=true|false (BETA - default=true)<br/>APIServerIdentity=true|false (ALPHA - default=false)<br/>APIServerTracing=true|false (ALPHA - default=false)<br/>AllAlpha=true|false (ALPHA - default=false)<br/>AllBeta=true|false (BETA - default=false)<br/>AnyVolumeDataSource=true|false (BETA - default=true)<br/>AppArmor=true|false (BETA - default=true)<br/>CPUManager=true|false (BETA - default=true)<br/>CPUManagerPolicyAlphaOptions=true|false (ALPHA - default=false)<br/>CPUManagerPolicyBetaOptions=true|false (BETA - default=true)<br/>CPUManagerPolicyOptions=true|false (BETA - default=true)<br/>CSIInlineVolume=true|false (BETA - default=true)<br/>CSIMigration=true|false (BETA - default=true)<br/>CSIMigrationAWS=true|false (BETA - default=true)<br/>CSIMigrationAzureFile=true|false (BETA - default=true)<br/>CSIMigrationGCE=true|false (BETA - default=true)<br/>CSIMigrationPortworx=true|false (ALPHA - default=false)<br/>CSIMigrationRBD=true|false (ALPHA - default=false)<br/>CSIMigrationvSphere=true|false (BETA - default=false)<br/>CSIVolumeHealth=true|false (ALPHA - default=false)<br/>ContextualLogging=true|false (ALPHA - default=false)<br/>CronJobTimeZone=true|false (ALPHA - default=false)<br/>CustomCPUCFSQuotaPeriod=true|false (ALPHA - default=false)<br/>CustomResourceValidationExpressions=true|false (ALPHA - default=false)<br/>DaemonSetUpdateSurge=true|false (BETA - default=true)<br/>DelegateFSGroupToCSIDriver=true|false (BETA - default=true)<br/>DevicePlugins=true|false (BETA - default=true)<br/>DisableAcceleratorUsageMetrics=true|false (BETA - default=true)<br/>DisableCloudProviders=true|false (ALPHA - default=false)<br/>DisableKubeletCloudCredentialProviders=true|false (ALPHA - default=false)<br/>DownwardAPIHugePages=true|false (BETA - default=true)<br/>EndpointSliceTerminatingCondition=true|false (BETA - default=true)<br/>EphemeralContainers=true|false (BETA - default=true)<br/>ExpandedDNSConfig=true|false (ALPHA - default=false)<br/>ExperimentalHostUserNamespaceDefaulting=true|false (BETA - default=false)<br/>GRPCContainerProbe=true|false (BETA - default=true)<br/>GracefulNodeShutdown=true|false (BETA - default=true)<br/>GracefulNodeShutdownBasedOnPodPriority=true|false (BETA - default=true)<br/>HPAContainerMetrics=true|false (ALPHA - default=false)<br/>HPAScaleToZero=true|false (ALPHA - default=false)<br/>HonorPVReclaimPolicy=true|false (ALPHA - default=false)<br/>IdentifyPodOS=true|false (BETA - default=true)<br/>InTreePluginAWSUnregister=true|false (ALPHA - default=false)<br/>InTreePluginAzureDiskUnregister=true|false (ALPHA - default=false)<br/>InTreePluginAzureFileUnregister=true|false (ALPHA - default=false)<br/>InTreePluginGCEUnregister=true|false (ALPHA - default=false)<br/>InTreePluginOpenStackUnregister=true|false (ALPHA - default=false)<br/>InTreePluginPortworxUnregister=true|false (ALPHA - default=false)<br/>InTreePluginRBDUnregister=true|false (ALPHA - default=false)<br/>InTreePluginvSphereUnregister=true|false (ALPHA - default=false)<br/>JobMutableNodeSchedulingDirectives=true|false (BETA - default=true)<br/>JobReadyPods=true|false (BETA - default=true)<br/>JobTrackingWithFinalizers=true|false (BETA - default=false)<br/>KubeletCredentialProviders=true|false (BETA - default=true)<br/>KubeletInUserNamespace=true|false (ALPHA - default=false)<br/>KubeletPodResources=true|false (BETA - default=true)<br/>KubeletPodResourcesGetAllocatable=true|false (BETA - default=true)<br/>LegacyServiceAccountTokenNoAutoGeneration=true|false (BETA - default=true)<br/>LocalStorageCapacityIsolation=true|false (BETA - default=true)<br/>LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - default=false)<br/>LogarithmicScaleDown=true|false (BETA - default=true)<br/>MaxUnavailableStatefulSet=true|false (ALPHA - default=false)<br/>MemoryManager=true|false (BETA - default=true)<br/>MemoryQoS=true|false (ALPHA - default=false)<br/>MinDomainsInPodTopologySpread=true|false (ALPHA - default=false)<br/>MixedProtocolLBService=true|false (BETA - default=true)<br/>NetworkPolicyEndPort=true|false (BETA - default=true)<br/>NetworkPolicyStatus=true|false (ALPHA - default=false)<br/>NodeOutOfServiceVolumeDetach=true|false (ALPHA - default=false)<br/>NodeSwap=true|false (ALPHA - default=false)<br/>OpenAPIEnums=true|false (BETA - default=true)<br/>OpenAPIV3=true|false (BETA - default=true)<br/>PodAndContainerStatsFromCRI=true|false (ALPHA - default=false)<br/>PodDeletionCost=true|false (BETA - default=true)<br/>PodSecurity=true|false (BETA - default=true)<br/>ProbeTerminationGracePeriod=true|false (BETA - default=false)<br/>ProcMountType=true|false (ALPHA - default=false)<br/>ProxyTerminatingEndpoints=true|false (ALPHA - default=false)<br/>QOSReserved=true|false (ALPHA - default=false)<br/>ReadWriteOncePod=true|false (ALPHA - default=false)<br/>RecoverVolumeExpansionFailure=true|false (ALPHA - default=false)<br/>RemainingItemCount=true|false (BETA - default=true)<br/>RotateKubeletServerCertificate=true|false (BETA - default=true)<br/>SeccompDefault=true|false (ALPHA - default=false)<br/>ServerSideFieldValidation=true|false (ALPHA - default=false)<br/>ServiceIPStaticSubrange=true|false (ALPHA - default=false)<br/>ServiceInternalTrafficPolicy=true|false (BETA - default=true)<br/>SizeMemoryBackedVolumes=true|false (BETA - default=true)<br/>StatefulSetAutoDeletePVC=true|false (ALPHA - default=false)<br/>StatefulSetMinReadySeconds=true|false (BETA - default=true)<br/>StorageVersionAPI=true|false (ALPHA - default=false)<br/>StorageVersionHash=true|false (BETA - default=true)<br/>TopologyAwareHints=true|false (BETA - default=true)<br/>TopologyManager=true|false (BETA - default=true)<br/>VolumeCapacityPriority=true|false (ALPHA - default=false)<br/>WinDSR=true|false (ALPHA - default=false)<br/>WinOverlay=true|false (BETA - default=true)<br/>WindowsHostProcessContainers=true|false (BETA - default=true)</p></td>
 </tr>
 
 <tr>
@@ -205,21 +177,21 @@ kube-scheduler [flags]
 </tr>
 
 <tr>
-<td colspan="2">--kube-api-burst int32</td>
+<td colspan="2">--kube-api-burst int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 100</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>DEPRECATED: burst to use while talking with kubernetes apiserver. This parameter is ignored if a config file is specified in --config.</p></td>
 </tr>
 
 <tr>
-<td colspan="2">--kube-api-content-type string</td>
+<td colspan="2">--kube-api-content-type string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "application/vnd.kubernetes.protobuf"</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>DEPRECATED: content type of requests sent to apiserver. This parameter is ignored if a config file is specified in --config.</p></td>
 </tr>
 
 <tr>
-<td colspan="2">--kube-api-qps float</td>
+<td colspan="2">--kube-api-qps float&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 50</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>DEPRECATED: QPS to use while talking with kubernetes apiserver. This parameter is ignored if a config file is specified in --config.</p></td>
@@ -233,96 +205,68 @@ kube-scheduler [flags]
 </tr>
 
 <tr>
-<td colspan="2">--leader-elect</td>
+<td colspan="2">--leader-elect&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: true</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Start a leader election client and gain leadership before executing the main loop. Enable this when running replicated components for high availability.</p></td>
 </tr>
 
 <tr>
-<td colspan="2">--leader-elect-lease-duration duration</td>
+<td colspan="2">--leader-elect-lease-duration duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 15s</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The duration that non-leader candidates will wait after observing a leadership renewal until attempting to acquire leadership of a led but unrenewed leader slot. This is effectively the maximum duration that a leader can be stopped before it is replaced by another candidate. This is only applicable if leader election is enabled.</p></td>
 </tr>
 
 <tr>
-<td colspan="2">--leader-elect-renew-deadline duration</td>
+<td colspan="2">--leader-elect-renew-deadline duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 10s</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The interval between attempts by the acting master to renew a leadership slot before it stops leading. This must be less than or equal to the lease duration. This is only applicable if leader election is enabled.</p></td>
 </tr>
 
 <tr>
-<td colspan="2">--leader-elect-resource-lock string</td>
+<td colspan="2">--leader-elect-resource-lock string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "leases"</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The type of resource object that is used for locking during leader election. Supported options are 'endpoints', 'configmaps', 'leases', 'endpointsleases' and 'configmapsleases'.</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The type of resource object that is used for locking during leader election. Supported options are 'leases', 'endpointsleases' and 'configmapsleases'.</p></td>
 </tr>
 
 <tr>
-<td colspan="2">--leader-elect-resource-name string</td>
+<td colspan="2">--leader-elect-resource-name string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "kube-scheduler"</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The name of resource object that is used for locking during leader election.</p></td>
 </tr>
 
 <tr>
-<td colspan="2">--leader-elect-resource-namespace string</td>
+<td colspan="2">--leader-elect-resource-namespace string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "kube-system"</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The namespace of resource object that is used for locking during leader election.</p></td>
 </tr>
 
 <tr>
-<td colspan="2">--leader-elect-retry-period duration</td>
+<td colspan="2">--leader-elect-retry-period duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 2s</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The duration the clients should wait between attempting acquisition and renewal of a leadership. This is only applicable if leader election is enabled.</p></td>
 </tr>
 
 <tr>
-<td colspan="2">--lock-object-name string</td>
+<td colspan="2">--lock-object-name string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "kube-scheduler"</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>DEPRECATED: define the name of the lock object. Will be removed in favor of leader-elect-resource-name. This parameter is ignored if a config file is specified in --config.</p></td>
 </tr>
 
 <tr>
-<td colspan="2">--lock-object-namespace string</td>
+<td colspan="2">--lock-object-namespace string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "kube-system"</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>DEPRECATED: define the namespace of the lock object. Will be removed in favor of leader-elect-resource-namespace. This parameter is ignored if a config file is specified in --config.</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--log-backtrace-at &lt;a string in the form 'file:N'&gt;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: :0</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>when logging hits line file:N, emit a stack trace</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--log-dir string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If non-empty, write log files in this directory</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--log-file string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If non-empty, use this log file</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--log-file-max-size uint&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 1800</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Defines the maximum size a log file can grow to. Unit is megabytes. If the value is 0, the maximum file size is unlimited.</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--log-flush-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 5s</td>
 </tr>
@@ -334,14 +278,7 @@ kube-scheduler [flags]
 <td colspan="2">--logging-format string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "text"</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Sets the log format. Permitted formats: &quot;text&quot;.<br/>Non-default formats don't honor these flags: --add-dir-header, --alsologtostderr, --log-backtrace-at, --log-dir, --log-file, --log-file-max-size, --logtostderr, --one-output, --skip-headers, --skip-log-headers, --stderrthreshold, --vmodule, --log-flush-frequency.<br/>Non-default choices are currently alpha and subject to change without warning.</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--logtostderr&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: true</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>log to standard error instead of files</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Sets the log format. Permitted formats: &quot;text&quot;.<br/>Non-default formats don't honor these flags: --add-dir-header, --alsologtostderr, --log-backtrace-at, --log-dir, --log-file, --log-file-max-size, --logtostderr, --one-output, --skip-headers, --skip-log-headers, --stderrthreshold, --vmodule.<br/>Non-default choices are currently alpha and subject to change without warning.</p></td>
 </tr>
 
 <tr>
@@ -351,13 +288,6 @@ kube-scheduler [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The address of the Kubernetes API server (overrides any value in kubeconfig)</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--one-output</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, only write logs to their native severity level (vs also writing to each lower severity level)</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--permit-address-sharing</td>
 </tr>
@@ -373,35 +303,14 @@ kube-scheduler [flags]
 </tr>
 
 <tr>
-<td colspan="2">--policy-config-file string</td>
+<td colspan="2">--pod-max-in-unschedulable-pods-duration duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 5m0s</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>DEPRECATED: file with scheduler policy configuration. This file is used if policy ConfigMap is not provided or --use-legacy-policy-config=true. Note: The predicates/priorities defined in this file will take precedence over any profiles define in ComponentConfig.</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>DEPRECATED: the maximum time a pod can stay in unschedulablePods. If a pod stays in unschedulablePods for longer than this value, the pod will be moved from unschedulablePods to backoffQ or activeQ. This flag is deprecated and will be removed in 1.26</p></td>
 </tr>
 
 <tr>
-<td colspan="2">--policy-configmap string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>DEPRECATED: name of the ConfigMap object that contains scheduler's policy configuration. It must exist in the system namespace before scheduler initialization if --use-legacy-policy-config=false. The config must be provided as the value of an element in 'Data' map with the key='policy.cfg'. Note: The predicates/priorities defined in this file will take precedence over any profiles define in ComponentConfig.</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--policy-configmap-namespace string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "kube-system"</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>DEPRECATED: the namespace where policy ConfigMap is located. The kube-system namespace will be used if this is not provided or is empty. Note: The predicates/priorities defined in this file will take precedence over any profiles define in ComponentConfig.</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--port int</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>DEPRECATED: the port on which to serve HTTP insecurely without authentication and authorization. If 0, don't serve plain HTTP at all. See --secure-port instead. This parameter is ignored if a config file is specified in --config.</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--profiling</td>
+<td colspan="2">--profiling&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: true</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>DEPRECATED: enable profiling via web interface host:port/debug/pprof/. This parameter is ignored if a config file is specified in --config.</p></td>
@@ -456,27 +365,6 @@ kube-scheduler [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The previous version for which you want to show hidden metrics. Only the previous minor version is meaningful, other values will not be allowed. The format is &lt;major&gt;.&lt;minor&gt;, e.g.: '1.16'. The purpose of this format is make sure you have the opportunity to notice if the next release hides additional metrics, rather than being surprised when they are permanently removed in the release after that.</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--skip-headers</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, avoid header prefixes in the log messages</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--skip-log-headers</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, avoid headers when opening log files</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--stderrthreshold int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 2</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>logs at or above this threshold go to stderr</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--tls-cert-file string</td>
 </tr>
@@ -488,7 +376,7 @@ kube-scheduler [flags]
 <td colspan="2">--tls-cipher-suites strings</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Comma-separated list of cipher suites for the server. If omitted, the default Go cipher suites will be used.<br/>Preferred values: TLS_AES_128_GCM_SHA256, TLS_AES_256_GCM_SHA384, TLS_CHACHA20_POLY1305_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_GCM_SHA384.<br/>Insecure values: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_RC4_128_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_RC4_128_SHA.</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Comma-separated list of cipher suites for the server. If omitted, the default Go cipher suites will be used.<br/>Preferred values: TLS_AES_128_GCM_SHA256, TLS_AES_256_GCM_SHA384, TLS_CHACHA20_POLY1305_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_GCM_SHA384.<br/>Insecure values: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_RC4_128_SHA, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_RC4_128_SHA.</p></td>
 </tr>
 
 <tr>
@@ -512,13 +400,6 @@ kube-scheduler [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A pair of x509 certificate and private key file paths, optionally suffixed with a list of domain patterns which are fully qualified domain names, possibly with prefixed wildcard segments. The domain patterns also allow IP addresses, but IPs should only be used if the apiserver has visibility to the IP address requested by a client. If no domain patterns are provided, the names of the certificate are extracted. Non-wildcard matches trump over wildcard matches, explicit domain patterns trump over extracted names. For multiple key/certificate pairs, use the --tls-sni-cert-key multiple times. Examples: &quot;example.crt,example.key&quot; or &quot;foo.crt,foo.key:*.foo.com,foo.com&quot;.</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--use-legacy-policy-config</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>DEPRECATED: when set to true, scheduler will ignore policy ConfigMap and uses policy config file. Note: The scheduler will fail if this is combined with Plugin configs</p></td>
-</tr>
-
 <tr>
 <td colspan="2">-v, --v int</td>
 </tr>
@@ -534,10 +415,10 @@ kube-scheduler [flags]
 </tr>
 
 <tr>
-<td colspan="2">--vmodule &lt;comma-separated 'pattern=N' settings&gt;</td>
+<td colspan="2">--vmodule pattern=N,...</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>comma-separated list of pattern=N settings for file-filtered logging</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>comma-separated list of pattern=N settings for file-filtered logging (only works for text log format)</p></td>
 </tr>
 
 <tr>
diff --git a/content/en/docs/reference/command-line-tools-reference/kubelet.md b/content/en/docs/reference/command-line-tools-reference/kubelet.md
index 0531f0847a..f2a8031502 100644
--- a/content/en/docs/reference/command-line-tools-reference/kubelet.md
+++ b/content/en/docs/reference/command-line-tools-reference/kubelet.md
@@ -44,70 +44,70 @@ kubelet [flags]
 <td colspan="2">--add-dir-header</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">If true, adds the file directory to the header of the log messages</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">If true, adds the file directory to the header of the log messages (DEPRECATED: will be removed in a future release, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">here</a>.)</td>
 </tr>
-    
+
 <tr>
 <td colspan="2">--address string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 0.0.0.0 </td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The IP address for the Kubelet to serve on (set to <code>0.0.0.0</code> or <code>::</code> for listening in gll interfaces and IP families)  (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">The IP address for the Kubelet to serve on (set to <code>0.0.0.0</code> or <code>::</code> for listening in all interfaces and IP families)  (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
-    
+
 <tr>
 <td colspan="2">--allowed-unsafe-sysctls strings</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Comma-separated whitelist of unsafe sysctls or unsafe sysctl patterns (ending in <code>&ast;</code>). Use these at your own risk. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Comma-separated whitelist of unsafe sysctls or unsafe sysctl patterns (ending in <code>&ast;</code>). Use these at your own risk. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--alsologtostderr</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Log to standard error as well as files</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Log to standard error as well as files (DEPRECATED: will be removed in a future release, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">here</a>.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--anonymous-auth&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: true</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Enables anonymous requests to the Kubelet server. Requests that are not rejected by another authentication method are treated as anonymous requests. Anonymous requests have a username of <code>system:anonymous</code>, and a group name of <code>system:unauthenticated</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Enables anonymous requests to the Kubelet server. Requests that are not rejected by another authentication method are treated as anonymous requests. Anonymous requests have a username of <code>system:anonymous</code>, and a group name of <code>system:unauthenticated</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--authentication-token-webhook</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Use the <code>TokenReview</code> API to determine authentication for bearer tokens. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Use the <code>TokenReview</code> API to determine authentication for bearer tokens. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--authentication-token-webhook-cache-ttl duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>2m0s</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The duration to cache responses from the webhook token authenticator. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">The duration to cache responses from the webhook token authenticator. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
-<td colspan="2">--authorization-mode string</td>
+<td colspan="2">--authorization-mode string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>AlwaysAllow</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Authorization mode for Kubelet server. Valid options are <code>AlwaysAllow</code> or <code>Webhook</code>. <code>Webhook</code> mode uses the <code>SubjectAccessReview</code> API to determine authorization. Default <code>AlwaysAllow</code> when <code>--config</code> flag is not provided; <code>Webhook</code> when <code>--config</code> flag presents. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Authorization mode for Kubelet server. Valid options are AlwaysAllow or Webhook. Webhook mode uses the SubjectAccessReview API to determine authorization. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--authorization-webhook-cache-authorized-ttl duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>5m0s</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The duration to cache 'authorized' responses from the webhook authorizer. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">The duration to cache 'authorized' responses from the webhook authorizer. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--authorization-webhook-cache-unauthorized-ttl duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>30s</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The duration to cache 'unauthorized' responses from the webhook authorizer. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">The duration to cache 'unauthorized' responses from the webhook authorizer. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
@@ -135,77 +135,56 @@ kubelet [flags]
 <td colspan="2">--cgroup-driver string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>cgroupfs</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Driver that the kubelet uses to manipulate cgroups on the host.  Possible values: <code>cgroupfs</code>, <code>systemd</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)/td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Driver that the kubelet uses to manipulate cgroups on the host.  Possible values: <code>cgroupfs</code>, <code>systemd</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--cgroup-root string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>''</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Optional root cgroup to use for pods. This is handled by the container runtime on a best effort basis. Default: '', which means use the container runtime default. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Optional root cgroup to use for pods. This is handled by the container runtime on a best effort basis. Default: '', which means use the container runtime default. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--cgroups-per-qos&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>true</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Enable creation of QoS cgroup hierarchy, if true top level QoS and pod cgroups are created. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Enable creation of QoS cgroup hierarchy, if true top level QoS and pod cgroups are created. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--client-ca-file string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">If set, any request presenting a client certificate signed by one of the authorities in the client-ca-file is authenticated with an identity corresponding to the <code>CommonName</code> of the client certificate. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">If set, any request presenting a client certificate signed by one of the authorities in the client-ca-file is authenticated with an identity corresponding to the <code>CommonName</code> of the client certificate. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--cloud-config string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The path to the cloud provider configuration file. Empty string for no configuration file. (DEPRECATED: will be removed in 1.23, in favor of removing cloud providers code from Kubelet.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">The path to the cloud provider configuration file. Empty string for no configuration file. (DEPRECATED: will be removed in 1.24 or later, in favor of removing cloud providers code from kubelet.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--cloud-provider string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The provider for cloud services. Set to empty string for running with no cloud provider. If set, the cloud provider determines the name of the node (consult cloud provider documentation to determine if and how the hostname is used). (DEPRECATED: will be removed in 1.23, in favor of removing cloud provider code from Kubelet.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">The provider for cloud services. Set to empty string for running with no cloud provider. If set, the cloud provider determines the name of the node (consult cloud provider documentation to determine if and how the hostname is used). (DEPRECATED: will be removed in 1.24 or later, in favor of removing cloud provider code from Kubelet.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--cluster-dns strings</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Comma-separated list of DNS server IP address. This value is used for containers DNS server in case of Pods with "dnsPolicy=ClusterFirst".<br/><B>Note:</B> all DNS servers appearing in the list MUST serve the same set of records otherwise name resolution within the cluster may not work correctly. There is no guarantee as to which DNS server may be contacted for name resolution. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Comma-separated list of DNS server IP address. This value is used for containers DNS server in case of Pods with "dnsPolicy=ClusterFirst".<br/><B>Note:</B> all DNS servers appearing in the list MUST serve the same set of records otherwise name resolution within the cluster may not work correctly. There is no guarantee as to which DNS server may be contacted for name resolution. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--cluster-domain string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Domain for this cluster. If set, kubelet will configure all containers to search this domain in addition to the host's search domains (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
-</tr>
-
-<tr>
-<td colspan="2">--cni-bin-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>/opt/cni/bin</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">A comma-separated list of full paths of directories in which to search for CNI plugin binaries. This docker-specific flag only works when container-runtime is set to <code>docker</code>. (DEPRECATED: will be removed along with dockershim.)</td>
-</tr>
-
-<tr>
-<td colspan="2">--cni-cache-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>/var/lib/cni/cache</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The full path of the directory in which CNI should store cache files. This docker-specific flag only works when container-runtime is set to <code>docker</code>. (DEPRECATED: will be removed along with dockershim.)</td>
-</tr>
-
-<tr>
-<td colspan="2">--cni-conf-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>/etc/cni/net.d</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">&lt;Warning: Alpha feature&gt; The full path of the directory in which to search for CNI config files. This docker-specific flag only works when container-runtime is set to <code>docker</code>. (DEPRECATED: will be removed along with dockershim.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Domain for this cluster. If set, kubelet will configure all containers to search this domain in addition to the host's search domains (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
@@ -219,169 +198,154 @@ kubelet [flags]
 <td colspan="2">--container-log-max-files int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 5</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">&lt;Warning: Beta feature&gt; Set the maximum number of container log files that can be present for a container. The number must be &gt;= 2. This flag can only be used with <code>--container-runtime=remote</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">&lt;Warning: Beta feature&gt; Set the maximum number of container log files that can be present for a container. The number must be &gt;= 2. This flag can only be used with <code>--container-runtime=remote</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--container-log-max-size string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>10Mi</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">&lt;Warning: Beta feature&gt; Set the maximum size (e.g. <code>10Mi</code>) of container log file before it is rotated. This flag can only be used with <code>--container-runtime=remote</code>.  (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">&lt;Warning: Beta feature&gt; Set the maximum size (e.g. <code>10Mi</code>) of container log file before it is rotated. This flag can only be used with <code>--container-runtime=remote</code>.  (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
-<td colspan="2">--container-runtime string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>docker</code></td>
+<td colspan="2">--container-runtime string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>remote</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The container runtime to use. Possible values: <code>docker</code>, <code>remote</code>.</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">The container runtime to use. Possible values: <code>docker</code>, <code>remote</code>. (DEPRECATED: will be removed in 1.27 as the only valid value is 'remote')</td>
 </tr>
 
 <tr>
-<td colspan="2">--container-runtime-endpoint string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>unix:///var/run/dockershim.sock</code></td>
+<td colspan="2">--container-runtime-endpoint string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">[Experimental] The endpoint of remote runtime service. Currently unix socket endpoint is supported on Linux, while npipe and tcp endpoints are supported on windows. Examples: <code>unix:///var/run/dockershim.sock</code>, <code>npipe:////./pipe/dockershim</code>.</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">The endpoint of remote runtime service. Unix Domain SOckets are supported on Linux, while npipe and tcp endpoints are supported on windows. Examples: <code>unix:///var/run/dockershim.sock</code>, <code>npipe:////./pipe/dockershim</code>.</td>
 </tr>
 
-   
 <tr>
 <td colspan="2">--contention-profiling</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Enable lock contention profiling, if profiling is enabled (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Enable lock contention profiling, if profiling is enabled (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--cpu-cfs-quota&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>true</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Enable CPU CFS quota enforcement for containers that specify CPU limits (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Enable CPU CFS quota enforcement for containers that specify CPU limits (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--cpu-cfs-quota-period duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>100ms</code></td>
    </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Sets CPU CFS quota period value, <code>cpu.cfs_period_us</code>, defaults to Linux Kernel default. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Sets CPU CFS quota period value, <code>cpu.cfs_period_us</code>, defaults to Linux Kernel default. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--cpu-manager-policy string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>none</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">CPU Manager policy to use. Possible values: <code>none</code>, <code>static</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">CPU Manager policy to use. Possible values: <code>none</code>, <code>static</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
-<td colspan="2">--cpu-manager-policy-options strings</td>
+<td colspan="2">--cpu-manager-policy-options mapStringString</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Comma-separated list of options to fine-tune the behavior of the selected CPU Manager policy. If not supplied, keep the default behaviour. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">A set of key=value CPU Manager policy options to use, to fine tune their behaviour. If not supplied, keep the default behaviour. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--cpu-manager-reconcile-period duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>10s</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">&lt;Warning: Alpha feature&gt; CPU Manager reconciliation period. Examples: <code>10s</code>, or <code>1m</code>. If not supplied, defaults to node status update frequency. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
-</tr>
-
-<tr>
-<td colspan="2">--docker-endpoint string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>unix:///var/run/docker.sock</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Use this for the <code>docker</code> endpoint to communicate with. This docker-specific flag only works when container-runtime is set to <code>docker</code>.</td>
-</tr>
-
-<tr>
-<td colspan="2">--dynamic-config-dir string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The Kubelet will use this directory for checkpointing downloaded configurations and tracking configuration health. The Kubelet will create this directory if it does not already exist. The path may be absolute or relative; relative paths start at the Kubelet's current working directory. Providing this flag enables dynamic Kubelet configuration. The <code>DynamicKubeletConfig</code> feature gate must be enabled to pass this flag. (DEPRECATED: Feature DynamicKubeletConfig is deprecated in 1.22 and will not move to GA. It is planned to be removed from Kubernetes in the version 1.23. Please use alternative ways to update kubelet configuration.)</td> 
+<td></td><td style="line-height: 130%; word-wrap: break-word;">&lt;Warning: Alpha feature&gt; CPU Manager reconciliation period. Examples: <code>10s</code>, or <code>1m</code>. If not supplied, defaults to node status update frequency. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--enable-controller-attach-detach&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>true</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Enables the Attach/Detach controller to manage attachment/detachment of volumes scheduled to this node, and disables kubelet from executing any attach/detach operations. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Enables the Attach/Detach controller to manage attachment/detachment of volumes scheduled to this node, and disables kubelet from executing any attach/detach operations. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--enable-debugging-handlers&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>true</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Enables server endpoints for log collection and local running of containers and commands. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Enables server endpoints for log collection and local running of containers and commands. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--enable-server&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>true</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Enable the Kubelet's server. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Enable the Kubelet's server. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--enforce-node-allocatable strings&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>pods</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">A comma separated list of levels of node allocatable enforcement to be enforced by kubelet. Acceptable options are <code>none</code>, <code>pods</code>, <code>system-reserved</code>, and <code>kube-reserved</code>. If the latter two options are specified, <code>--system-reserved-cgroup</code> and <code>--kube-reserved-cgroup</code> must also be set, respectively. If <code>none</code> is specified, no additional options should be set. See https://kubernetes.io/docs/tasks/administer-cluster/reserve-compute-resources/ for more details. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">A comma separated list of levels of node allocatable enforcement to be enforced by kubelet. Acceptable options are <code>none</code>, <code>pods</code>, <code>system-reserved</code>, and <code>kube-reserved</code>. If the latter two options are specified, <code>--system-reserved-cgroup</code> and <code>--kube-reserved-cgroup</code> must also be set, respectively. If <code>none</code> is specified, no additional options should be set. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/reserve-compute-resources/">here</a> for more details. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--event-burst int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 10</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Maximum size of a bursty event records, temporarily allows event records to burst to this number, while still not exceeding <code>--event-qps</code>. The number must be &gt;= 0. If 0 will use default burst (10). (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Maximum size of a bursty event records, temporarily allows event records to burst to this number, while still not exceeding <code>--event-qps</code>. The number must be &gt;= 0. If 0 will use default burst (10). (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--event-qps int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 5</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">QPS to limit event creations. The number must be &gt;= 0. If 0 will use default QPS (5). (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">QPS to limit event creations. The number must be &gt;= 0. If 0 will use default QPS (5). (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--eviction-hard mapStringString&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>imagefs.available<15%,memory.available<100Mi,nodefs.available<10%</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">A set of eviction thresholds (e.g. <code>memory.available<1Gi</code>) that if met would trigger a pod eviction. On a Linux node, the default value also includes <code>nodefs.inodesFree<5%</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">A set of eviction thresholds (e.g. <code>memory.available<1Gi</code>) that if met would trigger a pod eviction. On a Linux node, the default value also includes <code>nodefs.inodesFree<5%</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--eviction-max-pod-grace-period int32</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"> Maximum allowed grace period (in seconds) to use when terminating pods in response to a soft eviction threshold being met. If negative, defer to pod specified value. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"> Maximum allowed grace period (in seconds) to use when terminating pods in response to a soft eviction threshold being met. If negative, defer to pod specified value. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--eviction-minimum-reclaim mapStringString</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">A set of minimum reclaims (e.g. <code>imagefs.available=2Gi</code>) that describes the minimum amount of resource the kubelet will reclaim when performing a pod eviction if that resource is under pressure. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">A set of minimum reclaims (e.g. <code>imagefs.available=2Gi</code>) that describes the minimum amount of resource the kubelet will reclaim when performing a pod eviction if that resource is under pressure. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--eviction-pressure-transition-period duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>5m0s</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Duration for which the kubelet has to wait before transitioning out of an eviction pressure condition. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Duration for which the kubelet has to wait before transitioning out of an eviction pressure condition. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--eviction-soft mapStringString</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">A set of eviction thresholds (e.g. <code>memory.available<1.5Gi</code>) that if met over a corresponding grace period would trigger a pod eviction. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">A set of eviction thresholds (e.g. <code>memory.available<1.5Gi</code>) that if met over a corresponding grace period would trigger a pod eviction. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--eviction-soft-grace-period mapStringString</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">A set of eviction grace periods (e.g. <code>memory.available=1m30s</code>) that correspond to how long a soft eviction threshold must hold before triggering a pod eviction. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">A set of eviction grace periods (e.g. <code>memory.available=1m30s</code>) that correspond to how long a soft eviction threshold must hold before triggering a pod eviction. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
@@ -395,49 +359,28 @@ kubelet [flags]
 <td colspan="2">--experimental-allocatable-ignore-eviction&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>false</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">When set to <code>true</code>, hard eviction thresholds will be ignored while calculating node allocatable. See https://kubernetes.io/docs/tasks/administer-cluster/reserve-compute-resources/ for more details. (DEPRECATED: will be removed in 1.23)</td>
-</tr>
-    
-<tr>
-<td colspan="2">--experimental-bootstrap-kubeconfig string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">DEPRECATED: Use <code>--bootstrap-kubeconfig</code></td>
-</tr>
-
-<tr>
-<td colspan="2">--experimental-check-node-capabilities-before-mount</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">[Experimental] if set to <code>true</code>, the kubelet will check the underlying node for required components (binaries, etc.) before performing the mount (DEPRECATED: will be removed in 1.23, in favor of using CSI.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">When set to <code>true</code>, hard eviction thresholds will be ignored while calculating node allocatable. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/reserve-compute-resources/">here</a> for more details. (DEPRECATED: will be removed in 1.24 or later)</td>
 </tr>
 
 <tr>
 <td colspan="2">--experimental-kernel-memcg-notification</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">If enabled, the kubelet will integrate with the kernel memcg notification to determine if memory eviction thresholds are crossed rather than polling. This flag will be removed in 1.23. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
-</tr>
-
-<tr>
-<td colspan="2">--experimental-log-sanitization bool</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">[Experimental] When enabled, prevents logging of fields tagged as sensitive (passwords, keys, tokens). Runtime log sanitization may introduce significant computation overhead and therefore should not be enabled in production. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Use kernelMemcgNotification configuration, this flag will be removed in 1.24 or later. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--experimental-mounter-path string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>mount</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">[Experimental] Path of mounter binary. Leave empty to use the default <code>mount</code>. (DEPRECATED: will be removed in 1.23, in favor of using CSI.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">[Experimental] Path of mounter binary. Leave empty to use the default <code>mount</code>. (DEPRECATED: will be removed in 1.24 or later, in favor of using CSI.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--fail-swap-on&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>true</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Makes the Kubelet fail to start if swap is enabled on the node. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Makes the Kubelet fail to start if swap is enabled on the node. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
@@ -452,125 +395,128 @@ APIServerIdentity=true|false (ALPHA - default=false)<br/>
 APIServerTracing=true|false (ALPHA - default=false)<br/>
 AllAlpha=true|false (ALPHA - default=false)<br/>
 AllBeta=true|false (BETA - default=false)<br/>
-AnyVolumeDataSource=true|false (ALPHA - default=false)<br/>
+AnyVolumeDataSource=true|false (BETA - default=true)<br/>
 AppArmor=true|false (BETA - default=true)<br/>
 CPUManager=true|false (BETA - default=true)<br/>
-CPUManagerPolicyOptions=true|false (ALPHA - default=false)<br/>
+CPUManagerPolicyAlphaOptions=true|false (ALPHA - default=false)<br/>
+CPUManagerPolicyBetaOptions=true|false (BETA - default=true)<br/>
+CPUManagerPolicyOptions=true|false (BETA - default=true)<br/>
 CSIInlineVolume=true|false (BETA - default=true)<br/>
 CSIMigration=true|false (BETA - default=true)<br/>
-CSIMigrationAWS=true|false (BETA - default=false)<br/>
-CSIMigrationAzureDisk=true|false (BETA - default=false)<br/>
-CSIMigrationAzureFile=true|false (BETA - default=false)<br/>
-CSIMigrationGCE=true|false (BETA - default=false)<br/>
-CSIMigrationOpenStack=true|false (BETA - default=true)<br/>
+CSIMigrationAWS=true|false (BETA - default=true)<br/>
+CSIMigrationAzureFile=true|false (BETA - default=true)<br/>
+CSIMigrationGCE=true|false (BETA - default=true)<br/>
+CSIMigrationPortworx=true|false (ALPHA - default=false)<br/>
+CSIMigrationRBD=true|false (ALPHA - default=false)<br/>
 CSIMigrationvSphere=true|false (BETA - default=false)<br/>
-CSIStorageCapacity=true|false (BETA - default=true)<br/>
-CSIVolumeFSGroupPolicy=true|false (BETA - default=true)<br/>
 CSIVolumeHealth=true|false (ALPHA - default=false)<br/>
-CSRDuration=true|false (BETA - default=true)<br/>
-ConfigurableFSGroupPolicy=true|false (BETA - default=true)<br/>
-ControllerManagerLeaderMigration=true|false (BETA - default=true)<br/>
+ContextualLogging=true|false (ALPHA - default=false)<br/>
+CronJobTimeZone=true|false (ALPHA - default=false)<br/>
 CustomCPUCFSQuotaPeriod=true|false (ALPHA - default=false)<br/>
+CustomResourceValidationExpressions=true|false (ALPHA - default=false)<br/>
 DaemonSetUpdateSurge=true|false (BETA - default=true)<br/>
-DefaultPodTopologySpread=true|false (BETA - default=true)<br/>
-DelegateFSGroupToCSIDriver=true|false (ALPHA - default=false)<br/>
+DelegateFSGroupToCSIDriver=true|false (BETA - default=true)<br/>
 DevicePlugins=true|false (BETA - default=true)<br/>
 DisableAcceleratorUsageMetrics=true|false (BETA - default=true)<br/>
 DisableCloudProviders=true|false (ALPHA - default=false)<br/>
-DownwardAPIHugePages=true|false (BETA - default=false)<br/>
-EfficientWatchResumption=true|false (BETA - default=true)<br/>
+DisableKubeletCloudCredentialProviders=true|false (ALPHA - default=false)<br/>
+DownwardAPIHugePages=true|false (BETA - default=true)<br/>
 EndpointSliceTerminatingCondition=true|false (BETA - default=true)<br/>
-EphemeralContainers=true|false (ALPHA - default=false)<br/>
-ExpandCSIVolumes=true|false (BETA - default=true)<br/>
-ExpandInUsePersistentVolumes=true|false (BETA - default=true)<br/>
-ExpandPersistentVolumes=true|false (BETA - default=true)<br/>
+EphemeralContainers=true|false (BETA - default=true)<br/>
 ExpandedDNSConfig=true|false (ALPHA - default=false)<br/>
 ExperimentalHostUserNamespaceDefaulting=true|false (BETA - default=false)<br/>
-GenericEphemeralVolume=true|false (BETA - default=true)<br/>
+GRPCContainerProbe=true|false (BETA - default=true)<br/>
 GracefulNodeShutdown=true|false (BETA - default=true)<br/>
+GracefulNodeShutdownBasedOnPodPriority=true|false (BETA - default=true)<br/>
 HPAContainerMetrics=true|false (ALPHA - default=false)<br/>
 HPAScaleToZero=true|false (ALPHA - default=false)<br/>
-IPv6DualStack=true|false (BETA - default=true)<br/>
+HonorPVReclaimPolicy=true|false (ALPHA - default=false)<br/>
+IdentifyPodOS=true|false (BETA - default=true)<br/>
 InTreePluginAWSUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginAzureDiskUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginAzureFileUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginGCEUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginOpenStackUnregister=true|false (ALPHA - default=false)<br/>
+InTreePluginPortworxUnregister=true|false (ALPHA - default=false)<br/>
+InTreePluginRBDUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginvSphereUnregister=true|false (ALPHA - default=false)<br/>
-IndexedJob=true|false (BETA - default=true)<br/>
-IngressClassNamespacedParams=true|false (BETA - default=true)<br/>
-JobTrackingWithFinalizers=true|false (ALPHA - default=false)<br/>
-KubeletCredentialProviders=true|false (ALPHA - default=false)<br/>
+JobMutableNodeSchedulingDirectives=true|false (BETA - default=true)<br/>
+JobReadyPods=true|false (BETA - default=true)<br/>
+JobTrackingWithFinalizers=true|false (BETA - default=false)<br/>
+KubeletCredentialProviders=true|false (BETA - default=true)<br/>
 KubeletInUserNamespace=true|false (ALPHA - default=false)<br/>
 KubeletPodResources=true|false (BETA - default=true)<br/>
-KubeletPodResourcesGetAllocatable=true|false (ALPHA - default=false)<br/>
+KubeletPodResourcesGetAllocatable=true|false (BETA - default=true)<br/>
+LegacyServiceAccountTokenNoAutoGeneration=true|false (BETA - default=true)<br/>
 LocalStorageCapacityIsolation=true|false (BETA - default=true)<br/>
 LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - default=false)<br/>
 LogarithmicScaleDown=true|false (BETA - default=true)<br/>
+MaxUnavailableStatefulSet=true|false (ALPHA - default=false)<br/>
 MemoryManager=true|false (BETA - default=true)<br/>
 MemoryQoS=true|false (ALPHA - default=false)<br/>
-MixedProtocolLBService=true|false (ALPHA - default=false)<br/>
+MinDomainsInPodTopologySpread=true|false (ALPHA - default=false)<br/>
+MixedProtocolLBService=true|false (BETA - default=true)<br/>
 NetworkPolicyEndPort=true|false (BETA - default=true)<br/>
+NetworkPolicyStatus=true|false (ALPHA - default=false)<br/>
+NodeOutOfServiceVolumeDetach=true|false (ALPHA - default=false)<br/>
 NodeSwap=true|false (ALPHA - default=false)<br/>
-NonPreemptingPriority=true|false (BETA - default=true)<br/>
-PodAffinityNamespaceSelector=true|false (BETA - default=true)<br/>
+OpenAPIEnums=true|false (BETA - default=true)<br/>
+OpenAPIV3=true|false (BETA - default=true)<br/>
+PodAndContainerStatsFromCRI=true|false (ALPHA - default=false)<br/>
 PodDeletionCost=true|false (BETA - default=true)<br/>
-PodOverhead=true|false (BETA - default=true)<br/>
-PodSecurity=true|false (ALPHA - default=false)<br/>
-PreferNominatedNode=true|false (BETA - default=true)<br/>
+PodSecurity=true|false (BETA - default=true)<br/>
 ProbeTerminationGracePeriod=true|false (BETA - default=false)<br/>
 ProcMountType=true|false (ALPHA - default=false)<br/>
 ProxyTerminatingEndpoints=true|false (ALPHA - default=false)<br/>
 QOSReserved=true|false (ALPHA - default=false)<br/>
 ReadWriteOncePod=true|false (ALPHA - default=false)<br/>
+RecoverVolumeExpansionFailure=true|false (ALPHA - default=false)<br/>
 RemainingItemCount=true|false (BETA - default=true)<br/>
-RemoveSelfLink=true|false (BETA - default=true)<br/>
 RotateKubeletServerCertificate=true|false (BETA - default=true)<br/>
 SeccompDefault=true|false (ALPHA - default=false)<br/>
+ServerSideFieldValidation=true|false (ALPHA - default=false)<br/>
+ServiceIPStaticSubrange=true|false (ALPHA - default=false)<br/>
 ServiceInternalTrafficPolicy=true|false (BETA - default=true)<br/>
-ServiceLBNodePortControl=true|false (BETA - default=true)<br/>
-ServiceLoadBalancerClass=true|false (BETA - default=true)<br/>
 SizeMemoryBackedVolumes=true|false (BETA - default=true)<br/>
-StatefulSetMinReadySeconds=true|false (ALPHA - default=false)<br/>
+StatefulSetAutoDeletePVC=true|false (ALPHA - default=false)<br/>
+StatefulSetMinReadySeconds=true|false (BETA - default=true)<br/>
 StorageVersionAPI=true|false (ALPHA - default=false)<br/>
 StorageVersionHash=true|false (BETA - default=true)<br/>
-SuspendJob=true|false (BETA - default=true)<br/>
-TTLAfterFinished=true|false (BETA - default=true)<br/>
-TopologyAwareHints=true|false (ALPHA - default=false)<br/>
+TopologyAwareHints=true|false (BETA - default=true)<br/>
 TopologyManager=true|false (BETA - default=true)<br/>
 VolumeCapacityPriority=true|false (ALPHA - default=false)<br/>
 WinDSR=true|false (ALPHA - default=false)<br/>
 WinOverlay=true|false (BETA - default=true)<br/>
-WindowsHostProcessContainers=true|false (ALPHA - default=false)<br/>
-(DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+WindowsHostProcessContainers=true|false (BETA - default=true)<br/>
+(DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--file-check-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>20s</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Duration between checking config files for new data. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Duration between checking config files for new data. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--hairpin-mode string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>promiscuous-bridge</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">How should the kubelet setup hairpin NAT. This allows endpoints of a Service to load balance back to themselves if they should try to access their own Service. Valid values are <code>promiscuous-bridge</code>, <code>hairpin-veth</code> and <code>none</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">How should the kubelet setup hairpin NAT. This allows endpoints of a Service to load balance back to themselves if they should try to access their own Service. Valid values are <code>promiscuous-bridge</code>, <code>hairpin-veth</code> and <code>none</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--healthz-bind-address string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>127.0.0.1</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The IP address for the healthz server to serve on (set to <code>0.0.0.0</code> or <code>::</code> for listening in all interfaces and IP families). (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">The IP address for the healthz server to serve on (set to <code>0.0.0.0</code> or <code>::</code> for listening in all interfaces and IP families). (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--healthz-port int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 10248</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The port of the localhost healthz endpoint (set to <code>0</code> to disable). (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">The port of the localhost healthz endpoint (set to <code>0</code> to disable). (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
@@ -591,7 +537,7 @@ WindowsHostProcessContainers=true|false (ALPHA - default=false)<br/>
 <td colspan="2">--http-check-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>20s</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Duration between checking HTTP for new data. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Duration between checking HTTP for new data. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
@@ -612,44 +558,37 @@ WindowsHostProcessContainers=true|false (ALPHA - default=false)<br/>
 <td colspan="2">--image-gc-high-threshold int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 85</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The percent of disk usage after which image garbage collection is always run. Values must be within the range [0, 100], To disable image garbage collection, set to 100.   (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">The percent of disk usage after which image garbage collection is always run. Values must be within the range [0, 100], To disable image garbage collection, set to 100.   (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--image-gc-low-threshold int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 80</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The percent of disk usage before which image garbage collection is never run. Lowest disk usage to garbage collect to. Values must be within the range [0, 100] and should not be larger than that of <code>--image-gc-high-threshold</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
-</tr>
-
-<tr>
-<td colspan="2">--image-pull-progress-deadline duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>1m0s</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">If no pulling progress is made before this deadline, the image pulling will be cancelled. This docker-specific flag only works when container-runtime is set to <code>docker</code>. (DEPRECATED: will be removed along with dockershim.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">The percent of disk usage before which image garbage collection is never run. Lowest disk usage to garbage collect to. Values must be within the range [0, 100] and should not be larger than that of <code>--image-gc-high-threshold</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--image-service-endpoint string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">[Experimental] The endpoint of remote image service. If not specified, it will be the same with <code>--container-runtime-endpoint</code> by default. Currently UNIX socket endpoint is supported on Linux, while npipe and TCP endpoints are supported on Windows.  Examples: <code>unix:///var/run/dockershim.sock</code>, <code>npipe:////./pipe/dockershim</code></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">[Experimental] The endpoint of remote image service. If not specified, it will be the same with <code>--container-runtime-endpoint</code> by default. Unix Domain Socket are supported on Linux, while npipe and TCP endpoints are supported on Windows.  Examples: <code>unix:///var/run/dockershim.sock</code>, <code>npipe:////./pipe/dockershim</code></td>
 </tr>
-    
+
 <tr>
 <td colspan="2">--iptables-drop-bit int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 15</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The bit of the <code>fwmark</code> space to mark packets for dropping. Must be within the range [0, 31]. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">The bit of the <code>fwmark</code> space to mark packets for dropping. Must be within the range [0, 31]. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
-    
+
 <tr>
 <td colspan="2">--iptables-masquerade-bit int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 14</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The bit of the <code>fwmark</code> space to mark packets for SNAT. Must be within the range [0, 31]. Please match this parameter with corresponding parameter in <code>kube-proxy</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">The bit of the <code>fwmark</code> space to mark packets for SNAT. Must be within the range [0, 31]. Please match this parameter with corresponding parameter in <code>kube-proxy</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
-    
+
 <tr>
 <td colspan="2">--keep-terminated-pod-volumes</td>
 </tr>
@@ -661,42 +600,42 @@ WindowsHostProcessContainers=true|false (ALPHA - default=false)<br/>
 <td colspan="2">--kernel-memcg-notification</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">If enabled, the kubelet will integrate with the kernel memcg notification to determine if memory eviction thresholds are crossed rather than polling. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">If enabled, the kubelet will integrate with the kernel memcg notification to determine if memory eviction thresholds are crossed rather than polling. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--kube-api-burst int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 10</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Burst to use while talking with kubernetes API server. The number must be >= 0. If 0 will use default burst (10). (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Burst to use while talking with kubernetes API server. The number must be >= 0. If 0 will use default burst (10). (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--kube-api-content-type string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>application/vnd.kubernetes.protobuf</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Content type of requests sent to apiserver. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Content type of requests sent to apiserver. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--kube-api-qps int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 5</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">QPS to use while talking with kubernetes API server. The number must be &gt;= 0. If 0 will use default QPS (5). (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">QPS to use while talking with kubernetes API server. The number must be &gt;= 0. If 0 will use default QPS (5). Doesn't cover events and node heartbeat apis which rate limiting is controlled by a different set of flags. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--kube-reserved mapStringString&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: &lt;None&gt;</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">A set of <code>&lt;resource name&gt;=&lt;resource quantity&gt;</code> (e.g. <code>cpu=200m,memory=500Mi,ephemeral-storage=1Gi,pid='100'</code>) pairs that describe resources reserved for kubernetes system components. Currently <code>cpu</code>, <code>memory</code> and local <code>ephemeral-storage</code> for root file system are supported. See http://kubernetes.io/docs/user-guide/compute-resources for more detail. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">A set of <code>&lt;resource name&gt;=&lt;resource quantity&gt;</code> (e.g. <code>cpu=200m,memory=500Mi,ephemeral-storage=1Gi,pid='100'</code>) pairs that describe resources reserved for kubernetes system components. Currently <code>cpu</code>, <code>memory</code> and local <code>ephemeral-storage</code> for root file system are supported. See <a href="http://kubernetes.io/docs/user-guide/compute-resources">here</a> for more detail. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--kube-reserved-cgroup string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>''</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Absolute name of the top level cgroup that is used to manage kubernetes components for which compute resources were reserved via <code>--kube-reserved</code> flag. Ex. <code>/kube-reserved</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Absolute name of the top level cgroup that is used to manage kubernetes components for which compute resources were reserved via <code>--kube-reserved</code> flag. Ex. <code>/kube-reserved</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
@@ -710,7 +649,7 @@ WindowsHostProcessContainers=true|false (ALPHA - default=false)<br/>
 <td colspan="2">--kubelet-cgroups string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Optional absolute name of cgroups to create and run the Kubelet in. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Optional absolute name of cgroups to create and run the Kubelet in. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
@@ -724,28 +663,28 @@ WindowsHostProcessContainers=true|false (ALPHA - default=false)<br/>
 <td colspan="2">--log-backtrace-at &lt;A string of format 'file:line'&gt;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>":0"</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">When logging hits line <code><file>:<N></code>, emit a stack trace.</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">When logging hits line <code><file>:<N></code>, emit a stack trace. (DEPRECATED: will be removed in a future release, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">here</a>.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--log-dir string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">If non-empty, write log files in this directory</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">If non-empty, write log files in this directory. (DEPRECATED: will be removed in a future release, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">here</a>.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--log-file string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">If non-empty, use this log file</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">If non-empty, use this log file. (DEPRECATED: will be removed in a future release, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">here</a>.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--log-file-max-size uint&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 1800</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Defines the maximum size a log file can grow to. Unit is megabytes. If the value is 0, the maximum file size is unlimited.</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Defines the maximum size a log file can grow to. Unit is megabytes. If the value is 0, the maximum file size is unlimited. (DEPRECATED: will be removed in a future release, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">here</a>.)</td>
 </tr>
 
 <tr>
@@ -755,59 +694,74 @@ WindowsHostProcessContainers=true|false (ALPHA - default=false)<br/>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">Maximum number of seconds between log flushes.</td>
 </tr>
 
+<tr>
+<td colspan="2">--log-json-info-buffer-size string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>'0'</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">[Experimental] In JSON format with split output streams, the info messages can be buffered for a while to increase performance. The default value of zero bytes disables buffering. The size can be specified as number of bytes (512), multiples of 1000 (1K), multiples of 1024 (2Ki), or powers of those (3M, 4G, 5Mi, 6Gi). (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
+</tr>
+
+<tr>
+<td colspan="2">--log-json-split-stream</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">[Experimental] In JSON format, write error messages to stderr and info messages to stdout. The default is to write a single stream to stdout. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
+</tr>
+
 <tr>
 <td colspan="2">--logging-format string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>text</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Sets the log format. Permitted formats: <code>text</code>, <code>json</code>.<br/>Non-default formats don't honor these flags: <code>--add-dir-header</code>, <code>--alsologtostderr</code>, <code>--log-backtrace-at</code>, <code>--log-dir</code>, <code>--log-file</code>, <code>--log-file-max-size</code>, <code>--logtostderr</code>, <code>--skip_headers</code>, <code>--skip_log_headers</code>, <code>--stderrthreshold</code>, <code>--log-flush-frequency</code>.<br/>Non-default choices are currently alpha and subject to change without warning. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Sets the log format. Permitted formats: <code>text</code>, <code>json</code>.<br/>Non-default formats don't honor these flags: <code>--add-dir-header</code>, <code>--alsologtostderr</code>, <code>--log-backtrace-at</code>, <code>--log-dir</code>, <code>--log-file</code>, <code>--log-file-max-size</code>, <code>--logtostderr</code>, <code>--skip_headers</code>, <code>--skip_log_headers</code>, <code>--stderrthreshold</code>, <code>--log-flush-frequency</code>.<br/>Non-default choices are currently alpha and subject to change without warning. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--logtostderr&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>true</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">log to standard error instead of files.</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">log to standard error instead of files. (DEPRECATED: will be removed in a future release, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">here</a>.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--make-iptables-util-chains&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>true</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">If true, kubelet will ensure <code>iptables</code> utility rules are present on host. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">If true, kubelet will ensure <code>iptables</code> utility rules are present on host. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--manifest-url string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">URL for accessing additional Pod specifications to run (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">URL for accessing additional Pod specifications to run (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--manifest-url-header string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Comma-separated list of HTTP headers to use when accessing the URL provided to <code>--manifest-url</code>. Multiple headers with the same name will be added in the same order provided. This flag can be repeatedly invoked. For example: <code>--manifest-url-header 'a:hello,b:again,c:world' --manifest-url-header 'b:beautiful'</code> (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Comma-separated list of HTTP headers to use when accessing the URL provided to <code>--manifest-url</code>. Multiple headers with the same name will be added in the same order provided. This flag can be repeatedly invoked. For example: <code>--manifest-url-header 'a:hello,b:again,c:world' --manifest-url-header 'b:beautiful'</code> (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
+
 <tr>
 <td colspan="2">--master-service-namespace string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>default</code></td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">The namespace from which the kubernetes master services should be injected into pods. (DEPRECATED: This flag will be removed in a future version.)</td>
 </tr>
-    
+
 <tr>
 <td colspan="2">--max-open-files int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 1000000</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Number of files that can be opened by Kubelet process. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Number of files that can be opened by Kubelet process. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--max-pods int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 110</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Number of Pods that can run on this Kubelet. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Number of Pods that can run on this Kubelet. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
@@ -828,7 +782,7 @@ WindowsHostProcessContainers=true|false (ALPHA - default=false)<br/>
 <td colspan="2">--memory-manager-policy string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>None</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Memory Manager policy to use. Possible values: <code>'None'</code>, <code>'Static'</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Memory Manager policy to use. Possible values: <code>'None'</code>, <code>'Static'</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
@@ -842,21 +796,7 @@ WindowsHostProcessContainers=true|false (ALPHA - default=false)<br/>
 <td colspan="2">--minimum-image-ttl-duration duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>2m0s</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Minimum age for an unused image before it is garbage collected. Examples: <code>'300ms'</code>, <code>'10s'</code> or <code>'2h45m'</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
-</tr>
-
-<tr>
-<td colspan="2">--network-plugin string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The name of the network plugin to be invoked for various events in kubelet/pod lifecycle. This docker-specific flag only works when container-runtime is set to <code>docker</code>. (DEPRECATED: will be removed along with dockershim.)</td>
-</tr>
-
-<tr>
-<td colspan="2">--network-plugin-mtu int32</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The MTU to be passed to the network plugin, to override the default. Set to <code>0</code> to use the default 1460 MTU. This docker-specific flag only works when container-runtime is set to <code>docker</code>. (DEPRECATED: will be removed along with dockershim.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Minimum age for an unused image before it is garbage collected. Examples: <code>'300ms'</code>, <code>'10s'</code> or <code>'2h45m'</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
@@ -877,46 +817,39 @@ WindowsHostProcessContainers=true|false (ALPHA - default=false)<br/>
 <td colspan="2">--node-status-max-images int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 50</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The maximum number of images to report in <code>node.status.images</code>. If <code>-1</code> is specified, no cap will be applied. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">The maximum number of images to report in <code>node.status.images</code>. If <code>-1</code> is specified, no cap will be applied. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--node-status-update-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>10s</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Specifies how often kubelet posts node status to master. Note: be cautious when changing the constant, it must work with <code>nodeMonitorGracePeriod</code> in Node controller. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
-</tr>
-
-<tr>
-<td colspan="2">--non-masquerade-cidr string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>10.0.0.0/8</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Traffic to IPs outside this range will use IP masquerade. Set to <code>'0.0.0.0/0'</code> to never masquerade. (DEPRECATED: will be removed in a future version)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Specifies how often kubelet posts node status to master. Note: be cautious when changing the constant, it must work with <code>nodeMonitorGracePeriod</code> in Node controller. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--one-output</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">If true, only write logs to their native severity level (vs also writing to each lower severity level).</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">If true, only write logs to their native severity level (vs also writing to each lower severity level). (DEPRECATED: will be removed in a future release, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">here</a>.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--oom-score-adj int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: -999</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The <code>oom-score-adj</code> value for kubelet process. Values must be within the range [-1000, 1000]. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">The <code>oom-score-adj</code> value for kubelet process. Values must be within the range [-1000, 1000]. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--pod-cidr string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The CIDR to use for pod IP addresses, only used in standalone mode. In cluster mode, this is obtained from the master. For IPv6, the maximum number of IP's allocated is 65536 (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">The CIDR to use for pod IP addresses, only used in standalone mode. In cluster mode, this is obtained from the master. For IPv6, the maximum number of IP's allocated is 65536 (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
-<td colspan="2">--pod-infra-container-image string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>k8s.gcr.io/pause:3.5</code></td>
+<td colspan="2">--pod-infra-container-image string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>k8s.gcr.io/pause:3.6</code></td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">Specified image will not be pruned by the image garbage collector. When container-runtime is set to <code>docker</code>, all containers in each pod will use the network/IPC namespaces from this image. Other CRI implementations have their own configuration to set this image.</td>
@@ -926,70 +859,63 @@ WindowsHostProcessContainers=true|false (ALPHA - default=false)<br/>
 <td colspan="2">--pod-manifest-path string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Path to the directory containing static pod files to run, or the path to a single static pod file. Files starting with dots will be ignored. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Path to the directory containing static pod files to run, or the path to a single static pod file. Files starting with dots will be ignored. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--pod-max-pids int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: -1</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Set the maximum number of processes per pod. If <code>-1</code>, the kubelet defaults to the node allocatable PID capacity. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Set the maximum number of processes per pod. If <code>-1</code>, the kubelet defaults to the node allocatable PID capacity. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--pods-per-core int32</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Number of Pods per core that can run on this kubelet. The total number of pods on this kubelet cannot exceed <code>--max-pods</code>, so <code>--max-pods</code> will be used if this calculation results in a larger number of pods allowed on the kubelet. A value of <code>0</code> disables this limit. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Number of Pods per core that can run on this kubelet. The total number of pods on this kubelet cannot exceed <code>--max-pods</code>, so <code>--max-pods</code> will be used if this calculation results in a larger number of pods allowed on the kubelet. A value of <code>0</code> disables this limit. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--port int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 10250</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The port for the kubelet to serve on. (DEPRECATED: This parameter should be set via the config file specified by the kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">The port for the kubelet to serve on. (DEPRECATED: This parameter should be set via the config file specified by the kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--protect-kernel-defaults</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"> Default kubelet behaviour for kernel tuning. If set, kubelet errors if any of kernel tunables is different than kubelet defaults. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"> Default kubelet behaviour for kernel tuning. If set, kubelet errors if any of kernel tunables is different than kubelet defaults. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--provider-id string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Unique identifier for identifying the node in a machine database, i.e cloud provider. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Unique identifier for identifying the node in a machine database, i.e cloud provider. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--qos-reserved mapStringString</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">&lt;Warning: Alpha feature&gt; A set of <code>&lt;resource name&gt;=&lt;percentage&gt;</code> (e.g. <code>memory=50%</code>) pairs that describe how pod resource requests are reserved at the QoS level. Currently only <code>memory</code> is supported. Requires the <code>QOSReserved</code> feature gate to be enabled. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">&lt;Warning: Alpha feature&gt; A set of <code>&lt;resource name&gt;=&lt;percentage&gt;</code> (e.g. <code>memory=50%</code>) pairs that describe how pod resource requests are reserved at the QoS level. Currently only <code>memory</code> is supported. Requires the <code>QOSReserved</code> feature gate to be enabled. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--read-only-port int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 10255</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The read-only port for the kubelet to serve on with no authentication/authorization (set to <code>0</code> to disable). (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
-</tr>
-
-<tr>
-<td colspan="2">--really-crash-for-testing</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">If true, when panics occur crash. Intended for testing. (DEPRECATED: will be removed in a future version.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">The read-only port for the kubelet to serve on with no authentication/authorization (set to <code>0</code> to disable). (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--register-node&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>true</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Register the node with the API server. If <code>--kubeconfig</code> is not provided, this flag is irrelevant, as the Kubelet won't have an API server to register with.</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Register the node with the API server. If <code>--kubeconfig</code> is not provided, this flag is irrelevant, as the Kubelet won't have an API server to register with. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
@@ -1003,42 +929,42 @@ WindowsHostProcessContainers=true|false (ALPHA - default=false)<br/>
 <td colspan="2">--register-with-taints mapStringString</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Register the node with the given list of taints (comma separated <code>&lt;key&gt;=&lt;value&gt;:&lt;effect&gt;</code>). No-op if <code>--register-node</code> is <code>false</code>.</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Register the node with the given list of taints (comma separated <code>&lt;key&gt;=&lt;value&gt;:&lt;effect&gt;</code>). No-op if <code>--register-node</code> is <code>false</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--registry-burst int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 10</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Maximum size of a bursty pulls, temporarily allows pulls to burst to this number, while still not exceeding <code>--registry-qps</code>. Only used if <code>--registry-qps</code> is greater than 0. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Maximum size of a bursty pulls, temporarily allows pulls to burst to this number, while still not exceeding <code>--registry-qps</code>. Only used if <code>--registry-qps</code> is greater than 0. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--registry-qps int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 5</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">If &gt; 0, limit registry pull QPS to this value.  If <code>0</code>, unlimited. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">If &gt; 0, limit registry pull QPS to this value.  If <code>0</code>, unlimited. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--reserved-cpus string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">A comma-separated list of CPUs or CPU ranges that are reserved for system and kubernetes usage. This specific list will supersede cpu counts in <code>--system-reserved</code> and <code>--kube-reserved</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">A comma-separated list of CPUs or CPU ranges that are reserved for system and kubernetes usage. This specific list will supersede cpu counts in <code>--system-reserved</code> and <code>--kube-reserved</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--reserved-memory string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">A comma-separated list of memory reservations for NUMA nodes. (e.g. <code>--reserved-memory 0:memory=1Gi,hugepages-1M=2Gi --reserved-memory 1:memory=2Gi</code>). The total sum for each memory type should be equal to the sum of <code>--kube-reserved</code>, <code>--system-reserved</code> and <code>--eviction-threshold</code>. See https://kubernetes.io/docs/tasks/administer-cluster/memory-manager/#reserved-memory-flag for more details. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">A comma-separated list of memory reservations for NUMA nodes. (e.g. <code>--reserved-memory 0:memory=1Gi,hugepages-1M=2Gi --reserved-memory 1:memory=2Gi</code>). The total sum for each memory type should be equal to the sum of <code>--kube-reserved</code>, <code>--system-reserved</code> and <code>--eviction-threshold</code>. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/memory-manager/#reserved-memory-flag">here</a> for more details. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--resolv-conf string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>/etc/resolv.conf</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Resolver configuration file used as the basis for the container DNS resolution configuration. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Resolver configuration file used as the basis for the container DNS resolution configuration. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
@@ -1052,21 +978,21 @@ WindowsHostProcessContainers=true|false (ALPHA - default=false)<br/>
 <td colspan="2">--rotate-certificates</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">&lt;Warning: Beta feature&gt; Auto rotate the kubelet client certificates by requesting new certificates from the <code>kube-apiserver</code> when the certificate expiration approaches. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">&lt;Warning: Beta feature&gt; Auto rotate the kubelet client certificates by requesting new certificates from the <code>kube-apiserver</code> when the certificate expiration approaches. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--rotate-server-certificates</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Auto-request and rotate the kubelet serving certificates by requesting new certificates from the <code>kube-apiserver</code> when the certificate expiration approaches. Requires the <code>RotateKubeletServerCertificate</code> feature gate to be enabled, and approval of the submitted <code>CertificateSigningRequest</code> objects. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Auto-request and rotate the kubelet serving certificates by requesting new certificates from the <code>kube-apiserver</code> when the certificate expiration approaches. Requires the <code>RotateKubeletServerCertificate</code> feature gate to be enabled, and approval of the submitted <code>CertificateSigningRequest</code> objects. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--runonce</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">If <code>true</code>, exit after spawning pods from local manifests or remote urls. Exclusive with <code>--enable-server</code> (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">If <code>true</code>, exit after spawning pods from local manifests or remote urls. Exclusive with <code>--enable-server</code> (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
@@ -1080,92 +1006,84 @@ WindowsHostProcessContainers=true|false (ALPHA - default=false)<br/>
 <td colspan="2">--runtime-request-timeout duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>2m0s</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Timeout of all runtime requests except long running request - <code>pull</code>, <code>logs</code>, <code>exec</code> and <code>attach</code>. When timeout exceeded, kubelet will cancel the request, throw out an error and retry later. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Timeout of all runtime requests except long running request - <code>pull</code>, <code>logs</code>, <code>exec</code> and <code>attach</code>. When timeout exceeded, kubelet will cancel the request, throw out an error and retry later. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
-<td colspan="2">--seccomp-default RuntimeDefault</td>
+<td colspan="2">--seccomp-default string</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">&lt;Warning: Alpha feature&gt; Enable the use of <code>RuntimeDefault</code> as the default seccomp profile for all workloads. The <code>SeccompDefault</code> feature gate must be enabled to allow this flag, which is disabled by default.</td>
 </tr>
 
-<tr>
-<td colspan="2">--seccomp-profile-root string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>/var/lib/kubelet/seccomp</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">&lt;Warning: Alpha feature&gt; Directory path for seccomp profiles. (DEPRECATED: will be removed in 1.23, in favor of using the <code><root-dir>/seccomp</code> directory)
-</td>
-</tr>
-
 <tr>
 <td colspan="2">--serialize-image-pulls&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>true</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Pull images one at a time. We recommend *not* changing the default value on nodes that run docker daemon with version &lt; 1.9 or an <code>aufs</code> storage backend. Issue #10959 has more details. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Pull images one at a time. We recommend *not* changing the default value on nodes that run docker daemon with version &lt; 1.9 or an <code>aufs</code> storage backend. Issue #10959 has more details. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--skip-headers</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">If <code>true</code>, avoid header prefixes in the log messages</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">If <code>true</code>, avoid header prefixes in the log messages. (DEPRECATED: will be removed in a future release, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">here</a>.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--skip-log-headers</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">If <code>true</code>, avoid headers when opening log files</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">If <code>true</code>, avoid headers when opening log files. (DEPRECATED: will be removed in a future release, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">here</a>.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--stderrthreshold int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 2</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">logs at or above this threshold go to stderr.</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">logs at or above this threshold go to stderr. (DEPRECATED: will be removed in a future release, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">here</a>.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--streaming-connection-idle-timeout duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>4h0m0s</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Maximum time a streaming connection can be idle before the connection is automatically closed. <code>0</code> indicates no timeout. Example: <code>5m</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Maximum time a streaming connection can be idle before the connection is automatically closed. <code>0</code> indicates no timeout. Example: <code>5m</code>. Note: All connections to the kubelet server have a maximum duration of 4 hours.  (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--sync-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>1m0s</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Max period between synchronizing running containers and config. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Max period between synchronizing running containers and config. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--system-cgroups string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Optional absolute name of cgroups in which to place all non-kernel processes that are not already inside a cgroup under <code>'/'</code>. Empty for no container. Rolling back the flag requires a reboot. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Optional absolute name of cgroups in which to place all non-kernel processes that are not already inside a cgroup under <code>'/'</code>. Empty for no container. Rolling back the flag requires a reboot. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--system-reserved mapStringString&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: &lt;none&gt;</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">A set of <code>&lt;resource name&gt;=&lt;resource quantity&gt;</code> (e.g. <code>cpu=200m,memory=500Mi,ephemeral-storage=1Gi,pid='100'</code>) pairs that describe resources reserved for non-kubernetes components. Currently only <code>cpu</code> and <code>memory</code> are supported. See http://kubernetes.io/docs/user-guide/compute-resources for more detail. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">A set of <code>&lt;resource name&gt;=&lt;resource quantity&gt;</code> (e.g. <code>cpu=200m,memory=500Mi,ephemeral-storage=1Gi,pid='100'</code>) pairs that describe resources reserved for non-kubernetes components. Currently only <code>cpu</code> and <code>memory</code> are supported. See <a href="http://kubernetes.io/docs/user-guide/compute-resources">here</a> for more detail. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--system-reserved-cgroup string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>''</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Absolute name of the top level cgroup that is used to manage non-kubernetes components for which compute resources were reserved via <code>--system-reserved</code> flag. Ex. <code>/system-reserved</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Absolute name of the top level cgroup that is used to manage non-kubernetes components for which compute resources were reserved via <code>--system-reserved</code> flag. Ex. <code>/system-reserved</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--tls-cert-file string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">File containing x509 Certificate used for serving HTTPS (with intermediate certs, if any, concatenated after server cert). If <code>--tls-cert-file</code> and <code>--tls-private-key-file</code> are not provided, a self-signed certificate and key are generated for the public address and saved to the directory passed to <code>--cert-dir</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">File containing x509 Certificate used for serving HTTPS (with intermediate certs, if any, concatenated after server cert). If <code>--tls-cert-file</code> and <code>--tls-private-key-file</code> are not provided, a self-signed certificate and key are generated for the public address and saved to the directory passed to <code>--cert-dir</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
@@ -1174,24 +1092,24 @@ WindowsHostProcessContainers=true|false (ALPHA - default=false)<br/>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">Comma-separated list of cipher suites for the server. If omitted, the default Go cipher suites will be used.<br/>
 Preferred values:
-TLS_AES_128_GCM_SHA256, TLS_AES_256_GCM_SHA384, TLS_CHACHA20_POLY1305_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_GCM_SHA384.<br/> 
-Insecure values:
-TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_RC4_128_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_RC4_128_SHA.
-(DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
+`TLS_AES_128_GCM_SHA256`, `TLS_AES_256_GCM_SHA384`, `TLS_CHACHA20_POLY1305_SHA256`, `TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA`, `TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256`, `TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA`, `TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384`, `TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305`, `TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256`, `TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA`, `TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256`, `TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA`, `TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384`, `TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305`, `TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256`, `TLS_RSA_WITH_AES_128_CBC_SHA`, `TLS_RSA_WITH_AES_128_GCM_SHA256`, `TLS_RSA_WITH_AES_256_CBC_SHA`, `TLS_RSA_WITH_AES_256_GCM_SHA384`<br/>
+Insecure values:<br/>
+`TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256`, `TLS_ECDHE_ECDSA_WITH_RC4_128_SHA`, `TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA`, `TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256`, `TLS_ECDHE_RSA_WITH_RC4_128_SHA`, `TLS_RSA_WITH_3DES_EDE_CBC_SHA`, `TLS_RSA_WITH_AES_128_CBC_SHA256`, `TLS_RSA_WITH_RC4_128_SHA`.<br/>
+(DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
 </tr>
 
 <tr>
 <td colspan="2">--tls-min-version string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Minimum TLS version supported. Possible values: <code>VersionTLS10</code>, <code>VersionTLS11</code>, <code>VersionTLS12</code>, <code>VersionTLS13</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Minimum TLS version supported. Possible values: <code>VersionTLS10</code>, <code>VersionTLS11</code>, <code>VersionTLS12</code>, <code>VersionTLS13</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--tls-private-key-file string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">File containing x509 private key matching <code>--tls-cert-file</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">File containing x509 private key matching <code>--tls-cert-file</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 
@@ -1199,14 +1117,14 @@ TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_RC4_128_SHA, TLS_E
 <td colspan="2">--topology-manager-policy string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>'none'</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Topology Manager policy to use. Possible values: <code>'none'</code>, <code>'best-effort'</code>, <code>'restricted'</code>, <code>'single-numa-node'</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Topology Manager policy to use. Possible values: <code>'none'</code>, <code>'best-effort'</code>, <code>'restricted'</code>, <code>'single-numa-node'</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--topology-manager-scope string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>container</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Scope to which topology hints applied. Topology Manager collects hints from Hint Providers and applies them to defined scope to ensure the pod admission. Possible values: <code>'container'</code>, <code>'pod'</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Scope to which topology hints applied. Topology Manager collects hints from Hint Providers and applies them to defined scope to ensure the pod admission. Possible values: <code>'container'</code>, <code>'pod'</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
@@ -1224,7 +1142,7 @@ TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_RC4_128_SHA, TLS_E
 </tr>
 
 <tr>
-<td colspan="2">--vmodule &lt;A list of 'pattern=N' string&gt;</td>
+<td colspan="2">--vmodule &lt;A list of 'pattern=N' strings&gt;</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">Comma-separated list of <code>pattern=N</code> settings for file-filtered logging</td>
@@ -1234,14 +1152,14 @@ TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_RC4_128_SHA, TLS_E
 <td colspan="2">--volume-plugin-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>/usr/libexec/kubernetes/kubelet-plugins/volume/exec/</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The full path of the directory in which to search for additional third party volume plugins. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">The full path of the directory in which to search for additional third party volume plugins. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 
 <tr>
 <td colspan="2">--volume-stats-agg-period duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: <code>1m0s</code></td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Specifies interval for kubelet to calculate and cache the volume disk usage for all pods and volumes. To disable volume calculations, set to <code>0</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Specifies interval for kubelet to calculate and cache the volume disk usage for all pods and volumes. To disable volume calculations, set to <code>0</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
 </tr>
 </tbody>
 </table>
diff --git a/content/en/docs/reference/config-api/apiserver-audit.v1.md b/content/en/docs/reference/config-api/apiserver-audit.v1.md
index 11df06bd8c..e48824c649 100644
--- a/content/en/docs/reference/config-api/apiserver-audit.v1.md
+++ b/content/en/docs/reference/config-api/apiserver-audit.v1.md
@@ -16,18 +16,16 @@ auto_generated: true
   
     
 
-
 ## `Event`     {#audit-k8s-io-v1-Event}
     
 
-
-
 **Appears in:**
 
 - [EventList](#audit-k8s-io-v1-EventList)
 
 
-Event captures all the information that can be included in an API audit log.
+<p>Event captures all the information that can be included in an API audit log.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
@@ -36,165 +34,152 @@ Event captures all the information that can be included in an API audit log.
 <tr><td><code>apiVersion</code><br/>string</td><td><code>audit.k8s.io/v1</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>Event</code></td></tr>
     
-
-  
   
 <tr><td><code>level</code> <B>[Required]</B><br/>
 <a href="#audit-k8s-io-v1-Level"><code>Level</code></a>
 </td>
 <td>
-   AuditLevel at which event was generated</td>
+   <p>AuditLevel at which event was generated</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>auditID</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/types#UID"><code>k8s.io/apimachinery/pkg/types.UID</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/types#UID"><code>k8s.io/apimachinery/pkg/types.UID</code></a>
 </td>
 <td>
-   Unique audit ID, generated for each request.</td>
+   <p>Unique audit ID, generated for each request.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>stage</code> <B>[Required]</B><br/>
 <a href="#audit-k8s-io-v1-Stage"><code>Stage</code></a>
 </td>
 <td>
-   Stage of the request handling when this event instance was generated.</td>
+   <p>Stage of the request handling when this event instance was generated.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>requestURI</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   RequestURI is the request URI as sent by the client to a server.</td>
+   <p>RequestURI is the request URI as sent by the client to a server.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>verb</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   Verb is the kubernetes verb associated with the request.
-For non-resource requests, this is the lower-cased HTTP method.</td>
+   <p>Verb is the kubernetes verb associated with the request.
+For non-resource requests, this is the lower-cased HTTP method.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>user</code> <B>[Required]</B><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#userinfo-v1-authentication"><code>authentication/v1.UserInfo</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#userinfo-v1-authentication"><code>authentication/v1.UserInfo</code></a>
 </td>
 <td>
-   Authenticated user information.</td>
+   <p>Authenticated user information.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>impersonatedUser</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#userinfo-v1-authentication"><code>authentication/v1.UserInfo</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#userinfo-v1-authentication"><code>authentication/v1.UserInfo</code></a>
 </td>
 <td>
-   Impersonated user information.</td>
+   <p>Impersonated user information.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>sourceIPs</code><br/>
 <code>[]string</code>
 </td>
 <td>
-   Source IPs, from where the request originated and intermediate proxies.</td>
+   <p>Source IPs, from where the request originated and intermediate proxies.
+The source IPs are listed from (in order):</p>
+<ol>
+<li>X-Forwarded-For request header IPs</li>
+<li>X-Real-Ip header, if not present in the X-Forwarded-For list</li>
+<li>The remote address for the connection, if it doesn't match the last
+IP in the list up to here (X-Forwarded-For or X-Real-Ip).
+Note: All but the last IP can be arbitrarily set by the client.</li>
+</ol>
+</td>
 </tr>
-    
-  
 <tr><td><code>userAgent</code><br/>
 <code>string</code>
 </td>
 <td>
-   UserAgent records the user agent string reported by the client.
-Note that the UserAgent is provided by the client, and must not be trusted.</td>
+   <p>UserAgent records the user agent string reported by the client.
+Note that the UserAgent is provided by the client, and must not be trusted.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>objectRef</code><br/>
 <a href="#audit-k8s-io-v1-ObjectReference"><code>ObjectReference</code></a>
 </td>
 <td>
-   Object reference this request is targeted at.
-Does not apply for List-type requests, or non-resource requests.</td>
+   <p>Object reference this request is targeted at.
+Does not apply for List-type requests, or non-resource requests.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>responseStatus</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#status-v1-meta"><code>meta/v1.Status</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#status-v1-meta"><code>meta/v1.Status</code></a>
 </td>
 <td>
-   The response status, populated even when the ResponseObject is not a Status type.
+   <p>The response status, populated even when the ResponseObject is not a Status type.
 For successful responses, this will only include the Code and StatusSuccess.
-For non-status type error responses, this will be auto-populated with the error Message.</td>
+For non-status type error responses, this will be auto-populated with the error Message.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>requestObject</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/runtime#Unknown"><code>k8s.io/apimachinery/pkg/runtime.Unknown</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/runtime#Unknown"><code>k8s.io/apimachinery/pkg/runtime.Unknown</code></a>
 </td>
 <td>
-   API object from the request, in JSON format. The RequestObject is recorded as-is in the request
+   <p>API object from the request, in JSON format. The RequestObject is recorded as-is in the request
 (possibly re-encoded as JSON), prior to version conversion, defaulting, admission or
 merging. It is an external versioned object type, and may not be a valid object on its own.
-Omitted for non-resource requests.  Only logged at Request Level and higher.</td>
+Omitted for non-resource requests.  Only logged at Request Level and higher.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>responseObject</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/runtime#Unknown"><code>k8s.io/apimachinery/pkg/runtime.Unknown</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/runtime#Unknown"><code>k8s.io/apimachinery/pkg/runtime.Unknown</code></a>
 </td>
 <td>
-   API object returned in the response, in JSON. The ResponseObject is recorded after conversion
+   <p>API object returned in the response, in JSON. The ResponseObject is recorded after conversion
 to the external type, and serialized as JSON.  Omitted for non-resource requests.  Only logged
-at Response Level.</td>
+at Response Level.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>requestReceivedTimestamp</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#microtime-v1-meta"><code>meta/v1.MicroTime</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#microtime-v1-meta"><code>meta/v1.MicroTime</code></a>
 </td>
 <td>
-   Time the request reached the apiserver.</td>
+   <p>Time the request reached the apiserver.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>stageTimestamp</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#microtime-v1-meta"><code>meta/v1.MicroTime</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#microtime-v1-meta"><code>meta/v1.MicroTime</code></a>
 </td>
 <td>
-   Time the request reached current audit stage.</td>
+   <p>Time the request reached current audit stage.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>annotations</code><br/>
 <code>map[string]string</code>
 </td>
 <td>
-   Annotations is an unstructured key value map stored with an audit event that may be set by
+   <p>Annotations is an unstructured key value map stored with an audit event that may be set by
 plugins invoked in the request serving chain, including authentication, authorization and
 admission plugins. Note that these annotations are for the audit event, and do not correspond
 to the metadata.annotations of the submitted object. Keys should uniquely identify the informing
 component to avoid name collisions (e.g. podsecuritypolicy.admission.k8s.io/policy). Values
-should be short. Annotations are included in the Metadata level.</td>
+should be short. Annotations are included in the Metadata level.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `EventList`     {#audit-k8s-io-v1-EventList}
     
 
 
+<p>EventList is a list of audit Events.</p>
 
 
-EventList is a list of audit Events.
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -202,44 +187,33 @@ EventList is a list of audit Events.
 <tr><td><code>apiVersion</code><br/>string</td><td><code>audit.k8s.io/v1</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>EventList</code></td></tr>
     
-
-  
   
 <tr><td><code>metadata</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#listmeta-v1-meta"><code>meta/v1.ListMeta</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#listmeta-v1-meta"><code>meta/v1.ListMeta</code></a>
 </td>
 <td>
-   <span class="text-muted">No description provided.</span>
-   </td>
+   <span class="text-muted">No description provided.</span></td>
 </tr>
-    
-  
 <tr><td><code>items</code> <B>[Required]</B><br/>
 <a href="#audit-k8s-io-v1-Event"><code>[]Event</code></a>
 </td>
 <td>
-   <span class="text-muted">No description provided.</span>
-   </td>
+   <span class="text-muted">No description provided.</span></td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `Policy`     {#audit-k8s-io-v1-Policy}
     
 
-
-
 **Appears in:**
 
 - [PolicyList](#audit-k8s-io-v1-PolicyList)
 
 
-Policy defines the configuration of audit logging, and the rules for how different request
-categories are logged.
+<p>Policy defines the configuration of audit logging, and the rules for how different request
+categories are logged.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
@@ -248,50 +222,54 @@ categories are logged.
 <tr><td><code>apiVersion</code><br/>string</td><td><code>audit.k8s.io/v1</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>Policy</code></td></tr>
     
-
-  
   
 <tr><td><code>metadata</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#objectmeta-v1-meta"><code>meta/v1.ObjectMeta</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#objectmeta-v1-meta"><code>meta/v1.ObjectMeta</code></a>
 </td>
 <td>
-   ObjectMeta is included for interoperability with API infrastructure.Refer to the Kubernetes API documentation for the fields of the <code>metadata</code> field.</td>
+   <p>ObjectMeta is included for interoperability with API infrastructure.</p>
+Refer to the Kubernetes API documentation for the fields of the <code>metadata</code> field.</td>
 </tr>
-    
-  
 <tr><td><code>rules</code> <B>[Required]</B><br/>
 <a href="#audit-k8s-io-v1-PolicyRule"><code>[]PolicyRule</code></a>
 </td>
 <td>
-   Rules specify the audit Level a request should be recorded at.
+   <p>Rules specify the audit Level a request should be recorded at.
 A request may match multiple rules, in which case the FIRST matching rule is used.
 The default audit level is None, but can be overridden by a catch-all rule at the end of the list.
-PolicyRules are strictly ordered.</td>
+PolicyRules are strictly ordered.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>omitStages</code><br/>
 <a href="#audit-k8s-io-v1-Stage"><code>[]Stage</code></a>
 </td>
 <td>
-   OmitStages is a list of stages for which no events are created. Note that this can also
-be specified per rule in which case the union of both are omitted.</td>
+   <p>OmitStages is a list of stages for which no events are created. Note that this can also
+be specified per rule in which case the union of both are omitted.</p>
+</td>
+</tr>
+<tr><td><code>omitManagedFields</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>OmitManagedFields indicates whether to omit the managed fields of the request
+and response bodies from being written to the API audit log.
+This is used as a global default - a value of 'true' will omit the managed fileds,
+otherwise the managed fields will be included in the API audit log.
+Note that this can also be specified per rule in which case the value specified
+in a rule will override the global default.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `PolicyList`     {#audit-k8s-io-v1-PolicyList}
     
 
 
+<p>PolicyList is a list of audit Policies.</p>
 
 
-PolicyList is a list of audit Policies.
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -299,99 +277,78 @@ PolicyList is a list of audit Policies.
 <tr><td><code>apiVersion</code><br/>string</td><td><code>audit.k8s.io/v1</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>PolicyList</code></td></tr>
     
-
-  
   
 <tr><td><code>metadata</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#listmeta-v1-meta"><code>meta/v1.ListMeta</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#listmeta-v1-meta"><code>meta/v1.ListMeta</code></a>
 </td>
 <td>
-   <span class="text-muted">No description provided.</span>
-   </td>
+   <span class="text-muted">No description provided.</span></td>
 </tr>
-    
-  
 <tr><td><code>items</code> <B>[Required]</B><br/>
 <a href="#audit-k8s-io-v1-Policy"><code>[]Policy</code></a>
 </td>
 <td>
-   <span class="text-muted">No description provided.</span>
-   </td>
+   <span class="text-muted">No description provided.</span></td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `GroupResources`     {#audit-k8s-io-v1-GroupResources}
     
 
-
-
 **Appears in:**
 
 - [PolicyRule](#audit-k8s-io-v1-PolicyRule)
 
 
-GroupResources represents resource kinds in an API group.
+<p>GroupResources represents resource kinds in an API group.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>group</code><br/>
 <code>string</code>
 </td>
 <td>
-   Group is the name of the API group that contains the resources.
-The empty string represents the core API group.</td>
+   <p>Group is the name of the API group that contains the resources.
+The empty string represents the core API group.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>resources</code><br/>
 <code>[]string</code>
 </td>
 <td>
-   Resources is a list of resources this rule applies to.
-
-For example:
+   <p>Resources is a list of resources this rule applies to.</p>
+<p>For example:
 'pods' matches pods.
 'pods/log' matches the log subresource of pods.
-'&lowast;' matches all resources and their subresources.
-'pods/&lowast;' matches all subresources of pods.
-'&lowast;/scale' matches all scale subresources.
-
-If wildcard is present, the validation rule will ensure resources do not
-overlap with each other.
-
-An empty list implies all resources and subresources in this API groups apply.</td>
+'<em>' matches all resources and their subresources.
+'pods/</em>' matches all subresources of pods.
+'*/scale' matches all scale subresources.</p>
+<p>If wildcard is present, the validation rule will ensure resources do not
+overlap with each other.</p>
+<p>An empty list implies all resources and subresources in this API groups apply.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>resourceNames</code><br/>
 <code>[]string</code>
 </td>
 <td>
-   ResourceNames is a list of resource instance names that the policy matches.
+   <p>ResourceNames is a list of resource instance names that the policy matches.
 Using this field requires Resources to be specified.
-An empty list implies that every instance of the resource is matched.</td>
+An empty list implies that every instance of the resource is matched.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `Level`     {#audit-k8s-io-v1-Level}
     
 (Alias of `string`)
 
-
 **Appears in:**
 
 - [Event](#audit-k8s-io-v1-Event)
@@ -399,211 +356,189 @@ An empty list implies that every instance of the resource is matched.</td>
 - [PolicyRule](#audit-k8s-io-v1-PolicyRule)
 
 
-Level defines the amount of information logged during auditing
+<p>Level defines the amount of information logged during auditing</p>
 
 
-    
 
 
 ## `ObjectReference`     {#audit-k8s-io-v1-ObjectReference}
     
 
-
-
 **Appears in:**
 
 - [Event](#audit-k8s-io-v1-Event)
 
 
-ObjectReference contains enough information to let you inspect or modify the referred object.
+<p>ObjectReference contains enough information to let you inspect or modify the referred object.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>resource</code><br/>
 <code>string</code>
 </td>
 <td>
-   <span class="text-muted">No description provided.</span>
-   </td>
+   <span class="text-muted">No description provided.</span></td>
 </tr>
-    
-  
 <tr><td><code>namespace</code><br/>
 <code>string</code>
 </td>
 <td>
-   <span class="text-muted">No description provided.</span>
-   </td>
+   <span class="text-muted">No description provided.</span></td>
 </tr>
-    
-  
 <tr><td><code>name</code><br/>
 <code>string</code>
 </td>
 <td>
-   <span class="text-muted">No description provided.</span>
-   </td>
+   <span class="text-muted">No description provided.</span></td>
 </tr>
-    
-  
 <tr><td><code>uid</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/types#UID"><code>k8s.io/apimachinery/pkg/types.UID</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/types#UID"><code>k8s.io/apimachinery/pkg/types.UID</code></a>
 </td>
 <td>
-   <span class="text-muted">No description provided.</span>
-   </td>
+   <span class="text-muted">No description provided.</span></td>
 </tr>
-    
-  
 <tr><td><code>apiGroup</code><br/>
 <code>string</code>
 </td>
 <td>
-   APIGroup is the name of the API group that contains the referred object.
-The empty string represents the core API group.</td>
+   <p>APIGroup is the name of the API group that contains the referred object.
+The empty string represents the core API group.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>apiVersion</code><br/>
 <code>string</code>
 </td>
 <td>
-   APIVersion is the version of the API group that contains the referred object.</td>
+   <p>APIVersion is the version of the API group that contains the referred object.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>resourceVersion</code><br/>
 <code>string</code>
 </td>
 <td>
-   <span class="text-muted">No description provided.</span>
-   </td>
+   <span class="text-muted">No description provided.</span></td>
 </tr>
-    
-  
 <tr><td><code>subresource</code><br/>
 <code>string</code>
 </td>
 <td>
-   <span class="text-muted">No description provided.</span>
-   </td>
+   <span class="text-muted">No description provided.</span></td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `PolicyRule`     {#audit-k8s-io-v1-PolicyRule}
     
 
-
-
 **Appears in:**
 
 - [Policy](#audit-k8s-io-v1-Policy)
 
 
-PolicyRule maps requests based off metadata to an audit Level.
-Requests must match the rules of every field (an intersection of rules).
+<p>PolicyRule maps requests based off metadata to an audit Level.
+Requests must match the rules of every field (an intersection of rules).</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>level</code> <B>[Required]</B><br/>
 <a href="#audit-k8s-io-v1-Level"><code>Level</code></a>
 </td>
 <td>
-   The Level that requests matching this rule are recorded at.</td>
+   <p>The Level that requests matching this rule are recorded at.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>users</code><br/>
 <code>[]string</code>
 </td>
 <td>
-   The users (by authenticated user name) this rule applies to.
-An empty list implies every user.</td>
+   <p>The users (by authenticated user name) this rule applies to.
+An empty list implies every user.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>userGroups</code><br/>
 <code>[]string</code>
 </td>
 <td>
-   The user groups this rule applies to. A user is considered matching
+   <p>The user groups this rule applies to. A user is considered matching
 if it is a member of any of the UserGroups.
-An empty list implies every user group.</td>
+An empty list implies every user group.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>verbs</code><br/>
 <code>[]string</code>
 </td>
 <td>
-   The verbs that match this rule.
-An empty list implies every verb.</td>
+   <p>The verbs that match this rule.
+An empty list implies every verb.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>resources</code><br/>
 <a href="#audit-k8s-io-v1-GroupResources"><code>[]GroupResources</code></a>
 </td>
 <td>
-   Resources that this rule matches. An empty list implies all kinds in all API groups.</td>
+   <p>Resources that this rule matches. An empty list implies all kinds in all API groups.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>namespaces</code><br/>
 <code>[]string</code>
 </td>
 <td>
-   Namespaces that this rule matches.
-The empty string "" matches non-namespaced resources.
-An empty list implies every namespace.</td>
+   <p>Namespaces that this rule matches.
+The empty string &quot;&quot; matches non-namespaced resources.
+An empty list implies every namespace.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>nonResourceURLs</code><br/>
 <code>[]string</code>
 </td>
 <td>
-   NonResourceURLs is a set of URL paths that should be audited.
-&lowast;s are allowed, but only as the full, final step in the path.
+   <p>NonResourceURLs is a set of URL paths that should be audited.
+<em>s are allowed, but only as the full, final step in the path.
 Examples:
- "/metrics" - Log requests for apiserver metrics
- "/healthz&lowast;" - Log all health checks</td>
+&quot;/metrics&quot; - Log requests for apiserver metrics
+&quot;/healthz</em>&quot; - Log all health checks</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>omitStages</code><br/>
 <a href="#audit-k8s-io-v1-Stage"><code>[]Stage</code></a>
 </td>
 <td>
-   OmitStages is a list of stages for which no events are created. Note that this can also
+   <p>OmitStages is a list of stages for which no events are created. Note that this can also
 be specified policy wide in which case the union of both are omitted.
-An empty list means no restrictions will apply.</td>
+An empty list means no restrictions will apply.</p>
+</td>
+</tr>
+<tr><td><code>omitManagedFields</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>OmitManagedFields indicates whether to omit the managed fields of the request
+and response bodies from being written to the API audit log.</p>
+<ul>
+<li>a value of 'true' will drop the managed fields from the API audit log</li>
+<li>a value of 'false' indicates that the managed fileds should be included
+in the API audit log
+Note that the value, if specified, in this rule will override the global default
+If a value is not specified then the global default specified in
+Policy.OmitManagedFields will stand.</li>
+</ul>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `Stage`     {#audit-k8s-io-v1-Stage}
     
 (Alias of `string`)
 
-
 **Appears in:**
 
 - [Event](#audit-k8s-io-v1-Event)
@@ -613,8 +548,8 @@ An empty list means no restrictions will apply.</td>
 - [PolicyRule](#audit-k8s-io-v1-PolicyRule)
 
 
-Stage defines the stages in request handling that audit events may be generated.
+<p>Stage defines the stages in request handling that audit events may be generated.</p>
+
 
 
-    
   
diff --git a/content/en/docs/reference/config-api/apiserver-config.v1.md b/content/en/docs/reference/config-api/apiserver-config.v1.md
new file mode 100644
index 0000000000..dcb903e848
--- /dev/null
+++ b/content/en/docs/reference/config-api/apiserver-config.v1.md
@@ -0,0 +1,84 @@
+---
+title: kube-apiserver Configuration (v1)
+content_type: tool-reference
+package: apiserver.config.k8s.io/v1
+auto_generated: true
+---
+<p>Package v1 is the v1 version of the API.</p>
+
+
+## Resource Types 
+
+
+- [AdmissionConfiguration](#apiserver-config-k8s-io-v1-AdmissionConfiguration)
+  
+    
+
+## `AdmissionConfiguration`     {#apiserver-config-k8s-io-v1-AdmissionConfiguration}
+    
+
+
+<p>AdmissionConfiguration provides versioned configuration for admission controllers.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>apiserver.config.k8s.io/v1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>AdmissionConfiguration</code></td></tr>
+    
+  
+<tr><td><code>plugins</code><br/>
+<a href="#apiserver-config-k8s-io-v1-AdmissionPluginConfiguration"><code>[]AdmissionPluginConfiguration</code></a>
+</td>
+<td>
+   <p>Plugins allows specifying a configuration per admission control plugin.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `AdmissionPluginConfiguration`     {#apiserver-config-k8s-io-v1-AdmissionPluginConfiguration}
+    
+
+**Appears in:**
+
+- [AdmissionConfiguration](#apiserver-config-k8s-io-v1-AdmissionConfiguration)
+
+
+<p>AdmissionPluginConfiguration provides the configuration for a single plug-in.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>name</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Name is the name of the admission controller.
+It must match the registered admission plugin name.</p>
+</td>
+</tr>
+<tr><td><code>path</code><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Path is the path to a configuration file that contains the plugin's
+configuration</p>
+</td>
+</tr>
+<tr><td><code>configuration</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/runtime#Unknown"><code>k8s.io/apimachinery/pkg/runtime.Unknown</code></a>
+</td>
+<td>
+   <p>Configuration is an embedded configuration object to be used as the plugin's
+configuration. If present, it will be used instead of the path to the configuration file.</p>
+</td>
+</tr>
+</tbody>
+</table>
+  
diff --git a/content/en/docs/reference/config-api/apiserver-config.v1alpha1.md b/content/en/docs/reference/config-api/apiserver-config.v1alpha1.md
index 81702355a5..8b9bf972ca 100644
--- a/content/en/docs/reference/config-api/apiserver-config.v1alpha1.md
+++ b/content/en/docs/reference/config-api/apiserver-config.v1alpha1.md
@@ -4,7 +4,8 @@ content_type: tool-reference
 package: apiserver.k8s.io/v1alpha1
 auto_generated: true
 ---
-Package v1alpha1 is the v1alpha1 version of the API.
+<p>Package v1alpha1 is the v1alpha1 version of the API.</p>
+
 
 ## Resource Types 
 
@@ -15,15 +16,13 @@ Package v1alpha1 is the v1alpha1 version of the API.
   
     
 
-
 ## `AdmissionConfiguration`     {#apiserver-k8s-io-v1alpha1-AdmissionConfiguration}
     
 
 
+<p>AdmissionConfiguration provides versioned configuration for admission controllers.</p>
 
 
-AdmissionConfiguration provides versioned configuration for admission controllers.
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -31,30 +30,24 @@ AdmissionConfiguration provides versioned configuration for admission controller
 <tr><td><code>apiVersion</code><br/>string</td><td><code>apiserver.k8s.io/v1alpha1</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>AdmissionConfiguration</code></td></tr>
     
-
-  
   
 <tr><td><code>plugins</code><br/>
 <a href="#apiserver-k8s-io-v1alpha1-AdmissionPluginConfiguration"><code>[]AdmissionPluginConfiguration</code></a>
 </td>
 <td>
-   Plugins allows specifying a configuration per admission control plugin.</td>
+   <p>Plugins allows specifying a configuration per admission control plugin.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `EgressSelectorConfiguration`     {#apiserver-k8s-io-v1alpha1-EgressSelectorConfiguration}
     
 
 
+<p>EgressSelectorConfiguration provides versioned configuration for egress selector clients.</p>
 
 
-EgressSelectorConfiguration provides versioned configuration for egress selector clients.
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -62,30 +55,24 @@ EgressSelectorConfiguration provides versioned configuration for egress selector
 <tr><td><code>apiVersion</code><br/>string</td><td><code>apiserver.k8s.io/v1alpha1</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>EgressSelectorConfiguration</code></td></tr>
     
-
-  
   
 <tr><td><code>egressSelections</code> <B>[Required]</B><br/>
 <a href="#apiserver-k8s-io-v1alpha1-EgressSelection"><code>[]EgressSelection</code></a>
 </td>
 <td>
-   connectionServices contains a list of egress selection client configurations</td>
+   <p>connectionServices contains a list of egress selection client configurations</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `TracingConfiguration`     {#apiserver-k8s-io-v1alpha1-TracingConfiguration}
     
 
 
+<p>TracingConfiguration provides versioned configuration for tracing clients.</p>
 
 
-TracingConfiguration provides versioned configuration for tracing clients.
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -93,346 +80,296 @@ TracingConfiguration provides versioned configuration for tracing clients.
 <tr><td><code>apiVersion</code><br/>string</td><td><code>apiserver.k8s.io/v1alpha1</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>TracingConfiguration</code></td></tr>
     
-
-  
   
 <tr><td><code>endpoint</code><br/>
 <code>string</code>
 </td>
 <td>
-   Endpoint of the collector that's running on the control-plane node.
+   <p>Endpoint of the collector that's running on the control-plane node.
 The APIServer uses the egressType ControlPlane when sending data to the collector.
 The syntax is defined in https://github.com/grpc/grpc/blob/master/doc/naming.md.
 Defaults to the otlpgrpc default, localhost:4317
-The connection is insecure, and does not support TLS.</td>
+The connection is insecure, and does not support TLS.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>samplingRatePerMillion</code><br/>
 <code>int32</code>
 </td>
 <td>
-   SamplingRatePerMillion is the number of samples to collect per million spans.
-Defaults to 0.</td>
+   <p>SamplingRatePerMillion is the number of samples to collect per million spans.
+Defaults to 0.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `AdmissionPluginConfiguration`     {#apiserver-k8s-io-v1alpha1-AdmissionPluginConfiguration}
     
 
-
-
 **Appears in:**
 
 - [AdmissionConfiguration](#apiserver-k8s-io-v1alpha1-AdmissionConfiguration)
 
 
-AdmissionPluginConfiguration provides the configuration for a single plug-in.
+<p>AdmissionPluginConfiguration provides the configuration for a single plug-in.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>name</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   Name is the name of the admission controller.
-It must match the registered admission plugin name.</td>
+   <p>Name is the name of the admission controller.
+It must match the registered admission plugin name.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>path</code><br/>
 <code>string</code>
 </td>
 <td>
-   Path is the path to a configuration file that contains the plugin's
-configuration</td>
+   <p>Path is the path to a configuration file that contains the plugin's
+configuration</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>configuration</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/runtime#Unknown"><code>k8s.io/apimachinery/pkg/runtime.Unknown</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/runtime#Unknown"><code>k8s.io/apimachinery/pkg/runtime.Unknown</code></a>
 </td>
 <td>
-   Configuration is an embedded configuration object to be used as the plugin's
-configuration. If present, it will be used instead of the path to the configuration file.</td>
+   <p>Configuration is an embedded configuration object to be used as the plugin's
+configuration. If present, it will be used instead of the path to the configuration file.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `Connection`     {#apiserver-k8s-io-v1alpha1-Connection}
     
 
-
-
 **Appears in:**
 
 - [EgressSelection](#apiserver-k8s-io-v1alpha1-EgressSelection)
 
 
-Connection provides the configuration for a single egress selection client.
+<p>Connection provides the configuration for a single egress selection client.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>proxyProtocol</code> <B>[Required]</B><br/>
 <a href="#apiserver-k8s-io-v1alpha1-ProtocolType"><code>ProtocolType</code></a>
 </td>
 <td>
-   Protocol is the protocol used to connect from client to the konnectivity server.</td>
+   <p>Protocol is the protocol used to connect from client to the konnectivity server.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>transport</code><br/>
 <a href="#apiserver-k8s-io-v1alpha1-Transport"><code>Transport</code></a>
 </td>
 <td>
-   Transport defines the transport configurations we use to dial to the konnectivity server.
-This is required if ProxyProtocol is HTTPConnect or GRPC.</td>
+   <p>Transport defines the transport configurations we use to dial to the konnectivity server.
+This is required if ProxyProtocol is HTTPConnect or GRPC.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `EgressSelection`     {#apiserver-k8s-io-v1alpha1-EgressSelection}
     
 
-
-
 **Appears in:**
 
 - [EgressSelectorConfiguration](#apiserver-k8s-io-v1alpha1-EgressSelectorConfiguration)
 
 
-EgressSelection provides the configuration for a single egress selection client.
+<p>EgressSelection provides the configuration for a single egress selection client.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>name</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   name is the name of the egress selection.
-Currently supported values are "controlplane", "master", "etcd" and "cluster"
-The "master" egress selector is deprecated in favor of "controlplane"</td>
+   <p>name is the name of the egress selection.
+Currently supported values are &quot;controlplane&quot;, &quot;master&quot;, &quot;etcd&quot; and &quot;cluster&quot;
+The &quot;master&quot; egress selector is deprecated in favor of &quot;controlplane&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>connection</code> <B>[Required]</B><br/>
 <a href="#apiserver-k8s-io-v1alpha1-Connection"><code>Connection</code></a>
 </td>
 <td>
-   connection is the exact information used to configure the egress selection</td>
+   <p>connection is the exact information used to configure the egress selection</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `ProtocolType`     {#apiserver-k8s-io-v1alpha1-ProtocolType}
     
 (Alias of `string`)
 
-
 **Appears in:**
 
 - [Connection](#apiserver-k8s-io-v1alpha1-Connection)
 
 
-ProtocolType is a set of valid values for Connection.ProtocolType
+<p>ProtocolType is a set of valid values for Connection.ProtocolType</p>
 
 
-    
 
 
 ## `TCPTransport`     {#apiserver-k8s-io-v1alpha1-TCPTransport}
     
 
-
-
 **Appears in:**
 
 - [Transport](#apiserver-k8s-io-v1alpha1-Transport)
 
 
-TCPTransport provides the information to connect to konnectivity server via TCP
+<p>TCPTransport provides the information to connect to konnectivity server via TCP</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>url</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   URL is the location of the konnectivity server to connect to.
-As an example it might be "https://127.0.0.1:8131"</td>
+   <p>URL is the location of the konnectivity server to connect to.
+As an example it might be &quot;https://127.0.0.1:8131&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>tlsConfig</code><br/>
 <a href="#apiserver-k8s-io-v1alpha1-TLSConfig"><code>TLSConfig</code></a>
 </td>
 <td>
-   TLSConfig is the config needed to use TLS when connecting to konnectivity server</td>
+   <p>TLSConfig is the config needed to use TLS when connecting to konnectivity server</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `TLSConfig`     {#apiserver-k8s-io-v1alpha1-TLSConfig}
     
 
-
-
 **Appears in:**
 
 - [TCPTransport](#apiserver-k8s-io-v1alpha1-TCPTransport)
 
 
-TLSConfig provides the authentication information to connect to konnectivity server
-Only used with TCPTransport
+<p>TLSConfig provides the authentication information to connect to konnectivity server
+Only used with TCPTransport</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>caBundle</code><br/>
 <code>string</code>
 </td>
 <td>
-   caBundle is the file location of the CA to be used to determine trust with the konnectivity server.
+   <p>caBundle is the file location of the CA to be used to determine trust with the konnectivity server.
 Must be absent/empty if TCPTransport.URL is prefixed with http://
-If absent while TCPTransport.URL is prefixed with https://, default to system trust roots.</td>
+If absent while TCPTransport.URL is prefixed with https://, default to system trust roots.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>clientKey</code><br/>
 <code>string</code>
 </td>
 <td>
-   clientKey is the file location of the client key to be used in mtls handshakes with the konnectivity server.
+   <p>clientKey is the file location of the client key to be used in mtls handshakes with the konnectivity server.
 Must be absent/empty if TCPTransport.URL is prefixed with http://
-Must be configured if TCPTransport.URL is prefixed with https://</td>
+Must be configured if TCPTransport.URL is prefixed with https://</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>clientCert</code><br/>
 <code>string</code>
 </td>
 <td>
-   clientCert is the file location of the client certificate to be used in mtls handshakes with the konnectivity server.
+   <p>clientCert is the file location of the client certificate to be used in mtls handshakes with the konnectivity server.
 Must be absent/empty if TCPTransport.URL is prefixed with http://
-Must be configured if TCPTransport.URL is prefixed with https://</td>
+Must be configured if TCPTransport.URL is prefixed with https://</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `Transport`     {#apiserver-k8s-io-v1alpha1-Transport}
     
 
-
-
 **Appears in:**
 
 - [Connection](#apiserver-k8s-io-v1alpha1-Connection)
 
 
-Transport defines the transport configurations we use to dial to the konnectivity server
+<p>Transport defines the transport configurations we use to dial to the konnectivity server</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>tcp</code><br/>
 <a href="#apiserver-k8s-io-v1alpha1-TCPTransport"><code>TCPTransport</code></a>
 </td>
 <td>
-   TCP is the TCP configuration for communicating with the konnectivity server via TCP
+   <p>TCP is the TCP configuration for communicating with the konnectivity server via TCP
 ProxyProtocol of GRPC is not supported with TCP transport at the moment
-Requires at least one of TCP or UDS to be set</td>
+Requires at least one of TCP or UDS to be set</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>uds</code><br/>
 <a href="#apiserver-k8s-io-v1alpha1-UDSTransport"><code>UDSTransport</code></a>
 </td>
 <td>
-   UDS is the UDS configuration for communicating with the konnectivity server via UDS
-Requires at least one of TCP or UDS to be set</td>
+   <p>UDS is the UDS configuration for communicating with the konnectivity server via UDS
+Requires at least one of TCP or UDS to be set</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `UDSTransport`     {#apiserver-k8s-io-v1alpha1-UDSTransport}
     
 
-
-
 **Appears in:**
 
 - [Transport](#apiserver-k8s-io-v1alpha1-Transport)
 
 
-UDSTransport provides the information to connect to konnectivity server via UDS
+<p>UDSTransport provides the information to connect to konnectivity server via UDS</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>udsName</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   UDSName is the name of the unix domain socket to connect to konnectivity server
-This does not use a unix:// prefix. (Eg: /etc/srv/kubernetes/konnectivity-server/konnectivity-server.socket)</td>
+   <p>UDSName is the name of the unix domain socket to connect to konnectivity server
+This does not use a unix:// prefix. (Eg: /etc/srv/kubernetes/konnectivity-server/konnectivity-server.socket)</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
   
diff --git a/content/en/docs/reference/config-api/apiserver-encryption.v1.md b/content/en/docs/reference/config-api/apiserver-encryption.v1.md
new file mode 100644
index 0000000000..3b09e817a5
--- /dev/null
+++ b/content/en/docs/reference/config-api/apiserver-encryption.v1.md
@@ -0,0 +1,279 @@
+---
+title: kube-apiserver Encryption Configuration (v1)
+content_type: tool-reference
+package: apiserver.config.k8s.io/v1
+auto_generated: true
+---
+<p>Package v1 is the v1 version of the API.</p>
+
+
+## Resource Types 
+
+
+- [EncryptionConfiguration](#apiserver-config-k8s-io-v1-EncryptionConfiguration)
+  
+    
+
+## `EncryptionConfiguration`     {#apiserver-config-k8s-io-v1-EncryptionConfiguration}
+    
+
+
+<p>EncryptionConfiguration stores the complete configuration for encryption providers.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>apiserver.config.k8s.io/v1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>EncryptionConfiguration</code></td></tr>
+    
+  
+<tr><td><code>resources</code> <B>[Required]</B><br/>
+<a href="#apiserver-config-k8s-io-v1-ResourceConfiguration"><code>[]ResourceConfiguration</code></a>
+</td>
+<td>
+   <p>resources is a list containing resources, and their corresponding encryption providers.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `AESConfiguration`     {#apiserver-config-k8s-io-v1-AESConfiguration}
+    
+
+**Appears in:**
+
+- [ProviderConfiguration](#apiserver-config-k8s-io-v1-ProviderConfiguration)
+
+
+<p>AESConfiguration contains the API configuration for an AES transformer.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>keys</code> <B>[Required]</B><br/>
+<a href="#apiserver-config-k8s-io-v1-Key"><code>[]Key</code></a>
+</td>
+<td>
+   <p>keys is a list of keys to be used for creating the AES transformer.
+Each key has to be 32 bytes long for AES-CBC and 16, 24 or 32 bytes for AES-GCM.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `IdentityConfiguration`     {#apiserver-config-k8s-io-v1-IdentityConfiguration}
+    
+
+**Appears in:**
+
+- [ProviderConfiguration](#apiserver-config-k8s-io-v1-ProviderConfiguration)
+
+
+<p>IdentityConfiguration is an empty struct to allow identity transformer in provider configuration.</p>
+
+
+
+
+## `KMSConfiguration`     {#apiserver-config-k8s-io-v1-KMSConfiguration}
+    
+
+**Appears in:**
+
+- [ProviderConfiguration](#apiserver-config-k8s-io-v1-ProviderConfiguration)
+
+
+<p>KMSConfiguration contains the name, cache size and path to configuration file for a KMS based envelope transformer.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>name</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>name is the name of the KMS plugin to be used.</p>
+</td>
+</tr>
+<tr><td><code>cachesize</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <p>cachesize is the maximum number of secrets which are cached in memory. The default value is 1000.
+Set to a negative value to disable caching.</p>
+</td>
+</tr>
+<tr><td><code>endpoint</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>endpoint is the gRPC server listening address, for example &quot;unix:///var/run/kms-provider.sock&quot;.</p>
+</td>
+</tr>
+<tr><td><code>timeout</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <p>timeout for gRPC calls to kms-plugin (ex. 5s). The default is 3 seconds.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Key`     {#apiserver-config-k8s-io-v1-Key}
+    
+
+**Appears in:**
+
+- [AESConfiguration](#apiserver-config-k8s-io-v1-AESConfiguration)
+
+- [SecretboxConfiguration](#apiserver-config-k8s-io-v1-SecretboxConfiguration)
+
+
+<p>Key contains name and secret of the provided key for a transformer.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>name</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>name is the name of the key to be used while storing data to disk.</p>
+</td>
+</tr>
+<tr><td><code>secret</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>secret is the actual key, encoded in base64.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ProviderConfiguration`     {#apiserver-config-k8s-io-v1-ProviderConfiguration}
+    
+
+**Appears in:**
+
+- [ResourceConfiguration](#apiserver-config-k8s-io-v1-ResourceConfiguration)
+
+
+<p>ProviderConfiguration stores the provided configuration for an encryption provider.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>aesgcm</code> <B>[Required]</B><br/>
+<a href="#apiserver-config-k8s-io-v1-AESConfiguration"><code>AESConfiguration</code></a>
+</td>
+<td>
+   <p>aesgcm is the configuration for the AES-GCM transformer.</p>
+</td>
+</tr>
+<tr><td><code>aescbc</code> <B>[Required]</B><br/>
+<a href="#apiserver-config-k8s-io-v1-AESConfiguration"><code>AESConfiguration</code></a>
+</td>
+<td>
+   <p>aescbc is the configuration for the AES-CBC transformer.</p>
+</td>
+</tr>
+<tr><td><code>secretbox</code> <B>[Required]</B><br/>
+<a href="#apiserver-config-k8s-io-v1-SecretboxConfiguration"><code>SecretboxConfiguration</code></a>
+</td>
+<td>
+   <p>secretbox is the configuration for the Secretbox based transformer.</p>
+</td>
+</tr>
+<tr><td><code>identity</code> <B>[Required]</B><br/>
+<a href="#apiserver-config-k8s-io-v1-IdentityConfiguration"><code>IdentityConfiguration</code></a>
+</td>
+<td>
+   <p>identity is the (empty) configuration for the identity transformer.</p>
+</td>
+</tr>
+<tr><td><code>kms</code> <B>[Required]</B><br/>
+<a href="#apiserver-config-k8s-io-v1-KMSConfiguration"><code>KMSConfiguration</code></a>
+</td>
+<td>
+   <p>kms contains the name, cache size and path to configuration file for a KMS based envelope transformer.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ResourceConfiguration`     {#apiserver-config-k8s-io-v1-ResourceConfiguration}
+    
+
+**Appears in:**
+
+- [EncryptionConfiguration](#apiserver-config-k8s-io-v1-EncryptionConfiguration)
+
+
+<p>ResourceConfiguration stores per resource configuration.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>resources</code> <B>[Required]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+   <p>resources is a list of kubernetes resources which have to be encrypted.</p>
+</td>
+</tr>
+<tr><td><code>providers</code> <B>[Required]</B><br/>
+<a href="#apiserver-config-k8s-io-v1-ProviderConfiguration"><code>[]ProviderConfiguration</code></a>
+</td>
+<td>
+   <p>providers is a list of transformers to be used for reading and writing the resources to disk.
+eg: aesgcm, aescbc, secretbox, identity.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `SecretboxConfiguration`     {#apiserver-config-k8s-io-v1-SecretboxConfiguration}
+    
+
+**Appears in:**
+
+- [ProviderConfiguration](#apiserver-config-k8s-io-v1-ProviderConfiguration)
+
+
+<p>SecretboxConfiguration contains the API configuration for an Secretbox transformer.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>keys</code> <B>[Required]</B><br/>
+<a href="#apiserver-config-k8s-io-v1-Key"><code>[]Key</code></a>
+</td>
+<td>
+   <p>keys is a list of keys to be used for creating the Secretbox transformer.
+Each key has to be 32 bytes long.</p>
+</td>
+</tr>
+</tbody>
+</table>
+  
diff --git a/content/en/docs/reference/config-api/apiserver-eventratelimit.v1alpha1.md b/content/en/docs/reference/config-api/apiserver-eventratelimit.v1alpha1.md
new file mode 100644
index 0000000000..2189c4910d
--- /dev/null
+++ b/content/en/docs/reference/config-api/apiserver-eventratelimit.v1alpha1.md
@@ -0,0 +1,121 @@
+---
+title: Event Rate Limit Configuration (v1alpha1)
+content_type: tool-reference
+package: eventratelimit.admission.k8s.io/v1alpha1
+auto_generated: true
+---
+
+
+## Resource Types 
+
+
+- [Configuration](#eventratelimit-admission-k8s-io-v1alpha1-Configuration)
+  
+    
+
+## `Configuration`     {#eventratelimit-admission-k8s-io-v1alpha1-Configuration}
+    
+
+
+<p>Configuration provides configuration for the EventRateLimit admission
+controller.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>eventratelimit.admission.k8s.io/v1alpha1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>Configuration</code></td></tr>
+    
+  
+<tr><td><code>limits</code> <B>[Required]</B><br/>
+<a href="#eventratelimit-admission-k8s-io-v1alpha1-Limit"><code>[]Limit</code></a>
+</td>
+<td>
+   <p>limits are the limits to place on event queries received.
+Limits can be placed on events received server-wide, per namespace,
+per user, and per source+object.
+At least one limit is required.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Limit`     {#eventratelimit-admission-k8s-io-v1alpha1-Limit}
+    
+
+**Appears in:**
+
+- [Configuration](#eventratelimit-admission-k8s-io-v1alpha1-Configuration)
+
+
+<p>Limit is the configuration for a particular limit type</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>type</code> <B>[Required]</B><br/>
+<a href="#eventratelimit-admission-k8s-io-v1alpha1-LimitType"><code>LimitType</code></a>
+</td>
+<td>
+   <p>type is the type of limit to which this configuration applies</p>
+</td>
+</tr>
+<tr><td><code>qps</code> <B>[Required]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <p>qps is the number of event queries per second that are allowed for this
+type of limit. The qps and burst fields are used together to determine if
+a particular event query is accepted. The qps determines how many queries
+are accepted once the burst amount of queries has been exhausted.</p>
+</td>
+</tr>
+<tr><td><code>burst</code> <B>[Required]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <p>burst is the burst number of event queries that are allowed for this type
+of limit. The qps and burst fields are used together to determine if a
+particular event query is accepted. The burst determines the maximum size
+of the allowance granted for a particular bucket. For example, if the burst
+is 10 and the qps is 3, then the admission control will accept 10 queries
+before blocking any queries. Every second, 3 more queries will be allowed.
+If some of that allowance is not used, then it will roll over to the next
+second, until the maximum allowance of 10 is reached.</p>
+</td>
+</tr>
+<tr><td><code>cacheSize</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <p>cacheSize is the size of the LRU cache for this type of limit. If a bucket
+is evicted from the cache, then the allowance for that bucket is reset. If
+more queries are later received for an evicted bucket, then that bucket
+will re-enter the cache with a clean slate, giving that bucket a full
+allowance of burst queries.</p>
+<p>The default cache size is 4096.</p>
+<p>If limitType is 'server', then cacheSize is ignored.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `LimitType`     {#eventratelimit-admission-k8s-io-v1alpha1-LimitType}
+    
+(Alias of `string`)
+
+**Appears in:**
+
+- [Limit](#eventratelimit-admission-k8s-io-v1alpha1-Limit)
+
+
+<p>LimitType is the type of the limit (e.g., per-namespace)</p>
+
+
+
+  
\ No newline at end of file
diff --git a/content/en/docs/reference/config-api/apiserver-webhookadmission.v1.md b/content/en/docs/reference/config-api/apiserver-webhookadmission.v1.md
index fb45ca7b1a..f0c6a5b953 100644
--- a/content/en/docs/reference/config-api/apiserver-webhookadmission.v1.md
+++ b/content/en/docs/reference/config-api/apiserver-webhookadmission.v1.md
@@ -4,7 +4,8 @@ content_type: tool-reference
 package: apiserver.config.k8s.io/v1
 auto_generated: true
 ---
-Package v1 is the v1 version of the API.
+<p>Package v1 is the v1 version of the API.</p>
+
 
 ## Resource Types 
 
@@ -13,15 +14,13 @@ Package v1 is the v1 version of the API.
   
     
 
-
 ## `WebhookAdmission`     {#apiserver-config-k8s-io-v1-WebhookAdmission}
     
 
 
+<p>WebhookAdmission provides configuration for the webhook admission controller.</p>
 
 
-WebhookAdmission provides configuration for the webhook admission controller.
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -29,18 +28,14 @@ WebhookAdmission provides configuration for the webhook admission controller.
 <tr><td><code>apiVersion</code><br/>string</td><td><code>apiserver.config.k8s.io/v1</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>WebhookAdmission</code></td></tr>
     
-
-  
   
 <tr><td><code>kubeConfigFile</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   KubeConfigFile is the path to the kubeconfig file.</td>
+   <p>KubeConfigFile is the path to the kubeconfig file.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
   
diff --git a/content/en/docs/reference/config-api/client-authentication.v1.md b/content/en/docs/reference/config-api/client-authentication.v1.md
new file mode 100644
index 0000000000..f06c337fab
--- /dev/null
+++ b/content/en/docs/reference/config-api/client-authentication.v1.md
@@ -0,0 +1,229 @@
+---
+title: Client Authentication (v1)
+content_type: tool-reference
+package: client.authentication.k8s.io/v1
+auto_generated: true
+---
+
+
+## Resource Types 
+
+
+- [ExecCredential](#client-authentication-k8s-io-v1-ExecCredential)
+  
+    
+
+## `ExecCredential`     {#client-authentication-k8s-io-v1-ExecCredential}
+    
+
+
+<p>ExecCredential is used by exec-based plugins to communicate credentials to
+HTTP transports.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>client.authentication.k8s.io/v1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>ExecCredential</code></td></tr>
+    
+  
+<tr><td><code>spec</code> <B>[Required]</B><br/>
+<a href="#client-authentication-k8s-io-v1-ExecCredentialSpec"><code>ExecCredentialSpec</code></a>
+</td>
+<td>
+   <p>Spec holds information passed to the plugin by the transport.</p>
+</td>
+</tr>
+<tr><td><code>status</code><br/>
+<a href="#client-authentication-k8s-io-v1-ExecCredentialStatus"><code>ExecCredentialStatus</code></a>
+</td>
+<td>
+   <p>Status is filled in by the plugin and holds the credentials that the transport
+should use to contact the API.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Cluster`     {#client-authentication-k8s-io-v1-Cluster}
+    
+
+**Appears in:**
+
+- [ExecCredentialSpec](#client-authentication-k8s-io-v1-ExecCredentialSpec)
+
+
+<p>Cluster contains information to allow an exec plugin to communicate
+with the kubernetes cluster being authenticated to.</p>
+<p>To ensure that this struct contains everything someone would need to communicate
+with a kubernetes cluster (just like they would via a kubeconfig), the fields
+should shadow &quot;k8s.io/client-go/tools/clientcmd/api/v1&quot;.Cluster, with the exception
+of CertificateAuthority, since CA data will always be passed to the plugin as bytes.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>server</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Server is the address of the kubernetes cluster (https://hostname:port).</p>
+</td>
+</tr>
+<tr><td><code>tls-server-name</code><br/>
+<code>string</code>
+</td>
+<td>
+   <p>TLSServerName is passed to the server for SNI and is used in the client to
+check server certificates against. If ServerName is empty, the hostname
+used to contact the server is used.</p>
+</td>
+</tr>
+<tr><td><code>insecure-skip-tls-verify</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>InsecureSkipTLSVerify skips the validity check for the server's certificate.
+This will make your HTTPS connections insecure.</p>
+</td>
+</tr>
+<tr><td><code>certificate-authority-data</code><br/>
+<code>[]byte</code>
+</td>
+<td>
+   <p>CAData contains PEM-encoded certificate authority certificates.
+If empty, system roots should be used.</p>
+</td>
+</tr>
+<tr><td><code>proxy-url</code><br/>
+<code>string</code>
+</td>
+<td>
+   <p>ProxyURL is the URL to the proxy to be used for all requests to this
+cluster.</p>
+</td>
+</tr>
+<tr><td><code>config</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/runtime/#RawExtension"><code>k8s.io/apimachinery/pkg/runtime.RawExtension</code></a>
+</td>
+<td>
+   <p>Config holds additional config data that is specific to the exec
+plugin with regards to the cluster being authenticated to.</p>
+<p>This data is sourced from the clientcmd Cluster object's
+extensions[client.authentication.k8s.io/exec] field:</p>
+<p>clusters:</p>
+<ul>
+<li>name: my-cluster
+cluster:
+...
+extensions:
+<ul>
+<li>name: client.authentication.k8s.io/exec  # reserved extension name for per cluster exec config
+extension:
+audience: 06e3fbd18de8  # arbitrary config</li>
+</ul>
+</li>
+</ul>
+<p>In some environments, the user config may be exactly the same across many clusters
+(i.e. call this exec plugin) minus some details that are specific to each cluster
+such as the audience.  This field allows the per cluster config to be directly
+specified with the cluster info.  Using this field to store secret data is not
+recommended as one of the prime benefits of exec plugins is that no secrets need
+to be stored directly in the kubeconfig.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ExecCredentialSpec`     {#client-authentication-k8s-io-v1-ExecCredentialSpec}
+    
+
+**Appears in:**
+
+- [ExecCredential](#client-authentication-k8s-io-v1-ExecCredential)
+
+
+<p>ExecCredentialSpec holds request and runtime specific information provided by
+the transport.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>cluster</code><br/>
+<a href="#client-authentication-k8s-io-v1-Cluster"><code>Cluster</code></a>
+</td>
+<td>
+   <p>Cluster contains information to allow an exec plugin to communicate with the
+kubernetes cluster being authenticated to. Note that Cluster is non-nil only
+when provideClusterInfo is set to true in the exec provider config (i.e.,
+ExecConfig.ProvideClusterInfo).</p>
+</td>
+</tr>
+<tr><td><code>interactive</code> <B>[Required]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>Interactive declares whether stdin has been passed to this exec plugin.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ExecCredentialStatus`     {#client-authentication-k8s-io-v1-ExecCredentialStatus}
+    
+
+**Appears in:**
+
+- [ExecCredential](#client-authentication-k8s-io-v1-ExecCredential)
+
+
+<p>ExecCredentialStatus holds credentials for the transport to use.</p>
+<p>Token and ClientKeyData are sensitive fields. This data should only be
+transmitted in-memory between client and exec plugin process. Exec plugin
+itself should at least be protected via file permissions.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>expirationTimestamp</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#time-v1-meta"><code>meta/v1.Time</code></a>
+</td>
+<td>
+   <p>ExpirationTimestamp indicates a time when the provided credentials expire.</p>
+</td>
+</tr>
+<tr><td><code>token</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Token is a bearer token used by the client for request authentication.</p>
+</td>
+</tr>
+<tr><td><code>clientCertificateData</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>PEM-encoded client TLS certificates (including intermediates, if any).</p>
+</td>
+</tr>
+<tr><td><code>clientKeyData</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>PEM-encoded private key for the above certificate.</p>
+</td>
+</tr>
+</tbody>
+</table>
+  
diff --git a/content/en/docs/reference/config-api/client-authentication.v1beta1.md b/content/en/docs/reference/config-api/client-authentication.v1beta1.md
index d018fb208f..2e840b5805 100644
--- a/content/en/docs/reference/config-api/client-authentication.v1beta1.md
+++ b/content/en/docs/reference/config-api/client-authentication.v1beta1.md
@@ -13,16 +13,14 @@ auto_generated: true
   
     
 
-
 ## `ExecCredential`     {#client-authentication-k8s-io-v1beta1-ExecCredential}
     
 
 
+<p>ExecCredential is used by exec-based plugins to communicate credentials to
+HTTP transports.</p>
 
 
-ExecCredential is used by exec-based plugins to communicate credentials to
-HTTP transports.
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -30,231 +28,202 @@ HTTP transports.
 <tr><td><code>apiVersion</code><br/>string</td><td><code>client.authentication.k8s.io/v1beta1</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>ExecCredential</code></td></tr>
     
-
-  
   
 <tr><td><code>spec</code> <B>[Required]</B><br/>
 <a href="#client-authentication-k8s-io-v1beta1-ExecCredentialSpec"><code>ExecCredentialSpec</code></a>
 </td>
 <td>
-   Spec holds information passed to the plugin by the transport.</td>
+   <p>Spec holds information passed to the plugin by the transport.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>status</code><br/>
 <a href="#client-authentication-k8s-io-v1beta1-ExecCredentialStatus"><code>ExecCredentialStatus</code></a>
 </td>
 <td>
-   Status is filled in by the plugin and holds the credentials that the transport
-should use to contact the API.</td>
+   <p>Status is filled in by the plugin and holds the credentials that the transport
+should use to contact the API.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `Cluster`     {#client-authentication-k8s-io-v1beta1-Cluster}
     
 
-
-
 **Appears in:**
 
 - [ExecCredentialSpec](#client-authentication-k8s-io-v1beta1-ExecCredentialSpec)
 
 
-Cluster contains information to allow an exec plugin to communicate
-with the kubernetes cluster being authenticated to.
-
-To ensure that this struct contains everything someone would need to communicate
+<p>Cluster contains information to allow an exec plugin to communicate
+with the kubernetes cluster being authenticated to.</p>
+<p>To ensure that this struct contains everything someone would need to communicate
 with a kubernetes cluster (just like they would via a kubeconfig), the fields
-should shadow "k8s.io/client-go/tools/clientcmd/api/v1".Cluster, with the exception
-of CertificateAuthority, since CA data will always be passed to the plugin as bytes.
+should shadow &quot;k8s.io/client-go/tools/clientcmd/api/v1&quot;.Cluster, with the exception
+of CertificateAuthority, since CA data will always be passed to the plugin as bytes.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>server</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   Server is the address of the kubernetes cluster (https://hostname:port).</td>
+   <p>Server is the address of the kubernetes cluster (https://hostname:port).</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>tls-server-name</code><br/>
 <code>string</code>
 </td>
 <td>
-   TLSServerName is passed to the server for SNI and is used in the client to
+   <p>TLSServerName is passed to the server for SNI and is used in the client to
 check server certificates against. If ServerName is empty, the hostname
-used to contact the server is used.</td>
+used to contact the server is used.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>insecure-skip-tls-verify</code><br/>
 <code>bool</code>
 </td>
 <td>
-   InsecureSkipTLSVerify skips the validity check for the server's certificate.
-This will make your HTTPS connections insecure.</td>
+   <p>InsecureSkipTLSVerify skips the validity check for the server's certificate.
+This will make your HTTPS connections insecure.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>certificate-authority-data</code><br/>
 <code>[]byte</code>
 </td>
 <td>
-   CAData contains PEM-encoded certificate authority certificates.
-If empty, system roots should be used.</td>
+   <p>CAData contains PEM-encoded certificate authority certificates.
+If empty, system roots should be used.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>proxy-url</code><br/>
 <code>string</code>
 </td>
 <td>
-   ProxyURL is the URL to the proxy to be used for all requests to this
-cluster.</td>
+   <p>ProxyURL is the URL to the proxy to be used for all requests to this
+cluster.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>config</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/runtime/#RawExtension"><code>k8s.io/apimachinery/pkg/runtime.RawExtension</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/runtime/#RawExtension"><code>k8s.io/apimachinery/pkg/runtime.RawExtension</code></a>
 </td>
 <td>
-   Config holds additional config data that is specific to the exec
-plugin with regards to the cluster being authenticated to.
-
-This data is sourced from the clientcmd Cluster object's
-extensions[client.authentication.k8s.io/exec] field:
-
-clusters:
-- name: my-cluster
-  cluster:
-    ...
-    extensions:
-    - name: client.authentication.k8s.io/exec  # reserved extension name for per cluster exec config
-      extension:
-        audience: 06e3fbd18de8  # arbitrary config
-
-In some environments, the user config may be exactly the same across many clusters
+   <p>Config holds additional config data that is specific to the exec
+plugin with regards to the cluster being authenticated to.</p>
+<p>This data is sourced from the clientcmd Cluster object's
+extensions[client.authentication.k8s.io/exec] field:</p>
+<p>clusters:</p>
+<ul>
+<li>name: my-cluster
+cluster:
+...
+extensions:
+<ul>
+<li>name: client.authentication.k8s.io/exec  # reserved extension name for per cluster exec config
+extension:
+audience: 06e3fbd18de8  # arbitrary config</li>
+</ul>
+</li>
+</ul>
+<p>In some environments, the user config may be exactly the same across many clusters
 (i.e. call this exec plugin) minus some details that are specific to each cluster
 such as the audience.  This field allows the per cluster config to be directly
 specified with the cluster info.  Using this field to store secret data is not
 recommended as one of the prime benefits of exec plugins is that no secrets need
-to be stored directly in the kubeconfig.</td>
+to be stored directly in the kubeconfig.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `ExecCredentialSpec`     {#client-authentication-k8s-io-v1beta1-ExecCredentialSpec}
     
 
-
-
 **Appears in:**
 
 - [ExecCredential](#client-authentication-k8s-io-v1beta1-ExecCredential)
 
 
-ExecCredentialSpec holds request and runtime specific information provided by
-the transport.
+<p>ExecCredentialSpec holds request and runtime specific information provided by
+the transport.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>cluster</code><br/>
 <a href="#client-authentication-k8s-io-v1beta1-Cluster"><code>Cluster</code></a>
 </td>
 <td>
-   Cluster contains information to allow an exec plugin to communicate with the
+   <p>Cluster contains information to allow an exec plugin to communicate with the
 kubernetes cluster being authenticated to. Note that Cluster is non-nil only
 when provideClusterInfo is set to true in the exec provider config (i.e.,
-ExecConfig.ProvideClusterInfo).</td>
+ExecConfig.ProvideClusterInfo).</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>interactive</code> <B>[Required]</B><br/>
 <code>bool</code>
 </td>
 <td>
-   Interactive declares whether stdin has been passed to this exec plugin.</td>
+   <p>Interactive declares whether stdin has been passed to this exec plugin.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `ExecCredentialStatus`     {#client-authentication-k8s-io-v1beta1-ExecCredentialStatus}
     
 
-
-
 **Appears in:**
 
 - [ExecCredential](#client-authentication-k8s-io-v1beta1-ExecCredential)
 
 
-ExecCredentialStatus holds credentials for the transport to use.
-
-Token and ClientKeyData are sensitive fields. This data should only be
+<p>ExecCredentialStatus holds credentials for the transport to use.</p>
+<p>Token and ClientKeyData are sensitive fields. This data should only be
 transmitted in-memory between client and exec plugin process. Exec plugin
-itself should at least be protected via file permissions.
+itself should at least be protected via file permissions.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>expirationTimestamp</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#time-v1-meta"><code>meta/v1.Time</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#time-v1-meta"><code>meta/v1.Time</code></a>
 </td>
 <td>
-   ExpirationTimestamp indicates a time when the provided credentials expire.</td>
+   <p>ExpirationTimestamp indicates a time when the provided credentials expire.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>token</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   Token is a bearer token used by the client for request authentication.</td>
+   <p>Token is a bearer token used by the client for request authentication.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>clientCertificateData</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   PEM-encoded client TLS certificates (including intermediates, if any).</td>
+   <p>PEM-encoded client TLS certificates (including intermediates, if any).</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>clientKeyData</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   PEM-encoded private key for the above certificate.</td>
+   <p>PEM-encoded private key for the above certificate.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
   
diff --git a/content/en/docs/reference/config-api/imagepolicy.v1alpha1.md b/content/en/docs/reference/config-api/imagepolicy.v1alpha1.md
new file mode 100644
index 0000000000..f420623559
--- /dev/null
+++ b/content/en/docs/reference/config-api/imagepolicy.v1alpha1.md
@@ -0,0 +1,168 @@
+---
+title: Image Policy API (v1alpha1)
+content_type: tool-reference
+package: imagepolicy.k8s.io/v1alpha1
+auto_generated: true
+---
+
+
+## Resource Types 
+
+
+- [ImageReview](#imagepolicy-k8s-io-v1alpha1-ImageReview)
+  
+    
+
+## `ImageReview`     {#imagepolicy-k8s-io-v1alpha1-ImageReview}
+    
+
+
+<p>ImageReview checks if the set of images in a pod are allowed.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>imagepolicy.k8s.io/v1alpha1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>ImageReview</code></td></tr>
+    
+  
+<tr><td><code>metadata</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#objectmeta-v1-meta"><code>meta/v1.ObjectMeta</code></a>
+</td>
+<td>
+   <p>Standard object's metadata.
+More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</p>
+Refer to the Kubernetes API documentation for the fields of the <code>metadata</code> field.</td>
+</tr>
+<tr><td><code>spec</code> <B>[Required]</B><br/>
+<a href="#imagepolicy-k8s-io-v1alpha1-ImageReviewSpec"><code>ImageReviewSpec</code></a>
+</td>
+<td>
+   <p>Spec holds information about the pod being evaluated</p>
+</td>
+</tr>
+<tr><td><code>status</code><br/>
+<a href="#imagepolicy-k8s-io-v1alpha1-ImageReviewStatus"><code>ImageReviewStatus</code></a>
+</td>
+<td>
+   <p>Status is filled in by the backend and indicates whether the pod should be allowed.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ImageReviewContainerSpec`     {#imagepolicy-k8s-io-v1alpha1-ImageReviewContainerSpec}
+    
+
+**Appears in:**
+
+- [ImageReviewSpec](#imagepolicy-k8s-io-v1alpha1-ImageReviewSpec)
+
+
+<p>ImageReviewContainerSpec is a description of a container within the pod creation request.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>image</code><br/>
+<code>string</code>
+</td>
+<td>
+   <p>This can be in the form image:tag or image@SHA:012345679abcdef.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ImageReviewSpec`     {#imagepolicy-k8s-io-v1alpha1-ImageReviewSpec}
+    
+
+**Appears in:**
+
+- [ImageReview](#imagepolicy-k8s-io-v1alpha1-ImageReview)
+
+
+<p>ImageReviewSpec is a description of the pod creation request.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>containers</code><br/>
+<a href="#imagepolicy-k8s-io-v1alpha1-ImageReviewContainerSpec"><code>[]ImageReviewContainerSpec</code></a>
+</td>
+<td>
+   <p>Containers is a list of a subset of the information in each container of the Pod being created.</p>
+</td>
+</tr>
+<tr><td><code>annotations</code><br/>
+<code>map[string]string</code>
+</td>
+<td>
+   <p>Annotations is a list of key-value pairs extracted from the Pod's annotations.
+It only includes keys which match the pattern <code>*.image-policy.k8s.io/*</code>.
+It is up to each webhook backend to determine how to interpret these annotations, if at all.</p>
+</td>
+</tr>
+<tr><td><code>namespace</code><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Namespace is the namespace the pod is being created in.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ImageReviewStatus`     {#imagepolicy-k8s-io-v1alpha1-ImageReviewStatus}
+    
+
+**Appears in:**
+
+- [ImageReview](#imagepolicy-k8s-io-v1alpha1-ImageReview)
+
+
+<p>ImageReviewStatus is the result of the review for the pod creation request.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>allowed</code> <B>[Required]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>Allowed indicates that all images were allowed to be run.</p>
+</td>
+</tr>
+<tr><td><code>reason</code><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Reason should be empty unless Allowed is false in which case it
+may contain a short description of what is wrong.  Kubernetes
+may truncate excessively long errors when displaying to the user.</p>
+</td>
+</tr>
+<tr><td><code>auditAnnotations</code><br/>
+<code>map[string]string</code>
+</td>
+<td>
+   <p>AuditAnnotations will be added to the attributes object of the
+admission controller request using 'AddAnnotation'.  The keys should
+be prefix-less (i.e., the admission controller will add an
+appropriate prefix).</p>
+</td>
+</tr>
+</tbody>
+</table>
+  
\ No newline at end of file
diff --git a/content/en/docs/reference/config-api/kube-proxy-config.v1alpha1.md b/content/en/docs/reference/config-api/kube-proxy-config.v1alpha1.md
index 94209488fe..8c794f2755 100644
--- a/content/en/docs/reference/config-api/kube-proxy-config.v1alpha1.md
+++ b/content/en/docs/reference/config-api/kube-proxy-config.v1alpha1.md
@@ -13,16 +13,14 @@ auto_generated: true
   
     
 
-
 ## `KubeProxyConfiguration`     {#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration}
     
 
 
+<p>KubeProxyConfiguration contains everything necessary to configure the
+Kubernetes proxy server.</p>
 
 
-KubeProxyConfiguration contains everything necessary to configure the
-Kubernetes proxy server.
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -30,509 +28,502 @@ Kubernetes proxy server.
 <tr><td><code>apiVersion</code><br/>string</td><td><code>kubeproxy.config.k8s.io/v1alpha1</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>KubeProxyConfiguration</code></td></tr>
     
-
-  
   
 <tr><td><code>featureGates</code> <B>[Required]</B><br/>
 <code>map[string]bool</code>
 </td>
 <td>
-   featureGates is a map of feature names to bools that enable or disable alpha/experimental features.</td>
+   <p>featureGates is a map of feature names to bools that enable or disable alpha/experimental features.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>bindAddress</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   bindAddress is the IP address for the proxy server to serve on (set to 0.0.0.0
-for all interfaces)</td>
+   <p>bindAddress is the IP address for the proxy server to serve on (set to 0.0.0.0
+for all interfaces)</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>healthzBindAddress</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   healthzBindAddress is the IP address and port for the health check server to serve on,
-defaulting to 0.0.0.0:10256</td>
+   <p>healthzBindAddress is the IP address and port for the health check server to serve on,
+defaulting to 0.0.0.0:10256</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>metricsBindAddress</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   metricsBindAddress is the IP address and port for the metrics server to serve on,
-defaulting to 127.0.0.1:10249 (set to 0.0.0.0 for all interfaces)</td>
+   <p>metricsBindAddress is the IP address and port for the metrics server to serve on,
+defaulting to 127.0.0.1:10249 (set to 0.0.0.0 for all interfaces)</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>bindAddressHardFail</code> <B>[Required]</B><br/>
 <code>bool</code>
 </td>
 <td>
-   bindAddressHardFail, if true, kube-proxy will treat failure to bind to a port as fatal and exit</td>
+   <p>bindAddressHardFail, if true, kube-proxy will treat failure to bind to a port as fatal and exit</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>enableProfiling</code> <B>[Required]</B><br/>
 <code>bool</code>
 </td>
 <td>
-   enableProfiling enables profiling via web interface on /debug/pprof handler.
-Profiling handlers will be handled by metrics server.</td>
+   <p>enableProfiling enables profiling via web interface on /debug/pprof handler.
+Profiling handlers will be handled by metrics server.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>clusterCIDR</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   clusterCIDR is the CIDR range of the pods in the cluster. It is used to
+   <p>clusterCIDR is the CIDR range of the pods in the cluster. It is used to
 bridge traffic coming from outside of the cluster. If not provided,
-no off-cluster bridging will be performed.</td>
+no off-cluster bridging will be performed.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>hostnameOverride</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   hostnameOverride, if non-empty, will be used as the identity instead of the actual hostname.</td>
+   <p>hostnameOverride, if non-empty, will be used as the identity instead of the actual hostname.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>clientConnection</code> <B>[Required]</B><br/>
 <a href="#ClientConnectionConfiguration"><code>ClientConnectionConfiguration</code></a>
 </td>
 <td>
-   clientConnection specifies the kubeconfig file and client connection settings for the proxy
-server to use when communicating with the apiserver.</td>
+   <p>clientConnection specifies the kubeconfig file and client connection settings for the proxy
+server to use when communicating with the apiserver.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>iptables</code> <B>[Required]</B><br/>
 <a href="#kubeproxy-config-k8s-io-v1alpha1-KubeProxyIPTablesConfiguration"><code>KubeProxyIPTablesConfiguration</code></a>
 </td>
 <td>
-   iptables contains iptables-related configuration options.</td>
+   <p>iptables contains iptables-related configuration options.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>ipvs</code> <B>[Required]</B><br/>
 <a href="#kubeproxy-config-k8s-io-v1alpha1-KubeProxyIPVSConfiguration"><code>KubeProxyIPVSConfiguration</code></a>
 </td>
 <td>
-   ipvs contains ipvs-related configuration options.</td>
+   <p>ipvs contains ipvs-related configuration options.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>oomScoreAdj</code> <B>[Required]</B><br/>
 <code>int32</code>
 </td>
 <td>
-   oomScoreAdj is the oom-score-adj value for kube-proxy process. Values must be within
-the range [-1000, 1000]</td>
+   <p>oomScoreAdj is the oom-score-adj value for kube-proxy process. Values must be within
+the range [-1000, 1000]</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>mode</code> <B>[Required]</B><br/>
 <a href="#kubeproxy-config-k8s-io-v1alpha1-ProxyMode"><code>ProxyMode</code></a>
 </td>
 <td>
-   mode specifies which proxy mode to use.</td>
+   <p>mode specifies which proxy mode to use.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>portRange</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   portRange is the range of host ports (beginPort-endPort, inclusive) that may be consumed
-in order to proxy service traffic. If unspecified (0-0) then ports will be randomly chosen.</td>
+   <p>portRange is the range of host ports (beginPort-endPort, inclusive) that may be consumed
+in order to proxy service traffic. If unspecified (0-0) then ports will be randomly chosen.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>udpIdleTimeout</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   udpIdleTimeout is how long an idle UDP connection will be kept open (e.g. '250ms', '2s').
-Must be greater than 0. Only applicable for proxyMode=userspace.</td>
+   <p>udpIdleTimeout is how long an idle UDP connection will be kept open (e.g. '250ms', '2s').
+Must be greater than 0. Only applicable for proxyMode=userspace.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>conntrack</code> <B>[Required]</B><br/>
 <a href="#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConntrackConfiguration"><code>KubeProxyConntrackConfiguration</code></a>
 </td>
 <td>
-   conntrack contains conntrack-related configuration options.</td>
+   <p>conntrack contains conntrack-related configuration options.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>configSyncPeriod</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   configSyncPeriod is how often configuration from the apiserver is refreshed. Must be greater
-than 0.</td>
+   <p>configSyncPeriod is how often configuration from the apiserver is refreshed. Must be greater
+than 0.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>nodePortAddresses</code> <B>[Required]</B><br/>
 <code>[]string</code>
 </td>
 <td>
-   nodePortAddresses is the --nodeport-addresses value for kube-proxy process. Values must be valid
+   <p>nodePortAddresses is the --nodeport-addresses value for kube-proxy process. Values must be valid
 IP blocks. These values are as a parameter to select the interfaces where nodeport works.
 In case someone would like to expose a service on localhost for local visit and some other interfaces for
 particular purpose, a list of IP blocks would do that.
-If set it to "127.0.0.0/8", kube-proxy will only select the loopback interface for NodePort.
+If set it to &quot;127.0.0.0/8&quot;, kube-proxy will only select the loopback interface for NodePort.
 If set it to a non-zero IP block, kube-proxy will filter that down to just the IPs that applied to the node.
-An empty string slice is meant to select all network interfaces.</td>
+An empty string slice is meant to select all network interfaces.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>winkernel</code> <B>[Required]</B><br/>
 <a href="#kubeproxy-config-k8s-io-v1alpha1-KubeProxyWinkernelConfiguration"><code>KubeProxyWinkernelConfiguration</code></a>
 </td>
 <td>
-   winkernel contains winkernel-related configuration options.</td>
+   <p>winkernel contains winkernel-related configuration options.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>showHiddenMetricsForVersion</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   ShowHiddenMetricsForVersion is the version for which you want to show hidden metrics.</td>
+   <p>ShowHiddenMetricsForVersion is the version for which you want to show hidden metrics.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>detectLocalMode</code> <B>[Required]</B><br/>
 <a href="#kubeproxy-config-k8s-io-v1alpha1-LocalMode"><code>LocalMode</code></a>
 </td>
 <td>
-   DetectLocalMode determines mode to use for detecting local traffic, defaults to LocalModeClusterCIDR</td>
+   <p>DetectLocalMode determines mode to use for detecting local traffic, defaults to LocalModeClusterCIDR</p>
+</td>
+</tr>
+<tr><td><code>detectLocal</code> <B>[Required]</B><br/>
+<a href="#kubeproxy-config-k8s-io-v1alpha1-DetectLocalConfiguration"><code>DetectLocalConfiguration</code></a>
+</td>
+<td>
+   <p>DetectLocal contains optional configuration settings related to DetectLocalMode.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
+
+## `DetectLocalConfiguration`     {#kubeproxy-config-k8s-io-v1alpha1-DetectLocalConfiguration}
     
 
-
-## `KubeProxyConntrackConfiguration`     {#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConntrackConfiguration}
-    
-
-
-
 **Appears in:**
 
 - [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
 
 
-KubeProxyConntrackConfiguration contains conntrack settings for
-the Kubernetes proxy server.
+<p>DetectLocalConfiguration contains optional settings related to DetectLocalMode option</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
+  
+<tr><td><code>bridgeInterface</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>BridgeInterface is a string argument which represents a single bridge interface name.
+Kube-proxy considers traffic as local if originating from this given bridge.
+This argument should be set if DetectLocalMode is set to LocalModeBridgeInterface.</p>
+</td>
+</tr>
+<tr><td><code>interfaceNamePrefix</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>InterfaceNamePrefix is a string argument which represents a single interface prefix name.
+Kube-proxy considers traffic as local if originating from one or more interfaces which match
+the given prefix. This argument should be set if DetectLocalMode is set to LocalModeInterfaceNamePrefix.</p>
+</td>
+</tr>
+</tbody>
+</table>
 
+## `KubeProxyConntrackConfiguration`     {#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConntrackConfiguration}
+    
+
+**Appears in:**
+
+- [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
+
+
+<p>KubeProxyConntrackConfiguration contains conntrack settings for
+the Kubernetes proxy server.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
   
 <tr><td><code>maxPerCore</code> <B>[Required]</B><br/>
 <code>int32</code>
 </td>
 <td>
-   maxPerCore is the maximum number of NAT connections to track
-per CPU core (0 to leave the limit as-is and ignore min).</td>
+   <p>maxPerCore is the maximum number of NAT connections to track
+per CPU core (0 to leave the limit as-is and ignore min).</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>min</code> <B>[Required]</B><br/>
 <code>int32</code>
 </td>
 <td>
-   min is the minimum value of connect-tracking records to allocate,
-regardless of conntrackMaxPerCore (set maxPerCore=0 to leave the limit as-is).</td>
+   <p>min is the minimum value of connect-tracking records to allocate,
+regardless of conntrackMaxPerCore (set maxPerCore=0 to leave the limit as-is).</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>tcpEstablishedTimeout</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   tcpEstablishedTimeout is how long an idle TCP connection will be kept open
-(e.g. '2s').  Must be greater than 0 to set.</td>
+   <p>tcpEstablishedTimeout is how long an idle TCP connection will be kept open
+(e.g. '2s').  Must be greater than 0 to set.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>tcpCloseWaitTimeout</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   tcpCloseWaitTimeout is how long an idle conntrack entry
+   <p>tcpCloseWaitTimeout is how long an idle conntrack entry
 in CLOSE_WAIT state will remain in the conntrack
-table. (e.g. '60s'). Must be greater than 0 to set.</td>
+table. (e.g. '60s'). Must be greater than 0 to set.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `KubeProxyIPTablesConfiguration`     {#kubeproxy-config-k8s-io-v1alpha1-KubeProxyIPTablesConfiguration}
     
 
-
-
 **Appears in:**
 
 - [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
 
 
-KubeProxyIPTablesConfiguration contains iptables-related configuration
-details for the Kubernetes proxy server.
+<p>KubeProxyIPTablesConfiguration contains iptables-related configuration
+details for the Kubernetes proxy server.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>masqueradeBit</code> <B>[Required]</B><br/>
 <code>int32</code>
 </td>
 <td>
-   masqueradeBit is the bit of the iptables fwmark space to use for SNAT if using
-the pure iptables proxy mode. Values must be within the range [0, 31].</td>
+   <p>masqueradeBit is the bit of the iptables fwmark space to use for SNAT if using
+the pure iptables proxy mode. Values must be within the range [0, 31].</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>masqueradeAll</code> <B>[Required]</B><br/>
 <code>bool</code>
 </td>
 <td>
-   masqueradeAll tells kube-proxy to SNAT everything if using the pure iptables proxy mode.</td>
+   <p>masqueradeAll tells kube-proxy to SNAT everything if using the pure iptables proxy mode.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>syncPeriod</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   syncPeriod is the period that iptables rules are refreshed (e.g. '5s', '1m',
-'2h22m').  Must be greater than 0.</td>
+   <p>syncPeriod is the period that iptables rules are refreshed (e.g. '5s', '1m',
+'2h22m').  Must be greater than 0.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>minSyncPeriod</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   minSyncPeriod is the minimum period that iptables rules are refreshed (e.g. '5s', '1m',
-'2h22m').</td>
+   <p>minSyncPeriod is the minimum period that iptables rules are refreshed (e.g. '5s', '1m',
+'2h22m').</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `KubeProxyIPVSConfiguration`     {#kubeproxy-config-k8s-io-v1alpha1-KubeProxyIPVSConfiguration}
     
 
-
-
 **Appears in:**
 
 - [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
 
 
-KubeProxyIPVSConfiguration contains ipvs-related configuration
-details for the Kubernetes proxy server.
+<p>KubeProxyIPVSConfiguration contains ipvs-related configuration
+details for the Kubernetes proxy server.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>syncPeriod</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   syncPeriod is the period that ipvs rules are refreshed (e.g. '5s', '1m',
-'2h22m').  Must be greater than 0.</td>
+   <p>syncPeriod is the period that ipvs rules are refreshed (e.g. '5s', '1m',
+'2h22m').  Must be greater than 0.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>minSyncPeriod</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   minSyncPeriod is the minimum period that ipvs rules are refreshed (e.g. '5s', '1m',
-'2h22m').</td>
+   <p>minSyncPeriod is the minimum period that ipvs rules are refreshed (e.g. '5s', '1m',
+'2h22m').</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>scheduler</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   ipvs scheduler</td>
+   <p>ipvs scheduler</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>excludeCIDRs</code> <B>[Required]</B><br/>
 <code>[]string</code>
 </td>
 <td>
-   excludeCIDRs is a list of CIDR's which the ipvs proxier should not touch
-when cleaning up ipvs services.</td>
+   <p>excludeCIDRs is a list of CIDR's which the ipvs proxier should not touch
+when cleaning up ipvs services.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>strictARP</code> <B>[Required]</B><br/>
 <code>bool</code>
 </td>
 <td>
-   strict ARP configure arp_ignore and arp_announce to avoid answering ARP queries
-from kube-ipvs0 interface</td>
+   <p>strict ARP configure arp_ignore and arp_announce to avoid answering ARP queries
+from kube-ipvs0 interface</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>tcpTimeout</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   tcpTimeout is the timeout value used for idle IPVS TCP sessions.
-The default value is 0, which preserves the current timeout value on the system.</td>
+   <p>tcpTimeout is the timeout value used for idle IPVS TCP sessions.
+The default value is 0, which preserves the current timeout value on the system.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>tcpFinTimeout</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   tcpFinTimeout is the timeout value used for IPVS TCP sessions after receiving a FIN.
-The default value is 0, which preserves the current timeout value on the system.</td>
+   <p>tcpFinTimeout is the timeout value used for IPVS TCP sessions after receiving a FIN.
+The default value is 0, which preserves the current timeout value on the system.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>udpTimeout</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   udpTimeout is the timeout value used for IPVS UDP packets.
-The default value is 0, which preserves the current timeout value on the system.</td>
+   <p>udpTimeout is the timeout value used for IPVS UDP packets.
+The default value is 0, which preserves the current timeout value on the system.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `KubeProxyWinkernelConfiguration`     {#kubeproxy-config-k8s-io-v1alpha1-KubeProxyWinkernelConfiguration}
     
 
-
-
 **Appears in:**
 
 - [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
 
 
-KubeProxyWinkernelConfiguration contains Windows/HNS settings for
-the Kubernetes proxy server.
+<p>KubeProxyWinkernelConfiguration contains Windows/HNS settings for
+the Kubernetes proxy server.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>networkName</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   networkName is the name of the network kube-proxy will use
-to create endpoints and policies</td>
+   <p>networkName is the name of the network kube-proxy will use
+to create endpoints and policies</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>sourceVip</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   sourceVip is the IP address of the source VIP endoint used for
-NAT when loadbalancing</td>
+   <p>sourceVip is the IP address of the source VIP endoint used for
+NAT when loadbalancing</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>enableDSR</code> <B>[Required]</B><br/>
 <code>bool</code>
 </td>
 <td>
-   enableDSR tells kube-proxy whether HNS policies should be created
-with DSR</td>
+   <p>enableDSR tells kube-proxy whether HNS policies should be created
+with DSR</p>
+</td>
+</tr>
+<tr><td><code>rootHnsEndpointName</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>RootHnsEndpointName is the name of hnsendpoint that is attached to
+l2bridge for root network namespace</p>
+</td>
+</tr>
+<tr><td><code>forwardHealthCheckVip</code> <B>[Required]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>ForwardHealthCheckVip forwards service VIP for health check port on
+Windows</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `LocalMode`     {#kubeproxy-config-k8s-io-v1alpha1-LocalMode}
     
 (Alias of `string`)
 
-
 **Appears in:**
 
 - [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
 
 
-LocalMode represents modes to detect local traffic from the node
+<p>LocalMode represents modes to detect local traffic from the node</p>
 
 
-    
 
 
 ## `ProxyMode`     {#kubeproxy-config-k8s-io-v1alpha1-ProxyMode}
     
 (Alias of `string`)
 
-
 **Appears in:**
 
 - [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
 
 
-ProxyMode represents modes used by the Kubernetes proxy server.
-
-Currently, three modes of proxy are available in Linux platform: 'userspace' (older, going to be EOL), 'iptables'
-(newer, faster), 'ipvs'(newest, better in performance and scalability).
-
-Two modes of proxy are available in Windows platform: 'userspace'(older, stable) and 'kernelspace' (newer, faster).
-
-In Linux platform, if proxy mode is blank, use the best-available proxy (currently iptables, but may change in the
+<p>ProxyMode represents modes used by the Kubernetes proxy server.</p>
+<p>Currently, three modes of proxy are available in Linux platform: 'userspace' (older, going to be EOL), 'iptables'
+(newer, faster), 'ipvs'(newest, better in performance and scalability).</p>
+<p>Two modes of proxy are available in Windows platform: 'userspace'(older, stable) and 'kernelspace' (newer, faster).</p>
+<p>In Linux platform, if proxy mode is blank, use the best-available proxy (currently iptables, but may change in the
 future). If the iptables proxy is selected, regardless of how, but the system's kernel or iptables versions are
 insufficient, this always falls back to the userspace proxy. IPVS mode will be enabled when proxy mode is set to 'ipvs',
-and the fall back path is firstly iptables and then userspace.
-
-In Windows platform, if proxy mode is blank, use the best-available proxy (currently userspace, but may change in the
+and the fall back path is firstly iptables and then userspace.</p>
+<p>In Windows platform, if proxy mode is blank, use the best-available proxy (currently userspace, but may change in the
 future). If winkernel proxy is selected, regardless of how, but the Windows kernel can't support this mode of proxy,
-this always falls back to the userspace proxy.
+this always falls back to the userspace proxy.</p>
+
 
 
-    
   
   
     
@@ -540,241 +531,328 @@ this always falls back to the userspace proxy.
 ## `ClientConnectionConfiguration`     {#ClientConnectionConfiguration}
     
 
-
-
 **Appears in:**
 
 - [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
 
 - [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
 
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerConfiguration)
+
 - [GenericControllerManagerConfiguration](#controllermanager-config-k8s-io-v1alpha1-GenericControllerManagerConfiguration)
 
 
-ClientConnectionConfiguration contains details for constructing a client.
+<p>ClientConnectionConfiguration contains details for constructing a client.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>kubeconfig</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   kubeconfig is the path to a KubeConfig file.</td>
+   <p>kubeconfig is the path to a KubeConfig file.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>acceptContentTypes</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   acceptContentTypes defines the Accept header sent by clients when connecting to a server, overriding the
+   <p>acceptContentTypes defines the Accept header sent by clients when connecting to a server, overriding the
 default value of 'application/json'. This field will control all connections to the server used by a particular
-client.</td>
+client.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>contentType</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   contentType is the content type used when sending data to the server from this client.</td>
+   <p>contentType is the content type used when sending data to the server from this client.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>qps</code> <B>[Required]</B><br/>
 <code>float32</code>
 </td>
 <td>
-   qps controls the number of queries per second allowed for this connection.</td>
+   <p>qps controls the number of queries per second allowed for this connection.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>burst</code> <B>[Required]</B><br/>
 <code>int32</code>
 </td>
 <td>
-   burst allows extra queries to accumulate when a client is exceeding its rate.</td>
+   <p>burst allows extra queries to accumulate when a client is exceeding its rate.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
 
 ## `DebuggingConfiguration`     {#DebuggingConfiguration}
     
 
-
-
 **Appears in:**
 
 - [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
 
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerConfiguration)
+
 - [GenericControllerManagerConfiguration](#controllermanager-config-k8s-io-v1alpha1-GenericControllerManagerConfiguration)
 
 
-DebuggingConfiguration holds configuration for Debugging related features.
+<p>DebuggingConfiguration holds configuration for Debugging related features.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>enableProfiling</code> <B>[Required]</B><br/>
 <code>bool</code>
 </td>
 <td>
-   enableProfiling enables profiling via web interface host:port/debug/pprof/</td>
+   <p>enableProfiling enables profiling via web interface host:port/debug/pprof/</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>enableContentionProfiling</code> <B>[Required]</B><br/>
 <code>bool</code>
 </td>
 <td>
-   enableContentionProfiling enables lock contention profiling, if
-enableProfiling is true.</td>
+   <p>enableContentionProfiling enables lock contention profiling, if
+enableProfiling is true.</p>
+</td>
 </tr>
+</tbody>
+</table>
+
+## `FormatOptions`     {#FormatOptions}
+    
+
+**Appears in:**
+
+- [LoggingConfiguration](#LoggingConfiguration)
+
+
+<p>FormatOptions contains options for the different logging formats.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
     
   
+<tr><td><code>json</code> <B>[Required]</B><br/>
+<a href="#JSONOptions"><code>JSONOptions</code></a>
+</td>
+<td>
+   <p>[Experimental] JSON contains options for logging format &quot;json&quot;.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `JSONOptions`     {#JSONOptions}
+    
+
+**Appears in:**
+
+- [FormatOptions](#FormatOptions)
+
+
+<p>JSONOptions contains options for logging format &quot;json&quot;.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>splitStream</code> <B>[Required]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>[Experimental] SplitStream redirects error messages to stderr while
+info messages go to stdout, with buffering. The default is to write
+both to stdout, without buffering.</p>
+</td>
+</tr>
+<tr><td><code>infoBufferSize</code> <B>[Required]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/api/resource#QuantityValue"><code>k8s.io/apimachinery/pkg/api/resource.QuantityValue</code></a>
+</td>
+<td>
+   <p>[Experimental] InfoBufferSize sets the size of the info stream when
+using split streams. The default is zero, which disables buffering.</p>
+</td>
+</tr>
 </tbody>
 </table>
 
 ## `LeaderElectionConfiguration`     {#LeaderElectionConfiguration}
     
 
-
-
 **Appears in:**
 
 - [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
 
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerConfiguration)
+
 - [GenericControllerManagerConfiguration](#controllermanager-config-k8s-io-v1alpha1-GenericControllerManagerConfiguration)
 
 
-LeaderElectionConfiguration defines the configuration of leader election
-clients for components that can run with leader election enabled.
+<p>LeaderElectionConfiguration defines the configuration of leader election
+clients for components that can run with leader election enabled.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>leaderElect</code> <B>[Required]</B><br/>
 <code>bool</code>
 </td>
 <td>
-   leaderElect enables a leader election client to gain leadership
+   <p>leaderElect enables a leader election client to gain leadership
 before executing the main loop. Enable this when running replicated
-components for high availability.</td>
+components for high availability.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>leaseDuration</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   leaseDuration is the duration that non-leader candidates will wait
+   <p>leaseDuration is the duration that non-leader candidates will wait
 after observing a leadership renewal until attempting to acquire
 leadership of a led but unrenewed leader slot. This is effectively the
 maximum duration that a leader can be stopped before it is replaced
 by another candidate. This is only applicable if leader election is
-enabled.</td>
+enabled.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>renewDeadline</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   renewDeadline is the interval between attempts by the acting master to
+   <p>renewDeadline is the interval between attempts by the acting master to
 renew a leadership slot before it stops leading. This must be less
 than or equal to the lease duration. This is only applicable if leader
-election is enabled.</td>
+election is enabled.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>retryPeriod</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   retryPeriod is the duration the clients should wait between attempting
+   <p>retryPeriod is the duration the clients should wait between attempting
 acquisition and renewal of a leadership. This is only applicable if
-leader election is enabled.</td>
+leader election is enabled.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>resourceLock</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   resourceLock indicates the resource object type that will be used to lock
-during leader election cycles.</td>
+   <p>resourceLock indicates the resource object type that will be used to lock
+during leader election cycles.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>resourceName</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   resourceName indicates the name of resource object that will be used to lock
-during leader election cycles.</td>
+   <p>resourceName indicates the name of resource object that will be used to lock
+during leader election cycles.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>resourceNamespace</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   resourceName indicates the namespace of resource object that will be used to lock
-during leader election cycles.</td>
+   <p>resourceName indicates the namespace of resource object that will be used to lock
+during leader election cycles.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
 
 ## `LoggingConfiguration`     {#LoggingConfiguration}
     
 
-
-
 **Appears in:**
 
 - [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
 
 
-LoggingConfiguration contains logging options
-Refer [Logs Options](https://github.com/kubernetes/component-base/blob/master/logs/options.go) for more information.
+<p>LoggingConfiguration contains logging options
+Refer <a href="https://github.com/kubernetes/component-base/blob/master/logs/options.go">Logs Options</a> for more information.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>format</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   Format Flag specifies the structure of log messages.
-default value of format is `text`</td>
+   <p>Format Flag specifies the structure of log messages.
+default value of format is <code>text</code></p>
+</td>
 </tr>
-    
-  
-<tr><td><code>sanitization</code> <B>[Required]</B><br/>
-<code>bool</code>
+<tr><td><code>flushFrequency</code> <B>[Required]</B><br/>
+<a href="https://pkg.go.dev/time#Duration"><code>time.Duration</code></a>
 </td>
 <td>
-   [Experimental] When enabled prevents logging of fields tagged as sensitive (passwords, keys, tokens).
-Runtime log sanitization may introduce significant computation overhead and therefore should not be enabled in production.`)</td>
+   <p>Maximum number of nanoseconds (i.e. 1s = 1000000000) between log
+flushes.  Ignored if the selected logging backend writes log
+messages without buffering.</p>
+</td>
+</tr>
+<tr><td><code>verbosity</code> <B>[Required]</B><br/>
+<code>uint32</code>
+</td>
+<td>
+   <p>Verbosity is the threshold that determines which log messages are
+logged. Default is zero which logs only the most important
+messages. Higher values enable additional messages. Error messages
+are always logged.</p>
+</td>
+</tr>
+<tr><td><code>vmodule</code> <B>[Required]</B><br/>
+<a href="#VModuleConfiguration"><code>VModuleConfiguration</code></a>
+</td>
+<td>
+   <p>VModule overrides the verbosity threshold for individual files.
+Only supported for &quot;text&quot; log format.</p>
+</td>
+</tr>
+<tr><td><code>options</code> <B>[Required]</B><br/>
+<a href="#FormatOptions"><code>FormatOptions</code></a>
+</td>
+<td>
+   <p>[Experimental] Options holds additional parameters that are specific
+to the different logging formats. Only the options for the selected
+format get used, but all of them get validated.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
+
+## `VModuleConfiguration`     {#VModuleConfiguration}
+    
+(Alias of `[]k8s.io/component-base/config/v1alpha1.VModuleItem`)
+
+**Appears in:**
+
+- [LoggingConfiguration](#LoggingConfiguration)
+
+
+<p>VModuleConfiguration is a collection of individual file names or patterns
+and the corresponding verbosity threshold.</p>
+
+
+
diff --git a/content/en/docs/reference/config-api/kube-scheduler-config.v1beta1.md b/content/en/docs/reference/config-api/kube-scheduler-config.v1beta1.md
deleted file mode 100644
index ac32e65674..0000000000
--- a/content/en/docs/reference/config-api/kube-scheduler-config.v1beta1.md
+++ /dev/null
@@ -1,2156 +0,0 @@
----
-title: kube-scheduler Configuration (v1beta1)
-content_type: tool-reference
-package: kubescheduler.config.k8s.io/v1
-auto_generated: true
----
-
-
-## Resource Types 
-
-
-- [Policy](#kubescheduler-config-k8s-io-v1-Policy)
-- [DefaultPreemptionArgs](#kubescheduler-config-k8s-io-v1beta1-DefaultPreemptionArgs)
-- [InterPodAffinityArgs](#kubescheduler-config-k8s-io-v1beta1-InterPodAffinityArgs)
-- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta1-KubeSchedulerConfiguration)
-- [NodeAffinityArgs](#kubescheduler-config-k8s-io-v1beta1-NodeAffinityArgs)
-- [NodeLabelArgs](#kubescheduler-config-k8s-io-v1beta1-NodeLabelArgs)
-- [NodeResourcesFitArgs](#kubescheduler-config-k8s-io-v1beta1-NodeResourcesFitArgs)
-- [NodeResourcesLeastAllocatedArgs](#kubescheduler-config-k8s-io-v1beta1-NodeResourcesLeastAllocatedArgs)
-- [NodeResourcesMostAllocatedArgs](#kubescheduler-config-k8s-io-v1beta1-NodeResourcesMostAllocatedArgs)
-- [PodTopologySpreadArgs](#kubescheduler-config-k8s-io-v1beta1-PodTopologySpreadArgs)
-- [RequestedToCapacityRatioArgs](#kubescheduler-config-k8s-io-v1beta1-RequestedToCapacityRatioArgs)
-- [ServiceAffinityArgs](#kubescheduler-config-k8s-io-v1beta1-ServiceAffinityArgs)
-- [VolumeBindingArgs](#kubescheduler-config-k8s-io-v1beta1-VolumeBindingArgs)
-  
-    
-
-
-## `Policy`     {#kubescheduler-config-k8s-io-v1-Policy}
-    
-
-
-
-
-Policy describes a struct for a policy resource used in api.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>Policy</code></td></tr>
-    
-
-  
-  
-<tr><td><code>predicates</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-PredicatePolicy"><code>[]PredicatePolicy</code></a>
-</td>
-<td>
-   Holds the information to configure the fit predicate functions</td>
-</tr>
-    
-  
-<tr><td><code>priorities</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-PriorityPolicy"><code>[]PriorityPolicy</code></a>
-</td>
-<td>
-   Holds the information to configure the priority functions</td>
-</tr>
-    
-  
-<tr><td><code>extenders</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-LegacyExtender"><code>[]LegacyExtender</code></a>
-</td>
-<td>
-   Holds the information to communicate with the extender(s)</td>
-</tr>
-    
-  
-<tr><td><code>hardPodAffinitySymmetricWeight</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   RequiredDuringScheduling affinity is not symmetric, but there is an implicit PreferredDuringScheduling affinity rule
-corresponding to every RequiredDuringScheduling affinity rule.
-HardPodAffinitySymmetricWeight represents the weight of implicit PreferredDuringScheduling affinity rule, in the range 1-100.</td>
-</tr>
-    
-  
-<tr><td><code>alwaysCheckAllPredicates</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   When AlwaysCheckAllPredicates is set to true, scheduler checks all
-the configured predicates even after one or more of them fails.
-When the flag is set to false, scheduler skips checking the rest
-of the predicates after it finds one predicate that failed.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ExtenderManagedResource`     {#kubescheduler-config-k8s-io-v1-ExtenderManagedResource}
-    
-
-
-
-**Appears in:**
-
-- [Extender](#kubescheduler-config-k8s-io-v1beta1-Extender)
-
-- [LegacyExtender](#kubescheduler-config-k8s-io-v1-LegacyExtender)
-
-
-ExtenderManagedResource describes the arguments of extended resources
-managed by an extender.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Name is the extended resource name.</td>
-</tr>
-    
-  
-<tr><td><code>ignoredByScheduler</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   IgnoredByScheduler indicates whether kube-scheduler should ignore this
-resource when applying predicates.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ExtenderTLSConfig`     {#kubescheduler-config-k8s-io-v1-ExtenderTLSConfig}
-    
-
-
-
-**Appears in:**
-
-- [Extender](#kubescheduler-config-k8s-io-v1beta1-Extender)
-
-- [LegacyExtender](#kubescheduler-config-k8s-io-v1-LegacyExtender)
-
-
-ExtenderTLSConfig contains settings to enable TLS with extender
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>insecure</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   Server should be accessed without verifying the TLS certificate. For testing only.</td>
-</tr>
-    
-  
-<tr><td><code>serverName</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   ServerName is passed to the server for SNI and is used in the client to check server
-certificates against. If ServerName is empty, the hostname used to contact the
-server is used.</td>
-</tr>
-    
-  
-<tr><td><code>certFile</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Server requires TLS client certificate authentication</td>
-</tr>
-    
-  
-<tr><td><code>keyFile</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Server requires TLS client certificate authentication</td>
-</tr>
-    
-  
-<tr><td><code>caFile</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Trusted root certificates for server</td>
-</tr>
-    
-  
-<tr><td><code>certData</code> <B>[Required]</B><br/>
-<code>[]byte</code>
-</td>
-<td>
-   CertData holds PEM-encoded bytes (typically read from a client certificate file).
-CertData takes precedence over CertFile</td>
-</tr>
-    
-  
-<tr><td><code>keyData</code> <B>[Required]</B><br/>
-<code>[]byte</code>
-</td>
-<td>
-   KeyData holds PEM-encoded bytes (typically read from a client certificate key file).
-KeyData takes precedence over KeyFile</td>
-</tr>
-    
-  
-<tr><td><code>caData</code> <B>[Required]</B><br/>
-<code>[]byte</code>
-</td>
-<td>
-   CAData holds PEM-encoded bytes (typically read from a root certificates bundle).
-CAData takes precedence over CAFile</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `LabelPreference`     {#kubescheduler-config-k8s-io-v1-LabelPreference}
-    
-
-
-
-**Appears in:**
-
-- [PriorityArgument](#kubescheduler-config-k8s-io-v1-PriorityArgument)
-
-
-LabelPreference holds the parameters that are used to configure the corresponding priority function
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>label</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Used to identify node "groups"</td>
-</tr>
-    
-  
-<tr><td><code>presence</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   This is a boolean flag
-If true, higher priority is given to nodes that have the label
-If false, higher priority is given to nodes that do not have the label</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `LabelsPresence`     {#kubescheduler-config-k8s-io-v1-LabelsPresence}
-    
-
-
-
-**Appears in:**
-
-- [PredicateArgument](#kubescheduler-config-k8s-io-v1-PredicateArgument)
-
-
-LabelsPresence holds the parameters that are used to configure the corresponding predicate in scheduler policy configuration.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>labels</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   The list of labels that identify node "groups"
-All of the labels should be either present (or absent) for the node to be considered a fit for hosting the pod</td>
-</tr>
-    
-  
-<tr><td><code>presence</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   The boolean flag that indicates whether the labels should be present or absent from the node</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `LegacyExtender`     {#kubescheduler-config-k8s-io-v1-LegacyExtender}
-    
-
-
-
-**Appears in:**
-
-- [Policy](#kubescheduler-config-k8s-io-v1-Policy)
-
-
-LegacyExtender holds the parameters used to communicate with the extender. If a verb is unspecified/empty,
-it is assumed that the extender chose not to provide that extension.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>urlPrefix</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   URLPrefix at which the extender is available</td>
-</tr>
-    
-  
-<tr><td><code>filterVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the filter call, empty if not supported. This verb is appended to the URLPrefix when issuing the filter call to extender.</td>
-</tr>
-    
-  
-<tr><td><code>preemptVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the preempt call, empty if not supported. This verb is appended to the URLPrefix when issuing the preempt call to extender.</td>
-</tr>
-    
-  
-<tr><td><code>prioritizeVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the prioritize call, empty if not supported. This verb is appended to the URLPrefix when issuing the prioritize call to extender.</td>
-</tr>
-    
-  
-<tr><td><code>weight</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   The numeric multiplier for the node scores that the prioritize call generates.
-The weight should be a positive integer</td>
-</tr>
-    
-  
-<tr><td><code>bindVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the bind call, empty if not supported. This verb is appended to the URLPrefix when issuing the bind call to extender.
-If this method is implemented by the extender, it is the extender's responsibility to bind the pod to apiserver. Only one extender
-can implement this function.</td>
-</tr>
-    
-  
-<tr><td><code>enableHttps</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   EnableHTTPS specifies whether https should be used to communicate with the extender</td>
-</tr>
-    
-  
-<tr><td><code>tlsConfig</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ExtenderTLSConfig"><code>ExtenderTLSConfig</code></a>
-</td>
-<td>
-   TLSConfig specifies the transport layer security config</td>
-</tr>
-    
-  
-<tr><td><code>httpTimeout</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/time#Duration"><code>time.Duration</code></a>
-</td>
-<td>
-   HTTPTimeout specifies the timeout duration for a call to the extender. Filter timeout fails the scheduling of the pod. Prioritize
-timeout is ignored, k8s/other extenders priorities are used to select the node.</td>
-</tr>
-    
-  
-<tr><td><code>nodeCacheCapable</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   NodeCacheCapable specifies that the extender is capable of caching node information,
-so the scheduler should only send minimal information about the eligible nodes
-assuming that the extender already cached full details of all nodes in the cluster</td>
-</tr>
-    
-  
-<tr><td><code>managedResources</code><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ExtenderManagedResource"><code>[]ExtenderManagedResource</code></a>
-</td>
-<td>
-   ManagedResources is a list of extended resources that are managed by
-this extender.
-- A pod will be sent to the extender on the Filter, Prioritize and Bind
-  (if the extender is the binder) phases iff the pod requests at least
-  one of the extended resources in this list. If empty or unspecified,
-  all pods will be sent to this extender.
-- If IgnoredByScheduler is set to true for a resource, kube-scheduler
-  will skip checking the resource in predicates.</td>
-</tr>
-    
-  
-<tr><td><code>ignorable</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   Ignorable specifies if the extender is ignorable, i.e. scheduling should not
-fail when the extender returns an error or is not reachable.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PredicateArgument`     {#kubescheduler-config-k8s-io-v1-PredicateArgument}
-    
-
-
-
-**Appears in:**
-
-- [PredicatePolicy](#kubescheduler-config-k8s-io-v1-PredicatePolicy)
-
-
-PredicateArgument represents the arguments to configure predicate functions in scheduler policy configuration.
-Only one of its members may be specified
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>serviceAffinity</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ServiceAffinity"><code>ServiceAffinity</code></a>
-</td>
-<td>
-   The predicate that provides affinity for pods belonging to a service
-It uses a label to identify nodes that belong to the same "group"</td>
-</tr>
-    
-  
-<tr><td><code>labelsPresence</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-LabelsPresence"><code>LabelsPresence</code></a>
-</td>
-<td>
-   The predicate that checks whether a particular node has a certain label
-defined or not, regardless of value</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PredicatePolicy`     {#kubescheduler-config-k8s-io-v1-PredicatePolicy}
-    
-
-
-
-**Appears in:**
-
-- [Policy](#kubescheduler-config-k8s-io-v1-Policy)
-
-
-PredicatePolicy describes a struct of a predicate policy.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Identifier of the predicate policy
-For a custom predicate, the name can be user-defined
-For the Kubernetes provided predicates, the name is the identifier of the pre-defined predicate</td>
-</tr>
-    
-  
-<tr><td><code>argument</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-PredicateArgument"><code>PredicateArgument</code></a>
-</td>
-<td>
-   Holds the parameters to configure the given predicate</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PriorityArgument`     {#kubescheduler-config-k8s-io-v1-PriorityArgument}
-    
-
-
-
-**Appears in:**
-
-- [PriorityPolicy](#kubescheduler-config-k8s-io-v1-PriorityPolicy)
-
-
-PriorityArgument represents the arguments to configure priority functions in scheduler policy configuration.
-Only one of its members may be specified
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>serviceAntiAffinity</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ServiceAntiAffinity"><code>ServiceAntiAffinity</code></a>
-</td>
-<td>
-   The priority function that ensures a good spread (anti-affinity) for pods belonging to a service
-It uses a label to identify nodes that belong to the same "group"</td>
-</tr>
-    
-  
-<tr><td><code>labelPreference</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-LabelPreference"><code>LabelPreference</code></a>
-</td>
-<td>
-   The priority function that checks whether a particular node has a certain label
-defined or not, regardless of value</td>
-</tr>
-    
-  
-<tr><td><code>requestedToCapacityRatioArguments</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-RequestedToCapacityRatioArguments"><code>RequestedToCapacityRatioArguments</code></a>
-</td>
-<td>
-   The RequestedToCapacityRatio priority function is parametrized with function shape.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PriorityPolicy`     {#kubescheduler-config-k8s-io-v1-PriorityPolicy}
-    
-
-
-
-**Appears in:**
-
-- [Policy](#kubescheduler-config-k8s-io-v1-Policy)
-
-
-PriorityPolicy describes a struct of a priority policy.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Identifier of the priority policy
-For a custom priority, the name can be user-defined
-For the Kubernetes provided priority functions, the name is the identifier of the pre-defined priority function</td>
-</tr>
-    
-  
-<tr><td><code>weight</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   The numeric multiplier for the node scores that the priority function generates
-The weight should be non-zero and can be a positive or a negative integer</td>
-</tr>
-    
-  
-<tr><td><code>argument</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-PriorityArgument"><code>PriorityArgument</code></a>
-</td>
-<td>
-   Holds the parameters to configure the given priority function</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `RequestedToCapacityRatioArguments`     {#kubescheduler-config-k8s-io-v1-RequestedToCapacityRatioArguments}
-    
-
-
-
-**Appears in:**
-
-- [PriorityArgument](#kubescheduler-config-k8s-io-v1-PriorityArgument)
-
-
-RequestedToCapacityRatioArguments holds arguments specific to RequestedToCapacityRatio priority function.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>shape</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-UtilizationShapePoint"><code>[]UtilizationShapePoint</code></a>
-</td>
-<td>
-   Array of point defining priority function shape.</td>
-</tr>
-    
-  
-<tr><td><code>resources</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ResourceSpec"><code>[]ResourceSpec</code></a>
-</td>
-<td>
-   <span class="text-muted">No description provided.</span>
-   </td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ResourceSpec`     {#kubescheduler-config-k8s-io-v1-ResourceSpec}
-    
-
-
-
-**Appears in:**
-
-- [RequestedToCapacityRatioArguments](#kubescheduler-config-k8s-io-v1-RequestedToCapacityRatioArguments)
-
-
-ResourceSpec represents single resource and weight for bin packing of priority RequestedToCapacityRatioArguments.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Name of the resource to be managed by RequestedToCapacityRatio function.</td>
-</tr>
-    
-  
-<tr><td><code>weight</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   Weight of the resource.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ServiceAffinity`     {#kubescheduler-config-k8s-io-v1-ServiceAffinity}
-    
-
-
-
-**Appears in:**
-
-- [PredicateArgument](#kubescheduler-config-k8s-io-v1-PredicateArgument)
-
-
-ServiceAffinity holds the parameters that are used to configure the corresponding predicate in scheduler policy configuration.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>labels</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   The list of labels that identify node "groups"
-All of the labels should match for the node to be considered a fit for hosting the pod</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ServiceAntiAffinity`     {#kubescheduler-config-k8s-io-v1-ServiceAntiAffinity}
-    
-
-
-
-**Appears in:**
-
-- [PriorityArgument](#kubescheduler-config-k8s-io-v1-PriorityArgument)
-
-
-ServiceAntiAffinity holds the parameters that are used to configure the corresponding priority function
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>label</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Used to identify node "groups"</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `UtilizationShapePoint`     {#kubescheduler-config-k8s-io-v1-UtilizationShapePoint}
-    
-
-
-
-**Appears in:**
-
-- [RequestedToCapacityRatioArguments](#kubescheduler-config-k8s-io-v1-RequestedToCapacityRatioArguments)
-
-
-UtilizationShapePoint represents single point of priority function shape.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>utilization</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   Utilization (x axis). Valid values are 0 to 100. Fully utilized node maps to 100.</td>
-</tr>
-    
-  
-<tr><td><code>score</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   Score assigned to given utilization (y axis). Valid values are 0 to 10.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-  
-  
-    
-
-## `ClientConnectionConfiguration`     {#ClientConnectionConfiguration}
-    
-
-
-
-**Appears in:**
-
-- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta1-KubeSchedulerConfiguration)
-
-
-ClientConnectionConfiguration contains details for constructing a client.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>kubeconfig</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   kubeconfig is the path to a KubeConfig file.</td>
-</tr>
-    
-  
-<tr><td><code>acceptContentTypes</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   acceptContentTypes defines the Accept header sent by clients when connecting to a server, overriding the
-default value of 'application/json'. This field will control all connections to the server used by a particular
-client.</td>
-</tr>
-    
-  
-<tr><td><code>contentType</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   contentType is the content type used when sending data to the server from this client.</td>
-</tr>
-    
-  
-<tr><td><code>qps</code> <B>[Required]</B><br/>
-<code>float32</code>
-</td>
-<td>
-   qps controls the number of queries per second allowed for this connection.</td>
-</tr>
-    
-  
-<tr><td><code>burst</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   burst allows extra queries to accumulate when a client is exceeding its rate.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-
-## `DebuggingConfiguration`     {#DebuggingConfiguration}
-    
-
-
-
-**Appears in:**
-
-- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta1-KubeSchedulerConfiguration)
-
-
-DebuggingConfiguration holds configuration for Debugging related features.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>enableProfiling</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   enableProfiling enables profiling via web interface host:port/debug/pprof/</td>
-</tr>
-    
-  
-<tr><td><code>enableContentionProfiling</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   enableContentionProfiling enables lock contention profiling, if
-enableProfiling is true.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-
-## `LeaderElectionConfiguration`     {#LeaderElectionConfiguration}
-    
-
-
-
-**Appears in:**
-
-- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta1-KubeSchedulerConfiguration)
-
-
-LeaderElectionConfiguration defines the configuration of leader election
-clients for components that can run with leader election enabled.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>leaderElect</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   leaderElect enables a leader election client to gain leadership
-before executing the main loop. Enable this when running replicated
-components for high availability.</td>
-</tr>
-    
-  
-<tr><td><code>leaseDuration</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   leaseDuration is the duration that non-leader candidates will wait
-after observing a leadership renewal until attempting to acquire
-leadership of a led but unrenewed leader slot. This is effectively the
-maximum duration that a leader can be stopped before it is replaced
-by another candidate. This is only applicable if leader election is
-enabled.</td>
-</tr>
-    
-  
-<tr><td><code>renewDeadline</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   renewDeadline is the interval between attempts by the acting master to
-renew a leadership slot before it stops leading. This must be less
-than or equal to the lease duration. This is only applicable if leader
-election is enabled.</td>
-</tr>
-    
-  
-<tr><td><code>retryPeriod</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   retryPeriod is the duration the clients should wait between attempting
-acquisition and renewal of a leadership. This is only applicable if
-leader election is enabled.</td>
-</tr>
-    
-  
-<tr><td><code>resourceLock</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   resourceLock indicates the resource object type that will be used to lock
-during leader election cycles.</td>
-</tr>
-    
-  
-<tr><td><code>resourceName</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   resourceName indicates the name of resource object that will be used to lock
-during leader election cycles.</td>
-</tr>
-    
-  
-<tr><td><code>resourceNamespace</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   resourceName indicates the namespace of resource object that will be used to lock
-during leader election cycles.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-
-## `LoggingConfiguration`     {#LoggingConfiguration}
-    
-
-
-
-**Appears in:**
-
-- [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
-
-
-LoggingConfiguration contains logging options
-Refer [Logs Options](https://github.com/kubernetes/component-base/blob/master/logs/options.go) for more information.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>format</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Format Flag specifies the structure of log messages.
-default value of format is `text`</td>
-</tr>
-    
-  
-<tr><td><code>sanitization</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   [Experimental] When enabled prevents logging of fields tagged as sensitive (passwords, keys, tokens).
-Runtime log sanitization may introduce significant computation overhead and therefore should not be enabled in production.`)</td>
-</tr>
-    
-  
-</tbody>
-</table>
-  
-    
-
-
-## `DefaultPreemptionArgs`     {#kubescheduler-config-k8s-io-v1beta1-DefaultPreemptionArgs}
-    
-
-
-
-
-DefaultPreemptionArgs holds arguments used to configure the
-DefaultPreemption plugin.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>DefaultPreemptionArgs</code></td></tr>
-    
-
-  
-  
-<tr><td><code>minCandidateNodesPercentage</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   MinCandidateNodesPercentage is the minimum number of candidates to
-shortlist when dry running preemption as a percentage of number of nodes.
-Must be in the range [0, 100]. Defaults to 10% of the cluster size if
-unspecified.</td>
-</tr>
-    
-  
-<tr><td><code>minCandidateNodesAbsolute</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   MinCandidateNodesAbsolute is the absolute minimum number of candidates to
-shortlist. The likely number of candidates enumerated for dry running
-preemption is given by the formula:
-numCandidates = max(numNodes &lowast; minCandidateNodesPercentage, minCandidateNodesAbsolute)
-We say "likely" because there are other factors such as PDB violations
-that play a role in the number of candidates shortlisted. Must be at least
-0 nodes. Defaults to 100 nodes if unspecified.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `InterPodAffinityArgs`     {#kubescheduler-config-k8s-io-v1beta1-InterPodAffinityArgs}
-    
-
-
-
-
-InterPodAffinityArgs holds arguments used to configure the InterPodAffinity plugin.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>InterPodAffinityArgs</code></td></tr>
-    
-
-  
-  
-<tr><td><code>hardPodAffinityWeight</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   HardPodAffinityWeight is the scoring weight for existing pods with a
-matching hard affinity to the incoming pod.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `KubeSchedulerConfiguration`     {#kubescheduler-config-k8s-io-v1beta1-KubeSchedulerConfiguration}
-    
-
-
-
-
-KubeSchedulerConfiguration configures a scheduler
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>KubeSchedulerConfiguration</code></td></tr>
-    
-
-  
-  
-<tr><td><code>parallelism</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   Parallelism defines the amount of parallelism in algorithms for scheduling a Pods. Must be greater than 0. Defaults to 16</td>
-</tr>
-    
-  
-<tr><td><code>leaderElection</code> <B>[Required]</B><br/>
-<a href="#LeaderElectionConfiguration"><code>LeaderElectionConfiguration</code></a>
-</td>
-<td>
-   LeaderElection defines the configuration of leader election client.</td>
-</tr>
-    
-  
-<tr><td><code>clientConnection</code> <B>[Required]</B><br/>
-<a href="#ClientConnectionConfiguration"><code>ClientConnectionConfiguration</code></a>
-</td>
-<td>
-   ClientConnection specifies the kubeconfig file and client connection
-settings for the proxy server to use when communicating with the apiserver.</td>
-</tr>
-    
-  
-<tr><td><code>healthzBindAddress</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   HealthzBindAddress is the IP address and port for the health check server to serve on,
-defaulting to 0.0.0.0:10251</td>
-</tr>
-    
-  
-<tr><td><code>metricsBindAddress</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   MetricsBindAddress is the IP address and port for the metrics server to
-serve on, defaulting to 0.0.0.0:10251.</td>
-</tr>
-    
-  
-<tr><td><code>DebuggingConfiguration</code> <B>[Required]</B><br/>
-<a href="#DebuggingConfiguration"><code>DebuggingConfiguration</code></a>
-</td>
-<td>(Members of <code>DebuggingConfiguration</code> are embedded into this type.)
-   DebuggingConfiguration holds configuration for Debugging related features
-TODO: We might wanna make this a substruct like Debugging componentbaseconfigv1alpha1.DebuggingConfiguration</td>
-</tr>
-    
-  
-<tr><td><code>percentageOfNodesToScore</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   PercentageOfNodesToScore is the percentage of all nodes that once found feasible
-for running a pod, the scheduler stops its search for more feasible nodes in
-the cluster. This helps improve scheduler's performance. Scheduler always tries to find
-at least "minFeasibleNodesToFind" feasible nodes no matter what the value of this flag is.
-Example: if the cluster size is 500 nodes and the value of this flag is 30,
-then scheduler stops finding further feasible nodes once it finds 150 feasible ones.
-When the value is 0, default percentage (5%--50% based on the size of the cluster) of the
-nodes will be scored.</td>
-</tr>
-    
-  
-<tr><td><code>podInitialBackoffSeconds</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   PodInitialBackoffSeconds is the initial backoff for unschedulable pods.
-If specified, it must be greater than 0. If this value is null, the default value (1s)
-will be used.</td>
-</tr>
-    
-  
-<tr><td><code>podMaxBackoffSeconds</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   PodMaxBackoffSeconds is the max backoff for unschedulable pods.
-If specified, it must be greater than podInitialBackoffSeconds. If this value is null,
-the default value (10s) will be used.</td>
-</tr>
-    
-  
-<tr><td><code>profiles</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-KubeSchedulerProfile"><code>[]KubeSchedulerProfile</code></a>
-</td>
-<td>
-   Profiles are scheduling profiles that kube-scheduler supports. Pods can
-choose to be scheduled under a particular profile by setting its associated
-scheduler name. Pods that don't specify any scheduler name are scheduled
-with the "default-scheduler" profile, if present here.</td>
-</tr>
-    
-  
-<tr><td><code>extenders</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-Extender"><code>[]Extender</code></a>
-</td>
-<td>
-   Extenders are the list of scheduler extenders, each holding the values of how to communicate
-with the extender. These extenders are shared by all scheduler profiles.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `NodeAffinityArgs`     {#kubescheduler-config-k8s-io-v1beta1-NodeAffinityArgs}
-    
-
-
-
-
-NodeAffinityArgs holds arguments to configure the NodeAffinity plugin.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>NodeAffinityArgs</code></td></tr>
-    
-
-  
-  
-<tr><td><code>addedAffinity</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.20/#nodeaffinity-v1-core"><code>core/v1.NodeAffinity</code></a>
-</td>
-<td>
-   AddedAffinity is applied to all Pods additionally to the NodeAffinity
-specified in the PodSpec. That is, Nodes need to satisfy AddedAffinity
-AND .spec.NodeAffinity. AddedAffinity is empty by default (all Nodes
-match).
-When AddedAffinity is used, some Pods with affinity requirements that match
-a specific Node (such as Daemonset Pods) might remain unschedulable.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `NodeLabelArgs`     {#kubescheduler-config-k8s-io-v1beta1-NodeLabelArgs}
-    
-
-
-
-
-NodeLabelArgs holds arguments used to configure the NodeLabel plugin.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>NodeLabelArgs</code></td></tr>
-    
-
-  
-  
-<tr><td><code>presentLabels</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   PresentLabels should be present for the node to be considered a fit for hosting the pod</td>
-</tr>
-    
-  
-<tr><td><code>absentLabels</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   AbsentLabels should be absent for the node to be considered a fit for hosting the pod</td>
-</tr>
-    
-  
-<tr><td><code>presentLabelsPreference</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   Nodes that have labels in the list will get a higher score.</td>
-</tr>
-    
-  
-<tr><td><code>absentLabelsPreference</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   Nodes that don't have labels in the list will get a higher score.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `NodeResourcesFitArgs`     {#kubescheduler-config-k8s-io-v1beta1-NodeResourcesFitArgs}
-    
-
-
-
-
-NodeResourcesFitArgs holds arguments used to configure the NodeResourcesFit plugin.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>NodeResourcesFitArgs</code></td></tr>
-    
-
-  
-  
-<tr><td><code>ignoredResources</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   IgnoredResources is the list of resources that NodeResources fit filter
-should ignore.</td>
-</tr>
-    
-  
-<tr><td><code>ignoredResourceGroups</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   IgnoredResourceGroups defines the list of resource groups that NodeResources fit filter should ignore.
-e.g. if group is ["example.com"], it will ignore all resource names that begin
-with "example.com", such as "example.com/aaa" and "example.com/bbb".
-A resource group name can't contain '/'.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `NodeResourcesLeastAllocatedArgs`     {#kubescheduler-config-k8s-io-v1beta1-NodeResourcesLeastAllocatedArgs}
-    
-
-
-
-
-NodeResourcesLeastAllocatedArgs holds arguments used to configure NodeResourcesLeastAllocated plugin.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>NodeResourcesLeastAllocatedArgs</code></td></tr>
-    
-
-  
-  
-<tr><td><code>resources</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-ResourceSpec"><code>[]ResourceSpec</code></a>
-</td>
-<td>
-   Resources to be managed, if no resource is provided, default resource set with both
-the weight of "cpu" and "memory" set to "1" will be applied.
-Resource with "0" weight will not accountable for the final score.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `NodeResourcesMostAllocatedArgs`     {#kubescheduler-config-k8s-io-v1beta1-NodeResourcesMostAllocatedArgs}
-    
-
-
-
-
-NodeResourcesMostAllocatedArgs holds arguments used to configure NodeResourcesMostAllocated plugin.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>NodeResourcesMostAllocatedArgs</code></td></tr>
-    
-
-  
-  
-<tr><td><code>resources</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-ResourceSpec"><code>[]ResourceSpec</code></a>
-</td>
-<td>
-   Resources to be managed, if no resource is provided, default resource set with both
-the weight of "cpu" and "memory" set to "1" will be applied.
-Resource with "0" weight will not accountable for the final score.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PodTopologySpreadArgs`     {#kubescheduler-config-k8s-io-v1beta1-PodTopologySpreadArgs}
-    
-
-
-
-
-PodTopologySpreadArgs holds arguments used to configure the PodTopologySpread plugin.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>PodTopologySpreadArgs</code></td></tr>
-    
-
-  
-  
-<tr><td><code>defaultConstraints</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.20/#topologyspreadconstraint-v1-core"><code>[]core/v1.TopologySpreadConstraint</code></a>
-</td>
-<td>
-   DefaultConstraints defines topology spread constraints to be applied to
-Pods that don't define any in `pod.spec.topologySpreadConstraints`.
-`.defaultConstraints[&lowast;].labelSelectors` must be empty, as they are
-deduced from the Pod's membership to Services, ReplicationControllers,
-ReplicaSets or StatefulSets.
-When not empty, .defaultingType must be "List".</td>
-</tr>
-    
-  
-<tr><td><code>defaultingType</code><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PodTopologySpreadConstraintsDefaulting"><code>PodTopologySpreadConstraintsDefaulting</code></a>
-</td>
-<td>
-   DefaultingType determines how .defaultConstraints are deduced. Can be one
-of "System" or "List".
-
-- "System": Use kubernetes defined constraints that spread Pods among
-  Nodes and Zones.
-- "List": Use constraints defined in .defaultConstraints.
-
-Defaults to "List" if feature gate DefaultPodTopologySpread is disabled
-and to "System" if enabled.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `RequestedToCapacityRatioArgs`     {#kubescheduler-config-k8s-io-v1beta1-RequestedToCapacityRatioArgs}
-    
-
-
-
-
-RequestedToCapacityRatioArgs holds arguments used to configure RequestedToCapacityRatio plugin.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>RequestedToCapacityRatioArgs</code></td></tr>
-    
-
-  
-  
-<tr><td><code>shape</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-UtilizationShapePoint"><code>[]UtilizationShapePoint</code></a>
-</td>
-<td>
-   Points defining priority function shape</td>
-</tr>
-    
-  
-<tr><td><code>resources</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-ResourceSpec"><code>[]ResourceSpec</code></a>
-</td>
-<td>
-   Resources to be managed</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ServiceAffinityArgs`     {#kubescheduler-config-k8s-io-v1beta1-ServiceAffinityArgs}
-    
-
-
-
-
-ServiceAffinityArgs holds arguments used to configure the ServiceAffinity plugin.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>ServiceAffinityArgs</code></td></tr>
-    
-
-  
-  
-<tr><td><code>affinityLabels</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   AffinityLabels are homogeneous for pods that are scheduled to a node.
-(i.e. it returns true IFF this pod can be added to this node such that all other pods in
-the same service are running on nodes with the exact same values for Labels).</td>
-</tr>
-    
-  
-<tr><td><code>antiAffinityLabelsPreference</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   AntiAffinityLabelsPreference are the labels to consider for service anti affinity scoring.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `VolumeBindingArgs`     {#kubescheduler-config-k8s-io-v1beta1-VolumeBindingArgs}
-    
-
-
-
-
-VolumeBindingArgs holds arguments used to configure the VolumeBinding plugin.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>VolumeBindingArgs</code></td></tr>
-    
-
-  
-  
-<tr><td><code>bindTimeoutSeconds</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   BindTimeoutSeconds is the timeout in seconds in volume binding operation.
-Value must be non-negative integer. The value zero indicates no waiting.
-If this value is nil, the default value (600) will be used.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `Extender`     {#kubescheduler-config-k8s-io-v1beta1-Extender}
-    
-
-
-
-**Appears in:**
-
-- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta1-KubeSchedulerConfiguration)
-
-
-Extender holds the parameters used to communicate with the extender. If a verb is unspecified/empty,
-it is assumed that the extender chose not to provide that extension.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>urlPrefix</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   URLPrefix at which the extender is available</td>
-</tr>
-    
-  
-<tr><td><code>filterVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the filter call, empty if not supported. This verb is appended to the URLPrefix when issuing the filter call to extender.</td>
-</tr>
-    
-  
-<tr><td><code>preemptVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the preempt call, empty if not supported. This verb is appended to the URLPrefix when issuing the preempt call to extender.</td>
-</tr>
-    
-  
-<tr><td><code>prioritizeVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the prioritize call, empty if not supported. This verb is appended to the URLPrefix when issuing the prioritize call to extender.</td>
-</tr>
-    
-  
-<tr><td><code>weight</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   The numeric multiplier for the node scores that the prioritize call generates.
-The weight should be a positive integer</td>
-</tr>
-    
-  
-<tr><td><code>bindVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the bind call, empty if not supported. This verb is appended to the URLPrefix when issuing the bind call to extender.
-If this method is implemented by the extender, it is the extender's responsibility to bind the pod to apiserver. Only one extender
-can implement this function.</td>
-</tr>
-    
-  
-<tr><td><code>enableHTTPS</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   EnableHTTPS specifies whether https should be used to communicate with the extender</td>
-</tr>
-    
-  
-<tr><td><code>tlsConfig</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ExtenderTLSConfig"><code>ExtenderTLSConfig</code></a>
-</td>
-<td>
-   TLSConfig specifies the transport layer security config</td>
-</tr>
-    
-  
-<tr><td><code>httpTimeout</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   HTTPTimeout specifies the timeout duration for a call to the extender. Filter timeout fails the scheduling of the pod. Prioritize
-timeout is ignored, k8s/other extenders priorities are used to select the node.</td>
-</tr>
-    
-  
-<tr><td><code>nodeCacheCapable</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   NodeCacheCapable specifies that the extender is capable of caching node information,
-so the scheduler should only send minimal information about the eligible nodes
-assuming that the extender already cached full details of all nodes in the cluster</td>
-</tr>
-    
-  
-<tr><td><code>managedResources</code><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ExtenderManagedResource"><code>[]ExtenderManagedResource</code></a>
-</td>
-<td>
-   ManagedResources is a list of extended resources that are managed by
-this extender.
-- A pod will be sent to the extender on the Filter, Prioritize and Bind
-  (if the extender is the binder) phases iff the pod requests at least
-  one of the extended resources in this list. If empty or unspecified,
-  all pods will be sent to this extender.
-- If IgnoredByScheduler is set to true for a resource, kube-scheduler
-  will skip checking the resource in predicates.</td>
-</tr>
-    
-  
-<tr><td><code>ignorable</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   Ignorable specifies if the extender is ignorable, i.e. scheduling should not
-fail when the extender returns an error or is not reachable.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `KubeSchedulerProfile`     {#kubescheduler-config-k8s-io-v1beta1-KubeSchedulerProfile}
-    
-
-
-
-**Appears in:**
-
-- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta1-KubeSchedulerConfiguration)
-
-
-KubeSchedulerProfile is a scheduling profile.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>schedulerName</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   SchedulerName is the name of the scheduler associated to this profile.
-If SchedulerName matches with the pod's "spec.schedulerName", then the pod
-is scheduled with this profile.</td>
-</tr>
-    
-  
-<tr><td><code>plugins</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-Plugins"><code>Plugins</code></a>
-</td>
-<td>
-   Plugins specify the set of plugins that should be enabled or disabled.
-Enabled plugins are the ones that should be enabled in addition to the
-default plugins. Disabled plugins are any of the default plugins that
-should be disabled.
-When no enabled or disabled plugin is specified for an extension point,
-default plugins for that extension point will be used if there is any.
-If a QueueSort plugin is specified, the same QueueSort Plugin and
-PluginConfig must be specified for all profiles.</td>
-</tr>
-    
-  
-<tr><td><code>pluginConfig</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginConfig"><code>[]PluginConfig</code></a>
-</td>
-<td>
-   PluginConfig is an optional set of custom plugin arguments for each plugin.
-Omitting config args for a plugin is equivalent to using the default config
-for that plugin.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `Plugin`     {#kubescheduler-config-k8s-io-v1beta1-Plugin}
-    
-
-
-
-**Appears in:**
-
-- [PluginSet](#kubescheduler-config-k8s-io-v1beta1-PluginSet)
-
-
-Plugin specifies a plugin name and its weight when applicable. Weight is used only for Score plugins.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Name defines the name of plugin</td>
-</tr>
-    
-  
-<tr><td><code>weight</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   Weight defines the weight of plugin, only used for Score plugins.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PluginConfig`     {#kubescheduler-config-k8s-io-v1beta1-PluginConfig}
-    
-
-
-
-**Appears in:**
-
-- [KubeSchedulerProfile](#kubescheduler-config-k8s-io-v1beta1-KubeSchedulerProfile)
-
-
-PluginConfig specifies arguments that should be passed to a plugin at the time of initialization.
-A plugin that is invoked at multiple extension points is initialized once. Args can have arbitrary structure.
-It is up to the plugin to process these Args.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Name defines the name of plugin being configured</td>
-</tr>
-    
-  
-<tr><td><code>args</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/runtime/#RawExtension"><code>k8s.io/apimachinery/pkg/runtime.RawExtension</code></a>
-</td>
-<td>
-   Args defines the arguments passed to the plugins at the time of initialization. Args can have arbitrary structure.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PluginSet`     {#kubescheduler-config-k8s-io-v1beta1-PluginSet}
-    
-
-
-
-**Appears in:**
-
-- [Plugins](#kubescheduler-config-k8s-io-v1beta1-Plugins)
-
-
-PluginSet specifies enabled and disabled plugins for an extension point.
-If an array is empty, missing, or nil, default plugins at that extension point will be used.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>enabled</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-Plugin"><code>[]Plugin</code></a>
-</td>
-<td>
-   Enabled specifies plugins that should be enabled in addition to default plugins.
-These are called after default plugins and in the same order specified here.</td>
-</tr>
-    
-  
-<tr><td><code>disabled</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-Plugin"><code>[]Plugin</code></a>
-</td>
-<td>
-   Disabled specifies default plugins that should be disabled.
-When all default plugins need to be disabled, an array containing only one "&lowast;" should be provided.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `Plugins`     {#kubescheduler-config-k8s-io-v1beta1-Plugins}
-    
-
-
-
-**Appears in:**
-
-- [KubeSchedulerProfile](#kubescheduler-config-k8s-io-v1beta1-KubeSchedulerProfile)
-
-
-Plugins include multiple extension points. When specified, the list of plugins for
-a particular extension point are the only ones enabled. If an extension point is
-omitted from the config, then the default set of plugins is used for that extension point.
-Enabled plugins are called in the order specified here, after default plugins. If they need to
-be invoked before default plugins, default plugins must be disabled and re-enabled here in desired order.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>queueSort</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginSet"><code>PluginSet</code></a>
-</td>
-<td>
-   QueueSort is a list of plugins that should be invoked when sorting pods in the scheduling queue.</td>
-</tr>
-    
-  
-<tr><td><code>preFilter</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginSet"><code>PluginSet</code></a>
-</td>
-<td>
-   PreFilter is a list of plugins that should be invoked at "PreFilter" extension point of the scheduling framework.</td>
-</tr>
-    
-  
-<tr><td><code>filter</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginSet"><code>PluginSet</code></a>
-</td>
-<td>
-   Filter is a list of plugins that should be invoked when filtering out nodes that cannot run the Pod.</td>
-</tr>
-    
-  
-<tr><td><code>postFilter</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginSet"><code>PluginSet</code></a>
-</td>
-<td>
-   PostFilter is a list of plugins that are invoked after filtering phase, no matter whether filtering succeeds or not.</td>
-</tr>
-    
-  
-<tr><td><code>preScore</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginSet"><code>PluginSet</code></a>
-</td>
-<td>
-   PreScore is a list of plugins that are invoked before scoring.</td>
-</tr>
-    
-  
-<tr><td><code>score</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginSet"><code>PluginSet</code></a>
-</td>
-<td>
-   Score is a list of plugins that should be invoked when ranking nodes that have passed the filtering phase.</td>
-</tr>
-    
-  
-<tr><td><code>reserve</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginSet"><code>PluginSet</code></a>
-</td>
-<td>
-   Reserve is a list of plugins invoked when reserving/unreserving resources
-after a node is assigned to run the pod.</td>
-</tr>
-    
-  
-<tr><td><code>permit</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginSet"><code>PluginSet</code></a>
-</td>
-<td>
-   Permit is a list of plugins that control binding of a Pod. These plugins can prevent or delay binding of a Pod.</td>
-</tr>
-    
-  
-<tr><td><code>preBind</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginSet"><code>PluginSet</code></a>
-</td>
-<td>
-   PreBind is a list of plugins that should be invoked before a pod is bound.</td>
-</tr>
-    
-  
-<tr><td><code>bind</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginSet"><code>PluginSet</code></a>
-</td>
-<td>
-   Bind is a list of plugins that should be invoked at "Bind" extension point of the scheduling framework.
-The scheduler call these plugins in order. Scheduler skips the rest of these plugins as soon as one returns success.</td>
-</tr>
-    
-  
-<tr><td><code>postBind</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginSet"><code>PluginSet</code></a>
-</td>
-<td>
-   PostBind is a list of plugins that should be invoked after a pod is successfully bound.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PodTopologySpreadConstraintsDefaulting`     {#kubescheduler-config-k8s-io-v1beta1-PodTopologySpreadConstraintsDefaulting}
-    
-(Alias of `string`)
-
-
-**Appears in:**
-
-- [PodTopologySpreadArgs](#kubescheduler-config-k8s-io-v1beta1-PodTopologySpreadArgs)
-
-
-PodTopologySpreadConstraintsDefaulting defines how to set default constraints
-for the PodTopologySpread plugin.
-
-
-    
-
-
-## `ResourceSpec`     {#kubescheduler-config-k8s-io-v1beta1-ResourceSpec}
-    
-
-
-
-**Appears in:**
-
-- [NodeResourcesLeastAllocatedArgs](#kubescheduler-config-k8s-io-v1beta1-NodeResourcesLeastAllocatedArgs)
-
-- [NodeResourcesMostAllocatedArgs](#kubescheduler-config-k8s-io-v1beta1-NodeResourcesMostAllocatedArgs)
-
-- [RequestedToCapacityRatioArgs](#kubescheduler-config-k8s-io-v1beta1-RequestedToCapacityRatioArgs)
-
-
-ResourceSpec represents single resource and weight for bin packing of priority RequestedToCapacityRatioArguments.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Name of the resource to be managed by RequestedToCapacityRatio function.</td>
-</tr>
-    
-  
-<tr><td><code>weight</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   Weight of the resource.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `UtilizationShapePoint`     {#kubescheduler-config-k8s-io-v1beta1-UtilizationShapePoint}
-    
-
-
-
-**Appears in:**
-
-- [RequestedToCapacityRatioArgs](#kubescheduler-config-k8s-io-v1beta1-RequestedToCapacityRatioArgs)
-
-
-UtilizationShapePoint represents single point of priority function shape.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>utilization</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   Utilization (x axis). Valid values are 0 to 100. Fully utilized node maps to 100.</td>
-</tr>
-    
-  
-<tr><td><code>score</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   Score assigned to given utilization (y axis). Valid values are 0 to 10.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-  
diff --git a/content/en/docs/reference/config-api/kube-scheduler-config.v1beta2.md b/content/en/docs/reference/config-api/kube-scheduler-config.v1beta2.md
index 1a28c03c88..9025c78dcb 100644
--- a/content/en/docs/reference/config-api/kube-scheduler-config.v1beta2.md
+++ b/content/en/docs/reference/config-api/kube-scheduler-config.v1beta2.md
@@ -17,256 +17,334 @@ auto_generated: true
 - [NodeResourcesFitArgs](#kubescheduler-config-k8s-io-v1beta2-NodeResourcesFitArgs)
 - [PodTopologySpreadArgs](#kubescheduler-config-k8s-io-v1beta2-PodTopologySpreadArgs)
 - [VolumeBindingArgs](#kubescheduler-config-k8s-io-v1beta2-VolumeBindingArgs)
-- [Policy](#kubescheduler-config-k8s-io-v1-Policy)
   
     
 
 ## `ClientConnectionConfiguration`     {#ClientConnectionConfiguration}
     
 
-
-
 **Appears in:**
 
 - [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
 
 
-ClientConnectionConfiguration contains details for constructing a client.
+<p>ClientConnectionConfiguration contains details for constructing a client.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>kubeconfig</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   kubeconfig is the path to a KubeConfig file.</td>
+   <p>kubeconfig is the path to a KubeConfig file.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>acceptContentTypes</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   acceptContentTypes defines the Accept header sent by clients when connecting to a server, overriding the
+   <p>acceptContentTypes defines the Accept header sent by clients when connecting to a server, overriding the
 default value of 'application/json'. This field will control all connections to the server used by a particular
-client.</td>
+client.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>contentType</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   contentType is the content type used when sending data to the server from this client.</td>
+   <p>contentType is the content type used when sending data to the server from this client.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>qps</code> <B>[Required]</B><br/>
 <code>float32</code>
 </td>
 <td>
-   qps controls the number of queries per second allowed for this connection.</td>
+   <p>qps controls the number of queries per second allowed for this connection.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>burst</code> <B>[Required]</B><br/>
 <code>int32</code>
 </td>
 <td>
-   burst allows extra queries to accumulate when a client is exceeding its rate.</td>
+   <p>burst allows extra queries to accumulate when a client is exceeding its rate.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
 
 ## `DebuggingConfiguration`     {#DebuggingConfiguration}
     
 
-
-
 **Appears in:**
 
 - [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
 
 
-DebuggingConfiguration holds configuration for Debugging related features.
+<p>DebuggingConfiguration holds configuration for Debugging related features.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>enableProfiling</code> <B>[Required]</B><br/>
 <code>bool</code>
 </td>
 <td>
-   enableProfiling enables profiling via web interface host:port/debug/pprof/</td>
+   <p>enableProfiling enables profiling via web interface host:port/debug/pprof/</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>enableContentionProfiling</code> <B>[Required]</B><br/>
 <code>bool</code>
 </td>
 <td>
-   enableContentionProfiling enables lock contention profiling, if
-enableProfiling is true.</td>
+   <p>enableContentionProfiling enables lock contention profiling, if
+enableProfiling is true.</p>
+</td>
 </tr>
+</tbody>
+</table>
+
+## `FormatOptions`     {#FormatOptions}
+    
+
+**Appears in:**
+
+- [LoggingConfiguration](#LoggingConfiguration)
+
+
+<p>FormatOptions contains options for the different logging formats.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
     
   
+<tr><td><code>json</code> <B>[Required]</B><br/>
+<a href="#JSONOptions"><code>JSONOptions</code></a>
+</td>
+<td>
+   <p>[Experimental] JSON contains options for logging format &quot;json&quot;.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `JSONOptions`     {#JSONOptions}
+    
+
+**Appears in:**
+
+- [FormatOptions](#FormatOptions)
+
+
+<p>JSONOptions contains options for logging format &quot;json&quot;.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>splitStream</code> <B>[Required]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>[Experimental] SplitStream redirects error messages to stderr while
+info messages go to stdout, with buffering. The default is to write
+both to stdout, without buffering.</p>
+</td>
+</tr>
+<tr><td><code>infoBufferSize</code> <B>[Required]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/api/resource#QuantityValue"><code>k8s.io/apimachinery/pkg/api/resource.QuantityValue</code></a>
+</td>
+<td>
+   <p>[Experimental] InfoBufferSize sets the size of the info stream when
+using split streams. The default is zero, which disables buffering.</p>
+</td>
+</tr>
 </tbody>
 </table>
 
 ## `LeaderElectionConfiguration`     {#LeaderElectionConfiguration}
     
 
-
-
 **Appears in:**
 
 - [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
 
 
-LeaderElectionConfiguration defines the configuration of leader election
-clients for components that can run with leader election enabled.
+<p>LeaderElectionConfiguration defines the configuration of leader election
+clients for components that can run with leader election enabled.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>leaderElect</code> <B>[Required]</B><br/>
 <code>bool</code>
 </td>
 <td>
-   leaderElect enables a leader election client to gain leadership
+   <p>leaderElect enables a leader election client to gain leadership
 before executing the main loop. Enable this when running replicated
-components for high availability.</td>
+components for high availability.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>leaseDuration</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   leaseDuration is the duration that non-leader candidates will wait
+   <p>leaseDuration is the duration that non-leader candidates will wait
 after observing a leadership renewal until attempting to acquire
 leadership of a led but unrenewed leader slot. This is effectively the
 maximum duration that a leader can be stopped before it is replaced
 by another candidate. This is only applicable if leader election is
-enabled.</td>
+enabled.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>renewDeadline</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   renewDeadline is the interval between attempts by the acting master to
+   <p>renewDeadline is the interval between attempts by the acting master to
 renew a leadership slot before it stops leading. This must be less
 than or equal to the lease duration. This is only applicable if leader
-election is enabled.</td>
+election is enabled.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>retryPeriod</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   retryPeriod is the duration the clients should wait between attempting
+   <p>retryPeriod is the duration the clients should wait between attempting
 acquisition and renewal of a leadership. This is only applicable if
-leader election is enabled.</td>
+leader election is enabled.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>resourceLock</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   resourceLock indicates the resource object type that will be used to lock
-during leader election cycles.</td>
+   <p>resourceLock indicates the resource object type that will be used to lock
+during leader election cycles.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>resourceName</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   resourceName indicates the name of resource object that will be used to lock
-during leader election cycles.</td>
+   <p>resourceName indicates the name of resource object that will be used to lock
+during leader election cycles.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>resourceNamespace</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   resourceName indicates the namespace of resource object that will be used to lock
-during leader election cycles.</td>
+   <p>resourceName indicates the namespace of resource object that will be used to lock
+during leader election cycles.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
 
 ## `LoggingConfiguration`     {#LoggingConfiguration}
     
 
-
-
 **Appears in:**
 
 - [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
 
 
-LoggingConfiguration contains logging options
-Refer [Logs Options](https://github.com/kubernetes/component-base/blob/master/logs/options.go) for more information.
+<p>LoggingConfiguration contains logging options
+Refer <a href="https://github.com/kubernetes/component-base/blob/master/logs/options.go">Logs Options</a> for more information.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>format</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   Format Flag specifies the structure of log messages.
-default value of format is `text`</td>
+   <p>Format Flag specifies the structure of log messages.
+default value of format is <code>text</code></p>
+</td>
 </tr>
-    
-  
-<tr><td><code>sanitization</code> <B>[Required]</B><br/>
-<code>bool</code>
+<tr><td><code>flushFrequency</code> <B>[Required]</B><br/>
+<a href="https://pkg.go.dev/time#Duration"><code>time.Duration</code></a>
 </td>
 <td>
-   [Experimental] When enabled prevents logging of fields tagged as sensitive (passwords, keys, tokens).
-Runtime log sanitization may introduce significant computation overhead and therefore should not be enabled in production.`)</td>
+   <p>Maximum number of nanoseconds (i.e. 1s = 1000000000) between log
+flushes.  Ignored if the selected logging backend writes log
+messages without buffering.</p>
+</td>
+</tr>
+<tr><td><code>verbosity</code> <B>[Required]</B><br/>
+<code>uint32</code>
+</td>
+<td>
+   <p>Verbosity is the threshold that determines which log messages are
+logged. Default is zero which logs only the most important
+messages. Higher values enable additional messages. Error messages
+are always logged.</p>
+</td>
+</tr>
+<tr><td><code>vmodule</code> <B>[Required]</B><br/>
+<a href="#VModuleConfiguration"><code>VModuleConfiguration</code></a>
+</td>
+<td>
+   <p>VModule overrides the verbosity threshold for individual files.
+Only supported for &quot;text&quot; log format.</p>
+</td>
+</tr>
+<tr><td><code>options</code> <B>[Required]</B><br/>
+<a href="#FormatOptions"><code>FormatOptions</code></a>
+</td>
+<td>
+   <p>[Experimental] Options holds additional parameters that are specific
+to the different logging formats. Only the options for the selected
+format get used, but all of them get validated.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
+
+## `VModuleConfiguration`     {#VModuleConfiguration}
+    
+(Alias of `[]k8s.io/component-base/config/v1alpha1.VModuleItem`)
+
+**Appears in:**
+
+- [LoggingConfiguration](#LoggingConfiguration)
+
+
+<p>VModuleConfiguration is a collection of individual file names or patterns
+and the corresponding verbosity threshold.</p>
+
+
+
   
     
 
-
 ## `DefaultPreemptionArgs`     {#kubescheduler-config-k8s-io-v1beta2-DefaultPreemptionArgs}
     
 
 
+<p>DefaultPreemptionArgs holds arguments used to configure the
+DefaultPreemption plugin.</p>
 
 
-DefaultPreemptionArgs holds arguments used to configure the
-DefaultPreemption plugin.
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -274,47 +352,40 @@ DefaultPreemption plugin.
 <tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta2</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>DefaultPreemptionArgs</code></td></tr>
     
-
-  
   
 <tr><td><code>minCandidateNodesPercentage</code> <B>[Required]</B><br/>
 <code>int32</code>
 </td>
 <td>
-   MinCandidateNodesPercentage is the minimum number of candidates to
+   <p>MinCandidateNodesPercentage is the minimum number of candidates to
 shortlist when dry running preemption as a percentage of number of nodes.
 Must be in the range [0, 100]. Defaults to 10% of the cluster size if
-unspecified.</td>
+unspecified.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>minCandidateNodesAbsolute</code> <B>[Required]</B><br/>
 <code>int32</code>
 </td>
 <td>
-   MinCandidateNodesAbsolute is the absolute minimum number of candidates to
+   <p>MinCandidateNodesAbsolute is the absolute minimum number of candidates to
 shortlist. The likely number of candidates enumerated for dry running
 preemption is given by the formula:
-numCandidates = max(numNodes &lowast; minCandidateNodesPercentage, minCandidateNodesAbsolute)
-We say "likely" because there are other factors such as PDB violations
+numCandidates = max(numNodes * minCandidateNodesPercentage, minCandidateNodesAbsolute)
+We say &quot;likely&quot; because there are other factors such as PDB violations
 that play a role in the number of candidates shortlisted. Must be at least
-0 nodes. Defaults to 100 nodes if unspecified.</td>
+0 nodes. Defaults to 100 nodes if unspecified.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `InterPodAffinityArgs`     {#kubescheduler-config-k8s-io-v1beta2-InterPodAffinityArgs}
     
 
 
+<p>InterPodAffinityArgs holds arguments used to configure the InterPodAffinity plugin.</p>
 
 
-InterPodAffinityArgs holds arguments used to configure the InterPodAffinity plugin.
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -322,31 +393,25 @@ InterPodAffinityArgs holds arguments used to configure the InterPodAffinity plug
 <tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta2</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>InterPodAffinityArgs</code></td></tr>
     
-
-  
   
 <tr><td><code>hardPodAffinityWeight</code> <B>[Required]</B><br/>
 <code>int32</code>
 </td>
 <td>
-   HardPodAffinityWeight is the scoring weight for existing pods with a
-matching hard affinity to the incoming pod.</td>
+   <p>HardPodAffinityWeight is the scoring weight for existing pods with a
+matching hard affinity to the incoming pod.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `KubeSchedulerConfiguration`     {#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration}
     
 
 
+<p>KubeSchedulerConfiguration configures a scheduler</p>
 
 
-KubeSchedulerConfiguration configures a scheduler
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -354,129 +419,113 @@ KubeSchedulerConfiguration configures a scheduler
 <tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta2</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>KubeSchedulerConfiguration</code></td></tr>
     
-
-  
   
 <tr><td><code>parallelism</code> <B>[Required]</B><br/>
 <code>int32</code>
 </td>
 <td>
-   Parallelism defines the amount of parallelism in algorithms for scheduling a Pods. Must be greater than 0. Defaults to 16</td>
+   <p>Parallelism defines the amount of parallelism in algorithms for scheduling a Pods. Must be greater than 0. Defaults to 16</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>leaderElection</code> <B>[Required]</B><br/>
 <a href="#LeaderElectionConfiguration"><code>LeaderElectionConfiguration</code></a>
 </td>
 <td>
-   LeaderElection defines the configuration of leader election client.</td>
+   <p>LeaderElection defines the configuration of leader election client.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>clientConnection</code> <B>[Required]</B><br/>
 <a href="#ClientConnectionConfiguration"><code>ClientConnectionConfiguration</code></a>
 </td>
 <td>
-   ClientConnection specifies the kubeconfig file and client connection
-settings for the proxy server to use when communicating with the apiserver.</td>
+   <p>ClientConnection specifies the kubeconfig file and client connection
+settings for the proxy server to use when communicating with the apiserver.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>healthzBindAddress</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   HealthzBindAddress is the IP address and port for the health check server to serve on,
-defaulting to 0.0.0.0:10251</td>
+   <p>Note: Both HealthzBindAddress and MetricsBindAddress fields are deprecated.
+Only empty address or port 0 is allowed. Anything else will fail validation.
+HealthzBindAddress is the IP address and port for the health check server to serve on.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>metricsBindAddress</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   MetricsBindAddress is the IP address and port for the metrics server to
-serve on, defaulting to 0.0.0.0:10251.</td>
+   <p>MetricsBindAddress is the IP address and port for the metrics server to serve on.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>DebuggingConfiguration</code> <B>[Required]</B><br/>
 <a href="#DebuggingConfiguration"><code>DebuggingConfiguration</code></a>
 </td>
 <td>(Members of <code>DebuggingConfiguration</code> are embedded into this type.)
-   DebuggingConfiguration holds configuration for Debugging related features
-TODO: We might wanna make this a substruct like Debugging componentbaseconfigv1alpha1.DebuggingConfiguration</td>
+   <p>DebuggingConfiguration holds configuration for Debugging related features
+TODO: We might wanna make this a substruct like Debugging componentbaseconfigv1alpha1.DebuggingConfiguration</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>percentageOfNodesToScore</code> <B>[Required]</B><br/>
 <code>int32</code>
 </td>
 <td>
-   PercentageOfNodesToScore is the percentage of all nodes that once found feasible
+   <p>PercentageOfNodesToScore is the percentage of all nodes that once found feasible
 for running a pod, the scheduler stops its search for more feasible nodes in
 the cluster. This helps improve scheduler's performance. Scheduler always tries to find
-at least "minFeasibleNodesToFind" feasible nodes no matter what the value of this flag is.
+at least &quot;minFeasibleNodesToFind&quot; feasible nodes no matter what the value of this flag is.
 Example: if the cluster size is 500 nodes and the value of this flag is 30,
 then scheduler stops finding further feasible nodes once it finds 150 feasible ones.
 When the value is 0, default percentage (5%--50% based on the size of the cluster) of the
-nodes will be scored.</td>
+nodes will be scored.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>podInitialBackoffSeconds</code> <B>[Required]</B><br/>
 <code>int64</code>
 </td>
 <td>
-   PodInitialBackoffSeconds is the initial backoff for unschedulable pods.
+   <p>PodInitialBackoffSeconds is the initial backoff for unschedulable pods.
 If specified, it must be greater than 0. If this value is null, the default value (1s)
-will be used.</td>
+will be used.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>podMaxBackoffSeconds</code> <B>[Required]</B><br/>
 <code>int64</code>
 </td>
 <td>
-   PodMaxBackoffSeconds is the max backoff for unschedulable pods.
+   <p>PodMaxBackoffSeconds is the max backoff for unschedulable pods.
 If specified, it must be greater than podInitialBackoffSeconds. If this value is null,
-the default value (10s) will be used.</td>
+the default value (10s) will be used.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>profiles</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerProfile"><code>[]KubeSchedulerProfile</code></a>
 </td>
 <td>
-   Profiles are scheduling profiles that kube-scheduler supports. Pods can
+   <p>Profiles are scheduling profiles that kube-scheduler supports. Pods can
 choose to be scheduled under a particular profile by setting its associated
 scheduler name. Pods that don't specify any scheduler name are scheduled
-with the "default-scheduler" profile, if present here.</td>
+with the &quot;default-scheduler&quot; profile, if present here.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>extenders</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-Extender"><code>[]Extender</code></a>
 </td>
 <td>
-   Extenders are the list of scheduler extenders, each holding the values of how to communicate
-with the extender. These extenders are shared by all scheduler profiles.</td>
+   <p>Extenders are the list of scheduler extenders, each holding the values of how to communicate
+with the extender. These extenders are shared by all scheduler profiles.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `NodeAffinityArgs`     {#kubescheduler-config-k8s-io-v1beta2-NodeAffinityArgs}
     
 
 
+<p>NodeAffinityArgs holds arguments to configure the NodeAffinity plugin.</p>
 
 
-NodeAffinityArgs holds arguments to configure the NodeAffinity plugin.
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -484,35 +533,29 @@ NodeAffinityArgs holds arguments to configure the NodeAffinity plugin.
 <tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta2</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>NodeAffinityArgs</code></td></tr>
     
-
-  
   
 <tr><td><code>addedAffinity</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#nodeaffinity-v1-core"><code>core/v1.NodeAffinity</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#nodeaffinity-v1-core"><code>core/v1.NodeAffinity</code></a>
 </td>
 <td>
-   AddedAffinity is applied to all Pods additionally to the NodeAffinity
+   <p>AddedAffinity is applied to all Pods additionally to the NodeAffinity
 specified in the PodSpec. That is, Nodes need to satisfy AddedAffinity
 AND .spec.NodeAffinity. AddedAffinity is empty by default (all Nodes
 match).
 When AddedAffinity is used, some Pods with affinity requirements that match
-a specific Node (such as Daemonset Pods) might remain unschedulable.</td>
+a specific Node (such as Daemonset Pods) might remain unschedulable.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `NodeResourcesBalancedAllocationArgs`     {#kubescheduler-config-k8s-io-v1beta2-NodeResourcesBalancedAllocationArgs}
     
 
 
+<p>NodeResourcesBalancedAllocationArgs holds arguments used to configure NodeResourcesBalancedAllocation plugin.</p>
 
 
-NodeResourcesBalancedAllocationArgs holds arguments used to configure NodeResourcesBalancedAllocation plugin.
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -520,30 +563,24 @@ NodeResourcesBalancedAllocationArgs holds arguments used to configure NodeResour
 <tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta2</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>NodeResourcesBalancedAllocationArgs</code></td></tr>
     
-
-  
   
 <tr><td><code>resources</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-ResourceSpec"><code>[]ResourceSpec</code></a>
 </td>
 <td>
-   Resources to be managed, the default is "cpu" and "memory" if not specified.</td>
+   <p>Resources to be managed, the default is &quot;cpu&quot; and &quot;memory&quot; if not specified.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `NodeResourcesFitArgs`     {#kubescheduler-config-k8s-io-v1beta2-NodeResourcesFitArgs}
     
 
 
+<p>NodeResourcesFitArgs holds arguments used to configure the NodeResourcesFit plugin.</p>
 
 
-NodeResourcesFitArgs holds arguments used to configure the NodeResourcesFit plugin.
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -551,51 +588,43 @@ NodeResourcesFitArgs holds arguments used to configure the NodeResourcesFit plug
 <tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta2</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>NodeResourcesFitArgs</code></td></tr>
     
-
-  
   
 <tr><td><code>ignoredResources</code> <B>[Required]</B><br/>
 <code>[]string</code>
 </td>
 <td>
-   IgnoredResources is the list of resources that NodeResources fit filter
-should ignore. This doesn't apply to scoring.</td>
+   <p>IgnoredResources is the list of resources that NodeResources fit filter
+should ignore. This doesn't apply to scoring.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>ignoredResourceGroups</code> <B>[Required]</B><br/>
 <code>[]string</code>
 </td>
 <td>
-   IgnoredResourceGroups defines the list of resource groups that NodeResources fit filter should ignore.
-e.g. if group is ["example.com"], it will ignore all resource names that begin
-with "example.com", such as "example.com/aaa" and "example.com/bbb".
-A resource group name can't contain '/'. This doesn't apply to scoring.</td>
+   <p>IgnoredResourceGroups defines the list of resource groups that NodeResources fit filter should ignore.
+e.g. if group is [&quot;example.com&quot;], it will ignore all resource names that begin
+with &quot;example.com&quot;, such as &quot;example.com/aaa&quot; and &quot;example.com/bbb&quot;.
+A resource group name can't contain '/'. This doesn't apply to scoring.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>scoringStrategy</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-ScoringStrategy"><code>ScoringStrategy</code></a>
 </td>
 <td>
-   ScoringStrategy selects the node resource scoring strategy.
-The default strategy is LeastAllocated with an equal "cpu" and "memory" weight.</td>
+   <p>ScoringStrategy selects the node resource scoring strategy.
+The default strategy is LeastAllocated with an equal &quot;cpu&quot; and &quot;memory&quot; weight.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `PodTopologySpreadArgs`     {#kubescheduler-config-k8s-io-v1beta2-PodTopologySpreadArgs}
     
 
 
+<p>PodTopologySpreadArgs holds arguments used to configure the PodTopologySpread plugin.</p>
 
 
-PodTopologySpreadArgs holds arguments used to configure the PodTopologySpread plugin.
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -603,51 +632,43 @@ PodTopologySpreadArgs holds arguments used to configure the PodTopologySpread pl
 <tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta2</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>PodTopologySpreadArgs</code></td></tr>
     
-
-  
   
 <tr><td><code>defaultConstraints</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#topologyspreadconstraint-v1-core"><code>[]core/v1.TopologySpreadConstraint</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#topologyspreadconstraint-v1-core"><code>[]core/v1.TopologySpreadConstraint</code></a>
 </td>
 <td>
-   DefaultConstraints defines topology spread constraints to be applied to
-Pods that don't define any in `pod.spec.topologySpreadConstraints`.
-`.defaultConstraints[&lowast;].labelSelectors` must be empty, as they are
+   <p>DefaultConstraints defines topology spread constraints to be applied to
+Pods that don't define any in <code>pod.spec.topologySpreadConstraints</code>.
+<code>.defaultConstraints[*].labelSelectors</code> must be empty, as they are
 deduced from the Pod's membership to Services, ReplicationControllers,
 ReplicaSets or StatefulSets.
-When not empty, .defaultingType must be "List".</td>
+When not empty, .defaultingType must be &quot;List&quot;.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>defaultingType</code><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-PodTopologySpreadConstraintsDefaulting"><code>PodTopologySpreadConstraintsDefaulting</code></a>
 </td>
 <td>
-   DefaultingType determines how .defaultConstraints are deduced. Can be one
-of "System" or "List".
-
-- "System": Use kubernetes defined constraints that spread Pods among
-  Nodes and Zones.
-- "List": Use constraints defined in .defaultConstraints.
-
-Defaults to "List" if feature gate DefaultPodTopologySpread is disabled
-and to "System" if enabled.</td>
+   <p>DefaultingType determines how .defaultConstraints are deduced. Can be one
+of &quot;System&quot; or &quot;List&quot;.</p>
+<ul>
+<li>&quot;System&quot;: Use kubernetes defined constraints that spread Pods among
+Nodes and Zones.</li>
+<li>&quot;List&quot;: Use constraints defined in .defaultConstraints.</li>
+</ul>
+<p>Defaults to &quot;System&quot;.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `VolumeBindingArgs`     {#kubescheduler-config-k8s-io-v1beta2-VolumeBindingArgs}
     
 
 
+<p>VolumeBindingArgs holds arguments used to configure the VolumeBinding plugin.</p>
 
 
-VolumeBindingArgs holds arguments used to configure the VolumeBinding plugin.
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -655,528 +676,583 @@ VolumeBindingArgs holds arguments used to configure the VolumeBinding plugin.
 <tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta2</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>VolumeBindingArgs</code></td></tr>
     
-
-  
   
 <tr><td><code>bindTimeoutSeconds</code> <B>[Required]</B><br/>
 <code>int64</code>
 </td>
 <td>
-   BindTimeoutSeconds is the timeout in seconds in volume binding operation.
+   <p>BindTimeoutSeconds is the timeout in seconds in volume binding operation.
 Value must be non-negative integer. The value zero indicates no waiting.
-If this value is nil, the default value (600) will be used.</td>
+If this value is nil, the default value (600) will be used.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>shape</code><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-UtilizationShapePoint"><code>[]UtilizationShapePoint</code></a>
 </td>
 <td>
-   Shape specifies the points defining the score function shape, which is
+   <p>Shape specifies the points defining the score function shape, which is
 used to score nodes based on the utilization of statically provisioned
 PVs. The utilization is calculated by dividing the total requested
 storage of the pod by the total capacity of feasible PVs on each node.
 Each point contains utilization (ranges from 0 to 100) and its
 associated score (ranges from 0 to 10). You can turn the priority by
 specifying different scores for different utilization numbers.
-The default shape points are:
-1) 0 for 0 utilization
-2) 10 for 100 utilization
-All points must be sorted in increasing order by utilization.</td>
+The default shape points are:</p>
+<ol>
+<li>0 for 0 utilization</li>
+<li>10 for 100 utilization
+All points must be sorted in increasing order by utilization.</li>
+</ol>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `Extender`     {#kubescheduler-config-k8s-io-v1beta2-Extender}
     
 
-
-
 **Appears in:**
 
 - [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
 
 
-Extender holds the parameters used to communicate with the extender. If a verb is unspecified/empty,
-it is assumed that the extender chose not to provide that extension.
+<p>Extender holds the parameters used to communicate with the extender. If a verb is unspecified/empty,
+it is assumed that the extender chose not to provide that extension.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>urlPrefix</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   URLPrefix at which the extender is available</td>
+   <p>URLPrefix at which the extender is available</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>filterVerb</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   Verb for the filter call, empty if not supported. This verb is appended to the URLPrefix when issuing the filter call to extender.</td>
+   <p>Verb for the filter call, empty if not supported. This verb is appended to the URLPrefix when issuing the filter call to extender.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>preemptVerb</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   Verb for the preempt call, empty if not supported. This verb is appended to the URLPrefix when issuing the preempt call to extender.</td>
+   <p>Verb for the preempt call, empty if not supported. This verb is appended to the URLPrefix when issuing the preempt call to extender.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>prioritizeVerb</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   Verb for the prioritize call, empty if not supported. This verb is appended to the URLPrefix when issuing the prioritize call to extender.</td>
+   <p>Verb for the prioritize call, empty if not supported. This verb is appended to the URLPrefix when issuing the prioritize call to extender.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>weight</code> <B>[Required]</B><br/>
 <code>int64</code>
 </td>
 <td>
-   The numeric multiplier for the node scores that the prioritize call generates.
-The weight should be a positive integer</td>
+   <p>The numeric multiplier for the node scores that the prioritize call generates.
+The weight should be a positive integer</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>bindVerb</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   Verb for the bind call, empty if not supported. This verb is appended to the URLPrefix when issuing the bind call to extender.
+   <p>Verb for the bind call, empty if not supported. This verb is appended to the URLPrefix when issuing the bind call to extender.
 If this method is implemented by the extender, it is the extender's responsibility to bind the pod to apiserver. Only one extender
-can implement this function.</td>
+can implement this function.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>enableHTTPS</code> <B>[Required]</B><br/>
 <code>bool</code>
 </td>
 <td>
-   EnableHTTPS specifies whether https should be used to communicate with the extender</td>
+   <p>EnableHTTPS specifies whether https should be used to communicate with the extender</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>tlsConfig</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ExtenderTLSConfig"><code>ExtenderTLSConfig</code></a>
+<a href="#kubescheduler-config-k8s-io-v1beta2-ExtenderTLSConfig"><code>ExtenderTLSConfig</code></a>
 </td>
 <td>
-   TLSConfig specifies the transport layer security config</td>
+   <p>TLSConfig specifies the transport layer security config</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>httpTimeout</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   HTTPTimeout specifies the timeout duration for a call to the extender. Filter timeout fails the scheduling of the pod. Prioritize
-timeout is ignored, k8s/other extenders priorities are used to select the node.</td>
+   <p>HTTPTimeout specifies the timeout duration for a call to the extender. Filter timeout fails the scheduling of the pod. Prioritize
+timeout is ignored, k8s/other extenders priorities are used to select the node.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>nodeCacheCapable</code> <B>[Required]</B><br/>
 <code>bool</code>
 </td>
 <td>
-   NodeCacheCapable specifies that the extender is capable of caching node information,
+   <p>NodeCacheCapable specifies that the extender is capable of caching node information,
 so the scheduler should only send minimal information about the eligible nodes
-assuming that the extender already cached full details of all nodes in the cluster</td>
+assuming that the extender already cached full details of all nodes in the cluster</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>managedResources</code><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ExtenderManagedResource"><code>[]ExtenderManagedResource</code></a>
+<a href="#kubescheduler-config-k8s-io-v1beta2-ExtenderManagedResource"><code>[]ExtenderManagedResource</code></a>
 </td>
 <td>
-   ManagedResources is a list of extended resources that are managed by
-this extender.
-- A pod will be sent to the extender on the Filter, Prioritize and Bind
-  (if the extender is the binder) phases iff the pod requests at least
-  one of the extended resources in this list. If empty or unspecified,
-  all pods will be sent to this extender.
-- If IgnoredByScheduler is set to true for a resource, kube-scheduler
-  will skip checking the resource in predicates.</td>
+   <p>ManagedResources is a list of extended resources that are managed by
+this extender.</p>
+<ul>
+<li>A pod will be sent to the extender on the Filter, Prioritize and Bind
+(if the extender is the binder) phases iff the pod requests at least
+one of the extended resources in this list. If empty or unspecified,
+all pods will be sent to this extender.</li>
+<li>If IgnoredByScheduler is set to true for a resource, kube-scheduler
+will skip checking the resource in predicates.</li>
+</ul>
+</td>
 </tr>
-    
-  
 <tr><td><code>ignorable</code> <B>[Required]</B><br/>
 <code>bool</code>
 </td>
 <td>
-   Ignorable specifies if the extender is ignorable, i.e. scheduling should not
-fail when the extender returns an error or is not reachable.</td>
+   <p>Ignorable specifies if the extender is ignorable, i.e. scheduling should not
+fail when the extender returns an error or is not reachable.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
+
+## `ExtenderManagedResource`     {#kubescheduler-config-k8s-io-v1beta2-ExtenderManagedResource}
     
 
+**Appears in:**
+
+- [Extender](#kubescheduler-config-k8s-io-v1beta2-Extender)
+
+
+<p>ExtenderManagedResource describes the arguments of extended resources
+managed by an extender.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>name</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Name is the extended resource name.</p>
+</td>
+</tr>
+<tr><td><code>ignoredByScheduler</code> <B>[Required]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>IgnoredByScheduler indicates whether kube-scheduler should ignore this
+resource when applying predicates.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ExtenderTLSConfig`     {#kubescheduler-config-k8s-io-v1beta2-ExtenderTLSConfig}
+    
+
+**Appears in:**
+
+- [Extender](#kubescheduler-config-k8s-io-v1beta2-Extender)
+
+
+<p>ExtenderTLSConfig contains settings to enable TLS with extender</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>insecure</code> <B>[Required]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>Server should be accessed without verifying the TLS certificate. For testing only.</p>
+</td>
+</tr>
+<tr><td><code>serverName</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>ServerName is passed to the server for SNI and is used in the client to check server
+certificates against. If ServerName is empty, the hostname used to contact the
+server is used.</p>
+</td>
+</tr>
+<tr><td><code>certFile</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Server requires TLS client certificate authentication</p>
+</td>
+</tr>
+<tr><td><code>keyFile</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Server requires TLS client certificate authentication</p>
+</td>
+</tr>
+<tr><td><code>caFile</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Trusted root certificates for server</p>
+</td>
+</tr>
+<tr><td><code>certData</code> <B>[Required]</B><br/>
+<code>[]byte</code>
+</td>
+<td>
+   <p>CertData holds PEM-encoded bytes (typically read from a client certificate file).
+CertData takes precedence over CertFile</p>
+</td>
+</tr>
+<tr><td><code>keyData</code> <B>[Required]</B><br/>
+<code>[]byte</code>
+</td>
+<td>
+   <p>KeyData holds PEM-encoded bytes (typically read from a client certificate key file).
+KeyData takes precedence over KeyFile</p>
+</td>
+</tr>
+<tr><td><code>caData</code> <B>[Required]</B><br/>
+<code>[]byte</code>
+</td>
+<td>
+   <p>CAData holds PEM-encoded bytes (typically read from a root certificates bundle).
+CAData takes precedence over CAFile</p>
+</td>
+</tr>
+</tbody>
+</table>
 
 ## `KubeSchedulerProfile`     {#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerProfile}
     
 
-
-
 **Appears in:**
 
 - [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
 
 
-KubeSchedulerProfile is a scheduling profile.
+<p>KubeSchedulerProfile is a scheduling profile.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>schedulerName</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   SchedulerName is the name of the scheduler associated to this profile.
-If SchedulerName matches with the pod's "spec.schedulerName", then the pod
-is scheduled with this profile.</td>
+   <p>SchedulerName is the name of the scheduler associated to this profile.
+If SchedulerName matches with the pod's &quot;spec.schedulerName&quot;, then the pod
+is scheduled with this profile.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>plugins</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-Plugins"><code>Plugins</code></a>
 </td>
 <td>
-   Plugins specify the set of plugins that should be enabled or disabled.
+   <p>Plugins specify the set of plugins that should be enabled or disabled.
 Enabled plugins are the ones that should be enabled in addition to the
 default plugins. Disabled plugins are any of the default plugins that
 should be disabled.
 When no enabled or disabled plugin is specified for an extension point,
 default plugins for that extension point will be used if there is any.
 If a QueueSort plugin is specified, the same QueueSort Plugin and
-PluginConfig must be specified for all profiles.</td>
+PluginConfig must be specified for all profiles.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>pluginConfig</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-PluginConfig"><code>[]PluginConfig</code></a>
 </td>
 <td>
-   PluginConfig is an optional set of custom plugin arguments for each plugin.
+   <p>PluginConfig is an optional set of custom plugin arguments for each plugin.
 Omitting config args for a plugin is equivalent to using the default config
-for that plugin.</td>
+for that plugin.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `Plugin`     {#kubescheduler-config-k8s-io-v1beta2-Plugin}
     
 
-
-
 **Appears in:**
 
 - [PluginSet](#kubescheduler-config-k8s-io-v1beta2-PluginSet)
 
 
-Plugin specifies a plugin name and its weight when applicable. Weight is used only for Score plugins.
+<p>Plugin specifies a plugin name and its weight when applicable. Weight is used only for Score plugins.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>name</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   Name defines the name of plugin</td>
+   <p>Name defines the name of plugin</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>weight</code> <B>[Required]</B><br/>
 <code>int32</code>
 </td>
 <td>
-   Weight defines the weight of plugin, only used for Score plugins.</td>
+   <p>Weight defines the weight of plugin, only used for Score plugins.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `PluginConfig`     {#kubescheduler-config-k8s-io-v1beta2-PluginConfig}
     
 
-
-
 **Appears in:**
 
 - [KubeSchedulerProfile](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerProfile)
 
 
-PluginConfig specifies arguments that should be passed to a plugin at the time of initialization.
+<p>PluginConfig specifies arguments that should be passed to a plugin at the time of initialization.
 A plugin that is invoked at multiple extension points is initialized once. Args can have arbitrary structure.
-It is up to the plugin to process these Args.
+It is up to the plugin to process these Args.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>name</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   Name defines the name of plugin being configured</td>
+   <p>Name defines the name of plugin being configured</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>args</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/runtime/#RawExtension"><code>k8s.io/apimachinery/pkg/runtime.RawExtension</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/runtime/#RawExtension"><code>k8s.io/apimachinery/pkg/runtime.RawExtension</code></a>
 </td>
 <td>
-   Args defines the arguments passed to the plugins at the time of initialization. Args can have arbitrary structure.</td>
+   <p>Args defines the arguments passed to the plugins at the time of initialization. Args can have arbitrary structure.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `PluginSet`     {#kubescheduler-config-k8s-io-v1beta2-PluginSet}
     
 
-
-
 **Appears in:**
 
 - [Plugins](#kubescheduler-config-k8s-io-v1beta2-Plugins)
 
 
-PluginSet specifies enabled and disabled plugins for an extension point.
-If an array is empty, missing, or nil, default plugins at that extension point will be used.
+<p>PluginSet specifies enabled and disabled plugins for an extension point.
+If an array is empty, missing, or nil, default plugins at that extension point will be used.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>enabled</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-Plugin"><code>[]Plugin</code></a>
 </td>
 <td>
-   Enabled specifies plugins that should be enabled in addition to default plugins.
+   <p>Enabled specifies plugins that should be enabled in addition to default plugins.
 If the default plugin is also configured in the scheduler config file, the weight of plugin will
 be overridden accordingly.
-These are called after default plugins and in the same order specified here.</td>
+These are called after default plugins and in the same order specified here.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>disabled</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-Plugin"><code>[]Plugin</code></a>
 </td>
 <td>
-   Disabled specifies default plugins that should be disabled.
-When all default plugins need to be disabled, an array containing only one "&lowast;" should be provided.</td>
+   <p>Disabled specifies default plugins that should be disabled.
+When all default plugins need to be disabled, an array containing only one &quot;*&quot; should be provided.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `Plugins`     {#kubescheduler-config-k8s-io-v1beta2-Plugins}
     
 
-
-
 **Appears in:**
 
 - [KubeSchedulerProfile](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerProfile)
 
 
-Plugins include multiple extension points. When specified, the list of plugins for
+<p>Plugins include multiple extension points. When specified, the list of plugins for
 a particular extension point are the only ones enabled. If an extension point is
 omitted from the config, then the default set of plugins is used for that extension point.
 Enabled plugins are called in the order specified here, after default plugins. If they need to
-be invoked before default plugins, default plugins must be disabled and re-enabled here in desired order.
+be invoked before default plugins, default plugins must be disabled and re-enabled here in desired order.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>queueSort</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
 </td>
 <td>
-   QueueSort is a list of plugins that should be invoked when sorting pods in the scheduling queue.</td>
+   <p>QueueSort is a list of plugins that should be invoked when sorting pods in the scheduling queue.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>preFilter</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
 </td>
 <td>
-   PreFilter is a list of plugins that should be invoked at "PreFilter" extension point of the scheduling framework.</td>
+   <p>PreFilter is a list of plugins that should be invoked at &quot;PreFilter&quot; extension point of the scheduling framework.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>filter</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
 </td>
 <td>
-   Filter is a list of plugins that should be invoked when filtering out nodes that cannot run the Pod.</td>
+   <p>Filter is a list of plugins that should be invoked when filtering out nodes that cannot run the Pod.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>postFilter</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
 </td>
 <td>
-   PostFilter is a list of plugins that are invoked after filtering phase, no matter whether filtering succeeds or not.</td>
+   <p>PostFilter is a list of plugins that are invoked after filtering phase, but only when no feasible nodes were found for the pod.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>preScore</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
 </td>
 <td>
-   PreScore is a list of plugins that are invoked before scoring.</td>
+   <p>PreScore is a list of plugins that are invoked before scoring.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>score</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
 </td>
 <td>
-   Score is a list of plugins that should be invoked when ranking nodes that have passed the filtering phase.</td>
+   <p>Score is a list of plugins that should be invoked when ranking nodes that have passed the filtering phase.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>reserve</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
 </td>
 <td>
-   Reserve is a list of plugins invoked when reserving/unreserving resources
-after a node is assigned to run the pod.</td>
+   <p>Reserve is a list of plugins invoked when reserving/unreserving resources
+after a node is assigned to run the pod.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>permit</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
 </td>
 <td>
-   Permit is a list of plugins that control binding of a Pod. These plugins can prevent or delay binding of a Pod.</td>
+   <p>Permit is a list of plugins that control binding of a Pod. These plugins can prevent or delay binding of a Pod.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>preBind</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
 </td>
 <td>
-   PreBind is a list of plugins that should be invoked before a pod is bound.</td>
+   <p>PreBind is a list of plugins that should be invoked before a pod is bound.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>bind</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
 </td>
 <td>
-   Bind is a list of plugins that should be invoked at "Bind" extension point of the scheduling framework.
-The scheduler call these plugins in order. Scheduler skips the rest of these plugins as soon as one returns success.</td>
+   <p>Bind is a list of plugins that should be invoked at &quot;Bind&quot; extension point of the scheduling framework.
+The scheduler call these plugins in order. Scheduler skips the rest of these plugins as soon as one returns success.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>postBind</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
 </td>
 <td>
-   PostBind is a list of plugins that should be invoked after a pod is successfully bound.</td>
+   <p>PostBind is a list of plugins that should be invoked after a pod is successfully bound.</p>
+</td>
+</tr>
+<tr><td><code>multiPoint</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <p>MultiPoint is a simplified config section to enable plugins for all valid extension points.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `PodTopologySpreadConstraintsDefaulting`     {#kubescheduler-config-k8s-io-v1beta2-PodTopologySpreadConstraintsDefaulting}
     
 (Alias of `string`)
 
-
 **Appears in:**
 
 - [PodTopologySpreadArgs](#kubescheduler-config-k8s-io-v1beta2-PodTopologySpreadArgs)
 
 
-PodTopologySpreadConstraintsDefaulting defines how to set default constraints
-for the PodTopologySpread plugin.
+<p>PodTopologySpreadConstraintsDefaulting defines how to set default constraints
+for the PodTopologySpread plugin.</p>
 
 
-    
 
 
 ## `RequestedToCapacityRatioParam`     {#kubescheduler-config-k8s-io-v1beta2-RequestedToCapacityRatioParam}
     
 
-
-
 **Appears in:**
 
 - [ScoringStrategy](#kubescheduler-config-k8s-io-v1beta2-ScoringStrategy)
 
 
-RequestedToCapacityRatioParam define RequestedToCapacityRatio parameters
+<p>RequestedToCapacityRatioParam define RequestedToCapacityRatio parameters</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>shape</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-UtilizationShapePoint"><code>[]UtilizationShapePoint</code></a>
 </td>
 <td>
-   Shape is a list of points defining the scoring function shape.</td>
+   <p>Shape is a list of points defining the scoring function shape.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `ResourceSpec`     {#kubescheduler-config-k8s-io-v1beta2-ResourceSpec}
     
 
-
-
 **Appears in:**
 
 - [NodeResourcesBalancedAllocationArgs](#kubescheduler-config-k8s-io-v1beta2-NodeResourcesBalancedAllocationArgs)
@@ -1184,106 +1260,91 @@ RequestedToCapacityRatioParam define RequestedToCapacityRatio parameters
 - [ScoringStrategy](#kubescheduler-config-k8s-io-v1beta2-ScoringStrategy)
 
 
-ResourceSpec represents a single resource.
+<p>ResourceSpec represents a single resource.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>name</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   Name of the resource.</td>
+   <p>Name of the resource.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>weight</code> <B>[Required]</B><br/>
 <code>int64</code>
 </td>
 <td>
-   Weight of the resource.</td>
+   <p>Weight of the resource.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `ScoringStrategy`     {#kubescheduler-config-k8s-io-v1beta2-ScoringStrategy}
     
 
-
-
 **Appears in:**
 
 - [NodeResourcesFitArgs](#kubescheduler-config-k8s-io-v1beta2-NodeResourcesFitArgs)
 
 
-ScoringStrategy define ScoringStrategyType for node resource plugin
+<p>ScoringStrategy define ScoringStrategyType for node resource plugin</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>type</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-ScoringStrategyType"><code>ScoringStrategyType</code></a>
 </td>
 <td>
-   Type selects which strategy to run.</td>
+   <p>Type selects which strategy to run.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>resources</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-ResourceSpec"><code>[]ResourceSpec</code></a>
 </td>
 <td>
-   Resources to consider when scoring.
-The default resource set includes "cpu" and "memory" with an equal weight.
+   <p>Resources to consider when scoring.
+The default resource set includes &quot;cpu&quot; and &quot;memory&quot; with an equal weight.
 Allowed weights go from 1 to 100.
-Weight defaults to 1 if not specified or explicitly set to 0.</td>
+Weight defaults to 1 if not specified or explicitly set to 0.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>requestedToCapacityRatio</code> <B>[Required]</B><br/>
 <a href="#kubescheduler-config-k8s-io-v1beta2-RequestedToCapacityRatioParam"><code>RequestedToCapacityRatioParam</code></a>
 </td>
 <td>
-   Arguments specific to RequestedToCapacityRatio strategy.</td>
+   <p>Arguments specific to RequestedToCapacityRatio strategy.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `ScoringStrategyType`     {#kubescheduler-config-k8s-io-v1beta2-ScoringStrategyType}
     
 (Alias of `string`)
 
-
 **Appears in:**
 
 - [ScoringStrategy](#kubescheduler-config-k8s-io-v1beta2-ScoringStrategy)
 
 
-ScoringStrategyType the type of scoring strategy used in NodeResourcesFit plugin.
+<p>ScoringStrategyType the type of scoring strategy used in NodeResourcesFit plugin.</p>
 
 
-    
 
 
 ## `UtilizationShapePoint`     {#kubescheduler-config-k8s-io-v1beta2-UtilizationShapePoint}
     
 
-
-
 **Appears in:**
 
 - [VolumeBindingArgs](#kubescheduler-config-k8s-io-v1beta2-VolumeBindingArgs)
@@ -1291,818 +1352,28 @@ ScoringStrategyType the type of scoring strategy used in NodeResourcesFit plugin
 - [RequestedToCapacityRatioParam](#kubescheduler-config-k8s-io-v1beta2-RequestedToCapacityRatioParam)
 
 
-UtilizationShapePoint represents single point of priority function shape.
+<p>UtilizationShapePoint represents single point of priority function shape.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>utilization</code> <B>[Required]</B><br/>
 <code>int32</code>
 </td>
 <td>
-   Utilization (x axis). Valid values are 0 to 100. Fully utilized node maps to 100.</td>
+   <p>Utilization (x axis). Valid values are 0 to 100. Fully utilized node maps to 100.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>score</code> <B>[Required]</B><br/>
 <code>int32</code>
 </td>
 <td>
-   Score assigned to given utilization (y axis). Valid values are 0 to 10.</td>
+   <p>Score assigned to given utilization (y axis). Valid values are 0 to 10.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-  
-  
-    
-
-
-## `Policy`     {#kubescheduler-config-k8s-io-v1-Policy}
-    
-
-
-
-
-Policy describes a struct for a policy resource used in api.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>Policy</code></td></tr>
-    
-
-  
-  
-<tr><td><code>predicates</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-PredicatePolicy"><code>[]PredicatePolicy</code></a>
-</td>
-<td>
-   Holds the information to configure the fit predicate functions</td>
-</tr>
-    
-  
-<tr><td><code>priorities</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-PriorityPolicy"><code>[]PriorityPolicy</code></a>
-</td>
-<td>
-   Holds the information to configure the priority functions</td>
-</tr>
-    
-  
-<tr><td><code>extenders</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-LegacyExtender"><code>[]LegacyExtender</code></a>
-</td>
-<td>
-   Holds the information to communicate with the extender(s)</td>
-</tr>
-    
-  
-<tr><td><code>hardPodAffinitySymmetricWeight</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   RequiredDuringScheduling affinity is not symmetric, but there is an implicit PreferredDuringScheduling affinity rule
-corresponding to every RequiredDuringScheduling affinity rule.
-HardPodAffinitySymmetricWeight represents the weight of implicit PreferredDuringScheduling affinity rule, in the range 1-100.</td>
-</tr>
-    
-  
-<tr><td><code>alwaysCheckAllPredicates</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   When AlwaysCheckAllPredicates is set to true, scheduler checks all
-the configured predicates even after one or more of them fails.
-When the flag is set to false, scheduler skips checking the rest
-of the predicates after it finds one predicate that failed.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ExtenderManagedResource`     {#kubescheduler-config-k8s-io-v1-ExtenderManagedResource}
-    
-
-
-
-**Appears in:**
-
-- [Extender](#kubescheduler-config-k8s-io-v1beta2-Extender)
-
-- [LegacyExtender](#kubescheduler-config-k8s-io-v1-LegacyExtender)
-
-
-ExtenderManagedResource describes the arguments of extended resources
-managed by an extender.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Name is the extended resource name.</td>
-</tr>
-    
-  
-<tr><td><code>ignoredByScheduler</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   IgnoredByScheduler indicates whether kube-scheduler should ignore this
-resource when applying predicates.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ExtenderTLSConfig`     {#kubescheduler-config-k8s-io-v1-ExtenderTLSConfig}
-    
-
-
-
-**Appears in:**
-
-- [Extender](#kubescheduler-config-k8s-io-v1beta2-Extender)
-
-- [LegacyExtender](#kubescheduler-config-k8s-io-v1-LegacyExtender)
-
-
-ExtenderTLSConfig contains settings to enable TLS with extender
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>insecure</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   Server should be accessed without verifying the TLS certificate. For testing only.</td>
-</tr>
-    
-  
-<tr><td><code>serverName</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   ServerName is passed to the server for SNI and is used in the client to check server
-certificates against. If ServerName is empty, the hostname used to contact the
-server is used.</td>
-</tr>
-    
-  
-<tr><td><code>certFile</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Server requires TLS client certificate authentication</td>
-</tr>
-    
-  
-<tr><td><code>keyFile</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Server requires TLS client certificate authentication</td>
-</tr>
-    
-  
-<tr><td><code>caFile</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Trusted root certificates for server</td>
-</tr>
-    
-  
-<tr><td><code>certData</code> <B>[Required]</B><br/>
-<code>[]byte</code>
-</td>
-<td>
-   CertData holds PEM-encoded bytes (typically read from a client certificate file).
-CertData takes precedence over CertFile</td>
-</tr>
-    
-  
-<tr><td><code>keyData</code> <B>[Required]</B><br/>
-<code>[]byte</code>
-</td>
-<td>
-   KeyData holds PEM-encoded bytes (typically read from a client certificate key file).
-KeyData takes precedence over KeyFile</td>
-</tr>
-    
-  
-<tr><td><code>caData</code> <B>[Required]</B><br/>
-<code>[]byte</code>
-</td>
-<td>
-   CAData holds PEM-encoded bytes (typically read from a root certificates bundle).
-CAData takes precedence over CAFile</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `LabelPreference`     {#kubescheduler-config-k8s-io-v1-LabelPreference}
-    
-
-
-
-**Appears in:**
-
-- [PriorityArgument](#kubescheduler-config-k8s-io-v1-PriorityArgument)
-
-
-LabelPreference holds the parameters that are used to configure the corresponding priority function
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>label</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Used to identify node "groups"</td>
-</tr>
-    
-  
-<tr><td><code>presence</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   This is a boolean flag
-If true, higher priority is given to nodes that have the label
-If false, higher priority is given to nodes that do not have the label</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `LabelsPresence`     {#kubescheduler-config-k8s-io-v1-LabelsPresence}
-    
-
-
-
-**Appears in:**
-
-- [PredicateArgument](#kubescheduler-config-k8s-io-v1-PredicateArgument)
-
-
-LabelsPresence holds the parameters that are used to configure the corresponding predicate in scheduler policy configuration.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>labels</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   The list of labels that identify node "groups"
-All of the labels should be either present (or absent) for the node to be considered a fit for hosting the pod</td>
-</tr>
-    
-  
-<tr><td><code>presence</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   The boolean flag that indicates whether the labels should be present or absent from the node</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `LegacyExtender`     {#kubescheduler-config-k8s-io-v1-LegacyExtender}
-    
-
-
-
-**Appears in:**
-
-- [Policy](#kubescheduler-config-k8s-io-v1-Policy)
-
-
-LegacyExtender holds the parameters used to communicate with the extender. If a verb is unspecified/empty,
-it is assumed that the extender chose not to provide that extension.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>urlPrefix</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   URLPrefix at which the extender is available</td>
-</tr>
-    
-  
-<tr><td><code>filterVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the filter call, empty if not supported. This verb is appended to the URLPrefix when issuing the filter call to extender.</td>
-</tr>
-    
-  
-<tr><td><code>preemptVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the preempt call, empty if not supported. This verb is appended to the URLPrefix when issuing the preempt call to extender.</td>
-</tr>
-    
-  
-<tr><td><code>prioritizeVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the prioritize call, empty if not supported. This verb is appended to the URLPrefix when issuing the prioritize call to extender.</td>
-</tr>
-    
-  
-<tr><td><code>weight</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   The numeric multiplier for the node scores that the prioritize call generates.
-The weight should be a positive integer</td>
-</tr>
-    
-  
-<tr><td><code>bindVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the bind call, empty if not supported. This verb is appended to the URLPrefix when issuing the bind call to extender.
-If this method is implemented by the extender, it is the extender's responsibility to bind the pod to apiserver. Only one extender
-can implement this function.</td>
-</tr>
-    
-  
-<tr><td><code>enableHttps</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   EnableHTTPS specifies whether https should be used to communicate with the extender</td>
-</tr>
-    
-  
-<tr><td><code>tlsConfig</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ExtenderTLSConfig"><code>ExtenderTLSConfig</code></a>
-</td>
-<td>
-   TLSConfig specifies the transport layer security config</td>
-</tr>
-    
-  
-<tr><td><code>httpTimeout</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/time#Duration"><code>time.Duration</code></a>
-</td>
-<td>
-   HTTPTimeout specifies the timeout duration for a call to the extender. Filter timeout fails the scheduling of the pod. Prioritize
-timeout is ignored, k8s/other extenders priorities are used to select the node.</td>
-</tr>
-    
-  
-<tr><td><code>nodeCacheCapable</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   NodeCacheCapable specifies that the extender is capable of caching node information,
-so the scheduler should only send minimal information about the eligible nodes
-assuming that the extender already cached full details of all nodes in the cluster</td>
-</tr>
-    
-  
-<tr><td><code>managedResources</code><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ExtenderManagedResource"><code>[]ExtenderManagedResource</code></a>
-</td>
-<td>
-   ManagedResources is a list of extended resources that are managed by
-this extender.
-- A pod will be sent to the extender on the Filter, Prioritize and Bind
-  (if the extender is the binder) phases iff the pod requests at least
-  one of the extended resources in this list. If empty or unspecified,
-  all pods will be sent to this extender.
-- If IgnoredByScheduler is set to true for a resource, kube-scheduler
-  will skip checking the resource in predicates.</td>
-</tr>
-    
-  
-<tr><td><code>ignorable</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   Ignorable specifies if the extender is ignorable, i.e. scheduling should not
-fail when the extender returns an error or is not reachable.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PredicateArgument`     {#kubescheduler-config-k8s-io-v1-PredicateArgument}
-    
-
-
-
-**Appears in:**
-
-- [PredicatePolicy](#kubescheduler-config-k8s-io-v1-PredicatePolicy)
-
-
-PredicateArgument represents the arguments to configure predicate functions in scheduler policy configuration.
-Only one of its members may be specified
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>serviceAffinity</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ServiceAffinity"><code>ServiceAffinity</code></a>
-</td>
-<td>
-   The predicate that provides affinity for pods belonging to a service
-It uses a label to identify nodes that belong to the same "group"</td>
-</tr>
-    
-  
-<tr><td><code>labelsPresence</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-LabelsPresence"><code>LabelsPresence</code></a>
-</td>
-<td>
-   The predicate that checks whether a particular node has a certain label
-defined or not, regardless of value</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PredicatePolicy`     {#kubescheduler-config-k8s-io-v1-PredicatePolicy}
-    
-
-
-
-**Appears in:**
-
-- [Policy](#kubescheduler-config-k8s-io-v1-Policy)
-
-
-PredicatePolicy describes a struct of a predicate policy.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Identifier of the predicate policy
-For a custom predicate, the name can be user-defined
-For the Kubernetes provided predicates, the name is the identifier of the pre-defined predicate</td>
-</tr>
-    
-  
-<tr><td><code>argument</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-PredicateArgument"><code>PredicateArgument</code></a>
-</td>
-<td>
-   Holds the parameters to configure the given predicate</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PriorityArgument`     {#kubescheduler-config-k8s-io-v1-PriorityArgument}
-    
-
-
-
-**Appears in:**
-
-- [PriorityPolicy](#kubescheduler-config-k8s-io-v1-PriorityPolicy)
-
-
-PriorityArgument represents the arguments to configure priority functions in scheduler policy configuration.
-Only one of its members may be specified
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>serviceAntiAffinity</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ServiceAntiAffinity"><code>ServiceAntiAffinity</code></a>
-</td>
-<td>
-   The priority function that ensures a good spread (anti-affinity) for pods belonging to a service
-It uses a label to identify nodes that belong to the same "group"</td>
-</tr>
-    
-  
-<tr><td><code>labelPreference</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-LabelPreference"><code>LabelPreference</code></a>
-</td>
-<td>
-   The priority function that checks whether a particular node has a certain label
-defined or not, regardless of value</td>
-</tr>
-    
-  
-<tr><td><code>requestedToCapacityRatioArguments</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-RequestedToCapacityRatioArguments"><code>RequestedToCapacityRatioArguments</code></a>
-</td>
-<td>
-   The RequestedToCapacityRatio priority function is parametrized with function shape.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PriorityPolicy`     {#kubescheduler-config-k8s-io-v1-PriorityPolicy}
-    
-
-
-
-**Appears in:**
-
-- [Policy](#kubescheduler-config-k8s-io-v1-Policy)
-
-
-PriorityPolicy describes a struct of a priority policy.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Identifier of the priority policy
-For a custom priority, the name can be user-defined
-For the Kubernetes provided priority functions, the name is the identifier of the pre-defined priority function</td>
-</tr>
-    
-  
-<tr><td><code>weight</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   The numeric multiplier for the node scores that the priority function generates
-The weight should be non-zero and can be a positive or a negative integer</td>
-</tr>
-    
-  
-<tr><td><code>argument</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-PriorityArgument"><code>PriorityArgument</code></a>
-</td>
-<td>
-   Holds the parameters to configure the given priority function</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `RequestedToCapacityRatioArguments`     {#kubescheduler-config-k8s-io-v1-RequestedToCapacityRatioArguments}
-    
-
-
-
-**Appears in:**
-
-- [PriorityArgument](#kubescheduler-config-k8s-io-v1-PriorityArgument)
-
-
-RequestedToCapacityRatioArguments holds arguments specific to RequestedToCapacityRatio priority function.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>shape</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-UtilizationShapePoint"><code>[]UtilizationShapePoint</code></a>
-</td>
-<td>
-   Array of point defining priority function shape.</td>
-</tr>
-    
-  
-<tr><td><code>resources</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ResourceSpec"><code>[]ResourceSpec</code></a>
-</td>
-<td>
-   <span class="text-muted">No description provided.</span>
-   </td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ResourceSpec`     {#kubescheduler-config-k8s-io-v1-ResourceSpec}
-    
-
-
-
-**Appears in:**
-
-- [RequestedToCapacityRatioArguments](#kubescheduler-config-k8s-io-v1-RequestedToCapacityRatioArguments)
-
-
-ResourceSpec represents single resource and weight for bin packing of priority RequestedToCapacityRatioArguments.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Name of the resource to be managed by RequestedToCapacityRatio function.</td>
-</tr>
-    
-  
-<tr><td><code>weight</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   Weight of the resource.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ServiceAffinity`     {#kubescheduler-config-k8s-io-v1-ServiceAffinity}
-    
-
-
-
-**Appears in:**
-
-- [PredicateArgument](#kubescheduler-config-k8s-io-v1-PredicateArgument)
-
-
-ServiceAffinity holds the parameters that are used to configure the corresponding predicate in scheduler policy configuration.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>labels</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   The list of labels that identify node "groups"
-All of the labels should match for the node to be considered a fit for hosting the pod</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ServiceAntiAffinity`     {#kubescheduler-config-k8s-io-v1-ServiceAntiAffinity}
-    
-
-
-
-**Appears in:**
-
-- [PriorityArgument](#kubescheduler-config-k8s-io-v1-PriorityArgument)
-
-
-ServiceAntiAffinity holds the parameters that are used to configure the corresponding priority function
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>label</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Used to identify node "groups"</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `UtilizationShapePoint`     {#kubescheduler-config-k8s-io-v1-UtilizationShapePoint}
-    
-
-
-
-**Appears in:**
-
-- [RequestedToCapacityRatioArguments](#kubescheduler-config-k8s-io-v1-RequestedToCapacityRatioArguments)
-
-
-UtilizationShapePoint represents single point of priority function shape.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>utilization</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   Utilization (x axis). Valid values are 0 to 100. Fully utilized node maps to 100.</td>
-</tr>
-    
-  
-<tr><td><code>score</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   Score assigned to given utilization (y axis). Valid values are 0 to 10.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
   
diff --git a/content/en/docs/reference/config-api/kube-scheduler-config.v1beta3.md b/content/en/docs/reference/config-api/kube-scheduler-config.v1beta3.md
new file mode 100644
index 0000000000..aeddbe89be
--- /dev/null
+++ b/content/en/docs/reference/config-api/kube-scheduler-config.v1beta3.md
@@ -0,0 +1,1385 @@
+---
+title: kube-scheduler Configuration (v1beta3)
+content_type: tool-reference
+package: kubescheduler.config.k8s.io/v1beta3
+auto_generated: true
+---
+
+
+## Resource Types 
+
+
+- [DefaultPreemptionArgs](#kubescheduler-config-k8s-io-v1beta3-DefaultPreemptionArgs)
+- [InterPodAffinityArgs](#kubescheduler-config-k8s-io-v1beta3-InterPodAffinityArgs)
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerConfiguration)
+- [NodeAffinityArgs](#kubescheduler-config-k8s-io-v1beta3-NodeAffinityArgs)
+- [NodeResourcesBalancedAllocationArgs](#kubescheduler-config-k8s-io-v1beta3-NodeResourcesBalancedAllocationArgs)
+- [NodeResourcesFitArgs](#kubescheduler-config-k8s-io-v1beta3-NodeResourcesFitArgs)
+- [PodTopologySpreadArgs](#kubescheduler-config-k8s-io-v1beta3-PodTopologySpreadArgs)
+- [VolumeBindingArgs](#kubescheduler-config-k8s-io-v1beta3-VolumeBindingArgs)
+  
+    
+
+## `ClientConnectionConfiguration`     {#ClientConnectionConfiguration}
+    
+
+**Appears in:**
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerConfiguration)
+
+
+<p>ClientConnectionConfiguration contains details for constructing a client.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>kubeconfig</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>kubeconfig is the path to a KubeConfig file.</p>
+</td>
+</tr>
+<tr><td><code>acceptContentTypes</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>acceptContentTypes defines the Accept header sent by clients when connecting to a server, overriding the
+default value of 'application/json'. This field will control all connections to the server used by a particular
+client.</p>
+</td>
+</tr>
+<tr><td><code>contentType</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>contentType is the content type used when sending data to the server from this client.</p>
+</td>
+</tr>
+<tr><td><code>qps</code> <B>[Required]</B><br/>
+<code>float32</code>
+</td>
+<td>
+   <p>qps controls the number of queries per second allowed for this connection.</p>
+</td>
+</tr>
+<tr><td><code>burst</code> <B>[Required]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <p>burst allows extra queries to accumulate when a client is exceeding its rate.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `DebuggingConfiguration`     {#DebuggingConfiguration}
+    
+
+**Appears in:**
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerConfiguration)
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
+
+
+<p>DebuggingConfiguration holds configuration for Debugging related features.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>enableProfiling</code> <B>[Required]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>enableProfiling enables profiling via web interface host:port/debug/pprof/</p>
+</td>
+</tr>
+<tr><td><code>enableContentionProfiling</code> <B>[Required]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>enableContentionProfiling enables lock contention profiling, if
+enableProfiling is true.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `FormatOptions`     {#FormatOptions}
+    
+
+**Appears in:**
+
+- [LoggingConfiguration](#LoggingConfiguration)
+
+
+<p>FormatOptions contains options for the different logging formats.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>json</code> <B>[Required]</B><br/>
+<a href="#JSONOptions"><code>JSONOptions</code></a>
+</td>
+<td>
+   <p>[Experimental] JSON contains options for logging format &quot;json&quot;.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `JSONOptions`     {#JSONOptions}
+    
+
+**Appears in:**
+
+- [FormatOptions](#FormatOptions)
+
+
+<p>JSONOptions contains options for logging format &quot;json&quot;.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>splitStream</code> <B>[Required]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>[Experimental] SplitStream redirects error messages to stderr while
+info messages go to stdout, with buffering. The default is to write
+both to stdout, without buffering.</p>
+</td>
+</tr>
+<tr><td><code>infoBufferSize</code> <B>[Required]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/api/resource#QuantityValue"><code>k8s.io/apimachinery/pkg/api/resource.QuantityValue</code></a>
+</td>
+<td>
+   <p>[Experimental] InfoBufferSize sets the size of the info stream when
+using split streams. The default is zero, which disables buffering.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `LeaderElectionConfiguration`     {#LeaderElectionConfiguration}
+    
+
+**Appears in:**
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerConfiguration)
+
+
+<p>LeaderElectionConfiguration defines the configuration of leader election
+clients for components that can run with leader election enabled.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>leaderElect</code> <B>[Required]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>leaderElect enables a leader election client to gain leadership
+before executing the main loop. Enable this when running replicated
+components for high availability.</p>
+</td>
+</tr>
+<tr><td><code>leaseDuration</code> <B>[Required]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <p>leaseDuration is the duration that non-leader candidates will wait
+after observing a leadership renewal until attempting to acquire
+leadership of a led but unrenewed leader slot. This is effectively the
+maximum duration that a leader can be stopped before it is replaced
+by another candidate. This is only applicable if leader election is
+enabled.</p>
+</td>
+</tr>
+<tr><td><code>renewDeadline</code> <B>[Required]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <p>renewDeadline is the interval between attempts by the acting master to
+renew a leadership slot before it stops leading. This must be less
+than or equal to the lease duration. This is only applicable if leader
+election is enabled.</p>
+</td>
+</tr>
+<tr><td><code>retryPeriod</code> <B>[Required]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <p>retryPeriod is the duration the clients should wait between attempting
+acquisition and renewal of a leadership. This is only applicable if
+leader election is enabled.</p>
+</td>
+</tr>
+<tr><td><code>resourceLock</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>resourceLock indicates the resource object type that will be used to lock
+during leader election cycles.</p>
+</td>
+</tr>
+<tr><td><code>resourceName</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>resourceName indicates the name of resource object that will be used to lock
+during leader election cycles.</p>
+</td>
+</tr>
+<tr><td><code>resourceNamespace</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>resourceName indicates the namespace of resource object that will be used to lock
+during leader election cycles.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `LoggingConfiguration`     {#LoggingConfiguration}
+    
+
+**Appears in:**
+
+- [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
+
+
+<p>LoggingConfiguration contains logging options
+Refer <a href="https://github.com/kubernetes/component-base/blob/master/logs/options.go">Logs Options</a> for more information.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>format</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Format Flag specifies the structure of log messages.
+default value of format is <code>text</code></p>
+</td>
+</tr>
+<tr><td><code>flushFrequency</code> <B>[Required]</B><br/>
+<a href="https://pkg.go.dev/time#Duration"><code>time.Duration</code></a>
+</td>
+<td>
+   <p>Maximum number of nanoseconds (i.e. 1s = 1000000000) between log
+flushes.  Ignored if the selected logging backend writes log
+messages without buffering.</p>
+</td>
+</tr>
+<tr><td><code>verbosity</code> <B>[Required]</B><br/>
+<code>uint32</code>
+</td>
+<td>
+   <p>Verbosity is the threshold that determines which log messages are
+logged. Default is zero which logs only the most important
+messages. Higher values enable additional messages. Error messages
+are always logged.</p>
+</td>
+</tr>
+<tr><td><code>vmodule</code> <B>[Required]</B><br/>
+<a href="#VModuleConfiguration"><code>VModuleConfiguration</code></a>
+</td>
+<td>
+   <p>VModule overrides the verbosity threshold for individual files.
+Only supported for &quot;text&quot; log format.</p>
+</td>
+</tr>
+<tr><td><code>options</code> <B>[Required]</B><br/>
+<a href="#FormatOptions"><code>FormatOptions</code></a>
+</td>
+<td>
+   <p>[Experimental] Options holds additional parameters that are specific
+to the different logging formats. Only the options for the selected
+format get used, but all of them get validated.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `VModuleConfiguration`     {#VModuleConfiguration}
+    
+(Alias of `[]k8s.io/component-base/config/v1alpha1.VModuleItem`)
+
+**Appears in:**
+
+- [LoggingConfiguration](#LoggingConfiguration)
+
+
+<p>VModuleConfiguration is a collection of individual file names or patterns
+and the corresponding verbosity threshold.</p>
+
+
+
+  
+    
+
+## `DefaultPreemptionArgs`     {#kubescheduler-config-k8s-io-v1beta3-DefaultPreemptionArgs}
+    
+
+
+<p>DefaultPreemptionArgs holds arguments used to configure the
+DefaultPreemption plugin.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta3</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>DefaultPreemptionArgs</code></td></tr>
+    
+  
+<tr><td><code>minCandidateNodesPercentage</code> <B>[Required]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <p>MinCandidateNodesPercentage is the minimum number of candidates to
+shortlist when dry running preemption as a percentage of number of nodes.
+Must be in the range [0, 100]. Defaults to 10% of the cluster size if
+unspecified.</p>
+</td>
+</tr>
+<tr><td><code>minCandidateNodesAbsolute</code> <B>[Required]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <p>MinCandidateNodesAbsolute is the absolute minimum number of candidates to
+shortlist. The likely number of candidates enumerated for dry running
+preemption is given by the formula:
+numCandidates = max(numNodes * minCandidateNodesPercentage, minCandidateNodesAbsolute)
+We say &quot;likely&quot; because there are other factors such as PDB violations
+that play a role in the number of candidates shortlisted. Must be at least
+0 nodes. Defaults to 100 nodes if unspecified.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `InterPodAffinityArgs`     {#kubescheduler-config-k8s-io-v1beta3-InterPodAffinityArgs}
+    
+
+
+<p>InterPodAffinityArgs holds arguments used to configure the InterPodAffinity plugin.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta3</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>InterPodAffinityArgs</code></td></tr>
+    
+  
+<tr><td><code>hardPodAffinityWeight</code> <B>[Required]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <p>HardPodAffinityWeight is the scoring weight for existing pods with a
+matching hard affinity to the incoming pod.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `KubeSchedulerConfiguration`     {#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerConfiguration}
+    
+
+
+<p>KubeSchedulerConfiguration configures a scheduler</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta3</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>KubeSchedulerConfiguration</code></td></tr>
+    
+  
+<tr><td><code>parallelism</code> <B>[Required]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <p>Parallelism defines the amount of parallelism in algorithms for scheduling a Pods. Must be greater than 0. Defaults to 16</p>
+</td>
+</tr>
+<tr><td><code>leaderElection</code> <B>[Required]</B><br/>
+<a href="#LeaderElectionConfiguration"><code>LeaderElectionConfiguration</code></a>
+</td>
+<td>
+   <p>LeaderElection defines the configuration of leader election client.</p>
+</td>
+</tr>
+<tr><td><code>clientConnection</code> <B>[Required]</B><br/>
+<a href="#ClientConnectionConfiguration"><code>ClientConnectionConfiguration</code></a>
+</td>
+<td>
+   <p>ClientConnection specifies the kubeconfig file and client connection
+settings for the proxy server to use when communicating with the apiserver.</p>
+</td>
+</tr>
+<tr><td><code>DebuggingConfiguration</code> <B>[Required]</B><br/>
+<a href="#DebuggingConfiguration"><code>DebuggingConfiguration</code></a>
+</td>
+<td>(Members of <code>DebuggingConfiguration</code> are embedded into this type.)
+   <p>DebuggingConfiguration holds configuration for Debugging related features
+TODO: We might wanna make this a substruct like Debugging componentbaseconfigv1alpha1.DebuggingConfiguration</p>
+</td>
+</tr>
+<tr><td><code>percentageOfNodesToScore</code> <B>[Required]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <p>PercentageOfNodesToScore is the percentage of all nodes that once found feasible
+for running a pod, the scheduler stops its search for more feasible nodes in
+the cluster. This helps improve scheduler's performance. Scheduler always tries to find
+at least &quot;minFeasibleNodesToFind&quot; feasible nodes no matter what the value of this flag is.
+Example: if the cluster size is 500 nodes and the value of this flag is 30,
+then scheduler stops finding further feasible nodes once it finds 150 feasible ones.
+When the value is 0, default percentage (5%--50% based on the size of the cluster) of the
+nodes will be scored.</p>
+</td>
+</tr>
+<tr><td><code>podInitialBackoffSeconds</code> <B>[Required]</B><br/>
+<code>int64</code>
+</td>
+<td>
+   <p>PodInitialBackoffSeconds is the initial backoff for unschedulable pods.
+If specified, it must be greater than 0. If this value is null, the default value (1s)
+will be used.</p>
+</td>
+</tr>
+<tr><td><code>podMaxBackoffSeconds</code> <B>[Required]</B><br/>
+<code>int64</code>
+</td>
+<td>
+   <p>PodMaxBackoffSeconds is the max backoff for unschedulable pods.
+If specified, it must be greater than podInitialBackoffSeconds. If this value is null,
+the default value (10s) will be used.</p>
+</td>
+</tr>
+<tr><td><code>profiles</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerProfile"><code>[]KubeSchedulerProfile</code></a>
+</td>
+<td>
+   <p>Profiles are scheduling profiles that kube-scheduler supports. Pods can
+choose to be scheduled under a particular profile by setting its associated
+scheduler name. Pods that don't specify any scheduler name are scheduled
+with the &quot;default-scheduler&quot; profile, if present here.</p>
+</td>
+</tr>
+<tr><td><code>extenders</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-Extender"><code>[]Extender</code></a>
+</td>
+<td>
+   <p>Extenders are the list of scheduler extenders, each holding the values of how to communicate
+with the extender. These extenders are shared by all scheduler profiles.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `NodeAffinityArgs`     {#kubescheduler-config-k8s-io-v1beta3-NodeAffinityArgs}
+    
+
+
+<p>NodeAffinityArgs holds arguments to configure the NodeAffinity plugin.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta3</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>NodeAffinityArgs</code></td></tr>
+    
+  
+<tr><td><code>addedAffinity</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#nodeaffinity-v1-core"><code>core/v1.NodeAffinity</code></a>
+</td>
+<td>
+   <p>AddedAffinity is applied to all Pods additionally to the NodeAffinity
+specified in the PodSpec. That is, Nodes need to satisfy AddedAffinity
+AND .spec.NodeAffinity. AddedAffinity is empty by default (all Nodes
+match).
+When AddedAffinity is used, some Pods with affinity requirements that match
+a specific Node (such as Daemonset Pods) might remain unschedulable.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `NodeResourcesBalancedAllocationArgs`     {#kubescheduler-config-k8s-io-v1beta3-NodeResourcesBalancedAllocationArgs}
+    
+
+
+<p>NodeResourcesBalancedAllocationArgs holds arguments used to configure NodeResourcesBalancedAllocation plugin.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta3</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>NodeResourcesBalancedAllocationArgs</code></td></tr>
+    
+  
+<tr><td><code>resources</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-ResourceSpec"><code>[]ResourceSpec</code></a>
+</td>
+<td>
+   <p>Resources to be managed, the default is &quot;cpu&quot; and &quot;memory&quot; if not specified.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `NodeResourcesFitArgs`     {#kubescheduler-config-k8s-io-v1beta3-NodeResourcesFitArgs}
+    
+
+
+<p>NodeResourcesFitArgs holds arguments used to configure the NodeResourcesFit plugin.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta3</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>NodeResourcesFitArgs</code></td></tr>
+    
+  
+<tr><td><code>ignoredResources</code> <B>[Required]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+   <p>IgnoredResources is the list of resources that NodeResources fit filter
+should ignore. This doesn't apply to scoring.</p>
+</td>
+</tr>
+<tr><td><code>ignoredResourceGroups</code> <B>[Required]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+   <p>IgnoredResourceGroups defines the list of resource groups that NodeResources fit filter should ignore.
+e.g. if group is [&quot;example.com&quot;], it will ignore all resource names that begin
+with &quot;example.com&quot;, such as &quot;example.com/aaa&quot; and &quot;example.com/bbb&quot;.
+A resource group name can't contain '/'. This doesn't apply to scoring.</p>
+</td>
+</tr>
+<tr><td><code>scoringStrategy</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-ScoringStrategy"><code>ScoringStrategy</code></a>
+</td>
+<td>
+   <p>ScoringStrategy selects the node resource scoring strategy.
+The default strategy is LeastAllocated with an equal &quot;cpu&quot; and &quot;memory&quot; weight.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `PodTopologySpreadArgs`     {#kubescheduler-config-k8s-io-v1beta3-PodTopologySpreadArgs}
+    
+
+
+<p>PodTopologySpreadArgs holds arguments used to configure the PodTopologySpread plugin.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta3</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>PodTopologySpreadArgs</code></td></tr>
+    
+  
+<tr><td><code>defaultConstraints</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#topologyspreadconstraint-v1-core"><code>[]core/v1.TopologySpreadConstraint</code></a>
+</td>
+<td>
+   <p>DefaultConstraints defines topology spread constraints to be applied to
+Pods that don't define any in <code>pod.spec.topologySpreadConstraints</code>.
+<code>.defaultConstraints[*].labelSelectors</code> must be empty, as they are
+deduced from the Pod's membership to Services, ReplicationControllers,
+ReplicaSets or StatefulSets.
+When not empty, .defaultingType must be &quot;List&quot;.</p>
+</td>
+</tr>
+<tr><td><code>defaultingType</code><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PodTopologySpreadConstraintsDefaulting"><code>PodTopologySpreadConstraintsDefaulting</code></a>
+</td>
+<td>
+   <p>DefaultingType determines how .defaultConstraints are deduced. Can be one
+of &quot;System&quot; or &quot;List&quot;.</p>
+<ul>
+<li>&quot;System&quot;: Use kubernetes defined constraints that spread Pods among
+Nodes and Zones.</li>
+<li>&quot;List&quot;: Use constraints defined in .defaultConstraints.</li>
+</ul>
+<p>Defaults to &quot;System&quot;.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `VolumeBindingArgs`     {#kubescheduler-config-k8s-io-v1beta3-VolumeBindingArgs}
+    
+
+
+<p>VolumeBindingArgs holds arguments used to configure the VolumeBinding plugin.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta3</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>VolumeBindingArgs</code></td></tr>
+    
+  
+<tr><td><code>bindTimeoutSeconds</code> <B>[Required]</B><br/>
+<code>int64</code>
+</td>
+<td>
+   <p>BindTimeoutSeconds is the timeout in seconds in volume binding operation.
+Value must be non-negative integer. The value zero indicates no waiting.
+If this value is nil, the default value (600) will be used.</p>
+</td>
+</tr>
+<tr><td><code>shape</code><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-UtilizationShapePoint"><code>[]UtilizationShapePoint</code></a>
+</td>
+<td>
+   <p>Shape specifies the points defining the score function shape, which is
+used to score nodes based on the utilization of statically provisioned
+PVs. The utilization is calculated by dividing the total requested
+storage of the pod by the total capacity of feasible PVs on each node.
+Each point contains utilization (ranges from 0 to 100) and its
+associated score (ranges from 0 to 10). You can turn the priority by
+specifying different scores for different utilization numbers.
+The default shape points are:</p>
+<ol>
+<li>0 for 0 utilization</li>
+<li>10 for 100 utilization
+All points must be sorted in increasing order by utilization.</li>
+</ol>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Extender`     {#kubescheduler-config-k8s-io-v1beta3-Extender}
+    
+
+**Appears in:**
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerConfiguration)
+
+
+<p>Extender holds the parameters used to communicate with the extender. If a verb is unspecified/empty,
+it is assumed that the extender chose not to provide that extension.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>urlPrefix</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>URLPrefix at which the extender is available</p>
+</td>
+</tr>
+<tr><td><code>filterVerb</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Verb for the filter call, empty if not supported. This verb is appended to the URLPrefix when issuing the filter call to extender.</p>
+</td>
+</tr>
+<tr><td><code>preemptVerb</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Verb for the preempt call, empty if not supported. This verb is appended to the URLPrefix when issuing the preempt call to extender.</p>
+</td>
+</tr>
+<tr><td><code>prioritizeVerb</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Verb for the prioritize call, empty if not supported. This verb is appended to the URLPrefix when issuing the prioritize call to extender.</p>
+</td>
+</tr>
+<tr><td><code>weight</code> <B>[Required]</B><br/>
+<code>int64</code>
+</td>
+<td>
+   <p>The numeric multiplier for the node scores that the prioritize call generates.
+The weight should be a positive integer</p>
+</td>
+</tr>
+<tr><td><code>bindVerb</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Verb for the bind call, empty if not supported. This verb is appended to the URLPrefix when issuing the bind call to extender.
+If this method is implemented by the extender, it is the extender's responsibility to bind the pod to apiserver. Only one extender
+can implement this function.</p>
+</td>
+</tr>
+<tr><td><code>enableHTTPS</code> <B>[Required]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>EnableHTTPS specifies whether https should be used to communicate with the extender</p>
+</td>
+</tr>
+<tr><td><code>tlsConfig</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-ExtenderTLSConfig"><code>ExtenderTLSConfig</code></a>
+</td>
+<td>
+   <p>TLSConfig specifies the transport layer security config</p>
+</td>
+</tr>
+<tr><td><code>httpTimeout</code> <B>[Required]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <p>HTTPTimeout specifies the timeout duration for a call to the extender. Filter timeout fails the scheduling of the pod. Prioritize
+timeout is ignored, k8s/other extenders priorities are used to select the node.</p>
+</td>
+</tr>
+<tr><td><code>nodeCacheCapable</code> <B>[Required]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>NodeCacheCapable specifies that the extender is capable of caching node information,
+so the scheduler should only send minimal information about the eligible nodes
+assuming that the extender already cached full details of all nodes in the cluster</p>
+</td>
+</tr>
+<tr><td><code>managedResources</code><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-ExtenderManagedResource"><code>[]ExtenderManagedResource</code></a>
+</td>
+<td>
+   <p>ManagedResources is a list of extended resources that are managed by
+this extender.</p>
+<ul>
+<li>A pod will be sent to the extender on the Filter, Prioritize and Bind
+(if the extender is the binder) phases iff the pod requests at least
+one of the extended resources in this list. If empty or unspecified,
+all pods will be sent to this extender.</li>
+<li>If IgnoredByScheduler is set to true for a resource, kube-scheduler
+will skip checking the resource in predicates.</li>
+</ul>
+</td>
+</tr>
+<tr><td><code>ignorable</code> <B>[Required]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>Ignorable specifies if the extender is ignorable, i.e. scheduling should not
+fail when the extender returns an error or is not reachable.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ExtenderManagedResource`     {#kubescheduler-config-k8s-io-v1beta3-ExtenderManagedResource}
+    
+
+**Appears in:**
+
+- [Extender](#kubescheduler-config-k8s-io-v1beta3-Extender)
+
+
+<p>ExtenderManagedResource describes the arguments of extended resources
+managed by an extender.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>name</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Name is the extended resource name.</p>
+</td>
+</tr>
+<tr><td><code>ignoredByScheduler</code> <B>[Required]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>IgnoredByScheduler indicates whether kube-scheduler should ignore this
+resource when applying predicates.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ExtenderTLSConfig`     {#kubescheduler-config-k8s-io-v1beta3-ExtenderTLSConfig}
+    
+
+**Appears in:**
+
+- [Extender](#kubescheduler-config-k8s-io-v1beta3-Extender)
+
+
+<p>ExtenderTLSConfig contains settings to enable TLS with extender</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>insecure</code> <B>[Required]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>Server should be accessed without verifying the TLS certificate. For testing only.</p>
+</td>
+</tr>
+<tr><td><code>serverName</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>ServerName is passed to the server for SNI and is used in the client to check server
+certificates against. If ServerName is empty, the hostname used to contact the
+server is used.</p>
+</td>
+</tr>
+<tr><td><code>certFile</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Server requires TLS client certificate authentication</p>
+</td>
+</tr>
+<tr><td><code>keyFile</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Server requires TLS client certificate authentication</p>
+</td>
+</tr>
+<tr><td><code>caFile</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Trusted root certificates for server</p>
+</td>
+</tr>
+<tr><td><code>certData</code> <B>[Required]</B><br/>
+<code>[]byte</code>
+</td>
+<td>
+   <p>CertData holds PEM-encoded bytes (typically read from a client certificate file).
+CertData takes precedence over CertFile</p>
+</td>
+</tr>
+<tr><td><code>keyData</code> <B>[Required]</B><br/>
+<code>[]byte</code>
+</td>
+<td>
+   <p>KeyData holds PEM-encoded bytes (typically read from a client certificate key file).
+KeyData takes precedence over KeyFile</p>
+</td>
+</tr>
+<tr><td><code>caData</code> <B>[Required]</B><br/>
+<code>[]byte</code>
+</td>
+<td>
+   <p>CAData holds PEM-encoded bytes (typically read from a root certificates bundle).
+CAData takes precedence over CAFile</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `KubeSchedulerProfile`     {#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerProfile}
+    
+
+**Appears in:**
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerConfiguration)
+
+
+<p>KubeSchedulerProfile is a scheduling profile.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>schedulerName</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>SchedulerName is the name of the scheduler associated to this profile.
+If SchedulerName matches with the pod's &quot;spec.schedulerName&quot;, then the pod
+is scheduled with this profile.</p>
+</td>
+</tr>
+<tr><td><code>plugins</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-Plugins"><code>Plugins</code></a>
+</td>
+<td>
+   <p>Plugins specify the set of plugins that should be enabled or disabled.
+Enabled plugins are the ones that should be enabled in addition to the
+default plugins. Disabled plugins are any of the default plugins that
+should be disabled.
+When no enabled or disabled plugin is specified for an extension point,
+default plugins for that extension point will be used if there is any.
+If a QueueSort plugin is specified, the same QueueSort Plugin and
+PluginConfig must be specified for all profiles.</p>
+</td>
+</tr>
+<tr><td><code>pluginConfig</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginConfig"><code>[]PluginConfig</code></a>
+</td>
+<td>
+   <p>PluginConfig is an optional set of custom plugin arguments for each plugin.
+Omitting config args for a plugin is equivalent to using the default config
+for that plugin.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Plugin`     {#kubescheduler-config-k8s-io-v1beta3-Plugin}
+    
+
+**Appears in:**
+
+- [PluginSet](#kubescheduler-config-k8s-io-v1beta3-PluginSet)
+
+
+<p>Plugin specifies a plugin name and its weight when applicable. Weight is used only for Score plugins.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>name</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Name defines the name of plugin</p>
+</td>
+</tr>
+<tr><td><code>weight</code> <B>[Required]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <p>Weight defines the weight of plugin, only used for Score plugins.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `PluginConfig`     {#kubescheduler-config-k8s-io-v1beta3-PluginConfig}
+    
+
+**Appears in:**
+
+- [KubeSchedulerProfile](#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerProfile)
+
+
+<p>PluginConfig specifies arguments that should be passed to a plugin at the time of initialization.
+A plugin that is invoked at multiple extension points is initialized once. Args can have arbitrary structure.
+It is up to the plugin to process these Args.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>name</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Name defines the name of plugin being configured</p>
+</td>
+</tr>
+<tr><td><code>args</code> <B>[Required]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/runtime/#RawExtension"><code>k8s.io/apimachinery/pkg/runtime.RawExtension</code></a>
+</td>
+<td>
+   <p>Args defines the arguments passed to the plugins at the time of initialization. Args can have arbitrary structure.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `PluginSet`     {#kubescheduler-config-k8s-io-v1beta3-PluginSet}
+    
+
+**Appears in:**
+
+- [Plugins](#kubescheduler-config-k8s-io-v1beta3-Plugins)
+
+
+<p>PluginSet specifies enabled and disabled plugins for an extension point.
+If an array is empty, missing, or nil, default plugins at that extension point will be used.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>enabled</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-Plugin"><code>[]Plugin</code></a>
+</td>
+<td>
+   <p>Enabled specifies plugins that should be enabled in addition to default plugins.
+If the default plugin is also configured in the scheduler config file, the weight of plugin will
+be overridden accordingly.
+These are called after default plugins and in the same order specified here.</p>
+</td>
+</tr>
+<tr><td><code>disabled</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-Plugin"><code>[]Plugin</code></a>
+</td>
+<td>
+   <p>Disabled specifies default plugins that should be disabled.
+When all default plugins need to be disabled, an array containing only one &quot;*&quot; should be provided.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Plugins`     {#kubescheduler-config-k8s-io-v1beta3-Plugins}
+    
+
+**Appears in:**
+
+- [KubeSchedulerProfile](#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerProfile)
+
+
+<p>Plugins include multiple extension points. When specified, the list of plugins for
+a particular extension point are the only ones enabled. If an extension point is
+omitted from the config, then the default set of plugins is used for that extension point.
+Enabled plugins are called in the order specified here, after default plugins. If they need to
+be invoked before default plugins, default plugins must be disabled and re-enabled here in desired order.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>queueSort</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <p>QueueSort is a list of plugins that should be invoked when sorting pods in the scheduling queue.</p>
+</td>
+</tr>
+<tr><td><code>preFilter</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <p>PreFilter is a list of plugins that should be invoked at &quot;PreFilter&quot; extension point of the scheduling framework.</p>
+</td>
+</tr>
+<tr><td><code>filter</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <p>Filter is a list of plugins that should be invoked when filtering out nodes that cannot run the Pod.</p>
+</td>
+</tr>
+<tr><td><code>postFilter</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <p>PostFilter is a list of plugins that are invoked after filtering phase, but only when no feasible nodes were found for the pod.</p>
+</td>
+</tr>
+<tr><td><code>preScore</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <p>PreScore is a list of plugins that are invoked before scoring.</p>
+</td>
+</tr>
+<tr><td><code>score</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <p>Score is a list of plugins that should be invoked when ranking nodes that have passed the filtering phase.</p>
+</td>
+</tr>
+<tr><td><code>reserve</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <p>Reserve is a list of plugins invoked when reserving/unreserving resources
+after a node is assigned to run the pod.</p>
+</td>
+</tr>
+<tr><td><code>permit</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <p>Permit is a list of plugins that control binding of a Pod. These plugins can prevent or delay binding of a Pod.</p>
+</td>
+</tr>
+<tr><td><code>preBind</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <p>PreBind is a list of plugins that should be invoked before a pod is bound.</p>
+</td>
+</tr>
+<tr><td><code>bind</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <p>Bind is a list of plugins that should be invoked at &quot;Bind&quot; extension point of the scheduling framework.
+The scheduler call these plugins in order. Scheduler skips the rest of these plugins as soon as one returns success.</p>
+</td>
+</tr>
+<tr><td><code>postBind</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <p>PostBind is a list of plugins that should be invoked after a pod is successfully bound.</p>
+</td>
+</tr>
+<tr><td><code>multiPoint</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <p>MultiPoint is a simplified config section to enable plugins for all valid extension points.
+Plugins enabled through MultiPoint will automatically register for every individual extension
+point the plugin has implemented. Disabling a plugin through MultiPoint disables that behavior.
+The same is true for disabling &quot;*&quot; through MultiPoint (no default plugins will be automatically registered).
+Plugins can still be disabled through their individual extension points.</p>
+<p>In terms of precedence, plugin config follows this basic hierarchy</p>
+<ol>
+<li>Specific extension points</li>
+<li>Explicitly configured MultiPoint plugins</li>
+<li>The set of default plugins, as MultiPoint plugins
+This implies that a higher precedence plugin will run first and overwrite any settings within MultiPoint.
+Explicitly user-configured plugins also take a higher precedence over default plugins.
+Within this hierarchy, an Enabled setting takes precedence over Disabled. For example, if a plugin is
+set in both <code>multiPoint.Enabled</code> and <code>multiPoint.Disabled</code>, the plugin will be enabled. Similarly,
+including <code>multiPoint.Disabled = '*'</code> and <code>multiPoint.Enabled = pluginA</code> will still register that specific
+plugin through MultiPoint. This follows the same behavior as all other extension point configurations.</li>
+</ol>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `PodTopologySpreadConstraintsDefaulting`     {#kubescheduler-config-k8s-io-v1beta3-PodTopologySpreadConstraintsDefaulting}
+    
+(Alias of `string`)
+
+**Appears in:**
+
+- [PodTopologySpreadArgs](#kubescheduler-config-k8s-io-v1beta3-PodTopologySpreadArgs)
+
+
+<p>PodTopologySpreadConstraintsDefaulting defines how to set default constraints
+for the PodTopologySpread plugin.</p>
+
+
+
+
+## `RequestedToCapacityRatioParam`     {#kubescheduler-config-k8s-io-v1beta3-RequestedToCapacityRatioParam}
+    
+
+**Appears in:**
+
+- [ScoringStrategy](#kubescheduler-config-k8s-io-v1beta3-ScoringStrategy)
+
+
+<p>RequestedToCapacityRatioParam define RequestedToCapacityRatio parameters</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>shape</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-UtilizationShapePoint"><code>[]UtilizationShapePoint</code></a>
+</td>
+<td>
+   <p>Shape is a list of points defining the scoring function shape.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ResourceSpec`     {#kubescheduler-config-k8s-io-v1beta3-ResourceSpec}
+    
+
+**Appears in:**
+
+- [NodeResourcesBalancedAllocationArgs](#kubescheduler-config-k8s-io-v1beta3-NodeResourcesBalancedAllocationArgs)
+
+- [ScoringStrategy](#kubescheduler-config-k8s-io-v1beta3-ScoringStrategy)
+
+
+<p>ResourceSpec represents a single resource.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>name</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Name of the resource.</p>
+</td>
+</tr>
+<tr><td><code>weight</code> <B>[Required]</B><br/>
+<code>int64</code>
+</td>
+<td>
+   <p>Weight of the resource.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ScoringStrategy`     {#kubescheduler-config-k8s-io-v1beta3-ScoringStrategy}
+    
+
+**Appears in:**
+
+- [NodeResourcesFitArgs](#kubescheduler-config-k8s-io-v1beta3-NodeResourcesFitArgs)
+
+
+<p>ScoringStrategy define ScoringStrategyType for node resource plugin</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>type</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-ScoringStrategyType"><code>ScoringStrategyType</code></a>
+</td>
+<td>
+   <p>Type selects which strategy to run.</p>
+</td>
+</tr>
+<tr><td><code>resources</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-ResourceSpec"><code>[]ResourceSpec</code></a>
+</td>
+<td>
+   <p>Resources to consider when scoring.
+The default resource set includes &quot;cpu&quot; and &quot;memory&quot; with an equal weight.
+Allowed weights go from 1 to 100.
+Weight defaults to 1 if not specified or explicitly set to 0.</p>
+</td>
+</tr>
+<tr><td><code>requestedToCapacityRatio</code> <B>[Required]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-RequestedToCapacityRatioParam"><code>RequestedToCapacityRatioParam</code></a>
+</td>
+<td>
+   <p>Arguments specific to RequestedToCapacityRatio strategy.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ScoringStrategyType`     {#kubescheduler-config-k8s-io-v1beta3-ScoringStrategyType}
+    
+(Alias of `string`)
+
+**Appears in:**
+
+- [ScoringStrategy](#kubescheduler-config-k8s-io-v1beta3-ScoringStrategy)
+
+
+<p>ScoringStrategyType the type of scoring strategy used in NodeResourcesFit plugin.</p>
+
+
+
+
+## `UtilizationShapePoint`     {#kubescheduler-config-k8s-io-v1beta3-UtilizationShapePoint}
+    
+
+**Appears in:**
+
+- [VolumeBindingArgs](#kubescheduler-config-k8s-io-v1beta3-VolumeBindingArgs)
+
+- [RequestedToCapacityRatioParam](#kubescheduler-config-k8s-io-v1beta3-RequestedToCapacityRatioParam)
+
+
+<p>UtilizationShapePoint represents single point of priority function shape.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>utilization</code> <B>[Required]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <p>Utilization (x axis). Valid values are 0 to 100. Fully utilized node maps to 100.</p>
+</td>
+</tr>
+<tr><td><code>score</code> <B>[Required]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <p>Score assigned to given utilization (y axis). Valid values are 0 to 10.</p>
+</td>
+</tr>
+</tbody>
+</table>
+  
diff --git a/content/en/docs/reference/config-api/kube-scheduler-policy-config.v1.md b/content/en/docs/reference/config-api/kube-scheduler-policy-config.v1.md
deleted file mode 100644
index 8b6c0a9a24..0000000000
--- a/content/en/docs/reference/config-api/kube-scheduler-policy-config.v1.md
+++ /dev/null
@@ -1,799 +0,0 @@
----
-title: kube-scheduler Policy Configuration (v1)
-content_type: tool-reference
-package: kubescheduler.config.k8s.io/v1
-auto_generated: true
----
-
-
-## Resource Types 
-
-
-- [Policy](#kubescheduler-config-k8s-io-v1-Policy)
-  
-    
-
-
-## `Policy`     {#kubescheduler-config-k8s-io-v1-Policy}
-    
-
-
-
-
-Policy describes a struct for a policy resource used in api.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>Policy</code></td></tr>
-    
-
-  
-  
-<tr><td><code>predicates</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-PredicatePolicy"><code>[]PredicatePolicy</code></a>
-</td>
-<td>
-   Holds the information to configure the fit predicate functions</td>
-</tr>
-    
-  
-<tr><td><code>priorities</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-PriorityPolicy"><code>[]PriorityPolicy</code></a>
-</td>
-<td>
-   Holds the information to configure the priority functions</td>
-</tr>
-    
-  
-<tr><td><code>extenders</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-LegacyExtender"><code>[]LegacyExtender</code></a>
-</td>
-<td>
-   Holds the information to communicate with the extender(s)</td>
-</tr>
-    
-  
-<tr><td><code>hardPodAffinitySymmetricWeight</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   RequiredDuringScheduling affinity is not symmetric, but there is an implicit PreferredDuringScheduling affinity rule
-corresponding to every RequiredDuringScheduling affinity rule.
-HardPodAffinitySymmetricWeight represents the weight of implicit PreferredDuringScheduling affinity rule, in the range 1-100.</td>
-</tr>
-    
-  
-<tr><td><code>alwaysCheckAllPredicates</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   When AlwaysCheckAllPredicates is set to true, scheduler checks all
-the configured predicates even after one or more of them fails.
-When the flag is set to false, scheduler skips checking the rest
-of the predicates after it finds one predicate that failed.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ExtenderManagedResource`     {#kubescheduler-config-k8s-io-v1-ExtenderManagedResource}
-    
-
-
-
-**Appears in:**
-
-- [Extender](#kubescheduler-config-k8s-io-v1beta2-Extender)
-
-- [LegacyExtender](#kubescheduler-config-k8s-io-v1-LegacyExtender)
-
-
-ExtenderManagedResource describes the arguments of extended resources
-managed by an extender.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Name is the extended resource name.</td>
-</tr>
-    
-  
-<tr><td><code>ignoredByScheduler</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   IgnoredByScheduler indicates whether kube-scheduler should ignore this
-resource when applying predicates.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ExtenderTLSConfig`     {#kubescheduler-config-k8s-io-v1-ExtenderTLSConfig}
-    
-
-
-
-**Appears in:**
-
-- [Extender](#kubescheduler-config-k8s-io-v1beta2-Extender)
-
-- [LegacyExtender](#kubescheduler-config-k8s-io-v1-LegacyExtender)
-
-
-ExtenderTLSConfig contains settings to enable TLS with extender
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>insecure</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   Server should be accessed without verifying the TLS certificate. For testing only.</td>
-</tr>
-    
-  
-<tr><td><code>serverName</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   ServerName is passed to the server for SNI and is used in the client to check server
-certificates against. If ServerName is empty, the hostname used to contact the
-server is used.</td>
-</tr>
-    
-  
-<tr><td><code>certFile</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Server requires TLS client certificate authentication</td>
-</tr>
-    
-  
-<tr><td><code>keyFile</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Server requires TLS client certificate authentication</td>
-</tr>
-    
-  
-<tr><td><code>caFile</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Trusted root certificates for server</td>
-</tr>
-    
-  
-<tr><td><code>certData</code> <B>[Required]</B><br/>
-<code>[]byte</code>
-</td>
-<td>
-   CertData holds PEM-encoded bytes (typically read from a client certificate file).
-CertData takes precedence over CertFile</td>
-</tr>
-    
-  
-<tr><td><code>keyData</code> <B>[Required]</B><br/>
-<code>[]byte</code>
-</td>
-<td>
-   KeyData holds PEM-encoded bytes (typically read from a client certificate key file).
-KeyData takes precedence over KeyFile</td>
-</tr>
-    
-  
-<tr><td><code>caData</code> <B>[Required]</B><br/>
-<code>[]byte</code>
-</td>
-<td>
-   CAData holds PEM-encoded bytes (typically read from a root certificates bundle).
-CAData takes precedence over CAFile</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `LabelPreference`     {#kubescheduler-config-k8s-io-v1-LabelPreference}
-    
-
-
-
-**Appears in:**
-
-- [PriorityArgument](#kubescheduler-config-k8s-io-v1-PriorityArgument)
-
-
-LabelPreference holds the parameters that are used to configure the corresponding priority function
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>label</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Used to identify node "groups"</td>
-</tr>
-    
-  
-<tr><td><code>presence</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   This is a boolean flag
-If true, higher priority is given to nodes that have the label
-If false, higher priority is given to nodes that do not have the label</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `LabelsPresence`     {#kubescheduler-config-k8s-io-v1-LabelsPresence}
-    
-
-
-
-**Appears in:**
-
-- [PredicateArgument](#kubescheduler-config-k8s-io-v1-PredicateArgument)
-
-
-LabelsPresence holds the parameters that are used to configure the corresponding predicate in scheduler policy configuration.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>labels</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   The list of labels that identify node "groups"
-All of the labels should be either present (or absent) for the node to be considered a fit for hosting the pod</td>
-</tr>
-    
-  
-<tr><td><code>presence</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   The boolean flag that indicates whether the labels should be present or absent from the node</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `LegacyExtender`     {#kubescheduler-config-k8s-io-v1-LegacyExtender}
-    
-
-
-
-**Appears in:**
-
-- [Policy](#kubescheduler-config-k8s-io-v1-Policy)
-
-
-LegacyExtender holds the parameters used to communicate with the extender. If a verb is unspecified/empty,
-it is assumed that the extender chose not to provide that extension.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>urlPrefix</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   URLPrefix at which the extender is available</td>
-</tr>
-    
-  
-<tr><td><code>filterVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the filter call, empty if not supported. This verb is appended to the URLPrefix when issuing the filter call to extender.</td>
-</tr>
-    
-  
-<tr><td><code>preemptVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the preempt call, empty if not supported. This verb is appended to the URLPrefix when issuing the preempt call to extender.</td>
-</tr>
-    
-  
-<tr><td><code>prioritizeVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the prioritize call, empty if not supported. This verb is appended to the URLPrefix when issuing the prioritize call to extender.</td>
-</tr>
-    
-  
-<tr><td><code>weight</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   The numeric multiplier for the node scores that the prioritize call generates.
-The weight should be a positive integer</td>
-</tr>
-    
-  
-<tr><td><code>bindVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the bind call, empty if not supported. This verb is appended to the URLPrefix when issuing the bind call to extender.
-If this method is implemented by the extender, it is the extender's responsibility to bind the pod to apiserver. Only one extender
-can implement this function.</td>
-</tr>
-    
-  
-<tr><td><code>enableHttps</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   EnableHTTPS specifies whether https should be used to communicate with the extender</td>
-</tr>
-    
-  
-<tr><td><code>tlsConfig</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ExtenderTLSConfig"><code>ExtenderTLSConfig</code></a>
-</td>
-<td>
-   TLSConfig specifies the transport layer security config</td>
-</tr>
-    
-  
-<tr><td><code>httpTimeout</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/time#Duration"><code>time.Duration</code></a>
-</td>
-<td>
-   HTTPTimeout specifies the timeout duration for a call to the extender. Filter timeout fails the scheduling of the pod. Prioritize
-timeout is ignored, k8s/other extenders priorities are used to select the node.</td>
-</tr>
-    
-  
-<tr><td><code>nodeCacheCapable</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   NodeCacheCapable specifies that the extender is capable of caching node information,
-so the scheduler should only send minimal information about the eligible nodes
-assuming that the extender already cached full details of all nodes in the cluster</td>
-</tr>
-    
-  
-<tr><td><code>managedResources</code><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ExtenderManagedResource"><code>[]ExtenderManagedResource</code></a>
-</td>
-<td>
-   ManagedResources is a list of extended resources that are managed by
-this extender.
-- A pod will be sent to the extender on the Filter, Prioritize and Bind
-  (if the extender is the binder) phases iff the pod requests at least
-  one of the extended resources in this list. If empty or unspecified,
-  all pods will be sent to this extender.
-- If IgnoredByScheduler is set to true for a resource, kube-scheduler
-  will skip checking the resource in predicates.</td>
-</tr>
-    
-  
-<tr><td><code>ignorable</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   Ignorable specifies if the extender is ignorable, i.e. scheduling should not
-fail when the extender returns an error or is not reachable.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PredicateArgument`     {#kubescheduler-config-k8s-io-v1-PredicateArgument}
-    
-
-
-
-**Appears in:**
-
-- [PredicatePolicy](#kubescheduler-config-k8s-io-v1-PredicatePolicy)
-
-
-PredicateArgument represents the arguments to configure predicate functions in scheduler policy configuration.
-Only one of its members may be specified
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>serviceAffinity</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ServiceAffinity"><code>ServiceAffinity</code></a>
-</td>
-<td>
-   The predicate that provides affinity for pods belonging to a service
-It uses a label to identify nodes that belong to the same "group"</td>
-</tr>
-    
-  
-<tr><td><code>labelsPresence</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-LabelsPresence"><code>LabelsPresence</code></a>
-</td>
-<td>
-   The predicate that checks whether a particular node has a certain label
-defined or not, regardless of value</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PredicatePolicy`     {#kubescheduler-config-k8s-io-v1-PredicatePolicy}
-    
-
-
-
-**Appears in:**
-
-- [Policy](#kubescheduler-config-k8s-io-v1-Policy)
-
-
-PredicatePolicy describes a struct of a predicate policy.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Identifier of the predicate policy
-For a custom predicate, the name can be user-defined
-For the Kubernetes provided predicates, the name is the identifier of the pre-defined predicate</td>
-</tr>
-    
-  
-<tr><td><code>argument</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-PredicateArgument"><code>PredicateArgument</code></a>
-</td>
-<td>
-   Holds the parameters to configure the given predicate</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PriorityArgument`     {#kubescheduler-config-k8s-io-v1-PriorityArgument}
-    
-
-
-
-**Appears in:**
-
-- [PriorityPolicy](#kubescheduler-config-k8s-io-v1-PriorityPolicy)
-
-
-PriorityArgument represents the arguments to configure priority functions in scheduler policy configuration.
-Only one of its members may be specified
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>serviceAntiAffinity</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ServiceAntiAffinity"><code>ServiceAntiAffinity</code></a>
-</td>
-<td>
-   The priority function that ensures a good spread (anti-affinity) for pods belonging to a service
-It uses a label to identify nodes that belong to the same "group"</td>
-</tr>
-    
-  
-<tr><td><code>labelPreference</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-LabelPreference"><code>LabelPreference</code></a>
-</td>
-<td>
-   The priority function that checks whether a particular node has a certain label
-defined or not, regardless of value</td>
-</tr>
-    
-  
-<tr><td><code>requestedToCapacityRatioArguments</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-RequestedToCapacityRatioArguments"><code>RequestedToCapacityRatioArguments</code></a>
-</td>
-<td>
-   The RequestedToCapacityRatio priority function is parametrized with function shape.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PriorityPolicy`     {#kubescheduler-config-k8s-io-v1-PriorityPolicy}
-    
-
-
-
-**Appears in:**
-
-- [Policy](#kubescheduler-config-k8s-io-v1-Policy)
-
-
-PriorityPolicy describes a struct of a priority policy.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Identifier of the priority policy
-For a custom priority, the name can be user-defined
-For the Kubernetes provided priority functions, the name is the identifier of the pre-defined priority function</td>
-</tr>
-    
-  
-<tr><td><code>weight</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   The numeric multiplier for the node scores that the priority function generates
-The weight should be non-zero and can be a positive or a negative integer</td>
-</tr>
-    
-  
-<tr><td><code>argument</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-PriorityArgument"><code>PriorityArgument</code></a>
-</td>
-<td>
-   Holds the parameters to configure the given priority function</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `RequestedToCapacityRatioArguments`     {#kubescheduler-config-k8s-io-v1-RequestedToCapacityRatioArguments}
-    
-
-
-
-**Appears in:**
-
-- [PriorityArgument](#kubescheduler-config-k8s-io-v1-PriorityArgument)
-
-
-RequestedToCapacityRatioArguments holds arguments specific to RequestedToCapacityRatio priority function.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>shape</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-UtilizationShapePoint"><code>[]UtilizationShapePoint</code></a>
-</td>
-<td>
-   Array of point defining priority function shape.</td>
-</tr>
-    
-  
-<tr><td><code>resources</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ResourceSpec"><code>[]ResourceSpec</code></a>
-</td>
-<td>
-   <span class="text-muted">No description provided.</span>
-   </td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ResourceSpec`     {#kubescheduler-config-k8s-io-v1-ResourceSpec}
-    
-
-
-
-**Appears in:**
-
-- [RequestedToCapacityRatioArguments](#kubescheduler-config-k8s-io-v1-RequestedToCapacityRatioArguments)
-
-
-ResourceSpec represents single resource and weight for bin packing of priority RequestedToCapacityRatioArguments.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Name of the resource to be managed by RequestedToCapacityRatio function.</td>
-</tr>
-    
-  
-<tr><td><code>weight</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   Weight of the resource.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ServiceAffinity`     {#kubescheduler-config-k8s-io-v1-ServiceAffinity}
-    
-
-
-
-**Appears in:**
-
-- [PredicateArgument](#kubescheduler-config-k8s-io-v1-PredicateArgument)
-
-
-ServiceAffinity holds the parameters that are used to configure the corresponding predicate in scheduler policy configuration.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>labels</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   The list of labels that identify node "groups"
-All of the labels should match for the node to be considered a fit for hosting the pod</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ServiceAntiAffinity`     {#kubescheduler-config-k8s-io-v1-ServiceAntiAffinity}
-    
-
-
-
-**Appears in:**
-
-- [PriorityArgument](#kubescheduler-config-k8s-io-v1-PriorityArgument)
-
-
-ServiceAntiAffinity holds the parameters that are used to configure the corresponding priority function
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>label</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Used to identify node "groups"</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `UtilizationShapePoint`     {#kubescheduler-config-k8s-io-v1-UtilizationShapePoint}
-    
-
-
-
-**Appears in:**
-
-- [RequestedToCapacityRatioArguments](#kubescheduler-config-k8s-io-v1-RequestedToCapacityRatioArguments)
-
-
-UtilizationShapePoint represents single point of priority function shape.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>utilization</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   Utilization (x axis). Valid values are 0 to 100. Fully utilized node maps to 100.</td>
-</tr>
-    
-  
-<tr><td><code>score</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   Score assigned to given utilization (y axis). Valid values are 0 to 10.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-  
diff --git a/content/en/docs/reference/config-api/kubeadm-config.v1beta2.md b/content/en/docs/reference/config-api/kubeadm-config.v1beta2.md
index 77595b4599..a6e2bd98cd 100644
--- a/content/en/docs/reference/config-api/kubeadm-config.v1beta2.md
+++ b/content/en/docs/reference/config-api/kubeadm-config.v1beta2.md
@@ -4,272 +4,245 @@ content_type: tool-reference
 package: kubeadm.k8s.io/v1beta2
 auto_generated: true
 ---
-Package v1beta2 defines the v1beta2 version of the kubeadm configuration file format.
-This version improves on the v1beta1 format by fixing some minor issues and adding a few new fields.
-
-A list of changes since v1beta1:
-
-- `certificateKey" field is added to InitConfiguration and JoinConfiguration.
-- "ignorePreflightErrors" field is added to the NodeRegistrationOptions.
-- The JSON "omitempty" tag is used in a more places where appropriate.
-- The JSON "omitempty" tag of the "taints" field (inside NodeRegistrationOptions) is removed.
-See the Kubernetes 1.15 changelog for further details.
-
-## Migration from old kubeadm config versions
-
-Please convert your v1beta1 configuration files to v1beta2 using the "kubeadm config migrate" command of kubeadm v1.15.x
-(conversion from older releases of kubeadm config files requires older release of kubeadm as well e.g.
-
-- kubeadm v1.11 should be used to migrate v1alpha1 to v1alpha2; kubeadm v1.12 should be used to translate v1alpha2 to v1alpha3;
-- kubeadm v1.13 or v1.14 should be used to translate v1alpha3 to v1beta1)
-
-Nevertheless, kubeadm v1.15.x will support reading from v1beta1 version of the kubeadm config file format.
-
-## Basics
-
-The preferred way to configure kubeadm is to pass an YAML configuration file with the --config option. Some of the
+<h2>Overview</h2>
+<p>Package v1beta2 defines the v1beta2 version of the kubeadm configuration file format.
+This version improves on the v1beta1 format by fixing some minor issues and adding a few new fields.</p>
+<p>A list of changes since v1beta1:</p>
+<ul>
+<li>&quot;certificateKey&quot; field is added to InitConfiguration and JoinConfiguration.</li>
+<li>&quot;ignorePreflightErrors&quot; field is added to the NodeRegistrationOptions.</li>
+<li>The JSON &quot;omitempty&quot; tag is used in a more places where appropriate.</li>
+<li>The JSON &quot;omitempty&quot; tag of the &quot;taints&quot; field (inside NodeRegistrationOptions) is removed.</li>
+</ul>
+<p>See the Kubernetes 1.15 changelog for further details.</p>
+<p>Migration from old kubeadm config versions</p>
+<p>Please convert your v1beta1 configuration files to v1beta2 using the &quot;kubeadm config migrate&quot; command of kubeadm v1.15.x
+(conversion from older releases of kubeadm config files requires older release of kubeadm as well e.g.</p>
+<ul>
+<li>kubeadm v1.11 should be used to migrate v1alpha1 to v1alpha2; kubeadm v1.12 should be used to translate v1alpha2 to v1alpha3;</li>
+<li>kubeadm v1.13 or v1.14 should be used to translate v1alpha3 to v1beta1)</li>
+</ul>
+<p>Nevertheless, kubeadm v1.15.x will support reading from v1beta1 version of the kubeadm config file format.</p>
+<h2>Basics</h2>
+<p>The preferred way to configure kubeadm is to pass an YAML configuration file with the <code>--config</code> option. Some of the
 configuration options defined in the kubeadm config file are also available as command line flags, but only
-the most common/simple use case are supported with this approach.
-
-A kubeadm config file could contain multiple configuration types separated using three dashes (“---”).
-
-kubeadm supports the following configuration types:
-
-```yaml
-apiVersion: kubeadm.k8s.io/v1beta2
-kind: InitConfiguration
-
-apiVersion: kubeadm.k8s.io/v1beta2
-kind: ClusterConfiguration
-
-apiVersion: kubelet.config.k8s.io/v1beta1
-kind: KubeletConfiguration
-
-apiVersion: kubeproxy.config.k8s.io/v1alpha1
-kind: KubeProxyConfiguration
-
-apiVersion: kubeadm.k8s.io/v1beta2
-kind: JoinConfiguration
-```
-
-To print the defaults for "init" and "join" actions use the following commands:
-
-```shell
-kubeadm config print init-defaults
+the most common/simple use case are supported with this approach.</p>
+<p>A kubeadm config file could contain multiple configuration types separated using three dashes (<code>---</code>).</p>
+<p>kubeadm supports the following configuration types:</p>
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta2<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>InitConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta2<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>ClusterConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubelet.config.k8s.io/v1beta1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeletConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeproxy.config.k8s.io/v1alpha1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeProxyConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta2<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>JoinConfiguration<span style="color:#bbb">
+</span></pre><p>To print the defaults for &quot;init&quot; and &quot;join&quot; actions use the following commands:</p>
+<pre style="background-color:#fff">kubeadm config print init-defaults
 kubeadm config print join-defaults
-```
-
-The list of configuration types that must be included in a configuration file depends by the action you are
-performing (init or join) and by the configuration options you are going to use (defaults or advanced customization).
-
-If some configuration types are not provided, or provided only partially, kubeadm will use default values; defaults
+</pre><p>The list of configuration types that must be included in a configuration file depends by the action you are
+performing (<code>init</code> or <code>join</code>) and by the configuration options you are going to use (defaults or advanced customization).</p>
+<p>If some configuration types are not provided, or provided only partially, kubeadm will use default values; defaults
 provided by kubeadm includes also enforcing consistency of values across components when required (e.g.
-cluster-cidr flag on controller manager and clusterCIDR on kube-proxy).
-
-Users are always allowed to override default values, with the only exception of a small subset of setting with
-relevance for security (e.g. enforce authorization-mode Node and RBAC on api server)
-
-If the user provides a configuration types that is not expected for the action you are performing, kubeadm will
-ignore those types and print a warning.
-
-## Kubeadm init configuration types
-
-When executing kubeadm init with the `--config` option, the following configuration types could be used:
+<code>--cluster-cidr</code> flag on controller manager and <code>clusterCIDR</code> on kube-proxy).</p>
+<p>Users are always allowed to override default values, with the only exception of a small subset of setting with
+relevance for security (e.g. enforce authorization-mode Node and RBAC on API server)</p>
+<p>If the user provides a configuration types that is not expected for the action you are performing, kubeadm will
+ignore those types and print a warning.</p>
+<h2>Kubeadm init configuration types</h2>
+<p>When executing kubeadm init with the <code>--config</code> option, the following configuration types could be used:
 InitConfiguration, ClusterConfiguration, KubeProxyConfiguration, KubeletConfiguration, but only one
-between InitConfiguration and ClusterConfiguration is mandatory.
-
-```yaml
-apiVersion: kubeadm.k8s.io/v1beta2
-kind: InitConfiguration
-bootstrapTokens:
-    ...
-nodeRegistration:
-    ...
-```
-
-The InitConfiguration type should be used to configure runtime settings, that in case of kubeadm init
+between InitConfiguration and ClusterConfiguration is mandatory.</p>
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta2<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>InitConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">bootstrapTokens</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">nodeRegistration</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span></pre><p>The InitConfiguration type should be used to configure runtime settings, that in case of <code>kubeadm init</code>
 are the configuration of the bootstrap token and all the setting which are specific to the node where kubeadm
-is executed, including:
-
-- NodeRegistration, that holds fields that relate to registering the new node to the cluster;
-  use it to customize the node name, the CRI socket to use or any other settings that should apply to this
-  node only (e.g. the node ip).
-
-- LocalAPIEndpoint, that represents the endpoint of the instance of the API server to be deployed on this node;
-  use it e.g. to customize the API server advertise address.
-
-  ```yaml
-  apiVersion: kubeadm.k8s.io/v1beta2
-  kind: ClusterConfiguration
-  networking:
-      ...
-  etcd:
-      ...
-  apiServer:
-    extraArgs:
-      ...
-    extraVolumes:
-      ...
-  ```
-
-The ClusterConfiguration type should be used to configure cluster-wide settings,
-including settings for:
-
-- Networking, that holds configuration for the networking topology of the cluster; use it e.g. to customize
-  pod subnet or services subnet.
-- Etcd configurations; use it e.g. to customize the local etcd or to configure the API server
-  for using an external etcd cluster.
-- kube-apiserver, kube-scheduler, kube-controller-manager configurations; use it to customize control-plane
-  components by adding customized setting or overriding kubeadm default settings.
-
-  ```yaml
-  apiVersion: kubeproxy.config.k8s.io/v1alpha1
-  kind: KubeProxyConfiguration
-     ...
-  ```
-
-The KubeProxyConfiguration type should be used to change the configuration passed to kube-proxy instances deployed
-in the cluster. If this object is not provided or provided only partially, kubeadm applies defaults.
-
-See https://kubernetes.io/docs/reference/command-line-tools-reference/kube-proxy/ or https://godoc.org/k8s.io/kube-proxy/config/v1alpha1#KubeProxyConfiguration
-for kube proxy official documentation.
-
-```yaml
-apiVersion: kubelet.config.k8s.io/v1beta1
-kind: KubeletConfiguration
-...
-```
-
-The KubeletConfiguration type should be used to change the configurations that will be passed to all kubelet instances
-deployed in the cluster. If this object is not provided or provided only partially, kubeadm applies defaults.
-
-See https://kubernetes.io/docs/reference/command-line-tools-reference/kubelet/ or https://godoc.org/k8s.io/kubelet/config/v1beta1#KubeletConfiguration
-for kubelet official documentation.
-
-Here is a fully populated example of a single YAML file containing multiple
-configuration types to be used during a `kubeadm init` run.
-
-```yaml
-apiVersion: kubeadm.k8s.io/v1beta2
-kind: InitConfiguration
-bootstrapTokens:
-  - token: "9a08jv.c0izixklcxtmnze7"
-    description: "kubeadm bootstrap token"
-    ttl: "24h"
-  - token: "783bde.3f89s0fje9f38fhf"
-    description: "another bootstrap token"
-    usages:
-      - authentication
-      - signing
-    groups:
-      - system:bootstrappers:kubeadm:default-node-token
-nodeRegistration:
-  name: "ec2-10-100-0-1"
-  criSocket: "/var/run/dockershim.sock"
-  taints:
-    - key: "kubeadmNode"
-      value: "master"
-      effect: "NoSchedule"
-  kubeletExtraArgs:
-    cgroup-driver: "cgroupfs"
-  ignorePreflightErrors:
-    - IsPrivilegedUser
-localAPIEndpoint:
-  advertiseAddress: "10.100.0.1"
-  bindPort: 6443
-certificateKey: "e6a2eb8581237ab72a4f494f30285ec12a9694d750b9785706a83bfcbbbd2204"
----
-apiVersion: kubeadm.k8s.io/v1beta2
-kind: ClusterConfiguration
-etcd:
-  # one of local or external
-  local:
-    imageRepository: "k8s.gcr.io"
-    imageTag: "3.2.24"
-    dataDir: "/var/lib/etcd"
-    extraArgs:
-      listen-client-urls: "http://10.100.0.1:2379"
-    serverCertSANs:
-      - "ec2-10-100-0-1.compute-1.amazonaws.com"
-    peerCertSANs:
-      - "10.100.0.1"
-  # external:
-    # endpoints:
-    # - "10.100.0.1:2379"
-    # - "10.100.0.2:2379"
-    # caFile: "/etcd/kubernetes/pki/etcd/etcd-ca.crt"
-    # certFile: "/etcd/kubernetes/pki/etcd/etcd.crt"
-    # keyFile: "/etcd/kubernetes/pki/etcd/etcd.key"
- networking:
-   serviceSubnet: "10.96.0.0/12"
-   podSubnet: "10.100.0.1/24"
-   dnsDomain: "cluster.local"
- kubernetesVersion: "v1.12.0"
- controlPlaneEndpoint: "10.100.0.1:6443"
- apiServer:
-   extraArgs:
-     authorization-mode: "Node,RBAC"
-   extraVolumes:
-     - name: "some-volume"
-       hostPath: "/etc/some-path"
-       mountPath: "/etc/some-pod-path"
-       readOnly: false
-       pathType: File
-   certSANs:
-     - "10.100.1.1"
-     - "ec2-10-100-0-1.compute-1.amazonaws.com"
-   timeoutForControlPlane: 4m0s
- controllerManager:
-   extraArgs:
-     "node-cidr-mask-size": "20"
-   extraVolumes:
-     - name: "some-volume"
-       hostPath: "/etc/some-path"
-       mountPath: "/etc/some-pod-path"
-       readOnly: false
-       pathType: File
- scheduler:
-   extraArgs:
-     address: "10.100.0.1"
-   extraVolumes:
-     - name: "some-volume"
-       hostPath: "/etc/some-path"
-       mountPath: "/etc/some-pod-path"
-       readOnly: false
-       pathType: File
-certificatesDir: "/etc/kubernetes/pki"
-imageRepository: "k8s.gcr.io"
-useHyperKubeImage: false
-clusterName: "example-cluster"
----
-apiVersion: kubelet.config.k8s.io/v1beta1
-kind: KubeletConfiguration
-# kubelet specific options here
----
-apiVersion: kubeproxy.config.k8s.io/v1alpha1
-kind: KubeProxyConfiguration
-# kube-proxy specific options here
-```
-
-## Kubeadm join configuration types
-
-When executing kubeadm join with the `--config` option, the JoinConfiguration type should be provided.
-
-```yaml
-apiVersion: kubeadm.k8s.io/v1beta2
-kind: JoinConfiguration
-...
-```
-
-The JoinConfiguration type should be used to configure runtime settings, that in case of kubeadm join
+is executed, including:</p>
+<ul>
+<li>
+<p><code>nodeRegistration</code>, that holds fields that relate to registering the new node to the cluster;
+use it to customize the node name, the CRI socket to use or any other settings that should apply to this
+node only (e.g. the node ip).</p>
+</li>
+<li>
+<p><code>apiServer</code>, that represents the endpoint of the instance of the API server to be deployed on this node;
+use it e.g. to customize the API server advertise address.</p>
+</li>
+</ul>
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta2<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>ClusterConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">networking</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>...<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">etcd</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>...<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiServer</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>...<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraVolumes</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>...<span style="color:#bbb">
+</span><span style="color:#bbb"></span>...<span style="color:#bbb">
+</span></pre><p>The ClusterConfiguration type should be used to configure cluster-wide settings,
+including settings for:</p>
+<ul>
+<li>
+<p>Networking, that holds configuration for the networking topology of the cluster; use it e.g. to customize
+pod subnet or services subnet.</p>
+</li>
+<li>
+<p>Etcd configurations; use it e.g. to customize the local etcd or to configure the API server
+for using an external etcd cluster.</p>
+</li>
+<li>
+<p>kube-apiserver, kube-scheduler, kube-controller-manager configurations; use it to customize control-plane
+components by adding customized setting or overriding kubeadm default settings.</p>
+</li>
+</ul>
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeproxy.config.k8s.io/v1alpha1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeProxyConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span></pre><p>The KubeProxyConfiguration type should be used to change the configuration passed to kube-proxy instances deployed
+in the cluster. If this object is not provided or provided only partially, kubeadm applies defaults.</p>
+<p>See https://kubernetes.io/docs/reference/command-line-tools-reference/kube-proxy/ or
+https://pkg.go.dev/k8s.io/kube-proxy/config/v1alpha1#KubeProxyConfiguration
+for kube proxy official documentation.</p>
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubelet.config.k8s.io/v1beta1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeletConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span></pre><p>The KubeletConfiguration type should be used to change the configurations that will be passed to all kubelet instances
+deployed in the cluster. If this object is not provided or provided only partially, kubeadm applies defaults.</p>
+<p>See https://kubernetes.io/docs/reference/command-line-tools-reference/kubelet/ or
+https://pkg.go.dev/k8s.io/kubelet/config/v1beta1#KubeletConfiguration
+for kubelet official documentation.</p>
+<p>Here is a fully populated example of a single YAML file containing multiple
+configuration types to be used during a <code>kubeadm init</code> run.</p>
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta2<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>InitConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">bootstrapTokens</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- <span style="color:#000;font-weight:bold">token</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;9a08jv.c0izixklcxtmnze7&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">description</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;kubeadm bootstrap token&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">ttl</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;24h&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- <span style="color:#000;font-weight:bold">token</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;783bde.3f89s0fje9f38fhf&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">description</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;another bootstrap token&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">usages</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">      </span>- authentication<span style="color:#bbb">
+</span><span style="color:#bbb">      </span>- signing<span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">groups</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">      </span>- system:bootstrappers:kubeadm:default-node-token<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">nodeRegistration</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">name</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;ec2-10-100-0-1&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">criSocket</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/var/run/dockershim.sock&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">taints</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>- <span style="color:#000;font-weight:bold">key</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;kubeadmNode&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">value</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;someValue&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">effect</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;NoSchedule&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">kubeletExtraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">v</span>:<span style="color:#bbb"> </span><span style="color:#099">4</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">ignorePreflightErrors</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>- IsPrivilegedUser<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">localAPIEndpoint</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">advertiseAddress</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;10.100.0.1&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">bindPort</span>:<span style="color:#bbb"> </span><span style="color:#099">6443</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">certificateKey</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;e6a2eb8581237ab72a4f494f30285ec12a9694d750b9785706a83bfcbbbd2204&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span>---<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta2<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>ClusterConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">etcd</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#998;font-style:italic"># one of local or external</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">local</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">imageRepository</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;k8s.gcr.io&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">imageTag</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;3.2.24&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">dataDir</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/var/lib/etcd&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">extraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">listen-client-urls</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;http://10.100.0.1:2379&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">serverCertSANs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">      </span>- <span style="color:#bbb"> </span><span style="color:#d14">&#34;ec2-10-100-0-1.compute-1.amazonaws.com&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">peerCertSANs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">      </span>- <span style="color:#d14">&#34;10.100.0.1&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#998;font-style:italic"># external:</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#998;font-style:italic">#   endpoints:</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#998;font-style:italic">#     - &#34;10.100.0.1:2379&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#998;font-style:italic">#     - &#34;10.100.0.2:2379&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#998;font-style:italic">#   caFile: &#34;/etcd/kubernetes/pki/etcd/etcd-ca.crt&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#998;font-style:italic">#   certFile: &#34;/etcd/kubernetes/pki/etcd/etcd.crt&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#998;font-style:italic">#   keyFile: &#34;/etcd/kubernetes/pki/etcd/etcd.key&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">networking</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">serviceSubnet</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;10.96.0.0/16&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">podSubnet</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;10.244.0.0/24&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">dnsDomain</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;cluster.local&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kubernetesVersion</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;v1.12.0&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">controlPlaneEndpoint</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;10.100.0.1:6443&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiServer</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">authorization-mode</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;Node,RBAC&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraVolumes</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>- <span style="color:#000;font-weight:bold">name</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;some-volume&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">hostPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">mountPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-pod-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">readOnly</span>:<span style="color:#bbb"> </span><span style="color:#000;font-weight:bold">false</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">pathType</span>:<span style="color:#bbb"> </span>File<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">certSANs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>- <span style="color:#d14">&#34;10.100.1.1&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span>- <span style="color:#d14">&#34;ec2-10-100-0-1.compute-1.amazonaws.com&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">timeoutForControlPlane</span>:<span style="color:#bbb"> </span>4m0s<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">controllerManager</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">&#34;node-cidr-mask-size&#34;: </span><span style="color:#d14">&#34;20&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraVolumes</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>- <span style="color:#000;font-weight:bold">name</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;some-volume&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">hostPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">mountPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-pod-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">readOnly</span>:<span style="color:#bbb"> </span><span style="color:#000;font-weight:bold">false</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">pathType</span>:<span style="color:#bbb"> </span>File<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">scheduler</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">address</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;10.100.0.1&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraVolumes</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>- <span style="color:#000;font-weight:bold">name</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;some-volume&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">hostPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">mountPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-pod-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">readOnly</span>:<span style="color:#bbb"> </span><span style="color:#000;font-weight:bold">false</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">pathType</span>:<span style="color:#bbb"> </span>File<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">certificatesDir</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/kubernetes/pki&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">imageRepository</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;k8s.gcr.io&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">useHyperKubeImage</span>:<span style="color:#bbb"> </span><span style="color:#000;font-weight:bold">false</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">clusterName</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;example-cluster&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span>---<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubelet.config.k8s.io/v1beta1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeletConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#998;font-style:italic"># kubelet specific options here</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span>---<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeproxy.config.k8s.io/v1alpha1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeProxyConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#998;font-style:italic"># kube-proxy specific options here</span><span style="color:#bbb">
+</span></pre><h2>Kubeadm join configuration types</h2>
+<p>When executing kubeadm join with the <code>--config</code> option, the JoinConfiguration type should be provided.</p>
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta2<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>JoinConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span></pre><p>The JoinConfiguration type should be used to configure runtime settings, that in case of <code>kubeadm join</code>
 are the discovery method used for accessing the cluster info and all the setting which are specific
-to the node where kubeadm is executed, including:
+to the node where kubeadm is executed, including:</p>
+<ul>
+<li>
+<p><code>NodeRegistration</code>, that holds fields that relate to registering the new node to the cluster;
+use it to customize the node name, the CRI socket to use or any other settings that should apply to this
+node only (e.g. the node IP).</p>
+</li>
+<li>
+<p><code>APIEndpoint</code>, that represents the endpoint of the instance of the API server to be eventually deployed on this node.</p>
+</li>
+</ul>
 
-- NodeRegistration, that holds fields that relate to registering the new node to the cluster;
-  use it to customize the node name, the CRI socket to use or any other settings that should apply to this
-  node only (e.g. the node ip).
-
-- APIEndpoint, that represents the endpoint of the instance of the API server to be eventually deployed on this node.
 
 ## Resource Types 
 
@@ -281,15 +254,13 @@ to the node where kubeadm is executed, including:
   
     
 
-
 ## `ClusterConfiguration`     {#kubeadm-k8s-io-v1beta2-ClusterConfiguration}
     
 
 
+<p>ClusterConfiguration contains cluster-wide configuration for a kubeadm cluster</p>
 
 
-ClusterConfiguration contains cluster-wide configuration for a kubeadm cluster
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -297,146 +268,130 @@ ClusterConfiguration contains cluster-wide configuration for a kubeadm cluster
 <tr><td><code>apiVersion</code><br/>string</td><td><code>kubeadm.k8s.io/v1beta2</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>ClusterConfiguration</code></td></tr>
     
-
-  
   
 <tr><td><code>etcd</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-Etcd"><code>Etcd</code></a>
 </td>
 <td>
-   `etcd` holds configuration for etcd.</td>
+   <p><code>etcd</code> holds configuration for etcd.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>networking</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-Networking"><code>Networking</code></a>
 </td>
 <td>
-   `networking` holds configuration for the networking topology of the cluster.</td>
+   <p><code>networking</code> holds configuration for the networking topology of the cluster.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>kubernetesVersion</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `kubernetesVersion` is the target version of the control plane.</td>
+   <p><code>kubernetesVersion</code> is the target version of the control plane.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>controlPlaneEndpoint</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `controlPlaneEndpoint` sets a stable IP address or DNS name for the control plane; it
+   <p><code>controlPlaneEndpoint</code> sets a stable IP address or DNS name for the control plane; it
 can be a valid IP address or a RFC-1123 DNS subdomain, both with optional TCP port.
-In case the ControlPlaneEndpoint is not specified, the AdvertiseAddress + BindPort
-are used; in case the ControlPlaneEndpoint is specified but without a TCP port,
-the BindPort is used.
-Possible usages are:
-
-- In a cluster with more than one control plane instances, this field should be
-  assigned the address of the external load balancer in front of the
-  control plane instances.
-- In environments with enforced node recycling, the ControlPlaneEndpoint
-  could be used for assigning a stable DNS to the control plane.</td>
+In case the <code>controlPlaneEndpoint</code> is not specified, the <code>advertiseAddress</code> + <code>bindPort</code>
+are used; in case the <code>controlPlaneEndpoint</code> is specified but without a TCP port,
+the <code>bindPort</code> is used.
+Possible usages are:</p>
+<ul>
+<li>In a cluster with more than one control plane instances, this field should be
+assigned the address of the external load balancer in front of the
+control plane instances.</li>
+<li>In environments with enforced node recycling, the <code>controlPlaneEndpoint</code>
+could be used for assigning a stable DNS to the control plane.</li>
+</ul>
+</td>
 </tr>
-    
-  
 <tr><td><code>apiServer</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-APIServer"><code>APIServer</code></a>
 </td>
 <td>
-   `apiServer` contains extra settings for the API server.</td>
+   <p><code>apiServer</code> contains extra settings for the API server.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>controllerManager</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-ControlPlaneComponent"><code>ControlPlaneComponent</code></a>
 </td>
 <td>
-   `controllerManager` contains extra settings for the controller manager.</td>
+   <p><code>controllerManager</code> contains extra settings for the controller manager.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>scheduler</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-ControlPlaneComponent"><code>ControlPlaneComponent</code></a>
 </td>
 <td>
-   `scheduler` contains extra settings for the scheduler.</td>
+   <p><code>scheduler</code> contains extra settings for the scheduler.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>dns</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-DNS"><code>DNS</code></a>
 </td>
 <td>
-   `dns` defines the options for the DNS add-on.</td>
+   <p><code>dns</code> defines the options for the DNS add-on installed in the cluster.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>certificatesDir</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `certificatesDir` specifies where to store or look for all required certificates.</td>
+   <p><code>certificatesDir</code> specifies where to store or look for all required certificates.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>imageRepository</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `imageRepository` sets the container registry to pull images from.
-If empty, `k8s.gcr.io` will be used by default; in case of kubernetes version is
-a CI build (kubernetes version starts with `ci/` or `ci-cross/`)
-`gcr.io/k8s-staging-ci-images` will be used as a default for control plane
-components and for kube-proxy, while `k8s.gcr.io` will be used for all the other images.</td>
+   <p><code>imageRepository</code> sets the container registry to pull images from.
+If empty, <code>k8s.gcr.io</code> will be used by default; in case of kubernetes version is
+a CI build (kubernetes version starts with <code>ci/</code>) <code>gcr.io/k8s-staging-ci-images</code>
+is used as a default for control plane components and for kube-proxy, while
+<code>k8s.gcr.io</code> will be used for all the other images.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>useHyperKubeImage</code> <B>[Required]</B><br/>
 <code>bool</code>
 </td>
 <td>
-   `useHyperKubeImage` controls if hyperkube should be used for Kubernetes
-components instead of their respective separate images
-DEPRECATED: As hyperkube is itself deprecated, this fields is too. It will
-be removed in future kubeadm config versions, kubeadm will print multiple
-warnings when this is set to true, and at some point it may become ignored.</td>
+   <p><code>useHyperKubeImage</code> controls if hyperkube should be used for Kubernetes components
+instead of their respective separate images.
+DEPRECATED: As <code>hyperkube</code> is itself deprecated, this fields is too. It will be
+removed in future kubeadm config versions, kubeadm will print multiple warnings
+when this set to true, and at some point it may become ignored.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>featureGates</code> <B>[Required]</B><br/>
 <code>map[string]bool</code>
 </td>
 <td>
-   Feature gates enabled by the user.</td>
+   <p><code>featureGates</code> contains the feature gates enabled by the user.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>clusterName</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   The cluster name</td>
+   <p>The cluster name.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `ClusterStatus`     {#kubeadm-k8s-io-v1beta2-ClusterStatus}
     
 
 
+<p>ClusterStatus contains the cluster status. The ClusterStatus will be stored in
+the kubeadm-config ConfigMap in the cluster, and then updated by kubeadm when
+additional control plane instance joins or leaves the cluster.</p>
 
 
-ClusterStatus contains the cluster status. The ClusterStatus will be stored in the kubeadm-config
-ConfigMap in the cluster, and then updated by kubeadm when additional control plane instance joins or leaves the cluster.
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -444,32 +399,27 @@ ConfigMap in the cluster, and then updated by kubeadm when additional control pl
 <tr><td><code>apiVersion</code><br/>string</td><td><code>kubeadm.k8s.io/v1beta2</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>ClusterStatus</code></td></tr>
     
-
-  
   
 <tr><td><code>apiEndpoints</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-APIEndpoint"><code>map[string]github.com/tengqm/kubeconfig/config/kubeadm/v1beta2.APIEndpoint</code></a>
 </td>
 <td>
-   `apiEndpoints` currently available in the cluster, one for each control
-plane/API server instance. The key of the map is the IP of the host's default interface</td>
+   <p><code>apiEndpoints</code> currently available in the cluster, one for each control
+plane/API server instance.
+The key of the map is the IP of the host's default interface.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `InitConfiguration`     {#kubeadm-k8s-io-v1beta2-InitConfiguration}
     
 
 
+<p>InitConfiguration contains a list of elements that is specific &quot;kubeadm init&quot;-only runtime
+information.</p>
 
 
-InitConfiguration contains a list of elements that is specific "kubeadm init"-only runtime
-information.
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -477,61 +427,52 @@ information.
 <tr><td><code>apiVersion</code><br/>string</td><td><code>kubeadm.k8s.io/v1beta2</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>InitConfiguration</code></td></tr>
     
-
-  
   
 <tr><td><code>bootstrapTokens</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-BootstrapToken"><code>[]BootstrapToken</code></a>
 </td>
 <td>
-   `bootstrapTokens` is respected at `kubeadm init` time and describes a set of Bootstrap Tokens to create.
-This information IS NOT uploaded to the kubeadm cluster configmap, partly because of its sensitive nature</td>
+   <p><code>bootstrapTokens</code> is respected at <code>kubeadm init</code> time and describes a set of bootstrap tokens to create.
+This information IS NOT uploaded to the kubeadm cluster ConfigMap, partly because of its sensitive nature.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>nodeRegistration</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-NodeRegistrationOptions"><code>NodeRegistrationOptions</code></a>
 </td>
 <td>
-   `nodeRegistration` holds fields that relate to registering the new control-plane node to the cluster</td>
+   <p><code>nodeRegistration</code> holds fields that relate to registering the new control-plane node to the cluster.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>localAPIEndpoint</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-APIEndpoint"><code>APIEndpoint</code></a>
 </td>
 <td>
-   `localAPIEndpoint` represents the endpoint of the API server instance that's deployed on this control plane node
-In HA setups, this differs from ClusterConfiguration.ControlPlaneEndpoint in the sense that ControlPlaneEndpoint
-is the global endpoint for the cluster, which then loadbalances the requests to each individual API server. This
+   <p><code>localAPIEndpoint</code> represents the endpoint of the API server instance that's deployed on this control plane node.
+In HA setups, this differs from <code>ClusterConfiguration.controlPlaneEndpoint</code> in the sense that ControlPlaneEndpoint
+is the global endpoint for the cluster, which then load-balances the requests to each individual API server. This
 configuration object lets you customize what IP/DNS name and port the local API server advertises it's accessible
 on. By default, kubeadm tries to auto-detect the IP of the default interface and use that, but in case that process
-fails you may set the desired value here.</td>
+fails you may set the desired value here.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>certificateKey</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `certificateKey` sets the key with which certificates and keys are encrypted prior to being uploaded in
-a Secret in the cluster during the "uploadcerts" init phase.</td>
+   <p><code>certificateKey</code> sets the key with which certificates and keys are encrypted prior to being uploaded in
+a secret in the cluster during the <code>uploadcerts init</code> phase.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `JoinConfiguration`     {#kubeadm-k8s-io-v1beta2-JoinConfiguration}
     
 
 
+<p>JoinConfiguration contains elements describing a particular node.</p>
 
 
-JoinConfiguration contains elements describing a particular node.
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -539,56 +480,46 @@ JoinConfiguration contains elements describing a particular node.
 <tr><td><code>apiVersion</code><br/>string</td><td><code>kubeadm.k8s.io/v1beta2</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>JoinConfiguration</code></td></tr>
     
-
-  
   
 <tr><td><code>nodeRegistration</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-NodeRegistrationOptions"><code>NodeRegistrationOptions</code></a>
 </td>
 <td>
-   `nodeRegistration` holds fields that relate to registering the new control-plane
-node to the cluster</td>
+   <p><code>nodeRegistration</code> holds fields that relate to registering the new
+control-plane node to the cluster</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>caCertPath</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `caCertPath` is the path to the SSL certificate authority used to
-secure comunications between node and control-plane.
-Defaults to "/etc/kubernetes/pki/ca.crt".</td>
+   <p><code>caCertPath</code> is the path to the SSL certificate authority used to
+secure comunications between a node and the control-plane.
+Defaults to &quot;/etc/kubernetes/pki/ca.crt&quot;.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>discovery</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-Discovery"><code>Discovery</code></a>
 </td>
 <td>
-   `discovery` specifies the options for the kubelet to use during the TLS Bootstrap
-process</td>
+   <p><code>discovery</code> specifies the options for the kubelet to use during the TLS
+bootstrap process.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>controlPlane</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-JoinControlPlane"><code>JoinControlPlane</code></a>
 </td>
 <td>
-   `controlPlane` defines the additional control plane instance to be deployed on the
-joining node. If nil, no additional control plane instance will be deployed.</td>
+   <p><code>controlPlane</code> defines the additional control plane instance to be deployed
+on the joining node. If nil, no additional control plane instance will be deployed.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `APIEndpoint`     {#kubeadm-k8s-io-v1beta2-APIEndpoint}
     
 
-
-
 **Appears in:**
 
 - [ClusterStatus](#kubeadm-k8s-io-v1beta2-ClusterStatus)
@@ -598,272 +529,233 @@ joining node. If nil, no additional control plane instance will be deployed.</td
 - [JoinControlPlane](#kubeadm-k8s-io-v1beta2-JoinControlPlane)
 
 
-APIEndpoint struct contains elements of API server instance deployed on a node.
+<p>APIEndpoint struct contains elements of API server instance deployed on a node.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>advertiseAddress</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `advertiseAddress` sets the IP address for the API server to advertise.</td>
+   <p><code>advertiseAddress</code> sets the IP address for the API server to advertise.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>bindPort</code> <B>[Required]</B><br/>
 <code>int32</code>
 </td>
 <td>
-   `bindPort` sets the secure port for the API Server to bind to. Defaults to 6443.</td>
+   <p><code>bindPort</code> sets the secure port for the API Server to bind to.
+Defaults to 6443.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `APIServer`     {#kubeadm-k8s-io-v1beta2-APIServer}
     
 
-
-
 **Appears in:**
 
 - [ClusterConfiguration](#kubeadm-k8s-io-v1beta2-ClusterConfiguration)
 
 
-APIServer holds settings necessary for API server deployments in the cluster
+<p>APIServer holds settings necessary for API server deployments in the cluster.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>ControlPlaneComponent</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-ControlPlaneComponent"><code>ControlPlaneComponent</code></a>
 </td>
 <td>(Members of <code>ControlPlaneComponent</code> are embedded into this type.)
-   <span class="text-muted">No description provided.</span>
-   </td>
+   <span class="text-muted">No description provided.</span></td>
 </tr>
-    
-  
 <tr><td><code>certSANs</code> <B>[Required]</B><br/>
 <code>[]string</code>
 </td>
 <td>
-   `certSANs` sets extra Subject Alternative Names for the API Server signing cert.</td>
+   <p><code>certSANs</code> sets extra Subject Alternative Names (SANs) for the API Server
+signing certificate.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>timeoutForControlPlane</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   `timeoutForControlPlane` controls the timeout that we use for API server to appear</td>
+   <p><code>timeoutForControlPlane</code> controls the timeout that we wait for the API server
+to appear.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `BootstrapToken`     {#kubeadm-k8s-io-v1beta2-BootstrapToken}
     
 
-
-
 **Appears in:**
 
 - [InitConfiguration](#kubeadm-k8s-io-v1beta2-InitConfiguration)
 
 
-BootstrapToken describes one bootstrap token, stored as a Secret in the cluster
+<p>BootstrapToken describes one bootstrap token, stored as a Secret in the cluster</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>token</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-BootstrapTokenString"><code>BootstrapTokenString</code></a>
 </td>
 <td>
-   `token` used for establishing bidirectional trust between nodes and control-planes.
-Used for joining nodes in the cluster.</td>
+   <p><code>token</code> is used for establishing bidirectional trust between nodes and control-planes.
+Used for joining nodes in the cluster.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>description</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `description` sets a human-friendly message why this token exists and what it's used
-for, so other administrators can know its purpose.</td>
+   <p><code>description</code> sets a human-friendly message why this token exists and what it's used
+for, so other administrators can know its purpose.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>ttl</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   `ttl` defines the time to live for this token. Defaults to "24h".
-`expires` and `ttl` are mutually exclusive.</td>
+   <p><code>ttl</code> defines the time to live for this token. Defaults to '24h'.
+<code>expires</code> and <code>ttl</code> are mutually exclusive.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>expires</code> <B>[Required]</B><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#time-v1-meta"><code>meta/v1.Time</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#time-v1-meta"><code>meta/v1.Time</code></a>
 </td>
 <td>
-   `expires` specifies the timestamp when this token expires. Defaults to being set
-dynamically at runtime based on the `ttl`. `expires` and `ttl` are mutually exclusive.</td>
+   <p><code>expires</code> specifies the timestamp when this token expires. Defaults to being set
+dynamically at runtime based on the <code>ttl</code>. <code>expires</code> and <code>ttl</code> are mutually exclusive.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>usages</code> <B>[Required]</B><br/>
 <code>[]string</code>
 </td>
 <td>
-   `usages` describes the ways in which this token can be used. Can by default be used
-for establishing bidirectional trust, but that can be changed here.</td>
+   <p><code>usages</code> describes the ways in which this token can be used. Can by default be used
+for establishing bidirectional trust, but that can be changed here.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>groups</code> <B>[Required]</B><br/>
 <code>[]string</code>
 </td>
 <td>
-   `groups` specifies the extra groups that this token will authenticate as when/if
-used for authentication</td>
+   <p><code>groups</code> specifies the extra groups that this token will authenticate as when/if
+used for authentication.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `BootstrapTokenDiscovery`     {#kubeadm-k8s-io-v1beta2-BootstrapTokenDiscovery}
     
 
-
-
 **Appears in:**
 
 - [Discovery](#kubeadm-k8s-io-v1beta2-Discovery)
 
 
-BootstrapTokenDiscovery is used to set the options for bootstrap token based discovery
+<p>BootstrapTokenDiscovery is used to set the options for bootstrap token based discovery</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>token</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `token` is a token used to validate cluster information fetched from the control-plane.</td>
+   <p><code>token</code> is a token used to validate cluster information fetched from
+the control-plane.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>apiServerEndpoint</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `apiServerEndpoint` is an IP or domain name to the API server from which
-information will be fetched.</td>
+   <p><code>apiServerEndpoint</code> is an IP or domain name to the API server from which information
+will be fetched.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>caCertHashes</code> <B>[Required]</B><br/>
 <code>[]string</code>
 </td>
 <td>
-   discovery is used. The root CA found during discovery must match one of these
-values. Specifying an empty set disables root CA pinning, which can be unsafe.
-Each hash is specified as `<type>:<value>`, where the only currently supported
-type is "sha256". This is a hex-encoded SHA-256 hash of the Subject Public Key
-Info (SPKI) object in DER-encoded ASN.1. These hashes can be calculated using,
-for example, OpenSSL.</td>
+   <p><code>caCertHashes</code> specifies a set of public key pins to verify when token-based discovery
+is used. The root CA found during discovery must match one of these values.
+Specifying an empty set disables root CA pinning, which can be unsafe.
+Each hash is specified as &quot;<!-- raw HTML omitted -->:<!-- raw HTML omitted -->&quot;, where the only currently supported type is &quot;sha256&quot;.
+This is a hex-encoded SHA-256 hash of the Subject Public Key Info (SPKI) object in
+DER-encoded ASN.1. These hashes can be calculated using, for example, OpenSSL.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>unsafeSkipCAVerification</code> <B>[Required]</B><br/>
 <code>bool</code>
 </td>
 <td>
-   `unsafeSkipCAVerification` allows token-based discovery without CA verification
-via `caCertHashes`. This can weaken the security of kubeadm since other nodes
-can impersonate the control-plane.</td>
+   <p><code>unsafeSkipCAVerification</code> allows token-based discovery without CA verification via
+<code>caCertHashes</code>. This can weaken the security of kubeadm since other nodes can
+impersonate the control-plane.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `BootstrapTokenString`     {#kubeadm-k8s-io-v1beta2-BootstrapTokenString}
     
 
-
-
 **Appears in:**
 
 - [BootstrapToken](#kubeadm-k8s-io-v1beta2-BootstrapToken)
 
 
-BootstrapTokenString is a token of the format abcdef.abcdef0123456789 that is used
+<p>BootstrapTokenString is a token of the format abcdef.abcdef0123456789 that is used
 for both validation of the practically of the API server from a joining node's point
 of view and as an authentication method for the node in the bootstrap phase of
-"kubeadm join". This token is and should be short-lived
+&quot;kubeadm join&quot;. This token is and should be short-lived</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>-</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   <span class="text-muted">No description provided.</span>
-   </td>
+   <span class="text-muted">No description provided.</span></td>
 </tr>
-    
-  
 <tr><td><code>-</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   <span class="text-muted">No description provided.</span>
-   </td>
+   <span class="text-muted">No description provided.</span></td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `ControlPlaneComponent`     {#kubeadm-k8s-io-v1beta2-ControlPlaneComponent}
     
 
-
-
 **Appears in:**
 
 - [ClusterConfiguration](#kubeadm-k8s-io-v1beta2-ClusterConfiguration)
@@ -871,351 +763,305 @@ of view and as an authentication method for the node in the bootstrap phase of
 - [APIServer](#kubeadm-k8s-io-v1beta2-APIServer)
 
 
-ControlPlaneComponent holds settings common to control plane component of the cluster
+<p>ControlPlaneComponent holds settings common to control plane component of the cluster</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>extraArgs</code> <B>[Required]</B><br/>
 <code>map[string]string</code>
 </td>
 <td>
-   `extraArgs` is an extra set of flags to pass to the control plane component.</td>
+   <p><code>extraArgs</code> is an extra set of flags to pass to a control plane component.
+A key in this map is the flag name as it appears on the command line except
+without leading dash(es).</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>extraVolumes</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-HostPathMount"><code>[]HostPathMount</code></a>
 </td>
 <td>
-   `extraVolumes` is an extra set of host volumes, mounted to the control plane component.</td>
+   <p><code>extraVolumes</code> is an extra set of host volumes mounted to the control plane
+component.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `DNS`     {#kubeadm-k8s-io-v1beta2-DNS}
     
 
-
-
 **Appears in:**
 
 - [ClusterConfiguration](#kubeadm-k8s-io-v1beta2-ClusterConfiguration)
 
 
-DNS defines the DNS addon that should be used in the cluster
+<p>DNS defines the DNS addon that should be used in the cluster</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>type</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-DNSAddOnType"><code>DNSAddOnType</code></a>
 </td>
 <td>
-   `type` defines the DNS add-on to use.</td>
+   <p><code>type</code> defines the DNS add-on to be used.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>ImageMeta</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-ImageMeta"><code>ImageMeta</code></a>
 </td>
 <td>(Members of <code>ImageMeta</code> are embedded into this type.)
-   `imageMeta` allows to customize the image used for the DNS.</td>
+   <p>ImageMeta allows to customize the image used for the DNS component</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `DNSAddOnType`     {#kubeadm-k8s-io-v1beta2-DNSAddOnType}
     
 (Alias of `string`)
 
-
 **Appears in:**
 
 - [DNS](#kubeadm-k8s-io-v1beta2-DNS)
 
 
-DNSAddOnType defines string identifying DNS add-on types
+<p>DNSAddOnType defines string identifying DNS add-on types.</p>
 
 
-    
 
 
 ## `Discovery`     {#kubeadm-k8s-io-v1beta2-Discovery}
     
 
-
-
 **Appears in:**
 
 - [JoinConfiguration](#kubeadm-k8s-io-v1beta2-JoinConfiguration)
 
 
-Discovery specifies the options for the kubelet to use during the TLS Bootstrap process
+<p>Discovery specifies the options for the kubelet to use during the TLS Bootstrap process</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>bootstrapToken</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-BootstrapTokenDiscovery"><code>BootstrapTokenDiscovery</code></a>
 </td>
 <td>
-   `bootstrapToken` is used to set the options for bootstrap token based discovery.
-`bootstrapToken` and `file` are mutually exclusive.</td>
+   <p><code>bootstrapToken</code> is used to set the options for bootstrap token based discovery.
+<code>bootstrapToken</code> and <code>file</code> are mutually exclusive.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>file</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-FileDiscovery"><code>FileDiscovery</code></a>
 </td>
 <td>
-   `file` specifies a file or URL to a kubeconfig file from which to load cluster information.
-`bootstrapToken` and `file` are mutually exclusive.</td>
+   <p><code>file</code> is used to specify a file or URL to a kubeconfig file from which to load
+cluster information.
+<code>bootstrapToken</code> and <code>file</code> are mutually exclusive.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>tlsBootstrapToken</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `tlsBootstrapToken` is a token used for TLS bootstrapping.
-If `bootstrapToken` is set, this field is defaulted to `bootstrapToken.token`,
+   <p><code>tlsBootstrapToken</code> is a token used for TLS bootstrapping.
+If <code>bootstrapToken</code> is set, this field is defaulted to <code>.bootstrapToken.token</code>,
 but can be overridden.
-If `file` is set, this field &lowast;&lowast;must be set&lowast;&lowast; in case the KubeConfigFile does
-not contain any other authentication information</td>
+If <code>file</code> is set, this field <strong>must be set</strong> in case the KubeConfigFile does not
+contain any other authentication information.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>timeout</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   `timeout` modifies the discovery timeout.</td>
+   <p><code>timeout</code> modifies the discovery timeout.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `Etcd`     {#kubeadm-k8s-io-v1beta2-Etcd}
     
 
-
-
 **Appears in:**
 
 - [ClusterConfiguration](#kubeadm-k8s-io-v1beta2-ClusterConfiguration)
 
 
-Etcd contains elements describing Etcd configuration.
+<p>Etcd contains elements describing Etcd configuration.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>local</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-LocalEtcd"><code>LocalEtcd</code></a>
 </td>
 <td>
-   `local` provides configuration knobs for configuring the local etcd instance.
-`local` and `external` are mutually exclusive.</td>
+   <p><code>local</code> provides configuration knobs for configuring the local etcd instance.
+<code>local</code> and <code>external</code> are mutually exclusive.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>external</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-ExternalEtcd"><code>ExternalEtcd</code></a>
 </td>
 <td>
-   `external` describes how to connect to an external etcd cluster.
-`local` and `external` are mutually exclusive.</td>
+   <p><code>external</code> describes how to connect to an external etcd cluster.
+<code>local</code> and <code>external</code> are mutually exclusive.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `ExternalEtcd`     {#kubeadm-k8s-io-v1beta2-ExternalEtcd}
     
 
-
-
 **Appears in:**
 
 - [Etcd](#kubeadm-k8s-io-v1beta2-Etcd)
 
 
-ExternalEtcd describes an external etcd cluster.
-Kubeadm has no knowledge of where certificate files live and they must be supplied.
+<p>ExternalEtcd describes an external etcd cluster.
+Kubeadm has no knowledge of where certificate files live and they must be supplied.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>endpoints</code> <B>[Required]</B><br/>
 <code>[]string</code>
 </td>
 <td>
-   `endpoints` are endpoints of etcd members. This field is required.</td>
+   <p><code>endpoints</code> of etcd members.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>caFile</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `caFile` is an SSL Certificate Authority file used to secure etcd communication.
-Required if using a TLS connection.</td>
+   <p><code>caFile</code> is an SSL Certificate Authority (CA) file used to secure etcd communication.
+Required if using a TLS connection.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>certFile</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `certFile` is an SSL certification file used to secure etcd communication.
-Required if using a TLS connection.</td>
+   <p><code>certFile</code> is an SSL certification file used to secure etcd communication.
+Required if using a TLS connection.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>keyFile</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `keyFile` is an SSL key file used to secure etcd communication.
-Required if using a TLS connection.</td>
+   <p><code>keyFile</code> is an SSL key file used to secure etcd communication.
+Required if using a TLS connection.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `FileDiscovery`     {#kubeadm-k8s-io-v1beta2-FileDiscovery}
     
 
-
-
 **Appears in:**
 
 - [Discovery](#kubeadm-k8s-io-v1beta2-Discovery)
 
 
-FileDiscovery is used to specify a file or URL to a kubeconfig file from which to load cluster information
+<p>FileDiscovery is used to specify a file or URL to a kubeconfig file from which to load cluster information</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>kubeConfigPath</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `kubeConfigPath` specifies the actual file path or URL to the kubeconfig file
-from which to load cluster information</td>
+   <p><code>kubeConfigPath</code> is used to specify the actual file path or URL to the kubeconfig file
+from which to load cluster information.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `HostPathMount`     {#kubeadm-k8s-io-v1beta2-HostPathMount}
     
 
-
-
 **Appears in:**
 
 - [ControlPlaneComponent](#kubeadm-k8s-io-v1beta2-ControlPlaneComponent)
 
 
-HostPathMount contains elements describing volumes that are mounted from the host.
+<p>HostPathMount contains elements describing volumes that are mounted from the host.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>name</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `name` is the volume name inside the Pod template.</td>
+   <p><code>name</code> of the volume inside the Pod template.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>hostPath</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `hostPath` is the path in the host that will be mounted inside the Pod.</td>
+   <p><code>hostPath</code> is the path in the host that will be mounted inside the Pod.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>mountPath</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `mountPath` is the path inside the Pod where the `hostPath` volume is mounted.</td>
+   <p><code>mountPath</code>is the path inside the Pod where hostPath volume will be mounted.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>readOnly</code> <B>[Required]</B><br/>
 <code>bool</code>
 </td>
 <td>
-   `readOnly` controls write access to the volume.</td>
+   <p><code>readOnly</code> controls write access to the volume.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>pathType</code> <B>[Required]</B><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#hostpathtype-v1-core"><code>core/v1.HostPathType</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#hostpathtype-v1-core"><code>core/v1.HostPathType</code></a>
 </td>
 <td>
-   `pathType` is the type of the `hostPath` volume.</td>
+   <p><code>pathType</code> is the type of the HostPath.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `ImageMeta`     {#kubeadm-k8s-io-v1beta2-ImageMeta}
     
 
-
-
 **Appears in:**
 
 - [DNS](#kubeadm-k8s-io-v1beta2-DNS)
@@ -1223,198 +1069,175 @@ HostPathMount contains elements describing volumes that are mounted from the hos
 - [LocalEtcd](#kubeadm-k8s-io-v1beta2-LocalEtcd)
 
 
-ImageMeta allows to customize the image used for components that are not
-originated from the Kubernetes/Kubernetes release process
+<p>ImageMeta allows to customize the image used for components that are not
+originated from the Kubernetes/Kubernetes release process</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>imageRepository</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `imageRepository` sets the container registry to pull images from.
-If not set, the ImageRepository defined in ClusterConfiguration will be used instead.</td>
+   <p><code>imageRepository</code> sets the container registry to pull images from.
+If not set, the <code>imageRepository</code> defined in ClusterConfiguration will be used.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>imageTag</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `imageTag` allows to specify a tag for the image.
+   <p><code>imageTag</code> allows for specifying a tag for the image.
 In case this value is set, kubeadm does not change automatically the
-version of the above components during upgrades.</td>
+version of the above components during upgrades.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `JoinControlPlane`     {#kubeadm-k8s-io-v1beta2-JoinControlPlane}
     
 
-
-
 **Appears in:**
 
 - [JoinConfiguration](#kubeadm-k8s-io-v1beta2-JoinConfiguration)
 
 
-JoinControlPlane contains elements describing an additional control plane instance to be deployed on the joining node.
+<p>JoinControlPlane contains elements describing an additional control plane instance
+to be deployed on the joining node.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>localAPIEndpoint</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-APIEndpoint"><code>APIEndpoint</code></a>
 </td>
 <td>
-   `localAPIEndpoint` represents the endpoint of the API server instance to be deployed
-on this node.</td>
+   <p><code>localAPIEndpoint</code> represents the endpoint of the API server instance
+to be deployed on this node.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>certificateKey</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `certificateKey` is the key that is used for decryption of certificates after they
-are downloaded from the secret upon joining a new control plane node. The
-corresponding encryption key is in the InitConfiguration.</td>
+   <p><code>certificateKey</code> is the key that is used for decryption of certificates after
+they are downloaded from the secret upon joining a new control plane node.
+The corresponding encryption key is in the InitConfiguration.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `LocalEtcd`     {#kubeadm-k8s-io-v1beta2-LocalEtcd}
     
 
-
-
 **Appears in:**
 
 - [Etcd](#kubeadm-k8s-io-v1beta2-Etcd)
 
 
-LocalEtcd describes that kubeadm should run an etcd cluster locally
+<p>LocalEtcd describes that kubeadm should run an etcd cluster locally.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>ImageMeta</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta2-ImageMeta"><code>ImageMeta</code></a>
 </td>
 <td>(Members of <code>ImageMeta</code> are embedded into this type.)
-   `ImageMeta` allows to customize the container used for etcd.</td>
+   <p>ImageMeta allows to customize the container used for etcd.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>dataDir</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `dataDir` is the directory etcd will place its data.
-Defaults to "/var/lib/etcd".</td>
+   <p><code>dataDir</code> is the directory etcd will place its data.
+Defaults to &quot;/var/lib/etcd&quot;.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>extraArgs</code> <B>[Required]</B><br/>
 <code>map[string]string</code>
 </td>
 <td>
-   `extraArgs` are extra arguments provided to the etcd binary
-when run inside a static pod.</td>
+   <p><code>extraArgs</code> are extra arguments provided to the etcd binary when run
+inside a static pod.
+A key in this map is the flag name as it appears on the
+command line except without leading dash(es).</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>serverCertSANs</code> <B>[Required]</B><br/>
 <code>[]string</code>
 </td>
 <td>
-   `serverCertSANs` sets extra Subject Alternative Names for the etcd server signing cert.</td>
+   <p><code>serverCertSANs</code> sets extra Subject Alternative Names (SANs) for the
+etcd server signing certificate.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>peerCertSANs</code> <B>[Required]</B><br/>
 <code>[]string</code>
 </td>
 <td>
-   `peerCertSANs` sets extra Subject Alternative Names for the etcd peer signing cert.</td>
+   <p><code>peerCertSANs</code> sets extra Subject Alternative Names (SANs) for the
+etcd peer signing certificate.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `Networking`     {#kubeadm-k8s-io-v1beta2-Networking}
     
 
-
-
 **Appears in:**
 
 - [ClusterConfiguration](#kubeadm-k8s-io-v1beta2-ClusterConfiguration)
 
 
-Networking contains elements describing cluster's networking configuration
+<p>Networking contains elements describing cluster's networking configuration</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>serviceSubnet</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `serviceSubnet` is the subnet used by k8s services. Defaults to "10.96.0.0/12".</td>
+   <p><code>serviceSubnet</code> is the subnet used by kubernetes Services. Defaults to &quot;10.96.0.0/12&quot;.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>podSubnet</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `podSubnet` is the subnet used by Pods.</td>
+   <p><code>podSubnet</code> is the subnet used by Pods.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>dnsDomain</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `dnsDomain` is the DNS domain used by k8s services. Defaults to "cluster.local".</td>
+   <p><code>dnsDomain</code> is the DNS domain used by kubernetes Services. Defaults to &quot;cluster.local&quot;.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `NodeRegistrationOptions`     {#kubeadm-k8s-io-v1beta2-NodeRegistrationOptions}
     
 
-
-
 **Appears in:**
 
 - [InitConfiguration](#kubeadm-k8s-io-v1beta2-InitConfiguration)
@@ -1422,68 +1245,66 @@ Networking contains elements describing cluster's networking configuration
 - [JoinConfiguration](#kubeadm-k8s-io-v1beta2-JoinConfiguration)
 
 
-NodeRegistrationOptions holds fields that relate to registering a new control-plane or node to the cluster, either via "kubeadm init" or "kubeadm join"
+<p>NodeRegistrationOptions holds fields that relate to registering a new control-plane
+or node to the cluster, either via &quot;kubeadm init&quot; or &quot;kubeadm join&quot;.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>name</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `name` is the `.metadata.name` field of the Node API object that will be created in this
-`kubeadm init` or `kubeadm join` operation.
-This field is also used in the CommonName field of the kubelet's client certificate to the
-API server. Defaults to the hostname of the node if not provided.</td>
+   <p><code>name</code> is the <code>.Metadata.Name</code> field of the Node API object that will be created
+in this <code>kubeadm init</code> or <code>kubeadm join</code> operation.
+This field is also used in the <code>CommonName</code> field of the kubelet's client certificate
+to the API server.
+Defaults to the hostname of the node if not provided.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>criSocket</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `criSocket` is used to retrieve container runtime info. This information will be
-annotated to the Node API object, for later re-use.</td>
+   <p><code>criSocket</code> is used to retrieve container runtime information. This information will
+be annotated to the Node API object, for later re-use.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>taints</code> <B>[Required]</B><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#taint-v1-core"><code>[]core/v1.Taint</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#taint-v1-core"><code>[]core/v1.Taint</code></a>
 </td>
 <td>
-   `taints` specifies the taints the Node API object should be registered with. If
-this field is unset, i.e. nil, in the `kubeadm init` process, it will be defaulted
-to `['"node-role.kubernetes.io/master"=""']`. If you don't want to taint your
-control-plane node, set this field to an empty list, i.e. `taints: []` in the YAML
-file. This field is solely used for Node registration.</td>
+   <p><code>taints</code> specifies the taints the Node API object should be registered with.
+If this field is unset, i.e. nil, in the <code>kubeadm init</code> process it will be defaulted with
+a control-plane taint for control-plane nodes. If you don't want to taint your control-plane
+node, set this field to an empty list, i.e. <code>taints: []</code>, in the YAML file. This field is
+solely used for Node registration.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>kubeletExtraArgs</code> <B>[Required]</B><br/>
 <code>map[string]string</code>
 </td>
 <td>
-   `kubeletExtraArgs` passes through extra arguments to the kubelet. The arguments here
-are passed to the kubelet command line via the environment file kubeadm writes at
-runtime for the kubelet to source. This overrides the generic base-level
-configuration in the "kubelet-config-1.X" ConfigMap. Flags have higher priority when
-parsing. These values are local and specific to the node kubeadm is executing on.</td>
+   <p><code>kubeletExtraArgs</code> passes through extra arguments to the kubelet. The arguments here are
+passed to the kubelet command line via the environment file kubeadm writes at runtime for
+the kubelet to source. This overrides the generic base-level configuration in the
+'kubelet-config-1.X' ConfigMap.
+Flags have higher priority when parsing. These values are local and specific to the node
+kubeadm is executing on.
+A key in this map is the flag name as it appears on the command line except without leading dash(es).</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>ignorePreflightErrors</code> <B>[Required]</B><br/>
 <code>[]string</code>
 </td>
 <td>
-   `ignorePreflightErrors` provides a slice of pre-flight errors to be ignored when
-the current node is registered.</td>
+   <p><code>ignorePreflightErrors</code> provides a list of pre-flight errors to be ignored when the
+current node is registered.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-  
+  
\ No newline at end of file
diff --git a/content/en/docs/reference/config-api/kubeadm-config.v1beta3.md b/content/en/docs/reference/config-api/kubeadm-config.v1beta3.md
index 5f73e8b3a8..20f5e44d93 100644
--- a/content/en/docs/reference/config-api/kubeadm-config.v1beta3.md
+++ b/content/en/docs/reference/config-api/kubeadm-config.v1beta3.md
@@ -4,284 +4,256 @@ content_type: tool-reference
 package: kubeadm.k8s.io/v1beta3
 auto_generated: true
 ---
-Package v1beta3 defines the v1beta3 version of the kubeadm configuration file format.
-This version improves on the v1beta2 format by fixing some minor issues and adding a few new fields.
-
-A list of changes since v1beta2:
-
-- The deprecated `ClusterConfiguration.useHyperKubeImage` field has been removed.
-  Kubeadm no longer supports the hyperkube image.
-- The `ClusterConfiguration.dns.type` field has been removed since CoreDNS is the only supported
-  DNS server type by kubeadm.
-- Include "datapolicy" tags on the fields that hold secrets.
-  This would result in the field values to be omitted when API structures are printed with klog.
-- Add `InitConfiguration.skipPhases`, `JoinConfiguration.skipPhases` to allow skipping
-  a list of phases during kubeadm init/join command execution.
-- Add `InitConfiguration.nodeRegistration.imagePullPolicy" and
-  `JoinConfiguration.nodeRegistration.imagePullPolicy` to allow specifying
-  the images pull policy during kubeadm "init" and "join". The value must be
-  one of "Always", "Never" or "IfNotPresent". "IfNotPresent" is the default,
-  which has been the existing behavior prior to this addition.
-- Add `InitConfiguration.patches.directory`, `JoinConfiguration.patches.directory`
-  to allow the user to configure a directory from which to take patches for
-  components deployed by kubeadm.
-- Move the `BootstrapToken&lowast;` API and related utilities out of the "kubeadm" API group
-  to a new group "bootstraptoken". The kubeadm API version v1beta3 no longer contains
-  the `BootstrapToken&lowast;` structures.
-
-## Migration from old kubeadm config versions
-
-- kubeadm v1.15.x and newer can be used to migrate from the v1beta1 to v1beta2.
-- kubeadm v1.22.x no longer supports v1beta1 and older APIs, but can be used to migrate v1beta2 to v1beta3.
-
-## Basics
-
-The preferred way to configure kubeadm is to pass an YAML configuration file with the --config option. Some of the
+<h2>Overview</h2>
+<p>Package v1beta3 defines the v1beta3 version of the kubeadm configuration file format.
+This version improves on the v1beta2 format by fixing some minor issues and adding a few new fields.</p>
+<p>A list of changes since v1beta2:</p>
+<ul>
+<li>The deprecated &quot;ClusterConfiguration.useHyperKubeImage&quot; field has been removed.
+Kubeadm no longer supports the hyperkube image.</li>
+<li>The &quot;ClusterConfiguration.DNS.Type&quot; field has been removed since CoreDNS is the only supported
+DNS server type by kubeadm.</li>
+<li>Include &quot;datapolicy&quot; tags on the fields that hold secrets.
+This would result in the field values to be omitted when API structures are printed with klog.</li>
+<li>Add &quot;InitConfiguration.SkipPhases&quot;, &quot;JoinConfiguration.SkipPhases&quot; to allow skipping
+a list of phases during kubeadm init/join command execution.</li>
+<li>Add &quot;InitConfiguration.NodeRegistration.ImagePullPolicy&quot; and &quot;JoinConfiguration.NodeRegistration.ImagePullPolicy&quot;
+to allow specifying the images pull policy during kubeadm &quot;init&quot; and &quot;join&quot;.
+The value must be one of &quot;Always&quot;, &quot;Never&quot; or &quot;IfNotPresent&quot;.
+&quot;IfNotPresent&quot; is the default, which has been the existing behavior prior to this addition.</li>
+<li>Add &quot;InitConfiguration.Patches.Directory&quot;, &quot;JoinConfiguration.Patches.Directory&quot; to allow
+the user to configure a directory from which to take patches for components deployed by kubeadm.</li>
+<li>Move the BootstrapToken* API and related utilities out of the &quot;kubeadm&quot; API group to a new group
+&quot;bootstraptoken&quot;. The kubeadm API version v1beta3 no longer contains the BootstrapToken* structures.</li>
+</ul>
+<p>Migration from old kubeadm config versions</p>
+<ul>
+<li>kubeadm v1.15.x and newer can be used to migrate from v1beta1 to v1beta2.</li>
+<li>kubeadm v1.22.x and newer no longer support v1beta1 and older APIs, but can be used to migrate v1beta2 to v1beta3.</li>
+</ul>
+<h2>Basics</h2>
+<p>The preferred way to configure kubeadm is to pass an YAML configuration file with the <code>--config</code> option. Some of the
 configuration options defined in the kubeadm config file are also available as command line flags, but only
-the most common/simple use case are supported with this approach.
-
-A kubeadm config file could contain multiple configuration types separated using three dashes (“---”).
-
-kubeadm supports the following configuration types:
-
-```yaml
-apiVersion: kubeadm.k8s.io/v1beta3
-kind: InitConfiguration
----
-apiVersion: kubeadm.k8s.io/v1beta3
-kind: ClusterConfiguration
----
-apiVersion: kubelet.config.k8s.io/v1beta1
-kind: KubeletConfiguration
----
-apiVersion: kubeproxy.config.k8s.io/v1alpha1
-kind: KubeProxyConfiguration
----
-apiVersion: kubeadm.k8s.io/v1beta3
-kind: JoinConfiguration
-```
-
-To print the defaults for "init" and "join" actions use the following commands:
-
-```shell
-kubeadm config print init-defaults
+the most common/simple use case are supported with this approach.</p>
+<p>A kubeadm config file could contain multiple configuration types separated using three dashes (<code>---</code>).</p>
+<p>kubeadm supports the following configuration types:</p>
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta3<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>InitConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta3<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>ClusterConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubelet.config.k8s.io/v1beta1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeletConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeproxy.config.k8s.io/v1alpha1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeProxyConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta3<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>JoinConfiguration<span style="color:#bbb">
+</span></pre><p>To print the defaults for &quot;init&quot; and &quot;join&quot; actions use the following commands:</p>
+<pre style="background-color:#fff">kubeadm config print init-defaults
 kubeadm config print join-defaults
-```
-
-The list of configuration types that must be included in a configuration file depends by the action you are
-performing (init or join) and by the configuration options you are going to use (defaults or advanced customization).
-
-If some configuration types are not provided, or provided only partially, kubeadm will use default values; defaults
+</pre><p>The list of configuration types that must be included in a configuration file depends by the action you are
+performing (<code>init</code> or <code>join</code>) and by the configuration options you are going to use (defaults or advanced
+customization).</p>
+<p>If some configuration types are not provided, or provided only partially, kubeadm will use default values; defaults
 provided by kubeadm includes also enforcing consistency of values across components when required (e.g.
-cluster-cidr flag on controller manager and clusterCIDR on kube-proxy).
-
-Users are always allowed to override default values, with the only exception of a small subset of setting with
-relevance for security (e.g. enforce authorization-mode Node and RBAC on api server)
-
-If the user provides a configuration types that is not expected for the action you are performing, kubeadm will
-ignore those types and print a warning.
-
-## Kubeadm init configuration types
-
-When executing kubeadm init with the `--config` option, the following configuration types could be used:
+<code>--cluster-cidr</code> flag on controller manager and <code>clusterCIDR</code> on kube-proxy).</p>
+<p>Users are always allowed to override default values, with the only exception of a small subset of setting with
+relevance for security (e.g. enforce authorization-mode Node and RBAC on api server)</p>
+<p>If the user provides a configuration types that is not expected for the action you are performing, kubeadm will
+ignore those types and print a warning.</p>
+<h2>Kubeadm init configuration types</h2>
+<p>When executing kubeadm init with the <code>--config</code> option, the following configuration types could be used:
 InitConfiguration, ClusterConfiguration, KubeProxyConfiguration, KubeletConfiguration, but only one
-between InitConfiguration and ClusterConfiguration is mandatory.
-
-```yaml
-apiVersion: kubeadm.k8s.io/v1beta3
-kind: InitConfiguration
-bootstrapTokens:
-  ...
-nodeRegistration:
-  ...
-```
-
-The InitConfiguration type should be used to configure runtime settings, that in case of kubeadm init
-are the configuration of the bootstrap token and all the setting which are specific to the node where kubeadm
-is executed, including:
-
-- NodeRegistration, that holds fields that relate to registering the new node to the cluster;
-  use it to customize the node name, the CRI socket to use or any other settings that should apply to this
-  node only (e.g. the node ip).
-
-- LocalAPIEndpoint, that represents the endpoint of the instance of the API server to be deployed on this node;
-  use it e.g. to customize the API server advertise address.
-
-  ```yaml
-  apiVersion: kubeadm.k8s.io/v1beta3
-  kind: ClusterConfiguration
-  networking:
-      ...
-  etcd:
-      ...
-  apiServer:
-    extraArgs:
-      ...
-    extraVolumes:
-      ...
-  ...
-  ```
-
-The ClusterConfiguration type should be used to configure cluster-wide settings,
-including settings for:
-
-- Networking, that holds configuration for the networking topology of the cluster; use it e.g. to customize
-  pod subnet or services subnet.
-- Etcd configurations; use it e.g. to customize the local etcd or to configure the API server
-  for using an external etcd cluster.
-- kube-apiserver, kube-scheduler, kube-controller-manager configurations; use it to customize control-plane
-  components by adding customized setting or overriding kubeadm default settings.
-
-  ```yaml
-  apiVersion: kubeproxy.config.k8s.io/v1alpha1
-  kind: KubeProxyConfiguration
-    ...
-  ```
-
-The KubeProxyConfiguration type should be used to change the configuration passed to kube-proxy instances deployed
-in the cluster. If this object is not provided or provided only partially, kubeadm applies defaults.
-
-See https://kubernetes.io/docs/reference/command-line-tools-reference/kube-proxy/ or https://godoc.org/k8s.io/kube-proxy/config/v1alpha1#KubeProxyConfiguration
-for kube proxy official documentation.
-
-```yaml
-apiVersion: kubelet.config.k8s.io/v1beta1
-kind: KubeletConfiguration
-...
-```
-
-The KubeletConfiguration type should be used to change the configurations that will be passed to all kubelet instances
-deployed in the cluster. If this object is not provided or provided only partially, kubeadm applies defaults.
-
-See https://kubernetes.io/docs/reference/command-line-tools-reference/kubelet/ or https://godoc.org/k8s.io/kubelet/config/v1beta1#KubeletConfiguration
-for kubelet official documentation.
-
-Here is a fully populated example of a single YAML file containing multiple
-configuration types to be used during a `kubeadm init` run.
-
-```yaml
-apiVersion: kubeadm.k8s.io/v1beta3
-kind: InitConfiguration
-bootstrapTokens:
-  - token: "9a08jv.c0izixklcxtmnze7"
-    description: "kubeadm bootstrap token"
-    ttl: "24h"
-  - token: "783bde.3f89s0fje9f38fhf"
-    description: "another bootstrap token"
-    usages:
-      - authentication
-      - signing
-    groups:
-      - system:bootstrappers:kubeadm:default-node-token
-nodeRegistration:
-  name: "ec2-10-100-0-1"
-  criSocket: "/var/run/dockershim.sock"
-  taints:
-    - key: "kubeadmNode"
-      value: "master"
-      effect: "NoSchedule"
-  kubeletExtraArgs:
-    v: 4
-  ignorePreflightErrors:
-    - IsPrivilegedUser
-  imagePullPolicy: "IfNotPresent"
-localAPIEndpoint:
-  advertiseAddress: "10.100.0.1"
-  bindPort: 6443
-certificateKey: "e6a2eb8581237ab72a4f494f30285ec12a9694d750b9785706a83bfcbbbd2204"
-skipPhases:
-  - add/kube-proxy
----
-apiVersion: kubeadm.k8s.io/v1beta3
-kind: ClusterConfiguration
-etcd:
-  # one of local or external
-  local:
-    imageRepository: "k8s.gcr.io"
-    imageTag: "3.2.24"
-    dataDir: "/var/lib/etcd"
-    extraArgs:
-      listen-client-urls: "http://10.100.0.1:2379"
-    serverCertSANs:
-      - "ec2-10-100-0-1.compute-1.amazonaws.com"
-    peerCertSANs:
-      - "10.100.0.1"
-  # external:
-    # endpoints:
-    # - "10.100.0.1:2379"
-    # - "10.100.0.2:2379"
-    # caFile: "/etcd/kubernetes/pki/etcd/etcd-ca.crt"
-    # certFile: "/etcd/kubernetes/pki/etcd/etcd.crt"
-    # keyFile: "/etcd/kubernetes/pki/etcd/etcd.key"
-networking:
-  serviceSubnet: "10.96.0.0/12"
-  podSubnet: "10.100.0.1/24"
-  dnsDomain: "cluster.local"
-kubernetesVersion: "v1.12.0"
-controlPlaneEndpoint: "10.100.0.1:6443"
-apiServer:
-  extraArgs:
-    authorization-mode: "Node,RBAC"
-  extraVolumes:
-    - name: "some-volume"
-      hostPath: "/etc/some-path"
-      mountPath: "/etc/some-pod-path"
-      readOnly: false
-      pathType: File
-  certSANs:
-    - "10.100.1.1"
-    - "ec2-10-100-0-1.compute-1.amazonaws.com"
-  timeoutForControlPlane: 4m0s
-controllerManager:
-  extraArgs:
-    "node-cidr-mask-size": "20"
-  extraVolumes:
-    - name: "some-volume"
-      hostPath: "/etc/some-path"
-      mountPath: "/etc/some-pod-path"
-      readOnly: false
-      pathType: File
-scheduler:
-  extraArgs:
-    address: "10.100.0.1"
-  extraVolumes:
-    - name: "some-volume"
-      hostPath: "/etc/some-path"
-      mountPath: "/etc/some-pod-path"
-      readOnly: false
-      pathType: File
-certificatesDir: "/etc/kubernetes/pki"
-imageRepository: "k8s.gcr.io"
-clusterName: "example-cluster"
----
-apiVersion: kubelet.config.k8s.io/v1beta1
-kind: KubeletConfiguration
-# kubelet specific options here
----
-apiVersion: kubeproxy.config.k8s.io/v1alpha1
-kind: KubeProxyConfiguration
-# kube-proxy specific options here
-```
-
-## Kubeadm join configuration types
-
-When executing kubeadm join with the `--config` option, the JoinConfiguration type should be provided.
-
-```yaml
-apiVersion: kubeadm.k8s.io/v1beta3
-kind: JoinConfiguration
-...
-```
-
-The JoinConfiguration type should be used to configure runtime settings, that in case of kubeadm join
+between InitConfiguration and ClusterConfiguration is mandatory.</p>
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta3<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>InitConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">bootstrapTokens</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">nodeRegistration</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span></pre><p>The InitConfiguration type should be used to configure runtime settings, that in case of kubeadm init
+are the configuration of the bootstrap token and all the setting which are specific to the node where
+kubeadm is executed, including:</p>
+<ul>
+<li>
+<p>NodeRegistration, that holds fields that relate to registering the new node to the cluster;
+use it to customize the node name, the CRI socket to use or any other settings that should apply to this
+node only (e.g. the node ip).</p>
+</li>
+<li>
+<p>LocalAPIEndpoint, that represents the endpoint of the instance of the API server to be deployed on this node;
+use it e.g. to customize the API server advertise address.</p>
+</li>
+</ul>
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta3<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>ClusterConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">networking</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">etcd</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiServer</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>...<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraVolumes</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>...<span style="color:#bbb">
+</span><span style="color:#bbb"></span>...<span style="color:#bbb">
+</span></pre><p>The ClusterConfiguration type should be used to configure cluster-wide settings,
+including settings for:</p>
+<ul>
+<li>
+<p><code>networking</code> that holds configuration for the networking topology of the cluster; use it e.g. to customize
+Pod subnet or services subnet.</p>
+</li>
+<li>
+<p><code>etcd</code>: use it e.g. to customize the local etcd or to configure the API server
+for using an external etcd cluster.</p>
+</li>
+<li>
+<p>kube-apiserver, kube-scheduler, kube-controller-manager configurations; use it to customize control-plane
+components by adding customized setting or overriding kubeadm default settings.</p>
+</li>
+</ul>
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeproxy.config.k8s.io/v1alpha1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeProxyConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span></pre><p>The KubeProxyConfiguration type should be used to change the configuration passed to kube-proxy instances
+deployed in the cluster. If this object is not provided or provided only partially, kubeadm applies defaults.</p>
+<p>See https://kubernetes.io/docs/reference/command-line-tools-reference/kube-proxy/ or
+https://pkg.go.dev/k8s.io/kube-proxy/config/v1alpha1#KubeProxyConfiguration
+for kube-proxy official documentation.</p>
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubelet.config.k8s.io/v1beta1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeletConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span></pre><p>The KubeletConfiguration type should be used to change the configurations that will be passed to all kubelet instances
+deployed in the cluster. If this object is not provided or provided only partially, kubeadm applies defaults.</p>
+<p>See https://kubernetes.io/docs/reference/command-line-tools-reference/kubelet/ or
+https://pkg.go.dev/k8s.io/kubelet/config/v1beta1#KubeletConfiguration
+for kubelet official documentation.</p>
+<p>Here is a fully populated example of a single YAML file containing multiple
+configuration types to be used during a <code>kubeadm init</code> run.</p>
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta3<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>InitConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">bootstrapTokens</span>:<span style="color:#bbb">
+</span><span style="color:#bbb"></span>- <span style="color:#000;font-weight:bold">token</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;9a08jv.c0izixklcxtmnze7&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">description</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;kubeadm bootstrap token&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">ttl</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;24h&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span>- <span style="color:#000;font-weight:bold">token</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;783bde.3f89s0fje9f38fhf&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">description</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;another bootstrap token&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">usages</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- authentication<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- signing<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">groups</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- system:bootstrappers:kubeadm:default-node-token<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">nodeRegistration</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">name</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;ec2-10-100-0-1&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">criSocket</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/var/run/dockershim.sock&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">taints</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- <span style="color:#000;font-weight:bold">key</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;kubeadmNode&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">value</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;someValue&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">effect</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;NoSchedule&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">kubeletExtraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">v</span>:<span style="color:#bbb"> </span><span style="color:#099">4</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">ignorePreflightErrors</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>- IsPrivilegedUser<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">imagePullPolicy</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;IfNotPresent&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">localAPIEndpoint</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">advertiseAddress</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;10.100.0.1&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">bindPort</span>:<span style="color:#bbb"> </span><span style="color:#099">6443</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">certificateKey</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;e6a2eb8581237ab72a4f494f30285ec12a9694d750b9785706a83bfcbbbd2204&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">skipPhases</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- addon/kube-proxy<span style="color:#bbb">
+</span><span style="color:#bbb"></span>---<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta3<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>ClusterConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">etcd</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#998;font-style:italic"># one of local or external</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">local</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">imageRepository</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;k8s.gcr.io&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">imageTag</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;3.2.24&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">dataDir</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/var/lib/etcd&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">extraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">listen-client-urls</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;http://10.100.0.1:2379&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">serverCertSANs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>- <span style="color:#bbb"> </span><span style="color:#d14">&#34;ec2-10-100-0-1.compute-1.amazonaws.com&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">peerCertSANs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>- <span style="color:#d14">&#34;10.100.0.1&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#998;font-style:italic"># external:</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#998;font-style:italic"># endpoints:</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#998;font-style:italic"># - &#34;10.100.0.1:2379&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#998;font-style:italic"># - &#34;10.100.0.2:2379&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#998;font-style:italic"># caFile: &#34;/etcd/kubernetes/pki/etcd/etcd-ca.crt&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#998;font-style:italic"># certFile: &#34;/etcd/kubernetes/pki/etcd/etcd.crt&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#998;font-style:italic"># keyFile: &#34;/etcd/kubernetes/pki/etcd/etcd.key&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">networking</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">serviceSubnet</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;10.96.0.0/16&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">podSubnet</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;10.244.0.0/24&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">dnsDomain</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;cluster.local&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kubernetesVersion</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;v1.21.0&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">controlPlaneEndpoint</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;10.100.0.1:6443&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiServer</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">authorization-mode</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;Node,RBAC&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraVolumes</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- <span style="color:#000;font-weight:bold">name</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;some-volume&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">hostPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">mountPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-pod-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">readOnly</span>:<span style="color:#bbb"> </span><span style="color:#000;font-weight:bold">false</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">pathType</span>:<span style="color:#bbb"> </span>File<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">certSANs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- <span style="color:#d14">&#34;10.100.1.1&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- <span style="color:#d14">&#34;ec2-10-100-0-1.compute-1.amazonaws.com&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">timeoutForControlPlane</span>:<span style="color:#bbb"> </span>4m0s<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">controllerManager</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">&#34;node-cidr-mask-size&#34;: </span><span style="color:#d14">&#34;20&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraVolumes</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- <span style="color:#000;font-weight:bold">name</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;some-volume&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">hostPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">mountPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-pod-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">readOnly</span>:<span style="color:#bbb"> </span><span style="color:#000;font-weight:bold">false</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">pathType</span>:<span style="color:#bbb"> </span>File<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">scheduler</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">address</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;10.100.0.1&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraVolumes</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- <span style="color:#000;font-weight:bold">name</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;some-volume&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">hostPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">mountPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-pod-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">readOnly</span>:<span style="color:#bbb"> </span><span style="color:#000;font-weight:bold">false</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">pathType</span>:<span style="color:#bbb"> </span>File<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">certificatesDir</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/kubernetes/pki&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">imageRepository</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;k8s.gcr.io&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">clusterName</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;example-cluster&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span>---<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubelet.config.k8s.io/v1beta1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeletConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#998;font-style:italic"># kubelet specific options here</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span>---<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeproxy.config.k8s.io/v1alpha1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeProxyConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#998;font-style:italic"># kube-proxy specific options here</span><span style="color:#bbb">
+</span></pre><h2>Kubeadm join configuration types</h2>
+<p>When executing <code>kubeadm join</code> with the <code>--config</code> option, the JoinConfiguration type should be provided.</p>
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta3<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>JoinConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span></pre><p>The JoinConfiguration type should be used to configure runtime settings, that in case of <code>kubeadm join</code>
 are the discovery method used for accessing the cluster info and all the setting which are specific
-to the node where kubeadm is executed, including:
+to the node where kubeadm is executed, including:</p>
+<ul>
+<li>
+<p><code>nodeRegistration</code>, that holds fields that relate to registering the new node to the cluster;
+use it to customize the node name, the CRI socket to use or any other settings that should apply to this
+node only (e.g. the node ip).</p>
+</li>
+<li>
+<p><code>apiEndpoint</code>, that represents the endpoint of the instance of the API server to be eventually deployed on this node.</p>
+</li>
+</ul>
 
-- NodeRegistration, that holds fields that relate to registering the new node to the cluster;
-  use it to customize the node name, the CRI socket to use or any other settings that should apply to this
-  node only (e.g. the node ip).
-- APIEndpoint, that represents the endpoint of the instance of the API server to be eventually
-  deployed on this node.
 
 ## Resource Types 
 
@@ -292,15 +264,13 @@ to the node where kubeadm is executed, including:
   
     
 
-
 ## `ClusterConfiguration`     {#kubeadm-k8s-io-v1beta3-ClusterConfiguration}
     
 
 
+<p>ClusterConfiguration contains cluster-wide configuration for a kubeadm cluster</p>
 
 
-ClusterConfiguration contains cluster-wide configuration for a kubeadm cluster
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -308,133 +278,120 @@ ClusterConfiguration contains cluster-wide configuration for a kubeadm cluster
 <tr><td><code>apiVersion</code><br/>string</td><td><code>kubeadm.k8s.io/v1beta3</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>ClusterConfiguration</code></td></tr>
     
-
-  
   
 <tr><td><code>etcd</code><br/>
 <a href="#kubeadm-k8s-io-v1beta3-Etcd"><code>Etcd</code></a>
 </td>
 <td>
-   `etcd` holds configuration for etcd.</td>
+   <p><code>etcd</code> holds the configuration for etcd.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>networking</code><br/>
 <a href="#kubeadm-k8s-io-v1beta3-Networking"><code>Networking</code></a>
 </td>
 <td>
-   `networking` holds configuration for the networking topology of the cluster.</td>
+   <p><code>networking</code> holds configuration for the networking topology of the cluster.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>kubernetesVersion</code><br/>
 <code>string</code>
 </td>
 <td>
-   `kubernetesVersion` is the target version of the control plane.</td>
+   <p><code>kubernetesVersion</code> is the target version of the control plane.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>controlPlaneEndpoint</code><br/>
 <code>string</code>
 </td>
 <td>
-   `controlPlaneEndpoint` sets a stable IP address or DNS name for the control plane; it
-can be a valid IP address or a RFC-1123 DNS subdomain, both with optional TCP port.
-In case the `controlPlaneEndpoint` is not specified, the `advertiseAddress` + `bindPort`
-are used; in case the `controlPlaneEndpoint` is specified but without a TCP port,
-the `bindPort` of the `localAPIEndpoint` is used.
-Possible usages are:
-
-- In a cluster with more than one control plane instances, this field should be
-  assigned the address of the external load balancer in front of the
-  control plane instances.
-- In environments with enforced node recycling, the ControlPlaneEndpoint
-  could be used for assigning a stable DNS to the control plane.</td>
+   <p><code>controlPlaneEndpoint</code> sets a stable IP address or DNS name for the control plane.
+It can be a valid IP address or a RFC-1123 DNS subdomain, both with optional TCP port.
+In case the <code>controlPlaneEndpoint</code> is not specified, the <code>advertiseAddress</code> + <code>bindPort</code>
+are used; in case the <code>controlPlaneEndpoint</code> is specified but without a TCP port,
+the <code>bindPort</code> is used.
+Possible usages are:</p>
+<ul>
+<li>In a cluster with more than one control plane instances, this field should be
+assigned the address of the external load balancer in front of the
+control plane instances.</li>
+<li>In environments with enforced node recycling, the <code>controlPlaneEndpoint</code> could
+be used for assigning a stable DNS to the control plane.</li>
+</ul>
+</td>
 </tr>
-    
-  
 <tr><td><code>apiServer</code><br/>
 <a href="#kubeadm-k8s-io-v1beta3-APIServer"><code>APIServer</code></a>
 </td>
 <td>
-   `apiServer` contains extra settings for the API server.</td>
+   <p><code>apiServer</code> contains extra settings for the API server.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>controllerManager</code><br/>
 <a href="#kubeadm-k8s-io-v1beta3-ControlPlaneComponent"><code>ControlPlaneComponent</code></a>
 </td>
 <td>
-   `controllerManager` contains extra settings for the controller manager.</td>
+   <p><code>controllerManager</code> contains extra settings for the controller manager.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>scheduler</code><br/>
 <a href="#kubeadm-k8s-io-v1beta3-ControlPlaneComponent"><code>ControlPlaneComponent</code></a>
 </td>
 <td>
-   `scheduler` contains extra settings for the scheduler.</td>
+   <p><code>scheduler</code> contains extra settings for the scheduler.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>dns</code><br/>
 <a href="#kubeadm-k8s-io-v1beta3-DNS"><code>DNS</code></a>
 </td>
 <td>
-   `dns` defines the options for the DNS add-on.</td>
+   <p><code>dns</code> defines the options for the DNS add-on installed in the cluster.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>certificatesDir</code><br/>
 <code>string</code>
 </td>
 <td>
-   `certificatesDir` specifies where to store or look for all required certificates.</td>
+   <p><code>certificatesDir</code> specifies where to store or look for all required certificates.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>imageRepository</code><br/>
 <code>string</code>
 </td>
 <td>
-   `imageRepository` sets the container registry to pull images from.
-If empty, `k8s.gcr.io` will be used by default; in case of kubernetes version is
-a CI build (kubernetes version starts with `ci/` or `ci-cross/`)
-`gcr.io/k8s-staging-ci-images` will be used as a default for control plane
-components and for kube-proxy, while `k8s.gcr.io` will be used for all the other images.</td>
+   <p><code>imageRepository</code> sets the container registry to pull images from.
+If empty, <code>k8s.gcr.io</code> will be used by default.
+In case of kubernetes version is a CI build (kubernetes version starts with <code>ci/</code>)
+<code>gcr.io/k8s-staging-ci-images</code> will be used as a default for control plane components
+and for kube-proxy, while <code>k8s.gcr.io</code> will be used for all the other images.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>featureGates</code><br/>
 <code>map[string]bool</code>
 </td>
 <td>
-   Feature gates enabled by the user.</td>
+   <p><code>featureGates</code> contains the feature gates enabled by the user.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>clusterName</code><br/>
 <code>string</code>
 </td>
 <td>
-   The cluster name.</td>
+   <p>The cluster name.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `InitConfiguration`     {#kubeadm-k8s-io-v1beta3-InitConfiguration}
     
 
 
-
-
-InitConfiguration contains a list of elements that is specific "kubeadm init"-only runtime
+<p>InitConfiguration contains a list of elements that is specific &quot;kubeadm init&quot;-only runtime
 information.
+<code>kubeadm init</code>-only information. These fields are solely used the first time <code>kubeadm init</code> runs.
+After that, the information in the fields IS NOT uploaded to the <code>kubeadm-config</code> ConfigMap
+that is used by <code>kubeadm upgrade</code> for instance. These fields must be omitempty.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
@@ -443,80 +400,71 @@ information.
 <tr><td><code>apiVersion</code><br/>string</td><td><code>kubeadm.k8s.io/v1beta3</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>InitConfiguration</code></td></tr>
     
-
-  
   
 <tr><td><code>bootstrapTokens</code><br/>
 <a href="#BootstrapToken"><code>[]BootstrapToken</code></a>
 </td>
 <td>
-   `bootstrapTokens` is respected at `kubeadm init` time and describes a set of Bootstrap Tokens to create.
-This information IS NOT uploaded to the kubeadm cluster configmap, partly because of its sensitive nature.</td>
+   <p><code>bootstrapTokens</code> is respected at <code>kubeadm init</code> time and describes a set of Bootstrap Tokens to create.
+This information IS NOT uploaded to the kubeadm cluster configmap, partly because of its sensitive nature</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>nodeRegistration</code><br/>
 <a href="#kubeadm-k8s-io-v1beta3-NodeRegistrationOptions"><code>NodeRegistrationOptions</code></a>
 </td>
 <td>
-   `nodeRegistration` holds fields that relate to registering the new control-plane node to the cluster</td>
+   <p><code>nodeRegistration</code> holds fields that relate to registering the new control-plane node
+to the cluster.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>localAPIEndpoint</code><br/>
 <a href="#kubeadm-k8s-io-v1beta3-APIEndpoint"><code>APIEndpoint</code></a>
 </td>
 <td>
-   `localAPIEndpoint` represents the endpoint of the API server instance that's deployed on this control plane node
-In HA setups, this differs from ClusterConfiguration.ControlPlaneEndpoint in the sense that ControlPlaneEndpoint
-is the global endpoint for the cluster, which then loadbalances the requests to each individual API server. This
-configuration object lets you customize what IP/DNS name and port the local API server advertises it's accessible
-on. By default, kubeadm tries to auto-detect the IP of the default interface and use that, but in case that process
-fails you may set the desired value here.</td>
+   <p><code>localAPIEndpoint</code> represents the endpoint of the API server instance that's deployed on this
+control plane node. In HA setups, this differs from <code>ClusterConfiguration.controlPlaneEndpoint</code>
+in the sense that <code>controlPlaneEndpoint</code> is the global endpoint for the cluster, which then
+load-balances the requests to each individual API server.
+This configuration object lets you customize what IP/DNS name and port the local API server
+advertises it's accessible on. By default, kubeadm tries to auto-detect the IP of the default
+interface and use that, but in case that process fails you may set the desired value here.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>certificateKey</code><br/>
 <code>string</code>
 </td>
 <td>
-   `certificateKey` sets the key with which certificates and keys are encrypted prior to being uploaded in
-a Secret in the cluster during the "uploadcerts" init phase.</td>
+   <p><code>certificateKey</code> sets the key with which certificates and keys are encrypted prior to being
+uploaded in a Secret in the cluster during the <code>uploadcerts init</code> phase.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>skipPhases</code><br/>
 <code>[]string</code>
 </td>
 <td>
-   `skipPhases` is a list of phases to skip during command execution.
-The list of phases can be obtained with the `kubeadm init --help` command.
-The flag `--skip-phases` takes precedence over this field.</td>
+   <p><code>skipPhases</code> is a list of phases to skip during command execution.
+The list of phases can be obtained with the <code>kubeadm init --help</code> command.
+The flag &quot;--skip-phases&quot; takes precedence over this field.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>patches</code><br/>
 <a href="#kubeadm-k8s-io-v1beta3-Patches"><code>Patches</code></a>
 </td>
 <td>
-   `patches` contains options related to applying patches to components deployed by kubeadm during
-"kubeadm init".</td>
+   <p><code>patches</code> contains options related to applying patches to components deployed by kubeadm during
+<code>kubeadm init</code>.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `JoinConfiguration`     {#kubeadm-k8s-io-v1beta3-JoinConfiguration}
     
 
 
+<p>JoinConfiguration contains elements describing a particular node.</p>
 
 
-JoinConfiguration contains elements describing a particular node.
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -524,74 +472,63 @@ JoinConfiguration contains elements describing a particular node.
 <tr><td><code>apiVersion</code><br/>string</td><td><code>kubeadm.k8s.io/v1beta3</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>JoinConfiguration</code></td></tr>
     
-
-  
   
 <tr><td><code>nodeRegistration</code><br/>
 <a href="#kubeadm-k8s-io-v1beta3-NodeRegistrationOptions"><code>NodeRegistrationOptions</code></a>
 </td>
 <td>
-   `nodeRegistration` holds fields that relate to registering the new control-plane
-node to the cluster</td>
+   <p><code>nodeRegistration</code> holds fields that relate to registering the new
+control-plane node to the cluster.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>caCertPath</code><br/>
 <code>string</code>
 </td>
 <td>
-   `caCertPath` is the path to the SSL certificate authority used to
-secure comunications between node and control-plane.
-Defaults to "/etc/kubernetes/pki/ca.crt".</td>
+   <p><code>caCertPath</code> is the path to the SSL certificate authority used to secure
+comunications between a node and the control-plane.
+Defaults to &quot;/etc/kubernetes/pki/ca.crt&quot;.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>discovery</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta3-Discovery"><code>Discovery</code></a>
 </td>
 <td>
-   `discovery` specifies the options for the kubelet to use during the TLS Bootstrap process.</td>
+   <p><code>discovery</code> specifies the options for the kubelet to use during the TLS
+bootstrap process.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>controlPlane</code><br/>
 <a href="#kubeadm-k8s-io-v1beta3-JoinControlPlane"><code>JoinControlPlane</code></a>
 </td>
 <td>
-   `controlPlane` defines the additional control plane instance to be deployed on the
-joining node. If nil, no additional control plane instance will be deployed.</td>
+   <p><code>controlPlane</code> defines the additional control plane instance to be deployed
+on the joining node. If nil, no additional control plane instance will be deployed.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>skipPhases</code><br/>
 <code>[]string</code>
 </td>
 <td>
-   `skipPhases` is a list of phases to skip during command execution.
-The list of phases can be obtained with the `kubeadm join --help` command.
-The flag `--skip-phases` takes precedence over this field.</td>
+   <p><code>skipPhases</code> is a list of phases to skip during command execution.
+The list of phases can be obtained with the <code>kubeadm join --help</code> command.
+The flag <code>--skip-phases</code> takes precedence over this field.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>patches</code><br/>
 <a href="#kubeadm-k8s-io-v1beta3-Patches"><code>Patches</code></a>
 </td>
 <td>
-   `patches` contains options related to applying patches to components deployed by kubeadm during
-`kubeadm join`.</td>
+   <p><code>patches</code> contains options related to applying patches to components deployed
+by kubeadm during <code>kubeadm join</code>.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `APIEndpoint`     {#kubeadm-k8s-io-v1beta3-APIEndpoint}
     
 
-
-
 **Appears in:**
 
 - [InitConfiguration](#kubeadm-k8s-io-v1beta3-InitConfiguration)
@@ -599,152 +536,131 @@ The flag `--skip-phases` takes precedence over this field.</td>
 - [JoinControlPlane](#kubeadm-k8s-io-v1beta3-JoinControlPlane)
 
 
-APIEndpoint struct contains elements of API server instance deployed on a node.
+<p>APIEndpoint struct contains elements of API server instance deployed on a node.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>advertiseAddress</code><br/>
 <code>string</code>
 </td>
 <td>
-   `advertiseAddress` sets the IP address for the API server to advertise.</td>
+   <p><code>advertiseAddress</code> sets the IP address for the API server to advertise.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>bindPort</code><br/>
 <code>int32</code>
 </td>
 <td>
-   `bindPort` sets the secure port for the API Server to bind to. Defaults to 6443.</td>
+   <p><code>bindPort</code> sets the secure port for the API Server to bind to.
+Defaults to 6443.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `APIServer`     {#kubeadm-k8s-io-v1beta3-APIServer}
     
 
-
-
 **Appears in:**
 
 - [ClusterConfiguration](#kubeadm-k8s-io-v1beta3-ClusterConfiguration)
 
 
-APIServer holds settings necessary for API server deployments in the cluster
+<p>APIServer holds settings necessary for API server deployments in the cluster</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>ControlPlaneComponent</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta3-ControlPlaneComponent"><code>ControlPlaneComponent</code></a>
 </td>
 <td>(Members of <code>ControlPlaneComponent</code> are embedded into this type.)
-   <span class="text-muted">No description provided.</span>
-   </td>
+   <span class="text-muted">No description provided.</span></td>
 </tr>
-    
-  
 <tr><td><code>certSANs</code><br/>
 <code>[]string</code>
 </td>
 <td>
-   `certSANs` sets extra Subject Alternative Names for the API Server signing cert.</td>
+   <p><code>certSANs</code> sets extra Subject Alternative Names (SANs) for the API Server signing
+certificate.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>timeoutForControlPlane</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   `timeoutForControlPlane` controls the timeout that we use for API server to appear</td>
+   <p><code>timeoutForControlPlane</code> controls the timeout that we wait for API server to appear.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `BootstrapTokenDiscovery`     {#kubeadm-k8s-io-v1beta3-BootstrapTokenDiscovery}
     
 
-
-
 **Appears in:**
 
 - [Discovery](#kubeadm-k8s-io-v1beta3-Discovery)
 
 
-BootstrapTokenDiscovery is used to set the options for bootstrap token based discovery
+<p>BootstrapTokenDiscovery is used to set the options for bootstrap token based discovery</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>token</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `token` is a token used to validate cluster information fetched from the control-plane.</td>
+   <p><code>token</code> is a token used to validate cluster information fetched from the
+control-plane.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>apiServerEndpoint</code><br/>
 <code>string</code>
 </td>
 <td>
-   `apiServerEndpoint` is an IP or domain name to the API server from which
-information will be fetched.</td>
+   <p><code>apiServerEndpoint</code> is an IP or domain name to the API server from which
+information will be fetched.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>caCertHashes</code><br/>
 <code>[]string</code>
 </td>
 <td>
-   CACertHashes specifies a set of public key pins to verify when token-based
-discovery is used. The root CA found during discovery must match one of these
-values. Specifying an empty set disables root CA pinning, which can be unsafe.
-Each hash is specified as `<type>:<value>`, where the only currently supported
-type is "sha256". This is a hex-encoded SHA-256 hash of the Subject Public Key
-Info (SPKI) object in DER-encoded ASN.1. These hashes can be calculated using,
-for example, OpenSSL.</td>
+   <p><code>caCertHashes</code> specifies a set of public key pins to verify when token-based discovery
+is used. The root CA found during discovery must match one of these values.
+Specifying an empty set disables root CA pinning, which can be unsafe.
+Each hash is specified as &quot;<!-- raw HTML omitted -->:<!-- raw HTML omitted -->&quot;, where the only currently supported type is
+&quot;sha256&quot;. This is a hex-encoded SHA-256 hash of the Subject Public Key Info (SPKI)
+object in DER-encoded ASN.1. These hashes can be calculated using, for example, OpenSSL.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>unsafeSkipCAVerification</code><br/>
 <code>bool</code>
 </td>
 <td>
-   `unsafeSkipCAVerification` allows token-based discovery without CA verification
-via `caCertHashes`. This can weaken the security of kubeadm since other nodes
-can impersonate the control-plane.</td>
+   <p><code>unsafeSkipCAVerification</code> allows token-based discovery without CA verification
+via <code>caCertHashes</code>. This can weaken the security of kubeadm since other nodes can
+impersonate the control-plane.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `ControlPlaneComponent`     {#kubeadm-k8s-io-v1beta3-ControlPlaneComponent}
     
 
-
-
 **Appears in:**
 
 - [ClusterConfiguration](#kubeadm-k8s-io-v1beta3-ClusterConfiguration)
@@ -752,341 +668,283 @@ can impersonate the control-plane.</td>
 - [APIServer](#kubeadm-k8s-io-v1beta3-APIServer)
 
 
-ControlPlaneComponent holds settings common to control plane component of the cluster
+<p>ControlPlaneComponent holds settings common to control plane component of the cluster</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>extraArgs</code><br/>
 <code>map[string]string</code>
 </td>
 <td>
-   `extraArgs` is an extra set of flags to pass to the control plane component.
-A key in this map is the flag name as it appears on the
-command line except without leading dash(es).</td>
+   <p><code>extraArgs</code> is an extra set of flags to pass to the control plane component.
+A key in this map is the flag name as it appears on the command line except
+without leading dash(es).</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>extraVolumes</code><br/>
 <a href="#kubeadm-k8s-io-v1beta3-HostPathMount"><code>[]HostPathMount</code></a>
 </td>
 <td>
-   `extraVolumes` is an extra set of host volumes, mounted to the control plane component.</td>
+   <p><code>extraVolumes</code> is an extra set of host volumes, mounted to the control plane component.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `DNS`     {#kubeadm-k8s-io-v1beta3-DNS}
     
 
-
-
 **Appears in:**
 
 - [ClusterConfiguration](#kubeadm-k8s-io-v1beta3-ClusterConfiguration)
 
 
-DNS defines the DNS addon that should be used in the cluster
+<p>DNS defines the DNS addon that should be used in the cluster</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>ImageMeta</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta3-ImageMeta"><code>ImageMeta</code></a>
 </td>
 <td>(Members of <code>ImageMeta</code> are embedded into this type.)
-   `imageMeta` allows to customize the image used for the DNS component.</td>
+   <p><code>imageMeta</code> allows to customize the image used for the DNS component.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
-
-## `DNSAddOnType`     {#kubeadm-k8s-io-v1beta3-DNSAddOnType}
-    
-(Alias of `string`)
-
-
-
-DNSAddOnType defines string identifying DNS add-on types
-
-
-    
-
 
 ## `Discovery`     {#kubeadm-k8s-io-v1beta3-Discovery}
     
 
-
-
 **Appears in:**
 
 - [JoinConfiguration](#kubeadm-k8s-io-v1beta3-JoinConfiguration)
 
 
-Discovery specifies the options for the kubelet to use during the TLS Bootstrap process
+<p>Discovery specifies the options for the kubelet to use during the TLS Bootstrap process.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>bootstrapToken</code><br/>
 <a href="#kubeadm-k8s-io-v1beta3-BootstrapTokenDiscovery"><code>BootstrapTokenDiscovery</code></a>
 </td>
 <td>
-   `bootstrapToken` is used to set the options for bootstrap token based discovery.
-`bootstrapToken` and `file` are mutually exclusive.</td>
+   <p><code>bootstrapToken</code> is used to set the options for bootstrap token based discovery.
+<code>bootstrapToken</code> and <code>file</code> are mutually exclusive.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>file</code><br/>
 <a href="#kubeadm-k8s-io-v1beta3-FileDiscovery"><code>FileDiscovery</code></a>
 </td>
 <td>
-   `file` specifies a file or URL to a kubeconfig file from which to load cluster information.
-`bootstrapToken` and `file` are mutually exclusive.</td>
+   <p><code>file</code> is used to specify a file or URL to a kubeconfig file from which to load
+cluster information.
+<code>bootstrapToken</code> and <code>file</code> are mutually exclusive.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>tlsBootstrapToken</code><br/>
 <code>string</code>
 </td>
 <td>
-   `tlsBootstrapToken` is a token used for TLS bootstrapping.
-If `bootstrapToken` is set, this field is defaulted to `bootstrapToken.token`,
-but can be overridden.
-If `file` is set, this field &lowast;&lowast;must be set&lowast;&lowast; in case the KubeConfigFile does
-not contain any other authentication information</td>
+   <p><code>tlsBootstrapToken</code> is a token used for TLS bootstrapping.
+If <code>bootstrapToken</code> is set, this field is defaulted to <code>.bootstrapToken.token</code>, but
+can be overridden. If <code>file</code> is set, this field <strong>must be set</strong> in case the KubeConfigFile
+does not contain any other authentication information</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>timeout</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   `timeout` modifies the discovery timeout.</td>
+   <p><code>timeout</code> modifies the discovery timeout.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `Etcd`     {#kubeadm-k8s-io-v1beta3-Etcd}
     
 
-
-
 **Appears in:**
 
 - [ClusterConfiguration](#kubeadm-k8s-io-v1beta3-ClusterConfiguration)
 
 
-Etcd contains elements describing Etcd configuration.
+<p>Etcd contains elements describing Etcd configuration.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>local</code><br/>
 <a href="#kubeadm-k8s-io-v1beta3-LocalEtcd"><code>LocalEtcd</code></a>
 </td>
 <td>
-   `local` provides configuration knobs for configuring the local etcd instance.
-`local` and `external` are mutually exclusive.</td>
+   <p><code>local</code> provides configuration knobs for configuring the local etcd instance.
+<code>local</code> and <code>external</code> are mutually exclusive.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>external</code><br/>
 <a href="#kubeadm-k8s-io-v1beta3-ExternalEtcd"><code>ExternalEtcd</code></a>
 </td>
 <td>
-   `external` describes how to connect to an external etcd cluster.
-`local` and `external` are mutually exclusive.</td>
+   <p><code>external</code> describes how to connect to an external etcd cluster.
+<code>local</code> and <code>external</code> are mutually exclusive.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `ExternalEtcd`     {#kubeadm-k8s-io-v1beta3-ExternalEtcd}
     
 
-
-
 **Appears in:**
 
 - [Etcd](#kubeadm-k8s-io-v1beta3-Etcd)
 
 
-ExternalEtcd describes an external etcd cluster.
-Kubeadm has no knowledge of where certificate files live and they must be supplied.
+<p>ExternalEtcd describes an external etcd cluster.
+Kubeadm has no knowledge of where certificate files live and they must be supplied.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>endpoints</code> <B>[Required]</B><br/>
 <code>[]string</code>
 </td>
 <td>
-   `endpoints` are endpoints of etcd members. This field is required.</td>
+   <p><code>endpoints</code> contains the list of etcd members.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>caFile</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `caFile` is an SSL Certificate Authority file used to secure etcd communication.
-Required if using a TLS connection.</td>
+   <p><code>caFile</code> is an SSL Certificate Authority (CA) file used to secure etcd communication.
+Required if using a TLS connection.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>certFile</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `certFile` is an SSL certification file used to secure etcd communication.
-Required if using a TLS connection.</td>
+   <p><code>certFile</code> is an SSL certification file used to secure etcd communication.
+Required if using a TLS connection.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>keyFile</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `keyFile` is an SSL key file used to secure etcd communication.
-Required if using a TLS connection.</td>
+   <p><code>keyFile</code> is an SSL key file used to secure etcd communication.
+Required if using a TLS connection.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `FileDiscovery`     {#kubeadm-k8s-io-v1beta3-FileDiscovery}
     
 
-
-
 **Appears in:**
 
 - [Discovery](#kubeadm-k8s-io-v1beta3-Discovery)
 
 
-FileDiscovery is used to specify a file or URL to a kubeconfig file from which to load cluster information
+<p>FileDiscovery is used to specify a file or URL to a kubeconfig file from which to load
+cluster information.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>kubeConfigPath</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `kubeConfigPath` specifies the actual file path or URL to the kubeconfig file
-from which to load cluster information</td>
+   <p><code>kubeConfigPath</code> is used to specify the actual file path or URL to the kubeconfig
+file from which to load cluster information.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `HostPathMount`     {#kubeadm-k8s-io-v1beta3-HostPathMount}
     
 
-
-
 **Appears in:**
 
 - [ControlPlaneComponent](#kubeadm-k8s-io-v1beta3-ControlPlaneComponent)
 
 
-HostPathMount contains elements describing volumes that are mounted from the host.
+<p>HostPathMount contains elements describing volumes that are mounted from the host.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>name</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `name` is the volume name inside the Pod template.</td>
+   <p><code>name</code> is the name of the volume inside the Pod template.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>hostPath</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `hostPath` is the path in the host that will be mounted inside the Pod.</td>
+   <p><code>hostPath</code> is the path in the host that will be mounted inside the Pod.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>mountPath</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `mountPath` is the path inside the Pod where the `hostPath` volume is mounted.</td>
+   <p><code>mountPath</code> is the path inside the Pod where <code>hostPath</code> will be mounted.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>readOnly</code><br/>
 <code>bool</code>
 </td>
 <td>
-   `readOnly` controls write access to the volume.</td>
+   <p><code>readOnly</code> controls write access to the volume.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>pathType</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#hostpathtype-v1-core"><code>core/v1.HostPathType</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#hostpathtype-v1-core"><code>core/v1.HostPathType</code></a>
 </td>
 <td>
-   `pathType` is the type of the `hostPath` volume.</td>
+   <p><code>pathType</code> is the type of the <code>hostPath</code>.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `ImageMeta`     {#kubeadm-k8s-io-v1beta3-ImageMeta}
     
 
-
-
 **Appears in:**
 
 - [DNS](#kubeadm-k8s-io-v1beta3-DNS)
@@ -1094,200 +952,174 @@ HostPathMount contains elements describing volumes that are mounted from the hos
 - [LocalEtcd](#kubeadm-k8s-io-v1beta3-LocalEtcd)
 
 
-ImageMeta allows to customize the image used for components that are not
-originated from the Kubernetes/Kubernetes release process
+<p>ImageMeta allows to customize the image used for components that are not
+originated from the Kubernetes/Kubernetes release process</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>imageRepository</code><br/>
 <code>string</code>
 </td>
 <td>
-   `imageRepository` sets the container registry to pull images from.
-If not set, the ImageRepository defined in ClusterConfiguration will be used instead.</td>
+   <p><code>imageRepository</code> sets the container registry to pull images from.
+If not set, the <code>imageRepository</code> defined in ClusterConfiguration will be used instead.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>imageTag</code><br/>
 <code>string</code>
 </td>
 <td>
-   `imageTag` allows to specify a tag for the image.
-In case this value is set, kubeadm does not change automatically the
-version of the above components during upgrades.</td>
+   <p><code>imageTag</code> allows to specify a tag for the image.
+In case this value is set, kubeadm does not change automatically the version of
+the above components during upgrades.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `JoinControlPlane`     {#kubeadm-k8s-io-v1beta3-JoinControlPlane}
     
 
-
-
 **Appears in:**
 
 - [JoinConfiguration](#kubeadm-k8s-io-v1beta3-JoinConfiguration)
 
 
-JoinControlPlane contains elements describing an additional control plane instance to be deployed on the joining node.
+<p>JoinControlPlane contains elements describing an additional control plane instance
+to be deployed on the joining node.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>localAPIEndpoint</code><br/>
 <a href="#kubeadm-k8s-io-v1beta3-APIEndpoint"><code>APIEndpoint</code></a>
 </td>
 <td>
-   `localAPIEndpoint` represents the endpoint of the API server instance to be deployed
-on this node.</td>
+   <p><code>localAPIEndpoint</code> represents the endpoint of the API server instance to be
+deployed on this node.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>certificateKey</code><br/>
 <code>string</code>
 </td>
 <td>
-   `certificateKey` is the key that is used for decryption of certificates after they
-are downloaded from the secret upon joining a new control plane node. The
-corresponding encryption key is in the InitConfiguration.</td>
+   <p><code>certificateKey</code> is the key that is used for decryption of certificates after
+they are downloaded from the secret upon joining a new control plane node.
+The corresponding encryption key is in the InitConfiguration.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `LocalEtcd`     {#kubeadm-k8s-io-v1beta3-LocalEtcd}
     
 
-
-
 **Appears in:**
 
 - [Etcd](#kubeadm-k8s-io-v1beta3-Etcd)
 
 
-LocalEtcd describes that kubeadm should run an etcd cluster locally
+<p>LocalEtcd describes that kubeadm should run an etcd cluster locally</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>ImageMeta</code> <B>[Required]</B><br/>
 <a href="#kubeadm-k8s-io-v1beta3-ImageMeta"><code>ImageMeta</code></a>
 </td>
 <td>(Members of <code>ImageMeta</code> are embedded into this type.)
-   `ImageMeta` allows to customize the container used for etcd.</td>
+   <p>ImageMeta allows to customize the container used for etcd.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>dataDir</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   `dataDir` is the directory etcd will place its data.
-Defaults to "/var/lib/etcd".</td>
+   <p><code>dataDir</code> is the directory etcd will place its data.
+Defaults to &quot;/var/lib/etcd&quot;.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>extraArgs</code><br/>
 <code>map[string]string</code>
 </td>
 <td>
-   `extraArgs` are extra arguments provided to the etcd binary
-when run inside a static pod.
-A key in this map is the flag name as it appears on the command line except
-without leading dash(es).</td>
+   <p><code>extraArgs</code> are extra arguments provided to the etcd binary when run
+inside a static Pod. A key in this map is the flag name as it appears on the
+command line except without leading dash(es).</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>serverCertSANs</code><br/>
 <code>[]string</code>
 </td>
 <td>
-   `serverCertSANs` sets extra Subject Alternative Names for the etcd server signing cert.</td>
+   <p><code>serverCertSANs</code> sets extra Subject Alternative Names (SANs) for the etcd
+server signing certificate.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>peerCertSANs</code><br/>
 <code>[]string</code>
 </td>
 <td>
-   `peerCertSANs` sets extra Subject Alternative Names for the etcd peer signing cert.</td>
+   <p><code>peerCertSANs</code> sets extra Subject Alternative Names (SANs) for the etcd peer
+signing certificate.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `Networking`     {#kubeadm-k8s-io-v1beta3-Networking}
     
 
-
-
 **Appears in:**
 
 - [ClusterConfiguration](#kubeadm-k8s-io-v1beta3-ClusterConfiguration)
 
 
-Networking contains elements describing cluster's networking configuration
+<p>Networking contains elements describing cluster's networking configuration</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>serviceSubnet</code><br/>
 <code>string</code>
 </td>
 <td>
-   `serviceSubnet` is the subnet used by k8s services. Defaults to "10.96.0.0/12".</td>
+   <p><code>serviceSubnet</code> is the subnet used by Kubernetes Services. Defaults to &quot;10.96.0.0/12&quot;.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>podSubnet</code><br/>
 <code>string</code>
 </td>
 <td>
-   `podSubnet` is the subnet used by Pods.</td>
+   <p><code>podSubnet</code> is the subnet used by Pods.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>dnsDomain</code><br/>
 <code>string</code>
 </td>
 <td>
-   `dnsDomain` is the DNS domain used by k8s services. Defaults to "cluster.local".</td>
+   <p><code>dnsDomain</code> is the DNS domain used by Kubernetes Services. Defaults to &quot;cluster.local&quot;.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `NodeRegistrationOptions`     {#kubeadm-k8s-io-v1beta3-NodeRegistrationOptions}
     
 
-
-
 **Appears in:**
 
 - [InitConfiguration](#kubeadm-k8s-io-v1beta3-InitConfiguration)
@@ -1295,91 +1127,83 @@ Networking contains elements describing cluster's networking configuration
 - [JoinConfiguration](#kubeadm-k8s-io-v1beta3-JoinConfiguration)
 
 
-NodeRegistrationOptions holds fields that relate to registering a new control-plane or node to the cluster, either via "kubeadm init" or "kubeadm join"
+<p>NodeRegistrationOptions holds fields that relate to registering a new control-plane or
+node to the cluster, either via &quot;kubeadm init&quot; or &quot;kubeadm join&quot;</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>name</code><br/>
 <code>string</code>
 </td>
 <td>
-   `name` is the `.metadata.name` field of the Node API object that will be created in this
-`kubeadm init` or `kubeadm join` operation.
-This field is also used in the `CommonName` field of the kubelet's client certificate to the
-API server. Defaults to the hostname of the node if not provided.</td>
+   <p><code>name</code> is the <code>.metadata.name</code> field of the Node API object that will be created in this
+<code>kubeadm init</code> or <code>kubeadm join</code> operation.
+This field is also used in the <code>CommonName</code> field of the kubelet's client certificate to
+the API server.
+Defaults to the hostname of the node if not provided.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>criSocket</code><br/>
 <code>string</code>
 </td>
 <td>
-   `criSocket` is used to retrieve container runtime info. This information will be
-annotated to the Node API object, for later re-use.</td>
+   <p><code>criSocket</code> is used to retrieve container runtime info.
+This information will be annotated to the Node API object, for later re-use</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>taints</code> <B>[Required]</B><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#taint-v1-core"><code>[]core/v1.Taint</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#taint-v1-core"><code>[]core/v1.Taint</code></a>
 </td>
 <td>
-   `taints` specifies the taints the Node API object should be registered with. If
-this field is unset, i.e. nil, in the `kubeadm init` process, it will be defaulted
-to `['"node-role.kubernetes.io/master"=""']`. If you don't want to taint your
-control-plane node, set this field to an empty list, i.e. `taints: []` in the YAML
-file. This field is solely used for Node registration.</td>
+   <p><code>taints</code> specifies the taints the Node API object should be registered with.
+If this field is unset, i.e. nil, in the <code>kubeadm init</code> process it will be defaulted
+with a control-plane taint for control-plane nodes.
+If you don't want to taint your control-plane node, set this field to an empty list,
+i.e. <code>taints: []</code> in the YAML file. This field is solely used for Node registration.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>kubeletExtraArgs</code><br/>
 <code>map[string]string</code>
 </td>
 <td>
-   `kubeletExtraArgs` passes through extra arguments to the kubelet. The arguments here
-are passed to the kubelet command line via the environment file kubeadm writes at
-runtime for the kubelet to source. This overrides the generic base-level
-configuration in the "kubelet-config-1.X" ConfigMap. Flags have higher priority when
-parsing. These values are local and specific to the node kubeadm is executing on.
-A key in this map is the flag name as it appears on the command line except without
-leading dash(es).</td>
+   <p><code>kubeletExtraArgs</code> passes through extra arguments to the kubelet.
+The arguments here are passed to the kubelet command line via the environment file
+kubeadm writes at runtime for the kubelet to source.
+This overrides the generic base-level configuration in the 'kubelet-config-1.X' ConfigMap.
+Flags have higher priority when parsing. These values are local and specific to the node
+kubeadm is executing on. A key in this map is the flag name as it appears on the
+command line except without leading dash(es).</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>ignorePreflightErrors</code><br/>
 <code>[]string</code>
 </td>
 <td>
-   `ignorePreflightErrors` provides a slice of pre-flight errors to be ignored when
-the current node is registered.</td>
+   <p><code>ignorePreflightErrors</code> provides a list of pre-flight errors to be ignored when
+the current node is registered.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>imagePullPolicy</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#pullpolicy-v1-core"><code>core/v1.PullPolicy</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#pullpolicy-v1-core"><code>core/v1.PullPolicy</code></a>
 </td>
 <td>
-   `imagePullPolicy` specifies the policy for image pulling during `kubeadm init` and
-`kubeadm join` operations.
-The value of this field must be one of "Always", "IfNotPresent" or "Never".
-If this field is unset kubeadm will default it to "IfNotPresent", or pull the required
-images if not present on the host.</td>
+   <p><code>imagePullPolicy</code> specifies the policy for image pulling during kubeadm &quot;init&quot; and
+&quot;join&quot; operations.
+The value of this field must be one of &quot;Always&quot;, &quot;IfNotPresent&quot; or &quot;Never&quot;.
+If this field is unset kubeadm will default it to &quot;IfNotPresent&quot;, or pull the required
+images if not present on the host.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `Patches`     {#kubeadm-k8s-io-v1beta3-Patches}
     
 
-
-
 **Appears in:**
 
 - [InitConfiguration](#kubeadm-k8s-io-v1beta3-InitConfiguration)
@@ -1387,32 +1211,31 @@ images if not present on the host.</td>
 - [JoinConfiguration](#kubeadm-k8s-io-v1beta3-JoinConfiguration)
 
 
-Patches contains options related to applying patches to components deployed by kubeadm.
+<p>Patches contains options related to applying patches to components deployed by kubeadm.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>directory</code><br/>
 <code>string</code>
 </td>
 <td>
-   `directory` is a path to a directory that contains files named
-`target[suffix][+patchtype].extension`.
-For example, `kube-apiserver0+merge.yaml` or just `etcd.json`. `target` can be one of
-"kube-apiserver", "kube-controller-manager", "kube-scheduler", "etcd". `patchtype` can be one
-of "strategic", "merge" or "json" and they match the patch formats supported by kubectl.
-The default `patchtype` is "strategic". `extension` must be either "json" or "yaml".
-`suffix` is an optional string that can be used to determine which patches are applied
-first alpha-numerically.</td>
+   <p><code>directory</code> is a path to a directory that contains files named
+&quot;target[suffix][+patchtype].extension&quot;.
+For example, &quot;kube-apiserver0+merge.yaml&quot; or just &quot;etcd.json&quot;. &quot;target&quot; can be one of
+&quot;kube-apiserver&quot;, &quot;kube-controller-manager&quot;, &quot;kube-scheduler&quot;, &quot;etcd&quot;. &quot;patchtype&quot; can
+be one of &quot;strategic&quot; &quot;merge&quot; or &quot;json&quot; and they match the patch formats supported by
+kubectl.
+The default &quot;patchtype&quot; is &quot;strategic&quot;. &quot;extension&quot; must be either &quot;json&quot; or &quot;yaml&quot;.
+&quot;suffix&quot; is an optional string that can be used to determine which patches are applied
+first alpha-numerically.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
   
   
     
@@ -1420,116 +1243,100 @@ first alpha-numerically.</td>
 ## `BootstrapToken`     {#BootstrapToken}
     
 
-
-
 **Appears in:**
 
 - [InitConfiguration](#kubeadm-k8s-io-v1beta3-InitConfiguration)
 
 
-BootstrapToken describes one bootstrap token, stored as a Secret in the cluster
+<p>BootstrapToken describes one bootstrap token, stored as a Secret in the cluster</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>token</code> <B>[Required]</B><br/>
 <a href="#BootstrapTokenString"><code>BootstrapTokenString</code></a>
 </td>
 <td>
-   `token` is used for establishing bidirectional trust between nodes and control-planes.
-Used for joining nodes in the cluster.</td>
+   <p><code>token</code> is used for establishing bidirectional trust between nodes and control-planes.
+Used for joining nodes in the cluster.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>description</code><br/>
 <code>string</code>
 </td>
 <td>
-   `description` sets a human-friendly message why this token exists and what it's used
-for, so other administrators can know its purpose.</td>
+   <p><code>description</code> sets a human-friendly message why this token exists and what it's used
+for, so other administrators can know its purpose.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>ttl</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   `ttl` defines the time to live for this token. Defaults to `24h`.
-`expires` and `ttl` are mutually exclusive.</td>
+   <p><code>ttl</code> defines the time to live for this token. Defaults to <code>24h</code>.
+<code>expires</code> and <code>ttl</code> are mutually exclusive.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>expires</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#time-v1-meta"><code>meta/v1.Time</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#time-v1-meta"><code>meta/v1.Time</code></a>
 </td>
 <td>
-   `expires` specifies the timestamp when this token expires. Defaults to being set
-dynamically at runtime based on the `ttl`. `expires` and `ttl` are mutually exclusive.</td>
+   <p><code>expires</code> specifies the timestamp when this token expires. Defaults to being set
+dynamically at runtime based on the <code>ttl</code>. <code>expires</code> and <code>ttl</code> are mutually exclusive.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>usages</code><br/>
 <code>[]string</code>
 </td>
 <td>
-   `usages` describes the ways in which this token can be used. Can by default be used
-for establishing bidirectional trust, but that can be changed here.</td>
+   <p><code>usages</code> describes the ways in which this token can be used. Can by default be used
+for establishing bidirectional trust, but that can be changed here.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>groups</code><br/>
 <code>[]string</code>
 </td>
 <td>
-   `groups` specifies the extra groups that this token will authenticate as when/if
-used for authentication</td>
+   <p><code>groups</code> specifies the extra groups that this token will authenticate as when/if
+used for authentication</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
 
 ## `BootstrapTokenString`     {#BootstrapTokenString}
     
 
-
-
 **Appears in:**
 
 - [BootstrapToken](#BootstrapToken)
 
 
-BootstrapTokenString is a token of the format `abcdef.abcdef0123456789` that is used
+<p>BootstrapTokenString is a token of the format <code>abcdef.abcdef0123456789</code> that is used
 for both validation of the practically of the API server from a joining node's point
 of view and as an authentication method for the node in the bootstrap phase of
-"kubeadm join". This token is and should be short-lived.
+&quot;kubeadm join&quot;. This token is and should be short-lived.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>-</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   <span class="text-muted">No description provided.</span>
-   </td>
+   <span class="text-muted">No description provided.</span></td>
 </tr>
-    
-  
 <tr><td><code>-</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   <span class="text-muted">No description provided.</span>
-   </td>
+   <span class="text-muted">No description provided.</span></td>
 </tr>
-    
-  
 </tbody>
 </table>
diff --git a/content/en/docs/reference/config-api/kubelet-config.v1alpha1.md b/content/en/docs/reference/config-api/kubelet-config.v1alpha1.md
new file mode 100644
index 0000000000..2fe765dabe
--- /dev/null
+++ b/content/en/docs/reference/config-api/kubelet-config.v1alpha1.md
@@ -0,0 +1,249 @@
+---
+title: Kubelet Configuration (v1alpha1)
+content_type: tool-reference
+package: kubelet.config.k8s.io/v1alpha1
+auto_generated: true
+---
+
+
+## Resource Types 
+
+
+- [CredentialProviderConfig](#kubelet-config-k8s-io-v1alpha1-CredentialProviderConfig)
+  
+    
+
+## `FormatOptions`     {#FormatOptions}
+    
+
+**Appears in:**
+
+
+
+<p>FormatOptions contains options for the different logging formats.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>json</code> <B>[Required]</B><br/>
+<a href="#JSONOptions"><code>JSONOptions</code></a>
+</td>
+<td>
+   <p>[Experimental] JSON contains options for logging format &quot;json&quot;.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `JSONOptions`     {#JSONOptions}
+    
+
+**Appears in:**
+
+- [FormatOptions](#FormatOptions)
+
+
+<p>JSONOptions contains options for logging format &quot;json&quot;.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>splitStream</code> <B>[Required]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>[Experimental] SplitStream redirects error messages to stderr while
+info messages go to stdout, with buffering. The default is to write
+both to stdout, without buffering.</p>
+</td>
+</tr>
+<tr><td><code>infoBufferSize</code> <B>[Required]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/api/resource#QuantityValue"><code>k8s.io/apimachinery/pkg/api/resource.QuantityValue</code></a>
+</td>
+<td>
+   <p>[Experimental] InfoBufferSize sets the size of the info stream when
+using split streams. The default is zero, which disables buffering.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `VModuleConfiguration`     {#VModuleConfiguration}
+    
+(Alias of `[]k8s.io/component-base/config/v1alpha1.VModuleItem`)
+
+**Appears in:**
+
+
+
+<p>VModuleConfiguration is a collection of individual file names or patterns
+and the corresponding verbosity threshold.</p>
+
+
+
+  
+    
+
+## `CredentialProviderConfig`     {#kubelet-config-k8s-io-v1alpha1-CredentialProviderConfig}
+    
+
+
+<p>CredentialProviderConfig is the configuration containing information about
+each exec credential provider. Kubelet reads this configuration from disk and enables
+each provider as specified by the CredentialProvider type.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubelet.config.k8s.io/v1alpha1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>CredentialProviderConfig</code></td></tr>
+    
+  
+<tr><td><code>providers</code> <B>[Required]</B><br/>
+<a href="#kubelet-config-k8s-io-v1alpha1-CredentialProvider"><code>[]CredentialProvider</code></a>
+</td>
+<td>
+   <p>providers is a list of credential provider plugins that will be enabled by the kubelet.
+Multiple providers may match against a single image, in which case credentials
+from all providers will be returned to the kubelet. If multiple providers are called
+for a single image, the results are combined. If providers return overlapping
+auth keys, the value from the provider earlier in this list is used.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `CredentialProvider`     {#kubelet-config-k8s-io-v1alpha1-CredentialProvider}
+    
+
+**Appears in:**
+
+- [CredentialProviderConfig](#kubelet-config-k8s-io-v1alpha1-CredentialProviderConfig)
+
+
+<p>CredentialProvider represents an exec plugin to be invoked by the kubelet. The plugin is only
+invoked when an image being pulled matches the images handled by the plugin (see matchImages).</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>name</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>name is the required name of the credential provider. It must match the name of the
+provider executable as seen by the kubelet. The executable must be in the kubelet's
+bin directory (set by the --image-credential-provider-bin-dir flag).</p>
+</td>
+</tr>
+<tr><td><code>matchImages</code> <B>[Required]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+   <p>matchImages is a required list of strings used to match against images in order to
+determine if this provider should be invoked. If one of the strings matches the
+requested image from the kubelet, the plugin will be invoked and given a chance
+to provide credentials. Images are expected to contain the registry domain
+and URL path.</p>
+<p>Each entry in matchImages is a pattern which can optionally contain a port and a path.
+Globs can be used in the domain, but not in the port or the path. Globs are supported
+as subdomains like <code>*.k8s.io</code> or <code>k8s.*.io</code>, and top-level-domains such as <code>k8s.*</code>.
+Matching partial subdomains like <code>app*.k8s.io</code> is also supported. Each glob can only match
+a single subdomain segment, so <code>*.io</code> does not match <code>*.k8s.io</code>.</p>
+<p>A match exists between an image and a matchImage when all of the below are true:</p>
+<ul>
+<li>Both contain the same number of domain parts and each part matches.</li>
+<li>The URL path of an imageMatch must be a prefix of the target image URL path.</li>
+<li>If the imageMatch contains a port, then the port must match in the image as well.</li>
+</ul>
+<p>Example values of matchImages:</p>
+<ul>
+<li><code>123456789.dkr.ecr.us-east-1.amazonaws.com</code></li>
+<li><code>*.azurecr.io</code></li>
+<li><code>gcr.io</code></li>
+<li><code>*.*.registry.io</code></li>
+<li><code>registry.io:8080/path</code></li>
+</ul>
+</td>
+</tr>
+<tr><td><code>defaultCacheDuration</code> <B>[Required]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <p>defaultCacheDuration is the default duration the plugin will cache credentials in-memory
+if a cache duration is not provided in the plugin response. This field is required.</p>
+</td>
+</tr>
+<tr><td><code>apiVersion</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Required input version of the exec CredentialProviderRequest. The returned CredentialProviderResponse
+MUST use the same encoding version as the input. Current supported values are:</p>
+<ul>
+<li>credentialprovider.kubelet.k8s.io/v1alpha1</li>
+</ul>
+</td>
+</tr>
+<tr><td><code>args</code><br/>
+<code>[]string</code>
+</td>
+<td>
+   <p>Arguments to pass to the command when executing it.</p>
+</td>
+</tr>
+<tr><td><code>env</code><br/>
+<a href="#kubelet-config-k8s-io-v1alpha1-ExecEnvVar"><code>[]ExecEnvVar</code></a>
+</td>
+<td>
+   <p>Env defines additional environment variables to expose to the process. These
+are unioned with the host's environment, as well as variables client-go uses
+to pass argument to the plugin.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ExecEnvVar`     {#kubelet-config-k8s-io-v1alpha1-ExecEnvVar}
+    
+
+**Appears in:**
+
+- [CredentialProvider](#kubelet-config-k8s-io-v1alpha1-CredentialProvider)
+
+
+<p>ExecEnvVar is used for setting environment variables when executing an exec-based
+credential plugin.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>name</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <span class="text-muted">No description provided.</span></td>
+</tr>
+<tr><td><code>value</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <span class="text-muted">No description provided.</span></td>
+</tr>
+</tbody>
+</table>
+  
diff --git a/content/en/docs/reference/config-api/kubelet-config.v1beta1.md b/content/en/docs/reference/config-api/kubelet-config.v1beta1.md
index 261a6dd5f8..42755470cb 100644
--- a/content/en/docs/reference/config-api/kubelet-config.v1beta1.md
+++ b/content/en/docs/reference/config-api/kubelet-config.v1beta1.md
@@ -9,20 +9,50 @@ auto_generated: true
 ## Resource Types 
 
 
+- [CredentialProviderConfig](#kubelet-config-k8s-io-v1beta1-CredentialProviderConfig)
 - [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
 - [SerializedNodeConfigSource](#kubelet-config-k8s-io-v1beta1-SerializedNodeConfigSource)
   
     
 
+## `CredentialProviderConfig`     {#kubelet-config-k8s-io-v1beta1-CredentialProviderConfig}
+    
+
+
+<p>CredentialProviderConfig is the configuration containing information about
+each exec credential provider. Kubelet reads this configuration from disk and enables
+each provider as specified by the CredentialProvider type.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubelet.config.k8s.io/v1beta1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>CredentialProviderConfig</code></td></tr>
+    
+  
+<tr><td><code>providers</code> <B>[Required]</B><br/>
+<a href="#kubelet-config-k8s-io-v1beta1-CredentialProvider"><code>[]CredentialProvider</code></a>
+</td>
+<td>
+   <p>providers is a list of credential provider plugins that will be enabled by the kubelet.
+Multiple providers may match against a single image, in which case credentials
+from all providers will be returned to the kubelet. If multiple providers are called
+for a single image, the results are combined. If providers return overlapping
+auth keys, the value from the provider earlier in this list is used.</p>
+</td>
+</tr>
+</tbody>
+</table>
 
 ## `KubeletConfiguration`     {#kubelet-config-k8s-io-v1beta1-KubeletConfiguration}
     
 
 
+<p>KubeletConfiguration contains the configuration for the Kubelet</p>
 
 
-KubeletConfiguration contains the configuration for the Kubelet
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
@@ -30,1398 +60,1037 @@ KubeletConfiguration contains the configuration for the Kubelet
 <tr><td><code>apiVersion</code><br/>string</td><td><code>kubelet.config.k8s.io/v1beta1</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>KubeletConfiguration</code></td></tr>
     
-
-  
   
 <tr><td><code>enableServer</code> <B>[Required]</B><br/>
 <code>bool</code>
 </td>
 <td>
-   enableServer enables Kubelet's secured server.
+   <p>enableServer enables Kubelet's secured server.
 Note: Kubelet's insecure port is controlled by the readOnlyPort option.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may disrupt components that interact with the Kubelet server.
-Default: true</td>
+Default: true</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>staticPodPath</code><br/>
 <code>string</code>
 </td>
 <td>
-   staticPodPath is the path to the directory containing local (static) pods to
+   <p>staticPodPath is the path to the directory containing local (static) pods to
 run, or the path to a single static pod file.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-the set of static pods specified at the new path may be different than the
-ones the Kubelet initially started with, and this may disrupt your node.
-Default: ""</td>
+Default: &quot;&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>syncFrequency</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   syncFrequency is the max period between synchronizing running
+   <p>syncFrequency is the max period between synchronizing running
 containers and config.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-shortening this duration may have a negative performance impact, especially
-as the number of Pods on the node increases. Alternatively, increasing this
-duration will result in longer refresh times for ConfigMaps and Secrets.
-Default: "1m"</td>
+Default: &quot;1m&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>fileCheckFrequency</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   fileCheckFrequency is the duration between checking config files for
+   <p>fileCheckFrequency is the duration between checking config files for
 new data.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-shortening the duration will cause the Kubelet to reload local Static Pod
-configurations more frequently, which may have a negative performance impact.
-Default: "20s"</td>
+Default: &quot;20s&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>httpCheckFrequency</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   httpCheckFrequency is the duration between checking http for new data.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-shortening the duration will cause the Kubelet to poll staticPodURL more
-frequently, which may have a negative performance impact.
-Default: "20s"</td>
+   <p>httpCheckFrequency is the duration between checking http for new data.
+Default: &quot;20s&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>staticPodURL</code><br/>
 <code>string</code>
 </td>
 <td>
-   staticPodURL is the URL for accessing static pods to run.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-the set of static pods specified at the new URL may be different than the
-ones the Kubelet initially started with, and this may disrupt your node.
-Default: ""</td>
+   <p>staticPodURL is the URL for accessing static pods to run.
+Default: &quot;&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>staticPodURLHeader</code><br/>
 <code>map[string][]string</code>
 </td>
 <td>
-   staticPodURLHeader is a map of slices with HTTP headers to use when accessing the podURL.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may disrupt the ability to read the latest set of static pods from StaticPodURL.
-Default: nil</td>
+   <p>staticPodURLHeader is a map of slices with HTTP headers to use when accessing the podURL.
+Default: nil</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>address</code><br/>
 <code>string</code>
 </td>
 <td>
-   address is the IP address for the Kubelet to serve on (set to 0.0.0.0
+   <p>address is the IP address for the Kubelet to serve on (set to 0.0.0.0
 for all interfaces).
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may disrupt components that interact with the Kubelet server.
-Default: "0.0.0.0"</td>
+Default: &quot;0.0.0.0&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>port</code><br/>
 <code>int32</code>
 </td>
 <td>
-   port is the port for the Kubelet to serve on.
+   <p>port is the port for the Kubelet to serve on.
 The port number must be between 1 and 65535, inclusive.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may disrupt components that interact with the Kubelet server.
-Default: 10250</td>
+Default: 10250</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>readOnlyPort</code><br/>
 <code>int32</code>
 </td>
 <td>
-   readOnlyPort is the read-only port for the Kubelet to serve on with
+   <p>readOnlyPort is the read-only port for the Kubelet to serve on with
 no authentication/authorization.
 The port number must be between 1 and 65535, inclusive.
 Setting this field to 0 disables the read-only service.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may disrupt components that interact with the Kubelet server.
-Default: 0 (disabled)</td>
+Default: 0 (disabled)</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>tlsCertFile</code><br/>
 <code>string</code>
 </td>
 <td>
-   tlsCertFile is the file containing x509 Certificate for HTTPS. (CA cert,
+   <p>tlsCertFile is the file containing x509 Certificate for HTTPS. (CA cert,
 if any, concatenated after server cert). If tlsCertFile and
 tlsPrivateKeyFile are not provided, a self-signed certificate
 and key are generated for the public address and saved to the directory
 passed to the Kubelet's --cert-dir flag.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may disrupt components that interact with the Kubelet server.
-Default: ""</td>
+Default: &quot;&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>tlsPrivateKeyFile</code><br/>
 <code>string</code>
 </td>
 <td>
-   tlsPrivateKeyFile is the file containing x509 private key matching tlsCertFile.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may disrupt components that interact with the Kubelet server.
-Default: ""</td>
+   <p>tlsPrivateKeyFile is the file containing x509 private key matching tlsCertFile.
+Default: &quot;&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>tlsCipherSuites</code><br/>
 <code>[]string</code>
 </td>
 <td>
-   tlsCipherSuites is the list of allowed cipher suites for the server.
+   <p>tlsCipherSuites is the list of allowed cipher suites for the server.
 Values are from tls package constants (https://golang.org/pkg/crypto/tls/#pkg-constants).
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may disrupt components that interact with the Kubelet server.
-Default: nil</td>
+Default: nil</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>tlsMinVersion</code><br/>
 <code>string</code>
 </td>
 <td>
-   tlsMinVersion is the minimum TLS version supported.
+   <p>tlsMinVersion is the minimum TLS version supported.
 Values are from tls package constants (https://golang.org/pkg/crypto/tls/#pkg-constants).
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may disrupt components that interact with the Kubelet server.
-Default: ""</td>
+Default: &quot;&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>rotateCertificates</code><br/>
 <code>bool</code>
 </td>
 <td>
-   rotateCertificates enables client certificate rotation. The Kubelet will request a
+   <p>rotateCertificates enables client certificate rotation. The Kubelet will request a
 new certificate from the certificates.k8s.io API. This requires an approver to approve the
 certificate signing requests.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-disabling it may disrupt the Kubelet's ability to authenticate with the API server
-after the current certificate expires.
-Default: false</td>
+Default: false</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>serverTLSBootstrap</code><br/>
 <code>bool</code>
 </td>
 <td>
-   serverTLSBootstrap enables server certificate bootstrap. Instead of self
+   <p>serverTLSBootstrap enables server certificate bootstrap. Instead of self
 signing a serving certificate, the Kubelet will request a certificate from
 the 'certificates.k8s.io' API. This requires an approver to approve the
 certificate signing requests (CSR). The RotateKubeletServerCertificate feature
 must be enabled when setting this field.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-disabling it will stop the renewal of Kubelet server certificates, which can
-disrupt components that interact with the Kubelet server in the long term,
-due to certificate expiration.
-Default: false</td>
+Default: false</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>authentication</code><br/>
 <a href="#kubelet-config-k8s-io-v1beta1-KubeletAuthentication"><code>KubeletAuthentication</code></a>
 </td>
 <td>
-   authentication specifies how requests to the Kubelet's server are authenticated.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may disrupt components that interact with the Kubelet server.
+   <p>authentication specifies how requests to the Kubelet's server are authenticated.
 Defaults:
-  anonymous:
-    enabled: false
-  webhook:
-    enabled: true
-    cacheTTL: "2m"</td>
+anonymous:
+enabled: false
+webhook:
+enabled: true
+cacheTTL: &quot;2m&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>authorization</code><br/>
 <a href="#kubelet-config-k8s-io-v1beta1-KubeletAuthorization"><code>KubeletAuthorization</code></a>
 </td>
 <td>
-   authorization specifies how requests to the Kubelet's server are authorized.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may disrupt components that interact with the Kubelet server.
+   <p>authorization specifies how requests to the Kubelet's server are authorized.
 Defaults:
-  mode: Webhook
-  webhook:
-    cacheAuthorizedTTL: "5m"
-    cacheUnauthorizedTTL: "30s"</td>
+mode: Webhook
+webhook:
+cacheAuthorizedTTL: &quot;5m&quot;
+cacheUnauthorizedTTL: &quot;30s&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>registryPullQPS</code><br/>
 <code>int32</code>
 </td>
 <td>
-   registryPullQPS is the limit of registry pulls per second.
+   <p>registryPullQPS is the limit of registry pulls per second.
 The value must not be a negative number.
 Setting it to 0 means no limit.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may impact scalability by changing the amount of traffic produced
-by image pulls.
-Default: 5</td>
+Default: 5</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>registryBurst</code><br/>
 <code>int32</code>
 </td>
 <td>
-   registryBurst is the maximum size of bursty pulls, temporarily allows
+   <p>registryBurst is the maximum size of bursty pulls, temporarily allows
 pulls to burst to this number, while still not exceeding registryPullQPS.
 The value must not be a negative number.
 Only used if registryPullQPS is greater than 0.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may impact scalability by changing the amount of traffic produced
-by image pulls.
-Default: 10</td>
+Default: 10</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>eventRecordQPS</code><br/>
 <code>int32</code>
 </td>
 <td>
-   eventRecordQPS is the maximum event creations per second. If 0, there
+   <p>eventRecordQPS is the maximum event creations per second. If 0, there
 is no limit enforced. The value cannot be a negative number.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may impact scalability by changing the amount of traffic produced by
-event creations.
-Default: 5</td>
+Default: 5</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>eventBurst</code><br/>
 <code>int32</code>
 </td>
 <td>
-   eventBurst is the maximum size of a burst of event creations, temporarily
+   <p>eventBurst is the maximum size of a burst of event creations, temporarily
 allows event creations to burst to this number, while still not exceeding
 eventRecordQPS. This field canot be a negative number and it is only used
-when eventRecordQPS > 0.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may impact scalability by changing the amount of traffic produced by
-event creations.
-Default: 10</td>
+when eventRecordQPS &gt; 0.
+Default: 10</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>enableDebuggingHandlers</code><br/>
 <code>bool</code>
 </td>
 <td>
-   enableDebuggingHandlers enables server endpoints for log access
+   <p>enableDebuggingHandlers enables server endpoints for log access
 and local running of containers and commands, including the exec,
 attach, logs, and portforward features.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-disabling it may disrupt components that interact with the Kubelet server.
-Default: true</td>
+Default: true</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>enableContentionProfiling</code><br/>
 <code>bool</code>
 </td>
 <td>
-   enableContentionProfiling enables lock contention profiling, if enableDebuggingHandlers is true.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-enabling it may carry a performance impact.
-Default: false</td>
+   <p>enableContentionProfiling enables lock contention profiling, if enableDebuggingHandlers is true.
+Default: false</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>healthzPort</code><br/>
 <code>int32</code>
 </td>
 <td>
-   healthzPort is the port of the localhost healthz endpoint (set to 0 to disable).
+   <p>healthzPort is the port of the localhost healthz endpoint (set to 0 to disable).
 A valid number is between 1 and 65535.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may disrupt components that monitor Kubelet health.
-Default: 10248</td>
+Default: 10248</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>healthzBindAddress</code><br/>
 <code>string</code>
 </td>
 <td>
-   healthzBindAddress is the IP address for the healthz server to serve on.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may disrupt components that monitor Kubelet health.
-Default: "127.0.0.1"</td>
+   <p>healthzBindAddress is the IP address for the healthz server to serve on.
+Default: &quot;127.0.0.1&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>oomScoreAdj</code><br/>
 <code>int32</code>
 </td>
 <td>
-   oomScoreAdj is The oom-score-adj value for kubelet process. Values
+   <p>oomScoreAdj is The oom-score-adj value for kubelet process. Values
 must be within the range [-1000, 1000].
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may impact the stability of nodes under memory pressure.
-Default: -999</td>
+Default: -999</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>clusterDomain</code><br/>
 <code>string</code>
 </td>
 <td>
-   clusterDomain is the DNS domain for this cluster. If set, kubelet will
+   <p>clusterDomain is the DNS domain for this cluster. If set, kubelet will
 configure all containers to search this domain in addition to the
 host's search domains.
-Dynamic Kubelet Config (deprecated): Dynamically updating this field is not recommended,
-as it should be kept in sync with the rest of the cluster.
-Default: ""</td>
+Default: &quot;&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>clusterDNS</code><br/>
 <code>[]string</code>
 </td>
 <td>
-   clusterDNS is a list of IP addresses for the cluster DNS server. If set,
+   <p>clusterDNS is a list of IP addresses for the cluster DNS server. If set,
 kubelet will configure all containers to use this for DNS resolution
 instead of the host's DNS servers.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-changes will only take effect on Pods created after the update. Draining
-the node is recommended before changing this field.
-Default: nil</td>
+Default: nil</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>streamingConnectionIdleTimeout</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   streamingConnectionIdleTimeout is the maximum time a streaming connection
+   <p>streamingConnectionIdleTimeout is the maximum time a streaming connection
 can be idle before the connection is automatically closed.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may impact components that rely on infrequent updates over streaming
-connections to the Kubelet server.
-Default: "4h"</td>
+Default: &quot;4h&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>nodeStatusUpdateFrequency</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   nodeStatusUpdateFrequency is the frequency that kubelet computes node
+   <p>nodeStatusUpdateFrequency is the frequency that kubelet computes node
 status. If node lease feature is not enabled, it is also the frequency that
 kubelet posts node status to master.
 Note: When node lease feature is not enabled, be cautious when changing the
 constant, it must work with nodeMonitorGracePeriod in nodecontroller.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may impact node scalability, and also that the node controller's
-nodeMonitorGracePeriod must be set to N&lowast;NodeStatusUpdateFrequency,
-where N is the number of retries before the node controller marks
-the node unhealthy.
-Default: "10s"</td>
+Default: &quot;10s&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>nodeStatusReportFrequency</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   nodeStatusReportFrequency is the frequency that kubelet posts node
+   <p>nodeStatusReportFrequency is the frequency that kubelet posts node
 status to master if node status does not change. Kubelet will ignore this
 frequency and post node status immediately if any change is detected. It is
 only used when node lease feature is enabled. nodeStatusReportFrequency's
 default value is 5m. But if nodeStatusUpdateFrequency is set explicitly,
 nodeStatusReportFrequency's default value will be set to
 nodeStatusUpdateFrequency for backward compatibility.
-Default: "5m"</td>
+Default: &quot;5m&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>nodeLeaseDurationSeconds</code><br/>
 <code>int32</code>
 </td>
 <td>
-   nodeLeaseDurationSeconds is the duration the Kubelet will set on its corresponding Lease,
-when the NodeLease feature is enabled. This feature provides an indicator of node
-health by having the Kubelet create and periodically renew a lease, named after the node,
-in the kube-node-lease namespace. If the lease expires, the node can be considered unhealthy.
-The lease is currently renewed every 10s, per KEP-0009. In the future, the lease renewal interval
-may be set based on the lease duration.
+   <p>nodeLeaseDurationSeconds is the duration the Kubelet will set on its corresponding Lease.
+NodeLease provides an indicator of node health by having the Kubelet create and
+periodically renew a lease, named after the node, in the kube-node-lease namespace.
+If the lease expires, the node can be considered unhealthy.
+The lease is currently renewed every 10s, per KEP-0009. In the future, the lease renewal
+interval may be set based on the lease duration.
 The field value must be greater than 0.
-Requires the NodeLease feature gate to be enabled.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-decreasing the duration may reduce tolerance for issues that temporarily prevent
-the Kubelet from renewing the lease (e.g. a short-lived network issue).
-Default: 40</td>
+Default: 40</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>imageMinimumGCAge</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   imageMinimumGCAge is the minimum age for an unused image before it is
+   <p>imageMinimumGCAge is the minimum age for an unused image before it is
 garbage collected.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may trigger or delay garbage collection, and may change the image overhead
-on the node.
-Default: "2m"</td>
+Default: &quot;2m&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>imageGCHighThresholdPercent</code><br/>
 <code>int32</code>
 </td>
 <td>
-   imageGCHighThresholdPercent is the percent of disk usage after which
+   <p>imageGCHighThresholdPercent is the percent of disk usage after which
 image garbage collection is always run. The percent is calculated by
 dividing this field value by 100, so this field must be between 0 and
 100, inclusive. When specified, the value must be greater than
 imageGCLowThresholdPercent.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may trigger or delay garbage collection, and may change the image overhead
-on the node.
-Default: 85</td>
+Default: 85</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>imageGCLowThresholdPercent</code><br/>
 <code>int32</code>
 </td>
 <td>
-   imageGCLowThresholdPercent is the percent of disk usage before which
+   <p>imageGCLowThresholdPercent is the percent of disk usage before which
 image garbage collection is never run. Lowest disk usage to garbage
 collect to. The percent is calculated by dividing this field value by 100,
 so the field value must be between 0 and 100, inclusive. When specified, the
 value must be less than imageGCHighThresholdPercent.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may trigger or delay garbage collection, and may change the image overhead
-on the node.
-Default: 80</td>
+Default: 80</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>volumeStatsAggPeriod</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   volumeStatsAggPeriod is the frequency for calculating and caching volume
+   <p>volumeStatsAggPeriod is the frequency for calculating and caching volume
 disk usage for all pods.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-shortening the period may carry a performance impact.
-Default: "1m"</td>
+Default: &quot;1m&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>kubeletCgroups</code><br/>
 <code>string</code>
 </td>
 <td>
-   kubeletCgroups is the absolute name of cgroups to isolate the kubelet in
-Dynamic Kubelet Config (deprecated): This field should not be updated without a full node
-reboot. It is safest to keep this value the same as the local config.
-Default: ""</td>
+   <p>kubeletCgroups is the absolute name of cgroups to isolate the kubelet in
+Default: &quot;&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>systemCgroups</code><br/>
 <code>string</code>
 </td>
 <td>
-   systemCgroups is absolute name of cgroups in which to place
+   <p>systemCgroups is absolute name of cgroups in which to place
 all non-kernel processes that are not already in a container. Empty
 for no container. Rolling back the flag requires a reboot.
 The cgroupRoot must be specified if this field is not empty.
-Dynamic Kubelet Config (deprecated): This field should not be updated without a full node
-reboot. It is safest to keep this value the same as the local config.
-Default: ""</td>
+Default: &quot;&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>cgroupRoot</code><br/>
 <code>string</code>
 </td>
 <td>
-   cgroupRoot is the root cgroup to use for pods. This is handled by the
-container runtime on a best effort basis.
-Dynamic Kubelet Config (deprecated): This field should not be updated without a full node
-reboot. It is safest to keep this value the same as the local config.
-Default: ""</td>
+   <p>cgroupRoot is the root cgroup to use for pods. This is handled by the
+container runtime on a best effort basis.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>cgroupsPerQOS</code><br/>
 <code>bool</code>
 </td>
 <td>
-   cgroupsPerQOS enable QoS based CGroup hierarchy: top level CGroups for QoS classes
+   <p>cgroupsPerQOS enable QoS based CGroup hierarchy: top level CGroups for QoS classes
 and all Burstable and BestEffort Pods are brought up under their specific top level
 QoS CGroup.
-Dynamic Kubelet Config (deprecated): This field should not be updated without a full node
-reboot. It is safest to keep this value the same as the local config.
-Default: true</td>
+Default: true</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>cgroupDriver</code><br/>
 <code>string</code>
 </td>
 <td>
-   cgroupDriver is the driver kubelet uses to manipulate CGroups on the host (cgroupfs
+   <p>cgroupDriver is the driver kubelet uses to manipulate CGroups on the host (cgroupfs
 or systemd).
-Dynamic Kubelet Config (deprecated): This field should not be updated without a full node
-reboot. It is safest to keep this value the same as the local config.
-Default: "cgroupfs"</td>
+Default: &quot;cgroupfs&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>cpuManagerPolicy</code><br/>
 <code>string</code>
 </td>
 <td>
-   cpuManagerPolicy is the name of the policy to use.
+   <p>cpuManagerPolicy is the name of the policy to use.
 Requires the CPUManager feature gate to be enabled.
-Dynamic Kubelet Config (deprecated): This field should not be updated without a full node
-reboot. It is safest to keep this value the same as the local config.
-Default: "None"</td>
+Default: &quot;None&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>cpuManagerPolicyOptions</code><br/>
 <code>map[string]string</code>
 </td>
 <td>
-   cpuManagerPolicyOptions is a set of key=value which 	allows to set extra options
+   <p>cpuManagerPolicyOptions is a set of key=value which 	allows to set extra options
 to fine tune the behaviour of the cpu manager policies.
-Requires  both the "CPUManager" and "CPUManagerPolicyOptions" feature gates to be enabled.
-Dynamic Kubelet Config (beta): This field should not be updated without a full node
-reboot. It is safest to keep this value the same as the local config.
-Default: nil</td>
+Requires  both the &quot;CPUManager&quot; and &quot;CPUManagerPolicyOptions&quot; feature gates to be enabled.
+Default: nil</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>cpuManagerReconcilePeriod</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   cpuManagerReconcilePeriod is the reconciliation period for the CPU Manager.
+   <p>cpuManagerReconcilePeriod is the reconciliation period for the CPU Manager.
 Requires the CPUManager feature gate to be enabled.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-shortening the period may carry a performance impact.
-Default: "10s"</td>
+Default: &quot;10s&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>memoryManagerPolicy</code><br/>
 <code>string</code>
 </td>
 <td>
-   memoryManagerPolicy is the name of the policy to use by memory manager.
+   <p>memoryManagerPolicy is the name of the policy to use by memory manager.
 Requires the MemoryManager feature gate to be enabled.
-Dynamic Kubelet Config (deprecated): This field should not be updated without a full node
-reboot. It is safest to keep this value the same as the local config.
-Default: "none"</td>
+Default: &quot;none&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>topologyManagerPolicy</code><br/>
 <code>string</code>
 </td>
 <td>
-   topologyManagerPolicy is the name of the topology manager policy to use.
-Valid values include:
-
-- `restricted`: kubelet only allows pods with optimal NUMA node alignment for
-  requested resources;
-- `best-effort`: kubelet will favor pods with NUMA alignment of CPU and device
-  resources;
-- `none`: kublet has no knowledge of NUMA alignment of a pod's CPU and device resources.
-- `single-numa-node`: kubelet only allows pods with a single NUMA alignment
-  of CPU and device resources.
-
-Policies other than "none" require the TopologyManager feature gate to be enabled.
-Dynamic Kubelet Config (deprecated): This field should not be updated without a full node
-reboot. It is safest to keep this value the same as the local config.
-Default: "none"</td>
+   <p>topologyManagerPolicy is the name of the topology manager policy to use.
+Valid values include:</p>
+<ul>
+<li><code>restricted</code>: kubelet only allows pods with optimal NUMA node alignment for
+requested resources;</li>
+<li><code>best-effort</code>: kubelet will favor pods with NUMA alignment of CPU and device
+resources;</li>
+<li><code>none</code>: kubelet has no knowledge of NUMA alignment of a pod's CPU and device resources.</li>
+<li><code>single-numa-node</code>: kubelet only allows pods with a single NUMA alignment
+of CPU and device resources.</li>
+</ul>
+<p>Policies other than &quot;none&quot; require the TopologyManager feature gate to be enabled.
+Default: &quot;none&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>topologyManagerScope</code><br/>
 <code>string</code>
 </td>
 <td>
-   topologyManagerScope represents the scope of topology hint generation
-that topology manager requests and hint providers generate. Valid values include:
-
-- `container`: topology policy is applied on a per-container basis.
-- `pod`: topology policy is applied on a per-pod basis.
-
-"pod" scope requires the TopologyManager feature gate to be enabled.
-Default: "container"</td>
+   <p>topologyManagerScope represents the scope of topology hint generation
+that topology manager requests and hint providers generate. Valid values include:</p>
+<ul>
+<li><code>container</code>: topology policy is applied on a per-container basis.</li>
+<li><code>pod</code>: topology policy is applied on a per-pod basis.</li>
+</ul>
+<p>&quot;pod&quot; scope requires the TopologyManager feature gate to be enabled.
+Default: &quot;container&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>qosReserved</code><br/>
 <code>map[string]string</code>
 </td>
 <td>
-   qosReserved is a set of resource name to percentage pairs that specify
+   <p>qosReserved is a set of resource name to percentage pairs that specify
 the minimum percentage of a resource reserved for exclusive use by the
 guaranteed QoS tier.
-Currently supported resources: "memory"
+Currently supported resources: &quot;memory&quot;
 Requires the QOSReserved feature gate to be enabled.
-Dynamic Kubelet Config (deprecated): This field should not be updated without a full node
-reboot. It is safest to keep this value the same as the local config.
-Default: nil</td>
+Default: nil</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>runtimeRequestTimeout</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   runtimeRequestTimeout is the timeout for all runtime requests except long running
+   <p>runtimeRequestTimeout is the timeout for all runtime requests except long running
 requests - pull, logs, exec and attach.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may disrupt components that interact with the Kubelet server.
-Default: "2m"</td>
+Default: &quot;2m&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>hairpinMode</code><br/>
 <code>string</code>
 </td>
 <td>
-   hairpinMode specifies how the Kubelet should configure the container
+   <p>hairpinMode specifies how the Kubelet should configure the container
 bridge for hairpin packets.
 Setting this flag allows endpoints in a Service to loadbalance back to
-themselves if they should try to access their own Service. Values:
-
-- "promiscuous-bridge": make the container bridge promiscuous.
-- "hairpin-veth":       set the hairpin flag on container veth interfaces.
-- "none":               do nothing.
-
-Generally, one must set `--hairpin-mode=hairpin-veth to` achieve hairpin NAT,
+themselves if they should try to access their own Service. Values:</p>
+<ul>
+<li>&quot;promiscuous-bridge&quot;: make the container bridge promiscuous.</li>
+<li>&quot;hairpin-veth&quot;:       set the hairpin flag on container veth interfaces.</li>
+<li>&quot;none&quot;:               do nothing.</li>
+</ul>
+<p>Generally, one must set <code>--hairpin-mode=hairpin-veth to</code> achieve hairpin NAT,
 because promiscuous-bridge assumes the existence of a container bridge named cbr0.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may require a node reboot, depending on the network plugin.
-Default: "promiscuous-bridge"</td>
+Default: &quot;promiscuous-bridge&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>maxPods</code><br/>
 <code>int32</code>
 </td>
 <td>
-   maxPods is the maximum number of Pods that can run on this Kubelet.
+   <p>maxPods is the maximum number of Pods that can run on this Kubelet.
 The value must be a non-negative integer.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-changes may cause Pods to fail admission on Kubelet restart, and may change
-the value reported in Node.Status.Capacity[v1.ResourcePods], thus affecting
-future scheduling decisions. Increasing this value may also decrease performance,
-as more Pods can be packed into a single node.
-Default: 110</td>
+Default: 110</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>podCIDR</code><br/>
 <code>string</code>
 </td>
 <td>
-   podCIDR is the CIDR to use for pod IP addresses, only used in standalone mode.
+   <p>podCIDR is the CIDR to use for pod IP addresses, only used in standalone mode.
 In cluster mode, this is obtained from the control plane.
-Dynamic Kubelet Config (deprecated): This field should always be set to the empty default.
-It should only set for standalone Kubelets, which cannot use Dynamic Kubelet Config.
-Default: ""</td>
+Default: &quot;&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>podPidsLimit</code><br/>
 <code>int64</code>
 </td>
 <td>
-   podPidsLimit is the maximum number of PIDs in any pod.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-lowering it may prevent container processes from forking after the change.
-Default: -1</td>
+   <p>podPidsLimit is the maximum number of PIDs in any pod.
+Default: -1</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>resolvConf</code><br/>
 <code>string</code>
 </td>
 <td>
-   resolvConf is the resolver configuration file used as the basis
+   <p>resolvConf is the resolver configuration file used as the basis
 for the container DNS resolution configuration.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-changes will only take effect on Pods created after the update. Draining
-the node is recommended before changing this field.
-Default: "/etc/resolv.conf"</td>
+If set to the empty string, will override the default and effectively disable DNS lookups.
+Default: &quot;/etc/resolv.conf&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>runOnce</code><br/>
 <code>bool</code>
 </td>
 <td>
-   runOnce causes the Kubelet to check the API server once for pods,
+   <p>runOnce causes the Kubelet to check the API server once for pods,
 run those in addition to the pods specified by static pod files, and exit.
-Default: false</td>
+Default: false</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>cpuCFSQuota</code><br/>
 <code>bool</code>
 </td>
 <td>
-   cpuCFSQuota enables CPU CFS quota enforcement for containers that
+   <p>cpuCFSQuota enables CPU CFS quota enforcement for containers that
 specify CPU limits.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-disabling it may reduce node stability.
-Default: true</td>
+Default: true</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>cpuCFSQuotaPeriod</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   cpuCFSQuotaPeriod is the CPU CFS quota period value, `cpu.cfs_period_us`.
+   <p>cpuCFSQuotaPeriod is the CPU CFS quota period value, <code>cpu.cfs_period_us</code>.
 The value must be between 1 us and 1 second, inclusive.
 Requires the CustomCPUCFSQuotaPeriod feature gate to be enabled.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-limits set for containers will result in different cpu.cfs_quota settings. This
-will trigger container restarts on the node being reconfigured.
-Default: "100ms"</td>
+Default: &quot;100ms&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>nodeStatusMaxImages</code><br/>
 <code>int32</code>
 </td>
 <td>
-   nodeStatusMaxImages caps the number of images reported in Node.status.images.
+   <p>nodeStatusMaxImages caps the number of images reported in Node.status.images.
 The value must be greater than -2.
 Note: If -1 is specified, no cap will be applied. If 0 is specified, no image is returned.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-different values can be reported on node status.
-Default: 50</td>
+Default: 50</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>maxOpenFiles</code><br/>
 <code>int64</code>
 </td>
 <td>
-   maxOpenFiles is Number of files that can be opened by Kubelet process.
+   <p>maxOpenFiles is Number of files that can be opened by Kubelet process.
 The value must be a non-negative number.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may impact the ability of the Kubelet to interact with the node's filesystem.
-Default: 1000000</td>
+Default: 1000000</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>contentType</code><br/>
 <code>string</code>
 </td>
 <td>
-   contentType is contentType of requests sent to apiserver.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may impact the ability for the Kubelet to communicate with the API server.
-If the Kubelet loses contact with the API server due to a change to this field,
-the change cannot be reverted via dynamic Kubelet config.
-Default: "application/vnd.kubernetes.protobuf"</td>
+   <p>contentType is contentType of requests sent to apiserver.
+Default: &quot;application/vnd.kubernetes.protobuf&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>kubeAPIQPS</code><br/>
 <code>int32</code>
 </td>
 <td>
-   kubeAPIQPS is the QPS to use while talking with kubernetes apiserver.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may impact scalability by changing the amount of traffic the Kubelet
-sends to the API server.
-Default: 5</td>
+   <p>kubeAPIQPS is the QPS to use while talking with kubernetes apiserver.
+Default: 5</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>kubeAPIBurst</code><br/>
 <code>int32</code>
 </td>
 <td>
-   kubeAPIBurst is the burst to allow while talking with kubernetes API server.
+   <p>kubeAPIBurst is the burst to allow while talking with kubernetes API server.
 This field cannot be a negative number.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may impact scalability by changing the amount of traffic the Kubelet
-sends to the API server.
-Default: 10</td>
+Default: 10</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>serializeImagePulls</code><br/>
 <code>bool</code>
 </td>
 <td>
-   serializeImagePulls when enabled, tells the Kubelet to pull images one
-at a time. We recommend &lowast;not&lowast; changing the default value on nodes that
-run docker daemon with version  < 1.9 or an Aufs storage backend.
+   <p>serializeImagePulls when enabled, tells the Kubelet to pull images one
+at a time. We recommend <em>not</em> changing the default value on nodes that
+run docker daemon with version  &lt; 1.9 or an Aufs storage backend.
 Issue #10959 has more details.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may impact the performance of image pulls.
-Default: true</td>
+Default: true</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>evictionHard</code><br/>
 <code>map[string]string</code>
 </td>
 <td>
-   evictionHard is a map of signal names to quantities that defines hard eviction
-thresholds. For example: `{"memory.available": "300Mi"}`.
+   <p>evictionHard is a map of signal names to quantities that defines hard eviction
+thresholds. For example: <code>{&quot;memory.available&quot;: &quot;300Mi&quot;}</code>.
 To explicitly disable, pass a 0% or 100% threshold on an arbitrary resource.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may trigger or delay Pod evictions.
 Default:
-  memory.available:  "100Mi"
-  nodefs.available:  "10%"
-  nodefs.inodesFree: "5%"
-  imagefs.available: "15%"</td>
+memory.available:  &quot;100Mi&quot;
+nodefs.available:  &quot;10%&quot;
+nodefs.inodesFree: &quot;5%&quot;
+imagefs.available: &quot;15%&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>evictionSoft</code><br/>
 <code>map[string]string</code>
 </td>
 <td>
-   evictionSoft is a map of signal names to quantities that defines soft eviction thresholds.
-For example: `{"memory.available": "300Mi"}`.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may trigger or delay Pod evictions, and may change the allocatable reported
-by the node.
-Default: nil</td>
+   <p>evictionSoft is a map of signal names to quantities that defines soft eviction thresholds.
+For example: <code>{&quot;memory.available&quot;: &quot;300Mi&quot;}</code>.
+Default: nil</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>evictionSoftGracePeriod</code><br/>
 <code>map[string]string</code>
 </td>
 <td>
-   evictionSoftGracePeriod is a map of signal names to quantities that defines grace
-periods for each soft eviction signal. For example: `{"memory.available": "30s"}`.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may trigger or delay Pod evictions.
-Default: nil</td>
+   <p>evictionSoftGracePeriod is a map of signal names to quantities that defines grace
+periods for each soft eviction signal. For example: <code>{&quot;memory.available&quot;: &quot;30s&quot;}</code>.
+Default: nil</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>evictionPressureTransitionPeriod</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   evictionPressureTransitionPeriod is the duration for which the kubelet has to wait
+   <p>evictionPressureTransitionPeriod is the duration for which the kubelet has to wait
 before transitioning out of an eviction pressure condition.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-lowering it may decrease the stability of the node when the node is overcommitted.
-Default: "5m"</td>
+Default: &quot;5m&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>evictionMaxPodGracePeriod</code><br/>
 <code>int32</code>
 </td>
 <td>
-   evictionMaxPodGracePeriod is the maximum allowed grace period (in seconds) to use
+   <p>evictionMaxPodGracePeriod is the maximum allowed grace period (in seconds) to use
 when terminating pods in response to a soft eviction threshold being met. This value
 effectively caps the Pod's terminationGracePeriodSeconds value during soft evictions.
 Note: Due to issue #64530, the behavior has a bug where this value currently just
 overrides the grace period during soft eviction, which can increase the grace
 period from what is set on the Pod. This bug will be fixed in a future release.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-lowering it decreases the amount of time Pods will have to gracefully clean
-up before being killed during a soft eviction.
-Default: 0</td>
+Default: 0</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>evictionMinimumReclaim</code><br/>
 <code>map[string]string</code>
 </td>
 <td>
-   evictionMinimumReclaim is a map of signal names to quantities that defines minimum reclaims,
+   <p>evictionMinimumReclaim is a map of signal names to quantities that defines minimum reclaims,
 which describe the minimum amount of a given resource the kubelet will reclaim when
 performing a pod eviction while that resource is under pressure.
-For example: `{"imagefs.available": "2Gi"}`.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may change how well eviction can manage resource pressure.
-Default: nil</td>
+For example: <code>{&quot;imagefs.available&quot;: &quot;2Gi&quot;}</code>.
+Default: nil</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>podsPerCore</code><br/>
 <code>int32</code>
 </td>
 <td>
-   podsPerCore is the maximum number of pods per core. Cannot exceed maxPods.
+   <p>podsPerCore is the maximum number of pods per core. Cannot exceed maxPods.
 The value must be a non-negative integer.
 If 0, there is no limit on the number of Pods.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-changes may cause Pods to fail admission on Kubelet restart, and may change
-the value reported in `Node.status.capacity.pods`, thus affecting
-future scheduling decisions. Increasing this value may also decrease performance,
-as more Pods can be packed into a single node.
-Default: 0</td>
+Default: 0</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>enableControllerAttachDetach</code><br/>
 <code>bool</code>
 </td>
 <td>
-   enableControllerAttachDetach enables the Attach/Detach controller to
+   <p>enableControllerAttachDetach enables the Attach/Detach controller to
 manage attachment/detachment of volumes scheduled to this node, and
 disables kubelet from executing any attach/detach operations.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-changing which component is responsible for volume management on a live node
-may result in volumes refusing to detach if the node is not drained prior to
-the update, and if Pods are scheduled to the node before the
-volumes.kubernetes.io/controller-managed-attach-detach annotation is updated by the
-Kubelet. In general, it is safest to leave this value set the same as local config.
-Default: true</td>
+Note: attaching/detaching CSI volumes is not supported by the kubelet,
+so this option needs to be true for that use case.
+Default: true</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>protectKernelDefaults</code><br/>
 <code>bool</code>
 </td>
 <td>
-   protectKernelDefaults, if true, causes the Kubelet to error if kernel
+   <p>protectKernelDefaults, if true, causes the Kubelet to error if kernel
 flags are not as it expects. Otherwise the Kubelet will attempt to modify
 kernel flags to match its expectation.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-enabling it may cause the Kubelet to crash-loop if the Kernel is not configured as
-Kubelet expects.
-Default: false</td>
+Default: false</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>makeIPTablesUtilChains</code><br/>
 <code>bool</code>
 </td>
 <td>
-   makeIPTablesUtilChains, if true, causes the Kubelet ensures a set of iptables rules
+   <p>makeIPTablesUtilChains, if true, causes the Kubelet ensures a set of iptables rules
 are present on host.
 These rules will serve as utility rules for various components, e.g. kube-proxy.
 The rules will be created based on iptablesMasqueradeBit and iptablesDropBit.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-disabling it will prevent the Kubelet from healing locally misconfigured iptables rules.
-Default: true</td>
+Default: true</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>iptablesMasqueradeBit</code><br/>
 <code>int32</code>
 </td>
 <td>
-   iptablesMasqueradeBit is the bit of the iptables fwmark space to mark for SNAT.
+   <p>iptablesMasqueradeBit is the bit of the iptables fwmark space to mark for SNAT.
 Values must be within the range [0, 31]. Must be different from other mark bits.
 Warning: Please match the value of the corresponding parameter in kube-proxy.
 TODO: clean up IPTablesMasqueradeBit in kube-proxy.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it needs to be coordinated with other components, like kube-proxy, and the update
-will only be effective if MakeIPTablesUtilChains is enabled.
-Default: 14</td>
+Default: 14</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>iptablesDropBit</code><br/>
 <code>int32</code>
 </td>
 <td>
-   iptablesDropBit is the bit of the iptables fwmark space to mark for dropping packets.
+   <p>iptablesDropBit is the bit of the iptables fwmark space to mark for dropping packets.
 Values must be within the range [0, 31]. Must be different from other mark bits.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it needs to be coordinated with other components, like kube-proxy, and the update
-will only be effective if MakeIPTablesUtilChains is enabled.
-Default: 15</td>
+Default: 15</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>featureGates</code><br/>
 <code>map[string]bool</code>
 </td>
 <td>
-   featureGates is a map of feature names to bools that enable or disable experimental
+   <p>featureGates is a map of feature names to bools that enable or disable experimental
 features. This field modifies piecemeal the built-in default values from
-"k8s.io/kubernetes/pkg/features/kube_features.go".
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider the
-documentation for the features you are enabling or disabling. While we
-encourage feature developers to make it possible to dynamically enable
-and disable features, some changes may require node reboots, and some
-features may require careful coordination to retroactively disable.
-Default: nil</td>
+&quot;k8s.io/kubernetes/pkg/features/kube_features.go&quot;.
+Default: nil</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>failSwapOn</code><br/>
 <code>bool</code>
 </td>
 <td>
-   failSwapOn tells the Kubelet to fail to start if swap is enabled on the node.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-setting it to true will cause the Kubelet to crash-loop if swap is enabled.
-Default: true</td>
+   <p>failSwapOn tells the Kubelet to fail to start if swap is enabled on the node.
+Default: true</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>memorySwap</code><br/>
 <a href="#kubelet-config-k8s-io-v1beta1-MemorySwapConfiguration"><code>MemorySwapConfiguration</code></a>
 </td>
 <td>
-   memorySwap configures swap memory available to container workloads.</td>
+   <p>memorySwap configures swap memory available to container workloads.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>containerLogMaxSize</code><br/>
 <code>string</code>
 </td>
 <td>
-   containerLogMaxSize is a quantity defining the maximum size of the container log
-file before it is rotated. For example: "5Mi" or "256Ki".
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may trigger log rotation.
-Default: "10Mi"</td>
+   <p>containerLogMaxSize is a quantity defining the maximum size of the container log
+file before it is rotated. For example: &quot;5Mi&quot; or &quot;256Ki&quot;.
+Default: &quot;10Mi&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>containerLogMaxFiles</code><br/>
 <code>int32</code>
 </td>
 <td>
-   containerLogMaxFiles specifies the maximum number of container log files that can
+   <p>containerLogMaxFiles specifies the maximum number of container log files that can
 be present for a container.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-lowering it may cause log files to be deleted.
-Default: 5</td>
+Default: 5</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>configMapAndSecretChangeDetectionStrategy</code><br/>
 <a href="#kubelet-config-k8s-io-v1beta1-ResourceChangeDetectionStrategy"><code>ResourceChangeDetectionStrategy</code></a>
 </td>
 <td>
-   configMapAndSecretChangeDetectionStrategy is a mode in which ConfigMap and Secret
-managers are running. Valid values include:
-
-- `Get`: kubelet fetches necessary objects directly from the API server;
-- `Cache`: kubelet uses TTL cache for object fetched from the API server;
-- `Watch`: kubelet uses watches to observe changes to objects that are in its interest.
-
-Default: "Watch"</td>
+   <p>configMapAndSecretChangeDetectionStrategy is a mode in which ConfigMap and Secret
+managers are running. Valid values include:</p>
+<ul>
+<li><code>Get</code>: kubelet fetches necessary objects directly from the API server;</li>
+<li><code>Cache</code>: kubelet uses TTL cache for object fetched from the API server;</li>
+<li><code>Watch</code>: kubelet uses watches to observe changes to objects that are in its interest.</li>
+</ul>
+<p>Default: &quot;Watch&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>systemReserved</code><br/>
 <code>map[string]string</code>
 </td>
 <td>
-   systemReserved is a set of ResourceName=ResourceQuantity (e.g. cpu=200m,memory=150G)
+   <p>systemReserved is a set of ResourceName=ResourceQuantity (e.g. cpu=200m,memory=150G)
 pairs that describe resources reserved for non-kubernetes components.
 Currently only cpu and memory are supported.
 See http://kubernetes.io/docs/user-guide/compute-resources for more detail.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may not be possible to increase the reserved resources, because this
-requires resizing cgroups. Always look for a NodeAllocatableEnforced event
-after updating this field to ensure that the update was successful.
-Default: nil</td>
+Default: nil</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>kubeReserved</code><br/>
 <code>map[string]string</code>
 </td>
 <td>
-   kubeReserved is a set of ResourceName=ResourceQuantity (e.g. cpu=200m,memory=150G) pairs
+   <p>kubeReserved is a set of ResourceName=ResourceQuantity (e.g. cpu=200m,memory=150G) pairs
 that describe resources reserved for kubernetes system components.
 Currently cpu, memory and local storage for root file system are supported.
 See https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
 for more details.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may not be possible to increase the reserved resources, because this
-requires resizing cgroups. Always look for a NodeAllocatableEnforced event
-after updating this field to ensure that the update was successful.
-Default: nil</td>
+Default: nil</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>reservedSystemCPUs</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   The reservedSystemCPUs option specifies the CPU list reserved for the host
-level system threads and kubernetes related threads. This provide a "static"
-CPU list rather than the "dynamic" list by systemReserved and kubeReserved.
-This option does not support systemReservedCgroup or kubeReservedCgroup.</td>
+   <p>The reservedSystemCPUs option specifies the CPU list reserved for the host
+level system threads and kubernetes related threads. This provide a &quot;static&quot;
+CPU list rather than the &quot;dynamic&quot; list by systemReserved and kubeReserved.
+This option does not support systemReservedCgroup or kubeReservedCgroup.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>showHiddenMetricsForVersion</code><br/>
 <code>string</code>
 </td>
 <td>
-   showHiddenMetricsForVersion is the previous version for which you want to show
+   <p>showHiddenMetricsForVersion is the previous version for which you want to show
 hidden metrics.
 Only the previous minor version is meaningful, other values will not be allowed.
-The format is `<major>.<minor>`, e.g.: `1.16`.
+The format is <code>&lt;major&gt;.&lt;minor&gt;</code>, e.g.: <code>1.16</code>.
 The purpose of this format is make sure you have the opportunity to notice
 if the next release hides additional metrics, rather than being surprised
 when they are permanently removed in the release after that.
-Default: ""</td>
+Default: &quot;&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>systemReservedCgroup</code><br/>
 <code>string</code>
 </td>
 <td>
-   systemReservedCgroup helps the kubelet identify absolute name of top level CGroup used
-to enforce `systemReserved` compute resource reservation for OS system daemons.
-Refer to [Node Allocatable](https://git.k8s.io/community/contributors/design-proposals/node/node-allocatable.md)
+   <p>systemReservedCgroup helps the kubelet identify absolute name of top level CGroup used
+to enforce <code>systemReserved</code> compute resource reservation for OS system daemons.
+Refer to <a href="https://git.k8s.io/design-proposals-archive/node/node-allocatable.md">Node Allocatable</a>
 doc for more information.
-Dynamic Kubelet Config (deprecated): This field should not be updated without a full node
-reboot. It is safest to keep this value the same as the local config.
-Default: ""</td>
+Default: &quot;&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>kubeReservedCgroup</code><br/>
 <code>string</code>
 </td>
 <td>
-   kubeReservedCgroup helps the kubelet identify absolute name of top level CGroup used
-to enforce `KubeReserved` compute resource reservation for Kubernetes node system daemons.
-Refer to [Node Allocatable](https://git.k8s.io/community/contributors/design-proposals/node/node-allocatable.md)
+   <p>kubeReservedCgroup helps the kubelet identify absolute name of top level CGroup used
+to enforce <code>KubeReserved</code> compute resource reservation for Kubernetes node system daemons.
+Refer to <a href="https://git.k8s.io/design-proposals-archive/node/node-allocatable.md">Node Allocatable</a>
 doc for more information.
-Dynamic Kubelet Config (deprecated): This field should not be updated without a full node
-reboot. It is safest to keep this value the same as the local config.
-Default: ""</td>
+Default: &quot;&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>enforceNodeAllocatable</code><br/>
 <code>[]string</code>
 </td>
 <td>
-   This flag specifies the various Node Allocatable enforcements that Kubelet needs to perform.
-This flag accepts a list of options. Acceptable options are `none`, `pods`,
-`system-reserved` and `kube-reserved`.
-If `none` is specified, no other options may be specified.
-When `system-reserved` is in the list, systemReservedCgroup must be specified.
-When `kube-reserved` is in the list, kubeReservedCgroup must be specified.
-This field is supported only when `cgroupsPerQOS` is set to true.
-Refer to [Node Allocatable](https://git.k8s.io/community/contributors/design-proposals/node/node-allocatable.md)
+   <p>This flag specifies the various Node Allocatable enforcements that Kubelet needs to perform.
+This flag accepts a list of options. Acceptable options are <code>none</code>, <code>pods</code>,
+<code>system-reserved</code> and <code>kube-reserved</code>.
+If <code>none</code> is specified, no other options may be specified.
+When <code>system-reserved</code> is in the list, systemReservedCgroup must be specified.
+When <code>kube-reserved</code> is in the list, kubeReservedCgroup must be specified.
+This field is supported only when <code>cgroupsPerQOS</code> is set to true.
+Refer to <a href="https://git.k8s.io/design-proposals-archive/node/node-allocatable.md">Node Allocatable</a>
 for more information.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-removing enforcements may reduce the stability of the node. Alternatively, adding
-enforcements may reduce the stability of components which were using more than
-the reserved amount of resources; for example, enforcing kube-reserved may cause
-Kubelets to OOM if it uses more than the reserved resources, and enforcing system-reserved
-may cause system daemons to OOM if they use more than the reserved resources.
-Default: ["pods"]</td>
+Default: [&quot;pods&quot;]</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>allowedUnsafeSysctls</code><br/>
 <code>[]string</code>
 </td>
 <td>
-   A comma separated whitelist of unsafe sysctls or sysctl patterns (ending in `&lowast;`).
-Unsafe sysctl groups are `kernel.shm&lowast;`, `kernel.msg&lowast;`, `kernel.sem`, `fs.mqueue.&lowast;`,
-and `net.&lowast;`. For example: "`kernel.msg&lowast;,net.ipv4.route.min_pmtu`"
-Default: []</td>
+   <p>A comma separated whitelist of unsafe sysctls or sysctl patterns (ending in <code>*</code>).
+Unsafe sysctl groups are <code>kernel.shm*</code>, <code>kernel.msg*</code>, <code>kernel.sem</code>, <code>fs.mqueue.*</code>,
+and <code>net.*</code>. For example: &quot;<code>kernel.msg*,net.ipv4.route.min_pmtu</code>&quot;
+Default: []</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>volumePluginDir</code><br/>
 <code>string</code>
 </td>
 <td>
-   volumePluginDir is the full path of the directory in which to search
+   <p>volumePluginDir is the full path of the directory in which to search
 for additional third party volume plugins.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that changing
-the volumePluginDir may disrupt workloads relying on third party volume plugins.
-Default: "/usr/libexec/kubernetes/kubelet-plugins/volume/exec/"</td>
+Default: &quot;/usr/libexec/kubernetes/kubelet-plugins/volume/exec/&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>providerID</code><br/>
 <code>string</code>
 </td>
 <td>
-   providerID, if set, sets the unique ID of the instance that an external
+   <p>providerID, if set, sets the unique ID of the instance that an external
 provider (i.e. cloudprovider) can use to identify a specific node.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may impact the ability of the Kubelet to interact with cloud providers.
-Default: ""</td>
+Default: &quot;&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>kernelMemcgNotification</code><br/>
 <code>bool</code>
 </td>
 <td>
-   kernelMemcgNotification, if set, instructs the the kubelet to integrate with the
+   <p>kernelMemcgNotification, if set, instructs the the kubelet to integrate with the
 kernel memcg notification for determining if memory eviction thresholds are
 exceeded rather than polling.
-If DynamicKubeletConfig (deprecated; default off) is on, when
-dynamically updating this field, consider that
-it may impact the way Kubelet interacts with the kernel.
-Default: false</td>
+Default: false</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>logging</code> <B>[Required]</B><br/>
 <a href="#LoggingConfiguration"><code>LoggingConfiguration</code></a>
 </td>
 <td>
-   logging specifies the options of logging.
-Refer to [Logs Options](https://github.com/kubernetes/component-base/blob/master/logs/options.go)
+   <p>logging specifies the options of logging.
+Refer to <a href="https://github.com/kubernetes/component-base/blob/master/logs/options.go">Logs Options</a>
 for more information.
 Default:
-  Format: text</td>
+Format: text</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>enableSystemLogHandler</code><br/>
 <code>bool</code>
 </td>
 <td>
-   enableSystemLogHandler enables system logs via web interface host:port/logs/
-Default: true</td>
+   <p>enableSystemLogHandler enables system logs via web interface host:port/logs/
+Default: true</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>shutdownGracePeriod</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   shutdownGracePeriod specifies the total duration that the node should delay the
+   <p>shutdownGracePeriod specifies the total duration that the node should delay the
 shutdown and total grace period for pod termination during a node shutdown.
-Default: "0s"</td>
+Default: &quot;0s&quot;</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>shutdownGracePeriodCriticalPods</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   shutdownGracePeriodCriticalPods specifies the duration used to terminate critical
+   <p>shutdownGracePeriodCriticalPods specifies the duration used to terminate critical
 pods during a node shutdown. This should be less than shutdownGracePeriod.
 For example, if shutdownGracePeriod=30s, and shutdownGracePeriodCriticalPods=10s,
 during a node shutdown the first 20 seconds would be reserved for gracefully
 terminating normal pods, and the last 10 seconds would be reserved for terminating
 critical pods.
-Default: "0s"</td>
+Default: &quot;0s&quot;</p>
+</td>
+</tr>
+<tr><td><code>shutdownGracePeriodByPodPriority</code><br/>
+<a href="#kubelet-config-k8s-io-v1beta1-ShutdownGracePeriodByPodPriority"><code>[]ShutdownGracePeriodByPodPriority</code></a>
+</td>
+<td>
+   <p>shutdownGracePeriodByPodPriority specifies the shutdown grace period for Pods based
+on their associated priority class value.
+When a shutdown request is received, the Kubelet will initiate shutdown on all pods
+running on the node with a grace period that depends on the priority of the pod,
+and then wait for all pods to exit.
+Each entry in the array represents the graceful shutdown time a pod with a priority
+class value that lies in the range of that value and the next higher entry in the
+list when the node is shutting down.
+For example, to allow critical pods 10s to shutdown, priority&gt;=10000 pods 20s to
+shutdown, and all remaining pods 30s to shutdown.</p>
+<p>shutdownGracePeriodByPodPriority:</p>
+<ul>
+<li>priority: 2000000000
+shutdownGracePeriodSeconds: 10</li>
+<li>priority: 10000
+shutdownGracePeriodSeconds: 20</li>
+<li>priority: 0
+shutdownGracePeriodSeconds: 30</li>
+</ul>
+<p>The time the Kubelet will wait before exiting will at most be the maximum of all
+shutdownGracePeriodSeconds for each priority class range represented on the node.
+When all pods have exited or reached their grace periods, the Kubelet will release
+the shutdown inhibit lock.
+Requires the GracefulNodeShutdown feature gate to be enabled.
+This configuration must be empty if either ShutdownGracePeriod or ShutdownGracePeriodCriticalPods is set.
+Default: nil</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>reservedMemory</code><br/>
 <a href="#kubelet-config-k8s-io-v1beta1-MemoryReservation"><code>[]MemoryReservation</code></a>
 </td>
 <td>
-   reservedMemory specifies a comma-separated list of memory reservations for NUMA nodes.
+   <p>reservedMemory specifies a comma-separated list of memory reservations for NUMA nodes.
 The parameter makes sense only in the context of the memory manager feature.
 The memory manager will not allocate reserved memory for container workloads.
 For example, if you have a NUMA0 with 10Gi of memory and the reservedMemory was
@@ -1430,75 +1099,85 @@ only 9Gi is available for allocation.
 You can specify a different amount of NUMA node and memory types.
 You can omit this parameter at all, but you should be aware that the amount of
 reserved memory from all NUMA nodes should be equal to the amount of memory specified
-by the [node allocatable](https://kubernetes.io/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable).
+by the <a href="https://kubernetes.io/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable">node allocatable</a>.
 If at least one node allocatable parameter has a non-zero value, you will need
 to specify at least one NUMA node.
-Also, avoid specifying:
-
-1. Duplicates, the same NUMA node, and memory type, but with a different value.
-2. zero limits for any memory type.
-3. NUMAs nodes IDs that do not exist under the machine.
-4. memory types except for memory and hugepages-<size>
-
-Default: nil</td>
+Also, avoid specifying:</p>
+<ol>
+<li>Duplicates, the same NUMA node, and memory type, but with a different value.</li>
+<li>zero limits for any memory type.</li>
+<li>NUMAs nodes IDs that do not exist under the machine.</li>
+<li>memory types except for memory and hugepages-<!-- raw HTML omitted --></li>
+</ol>
+<p>Default: nil</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>enableProfilingHandler</code><br/>
 <code>bool</code>
 </td>
 <td>
-   enableProfilingHandler enables profiling via web interface host:port/debug/pprof/
-Default: true</td>
+   <p>enableProfilingHandler enables profiling via web interface host:port/debug/pprof/
+Default: true</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>enableDebugFlagsHandler</code><br/>
 <code>bool</code>
 </td>
 <td>
-   enableDebugFlagsHandler enables flags endpoint via web interface host:port/debug/flags/v
-Default: true</td>
+   <p>enableDebugFlagsHandler enables flags endpoint via web interface host:port/debug/flags/v
+Default: true</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>seccompDefault</code><br/>
 <code>bool</code>
 </td>
 <td>
-   SeccompDefault enables the use of `RuntimeDefault` as the default seccomp profile for all workloads.
+   <p>SeccompDefault enables the use of <code>RuntimeDefault</code> as the default seccomp profile for all workloads.
 This requires the corresponding SeccompDefault feature gate to be enabled as well.
-Default: false</td>
+Default: false</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>memoryThrottlingFactor</code><br/>
 <code>float64</code>
 </td>
 <td>
-   MemoryThrottlingFactor specifies the factor multiplied by the memory limit or node allocatable memory
+   <p>MemoryThrottlingFactor specifies the factor multiplied by the memory limit or node allocatable memory
 when setting the cgroupv2 memory.high value to enforce MemoryQoS.
 Decreasing this factor will set lower high limit for container cgroups and put heavier reclaim pressure
 while increasing will put less reclaim pressure.
 See http://kep.k8s.io/2570 for more details.
-Default: 0.8</td>
+Default: 0.8</p>
+</td>
+</tr>
+<tr><td><code>registerWithTaints</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#taint-v1-core"><code>[]core/v1.Taint</code></a>
+</td>
+<td>
+   <p>registerWithTaints are an array of taints to add to a node object when
+the kubelet registers itself. This only takes effect when registerNode
+is true and upon the initial registration of the node.
+Default: nil</p>
+</td>
+</tr>
+<tr><td><code>registerNode</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>registerNode enables automatic registration with the apiserver.
+Default: true</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `SerializedNodeConfigSource`     {#kubelet-config-k8s-io-v1beta1-SerializedNodeConfigSource}
     
 
 
-
-
-SerializedNodeConfigSource allows us to serialize v1.NodeConfigSource.
+<p>SerializedNodeConfigSource allows us to serialize v1.NodeConfigSource.
 This type is used internally by the Kubelet for tracking checkpointed dynamic configs.
-It exists in the kubeletconfig API group because it is classified as a versioned input to the Kubelet.
+It exists in the kubeletconfig API group because it is classified as a versioned input to the Kubelet.</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
@@ -1507,163 +1186,246 @@ It exists in the kubeletconfig API group because it is classified as a versioned
 <tr><td><code>apiVersion</code><br/>string</td><td><code>kubelet.config.k8s.io/v1beta1</code></td></tr>
 <tr><td><code>kind</code><br/>string</td><td><code>SerializedNodeConfigSource</code></td></tr>
     
-
-  
   
 <tr><td><code>source</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#nodeconfigsource-v1-core"><code>core/v1.NodeConfigSource</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#nodeconfigsource-v1-core"><code>core/v1.NodeConfigSource</code></a>
 </td>
 <td>
-   source is the source that we are serializing.</td>
+   <p>source is the source that we are serializing.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
+
+## `CredentialProvider`     {#kubelet-config-k8s-io-v1beta1-CredentialProvider}
     
 
+**Appears in:**
 
-## `HairpinMode`     {#kubelet-config-k8s-io-v1beta1-HairpinMode}
+- [CredentialProviderConfig](#kubelet-config-k8s-io-v1beta1-CredentialProviderConfig)
+
+
+<p>CredentialProvider represents an exec plugin to be invoked by the kubelet. The plugin is only
+invoked when an image being pulled matches the images handled by the plugin (see matchImages).</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
     
-(Alias of `string`)
-
-
-
-HairpinMode denotes how the kubelet should configure networking to handle
-hairpin packets.
-
+  
+<tr><td><code>name</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>name is the required name of the credential provider. It must match the name of the
+provider executable as seen by the kubelet. The executable must be in the kubelet's
+bin directory (set by the --image-credential-provider-bin-dir flag).</p>
+</td>
+</tr>
+<tr><td><code>matchImages</code> <B>[Required]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+   <p>matchImages is a required list of strings used to match against images in order to
+determine if this provider should be invoked. If one of the strings matches the
+requested image from the kubelet, the plugin will be invoked and given a chance
+to provide credentials. Images are expected to contain the registry domain
+and URL path.</p>
+<p>Each entry in matchImages is a pattern which can optionally contain a port and a path.
+Globs can be used in the domain, but not in the port or the path. Globs are supported
+as subdomains like '<em>.k8s.io' or 'k8s.</em>.io', and top-level-domains such as 'k8s.<em>'.
+Matching partial subdomains like 'app</em>.k8s.io' is also supported. Each glob can only match
+a single subdomain segment, so *.io does not match *.k8s.io.</p>
+<p>A match exists between an image and a matchImage when all of the below are true:</p>
+<ul>
+<li>Both contain the same number of domain parts and each part matches.</li>
+<li>The URL path of an imageMatch must be a prefix of the target image URL path.</li>
+<li>If the imageMatch contains a port, then the port must match in the image as well.</li>
+</ul>
+<p>Example values of matchImages:</p>
+<ul>
+<li>123456789.dkr.ecr.us-east-1.amazonaws.com</li>
+<li>*.azurecr.io</li>
+<li>gcr.io</li>
+<li><em>.</em>.registry.io</li>
+<li>registry.io:8080/path</li>
+</ul>
+</td>
+</tr>
+<tr><td><code>defaultCacheDuration</code> <B>[Required]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <p>defaultCacheDuration is the default duration the plugin will cache credentials in-memory
+if a cache duration is not provided in the plugin response. This field is required.</p>
+</td>
+</tr>
+<tr><td><code>apiVersion</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>Required input version of the exec CredentialProviderRequest. The returned CredentialProviderResponse
+MUST use the same encoding version as the input. Current supported values are:</p>
+<ul>
+<li>credentialprovider.kubelet.k8s.io/v1beta1</li>
+</ul>
+</td>
+</tr>
+<tr><td><code>args</code><br/>
+<code>[]string</code>
+</td>
+<td>
+   <p>Arguments to pass to the command when executing it.</p>
+</td>
+</tr>
+<tr><td><code>env</code><br/>
+<a href="#kubelet-config-k8s-io-v1beta1-ExecEnvVar"><code>[]ExecEnvVar</code></a>
+</td>
+<td>
+   <p>Env defines additional environment variables to expose to the process. These
+are unioned with the host's environment, as well as variables client-go uses
+to pass argument to the plugin.</p>
+</td>
+</tr>
+</tbody>
+</table>
 
+## `ExecEnvVar`     {#kubelet-config-k8s-io-v1beta1-ExecEnvVar}
     
 
+**Appears in:**
+
+- [CredentialProvider](#kubelet-config-k8s-io-v1beta1-CredentialProvider)
+
+
+<p>ExecEnvVar is used for setting environment variables when executing an exec-based
+credential plugin.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>name</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <span class="text-muted">No description provided.</span></td>
+</tr>
+<tr><td><code>value</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <span class="text-muted">No description provided.</span></td>
+</tr>
+</tbody>
+</table>
 
 ## `KubeletAnonymousAuthentication`     {#kubelet-config-k8s-io-v1beta1-KubeletAnonymousAuthentication}
     
 
-
-
 **Appears in:**
 
 - [KubeletAuthentication](#kubelet-config-k8s-io-v1beta1-KubeletAuthentication)
 
 
 
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>enabled</code><br/>
 <code>bool</code>
 </td>
 <td>
-   enabled allows anonymous requests to the kubelet server.
+   <p>enabled allows anonymous requests to the kubelet server.
 Requests that are not rejected by another authentication method are treated as
 anonymous requests.
-Anonymous requests have a username of `system:anonymous`, and a group name of
-`system:unauthenticated`.</td>
+Anonymous requests have a username of <code>system:anonymous</code>, and a group name of
+<code>system:unauthenticated</code>.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `KubeletAuthentication`     {#kubelet-config-k8s-io-v1beta1-KubeletAuthentication}
     
 
-
-
 **Appears in:**
 
 - [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
 
 
 
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>x509</code><br/>
 <a href="#kubelet-config-k8s-io-v1beta1-KubeletX509Authentication"><code>KubeletX509Authentication</code></a>
 </td>
 <td>
-   x509 contains settings related to x509 client certificate authentication.</td>
+   <p>x509 contains settings related to x509 client certificate authentication.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>webhook</code><br/>
 <a href="#kubelet-config-k8s-io-v1beta1-KubeletWebhookAuthentication"><code>KubeletWebhookAuthentication</code></a>
 </td>
 <td>
-   webhook contains settings related to webhook bearer token authentication.</td>
+   <p>webhook contains settings related to webhook bearer token authentication.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>anonymous</code><br/>
 <a href="#kubelet-config-k8s-io-v1beta1-KubeletAnonymousAuthentication"><code>KubeletAnonymousAuthentication</code></a>
 </td>
 <td>
-   anonymous contains settings related to anonymous authentication.</td>
+   <p>anonymous contains settings related to anonymous authentication.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `KubeletAuthorization`     {#kubelet-config-k8s-io-v1beta1-KubeletAuthorization}
     
 
-
-
 **Appears in:**
 
 - [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
 
 
 
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>mode</code><br/>
 <a href="#kubelet-config-k8s-io-v1beta1-KubeletAuthorizationMode"><code>KubeletAuthorizationMode</code></a>
 </td>
 <td>
-   mode is the authorization mode to apply to requests to the kubelet server.
-Valid values are `AlwaysAllow` and `Webhook`.
-Webhook mode uses the SubjectAccessReview API to determine authorization.</td>
+   <p>mode is the authorization mode to apply to requests to the kubelet server.
+Valid values are <code>AlwaysAllow</code> and <code>Webhook</code>.
+Webhook mode uses the SubjectAccessReview API to determine authorization.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>webhook</code><br/>
 <a href="#kubelet-config-k8s-io-v1beta1-KubeletWebhookAuthorization"><code>KubeletWebhookAuthorization</code></a>
 </td>
 <td>
-   webhook contains settings related to Webhook authorization.</td>
+   <p>webhook contains settings related to Webhook authorization.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `KubeletAuthorizationMode`     {#kubelet-config-k8s-io-v1beta1-KubeletAuthorizationMode}
     
 (Alias of `string`)
 
-
 **Appears in:**
 
 - [KubeletAuthorization](#kubelet-config-k8s-io-v1beta1-KubeletAuthorization)
@@ -1672,253 +1434,343 @@ Webhook mode uses the SubjectAccessReview API to determine authorization.</td>
 
 
 
-    
-
-
 ## `KubeletWebhookAuthentication`     {#kubelet-config-k8s-io-v1beta1-KubeletWebhookAuthentication}
     
 
-
-
 **Appears in:**
 
 - [KubeletAuthentication](#kubelet-config-k8s-io-v1beta1-KubeletAuthentication)
 
 
 
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>enabled</code><br/>
 <code>bool</code>
 </td>
 <td>
-   enabled allows bearer token authentication backed by the
-tokenreviews.authentication.k8s.io API.</td>
+   <p>enabled allows bearer token authentication backed by the
+tokenreviews.authentication.k8s.io API.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>cacheTTL</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   cacheTTL enables caching of authentication results</td>
+   <p>cacheTTL enables caching of authentication results</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `KubeletWebhookAuthorization`     {#kubelet-config-k8s-io-v1beta1-KubeletWebhookAuthorization}
     
 
-
-
 **Appears in:**
 
 - [KubeletAuthorization](#kubelet-config-k8s-io-v1beta1-KubeletAuthorization)
 
 
 
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>cacheAuthorizedTTL</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   cacheAuthorizedTTL is the duration to cache 'authorized' responses from the
-webhook authorizer.</td>
+   <p>cacheAuthorizedTTL is the duration to cache 'authorized' responses from the
+webhook authorizer.</p>
+</td>
 </tr>
-    
-  
 <tr><td><code>cacheUnauthorizedTTL</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
 </td>
 <td>
-   cacheUnauthorizedTTL is the duration to cache 'unauthorized' responses from
-the webhook authorizer.</td>
+   <p>cacheUnauthorizedTTL is the duration to cache 'unauthorized' responses from
+the webhook authorizer.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `KubeletX509Authentication`     {#kubelet-config-k8s-io-v1beta1-KubeletX509Authentication}
     
 
-
-
 **Appears in:**
 
 - [KubeletAuthentication](#kubelet-config-k8s-io-v1beta1-KubeletAuthentication)
 
 
 
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>clientCAFile</code><br/>
 <code>string</code>
 </td>
 <td>
-   clientCAFile is the path to a PEM-encoded certificate bundle. If set, any request
+   <p>clientCAFile is the path to a PEM-encoded certificate bundle. If set, any request
 presenting a client certificate signed by one of the authorities in the bundle
 is authenticated with a username corresponding to the CommonName,
-and groups corresponding to the Organization in the client certificate.</td>
+and groups corresponding to the Organization in the client certificate.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `MemoryReservation`     {#kubelet-config-k8s-io-v1beta1-MemoryReservation}
     
 
-
-
 **Appears in:**
 
 - [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
 
 
-MemoryReservation specifies the memory reservation of different types for each NUMA node
+<p>MemoryReservation specifies the memory reservation of different types for each NUMA node</p>
+
 
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>numaNode</code> <B>[Required]</B><br/>
 <code>int32</code>
 </td>
 <td>
-   <span class="text-muted">No description provided.</span>
-   </td>
+   <span class="text-muted">No description provided.</span></td>
 </tr>
-    
-  
 <tr><td><code>limits</code> <B>[Required]</B><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#resourcelist-v1-core"><code>core/v1.ResourceList</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#resourcelist-v1-core"><code>core/v1.ResourceList</code></a>
 </td>
 <td>
-   <span class="text-muted">No description provided.</span>
-   </td>
+   <span class="text-muted">No description provided.</span></td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `MemorySwapConfiguration`     {#kubelet-config-k8s-io-v1beta1-MemorySwapConfiguration}
     
 
-
-
 **Appears in:**
 
 - [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
 
 
 
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
-
   
 <tr><td><code>swapBehavior</code><br/>
 <code>string</code>
 </td>
 <td>
-   swapBehavior configures swap memory available to container workloads. May be one of
-"", "LimitedSwap": workload combined memory and swap usage cannot exceed pod memory limit
-"UnlimitedSwap": workloads can use unlimited swap, up to the allocatable limit.</td>
+   <p>swapBehavior configures swap memory available to container workloads. May be one of
+&quot;&quot;, &quot;LimitedSwap&quot;: workload combined memory and swap usage cannot exceed pod memory limit
+&quot;UnlimitedSwap&quot;: workloads can use unlimited swap, up to the allocatable limit.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
-    
-
 
 ## `ResourceChangeDetectionStrategy`     {#kubelet-config-k8s-io-v1beta1-ResourceChangeDetectionStrategy}
     
 (Alias of `string`)
 
+**Appears in:**
+
+- [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
+
+
+<p>ResourceChangeDetectionStrategy denotes a mode in which internal
+managers (secret, configmap) are discovering object changes.</p>
+
+
+
+
+## `ShutdownGracePeriodByPodPriority`     {#kubelet-config-k8s-io-v1beta1-ShutdownGracePeriodByPodPriority}
+    
 
 **Appears in:**
 
 - [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
 
 
-ResourceChangeDetectionStrategy denotes a mode in which internal
-managers (secret, configmap) are discovering object changes.
+<p>ShutdownGracePeriodByPodPriority specifies the shutdown grace period for Pods based on their associated priority class value</p>
 
 
-    
-  
-  
-    
-
-## `LoggingConfiguration`     {#LoggingConfiguration}
-    
-
-
-
-**Appears in:**
-
-- [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
-
-
-LoggingConfiguration contains logging options
-Refer [Logs Options](https://github.com/kubernetes/component-base/blob/master/logs/options.go) for more information.
-
 <table class="table">
 <thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
 <tbody>
     
+  
+<tr><td><code>priority</code> <B>[Required]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <p>priority is the priority value associated with the shutdown grace period</p>
+</td>
+</tr>
+<tr><td><code>shutdownGracePeriodSeconds</code> <B>[Required]</B><br/>
+<code>int64</code>
+</td>
+<td>
+   <p>shutdownGracePeriodSeconds is the shutdown grace period in seconds</p>
+</td>
+</tr>
+</tbody>
+</table>
+  
+  
+    
 
+## `FormatOptions`     {#FormatOptions}
+    
+
+**Appears in:**
+
+- [LoggingConfiguration](#LoggingConfiguration)
+
+
+<p>FormatOptions contains options for the different logging formats.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>json</code> <B>[Required]</B><br/>
+<a href="#JSONOptions"><code>JSONOptions</code></a>
+</td>
+<td>
+   <p>[Experimental] JSON contains options for logging format &quot;json&quot;.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `JSONOptions`     {#JSONOptions}
+    
+
+**Appears in:**
+
+- [FormatOptions](#FormatOptions)
+
+
+<p>JSONOptions contains options for logging format &quot;json&quot;.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>splitStream</code> <B>[Required]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>[Experimental] SplitStream redirects error messages to stderr while
+info messages go to stdout, with buffering. The default is to write
+both to stdout, without buffering.</p>
+</td>
+</tr>
+<tr><td><code>infoBufferSize</code> <B>[Required]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/api/resource#QuantityValue"><code>k8s.io/apimachinery/pkg/api/resource.QuantityValue</code></a>
+</td>
+<td>
+   <p>[Experimental] InfoBufferSize sets the size of the info stream when
+using split streams. The default is zero, which disables buffering.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `LoggingConfiguration`     {#LoggingConfiguration}
+    
+
+**Appears in:**
+
+- [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
+
+
+<p>LoggingConfiguration contains logging options
+Refer <a href="https://github.com/kubernetes/component-base/blob/master/logs/options.go">Logs Options</a> for more information.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
   
 <tr><td><code>format</code> <B>[Required]</B><br/>
 <code>string</code>
 </td>
 <td>
-   Format Flag specifies the structure of log messages.
-default value of format is `text`</td>
+   <p>Format Flag specifies the structure of log messages.
+default value of format is <code>text</code></p>
+</td>
 </tr>
-    
-  
-<tr><td><code>sanitization</code> <B>[Required]</B><br/>
-<code>bool</code>
+<tr><td><code>flushFrequency</code> <B>[Required]</B><br/>
+<a href="https://pkg.go.dev/time#Duration"><code>time.Duration</code></a>
 </td>
 <td>
-   [Experimental] When enabled prevents logging of fields tagged as sensitive (passwords, keys, tokens).
-Runtime log sanitization may introduce significant computation overhead and therefore should not be enabled in production.`)</td>
+   <p>Maximum number of nanoseconds (i.e. 1s = 1000000000) between log
+flushes.  Ignored if the selected logging backend writes log
+messages without buffering.</p>
+</td>
+</tr>
+<tr><td><code>verbosity</code> <B>[Required]</B><br/>
+<code>uint32</code>
+</td>
+<td>
+   <p>Verbosity is the threshold that determines which log messages are
+logged. Default is zero which logs only the most important
+messages. Higher values enable additional messages. Error messages
+are always logged.</p>
+</td>
+</tr>
+<tr><td><code>vmodule</code> <B>[Required]</B><br/>
+<a href="#VModuleConfiguration"><code>VModuleConfiguration</code></a>
+</td>
+<td>
+   <p>VModule overrides the verbosity threshold for individual files.
+Only supported for &quot;text&quot; log format.</p>
+</td>
+</tr>
+<tr><td><code>options</code> <B>[Required]</B><br/>
+<a href="#FormatOptions"><code>FormatOptions</code></a>
+</td>
+<td>
+   <p>[Experimental] Options holds additional parameters that are specific
+to the different logging formats. Only the options for the selected
+format get used, but all of them get validated.</p>
+</td>
 </tr>
-    
-  
 </tbody>
 </table>
+
+## `VModuleConfiguration`     {#VModuleConfiguration}
+    
+(Alias of `[]k8s.io/component-base/config/v1alpha1.VModuleItem`)
+
+**Appears in:**
+
+- [LoggingConfiguration](#LoggingConfiguration)
+
+
+<p>VModuleConfiguration is a collection of individual file names or patterns
+and the corresponding verbosity threshold.</p>
+
+
+
diff --git a/content/en/docs/reference/config-api/kubelet-credentialprovider.v1alpha1.md b/content/en/docs/reference/config-api/kubelet-credentialprovider.v1alpha1.md
new file mode 100644
index 0000000000..029d5ac62c
--- /dev/null
+++ b/content/en/docs/reference/config-api/kubelet-credentialprovider.v1alpha1.md
@@ -0,0 +1,169 @@
+---
+title: Kubelet CredentialProvider (v1alpha1)
+content_type: tool-reference
+package: credentialprovider.kubelet.k8s.io/v1alpha1
+auto_generated: true
+---
+
+
+## Resource Types 
+
+
+- [CredentialProviderRequest](#credentialprovider-kubelet-k8s-io-v1alpha1-CredentialProviderRequest)
+- [CredentialProviderResponse](#credentialprovider-kubelet-k8s-io-v1alpha1-CredentialProviderResponse)
+  
+    
+
+## `CredentialProviderRequest`     {#credentialprovider-kubelet-k8s-io-v1alpha1-CredentialProviderRequest}
+    
+
+
+<p>CredentialProviderRequest includes the image that the kubelet requires authentication for.
+Kubelet will pass this request object to the plugin via stdin. In general, plugins should
+prefer responding with the same apiVersion they were sent.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>credentialprovider.kubelet.k8s.io/v1alpha1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>CredentialProviderRequest</code></td></tr>
+    
+  
+<tr><td><code>image</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>image is the container image that is being pulled as part of the
+credential provider plugin request. Plugins may optionally parse the image
+to extract any information required to fetch credentials.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `CredentialProviderResponse`     {#credentialprovider-kubelet-k8s-io-v1alpha1-CredentialProviderResponse}
+    
+
+
+<p>CredentialProviderResponse holds credentials that the kubelet should use for the specified
+image provided in the original request. Kubelet will read the response from the plugin via stdout.
+This response should be set to the same apiVersion as CredentialProviderRequest.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>credentialprovider.kubelet.k8s.io/v1alpha1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>CredentialProviderResponse</code></td></tr>
+    
+  
+<tr><td><code>cacheKeyType</code> <B>[Required]</B><br/>
+<a href="#credentialprovider-kubelet-k8s-io-v1alpha1-PluginCacheKeyType"><code>PluginCacheKeyType</code></a>
+</td>
+<td>
+   <p>cacheKeyType indiciates the type of caching key to use based on the image provided
+in the request. There are three valid values for the cache key type: Image, Registry, and
+Global. If an invalid value is specified, the response will NOT be used by the kubelet.</p>
+</td>
+</tr>
+<tr><td><code>cacheDuration</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <p>cacheDuration indicates the duration the provided credentials should be cached for.
+The kubelet will use this field to set the in-memory cache duration for credentials
+in the AuthConfig. If null, the kubelet will use defaultCacheDuration provided in
+CredentialProviderConfig. If set to 0, the kubelet will not cache the provided AuthConfig.</p>
+</td>
+</tr>
+<tr><td><code>auth</code><br/>
+<a href="#credentialprovider-kubelet-k8s-io-v1alpha1-AuthConfig"><code>map[string]k8s.io/kubelet/pkg/apis/credentialprovider/v1alpha1.AuthConfig</code></a>
+</td>
+<td>
+   <p>auth is a map containing authentication information passed into the kubelet.
+Each key is a match image string (more on this below). The corresponding authConfig value
+should be valid for all images that match against this key. A plugin should set
+this field to null if no valid credentials can be returned for the requested image.</p>
+<p>Each key in the map is a pattern which can optionally contain a port and a path.
+Globs can be used in the domain, but not in the port or the path. Globs are supported
+as subdomains like '<em>.k8s.io' or 'k8s.</em>.io', and top-level-domains such as 'k8s.<em>'.
+Matching partial subdomains like 'app</em>.k8s.io' is also supported. Each glob can only match
+a single subdomain segment, so *.io does not match *.k8s.io.</p>
+<p>The kubelet will match images against the key when all of the below are true:</p>
+<ul>
+<li>Both contain the same number of domain parts and each part matches.</li>
+<li>The URL path of an imageMatch must be a prefix of the target image URL path.</li>
+<li>If the imageMatch contains a port, then the port must match in the image as well.</li>
+</ul>
+<p>When multiple keys are returned, the kubelet will traverse all keys in reverse order so that:</p>
+<ul>
+<li>longer keys come before shorter keys with the same prefix</li>
+<li>non-wildcard keys come before wildcard keys with the same prefix.</li>
+</ul>
+<p>For any given match, the kubelet will attempt an image pull with the provided credentials,
+stopping after the first successfully authenticated pull.</p>
+<p>Example keys:</p>
+<ul>
+<li>123456789.dkr.ecr.us-east-1.amazonaws.com</li>
+<li>*.azurecr.io</li>
+<li>gcr.io</li>
+<li><em>.</em>.registry.io</li>
+<li>registry.io:8080/path</li>
+</ul>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `AuthConfig`     {#credentialprovider-kubelet-k8s-io-v1alpha1-AuthConfig}
+    
+
+**Appears in:**
+
+- [CredentialProviderResponse](#credentialprovider-kubelet-k8s-io-v1alpha1-CredentialProviderResponse)
+
+
+<p>AuthConfig contains authentication information for a container registry.
+Only username/password based authentication is supported today, but more authentication
+mechanisms may be added in the future.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>username</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>username is the username used for authenticating to the container registry
+An empty username is valid.</p>
+</td>
+</tr>
+<tr><td><code>password</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>password is the password used for authenticating to the container registry
+An empty password is valid.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `PluginCacheKeyType`     {#credentialprovider-kubelet-k8s-io-v1alpha1-PluginCacheKeyType}
+    
+(Alias of `string`)
+
+**Appears in:**
+
+- [CredentialProviderResponse](#credentialprovider-kubelet-k8s-io-v1alpha1-CredentialProviderResponse)
+
+
+
+
+  
diff --git a/content/en/docs/reference/config-api/kubelet-credentialprovider.v1beta1.md b/content/en/docs/reference/config-api/kubelet-credentialprovider.v1beta1.md
new file mode 100644
index 0000000000..a849970d4b
--- /dev/null
+++ b/content/en/docs/reference/config-api/kubelet-credentialprovider.v1beta1.md
@@ -0,0 +1,169 @@
+---
+title: Kubelet CredentialProvider (v1beta1)
+content_type: tool-reference
+package: credentialprovider.kubelet.k8s.io/v1beta1
+auto_generated: true
+---
+
+
+## Resource Types 
+
+
+- [CredentialProviderRequest](#credentialprovider-kubelet-k8s-io-v1beta1-CredentialProviderRequest)
+- [CredentialProviderResponse](#credentialprovider-kubelet-k8s-io-v1beta1-CredentialProviderResponse)
+  
+    
+
+## `CredentialProviderRequest`     {#credentialprovider-kubelet-k8s-io-v1beta1-CredentialProviderRequest}
+    
+
+
+<p>CredentialProviderRequest includes the image that the kubelet requires authentication for.
+Kubelet will pass this request object to the plugin via stdin. In general, plugins should
+prefer responding with the same apiVersion they were sent.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>credentialprovider.kubelet.k8s.io/v1beta1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>CredentialProviderRequest</code></td></tr>
+    
+  
+<tr><td><code>image</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>image is the container image that is being pulled as part of the
+credential provider plugin request. Plugins may optionally parse the image
+to extract any information required to fetch credentials.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `CredentialProviderResponse`     {#credentialprovider-kubelet-k8s-io-v1beta1-CredentialProviderResponse}
+    
+
+
+<p>CredentialProviderResponse holds credentials that the kubelet should use for the specified
+image provided in the original request. Kubelet will read the response from the plugin via stdout.
+This response should be set to the same apiVersion as CredentialProviderRequest.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>credentialprovider.kubelet.k8s.io/v1beta1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>CredentialProviderResponse</code></td></tr>
+    
+  
+<tr><td><code>cacheKeyType</code> <B>[Required]</B><br/>
+<a href="#credentialprovider-kubelet-k8s-io-v1beta1-PluginCacheKeyType"><code>PluginCacheKeyType</code></a>
+</td>
+<td>
+   <p>cacheKeyType indiciates the type of caching key to use based on the image provided
+in the request. There are three valid values for the cache key type: Image, Registry, and
+Global. If an invalid value is specified, the response will NOT be used by the kubelet.</p>
+</td>
+</tr>
+<tr><td><code>cacheDuration</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <p>cacheDuration indicates the duration the provided credentials should be cached for.
+The kubelet will use this field to set the in-memory cache duration for credentials
+in the AuthConfig. If null, the kubelet will use defaultCacheDuration provided in
+CredentialProviderConfig. If set to 0, the kubelet will not cache the provided AuthConfig.</p>
+</td>
+</tr>
+<tr><td><code>auth</code><br/>
+<a href="#credentialprovider-kubelet-k8s-io-v1beta1-AuthConfig"><code>map[string]k8s.io/kubelet/pkg/apis/credentialprovider/v1beta1.AuthConfig</code></a>
+</td>
+<td>
+   <p>auth is a map containing authentication information passed into the kubelet.
+Each key is a match image string (more on this below). The corresponding authConfig value
+should be valid for all images that match against this key. A plugin should set
+this field to null if no valid credentials can be returned for the requested image.</p>
+<p>Each key in the map is a pattern which can optionally contain a port and a path.
+Globs can be used in the domain, but not in the port or the path. Globs are supported
+as subdomains like '<em>.k8s.io' or 'k8s.</em>.io', and top-level-domains such as 'k8s.<em>'.
+Matching partial subdomains like 'app</em>.k8s.io' is also supported. Each glob can only match
+a single subdomain segment, so *.io does not match *.k8s.io.</p>
+<p>The kubelet will match images against the key when all of the below are true:</p>
+<ul>
+<li>Both contain the same number of domain parts and each part matches.</li>
+<li>The URL path of an imageMatch must be a prefix of the target image URL path.</li>
+<li>If the imageMatch contains a port, then the port must match in the image as well.</li>
+</ul>
+<p>When multiple keys are returned, the kubelet will traverse all keys in reverse order so that:</p>
+<ul>
+<li>longer keys come before shorter keys with the same prefix</li>
+<li>non-wildcard keys come before wildcard keys with the same prefix.</li>
+</ul>
+<p>For any given match, the kubelet will attempt an image pull with the provided credentials,
+stopping after the first successfully authenticated pull.</p>
+<p>Example keys:</p>
+<ul>
+<li>123456789.dkr.ecr.us-east-1.amazonaws.com</li>
+<li>*.azurecr.io</li>
+<li>gcr.io</li>
+<li><em>.</em>.registry.io</li>
+<li>registry.io:8080/path</li>
+</ul>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `AuthConfig`     {#credentialprovider-kubelet-k8s-io-v1beta1-AuthConfig}
+    
+
+**Appears in:**
+
+- [CredentialProviderResponse](#credentialprovider-kubelet-k8s-io-v1beta1-CredentialProviderResponse)
+
+
+<p>AuthConfig contains authentication information for a container registry.
+Only username/password based authentication is supported today, but more authentication
+mechanisms may be added in the future.</p>
+
+
+<table class="table">
+<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>username</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>username is the username used for authenticating to the container registry
+An empty username is valid.</p>
+</td>
+</tr>
+<tr><td><code>password</code> <B>[Required]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p>password is the password used for authenticating to the container registry
+An empty password is valid.</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `PluginCacheKeyType`     {#credentialprovider-kubelet-k8s-io-v1beta1-PluginCacheKeyType}
+    
+(Alias of `string`)
+
+**Appears in:**
+
+- [CredentialProviderResponse](#credentialprovider-kubelet-k8s-io-v1beta1-CredentialProviderResponse)
+
+
+
+
+  
diff --git a/content/en/docs/reference/glossary/api-eviction.md b/content/en/docs/reference/glossary/api-eviction.md
index 69fc9d9b0c..e6db562461 100644
--- a/content/en/docs/reference/glossary/api-eviction.md
+++ b/content/en/docs/reference/glossary/api-eviction.md
@@ -19,4 +19,9 @@ You can request eviction either by directly calling the Eviction API
 using a client of the kube-apiserver, like the `kubectl drain` command. 
 When an `Eviction` object is created, the API server terminates the Pod. 
 
-API-initiated eviction is not the same as [node-pressure eviction](/docs/concepts/scheduling-eviction/eviction/#kubelet-eviction).
+API-initiated evictions respect your configured [`PodDisruptionBudgets`](/docs/tasks/run-application/configure-pdb/)
+and [`terminationGracePeriodSeconds`](/docs/concepts/workloads/pods/pod-lifecycle#pod-termination).
+
+API-initiated eviction is not the same as [node-pressure eviction](/docs/concepts/scheduling-eviction/node-pressure-eviction/).
+
+* See [API-initiated eviction](/docs/concepts/scheduling-eviction/api-eviction/) for more information.
diff --git a/content/en/docs/reference/glossary/cadvisor.md b/content/en/docs/reference/glossary/cadvisor.md
new file mode 100644
index 0000000000..a85e572467
--- /dev/null
+++ b/content/en/docs/reference/glossary/cadvisor.md
@@ -0,0 +1,16 @@
+---
+title: cAdvisor
+id: cadvisor
+date: 2021-12-09
+full_link: https://github.com/google/cadvisor/
+short_description: >
+  Tool that provides understanding of the resource usage and performance characteristics for containers
+aka:
+tags:
+- tool
+---
+cAdvisor (Container Advisor) provides container users an understanding of the resource usage and performance characteristics of their running {{< glossary_tooltip text="containers" term_id="container" >}}.
+
+<!--more-->
+
+It is a running daemon that collects, aggregates, processes, and exports information about running containers. Specifically, for each container it keeps resource isolation parameters, historical resource usage, histograms of complete historical resource usage and network statistics. This data is exported by container and machine-wide.
diff --git a/content/en/docs/reference/glossary/container-runtime-interface.md b/content/en/docs/reference/glossary/container-runtime-interface.md
new file mode 100644
index 0000000000..28a67cbbb4
--- /dev/null
+++ b/content/en/docs/reference/glossary/container-runtime-interface.md
@@ -0,0 +1,22 @@
+---
+title: Container Runtime Interface
+id: container-runtime-interface
+date: 2021-11-24
+full_link: /docs/concepts/architecture/cri
+short_description: >
+  The main protocol for the communication between the kubelet and Container Runtime.
+
+aka:
+tags:
+  - cri
+---
+
+The main protocol for the communication between the kubelet and Container Runtime.
+
+<!--more-->
+
+The Kubernetes Container Runtime Interface (CRI) defines the main
+[gRPC](https://grpc.io) protocol for the communication between the
+[cluster components](/docs/concepts/overview/components/#node-components)
+{{< glossary_tooltip text="kubelet" term_id="kubelet" >}} and
+{{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}.
diff --git a/content/en/docs/reference/glossary/container-runtime.md b/content/en/docs/reference/glossary/container-runtime.md
index 89bd4ae7ad..1d2aae66c6 100644
--- a/content/en/docs/reference/glossary/container-runtime.md
+++ b/content/en/docs/reference/glossary/container-runtime.md
@@ -15,7 +15,7 @@ tags:
 
 <!--more-->
 
-Kubernetes supports several container runtimes: {{< glossary_tooltip term_id="docker">}},
+Kubernetes supports container runtimes such as
 {{< glossary_tooltip term_id="containerd" >}}, {{< glossary_tooltip term_id="cri-o" >}},
-and any implementation of the [Kubernetes CRI (Container Runtime
+and any other implementation of the [Kubernetes CRI (Container Runtime
 Interface)](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-node/container-runtime-interface.md).
diff --git a/content/en/docs/reference/glossary/dockershim.md b/content/en/docs/reference/glossary/dockershim.md
new file mode 100644
index 0000000000..d726679064
--- /dev/null
+++ b/content/en/docs/reference/glossary/dockershim.md
@@ -0,0 +1,18 @@
+---
+title: Dockershim
+id: dockershim
+date: 2022-04-15
+full_link: /dockershim
+short_description: >
+   A component of Kubernetes v1.23 and earlier, which allows Kubernetes system components to communicate with Docker Engine.
+
+aka:
+tags:
+- fundamental
+---
+The dockershim is a component of Kubernetes version 1.23 and earlier. It allows the kubelet
+to communicate with {{< glossary_tooltip text="Docker Engine" term_id="docker" >}}.
+
+<!--more-->
+
+Starting with version 1.24, dockershim has been removed from Kubernetes. For more information, see [Dockershim FAQ](/dockershim).
diff --git a/content/en/docs/reference/glossary/downward-api.md b/content/en/docs/reference/glossary/downward-api.md
new file mode 100644
index 0000000000..a3d9a46336
--- /dev/null
+++ b/content/en/docs/reference/glossary/downward-api.md
@@ -0,0 +1,28 @@
+---
+title: Downward API
+id: downward-api
+date: 2022-03-21
+short_description: >
+  A mechanism to expose Pod and container field values to code running in a container.
+aka:
+full_link: /docs/concepts/workloads/pods/downward-api/
+tags:
+- architecture
+---
+Kubernetes' mechanism to expose Pod and container field values to code running in a container.
+<!--more-->
+It is sometimes useful for a container to have information about itself, without
+needing to make changes to the container code that directly couple it to Kubernetes.
+
+The Kubernetes downward API allows containers to consume information about themselves
+or their context in a Kubernetes cluster. Applications in containers can have
+access to that information, without the application needing to act as a client of
+the Kubernetes API.
+
+There are two ways to expose Pod and container fields to a running container:
+
+- using [environment variables](/docs/tasks/inject-data-application/environment-variable-expose-pod-information/)
+- using [a `downwardAPI` volume](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/)
+
+Together, these two ways of exposing Pod and container fields are called the _downward API_.
+
diff --git a/content/en/docs/reference/glossary/event.md b/content/en/docs/reference/glossary/event.md
new file mode 100644
index 0000000000..23c72302a6
--- /dev/null
+++ b/content/en/docs/reference/glossary/event.md
@@ -0,0 +1,25 @@
+---
+title: Event
+id: event
+date: 2022-01-16
+full_link: /docs/reference/kubernetes-api/cluster-resources/event-v1/
+short_description: >
+   A report of an event somewhere in the cluster. It generally denotes some state change in the system.
+aka: 
+tags:
+- core-object
+- fundamental
+---
+Each Event is a report of an event somewhere in the {{< glossary_tooltip text="cluster" term_id="cluster" >}}. 
+It generally denotes some state change in the system.
+
+<!--more-->
+Events have a limited retention time and triggers and messages may evolve with time. 
+Event consumers should not rely on the timing of an event with a given reason reflecting a consistent underlying trigger, 
+or the continued existence of events with that reason. 
+
+
+Events should be treated as informative, best-effort, supplemental data.
+
+In Kubernetes, [auditing](/docs/tasks/debug/debug-cluster/audit/) generates a different kind of
+Event record (API group `audit.k8s.io`).
diff --git a/content/en/docs/reference/glossary/extensions.md b/content/en/docs/reference/glossary/extensions.md
index 1515bffcfd..c994b601a1 100644
--- a/content/en/docs/reference/glossary/extensions.md
+++ b/content/en/docs/reference/glossary/extensions.md
@@ -2,9 +2,10 @@
 title: Extensions
 id: Extensions
 date: 2019-02-01
-full_link: /docs/concepts/extend-kubernetes/extend-cluster/#extensions
+full_link: /docs/concepts/extend-kubernetes/#extensions
 short_description: >
-  Extensions are software components that extend and deeply integrate with Kubernetes to support new types of hardware.
+  Extensions are software components that extend and deeply integrate with Kubernetes to support
+  new types of hardware.
 
 aka:
 tags:
@@ -15,4 +16,6 @@ tags:
 
 <!--more-->
 
-Most cluster administrators will use a hosted or distribution instance of Kubernetes. As a result, most Kubernetes users will need to install [extensions](/docs/concepts/extend-kubernetes/extend-cluster/#extensions) and fewer will need to author new ones.
+Many cluster administrators use a hosted or distribution instance of Kubernetes. These clusters
+come with extensions pre-installed. As a result, most Kubernetes users will not need to install
+[extensions](/docs/concepts/extend-kubernetes/) and even fewer users will need to author new ones. 
diff --git a/content/en/docs/reference/glossary/finalizer.md b/content/en/docs/reference/glossary/finalizer.md
index c44386fbf3..e01f66d7f2 100644
--- a/content/en/docs/reference/glossary/finalizer.md
+++ b/content/en/docs/reference/glossary/finalizer.md
@@ -19,12 +19,12 @@ to clean up resources the deleted object owned.
 <!--more-->
 
 When you tell Kubernetes to delete an object that has finalizers specified for
-it, the Kubernetes API marks the object for deletion, putting it into a
-read-only state. The target object remains in a terminating state while the
+it, the Kubernetes API marks the object for deletion by populating `.metadata.deletionTimestamp`,
+and returns a `202` status code (HTTP "Accepted"). The target object remains in a terminating state while the
 control plane, or other components, take the actions defined by the finalizers.
 After these actions are complete, the controller removes the relevant finalizers
 from the target object. When the `metadata.finalizers` field is empty,
-Kubernetes considers the deletion complete.
+Kubernetes considers the deletion complete and deletes the object.
 
 You can use finalizers to control {{<glossary_tooltip text="garbage collection" term_id="garbage-collection">}}
 of resources. For example, you can define a finalizer to clean up related resources or
diff --git a/content/en/docs/reference/glossary/flexvolume.md b/content/en/docs/reference/glossary/flexvolume.md
index 91478fd1f0..1f54e4dc68 100644
--- a/content/en/docs/reference/glossary/flexvolume.md
+++ b/content/en/docs/reference/glossary/flexvolume.md
@@ -4,14 +4,14 @@ id: flexvolume
 date: 2018-06-25
 full_link: /docs/concepts/storage/volumes/#flexvolume
 short_description: >
-    FlexVolume is an interface for creating out-of-tree volume plugins. The {{< glossary_tooltip text="Container Storage Interface" term_id="csi" >}} is a newer interface which addresses several problems with FlexVolumes.
+    FlexVolume is a deprecated interface for creating out-of-tree volume plugins. The {{< glossary_tooltip text="Container Storage Interface" term_id="csi" >}} is a newer interface that addresses several problems with FlexVolume.
 
 
 aka: 
 tags:
 - storage 
 ---
- FlexVolume is an interface for creating out-of-tree volume plugins. The {{< glossary_tooltip text="Container Storage Interface" term_id="csi" >}} is a newer interface which addresses several problems with FlexVolumes.
+ FlexVolume is a deprecated interface for creating out-of-tree volume plugins. The {{< glossary_tooltip text="Container Storage Interface" term_id="csi" >}} is a newer interface that addresses several problems with FlexVolume.
 
 <!--more--> 
 
diff --git a/content/en/docs/reference/glossary/garbage-collection.md b/content/en/docs/reference/glossary/garbage-collection.md
index ec2fe19af7..1d4b9b5785 100644
--- a/content/en/docs/reference/glossary/garbage-collection.md
+++ b/content/en/docs/reference/glossary/garbage-collection.md
@@ -2,7 +2,7 @@
 title: Garbage Collection
 id: garbage-collection
 date: 2021-07-07
-full_link: /docs/concepts/workloads/controllers/garbage-collection/
+full_link: /docs/concepts/architecture/garbage-collection/
 short_description: >
   A collective term for the various mechanisms Kubernetes uses to clean up cluster
   resources.
@@ -12,13 +12,16 @@ tags:
 - fundamental
 - operation
 ---
- Garbage collection is a collective term for the various mechanisms Kubernetes uses to clean up
- cluster resources. 
+
+Garbage collection is a collective term for the various mechanisms Kubernetes uses to clean up
+cluster resources. 
 
 <!--more-->
 
-Kubernetes uses garbage collection to clean up resources like [unused containers and images](/docs/concepts/workloads/controllers/garbage-collection/#containers-images),
+Kubernetes uses garbage collection to clean up resources like
+[unused containers and images](/docs/concepts/architecture/garbage-collection/#containers-images),
 [failed Pods](/docs/concepts/workloads/pods/pod-lifecycle/#pod-garbage-collection),
 [objects owned by the targeted resource](/docs/concepts/overview/working-with-objects/owners-dependents/),
 [completed Jobs](/docs/concepts/workloads/controllers/ttlafterfinished/), and resources
-that have expired or failed.
\ No newline at end of file
+that have expired or failed.
+
diff --git a/content/en/docs/reference/glossary/kubectl.md b/content/en/docs/reference/glossary/kubectl.md
index 665fffcf98..61f93b9cf6 100644
--- a/content/en/docs/reference/glossary/kubectl.md
+++ b/content/en/docs/reference/glossary/kubectl.md
@@ -4,16 +4,19 @@ id: kubectl
 date: 2018-04-12
 full_link: /docs/user-guide/kubectl-overview/
 short_description: >
-  A command line tool for communicating with a Kubernetes API server.
+  A command line tool for communicating with a Kubernetes cluster.
 
-aka: 
+aka:
+- kubectl
 tags:
 - tool
 - fundamental
 ---
- A command line tool for communicating with a {{< glossary_tooltip text="Kubernetes API" term_id="kubernetes-api" >}} server.
+Command line tool for communicating with a Kubernetes cluster's
+{{< glossary_tooltip text="control plane" term_id="control-plane" >}},
+using the Kubernetes API.
 
 <!--more--> 
 
-You can use kubectl to create, inspect, update, and delete Kubernetes objects.
+You can use `kubectl` to create, inspect, update, and delete Kubernetes objects.
 
diff --git a/content/en/docs/reference/glossary/managed-service.md b/content/en/docs/reference/glossary/managed-service.md
index 186588252c..4752867bb7 100644
--- a/content/en/docs/reference/glossary/managed-service.md
+++ b/content/en/docs/reference/glossary/managed-service.md
@@ -16,7 +16,4 @@ tags:
 
 Some examples of Managed Services are AWS EC2, Azure SQL Database, and
 GCP Pub/Sub, but they can be any software offering that can be used by an application.
-[Service Catalog](/docs/concepts/extend-kubernetes/service-catalog/) provides a way to
-list, provision, and bind with Managed Services offered by
-{{< glossary_tooltip text="Service Brokers" term_id="service-broker" >}}.
 
diff --git a/content/en/docs/reference/glossary/namespace.md b/content/en/docs/reference/glossary/namespace.md
index a477150a9d..02381c4ee6 100644
--- a/content/en/docs/reference/glossary/namespace.md
+++ b/content/en/docs/reference/glossary/namespace.md
@@ -4,15 +4,15 @@ id: namespace
 date: 2018-04-12
 full_link: /docs/concepts/overview/working-with-objects/namespaces
 short_description: >
-  An abstraction used by Kubernetes to support multiple virtual clusters on the same physical cluster.
+  An abstraction used by Kubernetes to support isolation of groups of resources within a single cluster.
 
 aka: 
 tags:
 - fundamental
 ---
- An abstraction used by Kubernetes to support multiple virtual clusters on the same physical {{< glossary_tooltip text="cluster" term_id="cluster" >}}.
+ An abstraction used by Kubernetes to support isolation of groups of resources within a single {{< glossary_tooltip text="cluster" term_id="cluster" >}}.
 
 <!--more--> 
 
-Namespaces are used to organize objects in a cluster and provide a way to divide cluster resources. Names of resources need to be unique within a namespace, but not across namespaces.
+Namespaces are used to organize objects in a cluster and provide a way to divide cluster resources. Names of resources need to be unique within a namespace, but not across namespaces. Namespace-based scoping is applicable only for namespaced objects _(e.g. Deployments, Services, etc)_ and not for cluster-wide objects _(e.g. StorageClass, Nodes, PersistentVolumes, etc)_.
 
diff --git a/content/en/docs/reference/glossary/pod-disruption-budget.md b/content/en/docs/reference/glossary/pod-disruption-budget.md
index 1665224174..7ee55d45a4 100644
--- a/content/en/docs/reference/glossary/pod-disruption-budget.md
+++ b/content/en/docs/reference/glossary/pod-disruption-budget.md
@@ -15,4 +15,12 @@ tags:
  - operation
 ---
 
- A [Pod Disruption Budget](/docs/concepts/workloads/pods/disruptions/) allows an application owner to create an object for a replicated application, that ensures a certain number or percentage of Pods with an assigned label will not be voluntarily evicted at any point in time. PDBs cannot prevent an involuntary disruption, but will count against the budget.
+ A [Pod Disruption Budget](/docs/concepts/workloads/pods/disruptions/) allows an 
+ application owner to create an object for a replicated application, that ensures 
+ a certain number or percentage of Pods with an assigned label will not be voluntarily
+ evicted at any point in time.
+
+<!--more--> 
+
+Involuntary disruptions cannot be prevented by PDBs; however they 
+do count against the budget.
diff --git a/content/en/docs/reference/glossary/pod-disruption.md b/content/en/docs/reference/glossary/pod-disruption.md
index 1efd69dd4c..d92d607855 100644
--- a/content/en/docs/reference/glossary/pod-disruption.md
+++ b/content/en/docs/reference/glossary/pod-disruption.md
@@ -14,6 +14,11 @@ tags:
  - operation
 ---
 
-[Pod disruption](/docs/concepts/workloads/pods/disruptions/) is the process by which Pods on Nodes are terminated either voluntarily or involuntarily. 
+[Pod disruption](/docs/concepts/workloads/pods/disruptions/) is the process by which 
+Pods on Nodes are terminated either voluntarily or involuntarily. 
 
-Voluntary disruptions are started intentionally by application owners or cluster administrators. Involuntary disruptions are unintentional and can be triggered by unavoidable issues like Nodes running out of resources, or by accidental deletions. 
+<!--more--> 
+
+Voluntary disruptions are started intentionally by application owners or cluster 
+administrators. Involuntary disruptions are unintentional and can be triggered by 
+unavoidable issues like Nodes running out of resources, or by accidental deletions. 
diff --git a/content/en/docs/reference/glossary/pod-security-policy.md b/content/en/docs/reference/glossary/pod-security-policy.md
index 52c4433b48..ff178bb7cc 100644
--- a/content/en/docs/reference/glossary/pod-security-policy.md
+++ b/content/en/docs/reference/glossary/pod-security-policy.md
@@ -2,7 +2,7 @@
 title: Pod Security Policy
 id: pod-security-policy
 date: 2018-04-12
-full_link: /docs/concepts/policy/pod-security-policy/
+full_link: /docs/concepts/security/pod-security-policy/
 short_description: >
   Enables fine-grained authorization of pod creation and updates.
 
@@ -17,3 +17,4 @@ tags:
 
 A cluster-level resource that controls security sensitive aspects of the Pod specification. The `PodSecurityPolicy` objects define a set of conditions that a Pod must run with in order to be accepted into the system, as well as defaults for the related fields. Pod Security Policy control is implemented as an optional admission controller.
 
+PodSecurityPolicy is deprecated as of Kubernetes v1.21, and will be removed in v1.25. We recommend migrating to [Pod Security Admission](/docs/concepts/security/pod-security-admission/), or a 3rd party admission plugin.
diff --git a/content/en/docs/reference/glossary/quantity.md b/content/en/docs/reference/glossary/quantity.md
index c12260a992..33d2dc8e04 100644
--- a/content/en/docs/reference/glossary/quantity.md
+++ b/content/en/docs/reference/glossary/quantity.md
@@ -10,7 +10,7 @@ aka:
 tags:
 - core-object
 ---
- A whole-number representation of small or large numbers using SI suffixes.
+ A whole-number representation of small or large numbers using [SI](https://en.wikipedia.org/wiki/International_System_of_Units) suffixes.
 
 <!--more-->
 
@@ -21,7 +21,7 @@ mega, or giga units.
 
 For instance, the number `1.5` is represented as `1500m`, while the number `1000`
 can be represented as `1k`, and `1000000` as `1M`. You can also specify
-binary-notation suffixes; the number 2048 can be written as `2Ki`.
+[binary-notation](https://en.wikipedia.org/wiki/Binary_prefix) suffixes; the number 2048 can be written as `2Ki`.
 
 The accepted decimal (power-of-10) units are `m` (milli), `k` (kilo,
 intentionally lowercase), `M` (mega), `G` (giga), `T` (tera), `P` (peta),
@@ -29,3 +29,4 @@ intentionally lowercase), `M` (mega), `G` (giga), `T` (tera), `P` (peta),
 
 The accepted binary (power-of-2) units are `Ki` (kibi), `Mi` (mebi), `Gi` (gibi),
 `Ti` (tebi), `Pi` (pebi), `Ei` (exbi).
+
diff --git a/content/en/docs/reference/glossary/secret.md b/content/en/docs/reference/glossary/secret.md
index 48088bbf9c..281b8b7b65 100644
--- a/content/en/docs/reference/glossary/secret.md
+++ b/content/en/docs/reference/glossary/secret.md
@@ -15,4 +15,4 @@ tags:
 
 <!--more--> 
 
-Allows for more control over how sensitive information is used and reduces the risk of accidental exposure, including [encryption](/docs/tasks/administer-cluster/encrypt-data/#ensure-all-secrets-are-encrypted) at rest.  A {{< glossary_tooltip text="Pod" term_id="pod" >}} references the secret as a file in a volume mount or by the kubelet pulling images for a pod. Secrets are great for confidential data and [ConfigMaps](/docs/tasks/configure-pod-container/configure-pod-configmap/) for non-confidential data.
+Allows for more control over how sensitive information is used and reduces the risk of accidental exposure. Secret values are encoded as base64 strings and stored unencrypted by default, but can be configured to be [encrypted at rest](/docs/tasks/administer-cluster/encrypt-data/#ensure-all-secrets-are-encrypted). A {{< glossary_tooltip text="Pod" term_id="pod" >}} references the secret as a file in a volume mount or by the kubelet pulling images for a pod. Secrets are great for confidential data and [ConfigMaps](/docs/tasks/configure-pod-container/configure-pod-configmap/) for non-confidential data.
diff --git a/content/en/docs/reference/glossary/service-broker.md b/content/en/docs/reference/glossary/service-broker.md
deleted file mode 100644
index d35ea3d688..0000000000
--- a/content/en/docs/reference/glossary/service-broker.md
+++ /dev/null
@@ -1,22 +0,0 @@
----
-title: Service Broker
-id: service-broker
-date: 2018-04-12
-full_link: 
-short_description: >
-  An endpoint for a set of Managed Services offered and maintained by a third-party.
-
-aka: 
-tags:
-- extension
----
- An endpoint for a set of {{< glossary_tooltip text="Managed Services" term_id="managed-service" >}} offered and maintained by a third-party.
-
-<!--more--> 
-
-{{< glossary_tooltip text="Service Brokers" term_id="service-broker" >}} implement the
-[Open Service Broker API spec](https://github.com/openservicebrokerapi/servicebroker/blob/v2.13/spec.md)
-and provide a standard interface for applications to use their Managed Services.
-[Service Catalog](/docs/concepts/extend-kubernetes/service-catalog/) provides a way to
-list, provision, and bind with Managed Services offered by Service Brokers.
-
diff --git a/content/en/docs/reference/glossary/service-catalog.md b/content/en/docs/reference/glossary/service-catalog.md
index 3404543d18..471311426c 100644
--- a/content/en/docs/reference/glossary/service-catalog.md
+++ b/content/en/docs/reference/glossary/service-catalog.md
@@ -4,15 +4,15 @@ id: service-catalog
 date: 2018-04-12
 full_link: 
 short_description: >
-  An extension API that enables applications running in Kubernetes clusters to easily use external managed software offerings, such as a datastore service offered by a cloud provider.
+  A former extension API that enabled applications running in Kubernetes clusters to easily use external managed software offerings, such as a datastore service offered by a cloud provider.
 
 aka: 
 tags:
 - extension
 ---
- An extension API that enables applications running in Kubernetes clusters to easily use external managed software offerings, such as a datastore service offered by a cloud provider.
+ A former extension API that enabled applications running in Kubernetes clusters to easily use external managed software offerings, such as a datastore service offered by a cloud provider.
 
 <!--more--> 
 
-It provides a way to list, provision, and bind with external {{< glossary_tooltip text="Managed Services" term_id="managed-service" >}} from {{< glossary_tooltip text="Service Brokers" term_id="service-broker" >}} without needing detailed knowledge about how those services are created or managed.
+It provided a way to list, provision, and bind with external {{< glossary_tooltip text="Managed Services" term_id="managed-service" >}} without needing detailed knowledge about how those services would be created or managed.
 
diff --git a/content/en/docs/reference/glossary/shuffle-sharding.md b/content/en/docs/reference/glossary/shuffle-sharding.md
index 7d1a128762..d41c704333 100644
--- a/content/en/docs/reference/glossary/shuffle-sharding.md
+++ b/content/en/docs/reference/glossary/shuffle-sharding.md
@@ -1,5 +1,5 @@
 ---
-title: shuffle sharding
+title: Shuffle-sharding
 id: shuffle-sharding
 date: 2020-03-04
 full_link:
@@ -18,28 +18,28 @@ We are often concerned with insulating different flows of requests
 from each other, so that a high-intensity flow does not crowd out low-intensity flows.
 A simple way to put requests into queues is to hash some
 characteristics of the request, modulo the number of queues, to get
-the index of the queue to use.  The hash function uses as input
-characteristics of the request that align with flows.  For example, in
+the index of the queue to use. The hash function uses as input
+characteristics of the request that align with flows. For example, in
 the Internet this is often the 5-tuple of source and destination
 address, protocol, and source and destination port.
 
 That simple hash-based scheme has the property that any high-intensity flow
 will crowd out all the low-intensity flows that hash to the same queue.
 Providing good insulation for a large number of flows requires a large
-number of queues, which is problematic.  Shuffle sharding is a more
+number of queues, which is problematic. Shuffle-sharding is a more
 nimble technique that can do a better job of insulating the low-intensity
-flows from the high-intensity flows.  The terminology of shuffle sharding uses
+flows from the high-intensity flows. The terminology of shuffle-sharding uses
 the metaphor of dealing a hand from a deck of cards; each queue is a
-metaphorical card.  The shuffle sharding technique starts with hashing
+metaphorical card. The shuffle-sharding technique starts with hashing
 the flow-identifying characteristics of the request, to produce a hash
-value with dozens or more of bits.  Then the hash value is used as a
+value with dozens or more of bits. Then the hash value is used as a
 source of entropy to shuffle the deck and deal a hand of cards
-(queues).  All the dealt queues are examined, and the request is put
-into one of the examined queues with the shortest length.  With a
+(queues). All the dealt queues are examined, and the request is put
+into one of the examined queues with the shortest length. With a
 modest hand size, it does not cost much to examine all the dealt cards
 and a given low-intensity flow has a good chance to dodge the effects of a
-given high-intensity flow.  With a large hand size it is expensive to examine
+given high-intensity flow. With a large hand size it is expensive to examine
 the dealt queues and more difficult for the low-intensity flows to dodge the
-collective effects of a set of high-intensity flows.  Thus, the hand size
+collective effects of a set of high-intensity flows. Thus, the hand size
 should be chosen judiciously.
 
diff --git a/content/en/docs/reference/issues-security/security.md b/content/en/docs/reference/issues-security/security.md
index 7fe91a037a..e5d2a565dd 100644
--- a/content/en/docs/reference/issues-security/security.md
+++ b/content/en/docs/reference/issues-security/security.md
@@ -19,15 +19,13 @@ This page describes Kubernetes security and disclosure information.
 
 Join the [kubernetes-security-announce](https://groups.google.com/forum/#!forum/kubernetes-security-announce) group for emails about security and major API announcements.
 
-You can also subscribe to an RSS feed of the above using [this link](https://groups.google.com/forum/feed/kubernetes-security-announce/msgs/rss_v2_0.xml?num=50).
-
 ## Report a Vulnerability
 
 We're extremely grateful for security researchers and users that report vulnerabilities to the Kubernetes Open Source Community. All reports are thoroughly investigated by a set of community volunteers.
 
 To make a report, submit your vulnerability to the [Kubernetes bug bounty program](https://hackerone.com/kubernetes). This allows triage and handling of the vulnerability with standardized response times.
 
-You can also email the private [security@kubernetes.io](mailto:security@kubernetes.io) list with the security details and the details expected for [all Kubernetes bug reports](https://git.k8s.io/kubernetes/.github/ISSUE_TEMPLATE/bug-report.md).
+You can also email the private [security@kubernetes.io](mailto:security@kubernetes.io) list with the security details and the details expected for [all Kubernetes bug reports](https://github.com/kubernetes/kubernetes/blob/master/.github/ISSUE_TEMPLATE/bug-report.yaml).
 
 You may encrypt your email to this list using the GPG keys of the [Security Response Committee members](https://git.k8s.io/security/README.md#product-security-committee-psc). Encryption using GPG is NOT required to make a disclosure.
 
diff --git a/content/en/docs/reference/kubectl/_index.md b/content/en/docs/reference/kubectl/_index.md
index 765adb6fe8..cdbfca809e 100644
--- a/content/en/docs/reference/kubectl/_index.md
+++ b/content/en/docs/reference/kubectl/_index.md
@@ -1,5 +1,556 @@
 ---
-title: "kubectl"
+title: Command line tool (kubectl)
+content_type: reference
 weight: 60
+no_list: true
+card:
+  name: reference
+  weight: 20
 ---
 
+<!-- overview -->
+{{< glossary_definition prepend="Kubernetes provides a" term_id="kubectl" length="short" >}}
+
+This tool is named `kubectl`.
+
+For configuration, `kubectl` looks for a file named `config` in the `$HOME/.kube` directory.
+You can specify other [kubeconfig](/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
+files by setting the `KUBECONFIG` environment variable or by setting the
+[`--kubeconfig`](/docs/concepts/configuration/organize-cluster-access-kubeconfig/) flag.
+
+This overview covers `kubectl` syntax, describes the command operations, and provides common examples.
+For details about each command, including all the supported flags and subcommands, see the
+[kubectl](/docs/reference/generated/kubectl/kubectl-commands/) reference documentation.
+
+For installation instructions, see [Installing kubectl](/docs/tasks/tools/#kubectl);
+for a quick guide, see the [cheat sheet](/docs/reference/kubectl/cheatsheet/).
+If you're used to using the `docker` command-line tool, [`kubectl` for Docker Users](/docs/reference/kubectl/docker-cli-to-kubectl/) explains some equivalent commands for Kubernetes.
+
+<!-- body -->
+
+## Syntax
+
+Use the following syntax to run `kubectl` commands from your terminal window:
+
+```shell
+kubectl [command] [TYPE] [NAME] [flags]
+```
+
+where `command`, `TYPE`, `NAME`, and `flags` are:
+
+* `command`: Specifies the operation that you want to perform on one or more resources, 
+for example `create`, `get`, `describe`, `delete`.
+
+* `TYPE`: Specifies the [resource type](#resource-types). Resource types are case-insensitive and
+  you can specify the singular, plural, or abbreviated forms.
+  For example, the following commands produce the same output:
+
+   ```shell
+   kubectl get pod pod1
+   kubectl get pods pod1
+   kubectl get po pod1
+   ```
+
+* `NAME`: Specifies the name of the resource. Names are case-sensitive. If the name is omitted, details for all resources are displayed, for example `kubectl get pods`.
+
+   When performing an operation on multiple resources, you can specify each resource by type and name or specify one or more files:
+
+   * To specify resources by type and name:
+
+      * To group resources if they are all the same type:  `TYPE1 name1 name2 name<#>`.<br/>
+      Example: `kubectl get pod example-pod1 example-pod2`
+
+      * To specify multiple resource types individually:  `TYPE1/name1 TYPE1/name2 TYPE2/name3 TYPE<#>/name<#>`.<br/>
+      Example: `kubectl get pod/example-pod1 replicationcontroller/example-rc1`
+
+   * To specify resources with one or more files:  `-f file1 -f file2 -f file<#>`
+
+      * [Use YAML rather than JSON](/docs/concepts/configuration/overview/#general-configuration-tips) since YAML tends to be more user-friendly, especially for configuration files.<br/>
+     Example: `kubectl get -f ./pod.yaml`
+
+* `flags`: Specifies optional flags. For example, you can use the `-s` or `--server` flags to specify the address and port of the Kubernetes API server.<br/>
+
+{{< caution >}}
+Flags that you specify from the command line override default values and any corresponding environment variables.
+{{< /caution >}}
+
+If you need help, run `kubectl help` from the terminal window.
+
+## In-cluster authentication and namespace overrides
+
+By default `kubectl` will first determine if it is running within a pod, and thus in a cluster. It starts by checking for the `KUBERNETES_SERVICE_HOST` and `KUBERNETES_SERVICE_PORT` environment variables and the existence of a service account token file at `/var/run/secrets/kubernetes.io/serviceaccount/token`. If all three are found in-cluster authentication is assumed.
+
+To maintain backwards compatibility, if the `POD_NAMESPACE` environment variable is set during in-cluster authentication it will override the default namespace from the service account token. Any manifests or tools relying on namespace defaulting will be affected by this.
+
+**`POD_NAMESPACE` environment variable**
+
+If the `POD_NAMESPACE` environment variable is set, cli operations on namespaced resources will default to the variable value. For example, if the variable is set to `seattle`, `kubectl get pods` would return pods in the `seattle` namespace. This is because pods are a namespaced resource, and no namespace was provided in the command. Review the output of `kubectl api-resources` to determine if a resource is namespaced. 
+
+Explicit use of `--namespace <value>` overrides this behavior. 
+
+**How kubectl handles ServiceAccount tokens**
+
+If:
+* there is Kubernetes service account token file mounted at
+  `/var/run/secrets/kubernetes.io/serviceaccount/token`, and
+* the `KUBERNETES_SERVICE_HOST` environment variable is set, and
+* the `KUBERNETES_SERVICE_PORT` environment variable is set, and
+* you don't explicitly specify a namespace on the kubectl command line
+
+then kubectl assumes it is running in your cluster. The kubectl tool looks up the
+namespace of that ServiceAccount (this is the same as the namespace of the Pod)
+and acts against that namespace. This is different from what happens outside of a
+cluster; when kubectl runs outside a cluster and you don't specify a namespace,
+the kubectl command acts against the `default` namespace.
+
+## Operations
+
+The following table includes short descriptions and the general syntax for all of the `kubectl` operations:
+
+Operation       | Syntax    |       Description
+-------------------- | -------------------- | --------------------
+`alpha`    | `kubectl alpha SUBCOMMAND [flags]` | List the available commands that correspond to alpha features, which are not enabled in Kubernetes clusters by default.
+`annotate`    | <code>kubectl annotate (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) KEY_1=VAL_1 ... KEY_N=VAL_N [--overwrite] [--all] [--resource-version=version] [flags]</code> | Add or update the annotations of one or more resources.
+`api-resources`    | `kubectl api-resources [flags]` | List the API resources that are available.
+`api-versions`    | `kubectl api-versions [flags]` | List the API versions that are available.
+`apply`            | `kubectl apply -f FILENAME [flags]`| Apply a configuration change to a resource from a file or stdin.
+`attach`        | `kubectl attach POD -c CONTAINER [-i] [-t] [flags]` | Attach to a running container either to view the output stream or interact with the container (stdin).
+`auth`    | `kubectl auth [flags] [options]` | Inspect authorization.
+`autoscale`    | <code>kubectl autoscale (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) [--min=MINPODS] --max=MAXPODS [--cpu-percent=CPU] [flags]</code> | Automatically scale the set of pods that are managed by a replication controller.
+`certificate`    | `kubectl certificate SUBCOMMAND [options]` | Modify certificate resources.
+`cluster-info`    | `kubectl cluster-info [flags]` | Display endpoint information about the master and services in the cluster.
+`completion`    | `kubectl completion SHELL [options]` | Output shell completion code for the specified shell (bash or zsh).
+`config`        | `kubectl config SUBCOMMAND [flags]` | Modifies kubeconfig files. See the individual subcommands for details.
+`convert`    | `kubectl convert -f FILENAME [options]` | Convert config files between different API versions. Both YAML and JSON formats are accepted. Note - requires `kubectl-convert` plugin to be installed.
+`cordon`    | `kubectl cordon NODE [options]` | Mark node as unschedulable.
+`cp`    | `kubectl cp <file-spec-src> <file-spec-dest> [options]` | Copy files and directories to and from containers.
+`create`        | `kubectl create -f FILENAME [flags]` | Create one or more resources from a file or stdin.
+`delete`        | <code>kubectl delete (-f FILENAME &#124; TYPE [NAME &#124; /NAME &#124; -l label &#124; --all]) [flags]</code> | Delete resources either from a file, stdin, or specifying label selectors, names, resource selectors, or resources.
+`describe`    | <code>kubectl describe (-f FILENAME &#124; TYPE [NAME_PREFIX &#124; /NAME &#124; -l label]) [flags]</code> | Display the detailed state of one or more resources.
+`diff`        | `kubectl diff -f FILENAME [flags]`| Diff file or stdin against live configuration.
+`drain`    | `kubectl drain NODE [options]` | Drain node in preparation for maintenance.
+`edit`        | <code>kubectl edit (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) [flags]</code> | Edit and update the definition of one or more resources on the server by using the default editor.
+`exec`        | `kubectl exec POD [-c CONTAINER] [-i] [-t] [flags] [-- COMMAND [args...]]` | Execute a command against a container in a pod.
+`explain`    | `kubectl explain  [--recursive=false] [flags]` | Get documentation of various resources. For instance pods, nodes, services, etc.
+`expose`        | <code>kubectl expose (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) [--port=port] [--protocol=TCP&#124;UDP] [--target-port=number-or-name] [--name=name] [--external-ip=external-ip-of-service] [--type=type] [flags]</code> | Expose a replication controller, service, or pod as a new Kubernetes service.
+`get`        | <code>kubectl get (-f FILENAME &#124; TYPE [NAME &#124; /NAME &#124; -l label]) [--watch] [--sort-by=FIELD] [[-o &#124; --output]=OUTPUT_FORMAT] [flags]</code> | List one or more resources.
+`kustomize`    | `kubectl kustomize <dir> [flags] [options]` | List a set of API resources generated from instructions in a kustomization.yaml file. The argument must be the path to the directory containing the file, or a git repository URL with a path suffix specifying same with respect to the repository root.
+`label`        | <code>kubectl label (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) KEY_1=VAL_1 ... KEY_N=VAL_N [--overwrite] [--all] [--resource-version=version] [flags]</code> | Add or update the labels of one or more resources.
+`logs`        | `kubectl logs POD [-c CONTAINER] [--follow] [flags]` | Print the logs for a container in a pod.
+`options`    | `kubectl options` | List of global command-line options, which apply to all commands.
+`patch`        | <code>kubectl patch (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) --patch PATCH [flags]</code> | Update one or more fields of a resource by using the strategic merge patch process.
+`plugin`    | `kubectl plugin [flags] [options]` | Provides utilities for interacting with plugins.
+`port-forward`    | `kubectl port-forward POD [LOCAL_PORT:]REMOTE_PORT [...[LOCAL_PORT_N:]REMOTE_PORT_N] [flags]` | Forward one or more local ports to a pod.
+`proxy`        | `kubectl proxy [--port=PORT] [--www=static-dir] [--www-prefix=prefix] [--api-prefix=prefix] [flags]` | Run a proxy to the Kubernetes API server.
+`replace`        | `kubectl replace -f FILENAME` | Replace a resource from a file or stdin.
+`rollout`    | `kubectl rollout SUBCOMMAND [options]` | Manage the rollout of a resource. Valid resource types include: deployments, daemonsets and statefulsets.
+`run`        | <code>kubectl run NAME --image=image [--env="key=value"] [--port=port] [--dry-run=server&#124;client&#124;none] [--overrides=inline-json] [flags]</code> | Run a specified image on the cluster.
+`scale`        | <code>kubectl scale (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) --replicas=COUNT [--resource-version=version] [--current-replicas=count] [flags]</code> | Update the size of the specified replication controller.
+`set`    | `kubectl set SUBCOMMAND [options]` | Configure application resources.
+`taint`    | `kubectl taint NODE NAME KEY_1=VAL_1:TAINT_EFFECT_1 ... KEY_N=VAL_N:TAINT_EFFECT_N [options]` | Update the taints on one or more nodes.
+`top`    | `kubectl top [flags] [options]` | Display Resource (CPU/Memory/Storage) usage.
+`uncordon`    | `kubectl uncordon NODE [options]` | Mark node as schedulable.
+`version`        | `kubectl version [--client] [flags]` | Display the Kubernetes version running on the client and server.
+`wait`    | <code>kubectl wait ([-f FILENAME] &#124; resource.group/resource.name &#124; resource.group [(-l label &#124; --all)]) [--for=delete&#124;--for condition=available] [options]</code> | Experimental: Wait for a specific condition on one or many resources.
+
+To learn more about command operations, see the [kubectl](/docs/reference/kubectl/kubectl/) reference documentation.
+
+## Resource types
+
+The following table includes a list of all the supported resource types and their abbreviated aliases.
+
+(This output can be retrieved from `kubectl api-resources`, and was accurate as of Kubernetes 1.19.1.)
+
+| NAME | SHORTNAMES | APIGROUP | NAMESPACED | KIND |
+|---|---|---|---|---|
+| `bindings` | | | true | Binding |
+| `componentstatuses` | `cs` | | false | ComponentStatus |
+| `configmaps` | `cm` | | true | ConfigMap |
+| `endpoints` | `ep` | | true | Endpoints |
+| `events` | `ev` | | true | Event |
+| `limitranges` | `limits` | | true | LimitRange |
+| `namespaces` | `ns` | | false | Namespace |
+| `nodes` | `no` | | false | Node |
+| `persistentvolumeclaims` | `pvc` | | true | PersistentVolumeClaim |
+| `persistentvolumes` | `pv` | | false | PersistentVolume |
+| `pods` | `po` | | true | Pod |
+| `podtemplates` | | | true | PodTemplate |
+| `replicationcontrollers` | `rc` | | true | ReplicationController |
+| `resourcequotas` | `quota` | | true | ResourceQuota |
+| `secrets` | | | true | Secret |
+| `serviceaccounts` | `sa` | | true | ServiceAccount |
+| `services` | `svc` | | true | Service |
+| `mutatingwebhookconfigurations` | | admissionregistration.k8s.io | false | MutatingWebhookConfiguration |
+| `validatingwebhookconfigurations` | | admissionregistration.k8s.io | false | ValidatingWebhookConfiguration |
+| `customresourcedefinitions` | `crd,crds` | apiextensions.k8s.io | false | CustomResourceDefinition |
+| `apiservices` | | apiregistration.k8s.io | false | APIService |
+| `controllerrevisions` | | apps | true | ControllerRevision |
+| `daemonsets` | `ds` | apps | true | DaemonSet |
+| `deployments` | `deploy` | apps | true | Deployment |
+| `replicasets` | `rs` | apps | true | ReplicaSet |
+| `statefulsets` | `sts` | apps | true | StatefulSet |
+| `tokenreviews` | | authentication.k8s.io | false | TokenReview |
+| `localsubjectaccessreviews` | | authorization.k8s.io | true | LocalSubjectAccessReview |
+| `selfsubjectaccessreviews` | | authorization.k8s.io | false | SelfSubjectAccessReview |
+| `selfsubjectrulesreviews` | | authorization.k8s.io | false | SelfSubjectRulesReview |
+| `subjectaccessreviews` | | authorization.k8s.io | false | SubjectAccessReview |
+| `horizontalpodautoscalers` | `hpa` | autoscaling | true | HorizontalPodAutoscaler |
+| `cronjobs` | `cj` | batch | true | CronJob |
+| `jobs` | | batch | true | Job |
+| `certificatesigningrequests` | `csr` | certificates.k8s.io | false | CertificateSigningRequest |
+| `leases` | | coordination.k8s.io | true | Lease |
+| `endpointslices` |  | discovery.k8s.io | true | EndpointSlice |
+| `events` | `ev` | events.k8s.io | true | Event |
+| `ingresses` | `ing` | extensions | true | Ingress |
+| `flowschemas` |  | flowcontrol.apiserver.k8s.io | false | FlowSchema |
+| `prioritylevelconfigurations` |  | flowcontrol.apiserver.k8s.io | false | PriorityLevelConfiguration |
+| `ingressclasses` |  | networking.k8s.io | false | IngressClass |
+| `ingresses` | `ing` | networking.k8s.io | true | Ingress |
+| `networkpolicies` | `netpol` | networking.k8s.io | true | NetworkPolicy |
+| `runtimeclasses` |  | node.k8s.io | false | RuntimeClass |
+| `poddisruptionbudgets` | `pdb` | policy | true | PodDisruptionBudget |
+| `podsecuritypolicies` | `psp` | policy | false | PodSecurityPolicy |
+| `clusterrolebindings` | | rbac.authorization.k8s.io | false | ClusterRoleBinding |
+| `clusterroles` | | rbac.authorization.k8s.io | false | ClusterRole |
+| `rolebindings` | | rbac.authorization.k8s.io | true | RoleBinding |
+| `roles` | | rbac.authorization.k8s.io | true | Role |
+| `priorityclasses` | `pc` | scheduling.k8s.io | false | PriorityClass |
+| `csidrivers` | | storage.k8s.io | false | CSIDriver |
+| `csinodes` | | storage.k8s.io | false | CSINode |
+| `storageclasses` | `sc` | storage.k8s.io | false | StorageClass |
+| `volumeattachments` | | storage.k8s.io | false | VolumeAttachment |
+
+## Output options
+
+Use the following sections for information about how you can format or sort the output of certain commands. For details about which commands support the various output options, see the [kubectl](/docs/reference/kubectl/kubectl/) reference documentation.
+
+### Formatting output
+
+The default output format for all `kubectl` commands is the human readable plain-text format. To output details to your terminal window in a specific format, you can add either the `-o` or `--output` flags to a supported `kubectl` command.
+
+#### Syntax
+
+```shell
+kubectl [command] [TYPE] [NAME] -o <output_format>
+```
+
+Depending on the `kubectl` operation, the following output formats are supported:
+
+Output format | Description
+--------------| -----------
+`-o custom-columns=<spec>` | Print a table using a comma separated list of [custom columns](#custom-columns).
+`-o custom-columns-file=<filename>` | Print a table using the [custom columns](#custom-columns) template in the `<filename>` file.
+`-o json`     | Output a JSON formatted API object.
+`-o jsonpath=<template>` | Print the fields defined in a [jsonpath](/docs/reference/kubectl/jsonpath/) expression.
+`-o jsonpath-file=<filename>` | Print the fields defined by the [jsonpath](/docs/reference/kubectl/jsonpath/) expression in the `<filename>` file.
+`-o name`     | Print only the resource name and nothing else.
+`-o wide`     | Output in the plain-text format with any additional information. For pods, the node name is included.
+`-o yaml`     | Output a YAML formatted API object.
+
+##### Example
+
+In this example, the following command outputs the details for a single pod as a YAML formatted object:
+
+```shell
+kubectl get pod web-pod-13je7 -o yaml
+```
+
+Remember: See the [kubectl](/docs/reference/kubectl/kubectl/) reference documentation
+for details about which output format is supported by each command.
+
+#### Custom columns
+
+To define custom columns and output only the details that you want into a table, you can use the `custom-columns` option.
+You can choose to define the custom columns inline or use a template file: `-o custom-columns=<spec>` or `-o custom-columns-file=<filename>`.
+
+##### Examples
+
+Inline:
+
+```shell
+kubectl get pods <pod-name> -o custom-columns=NAME:.metadata.name,RSRC:.metadata.resourceVersion
+```
+
+Template file:
+
+```shell
+kubectl get pods <pod-name> -o custom-columns-file=template.txt
+```
+
+where the `template.txt` file contains:
+
+```
+NAME          RSRC
+metadata.name metadata.resourceVersion
+```
+The result of running either command is similar to:
+
+```
+NAME           RSRC
+submit-queue   610995
+```
+
+#### Server-side columns
+
+`kubectl` supports receiving specific column information from the server about objects.
+This means that for any given resource, the server will return columns and rows relevant to that resource, for the client to print.
+This allows for consistent human-readable output across clients used against the same cluster, by having the server encapsulate the details of printing.
+
+This feature is enabled by default. To disable it, add the
+`--server-print=false` flag to the `kubectl get` command.
+
+##### Examples
+
+To print information about the status of a pod, use a command like the following:
+
+```shell
+kubectl get pods <pod-name> --server-print=false
+```
+
+The output is similar to:
+
+```
+NAME       AGE
+pod-name   1m
+```
+
+### Sorting list objects
+
+To output objects to a sorted list in your terminal window, you can add the `--sort-by` flag to a supported `kubectl` command. Sort your objects by specifying any numeric or string field with the `--sort-by` flag. To specify a field, use a [jsonpath](/docs/reference/kubectl/jsonpath/) expression.
+
+#### Syntax
+
+```shell
+kubectl [command] [TYPE] [NAME] --sort-by=<jsonpath_exp>
+```
+
+##### Example
+
+To print a list of pods sorted by name, you run:
+
+```shell
+kubectl get pods --sort-by=.metadata.name
+```
+
+## Examples: Common operations
+
+Use the following set of examples to help you familiarize yourself with running the commonly used `kubectl` operations:
+
+`kubectl apply` - Apply or Update a resource from a file or stdin.
+
+```shell
+# Create a service using the definition in example-service.yaml.
+kubectl apply -f example-service.yaml
+
+# Create a replication controller using the definition in example-controller.yaml.
+kubectl apply -f example-controller.yaml
+
+# Create the objects that are defined in any .yaml, .yml, or .json file within the <directory> directory.
+kubectl apply -f <directory>
+```
+
+`kubectl get` - List one or more resources.
+
+```shell
+# List all pods in plain-text output format.
+kubectl get pods
+
+# List all pods in plain-text output format and include additional information (such as node name).
+kubectl get pods -o wide
+
+# List the replication controller with the specified name in plain-text output format. Tip: You can shorten and replace the 'replicationcontroller' resource type with the alias 'rc'.
+kubectl get replicationcontroller <rc-name>
+
+# List all replication controllers and services together in plain-text output format.
+kubectl get rc,services
+
+# List all daemon sets in plain-text output format.
+kubectl get ds
+
+# List all pods running on node server01
+kubectl get pods --field-selector=spec.nodeName=server01
+```
+
+`kubectl describe` - Display detailed state of one or more resources, including the uninitialized ones by default.
+
+```shell
+# Display the details of the node with name <node-name>.
+kubectl describe nodes <node-name>
+
+# Display the details of the pod with name <pod-name>.
+kubectl describe pods/<pod-name>
+
+# Display the details of all the pods that are managed by the replication controller named <rc-name>.
+# Remember: Any pods that are created by the replication controller get prefixed with the name of the replication controller.
+kubectl describe pods <rc-name>
+
+# Describe all pods
+kubectl describe pods
+```
+
+{{< note >}}
+The `kubectl get` command is usually used for retrieving one or more
+resources of the same resource type. It features a rich set of flags that allows
+you to customize the output format using the `-o` or `--output` flag, for example.
+You can specify the `-w` or `--watch` flag to start watching updates to a particular
+object. The `kubectl describe` command is more focused on describing the many
+related aspects of a specified resource. It may invoke several API calls to the
+API server to build a view for the user. For example, the `kubectl describe node`
+command retrieves not only the information about the node, but also a summary of
+the pods running on it, the events generated for the node etc.
+{{< /note >}}
+
+`kubectl delete` - Delete resources either from a file, stdin, or specifying label selectors, names, resource selectors, or resources.
+
+```shell
+# Delete a pod using the type and name specified in the pod.yaml file.
+kubectl delete -f pod.yaml
+
+# Delete all the pods and services that have the label '<label-key>=<label-value>'.
+kubectl delete pods,services -l <label-key>=<label-value>
+
+# Delete all pods, including uninitialized ones.
+kubectl delete pods --all
+```
+
+`kubectl exec` - Execute a command against a container in a pod.
+
+```shell
+# Get output from running 'date' from pod <pod-name>. By default, output is from the first container.
+kubectl exec <pod-name> -- date
+
+# Get output from running 'date' in container <container-name> of pod <pod-name>.
+kubectl exec <pod-name> -c <container-name> -- date
+
+# Get an interactive TTY and run /bin/bash from pod <pod-name>. By default, output is from the first container.
+kubectl exec -ti <pod-name> -- /bin/bash
+```
+
+`kubectl logs` - Print the logs for a container in a pod.
+
+```shell
+# Return a snapshot of the logs from pod <pod-name>.
+kubectl logs <pod-name>
+
+# Start streaming the logs from pod <pod-name>. This is similar to the 'tail -f' Linux command.
+kubectl logs -f <pod-name>
+```
+
+`kubectl diff` - View a diff of the proposed updates to a cluster.
+
+```shell
+# Diff resources included in "pod.json".
+kubectl diff -f pod.json
+
+# Diff file read from stdin.
+cat service.yaml | kubectl diff -f -
+```
+
+## Examples: Creating and using plugins
+
+Use the following set of examples to help you familiarize yourself with writing and using `kubectl` plugins:
+
+```shell
+# create a simple plugin in any language and name the resulting executable file
+# so that it begins with the prefix "kubectl-"
+cat ./kubectl-hello
+```
+```shell
+#!/bin/sh
+
+# this plugin prints the words "hello world"
+echo "hello world"
+```
+With a plugin written, let's make it executable:
+```bash
+chmod a+x ./kubectl-hello
+
+# and move it to a location in our PATH
+sudo mv ./kubectl-hello /usr/local/bin
+sudo chown root:root /usr/local/bin
+
+# You have now created and "installed" a kubectl plugin.
+# You can begin using this plugin by invoking it from kubectl as if it were a regular command
+kubectl hello
+```
+```
+hello world
+```
+
+```shell
+# You can "uninstall" a plugin, by removing it from the folder in your
+# $PATH where you placed it
+sudo rm /usr/local/bin/kubectl-hello
+```
+
+In order to view all of the plugins that are available to `kubectl`, use
+the `kubectl plugin list` subcommand:
+
+```shell
+kubectl plugin list
+```
+The output is similar to:
+```
+The following kubectl-compatible plugins are available:
+
+/usr/local/bin/kubectl-hello
+/usr/local/bin/kubectl-foo
+/usr/local/bin/kubectl-bar
+```
+
+`kubectl plugin list` also warns you about plugins that are not
+executable, or that are shadowed by other plugins; for example:
+```shell
+sudo chmod -x /usr/local/bin/kubectl-foo # remove execute permission
+kubectl plugin list
+```
+```
+The following kubectl-compatible plugins are available:
+
+/usr/local/bin/kubectl-hello
+/usr/local/bin/kubectl-foo
+  - warning: /usr/local/bin/kubectl-foo identified as a plugin, but it is not executable
+/usr/local/bin/kubectl-bar
+
+error: one plugin warning was found
+```
+
+You can think of plugins as a means to build more complex functionality on top
+of the existing kubectl commands:
+
+```shell
+cat ./kubectl-whoami
+```
+The next few examples assume that you already made `kubectl-whoami` have
+the following contents:
+```shell
+#!/bin/bash
+
+# this plugin makes use of the `kubectl config` command in order to output
+# information about the current user, based on the currently selected context
+kubectl config view --template='{{ range .contexts }}{{ if eq .name "'$(kubectl config current-context)'" }}Current user: {{ printf "%s\n" .context.user }}{{ end }}{{ end }}'
+```
+
+Running the above command gives you an output containing the user for the
+current context in your KUBECONFIG file:
+
+```shell
+# make the file executable
+sudo chmod +x ./kubectl-whoami
+
+# and move it into your PATH
+sudo mv ./kubectl-whoami /usr/local/bin
+
+kubectl whoami
+Current user: plugins-user
+```
+
+## {{% heading "whatsnext" %}}
+
+* Read the `kubectl` reference documentation:
+  * the kubectl [command reference](/docs/reference/kubectl/kubectl/)
+  * the [command line arguments](/docs/reference/generated/kubectl/kubectl-commands/) reference
+* Learn about [`kubectl` usage conventions](/docs/reference/kubectl/conventions/)
+* Read about [JSONPath support](/docs/reference/kubectl/jsonpath/) in kubectl
+* Read about how to [extend kubectl with plugins](/docs/tasks/extend-kubectl/kubectl-plugins)
+  * To find out more about plugins, take a look at the [example CLI plugin](https://github.com/kubernetes/sample-cli-plugin).
diff --git a/content/en/docs/reference/kubectl/cheatsheet.md b/content/en/docs/reference/kubectl/cheatsheet.md
index c32ba4f809..fa7e9bffe0 100644
--- a/content/en/docs/reference/kubectl/cheatsheet.md
+++ b/content/en/docs/reference/kubectl/cheatsheet.md
@@ -5,6 +5,7 @@ reviewers:
 - krousey
 - clove
 content_type: concept
+weight: 10 # highlight it
 card:
   name: reference
   weight: 30
@@ -29,15 +30,20 @@ You can also use a shorthand alias for `kubectl` that also works with completion
 
 ```bash
 alias k=kubectl
-complete -F __start_kubectl k
+complete -o default -F __start_kubectl k
 ```
 
 ### ZSH
 
 ```bash
 source <(kubectl completion zsh)  # setup autocomplete in zsh into the current shell
-echo "[[ $commands[kubectl] ]] && source <(kubectl completion zsh)" >> ~/.zshrc # add autocomplete permanently to your zsh shell
+echo '[[ $commands[kubectl] ]] && source <(kubectl completion zsh)' >> ~/.zshrc # add autocomplete permanently to your zsh shell
 ```
+### A Note on --all-namespaces
+
+Appending `--all-namespaces` happens frequently enough where you should be aware of the  shorthand for `--all-namespaces`:
+
+```kubectl -A```
 
 ## Kubectl context and configuration
 
@@ -49,7 +55,7 @@ detailed config file information.
 kubectl config view # Show Merged kubeconfig settings.
 
 # use multiple kubeconfig files at the same time and view merged config
-KUBECONFIG=~/.kube/config:~/.kube/kubconfig2 
+KUBECONFIG=~/.kube/config:~/.kube/kubconfig2
 
 kubectl config view
 
@@ -58,10 +64,15 @@ kubectl config view -o jsonpath='{.users[?(@.name == "e2e")].user.password}'
 
 kubectl config view -o jsonpath='{.users[].name}'    # display the first user
 kubectl config view -o jsonpath='{.users[*].name}'   # get a list of users
-kubectl config get-contexts                          # display list of contexts 
+kubectl config get-contexts                          # display list of contexts
 kubectl config current-context                       # display the current-context
 kubectl config use-context my-cluster-name           # set the default context to my-cluster-name
 
+kubectl config set-cluster my-cluster-name           # set a cluster entry in the kubeconfig
+
+# configure the URL to a proxy server to use for requests made by this client in the kubeconfig
+kubectl config set-cluster my-cluster-name --proxy-url=my-proxy-url
+
 # add a new user to your kubeconf that supports basic auth
 kubectl config set-credentials kubeuser/foo.kubernetes.com --username=kubeuser --password=kubepassword
 
@@ -73,6 +84,10 @@ kubectl config set-context gce --user=cluster-admin --namespace=foo \
   && kubectl config use-context gce
 
 kubectl config unset users.foo                       # delete user foo
+
+# short alias to set/show context/namespace (only works for bash and bash-compatible shells, current context to be set before using kn to set namespace) 
+alias kx='f() { [ "$1" ] && kubectl config use-context $1 || kubectl config current-context ; } ; f'
+alias kn='f() { [ "$1" ] && kubectl config set-context --current --namespace $1 || kubectl config view --minify | grep namespace | cut -d" " -f6 ; } ; f'
 ```
 
 ## Kubectl apply
@@ -92,10 +107,10 @@ kubectl apply -f https://git.io/vPieo          # create resource(s) from url
 kubectl create deployment nginx --image=nginx  # start a single instance of nginx
 
 # create a Job which prints "Hello World"
-kubectl create job hello --image=busybox -- echo "Hello World" 
+kubectl create job hello --image=busybox:1.28 -- echo "Hello World"
 
 # create a CronJob that prints "Hello World" every minute
-kubectl create cronjob hello --image=busybox   --schedule="*/1 * * * *" -- echo "Hello World"    
+kubectl create cronjob hello --image=busybox:1.28   --schedule="*/1 * * * *" -- echo "Hello World"
 
 kubectl explain pods                           # get the documentation for pod manifests
 
@@ -108,7 +123,7 @@ metadata:
 spec:
   containers:
   - name: busybox
-    image: busybox
+    image: busybox:1.28
     args:
     - sleep
     - "1000000"
@@ -120,7 +135,7 @@ metadata:
 spec:
   containers:
   - name: busybox
-    image: busybox
+    image: busybox:1.28
     args:
     - sleep
     - "1000"
@@ -172,9 +187,12 @@ kubectl get pods --selector=app=cassandra -o \
 kubectl get configmap myconfig \
   -o jsonpath='{.data.ca\.crt}'
 
+# Retrieve a base64 encoded value with dashes instead of underscores.
+kubectl get secret my-secret --template='{{index .data "key-name-with-dashes"}}'
+
 # Get all worker nodes (use a selector to exclude results that have a label
-# named 'node-role.kubernetes.io/master')
-kubectl get node --selector='!node-role.kubernetes.io/master'
+# named 'node-role.kubernetes.io/control-plane')
+kubectl get node --selector='!node-role.kubernetes.io/control-plane'
 
 # Get all running pods in the namespace
 kubectl get pods --field-selector=status.phase=Running
@@ -212,28 +230,31 @@ kubectl diff -f ./my-manifest.yaml
 
 # Produce a period-delimited tree of all keys returned for nodes
 # Helpful when locating a key within a complex nested JSON structure
-kubectl get nodes -o json | jq -c 'path(..)|[.[]|tostring]|join(".")'
+kubectl get nodes -o json | jq -c 'paths|join(".")'
 
 # Produce a period-delimited tree of all keys returned for pods, etc
-kubectl get pods -o json | jq -c 'path(..)|[.[]|tostring]|join(".")'
+kubectl get pods -o json | jq -c 'paths|join(".")'
 
 # Produce ENV for all pods, assuming you have a default container for the pods, default namespace and the `env` command is supported.
 # Helpful when running any supported command across all pods, not just `env`
-for pod in $(kubectl get po --output=jsonpath={.items..metadata.name}); do echo $pod && kubectl exec -it $pod env; done
+for pod in $(kubectl get po --output=jsonpath={.items..metadata.name}); do echo $pod && kubectl exec -it $pod -- env; done
+
+# Get a deployment's status subresource
+kubectl get deployment nginx-deployment --subresource=status
 ```
 
 ## Updating resources
 
 ```bash
 kubectl set image deployment/frontend www=image:v2               # Rolling update "www" containers of "frontend" deployment, updating the image
-kubectl rollout history deployment/frontend                      # Check the history of deployments including the revision 
+kubectl rollout history deployment/frontend                      # Check the history of deployments including the revision
 kubectl rollout undo deployment/frontend                         # Rollback to the previous deployment
 kubectl rollout undo deployment/frontend --to-revision=2         # Rollback to a specific revision
 kubectl rollout status -w deployment/frontend                    # Watch rolling update status of "frontend" deployment until completion
 kubectl rollout restart deployment/frontend                      # Rolling restart of the "frontend" deployment
 
 
-cat pod.json | kubectl replace -f -                              # Replace a pod based on the JSON passed into std
+cat pod.json | kubectl replace -f -                              # Replace a pod based on the JSON passed into stdin
 
 # Force replace, delete and then re-create the resource. Will cause a service outage.
 kubectl replace --force -f ./pod.json
@@ -266,6 +287,9 @@ kubectl patch deployment valid-deployment  --type json   -p='[{"op": "remove", "
 
 # Add a new element to a positional array
 kubectl patch sa default --type='json' -p='[{"op": "add", "path": "/secrets/1", "value": {"name": "whatever" } }]'
+
+# Update a deployment's replica count by patching its scale subresource
+kubectl patch deployment nginx-deployment --subresource='scale' --type='merge' -p '{"spec":{"replicas":2}}'
 ```
 
 ## Editing resources
@@ -289,10 +313,11 @@ kubectl scale --replicas=5 rc/foo rc/bar rc/baz                   # Scale multip
 ## Deleting resources
 
 ```bash
-kubectl delete -f ./pod.json                                              # Delete a pod using the type and name specified in pod.json
-kubectl delete pod,service baz foo                                        # Delete pods and services with same names "baz" and "foo"
-kubectl delete pods,services -l name=myLabel                              # Delete pods and services with label name=myLabel
-kubectl -n my-ns delete pod,svc --all                                      # Delete all pods and services in namespace my-ns,
+kubectl delete -f ./pod.json                                      # Delete a pod using the type and name specified in pod.json
+kubectl delete pod unwanted --now                                 # Delete a pod with no grace period
+kubectl delete pod,service baz foo                                # Delete pods and services with same names "baz" and "foo"
+kubectl delete pods,services -l name=myLabel                      # Delete pods and services with label name=myLabel
+kubectl -n my-ns delete pod,svc --all                             # Delete all pods and services in namespace my-ns,
 # Delete all pods matching the awk pattern1 or pattern2
 kubectl get pods  -n mynamespace --no-headers=true | awk '/pattern1|pattern2/{print $1}' | xargs  kubectl delete -n mynamespace pod
 ```
@@ -309,20 +334,37 @@ kubectl logs my-pod -c my-container --previous      # dump pod container logs (s
 kubectl logs -f my-pod                              # stream pod logs (stdout)
 kubectl logs -f my-pod -c my-container              # stream pod container logs (stdout, multi-container case)
 kubectl logs -f -l name=myLabel --all-containers    # stream all pods logs with label name=myLabel (stdout)
-kubectl run -i --tty busybox --image=busybox -- sh  # Run pod as interactive shell
-kubectl run nginx --image=nginx -n 
-mynamespace                                         # Run pod nginx in a specific namespace
+kubectl run -i --tty busybox --image=busybox:1.28 -- sh  # Run pod as interactive shell
+kubectl run nginx --image=nginx -n mynamespace      # Start a single instance of nginx pod in the namespace of mynamespace
 kubectl run nginx --image=nginx                     # Run pod nginx and write its spec into a file called pod.yaml
 --dry-run=client -o yaml > pod.yaml
 
 kubectl attach my-pod -i                            # Attach to Running Container
 kubectl port-forward my-pod 5000:6000               # Listen on port 5000 on the local machine and forward to port 6000 on my-pod
 kubectl exec my-pod -- ls /                         # Run command in existing pod (1 container case)
-kubectl exec --stdin --tty my-pod -- /bin/sh        # Interactive shell access to a running pod (1 container case) 
+kubectl exec --stdin --tty my-pod -- /bin/sh        # Interactive shell access to a running pod (1 container case)
 kubectl exec my-pod -c my-container -- ls /         # Run command in existing pod (multi-container case)
 kubectl top pod POD_NAME --containers               # Show metrics for a given pod and its containers
 kubectl top pod POD_NAME --sort-by=cpu              # Show metrics for a given pod and sort it by 'cpu' or 'memory'
 ```
+## Copy files and directories to and from containers
+
+```bash
+kubectl cp /tmp/foo_dir my-pod:/tmp/bar_dir            # Copy /tmp/foo_dir local directory to /tmp/bar_dir in a remote pod in the current namespace
+kubectl cp /tmp/foo my-pod:/tmp/bar -c my-container    # Copy /tmp/foo local file to /tmp/bar in a remote pod in a specific container
+kubectl cp /tmp/foo my-namespace/my-pod:/tmp/bar       # Copy /tmp/foo local file to /tmp/bar in a remote pod in namespace my-namespace
+kubectl cp my-namespace/my-pod:/tmp/foo /tmp/bar       # Copy /tmp/foo from a remote pod to /tmp/bar locally
+```
+{{< note >}}
+`kubectl cp` requires that the 'tar' binary is present in your container image. If 'tar' is not present,`kubectl cp` will fail.
+For advanced use cases, such as symlinks, wildcard expansion or file mode preservation consider using `kubectl exec`.
+{{< /note >}}
+
+```bash
+tar cf - /tmp/foo | kubectl exec -i -n my-namespace my-pod -- tar xf - -C /tmp/bar           # Copy /tmp/foo local file to /tmp/bar in a remote pod in namespace my-namespace
+kubectl exec -n my-namespace my-pod -- tar cf - /tmp/foo | tar xf - -C /tmp/bar    # Copy /tmp/foo from a remote pod to /tmp/bar locally
+```
+
 
 ## Interacting with Deployments and Services
 ```bash
@@ -347,6 +389,9 @@ kubectl cluster-info                                                  # Display
 kubectl cluster-info dump                                             # Dump current cluster state to stdout
 kubectl cluster-info dump --output-directory=/path/to/cluster-state   # Dump current cluster state to /path/to/cluster-state
 
+# View existing taints on which exist on current nodes.
+kubectl get nodes -o=custom-columns=NodeName:.metadata.name,TaintKey:.spec.taints[*].key,TaintValue:.spec.taints[*].value,TaintEffect:.spec.taints[*].effect
+
 # If a taint with that key and effect already exists, its value is replaced as specified.
 kubectl taint nodes foo dedicated=special-user:NoSchedule
 ```
@@ -401,7 +446,7 @@ kubectl get pods -A -o=custom-columns='DATA:spec.containers[?(@.image!="k8s.gcr.
 kubectl get pods -A -o=custom-columns='DATA:metadata.*'
 ```
 
-More examples in the kubectl [reference documentation](/docs/reference/kubectl/overview/#custom-columns).
+More examples in the kubectl [reference documentation](/docs/reference/kubectl/#custom-columns).
 
 ### Kubectl output verbosity and debugging
 
@@ -422,7 +467,7 @@ Verbosity | Description
 
 ## {{% heading "whatsnext" %}}
 
-* Read the [kubectl overview](/docs/reference/kubectl/overview/) and learn about [JsonPath](/docs/reference/kubectl/jsonpath).
+* Read the [kubectl overview](/docs/reference/kubectl/) and learn about [JsonPath](/docs/reference/kubectl/jsonpath).
 
 * See [kubectl](/docs/reference/kubectl/kubectl/) options.
 
diff --git a/content/en/docs/reference/kubectl/conventions.md b/content/en/docs/reference/kubectl/conventions.md
index c8016453cd..00a842f058 100644
--- a/content/en/docs/reference/kubectl/conventions.md
+++ b/content/en/docs/reference/kubectl/conventions.md
@@ -19,6 +19,16 @@ For a stable output in a script:
 * Fully-qualify the version. For example, `jobs.v1.batch/myjob`. This will ensure that kubectl does not use its default version that can change over time.
 * Don't rely on context, preferences, or other implicit states.
 
+## Subresources
+
+* You can use the `--subresource` alpha flag for kubectl commands like `get`, `patch`,
+`edit` and `replace` to fetch and update subresources for all resources that
+support them. Currently, only the `status` and `scale` subresources are supported.
+* The API contract against a subresource is identical to a full resource. While updating the
+`status` subresource to a new value, keep in mind that the subresource could be potentially
+reconciled by a controller to a different value.
+
+
 ## Best Practices
 
 ### `kubectl run`
@@ -31,29 +41,6 @@ For `kubectl run` to satisfy infrastructure as code:
 
 You can use the `--dry-run=client` flag to preview the object that would be sent to your cluster, without really submitting it.
 
-{{< note >}}
-All `kubectl run` generators are deprecated. See the Kubernetes v1.17 documentation for a [list](https://v1-17.docs.kubernetes.io/docs/reference/kubectl/conventions/#generators) of generators and how they were used.
-{{< /note >}}
-
-#### Generators
-You can generate the following resources with a kubectl command, `kubectl create --dry-run=client -o yaml`:
-
-* `clusterrole`: Create a ClusterRole.
-* `clusterrolebinding`: Create a ClusterRoleBinding for a particular ClusterRole.
-* `configmap`: Create a ConfigMap from a local file, directory or literal value.
-* `cronjob`: Create a CronJob with the specified name.
-* `deployment`: Create a Deployment with the specified name.
-* `job`: Create a Job with the specified name.
-* `namespace`: Create a Namespace with the specified name.
-* `poddisruptionbudget`: Create a PodDisruptionBudget with the specified name.
-* `priorityclass`: Create a PriorityClass with the specified name.
-* `quota`: Create a Quota with the specified name.
-* `role`: Create a Role with single rule.
-* `rolebinding`: Create a RoleBinding for a particular Role or ClusterRole.
-* `secret`: Create a Secret using specified subcommand.
-* `service`: Create a Service using specified subcommand.
-* `serviceaccount`: Create a ServiceAccount with the specified name.
-
 ### `kubectl apply`
 
 * You can use `kubectl apply` to create or update resources. For more information about using kubectl apply to update resources, see [Kubectl Book](https://kubectl.docs.kubernetes.io).
diff --git a/content/en/docs/reference/kubectl/docker-cli-to-kubectl.md b/content/en/docs/reference/kubectl/docker-cli-to-kubectl.md
index 9c148702b5..95e2e79c77 100644
--- a/content/en/docs/reference/kubectl/docker-cli-to-kubectl.md
+++ b/content/en/docs/reference/kubectl/docker-cli-to-kubectl.md
@@ -187,7 +187,7 @@ kubectl exec -ti nginx-app-5jyvm -- /bin/sh
 # exit
 ```
 
-For more information, see [Get a Shell to a Running Container](/docs/tasks/debug-application-cluster/get-shell-running-container/).
+For more information, see [Get a Shell to a Running Container](/docs/tasks/debug/debug-application/get-shell-running-container/).
 
 ## docker logs
 
diff --git a/content/en/docs/reference/kubectl/jsonpath.md b/content/en/docs/reference/kubectl/jsonpath.md
index d26c110cee..36e29e6350 100644
--- a/content/en/docs/reference/kubectl/jsonpath.md
+++ b/content/en/docs/reference/kubectl/jsonpath.md
@@ -1,7 +1,6 @@
 ---
 title: JSONPath Support
 content_type: concept
-weight: 25
 ---
 
 <!-- overview -->
diff --git a/content/en/docs/reference/kubectl/kubectl-cmds.md b/content/en/docs/reference/kubectl/kubectl-cmds.md
index 0c37ed2fd1..ecb8b87c3b 100644
--- a/content/en/docs/reference/kubectl/kubectl-cmds.md
+++ b/content/en/docs/reference/kubectl/kubectl-cmds.md
@@ -1,5 +1,6 @@
 ---
 title: kubectl Commands
+weight: 20
 ---
 
 [kubectl Command Reference](/docs/reference/generated/kubectl/kubectl-commands/)
diff --git a/content/en/docs/reference/kubectl/overview.md b/content/en/docs/reference/kubectl/overview.md
deleted file mode 100644
index 611065eead..0000000000
--- a/content/en/docs/reference/kubectl/overview.md
+++ /dev/null
@@ -1,548 +0,0 @@
----
-reviewers:
-- hw-qiaolei
-title: Overview of kubectl
-content_type: concept
-weight: 20
-card:
-  name: reference
-  weight: 20
----
-
-<!-- overview -->
-The kubectl command line tool lets you control Kubernetes clusters.
-For configuration, `kubectl` looks for a file named `config` in the `$HOME/.kube` directory.
-You can specify other [kubeconfig](/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
-files by setting the KUBECONFIG environment variable or by setting the
-[`--kubeconfig`](/docs/concepts/configuration/organize-cluster-access-kubeconfig/) flag.
-
-This overview covers `kubectl` syntax, describes the command operations, and provides common examples.
-For details about each command, including all the supported flags and subcommands, see the
-[kubectl](/docs/reference/generated/kubectl/kubectl-commands/) reference documentation.
-For installation instructions see [installing kubectl](/docs/tasks/tools/).
-
-<!-- body -->
-
-## Syntax
-
-Use the following syntax to run `kubectl` commands from your terminal window:
-
-```shell
-kubectl [command] [TYPE] [NAME] [flags]
-```
-
-where `command`, `TYPE`, `NAME`, and `flags` are:
-
-* `command`: Specifies the operation that you want to perform on one or more resources, 
-for example `create`, `get`, `describe`, `delete`.
-
-* `TYPE`: Specifies the [resource type](#resource-types). Resource types are case-insensitive and
-  you can specify the singular, plural, or abbreviated forms.
-  For example, the following commands produce the same output:
-
-   ```shell
-   kubectl get pod pod1
-   kubectl get pods pod1
-   kubectl get po pod1
-   ```
-
-* `NAME`: Specifies the name of the resource. Names are case-sensitive. If the name is omitted, details for all resources are displayed, for example `kubectl get pods`.
-
-   When performing an operation on multiple resources, you can specify each resource by type and name or specify one or more files:
-
-   * To specify resources by type and name:
-
-      * To group resources if they are all the same type:  `TYPE1 name1 name2 name<#>`.<br/>
-      Example: `kubectl get pod example-pod1 example-pod2`
-
-      * To specify multiple resource types individually:  `TYPE1/name1 TYPE1/name2 TYPE2/name3 TYPE<#>/name<#>`.<br/>
-      Example: `kubectl get pod/example-pod1 replicationcontroller/example-rc1`
-
-   * To specify resources with one or more files:  `-f file1 -f file2 -f file<#>`
-
-      * [Use YAML rather than JSON](/docs/concepts/configuration/overview/#general-configuration-tips) since YAML tends to be more user-friendly, especially for configuration files.<br/>
-     Example: `kubectl get -f ./pod.yaml`
-
-* `flags`: Specifies optional flags. For example, you can use the `-s` or `--server` flags to specify the address and port of the Kubernetes API server.<br/>
-
-{{< caution >}}
-Flags that you specify from the command line override default values and any corresponding environment variables.
-{{< /caution >}}
-
-If you need help, run `kubectl help` from the terminal window.
-
-## In-cluster authentication and namespace overrides
-
-By default `kubectl` will first determine if it is running within a pod, and thus in a cluster. It starts by checking for the `KUBERNETES_SERVICE_HOST` and `KUBERNETES_SERVICE_PORT` environment variables and the existence of a service account token file at `/var/run/secrets/kubernetes.io/serviceaccount/token`. If all three are found in-cluster authentication is assumed.
-
-To maintain backwards compatibility, if the `POD_NAMESPACE` environment variable is set during in-cluster authentication it will override the default namespace from the from the service account token. Any manifests or tools relying on namespace defaulting will be affected by this.
-
-**`POD_NAMESPACE` environment variable**
-
-If the `POD_NAMESPACE` environment variable is set, cli operations on namespaced resources will default to the variable value. For example, if the variable is set to `seattle`, `kubectl get pods` would return pods in the `seattle` namespace. This is because pods are a namespaced resource, and no namespace was provided in the command. Review the output of `kubectl api-resources` to determine if a resource is namespaced. 
-
-Explicit use of `--namespace <value>` overrides this behavior. 
-
-**How kubectl handles ServiceAccount tokens**
-
-If:
-* there is Kubernetes service account token file mounted at
-  `/var/run/secrets/kubernetes.io/serviceaccount/token`, and
-* the `KUBERNETES_SERVICE_HOST` environment variable is set, and
-* the `KUBERNETES_SERVICE_PORT` environment variable is set, and
-* you don't explicitly specify a namespace on the kubectl command line
-then kubectl assumes it is running in your cluster. The kubectl tool looks up the
-namespace of that ServiceAccount (this is the same as the namespace of the Pod)
-and acts against that namespace. This is different from what happens outside of a
-cluster; when kubectl runs outside a cluster and you don't specify a namespace,
-the kubectl command acts against the `default` namespace.
-
-## Operations
-
-The following table includes short descriptions and the general syntax for all of the `kubectl` operations:
-
-Operation       | Syntax    |       Description
--------------------- | -------------------- | --------------------
-`alpha`    | `kubectl alpha SUBCOMMAND [flags]` | List the available commands that correspond to alpha features, which are not enabled in Kubernetes clusters by default.
-`annotate`    | <code>kubectl annotate (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) KEY_1=VAL_1 ... KEY_N=VAL_N [--overwrite] [--all] [--resource-version=version] [flags]</code> | Add or update the annotations of one or more resources.
-`api-resources`    | `kubectl api-resources [flags]` | List the API resources that are available.
-`api-versions`    | `kubectl api-versions [flags]` | List the API versions that are available.
-`apply`            | `kubectl apply -f FILENAME [flags]`| Apply a configuration change to a resource from a file or stdin.
-`attach`        | `kubectl attach POD -c CONTAINER [-i] [-t] [flags]` | Attach to a running container either to view the output stream or interact with the container (stdin).
-`auth`    | `kubectl auth [flags] [options]` | Inspect authorization.
-`autoscale`    | <code>kubectl autoscale (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) [--min=MINPODS] --max=MAXPODS [--cpu-percent=CPU] [flags]</code> | Automatically scale the set of pods that are managed by a replication controller.
-`certificate`    | `kubectl certificate SUBCOMMAND [options]` | Modify certificate resources.
-`cluster-info`    | `kubectl cluster-info [flags]` | Display endpoint information about the master and services in the cluster.
-`completion`    | `kubectl completion SHELL [options]` | Output shell completion code for the specified shell (bash or zsh).
-`config`        | `kubectl config SUBCOMMAND [flags]` | Modifies kubeconfig files. See the individual subcommands for details.
-`convert`    | `kubectl convert -f FILENAME [options]` | Convert config files between different API versions. Both YAML and JSON formats are accepted. Note - requires `kubectl-convert` plugin to be installed.
-`cordon`    | `kubectl cordon NODE [options]` | Mark node as unschedulable.
-`cp`    | `kubectl cp <file-spec-src> <file-spec-dest> [options]` | Copy files and directories to and from containers.
-`create`        | `kubectl create -f FILENAME [flags]` | Create one or more resources from a file or stdin.
-`delete`        | <code>kubectl delete (-f FILENAME &#124; TYPE [NAME &#124; /NAME &#124; -l label &#124; --all]) [flags]</code> | Delete resources either from a file, stdin, or specifying label selectors, names, resource selectors, or resources.
-`describe`    | <code>kubectl describe (-f FILENAME &#124; TYPE [NAME_PREFIX &#124; /NAME &#124; -l label]) [flags]</code> | Display the detailed state of one or more resources.
-`diff`        | `kubectl diff -f FILENAME [flags]`| Diff file or stdin against live configuration.
-`drain`    | `kubectl drain NODE [options]` | Drain node in preparation for maintenance.
-`edit`        | <code>kubectl edit (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) [flags]</code> | Edit and update the definition of one or more resources on the server by using the default editor.
-`exec`        | `kubectl exec POD [-c CONTAINER] [-i] [-t] [flags] [-- COMMAND [args...]]` | Execute a command against a container in a pod.
-`explain`    | `kubectl explain  [--recursive=false] [flags]` | Get documentation of various resources. For instance pods, nodes, services, etc.
-`expose`        | <code>kubectl expose (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) [--port=port] [--protocol=TCP&#124;UDP] [--target-port=number-or-name] [--name=name] [--external-ip=external-ip-of-service] [--type=type] [flags]</code> | Expose a replication controller, service, or pod as a new Kubernetes service.
-`get`        | <code>kubectl get (-f FILENAME &#124; TYPE [NAME &#124; /NAME &#124; -l label]) [--watch] [--sort-by=FIELD] [[-o &#124; --output]=OUTPUT_FORMAT] [flags]</code> | List one or more resources.
-`kustomize`    | `kubectl kustomize <dir> [flags] [options]` | List a set of API resources generated from instructions in a kustomization.yaml file. The argument must be the path to the directory containing the file, or a git repository URL with a path suffix specifying same with respect to the repository root.
-`label`        | <code>kubectl label (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) KEY_1=VAL_1 ... KEY_N=VAL_N [--overwrite] [--all] [--resource-version=version] [flags]</code> | Add or update the labels of one or more resources.
-`logs`        | `kubectl logs POD [-c CONTAINER] [--follow] [flags]` | Print the logs for a container in a pod.
-`options`    | `kubectl options` | List of global command-line options, which apply to all commands.
-`patch`        | <code>kubectl patch (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) --patch PATCH [flags]</code> | Update one or more fields of a resource by using the strategic merge patch process.
-`plugin`    | `kubectl plugin [flags] [options]` | Provides utilities for interacting with plugins.
-`port-forward`    | `kubectl port-forward POD [LOCAL_PORT:]REMOTE_PORT [...[LOCAL_PORT_N:]REMOTE_PORT_N] [flags]` | Forward one or more local ports to a pod.
-`proxy`        | `kubectl proxy [--port=PORT] [--www=static-dir] [--www-prefix=prefix] [--api-prefix=prefix] [flags]` | Run a proxy to the Kubernetes API server.
-`replace`        | `kubectl replace -f FILENAME` | Replace a resource from a file or stdin.
-`rollout`    | `kubectl rollout SUBCOMMAND [options]` | Manage the rollout of a resource. Valid resource types include: deployments, daemonsets and statefulsets.
-`run`        | <code>kubectl run NAME --image=image [--env="key=value"] [--port=port] [--dry-run=server&#124;client&#124;none] [--overrides=inline-json] [flags]</code> | Run a specified image on the cluster.
-`scale`        | <code>kubectl scale (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) --replicas=COUNT [--resource-version=version] [--current-replicas=count] [flags]</code> | Update the size of the specified replication controller.
-`set`    | `kubectl set SUBCOMMAND [options]` | Configure application resources.
-`taint`    | `kubectl taint NODE NAME KEY_1=VAL_1:TAINT_EFFECT_1 ... KEY_N=VAL_N:TAINT_EFFECT_N [options]` | Update the taints on one or more nodes.
-`top`    | `kubectl top [flags] [options]` | Display Resource (CPU/Memory/Storage) usage.
-`uncordon`    | `kubectl uncordon NODE [options]` | Mark node as schedulable.
-`version`        | `kubectl version [--client] [flags]` | Display the Kubernetes version running on the client and server.
-`wait`    | <code>kubectl wait ([-f FILENAME] &#124; resource.group/resource.name &#124; resource.group [(-l label &#124; --all)]) [--for=delete&#124;--for condition=available] [options]</code> | Experimental: Wait for a specific condition on one or many resources.
-
-To learn more about command operations, see the [kubectl](/docs/reference/kubectl/kubectl/) reference documentation.
-
-## Resource types
-
-The following table includes a list of all the supported resource types and their abbreviated aliases.
-
-(This output can be retrieved from `kubectl api-resources`, and was accurate as of Kubernetes 1.19.1.)
-
-| NAME | SHORTNAMES | APIGROUP | NAMESPACED | KIND |
-|---|---|---|---|---|
-| `bindings` | | | true | Binding |
-| `componentstatuses` | `cs` | | false | ComponentStatus |
-| `configmaps` | `cm` | | true | ConfigMap |
-| `endpoints` | `ep` | | true | Endpoints |
-| `events` | `ev` | | true | Event |
-| `limitranges` | `limits` | | true | LimitRange |
-| `namespaces` | `ns` | | false | Namespace |
-| `nodes` | `no` | | false | Node |
-| `persistentvolumeclaims` | `pvc` | | true | PersistentVolumeClaim |
-| `persistentvolumes` | `pv` | | false | PersistentVolume |
-| `pods` | `po` | | true | Pod |
-| `podtemplates` | | | true | PodTemplate |
-| `replicationcontrollers` | `rc` | | true | ReplicationController |
-| `resourcequotas` | `quota` | | true | ResourceQuota |
-| `secrets` | | | true | Secret |
-| `serviceaccounts` | `sa` | | true | ServiceAccount |
-| `services` | `svc` | | true | Service |
-| `mutatingwebhookconfigurations` | | admissionregistration.k8s.io | false | MutatingWebhookConfiguration |
-| `validatingwebhookconfigurations` | | admissionregistration.k8s.io | false | ValidatingWebhookConfiguration |
-| `customresourcedefinitions` | `crd,crds` | apiextensions.k8s.io | false | CustomResourceDefinition |
-| `apiservices` | | apiregistration.k8s.io | false | APIService |
-| `controllerrevisions` | | apps | true | ControllerRevision |
-| `daemonsets` | `ds` | apps | true | DaemonSet |
-| `deployments` | `deploy` | apps | true | Deployment |
-| `replicasets` | `rs` | apps | true | ReplicaSet |
-| `statefulsets` | `sts` | apps | true | StatefulSet |
-| `tokenreviews` | | authentication.k8s.io | false | TokenReview |
-| `localsubjectaccessreviews` | | authorization.k8s.io | true | LocalSubjectAccessReview |
-| `selfsubjectaccessreviews` | | authorization.k8s.io | false | SelfSubjectAccessReview |
-| `selfsubjectrulesreviews` | | authorization.k8s.io | false | SelfSubjectRulesReview |
-| `subjectaccessreviews` | | authorization.k8s.io | false | SubjectAccessReview |
-| `horizontalpodautoscalers` | `hpa` | autoscaling | true | HorizontalPodAutoscaler |
-| `cronjobs` | `cj` | batch | true | CronJob |
-| `jobs` | | batch | true | Job |
-| `certificatesigningrequests` | `csr` | certificates.k8s.io | false | CertificateSigningRequest |
-| `leases` | | coordination.k8s.io | true | Lease |
-| `endpointslices` |  | discovery.k8s.io | true | EndpointSlice |
-| `events` | `ev` | events.k8s.io | true | Event |
-| `ingresses` | `ing` | extensions | true | Ingress |
-| `flowschemas` |  | flowcontrol.apiserver.k8s.io | false | FlowSchema |
-| `prioritylevelconfigurations` |  | flowcontrol.apiserver.k8s.io | false | PriorityLevelConfiguration |
-| `ingressclasses` |  | networking.k8s.io | false | IngressClass |
-| `ingresses` | `ing` | networking.k8s.io | true | Ingress |
-| `networkpolicies` | `netpol` | networking.k8s.io | true | NetworkPolicy |
-| `runtimeclasses` |  | node.k8s.io | false | RuntimeClass |
-| `poddisruptionbudgets` | `pdb` | policy | true | PodDisruptionBudget |
-| `podsecuritypolicies` | `psp` | policy | false | PodSecurityPolicy |
-| `clusterrolebindings` | | rbac.authorization.k8s.io | false | ClusterRoleBinding |
-| `clusterroles` | | rbac.authorization.k8s.io | false | ClusterRole |
-| `rolebindings` | | rbac.authorization.k8s.io | true | RoleBinding |
-| `roles` | | rbac.authorization.k8s.io | true | Role |
-| `priorityclasses` | `pc` | scheduling.k8s.io | false | PriorityClass |
-| `csidrivers` | | storage.k8s.io | false | CSIDriver |
-| `csinodes` | | storage.k8s.io | false | CSINode |
-| `storageclasses` | `sc` | storage.k8s.io | false | StorageClass |
-| `volumeattachments` | | storage.k8s.io | false | VolumeAttachment |
-
-## Output options
-
-Use the following sections for information about how you can format or sort the output of certain commands. For details about which commands support the various output options, see the [kubectl](/docs/reference/kubectl/kubectl/) reference documentation.
-
-### Formatting output
-
-The default output format for all `kubectl` commands is the human readable plain-text format. To output details to your terminal window in a specific format, you can add either the `-o` or `--output` flags to a supported `kubectl` command.
-
-#### Syntax
-
-```shell
-kubectl [command] [TYPE] [NAME] -o <output_format>
-```
-
-Depending on the `kubectl` operation, the following output formats are supported:
-
-Output format | Description
---------------| -----------
-`-o custom-columns=<spec>` | Print a table using a comma separated list of [custom columns](#custom-columns).
-`-o custom-columns-file=<filename>` | Print a table using the [custom columns](#custom-columns) template in the `<filename>` file.
-`-o json`     | Output a JSON formatted API object.
-`-o jsonpath=<template>` | Print the fields defined in a [jsonpath](/docs/reference/kubectl/jsonpath/) expression.
-`-o jsonpath-file=<filename>` | Print the fields defined by the [jsonpath](/docs/reference/kubectl/jsonpath/) expression in the `<filename>` file.
-`-o name`     | Print only the resource name and nothing else.
-`-o wide`     | Output in the plain-text format with any additional information. For pods, the node name is included.
-`-o yaml`     | Output a YAML formatted API object.
-
-##### Example
-
-In this example, the following command outputs the details for a single pod as a YAML formatted object:
-
-```shell
-kubectl get pod web-pod-13je7 -o yaml
-```
-
-Remember: See the [kubectl](/docs/reference/kubectl/kubectl/) reference documentation
-for details about which output format is supported by each command.
-
-#### Custom columns
-
-To define custom columns and output only the details that you want into a table, you can use the `custom-columns` option.
-You can choose to define the custom columns inline or use a template file: `-o custom-columns=<spec>` or `-o custom-columns-file=<filename>`.
-
-##### Examples
-
-Inline:
-
-```shell
-kubectl get pods <pod-name> -o custom-columns=NAME:.metadata.name,RSRC:.metadata.resourceVersion
-```
-
-Template file:
-
-```shell
-kubectl get pods <pod-name> -o custom-columns-file=template.txt
-```
-
-where the `template.txt` file contains:
-
-```
-NAME          RSRC
-metadata.name metadata.resourceVersion
-```
-The result of running either command is similar to:
-
-```
-NAME           RSRC
-submit-queue   610995
-```
-
-#### Server-side columns
-
-`kubectl` supports receiving specific column information from the server about objects.
-This means that for any given resource, the server will return columns and rows relevant to that resource, for the client to print.
-This allows for consistent human-readable output across clients used against the same cluster, by having the server encapsulate the details of printing.
-
-This feature is enabled by default. To disable it, add the
-`--server-print=false` flag to the `kubectl get` command.
-
-##### Examples
-
-To print information about the status of a pod, use a command like the following:
-
-```shell
-kubectl get pods <pod-name> --server-print=false
-```
-
-The output is similar to:
-
-```
-NAME       AGE
-pod-name   1m
-```
-
-### Sorting list objects
-
-To output objects to a sorted list in your terminal window, you can add the `--sort-by` flag to a supported `kubectl` command. Sort your objects by specifying any numeric or string field with the `--sort-by` flag. To specify a field, use a [jsonpath](/docs/reference/kubectl/jsonpath/) expression.
-
-#### Syntax
-
-```shell
-kubectl [command] [TYPE] [NAME] --sort-by=<jsonpath_exp>
-```
-
-##### Example
-
-To print a list of pods sorted by name, you run:
-
-```shell
-kubectl get pods --sort-by=.metadata.name
-```
-
-## Examples: Common operations
-
-Use the following set of examples to help you familiarize yourself with running the commonly used `kubectl` operations:
-
-`kubectl apply` - Apply or Update a resource from a file or stdin.
-
-```shell
-# Create a service using the definition in example-service.yaml.
-kubectl apply -f example-service.yaml
-
-# Create a replication controller using the definition in example-controller.yaml.
-kubectl apply -f example-controller.yaml
-
-# Create the objects that are defined in any .yaml, .yml, or .json file within the <directory> directory.
-kubectl apply -f <directory>
-```
-
-`kubectl get` - List one or more resources.
-
-```shell
-# List all pods in plain-text output format.
-kubectl get pods
-
-# List all pods in plain-text output format and include additional information (such as node name).
-kubectl get pods -o wide
-
-# List the replication controller with the specified name in plain-text output format. Tip: You can shorten and replace the 'replicationcontroller' resource type with the alias 'rc'.
-kubectl get replicationcontroller <rc-name>
-
-# List all replication controllers and services together in plain-text output format.
-kubectl get rc,services
-
-# List all daemon sets in plain-text output format.
-kubectl get ds
-
-# List all pods running on node server01
-kubectl get pods --field-selector=spec.nodeName=server01
-```
-
-`kubectl describe` - Display detailed state of one or more resources, including the uninitialized ones by default.
-
-```shell
-# Display the details of the node with name <node-name>.
-kubectl describe nodes <node-name>
-
-# Display the details of the pod with name <pod-name>.
-kubectl describe pods/<pod-name>
-
-# Display the details of all the pods that are managed by the replication controller named <rc-name>.
-# Remember: Any pods that are created by the replication controller get prefixed with the name of the replication controller.
-kubectl describe pods <rc-name>
-
-# Describe all pods
-kubectl describe pods
-```
-
-{{< note >}}
-The `kubectl get` command is usually used for retrieving one or more
-resources of the same resource type. It features a rich set of flags that allows
-you to customize the output format using the `-o` or `--output` flag, for example.
-You can specify the `-w` or `--watch` flag to start watching updates to a particular
-object. The `kubectl describe` command is more focused on describing the many
-related aspects of a specified resource. It may invoke several API calls to the
-API server to build a view for the user. For example, the `kubectl describe node`
-command retrieves not only the information about the node, but also a summary of
-the pods running on it, the events generated for the node etc.
-{{< /note >}}
-
-`kubectl delete` - Delete resources either from a file, stdin, or specifying label selectors, names, resource selectors, or resources.
-
-```shell
-# Delete a pod using the type and name specified in the pod.yaml file.
-kubectl delete -f pod.yaml
-
-# Delete all the pods and services that have the label '<label-key>=<label-value>'.
-kubectl delete pods,services -l <label-key>=<label-value>
-
-# Delete all pods, including uninitialized ones.
-kubectl delete pods --all
-```
-
-`kubectl exec` - Execute a command against a container in a pod.
-
-```shell
-# Get output from running 'date' from pod <pod-name>. By default, output is from the first container.
-kubectl exec <pod-name> -- date
-
-# Get output from running 'date' in container <container-name> of pod <pod-name>.
-kubectl exec <pod-name> -c <container-name> -- date
-
-# Get an interactive TTY and run /bin/bash from pod <pod-name>. By default, output is from the first container.
-kubectl exec -ti <pod-name> -- /bin/bash
-```
-
-`kubectl logs` - Print the logs for a container in a pod.
-
-```shell
-# Return a snapshot of the logs from pod <pod-name>.
-kubectl logs <pod-name>
-
-# Start streaming the logs from pod <pod-name>. This is similar to the 'tail -f' Linux command.
-kubectl logs -f <pod-name>
-```
-
-`kubectl diff` - View a diff of the proposed updates to a cluster.
-
-```shell
-# Diff resources included in "pod.json".
-kubectl diff -f pod.json
-
-# Diff file read from stdin.
-cat service.yaml | kubectl diff -f -
-```
-
-## Examples: Creating and using plugins
-
-Use the following set of examples to help you familiarize yourself with writing and using `kubectl` plugins:
-
-```shell
-# create a simple plugin in any language and name the resulting executable file
-# so that it begins with the prefix "kubectl-"
-cat ./kubectl-hello
-```
-```shell
-#!/bin/sh
-
-# this plugin prints the words "hello world"
-echo "hello world"
-```
-With a plugin written, let's make it executable:
-```bash
-chmod a+x ./kubectl-hello
-
-# and move it to a location in our PATH
-sudo mv ./kubectl-hello /usr/local/bin
-sudo chown root:root /usr/local/bin
-
-# You have now created and "installed" a kubectl plugin.
-# You can begin using this plugin by invoking it from kubectl as if it were a regular command
-kubectl hello
-```
-```
-hello world
-```
-
-```shell
-# You can "uninstall" a plugin, by removing it from the folder in your
-# $PATH where you placed it
-sudo rm /usr/local/bin/kubectl-hello
-```
-
-In order to view all of the plugins that are available to `kubectl`, use
-the `kubectl plugin list` subcommand:
-
-```shell
-kubectl plugin list
-```
-The output is similar to:
-```
-The following kubectl-compatible plugins are available:
-
-/usr/local/bin/kubectl-hello
-/usr/local/bin/kubectl-foo
-/usr/local/bin/kubectl-bar
-```
-
-`kubectl plugin list` also warns you about plugins that are not
-executable, or that are shadowed by other plugins; for example:
-```shell
-sudo chmod -x /usr/local/bin/kubectl-foo # remove execute permission
-kubectl plugin list
-```
-```
-The following kubectl-compatible plugins are available:
-
-/usr/local/bin/kubectl-hello
-/usr/local/bin/kubectl-foo
-  - warning: /usr/local/bin/kubectl-foo identified as a plugin, but it is not executable
-/usr/local/bin/kubectl-bar
-
-error: one plugin warning was found
-```
-
-You can think of plugins as a means to build more complex functionality on top
-of the existing kubectl commands:
-
-```shell
-cat ./kubectl-whoami
-```
-The next few examples assume that you already made `kubectl-whoami` have
-the following contents:
-```shell
-#!/bin/bash
-
-# this plugin makes use of the `kubectl config` command in order to output
-# information about the current user, based on the currently selected context
-kubectl config view --template='{{ range .contexts }}{{ if eq .name "'$(kubectl config current-context)'" }}Current user: {{ printf "%s\n" .context.user }}{{ end }}{{ end }}'
-```
-
-Running the above command gives you an output containing the user for the
-current context in your KUBECONFIG file:
-
-```shell
-# make the file executable
-sudo chmod +x ./kubectl-whoami
-
-# and move it into your PATH
-sudo mv ./kubectl-whoami /usr/local/bin
-
-kubectl whoami
-Current user: plugins-user
-```
-
-## {{% heading "whatsnext" %}}
-
-* Start using the [kubectl](/docs/reference/generated/kubectl/kubectl-commands/) commands.
-
-* To find out more about plugins, take a look at the [example cli plugin](https://github.com/kubernetes/sample-cli-plugin).
-
-
diff --git a/content/en/docs/reference/kubernetes-api/authentication-resources/certificate-signing-request-v1.md b/content/en/docs/reference/kubernetes-api/authentication-resources/certificate-signing-request-v1.md
index a02b668387..6d26235859 100644
--- a/content/en/docs/reference/kubernetes-api/authentication-resources/certificate-signing-request-v1.md
+++ b/content/en/docs/reference/kubernetes-api/authentication-resources/certificate-signing-request-v1.md
@@ -109,8 +109,6 @@ CertificateSigningRequestSpec contains the certificate request.
     3. Signer whose configured minimum is longer than the requested duration
   
   The minimum valid value for expirationSeconds is 600, i.e. 10 minutes.
-  
-  As of v1.22, this field is beta and is controlled via the CSRDuration feature gate.
 
 - **extra** (map[string][]string)
 
@@ -449,6 +447,11 @@ POST /apis/certificates.k8s.io/v1/certificatesigningrequests
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -496,6 +499,11 @@ PUT /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -541,6 +549,11 @@ PUT /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/approval
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -586,6 +599,11 @@ PUT /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -631,6 +649,11 @@ PATCH /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -681,6 +704,11 @@ PATCH /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/approval
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -731,6 +759,11 @@ PATCH /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/authentication-resources/service-account-v1.md b/content/en/docs/reference/kubernetes-api/authentication-resources/service-account-v1.md
index 250bc29d07..f68e674c67 100644
--- a/content/en/docs/reference/kubernetes-api/authentication-resources/service-account-v1.md
+++ b/content/en/docs/reference/kubernetes-api/authentication-resources/service-account-v1.md
@@ -54,7 +54,7 @@ ServiceAccount binds together: * a name, understood by users, and perhaps by per
 
   *Patch strategy: merge on key `name`*
   
-  Secrets is the list of secrets allowed to be used by pods running using this ServiceAccount. More info: https://kubernetes.io/docs/concepts/configuration/secret
+  Secrets is a list of the secrets in the same namespace that pods running using this ServiceAccount are allowed to use. Pods are only limited to this list if this service account has a "kubernetes.io/enforce-mountable-secrets" annotation set to "true". This field should not be used to find auto-generated service account token secrets for use outside of pods. Instead, tokens can be requested directly using the TokenRequest API, or service account token secrets can be manually created. More info: https://kubernetes.io/docs/concepts/configuration/secret
 
 
 
@@ -298,6 +298,11 @@ POST /api/v1/namespaces/{namespace}/serviceaccounts
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -350,6 +355,11 @@ PUT /api/v1/namespaces/{namespace}/serviceaccounts/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -400,6 +410,11 @@ PATCH /api/v1/namespaces/{namespace}/serviceaccounts/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/authentication-resources/token-request-v1.md b/content/en/docs/reference/kubernetes-api/authentication-resources/token-request-v1.md
index f215074e82..3e448846f6 100644
--- a/content/en/docs/reference/kubernetes-api/authentication-resources/token-request-v1.md
+++ b/content/en/docs/reference/kubernetes-api/authentication-resources/token-request-v1.md
@@ -161,6 +161,11 @@ POST /api/v1/namespaces/{namespace}/serviceaccounts/{name}/token
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
diff --git a/content/en/docs/reference/kubernetes-api/authentication-resources/token-review-v1.md b/content/en/docs/reference/kubernetes-api/authentication-resources/token-review-v1.md
index 8740fb27a4..2e21803aa6 100644
--- a/content/en/docs/reference/kubernetes-api/authentication-resources/token-review-v1.md
+++ b/content/en/docs/reference/kubernetes-api/authentication-resources/token-review-v1.md
@@ -152,6 +152,11 @@ POST /apis/authentication.k8s.io/v1/tokenreviews
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
diff --git a/content/en/docs/reference/kubernetes-api/authorization-resources/cluster-role-binding-v1.md b/content/en/docs/reference/kubernetes-api/authorization-resources/cluster-role-binding-v1.md
index 993148295b..610f221730 100644
--- a/content/en/docs/reference/kubernetes-api/authorization-resources/cluster-role-binding-v1.md
+++ b/content/en/docs/reference/kubernetes-api/authorization-resources/cluster-role-binding-v1.md
@@ -243,6 +243,11 @@ POST /apis/rbac.authorization.k8s.io/v1/clusterrolebindings
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -290,6 +295,11 @@ PUT /apis/rbac.authorization.k8s.io/v1/clusterrolebindings/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -335,6 +345,11 @@ PATCH /apis/rbac.authorization.k8s.io/v1/clusterrolebindings/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/authorization-resources/cluster-role-v1.md b/content/en/docs/reference/kubernetes-api/authorization-resources/cluster-role-v1.md
index 307d6ffff0..ab7a7c7efd 100644
--- a/content/en/docs/reference/kubernetes-api/authorization-resources/cluster-role-v1.md
+++ b/content/en/docs/reference/kubernetes-api/authorization-resources/cluster-role-v1.md
@@ -70,7 +70,7 @@ ClusterRole is a cluster level, logical grouping of PolicyRules that can be refe
 
   - **rules.verbs** ([]string), required
 
-    Verbs is a list of Verbs that apply to ALL the ResourceKinds and AttributeRestrictions contained in this rule. '*' represents all verbs.
+    Verbs is a list of Verbs that apply to ALL the ResourceKinds contained in this rule. '*' represents all verbs.
 
   - **rules.resourceNames** ([]string)
 
@@ -239,6 +239,11 @@ POST /apis/rbac.authorization.k8s.io/v1/clusterroles
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -286,6 +291,11 @@ PUT /apis/rbac.authorization.k8s.io/v1/clusterroles/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -331,6 +341,11 @@ PATCH /apis/rbac.authorization.k8s.io/v1/clusterroles/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/authorization-resources/local-subject-access-review-v1.md b/content/en/docs/reference/kubernetes-api/authorization-resources/local-subject-access-review-v1.md
index d1a61db7d6..6f786078e7 100644
--- a/content/en/docs/reference/kubernetes-api/authorization-resources/local-subject-access-review-v1.md
+++ b/content/en/docs/reference/kubernetes-api/authorization-resources/local-subject-access-review-v1.md
@@ -94,6 +94,11 @@ POST /apis/authorization.k8s.io/v1/namespaces/{namespace}/localsubjectaccessrevi
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
diff --git a/content/en/docs/reference/kubernetes-api/authorization-resources/role-binding-v1.md b/content/en/docs/reference/kubernetes-api/authorization-resources/role-binding-v1.md
index f02dcee05a..2c40ba4df7 100644
--- a/content/en/docs/reference/kubernetes-api/authorization-resources/role-binding-v1.md
+++ b/content/en/docs/reference/kubernetes-api/authorization-resources/role-binding-v1.md
@@ -326,6 +326,11 @@ POST /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -378,6 +383,11 @@ PUT /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings/{name
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -428,6 +438,11 @@ PATCH /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings/{na
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/authorization-resources/role-v1.md b/content/en/docs/reference/kubernetes-api/authorization-resources/role-v1.md
index d96769ef24..8e4840c0f9 100644
--- a/content/en/docs/reference/kubernetes-api/authorization-resources/role-v1.md
+++ b/content/en/docs/reference/kubernetes-api/authorization-resources/role-v1.md
@@ -59,7 +59,7 @@ Role is a namespaced, logical grouping of PolicyRules that can be referenced as
 
   - **rules.verbs** ([]string), required
 
-    Verbs is a list of Verbs that apply to ALL the ResourceKinds and AttributeRestrictions contained in this rule. '*' represents all verbs.
+    Verbs is a list of Verbs that apply to ALL the ResourceKinds contained in this rule. '*' represents all verbs.
 
   - **rules.resourceNames** ([]string)
 
@@ -311,6 +311,11 @@ POST /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -363,6 +368,11 @@ PUT /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -413,6 +423,11 @@ PATCH /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/authorization-resources/self-subject-access-review-v1.md b/content/en/docs/reference/kubernetes-api/authorization-resources/self-subject-access-review-v1.md
index a8496aab72..cfce75947e 100644
--- a/content/en/docs/reference/kubernetes-api/authorization-resources/self-subject-access-review-v1.md
+++ b/content/en/docs/reference/kubernetes-api/authorization-resources/self-subject-access-review-v1.md
@@ -149,6 +149,11 @@ POST /apis/authorization.k8s.io/v1/selfsubjectaccessreviews
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
diff --git a/content/en/docs/reference/kubernetes-api/authorization-resources/self-subject-rules-review-v1.md b/content/en/docs/reference/kubernetes-api/authorization-resources/self-subject-rules-review-v1.md
index f8d85dc23c..1e862f5a02 100644
--- a/content/en/docs/reference/kubernetes-api/authorization-resources/self-subject-rules-review-v1.md
+++ b/content/en/docs/reference/kubernetes-api/authorization-resources/self-subject-rules-review-v1.md
@@ -153,6 +153,11 @@ POST /apis/authorization.k8s.io/v1/selfsubjectrulesreviews
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
diff --git a/content/en/docs/reference/kubernetes-api/authorization-resources/subject-access-review-v1.md b/content/en/docs/reference/kubernetes-api/authorization-resources/subject-access-review-v1.md
index cae105ba24..85e304d3ba 100644
--- a/content/en/docs/reference/kubernetes-api/authorization-resources/subject-access-review-v1.md
+++ b/content/en/docs/reference/kubernetes-api/authorization-resources/subject-access-review-v1.md
@@ -191,6 +191,11 @@ POST /apis/authorization.k8s.io/v1/subjectaccessreviews
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
diff --git a/content/en/docs/reference/kubernetes-api/cluster-resources/api-service-v1.md b/content/en/docs/reference/kubernetes-api/cluster-resources/api-service-v1.md
index 9f06c7b3fe..81a7620d08 100644
--- a/content/en/docs/reference/kubernetes-api/cluster-resources/api-service-v1.md
+++ b/content/en/docs/reference/kubernetes-api/cluster-resources/api-service-v1.md
@@ -336,6 +336,11 @@ POST /apis/apiregistration.k8s.io/v1/apiservices
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -383,6 +388,11 @@ PUT /apis/apiregistration.k8s.io/v1/apiservices/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -428,6 +438,11 @@ PUT /apis/apiregistration.k8s.io/v1/apiservices/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -473,6 +488,11 @@ PATCH /apis/apiregistration.k8s.io/v1/apiservices/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -523,6 +543,11 @@ PATCH /apis/apiregistration.k8s.io/v1/apiservices/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/cluster-resources/binding-v1.md b/content/en/docs/reference/kubernetes-api/cluster-resources/binding-v1.md
index 4acdf07c98..f9115c9ad5 100644
--- a/content/en/docs/reference/kubernetes-api/cluster-resources/binding-v1.md
+++ b/content/en/docs/reference/kubernetes-api/cluster-resources/binding-v1.md
@@ -90,6 +90,11 @@ POST /api/v1/namespaces/{namespace}/bindings
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -142,6 +147,11 @@ POST /api/v1/namespaces/{namespace}/pods/{name}/binding
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
diff --git a/content/en/docs/reference/kubernetes-api/cluster-resources/event-v1.md b/content/en/docs/reference/kubernetes-api/cluster-resources/event-v1.md
index 644496e7f0..20ed36b1ab 100644
--- a/content/en/docs/reference/kubernetes-api/cluster-resources/event-v1.md
+++ b/content/en/docs/reference/kubernetes-api/cluster-resources/event-v1.md
@@ -374,6 +374,11 @@ POST /apis/events.k8s.io/v1/namespaces/{namespace}/events
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -426,6 +431,11 @@ PUT /apis/events.k8s.io/v1/namespaces/{namespace}/events/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -476,6 +486,11 @@ PATCH /apis/events.k8s.io/v1/namespaces/{namespace}/events/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/cluster-resources/flow-schema-v1beta1.md b/content/en/docs/reference/kubernetes-api/cluster-resources/flow-schema-v1beta2.md
similarity index 86%
rename from content/en/docs/reference/kubernetes-api/cluster-resources/flow-schema-v1beta1.md
rename to content/en/docs/reference/kubernetes-api/cluster-resources/flow-schema-v1beta2.md
index 0df4386eb1..7acb4ac527 100644
--- a/content/en/docs/reference/kubernetes-api/cluster-resources/flow-schema-v1beta1.md
+++ b/content/en/docs/reference/kubernetes-api/cluster-resources/flow-schema-v1beta2.md
@@ -1,11 +1,11 @@
 ---
 api_metadata:
-  apiVersion: "flowcontrol.apiserver.k8s.io/v1beta1"
-  import: "k8s.io/api/flowcontrol/v1beta1"
+  apiVersion: "flowcontrol.apiserver.k8s.io/v1beta2"
+  import: "k8s.io/api/flowcontrol/v1beta2"
   kind: "FlowSchema"
 content_type: "api_reference"
 description: "FlowSchema defines the schema of a group of flows."
-title: "FlowSchema v1beta1"
+title: "FlowSchema v1beta2"
 weight: 7
 auto_generated: true
 ---
@@ -21,9 +21,9 @@ guide. You can file document formatting bugs against the
 [reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
 -->
 
-`apiVersion: flowcontrol.apiserver.k8s.io/v1beta1`
+`apiVersion: flowcontrol.apiserver.k8s.io/v1beta2`
 
-`import "k8s.io/api/flowcontrol/v1beta1"`
+`import "k8s.io/api/flowcontrol/v1beta2"`
 
 
 ## FlowSchema {#FlowSchema}
@@ -32,7 +32,7 @@ FlowSchema defines the schema of a group of flows. Note that a flow is made up o
 
 <hr>
 
-- **apiVersion**: flowcontrol.apiserver.k8s.io/v1beta1
+- **apiVersion**: flowcontrol.apiserver.k8s.io/v1beta2
 
 
 - **kind**: FlowSchema
@@ -42,11 +42,11 @@ FlowSchema defines the schema of a group of flows. Note that a flow is made up o
 
   `metadata` is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
 
-- **spec** (<a href="{{< ref "../cluster-resources/flow-schema-v1beta1#FlowSchemaSpec" >}}">FlowSchemaSpec</a>)
+- **spec** (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchemaSpec" >}}">FlowSchemaSpec</a>)
 
   `spec` is the specification of the desired behavior of a FlowSchema. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
 
-- **status** (<a href="{{< ref "../cluster-resources/flow-schema-v1beta1#FlowSchemaStatus" >}}">FlowSchemaStatus</a>)
+- **status** (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchemaStatus" >}}">FlowSchemaStatus</a>)
 
   `status` is the current status of a FlowSchema. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
 
@@ -179,7 +179,7 @@ FlowSchemaSpec describes how the FlowSchema's specification looks like.
     `resourceRules` is a slice of ResourcePolicyRules that identify matching requests according to their verb and the target resource. At least one of `resourceRules` and `nonResourceRules` has to be non-empty.
 
     <a name="ResourcePolicyRule"></a>
-    *ResourcePolicyRule is a predicate that matches some resource requests, testing the request's verb and the target resource. A ResourcePolicyRule matches a resource request if and only if: (a) at least one member of verbs matches the request, (b) at least one member of apiGroups matches the request, (c) at least one member of resources matches the request, and (d) least one member of namespaces matches the request.*
+    *ResourcePolicyRule is a predicate that matches some resource requests, testing the request's verb and the target resource. A ResourcePolicyRule matches a resource request if and only if: (a) at least one member of verbs matches the request, (b) at least one member of apiGroups matches the request, (c) at least one member of resources matches the request, and (d) either (d1) the request does not specify a namespace (i.e., `Namespace==""`) and clusterScope is true or (d2) the request specifies a namespace and least one member of namespaces matches the request's namespace.*
 
     - **rules.resourceRules.apiGroups** ([]string), required
 
@@ -261,7 +261,7 @@ FlowSchemaList is a list of FlowSchema objects.
 
 <hr>
 
-- **apiVersion**: flowcontrol.apiserver.k8s.io/v1beta1
+- **apiVersion**: flowcontrol.apiserver.k8s.io/v1beta2
 
 
 - **kind**: FlowSchemaList
@@ -271,7 +271,7 @@ FlowSchemaList is a list of FlowSchema objects.
 
   `metadata` is the standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
 
-- **items** ([]<a href="{{< ref "../cluster-resources/flow-schema-v1beta1#FlowSchema" >}}">FlowSchema</a>), required
+- **items** ([]<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>), required
 
   `items` is a list of FlowSchemas.
 
@@ -294,7 +294,7 @@ FlowSchemaList is a list of FlowSchema objects.
 
 #### HTTP Request
 
-GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}
+GET /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}
 
 #### Parameters
 
@@ -313,7 +313,7 @@ GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}
 #### Response
 
 
-200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta1#FlowSchema" >}}">FlowSchema</a>): OK
+200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): OK
 
 401: Unauthorized
 
@@ -322,7 +322,7 @@ GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}
 
 #### HTTP Request
 
-GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}/status
+GET /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}/status
 
 #### Parameters
 
@@ -341,7 +341,7 @@ GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}/status
 #### Response
 
 
-200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta1#FlowSchema" >}}">FlowSchema</a>): OK
+200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): OK
 
 401: Unauthorized
 
@@ -350,7 +350,7 @@ GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}/status
 
 #### HTTP Request
 
-GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas
+GET /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas
 
 #### Parameters
 
@@ -409,7 +409,7 @@ GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas
 #### Response
 
 
-200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta1#FlowSchemaList" >}}">FlowSchemaList</a>): OK
+200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchemaList" >}}">FlowSchemaList</a>): OK
 
 401: Unauthorized
 
@@ -418,12 +418,12 @@ GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas
 
 #### HTTP Request
 
-POST /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas
+POST /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas
 
 #### Parameters
 
 
-- **body**: <a href="{{< ref "../cluster-resources/flow-schema-v1beta1#FlowSchema" >}}">FlowSchema</a>, required
+- **body**: <a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>, required
 
   
 
@@ -438,6 +438,11 @@ POST /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -447,11 +452,11 @@ POST /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas
 #### Response
 
 
-200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta1#FlowSchema" >}}">FlowSchema</a>): OK
+200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): OK
 
-201 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta1#FlowSchema" >}}">FlowSchema</a>): Created
+201 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): Created
 
-202 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta1#FlowSchema" >}}">FlowSchema</a>): Accepted
+202 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): Accepted
 
 401: Unauthorized
 
@@ -460,7 +465,7 @@ POST /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas
 
 #### HTTP Request
 
-PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}
+PUT /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}
 
 #### Parameters
 
@@ -470,7 +475,7 @@ PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}
   name of the FlowSchema
 
 
-- **body**: <a href="{{< ref "../cluster-resources/flow-schema-v1beta1#FlowSchema" >}}">FlowSchema</a>, required
+- **body**: <a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>, required
 
   
 
@@ -485,6 +490,11 @@ PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -494,9 +504,9 @@ PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}
 #### Response
 
 
-200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta1#FlowSchema" >}}">FlowSchema</a>): OK
+200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): OK
 
-201 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta1#FlowSchema" >}}">FlowSchema</a>): Created
+201 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): Created
 
 401: Unauthorized
 
@@ -505,7 +515,7 @@ PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}
 
 #### HTTP Request
 
-PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}/status
+PUT /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}/status
 
 #### Parameters
 
@@ -515,7 +525,7 @@ PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}/status
   name of the FlowSchema
 
 
-- **body**: <a href="{{< ref "../cluster-resources/flow-schema-v1beta1#FlowSchema" >}}">FlowSchema</a>, required
+- **body**: <a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>, required
 
   
 
@@ -530,6 +540,11 @@ PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -539,9 +554,9 @@ PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}/status
 #### Response
 
 
-200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta1#FlowSchema" >}}">FlowSchema</a>): OK
+200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): OK
 
-201 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta1#FlowSchema" >}}">FlowSchema</a>): Created
+201 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): Created
 
 401: Unauthorized
 
@@ -550,7 +565,7 @@ PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}/status
 
 #### HTTP Request
 
-PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}
+PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}
 
 #### Parameters
 
@@ -575,6 +590,11 @@ PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -589,9 +609,9 @@ PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}
 #### Response
 
 
-200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta1#FlowSchema" >}}">FlowSchema</a>): OK
+200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): OK
 
-201 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta1#FlowSchema" >}}">FlowSchema</a>): Created
+201 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): Created
 
 401: Unauthorized
 
@@ -600,7 +620,7 @@ PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}
 
 #### HTTP Request
 
-PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}/status
+PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}/status
 
 #### Parameters
 
@@ -625,6 +645,11 @@ PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -639,9 +664,9 @@ PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}/status
 #### Response
 
 
-200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta1#FlowSchema" >}}">FlowSchema</a>): OK
+200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): OK
 
-201 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta1#FlowSchema" >}}">FlowSchema</a>): Created
+201 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): Created
 
 401: Unauthorized
 
@@ -650,7 +675,7 @@ PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}/status
 
 #### HTTP Request
 
-DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}
+DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}
 
 #### Parameters
 
@@ -700,7 +725,7 @@ DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}
 
 #### HTTP Request
 
-DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas
+DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas
 
 #### Parameters
 
diff --git a/content/en/docs/reference/kubernetes-api/cluster-resources/lease-v1.md b/content/en/docs/reference/kubernetes-api/cluster-resources/lease-v1.md
index 4db3251991..b33e8ee19a 100644
--- a/content/en/docs/reference/kubernetes-api/cluster-resources/lease-v1.md
+++ b/content/en/docs/reference/kubernetes-api/cluster-resources/lease-v1.md
@@ -324,6 +324,11 @@ POST /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -376,6 +381,11 @@ PUT /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -426,6 +436,11 @@ PATCH /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/cluster-resources/namespace-v1.md b/content/en/docs/reference/kubernetes-api/cluster-resources/namespace-v1.md
index 8ae6934385..0871c397d3 100644
--- a/content/en/docs/reference/kubernetes-api/cluster-resources/namespace-v1.md
+++ b/content/en/docs/reference/kubernetes-api/cluster-resources/namespace-v1.md
@@ -106,6 +106,8 @@ NamespaceStatus is information about the current status of a Namespace.
 - **phase** (string)
 
   Phase is the current lifecycle phase of the namespace. More info: https://kubernetes.io/docs/tasks/administer-cluster/namespaces/
+  
+  
 
 
 
@@ -294,6 +296,11 @@ POST /api/v1/namespaces
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -341,6 +348,11 @@ PUT /api/v1/namespaces/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -386,6 +398,11 @@ PUT /api/v1/namespaces/{name}/finalize
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -431,6 +448,11 @@ PUT /api/v1/namespaces/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -476,6 +498,11 @@ PATCH /api/v1/namespaces/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -526,6 +553,11 @@ PATCH /api/v1/namespaces/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/cluster-resources/node-v1.md b/content/en/docs/reference/kubernetes-api/cluster-resources/node-v1.md
index 0046895782..38132a5a6f 100644
--- a/content/en/docs/reference/kubernetes-api/cluster-resources/node-v1.md
+++ b/content/en/docs/reference/kubernetes-api/cluster-resources/node-v1.md
@@ -62,7 +62,7 @@ NodeSpec describes the attributes that a node is created with.
 
 - **configSource** (NodeConfigSource)
 
-  Deprecated. If specified, the source of the node's configuration. The DynamicKubeletConfig feature gate must be enabled for the Kubelet to use this field. This field is deprecated as of 1.22: https://git.k8s.io/enhancements/keps/sig-node/281-dynamic-kubelet-configuration
+  Deprecated: Previously used to specify the source of the node's configuration for the DynamicKubeletConfig feature. This feature is removed from Kubelets as of 1.24 and will be fully removed in 1.26.
 
   <a name="NodeConfigSource"></a>
   *NodeConfigSource specifies a source of node configuration. Exactly one subfield (excluding metadata) must be non-nil. This API is deprecated since 1.22*
@@ -120,6 +120,8 @@ NodeSpec describes the attributes that a node is created with.
   - **taints.effect** (string), required
 
     Required. The effect of the taint on pods that do not tolerate the taint. Valid effects are NoSchedule, PreferNoSchedule and NoExecute.
+    
+    
 
   - **taints.key** (string), required
 
@@ -377,7 +379,7 @@ NodeStatus is information about the current status of a node.
 
   - **nodeInfo.containerRuntimeVersion** (string), required
 
-    ContainerRuntime Version reported by the node through runtime remote API (e.g. docker://1.5.0).
+    ContainerRuntime Version reported by the node through runtime remote API (e.g. containerd://1.4.2).
 
   - **nodeInfo.kernelVersion** (string), required
 
@@ -410,6 +412,8 @@ NodeStatus is information about the current status of a node.
 - **phase** (string)
 
   NodePhase is the recently observed lifecycle phase of the node. More info: https://kubernetes.io/docs/concepts/nodes/node/#phase The field is never populated, and now is deprecated.
+  
+  
 
 - **volumesAttached** ([]AttachedVolume)
 
@@ -617,6 +621,11 @@ POST /api/v1/nodes
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -664,6 +673,11 @@ PUT /api/v1/nodes/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -709,6 +723,11 @@ PUT /api/v1/nodes/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -754,6 +773,11 @@ PATCH /api/v1/nodes/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -804,6 +828,11 @@ PATCH /api/v1/nodes/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/cluster-resources/priority-level-configuration-v1beta1.md b/content/en/docs/reference/kubernetes-api/cluster-resources/priority-level-configuration-v1beta2.md
similarity index 85%
rename from content/en/docs/reference/kubernetes-api/cluster-resources/priority-level-configuration-v1beta1.md
rename to content/en/docs/reference/kubernetes-api/cluster-resources/priority-level-configuration-v1beta2.md
index eda105ab73..bc436fb579 100644
--- a/content/en/docs/reference/kubernetes-api/cluster-resources/priority-level-configuration-v1beta1.md
+++ b/content/en/docs/reference/kubernetes-api/cluster-resources/priority-level-configuration-v1beta2.md
@@ -1,11 +1,11 @@
 ---
 api_metadata:
-  apiVersion: "flowcontrol.apiserver.k8s.io/v1beta1"
-  import: "k8s.io/api/flowcontrol/v1beta1"
+  apiVersion: "flowcontrol.apiserver.k8s.io/v1beta2"
+  import: "k8s.io/api/flowcontrol/v1beta2"
   kind: "PriorityLevelConfiguration"
 content_type: "api_reference"
 description: "PriorityLevelConfiguration represents the configuration of a priority level."
-title: "PriorityLevelConfiguration v1beta1"
+title: "PriorityLevelConfiguration v1beta2"
 weight: 8
 auto_generated: true
 ---
@@ -21,9 +21,9 @@ guide. You can file document formatting bugs against the
 [reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
 -->
 
-`apiVersion: flowcontrol.apiserver.k8s.io/v1beta1`
+`apiVersion: flowcontrol.apiserver.k8s.io/v1beta2`
 
-`import "k8s.io/api/flowcontrol/v1beta1"`
+`import "k8s.io/api/flowcontrol/v1beta2"`
 
 
 ## PriorityLevelConfiguration {#PriorityLevelConfiguration}
@@ -32,7 +32,7 @@ PriorityLevelConfiguration represents the configuration of a priority level.
 
 <hr>
 
-- **apiVersion**: flowcontrol.apiserver.k8s.io/v1beta1
+- **apiVersion**: flowcontrol.apiserver.k8s.io/v1beta2
 
 
 - **kind**: PriorityLevelConfiguration
@@ -42,11 +42,11 @@ PriorityLevelConfiguration represents the configuration of a priority level.
 
   `metadata` is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
 
-- **spec** (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta1#PriorityLevelConfigurationSpec" >}}">PriorityLevelConfigurationSpec</a>)
+- **spec** (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfigurationSpec" >}}">PriorityLevelConfigurationSpec</a>)
 
   `spec` is the specification of the desired behavior of a "request-priority". More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
 
-- **status** (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta1#PriorityLevelConfigurationStatus" >}}">PriorityLevelConfigurationStatus</a>)
+- **status** (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfigurationStatus" >}}">PriorityLevelConfigurationStatus</a>)
 
   `status` is the current status of a "request-priority". More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
 
@@ -163,7 +163,7 @@ PriorityLevelConfigurationList is a list of PriorityLevelConfiguration objects.
 
 <hr>
 
-- **apiVersion**: flowcontrol.apiserver.k8s.io/v1beta1
+- **apiVersion**: flowcontrol.apiserver.k8s.io/v1beta2
 
 
 - **kind**: PriorityLevelConfigurationList
@@ -173,7 +173,7 @@ PriorityLevelConfigurationList is a list of PriorityLevelConfiguration objects.
 
   `metadata` is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
 
-- **items** ([]<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta1#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>), required
+- **items** ([]<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>), required
 
   `items` is a list of request-priorities.
 
@@ -196,7 +196,7 @@ PriorityLevelConfigurationList is a list of PriorityLevelConfiguration objects.
 
 #### HTTP Request
 
-GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}
+GET /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}
 
 #### Parameters
 
@@ -215,7 +215,7 @@ GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name
 #### Response
 
 
-200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta1#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): OK
+200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): OK
 
 401: Unauthorized
 
@@ -224,7 +224,7 @@ GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name
 
 #### HTTP Request
 
-GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}/status
+GET /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}/status
 
 #### Parameters
 
@@ -243,7 +243,7 @@ GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name
 #### Response
 
 
-200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta1#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): OK
+200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): OK
 
 401: Unauthorized
 
@@ -252,7 +252,7 @@ GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name
 
 #### HTTP Request
 
-GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations
+GET /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations
 
 #### Parameters
 
@@ -311,7 +311,7 @@ GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations
 #### Response
 
 
-200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta1#PriorityLevelConfigurationList" >}}">PriorityLevelConfigurationList</a>): OK
+200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfigurationList" >}}">PriorityLevelConfigurationList</a>): OK
 
 401: Unauthorized
 
@@ -320,12 +320,12 @@ GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations
 
 #### HTTP Request
 
-POST /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations
+POST /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations
 
 #### Parameters
 
 
-- **body**: <a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta1#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>, required
+- **body**: <a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>, required
 
   
 
@@ -340,6 +340,11 @@ POST /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -349,11 +354,11 @@ POST /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations
 #### Response
 
 
-200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta1#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): OK
+200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): OK
 
-201 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta1#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): Created
+201 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): Created
 
-202 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta1#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): Accepted
+202 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): Accepted
 
 401: Unauthorized
 
@@ -362,7 +367,7 @@ POST /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations
 
 #### HTTP Request
 
-PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}
+PUT /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}
 
 #### Parameters
 
@@ -372,7 +377,7 @@ PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name
   name of the PriorityLevelConfiguration
 
 
-- **body**: <a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta1#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>, required
+- **body**: <a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>, required
 
   
 
@@ -387,6 +392,11 @@ PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -396,9 +406,9 @@ PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name
 #### Response
 
 
-200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta1#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): OK
+200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): OK
 
-201 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta1#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): Created
+201 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): Created
 
 401: Unauthorized
 
@@ -407,7 +417,7 @@ PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name
 
 #### HTTP Request
 
-PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}/status
+PUT /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}/status
 
 #### Parameters
 
@@ -417,7 +427,7 @@ PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name
   name of the PriorityLevelConfiguration
 
 
-- **body**: <a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta1#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>, required
+- **body**: <a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>, required
 
   
 
@@ -432,6 +442,11 @@ PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -441,9 +456,9 @@ PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name
 #### Response
 
 
-200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta1#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): OK
+200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): OK
 
-201 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta1#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): Created
+201 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): Created
 
 401: Unauthorized
 
@@ -452,7 +467,7 @@ PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name
 
 #### HTTP Request
 
-PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}
+PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}
 
 #### Parameters
 
@@ -477,6 +492,11 @@ PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{na
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -491,9 +511,9 @@ PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{na
 #### Response
 
 
-200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta1#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): OK
+200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): OK
 
-201 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta1#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): Created
+201 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): Created
 
 401: Unauthorized
 
@@ -502,7 +522,7 @@ PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{na
 
 #### HTTP Request
 
-PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}/status
+PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}/status
 
 #### Parameters
 
@@ -527,6 +547,11 @@ PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{na
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -541,9 +566,9 @@ PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{na
 #### Response
 
 
-200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta1#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): OK
+200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): OK
 
-201 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta1#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): Created
+201 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): Created
 
 401: Unauthorized
 
@@ -552,7 +577,7 @@ PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{na
 
 #### HTTP Request
 
-DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}
+DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}
 
 #### Parameters
 
@@ -602,7 +627,7 @@ DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{n
 
 #### HTTP Request
 
-DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations
+DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations
 
 #### Parameters
 
diff --git a/content/en/docs/reference/kubernetes-api/cluster-resources/runtime-class-v1.md b/content/en/docs/reference/kubernetes-api/cluster-resources/runtime-class-v1.md
index fad02bc731..4f8bb7571d 100644
--- a/content/en/docs/reference/kubernetes-api/cluster-resources/runtime-class-v1.md
+++ b/content/en/docs/reference/kubernetes-api/cluster-resources/runtime-class-v1.md
@@ -50,7 +50,6 @@ RuntimeClass defines a class of container runtime supported in the cluster. The
 
   Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. For more details, see
    https://kubernetes.io/docs/concepts/scheduling-eviction/pod-overhead/
-  This field is in beta starting v1.18 and is only honored by servers that enable the PodOverhead feature.
 
   <a name="Overhead"></a>
   *Overhead structure represents the resource overhead associated with running a pod.*
@@ -86,6 +85,8 @@ RuntimeClass defines a class of container runtime supported in the cluster. The
     - **scheduling.tolerations.operator** (string)
 
       Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.
+      
+      
 
     - **scheduling.tolerations.value** (string)
 
@@ -94,6 +95,8 @@ RuntimeClass defines a class of container runtime supported in the cluster. The
     - **scheduling.tolerations.effect** (string)
 
       Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.
+      
+      
 
     - **scheduling.tolerations.tolerationSeconds** (int64)
 
@@ -258,6 +261,11 @@ POST /apis/node.k8s.io/v1/runtimeclasses
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -305,6 +313,11 @@ PUT /apis/node.k8s.io/v1/runtimeclasses/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -350,6 +363,11 @@ PATCH /apis/node.k8s.io/v1/runtimeclasses/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/common-definitions/list-meta.md b/content/en/docs/reference/kubernetes-api/common-definitions/list-meta.md
index 96f2dafd30..145f905e9d 100644
--- a/content/en/docs/reference/kubernetes-api/common-definitions/list-meta.md
+++ b/content/en/docs/reference/kubernetes-api/common-definitions/list-meta.md
@@ -44,9 +44,7 @@ ListMeta describes metadata that synthetic resources must have, including lists
 
 - **selfLink** (string)
 
-  selfLink is a URL representing this object. Populated by the system. Read-only.
-  
-  DEPRECATED Kubernetes will stop propagating this field in 1.20 release and the field is planned to be removed in 1.21 release.
+  Deprecated: selfLink is a legacy read-only field that is no longer populated by the system.
 
 
 
diff --git a/content/en/docs/reference/kubernetes-api/common-definitions/node-selector-requirement.md b/content/en/docs/reference/kubernetes-api/common-definitions/node-selector-requirement.md
index 33af2e88e3..e969d31f46 100644
--- a/content/en/docs/reference/kubernetes-api/common-definitions/node-selector-requirement.md
+++ b/content/en/docs/reference/kubernetes-api/common-definitions/node-selector-requirement.md
@@ -37,6 +37,8 @@ A node selector requirement is a selector that contains values, a key, and an op
 - **operator** (string), required
 
   Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+  
+  
 
 - **values** ([]string)
 
diff --git a/content/en/docs/reference/kubernetes-api/common-definitions/object-meta.md b/content/en/docs/reference/kubernetes-api/common-definitions/object-meta.md
index 40c7899adc..1d5339ad0c 100644
--- a/content/en/docs/reference/kubernetes-api/common-definitions/object-meta.md
+++ b/content/en/docs/reference/kubernetes-api/common-definitions/object-meta.md
@@ -38,7 +38,7 @@ ObjectMeta is metadata that all persisted resources must have, which includes al
 
   GenerateName is an optional prefix, used by the server, to generate a unique name ONLY IF the Name field has not been provided. If this field is used, the name returned to the client will be different than the name passed. This value will also be combined with a unique suffix. The provided value has the same validation rules as the Name field, and may be truncated by the length of the suffix required to make the value unique on the server.
   
-  If this field is specified and the generated name exists, the server will NOT return a 409 - instead, it will either return 201 Created or 500 with Reason ServerTimeout indicating a unique name could not be found in the time allotted, and the client should retry (optionally after the time indicated in the Retry-After header).
+  If this field is specified and the generated name exists, the server will return a 409.
   
   Applied only if Name is not specified. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#idempotency
 
@@ -105,7 +105,7 @@ ObjectMeta is metadata that all persisted resources must have, which includes al
 
   - **managedFields.time** (Time)
 
-    Time is timestamp of when these fields were set. It should always be empty if Operation is 'Apply'
+    Time is the timestamp of when the ManagedFields entry was added. The timestamp will also be updated if a field is added, the manager changes any of the owned fields value or removes a field. The timestamp does not update when a field is removed from the entry because another manager took it over.
 
     <a name="Time"></a>
     *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
@@ -137,7 +137,7 @@ ObjectMeta is metadata that all persisted resources must have, which includes al
 
   - **ownerReferences.blockOwnerDeletion** (boolean)
 
-    If true, AND if the owner has the "foregroundDeletion" finalizer, then the owner cannot be deleted from the key-value store until this reference is removed. Defaults to false. To set this field, a user needs "delete" permission of the owner, otherwise 422 (Unprocessable Entity) will be returned.
+    If true, AND if the owner has the "foregroundDeletion" finalizer, then the owner cannot be deleted from the key-value store until this reference is removed. See https://kubernetes.io/docs/concepts/architecture/garbage-collection/#foreground-deletion for how the garbage collector interacts with this field and enforces the foreground deletion. Defaults to false. To set this field, a user needs "delete" permission of the owner, otherwise 422 (Unprocessable Entity) will be returned.
 
   - **ownerReferences.controller** (boolean)
 
@@ -180,9 +180,7 @@ ObjectMeta is metadata that all persisted resources must have, which includes al
 
 - **selfLink** (string)
 
-  SelfLink is a URL representing this object. Populated by the system. Read-only.
-  
-  DEPRECATED Kubernetes will stop propagating this field in 1.20 release and the field is planned to be removed in 1.21 release.
+  Deprecated: selfLink is a legacy read-only field that is no longer populated by the system.
 
 - **uid** (string)
 
@@ -195,7 +193,9 @@ ObjectMeta is metadata that all persisted resources must have, which includes al
 
 - **clusterName** (string)
 
-  The name of the cluster which the object belongs to. This is used to distinguish resources with same name and namespace in different clusters. This field is not set anywhere right now and apiserver is going to ignore it if set in create or update request.
+  Deprecated: ClusterName is a legacy field that was always cleared by the system and never used; it will be removed completely in 1.25.
+  
+  The name in the go struct is changed to help clients detect accidental use.
 
 
 
diff --git a/content/en/docs/reference/kubernetes-api/common-parameters/common-parameters.md b/content/en/docs/reference/kubernetes-api/common-parameters/common-parameters.md
index 45a90e0411..63005d7a54 100644
--- a/content/en/docs/reference/kubernetes-api/common-parameters/common-parameters.md
+++ b/content/en/docs/reference/kubernetes-api/common-parameters/common-parameters.md
@@ -78,6 +78,16 @@ A selector to restrict the list of returned objects by their fields. Defaults to
 
 
 
+## fieldValidation {#fieldValidation}
+
+fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.
+
+<hr>
+
+
+
+
+
 ## force {#force}
 
 Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.
diff --git a/content/en/docs/reference/kubernetes-api/config-and-storage-resources/config-map-v1.md b/content/en/docs/reference/kubernetes-api/config-and-storage-resources/config-map-v1.md
index 774f12ae97..c0619358ab 100644
--- a/content/en/docs/reference/kubernetes-api/config-and-storage-resources/config-map-v1.md
+++ b/content/en/docs/reference/kubernetes-api/config-and-storage-resources/config-map-v1.md
@@ -296,6 +296,11 @@ POST /api/v1/namespaces/{namespace}/configmaps
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -348,6 +353,11 @@ PUT /api/v1/namespaces/{namespace}/configmaps/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -398,6 +408,11 @@ PATCH /api/v1/namespaces/{namespace}/configmaps/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/config-and-storage-resources/csi-driver-v1.md b/content/en/docs/reference/kubernetes-api/config-and-storage-resources/csi-driver-v1.md
index db3a2a389b..099f2d396f 100644
--- a/content/en/docs/reference/kubernetes-api/config-and-storage-resources/csi-driver-v1.md
+++ b/content/en/docs/reference/kubernetes-api/config-and-storage-resources/csi-driver-v1.md
@@ -64,7 +64,7 @@ CSIDriverSpec is the specification of a CSIDriver.
 
 - **fsGroupPolicy** (string)
 
-  Defines if the underlying volume supports changing ownership and permission of the volume before being mounted. Refer to the specific FSGroupPolicy values for additional details. This field is beta, and is only honored by servers that enable the CSIVolumeFSGroupPolicy feature gate.
+  Defines if the underlying volume supports changing ownership and permission of the volume before being mounted. Refer to the specific FSGroupPolicy values for additional details.
   
   This field is immutable.
   
@@ -93,9 +93,7 @@ CSIDriverSpec is the specification of a CSIDriver.
   
   Alternatively, the driver can be deployed with the field unset or false and it can be flipped later when storage capacity information has been published.
   
-  This field is immutable.
-  
-  This is a beta field and only available when the CSIStorageCapacity feature is enabled. The default is false.
+  This field was immutable in Kubernetes \<= 1.22 and now is mutable.
 
 - **tokenRequests** ([]TokenRequest)
 
@@ -289,6 +287,11 @@ POST /apis/storage.k8s.io/v1/csidrivers
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -336,6 +339,11 @@ PUT /apis/storage.k8s.io/v1/csidrivers/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -381,6 +389,11 @@ PATCH /apis/storage.k8s.io/v1/csidrivers/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/config-and-storage-resources/csi-node-v1.md b/content/en/docs/reference/kubernetes-api/config-and-storage-resources/csi-node-v1.md
index 5eb65b7e54..cfaf156fa5 100644
--- a/content/en/docs/reference/kubernetes-api/config-and-storage-resources/csi-node-v1.md
+++ b/content/en/docs/reference/kubernetes-api/config-and-storage-resources/csi-node-v1.md
@@ -247,6 +247,11 @@ POST /apis/storage.k8s.io/v1/csinodes
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -294,6 +299,11 @@ PUT /apis/storage.k8s.io/v1/csinodes/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -339,6 +349,11 @@ PATCH /apis/storage.k8s.io/v1/csinodes/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/config-and-storage-resources/csi-storage-capacity-v1beta1.md b/content/en/docs/reference/kubernetes-api/config-and-storage-resources/csi-storage-capacity-v1.md
similarity index 84%
rename from content/en/docs/reference/kubernetes-api/config-and-storage-resources/csi-storage-capacity-v1beta1.md
rename to content/en/docs/reference/kubernetes-api/config-and-storage-resources/csi-storage-capacity-v1.md
index 08c6572f89..cf4df4befe 100644
--- a/content/en/docs/reference/kubernetes-api/config-and-storage-resources/csi-storage-capacity-v1beta1.md
+++ b/content/en/docs/reference/kubernetes-api/config-and-storage-resources/csi-storage-capacity-v1.md
@@ -1,11 +1,11 @@
 ---
 api_metadata:
-  apiVersion: "storage.k8s.io/v1beta1"
-  import: "k8s.io/api/storage/v1beta1"
+  apiVersion: "storage.k8s.io/v1"
+  import: "k8s.io/api/storage/v1"
   kind: "CSIStorageCapacity"
 content_type: "api_reference"
 description: "CSIStorageCapacity stores the result of one CSI GetCapacity call."
-title: "CSIStorageCapacity v1beta1"
+title: "CSIStorageCapacity"
 weight: 10
 auto_generated: true
 ---
@@ -21,9 +21,9 @@ guide. You can file document formatting bugs against the
 [reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
 -->
 
-`apiVersion: storage.k8s.io/v1beta1`
+`apiVersion: storage.k8s.io/v1`
 
-`import "k8s.io/api/storage/v1beta1"`
+`import "k8s.io/api/storage/v1"`
 
 
 ## CSIStorageCapacity {#CSIStorageCapacity}
@@ -36,11 +36,11 @@ The following three cases all imply that no capacity is available for a certain
 
 The producer of these objects can decide which approach is more suitable.
 
-They are consumed by the kube-scheduler if the CSIStorageCapacity beta feature gate is enabled there and a CSI driver opts into capacity-aware scheduling with CSIDriver.StorageCapacity.
+They are consumed by the kube-scheduler when a CSI driver opts into capacity-aware scheduling with CSIDriverSpec.StorageCapacity. The scheduler compares the MaximumVolumeSize against the requested size of pending volumes to filter out unsuitable nodes. If MaximumVolumeSize is unset, it falls back to a comparison against the less precise Capacity. If that is also unset, the scheduler assumes that capacity is insufficient and tries some other node.
 
 <hr>
 
-- **apiVersion**: storage.k8s.io/v1beta1
+- **apiVersion**: storage.k8s.io/v1
 
 
 - **kind**: CSIStorageCapacity
@@ -62,7 +62,7 @@ They are consumed by the kube-scheduler if the CSIStorageCapacity beta feature g
 
   Capacity is the value reported by the CSI driver in its GetCapacityResponse for a GetCapacityRequest with topology and parameters that match the previous fields.
   
-  The semantic is currently (CSI spec 1.2) defined as: The available capacity, in bytes, of the storage that can be used to provision volumes. If not set, that information is currently unavailable and treated like zero capacity.
+  The semantic is currently (CSI spec 1.2) defined as: The available capacity, in bytes, of the storage that can be used to provision volumes. If not set, that information is currently unavailable.
 
 - **maximumVolumeSize** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
 
@@ -84,7 +84,7 @@ CSIStorageCapacityList is a collection of CSIStorageCapacity objects.
 
 <hr>
 
-- **apiVersion**: storage.k8s.io/v1beta1
+- **apiVersion**: storage.k8s.io/v1
 
 
 - **kind**: CSIStorageCapacityList
@@ -94,7 +94,7 @@ CSIStorageCapacityList is a collection of CSIStorageCapacity objects.
 
   Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
 
-- **items** ([]<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1beta1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>), required
+- **items** ([]<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>), required
 
   *Map: unique values on key name will be kept during a merge*
   
@@ -119,7 +119,7 @@ CSIStorageCapacityList is a collection of CSIStorageCapacity objects.
 
 #### HTTP Request
 
-GET /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{name}
+GET /apis/storage.k8s.io/v1/namespaces/{namespace}/csistoragecapacities/{name}
 
 #### Parameters
 
@@ -143,7 +143,7 @@ GET /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{na
 #### Response
 
 
-200 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1beta1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): OK
+200 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): OK
 
 401: Unauthorized
 
@@ -152,7 +152,7 @@ GET /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{na
 
 #### HTTP Request
 
-GET /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities
+GET /apis/storage.k8s.io/v1/namespaces/{namespace}/csistoragecapacities
 
 #### Parameters
 
@@ -216,7 +216,7 @@ GET /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities
 #### Response
 
 
-200 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1beta1#CSIStorageCapacityList" >}}">CSIStorageCapacityList</a>): OK
+200 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacityList" >}}">CSIStorageCapacityList</a>): OK
 
 401: Unauthorized
 
@@ -225,7 +225,7 @@ GET /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities
 
 #### HTTP Request
 
-GET /apis/storage.k8s.io/v1beta1/csistoragecapacities
+GET /apis/storage.k8s.io/v1/csistoragecapacities
 
 #### Parameters
 
@@ -284,7 +284,7 @@ GET /apis/storage.k8s.io/v1beta1/csistoragecapacities
 #### Response
 
 
-200 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1beta1#CSIStorageCapacityList" >}}">CSIStorageCapacityList</a>): OK
+200 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacityList" >}}">CSIStorageCapacityList</a>): OK
 
 401: Unauthorized
 
@@ -293,7 +293,7 @@ GET /apis/storage.k8s.io/v1beta1/csistoragecapacities
 
 #### HTTP Request
 
-POST /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities
+POST /apis/storage.k8s.io/v1/namespaces/{namespace}/csistoragecapacities
 
 #### Parameters
 
@@ -303,7 +303,7 @@ POST /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities
   <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
 
 
-- **body**: <a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1beta1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>, required
+- **body**: <a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>, required
 
   
 
@@ -318,6 +318,11 @@ POST /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -327,11 +332,11 @@ POST /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities
 #### Response
 
 
-200 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1beta1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): OK
+200 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): OK
 
-201 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1beta1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): Created
+201 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): Created
 
-202 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1beta1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): Accepted
+202 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): Accepted
 
 401: Unauthorized
 
@@ -340,7 +345,7 @@ POST /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities
 
 #### HTTP Request
 
-PUT /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{name}
+PUT /apis/storage.k8s.io/v1/namespaces/{namespace}/csistoragecapacities/{name}
 
 #### Parameters
 
@@ -355,7 +360,7 @@ PUT /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{na
   <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
 
 
-- **body**: <a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1beta1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>, required
+- **body**: <a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>, required
 
   
 
@@ -370,6 +375,11 @@ PUT /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{na
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -379,9 +389,9 @@ PUT /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{na
 #### Response
 
 
-200 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1beta1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): OK
+200 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): OK
 
-201 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1beta1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): Created
+201 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): Created
 
 401: Unauthorized
 
@@ -390,7 +400,7 @@ PUT /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{na
 
 #### HTTP Request
 
-PATCH /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{name}
+PATCH /apis/storage.k8s.io/v1/namespaces/{namespace}/csistoragecapacities/{name}
 
 #### Parameters
 
@@ -420,6 +430,11 @@ PATCH /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -434,9 +449,9 @@ PATCH /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{
 #### Response
 
 
-200 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1beta1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): OK
+200 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): OK
 
-201 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1beta1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): Created
+201 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): Created
 
 401: Unauthorized
 
@@ -445,7 +460,7 @@ PATCH /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{
 
 #### HTTP Request
 
-DELETE /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{name}
+DELETE /apis/storage.k8s.io/v1/namespaces/{namespace}/csistoragecapacities/{name}
 
 #### Parameters
 
@@ -500,7 +515,7 @@ DELETE /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/
 
 #### HTTP Request
 
-DELETE /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities
+DELETE /apis/storage.k8s.io/v1/namespaces/{namespace}/csistoragecapacities
 
 #### Parameters
 
diff --git a/content/en/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-claim-v1.md b/content/en/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-claim-v1.md
index e1461951e8..a70bcadba1 100644
--- a/content/en/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-claim-v1.md
+++ b/content/en/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-claim-v1.md
@@ -44,11 +44,11 @@ PersistentVolumeClaim is a user's request for and claim to a persistent volume
 
 - **spec** (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaimSpec" >}}">PersistentVolumeClaimSpec</a>)
 
-  Spec defines the desired characteristics of a volume requested by a pod author. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+  spec defines the desired characteristics of a volume requested by a pod author. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
 
 - **status** (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaimStatus" >}}">PersistentVolumeClaimStatus</a>)
 
-  Status represents the current information/status of a persistent volume claim. Read-only. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+  status represents the current information/status of a persistent volume claim. Read-only. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
 
 
 
@@ -62,15 +62,15 @@ PersistentVolumeClaimSpec describes the common attributes of storage devices and
 
 - **accessModes** ([]string)
 
-  AccessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
+  accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
 
 - **selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
 
-  A label query over volumes to consider for binding.
+  selector is a label query over volumes to consider for binding.
 
 - **resources** (ResourceRequirements)
 
-  Resources represents the minimum resources the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources
+  resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources
 
   <a name="ResourceRequirements"></a>
   *ResourceRequirements describes the compute resource requirements.*
@@ -85,11 +85,11 @@ PersistentVolumeClaimSpec describes the common attributes of storage devices and
 
 - **volumeName** (string)
 
-  VolumeName is the binding reference to the PersistentVolume backing this claim.
+  volumeName is the binding reference to the PersistentVolume backing this claim.
 
 - **storageClassName** (string)
 
-  Name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
+  storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
 
 - **volumeMode** (string)
 
@@ -102,16 +102,16 @@ PersistentVolumeClaimSpec describes the common attributes of storage devices and
 
 - **dataSource** (<a href="{{< ref "../common-definitions/typed-local-object-reference#TypedLocalObjectReference" >}}">TypedLocalObjectReference</a>)
 
-  This field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field.
+  dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field.
 
 - **dataSourceRef** (<a href="{{< ref "../common-definitions/typed-local-object-reference#TypedLocalObjectReference" >}}">TypedLocalObjectReference</a>)
 
-  Specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef
+  dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef
     allows any non-core object, as well as PersistentVolumeClaim objects.
   * While DataSource ignores disallowed values (dropping them), DataSourceRef
     preserves all values, and generates an error if a disallowed value is
     specified.
-  (Alpha) Using this field requires the AnyVolumeDataSource feature gate to be enabled.
+  (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.
 
 
 
@@ -123,17 +123,21 @@ PersistentVolumeClaimStatus is the current status of a persistent volume claim.
 
 - **accessModes** ([]string)
 
-  AccessModes contains the actual access modes the volume backing the PVC has. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
+  accessModes contains the actual access modes the volume backing the PVC has. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
+
+- **allocatedResources** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+  allocatedResources is the storage resource within AllocatedResources tracks the capacity allocated to a PVC. It may be larger than the actual capacity when a volume expansion operation is requested. For storage quota, the larger value from allocatedResources and PVC.spec.resources is used. If allocatedResources is not set, PVC.spec.resources alone is used for quota calculation. If a volume expansion capacity request is lowered, allocatedResources is only lowered if there are no expansion operations in progress and if the actual volume capacity is equal or lower than the requested capacity. This is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.
 
 - **capacity** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
 
-  Represents the actual resources of the underlying volume.
+  capacity represents the actual resources of the underlying volume.
 
 - **conditions** ([]PersistentVolumeClaimCondition)
 
   *Patch strategy: merge on key `type`*
   
-  Current Condition of persistent volume claim. If underlying persistent volume is being resized then the Condition will be set to 'ResizeStarted'.
+  conditions is the current Condition of persistent volume claim. If underlying persistent volume is being resized then the Condition will be set to 'ResizeStarted'.
 
   <a name="PersistentVolumeClaimCondition"></a>
   *PersistentVolumeClaimCondition contails details about state of pvc*
@@ -146,29 +150,35 @@ PersistentVolumeClaimStatus is the current status of a persistent volume claim.
 
   - **conditions.lastProbeTime** (Time)
 
-    Last time we probed the condition.
+    lastProbeTime is the time we probed the condition.
 
     <a name="Time"></a>
     *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
 
   - **conditions.lastTransitionTime** (Time)
 
-    Last time the condition transitioned from one status to another.
+    lastTransitionTime is the time the condition transitioned from one status to another.
 
     <a name="Time"></a>
     *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
 
   - **conditions.message** (string)
 
-    Human-readable message indicating details about last transition.
+    message is the human-readable message indicating details about last transition.
 
   - **conditions.reason** (string)
 
-    Unique, this should be a short, machine understandable string that gives the reason for condition's last transition. If it reports "ResizeStarted" that means the underlying persistent volume is being resized.
+    reason is a unique, this should be a short, machine understandable string that gives the reason for condition's last transition. If it reports "ResizeStarted" that means the underlying persistent volume is being resized.
 
 - **phase** (string)
 
-  Phase represents the current phase of PersistentVolumeClaim.
+  phase represents the current phase of PersistentVolumeClaim.
+  
+  
+
+- **resizeStatus** (string)
+
+  resizeStatus stores status of resize operation. ResizeStatus is not set by default but when expansion is complete resizeStatus is set to empty string by resize controller or kubelet. This is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.
 
 
 
@@ -192,7 +202,7 @@ PersistentVolumeClaimList is a list of PersistentVolumeClaim items.
 
 - **items** ([]<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>), required
 
-  A list of persistent volume claims. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+  items is a list of persistent volume claims. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
 
 
 
@@ -445,6 +455,11 @@ POST /api/v1/namespaces/{namespace}/persistentvolumeclaims
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -497,6 +512,11 @@ PUT /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -547,6 +567,11 @@ PUT /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -597,6 +622,11 @@ PATCH /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -652,6 +682,11 @@ PATCH /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-v1.md b/content/en/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-v1.md
index 86c689dc44..170a16ec97 100644
--- a/content/en/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-v1.md
+++ b/content/en/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-v1.md
@@ -44,11 +44,11 @@ PersistentVolume (PV) is a storage resource provisioned by an administrator. It
 
 - **spec** (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolumeSpec" >}}">PersistentVolumeSpec</a>)
 
-  Spec defines a specification of a persistent volume owned by the cluster. Provisioned by an administrator. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistent-volumes
+  spec defines a specification of a persistent volume owned by the cluster. Provisioned by an administrator. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistent-volumes
 
 - **status** (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolumeStatus" >}}">PersistentVolumeStatus</a>)
 
-  Status represents the current information/status for the persistent volume. Populated by the system. Read-only. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistent-volumes
+  status represents the current information/status for the persistent volume. Populated by the system. Read-only. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistent-volumes
 
 
 
@@ -62,30 +62,30 @@ PersistentVolumeSpec is the specification of a persistent volume.
 
 - **accessModes** ([]string)
 
-  AccessModes contains all ways the volume can be mounted. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes
+  accessModes contains all ways the volume can be mounted. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes
 
 - **capacity** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
 
-  A description of the persistent volume's resources and capacity. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#capacity
+  capacity is the description of the persistent volume's resources and capacity. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#capacity
 
 - **claimRef** (<a href="{{< ref "../common-definitions/object-reference#ObjectReference" >}}">ObjectReference</a>)
 
-  ClaimRef is part of a bi-directional binding between PersistentVolume and PersistentVolumeClaim. Expected to be non-nil when bound. claim.VolumeName is the authoritative bind between PV and PVC. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#binding
+  claimRef is part of a bi-directional binding between PersistentVolume and PersistentVolumeClaim. Expected to be non-nil when bound. claim.VolumeName is the authoritative bind between PV and PVC. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#binding
 
 - **mountOptions** ([]string)
 
-  A list of mount options, e.g. ["ro", "soft"]. Not validated - mount will simply fail if one is invalid. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes/#mount-options
+  mountOptions is the list of mount options, e.g. ["ro", "soft"]. Not validated - mount will simply fail if one is invalid. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes/#mount-options
 
 - **nodeAffinity** (VolumeNodeAffinity)
 
-  NodeAffinity defines constraints that limit what nodes this volume can be accessed from. This field influences the scheduling of pods that use this volume.
+  nodeAffinity defines constraints that limit what nodes this volume can be accessed from. This field influences the scheduling of pods that use this volume.
 
   <a name="VolumeNodeAffinity"></a>
   *VolumeNodeAffinity defines constraints that limit what nodes this volume can be accessed from.*
 
   - **nodeAffinity.required** (NodeSelector)
 
-    Required specifies hard node constraints that must be met.
+    required specifies hard node constraints that must be met.
 
     <a name="NodeSelector"></a>
     *A node selector represents the union of the results of one or more label queries over a set of nodes; that is, it represents the OR of the selectors represented by the node selector terms.*
@@ -107,11 +107,13 @@ PersistentVolumeSpec is the specification of a persistent volume.
 
 - **persistentVolumeReclaimPolicy** (string)
 
-  What happens to a persistent volume when released from its claim. Valid options are Retain (default for manually created PersistentVolumes), Delete (default for dynamically provisioned PersistentVolumes), and Recycle (deprecated). Recycle must be supported by the volume plugin underlying this PersistentVolume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#reclaiming
+  persistentVolumeReclaimPolicy defines what happens to a persistent volume when released from its claim. Valid options are Retain (default for manually created PersistentVolumes), Delete (default for dynamically provisioned PersistentVolumes), and Recycle (deprecated). Recycle must be supported by the volume plugin underlying this PersistentVolume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#reclaiming
+  
+  
 
 - **storageClassName** (string)
 
-  Name of StorageClass to which this persistent volume belongs. Empty value means that this volume does not belong to any StorageClass.
+  storageClassName is the name of StorageClass to which this persistent volume belongs. Empty value means that this volume does not belong to any StorageClass.
 
 - **volumeMode** (string)
 
@@ -124,40 +126,40 @@ PersistentVolumeSpec is the specification of a persistent volume.
 
 - **hostPath** (HostPathVolumeSource)
 
-  HostPath represents a directory on the host. Provisioned by a developer or tester. This is useful for single-node development and testing only! On-host storage is not supported in any way and WILL NOT WORK in a multi-node cluster. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+  hostPath represents a directory on the host. Provisioned by a developer or tester. This is useful for single-node development and testing only! On-host storage is not supported in any way and WILL NOT WORK in a multi-node cluster. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
 
   <a name="HostPathVolumeSource"></a>
   *Represents a host path mapped into a pod. Host path volumes do not support ownership management or SELinux relabeling.*
 
   - **hostPath.path** (string), required
 
-    Path of the directory on the host. If the path is a symlink, it will follow the link to the real path. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+    path of the directory on the host. If the path is a symlink, it will follow the link to the real path. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
 
   - **hostPath.type** (string)
 
-    Type for HostPath Volume Defaults to "" More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+    type for HostPath Volume Defaults to "" More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
 
 - **local** (LocalVolumeSource)
 
-  Local represents directly-attached storage with node affinity
+  local represents directly-attached storage with node affinity
 
   <a name="LocalVolumeSource"></a>
   *Local represents directly-attached storage with node affinity (Beta feature)*
 
   - **local.path** (string), required
 
-    The full path to the volume on the node. It can be either a directory or block device (disk, partition, ...).
+    path of the full path to the volume on the node. It can be either a directory or block device (disk, partition, ...).
 
   - **local.fsType** (string)
 
-    Filesystem type to mount. It applies only when the Path is a block device. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". The default value is to auto-select a fileystem if unspecified.
+    fsType is the filesystem type to mount. It applies only when the Path is a block device. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". The default value is to auto-select a filesystem if unspecified.
 
 ### Persistent volumes
 
 
 - **awsElasticBlockStore** (AWSElasticBlockStoreVolumeSource)
 
-  AWSElasticBlockStore represents an AWS Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+  awsElasticBlockStore represents an AWS Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
 
   <a name="AWSElasticBlockStoreVolumeSource"></a>
   *Represents a Persistent Disk resource in AWS.
@@ -166,320 +168,320 @@ PersistentVolumeSpec is the specification of a persistent volume.
 
   - **awsElasticBlockStore.volumeID** (string), required
 
-    Unique ID of the persistent disk resource in AWS (Amazon EBS volume). More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+    volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume). More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
 
   - **awsElasticBlockStore.fsType** (string)
 
-    Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+    fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
 
   - **awsElasticBlockStore.partition** (int32)
 
-    The partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as "1". Similarly, the volume partition for /dev/sda is "0" (or you can leave the property empty).
+    partition is the partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as "1". Similarly, the volume partition for /dev/sda is "0" (or you can leave the property empty).
 
   - **awsElasticBlockStore.readOnly** (boolean)
 
-    Specify "true" to force and set the ReadOnly property in VolumeMounts to "true". If omitted, the default is "false". More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+    readOnly value true will force the readOnly setting in VolumeMounts. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
 
 - **azureDisk** (AzureDiskVolumeSource)
 
-  AzureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.
+  azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.
 
   <a name="AzureDiskVolumeSource"></a>
   *AzureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.*
 
   - **azureDisk.diskName** (string), required
 
-    The Name of the data disk in the blob storage
+    diskName is the Name of the data disk in the blob storage
 
   - **azureDisk.diskURI** (string), required
 
-    The URI the data disk in the blob storage
+    diskURI is the URI of data disk in the blob storage
 
   - **azureDisk.cachingMode** (string)
 
-    Host Caching mode: None, Read Only, Read Write.
+    cachingMode is the Host Caching mode: None, Read Only, Read Write.
 
   - **azureDisk.fsType** (string)
 
-    Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+    fsType is Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
 
   - **azureDisk.kind** (string)
 
-    Expected values Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared
+    kind expected values are Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared
 
   - **azureDisk.readOnly** (boolean)
 
-    Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+    readOnly Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
 
 - **azureFile** (AzureFilePersistentVolumeSource)
 
-  AzureFile represents an Azure File Service mount on the host and bind mount to the pod.
+  azureFile represents an Azure File Service mount on the host and bind mount to the pod.
 
   <a name="AzureFilePersistentVolumeSource"></a>
   *AzureFile represents an Azure File Service mount on the host and bind mount to the pod.*
 
   - **azureFile.secretName** (string), required
 
-    the name of secret that contains Azure Storage Account Name and Key
+    secretName is the name of secret that contains Azure Storage Account Name and Key
 
   - **azureFile.shareName** (string), required
 
-    Share Name
+    shareName is the azure Share Name
 
   - **azureFile.readOnly** (boolean)
 
-    Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+    readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
 
   - **azureFile.secretNamespace** (string)
 
-    the namespace of the secret that contains Azure Storage Account Name and Key default is the same as the Pod
+    secretNamespace is the namespace of the secret that contains Azure Storage Account Name and Key default is the same as the Pod
 
 - **cephfs** (CephFSPersistentVolumeSource)
 
-  CephFS represents a Ceph FS mount on the host that shares a pod's lifetime
+  cephFS represents a Ceph FS mount on the host that shares a pod's lifetime
 
   <a name="CephFSPersistentVolumeSource"></a>
   *Represents a Ceph Filesystem mount that lasts the lifetime of a pod Cephfs volumes do not support ownership management or SELinux relabeling.*
 
   - **cephfs.monitors** ([]string), required
 
-    Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+    monitors is Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
 
   - **cephfs.path** (string)
 
-    Optional: Used as the mounted root, rather than the full Ceph tree, default is /
+    path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /
 
   - **cephfs.readOnly** (boolean)
 
-    Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+    readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
 
   - **cephfs.secretFile** (string)
 
-    Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+    secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
 
   - **cephfs.secretRef** (SecretReference)
 
-    Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+    secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
 
     <a name="SecretReference"></a>
     *SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace*
 
     - **cephfs.secretRef.name** (string)
 
-      Name is unique within a namespace to reference a secret resource.
+      name is unique within a namespace to reference a secret resource.
 
     - **cephfs.secretRef.namespace** (string)
 
-      Namespace defines the space within which the secret name must be unique.
+      namespace defines the space within which the secret name must be unique.
 
   - **cephfs.user** (string)
 
-    Optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+    user is Optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
 
 - **cinder** (CinderPersistentVolumeSource)
 
-  Cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+  cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
 
   <a name="CinderPersistentVolumeSource"></a>
   *Represents a cinder volume resource in Openstack. A Cinder volume must exist before mounting to a container. The volume must also be in the same region as the kubelet. Cinder volumes support ownership management and SELinux relabeling.*
 
   - **cinder.volumeID** (string), required
 
-    volume id used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+    volumeID used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
 
   - **cinder.fsType** (string)
 
-    Filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+    fsType Filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
 
   - **cinder.readOnly** (boolean)
 
-    Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+    readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
 
   - **cinder.secretRef** (SecretReference)
 
-    Optional: points to a secret object containing parameters used to connect to OpenStack.
+    secretRef is Optional: points to a secret object containing parameters used to connect to OpenStack.
 
     <a name="SecretReference"></a>
     *SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace*
 
     - **cinder.secretRef.name** (string)
 
-      Name is unique within a namespace to reference a secret resource.
+      name is unique within a namespace to reference a secret resource.
 
     - **cinder.secretRef.namespace** (string)
 
-      Namespace defines the space within which the secret name must be unique.
+      namespace defines the space within which the secret name must be unique.
 
 - **csi** (CSIPersistentVolumeSource)
 
-  CSI represents storage that is handled by an external CSI driver (Beta feature).
+  csi represents storage that is handled by an external CSI driver (Beta feature).
 
   <a name="CSIPersistentVolumeSource"></a>
   *Represents storage that is managed by an external CSI volume driver (Beta feature)*
 
   - **csi.driver** (string), required
 
-    Driver is the name of the driver to use for this volume. Required.
+    driver is the name of the driver to use for this volume. Required.
 
   - **csi.volumeHandle** (string), required
 
-    VolumeHandle is the unique volume name returned by the CSI volume plugin’s CreateVolume to refer to the volume on all subsequent calls. Required.
+    volumeHandle is the unique volume name returned by the CSI volume plugin’s CreateVolume to refer to the volume on all subsequent calls. Required.
 
   - **csi.controllerExpandSecretRef** (SecretReference)
 
-    ControllerExpandSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI ControllerExpandVolume call. This is an alpha field and requires enabling ExpandCSIVolumes feature gate. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.
+    controllerExpandSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI ControllerExpandVolume call. This is an alpha field and requires enabling ExpandCSIVolumes feature gate. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.
 
     <a name="SecretReference"></a>
     *SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace*
 
     - **csi.controllerExpandSecretRef.name** (string)
 
-      Name is unique within a namespace to reference a secret resource.
+      name is unique within a namespace to reference a secret resource.
 
     - **csi.controllerExpandSecretRef.namespace** (string)
 
-      Namespace defines the space within which the secret name must be unique.
+      namespace defines the space within which the secret name must be unique.
 
   - **csi.controllerPublishSecretRef** (SecretReference)
 
-    ControllerPublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI ControllerPublishVolume and ControllerUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.
+    controllerPublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI ControllerPublishVolume and ControllerUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.
 
     <a name="SecretReference"></a>
     *SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace*
 
     - **csi.controllerPublishSecretRef.name** (string)
 
-      Name is unique within a namespace to reference a secret resource.
+      name is unique within a namespace to reference a secret resource.
 
     - **csi.controllerPublishSecretRef.namespace** (string)
 
-      Namespace defines the space within which the secret name must be unique.
+      namespace defines the space within which the secret name must be unique.
 
   - **csi.fsType** (string)
 
-    Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs".
+    fsType to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs".
 
   - **csi.nodePublishSecretRef** (SecretReference)
 
-    NodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.
+    nodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.
 
     <a name="SecretReference"></a>
     *SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace*
 
     - **csi.nodePublishSecretRef.name** (string)
 
-      Name is unique within a namespace to reference a secret resource.
+      name is unique within a namespace to reference a secret resource.
 
     - **csi.nodePublishSecretRef.namespace** (string)
 
-      Namespace defines the space within which the secret name must be unique.
+      namespace defines the space within which the secret name must be unique.
 
   - **csi.nodeStageSecretRef** (SecretReference)
 
-    NodeStageSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodeStageVolume and NodeStageVolume and NodeUnstageVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.
+    nodeStageSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodeStageVolume and NodeStageVolume and NodeUnstageVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.
 
     <a name="SecretReference"></a>
     *SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace*
 
     - **csi.nodeStageSecretRef.name** (string)
 
-      Name is unique within a namespace to reference a secret resource.
+      name is unique within a namespace to reference a secret resource.
 
     - **csi.nodeStageSecretRef.namespace** (string)
 
-      Namespace defines the space within which the secret name must be unique.
+      namespace defines the space within which the secret name must be unique.
 
   - **csi.readOnly** (boolean)
 
-    Optional: The value to pass to ControllerPublishVolumeRequest. Defaults to false (read/write).
+    readOnly value to pass to ControllerPublishVolumeRequest. Defaults to false (read/write).
 
   - **csi.volumeAttributes** (map[string]string)
 
-    Attributes of the volume to publish.
+    volumeAttributes of the volume to publish.
 
 - **fc** (FCVolumeSource)
 
-  FC represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.
+  fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.
 
   <a name="FCVolumeSource"></a>
   *Represents a Fibre Channel volume. Fibre Channel volumes can only be mounted as read/write once. Fibre Channel volumes support ownership management and SELinux relabeling.*
 
   - **fc.fsType** (string)
 
-    Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+    fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
 
   - **fc.lun** (int32)
 
-    Optional: FC target lun number
+    lun is Optional: FC target lun number
 
   - **fc.readOnly** (boolean)
 
-    Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+    readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
 
   - **fc.targetWWNs** ([]string)
 
-    Optional: FC target worldwide names (WWNs)
+    targetWWNs is Optional: FC target worldwide names (WWNs)
 
   - **fc.wwids** ([]string)
 
-    Optional: FC volume world wide identifiers (wwids) Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.
+    wwids Optional: FC volume world wide identifiers (wwids) Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.
 
 - **flexVolume** (FlexPersistentVolumeSource)
 
-  FlexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin.
+  flexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin.
 
   <a name="FlexPersistentVolumeSource"></a>
   *FlexPersistentVolumeSource represents a generic persistent volume resource that is provisioned/attached using an exec based plugin.*
 
   - **flexVolume.driver** (string), required
 
-    Driver is the name of the driver to use for this volume.
+    driver is the name of the driver to use for this volume.
 
   - **flexVolume.fsType** (string)
 
-    Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". The default filesystem depends on FlexVolume script.
+    fsType is the Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". The default filesystem depends on FlexVolume script.
 
   - **flexVolume.options** (map[string]string)
 
-    Optional: Extra command options if any.
+    options is Optional: this field holds extra command options if any.
 
   - **flexVolume.readOnly** (boolean)
 
-    Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+    readOnly is Optional: defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
 
   - **flexVolume.secretRef** (SecretReference)
 
-    Optional: SecretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts.
+    secretRef is Optional: SecretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts.
 
     <a name="SecretReference"></a>
     *SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace*
 
     - **flexVolume.secretRef.name** (string)
 
-      Name is unique within a namespace to reference a secret resource.
+      name is unique within a namespace to reference a secret resource.
 
     - **flexVolume.secretRef.namespace** (string)
 
-      Namespace defines the space within which the secret name must be unique.
+      namespace defines the space within which the secret name must be unique.
 
 - **flocker** (FlockerVolumeSource)
 
-  Flocker represents a Flocker volume attached to a kubelet's host machine and exposed to the pod for its usage. This depends on the Flocker control service being running
+  flocker represents a Flocker volume attached to a kubelet's host machine and exposed to the pod for its usage. This depends on the Flocker control service being running
 
   <a name="FlockerVolumeSource"></a>
   *Represents a Flocker volume mounted by the Flocker agent. One and only one of datasetName and datasetUUID should be set. Flocker volumes do not support ownership management or SELinux relabeling.*
 
   - **flocker.datasetName** (string)
 
-    Name of the dataset stored as metadata -> name on the dataset for Flocker should be considered as deprecated
+    datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker should be considered as deprecated
 
   - **flocker.datasetUUID** (string)
 
-    UUID of the dataset. This is unique identifier of a Flocker dataset
+    datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset
 
 - **gcePersistentDisk** (GCEPersistentDiskVolumeSource)
 
-  GCEPersistentDisk represents a GCE Disk resource that is attached to a kubelet's host machine and then exposed to the pod. Provisioned by an admin. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+  gcePersistentDisk represents a GCE Disk resource that is attached to a kubelet's host machine and then exposed to the pod. Provisioned by an admin. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
 
   <a name="GCEPersistentDiskVolumeSource"></a>
   *Represents a Persistent Disk resource in Google Compute Engine.
@@ -488,346 +490,346 @@ PersistentVolumeSpec is the specification of a persistent volume.
 
   - **gcePersistentDisk.pdName** (string), required
 
-    Unique name of the PD resource in GCE. Used to identify the disk in GCE. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+    pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
 
   - **gcePersistentDisk.fsType** (string)
 
-    Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+    fsType is filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
 
   - **gcePersistentDisk.partition** (int32)
 
-    The partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as "1". Similarly, the volume partition for /dev/sda is "0" (or you can leave the property empty). More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+    partition is the partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as "1". Similarly, the volume partition for /dev/sda is "0" (or you can leave the property empty). More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
 
   - **gcePersistentDisk.readOnly** (boolean)
 
-    ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+    readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
 
 - **glusterfs** (GlusterfsPersistentVolumeSource)
 
-  Glusterfs represents a Glusterfs volume that is attached to a host and exposed to the pod. Provisioned by an admin. More info: https://examples.k8s.io/volumes/glusterfs/README.md
+  glusterfs represents a Glusterfs volume that is attached to a host and exposed to the pod. Provisioned by an admin. More info: https://examples.k8s.io/volumes/glusterfs/README.md
 
   <a name="GlusterfsPersistentVolumeSource"></a>
   *Represents a Glusterfs mount that lasts the lifetime of a pod. Glusterfs volumes do not support ownership management or SELinux relabeling.*
 
   - **glusterfs.endpoints** (string), required
 
-    EndpointsName is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+    endpoints is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
 
   - **glusterfs.path** (string), required
 
-    Path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+    path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
 
   - **glusterfs.endpointsNamespace** (string)
 
-    EndpointsNamespace is the namespace that contains Glusterfs endpoint. If this field is empty, the EndpointNamespace defaults to the same namespace as the bound PVC. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+    endpointsNamespace is the namespace that contains Glusterfs endpoint. If this field is empty, the EndpointNamespace defaults to the same namespace as the bound PVC. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
 
   - **glusterfs.readOnly** (boolean)
 
-    ReadOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+    readOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
 
 - **iscsi** (ISCSIPersistentVolumeSource)
 
-  ISCSI represents an ISCSI Disk resource that is attached to a kubelet's host machine and then exposed to the pod. Provisioned by an admin.
+  iscsi represents an ISCSI Disk resource that is attached to a kubelet's host machine and then exposed to the pod. Provisioned by an admin.
 
   <a name="ISCSIPersistentVolumeSource"></a>
   *ISCSIPersistentVolumeSource represents an ISCSI disk. ISCSI volumes can only be mounted as read/write once. ISCSI volumes support ownership management and SELinux relabeling.*
 
   - **iscsi.iqn** (string), required
 
-    Target iSCSI Qualified Name.
+    iqn is Target iSCSI Qualified Name.
 
   - **iscsi.lun** (int32), required
 
-    iSCSI Target Lun number.
+    lun is iSCSI Target Lun number.
 
   - **iscsi.targetPortal** (string), required
 
-    iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
+    targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
 
   - **iscsi.chapAuthDiscovery** (boolean)
 
-    whether support iSCSI Discovery CHAP authentication
+    chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication
 
   - **iscsi.chapAuthSession** (boolean)
 
-    whether support iSCSI Session CHAP authentication
+    chapAuthSession defines whether support iSCSI Session CHAP authentication
 
   - **iscsi.fsType** (string)
 
-    Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi
+    fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi
 
   - **iscsi.initiatorName** (string)
 
-    Custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface \<target portal>:\<volume name> will be created for the connection.
+    initiatorName is the custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface \<target portal>:\<volume name> will be created for the connection.
 
   - **iscsi.iscsiInterface** (string)
 
-    iSCSI Interface Name that uses an iSCSI transport. Defaults to 'default' (tcp).
+    iscsiInterface is the interface Name that uses an iSCSI transport. Defaults to 'default' (tcp).
 
   - **iscsi.portals** ([]string)
 
-    iSCSI Target Portal List. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
+    portals is the iSCSI Target Portal List. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
 
   - **iscsi.readOnly** (boolean)
 
-    ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.
+    readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.
 
   - **iscsi.secretRef** (SecretReference)
 
-    CHAP Secret for iSCSI target and initiator authentication
+    secretRef is the CHAP Secret for iSCSI target and initiator authentication
 
     <a name="SecretReference"></a>
     *SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace*
 
     - **iscsi.secretRef.name** (string)
 
-      Name is unique within a namespace to reference a secret resource.
+      name is unique within a namespace to reference a secret resource.
 
     - **iscsi.secretRef.namespace** (string)
 
-      Namespace defines the space within which the secret name must be unique.
+      namespace defines the space within which the secret name must be unique.
 
 - **nfs** (NFSVolumeSource)
 
-  NFS represents an NFS mount on the host. Provisioned by an admin. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+  nfs represents an NFS mount on the host. Provisioned by an admin. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
 
   <a name="NFSVolumeSource"></a>
   *Represents an NFS mount that lasts the lifetime of a pod. NFS volumes do not support ownership management or SELinux relabeling.*
 
   - **nfs.path** (string), required
 
-    Path that is exported by the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+    path that is exported by the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
 
   - **nfs.server** (string), required
 
-    Server is the hostname or IP address of the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+    server is the hostname or IP address of the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
 
   - **nfs.readOnly** (boolean)
 
-    ReadOnly here will force the NFS export to be mounted with read-only permissions. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+    readOnly here will force the NFS export to be mounted with read-only permissions. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
 
 - **photonPersistentDisk** (PhotonPersistentDiskVolumeSource)
 
-  PhotonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine
+  photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine
 
   <a name="PhotonPersistentDiskVolumeSource"></a>
   *Represents a Photon Controller persistent disk resource.*
 
   - **photonPersistentDisk.pdID** (string), required
 
-    ID that identifies Photon Controller persistent disk
+    pdID is the ID that identifies Photon Controller persistent disk
 
   - **photonPersistentDisk.fsType** (string)
 
-    Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+    fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
 
 - **portworxVolume** (PortworxVolumeSource)
 
-  PortworxVolume represents a portworx volume attached and mounted on kubelets host machine
+  portworxVolume represents a portworx volume attached and mounted on kubelets host machine
 
   <a name="PortworxVolumeSource"></a>
   *PortworxVolumeSource represents a Portworx volume resource.*
 
   - **portworxVolume.volumeID** (string), required
 
-    VolumeID uniquely identifies a Portworx volume
+    volumeID uniquely identifies a Portworx volume
 
   - **portworxVolume.fsType** (string)
 
-    FSType represents the filesystem type to mount Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs". Implicitly inferred to be "ext4" if unspecified.
+    fSType represents the filesystem type to mount Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs". Implicitly inferred to be "ext4" if unspecified.
 
   - **portworxVolume.readOnly** (boolean)
 
-    Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+    readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
 
 - **quobyte** (QuobyteVolumeSource)
 
-  Quobyte represents a Quobyte mount on the host that shares a pod's lifetime
+  quobyte represents a Quobyte mount on the host that shares a pod's lifetime
 
   <a name="QuobyteVolumeSource"></a>
   *Represents a Quobyte mount that lasts the lifetime of a pod. Quobyte volumes do not support ownership management or SELinux relabeling.*
 
   - **quobyte.registry** (string), required
 
-    Registry represents a single or multiple Quobyte Registry services specified as a string as host:port pair (multiple entries are separated with commas) which acts as the central registry for volumes
+    registry represents a single or multiple Quobyte Registry services specified as a string as host:port pair (multiple entries are separated with commas) which acts as the central registry for volumes
 
   - **quobyte.volume** (string), required
 
-    Volume is a string that references an already created Quobyte volume by name.
+    volume is a string that references an already created Quobyte volume by name.
 
   - **quobyte.group** (string)
 
-    Group to map volume access to Default is no group
+    group to map volume access to Default is no group
 
   - **quobyte.readOnly** (boolean)
 
-    ReadOnly here will force the Quobyte volume to be mounted with read-only permissions. Defaults to false.
+    readOnly here will force the Quobyte volume to be mounted with read-only permissions. Defaults to false.
 
   - **quobyte.tenant** (string)
 
-    Tenant owning the given Quobyte volume in the Backend Used with dynamically provisioned Quobyte volumes, value is set by the plugin
+    tenant owning the given Quobyte volume in the Backend Used with dynamically provisioned Quobyte volumes, value is set by the plugin
 
   - **quobyte.user** (string)
 
-    User to map volume access to Defaults to serivceaccount user
+    user to map volume access to Defaults to serivceaccount user
 
 - **rbd** (RBDPersistentVolumeSource)
 
-  RBD represents a Rados Block Device mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md
+  rbd represents a Rados Block Device mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md
 
   <a name="RBDPersistentVolumeSource"></a>
   *Represents a Rados Block Device mount that lasts the lifetime of a pod. RBD volumes support ownership management and SELinux relabeling.*
 
   - **rbd.image** (string), required
 
-    The rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+    image is the rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
 
   - **rbd.monitors** ([]string), required
 
-    A collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+    monitors is a collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
 
   - **rbd.fsType** (string)
 
-    Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd
+    fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd
 
   - **rbd.keyring** (string)
 
-    Keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+    keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
 
   - **rbd.pool** (string)
 
-    The rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+    pool is the rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
 
   - **rbd.readOnly** (boolean)
 
-    ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+    readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
 
   - **rbd.secretRef** (SecretReference)
 
-    SecretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+    secretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
 
     <a name="SecretReference"></a>
     *SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace*
 
     - **rbd.secretRef.name** (string)
 
-      Name is unique within a namespace to reference a secret resource.
+      name is unique within a namespace to reference a secret resource.
 
     - **rbd.secretRef.namespace** (string)
 
-      Namespace defines the space within which the secret name must be unique.
+      namespace defines the space within which the secret name must be unique.
 
   - **rbd.user** (string)
 
-    The rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+    user is the rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
 
 - **scaleIO** (ScaleIOPersistentVolumeSource)
 
-  ScaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.
+  scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.
 
   <a name="ScaleIOPersistentVolumeSource"></a>
   *ScaleIOPersistentVolumeSource represents a persistent ScaleIO volume*
 
   - **scaleIO.gateway** (string), required
 
-    The host address of the ScaleIO API Gateway.
+    gateway is the host address of the ScaleIO API Gateway.
 
   - **scaleIO.secretRef** (SecretReference), required
 
-    SecretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail.
+    secretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail.
 
     <a name="SecretReference"></a>
     *SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace*
 
     - **scaleIO.secretRef.name** (string)
 
-      Name is unique within a namespace to reference a secret resource.
+      name is unique within a namespace to reference a secret resource.
 
     - **scaleIO.secretRef.namespace** (string)
 
-      Namespace defines the space within which the secret name must be unique.
+      namespace defines the space within which the secret name must be unique.
 
   - **scaleIO.system** (string), required
 
-    The name of the storage system as configured in ScaleIO.
+    system is the name of the storage system as configured in ScaleIO.
 
   - **scaleIO.fsType** (string)
 
-    Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Default is "xfs"
+    fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Default is "xfs"
 
   - **scaleIO.protectionDomain** (string)
 
-    The name of the ScaleIO Protection Domain for the configured storage.
+    protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.
 
   - **scaleIO.readOnly** (boolean)
 
-    Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+    readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
 
   - **scaleIO.sslEnabled** (boolean)
 
-    Flag to enable/disable SSL communication with Gateway, default false
+    sslEnabled is the flag to enable/disable SSL communication with Gateway, default false
 
   - **scaleIO.storageMode** (string)
 
-    Indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.
+    storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.
 
   - **scaleIO.storagePool** (string)
 
-    The ScaleIO Storage Pool associated with the protection domain.
+    storagePool is the ScaleIO Storage Pool associated with the protection domain.
 
   - **scaleIO.volumeName** (string)
 
-    The name of a volume already created in the ScaleIO system that is associated with this volume source.
+    volumeName is the name of a volume already created in the ScaleIO system that is associated with this volume source.
 
 - **storageos** (StorageOSPersistentVolumeSource)
 
-  StorageOS represents a StorageOS volume that is attached to the kubelet's host machine and mounted into the pod More info: https://examples.k8s.io/volumes/storageos/README.md
+  storageOS represents a StorageOS volume that is attached to the kubelet's host machine and mounted into the pod More info: https://examples.k8s.io/volumes/storageos/README.md
 
   <a name="StorageOSPersistentVolumeSource"></a>
   *Represents a StorageOS persistent volume resource.*
 
   - **storageos.fsType** (string)
 
-    Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+    fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
 
   - **storageos.readOnly** (boolean)
 
-    Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+    readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
 
   - **storageos.secretRef** (<a href="{{< ref "../common-definitions/object-reference#ObjectReference" >}}">ObjectReference</a>)
 
-    SecretRef specifies the secret to use for obtaining the StorageOS API credentials.  If not specified, default values will be attempted.
+    secretRef specifies the secret to use for obtaining the StorageOS API credentials.  If not specified, default values will be attempted.
 
   - **storageos.volumeName** (string)
 
-    VolumeName is the human-readable name of the StorageOS volume.  Volume names are only unique within a namespace.
+    volumeName is the human-readable name of the StorageOS volume.  Volume names are only unique within a namespace.
 
   - **storageos.volumeNamespace** (string)
 
-    VolumeNamespace specifies the scope of the volume within StorageOS.  If no namespace is specified then the Pod's namespace will be used.  This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to "default" if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.
+    volumeNamespace specifies the scope of the volume within StorageOS.  If no namespace is specified then the Pod's namespace will be used.  This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to "default" if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.
 
 - **vsphereVolume** (VsphereVirtualDiskVolumeSource)
 
-  VsphereVolume represents a vSphere volume attached and mounted on kubelets host machine
+  vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine
 
   <a name="VsphereVirtualDiskVolumeSource"></a>
   *Represents a vSphere volume resource.*
 
   - **vsphereVolume.volumePath** (string), required
 
-    Path that identifies vSphere volume vmdk
+    volumePath is the path that identifies vSphere volume vmdk
 
   - **vsphereVolume.fsType** (string)
 
-    Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+    fsType is filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
 
   - **vsphereVolume.storagePolicyID** (string)
 
-    Storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.
+    storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.
 
   - **vsphereVolume.storagePolicyName** (string)
 
-    Storage Policy Based Management (SPBM) profile name.
+    storagePolicyName is the storage Policy Based Management (SPBM) profile name.
 
 
 
@@ -839,15 +841,17 @@ PersistentVolumeStatus is the current status of a persistent volume.
 
 - **message** (string)
 
-  A human-readable message indicating details about why the volume is in this state.
+  message is a human-readable message indicating details about why the volume is in this state.
 
 - **phase** (string)
 
-  Phase indicates if a volume is available, bound to a claim, or released by a claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#phase
+  phase indicates if a volume is available, bound to a claim, or released by a claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#phase
+  
+  
 
 - **reason** (string)
 
-  Reason is a brief CamelCase string that describes any failure and is meant for machine parsing and tidy display in the CLI.
+  reason is a brief CamelCase string that describes any failure and is meant for machine parsing and tidy display in the CLI.
 
 
 
@@ -871,7 +875,7 @@ PersistentVolumeList is a list of PersistentVolume items.
 
 - **items** ([]<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>), required
 
-  List of persistent volumes. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes
+  items is a list of persistent volumes. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes
 
 
 
@@ -1036,6 +1040,11 @@ POST /api/v1/persistentvolumes
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -1083,6 +1092,11 @@ PUT /api/v1/persistentvolumes/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -1128,6 +1142,11 @@ PUT /api/v1/persistentvolumes/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -1173,6 +1192,11 @@ PATCH /api/v1/persistentvolumes/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -1223,6 +1247,11 @@ PATCH /api/v1/persistentvolumes/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/config-and-storage-resources/secret-v1.md b/content/en/docs/reference/kubernetes-api/config-and-storage-resources/secret-v1.md
index bb2710e4c8..5310484d56 100644
--- a/content/en/docs/reference/kubernetes-api/config-and-storage-resources/secret-v1.md
+++ b/content/en/docs/reference/kubernetes-api/config-and-storage-resources/secret-v1.md
@@ -56,7 +56,7 @@ Secret holds secret data of a certain type. The total bytes of the values in the
 
 - **type** (string)
 
-  Used to facilitate programmatic handling of secret data.
+  Used to facilitate programmatic handling of secret data. More info: https://kubernetes.io/docs/concepts/configuration/secret/#secret-types
 
 
 
@@ -300,6 +300,11 @@ POST /api/v1/namespaces/{namespace}/secrets
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -352,6 +357,11 @@ PUT /api/v1/namespaces/{namespace}/secrets/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -402,6 +412,11 @@ PATCH /api/v1/namespaces/{namespace}/secrets/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/config-and-storage-resources/storage-class-v1.md b/content/en/docs/reference/kubernetes-api/config-and-storage-resources/storage-class-v1.md
index e5cb3b4b3e..6c9126f4c6 100644
--- a/content/en/docs/reference/kubernetes-api/config-and-storage-resources/storage-class-v1.md
+++ b/content/en/docs/reference/kubernetes-api/config-and-storage-resources/storage-class-v1.md
@@ -251,6 +251,11 @@ POST /apis/storage.k8s.io/v1/storageclasses
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -298,6 +303,11 @@ PUT /apis/storage.k8s.io/v1/storageclasses/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -343,6 +353,11 @@ PATCH /apis/storage.k8s.io/v1/storageclasses/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/config-and-storage-resources/volume-attachment-v1.md b/content/en/docs/reference/kubernetes-api/config-and-storage-resources/volume-attachment-v1.md
index 332053b4a9..a0ac08f96b 100644
--- a/content/en/docs/reference/kubernetes-api/config-and-storage-resources/volume-attachment-v1.md
+++ b/content/en/docs/reference/kubernetes-api/config-and-storage-resources/volume-attachment-v1.md
@@ -326,6 +326,11 @@ POST /apis/storage.k8s.io/v1/volumeattachments
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -373,6 +378,11 @@ PUT /apis/storage.k8s.io/v1/volumeattachments/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -418,6 +428,11 @@ PUT /apis/storage.k8s.io/v1/volumeattachments/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -463,6 +478,11 @@ PATCH /apis/storage.k8s.io/v1/volumeattachments/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -513,6 +533,11 @@ PATCH /apis/storage.k8s.io/v1/volumeattachments/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/config-and-storage-resources/volume.md b/content/en/docs/reference/kubernetes-api/config-and-storage-resources/volume.md
index 60badecc43..420c6701d5 100644
--- a/content/en/docs/reference/kubernetes-api/config-and-storage-resources/volume.md
+++ b/content/en/docs/reference/kubernetes-api/config-and-storage-resources/volume.md
@@ -34,7 +34,7 @@ Volume represents a named volume in a pod that may be accessed by any container
 
 - **name** (string), required
 
-  Volume's name. Must be a DNS_LABEL and unique within the pod. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+  name of the volume. Must be a DNS_LABEL and unique within the pod. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
 
 
 
@@ -43,25 +43,25 @@ Volume represents a named volume in a pod that may be accessed by any container
 
 - **persistentVolumeClaim** (PersistentVolumeClaimVolumeSource)
 
-  PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+  persistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
 
   <a name="PersistentVolumeClaimVolumeSource"></a>
   *PersistentVolumeClaimVolumeSource references the user's PVC in the same namespace. This volume finds the bound PV and mounts that volume for the pod. A PersistentVolumeClaimVolumeSource is, essentially, a wrapper around another type of volume that is owned by someone else (the system).*
 
   - **persistentVolumeClaim.claimName** (string), required
 
-    ClaimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+    claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
 
   - **persistentVolumeClaim.readOnly** (boolean)
 
-    Will force the ReadOnly setting in VolumeMounts. Default false.
+    readOnly Will force the ReadOnly setting in VolumeMounts. Default false.
 
 ### Projections
 
 
 - **configMap** (ConfigMapVolumeSource)
 
-  ConfigMap represents a configMap that should populate this volume
+  configMap represents a configMap that should populate this volume
 
   <a name="ConfigMapVolumeSource"></a>
   *Adapts a ConfigMap into a volume.
@@ -74,19 +74,19 @@ Volume represents a named volume in a pod that may be accessed by any container
 
   - **configMap.optional** (boolean)
 
-    Specify whether the ConfigMap or its keys must be defined
+    optional specify whether the ConfigMap or its keys must be defined
 
   - **configMap.defaultMode** (int32)
 
-    Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+    defaultMode is optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
 
   - **configMap.items** ([]<a href="{{< ref "../config-and-storage-resources/volume#KeyToPath" >}}">KeyToPath</a>)
 
-    If unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.
+    items if unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.
 
 - **secret** (SecretVolumeSource)
 
-  Secret represents a secret that should populate this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
+  secret represents a secret that should populate this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
 
   <a name="SecretVolumeSource"></a>
   *Adapts a Secret into a volume.
@@ -95,23 +95,23 @@ Volume represents a named volume in a pod that may be accessed by any container
 
   - **secret.secretName** (string)
 
-    Name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
+    secretName is the name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
 
   - **secret.optional** (boolean)
 
-    Specify whether the Secret or its keys must be defined
+    optional field specify whether the Secret or its keys must be defined
 
   - **secret.defaultMode** (int32)
 
-    Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+    defaultMode is Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
 
   - **secret.items** ([]<a href="{{< ref "../config-and-storage-resources/volume#KeyToPath" >}}">KeyToPath</a>)
 
-    If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.
+    items If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.
 
 - **downwardAPI** (DownwardAPIVolumeSource)
 
-  DownwardAPI represents downward API about the pod that should populate this volume
+  downwardAPI represents downward API about the pod that should populate this volume
 
   <a name="DownwardAPIVolumeSource"></a>
   *DownwardAPIVolumeSource represents a volume containing downward API info. Downward API volumes support ownership management and SELinux relabeling.*
@@ -126,25 +126,25 @@ Volume represents a named volume in a pod that may be accessed by any container
 
 - **projected** (ProjectedVolumeSource)
 
-  Items for all in one resources secrets, configmaps, and downward API
+  projected items for all in one resources secrets, configmaps, and downward API
 
   <a name="ProjectedVolumeSource"></a>
   *Represents a projected volume source*
 
   - **projected.defaultMode** (int32)
 
-    Mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+    defaultMode are the mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
 
   - **projected.sources** ([]VolumeProjection)
 
-    list of volume projections
+    sources is the list of volume projections
 
     <a name="VolumeProjection"></a>
     *Projection that may be projected along with other supported volume types*
 
     - **projected.sources.configMap** (ConfigMapProjection)
 
-      information about the configMap data to project
+      configMap information about the configMap data to project
 
       <a name="ConfigMapProjection"></a>
       *Adapts a ConfigMap into a projected volume.
@@ -157,15 +157,15 @@ Volume represents a named volume in a pod that may be accessed by any container
 
       - **projected.sources.configMap.optional** (boolean)
 
-        Specify whether the ConfigMap or its keys must be defined
+        optional specify whether the ConfigMap or its keys must be defined
 
       - **projected.sources.configMap.items** ([]<a href="{{< ref "../config-and-storage-resources/volume#KeyToPath" >}}">KeyToPath</a>)
 
-        If unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.
+        items if unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.
 
     - **projected.sources.downwardAPI** (DownwardAPIProjection)
 
-      information about the downwardAPI data to project
+      downwardAPI information about the downwardAPI data to project
 
       <a name="DownwardAPIProjection"></a>
       *Represents downward API info for projecting into a projected volume. Note that this is identical to a downwardAPI volume source without the default mode.*
@@ -176,7 +176,7 @@ Volume represents a named volume in a pod that may be accessed by any container
 
     - **projected.sources.secret** (SecretProjection)
 
-      information about the secret data to project
+      secret information about the secret data to project
 
       <a name="SecretProjection"></a>
       *Adapts a secret into a projected volume.
@@ -189,70 +189,70 @@ Volume represents a named volume in a pod that may be accessed by any container
 
       - **projected.sources.secret.optional** (boolean)
 
-        Specify whether the Secret or its key must be defined
+        optional field specify whether the Secret or its key must be defined
 
       - **projected.sources.secret.items** ([]<a href="{{< ref "../config-and-storage-resources/volume#KeyToPath" >}}">KeyToPath</a>)
 
-        If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.
+        items if unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.
 
     - **projected.sources.serviceAccountToken** (ServiceAccountTokenProjection)
 
-      information about the serviceAccountToken data to project
+      serviceAccountToken is information about the serviceAccountToken data to project
 
       <a name="ServiceAccountTokenProjection"></a>
       *ServiceAccountTokenProjection represents a projected service account token volume. This projection can be used to insert a service account token into the pods runtime filesystem for use against APIs (Kubernetes API Server or otherwise).*
 
       - **projected.sources.serviceAccountToken.path** (string), required
 
-        Path is the path relative to the mount point of the file to project the token into.
+        path is the path relative to the mount point of the file to project the token into.
 
       - **projected.sources.serviceAccountToken.audience** (string)
 
-        Audience is the intended audience of the token. A recipient of a token must identify itself with an identifier specified in the audience of the token, and otherwise should reject the token. The audience defaults to the identifier of the apiserver.
+        audience is the intended audience of the token. A recipient of a token must identify itself with an identifier specified in the audience of the token, and otherwise should reject the token. The audience defaults to the identifier of the apiserver.
 
       - **projected.sources.serviceAccountToken.expirationSeconds** (int64)
 
-        ExpirationSeconds is the requested duration of validity of the service account token. As the token approaches expiration, the kubelet volume plugin will proactively rotate the service account token. The kubelet will start trying to rotate the token if the token is older than 80 percent of its time to live or if the token is older than 24 hours.Defaults to 1 hour and must be at least 10 minutes.
+        expirationSeconds is the requested duration of validity of the service account token. As the token approaches expiration, the kubelet volume plugin will proactively rotate the service account token. The kubelet will start trying to rotate the token if the token is older than 80 percent of its time to live or if the token is older than 24 hours.Defaults to 1 hour and must be at least 10 minutes.
 
 ### Local / Temporary Directory
 
 
 - **emptyDir** (EmptyDirVolumeSource)
 
-  EmptyDir represents a temporary directory that shares a pod's lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
+  emptyDir represents a temporary directory that shares a pod's lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
 
   <a name="EmptyDirVolumeSource"></a>
   *Represents an empty directory for a pod. Empty directory volumes support ownership management and SELinux relabeling.*
 
   - **emptyDir.medium** (string)
 
-    What type of storage medium should back this directory. The default is "" which means to use the node's default medium. Must be an empty string (default) or Memory. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
+    medium represents what type of storage medium should back this directory. The default is "" which means to use the node's default medium. Must be an empty string (default) or Memory. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
 
   - **emptyDir.sizeLimit** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
 
-    Total amount of local storage required for this EmptyDir volume. The size limit is also applicable for memory medium. The maximum usage on memory medium EmptyDir would be the minimum value between the SizeLimit specified here and the sum of memory limits of all containers in a pod. The default is nil which means that the limit is undefined. More info: http://kubernetes.io/docs/user-guide/volumes#emptydir
+    sizeLimit is the total amount of local storage required for this EmptyDir volume. The size limit is also applicable for memory medium. The maximum usage on memory medium EmptyDir would be the minimum value between the SizeLimit specified here and the sum of memory limits of all containers in a pod. The default is nil which means that the limit is undefined. More info: http://kubernetes.io/docs/user-guide/volumes#emptydir
 
 - **hostPath** (HostPathVolumeSource)
 
-  HostPath represents a pre-existing file or directory on the host machine that is directly exposed to the container. This is generally used for system agents or other privileged things that are allowed to see the host machine. Most containers will NOT need this. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+  hostPath represents a pre-existing file or directory on the host machine that is directly exposed to the container. This is generally used for system agents or other privileged things that are allowed to see the host machine. Most containers will NOT need this. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
 
   <a name="HostPathVolumeSource"></a>
   *Represents a host path mapped into a pod. Host path volumes do not support ownership management or SELinux relabeling.*
 
   - **hostPath.path** (string), required
 
-    Path of the directory on the host. If the path is a symlink, it will follow the link to the real path. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+    path of the directory on the host. If the path is a symlink, it will follow the link to the real path. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
 
   - **hostPath.type** (string)
 
-    Type for HostPath Volume Defaults to "" More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+    type for HostPath Volume Defaults to "" More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
 
 ### Persistent volumes
 
 
 - **awsElasticBlockStore** (AWSElasticBlockStoreVolumeSource)
 
-  AWSElasticBlockStore represents an AWS Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+  awsElasticBlockStore represents an AWS Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
 
   <a name="AWSElasticBlockStoreVolumeSource"></a>
   *Represents a Persistent Disk resource in AWS.
@@ -261,223 +261,223 @@ Volume represents a named volume in a pod that may be accessed by any container
 
   - **awsElasticBlockStore.volumeID** (string), required
 
-    Unique ID of the persistent disk resource in AWS (Amazon EBS volume). More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+    volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume). More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
 
   - **awsElasticBlockStore.fsType** (string)
 
-    Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+    fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
 
   - **awsElasticBlockStore.partition** (int32)
 
-    The partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as "1". Similarly, the volume partition for /dev/sda is "0" (or you can leave the property empty).
+    partition is the partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as "1". Similarly, the volume partition for /dev/sda is "0" (or you can leave the property empty).
 
   - **awsElasticBlockStore.readOnly** (boolean)
 
-    Specify "true" to force and set the ReadOnly property in VolumeMounts to "true". If omitted, the default is "false". More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+    readOnly value true will force the readOnly setting in VolumeMounts. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
 
 - **azureDisk** (AzureDiskVolumeSource)
 
-  AzureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.
+  azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.
 
   <a name="AzureDiskVolumeSource"></a>
   *AzureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.*
 
   - **azureDisk.diskName** (string), required
 
-    The Name of the data disk in the blob storage
+    diskName is the Name of the data disk in the blob storage
 
   - **azureDisk.diskURI** (string), required
 
-    The URI the data disk in the blob storage
+    diskURI is the URI of data disk in the blob storage
 
   - **azureDisk.cachingMode** (string)
 
-    Host Caching mode: None, Read Only, Read Write.
+    cachingMode is the Host Caching mode: None, Read Only, Read Write.
 
   - **azureDisk.fsType** (string)
 
-    Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+    fsType is Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
 
   - **azureDisk.kind** (string)
 
-    Expected values Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared
+    kind expected values are Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared
 
   - **azureDisk.readOnly** (boolean)
 
-    Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+    readOnly Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
 
 - **azureFile** (AzureFileVolumeSource)
 
-  AzureFile represents an Azure File Service mount on the host and bind mount to the pod.
+  azureFile represents an Azure File Service mount on the host and bind mount to the pod.
 
   <a name="AzureFileVolumeSource"></a>
   *AzureFile represents an Azure File Service mount on the host and bind mount to the pod.*
 
   - **azureFile.secretName** (string), required
 
-    the name of secret that contains Azure Storage Account Name and Key
+    secretName is the  name of secret that contains Azure Storage Account Name and Key
 
   - **azureFile.shareName** (string), required
 
-    Share Name
+    shareName is the azure share Name
 
   - **azureFile.readOnly** (boolean)
 
-    Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+    readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
 
 - **cephfs** (CephFSVolumeSource)
 
-  CephFS represents a Ceph FS mount on the host that shares a pod's lifetime
+  cephFS represents a Ceph FS mount on the host that shares a pod's lifetime
 
   <a name="CephFSVolumeSource"></a>
   *Represents a Ceph Filesystem mount that lasts the lifetime of a pod Cephfs volumes do not support ownership management or SELinux relabeling.*
 
   - **cephfs.monitors** ([]string), required
 
-    Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+    monitors is Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
 
   - **cephfs.path** (string)
 
-    Optional: Used as the mounted root, rather than the full Ceph tree, default is /
+    path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /
 
   - **cephfs.readOnly** (boolean)
 
-    Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+    readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
 
   - **cephfs.secretFile** (string)
 
-    Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+    secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
 
   - **cephfs.secretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
 
-    Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+    secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
 
   - **cephfs.user** (string)
 
-    Optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+    user is optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
 
 - **cinder** (CinderVolumeSource)
 
-  Cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+  cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
 
   <a name="CinderVolumeSource"></a>
   *Represents a cinder volume resource in Openstack. A Cinder volume must exist before mounting to a container. The volume must also be in the same region as the kubelet. Cinder volumes support ownership management and SELinux relabeling.*
 
   - **cinder.volumeID** (string), required
 
-    volume id used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+    volumeID used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
 
   - **cinder.fsType** (string)
 
-    Filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+    fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
 
   - **cinder.readOnly** (boolean)
 
-    Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+    readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
 
   - **cinder.secretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
 
-    Optional: points to a secret object containing parameters used to connect to OpenStack.
+    secretRef is optional: points to a secret object containing parameters used to connect to OpenStack.
 
 - **csi** (CSIVolumeSource)
 
-  CSI (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).
+  csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).
 
   <a name="CSIVolumeSource"></a>
   *Represents a source location of a volume to mount, managed by an external CSI driver*
 
   - **csi.driver** (string), required
 
-    Driver is the name of the CSI driver that handles this volume. Consult with your admin for the correct name as registered in the cluster.
+    driver is the name of the CSI driver that handles this volume. Consult with your admin for the correct name as registered in the cluster.
 
   - **csi.fsType** (string)
 
-    Filesystem type to mount. Ex. "ext4", "xfs", "ntfs". If not provided, the empty value is passed to the associated CSI driver which will determine the default filesystem to apply.
+    fsType to mount. Ex. "ext4", "xfs", "ntfs". If not provided, the empty value is passed to the associated CSI driver which will determine the default filesystem to apply.
 
   - **csi.nodePublishSecretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
 
-    NodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and  may be empty if no secret is required. If the secret object contains more than one secret, all secret references are passed.
+    nodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and  may be empty if no secret is required. If the secret object contains more than one secret, all secret references are passed.
 
   - **csi.readOnly** (boolean)
 
-    Specifies a read-only configuration for the volume. Defaults to false (read/write).
+    readOnly specifies a read-only configuration for the volume. Defaults to false (read/write).
 
   - **csi.volumeAttributes** (map[string]string)
 
-    VolumeAttributes stores driver-specific properties that are passed to the CSI driver. Consult your driver's documentation for supported values.
+    volumeAttributes stores driver-specific properties that are passed to the CSI driver. Consult your driver's documentation for supported values.
 
 - **fc** (FCVolumeSource)
 
-  FC represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.
+  fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.
 
   <a name="FCVolumeSource"></a>
   *Represents a Fibre Channel volume. Fibre Channel volumes can only be mounted as read/write once. Fibre Channel volumes support ownership management and SELinux relabeling.*
 
   - **fc.fsType** (string)
 
-    Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+    fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
 
   - **fc.lun** (int32)
 
-    Optional: FC target lun number
+    lun is Optional: FC target lun number
 
   - **fc.readOnly** (boolean)
 
-    Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+    readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
 
   - **fc.targetWWNs** ([]string)
 
-    Optional: FC target worldwide names (WWNs)
+    targetWWNs is Optional: FC target worldwide names (WWNs)
 
   - **fc.wwids** ([]string)
 
-    Optional: FC volume world wide identifiers (wwids) Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.
+    wwids Optional: FC volume world wide identifiers (wwids) Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.
 
 - **flexVolume** (FlexVolumeSource)
 
-  FlexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin.
+  flexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin.
 
   <a name="FlexVolumeSource"></a>
   *FlexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin.*
 
   - **flexVolume.driver** (string), required
 
-    Driver is the name of the driver to use for this volume.
+    driver is the name of the driver to use for this volume.
 
   - **flexVolume.fsType** (string)
 
-    Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". The default filesystem depends on FlexVolume script.
+    fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". The default filesystem depends on FlexVolume script.
 
   - **flexVolume.options** (map[string]string)
 
-    Optional: Extra command options if any.
+    options is Optional: this field holds extra command options if any.
 
   - **flexVolume.readOnly** (boolean)
 
-    Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+    readOnly is Optional: defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
 
   - **flexVolume.secretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
 
-    Optional: SecretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts.
+    secretRef is Optional: secretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts.
 
 - **flocker** (FlockerVolumeSource)
 
-  Flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running
+  flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running
 
   <a name="FlockerVolumeSource"></a>
   *Represents a Flocker volume mounted by the Flocker agent. One and only one of datasetName and datasetUUID should be set. Flocker volumes do not support ownership management or SELinux relabeling.*
 
   - **flocker.datasetName** (string)
 
-    Name of the dataset stored as metadata -> name on the dataset for Flocker should be considered as deprecated
+    datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker should be considered as deprecated
 
   - **flocker.datasetUUID** (string)
 
-    UUID of the dataset. This is unique identifier of a Flocker dataset
+    datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset
 
 - **gcePersistentDisk** (GCEPersistentDiskVolumeSource)
 
-  GCEPersistentDisk represents a GCE Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+  gcePersistentDisk represents a GCE Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
 
   <a name="GCEPersistentDiskVolumeSource"></a>
   *Represents a Persistent Disk resource in Google Compute Engine.
@@ -486,316 +486,316 @@ Volume represents a named volume in a pod that may be accessed by any container
 
   - **gcePersistentDisk.pdName** (string), required
 
-    Unique name of the PD resource in GCE. Used to identify the disk in GCE. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+    pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
 
   - **gcePersistentDisk.fsType** (string)
 
-    Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+    fsType is filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
 
   - **gcePersistentDisk.partition** (int32)
 
-    The partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as "1". Similarly, the volume partition for /dev/sda is "0" (or you can leave the property empty). More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+    partition is the partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as "1". Similarly, the volume partition for /dev/sda is "0" (or you can leave the property empty). More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
 
   - **gcePersistentDisk.readOnly** (boolean)
 
-    ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+    readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
 
 - **glusterfs** (GlusterfsVolumeSource)
 
-  Glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/glusterfs/README.md
+  glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/glusterfs/README.md
 
   <a name="GlusterfsVolumeSource"></a>
   *Represents a Glusterfs mount that lasts the lifetime of a pod. Glusterfs volumes do not support ownership management or SELinux relabeling.*
 
   - **glusterfs.endpoints** (string), required
 
-    EndpointsName is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+    endpoints is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
 
   - **glusterfs.path** (string), required
 
-    Path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+    path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
 
   - **glusterfs.readOnly** (boolean)
 
-    ReadOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+    readOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
 
 - **iscsi** (ISCSIVolumeSource)
 
-  ISCSI represents an ISCSI Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://examples.k8s.io/volumes/iscsi/README.md
+  iscsi represents an ISCSI Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://examples.k8s.io/volumes/iscsi/README.md
 
   <a name="ISCSIVolumeSource"></a>
   *Represents an ISCSI disk. ISCSI volumes can only be mounted as read/write once. ISCSI volumes support ownership management and SELinux relabeling.*
 
   - **iscsi.iqn** (string), required
 
-    Target iSCSI Qualified Name.
+    iqn is the target iSCSI Qualified Name.
 
   - **iscsi.lun** (int32), required
 
-    iSCSI Target Lun number.
+    lun represents iSCSI Target Lun number.
 
   - **iscsi.targetPortal** (string), required
 
-    iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
+    targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
 
   - **iscsi.chapAuthDiscovery** (boolean)
 
-    whether support iSCSI Discovery CHAP authentication
+    chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication
 
   - **iscsi.chapAuthSession** (boolean)
 
-    whether support iSCSI Session CHAP authentication
+    chapAuthSession defines whether support iSCSI Session CHAP authentication
 
   - **iscsi.fsType** (string)
 
-    Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi
+    fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi
 
   - **iscsi.initiatorName** (string)
 
-    Custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface \<target portal>:\<volume name> will be created for the connection.
+    initiatorName is the custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface \<target portal>:\<volume name> will be created for the connection.
 
   - **iscsi.iscsiInterface** (string)
 
-    iSCSI Interface Name that uses an iSCSI transport. Defaults to 'default' (tcp).
+    iscsiInterface is the interface Name that uses an iSCSI transport. Defaults to 'default' (tcp).
 
   - **iscsi.portals** ([]string)
 
-    iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
+    portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
 
   - **iscsi.readOnly** (boolean)
 
-    ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.
+    readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.
 
   - **iscsi.secretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
 
-    CHAP Secret for iSCSI target and initiator authentication
+    secretRef is the CHAP Secret for iSCSI target and initiator authentication
 
 - **nfs** (NFSVolumeSource)
 
-  NFS represents an NFS mount on the host that shares a pod's lifetime More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+  nfs represents an NFS mount on the host that shares a pod's lifetime More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
 
   <a name="NFSVolumeSource"></a>
   *Represents an NFS mount that lasts the lifetime of a pod. NFS volumes do not support ownership management or SELinux relabeling.*
 
   - **nfs.path** (string), required
 
-    Path that is exported by the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+    path that is exported by the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
 
   - **nfs.server** (string), required
 
-    Server is the hostname or IP address of the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+    server is the hostname or IP address of the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
 
   - **nfs.readOnly** (boolean)
 
-    ReadOnly here will force the NFS export to be mounted with read-only permissions. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+    readOnly here will force the NFS export to be mounted with read-only permissions. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
 
 - **photonPersistentDisk** (PhotonPersistentDiskVolumeSource)
 
-  PhotonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine
+  photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine
 
   <a name="PhotonPersistentDiskVolumeSource"></a>
   *Represents a Photon Controller persistent disk resource.*
 
   - **photonPersistentDisk.pdID** (string), required
 
-    ID that identifies Photon Controller persistent disk
+    pdID is the ID that identifies Photon Controller persistent disk
 
   - **photonPersistentDisk.fsType** (string)
 
-    Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+    fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
 
 - **portworxVolume** (PortworxVolumeSource)
 
-  PortworxVolume represents a portworx volume attached and mounted on kubelets host machine
+  portworxVolume represents a portworx volume attached and mounted on kubelets host machine
 
   <a name="PortworxVolumeSource"></a>
   *PortworxVolumeSource represents a Portworx volume resource.*
 
   - **portworxVolume.volumeID** (string), required
 
-    VolumeID uniquely identifies a Portworx volume
+    volumeID uniquely identifies a Portworx volume
 
   - **portworxVolume.fsType** (string)
 
-    FSType represents the filesystem type to mount Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs". Implicitly inferred to be "ext4" if unspecified.
+    fSType represents the filesystem type to mount Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs". Implicitly inferred to be "ext4" if unspecified.
 
   - **portworxVolume.readOnly** (boolean)
 
-    Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+    readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
 
 - **quobyte** (QuobyteVolumeSource)
 
-  Quobyte represents a Quobyte mount on the host that shares a pod's lifetime
+  quobyte represents a Quobyte mount on the host that shares a pod's lifetime
 
   <a name="QuobyteVolumeSource"></a>
   *Represents a Quobyte mount that lasts the lifetime of a pod. Quobyte volumes do not support ownership management or SELinux relabeling.*
 
   - **quobyte.registry** (string), required
 
-    Registry represents a single or multiple Quobyte Registry services specified as a string as host:port pair (multiple entries are separated with commas) which acts as the central registry for volumes
+    registry represents a single or multiple Quobyte Registry services specified as a string as host:port pair (multiple entries are separated with commas) which acts as the central registry for volumes
 
   - **quobyte.volume** (string), required
 
-    Volume is a string that references an already created Quobyte volume by name.
+    volume is a string that references an already created Quobyte volume by name.
 
   - **quobyte.group** (string)
 
-    Group to map volume access to Default is no group
+    group to map volume access to Default is no group
 
   - **quobyte.readOnly** (boolean)
 
-    ReadOnly here will force the Quobyte volume to be mounted with read-only permissions. Defaults to false.
+    readOnly here will force the Quobyte volume to be mounted with read-only permissions. Defaults to false.
 
   - **quobyte.tenant** (string)
 
-    Tenant owning the given Quobyte volume in the Backend Used with dynamically provisioned Quobyte volumes, value is set by the plugin
+    tenant owning the given Quobyte volume in the Backend Used with dynamically provisioned Quobyte volumes, value is set by the plugin
 
   - **quobyte.user** (string)
 
-    User to map volume access to Defaults to serivceaccount user
+    user to map volume access to Defaults to serivceaccount user
 
 - **rbd** (RBDVolumeSource)
 
-  RBD represents a Rados Block Device mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md
+  rbd represents a Rados Block Device mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md
 
   <a name="RBDVolumeSource"></a>
   *Represents a Rados Block Device mount that lasts the lifetime of a pod. RBD volumes support ownership management and SELinux relabeling.*
 
   - **rbd.image** (string), required
 
-    The rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+    image is the rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
 
   - **rbd.monitors** ([]string), required
 
-    A collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+    monitors is a collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
 
   - **rbd.fsType** (string)
 
-    Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd
+    fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd
 
   - **rbd.keyring** (string)
 
-    Keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+    keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
 
   - **rbd.pool** (string)
 
-    The rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+    pool is the rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
 
   - **rbd.readOnly** (boolean)
 
-    ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+    readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
 
   - **rbd.secretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
 
-    SecretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+    secretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
 
   - **rbd.user** (string)
 
-    The rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+    user is the rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
 
 - **scaleIO** (ScaleIOVolumeSource)
 
-  ScaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.
+  scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.
 
   <a name="ScaleIOVolumeSource"></a>
   *ScaleIOVolumeSource represents a persistent ScaleIO volume*
 
   - **scaleIO.gateway** (string), required
 
-    The host address of the ScaleIO API Gateway.
+    gateway is the host address of the ScaleIO API Gateway.
 
   - **scaleIO.secretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>), required
 
-    SecretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail.
+    secretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail.
 
   - **scaleIO.system** (string), required
 
-    The name of the storage system as configured in ScaleIO.
+    system is the name of the storage system as configured in ScaleIO.
 
   - **scaleIO.fsType** (string)
 
-    Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Default is "xfs".
+    fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Default is "xfs".
 
   - **scaleIO.protectionDomain** (string)
 
-    The name of the ScaleIO Protection Domain for the configured storage.
+    protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.
 
   - **scaleIO.readOnly** (boolean)
 
-    Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+    readOnly Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
 
   - **scaleIO.sslEnabled** (boolean)
 
-    Flag to enable/disable SSL communication with Gateway, default false
+    sslEnabled Flag enable/disable SSL communication with Gateway, default false
 
   - **scaleIO.storageMode** (string)
 
-    Indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.
+    storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.
 
   - **scaleIO.storagePool** (string)
 
-    The ScaleIO Storage Pool associated with the protection domain.
+    storagePool is the ScaleIO Storage Pool associated with the protection domain.
 
   - **scaleIO.volumeName** (string)
 
-    The name of a volume already created in the ScaleIO system that is associated with this volume source.
+    volumeName is the name of a volume already created in the ScaleIO system that is associated with this volume source.
 
 - **storageos** (StorageOSVolumeSource)
 
-  StorageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.
+  storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.
 
   <a name="StorageOSVolumeSource"></a>
   *Represents a StorageOS persistent volume resource.*
 
   - **storageos.fsType** (string)
 
-    Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+    fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
 
   - **storageos.readOnly** (boolean)
 
-    Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+    readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
 
   - **storageos.secretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
 
-    SecretRef specifies the secret to use for obtaining the StorageOS API credentials.  If not specified, default values will be attempted.
+    secretRef specifies the secret to use for obtaining the StorageOS API credentials.  If not specified, default values will be attempted.
 
   - **storageos.volumeName** (string)
 
-    VolumeName is the human-readable name of the StorageOS volume.  Volume names are only unique within a namespace.
+    volumeName is the human-readable name of the StorageOS volume.  Volume names are only unique within a namespace.
 
   - **storageos.volumeNamespace** (string)
 
-    VolumeNamespace specifies the scope of the volume within StorageOS.  If no namespace is specified then the Pod's namespace will be used.  This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to "default" if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.
+    volumeNamespace specifies the scope of the volume within StorageOS.  If no namespace is specified then the Pod's namespace will be used.  This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to "default" if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.
 
 - **vsphereVolume** (VsphereVirtualDiskVolumeSource)
 
-  VsphereVolume represents a vSphere volume attached and mounted on kubelets host machine
+  vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine
 
   <a name="VsphereVirtualDiskVolumeSource"></a>
   *Represents a vSphere volume resource.*
 
   - **vsphereVolume.volumePath** (string), required
 
-    Path that identifies vSphere volume vmdk
+    volumePath is the path that identifies vSphere volume vmdk
 
   - **vsphereVolume.fsType** (string)
 
-    Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+    fsType is filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
 
   - **vsphereVolume.storagePolicyID** (string)
 
-    Storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.
+    storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.
 
   - **vsphereVolume.storagePolicyName** (string)
 
-    Storage Policy Based Management (SPBM) profile name.
+    storagePolicyName is the storage Policy Based Management (SPBM) profile name.
 
 ### Alpha level
 
 
 - **ephemeral** (EphemeralVolumeSource)
 
-  Ephemeral represents a volume that is handled by a cluster storage driver. The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts, and deleted when the pod is removed.
+  ephemeral represents a volume that is handled by a cluster storage driver. The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts, and deleted when the pod is removed.
   
   Use this if: a) the volume is only needed while the pod runs, b) features of normal volumes like restoring from snapshot or capacity
      tracking are needed,
@@ -809,8 +809,6 @@ Volume represents a named volume in a pod that may be accessed by any container
   Use CSI for light-weight local ephemeral volumes if the CSI driver is meant to be used that way - see the documentation of the driver for more information.
   
   A pod can use both types of ephemeral volumes and persistent volumes at the same time.
-  
-  This is a beta feature and only available when the GenericEphemeralVolume feature gate is enabled.
 
   <a name="EphemeralVolumeSource"></a>
   *Represents an ephemeral volume that is handled by a normal storage driver.*
@@ -841,7 +839,7 @@ Volume represents a named volume in a pod that may be accessed by any container
 
 - **gitRepo** (GitRepoVolumeSource)
 
-  GitRepo represents a git repository at a particular revision. DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod's container.
+  gitRepo represents a git repository at a particular revision. DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod's container.
 
   <a name="GitRepoVolumeSource"></a>
   *Represents a volume that is populated with the contents of a git repository. Git repo volumes do not support ownership management. Git repo volumes support SELinux relabeling.
@@ -850,15 +848,15 @@ Volume represents a named volume in a pod that may be accessed by any container
 
   - **gitRepo.repository** (string), required
 
-    Repository URL
+    repository is the URL
 
   - **gitRepo.directory** (string)
 
-    Target directory name. Must not contain or start with '..'.  If '.' is supplied, the volume directory will be the git repository.  Otherwise, if specified, the volume will contain the git repository in the subdirectory with the given name.
+    directory is the target directory name. Must not contain or start with '..'.  If '.' is supplied, the volume directory will be the git repository.  Otherwise, if specified, the volume will contain the git repository in the subdirectory with the given name.
 
   - **gitRepo.revision** (string)
 
-    Commit hash for the specified revision.
+    revision is the commit hash for the specified revision.
 
 
 
@@ -896,15 +894,15 @@ Maps a string key to a path within a volume.
 
 - **key** (string), required
 
-  The key to project.
+  key is the key to project.
 
 - **path** (string), required
 
-  The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+  path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
 
 - **mode** (int32)
 
-  Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+  mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
 
 
 
diff --git a/content/en/docs/reference/kubernetes-api/extend-resources/custom-resource-definition-v1.md b/content/en/docs/reference/kubernetes-api/extend-resources/custom-resource-definition-v1.md
index 89cb9687f6..df6d44e404 100644
--- a/content/en/docs/reference/kubernetes-api/extend-resources/custom-resource-definition-v1.md
+++ b/content/en/docs/reference/kubernetes-api/extend-resources/custom-resource-definition-v1.md
@@ -490,6 +490,49 @@ JSONSchemaProps is a JSON-Schema following Specification Draft 4 (http://json-sc
 
   x-kubernetes-preserve-unknown-fields stops the API server decoding step from pruning fields which are not specified in the validation schema. This affects fields recursively, but switches back to normal pruning behaviour if nested properties or additionalProperties are specified in the schema. This can either be true or undefined. False is forbidden.
 
+- **x-kubernetes-validations** ([]ValidationRule)
+
+  *Patch strategy: merge on key `rule`*
+  
+  *Map: unique values on key rule will be kept during a merge*
+  
+  x-kubernetes-validations describes a list of validation rules written in the CEL expression language. This field is an alpha-level. Using this field requires the feature gate `CustomResourceValidationExpressions` to be enabled.
+
+  <a name="ValidationRule"></a>
+  *ValidationRule describes a validation rule written in the CEL expression language.*
+
+  - **x-kubernetes-validations.rule** (string), required
+
+    Rule represents the expression which will be evaluated by CEL. ref: https://github.com/google/cel-spec The Rule is scoped to the location of the x-kubernetes-validations extension in the schema. The `self` variable in the CEL expression is bound to the scoped value. Example: - Rule scoped to the root of a resource with a status subresource: {"rule": "self.status.actual \<= self.spec.maxDesired"}
+    
+    If the Rule is scoped to an object with properties, the accessible properties of the object are field selectable via `self.field` and field presence can be checked via `has(self.field)`. Null valued fields are treated as absent fields in CEL expressions. If the Rule is scoped to an object with additionalProperties (i.e. a map) the value of the map are accessible via `self[mapKey]`, map containment can be checked via `mapKey in self` and all entries of the map are accessible via CEL macros and functions such as `self.all(...)`. If the Rule is scoped to an array, the elements of the array are accessible via `self[i]` and also by macros and functions. If the Rule is scoped to a scalar, `self` is bound to the scalar value. Examples: - Rule scoped to a map of objects: {"rule": "self.components['Widget'].priority \< 10"} - Rule scoped to a list of integers: {"rule": "self.values.all(value, value >= 0 && value \< 100)"} - Rule scoped to a string value: {"rule": "self.startsWith('kube')"}
+    
+    The `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the object and from any x-kubernetes-embedded-resource annotated objects. No other metadata properties are accessible.
+    
+    Unknown data preserved in custom resources via x-kubernetes-preserve-unknown-fields is not accessible in CEL expressions. This includes: - Unknown field values that are preserved by object schemas with x-kubernetes-preserve-unknown-fields. - Object properties where the property schema is of an "unknown type". An "unknown type" is recursively defined as:
+      - A schema with no type and x-kubernetes-preserve-unknown-fields set to true
+      - An array where the items schema is of an "unknown type"
+      - An object where the additionalProperties schema is of an "unknown type"
+    
+    Only property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible. Accessible property names are escaped according to the following rules when accessed in the expression: - '__' escapes to '__underscores__' - '.' escapes to '__dot__' - '-' escapes to '__dash__' - '/' escapes to '__slash__' - Property names that exactly match a CEL RESERVED keyword escape to '__{keyword}__'. The keywords are:
+    	  "true", "false", "null", "in", "as", "break", "const", "continue", "else", "for", "function", "if",
+    	  "import", "let", "loop", "package", "namespace", "return".
+    Examples:
+      - Rule accessing a property named "namespace": {"rule": "self.__namespace__ > 0"}
+      - Rule accessing a property named "x-prop": {"rule": "self.x__dash__prop > 0"}
+      - Rule accessing a property named "redact__d": {"rule": "self.redact__underscores__d > 0"}
+    
+    Equality on arrays with x-kubernetes-list-type of 'set' or 'map' ignores element order, i.e. [1, 2] == [2, 1]. Concatenation on arrays with x-kubernetes-list-type use the semantics of the list type:
+      - 'set': `X + Y` performs a union where the array positions of all elements in `X` are preserved and
+        non-intersecting elements in `Y` are appended, retaining their partial order.
+      - 'map': `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values
+        are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with
+        non-intersecting keys are appended, retaining their partial order.
+
+  - **x-kubernetes-validations.message** (string)
+
+    Message represents the message displayed when validation fails. The message is required if the Rule contains line breaks. The message must not contain line breaks. If unset, the message is "failed rule: {Rule}". e.g. "must be a URL with the host matching spec.host"
+
 
 
 
@@ -756,6 +799,11 @@ POST /apis/apiextensions.k8s.io/v1/customresourcedefinitions
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -803,6 +851,11 @@ PUT /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -848,6 +901,11 @@ PUT /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -893,6 +951,11 @@ PATCH /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -943,6 +1006,11 @@ PATCH /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/extend-resources/mutating-webhook-configuration-v1.md b/content/en/docs/reference/kubernetes-api/extend-resources/mutating-webhook-configuration-v1.md
index 499daa6405..2607b0577a 100644
--- a/content/en/docs/reference/kubernetes-api/extend-resources/mutating-webhook-configuration-v1.md
+++ b/content/en/docs/reference/kubernetes-api/extend-resources/mutating-webhook-configuration-v1.md
@@ -371,6 +371,11 @@ POST /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -418,6 +423,11 @@ PUT /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -463,6 +473,11 @@ PATCH /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/extend-resources/validating-webhook-configuration-v1.md b/content/en/docs/reference/kubernetes-api/extend-resources/validating-webhook-configuration-v1.md
index 417f90402e..9cd4694781 100644
--- a/content/en/docs/reference/kubernetes-api/extend-resources/validating-webhook-configuration-v1.md
+++ b/content/en/docs/reference/kubernetes-api/extend-resources/validating-webhook-configuration-v1.md
@@ -361,6 +361,11 @@ POST /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -408,6 +413,11 @@ PUT /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -453,6 +463,11 @@ PATCH /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations/{nam
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/policy-resources/limit-range-v1.md b/content/en/docs/reference/kubernetes-api/policy-resources/limit-range-v1.md
index 36d9ff42c4..3be570cfb0 100644
--- a/content/en/docs/reference/kubernetes-api/policy-resources/limit-range-v1.md
+++ b/content/en/docs/reference/kubernetes-api/policy-resources/limit-range-v1.md
@@ -329,6 +329,11 @@ POST /api/v1/namespaces/{namespace}/limitranges
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -381,6 +386,11 @@ PUT /api/v1/namespaces/{namespace}/limitranges/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -431,6 +441,11 @@ PATCH /api/v1/namespaces/{namespace}/limitranges/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/policy-resources/network-policy-v1.md b/content/en/docs/reference/kubernetes-api/policy-resources/network-policy-v1.md
index 2ba558d7b1..5236b927c8 100644
--- a/content/en/docs/reference/kubernetes-api/policy-resources/network-policy-v1.md
+++ b/content/en/docs/reference/kubernetes-api/policy-resources/network-policy-v1.md
@@ -46,6 +46,10 @@ NetworkPolicy describes what network traffic is allowed for a set of Pods
 
   Specification of the desired behavior for this NetworkPolicy.
 
+- **status** (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicyStatus" >}}">NetworkPolicyStatus</a>)
+
+  Status is the current state of the NetworkPolicy. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
 
 
 
@@ -194,6 +198,54 @@ NetworkPolicySpec provides the specification of a NetworkPolicy
 
 
 
+## NetworkPolicyStatus {#NetworkPolicyStatus}
+
+NetworkPolicyStatus describe the current state of the NetworkPolicy.
+
+<hr>
+
+- **conditions** ([]Condition)
+
+  *Patch strategy: merge on key `type`*
+  
+  *Map: unique values on key type will be kept during a merge*
+  
+  Conditions holds an array of metav1.Condition that describe the state of the NetworkPolicy. Current service state
+
+  <a name="Condition"></a>
+  *Condition contains details for one aspect of the current state of this API Resource.*
+
+  - **conditions.lastTransitionTime** (Time), required
+
+    lastTransitionTime is the last time the condition transitioned from one status to another. This should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.
+
+    <a name="Time"></a>
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+
+  - **conditions.message** (string), required
+
+    message is a human readable message indicating details about the transition. This may be an empty string.
+
+  - **conditions.reason** (string), required
+
+    reason contains a programmatic identifier indicating the reason for the condition's last transition. Producers of specific condition types may define expected values and meanings for this field, and whether the values are considered a guaranteed API. The value should be a CamelCase string. This field may not be empty.
+
+  - **conditions.status** (string), required
+
+    status of the condition, one of True, False, Unknown.
+
+  - **conditions.type** (string), required
+
+    type of condition in CamelCase or in foo.example.com/CamelCase.
+
+  - **conditions.observedGeneration** (int64)
+
+    observedGeneration represents the .metadata.generation that the condition was set based upon. For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date with respect to the current state of the instance.
+
+
+
+
+
 ## NetworkPolicyList {#NetworkPolicyList}
 
 NetworkPolicyList is a list of NetworkPolicy objects.
@@ -254,6 +306,39 @@ GET /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}
 
 
 
+#### Response
+
+
+200 (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>): OK
+
+401: Unauthorized
+
+
+### `get` read status of the specified NetworkPolicy
+
+#### HTTP Request
+
+GET /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}/status
+
+#### Parameters
+
+
+- **name** (*in path*): string, required
+
+  name of the NetworkPolicy
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+
 #### Response
 
 
@@ -432,6 +517,11 @@ POST /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -484,6 +574,66 @@ PUT /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+
+#### Response
+
+
+200 (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>): Created
+
+401: Unauthorized
+
+
+### `update` replace status of the specified NetworkPolicy
+
+#### HTTP Request
+
+PUT /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}/status
+
+#### Parameters
+
+
+- **name** (*in path*): string, required
+
+  name of the NetworkPolicy
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>, required
+
+  
+
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -534,6 +684,71 @@ PATCH /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+
+#### Response
+
+
+200 (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>): Created
+
+401: Unauthorized
+
+
+### `patch` partially update status of the specified NetworkPolicy
+
+#### HTTP Request
+
+PATCH /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}/status
+
+#### Parameters
+
+
+- **name** (*in path*): string, required
+
+  name of the NetworkPolicy
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+
+  
+
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/policy-resources/pod-disruption-budget-v1.md b/content/en/docs/reference/kubernetes-api/policy-resources/pod-disruption-budget-v1.md
index 5b88652bb2..e1fc792736 100644
--- a/content/en/docs/reference/kubernetes-api/policy-resources/pod-disruption-budget-v1.md
+++ b/content/en/docs/reference/kubernetes-api/policy-resources/pod-disruption-budget-v1.md
@@ -436,6 +436,11 @@ POST /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -488,6 +493,11 @@ PUT /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -538,6 +548,11 @@ PUT /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -588,6 +603,11 @@ PATCH /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -643,6 +663,11 @@ PATCH /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/policy-resources/pod-security-policy-v1beta1.md b/content/en/docs/reference/kubernetes-api/policy-resources/pod-security-policy-v1beta1.md
index 2f03cfa5bf..699e0e671f 100644
--- a/content/en/docs/reference/kubernetes-api/policy-resources/pod-security-policy-v1beta1.md
+++ b/content/en/docs/reference/kubernetes-api/policy-resources/pod-security-policy-v1beta1.md
@@ -482,6 +482,11 @@ POST /apis/policy/v1beta1/podsecuritypolicies
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -529,6 +534,11 @@ PUT /apis/policy/v1beta1/podsecuritypolicies/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -574,6 +584,11 @@ PATCH /apis/policy/v1beta1/podsecuritypolicies/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/policy-resources/resource-quota-v1.md b/content/en/docs/reference/kubernetes-api/policy-resources/resource-quota-v1.md
index e71631863e..4675db7475 100644
--- a/content/en/docs/reference/kubernetes-api/policy-resources/resource-quota-v1.md
+++ b/content/en/docs/reference/kubernetes-api/policy-resources/resource-quota-v1.md
@@ -81,10 +81,14 @@ ResourceQuotaSpec defines the desired hard limits to enforce for Quota.
     - **scopeSelector.matchExpressions.operator** (string), required
 
       Represents a scope's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist.
+      
+      
 
     - **scopeSelector.matchExpressions.scopeName** (string), required
 
       The name of the scope that the selector applies to.
+      
+      
 
     - **scopeSelector.matchExpressions.values** ([]string)
 
@@ -387,6 +391,11 @@ POST /api/v1/namespaces/{namespace}/resourcequotas
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -439,6 +448,11 @@ PUT /api/v1/namespaces/{namespace}/resourcequotas/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -489,6 +503,11 @@ PUT /api/v1/namespaces/{namespace}/resourcequotas/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -539,6 +558,11 @@ PATCH /api/v1/namespaces/{namespace}/resourcequotas/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -594,6 +618,11 @@ PATCH /api/v1/namespaces/{namespace}/resourcequotas/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/service-resources/endpoint-slice-v1.md b/content/en/docs/reference/kubernetes-api/service-resources/endpoint-slice-v1.md
index b602f0e728..f3f956221f 100644
--- a/content/en/docs/reference/kubernetes-api/service-resources/endpoint-slice-v1.md
+++ b/content/en/docs/reference/kubernetes-api/service-resources/endpoint-slice-v1.md
@@ -45,6 +45,8 @@ EndpointSlice represents a subset of the endpoints that implement a service. For
 - **addressType** (string), required
 
   addressType specifies the type of address carried by this EndpointSlice. All addresses in this slice must be the same type. This field is immutable after creation. The following address types are currently supported: * IPv4: Represents an IPv4 Address. * IPv6: Represents an IPv6 Address. * FQDN: Represents a Fully Qualified Domain Name.
+  
+  
 
 - **endpoints** ([]Endpoint), required
 
@@ -59,7 +61,7 @@ EndpointSlice represents a subset of the endpoints that implement a service. For
 
     *Set: unique values will be kept during a merge*
     
-    addresses of this endpoint. The contents of this field are interpreted according to the corresponding EndpointSlice addressType field. Consumers must handle different types of addresses in the context of their own capabilities. This must contain at least one address but no more than 100.
+    addresses of this endpoint. The contents of this field are interpreted according to the corresponding EndpointSlice addressType field. Consumers must handle different types of addresses in the context of their own capabilities. This must contain at least one address but no more than 100. These are all assumed to be fungible and clients may choose to only use the first element. Refer to: https://issue.k8s.io/106267
 
   - **endpoints.conditions** (EndpointConditions)
 
@@ -143,7 +145,7 @@ EndpointSlice represents a subset of the endpoints that implement a service. For
 
   - **ports.appProtocol** (string)
 
-    The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and http://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.
+    The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and https://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.
 
 
 
@@ -387,6 +389,11 @@ POST /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -439,6 +446,11 @@ PUT /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -489,6 +501,11 @@ PATCH /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/service-resources/endpoints-v1.md b/content/en/docs/reference/kubernetes-api/service-resources/endpoints-v1.md
index ccc385b983..73a1290c76 100644
--- a/content/en/docs/reference/kubernetes-api/service-resources/endpoints-v1.md
+++ b/content/en/docs/reference/kubernetes-api/service-resources/endpoints-v1.md
@@ -127,6 +127,8 @@ Endpoints is a collection of endpoints that implement the actual service. Exampl
     - **subsets.ports.protocol** (string)
 
       The IP protocol for this port. Must be UDP, TCP, or SCTP. Default is TCP.
+      
+      
 
     - **subsets.ports.name** (string)
 
@@ -134,7 +136,7 @@ Endpoints is a collection of endpoints that implement the actual service. Exampl
 
     - **subsets.ports.appProtocol** (string)
 
-      The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and http://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.
+      The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and https://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.
 
 
 
@@ -378,6 +380,11 @@ POST /api/v1/namespaces/{namespace}/endpoints
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -430,6 +437,11 @@ PUT /api/v1/namespaces/{namespace}/endpoints/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -480,6 +492,11 @@ PATCH /api/v1/namespaces/{namespace}/endpoints/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/service-resources/ingress-class-v1.md b/content/en/docs/reference/kubernetes-api/service-resources/ingress-class-v1.md
index 335597af49..009a5b7f9e 100644
--- a/content/en/docs/reference/kubernetes-api/service-resources/ingress-class-v1.md
+++ b/content/en/docs/reference/kubernetes-api/service-resources/ingress-class-v1.md
@@ -85,7 +85,7 @@ IngressClassSpec provides information about the class of an Ingress.
 
   - **parameters.scope** (string)
 
-    Scope represents if this refers to a cluster or namespace scoped resource. This may be set to "Cluster" (default) or "Namespace". Field can be enabled with IngressClassNamespacedParams feature gate.
+    Scope represents if this refers to a cluster or namespace scoped resource. This may be set to "Cluster" (default) or "Namespace".
 
 
 
@@ -246,6 +246,11 @@ POST /apis/networking.k8s.io/v1/ingressclasses
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -293,6 +298,11 @@ PUT /apis/networking.k8s.io/v1/ingressclasses/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -338,6 +348,11 @@ PATCH /apis/networking.k8s.io/v1/ingressclasses/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/service-resources/ingress-v1.md b/content/en/docs/reference/kubernetes-api/service-resources/ingress-v1.md
index 7bdec1fcb2..5a8bb7fd8e 100644
--- a/content/en/docs/reference/kubernetes-api/service-resources/ingress-v1.md
+++ b/content/en/docs/reference/kubernetes-api/service-resources/ingress-v1.md
@@ -232,6 +232,8 @@ IngressStatus describe the current state of the Ingress.
       - **loadBalancer.ingress.ports.protocol** (string), required
 
         Protocol is the protocol of the service port of which status is recorded here The supported values are: "TCP", "UDP", "SCTP"
+        
+        
 
       - **loadBalancer.ingress.ports.error** (string)
 
@@ -517,6 +519,11 @@ POST /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -569,6 +576,11 @@ PUT /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -619,6 +631,11 @@ PUT /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -669,6 +686,11 @@ PATCH /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -724,6 +746,11 @@ PATCH /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/service-resources/service-v1.md b/content/en/docs/reference/kubernetes-api/service-resources/service-v1.md
index c49b2607c1..49b230dd2f 100644
--- a/content/en/docs/reference/kubernetes-api/service-resources/service-v1.md
+++ b/content/en/docs/reference/kubernetes-api/service-resources/service-v1.md
@@ -89,6 +89,8 @@ ServiceSpec describes the attributes that a user creates on a service.
   - **ports.protocol** (string)
 
     The IP protocol for this port. Supports "TCP", "UDP", and "SCTP". Default is TCP.
+    
+    
 
   - **ports.name** (string)
 
@@ -100,23 +102,25 @@ ServiceSpec describes the attributes that a user creates on a service.
 
   - **ports.appProtocol** (string)
 
-    The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and http://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.
+    The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and https://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.
 
 - **type** (string)
 
   type determines how the Service is exposed. Defaults to ClusterIP. Valid options are ExternalName, ClusterIP, NodePort, and LoadBalancer. "ClusterIP" allocates a cluster-internal IP address for load-balancing to endpoints. Endpoints are determined by the selector or if that is not specified, by manual construction of an Endpoints object or EndpointSlice objects. If clusterIP is "None", no virtual IP is allocated and the endpoints are published as a set of endpoints rather than a virtual IP. "NodePort" builds on ClusterIP and allocates a port on every node which routes to the same endpoints as the clusterIP. "LoadBalancer" builds on NodePort and creates an external load-balancer (if supported in the current cloud) which routes to the same endpoints as the clusterIP. "ExternalName" aliases this service to the specified externalName. Several other fields do not apply to ExternalName services. More info: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types
+  
+  
 
 - **ipFamilies** ([]string)
 
   *Atomic: will be replaced during a merge*
   
-  IPFamilies is a list of IP families (e.g. IPv4, IPv6) assigned to this service, and is gated by the "IPv6DualStack" feature gate.  This field is usually assigned automatically based on cluster configuration and the ipFamilyPolicy field. If this field is specified manually, the requested family is available in the cluster, and ipFamilyPolicy allows it, it will be used; otherwise creation of the service will fail.  This field is conditionally mutable: it allows for adding or removing a secondary IP family, but it does not allow changing the primary IP family of the Service.  Valid values are "IPv4" and "IPv6".  This field only applies to Services of types ClusterIP, NodePort, and LoadBalancer, and does apply to "headless" services.  This field will be wiped when updating a Service to type ExternalName.
+  IPFamilies is a list of IP families (e.g. IPv4, IPv6) assigned to this service. This field is usually assigned automatically based on cluster configuration and the ipFamilyPolicy field. If this field is specified manually, the requested family is available in the cluster, and ipFamilyPolicy allows it, it will be used; otherwise creation of the service will fail. This field is conditionally mutable: it allows for adding or removing a secondary IP family, but it does not allow changing the primary IP family of the Service. Valid values are "IPv4" and "IPv6".  This field only applies to Services of types ClusterIP, NodePort, and LoadBalancer, and does apply to "headless" services. This field will be wiped when updating a Service to type ExternalName.
   
   This field may hold a maximum of two entries (dual-stack families, in either order).  These families must correspond to the values of the clusterIPs field, if specified. Both clusterIPs and ipFamilies are governed by the ipFamilyPolicy field.
 
 - **ipFamilyPolicy** (string)
 
-  IPFamilyPolicy represents the dual-stack-ness requested or required by this Service, and is gated by the "IPv6DualStack" feature gate.  If there is no value provided, then this field will be set to SingleStack. Services can be "SingleStack" (a single IP family), "PreferDualStack" (two IP families on dual-stack configured clusters or a single IP family on single-stack clusters), or "RequireDualStack" (two IP families on dual-stack configured clusters, otherwise fail). The ipFamilies and clusterIPs fields depend on the value of this field.  This field will be wiped when updating a service to type ExternalName.
+  IPFamilyPolicy represents the dual-stack-ness requested or required by this Service. If there is no value provided, then this field will be set to SingleStack. Services can be "SingleStack" (a single IP family), "PreferDualStack" (two IP families on dual-stack configured clusters or a single IP family on single-stack clusters), or "RequireDualStack" (two IP families on dual-stack configured clusters, otherwise fail). The ipFamilies and clusterIPs fields depend on the value of this field. This field will be wiped when updating a service to type ExternalName.
 
 - **clusterIP** (string)
 
@@ -128,7 +132,7 @@ ServiceSpec describes the attributes that a user creates on a service.
   
   ClusterIPs is a list of IP addresses assigned to this service, and are usually assigned randomly.  If an address is specified manually, is in-range (as per system configuration), and is not in use, it will be allocated to the service; otherwise creation of the service will fail. This field may not be changed through updates unless the type field is also being changed to ExternalName (which requires this field to be empty) or the type field is being changed from ExternalName (in which case this field may optionally be specified, as describe above).  Valid values are "None", empty string (""), or a valid IP address.  Setting this to "None" makes a "headless service" (no virtual IP), which is useful when direct endpoint connections are preferred and proxying is not required.  Only applies to types ClusterIP, NodePort, and LoadBalancer. If this field is specified when creating a Service of type ExternalName, creation will fail. This field will be wiped when updating a Service to type ExternalName.  If this field is not specified, it will be initialized from the clusterIP field.  If this field is specified, clients must ensure that clusterIPs[0] and clusterIP have the same value.
   
-  Unless the "IPv6DualStack" feature gate is enabled, this field is limited to one value, which must be the same as the clusterIP field.  If the feature gate is enabled, this field may hold a maximum of two entries (dual-stack IPs, in either order).  These IPs must correspond to the values of the ipFamilies field. Both clusterIPs and ipFamilies are governed by the ipFamilyPolicy field. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies
+  This field may hold a maximum of two entries (dual-stack IPs, in either order). These IPs must correspond to the values of the ipFamilies field. Both clusterIPs and ipFamilies are governed by the ipFamilyPolicy field. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies
 
 - **externalIPs** ([]string)
 
@@ -137,10 +141,12 @@ ServiceSpec describes the attributes that a user creates on a service.
 - **sessionAffinity** (string)
 
   Supports "ClientIP" and "None". Used to maintain session affinity. Enable client IP based session affinity. Must be ClientIP or None. Defaults to None. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies
+  
+  
 
 - **loadBalancerIP** (string)
 
-  Only applies to Service Type: LoadBalancer LoadBalancer will get created with the IP specified in this field. This feature depends on whether the underlying cloud-provider supports specifying the loadBalancerIP when a load balancer is created. This field will be ignored if the cloud-provider does not support the feature.
+  Only applies to Service Type: LoadBalancer. This feature depends on whether the underlying cloud-provider supports specifying the loadBalancerIP when a load balancer is created. This field will be ignored if the cloud-provider does not support the feature. Deprecated: This field was under-specified and its meaning varies across implementations, and it cannot support dual-stack. As of Kubernetes v1.24, users are encouraged to use implementation-specific annotations when available. This field may be removed in a future API version.
 
 - **loadBalancerSourceRanges** ([]string)
 
@@ -157,6 +163,8 @@ ServiceSpec describes the attributes that a user creates on a service.
 - **externalTrafficPolicy** (string)
 
   externalTrafficPolicy denotes if this Service desires to route external traffic to node-local or cluster-wide endpoints. "Local" preserves the client source IP and avoids a second hop for LoadBalancer and Nodeport type services, but risks potentially imbalanced traffic spreading. "Cluster" obscures the client source IP and may cause a second hop to another node, but should have good overall load-spreading.
+  
+  
 
 - **internalTrafficPolicy** (string)
 
@@ -190,7 +198,7 @@ ServiceSpec describes the attributes that a user creates on a service.
 
 - **allocateLoadBalancerNodePorts** (boolean)
 
-  allocateLoadBalancerNodePorts defines if NodePorts will be automatically allocated for services with type LoadBalancer.  Default is "true". It may be set to "false" if the cluster load-balancer does not rely on NodePorts.  If the caller requests specific NodePorts (by specifying a value), those requests will be respected, regardless of this field. This field may only be set for services with type LoadBalancer and will be cleared if the type is changed to any other type. This field is beta-level and is only honored by servers that enable the ServiceLBNodePortControl feature.
+  allocateLoadBalancerNodePorts defines if NodePorts will be automatically allocated for services with type LoadBalancer.  Default is "true". It may be set to "false" if the cluster load-balancer does not rely on NodePorts.  If the caller requests specific NodePorts (by specifying a value), those requests will be respected, regardless of this field. This field may only be set for services with type LoadBalancer and will be cleared if the type is changed to any other type.
 
 
 
@@ -278,6 +286,8 @@ ServiceStatus represents the current status of a service.
       - **loadBalancer.ingress.ports.protocol** (string), required
 
         Protocol is the protocol of the service port of which status is recorded here The supported values are: "TCP", "UDP", "SCTP"
+        
+        
 
       - **loadBalancer.ingress.ports.error** (string)
 
@@ -561,6 +571,11 @@ POST /api/v1/namespaces/{namespace}/services
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -613,6 +628,11 @@ PUT /api/v1/namespaces/{namespace}/services/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -663,6 +683,11 @@ PUT /api/v1/namespaces/{namespace}/services/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -713,6 +738,11 @@ PATCH /api/v1/namespaces/{namespace}/services/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -768,6 +798,11 @@ PATCH /api/v1/namespaces/{namespace}/services/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -837,9 +872,92 @@ DELETE /api/v1/namespaces/{namespace}/services/{name}
 #### Response
 
 
-200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+200 (<a href="{{< ref "../service-resources/service-v1#Service" >}}">Service</a>): OK
 
-202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+202 (<a href="{{< ref "../service-resources/service-v1#Service" >}}">Service</a>): Accepted
+
+401: Unauthorized
+
+
+### `deletecollection` delete collection of Service
+
+#### HTTP Request
+
+DELETE /api/v1/namespaces/{namespace}/services
+
+#### Parameters
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+  
+
+
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+
+
+#### Response
+
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
 
 401: Unauthorized
 
diff --git a/content/en/docs/reference/kubernetes-api/workload-resources/controller-revision-v1.md b/content/en/docs/reference/kubernetes-api/workload-resources/controller-revision-v1.md
index bf3ffa7f12..cf6cdd0dff 100644
--- a/content/en/docs/reference/kubernetes-api/workload-resources/controller-revision-v1.md
+++ b/content/en/docs/reference/kubernetes-api/workload-resources/controller-revision-v1.md
@@ -322,6 +322,11 @@ POST /apis/apps/v1/namespaces/{namespace}/controllerrevisions
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -374,6 +379,11 @@ PUT /apis/apps/v1/namespaces/{namespace}/controllerrevisions/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -424,6 +434,11 @@ PATCH /apis/apps/v1/namespaces/{namespace}/controllerrevisions/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/workload-resources/cron-job-v1.md b/content/en/docs/reference/kubernetes-api/workload-resources/cron-job-v1.md
index 3aa5ceb8be..3f08903481 100644
--- a/content/en/docs/reference/kubernetes-api/workload-resources/cron-job-v1.md
+++ b/content/en/docs/reference/kubernetes-api/workload-resources/cron-job-v1.md
@@ -79,9 +79,15 @@ CronJobSpec describes how the job execution will look like and when it will actu
 
   The schedule in Cron format, see https://en.wikipedia.org/wiki/Cron.
 
+- **timeZone** (string)
+
+  The time zone for the given schedule, see https://en.wikipedia.org/wiki/List_of_tz_database_time_zones. If not specified, this will rely on the time zone of the kube-controller-manager process. ALPHA: This field is in alpha and must be enabled via the `CronJobTimeZone` feature gate.
+
 - **concurrencyPolicy** (string)
 
   Specifies how to treat concurrent executions of a Job. Valid values are: - "Allow" (default): allows CronJobs to run concurrently; - "Forbid": forbids concurrent runs, skipping next run if previous run hasn't finished yet; - "Replace": cancels currently running job and replaces it with a new one
+  
+  
 
 - **startingDeadlineSeconds** (int64)
 
@@ -404,6 +410,11 @@ POST /apis/batch/v1/namespaces/{namespace}/cronjobs
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -456,6 +467,11 @@ PUT /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -506,6 +522,11 @@ PUT /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -556,6 +577,11 @@ PATCH /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -611,6 +637,11 @@ PATCH /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/workload-resources/daemon-set-v1.md b/content/en/docs/reference/kubernetes-api/workload-resources/daemon-set-v1.md
index 9d7eb6c24c..ca18671c2f 100644
--- a/content/en/docs/reference/kubernetes-api/workload-resources/daemon-set-v1.md
+++ b/content/en/docs/reference/kubernetes-api/workload-resources/daemon-set-v1.md
@@ -82,6 +82,8 @@ DaemonSetSpec is the specification of a daemon set.
   - **updateStrategy.type** (string)
 
     Type of daemon set update. Can be "RollingUpdate" or "OnDelete". Default is RollingUpdate.
+    
+    
 
   - **updateStrategy.rollingUpdate** (RollingUpdateDaemonSet)
 
@@ -120,7 +122,7 @@ DaemonSetStatus represents the current status of a daemon set.
 
 - **numberReady** (int32), required
 
-  The number of nodes that should be running the daemon pod and have one or more of the daemon pod running and ready.
+  numberReady is the number of nodes that should be running the daemon pod and have one or more of the daemon pod running with a Ready Condition.
 
 - **numberAvailable** (int32)
 
@@ -461,6 +463,11 @@ POST /apis/apps/v1/namespaces/{namespace}/daemonsets
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -513,6 +520,11 @@ PUT /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -563,6 +575,11 @@ PUT /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -613,6 +630,11 @@ PATCH /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -668,6 +690,11 @@ PATCH /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/workload-resources/deployment-v1.md b/content/en/docs/reference/kubernetes-api/workload-resources/deployment-v1.md
index c56bf76df7..1a409e11e7 100644
--- a/content/en/docs/reference/kubernetes-api/workload-resources/deployment-v1.md
+++ b/content/en/docs/reference/kubernetes-api/workload-resources/deployment-v1.md
@@ -88,6 +88,8 @@ DeploymentSpec is the specification of the desired behavior of the Deployment.
   - **strategy.type** (string)
 
     Type of deployment. Can be "Recreate" or "RollingUpdate". Default is RollingUpdate.
+    
+    
 
   - **strategy.rollingUpdate** (RollingUpdateDeployment)
 
@@ -142,7 +144,7 @@ DeploymentStatus is the most recently observed status of the Deployment.
 
 - **readyReplicas** (int32)
 
-  Total number of ready pods targeted by this deployment.
+  readyReplicas is the number of pods targeted by this Deployment with a Ready Condition.
 
 - **unavailableReplicas** (int32)
 
@@ -474,6 +476,11 @@ POST /apis/apps/v1/namespaces/{namespace}/deployments
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -526,6 +533,11 @@ PUT /apis/apps/v1/namespaces/{namespace}/deployments/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -576,6 +588,11 @@ PUT /apis/apps/v1/namespaces/{namespace}/deployments/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -626,6 +643,11 @@ PATCH /apis/apps/v1/namespaces/{namespace}/deployments/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -681,6 +703,11 @@ PATCH /apis/apps/v1/namespaces/{namespace}/deployments/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v1.md b/content/en/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v1.md
index d2da0c286a..e75dc848c0 100644
--- a/content/en/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v1.md
+++ b/content/en/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v1.md
@@ -399,6 +399,11 @@ POST /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -451,6 +456,11 @@ PUT /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -501,6 +511,11 @@ PUT /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}/
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -551,6 +566,11 @@ PATCH /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -606,6 +626,11 @@ PATCH /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v2.md b/content/en/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v2.md
new file mode 100644
index 0000000000..682203bc1d
--- /dev/null
+++ b/content/en/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v2.md
@@ -0,0 +1,1357 @@
+---
+api_metadata:
+  apiVersion: "autoscaling/v2"
+  import: "k8s.io/api/autoscaling/v2"
+  kind: "HorizontalPodAutoscaler"
+content_type: "api_reference"
+description: "HorizontalPodAutoscaler is the configuration for a horizontal pod autoscaler, which automatically manages the replica count of any resource implementing the scale subresource based on the metrics specified."
+title: "HorizontalPodAutoscaler"
+weight: 12
+auto_generated: true
+---
+
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference content, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+`apiVersion: autoscaling/v2`
+
+`import "k8s.io/api/autoscaling/v2"`
+
+
+## HorizontalPodAutoscaler {#HorizontalPodAutoscaler}
+
+HorizontalPodAutoscaler is the configuration for a horizontal pod autoscaler, which automatically manages the replica count of any resource implementing the scale subresource based on the metrics specified.
+
+<hr>
+
+- **apiVersion**: autoscaling/v2
+
+
+- **kind**: HorizontalPodAutoscaler
+
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  metadata is the standard object metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscalerSpec" >}}">HorizontalPodAutoscalerSpec</a>)
+
+  spec is the specification for the behaviour of the autoscaler. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.
+
+- **status** (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscalerStatus" >}}">HorizontalPodAutoscalerStatus</a>)
+
+  status is the current information about the autoscaler.
+
+
+
+
+
+## HorizontalPodAutoscalerSpec {#HorizontalPodAutoscalerSpec}
+
+HorizontalPodAutoscalerSpec describes the desired functionality of the HorizontalPodAutoscaler.
+
+<hr>
+
+- **maxReplicas** (int32), required
+
+  maxReplicas is the upper limit for the number of replicas to which the autoscaler can scale up. It cannot be less that minReplicas.
+
+- **scaleTargetRef** (CrossVersionObjectReference), required
+
+  scaleTargetRef points to the target resource to scale, and is used to the pods for which metrics should be collected, as well as to actually change the replica count.
+
+  <a name="CrossVersionObjectReference"></a>
+  *CrossVersionObjectReference contains enough information to let you identify the referred resource.*
+
+  - **scaleTargetRef.kind** (string), required
+
+    Kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds"
+
+  - **scaleTargetRef.name** (string), required
+
+    Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names
+
+  - **scaleTargetRef.apiVersion** (string)
+
+    API version of the referent
+
+- **minReplicas** (int32)
+
+  minReplicas is the lower limit for the number of replicas to which the autoscaler can scale down.  It defaults to 1 pod.  minReplicas is allowed to be 0 if the alpha feature gate HPAScaleToZero is enabled and at least one Object or External metric is configured.  Scaling is active as long as at least one metric value is available.
+
+- **behavior** (HorizontalPodAutoscalerBehavior)
+
+  behavior configures the scaling behavior of the target in both Up and Down directions (scaleUp and scaleDown fields respectively). If not set, the default HPAScalingRules for scale up and scale down are used.
+
+  <a name="HorizontalPodAutoscalerBehavior"></a>
+  *HorizontalPodAutoscalerBehavior configures the scaling behavior of the target in both Up and Down directions (scaleUp and scaleDown fields respectively).*
+
+  - **behavior.scaleDown** (HPAScalingRules)
+
+    scaleDown is scaling policy for scaling Down. If not set, the default value is to allow to scale down to minReplicas pods, with a 300 second stabilization window (i.e., the highest recommendation for the last 300sec is used).
+
+    <a name="HPAScalingRules"></a>
+    *HPAScalingRules configures the scaling behavior for one direction. These Rules are applied after calculating DesiredReplicas from metrics for the HPA. They can limit the scaling velocity by specifying scaling policies. They can prevent flapping by specifying the stabilization window, so that the number of replicas is not set instantly, instead, the safest value from the stabilization window is chosen.*
+
+    - **behavior.scaleDown.policies** ([]HPAScalingPolicy)
+
+      *Atomic: will be replaced during a merge*
+      
+      policies is a list of potential scaling polices which can be used during scaling. At least one policy must be specified, otherwise the HPAScalingRules will be discarded as invalid
+
+      <a name="HPAScalingPolicy"></a>
+      *HPAScalingPolicy is a single policy which must hold true for a specified past interval.*
+
+      - **behavior.scaleDown.policies.type** (string), required
+
+        Type is used to specify the scaling policy.
+
+      - **behavior.scaleDown.policies.value** (int32), required
+
+        Value contains the amount of change which is permitted by the policy. It must be greater than zero
+
+      - **behavior.scaleDown.policies.periodSeconds** (int32), required
+
+        PeriodSeconds specifies the window of time for which the policy should hold true. PeriodSeconds must be greater than zero and less than or equal to 1800 (30 min).
+
+    - **behavior.scaleDown.selectPolicy** (string)
+
+      selectPolicy is used to specify which policy should be used. If not set, the default value Max is used.
+
+    - **behavior.scaleDown.stabilizationWindowSeconds** (int32)
+
+      StabilizationWindowSeconds is the number of seconds for which past recommendations should be considered while scaling up or scaling down. StabilizationWindowSeconds must be greater than or equal to zero and less than or equal to 3600 (one hour). If not set, use the default values: - For scale up: 0 (i.e. no stabilization is done). - For scale down: 300 (i.e. the stabilization window is 300 seconds long).
+
+  - **behavior.scaleUp** (HPAScalingRules)
+
+    scaleUp is scaling policy for scaling Up. If not set, the default value is the higher of:
+      * increase no more than 4 pods per 60 seconds
+      * double the number of pods per 60 seconds
+    No stabilization is used.
+
+    <a name="HPAScalingRules"></a>
+    *HPAScalingRules configures the scaling behavior for one direction. These Rules are applied after calculating DesiredReplicas from metrics for the HPA. They can limit the scaling velocity by specifying scaling policies. They can prevent flapping by specifying the stabilization window, so that the number of replicas is not set instantly, instead, the safest value from the stabilization window is chosen.*
+
+    - **behavior.scaleUp.policies** ([]HPAScalingPolicy)
+
+      *Atomic: will be replaced during a merge*
+      
+      policies is a list of potential scaling polices which can be used during scaling. At least one policy must be specified, otherwise the HPAScalingRules will be discarded as invalid
+
+      <a name="HPAScalingPolicy"></a>
+      *HPAScalingPolicy is a single policy which must hold true for a specified past interval.*
+
+      - **behavior.scaleUp.policies.type** (string), required
+
+        Type is used to specify the scaling policy.
+
+      - **behavior.scaleUp.policies.value** (int32), required
+
+        Value contains the amount of change which is permitted by the policy. It must be greater than zero
+
+      - **behavior.scaleUp.policies.periodSeconds** (int32), required
+
+        PeriodSeconds specifies the window of time for which the policy should hold true. PeriodSeconds must be greater than zero and less than or equal to 1800 (30 min).
+
+    - **behavior.scaleUp.selectPolicy** (string)
+
+      selectPolicy is used to specify which policy should be used. If not set, the default value Max is used.
+
+    - **behavior.scaleUp.stabilizationWindowSeconds** (int32)
+
+      StabilizationWindowSeconds is the number of seconds for which past recommendations should be considered while scaling up or scaling down. StabilizationWindowSeconds must be greater than or equal to zero and less than or equal to 3600 (one hour). If not set, use the default values: - For scale up: 0 (i.e. no stabilization is done). - For scale down: 300 (i.e. the stabilization window is 300 seconds long).
+
+- **metrics** ([]MetricSpec)
+
+  *Atomic: will be replaced during a merge*
+  
+  metrics contains the specifications for which to use to calculate the desired replica count (the maximum replica count across all metrics will be used).  The desired replica count is calculated multiplying the ratio between the target value and the current value by the current number of pods.  Ergo, metrics used must decrease as the pod count is increased, and vice-versa.  See the individual metric source types for more information about how each type of metric must respond. If not set, the default metric will be set to 80% average CPU utilization.
+
+  <a name="MetricSpec"></a>
+  *MetricSpec specifies how to scale based on a single metric (only `type` and one other matching field should be set at once).*
+
+  - **metrics.type** (string), required
+
+    type is the type of metric source.  It should be one of "ContainerResource", "External", "Object", "Pods" or "Resource", each mapping to a matching field in the object. Note: "ContainerResource" type is available on when the feature-gate HPAContainerMetrics is enabled
+
+  - **metrics.containerResource** (ContainerResourceMetricSource)
+
+    containerResource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing a single container in each pod of the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source. This is an alpha feature and can be enabled by the HPAContainerMetrics feature flag.
+
+    <a name="ContainerResourceMetricSource"></a>
+    *ContainerResourceMetricSource indicates how to scale on a resource metric known to Kubernetes, as specified in requests and limits, describing each pod in the current scale target (e.g. CPU or memory).  The values will be averaged together before being compared to the target.  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source.  Only one "target" type should be set.*
+
+    - **metrics.containerResource.container** (string), required
+
+      container is the name of the container in the pods of the scaling target
+
+    - **metrics.containerResource.name** (string), required
+
+      name is the name of the resource in question.
+
+    - **metrics.containerResource.target** (MetricTarget), required
+
+      target specifies the target value for the given metric
+
+      <a name="MetricTarget"></a>
+      *MetricTarget defines the target value, average value, or average utilization of a specific metric*
+
+      - **metrics.containerResource.target.type** (string), required
+
+        type represents whether the metric type is Utilization, Value, or AverageValue
+
+      - **metrics.containerResource.target.averageUtilization** (int32)
+
+        averageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods. Currently only valid for Resource metric source type
+
+      - **metrics.containerResource.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the target value of the average of the metric across all relevant pods (as a quantity)
+
+      - **metrics.containerResource.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the target value of the metric (as a quantity).
+
+  - **metrics.external** (ExternalMetricSource)
+
+    external refers to a global metric that is not associated with any Kubernetes object. It allows autoscaling based on information coming from components running outside of cluster (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).
+
+    <a name="ExternalMetricSource"></a>
+    *ExternalMetricSource indicates how to scale on a metric not associated with any Kubernetes object (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).*
+
+    - **metrics.external.metric** (MetricIdentifier), required
+
+      metric identifies the target metric by name and selector
+
+      <a name="MetricIdentifier"></a>
+      *MetricIdentifier defines the name and optionally selector for a metric*
+
+      - **metrics.external.metric.name** (string), required
+
+        name is the name of the given metric
+
+      - **metrics.external.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.
+
+    - **metrics.external.target** (MetricTarget), required
+
+      target specifies the target value for the given metric
+
+      <a name="MetricTarget"></a>
+      *MetricTarget defines the target value, average value, or average utilization of a specific metric*
+
+      - **metrics.external.target.type** (string), required
+
+        type represents whether the metric type is Utilization, Value, or AverageValue
+
+      - **metrics.external.target.averageUtilization** (int32)
+
+        averageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods. Currently only valid for Resource metric source type
+
+      - **metrics.external.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the target value of the average of the metric across all relevant pods (as a quantity)
+
+      - **metrics.external.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the target value of the metric (as a quantity).
+
+  - **metrics.object** (ObjectMetricSource)
+
+    object refers to a metric describing a single kubernetes object (for example, hits-per-second on an Ingress object).
+
+    <a name="ObjectMetricSource"></a>
+    *ObjectMetricSource indicates how to scale on a metric describing a kubernetes object (for example, hits-per-second on an Ingress object).*
+
+    - **metrics.object.describedObject** (CrossVersionObjectReference), required
+
+      describedObject specifies the descriptions of a object,such as kind,name apiVersion
+
+      <a name="CrossVersionObjectReference"></a>
+      *CrossVersionObjectReference contains enough information to let you identify the referred resource.*
+
+      - **metrics.object.describedObject.kind** (string), required
+
+        Kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds"
+
+      - **metrics.object.describedObject.name** (string), required
+
+        Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names
+
+      - **metrics.object.describedObject.apiVersion** (string)
+
+        API version of the referent
+
+    - **metrics.object.metric** (MetricIdentifier), required
+
+      metric identifies the target metric by name and selector
+
+      <a name="MetricIdentifier"></a>
+      *MetricIdentifier defines the name and optionally selector for a metric*
+
+      - **metrics.object.metric.name** (string), required
+
+        name is the name of the given metric
+
+      - **metrics.object.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.
+
+    - **metrics.object.target** (MetricTarget), required
+
+      target specifies the target value for the given metric
+
+      <a name="MetricTarget"></a>
+      *MetricTarget defines the target value, average value, or average utilization of a specific metric*
+
+      - **metrics.object.target.type** (string), required
+
+        type represents whether the metric type is Utilization, Value, or AverageValue
+
+      - **metrics.object.target.averageUtilization** (int32)
+
+        averageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods. Currently only valid for Resource metric source type
+
+      - **metrics.object.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the target value of the average of the metric across all relevant pods (as a quantity)
+
+      - **metrics.object.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the target value of the metric (as a quantity).
+
+  - **metrics.pods** (PodsMetricSource)
+
+    pods refers to a metric describing each pod in the current scale target (for example, transactions-processed-per-second).  The values will be averaged together before being compared to the target value.
+
+    <a name="PodsMetricSource"></a>
+    *PodsMetricSource indicates how to scale on a metric describing each pod in the current scale target (for example, transactions-processed-per-second). The values will be averaged together before being compared to the target value.*
+
+    - **metrics.pods.metric** (MetricIdentifier), required
+
+      metric identifies the target metric by name and selector
+
+      <a name="MetricIdentifier"></a>
+      *MetricIdentifier defines the name and optionally selector for a metric*
+
+      - **metrics.pods.metric.name** (string), required
+
+        name is the name of the given metric
+
+      - **metrics.pods.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.
+
+    - **metrics.pods.target** (MetricTarget), required
+
+      target specifies the target value for the given metric
+
+      <a name="MetricTarget"></a>
+      *MetricTarget defines the target value, average value, or average utilization of a specific metric*
+
+      - **metrics.pods.target.type** (string), required
+
+        type represents whether the metric type is Utilization, Value, or AverageValue
+
+      - **metrics.pods.target.averageUtilization** (int32)
+
+        averageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods. Currently only valid for Resource metric source type
+
+      - **metrics.pods.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the target value of the average of the metric across all relevant pods (as a quantity)
+
+      - **metrics.pods.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the target value of the metric (as a quantity).
+
+  - **metrics.resource** (ResourceMetricSource)
+
+    resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source.
+
+    <a name="ResourceMetricSource"></a>
+    *ResourceMetricSource indicates how to scale on a resource metric known to Kubernetes, as specified in requests and limits, describing each pod in the current scale target (e.g. CPU or memory).  The values will be averaged together before being compared to the target.  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source.  Only one "target" type should be set.*
+
+    - **metrics.resource.name** (string), required
+
+      name is the name of the resource in question.
+
+    - **metrics.resource.target** (MetricTarget), required
+
+      target specifies the target value for the given metric
+
+      <a name="MetricTarget"></a>
+      *MetricTarget defines the target value, average value, or average utilization of a specific metric*
+
+      - **metrics.resource.target.type** (string), required
+
+        type represents whether the metric type is Utilization, Value, or AverageValue
+
+      - **metrics.resource.target.averageUtilization** (int32)
+
+        averageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods. Currently only valid for Resource metric source type
+
+      - **metrics.resource.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the target value of the average of the metric across all relevant pods (as a quantity)
+
+      - **metrics.resource.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the target value of the metric (as a quantity).
+
+
+
+
+
+## HorizontalPodAutoscalerStatus {#HorizontalPodAutoscalerStatus}
+
+HorizontalPodAutoscalerStatus describes the current status of a horizontal pod autoscaler.
+
+<hr>
+
+- **desiredReplicas** (int32), required
+
+  desiredReplicas is the desired number of replicas of pods managed by this autoscaler, as last calculated by the autoscaler.
+
+- **conditions** ([]HorizontalPodAutoscalerCondition)
+
+  *Patch strategy: merge on key `type`*
+  
+  *Map: unique values on key type will be kept during a merge*
+  
+  conditions is the set of conditions required for this autoscaler to scale its target, and indicates whether or not those conditions are met.
+
+  <a name="HorizontalPodAutoscalerCondition"></a>
+  *HorizontalPodAutoscalerCondition describes the state of a HorizontalPodAutoscaler at a certain point.*
+
+  - **conditions.status** (string), required
+
+    status is the status of the condition (True, False, Unknown)
+
+  - **conditions.type** (string), required
+
+    type describes the current condition
+
+  - **conditions.lastTransitionTime** (Time)
+
+    lastTransitionTime is the last time the condition transitioned from one status to another
+
+    <a name="Time"></a>
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+
+  - **conditions.message** (string)
+
+    message is a human-readable explanation containing details about the transition
+
+  - **conditions.reason** (string)
+
+    reason is the reason for the condition's last transition.
+
+- **currentMetrics** ([]MetricStatus)
+
+  *Atomic: will be replaced during a merge*
+  
+  currentMetrics is the last read state of the metrics used by this autoscaler.
+
+  <a name="MetricStatus"></a>
+  *MetricStatus describes the last-read state of a single metric.*
+
+  - **currentMetrics.type** (string), required
+
+    type is the type of metric source.  It will be one of "ContainerResource", "External", "Object", "Pods" or "Resource", each corresponds to a matching field in the object. Note: "ContainerResource" type is available on when the feature-gate HPAContainerMetrics is enabled
+
+  - **currentMetrics.containerResource** (ContainerResourceMetricStatus)
+
+    container resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing a single container in each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source.
+
+    <a name="ContainerResourceMetricStatus"></a>
+    *ContainerResourceMetricStatus indicates the current value of a resource metric known to Kubernetes, as specified in requests and limits, describing a single container in each pod in the current scale target (e.g. CPU or memory).  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source.*
+
+    - **currentMetrics.containerResource.container** (string), required
+
+      Container is the name of the container in the pods of the scaling target
+
+    - **currentMetrics.containerResource.current** (MetricValueStatus), required
+
+      current contains the current value for the given metric
+
+      <a name="MetricValueStatus"></a>
+      *MetricValueStatus holds the current value for a metric*
+
+      - **currentMetrics.containerResource.current.averageUtilization** (int32)
+
+        currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.
+
+      - **currentMetrics.containerResource.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the current value of the average of the metric across all relevant pods (as a quantity)
+
+      - **currentMetrics.containerResource.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the current value of the metric (as a quantity).
+
+    - **currentMetrics.containerResource.name** (string), required
+
+      Name is the name of the resource in question.
+
+  - **currentMetrics.external** (ExternalMetricStatus)
+
+    external refers to a global metric that is not associated with any Kubernetes object. It allows autoscaling based on information coming from components running outside of cluster (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).
+
+    <a name="ExternalMetricStatus"></a>
+    *ExternalMetricStatus indicates the current value of a global metric not associated with any Kubernetes object.*
+
+    - **currentMetrics.external.current** (MetricValueStatus), required
+
+      current contains the current value for the given metric
+
+      <a name="MetricValueStatus"></a>
+      *MetricValueStatus holds the current value for a metric*
+
+      - **currentMetrics.external.current.averageUtilization** (int32)
+
+        currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.
+
+      - **currentMetrics.external.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the current value of the average of the metric across all relevant pods (as a quantity)
+
+      - **currentMetrics.external.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the current value of the metric (as a quantity).
+
+    - **currentMetrics.external.metric** (MetricIdentifier), required
+
+      metric identifies the target metric by name and selector
+
+      <a name="MetricIdentifier"></a>
+      *MetricIdentifier defines the name and optionally selector for a metric*
+
+      - **currentMetrics.external.metric.name** (string), required
+
+        name is the name of the given metric
+
+      - **currentMetrics.external.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.
+
+  - **currentMetrics.object** (ObjectMetricStatus)
+
+    object refers to a metric describing a single kubernetes object (for example, hits-per-second on an Ingress object).
+
+    <a name="ObjectMetricStatus"></a>
+    *ObjectMetricStatus indicates the current value of a metric describing a kubernetes object (for example, hits-per-second on an Ingress object).*
+
+    - **currentMetrics.object.current** (MetricValueStatus), required
+
+      current contains the current value for the given metric
+
+      <a name="MetricValueStatus"></a>
+      *MetricValueStatus holds the current value for a metric*
+
+      - **currentMetrics.object.current.averageUtilization** (int32)
+
+        currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.
+
+      - **currentMetrics.object.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the current value of the average of the metric across all relevant pods (as a quantity)
+
+      - **currentMetrics.object.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the current value of the metric (as a quantity).
+
+    - **currentMetrics.object.describedObject** (CrossVersionObjectReference), required
+
+      DescribedObject specifies the descriptions of a object,such as kind,name apiVersion
+
+      <a name="CrossVersionObjectReference"></a>
+      *CrossVersionObjectReference contains enough information to let you identify the referred resource.*
+
+      - **currentMetrics.object.describedObject.kind** (string), required
+
+        Kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds"
+
+      - **currentMetrics.object.describedObject.name** (string), required
+
+        Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names
+
+      - **currentMetrics.object.describedObject.apiVersion** (string)
+
+        API version of the referent
+
+    - **currentMetrics.object.metric** (MetricIdentifier), required
+
+      metric identifies the target metric by name and selector
+
+      <a name="MetricIdentifier"></a>
+      *MetricIdentifier defines the name and optionally selector for a metric*
+
+      - **currentMetrics.object.metric.name** (string), required
+
+        name is the name of the given metric
+
+      - **currentMetrics.object.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.
+
+  - **currentMetrics.pods** (PodsMetricStatus)
+
+    pods refers to a metric describing each pod in the current scale target (for example, transactions-processed-per-second).  The values will be averaged together before being compared to the target value.
+
+    <a name="PodsMetricStatus"></a>
+    *PodsMetricStatus indicates the current value of a metric describing each pod in the current scale target (for example, transactions-processed-per-second).*
+
+    - **currentMetrics.pods.current** (MetricValueStatus), required
+
+      current contains the current value for the given metric
+
+      <a name="MetricValueStatus"></a>
+      *MetricValueStatus holds the current value for a metric*
+
+      - **currentMetrics.pods.current.averageUtilization** (int32)
+
+        currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.
+
+      - **currentMetrics.pods.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the current value of the average of the metric across all relevant pods (as a quantity)
+
+      - **currentMetrics.pods.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the current value of the metric (as a quantity).
+
+    - **currentMetrics.pods.metric** (MetricIdentifier), required
+
+      metric identifies the target metric by name and selector
+
+      <a name="MetricIdentifier"></a>
+      *MetricIdentifier defines the name and optionally selector for a metric*
+
+      - **currentMetrics.pods.metric.name** (string), required
+
+        name is the name of the given metric
+
+      - **currentMetrics.pods.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.
+
+  - **currentMetrics.resource** (ResourceMetricStatus)
+
+    resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source.
+
+    <a name="ResourceMetricStatus"></a>
+    *ResourceMetricStatus indicates the current value of a resource metric known to Kubernetes, as specified in requests and limits, describing each pod in the current scale target (e.g. CPU or memory).  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source.*
+
+    - **currentMetrics.resource.current** (MetricValueStatus), required
+
+      current contains the current value for the given metric
+
+      <a name="MetricValueStatus"></a>
+      *MetricValueStatus holds the current value for a metric*
+
+      - **currentMetrics.resource.current.averageUtilization** (int32)
+
+        currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.
+
+      - **currentMetrics.resource.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the current value of the average of the metric across all relevant pods (as a quantity)
+
+      - **currentMetrics.resource.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the current value of the metric (as a quantity).
+
+    - **currentMetrics.resource.name** (string), required
+
+      Name is the name of the resource in question.
+
+- **currentReplicas** (int32)
+
+  currentReplicas is current number of replicas of pods managed by this autoscaler, as last seen by the autoscaler.
+
+- **lastScaleTime** (Time)
+
+  lastScaleTime is the last time the HorizontalPodAutoscaler scaled the number of pods, used by the autoscaler to control how often the number of pods is changed.
+
+  <a name="Time"></a>
+  *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+
+- **observedGeneration** (int64)
+
+  observedGeneration is the most recent generation observed by this autoscaler.
+
+
+
+
+
+## HorizontalPodAutoscalerList {#HorizontalPodAutoscalerList}
+
+HorizontalPodAutoscalerList is a list of horizontal pod autoscaler objects.
+
+<hr>
+
+- **apiVersion**: autoscaling/v2
+
+
+- **kind**: HorizontalPodAutoscalerList
+
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  metadata is the standard list metadata.
+
+- **items** ([]<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>), required
+
+  items is the list of horizontal pod autoscaler objects.
+
+
+
+
+
+## Operations {#Operations}
+
+
+
+<hr>
+
+
+
+
+
+
+### `get` read the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+
+GET /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}
+
+#### Parameters
+
+
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+401: Unauthorized
+
+
+### `get` read status of the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+
+GET /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}/status
+
+#### Parameters
+
+
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+401: Unauthorized
+
+
+### `list` list or watch objects of kind HorizontalPodAutoscaler
+
+#### HTTP Request
+
+GET /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers
+
+#### Parameters
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+
+
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscalerList" >}}">HorizontalPodAutoscalerList</a>): OK
+
+401: Unauthorized
+
+
+### `list` list or watch objects of kind HorizontalPodAutoscaler
+
+#### HTTP Request
+
+GET /apis/autoscaling/v2/horizontalpodautoscalers
+
+#### Parameters
+
+
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+
+
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscalerList" >}}">HorizontalPodAutoscalerList</a>): OK
+
+401: Unauthorized
+
+
+### `create` create a HorizontalPodAutoscaler
+
+#### HTTP Request
+
+POST /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers
+
+#### Parameters
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>, required
+
+  
+
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+202 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Accepted
+
+401: Unauthorized
+
+
+### `update` replace the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+
+PUT /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}
+
+#### Parameters
+
+
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>, required
+
+  
+
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+401: Unauthorized
+
+
+### `update` replace status of the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+
+PUT /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}/status
+
+#### Parameters
+
+
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>, required
+
+  
+
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+401: Unauthorized
+
+
+### `patch` partially update the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+
+PATCH /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}
+
+#### Parameters
+
+
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+
+  
+
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+401: Unauthorized
+
+
+### `patch` partially update status of the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+
+PATCH /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}/status
+
+#### Parameters
+
+
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+
+  
+
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+401: Unauthorized
+
+
+### `delete` delete a HorizontalPodAutoscaler
+
+#### HTTP Request
+
+DELETE /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}
+
+#### Parameters
+
+
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+  
+
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+
+
+#### Response
+
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+
+### `deletecollection` delete collection of HorizontalPodAutoscaler
+
+#### HTTP Request
+
+DELETE /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers
+
+#### Parameters
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+  
+
+
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+
+
+#### Response
+
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+
diff --git a/content/en/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v2beta2.md b/content/en/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v2beta2.md
index 67894ab9c4..2db318f513 100644
--- a/content/en/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v2beta2.md
+++ b/content/en/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v2beta2.md
@@ -6,7 +6,7 @@ api_metadata:
 content_type: "api_reference"
 description: "HorizontalPodAutoscaler is the configuration for a horizontal pod autoscaler, which automatically manages the replica count of any resource implementing the scale subresource based on the metrics specified."
 title: "HorizontalPodAutoscaler v2beta2"
-weight: 12
+weight: 13
 auto_generated: true
 ---
 
@@ -411,7 +411,15 @@ HorizontalPodAutoscalerStatus describes the current status of a horizontal pod a
 
 <hr>
 
-- **conditions** ([]HorizontalPodAutoscalerCondition), required
+- **currentReplicas** (int32), required
+
+  currentReplicas is current number of replicas of pods managed by this autoscaler, as last seen by the autoscaler.
+
+- **desiredReplicas** (int32), required
+
+  desiredReplicas is the desired number of replicas of pods managed by this autoscaler, as last calculated by the autoscaler.
+
+- **conditions** ([]HorizontalPodAutoscalerCondition)
 
   conditions is the set of conditions required for this autoscaler to scale its target, and indicates whether or not those conditions are met.
 
@@ -441,14 +449,6 @@ HorizontalPodAutoscalerStatus describes the current status of a horizontal pod a
 
     reason is the reason for the condition's last transition.
 
-- **currentReplicas** (int32), required
-
-  currentReplicas is current number of replicas of pods managed by this autoscaler, as last seen by the autoscaler.
-
-- **desiredReplicas** (int32), required
-
-  desiredReplicas is the desired number of replicas of pods managed by this autoscaler, as last calculated by the autoscaler.
-
 - **currentMetrics** ([]MetricStatus)
 
   currentMetrics is the last read state of the metrics used by this autoscaler.
@@ -951,6 +951,11 @@ POST /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -1003,6 +1008,11 @@ PUT /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{n
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -1053,6 +1063,11 @@ PUT /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{n
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -1103,6 +1118,11 @@ PATCH /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -1158,6 +1178,11 @@ PATCH /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/workload-resources/job-v1.md b/content/en/docs/reference/kubernetes-api/workload-resources/job-v1.md
index 0f61e522eb..e79d7ba8f0 100644
--- a/content/en/docs/reference/kubernetes-api/workload-resources/job-v1.md
+++ b/content/en/docs/reference/kubernetes-api/workload-resources/job-v1.md
@@ -88,7 +88,7 @@ JobSpec describes how the job execution will look like.
   
   `Indexed` means that the Pods of a Job get an associated completion index from 0 to (.spec.completions - 1), available in the annotation batch.kubernetes.io/job-completion-index. The Job is considered complete when there is one successfully completed Pod for each index. When value is `Indexed`, .spec.completions must be specified and `.spec.parallelism` must be less than or equal to 10^5. In addition, The Pod name takes the form `$(job-name)-$(index)-$(random-string)`, the Pod hostname takes the form `$(job-name)-$(index)`.
   
-  This field is beta-level. More completion modes can be added in the future. If the Job controller observes a mode that it doesn't recognize, the controller skips updates for the Job.
+  More completion modes can be added in the future. If the Job controller observes a mode that it doesn't recognize, which is possible during upgrades due to version skew, the controller skips updates for the Job.
 
 - **backoffLimit** (int32)
 
@@ -100,13 +100,11 @@ JobSpec describes how the job execution will look like.
 
 - **ttlSecondsAfterFinished** (int32)
 
-  ttlSecondsAfterFinished limits the lifetime of a Job that has finished execution (either Complete or Failed). If this field is set, ttlSecondsAfterFinished after the Job finishes, it is eligible to be automatically deleted. When the Job is being deleted, its lifecycle guarantees (e.g. finalizers) will be honored. If this field is unset, the Job won't be automatically deleted. If this field is set to zero, the Job becomes eligible to be deleted immediately after it finishes. This field is alpha-level and is only honored by servers that enable the TTLAfterFinished feature.
+  ttlSecondsAfterFinished limits the lifetime of a Job that has finished execution (either Complete or Failed). If this field is set, ttlSecondsAfterFinished after the Job finishes, it is eligible to be automatically deleted. When the Job is being deleted, its lifecycle guarantees (e.g. finalizers) will be honored. If this field is unset, the Job won't be automatically deleted. If this field is set to zero, the Job becomes eligible to be deleted immediately after it finishes.
 
 - **suspend** (boolean)
 
   Suspend specifies whether the Job controller should create Pods or not. If a Job is created with suspend set to true, no Pods are created by the Job controller. If a Job is suspended after creation (i.e. the flag goes from false to true), the Job controller will delete all active Pods associated with this Job. Users must design their workload to gracefully handle this. Suspending a Job will reset the StartTime field of the Job, effectively resetting the ActiveDeadlineSeconds timer too. Defaults to false.
-  
-  This field is beta-level, gated by SuspendJob feature flag (enabled by default).
 
 ### Selector
 
@@ -143,7 +141,7 @@ JobStatus represents the current state of a Job.
 
 - **active** (int32)
 
-  The number of actively running pods.
+  The number of pending and running pods.
 
 - **failed** (int32)
 
@@ -205,7 +203,7 @@ JobStatus represents the current state of a Job.
   The job controller creates pods with a finalizer. When a pod terminates (succeeded or failed), the controller does three steps to account for it in the job status: (1) Add the pod UID to the arrays in this field. (2) Remove the pod finalizer. (3) Remove the pod UID from the arrays while increasing the corresponding
       counter.
   
-  This field is alpha-level. The job controller only makes use of this field when the feature gate PodTrackingWithFinalizers is enabled. Old jobs might not be tracked using this field, in which case the field remains null.
+  This field is beta-level. The job controller only makes use of this field when the feature gate JobTrackingWithFinalizers is enabled (enabled by default). Old jobs might not be tracked using this field, in which case the field remains null.
 
   <a name="UncountedTerminatedPods"></a>
   *UncountedTerminatedPods holds UIDs of Pods that have terminated but haven't been accounted in Job status counters.*
@@ -224,6 +222,15 @@ JobStatus represents the current state of a Job.
 
 
 
+### Alpha level
+
+
+- **ready** (int32)
+
+  The number of pods which have a Ready condition.
+  
+  This field is beta-level. The job controller populates the field when the feature gate JobReadyPods is enabled (enabled by default).
+
 
 
 ## JobList {#JobList}
@@ -497,6 +504,11 @@ POST /apis/batch/v1/namespaces/{namespace}/jobs
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -549,6 +561,11 @@ PUT /apis/batch/v1/namespaces/{namespace}/jobs/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -599,6 +616,11 @@ PUT /apis/batch/v1/namespaces/{namespace}/jobs/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -649,6 +671,11 @@ PATCH /apis/batch/v1/namespaces/{namespace}/jobs/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -704,6 +731,11 @@ PATCH /apis/batch/v1/namespaces/{namespace}/jobs/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/workload-resources/pod-template-v1.md b/content/en/docs/reference/kubernetes-api/workload-resources/pod-template-v1.md
index 7e75ea07de..8d2737ee73 100644
--- a/content/en/docs/reference/kubernetes-api/workload-resources/pod-template-v1.md
+++ b/content/en/docs/reference/kubernetes-api/workload-resources/pod-template-v1.md
@@ -306,6 +306,11 @@ POST /api/v1/namespaces/{namespace}/podtemplates
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -358,6 +363,11 @@ PUT /api/v1/namespaces/{namespace}/podtemplates/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -408,6 +418,11 @@ PATCH /api/v1/namespaces/{namespace}/podtemplates/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/workload-resources/pod-v1.md b/content/en/docs/reference/kubernetes-api/workload-resources/pod-v1.md
index 8c166cfd9e..d26dfdbaf9 100644
--- a/content/en/docs/reference/kubernetes-api/workload-resources/pod-v1.md
+++ b/content/en/docs/reference/kubernetes-api/workload-resources/pod-v1.md
@@ -81,12 +81,27 @@ PodSpec is a description of a pod.
 
   *Patch strategy: merge on key `name`*
   
-  ImagePullSecrets is an optional list of references to secrets in the same namespace to use for pulling any of the images used by this PodSpec. If specified, these secrets will be passed to individual puller implementations for them to use. For example, in the case of docker, only DockerConfig type secrets are honored. More info: https://kubernetes.io/docs/concepts/containers/images#specifying-imagepullsecrets-on-a-pod
+  ImagePullSecrets is an optional list of references to secrets in the same namespace to use for pulling any of the images used by this PodSpec. If specified, these secrets will be passed to individual puller implementations for them to use. More info: https://kubernetes.io/docs/concepts/containers/images#specifying-imagepullsecrets-on-a-pod
 
 - **enableServiceLinks** (boolean)
 
   EnableServiceLinks indicates whether information about services should be injected into pod's environment variables, matching the syntax of Docker links. Optional: Defaults to true.
 
+- **os** (PodOS)
+
+  Specifies the OS of the containers in the pod. Some pod and container fields are restricted if this is set.
+  
+  If the OS field is set to linux, the following fields must be unset: -securityContext.windowsOptions
+  
+  If the OS field is set to windows, following fields must be unset: - spec.hostPID - spec.hostIPC - spec.securityContext.seLinuxOptions - spec.securityContext.seccompProfile - spec.securityContext.fsGroup - spec.securityContext.fsGroupChangePolicy - spec.securityContext.sysctls - spec.shareProcessNamespace - spec.securityContext.runAsUser - spec.securityContext.runAsGroup - spec.securityContext.supplementalGroups - spec.containers[*].securityContext.seLinuxOptions - spec.containers[*].securityContext.seccompProfile - spec.containers[*].securityContext.capabilities - spec.containers[*].securityContext.readOnlyRootFilesystem - spec.containers[*].securityContext.privileged - spec.containers[*].securityContext.allowPrivilegeEscalation - spec.containers[*].securityContext.procMount - spec.containers[*].securityContext.runAsUser - spec.containers[*].securityContext.runAsGroup This is a beta field and requires the IdentifyPodOS feature
+
+  <a name="PodOS"></a>
+  *PodOS defines the OS parameters of a pod.*
+
+  - **os.name** (string), required
+
+    Name is the name of the operating system. The currently supported values are linux and windows. Additional value may be defined in future and can be one of: https://github.com/opencontainers/runtime-spec/blob/master/config.md#platform-specific-configuration Clients should expect to handle additional values and treat unrecognized values in this field as os: null
+
 ### Volumes
 
 
@@ -140,6 +155,8 @@ PodSpec is a description of a pod.
   - **tolerations.operator** (string)
 
     Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.
+    
+    
 
   - **tolerations.value** (string)
 
@@ -148,6 +165,8 @@ PodSpec is a description of a pod.
   - **tolerations.effect** (string)
 
     Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.
+    
+    
 
   - **tolerations.tolerationSeconds** (int64)
 
@@ -159,7 +178,7 @@ PodSpec is a description of a pod.
 
 - **runtimeClassName** (string)
 
-  RuntimeClassName refers to a RuntimeClass object in the node.k8s.io group, which should be used to run this pod.  If no RuntimeClass resource matches the named class, the pod will not be run. If unset or empty, the "legacy" RuntimeClass will be used, which is an implicit class with an empty definition that uses the default runtime handler. More info: https://git.k8s.io/enhancements/keps/sig-node/585-runtime-class This is a beta feature as of Kubernetes v1.14.
+  RuntimeClassName refers to a RuntimeClass object in the node.k8s.io group, which should be used to run this pod.  If no RuntimeClass resource matches the named class, the pod will not be run. If unset or empty, the "legacy" RuntimeClass will be used, which is an implicit class with an empty definition that uses the default runtime handler. More info: https://git.k8s.io/enhancements/keps/sig-node/585-runtime-class
 
 - **priorityClassName** (string)
 
@@ -182,29 +201,41 @@ PodSpec is a description of a pod.
 
   - **topologySpreadConstraints.maxSkew** (int32), required
 
-    MaxSkew describes the degree to which pods may be unevenly distributed. When `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 1/1/0: | zone1 | zone2 | zone3 | |   P   |   P   |       | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 1/1/1; scheduling it onto zone1(zone2) would make the ActualSkew(2-0) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.
+    MaxSkew describes the degree to which pods may be unevenly distributed. When `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | |  P P  |  P P  |   P   | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.
 
   - **topologySpreadConstraints.topologyKey** (string), required
 
-    TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each \<key, value> as a "bucket", and try to put balanced number of pods into each bucket. It's a required field.
+    TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each \<key, value> as a "bucket", and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes match the node selector. e.g. If TopologyKey is "kubernetes.io/hostname", each Node is a domain of that topology. And, if TopologyKey is "topology.kubernetes.io/zone", each zone is a domain of that topology. It's a required field.
 
   - **topologySpreadConstraints.whenUnsatisfiable** (string), required
 
     WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location,
       but giving higher precedence to topologies that would help reduce the
       skew.
-    A constraint is considered "Unsatisfiable" for an incoming pod if and only if every possible node assigment for that pod would violate "MaxSkew" on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P |   P   |   P   | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.
+    A constraint is considered "Unsatisfiable" for an incoming pod if and only if every possible node assignment for that pod would violate "MaxSkew" on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P |   P   |   P   | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.
+    
+    
 
   - **topologySpreadConstraints.labelSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
 
     LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain.
 
+  - **topologySpreadConstraints.minDomains** (int32)
+
+    MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats "global minimum" as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule.
+    
+    For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | |  P P  |  P P  |  P P  | The number of domains is less than 5(MinDomains), so "global minimum" is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew.
+    
+    This is an alpha field and requires enabling MinDomainsInPodTopologySpread feature gate.
+
 ### Lifecycle
 
 
 - **restartPolicy** (string)
 
   Restart policy for all containers within the pod. One of Always, OnFailure, Never. Default to Always. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy
+  
+  
 
 - **terminationGracePeriodSeconds** (int64)
 
@@ -289,6 +320,8 @@ PodSpec is a description of a pod.
 - **dnsPolicy** (string)
 
   Set DNS policy for the pod. Defaults to "ClusterFirst". Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. To have DNS options set along with hostNetwork, you have to specify DNS policy explicitly to 'ClusterFirstWithHostNet'.
+  
+  
 
 ### Hosts namespaces
 
@@ -332,7 +365,7 @@ PodSpec is a description of a pod.
 
   - **securityContext.runAsUser** (int64)
 
-    The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container.
+    The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container. Note that this field cannot be set when spec.os.name is windows.
 
   - **securityContext.runAsNonRoot** (boolean)
 
@@ -340,11 +373,11 @@ PodSpec is a description of a pod.
 
   - **securityContext.runAsGroup** (int64)
 
-    The GID to run the entrypoint of the container process. Uses runtime default if unset. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container.
+    The GID to run the entrypoint of the container process. Uses runtime default if unset. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container. Note that this field cannot be set when spec.os.name is windows.
 
   - **securityContext.supplementalGroups** ([]int64)
 
-    A list of groups applied to the first process run in each container, in addition to the container's primary GID.  If unspecified, no groups will be added to any container.
+    A list of groups applied to the first process run in each container, in addition to the container's primary GID.  If unspecified, no groups will be added to any container. Note that this field cannot be set when spec.os.name is windows.
 
   - **securityContext.fsGroup** (int64)
 
@@ -352,15 +385,15 @@ PodSpec is a description of a pod.
     
     1. The owning GID will be the FSGroup 2. The setgid bit is set (new files created in the volume will be owned by FSGroup) 3. The permission bits are OR'd with rw-rw----
     
-    If unset, the Kubelet will not modify the ownership and permissions of any volume.
+    If unset, the Kubelet will not modify the ownership and permissions of any volume. Note that this field cannot be set when spec.os.name is windows.
 
   - **securityContext.fsGroupChangePolicy** (string)
 
-    fsGroupChangePolicy defines behavior of changing ownership and permission of the volume before being exposed inside Pod. This field will only apply to volume types which support fsGroup based ownership(and permissions). It will have no effect on ephemeral volume types such as: secret, configmaps and emptydir. Valid values are "OnRootMismatch" and "Always". If not specified, "Always" is used.
+    fsGroupChangePolicy defines behavior of changing ownership and permission of the volume before being exposed inside Pod. This field will only apply to volume types which support fsGroup based ownership(and permissions). It will have no effect on ephemeral volume types such as: secret, configmaps and emptydir. Valid values are "OnRootMismatch" and "Always". If not specified, "Always" is used. Note that this field cannot be set when spec.os.name is windows.
 
   - **securityContext.seccompProfile** (SeccompProfile)
 
-    The seccomp options to use by the containers in this pod.
+    The seccomp options to use by the containers in this pod. Note that this field cannot be set when spec.os.name is windows.
 
     <a name="SeccompProfile"></a>
     *SeccompProfile defines a pod/container's seccomp profile settings. Only one profile source may be set.*
@@ -370,6 +403,8 @@ PodSpec is a description of a pod.
       type indicates which kind of seccomp profile will be applied. Valid options are:
       
       Localhost - a profile defined in a file on the node should be used. RuntimeDefault - the container runtime default profile should be used. Unconfined - no profile should be applied.
+      
+      
 
     - **securityContext.seccompProfile.localhostProfile** (string)
 
@@ -377,7 +412,7 @@ PodSpec is a description of a pod.
 
   - **securityContext.seLinuxOptions** (SELinuxOptions)
 
-    The SELinux context to be applied to all containers. If unspecified, the container runtime will allocate a random SELinux context for each container.  May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container.
+    The SELinux context to be applied to all containers. If unspecified, the container runtime will allocate a random SELinux context for each container.  May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container. Note that this field cannot be set when spec.os.name is windows.
 
     <a name="SELinuxOptions"></a>
     *SELinuxOptions are the labels to be applied to the container*
@@ -400,7 +435,7 @@ PodSpec is a description of a pod.
 
   - **securityContext.sysctls** ([]Sysctl)
 
-    Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported sysctls (by the container runtime) might fail to launch.
+    Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported sysctls (by the container runtime) might fail to launch. Note that this field cannot be set when spec.os.name is windows.
 
     <a name="Sysctl"></a>
     *Sysctl defines a kernel parameter to be set*
@@ -415,7 +450,7 @@ PodSpec is a description of a pod.
 
   - **securityContext.windowsOptions** (WindowsSecurityContextOptions)
 
-    The Windows specific settings applied to all containers. If unspecified, the options within a container's SecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.
+    The Windows specific settings applied to all containers. If unspecified, the options within a container's SecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is linux.
 
     <a name="WindowsSecurityContextOptions"></a>
     *WindowsSecurityContextOptions contain Windows-specific options and credentials.*
@@ -439,22 +474,19 @@ PodSpec is a description of a pod.
 ### Beta level
 
 
-- **preemptionPolicy** (string)
-
-  PreemptionPolicy is the Policy for preempting pods with lower priority. One of Never, PreemptLowerPriority. Defaults to PreemptLowerPriority if unset. This field is beta-level, gated by the NonPreemptingPriority feature-gate.
-
-- **overhead** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
-
-  Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. This field will be autopopulated at admission time by the RuntimeClass admission controller. If the RuntimeClass admission controller is enabled, overhead must not be set in Pod create requests. The RuntimeClass admission controller will reject Pod create requests which have the overhead already set. If RuntimeClass is configured and selected in the PodSpec, Overhead will be set to the value defined in the corresponding RuntimeClass, otherwise it will remain unset and treated as zero. More info: https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.md This field is beta-level as of Kubernetes v1.18, and is only honored by servers that enable the PodOverhead feature.
-
-### Alpha level
-
-
 - **ephemeralContainers** ([]<a href="{{< ref "../workload-resources/pod-v1#EphemeralContainer" >}}">EphemeralContainer</a>)
 
   *Patch strategy: merge on key `name`*
   
-  List of ephemeral containers run in this pod. Ephemeral containers may be run in an existing pod to perform user-initiated actions such as debugging. This list cannot be specified when creating a pod, and it cannot be modified by updating the pod spec. In order to add an ephemeral container to an existing pod, use the pod's ephemeralcontainers subresource. This field is alpha-level and is only honored by servers that enable the EphemeralContainers feature.
+  List of ephemeral containers run in this pod. Ephemeral containers may be run in an existing pod to perform user-initiated actions such as debugging. This list cannot be specified when creating a pod, and it cannot be modified by updating the pod spec. In order to add an ephemeral container to an existing pod, use the pod's ephemeralcontainers subresource. This field is beta-level and available on clusters that haven't disabled the EphemeralContainers feature gate.
+
+- **preemptionPolicy** (string)
+
+  PreemptionPolicy is the Policy for preempting pods with lower priority. One of Never, PreemptLowerPriority. Defaults to PreemptLowerPriority if unset.
+
+- **overhead** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+  Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. This field will be autopopulated at admission time by the RuntimeClass admission controller. If the RuntimeClass admission controller is enabled, overhead must not be set in Pod create requests. The RuntimeClass admission controller will reject Pod create requests which have the overhead already set. If RuntimeClass is configured and selected in the PodSpec, Overhead will be set to the value defined in the corresponding RuntimeClass, otherwise it will remain unset and treated as zero. More info: https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.md
 
 ### Deprecated
 
@@ -482,22 +514,24 @@ A single application container that you want to run within a pod.
 
 - **image** (string)
 
-  Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images This field is optional to allow higher level config management to default or override container images in workload controllers like Deployments and StatefulSets.
+  Container image name. More info: https://kubernetes.io/docs/concepts/containers/images This field is optional to allow higher level config management to default or override container images in workload controllers like Deployments and StatefulSets.
 
 - **imagePullPolicy** (string)
 
   Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images
+  
+  
 
 ### Entrypoint
 
 
 - **command** ([]string)
 
-  Entrypoint array. Not executed within a shell. The docker image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. "$$(VAR_NAME)" will produce the string literal "$(VAR_NAME)". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
+  Entrypoint array. Not executed within a shell. The container image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. "$$(VAR_NAME)" will produce the string literal "$(VAR_NAME)". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
 
 - **args** ([]string)
 
-  Arguments to the entrypoint. The docker image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. "$$(VAR_NAME)" will produce the string literal "$(VAR_NAME)". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
+  Arguments to the entrypoint. The container image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. "$$(VAR_NAME)" will produce the string literal "$(VAR_NAME)". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
 
 - **workingDir** (string)
 
@@ -536,6 +570,8 @@ A single application container that you want to run within a pod.
   - **ports.protocol** (string)
 
     Protocol for port. Must be UDP, TCP, or SCTP. Defaults to "TCP".
+    
+    
 
 ### Environment variables
 
@@ -736,13 +772,13 @@ A single application container that you want to run within a pod.
   <a name="Lifecycle"></a>
   *Lifecycle describes actions that the management system should take in response to container lifecycle events. For the PostStart and PreStop lifecycle handlers, management of the container blocks until the action is complete, unless the container process fails, in which case the handler is aborted.*
 
-  - **lifecycle.postStart** (<a href="{{< ref "../workload-resources/pod-v1#Handler" >}}">Handler</a>)
+  - **lifecycle.postStart** (<a href="{{< ref "../workload-resources/pod-v1#LifecycleHandler" >}}">LifecycleHandler</a>)
 
     PostStart is called immediately after a container is created. If the handler fails, the container is terminated and restarted according to its restart policy. Other management of the container blocks until the hook completes. More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks
 
-  - **lifecycle.preStop** (<a href="{{< ref "../workload-resources/pod-v1#Handler" >}}">Handler</a>)
+  - **lifecycle.preStop** (<a href="{{< ref "../workload-resources/pod-v1#LifecycleHandler" >}}">LifecycleHandler</a>)
 
-    PreStop is called immediately before a container is terminated due to an API request or management event such as liveness/startup probe failure, preemption, resource contention, etc. The handler is not called if the container crashes or exits. The reason for termination is passed to the handler. The Pod's termination grace period countdown begins before the PreStop hooked is executed. Regardless of the outcome of the handler, the container will eventually terminate within the Pod's termination grace period. Other management of the container blocks until the hook completes or until the termination grace period is reached. More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks
+    PreStop is called immediately before a container is terminated due to an API request or management event such as liveness/startup probe failure, preemption, resource contention, etc. The handler is not called if the container crashes or exits. The Pod's termination grace period countdown begins before the PreStop hook is executed. Regardless of the outcome of the handler, the container will eventually terminate within the Pod's termination grace period (unless delayed by finalizers). Other management of the container blocks until the hook completes or until the termination grace period is reached. More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks
 
 - **terminationMessagePath** (string)
 
@@ -751,6 +787,8 @@ A single application container that you want to run within a pod.
 - **terminationMessagePolicy** (string)
 
   Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the container status message on both success and failure. FallbackToLogsOnError will use the last chunk of container log output if the termination message file is empty and the container exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.
+  
+  
 
 - **livenessProbe** (<a href="{{< ref "../workload-resources/pod-v1#Probe" >}}">Probe</a>)
 
@@ -776,7 +814,7 @@ A single application container that you want to run within a pod.
 
   - **securityContext.runAsUser** (int64)
 
-    The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.
+    The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.
 
   - **securityContext.runAsNonRoot** (boolean)
 
@@ -784,27 +822,27 @@ A single application container that you want to run within a pod.
 
   - **securityContext.runAsGroup** (int64)
 
-    The GID to run the entrypoint of the container process. Uses runtime default if unset. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.
+    The GID to run the entrypoint of the container process. Uses runtime default if unset. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.
 
   - **securityContext.readOnlyRootFilesystem** (boolean)
 
-    Whether this container has a read-only root filesystem. Default is false.
+    Whether this container has a read-only root filesystem. Default is false. Note that this field cannot be set when spec.os.name is windows.
 
   - **securityContext.procMount** (string)
 
-    procMount denotes the type of proc mount to use for the containers. The default is DefaultProcMount which uses the container runtime defaults for readonly paths and masked paths. This requires the ProcMountType feature flag to be enabled.
+    procMount denotes the type of proc mount to use for the containers. The default is DefaultProcMount which uses the container runtime defaults for readonly paths and masked paths. This requires the ProcMountType feature flag to be enabled. Note that this field cannot be set when spec.os.name is windows.
 
   - **securityContext.privileged** (boolean)
 
-    Run container in privileged mode. Processes in privileged containers are essentially equivalent to root on the host. Defaults to false.
+    Run container in privileged mode. Processes in privileged containers are essentially equivalent to root on the host. Defaults to false. Note that this field cannot be set when spec.os.name is windows.
 
   - **securityContext.allowPrivilegeEscalation** (boolean)
 
-    AllowPrivilegeEscalation controls whether a process can gain more privileges than its parent process. This bool directly controls if the no_new_privs flag will be set on the container process. AllowPrivilegeEscalation is true always when the container is: 1) run as Privileged 2) has CAP_SYS_ADMIN
+    AllowPrivilegeEscalation controls whether a process can gain more privileges than its parent process. This bool directly controls if the no_new_privs flag will be set on the container process. AllowPrivilegeEscalation is true always when the container is: 1) run as Privileged 2) has CAP_SYS_ADMIN Note that this field cannot be set when spec.os.name is windows.
 
   - **securityContext.capabilities** (Capabilities)
 
-    The capabilities to add/drop when running containers. Defaults to the default set of capabilities granted by the container runtime.
+    The capabilities to add/drop when running containers. Defaults to the default set of capabilities granted by the container runtime. Note that this field cannot be set when spec.os.name is windows.
 
     <a name="Capabilities"></a>
     *Adds and removes POSIX capabilities from running containers.*
@@ -819,7 +857,7 @@ A single application container that you want to run within a pod.
 
   - **securityContext.seccompProfile** (SeccompProfile)
 
-    The seccomp options to use by this container. If seccomp options are provided at both the pod & container level, the container options override the pod options.
+    The seccomp options to use by this container. If seccomp options are provided at both the pod & container level, the container options override the pod options. Note that this field cannot be set when spec.os.name is windows.
 
     <a name="SeccompProfile"></a>
     *SeccompProfile defines a pod/container's seccomp profile settings. Only one profile source may be set.*
@@ -829,6 +867,8 @@ A single application container that you want to run within a pod.
       type indicates which kind of seccomp profile will be applied. Valid options are:
       
       Localhost - a profile defined in a file on the node should be used. RuntimeDefault - the container runtime default profile should be used. Unconfined - no profile should be applied.
+      
+      
 
     - **securityContext.seccompProfile.localhostProfile** (string)
 
@@ -836,7 +876,7 @@ A single application container that you want to run within a pod.
 
   - **securityContext.seLinuxOptions** (SELinuxOptions)
 
-    The SELinux context to be applied to the container. If unspecified, the container runtime will allocate a random SELinux context for each container.  May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.
+    The SELinux context to be applied to the container. If unspecified, the container runtime will allocate a random SELinux context for each container.  May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.
 
     <a name="SELinuxOptions"></a>
     *SELinuxOptions are the labels to be applied to the container*
@@ -859,7 +899,7 @@ A single application container that you want to run within a pod.
 
   - **securityContext.windowsOptions** (WindowsSecurityContextOptions)
 
-    The Windows specific settings applied to all containers. If unspecified, the options from the PodSecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.
+    The Windows specific settings applied to all containers. If unspecified, the options from the PodSecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is linux.
 
     <a name="WindowsSecurityContextOptions"></a>
     *WindowsSecurityContextOptions contain Windows-specific options and credentials.*
@@ -899,7 +939,11 @@ A single application container that you want to run within a pod.
 
 ## EphemeralContainer {#EphemeralContainer}
 
-An EphemeralContainer is a container that may be added temporarily to an existing pod for user-initiated activities such as debugging. Ephemeral containers have no resource or scheduling guarantees, and they will not be restarted when they exit or when a pod is removed or restarted. If an ephemeral container causes a pod to exceed its resource allocation, the pod may be evicted. Ephemeral containers may not be added by directly updating the pod spec. They must be added via the pod's ephemeralcontainers subresource, and they will appear in the pod spec once added. This is an alpha feature enabled by the EphemeralContainers feature flag.
+An EphemeralContainer is a temporary container that you may add to an existing Pod for user-initiated activities such as debugging. Ephemeral containers have no resource or scheduling guarantees, and they will not be restarted when they exit or when a Pod is removed or restarted. The kubelet may evict a Pod if an ephemeral container causes the Pod to exceed its resource allocation.
+
+To add an ephemeral container, use the ephemeralcontainers subresource of an existing Pod. Ephemeral containers may not be removed or restarted.
+
+This is a beta feature available on clusters that haven't disabled the EphemeralContainers feature gate.
 
 <hr>
 
@@ -909,7 +953,9 @@ An EphemeralContainer is a container that may be added temporarily to an existin
 
 - **targetContainerName** (string)
 
-  If set, the name of the container from PodSpec that this ephemeral container targets. The ephemeral container will be run in the namespaces (IPC, PID, etc) of this container. If not set then the ephemeral container is run in whatever namespaces are shared for the pod. Note that the container runtime must support this feature.
+  If set, the name of the container from PodSpec that this ephemeral container targets. The ephemeral container will be run in the namespaces (IPC, PID, etc) of this container. If not set then the ephemeral container uses the namespaces configured in the Pod spec.
+  
+  The container runtime must implement support for this feature. If the runtime does not support namespace targeting then the result of setting this field is undefined.
 
 
 
@@ -918,22 +964,24 @@ An EphemeralContainer is a container that may be added temporarily to an existin
 
 - **image** (string)
 
-  Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images
+  Container image name. More info: https://kubernetes.io/docs/concepts/containers/images
 
 - **imagePullPolicy** (string)
 
   Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images
+  
+  
 
 ### Entrypoint
 
 
 - **command** ([]string)
 
-  Entrypoint array. Not executed within a shell. The docker image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. "$$(VAR_NAME)" will produce the string literal "$(VAR_NAME)". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
+  Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. "$$(VAR_NAME)" will produce the string literal "$(VAR_NAME)". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
 
 - **args** ([]string)
 
-  Arguments to the entrypoint. The docker image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. "$$(VAR_NAME)" will produce the string literal "$(VAR_NAME)". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
+  Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. "$$(VAR_NAME)" will produce the string literal "$(VAR_NAME)". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
 
 - **workingDir** (string)
 
@@ -1064,7 +1112,7 @@ An EphemeralContainer is a container that may be added temporarily to an existin
 
   *Patch strategy: merge on key `mountPath`*
   
-  Pod volumes to mount into the container's filesystem. Cannot be updated.
+  Pod volumes to mount into the container's filesystem. Subpath mounts are not allowed for ephemeral containers. Cannot be updated.
 
   <a name="VolumeMount"></a>
   *VolumeMount describes a mounting of a Volume within a container.*
@@ -1120,6 +1168,8 @@ An EphemeralContainer is a container that may be added temporarily to an existin
 - **terminationMessagePolicy** (string)
 
   Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the container status message on both success and failure. FallbackToLogsOnError will use the last chunk of container log output if the termination message file is empty and the container exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.
+  
+  
 
 ### Debugging
 
@@ -1136,11 +1186,133 @@ An EphemeralContainer is a container that may be added temporarily to an existin
 
   Whether this container should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.
 
+### Security context
+
+
+- **securityContext** (SecurityContext)
+
+  Optional: SecurityContext defines the security options the ephemeral container should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.
+
+  <a name="SecurityContext"></a>
+  *SecurityContext holds security configuration that will be applied to a container. Some fields are present in both SecurityContext and PodSecurityContext.  When both are set, the values in SecurityContext take precedence.*
+
+  - **securityContext.runAsUser** (int64)
+
+    The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.
+
+  - **securityContext.runAsNonRoot** (boolean)
+
+    Indicates that the container must run as a non-root user. If true, the Kubelet will validate the image at runtime to ensure that it does not run as UID 0 (root) and fail to start the container if it does. If unset or false, no such validation will be performed. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.
+
+  - **securityContext.runAsGroup** (int64)
+
+    The GID to run the entrypoint of the container process. Uses runtime default if unset. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.
+
+  - **securityContext.readOnlyRootFilesystem** (boolean)
+
+    Whether this container has a read-only root filesystem. Default is false. Note that this field cannot be set when spec.os.name is windows.
+
+  - **securityContext.procMount** (string)
+
+    procMount denotes the type of proc mount to use for the containers. The default is DefaultProcMount which uses the container runtime defaults for readonly paths and masked paths. This requires the ProcMountType feature flag to be enabled. Note that this field cannot be set when spec.os.name is windows.
+
+  - **securityContext.privileged** (boolean)
+
+    Run container in privileged mode. Processes in privileged containers are essentially equivalent to root on the host. Defaults to false. Note that this field cannot be set when spec.os.name is windows.
+
+  - **securityContext.allowPrivilegeEscalation** (boolean)
+
+    AllowPrivilegeEscalation controls whether a process can gain more privileges than its parent process. This bool directly controls if the no_new_privs flag will be set on the container process. AllowPrivilegeEscalation is true always when the container is: 1) run as Privileged 2) has CAP_SYS_ADMIN Note that this field cannot be set when spec.os.name is windows.
+
+  - **securityContext.capabilities** (Capabilities)
+
+    The capabilities to add/drop when running containers. Defaults to the default set of capabilities granted by the container runtime. Note that this field cannot be set when spec.os.name is windows.
+
+    <a name="Capabilities"></a>
+    *Adds and removes POSIX capabilities from running containers.*
+
+    - **securityContext.capabilities.add** ([]string)
+
+      Added capabilities
+
+    - **securityContext.capabilities.drop** ([]string)
+
+      Removed capabilities
+
+  - **securityContext.seccompProfile** (SeccompProfile)
+
+    The seccomp options to use by this container. If seccomp options are provided at both the pod & container level, the container options override the pod options. Note that this field cannot be set when spec.os.name is windows.
+
+    <a name="SeccompProfile"></a>
+    *SeccompProfile defines a pod/container's seccomp profile settings. Only one profile source may be set.*
+
+    - **securityContext.seccompProfile.type** (string), required
+
+      type indicates which kind of seccomp profile will be applied. Valid options are:
+      
+      Localhost - a profile defined in a file on the node should be used. RuntimeDefault - the container runtime default profile should be used. Unconfined - no profile should be applied.
+      
+      
+
+    - **securityContext.seccompProfile.localhostProfile** (string)
+
+      localhostProfile indicates a profile defined in a file on the node should be used. The profile must be preconfigured on the node to work. Must be a descending path, relative to the kubelet's configured seccomp profile location. Must only be set if type is "Localhost".
+
+  - **securityContext.seLinuxOptions** (SELinuxOptions)
+
+    The SELinux context to be applied to the container. If unspecified, the container runtime will allocate a random SELinux context for each container.  May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.
+
+    <a name="SELinuxOptions"></a>
+    *SELinuxOptions are the labels to be applied to the container*
+
+    - **securityContext.seLinuxOptions.level** (string)
+
+      Level is SELinux level label that applies to the container.
+
+    - **securityContext.seLinuxOptions.role** (string)
+
+      Role is a SELinux role label that applies to the container.
+
+    - **securityContext.seLinuxOptions.type** (string)
+
+      Type is a SELinux type label that applies to the container.
+
+    - **securityContext.seLinuxOptions.user** (string)
+
+      User is a SELinux user label that applies to the container.
+
+  - **securityContext.windowsOptions** (WindowsSecurityContextOptions)
+
+    The Windows specific settings applied to all containers. If unspecified, the options from the PodSecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is linux.
+
+    <a name="WindowsSecurityContextOptions"></a>
+    *WindowsSecurityContextOptions contain Windows-specific options and credentials.*
+
+    - **securityContext.windowsOptions.gmsaCredentialSpec** (string)
+
+      GMSACredentialSpec is where the GMSA admission webhook (https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the GMSA credential spec named by the GMSACredentialSpecName field.
+
+    - **securityContext.windowsOptions.gmsaCredentialSpecName** (string)
+
+      GMSACredentialSpecName is the name of the GMSA credential spec to use.
+
+    - **securityContext.windowsOptions.hostProcess** (boolean)
+
+      HostProcess determines if a container should be run as a 'Host Process' container. This field is alpha-level and will only be honored by components that enable the WindowsHostProcessContainers feature flag. Setting this field without the feature flag will result in errors when validating the Pod. All of a Pod's containers must have the same effective HostProcess value (it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).  In addition, if HostProcess is true then HostNetwork must also be set to true.
+
+    - **securityContext.windowsOptions.runAsUserName** (string)
+
+      The UserName in Windows to run the entrypoint of the container process. Defaults to the user specified in image metadata if unspecified. May also be set in PodSecurityContext. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.
+
 ### Not allowed
 
 
 - **ports** ([]ContainerPort)
 
+  *Patch strategy: merge on key `containerPort`*
+  
+  *Map: unique values on keys `containerPort, protocol` will be kept during a merge*
+  
   Ports are not allowed for ephemeral containers.
 
   <a name="ContainerPort"></a>
@@ -1165,6 +1337,8 @@ An EphemeralContainer is a container that may be added temporarily to an existin
   - **ports.protocol** (string)
 
     Protocol for port. Must be UDP, TCP, or SCTP. Defaults to "TCP".
+    
+    
 
 - **resources** (ResourceRequirements)
 
@@ -1188,13 +1362,13 @@ An EphemeralContainer is a container that may be added temporarily to an existin
   <a name="Lifecycle"></a>
   *Lifecycle describes actions that the management system should take in response to container lifecycle events. For the PostStart and PreStop lifecycle handlers, management of the container blocks until the action is complete, unless the container process fails, in which case the handler is aborted.*
 
-  - **lifecycle.postStart** (<a href="{{< ref "../workload-resources/pod-v1#Handler" >}}">Handler</a>)
+  - **lifecycle.postStart** (<a href="{{< ref "../workload-resources/pod-v1#LifecycleHandler" >}}">LifecycleHandler</a>)
 
     PostStart is called immediately after a container is created. If the handler fails, the container is terminated and restarted according to its restart policy. Other management of the container blocks until the hook completes. More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks
 
-  - **lifecycle.preStop** (<a href="{{< ref "../workload-resources/pod-v1#Handler" >}}">Handler</a>)
+  - **lifecycle.preStop** (<a href="{{< ref "../workload-resources/pod-v1#LifecycleHandler" >}}">LifecycleHandler</a>)
 
-    PreStop is called immediately before a container is terminated due to an API request or management event such as liveness/startup probe failure, preemption, resource contention, etc. The handler is not called if the container crashes or exits. The reason for termination is passed to the handler. The Pod's termination grace period countdown begins before the PreStop hooked is executed. Regardless of the outcome of the handler, the container will eventually terminate within the Pod's termination grace period. Other management of the container blocks until the hook completes or until the termination grace period is reached. More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks
+    PreStop is called immediately before a container is terminated due to an API request or management event such as liveness/startup probe failure, preemption, resource contention, etc. The handler is not called if the container crashes or exits. The Pod's termination grace period countdown begins before the PreStop hook is executed. Regardless of the outcome of the handler, the container will eventually terminate within the Pod's termination grace period (unless delayed by finalizers). Other management of the container blocks until the hook completes or until the termination grace period is reached. More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks
 
 - **livenessProbe** (<a href="{{< ref "../workload-resources/pod-v1#Probe" >}}">Probe</a>)
 
@@ -1204,134 +1378,21 @@ An EphemeralContainer is a container that may be added temporarily to an existin
 
   Probes are not allowed for ephemeral containers.
 
-- **securityContext** (SecurityContext)
-
-  Optional: SecurityContext defines the security options the ephemeral container should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.
-
-  <a name="SecurityContext"></a>
-  *SecurityContext holds security configuration that will be applied to a container. Some fields are present in both SecurityContext and PodSecurityContext.  When both are set, the values in SecurityContext take precedence.*
-
-  - **securityContext.runAsUser** (int64)
-
-    The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.
-
-  - **securityContext.runAsNonRoot** (boolean)
-
-    Indicates that the container must run as a non-root user. If true, the Kubelet will validate the image at runtime to ensure that it does not run as UID 0 (root) and fail to start the container if it does. If unset or false, no such validation will be performed. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.
-
-  - **securityContext.runAsGroup** (int64)
-
-    The GID to run the entrypoint of the container process. Uses runtime default if unset. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.
-
-  - **securityContext.readOnlyRootFilesystem** (boolean)
-
-    Whether this container has a read-only root filesystem. Default is false.
-
-  - **securityContext.procMount** (string)
-
-    procMount denotes the type of proc mount to use for the containers. The default is DefaultProcMount which uses the container runtime defaults for readonly paths and masked paths. This requires the ProcMountType feature flag to be enabled.
-
-  - **securityContext.privileged** (boolean)
-
-    Run container in privileged mode. Processes in privileged containers are essentially equivalent to root on the host. Defaults to false.
-
-  - **securityContext.allowPrivilegeEscalation** (boolean)
-
-    AllowPrivilegeEscalation controls whether a process can gain more privileges than its parent process. This bool directly controls if the no_new_privs flag will be set on the container process. AllowPrivilegeEscalation is true always when the container is: 1) run as Privileged 2) has CAP_SYS_ADMIN
-
-  - **securityContext.capabilities** (Capabilities)
-
-    The capabilities to add/drop when running containers. Defaults to the default set of capabilities granted by the container runtime.
-
-    <a name="Capabilities"></a>
-    *Adds and removes POSIX capabilities from running containers.*
-
-    - **securityContext.capabilities.add** ([]string)
-
-      Added capabilities
-
-    - **securityContext.capabilities.drop** ([]string)
-
-      Removed capabilities
-
-  - **securityContext.seccompProfile** (SeccompProfile)
-
-    The seccomp options to use by this container. If seccomp options are provided at both the pod & container level, the container options override the pod options.
-
-    <a name="SeccompProfile"></a>
-    *SeccompProfile defines a pod/container's seccomp profile settings. Only one profile source may be set.*
-
-    - **securityContext.seccompProfile.type** (string), required
-
-      type indicates which kind of seccomp profile will be applied. Valid options are:
-      
-      Localhost - a profile defined in a file on the node should be used. RuntimeDefault - the container runtime default profile should be used. Unconfined - no profile should be applied.
-
-    - **securityContext.seccompProfile.localhostProfile** (string)
-
-      localhostProfile indicates a profile defined in a file on the node should be used. The profile must be preconfigured on the node to work. Must be a descending path, relative to the kubelet's configured seccomp profile location. Must only be set if type is "Localhost".
-
-  - **securityContext.seLinuxOptions** (SELinuxOptions)
-
-    The SELinux context to be applied to the container. If unspecified, the container runtime will allocate a random SELinux context for each container.  May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.
-
-    <a name="SELinuxOptions"></a>
-    *SELinuxOptions are the labels to be applied to the container*
-
-    - **securityContext.seLinuxOptions.level** (string)
-
-      Level is SELinux level label that applies to the container.
-
-    - **securityContext.seLinuxOptions.role** (string)
-
-      Role is a SELinux role label that applies to the container.
-
-    - **securityContext.seLinuxOptions.type** (string)
-
-      Type is a SELinux type label that applies to the container.
-
-    - **securityContext.seLinuxOptions.user** (string)
-
-      User is a SELinux user label that applies to the container.
-
-  - **securityContext.windowsOptions** (WindowsSecurityContextOptions)
-
-    The Windows specific settings applied to all containers. If unspecified, the options from the PodSecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.
-
-    <a name="WindowsSecurityContextOptions"></a>
-    *WindowsSecurityContextOptions contain Windows-specific options and credentials.*
-
-    - **securityContext.windowsOptions.gmsaCredentialSpec** (string)
-
-      GMSACredentialSpec is where the GMSA admission webhook (https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the GMSA credential spec named by the GMSACredentialSpecName field.
-
-    - **securityContext.windowsOptions.gmsaCredentialSpecName** (string)
-
-      GMSACredentialSpecName is the name of the GMSA credential spec to use.
-
-    - **securityContext.windowsOptions.hostProcess** (boolean)
-
-      HostProcess determines if a container should be run as a 'Host Process' container. This field is alpha-level and will only be honored by components that enable the WindowsHostProcessContainers feature flag. Setting this field without the feature flag will result in errors when validating the Pod. All of a Pod's containers must have the same effective HostProcess value (it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).  In addition, if HostProcess is true then HostNetwork must also be set to true.
-
-    - **securityContext.windowsOptions.runAsUserName** (string)
-
-      The UserName in Windows to run the entrypoint of the container process. Defaults to the user specified in image metadata if unspecified. May also be set in PodSecurityContext. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.
-
 - **startupProbe** (<a href="{{< ref "../workload-resources/pod-v1#Probe" >}}">Probe</a>)
 
   Probes are not allowed for ephemeral containers.
 
 
 
-## Handler {#Handler}
+## LifecycleHandler {#LifecycleHandler}
 
-Handler defines a specific action that should be taken
+LifecycleHandler defines a specific action that should be taken in a lifecycle hook. One and only one of the fields, except TCPSocket must be specified.
 
 <hr>
 
 - **exec** (ExecAction)
 
-  One and only one of the following should be specified. Exec specifies the action to take.
+  Exec specifies the action to take.
 
   <a name="ExecAction"></a>
   *ExecAction describes a "run in container" action.*
@@ -1380,10 +1441,12 @@ Handler defines a specific action that should be taken
   - **httpGet.scheme** (string)
 
     Scheme to use for connecting to the host. Defaults to HTTP.
+    
+    
 
 - **tcpSocket** (TCPSocketAction)
 
-  TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported
+  Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept for the backward compatibility. There are no validation of this field and lifecycle hooks will fail in runtime when tcp handler is specified.
 
   <a name="TCPSocketAction"></a>
   *TCPSocketAction describes an action based on opening a socket*
@@ -1491,11 +1554,11 @@ Pod affinity is a group of inter pod affinity scheduling rules.
 
     - **preferredDuringSchedulingIgnoredDuringExecution.podAffinityTerm.namespaceSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
 
-      A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means "this pod's namespace". An empty selector ({}) matches all namespaces. This field is beta-level and is only honored when PodAffinityNamespaceSelector feature is enabled.
+      A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means "this pod's namespace". An empty selector ({}) matches all namespaces.
 
     - **preferredDuringSchedulingIgnoredDuringExecution.podAffinityTerm.namespaces** ([]string)
 
-      namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means "this pod's namespace"
+      namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means "this pod's namespace".
 
   - **preferredDuringSchedulingIgnoredDuringExecution.weight** (int32), required
 
@@ -1518,11 +1581,11 @@ Pod affinity is a group of inter pod affinity scheduling rules.
 
   - **requiredDuringSchedulingIgnoredDuringExecution.namespaceSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
 
-    A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means "this pod's namespace". An empty selector ({}) matches all namespaces. This field is beta-level and is only honored when PodAffinityNamespaceSelector feature is enabled.
+    A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means "this pod's namespace". An empty selector ({}) matches all namespaces.
 
   - **requiredDuringSchedulingIgnoredDuringExecution.namespaces** ([]string)
 
-    namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means "this pod's namespace"
+    namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means "this pod's namespace".
 
 
 
@@ -1558,11 +1621,11 @@ Pod anti affinity is a group of inter pod anti affinity scheduling rules.
 
     - **preferredDuringSchedulingIgnoredDuringExecution.podAffinityTerm.namespaceSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
 
-      A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means "this pod's namespace". An empty selector ({}) matches all namespaces. This field is beta-level and is only honored when PodAffinityNamespaceSelector feature is enabled.
+      A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means "this pod's namespace". An empty selector ({}) matches all namespaces.
 
     - **preferredDuringSchedulingIgnoredDuringExecution.podAffinityTerm.namespaces** ([]string)
 
-      namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means "this pod's namespace"
+      namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means "this pod's namespace".
 
   - **preferredDuringSchedulingIgnoredDuringExecution.weight** (int32), required
 
@@ -1585,11 +1648,11 @@ Pod anti affinity is a group of inter pod anti affinity scheduling rules.
 
   - **requiredDuringSchedulingIgnoredDuringExecution.namespaceSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
 
-    A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means "this pod's namespace". An empty selector ({}) matches all namespaces. This field is beta-level and is only honored when PodAffinityNamespaceSelector feature is enabled.
+    A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means "this pod's namespace". An empty selector ({}) matches all namespaces.
 
   - **requiredDuringSchedulingIgnoredDuringExecution.namespaces** ([]string)
 
-    namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means "this pod's namespace"
+    namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means "this pod's namespace".
 
 
 
@@ -1603,7 +1666,7 @@ Probe describes a health check to be performed against a container to determine
 
 - **exec** (ExecAction)
 
-  One and only one of the following should be specified. Exec specifies the action to take.
+  Exec specifies the action to take.
 
   <a name="ExecAction"></a>
   *ExecAction describes a "run in container" action.*
@@ -1652,10 +1715,12 @@ Probe describes a health check to be performed against a container to determine
   - **httpGet.scheme** (string)
 
     Scheme to use for connecting to the host. Defaults to HTTP.
+    
+    
 
 - **tcpSocket** (TCPSocketAction)
 
-  TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported
+  TCPSocket specifies an action involving a TCP port.
 
   <a name="TCPSocketAction"></a>
   *TCPSocketAction describes an action based on opening a socket*
@@ -1695,6 +1760,23 @@ Probe describes a health check to be performed against a container to determine
 
   Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness and startup. Minimum value is 1.
 
+- **grpc** (GRPCAction)
+
+  GRPC specifies an action involving a GRPC port. This is a beta field and requires enabling GRPCContainerProbe feature gate.
+
+  <a name="GRPCAction"></a>
+  **
+
+  - **grpc.port** (int32), required
+
+    Port number of the gRPC service. Number must be in the range 1 to 65535.
+
+  - **grpc.service** (string)
+
+    Service is the name of the service to place in the gRPC HealthCheckRequest (see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).
+    
+    If this is not specified, the default behavior is defined by gRPC.
+
 
 
 
@@ -1727,6 +1809,8 @@ PodStatus represents information about the status of a pod. Status may trail the
   Pending: The pod has been accepted by the Kubernetes system, but one or more of the container images has not been created. This includes time before being scheduled as well as time spent downloading images over the network, which could take a while. Running: The pod has been bound to a node, and all of the containers have been created. At least one container is still running, or is in the process of starting or restarting. Succeeded: All containers in the pod have terminated in success, and will not be restarted. Failed: All containers in the pod have terminated, and at least one container has terminated in failure. The container either exited with non-zero status or was terminated by the system. Unknown: For some reason the state of the pod could not be obtained, typically due to an error in communicating with the host of the pod.
   
   More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-phase
+  
+  
 
 - **message** (string)
 
@@ -1795,7 +1879,9 @@ PodStatus represents information about the status of a pod. Status may trail the
 
 - **qosClass** (string)
 
-  The Quality of Service (QOS) classification assigned to the pod based on resource requirements See PodQOSClass type for available QOS classes More info: https://git.k8s.io/community/contributors/design-proposals/node/resource-qos.md
+  The Quality of Service (QOS) classification assigned to the pod based on resource requirements See PodQOSClass type for available QOS classes More info: https://git.k8s.io/design-proposals-archive/node/resource-qos.md
+  
+  
 
 - **initContainerStatuses** ([]ContainerStatus)
 
@@ -1810,7 +1896,7 @@ PodStatus represents information about the status of a pod. Status may trail the
 
   - **initContainerStatuses.image** (string), required
 
-    The image the container is running. More info: https://kubernetes.io/docs/concepts/containers/images
+    The image the container is running. More info: https://kubernetes.io/docs/concepts/containers/images.
 
   - **initContainerStatuses.imageID** (string), required
 
@@ -1818,7 +1904,7 @@ PodStatus represents information about the status of a pod. Status may trail the
 
   - **initContainerStatuses.containerID** (string)
 
-    Container's ID in the format 'docker://\<container_id>'.
+    Container's ID in the format '\<type>://\<container_id>'.
 
   - **initContainerStatuses.state** (ContainerState)
 
@@ -1850,7 +1936,7 @@ PodStatus represents information about the status of a pod. Status may trail the
 
       - **initContainerStatuses.state.terminated.containerID** (string)
 
-        Container's ID in the format 'docker://\<container_id>'
+        Container's ID in the format '\<type>://\<container_id>'
 
       - **initContainerStatuses.state.terminated.exitCode** (int32), required
 
@@ -1927,7 +2013,7 @@ PodStatus represents information about the status of a pod. Status may trail the
 
       - **initContainerStatuses.lastState.terminated.containerID** (string)
 
-        Container's ID in the format 'docker://\<container_id>'
+        Container's ID in the format '\<type>://\<container_id>'
 
       - **initContainerStatuses.lastState.terminated.exitCode** (int32), required
 
@@ -1980,7 +2066,7 @@ PodStatus represents information about the status of a pod. Status may trail the
 
   - **initContainerStatuses.restartCount** (int32), required
 
-    The number of times the container has been restarted, currently based on the number of dead containers that have not yet been removed. Note that this is calculated from dead containers. But those containers are subject to garbage collection. This value will get capped at 5 by GC.
+    The number of times the container has been restarted.
 
   - **initContainerStatuses.started** (boolean)
 
@@ -1988,7 +2074,7 @@ PodStatus represents information about the status of a pod. Status may trail the
 
 - **containerStatuses** ([]ContainerStatus)
 
-  The list has one entry per container in the manifest. Each entry is currently the output of `docker inspect`. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-and-container-status
+  The list has one entry per container in the manifest. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-and-container-status
 
   <a name="ContainerStatus"></a>
   *ContainerStatus contains details for the current status of this container.*
@@ -1999,7 +2085,7 @@ PodStatus represents information about the status of a pod. Status may trail the
 
   - **containerStatuses.image** (string), required
 
-    The image the container is running. More info: https://kubernetes.io/docs/concepts/containers/images
+    The image the container is running. More info: https://kubernetes.io/docs/concepts/containers/images.
 
   - **containerStatuses.imageID** (string), required
 
@@ -2007,7 +2093,7 @@ PodStatus represents information about the status of a pod. Status may trail the
 
   - **containerStatuses.containerID** (string)
 
-    Container's ID in the format 'docker://\<container_id>'.
+    Container's ID in the format '\<type>://\<container_id>'.
 
   - **containerStatuses.state** (ContainerState)
 
@@ -2039,7 +2125,7 @@ PodStatus represents information about the status of a pod. Status may trail the
 
       - **containerStatuses.state.terminated.containerID** (string)
 
-        Container's ID in the format 'docker://\<container_id>'
+        Container's ID in the format '\<type>://\<container_id>'
 
       - **containerStatuses.state.terminated.exitCode** (int32), required
 
@@ -2116,7 +2202,7 @@ PodStatus represents information about the status of a pod. Status may trail the
 
       - **containerStatuses.lastState.terminated.containerID** (string)
 
-        Container's ID in the format 'docker://\<container_id>'
+        Container's ID in the format '\<type>://\<container_id>'
 
       - **containerStatuses.lastState.terminated.exitCode** (int32), required
 
@@ -2169,7 +2255,7 @@ PodStatus represents information about the status of a pod. Status may trail the
 
   - **containerStatuses.restartCount** (int32), required
 
-    The number of times the container has been restarted, currently based on the number of dead containers that have not yet been removed. Note that this is calculated from dead containers. But those containers are subject to garbage collection. This value will get capped at 5 by GC.
+    The number of times the container has been restarted.
 
   - **containerStatuses.started** (boolean)
 
@@ -2177,7 +2263,7 @@ PodStatus represents information about the status of a pod. Status may trail the
 
 - **ephemeralContainerStatuses** ([]ContainerStatus)
 
-  Status for any ephemeral containers that have run in this pod. This field is alpha-level and is only populated by servers that enable the EphemeralContainers feature.
+  Status for any ephemeral containers that have run in this pod. This field is beta-level and available on clusters that haven't disabled the EphemeralContainers feature gate.
 
   <a name="ContainerStatus"></a>
   *ContainerStatus contains details for the current status of this container.*
@@ -2188,7 +2274,7 @@ PodStatus represents information about the status of a pod. Status may trail the
 
   - **ephemeralContainerStatuses.image** (string), required
 
-    The image the container is running. More info: https://kubernetes.io/docs/concepts/containers/images
+    The image the container is running. More info: https://kubernetes.io/docs/concepts/containers/images.
 
   - **ephemeralContainerStatuses.imageID** (string), required
 
@@ -2196,7 +2282,7 @@ PodStatus represents information about the status of a pod. Status may trail the
 
   - **ephemeralContainerStatuses.containerID** (string)
 
-    Container's ID in the format 'docker://\<container_id>'.
+    Container's ID in the format '\<type>://\<container_id>'.
 
   - **ephemeralContainerStatuses.state** (ContainerState)
 
@@ -2228,7 +2314,7 @@ PodStatus represents information about the status of a pod. Status may trail the
 
       - **ephemeralContainerStatuses.state.terminated.containerID** (string)
 
-        Container's ID in the format 'docker://\<container_id>'
+        Container's ID in the format '\<type>://\<container_id>'
 
       - **ephemeralContainerStatuses.state.terminated.exitCode** (int32), required
 
@@ -2305,7 +2391,7 @@ PodStatus represents information about the status of a pod. Status may trail the
 
       - **ephemeralContainerStatuses.lastState.terminated.containerID** (string)
 
-        Container's ID in the format 'docker://\<container_id>'
+        Container's ID in the format '\<type>://\<container_id>'
 
       - **ephemeralContainerStatuses.lastState.terminated.exitCode** (int32), required
 
@@ -2358,7 +2444,7 @@ PodStatus represents information about the status of a pod. Status may trail the
 
   - **ephemeralContainerStatuses.restartCount** (int32), required
 
-    The number of times the container has been restarted, currently based on the number of dead containers that have not yet been removed. Note that this is calculated from dead containers. But those containers are subject to garbage collection. This value will get capped at 5 by GC.
+    The number of times the container has been restarted.
 
   - **ephemeralContainerStatuses.started** (boolean)
 
@@ -2747,6 +2833,11 @@ POST /api/v1/namespaces/{namespace}/pods
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -2799,6 +2890,11 @@ PUT /api/v1/namespaces/{namespace}/pods/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -2849,6 +2945,11 @@ PUT /api/v1/namespaces/{namespace}/pods/{name}/ephemeralcontainers
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -2899,6 +3000,11 @@ PUT /api/v1/namespaces/{namespace}/pods/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -2949,6 +3055,11 @@ PATCH /api/v1/namespaces/{namespace}/pods/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -3004,6 +3115,11 @@ PATCH /api/v1/namespaces/{namespace}/pods/{name}/ephemeralcontainers
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -3059,6 +3175,11 @@ PATCH /api/v1/namespaces/{namespace}/pods/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/workload-resources/priority-class-v1.md b/content/en/docs/reference/kubernetes-api/workload-resources/priority-class-v1.md
index cd96fe6790..5d57c0f5ae 100644
--- a/content/en/docs/reference/kubernetes-api/workload-resources/priority-class-v1.md
+++ b/content/en/docs/reference/kubernetes-api/workload-resources/priority-class-v1.md
@@ -6,7 +6,7 @@ api_metadata:
 content_type: "api_reference"
 description: "PriorityClass defines mapping from a priority class name to the priority integer value."
 title: "PriorityClass"
-weight: 13
+weight: 14
 auto_generated: true
 ---
 
@@ -56,7 +56,7 @@ PriorityClass defines mapping from a priority class name to the priority integer
 
 - **preemptionPolicy** (string)
 
-  PreemptionPolicy is the Policy for preempting pods with lower priority. One of Never, PreemptLowerPriority. Defaults to PreemptLowerPriority if unset. This field is beta-level, gated by the NonPreemptingPriority feature-gate.
+  PreemptionPolicy is the Policy for preempting pods with lower priority. One of Never, PreemptLowerPriority. Defaults to PreemptLowerPriority if unset.
 
 
 
@@ -217,6 +217,11 @@ POST /apis/scheduling.k8s.io/v1/priorityclasses
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -264,6 +269,11 @@ PUT /apis/scheduling.k8s.io/v1/priorityclasses/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -309,6 +319,11 @@ PATCH /apis/scheduling.k8s.io/v1/priorityclasses/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/workload-resources/replica-set-v1.md b/content/en/docs/reference/kubernetes-api/workload-resources/replica-set-v1.md
index f2c5f894af..e9a60070dc 100644
--- a/content/en/docs/reference/kubernetes-api/workload-resources/replica-set-v1.md
+++ b/content/en/docs/reference/kubernetes-api/workload-resources/replica-set-v1.md
@@ -96,7 +96,7 @@ ReplicaSetStatus represents the current status of a ReplicaSet.
 
 - **readyReplicas** (int32)
 
-  The number of ready replicas for this replica set.
+  readyReplicas is the number of pods targeted by this ReplicaSet with a Ready Condition.
 
 - **fullyLabeledReplicas** (int32)
 
@@ -413,6 +413,11 @@ POST /apis/apps/v1/namespaces/{namespace}/replicasets
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -465,6 +470,11 @@ PUT /apis/apps/v1/namespaces/{namespace}/replicasets/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -515,6 +525,11 @@ PUT /apis/apps/v1/namespaces/{namespace}/replicasets/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -565,6 +580,11 @@ PATCH /apis/apps/v1/namespaces/{namespace}/replicasets/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -620,6 +640,11 @@ PATCH /apis/apps/v1/namespaces/{namespace}/replicasets/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/workload-resources/replication-controller-v1.md b/content/en/docs/reference/kubernetes-api/workload-resources/replication-controller-v1.md
index 890897ecbb..a83a50a4cb 100644
--- a/content/en/docs/reference/kubernetes-api/workload-resources/replication-controller-v1.md
+++ b/content/en/docs/reference/kubernetes-api/workload-resources/replication-controller-v1.md
@@ -413,6 +413,11 @@ POST /api/v1/namespaces/{namespace}/replicationcontrollers
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -465,6 +470,11 @@ PUT /api/v1/namespaces/{namespace}/replicationcontrollers/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -515,6 +525,11 @@ PUT /api/v1/namespaces/{namespace}/replicationcontrollers/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -565,6 +580,11 @@ PATCH /api/v1/namespaces/{namespace}/replicationcontrollers/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -620,6 +640,11 @@ PATCH /api/v1/namespaces/{namespace}/replicationcontrollers/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/kubernetes-api/workload-resources/stateful-set-v1.md b/content/en/docs/reference/kubernetes-api/workload-resources/stateful-set-v1.md
index 6bc6da0e15..9d2b41b6cc 100644
--- a/content/en/docs/reference/kubernetes-api/workload-resources/stateful-set-v1.md
+++ b/content/en/docs/reference/kubernetes-api/workload-resources/stateful-set-v1.md
@@ -89,6 +89,8 @@ A StatefulSetSpec is the specification of a StatefulSet.
   - **updateStrategy.type** (string)
 
     Type indicates the type of the StatefulSetUpdateStrategy. Default is RollingUpdate.
+    
+    
 
   - **updateStrategy.rollingUpdate** (RollingUpdateStatefulSetStrategy)
 
@@ -97,13 +99,22 @@ A StatefulSetSpec is the specification of a StatefulSet.
     <a name="RollingUpdateStatefulSetStrategy"></a>
     *RollingUpdateStatefulSetStrategy is used to communicate parameter for RollingUpdateStatefulSetStrategyType.*
 
+    - **updateStrategy.rollingUpdate.maxUnavailable** (IntOrString)
+
+      The maximum number of pods that can be unavailable during the update. Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). Absolute number is calculated from percentage by rounding up. This can not be 0. Defaults to 1. This field is alpha-level and is only honored by servers that enable the MaxUnavailableStatefulSet feature. The field applies to all pods in the range 0 to Replicas-1. That means if there is any unavailable pod in the range 0 to Replicas-1, it will be counted towards MaxUnavailable.
+
+      <a name="IntOrString"></a>
+      *IntOrString is a type that can hold an int32 or a string.  When used in JSON or YAML marshalling and unmarshalling, it produces or consumes the inner type.  This allows you to have, for example, a JSON field that can accept a name or number.*
+
     - **updateStrategy.rollingUpdate.partition** (int32)
 
-      Partition indicates the ordinal at which the StatefulSet should be partitioned. Default value is 0.
+      Partition indicates the ordinal at which the StatefulSet should be partitioned for updates. During a rolling update, all pods from ordinal Replicas-1 to Partition are updated. All pods from ordinal Partition-1 to 0 remain untouched. This is helpful in being able to do a canary based deployment. The default value is 0.
 
 - **podManagementPolicy** (string)
 
   podManagementPolicy controls how pods are created during initial scale up, when replacing pods on nodes, or when scaling down. The default policy is `OrderedReady`, where pods are created in increasing order (pod-0, then pod-1, etc) and the controller will wait until each pod is ready before continuing. When scaling down, the pods are removed in the opposite order. The alternative policy is `Parallel` which will create pods in parallel to match the desired scale without waiting, and on scale down will delete all pods at once.
+  
+  
 
 - **revisionHistoryLimit** (int32)
 
@@ -117,6 +128,21 @@ A StatefulSetSpec is the specification of a StatefulSet.
 
   Minimum number of seconds for which a newly created pod should be ready without any of its container crashing for it to be considered available. Defaults to 0 (pod will be considered available as soon as it is ready) This is an alpha field and requires enabling StatefulSetMinReadySeconds feature gate.
 
+- **persistentVolumeClaimRetentionPolicy** (StatefulSetPersistentVolumeClaimRetentionPolicy)
+
+  persistentVolumeClaimRetentionPolicy describes the lifecycle of persistent volume claims created from volumeClaimTemplates. By default, all persistent volume claims are created as needed and retained until manually deleted. This policy allows the lifecycle to be altered, for example by deleting persistent volume claims when their stateful set is deleted, or when their pod is scaled down. This requires the StatefulSetAutoDeletePVC feature gate to be enabled, which is alpha.  +optional
+
+  <a name="StatefulSetPersistentVolumeClaimRetentionPolicy"></a>
+  *StatefulSetPersistentVolumeClaimRetentionPolicy describes the policy used for PVCs created from the StatefulSet VolumeClaimTemplates.*
+
+  - **persistentVolumeClaimRetentionPolicy.whenDeleted** (string)
+
+    WhenDeleted specifies what happens to PVCs created from StatefulSet VolumeClaimTemplates when the StatefulSet is deleted. The default policy of `Retain` causes PVCs to not be affected by StatefulSet deletion. The `Delete` policy causes those PVCs to be deleted.
+
+  - **persistentVolumeClaimRetentionPolicy.whenScaled** (string)
+
+    WhenScaled specifies what happens to PVCs created from StatefulSet VolumeClaimTemplates when the StatefulSet is scaled down. The default policy of `Retain` causes PVCs to not be affected by a scaledown. The `Delete` policy causes the associated PVCs for any excess pods above the replica count to be deleted.
+
 
 
 
@@ -133,7 +159,7 @@ StatefulSetStatus represents the current state of a StatefulSet.
 
 - **readyReplicas** (int32)
 
-  readyReplicas is the number of Pods created by the StatefulSet controller that have a Ready Condition.
+  readyReplicas is the number of pods created for this StatefulSet with a Ready Condition.
 
 - **currentReplicas** (int32)
 
@@ -145,7 +171,7 @@ StatefulSetStatus represents the current state of a StatefulSet.
 
 - **availableReplicas** (int32)
 
-  Total number of available pods (ready for at least minReadySeconds) targeted by this statefulset. This is an alpha field and requires enabling StatefulSetMinReadySeconds feature gate. Remove omitempty when graduating to beta
+  Total number of available pods (ready for at least minReadySeconds) targeted by this statefulset. This is a beta field and enabled/disabled by StatefulSetMinReadySeconds feature gate.
 
 - **collisionCount** (int32)
 
@@ -470,6 +496,11 @@ POST /apis/apps/v1/namespaces/{namespace}/statefulsets
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -522,6 +553,11 @@ PUT /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -572,6 +608,11 @@ PUT /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **pretty** (*in query*): string
 
   <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
@@ -622,6 +663,11 @@ PATCH /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
@@ -677,6 +723,11 @@ PATCH /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}/status
   <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
 
 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
 - **force** (*in query*): boolean
 
   <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
diff --git a/content/en/docs/reference/labels-annotations-taints.md b/content/en/docs/reference/labels-annotations-taints.md
deleted file mode 100644
index 07e6d19426..0000000000
--- a/content/en/docs/reference/labels-annotations-taints.md
+++ /dev/null
@@ -1,428 +0,0 @@
----
-title: Well-Known Labels, Annotations and Taints
-content_type: concept
-weight: 20
----
-
-<!-- overview -->
-
-Kubernetes reserves all labels and annotations in the kubernetes.io namespace.
-
-This document serves both as a reference to the values and as a coordination point for assigning values.
-
-
-
-<!-- body -->
-
-## kubernetes.io/arch
-
-Example: `kubernetes.io/arch=amd64`
-
-Used on: Node
-
-The Kubelet populates this with `runtime.GOARCH` as defined by Go. This can be handy if you are mixing arm and x86 nodes.
-
-## kubernetes.io/os
-
-Example: `kubernetes.io/os=linux`
-
-Used on: Node
-
-The Kubelet populates this with `runtime.GOOS` as defined by Go. This can be handy if you are mixing operating systems in your cluster (for example: mixing Linux and Windows nodes).
-
-## kubernetes.io/metadata.name
-
-Example: `kubernetes.io/metadata.name=mynamespace`
-
-Used on: Namespaces
-
-When the `NamespaceDefaultLabelName`
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled,
-the Kubernetes API server sets this label on all namespaces. The label value is set to
-the name of the namespace.
-
-This is useful if you want to target a specific namespace with a label
-{{< glossary_tooltip text="selector" term_id="selector" >}}.
-
-## beta.kubernetes.io/arch (deprecated)
-
-This label has been deprecated. Please use `kubernetes.io/arch` instead.
-
-## beta.kubernetes.io/os (deprecated)
-
-This label has been deprecated. Please use `kubernetes.io/os` instead.
-
-## kubernetes.io/hostname {#kubernetesiohostname}
-
-Example: `kubernetes.io/hostname=ip-172-20-114-199.ec2.internal`
-
-Used on: Node
-
-The Kubelet populates this label with the hostname. Note that the hostname can be changed from the "actual" hostname by passing the `--hostname-override` flag to the `kubelet`.
-
-This label is also used as part of the topology hierarchy.  See [topology.kubernetes.io/zone](#topologykubernetesiozone) for more information.
-
-
-## controller.kubernetes.io/pod-deletion-cost {#pod-deletion-cost}
-
-Example: `controller.kubernetes.io/pod-deletion-cost=10`
-
-Used on: Pod
-
-This annotation is used to set [Pod Deletion Cost](/docs/concepts/workloads/controllers/replicaset/#pod-deletion-cost)
-which allows users to influence ReplicaSet downscaling order. The annotation parses into an `int32` type.
-
-## beta.kubernetes.io/instance-type (deprecated)
-
-{{< note >}} Starting in v1.17, this label is deprecated in favor of [node.kubernetes.io/instance-type](#nodekubernetesioinstance-type). {{< /note >}}
-
-## node.kubernetes.io/instance-type {#nodekubernetesioinstance-type}
-
-Example: `node.kubernetes.io/instance-type=m3.medium`
-
-Used on: Node
-
-The Kubelet populates this with the instance type as defined by the `cloudprovider`.
-This will be set only if you are using a `cloudprovider`. This setting is handy
-if you want to target certain workloads to certain instance types, but typically you want
-to rely on the Kubernetes scheduler to perform resource-based scheduling. You should aim to schedule based on properties rather than on instance types (for example: require a GPU, instead of requiring a `g2.2xlarge`).
-
-## failure-domain.beta.kubernetes.io/region (deprecated) {#failure-domainbetakubernetesioregion}
-
-See [topology.kubernetes.io/region](#topologykubernetesioregion).
-
-{{< note >}} Starting in v1.17, this label is deprecated in favor of [topology.kubernetes.io/region](#topologykubernetesioregion). {{< /note >}}
-
-## failure-domain.beta.kubernetes.io/zone (deprecated) {#failure-domainbetakubernetesiozone}
-
-See [topology.kubernetes.io/zone](#topologykubernetesiozone).
-
-{{< note >}} Starting in v1.17, this label is deprecated in favor of [topology.kubernetes.io/zone](#topologykubernetesiozone). {{< /note >}}
-
-## statefulset.kubernetes.io/pod-name {#statefulsetkubernetesiopod-name}
-
-Example:
-
-`statefulset.kubernetes.io/pod-name=mystatefulset-7`
-
-When a StatefulSet controller creates a Pod for the StatefulSet, the control plane
-sets this label on that Pod. The value of the label is the name of the Pod being created.
-
-See [Pod Name Label](/docs/concepts/workloads/controllers/statefulset/#pod-name-label) in the
-StatefulSet topic for more details.
-
-## topology.kubernetes.io/region {#topologykubernetesioregion}
-
-Example:
-
-`topology.kubernetes.io/region=us-east-1`
-
-See [topology.kubernetes.io/zone](#topologykubernetesiozone).
-
-## topology.kubernetes.io/zone {#topologykubernetesiozone}
-
-Example:
-
-`topology.kubernetes.io/zone=us-east-1c`
-
-Used on: Node, PersistentVolume
-
-On Node: The `kubelet` or the external `cloud-controller-manager` populates this with the information as provided by the `cloudprovider`.  This will be set only if you are using a `cloudprovider`. However, you should consider setting this on nodes if it makes sense in your topology.
-
-On PersistentVolume: topology-aware volume provisioners will automatically set node affinity constraints on `PersistentVolumes`.
-
-A zone represents a logical failure domain.  It is common for Kubernetes clusters to span multiple zones for increased availability.  While the exact definition of a zone is left to infrastructure implementations, common properties of a zone include very low network latency within a zone, no-cost network traffic within a zone, and failure independence from other zones.  For example, nodes within a zone might share a network switch, but nodes in different zones should not.
-
-A region represents a larger domain, made up of one or more zones.  It is uncommon for Kubernetes clusters to span multiple regions,  While the exact definition of a zone or region is left to infrastructure implementations, common properties of a region include higher network latency between them than within them, non-zero cost for network traffic between them, and failure independence from other zones or regions.  For example, nodes within a region might share power infrastructure (e.g. a UPS or generator), but nodes in different regions typically would not.
-
-Kubernetes makes a few assumptions about the structure of zones and regions:
-1) regions and zones are hierarchical: zones are strict subsets of regions and no zone can be in 2 regions
-2) zone names are unique across regions; for example region "africa-east-1" might be comprised of zones "africa-east-1a" and "africa-east-1b"
-
-It should be safe to assume that topology labels do not change.  Even though labels are strictly mutable, consumers of them can assume that a given node is not going to be moved between zones without being destroyed and recreated.
-
-Kubernetes can use this information in various ways.  For example, the scheduler automatically tries to spread the Pods in a ReplicaSet across nodes in a single-zone cluster (to reduce the impact of node failures, see [kubernetes.io/hostname](#kubernetesiohostname)). With multiple-zone clusters, this spreading behavior also applies to zones (to reduce the impact of zone failures). This is achieved via _SelectorSpreadPriority_.
-
-_SelectorSpreadPriority_ is a best effort placement. If the zones in your cluster are heterogeneous (for example: different numbers of nodes, different types of nodes, or different pod resource requirements), this placement might prevent equal spreading of your Pods across zones. If desired, you can use homogenous zones (same number and types of nodes) to reduce the probability of unequal spreading.
-
-The scheduler (through the _VolumeZonePredicate_ predicate) also will ensure that Pods, that claim a given volume, are only placed into the same zone as that volume. Volumes cannot be attached across zones.
-
-If `PersistentVolumeLabel` does not support automatic labeling of your PersistentVolumes, you should consider
-adding the labels manually (or adding support for `PersistentVolumeLabel`). With `PersistentVolumeLabel`, the scheduler prevents Pods from mounting volumes in a different zone. If your infrastructure doesn't have this constraint, you don't need to add the zone labels to the volumes at all.
-
-## node.kubernetes.io/windows-build {#nodekubernetesiowindows-build}
-
-Example: `node.kubernetes.io/windows-build=10.0.17763`
-
-Used on: Node
-
-When the kubelet is running on Microsoft Windows, it automatically labels its node to record the version of Windows Server in use.
-
-The label's value is in the format "MajorVersion.MinorVersion.BuildNumber".
-
-## service.kubernetes.io/headless {#servicekubernetesioheadless}
-
-Example: `service.kubernetes.io/headless=""`
-
-Used on: Service
-
-The control plane adds this label to an Endpoints object when the owning Service is headless.
-
-## kubernetes.io/service-name {#kubernetesioservice-name}
-
-Example: `kubernetes.io/service-name="nginx"`
-
-Used on: Service
-
-Kubernetes uses this label to differentiate multiple Services. Used currently for `ELB`(Elastic Load Balancer) only.
-
-## endpointslice.kubernetes.io/managed-by {#endpointslicekubernetesiomanaged-by}
-
-Example: `endpointslice.kubernetes.io/managed-by="controller"`
-
-Used on: EndpointSlices
-
-The label is used to indicate the controller or entity that manages an EndpointSlice. This label aims to enable different EndpointSlice objects to be managed by different controllers or entities within the same cluster.
-
-## endpointslice.kubernetes.io/skip-mirror {#endpointslicekubernetesioskip-mirror}
-
-Example: `endpointslice.kubernetes.io/skip-mirror="true"`
-
-Used on: Endpoints
-
-The label can be set to `"true"` on an Endpoints resource to indicate that the EndpointSliceMirroring controller should not mirror this resource with EndpointSlices.
-
-## service.kubernetes.io/service-proxy-name {#servicekubernetesioservice-proxy-name}
-
-Example: `service.kubernetes.io/service-proxy-name="foo-bar"`
-
-Used on: Service
-
-The kube-proxy has this label for custom proxy, which delegates service control to custom proxy.
-
-## experimental.windows.kubernetes.io/isolation-type (deprecated) {#experimental-windows-kubernetes-io-isolation-type}
-
-Example: `experimental.windows.kubernetes.io/isolation-type: "hyperv"`
-
-Used on: Pod
-
-The annotation is used to run Windows containers with Hyper-V isolation. To use Hyper-V isolation feature and create a Hyper-V isolated container, the kubelet should be started with feature gates HyperVContainer=true and the Pod should include the annotation experimental.windows.kubernetes.io/isolation-type=hyperv.
-
-{{< note >}}
-You can only set this annotation on Pods that have a single container.
-Starting from v1.20, this annotation is deprecated. Experimental Hyper-V support was removed in 1.21.
-{{< /note >}}
-
-## ingressclass.kubernetes.io/is-default-class
-
-Example: `ingressclass.kubernetes.io/is-default-class: "true"`
-
-Used on: IngressClass
-
-When a single IngressClass resource has this annotation set to `"true"`, new Ingress resource without a class specified will be assigned this default class.
-
-## kubernetes.io/ingress.class (deprecated)
-
-{{< note >}}
-Starting in v1.18, this annotation is deprecated in favor of `spec.ingressClassName`.
-{{< /note >}}
-
-## storageclass.kubernetes.io/is-default-class
-
-Example: `storageclass.kubernetes.io/is-default-class=true`
-
-Used on: StorageClass
-
-When a single StorageClass resource has this annotation set to `"true"`, new PersistentVolumeClaim
-resource without a class specified will be assigned this default class.
-
-## alpha.kubernetes.io/provided-node-ip
-
-Example: `alpha.kubernetes.io/provided-node-ip: "10.0.0.1"`
-
-Used on: Node
-
-The kubelet can set this annotation on a Node to denote its configured IPv4 address.
-
-When kubelet is started with the "external" cloud provider, it sets this annotation on the Node to denote an IP address set from the command line flag (`--node-ip`). This IP is verified with the cloud provider as valid by the cloud-controller-manager.
-
-## batch.kubernetes.io/job-completion-index
-
-Example: `batch.kubernetes.io/job-completion-index: "3"`
-
-Used on: Pod
-
-The Job controller in the kube-controller-manager sets this annotation for Pods
-created with Indexed [completion mode](/docs/concepts/workloads/controllers/job/#completion-mode).
-
-## kubectl.kubernetes.io/default-container
-
-Example: `kubectl.kubernetes.io/default-container: "front-end-app"`
-
-The value of the annotation is the container name that is default for this Pod. For example, `kubectl logs` or `kubectl exec` without `-c` or `--container` flag will use this default container.
-
-## endpoints.kubernetes.io/over-capacity
-
-Example: `endpoints.kubernetes.io/over-capacity:truncated`
-
-Used on: Endpoints
-
-In Kubernetes clusters v1.22 (or later), the Endpoints controller adds this annotation to an Endpoints resource if it has more than 1000 endpoints. The annotation indicates that the Endpoints resource is over capacity and the number of endpoints has been truncated to 1000.
-
-## batch.kubernetes.io/job-tracking
-
-Example: `batch.kubernetes.io/job-tracking: ""`
-
-Used on: Jobs
-
-The presence of this annotation on a Job indicates that the control plane is
-[tracking the Job status using finalizers](/docs/concepts/workloads/controllers/job/#job-tracking-with-finalizers).
-You should **not** manually add or remove this annotation.
-
-## scheduler.alpha.kubernetes.io/preferAvoidPods (deprecated) {#scheduleralphakubernetesio-preferavoidpods}
-
-Used on: Nodes
-
-This annotation requires the [NodePreferAvoidPods scheduling plugin](/docs/reference/scheduling/config/#scheduling-plugins)
-to be enabled. The plugin is deprecated since Kubernetes 1.22.
-Use [Taints and Tolerations](/docs/concepts/scheduling-eviction/taint-and-toleration/) instead.
-
-**The taints listed below are always used on Nodes**
-
-## node.kubernetes.io/not-ready
-
-Example: `node.kubernetes.io/not-ready:NoExecute`
-
-The node controller detects whether a node is ready by monitoring its health and adds or removes this taint accordingly.
-
-## node.kubernetes.io/unreachable
-
-Example: `node.kubernetes.io/unreachable:NoExecute`
-
-The node controller adds the taint to a node corresponding to the [NodeCondition](/docs/concepts/architecture/nodes/#condition) `Ready` being `Unknown`.
-
-## node.kubernetes.io/unschedulable
-
-Example: `node.kubernetes.io/unschedulable:NoSchedule`
-
-The taint will be added to a node when initializing the node to avoid race condition.
-
-## node.kubernetes.io/memory-pressure
-
-Example: `node.kubernetes.io/memory-pressure:NoSchedule`
-
-The kubelet detects memory pressure based on `memory.available` and `allocatableMemory.available` observed on a Node. The observed values are then compared to the corresponding thresholds that can be set on the kubelet to determine if the Node condition and taint should be added/removed.
-
-## node.kubernetes.io/disk-pressure
-
-Example: `node.kubernetes.io/disk-pressure:NoSchedule`
-
-The kubelet detects disk pressure based on `imagefs.available`, `imagefs.inodesFree`, `nodefs.available` and `nodefs.inodesFree`(Linux only) observed on a Node. The observed values are then compared to the corresponding thresholds that can be set on the kubelet to determine if the Node condition and taint should be added/removed.
-
-## node.kubernetes.io/network-unavailable
-
-Example: `node.kubernetes.io/network-unavailable:NoSchedule`
-
-This is initially set by the kubelet when the cloud provider used indicates a requirement for additional network configuration. Only when the route on the cloud is configured properly will the taint be removed by the cloud provider.
-
-## node.kubernetes.io/pid-pressure
-
-Example: `node.kubernetes.io/pid-pressure:NoSchedule`
-
-The kubelet checks D-value of the size of `/proc/sys/kernel/pid_max` and the PIDs consumed by Kubernetes on a node to get the number of available PIDs that referred to as the `pid.available` metric. The metric is then compared to the corresponding threshold that can be set on the kubelet to determine if the node condition and taint should be added/removed.
-
-## node.cloudprovider.kubernetes.io/uninitialized
-
-Example: `node.cloudprovider.kubernetes.io/uninitialized:NoSchedule`
-
-Sets this taint on a node to mark it as unusable, when kubelet is started with the "external" cloud provider, until a controller from the cloud-controller-manager initializes this node, and then removes the taint.
-
-## node.cloudprovider.kubernetes.io/shutdown
-
-Example: `node.cloudprovider.kubernetes.io/shutdown:NoSchedule`
-
-If a Node is in a cloud provider specified shutdown state, the Node gets tainted accordingly with `node.cloudprovider.kubernetes.io/shutdown` and the taint effect of `NoSchedule`.
-
-## pod-security.kubernetes.io/enforce
-
-Example: `pod-security.kubernetes.io/enforce: baseline`
-
-Used on: Namespace
-
-Value **must** be one of `privileged`, `baseline`, or `restricted` which correspond to
-[Pod Security Standard](/docs/concepts/security/pod-security-standards) levels. Specifically,
-the `enforce` label _prohibits_ the creation of any Pod in the labeled Namespace which does not meet
-the requirements outlined in the indicated level.
-
-See [Enforcing Pod Security at the Namespace Level](/docs/concepts/security/pod-security-admission)
-for more information.
-
-## pod-security.kubernetes.io/enforce-version
-
-Example: `pod-security.kubernetes.io/enforce-version: {{< skew latestVersion >}}`
-
-Used on: Namespace
-
-Value **must** be `latest` or a valid Kubernetes version in the format `v<MAJOR>.<MINOR>`.
-This determines the version of the [Pod Security Standard](/docs/concepts/security/pod-security-standards) 
-policies to apply when validating a submitted Pod.
-
-See [Enforcing Pod Security at the Namespace Level](/docs/concepts/security/pod-security-admission)
-for more information.
-
-## pod-security.kubernetes.io/audit
-
-Example: `pod-security.kubernetes.io/audit: baseline`
-
-Used on: Namespace
-
-Value **must** be one of `privileged`, `baseline`, or `restricted` which correspond to
-[Pod Security Standard](/docs/concepts/security/pod-security-standards) levels. Specifically,
-the `audit` label does not prevent the creation of a Pod in the labeled Namespace which does not meet
-the requirements outlined in the indicated level, but adds an audit annotation to that Pod.
-
-See [Enforcing Pod Security at the Namespace Level](/docs/concepts/security/pod-security-admission)
-for more information.
-
-## pod-security.kubernetes.io/audit-version
-
-Example: `pod-security.kubernetes.io/audit-version: {{< skew latestVersion >}}`
-
-Used on: Namespace
-
-Value **must** be `latest` or a valid Kubernetes version in the format `v<MAJOR>.<MINOR>`.
-This determines the version of the [Pod Security Standard](/docs/concepts/security/pod-security-standards) 
-policies to apply when validating a submitted Pod.
-
-See [Enforcing Pod Security at the Namespace Level](/docs/concepts/security/pod-security-admission)
-for more information.
-
-## pod-security.kubernetes.io/warn
-
-Example: `pod-security.kubernetes.io/warn: baseline`
-
-Used on: Namespace
-
-Value **must** be one of `privileged`, `baseline`, or `restricted` which correspond to
-[Pod Security Standard](/docs/concepts/security/pod-security-standards) levels. Specifically,
-the `warn` label does not prevent the creation of a Pod in the labeled Namespace which does not meet the 
-requirements outlined in the indicated level, but returns a warning to the user after doing so.
-Note that warnings are also displayed when creating or updating objects that contain Pod templates,
-such as Deployments, Jobs, StatefulSets, etc.
-
-See [Enforcing Pod Security at the Namespace Level](/docs/concepts/security/pod-security-admission)
-for more information.
-
-## pod-security.kubernetes.io/warn-version
-
-Example: `pod-security.kubernetes.io/warn-version: {{< skew latestVersion >}}`
-
-Used on: Namespace
-
-Value **must** be `latest` or a valid Kubernetes version in the format `v<MAJOR>.<MINOR>`.
-This determines the version of the [Pod Security Standard](/docs/concepts/security/pod-security-standards)
-policies to apply when validating a submitted Pod. Note that warnings are also displayed when creating
-or updating objects that contain Pod templates, such as Deployments, Jobs, StatefulSets, etc.
-
-See [Enforcing Pod Security at the Namespace Level](/docs/concepts/security/pod-security-admission)
-for more information.
\ No newline at end of file
diff --git a/content/en/docs/reference/labels-annotations-taints/_index.md b/content/en/docs/reference/labels-annotations-taints/_index.md
new file mode 100644
index 0000000000..d132642e2c
--- /dev/null
+++ b/content/en/docs/reference/labels-annotations-taints/_index.md
@@ -0,0 +1,736 @@
+---
+title: Well-Known Labels, Annotations and Taints
+content_type: concept
+weight: 20
+no_list: true
+---
+
+<!-- overview -->
+
+Kubernetes reserves all labels and annotations in the kubernetes.io namespace.
+
+This document serves both as a reference to the values and as a coordination point for assigning values.
+
+<!-- body -->
+
+## Labels, annotations and taints used on API objects
+
+### app.kubernetes.io/component
+
+Example: `app.kubernetes.io/component: "database"`
+
+Used on: All Objects
+
+The component within the architecture.
+
+One of the [recommended labels](/docs/concepts/overview/working-with-objects/common-labels/#labels).
+
+### app.kubernetes.io/created-by
+
+Example: `app.kubernetes.io/created-by: "controller-manager"`
+
+Used on: All Objects
+
+The controller/user who created this resource.
+
+One of the [recommended labels](/docs/concepts/overview/working-with-objects/common-labels/#labels).
+
+### app.kubernetes.io/instance
+
+Example: `app.kubernetes.io/instance: "mysql-abcxzy"`
+
+Used on: All Objects
+
+A unique name identifying the instance of an application.
+
+One of the [recommended labels](/docs/concepts/overview/working-with-objects/common-labels/#labels).
+
+### app.kubernetes.io/managed-by
+
+Example: `app.kubernetes.io/managed-by: "helm"`
+
+Used on: All Objects
+
+The tool being used to manage the operation of an application.
+
+One of the [recommended labels](/docs/concepts/overview/working-with-objects/common-labels/#labels).
+
+### app.kubernetes.io/name
+
+Example: `app.kubernetes.io/name: "mysql"`
+
+Used on: All Objects
+
+The name of the application.
+
+One of the [recommended labels](/docs/concepts/overview/working-with-objects/common-labels/#labels).
+
+### app.kubernetes.io/part-of
+
+Example: `app.kubernetes.io/part-of: "wordpress"`
+
+Used on: All Objects
+
+The name of a higher level application this one is part of.
+
+One of the [recommended labels](/docs/concepts/overview/working-with-objects/common-labels/#labels).
+
+### app.kubernetes.io/version
+
+Example: `app.kubernetes.io/version: "5.7.21"`
+
+Used on: All Objects
+
+The current version of the application (e.g., a semantic version, revision hash, etc.).
+
+One of the [recommended labels](/docs/concepts/overview/working-with-objects/common-labels/#labels).
+
+### kubernetes.io/arch
+
+Example: `kubernetes.io/arch: "amd64"`
+
+Used on: Node
+
+The Kubelet populates this with `runtime.GOARCH` as defined by Go. This can be handy if you are mixing arm and x86 nodes.
+
+### kubernetes.io/os
+
+Example: `kubernetes.io/os: "linux"`
+
+Used on: Node
+
+The Kubelet populates this with `runtime.GOOS` as defined by Go. This can be handy if you are mixing operating systems in your cluster (for example: mixing Linux and Windows nodes).
+
+### kubernetes.io/metadata.name
+
+Example: `kubernetes.io/metadata.name: "mynamespace"`
+
+Used on: Namespaces
+
+The Kubernetes API server (part of the {{< glossary_tooltip text="control plane" term_id="control-plane" >}})
+sets this label on all namespaces. The label value is set
+to the name of the namespace. You can't change this label's value.
+
+This is useful if you want to target a specific namespace with a label
+{{< glossary_tooltip text="selector" term_id="selector" >}}.
+
+### beta.kubernetes.io/arch (deprecated)
+
+This label has been deprecated. Please use `kubernetes.io/arch` instead.
+
+### beta.kubernetes.io/os (deprecated)
+
+This label has been deprecated. Please use `kubernetes.io/os` instead.
+
+### kubernetes.io/hostname {#kubernetesiohostname}
+
+Example: `kubernetes.io/hostname: "ip-172-20-114-199.ec2.internal"`
+
+Used on: Node
+
+The Kubelet populates this label with the hostname. Note that the hostname can be changed from the "actual" hostname by passing the `--hostname-override` flag to the `kubelet`.
+
+This label is also used as part of the topology hierarchy.  See [topology.kubernetes.io/zone](#topologykubernetesiozone) for more information.
+
+
+### kubernetes.io/change-cause {#change-cause}
+
+Example: `kubernetes.io/change-cause: "kubectl edit --record deployment foo"`
+
+Used on: All Objects
+
+This annotation is a best guess at why something was changed.
+
+It is populated when adding `--record` to a `kubectl` command that may change an object.
+
+### kubernetes.io/description {#description}
+
+Example: `kubernetes.io/description: "Description of K8s object."`
+
+Used on: All Objects
+
+This annotation is used for describing specific behaviour of given object.
+
+### kubernetes.io/enforce-mountable-secrets {#enforce-mountable-secrets}
+
+Example: `kubernetes.io/enforce-mountable-secrets: "true"`
+
+Used on: ServiceAccount
+
+The value for this annotation must be **true** to take effect. This annotation indicates that pods running as this service account may only reference Secret API objects specified in the service account's `secrets` field.
+
+### controller.kubernetes.io/pod-deletion-cost {#pod-deletion-cost}
+
+Example: `controller.kubernetes.io/pod-deletion-cost: "10"`
+
+Used on: Pod
+
+This annotation is used to set [Pod Deletion Cost](/docs/concepts/workloads/controllers/replicaset/#pod-deletion-cost)
+which allows users to influence ReplicaSet downscaling order. The annotation parses into an `int32` type.
+
+### kubernetes.io/ingress-bandwidth
+
+{{< note >}}
+Ingress traffic shaping annotation is an experimental feature.
+If you want to enable traffic shaping support, you must add the `bandwidth` plugin to your CNI configuration file (default `/etc/cni/net.d`) and
+ensure that the binary is included in your CNI bin dir (default `/opt/cni/bin`).
+{{< /note >}}
+
+Example: `kubernetes.io/ingress-bandwidth: 10M`
+
+Used on: Pod
+
+You can apply quality-of-service traffic shaping to a pod and effectively limit its available bandwidth.
+Ingress traffic (to the pod) is handled by shaping queued packets to effectively handle data.
+To limit the bandwidth on a pod, write an object definition JSON file and specify the data traffic
+speed using `kubernetes.io/ingress-bandwidth` annotation. The unit used for specifying ingress
+rate is bits per second, as a [Quantity](/docs/reference/kubernetes-api/common-definitions/quantity/).
+For example, `10M` means 10 megabits per second.
+
+### kubernetes.io/egress-bandwidth
+
+{{< note >}}
+Egress traffic shaping annotation is an experimental feature.
+If you want to enable traffic shaping support, you must add the `bandwidth` plugin to your CNI configuration file (default `/etc/cni/net.d`) and
+ensure that the binary is included in your CNI bin dir (default `/opt/cni/bin`).
+{{< /note >}}
+
+Example: `kubernetes.io/egress-bandwidth: 10M`
+
+Used on: Pod
+
+Egress traffic (from the pod) is handled by policing, which simply drops packets in excess of the configured rate.
+The limits you place on a pod do not affect the bandwidth of other pods.
+To limit the bandwidth on a pod, write an object definition JSON file and specify the data traffic
+speed using `kubernetes.io/egress-bandwidth` annotation. The unit used for specifying egress
+rate is bits per second, as a [Quantity](/docs/reference/kubernetes-api/common-definitions/quantity/).
+For example, `10M` means 10 megabits per second.
+
+### beta.kubernetes.io/instance-type (deprecated)
+
+{{< note >}} Starting in v1.17, this label is deprecated in favor of [node.kubernetes.io/instance-type](#nodekubernetesioinstance-type). {{< /note >}}
+
+### node.kubernetes.io/instance-type {#nodekubernetesioinstance-type}
+
+Example: `node.kubernetes.io/instance-type: "m3.medium"`
+
+Used on: Node
+
+The Kubelet populates this with the instance type as defined by the `cloudprovider`.
+This will be set only if you are using a `cloudprovider`. This setting is handy
+if you want to target certain workloads to certain instance types, but typically you want
+to rely on the Kubernetes scheduler to perform resource-based scheduling. You should aim to schedule based on properties rather than on instance types (for example: require a GPU, instead of requiring a `g2.2xlarge`).
+
+### failure-domain.beta.kubernetes.io/region (deprecated) {#failure-domainbetakubernetesioregion}
+
+See [topology.kubernetes.io/region](#topologykubernetesioregion).
+
+{{< note >}} Starting in v1.17, this label is deprecated in favor of [topology.kubernetes.io/region](#topologykubernetesioregion). {{< /note >}}
+
+### failure-domain.beta.kubernetes.io/zone (deprecated) {#failure-domainbetakubernetesiozone}
+
+See [topology.kubernetes.io/zone](#topologykubernetesiozone).
+
+{{< note >}} Starting in v1.17, this label is deprecated in favor of [topology.kubernetes.io/zone](#topologykubernetesiozone). {{< /note >}}
+
+### statefulset.kubernetes.io/pod-name {#statefulsetkubernetesiopod-name}
+
+Example:
+
+`statefulset.kubernetes.io/pod-name: "mystatefulset-7"`
+
+When a StatefulSet controller creates a Pod for the StatefulSet, the control plane
+sets this label on that Pod. The value of the label is the name of the Pod being created.
+
+See [Pod Name Label](/docs/concepts/workloads/controllers/statefulset/#pod-name-label) in the
+StatefulSet topic for more details.
+
+### topology.kubernetes.io/region {#topologykubernetesioregion}
+
+Example:
+
+`topology.kubernetes.io/region: "us-east-1"`
+
+See [topology.kubernetes.io/zone](#topologykubernetesiozone).
+
+### topology.kubernetes.io/zone {#topologykubernetesiozone}
+
+Example:
+
+`topology.kubernetes.io/zone: "us-east-1c"`
+
+Used on: Node, PersistentVolume
+
+On Node: The `kubelet` or the external `cloud-controller-manager` populates this with the information as provided by the `cloudprovider`.  This will be set only if you are using a `cloudprovider`. However, you should consider setting this on nodes if it makes sense in your topology.
+
+On PersistentVolume: topology-aware volume provisioners will automatically set node affinity constraints on `PersistentVolumes`.
+
+A zone represents a logical failure domain.  It is common for Kubernetes clusters to span multiple zones for increased availability.  While the exact definition of a zone is left to infrastructure implementations, common properties of a zone include very low network latency within a zone, no-cost network traffic within a zone, and failure independence from other zones.  For example, nodes within a zone might share a network switch, but nodes in different zones should not.
+
+A region represents a larger domain, made up of one or more zones.  It is uncommon for Kubernetes clusters to span multiple regions,  While the exact definition of a zone or region is left to infrastructure implementations, common properties of a region include higher network latency between them than within them, non-zero cost for network traffic between them, and failure independence from other zones or regions.  For example, nodes within a region might share power infrastructure (e.g. a UPS or generator), but nodes in different regions typically would not.
+
+Kubernetes makes a few assumptions about the structure of zones and regions:
+1) regions and zones are hierarchical: zones are strict subsets of regions and no zone can be in 2 regions
+2) zone names are unique across regions; for example region "africa-east-1" might be comprised of zones "africa-east-1a" and "africa-east-1b"
+
+It should be safe to assume that topology labels do not change.  Even though labels are strictly mutable, consumers of them can assume that a given node is not going to be moved between zones without being destroyed and recreated.
+
+Kubernetes can use this information in various ways.  For example, the scheduler automatically tries to spread the Pods in a ReplicaSet across nodes in a single-zone cluster (to reduce the impact of node failures, see [kubernetes.io/hostname](#kubernetesiohostname)). With multiple-zone clusters, this spreading behavior also applies to zones (to reduce the impact of zone failures). This is achieved via _SelectorSpreadPriority_.
+
+_SelectorSpreadPriority_ is a best effort placement. If the zones in your cluster are heterogeneous (for example: different numbers of nodes, different types of nodes, or different pod resource requirements), this placement might prevent equal spreading of your Pods across zones. If desired, you can use homogenous zones (same number and types of nodes) to reduce the probability of unequal spreading.
+
+The scheduler (through the _VolumeZonePredicate_ predicate) also will ensure that Pods, that claim a given volume, are only placed into the same zone as that volume. Volumes cannot be attached across zones.
+
+If `PersistentVolumeLabel` does not support automatic labeling of your PersistentVolumes, you should consider
+adding the labels manually (or adding support for `PersistentVolumeLabel`). With `PersistentVolumeLabel`, the scheduler prevents Pods from mounting volumes in a different zone. If your infrastructure doesn't have this constraint, you don't need to add the zone labels to the volumes at all.
+
+### volume.beta.kubernetes.io/storage-provisioner (deprecated)
+
+Example: `volume.beta.kubernetes.io/storage-provisioner: "k8s.io/minikube-hostpath"`
+
+Used on: PersistentVolumeClaim
+
+This annotation has been deprecated.
+
+### volume.beta.kubernetes.io/mount-options (deprecated) {#mount-options}
+
+Example : `volume.beta.kubernetes.io/mount-options: "ro,soft"`
+
+Used on: PersistentVolume
+
+A Kubernetes administrator can specify additional [mount options](/docs/concepts/storage/persistent-volumes/#mount-options) for when a PersistentVolume is mounted on a node.
+
+This annotation has been deprecated.
+
+### volume.kubernetes.io/storage-provisioner
+
+Used on: PersistentVolumeClaim
+
+This annotation will be added to dynamic provisioning required PVC.
+
+### node.kubernetes.io/windows-build {#nodekubernetesiowindows-build}
+
+Example: `node.kubernetes.io/windows-build: "10.0.17763"`
+
+Used on: Node
+
+When the kubelet is running on Microsoft Windows, it automatically labels its node to record the version of Windows Server in use.
+
+The label's value is in the format "MajorVersion.MinorVersion.BuildNumber".
+
+### service.kubernetes.io/headless {#servicekubernetesioheadless}
+
+Example: `service.kubernetes.io/headless: ""`
+
+Used on: Service
+
+The control plane adds this label to an Endpoints object when the owning Service is headless.
+
+### kubernetes.io/service-name {#kubernetesioservice-name}
+
+Example: `kubernetes.io/service-name: "nginx"`
+
+Used on: Service
+
+Kubernetes uses this label to differentiate multiple Services. Used currently for `ELB`(Elastic Load Balancer) only.
+
+### kubernetes.io/service-account.name
+
+Example: `kubernetes.io/service-account.name: "sa-name"`
+
+Used on: Secret
+
+This annotation records the {{< glossary_tooltip term_id="name" text="name">}} of the
+ServiceAccount that the token (stored in the Secret of type `kubernetes.io/service-account-token`) represents.
+
+### kubernetes.io/service-account.uid
+
+Example: `kubernetes.io/service-account.uid: da68f9c6-9d26-11e7-b84e-002dc52800da`
+
+Used on: Secret
+
+This annotation records the {{< glossary_tooltip term_id="uid" text="unique ID" >}} of the
+ServiceAccount that the token (stored in the Secret of type `kubernetes.io/service-account-token`) represents.
+
+### endpointslice.kubernetes.io/managed-by {#endpointslicekubernetesiomanaged-by}
+
+Example: `endpointslice.kubernetes.io/managed-by: "controller"`
+
+Used on: EndpointSlices
+
+The label is used to indicate the controller or entity that manages an EndpointSlice. This label aims to enable different EndpointSlice objects to be managed by different controllers or entities within the same cluster.
+
+### endpointslice.kubernetes.io/skip-mirror {#endpointslicekubernetesioskip-mirror}
+
+Example: `endpointslice.kubernetes.io/skip-mirror: "true"`
+
+Used on: Endpoints
+
+The label can be set to `"true"` on an Endpoints resource to indicate that the EndpointSliceMirroring controller should not mirror this resource with EndpointSlices.
+
+### service.kubernetes.io/service-proxy-name {#servicekubernetesioservice-proxy-name}
+
+Example: `service.kubernetes.io/service-proxy-name: "foo-bar"`
+
+Used on: Service
+
+The kube-proxy has this label for custom proxy, which delegates service control to custom proxy.
+
+### experimental.windows.kubernetes.io/isolation-type (deprecated) {#experimental-windows-kubernetes-io-isolation-type}
+
+Example: `experimental.windows.kubernetes.io/isolation-type: "hyperv"`
+
+Used on: Pod
+
+The annotation is used to run Windows containers with Hyper-V isolation. To use Hyper-V isolation feature and create a Hyper-V isolated container, the kubelet should be started with feature gates HyperVContainer=true and the Pod should include the annotation `experimental.windows.kubernetes.io/isolation-type: hyperv`.
+
+{{< note >}}
+You can only set this annotation on Pods that have a single container.
+Starting from v1.20, this annotation is deprecated. Experimental Hyper-V support was removed in 1.21.
+{{< /note >}}
+
+### ingressclass.kubernetes.io/is-default-class
+
+Example: `ingressclass.kubernetes.io/is-default-class: "true"`
+
+Used on: IngressClass
+
+When a single IngressClass resource has this annotation set to `"true"`, new Ingress resource without a class specified will be assigned this default class.
+
+### kubernetes.io/ingress.class (deprecated)
+
+{{< note >}}
+Starting in v1.18, this annotation is deprecated in favor of `spec.ingressClassName`.
+{{< /note >}}
+
+### storageclass.kubernetes.io/is-default-class
+
+Example: `storageclass.kubernetes.io/is-default-class: "true"`
+
+Used on: StorageClass
+
+When a single StorageClass resource has this annotation set to `"true"`, new PersistentVolumeClaim
+resource without a class specified will be assigned this default class.
+
+### alpha.kubernetes.io/provided-node-ip
+
+Example: `alpha.kubernetes.io/provided-node-ip: "10.0.0.1"`
+
+Used on: Node
+
+The kubelet can set this annotation on a Node to denote its configured IPv4 address.
+
+When kubelet is started with the "external" cloud provider, it sets this annotation on the Node to denote an IP address set from the command line flag (`--node-ip`). This IP is verified with the cloud provider as valid by the cloud-controller-manager.
+
+### batch.kubernetes.io/job-completion-index
+
+Example: `batch.kubernetes.io/job-completion-index: "3"`
+
+Used on: Pod
+
+The Job controller in the kube-controller-manager sets this annotation for Pods
+created with Indexed [completion mode](/docs/concepts/workloads/controllers/job/#completion-mode).
+
+### kubectl.kubernetes.io/default-container
+
+Example: `kubectl.kubernetes.io/default-container: "front-end-app"`
+
+The value of the annotation is the container name that is default for this Pod. For example, `kubectl logs` or `kubectl exec` without `-c` or `--container` flag will use this default container.
+
+### endpoints.kubernetes.io/over-capacity
+
+Example: `endpoints.kubernetes.io/over-capacity:truncated`
+
+Used on: Endpoints
+
+In Kubernetes clusters v1.22 (or later), the Endpoints controller adds this annotation to an Endpoints resource if it has more than 1000 endpoints. The annotation indicates that the Endpoints resource is over capacity and the number of endpoints has been truncated to 1000.
+
+### batch.kubernetes.io/job-tracking
+
+Example: `batch.kubernetes.io/job-tracking: ""`
+
+Used on: Jobs
+
+The presence of this annotation on a Job indicates that the control plane is
+[tracking the Job status using finalizers](/docs/concepts/workloads/controllers/job/#job-tracking-with-finalizers).
+You should **not** manually add or remove this annotation.
+
+### scheduler.alpha.kubernetes.io/preferAvoidPods (deprecated) {#scheduleralphakubernetesio-preferavoidpods}
+
+Used on: Nodes
+
+This annotation requires the [NodePreferAvoidPods scheduling plugin](/docs/reference/scheduling/config/#scheduling-plugins)
+to be enabled. The plugin is deprecated since Kubernetes 1.22.
+Use [Taints and Tolerations](/docs/concepts/scheduling-eviction/taint-and-toleration/) instead.
+
+**The taints listed below are always used on Nodes**
+
+### node.kubernetes.io/not-ready
+
+Example: `node.kubernetes.io/not-ready: "NoExecute"`
+
+The node controller detects whether a node is ready by monitoring its health and adds or removes this taint accordingly.
+
+### node.kubernetes.io/unreachable
+
+Example: `node.kubernetes.io/unreachable: "NoExecute"`
+
+The node controller adds the taint to a node corresponding to the [NodeCondition](/docs/concepts/architecture/nodes/#condition) `Ready` being `Unknown`.
+
+### node.kubernetes.io/unschedulable
+
+Example: `node.kubernetes.io/unschedulable: "NoSchedule"`
+
+The taint will be added to a node when initializing the node to avoid race condition.
+
+### node.kubernetes.io/memory-pressure
+
+Example: `node.kubernetes.io/memory-pressure: "NoSchedule"`
+
+The kubelet detects memory pressure based on `memory.available` and `allocatableMemory.available` observed on a Node. The observed values are then compared to the corresponding thresholds that can be set on the kubelet to determine if the Node condition and taint should be added/removed.
+
+### node.kubernetes.io/disk-pressure
+
+Example: `node.kubernetes.io/disk-pressure :"NoSchedule"`
+
+The kubelet detects disk pressure based on `imagefs.available`, `imagefs.inodesFree`, `nodefs.available` and `nodefs.inodesFree`(Linux only) observed on a Node. The observed values are then compared to the corresponding thresholds that can be set on the kubelet to determine if the Node condition and taint should be added/removed.
+
+### node.kubernetes.io/network-unavailable
+
+Example: `node.kubernetes.io/network-unavailable: "NoSchedule"`
+
+This is initially set by the kubelet when the cloud provider used indicates a requirement for additional network configuration. Only when the route on the cloud is configured properly will the taint be removed by the cloud provider.
+
+### node.kubernetes.io/pid-pressure
+
+Example: `node.kubernetes.io/pid-pressure: "NoSchedule"`
+
+The kubelet checks D-value of the size of `/proc/sys/kernel/pid_max` and the PIDs consumed by Kubernetes on a node to get the number of available PIDs that referred to as the `pid.available` metric. The metric is then compared to the corresponding threshold that can be set on the kubelet to determine if the node condition and taint should be added/removed.
+
+### node.kubernetes.io/out-of-service
+
+Example: `node.kubernetes.io/out-of-service:NoExecute`
+
+A user can manually add the taint to a Node marking it out-of-service. If the `NodeOutOfServiceVolumeDetach` 
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled on
+`kube-controller-manager`, and a Node is marked out-of-service with this taint, the pods on the node will be forcefully deleted if there are no matching tolerations on it and volume detach operations for the pods terminating on the node will happen immediately. This allows the Pods on the out-of-service node to recover quickly on a different node. 
+
+{{< caution >}}
+Refer to
+[Non-graceful node shutdown](/docs/concepts/architecture/nodes/#non-graceful-node-shutdown)
+for further details about when and how to use this taint.
+{{< /caution >}}
+
+
+### node.cloudprovider.kubernetes.io/uninitialized
+
+Example: `node.cloudprovider.kubernetes.io/uninitialized: "NoSchedule"`
+
+Sets this taint on a node to mark it as unusable, when kubelet is started with the "external" cloud provider, until a controller from the cloud-controller-manager initializes this node, and then removes the taint.
+
+### node.cloudprovider.kubernetes.io/shutdown
+
+Example: `node.cloudprovider.kubernetes.io/shutdown: "NoSchedule"`
+
+If a Node is in a cloud provider specified shutdown state, the Node gets tainted accordingly with `node.cloudprovider.kubernetes.io/shutdown` and the taint effect of `NoSchedule`.
+
+### pod-security.kubernetes.io/enforce
+
+Example: `pod-security.kubernetes.io/enforce: "baseline"`
+
+Used on: Namespace
+
+Value **must** be one of `privileged`, `baseline`, or `restricted` which correspond to
+[Pod Security Standard](/docs/concepts/security/pod-security-standards) levels. Specifically,
+the `enforce` label _prohibits_ the creation of any Pod in the labeled Namespace which does not meet
+the requirements outlined in the indicated level.
+
+See [Enforcing Pod Security at the Namespace Level](/docs/concepts/security/pod-security-admission)
+for more information.
+
+### pod-security.kubernetes.io/enforce-version
+
+Example: `pod-security.kubernetes.io/enforce-version: "{{< skew currentVersion >}}"`
+
+Used on: Namespace
+
+Value **must** be `latest` or a valid Kubernetes version in the format `v<MAJOR>.<MINOR>`.
+This determines the version of the [Pod Security Standard](/docs/concepts/security/pod-security-standards)
+policies to apply when validating a submitted Pod.
+
+See [Enforcing Pod Security at the Namespace Level](/docs/concepts/security/pod-security-admission)
+for more information.
+
+### pod-security.kubernetes.io/audit
+
+Example: `pod-security.kubernetes.io/audit: "baseline"`
+
+Used on: Namespace
+
+Value **must** be one of `privileged`, `baseline`, or `restricted` which correspond to
+[Pod Security Standard](/docs/concepts/security/pod-security-standards) levels. Specifically,
+the `audit` label does not prevent the creation of a Pod in the labeled Namespace which does not meet
+the requirements outlined in the indicated level, but adds an audit annotation to that Pod.
+
+See [Enforcing Pod Security at the Namespace Level](/docs/concepts/security/pod-security-admission)
+for more information.
+
+### pod-security.kubernetes.io/audit-version
+
+Example: `pod-security.kubernetes.io/audit-version: "{{< skew currentVersion >}}"`
+
+Used on: Namespace
+
+Value **must** be `latest` or a valid Kubernetes version in the format `v<MAJOR>.<MINOR>`.
+This determines the version of the [Pod Security Standard](/docs/concepts/security/pod-security-standards)
+policies to apply when validating a submitted Pod.
+
+See [Enforcing Pod Security at the Namespace Level](/docs/concepts/security/pod-security-admission)
+for more information.
+
+### pod-security.kubernetes.io/warn
+
+Example: `pod-security.kubernetes.io/warn: "baseline"`
+
+Used on: Namespace
+
+Value **must** be one of `privileged`, `baseline`, or `restricted` which correspond to
+[Pod Security Standard](/docs/concepts/security/pod-security-standards) levels. Specifically,
+the `warn` label does not prevent the creation of a Pod in the labeled Namespace which does not meet the
+requirements outlined in the indicated level, but returns a warning to the user after doing so.
+Note that warnings are also displayed when creating or updating objects that contain Pod templates,
+such as Deployments, Jobs, StatefulSets, etc.
+
+See [Enforcing Pod Security at the Namespace Level](/docs/concepts/security/pod-security-admission)
+for more information.
+
+### pod-security.kubernetes.io/warn-version
+
+Example: `pod-security.kubernetes.io/warn-version: "{{< skew currentVersion >}}"`
+
+Used on: Namespace
+
+Value **must** be `latest` or a valid Kubernetes version in the format `v<MAJOR>.<MINOR>`.
+This determines the version of the [Pod Security Standard](/docs/concepts/security/pod-security-standards)
+policies to apply when validating a submitted Pod. Note that warnings are also displayed when creating
+or updating objects that contain Pod templates, such as Deployments, Jobs, StatefulSets, etc.
+
+See [Enforcing Pod Security at the Namespace Level](/docs/concepts/security/pod-security-admission)
+for more information.
+
+### kubernetes.io/psp (deprecated) {#kubernetes-io-psp}
+
+Example: `kubernetes.io/psp: restricted`
+
+This annotation is only relevant if you are using [PodSecurityPolicies](/docs/concepts/security/pod-security-policy/).
+
+When the PodSecurityPolicy admission controller admits a Pod, the admission controller
+modifies the Pod to have this annotation.
+The value of the annotation is the name of the PodSecurityPolicy that was used for validation.
+
+### seccomp.security.alpha.kubernetes.io/pod (deprecated) {#seccomp-security-alpha-kubernetes-io-pod}
+
+This annotation has been deprecated since Kubernetes v1.19 and will become non-functional in v1.25.
+To specify security settings for a Pod, include the `securityContext` field in the Pod specification.
+The [`securityContext`](/docs/reference/kubernetes-api/workload-resources/pod-v1/#security-context) field within a Pod's `.spec` defines pod-level security attributes.
+When you [specify the security context for a Pod](/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-pod),
+the settings you specify apply to all containers in that Pod.
+
+### container.seccomp.security.alpha.kubernetes.io/[NAME] (deprecated) {#container-seccomp-security-alpha-kubernetes-io}
+
+This annotation has been deprecated since Kubernetes v1.19 and will become non-functional in v1.25.
+The tutorial [Restrict a Container's Syscalls with seccomp](/docs/tutorials/security/seccomp/) takes
+you through the steps you follow to apply a seccomp profile to a Pod or to one of
+its containers. That tutorial covers the supported mechanism for configuring seccomp in Kubernetes,
+based on setting `securityContext` within the Pod's `.spec`.
+
+### snapshot.storage.kubernetes.io/allowVolumeModeChange
+
+Example: `snapshot.storage.kubernetes.io/allowVolumeModeChange: "true"`
+
+Used on: VolumeSnapshotContent
+
+Value can either be `true` or `false`.
+This determines whether a user can modify the mode of the source volume when a
+{{< glossary_tooltip text="PersistentVolumeClaim" term_id="persistent-volume-claim" >}} is being
+created from a VolumeSnapshot.
+
+Refer to [Converting the volume mode of a Snapshot](/docs/concepts/storage/volume-snapshots/#convert-volume-mode) 
+and the [Kubernetes CSI Developer Documentation](https://kubernetes-csi.github.io/docs/) for more information.
+
+## Annotations used for audit
+
+<!-- sorted by annotation -->
+- [`authorization.k8s.io/decision`](/docs/reference/labels-annotations-taints/audit-annotations/#authorization-k8s-io-decision)
+- [`authorization.k8s.io/reason`](/docs/reference/labels-annotations-taints/audit-annotations/#authorization-k8s-io-reason)
+- [`insecure-sha1.invalid-cert.kubernetes.io/$hostname`](/docs/reference/labels-annotations-taints/audit-annotations/#insecure-sha1-invalid-cert-kubernetes-io-hostname)
+- [`missing-san.invalid-cert.kubernetes.io/$hostname`](/docs/reference/labels-annotations-taints/audit-annotations/#missing-san-invalid-cert-kubernetes-io-hostname)
+- [`pod-security.kubernetes.io/audit-violations`](/docs/reference/labels-annotations-taints/audit-annotations/#pod-security-kubernetes-io-audit-violations)
+- [`pod-security.kubernetes.io/enforce-policy`](/docs/reference/labels-annotations-taints/audit-annotations/#pod-security-kubernetes-io-enforce-policy)
+- [`pod-security.kubernetes.io/exempt`](/docs/reference/labels-annotations-taints/audit-annotations/#pod-security-kubernetes-io-exempt)
+
+See more details on the [Audit Annotations](/docs/reference/labels-annotations-taints/audit-annotations/) page.
+
+## kubeadm
+
+### kubeadm.alpha.kubernetes.io/cri-socket
+
+Example: `kubeadm.alpha.kubernetes.io/cri-socket: unix:///run/containerd/container.sock`
+
+Used on: Node
+
+Annotation that kubeadm uses to preserve the CRI socket information given to kubeadm at `init`/`join` time for later use.
+kubeadm annotates the Node object with this information. The annotation remains "alpha", since ideally this should
+be a field in KubeletConfiguration instead.
+
+### kubeadm.kubernetes.io/etcd.advertise-client-urls
+
+Example: `kubeadm.kubernetes.io/etcd.advertise-client-urls: https://172.17.0.18:2379`
+
+Used on: Pod
+
+Annotation that kubeadm places on locally managed etcd pods to keep track of a list of URLs where etcd clients
+should connect to. This is used mainly for etcd cluster health check purposes.
+
+### kubeadm.kubernetes.io/kube-apiserver.advertise-address.endpoint
+
+Example: `kubeadm.kubernetes.io/kube-apiserver.advertise-address.endpoint: https//172.17.0.18:6443`
+
+Used on: Pod
+
+Annotation that kubeadm places on locally managed kube-apiserver pods to keep track of the exposed advertise
+address/port endpoint for that API server instance.
+
+### kubeadm.kubernetes.io/component-config.hash
+
+Used on: ConfigMap
+
+Example: `kubeadm.kubernetes.io/component-config.hash: 2c26b46b68ffc68ff99b453c1d30413413422d706483bfa0f98a5e886266e7ae`
+
+Annotation that kubeadm places on ConfigMaps that it manages for configuring components. It contains a hash (SHA-256)
+used to determine if the user has applied settings different from the kubeadm defaults for a particular component.
+
+### node-role.kubernetes.io/control-plane
+
+Used on: Node
+
+Label that kubeadm applies on the control plane nodes that it manages.
+
+### node-role.kubernetes.io/control-plane
+
+Used on: Node
+
+Example: `node-role.kubernetes.io/control-plane:NoSchedule`
+
+Taint that kubeadm applies on control plane nodes to allow only critical workloads to schedule on them.
+
+### node-role.kubernetes.io/master
+
+Used on: Node
+
+Example: `node-role.kubernetes.io/master:NoSchedule`
+
+Taint that kubeadm applies on control plane nodes to allow only critical workloads to schedule on them.
+
+{{< note >}} Starting in v1.20, this taint is deprecated in favor of `node-role.kubernetes.io/control-plane`
+and will be removed in v1.25.{{< /note >}}
diff --git a/content/en/docs/reference/labels-annotations-taints/audit-annotations.md b/content/en/docs/reference/labels-annotations-taints/audit-annotations.md
new file mode 100644
index 0000000000..4a3d726ce5
--- /dev/null
+++ b/content/en/docs/reference/labels-annotations-taints/audit-annotations.md
@@ -0,0 +1,110 @@
+---
+title: "Audit Annotations"
+weight: 1
+---
+
+<!-- overview -->
+
+This page serves as a reference for the audit annotations of the kubernetes.io
+namespace. These annotations apply to `Event` object from API group
+`audit.k8s.io`.
+
+{{< note >}}
+The following annotations are not used within the Kubernetes API. When you
+[enable auditing](/docs/tasks/debug/debug-cluster/audit/) in your cluster,
+audit event data is written using `Event` from API group `audit.k8s.io`.
+The annotations apply to audit events. Audit events are different from objects in the
+[Event API](/docs/reference/kubernetes-api/cluster-resources/event-v1/) (API group
+`events.k8s.io`).
+{{< /note >}}
+
+<!-- body -->
+
+## pod-security.kubernetes.io/exempt
+
+Example: `pod-security.kubernetes.io/exempt: namespace`
+
+Value **must** be one of `user`, `namespace`, or `runtimeClass` which correspond to
+[Pod Security Exemption](/docs/concepts/security/pod-security-admission/#exemptions)
+dimensions. This annotation indicates on which dimension was based the exemption
+from the PodSecurity enforcement.
+
+
+## pod-security.kubernetes.io/enforce-policy
+
+Example: `pod-security.kubernetes.io/enforce-policy: restricted:latest`
+
+Value **must** be `privileged:<version>`, `baseline:<version>`,
+`restricted:<version>` which correspond to [Pod Security
+Standard](/docs/concepts/security/pod-security-standards) levels accompanied by
+a version which **must** be `latest` or a valid Kubernetes version in the format
+`v<MAJOR>.<MINOR>`. This annotations informs about the enforcement level that
+allowed or denied the pod during PodSecurity admission.
+
+See [Pod Security Standards](/docs/concepts/security/pod-security-standards/)
+for more information.
+
+## pod-security.kubernetes.io/audit-violations
+
+Example:  `pod-security.kubernetes.io/audit-violations: would violate
+PodSecurity "restricted:latest": allowPrivilegeEscalation != false (container
+"example" must set securityContext.allowPrivilegeEscalation=false), ...`
+
+Value details an audit policy violation, it contains the
+[Pod Security Standard](/docs/concepts/security/pod-security-standards/) level
+that was transgressed as well as the specific policies on the fields that were
+violated from the PodSecurity enforcement.
+
+See [Pod Security Standards](/docs/concepts/security/pod-security-standards/)
+for more information.
+
+## authorization.k8s.io/decision
+
+Example: `authorization.k8s.io/decision: "forbid"`
+
+This annotation indicates whether or not a request was authorized in Kubernetes audit logs.
+
+See [Auditing](/docs/tasks/debug/debug-cluster/audit/) for more information.
+
+## authorization.k8s.io/reason
+
+Example: `authorization.k8s.io/reason: "Human-readable reason for the decision"`
+
+This annotation gives reason for the [decision](#authorization-k8s-io-decision) in Kubernetes audit logs.
+
+See [Auditing](/docs/tasks/debug/debug-cluster/audit/) for more information.
+
+## missing-san.invalid-cert.kubernetes.io/$hostname
+
+Example: `missing-san.invalid-cert.kubernetes.io/example-svc.example-namespace.svc: "relies on a legacy Common Name field instead of the SAN extension for subject validation"`
+
+Used by Kubernetes version v1.24 and later
+
+This annotation indicates a webhook or aggregated API server
+is using an invalid certificate that is missing `subjectAltNames`.
+Support for these certificates was disabled by default in Kubernetes 1.19,
+and removed in Kubernetes 1.23.
+
+Requests to endpoints using these certificates will fail.
+Services using these certificates should replace them as soon as possible
+to avoid disruption when running in Kubernetes 1.23+ environments.
+
+There's more information about this in the Go documentation:
+[X.509 CommonName deprecation](https://go.dev/doc/go1.15#commonname).
+
+## insecure-sha1.invalid-cert.kubernetes.io/$hostname
+
+Example: `insecure-sha1.invalid-cert.kubernetes.io/example-svc.example-namespace.svc: "uses an insecure SHA-1 signature"`
+
+Used by Kubernetes version v1.24 and later
+
+This annotation indicates a webhook or aggregated API server
+is using an insecure certificate signed with a SHA-1 hash.
+Support for these insecure certificates is disabled by default in Kubernetes 1.24,
+and will be removed in a future release.
+
+Services using these certificates should replace them as soon as possible,
+to ensure connections are secured properly and to avoid disruption in future releases.
+
+There's more information about this in the Go documentation:
+[Rejecting SHA-1 certificates](https://go.dev/doc/go1.18#sha1).
diff --git a/content/en/docs/reference/node/_index.md b/content/en/docs/reference/node/_index.md
new file mode 100644
index 0000000000..6ffb648381
--- /dev/null
+++ b/content/en/docs/reference/node/_index.md
@@ -0,0 +1,4 @@
+---
+title: Node Reference Information
+weight: 40
+---
diff --git a/content/en/docs/reference/node/topics-on-dockershim-and-cri-compatible-runtimes.md b/content/en/docs/reference/node/topics-on-dockershim-and-cri-compatible-runtimes.md
new file mode 100644
index 0000000000..a90c08fd91
--- /dev/null
+++ b/content/en/docs/reference/node/topics-on-dockershim-and-cri-compatible-runtimes.md
@@ -0,0 +1,50 @@
+---
+title: Articles on dockershim Removal and on Using CRI-compatible Runtimes
+content_type: reference
+---
+<!-- overview -->
+This is a list of articles and other pages that are either
+about the Kubernetes' deprecation and removal of _dockershim_,
+or about using CRI-compatible container runtimes, in connection
+with that removal.
+
+<!-- body -->
+
+## Kubernetes project
+
+* Kubernetes blog: [Dockershim Removal FAQ](/blog/2022/02/17/dockershim-faq/) (originally published 2022/02/17)
+
+* Kubernetes blog: [Kubernetes is Moving on From Dockershim: Commitments and Next Steps](/blog/2022/01/07/kubernetes-is-moving-on-from-dockershim/) (published 2022/01/07)
+
+* Kubernetes blog: [Dockershim removal is coming. Are you ready?](/blog/2021/11/12/are-you-ready-for-dockershim-removal/) (published 2021/11/12)
+
+* Kubernetes documentation: [Migrating from dockershim](/docs/tasks/administer-cluster/migrating-from-dockershim/)
+
+* Kubernetes documentation: [Container runtimes](/docs/setup/production-environment/container-runtimes/)
+
+* Kubernetes enhancement proposal: [KEP-2221: Removing dockershim from kubelet](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/2221-remove-dockershim/README.md)
+
+* Kubernetes enhancement proposal issue: [Removing dockershim from kubelet](https://github.com/kubernetes/enhancements/issues/2221) (_k/enhancements#2221_)
+
+
+You can provide feedback via the GitHub issue [**Dockershim removal feedback & issues**](https://github.com/kubernetes/kubernetes/issues/106917).
+
+## External sources {#third-party}
+
+<!-- sort these alphabetically -->
+
+* Amazon Web Services EKS documentation: [Dockershim deprecation](https://docs.aws.amazon.com/eks/latest/userguide/dockershim-deprecation.html)
+
+* CNCF conference video: [Lessons Learned Migrating Kubernetes from Docker to containerd Runtime](https://www.youtube.com/watch?v=uDOu6rK4yOk) (Ana Caylin, at KubeCon Europe 2019)
+
+* Docker.com blog: [What developers need to know about Docker, Docker Engine, and Kubernetes v1.20](https://www.docker.com/blog/what-developers-need-to-know-about-docker-docker-engine-and-kubernetes-v1-20/) (published 2020/12/04)
+
+* "_Google Open Source_" channel on YouTube: [Learn Kubernetes with Google - Migrating from Dockershim to Containerd](https://youtu.be/fl7_4hjT52g)
+
+* Microsoft Apps on Azure blog: [Dockershim deprecation and AKS](https://techcommunity.microsoft.com/t5/apps-on-azure-blog/dockershim-deprecation-and-aks/ba-p/3055902) (published 2022/01/21)
+
+* Mirantis blog: [The Future of Dockershim is cri-dockerd](https://www.mirantis.com/blog/the-future-of-dockershim-is-cri-dockerd/) (published 2021/04/21)
+
+* Mirantis: [Mirantis/cri-dockerd](https://github.com/Mirantis/cri-dockerd) Git repository (on GitHub)
+
+* Tripwire: [How Dockershim’s Forthcoming Deprecation Affects Your Kubernetes](https://www.tripwire.com/state-of-security/security-data-protection/cloud/how-dockershim-forthcoming-deprecation-affects-your-kubernetes/)
diff --git a/content/en/docs/reference/ports-and-protocols.md b/content/en/docs/reference/ports-and-protocols.md
new file mode 100644
index 0000000000..8ca5bc0774
--- /dev/null
+++ b/content/en/docs/reference/ports-and-protocols.md
@@ -0,0 +1,40 @@
+---
+title: Ports and Protocols
+content_type: reference
+weight: 50
+---
+
+When running Kubernetes in an environment with strict network boundaries, such 
+as on-premises datacenter with physical network firewalls or Virtual 
+Networks in Public Cloud, it is useful to be aware of the ports and protocols 
+used by Kubernetes components.
+
+## Control plane
+
+| Protocol | Direction | Port Range | Purpose                 | Used By                   |
+|----------|-----------|------------|-------------------------|---------------------------|
+| TCP      | Inbound   | 6443       | Kubernetes API server   | All                       |
+| TCP      | Inbound   | 2379-2380  | etcd server client API  | kube-apiserver, etcd      |
+| TCP      | Inbound   | 10250      | Kubelet API             | Self, Control plane       |
+| TCP      | Inbound   | 10259      | kube-scheduler          | Self                      |
+| TCP      | Inbound   | 10257      | kube-controller-manager | Self                      |
+
+Although etcd ports are included in control plane section, you can also host your own
+etcd cluster externally or on custom ports. 
+
+## Worker node(s) {#node}
+
+| Protocol | Direction | Port Range  | Purpose               | Used By                 |
+|----------|-----------|-------------|-----------------------|-------------------------|
+| TCP      | Inbound   | 10250       | Kubelet API           | Self, Control plane     |
+| TCP      | Inbound   | 30000-32767 | NodePort Services†    | All                     |
+
+† Default port range for [NodePort Services](/docs/concepts/services-networking/service/).
+
+All default port numbers can be overridden. When custom ports are used those 
+ports need to be open instead of defaults mentioned here. 
+
+One common example is API server port that is sometimes switched
+to 443. Alternatively, the default port is kept as is and API server is put 
+behind a load balancer that listens on 443 and routes the requests to API server
+on the default port.
diff --git a/content/en/docs/reference/scheduling/config.md b/content/en/docs/reference/scheduling/config.md
index e30ab2e133..0911058ad4 100644
--- a/content/en/docs/reference/scheduling/config.md
+++ b/content/en/docs/reference/scheduling/config.md
@@ -20,8 +20,8 @@ by implementing one or more of these extension points.
 
 You can specify scheduling profiles by running `kube-scheduler --config <filename>`,
 using the
-KubeSchedulerConfiguration ([v1beta1](/docs/reference/config-api/kube-scheduler-config.v1beta1/)
-or [v1beta2](/docs/reference/config-api/kube-scheduler-config.v1beta2/)) 
+KubeSchedulerConfiguration ([v1beta2](/docs/reference/config-api/kube-scheduler-config.v1beta2/)
+or [v1beta3](/docs/reference/config-api/kube-scheduler-config.v1beta3/))
 struct.
 
 A minimal configuration looks as follows:
@@ -78,6 +78,8 @@ extension points:
    least one bind plugin is required.
 1. `postBind`: This is an informational extension point that is called after
    a Pod has been bound.
+1. `multiPoint`: This is a config-only field that allows plugins to be enabled 
+   or disabled for all of their applicable extension points simultaneously.
 
 For each extension point, you could disable specific [default plugins](#scheduling-plugins)
 or enable your own. For example:
@@ -89,7 +91,7 @@ profiles:
   - plugins:
       score:
         disabled:
-        - name: NodeResourcesLeastAllocated
+        - name: PodTopologySpread
         enabled:
         - name: MyCustomPluginA
           weight: 2
@@ -100,7 +102,7 @@ profiles:
 You can use `*` as name in the disabled array to disable all default plugins
 for that extension point. This can also be used to rearrange plugins order, if
 desired.
-   
+
 ### Scheduling plugins
 
 The following plugins, enabled by default, implement one or more of these
@@ -116,16 +118,12 @@ extension points:
   Extension points: `filter`.
 - `NodePorts`: Checks if a node has free ports for the requested Pod ports.
   Extension points: `preFilter`, `filter`.
-- `NodePreferAvoidPods`: Scores nodes according to the node
-  {{< glossary_tooltip text="annotation" term_id="annotation" >}}
-  `scheduler.alpha.kubernetes.io/preferAvoidPods`.
-  Extension points: `score`.
 - `NodeAffinity`: Implements
   [node selectors](/docs/concepts/scheduling-eviction/assign-pod-node/#nodeselector)
   and [node affinity](/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity).
   Extension points: `filter`, `score`.
 - `PodTopologySpread`: Implements
-  [Pod topology spread](/docs/concepts/workloads/pods/pod-topology-spread-constraints/).
+  [Pod topology spread](/docs/concepts/scheduling-eviction/topology-spread-constraints/).
   Extension points: `preFilter`, `filter`, `preScore`, `score`.
 - `NodeUnschedulable`: Filters out nodes that have `.spec.unschedulable` set to
   true.
@@ -170,7 +168,7 @@ extension points:
   Extension points: `bind`.
 - `DefaultPreemption`: Provides the default preemption mechanism.
   Extension points: `postFilter`.
-  
+
 You can also enable the following plugins, through the component config APIs,
 that are not enabled by default:
 
@@ -182,31 +180,7 @@ that are not enabled by default:
 - `CinderLimits`: Checks that [OpenStack Cinder](https://docs.openstack.org/cinder/)
   volume limits can be satisfied for the node.
   Extension points: `filter`.
-  
-The following plugins are deprecated and can only be enabled in a `v1beta1`
-configuration:
 
-- `NodeResourcesLeastAllocated`: Favors nodes that have a low allocation of
-  resources.
-  Extension points: `score`.
-- `NodeResourcesMostAllocated`: Favors nodes that have a high allocation of
-  resources.
-  Extension points: `score`.
-- `RequestedToCapacityRatio`: Favor nodes according to a configured function of
-  the allocated resources.
-  Extension points: `score`.
-- `NodeLabel`: Filters and / or scores a node according to configured
-  {{< glossary_tooltip text="label(s)" term_id="label" >}}.
-  Extension points: `filter`, `score`.
-- `ServiceAffinity`: Checks that Pods that belong to a
-  {{< glossary_tooltip term_id="service" >}} fit in a set of nodes defined by
-  configured labels. This plugin also favors spreading the Pods belonging to a
-  Service across nodes.
-  Extension points: `preFilter`, `filter`, `score`.
-- `NodePreferAvoidPods`: Prioritizes nodes according to the node annotation
-  `scheduler.alpha.kubernetes.io/preferAvoidPods`.
-  Extension points: `score`.
-  
 ### Multiple profiles
 
 You can configure `kube-scheduler` to run more than one profile.
@@ -255,10 +229,233 @@ the same configuration parameters (if applicable). This is because the scheduler
 only has one pending pods queue.
 {{< /note >}}
 
+### Plugins that apply to multiple extension points {#multipoint}
+
+Starting from `kubescheduler.config.k8s.io/v1beta3`, there is an additional field in the 
+profile config, `multiPoint`, which allows for easily enabling or disabling a plugin 
+across several extension points. The intent of `multiPoint` config is to simplify the 
+configuration needed for users and administrators when using custom profiles.
+
+Consider a plugin, `MyPlugin`, which implements the `preScore`, `score`, `preFilter`, 
+and `filter` extension points. To enable `MyPlugin` for all its available extension 
+points, the profile config looks like:
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: multipoint-scheduler
+    plugins:
+      multiPoint:
+        enabled:
+        - name: MyPlugin
+```
+
+This would equate to manually enabling `MyPlugin` for all of its extension 
+points, like so:
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: non-multipoint-scheduler
+    plugins:
+      preScore:
+        enabled:
+        - name: MyPlugin
+      score:
+        enabled:
+        - name: MyPlugin
+      preFilter:
+        enabled:
+        - name: MyPlugin
+      filter:
+        enabled:
+        - name: MyPlugin
+```
+
+One benefit of using `multiPoint` here is that if `MyPlugin` implements another 
+extension point in the future, the `multiPoint` config will automatically enable it 
+for the new extension.
+
+Specific extension points can be excluded from `MultiPoint` expansion using 
+the `disabled` field for that extension point. This works with disabling default 
+plugins, non-default plugins, or with the wildcard (`'*'`) to disable all plugins. 
+An example of this, disabling `Score` and `PreScore`, would be:
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: non-multipoint-scheduler
+    plugins:
+      multiPoint:
+        enabled:
+        - name: 'MyPlugin'
+      preScore:
+        disabled:
+        - name: '*'
+      score:
+        disabled:
+        - name: '*'
+```
+
+In `v1beta3`, all [default plugins](#scheduling-plugins) are enabled internally through `MultiPoint`. 
+However, individual extension points are still available to allow flexible 
+reconfiguration of the default values (such as ordering and Score weights). For 
+example, consider two Score plugins `DefaultScore1` and `DefaultScore2`, each with 
+a weight of `1`. They can be reordered with different weights like so:
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: multipoint-scheduler
+    plugins:
+      score:
+        enabled:
+        - name: 'DefaultScore2'
+          weight: 5
+```
+
+In this example, it's unnecessary to specify the plugins in `MultiPoint` explicitly 
+because they are default plugins. And the only plugin specified in `Score` is `DefaultScore2`.
+This is because plugins set through specific extension points will always take precedence 
+over `MultiPoint` plugins. So, this snippet essentially re-orders the two plugins 
+without needing to specify both of them.
+
+The general hierarchy for precedence when configuring `MultiPoint` plugins is as follows:
+1. Specific extension points run first, and their settings override whatever is set elsewhere
+2. Plugins manually configured through `MultiPoint` and their settings
+3. Default plugins and their default settings
+
+To demonstrate the above hierarchy, the following example is based on these plugins:
+|Plugin|Extension Points|
+|---|---|
+|`DefaultQueueSort`|`QueueSort`|
+|`CustomQueueSort`|`QueueSort`|
+|`DefaultPlugin1`|`Score`, `Filter`|
+|`DefaultPlugin2`|`Score`|
+|`CustomPlugin1`|`Score`, `Filter`|
+|`CustomPlugin2`|`Score`, `Filter`|
+
+A valid sample configuration for these plugins would be:
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: multipoint-scheduler
+    plugins:
+      multiPoint:
+        enabled:
+        - name: 'CustomQueueSort'
+        - name: 'CustomPlugin1'
+          weight: 3
+        - name: 'CustomPlugin2'
+        disabled:
+        - name: 'DefaultQueueSort'
+      filter:
+        disabled:
+        - name: 'DefaultPlugin1'
+      score:
+        enabled:
+        - name: 'DefaultPlugin2'
+```
+
+Note that there is no error for re-declaring a `MultiPoint` plugin in a specific 
+extension point. The re-declaration is ignored (and logged), as specific extension points 
+take precedence.
+
+Besides keeping most of the config in one spot, this sample does a few things:
+* Enables the custom `queueSort` plugin and disables the default one
+* Enables `CustomPlugin1` and `CustomPlugin2`, which will run first for all of their extension points
+* Disables `DefaultPlugin1`, but only for `filter`
+* Reorders `DefaultPlugin2` to run first in `score` (even before the custom plugins)
+
+In versions of the config before `v1beta3`, without `multiPoint`, the above snippet would equate to this:
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta2
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: multipoint-scheduler
+    plugins:
+    
+      # Disable the default QueueSort plugin
+      queueSort:
+        enabled:
+        - name: 'CustomQueueSort'
+        disabled:
+        - name: 'DefaultQueueSort'
+        
+      # Enable custom Filter plugins
+      filter:
+        enabled:
+        - name: 'CustomPlugin1'
+        - name: 'CustomPlugin2'
+        - name: 'DefaultPlugin2'
+        disabled:
+        - name: 'DefaultPlugin1'
+        
+      # Enable and reorder custom score plugins
+      score:
+        enabled:
+        - name: 'DefaultPlugin2'
+          weight: 1
+        - name: 'DefaultPlugin1'
+          weight: 3
+```
+
+While this is a complicated example, it demonstrates the flexibility of `MultiPoint` config 
+as well as its seamless integration with the existing methods for configuring extension points.
+
+## Scheduler configuration migrations
+
+{{< tabs name="tab_with_md" >}}
+{{% tab name="v1beta1 → v1beta2" %}}
+* With the v1beta2 configuration version, you can use a new score extension for the
+  `NodeResourcesFit` plugin.
+  The new extension combines the functionalities of the `NodeResourcesLeastAllocated`,
+  `NodeResourcesMostAllocated` and `RequestedToCapacityRatio` plugins.
+  For example, if you previously used the `NodeResourcesMostAllocated` plugin, you
+  would instead use `NodeResourcesFit` (enabled by default) and add a `pluginConfig`
+  with a `scoreStrategy` that is similar to:
+  ```yaml
+  apiVersion: kubescheduler.config.k8s.io/v1beta2
+  kind: KubeSchedulerConfiguration
+  profiles:
+  - pluginConfig:
+    - args:
+        scoringStrategy:
+          resources:
+          - name: cpu
+            weight: 1
+          type: MostAllocated
+      name: NodeResourcesFit
+  ```
+
+* The scheduler plugin `NodeLabel` is deprecated; instead, use the [`NodeAffinity`](/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity) plugin (enabled by default) to achieve similar behavior.
+
+* The scheduler plugin `ServiceAffinity` is deprecated; instead, use the [`InterPodAffinity`](/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity) plugin (enabled by default) to achieve similar behavior.
+
+* The scheduler plugin `NodePreferAvoidPods` is deprecated; instead, use [node taints](/docs/concepts/scheduling-eviction/taint-and-toleration/) to achieve similar behavior.
+
+* A plugin enabled in a v1beta2 configuration file takes precedence over the default configuration for that plugin.
+
+* Invalid `host` or `port` configured for scheduler healthz and metrics bind address will cause validation failure.
+{{% /tab %}}
+
+{{% tab name="v1beta2 → v1beta3" %}}
+* Three plugins' weight are increased by default:
+  * `InterPodAffinity` from 1 to 2
+  * `NodeAffinity` from 1 to 2
+  * `TaintToleration` from 1 to 3
+{{% /tab %}}
+{{< /tabs >}}
+
 ## {{% heading "whatsnext" %}}
 
 * Read the [kube-scheduler reference](/docs/reference/command-line-tools-reference/kube-scheduler/)
 * Learn about [scheduling](/docs/concepts/scheduling-eviction/kube-scheduler/)
-* Read the [kube-scheduler configuration (v1beta1)](/docs/reference/config-api/kube-scheduler-config.v1beta1/) reference
 * Read the [kube-scheduler configuration (v1beta2)](/docs/reference/config-api/kube-scheduler-config.v1beta2/) reference
-
+* Read the [kube-scheduler configuration (v1beta3)](/docs/reference/config-api/kube-scheduler-config.v1beta3/) reference
diff --git a/content/en/docs/reference/scheduling/policies.md b/content/en/docs/reference/scheduling/policies.md
index 99291c2b37..5a28b41769 100644
--- a/content/en/docs/reference/scheduling/policies.md
+++ b/content/en/docs/reference/scheduling/policies.md
@@ -1,109 +1,20 @@
 ---
 title: Scheduling Policies
 content_type: concept
-weight: 10
+sitemap:
+  priority: 0.2 # Scheduling priorities are deprecated
 ---
 
 <!-- overview -->
 
-A scheduling Policy can be used to specify the *predicates* and *priorities*
-that the {{< glossary_tooltip text="kube-scheduler" term_id="kube-scheduler" >}}
-runs to [filter and score nodes](/docs/concepts/scheduling-eviction/kube-scheduler/#kube-scheduler-implementation),
-respectively.
+In Kubernetes versions before v1.23, a scheduling policy can be used to specify the *predicates* and *priorities* process. For example, you can set a scheduling policy by
+running `kube-scheduler --policy-config-file <filename>` or `kube-scheduler --policy-configmap <ConfigMap>`.
 
-You can set a scheduling policy by running
-`kube-scheduler --policy-config-file <filename>` or
-`kube-scheduler --policy-configmap <ConfigMap>`
-and using the [Policy type](/docs/reference/config-api/kube-scheduler-policy-config.v1/).
-
-<!-- body -->
-
-## Predicates
-
-The following *predicates* implement filtering:
-
-- `PodFitsHostPorts`: Checks if a Node has free ports (the network protocol kind)
-  for the Pod ports the Pod is requesting.
-
-- `PodFitsHost`: Checks if a Pod specifies a specific Node by its hostname.
-
-- `PodFitsResources`: Checks if the Node has free resources (eg, CPU and Memory)
-  to meet the requirement of the Pod.
-
-- `MatchNodeSelector`: Checks if a Pod's Node {{< glossary_tooltip term_id="selector" >}}
-   matches the Node's {{< glossary_tooltip text="label(s)" term_id="label" >}}.
-
-- `NoVolumeZoneConflict`: Evaluate if the {{< glossary_tooltip text="Volumes" term_id="volume" >}}
-  that a Pod requests are available on the Node, given the failure zone restrictions for
-  that storage.
-
-- `NoDiskConflict`: Evaluates if a Pod can fit on a Node due to the volumes it requests,
-   and those that are already mounted.
-
-- `MaxCSIVolumeCount`: Decides how many {{< glossary_tooltip text="CSI" term_id="csi" >}}
-  volumes should be attached, and whether that's over a configured limit.
-
-- `PodToleratesNodeTaints`: checks if a Pod's {{< glossary_tooltip text="tolerations" term_id="toleration" >}}
-  can tolerate the Node's {{< glossary_tooltip text="taints" term_id="taint" >}}.
-
-- `CheckVolumeBinding`: Evaluates if a Pod can fit due to the volumes it requests.
-  This applies for both bound and unbound
-  {{< glossary_tooltip text="PVCs" term_id="persistent-volume-claim" >}}.
-
-## Priorities
-
-The following *priorities* implement scoring:
-
-- `SelectorSpreadPriority`: Spreads Pods across hosts, considering Pods that
-   belong to the same {{< glossary_tooltip text="Service" term_id="service" >}},
-   {{< glossary_tooltip term_id="statefulset" >}} or
-   {{< glossary_tooltip term_id="replica-set" >}}.
-
-- `InterPodAffinityPriority`: Implements preferred
-  [inter pod affininity and antiaffinity](/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity).
-
-- `LeastRequestedPriority`: Favors nodes with fewer requested resources. In other
-  words, the more Pods that are placed on a Node, and the more resources those
-  Pods use, the lower the ranking this policy will give.
-
-- `MostRequestedPriority`: Favors nodes with most requested resources. This policy
-  will fit the scheduled Pods onto the smallest number of Nodes needed to run your
-  overall set of workloads.
-
-- `RequestedToCapacityRatioPriority`: Creates a requestedToCapacity based ResourceAllocationPriority using default resource scoring function shape.
-
-- `BalancedResourceAllocation`: Favors nodes with balanced resource usage.
-
-- `NodePreferAvoidPodsPriority`: Prioritizes nodes according to the node annotation
-  `scheduler.alpha.kubernetes.io/preferAvoidPods`. You can use this to hint that
-  two different Pods shouldn't run on the same Node.
-
-- `NodeAffinityPriority`: Prioritizes nodes according to node affinity scheduling
-   preferences indicated in PreferredDuringSchedulingIgnoredDuringExecution.
-   You can read more about this in [Assigning Pods to Nodes](/docs/concepts/scheduling-eviction/assign-pod-node/).
-
-- `TaintTolerationPriority`: Prepares the priority list for all the nodes, based on
-  the number of intolerable taints on the node. This policy adjusts a node's rank
-  taking that list into account.
-
-- `ImageLocalityPriority`: Favors nodes that already have the
-  {{< glossary_tooltip text="container images" term_id="image" >}} for that
-  Pod cached locally.
-
-- `ServiceSpreadingPriority`: For a given Service, this policy aims to make sure that
-  the Pods for the Service run on different nodes. It favours scheduling onto nodes
-  that don't have Pods for the service already assigned there. The overall outcome is
-  that the Service becomes more resilient to a single Node failure.
-
-- `EqualPriority`: Gives an equal weight of one to all nodes.
-
-- `EvenPodsSpreadPriority`: Implements preferred
-  [pod topology spread constraints](/docs/concepts/workloads/pods/pod-topology-spread-constraints/).
+This scheduling policy is not supported since Kubernetes v1.23. Associated flags `policy-config-file`, `policy-configmap`, `policy-configmap-namespace` and `use-legacy-policy-config` are also not supported. Instead, use the [Scheduler Configuration](/docs/reference/scheduling/config/) to achieve similar behavior.
 
 ## {{% heading "whatsnext" %}}
 
 * Learn about [scheduling](/docs/concepts/scheduling-eviction/kube-scheduler/)
 * Learn about [kube-scheduler Configuration](/docs/reference/scheduling/config/)
-* Read the [kube-scheduler configuration reference (v1beta2)](/docs/reference/config-api/kube-scheduler-config.v1beta2)
-* Read the [kube-scheduler Policy reference (v1)](/docs/reference/config-api/kube-scheduler-policy-config.v1/)
+* Read the [kube-scheduler configuration reference (v1beta3)](/docs/reference/config-api/kube-scheduler-config.v1beta3/)
 
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_generate-csr.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_generate-csr.md
index 1abc7d9bac..4bb4c30f76 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_generate-csr.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_generate-csr.md
@@ -17,7 +17,7 @@ Generate keys and certificate signing requests
 
 Generates keys and certificate signing requests (CSRs) for all the certificates required to run the control plane. This command also generates partial kubeconfig files with private key data in the  "users &gt; user &gt; client-key-data" field, and for each kubeconfig file an accompanying ".csr" file is created.
 
-This command is designed for use in [Kubeadm External CA Mode](https://kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/#external-ca-mode). It generates CSRs which you can then submit to your external certificate authority for signing.
+This command is designed for use in [Kubeadm External CA Mode](/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/#external-ca-mode). It generates CSRs which you can then submit to your external certificate authority for signing.
 
 The PEM encoded signed certificates should then be saved alongside the key files, using ".crt" as the file extension, or in the case of kubeconfig files, the PEM encoded signed certificate should be base64 encoded and added to the kubeconfig file in the "users &gt; user &gt; client-certificate-data" field.
 
@@ -92,6 +92,3 @@ kubeadm certs generate-csr [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_apiserver.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_apiserver.md
index 7dc59c45d4..b770895500 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_apiserver.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_apiserver.md
@@ -87,6 +87,3 @@ kubeadm certs renew apiserver [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-healthcheck-client.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-healthcheck-client.md
index 84d75bfd36..0fde99368c 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-healthcheck-client.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-healthcheck-client.md
@@ -87,6 +87,3 @@ kubeadm certs renew etcd-healthcheck-client [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-peer.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-peer.md
index 60acaae1db..214b353b00 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-peer.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-peer.md
@@ -87,6 +87,3 @@ kubeadm certs renew etcd-peer [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-server.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-server.md
index 969157fe3e..cd8b73908d 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-server.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-server.md
@@ -87,6 +87,3 @@ kubeadm certs renew etcd-server [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images.md
index 0f85b4fbc2..7dd3a4f820 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images.md
@@ -67,6 +67,3 @@ kubeadm config images [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images_list.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images_list.md
index b7f3e05a8b..d46abeab03 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images_list.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images_list.md
@@ -55,7 +55,7 @@ kubeadm config images list [flags]
 <td colspan="2">--feature-gates string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for various features. Options are:<br/>IPv6DualStack=true|false (BETA - default=true)<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for various features. Options are:<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)<br/>UnversionedKubeletConfigMap=true|false (BETA - default=true)</p></td>
 </tr>
 
 <tr>
@@ -116,6 +116,3 @@ kubeadm config images list [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images_pull.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images_pull.md
index a44970a68a..775881483b 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images_pull.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images_pull.md
@@ -48,7 +48,7 @@ kubeadm config images pull [flags]
 <td colspan="2">--feature-gates string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for various features. Options are:<br/>IPv6DualStack=true|false (BETA - default=true)<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for various features. Options are:<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)<br/>UnversionedKubeletConfigMap=true|false (BETA - default=true)</p></td>
 </tr>
 
 <tr>
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_print_join-defaults.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_print_join-defaults.md
index 1c634871eb..ea7c83e14b 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_print_join-defaults.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_print_join-defaults.md
@@ -79,6 +79,3 @@ kubeadm config print join-defaults [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init.md
index 62f4ca7e5b..645d11c80b 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init.md
@@ -138,7 +138,7 @@ kubeadm init [flags]
 <td colspan="2">--feature-gates string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for various features. Options are:<br/>IPv6DualStack=true|false (BETA - default=true)<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for various features. Options are:<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)<br/>UnversionedKubeletConfigMap=true|false (BETA - default=true)</p></td>
 </tr>
 
 <tr>
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon.md
index 64777661d0..1ff70e5cb8 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon.md
@@ -60,6 +60,3 @@ kubeadm init phase addon [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_all.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_all.md
index c30d45980c..292abcf5fb 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_all.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_all.md
@@ -62,7 +62,7 @@ kubeadm init phase addon all [flags]
 <td colspan="2">--feature-gates string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for various features. Options are:<br/>IPv6DualStack=true|false (BETA - default=true)<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for various features. Options are:<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)<br/>UnversionedKubeletConfigMap=true|false (BETA - default=true)</p></td>
 </tr>
 
 <tr>
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_coredns.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_coredns.md
index 3e4076a862..8eddf5bb5d 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_coredns.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_coredns.md
@@ -41,7 +41,7 @@ kubeadm init phase addon coredns [flags]
 <td colspan="2">--feature-gates string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for various features. Options are:<br/>IPv6DualStack=true|false (BETA - default=true)<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for various features. Options are:<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)<br/>UnversionedKubeletConfigMap=true|false (BETA - default=true)</p></td>
 </tr>
 
 <tr>
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-ca.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-ca.md
index 547601e364..a47b8390be 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-ca.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-ca.md
@@ -85,6 +85,3 @@ kubeadm init phase certs etcd-ca [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_sa.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_sa.md
index a3df321d88..d6c0630075 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_sa.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_sa.md
@@ -69,6 +69,3 @@ kubeadm init phase certs sa [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_all.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_all.md
index 6a53512cc4..1dfaa1a7cb 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_all.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_all.md
@@ -101,7 +101,7 @@ kubeadm init phase control-plane all [flags]
 <td colspan="2">--feature-gates string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for various features. Options are:<br/>IPv6DualStack=true|false (BETA - default=true)<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for various features. Options are:<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)<br/>UnversionedKubeletConfigMap=true|false (BETA - default=true)</p></td>
 </tr>
 
 <tr>
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_apiserver.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_apiserver.md
index b46d5ea7c8..9d5f9583b2 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_apiserver.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_apiserver.md
@@ -83,7 +83,7 @@ kubeadm init phase control-plane apiserver [flags]
 <td colspan="2">--feature-gates string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for various features. Options are:<br/>IPv6DualStack=true|false (BETA - default=true)<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for various features. Options are:<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)<br/>UnversionedKubeletConfigMap=true|false (BETA - default=true)</p></td>
 </tr>
 
 <tr>
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_all.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_all.md
index f1ebdbcf12..1eb52e8287 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_all.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_all.md
@@ -116,6 +116,3 @@ kubeadm init phase kubeconfig all [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-finalize_all.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-finalize_all.md
index 70e4c634b0..55a98fae96 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-finalize_all.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-finalize_all.md
@@ -81,6 +81,3 @@ kubeadm init phase kubelet-finalize all [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-start.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-start.md
index 11d2407499..a79f41f610 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-start.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-start.md
@@ -88,6 +88,3 @@ kubeadm init phase kubelet-start [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_preflight.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_preflight.md
index 345621f703..61e5a0c946 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_preflight.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_preflight.md
@@ -81,6 +81,3 @@ kubeadm init phase preflight [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-certs.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-certs.md
index 515060a76c..e242f4eedd 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-certs.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-certs.md
@@ -95,6 +95,3 @@ kubeadm init phase upload-certs [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_all.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_all.md
index 3c087368a7..ba4e91fa89 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_all.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_all.md
@@ -74,6 +74,3 @@ kubeadm init phase upload-config all [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_kubeadm.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_kubeadm.md
index 13e561f486..930b2d94a2 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_kubeadm.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_kubeadm.md
@@ -83,6 +83,3 @@ kubeadm init phase upload-config kubeadm [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_kubelet.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_kubelet.md
index ba27f728cb..df7caadce6 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_kubelet.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_kubelet.md
@@ -15,7 +15,7 @@ Upload the kubelet component config to a ConfigMap
 ### Synopsis
 
 
-Upload kubelet configuration extracted from the kubeadm InitConfiguration object to a ConfigMap of the form kubelet-config-1.X in the cluster, where X is the minor version of the current (API Server) Kubernetes version.
+Upload the kubelet configuration extracted from the kubeadm InitConfiguration object to a kubelet-config ConfigMap in the cluster
 
 ```
 kubeadm init phase upload-config kubelet [flags]
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join.md
index 145f0bc340..b40539a17e 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join.md
@@ -157,6 +157,13 @@ kubeadm join [api-server-endpoint] [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>For token-based discovery, allow joining without --discovery-token-ca-cert-hash pinning.</p></td>
 </tr>
 
+<tr>
+<td colspan="2">--dry-run</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Don't apply any changes; just output what would be done.</p></td>
+</tr>
+
 <tr>
 <td colspan="2">-h, --help</td>
 </tr>
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join.md
index 07768a16c6..f7ea8ea39a 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join.md
@@ -67,6 +67,3 @@ kubeadm join phase control-plane-join [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_all.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_all.md
index 7a3517652d..496213ce90 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_all.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_all.md
@@ -95,6 +95,3 @@ kubeadm join phase control-plane-join all [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_etcd.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_etcd.md
index c06ddaae40..d127f67fd8 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_etcd.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_etcd.md
@@ -9,7 +9,6 @@ guide. You can file document formatting bugs against the
 [reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
 -->
 
-
 Add a new local etcd member
 
 ### Synopsis
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare.md
index 6952dbca80..3dc12615a9 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare.md
@@ -67,6 +67,3 @@ kubeadm join phase control-plane-prepare [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_all.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_all.md
index 661edf597d..1d5351f3af 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_all.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_all.md
@@ -151,6 +151,3 @@ kubeadm join phase control-plane-prepare all [api-server-endpoint] [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_certs.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_certs.md
index 6475115940..81355a775e 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_certs.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_certs.md
@@ -110,8 +110,6 @@ kubeadm join phase control-plane-prepare certs [api-server-endpoint] [flags]
 </tbody>
 </table>
 
-
-
 ### Options inherited from parent commands
 
    <table style="width: 100%; table-layout: fixed;">
@@ -130,6 +128,3 @@ kubeadm join phase control-plane-prepare certs [api-server-endpoint] [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_kubelet-start.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_kubelet-start.md
index 5896b25337..cafb58658e 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_kubelet-start.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_kubelet-start.md
@@ -123,6 +123,3 @@ kubeadm join phase kubelet-start [api-server-endpoint] [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset.md
index 19bdbb417a..ae869d7f47 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset.md
@@ -19,10 +19,9 @@ Performs a best effort revert of changes made to this host by 'kubeadm init' or
 
 The "reset" command executes the following phases:
 ```
-preflight              Run reset pre-flight checks
-update-cluster-status  Remove this node from the ClusterStatus object (DEPRECATED).
-remove-etcd-member     Remove a local etcd member.
-cleanup-node           Run cleanup node.
+preflight           Run reset pre-flight checks
+remove-etcd-member  Remove a local etcd member.
+cleanup-node        Run cleanup node.
 ```
 
 
@@ -53,6 +52,13 @@ kubeadm reset [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Path to the CRI socket to connect. If empty kubeadm will try to auto-detect this value; use this option only if you have more than one CRI installed or if you have non-standard CRI socket.</p></td>
 </tr>
 
+<tr>
+<td colspan="2">--dry-run</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Don't apply any changes; just output what would be done.</p></td>
+</tr>
+
 <tr>
 <td colspan="2">-f, --force</td>
 </tr>
@@ -111,6 +117,3 @@ kubeadm reset [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_cleanup-node.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_cleanup-node.md
index ceabd2045e..4120c0a97d 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_cleanup-node.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_cleanup-node.md
@@ -74,6 +74,3 @@ kubeadm reset phase cleanup-node [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_remove-etcd-member.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_remove-etcd-member.md
index d2c1060ff4..3fd91a98a6 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_remove-etcd-member.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_remove-etcd-member.md
@@ -67,6 +67,3 @@ kubeadm reset phase remove-etcd-member [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_token.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_token.md
index 5384fc4d6c..025ab1efac 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_token.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_token.md
@@ -91,6 +91,3 @@ kubeadm token [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_create.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_create.md
index a2a217033c..4687fcbba1 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_create.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_create.md
@@ -9,7 +9,6 @@ guide. You can file document formatting bugs against the
 [reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
 -->
 
-
 Create bootstrap tokens on the server
 
 ### Synopsis
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_delete.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_delete.md
index 2040bd3f94..30b7678798 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_delete.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_delete.md
@@ -79,6 +79,3 @@ kubeadm token delete [token-value] ...
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_apply.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_apply.md
index 3add5a98c2..629fed4ff4 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_apply.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_apply.md
@@ -76,7 +76,7 @@ kubeadm upgrade apply [version]
 <td colspan="2">--feature-gates string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for various features. Options are:<br/>IPv6DualStack=true|false (BETA - default=true)<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for various features. Options are:<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)<br/>UnversionedKubeletConfigMap=true|false (BETA - default=true)</p></td>
 </tr>
 
 <tr>
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_diff.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_diff.md
index eb5e3c4cac..718257f8af 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_diff.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_diff.md
@@ -102,6 +102,3 @@ kubeadm upgrade diff [version] [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node.md
index a8a3138c88..12fbe5b8f3 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node.md
@@ -117,6 +117,3 @@ kubeadm upgrade node [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase.md
index 6b86c95054..ce5b6f8429 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase.md
@@ -56,6 +56,3 @@ Use this command to invoke single phase of the node workflow
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_kubelet-config.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_kubelet-config.md
index d2b03974c2..e03f59f4f3 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_kubelet-config.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_kubelet-config.md
@@ -15,7 +15,7 @@ Upgrade the kubelet configuration for this node
 ### Synopsis
 
 
-Download the kubelet configuration from a ConfigMap of the form "kubelet-config-1.X" in the cluster, where X is the minor version of the kubelet. kubeadm uses the KuberneteVersion field in the kubeadm-config ConfigMap to determine what the _desired_ kubelet version is.
+Download the kubelet configuration from the kubelet-config ConfigMap stored in the cluster
 
 ```
 kubeadm upgrade node phase kubelet-config [flags]
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_preflight.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_preflight.md
index d82a193898..ff44d0d7da 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_preflight.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_preflight.md
@@ -67,6 +67,3 @@ kubeadm upgrade node phase preflight [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_plan.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_plan.md
index c3cc133169..f7913a8452 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_plan.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_plan.md
@@ -55,7 +55,7 @@ kubeadm upgrade plan [version] [flags]
 <td colspan="2">--feature-gates string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for various features. Options are:<br/>IPv6DualStack=true|false (BETA - default=true)<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for various features. Options are:<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)<br/>UnversionedKubeletConfigMap=true|false (BETA - default=true)</p></td>
 </tr>
 
 <tr>
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_version.md b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_version.md
index b86c725977..38cc27bee9 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_version.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_version.md
@@ -67,6 +67,3 @@ kubeadm version [flags]
 
 </tbody>
 </table>
-
-
-
diff --git a/content/en/docs/reference/setup-tools/kubeadm/implementation-details.md b/content/en/docs/reference/setup-tools/kubeadm/implementation-details.md
index 6222685845..911e66aab9 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/implementation-details.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/implementation-details.md
@@ -6,36 +6,40 @@ title: Implementation details
 content_type: concept
 weight: 100
 ---
+
 <!-- overview -->
 
 {{< feature-state for_k8s_version="v1.10" state="stable" >}}
 
-`kubeadm init` and `kubeadm join` together provides a nice user experience for creating a best-practice but bare Kubernetes cluster from scratch.
+`kubeadm init` and `kubeadm join` together provides a nice user experience for creating a
+best-practice but bare Kubernetes cluster from scratch.
 However, it might not be obvious _how_ kubeadm does that.
 
-This document provides additional details on what happen under the hood, with the aim of sharing knowledge on Kubernetes cluster best practices.
+This document provides additional details on what happen under the hood, with the aim of sharing
+knowledge on Kubernetes cluster best practices.
 
 <!-- body -->
+
 ## Core design principles
 
 The cluster that `kubeadm init` and `kubeadm join` set up should be:
 
- - **Secure**: It should adopt latest best-practices like:
-   - enforcing RBAC
-   - using the Node Authorizer
-   - using secure communication between the control plane components
-   - using secure communication between the API server and the kubelets
-   - lock-down the kubelet API
-   - locking down access to the API for system components like the kube-proxy and CoreDNS
-   - locking down what a Bootstrap Token can access
- - **User-friendly**: The user should not have to run anything more than a couple of commands:
-   - `kubeadm init`
-   - `export KUBECONFIG=/etc/kubernetes/admin.conf`
-   - `kubectl apply -f <network-of-choice.yaml>`
-   - `kubeadm join --token <token> <endpoint>:<port>`
- - **Extendable**:
-   - It should _not_ favor any particular network provider. Configuring the cluster network is out-of-scope
-   - It should provide the possibility to use a config file for customizing various parameters
+- **Secure**: It should adopt latest best-practices like:
+  - enforcing RBAC
+  - using the Node Authorizer
+  - using secure communication between the control plane components
+  - using secure communication between the API server and the kubelets
+  - lock-down the kubelet API
+  - locking down access to the API for system components like the kube-proxy and CoreDNS
+  - locking down what a Bootstrap Token can access
+- **User-friendly**: The user should not have to run anything more than a couple of commands:
+  - `kubeadm init`
+  - `export KUBECONFIG=/etc/kubernetes/admin.conf`
+  - `kubectl apply -f <network-of-choice.yaml>`
+  - `kubeadm join --token <token> <endpoint>:<port>`
+- **Extendable**:
+  - It should _not_ favor any particular network provider. Configuring the cluster network is out-of-scope
+  - It should provide the possibility to use a config file for customizing various parameters
 
 ## Constants and well-known values and paths
 
@@ -45,49 +49,56 @@ limited set of constant values for well-known paths and file names.
 The Kubernetes directory `/etc/kubernetes` is a constant in the application, since it is clearly the given path
 in a majority of cases, and the most intuitive location; other constants paths and file names are:
 
-- `/etc/kubernetes/manifests` as the path where kubelet should look for static Pod manifests. Names of static Pod manifests are:
-    - `etcd.yaml`
-    - `kube-apiserver.yaml`
-    - `kube-controller-manager.yaml`
-    - `kube-scheduler.yaml`
-- `/etc/kubernetes/` as the path where kubeconfig files with identities for control plane components are stored. Names of kubeconfig files are:
-    - `kubelet.conf` (`bootstrap-kubelet.conf` during TLS bootstrap)
-    - `controller-manager.conf`
-    - `scheduler.conf`
-    - `admin.conf` for the cluster admin and kubeadm itself
+- `/etc/kubernetes/manifests` as the path where kubelet should look for static Pod manifests.
+  Names of static Pod manifests are:
+
+  - `etcd.yaml`
+  - `kube-apiserver.yaml`
+  - `kube-controller-manager.yaml`
+  - `kube-scheduler.yaml`
+
+- `/etc/kubernetes/` as the path where kubeconfig files with identities for control plane
+  components are stored. Names of kubeconfig files are:
+
+  - `kubelet.conf` (`bootstrap-kubelet.conf` during TLS bootstrap)
+  - `controller-manager.conf`
+  - `scheduler.conf`
+  - `admin.conf` for the cluster admin and kubeadm itself
+
 - Names of certificates and key files :
-    - `ca.crt`, `ca.key` for the Kubernetes certificate authority
-    - `apiserver.crt`, `apiserver.key` for the API server certificate
-    - `apiserver-kubelet-client.crt`, `apiserver-kubelet-client.key` for the client certificate used by the API server to connect to the kubelets securely
-    - `sa.pub`, `sa.key` for the key used by the controller manager when signing ServiceAccount
-    - `front-proxy-ca.crt`, `front-proxy-ca.key` for the front proxy certificate authority
-    - `front-proxy-client.crt`, `front-proxy-client.key` for the front proxy client
+
+  - `ca.crt`, `ca.key` for the Kubernetes certificate authority
+  - `apiserver.crt`, `apiserver.key` for the API server certificate
+  - `apiserver-kubelet-client.crt`, `apiserver-kubelet-client.key` for the client certificate used
+    by the API server to connect to the kubelets securely
+  - `sa.pub`, `sa.key` for the key used by the controller manager when signing ServiceAccount
+  - `front-proxy-ca.crt`, `front-proxy-ca.key` for the front proxy certificate authority
+  - `front-proxy-client.crt`, `front-proxy-client.key` for the front proxy client
 
 ## kubeadm init workflow internal design
 
-The `kubeadm init` [internal workflow](/docs/reference/setup-tools/kubeadm/kubeadm-init/#init-workflow) consists of a sequence of atomic work tasks to perform,
+The `kubeadm init` [internal workflow](/docs/reference/setup-tools/kubeadm/kubeadm-init/#init-workflow)
+consists of a sequence of atomic work tasks to perform,
 as described in `kubeadm init`.
 
-The [`kubeadm init phase`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/) command allows users to invoke each task individually, and ultimately offers a reusable and composable
-API/toolbox that can be used by other Kubernetes bootstrap tools, by any IT automation tool or by an advanced user
-for creating custom clusters.
+The [`kubeadm init phase`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/) command allows
+users to invoke each task individually, and ultimately offers a reusable and composable
+API/toolbox that can be used by other Kubernetes bootstrap tools, by any IT automation tool or by
+an advanced user for creating custom clusters.
 
 ### Preflight checks
 
-Kubeadm executes a set of preflight checks before starting the init, with the aim to verify preconditions and avoid common cluster startup problems.
+Kubeadm executes a set of preflight checks before starting the init, with the aim to verify
+preconditions and avoid common cluster startup problems.
 The user can skip specific preflight checks or all of them with the `--ignore-preflight-errors` option.
 
-- [warning] If the Kubernetes version to use (specified with the `--kubernetes-version` flag) is at least one minor version higher than the kubeadm CLI version.
+- [warning] If the Kubernetes version to use (specified with the `--kubernetes-version` flag) is
+  at least one minor version higher than the kubeadm CLI version.
 - Kubernetes system requirements:
   - if running on linux:
     - [error] if Kernel is older than the minimum required version
-    - [error] if required cgroups subsystem aren't in set up
-  - if using docker:
-    - [warning/error] if Docker service does not exist, if it is disabled, if it is not active.
-    - [error] if Docker endpoint does not exist or does not work
-    - [warning] if docker version is not in the list of validated docker versions
-  - If using other cri engine:
-    - [error] if crictl socket does not answer
+    - [error] if required cgroups subsystem aren't set up
+- [error] if the CRI endpoint does not answer
 - [error] if user is not root
 - [error] if the machine hostname is not a valid DNS subdomain
 - [warning] if the host name cannot be reached via network lookup
@@ -100,9 +111,9 @@ The user can skip specific preflight checks or all of them with the `--ignore-pr
 - [Error] if `/proc/sys/net/bridge/bridge-nf-call-iptables` file does not exist/does not contain 1
 - [Error] if advertise address is ipv6 and `/proc/sys/net/bridge/bridge-nf-call-ip6tables` does not exist/does not contain 1.
 - [Error] if swap is on
-- [Error] if `conntrack`, `ip`, `iptables`,  `mount`, `nsenter` commands are not present in the command path
+- [Error] if `conntrack`, `ip`, `iptables`, `mount`, `nsenter` commands are not present in the command path
 - [warning] if `ebtables`, `ethtool`, `socat`, `tc`, `touch`, `crictl` commands are not present in the command path
-- [warning] if extra arg flags for API server, controller manager,  scheduler contains some invalid options
+- [warning] if extra arg flags for API server, controller manager, scheduler contains some invalid options
 - [warning] if connection to https://API.AdvertiseAddress:API.BindPort goes through proxy
 - [warning] if connection to services subnet goes through proxy (only first address checked)
 - [warning] if connection to Pods subnet goes through proxy (only first address checked)
@@ -119,165 +130,231 @@ The user can skip specific preflight checks or all of them with the `--ignore-pr
 
 Please note that:
 
-1. Preflight checks can be invoked individually with the [`kubeadm init phase preflight`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-preflight) command
+1. Preflight checks can be invoked individually with the
+   [`kubeadm init phase preflight`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-preflight)
+   command
 
 ### Generate the necessary certificates
 
 Kubeadm generates certificate and private key pairs for different purposes:
 
- - A self signed certificate authority for the Kubernetes cluster saved into `ca.crt` file and `ca.key` private key file
- - A serving certificate for the API server, generated using `ca.crt` as the CA, and saved into `apiserver.crt` file with
-   its private key `apiserver.key`. This certificate should contain following alternative names:
-     - The Kubernetes service's internal clusterIP (the first address in the services CIDR, e.g. `10.96.0.1` if service subnet is `10.96.0.0/12`)
-     - Kubernetes DNS names, e.g.  `kubernetes.default.svc.cluster.local` if `--service-dns-domain` flag value is `cluster.local`, plus default DNS names `kubernetes.default.svc`, `kubernetes.default`, `kubernetes`
-     - The node-name
-     - The `--apiserver-advertise-address`
-     - Additional alternative names specified by the user
- - A client certificate for the API server to connect to the kubelets securely, generated using `ca.crt` as the CA and saved into
-   `apiserver-kubelet-client.crt` file with its private key `apiserver-kubelet-client.key`.
-   This certificate should be in the `system:masters` organization
- - A private key for signing ServiceAccount Tokens saved into `sa.key` file along with its public key `sa.pub`
- - A certificate authority for the front proxy saved into `front-proxy-ca.crt` file with its key `front-proxy-ca.key`
- - A client cert for the front proxy client, generate using `front-proxy-ca.crt` as the CA and saved into `front-proxy-client.crt` file
-   with its private key`front-proxy-client.key`
+- A self signed certificate authority for the Kubernetes cluster saved into `ca.crt` file and
+  `ca.key` private key file
 
-Certificates are stored by default in `/etc/kubernetes/pki`, but this directory is configurable using the `--cert-dir` flag.
+- A serving certificate for the API server, generated using `ca.crt` as the CA, and saved into
+  `apiserver.crt` file with its private key `apiserver.key`. This certificate should contain
+  following alternative names:
 
- Please note that:
+  - The Kubernetes service's internal clusterIP (the first address in the services CIDR, e.g.
+    `10.96.0.1` if service subnet is `10.96.0.0/12`)
+  - Kubernetes DNS names, e.g.  `kubernetes.default.svc.cluster.local` if `--service-dns-domain`
+    flag value is `cluster.local`, plus default DNS names `kubernetes.default.svc`,
+    `kubernetes.default`, `kubernetes`
+  - The node-name
+  - The `--apiserver-advertise-address`
+  - Additional alternative names specified by the user
+
+- A client certificate for the API server to connect to the kubelets securely, generated using
+  `ca.crt` as the CA and saved into `apiserver-kubelet-client.crt` file with its private key
+  `apiserver-kubelet-client.key`.
+  This certificate should be in the `system:masters` organization
+
+- A private key for signing ServiceAccount Tokens saved into `sa.key` file along with its public key `sa.pub`
+
+- A certificate authority for the front proxy saved into `front-proxy-ca.crt` file with its key
+  `front-proxy-ca.key`
+
+- A client cert for the front proxy client, generate using `front-proxy-ca.crt` as the CA and
+  saved into `front-proxy-client.crt` file with its private key`front-proxy-client.key`
+
+Certificates are stored by default in `/etc/kubernetes/pki`, but this directory is configurable
+using the `--cert-dir` flag.
+
+Please note that:
 
 1. If a given certificate and private key pair both exist, and its content is evaluated compliant with the above specs, the existing files will
    be used and the generation phase for the given certificate skipped. This means the user can, for example, copy an existing CA to
    `/etc/kubernetes/pki/ca.{crt,key}`, and then kubeadm will use those files for signing the rest of the certs.
    See also [using custom certificates](/docs/tasks/administer-cluster/kubeadm/kubeadm-certs#custom-certificates)
-2. Only for the CA, it is possible to provide the `ca.crt` file but not the `ca.key` file, if all other certificates and kubeconfig files
+1. Only for the CA, it is possible to provide the `ca.crt` file but not the `ca.key` file, if all other certificates and kubeconfig files
    already are in place kubeadm recognize this condition and activates the ExternalCA , which also implies the `csrsigner`controller in
    controller-manager won't be started
-3. If kubeadm is running in [external CA mode](/docs/tasks/administer-cluster/kubeadm/kubeadm-certs#external-ca-mode);
+1. If kubeadm is running in [external CA mode](/docs/tasks/administer-cluster/kubeadm/kubeadm-certs#external-ca-mode);
    all the certificates must be provided by the user, because kubeadm cannot generate them by itself
-4. In case of kubeadm is executed in the `--dry-run` mode, certificates files are written in a temporary folder
-5. Certificate generation can be invoked individually with the [`kubeadm init phase certs all`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-certs) command
+1. In case of kubeadm is executed in the `--dry-run` mode, certificates files are written in a temporary folder
+1. Certificate generation can be invoked individually with the
+   [`kubeadm init phase certs all`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-certs) command
 
 ### Generate kubeconfig files for control plane components
 
 Kubeadm generates kubeconfig files with identities for control plane components:
 
-- A kubeconfig file for the kubelet to use during TLS bootstrap - /etc/kubernetes/bootstrap-kubelet.conf. Inside this file there is a bootstrap-token or embedded client certificates for authenticating this node with the cluster.
-  This client cert should:
-    - Be in the `system:nodes` organization, as required by the [Node Authorization](/docs/reference/access-authn-authz/node/) module
-    - Have the Common Name (CN) `system:node:<hostname-lowercased>`
-- A kubeconfig file for controller-manager, `/etc/kubernetes/controller-manager.conf`; inside this file is embedded a client
-  certificate with controller-manager identity. This client cert should have the CN `system:kube-controller-manager`, as defined
-by default [RBAC core components roles](/docs/reference/access-authn-authz/rbac/#core-component-roles)
-- A kubeconfig file for scheduler, `/etc/kubernetes/scheduler.conf`; inside this file is embedded a client certificate with scheduler identity.
-  This client cert should have the CN `system:kube-scheduler`, as defined by default [RBAC core components roles](/docs/reference/access-authn-authz/rbac/#core-component-roles)
+- A kubeconfig file for the kubelet to use during TLS bootstrap -
+  /etc/kubernetes/bootstrap-kubelet.conf. Inside this file there is a bootstrap-token or embedded
+  client certificates for authenticating this node with the cluster.
 
-Additionally, a kubeconfig file for kubeadm itself and the admin is generated and saved into the `/etc/kubernetes/admin.conf` file.
-The "admin" here is defined as the actual person(s) that is administering the cluster and wants to have full control (**root**) over the cluster.
-The embedded client certificate for admin should be in the `system:masters` organization, as defined by default
-[RBAC user facing role bindings](/docs/reference/access-authn-authz/rbac/#user-facing-roles). It should also include a
-CN. Kubeadm uses the `kubernetes-admin` CN.
+  This client cert should:
+
+  - Be in the `system:nodes` organization, as required by the
+    [Node Authorization](/docs/reference/access-authn-authz/node/) module
+  - Have the Common Name (CN) `system:node:<hostname-lowercased>`
+
+- A kubeconfig file for controller-manager, `/etc/kubernetes/controller-manager.conf`; inside this
+  file is embedded a client certificate with controller-manager identity. This client cert should
+  have the CN `system:kube-controller-manager`, as defined by default
+  [RBAC core components roles](/docs/reference/access-authn-authz/rbac/#core-component-roles)
+
+- A kubeconfig file for scheduler, `/etc/kubernetes/scheduler.conf`; inside this file is embedded
+  a client certificate with scheduler identity.
+  This client cert should have the CN `system:kube-scheduler`, as defined by default
+  [RBAC core components roles](/docs/reference/access-authn-authz/rbac/#core-component-roles)
+
+Additionally, a kubeconfig file for kubeadm itself and the admin is generated and saved into the
+`/etc/kubernetes/admin.conf` file.  The "admin" here is defined as the actual person(s) that is
+administering the cluster and wants to have full control (**root**) over the cluster.  The
+embedded client certificate for admin should be in the `system:masters` organization, as defined
+by default [RBAC user facing role bindings](/docs/reference/access-authn-authz/rbac/#user-facing-roles).
+It should also include a CN. Kubeadm uses the `kubernetes-admin` CN.
 
 Please note that:
 
 1. `ca.crt` certificate is embedded in all the kubeconfig files.
-2. If a given kubeconfig file exists, and its content is evaluated compliant with the above specs, the existing file will be used and the generation phase for the given kubeconfig skipped
-3. If kubeadm is running in [ExternalCA mode](/docs/reference/setup-tools/kubeadm/kubeadm-init/#external-ca-mode), all the required kubeconfig must be provided by the user as well, because kubeadm cannot generate any of them by itself
+2. If a given kubeconfig file exists, and its content is evaluated compliant with the above specs,
+   the existing file will be used and the generation phase for the given kubeconfig skipped
+3. If kubeadm is running in [ExternalCA mode](/docs/reference/setup-tools/kubeadm/kubeadm-init/#external-ca-mode),
+   all the required kubeconfig must be provided by the user as well, because kubeadm cannot
+   generate any of them by itself
 4. In case of kubeadm is executed in the `--dry-run` mode, kubeconfig files are written in a temporary folder
-5. Kubeconfig files generation can be invoked individually with the [`kubeadm init phase kubeconfig all`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-kubeconfig) command
+5. Kubeconfig files generation can be invoked individually with the
+   [`kubeadm init phase kubeconfig all`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-kubeconfig) command
 
 ### Generate static Pod manifests for control plane components
 
-Kubeadm writes static Pod manifest files for control plane components to `/etc/kubernetes/manifests`. The kubelet watches this directory for Pods to create on startup.
+Kubeadm writes static Pod manifest files for control plane components to
+`/etc/kubernetes/manifests`. The kubelet watches this directory for Pods to create on startup.
 
 Static Pod manifest share a set of common properties:
 
 - All static Pods are deployed on `kube-system` namespace
 - All static Pods get `tier:control-plane` and `component:{component-name}` labels
 - All static Pods use the `system-node-critical` priority class
-- `hostNetwork: true` is set on all static Pods to allow control plane startup before a network is configured; as a consequence:
+- `hostNetwork: true` is set on all static Pods to allow control plane startup before a network is
+  configured; as a consequence:
+
   * The `address` that the controller-manager and the scheduler use to refer the API server is `127.0.0.1`
   * If using a local etcd server, `etcd-servers` address will be set to `127.0.0.1:2379`
+
 - Leader election is enabled for both the controller-manager and the scheduler
 - Controller-manager and the scheduler will reference kubeconfig files with their respective, unique identities
-- All static Pods get any extra flags specified by the user as described in [passing custom arguments to control plane components](/docs/setup/production-environment/tools/kubeadm/control-plane-flags/)
+- All static Pods get any extra flags specified by the user as described in
+  [passing custom arguments to control plane components](/docs/setup/production-environment/tools/kubeadm/control-plane-flags/)
 - All static Pods get any extra Volumes specified by the user (Host path)
 
 Please note that:
 
-1. All images will be pulled from k8s.gcr.io by default. See [using custom images](/docs/reference/setup-tools/kubeadm/kubeadm-init/#custom-images) for customizing the image repository
-2. In case of kubeadm is executed in the `--dry-run` mode, static Pods files are written in a temporary folder
-3. Static Pod manifest generation for control plane components can be invoked individually with the [`kubeadm init phase control-plane all`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-control-plane) command
+1. All images will be pulled from k8s.gcr.io by default.
+   See [using custom images](/docs/reference/setup-tools/kubeadm/kubeadm-init/#custom-images)
+   for customizing the image repository
+1. In case of kubeadm is executed in the `--dry-run` mode, static Pods files are written in a
+   temporary folder
+1. Static Pod manifest generation for control plane components can be invoked individually with
+   the [`kubeadm init phase control-plane all`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-control-plane) command
 
 #### API server
 
 The static Pod manifest for the API server is affected by following parameters provided by the users:
 
- - The `apiserver-advertise-address` and `apiserver-bind-port` to bind to; if not provided, those value defaults to the IP address of
-   the default network interface on the machine and port 6443
- - The `service-cluster-ip-range` to use for services
- - If an external etcd server is specified, the `etcd-servers` address and related TLS settings (`etcd-cafile`, `etcd-certfile`, `etcd-keyfile`);
-   if an external etcd server is not be provided, a local etcd will be used (via host network)
- - If a cloud provider is specified, the corresponding `--cloud-provider` is configured, together with the  `--cloud-config` path
-   if such file exists (this is experimental, alpha and will be removed in a future version)
+- The `apiserver-advertise-address` and `apiserver-bind-port` to bind to; if not provided, those
+  value defaults to the IP address of the default network interface on the machine and port 6443
+- The `service-cluster-ip-range` to use for services
+- If an external etcd server is specified, the `etcd-servers` address and related TLS settings
+  (`etcd-cafile`, `etcd-certfile`, `etcd-keyfile`);
+  if an external etcd server is not be provided, a local etcd will be used (via host network)
+- If a cloud provider is specified, the corresponding `--cloud-provider` is configured, together
+  with the  `--cloud-config` path if such file exists (this is experimental, alpha and will be
+  removed in a future version)
 
 Other API server flags that are set unconditionally are:
 
- - `--insecure-port=0` to avoid insecure connections to the api server
- - `--enable-bootstrap-token-auth=true` to enable the `BootstrapTokenAuthenticator` authentication module.
-   See [TLS Bootstrapping](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/) for more details
- - `--allow-privileged` to `true` (required e.g. by kube proxy)
- - `--requestheader-client-ca-file` to `front-proxy-ca.crt`
- - `--enable-admission-plugins` to:
-    - [`NamespaceLifecycle`](/docs/reference/access-authn-authz/admission-controllers/#namespacelifecycle) e.g. to avoid deletion of
-      system reserved namespaces
-    - [`LimitRanger`](/docs/reference/access-authn-authz/admission-controllers/#limitranger) and [`ResourceQuota`](/docs/reference/access-authn-authz/admission-controllers/#resourcequota) to enforce limits on namespaces
-    - [`ServiceAccount`](/docs/reference/access-authn-authz/admission-controllers/#serviceaccount) to enforce service account automation
-    - [`PersistentVolumeLabel`](/docs/reference/access-authn-authz/admission-controllers/#persistentvolumelabel) attaches region or zone labels to
-      PersistentVolumes as defined by the cloud provider (This admission controller is deprecated and will be removed in a future version.
-      It is not deployed by kubeadm by default with v1.9 onwards when not explicitly opting into using `gce` or `aws` as cloud providers)
-    - [`DefaultStorageClass`](/docs/reference/access-authn-authz/admission-controllers/#defaultstorageclass) to enforce default storage class on `PersistentVolumeClaim` objects
-    - [`DefaultTolerationSeconds`](/docs/reference/access-authn-authz/admission-controllers/#defaulttolerationseconds)
-    - [`NodeRestriction`](/docs/reference/access-authn-authz/admission-controllers/#noderestriction) to limit what a kubelet can modify
-      (e.g. only pods on this node)
- - `--kubelet-preferred-address-types` to `InternalIP,ExternalIP,Hostname;` this makes `kubectl logs` and other API server-kubelet
-   communication work in environments where the hostnames of the nodes aren't resolvable
- - Flags for using certificates generated in previous steps:
-    - `--client-ca-file` to `ca.crt`
-    - `--tls-cert-file` to `apiserver.crt`
-    - `--tls-private-key-file` to `apiserver.key`
-    - `--kubelet-client-certificate` to `apiserver-kubelet-client.crt`
-    - `--kubelet-client-key` to `apiserver-kubelet-client.key`
-    - `--service-account-key-file` to `sa.pub`
-    - `--requestheader-client-ca-file` to`front-proxy-ca.crt`
-    - `--proxy-client-cert-file` to `front-proxy-client.crt`
-    - `--proxy-client-key-file` to `front-proxy-client.key`
- - Other flags for securing the front proxy ([API Aggregation](/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)) communications:
-    - `--requestheader-username-headers=X-Remote-User`
-    - `--requestheader-group-headers=X-Remote-Group`
-    - `--requestheader-extra-headers-prefix=X-Remote-Extra-`
-    - `--requestheader-allowed-names=front-proxy-client`
+- `--insecure-port=0` to avoid insecure connections to the api server
+- `--enable-bootstrap-token-auth=true` to enable the `BootstrapTokenAuthenticator` authentication module.
+  See [TLS Bootstrapping](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/) for more details
+- `--allow-privileged` to `true` (required e.g. by kube proxy)
+- `--requestheader-client-ca-file` to `front-proxy-ca.crt`
+- `--enable-admission-plugins` to:
+
+  - [`NamespaceLifecycle`](/docs/reference/access-authn-authz/admission-controllers/#namespacelifecycle)
+    e.g. to avoid deletion of system reserved namespaces
+  - [`LimitRanger`](/docs/reference/access-authn-authz/admission-controllers/#limitranger)
+    and [`ResourceQuota`](/docs/reference/access-authn-authz/admission-controllers/#resourcequota)
+    to enforce limits on namespaces
+  - [`ServiceAccount`](/docs/reference/access-authn-authz/admission-controllers/#serviceaccount)
+    to enforce service account automation
+  - [`PersistentVolumeLabel`](/docs/reference/access-authn-authz/admission-controllers/#persistentvolumelabel)
+    attaches region or zone labels to PersistentVolumes as defined by the cloud provider (This
+    admission controller is deprecated and will be removed in a future version.
+    It is not deployed by kubeadm by default with v1.9 onwards when not explicitly opting into
+    using `gce` or `aws` as cloud providers)
+  - [`DefaultStorageClass`](/docs/reference/access-authn-authz/admission-controllers/#defaultstorageclass)
+    to enforce default storage class on `PersistentVolumeClaim` objects
+  - [`DefaultTolerationSeconds`](/docs/reference/access-authn-authz/admission-controllers/#defaulttolerationseconds)
+  - [`NodeRestriction`](/docs/reference/access-authn-authz/admission-controllers/#noderestriction)
+    to limit what a kubelet can modify (e.g. only pods on this node)
+
+- `--kubelet-preferred-address-types` to `InternalIP,ExternalIP,Hostname;` this makes `kubectl
+  logs` and other API server-kubelet communication work in environments where the hostnames of the
+  nodes aren't resolvable
+
+- Flags for using certificates generated in previous steps:
+
+  - `--client-ca-file` to `ca.crt`
+  - `--tls-cert-file` to `apiserver.crt`
+  - `--tls-private-key-file` to `apiserver.key`
+  - `--kubelet-client-certificate` to `apiserver-kubelet-client.crt`
+  - `--kubelet-client-key` to `apiserver-kubelet-client.key`
+  - `--service-account-key-file` to `sa.pub`
+  - `--requestheader-client-ca-file` to`front-proxy-ca.crt`
+  - `--proxy-client-cert-file` to `front-proxy-client.crt`
+  - `--proxy-client-key-file` to `front-proxy-client.key`
+
+- Other flags for securing the front proxy
+  ([API Aggregation](/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/))
+  communications:
+
+  - `--requestheader-username-headers=X-Remote-User`
+  - `--requestheader-group-headers=X-Remote-Group`
+  - `--requestheader-extra-headers-prefix=X-Remote-Extra-`
+  - `--requestheader-allowed-names=front-proxy-client`
 
 #### Controller manager
 
-The static Pod manifest for the API server is affected by following parameters provided by the users:
+The static Pod manifest for the controller manager is affected by following parameters provided by
+the users:
 
-- If kubeadm is invoked specifying a `--pod-network-cidr`, the subnet manager feature required for some CNI network plugins is enabled by
-   setting:
-   - `--allocate-node-cidrs=true`
-   - `--cluster-cidr` and `--node-cidr-mask-size` flags according to the given CIDR
- - If a cloud provider is specified, the corresponding `--cloud-provider` is specified, together with the  `--cloud-config` path
-   if such configuration file exists (this is experimental, alpha and will be removed in a future version)
+- If kubeadm is invoked specifying a `--pod-network-cidr`, the subnet manager feature required for
+  some CNI network plugins is enabled by setting:
+
+  - `--allocate-node-cidrs=true`
+  - `--cluster-cidr` and `--node-cidr-mask-size` flags according to the given CIDR
+
+- If a cloud provider is specified, the corresponding `--cloud-provider` is specified, together
+  with the  `--cloud-config` path if such configuration file exists (this is experimental, alpha
+  and will be removed in a future version)
 
 Other flags that are set unconditionally are:
 
- - `--controllers` enabling all the default controllers plus `BootstrapSigner` and `TokenCleaner` controllers for TLS bootstrap.
-   See [TLS Bootstrapping](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/) for more details
- - `--use-service-account-credentials` to `true`
- - Flags for using certificates generated in previous steps:
-    - `--root-ca-file` to `ca.crt`
-    - `--cluster-signing-cert-file` to `ca.crt`, if External CA mode is disabled, otherwise to `""`
-    - `--cluster-signing-key-file` to `ca.key`, if External CA mode is disabled, otherwise to `""`
-    - `--service-account-private-key-file` to `sa.key`
+- `--controllers` enabling all the default controllers plus `BootstrapSigner` and `TokenCleaner`
+  controllers for TLS bootstrap.  See [TLS Bootstrapping](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/)
+  for more details
+
+- `--use-service-account-credentials` to `true`
+
+- Flags for using certificates generated in previous steps:
+
+  - `--root-ca-file` to `ca.crt`
+  - `--cluster-signing-cert-file` to `ca.crt`, if External CA mode is disabled, otherwise to `""`
+  - `--cluster-signing-key-file` to `ca.key`, if External CA mode is disabled, otherwise to `""`
+  - `--service-account-private-key-file` to `sa.key`
 
 #### Scheduler
 
@@ -285,8 +362,8 @@ The static Pod manifest for the scheduler is not affected by parameters provided
 
 ### Generate static Pod manifest for local etcd
 
-If the user specified an external etcd this step will be skipped, otherwise kubeadm generates a static Pod manifest file for creating
-a local etcd instance running in a Pod with following attributes:
+If the user specified an external etcd this step will be skipped, otherwise kubeadm generates a
+static Pod manifest file for creating a local etcd instance running in a Pod with following attributes:
 
 - listen on `localhost:2379` and use `HostNetwork=true`
 - make a `hostPath` mount out from the `dataDir` to the host's filesystem
@@ -294,114 +371,140 @@ a local etcd instance running in a Pod with following attributes:
 
 Please note that:
 
-1. The etcd image will be pulled from `k8s.gcr.io` by default. See [using custom images](/docs/reference/setup-tools/kubeadm/kubeadm-init/#custom-images) for customizing the image repository
-2. in case of kubeadm is executed in the `--dry-run` mode, the etcd static Pod manifest is written in a temporary folder
-3. Static Pod manifest generation for local etcd can be invoked individually with the [`kubeadm init phase etcd local`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-etcd) command
+1. The etcd image will be pulled from `k8s.gcr.io` by default. See
+   [using custom images](/docs/reference/setup-tools/kubeadm/kubeadm-init/#custom-images)
+   for customizing the image repository
+2. In case of kubeadm is executed in the `--dry-run` mode, the etcd static Pod manifest is written
+   in a temporary folder.
+3. Static Pod manifest generation for local etcd can be invoked individually with the
+   [`kubeadm init phase etcd local`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-etcd)
+   command.
 
 ### Wait for the control plane to come up
 
-kubeadm waits (upto 4m0s) until `localhost:6443/healthz` (kube-apiserver liveness) returns `ok`. However in order to detect
-deadlock conditions, kubeadm fails fast if `localhost:10255/healthz` (kubelet liveness) or
-`localhost:10255/healthz/syncloop` (kubelet readiness) don't return `ok` within 40s and 60s respectively.
+kubeadm waits (upto 4m0s) until `localhost:6443/healthz` (kube-apiserver liveness) returns `ok`.
+However in order to detect deadlock conditions, kubeadm fails fast if `localhost:10255/healthz`
+(kubelet liveness) or `localhost:10255/healthz/syncloop` (kubelet readiness) don't return `ok`
+within 40s and 60s respectively.
 
 kubeadm relies on the kubelet to pull the control plane images and run them properly as static Pods.
 After the control plane is up, kubeadm completes the tasks described in following paragraphs.
 
 ### Save the kubeadm ClusterConfiguration in a ConfigMap for later reference
 
-kubeadm saves the configuration passed to `kubeadm init` in a ConfigMap named `kubeadm-config` under `kube-system` namespace.
+kubeadm saves the configuration passed to `kubeadm init` in a ConfigMap named `kubeadm-config`
+under `kube-system` namespace.
 
-This will ensure that kubeadm actions executed in future (e.g `kubeadm upgrade`) will be able to determine the actual/current cluster
-state and make new decisions based on that data.
+This will ensure that kubeadm actions executed in future (e.g `kubeadm upgrade`) will be able to
+determine the actual/current cluster state and make new decisions based on that data.
 
 Please note that:
 
 1. Before saving the ClusterConfiguration, sensitive information like the token is stripped from the configuration
-2. Upload of control plane node configuration can be invoked individually with the [`kubeadm init phase upload-config`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-upload-config) command
+1. Upload of control plane node configuration can be invoked individually with the command
+   [`kubeadm init phase upload-config`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-upload-config).
 
 ### Mark the node as control-plane
 
 As soon as the control plane is available, kubeadm executes following actions:
 
-- Labels the node as control-plane with `node-role.kubernetes.io/master=""`
-- Taints the node with `node-role.kubernetes.io/master:NoSchedule`
+- Labels the node as control-plane with `node-role.kubernetes.io/control-plane=""`
+- Taints the node with `node-role.kubernetes.io/master:NoSchedule` and
+  `node-role.kubernetes.io/control-plane:NoSchedule`
 
 Please note that:
 
-1. Mark control-plane phase phase can be invoked individually with the [`kubeadm init phase mark-control-plane`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-mark-control-plane) command
+1. The `node-role.kubernetes.io/master` taint is deprecated and will be removed in kubeadm version 1.25
+1. Mark control-plane phase phase can be invoked individually with the command
+   [`kubeadm init phase mark-control-plane`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-mark-control-plane)
 
 ### Configure TLS-Bootstrapping for node joining
 
-Kubeadm uses [Authenticating with Bootstrap Tokens](/docs/reference/access-authn-authz/bootstrap-tokens/) for joining new nodes to an
-existing cluster; for more details see also [design proposal](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/cluster-lifecycle/bootstrap-discovery.md).
+Kubeadm uses [Authenticating with Bootstrap Tokens](/docs/reference/access-authn-authz/bootstrap-tokens/)
+for joining new nodes to an existing cluster; for more details see also
+[design proposal](https://git.k8s.io/design-proposals-archive/cluster-lifecycle/bootstrap-discovery.md).
+
+`kubeadm init` ensures that everything is properly configured for this process, and this includes
+following steps as well as setting API server and controller flags as already described in
+previous paragraphs.
 
-`kubeadm init` ensures that everything is properly configured for this process, and this includes following steps as well as
-setting API server and controller flags as already described in previous paragraphs.
 Please note that:
 
-1. TLS bootstrapping for nodes can be configured with the [`kubeadm init phase bootstrap-token`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-bootstrap-token)
-   command, executing all the configuration steps described in following paragraphs; alternatively, each step can be invoked individually
+1. TLS bootstrapping for nodes can be configured with the command
+   [`kubeadm init phase bootstrap-token`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-bootstrap-token),
+   executing all the configuration steps described in following paragraphs;
+   alternatively, each step can be invoked individually
 
 #### Create a bootstrap token
 
-`kubeadm init` create a first bootstrap token, either generated automatically or provided by the user with the `--token` flag; as documented
-in bootstrap token specification, token should be saved as secrets with name `bootstrap-token-<token-id>` under `kube-system` namespace.
-Please note that:
+`kubeadm init` create a first bootstrap token, either generated automatically or provided by the
+user with the `--token` flag; as documented in bootstrap token specification, token should be
+saved as secrets with name `bootstrap-token-<token-id>` under `kube-system` namespace.  Please
+note that:
 
-1. The default token created by `kubeadm init` will be used to validate temporary user during TLS bootstrap process; those users will
-   be member of  `system:bootstrappers:kubeadm:default-node-token` group
+1. The default token created by `kubeadm init` will be used to validate temporary user during TLS
+   bootstrap process; those users will be member of
+  `system:bootstrappers:kubeadm:default-node-token` group
 2. The token has a limited validity, default 24 hours (the interval may be changed with the `—token-ttl` flag)
-3. Additional tokens can be created with the [`kubeadm token`](/docs/reference/setup-tools/kubeadm/kubeadm-token/) command, that provide as well other useful functions
-   for token management
+3. Additional tokens can be created with the [`kubeadm token`](/docs/reference/setup-tools/kubeadm/kubeadm-token/)
+   command, that provide as well other useful functions for token management.
 
 #### Allow joining nodes to call CSR API
 
-Kubeadm ensures that users in  `system:bootstrappers:kubeadm:default-node-token` group are able to access the certificate signing API.
+Kubeadm ensures that users in  `system:bootstrappers:kubeadm:default-node-token` group are able to
+access the certificate signing API.
 
-This is implemented by creating a ClusterRoleBinding named `kubeadm:kubelet-bootstrap` between the group above and the default
-RBAC role `system:node-bootstrapper`.
+This is implemented by creating a ClusterRoleBinding named `kubeadm:kubelet-bootstrap` between the
+group above and the default RBAC role `system:node-bootstrapper`.
 
 #### Setup auto approval for new bootstrap tokens
 
-Kubeadm ensures that the Bootstrap Token will get its CSR request automatically approved by the csrapprover controller.
+Kubeadm ensures that the Bootstrap Token will get its CSR request automatically approved by the
+csrapprover controller.
 
-This is implemented by creating ClusterRoleBinding named `kubeadm:node-autoapprove-bootstrap` between
-the  `system:bootstrappers:kubeadm:default-node-token` group and the default role `system:certificates.k8s.io:certificatesigningrequests:nodeclient`.
+This is implemented by creating ClusterRoleBinding named `kubeadm:node-autoapprove-bootstrap`
+between the  `system:bootstrappers:kubeadm:default-node-token` group and the default role
+`system:certificates.k8s.io:certificatesigningrequests:nodeclient`.
 
-The role `system:certificates.k8s.io:certificatesigningrequests:nodeclient` should be created as well, granting
-POST permission to `/apis/certificates.k8s.io/certificatesigningrequests/nodeclient`.
+The role `system:certificates.k8s.io:certificatesigningrequests:nodeclient` should be created as
+well, granting POST permission to
+`/apis/certificates.k8s.io/certificatesigningrequests/nodeclient`.
 
 #### Setup nodes certificate rotation with auto approval
 
-Kubeadm ensures that certificate rotation is enabled for nodes, and that new certificate request for nodes will get its CSR request
-automatically approved by the csrapprover controller.
+Kubeadm ensures that certificate rotation is enabled for nodes, and that new certificate request
+for nodes will get its CSR request automatically approved by the csrapprover controller.
 
-This is implemented by creating ClusterRoleBinding named `kubeadm:node-autoapprove-certificate-rotation` between the  `system:nodes` group
-and the default role `system:certificates.k8s.io:certificatesigningrequests:selfnodeclient`.
+This is implemented by creating ClusterRoleBinding named
+`kubeadm:node-autoapprove-certificate-rotation` between the  `system:nodes` group and the default
+role `system:certificates.k8s.io:certificatesigningrequests:selfnodeclient`.
 
 #### Create the public cluster-info ConfigMap
 
 This phase creates the `cluster-info` ConfigMap in the `kube-public` namespace.
 
-Additionally it creates a Role and a RoleBinding granting access to the ConfigMap for unauthenticated users
-(i.e. users in RBAC group `system:unauthenticated`).
+Additionally it creates a Role and a RoleBinding granting access to the ConfigMap for
+unauthenticated users (i.e. users in RBAC group `system:unauthenticated`).
 
 Please note that:
 
-1. The access to the `cluster-info` ConfigMap _is not_ rate-limited. This may or may not be a problem if you expose your cluster's API server
-to the internet; worst-case scenario here is a DoS attack where an attacker uses all the in-flight requests the kube-apiserver
-can handle to serving the `cluster-info` ConfigMap.
+1. The access to the `cluster-info` ConfigMap _is not_ rate-limited. This may or may not be a
+   problem if you expose your cluster's API server to the internet; worst-case scenario here is a
+   DoS attack where an attacker uses all the in-flight requests the kube-apiserver can handle to
+   serving the `cluster-info` ConfigMap.
 
 ### Install addons
 
 Kubeadm installs the internal DNS server and the kube-proxy addon components via the API server.
 Please note that:
 
-1. This phase can be invoked individually with the [`kubeadm init phase addon all`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-addon) command.
+1. This phase can be invoked individually with the command
+   [`kubeadm init phase addon all`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-addon).
 
 #### proxy
 
-A ServiceAccount for `kube-proxy` is created in the `kube-system` namespace; then kube-proxy is deployed as a DaemonSet:
+A ServiceAccount for `kube-proxy` is created in the `kube-system` namespace; then kube-proxy is
+deployed as a DaemonSet:
 
 - The credentials (`ca.crt` and `token`) to the control plane come from the ServiceAccount
 - The location (URL) of the API server comes from a ConfigMap
@@ -412,7 +515,9 @@ A ServiceAccount for `kube-proxy` is created in the `kube-system` namespace; the
 - The CoreDNS service is named `kube-dns`. This is done to prevent any interruption
   in service when the user is switching the cluster DNS from kube-dns to CoreDNS
   the `--config` method described [here](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-addon).
+
 - A ServiceAccount for CoreDNS is created in the `kube-system` namespace.
+
 - The `coredns` ServiceAccount is bound to the privileges in the `system:coredns` ClusterRole
 
 In Kubernetes version 1.21, support for using `kube-dns` with kubeadm was removed.
@@ -420,72 +525,92 @@ You can use CoreDNS with kubeadm even when the related Service is named `kube-dn
 
 ## kubeadm join phases internal design
 
-Similarly to `kubeadm init`, also `kubeadm join` internal workflow consists of a sequence of atomic work tasks to perform.
+Similarly to `kubeadm init`, also `kubeadm join` internal workflow consists of a sequence of
+atomic work tasks to perform.
 
-This is split into discovery (having the Node trust the Kubernetes Master) and TLS bootstrap (having the Kubernetes Master trust the Node).
+This is split into discovery (having the Node trust the Kubernetes Master) and TLS bootstrap
+(having the Kubernetes Master trust the Node).
 
-see [Authenticating with Bootstrap Tokens](/docs/reference/access-authn-authz/bootstrap-tokens/) or the corresponding [design proposal](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/cluster-lifecycle/bootstrap-discovery.md).
+see [Authenticating with Bootstrap Tokens](/docs/reference/access-authn-authz/bootstrap-tokens/)
+or the corresponding [design proposal](https://git.k8s.io/design-proposals-archive/cluster-lifecycle/bootstrap-discovery.md).
 
 ### Preflight checks
 
-`kubeadm` executes a set of preflight checks before starting the join, with the aim to verify preconditions and avoid common
-cluster startup problems.
+`kubeadm` executes a set of preflight checks before starting the join, with the aim to verify
+preconditions and avoid common cluster startup problems.
 
 Please note that:
 
 1. `kubeadm join` preflight checks are basically a subset `kubeadm init` preflight checks
-1. Starting from 1.9, kubeadm provides better support for CRI-generic functionality; in that case, docker specific controls
-   are skipped or replaced by similar controls for crictl.
-1. Starting from 1.9, kubeadm provides support for joining nodes running on Windows; in that case, linux specific controls are skipped.
-1. In any case the user can skip specific preflight checks (or eventually all preflight checks) with the `--ignore-preflight-errors` option.
+1. Starting from 1.24, kubeadm uses crictl to communicate to all known CRI endpoints.
+1. Starting from 1.9, kubeadm provides support for joining nodes running on Windows; in that case,
+   linux specific controls are skipped.
+1. In any case the user can skip specific preflight checks (or eventually all preflight checks)
+   with the `--ignore-preflight-errors` option.
 
 ### Discovery cluster-info
 
-There are 2 main schemes for discovery. The first is to use a shared token along with the IP address of the API server.
+There are 2 main schemes for discovery. The first is to use a shared token along with the IP
+address of the API server.
 The second is to provide a file (that is a subset of the standard kubeconfig file).
 
 #### Shared token discovery
 
-If `kubeadm join` is invoked with `--discovery-token`, token discovery is used; in this case the node basically retrieves
-the cluster CA certificates from the  `cluster-info` ConfigMap in the `kube-public` namespace.
+If `kubeadm join` is invoked with `--discovery-token`, token discovery is used; in this case the
+node basically retrieves the cluster CA certificates from the  `cluster-info` ConfigMap in the
+`kube-public` namespace.
 
 In order to prevent "man in the middle" attacks, several steps are taken:
 
-- First, the CA certificate is retrieved via insecure connection (this is possible because `kubeadm init` granted access to  `cluster-info` users for `system:unauthenticated` )
+- First, the CA certificate is retrieved via insecure connection (this is possible because
+  `kubeadm init` granted access to  `cluster-info` users for `system:unauthenticated` )
+
 - Then the CA certificate goes trough following validation steps:
+
   - Basic validation: using the token ID against a JWT signature
-  - Pub key validation: using provided `--discovery-token-ca-cert-hash`. This value is available in the output of `kubeadm init` or can
-    be calculated using standard tools (the hash is calculated over the bytes of the Subject Public Key Info (SPKI) object as in RFC7469).
-    The `--discovery-token-ca-cert-hash flag` may be repeated multiple times to allow more than one public key.
-  - As a additional validation, the CA certificate is retrieved via secure connection and then compared with the CA retrieved initially
+  - Pub key validation: using provided `--discovery-token-ca-cert-hash`. This value is available
+    in the output of `kubeadm init` or can be calculated using standard tools (the hash is
+    calculated over the bytes of the Subject Public Key Info (SPKI) object as in RFC7469). The
+    `--discovery-token-ca-cert-hash flag` may be repeated multiple times to allow more than one public key.
+  - As a additional validation, the CA certificate is retrieved via secure connection and then
+    compared with the CA retrieved initially
 
 Please note that:
 
-1.  Pub key validation can be skipped passing `--discovery-token-unsafe-skip-ca-verification` flag; This weakens the kubeadm security
-    model since others can potentially impersonate the Kubernetes Master.
+1. Pub key validation can be skipped passing `--discovery-token-unsafe-skip-ca-verification` flag;
+   This weakens the kubeadm security model since others can potentially impersonate the Kubernetes Master.
 
 #### File/https discovery
 
-If `kubeadm join` is invoked with `--discovery-file`, file discovery is used; this file can be a local file or downloaded via an HTTPS URL; in case of HTTPS, the host installed CA bundle is used to verify the connection.
+If `kubeadm join` is invoked with `--discovery-file`, file discovery is used; this file can be a
+local file or downloaded via an HTTPS URL; in case of HTTPS, the host installed CA bundle is used
+to verify the connection.
 
-With file discovery, the cluster CA certificates is provided into the file itself; in fact, the discovery file is a kubeconfig
-file with only `server` and `certificate-authority-data` attributes set, as described in [`kubeadm join`](/docs/reference/setup-tools/kubeadm/kubeadm-join/#file-or-https-based-discovery) reference doc;
-when the connection with the cluster is established, kubeadm try to access the `cluster-info` ConfigMap, and if available, uses it.
+With file discovery, the cluster CA certificates is provided into the file itself; in fact, the
+discovery file is a kubeconfig file with only `server` and `certificate-authority-data` attributes
+set, as described in [`kubeadm join`](/docs/reference/setup-tools/kubeadm/kubeadm-join/#file-or-https-based-discovery)
+reference doc; when the connection with the cluster is established, kubeadm try to access the
+`cluster-info` ConfigMap, and if available, uses it.
 
 ## TLS Bootstrap
 
-Once the cluster info are known, the file `bootstrap-kubelet.conf` is written, thus allowing kubelet to do TLS Bootstrapping.
+Once the cluster info are known, the file `bootstrap-kubelet.conf` is written, thus allowing
+kubelet to do TLS Bootstrapping.
 
-The TLS bootstrap mechanism uses the shared token to temporarily authenticate with the Kubernetes API server to submit a certificate
-signing request (CSR) for a locally created key pair.
+The TLS bootstrap mechanism uses the shared token to temporarily authenticate with the Kubernetes
+API server to submit a certificate signing request (CSR) for a locally created key pair.
 
-The request is then automatically approved and the operation completes saving `ca.crt` file and `kubelet.conf` file to be used
-by kubelet for joining the cluster, while`bootstrap-kubelet.conf` is deleted.
+The request is then automatically approved and the operation completes saving `ca.crt` file and
+`kubelet.conf` file to be used by kubelet for joining the cluster, while`bootstrap-kubelet.conf`
+is deleted.
 
 Please note that:
 
-- The temporary authentication is validated against the token saved during the `kubeadm init` process (or with additional tokens
-  created with `kubeadm token`)
-- The temporary authentication resolve to a user member of `system:bootstrappers:kubeadm:default-node-token` group which was granted
-  access to CSR api during the `kubeadm init` process
-- The automatic CSR approval is managed by the csrapprover controller, according with configuration done the `kubeadm init` process
+- The temporary authentication is validated against the token saved during the `kubeadm init`
+  process (or with additional tokens created with `kubeadm token`)
+- The temporary authentication resolve to a user member of
+  `system:bootstrappers:kubeadm:default-node-token` group which was granted access to CSR api
+  during the `kubeadm init` process
+- The automatic CSR approval is managed by the csrapprover controller, according with
+  configuration done the `kubeadm init` process
+
diff --git a/content/en/docs/reference/setup-tools/kubeadm/kubeadm-config.md b/content/en/docs/reference/setup-tools/kubeadm/kubeadm-config.md
index 76d9921be1..b9908744e0 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/kubeadm-config.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/kubeadm-config.md
@@ -12,20 +12,27 @@ During `kubeadm init`, kubeadm uploads the `ClusterConfiguration` object to your
 in a ConfigMap called `kubeadm-config` in the `kube-system` namespace. This configuration is then read during
 `kubeadm join`, `kubeadm reset` and `kubeadm upgrade`.
 
-You can use `kubeadm config print` to print the default configuration and `kubeadm config migrate` to
-convert your old configuration files to a newer version. `kubeadm config images list` and
-`kubeadm config images pull` can be used to list and pull the images that kubeadm requires.
+You can use `kubeadm config print` to print the default static configuration that kubeadm
+uses for `kubeadm init` and `kubeadm join`.
 
-For more information navigate to
+{{< note >}}
+The output of the command is meant to serve as an example. You must manually edit the output
+of this command to adapt to your setup. Remove the fields that you are not certain about and kubeadm
+will try to default them on runtime by examining the host.
+{{< /note >}}
+
+For more information on `init` and `join` navigate to
 [Using kubeadm init with a configuration file](/docs/reference/setup-tools/kubeadm/kubeadm-init/#config-file)
 or [Using kubeadm join with a configuration file](/docs/reference/setup-tools/kubeadm/kubeadm-join/#config-file).
 
-You can also configure several kubelet-configuration options with `kubeadm init`. These options will be the same on any node in your cluster.
-See [Configuring each kubelet in your cluster using kubeadm](/docs/setup/production-environment/tools/kubeadm/kubelet-integration/) for details.
+For more information on using the kubeadm configuration API navigate to
+[Customizing components with the kubeadm API](/docs/setup/production-environment/tools/kubeadm/control-plane-flags).
 
-In Kubernetes v1.13.0 and later to list/pull kube-dns images instead of the CoreDNS image
-the `--config` method described [here](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-addon)
-has to be used.
+You can use `kubeadm config migrate` to convert your old configuration files that contain a deprecated
+API version to a newer, supported API version.
+
+`kubeadm config images list` and `kubeadm config images pull` can be used to list and pull the images
+that kubeadm requires.
 
 <!-- body -->
 ## kubeadm config print {#cmd-config-print}
diff --git a/content/en/docs/reference/setup-tools/kubeadm/kubeadm-init-phase.md b/content/en/docs/reference/setup-tools/kubeadm/kubeadm-init-phase.md
index 3f9812b260..2bab24f74d 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/kubeadm-init-phase.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/kubeadm-init-phase.md
@@ -105,7 +105,7 @@ By default the certs and encryption key expire after two hours.
 
 ## kubeadm init phase mark-control-plane {#cmd-phase-mark-control-plane}
 
-Use the following phase to label and taint the node with the `node-role.kubernetes.io/master=""` key-value pair.
+Use the following phase to label and taint the node as a control plane node.
 
 {{< tabs name="tab-mark-control-plane" >}}
 {{< tab name="mark-control-plane" include="generated/kubeadm_init_phase_mark-control-plane.md" />}}
diff --git a/content/en/docs/reference/setup-tools/kubeadm/kubeadm-init.md b/content/en/docs/reference/setup-tools/kubeadm/kubeadm-init.md
index 3779ec2fdf..124d1ddfd2 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/kubeadm-init.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/kubeadm-init.md
@@ -6,7 +6,9 @@ title: kubeadm init
 content_type: concept
 weight: 20
 ---
+
 <!-- overview -->
+
 This command initializes a Kubernetes control-plane node.
 
 <!-- body -->
@@ -26,12 +28,12 @@ following steps:
 1. Generates a self-signed CA to set up identities for each component in the cluster. The user can provide their
    own CA cert and/or key by dropping it in the cert directory configured via `--cert-dir`
    (`/etc/kubernetes/pki` by default).
-   The APIServer certs will have additional SAN entries for any `--apiserver-cert-extra-sans` arguments, lowercased if necessary.
+   The APIServer certs will have additional SAN entries for any `--apiserver-cert-extra-sans`
+   arguments, lowercased if necessary.
 
-1. Writes kubeconfig files in `/etc/kubernetes/`  for
-   the kubelet, the controller-manager and the scheduler to use to connect to the
-   API server, each with its own identity, as well as an additional
-   kubeconfig file for administration named `admin.conf`.
+1. Writes kubeconfig files in `/etc/kubernetes/` for the kubelet, the controller-manager and the
+   scheduler to use to connect to the API server, each with its own identity, as well as an
+   additional kubeconfig file for administration named `admin.conf`.
 
 1. Generates static Pod manifests for the API server,
    controller-manager and scheduler. In case an external etcd is not provided,
@@ -52,7 +54,7 @@ following steps:
 
 1. Makes all the necessary configurations for allowing node joining with the
    [Bootstrap Tokens](/docs/reference/access-authn-authz/bootstrap-tokens/) and
-   [TLS Bootstrap](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/)
+   [TLS Bootstrap](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/)
    mechanism:
 
    - Write a ConfigMap for making available all the information required
@@ -76,10 +78,12 @@ following steps:
 
 Kubeadm allows you to create a control-plane node in phases using the `kubeadm init phase` command.
 
-To view the ordered list of phases and sub-phases you can call `kubeadm init --help`. The list will be located at the top of the help screen and each phase will have a description next to it.
+To view the ordered list of phases and sub-phases you can call `kubeadm init --help`. The list
+will be located at the top of the help screen and each phase will have a description next to it.
 Note that by calling `kubeadm init` all of the phases and sub-phases will be executed in this exact order.
 
-Some phases have unique flags, so if you want to have a look at the list of available options add `--help`, for example:
+Some phases have unique flags, so if you want to have a look at the list of available options add
+`--help`, for example:
 
 ```shell
 sudo kubeadm init phase control-plane controller-manager --help
@@ -91,7 +95,8 @@ You can also use `--help` to see the list of sub-phases for a certain parent pha
 sudo kubeadm init phase control-plane --help
 ```
 
-`kubeadm init` also exposes a flag called `--skip-phases` that can be used to skip certain phases. The flag accepts a list of phase names and the names can be taken from the above ordered list.
+`kubeadm init` also exposes a flag called `--skip-phases` that can be used to skip certain phases.
+The flag accepts a list of phase names and the names can be taken from the above ordered list.
 
 An example:
 
@@ -102,7 +107,10 @@ sudo kubeadm init phase etcd local --config=configfile.yaml
 sudo kubeadm init --skip-phases=control-plane,etcd --config=configfile.yaml
 ```
 
-What this example would do is write the manifest files for the control plane and etcd in `/etc/kubernetes/manifests` based on the configuration in `configfile.yaml`. This allows you to modify the files and then skip these phases using `--skip-phases`. By calling the last command you will create a control plane node with the custom manifest files.
+What this example would do is write the manifest files for the control plane and etcd in
+`/etc/kubernetes/manifests` based on the configuration in `configfile.yaml`. This allows you to
+modify the files and then skip these phases using `--skip-phases`. By calling the last command you
+will create a control plane node with the custom manifest files.
 
 {{< feature-state for_k8s_version="v1.22" state="beta" >}}
 
@@ -127,7 +135,63 @@ If your configuration is not using the latest version it is **recommended** that
 the [kubeadm config migrate](/docs/reference/setup-tools/kubeadm/kubeadm-config/) command.
 
 For more information on the fields and usage of the configuration you can navigate to our
-[API reference page](/docs/reference/config-api/kubeadm-config.v1beta2/).
+[API reference page](/docs/reference/config-api/kubeadm-config.v1beta3/).
+
+### Using kubeadm init with feature gates {#feature-gates}
+
+Kubeadm supports a set of feature gates that are unique to kubeadm and can only be applied
+during cluster creation with `kubeadm init`. These features can control the behavior
+of the cluster. Feature gates are removed after a feature graduates to GA.
+
+To pass a feature gate you can either use the `--feature-gates` flag for
+`kubeadm init`, or you can add items into the `featureGates` field when you pass
+a [configuration file](/docs/reference/config-api/kubeadm-config.v1beta3/#kubeadm-k8s-io-v1beta3-ClusterConfiguration)
+using `--config`.
+
+Passing [feature gates for core Kubernetes components](/docs/reference/command-line-tools-reference/feature-gates)
+directly to kubeadm is not supported. Instead, it is possible to pass them by
+[Customizing components with the kubeadm API](/docs/setup/production-environment/tools/kubeadm/control-plane-flags/).
+
+List of feature gates:
+
+{{< table caption="kubeadm feature gates" >}}
+Feature | Default | Alpha | Beta
+:-------|:--------|:------|:-----
+`PublicKeysECDSA` | `false` | 1.19 | -
+`RootlessControlPlane` | `false` | 1.22 | -
+`UnversionedKubeletConfigMap` | `true` | 1.22 | 1.23
+{{< /table >}}
+
+{{< note >}}
+Once a feature gate goes GA it is removed from this list as its value becomes locked to `true` by default.
+{{< /note >}}
+
+Feature gate descriptions:
+
+`PublicKeysECDSA`
+: Can be used to create a cluster that uses ECDSA certificates instead of the default RSA algorithm.
+Renewal of existing ECDSA certificates is also supported using `kubeadm certs renew`, but you cannot
+switch between the RSA and ECDSA algorithms on the fly or during upgrades.
+
+`RootlessControlPlane`
+: Setting this flag configures the kubeadm deployed control plane component static Pod containers
+for `kube-apiserver`, `kube-controller-manager`, `kube-scheduler` and `etcd` to run as non-root users.
+If the flag is not set, those components run as root. You can change the value of this feature gate before
+you upgrade to a newer version of Kubernetes.
+
+`UnversionedKubeletConfigMap`
+: This flag controls the name of the {{< glossary_tooltip text="ConfigMap" term_id="configmap" >}} where kubeadm stores
+kubelet configuration data. With this flag not specified or set to `true`, the ConfigMap is named `kubelet-config`.
+If you set this flag to `false`, the name of the ConfigMap includes the major and minor version for Kubernetes
+(for example: `kubelet-config-{{< skew currentVersion >}}`). Kubeadm ensures that RBAC rules for reading and writing
+that ConfigMap are appropriate for the value you set. When kubeadm writes this ConfigMap (during `kubeadm init`
+or `kubeadm upgrade apply`), kubeadm respects the value of `UnversionedKubeletConfigMap`. When reading that ConfigMap
+(during `kubeadm join`, `kubeadm reset`, `kubeadm upgrade ...`), kubeadm attempts to use unversioned ConfigMap name first;
+if that does not succeed, kubeadm falls back to using the legacy (versioned) name for that ConfigMap.
+
+{{< note >}}
+Setting `UnversionedKubeletConfigMap` to `false` is supported but **deprecated**.
+{{< /note >}}
 
 ### Adding kube-proxy parameters {#kube-proxy}
 
@@ -142,6 +206,22 @@ For information about enabling IPVS mode with kubeadm see:
 For information about passing flags to control plane components see:
 - [control-plane-flags](/docs/setup/production-environment/tools/kubeadm/control-plane-flags/)
 
+### Running kubeadm without an Internet connection {#without-internet-connection}
+
+For running kubeadm without an Internet connection you have to pre-pull the required control-plane images.
+
+You can list and pull the images using the `kubeadm config images` sub-command:
+
+```shell
+kubeadm config images list
+kubeadm config images pull
+```
+
+You can pass `--config` to the above commands with a [kubeadm configuration file](#config-file)
+to control the `kubernetesVersion` and `imageRepository` fields.
+
+All default `k8s.gcr.io` images that kubeadm requires support multiple architectures.
+
 ### Using custom images {#custom-images}
 
 By default, kubeadm pulls images from `k8s.gcr.io`. If the
@@ -151,13 +231,33 @@ requested Kubernetes version is a CI label (such as `ci/latest`)
 You can override this behavior by using [kubeadm with a configuration file](#config-file).
 Allowed customization are:
 
+* To provide `kubernetesVersion` which affects the version of the images.
 * To provide an alternative `imageRepository` to be used instead of
   `k8s.gcr.io`.
-* To set `useHyperKubeImage` to `true` to use the HyperKube image.
-* To provide a specific `imageRepository` and `imageTag` for etcd or DNS add-on.
+* To provide a specific `imageRepository` and `imageTag` for etcd or CoreDNS.
 
-Please note that the configuration field `kubernetesVersion` or the command line flag
-`--kubernetes-version` affect the version of the images.
+Image paths between the default `k8s.gcr.io` and a custom repository specified using
+`imageRepository` may differ for backwards compatibility reasons. For example,
+one image might have a subpath at `k8s.gcr.io/subpath/image`, but be defaulted
+to `my.customrepository.io/image` when using a custom repository.
+
+To ensure you push the images to your custom repository in paths that kubeadm
+can consume, you must:
+
+* Pull images from the defaults paths at `k8s.gcr.io` using `kubeadm config images {list|pull}`.
+* Push images to the paths from `kubeadm config images list --config=config.yaml`,
+where `config.yaml` contains the custom `imageRepository`, and/or `imageTag`
+for etcd and CoreDNS.
+* Pass the same `config.yaml` to `kubeadm init`.
+
+#### Custom sandbox (pause) images {#custom-pause-image}
+
+To set a custom image for these you need to configure this in your 
+{{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}
+to use the image.
+Consult the documentation for your container runtime to find out how to change this setting;
+for selected container runtimes, you can also find advice within the
+[Container Runtimes](/docs/setup/production-environment/container-runtimes/) topic.
 
 ### Uploading control-plane certificates to the cluster
 
@@ -192,43 +292,35 @@ and certificate renewal.
 
 ### Managing the kubeadm drop-in file for the kubelet {#kubelet-drop-in}
 
-The `kubeadm` package ships with a configuration file for running the `kubelet` by `systemd`. Note that the kubeadm CLI never touches this drop-in file. This drop-in file is part of the kubeadm DEB/RPM package.
+The `kubeadm` package ships with a configuration file for running the `kubelet` by `systemd`.
+Note that the kubeadm CLI never touches this drop-in file. This drop-in file is part of the kubeadm
+DEB/RPM package.
 
-For further information, see [Managing the kubeadm drop-in file for systemd](/docs/setup/production-environment/tools/kubeadm/kubelet-integration/#the-kubelet-drop-in-file-for-systemd).
+For further information, see
+[Managing the kubeadm drop-in file for systemd](/docs/setup/production-environment/tools/kubeadm/kubelet-integration/#the-kubelet-drop-in-file-for-systemd).
 
 ### Use kubeadm with CRI runtimes
 
-By default kubeadm attempts to detect your container runtime. For more details on this detection, see
-the [kubeadm CRI installation guide](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#installing-runtime).
+By default kubeadm attempts to detect your container runtime. For more details on this detection,
+see the [kubeadm CRI installation guide](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#installing-runtime).
 
 ### Setting the node name
 
-By default, `kubeadm` assigns a node name based on a machine's host address. You can override this setting with the `--node-name` flag.
+By default, `kubeadm` assigns a node name based on a machine's host address.
+You can override this setting with the `--node-name` flag.
 The flag passes the appropriate [`--hostname-override`](/docs/reference/command-line-tools-reference/kubelet/#options)
 value to the kubelet.
 
-Be aware that overriding the hostname can [interfere with cloud providers](https://github.com/kubernetes/website/pull/8873).
-
-### Running kubeadm without an internet connection
-
-For running kubeadm without an internet connection you have to pre-pull the required control-plane images.
-
-You can list and pull the images using the `kubeadm config images` sub-command:
-
-```shell
-kubeadm config images list
-kubeadm config images pull
-```
-
-All images that kubeadm requires such as `k8s.gcr.io/kube-*`, `k8s.gcr.io/etcd` and `k8s.gcr.io/pause` support multiple architectures.
+Be aware that overriding the hostname can
+[interfere with cloud providers](https://github.com/kubernetes/website/pull/8873).
 
 ### Automating kubeadm
 
 Rather than copying the token you obtained from `kubeadm init` to each node, as
-in the [basic kubeadm tutorial](/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/), you can parallelize the
-token distribution for easier automation. To implement this automation, you must
-know the IP address that the control-plane node will have after it is started,
-or use a DNS name or an address of a load balancer.
+in the [basic kubeadm tutorial](/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/),
+you can parallelize the token distribution for easier automation. To implement this automation,
+you must know the IP address that the control-plane node will have after it is started, or use a
+DNS name or an address of a load balancer.
 
 1. Generate a token. This token must have the form  `<6 character string>.<16
    character string>`. More formally, it must match the regex:
@@ -262,7 +354,11 @@ provisioned). For details, see the [kubeadm join](/docs/reference/setup-tools/ku
 ## {{% heading "whatsnext" %}}
 
 * [kubeadm init phase](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/) to understand more about
-`kubeadm init` phases
-* [kubeadm join](/docs/reference/setup-tools/kubeadm/kubeadm-join/) to bootstrap a Kubernetes worker node and join it to the cluster
-* [kubeadm upgrade](/docs/reference/setup-tools/kubeadm/kubeadm-upgrade/) to upgrade a Kubernetes cluster to a newer version
-* [kubeadm reset](/docs/reference/setup-tools/kubeadm/kubeadm-reset/) to revert any changes made to this host by `kubeadm init` or `kubeadm join`
+  `kubeadm init` phases
+* [kubeadm join](/docs/reference/setup-tools/kubeadm/kubeadm-join/) to bootstrap a Kubernetes
+  worker node and join it to the cluster
+* [kubeadm upgrade](/docs/reference/setup-tools/kubeadm/kubeadm-upgrade/) to upgrade a Kubernetes
+  cluster to a newer version
+* [kubeadm reset](/docs/reference/setup-tools/kubeadm/kubeadm-reset/) to revert any changes made
+  to this host by `kubeadm init` or `kubeadm join`
+
diff --git a/content/en/docs/reference/setup-tools/kubeadm/kubeadm-join.md b/content/en/docs/reference/setup-tools/kubeadm/kubeadm-join.md
index 5ad349e66c..5693274a59 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/kubeadm-join.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/kubeadm-join.md
@@ -41,8 +41,6 @@ For control-plane nodes additional steps are performed:
 
 1. Adding new local etcd member.
 
-1. Adding this node to the ClusterStatus of the kubeadm cluster.
-
 ### Using join phases with kubeadm {#join-phases}
 
 Kubeadm allows you join a node to the cluster in phases using `kubeadm join phase`.
@@ -287,7 +285,7 @@ If your configuration is not using the latest version it is **recommended** that
 the [kubeadm config migrate](/docs/reference/setup-tools/kubeadm/kubeadm-config/) command.
 
 For more information on the fields and usage of the configuration you can navigate to our
-[API reference](/docs/reference/config-api/kubeadm-config.v1beta2/).
+[API reference](/docs/reference/config-api/kubeadm-config.v1beta3/).
 
 ## {{% heading "whatsnext" %}}
 
diff --git a/content/en/docs/reference/setup-tools/kubeadm/kubeadm-kubeconfig.md b/content/en/docs/reference/setup-tools/kubeadm/kubeadm-kubeconfig.md
index f912285f7d..a5684ecceb 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/kubeadm-kubeconfig.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/kubeadm-kubeconfig.md
@@ -6,6 +6,9 @@ weight: 90
 
 `kubeadm kubeconfig` provides utilities for managing kubeconfig files.
 
+For examples on how to use `kubeadm kubeconfig user` see
+[Generating kubeconfig files for additional users](/docs/tasks/administer-cluster/kubeadm/kubeadm-certs#kubeconfig-additional-users).
+
 ## kubeadm kubeconfig {#cmd-kubeconfig}
 
 {{< tabs name="tab-kubeconfig" >}}
diff --git a/content/en/docs/reference/setup-tools/kubeadm/kubeadm-reset-phase.md b/content/en/docs/reference/setup-tools/kubeadm/kubeadm-reset-phase.md
index 95c8ea129f..7965f1c3d0 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/kubeadm-reset-phase.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/kubeadm-reset-phase.md
@@ -25,14 +25,6 @@ Using this phase you can execute preflight checks on a node that is being reset.
 {{< tab name="preflight" include="generated/kubeadm_reset_phase_preflight.md" />}}
 {{< /tabs >}}
 
-## kubeadm reset phase update-cluster-status {#cmd-reset-phase-update-cluster-status}
-
-Using this phase you can remove this control-plane node from the ClusterStatus object.
-
-{{< tabs name="tab-update-cluster-status" >}}
-{{< tab name="update-cluster-status" include="generated/kubeadm_reset_phase_update-cluster-status.md" />}}
-{{< /tabs >}}
-
 ## kubeadm reset phase remove-etcd-member {#cmd-reset-phase-remove-etcd-member}
 
 Using this phase you can remove this control-plane node's etcd member from the etcd cluster.
diff --git a/content/en/docs/reference/setup-tools/kubeadm/kubeadm-reset.md b/content/en/docs/reference/setup-tools/kubeadm/kubeadm-reset.md
index 93d5ce0cbb..9a5f9b29fd 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/kubeadm-reset.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/kubeadm-reset.md
@@ -16,8 +16,7 @@ Performs a best effort revert of changes made by `kubeadm init` or `kubeadm join
 
 `kubeadm reset` is responsible for cleaning up a node local file system from files that were created using
 the `kubeadm init` or `kubeadm join` commands. For control-plane nodes `reset` also removes the local stacked
-etcd member of this node from the etcd cluster and also removes this node's information from the kubeadm
-`ClusterStatus` object. `ClusterStatus` is a kubeadm managed Kubernetes API object that holds a list of kube-apiserver endpoints.
+etcd member of this node from the etcd cluster.
 
 `kubeadm reset phase` can be used to execute the separate phases of the above workflow.
 To skip a list of phases you can use the `--skip-phases` flag, which works in a similar way to
diff --git a/content/en/docs/reference/setup-tools/kubeadm/kubeadm-upgrade.md b/content/en/docs/reference/setup-tools/kubeadm/kubeadm-upgrade.md
index 6a2c5f782f..3741c5f30d 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/kubeadm-upgrade.md
+++ b/content/en/docs/reference/setup-tools/kubeadm/kubeadm-upgrade.md
@@ -15,7 +15,7 @@ behind one command, with support for both planning an upgrade and actually perfo
 
 ## kubeadm upgrade guidance
 
-The steps for performing a upgrade using kubeadm are outlined in [this document](/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/).
+The steps for performing an upgrade using kubeadm are outlined in [this document](/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/).
 For older versions of kubeadm, please refer to older documentation sets of the Kubernetes website.
 
 You can use `kubeadm upgrade diff` to see the changes that would be applied to static pod manifests.
diff --git a/content/en/docs/reference/tools/_index.md b/content/en/docs/reference/tools/_index.md
index aa65af289b..2ec317bd1f 100644
--- a/content/en/docs/reference/tools/_index.md
+++ b/content/en/docs/reference/tools/_index.md
@@ -8,23 +8,24 @@ no_list: true
 ---
 
 <!-- overview -->
-Kubernetes contains several built-in tools and external tools that are commonly used or relevant that may as well be seen as required for Kubernetes to function.
-
+Kubernetes contains several tools to help you work with the Kubernetes system.
 
 <!-- body -->
 
-## Minikube
+## crictl
 
-[`minikube`](https://minikube.sigs.k8s.io/docs/) is a tool that
-runs a single-node Kubernetes cluster locally on your workstation for
-development and testing purposes.
+[`crictl`](https://github.com/kubernetes-sigs/cri-tools) is a command-line
+interface for inspecting and debugging {{<glossary_tooltip term_id="cri" text="CRI">}}-compatible
+container runtimes.
 
 ## Dashboard
 
 [`Dashboard`](/docs/tasks/access-application-cluster/web-ui-dashboard/), the web-based user interface of Kubernetes, allows you to deploy containerized applications
-to a Kubernetes cluster, troubleshoot them, and manage the cluster and its resources itself.
+to a Kubernetes cluster, troubleshoot them, and manage the cluster and its
+resources itself.
 
 ## Helm
+{{% thirdparty-content single="true" %}}
 
 [Helm](https://helm.sh/) is a tool for managing packages of pre-configured
 Kubernetes resources. These packages are known as _Helm charts_.
@@ -46,3 +47,25 @@ Use Kompose to:
 * Translate a Docker Compose file into Kubernetes objects
 * Go from local Docker development to managing your application via Kubernetes
 * Convert v1 or v2 Docker Compose `yaml` files or [Distributed Application Bundles](https://docs.docker.com/compose/bundles/)
+
+## Kui
+
+[`Kui`](https://github.com/kubernetes-sigs/kui) is a GUI tool that takes your normal
+`kubectl` command line requests and responds with graphics.
+
+Kui takes the normal `kubectl` command line requests and responds with graphics. Instead 
+of ASCII tables, Kui provides a GUI rendering with tables that you can sort.
+
+Kui lets you:
+
+* Directly click on long, auto-generated resource names instead of copying and pasting
+* Type in `kubectl` commands and see them execute, even sometimes faster than `kubectl` itself
+* Query a {{< glossary_tooltip text="Job" term_id="job">}} and see its execution rendered
+  as a waterfall diagram
+* Click through resources in your cluster using a tabbed UI 
+
+## Minikube
+
+[`minikube`](https://minikube.sigs.k8s.io/docs/) is a tool that
+runs a single-node Kubernetes cluster locally on your workstation for
+development and testing purposes.
\ No newline at end of file
diff --git a/content/en/docs/reference/tools/map-crictl-dockercli.md b/content/en/docs/reference/tools/map-crictl-dockercli.md
new file mode 100644
index 0000000000..7fc021451c
--- /dev/null
+++ b/content/en/docs/reference/tools/map-crictl-dockercli.md
@@ -0,0 +1,76 @@
+---
+title: Mapping from dockercli to crictl
+content_type: reference
+---
+
+{{% thirdparty-content %}}
+
+{{<note>}}
+This page is deprecated and will be removed in Kubernetes 1.27.
+{{</note>}}
+
+`crictl` is a command-line interface for {{<glossary_tooltip term_id="cri" text="CRI">}}-compatible container runtimes.
+You can use it to inspect and debug container runtimes and applications on a
+Kubernetes node. `crictl` and its source are hosted in the
+[cri-tools](https://github.com/kubernetes-sigs/cri-tools) repository.
+
+This page provides a reference for mapping common commands for the `docker`
+command-line tool into the equivalent commands for `crictl`.
+
+## Mapping from docker CLI to crictl
+
+The exact versions for the mapping table are for `docker` CLI v1.40 and `crictl`
+v1.19.0. This list is not exhaustive. For example, it doesn't include
+experimental `docker` CLI commands.
+
+{{< note >}}
+The output format of `crictl` is similar to `docker` CLI, despite some missing
+columns for some CLI. Make sure to check output for the specific command if your
+command output is being parsed programmatically.
+{{< /note >}}
+
+### Retrieve debugging information
+
+{{< table caption="mapping from docker cli to crictl - retrieve debugging information" >}}
+docker cli | crictl | Description | Unsupported Features
+-- | -- | -- | --
+`attach` | `attach` | Attach to a running container | `--detach-keys`, `--sig-proxy`
+`exec` | `exec` | Run a command in a running container | `--privileged`, `--user`, `--detach-keys`
+`images` | `images` | List images |  
+`info` | `info` | Display system-wide information |  
+`inspect` | `inspect`, `inspecti` | Return low-level information on a container, image or task |  
+`logs` | `logs` | Fetch the logs of a container | `--details`
+`ps` | `ps` | List containers |  
+`stats` | `stats` | Display a live stream of container(s) resource usage statistics | Column: NET/BLOCK I/O, PIDs
+`version` | `version` | Show the runtime (Docker, ContainerD, or others) version information |  
+{{< /table >}}
+
+### Perform Changes
+
+{{< table caption="mapping from docker cli to crictl - perform changes" >}}
+docker cli | crictl | Description | Unsupported Features
+-- | -- | -- | --
+`create` | `create` | Create a new container |  
+`kill` | `stop` (timeout = 0) | Kill one or more running container | `--signal`
+`pull` | `pull` | Pull an image or a repository from a registry | `--all-tags`, `--disable-content-trust`
+`rm` | `rm` | Remove one or more containers |  
+`rmi` | `rmi` | Remove one or more images |  
+`run` | `run` | Run a command in a new container |  
+`start` | `start` | Start one or more stopped containers | `--detach-keys`
+`stop` | `stop` | Stop one or more running containers |  
+`update` | `update` | Update configuration of one or more containers | `--restart`, `--blkio-weight` and some other resource limit not supported by CRI.
+{{< /table >}}
+
+### Supported only in crictl
+
+{{< table caption="mapping from docker cli to crictl - supported only in crictl" >}}
+crictl | Description
+-- | --
+`imagefsinfo` | Return image filesystem info
+`inspectp` | Display the status of one or more pods
+`port-forward` | Forward local port to a pod
+`pods` | List pods
+`runp` | Run a new pod
+`rmp` | Remove one or more pods
+`stopp` | Stop one or more running pods
+{{< /table >}}
\ No newline at end of file
diff --git a/content/en/docs/reference/using-api/_index.md b/content/en/docs/reference/using-api/_index.md
index 2039e33e28..182bbd4fe6 100644
--- a/content/en/docs/reference/using-api/_index.md
+++ b/content/en/docs/reference/using-api/_index.md
@@ -39,7 +39,7 @@ The JSON and Protobuf serialization schemas follow the same guidelines for
 schema changes. The following descriptions cover both formats.
 
 The API versioning and software versioning are indirectly related.
-The [API and release versioning proposal](https://git.k8s.io/community/contributors/design-proposals/release/versioning.md)
+The [API and release versioning proposal](https://git.k8s.io/sig-release/release-engineering/versioning.md)
 describes the relationship between API versioning and software versioning.
 
 Different API versions indicate different levels of stability and support. You
@@ -83,7 +83,7 @@ Here's a summary of each level:
 
 ## API groups
 
-[API groups](https://git.k8s.io/community/contributors/design-proposals/api-machinery/api-group.md)
+[API groups](https://git.k8s.io/design-proposals-archive/api-machinery/api-group.md)
 make it easier to extend the Kubernetes API.
 The API group is specified in a REST path and in the `apiVersion` field of a
 serialized object.
@@ -108,6 +108,7 @@ part is omitted, it is treated as if `=true` is specified. For example:
 
  - to disable `batch/v1`, set `--runtime-config=batch/v1=false`
  - to enable `batch/v2alpha1`, set `--runtime-config=batch/v2alpha1`
+ - to enable a specific version of an API, such as `storage.k8s.io/v1beta1/csistoragecapacities`, set `--runtime-config=storage.k8s.io/v1beta1/csistoragecapacities`
 
 {{< note >}}
 When you enable or disable groups or resources, you need to restart the API
@@ -123,4 +124,4 @@ Kubernetes stores its serialized state in terms of the API resources by writing
 
 - Learn more about [API conventions](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#api-conventions)
 - Read the design documentation for
-  [aggregator](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/aggregated-api-servers.md)
+  [aggregator](https://git.k8s.io/design-proposals-archive/api-machinery/aggregated-api-servers.md)
diff --git a/content/en/docs/reference/using-api/api-concepts.md b/content/en/docs/reference/using-api/api-concepts.md
index 913d3db42e..1a722acffd 100644
--- a/content/en/docs/reference/using-api/api-concepts.md
+++ b/content/en/docs/reference/using-api/api-concepts.md
@@ -9,25 +9,82 @@ weight: 20
 ---
 
 <!-- overview -->
-This page describes common concepts in the Kubernetes API.
+The Kubernetes API is a resource-based (RESTful) programmatic interface
+provided via HTTP. It supports retrieving, creating, updating, and deleting
+primary resources via the standard HTTP verbs (POST, PUT, PATCH, DELETE,
+GET).
 
+For some resources, the API includes additional subresources that allow
+fine grained authorization (such as separate views for Pod details and
+log retrievals), and can accept and serve those resources in different
+representations for convenience or efficiency.
+
+Kubernetes supports efficient change notifications on resources via *watches*.
+Kubernetes also provides consistent list operations so that API clients can
+effectively cache, track, and synchronize the state of resources.
+
+You can view the [API reference](/docs/reference/kubernetes-api/) online,
+or read on to learn about the API in general.
 
 <!-- body -->
-The Kubernetes API is a resource-based (RESTful) programmatic interface provided via HTTP. It supports retrieving, creating,
-updating, and deleting primary resources via the standard HTTP verbs (POST, PUT, PATCH, DELETE, GET), includes additional subresources for many objects that allow fine grained authorization (such as binding a pod to a node), and can accept and serve those resources in different representations for convenience or efficiency. It also supports efficient change notifications on resources via "watches" and consistent lists to allow other components to effectively cache and synchronize the state of resources.
+## Kubernetes API terminology {#standard-api-terminology}
 
-## Standard API terminology
+Kubernetes generally leverages common RESTful terminology to describe the
+API concepts:
 
-Most Kubernetes API resource types are [objects](/docs/concepts/overview/working-with-objects/kubernetes-objects/#kubernetes-objects): they represent a concrete instance of a concept on the cluster, like a pod or namespace. A smaller number of API resource types are "virtual" - they often represent operations rather than objects, such as a permission check (use a POST with a JSON-encoded body of `SubjectAccessReview` to the `subjectaccessreviews` resource). All objects will have a unique name to allow idempotent creation and retrieval, but virtual resource types may not have unique names if they are not retrievable or do not rely on idempotency.
+* A *resource type* is the name used in the URL (`pods`, `namespaces`, `services`)
+* All resource types have a concrete representation (their object schema) which is called a *kind*
+* A list of instances of a resource is known as a *collection*
+* A single instance of a resource type is called a *resource*, and also usually represents an *object*
+* For some resource types, the API includes one or more *sub-resources*, which are represented as URI paths below the resource
 
-Kubernetes generally leverages standard RESTful terminology to describe the API concepts:
+Most Kubernetes API resource types are
+[objects](/docs/concepts/overview/working-with-objects/kubernetes-objects/#kubernetes-objects):
+they represent a concrete instance of a concept on the cluster, like a
+pod or namespace. A smaller number of API resource types are *virtual* in
+that they often represent operations on objects, rather than objects, such
+as a permission check
+(use a POST with a JSON-encoded body of `SubjectAccessReview` to the
+`subjectaccessreviews` resource), or the `eviction` sub-resource of a Pod
+(used to trigger
+[API-initiated eviction](/docs/concepts/scheduling-eviction/api-eviction/)).
 
-* A **resource type** is the name used in the URL (`pods`, `namespaces`, `services`)
-* All resource types have a concrete representation in JSON (their object schema) which is called a **kind**
-* A list of instances of a resource type is known as a **collection**
-* A single instance of the resource type is called a **resource**
+### Object names
 
-All resource types are either scoped by the cluster (`/apis/GROUP/VERSION/*`) or to a namespace (`/apis/GROUP/VERSION/namespaces/NAMESPACE/*`). A namespace-scoped resource type will be deleted when its namespace is deleted and access to that resource type is controlled by authorization checks on the namespace scope. The following paths are used to retrieve collections and resources:
+All objects you can create via the API have a unique object
+{{< glossary_tooltip text="name" term_id="name" >}} to allow idempotent creation and
+retrieval, except that virtual resource types may not have unique names if they are
+not retrievable, or do not rely on idempotency.
+Within a {{< glossary_tooltip text="namespace" term_id="namespace" >}}, only one object
+of a given kind can have a given name at a time. However, if you delete the object,
+you can make a new object with the same name. Some objects are not namespaced (for
+example: Nodes), and so their names must be unique across the whole cluster.
+
+### API verbs
+
+Almost all object resource types support the standard HTTP verbs - GET, POST, PUT, PATCH,
+and DELETE. Kubernetes also uses its own verbs, which are often written lowercase to distinguish
+them from HTTP verbs.
+
+Kubernetes uses the term **list** to describe returning a [collection](#collections) of
+resources to distinguish from retrieving a single resource which is usually called
+a **get**. If you sent an HTTP GET request with the `?watch` query parameter,
+Kubernetes calls this a **watch** and not a **get** (see
+[Efficient detection of changes](#efficient-detection-of-changes) for more details).
+
+For PUT requests, Kubernetes internally classifies these as either **create** or **update**
+based on the state of the existing object. An **update** is different from a **patch**; the
+HTTP verb for a **patch** is PATCH.
+
+## Resource URIs
+
+All resource types are either scoped by the cluster (`/apis/GROUP/VERSION/*`) or to a
+namespace (`/apis/GROUP/VERSION/namespaces/NAMESPACE/*`). A namespace-scoped resource
+type will be deleted when its namespace is deleted and access to that resource type
+is controlled by authorization checks on the namespace scope.
+
+You can also access collections of resources (for example: listing all Nodes).
+The following paths are used to retrieve collections and resources:
 
 * Cluster-scoped resources:
 
@@ -40,21 +97,41 @@ All resource types are either scoped by the cluster (`/apis/GROUP/VERSION/*`) or
   * `GET /apis/GROUP/VERSION/namespaces/NAMESPACE/RESOURCETYPE` - return collection of all instances of the resource type in NAMESPACE
   * `GET /apis/GROUP/VERSION/namespaces/NAMESPACE/RESOURCETYPE/NAME` - return the instance of the resource type with NAME in NAMESPACE
 
-Since a namespace is a cluster-scoped resource type, you can retrieve the list of all namespaces with `GET /api/v1/namespaces` and details about a particular namespace with `GET /api/v1/namespaces/NAME`.
-
-Almost all object resource types support the standard HTTP verbs - GET, POST, PUT, PATCH, and DELETE. Kubernetes uses the term **list** to describe returning a collection of resources to distinguish from retrieving a single resource which is usually called a **get**.
-
-Some resource types will have one or more sub-resources, represented as sub paths below the resource:
+Since a namespace is a cluster-scoped resource type, you can retrieve the list
+(“collection”) of all namespaces with `GET /api/v1/namespaces` and details about
+a particular namespace with `GET /api/v1/namespaces/NAME`.
 
 * Cluster-scoped subresource: `GET /apis/GROUP/VERSION/RESOURCETYPE/NAME/SUBRESOURCE`
 * Namespace-scoped subresource: `GET /apis/GROUP/VERSION/namespaces/NAMESPACE/RESOURCETYPE/NAME/SUBRESOURCE`
 
-The verbs supported for each subresource will differ depending on the object - see the API documentation for more information. It is not possible to access sub-resources across multiple resources - generally a new virtual resource type would be used if that becomes necessary.
+The verbs supported for each subresource will differ depending on the object -
+see the [API reference](/docs/reference/kubernetes-api/) for more information. It
+is not possible to access sub-resources across multiple resources - generally a new
+virtual resource type would be used if that becomes necessary.
 
 
 ## Efficient detection of changes
 
-To enable clients to build a model of the current state of a cluster, all Kubernetes object resource types are required to support consistent lists and an incremental change notification feed called a **watch**.  Every Kubernetes object has a `resourceVersion` field representing the version of that resource as stored in the underlying database. When retrieving a collection of resources (either namespace or cluster scoped), the response from the server will contain a `resourceVersion` value that can be used to initiate a watch against the server. The server will return all changes (creates, deletes, and updates) that occur after the supplied `resourceVersion`. This allows a client to fetch the current state and then watch for changes without missing any updates. If the client watch is disconnected they can restart a new watch from the last returned `resourceVersion`, or perform a new collection request and begin again. See [Resource Version Semantics](#resource-versions) for more detail.
+The Kubernetes API allows clients to make an initial request for an object or a
+collection, and then to track changes since that initial request: a **watch**. Clients
+can send a **list** or a **get** and then make a follow-up **watch** request.
+
+To make this change tracking possible, every Kubernetes object has a `resourceVersion`
+field representing the version of that resource as stored in the underlying persistence
+layer. When retrieving a collection of resources (either namespace or cluster scoped),
+the response from the API server contains a `resourceVersion` value. The client can
+use that `resourceVersion` to initiate a **watch** against the API server.
+
+When you send a **watch** request, the API server responds with a stream of
+changes. These changes itemize the outcome of operations (such as **create**, **delete**,
+and **update**) that occurred after the `resourceVersion` you specified as a parameter
+to the **watch** request. The overall **watch** mechanism allows a client to fetch
+the current state and then subscribe to subsequent changes, without missing any events.
+
+If a client **watch** is disconnected then that client can start a new **watch** from
+the last returned `resourceVersion`; the client could also perform a fresh **get** /
+**list** request and begin again. See [Resource Version Semantics](#resource-versions)
+for more detail.
 
 For example:
 
@@ -74,7 +151,10 @@ For example:
    }
    ```
 
-2. Starting from resource version 10245, receive notifications of any creates, deletes, or updates as individual JSON objects.
+2. Starting from resource version 10245, receive notifications of any API operations
+   (such as **create**, **delete**, **apply** or **update**) that affect Pods in the
+   _test_ namespace. Each change notification is a JSON document. The HTTP response body
+   (served as `application/json`) consists a series of JSON documents.
 
    ```
    GET /api/v1/namespaces/test/pods?watch=1&resourceVersion=10245
@@ -94,11 +174,24 @@ For example:
    ...
    ```
 
-A given Kubernetes server will only preserve a historical list of changes for a limited time. Clusters using etcd3 preserve changes in the last 5 minutes by default.  When the requested watch operations fail because the historical version of that resource is not available, clients must handle the case by recognizing the status code `410 Gone`, clearing their local cache, performing a list operation, and starting the watch from the `resourceVersion` returned by that new list operation. Most client libraries offer some form of standard tool for this logic. (In Go this is called a `Reflector` and is located in the `k8s.io/client-go/cache` package.)
+A given Kubernetes server will only preserve a historical record of changes for a
+limited time. Clusters using etcd 3 preserve changes in the last 5 minutes by default.
+When the requested **watch** operations fail because the historical version of that
+resource is not available, clients must handle the case by recognizing the status code
+`410 Gone`, clearing their local cache, performing a new **get** or **list** operation,
+and starting the **watch** from the `resourceVersion` that was returned.
+
+For subscribing to collections, Kubernetes client libraries typically offer some form
+of standard tool for this **list**-then-**watch** logic. (In the Go client library,
+this is called a `Reflector` and is located in the `k8s.io/client-go/tools/cache` package.)
 
 ### Watch bookmarks
 
-To mitigate the impact of short history window, we introduced a concept of `bookmark` watch event. It is a special kind of event to mark that all changes up to a given `resourceVersion` the client is requesting have already been sent. Object returned in that event is of the type requested by the request, but only `resourceVersion` field is set, e.g.:
+To mitigate the impact of short history window, the Kubernetes API provides a watch
+event named `BOOKMARK`. It is a special kind of event to mark that all changes up
+to a given `resourceVersion` the client is requesting have already been sent. The
+document representing the `BOOKMARK` event is of the type requested by the request,
+but only includes a `.metadata.resourceVersion` field. For example:
 
 ```console
 GET /api/v1/namespaces/test/pods?watch=1&resourceVersion=10245&allowWatchBookmarks=true
@@ -118,19 +211,49 @@ Content-Type: application/json
 }
 ```
 
-`Bookmark` events can be requested by `allowWatchBookmarks=true` option in watch requests, but clients shouldn't assume bookmarks are returned at any specific interval, nor may they assume the server will send any `bookmark` event.
+As a client, you can request `BOOKMARK` events by setting the
+`allowWatchBookmarks=true` query parameter to a **watch** request, but you shouldn't
+assume bookmarks are returned at any specific interval, nor can clients assume that
+the API server will send any `BOOKMARK` event even when requested.
 
 ## Retrieving large results sets in chunks
 
 {{< feature-state for_k8s_version="v1.9" state="beta" >}}
 
-On large clusters, retrieving the collection of some resource types may result in very large responses that can impact the server and client. For instance, a cluster may have tens of thousands of pods, each of which is 1-2kb of encoded JSON. Retrieving all pods across all namespaces may result in a very large response (10-20MB) and consume a large amount of server resources. Starting in Kubernetes 1.9 the server supports the ability to break a single large collection request into many smaller chunks while preserving the consistency of the total request. Each chunk can be returned sequentially which reduces both the total size of the request and allows user-oriented clients to display results incrementally to improve responsiveness.
+On large clusters, retrieving the collection of some resource types may result in
+very large responses that can impact the server and client. For instance, a cluster
+may have tens of thousands of Pods, each of which is equivalent to roughly 2 KiB of
+encoded JSON. Retrieving all pods across all namespaces may result in a very large
+response (10-20MB) and consume a large amount of server resources.
 
-To retrieve a single list in chunks, two new parameters `limit` and `continue` are supported on collection requests and a new field `continue` is returned from all list operations in the list `metadata` field. A client should specify the maximum results they wish to receive in each chunk with `limit` and the server will return up to `limit` resources in the result and include a `continue` value if there are more resources in the collection. The client can then pass this `continue` value to the server on the next request to instruct the server to return the next chunk of results. By continuing until the server returns an empty `continue` value the client can consume the full set of results.
+Provided that you don't explicitly disable the `APIListChunking`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/), the
+Kubernetes API server supports the ability to break a single large collection request
+into many smaller chunks while preserving the consistency of the total request. Each
+chunk can be returned sequentially which reduces both the total size of the request and
+allows user-oriented clients to display results incrementally to improve responsiveness.
 
-Like a watch operation, a `continue` token will expire after a short amount of time (by default 5 minutes) and return a `410 Gone` if more results cannot be returned. In this case, the client will need to start from the beginning or omit the `limit` parameter.
+You can request that the API server handles a **list** by serving single collection
+using pages (which Kubernetes calls _chunks_). To retrieve a single collection in
+chunks, two query parameters `limit` and `continue` are supported on requests against
+collections, and a response field `continue` is returned from all **list** operations
+in the collection's `metadata` field. A client should specify the maximum results they
+wish to receive in each chunk with `limit` and the server will return up to `limit`
+resources in the result and include a `continue` value if there are more resources
+in the collection.
 
-For example, if there are 1,253 pods on the cluster and the client wants to receive chunks of 500 pods at a time, they would request those chunks as follows:
+As an API client, you can then pass this `continue` value to the API server on the
+next request, to instruct the server to return the next page (_chunk_) of results. By
+continuing until the server returns an empty `continue` value, you can retrieve the
+entire collection.
+
+Like a **watch** operation, a `continue` token will expire after a short amount
+of time (by default 5 minutes) and return a `410 Gone` if more results cannot be
+returned. In this case, the client will need to start from the beginning or omit the
+`limit` parameter.
+
+For example, if there are 1,253 pods on the cluster and you wants to receive chunks
+of 500 pods at a time, request those chunks as follows:
 
 1. List all of the pods on a cluster, retrieving up to 500 pods each time.
 
@@ -192,34 +315,40 @@ For example, if there are 1,253 pods on the cluster and the client wants to rece
    }
    ```
 
-Note that the `resourceVersion` of the list remains constant across each request, 
-indicating the server is showing us a consistent snapshot of the pods. Pods that 
-are created, updated, or deleted after version `10245` would not be shown unless 
-the user makes a list request without the `continue` token.  This allows clients 
-to break large requests into smaller chunks and then perform a watch operation 
-on the full set without missing any updates. 
+Notice that the `resourceVersion` of the collection remains constant across each request,
+indicating the server is showing you a consistent snapshot of the pods. Pods that
+are created, updated, or deleted after version `10245` would not be shown unless
+you make a separate **list** request without the `continue` token.  This allows you
+to break large requests into smaller chunks and then perform a **watch** operation
+on the full set without missing any updates.
 
-`remainingItemCount` is the number of subsequent items in the list which are not 
-included in this list response. If the list request contained label or field selectors, 
-then the number of remaining items is unknown and the API server does not include 
-a `remainingItemCount` field in its response. If the list is complete (either 
-because it is not chunking or because this is the last chunk), then there are no 
-more remaining items and the API server does not include a `remainingItemCount` 
-field in its response. The intended use of the `remainingItemCount` is estimating 
-the size of a collection.
+`remainingItemCount` is the number of subsequent items in the collection that are not
+included in this response. If the **list** request contained label or field
+{{< glossary_tooltip text="selectors" term_id="selector">}} then the number of
+remaining items is unknown and the API server does not include a `remainingItemCount`
+field in its response.
+If the **list** is complete (either because it is not chunking, or because this is the
+last chunk), then there are no more remaining items and the API server does not include a
+`remainingItemCount` field in its response. The intended use of the `remainingItemCount`
+is estimating the size of a collection.
 
-## Lists
+## Collections
 
-There are dozens of list types (such as `PodList`, `ServiceList`, and `NodeList`) defined in the Kubernetes API.
-You can get more information about each list type from the [Kubernetes API](/docs/reference/kubernetes-api/) documentation.
+In Kubernetes terminology, the response you get from a **list** is
+a _collection_. However, Kubernetes defines concrete kinds for
+collections of different types of resource. Collections have a kind
+named for the resource kind, with `List` appended.
 
-When you query the API for a particular type, all items returned by that query are of that type. For example, when you
-ask for a list of services, the list type is shown as `kind: ServiceList` and each item in that list represents a single Service. For example:
-
-```console
+When you query the API for a particular type, all items returned by that query are
+of that type.
+For example, when you **list** Services, the collection response
+has `kind` set to
+[`ServiceList`](/docs/reference/kubernetes-api/service-resources/service-v1/#ServiceList); each item in that collection represents a single Service. For example:
 
+```
 GET /api/v1/services
----
+```
+```yaml
 {
   "kind": "ServiceList",
   "apiVersion": "v1",
@@ -238,12 +367,21 @@ GET /api/v1/services
 ...
 ```
 
-Some tools, such as `kubectl` provide another way to query the Kubernetes API. Because the output of `kubectl` might include multiple list types, the list of items is represented as `kind: List`. For example:
+There are dozens of collection types (such as `PodList`, `ServiceList`,
+and `NodeList`) defined in the Kubernetes API.
+You can get more information about each collection type from the
+[Kubernetes API](/docs/reference/kubernetes-api/) documentation.
 
-```console
-
-$ kubectl get services -A -o yaml 
+Some tools, such as `kubectl`, represent the Kubernetes collection
+mechanism slightly differently from the Kubernetes API itself.
+Because the output of `kubectl` might include the response from
+multiple **list** operations at the API level, `kubectl` represents
+a list of items using `kind: List`. For example:
 
+```shell
+kubectl get services -A -o yaml
+```
+```yaml
 apiVersion: v1
 kind: List
 metadata:
@@ -276,29 +414,43 @@ items:
 ```
 
 {{< note >}}
-Keep in mind that the Kubernetes API does not have a `kind: List` type. `kind: List` is an internal mechanism type for lists of mixed resources and should not be depended upon.
-{{< /note >}}
+Keep in mind that the Kubernetes API does not have a `kind` named `List`.
 
+`kind: List` is a client-side, internal implementation detail for processing
+collections that might be of different kinds of object. Avoid depending on
+`kind: List` in automation or other code.
+{{< /note >}}
 
 ## Receiving resources as Tables
 
-`kubectl get` is a simple tabular representation of one or more instances of a particular resource type. In the past, clients were required to reproduce the tabular and describe output implemented in `kubectl` to perform simple lists of objects.
-A few limitations of that approach include non-trivial logic when dealing with certain objects. Additionally, types provided by API aggregation or third party resources are not known at compile time. This means that generic implementations had to be in place for types unrecognized by a client.
+When you run `kubectl get`, the default output format is a simple tabular
+representation of one or more instances of a particular resource type. In the past,
+clients were required to reproduce the tabular and describe output implemented in
+`kubectl` to perform simple lists of objects.
+A few limitations of that approach include non-trivial logic when dealing with
+certain objects. Additionally, types provided by API aggregation or third party
+resources are not known at compile time. This means that generic implementations
+had to be in place for types unrecognized by a client.
 
-In order to avoid potential limitations as described above, clients may request the Table representation of objects, delegating specific details of printing to the server. The Kubernetes API implements standard HTTP content type negotiation: passing an `Accept` header containing a value of `application/json;as=Table;g=meta.k8s.io;v=v1beta1` with a `GET` call will request that the server return objects in the Table content type.
+In order to avoid potential limitations as described above, clients may request
+the Table representation of objects, delegating specific details of printing to the
+server. The Kubernetes API implements standard HTTP content type negotiation: passing
+an `Accept` header containing a value of `application/json;as=Table;g=meta.k8s.io;v=v1`
+with a `GET` call will request that the server return objects in the Table content
+type.
 
 For example, list all of the pods on a cluster in the Table format.
 
 ```console
 GET /api/v1/pods
-Accept: application/json;as=Table;g=meta.k8s.io;v=v1beta1
+Accept: application/json;as=Table;g=meta.k8s.io;v=v1
 ---
 200 OK
 Content-Type: application/json
 
 {
     "kind": "Table",
-    "apiVersion": "meta.k8s.io/v1beta1",
+    "apiVersion": "meta.k8s.io/v1",
     ...
     "columnDefinitions": [
         ...
@@ -306,7 +458,9 @@ Content-Type: application/json
 }
 ```
 
-For API resource types that do not have a custom Table definition on the server, a default Table response is returned by the server, consisting of the resource's `name` and `creationTimestamp` fields.
+For API resource types that do not have a custom Table definition known to the control
+plane, the API server returns a default Table response that consists of the resource's
+`name` and `creationTimestamp` fields.
 
 ```console
 GET /apis/crd.example.com/v1alpha1/namespaces/default/resources
@@ -317,7 +471,7 @@ Content-Type: application/json
 
 {
     "kind": "Table",
-    "apiVersion": "meta.k8s.io/v1beta1",
+    "apiVersion": "meta.k8s.io/v1",
     ...
     "columnDefinitions": [
         {
@@ -334,18 +488,38 @@ Content-Type: application/json
 }
 ```
 
-Table responses are available beginning in version 1.10 of the kube-apiserver. As such, not all API resource types will support a Table response, specifically when using a client against older clusters. Clients that must work against all resource types, or can potentially deal with older clusters, should specify multiple content types in their `Accept` header to support fallback to non-Tabular JSON:
+Not all API resource types support a Table response; for example, a
+{{< glossary_tooltip term_id="CustomResourceDefinition" text="CustomResourceDefinitions" >}}
+might not define field-to-table mappings, and an APIService that
+[extends the core Kubernetes API](/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)
+might not serve Table responses at all. If you are implementing a client that
+uses the Table information and must work against all resource types, including
+extensions, you should make requests that specify multiple content types in the
+`Accept` header. For example:
 
 ```console
-Accept: application/json;as=Table;g=meta.k8s.io;v=v1beta1, application/json
+Accept: application/json;as=Table;g=meta.k8s.io;v=v1, application/json
 ```
 
-
 ## Alternate representations of resources
 
-By default, Kubernetes returns objects serialized to JSON with content type `application/json`. This is the default serialization format for the API. However, clients may request the more efficient Protobuf representation of these objects for better performance at scale. The Kubernetes API implements standard HTTP content type negotiation: passing an `Accept` header with a `GET` call will request that the server return objects in the provided content type, while sending an object in Protobuf to the server for a `PUT` or `POST` call takes the `Content-Type` header. The server will return a `Content-Type` header if the requested format is supported, or the `406 Not acceptable` error if an invalid content type is provided.
+By default, Kubernetes returns objects serialized to JSON with content type
+`application/json`. This is the default serialization format for the API. However,
+clients may request the more efficient
+[Protobuf representation](#protobuf-encoding) of these objects for better performance at scale.
+The Kubernetes API implements standard HTTP content type negotiation: passing an
+`Accept` header with a `GET` call will request that the server tries to return
+a response in your preferred media type, while sending an object in Protobuf to
+the server for a `PUT` or `POST` call means that you must set the `Content-Type`
+header appropriately.
 
-See the API documentation for a list of supported content types for each API.
+The server will return a response with a `Content-Type` header if the requested
+format is supported, or the `406 Not acceptable` error if none of the media types you
+requested are supported. All built-in resource types support the `application/json`
+media type.
+
+See the Kubernetes [API reference](/docs/reference/kubernetes-api/) for a list of
+supported content types for each API.
 
 For example:
 
@@ -361,7 +535,8 @@ For example:
    ... binary encoded PodList object
    ```
 
-2. Create a pod by sending Protobuf encoded data to the server, but request a response in JSON.
+1. Create a pod by sending Protobuf encoded data to the server, but request a response
+   in JSON.
 
    ```console
    POST /api/v1/namespaces/test/pods
@@ -379,15 +554,25 @@ For example:
    }
    ```
 
-Not all API resource types will support Protobuf, specifically those defined via Custom Resource Definitions or those that are API extensions. Clients that must work against all resource types should specify multiple content types in their `Accept` header to support fallback to JSON:
+Not all API resource types support Protobuf; specifically, Protobuf isn't available for
+resources that are defined as
+{{< glossary_tooltip term_id="CustomResourceDefinition" text="CustomResourceDefinitions" >}}
+or are served via the
+{{< glossary_tooltip text="aggregation layer" term_id="aggregation-layer" >}}.
+As a client, if you might need to work with extension types you should specify multiple
+content types in the request `Accept` header to support fallback to JSON.
+For example:
 
 ```console
 Accept: application/vnd.kubernetes.protobuf, application/json
 ```
 
-### Protobuf encoding
+### Kubernetes Protobuf encoding {#protobuf-encoding}
 
-Kubernetes uses an envelope wrapper to encode Protobuf responses. That wrapper starts with a 4 byte magic number to help identify content in disk or in etcd as Protobuf (as opposed to JSON), and then is followed by a Protobuf encoded wrapper message, which describes the encoding and type of the underlying object and then contains the object.
+Kubernetes uses an envelope wrapper to encode Protobuf responses. That wrapper starts
+with a 4 byte magic number to help identify content in disk or in etcd as Protobuf
+(as opposed to JSON), and then is followed by a Protobuf encoded wrapper message, which
+describes the encoding and type of the underlying object and then contains the object.
 
 The wrapper format is:
 
@@ -419,13 +604,21 @@ An encoded Protobuf message with the following IDL:
   }
 ```
 
-Clients that receive a response in `application/vnd.kubernetes.protobuf` that does not match the expected prefix should reject the response, as future versions may need to alter the serialization format in an incompatible way and will do so by changing the prefix.
+{{< note >}}
+Clients that receive a response in `application/vnd.kubernetes.protobuf` that does
+not match the expected prefix should reject the response, as future versions may need
+to alter the serialization format in an incompatible way and will do so by changing
+the prefix.
+{{< /note >}}
 
 ## Resource deletion
 
-Resources are deleted in two phases: 1) finalization, and 2) removal.
+When you **delete** a resource this takes place in two phases.
 
-```go
+1. _finalization_
+2. removal
+
+```yaml
 {
   "kind": "ConfigMap",
   "apiVersion": "v1",
@@ -436,47 +629,86 @@ Resources are deleted in two phases: 1) finalization, and 2) removal.
 }
 ```
 
-When a client first deletes a resource, the `.metadata.deletionTimestamp` is set to the current time.
+When a client first sends a **delete** to request removal of a resource, the `.metadata.deletionTimestamp` is set to the current time.
 Once the `.metadata.deletionTimestamp` is set, external controllers that act on finalizers
 may start performing their cleanup work at any time, in any order.
-Order is NOT enforced because it introduces significant risk of stuck `.metadata.finalizers`.
-`.metadata.finalizers` is a shared field, any actor with permission can reorder it.
-If the finalizer list is processed in order, then this can lead to a situation
+
+Order is **not** enforced between finalizers because it would introduce significant
+risk of stuck `.metadata.finalizers`.
+
+The `.metadata.finalizers` field is shared: any actor with permission can reorder it.
+If the finalizer list were processed in order, then this might lead to a situation
 in which the component responsible for the first finalizer in the list is
-waiting for a signal (field value, external system, or other) produced by a
+waiting for some signal (field value, external system, or other) produced by a
 component responsible for a finalizer later in the list, resulting in a deadlock.
-Without enforced ordering finalizers are free to order amongst themselves and
-are not vulnerable to ordering changes in the list.
+
+Without enforced ordering, finalizers are free to order amongst themselves and are
+not vulnerable to ordering changes in the list.
 
 Once the last finalizer is removed, the resource is actually removed from etcd.
 
 
 ## Single resource API
 
-API verbs GET, CREATE, UPDATE, PATCH, DELETE and PROXY support single resources only.
-These verbs with single resource support have no support for submitting
-multiple resources together in an ordered or unordered list or transaction.
-Clients including kubectl will parse a list of resources and make
-single-resource API requests.
+The Kubernetes API verbs **get**, **create**, **apply**, **update**, **patch**,
+**delete** and **proxy** support single resources only.
+These verbs with single resource support have no support for submitting multiple
+resources together in an ordered or unordered list or transaction.
 
-API verbs LIST and WATCH support getting multiple resources, and
-DELETECOLLECTION supports deleting multiple resources.
+When clients (including kubectl) act on a set of resources, the client makes a series
+of single-resource API requests, then aggregates the responses if needed.
+
+By contrast, the Kubernetes API verbs **list** and **watch** allow getting multiple
+resources, and **deletecollection** allows deleting multiple resources.
 
 ## Dry-run
 
  {{< feature-state for_k8s_version="v1.18" state="stable" >}}
 
-The modifying verbs (`POST`, `PUT`, `PATCH`, and `DELETE`) can accept requests in a _dry run_ mode. Dry run mode helps to evaluate a request through the typical request stages (admission chain, validation, merge conflicts) up until persisting objects to storage. The response body for the request is as close as possible to a non-dry-run response. The system guarantees that dry-run requests will not be persisted in storage or have any other side effects.
-
+When you use HTTP verbs that can modify resources (`POST`, `PUT`, `PATCH`, and
+`DELETE`), you can submit your request in a _dry run_ mode. Dry run mode helps to
+evaluate a request through the typical request stages (admission chain, validation,
+merge conflicts) up until persisting objects to storage. The response body for the
+request is as close as possible to a non-dry-run response. Kubernetes guarantees that
+dry-run requests will not be persisted in storage or have any other side effects.
 
 ### Make a dry-run request
 
-Dry-run is triggered by setting the `dryRun` query parameter. This parameter is a string, working as an enum, and the only accepted values are:
+Dry-run is triggered by setting the `dryRun` query parameter. This parameter is a
+string, working as an enum, and the only accepted values are:
 
-* `All`: Every stage runs as normal, except for the final storage stage. Admission controllers are run to check that the request is valid, mutating controllers mutate the request, merge is performed on `PATCH`, fields are defaulted, and schema validation occurs. The changes are not persisted to the underlying storage, but the final object which would have been persisted is still returned to the user, along with the normal status code. If the request would trigger an admission controller which would have side effects, the request will be failed rather than risk an unwanted side effect. All built in admission control plugins support dry-run. Additionally, admission webhooks can declare in their [configuration object](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#webhook-v1beta1-admissionregistration-k8s-io) that they do not have side effects by setting the sideEffects field to "None". If a webhook actually does have side effects, then the sideEffects field should be set to "NoneOnDryRun", and the webhook should also be modified to understand the `DryRun` field in AdmissionReview, and prevent side effects on dry-run requests.
-* Leave the value empty, which is also the default: Keep the default modifying behavior.
+[no value set]
+: Allow side effects. You request this with a query string such as `?dryRun`
+  or `?dryRun&pretty=true`. The response is the final object that would have been
+  persisted, or an error if the request could not be fulfilled.
 
-For example:
+`All`
+: Every stage runs as normal, except for the final storage stage where side effects
+  are prevented.
+
+
+When you set `?dryRun=All`, any relevant
+{{< glossary_tooltip text="admission controllers" term_id="admission-controller" >}}
+are run, validating admission controllers check the request post-mutation, merge is
+performed on `PATCH`, fields are defaulted, and schema validation occurs. The changes
+are not persisted to the underlying storage, but the final object which would have
+been persisted is still returned to the user, along with the normal status code.
+
+If the non-dry-run version of a request would trigger an admission controller that has
+side effects, the request will be failed rather than risk an unwanted side effect. All
+built in admission control plugins support dry-run. Additionally, admission webhooks can
+declare in their
+[configuration object](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#webhook-v1beta1-admissionregistration-k8s-io)
+that they do not have side effects, by setting their `sideEffects` field to `None`.
+
+{{< note >}}
+If a webhook actually does have side effects, then the `sideEffects` field should be
+set to "NoneOnDryRun". That change is appropriate provided that the webhook is also
+be modified to understand the `DryRun` field in AdmissionReview, and to prevent side
+effects on any request marked as dry runs.
+{{< /note >}}
+
+Here is an example dry-run request that uses `?dryRun=All`:
 
 ```console
 POST /api/v1/namespaces/test/pods?dryRun=All
@@ -484,144 +716,193 @@ Content-Type: application/json
 Accept: application/json
 ```
 
-The response would look the same as for non-dry-run request, but the values of some generated fields may differ.
+The response would look the same as for non-dry-run request, but the values of some
+generated fields may differ.
+
+
+### Generated values
+
+Some values of an object are typically generated before the object is persisted. It
+is important not to rely upon the values of these fields set by a dry-run request,
+since these values will likely be different in dry-run mode from when the real
+request is made. Some of these fields are:
+
+* `name`: if `generateName` is set, `name` will have a unique random name
+* `creationTimestamp` / `deletionTimestamp`: records the time of creation/deletion
+* `UID`: [uniquely identifies](/docs/concepts/overview/working-with-objects/names/#uids) the object and is randomly generated (non-deterministic)
+* `resourceVersion`: tracks the persisted version of the object
+* Any field set by a mutating admission controller
+* For the `Service` resource: Ports or IP addresses that the kube-apiserver assigns to Service objects
 
 ### Dry-run authorization
 
 Authorization for dry-run and non-dry-run requests is identical. Thus, to make
-a dry-run request, the user must be authorized to make the non-dry-run request.
+a dry-run request, you must be authorized to make the non-dry-run request.
 
-For example, to run a dry-run `PATCH` for Deployments, you must have the
-`PATCH` permission for Deployments, as in the example of the RBAC rule below.
+For example, to run a dry-run **patch** for a Deployment, you must be authorized
+to perform that **patch**. Here is an example of a rule for Kubernetes
+{{< glossary_tooltip text="RBAC" term_id="rbac">}} that allows patching
+Deployments:
 
 ```yaml
 rules:
-- apiGroups: ["extensions", "apps"]
+- apiGroups: ["apps"]
   resources: ["deployments"]
   verbs: ["patch"]
 ```
 
 See [Authorization Overview](/docs/reference/access-authn-authz/authorization/).
 
-### Generated values
-
-Some values of an object are typically generated before the object is persisted. It is important not to rely upon the values of these fields set by a dry-run request, since these values will likely be different in dry-run mode from when the real request is made. Some of these fields are:
-
-* `name`: if `generateName` is set, `name` will have a unique random name
-* `creationTimestamp`/`deletionTimestamp`: records the time of creation/deletion
-* `UID`: uniquely identifies the object and is randomly generated (non-deterministic)
-* `resourceVersion`: tracks the persisted version of the object
-* Any field set by a mutating admission controller
-* For the `Service` resource: Ports or IPs that kube-apiserver assigns to v1.Service objects
-
 ## Server Side Apply
 
-Starting from Kubernetes v1.18, you can enable the
-[Server Side Apply](/docs/reference/using-api/server-side-apply/)
-feature so that the control plane tracks managed fields for all newly created objects.
+Kubernetes' [Server Side Apply](/docs/reference/using-api/server-side-apply/)
+feature allows the control plane to track managed fields for newly created objects.
 Server Side Apply provides a clear pattern for managing field conflicts,
 offers server-side `Apply` and `Update` operations, and replaces the
-client-side functionality of `kubectl apply`. For more details about this
-feature, see the section on
-[Server Side Apply](/docs/reference/using-api/server-side-apply/).
+client-side functionality of `kubectl apply`.
 
-## Resource Versions
+The API verb for Server-Side Apply is **apply**.
+See [Server Side Apply](/docs/reference/using-api/server-side-apply/) for more details.
 
-Resource versions are strings that identify the server's internal version of an object. Resource versions can be used by clients to determine when objects have changed, or to express data consistency requirements when getting, listing and watching resources. Resource versions must be treated as opaque by clients and passed unmodified back to the server. For example, clients must not assume resource versions are numeric, and may only compare two resource versions for equality (i.e. must not compare resource versions for greater-than or less-than relationships).
+## Resource versions
 
-### ResourceVersion in metadata
+Resource versions are strings that identify the server's internal version of an
+object. Resource versions can be used by clients to determine when objects have
+changed, or to express data consistency requirements when getting, listing and
+watching resources. Resource versions must be treated as opaque by clients and passed
+unmodified back to the server.
 
-Clients find resource versions in resources, including the resources in watch events, and list responses returned from the server:
+You must not assume resource versions are numeric or collatable. API clients may
+only compare two resource versions for equality (this means that you must not compare
+resource versions for greater-than or less-than relationships).
+
+### `resourceVersion` fields in metadata {#resourceversion-in-metadata}
+
+Clients find resource versions in resources, including the resources from the response
+stream for a **watch**, or when using **list** to enumerate resources.
 
 [v1.meta/ObjectMeta](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#objectmeta-v1-meta) - The `metadata.resourceVersion` of a resource instance identifies the resource version the instance was last modified at.
 
-[v1.meta/ListMeta](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#listmeta-v1-meta) - The `metadata.resourceVersion` of a resource collection (i.e. a list response) identifies the resource version at which the list response was constructed.
+[v1.meta/ListMeta](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#listmeta-v1-meta) - The `metadata.resourceVersion` of a resource collection (the response to a **list**) identifies the resource version at which the collection was constructed.
 
-### The ResourceVersion Parameter
+### `resourceVersion` parameters in query strings {#the-resourceversion-parameter}
 
-The get, list, and watch operations support the `resourceVersion` parameter.
+The **get**, **list**, and **watch** operations support the `resourceVersion` parameter.
+From version v1.19, Kubernetes API servers also support the `resourceVersionMatch`
+parameter on _list_ requests.
 
-The exact meaning of this parameter differs depending on the operation and the value of `resourceVersion`.
+The API server interprets the `resourceVersion` parameter differently depending
+on the operation you request, and on the value of `resourceVersion`. If you set
+`resourceVersionMatch` then this also affects the way matching happens.
 
-For get and list, the semantics of resource version are:
+### Semantics for **get** and **list**
 
-**Get:**
+For **get** and **list**, the semantics of `resourceVersion` are:
+
+**get:**
 
 | resourceVersion unset | resourceVersion="0" | resourceVersion="{value other than 0}" |
 |-----------------------|---------------------|----------------------------------------|
 | Most Recent           | Any                 | Not older than                         |
 
-**List:**
+**list:**
 
-v1.19+ API servers support the `resourceVersionMatch` parameter, which
-determines how resourceVersion is applied to list calls.  It is highly
-recommended that `resourceVersionMatch` be set for list calls where
-`resourceVersion` is set. If `resourceVersion` is unset, `resourceVersionMatch`
-is not allowed.  For backward compatibility, clients must tolerate the server
-ignoring `resourceVersionMatch`:
+From version v1.19, Kubernetes API servers support the `resourceVersionMatch` parameter
+on _list_ requests. If you set both `resourceVersion` and `resourceVersionMatch`, the
+`resourceVersionMatch` parameter determines how the API server interprets
+`resourceVersion`.
 
-- When using `resourceVersionMatch=NotOlderThan` and limit is set, clients must
-  handle HTTP 410 "Gone" responses. For example, the client might retry with a
-  newer `resourceVersion` or fall back to `resourceVersion=""`.
-- When using `resourceVersionMatch=Exact` and `limit` is unset, clients must
-  verify that the `resourceVersion` in the `ListMeta` of the response matches
-  the requested `resourceVersion`, and handle the case where it does not. For
-  example, the client might fall back to a request with `limit` set.
+You should always set the `resourceVersionMatch` parameter when setting
+`resourceVersion` on a **list** request. However, be prepared to handle the case
+where the API server that responds is unaware of `resourceVersionMatch`
+and ignores it.
 
 Unless you have strong consistency requirements, using `resourceVersionMatch=NotOlderThan` and
 a known `resourceVersion` is preferable since it can achieve better performance and scalability
 of your cluster than leaving `resourceVersion` and `resourceVersionMatch` unset, which requires
 quorum read to be served.
 
+Setting the `resourceVersionMatch` parameter without setting `resourceVersion` is not valid.
+
+
+This table explains the behavior of **list** requests with various combinations of
+`resourceVersion` and `resourceVersionMatch`:
+
 {{< table caption="resourceVersionMatch and paging parameters for list" >}}
 
-| resourceVersionMatch param            | paging params                 | resourceVersion unset | resourceVersion="0"                       | resourceVersion="{value other than 0}" |
+| resourceVersionMatch param            | paging params                 | resourceVersion not set | resourceVersion="0"                       | resourceVersion="{value other than 0}" |
 |---------------------------------------|-------------------------------|-----------------------|-------------------------------------------|----------------------------------------|
-| resourceVersionMatch unset            | limit unset                   | Most Recent           | Any                                       | Not older than                         |
-| resourceVersionMatch unset            | limit=\<n\>, continue unset     | Most Recent           | Any                                       | Exact                                  |
-| resourceVersionMatch unset            | limit=\<n\>, continue=\<token\> | Continue Token, Exact | Invalid, treated as Continue Token, Exact | Invalid, HTTP `400 Bad Request`        |
-| resourceVersionMatch=Exact [1]        | limit unset                   | Invalid               | Invalid                                   | Exact                                  |
-| resourceVersionMatch=Exact [1]        | limit=\<n\>, continue unset     | Invalid               | Invalid                                   | Exact                                  |
-| resourceVersionMatch=NotOlderThan [1] | limit unset                   | Invalid               | Any                                       | Not older than                         |
-| resourceVersionMatch=NotOlderThan [1] | limit=\<n\>, continue unset     | Invalid               | Any                                       | Not older than                         |
+| _unset_            | _limit unset_                   | Most Recent           | Any                                       | Not older than                         |
+| _unset_            | limit=\<n\>, _continue unset_     | Most Recent           | Any                                       | Exact                                  |
+| _unset_            | limit=\<n\>, continue=\<token\> | Continue Token, Exact | Invalid, treated as Continue Token, Exact | Invalid, HTTP `400 Bad Request`        |
+| `resourceVersionMatch=Exact`        | _limit unset_                 | Invalid               | Invalid                                   | Exact                                  |
+| `resourceVersionMatch=Exact`        | limit=\<n\>, _continue unset_ | Invalid               | Invalid                                   | Exact                                  |
+| `resourceVersionMatch=NotOlderThan` | _limit unset_                 | Invalid               | Any                                       | Not older than                         |
+| `resourceVersionMatch=NotOlderThan` | limit=\<n\>, _continue unset_ | Invalid               | Any                                       | Not older than                         |
 
 {{< /table >}}
 
-**Footnotes:**
+{{< note >}}
+If your cluster's API server does not honor the `resourceVersionMatch` parameter,
+the behavior is the same as if you did not set it.
+{{< /note >}}
 
-[1] If the server does not honor the `resourceVersionMatch` parameter, it is treated as if it is unset.
+The meaning of the **get** and **list** semantics are:
 
-The meaning of the get and list semantics are:
-
-- **Most Recent:** Return data at the most recent resource version. The returned data must be
-  consistent (i.e. served from etcd via a quorum read).
-
-- **Any:** Return data at any resource version. The newest available resource version is preferred,
+Any
+: Return data at any resource version. The newest available resource version is preferred,
   but strong consistency is not required; data at any resource version may be served. It is possible
   for the request to return data at a much older resource version that the client has previously
   observed, particularly in high availability configurations, due to partitions or stale
   caches. Clients that cannot tolerate this should not use this semantic.
-- **Not older than:** Return data at least as new as the provided resourceVersion. The newest
-  available data is preferred, but any data not older than the provided resourceVersion may be
-  served.  For list requests to servers that honor the resourceVersionMatch parameter, this
-  guarantees that resourceVersion in the ListMeta is not older than the requested resourceVersion,
-  but does not make any guarantee about the resourceVersion in the ObjectMeta of the list items
-  since ObjectMeta.resourceVersion tracks when an object was last updated, not how up-to-date the
-  object is when served.
 
-- **Exact:** Return data at the exact resource version provided. If the provided resourceVersion is
-  unavailable, the server responds with HTTP 410 "Gone".  For list requests to servers that honor the
-  resourceVersionMatch parameter, this guarantees that resourceVersion in the ListMeta is the same as
-  the requested resourceVersion, but does not make any guarantee about the resourceVersion in the
-  ObjectMeta of the list items since ObjectMeta.resourceVersion tracks when an object was last
-  updated, not how up-to-date the object is when served.
-- **Continue Token, Exact:** Return data at the resource version of the initial paginated list
-  call. The returned Continue Tokens are responsible for keeping track of the initially provided
-  resource version for all paginated list calls after the initial paginated list call.
+Most recent
+: Return data at the most recent resource version. The returned data must be
+  consistent (in detail: served from etcd via a quorum read).
 
-For watch, the semantics of resource version are:
+Not older than
+: Return data at least as new as the provided `resourceVersion`. The newest
+  available data is preferred, but any data not older than the provided `resourceVersion` may be
+  served.  For **list** requests to servers that honor the `resourceVersionMatch` parameter, this
+  guarantees that the collection's `.metadata.resourceVersion` is not older than the requested
+  `resourceVersion`, but does not make any guarantee about the `.metadata.resourceVersion` of any
+  of the items in that collection.
 
-**Watch:**
+Exact
+: Return data at the exact resource version provided. If the provided `resourceVersion` is
+  unavailable, the server responds with HTTP 410 "Gone".  For **list** requests to servers that honor the
+  `resourceVersionMatch` parameter, this guarantees that the collection's `.metadata.resourceVersion`
+  is the same as the `resourceVersion` you requested in the query string. That guarantee does
+  not apply to the `.metadata.resourceVersion` of any items within that collection.
+
+Continue Token, Exact
+: Return data at the resource version of the initial paginated **list** call. The returned _continue
+  tokens_ are responsible for keeping track of the initially provided resource version for all paginated
+  **list** calls after the initial paginated **list**.
+
+{{< note >}}
+When you **list** resources and receive a collection response, the response includes the
+[metadata](/docs/reference/generated/kubernetes-api/v1.21/#listmeta-v1-meta) of the collection as
+well as [object metadata](/docs/reference/generated/kubernetes-api/v1.21/#listmeta-v1-meta)
+for each item in that collection. For individual objects found within a collection response,
+`.metadata.resourceVersion` tracks when that object was last updated, and not how up-to-date
+the object is when served.
+{{< /note >}}
+
+When using `resourceVersionMatch=NotOlderThan` and limit is set, clients must
+handle HTTP 410 "Gone" responses. For example, the client might retry with a
+newer `resourceVersion` or fall back to `resourceVersion=""`.
+
+When using `resourceVersionMatch=Exact` and `limit` is unset, clients must
+verify that the collection's `.metadata.resourceVersion` matches
+the requested `resourceVersion`, and handle the case where it does not. For
+example, the client might fall back to a request with `limit` set.
+
+### Semantics for **watch**
+
+For **watch**, the semantics of resource version are:
+
+**watch:**
 
 {{< table caption="resourceVersion for watch" >}}
 
@@ -631,18 +912,67 @@ For watch, the semantics of resource version are:
 
 {{< /table >}}
 
-The meaning of the watch semantics are:
+The meaning of those **watch** semantics are:
 
-- **Get State and Start at Most Recent:** Start a watch at the most recent resource version, which must be consistent (i.e. served from etcd via a quorum read). To establish initial state, the watch begins with synthetic "Added" events of all resources instances that exist at the starting resource version. All following watch events are for all changes that occurred after the resource version the watch started at.
-- **Get State and Start at Any:** Warning: Watches initialize this way may return arbitrarily stale data! Please review this semantic before using it, and favor the other semantics where possible. Start a watch at any resource version, the most recent resource version available is preferred, but not required; any starting resource version is allowed. It is possible for the watch to start at a much older resource version that the client has previously observed, particularly in high availability configurations, due to partitions or stale caches. Clients that cannot tolerate this should not start a watch with this semantic. To establish initial state, the watch begins with synthetic "Added" events for all resources instances that exist at the starting resource version. All following watch events are for all changes that occurred after the resource version the watch started at.
-- **Start at Exact:** Start a watch at an exact resource version. The watch events are for all changes after the provided resource version. Unlike "Get State and Start at Most Recent" and "Get State and Start at Any", the watch is not started with synthetic "Added" events for the provided resource version. The client is assumed to already have the initial state at the starting resource version since the client provided the resource version.
+Get State and Start at Any
+: {{< caution >}} Watches initialized this way may return arbitrarily stale
+  data. Please review this semantic before using it, and favor the other semantics
+  where possible.
+  {{< /caution >}}
+  Start a **watch** at any resource version; the most recent resource version
+  available is preferred, but not required. Any starting resource version is
+  allowed. It is possible for the **watch** to start at a much older resource
+  version that the client has previously observed, particularly in high availability
+  configurations, due to partitions or stale caches. Clients that cannot tolerate
+  this apparent rewinding should not start a **watch** with this semantic. To
+  establish initial state, the **watch** begins with synthetic "Added" events for
+  all resource instances that exist at the starting resource version. All following
+  watch events are for all changes that occurred after the resource version the
+  **watch** started at.
+
+Get State and Start at Most Recent
+: Start a **watch** at the most recent resource version, which must be consistent
+  (in detail: served from etcd via a quorum read). To establish initial state,
+  the **watch** begins with synthetic "Added" events of all resources instances
+  that exist at the starting resource version. All following watch events are for
+  all changes that occurred after the resource version the **watch** started at.
+
+Start at Exact
+: Start a **watch** at an exact resource version. The watch events are for all changes
+  after the provided resource version. Unlike "Get State and Start at Most Recent"
+  and "Get State and Start at Any", the **watch** is not started with synthetic
+  "Added" events for the provided resource version. The client is assumed to already
+  have the initial state at the starting resource version since the client provided
+  the resource version.
 
 ### "410 Gone" responses
 
-Servers are not required to serve all older resource versions and may return a HTTP `410 (Gone)` status code if a client requests a resourceVersion older than the server has retained. Clients must be able to tolerate `410 (Gone)` responses. See [Efficient detection of changes](#efficient-detection-of-changes) for details on how to handle `410 (Gone)` responses when watching resources.
+Servers are not required to serve all older resource versions and may return a HTTP
+`410 (Gone)` status code if a client requests a `resourceVersion` older than the
+server has retained. Clients must be able to tolerate `410 (Gone)` responses. See
+[Efficient detection of changes](#efficient-detection-of-changes) for details on
+how to handle `410 (Gone)` responses when watching resources.
 
-If you request a a resourceVersion outside the applicable limit then, depending on whether a request is served from cache or not, the API server may reply with a `410 Gone` HTTP response.
+If you request a `resourceVersion` outside the applicable limit then, depending
+on whether a request is served from cache or not, the API server may reply with a
+`410 Gone` HTTP response.
 
 ### Unavailable resource versions
 
-Servers are not required to serve unrecognized resource versions. List and Get requests for unrecognized resource versions may wait briefly for the resource version to become available, should timeout with a `504 (Gateway Timeout)` if the provided resource versions does not become available in a reasonable amount of time, and may respond with a `Retry-After` response header indicating how many seconds a client should wait before retrying the request. Currently, the kube-apiserver also identifies these responses with a "Too large resource version" message. Watch requests for an unrecognized resource version may wait indefinitely (until the request timeout) for the resource version to become available.
+Servers are not required to serve unrecognized resource versions. If you request
+**list** or **get** for a resource version that the API server does not recognize,
+then the API server may either:
+
+* wait briefly for the resource version to become available, then timeout with a
+  `504 (Gateway Timeout)` if the provided resource versions does not become available
+  in a reasonable amount of time;
+* respond with a `Retry-After` response header indicating how many seconds a client
+  should wait before retrying the request.
+
+If you request a resource version that an API server does not recognize, the
+kube-apiserver additionally identifies its error responses with a "Too large resource
+version" message.
+
+If you make a **watch** request for an unrecognized resource version, the API server
+may wait indefinitely (until the request timeout) for the resource version to become
+available.
diff --git a/content/en/docs/reference/using-api/client-libraries.md b/content/en/docs/reference/using-api/client-libraries.md
index eed8169909..145599cdd9 100644
--- a/content/en/docs/reference/using-api/client-libraries.md
+++ b/content/en/docs/reference/using-api/client-libraries.md
@@ -28,14 +28,17 @@ The following client libraries are officially maintained by
 [Kubernetes SIG API Machinery](https://github.com/kubernetes/community/tree/master/sig-api-machinery).
 
 
-| Language | Client Library | Sample Programs |
-|----------|----------------|-----------------|
-| dotnet   | [github.com/kubernetes-client/csharp](https://github.com/kubernetes-client/csharp) | [browse](https://github.com/kubernetes-client/csharp/tree/master/examples/simple)
-| Go       | [github.com/kubernetes/client-go/](https://github.com/kubernetes/client-go/) | [browse](https://github.com/kubernetes/client-go/tree/master/examples)
-| Haskell  | [github.com/kubernetes-client/haskell](https://github.com/kubernetes-client/haskell) | [browse](https://github.com/kubernetes-client/haskell/tree/master/kubernetes-client/example)
-| Java     | [github.com/kubernetes-client/java](https://github.com/kubernetes-client/java/) | [browse](https://github.com/kubernetes-client/java#installation)
-| JavaScript   | [github.com/kubernetes-client/javascript](https://github.com/kubernetes-client/javascript) | [browse](https://github.com/kubernetes-client/javascript/tree/master/examples)
-| Python   | [github.com/kubernetes-client/python/](https://github.com/kubernetes-client/python/) | [browse](https://github.com/kubernetes-client/python/tree/master/examples)
+| Language   | Client Library | Sample Programs |
+|------------|----------------|-----------------|
+| C          | [github.com/kubernetes-client/c](https://github.com/kubernetes-client/c/) | [browse](https://github.com/kubernetes-client/c/tree/master/examples)
+| dotnet     | [github.com/kubernetes-client/csharp](https://github.com/kubernetes-client/csharp) | [browse](https://github.com/kubernetes-client/csharp/tree/master/examples/simple)
+| Go         | [github.com/kubernetes/client-go/](https://github.com/kubernetes/client-go/) | [browse](https://github.com/kubernetes/client-go/tree/master/examples)
+| Haskell    | [github.com/kubernetes-client/haskell](https://github.com/kubernetes-client/haskell) | [browse](https://github.com/kubernetes-client/haskell/tree/master/kubernetes-client/example)
+| Java       | [github.com/kubernetes-client/java](https://github.com/kubernetes-client/java/) | [browse](https://github.com/kubernetes-client/java#installation)
+| JavaScript | [github.com/kubernetes-client/javascript](https://github.com/kubernetes-client/javascript) | [browse](https://github.com/kubernetes-client/javascript/tree/master/examples)
+| Perl       | [github.com/kubernetes-client/perl/](https://github.com/kubernetes-client/perl/) | [browse](https://github.com/kubernetes-client/perl/tree/master/examples)
+| Python     | [github.com/kubernetes-client/python/](https://github.com/kubernetes-client/python/) | [browse](https://github.com/kubernetes-client/python/tree/master/examples)
+| Ruby       | [github.com/kubernetes-client/ruby/](https://github.com/kubernetes-client/ruby/) | [browse](https://github.com/kubernetes-client/ruby/tree/master/examples)
 
 ## Community-maintained client libraries
 
@@ -67,11 +70,11 @@ their authors, not the Kubernetes team.
 | PHP                  | [github.com/travisghansen/kubernetes-client-php](https://github.com/travisghansen/kubernetes-client-php) |
 | PHP                  | [github.com/renoki-co/php-k8s](https://github.com/renoki-co/php-k8s) |
 | Python               | [github.com/fiaas/k8s](https://github.com/fiaas/k8s) |
+| Python               | [github.com/gtsystem/lightkube](https://github.com/gtsystem/lightkube) |
 | Python               | [github.com/mnubo/kubernetes-py](https://github.com/mnubo/kubernetes-py) |
 | Python               | [github.com/tomplus/kubernetes_asyncio](https://github.com/tomplus/kubernetes_asyncio) |
 | Python               | [github.com/Frankkkkk/pykorm](https://github.com/Frankkkkk/pykorm) |
 | Ruby                 | [github.com/abonas/kubeclient](https://github.com/abonas/kubeclient) |
-| Ruby                 | [github.com/Ch00k/kuber](https://github.com/Ch00k/kuber) |
 | Ruby                 | [github.com/k8s-ruby/k8s-ruby](https://github.com/k8s-ruby/k8s-ruby) |
 | Ruby                 | [github.com/kontena/k8s-client](https://github.com/kontena/k8s-client) |
 | Rust                 | [github.com/clux/kube-rs](https://github.com/clux/kube-rs) |
diff --git a/content/en/docs/reference/using-api/deprecation-guide.md b/content/en/docs/reference/using-api/deprecation-guide.md
index 579e4c04ac..0b5969e9f1 100644
--- a/content/en/docs/reference/using-api/deprecation-guide.md
+++ b/content/en/docs/reference/using-api/deprecation-guide.md
@@ -20,6 +20,36 @@ deprecated API versions to newer and more stable API versions.
 
 ## Removed APIs by release
 
+### v1.27
+
+The **v1.27** release will stop serving the following deprecated API versions:
+
+#### CSIStorageCapacity {#csistoragecapacity-v127}
+
+The **storage.k8s.io/v1beta1** API version of CSIStorageCapacity will no longer be served in v1.27.
+
+* Migrate manifests and API clients to use the **storage.k8s.io/v1** API version, available since v1.24.
+* All existing persisted objects are accessible via the new API
+* No notable changes
+
+### v1.26
+
+The **v1.26** release will stop serving the following deprecated API versions:
+
+#### Flow control resources {#flowcontrol-resources-v126}
+
+The **flowcontrol.apiserver.k8s.io/v1beta1** API version of FlowSchema and PriorityLevelConfiguration will no longer be served in v1.26.
+
+* Migrate manifests and API clients to use the **flowcontrol.apiserver.k8s.io/v1beta2** API version, available since v1.23.
+* All existing persisted objects are accessible via the new API
+* No notable changes
+
+#### HorizontalPodAutoscaler {#horizontalpodautoscaler-v126}
+
+The **autoscaling/v2beta2** API version of HorizontalPodAutoscaler will no longer be served in v1.26.
+
+* Migrate manifests and API clients to use the **autoscaling/v2** API version, available since v1.23.
+* All existing persisted objects are accessible via the new API
 
 ### v1.25
 
@@ -60,6 +90,13 @@ The **events.k8s.io/v1beta1** API version of Event will no longer be served in v
     * use `reportingController` instead of the deprecated `source.component` field (which is renamed to `deprecatedSource.component` and not permitted in new **events.k8s.io/v1** Events)
     * use `reportingInstance` instead of the deprecated `source.host` field (which is renamed to `deprecatedSource.host` and not permitted in new **events.k8s.io/v1** Events)
 
+#### HorizontalPodAutoscaler {#horizontalpodautoscaler-v125}
+
+The **autoscaling/v2beta1** API version of HorizontalPodAutoscaler will no longer be served in v1.25.
+
+* Migrate manifests and API clients to use the **autoscaling/v2** API version, available since v1.23.
+* All existing persisted objects are accessible via the new API
+
 #### PodDisruptionBudget {#poddisruptionbudget-v125}
 
 The **policy/v1beta1** API version of PodDisruptionBudget will no longer be served in v1.25.
@@ -73,8 +110,10 @@ The **policy/v1beta1** API version of PodDisruptionBudget will no longer be serv
 
 PodSecurityPolicy in the **policy/v1beta1** API version will no longer be served in v1.25, and the PodSecurityPolicy admission controller will be removed.
 
-PodSecurityPolicy replacements are still under discussion, but current use can be migrated to
-[3rd-party admission webhooks](/docs/reference/access-authn-authz/extensible-admission-controllers/) now.
+Migrate to [Pod Security Admission](/docs/concepts/security/pod-security-admission/)
+or a [3rd party admission webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/).
+For a migration guide, see [Migrate from PodSecurityPolicy to the Built-In PodSecurity Admission Controller](/docs/tasks/configure-pod-container/migrate-from-psp/).
+For more information on the deprecation, see [PodSecurityPolicy Deprecation: Past, Present, and Future](/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/).
 
 #### RuntimeClass {#runtimeclass-v125}
 
@@ -137,7 +176,7 @@ The **authentication.k8s.io/v1beta1** API version of TokenReview is no longer se
 
 #### SubjectAccessReview resources {#subjectaccessreview-resources-v122}
 
-The **authorization.k8s.io/v1beta1** API version of LocalSubjectAccessReview, SelfSubjectAccessReview, and SubjectAccessReview is no longer served as of v1.22.
+The **authorization.k8s.io/v1beta1** API version of LocalSubjectAccessReview, SelfSubjectAccessReview, SubjectAccessReview, and SelfSubjectRulesReview is no longer served as of v1.22.
 
 * Migrate manifests and API clients to use the **authorization.k8s.io/v1** API version, available since v1.6.
 * Notable changes:
@@ -291,7 +330,7 @@ For example:
 
 ### Locate use of deprecated APIs
 
-Use [client warnings, metrics, and audit information available in 1.19+](https://kubernetes.io/blog/2020/09/03/warnings/#deprecation-warnings)
+Use [client warnings, metrics, and audit information available in 1.19+](/blog/2020/09/03/warnings/#deprecation-warnings)
 to locate use of deprecated APIs.
 
 ### Migrate to non-deprecated APIs
@@ -299,14 +338,14 @@ to locate use of deprecated APIs.
 * Update custom integrations and controllers to call the non-deprecated APIs
 * Change YAML files to reference the non-deprecated APIs
 
-    You can use the `kubectl-convert` command (`kubectl convert` prior to v1.20)
-    to automatically convert an existing object:
-    
-    `kubectl-convert -f <file> --output-version <group>/<version>`.
+  You can use the `kubectl-convert` command (`kubectl convert` prior to v1.20)
+  to automatically convert an existing object:
 
-    For example, to convert an older Deployment to `apps/v1`, you can run:
-    
-    `kubectl-convert -f ./my-deployment.yaml --output-version apps/v1`
+  `kubectl-convert -f <file> --output-version <group>/<version>`.
 
-    Note that this may use non-ideal default values. To learn more about a specific
-    resource, check the Kubernetes [API reference](/docs/reference/kubernetes-api/).
+  For example, to convert an older Deployment to `apps/v1`, you can run:
+
+  `kubectl-convert -f ./my-deployment.yaml --output-version apps/v1`
+
+  Note that this may use non-ideal default values. To learn more about a specific
+  resource, check the Kubernetes [API reference](/docs/reference/kubernetes-api/).
diff --git a/content/en/docs/reference/using-api/deprecation-policy.md b/content/en/docs/reference/using-api/deprecation-policy.md
index eed4341628..9612e1df39 100644
--- a/content/en/docs/reference/using-api/deprecation-policy.md
+++ b/content/en/docs/reference/using-api/deprecation-policy.md
@@ -73,21 +73,23 @@ knows how to convert between them in both directions.  Additionally, any new
 field added in v2 must be able to round-trip to v1 and back, which means v1
 might have to add an equivalent field or represent it as an annotation.
 
-**Rule #3: An API version in a given track may not be deprecated until a new
-API version at least as stable is released.**
+**Rule #3: An API version in a given track may not be deprecated in favor of a less stable API version.**
 
-GA API versions can replace GA API versions as well as beta and alpha API
-versions.  Beta API versions *may not* replace GA API versions.
+  * GA API versions can replace beta and alpha API versions.
+  * Beta API versions can replace earlier beta and alpha API versions, but *may not* replace GA API versions.
+  * Alpha API versions can replace earlier alpha API versions, but *may not* replace GA or beta API versions.
 
-**Rule #4a: Other than the most recent API versions in each track, older API
-versions must be supported after their announced deprecation for a duration of
-no less than:**
+**Rule #4a: minimum API lifetime is determined by the API stability level**
 
-   * **GA: 12 months or 3 releases (whichever is longer)**
-   * **Beta: 9 months or 3 releases (whichever is longer)**
-   * **Alpha: 0 releases**
+   * **GA API versions may be marked as deprecated, but must not be removed within a major version of Kubernetes**
+   * **Beta API versions must be supported for 9 months or 3 releases (whichever is longer) after deprecation**
+   * **Alpha API versions may be removed in any release without prior deprecation notice**
 
-This covers the [maximum supported version skew of 2 releases](/docs/setup/release/version-skew-policy/).
+This ensures beta API support covers the [maximum supported version skew of 2 releases](/releases/version-skew-policy/).
+
+{{< note >}}
+There are no current plans for a major version revision of Kubernetes that removes GA APIs.
+{{< /note >}}
 
 {{< note >}}
 Until [#52185](https://github.com/kubernetes/kubernetes/issues/52185) is
@@ -109,7 +111,7 @@ objects.
 
 All of this is best illustrated by examples.  Imagine a Kubernetes release,
 version X, which introduces a new API group.  A new Kubernetes release is made
-every approximately 3 months (4 per year).  The following table describes which
+every approximately 4 months (3 per year).  The following table describes which
 API versions are supported in a series of subsequent releases.
 
 <table>
@@ -237,7 +239,7 @@ API versions are supported in a series of subsequent releases.
       <td>
         <ul>
           <li>v2beta2 is deprecated, "action required" relnote</li>
-          <li>v1 is deprecated, "action required" relnote</li>
+          <li>v1 is deprecated in favor of v2, but will not be removed</li>
         </ul>
       </td>
     </tr>
@@ -267,22 +269,6 @@ API versions are supported in a series of subsequent releases.
         </ul>
       </td>
     </tr>
-    <tr>
-      <td>X+16</td>
-      <td>v2, v1 (deprecated)</td>
-      <td>v2</td>
-      <td></td>
-    </tr>
-    <tr>
-      <td>X+17</td>
-      <td>v2</td>
-      <td>v2</td>
-      <td>
-        <ul>
-          <li>v1 is removed, "action required" relnote</li>
-        </ul>
-      </td>
-    </tr>
   </tbody>
 </table>
 
@@ -300,7 +286,7 @@ behavior get removed.
 Starting in Kubernetes v1.19, making an API request to a deprecated REST API endpoint:
 
 1. Returns a `Warning` header (as defined in [RFC7234, Section 5.5](https://tools.ietf.org/html/rfc7234#section-5.5)) in the API response.
-2. Adds a `"k8s.io/deprecated":"true"` annotation to the [audit event](/docs/tasks/debug-application-cluster/audit/) recorded for the request.
+2. Adds a `"k8s.io/deprecated":"true"` annotation to the [audit event](/docs/tasks/debug/debug-cluster/audit/) recorded for the request.
 3. Sets an `apiserver_requested_deprecated_apis` gauge metric to `1` in the `kube-apiserver`
    process. The metric has labels for `group`, `version`, `resource`, `subresource` that can be joined
    to the `apiserver_request_total` metric, and a `removed_release` label that indicates the
diff --git a/content/en/docs/reference/using-api/health-checks.md b/content/en/docs/reference/using-api/health-checks.md
index e4ce50f30d..b13793a07b 100644
--- a/content/en/docs/reference/using-api/health-checks.md
+++ b/content/en/docs/reference/using-api/health-checks.md
@@ -19,12 +19,12 @@ The `healthz` endpoint is deprecated (since Kubernetes v1.16), and you should us
 The `livez` endpoint can be used with the `--livez-grace-period` [flag](/docs/reference/command-line-tools-reference/kube-apiserver) to specify the startup duration.
 For a graceful shutdown you can specify the `--shutdown-delay-duration` [flag](/docs/reference/command-line-tools-reference/kube-apiserver) with the `/readyz` endpoint.
 Machines that check the `healthz`/`livez`/`readyz` of the API server should rely on the HTTP status code.
-A status code `200` indicates the API server is `healthy`/`live`/`ready`, depending of the called endpoint.
-The more verbose options shown below are intended to be used by human operators to debug their cluster or specially the state of the API server.
+A status code `200` indicates the API server is `healthy`/`live`/`ready`, depending on the called endpoint.
+The more verbose options shown below are intended to be used by human operators to debug their cluster or understand the state of the API server.
 
 The following examples will show how you can interact with the health API endpoints.
 
-For all endpoints you can use the `verbose` parameter to print out the checks and their status.
+For all endpoints, you can use the `verbose` parameter to print out the checks and their status.
 This can be useful for a human operator to debug the current status of the API server, it is not intended to be consumed by a machine:
 
 ```shell
@@ -93,7 +93,7 @@ The output show that the `etcd` check is excluded:
 
 {{< feature-state state="alpha" >}}
 
-Each individual health check exposes an HTTP endpoint and could can be checked individually.
+Each individual health check exposes an HTTP endpoint and can be checked individually.
 The schema for the individual health checks is `/livez/<healthcheck-name>` where `livez` and `readyz` and be used to indicate if you want to check the liveness or the readiness of the API server.
 The `<healthcheck-name>` path can be discovered using the `verbose` flag from above and take the path between `[+]` and `ok`.
 These individual health checks should not be consumed by machines but can be helpful for a human operator to debug a system:
diff --git a/content/en/docs/reference/using-api/server-side-apply.md b/content/en/docs/reference/using-api/server-side-apply.md
index 60acb02f7d..e9f951a76a 100644
--- a/content/en/docs/reference/using-api/server-side-apply.md
+++ b/content/en/docs/reference/using-api/server-side-apply.md
@@ -125,7 +125,8 @@ this occurs, the applier has 3 options to resolve the conflicts:
 
 * **Overwrite value, become sole manager:** If overwriting the value was
   intentional (or if the applier is an automated process like a controller) the
-  applier should set the `force` query parameter to true and make the request
+  applier should set the `force` query parameter to true (in kubectl, it can be done by
+  using the `--force-conflicts` flag with the apply command) and make the request
   again. This forces the operation to succeed, changes the value of the field,
   and removes the field from all other managers' entries in managedFields.
 
@@ -508,11 +509,3 @@ sub-resources that don't receive the resource object type. If you are
 using Server Side Apply with such a sub-resource, the changed fields
 won't be tracked.
 {{< /caution >}}
-
-## Disabling the feature
-
-Server Side Apply is a beta feature, so it is enabled by default. To turn this
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates) off,
-you need to include the `--feature-gates ServerSideApply=false` flag when
-starting `kube-apiserver`. If you have multiple `kube-apiserver` replicas, all
-should have the same flag setting.
diff --git a/content/en/docs/setup/_index.md b/content/en/docs/setup/_index.md
index bb73375553..ba9b3c6785 100644
--- a/content/en/docs/setup/_index.md
+++ b/content/en/docs/setup/_index.md
@@ -27,6 +27,13 @@ control, available resources, and expertise required to operate and manage a clu
 You can [download Kubernetes](/releases/download/) to deploy a Kubernetes cluster
 on a local machine, into the cloud, or for your own datacenter.
 
+Several [Kubernetes components](/docs/concepts/overview/components/) such as `kube-apiserver` or `kube-proxy` can also be
+deployed as [container images](/releases/download/#container-images) within the cluster.
+
+It is **recommended** to run Kubernetes components as container images wherever
+that is possible, and to have Kubernetes manage those components.
+Components that run containers - notably, the kubelet - can't be included in this category.
+
 If you don't want to manage a Kubernetes cluster yourself, you could pick a managed service, including
 [certified platforms](/docs/setup/production-environment/turnkey-solutions/).
 There are also other standardized and custom solutions across a wide range of cloud and
@@ -60,4 +67,5 @@ for deploying Kubernetes is [kubeadm](/docs/setup/production-environment/tools/k
 Kubernetes is designed for its {{< glossary_tooltip term_id="control-plane" text="control plane" >}} to
 run on Linux. Within your cluster you can run applications on Linux or other operating systems, including
 Windows.
-- Learn to [set up clusters with Windows nodes](/docs/setup/production-environment/windows/)
+
+- Learn to [set up clusters with Windows nodes](/docs/concepts/windows/)
diff --git a/content/en/docs/setup/best-practices/certificates.md b/content/en/docs/setup/best-practices/certificates.md
index 1648cc4e9e..23e4ac8df7 100644
--- a/content/en/docs/setup/best-practices/certificates.md
+++ b/content/en/docs/setup/best-practices/certificates.md
@@ -22,6 +22,8 @@ This page explains the certificates that your cluster requires.
 Kubernetes requires PKI for the following operations:
 
 * Client certificates for the kubelet to authenticate to the API server
+* Kubelet [server certificates](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/#client-and-serving-certificates)
+  for the API server to talk to the kubelets
 * Server certificate for the API server endpoint
 * Client certificates for administrators of the cluster to authenticate to the API server
 * Client certificates for the API server to talk to the kubelets
@@ -38,11 +40,13 @@ etcd also implements mutual TLS to authenticate clients and peers.
 
 ## Where certificates are stored
 
-If you install Kubernetes with kubeadm, certificates are stored in `/etc/kubernetes/pki`. All paths in this documentation are relative to that directory.
+If you install Kubernetes with kubeadm, most certificates are stored in `/etc/kubernetes/pki`. All paths in this documentation are relative to that directory, with the exception of user account certificates which kubeadm places in `/etc/kubernetes`.
 
 ## Configure certificates manually
 
-If you don't want kubeadm to generate the required certificates, you can create them in either of the following ways.
+If you don't want kubeadm to generate the required certificates, you can create them using a single root CA or by providing all certificates. See [Certificates](/docs/tasks/administer-cluster/certificates/) for details on creating your own certificate authority.
+See [Certificate Management with kubeadm](/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/) for more on managing certificates.
+
 
 ### Single root CA
 
@@ -57,7 +61,16 @@ Required CAs:
 | front-proxy-ca.crt,key | kubernetes-front-proxy-ca | For the [front-end proxy](/docs/tasks/extend-kubernetes/configure-aggregation-layer/) |
 
 On top of the above CAs, it is also necessary to get a public/private key pair for service account management, `sa.key` and `sa.pub`.
+The following example illustrates the CA key and certificate files shown in the previous table:
 
+```
+/etc/kubernetes/pki/ca.crt
+/etc/kubernetes/pki/ca.key
+/etc/kubernetes/pki/etcd/ca.crt
+/etc/kubernetes/pki/etcd/ca.key
+/etc/kubernetes/pki/front-proxy-ca.crt
+/etc/kubernetes/pki/front-proxy-ca.key
+```
 ### All certificates
 
 If you don't wish to copy the CA private keys to your cluster, you can generate all certificates yourself.
@@ -66,7 +79,7 @@ Required certificates:
 
 | Default CN                    | Parent CA                 | O (in Subject) | kind                                   | hosts (SAN)                                 |
 |-------------------------------|---------------------------|----------------|----------------------------------------|---------------------------------------------|
-| kube-etcd                     | etcd-ca                   |                | server, client                         | `localhost`, `127.0.0.1`                        |
+| kube-etcd                     | etcd-ca                   |                | server, client                         | `<hostname>`, `<Host_IP>`, `localhost`, `127.0.0.1` |
 | kube-etcd-peer                | etcd-ca                   |                | server, client                         | `<hostname>`, `<Host_IP>`, `localhost`, `127.0.0.1` |
 | kube-etcd-healthcheck-client  | etcd-ca                   |                | client                                 |                                             |
 | kube-apiserver-etcd-client    | etcd-ca                   | system:masters | client                                 |                                             |
@@ -78,7 +91,7 @@ Required certificates:
 the load balancer stable IP and/or DNS name, `kubernetes`, `kubernetes.default`, `kubernetes.default.svc`,
 `kubernetes.default.svc.cluster`, `kubernetes.default.svc.cluster.local`)
 
-where `kind` maps to one or more of the [x509 key usage](https://godoc.org/k8s.io/api/certificates/v1beta1#KeyUsage) types:
+where `kind` maps to one or more of the [x509 key usage](https://pkg.go.dev/k8s.io/api/certificates/v1beta1#KeyUsage) types:
 
 | kind   | Key usage                                                                       |
 |--------|---------------------------------------------------------------------------------|
@@ -127,6 +140,32 @@ Same considerations apply for the service account key pair:
 |  sa.key                      |                             | kube-controller-manager | --service-account-private-key-file   |
 |                              | sa.pub                      | kube-apiserver          | --service-account-key-file           |
 
+The following example illustrates the file paths [from the previous tables](/docs/setup/best-practices/certificates/#certificate-paths) you need to provide if you are generating all of your own keys and certificates:
+
+```
+/etc/kubernetes/pki/etcd/ca.key
+/etc/kubernetes/pki/etcd/ca.crt
+/etc/kubernetes/pki/apiserver-etcd-client.key
+/etc/kubernetes/pki/apiserver-etcd-client.crt
+/etc/kubernetes/pki/ca.key
+/etc/kubernetes/pki/ca.crt
+/etc/kubernetes/pki/apiserver.key
+/etc/kubernetes/pki/apiserver.crt
+/etc/kubernetes/pki/apiserver-kubelet-client.key
+/etc/kubernetes/pki/apiserver-kubelet-client.crt
+/etc/kubernetes/pki/front-proxy-ca.key
+/etc/kubernetes/pki/front-proxy-ca.crt
+/etc/kubernetes/pki/front-proxy-client.key
+/etc/kubernetes/pki/front-proxy-client.crt
+/etc/kubernetes/pki/etcd/server.key
+/etc/kubernetes/pki/etcd/server.crt
+/etc/kubernetes/pki/etcd/peer.key
+/etc/kubernetes/pki/etcd/peer.crt
+/etc/kubernetes/pki/etcd/healthcheck-client.key
+/etc/kubernetes/pki/etcd/healthcheck-client.crt
+/etc/kubernetes/pki/sa.key
+/etc/kubernetes/pki/sa.pub
+```
 ## Configure certificates for user accounts
 
 You must manually configure these administrator account and service accounts:
@@ -146,7 +185,7 @@ The value of `<nodeName>` for `kubelet.conf` **must** match precisely the value
 
 1. Run `kubectl` as follows for each config:
 
-```shell
+```
 KUBECONFIG=<filename> kubectl config set-cluster default-cluster --server=https://<host ip>:6443 --certificate-authority <path-to-kubernetes-ca> --embed-certs
 KUBECONFIG=<filename> kubectl config set-credentials <credential-name> --client-key <path-to-key>.pem --client-certificate <path-to-cert>.pem --embed-certs
 KUBECONFIG=<filename> kubectl config set-context default-system --cluster default-cluster --user <credential-name>
@@ -162,4 +201,11 @@ These files are used as follows:
 | controller-manager.conf | kube-controller-manager | Must be added to manifest in `manifests/kube-controller-manager.yaml` |
 | scheduler.conf          | kube-scheduler          | Must be added to manifest in `manifests/kube-scheduler.yaml`          |
 
+The following files illustrate full paths to the files listed in the previous table:
 
+```
+/etc/kubernetes/admin.conf
+/etc/kubernetes/kubelet.conf
+/etc/kubernetes/controller-manager.conf
+/etc/kubernetes/scheduler.conf
+```
diff --git a/content/en/docs/setup/best-practices/enforcing-pod-security-standards.md b/content/en/docs/setup/best-practices/enforcing-pod-security-standards.md
index 2b7ca6144e..59b19c01f5 100644
--- a/content/en/docs/setup/best-practices/enforcing-pod-security-standards.md
+++ b/content/en/docs/setup/best-practices/enforcing-pod-security-standards.md
@@ -15,7 +15,7 @@ This page provides an overview of best practices when it comes to enforcing
 
 ## Using the built-in Pod Security Admission Controller
 
-{{< feature-state for_k8s_version="v1.22" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
 
 The [Pod Security Admission Controller](/docs/reference/access-authn-authz/admission-controllers/#podsecurity)
 intends to replace the deprecated PodSecurityPolicies. 
@@ -70,6 +70,8 @@ few different ways:
 Other alternatives for enforcing security profiles are being developed in the Kubernetes
 ecosystem:
 
+- [Kubewarden](https://github.com/kubewarden).
+- [Kyverno](https://kyverno.io/policies/).
 - [OPA Gatekeeper](https://github.com/open-policy-agent/gatekeeper).
 
 The decision to go with a _built-in_ solution (e.g. PodSecurity admission controller) versus a
diff --git a/content/en/docs/setup/best-practices/multiple-zones.md b/content/en/docs/setup/best-practices/multiple-zones.md
index 8f51a3bd06..3bce166937 100644
--- a/content/en/docs/setup/best-practices/multiple-zones.md
+++ b/content/en/docs/setup/best-practices/multiple-zones.md
@@ -63,7 +63,7 @@ These labels can include
 
 If your cluster spans multiple zones or regions, you can use node labels
 in conjunction with
-[Pod topology spread constraints](/docs/concepts/workloads/pods/pod-topology-spread-constraints/)
+[Pod topology spread constraints](/docs/concepts/scheduling-eviction/topology-spread-constraints/)
 to control how Pods are spread across your cluster among fault domains:
 regions, zones, and even specific nodes.
 These hints enable the
diff --git a/content/en/docs/setup/best-practices/node-conformance.md b/content/en/docs/setup/best-practices/node-conformance.md
index 6a3822ef70..e1140664cb 100644
--- a/content/en/docs/setup/best-practices/node-conformance.md
+++ b/content/en/docs/setup/best-practices/node-conformance.md
@@ -30,8 +30,6 @@ To run the node conformance test, perform the following steps:
     Because the test framework starts a local control plane to test the kubelet,
     use `http://localhost:8080` as the URL of the API server.
     There are some other kubelet command line parameters you may want to use:
-  * `--pod-cidr`: If you are using `kubenet`, you should specify an arbitrary CIDR
-    to Kubelet, for example `--pod-cidr=10.180.0.0/24`.
   * `--cloud-provider`: If you are using `--cloud-provider=gce`, you should
     remove the flag to run the test.
 
diff --git a/content/en/docs/setup/production-environment/_index.md b/content/en/docs/setup/production-environment/_index.md
index 1611170ec9..f1c6587c75 100644
--- a/content/en/docs/setup/production-environment/_index.md
+++ b/content/en/docs/setup/production-environment/_index.md
@@ -28,47 +28,47 @@ on or hand to others, consider how your requirements for a Kubernetes cluster
 are influenced by the following issues:
 
 - *Availability*: A single-machine Kubernetes [learning environment](/docs/setup/#learning-environment)
-has a single point of failure. Creating a highly available cluster means considering:
+  has a single point of failure. Creating a highly available cluster means considering:
   - Separating the control plane from the worker nodes.
   - Replicating the control plane components on multiple nodes.
   - Load balancing traffic to the cluster’s {{< glossary_tooltip term_id="kube-apiserver" text="API server" >}}.
   - Having enough worker nodes available, or able to quickly become available, as changing workloads warrant it.
 
 - *Scale*: If you expect your production Kubernetes environment to receive a stable amount of
-demand, you might be able to set up for the capacity you need and be done. However,
-if you expect demand to grow over time or change dramatically based on things like
-season or special events, you need to plan how to scale to relieve increased
-pressure from more requests to the control plane and worker nodes or scale down to reduce unused
-resources.
+  demand, you might be able to set up for the capacity you need and be done. However,
+  if you expect demand to grow over time or change dramatically based on things like
+  season or special events, you need to plan how to scale to relieve increased
+  pressure from more requests to the control plane and worker nodes or scale down to reduce unused
+  resources.
 
 - *Security and access management*: You have full admin privileges on your own
-Kubernetes learning cluster. But shared clusters with important workloads, and
-more than one or two users, require a more refined approach to who and what can
-access cluster resources. You can use role-based access control
-([RBAC](/docs/reference/access-authn-authz/rbac/)) and other
-security mechanisms to make sure that users and workloads can get access to the
-resources they need, while keeping workloads, and the cluster itself, secure.
-You can set limits on the resources that users and workloads can access
-by managing [policies](/docs/concepts/policy/) and
-[container resources](/docs/concepts/configuration/manage-resources-containers/).
+  Kubernetes learning cluster. But shared clusters with important workloads, and
+  more than one or two users, require a more refined approach to who and what can
+  access cluster resources. You can use role-based access control
+  ([RBAC](/docs/reference/access-authn-authz/rbac/)) and other
+  security mechanisms to make sure that users and workloads can get access to the
+  resources they need, while keeping workloads, and the cluster itself, secure.
+  You can set limits on the resources that users and workloads can access
+  by managing [policies](/docs/concepts/policy/) and
+  [container resources](/docs/concepts/configuration/manage-resources-containers/).
 
 Before building a Kubernetes production environment on your own, consider
 handing off some or all of this job to 
 [Turnkey Cloud Solutions](/docs/setup/production-environment/turnkey-solutions/) 
-providers or other [Kubernetes Partners](https://kubernetes.io/partners/).
+providers or other [Kubernetes Partners](/partners/).
 Options include:
 
 - *Serverless*: Just run workloads on third-party equipment without managing
-a cluster at all. You will be charged for things like CPU usage, memory, and
-disk requests.
+  a cluster at all. You will be charged for things like CPU usage, memory, and
+  disk requests.
 - *Managed control plane*: Let the provider manage the scale and availability
-of the cluster's control plane, as well as handle patches and upgrades.
+  of the cluster's control plane, as well as handle patches and upgrades.
 - *Managed worker nodes*: Configure pools of nodes to meet your needs,
-then the provider makes sure those nodes are available and ready to implement
-upgrades when needed.
+  then the provider makes sure those nodes are available and ready to implement
+  upgrades when needed.
 - *Integration*: There are providers that integrate Kubernetes with other
-services you may need, such as storage, container registries, authentication
-methods, and development tools.
+  services you may need, such as storage, container registries, authentication
+  methods, and development tools.
 
 Whether you build a production Kubernetes cluster yourself or work with
 partners, review the following sections to evaluate your needs as they relate
@@ -99,52 +99,52 @@ and ensuring that it can be repaired if something goes wrong is important,
 consider these steps:
 
 - *Choose deployment tools*: You can deploy a control plane using tools such
-as kubeadm, kops, and kubespray. See
-[Installing Kubernetes with deployment tools](/docs/setup/production-environment/tools/)
-to learn tips for production-quality deployments using each of those deployment
-methods. Different [Container Runtimes](/docs/setup/production-environment/container-runtimes/)
-are available to use with your deployments.
+  as kubeadm, kops, and kubespray. See
+  [Installing Kubernetes with deployment tools](/docs/setup/production-environment/tools/)
+  to learn tips for production-quality deployments using each of those deployment
+  methods. Different [Container Runtimes](/docs/setup/production-environment/container-runtimes/)
+  are available to use with your deployments.
 - *Manage certificates*: Secure communications between control plane services
-are implemented using certificates. Certificates are automatically generated
-during deployment or you can generate them using your own certificate authority.
-See [PKI certificates and requirements](/docs/setup/best-practices/certificates/) for details.
+  are implemented using certificates. Certificates are automatically generated
+  during deployment or you can generate them using your own certificate authority.
+  See [PKI certificates and requirements](/docs/setup/best-practices/certificates/) for details.
 - *Configure load balancer for apiserver*: Configure a load balancer
-to distribute external API requests to the apiserver service instances running on different nodes. See 
-[Create an External Load Balancer](/docs/tasks/access-application-cluster/create-external-load-balancer/)
-for details.
+  to distribute external API requests to the apiserver service instances running on different nodes. See 
+  [Create an External Load Balancer](/docs/tasks/access-application-cluster/create-external-load-balancer/)
+  for details.
 - *Separate and backup etcd service*: The etcd services can either run on the
-same machines as other control plane services or run on separate machines, for
-extra security and availability. Because etcd stores cluster configuration data,
-backing up the etcd database should be done regularly to ensure that you can
-repair that database if needed.
-See the [etcd FAQ](https://etcd.io/docs/v3.4/faq/) for details on configuring and using etcd.
-See [Operating etcd clusters for Kubernetes](/docs/tasks/administer-cluster/configure-upgrade-etcd/)
-and [Set up a High Availability etcd cluster with kubeadm](/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm/)
-for details.
+  same machines as other control plane services or run on separate machines, for
+  extra security and availability. Because etcd stores cluster configuration data,
+  backing up the etcd database should be done regularly to ensure that you can
+  repair that database if needed.
+  See the [etcd FAQ](https://etcd.io/docs/v3.4/faq/) for details on configuring and using etcd.
+  See [Operating etcd clusters for Kubernetes](/docs/tasks/administer-cluster/configure-upgrade-etcd/)
+  and [Set up a High Availability etcd cluster with kubeadm](/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm/)
+  for details.
 - *Create multiple control plane systems*: For high availability, the
-control plane should not be limited to a single machine. If the control plane
-services are run by an init service (such as systemd), each service should run on at
-least three machines. However, running control plane services as pods in
-Kubernetes ensures that the replicated number of services that you request
-will always be available.
-The scheduler should be fault tolerant,
-but not highly available. Some deployment tools set up [Raft](https://raft.github.io/)
-consensus algorithm to do leader election of Kubernetes services. If the
-primary goes away, another service elects itself and take over. 
+  control plane should not be limited to a single machine. If the control plane
+  services are run by an init service (such as systemd), each service should run on at
+  least three machines. However, running control plane services as pods in
+  Kubernetes ensures that the replicated number of services that you request
+  will always be available.
+  The scheduler should be fault tolerant,
+  but not highly available. Some deployment tools set up [Raft](https://raft.github.io/)
+  consensus algorithm to do leader election of Kubernetes services. If the
+  primary goes away, another service elects itself and take over. 
 - *Span multiple zones*: If keeping your cluster available at all times is
-critical, consider creating a cluster that runs across multiple data centers,
-referred to as zones in cloud environments. Groups of zones are referred to as regions.
-By spreading a cluster across
-multiple zones in the same region, it can improve the chances that your
-cluster will continue to function even if one zone becomes unavailable.
-See [Running in multiple zones](/docs/setup/best-practices/multiple-zones/) for details.
+  critical, consider creating a cluster that runs across multiple data centers,
+  referred to as zones in cloud environments. Groups of zones are referred to as regions.
+  By spreading a cluster across
+  multiple zones in the same region, it can improve the chances that your
+  cluster will continue to function even if one zone becomes unavailable.
+  See [Running in multiple zones](/docs/setup/best-practices/multiple-zones/) for details.
 - *Manage on-going features*: If you plan to keep your cluster over time,
-there are tasks you need to do to maintain its health and security. For example,
-if you installed with kubeadm, there are instructions to help you with
-[Certificate Management](/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/)
-and [Upgrading kubeadm clusters](/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/).
-See [Administer a Cluster](/docs/tasks/administer-cluster/)
-for a longer list of Kubernetes administrative tasks.
+  there are tasks you need to do to maintain its health and security. For example,
+  if you installed with kubeadm, there are instructions to help you with
+  [Certificate Management](/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/)
+  and [Upgrading kubeadm clusters](/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/).
+  See [Administer a Cluster](/docs/tasks/administer-cluster/)
+  for a longer list of Kubernetes administrative tasks.
 
 To learn about available options when you run control plane services, see
 [kube-apiserver](/docs/reference/command-line-tools-reference/kube-apiserver/),
@@ -166,39 +166,36 @@ consider how you want to manage your worker nodes (also referred to
 simply as *nodes*).  
 
 - *Configure nodes*: Nodes can be physical or virtual machines. If you want to
-create and manage your own nodes, you can install a supported operating system,
-then add and run the appropriate
-[Node services](/docs/concepts/overview/components/#node-components). Consider:
+  create and manage your own nodes, you can install a supported operating system,
+  then add and run the appropriate
+  [Node services](/docs/concepts/overview/components/#node-components). Consider:
   - The demands of your workloads when you set up nodes by having appropriate memory, CPU, and disk speed and storage capacity available.
   - Whether generic computer systems will do or you have workloads that need GPU processors, Windows nodes, or VM isolation.
 - *Validate nodes*: See [Valid node setup](/docs/setup/best-practices/node-conformance/)
-for information on how to ensure that a node meets the requirements to join
-a Kubernetes cluster.
+  for information on how to ensure that a node meets the requirements to join
+  a Kubernetes cluster.
 - *Add nodes to the cluster*: If you are managing your own cluster you can
-add nodes by setting up your own machines and either adding them manually or
-having them register themselves to the cluster’s apiserver. See the
-[Nodes](/docs/concepts/architecture/nodes/) section for information on how to set up Kubernetes to add nodes in these ways.
-- *Add Windows nodes to the cluster*: Kubernetes offers support for Windows
-worker nodes, allowing you to run workloads implemented in Windows containers. See
-[Windows in Kubernetes](/docs/setup/production-environment/windows/) for details.
+  add nodes by setting up your own machines and either adding them manually or
+  having them register themselves to the cluster’s apiserver. See the
+  [Nodes](/docs/concepts/architecture/nodes/) section for information on how to set up Kubernetes to add nodes in these ways.
 - *Scale nodes*: Have a plan for expanding the capacity your cluster will
-eventually need. See [Considerations for large clusters](/docs/setup/best-practices/cluster-large/)
-to help determine how many nodes you need, based on the number of pods and
-containers you need to run. If you are managing nodes yourself, this can mean
-purchasing and installing your own physical equipment.
+  eventually need. See [Considerations for large clusters](/docs/setup/best-practices/cluster-large/)
+  to help determine how many nodes you need, based on the number of pods and
+  containers you need to run. If you are managing nodes yourself, this can mean
+  purchasing and installing your own physical equipment.
 - *Autoscale nodes*: Most cloud providers support
-[Cluster Autoscaler](https://github.com/kubernetes/autoscaler/tree/master/cluster-autoscaler#readme)
-to replace unhealthy nodes or grow and shrink the number of nodes as demand requires. See the
-[Frequently Asked Questions](https://github.com/kubernetes/autoscaler/blob/master/cluster-autoscaler/FAQ.md)
-for how the autoscaler works and
-[Deployment](https://github.com/kubernetes/autoscaler/tree/master/cluster-autoscaler#deployment)
-for how it is implemented by different cloud providers. For on-premises, there
-are some virtualization platforms that can be scripted to spin up new nodes
-based on demand.
+  [Cluster Autoscaler](https://github.com/kubernetes/autoscaler/tree/master/cluster-autoscaler#readme)
+  to replace unhealthy nodes or grow and shrink the number of nodes as demand requires. See the
+  [Frequently Asked Questions](https://github.com/kubernetes/autoscaler/blob/master/cluster-autoscaler/FAQ.md)
+  for how the autoscaler works and
+  [Deployment](https://github.com/kubernetes/autoscaler/tree/master/cluster-autoscaler#deployment)
+  for how it is implemented by different cloud providers. For on-premises, there
+  are some virtualization platforms that can be scripted to spin up new nodes
+  based on demand.
 - *Set up node health checks*: For important workloads, you want to make sure
-that the nodes and pods running on those nodes are healthy. Using the
-[Node Problem Detector](/docs/tasks/debug-application-cluster/monitor-node-health/)
-daemon, you can ensure your nodes are healthy.
+  that the nodes and pods running on those nodes are healthy. Using the
+  [Node Problem Detector](/docs/tasks/debug/debug-cluster/monitor-node-health/)
+  daemon, you can ensure your nodes are healthy.
 
 ## Production user management
 
@@ -215,39 +212,51 @@ cluster (authentication) and deciding if they have permissions to do what they
 are asking (authorization):
 
 - *Authentication*: The apiserver can authenticate users using client
-certificates, bearer tokens, an authenticating proxy, or HTTP basic auth.
-You can choose which authentication methods you want to use.
-Using plugins, the apiserver can leverage your organization’s existing
-authentication methods, such as LDAP or Kerberos. See
-[Authentication](/docs/reference/access-authn-authz/authentication/)
-for a description of these different methods of authenticating Kubernetes users.
-- *Authorization*: When you set out to authorize your regular users, you will probably choose between RBAC and ABAC authorization. See [Authorization Overview](/docs/reference/access-authn-authz/authorization/) to review different modes for authorizing user accounts (as well as service account access to your cluster):
-  - *Role-based access control* ([RBAC](/docs/reference/access-authn-authz/rbac/)): Lets you assign access to your cluster by allowing specific sets of permissions to authenticated users. Permissions can be assigned for a specific namespace (Role) or across the entire cluster (ClusterRole). Then using RoleBindings and ClusterRoleBindings, those permissions can be attached to particular users.
-  - *Attribute-based access control* ([ABAC](/docs/reference/access-authn-authz/abac/)): Lets you create policies based on resource attributes in the cluster and will allow or deny access based on those attributes. Each line of a policy file identifies versioning properties (apiVersion and kind) and a map of spec properties to match the subject (user or group), resource property, non-resource property (/version or /apis), and readonly. See [Examples](/docs/reference/access-authn-authz/abac/#examples) for details.
+  certificates, bearer tokens, an authenticating proxy, or HTTP basic auth.
+  You can choose which authentication methods you want to use.
+  Using plugins, the apiserver can leverage your organization’s existing
+  authentication methods, such as LDAP or Kerberos. See
+  [Authentication](/docs/reference/access-authn-authz/authentication/)
+  for a description of these different methods of authenticating Kubernetes users.
+- *Authorization*: When you set out to authorize your regular users, you will probably choose
+  between RBAC and ABAC authorization. See [Authorization Overview](/docs/reference/access-authn-authz/authorization/)
+  to review different modes for authorizing user accounts (as well as service account access to
+  your cluster):
+  - *Role-based access control* ([RBAC](/docs/reference/access-authn-authz/rbac/)): Lets you
+    assign access to your cluster by allowing specific sets of permissions to authenticated users.
+    Permissions can be assigned for a specific namespace (Role) or across the entire cluster
+    (ClusterRole). Then using RoleBindings and ClusterRoleBindings, those permissions can be attached
+    to particular users.
+  - *Attribute-based access control* ([ABAC](/docs/reference/access-authn-authz/abac/)): Lets you
+    create policies based on resource attributes in the cluster and will allow or deny access
+    based on those attributes. Each line of a policy file identifies versioning properties (apiVersion
+    and kind) and a map of spec properties to match the subject (user or group), resource property,
+    non-resource property (/version or /apis), and readonly. See
+    [Examples](/docs/reference/access-authn-authz/abac/#examples) for details.
 
 As someone setting up authentication and authorization on your production Kubernetes cluster, here are some things to consider:
 
 - *Set the authorization mode*: When the Kubernetes API server
-([kube-apiserver](/docs/reference/command-line-tools-reference/kube-apiserver/))
-starts, the supported authentication modes must be set using the *--authorization-mode*
-flag. For example, that flag in the *kube-adminserver.yaml* file (in */etc/kubernetes/manifests*)
-could be set to Node,RBAC. This would allow Node and RBAC authorization for authenticated requests.
+  ([kube-apiserver](/docs/reference/command-line-tools-reference/kube-apiserver/))
+  starts, the supported authentication modes must be set using the *--authorization-mode*
+  flag. For example, that flag in the *kube-adminserver.yaml* file (in */etc/kubernetes/manifests*)
+  could be set to Node,RBAC. This would allow Node and RBAC authorization for authenticated requests.
 - *Create user certificates and role bindings (RBAC)*: If you are using RBAC
-authorization, users can create a CertificateSigningRequest (CSR) that can be
-signed by the cluster CA. Then you can bind Roles and ClusterRoles to each user.
-See [Certificate Signing Requests](/docs/reference/access-authn-authz/certificate-signing-requests/)
-for details.
+  authorization, users can create a CertificateSigningRequest (CSR) that can be
+  signed by the cluster CA. Then you can bind Roles and ClusterRoles to each user.
+  See [Certificate Signing Requests](/docs/reference/access-authn-authz/certificate-signing-requests/)
+  for details.
 - *Create policies that combine attributes (ABAC)*: If you are using ABAC
-authorization, you can assign combinations of attributes to form policies to
-authorize selected users or groups to access particular resources (such as a
-pod), namespace, or apiGroup. For more information, see
-[Examples](/docs/reference/access-authn-authz/abac/#examples).
+  authorization, you can assign combinations of attributes to form policies to
+  authorize selected users or groups to access particular resources (such as a
+  pod), namespace, or apiGroup. For more information, see
+  [Examples](/docs/reference/access-authn-authz/abac/#examples).
 - *Consider Admission Controllers*: Additional forms of authorization for
-requests that can come in through the API server include
-[Webhook Token Authentication](/docs/reference/access-authn-authz/authentication/#webhook-token-authentication).
-Webhooks and other special authorization types need to be enabled by adding
-[Admission Controllers](/docs/reference/access-authn-authz/admission-controllers/)
-to the API server.
+  requests that can come in through the API server include
+  [Webhook Token Authentication](/docs/reference/access-authn-authz/authentication/#webhook-token-authentication).
+  Webhooks and other special authorization types need to be enabled by adding
+  [Admission Controllers](/docs/reference/access-authn-authz/admission-controllers/)
+  to the API server.
 
 ## Set limits on workload resources
 
@@ -256,38 +265,45 @@ of the Kubernetes control plane. Consider these items when setting up for the
 needs of your cluster's workloads:
 
 - *Set namespace limits*: Set per-namespace quotas on things like memory and CPU. See
-[Manage Memory, CPU, and API Resources](/docs/tasks/administer-cluster/manage-resources/)
-for details. You can also set
-[Hierarchical Namespaces](/blog/2020/08/14/introducing-hierarchical-namespaces/)
-for inheriting limits.
+  [Manage Memory, CPU, and API Resources](/docs/tasks/administer-cluster/manage-resources/)
+  for details. You can also set
+  [Hierarchical Namespaces](/blog/2020/08/14/introducing-hierarchical-namespaces/)
+  for inheriting limits.
 - *Prepare for DNS demand*: If you expect workloads to massively scale up,
-your DNS service must be ready to scale up as well. See
-[Autoscale the DNS service in a Cluster](/docs/tasks/administer-cluster/dns-horizontal-autoscaling/).
+  your DNS service must be ready to scale up as well. See
+  [Autoscale the DNS service in a Cluster](/docs/tasks/administer-cluster/dns-horizontal-autoscaling/).
 - *Create additional service accounts*: User accounts determine what users can
-do on a cluster, while a service account defines pod access within a particular
-namespace. By default, a pod takes on the default service account from its namespace.
-See [Managing Service Accounts](/docs/reference/access-authn-authz/service-accounts-admin/)
-for information on creating a new service account. For example, you might want to:
-  - Add secrets that a pod could use to pull images from a particular container registry. See [Configure Service Accounts for Pods](/docs/tasks/configure-pod-container/configure-service-account/) for an example.
-  - Assign RBAC permissions to a service account. See [ServiceAccount permissions](/docs/reference/access-authn-authz/rbac/#service-account-permissions) for details.
+  do on a cluster, while a service account defines pod access within a particular
+  namespace. By default, a pod takes on the default service account from its namespace.
+  See [Managing Service Accounts](/docs/reference/access-authn-authz/service-accounts-admin/)
+  for information on creating a new service account. For example, you might want to:
+  - Add secrets that a pod could use to pull images from a particular container registry. See
+    [Configure Service Accounts for Pods](/docs/tasks/configure-pod-container/configure-service-account/)
+    for an example.
+  - Assign RBAC permissions to a service account. See
+    [ServiceAccount permissions](/docs/reference/access-authn-authz/rbac/#service-account-permissions)
+    for details.
 
 ## {{% heading "whatsnext" %}}
 
 - Decide if you want to build your own production Kubernetes or obtain one from
-available [Turnkey Cloud Solutions](/docs/setup/production-environment/turnkey-solutions/)
-or [Kubernetes Partners](https://kubernetes.io/partners/).
+  available [Turnkey Cloud Solutions](/docs/setup/production-environment/turnkey-solutions/)
+  or [Kubernetes Partners](/partners/).
 - If you choose to build your own cluster, plan how you want to
-handle [certificates](/docs/setup/best-practices/certificates/)
-and set up high availability for features such as
-[etcd](/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm/)
-and the
-[API server](/docs/setup/production-environment/tools/kubeadm/ha-topology/).
-- Choose from [kubeadm](/docs/setup/production-environment/tools/kubeadm/), [kops](/docs/setup/production-environment/tools/kops/) or [Kubespray](/docs/setup/production-environment/tools/kubespray/)
-deployment methods.
+  handle [certificates](/docs/setup/best-practices/certificates/)
+  and set up high availability for features such as
+  [etcd](/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm/)
+  and the
+  [API server](/docs/setup/production-environment/tools/kubeadm/ha-topology/).
+- Choose from [kubeadm](/docs/setup/production-environment/tools/kubeadm/),
+  [kops](/docs/setup/production-environment/tools/kops/) or
+  [Kubespray](/docs/setup/production-environment/tools/kubespray/)
+  deployment methods.
 - Configure user management by determining your
-[Authentication](/docs/reference/access-authn-authz/authentication/) and
-[Authorization](/docs/reference/access-authn-authz/authorization/) methods.
+  [Authentication](/docs/reference/access-authn-authz/authentication/) and
+  [Authorization](/docs/reference/access-authn-authz/authorization/) methods.
 - Prepare for application workloads by setting up
-[resource limits](/docs/tasks/administer-cluster/manage-resources/),
-[DNS autoscaling](/docs/tasks/administer-cluster/dns-horizontal-autoscaling/)
-and [service accounts](/docs/reference/access-authn-authz/service-accounts-admin/).
+  [resource limits](/docs/tasks/administer-cluster/manage-resources/),
+  [DNS autoscaling](/docs/tasks/administer-cluster/dns-horizontal-autoscaling/)
+  and [service accounts](/docs/reference/access-authn-authz/service-accounts-admin/).
+
diff --git a/content/en/docs/setup/production-environment/container-runtimes.md b/content/en/docs/setup/production-environment/container-runtimes.md
index fa72d04ced..44f098ccfc 100644
--- a/content/en/docs/setup/production-environment/container-runtimes.md
+++ b/content/en/docs/setup/production-environment/container-runtimes.md
@@ -2,33 +2,90 @@
 reviewers:
 - vincepri
 - bart0sh
-title: Container runtimes
+title: Container Runtimes
 content_type: concept
 weight: 20
 ---
 <!-- overview -->
 
+{{% dockershim-removal %}}
+
 You need to install a
 {{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}
 into each node in the cluster so that Pods can run there. This page outlines
 what is involved and describes related tasks for setting up nodes.
 
-<!-- body -->
+Kubernetes {{< skew currentVersion >}} requires that you use a runtime that
+conforms with the
+{{< glossary_tooltip term_id="cri" text="Container Runtime Interface">}} (CRI).
 
-This page lists details for using several common container runtimes with
-Kubernetes, on Linux:
+See [CRI version support](#cri-versions) for more information.
+
+This page provides an outline of how to use several common container runtimes with
+Kubernetes.
 
 - [containerd](#containerd)
 - [CRI-O](#cri-o)
-- [Docker](#docker)
+- [Docker Engine](#docker)
+- [Mirantis Container Runtime](#mcr)
 
 {{< note >}}
-For other operating systems, look for documentation specific to your platform.
+Kubernetes releases before v1.24 included a direct integration with Docker Engine,
+using a component named _dockershim_. That special direct integration is no longer
+part of Kubernetes (this removal was
+[announced](/blog/2020/12/08/kubernetes-1-20-release-announcement/#dockershim-deprecation)
+as part of the v1.20 release).
+You can read
+[Check whether Dockershim removal affects you](/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you/)
+to understand how this removal might affect you. To learn about migrating from using dockershim, see
+[Migrating from dockershim](/docs/tasks/administer-cluster/migrating-from-dockershim/).
+
+If you are running a version of Kubernetes other than v{{< skew currentVersion >}},
+check the documentation for that version.
 {{< /note >}}
 
+
+<!-- body -->
+## Install and configure prerequisites
+
+The following steps apply common settings for Kubernetes nodes on Linux. 
+
+You can skip a particular setting if you're certain you don't need it.
+
+For more information, see [Network Plugin Requirements](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/#network-plugin-requirements) or the documentation for your specific container runtime.
+
+### Forwarding IPv4 and letting iptables see bridged traffic
+
+Verify that the `br_netfilter` module is loaded by running `lsmod | grep br_netfilter`. 
+
+To load it explicitly, run `sudo modprobe br_netfilter`.
+
+In order for a Linux node's iptables to correctly view bridged traffic, verify that `net.bridge.bridge-nf-call-iptables` is set to 1 in your `sysctl` config. For example:
+
+```bash
+cat <<EOF | sudo tee /etc/modules-load.d/k8s.conf
+overlay
+br_netfilter
+EOF
+
+sudo modprobe overlay
+sudo modprobe br_netfilter
+
+# sysctl params required by setup, params persist across reboots
+cat <<EOF | sudo tee /etc/sysctl.d/k8s.conf
+net.bridge.bridge-nf-call-iptables  = 1
+net.bridge.bridge-nf-call-ip6tables = 1
+net.ipv4.ip_forward                 = 1
+EOF
+
+# Apply sysctl params without reboot
+sudo sysctl --system
+```
+
 ## Cgroup drivers
 
-Control groups are used to constrain resources that are allocated to processes.
+On Linux, {{< glossary_tooltip text="control groups" term_id="cgroup" >}}
+are used to constrain resources that are allocated to processes.
 
 When [systemd](https://www.freedesktop.org/wiki/Software/systemd/) is chosen as the init
 system for a Linux distribution, the init process generates and consumes a root control group
@@ -57,7 +114,7 @@ If you have automation that makes it feasible, replace the node with another usi
 configuration, or reinstall it using automation.
 {{< /caution >}}
 
-## Cgroup v2
+### Cgroup version 2 {#cgroup-v2}
 
 Cgroup v2 is the next version of the cgroup Linux API.  Differently than cgroup v1, there is a single
 hierarchy instead of a different one for each controller.
@@ -76,13 +133,17 @@ If systemd doesn't use cgroup v2 by default, you can configure the system to use
 `systemd.unified_cgroup_hierarchy=1` to the kernel command line.
 
 ```shell
-# dnf install -y grubby && \
+# This example is for a Linux OS that uses the DNF package manager
+# Your system might use a different method for setting the command line
+# that the Linux kernel uses.
+sudo dnf install -y grubby && \
   sudo grubby \
   --update-kernel=ALL \
-  --args=”systemd.unified_cgroup_hierarchy=1"
+  --args="systemd.unified_cgroup_hierarchy=1"
 ```
 
-To apply the configuration, it is necessary to reboot the node.
+If you change the command line for the kernel, you must reboot the node before your
+change takes effect.
 
 There should not be any noticeable difference in the user experience when switching to cgroup v2, unless
 users are accessing the cgroup file system directly, either on the node or from within the containers.
@@ -91,8 +152,16 @@ In order to use it, cgroup v2 must be supported by the CRI runtime as well.
 
 ### Migrating to the `systemd` driver in kubeadm managed clusters
 
-Follow this [Migration guide](/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver/)
-if you wish to migrate to the `systemd` cgroup driver in existing kubeadm managed clusters.
+If you wish to migrate to the `systemd` cgroup driver in existing kubeadm managed clusters,
+follow [configuring a cgroup driver](/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver/).
+
+## CRI version support {#cri-versions}
+
+Your container runtime must support at least v1alpha2 of the container runtime interface.
+
+Kubernetes {{< skew currentVersion >}}  defaults to using v1 of the CRI API.
+If a container runtime does not support the v1 API, the kubelet falls back to
+using the (deprecated) v1alpha2 API instead.
 
 ## Container runtimes
 
@@ -100,95 +169,25 @@ if you wish to migrate to the `systemd` cgroup driver in existing kubeadm manage
 
 ### containerd
 
-This section contains the necessary steps to use containerd as CRI runtime.
+This section outlines the necessary steps to use containerd as CRI runtime.
 
 Use the following commands to install Containerd on your system:
 
-Install and configure prerequisites:
+Follow the instructions for [getting started with containerd](https://github.com/containerd/containerd/blob/main/docs/getting-started.md). Return to this step once you've created a valid configuration file, `config.toml`. 
 
-```shell
-cat <<EOF | sudo tee /etc/modules-load.d/containerd.conf
-overlay
-br_netfilter
-EOF
-
-sudo modprobe overlay
-sudo modprobe br_netfilter
-
-# Setup required sysctl params, these persist across reboots.
-cat <<EOF | sudo tee /etc/sysctl.d/99-kubernetes-cri.conf
-net.bridge.bridge-nf-call-iptables  = 1
-net.ipv4.ip_forward                 = 1
-net.bridge.bridge-nf-call-ip6tables = 1
-EOF
-
-# Apply sysctl params without reboot
-sudo sysctl --system
-```
-
-Install containerd:
-
-{{< tabs name="tab-cri-containerd-installation" >}}
+{{< tabs name="Finding your config.toml file" >}}
 {{% tab name="Linux" %}}
-
-1. Install the `containerd.io` package from the official Docker repositories. 
-Instructions for setting up the Docker repository for your respective Linux distribution and 
-installing the `containerd.io` package can be found at 
-[Install Docker Engine](https://docs.docker.com/engine/install/#server).
-
-2. Configure containerd:
-
-   ```shell
-   sudo mkdir -p /etc/containerd
-   containerd config default | sudo tee /etc/containerd/config.toml
-   ```
-
-3. Restart containerd:
-
-   ```shell
-   sudo systemctl restart containerd
-   ```
-
+You can find this file under the path `/etc/containerd/config.toml`.
 {{% /tab %}}
-{{% tab name="Windows (PowerShell)" %}}
-
-Start a Powershell session, set `$Version` to the desired version (ex: `$Version=1.4.3`), 
-and then run the following commands:
-
-1. Download containerd:
-
-   ```powershell
-   curl.exe -L https://github.com/containerd/containerd/releases/download/v$Version/containerd-$Version-windows-amd64.tar.gz -o containerd-windows-amd64.tar.gz
-   tar.exe xvf .\containerd-windows-amd64.tar.gz
-   ```
-
-2. Extract and configure:
-
-   ```powershell
-   Copy-Item -Path ".\bin\" -Destination "$Env:ProgramFiles\containerd" -Recurse -Force
-   cd $Env:ProgramFiles\containerd\
-   .\containerd.exe config default | Out-File config.toml -Encoding ascii
-
-   # Review the configuration. Depending on setup you may want to adjust:
-   # - the sandbox_image (Kubernetes pause image)
-   # - cni bin_dir and conf_dir locations
-   Get-Content config.toml
-
-   # (Optional - but highly recommended) Exclude containerd from Windows Defender Scans
-   Add-MpPreference -ExclusionProcess "$Env:ProgramFiles\containerd\containerd.exe"
-   ```
-
-3. Start containerd:
-
-   ```powershell
-   .\containerd.exe --register-service
-   Start-Service containerd
-   ```
-
+{{% tab name="Windows" %}}
+You can find this file under the path `C:\Program Files\containerd\config.toml`.
 {{% /tab %}}
 {{< /tabs >}}
 
-#### Using the `systemd` cgroup driver {#containerd-systemd}
+On Linux the default CRI socket for containerd is `/run/containerd/containerd.sock`.
+On Windows the default CRI endpoint is `npipe://./pipe/containerd-containerd`.
+
+#### Configuring the `systemd` cgroup driver {#containerd-systemd}
 
 To use the `systemd` cgroup driver in `/etc/containerd/config.toml` with `runc`, set
 
@@ -198,190 +197,48 @@ To use the `systemd` cgroup driver in `/etc/containerd/config.toml` with `runc`,
   [plugins."io.containerd.grpc.v1.cri".containerd.runtimes.runc.options]
     SystemdCgroup = true
 ```
+{{< note >}}
+If you installed containerd from a package (for example, RPM or `.deb`), you may find
+that the CRI integration plugin is disabled by default.
 
-If you apply this change make sure to restart containerd again:
+You need CRI support enabled to use containerd with Kubernetes. Make sure that `cri`
+is not included in the`disabled_plugins` list within `/etc/containerd/config.toml`;
+if you made changes to that file, also restart `containerd`.
+{{< /note >}}
+
+If you apply this change, make sure to restart containerd:
 
 ```shell
 sudo systemctl restart containerd
 ```
 
 When using kubeadm, manually configure the
-[cgroup driver for kubelet](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#configure-cgroup-driver-used-by-kubelet-on-control-plane-node).
+[cgroup driver for kubelet](/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver/#configuring-the-kubelet-cgroup-driver).
+
+#### Overriding the sandbox (pause) image {#override-pause-image-containerd}
+
+In your [containerd config](https://github.com/containerd/containerd/blob/main/docs/cri/config.md) you can overwrite the
+sandbox image by setting the following config:
+
+```toml
+[plugins."io.containerd.grpc.v1.cri"]
+  sandbox_image = "k8s.gcr.io/pause:3.2"
+```
+
+You might need to restart `containerd` as well once you've updated the config file: `systemctl restart containerd`.
 
 ### CRI-O
 
 This section contains the necessary steps to install CRI-O as a container runtime.
 
-Use the following commands to install CRI-O on your system:
-
-{{< note >}}
-The CRI-O major and minor versions must match the Kubernetes major and minor versions.
-For more information, see the [CRI-O compatibility matrix](https://github.com/cri-o/cri-o#compatibility-matrix-cri-o--kubernetes).
-{{< /note >}}
-
-Install and configure prerequisites:
-
-```shell
-# Create the .conf file to load the modules at bootup
-cat <<EOF | sudo tee /etc/modules-load.d/crio.conf
-overlay
-br_netfilter
-EOF
-
-sudo modprobe overlay
-sudo modprobe br_netfilter
-
-# Set up required sysctl params, these persist across reboots.
-cat <<EOF | sudo tee /etc/sysctl.d/99-kubernetes-cri.conf
-net.bridge.bridge-nf-call-iptables  = 1
-net.ipv4.ip_forward                 = 1
-net.bridge.bridge-nf-call-ip6tables = 1
-EOF
-
-sudo sysctl --system
-```
-
-{{< tabs name="tab-cri-cri-o-installation" >}}
-{{% tab name="Debian" %}}
-
-To install CRI-O on the following operating systems, set the environment variable `OS`
-to the appropriate value from the following table:
-
-| Operating system | `$OS`             |
-| ---------------- | ----------------- |
-| Debian Unstable  | `Debian_Unstable` |
-| Debian Testing   | `Debian_Testing`  |
-
-<br />
-Then, set `$VERSION` to the CRI-O version that matches your Kubernetes version.
-For instance, if you want to install CRI-O 1.20, set `VERSION=1.20`.
-You can pin your installation to a specific release.
-To install version 1.20.0, set `VERSION=1.20:1.20.0`.
-<br />
-
-Then run
-```shell
-cat <<EOF | sudo tee /etc/apt/sources.list.d/devel:kubic:libcontainers:stable.list
-deb https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/$OS/ /
-EOF
-cat <<EOF | sudo tee /etc/apt/sources.list.d/devel:kubic:libcontainers:stable:cri-o:$VERSION.list
-deb http://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable:/cri-o:/$VERSION/$OS/ /
-EOF
-
-curl -L https://download.opensuse.org/repositories/devel:kubic:libcontainers:stable:cri-o:$VERSION/$OS/Release.key | sudo apt-key --keyring /etc/apt/trusted.gpg.d/libcontainers.gpg add -
-curl -L https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/$OS/Release.key | sudo apt-key --keyring /etc/apt/trusted.gpg.d/libcontainers.gpg add -
-
-sudo apt-get update
-sudo apt-get install cri-o cri-o-runc
-```
-
-{{% /tab %}}
-
-{{% tab name="Ubuntu" %}}
-
-To install on the following operating systems, set the environment variable `OS` 
-to the appropriate field in the following table:
-
-| Operating system | `$OS`             |
-| ---------------- | ----------------- |
-| Ubuntu 20.04     | `xUbuntu_20.04`   |
-| Ubuntu 19.10     | `xUbuntu_19.10`   |
-| Ubuntu 19.04     | `xUbuntu_19.04`   |
-| Ubuntu 18.04     | `xUbuntu_18.04`   |
-
-<br />
-Then, set `$VERSION` to the CRI-O version that matches your Kubernetes version.
-For instance, if you want to install CRI-O 1.20, set `VERSION=1.20`.
-You can pin your installation to a specific release.
-To install version 1.20.0, set `VERSION=1.20:1.20.0`.
-<br />
-
-Then run
-```shell
-cat <<EOF | sudo tee /etc/apt/sources.list.d/devel:kubic:libcontainers:stable.list
-deb https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/$OS/ /
-EOF
-cat <<EOF | sudo tee /etc/apt/sources.list.d/devel:kubic:libcontainers:stable:cri-o:$VERSION.list
-deb http://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable:/cri-o:/$VERSION/$OS/ /
-EOF
-
-curl -L https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/$OS/Release.key | sudo apt-key --keyring /etc/apt/trusted.gpg.d/libcontainers.gpg add -
-curl -L https://download.opensuse.org/repositories/devel:kubic:libcontainers:stable:cri-o:$VERSION/$OS/Release.key | sudo apt-key --keyring /etc/apt/trusted.gpg.d/libcontainers-cri-o.gpg add -
-
-sudo apt-get update
-sudo apt-get install cri-o cri-o-runc
-```
-{{% /tab %}}
-
-{{% tab name="CentOS" %}}
-
-To install on the following operating systems, set the environment variable `OS` 
-to the appropriate field in the following table:
-
-| Operating system | `$OS`             |
-| ---------------- | ----------------- |
-| Centos 8         | `CentOS_8`        |
-| Centos 8 Stream  | `CentOS_8_Stream` |
-| Centos 7         | `CentOS_7`        |
-
-<br />
-Then, set `$VERSION` to the CRI-O version that matches your Kubernetes version.
-For instance, if you want to install CRI-O 1.20, set `VERSION=1.20`.
-You can pin your installation to a specific release.
-To install version 1.20.0, set `VERSION=1.20:1.20.0`.
-<br />
-
-Then run
-```shell
-sudo curl -L -o /etc/yum.repos.d/devel:kubic:libcontainers:stable.repo https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/$OS/devel:kubic:libcontainers:stable.repo
-sudo curl -L -o /etc/yum.repos.d/devel:kubic:libcontainers:stable:cri-o:$VERSION.repo https://download.opensuse.org/repositories/devel:kubic:libcontainers:stable:cri-o:$VERSION/$OS/devel:kubic:libcontainers:stable:cri-o:$VERSION.repo
-sudo yum install cri-o
-```
-
-{{% /tab %}}
-
-{{% tab name="openSUSE Tumbleweed" %}}
-
-```shell
-sudo zypper install cri-o
-```
-{{% /tab %}}
-{{% tab name="Fedora" %}}
-
-Set `$VERSION` to the CRI-O version that matches your Kubernetes version.
-For instance, if you want to install CRI-O 1.20, `VERSION=1.20`.
-
-You can find available versions with:
-```shell
-sudo dnf module list cri-o
-```
-CRI-O does not support pinning to specific releases on Fedora.
-
-Then run
-```shell
-sudo dnf module enable cri-o:$VERSION
-sudo dnf install cri-o
-```
-
-{{% /tab %}}
-{{< /tabs >}}
-
-Start CRI-O:
-
-```shell
-sudo systemctl daemon-reload
-sudo systemctl enable crio --now
-```
-
-Refer to the [CRI-O installation guide](https://github.com/cri-o/cri-o/blob/master/install.md)
-for more information.
-
+To install CRI-O, follow [CRI-O Install Instructions](https://github.com/cri-o/cri-o/blob/main/install.md#readme).
 
 #### cgroup driver
 
-CRI-O uses the systemd cgroup driver per default. To switch to the `cgroupfs`
-cgroup driver, either edit `/etc/crio/crio.conf` or place a drop-in
-configuration in `/etc/crio/crio.conf.d/02-cgroup-manager.conf`, for example:
+CRI-O uses the systemd cgroup driver per default, which is likely to work fine
+for you. To switch to the `cgroupfs` cgroup driver, either edit
+`/etc/crio/crio.conf` or place a drop-in configuration in
+`/etc/crio/crio.conf.d/02-cgroup-manager.conf`, for example:
 
 ```toml
 [crio.runtime]
@@ -389,49 +246,69 @@ conmon_cgroup = "pod"
 cgroup_manager = "cgroupfs"
 ```
 
-Please also note the changed `conmon_cgroup`, which has to be set to the value
+You should also note the changed `conmon_cgroup`, which has to be set to the value
 `pod` when using CRI-O with `cgroupfs`. It is generally necessary to keep the
 cgroup driver configuration of the kubelet (usually done via kubeadm) and CRI-O
 in sync.
 
-### Docker
+For CRI-O, the CRI socket is `/var/run/crio/crio.sock` by default.
 
-1. On each of your nodes, install the Docker for your Linux distribution as per 
-[Install Docker Engine](https://docs.docker.com/engine/install/#server). 
-You can find the latest validated version of Docker in this 
-[dependencies](https://git.k8s.io/kubernetes/build/dependencies.yaml) file.
+#### Overriding the sandbox (pause) image {#override-pause-image-cri-o}
 
-2. Configure the Docker daemon, in particular to use systemd for the management of the container’s cgroups.
+In your [CRI-O config](https://github.com/cri-o/cri-o/blob/main/docs/crio.conf.5.md) you can set the following
+config value:
 
-   ```shell
-   sudo mkdir /etc/docker
-   cat <<EOF | sudo tee /etc/docker/daemon.json
-   {
-     "exec-opts": ["native.cgroupdriver=systemd"],
-     "log-driver": "json-file",
-     "log-opts": {
-       "max-size": "100m"
-     },
-     "storage-driver": "overlay2"
-   }
-   EOF
-   ```
+```toml
+[crio.image]
+pause_image="registry.k8s.io/pause:3.6"
+```
 
-   {{< note >}}
-   `overlay2` is the preferred storage driver for systems running Linux kernel version 4.0 or higher, 
-   or RHEL or CentOS using version 3.10.0-514 and above.
-   {{< /note >}}
+This config option supports live configuration reload to apply this change: `systemctl reload crio` or by sending
+`SIGHUP` to the `crio` process.
 
-3. Restart Docker and enable on boot:
-
-   ```shell
-   sudo systemctl enable docker
-   sudo systemctl daemon-reload
-   sudo systemctl restart docker
-   ```
+### Docker Engine {#docker}
 
 {{< note >}}
-For more information refer to
-  - [Configure the Docker daemon](https://docs.docker.com/config/daemon/)
-  - [Control Docker with systemd](https://docs.docker.com/config/daemon/systemd/)
+These instructions assume that you are using the
+[`cri-dockerd`](https://github.com/Mirantis/cri-dockerd) adapter to integrate
+Docker Engine with Kubernetes.
 {{< /note >}}
+
+1. On each of your nodes, install Docker for your Linux distribution as per
+  [Install Docker Engine](https://docs.docker.com/engine/install/#server).
+
+2. Install [`cri-dockerd`](https://github.com/Mirantis/cri-dockerd), following
+   the instructions in that source code repository.
+
+For `cri-dockerd`, the CRI socket is `/run/cri-dockerd.sock` by default.
+
+#### Overriding the sandbox (pause) image {#override-pause-image-cri-dockerd}
+
+The `cri-dockerd` adapter accepts a command line argument for
+specifying which container image to use as the Pod infrastructure container (“pause image”).
+The command line argument to use is `--pod-infra-container-image`.
+
+### Mirantis Container Runtime {#mcr}
+
+[Mirantis Container Runtime](https://docs.mirantis.com/mcr/20.10/overview.html) (MCR) is a commercially
+available container runtime that was formerly known as Docker Enterprise Edition.
+
+You can use Mirantis Container Runtime with Kubernetes using the open source
+[`cri-dockerd`](https://github.com/Mirantis/cri-dockerd) component, included with MCR.
+
+To learn more about how to install Mirantis Container Runtime,
+visit [MCR Deployment Guide](https://docs.mirantis.com/mcr/20.10/install.html).
+
+Check the systemd unit named `cri-docker.socket` to find out the path to the CRI
+socket.
+
+#### Overriding the sandbox (pause) image {#override-pause-image-cri-dockerd-mcr}
+
+The `cri-dockerd` adapter accepts a command line argument for
+specifying which container image to use as the Pod infrastructure container (“pause image”).
+The command line argument to use is `--pod-infra-container-image`.
+
+## {{% heading "whatsnext" %}}
+
+As well as a container runtime, your cluster will need a working
+[network plugin](/docs/concepts/cluster-administration/networking/#how-to-implement-the-kubernetes-networking-model).
diff --git a/content/en/docs/setup/production-environment/tools/kops.md b/content/en/docs/setup/production-environment/tools/kops.md
index cf5333a92d..0575986ebd 100644
--- a/content/en/docs/setup/production-environment/tools/kops.md
+++ b/content/en/docs/setup/production-environment/tools/kops.md
@@ -231,7 +231,7 @@ See the [list of add-ons](/docs/concepts/cluster-administration/addons/) to expl
 ## {{% heading "whatsnext" %}}
 
 
-* Learn more about Kubernetes [concepts](/docs/concepts/) and [`kubectl`](/docs/reference/kubectl/overview/).
+* Learn more about Kubernetes [concepts](/docs/concepts/) and [`kubectl`](/docs/reference/kubectl/).
 * Learn more about `kops` [advanced usage](https://kops.sigs.k8s.io/) for tutorials, best practices and advanced configuration options.
 * Follow `kops` community discussions on Slack: [community discussions](https://github.com/kubernetes/kops#other-ways-to-communicate-with-the-contributors)
 * Contribute to `kops` by addressing or raising an issue [GitHub Issues](https://github.com/kubernetes/kops/issues)
diff --git a/content/en/docs/setup/production-environment/tools/kubeadm/control-plane-flags.md b/content/en/docs/setup/production-environment/tools/kubeadm/control-plane-flags.md
index 58086c1eef..f15315f3ad 100644
--- a/content/en/docs/setup/production-environment/tools/kubeadm/control-plane-flags.md
+++ b/content/en/docs/setup/production-environment/tools/kubeadm/control-plane-flags.md
@@ -9,7 +9,7 @@ weight: 40
 <!-- overview -->
 
 This page covers how to customize the components that kubeadm deploys. For control plane components
-you can use flags in the `ClusteConfiguration` structure or patches per-node. For the kubelet
+you can use flags in the `ClusterConfiguration` structure or patches per-node. For the kubelet
 and kube-proxy you can use `KubeletConfiguration` and `KubeProxyConfiguration`, accordingly.
 
 All of these options are possible via the kubeadm configuration API.
@@ -24,9 +24,12 @@ you can skip the default CoreDNS deployment and deploy your own variant.
 For more details on that see [Using init phases with kubeadm](/docs/reference/setup-tools/kubeadm/kubeadm-init/#init-phases).
 {{< /note >}}
 
-<!-- body -->
+{{< note >}}
+To reconfigure a cluster that has already been created see
+[Reconfiguring a kubeadm cluster](/docs/tasks/administer-cluster/kubeadm/kubeadm-reconfigure).
+{{< /note >}}
 
-{{< feature-state for_k8s_version="v1.12" state="stable" >}}
+<!-- body -->
 
 ## Customizing the control plane with flags in `ClusterConfiguration`
 
@@ -144,9 +147,8 @@ You can pass this file to `kubeadm init` with `--config <YOUR CONFIG YAML>`:
 ```yaml
 apiVersion: kubeadm.k8s.io/v1beta3
 kind: InitConfiguration
-nodeRegistration:
-  patches:
-    directory: /home/user/somedir
+patches:
+  directory: /home/user/somedir
 ```
 
 {{< note >}}
@@ -159,9 +161,8 @@ You can pass this file to `kubeadm join` with `--config <YOUR CONFIG YAML>`:
 ```yaml
 apiVersion: kubeadm.k8s.io/v1beta3
 kind: JoinConfiguration
-nodeRegistration:
-  patches:
-    directory: /home/user/somedir
+patches:
+  directory: /home/user/somedir
 ```
 
 The directory must contain files named `target[suffix][+patchtype].extension`.
diff --git a/content/en/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm.md b/content/en/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm.md
index 1f107bbc9a..9aa1dfbff5 100644
--- a/content/en/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm.md
+++ b/content/en/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm.md
@@ -11,7 +11,7 @@ weight: 30
 <img src="/images/kubeadm-stacked-color.png" align="right" width="150px"></img>
 Using `kubeadm`, you can create a minimum viable Kubernetes cluster that conforms to best practices.
 In fact, you can use `kubeadm` to set up a cluster that will pass the
-[Kubernetes Conformance tests](https://kubernetes.io/blog/2017/10/software-conformance-certification).
+[Kubernetes Conformance tests](/blog/2017/10/software-conformance-certification/).
 `kubeadm` also supports other cluster lifecycle functions, such as
 [bootstrap tokens](/docs/reference/access-authn-authz/bootstrap-tokens/) and cluster upgrades.
 
@@ -70,19 +70,35 @@ Any commands under `kubeadm alpha` are, by definition, supported on an alpha lev
 
 ## Instructions
 
-### Installing kubeadm on your hosts
+### Preparing the hosts
 
-See ["Installing kubeadm"](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/).
+Install a {{< glossary_tooltip term_id="container-runtime" text="container runtime" >}} and kubeadm on all the hosts.
+For detailed instructions and other prerequisites, see [Installing kubeadm](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/).
 
 {{< note >}}
-If you have already installed kubeadm, run `apt-get update &&
-apt-get upgrade` or `yum update` to get the latest version of kubeadm.
+If you have already installed kubeadm, run
+`apt-get update && apt-get upgrade` or
+`yum update` to get the latest version of kubeadm.
 
 When you upgrade, the kubelet restarts every few seconds as it waits in a crashloop for
 kubeadm to tell it what to do. This crashloop is expected and normal.
 After you initialize your control-plane, the kubelet runs normally.
 {{< /note >}}
 
+### Preparing the required container images
+
+This step is optional and only applies in case you wish `kubeadm init` and `kubeadm join`
+to not download the default container images which are hosted at `k8s.gcr.io`.
+
+Kubeadm has commands that can help you pre-pull the required images
+when creating a cluster without an internet connection on its nodes.
+See [Running kubeadm without an internet connection](/docs/reference/setup-tools/kubeadm/kubeadm-init#without-internet-connection)
+for more details.
+
+Kubeadm allows you to use a custom image repository for the required images.
+See [Using custom images](/docs/reference/setup-tools/kubeadm/kubeadm-init#custom-images)
+for more details.
+
 ### Initializing your control-plane node
 
 The control-plane node is the machine where the control plane components run, including
@@ -98,18 +114,15 @@ for all control-plane nodes. Such an endpoint can be either a DNS name or an IP
 be passed to `kubeadm init`. Depending on which
 third-party provider you choose, you might need to set the `--pod-network-cidr` to
 a provider-specific value. See [Installing a Pod network add-on](#pod-network).
-1. (Optional) Since version 1.14, `kubeadm` tries to detect the container runtime on Linux
-by using a list of well known domain socket paths. To use different container runtime or
-if there are more than one installed on the provisioned node, specify the `--cri-socket`
-argument to `kubeadm init`. See
+1. (Optional) `kubeadm` tries to detect the container runtime by using a list of well
+known endpoints. To use different container runtime or if there are more than one installed
+on the provisioned node, specify the `--cri-socket` argument to `kubeadm`. See
 [Installing a runtime](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#installing-runtime).
 1. (Optional) Unless otherwise specified, `kubeadm` uses the network interface associated
 with the default gateway to set the advertise address for this particular control-plane node's API server.
 To use a different network interface, specify the `--apiserver-advertise-address=<ip-address>` argument
 to `kubeadm init`. To deploy an IPv6 Kubernetes cluster using IPv6 addressing, you
 must specify an IPv6 address, for example `--apiserver-advertise-address=fd00::101`
-1. (Optional) Run `kubeadm config images pull` prior to `kubeadm init` to verify
-connectivity to the gcr.io container image registry.
 
 To initialize the control-plane node run:
 
@@ -151,6 +164,9 @@ To customize control plane components, including optional IPv6 assignment to liv
 for control plane components and etcd server, provide extra arguments to each component as documented in
 [custom arguments](/docs/setup/production-environment/tools/kubeadm/control-plane-flags/).
 
+To reconfigure a cluster that has already been created see
+[Reconfiguring a kubeadm cluster](/docs/tasks/administer-cluster/kubeadm/kubeadm-reconfigure).
+
 To run `kubeadm init` again, you must first [tear down the cluster](#tear-down).
 
 If you join a node with a different architecture to your cluster, make sure that your deployed DaemonSets
@@ -199,7 +215,8 @@ export KUBECONFIG=/etc/kubernetes/admin.conf
 Kubeadm signs the certificate in the `admin.conf` to have `Subject: O = system:masters, CN = kubernetes-admin`.
 `system:masters` is a break-glass, super user group that bypasses the authorization layer (e.g. RBAC).
 Do not share the `admin.conf` file with anyone and instead grant users custom permissions by generating
-them a kubeconfig file using the `kubeadm kubeconfig user` command.
+them a kubeconfig file using the `kubeadm kubeconfig user` command. For more details see
+[Generating kubeconfig files for additional users](/docs/tasks/administer-cluster/kubeadm/kubeadm-certs#kubeconfig-additional-users).
 {{< /warning >}}
 
 Make a record of the `kubeadm join` command that `kubeadm init` outputs. You
@@ -272,28 +289,41 @@ If your network is not working or CoreDNS is not in the `Running` state, check o
 [troubleshooting guide](/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm/)
 for `kubeadm`.
 
+### Managed node labels
+
+By default, kubeadm enables the [NodeRestriction](/docs/reference/access-authn-authz/admission-controllers/#noderestriction)
+admission controller that restricts what labels can be self-applied by kubelets on node registration.
+The admission controller documentation covers what labels are permitted to be used with the kubelet `--node-labels` option.
+The `node-role.kubernetes.io/control-plane` label is such a restricted label and kubeadm manually applies it using
+a privileged client after a node has been created. To do that manually you can do the same by using `kubectl label`
+and ensure it is using a privileged kubeconfig such as the kubeadm managed `/etc/kubernetes/admin.conf`.
+
 ### Control plane node isolation
 
-By default, your cluster will not schedule Pods on the control-plane node for security
-reasons. If you want to be able to schedule Pods on the control-plane node, for example for a
-single-machine Kubernetes cluster for development, run:
+By default, your cluster will not schedule Pods on the control plane nodes for security
+reasons. If you want to be able to schedule Pods on the control plane nodes,
+for example for a single machine Kubernetes cluster, run:
 
 ```bash
-kubectl taint nodes --all node-role.kubernetes.io/master-
+kubectl taint nodes --all node-role.kubernetes.io/control-plane- node-role.kubernetes.io/master-
 ```
 
-With output looking something like:
+The output will look something like:
 
 ```
 node "test-01" untainted
-taint "node-role.kubernetes.io/master:" not found
-taint "node-role.kubernetes.io/master:" not found
+...
 ```
 
-This will remove the `node-role.kubernetes.io/master` taint from any nodes that
-have it, including the control-plane node, meaning that the scheduler will then be able
+This will remove the `node-role.kubernetes.io/control-plane` and
+`node-role.kubernetes.io/master` taints from any nodes that have them,
+including the control plane nodes, meaning that the scheduler will then be able
 to schedule Pods everywhere.
 
+{{< note >}}
+The `node-role.kubernetes.io/master` taint is deprecated and kubeadm will stop using it in version 1.25.
+{{< /note >}}
+
 ### Joining your nodes {#join-nodes}
 
 The nodes are where your workloads (containers and Pods, etc) run. To add new nodes to your cluster do the following for each machine:
@@ -337,7 +367,8 @@ The output is similar to this:
 5didvk.d09sbcov8ph2amjw
 ```
 
-If you don't have the value of `--discovery-token-ca-cert-hash`, you can get it by running the following command chain on the control-plane node:
+If you don't have the value of `--discovery-token-ca-cert-hash`, you can get it by running the
+following command chain on the control-plane node:
 
 ```bash
 openssl x509 -pubkey -in /etc/kubernetes/pki/ca.crt | openssl rsa -pubin -outform der 2>/dev/null | \
@@ -372,6 +403,12 @@ Run 'kubectl get nodes' on control-plane to see this machine join.
 A few seconds later, you should notice this node in the output from `kubectl get
 nodes` when run on the control-plane node.
 
+{{< note >}}
+As the cluster nodes are usually initialized sequentially, the CoreDNS Pods are likely to all run
+on the first control-plane node. To provide higher availability, please rebalance the CoreDNS Pods
+with `kubectl -n kube-system rollout restart deployment coredns` after at least one new node is joined.
+{{< /note >}}
+
 ### (Optional) Controlling your cluster from machines other than the control-plane node
 
 In order to get a kubectl on some other computer (e.g. laptop) to talk to your
@@ -472,8 +509,8 @@ options.
 * Verify that your cluster is running properly with [Sonobuoy](https://github.com/heptio/sonobuoy)
 * <a id="lifecycle" />See [Upgrading kubeadm clusters](/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
   for details about upgrading your cluster using `kubeadm`.
-* Learn about advanced `kubeadm` usage in the [kubeadm reference documentation](/docs/reference/setup-tools/kubeadm/kubeadm)
-* Learn more about Kubernetes [concepts](/docs/concepts/) and [`kubectl`](/docs/reference/kubectl/overview/).
+* Learn about advanced `kubeadm` usage in the [kubeadm reference documentation](/docs/reference/setup-tools/kubeadm/)
+* Learn more about Kubernetes [concepts](/docs/concepts/) and [`kubectl`](/docs/reference/kubectl/).
 * See the [Cluster Networking](/docs/concepts/cluster-administration/networking/) page for a bigger list
   of Pod network add-ons.
 * <a id="other-addons" />See the [list of add-ons](/docs/concepts/cluster-administration/addons/) to
@@ -497,15 +534,56 @@ options.
 
 ## Version skew policy {#version-skew-policy}
 
-The `kubeadm` tool of version v{{< skew latestVersion >}} may deploy clusters with a control plane of version v{{< skew latestVersion >}} or v{{< skew prevMinorVersion >}}.
-`kubeadm` v{{< skew latestVersion >}} can also upgrade an existing kubeadm-created cluster of version v{{< skew prevMinorVersion >}}.
+While kubeadm allows version skew against some components that it manages, it is recommended that you
+match the kubeadm version with the versions of the control plane components, kube-proxy and kubelet.
 
-Due to that we can't see into the future, kubeadm CLI v{{< skew latestVersion >}} may or may not be able to deploy v{{< skew nextMinorVersion >}} clusters.
+### kubeadm's skew against the Kubernetes version
 
-These resources provide more information on supported version skew between kubelets and the control plane, and other Kubernetes components:
+kubeadm can be used with Kubernetes components that are the same version as kubeadm
+or one version older. The Kubernetes version can be specified to kubeadm by using the
+`--kubernetes-version` flag of `kubeadm init` or the
+[`ClusterConfiguration.kubernetesVersion`](/docs/reference/config-api/kubeadm-config.v1beta3/)
+field when using `--config`. This option will control the versions
+of kube-apiserver, kube-controller-manager, kube-scheduler and kube-proxy.
 
-* Kubernetes [version and version-skew policy](/docs/setup/release/version-skew-policy/)
-* Kubeadm-specific [installation guide](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#installing-kubeadm-kubelet-and-kubectl)
+Example:
+* kubeadm is at {{< skew currentVersion >}}
+* `kubernetesVersion` must be at {{< skew currentVersion >}} or {{< skew currentVersionAddMinor -1 >}}
+
+### kubeadm's skew against the kubelet
+
+Similarly to the Kubernetes version, kubeadm can be used with a kubelet version that is the same
+version as kubeadm or one version older.
+
+Example:
+* kubeadm is at {{< skew currentVersion >}}
+* kubelet on the host must be at {{< skew currentVersion >}} or {{< skew currentVersionAddMinor -1 >}}
+
+### kubeadm's skew against kubeadm
+
+There are certain limitations on how kubeadm commands can operate on existing nodes or whole clusters
+managed by kubeadm.
+
+If new nodes are joined to the cluster, the kubeadm binary used for `kubeadm join` must match
+the last version of kubeadm used to either create the cluster with `kubeadm init` or to upgrade
+the same node with `kubeadm upgrade`. Similar rules apply to the rest of the kubeadm commands
+with the exception of `kubeadm upgrade`.
+
+Example for `kubeadm join`:
+* kubeadm version {{< skew currentVersion >}} was used to create a cluster with `kubeadm init`
+* Joining nodes must use a kubeadm binary that is at version {{< skew currentVersion >}}
+
+Nodes that are being upgraded must use a version of kubeadm that is the same MINOR
+version or one MINOR version newer than the version of kubeadm used for managing the
+node.
+
+Example for `kubeadm upgrade`:
+* kubeadm version {{< skew currentVersionAddMinor -1 >}} was used to create or upgrade the node
+* The version of kubeadm used for upgrading the node must be at {{< skew currentVersionAddMinor -1 >}}
+or {{< skew currentVersion >}}
+
+To learn more about the version skew between the different Kubernetes component see
+the [Version Skew Policy](/releases/version-skew-policy/).
 
 ## Limitations {#limitations}
 
@@ -528,7 +606,7 @@ Workarounds:
 
 kubeadm deb/rpm packages and binaries are built for amd64, arm (32-bit), arm64, ppc64le, and s390x
 following the [multi-platform
-proposal](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/multi-platform.md).
+proposal](https://git.k8s.io/design-proposals-archive/multi-platform.md).
 
 Multiplatform container images for the control plane and addons are also supported since v1.12.
 
@@ -538,4 +616,6 @@ supports your chosen platform.
 
 ## Troubleshooting {#troubleshooting}
 
-If you are running into difficulties with kubeadm, please consult our [troubleshooting docs](/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm/).
+If you are running into difficulties with kubeadm, please consult our
+[troubleshooting docs](/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm/).
+
diff --git a/content/en/docs/setup/production-environment/tools/kubeadm/dual-stack-support.md b/content/en/docs/setup/production-environment/tools/kubeadm/dual-stack-support.md
index 39930cca37..9a448caed5 100644
--- a/content/en/docs/setup/production-environment/tools/kubeadm/dual-stack-support.md
+++ b/content/en/docs/setup/production-environment/tools/kubeadm/dual-stack-support.md
@@ -7,9 +7,9 @@ min-kubernetes-server-version: 1.21
 
 <!-- overview -->
 
-{{< feature-state for_k8s_version="v1.21" state="beta" >}}
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
 
-Your Kubernetes cluster can run in [dual-stack](/docs/concepts/services-networking/dual-stack/) networking mode, which means that cluster networking lets you use either address family. In a dual-stack cluster, the control plane can assign both an IPv4 address and an IPv6 address to a single {{< glossary_tooltip text="Pod" term_id="pod" >}} or a {{< glossary_tooltip text="Service" term_id="service" >}}.
+Your Kubernetes cluster includes [dual-stack](/docs/concepts/services-networking/dual-stack/) networking, which means that cluster networking lets you use either address family. In a cluster, the control plane can assign both an IPv4 address and an IPv6 address to a single {{< glossary_tooltip text="Pod" term_id="pod" >}} or a {{< glossary_tooltip text="Service" term_id="service" >}}.
 
 <!-- body -->
 
@@ -28,10 +28,8 @@ The size of the IP address allocations should be suitable for the number of Pods
 Services that you are planning to run.
 
 {{< note >}}
-If you are upgrading an existing cluster then, by default, the `kubeadm upgrade` command
-changes the [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
-`IPv6DualStack` to `true` if that is not already enabled.
-However, `kubeadm` does not support making modifications to the pod IP address range
+If you are upgrading an existing cluster with the `kubeadm upgrade` command,
+`kubeadm` does not support making modifications to the pod IP address range
 (“cluster CIDR”) nor to the cluster's Service address range (“Service CIDR”).
 {{< /note >}}
 
@@ -45,14 +43,14 @@ similar to the following example:
 kubeadm init --pod-network-cidr=10.244.0.0/16,2001:db8:42:0::/56 --service-cidr=10.96.0.0/16,2001:db8:42:1::/112
 ```
 
-To make things clearer, here is an example kubeadm [configuration file](https://pkg.go.dev/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta3) `kubeadm-config.yaml` for the primary dual-stack control plane node.
+To make things clearer, here is an example kubeadm
+[configuration file](/docs/reference/config-api/kubeadm-config.v1beta3/)
+`kubeadm-config.yaml` for the primary dual-stack control plane node.
 
 ```yaml
 ---
 apiVersion: kubeadm.k8s.io/v1beta3
 kind: ClusterConfiguration
-featureGates:
-  IPv6DualStack: true
 networking:
   podSubnet: 10.244.0.0/16,2001:db8:42:0::/56
   serviceSubnet: 10.96.0.0/16,2001:db8:42:1::/112
@@ -75,7 +73,7 @@ Run kubeadm to initiate the dual-stack control plane node:
 kubeadm init --config=kubeadm-config.yaml
 ```
 
-Currently, the kube-controller-manager flags `--node-cidr-mask-size-ipv4|--node-cidr-mask-size-ipv6` are being left with default values. See [enable IPv4/IPv6 dual stack](/docs/concepts/services-networking/dual-stack#enable-ipv4ipv6-dual-stack).
+The kube-controller-manager flags `--node-cidr-mask-size-ipv4|--node-cidr-mask-size-ipv6` are set with default values. See [configure IPv4/IPv6 dual stack](/docs/concepts/services-networking/dual-stack#configure-ipv4-ipv6-dual-stack).
 
 {{< note >}}
 The `--apiserver-advertise-address` flag does not support dual-stack.
@@ -85,7 +83,8 @@ The `--apiserver-advertise-address` flag does not support dual-stack.
 
 Before joining a node, make sure that the node has IPv6 routable network interface and allows IPv6 forwarding.
 
-Here is an example kubeadm [configuration file](https://pkg.go.dev/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta3) `kubeadm-config.yaml` for joining a worker node to the cluster.
+Here is an example kubeadm [configuration file](/docs/reference/config-api/kubeadm-config.v1beta3/)
+`kubeadm-config.yaml` for joining a worker node to the cluster.
 
 ```yaml
 apiVersion: kubeadm.k8s.io/v1beta3
@@ -93,12 +92,18 @@ kind: JoinConfiguration
 discovery:
   bootstrapToken:
     apiServerEndpoint: 10.100.0.1:6443
+    token: "clvldh.vjjwg16ucnhp94qr"
+    caCertHashes:
+    - "sha256:a4863cde706cfc580a439f842cc65d5ef112b7b2be31628513a9881cf0d9fe0e"
+    # change auth info above to match the actual token and CA certificate hash for your cluster
 nodeRegistration:
   kubeletExtraArgs:
     node-ip: 10.100.0.3,fd00:1:2:3::3
 ```
 
-Also, here is an example kubeadm [configuration file](https://pkg.go.dev/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta3) `kubeadm-config.yaml` for joining another control plane node to the cluster.
+Also, here is an example kubeadm [configuration file](/docs/reference/config-api/kubeadm-config.v1beta3/)
+`kubeadm-config.yaml` for joining another control plane node to the cluster.
+
 ```yaml
 apiVersion: kubeadm.k8s.io/v1beta3
 kind: JoinConfiguration
@@ -109,6 +114,10 @@ controlPlane:
 discovery:
   bootstrapToken:
     apiServerEndpoint: 10.100.0.1:6443
+    token: "clvldh.vjjwg16ucnhp94qr"
+    caCertHashes:
+    - "sha256:a4863cde706cfc580a439f842cc65d5ef112b7b2be31628513a9881cf0d9fe0e"
+    # change auth info above to match the actual token and CA certificate hash for your cluster
 nodeRegistration:
   kubeletExtraArgs:
     node-ip: 10.100.0.4,fd00:1:2:3::4
@@ -118,29 +127,23 @@ nodeRegistration:
 `advertiseAddress` in JoinConfiguration.controlPlane specifies the IP address that the API Server will advertise it is listening on. The value of `advertiseAddress` equals the `--apiserver-advertise-address` flag of `kubeadm join`.
 
 ```shell
-kubeadm join --config=kubeadm-config.yaml ...
+kubeadm join --config=kubeadm-config.yaml
 ```
 
 ### Create a single-stack cluster
 
 {{< note >}}
-Enabling the dual-stack feature doesn't mean that you need to use dual-stack addressing.
+Dual-stack support doesn't mean that you need to use dual-stack addressing.
 You can deploy a single-stack cluster that has the dual-stack networking feature enabled.
 {{< /note >}}
 
-In 1.21 the `IPv6DualStack` feature is Beta and the feature gate is defaulted to `true`. To disable the feature you must configure the feature gate to `false`. Note that once the feature is GA, the feature gate will be removed.
-
-```shell
-kubeadm init --feature-gates IPv6DualStack=false
-```
-
-To make things more clear, here is an example kubeadm [configuration file](https://pkg.go.dev/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta3) `kubeadm-config.yaml` for the single-stack control plane node.
+To make things more clear, here is an example kubeadm
+[configuration file](/docs/reference/config-api/kubeadm-config.v1beta3/)
+`kubeadm-config.yaml` for the single-stack control plane node.
 
 ```yaml
 apiVersion: kubeadm.k8s.io/v1beta3
 kind: ClusterConfiguration
-featureGates:
-  IPv6DualStack: false
 networking:
   podSubnet: 10.244.0.0/16
   serviceSubnet: 10.96.0.0/16
@@ -150,4 +153,4 @@ networking:
 
 * [Validate IPv4/IPv6 dual-stack](/docs/tasks/network/validate-dual-stack) networking
 * Read about [Dual-stack](/docs/concepts/services-networking/dual-stack/) cluster networking
-* Learn more about the kubeadm [configuration format](/docs/reference/config-api/kubeadm-config.v1beta2/)
+* Learn more about the kubeadm [configuration format](/docs/reference/config-api/kubeadm-config.v1beta3/)
diff --git a/content/en/docs/setup/production-environment/tools/kubeadm/ha-topology.md b/content/en/docs/setup/production-environment/tools/kubeadm/ha-topology.md
index 53b1f38024..4a1a8ae903 100644
--- a/content/en/docs/setup/production-environment/tools/kubeadm/ha-topology.md
+++ b/content/en/docs/setup/production-environment/tools/kubeadm/ha-topology.md
@@ -1,7 +1,7 @@
 ---
 reviewers:
 - sig-cluster-lifecycle
-title: Options for Highly Available topology
+title: Options for Highly Available Topology
 content_type: concept
 weight: 50
 ---
diff --git a/content/en/docs/setup/production-environment/tools/kubeadm/high-availability.md b/content/en/docs/setup/production-environment/tools/kubeadm/high-availability.md
index 5206529f5c..a26209e7a3 100644
--- a/content/en/docs/setup/production-environment/tools/kubeadm/high-availability.md
+++ b/content/en/docs/setup/production-environment/tools/kubeadm/high-availability.md
@@ -1,7 +1,7 @@
 ---
 reviewers:
 - sig-cluster-lifecycle
-title: Creating Highly Available clusters with kubeadm
+title: Creating Highly Available Clusters with kubeadm
 content_type: task
 weight: 60
 ---
@@ -12,17 +12,17 @@ This page explains two different approaches to setting up a highly available Kub
 cluster using kubeadm:
 
 - With stacked control plane nodes. This approach requires less infrastructure. The etcd members
-and control plane nodes are co-located.
+  and control plane nodes are co-located.
 - With an external etcd cluster. This approach requires more infrastructure. The
-control plane nodes and etcd members are separated.
+  control plane nodes and etcd members are separated.
 
 Before proceeding, you should carefully consider which approach best meets the needs of your applications
-and environment. [This comparison topic](/docs/setup/production-environment/tools/kubeadm/ha-topology/) outlines the advantages and disadvantages of each.
+and environment. [Options for Highly Available topology](/docs/setup/production-environment/tools/kubeadm/ha-topology/) outlines the advantages and disadvantages of each.
 
-If you encounter issues with setting up the HA cluster, please provide us with feedback
+If you encounter issues with setting up the HA cluster, please report these
 in the kubeadm [issue tracker](https://github.com/kubernetes/kubeadm/issues/new).
 
-See also [The upgrade documentation](/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/).
+See also the [upgrade documentation](/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/).
 
 {{< caution >}}
 This page does not address running your cluster on a cloud provider. In a cloud
@@ -32,22 +32,80 @@ LoadBalancer, or with dynamic PersistentVolumes.
 
 ## {{% heading "prerequisites" %}}
 
+The prerequisites depend on which topology you have selected for your cluster's
+control plane:
 
-For both methods you need this infrastructure:
+{{< tabs name="prerequisite_tabs" >}}
+{{% tab name="Stacked etcd" %}}
+<!--
+    note to reviewers: these prerequisites should match the start of the
+    external etc tab
+-->
 
-- Three machines that meet [kubeadm's minimum requirements](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#before-you-begin) for
-  the control-plane nodes
-- Three machines that meet [kubeadm's minimum
+You need:
+
+- Three or more machines that meet [kubeadm's minimum requirements](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#before-you-begin) for
+  the control-plane nodes. Having an odd number of control plane nodes can help
+  with leader selection in the case of machine or zone failure.
+  - including a {{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}, already set up and working
+- Three or more machines that meet [kubeadm's minimum
   requirements](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#before-you-begin) for the workers
+  - including a container runtime, already set up and working
 - Full network connectivity between all machines in the cluster (public or
   private network)
-- sudo privileges on all machines
+- Superuser privileges on all machines using `sudo`
+  - You can use a different tool; this guide uses `sudo` in the examples.
 - SSH access from one device to all nodes in the system
-- `kubeadm` and `kubelet` installed on all machines. `kubectl` is optional.
+- `kubeadm` and `kubelet` already installed on all machines.
 
-For the external etcd cluster only, you also need:
+_See [Stacked etcd topology](/docs/setup/production-environment/tools/kubeadm/ha-topology/#stacked-etcd-topology) for context._
 
-- Three additional machines for etcd members
+{{% /tab %}}
+{{% tab name="External etcd" %}}
+<!--
+    note to reviewers: these prerequisites should match the start of the
+    stacked etc tab
+-->
+You need:
+
+- Three or more machines that meet [kubeadm's minimum requirements](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#before-you-begin) for
+  the control-plane nodes. Having an odd number of control plane nodes can help
+  with leader selection in the case of machine or zone failure.
+  - including a {{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}, already set up and working
+- Three or more machines that meet [kubeadm's minimum
+  requirements](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#before-you-begin) for the workers
+  - including a container runtime, already set up and working
+- Full network connectivity between all machines in the cluster (public or
+  private network)
+- Superuser privileges on all machines using `sudo`
+  - You can use a different tool; this guide uses `sudo` in the examples.
+- SSH access from one device to all nodes in the system
+- `kubeadm` and `kubelet` already installed on all machines.
+
+<!-- end of shared prerequisites -->
+
+And you also need:
+- Three or more additional machines, that will become etcd cluster members.
+  Having an odd number of members in the etcd cluster is a requirement for achieving
+  optimal voting quorum.
+  - These machines again need to have `kubeadm` and `kubelet` installed.
+  - These machines also require a container runtime, that is already set up and working.
+
+_See [External etcd topology](/docs/setup/production-environment/tools/kubeadm/ha-topology/#external-etcd-topology) for context._
+{{% /tab %}}
+{{< /tabs >}}
+
+### Container images
+
+Each host should have access read and fetch images from the Kubernetes container image registry, `k8s.gcr.io`.
+If you want to deploy a highly-available cluster where the hosts do not have access to pull images, this is possible. You must ensure by some other means that the correct container images are already available on the relevant hosts.
+
+### Command line interface {#kubectl}
+
+To manage Kubernetes once your cluster is set up, you should
+[install kubectl](/docs/tasks/tools/#kubectl) on your PC. It is also useful
+to install the `kubectl` tool on each control plane node, as this can be
+helpful for troubleshooting.
 
 <!-- steps -->
 
@@ -60,148 +118,146 @@ There are many configurations for load balancers. The following example is only
 option. Your cluster requirements may need a different configuration.
 {{< /note >}}
 
-1.  Create a kube-apiserver load balancer with a name that resolves to DNS.
+1. Create a kube-apiserver load balancer with a name that resolves to DNS.
 
-    - In a cloud environment you should place your control plane nodes behind a TCP
-      forwarding load balancer. This load balancer distributes traffic to all
-      healthy control plane nodes in its target list. The health check for
-      an apiserver is a TCP check on the port the kube-apiserver listens on
-      (default value `:6443`).
+   - In a cloud environment you should place your control plane nodes behind a TCP
+     forwarding load balancer. This load balancer distributes traffic to all
+     healthy control plane nodes in its target list. The health check for
+     an apiserver is a TCP check on the port the kube-apiserver listens on
+     (default value `:6443`).
 
-    - It is not recommended to use an IP address directly in a cloud environment.
+   - It is not recommended to use an IP address directly in a cloud environment.
 
-    - The load balancer must be able to communicate with all control plane nodes
-      on the apiserver port. It must also allow incoming traffic on its
-      listening port.
+   - The load balancer must be able to communicate with all control plane nodes
+     on the apiserver port. It must also allow incoming traffic on its
+     listening port.
 
-    - Make sure the address of the load balancer always matches
-      the address of kubeadm's `ControlPlaneEndpoint`.
+   - Make sure the address of the load balancer always matches
+     the address of kubeadm's `ControlPlaneEndpoint`.
 
-    - Read the [Options for Software Load Balancing](https://github.com/kubernetes/kubeadm/blob/master/docs/ha-considerations.md#options-for-software-load-balancing)
-      guide for more details.
+   - Read the [Options for Software Load Balancing](https://git.k8s.io/kubeadm/docs/ha-considerations.md#options-for-software-load-balancing)
+     guide for more details.
 
-1.  Add the first control plane nodes to the load balancer and test the
-    connection:
+1. Add the first control plane node to the load balancer, and test the
+   connection:
 
-    ```sh
-    nc -v LOAD_BALANCER_IP PORT
-    ```
+   ```shell
+   nc -v <LOAD_BALANCER_IP> <PORT>
+   ```
 
-    - A connection refused error is expected because the apiserver is not yet
-      running. A timeout, however, means the load balancer cannot communicate
-      with the control plane node. If a timeout occurs, reconfigure the load
-      balancer to communicate with the control plane node.
+   A connection refused error is expected because the API server is not yet
+   running. A timeout, however, means the load balancer cannot communicate
+   with the control plane node. If a timeout occurs, reconfigure the load
+   balancer to communicate with the control plane node.
 
-1.  Add the remaining control plane nodes to the load balancer target group.
+1. Add the remaining control plane nodes to the load balancer target group.
 
 ## Stacked control plane and etcd nodes
 
 ### Steps for the first control plane node
 
-1.  Initialize the control plane:
+1. Initialize the control plane:
 
-    ```sh
-    sudo kubeadm init --control-plane-endpoint "LOAD_BALANCER_DNS:LOAD_BALANCER_PORT" --upload-certs
-    ```
+   ```sh
+   sudo kubeadm init --control-plane-endpoint "LOAD_BALANCER_DNS:LOAD_BALANCER_PORT" --upload-certs
+   ```
 
-    - You can use the `--kubernetes-version` flag to set the Kubernetes version to use.
-      It is recommended that the versions of kubeadm, kubelet, kubectl and Kubernetes match.
-    - The `--control-plane-endpoint` flag should be set to the address or DNS and port of the load balancer.
+   - You can use the `--kubernetes-version` flag to set the Kubernetes version to use.
+     It is recommended that the versions of kubeadm, kubelet, kubectl and Kubernetes match.
+   - The `--control-plane-endpoint` flag should be set to the address or DNS and port of the load balancer.
 
-    - The `--upload-certs` flag is used to upload the certificates that should be shared
-      across all the control-plane instances to the cluster. If instead, you prefer to copy certs across
-      control-plane nodes manually or using automation tools, please remove this flag and refer to [Manual
-      certificate distribution](#manual-certs) section below.
+   - The `--upload-certs` flag is used to upload the certificates that should be shared
+     across all the control-plane instances to the cluster. If instead, you prefer to copy certs across
+     control-plane nodes manually or using automation tools, please remove this flag and refer to [Manual
+     certificate distribution](#manual-certs) section below.
 
-    {{< note >}}
-    The `kubeadm init` flags `--config` and `--certificate-key` cannot be mixed, therefore if you want
-    to use the [kubeadm configuration](/docs/reference/config-api/kubeadm-config.v1beta3/)
-    you must add the `certificateKey` field in the appropriate config locations
-    (under `InitConfiguration` and `JoinConfiguration: controlPlane`).
-    {{< /note >}}
+   {{< note >}}
+   The `kubeadm init` flags `--config` and `--certificate-key` cannot be mixed, therefore if you want
+   to use the [kubeadm configuration](/docs/reference/config-api/kubeadm-config.v1beta3/)
+   you must add the `certificateKey` field in the appropriate config locations
+   (under `InitConfiguration` and `JoinConfiguration: controlPlane`).
+   {{< /note >}}
 
-    {{< note >}}
-    Some CNI network plugins require additional configuration, for example specifying the pod IP CIDR, while others do not.
-    See the [CNI network documentation](/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/#pod-network).
-    To add a pod CIDR pass the flag `--pod-network-cidr`, or if you are using a kubeadm configuration file
-    set the `podSubnet` field under the `networking` object of `ClusterConfiguration`.
-    {{< /note >}}
+   {{< note >}}
+   Some CNI network plugins require additional configuration, for example specifying the pod IP CIDR, while others do not.
+   See the [CNI network documentation](/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/#pod-network).
+   To add a pod CIDR pass the flag `--pod-network-cidr`, or if you are using a kubeadm configuration file
+   set the `podSubnet` field under the `networking` object of `ClusterConfiguration`.
+   {{< /note >}}
 
-    - The output looks similar to:
+   The output looks similar to:
 
-      ```sh
-      ...
-      You can now join any number of control-plane node by running the following command on each as a root:
-          kubeadm join 192.168.0.200:6443 --token 9vr73a.a8uxyaju799qwdjv --discovery-token-ca-cert-hash sha256:7c2e69131a36ae2a042a339b33381c6d0d43887e2de83720eff5359e26aec866 --control-plane --certificate-key f8902e114ef118304e561c3ecd4d0b543adc226b7a07f675f56564185ffe0c07
+   ```sh
+   ...
+   You can now join any number of control-plane node by running the following command on each as a root:
+       kubeadm join 192.168.0.200:6443 --token 9vr73a.a8uxyaju799qwdjv --discovery-token-ca-cert-hash sha256:7c2e69131a36ae2a042a339b33381c6d0d43887e2de83720eff5359e26aec866 --control-plane --certificate-key f8902e114ef118304e561c3ecd4d0b543adc226b7a07f675f56564185ffe0c07
 
-      Please note that the certificate-key gives access to cluster sensitive data, keep it secret!
-      As a safeguard, uploaded-certs will be deleted in two hours; If necessary, you can use kubeadm init phase upload-certs to reload certs afterward.
+   Please note that the certificate-key gives access to cluster sensitive data, keep it secret!
+   As a safeguard, uploaded-certs will be deleted in two hours; If necessary, you can use kubeadm init phase upload-certs to reload certs afterward.
 
-      Then you can join any number of worker nodes by running the following on each as root:
-          kubeadm join 192.168.0.200:6443 --token 9vr73a.a8uxyaju799qwdjv --discovery-token-ca-cert-hash sha256:7c2e69131a36ae2a042a339b33381c6d0d43887e2de83720eff5359e26aec866
-      ```
+   Then you can join any number of worker nodes by running the following on each as root:
+       kubeadm join 192.168.0.200:6443 --token 9vr73a.a8uxyaju799qwdjv --discovery-token-ca-cert-hash sha256:7c2e69131a36ae2a042a339b33381c6d0d43887e2de83720eff5359e26aec866
+   ```
 
-    - Copy this output to a text file. You will need it later to join control plane and worker nodes to the cluster.
-    - When `--upload-certs` is used with `kubeadm init`, the certificates of the primary control plane
-       are encrypted and uploaded in the `kubeadm-certs` Secret.
-    - To re-upload the certificates and generate a new decryption key, use the following command on a control plane
-      node that is already joined to the cluster:
+   - Copy this output to a text file. You will need it later to join control plane and worker nodes to
+     the cluster.
+   - When `--upload-certs` is used with `kubeadm init`, the certificates of the primary control plane
+     are encrypted and uploaded in the `kubeadm-certs` Secret.
+   - To re-upload the certificates and generate a new decryption key, use the following command on a
+     control plane
+     node that is already joined to the cluster:
 
-      ```sh
-      sudo kubeadm init phase upload-certs --upload-certs
-      ```
+     ```sh
+     sudo kubeadm init phase upload-certs --upload-certs
+     ```
 
-    - You can also specify a custom `--certificate-key` during `init` that can later be used by `join`.
-      To generate such a key you can use the following command:
+   - You can also specify a custom `--certificate-key` during `init` that can later be used by `join`.
+     To generate such a key you can use the following command:
 
-      ```sh
-      kubeadm certs certificate-key
-      ```
+     ```sh
+     kubeadm certs certificate-key
+     ```
 
-    {{< note >}}
-    The `kubeadm-certs` Secret and decryption key expire after two hours.
-    {{< /note >}}
+   {{< note >}}
+   The `kubeadm-certs` Secret and decryption key expire after two hours.
+   {{< /note >}}
 
-    {{< caution >}}
-    As stated in the command output, the certificate key gives access to cluster sensitive data, keep it secret!
-    {{< /caution >}}
+   {{< caution >}}
+   As stated in the command output, the certificate key gives access to cluster sensitive data, keep it secret!
+   {{< /caution >}}
 
-1.  Apply the CNI plugin of your choice:
-    [Follow these instructions](/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/#pod-network)
-    to install the CNI provider. Make sure the configuration corresponds to the Pod CIDR specified in the kubeadm configuration file if applicable.
+1. Apply the CNI plugin of your choice:  
+   [Follow these instructions](/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/#pod-network) 
+   to install the CNI provider. Make sure the configuration corresponds to the Pod CIDR specified in the
+   kubeadm configuration file (if applicable).
 
-    In this example we are using Weave Net:
+   {{< note >}}
+   You must pick a network plugin that suits your use case and deploy it before you move on to next step.
+   If you don't do this, you will not be able to launch your cluster properly.
+   {{< /note >}}
 
-    ```sh
-    kubectl apply -f "https://cloud.weave.works/k8s/net?k8s-version=$(kubectl version | base64 | tr -d '\n')"
-    ```
+1. Type the following and watch the pods of the control plane components get started:
 
-1.  Type the following and watch the pods of the control plane components get started:
-
-    ```sh
-    kubectl get pod -n kube-system -w
-    ```
+   ```sh
+   kubectl get pod -n kube-system -w
+   ```
 
 ### Steps for the rest of the control plane nodes
 
-{{< note >}}
-Since kubeadm version 1.15 you can join multiple control-plane nodes in parallel.
-Prior to this version, you must join new control plane nodes sequentially, only after
-the first node has finished initializing.
-{{< /note >}}
-
 For each additional control plane node you should:
 
-1.  Execute the join command that was previously given to you by the `kubeadm init` output on the first node.
-    It should look something like this:
+1. Execute the join command that was previously given to you by the `kubeadm init` output on the first node.
+   It should look something like this:
 
-    ```sh
-    sudo kubeadm join 192.168.0.200:6443 --token 9vr73a.a8uxyaju799qwdjv --discovery-token-ca-cert-hash sha256:7c2e69131a36ae2a042a339b33381c6d0d43887e2de83720eff5359e26aec866 --control-plane --certificate-key f8902e114ef118304e561c3ecd4d0b543adc226b7a07f675f56564185ffe0c07
-    ```
+   ```sh
+   sudo kubeadm join 192.168.0.200:6443 --token 9vr73a.a8uxyaju799qwdjv --discovery-token-ca-cert-hash sha256:7c2e69131a36ae2a042a339b33381c6d0d43887e2de83720eff5359e26aec866 --control-plane --certificate-key f8902e114ef118304e561c3ecd4d0b543adc226b7a07f675f56564185ffe0c07
+   ```
 
-    - The `--control-plane` flag tells `kubeadm join` to create a new control plane.
-    - The `--certificate-key ...` will cause the control plane certificates to be downloaded
-      from the `kubeadm-certs` Secret in the cluster and be decrypted using the given key.
+   - The `--control-plane` flag tells `kubeadm join` to create a new control plane.
+   - The `--certificate-key ...` will cause the control plane certificates to be downloaded
+     from the `kubeadm-certs` Secret in the cluster and be decrypted using the given key.
+
+You can join multiple control-plane nodes in parallel.
 
 ## External etcd nodes
 
@@ -211,64 +267,69 @@ in the kubeadm config file.
 
 ### Set up the etcd cluster
 
-1.  Follow [these instructions](/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm/) to set up the etcd cluster.
+1. Follow these [instructions](/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm/) to set up the etcd cluster.
 
-1.  Setup SSH as described [here](#manual-certs).
+1. Setup SSH as described [here](#manual-certs).
 
-1.  Copy the following files from any etcd node in the cluster to the first control plane node:
+1. Copy the following files from any etcd node in the cluster to the first control plane node:
 
-    ```sh
-    export CONTROL_PLANE="ubuntu@10.0.0.7"
-    scp /etc/kubernetes/pki/etcd/ca.crt "${CONTROL_PLANE}":
-    scp /etc/kubernetes/pki/apiserver-etcd-client.crt "${CONTROL_PLANE}":
-    scp /etc/kubernetes/pki/apiserver-etcd-client.key "${CONTROL_PLANE}":
-    ```
+   ```sh
+   export CONTROL_PLANE="ubuntu@10.0.0.7"
+   scp /etc/kubernetes/pki/etcd/ca.crt "${CONTROL_PLANE}":
+   scp /etc/kubernetes/pki/apiserver-etcd-client.crt "${CONTROL_PLANE}":
+   scp /etc/kubernetes/pki/apiserver-etcd-client.key "${CONTROL_PLANE}":
+   ```
 
-    - Replace the value of `CONTROL_PLANE` with the `user@host` of the first control-plane node.
+   - Replace the value of `CONTROL_PLANE` with the `user@host` of the first control-plane node.
 
 ### Set up the first control plane node
 
-1.  Create a file called `kubeadm-config.yaml` with the following contents:
+1. Create a file called `kubeadm-config.yaml` with the following contents:
 
-        apiVersion: kubeadm.k8s.io/v1beta3
-        kind: ClusterConfiguration
-        kubernetesVersion: stable
-        controlPlaneEndpoint: "LOAD_BALANCER_DNS:LOAD_BALANCER_PORT"
-        etcd:
-            external:
-                endpoints:
-                - https://ETCD_0_IP:2379
-                - https://ETCD_1_IP:2379
-                - https://ETCD_2_IP:2379
-                caFile: /etc/kubernetes/pki/etcd/ca.crt
-                certFile: /etc/kubernetes/pki/apiserver-etcd-client.crt
-                keyFile: /etc/kubernetes/pki/apiserver-etcd-client.key
 
-  {{< note >}}
-  The difference between stacked etcd and external etcd here is that the external etcd setup requires
-  a configuration file with the etcd endpoints under the `external` object for `etcd`.
-  In the case of the stacked etcd topology this is managed automatically.
-  {{< /note >}}
+   ```yaml
+   ---
+   apiVersion: kubeadm.k8s.io/v1beta3
+   kind: ClusterConfiguration
+   kubernetesVersion: stable
+   controlPlaneEndpoint: "LOAD_BALANCER_DNS:LOAD_BALANCER_PORT" # change this (see below)
+   etcd:
+     external:
+       endpoints:
+         - https://ETCD_0_IP:2379 # change ETCD_0_IP appropriately
+         - https://ETCD_1_IP:2379 # change ETCD_1_IP appropriately
+         - https://ETCD_2_IP:2379 # change ETCD_2_IP appropriately
+       caFile: /etc/kubernetes/pki/etcd/ca.crt
+       certFile: /etc/kubernetes/pki/apiserver-etcd-client.crt
+       keyFile: /etc/kubernetes/pki/apiserver-etcd-client.key
+   ```
 
-  -  Replace the following variables in the config template with the appropriate values for your cluster:
+   {{< note >}}
+   The difference between stacked etcd and external etcd here is that the external etcd setup requires
+   a configuration file with the etcd endpoints under the `external` object for `etcd`.
+   In the case of the stacked etcd topology, this is managed automatically.
+   {{< /note >}}
 
-    - `LOAD_BALANCER_DNS`
-    - `LOAD_BALANCER_PORT`
-    - `ETCD_0_IP`
-    - `ETCD_1_IP`
-    - `ETCD_2_IP`
+   - Replace the following variables in the config template with the appropriate values for your cluster:
+
+     - `LOAD_BALANCER_DNS`
+     - `LOAD_BALANCER_PORT`
+     - `ETCD_0_IP`
+     - `ETCD_1_IP`
+     - `ETCD_2_IP`
 
 The following steps are similar to the stacked etcd setup:
 
-1.  Run `sudo kubeadm init --config kubeadm-config.yaml --upload-certs` on this node.
+1. Run `sudo kubeadm init --config kubeadm-config.yaml --upload-certs` on this node.
 
-1.  Write the output join commands that are returned to a text file for later use.
+1. Write the output join commands that are returned to a text file for later use.
 
-1.  Apply the CNI plugin of your choice. The given example is for Weave Net:
+1. Apply the CNI plugin of your choice.
 
-    ```sh
-    kubectl apply -f "https://cloud.weave.works/k8s/net?k8s-version=$(kubectl version | base64 | tr -d '\n')"
-    ```
+   {{< note >}}
+   You must pick a network plugin that suits your use case and deploy it before you move on to next step.
+   If you don't do this, you will not be able to launch your cluster properly.
+   {{< /note >}}
 
 ### Steps for the rest of the control plane nodes
 
@@ -276,7 +337,7 @@ The steps are the same as for the stacked etcd setup:
 
 - Make sure the first control plane node is fully initialized.
 - Join each control plane node with the join command you saved to a text file. It's recommended
-to join the control plane nodes one at a time.
+  to join the control plane nodes one at a time.
 - Don't forget that the decryption key from `--certificate-key` expires after two hours, by default.
 
 ## Common tasks after bootstrapping control plane
@@ -296,79 +357,81 @@ If you choose to not use `kubeadm init` with the `--upload-certs` flag this mean
 you are going to have to manually copy the certificates from the primary control plane node to the
 joining control plane nodes.
 
-There are many ways to do this. In the following example we are using `ssh` and `scp`:
+There are many ways to do this. The following example uses `ssh` and `scp`:
 
 SSH is required if you want to control all nodes from a single machine.
 
-1.  Enable ssh-agent on your main device that has access to all other nodes in
-    the system:
+1. Enable ssh-agent on your main device that has access to all other nodes in
+   the system:
 
-    ```
-    eval $(ssh-agent)
+   ```
+   eval $(ssh-agent)
+   ```
+
+1. Add your SSH identity to the session:
+
+   ```
+   ssh-add ~/.ssh/path_to_private_key
+   ```
+
+1. SSH between nodes to check that the connection is working correctly.
+
+   - When you SSH to any node, add the `-A` flag. This flag allows the node that you
+     have logged into via SSH to access the SSH agent on your PC. Consider alternative
+     methods if you do not fully trust the security of your user session on the node.
+
+     ```
+     ssh -A 10.0.0.7
+     ```
+
+   - When using sudo on any node, make sure to preserve the environment so SSH
+     forwarding works:
+
+     ```
+     sudo -E -s
+     ```
+
+1. After configuring SSH on all the nodes you should run the following script on the first
+   control plane node after running `kubeadm init`. This script will copy the certificates from
+   the first control plane node to the other control plane nodes:
+
+   In the following example, replace `CONTROL_PLANE_IPS` with the IP addresses of the
+   other control plane nodes.
+   ```sh
+   USER=ubuntu # customizable
+   CONTROL_PLANE_IPS="10.0.0.7 10.0.0.8"
+   for host in ${CONTROL_PLANE_IPS}; do
+       scp /etc/kubernetes/pki/ca.crt "${USER}"@$host:
+       scp /etc/kubernetes/pki/ca.key "${USER}"@$host:
+       scp /etc/kubernetes/pki/sa.key "${USER}"@$host:
+       scp /etc/kubernetes/pki/sa.pub "${USER}"@$host:
+       scp /etc/kubernetes/pki/front-proxy-ca.crt "${USER}"@$host:
+       scp /etc/kubernetes/pki/front-proxy-ca.key "${USER}"@$host:
+       scp /etc/kubernetes/pki/etcd/ca.crt "${USER}"@$host:etcd-ca.crt
+       # Skip the next line if you are using external etcd
+       scp /etc/kubernetes/pki/etcd/ca.key "${USER}"@$host:etcd-ca.key
+   done
     ```
 
-1.  Add your SSH identity to the session:
-
-    ```
-    ssh-add ~/.ssh/path_to_private_key
-    ```
-
-1.  SSH between nodes to check that the connection is working correctly.
-
-    - When you SSH to any node, make sure to add the `-A` flag:
-
-        ```
-        ssh -A 10.0.0.7
-        ```
-
-    - When using sudo on any node, make sure to preserve the environment so SSH
-      forwarding works:
-
-        ```
-        sudo -E -s
-        ```
-
-1. After configuring SSH on all the nodes you should run the following script on the first control plane node after
-   running `kubeadm init`. This script will copy the certificates from the first control plane node to the other
-   control plane nodes:
-
-    In the following example, replace `CONTROL_PLANE_IPS` with the IP addresses of the
-    other control plane nodes.
-    ```sh
-    USER=ubuntu # customizable
-    CONTROL_PLANE_IPS="10.0.0.7 10.0.0.8"
-    for host in ${CONTROL_PLANE_IPS}; do
-        scp /etc/kubernetes/pki/ca.crt "${USER}"@$host:
-        scp /etc/kubernetes/pki/ca.key "${USER}"@$host:
-        scp /etc/kubernetes/pki/sa.key "${USER}"@$host:
-        scp /etc/kubernetes/pki/sa.pub "${USER}"@$host:
-        scp /etc/kubernetes/pki/front-proxy-ca.crt "${USER}"@$host:
-        scp /etc/kubernetes/pki/front-proxy-ca.key "${USER}"@$host:
-        scp /etc/kubernetes/pki/etcd/ca.crt "${USER}"@$host:etcd-ca.crt
-        # Quote this line if you are using external etcd
-        scp /etc/kubernetes/pki/etcd/ca.key "${USER}"@$host:etcd-ca.key
-    done
-    ```
-
-    {{< caution >}}
-    Copy only the certificates in the above list. kubeadm will take care of generating the rest of the certificates
-    with the required SANs for the joining control-plane instances. If you copy all the certificates by mistake,
-    the creation of additional nodes could fail due to a lack of required SANs.
-    {{< /caution >}}
+   {{< caution >}}
+   Copy only the certificates in the above list. kubeadm will take care of generating the rest of the certificates
+   with the required SANs for the joining control-plane instances. If you copy all the certificates by mistake,
+   the creation of additional nodes could fail due to a lack of required SANs.
+   {{< /caution >}}
 
 1. Then on each joining control plane node you have to run the following script before running `kubeadm join`.
    This script will move the previously copied certificates from the home directory to `/etc/kubernetes/pki`:
 
-    ```sh
-    USER=ubuntu # customizable
-    mkdir -p /etc/kubernetes/pki/etcd
-    mv /home/${USER}/ca.crt /etc/kubernetes/pki/
-    mv /home/${USER}/ca.key /etc/kubernetes/pki/
-    mv /home/${USER}/sa.pub /etc/kubernetes/pki/
-    mv /home/${USER}/sa.key /etc/kubernetes/pki/
-    mv /home/${USER}/front-proxy-ca.crt /etc/kubernetes/pki/
-    mv /home/${USER}/front-proxy-ca.key /etc/kubernetes/pki/
-    mv /home/${USER}/etcd-ca.crt /etc/kubernetes/pki/etcd/ca.crt
-    # Quote this line if you are using external etcd
-    mv /home/${USER}/etcd-ca.key /etc/kubernetes/pki/etcd/ca.key
-    ```
+   ```sh
+   USER=ubuntu # customizable
+   mkdir -p /etc/kubernetes/pki/etcd
+   mv /home/${USER}/ca.crt /etc/kubernetes/pki/
+   mv /home/${USER}/ca.key /etc/kubernetes/pki/
+   mv /home/${USER}/sa.pub /etc/kubernetes/pki/
+   mv /home/${USER}/sa.key /etc/kubernetes/pki/
+   mv /home/${USER}/front-proxy-ca.crt /etc/kubernetes/pki/
+   mv /home/${USER}/front-proxy-ca.key /etc/kubernetes/pki/
+   mv /home/${USER}/etcd-ca.crt /etc/kubernetes/pki/etcd/ca.crt
+   # Skip the next line if you are using external etcd
+   mv /home/${USER}/etcd-ca.key /etc/kubernetes/pki/etcd/ca.key
+   ```
diff --git a/content/en/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md b/content/en/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md
index 5be28cf377..993ecf3878 100644
--- a/content/en/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md
+++ b/content/en/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md
@@ -15,7 +15,6 @@ This page shows how to install the `kubeadm` toolbox.
 For information on how to create a cluster with kubeadm once you have performed this installation process, see the [Using kubeadm to Create a Cluster](/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/) page.
 
 
-
 ## {{% heading "prerequisites" %}}
 
 
@@ -46,102 +45,72 @@ may [fail](https://github.com/kubernetes/kubeadm/issues/31).
 If you have more than one network adapter, and your Kubernetes components are not reachable on the default
 route, we recommend you add IP route(s) so Kubernetes cluster addresses go via the appropriate adapter.
 
-## Letting iptables see bridged traffic
+## Check required ports
+These
+[required ports](/docs/reference/ports-and-protocols/)
+need to be open in order for Kubernetes components to communicate with each other. You can use tools like netcat to check if a port is open. For example:
 
-Make sure that the `br_netfilter` module is loaded. This can be done by running `lsmod | grep br_netfilter`. To load it explicitly call `sudo modprobe br_netfilter`.
-
-As a requirement for your Linux Node's iptables to correctly see bridged traffic, you should ensure `net.bridge.bridge-nf-call-iptables` is set to 1 in your `sysctl` config, e.g.
-
-```bash
-cat <<EOF | sudo tee /etc/modules-load.d/k8s.conf
-br_netfilter
-EOF
-
-cat <<EOF | sudo tee /etc/sysctl.d/k8s.conf
-net.bridge.bridge-nf-call-ip6tables = 1
-net.bridge.bridge-nf-call-iptables = 1
-EOF
-sudo sysctl --system
+```shell
+nc 127.0.0.1 6443
 ```
 
-For more details please see the [Network Plugin Requirements](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/#network-plugin-requirements) page.
-
-## Check required ports
-
-### Control-plane node(s)
-
-| Protocol | Direction | Port Range | Purpose                 | Used By                   |
-|----------|-----------|------------|-------------------------|---------------------------|
-| TCP      | Inbound   | 6443\*      | Kubernetes API server   | All                       |
-| TCP      | Inbound   | 2379-2380  | etcd server client API  | kube-apiserver, etcd      |
-| TCP      | Inbound   | 10250      | kubelet API             | Self, Control plane       |
-| TCP      | Inbound   | 10251      | kube-scheduler          | Self                      |
-| TCP      | Inbound   | 10252      | kube-controller-manager | Self                      |
-
-### Worker node(s)
-
-| Protocol | Direction | Port Range  | Purpose               | Used By                 |
-|----------|-----------|-------------|-----------------------|-------------------------|
-| TCP      | Inbound   | 10250       | kubelet API           | Self, Control plane     |
-| TCP      | Inbound   | 30000-32767 | NodePort Services†    | All                     |
-
-† Default port range for [NodePort Services](/docs/concepts/services-networking/service/).
-
-Any port numbers marked with * are overridable, so you will need to ensure any
-custom ports you provide are also open.
-
-Although etcd ports are included in control-plane nodes, you can also host your own
-etcd cluster externally or on custom ports.
-
-The pod network plugin you use (see below) may also require certain ports to be
+The pod network plugin you use may also require certain ports to be
 open. Since this differs with each pod network plugin, please see the
 documentation for the plugins about what port(s) those need.
 
-## Installing runtime {#installing-runtime}
+## Installing a container runtime {#installing-runtime}
 
 To run containers in Pods, Kubernetes uses a
 {{< glossary_tooltip term_id="container-runtime" text="container runtime" >}}.
 
-{{< tabs name="container_runtime" >}}
-{{% tab name="Linux nodes" %}}
-
 By default, Kubernetes uses the
 {{< glossary_tooltip term_id="cri" text="Container Runtime Interface">}} (CRI)
 to interface with your chosen container runtime.
 
 If you don't specify a runtime, kubeadm automatically tries to detect an installed
-container runtime by scanning through a list of well known Unix domain sockets.
-The following table lists container runtimes and their associated socket paths:
+container runtime by scanning through a list of known endpoints.
 
-{{< table caption = "Container runtimes and their socket paths" >}}
-| Runtime    | Path to Unix domain socket        |
-|------------|-----------------------------------|
-| Docker     | `/var/run/dockershim.sock`        |
-| containerd | `/run/containerd/containerd.sock` |
-| CRI-O      | `/var/run/crio/crio.sock`         |
+If multiple or no container runtimes are detected kubeadm will throw an error
+and will request that you specify which one you want to use.
+
+See [container runtimes](/docs/setup/production-environment/container-runtimes/)
+for more information.
+
+{{< note >}}
+Docker Engine does not implement the [CRI](/docs/concepts/architecture/cri/)
+which is a requirement for a container runtime to work with Kubernetes.
+For that reason, an additional service [cri-dockerd](https://github.com/Mirantis/cri-dockerd)
+has to be installed. cri-dockerd is a project based on the legacy built-in
+Docker Engine support that was [removed](/dockershim) from the kubelet in version 1.24.
+{{< /note >}}
+
+The tables below include the known endpoints for supported operating systems:
+
+{{< tabs name="container_runtime" >}}
+{{% tab name="Linux" %}}
+
+{{< table >}}
+| Runtime                            | Path to Unix domain socket                   |
+|------------------------------------|----------------------------------------------|
+| containerd                         | `unix:///var/run/containerd/containerd.sock` |
+| CRI-O                              | `unix:///var/run/crio/crio.sock`             |
+| Docker Engine (using cri-dockerd)  | `unix:///var/run/cri-dockerd.sock`           |
 {{< /table >}}
 
-<br />
-If both Docker and containerd are detected, Docker takes precedence. This is
-needed because Docker 18.09 ships with containerd and both are detectable even if you only
-installed Docker.
-If any other two or more runtimes are detected, kubeadm exits with an error.
-
-The kubelet integrates with Docker through the built-in `dockershim` CRI implementation.
-
-See [container runtimes](/docs/setup/production-environment/container-runtimes/)
-for more information.
 {{% /tab %}}
-{{% tab name="other operating systems" %}}
-By default, kubeadm uses {{< glossary_tooltip term_id="docker" >}} as the container runtime.
-The kubelet integrates with Docker through the built-in `dockershim` CRI implementation.
 
-See [container runtimes](/docs/setup/production-environment/container-runtimes/)
-for more information.
+{{% tab name="Windows" %}}
+
+{{< table >}}
+| Runtime                            | Path to Windows named pipe                   |
+|------------------------------------|----------------------------------------------|
+| containerd                         | `npipe:////./pipe/containerd-containerd`     |
+| Docker Engine (using cri-dockerd)  | `npipe:////./pipe/cri-dockerd`               |
+{{< /table >}}
+
 {{% /tab %}}
 {{< /tabs >}}
 
-
 ## Installing kubeadm, kubelet and kubectl
 
 You will install these packages on all of your machines:
@@ -213,7 +182,6 @@ name=Kubernetes
 baseurl=https://packages.cloud.google.com/yum/repos/kubernetes-el7-\$basearch
 enabled=1
 gpgcheck=1
-repo_gpgcheck=1
 gpgkey=https://packages.cloud.google.com/yum/doc/yum-key.gpg https://packages.cloud.google.com/yum/doc/rpm-package-key.gpg
 exclude=kubelet kubeadm kubectl
 EOF
@@ -235,6 +203,10 @@ sudo systemctl enable --now kubelet
 
   - You can leave SELinux enabled if you know how to configure it but it may require settings that are not supported by kubeadm.
 
+  - If the `baseurl` fails because your Red Hat-based distribution cannot interpret `basearch`, replace `\$basearch` with your computer's architecture.
+  Type `uname -m` to see that value.
+  For example, the `baseurl` URL for `x86_64` could be: `https://packages.cloud.google.com/yum/repos/kubernetes-el7-x86_64`.
+
 {{% /tab %}}
 {{% tab name="Without a package manager" %}}
 Install CNI plugins (required for most pod network):
@@ -261,7 +233,7 @@ sudo mkdir -p $DOWNLOAD_DIR
 Install crictl (required for kubeadm / Kubelet Container Runtime Interface (CRI))
 
 ```bash
-CRICTL_VERSION="v1.17.0"
+CRICTL_VERSION="v1.22.0"
 ARCH="amd64"
 curl -L "https://github.com/kubernetes-sigs/cri-tools/releases/download/${CRICTL_VERSION}/crictl-${CRICTL_VERSION}-linux-${ARCH}.tar.gz" | sudo tar -C $DOWNLOAD_DIR -xz
 ```
diff --git a/content/en/docs/setup/production-environment/tools/kubeadm/kubelet-integration.md b/content/en/docs/setup/production-environment/tools/kubeadm/kubelet-integration.md
index dda9aba77a..63c1f718ab 100644
--- a/content/en/docs/setup/production-environment/tools/kubeadm/kubelet-integration.md
+++ b/content/en/docs/setup/production-environment/tools/kubeadm/kubelet-integration.md
@@ -8,6 +8,8 @@ weight: 80
 
 <!-- overview -->
 
+{{% dockershim-removal %}}
+
 {{< feature-state for_k8s_version="v1.11" state="stable" >}}
 
 The lifecycle of the kubeadm CLI tool is decoupled from the
@@ -36,7 +38,7 @@ using kubeadm, rather than managing the kubelet configuration for each Node manu
 ### Propagating cluster-level configuration to each kubelet
 
 You can provide the kubelet with default values to be used by `kubeadm init` and `kubeadm join`
-commands. Interesting examples include using a different CRI runtime or setting the default subnet
+commands. Interesting examples include using a different container runtime or setting the default subnet
 used by services.
 
 If you want your services to use the subnet `10.96.0.0/12` as the default for services, you can pass
@@ -51,7 +53,7 @@ by the kubelet, using the `--cluster-dns` flag. This setting needs to be the sam
 on every manager and Node in the cluster. The kubelet provides a versioned, structured API object
 that can configure most parameters in the kubelet and push out this configuration to each running
 kubelet in the cluster. This object is called
-[`KubeletConfiguration`](/docs/reference/config-api/kubelet-config.v1beta1/). 
+[`KubeletConfiguration`](/docs/reference/config-api/kubelet-config.v1beta1/).
 The `KubeletConfiguration` allows the user to specify flags such as the cluster DNS IP addresses expressed as
 a list of values to a camelCased key, illustrated by the following example:
 
@@ -78,14 +80,12 @@ networking, or other host-specific parameters. The following list provides a few
   unless you are using a cloud provider. You can use the `--hostname-override` flag to override the
   default behavior if you need to specify a Node name different from the machine's hostname.
 
-- Currently, the kubelet cannot automatically detect the cgroup driver used by the CRI runtime,
-  but the value of `--cgroup-driver` must match the cgroup driver used by the CRI runtime to ensure
+- Currently, the kubelet cannot automatically detect the cgroup driver used by the container runtime,
+  but the value of `--cgroup-driver` must match the cgroup driver used by the container runtime to ensure
   the health of the kubelet.
 
-- Depending on the CRI runtime your cluster uses, you may need to specify different flags to the kubelet.
-  For instance, when using Docker, you need to specify flags such as `--network-plugin=cni`, but if you
-  are using an external runtime, you need to specify `--container-runtime=remote` and specify the CRI
-  endpoint using the `--container-runtime-endpoint=<path>`.
+- To specify the container runtime you must set its endpoint with the
+`--container-runtime-endpoint=<path>` flag.
 
 You can specify these flags by configuring an individual kubelet's configuration in your service manager,
 such as systemd.
@@ -105,10 +105,9 @@ for more information on the individual fields.
 ### Workflow when using `kubeadm init`
 
 When you call `kubeadm init`, the kubelet configuration is marshalled to disk
-at `/var/lib/kubelet/config.yaml`, and also uploaded to a ConfigMap in the cluster. The ConfigMap
-is named `kubelet-config-1.X`, where `X` is the minor version of the Kubernetes version you are
-initializing. A kubelet configuration file is also written to `/etc/kubernetes/kubelet.conf` with the
-baseline cluster-wide configuration for all kubelets in the cluster. This configuration file
+at `/var/lib/kubelet/config.yaml`, and also uploaded to a `kubelet-config` ConfigMap in the `kube-system`
+namespace of the cluster. A kubelet configuration file is also written to `/etc/kubernetes/kubelet.conf`
+with the baseline cluster-wide configuration for all kubelets in the cluster. This configuration file
 points to the client certificates that allow the kubelet to communicate with the API server. This
 addresses the need to
 [propagate cluster-level configuration to each kubelet](#propagating-cluster-level-configuration-to-each-kubelet).
@@ -123,7 +122,7 @@ KUBELET_KUBEADM_ARGS="--flag1=value1 --flag2=value2 ..."
 ```
 
 In addition to the flags used when starting the kubelet, the file also contains dynamic
-parameters such as the cgroup driver and whether to use a different CRI runtime socket
+parameters such as the cgroup driver and whether to use a different container runtime socket
 (`--cri-socket`).
 
 After marshalling these two files to disk, kubeadm attempts to run the following two
@@ -139,7 +138,7 @@ If the reload and restart are successful, the normal `kubeadm init` workflow con
 
 When you run `kubeadm join`, kubeadm uses the Bootstrap Token credential to perform
 a TLS bootstrap, which fetches the credential needed to download the
-`kubelet-config-1.X` ConfigMap and writes it to `/var/lib/kubelet/config.yaml`. The dynamic
+`kubelet-config` ConfigMap and writes it to `/var/lib/kubelet/config.yaml`. The dynamic
 environment file is generated in exactly the same way as `kubeadm init`.
 
 Next, `kubeadm` runs the following two commands to load the new configuration into the kubelet:
@@ -151,8 +150,10 @@ systemctl daemon-reload && systemctl restart kubelet
 After the kubelet loads the new configuration, kubeadm writes the
 `/etc/kubernetes/bootstrap-kubelet.conf` KubeConfig file, which contains a CA certificate and Bootstrap
 Token. These are used by the kubelet to perform the TLS Bootstrap and obtain a unique
-credential, which is stored in `/etc/kubernetes/kubelet.conf`. When this file is written, the kubelet
-has finished performing the TLS Bootstrap.
+credential, which is stored in `/etc/kubernetes/kubelet.conf`.
+
+When the `/etc/kubernetes/kubelet.conf` file is written, the kubelet has finished performing the TLS Bootstrap.
+Kubeadm deletes the `/etc/kubernetes/bootstrap-kubelet.conf` file after completing the TLS Bootstrap.
 
 ##  The kubelet drop-in file for systemd
 
@@ -167,10 +168,15 @@ It augments the basic
 [`kubelet.service` for RPM](https://github.com/kubernetes/release/blob/master/cmd/kubepkg/templates/latest/rpm/kubelet/kubelet.service) or
 [`kubelet.service` for DEB](https://github.com/kubernetes/release/blob/master/cmd/kubepkg/templates/latest/deb/kubelet/lib/systemd/system/kubelet.service):
 
+{{< note >}}
+The contents below are just an example. If you don't want to use a package manager
+follow the guide outlined in the [Without a package manager](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#k8s-install-2))
+section.
+{{< /note >}}
+
 ```none
 [Service]
-Environment="KUBELET_KUBECONFIG_ARGS=--bootstrap-kubeconfig=/etc/kubernetes/bootstrap-kubelet.conf
---kubeconfig=/etc/kubernetes/kubelet.conf"
+Environment="KUBELET_KUBECONFIG_ARGS=--bootstrap-kubeconfig=/etc/kubernetes/bootstrap-kubelet.conf --kubeconfig=/etc/kubernetes/kubelet.conf"
 Environment="KUBELET_CONFIG_ARGS=--config=/var/lib/kubelet/config.yaml"
 # This is a file that "kubeadm init" and "kubeadm join" generate at runtime, populating
 the KUBELET_KUBEADM_ARGS variable dynamically
@@ -201,8 +207,7 @@ The DEB and RPM packages shipped with the Kubernetes releases are:
 | Package name | Description |
 |--------------|-------------|
 | `kubeadm`    | Installs the `/usr/bin/kubeadm` CLI tool and the [kubelet drop-in file](#the-kubelet-drop-in-file-for-systemd) for the kubelet. |
-| `kubelet`    | Installs the kubelet binary in `/usr/bin` and CNI binaries in `/opt/cni/bin`. |
+| `kubelet`    | Installs the `/usr/bin/kubelet` binary. |
 | `kubectl`    | Installs the `/usr/bin/kubectl` binary. |
 | `cri-tools` | Installs the `/usr/bin/crictl` binary from the [cri-tools git repository](https://github.com/kubernetes-sigs/cri-tools). |
-
-
+| `kubernetes-cni` | Installs the `/opt/cni/bin` binaries from the [plugins git repository](https://github.com/containernetworking/plugins). |
diff --git a/content/en/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm.md b/content/en/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm.md
index 0319ee17fc..c5abcde425 100644
--- a/content/en/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm.md
+++ b/content/en/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm.md
@@ -1,7 +1,7 @@
 ---
 reviewers:
 - sig-cluster-lifecycle
-title: Set up a High Availability etcd cluster with kubeadm
+title: Set up a High Availability etcd Cluster with kubeadm
 content_type: task
 weight: 70
 ---
@@ -16,19 +16,21 @@ or upgrades for such nodes. The long term plan is to empower the tool
 aspects.
 {{< /note >}}
 
-Kubeadm defaults to running a single member etcd cluster in a static pod managed
-by the kubelet on the control plane node. This is not a high availability setup
-as the etcd cluster contains only one member and cannot sustain any members
-becoming unavailable. This task walks through the process of creating a high
-availability etcd cluster of three members that can be used as an external etcd
-when using kubeadm to set up a kubernetes cluster.
+By default, kubeadm runs a local etcd instance on each control plane node.
+It is also possible to treat the etcd cluster as external and provision
+etcd instances on separate hosts. The differences between the two approaches are covered in the
+[Options for Highly Available topology](/docs/setup/production-environment/tools/kubeadm/ha-topology) page.
+
+This task walks through the process of creating a high availability external
+etcd cluster of three members that can be used by kubeadm during cluster creation.
 
 ## {{% heading "prerequisites" %}}
 
-* Three hosts that can talk to each other over ports 2379 and 2380. This
+* Three hosts that can talk to each other over TCP ports 2379 and 2380. This
   document assumes these default ports. However, they are configurable through
   the kubeadm config file.
-* Each host must [have docker, kubelet, and kubeadm installed](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/).
+* Each host must have systemd and a bash compatible shell installed.
+* Each host must [have a container runtime, kubelet, and kubeadm installed](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/).
 * Each host should have access to the Kubernetes container image registry (`k8s.gcr.io`) or list/pull the required etcd image using
 `kubeadm config images list/pull`. This guide will setup etcd instances as
 [static pods](/docs/tasks/configure-pod-container/static-pod/) managed by a kubelet.
@@ -43,11 +45,16 @@ The general approach is to generate all certs on one node and only distribute
 the *necessary* files to the other nodes.
 
 {{< note >}}
-kubeadm contains all the necessary crytographic machinery to generate
+kubeadm contains all the necessary cryptographic machinery to generate
 the certificates described below; no other cryptographic tooling is required for
 this example.
 {{< /note >}}
 
+{{< note >}}
+The examples below use IPv4 addresses but you can also configure kubeadm, the kubelet and etcd
+to use IPv6 addresses. Dual-stack is supported by some Kubernetes options, but not by etcd. For more details
+on Kubernetes dual-stack support see [Dual-stack support with kubeadm](/docs/setup/production-environment/tools/kubeadm/dual-stack-support/).
+{{< /note >}}
 
 1. Configure the kubelet to be a service manager for etcd.
 
@@ -59,8 +66,9 @@ this example.
     cat << EOF > /etc/systemd/system/kubelet.service.d/20-etcd-service-manager.conf
     [Service]
     ExecStart=
-    #  Replace "systemd" with the cgroup driver of your container runtime. The default value in the kubelet is "cgroupfs".
-    ExecStart=/usr/bin/kubelet --address=127.0.0.1 --pod-manifest-path=/etc/kubernetes/manifests --cgroup-driver=systemd
+    # Replace "systemd" with the cgroup driver of your container runtime. The default value in the kubelet is "cgroupfs".
+    # Replace the value of "--container-runtime-endpoint" for a different container runtime if needed.
+    ExecStart=/usr/bin/kubelet --address=127.0.0.1 --pod-manifest-path=/etc/kubernetes/manifests --cgroup-driver=systemd --container-runtime=remote --container-runtime-endpoint=unix:///var/run/containerd/containerd.sock
     Restart=always
     EOF
 
@@ -80,21 +88,34 @@ this example.
     member running on it using the following script.
 
     ```sh
-    # Update HOST0, HOST1, and HOST2 with the IPs or resolvable names of your hosts
+    # Update HOST0, HOST1 and HOST2 with the IPs of your hosts
     export HOST0=10.0.0.6
     export HOST1=10.0.0.7
     export HOST2=10.0.0.8
 
+    # Update NAME0, NAME1 and NAME2 with the hostnames of your hosts
+    export NAME0="infra0"
+    export NAME1="infra1"
+    export NAME2="infra2"
+
     # Create temp directories to store files that will end up on other hosts.
     mkdir -p /tmp/${HOST0}/ /tmp/${HOST1}/ /tmp/${HOST2}/
 
-    ETCDHOSTS=(${HOST0} ${HOST1} ${HOST2})
-    NAMES=("infra0" "infra1" "infra2")
+    HOSTS=(${HOST0} ${HOST1} ${HOST2})
+    NAMES=(${NAME0} ${NAME1} ${NAME2})
 
-    for i in "${!ETCDHOSTS[@]}"; do
-    HOST=${ETCDHOSTS[$i]}
+    for i in "${!HOSTS[@]}"; do
+    HOST=${HOSTS[$i]}
     NAME=${NAMES[$i]}
     cat << EOF > /tmp/${HOST}/kubeadmcfg.yaml
+    ---
+    apiVersion: "kubeadm.k8s.io/v1beta3"
+    kind: InitConfiguration
+    nodeRegistration:
+        name: ${NAME}
+    localAPIEndpoint:
+        advertiseAddress: ${HOST}
+    ---
     apiVersion: "kubeadm.k8s.io/v1beta3"
     kind: ClusterConfiguration
     etcd:
@@ -104,7 +125,7 @@ this example.
             peerCertSANs:
             - "${HOST}"
             extraArgs:
-                initial-cluster: ${NAMES[0]}=https://${ETCDHOSTS[0]}:2380,${NAMES[1]}=https://${ETCDHOSTS[1]}:2380,${NAMES[2]}=https://${ETCDHOSTS[2]}:2380
+                initial-cluster: ${NAMES[0]}=https://${HOSTS[0]}:2380,${NAMES[1]}=https://${HOSTS[1]}:2380,${NAMES[2]}=https://${HOSTS[2]}:2380
                 initial-cluster-state: new
                 name: ${NAME}
                 listen-peer-urls: https://${HOST}:2380
@@ -246,8 +267,8 @@ this example.
 
     ```sh
     root@HOST0 $ kubeadm init phase etcd local --config=/tmp/${HOST0}/kubeadmcfg.yaml
-    root@HOST1 $ kubeadm init phase etcd local --config=/tmp/${HOST1}/kubeadmcfg.yaml
-    root@HOST2 $ kubeadm init phase etcd local --config=/tmp/${HOST2}/kubeadmcfg.yaml
+    root@HOST1 $ kubeadm init phase etcd local --config=$HOME/kubeadmcfg.yaml
+    root@HOST2 $ kubeadm init phase etcd local --config=$HOME/kubeadmcfg.yaml
     ```
 
 1. Optional: Check the cluster health
diff --git a/content/en/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm.md b/content/en/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm.md
index 8baf5e9dd6..7b195a34fd 100644
--- a/content/en/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm.md
+++ b/content/en/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm.md
@@ -93,11 +93,12 @@ This may be caused by a number of problems. The most common are:
 configure it properly see [Configuring a cgroup driver](/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver/).
 - control plane containers are crashlooping or hanging. You can check this by running `docker ps`
 and investigating each container by running `docker logs`. For other container runtime see
-[Debugging Kubernetes nodes with crictl](/docs/tasks/debug-application-cluster/crictl/).
+[Debugging Kubernetes nodes with crictl](/docs/tasks/debug/debug-cluster/crictl/).
 
 ## kubeadm blocks when removing managed containers
 
-The following could happen if Docker halts and does not remove any Kubernetes-managed containers:
+The following could happen if the container runtime halts and does not remove
+any Kubernetes-managed containers:
 
 ```shell
 sudo kubeadm reset
@@ -111,18 +112,9 @@ sudo kubeadm reset
 (block)
 ```
 
-A possible solution is to restart the Docker service and then re-run `kubeadm reset`:
-
-```shell
-sudo systemctl restart docker.service
-sudo kubeadm reset
-```
-
-Inspecting the logs for docker may also be useful:
-
-```shell
-journalctl -u docker
-```
+A possible solution is to restart the container runtime and then re-run `kubeadm reset`.
+You can also use `crictl` to debug the state of the container runtime. See
+[Debugging Kubernetes nodes with crictl](/docs/tasks/debug/debug-cluster/crictl/).
 
 ## Pods in `RunContainerError`, `CrashLoopBackOff` or `Error` state
 
@@ -136,10 +128,6 @@ Right after `kubeadm init` there should not be any pods in these states.
   it's very likely that the Pod Network add-on that you installed is somehow broken.
   You might have to grant it more RBAC privileges or use a newer version. Please file
   an issue in the Pod Network providers' issue tracker and get the issue triaged there.
-- If you install a version of Docker older than 1.12.1, remove the `MountFlags=slave` option
-  when booting `dockerd` with `systemd` and restart `docker`. You can see the MountFlags in `/usr/lib/systemd/system/docker.service`.
-  MountFlags can interfere with volumes mounted by Kubernetes, and put the Pods in `CrashLoopBackOff` state.
-  The error happens when Kubernetes does not find `var/run/secrets/kubernetes.io/serviceaccount` files.
 
 ## `coredns` is stuck in the `Pending` state
 
@@ -159,11 +147,11 @@ Calico, Canal, and Flannel CNI providers are verified to support HostPort.
 For more information, see the [CNI portmap documentation](https://github.com/containernetworking/plugins/blob/master/plugins/meta/portmap/README.md).
 
 If your network provider does not support the portmap CNI plugin, you may need to use the [NodePort feature of
-services](/docs/concepts/services-networking/service/#nodeport) or use `HostNetwork=true`.
+services](/docs/concepts/services-networking/service/#type-nodeport) or use `HostNetwork=true`.
 
 ## Pods are not accessible via their Service IP
 
-- Many network add-ons do not yet enable [hairpin mode](/docs/tasks/debug-application-cluster/debug-service/#a-pod-fails-to-reach-itself-via-the-service-ip)
+- Many network add-ons do not yet enable [hairpin mode](/docs/tasks/debug/debug-application/debug-service/#a-pod-fails-to-reach-itself-via-the-service-ip)
   which allows pods to access themselves via their Service IP. This is an issue related to
   [CNI](https://github.com/containernetworking/cni/issues/476). Please contact the network
   add-on provider to get the latest status of their support for hairpin mode.
@@ -224,9 +212,17 @@ the `ca.key` you must sign the embedded certificates in the `kubelet.conf` exter
 1. Copy this resulted `kubelet.conf` to `/etc/kubernetes/kubelet.conf` on the failed node.
 1. Restart the kubelet (`systemctl restart kubelet`) on the failed node and wait for
 `/var/lib/kubelet/pki/kubelet-client-current.pem` to be recreated.
-1. Run `kubeadm init phase kubelet-finalize all` on the failed node. This will make the new
-`kubelet.conf` file use `/var/lib/kubelet/pki/kubelet-client-current.pem` and will restart the kubelet.
+1. Manually edit the `kubelet.conf` to point to the rotated kubelet client certificates, by replacing
+`client-certificate-data` and `client-key-data` with:
+
+    ```yaml
+    client-certificate: /var/lib/kubelet/pki/kubelet-client-current.pem
+    client-key: /var/lib/kubelet/pki/kubelet-client-current.pem
+    ```
+
+1. Restart the kubelet.
 1. Make sure the node becomes `Ready`.
+
 ## Default NIC When using flannel as the pod network in Vagrant
 
 The following error might indicate that something was wrong in the pod network:
@@ -262,7 +258,7 @@ Error from server: Get https://10.19.0.41:10250/containerLogs/default/mysql-ddc6
   When using DigitalOcean, it can be the public one (assigned to `eth0`) or
   the private one (assigned to `eth1`) should you want to use the optional
   private network. The `kubeletExtraArgs` section of the kubeadm
-  [`NodeRegistrationOptions` structure](/docs/reference/config-api/kubeadm-config.v1beta2/#kubeadm-k8s-io-v1beta2-NodeRegistrationOptions)
+  [`NodeRegistrationOptions` structure](/docs/reference/config-api/kubeadm-config.v1beta3/#kubeadm-k8s-io-v1beta3-NodeRegistrationOptions)
   can be used for this.
 
   Then restart `kubelet`:
@@ -336,7 +332,7 @@ Alternatively, you can try separating the `key=value` pairs like so:
 `--apiserver-extra-args "enable-admission-plugins=LimitRanger,enable-admission-plugins=NamespaceExists"`
 but this will result in the key `enable-admission-plugins` only having the value of `NamespaceExists`.
 
-A known workaround is to use the kubeadm [configuration file](/docs/reference/config-api/kubeadm-config.v1beta2/).
+A known workaround is to use the kubeadm [configuration file](/docs/reference/config-api/kubeadm-config.v1beta3/).
 
 ## kube-proxy scheduled before node is initialized by cloud-controller-manager
 
@@ -355,7 +351,7 @@ A known solution is to patch the kube-proxy DaemonSet to allow scheduling it on
 nodes regardless of their conditions, keeping it off of other nodes until their initial guarding
 conditions abate:
 ```
-kubectl -n kube-system patch ds kube-proxy -p='{ "spec": { "template": { "spec": { "tolerations": [ { "key": "CriticalAddonsOnly", "operator": "Exists" }, { "effect": "NoSchedule", "key": "node-role.kubernetes.io/master" } ] } } } }'
+kubectl -n kube-system patch ds kube-proxy -p='{ "spec": { "template": { "spec": { "tolerations": [ { "key": "CriticalAddonsOnly", "operator": "Exists" }, { "effect": "NoSchedule", "key": "node-role.kubernetes.io/master" }, { "effect": "NoSchedule", "key": "node-role.kubernetes.io/control-plane" } ] } } } }'
 ```
 
 The tracking issue for this problem is [here](https://github.com/kubernetes/kubeadm/issues/1027).
@@ -367,6 +363,7 @@ For [flex-volume support](https://github.com/kubernetes/community/blob/ab55d85/c
 Kubernetes components like the kubelet and kube-controller-manager use the default path of
 `/usr/libexec/kubernetes/kubelet-plugins/volume/exec/`, yet the flex-volume directory _must be writeable_
 for the feature to work.
+(**Note**: FlexVolume was deprecated in the Kubernetes v1.23 release)
 
 To workaround this issue you can configure the flex-volume directory using the kubeadm
 [configuration file](/docs/reference/config-api/kubeadm-config.v1beta3/).
diff --git a/content/en/docs/setup/production-environment/tools/kubespray.md b/content/en/docs/setup/production-environment/tools/kubespray.md
index 08893370cf..9877088a5b 100644
--- a/content/en/docs/setup/production-environment/tools/kubespray.md
+++ b/content/en/docs/setup/production-environment/tools/kubespray.md
@@ -6,21 +6,26 @@ weight: 30
 
 <!-- overview -->
 
-This quickstart helps to install a Kubernetes cluster hosted on GCE, Azure, OpenStack, AWS, vSphere, Packet (bare metal), Oracle Cloud Infrastructure (Experimental) or Baremetal with [Kubespray](https://github.com/kubernetes-sigs/kubespray).
+This quickstart helps to install a Kubernetes cluster hosted on GCE, Azure, OpenStack, AWS, vSphere, Equinix Metal (formerly Packet), Oracle Cloud Infrastructure (Experimental) or Baremetal with [Kubespray](https://github.com/kubernetes-sigs/kubespray).
 
-Kubespray is a composition of [Ansible](https://docs.ansible.com/) playbooks, [inventory](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/ansible.md), provisioning tools, and domain knowledge for generic OS/Kubernetes clusters configuration management tasks. Kubespray provides:
+Kubespray is a composition of [Ansible](https://docs.ansible.com/) playbooks, [inventory](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/ansible.md#inventory), provisioning tools, and domain knowledge for generic OS/Kubernetes clusters configuration management tasks. 
 
-* a highly available cluster
-* composable attributes
-* support for most popular Linux distributions
-  * Ubuntu 16.04, 18.04, 20.04
-  * CentOS/RHEL/Oracle Linux 7, 8
-  * Debian Buster, Jessie, Stretch, Wheezy
-  * Fedora 31, 32
-  * Fedora CoreOS
-  * openSUSE Leap 15
-  * Flatcar Container Linux by Kinvolk
-* continuous integration tests
+Kubespray provides:
+* Highly available cluster.
+* Composable (Choice of the network plugin for instance).
+* Supports most popular Linux distributions:
+  - Flatcar Container Linux by Kinvolk
+  - Debian Bullseye, Buster, Jessie, Stretch
+  - Ubuntu 16.04, 18.04, 20.04, 22.04
+  - CentOS/RHEL 7, 8
+  - Fedora 34, 35
+  - Fedora CoreOS
+  - openSUSE Leap 15.x/Tumbleweed
+  - Oracle Linux 7, 8
+  - Alma Linux 8
+  - Rocky Linux 8
+  - Amazon Linux 2 
+* Continuous integration tests.
 
 To choose a tool which best fits your use case, read [this comparison](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/comparisons.md) to
 [kubeadm](/docs/reference/setup-tools/kubeadm/) and [kops](/docs/setup/production-environment/tools/kops/).
@@ -33,20 +38,20 @@ To choose a tool which best fits your use case, read [this comparison](https://g
 
 Provision servers with the following [requirements](https://github.com/kubernetes-sigs/kubespray#requirements):
 
-* **Ansible v2.9 and python-netaddr is installed on the machine that will run Ansible commands**
-* **Jinja 2.11 (or newer) is required to run the Ansible Playbooks**
-* The target servers must have access to the Internet in order to pull docker images. Otherwise, additional configuration is required ([See Offline Environment](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/offline-environment.md))
-* The target servers are configured to allow **IPv4 forwarding**
-* **Your ssh key must be copied** to all the servers part of your inventory
-* The **firewalls are not managed**, you'll need to implement your own rules the way you used to. in order to avoid any issue during deployment you should disable your firewall
-* If kubespray is ran from non-root user account, correct privilege escalation method should be configured in the target servers. Then the `ansible_become` flag or command parameters `--become` or `-b` should be specified
+* **Minimum required version of Kubernetes is v1.22**
+* **Ansible v2.11+, Jinja 2.11+ and python-netaddr is installed on the machine that will run Ansible commands**
+* The target servers must have **access to the Internet** in order to pull docker images. Otherwise, additional configuration is required See ([Offline Environment](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/offline-environment.md))
+* The target servers are configured to allow **IPv4 forwarding**.
+* If using IPv6 for pods and services, the target servers are configured to allow **IPv6 forwarding**.
+* The **firewalls are not managed**, you'll need to implement your own rules the way you used to. in order to avoid any issue during deployment you should disable your firewall.
+* If kubespray is run from non-root user account, correct privilege escalation method should be configured in the target servers. Then the `ansible_become` flag or command parameters `--become` or `-b` should be specified.
 
 Kubespray provides the following utilities to help provision your environment:
 
 * [Terraform](https://www.terraform.io/) scripts for the following cloud providers:
   * [AWS](https://github.com/kubernetes-sigs/kubespray/tree/master/contrib/terraform/aws)
   * [OpenStack](https://github.com/kubernetes-sigs/kubespray/tree/master/contrib/terraform/openstack)
-  * [Packet](https://github.com/kubernetes-sigs/kubespray/tree/master/contrib/terraform/packet)
+  * [Equinix Metal](https://github.com/kubernetes-sigs/kubespray/tree/master/contrib/terraform/metal)
 
 ### (2/5) Compose an inventory file
 
@@ -85,7 +90,7 @@ Large deployments (100+ nodes) may require [specific adjustments](https://github
 
 ### (5/5) Verify the deployment
 
-Kubespray provides a way to verify inter-pod connectivity and DNS resolve with [Netchecker](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/netcheck.md). Netchecker ensures the netchecker-agents pods can resolve DNS requests and ping each over within the default namespace. Those pods mimic similar behavior of the rest of the workloads and serve as cluster health indicators.
+Kubespray provides a way to verify inter-pod connectivity and DNS resolve with [Netchecker](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/netcheck.md). Netchecker ensures the netchecker-agents pods can resolve DNS requests and ping each over within the default namespace. Those pods mimic similar behavior as the rest of the workloads and serve as cluster health indicators.
 
 ## Cluster operations
 
@@ -110,11 +115,10 @@ When running the reset playbook, be sure not to accidentally target your product
 
 ## Feedback
 
-* Slack Channel: [#kubespray](https://kubernetes.slack.com/messages/kubespray/) (You can get your invite [here](https://slack.k8s.io/))
-* [GitHub Issues](https://github.com/kubernetes-sigs/kubespray/issues)
+* Slack Channel: [#kubespray](https://kubernetes.slack.com/messages/kubespray/) (You can get your invite [here](https://slack.k8s.io/)).
+* [GitHub Issues](https://github.com/kubernetes-sigs/kubespray/issues).
 
 ## {{% heading "whatsnext" %}}
 
-
-Check out planned work on Kubespray's [roadmap](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/roadmap.md).
-
+* Check out planned work on Kubespray's [roadmap](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/roadmap.md).
+* Learn more about [Kubespray](https://github.com/kubernetes-sigs/kubespray).
diff --git a/content/en/docs/setup/production-environment/windows/intro-windows-in-kubernetes.md b/content/en/docs/setup/production-environment/windows/intro-windows-in-kubernetes.md
deleted file mode 100644
index c3757824c5..0000000000
--- a/content/en/docs/setup/production-environment/windows/intro-windows-in-kubernetes.md
+++ /dev/null
@@ -1,1335 +0,0 @@
----
-title: Intro to Windows support in Kubernetes
-content_type: concept
-weight: 65
-reviewers:
-- jayunit100
-- jsturtevant
-- marosset
-- perithompson
----
-
-<!-- overview -->
-
-Windows applications constitute a large portion of the services and
-applications that run in many organizations.
-[Windows containers](https://aka.ms/windowscontainers) provide a modern way to
-encapsulate processes and package dependencies, making it easier to use DevOps
-practices and follow cloud native patterns for Windows applications.
-Kubernetes has become the defacto standard container orchestrator, and the
-release of Kubernetes 1.14 includes production support for scheduling Windows
-containers on Windows nodes in a Kubernetes cluster, enabling a vast ecosystem
-of Windows applications to leverage the power of Kubernetes. Organizations
-with investments in Windows-based applications and Linux-based applications
-don't have to look for separate orchestrators to manage their workloads,
-leading to increased operational efficiencies across their deployments,
-regardless of operating system.
-
-<!-- body -->
-
-## Windows containers in Kubernetes
-
-To enable the orchestration of Windows containers in Kubernetes, include
-Windows nodes in your existing Linux cluster. Scheduling Windows containers in
-{{< glossary_tooltip text="Pods" term_id="pod" >}} on Kubernetes is similar to
-scheduling Linux-based containers.
-
-In order to run Windows containers, your Kubernetes cluster must include
-multiple operating systems, with control plane nodes running Linux and workers
-running either Windows or Linux depending on your workload needs. Windows
-Server 2019 is the only Windows operating system supported, enabling
-[Kubernetes Node](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/architecture/architecture.md#the-kubernetes-node)
-on Windows (including kubelet,
-[container runtime](https://docs.microsoft.com/en-us/virtualization/windowscontainers/deploy-containers/containerd),
-and kube-proxy). For a detailed explanation of Windows distribution channels
-see the [Microsoft documentation](https://docs.microsoft.com/en-us/windows-server/get-started-19/servicing-channels-19).
-
-The Kubernetes control plane, including the
-[master components](/docs/concepts/overview/components/),
-continues to run on Linux.
-There are no plans to have a Windows-only Kubernetes cluster.
-
-In this document, when we talk about Windows containers we mean Windows
-containers with process isolation. Windows containers with
-[Hyper-V isolation](https://docs.microsoft.com/en-us/virtualization/windowscontainers/manage-containers/hyperv-container)
-is planned for a future release.
-
-## Supported Functionality and Limitations
-
-### Supported Functionality
-
-#### Windows OS Version Support
-
-Refer to the following table for Windows operating system support in
-Kubernetes. A single heterogeneous Kubernetes cluster can have both Windows
-and Linux worker nodes. Windows containers have to be scheduled on Windows
-nodes and Linux containers on Linux nodes.
-
-| Kubernetes version | Windows Server LTSC releases | Windows Server SAC releases |
-| --- | --- | --- | --- |
-| *Kubernetes v1.20* | Windows Server 2019 | Windows Server ver 1909, Windows Server ver 2004 |
-| *Kubernetes v1.21* | Windows Server 2019 | Windows Server ver 2004, Windows Server ver 20H2 |
-| *Kubernetes v1.22* | Windows Server 2019 | Windows Server ver 2004, Windows Server ver 20H2 |
-
-Information on the different Windows Server servicing channels including their
-support models can be found at
-[Windows Server servicing channels](https://docs.microsoft.com/en-us/windows-server/get-started-19/servicing-channels-19).
-
-We don't expect all Windows customers to update the operating system for their
-apps frequently. Upgrading your applications is what dictates and necessitates
-upgrading or introducing new nodes to the cluster. For the customers that
-chose to upgrade their operating system for containers running on Kubernetes,
-we will offer guidance and step-by-step instructions when we add support for a
-new operating system version. This guidance will include recommended upgrade
-procedures for upgrading user applications together with cluster nodes.
-Windows nodes adhere to Kubernetes
-[version-skew policy](/docs/setup/release/version-skew-policy/) (node to control plane
-versioning) the same way as Linux nodes do today.
-
-
-The Windows Server Host Operating System is subject to the
-[Windows Server ](https://www.microsoft.com/en-us/cloud-platform/windows-server-pricing)
-licensing. The Windows Container images are subject to the
-[Supplemental License Terms for Windows containers](https://docs.microsoft.com/en-us/virtualization/windowscontainers/images-eula).
-
-Windows containers with process isolation have strict compatibility rules,
-[where the host OS version must match the container base image OS version](https://docs.microsoft.com/en-us/virtualization/windowscontainers/deploy-containers/version-compatibility).
-Once we support Windows containers with Hyper-V isolation in Kubernetes, the
-limitation and compatibility rules will change.
-
-#### Pause Image
-
-Kubernetes maintains a multi-architecture image that includes support for Windows.
-For Kubernetes v1.22 the recommended pause image is `k8s.gcr.io/pause:3.5`.
-The [source code](https://github.com/kubernetes/kubernetes/tree/master/build/pause)
-is available on GitHub.
-
-Microsoft maintains a multi-architecture image with Linux and Windows amd64 support at `mcr.microsoft.com/oss/kubernetes/pause:3.5`.
-This image is built from the same source as the Kubernetes maintained image but all of the Windows binaries are [authenticode signed](https://docs.microsoft.com/en-us/windows-hardware/drivers/install/authenticode) by Microsoft.
-The Microsoft maintained image is recommended for production environments when signed binaries are required.
-
-#### Compute
-
-From an API and kubectl perspective, Windows containers behave in much the
-same way as Linux-based containers. However, there are some notable
-differences in key functionality which are outlined in the
-[limitation section](#limitations).
-
-Key Kubernetes elements work the same way in Windows as they do in Linux. In
-this section, we talk about some of the key workload enablers and how they map
-to Windows.
-
-* [Pods](/docs/concepts/workloads/pods/)
-
-  A Pod is the basic building block of Kubernetes–the smallest and simplest
-  unit in the Kubernetes object model that you create or deploy. You may not
-  deploy Windows and Linux containers in the same Pod. All containers in a Pod
-  are scheduled onto a single Node where each Node represents a specific
-  platform and architecture. The following Pod capabilities, properties and
-  events are supported with Windows containers:
-
-  * Single or multiple containers per Pod with process isolation and volume sharing
-  * Pod status fields
-  * Readiness and Liveness probes
-  * postStart & preStop container lifecycle events
-  * ConfigMap, Secrets: as environment variables or volumes
-  * EmptyDir
-  * Named pipe host mounts
-  * Resource limits
-* [Controllers](/docs/concepts/workloads/controllers/)
-
-  Kubernetes controllers handle the desired state of Pods. The following
-  workload controllers are supported with Windows containers:
-
-  * ReplicaSet
-  * ReplicationController
-  * Deployments
-  * StatefulSets
-  * DaemonSet
-  * Job
-  * CronJob
-
-* [Services](/docs/concepts/services-networking/service/)
-
-  A Kubernetes Service is an abstraction which defines a logical set of Pods
-  and a policy by which to access them - sometimes called a micro-service. You
-  can use services for cross-operating system connectivity. In Windows, services
-  can utilize the following types, properties and capabilities:
-
-  * Service Environment variables
-  * NodePort
-  * ClusterIP
-  * LoadBalancer
-  * ExternalName
-  * Headless services
-
-Pods, Controllers and Services are critical elements to managing Windows
-workloads on Kubernetes. However, on their own they are not enough to enable
-the proper lifecycle management of Windows workloads in a dynamic cloud native
-environment. We added support for the following features:
-
-* Pod and container metrics
-* Horizontal Pod Autoscaler support
-* kubectl Exec
-* Resource Quotas
-* Scheduler preemption
-
-#### Container Runtime
-
-##### Docker EE
-
-{{< feature-state for_k8s_version="v1.14" state="stable" >}}
-
-Docker EE-basic 19.03+ is the recommended container runtime for all Windows
-Server versions. This works with the dockershim code included in the kubelet.
-
-##### CRI-ContainerD
-
-{{< feature-state for_k8s_version="v1.20" state="stable" >}}
-
-{{< glossary_tooltip term_id="containerd" text="ContainerD" >}} 1.4.0+ can
-also be used as the container runtime for Windows Kubernetes nodes.
-
-Learn how to
-[install ContainerD on a Windows](/docs/setup/production-environment/container-runtimes/#install-containerd).
-
-#### Persistent Storage
-
-Kubernetes [volumes](/docs/concepts/storage/volumes/) enable complex
-applications, with data persistence and Pod volume sharing requirements, to be
-deployed on Kubernetes. Management of persistent volumes associated with a
-specific storage back-end or protocol includes actions such as:
-provisioning/de-provisioning/resizing of volumes, attaching/detaching a volume
-to/from a Kubernetes node and mounting/dismounting a volume to/from individual
-containers in a pod that needs to persist data. The code implementing these
-volume management actions for a specific storage back-end or protocol is
-shipped in the form of a Kubernetes volume
-[plugin](/docs/concepts/storage/volumes/#types-of-volumes). The following
-broad classes of Kubernetes volume plugins are supported on Windows:
-
-##### In-tree Volume Plugins
-
-Code associated with in-tree volume plugins ship as part of the core
-Kubernetes code base. Deployment of in-tree volume plugins do not require
-installation of additional scripts or deployment of separate containerized
-plugin components. These plugins can handle: provisioning/de-provisioning and
-resizing of volumes in the storage backend, attaching/detaching of volumes
-to/from a Kubernetes node and mounting/dismounting a volume to/from individual
-containers in a pod. The following in-tree plugins support Windows nodes:
-
-* [awsElasticBlockStore](/docs/concepts/storage/volumes/#awselasticblockstore)
-* [azureDisk](/docs/concepts/storage/volumes/#azuredisk)
-* [azureFile](/docs/concepts/storage/volumes/#azurefile)
-* [gcePersistentDisk](/docs/concepts/storage/volumes/#gcepersistentdisk)
-* [vsphereVolume](/docs/concepts/storage/volumes/#vspherevolume)
-
-##### FlexVolume Plugins
-
-Code associated with [FlexVolume](/docs/concepts/storage/volumes/#flexVolume)
-plugins ship as out-of-tree scripts or binaries that need to be deployed
-directly on the host. FlexVolume plugins handle attaching/detaching of volumes
-to/from a Kubernetes node and mounting/dismounting a volume to/from individual
-containers in a pod. Provisioning/De-provisioning of persistent volumes
-associated with FlexVolume plugins may be handled through an external
-provisioner that is typically separate from the FlexVolume plugins. The
-following FlexVolume
-[plugins](https://github.com/Microsoft/K8s-Storage-Plugins/tree/master/flexvolume/windows),
-deployed as powershell scripts on the host, support Windows nodes:
-
-* [SMB](https://github.com/microsoft/K8s-Storage-Plugins/tree/master/flexvolume/windows/plugins/microsoft.com~smb.cmd)
-* [iSCSI](https://github.com/microsoft/K8s-Storage-Plugins/tree/master/flexvolume/windows/plugins/microsoft.com~iscsi.cmd)
-
-##### CSI Plugins
-
-{{< feature-state for_k8s_version="v1.22" state="stable" >}}
-
-Code associated with {{< glossary_tooltip text="CSI" term_id="csi" >}} plugins
-ship as out-of-tree scripts and binaries that are typically distributed as
-container images and deployed using standard Kubernetes constructs like
-DaemonSets and StatefulSets. CSI plugins handle a wide range of volume
-management actions in Kubernetes: provisioning/de-provisioning/resizing of
-volumes, attaching/detaching of volumes to/from a Kubernetes node and
-mounting/dismounting a volume to/from individual containers in a pod,
-backup/restore of persistent data using snapshots and cloning.
-
-CSI plugins communicate with a CSI node plugin which performs the local storage operations.
-On Windows nodes CSI node plugins typically call APIs exposed by the community-managed
-[csi-proxy](https://github.com/kubernetes-csi/csi-proxy) which handles the local storage operations.
-
-Please refer to the deployment guide of the environment where you wish to deploy a Windows CSI plugin
-for further details around installation.
-You may also refer to the following [installation steps](https://github.com/kubernetes-csi/csi-proxy#installation).
-
-#### Networking
-
-Networking for Windows containers is exposed through
-[CNI plugins](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/).
-Windows containers function similarly to virtual machines in regards to
-networking. Each container has a virtual network adapter (vNIC) which is
-connected to a Hyper-V virtual switch (vSwitch). The Host Networking Service
-(HNS) and the Host Compute Service (HCS) work together to create containers
-and attach container vNICs to networks. HCS is responsible for the management
-of containers whereas HNS is responsible for the management of networking
-resources such as:
-
-* Virtual networks (including creation of vSwitches)
-* Endpoints / vNICs
-* Namespaces
-* Policies (Packet encapsulations, Load-balancing rules, ACLs, NAT'ing rules, etc.)
-
-The following service spec types are supported:
-
-* NodePort
-* ClusterIP
-* LoadBalancer
-* ExternalName
-
-##### Network modes
-
-Windows supports five different networking drivers/modes: L2bridge, L2tunnel,
-Overlay, Transparent, and NAT. In a heterogeneous cluster with Windows and
-Linux worker nodes, you need to select a networking solution that is
-compatible on both Windows and Linux. The following out-of-tree plugins are
-supported on Windows, with recommendations on when to use each CNI:
-
-<table>
- <thead>
-  <tr>
-   <th>Network Driver</th>
-   <th>Description</th>
-   <th>Container Packet Modifications</th>
-   <th>Network Plugins</th>
-   <th>Network Plugin Characteristics</th>
-  </tr>
- </thead>
- <tbody>
-  <tr>
-   <td>L2bridge</td>
-   <td>Containers are attached to an external vSwitch. Containers are attached
-      to the underlay network, although the physical network doesn't need to learn
-      the container. MACs because they are rewritten on ingress/egress.
-   </td>
-   <td>
-      MAC is rewritten to host MAC, IP may be rewritten to host IP using HNS
-      OutboundNAT policy.
-   </td>
-   <td>
-    <a href="https://github.com/containernetworking/plugins/tree/master/plugins/main/windows/win-bridge">win-bridge<a>,
-    <a href="https://github.com/Azure/azure-container-networking/blob/master/docs/cni.md">Azure-CNI</a>,
-    Flannel host-gateway uses win-bridge
-   </td>
-   <td>
-    win-bridge uses L2bridge network mode,
-    connects containers to the underlay of hosts, offering best performance.
-    Requires user-defined routes (UDR) for inter-node connectivity.
-   </td>
-  </tr>
-  <tr>
-   <td>L2Tunnel</td>
-   <td>
-    This is a special case of l2bridge, but only used on Azure. All packets
-    are sent to the virtualization host where SDN policy is applied.
-   </td>
-   <td>
-    MAC rewritten, IP visible on the underlay network
-   </td>
-   <td>
-    <a href="https://github.com/Azure/azure-container-networking/blob/master/docs/cni.md">Azure-CNI</a>
-   </td>
-   <td>
-      Azure-CNI allows integration of containers with Azure vNET, and allows them
-      to leverage the set of capabilities that
-      <a href="https://azure.microsoft.com/en-us/services/virtual-network/">Azure Virtual Network</a>
-      provides. For example, securely connect to Azure services or use Azure NSGs.
-      See <a href="https://docs.microsoft.com/en-us/azure/aks/concepts-network#azure-cni-advanced-networking">azure-cni</a>
-      for some examples.
-   </td>
-  </tr>
-  <tr>
-   <td>Overlay (Overlay networking for Windows in Kubernetes is in <B>Alpha</B> stage)</td>
-   <td>
-    Containers are given a vNIC connected to an external vSwitch. Each overlay
-    network gets its own IP subnet, defined by a custom IP prefix.The overlay
-    network driver uses VXLAN encapsulation.
-   </td>
-   <td>
-    Encapsulated with an outer header.
-   </td>
-   <td>
-    <a href="https://github.com/containernetworking/plugins/tree/master/plugins/main/windows/win-overlay">Win-overlay</a>,
-    Flannel VXLAN (uses win-overlay)
-   </td>
-   <td>
-    win-overlay should be used when virtual container networks are desired to
-    be isolated from underlay of hosts (e.g. for security reasons). Allows for IPs
-    to be re-used for different overlay networks (which have different VNID tags)
-    if you are restricted on IPs in your datacenter.  This option requires
-    <a href="https://support.microsoft.com/help/4489899">KB4489899</a> on Windows Server
-    2019.
-   </td>
-  </tr>
-  <tr>
-   <td>
-    Transparent (special use case for <a href="https://github.com/openvswitch/ovn-kubernetes">ovn-kubernetes</a>)
-   </td>
-   <td>
-    Requires an external vSwitch. Containers are attached to an external
-    vSwitch which enables intra-pod communication via logical networks (logical
-    switches and routers).
-   </td>
-   <td>
-    Packet is encapsulated either via
-    <a href="https://datatracker.ietf.org/doc/draft-gross-geneve/">GENEVE</a>,
-    <a href="https://datatracker.ietf.org/doc/draft-davie-stt/">STT</a> tunneling to reach
-    pods which are not on the same host.<br/> Packets are forwarded or dropped
-    via the tunnel metadata information supplied by the ovn network controller.
-    <br/>
-    NAT is done for north-south communication.
-   </td>
-   <td>
-    <a href="https://github.com/openvswitch/ovn-kubernetes">ovn-kubernetes</a>
-   </td>
-   <td>
-     Deploy via <a href="https://github.com/openvswitch/ovn-kubernetes/tree/master/contrib">Ansible</a>.
-     Distributed ACLs can be applied via Kubernetes policies. IPAM support.
-     Load-balancing can be achieved without kube-proxy. NATing is done without
-     using iptables/netsh.
-   </td>
-  </tr>
-  <tr>
-   <td>NAT (<B>not used in Kubernetes</B>)</td>
-   <td>
-    Containers are given a vNIC connected to an internal vSwitch. DNS/DHCP is
-    provided using an internal component called
-    <a href="https://blogs.technet.microsoft.com/virtualization/2016/05/25/windows-nat-winnat-capabilities-and-limitations">WinNAT</a>.
-   </td>
-   <td>
-    MAC and IP is rewritten to host MAC/IP.
-   </td>
-   <td>
-    <a href="https://github.com/Microsoft/windows-container-networking/tree/master/plugins/nat">nat</a>
-   </td>
-   <td>
-    Included here for completeness
-   </td>
-  </tr>
- </tbody>
-</table>
-
-As outlined above, the [Flannel](https://github.com/coreos/flannel) CNI
-[meta plugin](https://github.com/containernetworking/plugins/tree/master/plugins/meta/flannel)
-is also supported on
-[Windows](https://github.com/containernetworking/plugins/tree/master/plugins/meta/flannel#windows-support-experimental)
-via the [VXLAN network backend](https://github.com/coreos/flannel/blob/master/Documentation/backends.md#vxlan)
-(**alpha support** ; delegates to win-overlay) and
-[host-gateway network backend](https://github.com/coreos/flannel/blob/master/Documentation/backends.md#host-gw)
-(stable support; delegates to win-bridge). This plugin supports delegating to
-one of the reference CNI plugins (win-overlay, win-bridge), to work in
-conjunction with Flannel daemon on Windows (Flanneld) for automatic node
-subnet lease assignment and HNS network creation. This plugin reads in its own
-configuration file (cni.conf), and aggregates it with the environment
-variables from the FlannelD generated subnet.env file. It then delegates to
-one of the reference CNI plugins for network plumbing, and sends the correct
-configuration containing the node-assigned subnet to the IPAM plugin (e.g.
-host-local).
-
-For the node, pod, and service objects, the following network flows are
-supported for TCP/UDP traffic:
-
-* Pod -> Pod (IP)
-* Pod -> Pod (Name)
-* Pod -> Service (Cluster IP)
-* Pod -> Service (PQDN, but only if there are no ".")
-* Pod -> Service (FQDN)
-* Pod -> External (IP)
-* Pod -> External (DNS)
-* Node -> Pod
-* Pod -> Node
-
-##### IP address management (IPAM) {#ipam}
-
-The following IPAM options are supported on Windows:
-
-* [Host-local](https://github.com/containernetworking/plugins/tree/master/plugins/ipam/host-local)
-* HNS IPAM (Inbox platform IPAM, this is a fallback when no IPAM is set)
-* [Azure-vnet-ipam](https://github.com/Azure/azure-container-networking/blob/master/docs/ipam.md) (for azure-cni only)
-
-##### Load balancing and Services
-
-On Windows, you can use the following settings to configure Services and load
-balancing behavior:
-
-{{< table caption="Windows Service Settings" >}}
-
-<table>
- <thead>
-  <tr>
-   <th>Feature</th>
-   <th>Description</th>
-   <th>Supported Kubernetes version</th>
-   <th>Supported Windows OS build</th>
-   <th>How to enable</th>
-  </tr>
- <thead>
- <tbody>
-  <tr>
-   <td>Session affinity</td>
-   <td>
-    Ensures that connections from a particular client are passed to the same
-    Pod each time.
-   </td>
-   <td>v1.20+</td>
-   <td>
-    <a href="https://blogs.windows.com/windowsexperience/2020/01/28/announcing-windows-server-vnext-insider-preview-build-19551/">Windows Server vNext Insider Preview Build 19551</a> (or higher)
-   </td>
-   <td>
-    Set <code>service.spec.sessionAffinity</code> to "ClientIP"
-   </td>
-  </tr>
-  <tr>
-   <td>Direct Server Return (DSR) </td>
-   <td>
-    Load balancing mode where the IP address fixups and the LBNAT occurs at
-    the container vSwitch port directly; service traffic arrives with the source
-    IP set as the originating pod IP.
-   </td>
-   <td>v1.20+</td>
-   <td>
-    Windows Server 2019
-   </td>
-   <td>
-    Set the following flags in kube-proxy:
-    <code>--feature-gates="WinDSR=true" --enable-dsr=true</code>
-   </td>
-  </tr>
-  <tr>
-   <td>Preserve-Destination</td>
-   <td>
-    Skips DNAT of service traffic, thereby preserving the virtual IP of the target
-    service in packets reaching the backend Pod. Also disables node-node forwarding.
-   </td>
-   <td>v1.20+</td>
-   <td>Windows Server, version 1903 (or higher)</td>
-   <td>
-    Set <code>"preserve-destination": "true"</code> in service annotations
-    and enable DSR in kube-proxy.
-   </td>
-  </tr>
-  <tr>
-   <td>IPv4/IPv6 dual-stack networking</td>
-   <td>
-    Native IPv4-to-IPv4 in parallel with IPv6-to-IPv6 communications to, from,
-    and within a cluster
-   </td>
-   <td>v1.19+</td>
-   <td>Windows Server, version 2004 (or higher)</td>
-   <td>
-    See <a href="#ipv4ipv6-dual-stack">IPv4/IPv6 dual-stack</a>
-   </td>
-  </tr>
-  <tr>
-   <td>Client IP preservation</td>
-   <td>
-    Ensures that source IP of incoming ingress traffic gets preserved. Also
-    disables node-node forwarding.
-   </td>
-   <td>v1.20+</td>
-   <td>Windows Server, version 2019 (or higher)</td>
-   <td>
-    Set <code>service.spec.externalTrafficPolicy</code> to "Local" and enable
-    DSR in kube-proxy.
-   </td>
-  </tr>
- </tbody>
-</table>
-
-{{< /table >}}
-
-#### IPv4/IPv6 dual-stack
-
-You can enable IPv4/IPv6 dual-stack networking for `l2bridge` networks using
-the `IPv6DualStack` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/). See
-[enable IPv4/IPv6 dual stack](/docs/concepts/services-networking/dual-stack#enable-ipv4ipv6-dual-stack)
-for more details.
-
-On Windows, using IPv6 with Kubernetes require Windows Server, version 2004
-(kernel version 10.0.19041.610) or later.
-
-Overlay (VXLAN) networks on Windows do not support dual-stack networking today.
-
-### Limitations
-
-Windows is only supported as a worker node in the Kubernetes architecture and
-component matrix. This means that a Kubernetes cluster must always include
-Linux master nodes, zero or more Linux worker nodes, and zero or more Windows
-worker nodes.
-
-#### Resource Handling
-
-Linux cgroups are used as a pod boundary for resource controls in Linux.
-Containers are created within that boundary for network, process and file
-system isolation. The cgroups APIs can be used to gather cpu/io/memory stats.
-In contrast, Windows uses a Job object per container with a system namespace
-filter to contain all processes in a container and provide logical isolation
-from the host. There is no way to run a Windows container without the
-namespace filtering in place. This means that system privileges cannot be
-asserted in the context of the host, and thus privileged containers are not
-available on Windows. Containers cannot assume an identity from the host
-because the Security Account Manager (SAM) is separate.
-
-#### Resource Reservations
-
-##### Memory Reservations
-
-Windows does not have an out-of-memory process killer as Linux does. Windows
-always treats all user-mode memory allocations as virtual, and pagefiles are
-mandatory. The net effect is that Windows won't reach out of memory conditions
-the same way Linux does, and processes page to disk instead of being subject
-to out of memory (OOM) termination. If memory is over-provisioned and all
-physical memory is exhausted, then paging can slow down performance.
-
-Keeping memory usage within reasonable bounds is possible using the kubelet
-parameters `--kubelet-reserve` and/or `--system-reserve` to account for memory
-usage on the node (outside of containers). This reduces
-[NodeAllocatable](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable). 
-
-As you deploy workloads, use resource limits (must set only limits or limits
-must equal requests) on containers. This also subtracts from NodeAllocatable
-and prevents the scheduler from adding more pods once a node is full.
-
-A best practice to avoid over-provisioning is to configure the kubelet with a
-system reserved memory of at least 2GB to account for Windows, Docker, and
-Kubernetes processes.
-
-##### CPU Reservations
-
-To account for Windows, Docker and other Kubernetes host processes it is
-recommended to reserve a percentage of CPU so they are able to respond to
-events. This value needs to be scaled based on the number of CPU cores
-available on the Windows node.To determine this percentage a user should
-identify the maximum pod density for each of their nodes and monitor the CPU
-usage of the system services choosing a value that meets their workload needs.
-
-Keeping CPU usage within reasonable bounds is possible using the kubelet
-parameters `--kubelet-reserve` and/or `--system-reserve` to account for CPU
-usage on the node (outside of containers). This reduces
-[NodeAllocatable](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable). 
-
-#### Feature Restrictions
-
-* TerminationGracePeriod: not implemented
-* Single file mapping: to be implemented with CRI-ContainerD
-* Termination message: to be implemented with CRI-ContainerD
-* Privileged Containers: not currently supported in Windows containers
-* HugePages: not currently supported in Windows containers
-* The existing node problem detector is Linux-only and requires privileged
-  containers. In general, we don't expect this to be used on Windows because
-  privileged containers are not supported
-* Not all features of shared namespaces are supported (see API section for
-  more details)
-
-#### Difference in behavior of flags when compared to Linux
-
-The behavior of the following kubelet flags is different on Windows nodes as described below:
-
-* `--kubelet-reserve`, `--system-reserve` , and `--eviction-hard` flags update
-  Node Allocatable
-
-* Eviction by using `--enforce-node-allocable` is not implemented.
-
-* Eviction by using `--eviction-hard` and `--eviction-soft` are not implemented.
-
-* `MemoryPressure` Condition is not implemented.
-
-* There are no OOM eviction actions taken by the kubelet.
-
-* Kubelet running on the windows node does not have memory restrictions.
-  `--kubelet-reserve` and `--system-reserve` do not set limits on kubelet or
-  processes running on the host. This means kubelet or a process on the host
-  could cause memory resource starvation outside the node-allocatable and
-  scheduler
-
-* An additional flag to set the priority of the kubelet process is available
-  on the Windows nodes called `--windows-priorityclass`. This flag allows
-  kubelet process to get more CPU time slices when compared to other processes
-  running on the Windows host. More information on the allowable values and
-  their meaning is available at
-  [Windows Priority Classes](https://docs.microsoft.com/en-us/windows/win32/procthread/scheduling-priorities#priority-class).
-  In order for kubelet to always have enough CPU cycles it is recommended to set
-  this flag to `ABOVE_NORMAL_PRIORITY_CLASS` and above.
-
-#### Storage
-
-Windows has a layered filesystem driver to mount container layers and create a
-copy filesystem based on NTFS. All file paths in the container are resolved
-only within the context of that container.
-
-* With Docker Volume mounts can only target a directory in the container, and
-  not an individual file. This limitation does not exist with CRI-containerD.
-
-* Volume mounts cannot project files or directories back to the host
-  filesystem
-
-* Read-only filesystems are not supported because write access is always
-  required for the Windows registry and SAM database. However, read-only
-  volumes are supported
-
-* Volume user-masks and permissions are not available. Because the SAM is not
-  shared between the host & container, there's no mapping between them. All
-  permissions are resolved within the context of the container
-
-As a result, the following storage functionality is not supported on Windows nodes:
-
-* Volume subpath mounts. Only the entire volume can be mounted in a Windows container.
-* Subpath volume mounting for Secrets
-* Host mount projection
-* DefaultMode (due to UID/GID dependency)
-* Read-only root filesystem. Mapped volumes still support readOnly
-* Block device mapping
-* Memory as the storage medium
-* File system features like uui/guid, per-user Linux filesystem permissions
-* NFS based storage/volume support
-* Expanding the mounted volume (resizefs)
-
-#### Networking {#networking-limitations}
-
-Windows Container Networking differs in some important ways from Linux
-networking. The [Microsoft documentation for Windows Container Networking](https://docs.microsoft.com/en-us/virtualization/windowscontainers/container-networking/architecture)
-contains additional details and background.
-
-The Windows host networking service and virtual switch implement namespacing
-and can create virtual NICs as needed for a pod or container. However, many
-configurations such as DNS, routes, and metrics are stored in the Windows
-registry database rather than /etc/... files as they are on Linux. The Windows
-registry for the container is separate from that of the host, so concepts like
-mapping /etc/resolv.conf from the host into a container don't have the same
-effect they would on Linux. These must be configured using Windows APIs run in
-the context of that container. Therefore CNI implementations need to call the
-HNS instead of relying on file mappings to pass network details into the pod
-or container.
-
-The following networking functionality is not supported on Windows nodes
-
-* Host networking mode is not available for Windows pods.
-
-* Local NodePort access from the node itself fails (works for other nodes or
-  external clients).
-
-* Accessing service VIPs from nodes will be available with a future release of
-  Windows Server.
-
-* A single service can only support up to 64 backend pods / unique destination IPs.
-
-* Overlay networking support in kube-proxy is a beta feature. In addition, it
-  requires [KB4482887](https://support.microsoft.com/en-us/help/4482887/windows-10-update-kb4482887)
-  to be installed on Windows Server 2019.
-
-* Local Traffic Policy in non-DSR mode.
-
-* Windows containers connected to overlay networks do not support
-  communicating over the IPv6 stack. There is outstanding Windows platform
-  work required to enable this network driver to consume IPv6 addresses and
-  subsequent Kubernetes work in kubelet, kube-proxy, and CNI plugins.
-
-* Outbound communication using the ICMP protocol via the win-overlay,
-  win-bridge, and Azure-CNI plugin. Specifically, the Windows data plane
-  ([VFP](https://www.microsoft.com/en-us/research/project/azure-virtual-filtering-platform/))
-  doesn't support ICMP packet transpositions. This means:
-
-  * ICMP packets directed to destinations within the same network (e.g. pod to
-    pod communication via ping) work as expected and without any limitations
-
-  * TCP/UDP packets work as expected and without any limitations
-
-  * ICMP packets directed to pass through a remote network (e.g. pod to
-    external internet communication via ping) cannot be transposed and thus
-    will not be routed back to their source
-
-  * Since TCP/UDP packets can still be transposed, one can substitute
-    `ping <destination>` with `curl <destination>` to be able to debug connectivity
-    to the outside world.
-
-These features were added in Kubernetes v1.15:
-
-* `kubectl port-forward`
-
-##### CNI Plugins
-
-* Windows reference network plugins `win-bridge` and `win-overlay` do not
-  currently implement [CNI spec](https://github.com/containernetworking/cni/blob/master/SPEC.md)
-  v0.4.0 due to missing "CHECK" implementation.
-
-* The Flannel VXLAN CNI has the following limitations on Windows:
-
-  1. Node-pod connectivity isn't possible by design. It's only possible for
-     local pods with Flannel v0.12.0 (or higher).
-
-  1. We are restricted to using VNI 4096 and UDP port 4789. The VNI limitation
-     is being worked on and will be overcome in a future release (open-source
-     flannel changes). See the official
-     [Flannel VXLAN](https://github.com/coreos/flannel/blob/master/Documentation/backends.md#vxlan)
-     backend docs for more details on these parameters.
-
-##### DNS {#dns-limitations}
-
-* ClusterFirstWithHostNet is not supported for DNS. Windows treats all names
-  with a '.' as a FQDN and skips PQDN resolution
-
-* On Linux, you have a DNS suffix list, which is used when trying to resolve
-  PQDNs. On Windows, we only have 1 DNS suffix, which is the DNS suffix
-  associated with that pod's namespace (mydns.svc.cluster.local for example).
-  Windows can resolve FQDNs and services or names resolvable with only that
-  suffix. For example, a pod spawned in the default namespace, will have the DNS
-  suffix `default.svc.cluster.local`. On a Windows pod, you can resolve both
-  `kubernetes.default.svc.cluster.local` and `kubernetes`, but not the
-  in-betweens, like `kubernetes.default` or `kubernetes.default.svc`.
-
-* On Windows, there are multiple DNS resolvers that can be used. As these come
-  with slightly different behaviors, using the `Resolve-DNSName` utility for
-  name query resolutions is recommended.
-
-##### IPv6
-
-Kubernetes on Windows does not support single-stack "IPv6-only" networking.
-However,dual-stack IPv4/IPv6 networking for pods and nodes with single-family
-services is supported.
-See [IPv4/IPv6 dual-stack networking](#ipv4ipv6-dual-stack) for more details.
-
-##### Session affinity
-
-Setting the maximum session sticky time for Windows services using
-`service.spec.sessionAffinityConfig.clientIP.timeoutSeconds` is not supported.
-
-##### Security
-
-Secrets are written in clear text on the node's volume (as compared to
-tmpfs/in-memory on linux). This means customers have to do two things:
-
-1. Use file ACLs to secure the secrets file location
-1. Use volume-level encryption using
-   [BitLocker](https://docs.microsoft.com/en-us/windows/security/information-protection/bitlocker/bitlocker-how-to-deploy-on-windows-server)
-
-[RunAsUsername](/docs/tasks/configure-pod-container/configure-runasusername)
-can be specified for Windows Pod's or Container's to execute the Container
-processes as a node-default user. This is roughly equivalent to
-[RunAsUser](/docs/concepts/policy/pod-security-policy/#users-and-groups).
-
-Linux specific pod security context privileges such as SELinux, AppArmor,
-Seccomp, Capabilities (POSIX Capabilities), and others are not supported.
-
-In addition, as mentioned already, privileged containers are not supported on
-Windows.
-
-#### API
-
-There are no differences in how most of the Kubernetes APIs work for Windows.
-The subtleties around what's different come down to differences in the OS and
-container runtime. In certain situations, some properties on workload APIs
-such as Pod or Container were designed with an assumption that they are
-implemented on Linux, failing to run on Windows.
-
-At a high level, these OS concepts are different:
-
-* Identity - Linux uses userID (UID) and groupID (GID) which are represented
-  as integer types. User and group names are not canonical - they are an alias
-  in `/etc/groups` or `/etc/passwd` back to UID+GID. Windows uses a larger
-  binary security identifier (SID) which is stored in the Windows Security
-  Access Manager (SAM) database. This database is not shared between the host
-  and containers, or between containers.
-
-* File permissions - Windows uses an access control list based on SIDs, rather
-  than a bitmask of permissions and UID+GID
-
-* File paths - convention on Windows is to use `\` instead of `/`. The Go IO
-  libraries accept both types of file path separators. However, when you're
-  setting a path or command line that's interpreted inside a container, `\` may
-  be needed.
-
-* Signals - Windows interactive apps handle termination differently, and can
-  implement one or more of these:
-
-  * A UI thread handles well-defined messages including `WM_CLOSE`
-
-  * Console apps handle ctrl-c or ctrl-break using a Control Handler
-
-  * Services register a Service Control Handler function that can accept
-    `SERVICE_CONTROL_STOP` control codes
-
-Exit Codes follow the same convention where 0 is success, nonzero is failure.
-The specific error codes may differ across Windows and Linux. However, exit
-codes passed from the Kubernetes components (kubelet, kube-proxy) are
-unchanged.
-
-##### V1.Container
-
-* V1.Container.ResourceRequirements.limits.cpu and
-  V1.Container.ResourceRequirements.limits.memory - Windows doesn't use hard
-  limits for CPU allocations. Instead, a share system is used. The existing
-  fields based on millicores are scaled into relative shares that are followed
-  by the Windows scheduler.
-  See [kuberuntime/helpers_windows.go](https://github.com/kubernetes/kubernetes/blob/master/pkg/kubelet/kuberuntime/helpers_windows.go),
-  and [resource controls in Microsoft docs](https://docs.microsoft.com/en-us/virtualization/windowscontainers/manage-containers/resource-controls)
-
-  * Huge pages are not implemented in the Windows container runtime, and are
-    not available. They require
-    [asserting a user privilege](https://docs.microsoft.com/en-us/windows/desktop/Memory/large-page-support)
-    that's not configurable for containers.
-
-* V1.Container.ResourceRequirements.requests.cpu and
-  V1.Container.ResourceRequirements.requests.memory - Requests are subtracted
-  from node available resources, so they can be used to avoid overprovisioning a
-  node. However, they cannot be used to guarantee resources in an
-  overprovisioned node. They should be applied to all containers as a best
-  practice if the operator wants to avoid overprovisioning entirely.
-
-* V1.Container.SecurityContext.allowPrivilegeEscalation - not possible on
-  Windows, none of the capabilities are hooked up
-
-* V1.Container.SecurityContext.Capabilities - POSIX capabilities are not
-  implemented on Windows
-
-* V1.Container.SecurityContext.privileged - Windows doesn't support privileged
-  containers
-
-* V1.Container.SecurityContext.procMount - Windows doesn't have a /proc filesystem
-
-* V1.Container.SecurityContext.readOnlyRootFilesystem - not possible on
-  Windows, write access is required for registry & system processes to run
-  inside the container
-
-* V1.Container.SecurityContext.runAsGroup - not possible on Windows, no GID support
-
-* V1.Container.SecurityContext.runAsNonRoot - Windows does not have a root
-  user. The closest equivalent is ContainerAdministrator which is an identity
-  that doesn't exist on the node.
-
-* V1.Container.SecurityContext.runAsUser - not possible on Windows, no UID
-  support as int.
-
-* V1.Container.SecurityContext.seLinuxOptions - not possible on Windows, no SELinux
-
-* V1.Container.terminationMessagePath - this has some limitations in that
-  Windows doesn't support mapping single files. The default value is
-  `/dev/termination-log`, which does work because it does not exist on Windows by
-  default.
-
-##### V1.Pod
-
-* V1.Pod.hostIPC, v1.pod.hostpid - host namespace sharing is not possible on Windows
-
-* V1.Pod.hostNetwork - There is no Windows OS support to share the host network
-
-* V1.Pod.dnsPolicy - `ClusterFirstWithHostNet` is not supported because Host
-  Networking is not supported on Windows.
-
-* V1.Pod.podSecurityContext - see V1.PodSecurityContext below
-
-* V1.Pod.shareProcessNamespace - this is a beta feature, and depends on Linux
-  namespaces which are not implemented on Windows. Windows cannot share
-  process namespaces or the container's root filesystem. Only the network can be
-  shared.
-
-* V1.Pod.terminationGracePeriodSeconds - this is not fully implemented in
-  Docker on Windows, see:
-  [reference](https://github.com/moby/moby/issues/25982). The behavior today is
-  that the `ENTRYPOINT` process is sent `CTRL_SHUTDOWN_EVENT`, then Windows waits 5
-  seconds by default, and finally shuts down all processes using the normal
-  Windows shutdown behavior. The 5 second default is actually in the Windows
-  registry [inside the container](https://github.com/moby/moby/issues/25982#issuecomment-426441183),
-  so it can be overridden when the container is built.
-
-* V1.Pod.volumeDevices - this is a beta feature, and is not implemented on
-  Windows. Windows cannot attach raw block devices to pods.
-
-* V1.Pod.volumes - EmptyDir, Secret, ConfigMap, HostPath - all work and have
-  tests in TestGrid
-
-  * V1.emptyDirVolumeSource - the Node default medium is disk on Windows.
-    Memory is not supported, as Windows does not have a built-in RAM disk.
-
-* V1.VolumeMount.mountPropagation - mount propagation is not supported on Windows.
-
-##### V1.PodSecurityContext
-
-None of the PodSecurityContext fields work on Windows. They're listed here for
-reference.
-
-* V1.PodSecurityContext.SELinuxOptions - SELinux is not available on Windows
-
-* V1.PodSecurityContext.RunAsUser - provides a UID, not available on Windows
-
-* V1.PodSecurityContext.RunAsGroup - provides a GID, not available on Windows
-
-* V1.PodSecurityContext.RunAsNonRoot - Windows does not have a root user. The
-  closest equivalent is ContainerAdministrator which is an identity that
-  doesn't exist on the node.
-
-* V1.PodSecurityContext.SupplementalGroups - provides GID, not available on Windows
-
-* V1.PodSecurityContext.Sysctls - these are part of the Linux sysctl
-  interface. There's no equivalent on Windows.
-
-#### Operating System Version Restrictions
-
-Windows has strict compatibility rules, where the host OS version must match
-the container base image OS version. Only Windows containers with a container
-operating system of Windows Server 2019 are supported. Hyper-V isolation of
-containers, enabling some backward compatibility of Windows container image
-versions, is planned for a future release.
-
-## Getting Help and Troubleshooting {#troubleshooting}
-
-Your main source of help for troubleshooting your Kubernetes cluster should
-start with this
-[section](/docs/tasks/debug-application-cluster/troubleshooting/). Some
-additional, Windows-specific troubleshooting help is included in this section.
-Logs are an important element of troubleshooting issues in Kubernetes. Make
-sure to include them any time you seek troubleshooting assistance from other
-contributors. Follow the instructions in the SIG-Windows
-[contributing guide on gathering logs](https://github.com/kubernetes/community/blob/master/sig-windows/CONTRIBUTING.md#gathering-logs).
-
-* How do I know start.ps1 completed successfully?
-
-  You should see kubelet, kube-proxy, and (if you chose Flannel as your
-  networking solution) flanneld host-agent processes running on your node, with
-  running logs being displayed in separate PowerShell windows. In addition to
-  this, your Windows node should be listed as "Ready" in your Kubernetes
-  cluster.
-
-* Can I configure the Kubernetes node processes to run in the background as services?
-
-  Kubelet and kube-proxy are already configured to run as native Windows
-  Services, offering resiliency by re-starting the services automatically in the
-  event of failure (for example a process crash). You have two options for
-  configuring these node components as services.
-
-  * As native Windows Services
-
-    Kubelet & kube-proxy can be run as native Windows Services using `sc.exe`.
-
-    ```powershell
-    # Create the services for kubelet and kube-proxy in two separate commands
-    sc.exe create <component_name> binPath= "<path_to_binary> --service <other_args>"
-
-    # Please note that if the arguments contain spaces, they must be escaped.
-    sc.exe create kubelet binPath= "C:\kubelet.exe --service --hostname-override 'minion' <other_args>"
-
-    # Start the services
-    Start-Service kubelet
-    Start-Service kube-proxy
-
-    # Stop the service
-    Stop-Service kubelet (-Force)
-    Stop-Service kube-proxy (-Force)
-
-    # Query the service status
-    Get-Service kubelet
-    Get-Service kube-proxy
-    ```
-
-  * Using nssm.exe
-
-    You can also always use alternative service managers like
-    [`nssm.exe`](https://nssm.cc/) to run these processes (flanneld, kubelet &
-    kube-proxy) in the background for you. You can use this
-    [sample script](https://github.com/Microsoft/SDN/tree/master/Kubernetes/flannel/register-svc.ps1),
-    leveraging `nssm.exe` to register kubelet, kube-proxy, and `flanneld.exe`
-    to run as Windows services in the background.
-
-    ```powershell
-    register-svc.ps1 -NetworkMode <Network mode> -ManagementIP <Windows Node IP> -ClusterCIDR <Cluster subnet> -KubeDnsServiceIP <Kube-dns Service IP> -LogDir <Directory to place logs>
-    ```
-
-    The parameters are explained below:
-
-    - `NetworkMode`: The network mode l2bridge (flannel host-gw, also the
-      default value) or overlay (flannel vxlan) chosen as a network solution
-    - `ManagementIP`: The IP address assigned to the Windows node. You can use
-      `ipconfig` to find this.
-    - `ClusterCIDR`: The cluster subnet range. (Default: 10.244.0.0/16)
-    - `KubeDnsServiceIP`: The Kubernetes DNS service IP. (Default: 10.96.0.10)
-    - `LogDir`: The directory where kubelet and kube-proxy logs are redirected
-      into their respective output files. (Default value C:\k)
-
-    If the above referenced script is not suitable, you can manually configure
-    `nssm.exe` using the following examples.
-
-    Register flanneld.exe:
-
-    ```powershell
-    nssm install flanneld C:\flannel\flanneld.exe
-    nssm set flanneld AppParameters --kubeconfig-file=c:\k\config --iface=<ManagementIP> --ip-masq=1 --kube-subnet-mgr=1
-    nssm set flanneld AppEnvironmentExtra NODE_NAME=<hostname>
-    nssm set flanneld AppDirectory C:\flannel
-    nssm start flanneld
-    ```
-
-    Register kubelet.exe:
-
-    ```powershell
-    nssm install kubelet C:\k\kubelet.exe
-    nssm set kubelet AppParameters --hostname-override=<hostname> --v=6 --pod-infra-container-image=k8s.gcr.io/pause:3.5 --resolv-conf="" --allow-privileged=true --enable-debugging-handlers --cluster-dns=<DNS-service-IP> --cluster-domain=cluster.local --kubeconfig=c:\k\config --hairpin-mode=promiscuous-bridge --image-pull-progress-deadline=20m --cgroups-per-qos=false  --log-dir=<log directory> --logtostderr=false --enforce-node-allocatable="" --network-plugin=cni --cni-bin-dir=c:\k\cni --cni-conf-dir=c:\k\cni\config
-    nssm set kubelet AppDirectory C:\k
-    nssm start kubelet
-    ```
-
-    Register kube-proxy.exe (l2bridge / host-gw):
-
-    ```powershell
-    nssm install kube-proxy C:\k\kube-proxy.exe
-    nssm set kube-proxy AppDirectory c:\k
-    nssm set kube-proxy AppParameters --v=4 --proxy-mode=kernelspace --hostname-override=<hostname>--kubeconfig=c:\k\config --enable-dsr=false --log-dir=<log directory> --logtostderr=false
-    nssm.exe set kube-proxy AppEnvironmentExtra KUBE_NETWORK=cbr0
-    nssm set kube-proxy DependOnService kubelet
-    nssm start kube-proxy
-    ```
-
-    Register kube-proxy.exe (overlay / vxlan):
-
-    ```powershell
-    nssm install kube-proxy C:\k\kube-proxy.exe
-    nssm set kube-proxy AppDirectory c:\k
-    nssm set kube-proxy AppParameters --v=4 --proxy-mode=kernelspace --feature-gates="WinOverlay=true" --hostname-override=<hostname> --kubeconfig=c:\k\config --network-name=vxlan0 --source-vip=<source-vip> --enable-dsr=false --log-dir=<log directory> --logtostderr=false
-    nssm set kube-proxy DependOnService kubelet
-    nssm start kube-proxy
-    ```
-
-    For initial troubleshooting, you can use the following flags in
-    [`nssm.exe`](https://nssm.cc/) to redirect stdout and stderr to a output file:
-
-    ```powershell
-    nssm set <Service Name> AppStdout C:\k\mysvc.log
-    nssm set <Service Name> AppStderr C:\k\mysvc.log
-    ```
-
-    For additional details, see official [nssm usage](https://nssm.cc/usage) docs.
-
-* My Windows Pods do not have network connectivity
-
-  If you are using virtual machines, ensure that MAC spoofing is enabled on
-  all the VM network adapter(s).
-
-* My Windows Pods cannot ping external resources
-
-  Windows Pods do not have outbound rules programmed for the ICMP protocol
-  today. However, TCP/UDP is supported. When trying to demonstrate connectivity
-  to resources outside of the cluster, please substitute `ping <IP>` with
-  corresponding `curl <IP>` commands.
-
-  If you are still facing problems, most likely your network configuration in
-  [cni.conf](https://github.com/Microsoft/SDN/blob/master/Kubernetes/flannel/l2bridge/cni/config/cni.conf)
-  deserves some extra attention. You can always edit this static file. The
-  configuration update will apply to any newly created Kubernetes resources.
-
-  One of the Kubernetes networking requirements (see
-  [Kubernetes network model](/docs/concepts/cluster-administration/networking/))
-  is for cluster communication to occur without NAT internally. To honor this
-  requirement, there is an
-  [ExceptionList](https://github.com/Microsoft/SDN/blob/master/Kubernetes/flannel/l2bridge/cni/config/cni.conf#L20)
-  for all the communication where we do not want outbound NAT to occur. However,
-  this also means that you need to exclude the external IP you are trying to
-  query from the ExceptionList. Only then will the traffic originating from your
-  Windows pods be SNAT'ed correctly to receive a response from the outside
-  world. In this regard, your ExceptionList in `cni.conf` should look as
-  follows:
-
-  ```conf
-  "ExceptionList": [
-      "10.244.0.0/16",  # Cluster subnet
-      "10.96.0.0/12",   # Service subnet
-      "10.127.130.0/24" # Management (host) subnet
-  ]
-  ```
-
-* My Windows node cannot access NodePort service
-
-  Local NodePort access from the node itself fails. This is a known
-  limitation. NodePort access works from other nodes or external clients.
-
-* vNICs and HNS endpoints of containers are being deleted
-
-  This issue can be caused when the `hostname-override` parameter is not
-  passed to
-  [kube-proxy](/docs/reference/command-line-tools-reference/kube-proxy/).
-  To resolve it, users need to pass the hostname to kube-proxy as follows:
-
-  ```powershell
-  C:\k\kube-proxy.exe --hostname-override=$(hostname)
-  ```
-
-* With flannel my nodes are having issues after rejoining a cluster
-
-  Whenever a previously deleted node is being re-joined to the cluster,
-  flannelD tries to assign a new pod subnet to the node. Users should remove the
-  old pod subnet configuration files in the following paths:
-
-  ```powershell
-  Remove-Item C:\k\SourceVip.json
-  Remove-Item C:\k\SourceVipRequest.json
-  ```
-
-* After launching `start.ps1`, flanneld is stuck in "Waiting for the Network
-  to be created"
-
-  There are numerous reports of this
-  [issue](https://github.com/coreos/flannel/issues/1066); most likely it is a
-  timing issue for when the management IP of the flannel network is set. A
-  workaround is to relaunch start.ps1 or relaunch it manually as follows:
-
-  ```powershell
-  PS C:> [Environment]::SetEnvironmentVariable("NODE_NAME", "<Windows_Worker_Hostname>")
-  PS C:> C:\flannel\flanneld.exe --kubeconfig-file=c:\k\config --iface=<Windows_Worker_Node_IP> --ip-masq=1 --kube-subnet-mgr=1
-  ```
-
-* My Windows Pods cannot launch because of missing `/run/flannel/subnet.env`
-
-  This indicates that Flannel didn't launch correctly. You can either try to
-  restart flanneld.exe or you can copy the files over manually from
-  `/run/flannel/subnet.env` on the Kubernetes master to
-  `C:\run\flannel\subnet.env` on the Windows worker node and modify the
-  `FLANNEL_SUBNET` row to a different number. For example, if node subnet
-  10.244.4.1/24 is desired:
-
-  ```none
-  FLANNEL_NETWORK=10.244.0.0/16
-  FLANNEL_SUBNET=10.244.4.1/24
-  FLANNEL_MTU=1500
-  FLANNEL_IPMASQ=true
-  ```
-
-* My Windows node cannot access my services using the service IP
-
-  This is a known limitation of the current networking stack on Windows.
-  Windows Pods are able to access the service IP however.
-
-* No network adapter is found when starting kubelet
-
-  The Windows networking stack needs a virtual adapter for Kubernetes
-  networking to work. If the following commands return no results (in an admin
-  shell), virtual network creation — a necessary prerequisite for Kubelet to
-  work — has failed:
-
-  ```powershell
-  Get-HnsNetwork | ? Name -ieq "cbr0"
-  Get-NetAdapter | ? Name -Like "vEthernet (Ethernet*"
-  ```
-
-  Often it is worthwhile to modify the
-  [InterfaceName](https://github.com/microsoft/SDN/blob/master/Kubernetes/flannel/start.ps1#L7)
-  parameter of the start.ps1 script, in cases where the host's network adapter
-  isn't "Ethernet". Otherwise, consult the output of the `start-kubelet.ps1`
-  script to see if there are errors during virtual network creation.
-
-* My Pods are stuck at "Container Creating" or restarting over and over
-
-  Check that your pause image is compatible with your OS version. The
-  [instructions](https://docs.microsoft.com/en-us/virtualization/windowscontainers/kubernetes/deploying-resources)
-  assume that both the OS and the containers are version 1803. If you have a
-  later version of Windows, such as an Insider build, you need to adjust the
-  images accordingly. Please refer to the Microsoft's
-  [Docker repository](https://hub.docker.com/u/microsoft/) for images.
-  Regardless, both the pause image Dockerfile and the sample service expect
-  the image to be tagged as :latest.
-
-* DNS resolution is not properly working
-
-  Check the [DNS limitations for Windows](#dns-limitations).
-
-* `kubectl port-forward` fails with "unable to do port forwarding: wincat not found"
-
-  Port forwarding support for Windows requires wincat.exe to be available in the
-  [pause infrastructure container](#pause-image).
-  Ensure you are using a supported image that is compatable with your Windows OS version.
-  If you would like to build your own pause infrastructure container be sure to include
-  [wincat](https://github.com/kubernetes/kubernetes/tree/master/build/pause/windows/wincat).
-
-* My Kubernetes installation is failing because my Windows Server node is
-  behind a proxy
-
-  If you are behind a proxy, the following PowerShell environment variables
-  must be defined:
-
-  ```PowerShell
-  [Environment]::SetEnvironmentVariable("HTTP_PROXY", "http://proxy.example.com:80/", [EnvironmentVariableTarget]::Machine)
-  [Environment]::SetEnvironmentVariable("HTTPS_PROXY", "http://proxy.example.com:443/", [EnvironmentVariableTarget]::Machine)
-  ```
-
-* What is a `pause` container?
-
-  In a Kubernetes Pod, an infrastructure or "pause" container is first created
-  to host the container endpoint. Containers that belong to the same pod,
-  including infrastructure and worker containers, share a common network
-  namespace and endpoint (same IP and port space). Pause containers are needed
-  to accommodate worker containers crashing or restarting without losing any of
-  the networking configuration.
-
-  Refer to the [pause image](#pause-image) section to find the recommended version
-  of the pause image.
-
-### Further investigation
-
-If these steps don't resolve your problem, you can get help running Windows
-containers on Windows nodes in Kubernetes through:
-
-* StackOverflow [Windows Server Container](https://stackoverflow.com/questions/tagged/windows-server-container) topic
-
-* Kubernetes Official Forum [discuss.kubernetes.io](https://discuss.kubernetes.io/)
-
-* Kubernetes Slack [#SIG-Windows Channel](https://kubernetes.slack.com/messages/sig-windows)
-
-## Reporting Issues and Feature Requests
-
-If you have what looks like a bug, or you would like to make a feature
-request, please use the
-[GitHub issue tracking system](https://github.com/kubernetes/kubernetes/issues).
-You can open issues on
-[GitHub](https://github.com/kubernetes/kubernetes/issues/new/choose) and
-assign them to SIG-Windows. You should first search the list of issues in case
-it was reported previously and comment with your experience on the issue and
-add additional logs. SIG-Windows Slack is also a great avenue to get some
-initial support and troubleshooting ideas prior to creating a ticket.
-
-If filing a bug, please include detailed information about how to reproduce
-the problem, such as:
-
-* Kubernetes version: kubectl version
-* Environment details: Cloud provider, OS distro, networking choice and
-  configuration, and Docker version
-* Detailed steps to reproduce the problem
-* [Relevant logs](https://github.com/kubernetes/community/blob/master/sig-windows/CONTRIBUTING.md#gathering-logs)
-* Tag the issue sig/windows by commenting on the issue with `/sig windows` to
-  bring it to a SIG-Windows member's attention
-
-## {{% heading "whatsnext" %}}
-
-We have a lot of features in our roadmap. An abbreviated high level list is
-included below, but we encourage you to view our
-[roadmap project](https://github.com/orgs/kubernetes/projects/8) and help us make
-Windows support better by
-[contributing](https://github.com/kubernetes/community/blob/master/sig-windows/).
-
-### Hyper-V isolation
-
-Hyper-V isolation is required to enable the following use cases for Windows
-containers in Kubernetes:
-
-* Hypervisor-based isolation between pods for additional security
-
-* Backwards compatibility allowing a node to run a newer Windows Server
-  version without requiring containers to be rebuilt
-
-* Specific CPU/NUMA settings for a pod
-
-* Memory isolation and reservations
-
-Hyper-V isolation support will be added in a later release and will require
-CRI-Containerd.
-
-### Deployment with kubeadm and cluster API
-
-Kubeadm is becoming the de facto standard for users to deploy a Kubernetes
-cluster. Windows node support in kubeadm is currently a work-in-progress but a
-guide is available
-[here](/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes/). We are
-also making investments in cluster API to ensure Windows nodes are properly
-provisioned.
diff --git a/content/en/docs/tasks/administer-cluster/access-cluster-services.md b/content/en/docs/tasks/access-application-cluster/access-cluster-services.md
similarity index 73%
rename from content/en/docs/tasks/administer-cluster/access-cluster-services.md
rename to content/en/docs/tasks/access-application-cluster/access-cluster-services.md
index 927e05b77a..456662692e 100644
--- a/content/en/docs/tasks/administer-cluster/access-cluster-services.md
+++ b/content/en/docs/tasks/access-application-cluster/access-cluster-services.md
@@ -64,17 +64,17 @@ kubectl cluster-info
 The output is similar to this:
 
 ```
-Kubernetes master is running at https://104.197.5.247
-elasticsearch-logging is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy
-kibana-logging is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/kibana-logging/proxy
-kube-dns is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/kube-dns/proxy
-grafana is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/monitoring-grafana/proxy
-heapster is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/monitoring-heapster/proxy
+Kubernetes master is running at https://192.0.2.1
+elasticsearch-logging is running at https://192.0.2.1/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy
+kibana-logging is running at https://192.0.2.1/api/v1/namespaces/kube-system/services/kibana-logging/proxy
+kube-dns is running at https://192.0.2.1/api/v1/namespaces/kube-system/services/kube-dns/proxy
+grafana is running at https://192.0.2.1/api/v1/namespaces/kube-system/services/monitoring-grafana/proxy
+heapster is running at https://192.0.2.1/api/v1/namespaces/kube-system/services/monitoring-heapster/proxy
 ```
 
 This shows the proxy-verb URL for accessing each service.
 For example, this cluster has cluster-level logging enabled (using Elasticsearch), which can be reached
-at `https://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/` if suitable credentials are passed, or through a kubectl proxy at, for example:
+at `https://192.0.2.1/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/` if suitable credentials are passed, or through a kubectl proxy at, for example:
 `http://localhost:8080/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/`.
 
 {{< note >}}
@@ -86,20 +86,31 @@ See [Access Clusters Using the Kubernetes API](/docs/tasks/administer-cluster/ac
 As mentioned above, you use the `kubectl cluster-info` command to retrieve the service's proxy URL. To create proxy URLs that include service endpoints, suffixes, and parameters, you append to the service's proxy URL:
 `http://`*`kubernetes_master_address`*`/api/v1/namespaces/`*`namespace_name`*`/services/`*`[https:]service_name[:port_name]`*`/proxy`
 
-If you haven't specified a name for your port, you don't have to specify *port_name* in the URL.
+If you haven't specified a name for your port, you don't have to specify *port_name* in the URL. You can also use the port number in place of the *port_name* for both named and unnamed ports.
+
+By default, the API server proxies to your service using HTTP. To use HTTPS, prefix the service name with `https:`:
+`http://<kubernetes_master_address>/api/v1/namespaces/<namespace_name>/services/<service_name>/proxy`
+
+The supported formats for the `<service_name>` segment of the URL are:
+
+* `<service_name>` - proxies to the default or unnamed port using http
+* `<service_name>:<port_name>` - proxies to the specified port name or port number using http
+* `https:<service_name>:` - proxies to the default or unnamed port using https (note the trailing colon)
+* `https:<service_name>:<port_name>` - proxies to the specified port name or port number using https
+
 
 ##### Examples
 
 * To access the Elasticsearch service endpoint `_search?q=user:kimchy`, you would use:
 
     ```
-    http://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/_search?q=user:kimchy
+    http://192.0.2.1/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/_search?q=user:kimchy
     ```
 
 * To access the Elasticsearch cluster health information `_cluster/health?pretty=true`, you would use:
 
     ```
-    https://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/_cluster/health?pretty=true
+    https://192.0.2.1/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/_cluster/health?pretty=true
     ```
 
     The health information is similar to this:
@@ -122,7 +133,7 @@ If you haven't specified a name for your port, you don't have to specify *port_n
 * To access the *https* Elasticsearch service health information `_cluster/health?pretty=true`, you would use:
 
     ```
-    https://104.197.5.247/api/v1/namespaces/kube-system/services/https:elasticsearch-logging/proxy/_cluster/health?pretty=true
+    https://192.0.2.1/api/v1/namespaces/kube-system/services/https:elasticsearch-logging:/proxy/_cluster/health?pretty=true
     ```
 
 #### Using web browsers to access services running on the cluster
diff --git a/content/en/docs/tasks/access-application-cluster/access-cluster.md b/content/en/docs/tasks/access-application-cluster/access-cluster.md
index 23d4f133a6..f20fe407e8 100644
--- a/content/en/docs/tasks/access-application-cluster/access-cluster.md
+++ b/content/en/docs/tasks/access-application-cluster/access-cluster.md
@@ -27,8 +27,8 @@ kubectl config view
 ```
 
 Many of the [examples](/docs/reference/kubectl/cheatsheet/) provide an introduction to using
-kubectl and complete documentation is found in the
-[kubectl manual](/docs/reference/kubectl/overview/).
+`kubectl`, and complete documentation is found in the
+[kubectl reference](/docs/reference/kubectl/).
 
 ## Directly accessing the REST API
 
@@ -86,12 +86,36 @@ The output is similar to this:
 
 ### Without kubectl proxy
 
-Use `kubectl describe secret...` to get the token for the default service account with grep/cut:
+Use `kubectl apply` and `kubectl describe secret...` to create a token for the default service account with grep/cut:
+
+First, create the Secret, requesting a token for the default ServiceAccount:
+
+```shell
+kubectl apply -f - <<EOF
+apiVersion: v1
+kind: Secret
+metadata:
+  name: default-token
+  annotations:
+    kubernetes.io/service-account.name: default
+type: kubernetes.io/service-account-token
+EOF
+```
+
+Next, wait for the token controller to populate the Secret with a token:
+
+```shell
+while ! kubectl describe secret default-token | grep -E '^token' >/dev/null; do
+  echo "waiting for token..." >&2
+  sleep 1
+done
+```
+
+Capture and use the generated token:
 
 ```shell
 APISERVER=$(kubectl config view --minify | grep server | cut -f 2- -d ":" | tr -d " ")
-SECRET_NAME=$(kubectl get secrets | grep ^default | cut -f1 -d ' ')
-TOKEN=$(kubectl describe secret $SECRET_NAME | grep -E '^token' | cut -f2 -d':' | tr -d " ")
+TOKEN=$(kubectl describe secret default-token | grep -E '^token' | cut -f2 -d':' | tr -d " ")
 
 curl $APISERVER/api --header "Authorization: Bearer $TOKEN" --insecure
 ```
@@ -117,8 +141,7 @@ Using `jsonpath`:
 
 ```shell
 APISERVER=$(kubectl config view --minify -o jsonpath='{.clusters[0].cluster.server}')
-SECRET_NAME=$(kubectl get serviceaccount default -o jsonpath='{.secrets[0].name}')
-TOKEN=$(kubectl get secret $SECRET_NAME -o jsonpath='{.data.token}' | base64 --decode)
+TOKEN=$(kubectl get secret default-token -o jsonpath='{.data.token}' | base64 --decode)
 
 curl $APISERVER/api --header "Authorization: Bearer $TOKEN" --insecure
 ```
@@ -182,147 +205,16 @@ See documentation for other libraries for how they authenticate.
 ## Accessing the API from a Pod
 
 When accessing the API from a pod, locating and authenticating
-to the apiserver are somewhat different.
+to the API server are somewhat different.
 
-The recommended way to locate the apiserver within the pod is with
-the `kubernetes.default.svc` DNS name, which resolves to a Service IP which in turn
-will be routed to an apiserver.
-
-The recommended way to authenticate to the apiserver is with a
-[service account](/docs/tasks/configure-pod-container/configure-service-account/) credential. By kube-system, a pod
-is associated with a service account, and a credential (token) for that
-service account is placed into the filesystem tree of each container in that pod,
-at `/var/run/secrets/kubernetes.io/serviceaccount/token`.
-
-If available, a certificate bundle is placed into the filesystem tree of each
-container at `/var/run/secrets/kubernetes.io/serviceaccount/ca.crt`, and should be
-used to verify the serving certificate of the apiserver.
-
-Finally, the default namespace to be used for namespaced API operations is placed in a file
-at `/var/run/secrets/kubernetes.io/serviceaccount/namespace` in each container.
-
-From within a pod the recommended ways to connect to API are:
-
-  - Run `kubectl proxy` in a sidecar container in the pod, or as a background
-    process within the container. This proxies the
-    Kubernetes API to the localhost interface of the pod, so that other processes
-    in any container of the pod can access it.
-  - Use the Go client library, and create a client using the `rest.InClusterConfig()` and `kubernetes.NewForConfig()` functions.
-    They handle locating and authenticating to the apiserver. [example](https://git.k8s.io/client-go/examples/in-cluster-client-configuration/main.go)
-
-In each case, the credentials of the pod are used to communicate securely with the apiserver.
+Please check [Accessing the API from within a Pod](/docs/tasks/run-application/access-api-from-pod/)
+for more details.
 
 ## Accessing services running on the cluster
 
-The previous section was about connecting the Kubernetes API server.  This section is about
-connecting to other services running on Kubernetes cluster.  In Kubernetes, the
-[nodes](/docs/concepts/architecture/nodes/),
-[pods](/docs/concepts/workloads/pods/) and
-[services](/docs/concepts/services-networking/service/) all have
-their own IPs.  In many cases, the node IPs, pod IPs, and some service IPs on a cluster will not be
-routable, so they will not be reachable from a machine outside the cluster,
-such as your desktop machine.
-
-### Ways to connect
-
-You have several options for connecting to nodes, pods and services from outside the cluster:
-
-  - Access services through public IPs.
-    - Use a service with type `NodePort` or `LoadBalancer` to make the service reachable outside
-      the cluster.  See the [services](/docs/concepts/services-networking/service/) and
-      [kubectl expose](/docs/reference/generated/kubectl/kubectl-commands/#expose) documentation.
-    - Depending on your cluster environment, this may only expose the service to your corporate network,
-      or it may expose it to the internet.  Think about whether the service being exposed is secure.
-      Does it do its own authentication?
-    - Place pods behind services.  To access one specific pod from a set of replicas, such as for debugging,
-      place a unique label on the pod and create a new service which selects this label.
-    - In most cases, it should not be necessary for application developer to directly access
-      nodes via their nodeIPs.
-  - Access services, nodes, or pods using the Proxy Verb.
-    - Does apiserver authentication and authorization prior to accessing the remote service.
-      Use this if the services are not secure enough to expose to the internet, or to gain
-      access to ports on the node IP, or for debugging.
-    - Proxies may cause problems for some web applications.
-    - Only works for HTTP/HTTPS.
-    - Described [here](#manually-constructing-apiserver-proxy-urls).
-  - Access from a node or pod in the cluster.
-    - Run a pod, and then connect to a shell in it using [kubectl exec](/docs/reference/generated/kubectl/kubectl-commands/#exec).
-      Connect to other nodes, pods, and services from that shell.
-    - Some clusters may allow you to ssh to a node in the cluster.  From there you may be able to
-      access cluster services.  This is a non-standard method, and will work on some clusters but
-      not others.  Browsers and other tools may or may not be installed.  Cluster DNS may not work.
-
-### Discovering builtin services
-
-Typically, there are several services which are started on a cluster by kube-system. Get a list of these
-with the `kubectl cluster-info` command:
-
-```shell
-kubectl cluster-info
-```
-
-The output is similar to this:
-
-```
-Kubernetes master is running at https://104.197.5.247
-elasticsearch-logging is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy
-kibana-logging is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/kibana-logging/proxy
-kube-dns is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/kube-dns/proxy
-grafana is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/monitoring-grafana/proxy
-heapster is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/monitoring-heapster/proxy
-```
-
-This shows the proxy-verb URL for accessing each service.
-For example, this cluster has cluster-level logging enabled (using Elasticsearch), which can be reached
-at `https://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/` if suitable credentials are passed.  Logging can also be reached through a kubectl proxy, for example at:
-`http://localhost:8080/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/`.
-(See [Access Clusters Using the Kubernetes API](/docs/tasks/administer-cluster/access-cluster-api/) for how to pass credentials or use kubectl proxy.)
-
-#### Manually constructing apiserver proxy URLs
-
-As mentioned above, you use the `kubectl cluster-info` command to retrieve the service's proxy URL. To create proxy URLs that include service endpoints, suffixes, and parameters, you append to the service's proxy URL:
-`http://`*`kubernetes_master_address`*`/api/v1/namespaces/`*`namespace_name`*`/services/`*`service_name[:port_name]`*`/proxy`
-
-If you haven't specified a name for your port, you don't have to specify *port_name* in the URL. You can also use the port number in place of the *port_name* for both named and unnamed ports.
-
-By default, the API server proxies to your service using http. To use https, prefix the service name with `https:`:
-`http://`*`kubernetes_master_address`*`/api/v1/namespaces/`*`namespace_name`*`/services/`*`https:service_name:[port_name]`*`/proxy`
-
-The supported formats for the name segment of the URL are:
-
-* `<service_name>` - proxies to the default or unnamed port using http
-* `<service_name>:<port_name>` - proxies to the specified port name or port number using http
-* `https:<service_name>:` - proxies to the default or unnamed port using https (note the trailing colon)
-* `https:<service_name>:<port_name>` - proxies to the specified port name or port number using https
-
-##### Examples
-
- * To access the Elasticsearch service endpoint `_search?q=user:kimchy`, you would use:   `http://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/_search?q=user:kimchy`
- * To access the Elasticsearch cluster health information `_cluster/health?pretty=true`, you would use:   `https://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/_cluster/health?pretty=true`
-
-```json
-{
-  "cluster_name" : "kubernetes_logging",
-  "status" : "yellow",
-  "timed_out" : false,
-  "number_of_nodes" : 1,
-  "number_of_data_nodes" : 1,
-  "active_primary_shards" : 5,
-  "active_shards" : 5,
-  "relocating_shards" : 0,
-  "initializing_shards" : 0,
-  "unassigned_shards" : 5
-}
-```
-
-### Using web browsers to access services running on the cluster
-
-You may be able to put an apiserver proxy url into the address bar of a browser. However:
-
-  - Web browsers cannot usually pass tokens, so you may need to use basic (password) auth.  Apiserver can be configured to accept basic auth,
-    but your cluster may not be configured to accept basic auth.
-  - Some web apps may not work, particularly those with client side javascript that construct urls in a
-    way that is unaware of the proxy path prefix.
+The previous section describes how to connect to the Kubernetes API server.
+For information about connecting to other services running on a Kubernetes cluster, see
+[Access Cluster Services](/docs/tasks/access-application-cluster/access-cluster-services/).
 
 ## Requesting redirects
 
@@ -341,7 +233,7 @@ There are several different proxies you may encounter when using Kubernetes:
     - locates apiserver
     - adds authentication headers
 
-1.  The [apiserver proxy](#discovering-builtin-services):
+1.  The [apiserver proxy](/docs/tasks/access-application-cluster/access-cluster-services/#discovering-builtin-services):
 
     - is a bastion built into the apiserver
     - connects a user outside of the cluster to cluster IPs which otherwise might not be reachable
diff --git a/content/en/docs/tasks/access-application-cluster/communicate-containers-same-pod-shared-volume.md b/content/en/docs/tasks/access-application-cluster/communicate-containers-same-pod-shared-volume.md
index 95066ac612..897d44a54f 100644
--- a/content/en/docs/tasks/access-application-cluster/communicate-containers-same-pod-shared-volume.md
+++ b/content/en/docs/tasks/access-application-cluster/communicate-containers-same-pod-shared-volume.md
@@ -127,7 +127,7 @@ the shared Volume is lost.
 ## {{% heading "whatsnext" %}}
 
 
-* Learn more about [patterns for composite containers](https://kubernetes.io/blog/2015/06/the-distributed-system-toolkit-patterns).
+* Learn more about [patterns for composite containers](/blog/2015/06/the-distributed-system-toolkit-patterns/).
 
 * Learn about [composite containers for modular architecture](https://www.slideshare.net/Docker/slideshare-burns).
 
diff --git a/content/en/docs/tasks/access-application-cluster/configure-access-multiple-clusters.md b/content/en/docs/tasks/access-application-cluster/configure-access-multiple-clusters.md
index 8b79d7042f..0c3d05d62f 100644
--- a/content/en/docs/tasks/access-application-cluster/configure-access-multiple-clusters.md
+++ b/content/en/docs/tasks/access-application-cluster/configure-access-multiple-clusters.md
@@ -22,7 +22,8 @@ It does not mean that there is a file named `kubeconfig`.
 
 
 {{< warning >}}
-Only use kubeconfig files from trusted sources. Using a specially-crafted kubeconfig file could result in malicious code execution or file exposure. 
+Only use kubeconfig files from trusted sources. Using a specially-crafted kubeconfig
+file could result in malicious code execution or file exposure.
 If you must use an untrusted kubeconfig file, inspect it carefully first, much as you would a shell script.
 {{< /warning>}}
 
@@ -50,7 +51,7 @@ to the scratch cluster requires authentication by username and password.
 Create a directory named `config-exercise`. In your
 `config-exercise` directory, create a file named `config-demo` with this content:
 
-```shell
+```yaml
 apiVersion: v1
 kind: Config
 preferences: {}
@@ -115,7 +116,7 @@ kubectl config --kubeconfig=config-demo view
 
 The output shows the two clusters, two users, and three contexts:
 
-```shell
+```yaml
 apiVersion: v1
 clusters:
 - cluster:
@@ -271,7 +272,7 @@ For example:
 ### Linux
 
 ```shell
-export KUBECONFIG_SAVED=$KUBECONFIG
+export KUBECONFIG_SAVED="$KUBECONFIG"
 ```
 
 ### Windows PowerShell
@@ -290,7 +291,7 @@ Temporarily append two paths to your `KUBECONFIG` environment variable. For exam
 ### Linux
 
 ```shell
-export KUBECONFIG=$KUBECONFIG:config-demo:config-demo-2
+export KUBECONFIG="${KUBECONFIG}:config-demo:config-demo-2"
 ```
 
 ### Windows PowerShell
@@ -356,7 +357,7 @@ For example:
 ### Linux
 
 ```shell
-export KUBECONFIG=$KUBECONFIG:$HOME/.kube/config
+export KUBECONFIG="${KUBECONFIG}:${HOME}/.kube/config"
 ```
 
 ### Windows Powershell
@@ -379,7 +380,7 @@ Return your `KUBECONFIG` environment variable to its original value. For example
 ### Linux
 
 ```shell
-export KUBECONFIG=$KUBECONFIG_SAVED
+export KUBECONFIG="$KUBECONFIG_SAVED"
 ```
 
 ### Windows PowerShell
diff --git a/content/en/docs/tasks/access-application-cluster/connecting-frontend-backend.md b/content/en/docs/tasks/access-application-cluster/connecting-frontend-backend.md
index 9573a1a68d..37d27c7799 100644
--- a/content/en/docs/tasks/access-application-cluster/connecting-frontend-backend.md
+++ b/content/en/docs/tasks/access-application-cluster/connecting-frontend-backend.md
@@ -27,7 +27,7 @@ Kubernetes {{< glossary_tooltip term_id="service" >}} object.
 This task uses
 [Services with external load balancers](/docs/tasks/access-application-cluster/create-external-load-balancer/), which
 require a supported environment. If your environment does not support this, you can use a Service of type
-[NodePort](/docs/concepts/services-networking/service/#nodeport) instead.
+[NodePort](/docs/concepts/services-networking/service/#type-nodeport) instead.
 
 <!-- lessoncontent -->
 
diff --git a/content/en/docs/tasks/access-application-cluster/ingress-minikube.md b/content/en/docs/tasks/access-application-cluster/ingress-minikube.md
index b06afcdb0d..251bebbaef 100644
--- a/content/en/docs/tasks/access-application-cluster/ingress-minikube.md
+++ b/content/en/docs/tasks/access-application-cluster/ingress-minikube.md
@@ -2,6 +2,7 @@
 title: Set up Ingress on Minikube with the NGINX Ingress Controller
 content_type: task
 weight: 100
+min-kubernetes-server-version: 1.19
 ---
 
 <!-- overview -->
@@ -17,23 +18,21 @@ This page shows you how to set up a simple Ingress which routes requests to Serv
 
 
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+If you are using an older Kubernetes version, switch to the documentation
+for that version.
 
 
+### Create a Minikube cluster
+
+Using Katacoda
+: {{< kat-button >}}
+
+Locally
+: If you already [installed Minikube](/docs/tasks/tools/#minikube)
+  locally, run `minikube start` to create a cluster.
 
 <!-- steps -->
 
-## Create a Minikube cluster
-
-1. Click **Launch Terminal**
-
-    {{< kat-button >}}
-
-1. (Optional) If you installed Minikube locally, run the following command:
-
-    ```shell
-    minikube start
-    ```
-
 ## Enable the Ingress controller
 
 1. To enable the NGINX Ingress controller, run the following command:
@@ -44,127 +43,155 @@ This page shows you how to set up a simple Ingress which routes requests to Serv
 
 1. Verify that the NGINX Ingress controller is running
 
-    ```shell
-    kubectl get pods -n ingress-nginx
-    ```
 
-    {{< note >}}This can take up to a minute.{{< /note >}}
+   {{< tabs name="tab_with_md" >}}
+   {{% tab name="minikube v1.19 or later" %}}
+```shell
+kubectl get pods -n ingress-nginx
+```
+   {{< note >}}It can take up to a minute before you see these pods running OK.{{< /note >}}
 
-    Output:
+   The output is similar to:
 
-    ```shell
-    NAME                                        READY   STATUS      RESTARTS   AGE
-    ingress-nginx-admission-create-2tgrf        0/1     Completed   0          3m28s
-    ingress-nginx-admission-patch-68b98         0/1     Completed   0          3m28s
-    ingress-nginx-controller-59b45fb494-lzmw2   1/1     Running     0          3m28s
-    ```
+```
+NAME                                        READY   STATUS      RESTARTS    AGE
+ingress-nginx-admission-create-g9g49        0/1     Completed   0          11m
+ingress-nginx-admission-patch-rqp78         0/1     Completed   1          11m
+ingress-nginx-controller-59b45fb494-26npt   1/1     Running     0          11m
+```
+   {{% /tab %}}
+   {{% tab name="minikube v1.18.1 or earlier" %}}
+```shell
+kubectl get pods -n kube-system
+```
+   {{< note >}}It can take up to a minute before you see these pods running OK.{{< /note >}}
+
+   The output is similar to:
+
+```
+NAME                                        READY     STATUS    RESTARTS   AGE
+default-http-backend-59868b7dd6-xb8tq       1/1       Running   0          1m
+kube-addon-manager-minikube                 1/1       Running   0          3m
+kube-dns-6dcb57bcc8-n4xd4                   3/3       Running   0          2m
+kubernetes-dashboard-5498ccf677-b8p5h       1/1       Running   0          2m
+nginx-ingress-controller-5984b97644-rnkrg   1/1       Running   0          1m
+storage-provisioner                         1/1       Running   0          2m
+```
+
+  Make sure that you see a Pod with a name that starts with `nginx-ingress-controller-`.
+   {{% /tab %}}
+   {{< /tabs >}}
 
 ## Deploy a hello, world app
 
 1. Create a Deployment using the following command:
 
-    ```shell
-    kubectl create deployment web --image=gcr.io/google-samples/hello-app:1.0
-    ```
+   ```shell
+   kubectl create deployment web --image=gcr.io/google-samples/hello-app:1.0
+   ```
 
-    Output:
+   The output should be:
 
-    ```shell
-    deployment.apps/web created
-    ```
+   ```
+   deployment.apps/web created
+   ```
 
 1. Expose the Deployment:
 
-    ```shell
-    kubectl expose deployment web --type=NodePort --port=8080
-    ```
+   ```shell
+   kubectl expose deployment web --type=NodePort --port=8080
+   ```
 
-    Output:
+   The output should be:
 
-    ```shell
-    service/web exposed
-    ```
+   ```
+   service/web exposed
+   ```
 
 1. Verify the Service is created and is available on a node port:
 
     ```shell
-    kubectl get service web
-    ```
+   kubectl get service web
+   ```
 
-    Output:
+   The output is similar to:
 
-    ```shell
-    NAME      TYPE       CLUSTER-IP       EXTERNAL-IP   PORT(S)          AGE
-    web       NodePort   10.104.133.249   <none>        8080:31637/TCP   12m
-    ```
+   ```
+   NAME      TYPE       CLUSTER-IP       EXTERNAL-IP   PORT(S)          AGE
+   web       NodePort   10.104.133.249   <none>        8080:31637/TCP   12m
+   ```
 
-1. Visit the service via NodePort:
+1. Visit the Service via NodePort:
 
-    ```shell
-    minikube service web --url
-    ```
+   ```shell
+   minikube service web --url
+   ```
 
-    Output:
+   The output is similar to:
 
-    ```shell
-    http://172.17.0.15:31637
-    ```
+   ```
+   http://172.17.0.15:31637
+   ```
 
-    {{< note >}}Katacoda environment only: at the top of the terminal panel, click the plus sign, and then click **Select port to view on Host 1**. Enter the NodePort, in this case `31637`, and then click **Display Port**.{{< /note >}}
+   {{< note >}}Katacoda environment only: at the top of the terminal panel, click the plus sign, and then click **Select port to view on Host 1**. Enter the NodePort, in this case `31637`, and then click **Display Port**.{{< /note >}}
 
-    Output:
+   The output is similar to:
 
-    ```shell
-    Hello, world!
-    Version: 1.0.0
-    Hostname: web-55b8c6998d-8k564
-    ```
+   ```
+   Hello, world!
+   Version: 1.0.0
+   Hostname: web-55b8c6998d-8k564
+   ```
 
-    You can now access the sample app via the Minikube IP address and NodePort. The next step lets you access
-    the app using the Ingress resource.
+   You can now access the sample app via the Minikube IP address and NodePort. The next step lets you access
+   the app using the Ingress resource.
 
-## Create an Ingress resource
+## Create an Ingress
 
-The following file is an Ingress resource that sends traffic to your Service via hello-world.info.
+The following manifest defines an Ingress that sends traffic to your Service via hello-world.info.
 
 1. Create `example-ingress.yaml` from the following file:
 
-  {{< codenew file="service/networking/example-ingress.yaml" >}}
+   {{< codenew file="service/networking/example-ingress.yaml" >}}
 
-1. Create the Ingress resource by running the following command:
+1. Create the Ingress object by running the following command:
 
-    ```shell
-    kubectl apply -f https://k8s.io/examples/service/networking/example-ingress.yaml
-    ```
+   ```shell
+   kubectl apply -f https://k8s.io/examples/service/networking/example-ingress.yaml
+   ```
 
-    Output:
+   The output should be:
 
-    ```shell
-    ingress.networking.k8s.io/example-ingress created
-    ```
+   ```
+   ingress.networking.k8s.io/example-ingress created
+   ```
 
 1. Verify the IP address is set:
 
-    ```shell
-    kubectl get ingress
-    ```
+   ```shell
+   kubectl get ingress
+   ```
 
-    {{< note >}}This can take a couple of minutes.{{< /note >}}
+   {{< note >}}This can take a couple of minutes.{{< /note >}}
 
-    ```shell
-    NAME              CLASS    HOSTS              ADDRESS        PORTS   AGE
-    example-ingress   <none>   hello-world.info   172.17.0.15    80      38s
-    ```
+   You should see an IPv4 address in the ADDRESS column; for example:
 
-1. Add the following line to the bottom of the `/etc/hosts` file.
+   ```
+   NAME              CLASS    HOSTS              ADDRESS        PORTS   AGE
+   example-ingress   <none>   hello-world.info   172.17.0.15    80      38s
+   ```
 
-    {{< note >}}If you are running Minikube locally, use `minikube ip` to get the external IP. The IP address displayed within the ingress list will be the internal IP.{{< /note >}}
+1. Add the following line to the bottom of the `/etc/hosts` file on
+   your computer (you will need administrator access):
 
     ```
     172.17.0.15 hello-world.info
     ```
 
-    This sends requests from hello-world.info to Minikube.
+   {{< note >}}If you are running Minikube locally, use `minikube ip` to get the external IP. The IP address displayed within the ingress list will be the internal IP.{{< /note >}}
+
+    After you make this change, your web browser sends requests for
+    hello-world.info URLs to Minikube.
 
 1. Verify that the Ingress controller is directing traffic:
 
@@ -172,9 +199,9 @@ The following file is an Ingress resource that sends traffic to your Service via
     curl hello-world.info
     ```
 
-    Output:
+    You should see:
 
-    ```shell
+    ```
     Hello, world!
     Version: 1.0.0
     Hostname: web-55b8c6998d-8k564
@@ -182,88 +209,89 @@ The following file is an Ingress resource that sends traffic to your Service via
 
     {{< note >}}If you are running Minikube locally, you can visit hello-world.info from your browser.{{< /note >}}
 
-## Create Second Deployment
+## Create a second Deployment
 
-1. Create a v2 Deployment using the following command:
+1. Create another Deployment using the following command:
 
-    ```shell
-    kubectl create deployment web2 --image=gcr.io/google-samples/hello-app:2.0
-    ```
-    Output:
+   ```shell
+   kubectl create deployment web2 --image=gcr.io/google-samples/hello-app:2.0
+   ```
+   The output should be:
 
-    ```shell
-    deployment.apps/web2 created
-    ```
+   ```
+   deployment.apps/web2 created
+   ```
 
-1. Expose the Deployment:
+1. Expose the second Deployment:
 
-    ```shell
-    kubectl expose deployment web2 --port=8080 --type=NodePort
-    ```
+   ```shell
+   kubectl expose deployment web2 --port=8080 --type=NodePort
+   ```
 
-    Output:
+   The output should be:
 
-    ```shell
-    service/web2 exposed
-    ```
+   ```
+   service/web2 exposed
+   ```
 
-## Edit Ingress
+## Edit the existing Ingress {#edit-ingress}
 
-1. Edit the existing `example-ingress.yaml` and add the following lines:
+1. Edit the existing `example-ingress.yaml` manifest, and add the
+   following lines at the end:
 
     ```yaml
-          - path: /v2
-            pathType: Prefix
-            backend:
-              service:
-                name: web2
-                port:
-                  number: 8080
+              - path: /v2
+                pathType: Prefix
+                backend:
+                  service:
+                    name: web2
+                    port:
+                      number: 8080
     ```
 
 1. Apply the changes:
 
-    ```shell
-    kubectl apply -f example-ingress.yaml
-    ```
+   ```shell
+   kubectl apply -f example-ingress.yaml
+   ```
 
-    Output:
+   You should see:
 
-    ```shell
-    ingress.networking/example-ingress configured
-    ```
+   ```
+   ingress.networking/example-ingress configured
+   ```
 
-## Test Your Ingress
+## Test your Ingress
 
 1. Access the 1st version of the Hello World app.
 
-    ```shell
-    curl hello-world.info
-    ```
+   ```shell
+   curl hello-world.info
+   ```
 
-    Output:
+   The output is similar to:
 
-    ```shell
-    Hello, world!
-    Version: 1.0.0
-    Hostname: web-55b8c6998d-8k564
-    ```
+   ```
+   Hello, world!
+   Version: 1.0.0
+   Hostname: web-55b8c6998d-8k564
+   ```
 
 1. Access the 2nd version of the Hello World app.
 
-    ```shell
-    curl hello-world.info/v2
-    ```
+   ```shell
+   curl hello-world.info/v2
+   ```
 
-    Output:
+   The output is similar to:
 
-    ```shell
-    Hello, world!
-    Version: 2.0.0
-    Hostname: web2-75cd47646f-t8cjk
-    ```
+   ```
+   Hello, world!
+   Version: 2.0.0
+   Hostname: web2-75cd47646f-t8cjk
+   ```
 
-    {{< note >}}If you are running Minikube locally, you can visit hello-world.info and hello-world.info/v2 from your browser.{{< /note >}}
+   {{< note >}}If you are running Minikube locally, you can visit hello-world.info and hello-world.info/v2 from your browser.{{< /note >}}
 
 
 
@@ -274,5 +302,3 @@ The following file is an Ingress resource that sends traffic to your Service via
 * Read more about [Ingress Controllers](/docs/concepts/services-networking/ingress-controllers/)
 * Read more about [Services](/docs/concepts/services-networking/service/)
 
-
-
diff --git a/content/en/docs/tasks/access-application-cluster/list-all-running-container-images.md b/content/en/docs/tasks/access-application-cluster/list-all-running-container-images.md
index 133eae902b..30c4841c6d 100644
--- a/content/en/docs/tasks/access-application-cluster/list-all-running-container-images.md
+++ b/content/en/docs/tasks/access-application-cluster/list-all-running-container-images.md
@@ -70,7 +70,7 @@ The formatting can be controlled further by using the `range` operation to
 iterate over elements individually.
 
 ```shell
-kubectl get pods --all-namespaces -o=jsonpath='{range .items[*]}{"\n"}{.metadata.name}{":\t"}{range .spec.containers[*]}{.image}{", "}{end}{end}' |\
+kubectl get pods --all-namespaces -o jsonpath='{range .items[*]}{"\n"}{.metadata.name}{":\t"}{range .spec.containers[*]}{.image}{", "}{end}{end}' |\
 sort
 ```
 
@@ -80,7 +80,7 @@ To target only Pods matching a specific label, use the -l flag.  The
 following matches only Pods with labels matching `app=nginx`.
 
 ```shell
-kubectl get pods --all-namespaces -o=jsonpath="{.items[*].spec.containers[*].image}" -l app=nginx
+kubectl get pods --all-namespaces -o jsonpath="{.items[*].spec.containers[*].image}" -l app=nginx
 ```
 
 ## List Container images filtering by Pod namespace
diff --git a/content/en/docs/tasks/access-application-cluster/port-forward-access-application-cluster.md b/content/en/docs/tasks/access-application-cluster/port-forward-access-application-cluster.md
index ba8f7b1244..3b2648f943 100644
--- a/content/en/docs/tasks/access-application-cluster/port-forward-access-application-cluster.md
+++ b/content/en/docs/tasks/access-application-cluster/port-forward-access-application-cluster.md
@@ -11,180 +11,169 @@ This page shows how to use `kubectl port-forward` to connect to a MongoDB
 server running in a Kubernetes cluster. This type of connection can be useful
 for database debugging.
 
-
-
-
 ## {{% heading "prerequisites" %}}
 
-
 * {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
 * Install [MongoDB Shell](https://www.mongodb.com/try/download/shell).
 
-
-
-
 <!-- steps -->
 
 ## Creating MongoDB deployment and service
 
 1. Create a Deployment that runs MongoDB:
 
-    ```shell
-    kubectl apply -f https://k8s.io/examples/application/mongodb/mongo-deployment.yaml
-    ```
+   ```shell
+   kubectl apply -f https://k8s.io/examples/application/mongodb/mongo-deployment.yaml
+   ```
 
-    The output of a successful command verifies that the deployment was created:
+   The output of a successful command verifies that the deployment was created:
 
-    ```
-    deployment.apps/mongo created
-    ```
+   ```
+   deployment.apps/mongo created
+   ```
 
-    View the pod status to check that it is ready:
+   View the pod status to check that it is ready:
 
-    ```shell
-    kubectl get pods
-    ```
+   ```shell
+   kubectl get pods
+   ```
 
-    The output displays the pod created:
+   The output displays the pod created:
 
-    ```
-    NAME                     READY   STATUS    RESTARTS   AGE
-    mongo-75f59d57f4-4nd6q   1/1     Running   0          2m4s
-    ```
+   ```
+   NAME                     READY   STATUS    RESTARTS   AGE
+   mongo-75f59d57f4-4nd6q   1/1     Running   0          2m4s
+   ```
 
-    View the Deployment's status:
+   View the Deployment's status:
 
-    ```shell
-    kubectl get deployment
-    ```
+   ```shell
+   kubectl get deployment
+   ```
 
-    The output displays that the Deployment was created:
+   The output displays that the Deployment was created:
 
-    ```
-    NAME    READY   UP-TO-DATE   AVAILABLE   AGE
-    mongo   1/1     1            1           2m21s
-    ```
+   ```
+   NAME    READY   UP-TO-DATE   AVAILABLE   AGE
+   mongo   1/1     1            1           2m21s
+   ```
 
-    The Deployment automatically manages a ReplicaSet.
-    View the ReplicaSet status using:
+   The Deployment automatically manages a ReplicaSet.
+   View the ReplicaSet status using:
 
-    ```shell
-    kubectl get replicaset
-    ```
+   ```shell
+   kubectl get replicaset
+   ```
 
-    The output displays that the ReplicaSet was created:
-
-    ```
-    NAME               DESIRED   CURRENT   READY   AGE
-    mongo-75f59d57f4   1         1         1       3m12s
-    ```
+   The output displays that the ReplicaSet was created:
 
+   ```
+   NAME               DESIRED   CURRENT   READY   AGE
+   mongo-75f59d57f4   1         1         1       3m12s
+   ```
 
 2. Create a Service to expose MongoDB on the network:
 
-    ```shell
-    kubectl apply -f https://k8s.io/examples/application/mongodb/mongo-service.yaml
-    ```
+   ```shell
+   kubectl apply -f https://k8s.io/examples/application/mongodb/mongo-service.yaml
+   ```
 
-    The output of a successful command verifies that the Service was created:
+   The output of a successful command verifies that the Service was created:
 
-    ```
-    service/mongo created
-    ```
+   ```
+   service/mongo created
+   ```
 
-    Check the Service created:
+   Check the Service created:
 
-    ```shell
-    kubectl get service mongo
-    ```
+   ```shell
+   kubectl get service mongo
+   ```
 
-    The output displays the service created:
+   The output displays the service created:
 
-    ```
-    NAME    TYPE        CLUSTER-IP     EXTERNAL-IP   PORT(S)     AGE
-    mongo   ClusterIP   10.96.41.183   <none>        27017/TCP   11s
-    ```
+   ```
+   NAME    TYPE        CLUSTER-IP     EXTERNAL-IP   PORT(S)     AGE
+   mongo   ClusterIP   10.96.41.183   <none>        27017/TCP   11s
+   ```
 
 3. Verify that the MongoDB server is running in the Pod, and listening on port 27017:
 
-    ```shell
-    # Change mongo-75f59d57f4-4nd6q to the name of the Pod
-    kubectl get pod mongo-75f59d57f4-4nd6q --template='{{(index (index .spec.containers 0).ports 0).containerPort}}{{"\n"}}'
-    ```
+   ```shell
+   # Change mongo-75f59d57f4-4nd6q to the name of the Pod
+   kubectl get pod mongo-75f59d57f4-4nd6q --template='{{(index (index .spec.containers 0).ports 0).containerPort}}{{"\n"}}'
+   ```
 
-    The output displays the port for MongoDB in that Pod:
+   The output displays the port for MongoDB in that Pod:
 
-    ```
-    27017
-    ```
+   ```
+   27017
+   ```
 
-    (this is the TCP port allocated to MongoDB on the internet).
+   27017 is the TCP port allocated to MongoDB on the internet.
 
 ## Forward a local port to a port on the Pod
 
-1.  `kubectl port-forward` allows using resource name, such as a pod name, to select a matching pod to port forward to.
+1. `kubectl port-forward` allows using resource name, such as a pod name, to select a matching pod to port forward to.
 
 
-    ```shell
-    # Change mongo-75f59d57f4-4nd6q to the name of the Pod
-    kubectl port-forward mongo-75f59d57f4-4nd6q 28015:27017
-    ```
+   ```shell
+   # Change mongo-75f59d57f4-4nd6q to the name of the Pod
+   kubectl port-forward mongo-75f59d57f4-4nd6q 28015:27017
+   ```
 
-    which is the same as
+   which is the same as
 
-    ```shell
-    kubectl port-forward pods/mongo-75f59d57f4-4nd6q 28015:27017
-    ```
+   ```shell
+   kubectl port-forward pods/mongo-75f59d57f4-4nd6q 28015:27017
+   ```
 
-    or
+   or
 
-    ```shell
-    kubectl port-forward deployment/mongo 28015:27017
-    ```
+   ```shell
+   kubectl port-forward deployment/mongo 28015:27017
+   ```
 
-    or
+   or
 
-    ```shell
-    kubectl port-forward replicaset/mongo-75f59d57f4 28015:27017
-    ```
+   ```shell
+   kubectl port-forward replicaset/mongo-75f59d57f4 28015:27017
+   ```
 
-    or
+   or
 
-    ```shell
-    kubectl port-forward service/mongo 28015:27017
-    ```
+   ```shell
+   kubectl port-forward service/mongo 28015:27017
+   ```
 
-    Any of the above commands works. The output is similar to this:
+   Any of the above commands works. The output is similar to this:
 
-    ```
-    Forwarding from 127.0.0.1:28015 -> 27017
-    Forwarding from [::1]:28015 -> 27017
-    ```
+   ```
+   Forwarding from 127.0.0.1:28015 -> 27017
+   Forwarding from [::1]:28015 -> 27017
+   ```
 
-{{< note >}}
+   {{< note >}}
+   `kubectl port-forward` does not return. To continue with the exercises, you will need to open another terminal.
+   {{< /note >}}
 
-`kubectl port-forward` does not return. To continue with the exercises, you will need to open another terminal.
+2. Start the MongoDB command line interface:
 
-{{< /note >}}
+   ```shell
+   mongosh --port 28015
+   ```
 
-2.  Start the MongoDB command line interface:
+3. At the MongoDB command line prompt, enter the `ping` command:
 
-    ```shell
-    mongosh --port 28015
-    ```
+   ```
+   db.runCommand( { ping: 1 } )
+   ```
 
-3.  At the MongoDB command line prompt, enter the `ping` command:
+   A successful ping request returns:
 
-    ```
-    db.runCommand( { ping: 1 } )
-    ```
-
-    A successful ping request returns:
-
-    ```
-    { ok: 1 }
-    ```
+   ```
+   { ok: 1 }
+   ```
 
 ### Optionally let _kubectl_ choose the local port {#let-kubectl-choose-local-port}
 
@@ -204,7 +193,6 @@ Forwarding from 127.0.0.1:63753 -> 27017
 Forwarding from [::1]:63753 -> 27017
 ```
 
-
 <!-- discussion -->
 
 ## Discussion
@@ -219,9 +207,7 @@ The support for UDP protocol is tracked in
 [issue 47862](https://github.com/kubernetes/kubernetes/issues/47862).
 {{< /note >}}
 
-
-
-
 ## {{% heading "whatsnext" %}}
 
 Learn more about [kubectl port-forward](/docs/reference/generated/kubectl/kubectl-commands/#port-forward).
+
diff --git a/content/en/docs/tasks/access-application-cluster/web-ui-dashboard.md b/content/en/docs/tasks/access-application-cluster/web-ui-dashboard.md
index 0182bbad73..8439dcd0b1 100644
--- a/content/en/docs/tasks/access-application-cluster/web-ui-dashboard.md
+++ b/content/en/docs/tasks/access-application-cluster/web-ui-dashboard.md
@@ -1,6 +1,8 @@
 ---
 reviewers:
-- bryk
+- floreks
+- maciaszczykm
+- shu-mutou
 - mikedanese
 title: Deploy and Access the Kubernetes Dashboard
 description: >-
@@ -35,7 +37,7 @@ Dashboard also provides information on the state of Kubernetes resources in your
 The Dashboard UI is not deployed by default. To deploy it, run the following command:
 
 ```
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/dashboard/v2.3.1/aio/deploy/recommended.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/dashboard/v2.5.0/aio/deploy/recommended.yaml
 ```
 
 ## Accessing the Dashboard UI
@@ -219,7 +221,7 @@ allocated resources, events and pods running on the node.
 
 Shows all applications running in the selected namespace.
 The view lists applications by workload kind (for example: Deployments, ReplicaSets, StatefulSets).
-and each workload kind can be viewed separately.
+Each workload kind can be viewed separately.
 The lists summarize actionable information about the workloads,
 such as the number of ready pods for a ReplicaSet or current memory usage for a Pod.
 
diff --git a/content/en/docs/tasks/administer-cluster/access-cluster-api.md b/content/en/docs/tasks/administer-cluster/access-cluster-api.md
index 827cb50f7c..3d620e4b63 100644
--- a/content/en/docs/tasks/administer-cluster/access-cluster-api.md
+++ b/content/en/docs/tasks/administer-cluster/access-cluster-api.md
@@ -31,7 +31,7 @@ kubectl config view
 ```
 
 Many of the [examples](https://github.com/kubernetes/examples/tree/master/) provide an introduction to using
-kubectl. Complete documentation is found in the [kubectl manual](/docs/reference/kubectl/overview/).
+kubectl. Complete documentation is found in the [kubectl manual](/docs/reference/kubectl/).
 
 ### Directly accessing the REST API
 
@@ -95,8 +95,25 @@ export CLUSTER_NAME="some_server_name"
 # Point to the API server referring the cluster name
 APISERVER=$(kubectl config view -o jsonpath="{.clusters[?(@.name==\"$CLUSTER_NAME\")].cluster.server}")
 
-# Gets the token value
-TOKEN=$(kubectl get secrets -o jsonpath="{.items[?(@.metadata.annotations['kubernetes\.io/service-account\.name']=='default')].data.token}"|base64 --decode)
+# Create a secret to hold a token for the default service account
+kubectl apply -f - <<EOF
+apiVersion: v1
+kind: Secret
+metadata:
+  name: default-token
+  annotations:
+    kubernetes.io/service-account.name: default
+type: kubernetes.io/service-account-token
+EOF
+
+# Wait for the token controller to populate the secret with a token:
+while ! kubectl describe secret default-token | grep -E '^token' >/dev/null; do
+  echo "waiting for token..." >&2
+  sleep 1
+done
+
+# Get the token value
+TOKEN=$(kubectl get secret default-token -o jsonpath='{.data.token}' | base64 --decode)
 
 # Explore the API with TOKEN
 curl -X GET $APISERVER/api --header "Authorization: Bearer $TOKEN" --insecure
@@ -119,26 +136,6 @@ The output is similar to this:
 }
 ```
 
-Using `jsonpath` approach:
-
-```shell
-APISERVER=$(kubectl config view --minify -o jsonpath='{.clusters[0].cluster.server}')
-TOKEN=$(kubectl get secret $(kubectl get serviceaccount default -o jsonpath='{.secrets[0].name}') -o jsonpath='{.data.token}' | base64 --decode )
-curl $APISERVER/api --header "Authorization: Bearer $TOKEN" --insecure
-{
-  "kind": "APIVersions",
-  "versions": [
-    "v1"
-  ],
-  "serverAddressByClientCIDRs": [
-    {
-      "clientCIDR": "0.0.0.0/0",
-      "serverAddress": "10.0.1.149:443"
-    }
-  ]
-}
-```
-
 The above example uses the `--insecure` flag. This leaves it subject to MITM
 attacks. When kubectl accesses the cluster it uses a stored root certificate
 and client certificates to access the server. (These are installed in the
@@ -153,7 +150,7 @@ describes how you can configure this as a cluster administrator.
 
 ### Programmatic access to the API
 
-Kubernetes officially supports client libraries for [Go](#go-client), [Python](#python-client), [Java](#java-client), [dotnet](#dotnet-client), [Javascript](#javascript-client), and [Haskell](#haskell-client). There are other client libraries that are provided and maintained by their authors, not the Kubernetes team. See [client libraries](/docs/reference/using-api/client-libraries/) for accessing the API from other languages and how they authenticate.
+Kubernetes officially supports client libraries for [Go](#go-client), [Python](#python-client), [Java](#java-client), [dotnet](#dotnet-client), [JavaScript](#javascript-client), and [Haskell](#haskell-client). There are other client libraries that are provided and maintained by their authors, not the Kubernetes team. See [client libraries](/docs/reference/using-api/client-libraries/) for accessing the API from other languages and how they authenticate.
 
 #### Go client
 
@@ -229,7 +226,7 @@ mvn install
 See [https://github.com/kubernetes-client/java/releases](https://github.com/kubernetes-client/java/releases) to see which versions are supported.
 
 The Java client can use the same [kubeconfig file](/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
-as the kubectl CLI does to locate and authenticate to the API server. See this [example](https://github.com/kubernetes-client/java/blob/master/examples/src/main/java/io/kubernetes/client/examples/KubeConfigFileClientExample.java):
+as the kubectl CLI does to locate and authenticate to the API server. See this [example](https://github.com/kubernetes-client/java/blob/master/examples/examples-release-15/src/main/java/io/kubernetes/client/examples/KubeConfigFileClientExample.java):
 
 ```java
 package io.kubernetes.client.examples;
diff --git a/content/en/docs/tasks/administer-cluster/certificates.md b/content/en/docs/tasks/administer-cluster/certificates.md
index 2338b0cdc7..f48ddaac66 100644
--- a/content/en/docs/tasks/administer-cluster/certificates.md
+++ b/content/en/docs/tasks/administer-cluster/certificates.md
@@ -1,127 +1,159 @@
 ---
-title: Certificates
+title: Generate Certificates Manually
 content_type: task
 weight: 20
 ---
 
-
 <!-- overview -->
 
 When using client certificate authentication, you can generate certificates
 manually through `easyrsa`, `openssl` or `cfssl`.
 
-
-
-
 <!-- body -->
 
 ### easyrsa
 
 **easyrsa** can manually generate certificates for your cluster.
 
-1.  Download, unpack, and initialize the patched version of easyrsa3.
+1. Download, unpack, and initialize the patched version of `easyrsa3`.
 
-        curl -LO https://storage.googleapis.com/kubernetes-release/easy-rsa/easy-rsa.tar.gz
-        tar xzf easy-rsa.tar.gz
-        cd easy-rsa-master/easyrsa3
-        ./easyrsa init-pki
-1.  Generate a new certificate authority (CA). `--batch` sets automatic mode;
-    `--req-cn` specifies the Common Name (CN) for the CA's new root certificate.
+   ```shell
+   curl -LO https://storage.googleapis.com/kubernetes-release/easy-rsa/easy-rsa.tar.gz
+   tar xzf easy-rsa.tar.gz
+   cd easy-rsa-master/easyrsa3
+   ./easyrsa init-pki
+   ```
+1. Generate a new certificate authority (CA). `--batch` sets automatic mode;
+   `--req-cn` specifies the Common Name (CN) for the CA's new root certificate.
 
-        ./easyrsa --batch "--req-cn=${MASTER_IP}@`date +%s`" build-ca nopass
-1.  Generate server certificate and key.
-    The argument `--subject-alt-name` sets the possible IPs and DNS names the API server will
-    be accessed with. The `MASTER_CLUSTER_IP` is usually the first IP from the service CIDR
-    that is specified as the `--service-cluster-ip-range` argument for both the API server and
-    the controller manager component. The argument `--days` is used to set the number of days
-    after which the certificate expires.
-    The sample below also assumes that you are using `cluster.local` as the default
-    DNS domain name.
+   ```shell
+   ./easyrsa --batch "--req-cn=${MASTER_IP}@`date +%s`" build-ca nopass
+   ```
 
-        ./easyrsa --subject-alt-name="IP:${MASTER_IP},"\
-        "IP:${MASTER_CLUSTER_IP},"\
-        "DNS:kubernetes,"\
-        "DNS:kubernetes.default,"\
-        "DNS:kubernetes.default.svc,"\
-        "DNS:kubernetes.default.svc.cluster,"\
-        "DNS:kubernetes.default.svc.cluster.local" \
-        --days=10000 \
-        build-server-full server nopass
-1.  Copy `pki/ca.crt`, `pki/issued/server.crt`, and `pki/private/server.key` to your directory.
-1.  Fill in and add the following parameters into the API server start parameters:
+1. Generate server certificate and key.
 
-        --client-ca-file=/yourdirectory/ca.crt
-        --tls-cert-file=/yourdirectory/server.crt
-        --tls-private-key-file=/yourdirectory/server.key
+   The argument `--subject-alt-name` sets the possible IPs and DNS names the API server will
+   be accessed with. The `MASTER_CLUSTER_IP` is usually the first IP from the service CIDR
+   that is specified as the `--service-cluster-ip-range` argument for both the API server and
+   the controller manager component. The argument `--days` is used to set the number of days
+   after which the certificate expires.
+   The sample below also assumes that you are using `cluster.local` as the default
+   DNS domain name.
+
+   ```shell
+   ./easyrsa --subject-alt-name="IP:${MASTER_IP},"\
+   "IP:${MASTER_CLUSTER_IP},"\
+   "DNS:kubernetes,"\
+   "DNS:kubernetes.default,"\
+   "DNS:kubernetes.default.svc,"\
+   "DNS:kubernetes.default.svc.cluster,"\
+   "DNS:kubernetes.default.svc.cluster.local" \
+   --days=10000 \
+   build-server-full server nopass
+   ```
+
+1. Copy `pki/ca.crt`, `pki/issued/server.crt`, and `pki/private/server.key` to your directory.
+
+1. Fill in and add the following parameters into the API server start parameters:
+
+   ```shell
+   --client-ca-file=/yourdirectory/ca.crt
+   --tls-cert-file=/yourdirectory/server.crt
+   --tls-private-key-file=/yourdirectory/server.key
+   ```
 
 ### openssl
 
 **openssl** can manually generate certificates for your cluster.
 
-1.  Generate a ca.key with 2048bit:
+1. Generate a ca.key with 2048bit:
 
-        openssl genrsa -out ca.key 2048
-1.  According to the ca.key generate a ca.crt (use -days to set the certificate effective time):
+   ```shell
+   openssl genrsa -out ca.key 2048
+   ```
 
-        openssl req -x509 -new -nodes -key ca.key -subj "/CN=${MASTER_IP}" -days 10000 -out ca.crt
-1.  Generate a server.key with 2048bit:
+1. According to the ca.key generate a ca.crt (use `-days` to set the certificate effective time):
 
-        openssl genrsa -out server.key 2048
-1.  Create a config file for generating a Certificate Signing Request (CSR).
-    Be sure to substitute the values marked with angle brackets (e.g. `<MASTER_IP>`)
-    with real values before saving this to a file (e.g. `csr.conf`).
-    Note that the value for `MASTER_CLUSTER_IP` is the service cluster IP for the
-    API server as described in previous subsection.
-    The sample below also assumes that you are using `cluster.local` as the default
-    DNS domain name.
+   ```shell
+   openssl req -x509 -new -nodes -key ca.key -subj "/CN=${MASTER_IP}" -days 10000 -out ca.crt
+   ```
 
-        [ req ]
-        default_bits = 2048
-        prompt = no
-        default_md = sha256
-        req_extensions = req_ext
-        distinguished_name = dn
+1. Generate a server.key with 2048bit:
 
-        [ dn ]
-        C = <country>
-        ST = <state>
-        L = <city>
-        O = <organization>
-        OU = <organization unit>
-        CN = <MASTER_IP>
+   ```shell
+   openssl genrsa -out server.key 2048
+   ```
 
-        [ req_ext ]
-        subjectAltName = @alt_names
+1. Create a config file for generating a Certificate Signing Request (CSR).
 
-        [ alt_names ]
-        DNS.1 = kubernetes
-        DNS.2 = kubernetes.default
-        DNS.3 = kubernetes.default.svc
-        DNS.4 = kubernetes.default.svc.cluster
-        DNS.5 = kubernetes.default.svc.cluster.local
-        IP.1 = <MASTER_IP>
-        IP.2 = <MASTER_CLUSTER_IP>
+   Be sure to substitute the values marked with angle brackets (e.g. `<MASTER_IP>`)
+   with real values before saving this to a file (e.g. `csr.conf`).
+   Note that the value for `MASTER_CLUSTER_IP` is the service cluster IP for the
+   API server as described in previous subsection.
+   The sample below also assumes that you are using `cluster.local` as the default
+   DNS domain name.
 
-        [ v3_ext ]
-        authorityKeyIdentifier=keyid,issuer:always
-        basicConstraints=CA:FALSE
-        keyUsage=keyEncipherment,dataEncipherment
-        extendedKeyUsage=serverAuth,clientAuth
-        subjectAltName=@alt_names
-1.  Generate the certificate signing request based on the config file:
+   ```ini
+   [ req ]
+   default_bits = 2048
+   prompt = no
+   default_md = sha256
+   req_extensions = req_ext
+   distinguished_name = dn
 
-        openssl req -new -key server.key -out server.csr -config csr.conf
-1.  Generate the server certificate using the ca.key, ca.crt and server.csr:
+   [ dn ]
+   C = <country>
+   ST = <state>
+   L = <city>
+   O = <organization>
+   OU = <organization unit>
+   CN = <MASTER_IP>
 
-        openssl x509 -req -in server.csr -CA ca.crt -CAkey ca.key \
-        -CAcreateserial -out server.crt -days 10000 \
-        -extensions v3_ext -extfile csr.conf
-1.  View the certificate signing request:
+   [ req_ext ]
+   subjectAltName = @alt_names
 
-        openssl req  -noout -text -in ./server.csr
-1.  View the certificate:
+   [ alt_names ]
+   DNS.1 = kubernetes
+   DNS.2 = kubernetes.default
+   DNS.3 = kubernetes.default.svc
+   DNS.4 = kubernetes.default.svc.cluster
+   DNS.5 = kubernetes.default.svc.cluster.local
+   IP.1 = <MASTER_IP>
+   IP.2 = <MASTER_CLUSTER_IP>
 
-        openssl x509  -noout -text -in ./server.crt
+   [ v3_ext ]
+   authorityKeyIdentifier=keyid,issuer:always
+   basicConstraints=CA:FALSE
+   keyUsage=keyEncipherment,dataEncipherment
+   extendedKeyUsage=serverAuth,clientAuth
+   subjectAltName=@alt_names
+   ```
+
+1. Generate the certificate signing request based on the config file:
+
+   ```shell
+   openssl req -new -key server.key -out server.csr -config csr.conf
+   ```
+
+1. Generate the server certificate using the ca.key, ca.crt and server.csr:
+
+   ```shell
+   openssl x509 -req -in server.csr -CA ca.crt -CAkey ca.key \
+       -CAcreateserial -out server.crt -days 10000 \
+       -extensions v3_ext -extfile csr.conf
+   ```
+
+1. View the certificate signing request:
+
+   ```shell
+   openssl req  -noout -text -in ./server.csr
+   ```
+
+1. View the certificate:
+
+   ```shell
+   openssl x509  -noout -text -in ./server.crt
+   ```
 
 Finally, add the same parameters into the API server start parameters.
 
@@ -129,101 +161,121 @@ Finally, add the same parameters into the API server start parameters.
 
 **cfssl** is another tool for certificate generation.
 
-1.  Download, unpack and prepare the command line tools as shown below.
-    Note that you may need to adapt the sample commands based on the hardware
-    architecture and cfssl version you are using.
+1. Download, unpack and prepare the command line tools as shown below.
 
-        curl -L https://github.com/cloudflare/cfssl/releases/download/v1.5.0/cfssl_1.5.0_linux_amd64 -o cfssl
-        chmod +x cfssl
-        curl -L https://github.com/cloudflare/cfssl/releases/download/v1.5.0/cfssljson_1.5.0_linux_amd64 -o cfssljson
-        chmod +x cfssljson
-        curl -L https://github.com/cloudflare/cfssl/releases/download/v1.5.0/cfssl-certinfo_1.5.0_linux_amd64 -o cfssl-certinfo
-        chmod +x cfssl-certinfo
-1.  Create a directory to hold the artifacts and initialize cfssl:
+   Note that you may need to adapt the sample commands based on the hardware
+   architecture and cfssl version you are using.
 
-        mkdir cert
-        cd cert
-        ../cfssl print-defaults config > config.json
-        ../cfssl print-defaults csr > csr.json
-1.  Create a JSON config file for generating the CA file, for example, `ca-config.json`:
+   ```shell
+   curl -L https://github.com/cloudflare/cfssl/releases/download/v1.5.0/cfssl_1.5.0_linux_amd64 -o cfssl
+   chmod +x cfssl
+   curl -L https://github.com/cloudflare/cfssl/releases/download/v1.5.0/cfssljson_1.5.0_linux_amd64 -o cfssljson
+   chmod +x cfssljson
+   curl -L https://github.com/cloudflare/cfssl/releases/download/v1.5.0/cfssl-certinfo_1.5.0_linux_amd64 -o cfssl-certinfo
+   chmod +x cfssl-certinfo
+   ```
 
-        {
-          "signing": {
-            "default": {
-              "expiry": "8760h"
-            },
-            "profiles": {
-              "kubernetes": {
-                "usages": [
-                  "signing",
-                  "key encipherment",
-                  "server auth",
-                  "client auth"
-                ],
-                "expiry": "8760h"
-              }
-            }
-          }
-        }
-1.  Create a JSON config file for CA certificate signing request (CSR), for example,
-    `ca-csr.json`. Be sure to replace the values marked with angle brackets with
-    real values you want to use.
+1. Create a directory to hold the artifacts and initialize cfssl:
 
-        {
-          "CN": "kubernetes",
-          "key": {
-            "algo": "rsa",
-            "size": 2048
-          },
-          "names":[{
-            "C": "<country>",
-            "ST": "<state>",
-            "L": "<city>",
-            "O": "<organization>",
-            "OU": "<organization unit>"
-          }]
-        }
-1.  Generate CA key (`ca-key.pem`) and certificate (`ca.pem`):
+   ```shell
+   mkdir cert
+   cd cert
+   ../cfssl print-defaults config > config.json
+   ../cfssl print-defaults csr > csr.json
+   ```
 
-        ../cfssl gencert -initca ca-csr.json | ../cfssljson -bare ca
-1.  Create a JSON config file for generating keys and certificates for the API
-    server, for example, `server-csr.json`. Be sure to replace the values in angle brackets with
-    real values you want to use. The `MASTER_CLUSTER_IP` is the service cluster
-    IP for the API server as described in previous subsection.
-    The sample below also assumes that you are using `cluster.local` as the default
-    DNS domain name.
+1. Create a JSON config file for generating the CA file, for example, `ca-config.json`:
 
-        {
-          "CN": "kubernetes",
-          "hosts": [
-            "127.0.0.1",
-            "<MASTER_IP>",
-            "<MASTER_CLUSTER_IP>",
-            "kubernetes",
-            "kubernetes.default",
-            "kubernetes.default.svc",
-            "kubernetes.default.svc.cluster",
-            "kubernetes.default.svc.cluster.local"
-          ],
-          "key": {
-            "algo": "rsa",
-            "size": 2048
-          },
-          "names": [{
-            "C": "<country>",
-            "ST": "<state>",
-            "L": "<city>",
-            "O": "<organization>",
-            "OU": "<organization unit>"
-          }]
-        }
-1.  Generate the key and certificate for the API server, which are by default
-    saved into file `server-key.pem` and `server.pem` respectively:
+   ```json
+   {
+     "signing": {
+       "default": {
+         "expiry": "8760h"
+       },
+       "profiles": {
+         "kubernetes": {
+           "usages": [
+             "signing",
+             "key encipherment",
+             "server auth",
+             "client auth"
+           ],
+           "expiry": "8760h"
+         }
+       }
+     }
+   }
+   ```
 
-        ../cfssl gencert -ca=ca.pem -ca-key=ca-key.pem \
+1. Create a JSON config file for CA certificate signing request (CSR), for example,
+   `ca-csr.json`. Be sure to replace the values marked with angle brackets with
+   real values you want to use.
+
+   ```json
+   {
+     "CN": "kubernetes",
+     "key": {
+       "algo": "rsa",
+       "size": 2048
+     },
+     "names":[{
+       "C": "<country>",
+       "ST": "<state>",
+       "L": "<city>",
+       "O": "<organization>",
+       "OU": "<organization unit>"
+     }]
+   }
+   ```
+
+1. Generate CA key (`ca-key.pem`) and certificate (`ca.pem`):
+
+   ```shell
+   ../cfssl gencert -initca ca-csr.json | ../cfssljson -bare ca
+   ```
+
+1. Create a JSON config file for generating keys and certificates for the API
+   server, for example, `server-csr.json`. Be sure to replace the values in angle brackets with
+   real values you want to use. The `<MASTER_CLUSTER_IP>` is the service cluster
+   IP for the API server as described in previous subsection.
+   The sample below also assumes that you are using `cluster.local` as the default
+   DNS domain name.
+
+   ```json
+   {
+     "CN": "kubernetes",
+     "hosts": [
+       "127.0.0.1",
+       "<MASTER_IP>",
+       "<MASTER_CLUSTER_IP>",
+       "kubernetes",
+       "kubernetes.default",
+       "kubernetes.default.svc",
+       "kubernetes.default.svc.cluster",
+       "kubernetes.default.svc.cluster.local"
+     ],
+     "key": {
+       "algo": "rsa",
+       "size": 2048
+     },
+     "names": [{
+       "C": "<country>",
+       "ST": "<state>",
+       "L": "<city>",
+       "O": "<organization>",
+       "OU": "<organization unit>"
+     }]
+   }
+   ```
+
+1. Generate the key and certificate for the API server, which are by default
+   saved into file `server-key.pem` and `server.pem` respectively:
+
+   ```shell
+   ../cfssl gencert -ca=ca.pem -ca-key=ca-key.pem \
         --config=ca-config.json -profile=kubernetes \
         server-csr.json | ../cfssljson -bare server
-
+   ```
 
 ## Distributing Self-Signed CA Certificate
 
@@ -234,12 +286,12 @@ refresh the local list for valid certificates.
 
 On each client, perform the following operations:
 
-```bash
+```shell
 sudo cp ca.crt /usr/local/share/ca-certificates/kubernetes.crt
 sudo update-ca-certificates
 ```
 
-```
+```none
 Updating certificates in /etc/ssl/certs...
 1 added, 0 removed; done.
 Running hooks in /etc/ca-certificates/update.d....
@@ -250,6 +302,6 @@ done.
 
 You can use the `certificates.k8s.io` API to provision
 x509 certificates to use for authentication as documented
-[here](/docs/tasks/tls/managing-tls-in-a-cluster).
-
+in the [Managing TLS in a cluster](/docs/tasks/tls/managing-tls-in-a-cluster)
+task page.
 
diff --git a/content/en/docs/tasks/administer-cluster/change-pv-reclaim-policy.md b/content/en/docs/tasks/administer-cluster/change-pv-reclaim-policy.md
index 6a11b4f2d3..457fbd6332 100644
--- a/content/en/docs/tasks/administer-cluster/change-pv-reclaim-policy.md
+++ b/content/en/docs/tasks/administer-cluster/change-pv-reclaim-policy.md
@@ -7,14 +7,10 @@ content_type: task
 This page shows how to change the reclaim policy of a Kubernetes
 PersistentVolume.
 
-
 ## {{% heading "prerequisites" %}}
 
-
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
-
-
 <!-- steps -->
 
 ## Why change reclaim policy of a PersistentVolume
@@ -33,66 +29,69 @@ Released phase, where all of its data can be manually recovered.
 
 1. List the PersistentVolumes in your cluster:
 
-    ```shell
-    kubectl get pv
-    ```
+   ```shell
+   kubectl get pv
+   ```
 
-    The output is similar to this:
+   The output is similar to this:
 
-        NAME                                       CAPACITY   ACCESSMODES   RECLAIMPOLICY   STATUS    CLAIM             STORAGECLASS     REASON    AGE
-        pvc-b6efd8da-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim1    manual                     10s
-        pvc-b95650f8-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim2    manual                     6s
-        pvc-bb3ca71d-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim3    manual                     3s
+   ```none
+   NAME                                       CAPACITY   ACCESSMODES   RECLAIMPOLICY   STATUS    CLAIM             STORAGECLASS     REASON    AGE
+   pvc-b6efd8da-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim1    manual                     10s
+   pvc-b95650f8-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim2    manual                     6s
+   pvc-bb3ca71d-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim3    manual                     3s
+   ```
 
-     This list also includes the name of the claims that are bound to each volume
+   This list also includes the name of the claims that are bound to each volume
    for easier identification of dynamically provisioned volumes.
 
 1. Choose one of your PersistentVolumes and change its reclaim policy:
 
-    ```shell
-    kubectl patch pv <your-pv-name> -p '{"spec":{"persistentVolumeReclaimPolicy":"Retain"}}'
-    ```
+   ```shell
+   kubectl patch pv <your-pv-name> -p '{"spec":{"persistentVolumeReclaimPolicy":"Retain"}}'
+   ```
 
-    where `<your-pv-name>` is the name of your chosen PersistentVolume.
+   where `<your-pv-name>` is the name of your chosen PersistentVolume.
 
-    {{< note >}}
-    On Windows, you must _double_ quote any JSONPath template that contains spaces (not single quote as shown above for bash). This in turn means that you must use a single quote or escaped double quote around any literals in the template. For example:
+   {{< note >}}
+   On Windows, you must _double_ quote any JSONPath template that contains spaces (not single
+   quote as shown above for bash). This in turn means that you must use a single quote or escaped
+   double quote around any literals in the template. For example:
 
-```cmd
-kubectl patch pv <your-pv-name> -p "{\"spec\":{\"persistentVolumeReclaimPolicy\":\"Retain\"}}"
-```
-
-    {{< /note >}}
+   ```cmd
+   kubectl patch pv <your-pv-name> -p "{\"spec\":{\"persistentVolumeReclaimPolicy\":\"Retain\"}}"
+   ```
+   {{< /note >}}
 
 1. Verify that your chosen PersistentVolume has the right policy:
 
-    ```shell
-    kubectl get pv
-    ```
+   ```shell
+   kubectl get pv
+   ```
 
-    The output is similar to this:
-
-        NAME                                       CAPACITY   ACCESSMODES   RECLAIMPOLICY   STATUS    CLAIM             STORAGECLASS     REASON    AGE
-        pvc-b6efd8da-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim1    manual                     40s
-        pvc-b95650f8-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim2    manual                     36s
-        pvc-bb3ca71d-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Retain          Bound     default/claim3    manual                     33s
-
-    In the preceding output, you can see that the volume bound to claim
-    `default/claim3` has reclaim policy `Retain`. It will not be automatically
-    deleted when a user deletes claim `default/claim3`.
+   The output is similar to this:
 
+   ```none
+   NAME                                       CAPACITY   ACCESSMODES   RECLAIMPOLICY   STATUS    CLAIM             STORAGECLASS     REASON    AGE
+   pvc-b6efd8da-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim1    manual                     40s
+   pvc-b95650f8-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim2    manual                     36s
+   pvc-bb3ca71d-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Retain          Bound     default/claim3    manual                     33s
+   ```
 
+   In the preceding output, you can see that the volume bound to claim
+   `default/claim3` has reclaim policy `Retain`. It will not be automatically
+   deleted when a user deletes claim `default/claim3`.
 
 ## {{% heading "whatsnext" %}}
 
 * Learn more about [PersistentVolumes](/docs/concepts/storage/persistent-volumes/).
 * Learn more about [PersistentVolumeClaims](/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims).
 
-### Reference
-
-* [PersistentVolume](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#persistentvolume-v1-core)
-* [PersistentVolumeClaim](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#persistentvolumeclaim-v1-core)
-* See the `persistentVolumeReclaimPolicy` field of [PersistentVolumeSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#persistentvolumeclaim-v1-core).
-
+### References {#reference}
 
+* {{< api-reference page="config-and-storage-resources/persistent-volume-v1" >}}
+  * Pay attention to the `.spec.persistentVolumeReclaimPolicy`
+    [field](/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-v1/#PersistentVolumeSpec)
+    of PersistentVolume.
+* {{< api-reference page="config-and-storage-resources/persistent-volume-claim-v1" >}}
 
diff --git a/content/en/docs/tasks/administer-cluster/cluster-upgrade.md b/content/en/docs/tasks/administer-cluster/cluster-upgrade.md
index 6e9dc302c4..e3f9595d26 100644
--- a/content/en/docs/tasks/administer-cluster/cluster-upgrade.md
+++ b/content/en/docs/tasks/administer-cluster/cluster-upgrade.md
@@ -21,8 +21,8 @@ At a high level, the steps you perform are:
 ## {{% heading "prerequisites" %}}
 
 You must have an existing cluster. This page is about upgrading from Kubernetes
-{{< skew prevMinorVersion >}} to Kubernetes {{< skew latestVersion >}}. If your cluster
-is not currently running Kubernetes {{< skew prevMinorVersion >}} then please check
+{{< skew currentVersionAddMinor -1 >}} to Kubernetes {{< skew currentVersion >}}. If your cluster
+is not currently running Kubernetes {{< skew currentVersionAddMinor -1 >}} then please check
 the documentation for the version of Kubernetes that you plan to upgrade to.
 
 ## Upgrade approaches
@@ -55,7 +55,7 @@ At this point you should
 [install the latest version of `kubectl`](/docs/tasks/tools/).
 
 For each node in your cluster, [drain](/docs/tasks/administer-cluster/safely-drain-node/)
-that node and then either replace it with a new node that uses the {{< skew latestVersion >}}
+that node and then either replace it with a new node that uses the {{< skew currentVersion >}}
 kubelet, or upgrade the kubelet on that node and bring the node back into service.
 
 ### Other deployments {#upgrade-other}
diff --git a/content/en/docs/tasks/administer-cluster/configure-upgrade-etcd.md b/content/en/docs/tasks/administer-cluster/configure-upgrade-etcd.md
index ffa688e1b7..be77074dc1 100644
--- a/content/en/docs/tasks/administer-cluster/configure-upgrade-etcd.md
+++ b/content/en/docs/tasks/administer-cluster/configure-upgrade-etcd.md
@@ -150,7 +150,7 @@ access to clients with the certificate `k8sclient.cert`.
 
 Once etcd is configured correctly, only clients with valid certificates can
 access it. To give Kubernetes API servers the access, configure them with the
-flags `--etcd-certfile=k8sclient.cert`,`--etcd-keyfile=k8sclient.key` and
+flags `--etcd-certfile=k8sclient.cert`, `--etcd-keyfile=k8sclient.key` and
 `--etcd-cafile=ca.cert`.
 
 {{< note >}}
@@ -319,12 +319,16 @@ employed to recover the data of a failed cluster.
 
 Before starting the restore operation, a snapshot file must be present. It can
 either be a snapshot file from a previous backup operation, or from a remaining
-[data directory]( https://etcd.io/docs/current/op-guide/configuration/#--data-dir).
+[data directory](https://etcd.io/docs/current/op-guide/configuration/#--data-dir).
 Here is an example:
 
 ```shell
 ETCDCTL_API=3 etcdctl --endpoints 10.2.0.9:2379 snapshot restore snapshotdb
 ```
+Another example for restoring using etcdctl options:
+```shell
+ETCDCTL_API=3 etcdctl --data-dir <data-dir-location> snapshot restore snapshotdb
+```
 
 For more information and examples on restoring a cluster from a snapshot file, see
 [etcd disaster recovery documentation](https://etcd.io/docs/current/op-guide/recovery/#restoring-a-cluster).
@@ -357,3 +361,12 @@ We also recommend restarting any components (e.g. `kube-scheduler`,
 stale data. Note that in practice, the restore takes a bit of time.  During the
 restoration, critical components will lose leader lock and restart themselves.
 {{< /note >}}
+
+## Upgrading etcd clusters
+
+
+For more details on etcd upgrade, please refer to the [etcd upgrades](https://etcd.io/docs/latest/upgrades/) documentation.
+
+{{< note >}}
+Before you start an upgrade, please back up your etcd cluster first.
+{{< /note >}}
diff --git a/content/en/docs/tasks/administer-cluster/controller-manager-leader-migration.md b/content/en/docs/tasks/administer-cluster/controller-manager-leader-migration.md
index ddfa8e592e..7d0890197b 100644
--- a/content/en/docs/tasks/administer-cluster/controller-manager-leader-migration.md
+++ b/content/en/docs/tasks/administer-cluster/controller-manager-leader-migration.md
@@ -7,30 +7,29 @@ linkTitle: "Migrate Replicated Control Plane To Use Cloud Controller Manager"
 content_type: task
 ---
 
-
 <!-- overview -->
 
-{{< feature-state state="beta" for_k8s_version="v1.22" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable"  >}}
 
 {{< glossary_definition term_id="cloud-controller-manager" length="all" prepend="The cloud-controller-manager is">}}
 
 ## Background
 
-As part of the [cloud provider extraction effort](https://kubernetes.io/blog/2019/04/17/the-future-of-cloud-providers-in-kubernetes/), all cloud specific controllers must be moved out of the `kube-controller-manager`. All existing clusters that run cloud controllers in the `kube-controller-manager` must migrate to instead run the controllers in a cloud provider specific `cloud-controller-manager`.
+As part of the [cloud provider extraction effort](/blog/2019/04/17/the-future-of-cloud-providers-in-kubernetes/), all cloud specific controllers must be moved out of the `kube-controller-manager`. All existing clusters that run cloud controllers in the `kube-controller-manager` must migrate to instead run the controllers in a cloud provider specific `cloud-controller-manager`.
 
 Leader Migration provides a mechanism in which HA clusters can safely migrate "cloud specific" controllers between the `kube-controller-manager` and the `cloud-controller-manager` via a shared resource lock between the two components while upgrading the replicated control plane. For a single-node control plane, or if unavailability of controller managers can be tolerated during the upgrade, Leader Migration is not needed and this guide can be ignored.
 
 Leader Migration can be enabled by setting `--enable-leader-migration` on `kube-controller-manager` or `cloud-controller-manager`. Leader Migration only applies during the upgrade and can be safely disabled or left enabled after the upgrade is complete.
 
-This guide walks you through the manual process of upgrading the control plane from `kube-controller-manager` with built-in cloud provider to running both `kube-controller-manager` and `cloud-controller-manager`. If you use a tool to administrator the cluster, please refer to the documentation of the tool and the cloud provider for more details.
+This guide walks you through the manual process of upgrading the control plane from `kube-controller-manager` with built-in cloud provider to running both `kube-controller-manager` and `cloud-controller-manager`. If you use a tool to deploy and manage the cluster, please refer to the documentation of the tool and the cloud provider for specific instructions of the migration.
 
 ## {{% heading "prerequisites" %}}
 
-It is assumed that the control plane is running Kubernetes version N and to be upgraded to version N + 1. Although it is possible to migrate within the same version, ideally the migration should be performed as part of an upgrade so that changes of configuration can be aligned to each release. The exact versions of N and N + 1 depend on each cloud provider. For example, if a cloud provider builds a `cloud-controller-manager` to work with Kubernetes 1.22, then N can be 1.21 and N + 1 can be 1.22.
+It is assumed that the control plane is running Kubernetes version N and to be upgraded to version N + 1. Although it is possible to migrate within the same version, ideally the migration should be performed as part of an upgrade so that changes of configuration can be aligned to each release. The exact versions of N and N + 1 depend on each cloud provider. For example, if a cloud provider builds a `cloud-controller-manager` to work with Kubernetes 1.24, then N can be 1.23 and N + 1 can be 1.24.
 
-The control plane nodes should run `kube-controller-manager` with Leader Election enabled through `--leader-elect=true`. As of version N, an in-tree cloud privider must be set with `--cloud-provider` flag and `cloud-controller-manager` should not yet be deployed.
+The control plane nodes should run `kube-controller-manager` with Leader Election enabled, which is the default. As of version N, an in-tree cloud provider must be set with `--cloud-provider` flag and `cloud-controller-manager` should not yet be deployed.
 
-The out-of-tree cloud provider must have built a `cloud-controller-manager` with Leader Migration implementation. If the cloud provider imports `k8s.io/cloud-provider` and `k8s.io/controller-manager` of version v0.21.0 or later, Leader Migration will be available. However, for version before v0.22.0, Leader Migration is alpha and requires feature gate `ControllerManagerLeaderMigration` to be enabled.
+The out-of-tree cloud provider must have built a `cloud-controller-manager` with Leader Migration implementation. If the cloud provider imports `k8s.io/cloud-provider` and `k8s.io/controller-manager` of version v0.21.0 or later, Leader Migration will be available. However, for version before v0.22.0, Leader Migration is alpha and requires feature gate `ControllerManagerLeaderMigration` to be enabled in `cloud-controller-manager`.
 
 This guide assumes that kubelet of each control plane node starts `kube-controller-manager` and `cloud-controller-manager` as static pods defined by their manifests. If the components run in a different setting, please adjust the steps accordingly.
 
@@ -58,9 +57,8 @@ Leader Migration can be enabled without a configuration. Please see [Default Con
 
 ```yaml
 kind: LeaderMigrationConfiguration
-apiVersion: controllermanager.config.k8s.io/v1beta1
+apiVersion: controllermanager.config.k8s.io/v1
 leaderName: cloud-provider-extraction-migration
-resourceLock: leases
 controllerLeaders:
   - name: route
     component: kube-controller-manager
@@ -70,6 +68,23 @@ controllerLeaders:
     component: kube-controller-manager
 ```
 
+Alternatively, because the controllers can run under either controller managers, setting `component` to `*`
+for both sides makes the configuration file consistent between both parties of the migration.
+
+```yaml
+# wildcard version
+kind: LeaderMigrationConfiguration
+apiVersion: controllermanager.config.k8s.io/v1
+leaderName: cloud-provider-extraction-migration
+controllerLeaders:
+  - name: route
+    component: *
+  - name: service
+    component: *
+  - name: cloud-node-lifecycle
+    component: *
+```
+
 On each control plane node, save the content to `/etc/leadermigration.conf`, and update the manifest of `kube-controller-manager` so that the file is mounted inside the container at the same location. Also, update the same manifest to add the following arguments:
 
 - `--enable-leader-migration` to enable Leader Migration on the controller manager
@@ -79,13 +94,12 @@ Restart `kube-controller-manager` on each node. At this moment, `kube-controller
 
 ### Deploy Cloud Controller Manager
 
-In version N + 1, the desired state of controller-to-manager assignment can be represented by a new configuration file, shown as follows. Please note `component` field of each `controllerLeaders` changing from `kube-controller-manager` to `cloud-controller-manager`.
+In version N + 1, the desired state of controller-to-manager assignment can be represented by a new configuration file, shown as follows. Please note `component` field of each `controllerLeaders` changing from `kube-controller-manager` to `cloud-controller-manager`. Alternatively, use the wildcard version mentioned above, which has the same effect.
 
 ```yaml
 kind: LeaderMigrationConfiguration
-apiVersion: controllermanager.config.k8s.io/v1beta1
+apiVersion: controllermanager.config.k8s.io/v1
 leaderName: cloud-provider-extraction-migration
-resourceLock: leases
 controllerLeaders:
   - name: route
     component: cloud-controller-manager
@@ -95,9 +109,9 @@ controllerLeaders:
     component: cloud-controller-manager
 ```
 
-When creating control plane nodes of version N + 1, the content should be deploy to `/etc/leadermigration.conf`. The manifest of `cloud-controller-manager` should be updated to mount the configuration file in the same manner as `kube-controller-manager` of version N. Similarly, add `--feature-gates=ControllerManagerLeaderMigration=true`,`--enable-leader-migration`, and `--leader-migration-config=/etc/leadermigration.conf` to the arguments of `cloud-controller-manager`.
+When creating control plane nodes of version N + 1, the content should be deployed to `/etc/leadermigration.conf`. The manifest of `cloud-controller-manager` should be updated to mount the configuration file in the same manner as `kube-controller-manager` of version N. Similarly, add `--enable-leader-migration` and `--leader-migration-config=/etc/leadermigration.conf` to the arguments of `cloud-controller-manager`.
 
-Create a new control plane node of version N + 1 with the updated `cloud-controller-manager` manifest, and with the `--cloud-provider` flag unset for `kube-controller-manager`. `kube-controller-manager` of version N + 1 MUST NOT have Leader Migration enabled because, with an external cloud provider, it does not run the migrated controllers anymore and thus it is not involved in the migration.
+Create a new control plane node of version N + 1 with the updated `cloud-controller-manager` manifest, and with the `--cloud-provider` flag set to `external` for `kube-controller-manager`. `kube-controller-manager` of version N + 1 MUST NOT have Leader Migration enabled because, with an external cloud provider, it does not run the migrated controllers anymore, and thus it is not involved in the migration.
 
 Please refer to [Cloud Controller Manager Administration](/docs/tasks/administer-cluster/running-cloud-controller/) for more detail on how to deploy `cloud-controller-manager`.
 
@@ -121,6 +135,27 @@ The default configuration can be enabled by setting `--enable-leader-migration`
 
 For `kube-controller-manager` and `cloud-controller-manager`, if there are no flags that enable any in-tree cloud provider or change ownership of controllers, the default configuration can be used to avoid manual creation of the configuration file.
 
+### Special case: migrating the Node IPAM controller {#node-ipam-controller-migration}
+
+If your cloud provider provides an implementation of Node IPAM controller, you should switch to the implementation in `cloud-controller-manager`. Disable Node IPAM controller in `kube-controller-manager` of version N + 1 by adding `--controllers=*,-nodeipam` to its flags. Then add `nodeipam` to the list of migrated controllers.
+
+```yaml
+# wildcard version, with nodeipam
+kind: LeaderMigrationConfiguration
+apiVersion: controllermanager.config.k8s.io/v1
+leaderName: cloud-provider-extraction-migration
+controllerLeaders:
+  - name: route
+    component: *
+  - name: service
+    component: *
+  - name: cloud-node-lifecycle
+    component: *
+  - name: nodeipam
+-   component: *
+```
+
 ## {{% heading "whatsnext" %}}
 
-- Read the [Controller Manager Leader Migration](https://github.com/kubernetes/enhancements/tree/master/keps/sig-cloud-provider/2436-controller-manager-leader-migration) enhancement proposal
+- Read the [Controller Manager Leader Migration](https://github.com/kubernetes/enhancements/tree/master/keps/sig-cloud-provider/2436-controller-manager-leader-migration) enhancement proposal.
+
diff --git a/content/en/docs/tasks/administer-cluster/coredns.md b/content/en/docs/tasks/administer-cluster/coredns.md
index 54163058c8..43a75275b8 100644
--- a/content/en/docs/tasks/administer-cluster/coredns.md
+++ b/content/en/docs/tasks/administer-cluster/coredns.md
@@ -19,11 +19,14 @@ This page describes the CoreDNS upgrade process and how to install CoreDNS inste
 
 ## About CoreDNS
 
-[CoreDNS](https://coredns.io) is a flexible, extensible DNS server that can serve as the Kubernetes cluster DNS.
-Like Kubernetes, the CoreDNS project is hosted by the {{< glossary_tooltip text="CNCF" term_id="cncf" >}}.
+[CoreDNS](https://coredns.io) is a flexible, extensible DNS server
+that can serve as the Kubernetes cluster DNS.
+Like Kubernetes, the CoreDNS project is hosted by the
+{{< glossary_tooltip text="CNCF" term_id="cncf" >}}.
 
-You can use CoreDNS instead of kube-dns in your cluster by replacing kube-dns in an existing
-deployment, or by using tools like kubeadm that will deploy and upgrade the cluster for you.
+You can use CoreDNS instead of kube-dns in your cluster by replacing
+kube-dns in an existing deployment, or by using tools like kubeadm
+that will deploy and upgrade the cluster for you.
 
 ## Installing CoreDNS
 
@@ -34,51 +37,44 @@ For manual deployment or replacement of kube-dns, see the documentation at the
 
 ### Upgrading an existing cluster with kubeadm
 
-In Kubernetes version 1.10 and later, you can also move to CoreDNS when you use `kubeadm` to upgrade
-a cluster that is using `kube-dns`. In this case, `kubeadm` will generate the CoreDNS configuration
+In Kubernetes version 1.21, kubeadm removed its support for `kube-dns` as a DNS application.
+For `kubeadm` v{{< skew currentVersion >}}, the only supported cluster DNS application
+is CoreDNS.
+
+You can move to CoreDNS when you use `kubeadm` to upgrade a cluster that is
+using `kube-dns`. In this case, `kubeadm` generates the CoreDNS configuration
 ("Corefile") based upon the `kube-dns` ConfigMap, preserving configurations for
 stub domains, and upstream name server.
 
-If you are moving from kube-dns to CoreDNS, make sure to set the `CoreDNS` feature gate to `true`
-during an upgrade. For example, here is what a `v1.11.0` upgrade would look like:
-```
-kubeadm upgrade apply v1.11.0 --feature-gates=CoreDNS=true
-```
-
-In Kubernetes version 1.13 and later the `CoreDNS` feature gate is removed and CoreDNS
-is used by default.
-
-In versions prior to 1.11 the Corefile will be **overwritten** by the one created during upgrade.
-**You should save your existing ConfigMap if you have customized it.** You may re-apply your
-customizations after the new ConfigMap is up and running.
-
-If you are running CoreDNS in Kubernetes version 1.11 and later, during upgrade,
-your existing Corefile will be retained.
-
-In Kubernetes version 1.21, support for `kube-dns` is removed from kubeadm.
-
 ## Upgrading CoreDNS
 
-CoreDNS is available in Kubernetes since v1.9.
-You can check the version of CoreDNS shipped with Kubernetes and the changes made to CoreDNS [here](https://github.com/coredns/deployment/blob/master/kubernetes/CoreDNS-k8s_version.md).
+You can check the version of CoreDNS that kubeadm installs for each version of
+Kubernetes in the page
+[CoreDNS version in Kubernetes](https://github.com/coredns/deployment/blob/master/kubernetes/CoreDNS-k8s_version.md).
+
+CoreDNS can be upgraded manually in case you want to only upgrade CoreDNS
+or use your own custom image.
+There is a helpful [guideline and walkthrough](https://github.com/coredns/deployment/blob/master/kubernetes/Upgrading_CoreDNS.md)
+available to ensure a smooth upgrade.
+Make sure the existing CoreDNS configuration ("Corefile") is retained when
+upgrading your cluster.
+
+If you are upgrading your cluster using the `kubeadm` tool, `kubeadm`
+can take care of retaining the existing CoreDNS configuration automatically.
 
-CoreDNS can be upgraded manually in case you want to only upgrade CoreDNS or use your own custom image.
-There is a helpful [guideline and walkthrough](https://github.com/coredns/deployment/blob/master/kubernetes/Upgrading_CoreDNS.md) available to ensure a smooth upgrade.
 
 ## Tuning CoreDNS
 
-When resource utilisation is a concern, it may be useful to tune the configuration of CoreDNS. For more details, check out the
+When resource utilisation is a concern, it may be useful to tune the
+configuration of CoreDNS. For more details, check out the
 [documentation on scaling CoreDNS](https://github.com/coredns/deployment/blob/master/kubernetes/Scaling_CoreDNS.md).
 
-
-
 ## {{% heading "whatsnext" %}}
 
-
 You can configure [CoreDNS](https://coredns.io) to support many more use cases than
-kube-dns by modifying the `Corefile`. For more information, see the
-[CoreDNS site](https://coredns.io/2017/05/08/custom-dns-entries-for-kubernetes/).
-
-
-
+kube-dns does by modifying the CoreDNS configuration ("Corefile").
+For more information, see the [documentation](https://coredns.io/plugins/kubernetes/)
+for the `kubernetes` CoreDNS plugin, or read the 
+[Custom DNS Entries for Kubernetes](https://coredns.io/2017/05/08/custom-dns-entries-for-kubernetes/).
+in the CoreDNS blog.
 
diff --git a/content/en/docs/tasks/administer-cluster/cpu-management-policies.md b/content/en/docs/tasks/administer-cluster/cpu-management-policies.md
index 9eb7d7febb..0a9183f276 100644
--- a/content/en/docs/tasks/administer-cluster/cpu-management-policies.md
+++ b/content/en/docs/tasks/administer-cluster/cpu-management-policies.md
@@ -46,7 +46,8 @@ management policies to determine some placement preferences on the node.
 ### Configuration
 
 The CPU Manager policy is set with the `--cpu-manager-policy` kubelet
-option. There are two supported policies:
+flag or the `cpuManagerPolicy` field in [KubeletConfiguration](/docs/reference/config-api/kubelet-config.v1beta1/).
+There are two supported policies:
 
 * [`none`](#none-policy): the default policy.
 * [`static`](#static-policy): allows pods with certain resource characteristics to be
@@ -60,6 +61,34 @@ duration as `--node-status-update-frequency`.
 
 The behavior of the static policy can be fine-tuned using the `--cpu-manager-policy-options` flag.
 The flag takes a comma-separated list of `key=value` policy options.
+This feature can be disabled completely using the `CPUManagerPolicyOptions` feature gate.
+
+The policy options are split into two groups: alpha quality (hidden by default) and beta quality
+(visible by default). The groups are guarded respectively by the `CPUManagerPolicyAlphaOptions`
+and `CPUManagerPolicyBetaOptions` feature gates. Diverging from the Kubernetes standard, these
+feature gates guard groups of options, because it would have been too cumbersome to add a feature
+gate for each individual option.
+
+### Changing the CPU Manager Policy
+
+Since the CPU manger policy can only be applied when kubelet spawns new pods, simply changing from
+"none" to "static" won't apply to existing pods. So in order to properly change the CPU manager
+policy on a node, perform the following steps:
+
+1. [Drain](/docs/tasks/administer-cluster/safely-drain-node) the node.
+2. Stop kubelet.
+3. Remove the old CPU manager state file. The path to this file is
+`/var/lib/kubelet/cpu_manager_state` by default. This clears the state maintained by the
+CPUManager so that the cpu-sets set up by the new policy won’t conflict with it.
+4. Edit the kubelet configuration to change the CPU manager policy to the desired value.
+5. Start kubelet.
+
+Repeat this process for every node that needs its CPU manager policy changed. Skipping this
+process will result in kubelet crashlooping with the following error:
+
+```
+could not restore state from checkpoint: configured policy "static" differs from state checkpoint policy "none", please drain this node and delete the CPU manager checkpoint file "/var/lib/kubelet/cpu_manager_state" before restarting Kubelet
+```
 
 ### None policy
 
@@ -218,8 +247,17 @@ equal to one. The `nginx` container is granted 2 exclusive CPUs.
 
 #### Static policy options
 
+You can toggle groups of options on and off based upon their maturity level
+using the following feature gates:
+* `CPUManagerPolicyBetaOptions` default enabled. Disable to hide beta-level options.
+* `CPUManagerPolicyAlphaOptions` default disabled. Enable to show alpha-level options.
+You will still have to enable each option using the `CPUManagerPolicyOptions` kubelet option.
+
+The following policy options exist for the static `CPUManager` policy:
+* `full-pcpus-only` (beta, visible by default)
+* `distribute-cpus-across-numa` (alpha, hidden by default)
+
 If the `full-pcpus-only` policy option is specified, the static policy will always allocate full physical cores.
-You can enable this option by adding `full-pcups-only=true` to the CPUManager policy options.
 By default, without this option, the static policy allocates CPUs using a topology-aware best-fit allocation.
 On SMT enabled systems, the policy can allocate individual virtual cores, which correspond to hardware threads.
 This can lead to different containers sharing the same physical cores; this behaviour in turn contributes
@@ -227,3 +265,24 @@ to the [noisy neighbours problem](https://en.wikipedia.org/wiki/Cloud_computing_
 With the option enabled, the pod will be admitted by the kubelet only if the CPU request of all its containers
 can be fulfilled by allocating full physical cores.
 If the pod does not pass the admission, it will be put in Failed state with the message `SMTAlignmentError`.
+
+If the `distribute-cpus-across-numa`policy option is specified, the static
+policy will evenly distribute CPUs across NUMA nodes in cases where more than
+one NUMA node is required to satisfy the allocation.
+By default, the `CPUManager` will pack CPUs onto one NUMA node until it is
+filled, with any remaining CPUs simply spilling over to the next NUMA node.
+This can cause undesired bottlenecks in parallel code relying on barriers (and
+similar synchronization primitives), as this type of code tends to run only as
+fast as its slowest worker (which is slowed down by the fact that fewer CPUs
+are available on at least one NUMA node).
+By distributing CPUs evenly across NUMA nodes, application developers can more
+easily ensure that no single worker suffers from NUMA effects more than any
+other, improving the overall performance of these types of applications.
+
+The `full-pcpus-only` option can be enabled by adding `full-pcups-only=true` to
+the CPUManager policy options.
+Likewise, the `distribute-cpus-across-numa` option can be enabled by adding
+`distribute-cpus-across-numa=true` to the CPUManager policy options.
+When both are set, they are "additive" in the sense that CPUs will be
+distributed across NUMA nodes in chunks of full-pcpus rather than individual
+cores.
diff --git a/content/en/docs/tasks/administer-cluster/declare-network-policy.md b/content/en/docs/tasks/administer-cluster/declare-network-policy.md
index 7acbaa9e7d..ac9715b909 100644
--- a/content/en/docs/tasks/administer-cluster/declare-network-policy.md
+++ b/content/en/docs/tasks/administer-cluster/declare-network-policy.md
@@ -68,7 +68,7 @@ pod/nginx-701339712-e0qfq   1/1           Running       0          35s
 You should be able to access the new `nginx` service from other Pods. To access the `nginx` Service from another Pod in the `default` namespace, start a busybox container:
 
 ```console
-kubectl run busybox --rm -ti --image=busybox -- /bin/sh
+kubectl run busybox --rm -ti --image=busybox:1.28 -- /bin/sh
 ```
 
 In your shell, run the following command:
@@ -111,7 +111,7 @@ networkpolicy.networking.k8s.io/access-nginx created
 When you attempt to access the `nginx` Service from a Pod without the correct labels, the request times out:
 
 ```console
-kubectl run busybox --rm -ti --image=busybox -- /bin/sh
+kubectl run busybox --rm -ti --image=busybox:1.28 -- /bin/sh
 ```
 
 In your shell, run the command:
@@ -130,7 +130,7 @@ wget: download timed out
 You can create a Pod with the correct labels to see that the request is allowed:
 
 ```console
-kubectl run busybox --rm -ti --labels="access=true" --image=busybox -- /bin/sh
+kubectl run busybox --rm -ti --labels="access=true" --image=busybox:1.28 -- /bin/sh
 ```
 
 In your shell, run the command:
diff --git a/content/en/docs/tasks/administer-cluster/dns-debugging-resolution.md b/content/en/docs/tasks/administer-cluster/dns-debugging-resolution.md
index 6bc41d2170..ff52a11f05 100644
--- a/content/en/docs/tasks/administer-cluster/dns-debugging-resolution.md
+++ b/content/en/docs/tasks/administer-cluster/dns-debugging-resolution.md
@@ -67,7 +67,7 @@ If the `nslookup` command fails, check the following:
 ### Check the local DNS configuration first
 
 Take a look inside the resolv.conf file.
-(See [Inheriting DNS from the node](/docs/tasks/administer-cluster/dns-custom-nameservers/#inheriting-dns-from-the-node) and
+(See [Customizing DNS Service](/docs/tasks/administer-cluster/dns-custom-nameservers) and
 [Known issues](#known-issues) below for more information)
 
 ```shell
@@ -176,7 +176,7 @@ The service name is `kube-dns` for both CoreDNS and kube-dns deployments.
 
 If you have created the Service or in the case it should be created by default
 but it does not appear, see
-[debugging Services](/docs/tasks/debug-application-cluster/debug-service/) for
+[debugging Services](/docs/tasks/debug/debug-application/debug-service/) for
 more information.
 
 ### Are DNS endpoints exposed?
@@ -193,7 +193,7 @@ kube-dns   10.180.3.17:53,10.180.3.17:53    1h
 ```
 
 If you do not see the endpoints, see the endpoints section in the
-[debugging Services](/docs/tasks/debug-application-cluster/debug-service/) documentation.
+[debugging Services](/docs/tasks/debug/debug-application/debug-service/) documentation.
 
 For additional Kubernetes DNS examples, see the
 [cluster-dns examples](https://github.com/kubernetes/examples/tree/master/staging/cluster-dns)
@@ -252,6 +252,54 @@ linux/amd64, go1.10.3, 2e322f6
 2018/09/07 15:29:04 [INFO] Reloading complete
 172.17.0.18:41675 - [07/Sep/2018:15:29:11 +0000] 59925 "A IN kubernetes.default.svc.cluster.local. udp 54 false 512" NOERROR qr,aa,rd,ra 106 0.000066649s
 ```
+### Does CoreDNS have sufficient permissions?
+
+CoreDNS must be able to list {{< glossary_tooltip text="service"
+term_id="service" >}} and {{< glossary_tooltip text="endpoint"
+term_id="endpoint" >}} related resources to properly resolve service names.
+
+Sample error message:
+```
+2022-03-18T07:12:15.699431183Z [INFO] 10.96.144.227:52299 - 3686 "A IN serverproxy.contoso.net.cluster.local. udp 52 false 512" SERVFAIL qr,aa,rd 145 0.000091221s
+```
+
+First, get the current ClusterRole of `system:coredns`:
+
+```shell
+kubectl describe clusterrole system:coredns -n kube-system
+```
+
+Expected output:
+```
+PolicyRule:
+  Resources                        Non-Resource URLs  Resource Names  Verbs
+  ---------                        -----------------  --------------  -----
+  nodes                            []                 []              [get]
+  endpoints                        []                 []              [list watch]
+  namespaces                       []                 []              [list watch]
+  pods                             []                 []              [list watch]
+  services                         []                 []              [list watch]
+  endpointslices.discovery.k8s.io  []                 []              [list watch]
+```
+
+If any permissions are missing, edit the ClusterRole to add them:
+
+```shell
+kubectl edit clusterrole system:coredns -n kube-system
+```
+
+Example insertion of EndpointSlices permissions:
+```
+...
+- apiGroups:
+  - discovery.k8s.io
+  resources:
+  - endpointslices
+  verbs:
+  - list
+  - watch
+...
+```
 
 ### Are you in the right namespace for the service?
 
diff --git a/content/en/docs/tasks/administer-cluster/enabling-topology-aware-hints.md b/content/en/docs/tasks/administer-cluster/enabling-topology-aware-hints.md
deleted file mode 100644
index dadc653f4e..0000000000
--- a/content/en/docs/tasks/administer-cluster/enabling-topology-aware-hints.md
+++ /dev/null
@@ -1,40 +0,0 @@
----
-reviewers:
-- robscott
-title: Enabling Topology Aware Hints
-content_type: task
-min-kubernetes-server-version: 1.21
----
-
-<!-- overview -->
-{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
-
-_Topology Aware Hints_ enable topology aware routing with topology hints
-included in {{< glossary_tooltip text="EndpointSlices" term_id="endpoint-slice" >}}.
-This approach tries to keep traffic close to where it originated from;
-you might do this to reduce costs, or to improve network performance.
-
-## {{% heading "prerequisites" %}}
-
-  {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-The following prerequisite is needed in order to enable topology aware hints:
-
-* Configure the {{< glossary_tooltip text="kube-proxy" term_id="kube-proxy" >}} to run in
-  iptables mode or IPVS mode
-* Ensure that you have not disabled EndpointSlices
-
-## Enable Topology Aware Hints
-
-To enable service topology hints, enable the `TopologyAwareHints` [feature
-gate](/docs/reference/command-line-tools-reference/feature-gates/) for the
-kube-apiserver, kube-controller-manager, and kube-proxy:
-
-```
---feature-gates="TopologyAwareHints=true"
-```
-
-## {{% heading "whatsnext" %}}
-
-* Read about [Topology Aware Hints](/docs/concepts/services-networking/topology-aware-hints) for Services
-* Read [Connecting Applications with Services](/docs/concepts/services-networking/connect-applications-service/)
diff --git a/content/en/docs/tasks/administer-cluster/encrypt-data.md b/content/en/docs/tasks/administer-cluster/encrypt-data.md
index 66427133b2..d510caff81 100644
--- a/content/en/docs/tasks/administer-cluster/encrypt-data.md
+++ b/content/en/docs/tasks/administer-cluster/encrypt-data.md
@@ -1,7 +1,7 @@
 ---
+title: Encrypting Secret Data at Rest
 reviewers:
 - smarterclayton
-title: Encrypting Secret Data at Rest
 content_type: task
 min-kubernetes-server-version: 1.13
 ---
@@ -9,23 +9,27 @@ min-kubernetes-server-version: 1.13
 <!-- overview -->
 This page shows how to enable and configure encryption of secret data at rest.
 
-
 ## {{% heading "prerequisites" %}}
 
-
 * {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
 * etcd v3.0 or later is required
 
-
-
 <!-- steps -->
 
 ## Configuration and determining whether encryption at rest is already enabled
 
 The `kube-apiserver` process accepts an argument `--encryption-provider-config`
-that controls how API data is encrypted in etcd. An example configuration
-is provided below.
+that controls how API data is encrypted in etcd.
+The configuration is provided as an API named
+[`EncryptionConfiguration`](/docs/reference/config-api/apiserver-encryption.v1/).
+An example configuration is provided below.
+
+{{< caution >}}
+**IMPORTANT:** For high-availability configurations (with two or more control plane nodes), the
+encryption configuration file must be the same! Otherwise, the `kube-apiserver` component cannot
+decrypt data stored in the etcd.
+{{< /caution >}}
 
 ## Understanding the encryption at rest configuration.
 
@@ -34,40 +38,44 @@ apiVersion: apiserver.config.k8s.io/v1
 kind: EncryptionConfiguration
 resources:
   - resources:
-    - secrets
+      - secrets
     providers:
-    - identity: {}
-    - aesgcm:
-        keys:
-        - name: key1
-          secret: c2VjcmV0IGlzIHNlY3VyZQ==
-        - name: key2
-          secret: dGhpcyBpcyBwYXNzd29yZA==
-    - aescbc:
-        keys:
-        - name: key1
-          secret: c2VjcmV0IGlzIHNlY3VyZQ==
-        - name: key2
-          secret: dGhpcyBpcyBwYXNzd29yZA==
-    - secretbox:
-        keys:
-        - name: key1
-          secret: YWJjZGVmZ2hpamtsbW5vcHFyc3R1dnd4eXoxMjM0NTY=
+      - identity: {}
+      - aesgcm:
+          keys:
+            - name: key1
+              secret: c2VjcmV0IGlzIHNlY3VyZQ==
+            - name: key2
+              secret: dGhpcyBpcyBwYXNzd29yZA==
+      - aescbc:
+          keys:
+            - name: key1
+              secret: c2VjcmV0IGlzIHNlY3VyZQ==
+            - name: key2
+              secret: dGhpcyBpcyBwYXNzd29yZA==
+      - secretbox:
+          keys:
+            - name: key1
+              secret: YWJjZGVmZ2hpamtsbW5vcHFyc3R1dnd4eXoxMjM0NTY=
 ```
 
 Each `resources` array item is a separate config and contains a complete configuration. The
 `resources.resources` field is an array of Kubernetes resource names (`resource` or `resource.group`)
 that should be encrypted. The `providers` array is an ordered list of the possible encryption
-providers. Only one provider type may be specified per entry (`identity` or `aescbc` may be provided,
-but not both in the same item).
+providers.
 
-The first provider in the list is used to encrypt resources going into storage. When reading
-resources from storage each provider that matches the stored data attempts to decrypt the data in
-order. If no provider can read the stored data due to a mismatch in format or secret key, an error
+Only one provider type may be specified per entry (`identity` or `aescbc` may be provided,
+but not both in the same item).
+The first provider in the list is used to encrypt resources written into the storage. When reading
+resources from storage, each provider that matches the stored data attempts in order to decrypt the
+data. If no provider can read the stored data due to a mismatch in format or secret key, an error
 is returned which prevents clients from accessing that resource.
 
+For more detailed information about the `EncryptionConfiguration` struct, please refer to the
+[encryption configuration API](/docs/reference/config-api/apiserver-encryption.v1/).
+
 {{< caution >}}
-**IMPORTANT:** If any resource is not readable via the encryption config (because keys were changed),
+If any resource is not readable via the encryption config (because keys were changed),
 the only recourse is to delete that key from the underlying etcd directly. Calls that attempt to
 read that resource will fail until it is deleted or a valid decryption key is provided.
 {{< /caution >}}
@@ -78,23 +86,32 @@ read that resource will fail until it is deleted or a valid decryption key is pr
 Name | Encryption | Strength | Speed | Key Length | Other Considerations
 -----|------------|----------|-------|------------|---------------------
 `identity` | None | N/A | N/A | N/A | Resources written as-is without encryption. When set as the first provider, the resource will be decrypted as new values are written.
-`aescbc` | AES-CBC with PKCS#7 padding | Strongest | Fast | 32-byte | The recommended choice for encryption at rest but may be slightly slower than `secretbox`.
 `secretbox` | XSalsa20 and Poly1305 | Strong | Faster | 32-byte | A newer standard and may not be considered acceptable in environments that require high levels of review.
 `aesgcm` | AES-GCM with random nonce | Must be rotated every 200k writes | Fastest | 16, 24, or 32-byte | Is not recommended for use except when an automated key rotation scheme is implemented.
-`kms` | Uses envelope encryption scheme: Data is encrypted by data encryption keys (DEKs) using AES-CBC with PKCS#7 padding, DEKs are encrypted by key encryption keys (KEKs) according to configuration in Key Management Service (KMS) | Strongest | Fast | 32-bytes |  The recommended choice for using a third party tool for key management. Simplifies key rotation, with a new DEK generated for each encryption, and KEK rotation controlled by the user. [Configure the KMS provider](/docs/tasks/administer-cluster/kms-provider/)
+`aescbc` | AES-CBC with [PKCS#7](https://datatracker.ietf.org/doc/html/rfc2315) padding | Weak | Fast | 32-byte | Not recommended due to CBC's vulnerability to padding oracle attacks.
+`kms` | Uses envelope encryption scheme: Data is encrypted by data encryption keys (DEKs) using AES-CBC with [PKCS#7](https://datatracker.ietf.org/doc/html/rfc2315) padding, DEKs are encrypted by key encryption keys (KEKs) according to configuration in Key Management Service (KMS) | Strongest | Fast | 32-bytes |  The recommended choice for using a third party tool for key management. Simplifies key rotation, with a new DEK generated for each encryption, and KEK rotation controlled by the user. [Configure the KMS provider](/docs/tasks/administer-cluster/kms-provider/)
 
 Each provider supports multiple keys - the keys are tried in order for decryption, and if the provider
 is the first provider, the first key is used for encryption.
 
-__Storing the raw encryption key in the EncryptionConfig only moderately improves your security posture, compared to no encryption.
-Please use `kms` provider for additional security.__ By default, the `identity` provider is used to protect secrets in etcd, which
-provides no encryption. `EncryptionConfiguration` was introduced to encrypt secrets locally, with a locally managed key.
 
-Encrypting secrets with a locally managed key protects against an etcd compromise, but it fails to protect against a host compromise.
-Since the encryption keys are stored on the host in the EncryptionConfig YAML file, a skilled attacker can access that file and
-extract the encryption keys.
+{{< caution >}}
+Storing the raw encryption key in the EncryptionConfig only moderately improves your security
+posture, compared to no encryption.  Please use `kms` provider for additional security.
+{{< /caution >}}
 
-Envelope encryption creates dependence on a separate key, not stored in Kubernetes. In this case, an attacker would need to compromise etcd, the kubeapi-server, and the third-party KMS provider to retrieve the plaintext values, providing a higher level of security than locally-stored encryption keys.
+By default, the `identity` provider is used to protect Secrets in etcd, which provides no
+encryption. `EncryptionConfiguration` was introduced to encrypt Secrets locally, with a locally
+managed key.
+
+Encrypting Secrets with a locally managed key protects against an etcd compromise, but it fails to
+protect against a host compromise. Since the encryption keys are stored on the host in the
+EncryptionConfiguration YAML file, a skilled attacker can access that file and extract the encryption
+keys.
+
+Envelope encryption creates dependence on a separate key, not stored in Kubernetes. In this case,
+an attacker would need to compromise etcd, the `kubeapi-server`, and the third-party KMS provider to
+retrieve the plaintext values, providing a higher level of security than locally stored encryption keys.
 
 ## Encrypting your data
 
@@ -105,115 +122,122 @@ apiVersion: apiserver.config.k8s.io/v1
 kind: EncryptionConfiguration
 resources:
   - resources:
-    - secrets
+      - secrets
     providers:
-    - aescbc:
-        keys:
-        - name: key1
-          secret: <BASE 64 ENCODED SECRET>
-    - identity: {}
+      - aescbc:
+          keys:
+            - name: key1
+              secret: <BASE 64 ENCODED SECRET>
+      - identity: {}
 ```
 
-To create a new secret perform the following steps:
+To create a new Secret, perform the following steps:
 
-1. Generate a 32 byte random key and base64 encode it. If you're on Linux or macOS, run the following command:
+1. Generate a 32-byte random key and base64 encode it. If you're on Linux or macOS, run the following command:
 
    ```shell
    head -c 32 /dev/urandom | base64
    ```
 
-2. Place that value in the secret field.
-3. Set the `--encryption-provider-config` flag on the `kube-apiserver` to point to the location of the config file.
-4. Restart your API server.
+1. Place that value in the `secret` field of the `EncryptionConfiguration` struct.
+1. Set the `--encryption-provider-config` flag on the `kube-apiserver` to point to
+   the location of the config file.
+1. Restart your API server.
 
 {{< caution >}}
-Your config file contains keys that can decrypt content in etcd, so you must properly restrict permissions on your masters so only the user who runs the kube-apiserver can read it.
+Your config file contains keys that can decrypt the contents in etcd, so you must properly restrict
+permissions on your control-plane nodes so only the user who runs the `kube-apiserver` can read it.
 {{< /caution >}}
 
-
 ## Verifying that data is encrypted
 
 Data is encrypted when written to etcd. After restarting your `kube-apiserver`, any newly created or
-updated secret should be encrypted when stored. To check, you can use the `etcdctl` command line
-program to retrieve the contents of your secret.
+updated Secret should be encrypted when stored. To check this, you can use the `etcdctl` command line
+program to retrieve the contents of your Secret.
 
-1. Create a new secret called `secret1` in the `default` namespace:
+1. Create a new Secret called `secret1` in the `default` namespace:
 
    ```shell
    kubectl create secret generic secret1 -n default --from-literal=mykey=mydata
    ```
 
-2. Using the etcdctl commandline, read that secret out of etcd:
+1. Using the `etcdctl` command line, read that Secret out of etcd:
 
    `ETCDCTL_API=3 etcdctl get /registry/secrets/default/secret1 [...] | hexdump -C`
 
    where `[...]` must be the additional arguments for connecting to the etcd server.
 
-3. Verify the stored secret is prefixed with `k8s:enc:aescbc:v1:` which indicates the `aescbc` provider has encrypted the resulting data.
+1. Verify the stored Secret is prefixed with `k8s:enc:aescbc:v1:` which indicates
+   the `aescbc` provider has encrypted the resulting data.
 
-4. Verify the secret is correctly decrypted when retrieved via the API:
+1. Verify the Secret is correctly decrypted when retrieved via the API:
 
    ```shell
    kubectl describe secret secret1 -n default
    ```
 
-   should match `mykey: bXlkYXRh`, mydata is encoded, check [decoding a secret](/docs/tasks/configmap-secret/managing-secret-using-kubectl/#decoding-secret) to
-   completely decode the secret.
+   The output should contain `mykey: bXlkYXRh`, with contents of `mydata` encoded, check
+   [decoding a Secret](/docs/tasks/configmap-secret/managing-secret-using-kubectl/#decoding-secret)
+   to completely decode the Secret.
 
+## Ensure all Secrets are encrypted
 
-## Ensure all secrets are encrypted
-
-Since secrets are encrypted on write, performing an update on a secret will encrypt that content.
+Since Secrets are encrypted on write, performing an update on a Secret will encrypt that content.
 
 ```shell
 kubectl get secrets --all-namespaces -o json | kubectl replace -f -
 ```
 
-The command above reads all secrets and then updates them to apply server side encryption.
+The command above reads all Secrets and then updates them to apply server side encryption.
 
 {{< note >}}
 If an error occurs due to a conflicting write, retry the command.
 For larger clusters, you may wish to subdivide the secrets by namespace or script an update.
 {{< /note >}}
 
-
 ## Rotating a decryption key
 
-Changing the secret without incurring downtime requires a multi step operation, especially in
-the presence of a highly available deployment where multiple `kube-apiserver` processes are running.
+Changing a Secret without incurring downtime requires a multi-step operation, especially in
+the presence of a highly-available deployment where multiple `kube-apiserver` processes are running.
 
 1. Generate a new key and add it as the second key entry for the current provider on all servers
-2. Restart all `kube-apiserver` processes to ensure each server can decrypt using the new key
-3. Make the new key the first entry in the `keys` array so that it is used for encryption in the config
-4. Restart all `kube-apiserver` processes to ensure each server now encrypts using the new key
-5. Run `kubectl get secrets --all-namespaces -o json | kubectl replace -f -` to encrypt all existing secrets with the new key
-6. Remove the old decryption key from the config after you back up etcd with the new key in use and update all secrets
-
-With a single `kube-apiserver`, step 2 may be skipped.
+1. Restart all `kube-apiserver` processes to ensure each server can decrypt using the new key
+1. Make the new key the first entry in the `keys` array so that it is used for encryption in the config
+1. Restart all `kube-apiserver` processes to ensure each server now encrypts using the new key
+1. Run `kubectl get secrets --all-namespaces -o json | kubectl replace -f -` to encrypt all
+   existing Secrets with the new key
+1. Remove the old decryption key from the config after you have backed up etcd with the new key in use
+   and updated all Secrets
 
+When running a single `kube-apiserver` instance, step 2 may be skipped.
 
 ## Decrypting all data
 
-To disable encryption at rest place the `identity` provider as the first entry in the config:
+To disable encryption at rest, place the `identity` provider as the first entry in the config
+and restart all `kube-apiserver` processes. 
 
 ```yaml
 apiVersion: apiserver.config.k8s.io/v1
 kind: EncryptionConfiguration
 resources:
   - resources:
-    - secrets
+      - secrets
     providers:
-    - identity: {}
-    - aescbc:
-        keys:
-        - name: key1
-          secret: <BASE 64 ENCODED SECRET>
+      - identity: {}
+      - aescbc:
+          keys:
+            - name: key1
+              secret: <BASE 64 ENCODED SECRET>
 ```
 
-and restart all `kube-apiserver` processes. Then run:
+Then run the following command to force decrypt
+all Secrets:
+
 ```shell
 kubectl get secrets --all-namespaces -o json | kubectl replace -f -
 ```
-to force all secrets to be decrypted.
 
+## {{% heading "whatsnext" %}}
+
+* Learn more about the [EncryptionConfiguration configuration API (v1)](/docs/reference/config-api/apiserver-encryption.v1/).
 
diff --git a/content/en/docs/tasks/administer-cluster/highly-available-control-plane.md b/content/en/docs/tasks/administer-cluster/highly-available-control-plane.md
deleted file mode 100644
index 6f57b441e7..0000000000
--- a/content/en/docs/tasks/administer-cluster/highly-available-control-plane.md
+++ /dev/null
@@ -1,225 +0,0 @@
----
-reviewers:
-- jszczepkowski
-title: Set up a High-Availability Control Plane
-content_type: task
-aliases: [ '/docs/tasks/administer-cluster/highly-available-master/' ]
----
-
-<!-- overview -->
-
-{{< feature-state for_k8s_version="v1.5" state="alpha" >}}
-
-You can replicate Kubernetes control plane nodes in `kube-up` or `kube-down` scripts for Google Compute Engine. However this scripts are not suitable for any sort of production use, it's widely used in the project's CI.
-This document describes how to use kube-up/down scripts to manage a highly available (HA) control plane and how HA control planes are implemented for use with GCE.
-
-
-
-
-## {{% heading "prerequisites" %}}
-
-
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-
-
-<!-- steps -->
-
-## Starting an HA-compatible cluster
-
-To create a new HA-compatible cluster, you must set the following flags in your `kube-up` script:
-
-* `MULTIZONE=true` - to prevent removal of control plane kubelets from zones different than server's default zone.
-Required if you want to run control plane nodes in different zones, which is recommended.
-
-* `ENABLE_ETCD_QUORUM_READ=true` - to ensure that reads from all API servers will return most up-to-date data.
-If true, reads will be directed to leader etcd replica.
-Setting this value to true is optional: reads will be more reliable but will also be slower.
-
-Optionally, you can specify a GCE zone where the first control plane node is to be created.
-Set the following flag:
-
-* `KUBE_GCE_ZONE=zone` - zone where the first control plane node will run.
-
-The following sample command sets up a HA-compatible cluster in the GCE zone europe-west1-b:
-
-```shell
-MULTIZONE=true KUBE_GCE_ZONE=europe-west1-b  ENABLE_ETCD_QUORUM_READS=true ./cluster/kube-up.sh
-```
-
-Note that the commands above create a cluster with one control plane node;
-however, you can add new control plane nodes to the cluster with subsequent commands.
-
-## Adding a new control plane node
-
-After you have created an HA-compatible cluster, you can add control plane nodes to it.
-You add control plane nodes by using a `kube-up` script with the following flags:
-
-* `KUBE_REPLICATE_EXISTING_MASTER=true` - to create a replica of an existing control plane
-node.
-
-* `KUBE_GCE_ZONE=zone` - zone where the control plane node will run.
-Must be in the same region as other control plane nodes' zones.
-
-You don't need to set the `MULTIZONE` or `ENABLE_ETCD_QUORUM_READS` flags,
-as those are inherited from when you started your HA-compatible cluster.
-
-The following sample command replicates the control plane node on an existing
-HA-compatible cluster:
-
-```shell
-KUBE_GCE_ZONE=europe-west1-c KUBE_REPLICATE_EXISTING_MASTER=true ./cluster/kube-up.sh
-```
-
-## Removing a control plane node
-
-You can remove a control plane node from an HA cluster by using a `kube-down` script with the following flags:
-
-* `KUBE_DELETE_NODES=false` - to restrain deletion of kubelets.
-
-* `KUBE_GCE_ZONE=zone` - the zone from where the control plane node will be removed.
-
-* `KUBE_REPLICA_NAME=replica_name` - (optional) the name of control plane node to
-remove. If empty: any replica from the given zone will be removed.
-
-The following sample command removes a control plane node from an existing HA cluster:
-
-```shell
-KUBE_DELETE_NODES=false KUBE_GCE_ZONE=europe-west1-c ./cluster/kube-down.sh
-```
-
-## Handling control plane node failures
-
-If one of the control plane nodes in your HA cluster fails,
-the best practice is to remove the node from your cluster and add a new control plane
-node in the same zone.
-The following sample commands demonstrate this process:
-
-1. Remove the broken replica:
-
-```shell
-KUBE_DELETE_NODES=false KUBE_GCE_ZONE=replica_zone KUBE_REPLICA_NAME=replica_name ./cluster/kube-down.sh
-```
-
-<ol start="2"><li>Add a new node in place of the old one:</li></ol>
-
-```shell
-KUBE_GCE_ZONE=replica-zone KUBE_REPLICATE_EXISTING_MASTER=true ./cluster/kube-up.sh
-```
-
-## Best practices for replicating control plane nodes for HA clusters
-
-* Try to place control plane nodes in different zones. During a zone failure, all
-control plane nodes placed inside the zone will fail.
-To survive zone failure, also place nodes in multiple zones
-(see [multiple-zones](/docs/setup/best-practices/multiple-zones/) for details).
-
-* Do not use a cluster with two control plane nodes. Consensus on a two-node
-control plane requires both nodes running when changing persistent state.
-As a result, both nodes are needed and a failure of any node turns the cluster
-into majority failure state.
-A two-node control plane is thus inferior, in terms of HA, to a cluster with
-one control plane node.
-
-* When you add a control plane node, cluster state (etcd) is copied to a new instance.
-If the cluster is large, it may take a long time to duplicate its state.
-This operation may be sped up by migrating the etcd data directory, as described in
-the [etcd administration guide](https://etcd.io/docs/v2.3/admin_guide/#member-migration)
-(we are considering adding support for etcd data dir migration in the future).
-
-
-
-<!-- discussion -->
-
-## Implementation notes
-
-![ha-control-plane](/docs/images/ha-control-plane.svg)
-
-### Overview
-The figure above illustrates three control plane nodes and their components in a highly available cluster. The control plane node’s components employ the following methods:
-
-- etcd: instances are clustered together using consensus.
-
-- Controllers, scheduler and cluster auto-scaler: only one instance of each will be active in a cluster using a lease mechanism.
-
-- Add-on manager: each works independently to keep add-ons in sync.
-
-In addition, a load balancer operating in front of the API servers routes external and internal traffic to the control plane nodes.
-Each of the control plane nodes will run the following components in the following mode:
-
-* etcd instance: all instances will be clustered together using consensus;
-
-* API server: each server will talk to local etcd - all API servers in the cluster will be available;
-
-* controllers, scheduler, and cluster auto-scaler: will use lease mechanism - only one instance of each of them will be active in the cluster;
-
-* add-on manager: each manager will work independently trying to keep add-ons in sync.
-
-In addition, there will be a load balancer in front of API servers that will route external and internal traffic to them.
-
-### Load balancing
-
-When starting the second control plane node, a load balancer containing the two replicas will be created
-and the IP address of the first replica will be promoted to IP address of load balancer.
-Similarly, after removal of the penultimate control plane node, the load balancer will be removed and its IP address will be assigned to the last remaining replica.
-Please note that creation and removal of load balancer are complex operations and it may take some time (~20 minutes) for them to propagate.
-
-### Control plane service & kubelets
-
-Instead of trying to keep an up-to-date list of Kubernetes apiserver in the Kubernetes service,
-the system directs all traffic to the external IP:
-
-* in case of a single node control plane, the IP points to the control plane node,
-
-* in case of an HA control plane, the IP points to the load balancer in-front of the control plane nodes.
-
-Similarly, the external IP will be used by kubelets to communicate with the control plane.
-
-### Control plane node certificates
-
-Kubernetes generates TLS certificates for the external public IP and local IP for each control plane node.
-There are no certificates for the ephemeral public IP for control plane nodes;
-to access a control plane node via its ephemeral public IP, you must skip TLS verification.
-
-### Clustering etcd
-
-To allow etcd clustering, ports needed to communicate between etcd instances will be opened (for inside cluster communication).
-To make such deployment secure, communication between etcd instances is authorized using SSL.
-
-### API server identity
-
-{{< feature-state state="alpha" for_k8s_version="v1.20" >}}
-
-The API Server Identity feature is controlled by a
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
-and is not enabled by default. You can activate API Server Identity by enabling
-the feature gate named `APIServerIdentity` when you start the
-{{< glossary_tooltip text="API Server" term_id="kube-apiserver" >}}:
-
-```shell
-kube-apiserver \
---feature-gates=APIServerIdentity=true \
- # …and other flags as usual
-```
-
-During bootstrap, each kube-apiserver assigns a unique ID to itself. The ID is
-in the format of `kube-apiserver-{UUID}`. Each kube-apiserver creates a
-[Lease](/docs/reference/generated/kubernetes-api/{{< param "version" >}}//#lease-v1-coordination-k8s-io)
-in the _kube-system_ {{< glossary_tooltip text="namespaces" term_id="namespace">}}.
-The Lease name is the unique ID for the kube-apiserver. The Lease contains a
-label `k8s.io/component=kube-apiserver`. Each kube-apiserver refreshes its
-Lease every `IdentityLeaseRenewIntervalSeconds` (defaults to 10s). Each
-kube-apiserver also checks all the kube-apiserver identity Leases every
-`IdentityLeaseDurationSeconds` (defaults to 3600s), and deletes Leases that
-hasn't got refreshed for more than `IdentityLeaseDurationSeconds`.
-`IdentityLeaseRenewIntervalSeconds` and `IdentityLeaseDurationSeconds` can be
-configured by kube-apiserver flags `identity-lease-renew-interval-seconds`
-and `identity-lease-duration-seconds`.
-
-Enabling this feature is a prerequisite for using features that involve HA API
-server coordination (for example, the `StorageVersionAPI` feature gate).
-
-## Additional reading
-
-[Automated HA master deployment - design doc](https://git.k8s.io/community/contributors/design-proposals/cluster-lifecycle/ha_master.md)
-
diff --git a/content/en/docs/tasks/administer-cluster/ip-masq-agent.md b/content/en/docs/tasks/administer-cluster/ip-masq-agent.md
index 2997508a15..e923345d1a 100644
--- a/content/en/docs/tasks/administer-cluster/ip-masq-agent.md
+++ b/content/en/docs/tasks/administer-cluster/ip-masq-agent.md
@@ -4,31 +4,27 @@ content_type: task
 ---
 
 <!-- overview -->
-This page shows how to configure and enable the ip-masq-agent.
-
+This page shows how to configure and enable the `ip-masq-agent`.
 
 ## {{% heading "prerequisites" %}}
 
-
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
-
-
 <!-- discussion -->
 ## IP Masquerade Agent User Guide
 
-The ip-masq-agent configures iptables rules to hide a pod's IP address behind the cluster node's IP address. This is typically done when sending traffic to destinations outside the cluster's pod [CIDR](https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing) range.
+The `ip-masq-agent` configures iptables rules to hide a pod's IP address behind the cluster node's IP address. This is typically done when sending traffic to destinations outside the cluster's pod [CIDR](https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing) range.
 
 ### **Key Terms**
 
-*   **NAT (Network Address Translation)**
-    Is a method of remapping one IP address to another by modifying either the source and/or destination address information in the IP header.  Typically performed by a device doing IP routing.
-*   **Masquerading**
-    A form of NAT that is typically used to perform a many to one address translation, where multiple source IP addresses are masked behind a single address, which is typically the device doing the IP routing. In Kubernetes this is the Node's IP address.
-*   **CIDR (Classless Inter-Domain Routing)**
-    Based on the variable-length subnet masking, allows specifying arbitrary-length prefixes. CIDR introduced a new method of representation for IP addresses, now commonly known as **CIDR notation**, in which an address or routing prefix is written with a suffix indicating the number of bits of the prefix, such as 192.168.2.0/24.
-*   **Link Local**
-    A link-local address is a network address that is valid only for communications within the network segment or the broadcast domain that the host is connected to. Link-local addresses for IPv4 are defined in the address block 169.254.0.0/16 in CIDR notation.
+* **NAT (Network Address Translation)**
+  Is a method of remapping one IP address to another by modifying either the source and/or destination address information in the IP header.  Typically performed by a device doing IP routing.
+* **Masquerading**
+  A form of NAT that is typically used to perform a many to one address translation, where multiple source IP addresses are masked behind a single address, which is typically the device doing the IP routing. In Kubernetes this is the Node's IP address.
+* **CIDR (Classless Inter-Domain Routing)**
+  Based on the variable-length subnet masking, allows specifying arbitrary-length prefixes. CIDR introduced a new method of representation for IP addresses, now commonly known as **CIDR notation**, in which an address or routing prefix is written with a suffix indicating the number of bits of the prefix, such as 192.168.2.0/24.
+* **Link Local**
+  A link-local address is a network address that is valid only for communications within the network segment or the broadcast domain that the host is connected to. Link-local addresses for IPv4 are defined in the address block 169.254.0.0/16 in CIDR notation.
 
 The ip-masq-agent configures iptables rules to handle masquerading node/pod IP addresses when sending traffic to destinations outside the cluster node's IP and the Cluster IP range.  This essentially hides pod IP addresses behind the cluster node's IP address.  In some environments, traffic to "external" addresses must come from a known machine address. For example, in Google Cloud, any traffic to the internet must come from a VM's IP.  When containers are used, as in Google Kubernetes Engine, the Pod IP will be rejected for egress. To avoid this, we must hide the Pod IP behind the VM's own IP address - generally known as "masquerade". By default, the agent is configured to treat the three private IP ranges specified by [RFC 1918](https://tools.ietf.org/html/rfc1918) as non-masquerade [CIDR](https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing).  These ranges are 10.0.0.0/8, 172.16.0.0/12, and 192.168.0.0/16. The agent will also treat link-local (169.254.0.0/16) as a non-masquerade CIDR by default.  The agent is configured to reload its configuration from the location */etc/config/ip-masq-agent* every 60 seconds, which is also configurable.
 
@@ -36,14 +32,20 @@ The ip-masq-agent configures iptables rules to handle masquerading node/pod IP a
 
 The agent configuration file must be written in YAML or JSON syntax, and may contain three optional keys:
 
-*   **nonMasqueradeCIDRs:** A list of strings in [CIDR](https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing) notation that specify the non-masquerade ranges.
-*   **masqLinkLocal:** A Boolean (true / false) which indicates whether to masquerade traffic to the link local prefix 169.254.0.0/16. False by default.
-*   **resyncInterval:** A time interval at which the agent attempts to reload config from disk. For example: '30s', where 's' means seconds, 'ms' means milliseconds, etc...
+* `nonMasqueradeCIDRs`: A list of strings in
+  [CIDR](https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing) notation that specify the non-masquerade ranges.
+* `masqLinkLocal`: A Boolean (true/false) which indicates whether to masquerade traffic to the
+  link local prefix `169.254.0.0/16`. False by default.
+* `resyncInterval`: A time interval at which the agent attempts to reload config from disk.
+  For example: '30s', where 's' means seconds, 'ms' means milliseconds.
 
 Traffic to 10.0.0.0/8, 172.16.0.0/12 and 192.168.0.0/16) ranges will NOT be masqueraded. Any other traffic (assumed to be internet) will be masqueraded.  An example of a local destination from a pod could be its Node's IP address as well as another node's address or one of the IP addresses in Cluster's IP range.   Any other traffic will be masqueraded by default.  The below entries show the default set of rules that are applied by the ip-masq-agent:
 
-```
+```shell
 iptables -t nat -L IP-MASQ-AGENT
+```
+
+```none
 RETURN     all  --  anywhere             169.254.0.0/16       /* ip-masq-agent: cluster-local traffic should not be subject to MASQUERADE */ ADDRTYPE match dst-type !LOCAL
 RETURN     all  --  anywhere             10.0.0.0/8           /* ip-masq-agent: cluster-local traffic should not be subject to MASQUERADE */ ADDRTYPE match dst-type !LOCAL
 RETURN     all  --  anywhere             172.16.0.0/12        /* ip-masq-agent: cluster-local traffic should not be subject to MASQUERADE */ ADDRTYPE match dst-type !LOCAL
@@ -52,33 +54,35 @@ MASQUERADE  all  --  anywhere             anywhere             /* ip-masq-agent:
 
 ```
 
-By default, in GCE/Google Kubernetes Engine starting with Kubernetes version 1.7.0, if network policy is enabled or you are using a cluster CIDR not in the 10.0.0.0/8 range, the ip-masq-agent will run in your cluster.  If you are running in another environment, you can add the ip-masq-agent [DaemonSet](/docs/concepts/workloads/controllers/daemonset/) to your cluster:
-
-
+By default, in GCE/Google Kubernetes Engine, if network policy is enabled or
+you are using a cluster CIDR not in the 10.0.0.0/8 range, the `ip-masq-agent`
+will run in your cluster. If you are running in another environment,
+you can add the `ip-masq-agent` [DaemonSet](/docs/concepts/workloads/controllers/daemonset/)
+to your cluster.
 
 <!-- steps -->
 
 ## Create an ip-masq-agent
 To create an ip-masq-agent, run the following kubectl command:
 
-`
+```shell
 kubectl apply -f https://raw.githubusercontent.com/kubernetes-sigs/ip-masq-agent/master/ip-masq-agent.yaml
-`
+```
 
 You must also apply the appropriate node label to any nodes in your cluster that you want the agent to run on.
 
-`
-kubectl label nodes my-node beta.kubernetes.io/masq-agent-ds-ready=true
-`
+```shell
+kubectl label nodes my-node node.kubernetes.io/masq-agent-ds-ready=true
+```
 
 More information can be found in the ip-masq-agent documentation [here](https://github.com/kubernetes-sigs/ip-masq-agent)
 
 In most cases, the default set of rules should be sufficient; however, if this is not the case for your cluster, you can create and apply a [ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/) to customize the IP ranges that are affected.  For example, to allow only 10.0.0.0/8 to be considered by the ip-masq-agent, you can create the following [ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/) in a file called "config".
 
 {{< note >}}
-It is important that the file is called config since, by default, that will be used as the key for lookup by the ip-masq-agent:
+It is important that the file is called config since, by default, that will be used as the key for lookup by the `ip-masq-agent`:
 
-```
+```yaml
 nonMasqueradeCIDRs:
   - 10.0.0.0/8
 resyncInterval: 60s
@@ -87,15 +91,18 @@ resyncInterval: 60s
 
 Run the following command to add the config map to your cluster:
 
-```
+```shell
 kubectl create configmap ip-masq-agent --from-file=config --namespace=kube-system
 ```
 
-This will update a file located at */etc/config/ip-masq-agent* which is periodically checked every *resyncInterval* and applied to the cluster node.
+This will update a file located at `/etc/config/ip-masq-agent` which is periodically checked every `resyncInterval` and applied to the cluster node.
 After the resync interval has expired, you should see the iptables rules reflect your changes:
 
-```
+```shell
 iptables -t nat -L IP-MASQ-AGENT
+```
+
+```none
 Chain IP-MASQ-AGENT (1 references)
 target     prot opt source               destination
 RETURN     all  --  anywhere             169.254.0.0/16       /* ip-masq-agent: cluster-local traffic should not be subject to MASQUERADE */ ADDRTYPE match dst-type !LOCAL
@@ -103,9 +110,9 @@ RETURN     all  --  anywhere             10.0.0.0/8           /* ip-masq-agent:
 MASQUERADE  all  --  anywhere             anywhere             /* ip-masq-agent: outbound traffic should be subject to MASQUERADE (this match must come after cluster-local CIDR matches) */ ADDRTYPE match dst-type !LOCAL
 ```
 
-By default, the link local range (169.254.0.0/16) is also handled by the ip-masq agent, which sets up the appropriate iptables rules.  To have the ip-masq-agent ignore link local, you can set *masqLinkLocal*  to true in the config map.
+By default, the link local range (169.254.0.0/16) is also handled by the ip-masq agent, which sets up the appropriate iptables rules.  To have the ip-masq-agent ignore link local, you can set `masqLinkLocal` to true in the ConfigMap.
 
-```
+```yaml
 nonMasqueradeCIDRs:
   - 10.0.0.0/8
 resyncInterval: 60s
diff --git a/content/en/docs/tasks/administer-cluster/kms-provider.md b/content/en/docs/tasks/administer-cluster/kms-provider.md
index 15bc1290ff..db00955ec1 100644
--- a/content/en/docs/tasks/administer-cluster/kms-provider.md
+++ b/content/en/docs/tasks/administer-cluster/kms-provider.md
@@ -19,35 +19,50 @@ This page shows how to configure a Key Management Service (KMS) provider and plu
 
 <!-- steps -->
 
-The KMS encryption provider uses an envelope encryption scheme to encrypt data in etcd. The data is encrypted using a data encryption key (DEK); a new DEK is generated for each encryption. The DEKs are encrypted with a key encryption key (KEK) that is stored and managed in a remote KMS. The KMS provider uses gRPC to communicate with a specific KMS 
-plugin. The KMS plugin, which is implemented as a gRPC server and deployed on the same host(s) as the Kubernetes master(s), is responsible for all communication with the remote KMS.
+The KMS encryption provider uses an envelope encryption scheme to encrypt data in etcd.
+The data is encrypted using a data encryption key (DEK); a new DEK is generated for each encryption.
+The DEKs are encrypted with a key encryption key (KEK) that is stored and managed in a remote KMS.
+The KMS provider uses gRPC to communicate with a specific KMS plugin.
+The KMS plugin, which is implemented as a gRPC server and deployed on the same host(s)
+as the Kubernetes control plane, is responsible for all communication with the remote KMS.
 
 ## Configuring the KMS provider
 
-To configure a KMS provider on the API server, include a provider of type ```kms``` in the providers array in the encryption configuration file and set the following properties:
+To configure a KMS provider on the API server, include a provider of type `kms` in the
+`providers` array in the encryption configuration file and set the following properties:
 
 * `name`: Display name of the KMS plugin.
 * `endpoint`: Listen address of the gRPC server (KMS plugin). The endpoint is a UNIX domain socket.
 * `cachesize`: Number of data encryption keys (DEKs) to be cached in the clear.
   When cached, DEKs can be used without another call to the KMS;
   whereas DEKs that are not cached require a call to the KMS to unwrap.
-* `timeout`: How long should kube-apiserver wait for kms-plugin to respond before returning an error (default is 3 seconds).
+* `timeout`: How long should `kube-apiserver` wait for kms-plugin to respond before
+  returning an error (default is 3 seconds).
 
-See [Understanding the encryption at rest configuration.](/docs/tasks/administer-cluster/encrypt-data)
+See [Understanding the encryption at rest configuration](/docs/tasks/administer-cluster/encrypt-data).
 
 ## Implementing a KMS plugin
 
-To implement a KMS plugin, you can develop a new plugin gRPC server or enable a KMS plugin already provided by your cloud provider. You then integrate the plugin with the remote KMS and deploy it on the Kubernetes master.
+To implement a KMS plugin, you can develop a new plugin gRPC server or enable a KMS plugin
+already provided by your cloud provider.
+You then integrate the plugin with the remote KMS and deploy it on the Kubernetes master.
 
 ### Enabling the KMS supported by your cloud provider 
+
 Refer to your cloud provider for instructions on enabling the cloud provider-specific KMS plugin.
 
 ### Developing a KMS plugin gRPC server
-You can develop a KMS plugin gRPC server using a stub file available for Go. For other languages, you use a proto file to create a stub file that you can use to develop the gRPC server code.
 
-* Using Go: Use the functions and data structures in the stub file: [service.pb.go](https://github.com/kubernetes/kubernetes/blob/master/staging/src/k8s.io/apiserver/pkg/storage/value/encrypt/envelope/v1beta1/service.pb.go) to develop the gRPC server code 
+You can develop a KMS plugin gRPC server using a stub file available for Go. For other languages,
+you use a proto file to create a stub file that you can use to develop the gRPC server code.
 
-* Using languages other than Go: Use the protoc compiler with the proto file: [service.proto](https://github.com/kubernetes/kubernetes/blob/master/staging/src/k8s.io/apiserver/pkg/storage/value/encrypt/envelope/v1beta1/service.proto) to generate a stub file for the specific language
+* Using Go: Use the functions and data structures in the stub file:
+  [service.pb.go](https://github.com/kubernetes/kubernetes/blob/release-1.24/staging/src/k8s.io/apiserver/pkg/storage/value/encrypt/envelope/v1beta1/service.pb.go)
+  to develop the gRPC server code 
+
+* Using languages other than Go: Use the protoc compiler with the proto file:
+  [service.proto](https://github.com/kubernetes/kubernetes/blob/release-1.24/staging/src/k8s.io/apiserver/pkg/storage/value/encrypt/envelope/v1beta1/service.proto)
+  to generate a stub file for the specific language
 
 Then use the functions and data structures in the stub file to develop the server code.
 
@@ -55,7 +70,7 @@ Then use the functions and data structures in the stub file to develop the serve
 
 * kms plugin version: `v1beta1`
 
-  In response to procedure call Version, a compatible KMS plugin should return v1beta1 as VersionResponse.version.
+  In response to procedure call Version, a compatible KMS plugin should return `v1beta1` as `VersionResponse.version`.
 
 * message version: `v1beta1`
 
@@ -69,12 +84,15 @@ Then use the functions and data structures in the stub file to develop the serve
 
 The KMS plugin can communicate with the remote KMS using any protocol supported by the KMS.
 All configuration data, including authentication credentials the KMS plugin uses to communicate with the remote KMS, 
-are stored and managed by the KMS plugin independently. The KMS plugin can encode the ciphertext with additional metadata that may be required before sending it to the KMS for decryption.
+are stored and managed by the KMS plugin independently.
+The KMS plugin can encode the ciphertext with additional metadata that may be required before sending it to the KMS for decryption.
 
 ### Deploying the KMS plugin 
+
 Ensure that the KMS plugin runs on the same host(s) as the Kubernetes master(s).
 
 ## Encrypting your data with the KMS provider
+
 To encrypt the data:
 
 1. Create a new encryption configuration file using the appropriate properties for the `kms` provider:
@@ -94,32 +112,43 @@ To encrypt the data:
          - identity: {}
    ```
 
-1. Set the `--encryption-provider-config` flag on the kube-apiserver to point to the location of the configuration file.
+1. Set the `--encryption-provider-config` flag on the kube-apiserver to point to
+   the location of the configuration file.
 1. Restart your API server.
 
+For details about the `EncryptionConfiguration` format, please check the
+[API server encryption API reference](/docs/reference/config-api/apiserver-encryption.v1/).
+
 ## Verifying that the data is encrypted
 
 Data is encrypted when written to etcd. After restarting your `kube-apiserver`, 
 any newly created or updated secret should be encrypted when stored. To verify,
 you can use the `etcdctl` command line program to retrieve the contents of your secret.
 
-1. Create a new secret called secret1 in the default namespace:
-   ```
+1. Create a new secret called `secret1` in the `default` namespace:
+
+   ```shell
    kubectl create secret generic secret1 -n default --from-literal=mykey=mydata
    ```
-1. Using the etcdctl command line, read that secret out of etcd:
-   ```
+
+1. Using the `etcdctl` command line, read that secret out of etcd:
+
+   ```shell
    ETCDCTL_API=3 etcdctl get /kubernetes.io/secrets/default/secret1 [...] | hexdump -C
    ```
-   where `[...]` must be the additional arguments for connecting to the etcd server.
 
-1. Verify the stored secret is prefixed with `k8s:enc:kms:v1:`, which indicates that the `kms` provider has encrypted the resulting data.
+   where `[...]` contains the additional arguments for connecting to the etcd server.
+
+1. Verify the stored secret is prefixed with `k8s:enc:kms:v1:`, which indicates that
+   the `kms` provider has encrypted the resulting data.
 
 1. Verify that the secret is correctly decrypted when retrieved via the API:
-   ```
+
+   ```shell
    kubectl describe secret secret1 -n default
    ```
-   should match `mykey: mydata`
+
+   The Secret should contain `mykey: mydata`
 
 ## Ensuring all secrets are encrypted
 
@@ -129,7 +158,7 @@ The following command reads all secrets and then updates them to apply server si
 If an error occurs due to a conflicting write, retry the command.
 For larger clusters, you may wish to subdivide the secrets by namespace or script an update.
 
-```
+```shell
 kubectl get secrets --all-namespaces -o json | kubectl replace -f -
 ```
 
@@ -156,12 +185,12 @@ To switch from a local encryption provider to the `kms` provider and re-encrypt
                  secret: <BASE 64 ENCODED SECRET>
    ```
 
-1. Restart all kube-apiserver processes.
+1. Restart all `kube-apiserver` processes.
 
 1. Run the following command to force all secrets to be re-encrypted using the `kms` provider.
 
-   ```
-   kubectl get secrets --all-namespaces -o json| kubectl replace -f -
+   ```shell
+   kubectl get secrets --all-namespaces -o json | kubectl replace -f -
    ```
 
 ## Disabling encryption at rest
@@ -183,9 +212,12 @@ To disable encryption at rest:
              endpoint: unix:///tmp/socketfile.sock
              cachesize: 100
    ```
-1. Restart all kube-apiserver processes. 
+
+1. Restart all `kube-apiserver` processes. 
+
 1. Run the following command to force all secrets to be decrypted.
-   ```
+
+   ```shell
    kubectl get secrets --all-namespaces -o json | kubectl replace -f -
    ```
 
diff --git a/content/en/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes.md b/content/en/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes.md
deleted file mode 100644
index 56af353f89..0000000000
--- a/content/en/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes.md
+++ /dev/null
@@ -1,245 +0,0 @@
----
-reviewers:
-- jayunit100
-- jsturtevant
-- marosset
-- perithompson
-title: Adding Windows nodes
-min-kubernetes-server-version: 1.17
-content_type: tutorial
-weight: 30
----
-
-<!-- overview -->
-
-{{< feature-state for_k8s_version="v1.18" state="beta" >}}
-
-You can use Kubernetes to run a mixture of Linux and Windows nodes, so you can mix Pods that run on Linux on with Pods that run on Windows. This page shows how to register Windows nodes to your cluster.
-
-
-
-
-## {{% heading "prerequisites" %}}
- {{< version-check >}}
-
-* Obtain a [Windows Server 2019 license](https://www.microsoft.com/en-us/cloud-platform/windows-server-pricing)
-(or higher) in order to configure the Windows node that hosts Windows containers.
-If you are using VXLAN/Overlay networking you must have also have [KB4489899](https://support.microsoft.com/help/4489899) installed.
-
-* A Linux-based Kubernetes kubeadm cluster in which you have access to the control plane (see [Creating a single control-plane cluster with kubeadm](/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/)).
-
-
-
-
-## {{% heading "objectives" %}}
-
-
-* Register a Windows node to the cluster
-* Configure networking so Pods and Services on Linux and Windows can communicate with each other
-
-
-
-
-<!-- lessoncontent -->
-
-## Getting Started: Adding a Windows Node to Your Cluster
-
-### Networking Configuration
-
-Once you have a Linux-based Kubernetes control-plane node you are ready to choose a networking solution. This guide illustrates using Flannel in VXLAN mode for simplicity.
-
-#### Configuring Flannel
-
-1. Prepare Kubernetes control plane for Flannel
-
-    Some minor preparation is recommended on the Kubernetes control plane in our cluster. It is recommended to enable bridged IPv4 traffic to iptables chains when using Flannel. The following command must be run on all Linux nodes:
-
-    ```bash
-    sudo sysctl net.bridge.bridge-nf-call-iptables=1
-    ```
-
-1. Download & configure Flannel for Linux
-
-    Download the most recent Flannel manifest:
-
-    ```bash
-    wget https://raw.githubusercontent.com/coreos/flannel/master/Documentation/kube-flannel.yml
-    ```
-
-    Modify the `net-conf.json` section of the flannel manifest in order to set the VNI to 4096 and the Port to 4789. It should look as follows:
-
-    ```json
-    net-conf.json: |
-        {
-          "Network": "10.244.0.0/16",
-          "Backend": {
-            "Type": "vxlan",
-            "VNI": 4096,
-            "Port": 4789
-          }
-        }
-    ```
-
-    {{< note >}}The VNI must be set to 4096 and port 4789 for Flannel on Linux to interoperate with Flannel on Windows. See the [VXLAN documentation](https://github.com/coreos/flannel/blob/master/Documentation/backends.md#vxlan).
-    for an explanation of these fields.{{< /note >}}
-
-    {{< note >}}To use L2Bridge/Host-gateway mode instead change the value of `Type` to `"host-gw"` and omit `VNI` and `Port`.{{< /note >}}
-
-1. Apply the Flannel manifest and validate
-
-    Let's apply the Flannel configuration:
-
-    ```bash
-    kubectl apply -f kube-flannel.yml
-    ```
-
-    After a few minutes, you should see all the pods as running if the Flannel pod network was deployed.
-
-    ```bash
-    kubectl get pods -n kube-system
-    ```
-
-    The output should include the Linux flannel DaemonSet as running:
-
-    ```
-    NAMESPACE     NAME                                      READY        STATUS    RESTARTS   AGE
-    ...
-    kube-system   kube-flannel-ds-54954                     1/1          Running   0          1m
-    ```
-
-1. Add Windows Flannel and kube-proxy DaemonSets
-
-    Now you can add Windows-compatible versions of Flannel and kube-proxy. In order
-    to ensure that you get a compatible version of kube-proxy, you'll need to substitute
-    the tag of the image. The following example shows usage for Kubernetes {{< param "fullversion" >}},
-    but you should adjust the version for your own deployment.
-
-    ```bash
-    curl -L https://github.com/kubernetes-sigs/sig-windows-tools/releases/latest/download/kube-proxy.yml | sed 's/VERSION/{{< param "fullversion" >}}/g' | kubectl apply -f -
-    kubectl apply -f https://github.com/kubernetes-sigs/sig-windows-tools/releases/latest/download/flannel-overlay.yml
-    ```
-    {{< note >}}
-    If you're using host-gateway use https://github.com/kubernetes-sigs/sig-windows-tools/releases/latest/download/flannel-host-gw.yml instead
-    {{< /note >}}
-
-    {{< note >}}
-If you're using a different interface rather than Ethernet (i.e. "Ethernet0 2") on the Windows nodes, you have to modify the line:
-
-```powershell
-wins cli process run --path /k/flannel/setup.exe --args "--mode=overlay --interface=Ethernet"
-```
-
-in the `flannel-host-gw.yml` or `flannel-overlay.yml` file and specify your interface accordingly.
-
-```bash
-# Example
-curl -L https://github.com/kubernetes-sigs/sig-windows-tools/releases/latest/download/flannel-overlay.yml | sed 's/Ethernet/Ethernet0 2/g' | kubectl apply -f -
-```
-    {{< /note >}}
-    
-
-
-### Joining a Windows worker node
-
-{{< note >}}
-All code snippets in Windows sections are to be run in a PowerShell environment
-with elevated permissions (Administrator) on the Windows worker node.
-{{< /note >}}
-
-{{< tabs name="tab-windows-kubeadm-runtime-installation" >}}
-{{% tab name="Docker EE" %}}
-
-#### Install Docker EE
-
-Install the `Containers` feature
-
-```powershell
-Install-WindowsFeature -Name containers
-```
-
-Install Docker
-Instructions to do so are available at [Install Docker Engine - Enterprise on Windows Servers](https://hub.docker.com/editions/enterprise/docker-ee-server-windows).
-
-#### Install wins, kubelet, and kubeadm  
-
-```PowerShell
-curl.exe -LO https://raw.githubusercontent.com/kubernetes-sigs/sig-windows-tools/master/kubeadm/scripts/PrepareNode.ps1
-.\PrepareNode.ps1 -KubernetesVersion {{< param "fullversion" >}}
-```
-
-#### Run `kubeadm` to join the node
-
-Use the command that was given to you when you ran `kubeadm init` on a control plane host.
-If you no longer have this command, or the token has expired, you can run `kubeadm token create --print-join-command`
-(on a control plane host) to generate a new token and join command.
-
-{{% /tab %}}
-{{% tab name="CRI-containerD" %}}
-
-#### Install containerD
-
-```powershell
-curl.exe -LO https://github.com/kubernetes-sigs/sig-windows-tools/releases/latest/download/Install-Containerd.ps1
-.\Install-Containerd.ps1
-```
-
-{{< note >}}
-To install a specific version of containerD specify the version with -ContainerDVersion.
-
-```powershell
-# Example
-.\Install-Containerd.ps1 -ContainerDVersion 1.4.1
-```
-
-{{< /note >}}
-
-{{< note >}}
-If you're using a different interface rather than Ethernet (i.e. "Ethernet0 2") on the Windows nodes, specify the name with `-netAdapterName`.
-
-```powershell
-# Example
-.\Install-Containerd.ps1 -netAdapterName "Ethernet0 2"
-```
-
-{{< /note >}}
-
-#### Install wins, kubelet, and kubeadm
-
-```PowerShell
-curl.exe -LO https://raw.githubusercontent.com/kubernetes-sigs/sig-windows-tools/master/kubeadm/scripts/PrepareNode.ps1
-.\PrepareNode.ps1 -KubernetesVersion {{< param "fullversion" >}} -ContainerRuntime containerD
-```
-
-#### Run `kubeadm` to join the node
-
-Use the command that was given to you when you ran `kubeadm init` on a control plane host.
-If you no longer have this command, or the token has expired, you can run `kubeadm token create --print-join-command`
-(on a control plane host) to generate a new token and join command.
-
-{{< note >}}
-If using **CRI-containerD** add `--cri-socket "npipe:////./pipe/containerd-containerd"` to the kubeadm call
-{{< /note >}}
-
-{{% /tab %}}
-{{< /tabs >}}
-
-### Verifying your installation
-
-You should now be able to view the Windows node in your cluster by running:
-
-```bash
-kubectl get nodes -o wide
-```
-
-If your new node is in the `NotReady` state it is likely because the flannel image is still downloading.
-You can check the progress as before by checking on the flannel pods in the `kube-system` namespace:
-
-```shell
-kubectl -n kube-system get pods -l app=flannel
-```
-
-Once the flannel Pod is running, your node should enter the `Ready` state and then be available to handle workloads.
-
-## {{% heading "whatsnext" %}}
-
-- [Upgrading Windows kubeadm nodes](/docs/tasks/administer-cluster/kubeadm/upgrading-windows-nodes)
diff --git a/content/en/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver.md b/content/en/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver.md
index 31a9ff0e33..1b2a2e4cbe 100644
--- a/content/en/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver.md
+++ b/content/en/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver.md
@@ -68,14 +68,12 @@ and passing it to the local node kubelet.
 
 ## Using the `cgroupfs` driver
 
-As this guide explains using the `cgroupfs` driver with kubeadm is not recommended.
-
-To continue using `cgroupfs` and to prevent `kubeadm upgrade` from modifying the
+To use `cgroupfs` and to prevent `kubeadm upgrade` from modifying the
 `KubeletConfiguration` cgroup driver on existing setups, you must be explicit
 about its value. This applies to a case where you do not wish future versions
 of kubeadm to apply the `systemd` driver by default.
 
-See the below section on "Modify the kubelet ConfigMap" for details on
+See the below section on "[Modify the kubelet ConfigMap](#modify-the-kubelet-configmap)" for details on
 how to be explicit about the value.
 
 If you wish to configure a container runtime to use the `cgroupfs` driver,
@@ -96,9 +94,7 @@ nodes before deleting the old nodes.
 
 ### Modify the kubelet ConfigMap
 
-- Find the kubelet ConfigMap name using `kubectl get cm -n kube-system | grep kubelet-config`.
-- Call `kubectl edit cm kubelet-config-x.yy -n kube-system` (replace `x.yy` with
-the Kubernetes version).
+- Call `kubectl edit cm kubelet-config -n kube-system`.
 - Either modify the existing `cgroupDriver` value or add a new field that looks like this:
 
   ```yaml
diff --git a/content/en/docs/tasks/administer-cluster/kubeadm/kubeadm-certs.md b/content/en/docs/tasks/administer-cluster/kubeadm/kubeadm-certs.md
index 3d4959b536..18032fc4b3 100644
--- a/content/en/docs/tasks/administer-cluster/kubeadm/kubeadm-certs.md
+++ b/content/en/docs/tasks/administer-cluster/kubeadm/kubeadm-certs.md
@@ -10,7 +10,9 @@ weight: 10
 
 {{< feature-state for_k8s_version="v1.15" state="stable" >}}
 
-Client certificates generated by [kubeadm](/docs/reference/setup-tools/kubeadm/) expire after 1 year. This page explains how to manage certificate renewals with kubeadm.
+Client certificates generated by [kubeadm](/docs/reference/setup-tools/kubeadm/) expire after 1 year.
+This page explains how to manage certificate renewals with kubeadm. It also covers other tasks related
+to kubeadm certificate management.
 
 ## {{% heading "prerequisites" %}}
 
@@ -126,13 +128,13 @@ command. In that case, you should explicitly set `--certificate-renewal=true`.
 
 You can renew your certificates manually at any time with the `kubeadm certs renew` command.
 
-This command performs the renewal using CA (or front-proxy-CA) certificate and key stored in `/etc/kubernetes/pki`. 
+This command performs the renewal using CA (or front-proxy-CA) certificate and key stored in `/etc/kubernetes/pki`.
 
 After running the command you should restart the control plane Pods. This is required since
 dynamic certificate reload is currently not supported for all components and certificates.
 [Static Pods](/docs/tasks/configure-pod-container/static-pod/) are managed by the local kubelet
 and not by the API Server, thus kubectl cannot be used to delete and restart them.
-To restart a static Pod you can temporarily remove its manifest file from `/etc/kubernetes/manifests/` 
+To restart a static Pod you can temporarily remove its manifest file from `/etc/kubernetes/manifests/`
 and wait for 20 seconds (see the `fileCheckFrequency` value in [KubeletConfiguration struct](/docs/reference/config-api/kubelet-config.v1beta1/).
 The kubelet will terminate the Pod if it's no longer in the manifest directory.
 You can then move the file back and after another `fileCheckFrequency` period, the kubelet will recreate
@@ -165,13 +167,13 @@ These are advanced topics for users who need to integrate their organization's c
 ### Set up a signer
 
 The Kubernetes Certificate Authority does not work out of the box.
-You can configure an external signer such as [cert-manager](https://docs.cert-manager.io/en/latest/tasks/issuers/setup-ca.html), or you can use the built-in signer.
+You can configure an external signer such as [cert-manager](https://cert-manager.io/docs/configuration/ca/), or you can use the built-in signer.
 
 The built-in signer is part of [`kube-controller-manager`](/docs/reference/command-line-tools-reference/kube-controller-manager/).
 
 To activate the built-in signer, you must pass the `--cluster-signing-cert-file` and `--cluster-signing-key-file` flags.
 
-If you're creating a new cluster, you can use a kubeadm [configuration file](https://godoc.org/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta3):
+If you're creating a new cluster, you can use a kubeadm [configuration file](https://pkg.go.dev/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta3):
 
 ```yaml
 apiVersion: kubeadm.k8s.io/v1beta3
@@ -242,7 +244,7 @@ serverTLSBootstrap: true
 ```
 
 If you have already created the cluster you must adapt it by doing the following:
- - Find and edit the `kubelet-config-{{< skew latestVersion >}}` ConfigMap in the `kube-system` namespace.
+ - Find and edit the `kubelet-config-{{< skew currentVersion >}}` ConfigMap in the `kube-system` namespace.
 In that ConfigMap, the `kubelet` key has a
 [KubeletConfiguration](/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
 document as its value. Edit the KubeletConfiguration document to set `serverTLSBootstrap: true`.
@@ -274,7 +276,7 @@ By default, these serving certificate will expire after one year. Kubeadm sets t
 `KubeletConfiguration` field `rotateCertificates` to `true`, which means that close
 to expiration a new set of CSRs for the serving certificates will be created and must
 be approved to complete the rotation. To understand more see
-[Certificate Rotation](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/#certificate-rotation).
+[Certificate Rotation](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/#certificate-rotation).
 
 If you are looking for a solution for automatic approval of these CSRs it is recommended
 that you contact your cloud provider and ask if they have a CSR signer that verifies
@@ -283,9 +285,58 @@ the node identity with an out of band mechanism.
 {{% thirdparty-content %}}
 
 Third party custom controllers can be used:
-- [kubelet-rubber-stamp](https://github.com/kontena/kubelet-rubber-stamp)
+- [kubelet-csr-approver](https://github.com/postfinance/kubelet-csr-approver)
 
 Such a controller is not a secure mechanism unless it not only verifies the CommonName
 in the CSR but also verifies the requested IPs and domain names. This would prevent
 a malicious actor that has access to a kubelet client certificate to create
 CSRs requesting serving certificates for any IP or domain name.
+
+## Generating kubeconfig files for additional users {#kubeconfig-additional-users}
+
+During cluster creation, kubeadm signs the certificate in the `admin.conf` to have
+`Subject: O = system:masters, CN = kubernetes-admin`.
+[`system:masters`](/docs/reference/access-authn-authz/rbac/#user-facing-roles)
+is a break-glass, super user group that bypasses the authorization layer (e.g. RBAC).
+Sharing the `admin.conf` with additional users is **not recommended**!
+
+Instead, you can use the [`kubeadm kubeconfig user`](/docs/reference/setup-tools/kubeadm/kubeadm-kubeconfig)
+command to generate kubeconfig files for additional users.
+The command accepts a mixture of command line flags and
+[kubeadm configuration](/docs/reference/config-api/kubeadm-config.v1beta3/) options.
+The generated kubeconfig will be written to stdout and can be piped to a file
+using `kubeadm kubeconfig user ... > somefile.conf`.
+
+Example configuration file that can be used with `--config`:
+
+```yaml
+# example.yaml
+apiVersion: kubeadm.k8s.io/v1beta3
+kind: ClusterConfiguration
+# Will be used as the target "cluster" in the kubeconfig
+clusterName: "kubernetes"
+# Will be used as the "server" (IP or DNS name) of this cluster in the kubeconfig
+controlPlaneEndpoint: "some-dns-address:6443"
+# The cluster CA key and certificate will be loaded from this local directory
+certificatesDir: "/etc/kubernetes/pki"
+```
+
+Make sure that these settings match the desired target cluster settings.
+To see the settings of an existing cluster use:
+
+```shell
+kubectl get cm kubeadm-config -n kube-system -o=jsonpath="{.data.ClusterConfiguration}"
+```
+
+The following example will generate a kubeconfig file with credentials valid for 24 hours
+for a new user `johndoe` that is part of the `appdevs` group:
+
+```shell
+kubeadm kubeconfig user --config example.yaml --org appdevs --client-name johndoe --validity-period 24h
+```
+
+The following example will generate a kubeconfig file with administrator credentials valid for 1 week:
+
+```shell
+kubeadm kubeconfig user --config example.yaml --client-name admin --validity-period 168h
+```
diff --git a/content/en/docs/tasks/administer-cluster/kubeadm/kubeadm-reconfigure.md b/content/en/docs/tasks/administer-cluster/kubeadm/kubeadm-reconfigure.md
new file mode 100644
index 0000000000..6c63600266
--- /dev/null
+++ b/content/en/docs/tasks/administer-cluster/kubeadm/kubeadm-reconfigure.md
@@ -0,0 +1,281 @@
+---
+reviewers:
+- sig-cluster-lifecycle
+title: Reconfiguring a kubeadm cluster
+content_type: task
+weight: 10
+---
+
+<!-- overview -->
+
+kubeadm does not support automated ways of reconfiguring components that
+were deployed on managed nodes. One way of automating this would be
+by using a custom [operator](/docs/concepts/extend-kubernetes/operator/).
+
+To modify the components configuration you must manually edit associated cluster
+objects and files on disk.
+
+This guide shows the correct sequence of steps that need to be performed
+to achieve kubeadm cluster reconfiguration.
+
+## {{% heading "prerequisites" %}}
+
+- You need a cluster that was deployed using kubeadm
+- Have administrator credentials (`/etc/kubernetes/admin.conf`) and network connectivity
+to a running kube-apiserver in the cluster from a host that has kubectl installed
+- Have a text editor installed on all hosts
+
+<!-- steps -->
+
+## Reconfiguring the cluster
+
+kubeadm writes a set of cluster wide component configuration options in
+ConfigMaps and other objects. These objects must be manually edited. The command `kubectl edit`
+can be used for that.
+
+The `kubectl edit` command will open a text editor where you can edit and save the object directly.
+
+You can use the environment variables `KUBECONFIG` and `KUBE_EDITOR` to specify the location of
+the kubectl consumed kubeconfig file and preferred text editor.
+
+For example:
+```
+KUBECONFIG=/etc/kubernetes/admin.conf KUBE_EDITOR=nano kubectl edit <parameters>
+```
+
+{{< note >}}
+Upon saving any changes to these cluster objects, components running on nodes may not be
+automatically updated. The steps below instruct you on how to perform that manually.
+{{< /note >}}
+
+{{< warning >}}
+Component configuration in ConfigMaps is stored as unstructured data (YAML string).
+This means that validation will not be performed upon updating the contents of a ConfigMap.
+You have to be careful to follow the documented API format for a particular
+component configuration and avoid introducing typos and YAML indentation mistakes.
+{{< /warning >}}
+
+### Applying cluster configuration changes
+
+#### Updating the `ClusterConfiguration`
+
+During cluster creation and upgrade, kubeadm writes its
+[`ClusterConfiguration`](/docs/reference/config-api/kubeadm-config.v1beta3/)
+in a ConfigMap called `kubeadm-config` in the `kube-system` namespace.
+
+To change a particular option in the `ClusterConfiguration` you can edit the ConfigMap with this command:
+
+```shell
+kubectl edit cm -n kube-system kubeadm-config
+```
+
+The configuration is located under the `data.ClusterConfiguration` key.
+
+{{< note >}}
+The `ClusterConfiguration` includes a variety of options that affect the configuration of individual
+components such as kube-apiserver, kube-scheduler, kube-controller-manager, CoreDNS, etcd and kube-proxy.
+Changes to the configuration must be reflected on node components manually.
+{{< /note >}}
+
+#### Reflecting `ClusterConfiguration` changes on control plane nodes
+
+kubeadm manages the control plane components as static Pod manifests located in
+the directory `/etc/kubernetes/manifests`.
+Any changes to the `ClusterConfiguration` under the `apiServer`, `controllerManager`, `scheduler` or `etcd`
+keys must be reflected in the associated files in the manifests directory on a control plane node.
+
+Such changes may include:
+- `extraArgs` - requires updating the list of flags passed to a component container
+- `extraMounts` - requires updated the volume mounts for a component container
+- `*SANs` - requires writing new certificates with updated Subject Alternative Names.
+
+Before proceeding with these changes, make sure you have backed up the directory `/etc/kubernetes/`.
+
+To write new certificates you can use:
+```shell
+kubeadm init phase certs <component-name> --config <config-file>
+```
+
+To write new manifest files in `/etc/kubernetes/manifests` you can use:
+
+```shell
+kubeadm init phase control-plane <component-name> --config <config-file>
+```
+
+The `<config-file>` contents must match the updated `ClusterConfiguration`.
+The `<component-name>` value must be the name of the component.
+
+{{< note >}}
+Updating a file in `/etc/kubernetes/manifests` will tell the kubelet to restart the static Pod for the corresponding component.
+Try doing these changes one node at a time to leave the cluster without downtime.
+{{< /note >}}
+
+### Applying kubelet configuration changes
+
+#### Updating the `KubeletConfiguration`
+
+During cluster creation and upgrade, kubeadm writes its
+[`KubeletConfiguration`](/docs/reference/config-api/kubelet-config.v1beta1/)
+in a ConfigMap called `kubelet-config` in the `kube-system` namespace.
+
+You can edit the ConfigMap with this command:
+
+```shell
+kubectl edit cm -n kube-system kubelet-config
+```
+
+The configuration is located under the `data.kubelet` key.
+
+#### Reflecting the kubelet changes
+
+To reflect the change on kubeadm nodes you must do the following:
+- Log in to a kubeadm node
+- Run `kubeadm upgrade node phase kubelet-config` to download the latest `kubelet-config`
+ConfigMap contents into the local file `/var/lib/kubelet/config.conf`
+- Edit the file `/var/lib/kubelet/kubeadm-flags.env` to apply additional configuration with
+flags
+- Restart the kubelet service with `systemctl restart kubelet`
+
+{{< note >}}
+Do these changes one node at a time to allow workloads to be rescheduled properly.
+{{< /note >}}
+
+{{< note >}}
+During `kubeadm upgrade`, kubeadm downloads the `KubeletConfiguration` from the
+`kubelet-config` ConfigMap and overwrite the contents of `/var/lib/kubelet/config.conf`.
+This means that node local configuration must be applied either by flags in
+`/var/lib/kubelet/kubeadm-flags.env` or by manually updating the contents of
+`/var/lib/kubelet/config.conf` after `kubeadm upgrade`, and then restarting the kubelet.
+{{< /note >}}
+
+### Applying kube-proxy configuration changes
+
+#### Updating the `KubeProxyConfiguration`
+
+During cluster creation and upgrade, kubeadm writes its
+[`KubeProxyConfiguration`](/docs/reference/config-api/kube-proxy-config.v1alpha1/)
+in a ConfigMap in the `kube-system` namespace called `kube-proxy`.
+
+This ConfigMap is used by the `kube-proxy` DaemonSet in the `kube-system` namespace.
+
+To change a particular option in the `KubeProxyConfiguration`, you can edit the ConfigMap with this command:
+
+```shell
+kubectl edit cm -n kube-system kube-proxy
+```
+
+The configuration is located under the `data.config.conf` key.
+
+#### Reflecting the kube-proxy changes
+
+Once the `kube-proxy` ConfigMap is updated, you can restart all kube-proxy Pods:
+
+Obtain the Pod names:
+
+```shell
+kubectl get po -n kube-system | grep kube-proxy
+```
+
+Delete a Pod with:
+
+```shell
+kubectl delete po -n kube-system <pod-name>
+```
+
+New Pods that use the updated ConfigMap will be created.
+
+{{< note >}}
+Because kubeadm deploys kube-proxy as a DaemonSet, node specific configuration is unsupported.
+{{< /note >}}
+
+### Applying CoreDNS configuration changes
+
+#### Updating the CoreDNS Deployment and Service
+
+kubeadm deploys CoreDNS as a Deployment called `coredns` and with a Service `kube-dns`,
+both in the `kube-system` namespace.
+
+To update any of the CoreDNS settings, you can edit the Deployment and
+Service objects:
+
+```shell
+kubectl edit deployment -n kube-system coredns
+kubectl edit service -n kube-system kube-dns
+```
+
+#### Reflecting the CoreDNS changes
+
+Once the CoreDNS changes are applied you can delete the CoreDNS Pods:
+
+Obtain the Pod names:
+
+```shell
+kubectl get po -n kube-system | grep coredns
+```
+
+Delete a Pod with:
+
+```shell
+kubectl delete po -n kube-system <pod-name>
+```
+
+New Pods with the updated CoreDNS configuration will be created.
+
+{{< note >}}
+kubeadm does not allow CoreDNS configuration during cluster creation and upgrade.
+This means that if you execute `kubeadm upgrade apply`, your changes to the CoreDNS
+objects will be lost and must be reapplied.
+{{< /note >}}
+
+## Persisting the reconfiguration
+
+During the execution of `kubeadm upgrade` on a managed node, kubeadm might overwrite configuration
+that was applied after the cluster was created (reconfiguration).
+
+### Persisting Node object reconfiguration
+
+kubeadm writes Labels, Taints, CRI socket and other information on the Node object for a particular
+Kubernetes node. To change any of the contents of this Node object you can use:
+
+```shell
+kubectl edit no <node-name>
+```
+
+During `kubeadm upgrade` the contents of such a Node might get overwritten.
+If you would like to persist your modifications to the Node object after upgrade,
+you can prepare a [kubectl patch](/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/)
+and apply it to the Node object:
+
+```shell
+kubectl patch no <node-name> --patch-file <patch-file>
+```
+
+#### Persisting control plane component reconfiguration
+
+The main source of control plane configuration is the `ClusterConfiguration`
+object stored in the cluster. To extend the static Pod manifests configuration,
+[patches](/docs/setup/production-environment/tools/kubeadm/control-plane-flags/#patches) can be used.
+
+These patch files must remain as files on the control plane nodes to ensure that
+they can be used by the `kubeadm upgrade ... --patches <directory>`.
+
+If reconfiguration is done to the `ClusterConfiguration` and static Pod manifests on disk,
+the set of node specific patches must be updated accordingly.
+
+#### Persisting kubelet reconfiguration
+
+Any changes to the `KubeletConfiguration` stored in `/var/lib/kubelet/config.conf` will be overwritten on
+`kubeadm upgrade` by downloading the contents of the cluster wide `kubelet-config` ConfigMap.
+To persist kubelet node specific configuration either the file `/var/lib/kubelet/config.conf`
+has to be updated manually post-upgrade or the file `/var/lib/kubelet/kubeadm-flags.env` can include flags.
+The kubelet flags override the associated `KubeletConfiguration` options, but note that
+some of the flags are deprecated.
+
+A kubelet restart will be required after changing `/var/lib/kubelet/config.conf` or
+`/var/lib/kubelet/kubeadm-flags.env`.
+
+{{% heading "whatsnext" %}}
+
+- [Upgrading kubeadm clusters](/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade)
+- [Customizing components with the kubeadm API](/docs/setup/production-environment/tools/kubeadm/control-plane-flags)
+- [Certificate management with kubeadm](/docs/tasks/administer-cluster/kubeadm/kubeadm-certs)
diff --git a/content/en/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade.md b/content/en/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade.md
index da07ed672e..1601c83160 100644
--- a/content/en/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade.md
+++ b/content/en/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade.md
@@ -9,17 +9,17 @@ weight: 20
 <!-- overview -->
 
 This page explains how to upgrade a Kubernetes cluster created with kubeadm from version
-{{< skew latestVersionAddMinor -1 >}}.x to version {{< skew latestVersion >}}.x, and from version
-{{< skew latestVersion >}}.x to {{< skew latestVersion >}}.y (where `y > x`). Skipping MINOR versions
-when upgrading is unsupported.
+{{< skew currentVersionAddMinor -1 >}}.x to version {{< skew currentVersion >}}.x, and from version
+{{< skew currentVersion >}}.x to {{< skew currentVersion >}}.y (where `y > x`). Skipping MINOR versions
+when upgrading is unsupported. For more details, please visit [Version Skew Policy](/releases/version-skew-policy/).
 
 To see information about upgrading clusters created using older versions of kubeadm,
 please refer to following pages instead:
 
-- [Upgrading a kubeadm cluster from {{< skew latestVersionAddMinor -2 >}} to {{< skew latestVersionAddMinor -1 >}}](https://v{{< skew latestVersionAddMinor -1 "-" >}}.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
-- [Upgrading a kubeadm cluster from {{< skew latestVersionAddMinor -3 >}} to {{< skew latestVersionAddMinor -2 >}}](https://v{{< skew latestVersionAddMinor -2 "-" >}}.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
-- [Upgrading a kubeadm cluster from {{< skew latestVersionAddMinor -4 >}} to {{< skew latestVersionAddMinor -3 >}}](https://v{{< skew latestVersionAddMinor -3 "-" >}}.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
-- [Upgrading a kubeadm cluster from {{< skew latestVersionAddMinor -5 >}} to {{< skew latestVersionAddMinor -4 >}}](https://v{{< skew latestVersionAddMinor -4 "-" >}}.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
+- [Upgrading a kubeadm cluster from {{< skew currentVersionAddMinor -2 >}} to {{< skew currentVersionAddMinor -1 >}}](https://v{{< skew currentVersionAddMinor -1 "-" >}}.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
+- [Upgrading a kubeadm cluster from {{< skew currentVersionAddMinor -3 >}} to {{< skew currentVersionAddMinor -2 >}}](https://v{{< skew currentVersionAddMinor -2 "-" >}}.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
+- [Upgrading a kubeadm cluster from {{< skew currentVersionAddMinor -4 >}} to {{< skew currentVersionAddMinor -3 >}}](https://v{{< skew currentVersionAddMinor -3 "-" >}}.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
+- [Upgrading a kubeadm cluster from {{< skew currentVersionAddMinor -5 >}} to {{< skew currentVersionAddMinor -4 >}}](https://v{{< skew currentVersionAddMinor -4 "-" >}}.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
 
 The upgrade workflow at high level is the following:
 
@@ -29,7 +29,7 @@ The upgrade workflow at high level is the following:
 
 ## {{% heading "prerequisites" %}}
 
-- Make sure you read the [release notes]({{< latest-release-notes >}}) carefully.
+- Make sure you read the [release notes](https://git.k8s.io/kubernetes/CHANGELOG) carefully.
 - The cluster should use a static control plane and etcd pods or external etcd.
 - Make sure to back up any important components, such as app-level state stored in a database.
   `kubeadm upgrade` does not touch your workloads, only components internal to Kubernetes, but backups are always a best practice.
@@ -37,27 +37,36 @@ The upgrade workflow at high level is the following:
 
 ### Additional information
 
-- [Draining nodes](/docs/tasks/administer-cluster/safely-drain-node/) before kubelet MINOR version
-  upgrades is required. In the case of control plane nodes, they could be running CoreDNS Pods or other critical workloads.
+- The instructions below outline when to drain each node during the upgrade process.
+If you are performing a **minor** version upgrade for any kubelet, you **must**
+first drain the node (or nodes) that you are upgrading. In the case of control plane nodes,
+they could be running CoreDNS Pods or other critical workloads. For more information see
+[Draining nodes](/docs/tasks/administer-cluster/safely-drain-node/).
 - All containers are restarted after upgrade, because the container spec hash value is changed.
+- To verify that the kubelet service has successfully restarted after the kubelet has been upgraded,
+you can execute `systemctl status kubelet`  or view the service logs with `journalctl -xeu kubelet`.
+- Usage of the `--config` flag of `kubeadm upgrade` with
+[kubeadm configuration API types](/docs/reference/config-api/kubeadm-config.v1beta3)
+with the purpose of reconfiguring the cluster is not recommended and can have unexpected results. Follow the steps in
+[Reconfiguring a kubeadm cluster](/docs/tasks/administer-cluster/kubeadm/kubeadm-reconfigure) instead.
 
 <!-- steps -->
 
 ## Determine which version to upgrade to
 
-Find the latest stable {{< skew latestVersion >}} version using the OS package manager:
+Find the latest patch release for Kubernetes {{< skew currentVersion >}} using the OS package manager:
 
 {{< tabs name="k8s_install_versions" >}}
 {{% tab name="Ubuntu, Debian or HypriotOS" %}}
     apt update
     apt-cache madison kubeadm
-    # find the latest {{< skew latestVersion >}} version in the list
-    # it should look like {{< skew latestVersion >}}.x-00, where x is the latest patch
+    # find the latest {{< skew currentVersion >}} version in the list
+    # it should look like {{< skew currentVersion >}}.x-00, where x is the latest patch
 {{% /tab %}}
 {{% tab name="CentOS, RHEL or Fedora" %}}
     yum list --showduplicates kubeadm --disableexcludes=kubernetes
-    # find the latest {{< skew latestVersion >}} version in the list
-    # it should look like {{< skew latestVersion >}}.x-0, where x is the latest patch
+    # find the latest {{< skew currentVersion >}} version in the list
+    # it should look like {{< skew currentVersion >}}.x-0, where x is the latest patch
 {{% /tab %}}
 {{< /tabs >}}
 
@@ -70,86 +79,87 @@ Pick a control plane node that you wish to upgrade first. It must have the `/etc
 
 **For the first control plane node**
 
--  Upgrade kubeadm:
+- Upgrade kubeadm:
 
-{{< tabs name="k8s_install_kubeadm_first_cp" >}}
-{{% tab name="Ubuntu, Debian or HypriotOS" %}}
-    # replace x in {{< skew latestVersion >}}.x-00 with the latest patch version
-    apt-mark unhold kubeadm && \
-    apt-get update && apt-get install -y kubeadm={{< skew latestVersion >}}.x-00 && \
-    apt-mark hold kubeadm
-    -
-    # since apt-get version 1.1 you can also use the following method
-    apt-get update && \
-    apt-get install -y --allow-change-held-packages kubeadm={{< skew latestVersion >}}.x-00
-{{% /tab %}}
-{{% tab name="CentOS, RHEL or Fedora" %}}
-    # replace x in {{< skew latestVersion >}}.x-0 with the latest patch version
-    yum install -y kubeadm-{{< skew latestVersion >}}.x-0 --disableexcludes=kubernetes
-{{% /tab %}}
-{{< /tabs >}}
+  {{< tabs name="k8s_install_kubeadm_first_cp" >}}
+  {{% tab name="Ubuntu, Debian or HypriotOS" %}}
+  ```shell
+   # replace x in {{< skew currentVersion >}}.x-00 with the latest patch version
+   apt-mark unhold kubeadm && \
+   apt-get update && apt-get install -y kubeadm={{< skew currentVersion >}}.x-00 && \
+   apt-mark hold kubeadm
+   ```
+  {{% /tab %}}
+  {{% tab name="CentOS, RHEL or Fedora" %}}
+  ```shell
+  # replace x in {{< skew currentVersion >}}.x-0 with the latest patch version
+  yum install -y kubeadm-{{< skew currentVersion >}}.x-0 --disableexcludes=kubernetes
+  ```
+  {{% /tab %}}
+  {{< /tabs >}}
+  <br />
 
--  Verify that the download works and has the expected version:
+- Verify that the download works and has the expected version:
 
-    ```shell
-    kubeadm version
-    ```
+  ```shell
+  kubeadm version
+  ```
 
--   Verify the upgrade plan:
+- Verify the upgrade plan:
 
-    ```shell
-    kubeadm upgrade plan
-    ```
+  ```shell
+  kubeadm upgrade plan
+  ```
 
-    This command checks that your cluster can be upgraded, and fetches the versions you can upgrade to.
-    It also shows a table with the component config version states.
+  This command checks that your cluster can be upgraded, and fetches the versions you can upgrade to.
+  It also shows a table with the component config version states.
 
-{{< note >}}
-`kubeadm upgrade` also automatically renews the certificates that it manages on this node.
-To opt-out of certificate renewal the flag `--certificate-renewal=false` can be used.
-For more information see the [certificate management guide](/docs/tasks/administer-cluster/kubeadm/kubeadm-certs).
-{{</ note >}}
+  {{< note >}}
+  `kubeadm upgrade` also automatically renews the certificates that it manages on this node.
+  To opt-out of certificate renewal the flag `--certificate-renewal=false` can be used.
+  For more information see the [certificate management guide](/docs/tasks/administer-cluster/kubeadm/kubeadm-certs).
+  {{</ note >}}
+  
+  {{< note >}}
+  If `kubeadm upgrade plan` shows any component configs that require manual upgrade, users must provide
+  a config file with replacement configs to `kubeadm upgrade apply` via the `--config` command line flag.
+  Failing to do so will cause `kubeadm upgrade apply` to exit with an error and not perform an upgrade.
+  {{</ note >}}
 
-{{< note >}}
-If `kubeadm upgrade plan` shows any component configs that require manual upgrade, users must provide
-a config file with replacement configs to `kubeadm upgrade apply` via the `--config` command line flag.
-Failing to do so will cause `kubeadm upgrade apply` to exit with an error and not perform an upgrade.
-{{</ note >}}
+- Choose a version to upgrade to, and run the appropriate command. For example:
 
--  Choose a version to upgrade to, and run the appropriate command. For example:
+  ```shell
+  # replace x with the patch version you picked for this upgrade
+  sudo kubeadm upgrade apply v{{< skew currentVersion >}}.x
+  ```
 
-    ```shell
-    # replace x with the patch version you picked for this upgrade
-    sudo kubeadm upgrade apply v{{< skew latestVersion >}}.x
-    ```
+  Once the command finishes you should see:
 
-    Once the command finishes you should see:
+  ```
+  [upgrade/successful] SUCCESS! Your cluster was upgraded to "v{{< skew currentVersion >}}.x". Enjoy!
 
-    ```
-    [upgrade/successful] SUCCESS! Your cluster was upgraded to "v{{< skew latestVersion >}}.x". Enjoy!
+  [upgrade/kubelet] Now that your control plane is upgraded, please proceed with upgrading your kubelets if you haven't already done so.
+  ```
 
-    [upgrade/kubelet] Now that your control plane is upgraded, please proceed with upgrading your kubelets if you haven't already done so.
-    ```
+- Manually upgrade your CNI provider plugin.
 
--  Manually upgrade your CNI provider plugin.
+  Your Container Network Interface (CNI) provider may have its own upgrade instructions to follow.
+  Check the [addons](/docs/concepts/cluster-administration/addons/) page to
+  find your CNI provider and see whether additional upgrade steps are required.
 
-    Your Container Network Interface (CNI) provider may have its own upgrade instructions to follow.
-    Check the [addons](/docs/concepts/cluster-administration/addons/) page to
-    find your CNI provider and see whether additional upgrade steps are required.
-
-    This step is not required on additional control plane nodes if the CNI provider runs as a DaemonSet.
+  This step is not required on additional control plane nodes if the CNI provider runs as a DaemonSet.
 
 **For the other control plane nodes**
 
 Same as the first control plane node but use:
 
-```
+```shell
 sudo kubeadm upgrade node
 ```
 
 instead of:
 
-```
+```shell
 sudo kubeadm upgrade apply
 ```
 
@@ -157,53 +167,50 @@ Also calling `kubeadm upgrade plan` and upgrading the CNI provider plugin is no
 
 ### Drain the node
 
--  Prepare the node for maintenance by marking it unschedulable and evicting the workloads:
+- Prepare the node for maintenance by marking it unschedulable and evicting the workloads:
 
-    ```shell
-    # replace <node-to-drain> with the name of your node you are draining
-    kubectl drain <node-to-drain> --ignore-daemonsets
-    ```
+  ```shell
+  # replace <node-to-drain> with the name of your node you are draining
+  kubectl drain <node-to-drain> --ignore-daemonsets
+  ```
 
 ### Upgrade kubelet and kubectl
 
--  Upgrade the kubelet and kubectl
+- Upgrade the kubelet and kubectl:
 
-{{< tabs name="k8s_install_kubelet" >}}
-{{< tab name="Ubuntu, Debian or HypriotOS" >}}
-    <pre>
-    # replace x in {{< skew latestVersion >}}.x-00 with the latest patch version
-    apt-mark unhold kubelet kubectl && \
-    apt-get update && apt-get install -y kubelet={{< skew latestVersion >}}.x-00 kubectl={{< skew latestVersion >}}.x-00 && \
-    apt-mark hold kubelet kubectl
-    -
-    # since apt-get version 1.1 you can also use the following method
-    apt-get update && \
-    apt-get install -y --allow-change-held-packages kubelet={{< skew latestVersion >}}.x-00 kubectl={{< skew latestVersion >}}.x-00
-    </pre>
-{{< /tab >}}
-{{< tab name="CentOS, RHEL or Fedora" >}}
-    <pre>
-    # replace x in {{< skew latestVersion >}}.x-0 with the latest patch version
-    yum install -y kubelet-{{< skew latestVersion >}}.x-0 kubectl-{{< skew latestVersion >}}.x-0 --disableexcludes=kubernetes
-    </pre>
-{{< /tab >}}
-{{< /tabs >}}
+  {{< tabs name="k8s_install_kubelet" >}}
+  {{% tab name="Ubuntu, Debian or HypriotOS" %}}
+  ```shell
+  # replace x in {{< skew currentVersion >}}.x-00 with the latest patch version
+  apt-mark unhold kubelet kubectl && \
+  apt-get update && apt-get install -y kubelet={{< skew currentVersion >}}.x-00 kubectl={{< skew currentVersion >}}.x-00 && \
+  apt-mark hold kubelet kubectl
+  ```
+  {{% /tab %}}
+  {{% tab name="CentOS, RHEL or Fedora" %}}
+  ```shell
+  # replace x in {{< skew currentVersion >}}.x-0 with the latest patch version
+  yum install -y kubelet-{{< skew currentVersion >}}.x-0 kubectl-{{< skew currentVersion >}}.x-0 --disableexcludes=kubernetes
+  ```
+  {{% /tab %}}
+  {{< /tabs >}}
+  <br />
 
--  Restart the kubelet:
+- Restart the kubelet:
 
-    ```shell
-    sudo systemctl daemon-reload
-    sudo systemctl restart kubelet
-    ```
+  ```shell
+  sudo systemctl daemon-reload
+  sudo systemctl restart kubelet
+  ```
 
 ### Uncordon the node
 
--   Bring the node back online by marking it schedulable:
+- Bring the node back online by marking it schedulable:
 
-    ```shell
-    # replace <node-to-drain> with the name of your node
-    kubectl uncordon <node-to-drain>
-    ```
+  ```shell
+  # replace <node-to-drain> with the name of your node
+  kubectl uncordon <node-to-drain>
+  ```
 
 ## Upgrade worker nodes
 
@@ -212,83 +219,84 @@ without compromising the minimum required capacity for running your workloads.
 
 ### Upgrade kubeadm
 
--  Upgrade kubeadm:
+- Upgrade kubeadm:
 
-{{< tabs name="k8s_install_kubeadm_worker_nodes" >}}
-{{% tab name="Ubuntu, Debian or HypriotOS" %}}
-    # replace x in {{< skew latestVersion >}}.x-00 with the latest patch version
-    apt-mark unhold kubeadm && \
-    apt-get update && apt-get install -y kubeadm={{< skew latestVersion >}}.x-00 && \
-    apt-mark hold kubeadm
-    -
-    # since apt-get version 1.1 you can also use the following method
-    apt-get update && \
-    apt-get install -y --allow-change-held-packages kubeadm={{< skew latestVersion >}}.x-00
-{{% /tab %}}
-{{% tab name="CentOS, RHEL or Fedora" %}}
-    # replace x in {{< skew latestVersion >}}.x-0 with the latest patch version
-    yum install -y kubeadm-{{< skew latestVersion >}}.x-0 --disableexcludes=kubernetes
-{{% /tab %}}
-{{< /tabs >}}
+  {{< tabs name="k8s_install_kubeadm_worker_nodes" >}}
+  {{% tab name="Ubuntu, Debian or HypriotOS" %}}
+  ```shell
+  # replace x in {{< skew currentVersion >}}.x-00 with the latest patch version
+  apt-mark unhold kubeadm && \
+  apt-get update && apt-get install -y kubeadm={{< skew currentVersion >}}.x-00 && \
+  apt-mark hold kubeadm
+  ```
+  {{% /tab %}}
+  {{% tab name="CentOS, RHEL or Fedora" %}}
+  ```shell
+  # replace x in {{< skew currentVersion >}}.x-0 with the latest patch version
+  yum install -y kubeadm-{{< skew currentVersion >}}.x-0 --disableexcludes=kubernetes
+  ```
+  {{% /tab %}}
+  {{< /tabs >}}
 
 ### Call "kubeadm upgrade"
 
--  For worker nodes this upgrades the local kubelet configuration:
+- For worker nodes this upgrades the local kubelet configuration:
 
-    ```shell
-    sudo kubeadm upgrade node
-    ```
+  ```shell
+  sudo kubeadm upgrade node
+  ```
 
 ### Drain the node
 
--  Prepare the node for maintenance by marking it unschedulable and evicting the workloads:
+- Prepare the node for maintenance by marking it unschedulable and evicting the workloads:
 
-    ```shell
-    # replace <node-to-drain> with the name of your node you are draining
-    kubectl drain <node-to-drain> --ignore-daemonsets
-    ```
+  ```shell
+  # replace <node-to-drain> with the name of your node you are draining
+  kubectl drain <node-to-drain> --ignore-daemonsets
+  ```
 
 ### Upgrade kubelet and kubectl
 
--  Upgrade the kubelet and kubectl:
+- Upgrade the kubelet and kubectl:
 
-{{< tabs name="k8s_kubelet_and_kubectl" >}}
-{{% tab name="Ubuntu, Debian or HypriotOS" %}}
-    # replace x in {{< skew latestVersion >}}.x-00 with the latest patch version
-    apt-mark unhold kubelet kubectl && \
-    apt-get update && apt-get install -y kubelet={{< skew latestVersion >}}.x-00 kubectl={{< skew latestVersion >}}.x-00 && \
-    apt-mark hold kubelet kubectl
-    -
-    # since apt-get version 1.1 you can also use the following method
-    apt-get update && \
-    apt-get install -y --allow-change-held-packages kubelet={{< skew latestVersion >}}.x-00 kubectl={{< skew latestVersion >}}.x-00
-{{% /tab %}}
-{{% tab name="CentOS, RHEL or Fedora" %}}
-    # replace x in {{< skew latestVersion >}}.x-0 with the latest patch version
-    yum install -y kubelet-{{< skew latestVersion >}}.x-0 kubectl-{{< skew latestVersion >}}.x-0 --disableexcludes=kubernetes
-{{% /tab %}}
-{{< /tabs >}}
+  {{< tabs name="k8s_kubelet_and_kubectl" >}}
+  {{% tab name="Ubuntu, Debian or HypriotOS" %}}
+  ```shell
+  # replace x in {{< skew currentVersion >}}.x-00 with the latest patch version
+  apt-mark unhold kubelet kubectl && \
+  apt-get update && apt-get install -y kubelet={{< skew currentVersion >}}.x-00 kubectl={{< skew currentVersion >}}.x-00 && \
+  apt-mark hold kubelet kubectl
+  ```
+  {{% /tab %}}
+  {{% tab name="CentOS, RHEL or Fedora" %}}
+  ```shell
+  # replace x in {{< skew currentVersion >}}.x-0 with the latest patch version
+  yum install -y kubelet-{{< skew currentVersion >}}.x-0 kubectl-{{< skew currentVersion >}}.x-0 --disableexcludes=kubernetes
+  ```
+  {{% /tab %}}
+  {{< /tabs >}}
+  <br />
 
--  Restart the kubelet:
+- Restart the kubelet:
 
-    ```shell
-    sudo systemctl daemon-reload
-    sudo systemctl restart kubelet
-    ```
+  ```shell
+  sudo systemctl daemon-reload
+  sudo systemctl restart kubelet
+  ```
 
 ### Uncordon the node
 
--   Bring the node back online by marking it schedulable:
+- Bring the node back online by marking it schedulable:
 
-    ```shell
-    # replace <node-to-drain> with the name of your node
-    kubectl uncordon <node-to-drain>
-    ```
+  ```shell
+  # replace <node-to-drain> with the name of your node
+  kubectl uncordon <node-to-drain>
+  ```
 
 ## Verify the status of the cluster
 
-After the kubelet is upgraded on all nodes verify that all nodes are available again by running the following command
-from anywhere kubectl can access the cluster:
+After the kubelet is upgraded on all nodes verify that all nodes are available again by running
+the following command from anywhere kubectl can access the cluster:
 
 ```shell
 kubectl get nodes
@@ -304,6 +312,7 @@ This command is idempotent and eventually makes sure that the actual state is th
 To recover from a bad state, you can also run `kubeadm upgrade apply --force` without changing the version that your cluster is running.
 
 During upgrade kubeadm writes the following backup folders under `/etc/kubernetes/tmp`:
+
 - `kubeadm-backup-etcd-<date>-<time>`
 - `kubeadm-backup-manifests-<date>-<time>`
 
@@ -342,3 +351,4 @@ and post-upgrade manifest file for a certain component, a backup file for it wil
 
 - Fetches the kubeadm `ClusterConfiguration` from the cluster.
 - Upgrades the kubelet configuration for this node.
+
diff --git a/content/en/docs/tasks/administer-cluster/kubeadm/upgrading-windows-nodes.md b/content/en/docs/tasks/administer-cluster/kubeadm/upgrading-windows-nodes.md
index 35857d09a0..a581cc16d3 100644
--- a/content/en/docs/tasks/administer-cluster/kubeadm/upgrading-windows-nodes.md
+++ b/content/en/docs/tasks/administer-cluster/kubeadm/upgrading-windows-nodes.md
@@ -34,7 +34,7 @@ upgrade the control plane nodes before upgrading your Windows nodes.
 
     ```powershell
     # replace {{< param "fullversion" >}} with your desired version
-    curl.exe -Lo C:\k\kubeadm.exe https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kubeadm.exe
+    curl.exe -Lo <path-to-kubeadm.exe>  https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kubeadm.exe
     ```
 
 ### Drain the node
@@ -62,16 +62,28 @@ upgrade the control plane nodes before upgrading your Windows nodes.
     kubeadm upgrade node
     ```
 
-### Upgrade kubelet
+### Upgrade kubelet and kube-proxy
 
 1.  From the Windows node, upgrade and restart the kubelet:
 
     ```powershell
     stop-service kubelet
-    curl.exe -Lo C:\k\kubelet.exe https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kubelet.exe
+    curl.exe -Lo <path-to-kubelet.exe> https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kubelet.exe
     restart-service kubelet
     ```
 
+2. From the Windows node, upgrade and restart the kube-proxy.
+
+    ```powershell
+    stop-service kube-proxy
+    curl.exe -Lo <path-to-kube-proxy.exe> https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kube-proxy.exe
+    restart-service kube-proxy
+    ```
+
+{{< note >}}
+If you are running kube-proxy in a HostProcess container within a Pod, and not as a Windows Service, you can upgrade kube-proxy by applying a newer version of your kube-proxy manifests.
+{{< /note >}}
+
 ### Uncordon the node
 
 1.  From a machine with access to the Kubernetes API,
@@ -81,14 +93,7 @@ bring the node back online by marking it schedulable:
     # replace <node-to-drain> with the name of your node
     kubectl uncordon <node-to-drain>
     ```
-### Upgrade kube-proxy
-
-1. From a machine with access to the Kubernetes API, run the following,
-again replacing {{< param "fullversion" >}} with your desired version:
-
-    ```shell
-    curl -L https://github.com/kubernetes-sigs/sig-windows-tools/releases/latest/download/kube-proxy.yml | sed 's/VERSION/{{< param "fullversion" >}}/g' | kubectl apply -f -
-    ```
+
 
 
 
diff --git a/content/en/docs/tasks/administer-cluster/kubelet-config-file.md b/content/en/docs/tasks/administer-cluster/kubelet-config-file.md
index 668f4532a5..2ed522628d 100644
--- a/content/en/docs/tasks/administer-cluster/kubelet-config-file.md
+++ b/content/en/docs/tasks/administer-cluster/kubelet-config-file.md
@@ -27,12 +27,12 @@ The configuration file must be a JSON or YAML representation of the parameters
 in this struct. Make sure the Kubelet has read permissions on the file.
 
 Here is an example of what this file might look like:
-```
+```yaml
 apiVersion: kubelet.config.k8s.io/v1beta1
 kind: KubeletConfiguration
-address: "192.168.0.8",
-port: 20250,
-serializeImagePulls: false,
+address: "192.168.0.8"
+port: 20250
+serializeImagePulls: false
 evictionHard:
     memory.available:  "200Mi"
 ```
diff --git a/content/en/docs/tasks/administer-cluster/kubelet-in-userns.md b/content/en/docs/tasks/administer-cluster/kubelet-in-userns.md
index 7b90c5cfd1..90e4a11f63 100644
--- a/content/en/docs/tasks/administer-cluster/kubelet-in-userns.md
+++ b/content/en/docs/tasks/administer-cluster/kubelet-in-userns.md
@@ -14,7 +14,7 @@ without root privileges, by using a {{< glossary_tooltip text="user namespace" t
 This technique is also known as _rootless mode_.
 
 {{< note >}}
-This document describes how to run Kubernetes Node components (and hence pods) a non-root user.
+This document describes how to run Kubernetes Node components (and hence pods) as a non-root user.
 
 If you are just looking for how to run a pod as a non-root user, see [SecurityContext](/docs/tasks/configure-pod-container/security-context/).
 {{< /note >}}
@@ -27,21 +27,44 @@ If you are just looking for how to run a pod as a non-root user, see [SecurityCo
 * [Enable systemd with user session](https://rootlesscontaine.rs/getting-started/common/login/)
 * [Configure several sysctl values, depending on host Linux distribution](https://rootlesscontaine.rs/getting-started/common/sysctl/)
 * [Ensure that your unprivileged user is listed in `/etc/subuid` and `/etc/subgid`](https://rootlesscontaine.rs/getting-started/common/subuid/)
-
-* `KubeletInUserNamespace` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+* Enable the `KubeletInUserNamespace` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
 
 <!-- steps -->
 
 ## Running Kubernetes inside Rootless Docker/Podman
 
-[kind](https://kind.sigs.k8s.io/) supports running Kubernetes inside a Rootless Docker or Rootless Podman.
+### kind
+
+[kind](https://kind.sigs.k8s.io/) supports running Kubernetes inside Rootless Docker or Rootless Podman.
 
 See [Running kind with Rootless Docker](https://kind.sigs.k8s.io/docs/user/rootless/).
 
-<!--
-[minikube](https://minikube.sigs.k8s.io/docs/) also plans to support Rootless Docker/Podman drivers.
-See [minikube issue #10836](https://github.com/kubernetes/minikube/issues/10836) to track the progress.
--->
+### minikube
+
+[minikube](https://minikube.sigs.k8s.io/) also supports running Kubernetes inside Rootless Docker or Rootless Podman.
+
+See the Minikube documentation:
+
+* [Rootless Docker](https://minikube.sigs.k8s.io/docs/drivers/docker/)
+* [Rootless Podman](https://minikube.sigs.k8s.io/docs/drivers/podman/)
+
+## Running Kubernetes inside Unprivileged Containers
+
+{{% thirdparty-content %}}
+
+### sysbox
+
+[Sysbox](https://github.com/nestybox/sysbox) is an open-source container runtime
+(similar to "runc") that supports running system-level workloads such as Docker
+and Kubernetes inside unprivileged containers isolated with the Linux user
+namespace.
+
+See [Sysbox Quick Start Guide: Kubernetes-in-Docker](https://github.com/nestybox/sysbox/blob/master/docs/quickstart/kind.md) for more info.
+
+Sysbox supports running Kubernetes inside unprivileged containers without
+requiring Cgroup v2 and without the `KubeletInUserNamespace` feature gate. It
+does this by exposing specially crafted `/proc` and `/sys` filesystems inside
+the container plus several other advanced OS virtualization techniques.
 
 ## Running Rootless Kubernetes directly on a host
 
@@ -79,9 +102,10 @@ Rootless Docker/Podman or LXC/LXD, you are all set, and you can go to the next s
 Otherwise you have to create a user namespace by yourself, by calling `unshare(2)` with `CLONE_NEWUSER`.
 
 A user namespace can be also unshared by using command line tools such as:
+
+- [`unshare(1)`](https://man7.org/linux/man-pages/man1/unshare.1.html)
 - [RootlessKit](https://github.com/rootless-containers/rootlesskit)
 - [become-root](https://github.com/giuseppe/become-root)
-- [`unshare(1)`](https://man7.org/linux/man-pages/man1/unshare.1.html)
 
 After unsharing the user namespace, you will also have to unshare other namespaces such as mount namespace.
 
@@ -116,29 +140,37 @@ On your node, systemd must already be configured to allow delegation; for more d
 Containers documentation.
 
 ### Configuring network
+
 {{% thirdparty-content %}}
 
 The network namespace of the Node components has to have a non-loopback interface, which can be for example configured with
-slirp4netns, VPNKit, or lxc-user-nic.
+[slirp4netns](https://github.com/rootless-containers/slirp4netns),
+[VPNKit](https://github.com/moby/vpnkit), or
+[lxc-user-nic(1)](https://www.man7.org/linux/man-pages/man1/lxc-user-nic.1.html).
 
 The network namespaces of the Pods can be configured with regular CNI plugins.
 For multi-node networking, Flannel (VXLAN, 8472/UDP) is known to work.
 
 Ports such as the kubelet port (10250/TCP) and `NodePort` service ports have to be exposed from the Node network namespace to
-the host with an external port forwarder, such as RootlessKit, slirp4netns, or socat.
+the host with an external port forwarder, such as RootlessKit, slirp4netns, or
+[socat(1)](https://linux.die.net/man/1/socat).
 
-You can use the port forwarder from K3s; see https://github.com/k3s-io/k3s/blob/v1.21.2+k3s1/pkg/rootlessports/controller.go
+You can use the port forwarder from K3s.
+See [Running K3s in Rootless Mode](https://rancher.com/docs/k3s/latest/en/advanced/#known-issues-with-rootless-mode)
+for more details.
+The implementation can be found in [the `pkg/rootlessports` package](https://github.com/k3s-io/k3s/blob/v1.22.3+k3s1/pkg/rootlessports/controller.go) of k3s.
 
 ### Configuring CRI
 
-The kubelet relies on a container runtime. You should deploy a container runtime such as containerd or CRI-O and ensure that it is running within the user namespace before the kubelet starts.
+The kubelet relies on a container runtime. You should deploy a container runtime such as
+containerd or CRI-O and ensure that it is running within the user namespace before the kubelet starts.
 
 {{< tabs name="cri" >}}
 {{% tab name="containerd" %}}
 
 Running CRI plugin of containerd in a user namespace is supported since containerd 1.4.
 
-Running containerd within a user namespace requires the following configuration:
+Running containerd within a user namespace requires the following configurations.
 
 ```toml
 version = 2
@@ -161,6 +193,9 @@ version = 2
   SystemdCgroup = false
 ```
 
+The default path of the configuration file is `/etc/containerd/config.toml`.
+The path can be specified with `containerd -c /path/to/containerd/config.toml`.
+
 {{% /tab %}}
 {{% tab name="CRI-O" %}}
 
@@ -168,7 +203,7 @@ Running CRI-O in a user namespace is supported since CRI-O 1.22.
 
 CRI-O requires an environment variable `_CRIO_ROOTLESS=1` to be set.
 
-The following configuration is also recommended:
+The following configurations are also recommended:
 
 ```toml
 [crio]
@@ -182,6 +217,8 @@ The following configuration is also recommended:
   cgroup_manager = "cgroupfs"
 ```
 
+The default path of the configuration file is `/etc/crio/crio.conf`.
+The path can be specified with `crio --config /path/to/crio/crio.conf`.
 {{% /tab %}}
 {{< /tabs >}}
 
@@ -190,8 +227,8 @@ The following configuration is also recommended:
 Running kubelet in a user namespace requires the following configuration:
 
 ```yaml
-kind: KubeletConfiguration
 apiVersion: kubelet.config.k8s.io/v1beta1
+kind: KubeletConfiguration
 featureGates:
   KubeletInUserNamespace: true
 # We use cgroupfs that is delegated by systemd, so we do not use "systemd" driver
@@ -199,22 +236,23 @@ featureGates:
 cgroupDriver: "cgroupfs"
 ```
 
-When the `KubeletInUserNamespace` feature gate is enabled, kubelet ignores errors that may happen during setting the following sysctl values:
+When the `KubeletInUserNamespace` feature gate is enabled, the kubelet ignores errors
+that may happen during setting the following sysctl values on the node.
+
 - `vm.overcommit_memory`
 - `vm.panic_on_oom`
 - `kernel.panic`
 - `kernel.panic_on_oops`
 - `kernel.keys.root_maxkeys`
 - `kernel.keys.root_maxbytes`.
-   (these are sysctl values for the host, not for the containers).
 
 Within a user namespace, the kubelet also ignores any error raised from trying to open `/dev/kmsg`.
 This feature gate also allows kube-proxy to ignore an error during setting `RLIMIT_NOFILE`.
 
 The `KubeletInUserNamespace` feature gate was introduced in Kubernetes v1.22 with "alpha" status.
 
-Running kubelet in a user namespace without using this feature gate is also possible by mounting a specially crafted proc filesystem,
-but not officially supported.
+Running kubelet in a user namespace without using this feature gate is also possible
+by mounting a specially crafted proc filesystem (as done by [Sysbox](https://github.com/nestybox/sysbox)), but not officially supported.
 
 ### Configuring kube-proxy
 
@@ -244,6 +282,7 @@ For more on this, see the [Caveats and Future work](https://rootlesscontaine.rs/
 on the rootlesscontaine.rs website.
 
 ## {{% heading "seealso" %}}
+
 - [rootlesscontaine.rs](https://rootlesscontaine.rs/)
 - [Rootless Containers 2020 (KubeCon NA 2020)](https://www.slideshare.net/AkihiroSuda/kubecon-na-2020-containerd-rootless-containers-2020)
 - [Running kind with Rootless Docker](https://kind.sigs.k8s.io/docs/user/rootless/)
diff --git a/content/en/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace.md b/content/en/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace.md
index e3758e05c9..e0255eb2bd 100644
--- a/content/en/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace.md
+++ b/content/en/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace.md
@@ -2,14 +2,18 @@
 title: Configure Minimum and Maximum CPU Constraints for a Namespace
 content_type: task
 weight: 40
+description: >-
+  Define a range of valid CPU resource limits for a namespace, so that every new Pod
+  in that namespace falls within the range you configure.
 ---
 
 
 <!-- overview -->
 
-This page shows how to set minimum and maximum values for the CPU resources used by Containers
-and Pods in a namespace. You specify minimum and maximum CPU values in a
-[LimitRange](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#limitrange-v1-core)
+This page shows how to set minimum and maximum values for the CPU resources used by containers
+and Pods in a {{< glossary_tooltip text="namespace" term_id="namespace" >}}. You specify minimum
+and maximum CPU values in a
+[LimitRange](/docs/reference/kubernetes-api/policy-resources/limit-range-v1/)
 object. If a Pod does not meet the constraints imposed by the LimitRange, it cannot be created
 in the namespace.
 
@@ -19,11 +23,13 @@ in the namespace.
 ## {{% heading "prerequisites" %}}
 
 
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-Your cluster must have at least 1 CPU available for use to run the task examples.
+{{< include "task-tutorial-prereqs.md" >}}
 
+You must have access to create namespaces in your cluster.
 
+Each node in your cluster must have at least 1.0 CPU available for Pods.
+See [meaning of CPU](/docs/concepts/configuration/manage-resources-containers/#meaning-of-cpu)
+to learn what Kubernetes means by “1 CPU”.
 
 
 <!-- steps -->
@@ -39,7 +45,7 @@ kubectl create namespace constraints-cpu-example
 
 ## Create a LimitRange and a Pod
 
-Here's the configuration file for a LimitRange:
+Here's a manifest for an example {{< glossary_tooltip text="LimitRange" term_id="limitrange" >}}:
 
 {{< codenew file="admin/resource/cpu-constraints.yaml" >}}
 
@@ -72,15 +78,15 @@ limits:
   type: Container
 ```
 
-Now whenever a Container is created in the constraints-cpu-example namespace, Kubernetes
-performs these steps:
+Now whenever you create a Pod in the constraints-cpu-example namespace (or some other client
+of the Kubernetes API creates an equivalent Pod), Kubernetes performs these steps:
 
-* If the Container does not specify its own CPU request and limit, assign the default
-CPU request and limit to the Container.
+* If any container in that Pod does not specify its own CPU request and limit, the control plane
+  assigns the default CPU request and limit to that container.
 
-* Verify that the Container specifies a CPU request that is greater than or equal to 200 millicpu.
+* Verify that every container in that Pod specifies a CPU request that is greater than or equal to 200 millicpu.
 
-* Verify that the Container specifies a CPU limit that is less than or equal to 800 millicpu.
+* Verify that every container in that Pod specifies a CPU limit that is less than or equal to 800 millicpu.
 
 {{< note >}}
 When creating a `LimitRange` object, you can specify limits on huge-pages
@@ -88,9 +94,9 @@ or GPUs as well. However, when both `default` and `defaultRequest` are specified
 on these resources, the two values must be the same.
 {{< /note >}}
 
-Here's the configuration file for a Pod that has one Container. The Container manifest
+Here's a manifest for a Pod that has one container. The container manifest
 specifies a CPU request of 500 millicpu and a CPU limit of 800 millicpu. These satisfy the
-minimum and maximum CPU constraints imposed by the LimitRange.
+minimum and maximum CPU constraints imposed by the LimitRange for this namespace.
 
 {{< codenew file="admin/resource/cpu-constraints-pod.yaml" >}}
 
@@ -100,7 +106,7 @@ Create the Pod:
 kubectl apply -f https://k8s.io/examples/admin/resource/cpu-constraints-pod.yaml --namespace=constraints-cpu-example
 ```
 
-Verify that the Pod's Container is running:
+Verify that the Pod is running and that its container is healthy:
 
 ```shell
 kubectl get pod constraints-cpu-demo --namespace=constraints-cpu-example
@@ -112,7 +118,7 @@ View detailed information about the Pod:
 kubectl get pod constraints-cpu-demo --output=yaml --namespace=constraints-cpu-example
 ```
 
-The output shows that the Container has a CPU request of 500 millicpu and CPU limit
+The output shows that the Pod's only container has a CPU request of 500 millicpu and CPU limit
 of 800 millicpu. These satisfy the constraints imposed by the LimitRange.
 
 ```yaml
@@ -131,7 +137,7 @@ kubectl delete pod constraints-cpu-demo --namespace=constraints-cpu-example
 
 ## Attempt to create a Pod that exceeds the maximum CPU constraint
 
-Here's the configuration file for a Pod that has one Container. The Container specifies a
+Here's a manifest for a Pod that has one container. The container specifies a
 CPU request of 500 millicpu and a cpu limit of 1.5 cpu.
 
 {{< codenew file="admin/resource/cpu-constraints-pod-2.yaml" >}}
@@ -142,8 +148,8 @@ Attempt to create the Pod:
 kubectl apply -f https://k8s.io/examples/admin/resource/cpu-constraints-pod-2.yaml --namespace=constraints-cpu-example
 ```
 
-The output shows that the Pod does not get created, because the Container specifies a CPU limit that is
-too large:
+The output shows that the Pod does not get created, because it defines an unacceptable container.
+That container is not acceptable because it specifies a CPU limit that is too large:
 
 ```
 Error from server (Forbidden): error when creating "examples/admin/resource/cpu-constraints-pod-2.yaml":
@@ -152,7 +158,7 @@ pods "constraints-cpu-demo-2" is forbidden: maximum cpu usage per Container is 8
 
 ## Attempt to create a Pod that does not meet the minimum CPU request
 
-Here's the configuration file for a Pod that has one Container. The Container specifies a
+Here's a manifest for a Pod that has one container. The container specifies a
 CPU request of 100 millicpu and a CPU limit of 800 millicpu.
 
 {{< codenew file="admin/resource/cpu-constraints-pod-3.yaml" >}}
@@ -163,8 +169,9 @@ Attempt to create the Pod:
 kubectl apply -f https://k8s.io/examples/admin/resource/cpu-constraints-pod-3.yaml --namespace=constraints-cpu-example
 ```
 
-The output shows that the Pod does not get created, because the Container specifies a CPU
-request that is too small:
+The output shows that the Pod does not get created, because it defines an unacceptable container.
+That container is not acceptable because it specifies a CPU request that is lower than the
+enforced minimum:
 
 ```
 Error from server (Forbidden): error when creating "examples/admin/resource/cpu-constraints-pod-3.yaml":
@@ -173,8 +180,8 @@ pods "constraints-cpu-demo-3" is forbidden: minimum cpu usage per Container is 2
 
 ## Create a Pod that does not specify any CPU request or limit
 
-Here's the configuration file for a Pod that has one Container. The Container does not
-specify a CPU request, and it does not specify a CPU limit.
+Here's a manifest for a Pod that has one container. The container does not
+specify a CPU request, nor does it specify a CPU limit.
 
 {{< codenew file="admin/resource/cpu-constraints-pod-4.yaml" >}}
 
@@ -190,8 +197,9 @@ View detailed information about the Pod:
 kubectl get pod constraints-cpu-demo-4 --namespace=constraints-cpu-example --output=yaml
 ```
 
-The output shows that the Pod's Container has a CPU request of 800 millicpu and a CPU limit of 800 millicpu.
-How did the Container get those values?
+The output shows that the Pod's single container has a CPU request of 800 millicpu and a
+CPU limit of 800 millicpu.
+How did that container get those values?
 
 ```yaml
 resources:
@@ -201,11 +209,15 @@ resources:
     cpu: 800m
 ```
 
-Because your Container did not specify its own CPU request and limit, it was given the
+Because that container did not specify its own CPU request and limit, the control plane
+applied the
 [default CPU request and limit](/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/)
-from the LimitRange.
+from the LimitRange for this namespace.
 
-At this point, your Container might be running or it might not be running. Recall that a prerequisite for this task is that your cluster must have at least 1 CPU available for use. If each of your Nodes has only 1 CPU, then there might not be enough allocatable CPU on any Node to accommodate a request of 800 millicpu. If you happen to be using Nodes with 2 CPU, then you probably have enough CPU to accommodate the 800 millicpu request.
+At this point, your Pod may or may not be running. Recall that a prerequisite for
+this task is that your Nodes must have at least 1 CPU available for use. If each of your Nodes has only 1 CPU,
+then there might not be enough allocatable CPU on any Node to accommodate a request of 800 millicpu. 
+If you happen to be using Nodes with 2 CPU, then you probably have enough CPU to accommodate the 800 millicpu request.
 
 Delete your Pod:
 
diff --git a/content/en/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace.md b/content/en/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace.md
index 0156d67e4d..5bbd37fa18 100644
--- a/content/en/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace.md
+++ b/content/en/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace.md
@@ -2,23 +2,36 @@
 title: Configure Default CPU Requests and Limits for a Namespace
 content_type: task
 weight: 20
+description: >-
+  Define a default CPU resource limits for a namespace, so that every new Pod
+  in that namespace has a CPU resource limit configured.
 ---
 
 <!-- overview -->
 
-This page shows how to configure default CPU requests and limits for a namespace.
-A Kubernetes cluster can be divided into namespaces. If a Container is created in a namespace
-that has a default CPU limit, and the Container does not specify its own CPU limit, then
-the Container is assigned the default CPU limit. Kubernetes assigns a default CPU request
-under certain conditions that are explained later in this topic.
+This page shows how to configure default CPU requests and limits for a
+{{< glossary_tooltip text="namespace" term_id="namespace" >}}.
 
+A Kubernetes cluster can be divided into namespaces. If you create a Pod within a
+namespace that has a default CPU
+[limit](/docs/concepts/configuration/manage-resources-containers/#requests-and-limits), and any container in that Pod does not specify
+its own CPU limit, then the
+{{< glossary_tooltip text="control plane" term_id="control-plane" >}} assigns the default
+CPU limit to that container.
 
+Kubernetes assigns a default CPU
+[request](/docs/concepts/configuration/manage-resources-containers/#requests-and-limits),
+but only under certain conditions that are explained later in this page.
 
 ## {{% heading "prerequisites" %}}
 
 
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+{{< include "task-tutorial-prereqs.md" >}}
 
+You must have access to create namespaces in your cluster.
+
+If you're not already familiar with what Kubernetes means by 1.0 CPU,
+read [meaning of CPU](/docs/concepts/configuration/manage-resources-containers/#meaning-of-cpu).
 
 <!-- steps -->
 
@@ -33,8 +46,8 @@ kubectl create namespace default-cpu-example
 
 ## Create a LimitRange and a Pod
 
-Here's the configuration file for a LimitRange object. The configuration specifies
-a default CPU request and a default CPU limit.
+Here's a manifest for an example {{< glossary_tooltip text="LimitRange" term_id="limitrange" >}}.
+The manifest specifies a default CPU request and a default CPU limit.
 
 {{< codenew file="admin/resource/cpu-defaults.yaml" >}}
 
@@ -44,12 +57,12 @@ Create the LimitRange in the default-cpu-example namespace:
 kubectl apply -f https://k8s.io/examples/admin/resource/cpu-defaults.yaml --namespace=default-cpu-example
 ```
 
-Now if a Container is created in the default-cpu-example namespace, and the
-Container does not specify its own values for CPU request and CPU limit,
-the Container is given a default CPU request of 0.5 and a default
+Now if you create a Pod in the default-cpu-example namespace, and any container
+in that Pod does not specify its own values for CPU request and CPU limit,
+then the control plane applies default values: a CPU request of 0.5 and a default
 CPU limit of 1.
 
-Here's the configuration file for a Pod that has one Container. The Container
+Here's a manifest for a Pod that has one container. The container
 does not specify a CPU request and limit.
 
 {{< codenew file="admin/resource/cpu-defaults-pod.yaml" >}}
@@ -66,8 +79,9 @@ View the Pod's specification:
 kubectl get pod default-cpu-demo --output=yaml --namespace=default-cpu-example
 ```
 
-The output shows that the Pod's Container has a CPU request of 500 millicpus and
-a CPU limit of 1 cpu. These are the default values specified by the LimitRange.
+The output shows that the Pod's only container has a CPU request of 500m `cpu`
+(which you can read as “500 millicpu”), and a CPU limit of 1 `cpu`.
+These are the default values specified by the LimitRange.
 
 ```shell
 containers:
@@ -81,9 +95,9 @@ containers:
       cpu: 500m
 ```
 
-## What if you specify a Container's limit, but not its request?
+## What if you specify a container's limit, but not its request?
 
-Here's the configuration file for a Pod that has one Container. The Container
+Here's a manifest for a Pod that has one container. The container
 specifies a CPU limit, but not a request:
 
 {{< codenew file="admin/resource/cpu-defaults-pod-2.yaml" >}}
@@ -95,14 +109,15 @@ Create the Pod:
 kubectl apply -f https://k8s.io/examples/admin/resource/cpu-defaults-pod-2.yaml --namespace=default-cpu-example
 ```
 
-View the Pod specification:
+View the [specification](/docs/concepts/overview/working-with-objects/kubernetes-objects/#object-spec-and-status)
+of the Pod that you created:
 
 ```
 kubectl get pod default-cpu-demo-2 --output=yaml --namespace=default-cpu-example
 ```
 
-The output shows that the Container's CPU request is set to match its CPU limit.
-Notice that the Container was not assigned the default CPU request value of 0.5 cpu.
+The output shows that the container's CPU request is set to match its CPU limit.
+Notice that the container was not assigned the default CPU request value of 0.5 `cpu`:
 
 ```
 resources:
@@ -112,9 +127,9 @@ resources:
     cpu: "1"
 ```
 
-## What if you specify a Container's request, but not its limit?
+## What if you specify a container's request, but not its limit?
 
-Here's the configuration file for a Pod that has one Container. The Container
+Here's an example manifest for a Pod that has one container. The container
 specifies a CPU request, but not a limit:
 
 {{< codenew file="admin/resource/cpu-defaults-pod-3.yaml" >}}
@@ -125,15 +140,17 @@ Create the Pod:
 kubectl apply -f https://k8s.io/examples/admin/resource/cpu-defaults-pod-3.yaml --namespace=default-cpu-example
 ```
 
-View the Pod specification:
+View the [specification](/docs/concepts/overview/working-with-objects/kubernetes-objects/#object-spec-and-status)
+of the Pod that you created:
 
 ```
 kubectl get pod default-cpu-demo-3 --output=yaml --namespace=default-cpu-example
 ```
 
-The output shows that the Container's CPU request is set to the value specified in the
-Container's configuration file. The Container's CPU limit is set to 1 cpu, which is the
-default CPU limit for the namespace.
+The output shows that the container's CPU request is set to the value you specified at
+the time you created the Pod (in other words: it matches the manifest).
+However, the same container's CPU limit is set to 1 `cpu`, which is the default CPU limit
+for that namespace.
 
 ```
 resources:
@@ -145,16 +162,22 @@ resources:
 
 ## Motivation for default CPU limits and requests
 
-If your namespace has a
-[resource quota](/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/),
+If your namespace has a CPU {{< glossary_tooltip text="resource quota" term_id="resource-quota" >}}
+configured,
 it is helpful to have a default value in place for CPU limit.
-Here are two of the restrictions that a resource quota imposes on a namespace:
+Here are two of the restrictions that a CPU resource quota imposes on a namespace:
 
-* Every Container that runs in the namespace must have its own CPU limit.
-* The total amount of CPU used by all Containers in the namespace must not exceed a specified limit.
+* For every Pod that runs in the namespace, each of its containers must have a CPU limit.
+* CPU limits apply a resource reservation on the node where the Pod in question is scheduled.
+  The total amount of CPU that is reserved for use by all Pods in the namespace must not
+  exceed a specified limit.
+
+When you add a LimitRange:
+
+If any Pod in that namespace that includes a container does not specify its own CPU limit,
+the control plane applies the default CPU limit to that container, and the Pod can be
+allowed to run in a namespace that is restricted by a CPU ResourceQuota.
 
-If a Container does not specify its own CPU limit, it is given the default limit, and then
-it can be allowed to run in a namespace that is restricted by a quota.
 
 ## Clean up
 
diff --git a/content/en/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace.md b/content/en/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace.md
index de80b80ce3..9d2d707cb0 100644
--- a/content/en/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace.md
+++ b/content/en/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace.md
@@ -2,29 +2,31 @@
 title: Configure Minimum and Maximum Memory Constraints for a Namespace
 content_type: task
 weight: 30
+description: >-
+  Define a range of valid memory resource limits for a namespace, so that every new Pod
+  in that namespace falls within the range you configure.
 ---
 
 
 <!-- overview -->
 
-This page shows how to set minimum and maximum values for memory used by Containers
-running in a namespace. You specify minimum and maximum memory values in a
-[LimitRange](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#limitrange-v1-core)
+This page shows how to set minimum and maximum values for memory used by containers
+running in a {{< glossary_tooltip text="namespace" term_id="namespace" >}}. 
+You specify minimum and maximum memory values in a
+[LimitRange](/docs/reference/kubernetes-api/policy-resources/limit-range-v1/)
 object. If a Pod does not meet the constraints imposed by the LimitRange,
 it cannot be created in the namespace.
 
 
 
-
 ## {{% heading "prerequisites" %}}
 
 
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-Each node in your cluster must have at least 1 GiB of memory.
-
+{{< include "task-tutorial-prereqs.md" >}}
 
+You must have access to create namespaces in your cluster.
 
+Each node in your cluster must have at least 1 GiB of memory available for Pods.
 
 <!-- steps -->
 
@@ -39,7 +41,7 @@ kubectl create namespace constraints-mem-example
 
 ## Create a LimitRange and a Pod
 
-Here's the configuration file for a LimitRange:
+Here's an example manifest for a LimitRange:
 
 {{< codenew file="admin/resource/memory-constraints.yaml" >}}
 
@@ -72,18 +74,19 @@ file for the LimitRange, they were created automatically.
     type: Container
 ```
 
-Now whenever a Container is created in the constraints-mem-example namespace, Kubernetes
+Now whenever you define a Pod within the constraints-mem-example namespace, Kubernetes
 performs these steps:
 
-* If the Container does not specify its own memory request and limit, assign the default
-memory request and limit to the Container.
+* If any container in that Pod does not specify its own memory request and limit, 
+the control plane assigns the default memory request and limit to that container.
 
-* Verify that the Container has a memory request that is greater than or equal to 500 MiB.
+* Verify that every container in that Pod requests at least 500 MiB of memory.
 
-* Verify that the Container has a memory limit that is less than or equal to 1 GiB.
+* Verify that every container in that Pod requests no more than 1024 MiB (1 GiB)
+  of memory.
 
-Here's the configuration file for a Pod that has one Container. The Container manifest
-specifies a memory request of 600 MiB and a memory limit of 800 MiB. These satisfy the
+Here's a manifest for a Pod that has one container. Within the Pod spec, the sole
+container specifies a memory request of 600 MiB and a memory limit of 800 MiB. These satisfy the
 minimum and maximum memory constraints imposed by the LimitRange.
 
 {{< codenew file="admin/resource/memory-constraints-pod.yaml" >}}
@@ -94,7 +97,7 @@ Create the Pod:
 kubectl apply -f https://k8s.io/examples/admin/resource/memory-constraints-pod.yaml --namespace=constraints-mem-example
 ```
 
-Verify that the Pod's Container is running:
+Verify that the Pod is running and that its container is healthy:
 
 ```shell
 kubectl get pod constraints-mem-demo --namespace=constraints-mem-example
@@ -106,8 +109,9 @@ View detailed information about the Pod:
 kubectl get pod constraints-mem-demo --output=yaml --namespace=constraints-mem-example
 ```
 
-The output shows that the Container has a memory request of 600 MiB and a memory limit
-of 800 MiB. These satisfy the constraints imposed by the LimitRange.
+The output shows that the container within that Pod has a memory request of 600 MiB and
+a memory limit of 800 MiB. These satisfy the constraints imposed by the LimitRange for
+this namespace:
 
 ```yaml
 resources:
@@ -125,7 +129,7 @@ kubectl delete pod constraints-mem-demo --namespace=constraints-mem-example
 
 ## Attempt to create a Pod that exceeds the maximum memory constraint
 
-Here's the configuration file for a Pod that has one Container. The Container specifies a
+Here's a manifest for a Pod that has one container. The container specifies a
 memory request of 800 MiB and a memory limit of 1.5 GiB.
 
 {{< codenew file="admin/resource/memory-constraints-pod-2.yaml" >}}
@@ -136,8 +140,8 @@ Attempt to create the Pod:
 kubectl apply -f https://k8s.io/examples/admin/resource/memory-constraints-pod-2.yaml --namespace=constraints-mem-example
 ```
 
-The output shows that the Pod does not get created, because the Container specifies a memory limit that is
-too large:
+The output shows that the Pod does not get created, because it defines a container that
+requests more memory than is allowed:
 
 ```
 Error from server (Forbidden): error when creating "examples/admin/resource/memory-constraints-pod-2.yaml":
@@ -146,7 +150,7 @@ pods "constraints-mem-demo-2" is forbidden: maximum memory usage per Container i
 
 ## Attempt to create a Pod that does not meet the minimum memory request
 
-Here's the configuration file for a Pod that has one Container. The Container specifies a
+Here's a manifest for a Pod that has one container. That container specifies a
 memory request of 100 MiB and a memory limit of 800 MiB.
 
 {{< codenew file="admin/resource/memory-constraints-pod-3.yaml" >}}
@@ -157,8 +161,8 @@ Attempt to create the Pod:
 kubectl apply -f https://k8s.io/examples/admin/resource/memory-constraints-pod-3.yaml --namespace=constraints-mem-example
 ```
 
-The output shows that the Pod does not get created, because the Container specifies a memory
-request that is too small:
+The output shows that the Pod does not get created, because it defines a container
+that requests less memory than the enforced minimum:
 
 ```
 Error from server (Forbidden): error when creating "examples/admin/resource/memory-constraints-pod-3.yaml":
@@ -167,9 +171,7 @@ pods "constraints-mem-demo-3" is forbidden: minimum memory usage per Container i
 
 ## Create a Pod that does not specify any memory request or limit
 
-
-
-Here's the configuration file for a Pod that has one Container. The Container does not
+Here's a manifest for a Pod that has one container. The container does not
 specify a memory request, and it does not specify a memory limit.
 
 {{< codenew file="admin/resource/memory-constraints-pod-4.yaml" >}}
@@ -182,12 +184,12 @@ kubectl apply -f https://k8s.io/examples/admin/resource/memory-constraints-pod-4
 
 View detailed information about the Pod:
 
-```
+```shell
 kubectl get pod constraints-mem-demo-4 --namespace=constraints-mem-example --output=yaml
 ```
 
-The output shows that the Pod's Container has a memory request of 1 GiB and a memory limit of 1 GiB.
-How did the Container get those values?
+The output shows that the Pod's only container has a memory request of 1 GiB and a memory limit of 1 GiB.
+How did that container get those values?
 
 ```
 resources:
@@ -197,11 +199,20 @@ resources:
     memory: 1Gi
 ```
 
-Because your Container did not specify its own memory request and limit, it was given the
+Because your Pod did not define any memory request and limit for that container, the cluster
+applied a
 [default memory request and limit](/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
 from the LimitRange.
 
-At this point, your Container might be running or it might not be running. Recall that a prerequisite
+This means that the definition of that Pod shows those values. You can check it using
+`kubectl describe`:
+
+```shell
+# Look for the "Requests:" section of the output
+kubectl describe pod constraints-mem-demo-4 --namespace=constraints-mem-example
+```
+
+At this point, your Pod might be running or it might not be running. Recall that a prerequisite
 for this task is that your Nodes have at least 1 GiB of memory. If each of your Nodes has only
 1 GiB of memory, then there is not enough allocatable memory on any Node to accommodate a memory
 request of 1 GiB. If you happen to be using Nodes with 2 GiB of memory, then you probably have
@@ -209,7 +220,7 @@ enough space to accommodate the 1 GiB request.
 
 Delete your Pod:
 
-```
+```shell
 kubectl delete pod constraints-mem-demo-4 --namespace=constraints-mem-example
 ```
 
@@ -224,12 +235,12 @@ Pods that were created previously.
 As a cluster administrator, you might want to impose restrictions on the amount of memory that Pods can use.
 For example:
 
-* Each Node in a cluster has 2 GB of memory. You do not want to accept any Pod that requests
-more than 2 GB of memory, because no Node in the cluster can support the request.
+* Each Node in a cluster has 2 GiB of memory. You do not want to accept any Pod that requests
+more than 2 GiB of memory, because no Node in the cluster can support the request.
 
 * A cluster is shared by your production and development departments.
-You want to allow production workloads to consume up to 8 GB of memory, but
-you want development workloads to be limited to 512 MB. You create separate namespaces
+You want to allow production workloads to consume up to 8 GiB of memory, but
+you want development workloads to be limited to 512 MiB. You create separate namespaces
 for production and development, and you apply memory constraints to each namespace.
 
 ## Clean up
@@ -241,7 +252,6 @@ kubectl delete namespace constraints-mem-example
 ```
 
 
-
 ## {{% heading "whatsnext" %}}
 
 
diff --git a/content/en/docs/tasks/administer-cluster/manage-resources/memory-default-namespace.md b/content/en/docs/tasks/administer-cluster/manage-resources/memory-default-namespace.md
index d2f4790abc..1013800e44 100644
--- a/content/en/docs/tasks/administer-cluster/manage-resources/memory-default-namespace.md
+++ b/content/en/docs/tasks/administer-cluster/manage-resources/memory-default-namespace.md
@@ -2,21 +2,35 @@
 title: Configure Default Memory Requests and Limits for a Namespace
 content_type: task
 weight: 10
+description: >-
+  Define a default memory resource limit for a namespace, so that every new Pod
+  in that namespace has a memory resource limit configured.
 ---
 
 <!-- overview -->
 
-This page shows how to configure default memory requests and limits for a namespace.
-If a Container is created in a namespace that has a default memory limit, and the Container
-does not specify its own memory limit, then the Container is assigned the default memory limit.
+This page shows how to configure default memory requests and limits for a
+{{< glossary_tooltip text="namespace" term_id="namespace" >}}.
+
+A Kubernetes cluster can be divided into namespaces. Once you have a namespace that
+has a default memory
+[limit](/docs/concepts/configuration/manage-resources-containers/#requests-and-limits),
+and you then try to create a Pod with a container that does not specify its own memory
+limit, then the
+{{< glossary_tooltip text="control plane" term_id="control-plane" >}} assigns the default
+memory limit to that container.
+
 Kubernetes assigns a default memory request under certain conditions that are explained later in this topic.
 
 
 
+
 ## {{% heading "prerequisites" %}}
 
 
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+{{< include "task-tutorial-prereqs.md" >}}
+
+You must have access to create namespaces in your cluster.
 
 Each node in your cluster must have at least 2 GiB of memory.
 
@@ -35,8 +49,9 @@ kubectl create namespace default-mem-example
 
 ## Create a LimitRange and a Pod
 
-Here's the configuration file for a LimitRange object. The configuration specifies
-a default memory request and a default memory limit.
+Here's a manifest for an example {{< glossary_tooltip text="LimitRange" term_id="limitrange" >}}.
+The manifest specifies a default memory
+request and a default memory limit.
 
 {{< codenew file="admin/resource/memory-defaults.yaml" >}}
 
@@ -46,12 +61,13 @@ Create the LimitRange in the default-mem-example namespace:
 kubectl apply -f https://k8s.io/examples/admin/resource/memory-defaults.yaml --namespace=default-mem-example
 ```
 
-Now if a Container is created in the default-mem-example namespace, and the
-Container does not specify its own values for memory request and memory limit,
-the Container is given a default memory request of 256 MiB and a default
-memory limit of 512 MiB.
+Now if you create a Pod in the default-mem-example namespace, and any container
+within that Pod does not specify its own values for memory request and memory limit,
+then the {{< glossary_tooltip text="control plane" term_id="control-plane" >}}
+applies default values: a memory request of 256MiB and a memory limit of 512MiB.
 
-Here's the configuration file for a Pod that has one Container. The Container
+
+Here's an example manifest for a Pod that has one container. The container
 does not specify a memory request and limit.
 
 {{< codenew file="admin/resource/memory-defaults-pod.yaml" >}}
@@ -68,7 +84,7 @@ View detailed information about the Pod:
 kubectl get pod default-mem-demo --output=yaml --namespace=default-mem-example
 ```
 
-The output shows that the Pod's Container has a memory request of 256 MiB and
+The output shows that the Pod's container has a memory request of 256 MiB and
 a memory limit of 512 MiB. These are the default values specified by the LimitRange.
 
 ```shell
@@ -89,9 +105,9 @@ Delete your Pod:
 kubectl delete pod default-mem-demo --namespace=default-mem-example
 ```
 
-## What if you specify a Container's limit, but not its request?
+## What if you specify a container's limit, but not its request?
 
-Here's the configuration file for a Pod that has one Container. The Container
+Here's a manifest for a Pod that has one container. The container
 specifies a memory limit, but not a request:
 
 {{< codenew file="admin/resource/memory-defaults-pod-2.yaml" >}}
@@ -109,8 +125,8 @@ View detailed information about the Pod:
 kubectl get pod default-mem-demo-2 --output=yaml --namespace=default-mem-example
 ```
 
-The output shows that the Container's memory request is set to match its memory limit.
-Notice that the Container was not assigned the default memory request value of 256Mi.
+The output shows that the container's memory request is set to match its memory limit.
+Notice that the container was not assigned the default memory request value of 256Mi.
 
 ```
 resources:
@@ -120,9 +136,9 @@ resources:
     memory: 1Gi
 ```
 
-## What if you specify a Container's request, but not its limit?
+## What if you specify a container's request, but not its limit?
 
-Here's the configuration file for a Pod that has one Container. The Container
+Here's a manifest for a Pod that has one container. The container
 specifies a memory request, but not a limit:
 
 {{< codenew file="admin/resource/memory-defaults-pod-3.yaml" >}}
@@ -139,9 +155,9 @@ View the Pod's specification:
 kubectl get pod default-mem-demo-3 --output=yaml --namespace=default-mem-example
 ```
 
-The output shows that the Container's memory request is set to the value specified in the
-Container's configuration file. The Container's memory limit is set to 512Mi, which is the
-default memory limit for the namespace.
+The output shows that the container's memory request is set to the value specified in the
+container's manifest. The container is limited to use no more than 512MiB of
+memory, which matches the default memory limit for the namespace.
 
 ```
 resources:
@@ -153,15 +169,23 @@ resources:
 
 ## Motivation for default memory limits and requests
 
-If your namespace has a resource quota,
+If your namespace has a memory {{< glossary_tooltip text="resource quota" term_id="resource-quota" >}}
+configured,
 it is helpful to have a default value in place for memory limit.
-Here are two of the restrictions that a resource quota imposes on a namespace:
+Here are three of the restrictions that a resource quota imposes on a namespace:
 
-* Every Container that runs in the namespace must have its own memory limit.
-* The total amount of memory used by all Containers in the namespace must not exceed a specified limit.
+* For every Pod that runs in the namespace, the Pod and each of its containers must have a memory limit.
+  (If you specify a memory limit for every container in a Pod, Kubernetes can infer the Pod-level memory
+  limit by adding up the limits for its containers).
+* Memory limits apply a resource reservation on the node where the Pod in question is scheduled.
+  The total amount of memory reserved for all Pods in the namespace must not exceed a specified limit.
+* The total amount of memory actually used by all Pods in the namespace must also not exceed a specified limit.
 
-If a Container does not specify its own memory limit, it is given the default limit, and then
-it can be allowed to run in a namespace that is restricted by a quota.
+When you add a LimitRange:
+
+If any Pod in that namespace that includes a container does not specify its own memory limit,
+the control plane applies the default memory limit to that container, and the Pod can be
+allowed to run in a namespace that is restricted by a memory ResourceQuota.
 
 ## Clean up
 
diff --git a/content/en/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace.md b/content/en/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace.md
index 4869c35e06..161c3a12a9 100644
--- a/content/en/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace.md
+++ b/content/en/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace.md
@@ -2,14 +2,17 @@
 title: Configure Memory and CPU Quotas for a Namespace
 content_type: task
 weight: 50
+description: >-
+  Define overall memory and CPU resource limits for a namespace.
 ---
 
 
 <!-- overview -->
 
 This page shows how to set quotas for the total amount memory and CPU that
-can be used by all Containers running in a namespace. You specify quotas in a
-[ResourceQuota](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#resourcequota-v1-core)
+can be used by all Pods running in a {{< glossary_tooltip text="namespace" term_id="namespace" >}}.
+You specify quotas in a
+[ResourceQuota](/docs/reference/kubernetes-api/policy-resources/resource-quota-v1/)
 object.
 
 
@@ -17,14 +20,13 @@ object.
 
 ## {{% heading "prerequisites" %}}
 
+{{< include "task-tutorial-prereqs.md" >}}
 
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+You must have access to create namespaces in your cluster.
 
 Each node in your cluster must have at least 1 GiB of memory.
 
 
-
-
 <!-- steps -->
 
 ## Create a namespace
@@ -38,7 +40,7 @@ kubectl create namespace quota-mem-cpu-example
 
 ## Create a ResourceQuota
 
-Here is the configuration file for a ResourceQuota object:
+Here is a manifest for an example ResourceQuota:
 
 {{< codenew file="admin/resource/quota-mem-cpu.yaml" >}}
 
@@ -56,15 +58,18 @@ kubectl get resourcequota mem-cpu-demo --namespace=quota-mem-cpu-example --outpu
 
 The ResourceQuota places these requirements on the quota-mem-cpu-example namespace:
 
-* Every Container must have a memory request, memory limit, cpu request, and cpu limit.
-* The memory request total for all Containers must not exceed 1 GiB.
-* The memory limit total for all Containers must not exceed 2 GiB.
-* The CPU request total for all Containers must not exceed 1 cpu.
-* The CPU limit total for all Containers must not exceed 2 cpu.
+* For every Pod in the namespace, each container must have a memory request, memory limit, cpu request, and cpu limit.
+* The memory request total for all Pods in that namespace must not exceed 1 GiB.
+* The memory limit total for all Pods in that namespace must not exceed 2 GiB.
+* The CPU request total for all Pods in that namespace must not exceed 1 cpu.
+* The CPU limit total for all Pods in that namespace must not exceed 2 cpu.
+
+See [meaning of CPU](/docs/concepts/configuration/manage-resources-containers/#meaning-of-cpu)
+to learn what Kubernetes means by “1 CPU”.
 
 ## Create a Pod
 
-Here is the configuration file for a Pod:
+Here is a manifest for an example Pod:
 
 {{< codenew file="admin/resource/quota-mem-cpu-pod.yaml" >}}
 
@@ -75,15 +80,15 @@ Create the Pod:
 kubectl apply -f https://k8s.io/examples/admin/resource/quota-mem-cpu-pod.yaml --namespace=quota-mem-cpu-example
 ```
 
-Verify that the Pod's Container is running:
+Verify that the Pod is running and that its (only) container is healthy:
 
-```
+```shell
 kubectl get pod quota-mem-cpu-demo --namespace=quota-mem-cpu-example
 ```
 
 Once again, view detailed information about the ResourceQuota:
 
-```
+```shell
 kubectl get resourcequota mem-cpu-demo --namespace=quota-mem-cpu-example --output=yaml
 ```
 
@@ -105,15 +110,22 @@ status:
     requests.memory: 600Mi
 ```
 
+If you have the `jq` tool, you can also query (using [JSONPath](/docs/reference/kubectl/jsonpath/))
+for just the `used` values, **and** pretty-print that that of the output. For example:
+
+```shell
+kubectl get resourcequota mem-cpu-demo --namespace=quota-mem-cpu-example -o jsonpath='{ .status.used }' | jq .
+```
+
 ## Attempt to create a second Pod
 
-Here is the configuration file for a second Pod:
+Here is a manifest for a second Pod:
 
 {{< codenew file="admin/resource/quota-mem-cpu-pod-2.yaml" >}}
 
-In the configuration file, you can see that the Pod has a memory request of 700 MiB.
+In the manifest, you can see that the Pod has a memory request of 700 MiB.
 Notice that the sum of the used memory request and this new memory
-request exceeds the memory request quota. 600 MiB + 700 MiB > 1 GiB.
+request exceeds the memory request quota: 600 MiB + 700 MiB > 1 GiB.
 
 Attempt to create the Pod:
 
@@ -133,11 +145,12 @@ requested: requests.memory=700Mi,used: requests.memory=600Mi, limited: requests.
 ## Discussion
 
 As you have seen in this exercise, you can use a ResourceQuota to restrict
-the memory request total for all Containers running in a namespace.
+the memory request total for all Pods running in a namespace.
 You can also restrict the totals for memory limit, cpu request, and cpu limit.
 
-If you want to restrict individual Containers, instead of totals for all Containers, use a
-[LimitRange](/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/).
+Instead of managing total resource use within a namespace, you might want to restrict
+individual Pods, or the containers in those Pods. To achieve that kind of limiting, use a
+[LimitRange](/docs/concepts/policy/limit-range/).
 
 ## Clean up
 
diff --git a/content/en/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace.md b/content/en/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace.md
index b0485f2b45..3cdb1a9f24 100644
--- a/content/en/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace.md
+++ b/content/en/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace.md
@@ -2,14 +2,16 @@
 title: Configure a Pod Quota for a Namespace
 content_type: task
 weight: 60
+description: >-
+  Restrict how many Pods you can create within a namespace.
 ---
 
 
 <!-- overview -->
 
 This page shows how to set a quota for the total number of Pods that can run
-in a namespace. You specify quotas in a
-[ResourceQuota](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#resourcequota-v1-core)
+in a {{< glossary_tooltip text="Namespace" term_id="namespace" >}}. You specify quotas in a
+[ResourceQuota](/docs/reference/kubernetes-api/policy-resources/resource-quota-v1/)
 object.
 
 
@@ -18,10 +20,9 @@ object.
 ## {{% heading "prerequisites" %}}
 
 
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-
+{{< include "task-tutorial-prereqs.md" >}}
 
+You must have access to create namespaces in your cluster.
 
 <!-- steps -->
 
@@ -36,7 +37,7 @@ kubectl create namespace quota-pod-example
 
 ## Create a ResourceQuota
 
-Here is the configuration file for a ResourceQuota object:
+Here is an example manifest for a ResourceQuota:
 
 {{< codenew file="admin/resource/quota-pod.yaml" >}}
 
@@ -66,11 +67,12 @@ status:
     pods: "0"
 ```
 
-Here is the configuration file for a Deployment:
+Here is an example manifest for a {{< glossary_tooltip term_id="deployment" >}}:
 
 {{< codenew file="admin/resource/quota-pod-deployment.yaml" >}}
 
-In the configuration file, `replicas: 3` tells Kubernetes to attempt to create three Pods, all running the same application.
+In that manifest, `replicas: 3` tells Kubernetes to attempt to create three new Pods, all
+running the same application.
 
 Create the Deployment:
 
@@ -85,7 +87,7 @@ kubectl get deployment pod-quota-demo --namespace=quota-pod-example --output=yam
 ```
 
 The output shows that even though the Deployment specifies three replicas, only two
-Pods were created because of the quota.
+Pods were created because of the quota you defined earlier:
 
 ```yaml
 spec:
@@ -95,11 +97,18 @@ spec:
 status:
   availableReplicas: 2
 ...
-lastUpdateTime: 2017-07-07T20:57:05Z
+lastUpdateTime: 2021-04-02T20:57:05Z
     message: 'unable to create pods: pods "pod-quota-demo-1650323038-" is forbidden:
       exceeded quota: pod-demo, requested: pods=1, used: pods=2, limited: pods=2'
 ```
 
+### Choice of resource
+
+In this task you have defined a ResourceQuota that limited the total number of Pods, but
+you could also limit the total number of other kinds of object. For example, you
+might decide to limit how many {{< glossary_tooltip text="CronJobs" term_id="cronjob" >}}
+that can live in a single namespace.
+
 ## Clean up
 
 Delete your namespace:
diff --git a/content/en/docs/tasks/administer-cluster/memory-manager.md b/content/en/docs/tasks/administer-cluster/memory-manager.md
index 27a0ed2405..282c3e064a 100644
--- a/content/en/docs/tasks/administer-cluster/memory-manager.md
+++ b/content/en/docs/tasks/administer-cluster/memory-manager.md
@@ -1,390 +1,483 @@
----
-title: Utilizing the NUMA-aware Memory Manager
-
-reviewers:
-- klueska
-- derekwaynecarr
-
-content_type: task
-min-kubernetes-server-version: v1.21
----
-
-<!-- overview -->
-
-{{< feature-state state="beta" for_k8s_version="v1.22" >}}
-
-The Kubernetes *Memory Manager* enables the feature of guaranteed memory (and hugepages) allocation for pods in the `Guaranteed` {{< glossary_tooltip text="QoS class" term_id="qos-class" >}}.
-
-The Memory Manager employs hint generation protocol to yield the most suitable NUMA affinity for a pod. The Memory Manager feeds the central manager (*Topology Manager*) with these affinity hints. Based on both the hints and Topology Manager policy, the pod is rejected or admitted to the node.
-
-Moreover, the Memory Manager ensures that the memory which a pod requests is allocated from a minimum number of NUMA nodes.
-
-The Memory Manager is only pertinent to Linux based hosts.
-
-## {{% heading "prerequisites" %}}
-
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-To align memory resources with other requested resources in a Pod Spec:
-- the CPU Manager should be enabled and proper CPU Manager policy should be configured on a Node. See [control CPU Management Policies](/docs/tasks/administer-cluster/cpu-management-policies/);
-- the Topology Manager should be enabled and proper Topology Manager policy should be configured on a Node. See [control Topology Management Policies](/docs/tasks/administer-cluster/topology-manager/).
-
-Starting from v1.22, the Memory Manager is enabled by default through `MemoryManager` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/). 
-
-Preceding v1.22, the `kubelet` must be started with the following flag:
-
-`--feature-gates=MemoryManager=true`
-
-in order to enable the Memory Manager feature.
-
-## How Memory Manager Operates?
-
-The Memory Manager currently offers the guaranteed memory (and hugepages) allocation for Pods in Guaranteed QoS class. To immediately put the Memory Manager into operation follow the guidelines in the section [Memory Manager configuration](#memory-manager-configuration), and subsequently, prepare and deploy a `Guaranteed` pod as illustrated in the section [Placing a Pod in the Guaranteed QoS class](#placing-a-pod-in-the-guaranteed-qos-class).
-
-The Memory Manager is a Hint Provider, and it provides topology hints for the Topology Manager which then aligns the requested resources according to these topology hints. It also enforces `cgroups` (i.e. `cpuset.mems`) for pods. The complete flow diagram concerning pod admission and deployment process is illustrated in [Memory Manager KEP: Design Overview][4] and below:
-
-![Memory Manager in the pod admission and deployment process](/images/docs/memory-manager-diagram.svg)
-
-During this process, the Memory Manager updates its internal counters stored in [Node Map and Memory Maps][2] to manage guaranteed memory allocation. 
-
-The Memory Manager updates the Node Map during the startup and runtime as follows.
-
-### Startup
-
-This occurs once a node administrator employs `--reserved-memory` (section [Reserved memory flag](#reserved-memory-flag)). In this case, the Node Map becomes updated to reflect this reservation as illustrated in [Memory Manager KEP: Memory Maps at start-up (with examples)][5].
-
-The administrator must provide `--reserved-memory` flag when `Static` policy is configured.
-
-### Runtime
-
-Reference [Memory Manager KEP: Memory Maps at runtime (with examples)][6] illustrates how a successful pod deployment affects the Node Map, and it also relates to how potential Out-of-Memory (OOM) situations are handled further by Kubernetes or operating system.
-
-Important topic in the context of Memory Manager operation is the management of NUMA groups. Each time pod's memory request is in excess of single NUMA node capacity, the Memory Manager attempts to create a group that comprises several NUMA nodes and features extend memory capacity. The problem has been solved as elaborated in [Memory Manager KEP: How to enable the guaranteed memory allocation over many NUMA nodes?][3]. Also, reference [Memory Manager KEP: Simulation - how the Memory Manager works? (by examples)][1] illustrates how the management of groups occurs. 
-
-## Memory Manager configuration
-
-Other Managers should be first pre-configured (section [Pre-configuration](#pre-configuration)). Next, the Memory Manger feature should be enabled (section [Enable the Memory Manager feature](#enable-the-memory-manager-feature)) and be run with `Static` policy (section [Static policy](#static-policy)). Optionally, some amount of memory can be reserved for system or kubelet processes to increase node stability (section [Reserved memory flag](#reserved-memory-flag)).
-
-### Policies 
-
-Memory Manager supports two policies. You can select a policy via a `kubelet` flag `--memory-manager-policy`.
-
-Two policies can be selected:
-
-* `None` (default)
-* `Static`
-
-#### None policy {#policy-none}
-
-This is the default policy and does not affect the memory allocation in any way.
-It acts the same as if the Memory Manager is not present at all.
-
-The `None` policy returns default topology hint. This special hint denotes that Hint Provider (Memory Manger in this case) has no preference for NUMA affinity with any resource.
-
-#### Static policy {#policy-static}
-
-In the case of the `Guaranteed` pod, the `Static` Memory Manger policy returns topology hints relating to the set of NUMA nodes where the memory can be guaranteed, and reserves the memory through updating the internal [NodeMap][2] object.
-
-In the case of the `BestEffort` or `Burstable` pod, the `Static` Memory Manager policy sends back the default topology hint as there is no request for the guaranteed memory, and does not reserve the memory in the internal [NodeMap][2] object.
-
-### Reserved memory flag
-
-The [Node Allocatable](/docs/tasks/administer-cluster/reserve-compute-resources/) mechanism is commonly used by node administrators to reserve K8S node system resources for the kubelet or operating system processes in order to enhance the node stability. A dedicated set of flags can be used for this purpose to set the total amount of reserved memory for a node. This pre-configured value is subsequently utilized to calculate the real amount of node's "allocatable" memory available to pods.
-
-The Kubernetes scheduler incorporates "allocatable" to optimise pod scheduling process. The foregoing flags include `--kube-reserved`, `--system-reserved` and `--eviction-threshold`. The sum of their values will account for the total amount of reserved memory.
-
-
-A new `--reserved-memory` flag was added to Memory Manager to allow for this total reserved memory to be split (by a node administrator) and accordingly reserved across many NUMA nodes. 
-
-The flag specifies a comma-separated list of memory reservations per NUMA node.
-This parameter is only useful in the context of the Memory Manager feature. 
-The Memory Manager will not use this reserved memory for the allocation of container workloads.
-
-For example, if you have a NUMA node "NUMA0" with `10Gi` of memory available, and the `--reserved-memory` was specified to reserve `1Gi` of memory at "NUMA0", the Memory Manager assumes that only `9Gi` is available for containers.
-
-You can omit this parameter, however, you should be aware that the quantity of reserved memory from all NUMA nodes should be equal to the quantity of memory specified by the [Node Allocatable feature](/docs/tasks/administer-cluster/reserve-compute-resources/). If at least one node allocatable parameter is non-zero, you will need to specify `--reserved-memory` for at least one NUMA node. In fact, `eviction-hard` threshold value is equal to `100Mi` by default, so if `Static` policy is used, `--reserved-memory` is obligatory.
-
-Also, avoid the following configurations:
-1. duplicates, i.e. the same NUMA node or memory type, but with a different value;
-2. setting zero limit for any of memory types;
-3. NUMA node IDs that do not exist in the machine hardware;
-4. memory type names different than `memory` or `hugepages-<size>` (hugepages of particular `<size>` should also exist).
-
-Syntax: 
-
-`--reserved-memory N:memory-type1=value1,memory-type2=value2,...`
-* `N` (integer) - NUMA node index, e.g. `0`
-* `memory-type` (string) - represents memory type:
-  * `memory` - conventional memory
-  * `hugepages-2Mi` or `hugepages-1Gi` - hugepages 
-* `value` (string) - the quantity of reserved memory, e.g. `1Gi`
-
-Example usage:
-
-`--reserved-memory 0:memory=1Gi,hugepages-1Gi=2Gi`
-
-or
-
-`--reserved-memory 0:memory=1Gi --reserved-memory 1:memory=2Gi`
-
-When you specify values for `--reserved-memory` flag, you must comply with the setting that you prior provided via Node Allocatable Feature flags. That is, the following rule must be obeyed for each memory type: 
-
-`sum(reserved-memory(i)) = kube-reserved + system-reserved + eviction-threshold`, 
-
-where `i` is an index of a NUMA node. 
-
-If you do not follow the formula above, the Memory Manager will show an error on startup.
-
-In other words, the example above illustrates that for the conventional memory (`type=memory`), we reserve `3Gi` in total, i.e.: 
-
-`sum(reserved-memory(i)) = reserved-memory(0) + reserved-memory(1) = 1Gi + 2Gi = 3Gi`
-
-An example of kubelet command-line arguments relevant to the node Allocatable configuration:
-* `--kube-reserved=cpu=500m,memory=50Mi`
-* `--system-reserved=cpu=123m,memory=333Mi`
-* `--eviction-hard=memory.available<500Mi`
-
-{{< note >}} 
-The default hard eviction threshold is 100MiB, and **not** zero. Remember to increase the quantity of memory that you reserve by setting `--reserved-memory` by that hard eviction threshold. Otherwise, the kubelet will not start Memory Manager and display an error. 
-{{< /note >}}
-
-Here is an example of a correct configuration:
-
-```shell
---feature-gates=MemoryManager=true 
---kube-reserved=cpu=4,memory=4Gi 
---system-reserved=cpu=1,memory=1Gi 
---memory-manager-policy=Static 
---reserved-memory 0:memory=3Gi --reserved-memory 1:memory=2148Mi
-```
-Let us validate the configuration above:
-1. `kube-reserved + system-reserved + eviction-hard(default) = reserved-memory(0) + reserved-memory(1)`
-2. `4GiB + 1GiB + 100MiB = 3GiB + 2148MiB`
-3. `5120MiB + 100MiB = 3072MiB + 2148MiB`
-4. `5220MiB = 5220MiB` (which is correct)
-
-## Placing a Pod in the Guaranteed QoS class
-
-If the selected policy is anything other than `None`, the Memory Manager identifies pods that are in the `Guaranteed` QoS class. The Memory Manager provides specific topology hints to the Topology Manager for each `Guaranteed` pod. For pods in a QoS class other than `Guaranteed`, the Memory Manager provides default topology hints to the Topology Manager.
-
-The following excerpts from pod manifests assign a pod to the `Guaranteed` QoS class.
-
-Pod with integer CPU(s) runs in the `Guaranteed` QoS class, when `requests` are equal to `limits`:
-
-```yaml
-spec:
-  containers:
-  - name: nginx
-    image: nginx
-    resources:
-      limits:
-        memory: "200Mi"
-        cpu: "2"
-        example.com/device: "1"
-      requests:
-        memory: "200Mi"
-        cpu: "2"
-        example.com/device: "1"
-```
-
-Also, a pod sharing CPU(s) runs in the `Guaranteed` QoS class, when `requests` are equal to `limits`.
-
-```yaml
-spec:
-  containers:
-  - name: nginx
-    image: nginx
-    resources:
-      limits:
-        memory: "200Mi"
-        cpu: "300m"
-        example.com/device: "1"
-      requests:
-        memory: "200Mi"
-        cpu: "300m"
-        example.com/device: "1"
-```
-
-Notice that both CPU and memory requests must be specified for a Pod to lend it to Guaranteed QoS class.
-
-## Troubleshooting
-
-The following means can be used to troubleshoot the reason why a pod could not be deployed or became rejected at a node:
-- pod status - indicates topology affinity errors
-- system logs - include valuable information for debugging, e.g., about generated hints
-- state file - the dump of internal state of the Memory Manager (includes [Node Map and Memory Maps][2]) 
-- starting from v1.22, the [device plugin resource API](#device-plugin-resource-api) can be used
-  to retrieve information about the memory reserved for containers
-
-
-
-### Pod status (TopologyAffinityError) {#TopologyAffinityError}
-
-This error typically occurs in the following situations:
-* a node has not enough resources available to satisfy the pod's request
-* the pod's request is rejected due to particular Topology Manager policy constraints 
-
-The error appears in the status of a pod:
-```shell
-# kubectl get pods
-NAME         READY   STATUS                  RESTARTS   AGE
-guaranteed   0/1     TopologyAffinityError   0          113s
-```
-
-Use `kubectl describe pod <id>` or `kubectl get events` to obtain detailed error message:
-```shell
-Warning  TopologyAffinityError  10m   kubelet, dell8  Resources cannot be allocated with Topology locality
-```
-
-### System logs
-
-Search system logs with respect to a particular pod.
-
-The set of hints that Memory Manager generated for the pod can be found in the logs. 
-Also, the set of hints generated by CPU Manager should be present in the logs.
-
-Topology Manager merges these hints to calculate a single best hint.
-The best hint should be also present in the logs.
-
-The best hint indicates where to allocate all the resources. Topology Manager tests this hint against its current policy, and based on the verdict, it either admits the pod to the node or rejects it.  
-
-Also, search the logs for occurrences associated with the Memory Manager, e.g. to find out information about `cgroups` and `cpuset.mems` updates.
-
-### Examine the memory manager state on a node
-
-Let us first deploy a sample `Guaranteed` pod whose specification is as follows:
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: guaranteed
-spec:
-  containers:
-  - name: guaranteed
-    image: consumer
-    imagePullPolicy: Never
-    resources:
-      limits:
-        cpu: "2"
-        memory: 150Gi
-      requests:
-        cpu: "2"
-        memory: 150Gi
-    command: ["sleep","infinity"]
-``` 
-
-Next, let us log into the node where it was deployed and examine the state file in `/var/lib/kubelet/memory_manager_state`:
-```json
-{
-   "policyName":"Static",
-   "machineState":{
-      "0":{
-         "numberOfAssignments":1,
-         "memoryMap":{
-            "hugepages-1Gi":{
-               "total":0,
-               "systemReserved":0,
-               "allocatable":0,
-               "reserved":0,
-               "free":0
-            },
-            "memory":{
-               "total":134987354112,
-               "systemReserved":3221225472,
-               "allocatable":131766128640,
-               "reserved":131766128640,
-               "free":0
-            }
-         },
-         "nodes":[
-            0,
-            1
-         ]
-      },
-      "1":{
-         "numberOfAssignments":1,
-         "memoryMap":{
-            "hugepages-1Gi":{
-               "total":0,
-               "systemReserved":0,
-               "allocatable":0,
-               "reserved":0,
-               "free":0
-            },
-            "memory":{
-               "total":135286722560,
-               "systemReserved":2252341248,
-               "allocatable":133034381312,
-               "reserved":29295144960,
-               "free":103739236352
-            }
-         },
-         "nodes":[
-            0,
-            1
-         ]
-      }
-   },
-   "entries":{
-      "fa9bdd38-6df9-4cf9-aa67-8c4814da37a8":{
-         "guaranteed":[
-            {
-               "numaAffinity":[
-                  0,
-                  1
-               ],
-               "type":"memory",
-               "size":161061273600
-            }
-         ]
-      }
-   },
-   "checksum":4142013182
-}
-```
-
-It can be deduced from the state file that the pod was pinned to both NUMA nodes, i.e.:
-
-```json
-"numaAffinity":[
-   0,
-   1
-],
-``` 
-
-Pinned term means that pod's memory consumption is constrained (through `cgroups` configuration) to these NUMA nodes.
-
-This automatically implies that Memory Manager instantiated a new group that comprises these two NUMA nodes, i.e. `0` and `1` indexed NUMA nodes. 
-
-Notice that the management of groups is handled in a relatively complex manner, and further elaboration is provided in Memory Manager KEP in [this][1] and [this][3] sections.
-
-In order to analyse memory resources available in a group, the corresponding entries from NUMA nodes belonging to the group must be added up.  
-
-For example, the total amount of free "conventional" memory in the group can be computed by adding up the free memory available at every NUMA node in the group, i.e., in the `"memory"` section of NUMA node `0` (`"free":0`) and NUMA node `1` (`"free":103739236352`). So, the total amount of free "conventional" memory in this group is equal to `0 + 103739236352` bytes.  
-
-The line `"systemReserved":3221225472` indicates that the administrator of this node reserved `3221225472` bytes (i.e. `3Gi`) to serve kubelet and system processes at NUMA node `0`, by using `--reserved-memory` flag.
-
-### Device plugin resource API
-
-By employing the [API](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/), the information about reserved memory for each container can be retrieved, which is contained in protobuf `ContainerMemory` message. This information can be retrieved solely for pods in Guaranteed QoS class.   
-
-## {{% heading "whatsnext" %}}
-
-- [Memory Manager KEP: Design Overview][4] 
-
-- [Memory Manager KEP: Memory Maps at start-up (with examples)][5]
-
-- [Memory Manager KEP: Memory Maps at runtime (with examples)][6]
-
-- [Memory Manager KEP: Simulation - how the Memory Manager works? (by examples)][1]
-
-- [Memory Manager KEP: The Concept of Node Map and Memory Maps][2]
-
-- [Memory Manager KEP: How to enable the guaranteed memory allocation over many NUMA nodes?][3]
-
-[1]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/1769-memory-manager#simulation---how-the-memory-manager-works-by-examples
-[2]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/1769-memory-manager#the-concept-of-node-map-and-memory-maps
-[3]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/1769-memory-manager#how-to-enable-the-guaranteed-memory-allocation-over-many-numa-nodes
-[4]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/1769-memory-manager#design-overview
-[5]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/1769-memory-manager#memory-maps-at-start-up-with-examples
-[6]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/1769-memory-manager#memory-maps-at-runtime-with-examples
+---
+title: Utilizing the NUMA-aware Memory Manager
+
+reviewers:
+- klueska
+- derekwaynecarr
+
+content_type: task
+min-kubernetes-server-version: v1.21
+---
+
+<!-- overview -->
+
+{{< feature-state state="beta" for_k8s_version="v1.22" >}}
+
+The Kubernetes *Memory Manager* enables the feature of guaranteed memory (and hugepages)
+allocation for pods in the `Guaranteed` {{< glossary_tooltip text="QoS class" term_id="qos-class" >}}.
+
+The Memory Manager employs hint generation protocol to yield the most suitable NUMA affinity for a pod.
+The Memory Manager feeds the central manager (*Topology Manager*) with these affinity hints.
+Based on both the hints and Topology Manager policy, the pod is rejected or admitted to the node.
+
+Moreover, the Memory Manager ensures that the memory which a pod requests
+is allocated from a minimum number of NUMA nodes.
+
+The Memory Manager is only pertinent to Linux based hosts.
+
+## {{% heading "prerequisites" %}}
+
+{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+
+To align memory resources with other requested resources in a Pod spec:
+
+- the CPU Manager should be enabled and proper CPU Manager policy should be configured on a Node.
+  See [control CPU Management Policies](/docs/tasks/administer-cluster/cpu-management-policies/);
+- the Topology Manager should be enabled and proper Topology Manager policy should be configured on a Node.
+  See [control Topology Management Policies](/docs/tasks/administer-cluster/topology-manager/).
+
+Starting from v1.22, the Memory Manager is enabled by default through `MemoryManager`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/).
+
+Preceding v1.22, the `kubelet` must be started with the following flag:
+
+`--feature-gates=MemoryManager=true`
+
+in order to enable the Memory Manager feature.
+
+## How Memory Manager Operates?
+
+The Memory Manager currently offers the guaranteed memory (and hugepages) allocation
+for Pods in Guaranteed QoS class.
+To immediately put the Memory Manager into operation follow the guidelines in the section
+[Memory Manager configuration](#memory-manager-configuration), and subsequently,
+prepare and deploy a `Guaranteed` pod as illustrated in the section
+[Placing a Pod in the Guaranteed QoS class](#placing-a-pod-in-the-guaranteed-qos-class).
+
+The Memory Manager is a Hint Provider, and it provides topology hints for
+the Topology Manager which then aligns the requested resources according to these topology hints.
+It also enforces `cgroups` (i.e. `cpuset.mems`) for pods.
+The complete flow diagram concerning pod admission and deployment process is illustrated in
+[Memory Manager KEP: Design Overview][4] and below:
+
+![Memory Manager in the pod admission and deployment process](/images/docs/memory-manager-diagram.svg)
+
+During this process, the Memory Manager updates its internal counters stored in
+[Node Map and Memory Maps][2] to manage guaranteed memory allocation.
+
+The Memory Manager updates the Node Map during the startup and runtime as follows.
+
+### Startup
+
+This occurs once a node administrator employs `--reserved-memory` (section
+[Reserved memory flag](#reserved-memory-flag)).
+In this case, the Node Map becomes updated to reflect this reservation as illustrated in
+[Memory Manager KEP: Memory Maps at start-up (with examples)][5].
+
+The administrator must provide `--reserved-memory` flag when `Static` policy is configured.
+
+### Runtime
+
+Reference [Memory Manager KEP: Memory Maps at runtime (with examples)][6] illustrates
+how a successful pod deployment affects the Node Map, and it also relates to
+how potential Out-of-Memory (OOM) situations are handled further by Kubernetes or operating system.
+
+Important topic in the context of Memory Manager operation is the management of NUMA groups.
+Each time pod's memory request is in excess of single NUMA node capacity, the Memory Manager
+attempts to create a group that comprises several NUMA nodes and features extend memory capacity.
+The problem has been solved as elaborated in
+[Memory Manager KEP: How to enable the guaranteed memory allocation over many NUMA nodes?][3].
+Also, reference [Memory Manager KEP: Simulation - how the Memory Manager works? (by examples)][1]
+illustrates how the management of groups occurs.
+
+## Memory Manager configuration
+
+Other Managers should be first pre-configured. Next, the Memory Manger feature should be enabled
+and be run with `Static` policy (section [Static policy](#policy-static)).
+Optionally, some amount of memory can be reserved for system or kubelet processes to increase
+node stability (section [Reserved memory flag](#reserved-memory-flag)).
+
+### Policies
+
+Memory Manager supports two policies. You can select a policy via a `kubelet` flag `--memory-manager-policy`:
+
+* `None` (default)
+* `Static`
+
+#### None policy {#policy-none}
+
+This is the default policy and does not affect the memory allocation in any way.
+It acts the same as if the Memory Manager is not present at all.
+
+The `None` policy returns default topology hint. This special hint denotes that Hint Provider
+(Memory Manger in this case) has no preference for NUMA affinity with any resource.
+
+#### Static policy {#policy-static}
+
+In the case of the `Guaranteed` pod, the `Static` Memory Manger policy returns topology hints
+relating to the set of NUMA nodes where the memory can be guaranteed,
+and reserves the memory through updating the internal [NodeMap][2] object.
+
+In the case of the `BestEffort` or `Burstable` pod, the `Static` Memory Manager policy sends back
+the default topology hint as there is no request for the guaranteed memory,
+and does not reserve the memory in the internal [NodeMap][2] object.
+
+### Reserved memory flag
+
+The [Node Allocatable](/docs/tasks/administer-cluster/reserve-compute-resources/) mechanism
+is commonly used by node administrators to reserve K8S node system resources for the kubelet
+or operating system processes in order to enhance the node stability.
+A dedicated set of flags can be used for this purpose to set the total amount of reserved memory
+for a node. This pre-configured value is subsequently utilized to calculate
+the real amount of node's "allocatable" memory available to pods.
+
+The Kubernetes scheduler incorporates "allocatable" to optimise pod scheduling process.
+The foregoing flags include `--kube-reserved`, `--system-reserved` and `--eviction-threshold`.
+The sum of their values will account for the total amount of reserved memory.
+
+A new `--reserved-memory` flag was added to Memory Manager to allow for this total reserved memory
+to be split (by a node administrator) and accordingly reserved across many NUMA nodes.
+
+The flag specifies a comma-separated list of memory reservations of different memory types per NUMA node.
+Memory reservations across multiple NUMA nodes can be specified using semicolon as separator.
+This parameter is only useful in the context of the Memory Manager feature.
+The Memory Manager will not use this reserved memory for the allocation of container workloads.
+
+For example, if you have a NUMA node "NUMA0" with `10Gi` of memory available, and
+the `--reserved-memory` was specified to reserve `1Gi` of memory at "NUMA0",
+the Memory Manager assumes that only `9Gi` is available for containers.
+
+You can omit this parameter, however, you should be aware that the quantity of reserved memory
+from all NUMA nodes should be equal to the quantity of memory specified by the
+[Node Allocatable feature](/docs/tasks/administer-cluster/reserve-compute-resources/).
+If at least one node allocatable parameter is non-zero, you will need to specify
+`--reserved-memory` for at least one NUMA node.
+In fact, `eviction-hard` threshold value is equal to `100Mi` by default, so
+if `Static` policy is used, `--reserved-memory` is obligatory.
+
+Also, avoid the following configurations:
+
+1. duplicates, i.e. the same NUMA node or memory type, but with a different value;
+1. setting zero limit for any of memory types;
+1. NUMA node IDs that do not exist in the machine hardware;
+1. memory type names different than `memory` or `hugepages-<size>`
+   (hugepages of particular `<size>` should also exist).
+
+Syntax:
+
+`--reserved-memory N:memory-type1=value1,memory-type2=value2,...`
+
+* `N` (integer) - NUMA node index, e.g. `0`
+* `memory-type` (string) - represents memory type:
+  * `memory` - conventional memory
+  * `hugepages-2Mi` or `hugepages-1Gi` - hugepages
+* `value` (string) - the quantity of reserved memory, e.g. `1Gi`
+
+Example usage:
+
+`--reserved-memory 0:memory=1Gi,hugepages-1Gi=2Gi`
+
+or
+
+`--reserved-memory 0:memory=1Gi --reserved-memory 1:memory=2Gi`
+
+or
+
+`--reserved-memory '0:memory=1Gi;1:memory=2Gi'`
+
+When you specify values for `--reserved-memory` flag, you must comply with the setting that
+you prior provided via Node Allocatable Feature flags.
+That is, the following rule must be obeyed for each memory type:
+
+`sum(reserved-memory(i)) = kube-reserved + system-reserved + eviction-threshold`,
+
+where `i` is an index of a NUMA node.
+
+If you do not follow the formula above, the Memory Manager will show an error on startup.
+
+In other words, the example above illustrates that for the conventional memory (`type=memory`),
+we reserve `3Gi` in total, i.e.:
+
+`sum(reserved-memory(i)) = reserved-memory(0) + reserved-memory(1) = 1Gi + 2Gi = 3Gi`
+
+An example of kubelet command-line arguments relevant to the node Allocatable configuration:
+
+* `--kube-reserved=cpu=500m,memory=50Mi`
+* `--system-reserved=cpu=123m,memory=333Mi`
+* `--eviction-hard=memory.available<500Mi`
+
+{{< note >}}
+The default hard eviction threshold is 100MiB, and **not** zero.
+Remember to increase the quantity of memory that you reserve by setting `--reserved-memory`
+by that hard eviction threshold. Otherwise, the kubelet will not start Memory Manager and
+display an error.
+{{< /note >}}
+
+Here is an example of a correct configuration:
+
+```shell
+--feature-gates=MemoryManager=true
+--kube-reserved=cpu=4,memory=4Gi
+--system-reserved=cpu=1,memory=1Gi
+--memory-manager-policy=Static
+--reserved-memory '0:memory=3Gi;1:memory=2148Mi'
+```
+
+Let us validate the configuration above:
+
+1. `kube-reserved + system-reserved + eviction-hard(default) = reserved-memory(0) + reserved-memory(1)`
+1. `4GiB + 1GiB + 100MiB = 3GiB + 2148MiB`
+1. `5120MiB + 100MiB = 3072MiB + 2148MiB`
+1. `5220MiB = 5220MiB` (which is correct)
+
+## Placing a Pod in the Guaranteed QoS class
+
+If the selected policy is anything other than `None`, the Memory Manager identifies pods
+that are in the `Guaranteed` QoS class.
+The Memory Manager provides specific topology hints to the Topology Manager for each `Guaranteed` pod.
+For pods in a QoS class other than `Guaranteed`, the Memory Manager provides default topology hints
+to the Topology Manager.
+
+The following excerpts from pod manifests assign a pod to the `Guaranteed` QoS class.
+
+Pod with integer CPU(s) runs in the `Guaranteed` QoS class, when `requests` are equal to `limits`:
+
+```yaml
+spec:
+  containers:
+  - name: nginx
+    image: nginx
+    resources:
+      limits:
+        memory: "200Mi"
+        cpu: "2"
+        example.com/device: "1"
+      requests:
+        memory: "200Mi"
+        cpu: "2"
+        example.com/device: "1"
+```
+
+Also, a pod sharing CPU(s) runs in the `Guaranteed` QoS class, when `requests` are equal to `limits`.
+
+```yaml
+spec:
+  containers:
+  - name: nginx
+    image: nginx
+    resources:
+      limits:
+        memory: "200Mi"
+        cpu: "300m"
+        example.com/device: "1"
+      requests:
+        memory: "200Mi"
+        cpu: "300m"
+        example.com/device: "1"
+```
+
+Notice that both CPU and memory requests must be specified for a Pod to lend it to Guaranteed QoS class.
+
+## Troubleshooting
+
+The following means can be used to troubleshoot the reason why a pod could not be deployed or
+became rejected at a node:
+
+- pod status - indicates topology affinity errors
+- system logs - include valuable information for debugging, e.g., about generated hints
+- state file - the dump of internal state of the Memory Manager
+  (includes [Node Map and Memory Maps][2])
+- starting from v1.22, the [device plugin resource API](#device-plugin-resource-api) can be used
+  to retrieve information about the memory reserved for containers
+
+### Pod status (TopologyAffinityError) {#TopologyAffinityError}
+
+This error typically occurs in the following situations:
+
+* a node has not enough resources available to satisfy the pod's request
+* the pod's request is rejected due to particular Topology Manager policy constraints
+
+The error appears in the status of a pod:
+
+```shell
+kubectl get pods
+```
+
+```none
+NAME         READY   STATUS                  RESTARTS   AGE
+guaranteed   0/1     TopologyAffinityError   0          113s
+```
+
+Use `kubectl describe pod <id>` or `kubectl get events` to obtain detailed error message:
+
+```none
+Warning  TopologyAffinityError  10m   kubelet, dell8  Resources cannot be allocated with Topology locality
+```
+
+### System logs
+
+Search system logs with respect to a particular pod.
+
+The set of hints that Memory Manager generated for the pod can be found in the logs.
+Also, the set of hints generated by CPU Manager should be present in the logs.
+
+Topology Manager merges these hints to calculate a single best hint.
+The best hint should be also present in the logs.
+
+The best hint indicates where to allocate all the resources.
+Topology Manager tests this hint against its current policy, and based on the verdict,
+it either admits the pod to the node or rejects it.
+
+Also, search the logs for occurrences associated with the Memory Manager,
+e.g. to find out information about `cgroups` and `cpuset.mems` updates.
+
+### Examine the memory manager state on a node
+
+Let us first deploy a sample `Guaranteed` pod whose specification is as follows:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: guaranteed
+spec:
+  containers:
+  - name: guaranteed
+    image: consumer
+    imagePullPolicy: Never
+    resources:
+      limits:
+        cpu: "2"
+        memory: 150Gi
+      requests:
+        cpu: "2"
+        memory: 150Gi
+    command: ["sleep","infinity"]
+```
+
+Next, let us log into the node where it was deployed and examine the state file in
+`/var/lib/kubelet/memory_manager_state`:
+
+```json
+{
+   "policyName":"Static",
+   "machineState":{
+      "0":{
+         "numberOfAssignments":1,
+         "memoryMap":{
+            "hugepages-1Gi":{
+               "total":0,
+               "systemReserved":0,
+               "allocatable":0,
+               "reserved":0,
+               "free":0
+            },
+            "memory":{
+               "total":134987354112,
+               "systemReserved":3221225472,
+               "allocatable":131766128640,
+               "reserved":131766128640,
+               "free":0
+            }
+         },
+         "nodes":[
+            0,
+            1
+         ]
+      },
+      "1":{
+         "numberOfAssignments":1,
+         "memoryMap":{
+            "hugepages-1Gi":{
+               "total":0,
+               "systemReserved":0,
+               "allocatable":0,
+               "reserved":0,
+               "free":0
+            },
+            "memory":{
+               "total":135286722560,
+               "systemReserved":2252341248,
+               "allocatable":133034381312,
+               "reserved":29295144960,
+               "free":103739236352
+            }
+         },
+         "nodes":[
+            0,
+            1
+         ]
+      }
+   },
+   "entries":{
+      "fa9bdd38-6df9-4cf9-aa67-8c4814da37a8":{
+         "guaranteed":[
+            {
+               "numaAffinity":[
+                  0,
+                  1
+               ],
+               "type":"memory",
+               "size":161061273600
+            }
+         ]
+      }
+   },
+   "checksum":4142013182
+}
+```
+
+It can be deduced from the state file that the pod was pinned to both NUMA nodes, i.e.:
+
+```json
+"numaAffinity":[
+   0,
+   1
+],
+```
+
+Pinned term means that pod's memory consumption is constrained (through `cgroups` configuration)
+to these NUMA nodes.
+
+This automatically implies that Memory Manager instantiated a new group that
+comprises these two NUMA nodes, i.e. `0` and `1` indexed NUMA nodes.
+
+Notice that the management of groups is handled in a relatively complex manner, and
+further elaboration is provided in Memory Manager KEP in [this][1] and [this][3] sections.
+
+In order to analyse memory resources available in a group,the corresponding entries from
+NUMA nodes belonging to the group must be added up.
+
+For example, the total amount of free "conventional" memory in the group can be computed
+by adding up the free memory available at every NUMA node in the group,
+i.e., in the `"memory"` section of NUMA node `0` (`"free":0`) and NUMA node `1` (`"free":103739236352`).
+So, the total amount of free "conventional" memory in this group is equal to `0 + 103739236352` bytes.
+
+The line `"systemReserved":3221225472` indicates that the administrator of this node reserved
+`3221225472` bytes (i.e. `3Gi`) to serve kubelet and system processes at NUMA node `0`,
+by using `--reserved-memory` flag.
+
+### Device plugin resource API
+
+By employing the [API](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/),
+the information about reserved memory for each container can be retrieved, which is contained
+in protobuf `ContainerMemory` message.
+This information can be retrieved solely for pods in Guaranteed QoS class.
+
+## {{% heading "whatsnext" %}}
+
+- [Memory Manager KEP: Design Overview][4]
+- [Memory Manager KEP: Memory Maps at start-up (with examples)][5]
+- [Memory Manager KEP: Memory Maps at runtime (with examples)][6]
+- [Memory Manager KEP: Simulation - how the Memory Manager works? (by examples)][1]
+- [Memory Manager KEP: The Concept of Node Map and Memory Maps][2]
+- [Memory Manager KEP: How to enable the guaranteed memory allocation over many NUMA nodes?][3]
+
+[1]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/1769-memory-manager#simulation---how-the-memory-manager-works-by-examples
+[2]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/1769-memory-manager#the-concept-of-node-map-and-memory-maps
+[3]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/1769-memory-manager#how-to-enable-the-guaranteed-memory-allocation-over-many-numa-nodes
+[4]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/1769-memory-manager#design-overview
+[5]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/1769-memory-manager#memory-maps-at-start-up-with-examples
+[6]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/1769-memory-manager#memory-maps-at-runtime-with-examples
+
+
diff --git a/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/_index.md b/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/_index.md
index 6a186e3766..b10f75dd9c 100644
--- a/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/_index.md
+++ b/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/_index.md
@@ -1,7 +1,8 @@
 ---
 title: "Migrating from dockershim"
 weight: 10
-content_type: task 
+content_type: task
+no_list: true
 ---
 
 <!-- overview -->
@@ -11,11 +12,36 @@ dockershim to other container runtimes.
 
 Since the announcement of [dockershim deprecation](/blog/2020/12/08/kubernetes-1-20-release-announcement/#dockershim-deprecation)
 in Kubernetes 1.20, there were questions on how this will affect various workloads and Kubernetes
-installations. You can find this blog post useful to understand the problem better: [Dockershim Deprecation FAQ](/blog/2020/12/02/dockershim-faq/)
+installations. Our [Dockershim Removal FAQ](/blog/2022/02/17/dockershim-faq/) is there to help you
+to understand the problem better.
 
-It is recommended to migrate from dockershim to alternative container runtimes.
+Dockershim was removed from Kubernetes with the release of v1.24.
+If you use Docker Engine via dockershim as your container runtime, and wish to upgrade to v1.24,
+it is recommended that you either migrate to another runtime or find an alternative means to obtain Docker Engine support.
 Check out [container runtimes](/docs/setup/production-environment/container-runtimes/)
 section to know your options. Make sure to
 [report issues](https://github.com/kubernetes/kubernetes/issues) you encountered
 with the migration. So the issue can be fixed in a timely manner and your cluster would be
 ready for dockershim removal.
+
+Your cluster might have more than one kind of node, although this is not a common
+configuration.
+
+These tasks will help you to migrate:
+
+* [Check whether Dockershim removal affects you](/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you/)
+* [Migrate Docker Engine nodes from dockershim to cri-dockerd](/docs/tasks/administer-cluster/migrating-from-dockershim/migrate-dockershim-dockerd/)
+* [Migrating telemetry and security agents from dockershim](/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents/)
+
+
+## {{% heading "whatsnext" %}}
+
+* Check out [container runtimes](/docs/setup/production-environment/container-runtimes/)
+  to understand your options for a container runtime.
+* There is a
+  [GitHub issue](https://github.com/kubernetes/kubernetes/issues/106917)
+  to track discussion about the deprecation and removal of dockershim.
+* If you found a defect or other technical concern relating to migrating away from dockershim,
+  you can [report an issue](https://github.com/kubernetes/kubernetes/issues/new/choose)
+  to the Kubernetes project.
+
diff --git a/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/change-runtime-containerd.md b/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/change-runtime-containerd.md
new file mode 100644
index 0000000000..5b6afe04e5
--- /dev/null
+++ b/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/change-runtime-containerd.md
@@ -0,0 +1,171 @@
+---
+title: "Changing the Container Runtime on a Node from Docker Engine to containerd"
+weight: 8
+content_type: task 
+---
+
+This task outlines the steps needed to update your container runtime to containerd from Docker. It
+is applicable for cluster operators running Kubernetes 1.23 or earlier. This also covers an
+example scenario for migrating from dockershim to containerd. Alternative container runtimes
+can be picked from this [page](/docs/setup/production-environment/container-runtimes/).
+
+## {{% heading "prerequisites" %}}
+
+{{% thirdparty-content %}}
+
+Install containerd. For more information see
+[containerd's installation documentation](https://containerd.io/docs/getting-started/)
+and for specific prerequisite follow
+[the containerd guide](/docs/setup/production-environment/container-runtimes/#containerd).
+
+## Drain the node 
+
+```shell
+kubectl drain <node-to-drain> --ignore-daemonsets
+```
+
+Replace `<node-to-drain>` with the name of your node you are draining.
+
+## Stop the Docker daemon
+
+```shell
+systemctl stop kubelet
+systemctl disable docker.service --now
+```
+
+## Install Containerd
+
+Follow the [guide](/docs/setup/production-environment/container-runtimes/#containerd)
+for detailed steps to install containerd.
+
+{{< tabs name="tab-cri-containerd-installation" >}}
+{{% tab name="Linux" %}}
+
+1. Install the `containerd.io` package from the official Docker repositories. 
+   Instructions for setting up the Docker repository for your respective Linux distribution and
+   installing the `containerd.io` package can be found at 
+   [Getting started with containerd](https://github.com/containerd/containerd/blob/main/docs/getting-started.md).
+
+1. Configure containerd:
+
+   ```shell
+   sudo mkdir -p /etc/containerd
+   containerd config default | sudo tee /etc/containerd/config.toml
+   ```
+1. Restart containerd:
+
+   ```shell
+   sudo systemctl restart containerd
+   ```
+{{% /tab %}}
+{{% tab name="Windows (PowerShell)" %}}
+
+Start a Powershell session, set `$Version` to the desired version (ex: `$Version="1.4.3"`), and
+then run the following commands:
+
+1. Download containerd:
+
+   ```powershell
+   curl.exe -L https://github.com/containerd/containerd/releases/download/v$Version/containerd-$Version-windows-amd64.tar.gz -o containerd-windows-amd64.tar.gz
+   tar.exe xvf .\containerd-windows-amd64.tar.gz
+   ```
+
+2. Extract and configure:
+
+   ```powershell
+   Copy-Item -Path ".\bin\" -Destination "$Env:ProgramFiles\containerd" -Recurse -Force
+   cd $Env:ProgramFiles\containerd\
+   .\containerd.exe config default | Out-File config.toml -Encoding ascii
+
+   # Review the configuration. Depending on setup you may want to adjust:
+   # - the sandbox_image (Kubernetes pause image)
+   # - cni bin_dir and conf_dir locations
+   Get-Content config.toml
+
+   # (Optional - but highly recommended) Exclude containerd from Windows Defender Scans
+   Add-MpPreference -ExclusionProcess "$Env:ProgramFiles\containerd\containerd.exe"
+   ```
+
+3. Start containerd:
+
+   ```powershell
+   .\containerd.exe --register-service
+   Start-Service containerd
+   ```
+
+{{% /tab %}}
+{{< /tabs >}}
+
+## Configure the kubelet to use containerd as its container runtime
+
+Edit the file `/var/lib/kubelet/kubeadm-flags.env` and add the containerd runtime to the flags.
+`--container-runtime=remote` and
+`--container-runtime-endpoint=unix:///run/containerd/containerd.sock`.
+
+Users using kubeadm should be aware that the `kubeadm` tool stores the CRI socket for each host as
+an annotation in the Node object for that host. To change it you can execute the following command
+on a machine that has the kubeadm `/etc/kubernetes/admin.conf` file.
+
+```shell
+kubectl edit no <node-name>
+```
+
+This will start a text editor where you can edit the Node object.
+To choose a text editor you can set the `KUBE_EDITOR` environment variable.
+
+- Change the value of `kubeadm.alpha.kubernetes.io/cri-socket` from `/var/run/dockershim.sock`
+  to the CRI socket path of your choice (for example `unix:///run/containerd/containerd.sock`).
+   
+  Note that new CRI socket paths must be prefixed with `unix://` ideally.
+
+- Save the changes in the text editor, which will update the Node object.
+
+## Restart the kubelet
+
+```shell
+systemctl start kubelet
+```
+
+## Verify that the node is healthy
+
+Run `kubectl get nodes -o wide` and containerd appears as the runtime for the node we just changed.
+
+## Remove Docker Engine
+
+{{% thirdparty-content %}}
+
+Finally if everything goes well, remove Docker.
+
+{{< tabs name="tab-remove-docker-engine" >}}
+{{% tab name="CentOS" %}}
+
+```shell
+sudo yum remove docker-ce docker-ce-cli
+```
+{{% /tab %}}
+{{% tab name="Debian" %}}
+
+```shell
+sudo apt-get purge docker-ce docker-ce-cli
+```
+{{% /tab %}}
+{{% tab name="Fedora" %}}
+
+```shell
+sudo dnf remove docker-ce docker-ce-cli
+```
+{{% /tab %}}
+{{% tab name="Ubuntu" %}}
+
+```shell
+sudo apt-get purge docker-ce docker-ce-cli
+```
+{{% /tab %}}
+{{< /tabs >}}
+
+The preceding commands don't remove images, containers, volumes, or customized configuration files on your host.
+To delete them, follow Docker's instructions to [Uninstall Docker Engine](https://docs.docker.com/engine/install/ubuntu/#uninstall-docker-engine).
+
+{{< caution >}}
+Docker's instructions for uninstalling Docker Engine create a risk of deleting containerd. Be careful when executing commands.
+{{< /caution >}}
diff --git a/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-deprecation-affects-you.md b/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you.md
similarity index 79%
rename from content/en/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-deprecation-affects-you.md
rename to content/en/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you.md
index fe9fd8b0c4..e66e636eca 100644
--- a/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-deprecation-affects-you.md
+++ b/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you.md
@@ -1,6 +1,6 @@
 ---
-title: Check whether Dockershim deprecation affects you
-content_type: task 
+title: Check whether dockershim removal affects you
+content_type: task
 reviewers:
 - SergeyKanzhelev
 weight: 20
@@ -10,11 +10,11 @@ weight: 20
 
 The `dockershim` component of Kubernetes allows to use Docker as a Kubernetes's
 {{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}.
-Kubernetes' built-in `dockershim` component was deprecated in release v1.20.
+Kubernetes' built-in `dockershim` component was removed in release v1.24.
 
 This page explains how your cluster could be using Docker as a container runtime,
 provides details on the role that `dockershim` plays when in use, and shows steps
-you can take to check whether any workloads could be affected by `dockershim` deprecation.
+you can take to check whether any workloads could be affected by `dockershim` removal.
 
 ## Finding if your app has a dependencies on Docker {#find-docker-dependencies}
 
@@ -26,16 +26,21 @@ When alternative container runtime is used, executing Docker commands may either
 not work or yield unexpected output. This is how you can find whether you have a
 dependency on Docker:
 
-1. Make sure no privileged Pods execute Docker commands.
-2. Check that scripts and apps running on nodes outside of Kubernetes
+1. Make sure no privileged Pods execute Docker commands (like `docker ps`),
+   restart the Docker service (commands such as `systemctl restart docker.service`),
+   or modify Docker-specific files such as `/etc/docker/daemon.json`.
+1. Check for any private registries or image mirror settings in the Docker
+   configuration file (like `/etc/docker/daemon.json`). Those typically need to
+   be reconfigured for another container runtime.
+1. Check that scripts and apps running on nodes outside of your Kubernetes
    infrastructure do not execute Docker commands. It might be:
    - SSH to nodes to troubleshoot;
    - Node startup scripts;
    - Monitoring and security agents installed on nodes directly.
-3. Third-party tools that perform above mentioned privileged operations. See
+1. Third-party tools that perform above mentioned privileged operations. See
    [Migrating telemetry and security agents from dockershim](/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents)
    for more information.
-4. Make sure there is no indirect dependencies on dockershim behavior.
+1. Make sure there is no indirect dependencies on dockershim behavior.
    This is an edge case and unlikely to affect your application. Some tooling may be configured
    to react to Docker-specific behaviors, for example, raise alert on specific metrics or search for
    a specific log message as part of troubleshooting instructions.
@@ -83,3 +88,8 @@ You can still pull images or build them using `docker build` command. But images
 built or pulled by Docker would not be visible to container runtime and
 Kubernetes. They needed to be pushed to some registry to allow them to be used
 by Kubernetes.
+
+## {{% heading "whatsnext" %}}
+
+- Read [Migrating from dockershim](/docs/tasks/administer-cluster/migrating-from-dockershim/) to understand your next steps
+- Read the [dockershim deprecation FAQ](/blog/2020/12/02/dockershim-faq/) article for more information.
diff --git a/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use.md b/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use.md
new file mode 100644
index 0000000000..c4247f085a
--- /dev/null
+++ b/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use.md
@@ -0,0 +1,99 @@
+---
+title: Find Out What Container Runtime is Used on a Node
+content_type: task
+reviewers:
+- SergeyKanzhelev
+weight: 10
+---
+
+<!-- overview -->
+
+This page outlines steps to find out what [container runtime](/docs/setup/production-environment/container-runtimes/)
+the nodes in your cluster use.
+
+Depending on the way you run your cluster, the container runtime for the nodes may
+have been pre-configured or you need to configure it. If you're using a managed
+Kubernetes service, there might be vendor-specific ways to check what container runtime is
+configured for the nodes. The method described on this page should work whenever
+the execution of `kubectl` is allowed.
+
+## {{% heading "prerequisites" %}}
+
+Install and configure `kubectl`. See [Install Tools](/docs/tasks/tools/#kubectl) section for details.
+
+## Find out the container runtime used on a Node
+
+Use `kubectl` to fetch and show node information:
+
+```shell
+kubectl get nodes -o wide
+```
+
+The output is similar to the following. The column `CONTAINER-RUNTIME` outputs
+the runtime and its version.
+
+For Docker Engine, the output is similar to this:
+
+```none
+NAME         STATUS   VERSION    CONTAINER-RUNTIME
+node-1       Ready    v1.16.15   docker://19.3.1
+node-2       Ready    v1.16.15   docker://19.3.1
+node-3       Ready    v1.16.15   docker://19.3.1
+```
+If your runtime shows as Docker Engine, you still might not be affected by the
+removal of dockershim in Kubernetes v1.24. [Check the runtime
+endpoint](#which-endpoint) to see if you use dockershim. If you don't use
+dockershim, you aren't affected. 
+
+For containerd, the output is similar to this:
+
+```none
+NAME         STATUS   VERSION   CONTAINER-RUNTIME
+node-1       Ready    v1.19.6   containerd://1.4.1
+node-2       Ready    v1.19.6   containerd://1.4.1
+node-3       Ready    v1.19.6   containerd://1.4.1
+```
+
+Find out more information about container runtimes
+on [Container Runtimes](/docs/setup/production-environment/container-runtimes/)
+page.
+
+## Find out what container runtime endpoint you use {#which-endpoint}
+
+The container runtime talks to the kubelet over a Unix socket using the [CRI
+protocol](/docs/concepts/architecture/cri/), which is based on the gRPC
+framework. The kubelet acts as a client, and the runtime acts as the server.
+In some cases, you might find it useful to know which socket your nodes use. For
+example, with the removal of dockershim in Kubernetes v1.24 and later, you might
+want to know whether you use Docker Engine with dockershim.
+
+{{<note>}}
+If you currently use Docker Engine in your nodes with `cri-dockerd`, you aren't
+affected by the dockershim removal.
+{{</note>}}
+
+You can check which socket you use by checking the kubelet configuration on your
+nodes.
+
+1.  Read the starting commands for the kubelet process:
+
+    ```
+    tr \\0 ' ' < /proc/"$(pgrep kubelet)"/cmdline
+    ```
+    If you don't have `tr` or `pgrep`, check the command line for the kubelet
+    process manually.
+
+1.  In the output, look for the `--container-runtime` flag and the
+    `--container-runtime-endpoint` flag.
+
+    *   If your nodes use Kubernetes v1.23 and earlier and these flags aren't
+        present or if the `--container-runtime` flag is not `remote`,
+        you use the dockershim socket with Docker Engine.
+    *   If the `--container-runtime-endpoint` flag is present, check the socket
+        name to find out which runtime you use. For example,
+        `unix:///run/containerd/containerd.sock` is the containerd endpoint.
+
+If you want to change the Container Runtime on a Node from Docker Engine to containerd,
+you can find out more information on [migrating from Docker Engine to  containerd](/docs/tasks/administer-cluster/migrating-from-dockershim/change-runtime-containerd/),
+or, if you want to continue using Docker Engine in Kubernetes v1.24 and later, migrate to a
+CRI-compatible adapter like [`cri-dockerd`](https://github.com/Mirantis/cri-dockerd).
\ No newline at end of file
diff --git a/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/migrate-dockershim-dockerd.md b/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/migrate-dockershim-dockerd.md
new file mode 100644
index 0000000000..b9bdcd9a2d
--- /dev/null
+++ b/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/migrate-dockershim-dockerd.md
@@ -0,0 +1,121 @@
+---
+title: "Migrate Docker Engine nodes from dockershim to cri-dockerd"
+weight: 9
+content_type: task 
+---
+
+{{% thirdparty-content %}}
+
+This page shows you how to migrate your Docker Engine nodes to use `cri-dockerd`
+instead of dockershim. You should follow these steps in these scenarios:
+
+ * You want to switch away from dockershim and still use Docker Engine to run
+    containers in Kubernetes.
+ * You want to upgrade to Kubernetes v{{< skew currentVersion >}} and your
+    existing cluster relies on dockershim, in which case you must migrate 
+    from dockershim and `cri-dockerd` is one of your options.
+
+To learn more about the removal of dockershim, read the [FAQ page](/dockershim).
+
+## What is cri-dockerd? {#what-is-cri-dockerd}
+
+In Kubernetes 1.23 and earlier, you could use Docker Engine with Kubernetes,
+relying on a built-in component of Kubernetes named _dockershim_.
+The dockershim component was removed in the Kubernetes 1.24 release; however,
+a third-party replacement, `cri-dockerd`, is available. The `cri-dockerd` adapter
+lets you use Docker Engine through the {{<glossary_tooltip term_id="cri" text="Container Runtime Interface">}}.
+
+{{<note>}}
+If you already use `cri-dockerd`, you aren't affected by the dockershim removal.
+Before you begin, [Check whether your nodes use the dockershim](/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use/).
+{{</note>}}
+
+If you want to migrate to `cri-dockerd` so that you can continue using Docker
+Engine as your container runtime, you should do the following for each affected
+node: 
+
+1.  Install `cri-dockerd`.
+1.  Cordon and drain the node.
+1.  Configure the kubelet to use `cri-dockerd`. 
+1.  Restart the kubelet.
+1.  Verify that the node is healthy.
+
+Test the migration on non-critical nodes first.
+
+You should perform the following steps for each node that you want to migrate
+to `cri-dockerd`.
+
+## {{% heading "prerequisites" %}}
+
+*   [`cri-dockerd`](https://github.com/mirantis/cri-dockerd#build-and-install)
+    installed and started on each node.
+*   A [network plugin](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/).
+
+## Cordon and drain the node
+
+1.  Cordon the node to stop new Pods scheduling on it:
+
+    ```shell
+    kubectl cordon <NODE_NAME>
+    ```
+    Replace `<NODE_NAME>` with the name of the node.
+
+1.  Drain the node to safely evict running Pods: 
+
+    ```shell
+    kubectl drain <NODE_NAME> \
+        --ignore-daemonsets
+    ```
+
+## Configure the kubelet to use cri-dockerd
+
+The following steps apply to clusters set up using the kubeadm tool. If you use
+a different tool, you should modify the kubelet using the configuration
+instructions for that tool.
+
+1.  Open `/var/lib/kubelet/kubeadm-flags.env` on each affected node.
+1.  Modify the `--container-runtime-endpoint` flag to
+    `unix:///var/run/cri-dockerd.sock`.
+
+The kubeadm tool stores the node's socket as an annotation on the `Node` object
+in the control plane. To modify this socket for each affected node:  
+
+1.  Edit the YAML representation of the `Node` object:
+
+    ```shell
+    KUBECONFIG=/path/to/admin.conf kubectl edit no <NODE_NAME>
+    ```
+    Replace the following:
+    
+    *   `/path/to/admin.conf`: the path to the kubectl configuration file,
+        `admin.conf`.
+    *   `<NODE_NAME>`: the name of the node you want to modify.
+
+1.  Change `kubeadm.alpha.kubernetes.io/cri-socket` from
+    `/var/run/dockershim.sock` to `unix:///var/run/cri-dockerd.sock`.
+1.  Save the changes. The `Node` object is updated on save.
+
+## Restart the kubelet
+
+```shell
+systemctl restart kubelet
+```
+
+## Verify that the node is healthy
+
+To check whether the node uses the `cri-dockerd` endpoint, follow the
+instructions in [Find out which runtime you use](/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use/).
+The `--container-runtime-endpoint` flag for the kubelet should be `unix:///var/run/cri-dockerd.sock`.
+
+## Uncordon the node
+
+Uncordon the node to let Pods schedule on it: 
+
+```shell
+kubectl uncordon <NODE_NAME>
+```
+
+## {{% heading "whatsnext" %}}
+
+*   Read the [dockershim removal FAQ](/dockershim/).
+*   [Learn how to migrate from Docker Engine with dockershim to containerd](/docs/tasks/administer-cluster/migrating-from-dockershim/change-runtime-containerd/).
\ No newline at end of file
diff --git a/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents.md b/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents.md
index ddfefb6f49..496f25fa0c 100644
--- a/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents.md
+++ b/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents.md
@@ -8,37 +8,44 @@ weight: 70
 
 <!-- overview -->
 
-With Kubernetes 1.20 dockershim was deprecated. From the
-[Dockershim Deprecation FAQ](/blog/2020/12/02/dockershim-faq/)
-you might already know that most apps do not have a direct dependency on runtime hosting
-containers. However, there are still a lot of telemetry and security agents
-that has a dependency on docker to collect containers metadata, logs and
+{{% thirdparty-content %}}
+
+Kubernetes' support for direct integration with Docker Engine is deprecated and
+has been removed. Most apps do not have a direct dependency on runtime hosting
+containers. However, there are still a lot of telemetry and monitoring agents
+that have a dependency on Docker to collect containers metadata, logs, and
 metrics. This document aggregates information on how to detect these
-dependencies and links on how to migrate these agents to use generic tools or
+dependencies as well as links on how to migrate these agents to use generic tools or
 alternative runtimes.
 
 ## Telemetry and security agents
 
-There are a few ways agents may run on Kubernetes cluster. Agents may run on
-nodes directly or as DaemonSets.
+Within a Kubernetes cluster there are a few different ways to run telemetry or
+security agents.  Some agents have a direct dependency on Docker Engine when
+they run as DaemonSets or directly on nodes.
 
-### Why do telemetry agents rely on Docker?
+### Why do some telemetry agents communicate with Docker Engine?
 
-Historically, Kubernetes was built on top of Docker. Kubernetes is managing
-networking and scheduling, Docker was placing and operating containers on a
-node. So you can get scheduling-related metadata like a pod name from Kubernetes
-and containers state information from Docker. Over time more runtimes were
-created to manage containers. Also there are projects and Kubernetes features
-that generalize container status information extraction across many runtimes.
+Historically, Kubernetes was written to work specifically with Docker Engine.
+Kubernetes took care of networking and scheduling, relying on Docker Engine for
+launching and running containers (within Pods) on a node. Some information that
+is relevant to telemetry, such as a pod name, is only available from Kubernetes
+components. Other data, such as container metrics, is not the responsibility of
+the container runtime. Early telemetry agents needed to query the container
+runtime *and* Kubernetes to report an accurate picture. Over time, Kubernetes
+gained the ability to support multiple runtimes, and now supports any runtime
+that is compatible with the [container runtime interface](/docs/concepts/architecture/cri/).
 
-Some agents are tied specifically to the Docker tool. The agents may run
-commands like [`docker ps`](https://docs.docker.com/engine/reference/commandline/ps/)
+Some telemetry agents rely specifically on Docker Engine tooling. For example, an agent
+might run a command such as
+[`docker ps`](https://docs.docker.com/engine/reference/commandline/ps/)
 or [`docker top`](https://docs.docker.com/engine/reference/commandline/top/) to list
-containers and processes or [docker logs](https://docs.docker.com/engine/reference/commandline/logs/)
-to subscribe on docker logs. With the deprecating of Docker as a container runtime,
+containers and processes or [`docker logs`](https://docs.docker.com/engine/reference/commandline/logs/)
+to receive streamed logs. If nodes in your existing cluster use
+Docker Engine, and you switch to a different container runtime,
 these commands will not work any longer.
 
-### Identify DaemonSets that depend on Docker {#identify-docker-dependency}
+### Identify DaemonSets that depend on Docker Engine {#identify-docker-dependency}
 
 If a pod wants to make calls to the `dockerd` running on the node, the pod must either:
 
@@ -52,7 +59,7 @@ For example: on COS images, Docker exposes its Unix domain socket at
 
 Here's a sample shell script to find Pods that have a mount directly mapping the
 Docker socket. This script outputs the namespace and name of the pod. You can
-remove the grep `/var/run/docker.sock` to review other mounts.
+remove the `grep '/var/run/docker.sock'` to review other mounts.
 
 ```bash
 kubectl get pods --all-namespaces \
@@ -70,12 +77,90 @@ The script above only detects the most common uses.
 
 ### Detecting Docker dependency from node agents
 
-In case your cluster nodes are customized and install additional security and
-telemetry agents on the node, make sure to check with the vendor of the agent whether it has dependency on Docker.
+If your cluster nodes are customized and install additional security and
+telemetry agents on the node, check with the agent vendor
+to verify whether it has any dependency on Docker.
 
 ### Telemetry and security agent vendors
 
+This section is intended to aggregate information about various telemetry and
+security agents that may have a dependency on container runtimes.
+
 We keep the work in progress version of migration instructions for various telemetry and security agent vendors
 in [Google doc](https://docs.google.com/document/d/1ZFi4uKit63ga5sxEiZblfb-c23lFhvy6RXVPikS8wf0/edit#).
 Please contact the vendor to get up to date instructions for migrating from dockershim.
 
+## Migration from dockershim
+
+### [Aqua](https://www.aquasec.com)
+
+No changes are needed: everything should work seamlessly on the runtime switch.
+
+### [Datadog](https://www.datadoghq.com/product/)
+
+How to migrate:
+[Docker deprecation in Kubernetes](https://docs.datadoghq.com/agent/guide/docker-deprecation/)
+The pod that accesses Docker Engine may have a name containing any of:
+
+- `datadog-agent`
+- `datadog`
+- `dd-agent`
+
+### [Dynatrace](https://www.dynatrace.com/)
+
+How to migrate:
+[Migrating from Docker-only to generic container metrics in Dynatrace](https://community.dynatrace.com/t5/Best-practices/Migrating-from-Docker-only-to-generic-container-metrics-in/m-p/167030#M49)
+
+Containerd support announcement: [Get automated full-stack visibility into
+containerd-based Kubernetes
+environments](https://www.dynatrace.com/news/blog/get-automated-full-stack-visibility-into-containerd-based-kubernetes-environments/)
+
+CRI-O support announcement: [Get automated full-stack visibility into your CRI-O Kubernetes containers (Beta)](https://www.dynatrace.com/news/blog/get-automated-full-stack-visibility-into-your-cri-o-kubernetes-containers-beta/)
+
+The pod accessing Docker may have name containing: 
+- `dynatrace-oneagent`
+
+### [Falco](https://falco.org)
+
+How to migrate:
+
+[Migrate Falco from dockershim](https://falco.org/docs/getting-started/deployment/#docker-deprecation-in-kubernetes)
+Falco supports any CRI-compatible runtime (containerd is used in the default configuration); the documentation explains all details.
+The pod accessing Docker may have name containing: 
+- `falco`
+
+### [Prisma Cloud Compute](https://docs.paloaltonetworks.com/prisma/prisma-cloud.html)
+
+Check [documentation for Prisma Cloud](https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin-compute/install/install_kubernetes.html),
+under the "Install Prisma Cloud on a CRI (non-Docker) cluster" section.
+The pod accessing Docker may be named like:
+- `twistlock-defender-ds`
+
+### [SignalFx (Splunk)](https://www.splunk.com/en_us/investor-relations/acquisitions/signalfx.html)
+
+The SignalFx Smart Agent (deprecated) uses several different monitors for Kubernetes including
+`kubernetes-cluster`, `kubelet-stats/kubelet-metrics`, and `docker-container-stats`.
+The `kubelet-stats` monitor was previously deprecated by the vendor, in favor of `kubelet-metrics`.
+The `docker-container-stats` monitor is the one affected by dockershim removal.
+Do not use the `docker-container-stats` with container runtimes other than Docker Engine.
+
+
+How to migrate from dockershim-dependent agent:
+1. Remove `docker-container-stats` from the list of [configured monitors](https://github.com/signalfx/signalfx-agent/blob/main/docs/monitor-config.md).
+   Note, keeping this monitor enabled with non-dockershim runtime will result in incorrect metrics
+   being reported when docker is installed on node and no metrics when docker is not installed.
+2. [Enable and configure `kubelet-metrics`](https://github.com/signalfx/signalfx-agent/blob/main/docs/monitors/kubelet-metrics.md) monitor.
+
+
+{{< note >}}
+The set of collected metrics will change. Review your alerting rules and dashboards.
+{{< /note >}}
+
+The Pod accessing Docker may be named something like:
+
+- `signalfx-agent`
+
+### Yahoo Kubectl Flame
+
+Flame does not support container runtimes other than Docker. See
+[https://github.com/yahoo/kubectl-flame/issues/51](https://github.com/yahoo/kubectl-flame/issues/51)
diff --git a/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/troubleshooting-cni-plugin-related-errors.md b/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/troubleshooting-cni-plugin-related-errors.md
new file mode 100644
index 0000000000..91a471290d
--- /dev/null
+++ b/content/en/docs/tasks/administer-cluster/migrating-from-dockershim/troubleshooting-cni-plugin-related-errors.md
@@ -0,0 +1,145 @@
+---
+title: Troubleshooting CNI plugin-related errors
+content_type: task
+reviewers:
+- mikebrow
+- divya-mohan0209
+weight: 10
+---
+
+<!-- overview -->
+
+To avoid CNI plugin-related errors, verify that you are using or upgrading to a
+container runtime that has been tested to work correctly with your version of
+Kubernetes.
+
+For example, the following container runtimes are being prepared, or have already been prepared, for Kubernetes v1.24:
+
+* containerd v1.6.4 and later, v1.5.11 and later
+* The CRI-O v1.24.0 and later
+
+## About the "Incompatible CNI versions" and "Failed to destroy network for sandbox" errors
+
+Service issues exist for pod CNI network setup and tear down in containerd
+v1.6.0-v1.6.3 when the CNI plugins have not been upgraded and/or the CNI config
+version is not declared in the CNI config files. The containerd team reports, "these issues are resolved in containerd v1.6.4."
+
+With containerd v1.6.0-v1.6.3, if you do not upgrade the CNI plugins and/or
+declare the CNI config version, you might encounter the following "Incompatible
+CNI versions" or "Failed to destroy network for sandbox" error conditions.
+
+### Incompatible CNI versions error
+
+If the version of your CNI plugin does not correctly match the plugin version in
+the config because the config version is later than the plugin version, the
+containerd log will likely show an error message on startup of a pod similar
+to:
+
+```
+incompatible CNI versions; config is \"1.0.0\", plugin supports [\"0.1.0\" \"0.2.0\" \"0.3.0\" \"0.3.1\" \"0.4.0\"]"
+```
+
+To fix this issue, [update your CNI plugins and CNI config files](#updating-your-cni-plugins-and-cni-config-files).
+
+### Failed to destroy network for sandbox error
+
+If the version of the plugin is missing in the CNI plugin config, the pod may
+run. However, stopping the pod generates an error similar to:
+
+```
+ERRO[2022-04-26T00:43:24.518165483Z] StopPodSandbox for "b" failed
+error="failed to destroy network for sandbox \"bbc85f891eaf060c5a879e27bba9b6b06450210161dfdecfbb2732959fb6500a\": invalid version \"\": the version is empty"
+```
+
+This error leaves the pod in the not-ready state with a network namespace still
+attached. To recover from this problem, [edit the CNI config file](#updating-your-cni-plugins-and-cni-config-files) to add
+the missing version information. The next attempt to stop the pod should
+be successful.
+
+### Updating your CNI plugins and CNI config files
+
+If you're using containerd v1.6.0-v1.6.3 and encountered "Incompatible CNI
+versions" or "Failed to destroy network for sandbox" errors, consider updating
+your CNI plugins and editing the CNI config files.
+
+Here's an overview of the typical steps for each node:
+
+1. [Safely drain and cordon the
+node](/docs/tasks/administer-cluster/safely-drain-node/).
+2. After stopping your container runtime and kubelet services, perform the
+following upgrade operations:
+  - If you're running CNI plugins, upgrade them to the latest version.
+  - If you're using non-CNI plugins, replace them with CNI plugins. Use the
+  latest version of the plugins.
+  - Update the plugin configuration file to specify or match a version of the
+  CNI specification that the plugin supports, as shown in the following ["An
+  example containerd configuration
+  file"](#an-example-containerd-configuration-file) section.
+  - For `containerd`, ensure that you have installed the latest version (v1.0.0
+  or later) of the CNI loopback plugin.
+  - Upgrade node components (for example, the kubelet) to Kubernetes v1.24
+  - Upgrade to or install the most current version of the container runtime.
+3. Bring the node back into your cluster by restarting your container runtime
+and kubelet. Uncordon the node (`kubectl uncordon <nodename>`).
+
+## An example containerd configuration file
+
+The following example shows a configuration for `containerd` runtime v1.6.x,
+which supports a recent version of the CNI specification (v1.0.0).
+
+Please see the documentation from your plugin and networking provider for
+further instructions on configuring your system.
+
+On Kubernetes, containerd runtime adds a loopback interface, `lo`, to pods as a
+default behavior. The containerd runtime configures the loopback interface via a
+CNI plugin, `loopback`. The `loopback` plugin is distributed as part of the
+`containerd` release packages that have the `cni` designation. `containerd`
+v1.6.0 and later includes a CNI v1.0.0-compatible loopback plugin as well as
+other default CNI plugins. The configuration for the loopback plugin is done
+internally by containerd, and is set to use CNI v1.0.0. This also means that the
+version of the `loopback` plugin must be v1.0.0 or later when this newer version
+`containerd` is started.
+
+The following bash command generates an example CNI config. Here, the 1.0.0
+value for the config version is assigned to the `cniVersion` field for use when
+`containerd` invokes the CNI bridge plugin.
+
+```bash
+cat << EOF | tee /etc/cni/net.d/10-containerd-net.conflist
+{
+ "cniVersion": "1.0.0",
+ "name": "containerd-net",
+ "plugins": [
+   {
+     "type": "bridge",
+     "bridge": "cni0",
+     "isGateway": true,
+     "ipMasq": true,
+     "promiscMode": true,
+     "ipam": {
+       "type": "host-local",
+       "ranges": [
+         [{
+           "subnet": "10.88.0.0/16"
+         }],
+         [{
+           "subnet": "2001:db8:4860::/64"
+         }]
+       ],
+       "routes": [
+         { "dst": "0.0.0.0/0" },
+         { "dst": "::/0" }
+       ]
+     }
+   },
+   {
+     "type": "portmap",
+     "capabilities": {"portMappings": true}
+   }
+ ]
+}
+EOF
+```
+
+Update the IP address ranges in the preceding example with ones that are based
+on your use case and network addressing plan.
diff --git a/content/en/docs/tasks/administer-cluster/namespaces.md b/content/en/docs/tasks/administer-cluster/namespaces.md
index 231de37e26..a91a51e95a 100644
--- a/content/en/docs/tasks/administer-cluster/namespaces.md
+++ b/content/en/docs/tasks/administer-cluster/namespaces.md
@@ -71,7 +71,7 @@ to define *Hard* resource usage limits that a *Namespace* may consume.
 A limit range defines min/max constraints on the amount of resources a single entity can consume in
 a *Namespace*.
 
-See [Admission control: Limit Range](https://git.k8s.io/community/contributors/design-proposals/resource-management/admission_control_limit_range.md)
+See [Admission control: Limit Range](https://git.k8s.io/design-proposals-archive/resource-management/admission_control_limit_range.md)
 
 A namespace can be in one of two phases:
 
@@ -112,7 +112,7 @@ The name of your namespace must be a valid
 
 There's an optional field `finalizers`, which allows observables to purge resources whenever the namespace is deleted. Keep in mind that if you specify a nonexistent finalizer, the namespace will be created but will get stuck in the `Terminating` state if the user tries to delete it.
 
-More information on `finalizers` can be found in the namespace [design doc](https://git.k8s.io/community/contributors/design-proposals/architecture/namespaces.md#finalizers).
+More information on `finalizers` can be found in the namespace [design doc](https://git.k8s.io/design-proposals-archive/architecture/namespaces.md#finalizers).
 
 ## Deleting a namespace
 
@@ -314,7 +314,7 @@ across namespaces, you need to use the fully qualified domain name (FQDN).
 
 * Learn more about [setting the namespace preference](/docs/concepts/overview/working-with-objects/namespaces/#setting-the-namespace-preference).
 * Learn more about [setting the namespace for a request](/docs/concepts/overview/working-with-objects/namespaces/#setting-the-namespace-for-a-request)
-* See [namespaces design](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/architecture/namespaces.md).
+* See [namespaces design](https://git.k8s.io/design-proposals-archive/architecture/namespaces.md).
 
 
 
diff --git a/content/en/docs/tasks/administer-cluster/nodelocaldns.md b/content/en/docs/tasks/administer-cluster/nodelocaldns.md
index 33417b00ad..ba01908069 100644
--- a/content/en/docs/tasks/administer-cluster/nodelocaldns.md
+++ b/content/en/docs/tasks/administer-cluster/nodelocaldns.md
@@ -3,92 +3,171 @@ reviewers:
 - bowei
 - zihongz
 - sftim
-title: Using NodeLocal DNSCache in Kubernetes clusters
+title: Using NodeLocal DNSCache in Kubernetes Clusters
 content_type: task
 ---
  
 <!-- overview -->
+
 {{< feature-state for_k8s_version="v1.18" state="stable" >}}
+
 This page provides an overview of NodeLocal DNSCache feature in Kubernetes.
 
-
-
 ## {{% heading "prerequisites" %}}
 
-
- {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
+{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
  <!-- steps -->
 
 ## Introduction
 
-NodeLocal DNSCache improves Cluster DNS performance by running a dns caching agent on cluster nodes as a DaemonSet. In today's architecture, Pods in ClusterFirst DNS mode reach out to a kube-dns serviceIP for DNS queries. This is translated to a kube-dns/CoreDNS endpoint via iptables rules added by kube-proxy. With this new architecture, Pods will reach out to the dns caching agent running on the same node, thereby avoiding iptables DNAT rules and connection tracking. The local caching agent will query kube-dns service for cache misses of cluster hostnames(cluster.local suffix by default).
-
+NodeLocal DNSCache improves Cluster DNS performance by running a DNS caching agent
+on cluster nodes as a DaemonSet. In today's architecture, Pods in 'ClusterFirst' DNS mode
+reach out to a kube-dns `serviceIP` for DNS queries. This is translated to a
+kube-dns/CoreDNS endpoint via iptables rules added by kube-proxy.
+With this new architecture, Pods will reach out to the DNS caching agent
+running on the same node, thereby avoiding iptables DNAT rules and connection tracking.
+The local caching agent will query kube-dns service for cache misses of cluster
+hostnames ("`cluster.local`" suffix by default).
 
 ## Motivation
 
-* With the current DNS architecture, it is possible that Pods with the highest DNS QPS have to reach out to a different node, if there is no local kube-dns/CoreDNS instance.
-Having a local cache will help improve the latency in such scenarios.
+* With the current DNS architecture, it is possible that Pods with the highest DNS QPS
+  have to reach out to a different node, if there is no local kube-dns/CoreDNS instance.
+  Having a local cache will help improve the latency in such scenarios.
 
-* Skipping iptables DNAT and connection tracking will help reduce [conntrack races](https://github.com/kubernetes/kubernetes/issues/56903) and avoid UDP DNS entries filling up conntrack table.
+* Skipping iptables DNAT and connection tracking will help reduce
+  [conntrack races](https://github.com/kubernetes/kubernetes/issues/56903)
+  and avoid UDP DNS entries filling up conntrack table.
 
-* Connections from local caching agent to kube-dns service can be upgraded to TCP. TCP conntrack entries will be removed on connection close in contrast with UDP entries that have to timeout ([default](https://www.kernel.org/doc/Documentation/networking/nf_conntrack-sysctl.txt) `nf_conntrack_udp_timeout` is 30 seconds)
+* Connections from the local caching agent to kube-dns service can be upgraded to TCP.
+  TCP conntrack entries will be removed on connection close in contrast with
+  UDP entries that have to timeout
+  ([default](https://www.kernel.org/doc/Documentation/networking/nf_conntrack-sysctl.txt)
+  `nf_conntrack_udp_timeout` is 30 seconds)
 
-* Upgrading DNS queries from UDP to TCP would reduce tail latency attributed to dropped UDP packets and DNS timeouts usually up to 30s (3 retries + 10s timeout). Since the nodelocal cache listens for UDP DNS queries, applications don't need to be changed.
+* Upgrading DNS queries from UDP to TCP would reduce tail latency attributed to
+  dropped UDP packets and DNS timeouts usually up to 30s (3 retries + 10s timeout).
+  Since the nodelocal cache listens for UDP DNS queries, applications don't need to be changed.
 
-* Metrics & visibility into dns requests at a node level.
+* Metrics & visibility into DNS requests at a node level.
 
-* Negative caching can be re-enabled, thereby reducing number of queries to kube-dns service.
+* Negative caching can be re-enabled, thereby reducing the number of queries for the kube-dns service.
 
 ## Architecture Diagram
 
 This is the path followed by DNS Queries after NodeLocal DNSCache is enabled:
 
 
-{{< figure src="/images/docs/nodelocaldns.svg" alt="NodeLocal DNSCache flow" title="Nodelocal DNSCache flow" caption="This image shows how NodeLocal DNSCache handles DNS queries." >}}
+{{< figure src="/images/docs/nodelocaldns.svg" alt="NodeLocal DNSCache flow" title="Nodelocal DNSCache flow" caption="This image shows how NodeLocal DNSCache handles DNS queries." class="diagram-medium" >}}
 
 ## Configuration
-{{< note >}} The local listen IP address for NodeLocal DNSCache can be any address that can be guaranteed to not collide with any existing IP in your cluster. It's recommended to use an address with a local scope, per example, from the link-local range 169.254.0.0/16 for IPv4 or from the Unique Local Address range in IPv6 fd00::/8.
+
+{{< note >}}
+The local listen IP address for NodeLocal DNSCache can be any address that
+can be guaranteed to not collide with any existing IP in your cluster.
+It's recommended to use an address with a local scope, for example,
+from the 'link-local' range '169.254.0.0/16' for IPv4 or from the
+'Unique Local Address' range in IPv6 'fd00::/8'.
 {{< /note >}}
 
 This feature can be enabled using the following steps:
 
-* Prepare a manifest similar to the sample [`nodelocaldns.yaml`](https://github.com/kubernetes/kubernetes/blob/master/cluster/addons/dns/nodelocaldns/nodelocaldns.yaml) and save it as `nodelocaldns.yaml.`
-* If using IPv6, the CoreDNS configuration file need to enclose all the IPv6 addresses into square brackets if used in IP:Port format. 
-If you are using the sample manifest from the previous point, this will require to modify [the configuration line L70](https://github.com/kubernetes/kubernetes/blob/b2ecd1b3a3192fbbe2b9e348e095326f51dc43dd/cluster/addons/dns/nodelocaldns/nodelocaldns.yaml#L70) like this `health [__PILLAR__LOCAL__DNS__]:8080`
+* Prepare a manifest similar to the sample
+  [`nodelocaldns.yaml`](https://github.com/kubernetes/kubernetes/blob/master/cluster/addons/dns/nodelocaldns/nodelocaldns.yaml)
+  and save it as `nodelocaldns.yaml.`
+
+* If using IPv6, the CoreDNS configuration file needs to enclose all the IPv6 addresses
+  into square brackets if used in 'IP:Port' format. 
+  If you are using the sample manifest from the previous point, this will require you to modify
+  [the configuration line L70](https://github.com/kubernetes/kubernetes/blob/b2ecd1b3a3192fbbe2b9e348e095326f51dc43dd/cluster/addons/dns/nodelocaldns/nodelocaldns.yaml#L70)
+  like this: "`health [__PILLAR__LOCAL__DNS__]:8080`"
+
 * Substitute the variables in the manifest with the right values:
 
-     * kubedns=`kubectl get svc kube-dns -n kube-system -o jsonpath={.spec.clusterIP}`
+  ```shell
+  kubedns=`kubectl get svc kube-dns -n kube-system -o jsonpath={.spec.clusterIP}`
+  domain=<cluster-domain>
+  localdns=<node-local-address>
+  ```
 
-     * domain=`<cluster-domain>`
+  `<cluster-domain>` is "`cluster.local`" by default. `<node-local-address>` is the
+  local listen IP address chosen for NodeLocal DNSCache.
 
-     * localdns=`<node-local-address>`
+  * If kube-proxy is running in IPTABLES mode:
 
-     `<cluster-domain>` is "cluster.local" by default. `<node-local-address>` is the local listen IP address chosen for NodeLocal DNSCache.
+    ``` bash
+    sed -i "s/__PILLAR__LOCAL__DNS__/$localdns/g; s/__PILLAR__DNS__DOMAIN__/$domain/g; s/__PILLAR__DNS__SERVER__/$kubedns/g" nodelocaldns.yaml
+    ```
 
-   * If kube-proxy is running in IPTABLES mode:
-
-     ``` bash
-     sed -i "s/__PILLAR__LOCAL__DNS__/$localdns/g; s/__PILLAR__DNS__DOMAIN__/$domain/g; s/__PILLAR__DNS__SERVER__/$kubedns/g" nodelocaldns.yaml
-     ```
-
-     `__PILLAR__CLUSTER__DNS__` and `__PILLAR__UPSTREAM__SERVERS__` will be populated by the node-local-dns pods.
-     In this mode, node-local-dns pods listen on both the kube-dns service IP as well as `<node-local-address>`, so pods can lookup DNS records using either IP address.
+    `__PILLAR__CLUSTER__DNS__` and `__PILLAR__UPSTREAM__SERVERS__` will be populated by
+    the `node-local-dns` pods.
+    In this mode, the `node-local-dns` pods listen on both the kube-dns service IP
+    as well as `<node-local-address>`, so pods can look up DNS records using either IP address.
 
   * If kube-proxy is running in IPVS mode:
 
     ``` bash
-     sed -i "s/__PILLAR__LOCAL__DNS__/$localdns/g; s/__PILLAR__DNS__DOMAIN__/$domain/g; s/,__PILLAR__DNS__SERVER__//g; s/__PILLAR__CLUSTER__DNS__/$kubedns/g" nodelocaldns.yaml
+    sed -i "s/__PILLAR__LOCAL__DNS__/$localdns/g; s/__PILLAR__DNS__DOMAIN__/$domain/g; s/,__PILLAR__DNS__SERVER__//g; s/__PILLAR__CLUSTER__DNS__/$kubedns/g" nodelocaldns.yaml
     ```
-     In this mode, node-local-dns pods listen only on `<node-local-address>`. The node-local-dns interface cannot bind the kube-dns cluster IP since the interface used for IPVS loadbalancing already uses this address.
-     `__PILLAR__UPSTREAM__SERVERS__` will be populated by the node-local-dns pods.
+
+    In this mode, the `node-local-dns` pods listen only on `<node-local-address>`.
+    The `node-local-dns` interface cannot bind the kube-dns cluster IP since the
+    interface used for IPVS loadbalancing already uses this address.
+    `__PILLAR__UPSTREAM__SERVERS__` will be populated by the node-local-dns pods.
 
 * Run `kubectl create -f nodelocaldns.yaml`
-* If using kube-proxy in IPVS mode, `--cluster-dns` flag to kubelet needs to be modified to use `<node-local-address>` that NodeLocal DNSCache is listening on.
-  Otherwise, there is no need to modify the value of the `--cluster-dns` flag, since NodeLocal DNSCache listens on both the kube-dns service IP as well as `<node-local-address>`.
 
-Once enabled, node-local-dns Pods will run in the kube-system namespace on each of the cluster nodes. This Pod runs [CoreDNS](https://github.com/coredns/coredns) in cache mode, so all CoreDNS metrics exposed by the different plugins will be available on a per-node basis.
+* If using kube-proxy in IPVS mode, `--cluster-dns` flag to kubelet needs to be modified
+  to use `<node-local-address>` that NodeLocal DNSCache is listening on.
+  Otherwise, there is no need to modify the value of the `--cluster-dns` flag,
+  since NodeLocal DNSCache listens on both the kube-dns service IP as well as
+  `<node-local-address>`.
+
+Once enabled, the `node-local-dns` Pods will run in the `kube-system` namespace
+on each of the cluster nodes. This Pod runs [CoreDNS](https://github.com/coredns/coredns)
+in cache mode, so all CoreDNS metrics exposed by the different plugins will
+be available on a per-node basis.
+
+You can disable this feature by removing the DaemonSet, using `kubectl delete -f <manifest>`.
+You should also revert any changes you made to the kubelet configuration.
+
+## StubDomains and Upstream server Configuration
+
+StubDomains and upstream servers specified in the `kube-dns` ConfigMap in the `kube-system` namespace
+are automatically picked up by `node-local-dns` pods. The ConfigMap contents need to follow the format
+shown in [the example](/docs/tasks/administer-cluster/dns-custom-nameservers/#example-1).
+The `node-local-dns` ConfigMap can also be modified directly with the stubDomain configuration
+in the Corefile format. Some cloud providers might not allow modifying `node-local-dns` ConfigMap directly.
+In those cases, the `kube-dns` ConfigMap can be updated.
+
+## Setting memory limits
+
+The `node-local-dns` Pods use memory for storing cache entries and processing queries.
+Since they do not watch Kubernetes objects, the cluster size or the number of Services/Endpoints
+do not directly affect memory usage. Memory usage is influenced by the DNS query pattern.
+From [CoreDNS docs](https://github.com/coredns/deployment/blob/master/kubernetes/Scaling_CoreDNS.md),
+> The default cache size is 10000 entries, which uses about 30 MB when completely filled.
+
+This would be the memory usage for each server block (if the cache gets completely filled).
+Memory usage can be reduced by specifying smaller cache sizes.
+
+The number of concurrent queries is linked to the memory demand, because each extra
+goroutine used for handling a query requires an amount of memory. You can set an upper limit
+using the `max_concurrent` option in the forward plugin.
+
+If a `node-local-dns` Pod attempts to use more memory than is available (because of total system
+resources, or because of a configured
+[resource limit](/docs/concepts/configuration/manage-resources-containers/)), the operating system
+may shut down that pod's container.
+If this happens, the container that is terminated (“OOMKilled”) does not clean up the custom
+packet filtering rules that it previously added during startup.
+The `node-local-dns` container should get restarted (since managed as part of a DaemonSet), but this
+will lead to a brief DNS downtime each time that the container fails: the packet filtering rules direct
+DNS queries to a local Pod that is unhealthy.
+
+You can determine a suitable memory limit by running node-local-dns pods without a limit and
+measuring the peak usage. You can also set up and use a
+[VerticalPodAutoscaler](https://github.com/kubernetes/autoscaler/tree/master/vertical-pod-autoscaler)
+in _recommender mode_, and then check its recommendations.
 
-You can disable this feature by removing the DaemonSet, using `kubectl delete -f <manifest>` . You should also revert any changes you made to the kubelet configuration.
- 
diff --git a/content/en/docs/tasks/administer-cluster/quota-api-object.md b/content/en/docs/tasks/administer-cluster/quota-api-object.md
index 11592d2152..ad38f102d4 100644
--- a/content/en/docs/tasks/administer-cluster/quota-api-object.md
+++ b/content/en/docs/tasks/administer-cluster/quota-api-object.md
@@ -89,7 +89,7 @@ kubectl get persistentvolumeclaims --namespace=quota-object-example
 
 The output shows that the PersistentVolumeClaim exists and has status Pending:
 
-```shell
+```
 NAME             STATUS
 pvc-quota-demo   Pending
 ```
diff --git a/content/en/docs/tasks/administer-cluster/reconfigure-kubelet.md b/content/en/docs/tasks/administer-cluster/reconfigure-kubelet.md
index 466910f30f..e1effd8f05 100644
--- a/content/en/docs/tasks/administer-cluster/reconfigure-kubelet.md
+++ b/content/en/docs/tasks/administer-cluster/reconfigure-kubelet.md
@@ -11,382 +11,35 @@ min-kubernetes-server-version: v1.11
 {{< feature-state for_k8s_version="v1.22" state="deprecated" >}}
 
 {{< caution >}}
-[Dynamic Kubelet Configuration](https://github.com/kubernetes/enhancements/issues/281)
-feature is deprecated and should not be used.
+The [Dynamic Kubelet Configuration](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/281-dynamic-kubelet-configuration)
+feature is deprecated in 1.22 and removed in 1.24.
 Please switch to alternative means distributing configuration to the Nodes of your cluster.
 {{< /caution >}}
 
-
 [Dynamic Kubelet Configuration](https://github.com/kubernetes/enhancements/issues/281)
-allows you to change the configuration of each
+allowed you to change the configuration of each
 {{< glossary_tooltip text="kubelet" term_id="kubelet" >}} in a running Kubernetes cluster,
 by deploying a {{< glossary_tooltip text="ConfigMap" term_id="configmap" >}} and configuring
 each {{< glossary_tooltip term_id="node" >}} to use it.
 
-{{< warning >}}
-All kubelet configuration parameters can be changed dynamically,
-but this is unsafe for some parameters. Before deciding to change a parameter
-dynamically, you need a strong understanding of how that change will affect your
-cluster's behavior. Always carefully test configuration changes on a small set
-of nodes before rolling them out cluster-wide. Advice on configuring specific
-fields is available in the inline
-[`KubeletConfiguration`](/docs/reference/config-api/kubelet-config.v1beta1/).
-{{< /warning >}}
-
-
-## {{% heading "prerequisites" %}}
-
-You need to have a Kubernetes cluster.
-You also need kubectl v1.11 or higher, configured to communicate with your cluster.
-{{< version-check >}}
-Your cluster API server version (eg v1.12) must be no more than one minor
-version away from the version of kubectl that you are using. For example,
-if your cluster is running v1.16 then you can use kubectl v1.15, v1.16
-or v1.17; other combinations
-[aren't supported](/docs/setup/release/version-skew-policy/#kubectl).
-
-Some of the examples use the command line tool
-[jq](https://stedolan.github.io/jq/). You do not need `jq` to complete the task,
-because there are manual alternatives.
-
-For each node that you're reconfiguring, you must set the kubelet
-`--dynamic-config-dir` flag to a writable directory.
-
-
-<!-- steps -->
-
-## Reconfiguring the kubelet on a running node in your cluster
-
-### Basic workflow overview
-
-The basic workflow for configuring a kubelet in a live cluster is as follows:
-
-1. Write a YAML or JSON configuration file containing the
-   kubelet's configuration.
-2. Wrap this file in a ConfigMap and save it to the Kubernetes control plane.
-3. Update the kubelet's corresponding Node object to use this ConfigMap.
-
-Each kubelet watches a configuration reference on its respective Node object.
-When this reference changes, the kubelet downloads the new configuration,
-updates a local reference to refer to the file, and exits.
-For the feature to work correctly, you must be running an OS-level service
-manager (such as systemd), which will restart the kubelet if it exits. When the
-kubelet is restarted, it will begin using the new configuration.
-
-The new configuration completely overrides configuration provided by `--config`,
-and is overridden by command-line flags. Unspecified values in the new configuration
-will receive default values appropriate to the configuration version
-(e.g. `kubelet.config.k8s.io/v1beta1`), unless overridden by flags.
-
-The status of the Node's kubelet configuration is reported via
-`Node.Status.Config`. Once you have updated a Node to use the new
-ConfigMap, you can observe this status to confirm that the Node is using the
-intended configuration.
-
-This document describes editing Nodes using `kubectl edit`.
-There are other ways to modify a Node's spec, including `kubectl patch`, for
-example, which facilitate scripted workflows.
-
-This document only describes a single Node consuming each ConfigMap. Keep in
-mind that it is also valid for multiple Nodes to consume the same ConfigMap.
-
-{{< warning >}}
-While it is *possible* to change the configuration by
-updating the ConfigMap in-place, this causes all kubelets configured with
-that ConfigMap to update simultaneously. It is much safer to treat ConfigMaps
-as immutable by convention, aided by `kubectl`'s `--append-hash` option,
-and incrementally roll out updates to `Node.Spec.ConfigSource`.
-{{< /warning >}}
-
-### Automatic RBAC rules for Node Authorizer
-
-Previously, you were required to manually create RBAC rules
-to allow Nodes to access their assigned ConfigMaps. The Node Authorizer now
-automatically configures these rules.
-
-### Generating a file that contains the current configuration
-
-The Dynamic Kubelet Configuration feature allows you to provide an override for
-the entire configuration object, rather than a per-field overlay. This is a
-simpler model that makes it easier to trace the source of configuration values
-and debug issues. The compromise, however, is that you must start with knowledge
-of the existing configuration to ensure that you only change the fields you
-intend to change.
-
-The kubelet loads settings from its configuration file, but you can set command
-line flags to override the configuration in the file. This means that if you
-only know the contents of the configuration file, and you don't know the
-command line overrides, then you do not know the running configuration either.
-
-Because you need to know the running configuration in order to override it,
-you can fetch the running configuration from the kubelet. You can generate a
-config file containing a Node's current configuration by accessing the kubelet's
-`configz` endpoint, through `kubectl proxy`. The next section explains how to
-do this.
-
-{{< caution >}}
-The kubelet's `configz` endpoint is there to help with debugging, and is not
-a stable part of kubelet behavior.
-Do not rely on the behavior of this endpoint for production scenarios or for
-use with automated tools.
-{{< /caution >}}
-
-For more information on configuring the kubelet via a configuration file, see
-[Set kubelet parameters via a config file](/docs/tasks/administer-cluster/kubelet-config-file)).
-
-#### Generate the configuration file
-
-{{< note >}}
-The steps below use the `jq` command to streamline working with JSON.
-To follow the tasks as written, you need to have `jq` installed. You can
-adapt the steps if you prefer to extract the `kubeletconfig` subobject manually.
-{{< /note >}}
-
-1. Choose a Node to reconfigure. In this example, the name of this Node is
-   referred to as `NODE_NAME`.
-2. Start the kubectl proxy in the background using the following command:
-
-   ```shell
-   kubectl proxy --port=8001 &
-   ```
-3. Run the following command to download and unpack the configuration from the
-   `configz` endpoint. The command is long, so be careful when copying and
-   pasting. **If you use zsh**, note that common zsh configurations add backslashes
-   to escape the opening and closing curly braces around the variable name in the URL.
-   For example: `${NODE_NAME}` will be rewritten as `$\{NODE_NAME\}` during the paste.
-   You must remove the backslashes before running the command, or the command will fail.
-
-
-   ```bash
-   NODE_NAME="the-name-of-the-node-you-are-reconfiguring"; curl -sSL "http://localhost:8001/api/v1/nodes/${NODE_NAME}/proxy/configz" | jq '.kubeletconfig|.kind="KubeletConfiguration"|.apiVersion="kubelet.config.k8s.io/v1beta1"' > kubelet_configz_${NODE_NAME}
-   ```
-
-{{< note >}}
-You need to manually add the `kind` and `apiVersion` to the downloaded
-object, because those fields are not reported by the `configz` endpoint.
-{{< /note >}}
-
-#### Edit the configuration file
-
-Using a text editor, change one of the parameters in the
-file generated by the previous procedure. For example, you
-might edit the parameter `eventRecordQPS`, that controls
-rate limiting for event recording.
-
-#### Push the configuration file to the control plane
-
-Push the edited configuration file to the control plane with the
-following command:
-
-```bash
-kubectl -n kube-system create configmap my-node-config --from-file=kubelet=kubelet_configz_${NODE_NAME} --append-hash -o yaml
-```
-
-This is an example of a valid response:
-
-```none
-apiVersion: v1
-kind: ConfigMap
-metadata:
-  creationTimestamp: 2017-09-14T20:23:33Z
-  name: my-node-config-gkt4c2m4b2
-  namespace: kube-system
-  resourceVersion: "119980"
-  uid: 946d785e-998a-11e7-a8dd-42010a800006
-data:
-  kubelet: |
-    {...}
-```
-
-You created that ConfigMap inside the `kube-system` namespace because the kubelet
-is a Kubernetes system component.
-
-The `--append-hash` option appends a short checksum of the ConfigMap contents
-to the name. This is convenient for an edit-then-push workflow, because it
-automatically, yet deterministically, generates new names for new resources.
-The name that includes this generated hash is referred to as `CONFIG_MAP_NAME`
-in the following examples.
-
-#### Set the Node to use the new configuration
-
-Edit the Node's reference to point to the new ConfigMap with the
-following command:
-
-```bash
-kubectl edit node ${NODE_NAME}
-```
-
-In your text editor, add the following YAML under `spec`:
-
-```yaml
-configSource:
-    configMap:
-        name: CONFIG_MAP_NAME # replace CONFIG_MAP_NAME with the name of the ConfigMap
-        namespace: kube-system
-        kubeletConfigKey: kubelet
-```
-
-You must specify all three of `name`, `namespace`, and `kubeletConfigKey`.
-The `kubeletConfigKey` parameter shows the kubelet which key of the ConfigMap
-contains its config.
-
-#### Observe that the Node begins using the new configuration
-
-Retrieve the Node using the `kubectl get node ${NODE_NAME} -o yaml` command and inspect
-`Node.Status.Config`. The config sources corresponding to the `active`,
-`assigned`, and `lastKnownGood` configurations are reported in the status.
-
-- The `active` configuration is the version the kubelet is currently running with.
-- The `assigned` configuration is the latest version the kubelet has resolved based on
-  `Node.Spec.ConfigSource`.
-- The `lastKnownGood` configuration is the version the
-  kubelet will fall back to if an invalid config is assigned in `Node.Spec.ConfigSource`.
-
-The`lastKnownGood` configuration might not be present if it is set to its default value,
-the local config deployed with the node. The status will update `lastKnownGood` to
-match a valid `assigned` config after the kubelet becomes comfortable with the config.
-The details of how the kubelet determines a config should become the `lastKnownGood` are
-not guaranteed by the API, but is currently implemented as a 10-minute grace period.
-
-You can use the following command (using `jq`) to filter down
-to the config status:
-
-```bash
-kubectl get no ${NODE_NAME} -o json | jq '.status.config'
-```
-
-The following is an example response:
-
-```json
-{
-  "active": {
-    "configMap": {
-      "kubeletConfigKey": "kubelet",
-      "name": "my-node-config-9mbkccg2cc",
-      "namespace": "kube-system",
-      "resourceVersion": "1326",
-      "uid": "705ab4f5-6393-11e8-b7cc-42010a800002"
-    }
-  },
-  "assigned": {
-    "configMap": {
-      "kubeletConfigKey": "kubelet",
-      "name": "my-node-config-9mbkccg2cc",
-      "namespace": "kube-system",
-      "resourceVersion": "1326",
-      "uid": "705ab4f5-6393-11e8-b7cc-42010a800002"
-    }
-  },
-  "lastKnownGood": {
-    "configMap": {
-      "kubeletConfigKey": "kubelet",
-      "name": "my-node-config-9mbkccg2cc",
-      "namespace": "kube-system",
-      "resourceVersion": "1326",
-      "uid": "705ab4f5-6393-11e8-b7cc-42010a800002"
-    }
-  }
-}
-
-```
-
-(if you do not have `jq`, you can look at the whole response and find `Node.Status.Config`
-by eye).
-
-If an error occurs, the kubelet reports it in the `Node.Status.Config.Error`
-structure. Possible errors are listed in
-[Understanding Node.Status.Config.Error messages](#understanding-node-config-status-errors).
-You can search for the identical text in the kubelet log for additional details
-and context about the error.
-
-#### Make more changes
-
-Follow the workflow above to make more changes and push them again. Each time
-you push a ConfigMap with new contents, the `--append-hash` kubectl option creates
-the ConfigMap with a new name. The safest rollout strategy is to first create a
-new ConfigMap, and then update the Node to use the new ConfigMap.
-
-#### Reset the Node to use its local default configuration
-
-To reset the Node to use the configuration it was provisioned with, edit the
-Node using `kubectl edit node ${NODE_NAME}` and remove the
-`Node.Spec.ConfigSource` field.
-
-#### Observe that the Node is using its local default configuration
-
-After removing this subfield, `Node.Status.Config` eventually becomes
-empty, since all config sources have been reset to `nil`, which indicates that
-the local default config is `assigned`, `active`, and `lastKnownGood`, and no
-error is reported.
-
-<!-- discussion -->
-## `kubectl patch` example
-
-You can change a Node's configSource using several different mechanisms.
-This example uses `kubectl patch`:
-
-```bash
-kubectl patch node ${NODE_NAME} -p "{\"spec\":{\"configSource\":{\"configMap\":{\"name\":\"${CONFIG_MAP_NAME}\",\"namespace\":\"kube-system\",\"kubeletConfigKey\":\"kubelet\"}}}}"
-```
-
-## Understanding how the kubelet checkpoints config
-
-When a new config is assigned to the Node, the kubelet downloads and unpacks the
-config payload as a set of files on the local disk. The kubelet also records metadata
-that locally tracks the assigned and last-known-good config sources, so that the
-kubelet knows which config to use across restarts, even if the API server becomes
-unavailable. After checkpointing a config and the relevant metadata, the kubelet
-exits if it detects that the assigned config has changed. When the kubelet is
-restarted by the OS-level service manager (such as `systemd`), it reads the new
-metadata and uses the new config.
-
-The recorded metadata is fully resolved, meaning that it contains all necessary
-information to choose a specific config version - typically a `UID` and `ResourceVersion`.
-This is in contrast to `Node.Spec.ConfigSource`, where the intended config is declared
-via the idempotent `namespace/name` that identifies the target ConfigMap; the kubelet
-tries to use the latest version of this ConfigMap.
-
-When you are debugging problems on a node, you can inspect the kubelet's config
-metadata and checkpoints. The structure of the kubelet's checkpointing directory is:
-
-```none
-- --dynamic-config-dir (root for managing dynamic config)
-| - meta
-  | - assigned (encoded kubeletconfig/v1beta1.SerializedNodeConfigSource object, indicating the assigned config)
-  | - last-known-good (encoded kubeletconfig/v1beta1.SerializedNodeConfigSource object, indicating the last-known-good config)
-| - checkpoints
-  | - uid1 (dir for versions of object identified by uid1)
-    | - resourceVersion1 (dir for unpacked files from resourceVersion1 of object with uid1)
-    | - ...
-  | - ...
-```
-
-## Understanding `Node.Status.Config.Error` messages {#understanding-node-config-status-errors}
-
-The following table describes error messages that can occur
-when using Dynamic Kubelet Config. You can search for the identical text
-in the Kubelet log for additional details and context about the error.
-
-{{< table caption = "Understanding Node.Status.Config.Error messages" >}}
-
-Error Message | Possible Causes
-:-------------| :--------------
-failed to load config, see Kubelet log for details | The kubelet likely could not parse the downloaded config payload, or encountered a filesystem error attempting to load the payload from disk.
-failed to validate config, see Kubelet log for details | The configuration in the payload, combined with any command-line flag overrides, and the sum of feature gates from flags, the config file, and the remote payload, was determined to be invalid by the kubelet.
-invalid NodeConfigSource, exactly one subfield must be non-nil, but all were nil | Since Node.Spec.ConfigSource is validated by the API server to contain at least one non-nil subfield, this likely means that the kubelet is older than the API server and does not recognize a newer source type.
-failed to sync: failed to download config, see Kubelet log for details | The kubelet could not download the config. It is possible that Node.Spec.ConfigSource could not be resolved to a concrete API object, or that network errors disrupted the download attempt. The kubelet will retry the download when in this error state.
-failed to sync: internal failure, see Kubelet log for details | The kubelet encountered some internal problem and failed to update its config as a result. Examples include filesystem errors and reading objects from the internal informer cache.
-internal failure, see Kubelet log for details | The kubelet encountered some internal problem while manipulating config, outside of the configuration sync loop.
-
-{{< /table >}}
-
-
-## {{% heading "whatsnext" %}}
-
-- For more information on configuring the kubelet via a configuration file, see
-[Set kubelet parameters via a config file](/docs/tasks/administer-cluster/kubelet-config-file).
-- See the reference documentation for [`NodeConfigSource`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#nodeconfigsource-v1-core)
-- Learn more about kubelet configuration by checking the
-  [`KubeletConfiguration`](/docs/reference/config-api/kubelet-config.v1beta1/)
-  reference.
-
+Please find documentation on this feature in [earlier versions of documentation](https://v1-23.docs.kubernetes.io/docs/tasks/administer-cluster/reconfigure-kubelet/).
+
+## Migrating from using Dynamic Kubelet Configuration
+
+There is no recommended replacement for this feature that works generically
+across various Kubernetes distributions. If you are using managed Kubernetes
+version, please consult with the vendor hosting Kubernetes for the best
+practices for customizing your Kubernetes. If you are using `kubeadm`, refer to
+[Configuring each kubelet in your cluster using kubeadm](/docs/setup/production-environment/tools/kubeadm/kubelet-integration/).
+
+In order to migrate off the Dynamic Kubelet Configuration feature, the
+alternative mechanism should be used to distribute kubelet configuration files.
+In order to apply configuration, config file must be updated and kubelet restarted.
+See the [Set Kubelet parameters via a config file](/docs/tasks/administer-cluster/kubelet-config-file/)
+for information.
+
+Please note, the `DynamicKubeletConfig` feature gate cannot be set on a kubelet
+starting v1.24 as it has no effect. However, the feature gate is not removed
+from the API server or the controller manager before v1.26. This is designed for
+the control plane to support nodes with older versions of kubelets and for
+satisfying the [Kubernetes version skew policy](/releases/version-skew-policy/).
diff --git a/content/en/docs/tasks/administer-cluster/reserve-compute-resources.md b/content/en/docs/tasks/administer-cluster/reserve-compute-resources.md
index d4cce14870..f391227903 100644
--- a/content/en/docs/tasks/administer-cluster/reserve-compute-resources.md
+++ b/content/en/docs/tasks/administer-cluster/reserve-compute-resources.md
@@ -67,7 +67,7 @@ transient slices for resources that are supported by that init system.
 Depending on the configuration of the associated container runtime,
 operators may have to choose a particular cgroup driver to ensure
 proper system behavior. For example, if operators use the `systemd`
-cgroup driver provided by the `docker` runtime, the `kubelet` must
+cgroup driver provided by the `containerd` runtime, the `kubelet` must
 be configured to use the `systemd` cgroup driver.
 
 ### Kube Reserved
@@ -91,11 +91,14 @@ flag.
 It is recommended that the kubernetes system daemons are placed under a top
 level control group (`runtime.slice` on systemd machines for example). Each
 system daemon should ideally run within its own child control group. Refer to
-[the design proposal](https://git.k8s.io/community/contributors/design-proposals/node/node-allocatable.md#recommended-cgroups-setup)
+[the design proposal](https://git.k8s.io/design-proposals-archive/node/node-allocatable.md#recommended-cgroups-setup)
 for more details on recommended control group hierarchy.
 
 Note that Kubelet **does not** create `--kube-reserved-cgroup` if it doesn't
-exist. Kubelet will fail if an invalid cgroup is specified.
+exist. Kubelet will fail if an invalid cgroup is specified. With `systemd`
+cgroup driver, you should follow a specific pattern for the name of the cgroup you
+define: the name should be the value you set for `--kube-reserved-cgroup`,
+with `.slice` appended.
 
 ### System Reserved
 
@@ -120,7 +123,10 @@ It is recommended that the OS system daemons are placed under a top level
 control group (`system.slice` on systemd machines for example).
 
 Note that `kubelet` **does not** create `--system-reserved-cgroup` if it doesn't
-exist. `kubelet` will fail if an invalid cgroup is specified.
+exist. `kubelet` will fail if an invalid cgroup is specified.  With `systemd`
+cgroup driver, you should follow a specific pattern for the name of the cgroup you
+define: the name should be the value you set for `--system-reserved-cgroup`,
+with `.slice` appended.
 
 ### Explicitly Reserved CPU List
 
@@ -182,8 +188,9 @@ respectively.
 
 ## General Guidelines
 
-System daemons are expected to be treated similar to 'Guaranteed' pods. System
-daemons can burst within their bounding control groups and this behavior needs
+System daemons are expected to be treated similar to 
+[Guaranteed pods](/docs/tasks/configure-pod-container/quality-service-pod/#create-a-pod-that-gets-assigned-a-qos-class-of-guaranteed). 
+System daemons can burst within their bounding control groups and this behavior needs
 to be managed as part of kubernetes deployments. For example, `kubelet` should
 have its own control group and share `kube-reserved` resources with the
 container runtime. However, Kubelet cannot burst and use up all available Node
diff --git a/content/en/docs/tasks/administer-cluster/safely-drain-node.md b/content/en/docs/tasks/administer-cluster/safely-drain-node.md
index 04c908c592..6dc5cf93c0 100644
--- a/content/en/docs/tasks/administer-cluster/safely-drain-node.md
+++ b/content/en/docs/tasks/administer-cluster/safely-drain-node.md
@@ -23,8 +23,6 @@ This task also assumes that you have met the following prerequisites:
      and have [configured PodDisruptionBudgets](/docs/tasks/run-application/configure-pdb/) for
      applications that need them.
 
-
-
 <!-- steps -->
 
 ## (Optional) Configure a disruption budget {#configure-poddisruptionbudget}
@@ -34,7 +32,7 @@ configure a [PodDisruptionBudget](/docs/concepts/workloads/pods/disruptions/).
 
 If availability is important for any applications that run or could run on the node(s)
 that you are draining, [configure a PodDisruptionBudgets](/docs/tasks/run-application/configure-pdb/)
-first and the continue following this guide.
+first and then continue following this guide.
 
 ## Use `kubectl drain` to remove a node from service
 
@@ -100,95 +98,12 @@ replicas to fall below the specified budget are blocked.
 
 If you prefer not to use [kubectl drain](/docs/reference/generated/kubectl/kubectl-commands/#drain) (such as
 to avoid calling to an external command, or to get finer control over the pod
-eviction process), you can also programmatically cause evictions using the eviction API.
+eviction process), you can also programmatically cause evictions using the
+eviction API.
 
-You should first be familiar with using [Kubernetes language clients](/docs/tasks/administer-cluster/access-cluster-api/#programmatic-access-to-the-api) to access the API.
-
-The eviction subresource of a
-Pod can be thought of as a kind of policy-controlled DELETE operation on the Pod
-itself. To attempt an eviction (more precisely: to attempt to
-*create* an Eviction), you POST an attempted operation. Here's an example:
-
-{{< tabs name="Eviction_example" >}}
-{{% tab name="policy/v1" %}}
-{{< note >}}
-`policy/v1` Eviction is available in v1.22+. Use `policy/v1beta1` with prior releases.
-{{< /note >}}
-
-```json
-{
-  "apiVersion": "policy/v1",
-  "kind": "Eviction",
-  "metadata": {
-    "name": "quux",
-    "namespace": "default"
-  }
-}
-```
-{{% /tab %}}
-{{% tab name="policy/v1beta1" %}}
-{{< note >}}
-Deprecated in v1.22 in favor of `policy/v1`
-{{< /note >}}
-
-```json
-{
-  "apiVersion": "policy/v1beta1",
-  "kind": "Eviction",
-  "metadata": {
-    "name": "quux",
-    "namespace": "default"
-  }
-}
-```
-{{% /tab %}}
-{{< /tabs >}}
-
-You can attempt an eviction using `curl`:
-
-```bash
-curl -v -H 'Content-type: application/json' https://your-cluster-api-endpoint.example/api/v1/namespaces/default/pods/quux/eviction -d @eviction.json
-```
-
-The API can respond in one of three ways:
-
-- If the eviction is granted, then the Pod is deleted as if you sent
-  a `DELETE` request to the Pod's URL and received back `200 OK`.
-- If the current state of affairs wouldn't allow an eviction by the rules set
-  forth in the budget, you get back `429 Too Many Requests`. This is
-  typically used for generic rate limiting of *any* requests, but here we mean
-  that this request isn't allowed *right now* but it may be allowed later.
-- If there is some kind of misconfiguration; for example multiple PodDisruptionBudgets
-  that refer the same Pod, you get a `500 Internal Server Error` response.
-
-For a given eviction request, there are two cases:
-
-- There is no budget that matches this pod. In this case, the server always
-  returns `200 OK`.
-- There is at least one budget. In this case, any of the three above responses may
- apply.
-
-## Stuck evictions
-
-In some cases, an application may reach a broken state, one where unless you intervene the
-eviction API will never return anything other than 429 or 500.
-
-For example: this can happen if ReplicaSet is creating Pods for your application but
-the replacement Pods do not become `Ready`. You can also see similar symptoms if the
-last Pod evicted has a very long termination grace period.
-
-In this case, there are two potential solutions:
-
-- Abort or pause the automated operation. Investigate the reason for the stuck application,
-  and restart the automation.
-- After a suitably long wait, `DELETE` the Pod from your cluster's control plane, instead
-  of using the eviction API.
-
-Kubernetes does not specify what the behavior should be in this case; it is up to the
-application owners and cluster owners to establish an agreement on behavior in these cases.
+For more information, see [API-initiated eviction](/docs/concepts/scheduling-eviction/api-eviction/).
 
 ## {{% heading "whatsnext" %}}
 
-
 * Follow steps to protect your application by [configuring a Pod Disruption Budget](/docs/tasks/run-application/configure-pdb/).
 
diff --git a/content/en/docs/tasks/administer-cluster/securing-a-cluster.md b/content/en/docs/tasks/administer-cluster/securing-a-cluster.md
index ba820cbe0a..2be416ceb6 100644
--- a/content/en/docs/tasks/administer-cluster/securing-a-cluster.md
+++ b/content/en/docs/tasks/administer-cluster/securing-a-cluster.md
@@ -13,15 +13,10 @@ content_type: task
 This document covers topics related to protecting a cluster from accidental or malicious access
 and provides recommendations on overall security.
 
-
-
 ## {{% heading "prerequisites" %}}
 
-
 * {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
-
-
 <!-- steps -->
 
 ## Controlling access to the Kubernetes API
@@ -63,7 +58,7 @@ actions a client might want to perform. It is recommended that you use the
 
 As with authentication, simple and broad roles may be appropriate for smaller clusters, but as
 more users interact with the cluster, it may become necessary to separate teams into separate
-namespaces with more limited roles.
+{{< glossary_tooltip text="namespaces" term_id="namespace" >}} with more limited roles.
 
 With authorization, it is important to understand how updates on one object may cause actions in
 other places. For instance, a user may not be able to create pods directly, but allowing them to
@@ -77,11 +72,13 @@ Consult the [authorization reference section](/docs/reference/access-authn-authz
 
 ## Controlling access to the Kubelet
 
-Kubelets expose HTTPS endpoints which grant powerful control over the node and containers. By default Kubelets allow unauthenticated access to this API.
+Kubelets expose HTTPS endpoints which grant powerful control over the node and containers.
+By default Kubelets allow unauthenticated access to this API.
 
 Production clusters should enable Kubelet authentication and authorization.
 
-Consult the [Kubelet authentication/authorization reference](/docs/reference/command-line-tools-reference/kubelet-authentication-authorization) for more information.
+Consult the [Kubelet authentication/authorization reference](/docs/reference/access-authn-authz/kubelet-authn-authz/)
+for more information.
 
 ## Controlling the capabilities of a workload or user at runtime
 
@@ -106,15 +103,18 @@ reserved resources like memory, or to provide default limits when none are speci
 A pod definition contains a [security context](/docs/tasks/configure-pod-container/security-context/)
 that allows it to request access to run as a specific Linux user on a node (like root),
 access to run privileged or access the host network, and other controls that would otherwise
-allow it to run unfettered on a hosting node. [Pod security policies](/docs/concepts/policy/pod-security-policy/)
-can limit which users or service accounts can provide dangerous security context settings. For example, pod security policies can limit volume mounts, especially `hostPath`, which are aspects of a pod that should be controlled.
+allow it to run unfettered on a hosting node.
+
+You can configure [Pod security admission](/docs/concepts/security/pod-security-admission/)
+to enforce use of a particular [Pod Security Standard](/docs/concepts/security/pod-security-standards/)
+in a {{< glossary_tooltip text="namespace" term_id="namespace" >}}, or to detect breaches.
 
 Generally, most application workloads need limited access to host resources so they can
 successfully run as a root process (uid 0) without access to host information. However,
 considering the privileges associated with the root user, you should write application
 containers to run as a non-root user. Similarly, administrators who wish to prevent
-client applications from escaping their containers should use a restrictive pod security
-policy.
+client applications from escaping their containers should apply the **Baseline**
+or **Restricted** Pod Security Standard.
 
 
 ### Preventing containers from loading unwanted kernel modules
@@ -207,7 +207,7 @@ access to a subset of the keyspace is strongly recommended.
 
 ### Enable audit logging
 
-The [audit logger](/docs/tasks/debug-application-cluster/audit/) is a beta feature that records actions taken by the
+The [audit logger](/docs/tasks/debug/debug-cluster/audit/) is a beta feature that records actions taken by the
 API for later analysis in the event of a compromise. It is recommended to enable audit logging
 and archive the audit file on a secure server.
 
@@ -238,7 +238,15 @@ restrict the integration to functioning in a single namespace if possible.
 Components that create pods may also be unexpectedly powerful if they can do so inside namespaces
 like the `kube-system` namespace, because those pods can gain access to service account secrets
 or run with elevated permissions if those service accounts are granted access to permissive
-[pod security policies](/docs/concepts/policy/pod-security-policy/).
+[PodSecurityPolicies](/docs/concepts/security/pod-security-policy/).
+
+If you use [Pod Security admission](/docs/concepts/security/pod-security-admission/) and allow
+any component to create Pods within a namespace that permits privileged Pods, those Pods may
+be able to escape their containers and use this widened access to elevate their privileges.
+
+You should not allow untrusted components to create Pods in any system namespace (those with
+names that start with `kube-`) nor in any namespace where that access grant allows the possibility
+of privilege escalation.
 
 ### Encrypt secrets at rest
 
diff --git a/content/en/docs/tasks/administer-cluster/sysctl-cluster.md b/content/en/docs/tasks/administer-cluster/sysctl-cluster.md
index f81623982f..b07c8e0689 100644
--- a/content/en/docs/tasks/administer-cluster/sysctl-cluster.md
+++ b/content/en/docs/tasks/administer-cluster/sysctl-cluster.md
@@ -13,6 +13,17 @@ This document describes how to configure and use kernel parameters within a
 Kubernetes cluster using the {{< glossary_tooltip term_id="sysctl" >}}
 interface.
 
+{{< note >}}
+Starting from Kubernetes version 1.23, the kubelet supports the use of either `/` or `.`
+as separators for sysctl names. 
+For example, you can represent the same sysctl name as `kernel.shm_rmid_forced` using a
+period as the separator, or as `kernel/shm_rmid_forced` using a slash as a separator.
+For more sysctl parameter conversion method details, please refer to
+the page [sysctl.d(5)](https://man7.org/linux/man-pages/man5/sysctl.d.5.html) from
+the Linux man-pages project.
+Setting Sysctls for a Pod and PodSecurityPolicy features do not yet support 
+setting sysctls with slashes.
+{{< /note >}}
 ## {{% heading "prerequisites" %}}
 
 
@@ -59,7 +70,8 @@ The following sysctls are supported in the _safe_ set:
 - `kernel.shm_rmid_forced`,
 - `net.ipv4.ip_local_port_range`,
 - `net.ipv4.tcp_syncookies`,
-- `net.ipv4.ping_group_range` (since Kubernetes 1.18).
+- `net.ipv4.ping_group_range` (since Kubernetes 1.18),
+- `net.ipv4.ip_unprivileged_port_start` (since Kubernetes 1.22).
 
 {{< note >}}
 The example `net.ipv4.tcp_syncookies` is not namespaced on Linux kernel version 4.4 or lower.
diff --git a/content/en/docs/tasks/administer-cluster/topology-manager.md b/content/en/docs/tasks/administer-cluster/topology-manager.md
index e8d2e7c19d..4002537f0c 100644
--- a/content/en/docs/tasks/administer-cluster/topology-manager.md
+++ b/content/en/docs/tasks/administer-cluster/topology-manager.md
@@ -20,7 +20,7 @@ An increasing number of systems leverage a combination of CPUs and hardware acce
 
 In order to extract the best performance, optimizations related to CPU isolation, memory and device locality are required. However, in Kubernetes, these optimizations are handled by a disjoint set of components.
 
-_Topology Manager_ is a Kubelet component that aims to co-ordinate the set of components that are responsible for these optimizations.
+_Topology Manager_ is a Kubelet component that aims to coordinate the set of components that are responsible for these optimizations.
  
 
 
@@ -267,4 +267,4 @@ Using this information the Topology Manager calculates the optimal hint for the
 ### Known Limitations
 1. The maximum number of NUMA nodes that Topology Manager allows is 8. With more than 8 NUMA nodes there will be a state explosion when trying to enumerate the possible NUMA affinities and generating their hints.
 
-2. The scheduler is not topology-aware, so it is possible to be scheduled on a node and then fail on the node due to the Topology Manager.
\ No newline at end of file
+2. The scheduler is not topology-aware, so it is possible to be scheduled on a node and then fail on the node due to the Topology Manager.
diff --git a/content/en/docs/tasks/administer-cluster/use-cascading-deletion.md b/content/en/docs/tasks/administer-cluster/use-cascading-deletion.md
index eb72d68de0..45466343c0 100644
--- a/content/en/docs/tasks/administer-cluster/use-cascading-deletion.md
+++ b/content/en/docs/tasks/administer-cluster/use-cascading-deletion.md
@@ -5,7 +5,8 @@ content_type: task
 
 <!--overview-->
 
-This page shows you how to specify the type of [cascading deletion](/docs/concepts/workloads/controllers/garbage-collection/#cascading-deletion)
+This page shows you how to specify the type of
+[cascading deletion](/docs/concepts/architecture/garbage-collection/#cascading-deletion)
 to use in your cluster during {{<glossary_tooltip text="garbage collection" term_id="garbage-collection">}}.
 
 ## {{% heading "prerequisites" %}}
@@ -26,7 +27,7 @@ kubectl get pods -l app=nginx --output=yaml
 
 The output has an `ownerReferences` field similar to this:
 
-```
+```yaml
 apiVersion: v1
     ...
     ownerReferences:
@@ -41,7 +42,7 @@ apiVersion: v1
 
 ## Use foreground cascading deletion {#use-foreground-cascading-deletion}
 
-By default, Kubernetes uses [background cascading deletion](/docs/concepts/workloads/controllers/garbage-collection/#background-deletion)
+By default, Kubernetes uses [background cascading deletion](/docs/concepts/architecture/garbage-collection/#background-deletion)
 to delete dependents of an object. You can switch to foreground cascading deletion
 using either `kubectl` or the Kubernetes API, depending on the Kubernetes
 version your cluster runs. {{<version-check>}}
@@ -64,9 +65,9 @@ kubectl delete deployment nginx-deployment --cascade=foreground
 
 1. Start a local proxy session:
 
-    ```shell
-    kubectl proxy --port=8080
-    ```
+   ```shell
+   kubectl proxy --port=8080
+   ```
 
 1. Use `curl` to trigger deletion:
 
@@ -80,19 +81,19 @@ kubectl delete deployment nginx-deployment --cascade=foreground
    like this:
 
    ```
-    "kind": "Deployment",
-    "apiVersion": "apps/v1",
-    "metadata": {
-        "name": "nginx-deployment",
-        "namespace": "default",
-        "uid": "d1ce1b02-cae8-4288-8a53-30e84d8fa505",
-        "resourceVersion": "1363097",
-        "creationTimestamp": "2021-07-08T20:24:37Z",
-        "deletionTimestamp": "2021-07-08T20:27:39Z",
-        "finalizers": [
-          "foregroundDeletion"
-        ]
-        ...
+   "kind": "Deployment",
+   "apiVersion": "apps/v1",
+   "metadata": {
+       "name": "nginx-deployment",
+       "namespace": "default",
+       "uid": "d1ce1b02-cae8-4288-8a53-30e84d8fa505",
+       "resourceVersion": "1363097",
+       "creationTimestamp": "2021-07-08T20:24:37Z",
+       "deletionTimestamp": "2021-07-08T20:27:39Z",
+       "finalizers": [
+         "foregroundDeletion"
+       ]
+       ...
    ```
 
 {{% /tab %}}
@@ -104,9 +105,9 @@ For details, read the [documentation for your Kubernetes version](/docs/home/sup
 
 1. Start a local proxy session:
 
-    ```shell
-    kubectl proxy --port=8080
-    ```
+   ```shell
+   kubectl proxy --port=8080
+   ```
 
 1. Use `curl` to trigger deletion:
 
@@ -120,19 +121,19 @@ For details, read the [documentation for your Kubernetes version](/docs/home/sup
    like this:
 
    ```
-    "kind": "Deployment",
-    "apiVersion": "apps/v1",
-    "metadata": {
-        "name": "nginx-deployment",
-        "namespace": "default",
-        "uid": "d1ce1b02-cae8-4288-8a53-30e84d8fa505",
-        "resourceVersion": "1363097",
-        "creationTimestamp": "2021-07-08T20:24:37Z",
-        "deletionTimestamp": "2021-07-08T20:27:39Z",
-        "finalizers": [
-          "foregroundDeletion"
-        ]
-        ...
+   "kind": "Deployment",
+   "apiVersion": "apps/v1",
+   "metadata": {
+       "name": "nginx-deployment",
+       "namespace": "default",
+       "uid": "d1ce1b02-cae8-4288-8a53-30e84d8fa505",
+       "resourceVersion": "1363097",
+       "creationTimestamp": "2021-07-08T20:24:37Z",
+       "deletionTimestamp": "2021-07-08T20:27:39Z",
+       "finalizers": [
+         "foregroundDeletion"
+       ]
+       ...
    ```
 {{% /tab %}}
 {{</tabs>}}
@@ -165,32 +166,32 @@ kubectl delete deployment nginx-deployment --cascade=background
 
 1. Start a local proxy session:
 
-    ```shell
-    kubectl proxy --port=8080
-    ```
+   ```shell
+   kubectl proxy --port=8080
+   ```
 
 1. Use `curl` to trigger deletion:
 
-    ```shell
-    curl -X DELETE localhost:8080/apis/apps/v1/namespaces/default/deployments/nginx-deployment \
-        -d '{"kind":"DeleteOptions","apiVersion":"v1","propagationPolicy":"Background"}' \
-        -H "Content-Type: application/json"
-    ```
+   ```shell
+   curl -X DELETE localhost:8080/apis/apps/v1/namespaces/default/deployments/nginx-deployment \
+       -d '{"kind":"DeleteOptions","apiVersion":"v1","propagationPolicy":"Background"}' \
+       -H "Content-Type: application/json"
+   ```
 
-    The output is similar to this:
+   The output is similar to this:
 
-    ```
-    "kind": "Status",
-    "apiVersion": "v1",
-    ...
-    "status": "Success",
-    "details": {
-        "name": "nginx-deployment",
-        "group": "apps",
-        "kind": "deployments",
-        "uid": "cc9eefb9-2d49-4445-b1c1-d261c9396456"
-    }
-    ```
+   ```
+   "kind": "Status",
+   "apiVersion": "v1",
+   ...
+   "status": "Success",
+   "details": {
+       "name": "nginx-deployment",
+       "group": "apps",
+       "kind": "deployments",
+       "uid": "cc9eefb9-2d49-4445-b1c1-d261c9396456"
+   }
+   ```
 {{% /tab %}}
 {{% tab name="Versions prior to Kubernetes 1.20.x" %}}
 Kubernetes uses background cascading deletion by default, and does so
@@ -211,32 +212,32 @@ kubectl delete deployment nginx-deployment --cascade=true
 
 1. Start a local proxy session:
 
-    ```shell
-    kubectl proxy --port=8080
-    ```
+   ```shell
+   kubectl proxy --port=8080
+   ```
 
 1. Use `curl` to trigger deletion:
 
-    ```shell
-    curl -X DELETE localhost:8080/apis/apps/v1/namespaces/default/deployments/nginx-deployment \
-        -d '{"kind":"DeleteOptions","apiVersion":"v1","propagationPolicy":"Background"}' \
-        -H "Content-Type: application/json"
-    ```
+   ```shell
+   curl -X DELETE localhost:8080/apis/apps/v1/namespaces/default/deployments/nginx-deployment \
+       -d '{"kind":"DeleteOptions","apiVersion":"v1","propagationPolicy":"Background"}' \
+       -H "Content-Type: application/json"
+   ```
 
-    The output is similar to this:
+   The output is similar to this:
 
-    ```
-    "kind": "Status",
-    "apiVersion": "v1",
-    ...
-    "status": "Success",
-    "details": {
-        "name": "nginx-deployment",
-        "group": "apps",
-        "kind": "deployments",
-        "uid": "cc9eefb9-2d49-4445-b1c1-d261c9396456"
-    }
-    ```
+   ```
+   "kind": "Status",
+   "apiVersion": "v1",
+   ...
+   "status": "Success",
+   "details": {
+       "name": "nginx-deployment",
+       "group": "apps",
+       "kind": "deployments",
+       "uid": "cc9eefb9-2d49-4445-b1c1-d261c9396456"
+   }
+   ```
 {{% /tab %}}
 {{</tabs>}}
 
@@ -264,33 +265,33 @@ kubectl delete deployment nginx-deployment --cascade=orphan
 
 1. Start a local proxy session:
 
-    ```shell
-    kubectl proxy --port=8080
-    ```
+   ```shell
+   kubectl proxy --port=8080
+   ```
 
 1. Use `curl` to trigger deletion:
 
-    ```shell
-    curl -X DELETE localhost:8080/apis/apps/v1/namespaces/default/deployments/nginx-deployment \
-        -d '{"kind":"DeleteOptions","apiVersion":"v1","propagationPolicy":"Orphan"}' \
-        -H "Content-Type: application/json"
-    ```
+   ```shell
+   curl -X DELETE localhost:8080/apis/apps/v1/namespaces/default/deployments/nginx-deployment \
+       -d '{"kind":"DeleteOptions","apiVersion":"v1","propagationPolicy":"Orphan"}' \
+       -H "Content-Type: application/json"
+   ```
 
-    The output contains `orphan` in the `finalizers` field, similar to this:
+   The output contains `orphan` in the `finalizers` field, similar to this:
 
-    ```
-    "kind": "Deployment",
-    "apiVersion": "apps/v1",
-    "namespace": "default",
-    "uid": "6f577034-42a0-479d-be21-78018c466f1f",
-    "creationTimestamp": "2021-07-09T16:46:37Z",
-    "deletionTimestamp": "2021-07-09T16:47:08Z",
-    "deletionGracePeriodSeconds": 0,
-    "finalizers": [
-      "orphan"
-    ],
-    ...
-    ```
+   ```
+   "kind": "Deployment",
+   "apiVersion": "apps/v1",
+   "namespace": "default",
+   "uid": "6f577034-42a0-479d-be21-78018c466f1f",
+   "creationTimestamp": "2021-07-09T16:46:37Z",
+   "deletionTimestamp": "2021-07-09T16:47:08Z",
+   "deletionGracePeriodSeconds": 0,
+   "finalizers": [
+     "orphan"
+   ],
+   ...
+   ```
 
 {{% /tab %}}
 {{% tab name="Versions prior to Kubernetes 1.20.x" %}}
@@ -302,40 +303,40 @@ For details, read the [documentation for your Kubernetes version](/docs/home/sup
 Run the following command:
 
 ```shell
-kubectl delete deployment nginx-deployment --cascade=false
+kubectl delete deployment nginx-deployment --cascade=orphan
 ```
 
 **Using the Kubernetes API**
 
 1. Start a local proxy session:
 
-    ```shell
-    kubectl proxy --port=8080
-    ```
+   ```shell
+   kubectl proxy --port=8080
+   ```
 
 1. Use `curl` to trigger deletion:
 
-    ```shell
-    curl -X DELETE localhost:8080/apis/apps/v1/namespaces/default/deployments/nginx-deployment \
-        -d '{"kind":"DeleteOptions","apiVersion":"v1","propagationPolicy":"Orphan"}' \
-        -H "Content-Type: application/json"
-    ```
+   ```shell
+   curl -X DELETE localhost:8080/apis/apps/v1/namespaces/default/deployments/nginx-deployment \
+       -d '{"kind":"DeleteOptions","apiVersion":"v1","propagationPolicy":"Orphan"}' \
+       -H "Content-Type: application/json"
+   ```
 
-    The output contains `orphan` in the `finalizers` field, similar to this:
+   The output contains `orphan` in the `finalizers` field, similar to this:
 
-    ```
-    "kind": "Deployment",
-    "apiVersion": "apps/v1",
-    "namespace": "default",
-    "uid": "6f577034-42a0-479d-be21-78018c466f1f",
-    "creationTimestamp": "2021-07-09T16:46:37Z",
-    "deletionTimestamp": "2021-07-09T16:47:08Z",
-    "deletionGracePeriodSeconds": 0,
-    "finalizers": [
-      "orphan"
-    ],
-    ...
-    ```
+   ```
+   "kind": "Deployment",
+   "apiVersion": "apps/v1",
+   "namespace": "default",
+   "uid": "6f577034-42a0-479d-be21-78018c466f1f",
+   "creationTimestamp": "2021-07-09T16:46:37Z",
+   "deletionTimestamp": "2021-07-09T16:47:08Z",
+   "deletionGracePeriodSeconds": 0,
+   "finalizers": [
+     "orphan"
+   ],
+   ...
+   ```
 {{% /tab %}}
 {{</tabs>}}
 
@@ -349,4 +350,4 @@ kubectl get pods -l app=nginx
 
 * Learn about [owners and dependents](/docs/concepts/overview/working-with-objects/owners-dependents/) in Kubernetes.
 * Learn about Kubernetes [finalizers](/docs/concepts/overview/working-with-objects/finalizers/).
-* Learn about [garbage collection](/docs/concepts/workloads/controllers/garbage-collection/).
\ No newline at end of file
+* Learn about [garbage collection](/docs/concepts/architecture/garbage-collection/).
diff --git a/content/en/docs/tasks/administer-cluster/verify-signed-images.md b/content/en/docs/tasks/administer-cluster/verify-signed-images.md
new file mode 100644
index 0000000000..074a9f3410
--- /dev/null
+++ b/content/en/docs/tasks/administer-cluster/verify-signed-images.md
@@ -0,0 +1,72 @@
+---
+title: Verify Signed Container Images
+content_type: task
+min-kubernetes-server-version: v1.24
+---
+
+<!-- overview -->
+
+{{< feature-state state="alpha" for_k8s_version="v1.24" >}}
+
+## {{% heading "prerequisites" %}}
+
+These instructions are for Kubernetes {{< skew currentVersion >}}. If you want
+to check the integrity of components for a different version of Kubernetes,
+check the documentation for that Kubernetes release.
+
+You will need to have the following tools installed:
+
+- `cosign` ([install guide](https://docs.sigstore.dev/cosign/installation/))
+- `curl` (often provided by your operating system)
+
+## Verifying image signatures
+
+For a complete list of images that are signed please refer
+to [Releases](/releases/download/).
+
+Let's pick one image from this list and verify its signature using
+the `cosign verify` command:
+
+```shell
+COSIGN_EXPERIMENTAL=1 cosign verify k8s.gcr.io/kube-apiserver-amd64:v1.24.0
+```
+
+{{< note >}}
+`COSIGN_EXPERIMENTAL=1` is used to allow verification of images signed
+in `KEYLESS` mode. To learn more about keyless signing, please refer to
+[Keyless Signatures](https://github.com/sigstore/cosign/blob/main/KEYLESS.md#keyless-signatures)
+. {{< /note >}}
+
+### Verifying images for all control plane components
+
+To verify all signed control plane images, please run this command:
+
+```shell
+curl -Ls https://sbom.k8s.io/$(curl -Ls https://dl.k8s.io/release/latest.txt)/release | grep 'PackageName: k8s.gcr.io/' | awk '{print $2}' > images.txt
+input=images.txt
+while IFS= read -r image
+do
+  COSIGN_EXPERIMENTAL=1 cosign verify "$image"
+done < "$input"
+```
+
+Once you have verified an image, specify that image by its digest in your Pod
+manifests as per this
+example: `registry-url/image-name@sha256:45b23dee08af5e43a7fea6c4cf9c25ccf269ee113168c19722f87876677c5cb2`
+.
+
+For more information, please refer
+to [Image Pull Policy](/docs/concepts/containers/images/#image-pull-policy)
+section.
+
+## Verifying Image Signatures with Admission Controller
+
+For non-control plane images (
+e.g. [conformance image](https://github.com/kubernetes/kubernetes/blob/master/test/conformance/image/README.md))
+, signatures can also be verified at deploy time using
+[cosigned](https://docs.sigstore.dev/cosign/kubernetes/#cosigned-admission-controller)
+admission controller. To get started with `cosigned` here are a few helpful
+resources:
+
+* [Installation](https://github.com/sigstore/cosign#installation)
+* [Configuration Options](https://github.com/sigstore/cosign/blob/main/USAGE.md#detailed-usage)
diff --git a/content/en/docs/tasks/configmap-secret/managing-secret-using-config-file.md b/content/en/docs/tasks/configmap-secret/managing-secret-using-config-file.md
index 6fb5cdca3d..e3299ec843 100644
--- a/content/en/docs/tasks/configmap-secret/managing-secret-using-config-file.md
+++ b/content/en/docs/tasks/configmap-secret/managing-secret-using-config-file.md
@@ -13,65 +13,70 @@ description: Creating Secret objects using resource configuration file.
 
 <!-- steps -->
 
-## Create the Config file
+## Create the Secret {#create-the-config-file}
 
-You can create a Secret in a file first, in JSON or YAML format, and then
-create that object.  The
+You can define the `Secret` object in a manifest first, in JSON or YAML format,
+and then create that object. The
 [Secret](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#secret-v1-core)
 resource contains two maps: `data` and `stringData`.
 The `data` field is used to store arbitrary data, encoded using base64. The
 `stringData` field is provided for convenience, and it allows you to provide
-Secret data as unencoded strings.
+the same data as unencoded strings.
 The keys of `data` and `stringData` must consist of alphanumeric characters,
 `-`, `_` or `.`.
 
-For example, to store two strings in a Secret using the `data` field, convert
-the strings to base64 as follows:
+The following example stores two strings in a Secret using the `data` field.
 
-```shell
-echo -n 'admin' | base64
-```
+1. Convert the strings to base64:
 
-The output is similar to:
+   ```shell
+   echo -n 'admin' | base64
+   echo -n '1f2d1e2e67df' | base64
+   ```
 
-```
-YWRtaW4=
-```
+   {{< note >}}
+   The serialized JSON and YAML values of Secret data are encoded as base64 strings. Newlines are not valid within these strings and must be omitted. When using the `base64` utility on Darwin/macOS, users should avoid using the `-b` option to split long lines. Conversely, Linux users *should* add the option `-w 0` to `base64` commands or the pipeline `base64 | tr -d '\n'` if the `-w` option is not available.
+   {{< /note >}}
 
-```shell
-echo -n '1f2d1e2e67df' | base64
-```
+   The output is similar to:
 
-The output is similar to:
+   ```
+   YWRtaW4=
+   MWYyZDFlMmU2N2Rm
+   ```
 
-```
-MWYyZDFlMmU2N2Rm
-```
+1. Create the manifest:
 
-Write a Secret config file that looks like this:
+   ```yaml
+   apiVersion: v1
+   kind: Secret
+   metadata:
+     name: mysecret
+   type: Opaque
+   data:
+     username: YWRtaW4=
+     password: MWYyZDFlMmU2N2Rm
+   ```
 
-```yaml
-apiVersion: v1
-kind: Secret
-metadata:
-  name: mysecret
-type: Opaque
-data:
-  username: YWRtaW4=
-  password: MWYyZDFlMmU2N2Rm
-```
+   Note that the name of a Secret object must be a valid
+   [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 
-Note that the name of a Secret object must be a valid
-[DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
+1. Create the Secret using [`kubectl apply`](/docs/reference/generated/kubectl/kubectl-commands#apply):
 
-{{< note >}}
-The serialized JSON and YAML values of Secret data are encoded as base64
-strings. Newlines are not valid within these strings and must be omitted. When
-using the `base64` utility on Darwin/macOS, users should avoid using the `-b`
-option to split long lines. Conversely, Linux users *should* add the option
-`-w 0` to `base64` commands or the pipeline `base64 | tr -d '\n'` if the `-w`
-option is not available.
-{{< /note >}}
+   ```shell
+   kubectl apply -f ./secret.yaml
+   ```
+
+   The output is similar to:
+
+   ```
+   secret/mysecret created
+   ```
+
+To verify that the Secret was created and to decode the Secret data, refer to
+[Managing Secrets using kubectl](/docs/tasks/configmap-secret/managing-secret-using-kubectl/#verify-the-secret).
+
+### Specify unencoded data when creating a Secret
 
 For certain scenarios, you may wish to use the `stringData` field instead. This
 field allows you to put a non-base64 encoded string directly into the Secret,
@@ -103,25 +108,10 @@ stringData:
     username: <user>
     password: <password>
 ```
+When you retrieve the Secret data, the command returns the encoded values,
+and not the plaintext values you provided in `stringData`.
 
-## Create the Secret object
-
-Now create the Secret using [`kubectl apply`](/docs/reference/generated/kubectl/kubectl-commands#apply):
-
-```shell
-kubectl apply -f ./secret.yaml
-```
-
-The output is similar to:
-
-```
-secret/mysecret created
-```
-
-## Check the Secret
-
-The `stringData` field is a write-only convenience field. It is never output when
-retrieving Secrets. For example, if you run the following command:
+For example, if you run the following command:
 
 ```shell
 kubectl get secret mysecret -o yaml
@@ -143,14 +133,11 @@ metadata:
 type: Opaque
 ```
 
-The commands `kubectl get` and `kubectl describe` avoid showing the contents of a `Secret` by
-default. This is to protect the `Secret` from being exposed accidentally to an onlooker,
-or from being stored in a terminal log.
-To check the actual content of the encoded data, please refer to
-[decoding secret](/docs/tasks/configmap-secret/managing-secret-using-kubectl/#decoding-secret).
+### Specifying both `data` and `stringData`
 
-If a field, such as `username`, is specified in both `data` and `stringData`,
-the value from `stringData` is used. For example, the following Secret definition:
+If you specify a field in both `data` and `stringData`, the value from `stringData` is used.
+
+For example, if you define the following Secret:
 
 ```yaml
 apiVersion: v1
@@ -164,7 +151,7 @@ stringData:
   username: administrator
 ```
 
-Results in the following Secret:
+The `Secret` object is created as follows:
 
 ```yaml
 apiVersion: v1
@@ -180,7 +167,7 @@ metadata:
 type: Opaque
 ```
 
-Where `YWRtaW5pc3RyYXRvcg==` decodes to `administrator`.
+`YWRtaW5pc3RyYXRvcg==` decodes to `administrator`.
 
 ## Clean Up
 
diff --git a/content/en/docs/tasks/configmap-secret/managing-secret-using-kubectl.md b/content/en/docs/tasks/configmap-secret/managing-secret-using-kubectl.md
index dad86e36df..72ec2a7bc3 100644
--- a/content/en/docs/tasks/configmap-secret/managing-secret-using-kubectl.md
+++ b/content/en/docs/tasks/configmap-secret/managing-secret-using-kubectl.md
@@ -113,6 +113,8 @@ The commands `kubectl get` and `kubectl describe` avoid showing the contents
 of a `Secret` by default. This is to protect the `Secret` from being exposed
 accidentally, or from being stored in a terminal log.
 
+To check the actual content of the encoded data, refer to [Decoding the Secret](#decoding-secret).
+
 ## Decoding the Secret  {#decoding-secret}
 
 To view the contents of the Secret you created, run the following command:
@@ -130,6 +132,12 @@ The output is similar to:
 Now you can decode the `password` data:
 
 ```shell
+# This is an example for documentation purposes.
+# If you did things this way, the data 'MWYyZDFlMmU2N2Rm' could be stored in
+# your shell history.
+# Someone with access to you computer could find that remembered command
+# and base-64 decode the secret, perhaps without your knowledge.
+# It's usually better to combine the steps, as shown later in the page.
 echo 'MWYyZDFlMmU2N2Rm' | base64 --decode
 ```
 
@@ -139,6 +147,15 @@ The output is similar to:
 1f2d1e2e67df
 ```
 
+In order to avoid storing a secret encoded value in your shell history, you can
+run the following command:
+
+```shell
+kubectl get secret db-user-pass -o jsonpath='{.data.password}' | base64 --decode
+```
+
+The output shall be similar as above.
+
 ## Clean Up
 
 Delete the Secret you created:
diff --git a/content/en/docs/tasks/configure-pod-container/assign-memory-resource.md b/content/en/docs/tasks/configure-pod-container/assign-memory-resource.md
index 7afb3cb249..d923d6356c 100644
--- a/content/en/docs/tasks/configure-pod-container/assign-memory-resource.md
+++ b/content/en/docs/tasks/configure-pod-container/assign-memory-resource.md
@@ -99,10 +99,10 @@ and a memory limit of 200 MiB.
 ```yaml
 ...
 resources:
-  limits:
-    memory: 200Mi
   requests:
     memory: 100Mi
+  limits:
+    memory: 200Mi
 ...
 ```
 
@@ -171,10 +171,10 @@ kubectl get pod memory-demo-2 --output=yaml --namespace=mem-example
 
 The output shows that the Container was killed because it is out of memory (OOM):
 
-```shell
+```yaml
 lastState:
    terminated:
-     containerID: docker://65183c1877aaec2e8427bc95609cc52677a454b56fcb24340dbd22917c23b10f
+     containerID: 65183c1877aaec2e8427bc95609cc52677a454b56fcb24340dbd22917c23b10f
      exitCode: 137
      finishedAt: 2017-06-20T20:52:19Z
      reason: OOMKilled
@@ -278,7 +278,7 @@ kubectl describe pod memory-demo-3 --namespace=mem-example
 
 The output shows that the Container cannot be scheduled because of insufficient memory on the Nodes:
 
-```shell
+```
 Events:
   ...  Reason            Message
        ------            -------
@@ -291,8 +291,8 @@ The memory resource is measured in bytes. You can express memory as a plain inte
 fixed-point integer with one of these suffixes: E, P, T, G, M, K, Ei, Pi, Ti, Gi, Mi, Ki.
 For example, the following represent approximately the same value:
 
-```shell
-128974848, 129e6, 129M , 123Mi
+```
+128974848, 129e6, 129M, 123Mi
 ```
 
 Delete your Pod:
diff --git a/content/en/docs/tasks/configure-pod-container/assign-pods-nodes.md b/content/en/docs/tasks/configure-pod-container/assign-pods-nodes.md
index f1e6e6e9ef..1e19a26fbb 100644
--- a/content/en/docs/tasks/configure-pod-container/assign-pods-nodes.md
+++ b/content/en/docs/tasks/configure-pod-container/assign-pods-nodes.md
@@ -34,7 +34,7 @@ Kubernetes cluster.
     worker1   Ready     <none>   1d      v1.13.0        ...,kubernetes.io/hostname=worker1
     worker2   Ready     <none>   1d      v1.13.0        ...,kubernetes.io/hostname=worker2
     ```
-1. Chose one of your nodes, and add a label to it:
+1. Choose one of your nodes, and add a label to it:
 
     ```shell
     kubectl label nodes <your-node-name> disktype=ssd
diff --git a/content/en/docs/tasks/configure-pod-container/configure-gmsa.md b/content/en/docs/tasks/configure-pod-container/configure-gmsa.md
index 0073feea24..e191de41ef 100644
--- a/content/en/docs/tasks/configure-pod-container/configure-gmsa.md
+++ b/content/en/docs/tasks/configure-pod-container/configure-gmsa.md
@@ -10,20 +10,19 @@ weight: 20
 
 This page shows how to configure [Group Managed Service Accounts](https://docs.microsoft.com/en-us/windows-server/security/group-managed-service-accounts/group-managed-service-accounts-overview) (GMSA) for Pods and containers that will run on Windows nodes. Group Managed Service Accounts are a specific type of Active Directory account that provides automatic password management, simplified service principal name (SPN) management, and the ability to delegate the management to other administrators across multiple servers.
 
-In Kubernetes, GMSA credential specs are configured at a Kubernetes cluster-wide scope as Custom Resources. Windows Pods, as well as individual containers within a Pod, can be configured to use a GMSA for domain based functions (e.g. Kerberos authentication) when interacting with other Windows services. As of v1.16, the Docker runtime supports GMSA for Windows workloads.
-
-
+In Kubernetes, GMSA credential specs are configured at a Kubernetes cluster-wide scope as Custom Resources. Windows Pods, as well as individual containers within a Pod, can be configured to use a GMSA for domain based functions (e.g. Kerberos authentication) when interacting with other Windows services.
 
 ## {{% heading "prerequisites" %}}
 
-
 You need to have a Kubernetes cluster and the `kubectl` command-line tool must be configured to communicate with your cluster. The cluster is expected to have Windows worker nodes. This section covers a set of initial steps required once for each cluster:
 
 ### Install the GMSACredentialSpec CRD
+
 A [CustomResourceDefinition](/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/)(CRD) for GMSA credential spec resources needs to be configured on the cluster to define the custom resource type `GMSACredentialSpec`. Download the GMSA CRD [YAML](https://github.com/kubernetes-sigs/windows-gmsa/blob/master/admission-webhook/deploy/gmsa-crd.yml) and save it as gmsa-crd.yaml.
 Next, install the CRD with `kubectl apply -f gmsa-crd.yaml`
 
 ### Install webhooks to validate GMSA users
+
 Two webhooks need to be configured on the Kubernetes cluster to populate and validate GMSA credential spec references at the Pod or container level:
 
 1. A mutating webhook that expands references to GMSAs (by name from a Pod specification) into the full credential spec in JSON form within the Pod spec.
@@ -36,23 +35,23 @@ Installing the above webhooks and associated objects require the steps below:
 
 1. Install a secret with the certificate from above.
 
-1. Create a deployment for the core webhook logic. 
+1. Create a deployment for the core webhook logic.
 
-1. Create the validating and mutating webhook configurations referring to the deployment. 
+1. Create the validating and mutating webhook configurations referring to the deployment.
 
 A [script](https://github.com/kubernetes-sigs/windows-gmsa/blob/master/admission-webhook/deploy/deploy-gmsa-webhook.sh) can be used to deploy and configure the GMSA webhooks and associated objects mentioned above. The script can be run with a ```--dry-run=server``` option to allow you to review the changes that would be made to your cluster.
 
 The [YAML template](https://github.com/kubernetes-sigs/windows-gmsa/blob/master/admission-webhook/deploy/gmsa-webhook.yml.tpl) used by the script may also be used to deploy the webhooks and associated objects manually (with appropriate substitutions for the parameters)
 
-
-
 <!-- steps -->
 
 ## Configure GMSAs and Windows nodes in Active Directory
+
 Before Pods in Kubernetes can be configured to use GMSAs, the desired GMSAs need to be provisioned in Active Directory as described in the [Windows GMSA documentation](https://docs.microsoft.com/en-us/windows-server/security/group-managed-service-accounts/getting-started-with-group-managed-service-accounts#BKMK_Step1). Windows worker nodes (that are part of the Kubernetes cluster) need to be configured in Active Directory to access the secret credentials associated with the desired GMSA as described in the [Windows GMSA documentation](https://docs.microsoft.com/en-us/windows-server/security/group-managed-service-accounts/getting-started-with-group-managed-service-accounts#to-add-member-hosts-using-the-set-adserviceaccount-cmdlet)
 
 ## Create GMSA credential spec resources
-With the GMSACredentialSpec CRD installed (as described earlier), custom resources containing GMSA credential specs can be configured. The GMSA credential spec does not contain secret or sensitive data. It is information that a container runtime can use to describe the desired GMSA of a container to Windows. GMSA credential specs can be generated in YAML format with a utility [PowerShell script](https://github.com/kubernetes-sigs/windows-gmsa/tree/master/scripts/GenerateCredentialSpecResource.ps1). 
+
+With the GMSACredentialSpec CRD installed (as described earlier), custom resources containing GMSA credential specs can be configured. The GMSA credential spec does not contain secret or sensitive data. It is information that a container runtime can use to describe the desired GMSA of a container to Windows. GMSA credential specs can be generated in YAML format with a utility [PowerShell script](https://github.com/kubernetes-sigs/windows-gmsa/tree/master/scripts/GenerateCredentialSpecResource.ps1).
 
 Following are the steps for generating a GMSA credential spec YAML manually in JSON format and then converting it:
 
@@ -60,14 +59,14 @@ Following are the steps for generating a GMSA credential spec YAML manually in J
 
 1. Create a credential spec in JSON format using `New-CredentialSpec`. To create a GMSA credential spec named WebApp1, invoke `New-CredentialSpec -Name WebApp1 -AccountName WebApp1 -Domain $(Get-ADDomain -Current LocalComputer)`
 
-1. Use `Get-CredentialSpec` to show the path of the JSON file. 
+1. Use `Get-CredentialSpec` to show the path of the JSON file.
 
-1. Convert the credspec file from JSON to YAML format and apply the necessary header fields `apiVersion`, `kind`, `metadata` and `credspec` to make it a GMSACredentialSpec custom resource that can be configured in Kubernetes. 
+1. Convert the credspec file from JSON to YAML format and apply the necessary header fields `apiVersion`, `kind`, `metadata` and `credspec` to make it a GMSACredentialSpec custom resource that can be configured in Kubernetes.
 
 The following YAML configuration describes a GMSA credential spec named `gmsa-WebApp1`:
 
 ```yaml
-apiVersion: windows.k8s.io/v1alpha1
+apiVersion: windows.k8s.io/v1
 kind: GMSACredentialSpec
 metadata:
   name: gmsa-WebApp1  #This is an arbitrary name but it will be used as a reference
@@ -92,6 +91,7 @@ credspec:
 The above credential spec resource may be saved as `gmsa-Webapp1-credspec.yaml` and applied to the cluster using: `kubectl apply -f gmsa-Webapp1-credspec.yml`
 
 ## Configure cluster role to enable RBAC on specific GMSA credential specs
+
 A cluster role needs to be defined for each GMSA credential spec resource. This authorizes the `use` verb on a specific GMSA resource by a subject which is typically a service account. The following example shows a cluster role that authorizes usage of the `gmsa-WebApp1` credential spec from above. Save the file as gmsa-webapp1-role.yaml and apply using `kubectl apply -f gmsa-webapp1-role.yaml`
 
 ```yaml
@@ -108,6 +108,7 @@ rules:
 ```
 
 ## Assign role to service accounts to use specific GMSA credspecs
+
 A service account (that Pods will be configured with) needs to be bound to the cluster role create above. This authorizes the service account to use the desired GMSA credential spec resource. The following shows the default service account being bound to a cluster role `webapp1-role` to use `gmsa-WebApp1` credential spec resource created above.
 
 ```yaml
@@ -127,6 +128,7 @@ roleRef:
 ```
 
 ## Configure GMSA credential spec reference in Pod spec
+
 The Pod spec field `securityContext.windowsOptions.gmsaCredentialSpecName` is used to specify references to desired GMSA credential spec custom resources in Pod specs. This configures all containers in the Pod spec to use the specified GMSA. A sample Pod spec with the annotation populated to refer to `gmsa-WebApp1`:
 
 ```yaml
@@ -197,55 +199,17 @@ As Pod specs with GMSA fields populated (as described above) are applied in a cl
 
 1. The container runtime configures each Windows container with the specified GMSA credential spec so that the container can assume the identity of the GMSA in Active Directory and access services in the domain using that identity.
 
-## Containerd 
+## Authenticating to network shares using hostname or FQDN
 
-On Windows Server 2019, in order to use GMSA with containerd, you must be running OS Build 17763.1817 (or later) which can be installed using the patch [KB5000822](https://support.microsoft.com/en-us/topic/march-9-2021-kb5000822-os-build-17763-1817-2eb6197f-e3b1-4f42-ab51-84345e063564). 
+If you are experiencing issues connecting to SMB shares from Pods using hostname or FQDN, but are able to access the shares via their IPv4 address then make sure the following registry key is set on the Windows nodes.
 
-There is also a known issue with containerd that occurs when trying to connect to SMB shares from Pods. Once you have configured GMSA, the pod will be unable to connect to the share using the hostname or FQDN, but connecting to the share using an IP address works as expected. 
-
-```PowerShell
-ping adserver.ad.local
-```
-and correctly resolves the hostname to an IPv4 address. The output is similar to:
-
-```
-Pinging adserver.ad.local [192.168.111.18] with 32 bytes of data:
-Reply from 192.168.111.18: bytes=32 time=6ms TTL=124
-Reply from 192.168.111.18: bytes=32 time=5ms TTL=124
-Reply from 192.168.111.18: bytes=32 time=5ms TTL=124
-Reply from 192.168.111.18: bytes=32 time=5ms TTL=124
+```cmd
+reg add "HKLM\SYSTEM\CurrentControlSet\Services\hns\State" /v EnableCompartmentNamespace /t REG_DWORD /d 1
 ```
 
-However, when attempting to browse the directory using the hostname
-
-```PowerShell
-cd \\adserver.ad.local\test
-```
-
-you see an error that implies the target share doesn't exist:
-
-```
-cd : Cannot find path '\\adserver.ad.local\test' because it does not exist.
-At line:1 char:1
-+ cd \\adserver.ad.local\test
-+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-    + CategoryInfo          : ObjectNotFound: (\\adserver.ad.local\test:String) [Set-Location], ItemNotFoundException
-    + FullyQualifiedErrorId : PathNotFound,Microsoft.PowerShell.Commands.SetLocationCommand
-```
-
-but you notice that the error disappears if you browse to the share using its IPv4 address instead; for example:
-
-```PowerShell
-cd \\192.168.111.18\test
-```
-
-After you change into a directory within the share, you see a prompt similar to:
-
-```
-Microsoft.PowerShell.Core\FileSystem::\\192.168.111.18\test>
-```
-
-To correct the behaviour you must run the following on the node `reg add "HKLM\SYSTEM\CurrentControlSet\Services\hns\State" /v EnableCompartmentNamespace /t REG_DWORD /d 1` to add the required registry key. This node change will only take effect in newly created pods, meaning you must now recreate any running pods which require access to SMB shares.
+Running Pods will then need to be recreated to pick up the behavior changes.
+More information on how this registry key is used can be found [here](
+https://github.com/microsoft/hcsshim/blob/885f896c5a8548ca36c88c4b87fd2208c8d16543/internal/uvm/create.go#L74-L83)
 
 ## Troubleshooting
 
@@ -258,8 +222,10 @@ In the example below the Pod did not get the credspec correctly:
 ```PowerShell
 kubectl exec -it iis-auth-7776966999-n5nzr powershell.exe
 ```
-nltest.exe /parentdomain` results in the following error:
-```
+
+`nltest.exe /parentdomain` results in the following error:
+
+```output
 Getting parent domain failed: Status = 1722 0x6ba RPC_S_SERVER_UNAVAILABLE
 ```
 
@@ -278,7 +244,8 @@ nltest.exe /query
 ```
 
 Results in the following output:
-```
+
+```output
 I_NetLogonControl failed: Status = 1722 0x6ba RPC_S_SERVER_UNAVAILABLE
 ```
 
@@ -289,7 +256,8 @@ nltest /sc_reset:domain.example
 ```
 
 If the command is successful you will see and output similar to this:
-```
+
+```output
 Flags: 30 HAS_IP  HAS_TIMESERV
 Trusted DC Name \\dc10.domain.example
 Trusted DC Connection Status Status = 0 0x0 NERR_Success
diff --git a/content/en/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md b/content/en/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md
index d9ab2056da..05249a9aaf 100644
--- a/content/en/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md
+++ b/content/en/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md
@@ -59,7 +59,7 @@ and restarts it.
 When the container starts, it executes this command:
 
 ```shell
-/bin/sh -c "touch /tmp/healthy; sleep 30; rm -rf /tmp/healthy; sleep 600"
+/bin/sh -c "touch /tmp/healthy; sleep 30; rm -f /tmp/healthy; sleep 600"
 ```
 
 For the first 30 seconds of the container's life, there is a `/tmp/healthy` file.
@@ -81,13 +81,13 @@ kubectl describe pod liveness-exec
 The output indicates that no liveness probes have failed yet:
 
 ```
-FirstSeen    LastSeen    Count   From            SubobjectPath           Type        Reason      Message
---------- --------    -----   ----            -------------           --------    ------      -------
-24s       24s     1   {default-scheduler }                    Normal      Scheduled   Successfully assigned liveness-exec to worker0
-23s       23s     1   {kubelet worker0}   spec.containers{liveness}   Normal      Pulling     pulling image "k8s.gcr.io/busybox"
-23s       23s     1   {kubelet worker0}   spec.containers{liveness}   Normal      Pulled      Successfully pulled image "k8s.gcr.io/busybox"
-23s       23s     1   {kubelet worker0}   spec.containers{liveness}   Normal      Created     Created container with docker id 86849c15382e; Security:[seccomp=unconfined]
-23s       23s     1   {kubelet worker0}   spec.containers{liveness}   Normal      Started     Started container with docker id 86849c15382e
+Type    Reason     Age   From               Message
+  ----    ------     ----  ----               -------
+  Normal  Scheduled  11s   default-scheduler  Successfully assigned default/liveness-exec to node01
+  Normal  Pulling    9s    kubelet, node01    Pulling image "k8s.gcr.io/busybox"
+  Normal  Pulled     7s    kubelet, node01    Successfully pulled image "k8s.gcr.io/busybox"
+  Normal  Created    7s    kubelet, node01    Created container liveness
+  Normal  Started    7s    kubelet, node01    Started container liveness
 ```
 
 After 35 seconds, view the Pod events again:
@@ -97,17 +97,18 @@ kubectl describe pod liveness-exec
 ```
 
 At the bottom of the output, there are messages indicating that the liveness
-probes have failed, and the containers have been killed and recreated.
+probes have failed, and the failed containers have been killed and recreated.
 
 ```
-FirstSeen LastSeen    Count   From            SubobjectPath           Type        Reason      Message
---------- --------    -----   ----            -------------           --------    ------      -------
-37s       37s     1   {default-scheduler }                    Normal      Scheduled   Successfully assigned liveness-exec to worker0
-36s       36s     1   {kubelet worker0}   spec.containers{liveness}   Normal      Pulling     pulling image "k8s.gcr.io/busybox"
-36s       36s     1   {kubelet worker0}   spec.containers{liveness}   Normal      Pulled      Successfully pulled image "k8s.gcr.io/busybox"
-36s       36s     1   {kubelet worker0}   spec.containers{liveness}   Normal      Created     Created container with docker id 86849c15382e; Security:[seccomp=unconfined]
-36s       36s     1   {kubelet worker0}   spec.containers{liveness}   Normal      Started     Started container with docker id 86849c15382e
-2s        2s      1   {kubelet worker0}   spec.containers{liveness}   Warning     Unhealthy   Liveness probe failed: cat: can't open '/tmp/healthy': No such file or directory
+  Type     Reason     Age                From               Message
+  ----     ------     ----               ----               -------
+  Normal   Scheduled  57s                default-scheduler  Successfully assigned default/liveness-exec to node01
+  Normal   Pulling    55s                kubelet, node01    Pulling image "k8s.gcr.io/busybox"
+  Normal   Pulled     53s                kubelet, node01    Successfully pulled image "k8s.gcr.io/busybox"
+  Normal   Created    53s                kubelet, node01    Created container liveness
+  Normal   Started    53s                kubelet, node01    Started container liveness
+  Warning  Unhealthy  10s (x3 over 20s)  kubelet, node01    Liveness probe failed: cat: can't open '/tmp/healthy': No such file or directory
+  Normal   Killing    10s                kubelet, node01    Container liveness failed liveness probe, will be restarted
 ```
 
 Wait another 30 seconds, and verify that the container has been restarted:
@@ -116,7 +117,7 @@ Wait another 30 seconds, and verify that the container has been restarted:
 kubectl get pod liveness-exec
 ```
 
-The output shows that `RESTARTS` has been incremented:
+The output shows that `RESTARTS` has been incremented. Note that the `RESTARTS` counter increments as soon as a failed container comes back to the running state:
 
 ```
 NAME            READY     STATUS    RESTARTS   AGE
@@ -220,11 +221,62 @@ After 15 seconds, view Pod events to verify that liveness probes:
 kubectl describe pod goproxy
 ```
 
+## Define a gRPC liveness probe
+
+{{< feature-state for_k8s_version="v1.24" state="beta" >}}
+
+If your application implements [gRPC Health Checking Protocol](https://github.com/grpc/grpc/blob/master/doc/health-checking.md),
+kubelet can be configured to use it for application liveness checks.
+You must enable the `GRPCContainerProbe`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+in order to configure checks that rely on gRPC.
+
+Here is an example manifest:
+
+{{< codenew file="pods/probe/grpc-liveness.yaml" >}}
+
+To use a gRPC probe, `port` must be configured. If the health endpoint is configured
+on a non-default service, you must also specify the `service`.
+
+{{< note >}}
+Unlike HTTP and TCP probes, named ports cannot be used and custom host cannot be configured.
+{{< /note >}}
+
+Configuration problems (for example: incorrect port and service, unimplemented health checking protocol)
+are considered a probe failure, similar to HTTP and TCP probes.
+
+To try the gRPC liveness check, create a Pod using the command below.
+In the example below, the etcd pod is configured to use gRPC liveness probe.
+
+```shell
+kubectl apply -f https://k8s.io/examples/pods/probe/grpc-liveness.yaml
+```
+
+After 15 seconds, view Pod events to verify that the liveness check has not failed:
+
+```shell
+kubectl describe pod etcd-with-grpc
+```
+
+Before Kubernetes 1.23, gRPC health probes were often implemented using [grpc-health-probe](https://github.com/grpc-ecosystem/grpc-health-probe/),
+as described in the blog post [Health checking gRPC servers on Kubernetes](/blog/2018/10/01/health-checking-grpc-servers-on-kubernetes/).
+The built-in gRPC probes behavior is similar to one implemented by grpc-health-probe.
+When migrating from grpc-health-probe to built-in probes, remember the following differences:
+
+- Built-in probes run against the pod IP address, unlike grpc-health-probe that often runs against `127.0.0.1`.
+  Be sure to configure your gRPC endpoint to listen on the Pod's IP address.
+- Built-in probes do not support any authentication parameters (like `-tls`).
+- There are no error codes for built-in probes. All errors are considered as probe failures.
+- If `ExecProbeTimeout` feature gate is set to `false`, grpc-health-probe does **not** respect the `timeoutSeconds` setting (which defaults to 1s),
+  while built-in probe would fail on timeout.
+
 ## Use a named port
 
 You can use a named
-[ContainerPort](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#containerport-v1-core)
-for HTTP or TCP liveness checks:
+[`port`](/docs/reference/kubernetes-api/workload-resources/pod-v1/#ports)
+for HTTP and TCP probes. (gRPC probes do not support named ports).
+
+For example:
 
 ```yaml
 ports:
@@ -349,7 +401,7 @@ This defect was corrected in Kubernetes v1.20. You may have been relying on the
 even without realizing it, as the default timeout is 1 second.
 As a cluster administrator, you can disable the [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) `ExecProbeTimeout` (set it to `false`)
 on each kubelet to restore the  behavior from older versions, then remove that override
-once all the exec probes in the cluster have a `timeoutSeconds` value set.  
+once all the exec probes in the cluster have a `timeoutSeconds` value set.
 If you have pods that are impacted from the default 1 second timeout,
 you should update their probe timeout so that you're ready for the
 eventual removal of that feature gate.
@@ -386,8 +438,8 @@ to 127.0.0.1. If your pod relies on virtual hosts, which is probably the more co
 case, you should not use `host`, but rather set the `Host` header in `httpHeaders`.
 
 For an HTTP probe, the kubelet sends two request headers in addition to the mandatory `Host` header:
-`User-Agent`, and `Accept`. The default values for these headers are `kube-probe/{{< skew latestVersion >}}`
-(where `{{< skew latestVersion >}}` is the version of the kubelet ), and `*/*` respectively.
+`User-Agent`, and `Accept`. The default values for these headers are `kube-probe/{{< skew currentVersion >}}`
+(where `{{< skew currentVersion >}}` is the version of the kubelet ), and `*/*` respectively.
 
 You can override the default headers by defining `.httpHeaders` for the probe; for example
 
@@ -454,7 +506,7 @@ those existing Pods.
 
 When you (or the control plane, or some other component) create replacement
 Pods, and the feature gate `ProbeTerminationGracePeriod` is disabled, then the
-API server ignores the Pod-level `terminationGracePeriodSeconds` field, even if
+API server ignores the Probe-level `terminationGracePeriodSeconds` field, even if
 a Pod or pod template specifies it.
 {{< /note >}}
 
@@ -487,12 +539,11 @@ It will be rejected by the API server.
 
 ## {{% heading "whatsnext" %}}
 
-
 * Learn more about
 [Container Probes](/docs/concepts/workloads/pods/pod-lifecycle/#container-probes).
 
 You can also read the API references for:
 
-* [Pod](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#pod-v1-core)
-* [Container](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core)
-* [Probe](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#probe-v1-core)
+* [Pod](/docs/reference/kubernetes-api/workload-resources/pod-v1/), and specifically:
+  * [container(s)](/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container)
+  * [probe(s)](/docs/reference/kubernetes-api/workload-resources/pod-v1/#Probe)
diff --git a/content/en/docs/tasks/configure-pod-container/configure-persistent-volume-storage.md b/content/en/docs/tasks/configure-pod-container/configure-persistent-volume-storage.md
index a53d278223..8148a465f0 100644
--- a/content/en/docs/tasks/configure-pod-container/configure-persistent-volume-storage.md
+++ b/content/en/docs/tasks/configure-pod-container/configure-persistent-volume-storage.md
@@ -88,7 +88,7 @@ would provision a network resource like a Google Compute Engine persistent disk,
 an NFS share, or an Amazon Elastic Block Store volume. Cluster administrators can also
 use [StorageClasses](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#storageclass-v1-storage)
 to set up
-[dynamic provisioning](https://kubernetes.io/blog/2016/10/dynamic-provisioning-and-storage-in-kubernetes).
+[dynamic provisioning](/blog/2016/10/dynamic-provisioning-and-storage-in-kubernetes).
 
 Here is the configuration file for the hostPath PersistentVolume:
 
@@ -236,8 +236,14 @@ sudo rmdir /mnt/data
 
 You can now close the shell to your Node.
 
+## Mounting the same persistentVolume in two places
 
+{{< codenew file="pods/storage/pv-duplicate.yaml" >}}
 
+You can perform 2 volume mounts on your nginx container:
+
+`/usr/share/nginx/html` for the static website
+`/etc/nginx/nginx.conf` for the default config
 
 <!-- discussion -->
 
@@ -276,7 +282,7 @@ PersistentVolume are not present on the Pod resource itself.
 
 
 * Learn more about [PersistentVolumes](/docs/concepts/storage/persistent-volumes/).
-* Read the [Persistent Storage design document](https://git.k8s.io/community/contributors/design-proposals/storage/persistent-storage.md).
+* Read the [Persistent Storage design document](https://git.k8s.io/design-proposals-archive/storage/persistent-storage.md).
 
 ### Reference
 
diff --git a/content/en/docs/tasks/configure-pod-container/configure-pod-configmap.md b/content/en/docs/tasks/configure-pod-container/configure-pod-configmap.md
index d52a4acc66..02329f931c 100644
--- a/content/en/docs/tasks/configure-pod-container/configure-pod-configmap.md
+++ b/content/en/docs/tasks/configure-pod-container/configure-pod-configmap.md
@@ -8,10 +8,12 @@ card:
 ---
 
 <!-- overview -->
+Many applications rely on configuration which is used during either application initialization or runtime.
+Most of the times there is a requirement to adjust values assigned to configuration parameters.
+ConfigMaps are the Kubernetes way to inject application pods with configuration data.
 ConfigMaps allow you to decouple configuration artifacts from image content to keep containerized applications portable. This page provides a series of usage examples demonstrating how to create ConfigMaps and configure Pods using data stored in ConfigMaps.
 
 
-
 ## {{% heading "prerequisites" %}}
 
 
@@ -216,6 +218,7 @@ Use the option `--from-env-file` to create a ConfigMap from an env-file, for exa
 
 # Download the sample files into `configure-pod-container/configmap/` directory
 wget https://kubernetes.io/examples/configmap/game-env-file.properties -O configure-pod-container/configmap/game-env-file.properties
+wget https://kubernetes.io/examples/configmap/ui-env-file.properties -O configure-pod-container/configmap/ui-env-file.properties
 
 # The env-file `game-env-file.properties` looks like below
 cat configure-pod-container/configmap/game-env-file.properties
@@ -253,17 +256,10 @@ data:
   lives: "3"
 ```
 
-{{< caution >}}
-When passing `--from-env-file` multiple times to create a ConfigMap from multiple data sources, only the last env-file is used.
-{{< /caution >}}
-
-The behavior of passing `--from-env-file` multiple times is demonstrated by:
+Starting with Kubernetes v1.23, `kubectl` supports the `--from-env-file` argument to be
+specified multiple times to create a ConfigMap from multiple data sources.
 
 ```shell
-# Download the sample files into `configure-pod-container/configmap/` directory
-wget https://kubernetes.io/examples/configmap/ui-env-file.properties -O configure-pod-container/configmap/ui-env-file.properties
-
-# Create the configmap
 kubectl create configmap config-multi-env-files \
         --from-env-file=configure-pod-container/configmap/game-env-file.properties \
         --from-env-file=configure-pod-container/configmap/ui-env-file.properties
@@ -286,8 +282,11 @@ metadata:
   resourceVersion: "810136"
   uid: 252c4572-eb35-11e7-887b-42010a8002b8
 data:
+  allowed: '"true"'
   color: purple
+  enemies: aliens
   how: fairlyNice
+  lives: "3"
   textmode: "true"
 ```
 
@@ -462,35 +461,35 @@ configmap/special-config-2-c92b5mmcf2 created
 
 ### Define a container environment variable with data from a single ConfigMap
 
-1.  Define an environment variable as a key-value pair in a ConfigMap:
+1. Define an environment variable as a key-value pair in a ConfigMap:
 
-    ```shell
-    kubectl create configmap special-config --from-literal=special.how=very
-    ```
+   ```shell
+   kubectl create configmap special-config --from-literal=special.how=very
+   ```
 
-2.  Assign the `special.how` value defined in the ConfigMap to the `SPECIAL_LEVEL_KEY` environment variable in the Pod specification.
+2. Assign the `special.how` value defined in the ConfigMap to the `SPECIAL_LEVEL_KEY` environment variable in the Pod specification.
 
    {{< codenew file="pods/pod-single-configmap-env-variable.yaml" >}}
 
    Create the Pod:
 
- ```shell
- kubectl create -f https://kubernetes.io/examples/pods/pod-single-configmap-env-variable.yaml
- ```
+   ```shell
+   kubectl create -f https://kubernetes.io/examples/pods/pod-single-configmap-env-variable.yaml
+   ```
 
    Now, the Pod's output includes environment variable `SPECIAL_LEVEL_KEY=very`.
 
 ### Define container environment variables with data from multiple ConfigMaps
 
- * As with the previous example, create the ConfigMaps first.
+* As with the previous example, create the ConfigMaps first.
 
-   {{< codenew file="configmap/configmaps.yaml" >}}
+  {{< codenew file="configmap/configmaps.yaml" >}}
 
-   Create the ConfigMap:
+  Create the ConfigMap:
 
- ```shell
- kubectl create -f https://kubernetes.io/examples/configmap/configmaps.yaml
- ```
+  ```shell
+  kubectl create -f https://kubernetes.io/examples/configmap/configmaps.yaml
+  ```
 
 * Define the environment variables in the Pod specification.
 
@@ -498,9 +497,9 @@ configmap/special-config-2-c92b5mmcf2 created
 
   Create the Pod:
 
- ```shell
- kubectl create -f https://kubernetes.io/examples/pods/pod-multiple-configmap-env-variable.yaml
- ```
+  ```shell
+  kubectl create -f https://kubernetes.io/examples/pods/pod-multiple-configmap-env-variable.yaml
+  ```
 
   Now, the Pod's output includes environment variables `SPECIAL_LEVEL_KEY=very` and `LOG_LEVEL=INFO`.
 
@@ -516,21 +515,21 @@ This functionality is available in Kubernetes v1.6 and later.
 
   Create the ConfigMap:
 
- ```shell
- kubectl create -f https://kubernetes.io/examples/configmap/configmap-multikeys.yaml
- ```
+  ```shell
+  kubectl create -f https://kubernetes.io/examples/configmap/configmap-multikeys.yaml
+  ```
 
 * Use `envFrom` to define all of the ConfigMap's data as container environment variables. The key from the ConfigMap becomes the environment variable name in the Pod.
 
- {{< codenew file="pods/pod-configmap-envFrom.yaml" >}}
+  {{< codenew file="pods/pod-configmap-envFrom.yaml" >}}
 
- Create the Pod:
+  Create the Pod:
 
- ```shell
- kubectl create -f https://kubernetes.io/examples/pods/pod-configmap-envFrom.yaml
- ```
+  ```shell
+  kubectl create -f https://kubernetes.io/examples/pods/pod-configmap-envFrom.yaml
+  ```
 
- Now, the Pod's output includes environment variables `SPECIAL_LEVEL=very` and `SPECIAL_TYPE=charm`.
+  Now, the Pod's output includes environment variables `SPECIAL_LEVEL=very` and `SPECIAL_TYPE=charm`.
 
 
 ## Use ConfigMap-defined environment variables in Pod commands
@@ -549,7 +548,7 @@ kubectl create -f https://kubernetes.io/examples/pods/pod-configmap-env-var-valu
 
 produces the following output in the `test-container` container:
 
-```shell
+```
 very charm
 ```
 
@@ -583,7 +582,7 @@ kubectl create -f https://kubernetes.io/examples/pods/pod-configmap-volume.yaml
 
 When the pod runs, the command `ls /etc/config/` produces the output below:
 
-```shell
+```
 SPECIAL_LEVEL
 SPECIAL_TYPE
 ```
@@ -611,7 +610,7 @@ kubectl create -f https://kubernetes.io/examples/pods/pod-configmap-volume-speci
 
 When the pod runs, the command `cat /etc/config/keys` produces the output below:
 
-```shell
+```
 very
 ```
 
@@ -624,25 +623,6 @@ Like before, all previous files in the `/etc/config/` directory will be deleted.
 You can project keys to specific paths and specific permissions on a per-file
 basis. The [Secrets](/docs/concepts/configuration/secret/#using-secrets-as-files-from-a-pod) user guide explains the syntax.
 
-### Optional References
-
-A ConfigMap reference may be marked "optional".  If the ConfigMap is non-existent, the mounted volume will be empty. If the ConfigMap exists, but the referenced
-key is non-existent the path will be absent beneath the mount point.
-
-### Mounted ConfigMaps are updated automatically
-
-When a mounted ConfigMap is updated, the projected content is eventually updated too.  This applies in the case where an optionally referenced ConfigMap comes into
-existence after a pod has started.
-
-Kubelet checks whether the mounted ConfigMap is fresh on every periodic sync. However, it uses its local TTL-based cache for getting the current value of the
-ConfigMap. As a result, the total delay from the moment when the ConfigMap is updated to the moment when new keys are projected to the pod can be as long as
-kubelet sync period (1 minute by default) + TTL of ConfigMaps cache (1 minute by default) in kubelet. You can trigger an immediate refresh by updating one of
-the pod's annotations.
-
-{{< note >}}
-A container using a ConfigMap as a [subPath](/docs/concepts/storage/volumes/#using-subpath) volume will not receive ConfigMap updates.
-{{< /note >}}
-
 
 
 <!-- discussion -->
@@ -677,27 +657,94 @@ data:
 
 ### Restrictions
 
-- You must create a ConfigMap before referencing it in a Pod specification (unless you mark the ConfigMap as "optional"). If you reference a ConfigMap that doesn't exist, the Pod won't start. Likewise, references to keys that don't exist in the ConfigMap will prevent the pod from starting.
+- You must create the `ConfigMap` object before you reference it in a Pod specification. Alternatively, mark the ConfigMap reference as `optional` in the Pod spec (see [Optional ConfigMaps](#optional-configmaps)). If you reference a ConfigMap that doesn't exist and you don't mark the reference as `optional`, the Pod won't start. Similarly, references to keys that don't exist in the ConfigMap will also prevent the Pod from starting, unless you mark the key references as `optional`.
 
 - If you use `envFrom` to define environment variables from ConfigMaps, keys that are considered invalid will be skipped. The pod will be allowed to start, but the invalid names will be recorded in the event log (`InvalidVariableNames`). The log message lists each skipped key. For example:
 
-   ```shell
-   kubectl get events
-   ```
+  ```shell
+  kubectl get events
+  ```
 
-   The output is similar to this:
-   ```
-   LASTSEEN FIRSTSEEN COUNT NAME          KIND  SUBOBJECT  TYPE      REASON                            SOURCE                MESSAGE
-   0s       0s        1     dapi-test-pod Pod              Warning   InvalidEnvironmentVariableNames   {kubelet, 127.0.0.1}  Keys [1badkey, 2alsobad] from the EnvFrom configMap default/myconfig were skipped since they are considered invalid environment variable names.
-   ```
+  The output is similar to this:
+  ```
+  LASTSEEN FIRSTSEEN COUNT NAME          KIND  SUBOBJECT  TYPE      REASON                            SOURCE                MESSAGE
+  0s       0s        1     dapi-test-pod Pod              Warning   InvalidEnvironmentVariableNames   {kubelet, 127.0.0.1}  Keys [1badkey, 2alsobad] from the EnvFrom configMap default/myconfig were skipped since they are considered invalid environment variable names.
+  ```
 
 - ConfigMaps reside in a specific {{< glossary_tooltip term_id="namespace" >}}. A ConfigMap can only be referenced by pods residing in the same namespace.
 
 - You can't use ConfigMaps for {{< glossary_tooltip text="static pods" term_id="static-pod" >}}, because the Kubelet does not support this.
 
+### Optional ConfigMaps
 
+You can mark a reference to a ConfigMap as _optional_ in a Pod specification.
+If the ConfigMap doesn't exist, the configuration for which it provides data in the Pod (e.g. environment variable, mounted volume) will be empty.
+If the ConfigMap exists, but the referenced key is non-existent the data is also empty.
+
+For example, the following Pod specification marks an environment variable from a ConfigMap as optional:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: dapi-test-pod
+spec:
+  containers:
+    - name: test-container
+      image: gcr.io/google_containers/busybox
+      command: [ "/bin/sh", "-c", "env" ]
+      env:
+        - name: SPECIAL_LEVEL_KEY
+          valueFrom:
+            configMapKeyRef:
+              name: a-config
+              key: akey
+              optional: true # mark the variable as optional
+  restartPolicy: Never
+```
+
+If you run this pod, and there is no ConfigMap named `a-config`, the output is empty.
+If you run this pod, and there is a ConfigMap named `a-config` but that ConfigMap doesn't have
+a key named `akey`, the output is also empty. If you do set a value for `akey` in the `a-config`
+ConfigMap, this pod prints that value and then terminates.
+
+You can also mark the volumes and files provided by a ConfigMap as optional. Kubernetes always creates the mount paths for the volume, even if the referenced ConfigMap or key doesn't exist. For example, the following
+Pod specification marks a volume that references a ConfigMap as optional:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: dapi-test-pod
+spec:
+  containers:
+    - name: test-container
+      image: gcr.io/google_containers/busybox
+      command: [ "/bin/sh", "-c", "ls /etc/config" ]
+      volumeMounts:
+      - name: config-volume
+        mountPath: /etc/config
+  volumes:
+    - name: config-volume
+      configMap:
+        name: no-config
+        optional: true # mark the source ConfigMap as optional
+  restartPolicy: Never
+```
+
+### Mounted ConfigMaps are updated automatically
+
+When a mounted ConfigMap is updated, the projected content is eventually updated too.  This applies in the case where an optionally referenced ConfigMap comes into
+existence after a pod has started.
+
+The kubelet checks whether the mounted ConfigMap is fresh on every periodic sync. However, it uses its local TTL-based cache for getting the current value of the
+ConfigMap. As a result, the total delay from the moment when the ConfigMap is updated to the moment when new keys are projected to the pod can be as long as
+kubelet sync period (1 minute by default) + TTL of ConfigMaps cache (1 minute by default) in kubelet.
+
+{{< note >}}
+A container using a ConfigMap as a [subPath](/docs/concepts/storage/volumes/#using-subpath) volume will not receive ConfigMap updates.
+{{< /note >}}
 
 ## {{% heading "whatsnext" %}}
 
 * Follow a real world example of [Configuring Redis using a ConfigMap](/docs/tutorials/configuration/configure-redis-using-configmap/).
-
diff --git a/content/en/docs/tasks/configure-pod-container/configure-pod-initialization.md b/content/en/docs/tasks/configure-pod-container/configure-pod-initialization.md
index cca96f2b79..97457b55f1 100644
--- a/content/en/docs/tasks/configure-pod-container/configure-pod-initialization.md
+++ b/content/en/docs/tasks/configure-pod-container/configure-pod-initialization.md
@@ -85,8 +85,7 @@ The output shows that nginx is serving the web page that was written by the init
 [communicating between Containers running in the same Pod](/docs/tasks/access-application-cluster/communicate-containers-same-pod-shared-volume/).
 * Learn more about [Init Containers](/docs/concepts/workloads/pods/init-containers/).
 * Learn more about [Volumes](/docs/concepts/storage/volumes/).
-* Learn more about [Debugging Init Containers](/docs/tasks/debug-application-cluster/debug-init-containers/)
-
+* Learn more about [Debugging Init Containers](/docs/tasks/debug/debug-application/debug-init-containers/)
 
 
 
diff --git a/content/en/docs/tasks/configure-pod-container/configure-projected-volume-storage.md b/content/en/docs/tasks/configure-pod-container/configure-projected-volume-storage.md
index ca71e7a721..fb558931db 100644
--- a/content/en/docs/tasks/configure-pod-container/configure-projected-volume-storage.md
+++ b/content/en/docs/tasks/configure-pod-container/configure-projected-volume-storage.md
@@ -83,5 +83,5 @@ kubectl delete secret user pass
 ## {{% heading "whatsnext" %}}
 
 * Learn more about [`projected`](/docs/concepts/storage/volumes/#projected) volumes.
-* Read the [all-in-one volume](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/node/all-in-one-volume.md) design document.
+* Read the [all-in-one volume](https://git.k8s.io/design-proposals-archive/node/all-in-one-volume.md) design document.
 
diff --git a/content/en/docs/tasks/configure-pod-container/configure-runasusername.md b/content/en/docs/tasks/configure-pod-container/configure-runasusername.md
index 9ddcac270f..58028f9c89 100644
--- a/content/en/docs/tasks/configure-pod-container/configure-runasusername.md
+++ b/content/en/docs/tasks/configure-pod-container/configure-runasusername.md
@@ -57,7 +57,7 @@ echo $env:USERNAME
 
 The output should be:
 
-```shell
+```
 ContainerUser
 ```
 
@@ -97,7 +97,7 @@ echo $env:USERNAME
 
 The output should be:
 
-```shell
+```
 ContainerAdministrator
 ```
 
@@ -120,7 +120,7 @@ For more information about these limtations, check [here](https://support.micros
 ## {{% heading "whatsnext" %}}
 
 
-* [Guide for scheduling Windows containers in Kubernetes](/docs/setup/production-environment/windows/user-guide-windows-containers/)
-* [Managing Workload Identity with Group Managed Service Accounts (GMSA)](/docs/setup/production-environment/windows/user-guide-windows-containers/#managing-workload-identity-with-group-managed-service-accounts)
+* [Guide for scheduling Windows containers in Kubernetes](/docs/concepts/windows/user-guide/)
+* [Managing Workload Identity with Group Managed Service Accounts (GMSA)](/docs/concepts/windows/user-guide/#managing-workload-identity-with-group-managed-service-accounts)
 * [Configure GMSA for Windows pods and containers](/docs/tasks/configure-pod-container/configure-gmsa/)
 
diff --git a/content/en/docs/tasks/configure-pod-container/configure-service-account.md b/content/en/docs/tasks/configure-pod-container/configure-service-account.md
index e5a0e26ea0..b241eb9d12 100644
--- a/content/en/docs/tasks/configure-pod-container/configure-service-account.md
+++ b/content/en/docs/tasks/configure-pod-container/configure-service-account.md
@@ -29,7 +29,7 @@ When they do, they are authenticated as a particular Service Account (for exampl
 
 <!-- steps -->
 
-## Use the Default Service Account to access the API server.
+## Use the Default Service Account to access the API server
 
 When you create a pod, if you do not specify a service account, it is
 automatically assigned the `default` service account in the same namespace.
@@ -42,7 +42,7 @@ You can access the API from inside a pod using automatically mounted service acc
 The API permissions of the service account depend on the
 [authorization plugin and policy](/docs/reference/access-authn-authz/authorization/#authorization-modules) in use.
 
-In version 1.6+, you can opt out of automounting API credentials for a service account by setting `automountServiceAccountToken: false` on the service account:
+You can opt out of automounting API credentials on `/var/run/secrets/kubernetes.io/serviceaccount/token` for a service account by setting `automountServiceAccountToken: false` on the ServiceAccount:
 
 ```yaml
 apiVersion: v1
@@ -68,7 +68,7 @@ spec:
 
 The pod spec takes precedence over the service account if both specify a `automountServiceAccountToken` value.
 
-## Use Multiple Service Accounts.
+## Use Multiple Service Accounts
 
 Every namespace has a default service account resource called `default`.
 You can list this and any other serviceAccount resources in the namespace with this command:
@@ -136,7 +136,7 @@ You can clean up the service account from this example like this:
 kubectl delete serviceaccount/build-robot
 ```
 
-## Manually create a service account API token.
+## Manually create a service account API token
 
 Suppose we have an existing service account named "build-robot" as mentioned above, and we create
 a new secret manually.
@@ -290,9 +290,17 @@ To enable and use token request projection, you must specify each of the followi
 command line arguments to `kube-apiserver`:
 
 * `--service-account-issuer`
+
+     It can be used as the Identifier of the service account token issuer. You can specify the `--service-account-issuer` argument multiple times, this can be useful to enable a non-disruptive change of the issuer. When this flag is specified multiple times, the first is used to generate tokens and all are used to determine which issuers are accepted. You must be running Kubernetes v1.22 or later to be able to specify `--service-account-issuer` multiple times.
 * `--service-account-key-file`
+
+     File containing PEM-encoded x509 RSA or ECDSA private or public keys, used to verify ServiceAccount tokens. The specified file can contain multiple keys, and the flag can be specified multiple times with different files. If specified multiple times, tokens signed by any of the specified keys are considered valid by the Kubernetes API server.
 * `--service-account-signing-key-file`
-* `--api-audiences`
+
+     Path to the file that contains the current private key of the service account token issuer. The issuer signs issued ID tokens with this private key.
+* `--api-audiences` (can be omitted)
+
+     The service account token authenticator validates that tokens used against the API are bound to at least one of these audiences. If `api-audiences` is specified multiple times, tokens for any of the specified audiences are considered valid by the Kubernetes API server. If the `--service-account-issuer` flag is configured and this flag is not, this field defaults to a single element list containing the issuer URL.
 
 {{< /note >}}
 
diff --git a/content/en/docs/tasks/configure-pod-container/create-hostprocess-pod.md b/content/en/docs/tasks/configure-pod-container/create-hostprocess-pod.md
index 2ab2bd3661..ed5506c45b 100644
--- a/content/en/docs/tasks/configure-pod-container/create-hostprocess-pod.md
+++ b/content/en/docs/tasks/configure-pod-container/create-hostprocess-pod.md
@@ -2,168 +2,161 @@
 title: Create a Windows HostProcess Pod
 content_type: task
 weight: 20
-min-kubernetes-server-version: 1.22
+min-kubernetes-server-version: 1.23
 ---
 
 <!-- overview -->
 
-{{< feature-state for_k8s_version="v1.22" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
 
-Windows HostProcess containers enable you to run containerized 
-workloads on a Windows host. These containers operate as 
-normal processes but have access to the host network namespace, 
-storage, and devices when given the appropriate user privileges. 
+Windows HostProcess containers enable you to run containerized
+workloads on a Windows host. These containers operate as
+normal processes but have access to the host network namespace,
+storage, and devices when given the appropriate user privileges.
 HostProcess containers can be used to deploy network plugins,
-storage configurations, device plugins, kube-proxy, and other 
-components to Windows nodes without the need for dedicated proxies or 
+storage configurations, device plugins, kube-proxy, and other
+components to Windows nodes without the need for dedicated proxies or
 the direct installation of host services.
 
-Administrative tasks such as installation of security patches, event 
-log collection, and more can be performed without requiring cluster operators to 
-log onto each Window node. HostProcess containers can run as any user that is 
-available on the host or is in the domain of the host machine, allowing administrators 
-to restrict resource access through user permissions. While neither filesystem or process 
-isolation are supported, a new volume is created on the host upon starting the container 
-to give it a clean and consolidated workspace. HostProcess containers can also be built on 
-top of existing Windows base images and do not inherit the same 
-[compatibility requirements](https://docs.microsoft.com/virtualization/windowscontainers/deploy-containers/version-compatibility) 
-as Windows server containers, meaning that the version of the base images does not need 
-to match that of the host. HostProcess containers also support 
-[volume mounts](./create-hostprocess-pod#volume-mounts) within the container volume.
+Administrative tasks such as installation of security patches, event
+log collection, and more can be performed without requiring cluster operators to
+log onto each Windows node. HostProcess containers can run as any user that is
+available on the host or is in the domain of the host machine, allowing administrators
+to restrict resource access through user permissions. While neither filesystem or process
+isolation are supported, a new volume is created on the host upon starting the container
+to give it a clean and consolidated workspace. HostProcess containers can also be built on
+top of existing Windows base images and do not inherit the same
+[compatibility requirements](https://docs.microsoft.com/virtualization/windowscontainers/deploy-containers/version-compatibility)
+as Windows server containers, meaning that the version of the base images does not need
+to match that of the host. It is, however, recommended that you use the same base image
+version as your Windows Server container workloads to ensure you do not have any unused
+images taking up space on the node. HostProcess containers also support
+[volume mounts](#volume-mounts) within the container volume.
 
 ### When should I use a Windows HostProcess container?
 
-- When you need to perform tasks which require the networking namespace of the host. 
+- When you need to perform tasks which require the networking namespace of the host.
 HostProcess containers have access to the host's network interfaces and IP addresses.
 - You need access to resources on the host such as the filesystem, event logs, etc.
 - Installation of specific device drivers or Windows services.
-- Consolidation of administrative tasks and security policies. This reduces the degree of 
+- Consolidation of administrative tasks and security policies. This reduces the degree of
 privileges needed by Windows nodes.
 
 
 ## {{% heading "prerequisites" %}}
 
-{{% version-check %}}
+<!-- change this when graduating to stable -->
 
-To enable HostProcess containers while in Alpha you need to pass the following feature gate flag to 
-**kubelet** and **kube-apiserver**. 
-See [Features Gates](/docs/reference/command-line-tools-reference/feature-gates/#overview) 
+This task guide is specific to Kubernetes v{{< skew currentVersion >}}.
+If you are not running Kubernetes v{{< skew currentVersion >}}, check the documentation for
+that version of Kubernetes.
+
+In Kubernetes {{< skew currentVersion >}}, the HostProcess container feature is enabled by default. The kubelet will
+communicate with containerd directly by passing the hostprocess flag via CRI. You can use the
+latest version of containerd (v1.6+) to run HostProcess containers.
+[How to install containerd.](/docs/setup/production-environment/container-runtimes/#containerd)
+
+To *disable* HostProcess containers you need to pass the following feature gate flag to the
+**kubelet** and **kube-apiserver**:
+
+```powershell
+--feature-gates=WindowsHostProcessContainers=false
+```
+
+See [Features Gates](/docs/reference/command-line-tools-reference/feature-gates/#overview)
 documentation for more details.
 
-```
---feature-gates=WindowsHostProcessContainers=true
-```
 
-You can use the latest version of Containerd (v1.5.4+) with the following settings using the containerd 
-v2 configuration. Add these annotations to any runtime configurations were you wish to enable the 
-HostProcess container feature.
-
-
-```
-[plugins]
-  [plugins."io.containerd.grpc.v1.cri"]
-    [plugins."io.containerd.grpc.v1.cri".containerd]
-      [plugins."io.containerd.grpc.v1.cri".containerd.default_runtime]
-        container_annotations = ["microsoft.com/hostprocess-container"]
-        pod_annotations = ["microsoft.com/hostprocess-container"]
-    [plugins."io.containerd.grpc.v1.cri".containerd.runtimes]
-      [plugins."io.containerd.grpc.v1.cri".containerd.runtimes.runhcs-wcow-process]
-        container_annotations = ["microsoft.com/hostprocess-container"]
-        pod_annotations = ["microsoft.com/hostprocess-container"]
-```
-
-The current versions of containerd ship with a version of hcsshim that does not have support. 
-You will need to build a version of hcsshim from the main branch following the 
-[instructions in hcsshim](https://github.com/Microsoft/hcsshim/#containerd-shim). 
-Once the containerd shim is built you can replace the file in your contianerd installation. 
-For example if you followed the instructions to 
-[install containerd](/docs/setup/production-environment/container-runtimes/#containerd)
-replace the `containerd-shim-runhcs-v1.exe` is installed at `$Env:ProgramFiles\containerd` with the newly built shim.
 
 ## Limitations
 
-- HostProcess containers require version 1.5.4 or higher of the containerd {{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}.
-- As of v1.22 HostProcess pods can only contain HostProcess containers. This is a current limitation 
-of the Windows OS; non-privileged Windows containers cannot share a vNIC with the host IP namespace.
-- HostProcess containers run as a process on the host and do not have any degree of 
-isolation other than resource constraints imposed on the HostProcess user account. Neither 
-filesystem or Hyper-V isolation are supported for HostProcess containers.
-- Volume mounts are supported and are mounted under the container volume. 
-See [Volume Mounts](#volume-mounts)
-- A limited set of host user accounts are available for HostProcess containers by default. 
-See [Choosing a User Account](#choosing-a-user-account).
-- Resource limits (disk, memory, cpu count) are supported in the same fashion as processes 
-on the host.
-- Both Named pipe mounts and Unix domain sockets are **not** currently supported and should instead 
-be accessed via their path on the host (e.g. \\\\.\\pipe\\\*)
+These limitations are relevant for Kubernetes v{{< skew currentVersion >}}:
+
+- HostProcess containers require containerd 1.6 or higher
+  {{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}.
+- HostProcess pods can only contain HostProcess containers. This is a current limitation
+  of the Windows OS; non-privileged Windows containers cannot share a vNIC with the host IP namespace.
+- HostProcess containers run as a process on the host and do not have any degree of
+  isolation other than resource constraints imposed on the HostProcess user account. Neither
+  filesystem or Hyper-V isolation are supported for HostProcess containers.
+- Volume mounts are supported and are mounted under the container volume. See
+  [Volume Mounts](#volume-mounts)
+- A limited set of host user accounts are available for HostProcess containers by default.
+  See [Choosing a User Account](#choosing-a-user-account).
+- Resource limits (disk, memory, cpu count) are supported in the same fashion as processes
+  on the host.
+- Both Named pipe mounts and Unix domain sockets are **not** supported and should instead
+  be accessed via their path on the host (e.g. \\\\.\\pipe\\\*)
 
 ## HostProcess Pod configuration requirements
 
-Enabling a Windows HostProcess pod requires setting the right configurations in the pod security 
-configuration. Of the policies defined in the [Pod Security Standards](/docs/concepts/security/pod-security-standards) 
-HostProcess pods are disallowed by the baseline and restricted policies. It is therefore recommended 
-that HostProcess pods run in alignment with the privileged profile. 
+Enabling a Windows HostProcess pod requires setting the right configurations in the pod security
+configuration. Of the policies defined in the [Pod Security Standards](/docs/concepts/security/pod-security-standards)
+HostProcess pods are disallowed by the baseline and restricted policies. It is therefore recommended
+that HostProcess pods run in alignment with the privileged profile.
 
 When running under the privileged policy, here are
 the configurations which need to be set to enable the creation of a HostProcess pod:
 
 <table>
-	<caption style="display:none">Privileged policy specification</caption>
-	<tbody>
-		<tr>
-			<td><strong>Control</strong></td>
-			<td><strong>Policy</strong></td>
-		</tr>
-		<tr>
-			<td style="white-space: nowrap"><a href="/docs/concepts/security/pod-security-standards">Windows HostProcess</a></td>
-			<td>
-				<p>Windows pods offer the ability to run <a href="/docs/tasks/configure-pod-container/create-hostprocess-pod">
+  <caption style="display: none">Privileged policy specification</caption>
+  <thead>
+    <tr>
+      <th>Control</th>
+      <th>Policy</th>
+    </tr>
+  </thead>
+  <tbody>
+    <tr>
+      <td style="white-space: nowrap"><a href="/docs/concepts/security/pod-security-standards"><tt>securityContext.windowsOptions.hostProcess</tt></a></td>
+      <td>
+        <p>Windows pods offer the ability to run <a href="/docs/tasks/configure-pod-container/create-hostprocess-pod">
         HostProcess containers</a> which enables privileged access to the Windows node. </p>
-				<p><strong>Allowed Values</strong></p>
-				<ul>
-					<li><code>true</code></li>
-				</ul>
-			</td>
-		</tr>
-		<tr>
-			<td style="white-space: nowrap"><a href="/docs/concepts/security/pod-security-standards">Host Networking</a></td>
-			<td>
-				<p>Will be in host network by default initially. Support 
-				to set network to a different compartment may be desirable in 
-				the future.</p>
-				<p><strong>Allowed Values</strong></p>
-				<ul>
-					<li><code>true</code></li>
-				</ul>
-			</td>
-		</tr>
+        <p><strong>Allowed Values</strong></p>
+        <ul>
+          <li><code>true</code></li>
+        </ul>
+      </td>
+    </tr>
     <tr>
-			<td style="white-space: nowrap"><a href="/docs/tasks/configure-pod-container/configure-runasusername/">runAsUsername</a></td>
-			<td>
-				<p>Specification of which user the HostProcess container should run as is required for the pod spec.</p>
-				<p><strong>Allowed Values</strong></p>
-				<ul>
-          			<li><code>NT AUTHORITY\SYSTEM</code></li>
-					<li><code>NT AUTHORITY\Local service</code></li>
-					<li><code>NT AUTHORITY\NetworkService</code></li>
-				</ul>
-			</td>
-		</tr>
+      <td style="white-space: nowrap"><a href="/docs/concepts/security/pod-security-standards"><tt>hostNetwork</tt></a></td>
+      <td>
+        <p>Will be in host network by default initially. Support
+        to set network to a different compartment may be desirable in
+        the future.</p>
+        <p><strong>Allowed Values</strong></p>
+        <ul>
+          <li><code>true</code></li>
+        </ul>
+      </td>
+    </tr>
     <tr>
-			<td style="white-space: nowrap"><a href="/docs/concepts/security/pod-security-standards">runAsNonRoot</a></td>
-			<td>
-				<p>Because HostProcess containers have privileged access to the host, the <tt>runAsNonRoot</tt> field cannot be set to true.</p>
-				<p><strong>Allowed Values</strong></p>
-				<ul>
+      <td style="white-space: nowrap"><a href="/docs/tasks/configure-pod-container/configure-runasusername/"><tt>securityContext.windowsOptions.runAsUsername</tt></a></td>
+      <td>
+        <p>Specification of which user the HostProcess container should run as is required for the pod spec.</p>
+        <p><strong>Allowed Values</strong></p>
+        <ul>
+          <li><code>NT AUTHORITY\SYSTEM</code></li>
+          <li><code>NT AUTHORITY\Local service</code></li>
+          <li><code>NT AUTHORITY\NetworkService</code></li>
+        </ul>
+      </td>
+    </tr>
+    <tr>
+      <td style="white-space: nowrap"><a href="/docs/concepts/security/pod-security-standards"><tt>runAsNonRoot</tt></a></td>
+      <td>
+        <p>Because HostProcess containers have privileged access to the host, the <tt>runAsNonRoot</tt> field cannot be set to true.</p>
+        <p><strong>Allowed Values</strong></p>
+        <ul>
           <li>Undefined/Nil</li>
-					<li><code>false</code></li>
-				</ul>
-			</td>
-		</tr>
-	</tbody>
+          <li><code>false</code></li>
+        </ul>
+      </td>
+    </tr>
+  </tbody>
 </table>
 
-### Example Manifest (excerpt)
+### Example manifest (excerpt) {#manifest-example}
 
 ```yaml
 spec:
@@ -183,13 +176,13 @@ spec:
     "kubernetes.io/os": windows
 ```
 
-## Volume Mounts
+## Volume mounts
 
-HostProcess containers support the ability to mount volumes within the container volume space. 
-Applications running inside the container can access volume mounts directly via relative or 
-absolute paths. An environment variable `$CONTAINER_SANDBOX_MOUNT_POINT` is set upon container 
-creation and provides the absolute host path to the container volume. Relative paths are based 
-upon the `Pod.containers.volumeMounts.mountPath` configuration.
+HostProcess containers support the ability to mount volumes within the container volume space.
+Applications running inside the container can access volume mounts directly via relative or
+absolute paths. An environment variable `$CONTAINER_SANDBOX_MOUNT_POINT` is set upon container
+creation and provides the absolute host path to the container volume. Relative paths are based
+upon the `.spec.containers.volumeMounts.mountPath` configuration.
 
 ### Example {#volume-mount-example}
 
@@ -199,16 +192,32 @@ To access service account tokens the following path structures are supported wit
 
 `$CONTAINER_SANDBOX_MOUNT_POINT\var\run\secrets\kubernetes.io\serviceaccount\`
 
-## Choosing a User Account
+## Resource limits
+
+Resource limits (disk, memory, cpu count) are applied to the job and are job wide.
+For example, with a limit of 10MB set, the memory allocated for any HostProcess job object
+will be capped at 10MB. This is the same behavior as other Windows container types.
+These limits would be specified the same way they are currently for whatever orchestrator
+or runtime is being used. The only difference is in the disk resource usage calculation
+used for resource tracking due to the difference in how HostProcess containers are bootstrapped.
+
+## Choosing a user account
 
 HostProcess containers support the ability to run as one of three supported Windows service accounts:
 
-- **[LocalSystem](https://docs.microsoft.com/en-us/windows/win32/services/localsystem-account)**
-- **[LocalService](https://docs.microsoft.com/en-us/windows/win32/services/localservice-account)**
-- **[NetworkService](https://docs.microsoft.com/en-us/windows/win32/services/networkservice-account)**
+- **[LocalSystem](https://docs.microsoft.com/windows/win32/services/localsystem-account)**
+- **[LocalService](https://docs.microsoft.com/windows/win32/services/localservice-account)**
+- **[NetworkService](https://docs.microsoft.com/windows/win32/services/networkservice-account)**
 
 You should select an appropriate Windows service account for each HostProcess
 container, aiming to limit the degree of privileges so as to avoid accidental (or even
 malicious) damage to the host. The LocalSystem service account has the highest level
 of privilege of the three and should be used only if absolutely necessary. Where possible,
 use the LocalService service account as it is the least privileged of the three options.
+
+## Troubleshooting HostProcess containers
+
+- HostProcess containers fail to start with `failed to create user process token: failed to logon user: Access is denied.: unknown`
+
+  Ensure containerd is running as `LocalSystem` or `LocalService` service accounts. User accounts (even Administrator accounts) do not have permissions to create logon tokens for any of the supported [user accounts](#choosing-a-user-account).
+  
\ No newline at end of file
diff --git a/content/en/docs/tasks/configure-pod-container/enforce-standards-admission-controller.md b/content/en/docs/tasks/configure-pod-container/enforce-standards-admission-controller.md
index c3dcb0e995..dcf771e811 100644
--- a/content/en/docs/tasks/configure-pod-container/enforce-standards-admission-controller.md
+++ b/content/en/docs/tasks/configure-pod-container/enforce-standards-admission-controller.md
@@ -9,16 +9,58 @@ min-kubernetes-server-version: v1.22
 
 As of v1.22, Kubernetes provides a built-in [admission controller](/docs/reference/access-authn-authz/admission-controllers/#podsecurity)
 to enforce the [Pod Security Standards](/docs/concepts/security/pod-security-standards).
-You can configure this admission controller to set cluster-wide defaults and [exemptions](#exemptions).
+You can configure this admission controller to set cluster-wide defaults and [exemptions](/docs/concepts/security/pod-security-admission/#exemptions).
 
 ## {{% heading "prerequisites" %}}
 
 {{% version-check %}}
 
-- Enable the `PodSecurity` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/#feature-gates-for-alpha-or-beta-features).
+- Ensure the `PodSecurity` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/#feature-gates-for-alpha-or-beta-features) is enabled.
 
 ## Configure the Admission Controller
 
+{{< tabs name="PodSecurityConfiguration_example_1" >}}
+{{% tab name="pod-security.admission.config.k8s.io/v1beta1" %}}
+```yaml
+apiVersion: apiserver.config.k8s.io/v1
+kind: AdmissionConfiguration
+plugins:
+- name: PodSecurity
+  configuration:
+    apiVersion: pod-security.admission.config.k8s.io/v1beta1
+    kind: PodSecurityConfiguration
+    # Defaults applied when a mode label is not set.
+    #
+    # Level label values must be one of:
+    # - "privileged" (default)
+    # - "baseline"
+    # - "restricted"
+    #
+    # Version label values must be one of:
+    # - "latest" (default) 
+    # - specific version like "v{{< skew currentVersion >}}"
+    defaults:
+      enforce: "privileged"
+      enforce-version: "latest"
+      audit: "privileged"
+      audit-version: "latest"
+      warn: "privileged"
+      warn-version: "latest"
+    exemptions:
+      # Array of authenticated usernames to exempt.
+      usernames: []
+      # Array of runtime class names to exempt.
+      runtimeClasses: []
+      # Array of namespaces to exempt.
+      namespaces: []
+```
+
+{{< note >}}
+v1beta1 configuration requires v1.23+. For v1.22, use v1alpha1.
+{{< /note >}}
+
+{{% /tab %}}
+{{% tab name="pod-security.admission.config.k8s.io/v1alpha1" %}}
 ```yaml
 apiVersion: apiserver.config.k8s.io/v1
 kind: AdmissionConfiguration
@@ -36,7 +78,7 @@ plugins:
     #
     # Version label values must be one of:
     # - "latest" (default) 
-    # - specific version like "v{{< skew latestVersion >}}"
+    # - specific version like "v{{< skew currentVersion >}}"
     defaults:
       enforce: "privileged"
       enforce-version: "latest"
@@ -48,7 +90,9 @@ plugins:
       # Array of authenticated usernames to exempt.
       usernames: []
       # Array of runtime class names to exempt.
-      runtimeClassNames: []
+      runtimeClasses: []
       # Array of namespaces to exempt.
       namespaces: []
-```
\ No newline at end of file
+```
+{{% /tab %}}
+{{< /tabs >}}
diff --git a/content/en/docs/tasks/configure-pod-container/enforce-standards-namespace-labels.md b/content/en/docs/tasks/configure-pod-container/enforce-standards-namespace-labels.md
index 9a4c3a44ed..4157d6ba67 100644
--- a/content/en/docs/tasks/configure-pod-container/enforce-standards-namespace-labels.md
+++ b/content/en/docs/tasks/configure-pod-container/enforce-standards-namespace-labels.md
@@ -7,13 +7,17 @@ content_type: task
 min-kubernetes-server-version: v1.22
 ---
 
-Namespaces can be labeled to enforce the [Pod Security Standards](/docs/concepts/security/pod-security-standards).
+Namespaces can be labeled to enforce the [Pod Security Standards](/docs/concepts/security/pod-security-standards). The three policies
+[privileged](/docs/concepts/security/pod-security-standards/#privileged), [baseline](/docs/concepts/security/pod-security-standards/#baseline)
+and [restricted](/docs/concepts/security/pod-security-standards/#restricted) broadly cover the security spectrum
+and are implemented by the [Pod Security](/docs/concepts/security/pod-security-admission/) {{< glossary_tooltip
+text="admission controller" term_id="admission-controller" >}}.
 
 ## {{% heading "prerequisites" %}}
 
 {{% version-check %}}
 
-- Enable the `PodSecurity` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/#feature-gates-for-alpha-or-beta-features).
+- Ensure the `PodSecurity` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/#feature-gates-for-alpha-or-beta-features) is enabled.
 
 ## Requiring the `baseline` Pod Security Standard with namespace labels
 
@@ -22,7 +26,7 @@ This manifest defines a Namespace `my-baseline-namespace` that:
 - _Blocks_ any pods that don't satisfy the `baseline` policy requirements.
 - Generates a user-facing warning and adds an audit annotation to any created pod that does not
   meet the `restricted` policy requirements.
-- Pins the versions of the `baseline` and `restricted` policies to v{{< skew latestVersion >}}.
+- Pins the versions of the `baseline` and `restricted` policies to v{{< skew currentVersion >}}.
 
 ```yaml
 apiVersion: v1
@@ -31,13 +35,13 @@ metadata:
   name: my-baseline-namespace
   labels:
     pod-security.kubernetes.io/enforce: baseline
-    pod-security.kubernetes.io/enforce-version: v{{< skew latestVersion >}}
+    pod-security.kubernetes.io/enforce-version: v{{< skew currentVersion >}}
 
     # We are setting these to our _desired_ `enforce` level.
     pod-security.kubernetes.io/audit: restricted
-    pod-security.kubernetes.io/audit-version: v{{< skew latestVersion >}}
+    pod-security.kubernetes.io/audit-version: v{{< skew currentVersion >}}
     pod-security.kubernetes.io/warn: restricted
-    pod-security.kubernetes.io/warn-version: v{{< skew latestVersion >}}
+    pod-security.kubernetes.io/warn-version: v{{< skew currentVersion >}}
 ```
 
 ## Add labels to existing namespaces with `kubectl label`
@@ -78,10 +82,10 @@ kubectl get namespaces --selector='!pod-security.kubernetes.io/enforce'
 ### Applying to a single namespace
 
 You can update a specific namespace as well. This command adds the `enforce=restricted`
-policy to `my-existing-namespace`, pinning the restricted policy version to v{{< skew latestVersion >}}.
+policy to `my-existing-namespace`, pinning the restricted policy version to v{{< skew currentVersion >}}.
 
 ```shell
 kubectl label --overwrite ns my-existing-namespace \
   pod-security.kubernetes.io/enforce=restricted \
-  pod-security.kubernetes.io/enforce-version=v{{< skew latestVersion >}}
+  pod-security.kubernetes.io/enforce-version=v{{< skew currentVersion >}}
 ```
diff --git a/content/en/docs/tasks/configure-pod-container/migrate-from-psp.md b/content/en/docs/tasks/configure-pod-container/migrate-from-psp.md
index f0ea2d02df..f7d78ea13e 100644
--- a/content/en/docs/tasks/configure-pod-container/migrate-from-psp.md
+++ b/content/en/docs/tasks/configure-pod-container/migrate-from-psp.md
@@ -17,32 +17,325 @@ admission controller. This can be done effectively using a combination of dry-ru
 
 {{% version-check %}}
 
-- Enable the `PodSecurity` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/#feature-gates-for-alpha-or-beta-features).
+- Ensure the `PodSecurity` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/#feature-gates-for-alpha-or-beta-features) is enabled.
+
+This page assumes you are already familiar with the basic [Pod Security Admission](/docs/concepts/security/pod-security-admission/)
+concepts.
 
 <!-- body -->
 
-## Steps
+## Overall approach
 
-- **Eliminate mutating PodSecurityPolicies, if your cluster has any set up.**
-  - Clone all mutating PSPs into a non-mutating version.
-  - Update all ClusterRoles authorizing use of those mutating PSPs to also authorize use of the
-    non-mutating variant.
-  - Watch for Pods using the mutating PSPs and work with code owners to migrate to valid,
-    non-mutating resources.
-  - Delete mutating PSPs.
-- **Select a compatible policy level for each namespace.** Analyze existing resources in the
-  namespace to drive this decision.
-  - Review the requirements of the different [Pod Security Standards](/docs/concepts/security/pod-security-standards).
-  - Evaluate the difference in privileges that would come from disabling the PSP controller.
-  - In the event that a PodSecurityPolicy falls between two levels, consider:
-    - Selecting a _less_ permissive PodSecurity level prioritizes security, and may require adjusting
-      workloads to fit within the stricter policy.
-    - Selecting a _more_ permissive PodSecurity level prioritizes avoiding disrupting or
-      changing workloads, but may allow workload authors in the namespace greater permissions
-      than desired.
-- **Apply the selected profiles in `warn` and `audit` mode.** This will give you an idea of how
-  your Pods will respond to the new policies, without breaking existing workloads. Iterate on your
-  [Pods' configuration](/docs/concepts/security/pod-security-admission#configuring-pods) until
-  they are in compliance with the selected profiles.
-- Apply the profiles in `enforce` mode.
-- Stop including `PodSecurityPolicy` in the `--enable-admission-plugins` flag.
\ No newline at end of file
+There are multiple strategies you can take for migrating from PodSecurityPolicy to Pod Security
+Admission. The following steps are one possible migration path, with a goal of minimizing both the
+risks of a production outage and of a security gap.
+
+<!-- Keep section header numbering in sync with this list. -->
+0. Decide whether Pod Security Admission is the right fit for your use case.
+1. Review namespace permissions
+2. Simplify & standardize PodSecurityPolicies
+3. Update namespaces
+   1. Identify an appropriate Pod Security level
+   2. Verify the Pod Security level
+   3. Enforce the Pod Security level
+   4. Bypass PodSecurityPolicy
+4. Review namespace creation processes
+5. Disable PodSecurityPolicy
+
+## 0. Decide whether Pod Security Admission is right for you {#is-psa-right-for-you}
+
+Pod Security Admission was designed to meet the most common security needs out of the box, and to
+provide a standard set of security levels across clusters. However, it is less flexible than
+PodSecurityPolicy. Notably, the following features are supported by PodSecurityPolicy but not Pod
+Security Admission:
+
+- **Setting default security constraints** - Pod Security Admission is a non-mutating admission
+  controller, meaning it won't modify pods before validating them. If you were relying on this
+  aspect of PSP, you will need to either modify your workloads to meet the Pod Security constraints,
+  or use a [Mutating Admission Webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/)
+  to make those changes. See [Simplify & Standardize PodSecurityPolicies](#simplify-psps) below for more detail.
+- **Fine-grained control over policy definition** - Pod Security Admission only supports
+  [3 standard levels](/docs/concepts/security/pod-security-standards/).
+  If you require more control over specific constraints, then you will need to use a
+  [Validating Admission Webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/)
+  to enforce those policies.
+- **Sub-namespace policy granularity** - PodSecurityPolicy lets you bind different policies to
+  different Service Accounts or users, even within a single namespace. This approach has many
+  pitfalls and is not recommended, but if you require this feature anyway you will
+  need to use a 3rd party webhook instead. The exception to this is if you only need to completely exempt
+  specific users or [RuntimeClasses](/docs/concepts/containers/runtime-class/), in which case Pod
+  Security Admission does expose some
+  [static configuration for exemptions](/docs/concepts/security/pod-security-admission/#exemptions).
+
+Even if Pod Security Admission does not meet all of your needs it was designed to be _complementary_
+to other policy enforcement mechanisms, and can provide a useful fallback running alongside other
+admission webhooks.
+
+
+## 1. Review namespace permissions {#review-namespace-permissions}
+
+Pod Security Admission is controlled by [labels on
+namespaces](/docs/concepts/security/pod-security-admission/#pod-security-admission-labels-for-namespaces).
+This means that anyone who can update (or patch or create) a namespace can also modify the Pod
+Security level for that namespace, which could be used to bypass a more restrictive policy. Before
+proceeding, ensure that only trusted, privileged users have these namespace permissions. It is not
+recommended to grant these powerful permissions to users that shouldn't have elevated permissions,
+but if you must you will need to use an
+[admission webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/)
+to place additional restrictions on setting Pod Security labels on Namespace objects.
+
+## 2. Simplify & standardize PodSecurityPolicies {#simplify-psps}
+
+In this section, you will reduce mutating PodSecurityPolicies and remove options that are outside
+the scope of the Pod Security Standards. You should make the changes recommended here to an offline
+copy of the original PodSecurityPolicy being modified. The cloned PSP should have a different
+name that is alphabetically before the original (for example, prepend a `0` to it). Do not create the
+new policies in Kubernetes yet - that will be covered in the [Rollout the updated
+policies](#psp-update-rollout) section below.
+
+### 2.a. Eliminate purely mutating fields {#eliminate-mutating-fields}
+
+If a PodSecurityPolicy is mutating pods, then you could end up with pods that don't meet the Pod
+Security level requirements when you finally turn PodSecurityPolicy off. In order to avoid this, you
+should eliminate all PSP mutation prior to switching over. Unfortunately PSP does not cleanly
+separate mutating & validating fields, so this is not a straightforward migration.
+
+You can start by eliminating the fields that are purely mutating, and don't have any bearing on the
+validating policy. These fields (also listed in the
+[Mapping PodSecurityPolicies to Pod Security Standards](/docs/reference/access-authn-authz/psp-to-pod-security-standards/)
+reference) are:
+
+- `.spec.defaultAllowPrivilegeEscalation`
+- `.spec.runtimeClass.defaultRuntimeClassName`
+- `.metadata.annotations['seccomp.security.alpha.kubernetes.io/defaultProfileName']`
+- `.metadata.annotations['apparmor.security.beta.kubernetes.io/defaultProfileName']`
+- `.spec.defaultAddCapabilities` - Although technically a mutating & validating field, these should
+  be merged into `.spec.allowedCapabilities` which performs the same validation without mutation.
+
+{{< caution >}}
+Removing these could result in workloads missing required configuration, and cause problems. See
+[Rollout the updated policies](#psp-update-rollout) below for advice on how to roll these changes
+out safely.
+{{< /caution >}}
+
+### 2.b. Eliminate options not covered by the Pod Security Standards {#eliminate-non-standard-options}
+
+There are several fields in PodSecurityPolicy that are not covered by the Pod Security Standards. If
+you must enforce these options, you will need to supplement Pod Security Admission with an
+[admission webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/),
+which is outside the scope of this guide.
+
+First, you can remove the purely validating fields that the Pod Security Standards do not cover.
+These fields (also listed in the
+[Mapping PodSecurityPolicies to Pod Security Standards](/docs/reference/access-authn-authz/psp-to-pod-security-standards/)
+reference with "no opinion") are:
+
+- `.spec.allowedHostPaths`
+- `.spec.allowedFlexVolumes`
+- `.spec.allowedCSIDrivers`
+- `.spec.forbiddenSysctls`
+- `.spec.runtimeClass`
+
+You can also remove the following fields, that are related to POSIX / UNIX group controls.
+
+{{< caution >}}
+If any of these use the `MustRunAs` strategy they may be mutating! Removing these could result in
+workloads not setting the required groups, and cause problems. See
+[Rollout the updated policies](#psp-update-rollout) below for advice on how to roll these changes
+out safely.
+{{< /caution >}}
+
+- `.spec.runAsGroup`
+- `.spec.supplementalGroups`
+- `.spec.fsGroup`
+
+The remaining mutating fields are required to properly support the Pod Security Standards, and will
+need to be handled on a case-by-case basis later:
+
+- `.spec.requiredDropCapabilities` - Required to drop `ALL` for the Restricted profile.
+- `.spec.seLinux` - (Only mutating with the `MustRunAs` rule) required to enforce the SELinux
+  requirements of the Baseline & Restricted profiles.
+- `.spec.runAsUser` - (Non-mutating with the `RunAsAny` rule) required to enforce `RunAsNonRoot` for
+  the Restricted profile.
+- `.spec.allowPrivilegeEscalation` - (Only mutating if set to `false`) required for the Restricted
+  profile.
+
+### 2.c. Rollout the updated PSPs {#psp-update-rollout}
+
+Next, you can rollout the updated policies to your cluster. You should proceed with caution, as
+removing the mutating options may result in workloads missing required configuration.
+
+For each updated PodSecurityPolicy:
+
+1. Identify pods running under the original PSP. This can be done using the `kubernetes.io/psp`
+   annotation. For example, using kubectl:
+   ```sh
+   PSP_NAME="original" # Set the name of the PSP you're checking for
+   kubectl get pods --all-namespaces -o jsonpath="{range .items[?(@.metadata.annotations.kubernetes\.io\/psp=='$PSP_NAME')]}{.metadata.namespace} {.metadata.name}{'\n'}{end}"
+   ```
+2. Compare these running pods against the original pod spec to determine whether PodSecurityPolicy
+   has modified the pod. For pods created by a [workload resource](/docs/concepts/workloads/controllers/)
+   you can compare the pod with the PodTemplate in the controller resource. If any changes are
+   identified, the original Pod or PodTemplate should be updated with the desired configuration.
+   The fields to review are:
+   - `.metadata.annotations['container.apparmor.security.beta.kubernetes.io/*']` (replace * with each container name)
+   - `.spec.runtimeClassName`
+   - `.spec.securityContext.fsGroup`
+   - `.spec.securityContext.seccompProfile`
+   - `.spec.securityContext.seLinuxOptions`
+   - `.spec.securityContext.supplementalGroups`
+   - On containers, under `.spec.containers[*]` and `.spec.initContainers[*]`:
+       - `.securityContext.allowPrivilegeEscalation`
+       - `.securityContext.capabilities.add`
+       - `.securityContext.capabilities.drop`
+       - `.securityContext.readOnlyRootFilesystem`
+       - `.securityContext.runAsGroup`
+       - `.securityContext.runAsNonRoot`
+       - `.securityContext.runAsUser`
+       - `.securityContext.seccompProfile`
+       - `.securityContext.seLinuxOptions`
+3. Create the new PodSecurityPolicies. If any Roles or ClusterRoles are granting `use` on all PSPs
+   this could cause the new PSPs to be used instead of their mutating counter-parts.
+4. Update your authorization to grant access to the new PSPs. In RBAC this means updating any Roles
+   or ClusterRoles that grant the `use` permision on the original PSP to also grant it to the
+   updated PSP.
+5. Verify: after some soak time, rerun the command from step 1 to see if any pods are still using
+   the original PSPs. Note that pods need to be recreated after the new policies have been rolled
+   out before they can be fully verified.
+6. (optional) Once you have verified that the original PSPs are no longer in use, you can delete
+   them.
+
+## 3. Update Namespaces {#update-namespaces}
+
+The following steps will need to be performed on every namespace in the cluster. Commands referenced
+in these steps use the `$NAMESPACE` variable to refer to the namespace being updated.
+
+### 3.a. Identify an appropriate Pod Security level {#identify-appropriate-level}
+
+Start reviewing the [Pod Security Standards](/docs/concepts/security/pod-security-standards/) and
+familiarizing yourself with the 3 different levels.
+
+There are several ways to choose a Pod Security level for your namespace:
+
+1. **By security requirements for the namespace** - If you are familiar with the expected access
+   level for the namespace, you can choose an appropriate level based on those requirements, similar
+   to how one might approach this on a new cluster.
+2. **By existing PodSecurityPolicies** - Using the
+   [Mapping PodSecurityPolicies to Pod Security Standards](/docs/reference/access-authn-authz/psp-to-pod-security-standards/)
+   reference you can map each
+   PSP to a Pod Security Standard level. If your PSPs aren't based on the Pod Security Standards, you
+   may need to decide between choosing a level that is at least as permissive as the PSP, and a
+   level that is at least as restrictive. You can see which PSPs are in use for pods in a given
+   namespace with this command:
+   ```sh
+   kubectl get pods -n $NAMESPACE -o jsonpath="{.items[*].metadata.annotations.kubernetes\.io\/psp}" | tr " " "\n" | sort -u
+   ```
+3. **By existing pods** - Using the strategies under [Verify the Pod Security level](#verify-pss-level),
+   you can test out both the Baseline and Restricted levels to see
+   whether they are sufficiently permissive for existing workloads, and chose the least-privileged
+   valid level.
+
+{{< caution >}}
+Options 2 & 3 above are based on _existing_ pods, and may miss workloads that aren't currently
+running, such as CronJobs, scale-to-zero workloads, or other workloads that haven't rolled out.
+{{< /caution >}}
+
+### 3.b. Verify the Pod Security level {#verify-pss-level}
+
+Once you have selected a Pod Security level for the namespace (or if you're trying several), it's a
+good idea to test it out first (you can skip this step if using the Privileged level). Pod Security
+includes several tools to help test and safely roll out profiles.
+
+First, you can dry-run the policy, which will evaluate pods currently running in the namespace
+against the applied policy, without making the new policy take effect:
+```sh
+# $LEVEL is the level to dry-run, either "baseline" or "restricted".
+kubectl label --dry-run=server --overwrite ns $NAMESPACE pod-security.kubernetes.io/enforce=$LEVEL
+```
+This command will return a warning for any _existing_ pods that are not valid under the proposed
+level.
+
+The second option is better for catching workloads that are not currently running: audit mode. When
+running under audit-mode (as opposed to enforcing), pods that violate the policy level are recorded
+in the audit logs, which can be reviewed later after some soak time, but are not forbidden. Warning
+mode works similarly, but returns the warning to the user immediately. You can set the audit level
+on a namespace with this command:
+```sh
+kubectl label --overwrite ns $NAMESPACE pod-security.kubernetes.io/audit=$LEVEL
+```
+
+If either of these approaches yield unexpected violations, you will need to either update the
+violating workloads to meet the policy requirements, or relax the namespace Pod Security level.
+
+### 3.c. Enforce the Pod Security level {#enforce-pod-security-level}
+
+When you are satisfied that the chosen level can safely be enforced on the namespace, you can update
+the namespace to enforce the desired level:
+
+```sh
+kubectl label --overwrite ns $NAMESPACE pod-security.kubernetes.io/enforce=$LEVEL
+```
+
+### 3.d. Bypass PodSecurityPolicy {#bypass-psp}
+
+Finally, you can effectively bypass PodSecurityPolicy at the namespace level by binding the fully
+{{< example file="policy/privileged-psp.yaml" >}}privileged PSP{{< /example >}} to all service
+accounts in the namespace.
+
+```sh
+# The following cluster-scoped commands are only needed once.
+kubectl apply -f privileged-psp.yaml
+kubectl create clusterrole privileged-psp --verb use --resource podsecuritypolicies.policy --resource-name privileged
+
+# Per-namespace disable
+kubectl create -n $NAMESPACE rolebinding disable-psp --clusterrole privileged-psp --group system:serviceaccounts:$NAMESPACE
+```
+
+Since the privileged PSP is non-mutating, and the PSP admission controller always
+prefers non-mutating PSPs, this will ensure that pods in this namespace are no longer being modified
+or restricted by PodSecurityPolicy.
+
+The advantage to disabling PodSecurityPolicy on a per-namespace basis like this is if a problem
+arises you can easily roll the change back by deleting the RoleBinding. Just make sure the
+pre-existing PodSecurityPolicies are still in place!
+
+```sh
+# Undo PodSecurityPolicy disablement.
+kubectl delete -n $NAMESPACE rolebinding disable-psp
+```
+
+## 4. Review namespace creation processes {#review-namespace-creation-process}
+
+Now that existing namespaces have been updated to enforce Pod Security Admission, you should ensure
+that your processes and/or policies for creating new namespaces are updated to ensure that an
+appropriate Pod Security profile is applied to new namespaces.
+
+You can also statically configure the Pod Security admission controller to set a default enforce,
+audit, and/or warn level for unlabeled namespaces. See
+[Configure the Admission Controller](/docs/tasks/configure-pod-container/enforce-standards-admission-controller/#configure-the-admission-controller)
+for more information.
+
+## 5. Disable PodSecurityPolicy {#disable-psp}
+
+Finally, you're ready to disable PodSecurityPolicy. To do so, you will need to modify the admission
+configuration of the API server:
+[How do I turn off an admission controller?](/docs/reference/access-authn-authz/admission-controllers/#how-do-i-turn-off-an-admission-controller).
+
+To verify that the PodSecurityPolicy admission controller is no longer enabled, you can manually run
+a test by impersonating a user without access to any PodSecurityPolicies (see the
+[PodSecurityPolicy example](/docs/concepts/security/pod-security-policy/#example)), or by verifying in
+the API server logs. At startup, the API server outputs log lines listing the loaded admission
+controller plugins:
+
+```
+I0218 00:59:44.903329      13 plugins.go:158] Loaded 16 mutating admission controller(s) successfully in the following order: NamespaceLifecycle,LimitRanger,ServiceAccount,NodeRestriction,TaintNodesByCondition,Priority,DefaultTolerationSeconds,ExtendedResourceToleration,PersistentVolumeLabel,DefaultStorageClass,StorageObjectInUseProtection,RuntimeClass,DefaultIngressClass,MutatingAdmissionWebhook.
+I0218 00:59:44.903350      13 plugins.go:161] Loaded 14 validating admission controller(s) successfully in the following order: LimitRanger,ServiceAccount,PodSecurity,Priority,PersistentVolumeClaimResize,RuntimeClass,CertificateApproval,CertificateSigning,CertificateSubjectRestriction,DenyServiceExternalIPs,ValidatingAdmissionWebhook,ResourceQuota.
+```
+
+You should see `PodSecurity` (in the validating admission controllers), and neither list should
+contain `PodSecurityPolicy`.
+
+Once you are certain the PSP admission controller is disabled (and after sufficient soak time to be
+confident you won't need to roll back), you are free to delete your PodSecurityPolicies and any
+associated Roles, ClusterRoles, RoleBindings and ClusterRoleBindings (just make sure they don't
+grant any other unrelated permissions).
diff --git a/content/en/docs/tasks/configure-pod-container/pull-image-private-registry.md b/content/en/docs/tasks/configure-pod-container/pull-image-private-registry.md
index 0886871f9c..6849f22ec0 100644
--- a/content/en/docs/tasks/configure-pod-container/pull-image-private-registry.md
+++ b/content/en/docs/tasks/configure-pod-container/pull-image-private-registry.md
@@ -6,29 +6,40 @@ weight: 100
 
 <!-- overview -->
 
-This page shows how to create a Pod that uses a Secret to pull an image from a
-private Docker registry or repository.
+This page shows how to create a Pod that uses a
+{{< glossary_tooltip text="Secret" term_id="secret" >}} to pull an image 
+from a private container image registry or repository. There are many private 
+registries in use. This task uses [Docker Hub](https://www.docker.com/products/docker-hub)
+as an example registry.
+
+{{% thirdparty-content single="true" %}}
 
 ## {{% heading "prerequisites" %}}
 
-* {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+* {{< include "task-tutorial-prereqs.md" >}}
 
-* To do this exercise, you need a
-[Docker ID](https://docs.docker.com/docker-id/) and password.
+* To do this exercise, you need the `docker` command line tool, and a
+  [Docker ID](https://docs.docker.com/docker-id/) for which you know the password.
+* If you are using a different private container registry, you need the command 
+  line tool for that registry and any login information for the registry. 
 
 <!-- steps -->
 
-## Log in to Docker
+## Log in to Docker Hub
 
-On your laptop, you must authenticate with a registry in order to pull a private image:
+On your laptop, you must authenticate with a registry in order to pull a private image.
+
+Use the `docker` tool to log in to Docker Hub. See the _log in_ section of
+[Docker ID accounts](https://docs.docker.com/docker-id/#log-in) for more information.
 
 ```shell
 docker login
 ```
 
-When prompted, enter your Docker username and password.
+When prompted, enter your Docker ID, and then the credential you want to use (access token,
+or the password for your Docker ID).
 
-The login process creates or updates a `config.json` file that holds an authorization token.
+The login process creates or updates a `config.json` file that holds an authorization token. Review [how Kubernetes interprets this file](/docs/concepts/containers/images#config-json). 
 
 View the `config.json` file:
 
@@ -52,12 +63,13 @@ The output contains a section similar to this:
 If you use a Docker credentials store, you won't see that `auth` entry but a `credsStore` entry with the name of the store as value.
 {{< /note >}}
 
-## Create a Secret based on existing Docker credentials {#registry-secret-existing-credentials}
+## Create a Secret based on existing credentials {#registry-secret-existing-credentials}
 
 A Kubernetes cluster uses the Secret of `kubernetes.io/dockerconfigjson` type to authenticate with
 a container registry to pull a private image.
 
-If you already ran `docker login`, you can copy that credential into Kubernetes:
+If you already ran `docker login`, you can copy
+that credential into Kubernetes:
 
 ```shell
 kubectl create secret generic regcred \
@@ -70,7 +82,7 @@ secret) then you can customise the Secret before storing it.
 Be sure to:
 
 - set the name of the data item to `.dockerconfigjson`
-- base64 encode the docker file and paste that string, unbroken
+- base64 encode the Docker configuration file and then paste that string, unbroken
   as the value for field `data[".dockerconfigjson"]`
 - set `type` to `kubernetes.io/dockerconfigjson`
 
@@ -171,14 +183,14 @@ You have successfully set your Docker credentials as a Secret called `regcred` i
 
 ## Create a Pod that uses your Secret
 
-Here is a configuration file for a Pod that needs access to your Docker credentials in `regcred`:
+Here is a manifest for an example Pod that needs access to your Docker credentials in `regcred`:
 
 {{< codenew file="pods/private-reg-pod.yaml" >}}
 
-Download the above file:
+Download the above file onto your computer:
 
 ```shell
-wget -O my-private-reg-pod.yaml https://k8s.io/examples/pods/private-reg-pod.yaml
+curl -L -O my-private-reg-pod.yaml https://k8s.io/examples/pods/private-reg-pod.yaml
 ```
 
 In file `my-private-reg-pod.yaml`, replace `<your-private-image>` with the path to an image in a private registry such as:
@@ -200,10 +212,9 @@ kubectl get pod private-reg
 
 ## {{% heading "whatsnext" %}}
 
-* Learn more about [Secrets](/docs/concepts/configuration/secret/).
+* Learn more about [Secrets](/docs/concepts/configuration/secret/)
+  * or read the API reference for {{< api-reference page="config-and-storage-resources/secret-v1" >}}
 * Learn more about [using a private registry](/docs/concepts/containers/images/#using-a-private-registry).
 * Learn more about [adding image pull secrets to a service account](/docs/tasks/configure-pod-container/configure-service-account/#add-imagepullsecrets-to-a-service-account).
 * See [kubectl create secret docker-registry](/docs/reference/generated/kubectl/kubectl-commands/#-em-secret-docker-registry-em-).
-* See [Secret](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#secret-v1-core).
-* See the `imagePullSecrets` field of [PodSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core).
-
+* See the `imagePullSecrets` field within the [container definitions](/docs/reference/kubernetes-api/workload-resources/pod-v1/#containers) of a Pod
diff --git a/content/en/docs/tasks/configure-pod-container/quality-service-pod.md b/content/en/docs/tasks/configure-pod-container/quality-service-pod.md
index abe6320563..c1a00bcc3d 100644
--- a/content/en/docs/tasks/configure-pod-container/quality-service-pod.md
+++ b/content/en/docs/tasks/configure-pod-container/quality-service-pod.md
@@ -107,7 +107,7 @@ kubectl delete pod qos-demo --namespace=qos-example
 A Pod is given a QoS class of Burstable if:
 
 * The Pod does not meet the criteria for QoS class Guaranteed.
-* At least one Container in the Pod has a memory or CPU request.
+* At least one Container in the Pod has a memory or CPU request or limit.
 
 Here is the configuration file for a Pod that has one Container. The Container has a memory limit of 200 MiB
 and a memory request of 100 MiB.
diff --git a/content/en/docs/tasks/configure-pod-container/security-context.md b/content/en/docs/tasks/configure-pod-container/security-context.md
index 56bcc0f3f9..80d942b724 100644
--- a/content/en/docs/tasks/configure-pod-container/security-context.md
+++ b/content/en/docs/tasks/configure-pod-container/security-context.md
@@ -14,38 +14,40 @@ A security context defines privilege and access control settings for
 a Pod or Container. Security context settings include, but are not limited to:
 
 * Discretionary Access Control: Permission to access an object, like a file, is based on
-[user ID (UID) and group ID (GID)](https://wiki.archlinux.org/index.php/users_and_groups).
+  [user ID (UID) and group ID (GID)](https://wiki.archlinux.org/index.php/users_and_groups).
 
-* [Security Enhanced Linux (SELinux)](https://en.wikipedia.org/wiki/Security-Enhanced_Linux): Objects are assigned security labels.
+* [Security Enhanced Linux (SELinux)](https://en.wikipedia.org/wiki/Security-Enhanced_Linux):
+  Objects are assigned security labels.
 
 * Running as privileged or unprivileged.
 
-* [Linux Capabilities](https://linux-audit.com/linux-capabilities-hardening-linux-binaries-by-removing-setuid/): Give a process some privileges, but not all the privileges of the root user.
+* [Linux Capabilities](https://linux-audit.com/linux-capabilities-hardening-linux-binaries-by-removing-setuid/):
+  Give a process some privileges, but not all the privileges of the root user.
 
-* [AppArmor](/docs/tutorials/clusters/apparmor/): Use program profiles to restrict the capabilities of individual programs.
+* [AppArmor](/docs/tutorials/security/apparmor/):
+  Use program profiles to restrict the capabilities of individual programs.
 
-* [Seccomp](/docs/tutorials/clusters/seccomp/): Filter a process's system calls.
+* [Seccomp](/docs/tutorials/security/seccomp/): Filter a process's system calls.
 
-* AllowPrivilegeEscalation: Controls whether a process can gain more privileges than its parent process. This bool directly controls whether the [`no_new_privs`](https://www.kernel.org/doc/Documentation/prctl/no_new_privs.txt) flag gets set on the container process. AllowPrivilegeEscalation is true always when the container is: 1) run as Privileged OR 2) has `CAP_SYS_ADMIN`.
+* `allowPrivilegeEscalation`: Controls whether a process can gain more privileges than
+  its parent process. This bool directly controls whether the
+  [`no_new_privs`](https://www.kernel.org/doc/Documentation/prctl/no_new_privs.txt)
+  flag gets set on the container process.
+  `allowPrivilegeEscalation` is always true when the container:
 
-* readOnlyRootFilesystem: Mounts the container's root filesystem as read-only.
+  - is run as privileged, or
+  - has `CAP_SYS_ADMIN`
+
+* `readOnlyRootFilesystem`: Mounts the container's root filesystem as read-only.
 
 The above bullets are not a complete set of security context settings -- please see
 [SecurityContext](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#securitycontext-v1-core)
 for a comprehensive list.
 
-For more information about security mechanisms in Linux, see
-[Overview of Linux Kernel Security Features](https://www.linux.com/learn/overview-linux-kernel-security-features)
-
-
-
 ## {{% heading "prerequisites" %}}
 
-
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
-
-
 <!-- steps -->
 
 ## Set the security context for a Pod
@@ -91,7 +93,7 @@ ps
 
 The output shows that the processes are running as user 1000, which is the value of `runAsUser`:
 
-```shell
+```none
 PID   USER     TIME  COMMAND
     1 1000      0:00 sleep 1h
     6 1000      0:00 sh
@@ -108,7 +110,7 @@ ls -l
 The output shows that the `/data/demo` directory has group ID 2000, which is
 the value of `fsGroup`.
 
-```shell
+```none
 drwxrwsrwx 2 root 2000 4096 Jun  6 20:08 demo
 ```
 
@@ -127,19 +129,26 @@ ls -l
 
 The output shows that `testfile` has group ID 2000, which is the value of `fsGroup`.
 
-```shell
+```none
 -rw-r--r-- 1 1000 2000 6 Jun  6 20:08 testfile
 ```
 
 Run the following command:
 
 ```shell
-$ id
+id
+```
+
+The output is similar to this:
+
+```none
 uid=1000 gid=3000 groups=2000
 ```
-You will see that gid is 3000 which is same as `runAsGroup` field. If the `runAsGroup` was omitted the gid would
-remain as 0(root) and the process will be able to interact with files that are owned by root(0) group and that have
-the required group permissions for root(0) group.
+
+From the output, you can see that `gid` is 3000 which is same as the `runAsGroup` field.
+If the `runAsGroup` was omitted, the `gid` would remain as 0 (root) and the process will
+be able to interact with files that are owned by the root(0) group and groups that have
+the required group permissions for the root (0) group.
 
 Exit your shell:
 
@@ -149,7 +158,7 @@ exit
 
 ## Configure volume permission and ownership change policy for Pods
 
-{{< feature-state for_k8s_version="v1.20" state="beta" >}}
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
 
 By default, Kubernetes recursively changes ownership and permissions for the contents of each
 volume to match the `fsGroup` specified in a Pod's `securityContext` when that volume is
@@ -159,11 +168,14 @@ slowing Pod startup. You can use the `fsGroupChangePolicy` field inside a `secur
 to control the way that Kubernetes checks and manages ownership and permissions
 for a volume.
 
-**fsGroupChangePolicy** -  `fsGroupChangePolicy` defines behavior for changing ownership and permission of the volume
-before being exposed inside a Pod. This field only applies to volume types that support
-`fsGroup` controlled ownership and permissions. This field has two possible values:
+**fsGroupChangePolicy** - `fsGroupChangePolicy` defines behavior for changing ownership
+  and permission of the volume before being exposed inside a Pod.
+  This field only applies to volume types that support `fsGroup` controlled ownership and permissions.
+  This field has two possible values:
 
-* _OnRootMismatch_: Only change permissions and ownership if permission and ownership of root directory does not match with expected permissions of the volume. This could help shorten the time it takes to change ownership and permission of a volume.
+* _OnRootMismatch_: Only change permissions and ownership if permission and ownership of
+  root directory does not match with expected permissions of the volume.
+  This could help shorten the time it takes to change ownership and permission of a volume.
 * _Always_: Always change permission and ownership of the volume when volume is mounted.
 
 For example:
@@ -176,7 +188,6 @@ securityContext:
   fsGroupChangePolicy: "OnRootMismatch"
 ```
 
-
 {{< note >}}
 This field has no effect on ephemeral volume types such as
 [`secret`](/docs/concepts/storage/volumes/#secret),
@@ -186,7 +197,7 @@ and [`emptydir`](/docs/concepts/storage/volumes/#emptydir).
 
 ## Delegating volume permission and ownership change to CSI driver
 
-{{< feature-state for_k8s_version="v1.22" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
 
 If you deploy a [Container Storage Interface (CSI)](https://github.com/container-storage-interface/spec/blob/master/spec.md)
 driver which supports the `VOLUME_MOUNT_GROUP` `NodeServiceCapability`, the
@@ -238,7 +249,7 @@ kubectl exec -it security-context-demo-2 -- sh
 
 In your shell, list the running processes:
 
-```
+```shell
 ps aux
 ```
 
@@ -297,7 +308,7 @@ ps aux
 
 The output shows the process IDs (PIDs) for the Container:
 
-```shell
+```
 USER  PID %CPU %MEM    VSZ   RSS TTY   STAT START   TIME COMMAND
 root    1  0.0  0.0   4336   796 ?     Ss   18:17   0:00 /bin/sh -c node server.js
 root    5  0.1  0.5 772124 22700 ?     Sl   18:17   0:00 node server.js
@@ -354,7 +365,7 @@ cat status
 
 The output shows capabilities bitmap for the process:
 
-```shell
+```
 ...
 CapPrm:	00000000aa0435fb
 CapEff:	00000000aa0435fb
@@ -374,7 +385,10 @@ See [capability.h](https://github.com/torvalds/linux/blob/master/include/uapi/li
 for definitions of the capability constants.
 
 {{< note >}}
-Linux capability constants have the form `CAP_XXX`. But when you list capabilities in your Container manifest, you must omit the `CAP_` portion of the constant. For example, to add `CAP_SYS_TIME`, include `SYS_TIME` in your list of capabilities.
+Linux capability constants have the form `CAP_XXX`.
+But when you list capabilities in your container manifest, you must
+omit the `CAP_` portion of the constant.
+For example, to add `CAP_SYS_TIME`, include `SYS_TIME` in your list of capabilities.
 {{< /note >}}
 
 ## Set the Seccomp Profile for a Container
@@ -385,7 +399,7 @@ in the `securityContext` section of your Pod or Container manifest. The
 [SeccompProfile](/docs/reference/generated/kubernetes-api/{{< param "version"
 >}}/#seccompprofile-v1-core) object consisting of `type` and `localhostProfile`.
 Valid options for `type` include `RuntimeDefault`, `Unconfined`, and
-`Localhost`. `localhostProfile` must only be set set if `type: Localhost`. It
+`Localhost`. `localhostProfile` must only be set if `type: Localhost`. It
 indicates the path of the pre-configured profile on the node, relative to the
 kubelet's configured Seccomp profile location (configured with the `--root-dir`
 flag).
@@ -437,18 +451,19 @@ the Pod's Volumes when applicable. Specifically `fsGroup` and `seLinuxOptions` a
 applied to Volumes as follows:
 
 * `fsGroup`: Volumes that support ownership management are modified to be owned
-and writable by the GID specified in `fsGroup`. See the
-[Ownership Management design document](https://git.k8s.io/community/contributors/design-proposals/storage/volume-ownership-management.md)
-for more details.
+  and writable by the GID specified in `fsGroup`. See the
+  [Ownership Management design document](https://git.k8s.io/design-proposals-archive/storage/volume-ownership-management.md)
+  for more details.
 
 * `seLinuxOptions`: Volumes that support SELinux labeling are relabeled to be accessible
-by the label specified under `seLinuxOptions`. Usually you only
-need to set the `level` section. This sets the
-[Multi-Category Security (MCS)](https://selinuxproject.org/page/NB_MLS)
-label given to all Containers in the Pod as well as the Volumes.
+  by the label specified under `seLinuxOptions`. Usually you only
+  need to set the `level` section. This sets the
+  [Multi-Category Security (MCS)](https://selinuxproject.org/page/NB_MLS)
+  label given to all Containers in the Pod as well as the Volumes.
 
 {{< warning >}}
-After you specify an MCS label for a Pod, all Pods with the same label can access the Volume. If you need inter-Pod protection, you must assign a unique MCS label to each Pod.
+After you specify an MCS label for a Pod, all Pods with the same label can access the Volume.
+If you need inter-Pod protection, you must assign a unique MCS label to each Pod.
 {{< /warning >}}
 
 ## Clean up
@@ -462,16 +477,15 @@ kubectl delete pod security-context-demo-3
 kubectl delete pod security-context-demo-4
 ```
 
-
-
 ## {{% heading "whatsnext" %}}
 
-
 * [PodSecurityContext](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritycontext-v1-core)
 * [SecurityContext](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#securitycontext-v1-core)
-* [Tuning Docker with the newest security enhancements](https://opensource.com/business/15/3/docker-security-tuning)
-* [Security Contexts design document](https://git.k8s.io/community/contributors/design-proposals/auth/security_context.md)
-* [Ownership Management design document](https://git.k8s.io/community/contributors/design-proposals/storage/volume-ownership-management.md)
-* [Pod Security Policies](/docs/concepts/policy/pod-security-policy/)
+* [Tuning Docker with the newest security enhancements](https://github.com/containerd/containerd/blob/main/docs/cri/config.md)
+* [Security Contexts design document](https://git.k8s.io/design-proposals-archive/auth/security_context.md)
+* [Ownership Management design document](https://git.k8s.io/design-proposals-archive/storage/volume-ownership-management.md)
+* [PodSecurityPolicy](/docs/concepts/security/pod-security-policy/)
 * [AllowPrivilegeEscalation design
-  document](https://git.k8s.io/community/contributors/design-proposals/auth/no-new-privs.md)
+  document](https://git.k8s.io/design-proposals-archive/auth/no-new-privs.md)
+* For more information about security mechanisms in Linux, see
+[Overview of Linux Kernel Security Features](https://www.linux.com/learn/overview-linux-kernel-security-features) (Note: Some information is out of date)
diff --git a/content/en/docs/tasks/configure-pod-container/share-process-namespace.md b/content/en/docs/tasks/configure-pod-container/share-process-namespace.md
index dfb8e40906..773a0b6544 100644
--- a/content/en/docs/tasks/configure-pod-container/share-process-namespace.md
+++ b/content/en/docs/tasks/configure-pod-container/share-process-namespace.md
@@ -1,6 +1,5 @@
 ---
 title: Share Process Namespace between Containers in a Pod
-min-kubernetes-server-version: v1.10
 reviewers:
 - verb
 - yujuhong
@@ -11,64 +10,69 @@ weight: 160
 
 <!-- overview -->
 
-{{< feature-state state="stable" for_k8s_version="v1.17" >}}
-
 This page shows how to configure process namespace sharing for a pod. When
 process namespace sharing is enabled, processes in a container are visible
-to all other containers in that pod.
+to all other containers in the same pod.
 
 You can use this feature to configure cooperating containers, such as a log
 handler sidecar container, or to troubleshoot container images that don't
 include debugging utilities like a shell.
 
-
-
 ## {{% heading "prerequisites" %}}
 
-
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-
+{{< include "task-tutorial-prereqs.md" >}}
 
 <!-- steps -->
 
 ## Configure a Pod
 
-Process Namespace Sharing is enabled using the `shareProcessNamespace` field of
-`v1.PodSpec`. For example:
+Process namespace sharing is enabled using the `shareProcessNamespace` field of
+`.spec` for a Pod. For example:
 
 {{< codenew file="pods/share-process-namespace.yaml" >}}
 
 1. Create the pod `nginx` on your cluster:
 
-    ```shell
-    kubectl apply -f https://k8s.io/examples/pods/share-process-namespace.yaml
-    ```
+   ```shell
+   kubectl apply -f https://k8s.io/examples/pods/share-process-namespace.yaml
+   ```
 
 1. Attach to the `shell` container and run `ps`:
 
-    ```shell
-    kubectl attach -it nginx -c shell
-    ```
+   ```shell
+   kubectl attach -it nginx -c shell
+   ```
 
-    If you don't see a command prompt, try pressing enter.
+   If you don't see a command prompt, try pressing enter. In the container shell:
 
-    ```
-    / # ps ax
-    PID   USER     TIME  COMMAND
-        1 root      0:00 /pause
-        8 root      0:00 nginx: master process nginx -g daemon off;
-       14 101       0:00 nginx: worker process
-       15 root      0:00 sh
-       21 root      0:00 ps ax
-    ```
+   ```shell
+   # run this inside the "shell" container
+   ps ax
+   ```
+
+   The output is similar to this:
+
+   ```none
+   PID   USER     TIME  COMMAND
+       1 root      0:00 /pause
+       8 root      0:00 nginx: master process nginx -g daemon off;
+      14 101       0:00 nginx: worker process
+      15 root      0:00 sh
+      21 root      0:00 ps ax
+   ```
 
 You can signal processes in other containers. For example, send `SIGHUP` to
-nginx to restart the worker process. This requires the `SYS_PTRACE` capability.
+`nginx` to restart the worker process. This requires the `SYS_PTRACE` capability.
 
+```shell
+# run this inside the "shell" container
+kill -HUP 8   # change "8" to match the PID of the nginx leader process, if necessary
+ps ax
 ```
-/ # kill -HUP 8
-/ # ps ax
+
+The output is similar to this:
+
+```none
 PID   USER     TIME  COMMAND
     1 root      0:00 /pause
     8 root      0:00 nginx: master process nginx -g daemon off;
@@ -77,12 +81,18 @@ PID   USER     TIME  COMMAND
    23 root      0:00 ps ax
 ```
 
-It's even possible to access another container image using the
+It's even possible to access the file system of another container using the
 `/proc/$pid/root` link.
 
+```shell
+# run this inside the "shell" container
+# change "8" to the PID of the Nginx process, if necessary
+head /proc/8/root/etc/nginx/nginx.conf
 ```
-/ # head /proc/8/root/etc/nginx/nginx.conf
 
+The output is similar to this:
+
+```none
 user  nginx;
 worker_processes  1;
 
@@ -94,21 +104,19 @@ events {
     worker_connections  1024;
 ```
 
-
-
 <!-- discussion -->
 
-## Understanding Process Namespace Sharing
+## Understanding process namespace sharing
 
 Pods share many resources so it makes sense they would also share a process
-namespace. Some container images may expect to be isolated from other
-containers, though, so it's important to understand these differences:
+namespace. Some containers may expect to be isolated from others, though,
+so it's important to understand the differences:
 
-1. **The container process no longer has PID 1.** Some container images refuse
+1. **The container process no longer has PID 1.** Some containers refuse
    to start without PID 1 (for example, containers using `systemd`) or run
    commands like `kill -HUP 1` to signal the container process. In pods with a
-   shared process namespace, `kill -HUP 1` will signal the pod sandbox.
-   (`/pause` in the above example.)
+   shared process namespace, `kill -HUP 1` will signal the pod sandbox
+   (`/pause` in the above example).
 
 1. **Processes are visible to other containers in the pod.** This includes all
    information visible in `/proc`, such as passwords that were passed as arguments
@@ -118,6 +126,3 @@ containers, though, so it's important to understand these differences:
    `/proc/$pid/root` link.** This makes debugging easier, but it also means
    that filesystem secrets are protected only by filesystem permissions.
 
-
-
-
diff --git a/content/en/docs/tasks/configure-pod-container/static-pod.md b/content/en/docs/tasks/configure-pod-container/static-pod.md
index c889570dc7..e9e9a6c356 100644
--- a/content/en/docs/tasks/configure-pod-container/static-pod.md
+++ b/content/en/docs/tasks/configure-pod-container/static-pod.md
@@ -42,7 +42,7 @@ The `spec` of a static Pod cannot refer to other API objects
 
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
-This page assumes you're using {{< glossary_tooltip term_id="docker" >}} to run Pods,
+This page assumes you're using {{< glossary_tooltip term_id="cri-o" >}} to run Pods,
 and that your nodes are running the Fedora operating system.
 Instructions for other distributions or Kubernetes installations may vary.
 
@@ -67,12 +67,12 @@ For example, this is how to start a simple web server as a static Pod:
     ssh my-node1
     ```
 
-2. Choose a directory, say `/etc/kubelet.d` and place a web server Pod definition there, for example `/etc/kubelet.d/static-web.yaml`:
+2. Choose a directory, say `/etc/kubernetes/manifests` and place a web server Pod definition there, for example `/etc/kubernetes/manifests/static-web.yaml`:
 
     ```shell
     # Run this command on the node where kubelet is running
-    mkdir /etc/kubelet.d/
-    cat <<EOF >/etc/kubelet.d/static-web.yaml
+    mkdir -p /etc/kubernetes/manifests/
+    cat <<EOF >/etc/kubernetes/manifests/static-web.yaml
     apiVersion: v1
     kind: Pod
     metadata:
@@ -90,10 +90,10 @@ For example, this is how to start a simple web server as a static Pod:
     EOF
     ```
 
-3. Configure your kubelet on the node to use this directory by running it with `--pod-manifest-path=/etc/kubelet.d/` argument. On Fedora edit `/etc/kubernetes/kubelet` to include this line:
+3. Configure your kubelet on the node to use this directory by running it with `--pod-manifest-path=/etc/kubernetes/manifests/` argument. On Fedora edit `/etc/kubernetes/kubelet` to include this line:
 
    ```
-   KUBELET_ARGS="--cluster-dns=10.254.0.10 --cluster-domain=kube.local --pod-manifest-path=/etc/kubelet.d/"
+   KUBELET_ARGS="--cluster-dns=10.254.0.10 --cluster-domain=kube.local --pod-manifest-path=/etc/kubernetes/manifests/"
    ```
    or add the `staticPodPath: <the directory>` field in the
    [kubelet configuration file](/docs/reference/config-api/kubelet-config.v1beta1/).
@@ -156,15 +156,20 @@ already be running.
 You can view running containers (including static Pods) by running (on the node):
 ```shell
 # Run this command on the node where the kubelet is running
-docker ps
+crictl ps
 ```
 
 The output might be something like:
 
+```console
+CONTAINER       IMAGE                                 CREATED           STATE      NAME    ATTEMPT    POD ID
+129fd7d382018   docker.io/library/nginx@sha256:...    11 minutes ago    Running    web     0          34533c6729106
 ```
-CONTAINER ID IMAGE         COMMAND  CREATED        STATUS         PORTS     NAMES
-f6d05272b57e nginx:latest  "nginx"  8 minutes ago  Up 8 minutes             k8s_web.6f802af4_static-web-fk-node1_default_67e24ed9466ba55986d120c867395f3c_378e5f3c
-```
+
+{{< note >}}
+`crictl` outputs the image URI and SHA-256 checksum. `NAME` will look more like:
+`docker.io/library/nginx@sha256:0d17b565c37bcbd895e9d92315a05c1c3c9a29f762b011a10c54a66cd53c9b31`.
+{{< /note >}}
 
 You can see the mirror Pod on the API server:
 
@@ -172,16 +177,14 @@ You can see the mirror Pod on the API server:
 kubectl get pods
 ```
 ```
-NAME                       READY     STATUS    RESTARTS   AGE
-static-web-my-node1        1/1       Running   0          2m
+NAME         READY   STATUS    RESTARTS        AGE
+static-web   1/1     Running   0               2m
 ```
 
 {{< note >}}
-Make sure the kubelet has permission to create the mirror Pod in the API server. If not, the creation request is rejected by the API server. See
-[PodSecurityPolicy](/docs/concepts/policy/pod-security-policy/).
+Make sure the kubelet has permission to create the mirror Pod in the API server. If not, the creation request is rejected by the API server. See [Pod Security admission](/docs/concepts/security/pod-security-admission) and [PodSecurityPolicy](/docs/concepts/security/pod-security-policy/).
 {{< /note >}}
 
-
 {{< glossary_tooltip term_id="label" text="Labels" >}} from the static Pod are
 propagated into the mirror Pod. You can use those labels as normal via
 {{< glossary_tooltip term_id="selector" text="selectors" >}}, etc.
@@ -190,54 +193,52 @@ If you try to use `kubectl` to delete the mirror Pod from the API server,
 the kubelet _doesn't_ remove the static Pod:
 
 ```shell
-kubectl delete pod static-web-my-node1
+kubectl delete pod static-web
 ```
 ```
-pod "static-web-my-node1" deleted
+pod "static-web" deleted
 ```
 You can see that the Pod is still running:
 ```shell
 kubectl get pods
 ```
 ```
-NAME                       READY     STATUS    RESTARTS   AGE
-static-web-my-node1        1/1       Running   0          12s
+NAME         READY   STATUS    RESTARTS   AGE
+static-web   1/1     Running   0          4s
 ```
 
-Back on your node where the kubelet is running, you can try to stop the Docker
-container manually.
+Back on your node where the kubelet is running, you can try to stop the container manually.
 You'll see that, after a time, the kubelet will notice and will restart the Pod
 automatically:
 
 ```shell
 # Run these commands on the node where the kubelet is running
-docker stop f6d05272b57e # replace with the ID of your container
+crictl stop 129fd7d382018 # replace with the ID of your container
 sleep 20
-docker ps
+crictl ps
 ```
-```
-CONTAINER ID        IMAGE         COMMAND                CREATED       ...
-5b920cbaf8b1        nginx:latest  "nginx -g 'daemon of   2 seconds ago ...
+```console
+CONTAINER       IMAGE                                 CREATED           STATE      NAME    ATTEMPT    POD ID
+89db4553e1eeb   docker.io/library/nginx@sha256:...    19 seconds ago    Running    web     1          34533c6729106
 ```
 
 ## Dynamic addition and removal of static pods
 
-The running kubelet periodically scans the configured directory (`/etc/kubelet.d` in our example) for changes and adds/removes Pods as files appear/disappear in this directory.
+The running kubelet periodically scans the configured directory (`/etc/kubernetes/manifests` in our example) for changes and adds/removes Pods as files appear/disappear in this directory.
 
 ```shell
 # This assumes you are using filesystem-hosted static Pod configuration
 # Run these commands on the node where the kubelet is running
 #
-mv /etc/kubelet.d/static-web.yaml /tmp
+mv /etc/kubernetes/manifests/static-web.yaml /tmp
 sleep 20
-docker ps
+crictl ps
 # You see that no nginx container is running
-mv /tmp/static-web.yaml  /etc/kubelet.d/
+mv /tmp/static-web.yaml  /etc/kubernetes/manifests/
 sleep 20
-docker ps
+crictl ps
 ```
+```console
+CONTAINER       IMAGE                                 CREATED           STATE      NAME    ATTEMPT    POD ID
+f427638871c35   docker.io/library/nginx@sha256:...    19 seconds ago    Running    web     1          34533c6729106
 ```
-CONTAINER ID        IMAGE         COMMAND                CREATED           ...
-e7a62e3427f1        nginx:latest  "nginx -g 'daemon of   27 seconds ago
-```
-
diff --git a/content/en/docs/tasks/configure-pod-container/translate-compose-kubernetes.md b/content/en/docs/tasks/configure-pod-container/translate-compose-kubernetes.md
index 384b709720..a463982422 100644
--- a/content/en/docs/tasks/configure-pod-container/translate-compose-kubernetes.md
+++ b/content/en/docs/tasks/configure-pod-container/translate-compose-kubernetes.md
@@ -29,13 +29,13 @@ Kompose is released via GitHub on a three-week cycle, you can see all current re
 
 ```sh
 # Linux
-curl -L https://github.com/kubernetes/kompose/releases/download/v1.22.0/kompose-linux-amd64 -o kompose
+curl -L https://github.com/kubernetes/kompose/releases/download/v1.26.0/kompose-linux-amd64 -o kompose
 
 # macOS
-curl -L https://github.com/kubernetes/kompose/releases/download/v1.22.0/kompose-darwin-amd64 -o kompose
+curl -L https://github.com/kubernetes/kompose/releases/download/v1.26.0/kompose-darwin-amd64 -o kompose
 
 # Windows
-curl -L https://github.com/kubernetes/kompose/releases/download/v1.22.0/kompose-windows-amd64.exe -o kompose.exe
+curl -L https://github.com/kubernetes/kompose/releases/download/v1.26.0/kompose-windows-amd64.exe -o kompose.exe
 
 chmod +x kompose
 sudo mv ./kompose /usr/local/bin/kompose
@@ -150,13 +150,12 @@ you need is an existing `docker-compose.yml` file.
    ```
 
    ```bash
-    kubectl apply -f frontend-service.yaml,redis-master-service.yaml,redis-slave-service.yaml,frontend-deployment.yaml,
+    kubectl apply -f frontend-service.yaml,redis-master-service.yaml,redis-slave-service.yaml,frontend-deployment.yaml,redis-master-deployment.yaml,redis-slave-deployment.yaml
    ```
 
    The output is similar to:
 
    ```none
-   redis-master-deployment.yaml,redis-slave-deployment.yaml
    service/frontend created
    service/redis-master created
    service/redis-slave created
@@ -208,10 +207,7 @@ you need is an existing `docker-compose.yml` file.
 
 - CLI
   - [`kompose convert`](#kompose-convert)
-  - [`kompose up`](#kompose-up)
-  - [`kompose down`](#kompose-down)
 - Documentation
-  - [Build and Push Docker Images](#build-and-push-docker-images)
   - [Alternative Conversions](#alternative-conversions)
   - [Labels](#labels)
   - [Restart](#restart)
@@ -329,169 +325,6 @@ INFO OpenShift file "foo-buildconfig.yaml" created
 If you are manually pushing the OpenShift artifacts using ``oc create -f``, you need to ensure that you push the imagestream artifact before the buildconfig artifact, to workaround this OpenShift issue: https://github.com/openshift/origin/issues/4518 .
 {{< /note >}}
 
-## `kompose up`
-
-Kompose supports a straightforward way to deploy your "composed" application to Kubernetes or OpenShift via `kompose up`.
-
-### Kubernetes `kompose up` example
-
-```shell
-kompose --file ./examples/docker-guestbook.yml up
-```
-
-```none
-We are going to create Kubernetes deployments and services for your Dockerized application.
-If you need different kind of resources, use the 'kompose convert' and 'kubectl apply -f' commands instead.
-
-INFO Successfully created service: redis-master
-INFO Successfully created service: redis-slave
-INFO Successfully created service: frontend
-INFO Successfully created deployment: redis-master
-INFO Successfully created deployment: redis-slave
-INFO Successfully created deployment: frontend
-
-Your application has been deployed to Kubernetes. You can run 'kubectl get deployment,svc,pods' for details.
-```
-
-```shell
-kubectl get deployment,svc,pods
-```
-
-```none
-NAME                                              DESIRED       CURRENT       UP-TO-DATE   AVAILABLE   AGE
-deployment.extensions/frontend                    1             1             1            1           4m
-deployment.extensions/redis-master                1             1             1            1           4m
-deployment.extensions/redis-slave                 1             1             1            1           4m
-
-NAME                         TYPE               CLUSTER-IP    EXTERNAL-IP   PORT(S)      AGE
-service/frontend             ClusterIP          10.0.174.12   <none>        80/TCP       4m
-service/kubernetes           ClusterIP          10.0.0.1      <none>        443/TCP      13d
-service/redis-master         ClusterIP          10.0.202.43   <none>        6379/TCP     4m
-service/redis-slave          ClusterIP          10.0.1.85     <none>        6379/TCP     4m
-
-NAME                                READY         STATUS        RESTARTS     AGE
-pod/frontend-2768218532-cs5t5       1/1           Running       0            4m
-pod/redis-master-1432129712-63jn8   1/1           Running       0            4m
-pod/redis-slave-2504961300-nve7b    1/1           Running       0            4m
-```
-
-{{< note >}}
-
-- You must have a running Kubernetes cluster with a pre-configured kubectl context.
-- Only deployments and services are generated and deployed to Kubernetes. If you need different kind of resources, use the `kompose convert` and `kubectl apply -f` commands instead.
-{{< /note >}}
-
-### OpenShift `kompose up` example
-
-```shell
-kompose --file ./examples/docker-guestbook.yml --provider openshift up
-```
-
-```none
-We are going to create OpenShift DeploymentConfigs and Services for your Dockerized application.
-If you need different kind of resources, use the 'kompose convert' and 'oc create -f' commands instead.
-
-INFO Successfully created service: redis-slave    
-INFO Successfully created service: frontend       
-INFO Successfully created service: redis-master   
-INFO Successfully created deployment: redis-slave
-INFO Successfully created ImageStream: redis-slave
-INFO Successfully created deployment: frontend    
-INFO Successfully created ImageStream: frontend   
-INFO Successfully created deployment: redis-master
-INFO Successfully created ImageStream: redis-master
-
-Your application has been deployed to OpenShift. You can run 'oc get dc,svc,is' for details.
-```
-
-```shell
-oc get dc,svc,is
-```
-
-```none
-NAME               REVISION                              DESIRED       CURRENT    TRIGGERED BY
-dc/frontend        0                                     1             0          config,image(frontend:v4)
-dc/redis-master    0                                     1             0          config,image(redis-master:e2e)
-dc/redis-slave     0                                     1             0          config,image(redis-slave:v1)
-NAME               CLUSTER-IP                            EXTERNAL-IP   PORT(S)    AGE
-svc/frontend       172.30.46.64                          <none>        80/TCP     8s
-svc/redis-master   172.30.144.56                         <none>        6379/TCP   8s
-svc/redis-slave    172.30.75.245                         <none>        6379/TCP   8s
-NAME               DOCKER REPO                           TAGS          UPDATED
-is/frontend        172.30.12.200:5000/fff/frontend                     
-is/redis-master    172.30.12.200:5000/fff/redis-master                 
-is/redis-slave     172.30.12.200:5000/fff/redis-slave    v1  
-```
-
-{{< note >}}
-You must have a running OpenShift cluster with a pre-configured `oc` context (`oc login`).
-{{< /note >}}
-
-## `kompose down`
-
-Once you have deployed "composed" application to Kubernetes, `kompose down` will help you to take the application out by deleting its deployments and services. If you need to remove other resources, use the 'kubectl' command.
-
-```shell
-kompose --file docker-guestbook.yml down
-INFO Successfully deleted service: redis-master   
-INFO Successfully deleted deployment: redis-master
-INFO Successfully deleted service: redis-slave    
-INFO Successfully deleted deployment: redis-slave
-INFO Successfully deleted service: frontend       
-INFO Successfully deleted deployment: frontend
-```
-
-{{< note >}}
-You must have a running Kubernetes cluster with a pre-configured `kubectl` context.
-{{< /note >}}
-
-## Build and Push Docker Images
-
-Kompose supports both building and pushing Docker images. When using the `build` key within your Docker Compose file, your image will:
-
-- Automatically be built with Docker using the `image` key specified within your file
-- Be pushed to the correct Docker repository using local credentials (located at `.docker/config`)
-
-Using an [example Docker Compose file](https://raw.githubusercontent.com/kubernetes/kompose/master/examples/buildconfig/docker-compose.yml):
-
-```yaml
-version: "2"
-
-services:
-    foo:
-        build: "./build"
-        image: docker.io/foo/bar
-```
-
-Using `kompose up` with a `build` key:
-
-```none
-kompose up
-INFO Build key detected. Attempting to build and push image 'docker.io/foo/bar'
-INFO Building image 'docker.io/foo/bar' from directory 'build'
-INFO Image 'docker.io/foo/bar' from directory 'build' built successfully
-INFO Pushing image 'foo/bar:latest' to registry 'docker.io'
-INFO Attempting authentication credentials 'https://index.docker.io/v1/
-INFO Successfully pushed image 'foo/bar:latest' to registry 'docker.io'
-INFO We are going to create Kubernetes Deployments, Services and PersistentVolumeClaims for your Dockerized application. If you need different kind of resources, use the 'kompose convert' and 'kubectl apply -f' commands instead.
-
-INFO Deploying application in "default" namespace
-INFO Successfully created Service: foo            
-INFO Successfully created Deployment: foo         
-
-Your application has been deployed to Kubernetes. You can run 'kubectl get deployment,svc,pods,pvc' for details.
-```
-
-In order to disable the functionality, or choose to use BuildConfig generation (with OpenShift) `--build (local|build-config|none)` can be passed.
-
-```sh
-# Disable building/pushing Docker images
-kompose up --build none
-
-# Generate Build Config artifacts for OpenShift
-kompose up --provider openshift --build build-config
-```
-
 ## Alternative Conversions
 
 The default `kompose` transformation will generate Kubernetes [Deployments](/docs/concepts/workloads/controllers/deployment/) and [Services](/docs/concepts/services-networking/service/), in yaml format. You have alternative option to generate json with `-j`. Also, you can alternatively generate [Replication Controllers](/docs/concepts/workloads/controllers/replicationcontroller/) objects, [Daemon Sets](/docs/concepts/workloads/controllers/daemonset/), or [Helm](https://github.com/helm/helm) charts.
diff --git a/content/en/docs/tasks/debug-application-cluster/_index.md b/content/en/docs/tasks/debug-application-cluster/_index.md
deleted file mode 100644
index 0aa5f76478..0000000000
--- a/content/en/docs/tasks/debug-application-cluster/_index.md
+++ /dev/null
@@ -1,6 +0,0 @@
----
-title: "Monitoring, Logging, and Debugging"
-description: Set up monitoring and logging to troubleshoot a cluster, or debug a containerized application.
-weight: 80
----
-
diff --git a/content/en/docs/tasks/debug-application-cluster/debug-cluster.md b/content/en/docs/tasks/debug-application-cluster/debug-cluster.md
deleted file mode 100644
index 391efe4376..0000000000
--- a/content/en/docs/tasks/debug-application-cluster/debug-cluster.md
+++ /dev/null
@@ -1,124 +0,0 @@
----
-reviewers:
-- davidopp
-title: Troubleshoot Clusters
-content_type: concept
----
-
-<!-- overview -->
-
-This doc is about cluster troubleshooting; we assume you have already ruled out your application as the root cause of the
-problem you are experiencing. See
-the [application troubleshooting guide](/docs/tasks/debug-application-cluster/debug-application) for tips on application debugging.
-You may also visit [troubleshooting document](/docs/tasks/debug-application-cluster/troubleshooting/) for more information.
-
-<!-- body -->
-
-## Listing your cluster
-
-The first thing to debug in your cluster is if your nodes are all registered correctly.
-
-Run
-
-```shell
-kubectl get nodes
-```
-
-And verify that all of the nodes you expect to see are present and that they are all in the `Ready` state.
-
-To get detailed information about the overall health of your cluster, you can run:
-
-```shell
-kubectl cluster-info dump
-```
-## Looking at logs
-
-For now, digging deeper into the cluster requires logging into the relevant machines.  Here are the locations
-of the relevant log files.  (note that on systemd-based systems, you may need to use `journalctl` instead)
-
-### Master
-
-   * `/var/log/kube-apiserver.log` - API Server, responsible for serving the API
-   * `/var/log/kube-scheduler.log` - Scheduler, responsible for making scheduling decisions
-   * `/var/log/kube-controller-manager.log` - Controller that manages replication controllers
-
-### Worker Nodes
-
-   * `/var/log/kubelet.log` - Kubelet, responsible for running containers on the node
-   * `/var/log/kube-proxy.log` - Kube Proxy, responsible for service load balancing
-
-## A general overview of cluster failure modes
-
-This is an incomplete list of things that could go wrong, and how to adjust your cluster setup to mitigate the problems.
-
-### Root causes:
-
-  - VM(s) shutdown
-  - Network partition within cluster, or between cluster and users
-  - Crashes in Kubernetes software
-  - Data loss or unavailability of persistent storage (e.g. GCE PD or AWS EBS volume)
-  - Operator error, for example misconfigured Kubernetes software or application software
-
-### Specific scenarios:
-
-  - Apiserver VM shutdown or apiserver crashing
-    - Results
-      - unable to stop, update, or start new pods, services, replication controller
-      - existing pods and services should continue to work normally, unless they depend on the Kubernetes API
-  - Apiserver backing storage lost
-    - Results
-      - apiserver should fail to come up
-      - kubelets will not be able to reach it but will continue to run the same pods and provide the same service proxying
-      - manual recovery or recreation of apiserver state necessary before apiserver is restarted
-  - Supporting services (node controller, replication controller manager, scheduler, etc) VM shutdown or crashes
-    - currently those are colocated with the apiserver, and their unavailability has similar consequences as apiserver
-    - in future, these will be replicated as well and may not be co-located
-    - they do not have their own persistent state
-  - Individual node (VM or physical machine) shuts down
-    - Results
-      - pods on that Node stop running
-  - Network partition
-    - Results
-      - partition A thinks the nodes in partition B are down; partition B thinks the apiserver is down. (Assuming the master VM ends up in partition A.)
-  - Kubelet software fault
-    - Results
-      - crashing kubelet cannot start new pods on the node
-      - kubelet might delete the pods or not
-      - node marked unhealthy
-      - replication controllers start new pods elsewhere
-  - Cluster operator error
-    - Results
-      - loss of pods, services, etc
-      - lost of apiserver backing store
-      - users unable to read API
-      - etc.
-
-### Mitigations:
-
-- Action: Use IaaS provider's automatic VM restarting feature for IaaS VMs
-  - Mitigates: Apiserver VM shutdown or apiserver crashing
-  - Mitigates: Supporting services VM shutdown or crashes
-
-- Action: Use IaaS providers reliable storage (e.g. GCE PD or AWS EBS volume) for VMs with apiserver+etcd
-  - Mitigates: Apiserver backing storage lost
-
-- Action: Use [high-availability](/docs/setup/production-environment/tools/kubeadm/high-availability/) configuration
-  - Mitigates: Control plane node shutdown or control plane components (scheduler, API server, controller-manager) crashing
-    - Will tolerate one or more simultaneous node or component failures
-  - Mitigates: API server backing storage (i.e., etcd's data directory) lost
-    - Assumes HA (highly-available) etcd configuration
-
-- Action: Snapshot apiserver PDs/EBS-volumes periodically
-  - Mitigates: Apiserver backing storage lost
-  - Mitigates: Some cases of operator error
-  - Mitigates: Some cases of Kubernetes software fault
-
-- Action: use replication controller and services in front of pods
-  - Mitigates: Node shutdown
-  - Mitigates: Kubelet software fault
-
-- Action: applications (containers) designed to tolerate unexpected restarts
-  - Mitigates: Node shutdown
-  - Mitigates: Kubelet software fault
-
-
diff --git a/content/en/docs/tasks/debug-application-cluster/debug-pod-replication-controller.md b/content/en/docs/tasks/debug-application-cluster/debug-pod-replication-controller.md
deleted file mode 100644
index c99182b854..0000000000
--- a/content/en/docs/tasks/debug-application-cluster/debug-pod-replication-controller.md
+++ /dev/null
@@ -1,107 +0,0 @@
----
-reviewers:
-- bprashanth
-title: Debug Pods and ReplicationControllers
-content_type: task
----
-
-<!-- overview -->
-
-This page shows how to debug Pods and ReplicationControllers.
-
-## {{% heading "prerequisites" %}}
-
-
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-* You should be familiar with the basics of
-  {{< glossary_tooltip text="Pods" term_id="pod" >}} and with 
-  Pods' [lifecycles](/docs/concepts/workloads/pods/pod-lifecycle/).
-
-<!-- steps -->
-
-## Debugging Pods
-
-The first step in debugging a pod is taking a look at it. Check the current
-state of the pod and recent events with the following command:
-
-```shell
-kubectl describe pods ${POD_NAME}
-```
-
-Look at the state of the containers in the pod. Are they all `Running`?  Have
-there been recent restarts?
-
-Continue debugging depending on the state of the pods.
-
-### My pod stays pending
-
-If a pod is stuck in `Pending` it means that it can not be scheduled onto a
-node. Generally this is because there are insufficient resources of one type or
-another that prevent scheduling. Look at the output of the `kubectl describe
-...` command above. There should be messages from the scheduler about why it
-can not schedule your pod. Reasons include:
-
-#### Insufficient resources
-
-You may have exhausted the supply of CPU or Memory in your cluster. In this
-case you can try several things:
-
-* Add more nodes to the cluster.
-
-* [Terminate unneeded pods](/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)
-  to make room for pending pods.
-
-* Check that the pod is not larger than your nodes. For example, if all
-  nodes have a capacity of `cpu:1`, then a pod with a request of `cpu: 1.1`
-  will never be scheduled.
-
-    You can check node capacities with the `kubectl get nodes -o <format>`
-    command. Here are some example command lines that extract the necessary
-    information:
-
-    ```shell
-    kubectl get nodes -o yaml | egrep '\sname:|cpu:|memory:'
-    kubectl get nodes -o json | jq '.items[] | {name: .metadata.name, cap: .status.capacity}'
-    ```
-
-  The [resource quota](/docs/concepts/policy/resource-quotas/)
-  feature can be configured to limit the total amount of
-  resources that can be consumed. If used in conjunction with namespaces, it can
-  prevent one team from hogging all the resources.
-
-#### Using hostPort
-
-When you bind a pod to a `hostPort` there are a limited number of places that
-the pod can be scheduled. In most cases, `hostPort` is unnecessary; try using a
-service object to expose your pod. If you do require `hostPort` then you can
-only schedule as many pods as there are nodes in your container cluster.
-
-### My pod stays waiting
-
-If a pod is stuck in the `Waiting` state, then it has been scheduled to a
-worker node, but it can't run on that machine. Again, the information from
-`kubectl describe ...` should be informative. The most common cause of
-`Waiting` pods is a failure to pull the image. There are three things to check:
-
-* Make sure that you have the name of the image correct.
-* Have you pushed the image to the repository?
-* Run a manual `docker pull <image>` on your machine to see if the image can be
-  pulled.
-
-### My pod is crashing or otherwise unhealthy
-
-Once your pod has been scheduled, the methods described in [Debug Running Pods](
-/docs/tasks/debug-application-cluster/debug-running-pod/) are available for debugging.
-
-
-## Debugging ReplicationControllers
-
-ReplicationControllers are fairly straightforward. They can either create pods
-or they can't. If they can't create pods, then please refer to the
-[instructions above](#debugging-pods) to debug your pods.
-
-You can also use `kubectl describe rc ${CONTROLLER_NAME}` to inspect events
-related to the replication controller.
-
-
diff --git a/content/en/docs/tasks/debug-application-cluster/debug-running-pod.md b/content/en/docs/tasks/debug-application-cluster/debug-running-pod.md
deleted file mode 100644
index 6009a76341..0000000000
--- a/content/en/docs/tasks/debug-application-cluster/debug-running-pod.md
+++ /dev/null
@@ -1,339 +0,0 @@
----
-reviewers:
-- verb
-- soltysh
-title: Debug Running Pods
-content_type: task
----
-
-<!-- overview -->
-
-This page explains how to debug Pods running (or crashing) on a Node.
-
-
-
-## {{% heading "prerequisites" %}}
-
-
-* Your {{< glossary_tooltip text="Pod" term_id="pod" >}} should already be
-  scheduled and running. If your Pod is not yet running, start with [Troubleshoot
-  Applications](/docs/tasks/debug-application-cluster/debug-application/).
-* For some of the advanced debugging steps you need to know on which Node the
-  Pod is running and have shell access to run commands on that Node. You don't
-  need that access to run the standard debug steps that use `kubectl`.
-
-
-
-<!-- steps -->
-
-## Examining pod logs {#examine-pod-logs}
-
-First, look at the logs of the affected container:
-
-```shell
-kubectl logs ${POD_NAME} ${CONTAINER_NAME}
-```
-
-If your container has previously crashed, you can access the previous container's crash log with:
-
-```shell
-kubectl logs --previous ${POD_NAME} ${CONTAINER_NAME}
-```
-
-## Debugging with container exec {#container-exec}
-
-If the {{< glossary_tooltip text="container image" term_id="image" >}} includes
-debugging utilities, as is the case with images built from Linux and Windows OS
-base images, you can run commands inside a specific container with
-`kubectl exec`:
-
-```shell
-kubectl exec ${POD_NAME} -c ${CONTAINER_NAME} -- ${CMD} ${ARG1} ${ARG2} ... ${ARGN}
-```
-
-{{< note >}}
-`-c ${CONTAINER_NAME}` is optional. You can omit it for Pods that only contain a single container.
-{{< /note >}}
-
-As an example, to look at the logs from a running Cassandra pod, you might run
-
-```shell
-kubectl exec cassandra -- cat /var/log/cassandra/system.log
-```
-
-You can run a shell that's connected to your terminal using the `-i` and `-t`
-arguments to `kubectl exec`, for example:
-
-```shell
-kubectl exec -it cassandra -- sh
-```
-
-For more details, see [Get a Shell to a Running Container](
-/docs/tasks/debug-application-cluster/get-shell-running-container/).
-
-## Debugging with an ephemeral debug container {#ephemeral-container}
-
-{{< feature-state state="alpha" for_k8s_version="v1.22" >}}
-
-{{< glossary_tooltip text="Ephemeral containers" term_id="ephemeral-container" >}}
-are useful for interactive troubleshooting when `kubectl exec` is insufficient
-because a container has crashed or a container image doesn't include debugging
-utilities, such as with [distroless images](
-https://github.com/GoogleContainerTools/distroless).
-
-### Example debugging using ephemeral containers {#ephemeral-container-example}
-
-{{< note >}}
-The examples in this section require the `EphemeralContainers` [feature gate](
-/docs/reference/command-line-tools-reference/feature-gates/) enabled in your
-cluster and `kubectl` version v1.22 or later.
-{{< /note >}}
-
-You can use the `kubectl debug` command to add ephemeral containers to a
-running Pod. First, create a pod for the example:
-
-```shell
-kubectl run ephemeral-demo --image=k8s.gcr.io/pause:3.1 --restart=Never
-```
-
-The examples in this section use the `pause` container image because it does not
-contain debugging utilities, but this method works with all container
-images.
-
-If you attempt to use `kubectl exec` to create a shell you will see an error
-because there is no shell in this container image.
-
-```shell
-kubectl exec -it ephemeral-demo -- sh
-```
-
-```
-OCI runtime exec failed: exec failed: container_linux.go:346: starting container process caused "exec: \"sh\": executable file not found in $PATH": unknown
-```
-
-You can instead add a debugging container using `kubectl debug`. If you
-specify the `-i`/`--interactive` argument, `kubectl` will automatically attach
-to the console of the Ephemeral Container.
-
-```shell
-kubectl debug -it ephemeral-demo --image=busybox --target=ephemeral-demo
-```
-
-```
-Defaulting debug container name to debugger-8xzrl.
-If you don't see a command prompt, try pressing enter.
-/ #
-```
-
-This command adds a new busybox container and attaches to it. The `--target`
-parameter targets the process namespace of another container. It's necessary
-here because `kubectl run` does not enable [process namespace sharing](
-/docs/tasks/configure-pod-container/share-process-namespace/) in the pod it
-creates.
-
-{{< note >}}
-The `--target` parameter must be supported by the {{< glossary_tooltip
-text="Container Runtime" term_id="container-runtime" >}}. When not supported,
-the Ephemeral Container may not be started, or it may be started with an
-isolated process namespace so that `ps` does not reveal processes in other
-containers.
-{{< /note >}}
-
-You can view the state of the newly created ephemeral container using `kubectl describe`:
-
-```shell
-kubectl describe pod ephemeral-demo
-```
-
-```
-...
-Ephemeral Containers:
-  debugger-8xzrl:
-    Container ID:   docker://b888f9adfd15bd5739fefaa39e1df4dd3c617b9902082b1cfdc29c4028ffb2eb
-    Image:          busybox
-    Image ID:       docker-pullable://busybox@sha256:1828edd60c5efd34b2bf5dd3282ec0cc04d47b2ff9caa0b6d4f07a21d1c08084
-    Port:           <none>
-    Host Port:      <none>
-    State:          Running
-      Started:      Wed, 12 Feb 2020 14:25:42 +0100
-    Ready:          False
-    Restart Count:  0
-    Environment:    <none>
-    Mounts:         <none>
-...
-```
-
-Use `kubectl delete` to remove the Pod when you're finished:
-
-```shell
-kubectl delete pod ephemeral-demo
-```
-
-## Debugging using a copy of the Pod
-
-Sometimes Pod configuration options make it difficult to troubleshoot in certain
-situations. For example, you can't run `kubectl exec` to troubleshoot your
-container if your container image does not include a shell or if your application
-crashes on startup. In these situations you can use `kubectl debug` to create a
-copy of the Pod with configuration values changed to aid debugging.
-
-### Copying a Pod while adding a new container
-
-Adding a new container can be useful when your application is running but not
-behaving as you expect and you'd like to add additional troubleshooting
-utilities to the Pod.
-
-For example, maybe your application's container images are built on `busybox`
-but you need debugging utilities not included in `busybox`. You can simulate
-this scenario using `kubectl run`:
-
-```shell
-kubectl run myapp --image=busybox --restart=Never -- sleep 1d
-```
-
-Run this command to create a copy of `myapp` named `myapp-debug` that adds a
-new Ubuntu container for debugging:
-
-```shell
-kubectl debug myapp -it --image=ubuntu --share-processes --copy-to=myapp-debug
-```
-
-```
-Defaulting debug container name to debugger-w7xmf.
-If you don't see a command prompt, try pressing enter.
-root@myapp-debug:/#
-```
-
-{{< note >}}
-* `kubectl debug` automatically generates a container name if you don't choose
-  one using the `--container` flag.
-* The `-i` flag causes `kubectl debug` to attach to the new container by
-  default.  You can prevent this by specifying `--attach=false`. If your session
-  becomes disconnected you can reattach using `kubectl attach`.
-* The `--share-processes` allows the containers in this Pod to see processes
-  from the other containers in the Pod. For more information about how this
-  works, see [Share Process Namespace between Containers in a Pod](
-  /docs/tasks/configure-pod-container/share-process-namespace/).
-{{< /note >}}
-
-Don't forget to clean up the debugging Pod when you're finished with it:
-
-```shell
-kubectl delete pod myapp myapp-debug
-```
-
-### Copying a Pod while changing its command
-
-Sometimes it's useful to change the command for a container, for example to
-add a debugging flag or because the application is crashing.
-
-To simulate a crashing application, use `kubectl run` to create a container
-that immediately exits:
-
-```
-kubectl run --image=busybox myapp -- false
-```
-
-You can see using `kubectl describe pod myapp` that this container is crashing:
-
-```
-Containers:
-  myapp:
-    Image:         busybox
-    ...
-    Args:
-      false
-    State:          Waiting
-      Reason:       CrashLoopBackOff
-    Last State:     Terminated
-      Reason:       Error
-      Exit Code:    1
-```
-
-You can use `kubectl debug` to create a copy of this Pod with the command
-changed to an interactive shell:
-
-```
-kubectl debug myapp -it --copy-to=myapp-debug --container=myapp -- sh
-```
-
-```
-If you don't see a command prompt, try pressing enter.
-/ #
-```
-
-Now you have an interactive shell that you can use to perform tasks like
-checking filesystem paths or running the container command manually.
-
-{{< note >}}
-* To change the command of a specific container you must
-  specify its name using `--container` or `kubectl debug` will instead
-  create a new container to run the command you specified.
-* The `-i` flag causes `kubectl debug` to attach to the container by default.
-  You can prevent this by specifying `--attach=false`. If your session becomes
-  disconnected you can reattach using `kubectl attach`.
-{{< /note >}}
-
-Don't forget to clean up the debugging Pod when you're finished with it:
-
-```shell
-kubectl delete pod myapp myapp-debug
-```
-
-### Copying a Pod while changing container images
-
-In some situations you may want to change a misbehaving Pod from its normal
-production container images to an image containing a debugging build or
-additional utilities.
-
-As an example, create a Pod using `kubectl run`:
-
-```
-kubectl run myapp --image=busybox --restart=Never -- sleep 1d
-```
-
-Now use `kubectl debug` to make a copy and change its container image
-to `ubuntu`:
-
-```
-kubectl debug myapp --copy-to=myapp-debug --set-image=*=ubuntu
-```
-
-The syntax of `--set-image` uses the same `container_name=image` syntax as
-`kubectl set image`. `*=ubuntu` means change the image of all containers
-to `ubuntu`.
-
-Don't forget to clean up the debugging Pod when you're finished with it:
-
-```shell
-kubectl delete pod myapp myapp-debug
-```
-
-## Debugging via a shell on the node {#node-shell-session}
-
-If none of these approaches work, you can find the Node on which the Pod is
-running and create a privileged Pod running in the host namespaces. To create
-an interactive shell on a node using `kubectl debug`, run:
-
-```shell
-kubectl debug node/mynode -it --image=ubuntu
-```
-
-```
-Creating debugging pod node-debugger-mynode-pdx84 with container debugger on node mynode.
-If you don't see a command prompt, try pressing enter.
-root@ek8s:/#
-```
-
-When creating a debugging session on a node, keep in mind that:
-
-* `kubectl debug` automatically generates the name of the new Pod based on
-  the name of the Node.
-* The container runs in the host IPC, Network, and PID namespaces.
-* The root filesystem of the Node will be mounted at `/host`.
-
-Don't forget to clean up the debugging Pod when you're finished with it:
-
-```shell
-kubectl delete pod node-debugger-mynode-pdx84
-```
diff --git a/content/en/docs/tasks/debug-application-cluster/local-debugging.md b/content/en/docs/tasks/debug-application-cluster/local-debugging.md
deleted file mode 100644
index d00c1398eb..0000000000
--- a/content/en/docs/tasks/debug-application-cluster/local-debugging.md
+++ /dev/null
@@ -1,61 +0,0 @@
----
-title: Developing and debugging services locally
-content_type: task
----
-
-<!-- overview -->
-
-Kubernetes applications usually consist of multiple, separate services, each running in its own container. Developing and debugging these services on a remote Kubernetes cluster can be cumbersome, requiring you to [get a shell on a running container](/docs/tasks/debug-application-cluster/get-shell-running-container/) and running your tools inside the remote shell.
-
-`telepresence` is a tool to ease the process of developing and debugging services locally, while proxying the service to a remote Kubernetes cluster. Using `telepresence` allows you to use custom tools, such as a debugger and IDE, for a local service and provides the service full access to ConfigMap, secrets, and the services running on the remote cluster.
-
-This document describes using `telepresence` to develop and debug services running on a remote cluster locally.
-
-
-
-
-## {{% heading "prerequisites" %}}
-
-
-* Kubernetes cluster is installed
-* `kubectl` is configured to communicate with the cluster
-* [Telepresence](https://www.telepresence.io/reference/install) is installed
-
-
-
-<!-- steps -->
-
-## Getting a shell on a remote cluster
-
-Open a terminal and run `telepresence` with no arguments to get a `telepresence` shell. This shell runs locally, giving you full access to your local filesystem.
-
-The `telepresence` shell can be used in a variety of ways. For example, write a shell script on your laptop, and run it directly from the shell in real time. You can do this on a remote shell as well, but you might not be able to use your preferred code editor, and the script is deleted when the container is terminated.
-
-Enter `exit` to quit and close the shell.
-
-## Developing or debugging an existing service
-
-When developing an application on Kubernetes, you typically program or debug a single service. The service might require access to other services for testing and debugging. One option is to use the continuous deployment pipeline, but even the fastest deployment pipeline introduces a delay in the program or debug cycle.
-
-Use the `--swap-deployment` option to swap an existing deployment with the Telepresence proxy. Swapping allows you to run a service locally and connect to the remote Kubernetes cluster. The services in the remote cluster can now access the locally running instance.
-
-To run telepresence with `--swap-deployment`, enter:
-
-`telepresence --swap-deployment $DEPLOYMENT_NAME`
-
-where $DEPLOYMENT_NAME is the name of your existing deployment.
-
-Running this command spawns a shell. In the shell, start your service. You can then make edits to the source code locally, save, and see the changes take effect immediately. You can also run your service in a debugger, or any other local development tool.
-
-
-
-## {{% heading "whatsnext" %}}
-
-
-If you're interested in a hands-on tutorial, check out [this tutorial](https://cloud.google.com/community/tutorials/developing-services-with-k8s) that walks through locally developing the Guestbook application on Google Kubernetes Engine.
-
-Telepresence has [numerous proxying options](https://www.telepresence.io/reference/methods), depending on your situation.
-
-For further reading, visit the [Telepresence website](https://www.telepresence.io).
-
-
diff --git a/content/en/docs/tasks/debug-application-cluster/resource-metrics-pipeline.md b/content/en/docs/tasks/debug-application-cluster/resource-metrics-pipeline.md
deleted file mode 100644
index a8c24693dc..0000000000
--- a/content/en/docs/tasks/debug-application-cluster/resource-metrics-pipeline.md
+++ /dev/null
@@ -1,67 +0,0 @@
----
-reviewers:
-- fgrzadkowski
-- piosz
-title: Resource metrics pipeline
-content_type: concept
----
-
-<!-- overview -->
-
-Resource usage metrics, such as container CPU and memory usage,
-are available in Kubernetes through the Metrics API. These metrics can be accessed either directly
-by the user with the `kubectl top` command, or by a controller in the cluster, for example
-Horizontal Pod Autoscaler, to make decisions.
-
-<!-- body -->
-
-## The Metrics API
-
-Through the Metrics API, you can get the amount of resource currently used
-by a given node or a given pod. This API doesn't store the metric values,
-so it's not possible, for example, to get the amount of resources used by a
-given node 10 minutes ago.
-
-The API is no different from any other API:
-
-- it is discoverable through the same endpoint as the other Kubernetes APIs under the path: `/apis/metrics.k8s.io/`
-- it offers the same security, scalability, and reliability guarantees
-
-The API is defined in [k8s.io/metrics](https://github.com/kubernetes/metrics/blob/master/pkg/apis/metrics/v1beta1/types.go)
-repository. You can find more information about the API there.
-
-{{< note >}}
-The API requires the metrics server to be deployed in the cluster. Otherwise it will be not available.
-{{< /note >}}
-
-## Measuring Resource Usage
-
-### CPU
-
-CPU is reported as the average usage, in
-[CPU cores](/docs/concepts/configuration/manage-resources-containers/#meaning-of-cpu),
-over a period of time. This value is derived by taking a rate over a cumulative CPU counter
-provided by the kernel (in both Linux and Windows kernels).
-The kubelet chooses the window for the rate calculation.
-
-### Memory
-
-Memory is reported as the working set, in bytes, at the instant the metric was collected.
-In an ideal world, the "working set" is the amount of memory in-use that cannot be freed under memory pressure.
-However, calculation of the working set varies by host OS, and generally makes heavy use of heuristics to produce an estimate.
-It includes all anonymous (non-file-backed) memory since Kubernetes does not support swap.
-The metric typically also includes some cached (file-backed) memory, because the host OS cannot always reclaim such pages.
-
-## Metrics Server
-
-[Metrics Server](https://github.com/kubernetes-sigs/metrics-server) is a cluster-wide aggregator of resource usage data.
-By default, it is deployed in clusters created by `kube-up.sh` script
-as a Deployment object. If you use a different Kubernetes setup mechanism, you can deploy it using the provided
-[deployment components.yaml](https://github.com/kubernetes-sigs/metrics-server/releases) file.
-
-Metrics Server collects metrics from the Summary API, exposed by
-[Kubelet](/docs/reference/command-line-tools-reference/kubelet/) on each node, and is registered with the main API server via
-[Kubernetes aggregator](/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/).
-
-Learn more about the metrics server in
-[the design doc](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/instrumentation/metrics-server.md).
diff --git a/content/en/docs/tasks/debug-application-cluster/troubleshooting.md b/content/en/docs/tasks/debug/_index.md
similarity index 86%
rename from content/en/docs/tasks/debug-application-cluster/troubleshooting.md
rename to content/en/docs/tasks/debug/_index.md
index a5385b25fc..da024f4af9 100644
--- a/content/en/docs/tasks/debug-application-cluster/troubleshooting.md
+++ b/content/en/docs/tasks/debug/_index.md
@@ -1,9 +1,12 @@
 ---
+title: "Monitoring, Logging, and Debugging"
+description: Set up monitoring and logging to troubleshoot a cluster, or debug a containerized application.
+weight: 20
 reviewers:
 - brendandburns
 - davidopp
 content_type: concept
-title: Troubleshooting
+no_list: true
 ---
 
 <!-- overview -->
@@ -11,9 +14,9 @@ title: Troubleshooting
 Sometimes things go wrong. This guide is aimed at making them right. It has
 two sections:
 
-* [Troubleshooting your application](/docs/tasks/debug-application-cluster/debug-application/) - Useful
+* [Debugging your application](/docs/tasks/debug/debug-application/) - Useful
   for users who are deploying code into Kubernetes and wondering why it is not working.
-* [Troubleshooting your cluster](/docs/tasks/debug-application-cluster/debug-cluster/) - Useful
+* [Debugging your cluster](/docs/tasks/debug/debug-cluster/) - Useful
   for cluster administrators and people whose Kubernetes cluster is unhappy.
 
 You should also check the known issues for the [release](https://github.com/kubernetes/kubernetes/releases)
@@ -36,7 +39,7 @@ accomplish commonly used tasks, and [Tutorials](/docs/tutorials/) are more
 comprehensive walkthroughs of real-world, industry-specific, or end-to-end
 development scenarios. The [Reference](/docs/reference/) section provides
 detailed documentation on the [Kubernetes API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)
-and command-line interfaces (CLIs), such as [`kubectl`](/docs/reference/kubectl/overview/).
+and command-line interfaces (CLIs), such as [`kubectl`](/docs/reference/kubectl/).
 
 ## Help! My question isn't covered!  I need help now!
 
@@ -45,8 +48,9 @@ and command-line interfaces (CLIs), such as [`kubectl`](/docs/reference/kubectl/
 Someone else from the community may have already asked a similar question or may
 be able to help with your problem. The Kubernetes team will also monitor
 [posts tagged Kubernetes](https://stackoverflow.com/questions/tagged/kubernetes).
-If there aren't any existing questions that help, please
-[ask a new one](https://stackoverflow.com/questions/ask?tags=kubernetes)!
+If there aren't any existing questions that help, **please [ensure that your question is on-topic on Stack Overflow](https://stackoverflow.com/help/on-topic)
+and that you read through the guidance on [how to ask a new question](https://stackoverflow.com/help/how-to-ask)**,
+before [asking a new one](https://stackoverflow.com/questions/ask?tags=kubernetes)!
 
 ### Slack
 
@@ -100,7 +104,7 @@ If filing a bug, please include detailed information about how to reproduce the
 problem, such as:
 
 * Kubernetes version: `kubectl version`
-* Cloud provider, OS distro, network configuration, and Docker version
+* Cloud provider, OS distro, network configuration, and container runtime version
 * Steps to reproduce the problem
 
 
diff --git a/content/en/docs/tasks/debug/debug-application/_index.md b/content/en/docs/tasks/debug/debug-application/_index.md
new file mode 100644
index 0000000000..e027ac4f49
--- /dev/null
+++ b/content/en/docs/tasks/debug/debug-application/_index.md
@@ -0,0 +1,8 @@
+---
+title: "Troubleshooting Applications"
+description: Debugging common containerized application issues.
+weight: 20
+---
+
+This doc contains a set of resources for fixing issues with containerized applications. It covers things like common issues with Kubernetes resources (like Pods, Services, or StatefulSets), advice on making sense of container termination messages, and ways to debug running containers.
+
diff --git a/content/en/docs/tasks/debug-application-cluster/debug-init-containers.md b/content/en/docs/tasks/debug/debug-application/debug-init-containers.md
similarity index 99%
rename from content/en/docs/tasks/debug-application-cluster/debug-init-containers.md
rename to content/en/docs/tasks/debug/debug-application/debug-init-containers.md
index c3cf109ea7..6e5bafa355 100644
--- a/content/en/docs/tasks/debug-application-cluster/debug-init-containers.md
+++ b/content/en/docs/tasks/debug/debug-application/debug-init-containers.md
@@ -9,6 +9,7 @@ reviewers:
 - smarterclayton
 title: Debug Init Containers
 content_type: task
+weight: 40
 ---
 
 <!-- overview -->
diff --git a/content/en/docs/tasks/debug-application-cluster/debug-application.md b/content/en/docs/tasks/debug/debug-application/debug-pods.md
similarity index 90%
rename from content/en/docs/tasks/debug-application-cluster/debug-application.md
rename to content/en/docs/tasks/debug/debug-application/debug-pods.md
index 477c9b8248..d7ff76fe04 100644
--- a/content/en/docs/tasks/debug-application-cluster/debug-application.md
+++ b/content/en/docs/tasks/debug/debug-application/debug-pods.md
@@ -2,15 +2,16 @@
 reviewers:
 - mikedanese
 - thockin
-title: Troubleshoot Applications
-content_type: concept
+title: Debug Pods
+content_type: task
+weight: 10
 ---
 
 <!-- overview -->
 
 This guide is to help users debug applications that are deployed into Kubernetes and not behaving correctly.
 This is *not* a guide for people who want to debug their cluster.  For that you should check out
-[this guide](/docs/tasks/debug-application-cluster/debug-cluster).
+[this guide](/docs/tasks/debug/debug-cluster).
 
 <!-- body -->
 
@@ -57,13 +58,14 @@ If a Pod is stuck in the `Waiting` state, then it has been scheduled to a worker
 Again, the information from `kubectl describe ...` should be informative.  The most common cause of `Waiting` pods is a failure to pull the image.  There are three things to check:
 
 * Make sure that you have the name of the image correct.
-* Have you pushed the image to the repository?
-* Run a manual `docker pull <image>` on your machine to see if the image can be pulled.
+* Have you pushed the image to the registry?
+* Try to manually pull the image to see if the image can be pulled. For example,
+  if you use Docker on your PC, run `docker pull <image>`.
 
 #### My pod is crashing or otherwise unhealthy
 
 Once your pod has been scheduled, the methods described in [Debug Running Pods](
-/docs/tasks/debug-application-cluster/debug-running-pod/) are available for debugging.
+/docs/tasks/debug/debug-application/debug-running-pod/) are available for debugging.
 
 #### My pod is running but not doing what I told it to do
 
@@ -144,15 +146,15 @@ Verify that the pod's `containerPort` matches up with the Service's `targetPort`
 
 #### Network traffic is not forwarded
 
-Please see [debugging service](/docs/tasks/debug-application-cluster/debug-service/) for more information.
+Please see [debugging service](/docs/tasks/debug/debug-application/debug-service/) for more information.
 
 ## {{% heading "whatsnext" %}}
 
 If none of the above solves your problem, follow the instructions in
-[Debugging Service document](/docs/tasks/debug-application-cluster/debug-service/)
+[Debugging Service document](/docs/tasks/debug/debug-application/debug-service/)
 to make sure that your `Service` is running, has `Endpoints`, and your `Pods` are
 actually serving; you have DNS working, iptables rules installed, and kube-proxy
 does not seem to be misbehaving.
 
-You may also visit [troubleshooting document](/docs/tasks/debug-application-cluster/troubleshooting/) for more information.
+You may also visit [troubleshooting document](/docs/tasks/debug/) for more information.
 
diff --git a/content/en/docs/tasks/debug/debug-application/debug-running-pod.md b/content/en/docs/tasks/debug/debug-application/debug-running-pod.md
new file mode 100644
index 0000000000..a810c60efa
--- /dev/null
+++ b/content/en/docs/tasks/debug/debug-application/debug-running-pod.md
@@ -0,0 +1,638 @@
+---
+reviewers:
+- verb
+- soltysh
+title: Debug Running Pods
+content_type: task
+---
+
+<!-- overview -->
+
+This page explains how to debug Pods running (or crashing) on a Node.
+
+
+## {{% heading "prerequisites" %}}
+
+
+* Your {{< glossary_tooltip text="Pod" term_id="pod" >}} should already be
+  scheduled and running. If your Pod is not yet running, start with [Debugging
+  Pods](/docs/tasks/debug/debug-application/).
+* For some of the advanced debugging steps you need to know on which Node the
+  Pod is running and have shell access to run commands on that Node. You don't
+  need that access to run the standard debug steps that use `kubectl`.
+
+## Using `kubectl describe pod` to fetch details about pods
+
+For this example we'll use a Deployment to create two pods, similar to the earlier example.
+
+{{< codenew file="application/nginx-with-request.yaml" >}}
+
+Create deployment by running following command:
+
+```shell
+kubectl apply -f https://k8s.io/examples/application/nginx-with-request.yaml
+```
+
+```none
+deployment.apps/nginx-deployment created
+```
+
+Check pod status by following command:
+
+```shell
+kubectl get pods
+```
+
+```none
+NAME                                READY   STATUS    RESTARTS   AGE
+nginx-deployment-67d4bdd6f5-cx2nz   1/1     Running   0          13s
+nginx-deployment-67d4bdd6f5-w6kd7   1/1     Running   0          13s
+```
+
+We can retrieve a lot more information about each of these pods using `kubectl describe pod`. For example:
+
+```shell
+kubectl describe pod nginx-deployment-67d4bdd6f5-w6kd7
+```
+
+```none
+Name:         nginx-deployment-67d4bdd6f5-w6kd7
+Namespace:    default
+Priority:     0
+Node:         kube-worker-1/192.168.0.113
+Start Time:   Thu, 17 Feb 2022 16:51:01 -0500
+Labels:       app=nginx
+              pod-template-hash=67d4bdd6f5
+Annotations:  <none>
+Status:       Running
+IP:           10.88.0.3
+IPs:
+  IP:           10.88.0.3
+  IP:           2001:db8::1
+Controlled By:  ReplicaSet/nginx-deployment-67d4bdd6f5
+Containers:
+  nginx:
+    Container ID:   containerd://5403af59a2b46ee5a23fb0ae4b1e077f7ca5c5fb7af16e1ab21c00e0e616462a
+    Image:          nginx
+    Image ID:       docker.io/library/nginx@sha256:2834dc507516af02784808c5f48b7cbe38b8ed5d0f4837f16e78d00deb7e7767
+    Port:           80/TCP
+    Host Port:      0/TCP
+    State:          Running
+      Started:      Thu, 17 Feb 2022 16:51:05 -0500
+    Ready:          True
+    Restart Count:  0
+    Limits:
+      cpu:     500m
+      memory:  128Mi
+    Requests:
+      cpu:        500m
+      memory:     128Mi
+    Environment:  <none>
+    Mounts:
+      /var/run/secrets/kubernetes.io/serviceaccount from kube-api-access-bgsgp (ro)
+Conditions:
+  Type              Status
+  Initialized       True 
+  Ready             True 
+  ContainersReady   True 
+  PodScheduled      True 
+Volumes:
+  kube-api-access-bgsgp:
+    Type:                    Projected (a volume that contains injected data from multiple sources)
+    TokenExpirationSeconds:  3607
+    ConfigMapName:           kube-root-ca.crt
+    ConfigMapOptional:       <nil>
+    DownwardAPI:             true
+QoS Class:                   Guaranteed
+Node-Selectors:              <none>
+Tolerations:                 node.kubernetes.io/not-ready:NoExecute op=Exists for 300s
+                             node.kubernetes.io/unreachable:NoExecute op=Exists for 300s
+Events:
+  Type    Reason     Age   From               Message
+  ----    ------     ----  ----               -------
+  Normal  Scheduled  34s   default-scheduler  Successfully assigned default/nginx-deployment-67d4bdd6f5-w6kd7 to kube-worker-1
+  Normal  Pulling    31s   kubelet            Pulling image "nginx"
+  Normal  Pulled     30s   kubelet            Successfully pulled image "nginx" in 1.146417389s
+  Normal  Created    30s   kubelet            Created container nginx
+  Normal  Started    30s   kubelet            Started container nginx
+```
+
+Here you can see configuration information about the container(s) and Pod (labels, resource requirements, etc.), as well as status information about the container(s) and Pod (state, readiness, restart count, events, etc.).
+
+The container state is one of Waiting, Running, or Terminated. Depending on the state, additional information will be provided -- here you can see that for a container in Running state, the system tells you when the container started.
+
+Ready tells you whether the container passed its last readiness probe. (In this case, the container does not have a readiness probe configured; the container is assumed to be ready if no readiness probe is configured.)
+
+Restart Count tells you how many times the container has been restarted; this information can be useful for detecting crash loops in containers that are configured with a restart policy of 'always.'
+
+Currently the only Condition associated with a Pod is the binary Ready condition, which indicates that the pod is able to service requests and should be added to the load balancing pools of all matching services.
+
+Lastly, you see a log of recent events related to your Pod. The system compresses multiple identical events by indicating the first and last time it was seen and the number of times it was seen. "From" indicates the component that is logging the event, "SubobjectPath" tells you which object (e.g. container within the pod) is being referred to, and "Reason" and "Message" tell you what happened.
+
+
+## Example: debugging Pending Pods
+
+A common scenario that you can detect using events is when you've created a Pod that won't fit on any node. For example, the Pod might request more resources than are free on any node, or it might specify a label selector that doesn't match any nodes. Let's say we created the previous Deployment with 5 replicas (instead of 2) and requesting 600 millicores instead of 500, on a four-node cluster where each (virtual) machine has 1 CPU. In that case one of the Pods will not be able to schedule. (Note that because of the cluster addon pods such as fluentd, skydns, etc., that run on each node, if we requested 1000 millicores then none of the Pods would be able to schedule.)
+
+```shell
+kubectl get pods
+```
+
+```none
+NAME                                READY     STATUS    RESTARTS   AGE
+nginx-deployment-1006230814-6winp   1/1       Running   0          7m
+nginx-deployment-1006230814-fmgu3   1/1       Running   0          7m
+nginx-deployment-1370807587-6ekbw   1/1       Running   0          1m
+nginx-deployment-1370807587-fg172   0/1       Pending   0          1m
+nginx-deployment-1370807587-fz9sd   0/1       Pending   0          1m
+```
+
+To find out why the nginx-deployment-1370807587-fz9sd pod is not running, we can use `kubectl describe pod` on the pending Pod and look at its events:
+
+```shell
+kubectl describe pod nginx-deployment-1370807587-fz9sd
+```
+
+```none
+  Name:		nginx-deployment-1370807587-fz9sd
+  Namespace:	default
+  Node:		/
+  Labels:		app=nginx,pod-template-hash=1370807587
+  Status:		Pending
+  IP:
+  Controllers:	ReplicaSet/nginx-deployment-1370807587
+  Containers:
+    nginx:
+      Image:	nginx
+      Port:	80/TCP
+      QoS Tier:
+        memory:	Guaranteed
+        cpu:	Guaranteed
+      Limits:
+        cpu:	1
+        memory:	128Mi
+      Requests:
+        cpu:	1
+        memory:	128Mi
+      Environment Variables:
+  Volumes:
+    default-token-4bcbi:
+      Type:	Secret (a volume populated by a Secret)
+      SecretName:	default-token-4bcbi
+  Events:
+    FirstSeen	LastSeen	Count	From			        SubobjectPath	Type		Reason			    Message
+    ---------	--------	-----	----			        -------------	--------	------			    -------
+    1m		    48s		    7	    {default-scheduler }			        Warning		FailedScheduling	pod (nginx-deployment-1370807587-fz9sd) failed to fit in any node
+  fit failure on node (kubernetes-node-6ta5): Node didn't have enough resource: CPU, requested: 1000, used: 1420, capacity: 2000
+  fit failure on node (kubernetes-node-wul5): Node didn't have enough resource: CPU, requested: 1000, used: 1100, capacity: 2000
+```
+
+Here you can see the event generated by the scheduler saying that the Pod failed to schedule for reason `FailedScheduling` (and possibly others).  The message tells us that there were not enough resources for the Pod on any of the nodes.
+
+To correct this situation, you can use `kubectl scale` to update your Deployment to specify four or fewer replicas. (Or you could leave the one Pod pending, which is harmless.)
+
+Events such as the ones you saw at the end of `kubectl describe pod` are persisted in etcd and provide high-level information on what is happening in the cluster. To list all events you can use
+
+```shell
+kubectl get events
+```
+
+but you have to remember that events are namespaced. This means that if you're interested in events for some namespaced object (e.g. what happened with Pods in namespace `my-namespace`) you need to explicitly provide a namespace to the command:
+
+```shell
+kubectl get events --namespace=my-namespace
+```
+
+To see events from all namespaces, you can use the `--all-namespaces` argument.
+
+In addition to `kubectl describe pod`, another way to get extra information about a pod (beyond what is provided by `kubectl get pod`) is to pass the `-o yaml` output format flag to `kubectl get pod`. This will give you, in YAML format, even more information than `kubectl describe pod`--essentially all of the information the system has about the Pod. Here you will see things like annotations (which are key-value metadata without the label restrictions, that is used internally by Kubernetes system components), restart policy, ports, and volumes.
+
+```shell
+kubectl get pod nginx-deployment-1006230814-6winp -o yaml
+```
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  creationTimestamp: "2022-02-17T21:51:01Z"
+  generateName: nginx-deployment-67d4bdd6f5-
+  labels:
+    app: nginx
+    pod-template-hash: 67d4bdd6f5
+  name: nginx-deployment-67d4bdd6f5-w6kd7
+  namespace: default
+  ownerReferences:
+  - apiVersion: apps/v1
+    blockOwnerDeletion: true
+    controller: true
+    kind: ReplicaSet
+    name: nginx-deployment-67d4bdd6f5
+    uid: 7d41dfd4-84c0-4be4-88ab-cedbe626ad82
+  resourceVersion: "1364"
+  uid: a6501da1-0447-4262-98eb-c03d4002222e
+spec:
+  containers:
+  - image: nginx
+    imagePullPolicy: Always
+    name: nginx
+    ports:
+    - containerPort: 80
+      protocol: TCP
+    resources:
+      limits:
+        cpu: 500m
+        memory: 128Mi
+      requests:
+        cpu: 500m
+        memory: 128Mi
+    terminationMessagePath: /dev/termination-log
+    terminationMessagePolicy: File
+    volumeMounts:
+    - mountPath: /var/run/secrets/kubernetes.io/serviceaccount
+      name: kube-api-access-bgsgp
+      readOnly: true
+  dnsPolicy: ClusterFirst
+  enableServiceLinks: true
+  nodeName: kube-worker-1
+  preemptionPolicy: PreemptLowerPriority
+  priority: 0
+  restartPolicy: Always
+  schedulerName: default-scheduler
+  securityContext: {}
+  serviceAccount: default
+  serviceAccountName: default
+  terminationGracePeriodSeconds: 30
+  tolerations:
+  - effect: NoExecute
+    key: node.kubernetes.io/not-ready
+    operator: Exists
+    tolerationSeconds: 300
+  - effect: NoExecute
+    key: node.kubernetes.io/unreachable
+    operator: Exists
+    tolerationSeconds: 300
+  volumes:
+  - name: kube-api-access-bgsgp
+    projected:
+      defaultMode: 420
+      sources:
+      - serviceAccountToken:
+          expirationSeconds: 3607
+          path: token
+      - configMap:
+          items:
+          - key: ca.crt
+            path: ca.crt
+          name: kube-root-ca.crt
+      - downwardAPI:
+          items:
+          - fieldRef:
+              apiVersion: v1
+              fieldPath: metadata.namespace
+            path: namespace
+status:
+  conditions:
+  - lastProbeTime: null
+    lastTransitionTime: "2022-02-17T21:51:01Z"
+    status: "True"
+    type: Initialized
+  - lastProbeTime: null
+    lastTransitionTime: "2022-02-17T21:51:06Z"
+    status: "True"
+    type: Ready
+  - lastProbeTime: null
+    lastTransitionTime: "2022-02-17T21:51:06Z"
+    status: "True"
+    type: ContainersReady
+  - lastProbeTime: null
+    lastTransitionTime: "2022-02-17T21:51:01Z"
+    status: "True"
+    type: PodScheduled
+  containerStatuses:
+  - containerID: containerd://5403af59a2b46ee5a23fb0ae4b1e077f7ca5c5fb7af16e1ab21c00e0e616462a
+    image: docker.io/library/nginx:latest
+    imageID: docker.io/library/nginx@sha256:2834dc507516af02784808c5f48b7cbe38b8ed5d0f4837f16e78d00deb7e7767
+    lastState: {}
+    name: nginx
+    ready: true
+    restartCount: 0
+    started: true
+    state:
+      running:
+        startedAt: "2022-02-17T21:51:05Z"
+  hostIP: 192.168.0.113
+  phase: Running
+  podIP: 10.88.0.3
+  podIPs:
+  - ip: 10.88.0.3
+  - ip: 2001:db8::1
+  qosClass: Guaranteed
+  startTime: "2022-02-17T21:51:01Z"
+```
+
+## Examining pod logs {#examine-pod-logs}
+
+First, look at the logs of the affected container:
+
+```shell
+kubectl logs ${POD_NAME} ${CONTAINER_NAME}
+```
+
+If your container has previously crashed, you can access the previous container's crash log with:
+
+```shell
+kubectl logs --previous ${POD_NAME} ${CONTAINER_NAME}
+```
+
+## Debugging with container exec {#container-exec}
+
+If the {{< glossary_tooltip text="container image" term_id="image" >}} includes
+debugging utilities, as is the case with images built from Linux and Windows OS
+base images, you can run commands inside a specific container with
+`kubectl exec`:
+
+```shell
+kubectl exec ${POD_NAME} -c ${CONTAINER_NAME} -- ${CMD} ${ARG1} ${ARG2} ... ${ARGN}
+```
+
+{{< note >}}
+`-c ${CONTAINER_NAME}` is optional. You can omit it for Pods that only contain a single container.
+{{< /note >}}
+
+As an example, to look at the logs from a running Cassandra pod, you might run
+
+```shell
+kubectl exec cassandra -- cat /var/log/cassandra/system.log
+```
+
+You can run a shell that's connected to your terminal using the `-i` and `-t`
+arguments to `kubectl exec`, for example:
+
+```shell
+kubectl exec -it cassandra -- sh
+```
+
+For more details, see [Get a Shell to a Running Container](
+/docs/tasks/debug/debug-application/get-shell-running-container/).
+
+## Debugging with an ephemeral debug container {#ephemeral-container}
+
+{{< feature-state state="beta" for_k8s_version="v1.23" >}}
+
+{{< glossary_tooltip text="Ephemeral containers" term_id="ephemeral-container" >}}
+are useful for interactive troubleshooting when `kubectl exec` is insufficient
+because a container has crashed or a container image doesn't include debugging
+utilities, such as with [distroless images](
+https://github.com/GoogleContainerTools/distroless).
+
+### Example debugging using ephemeral containers {#ephemeral-container-example}
+
+You can use the `kubectl debug` command to add ephemeral containers to a
+running Pod. First, create a pod for the example:
+
+```shell
+kubectl run ephemeral-demo --image=k8s.gcr.io/pause:3.1 --restart=Never
+```
+
+The examples in this section use the `pause` container image because it does not
+contain debugging utilities, but this method works with all container
+images.
+
+If you attempt to use `kubectl exec` to create a shell you will see an error
+because there is no shell in this container image.
+
+```shell
+kubectl exec -it ephemeral-demo -- sh
+```
+
+```
+OCI runtime exec failed: exec failed: container_linux.go:346: starting container process caused "exec: \"sh\": executable file not found in $PATH": unknown
+```
+
+You can instead add a debugging container using `kubectl debug`. If you
+specify the `-i`/`--interactive` argument, `kubectl` will automatically attach
+to the console of the Ephemeral Container.
+
+```shell
+kubectl debug -it ephemeral-demo --image=busybox:1.28 --target=ephemeral-demo
+```
+
+```
+Defaulting debug container name to debugger-8xzrl.
+If you don't see a command prompt, try pressing enter.
+/ #
+```
+
+This command adds a new busybox container and attaches to it. The `--target`
+parameter targets the process namespace of another container. It's necessary
+here because `kubectl run` does not enable [process namespace sharing](
+/docs/tasks/configure-pod-container/share-process-namespace/) in the pod it
+creates.
+
+{{< note >}}
+The `--target` parameter must be supported by the {{< glossary_tooltip
+text="Container Runtime" term_id="container-runtime" >}}. When not supported,
+the Ephemeral Container may not be started, or it may be started with an
+isolated process namespace so that `ps` does not reveal processes in other
+containers.
+{{< /note >}}
+
+You can view the state of the newly created ephemeral container using `kubectl describe`:
+
+```shell
+kubectl describe pod ephemeral-demo
+```
+
+```
+...
+Ephemeral Containers:
+  debugger-8xzrl:
+    Container ID:   docker://b888f9adfd15bd5739fefaa39e1df4dd3c617b9902082b1cfdc29c4028ffb2eb
+    Image:          busybox
+    Image ID:       docker-pullable://busybox@sha256:1828edd60c5efd34b2bf5dd3282ec0cc04d47b2ff9caa0b6d4f07a21d1c08084
+    Port:           <none>
+    Host Port:      <none>
+    State:          Running
+      Started:      Wed, 12 Feb 2020 14:25:42 +0100
+    Ready:          False
+    Restart Count:  0
+    Environment:    <none>
+    Mounts:         <none>
+...
+```
+
+Use `kubectl delete` to remove the Pod when you're finished:
+
+```shell
+kubectl delete pod ephemeral-demo
+```
+
+## Debugging using a copy of the Pod
+
+Sometimes Pod configuration options make it difficult to troubleshoot in certain
+situations. For example, you can't run `kubectl exec` to troubleshoot your
+container if your container image does not include a shell or if your application
+crashes on startup. In these situations you can use `kubectl debug` to create a
+copy of the Pod with configuration values changed to aid debugging.
+
+### Copying a Pod while adding a new container
+
+Adding a new container can be useful when your application is running but not
+behaving as you expect and you'd like to add additional troubleshooting
+utilities to the Pod.
+
+For example, maybe your application's container images are built on `busybox`
+but you need debugging utilities not included in `busybox`. You can simulate
+this scenario using `kubectl run`:
+
+```shell
+kubectl run myapp --image=busybox:1.28 --restart=Never -- sleep 1d
+```
+
+Run this command to create a copy of `myapp` named `myapp-debug` that adds a
+new Ubuntu container for debugging:
+
+```shell
+kubectl debug myapp -it --image=ubuntu --share-processes --copy-to=myapp-debug
+```
+
+```
+Defaulting debug container name to debugger-w7xmf.
+If you don't see a command prompt, try pressing enter.
+root@myapp-debug:/#
+```
+
+{{< note >}}
+* `kubectl debug` automatically generates a container name if you don't choose
+  one using the `--container` flag.
+* The `-i` flag causes `kubectl debug` to attach to the new container by
+  default.  You can prevent this by specifying `--attach=false`. If your session
+  becomes disconnected you can reattach using `kubectl attach`.
+* The `--share-processes` allows the containers in this Pod to see processes
+  from the other containers in the Pod. For more information about how this
+  works, see [Share Process Namespace between Containers in a Pod](
+  /docs/tasks/configure-pod-container/share-process-namespace/).
+{{< /note >}}
+
+Don't forget to clean up the debugging Pod when you're finished with it:
+
+```shell
+kubectl delete pod myapp myapp-debug
+```
+
+### Copying a Pod while changing its command
+
+Sometimes it's useful to change the command for a container, for example to
+add a debugging flag or because the application is crashing.
+
+To simulate a crashing application, use `kubectl run` to create a container
+that immediately exits:
+
+```
+kubectl run --image=busybox:1.28 myapp -- false
+```
+
+You can see using `kubectl describe pod myapp` that this container is crashing:
+
+```
+Containers:
+  myapp:
+    Image:         busybox
+    ...
+    Args:
+      false
+    State:          Waiting
+      Reason:       CrashLoopBackOff
+    Last State:     Terminated
+      Reason:       Error
+      Exit Code:    1
+```
+
+You can use `kubectl debug` to create a copy of this Pod with the command
+changed to an interactive shell:
+
+```
+kubectl debug myapp -it --copy-to=myapp-debug --container=myapp -- sh
+```
+
+```
+If you don't see a command prompt, try pressing enter.
+/ #
+```
+
+Now you have an interactive shell that you can use to perform tasks like
+checking filesystem paths or running the container command manually.
+
+{{< note >}}
+* To change the command of a specific container you must
+  specify its name using `--container` or `kubectl debug` will instead
+  create a new container to run the command you specified.
+* The `-i` flag causes `kubectl debug` to attach to the container by default.
+  You can prevent this by specifying `--attach=false`. If your session becomes
+  disconnected you can reattach using `kubectl attach`.
+{{< /note >}}
+
+Don't forget to clean up the debugging Pod when you're finished with it:
+
+```shell
+kubectl delete pod myapp myapp-debug
+```
+
+### Copying a Pod while changing container images
+
+In some situations you may want to change a misbehaving Pod from its normal
+production container images to an image containing a debugging build or
+additional utilities.
+
+As an example, create a Pod using `kubectl run`:
+
+```
+kubectl run myapp --image=busybox:1.28 --restart=Never -- sleep 1d
+```
+
+Now use `kubectl debug` to make a copy and change its container image
+to `ubuntu`:
+
+```
+kubectl debug myapp --copy-to=myapp-debug --set-image=*=ubuntu
+```
+
+The syntax of `--set-image` uses the same `container_name=image` syntax as
+`kubectl set image`. `*=ubuntu` means change the image of all containers
+to `ubuntu`.
+
+Don't forget to clean up the debugging Pod when you're finished with it:
+
+```shell
+kubectl delete pod myapp myapp-debug
+```
+
+## Debugging via a shell on the node {#node-shell-session}
+
+If none of these approaches work, you can find the Node on which the Pod is
+running and create a privileged Pod running in the host namespaces. To create
+an interactive shell on a node using `kubectl debug`, run:
+
+```shell
+kubectl debug node/mynode -it --image=ubuntu
+```
+
+```
+Creating debugging pod node-debugger-mynode-pdx84 with container debugger on node mynode.
+If you don't see a command prompt, try pressing enter.
+root@ek8s:/#
+```
+
+When creating a debugging session on a node, keep in mind that:
+
+* `kubectl debug` automatically generates the name of the new Pod based on
+  the name of the Node.
+* The container runs in the host IPC, Network, and PID namespaces.
+* The root filesystem of the Node will be mounted at `/host`.
+
+Don't forget to clean up the debugging Pod when you're finished with it:
+
+```shell
+kubectl delete pod node-debugger-mynode-pdx84
+```
diff --git a/content/en/docs/tasks/debug-application-cluster/debug-service.md b/content/en/docs/tasks/debug/debug-application/debug-service.md
similarity index 98%
rename from content/en/docs/tasks/debug-application-cluster/debug-service.md
rename to content/en/docs/tasks/debug/debug-application/debug-service.md
index 3b3b1c6081..3c20effc99 100644
--- a/content/en/docs/tasks/debug-application-cluster/debug-service.md
+++ b/content/en/docs/tasks/debug/debug-application/debug-service.md
@@ -2,8 +2,9 @@
 reviewers:
 - thockin
 - bowei
-content_type: concept
+content_type: task
 title: Debug Services
+weight: 20
 ---
 
 <!-- overview -->
@@ -213,6 +214,13 @@ In order to highlight the full range of configuration, the Service you created
 here uses a different port number than the Pods.  For many real-world
 Services, these values might be the same.
 
+## Any Network Policy Ingress rules affecting the target Pods?
+
+If you have deployed any Network Policy Ingress rules which may affect incoming
+traffic to `hostnames-*` Pods, these need to be reviewed.
+
+Please refer to [Network Policies](/docs/concepts/services-networking/network-policies/) for more details.
+
 ## Does the Service work by DNS name?
 
 One of the most common ways that clients consume a Service is through a DNS
@@ -434,7 +442,7 @@ they are running fine and not crashing.
 
 The "RESTARTS" column says that these pods are not crashing frequently or being
 restarted.  Frequent restarts could lead to intermittent connectivity issues.
-If the restart count is high, read more about how to [debug pods](/docs/tasks/debug-application-cluster/debug-pod-replication-controller/#debugging-pods).
+If the restart count is high, read more about how to [debug pods](/docs/tasks/debug/debug-application/debug-pods).
 
 Inside the Kubernetes system is a control loop which evaluates the selector of
 every Service and saves the results into a corresponding Endpoints object.
@@ -720,13 +728,13 @@ Service is not working.  Please let us know what is going on, so we can help
 investigate!
 
 Contact us on
-[Slack](/docs/tasks/debug-application-cluster/troubleshooting/#slack) or
+[Slack](https://slack.k8s.io/) or
 [Forum](https://discuss.kubernetes.io) or
 [GitHub](https://github.com/kubernetes/kubernetes).
 
 ## {{% heading "whatsnext" %}}
 
-Visit [troubleshooting document](/docs/tasks/debug-application-cluster/troubleshooting/)
+Visit the [troubleshooting overview document](/docs/tasks/debug/)
 for more information.
 
 
diff --git a/content/en/docs/tasks/debug-application-cluster/debug-stateful-set.md b/content/en/docs/tasks/debug/debug-application/debug-statefulset.md
similarity index 80%
rename from content/en/docs/tasks/debug-application-cluster/debug-stateful-set.md
rename to content/en/docs/tasks/debug/debug-application/debug-statefulset.md
index bd7ce6e951..428b8d0ee5 100644
--- a/content/en/docs/tasks/debug-application-cluster/debug-stateful-set.md
+++ b/content/en/docs/tasks/debug/debug-application/debug-statefulset.md
@@ -9,6 +9,7 @@ reviewers:
 - smarterclayton
 title: Debug a StatefulSet
 content_type: task
+weight: 30
 ---
 
 <!-- overview -->
@@ -23,20 +24,20 @@ This task shows you how to debug a StatefulSet.
 
 ## Debugging a StatefulSet
 
-In order to list all the pods which belong to a StatefulSet, which have a label `app=myapp` set on them,
+In order to list all the pods which belong to a StatefulSet, which have a label `app.kubernetes.io/name=MyApp` set on them,
 you can use the following:
 
 ```shell
-kubectl get pods -l app=myapp
+kubectl get pods -l app.kubernetes.io/name=MyApp
 ```
 
 If you find that any Pods listed are in `Unknown` or `Terminating` state for an extended period of time,
 refer to the [Deleting StatefulSet Pods](/docs/tasks/run-application/delete-stateful-set/) task for
 instructions on how to deal with them.
 You can debug individual Pods in a StatefulSet using the
-[Debugging Pods](/docs/tasks/debug-application-cluster/debug-pod-replication-controller/) guide.
+[Debugging Pods](/docs/tasks/debug/debug-application/debug-pods/) guide.
 
 ## {{% heading "whatsnext" %}}
 
-Learn more about [debugging an init-container](/docs/tasks/debug-application-cluster/debug-init-containers/).
+Learn more about [debugging an init-container](/docs/tasks/debug/debug-application/debug-init-containers/).
 
diff --git a/content/en/docs/tasks/debug-application-cluster/determine-reason-pod-failure.md b/content/en/docs/tasks/debug/debug-application/determine-reason-pod-failure.md
similarity index 84%
rename from content/en/docs/tasks/debug-application-cluster/determine-reason-pod-failure.md
rename to content/en/docs/tasks/debug/debug-application/determine-reason-pod-failure.md
index f1ddd96389..975e0591d5 100644
--- a/content/en/docs/tasks/debug-application-cluster/determine-reason-pod-failure.md
+++ b/content/en/docs/tasks/debug/debug-application/determine-reason-pod-failure.md
@@ -75,6 +75,12 @@ only the termination message:
 
         kubectl get pod termination-demo -o go-template="{{range .status.containerStatuses}}{{.lastState.terminated.message}}{{end}}"
 
+If you are running a multi-container pod, you can use a Go template to include the container's name. By doing so, you can discover which of the containers is failing:
+
+```shell
+kubectl get pod multi-container-pod -o go-template='{{range .status.containerStatuses}}{{printf "%s:\n%s\n\n" .name .lastState.terminated.message}}{{end}}'
+```
+
 ## Customizing the termination message
 
 Kubernetes retrieves termination messages from the termination message file
@@ -84,8 +90,12 @@ to use a different file. Kubernetes use the contents from the specified file to
 populate the Container's status message on both success and failure.
 
 The termination message is intended to be brief final status, such as an assertion failure message.
-The kubelet truncates messages that are longer than 4096 bytes. The total message length across all
-containers will be limited to 12KiB. The default termination message path is `/dev/termination-log`.
+The kubelet truncates messages that are longer than 4096 bytes.
+
+The total message length across all containers is limited to 12KiB, divided equally among each container.
+For example, if there are 12 containers (`initContainers` or `containers`), each has 1024 bytes of available termination message space.
+
+The default termination message path is `/dev/termination-log`.
 You cannot set the termination message path after a Pod is launched
 
 In the following example, the container writes termination messages to
diff --git a/content/en/docs/tasks/debug-application-cluster/get-shell-running-container.md b/content/en/docs/tasks/debug/debug-application/get-shell-running-container.md
similarity index 100%
rename from content/en/docs/tasks/debug-application-cluster/get-shell-running-container.md
rename to content/en/docs/tasks/debug/debug-application/get-shell-running-container.md
diff --git a/content/en/docs/tasks/debug/debug-cluster/_index.md b/content/en/docs/tasks/debug/debug-cluster/_index.md
new file mode 100644
index 0000000000..29fb9a06ae
--- /dev/null
+++ b/content/en/docs/tasks/debug/debug-cluster/_index.md
@@ -0,0 +1,329 @@
+---
+reviewers:
+- davidopp
+title: "Troubleshooting Clusters"
+description: Debugging common cluster issues.
+weight: 20
+no_list: true
+---
+
+<!-- overview -->
+
+This doc is about cluster troubleshooting; we assume you have already ruled out your application as the root cause of the
+problem you are experiencing. See
+the [application troubleshooting guide](/docs/tasks/debug/debug-application/) for tips on application debugging.
+You may also visit the [troubleshooting overview document](/docs/tasks/debug/) for more information.
+
+<!-- body -->
+
+## Listing your cluster
+
+The first thing to debug in your cluster is if your nodes are all registered correctly.
+
+Run the following command:
+
+```shell
+kubectl get nodes
+```
+
+And verify that all of the nodes you expect to see are present and that they are all in the `Ready` state.
+
+To get detailed information about the overall health of your cluster, you can run:
+
+```shell
+kubectl cluster-info dump
+```
+
+### Example: debugging a down/unreachable node
+
+Sometimes when debugging it can be useful to look at the status of a node -- for example, because
+you've noticed strange behavior of a Pod that's running on the node, or to find out why a Pod
+won't schedule onto the node. As with Pods, you can use `kubectl describe node` and `kubectl get
+node -o yaml` to retrieve detailed information about nodes. For example, here's what you'll see if
+a node is down (disconnected from the network, or kubelet dies and won't restart, etc.). Notice
+the events that show the node is NotReady, and also notice that the pods are no longer running
+(they are evicted after five minutes of NotReady status).
+
+```shell
+kubectl get nodes
+```
+
+```none
+NAME                     STATUS       ROLES     AGE     VERSION
+kube-worker-1            NotReady     <none>    1h      v1.23.3
+kubernetes-node-bols     Ready        <none>    1h      v1.23.3
+kubernetes-node-st6x     Ready        <none>    1h      v1.23.3
+kubernetes-node-unaj     Ready        <none>    1h      v1.23.3
+```
+
+```shell
+kubectl describe node kube-worker-1
+```
+
+```none
+Name:               kube-worker-1
+Roles:              <none>
+Labels:             beta.kubernetes.io/arch=amd64
+                    beta.kubernetes.io/os=linux
+                    kubernetes.io/arch=amd64
+                    kubernetes.io/hostname=kube-worker-1
+                    kubernetes.io/os=linux
+Annotations:        kubeadm.alpha.kubernetes.io/cri-socket: /run/containerd/containerd.sock
+                    node.alpha.kubernetes.io/ttl: 0
+                    volumes.kubernetes.io/controller-managed-attach-detach: true
+CreationTimestamp:  Thu, 17 Feb 2022 16:46:30 -0500
+Taints:             node.kubernetes.io/unreachable:NoExecute
+                    node.kubernetes.io/unreachable:NoSchedule
+Unschedulable:      false
+Lease:
+  HolderIdentity:  kube-worker-1
+  AcquireTime:     <unset>
+  RenewTime:       Thu, 17 Feb 2022 17:13:09 -0500
+Conditions:
+  Type                 Status    LastHeartbeatTime                 LastTransitionTime                Reason              Message
+  ----                 ------    -----------------                 ------------------                ------              -------
+  NetworkUnavailable   False     Thu, 17 Feb 2022 17:09:13 -0500   Thu, 17 Feb 2022 17:09:13 -0500   WeaveIsUp           Weave pod has set this
+  MemoryPressure       Unknown   Thu, 17 Feb 2022 17:12:40 -0500   Thu, 17 Feb 2022 17:13:52 -0500   NodeStatusUnknown   Kubelet stopped posting node status.
+  DiskPressure         Unknown   Thu, 17 Feb 2022 17:12:40 -0500   Thu, 17 Feb 2022 17:13:52 -0500   NodeStatusUnknown   Kubelet stopped posting node status.
+  PIDPressure          Unknown   Thu, 17 Feb 2022 17:12:40 -0500   Thu, 17 Feb 2022 17:13:52 -0500   NodeStatusUnknown   Kubelet stopped posting node status.
+  Ready                Unknown   Thu, 17 Feb 2022 17:12:40 -0500   Thu, 17 Feb 2022 17:13:52 -0500   NodeStatusUnknown   Kubelet stopped posting node status.
+Addresses:
+  InternalIP:  192.168.0.113
+  Hostname:    kube-worker-1
+Capacity:
+  cpu:                2
+  ephemeral-storage:  15372232Ki
+  hugepages-2Mi:      0
+  memory:             2025188Ki
+  pods:               110
+Allocatable:
+  cpu:                2
+  ephemeral-storage:  14167048988
+  hugepages-2Mi:      0
+  memory:             1922788Ki
+  pods:               110
+System Info:
+  Machine ID:                 9384e2927f544209b5d7b67474bbf92b
+  System UUID:                aa829ca9-73d7-064d-9019-df07404ad448
+  Boot ID:                    5a295a03-aaca-4340-af20-1327fa5dab5c
+  Kernel Version:             5.13.0-28-generic
+  OS Image:                   Ubuntu 21.10
+  Operating System:           linux
+  Architecture:               amd64
+  Container Runtime Version:  containerd://1.5.9
+  Kubelet Version:            v1.23.3
+  Kube-Proxy Version:         v1.23.3
+Non-terminated Pods:          (4 in total)
+  Namespace                   Name                                 CPU Requests  CPU Limits  Memory Requests  Memory Limits  Age
+  ---------                   ----                                 ------------  ----------  ---------------  -------------  ---
+  default                     nginx-deployment-67d4bdd6f5-cx2nz    500m (25%)    500m (25%)  128Mi (6%)       128Mi (6%)     23m
+  default                     nginx-deployment-67d4bdd6f5-w6kd7    500m (25%)    500m (25%)  128Mi (6%)       128Mi (6%)     23m
+  kube-system                 kube-proxy-dnxbz                     0 (0%)        0 (0%)      0 (0%)           0 (0%)         28m
+  kube-system                 weave-net-gjxxp                      100m (5%)     0 (0%)      200Mi (10%)      0 (0%)         28m
+Allocated resources:
+  (Total limits may be over 100 percent, i.e., overcommitted.)
+  Resource           Requests     Limits
+  --------           --------     ------
+  cpu                1100m (55%)  1 (50%)
+  memory             456Mi (24%)  256Mi (13%)
+  ephemeral-storage  0 (0%)       0 (0%)
+  hugepages-2Mi      0 (0%)       0 (0%)
+Events:
+...
+```
+
+```shell
+kubectl get node kube-worker-1 -o yaml
+```
+
+```yaml
+apiVersion: v1
+kind: Node
+metadata:
+  annotations:
+    kubeadm.alpha.kubernetes.io/cri-socket: /run/containerd/containerd.sock
+    node.alpha.kubernetes.io/ttl: "0"
+    volumes.kubernetes.io/controller-managed-attach-detach: "true"
+  creationTimestamp: "2022-02-17T21:46:30Z"
+  labels:
+    beta.kubernetes.io/arch: amd64
+    beta.kubernetes.io/os: linux
+    kubernetes.io/arch: amd64
+    kubernetes.io/hostname: kube-worker-1
+    kubernetes.io/os: linux
+  name: kube-worker-1
+  resourceVersion: "4026"
+  uid: 98efe7cb-2978-4a0b-842a-1a7bf12c05f8
+spec: {}
+status:
+  addresses:
+  - address: 192.168.0.113
+    type: InternalIP
+  - address: kube-worker-1
+    type: Hostname
+  allocatable:
+    cpu: "2"
+    ephemeral-storage: "14167048988"
+    hugepages-2Mi: "0"
+    memory: 1922788Ki
+    pods: "110"
+  capacity:
+    cpu: "2"
+    ephemeral-storage: 15372232Ki
+    hugepages-2Mi: "0"
+    memory: 2025188Ki
+    pods: "110"
+  conditions:
+  - lastHeartbeatTime: "2022-02-17T22:20:32Z"
+    lastTransitionTime: "2022-02-17T22:20:32Z"
+    message: Weave pod has set this
+    reason: WeaveIsUp
+    status: "False"
+    type: NetworkUnavailable
+  - lastHeartbeatTime: "2022-02-17T22:20:15Z"
+    lastTransitionTime: "2022-02-17T22:13:25Z"
+    message: kubelet has sufficient memory available
+    reason: KubeletHasSufficientMemory
+    status: "False"
+    type: MemoryPressure
+  - lastHeartbeatTime: "2022-02-17T22:20:15Z"
+    lastTransitionTime: "2022-02-17T22:13:25Z"
+    message: kubelet has no disk pressure
+    reason: KubeletHasNoDiskPressure
+    status: "False"
+    type: DiskPressure
+  - lastHeartbeatTime: "2022-02-17T22:20:15Z"
+    lastTransitionTime: "2022-02-17T22:13:25Z"
+    message: kubelet has sufficient PID available
+    reason: KubeletHasSufficientPID
+    status: "False"
+    type: PIDPressure
+  - lastHeartbeatTime: "2022-02-17T22:20:15Z"
+    lastTransitionTime: "2022-02-17T22:15:15Z"
+    message: kubelet is posting ready status. AppArmor enabled
+    reason: KubeletReady
+    status: "True"
+    type: Ready
+  daemonEndpoints:
+    kubeletEndpoint:
+      Port: 10250
+  nodeInfo:
+    architecture: amd64
+    bootID: 22333234-7a6b-44d4-9ce1-67e31dc7e369
+    containerRuntimeVersion: containerd://1.5.9
+    kernelVersion: 5.13.0-28-generic
+    kubeProxyVersion: v1.23.3
+    kubeletVersion: v1.23.3
+    machineID: 9384e2927f544209b5d7b67474bbf92b
+    operatingSystem: linux
+    osImage: Ubuntu 21.10
+    systemUUID: aa829ca9-73d7-064d-9019-df07404ad448
+```
+
+
+## Looking at logs
+
+For now, digging deeper into the cluster requires logging into the relevant machines.  Here are the locations
+of the relevant log files.  On systemd-based systems, you may need to use `journalctl` instead of examining log files.
+
+### Control Plane nodes
+
+* `/var/log/kube-apiserver.log` - API Server, responsible for serving the API
+* `/var/log/kube-scheduler.log` - Scheduler, responsible for making scheduling decisions
+* `/var/log/kube-controller-manager.log` - a component that runs most Kubernetes built-in
+  {{<glossary_tooltip text="controllers" term_id="controller">}}, with the notable exception of scheduling
+  (the kube-scheduler handles scheduling).
+
+### Worker Nodes
+
+* `/var/log/kubelet.log` - logs from the kubelet, responsible for running containers on the node
+* `/var/log/kube-proxy.log` - logs from `kube-proxy`, which is responsible for directing traffic to Service endpoints
+
+## Cluster failure modes
+
+This is an incomplete list of things that could go wrong, and how to adjust your cluster setup to mitigate the problems.
+
+### Contributing causes
+
+- VM(s) shutdown
+- Network partition within cluster, or between cluster and users
+- Crashes in Kubernetes software
+- Data loss or unavailability of persistent storage (e.g. GCE PD or AWS EBS volume)
+- Operator error, for example misconfigured Kubernetes software or application software
+
+### Specific scenarios
+
+- API server VM shutdown or apiserver crashing
+  - Results
+    - unable to stop, update, or start new pods, services, replication controller
+    - existing pods and services should continue to work normally, unless they depend on the Kubernetes API
+- API server backing storage lost
+  - Results
+    - the kube-apiserver component fails to start successfully and become healthy
+    - kubelets will not be able to reach it but will continue to run the same pods and provide the same service proxying
+    - manual recovery or recreation of apiserver state necessary before apiserver is restarted
+- Supporting services (node controller, replication controller manager, scheduler, etc) VM shutdown or crashes
+  - currently those are colocated with the apiserver, and their unavailability has similar consequences as apiserver
+  - in future, these will be replicated as well and may not be co-located
+  - they do not have their own persistent state
+- Individual node (VM or physical machine) shuts down
+  - Results
+    - pods on that Node stop running
+- Network partition
+  - Results
+    - partition A thinks the nodes in partition B are down; partition B thinks the apiserver is down.
+      (Assuming the master VM ends up in partition A.)
+- Kubelet software fault
+  - Results
+    - crashing kubelet cannot start new pods on the node
+    - kubelet might delete the pods or not
+    - node marked unhealthy
+    - replication controllers start new pods elsewhere
+- Cluster operator error
+  - Results
+    - loss of pods, services, etc
+    - lost of apiserver backing store
+    - users unable to read API
+    - etc.
+
+### Mitigations
+
+- Action: Use IaaS provider's automatic VM restarting feature for IaaS VMs
+  - Mitigates: Apiserver VM shutdown or apiserver crashing
+  - Mitigates: Supporting services VM shutdown or crashes
+
+- Action: Use IaaS providers reliable storage (e.g. GCE PD or AWS EBS volume) for VMs with apiserver+etcd
+  - Mitigates: Apiserver backing storage lost
+
+- Action: Use [high-availability](/docs/setup/production-environment/tools/kubeadm/high-availability/) configuration
+  - Mitigates: Control plane node shutdown or control plane components (scheduler, API server, controller-manager) crashing
+    - Will tolerate one or more simultaneous node or component failures
+  - Mitigates: API server backing storage (i.e., etcd's data directory) lost
+    - Assumes HA (highly-available) etcd configuration
+
+- Action: Snapshot apiserver PDs/EBS-volumes periodically
+  - Mitigates: Apiserver backing storage lost
+  - Mitigates: Some cases of operator error
+  - Mitigates: Some cases of Kubernetes software fault
+
+- Action: use replication controller and services in front of pods
+  - Mitigates: Node shutdown
+  - Mitigates: Kubelet software fault
+
+- Action: applications (containers) designed to tolerate unexpected restarts
+  - Mitigates: Node shutdown
+  - Mitigates: Kubelet software fault
+
+
+## {{% heading "whatsnext" %}}
+
+* Learn about the metrics available in the
+  [Resource Metrics Pipeline](/docs/tasks/debug/debug-cluster/resource-metrics-pipeline/)
+* Discover additional tools for
+  [monitoring resource usage](/docs/tasks/debug/debug-cluster/resource-usage-monitoring/)
+* Use Node Problem Detector to
+  [monitor node health](/docs/tasks/debug/debug-cluster/monitor-node-health/)
+* Use `crictl` to [debug Kubernetes nodes](/docs/tasks/debug/debug-cluster/crictl/)
+* Get more information about [Kubernetes auditing](/docs/tasks/debug/debug-cluster/audit/)
+* Use `telepresence` to [develop and debug services locally](/docs/tasks/debug/debug-cluster/local-debugging/)
+
diff --git a/content/en/docs/tasks/debug-application-cluster/audit.md b/content/en/docs/tasks/debug/debug-cluster/audit.md
similarity index 98%
rename from content/en/docs/tasks/debug-application-cluster/audit.md
rename to content/en/docs/tasks/debug/debug-cluster/audit.md
index 6c4b433ca2..fe5b34f480 100644
--- a/content/en/docs/tasks/debug-application-cluster/audit.md
+++ b/content/en/docs/tasks/debug/debug-cluster/audit.md
@@ -147,7 +147,7 @@ If your cluster's control plane runs the kube-apiserver as a Pod, remember to mo
 to the location of the policy file and log file, so that audit records are persisted. For example:
 ```shell
     --audit-policy-file=/etc/kubernetes/audit-policy.yaml \
-    --audit-log-path=/var/log/audit.log
+    --audit-log-path=/var/log/kubernetes/audit/audit.log
 ```
 then mount the volumes:
 
@@ -157,7 +157,7 @@ volumeMounts:
   - mountPath: /etc/kubernetes/audit-policy.yaml
     name: audit
     readOnly: true
-  - mountPath: /var/log/audit.log
+  - mountPath: /var/log/kubernetes/audit/
     name: audit-log
     readOnly: false
 ```
@@ -165,6 +165,7 @@ and finally configure the `hostPath`:
 
 ```yaml
 ...
+volumes:
 - name: audit
   hostPath:
     path: /etc/kubernetes/audit-policy.yaml
@@ -172,9 +173,8 @@ and finally configure the `hostPath`:
 
 - name: audit-log
   hostPath:
-    path: /var/log/audit.log
-    type: FileOrCreate
-
+    path: /var/log/kubernetes/audit/
+    type: DirectoryOrCreate
 ```
 
 ### Webhook backend
diff --git a/content/en/docs/tasks/debug-application-cluster/crictl.md b/content/en/docs/tasks/debug/debug-cluster/crictl.md
similarity index 58%
rename from content/en/docs/tasks/debug-application-cluster/crictl.md
rename to content/en/docs/tasks/debug/debug-cluster/crictl.md
index 343e3b1cb0..0f911b182b 100644
--- a/content/en/docs/tasks/debug-application-cluster/crictl.md
+++ b/content/en/docs/tasks/debug/debug-cluster/crictl.md
@@ -5,6 +5,7 @@ reviewers:
 - mrunalp
 title: Debugging Kubernetes nodes with crictl
 content_type: task
+weight: 30
 ---
 
 
@@ -17,21 +18,16 @@ You can use it to inspect and debug container runtimes and applications on a
 Kubernetes node. `crictl` and its source are hosted in the
 [cri-tools](https://github.com/kubernetes-sigs/cri-tools) repository.
 
-
-
 ## {{% heading "prerequisites" %}}
 
-
 `crictl` requires a Linux operating system with a CRI runtime.
 
-
-
 <!-- steps -->
 
 ## Installing crictl
 
-You can download a compressed archive `crictl` from the cri-tools [release
-page](https://github.com/kubernetes-sigs/cri-tools/releases), for several
+You can download a compressed archive `crictl` from the cri-tools
+[release page](https://github.com/kubernetes-sigs/cri-tools/releases), for several
 different architectures. Download the version that corresponds to your version
 of Kubernetes. Extract it and move it to a location on your system path, such as
 `/usr/local/bin/`.
@@ -41,27 +37,37 @@ of Kubernetes. Extract it and move it to a location on your system path, such as
 The `crictl` command has several subcommands and runtime flags. Use
 `crictl help` or `crictl <subcommand> help` for more details.
 
-`crictl` connects to `unix:///var/run/dockershim.sock` by default. For other
-runtimes, you can set the endpoint in multiple different ways:
+You can set the endpoint for `crictl` by doing one of the following:
 
-- By setting flags `--runtime-endpoint` and `--image-endpoint`
-- By setting environment variables `CONTAINER_RUNTIME_ENDPOINT` and `IMAGE_SERVICE_ENDPOINT`
-- By setting the endpoint in the config file `--config=/etc/crictl.yaml`
+* Set the `--runtime-endpoint` and `--image-endpoint` flags.
+* Set the `CONTAINER_RUNTIME_ENDPOINT` and `IMAGE_SERVICE_ENDPOINT` environment
+  variables.
+* Set the endpoint in the configuration file `/etc/crictl.yaml`. To specify a
+  different file, use the `--config=PATH_TO_FILE` flag when you run `crictl`.
+
+{{<note>}}
+If you don't set an endpoint, `crictl` attempts to connect to a list of known
+endpoints, which might result in an impact to performance.
+{{</note>}}
 
 You can also specify timeout values when connecting to the server and enable or
 disable debugging, by specifying `timeout` or `debug` values in the configuration
 file or using the `--timeout` and `--debug` command-line flags.
 
-To view or edit the current configuration, view or edit the contents of `/etc/crictl.yaml`.
+To view or edit the current configuration, view or edit the contents of
+`/etc/crictl.yaml`. For example, the configuration when using the `containerd`
+container runtime would be similar to this:
 
-```shell
-cat /etc/crictl.yaml
-runtime-endpoint: unix:///var/run/dockershim.sock
-image-endpoint: unix:///var/run/dockershim.sock
+```
+runtime-endpoint: unix:///var/run/containerd/containerd.sock
+image-endpoint: unix:///var/run/containerd/containerd.sock
 timeout: 10
 debug: true
 ```
 
+To learn more about `crictl`, refer to the [`crictl`
+documentation](https://github.com/kubernetes-sigs/cri-tools/blob/master/docs/crictl.md).
+
 ## Example crictl commands
 
 The following examples show some `crictl` commands and example output.
@@ -79,6 +85,7 @@ List all pods:
 ```shell
 crictl pods
 ```
+
 The output is similar to this:
 
 ```
@@ -94,6 +101,7 @@ List pods by name:
 ```shell
 crictl pods --name nginx-65899c769f-wv2gp
 ```
+
 The output is similar to this:
 
 ```
@@ -106,6 +114,7 @@ List pods by label:
 ```shell
 crictl pods --label run=nginx
 ```
+
 The output is similar to this:
 
 ```
@@ -120,6 +129,7 @@ List all images:
 ```shell
 crictl images
 ```
+
 The output is similar to this:
 
 ```
@@ -135,6 +145,7 @@ List images by repository:
 ```shell
 crictl images nginx
 ```
+
 The output is similar to this:
 
 ```
@@ -147,6 +158,7 @@ Only list image IDs:
 ```shell
 crictl images -q
 ```
+
 The output is similar to this:
 
 ```
@@ -163,6 +175,7 @@ List all containers:
 ```shell
 crictl ps -a
 ```
+
 The output is similar to this:
 
 ```
@@ -175,9 +188,10 @@ CONTAINER ID        IMAGE
 
 List running containers:
 
-```
+```shell
 crictl ps
 ```
+
 The output is similar to this:
 
 ```
@@ -192,6 +206,7 @@ CONTAINER ID        IMAGE
 ```shell
 crictl exec -i -t 1f73f2d81bf98 ls
 ```
+
 The output is similar to this:
 
 ```
@@ -205,6 +220,7 @@ Get all container logs:
 ```shell
 crictl logs 87d3992f84f74
 ```
+
 The output is similar to this:
 
 ```
@@ -218,6 +234,7 @@ Get only the latest `N` lines of logs:
 ```shell
 crictl logs --tail=1 87d3992f84f74
 ```
+
 The output is similar to this:
 
 ```
@@ -230,29 +247,29 @@ Using `crictl` to run a pod sandbox is useful for debugging container runtimes.
 On a running Kubernetes cluster, the sandbox will eventually be stopped and
 deleted by the Kubelet.
 
-1.  Create a JSON file like the following:
+1. Create a JSON file like the following:
 
-      ```json
-      {
-          "metadata": {
-              "name": "nginx-sandbox",
-              "namespace": "default",
-              "attempt": 1,
-              "uid": "hdishd83djaidwnduwk28bcsb"
-          },
-          "logDirectory": "/tmp",
-          "linux": {
-          }
-      }
-      ```
+   ```json
+   {
+     "metadata": {
+       "name": "nginx-sandbox",
+       "namespace": "default",
+       "attempt": 1,
+       "uid": "hdishd83djaidwnduwk28bcsb"
+     },
+     "logDirectory": "/tmp",
+     "linux": {
+     }
+   }
+   ```
 
-2.  Use the `crictl runp` command to apply the JSON and run the sandbox.
+2. Use the `crictl runp` command to apply the JSON and run the sandbox.
 
-      ```shell
-      crictl runp pod-config.json
-      ```
+   ```shell
+   crictl runp pod-config.json
+   ```
 
-      The ID of the sandbox is returned.
+   The ID of the sandbox is returned.
 
 ### Create a container
 
@@ -260,68 +277,73 @@ Using `crictl` to create a container is useful for debugging container runtimes.
 On a running Kubernetes cluster, the sandbox will eventually be stopped and
 deleted by the Kubelet.
 
-1.  Pull a busybox image
+1. Pull a busybox image
 
-      ```shell
-      crictl pull busybox
-      Image is up to date for busybox@sha256:141c253bc4c3fd0a201d32dc1f493bcf3fff003b6df416dea4f41046e0f37d47
-      ```
+   ```shell
+   crictl pull busybox
+   ```
+   ```none
+   Image is up to date for busybox@sha256:141c253bc4c3fd0a201d32dc1f493bcf3fff003b6df416dea4f41046e0f37d47
+   ```
 
-2.  Create configs for the pod and the container:
+2. Create configs for the pod and the container:
 
-      **Pod config**:
-      ```yaml
-      {
-          "metadata": {
-              "name": "nginx-sandbox",
-              "namespace": "default",
-              "attempt": 1,
-              "uid": "hdishd83djaidwnduwk28bcsb"
-          },
-          "log_directory": "/tmp",
-          "linux": {
-          }
-      }
-      ```
+   **Pod config**:
 
-      **Container config**:
-      ```yaml
-      {
-        "metadata": {
-            "name": "busybox"
-        },
-        "image":{
-            "image": "busybox"
-        },
-        "command": [
-            "top"
-        ],
-        "log_path":"busybox.log",
-        "linux": {
-        }
-      }
-      ```
+   ```json
+   {
+     "metadata": {
+       "name": "nginx-sandbox",
+       "namespace": "default",
+       "attempt": 1,
+       "uid": "hdishd83djaidwnduwk28bcsb"
+     },
+     "log_directory": "/tmp",
+     "linux": {
+     }
+   }
+   ```
 
-3.  Create the container, passing the ID of the previously-created pod, the
-    container config file, and the pod config file. The ID of the container is
-    returned.
+   **Container config**:
 
-      ```shell
-      crictl create f84dd361f8dc51518ed291fbadd6db537b0496536c1d2d6c05ff943ce8c9a54f container-config.json pod-config.json
-      ```
+   ```json
+   {
+     "metadata": {
+       "name": "busybox"
+     },
+     "image":{
+       "image": "busybox"
+     },
+     "command": [
+       "top"
+     ],
+     "log_path":"busybox.log",
+     "linux": {
+     }
+   }
+   ```
 
-4.  List all containers and verify that the newly-created container has its
-    state set to `Created`.
+3. Create the container, passing the ID of the previously-created pod, the
+   container config file, and the pod config file. The ID of the container is
+   returned.
 
-      ```shell
-      crictl ps -a
-      ```
-      The output is similar to this:
+   ```shell
+   crictl create f84dd361f8dc51518ed291fbadd6db537b0496536c1d2d6c05ff943ce8c9a54f container-config.json pod-config.json
+   ```
+
+4. List all containers and verify that the newly-created container has its
+   state set to `Created`.
+
+   ```shell
+   crictl ps -a
+   ```
+
+   The output is similar to this:
       
-      ```
-      CONTAINER ID        IMAGE               CREATED             STATE               NAME                ATTEMPT
-      3e025dd50a72d       busybox             32 seconds ago      Created             busybox             0
-      ```
+   ```
+   CONTAINER ID        IMAGE               CREATED             STATE               NAME                ATTEMPT
+   3e025dd50a72d       busybox             32 seconds ago      Created             busybox             0
+   ```
 
 ### Start a container
 
@@ -330,6 +352,7 @@ To start a container, pass its ID to `crictl start`:
 ```shell
 crictl start 3e025dd50a72d956c4f14881fbb5b1080c9275674e95fb67f965f6478a957d60
 ```
+
 The output is similar to this:
 
 ```
@@ -344,68 +367,12 @@ crictl ps
 The output is similar to this:
 
 ```
-CONTAINER ID        IMAGE               CREATED              STATE               NAME                ATTEMPT
-3e025dd50a72d       busybox             About a minute ago   Running             busybox             0
+CONTAINER ID   IMAGE    CREATED              STATE    NAME     ATTEMPT
+3e025dd50a72d  busybox  About a minute ago   Running  busybox  0
 ```
 
+## {{% heading "whatsnext" %}}
 
+* [Learn more about `crictl`](https://github.com/kubernetes-sigs/cri-tools).
+* [Map `docker` CLI commands to `crictl`](/docs/reference/tools/map-crictl-dockercli/).
 
-
-<!-- discussion -->
-
-See [kubernetes-sigs/cri-tools](https://github.com/kubernetes-sigs/cri-tools)
-for more information.
-
-## Mapping from docker cli to crictl
-
-The exact versions for below mapping table are for docker cli v1.40 and crictl v1.19.0. Please note that the list is not exhaustive. For example, it doesn't include experimental commands of docker cli.
-
-{{< note >}}
-The output format of CRICTL is similar to Docker CLI, despite some missing columns for some CLI. Make sure to check output for the specific command if your script output parsing.
-{{< /note >}}
-
-### Retrieve Debugging Information
-
-{{< table caption="mapping from docker cli to crictl - retrieve debugging information" >}}
-docker cli | crictl | Description | Unsupported Features
--- | -- | -- | --
-`attach` | `attach` | Attach to a running container | `--detach-keys`, `--sig-proxy`
-`exec` | `exec` | Run a command in a running container | `--privileged`, `--user`, `--detach-keys`
-`images` | `images` | List images |  
-`info` | `info` | Display system-wide information |  
-`inspect` | `inspect`, `inspecti` | Return low-level information on a container, image or task |  
-`logs` | `logs` | Fetch the logs of a container | `--details`
-`ps` | `ps` | List containers |  
-`stats` | `stats` | Display a live stream of container(s) resource usage statistics | Column: NET/BLOCK I/O, PIDs
-`version` | `version` | Show the runtime (Docker, ContainerD, or others) version information |  
-{{< /table >}}
-
-### Perform Changes
-
-{{< table caption="mapping from docker cli to crictl - perform changes" >}}
-docker cli | crictl | Description | Unsupported Features
--- | -- | -- | --
-`create` | `create` | Create a new container |  
-`kill` | `stop` (timeout = 0) | Kill one or more running container | `--signal`
-`pull` | `pull` | Pull an image or a repository from a registry | `--all-tags`, `--disable-content-trust`
-`rm` | `rm` | Remove one or more containers |  
-`rmi` | `rmi` | Remove one or more images |  
-`run` | `run` | Run a command in a new container |  
-`start` | `start` | Start one or more stopped containers | `--detach-keys`
-`stop` | `stop` | Stop one or more running containers |  
-`update` | `update` | Update configuration of one or more containers | `--restart`, `--blkio-weight` and some other resource limit not supported by CRI.
-{{< /table >}}
-
-### Supported only in crictl
-
-{{< table caption="mapping from docker cli to crictl - supported only in crictl" >}}
-crictl | Description
--- | --
-`imagefsinfo` | Return image filesystem info
-`inspectp` | Display the status of one or more pods
-`port-forward` | Forward local port to a pod
-`pods` | List pods
-`runp` | Run a new pod
-`rmp` | Remove one or more pods
-`stopp` | Stop one or more running pods
-{{< /table >}}
\ No newline at end of file
diff --git a/content/en/docs/tasks/debug/debug-cluster/local-debugging.md b/content/en/docs/tasks/debug/debug-cluster/local-debugging.md
new file mode 100644
index 0000000000..1d97a4134d
--- /dev/null
+++ b/content/en/docs/tasks/debug/debug-cluster/local-debugging.md
@@ -0,0 +1,61 @@
+---
+title: Developing and debugging services locally using telepresence
+content_type: task
+---
+
+<!-- overview -->
+
+{{% thirdparty-content %}}
+
+Kubernetes applications usually consist of multiple, separate services, each running in its own container. Developing and debugging these services on a remote Kubernetes cluster can be cumbersome, requiring you to [get a shell on a running container](/docs/tasks/debug/debug-application/get-shell-running-container/) in order to run debugging tools.
+ 
+`telepresence` is a tool to ease the process of developing and debugging services locally while proxying the service to a remote Kubernetes cluster. Using `telepresence` allows you to use custom tools, such as a debugger and IDE, for a local service and provides the service full access to ConfigMap, secrets, and the services running on the remote cluster.
+ 
+This document describes using `telepresence` to develop and debug services running on a remote cluster locally.
+
+## {{% heading "prerequisites" %}}
+
+* Kubernetes cluster is installed
+* `kubectl` is configured to communicate with the cluster
+* [Telepresence](https://www.telepresence.io/docs/latest/install/) is installed
+
+
+<!-- steps -->
+
+## Connecting your local machine to a remote Kubernetes cluster
+ 
+After installing `telepresence`, run `telepresence connect` to launch its Daemon and connect your local workstation to the cluster.
+
+```
+$ telepresence connect
+ 
+Launching Telepresence Daemon
+...
+Connected to context default (https://<cluster public IP>)
+```
+
+You can curl services using the Kubernetes syntax e.g. `curl -ik https://kubernetes.default`
+ 
+## Developing or debugging an existing service
+
+When developing an application on Kubernetes, you typically program or debug a single service. The service might require access to other services for testing and debugging. One option is to use the continuous deployment pipeline, but even the fastest deployment pipeline introduces a delay in the program or debug cycle.
+ 
+Use the `telepresence intercept $SERVICE_NAME --port $LOCAL_PORT:REMOTE_PORT` command to create an "intercept" for rerouting remote service traffic.
+ 
+Where:
+
+-   `$SERVICE_NAME`  is the name of your local service
+-   `$LOCAL_PORT` is the port that your service is running on your local workstation
+-   And `$REMOTE_PORT` is the port your service listens to in the cluster
+
+Running this command tells Telepresence to send remote traffic to your local service instead of the service in the remote Kubernetes cluster. Make edits to your service source code locally, save, and see the corresponding changes when accessing your remote application take effect immediately. You can also run your local service using a debugger or any other local development tool.
+
+## How does Telepresence work?
+
+Telepresence installs a traffic-agent sidecar next to your existing application's container running in the remote cluster. It then captures all traffic requests going into the Pod, and instead of forwarding this to the application in the remote cluster, it routes all traffic (when you create a [global intercept](https://www.getambassador.io/docs/telepresence/latest/concepts/intercepts/#global-intercept)) or a subset of the traffic (when you create a [personal intercept](https://www.getambassador.io/docs/telepresence/latest/concepts/intercepts/#personal-intercept)) to your local development environment.
+
+## {{% heading "whatsnext" %}}
+ 
+If you're interested in a hands-on tutorial, check out [this tutorial](https://cloud.google.com/community/tutorials/developing-services-with-k8s) that walks through locally developing the Guestbook application on Google Kubernetes Engine.
+ 
+For further reading, visit the [Telepresence website](https://www.telepresence.io).
diff --git a/content/en/docs/tasks/debug-application-cluster/monitor-node-health.md b/content/en/docs/tasks/debug/debug-cluster/monitor-node-health.md
similarity index 99%
rename from content/en/docs/tasks/debug-application-cluster/monitor-node-health.md
rename to content/en/docs/tasks/debug/debug-cluster/monitor-node-health.md
index 1214a26975..34b4e0ed7d 100644
--- a/content/en/docs/tasks/debug-application-cluster/monitor-node-health.md
+++ b/content/en/docs/tasks/debug/debug-cluster/monitor-node-health.md
@@ -4,6 +4,7 @@ content_type: task
 reviewers:
 - Random-Liu
 - dchen1107
+weight: 20
 ---
 
 <!-- overview -->
diff --git a/content/en/docs/tasks/debug/debug-cluster/resource-metrics-pipeline.md b/content/en/docs/tasks/debug/debug-cluster/resource-metrics-pipeline.md
new file mode 100644
index 0000000000..2319a878be
--- /dev/null
+++ b/content/en/docs/tasks/debug/debug-cluster/resource-metrics-pipeline.md
@@ -0,0 +1,268 @@
+---
+reviewers:
+- fgrzadkowski
+- piosz
+title: Resource metrics pipeline
+content_type: concept
+weight: 15
+---
+
+<!-- overview -->
+
+For Kubernetes, the _Metrics API_ offers a basic set of metrics to support automatic scaling and
+similar use cases.  This API makes information available about resource usage for node and pod,
+including metrics for CPU and memory.  If you deploy the Metrics API into your cluster, clients of
+the Kubernetes API can then query for this information, and you can use Kubernetes' access control
+mechanisms to manage permissions to do so.
+
+The [HorizontalPodAutoscaler](/docs/tasks/run-application/horizontal-pod-autoscale/)  (HPA) and
+[VerticalPodAutoscaler](https://github.com/kubernetes/autoscaler/tree/master/vertical-pod-autoscaler#readme) (VPA)
+use data from the metrics API to adjust workload replicas and resources to meet customer demand.
+
+You can also view the resource metrics using the
+[`kubectl top`](/docs/reference/generated/kubectl/kubectl-commands#top)
+command.
+
+{{< note >}}
+The Metrics API, and the metrics pipeline that it enables, only offers the minimum
+CPU and memory metrics to enable automatic scaling using HPA and / or VPA.
+If you would like to provide a more complete set of metrics, you can complement
+the simpler Metrics API by deploying a second
+[metrics pipeline](/docs/tasks/debug/debug-cluster/resource-usage-monitoring/#full-metrics-pipeline)
+that uses the _Custom Metrics API_.
+{{< /note >}}
+
+
+Figure 1 illustrates the architecture of the resource metrics pipeline.
+
+{{< mermaid >}}
+flowchart RL
+subgraph cluster[Cluster]
+direction RL
+S[ <br><br> ]
+A[Metrics-<br>Server]
+subgraph B[Nodes]
+direction TB
+D[cAdvisor] --> C[kubelet]
+E[Container<br>runtime] --> D
+E1[Container<br>runtime] --> D
+P[pod data] -.- C
+end
+L[API<br>server]
+W[HPA]
+C ---->|Summary<br>API| A -->|metrics<br>API| L --> W
+end
+L ---> K[kubectl<br>top]
+classDef box fill:#fff,stroke:#000,stroke-width:1px,color:#000;
+class W,B,P,K,cluster,D,E,E1 box
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class S spacewhite
+classDef k8s fill:#326ce5,stroke:#fff,stroke-width:1px,color:#fff;
+class A,L,C k8s
+{{< /mermaid >}}
+
+Figure 1. Resource Metrics Pipeline
+
+The architecture components, from right to left in the figure, consist of the following:
+
+* [cAdvisor](https://github.com/google/cadvisor): Daemon for collecting, aggregating and exposing
+  container metrics included in Kubelet.
+* [kubelet](/docs/concepts/overview/components/#kubelet): Node agent for managing container
+  resources. Resource metrics are accessible using the `/metrics/resource` and `/stats` kubelet
+  API endpoints.
+* [Summary API](#summary-api-source): API provided by the kubelet for discovering and retrieving
+  per-node summarized stats available through the `/stats` endpoint.
+* [metrics-server](#metrics-server): Cluster addon component that collects and aggregates resource
+  metrics pulled from each kubelet. The API server serves Metrics API for use by HPA, VPA, and by
+  the `kubectl top` command. Metrics Server is a reference implementation of the Metrics API.
+* [Metrics API](#metrics-api): Kubernetes API supporting access to CPU and memory used for
+  workload autoscaling. To make this work in your cluster, you need an API extension server that
+  provides the Metrics API.
+
+  {{< note >}}
+  cAdvisor supports reading metrics from cgroups, which works with typical container runtimes on Linux.
+  If you use a container runtime that uses another resource isolation mechanism, for example
+  virtualization, then that container runtime must support
+  [CRI Container Metrics](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-node/cri-container-stats.md)
+  in order for metrics to be available to the kubelet.
+  {{< /note >}}
+
+<!-- body -->
+
+## Metrics API
+{{< feature-state for_k8s_version="1.8" state="beta" >}}
+
+The metrics-server implements the Metrics API. This API allows you to access CPU and memory usage
+for the nodes and pods in your cluster. Its primary role is to feed resource usage metrics to K8s
+autoscaler components.
+
+Here is an example of the Metrics API request for a `minikube` node piped through `jq` for easier
+reading:
+
+```shell
+kubectl get --raw "/apis/metrics.k8s.io/v1beta1/nodes/minikube" | jq '.'
+```
+
+Here is the same API call using `curl`:
+
+```shell
+curl http://localhost:8080/apis/metrics.k8s.io/v1beta1/nodes/minikube
+```
+
+Sample response:
+
+```json
+{
+  "kind": "NodeMetrics",
+  "apiVersion": "metrics.k8s.io/v1beta1",
+  "metadata": {
+    "name": "minikube",
+    "selfLink": "/apis/metrics.k8s.io/v1beta1/nodes/minikube",
+    "creationTimestamp": "2022-01-27T18:48:43Z"
+  },
+  "timestamp": "2022-01-27T18:48:33Z",
+  "window": "30s",
+  "usage": {
+    "cpu": "487558164n",
+    "memory": "732212Ki"
+  }
+}
+```
+
+Here is an example of the Metrics API request for a `kube-scheduler-minikube` pod contained in the
+`kube-system` namespace and piped through `jq` for easier reading:
+
+```shell
+kubectl get --raw "/apis/metrics.k8s.io/v1beta1/namespaces/kube-system/pods/kube-scheduler-minikube" | jq '.'
+```
+
+Here is the same API call using `curl`:
+
+```shell
+curl http://localhost:8080/apis/metrics.k8s.io/v1beta1/namespaces/kube-system/pods/kube-scheduler-minikube
+```
+
+Sample response:
+
+```json
+{
+  "kind": "PodMetrics",
+  "apiVersion": "metrics.k8s.io/v1beta1",
+  "metadata": {
+    "name": "kube-scheduler-minikube",
+    "namespace": "kube-system",
+    "selfLink": "/apis/metrics.k8s.io/v1beta1/namespaces/kube-system/pods/kube-scheduler-minikube",
+    "creationTimestamp": "2022-01-27T19:25:00Z"
+  },
+  "timestamp": "2022-01-27T19:24:31Z",
+  "window": "30s",
+  "containers": [
+    {
+      "name": "kube-scheduler",
+      "usage": {
+        "cpu": "9559630n",
+        "memory": "22244Ki"
+      }
+    }
+  ]
+}
+```
+
+The Metrics API is defined in the [k8s.io/metrics](https://github.com/kubernetes/metrics)
+repository. You must enable the [API aggregation layer](/docs/tasks/extend-kubernetes/configure-aggregation-layer/)
+and register an [APIService](/docs/reference/kubernetes-api/cluster-resources/api-service-v1/)
+for the `metrics.k8s.io` API.
+
+To learn more about the Metrics API, see [resource metrics API design](https://git.k8s.io/design-proposals-archive/instrumentation/resource-metrics-api.md),
+the [metrics-server repository](https://github.com/kubernetes-sigs/metrics-server) and the
+[resource metrics API](https://github.com/kubernetes/metrics#resource-metrics-api).
+
+
+{{< note >}}
+You must deploy the metrics-server or alternative adapter that serves the Metrics API to be able
+to access it.
+{{< /note >}}
+
+## Measuring resource usage
+
+### CPU
+
+CPU is reported as the average core usage measured in cpu units. One cpu, in Kubernetes, is
+equivalent to 1 vCPU/Core for cloud providers, and 1 hyper-thread on bare-metal Intel processors.
+
+This value is derived by taking a rate over a cumulative CPU counter provided by the kernel (in
+both Linux and Windows kernels). The time window used to calculate CPU is shown under window field
+in Metrics API.
+
+To learn more about how Kubernetes allocates and measures CPU resources, see
+[meaning of CPU](/docs/concepts/configuration/manage-resources-containers/#meaning-of-cpu).
+
+### Memory
+
+Memory is reported as the working set, measured in bytes, at the instant the metric was collected.
+
+In an ideal world, the "working set" is the amount of memory in-use that cannot be freed under
+memory pressure. However, calculation of the working set varies by host OS, and generally makes
+heavy use of heuristics to produce an estimate.
+
+The Kubernetes model for a container's working set expects that the container runtime counts
+anonymous memory associated with the container in question. The working set metric typically also
+includes some cached (file-backed) memory, because the host OS cannot always reclaim pages.
+
+To learn more about how Kubernetes allocates and measures memory resources, see
+[meaning of memory](/docs/concepts/configuration/manage-resources-containers/#meaning-of-memory).
+
+## Metrics Server
+
+The metrics-server fetches resource metrics from the kubelets and exposes them in the Kubernetes
+API server through the Metrics API for use by the HPA and VPA. You can also view these metrics
+using the `kubectl top` command.
+
+The metrics-server uses the Kubernetes API to track nodes and pods in your cluster. The
+metrics-server queries each node over HTTP to fetch metrics. The metrics-server also builds an
+internal view of pod metadata, and keeps a cache of pod health. That cached pod health information
+is available via the extension API that the metrics-server makes available.
+
+For example with an HPA query, the metrics-server needs to identify which pods fulfill the label
+selectors in the deployment.
+
+The metrics-server calls the [kubelet](/docs/reference/command-line-tools-reference/kubelet/) API
+to collect metrics from each node. Depending on the metrics-server version it uses:
+
+* Metrics resource endpoint `/metrics/resource` in version v0.6.0+ or
+* Summary API endpoint `/stats/summary` in older versions
+
+To learn more about the metrics-server, see the
+[metrics-server repository](https://github.com/kubernetes-sigs/metrics-server).
+
+You can also check out the following:
+
+* [metrics-server design](https://git.k8s.io/design-proposals-archive/instrumentation/metrics-server.md)
+* [metrics-server FAQ](https://github.com/kubernetes-sigs/metrics-server/blob/master/FAQ.md)
+* [metrics-server known issues](https://github.com/kubernetes-sigs/metrics-server/blob/master/KNOWN_ISSUES.md)
+* [metrics-server releases](https://github.com/kubernetes-sigs/metrics-server/releases)
+* [Horizontal Pod Autoscaling](/docs/tasks/run-application/horizontal-pod-autoscale/)
+
+### Summary API source
+
+The [kubelet](/docs/reference/command-line-tools-reference/kubelet/) gathers stats at the node,
+volume, pod and container level, and emits this information in
+the [Summary API](https://github.com/kubernetes/kubernetes/blob/7d309e0104fedb57280b261e5677d919cb2a0e2d/staging/src/k8s.io/kubelet/pkg/apis/stats/v1alpha1/types.go)
+for consumers to read.
+
+Here is an example of a Summary API request for a `minikube` node:
+
+```shell
+kubectl get --raw "/api/v1/nodes/minikube/proxy/stats/summary"
+```
+
+Here is the same API call using `curl`:
+
+```shell
+curl http://localhost:8080/api/v1/nodes/minikube/proxy/stats/summary
+```
+
+{{< note >}}
+The summary API `/stats/summary` endpoint will be replaced by the `/metrics/resource` endpoint
+beginning with metrics-server 0.6.x.
+{{< /note >}}
diff --git a/content/en/docs/tasks/debug-application-cluster/resource-usage-monitoring.md b/content/en/docs/tasks/debug/debug-cluster/resource-usage-monitoring.md
similarity index 73%
rename from content/en/docs/tasks/debug-application-cluster/resource-usage-monitoring.md
rename to content/en/docs/tasks/debug/debug-cluster/resource-usage-monitoring.md
index 957ee62192..3c270b8122 100644
--- a/content/en/docs/tasks/debug-application-cluster/resource-usage-monitoring.md
+++ b/content/en/docs/tasks/debug/debug-cluster/resource-usage-monitoring.md
@@ -3,6 +3,7 @@ reviewers:
 - mikedanese
 content_type: concept
 title: Tools for Monitoring Resources
+weight: 15
 ---
 
 <!-- overview -->
@@ -40,8 +41,11 @@ memory usage. The kubelet acts as a bridge between the Kubernetes master and
 the nodes, managing the pods and containers running on a machine. The kubelet 
 translates each pod into its constituent containers and fetches individual 
 container usage statistics from the container runtime through the container 
-runtime interface. The kubelet fetches this information from the integrated 
-cAdvisor for the legacy Docker integration.  It then exposes the aggregated pod 
+runtime interface. If you use a container runtime that uses Linux cgroups and
+namespaces to implement containers, and the container runtime does not publish
+usage statistics, then the kubelet can look up those statistics directly
+(using code from [cAdvisor](https://github.com/google/cadvisor)).
+No matter how those statistics arrive, the kubelet then exposes the aggregated pod
 resource usage statistics through the metrics-server Resource Metrics API.
 This API is served at `/metrics/resource/v1beta1` on the kubelet's authenticated and 
 read-only ports. 
@@ -58,4 +62,14 @@ then exposes them to Kubernetes via an adapter by implementing either the
 [Prometheus](https://prometheus.io), a CNCF project, can natively monitor Kubernetes, nodes, and Prometheus itself.
 Full metrics pipeline projects that are not part of the CNCF are outside the scope of Kubernetes documentation.  
 
+## {{% heading "whatsnext" %}}
 
+
+Learn about additional debugging tools, including:
+
+* [Logging](/docs/concepts/cluster-administration/logging/)
+* [Monitoring](/docs/tasks/debug/debug-cluster/resource-usage-monitoring/)
+* [Getting into containers via `exec`](/docs/tasks/debug/debug-application/get-shell-running-container/)
+* [Connecting to containers via proxies](/docs/tasks/extend-kubernetes/http-proxy-access-api/)
+* [Connecting to containers via port forwarding](/docs/tasks/access-application-cluster/port-forward-access-application-cluster/)
+* [Inspect Kubernetes node with crictl](/docs/tasks/debug/debug-cluster/crictl/)
diff --git a/content/en/docs/tasks/debug/debug-cluster/windows.md b/content/en/docs/tasks/debug/debug-cluster/windows.md
new file mode 100644
index 0000000000..a7315e4f03
--- /dev/null
+++ b/content/en/docs/tasks/debug/debug-cluster/windows.md
@@ -0,0 +1,176 @@
+---
+reviewers:
+- aravindhp
+- jayunit100
+- jsturtevant
+- marosset
+title: Windows debugging tips
+content_type: concept
+---
+
+<!-- overview -->
+
+<!-- body -->
+
+## Node-level troubleshooting {#troubleshooting-node}
+
+1. My Pods are stuck at "Container Creating" or restarting over and over
+
+   Ensure that your pause image is compatible with your Windows OS version.
+   See [Pause container](/docs/concepts/windows/intro/#pause-container)
+   to see the latest / recommended pause image and/or get more information.
+
+   {{< note >}}
+   If using containerd as your container runtime the pause image is specified in the
+   `plugins.plugins.cri.sandbox_image` field of the of config.toml configration file.
+   {{< /note >}}
+
+1. My pods show status as `ErrImgPull` or `ImagePullBackOff`
+
+   Ensure that your Pod is getting scheduled to a
+   [compatible](https://docs.microsoft.com/virtualization/windowscontainers/deploy-containers/version-compatibility)
+   Windows Node.
+
+   More information on how to specify a compatible node for your Pod can be found in
+   [this guide](/docs/concepts/windows/user-guide/#ensuring-os-specific-workloads-land-on-the-appropriate-container-host).
+
+## Network troubleshooting {#troubleshooting-network}
+
+1. My Windows Pods do not have network connectivity
+
+   If you are using virtual machines, ensure that MAC spoofing is **enabled** on all
+   the VM network adapter(s).
+
+1. My Windows Pods cannot ping external resources
+
+   Windows Pods do not have outbound rules programmed for the ICMP protocol. However,
+   TCP/UDP is supported. When trying to demonstrate connectivity to resources
+   outside of the cluster, substitute `ping <IP>` with corresponding
+   `curl <IP>` commands.
+
+   If you are still facing problems, most likely your network configuration in
+   [cni.conf](https://github.com/Microsoft/SDN/blob/master/Kubernetes/flannel/l2bridge/cni/config/cni.conf)
+   deserves some extra attention. You can always edit this static file. The
+   configuration update will apply to any new Kubernetes resources.
+
+   One of the Kubernetes networking requirements
+   (see [Kubernetes model](/docs/concepts/cluster-administration/networking/)) is
+   for cluster communication to occur without
+   NAT internally. To honor this requirement, there is an
+   [ExceptionList](https://github.com/Microsoft/SDN/blob/master/Kubernetes/flannel/l2bridge/cni/config/cni.conf#L20)
+   for all the communication where you do not want outbound NAT to occur. However,
+   this also means that you need to exclude the external IP you are trying to query
+   from the `ExceptionList`. Only then will the traffic originating from your Windows
+   pods be SNAT'ed correctly to receive a response from the outside world. In this
+   regard, your `ExceptionList` in `cni.conf` should look as follows:
+
+   ```conf
+   "ExceptionList": [
+                   "10.244.0.0/16",  # Cluster subnet
+                   "10.96.0.0/12",   # Service subnet
+                   "10.127.130.0/24" # Management (host) subnet
+               ]
+   ```
+
+1. My Windows node cannot access `NodePort` type Services
+
+   Local NodePort access from the node itself fails. This is a known
+   limitation. NodePort access works from other nodes or external clients.
+
+1. vNICs and HNS endpoints of containers are being deleted
+
+   This issue can be caused when the `hostname-override` parameter is not passed to
+   [kube-proxy](/docs/reference/command-line-tools-reference/kube-proxy/). To resolve
+   it, users need to pass the hostname to kube-proxy as follows:
+
+   ```powershell
+   C:\k\kube-proxy.exe --hostname-override=$(hostname)
+   ```
+
+1. My Windows node cannot access my services using the service IP
+
+   This is a known limitation of the networking stack on Windows. However, Windows Pods can access the Service IP.
+
+1. No network adapter is found when starting the kubelet
+
+   The Windows networking stack needs a virtual adapter for Kubernetes networking to work.
+   If the following commands return no results (in an admin shell),
+   virtual network creation — a necessary prerequisite for the kubelet to work — has failed:
+
+   ```powershell
+   Get-HnsNetwork | ? Name -ieq "cbr0"
+   Get-NetAdapter | ? Name -Like "vEthernet (Ethernet*"
+   ```
+
+   Often it is worthwhile to modify the [InterfaceName](https://github.com/microsoft/SDN/blob/master/Kubernetes/flannel/start.ps1#L7)
+   parameter of the `start.ps1` script, in cases where the host's network adapter isn't "Ethernet".
+   Otherwise, consult the output of the `start-kubelet.ps1` script to see if there are errors during virtual network creation.
+
+1. DNS resolution is not properly working
+
+   Check the DNS limitations for Windows in this [section](/docs/concepts/services-networking/dns-pod-service/#dns-windows).
+
+1. `kubectl port-forward` fails with "unable to do port forwarding: wincat not found"
+
+   This was implemented in Kubernetes 1.15 by including `wincat.exe` in the pause infrastructure container
+   `mcr.microsoft.com/oss/kubernetes/pause:3.6`.
+   Be sure to use a supported version of Kubernetes.
+   If you would like to build your own pause infrastructure container be sure to include
+   [wincat](https://github.com/kubernetes/kubernetes/tree/master/build/pause/windows/wincat).
+
+1. My Kubernetes installation is failing because my Windows Server node is behind a proxy
+
+   If you are behind a proxy, the following PowerShell environment variables must be defined:
+
+   ```PowerShell
+   [Environment]::SetEnvironmentVariable("HTTP_PROXY", "http://proxy.example.com:80/", [EnvironmentVariableTarget]::Machine)
+   [Environment]::SetEnvironmentVariable("HTTPS_PROXY", "http://proxy.example.com:443/", [EnvironmentVariableTarget]::Machine)
+   ```
+
+### Flannel troubleshooting
+
+1. With Flannel, my nodes are having issues after rejoining a cluster
+
+   Whenever a previously deleted node is being re-joined to the cluster, flannelD
+   tries to assign a new pod subnet to the node. Users should remove the old pod
+   subnet configuration files in the following paths:
+
+   ```powershell
+   Remove-Item C:\k\SourceVip.json
+   Remove-Item C:\k\SourceVipRequest.json
+   ```
+
+1. Flanneld is stuck in "Waiting for the Network to be created"
+
+   There are numerous reports of this [issue](https://github.com/coreos/flannel/issues/1066);
+   most likely it is a timing issue for when the management IP of the flannel network is set.
+   A workaround is to relaunch `start.ps1` or relaunch it manually as follows:
+
+   ```powershell
+   [Environment]::SetEnvironmentVariable("NODE_NAME", "<Windows_Worker_Hostname>")
+   C:\flannel\flanneld.exe --kubeconfig-file=c:\k\config --iface=<Windows_Worker_Node_IP> --ip-masq=1 --kube-subnet-mgr=1
+   ```
+
+1. My Windows Pods cannot launch because of missing `/run/flannel/subnet.env`
+
+   This indicates that Flannel didn't launch correctly. You can either try
+   to restart `flanneld.exe` or you can copy the files over manually from
+   `/run/flannel/subnet.env` on the Kubernetes master to `C:\run\flannel\subnet.env`
+   on the Windows worker node and modify the `FLANNEL_SUBNET` row to a different
+   number. For example, if node subnet 10.244.4.1/24 is desired:
+
+   ```env
+   FLANNEL_NETWORK=10.244.0.0/16
+   FLANNEL_SUBNET=10.244.4.1/24
+   FLANNEL_MTU=1500
+   FLANNEL_IPMASQ=true
+   ```
+
+### Further investigation
+
+If these steps don't resolve your problem, you can get help running Windows containers on Windows nodes in Kubernetes through:
+
+* StackOverflow [Windows Server Container](https://stackoverflow.com/questions/tagged/windows-server-container) topic
+* Kubernetes Official Forum [discuss.kubernetes.io](https://discuss.kubernetes.io/)
+* Kubernetes Slack [#SIG-Windows Channel](https://kubernetes.slack.com/messages/sig-windows)
+
diff --git a/content/en/docs/tasks/extend-kubernetes/configure-multiple-schedulers.md b/content/en/docs/tasks/extend-kubernetes/configure-multiple-schedulers.md
index d44e6897b0..51271bdeab 100644
--- a/content/en/docs/tasks/extend-kubernetes/configure-multiple-schedulers.md
+++ b/content/en/docs/tasks/extend-kubernetes/configure-multiple-schedulers.md
@@ -71,15 +71,26 @@ config. Save it as `my-scheduler.yaml`:
 
 {{< codenew file="admin/sched/my-scheduler.yaml" >}}
 
-An important thing to note here is that the name of the scheduler specified as an
-argument to the scheduler command in the container spec should be unique. This is the name that is matched against the value of the optional `spec.schedulerName` on pods, to determine whether this scheduler is responsible for scheduling a particular pod.
+In the above manifest, you use a [KubeSchedulerConfiguration](/docs/reference/scheduling/config/)
+to customize the behavior of your scheduler implementation. This configuration has been passed to
+the `kube-scheduler` during initialization with the `--config` option. The `my-scheduler-config` ConfigMap stores the configuration file. The Pod of the`my-scheduler` Deployment mounts the `my-scheduler-config` ConfigMap as a volume.
 
-Note also that we created a dedicated service account `my-scheduler` and bind the cluster role
+In the aforementioned Scheduler Configuration, your scheduler implementation is represented via
+a [KubeSchedulerProfile](/docs/reference/config-api/kube-scheduler-config.v1beta3/#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerProfile).
+{{< note >}}
+To determine if a scheduler is responsible for scheduling a specific Pod, the `spec.schedulerName` field in a 
+PodTemplate or Pod manifest must match the `schedulerName` field of the `KubeSchedulerProfile`.
+All schedulers running in the cluster must have unique names.
+{{< /note >}}
+
+Also, note that you create a dedicated service account `my-scheduler` and bind the ClusterRole
 `system:kube-scheduler` to it so that it can acquire the same privileges as `kube-scheduler`.
 
 Please see the
 [kube-scheduler documentation](/docs/reference/command-line-tools-reference/kube-scheduler/) for
-detailed description of other command line arguments.
+detailed description of other command line arguments and
+[Scheduler Configuration reference](/docs/reference/config-api/kube-scheduler-config.v1beta3/) for
+detailed description of other customizable `kube-scheduler` configurations.
 
 ## Run the second scheduler in the cluster
 
@@ -110,11 +121,11 @@ pod in this list.
 
 To run multiple-scheduler with leader election enabled, you must do the following:
 
-First, update the following fields in your YAML file:
+Update the following fields for the KubeSchedulerConfiguration in the `my-scheduler-config` ConfigMap in your YAML file:
 
-* `--leader-elect=true`
-* `--lock-object-namespace=<lock-object-namespace>`
-* `--lock-object-name=<lock-object-name>`
+* `leaderElection.leaderElect` to `true`
+* `leaderElection.resourceNamespace` to `<lock-object-namespace>`
+* `leaderElection.resourceName` to `<lock-object-name>`
 
 {{< note >}}
 The control plane creates the lock objects for you, but the namespace must already exist.
@@ -168,8 +179,8 @@ scheduler in that pod spec. Let's look at three examples.
   {{< codenew file="admin/sched/pod3.yaml" >}}
 
   In this case, we specify that this pod should be scheduled using the scheduler that we
-  deployed - `my-scheduler`. Note that the value of `spec.schedulerName` should match the name supplied to the scheduler
-  command as an argument in the deployment config for the scheduler.
+  deployed - `my-scheduler`. Note that the value of `spec.schedulerName` should match the name supplied for the scheduler
+  in the `schedulerName` field of the mapping `KubeSchedulerProfile`.
 
   Save this file as `pod3.yaml` and submit it to the Kubernetes cluster.
 
diff --git a/content/en/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definition-versioning.md b/content/en/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definition-versioning.md
index 45f589e9d7..31a5fc1677 100644
--- a/content/en/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definition-versioning.md
+++ b/content/en/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definition-versioning.md
@@ -353,6 +353,34 @@ spec:
 {{< /tabs >}}
 
 
+### Version removal
+
+An older API version cannot be dropped from a CustomResourceDefinition manifest until existing persisted data has been migrated to the newer API version for all clusters that served the older version of the custom resource, and the old version is removed from the `status.storedVersions` of the CustomResourceDefinition.
+
+```yaml
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+  name: crontabs.example.com
+spec:
+  group: example.com
+  names:
+    plural: crontabs
+    singular: crontab
+    kind: CronTab
+  scope: Namespaced
+  versions:
+  - name: v1beta1
+    # This indicates the v1beta1 version of the custom resource is no longer served.
+    # API requests to this version receive a not found error in the server response.
+    served: false
+    schema: ...
+  - name: v1
+    served: true
+    # The new served version should be set as the storage version
+    storage: true
+    schema: ...
+```
+
 ## Webhook conversion
 
 {{< feature-state state="stable" for_k8s_version="v1.16" >}}
@@ -444,7 +472,7 @@ spec:
     served: true
     # One and only one version must be marked as the storage version.
     storage: true
-    # Each version can define it's own schema when there is no top-level
+    # Each version can define its own schema when there is no top-level
     # schema is defined.
     schema:
       openAPIV3Schema:
@@ -512,7 +540,7 @@ spec:
     served: true
     # One and only one version must be marked as the storage version.
     storage: true
-    # Each version can define it's own schema when there is no top-level
+    # Each version can define its own schema when there is no top-level
     # schema is defined.
     schema:
       openAPIV3Schema:
@@ -1038,8 +1066,8 @@ procedure.
 
 *Option 1:* Use the Storage Version Migrator
 
-1. Run the [storage Version migrator](https://github.com/kubernetes-sigs/kube-storage-version-migrator)
-2. Remove the old version from the CustomResourceDefinition `status.storedVersions` field.
+1.  Run the [storage Version migrator](https://github.com/kubernetes-sigs/kube-storage-version-migrator)
+2.  Remove the old version from the CustomResourceDefinition `status.storedVersions` field.
 
 *Option 2:* Manually upgrade the existing objects to a new stored version
 
@@ -1050,6 +1078,16 @@ The following is an example procedure to upgrade from `v1beta1` to `v1`.
 2.  Write an upgrade procedure to list all existing objects and write them with
     the same content. This forces the backend to write objects in the current
     storage version, which is `v1`.
-2. Remove `v1beta1` from the CustomResourceDefinition `status.storedVersions` field.
+3.  Remove `v1beta1` from the CustomResourceDefinition `status.storedVersions` field.
 
+{{< note >}}
+The `kubectl` tool currently cannot be used to edit or patch the `status` subresource on a CRD: see the [Kubectl Subresource Support KEP](https://github.com/kubernetes/enhancements/tree/master/keps/sig-cli/2590-kubectl-subresource) for more details.
 
+The easier way to patch the status subresource from the CLI is directly interacting with the API server using the `curl` tool, in this example:
+```bash
+kubectl proxy &
+curl --header "Content-Type: application/json-patch+json" \
+  --request PATCH http://localhost:8001/apis/apiextensions.k8s.io/v1/customresourcedefinitions/<your CRD name here>/status \
+  --data '[{"op": "replace", "path": "/status/storedVersions", "value":["v1"]}]'
+```
+{{< /note >}}
diff --git a/content/en/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions.md b/content/en/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions.md
index cd2d0fb103..812c723a51 100644
--- a/content/en/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions.md
+++ b/content/en/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions.md
@@ -28,11 +28,12 @@ the documentation for that version to see advice that is relevant for your clust
 ## Create a CustomResourceDefinition
 
 When you create a new CustomResourceDefinition (CRD), the Kubernetes API Server
-creates a new RESTful resource path for each version you specify. The CRD can be
-either namespaced or cluster-scoped, as specified in the CRD's `scope` field. As
-with existing built-in objects, deleting a namespace deletes all custom objects
-in that namespace. CustomResourceDefinitions themselves are non-namespaced and
-are available to all namespaces.
+creates a new RESTful resource path for each version you specify. The custom
+resource created from a CRD object can be either namespaced or cluster-scoped,
+as specified in the CRD's `spec.scope` field. As with existing built-in
+objects, deleting a namespace deletes all custom objects in that namespace.
+CustomResourceDefinitions themselves are non-namespaced and are available to
+all namespaces.
 
 For example, if you save the following CustomResourceDefinition to `resourcedefinition.yaml`:
 
@@ -187,7 +188,8 @@ kubectl get crontabs
 ```
 
 ```none
-Error from server (NotFound): Unable to list {"stable.example.com" "v1" "crontabs"}: the server could not find the requested resource (get crontabs.stable.example.com)
+Error from server (NotFound): Unable to list {"stable.example.com" "v1" "crontabs"}: the server could not
+find the requested resource (get crontabs.stable.example.com)
 ```
 
 If you later recreate the same CustomResourceDefinition, it will start out empty.
@@ -206,22 +208,28 @@ CustomResourceDefinition, the structural schema was optional.
 
 A structural schema is an [OpenAPI v3.0 validation schema](#validation) which:
 
-1. specifies a non-empty type (via `type` in OpenAPI) for the root, for each specified field of an object node (via `properties` or `additionalProperties` in OpenAPI) and for each item in an array node (via `items` in OpenAPI), with the exception of:
+1. specifies a non-empty type (via `type` in OpenAPI) for the root, for each specified field of an object node
+   (via `properties` or `additionalProperties` in OpenAPI) and for each item in an array node
+   (via `items` in OpenAPI), with the exception of:
    * a node with `x-kubernetes-int-or-string: true`
    * a node with `x-kubernetes-preserve-unknown-fields: true`
-2. for each field in an object and each item in an array which is specified within any of `allOf`, `anyOf`, `oneOf` or `not`, the schema also specifies the field/item outside of those logical junctors (compare example 1 and 2).
-3. does not set `description`, `type`, `default`, `additionalProperties`, `nullable` within an `allOf`, `anyOf`, `oneOf` or `not`, with the exception of the two pattern for `x-kubernetes-int-or-string: true` (see below).
+2. for each field in an object and each item in an array which is specified within any of `allOf`, `anyOf`,
+   `oneOf` or `not`, the schema also specifies the field/item outside of those logical junctors (compare example 1 and 2).
+3. does not set `description`, `type`, `default`, `additionalProperties`, `nullable` within an `allOf`, `anyOf`,
+   `oneOf` or `not`, with the exception of the two pattern for `x-kubernetes-int-or-string: true` (see below).
 4. if `metadata` is specified, then only restrictions on `metadata.name` and `metadata.generateName` are allowed.
 
-
 Non-structural example 1:
+
 ```yaml
 allOf:
 - properties:
     foo:
       ...
 ```
+
 conflicts with rule 2. The following would be correct:
+
 ```yaml
 properties:
   foo:
@@ -313,10 +321,13 @@ Violations of the structural schema rules are reported in the `NonStructural` co
 
 ### Field pruning
 
-CustomResourceDefinitions store validated resource data in the cluster's persistence store, {{< glossary_tooltip term_id="etcd" text="etcd">}}. As with native Kubernetes resources such as {{< glossary_tooltip text="ConfigMap" term_id="configmap" >}}, if you specify a field that the API server does not recognize, the unknown field  is _pruned_ (removed) before being persisted.
+CustomResourceDefinitions store validated resource data in the cluster's persistence store, {{< glossary_tooltip term_id="etcd" text="etcd">}}.
+As with native Kubernetes resources such as {{< glossary_tooltip text="ConfigMap" term_id="configmap" >}},
+if you specify a field that the API server does not recognize, the unknown field  is _pruned_ (removed) before being persisted.
 
 {{< note >}}
-CRDs converted from `apiextensions.k8s.io/v1beta1` to `apiextensions.k8s.io/v1` might lack structural schemas, and `spec.preserveUnknownFields` might be `true`.
+CRDs converted from `apiextensions.k8s.io/v1beta1` to `apiextensions.k8s.io/v1` might lack structural schemas,
+and `spec.preserveUnknownFields` might be `true`.
 
 For legacy CustomResourceDefinition objects created as
 `apiextensions.k8s.io/v1beta1` with `spec.preserveUnknownFields` set to
@@ -351,9 +362,9 @@ and create it:
 kubectl create --validate=false -f my-crontab.yaml -o yaml
 ```
 
-your output is similar to:
+Your output is similar to:
 
-```console
+```yaml
 apiVersion: stable.example.com/v1
 kind: CronTab
 metadata:
@@ -376,7 +387,10 @@ to clients, `kubectl` also checks for unknown fields and rejects those objects w
 
 #### Controlling pruning
 
-By default, all unspecified fields for a custom resource, across all versions, are pruned. It is possible though to opt-out of that for specifc sub-trees of fields by adding `x-kubernetes-preserve-unknown-fields: true` in the [structural OpenAPI v3 validation schema](#specifying-a-structural-schema).
+By default, all unspecified fields for a custom resource, across all versions, are pruned. It is possible though to
+opt-out of that for specifc sub-trees of fields by adding `x-kubernetes-preserve-unknown-fields: true` in the
+[structural OpenAPI v3 validation schema](#specifying-a-structural-schema).
+
 For example:
 
 ```yaml
@@ -455,7 +469,8 @@ properties:
     x-kubernetes-int-or-string: true
 ```
 
-Also those nodes are partially excluded from rule 3 in the sense that the following two patterns are allowed (exactly those, without variations in order to additional fields):
+Also those nodes are partially excluded from rule 3 in the sense that the following two patterns are allowed
+(exactly those, without variations in order to additional fields):
 
 ```yaml
 x-kubernetes-int-or-string: true
@@ -488,7 +503,8 @@ RawExtensions (as in `runtime.RawExtension` defined in
 [k8s.io/apimachinery](https://github.com/kubernetes/apimachinery/blob/03ac7a9ade429d715a1a46ceaa3724c18ebae54f/pkg/runtime/types.go#L94))
 holds complete Kubernetes objects, i.e. with `apiVersion` and `kind` fields.
 
-It is possible to specify those embedded objects (both completely without constraints or partially specified) by setting `x-kubernetes-embedded-resource: true`. For example:
+It is possible to specify those embedded objects (both completely without constraints or partially specified)
+by setting `x-kubernetes-embedded-resource: true`. For example:
 
 ```yaml
 type: object
@@ -508,7 +524,8 @@ foo:
     ...
 ```
 
-Because `x-kubernetes-preserve-unknown-fields: true` is specified alongside, nothing is pruned. The use of `x-kubernetes-preserve-unknown-fields: true` is optional though.
+Because `x-kubernetes-preserve-unknown-fields: true` is specified alongside, nothing is pruned.
+The use of `x-kubernetes-preserve-unknown-fields: true` is optional though.
 
 With `x-kubernetes-embedded-resource: true`, the `apiVersion`, `kind` and `metadata` are implicitly specified and validated.
 
@@ -556,8 +573,9 @@ deleted by Kubernetes.
 ### Validation
 
 Custom resources are validated via
-[OpenAPI v3 schemas](https://github.com/OAI/OpenAPI-Specification/blob/master/versions/3.0.0.md#schemaObject)
-and you can add additional validation using
+[OpenAPI v3 schemas](https://github.com/OAI/OpenAPI-Specification/blob/master/versions/3.0.0.md#schemaObject),
+by x-kubernetes-validations when the [Validation Rules feature](#validation-rules) is enabled, and you
+can add additional validation using
 [admission webhooks](/docs/reference/access-authn-authz/admission-controllers/#validatingadmissionwebhook).
 
 Additionally, the following restrictions are applied to the schema:
@@ -577,6 +595,11 @@ Additionally, the following restrictions are applied to the schema:
 - The field `additionalProperties` cannot be set to `false`.
 - The field `additionalProperties` is mutually exclusive with `properties`.
 
+The `x-kubernetes-validations` extension can be used to validate custom resources using [Common
+Expression Language (CEL)](https://github.com/google/cel-spec) expressions when the [Validation
+rules](#validation-rules) feature is enabled and the CustomResourceDefinition schema is a
+[structural schema](#specifying-a-structural-schema).
+
 The `default` field can be set when the [Defaulting feature](#defaulting) is enabled,
 which is the case with `apiextensions.k8s.io/v1` CustomResourceDefinitions.
 Defaulting is in GA since 1.17 (beta since 1.16 with the `CustomResourceDefaulting`
@@ -693,6 +716,486 @@ kubectl apply -f my-crontab.yaml
 crontab "my-new-cron-object" created
 ```
 
+## Validation rules
+
+{{< feature-state state="alpha" for_k8s_version="v1.23" >}}
+
+Validation rules are in alpha since 1.23 and validate custom resources when the
+`CustomResourceValidationExpressions` [feature
+gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled.
+This feature is only available if the schema is a
+[structural schema](#specifying-a-structural-schema).
+
+Validation rules use the [Common Expression Language (CEL)](https://github.com/google/cel-spec)
+to validate custom resource values. Validation rules are included in
+CustomResourceDefinition schemas using the `x-kubernetes-validations` extension.
+
+The Rule is scoped to the location of the `x-kubernetes-validations` extension in the schema.
+And `self` variable in the CEL expression is bound to the scoped value.
+
+All validation rules are scoped to the current object: no cross-object or stateful validation rules are supported.
+
+For example:
+
+```yaml
+    ...
+    openAPIV3Schema:
+      type: object
+      properties:
+        spec:
+          type: object
+          x-kubernetes-validations:
+            - rule: "self.minReplicas <= self.replicas"
+              message: "replicas should be greater than or equal to minReplicas."
+            - rule: "self.replicas <= self.maxReplicas"
+              message: "replicas should be smaller than or equal to maxReplicas."
+          properties:
+            ...
+            minReplicas:
+              type: integer
+            replicas:
+              type: integer
+            maxReplicas:
+              type: integer
+          required:
+            - minReplicas
+            - replicas
+            - maxReplicas 
+```
+
+will reject a request to create this custom resource:
+
+```yaml
+apiVersion: "stable.example.com/v1"
+kind: CronTab
+metadata:
+  name: my-new-cron-object
+spec:
+  minReplicas: 0
+  replicas: 20
+  maxReplicas: 10
+```
+
+with the response:
+
+```
+The CronTab "my-new-cron-object" is invalid:
+* spec: Invalid value: map[string]interface {}{"maxReplicas":10, "minReplicas":0, "replicas":20}: replicas should be smaller than or equal to maxReplicas.
+```
+
+`x-kubernetes-validations` could have multiple rules. 
+
+The `rule` under `x-kubernetes-validations` represents the expression which will be evaluated by CEL.
+
+The `message` represents the message displayed when validation fails. If message is unset, the above response would be:
+
+```
+The CronTab "my-new-cron-object" is invalid:
+* spec: Invalid value: map[string]interface {}{"maxReplicas":10, "minReplicas":0, "replicas":20}: failed rule: self.replicas <= self.maxReplicas
+```
+
+Validation rules are compiled when CRDs are created/updated. 
+The request of CRDs create/update will fail if compilation of validation rules fail. 
+Compilation process includes type checking as well.
+
+The compilation failure:
+
+- `no_matching_overload`: this function has no overload for the types of the arguments.
+ 
+  e.g. Rule like `self == true` against a field of integer type will get error:
+
+  ```
+  Invalid value: apiextensions.ValidationRule{Rule:"self == true", Message:""}: compilation failed: ERROR: \<input>:1:6: found no matching overload for '_==_' applied to '(int, bool)'
+  ```
+  
+- `no_such_field`: does not contain the desired field.
+  
+  e.g. Rule like `self.nonExistingField > 0` against a non-existing field will return the error:
+
+  ```
+  Invalid value: apiextensions.ValidationRule{Rule:"self.nonExistingField > 0", Message:""}: compilation failed: ERROR: \<input>:1:5: undefined field 'nonExistingField'
+  ```
+
+- `invalid argument`: invalid argument to macros.
+ 
+  e.g. Rule like `has(self)` will return error:
+
+  ```
+  Invalid value: apiextensions.ValidationRule{Rule:"has(self)", Message:""}: compilation failed: ERROR: <input>:1:4: invalid argument to has() macro
+  ```
+
+Validation Rules Examples:
+
+| Rule                                                                             | Purpose                                                                           |
+| ----------------                                                                 | ------------                                                                      |
+| `self.minReplicas <= self.replicas && self.replicas <= self.maxReplicas`         | Validate that the three fields defining replicas are ordered appropriately        |
+| `'Available' in self.stateCounts`                                                | Validate that an entry with the 'Available' key exists in a map                   |
+| `(size(self.list1) == 0) != (size(self.list2) == 0)`                             | Validate that one of two lists is non-empty, but not both                         |
+| <code>!('MY_KEY' in self.map1) &#124;&#124; self['MY_KEY'].matches('^[a-zA-Z]*$')</code>               | Validate the value of a map for a specific key, if it is in the map               |
+| `self.envars.filter(e, e.name == 'MY_ENV').all(e, e.value.matches('^[a-zA-Z]*$')` | Validate the 'value' field of a listMap entry where key field 'name' is 'MY_ENV'  |
+| `has(self.expired) && self.created + self.ttl < self.expired`                    | Validate that 'expired' date is after a 'create' date plus a 'ttl' duration       |
+| `self.health.startsWith('ok')`                                                   | Validate a 'health' string field has the prefix 'ok'                              |
+| `self.widgets.exists(w, w.key == 'x' && w.foo < 10)`                             | Validate that the 'foo' property of a listMap item with a key 'x' is less than 10 |
+| `type(self) == string ? self == '100%' : self == 1000`                           | Validate an int-or-string field for both the int and string cases             |
+| `self.metadata.name.startsWith(self.prefix)`                                     | Validate that an object's name has the prefix of another field value              |
+| `self.set1.all(e, !(e in self.set2))`                                            | Validate that two listSets are disjoint                                           |
+| `size(self.names) == size(self.details) && self.names.all(n, n in self.details)` | Validate the 'details' map is keyed by the items in the 'names' listSet           |
+| `size(self.clusters.filter(c, c.name == self.primary)) == 1`                     | Validate that the 'primary' property has one and only one occurrence in the 'clusters' listMap           |
+
+Xref: [Supported evaluation on CEL](https://github.com/google/cel-spec/blob/v0.6.0/doc/langdef.md#evaluation)
+
+- If the Rule is scoped to the root of a resource, it may make field selection into any fields
+  declared in the OpenAPIv3 schema of the CRD as well as `apiVersion`, `kind`, `metadata.name` and
+  `metadata.generateName`. This includes selection of fields in both the `spec` and `status` in the
+  same expression:
+  ```yaml
+      ...
+      openAPIV3Schema:
+        type: object
+        x-kubernetes-validations:
+          - rule: "self.status.availableReplicas >= self.spec.minReplicas"
+        properties:
+            spec:
+              type: object
+              properties:
+                minReplicas:
+                  type: integer
+                ...
+            status:
+              type: object
+              properties:
+                availableReplicas:
+                  type: integer
+  ```
+
+- If the Rule is scoped to an object with properties, the accessible properties of the object are field selectable
+  via `self.field` and field presence can be checked via `has(self.field)`. Null valued fields are treated as
+  absent fields in CEL expressions.
+
+  ```yaml
+      ...
+      openAPIV3Schema:
+        type: object
+        properties:
+          spec:
+            type: object
+            x-kubernetes-validations:
+              - rule: "has(self.foo)"
+            properties:
+              ...
+              foo:
+                type: integer
+  ```
+
+- If the Rule is scoped to an object with additionalProperties (i.e. a map) the value of the map
+  are accessible via `self[mapKey]`, map containment can be checked via `mapKey in self` and all entries of the map
+  are accessible via CEL macros and functions such as `self.all(...)`.
+  ```yaml
+      ...
+      openAPIV3Schema:
+        type: object
+        properties:
+          spec:
+            type: object
+            x-kubernetes-validations:
+              - rule: "self['xyz'].foo > 0"
+            additionalProperties:
+              ...
+              type: object
+              properties:
+                foo:
+                  type: integer
+  ```
+
+- If the Rule is scoped to an array, the elements of the array are accessible via `self[i]` and also by macros and
+  functions.
+  ```yaml
+      ...
+      openAPIV3Schema:
+        type: object
+        properties:
+          ...
+          foo:
+            type: array
+            x-kubernetes-validations:
+              - rule: "size(self) == 1"
+            items:
+              type: string
+  ```
+
+- If the Rule is scoped to a scalar, `self` is bound to the scalar value.
+  ```yaml
+      ...
+      openAPIV3Schema:
+        type: object
+        properties:
+          spec:
+            type: object
+            properties:
+              ...
+              foo:
+                type: integer
+                x-kubernetes-validations:
+                - rule: "self > 0"
+  ```
+Examples:
+
+|type of the field rule scoped to    | Rule example             |
+| -----------------------| -----------------------|
+| root object            | `self.status.actual <= self.spec.maxDesired`|
+| map of objects         | `self.components['Widget'].priority < 10`|
+| list of integers       | `self.values.all(value, value >= 0 && value < 100)`|
+| string                 | `self.startsWith('kube')`|
+
+
+The `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the 
+object and from any x-kubernetes-embedded-resource annotated objects. No other metadata properties are accessible.
+	
+Unknown data preserved in custom resources via `x-kubernetes-preserve-unknown-fields` is not accessible in CEL
+  expressions. This includes:
+  - Unknown field values that are preserved by object schemas with x-kubernetes-preserve-unknown-fields.
+  - Object properties where the property schema is of an "unknown type". An "unknown type" is recursively defined as:
+    - A schema with no type and x-kubernetes-preserve-unknown-fields set to true
+    - An array where the items schema is of an "unknown type"
+    - An object where the additionalProperties schema is of an "unknown type"
+
+
+Only property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible.
+Accessible property names are escaped according to the following rules when accessed in the expression:
+
+| escape sequence         | property name equivalent  |
+| ----------------------- | -----------------------|
+| `__underscores__`       | `__`                  |
+| `__dot__`               | `.`                   |
+|`__dash__`               | `-`                   |
+| `__slash__`             | `/`                   |
+| `__{keyword}__`         | [CEL RESERVED keyword](https://github.com/google/cel-spec/blob/v0.6.0/doc/langdef.md#syntax)       |
+
+Note: CEL RESERVED keyword needs to match the exact property name to be escaped (e.g. int in the word sprint would not be escaped).
+
+Examples on escaping:
+
+|property name    | rule with escaped property name     |
+| ----------------| -----------------------             |
+| namespace       | `self.__namespace__ > 0`            |
+| x-prop          | `self.x__dash__prop > 0`            |
+| redact__d       | `self.redact__underscores__d > 0`   |
+| string          | `self.startsWith('kube')`           |
+
+  
+Equality on arrays with `x-kubernetes-list-type` of `set` or `map` ignores element order, i.e. [1, 2] == [2, 1].
+Concatenation on arrays with x-kubernetes-list-type use the semantics of the list type:
+ - `set`: `X + Y` performs a union where the array positions of all elements in `X` are preserved and
+      non-intersecting elements in `Y` are appended, retaining their partial order.
+ - `map`: `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values
+   are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with
+   non-intersecting keys are appended, retaining their partial order.
+ 
+
+Here is the declarations type mapping between OpenAPIv3 and CEL type:
+
+| OpenAPIv3 type                                     | CEL type                                                                                                                     |
+| -------------------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------- |
+| 'object' with Properties                           | object / "message type"                                                                                                      |
+| 'object' with AdditionalProperties                 | map                                                                                                                          |
+| 'object' with x-kubernetes-embedded-type           | object / "message type", 'apiVersion', 'kind', 'metadata.name' and 'metadata.generateName' are implicitly included in schema |
+| 'object' with x-kubernetes-preserve-unknown-fields | object / "message type", unknown fields are NOT accessible in CEL expression                                                 |
+| x-kubernetes-int-or-string                         | dynamic object that is either an int or a string, `type(value)` can be used to check the type                                |
+| 'array                                             | list                                                                                                                         |
+| 'array' with x-kubernetes-list-type=map            | list with map based Equality & unique key guarantees                                                                         |
+| 'array' with x-kubernetes-list-type=set            | list with set based Equality & unique entry guarantees                                                                       |
+| 'boolean'                                          | boolean                                                                                                                      |
+| 'number' (all formats)                             | double                                                                                                                       |
+| 'integer' (all formats)                            | int (64)                                                                                                                     |
+| 'null'                                             | null_type                                                                                                                    |
+| 'string'                                           | string                                                                                                                       |
+| 'string' with format=byte (base64 encoded)         | bytes                                                                                                                        |
+| 'string' with format=date                          | timestamp (google.protobuf.Timestamp)                                                                                        |
+| 'string' with format=datetime                      | timestamp (google.protobuf.Timestamp)                                                                                        |
+| 'string' with format=duration                      | duration (google.protobuf.Duration)                                                                                          |
+
+xref: [CEL types](https://github.com/google/cel-spec/blob/v0.6.0/doc/langdef.md#values),
+[OpenAPI types](https://swagger.io/specification/#data-types),
+[Kubernetes Structural Schemas](/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#specifying-a-structural-schema).
+
+#### Validation functions {#available-validation-functions}
+
+Functions available include:
+
+- CEL standard functions, defined in the [list of standard definitions](https://github.com/google/cel-spec/blob/v0.7.0/doc/langdef.md#list-of-standard-definitions)
+- CEL standard [macros](https://github.com/google/cel-spec/blob/v0.7.0/doc/langdef.md#macros)
+- CEL [extended string function library](https://pkg.go.dev/github.com/google/cel-go@v0.11.2/ext#Strings)
+- Kubernetes [CEL extension library](https://pkg.go.dev/k8s.io/apiextensions-apiserver@v0.24.0/pkg/apiserver/schema/cel/library#pkg-functions)
+
+#### Transition rules
+
+A rule that contains an expression referencing the identifier `oldSelf` is implicitly considered a
+_transition rule_. Transition rules allow schema authors to prevent certain transitions between two
+otherwise valid states. For example:
+
+```yaml
+type: string
+enum: ["low", "medium", "high"]
+x-kubernetes-validations:
+- rule: "!(self == 'high' && oldSelf == 'low') && !(self == 'low' && oldSelf == 'high')"
+  message: cannot transition directly between 'low' and 'high'
+```
+
+Unlike other rules, transition rules apply only to operations meeting the following criteria:
+
+- The operation updates an existing object. Transition rules never apply to create operations.
+
+- Both an old and a new value exist. It remains possible to check if a value has been added or
+  removed by placing a transition rule on the parent node. Transition rules are never applied to
+  custom resource creation. When placed on an optional field, a transition rule will not apply to
+  update operations that set or unset the field.
+
+- The path to the schema node being validated by a transition rule must resolve to a node that is
+  comparable between the old object and the new object. For example, list items and their
+  descendants (`spec.foo[10].bar`) can't necessarily be correlated between an existing object and a
+  later update to the same object.
+
+Errors will be generated on CRD writes if a schema node contains a transition rule that can never be
+applied, e.g. "*path*: update rule *rule* cannot be set on schema because the schema or its parent
+schema is not mergeable".
+
+Transition rules are only allowed on _correlatable portions_ of a schema.
+A portion of the schema is correlatable if all `array` parent schemas are of type `x-kubernetes-list-type=map`;
+any `set`or `atomic`array parent schemas make it impossible to unambiguously correlate a `self` with `oldSelf`.
+
+Here are some examples for transition rules:
+
+{{< table caption="Transition rules examples" >}}
+| Use Case                                                          | Rule
+| --------                                                          | --------
+| Immutability                                                      | `self.foo == oldSelf.foo`
+| Prevent modification/removal once assigned                        | `oldSelf != 'bar' \|\| self == 'bar'` or `!has(oldSelf.field) \|\| has(self.field)`
+| Append-only set                                                   | `self.all(element, element in oldSelf)`
+| If previous value was X, new value can only be A or B, not Y or Z | `oldSelf != 'X' \|\| self in ['A', 'B']`
+| Monotonic (non-decreasing) counters                               | `self >= oldSelf`
+{{< /table >}}
+
+#### Resource use by validation functions
+
+When you create or update a CustomResourceDefinition that uses validation rules,
+the API server checks the likely impact of running those validation rules. If a rule is
+estimated to be prohibitively expensive to execute, the API server rejects the create
+or update operation, and returns an error message.
+A similar system is used at runtime that observes the actions the interpreter takes. If the interpreter executes
+too many instructions, execution of the rule will be halted, and an error will result.
+Each CustomResourceDefinition is also allowed a certain amount of resources to finish executing all of 
+its validation rules. If the sum total of its rules are estimated at creation time to go over that limit, 
+then a validation error will also occur.
+
+You are unlikely to encounter issues with the resource budget for validation if you only
+specify rules that always take the same amount of time regardless of how large their input is.
+For example, a rule that asserts that `self.foo == 1` does not by itself have any
+risk of rejection on validation resource budget groups.
+But if `foo` is a string and you define a validation rule `self.foo.contains("someString")`, that rule takes
+longer to execute depending on how long `foo` is.
+Another example would be if `foo` were an array, and you specified a validation rule `self.foo.all(x, x > 5)`.
+The cost system always assumes the worst-case scenario if a limit on the length of `foo` is not
+given, and this will happen for anything that can be iterated over (lists, maps, etc.).
+
+Because of this, it is considered best practice to put a limit via `maxItems`, `maxProperties`, and 
+`maxLength` for anything that will be processed in a validation rule in order to prevent validation
+errors during cost estimation. For example, given this schema with one rule:
+
+```yaml
+openAPIV3Schema:
+  type: object
+  properties:
+    foo:
+      type: array
+      items:
+        type: string
+      x-kubernetes-validations:
+        - rule: "self.all(x, x.contains('a string'))"
+```
+
+then the API server rejects this rule on validation budget grounds with error:
+
+```
+spec.validation.openAPIV3Schema.properties[spec].properties[foo].x-kubernetes-validations[0].rule: Forbidden: 
+CEL rule exceeded budget by more than 100x (try simplifying the rule, or adding maxItems, maxProperties, and 
+maxLength where arrays, maps, and strings are used)
+```
+
+The rejection happens because `self.all` implies calling `contains()` on every string in `foo`,
+which in turn will check the given string to see if it contains `'a string'`. Without limits, this is a very
+expensive rule.
+
+If you do not specify any validation limit, the estimated cost of this rule will exceed the per-rule cost limit. But if you
+add limits in the appropriate places, the rule will be allowed:
+
+```yaml
+openAPIV3Schema:
+  type: object
+  properties:
+    foo:
+      type: array
+      maxItems: 25
+      items:
+        type: string
+        maxLength: 10
+      x-kubernetes-validations:
+        - rule: "self.all(x, x.contains('a string'))"
+```
+
+The cost estimation system takes into account how many times the rule will be executed in addition to the
+estimated cost of the rule itself. For instance, the following rule will have the same estimated cost as the
+previous example (despite the rule now being defined on the individual array items):
+
+```yaml
+openAPIV3Schema:
+  type: object
+  properties:
+    foo:
+      type: array
+      maxItems: 25
+      items:
+        type: string
+        x-kubernetes-validations:
+          - rule: "self.contains('a string'))"
+        maxLength: 10
+```
+
+If a list inside of a list has a validation rule that uses `self.all`, that is significantly more expensive 
+than a non-nested list with the same rule. A rule that would have been allowed on a non-nested list might need
+lower limits set on both nested lists in order to be allowed. For example, even without having limits set,
+the following rule is allowed:
+
+```yaml
+openAPIV3Schema:
+  type: object
+  properties:
+    foo:
+      type: array
+      items:
+        type: integer
+    x-kubernetes-validations:
+      - rule: "self.all(x, x == 5)"
+```
+
+But the same rule on the following schema (with a nested array added) produces a validation error:
+
+```yaml
+openAPIV3Schema:
+  type: object
+  properties:
+    foo:
+      type: array
+      items:
+        type: array
+        items:
+          type: integer
+        x-kubernetes-validations:
+          - rule: "self.all(x, x == 5)"
+```
+
+This is because each item of `foo` is itself an array, and each subarray in turn calls `self.all`. Avoid nested
+lists and maps if possible where validation rules are used.
+
 ### Defaulting
 
 {{< note >}}
@@ -770,15 +1273,20 @@ Defaulting happens on the object
 * when reading from etcd using the storage version defaults,
 * after mutating admission plugins with non-empty patches using the admission webhook object version defaults.
 
-Defaults applied when reading data from etcd are not automatically written back to etcd. An update request via the API is required to persist those defaults back into etcd.
+Defaults applied when reading data from etcd are not automatically written back to etcd.
+An update request via the API is required to persist those defaults back into etcd.
 
 Default values must be pruned (with the exception of defaults for `metadata` fields) and must validate against a provided schema.
 
-Default values for `metadata` fields of `x-kubernetes-embedded-resources: true` nodes (or parts of a default value covering `metadata`) are not pruned during CustomResourceDefinition creation, but through the pruning step during handling of requests.
+Default values for `metadata` fields of `x-kubernetes-embedded-resources: true` nodes (or parts of
+a default value covering `metadata`) are not pruned during CustomResourceDefinition creation, but
+through the pruning step during handling of requests.
 
 #### Defaulting and Nullable
 
-**New in 1.20:** null values for fields that either don't specify the nullable flag, or give it a `false` value, will be pruned before defaulting happens. If a default is present, it will be applied. When nullable is `true`, null values will be conserved and won't be defaulted.
+**New in 1.20:** null values for fields that either don't specify the nullable flag, or give it a
+`false` value, will be pruned before defaulting happens. If a default is present, it will be
+applied. When nullable is `true`, null values will be conserved and won't be defaulted.
 
 For example, given the OpenAPI schema below:
 
@@ -816,13 +1324,20 @@ spec:
   bar: null
 ```
 
-with `foo` pruned and defaulted because the field is non-nullable, `bar` maintaining the null value due to `nullable: true`, and `baz` pruned because the field is non-nullable and has no default.
+with `foo` pruned and defaulted because the field is non-nullable, `bar` maintaining the null
+value due to `nullable: true`, and `baz` pruned because the field is non-nullable and has no
+default.
 
 ### Publish Validation Schema in OpenAPI v2
 
-CustomResourceDefinition [OpenAPI v3 validation schemas](#validation) which are [structural](#specifying-a-structural-schema) and [enable pruning](#field-pruning) are published as part of the [OpenAPI v2 spec](/docs/concepts/overview/kubernetes-api/#openapi-and-swagger-definitions) from Kubernetes API server.
+CustomResourceDefinition [OpenAPI v3 validation schemas](#validation) which are
+[structural](#specifying-a-structural-schema) and [enable pruning](#field-pruning) are published
+as part of the [OpenAPI v2 spec](/docs/concepts/overview/kubernetes-api/#openapi-and-swagger-definitions)
+from Kubernetes API server.
 
-The [kubectl](/docs/reference/kubectl/overview) command-line tool consumes the published schema to perform client-side validation (`kubectl create` and `kubectl apply`), schema explanation (`kubectl explain`) on custom resources. The published schema can be consumed for other purposes as well, like client generation or documentation.
+The [kubectl](/docs/reference/kubectl/) command-line tool consumes the published schema to perform
+client-side validation (`kubectl create` and `kubectl apply`), schema explanation (`kubectl explain`)
+on custom resources. The published schema can be consumed for other purposes as well, like client generation or documentation.
 
 The OpenAPI v3 validation schema is converted to OpenAPI v2 schema, and
 show up in `definitions` and `paths` fields in the [OpenAPI v2 spec](/docs/concepts/overview/kubernetes-api/#openapi-and-swagger-definitions).
@@ -832,9 +1347,13 @@ kubectl in previous 1.13 version. These modifications prevent kubectl from being
 valid OpenAPI schemas that it doesn't understand. The conversion won't modify the validation schema defined in CRD,
 and therefore won't affect [validation](#validation) in the API server.
 
-1. The following fields are removed as they aren't supported by OpenAPI v2 (in future versions OpenAPI v3 will be used without these restrictions)
+1. The following fields are removed as they aren't supported by OpenAPI v2
+   (in future versions OpenAPI v3 will be used without these restrictions)
+
    - The fields `allOf`, `anyOf`, `oneOf` and `not` are removed
-2. If `nullable: true` is set, we drop `type`, `nullable`, `items` and `properties` because OpenAPI v2 is not able to express nullable. To avoid kubectl to reject good objects, this is necessary.
+
+2. If `nullable: true` is set, we drop `type`, `nullable`, `items` and `properties` because OpenAPI v2 is
+   not able to express nullable. To avoid kubectl to reject good objects, this is necessary.
 
 ### Additional printer columns
 
@@ -925,7 +1444,8 @@ differentiates between columns shown in standard view or wide view (using the `-
 
 #### Type
 
-A column's `type` field can be any of the following (compare [OpenAPI v3 data types](https://github.com/OAI/OpenAPI-Specification/blob/master/versions/3.0.0.md#dataTypes)):
+A column's `type` field can be any of the following (compare
+[OpenAPI v3 data types](https://github.com/OAI/OpenAPI-Specification/blob/master/versions/3.0.0.md#dataTypes)):
 
 - `integer` – non-floating-point numbers
 - `number` – floating point numbers
@@ -1018,8 +1538,9 @@ the status replica value in the `/scale` subresource will default to 0.
   - It must be set to work with HPA.
   - Only JSONPaths under `.status` or `.spec` and with the dot notation are allowed.
   - If there is no value under the `labelSelectorPath` in the custom resource,
-the status selector value in the `/scale` subresource will default to the empty string.
-  - The field pointed by this JSON path must be a string field (not a complex selector struct) which contains a serialized label selector in string form.
+    the status selector value in the `/scale` subresource will default to the empty string.
+  - The field pointed by this JSON path must be a string field (not a complex selector struct)
+    which contains a serialized label selector in string form.
 
 In the following example, both status and scale subresources are enabled.
 
@@ -1226,3 +1747,4 @@ crontabs/my-new-cron-object   3s
 
 * Serve [multiple versions](/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definition-versioning/) of a
   CustomResourceDefinition.
+
diff --git a/content/en/docs/tasks/extend-kubernetes/setup-konnectivity.md b/content/en/docs/tasks/extend-kubernetes/setup-konnectivity.md
index 34936014f6..6f5e1d1883 100644
--- a/content/en/docs/tasks/extend-kubernetes/setup-konnectivity.md
+++ b/content/en/docs/tasks/extend-kubernetes/setup-konnectivity.md
@@ -11,7 +11,11 @@ communication.
 
 ## {{% heading "prerequisites" %}}
 
-{{< include "task-tutorial-prereqs.md" >}}
+You need to have a Kubernetes cluster, and the kubectl command-line tool must
+be configured to communicate with your cluster. It is recommended to run this
+tutorial on a cluster with at least two nodes that are not acting as control
+plane hosts. If you do not already have a cluster, you can create one by using
+[minikube](https://minikube.sigs.k8s.io/docs/tutorials/multi_node/).
 
 <!-- steps -->
 
@@ -25,15 +29,8 @@ You need to configure the API Server to use the Konnectivity service
 and direct the network traffic to the cluster nodes:
 
 1. Make sure that
-the `ServiceAccountTokenVolumeProjection` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
-is enabled. You can enable
-[service account token volume protection](/docs/tasks/configure-pod-container/configure-service-account/#service-account-token-volume-projection)
-by providing the following flags to the kube-apiserver:
-   ```
-   --service-account-issuer=api
-   --service-account-signing-key-file=/etc/kubernetes/pki/sa.key
-   --api-audiences=system:konnectivity-server
-   ```
+[Service Account Token Volume Projection](/docs/tasks/configure-pod-container/configure-service-account/#service-account-token-volume-projection)
+feature enabled in your cluster. It is enabled by default since Kubernetes v1.20.
 1. Create an egress configuration file such as `admin/konnectivity/egress-selector-configuration.yaml`.
 1. Set the `--egress-selector-config-file` flag of the API Server to the path of
 your API Server egress configuration file.
diff --git a/content/en/docs/tasks/extend-kubernetes/socks5-proxy-access-api.md b/content/en/docs/tasks/extend-kubernetes/socks5-proxy-access-api.md
new file mode 100644
index 0000000000..5dddd1119a
--- /dev/null
+++ b/content/en/docs/tasks/extend-kubernetes/socks5-proxy-access-api.md
@@ -0,0 +1,145 @@
+---
+title: Use a SOCKS5 Proxy to Access the Kubernetes API
+content_type: task
+weight: 42
+min-kubernetes-server-version: v1.24
+---
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
+
+This page shows how to use a SOCKS5 proxy to access the API of a remote Kubernetes cluster.
+This is useful when the cluster you want to access does not expose its API directly on the public internet.
+
+## {{% heading "prerequisites" %}}
+
+{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+
+You need SSH client software (the `ssh` tool), and an SSH service running on the remote server.
+You must be able to log in to the SSH service on the remote server.
+
+<!-- steps -->
+
+## Task context
+
+{{< note >}}
+This example tunnels traffic using SSH, with the SSH client and server acting as a SOCKS proxy.
+You can instead use any other kind of [SOCKS5](https://en.wikipedia.org/wiki/SOCKS#SOCKS5) proxies.
+{{</ note >}}
+
+Figure 1 represents what you're going to achieve in this task.
+
+* You have a client computer, referred to as local in the steps ahead, from where you're going to create requests to talk to the Kubernetes API.
+* The Kubernetes server/API is hosted on a remote server.
+* You will use SSH client and server software to create a secure SOCKS5 tunnel between the local and
+  the remote server. The HTTPS traffic between the client and the Kubernetes API will flow over the SOCKS5
+  tunnel, which is itself tunnelled over SSH.
+
+{{< mermaid >}}
+graph LR;
+
+  subgraph local[Local client machine]
+  client([client])-- local <br> traffic .->  local_ssh[Local SSH <br> SOCKS5 proxy];
+  end
+  local_ssh[SSH <br>SOCKS5 <br> proxy]-- SSH Tunnel -->sshd
+  
+  subgraph remote[Remote server]
+  sshd[SSH <br> server]-- local traffic -->service1;
+  end
+  client([client])-. proxied HTTPs traffic <br> going through the proxy .->service1[Kubernetes API];
+
+  classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+  classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+  classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+  class ingress,service1,service2,pod1,pod2,pod3,pod4 k8s;
+  class client plain;
+  class cluster cluster;
+{{</ mermaid >}}
+Figure 1. SOCKS5 tutorial components
+
+## Using ssh to create a SOCKS5 proxy
+
+This command starts a SOCKS5 proxy between your client machine and the remote server.
+The SOCKS5 proxy lets you connect to your cluster's API server.
+
+```shell
+# The SSH tunnel continues running in the foreground after you run this
+ssh -D 1080 -q -N username@kubernetes-remote-server.example
+```
+
+* `-D 1080`: opens a SOCKS proxy on local port :1080.
+* `-q`: quiet mode. Causes most warning and diagnostic messages to be suppressed.
+* `-N`: Do not execute a remote command. Useful for just forwarding ports.
+* `username@kubernetes-remote-server.example`: the remote SSH server where the Kubernetes cluster is running.
+
+## Client configuration
+
+To explore the Kubernetes API you'll first need to instruct your clients to send their queries through
+the SOCKS5 proxy we created earlier.
+
+For command-line tools, set the `https_proxy` environment variable and pass it to commands that you run.
+
+```shell
+export https_proxy=socks5h://localhost:1080
+```
+
+When you set the `https_proxy` variable, tools such as `curl` route HTTPS traffic through the proxy
+you configured. For this to work, the tool must support SOCKS5 proxying.
+
+{{< note >}}
+In the URL https://localhost:6443/api, `localhost` does not refer to your local client computer.
+Instead, it refers to the endpoint on the remote server known as `localhost`.
+The `curl` tool sends the hostname from the HTTPS URL over SOCKS, and the remote server
+resolves that locally (to an address that belongs to its loopback interface).
+{{</ note >}}
+
+```shell
+curl -k -v https://localhost:6443/api
+```
+
+To use the official Kubernetes client `kubectl` with a proxy, set the `proxy-url` element
+for the relevant `cluster` entry within  your `~/.kube/config` file. For example:
+
+```yaml
+apiVersion: v1
+clusters:
+- cluster:
+    certificate-authority-data: LRMEMMW2 # shortened for readability 
+    server: https://<API_SERVER_IP_ADRESS>:6443  # the "Kubernetes API" server, in other words the IP address of kubernetes-remote-server.example
+    proxy-url: socks5://localhost:1080   # the "SSH SOCKS5 proxy" in the diagram above (DNS resolution over socks is built-in)
+  name: default
+contexts:
+- context:
+    cluster: default
+    user: default
+  name: default
+current-context: default
+kind: Config
+preferences: {}
+users:
+- name: default
+  user:
+    client-certificate-data: LS0tLS1CR== # shortened for readability
+    client-key-data: LS0tLS1CRUdJT=      # shortened for readability
+```
+
+If the tunnel is operating and you use `kubectl` with a context that uses this cluster, you can interact with your cluster through that proxy. For example:
+
+```shell
+kubectl get pods
+```
+
+```console
+NAMESPACE     NAME                                     READY   STATUS      RESTARTS   AGE
+kube-system   coredns-85cb69466-klwq8                  1/1     Running     0          5m46s
+```
+
+## Clean up
+
+Stop the ssh port-forwarding process by pressing `CTRL+C` on the terminal where it is running.
+
+Type `unset https_proxy` in a terminal to stop forwarding http traffic through the proxy.
+
+## Further reading
+
+* [OpenSSH remote login client](https://man.openbsd.org/ssh)
diff --git a/content/en/docs/tasks/inject-data-application/define-command-argument-container.md b/content/en/docs/tasks/inject-data-application/define-command-argument-container.md
index faaffc52a2..36368abd3f 100644
--- a/content/en/docs/tasks/inject-data-application/define-command-argument-container.md
+++ b/content/en/docs/tasks/inject-data-application/define-command-argument-container.md
@@ -36,8 +36,7 @@ If you define args, but do not define a command, the default command is used
 with your new arguments.
 
 {{< note >}}
-The `command` field corresponds to `entrypoint` in some container
-runtimes. Refer to the [Notes](#notes) below.
+The `command` field corresponds to `entrypoint` in some container runtimes.
 {{< /note >}}
 
 In this exercise, you create a Pod that runs one container. The configuration
@@ -111,50 +110,9 @@ command: ["/bin/sh"]
 args: ["-c", "while true; do echo hello; sleep 10;done"]
 ```
 
-## Notes
-
-This table summarizes the field names used by Docker and Kubernetes.
-
-|              Description               |    Docker field name   | Kubernetes field name |
-|----------------------------------------|------------------------|-----------------------|
-|  The command run by the container      |   Entrypoint           |      command          |
-|  The arguments passed to the command   |   Cmd                  |      args             |
-
-When you override the default Entrypoint and Cmd, these rules apply:
-
-* If you do not supply `command` or `args` for a Container, the defaults defined
-in the Docker image are used.
-
-* If you supply a `command` but no `args` for a Container, only the supplied
-`command` is used. The default EntryPoint and the default Cmd defined in the Docker
-image are ignored.
-
-* If you supply only `args` for a Container, the default Entrypoint defined in
-the Docker image is run with the `args` that you supplied.
-
-* If you supply a `command` and `args`, the default Entrypoint and the default
-Cmd defined in the Docker image are ignored. Your `command` is run with your
-`args`.
-
-Here are some examples:
-
-| Image Entrypoint   |    Image Cmd     | Container command   |  Container args    |    Command run   |
-|--------------------|------------------|---------------------|--------------------|------------------|
-|     `[/ep-1]`      |   `[foo bar]`    |   &lt;not set&gt;   |   &lt;not set&gt;  | `[ep-1 foo bar]` |
-|     `[/ep-1]`      |   `[foo bar]`    |      `[/ep-2]`      |   &lt;not set&gt;  |     `[ep-2]`     |
-|     `[/ep-1]`      |   `[foo bar]`    |   &lt;not set&gt;   |     `[zoo boo]`    | `[ep-1 zoo boo]` |
-|     `[/ep-1]`      |   `[foo bar]`    |   `[/ep-2]`         |     `[zoo boo]`    | `[ep-2 zoo boo]` |
-
-
-
-
 ## {{% heading "whatsnext" %}}
 
 
 * Learn more about [configuring pods and containers](/docs/tasks/).
-* Learn more about [running commands in a container](/docs/tasks/debug-application-cluster/get-shell-running-container/).
+* Learn more about [running commands in a container](/docs/tasks/debug/debug-application/get-shell-running-container/).
 * See [Container](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core).
-
-
-
-
diff --git a/content/en/docs/tasks/inject-data-application/define-interdependent-environment-variables.md b/content/en/docs/tasks/inject-data-application/define-interdependent-environment-variables.md
index 74c5c245db..ee9da2f682 100644
--- a/content/en/docs/tasks/inject-data-application/define-interdependent-environment-variables.md
+++ b/content/en/docs/tasks/inject-data-application/define-interdependent-environment-variables.md
@@ -23,7 +23,7 @@ in a Kubernetes Pod.
 When you create a Pod, you can set dependent environment variables for the containers that run in the Pod. To set dependent environment variables, you can use $(VAR_NAME) in the `value` of `env` in the configuration file.
 
 In this exercise, you create a Pod that runs one container. The configuration
-file for the Pod defines an dependent environment variable with common usage defined. Here is the configuration manifest for the
+file for the Pod defines a dependent environment variable with common usage defined. Here is the configuration manifest for the
 Pod:
 
 {{< codenew file="pods/inject/dependent-envars.yaml" >}}
diff --git a/content/en/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information.md b/content/en/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information.md
index 579adcb736..42302467c1 100644
--- a/content/en/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information.md
+++ b/content/en/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information.md
@@ -6,44 +6,39 @@ weight: 40
 
 <!-- overview -->
 
-This page shows how a Pod can use a DownwardAPIVolumeFile to expose information
-about itself to Containers running in the Pod. A DownwardAPIVolumeFile can expose
-Pod fields and Container fields.
+This page shows how a Pod can use a
+[`downwardAPI` volume](/docs/concepts/storage/volumes/#downwardapi),
+to expose information about itself to containers running in the Pod.
+A `downwardAPI` volume can expose Pod fields and container fields.
 
+In Kubernetes, there are two ways to expose Pod and container fields to a running container:
 
+* [Environment variables](/docs/tasks/inject-data-application/environment-variable-expose-pod-information/#the-downward-api)
+* Volume files, as explained in this task
 
+Together, these two ways of exposing Pod and container fields are called the
+_downward API_.
 
 ## {{% heading "prerequisites" %}}
 
-
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
+{{< include "task-tutorial-prereqs.md" >}}
 
 
 <!-- steps -->
 
-## The Downward API
-
-There are two ways to expose Pod and Container fields to a running Container:
-
-* [Environment variables](/docs/tasks/inject-data-application/environment-variable-expose-pod-information/#the-downward-api)
-* Volume Files
-
-Together, these two ways of exposing Pod and Container fields are called the
-*Downward API*.
-
 ## Store Pod fields
 
-In this exercise, you create a Pod that has one Container.
-Here is the configuration file for the Pod:
+In this part of exercise, you create a Pod that has one container, and you
+project Pod-level fields into the running container as files.
+Here is the manifest for the Pod:
 
 {{< codenew file="pods/inject/dapi-volume.yaml" >}}
 
-In the configuration file, you can see that the Pod has a `downwardAPI` Volume,
-and the Container mounts the Volume at `/etc/podinfo`.
+In the manifest, you can see that the Pod has a `downwardAPI` Volume,
+and the container mounts the volume at `/etc/podinfo`.
 
-Look at the `items` array under `downwardAPI`. Each element of the array is a
-[DownwardAPIVolumeFile](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#downwardapivolumefile-v1-core).
+Look at the `items` array under `downwardAPI`. Each element of the array
+defines a `downwardAPI` volume.
 The first element specifies that the value of the Pod's
 `metadata.labels` field should be stored in a file named `labels`.
 The second element specifies that the value of the Pod's `annotations`
@@ -51,7 +46,7 @@ field should be stored in a file named `annotations`.
 
 {{< note >}}
 The fields in this example are Pod fields. They are not
-fields of the Container in the Pod.
+fields of the container in the Pod.
 {{< /note >}}
 
 Create the Pod:
@@ -60,13 +55,13 @@ Create the Pod:
 kubectl apply -f https://k8s.io/examples/pods/inject/dapi-volume.yaml
 ```
 
-Verify that the Container in the Pod is running:
+Verify that the container in the Pod is running:
 
 ```shell
 kubectl get pods
 ```
 
-View the Container's logs:
+View the container's logs:
 
 ```shell
 kubectl logs kubernetes-downwardapi-volume-example
@@ -74,7 +69,7 @@ kubectl logs kubernetes-downwardapi-volume-example
 
 The output shows the contents of the `labels` file and the `annotations` file:
 
-```shell
+```
 cluster="test-cluster1"
 rack="rack-22"
 zone="us-est-coast"
@@ -83,7 +78,7 @@ build="two"
 builder="john-doe"
 ```
 
-Get a shell into the Container that is running in your Pod:
+Get a shell into the container that is running in your Pod:
 
 ```shell
 kubectl exec -it kubernetes-downwardapi-volume-example -- sh
@@ -136,8 +131,7 @@ total 8
 
 Using symbolic links enables dynamic atomic refresh of the metadata; updates are
 written to a new temporary directory, and the `..data` symlink is updated
-atomically using
-[rename(2)](http://man7.org/linux/man-pages/man2/rename.2.html).
+atomically using [rename(2)](http://man7.org/linux/man-pages/man2/rename.2.html).
 
 {{< note >}}
 A container using Downward API as a
@@ -151,24 +145,30 @@ Exit the shell:
 /# exit
 ```
 
-## Store Container fields
+## Store container fields
 
-The preceding exercise, you stored Pod fields in a DownwardAPIVolumeFile.
-In this next exercise, you store Container fields. Here is the configuration
-file for a Pod that has one Container:
+The preceding exercise, you made Pod-level fields accessible using the
+downward API.
+In this next exercise, you are going to pass fields that are part of the Pod
+definition, but taken from the specific
+[container](/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container)
+rather than from the Pod overall. Here is a manifest for a Pod that again has
+just one container:
 
 {{< codenew file="pods/inject/dapi-volume-resources.yaml" >}}
 
-In the configuration file, you can see that the Pod has a `downwardAPI` Volume,
-and the Container mounts the Volume at `/etc/podinfo`.
+In the manifest, you can see that the Pod has a
+[`downwardAPI` volume](/docs/concepts/storage/volumes/#downwardapi),
+and that the single container in that Pod mounts the volume at `/etc/podinfo`.
 
-Look at the `items` array under `downwardAPI`. Each element of the array is a
-DownwardAPIVolumeFile.
+Look at the `items` array under `downwardAPI`. Each element of the array
+defines a file in the downward API volume.
 
-The first element specifies that in the Container named `client-container`,
+The first element specifies that in the container named `client-container`,
 the value of the `limits.cpu` field in the format specified by `1m` should be
-stored in a file named `cpu_limit`. The `divisor` field is optional and has the
-default value of `1` which means cores for cpu and bytes for memory.
+published as a file named `cpu_limit`. The `divisor` field is optional and has the
+default value of `1`. A divisor of 1 means cores for `cpu` resources, or
+bytes for `memory` resources.
 
 Create the Pod:
 
@@ -176,7 +176,7 @@ Create the Pod:
 kubectl apply -f https://k8s.io/examples/pods/inject/dapi-volume-resources.yaml
 ```
 
-Get a shell into the Container that is running in your Pod:
+Get a shell into the container that is running in your Pod:
 
 ```shell
 kubectl exec -it kubernetes-downwardapi-volume-example-2 -- sh
@@ -185,86 +185,35 @@ kubectl exec -it kubernetes-downwardapi-volume-example-2 -- sh
 In your shell, view the `cpu_limit` file:
 
 ```shell
-/# cat /etc/podinfo/cpu_limit
+# Run this in a shell inside the container
+cat /etc/podinfo/cpu_limit
 ```
+
 You can use similar commands to view the `cpu_request`, `mem_limit` and
 `mem_request` files.
 
-
-
 <!-- discussion -->
 
-## Capabilities of the Downward API
-
-The following information is available to containers through environment
-variables and `downwardAPI` volumes:
-
-* Information available via `fieldRef`:
-  * `metadata.name` - the pod's name
-  * `metadata.namespace` - the pod's namespace
-  * `metadata.uid` - the pod's UID
-  * `metadata.labels['<KEY>']` - the value of the pod's label `<KEY>` (for example, `metadata.labels['mylabel']`)
-  * `metadata.annotations['<KEY>']` - the value of the pod's annotation `<KEY>` (for example, `metadata.annotations['myannotation']`)
-* Information available via `resourceFieldRef`:
-  * A Container's CPU limit
-  * A Container's CPU request
-  * A Container's memory limit
-  * A Container's memory request
-  * A Container's hugepages limit (providing that the `DownwardAPIHugePages` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled)
-  * A Container's hugepages request (providing that the `DownwardAPIHugePages` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled)
-  * A Container's ephemeral-storage limit
-  * A Container's ephemeral-storage request
-
-In addition, the following information is available through
-`downwardAPI` volume `fieldRef`:
-
-* `metadata.labels` - all of the pod's labels, formatted as `label-key="escaped-label-value"` with one label per line
-* `metadata.annotations` - all of the pod's annotations, formatted as `annotation-key="escaped-annotation-value"` with one annotation per line
-
-The following information is available through environment variables:
-
-* `status.podIP` - the pod's IP address
-* `spec.serviceAccountName` - the pod's service account name, available since v1.4.0-alpha.3
-* `spec.nodeName` - the node's name, available since v1.4.0-alpha.3
-* `status.hostIP` - the node's IP, available since v1.7.0-alpha.1
-
-{{< note >}}
-If CPU and memory limits are not specified for a Container, the
-Downward API defaults to the node allocatable value for CPU and memory.
-{{< /note >}}
-
 ## Project keys to specific paths and file permissions
 
 You can project keys to specific paths and specific permissions on a per-file
 basis. For more information, see
 [Secrets](/docs/concepts/configuration/secret/).
 
-## Motivation for the Downward API
-
-It is sometimes useful for a Container to have information about itself, without
-being overly coupled to Kubernetes. The Downward API allows containers to consume
-information about themselves or the cluster without using the Kubernetes client
-or API server.
-
-An example is an existing application that assumes a particular well-known
-environment variable holds a unique identifier. One possibility is to wrap the
-application, but that is tedious and error prone, and it violates the goal of low
-coupling. A better option would be to use the Pod's name as an identifier, and
-inject the Pod's name into the well-known environment variable.
-
-
-
-
 ## {{% heading "whatsnext" %}}
 
+* Read the [`spec`](/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodSpec)
+  API definition for Pod. This includes the definition of Container (part of Pod).
+* Read the list of [available fields](/docs/concepts/workloads/pods/downward-api/#available-fields) that you
+  can expose using the downward API.
 
-* [PodSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core)
-* [Volume](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#volume-v1-core)
-* [DownwardAPIVolumeSource](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#downwardapivolumesource-v1-core)
-* [DownwardAPIVolumeFile](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#downwardapivolumefile-v1-core)
-* [ResourceFieldSelector](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#resourcefieldselector-v1-core)
-
-
-
-
-
+Read about volumes in the legacy API reference:
+* Check the [`Volume`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#volume-v1-core)
+  API definition which defines a generic volume in a Pod for containers to access.
+* Check the [`DownwardAPIVolumeSource`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#downwardapivolumesource-v1-core)
+  API definition which defines a volume that contains Downward API information.
+* Check the [`DownwardAPIVolumeFile`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#downwardapivolumefile-v1-core)
+  API definition which contains references to object or resource fields for
+  populating a file in the Downward API volume.
+* Check the [`ResourceFieldSelector`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#resourcefieldselector-v1-core)
+  API definition which specifies the container resources and their output format.
diff --git a/content/en/docs/tasks/inject-data-application/environment-variable-expose-pod-information.md b/content/en/docs/tasks/inject-data-application/environment-variable-expose-pod-information.md
index 2b59921c6e..163b3498dc 100644
--- a/content/en/docs/tasks/inject-data-application/environment-variable-expose-pod-information.md
+++ b/content/en/docs/tasks/inject-data-application/environment-variable-expose-pod-information.md
@@ -7,50 +7,40 @@ weight: 30
 <!-- overview -->
 
 This page shows how a Pod can use environment variables to expose information
-about itself to Containers running in the Pod. Environment variables can expose
-Pod fields and Container fields.
+about itself to containers running in the Pod, using the _downward API_.
+You can use environment variables to expose Pod fields, container fields, or both.
 
+In Kubernetes, there are two ways to expose Pod and container fields to a running container:
 
+* _Environment variables_, as explained in this task
+* [Volume files](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/)
 
+Together, these two ways of exposing Pod and container fields are called the
+downward API.
 
 ## {{% heading "prerequisites" %}}
 
-
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-
-
+{{< include "task-tutorial-prereqs.md" >}}
 
 <!-- steps -->
 
-## The Downward API
-
-There are two ways to expose Pod and Container fields to a running Container:
-
-* Environment variables
-* [Volume Files](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/#the-downward-api)
-
-Together, these two ways of exposing Pod and Container fields are called the
-*Downward API*.
-
-
 ## Use Pod fields as values for environment variables
 
-In this exercise, you create a Pod that has one Container. Here is the
-configuration file for the Pod:
+In this part of exercise, you create a Pod that has one container, and you
+project Pod-level fields into the running container as environment variables.
 
 {{< codenew file="pods/inject/dapi-envars-pod.yaml" >}}
 
-In the configuration file, you can see five environment variables. The `env`
+In that manifest, you can see five environment variables. The `env`
 field is an array of
-[EnvVars](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#envvar-v1-core).
+environment variable definitions.
 The first element in the array specifies that the `MY_NODE_NAME` environment
 variable gets its value from the Pod's `spec.nodeName` field. Similarly, the
 other environment variables get their names from Pod fields.
 
 {{< note >}}
 The fields in this example are Pod fields. They are not fields of the
-Container in the Pod.
+container in the Pod.
 {{< /note >}}
 
 Create the Pod:
@@ -59,13 +49,14 @@ Create the Pod:
 kubectl apply -f https://k8s.io/examples/pods/inject/dapi-envars-pod.yaml
 ```
 
-Verify that the Container in the Pod is running:
+Verify that the container in the Pod is running:
 
 ```shell
+# If the new Pod isn't yet healthy, rerun this command a few times.
 kubectl get pods
 ```
 
-View the Container's logs:
+View the container's logs:
 
 ```shell
 kubectl logs dapi-envars-fieldref
@@ -82,10 +73,10 @@ default
 ```
 
 To see why these values are in the log, look at the `command` and `args` fields
-in the configuration file. When the Container starts, it writes the values of
+in the configuration file. When the container starts, it writes the values of
 five environment variables to stdout. It repeats this every ten seconds.
 
-Next, get a shell into the Container that is running in your Pod:
+Next, get a shell into the container that is running in your Pod:
 
 ```shell
 kubectl exec -it dapi-envars-fieldref -- sh
@@ -94,7 +85,8 @@ kubectl exec -it dapi-envars-fieldref -- sh
 In your shell, view the environment variables:
 
 ```shell
-/# printenv
+# Run this in a shell inside the container
+printenv
 ```
 
 The output shows that certain environment variables have been assigned the
@@ -111,22 +103,26 @@ MY_NODE_NAME=minikube
 MY_POD_NAME=dapi-envars-fieldref
 ```
 
-## Use Container fields as values for environment variables
+## Use container fields as values for environment variables
 
-In the preceding exercise, you used Pod fields as the values for environment
-variables. In this next exercise, you use Container fields as the values for
-environment variables. Here is the configuration file for a Pod that has one
-container:
+In the preceding exercise, you used information from Pod-level fields as the values
+for environment variables.
+In this next exercise, you are going to pass fields that are part of the Pod
+definition, but taken from the specific
+[container](/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container)
+rather than from the Pod overall.
+
+Here is a manifest for another Pod that again has just one container:
 
 {{< codenew file="pods/inject/dapi-envars-container.yaml" >}}
 
-In the configuration file, you can see four environment variables. The `env`
+In this manifest, you can see four environment variables. The `env`
 field is an array of
-[EnvVars](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#envvar-v1-core).
+environment variable definitions.
 The first element in the array specifies that the `MY_CPU_REQUEST` environment
-variable gets its value from the `requests.cpu` field of a Container named
+variable gets its value from the `requests.cpu` field of a container named
 `test-container`. Similarly, the other environment variables get their values
-from Container fields.
+from fields that are specific to this container.
 
 Create the Pod:
 
@@ -134,13 +130,14 @@ Create the Pod:
 kubectl apply -f https://k8s.io/examples/pods/inject/dapi-envars-container.yaml
 ```
 
-Verify that the Container in the Pod is running:
+Verify that the container in the Pod is running:
 
 ```shell
+# If the new Pod isn't yet healthy, rerun this command a few times.
 kubectl get pods
 ```
 
-View the Container's logs:
+View the container's logs:
 
 ```shell
 kubectl logs dapi-envars-resourcefieldref
@@ -155,18 +152,20 @@ The output shows the values of selected environment variables:
 67108864
 ```
 
-
-
 ## {{% heading "whatsnext" %}}
 
 
-* [Defining Environment Variables for a Container](/docs/tasks/inject-data-application/define-environment-variable-container/)
+* Read [Defining Environment Variables for a Container](/docs/tasks/inject-data-application/define-environment-variable-container/)
+* Read the [`spec`](/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodSpec)
+  API definition for Pod. This includes the definition of Container (part of Pod).
+* Read the list of [available fields](/docs/concepts/workloads/pods/downward-api/#available-fields) that you
+  can expose using the downward API.
+
+Read about Pods, containers and environment variables in the legacy API reference:
+
 * [PodSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core)
 * [Container](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core)
 * [EnvVar](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#envvar-v1-core)
 * [EnvVarSource](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#envvarsource-v1-core)
 * [ObjectFieldSelector](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#objectfieldselector-v1-core)
 * [ResourceFieldSelector](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#resourcefieldselector-v1-core)
-
-
-
diff --git a/content/en/docs/tasks/job/automated-tasks-with-cron-jobs.md b/content/en/docs/tasks/job/automated-tasks-with-cron-jobs.md
index e37e5b6569..8b794ab68d 100644
--- a/content/en/docs/tasks/job/automated-tasks-with-cron-jobs.md
+++ b/content/en/docs/tasks/job/automated-tasks-with-cron-jobs.md
@@ -13,7 +13,8 @@ CronJobs was promoted to general availability in Kubernetes v1.21. If you are us
 Kubernetes, please refer to the documentation for the version of Kubernetes that you are using,
 so that you see accurate information. Older Kubernetes versions do not support the `batch/v1` CronJob API.
 
-You can use a {{< glossary_tooltip text="CronJob" term_id="cronjob" >}} to run {{< glossary_tooltip text="Jobs" term_id="job" >}} on a time-based schedule.
+You can use a {{< glossary_tooltip text="CronJob" term_id="cronjob" >}} to run {{< glossary_tooltip text="Jobs" term_id="job" >}}
+on a time-based schedule.
 These automated jobs run like [Cron](https://en.wikipedia.org/wiki/Cron) tasks on a Linux or UNIX system.
 
 Cron jobs are useful for creating periodic and recurring tasks, like running backups or sending emails.
@@ -25,21 +26,16 @@ Therefore, jobs should be idempotent.
 
 For more limitations, see [CronJobs](/docs/concepts/workloads/controllers/cron-jobs).
 
-
-
 ## {{% heading "prerequisites" %}}
 
-
 * {{< include "task-tutorial-prereqs.md" >}}
 
-
-
 <!-- steps -->
 
-## Creating a Cron Job
+## Creating a CronJob {#creating-a-cron-job}
 
 Cron jobs require a config file.
-This example cron job config `.spec` file prints the current time and a hello message every minute:
+Here is a manifest for a CronJob that runs a simple demonstration task every minute:
 
 {{< codenew file="application/job/cronjob.yaml" >}}
 
@@ -59,6 +55,7 @@ After creating the cron job, get its status using this command:
 ```shell
 kubectl get cronjob hello
 ```
+
 The output is similar to this:
 
 ```
@@ -87,6 +84,7 @@ You can stop watching the job and view the cron job again to see that it schedul
 ```shell
 kubectl get cronjob hello
 ```
+
 The output is similar to this:
 
 ```
@@ -94,19 +92,20 @@ NAME    SCHEDULE      SUSPEND   ACTIVE   LAST SCHEDULE   AGE
 hello   */1 * * * *   False     0        50s             75s
 ```
 
-You should see that the cron job `hello` successfully scheduled a job at the time specified in `LAST SCHEDULE`. There are currently 0 active jobs, meaning that the job has completed or failed.
+You should see that the cron job `hello` successfully scheduled a job at the time specified in
+`LAST SCHEDULE`. There are currently 0 active jobs, meaning that the job has completed or failed.
 
 Now, find the pods that the last scheduled job created and view the standard output of one of the pods.
 
 {{< note >}}
-The job name and pod name are different.
+The job name is different from the pod name.
 {{< /note >}}
 
 ```shell
 # Replace "hello-4111706356" with the job name in your system
 pods=$(kubectl get pods --selector=job-name=hello-4111706356 --output=jsonpath={.items[*].metadata.name})
 ```
-Show pod log:
+Show the pod log:
 
 ```shell
 kubectl logs $pods
@@ -118,7 +117,7 @@ Fri Feb 22 11:02:09 UTC 2019
 Hello from the Kubernetes cluster
 ```
 
-## Deleting a Cron Job
+## Deleting a CronJob {#deleting-a-cron-job}
 
 When you don't need a cron job any more, delete it with `kubectl delete cronjob <cronjob name>`:
 
@@ -127,43 +126,50 @@ kubectl delete cronjob hello
 ```
 
 Deleting the cron job removes all the jobs and pods it created and stops it from creating additional jobs.
-You can read more about removing jobs in [garbage collection](/docs/concepts/workloads/controllers/garbage-collection/).
+You can read more about removing jobs in [garbage collection](/docs/concepts/architecture/garbage-collection/).
 
-## Writing a Cron Job Spec
+## Writing a CronJob Spec {#writing-a-cron-job-spec}
 
-As with all other Kubernetes configs, a cron job needs `apiVersion`, `kind`, and `metadata` fields. For general
-information about working with config files, see [deploying applications](/docs/tasks/run-application/run-stateless-application-deployment/),
+As with all other Kubernetes objects, a CronJob must have `apiVersion`, `kind`, and `metadata` fields.
+For more information about working with Kubernetes objects and their
+{{< glossary_tooltip text="manifests" term_id="manifest" >}}, see the
+[managing resources](/docs/concepts/cluster-administration/manage-deployment/),
 and [using kubectl to manage resources](/docs/concepts/overview/working-with-objects/object-management/) documents.
 
-A cron job config also needs a [`.spec` section](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status).
+Each manifest for a CronJob also needs a [`.spec`](/docs/concepts/overview/working-with-objects/kubernetes-objects/#object-spec-and-status) section.
 
 {{< note >}}
-All modifications to a cron job, especially its `.spec`, are applied only to the following runs.
+If you modify a CronJob, the changes you make will apply to new jobs that start to run after your modification
+is complete. Jobs (and their Pods) that have already started continue to run without changes.
+That is, the CronJob does _not_ update existing jobs, even if those remain running.
 {{< /note >}}
 
 ### Schedule
 
 The `.spec.schedule` is a required field of the `.spec`.
-It takes a [Cron](https://en.wikipedia.org/wiki/Cron) format string, such as `0 * * * *` or `@hourly`, as schedule time of its jobs to be created and executed.
+It takes a [Cron](https://en.wikipedia.org/wiki/Cron) format string, such as `0 * * * *` or `@hourly`,
+as schedule time of its jobs to be created and executed.
 
 The format also includes extended "Vixie cron" step values. As explained in the
 [FreeBSD manual](https://www.freebsd.org/cgi/man.cgi?crontab%285%29):
 
-> Step values can be	used in	conjunction with ranges.  Following a range
-> with `/<number>` specifies skips	of the number's	value through the
-> range.  For example, `0-23/2` can be used in the	hours field to specify
-> command execution every other hour	(the alternative in the	V7 standard is
-> `0,2,4,6,8,10,12,14,16,18,20,22`).  Steps are also permitted after an
+> Step values can be used in conjunction with ranges. Following a range
+> with `/<number>` specifies skips of the number's value through the
+> range. For example, `0-23/2` can be used in the hours field to specify
+> command execution every other hour (the alternative in the V7 standard is
+> `0,2,4,6,8,10,12,14,16,18,20,22`). Steps are also permitted after an
 > asterisk, so if you want to say "every two hours", just use `*/2`.
 
 {{< note >}}
-A question mark (`?`) in the schedule has the same meaning as an asterisk `*`, that is, it stands for any of available value for a given field.
+A question mark (`?`) in the schedule has the same meaning as an asterisk `*`, that is,
+it stands for any of available value for a given field.
 {{< /note >}}
 
 ### Job Template
 
 The `.spec.jobTemplate` is the template for the job, and it is required.
-It has exactly the same schema as a [Job](/docs/concepts/workloads/controllers/job/), except that it is nested and does not have an `apiVersion` or `kind`.
+It has exactly the same schema as a [Job](/docs/concepts/workloads/controllers/job/), except that
+it is nested and does not have an `apiVersion` or `kind`.
 For information about writing a job `.spec`, see [Writing a Job Spec](/docs/concepts/workloads/controllers/job/#writing-a-job-spec).
 
 ### Starting Deadline
@@ -188,8 +194,10 @@ It specifies how to treat concurrent executions of a job that is created by this
 The spec may specify only one of the following concurrency policies:
 
 * `Allow` (default): The cron job allows concurrently running jobs
-* `Forbid`: The cron job does not allow concurrent runs; if it is time for a new job run and the previous job run hasn't finished yet, the cron job skips the new job run
-* `Replace`: If it is time for a new job run and the previous job run hasn't finished yet, the cron job replaces the currently running job run with a new job run
+* `Forbid`: The cron job does not allow concurrent runs; if it is time for a new job run and the
+  previous job run hasn't finished yet, the cron job skips the new job run
+* `Replace`: If it is time for a new job run and the previous job run hasn't finished yet, the
+  cron job replaces the currently running job run with a new job run
 
 Note that concurrency policy only applies to the jobs created by the same cron job.
 If there are multiple cron jobs, their respective jobs are always allowed to run concurrently.
@@ -203,13 +211,13 @@ Defaults to false.
 
 {{< caution >}}
 Executions that are suspended during their scheduled time count as missed jobs.
-When `.spec.suspend` changes from `true` to `false` on an existing cron job without a [starting deadline](#starting-deadline), the missed jobs are scheduled immediately.
+When `.spec.suspend` changes from `true` to `false` on an existing cron job without a
+[starting deadline](#starting-deadline), the missed jobs are scheduled immediately.
 {{< /caution >}}
 
 ### Jobs History Limits
 
 The `.spec.successfulJobsHistoryLimit` and `.spec.failedJobsHistoryLimit` fields are optional.
 These fields specify how many completed and failed jobs should be kept.
-By default, they are set to 3 and 1 respectively.  Setting a limit to `0` corresponds to keeping none of the corresponding kind of jobs after they finish.
-
-
+By default, they are set to 3 and 1 respectively.  Setting a limit to `0` corresponds to keeping
+none of the corresponding kind of jobs after they finish.
diff --git a/content/en/docs/tasks/job/indexed-parallel-processing-static.md b/content/en/docs/tasks/job/indexed-parallel-processing-static.md
index da5e6d4e08..dfa222145c 100644
--- a/content/en/docs/tasks/job/indexed-parallel-processing-static.md
+++ b/content/en/docs/tasks/job/indexed-parallel-processing-static.md
@@ -5,7 +5,7 @@ min-kubernetes-server-version: v1.21
 weight: 30
 ---
 
-{{< feature-state for_k8s_version="v1.22" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 <!-- overview -->
 
diff --git a/content/en/docs/tasks/job/parallel-processing-expansion.md b/content/en/docs/tasks/job/parallel-processing-expansion.md
index fdd309cafb..f62515fda0 100644
--- a/content/en/docs/tasks/job/parallel-processing-expansion.md
+++ b/content/en/docs/tasks/job/parallel-processing-expansion.md
@@ -178,13 +178,13 @@ First, copy and paste the following template of a Job object, into a file called
 
 
 ```liquid
-{%- set params = [{ "name": "apple", "url": "http://dbpedia.org/resource/Apple", },
+{% set params = [{ "name": "apple", "url": "http://dbpedia.org/resource/Apple", },
                   { "name": "banana", "url": "http://dbpedia.org/resource/Banana", },
                   { "name": "cherry", "url": "http://dbpedia.org/resource/Cherry" }]
 %}
-{%- for p in params %}
-{%- set name = p["name"] %}
-{%- set url = p["url"] %}
+{% for p in params %}
+{% set name = p["name"] %}
+{% set url = p["url"] %}
 ---
 apiVersion: batch/v1
 kind: Job
@@ -201,10 +201,10 @@ spec:
     spec:
       containers:
       - name: c
-        image: busybox
+        image: busybox:1.28
         command: ["sh", "-c", "echo Processing URL {{ url }} && sleep 5"]
       restartPolicy: Never
-{%- endfor %}
+{% endfor %}
 ```
 
 The above template defines two parameters for each Job object using a list of
diff --git a/content/en/docs/tasks/kubelet-credential-provider/kubelet-credential-provider.md b/content/en/docs/tasks/kubelet-credential-provider/kubelet-credential-provider.md
index f7af3d864d..16547f0bf4 100644
--- a/content/en/docs/tasks/kubelet-credential-provider/kubelet-credential-provider.md
+++ b/content/en/docs/tasks/kubelet-credential-provider/kubelet-credential-provider.md
@@ -7,7 +7,7 @@ description: Configure the kubelet's image credential provider plugin
 content_type: task
 ---
 
-{{< feature-state for_k8s_version="v1.20" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.24" state="beta" >}}
 
 <!-- overview -->
 
@@ -28,7 +28,7 @@ This guide demonstrates how to configure the kubelet's image credential provider
 ## {{% heading "prerequisites" %}}
 
 * The kubelet image credential provider is introduced in v1.20 as an alpha feature. As with other alpha features,
-a feature gate `KubeletCredentialProviders` must be enabled on only the kubelet for the feature to work.
+  a feature gate `KubeletCredentialProviders` must be enabled on only the kubelet for the feature to work.
 * A working implementation of a credential provider exec plugin. You can build your own plugin or use one provided by cloud providers.
 
 <!-- steps -->
@@ -41,17 +41,19 @@ every node in your cluster and stored in a known directory. The directory will b
 ## Configuring the Kubelet
 
 In order to use this feature, the kubelet expects two flags to be set:
+
 * `--image-credential-provider-config` - the path to the credential provider plugin config file.
 * `--image-credential-provider-bin-dir` - the path to the directory where credential provider plugin binaries are located.
 
 ### Configure a kubelet credential provider
 
 The configuration file passed into `--image-credential-provider-config` is read by the kubelet to determine which exec plugins
-should be invoked for which container images. Here's an example configuration file you may end up using if you are using the [ECR](https://aws.amazon.com/ecr/)-based plugin:
+should be invoked for which container images. Here's an example configuration file you may end up using if you are using the
+[ECR](https://aws.amazon.com/ecr/)-based plugin:
 
 ```yaml
-kind: CredentialProviderConfig
 apiVersion: kubelet.config.k8s.io/v1alpha1
+kind: CredentialProviderConfig
 # providers is a list of credential provider plugins that will be enabled by the kubelet.
 # Multiple providers may match against a single image, in which case credentials
 # from all providers will be returned to the kubelet. If multiple providers are called
@@ -86,11 +88,11 @@ providers:
     # - *.*.registry.io
     # - registry.io:8080/path
     matchImages:
-    - "*.dkr.ecr.*.amazonaws.com"
-    - "*.dkr.ecr.*.amazonaws.cn"
-    - "*.dkr.ecr-fips.*.amazonaws.com"
-    - "*.dkr.ecr.us-iso-east-1.c2s.ic.gov"
-    - "*.dkr.ecr.us-isob-east-1.sc2s.sgov.gov"
+      - "*.dkr.ecr.*.amazonaws.com"
+      - "*.dkr.ecr.*.amazonaws.cn"
+      - "*.dkr.ecr-fips.*.amazonaws.com"
+      - "*.dkr.ecr.us-iso-east-1.c2s.ic.gov"
+      - "*.dkr.ecr.us-isob-east-1.sc2s.sgov.gov"
     # defaultCacheDuration is the default duration the plugin will cache credentials in-memory
     # if a cache duration is not provided in the plugin response. This field is required.
     defaultCacheDuration: "12h"
@@ -101,23 +103,28 @@ providers:
     # Arguments to pass to the command when executing it.
     # +optional
     args:
-    - get-credentials
+      - get-credentials
     # Env defines additional environment variables to expose to the process. These
     # are unioned with the host's environment, as well as variables client-go uses
     # to pass argument to the plugin.
     # +optional
     env:
-    - name: AWS_PROFILE
-      value: example_profile
+      - name: AWS_PROFILE
+        value: example_profile
 ```
 
 The `providers` field is a list of enabled plugins used by the kubelet. Each entry has a few required fields:
-* `name`: the name of the plugin which MUST match the name of the executable binary that exists in the directory passed into `--image-credential-provider-bin-dir`.
-* `matchImages`: a list of strings used to match against images in order to determine if this provider should be invoked. More on this below.
-* `defaultCacheDuration`: the default duration the kubelet will cache credentials in-memory if a cache duration was not specified by the plugin.
-* `apiVersion`: the api version that the kubelet and the exec plugin will use when communicating.
 
-Each credential provider can also be given optional args and environment variables as well. Consult the plugin implementors to determine what set of arguments and environment variables are required for a given plugin.
+* `name`: the name of the plugin which MUST match the name of the executable binary that exists
+  in the directory passed into `--image-credential-provider-bin-dir`.
+* `matchImages`: a list of strings used to match against images in order to determine
+  if this provider should be invoked. More on this below.
+* `defaultCacheDuration`: the default duration the kubelet will cache credentials in-memory
+  if a cache duration was not specified by the plugin.
+* `apiVersion`: the API version that the kubelet and the exec plugin will use when communicating.
+
+Each credential provider can also be given optional args and environment variables as well.
+Consult the plugin implementors to determine what set of arguments and environment variables are required for a given plugin.
 
 #### Configure image matching
 
@@ -134,8 +141,16 @@ A match exists between an image name and a `matchImage` entry when all of the be
 * If the imageMatch contains a port, then the port must match in the image as well.
 
 Some example values of `matchImages` patterns are:
+
 * `123456789.dkr.ecr.us-east-1.amazonaws.com`
 * `*.azurecr.io`
 * `gcr.io`
 * `*.*.registry.io`
 * `foo.registry.io:8080/path`
+
+## {{% heading "whatsnext" %}}
+
+* Read the details about `CredentialProviderConfig` in the
+  [kubelet configuration API (v1alpha1) reference](/docs/reference/config-api/kubelet-config.v1alpha1/).
+* Read the [kubelet credential provider API reference (v1alpha1)](/docs/reference/config-api/kubelet-credentialprovider.v1alpha1/).
+
diff --git a/content/en/docs/tasks/manage-daemon/update-daemon-set.md b/content/en/docs/tasks/manage-daemon/update-daemon-set.md
index a74864fed5..d6d6b68f19 100644
--- a/content/en/docs/tasks/manage-daemon/update-daemon-set.md
+++ b/content/en/docs/tasks/manage-daemon/update-daemon-set.md
@@ -34,13 +34,13 @@ DaemonSet has two update strategy types:
 To enable the rolling update feature of a DaemonSet, you must set its
 `.spec.updateStrategy.type` to `RollingUpdate`.
 
-You may want to set 
-[`.spec.updateStrategy.rollingUpdate.maxUnavailable`](/docs/concepts/workloads/controllers/deployment/#max-unavailable) 
+You may want to set
+[`.spec.updateStrategy.rollingUpdate.maxUnavailable`](/docs/reference/kubernetes-api/workload-resources/daemon-set-v1/#DaemonSetSpec) 
 (default to 1),
-[`.spec.minReadySeconds`](/docs/concepts/workloads/controllers/deployment/#min-ready-seconds) 
-(default to 0) and 
-[`.spec.maxSurge`](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#max-surge) 
-(a beta feature and defaults to 25%) as well.
+[`.spec.minReadySeconds`](/docs/reference/kubernetes-api/workload-resources/daemon-set-v1/#DaemonSetSpec)
+(default to 0) and
+[`.spec.updateStrategy.rollingUpdate.maxSurge`](/docs/reference/kubernetes-api/workload-resources/daemon-set-v1/#DaemonSetSpec)
+(a beta feature and defaults to 0) as well.
 
 ### Creating a DaemonSet with `RollingUpdate` update strategy
 
@@ -79,7 +79,7 @@ kubectl apply -f https://k8s.io/examples/controllers/fluentd-daemonset.yaml --dr
 
 The output from both commands should be:
 
-```shell
+```
 RollingUpdate
 ```
 
diff --git a/content/en/docs/tasks/manage-kubernetes-objects/imperative-command.md b/content/en/docs/tasks/manage-kubernetes-objects/imperative-command.md
index 8e0670a89f..07c631bc3a 100644
--- a/content/en/docs/tasks/manage-kubernetes-objects/imperative-command.md
+++ b/content/en/docs/tasks/manage-kubernetes-objects/imperative-command.md
@@ -165,8 +165,8 @@ kubectl create --edit -f /tmp/srv.yaml
 ## {{% heading "whatsnext" %}}
 
 
-* [Managing Kubernetes Objects Using Object Configuration (Imperative)](/docs/tasks/manage-kubernetes-objects/imperative-config/)
-* [Managing Kubernetes Objects Using Object Configuration (Declarative)](/docs/tasks/manage-kubernetes-objects/declarative-config/)
+* [Imperative Management of Kubernetes Objects Using Configuration Files](/docs/tasks/manage-kubernetes-objects/imperative-config/)
+* [Declarative Management of Kubernetes Objects Using Configuration Files](/docs/tasks/manage-kubernetes-objects/declarative-config/)
 * [Kubectl Command Reference](/docs/reference/generated/kubectl/kubectl-commands/)
 * [Kubernetes API Reference](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)
 
diff --git a/content/en/docs/tasks/manage-kubernetes-objects/imperative-config.md b/content/en/docs/tasks/manage-kubernetes-objects/imperative-config.md
index 87cc423da7..4e59491c62 100644
--- a/content/en/docs/tasks/manage-kubernetes-objects/imperative-config.md
+++ b/content/en/docs/tasks/manage-kubernetes-objects/imperative-config.md
@@ -161,7 +161,7 @@ template:
 
 
 * [Managing Kubernetes Objects Using Imperative Commands](/docs/tasks/manage-kubernetes-objects/imperative-command/)
-* [Managing Kubernetes Objects Using Object Configuration (Declarative)](/docs/tasks/manage-kubernetes-objects/declarative-config/)
+* [Declarative Management of Kubernetes Objects Using Configuration Files](/docs/tasks/manage-kubernetes-objects/declarative-config/)
 * [Kubectl Command Reference](/docs/reference/generated/kubectl/kubectl-commands/)
 * [Kubernetes API Reference](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)
 
diff --git a/content/en/docs/tasks/manage-kubernetes-objects/kustomization.md b/content/en/docs/tasks/manage-kubernetes-objects/kustomization.md
index 9b16c25167..cca985705b 100644
--- a/content/en/docs/tasks/manage-kubernetes-objects/kustomization.md
+++ b/content/en/docs/tasks/manage-kubernetes-objects/kustomization.md
@@ -86,12 +86,20 @@ metadata:
   name: example-configmap-1-8mbdf7882g
 ```
 
-To generate a ConfigMap from an env file, add an entry to the `envs` list in `configMapGenerator`. Here is an example of generating a ConfigMap with a data item from a `.env` file:
+To generate a ConfigMap from an env file, add an entry to the `envs` list in `configMapGenerator`. This can also be used to set values from local environment variables by omitting the `=` and the value.
+
+{{< note >}}
+It's recommended to use the local environment variable population functionality sparingly - an overlay with a patch is often more maintainable. Setting values from the environment may be useful when they cannot easily be predicted, such as a git SHA.
+{{< /note >}}
+
+Here is an example of generating a ConfigMap with a data item from a `.env` file:
 
 ```shell
 # Create a .env file
+# BAZ will be populated from the local environment variable $BAZ
 cat <<EOF >.env
 FOO=Bar
+BAZ
 EOF
 
 cat <<EOF >./kustomization.yaml
@@ -105,7 +113,7 @@ EOF
 The generated ConfigMap can be examined with the following command:
 
 ```shell
-kubectl kustomize ./
+BAZ=Qux kubectl kustomize ./
 ```
 
 The generated ConfigMap is:
@@ -113,10 +121,11 @@ The generated ConfigMap is:
 ```yaml
 apiVersion: v1
 data:
-    FOO=Bar
+  BAZ: Qux
+  FOO: Bar
 kind: ConfigMap
 metadata:
-  name: example-configmap-1-8mbdf7882g
+  name: example-configmap-1-892ghb99c8
 ```
 
 {{< note >}}
@@ -299,7 +308,7 @@ metadata:
 type: Opaque
 ```
 
-Like ConfigMaps, generated Secrets can be used in Deployments by refering to the name of the secretGenerator:
+Like ConfigMaps, generated Secrets can be used in Deployments by referring to the name of the secretGenerator:
 
 ```shell
 # Create a password.txt file
@@ -748,8 +757,8 @@ Since the Service name may change as `namePrefix` or `nameSuffix` is added in th
 not recommended to hard code the Service name in the command argument. For this usage, Kustomize can inject the Service name into containers through `vars`.
 
 ```shell
-# Create a deployment.yaml file
-cat <<EOF > deployment.yaml
+# Create a deployment.yaml file (quoting the here doc delimiter)
+cat <<'EOF' > deployment.yaml
 apiVersion: apps/v1
 kind: Deployment
 metadata:
diff --git a/content/en/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch.md b/content/en/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch.md
index 759eaf76cd..ad2fc41173 100644
--- a/content/en/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch.md
+++ b/content/en/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch.md
@@ -70,14 +70,9 @@ spec:
 
 Patch your Deployment:
 
-{{< tabs name="kubectl_patch_example" >}}
-{{{< tab name="Bash" codelang="bash" >}}
-kubectl patch deployment patch-demo --patch "$(cat patch-file.yaml)"
-{{< /tab >}}
-{{< tab name="PowerShell" codelang="posh" >}}
-kubectl patch deployment patch-demo --patch $(Get-Content patch-file.yaml -Raw)
-{{< /tab >}}}
-{{< /tabs >}}
+```shell
+kubectl patch deployment patch-demo --patch-file patch-file.yaml
+```
 
 View the patched Deployment:
 
@@ -87,7 +82,7 @@ kubectl get deployment patch-demo --output yaml
 
 The output shows that the PodSpec in the Deployment has two Containers:
 
-```shell
+```yaml
 containers:
 - image: redis
   imagePullPolicy: Always
@@ -183,7 +178,7 @@ spec:
 Patch your Deployment:
 
 ```shell
-kubectl patch deployment patch-demo --patch "$(cat patch-file-tolerations.yaml)"
+kubectl patch deployment patch-demo --patch-file patch-file-tolerations.yaml
 ```
 
 View the patched Deployment:
@@ -194,11 +189,11 @@ kubectl get deployment patch-demo --output yaml
 
 The output shows that the PodSpec in the Deployment has only one Toleration:
 
-```shell
+```yaml
 tolerations:
-      - effect: NoSchedule
-        key: disktype
-        value: ssd
+- effect: NoSchedule
+  key: disktype
+  value: ssd
 ```
 
 Notice that the `tolerations` list in the PodSpec was replaced, not merged. This is because
@@ -249,7 +244,7 @@ spec:
 In your patch command, set `type` to `merge`:
 
 ```shell
-kubectl patch deployment patch-demo --type merge --patch "$(cat patch-file-2.yaml)"
+kubectl patch deployment patch-demo --type merge --patch-file patch-file-2.yaml
 ```
 
 View the patched Deployment:
@@ -308,18 +303,13 @@ spec:
 
 Patch your Deployment:
 
-{{< tabs name="kubectl_retainkeys_example" >}}
-{{{< tab name="Bash" codelang="bash" >}}
-kubectl patch deployment retainkeys-demo --type merge --patch "$(cat patch-file-no-retainkeys.yaml)"
-{{< /tab >}}
-{{< tab name="PowerShell" codelang="posh" >}}
-kubectl patch deployment retainkeys-demo --type merge --patch $(Get-Content patch-file-no-retainkeys.yaml -Raw)
-{{< /tab >}}}
-{{< /tabs >}}
+```shell
+kubectl patch deployment retainkeys-demo --type merge --patch-file patch-file-no-retainkeys.yaml
+```
 
 In the output, you can see that it is not possible to set `type` as `Recreate` when a value is defined for `spec.strategy.rollingUpdate`:
 
-```shell
+```
 The Deployment "retainkeys-demo" is invalid: spec.strategy.rollingUpdate: Forbidden: may not be specified when strategy `type` is 'Recreate'
 ```
 
@@ -339,14 +329,9 @@ With this patch, we indicate that we want to retain only the `type` key of the `
 
 Patch your Deployment again with this new patch:
 
-{{< tabs name="kubectl_retainkeys2_example" >}}
-{{{< tab name="Bash" codelang="bash" >}}
-kubectl patch deployment retainkeys-demo --type merge --patch "$(cat patch-file-retainkeys.yaml)"
-{{< /tab >}}
-{{< tab name="PowerShell" codelang="posh" >}}
-kubectl patch deployment retainkeys-demo --type merge --patch $(Get-Content patch-file-retainkeys.yaml -Raw)
-{{< /tab >}}}
-{{< /tabs >}}
+```shell
+kubectl patch deployment retainkeys-demo --type merge --patch-file patch-file-retainkeys.yaml
+```
 
 Examine the content of the Deployment:
 
@@ -356,7 +341,7 @@ kubectl get deployment retainkeys-demo --output yaml
 
 The output shows that the strategy object in the Deployment does not contain the `rollingUpdate` key anymore:
 
-```shell
+```yaml
 spec:
   strategy:
     type: Recreate
@@ -425,10 +410,10 @@ The following commands are equivalent:
 
 
 ```shell
-kubectl patch deployment patch-demo --patch "$(cat patch-file.yaml)"
+kubectl patch deployment patch-demo --patch-file patch-file.yaml
 kubectl patch deployment patch-demo --patch 'spec:\n template:\n  spec:\n   containers:\n   - name: patch-demo-ctr-2\n     image: redis'
 
-kubectl patch deployment patch-demo --patch "$(cat patch-file.json)"
+kubectl patch deployment patch-demo --patch-file patch-file.json
 kubectl patch deployment patch-demo --patch '{"spec": {"template": {"spec": {"containers": [{"name": "patch-demo-ctr-2","image": "redis"}]}}}}'
 ```
 
diff --git a/content/en/docs/tasks/network/customize-hosts-file-for-pods.md b/content/en/docs/tasks/network/customize-hosts-file-for-pods.md
index e396db5d2d..7eba61fbea 100644
--- a/content/en/docs/tasks/network/customize-hosts-file-for-pods.md
+++ b/content/en/docs/tasks/network/customize-hosts-file-for-pods.md
@@ -117,10 +117,15 @@ with the additional entries specified at the bottom.
 
 ## Why does the kubelet manage the hosts file? {#why-does-kubelet-manage-the-hosts-file}
 
-The kubelet [manages](https://github.com/kubernetes/kubernetes/issues/14633) the
-`hosts` file for each container of the Pod to prevent Docker from
-[modifying](https://github.com/moby/moby/issues/17190) the file after the
-containers have already been started.
+The kubelet manages the
+`hosts` file for each container of the Pod to prevent the container runtime from
+modifying the file after the containers have already been started.
+Historically, Kubernetes always used Docker Engine as its container runtime, and Docker Engine would
+then modify the `/etc/hosts` file after each container had started.
+
+Current Kubernetes can use a variety of container runtimes; even so, the kubelet manages the
+hosts file within each container so that the outcome is as intended regardless of which
+container runtime you use.
 
 {{< caution >}}
 Avoid making manual changes to the hosts file inside a container.
diff --git a/content/en/docs/tasks/network/validate-dual-stack.md b/content/en/docs/tasks/network/validate-dual-stack.md
index 717bac27ad..a27fc8050d 100644
--- a/content/en/docs/tasks/network/validate-dual-stack.md
+++ b/content/en/docs/tasks/network/validate-dual-stack.md
@@ -3,7 +3,7 @@ reviewers:
 - lachie83
 - khenidak
 - bridgetkromhout
-min-kubernetes-server-version: v1.20
+min-kubernetes-server-version: v1.23
 title: Validate IPv4/IPv6 dual-stack
 content_type: task
 ---
@@ -16,11 +16,14 @@ This document shares how to validate IPv4/IPv6 dual-stack enabled Kubernetes clu
 
 
 * Provider support for dual-stack networking (Cloud provider or otherwise must be able to provide Kubernetes nodes with routable IPv4/IPv6 network interfaces)
-* A [network plugin](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/) that supports dual-stack (such as Calico, Cilium or Kubenet)
+* A [network plugin](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/) that supports dual-stack networking.
 * [Dual-stack enabled](/docs/concepts/services-networking/dual-stack/) cluster
 
 {{< version-check >}}
 
+{{< note >}}
+While you can validate with an earlier version, the feature is only GA and officially supported since v1.23.
+{{< /note >}}
 
 
 <!-- steps -->
@@ -131,7 +134,7 @@ spec:
     protocol: TCP
     targetPort: 9376
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   sessionAffinity: None
   type: ClusterIP
 status:
@@ -155,7 +158,7 @@ apiVersion: v1
 kind: Service
 metadata:
   labels:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   name: my-service
 spec:
   clusterIP: fd00::5118
@@ -169,7 +172,7 @@ spec:
     protocol: TCP
     targetPort: 80
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   sessionAffinity: None
   type: ClusterIP
 status:
@@ -184,7 +187,7 @@ Create the following Service that explicitly defines `PreferDualStack` in `.spec
 The `kubectl get svc` command will only show the primary IP in the `CLUSTER-IP` field.
 
 ```shell
-kubectl get svc -l app=MyApp
+kubectl get svc -l app.kubernetes.io/name=MyApp
 
 NAME         TYPE        CLUSTER-IP     EXTERNAL-IP   PORT(S)   AGE
 my-service   ClusterIP   10.0.216.242   <none>        80/TCP    5s
@@ -194,15 +197,15 @@ my-service   ClusterIP   10.0.216.242   <none>        80/TCP    5s
 Validate that the Service gets cluster IPs from the IPv4 and IPv6 address blocks using `kubectl describe`. You may then validate access to the service via the IPs and ports.
 
 ```shell
-kubectl describe svc -l app=MyApp
+kubectl describe svc -l app.kubernetes.io/name=MyApp
 ```
 
 ```
 Name:              my-service
 Namespace:         default
-Labels:            app=MyApp
+Labels:            app.kubernetes.io/name=MyApp
 Annotations:       <none>
-Selector:          app=MyApp
+Selector:          app.kubernetes.io/name=MyApp
 Type:              ClusterIP
 IP Family Policy:  PreferDualStack
 IP Families:       IPv4,IPv6
@@ -217,14 +220,14 @@ Events:            <none>
 
 ### Create a dual-stack load balanced Service
 
-If the cloud provider supports the provisioning of IPv6 enabled external load balancers, create the following Service with `PreferDualStack` in `.spec.ipFamilyPolicy`, `IPv6` as the first element of the `.spec.ipFamilies` array and the `type` field set to `LoadBalancer`. 
+If the cloud provider supports the provisioning of IPv6 enabled external load balancers, create the following Service with `PreferDualStack` in `.spec.ipFamilyPolicy`, `IPv6` as the first element of the `.spec.ipFamilies` array and the `type` field set to `LoadBalancer`.
 
 {{< codenew file="service/networking/dual-stack-prefer-ipv6-lb-svc.yaml" >}}
 
 Check the Service:
 
 ```shell
-kubectl get svc -l app=MyApp
+kubectl get svc -l app.kubernetes.io/name=MyApp
 ```
 
 Validate that the Service receives a `CLUSTER-IP` address from the IPv6 address block along with an `EXTERNAL-IP`. You may then validate access to the service via the IP and port.
diff --git a/content/en/docs/tasks/run-application/access-api-from-pod.md b/content/en/docs/tasks/run-application/access-api-from-pod.md
index 9eb2521f7f..d56f624cd5 100644
--- a/content/en/docs/tasks/run-application/access-api-from-pod.md
+++ b/content/en/docs/tasks/run-application/access-api-from-pod.md
@@ -48,7 +48,8 @@ While running in a Pod, the Kubernetes apiserver is accessible via a Service nam
 do this automatically.
 
 The recommended way to authenticate to the API server is with a
-[service account](/docs/tasks/configure-pod-container/configure-service-account/) credential. By default, a Pod
+[service account](/docs/tasks/configure-pod-container/configure-service-account/)
+credential. By default, a Pod
 is associated with a service account, and a credential (token) for that
 service account is placed into the filesystem tree of each container in that Pod,
 at `/var/run/secrets/kubernetes.io/serviceaccount/token`.
diff --git a/content/en/docs/tasks/run-application/configure-pdb.md b/content/en/docs/tasks/run-application/configure-pdb.md
index 3110c2f807..b4c735a330 100644
--- a/content/en/docs/tasks/run-application/configure-pdb.md
+++ b/content/en/docs/tasks/run-application/configure-pdb.md
@@ -173,7 +173,10 @@ automatically responds to changes in the number of replicas of the corresponding
 
 ## Create the PDB object
 
-You can create or update the PDB object with a command like `kubectl apply -f mypdb.yaml`.
+You can create or update the PDB object using kubectl.
+```shell
+kubectl apply -f mypdb.yaml
+```
 
 ## Check the status of the PDB
 
diff --git a/content/en/docs/tasks/run-application/delete-stateful-set.md b/content/en/docs/tasks/run-application/delete-stateful-set.md
index eff3aaee17..a867b73a61 100644
--- a/content/en/docs/tasks/run-application/delete-stateful-set.md
+++ b/content/en/docs/tasks/run-application/delete-stateful-set.md
@@ -50,10 +50,10 @@ For example:
 kubectl delete -f <file.yaml> --cascade=orphan
 ```
 
-By passing `--cascade=orphan` to `kubectl delete`, the Pods managed by the StatefulSet are left behind even after the StatefulSet object itself is deleted. If the pods have a label `app=myapp`, you can then delete them as follows:
+By passing `--cascade=orphan` to `kubectl delete`, the Pods managed by the StatefulSet are left behind even after the StatefulSet object itself is deleted. If the pods have a label `app.kubernetes.io/name=MyApp`, you can then delete them as follows:
 
 ```shell
-kubectl delete pods -l app=myapp
+kubectl delete pods -l app.kubernetes.io/name=MyApp
 ```
 
 ### Persistent Volumes
@@ -70,13 +70,13 @@ To delete everything in a StatefulSet, including the associated pods, you can ru
 
 ```shell
 grace=$(kubectl get pods <stateful-set-pod> --template '{{.spec.terminationGracePeriodSeconds}}')
-kubectl delete statefulset -l app=myapp
+kubectl delete statefulset -l app.kubernetes.io/name=MyApp
 sleep $grace
-kubectl delete pvc -l app=myapp
+kubectl delete pvc -l app.kubernetes.io/name=MyApp
 
 ```
 
-In the example above, the Pods have the label `app=myapp`; substitute your own label as appropriate.
+In the example above, the Pods have the label `app.kubernetes.io/name=MyApp`; substitute your own label as appropriate.
 
 ### Force deletion of StatefulSet pods
 
diff --git a/content/en/docs/tasks/run-application/force-delete-stateful-set-pod.md b/content/en/docs/tasks/run-application/force-delete-stateful-set-pod.md
index 0001f4c9f4..dc8aef2857 100644
--- a/content/en/docs/tasks/run-application/force-delete-stateful-set-pod.md
+++ b/content/en/docs/tasks/run-application/force-delete-stateful-set-pod.md
@@ -51,7 +51,7 @@ Pods may also enter these states when the user attempts graceful deletion of a P
 on an unreachable Node.
 The only ways in which a Pod in such a state can be removed from the apiserver are as follows:
 
-* The Node object is deleted (either by you, or by the [Node Controller](/docs/concepts/architecture/nodes/)).
+* The Node object is deleted (either by you, or by the [Node Controller](/docs/concepts/architecture/nodes/#node-controller)).
 * The kubelet on the unresponsive Node starts responding, kills the Pod and removes the entry from the apiserver.
 * Force deletion of the Pod by the user.
 
@@ -90,6 +90,6 @@ Always perform force deletion of StatefulSet Pods carefully and with complete kn
 ## {{% heading "whatsnext" %}}
 
 
-Learn more about [debugging a StatefulSet](/docs/tasks/debug-application-cluster/debug-stateful-set/).
+Learn more about [debugging a StatefulSet](/docs/tasks/debug/debug-application/debug-statefulset/).
 
 
diff --git a/content/en/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough.md b/content/en/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough.md
index 6328d458fb..383435b2d2 100644
--- a/content/en/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough.md
+++ b/content/en/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough.md
@@ -4,42 +4,59 @@ reviewers:
 - jszczepkowski
 - justinsb
 - directxman12
-title: Horizontal Pod Autoscaler Walkthrough
+title: HorizontalPodAutoscaler Walkthrough
 content_type: task
 weight: 100
+min-kubernetes-server-version: 1.23
 ---
 
 <!-- overview -->
 
-Horizontal Pod Autoscaler automatically scales the number of Pods
-in a replication controller, deployment, replica set or stateful set based on observed CPU utilization
-(or, with beta support, on some other, application-provided metrics).
+A [HorizontalPodAutoscaler](/docs/tasks/run-application/horizontal-pod-autoscale/)
+(HPA for short)
+automatically updates a workload resource (such as
+a {{< glossary_tooltip text="Deployment" term_id="deployment" >}} or
+{{< glossary_tooltip text="StatefulSet" term_id="statefulset" >}}), with the
+aim of automatically scaling the workload to match demand.
 
-This document walks you through an example of enabling Horizontal Pod Autoscaler for the php-apache server.
-For more information on how Horizontal Pod Autoscaler behaves, see the
-[Horizontal Pod Autoscaler user guide](/docs/tasks/run-application/horizontal-pod-autoscale/).
+Horizontal scaling means that the response to increased load is to deploy more
+{{< glossary_tooltip text="Pods" term_id="pod" >}}.
+This is different from _vertical_ scaling, which for Kubernetes would mean
+assigning more resources (for example: memory or CPU) to the Pods that are already
+running for the workload.
+
+If the load decreases, and the number of Pods is above the configured minimum,
+the HorizontalPodAutoscaler instructs the workload resource (the Deployment, StatefulSet,
+or other similar resource) to scale back down.
+
+This document walks you through an example of enabling HorizontalPodAutoscaler to
+automatically manage scale for an example web app. This example workload is Apache
+httpd running some PHP code.
 
 ## {{% heading "prerequisites" %}}
 
-This example requires a running Kubernetes cluster and kubectl, version 1.2 or later.
-[Metrics server](https://github.com/kubernetes-sigs/metrics-server) monitoring needs to be deployed
-in the cluster to provide metrics through the [Metrics API](https://github.com/kubernetes/metrics).
-Horizontal Pod Autoscaler uses this API to collect metrics. To learn how to deploy the metrics-server,
-see the [metrics-server documentation](https://github.com/kubernetes-sigs/metrics-server#deployment).
+{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}} If you're running an older
+release of Kubernetes, refer to the version of the documentation for that release (see
+[available documentation versions](/docs/home/supported-doc-versions/)).
 
-To specify multiple resource metrics for a Horizontal Pod Autoscaler, you must have a
-Kubernetes cluster and kubectl at version 1.6 or later. To make use of custom metrics, your cluster
-must be able to communicate with the API server providing the custom Metrics API.
-Finally, to use metrics not related to any Kubernetes object you must have a
-Kubernetes cluster at version 1.10 or later, and you must be able to communicate
-with the API server that provides the external Metrics API.
-See the [Horizontal Pod Autoscaler user guide](/docs/tasks/run-application/horizontal-pod-autoscale/#support-for-custom-metrics) for more details.
+To follow this walkthrough, you also need to use a cluster that has a
+[Metrics Server](https://github.com/kubernetes-sigs/metrics-server#readme) deployed and configured.
+The Kubernetes Metrics Server collects resource metrics from
+the {{<glossary_tooltip term_id="kubelet" text="kubelets">}} in your cluster, and exposes those metrics
+through the [Kubernetes API](/docs/concepts/overview/kubernetes-api/),
+using an [APIService](/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/) to add
+new kinds of resource that represent metric readings.
+
+To learn how to deploy the Metrics Server, see the
+[metrics-server documentation](https://github.com/kubernetes-sigs/metrics-server#deployment).
 
 <!-- steps -->
 
 ## Run and expose php-apache server
 
-To demonstrate Horizontal Pod Autoscaler we will use a custom docker image based on the php-apache image. The Dockerfile has the following content:
+To demonstrate a HorizontalPodAutoscaler, you will first make a custom container image that uses
+the `php-apache` image from Docker Hub as its starting point. The `Dockerfile` is ready-made for you,
+and has the following content:
 
 ```dockerfile
 FROM php:5-apache
@@ -47,7 +64,8 @@ COPY index.php /var/www/html/index.php
 RUN chmod a+rx index.php
 ```
 
-It defines an index.php page which performs some CPU intensive computations:
+This code defines a simple `index.php` page that performs some CPU intensive computations,
+in order to simulate load in your cluster.
 
 ```php
 <?php
@@ -59,12 +77,13 @@ It defines an index.php page which performs some CPU intensive computations:
 ?>
 ```
 
-First, we will start a deployment running the image and expose it as a service
-using the following configuration:
+Once you have made that container image, start a Deployment that runs a container using the
+image you made, and expose it as a {{< glossary_tooltip term_id="service">}}
+using the following manifest:
 
 {{< codenew file="application/php-apache.yaml" >}}
 
-Run the following command:
+To do so, run the following command:
 
 ```shell
 kubectl apply -f https://k8s.io/examples/application/php-apache.yaml
@@ -75,16 +94,27 @@ deployment.apps/php-apache created
 service/php-apache created
 ```
 
-## Create Horizontal Pod Autoscaler
+## Create the HorizontalPodAutoscaler {#create-horizontal-pod-autoscaler}
 
-Now that the server is running, we will create the autoscaler using
-[kubectl autoscale](/docs/reference/generated/kubectl/kubectl-commands#autoscale).
-The following command will create a Horizontal Pod Autoscaler that maintains between 1 and 10 replicas of the Pods
-controlled by the php-apache deployment we created in the first step of these instructions.
-Roughly speaking, HPA will increase and decrease the number of replicas
-(via the deployment) to maintain an average CPU utilization across all Pods of 50%
-(since each pod requests 200 milli-cores by `kubectl run`), this means average CPU usage of 100 milli-cores).
-See [here](/docs/tasks/run-application/horizontal-pod-autoscale/#algorithm-details) for more details on the algorithm.
+Now that the server is running, create the autoscaler using `kubectl`. There is
+[`kubectl autoscale`](/docs/reference/generated/kubectl/kubectl-commands#autoscale) subcommand,
+part of `kubectl`, that helps you do this.
+
+You will shortly run a command that creates a HorizontalPodAutoscaler that maintains
+between 1 and 10 replicas of the Pods controlled by the php-apache Deployment that
+you created in the first step of these instructions.
+
+Roughly speaking, the HPA {{<glossary_tooltip text="controller" term_id="controller">}} will increase and decrease
+the number of replicas (by updating the Deployment) to maintain an average CPU utilization across all Pods of 50%.
+The Deployment then updates the ReplicaSet - this is part of how all Deployments work in Kubernetes -
+and then the ReplicaSet either adds or removes Pods based on the change to its `.spec`.
+
+Since each pod requests 200 milli-cores by `kubectl run`, this means an average CPU usage of 100 milli-cores.
+See [Algorithm details](/docs/tasks/run-application/horizontal-pod-autoscale/#algorithm-details) for more details
+on the algorithm.
+
+
+Create the HorizontalPodAutoscaler:
 
 ```shell
 kubectl autoscale deployment php-apache --cpu-percent=50 --min=1 --max=10
@@ -94,47 +124,64 @@ kubectl autoscale deployment php-apache --cpu-percent=50 --min=1 --max=10
 horizontalpodautoscaler.autoscaling/php-apache autoscaled
 ```
 
-We may check the current status of autoscaler by running:
+You can check the current status of the newly-made HorizontalPodAutoscaler, by running:
 
 ```shell
+# You can use "hpa" or "horizontalpodautoscaler"; either name works OK.
 kubectl get hpa
 ```
 
+The output is similar to:
 ```
 NAME         REFERENCE                     TARGET    MINPODS   MAXPODS   REPLICAS   AGE
 php-apache   Deployment/php-apache/scale   0% / 50%  1         10        1          18s
 ```
 
-Please note that the current CPU consumption is 0% as we are not sending any requests to the server
-(the ``TARGET`` column shows the average across all the pods controlled by the corresponding deployment).
+(if you see other HorizontalPodAutoscalers with different names, that means they already existed,
+and isn't usually a problem).
 
-## Increase load
+Please note that the current CPU consumption is 0% as there are no clients sending requests to the server
+(the ``TARGET`` column shows the average across all the Pods controlled by the corresponding deployment).
 
-Now, we will see how the autoscaler reacts to increased load.
-We will start a container, and send an infinite loop of queries to the php-apache service (please run it in a different terminal):
+## Increase the load {#increase-load}
+
+Next, see how the autoscaler reacts to increased load.
+To do this, you'll start a different Pod to act as a client. The container within the client Pod
+runs in an infinite loop, sending queries to the php-apache service.
 
 ```shell
-kubectl run -i --tty load-generator --rm --image=busybox --restart=Never -- /bin/sh -c "while sleep 0.01; do wget -q -O- http://php-apache; done"
+# Run this in a separate terminal
+# so that the load generation continues and you can carry on with the rest of the steps
+kubectl run -i --tty load-generator --rm --image=busybox:1.28 --restart=Never -- /bin/sh -c "while sleep 0.01; do wget -q -O- http://php-apache; done"
 ```
 
-Within a minute or so, we should see the higher CPU load by executing:
-
+Now run:
 ```shell
-kubectl get hpa
+# type Ctrl+C to end the watch when you're ready
+kubectl get hpa php-apache --watch
 ```
 
+Within a minute or so, you should see the higher CPU load; for example:
+
 ```
 NAME         REFERENCE                     TARGET      MINPODS   MAXPODS   REPLICAS   AGE
 php-apache   Deployment/php-apache/scale   305% / 50%  1         10        1          3m
 ```
 
+and then, more replicas. For example:
+```
+NAME         REFERENCE                     TARGET      MINPODS   MAXPODS   REPLICAS   AGE
+php-apache   Deployment/php-apache/scale   305% / 50%  1         10        7          3m
+```
+
 Here, CPU consumption has increased to 305% of the request.
-As a result, the deployment was resized to 7 replicas:
+As a result, the Deployment was resized to 7 replicas:
 
 ```shell
 kubectl get deployment php-apache
 ```
 
+You should see the replica count matching the figure from the HorizontalPodAutoscaler
 ```
 NAME         READY   UP-TO-DATE   AVAILABLE   AGE
 php-apache   7/7      7           7           19m
@@ -146,24 +193,29 @@ of load is not controlled in any way it may happen that the final number of repl
 will differ from this example.
 {{< /note >}}
 
-## Stop load
+## Stop generating load {#stop-load}
 
-We will finish our example by stopping the user load.
+To finish the example, stop sending the load.
 
-In the terminal where we created the container with `busybox` image, terminate
+In the terminal where you created the Pod that runs a `busybox` image, terminate
 the load generation by typing `<Ctrl> + C`.
 
-Then we will verify the result state (after a minute or so):
+Then verify the result state (after a minute or so):
 
 ```shell
-kubectl get hpa
+# type Ctrl+C to end the watch when you're ready
+kubectl get hpa php-apache --watch
 ```
 
+The output is similar to:
+
 ```
 NAME         REFERENCE                     TARGET       MINPODS   MAXPODS   REPLICAS   AGE
 php-apache   Deployment/php-apache/scale   0% / 50%     1         10        1          11m
 ```
 
+and the Deployment also shows that it has scaled down:
+
 ```shell
 kubectl get deployment php-apache
 ```
@@ -173,20 +225,18 @@ NAME         READY   UP-TO-DATE   AVAILABLE   AGE
 php-apache   1/1     1            1           27m
 ```
 
-Here CPU utilization dropped to 0, and so HPA autoscaled the number of replicas back down to 1.
+Once CPU utilization dropped to 0, the HPA automatically scaled the number of replicas back down to 1.
 
-{{< note >}}
 Autoscaling the replicas may take a few minutes.
-{{< /note >}}
 
 <!-- discussion -->
 
 ## Autoscaling on multiple metrics and custom metrics
 
 You can introduce additional metrics to use when autoscaling the `php-apache` Deployment
-by making use of the `autoscaling/v2beta2` API version.
+by making use of the `autoscaling/v2` API version.
 
-First, get the YAML of your HorizontalPodAutoscaler in the `autoscaling/v2beta2` form:
+First, get the YAML of your HorizontalPodAutoscaler in the `autoscaling/v2` form:
 
 ```shell
 kubectl get hpa php-apache -o yaml > /tmp/hpa-v2.yaml
@@ -195,7 +245,7 @@ kubectl get hpa php-apache -o yaml > /tmp/hpa-v2.yaml
 Open the `/tmp/hpa-v2.yaml` file in an editor, and you should see YAML which looks like this:
 
 ```yaml
-apiVersion: autoscaling/v2beta2
+apiVersion: autoscaling/v2
 kind: HorizontalPodAutoscaler
 metadata:
   name: php-apache
@@ -271,7 +321,7 @@ object:
   metric:
     name: requests-per-second
   describedObject:
-    apiVersion: networking.k8s.io/v1beta1
+    apiVersion: networking.k8s.io/v1
     kind: Ingress
     name: main-route
   target:
@@ -287,7 +337,7 @@ For example, if you had your monitoring system collecting metrics about network
 you could update the definition above using `kubectl edit` to look like this:
 
 ```yaml
-apiVersion: autoscaling/v2beta2
+apiVersion: autoscaling/v2
 kind: HorizontalPodAutoscaler
 metadata:
   name: php-apache
@@ -317,7 +367,7 @@ spec:
       metric:
         name: requests-per-second
       describedObject:
-        apiVersion: networking.k8s.io/v1beta1
+        apiVersion: networking.k8s.io/v1
         kind: Ingress
         name: main-route
       target:
@@ -340,7 +390,7 @@ status:
       metric:
         name: requests-per-second
       describedObject:
-        apiVersion: networking.k8s.io/v1beta1
+        apiVersion: networking.k8s.io/v1
         kind: Ingress
         name: main-route
       current:
@@ -411,7 +461,7 @@ access to any metric, so cluster administrators should take care when exposing i
 
 ## Appendix: Horizontal Pod Autoscaler Status Conditions
 
-When using the `autoscaling/v2beta2` form of the HorizontalPodAutoscaler, you will be able to see
+When using the `autoscaling/v2` form of the HorizontalPodAutoscaler, you will be able to see
 *status conditions* set by Kubernetes on the HorizontalPodAutoscaler.  These status conditions indicate
 whether or not the HorizontalPodAutoscaler is able to scale, and whether or not it is currently restricted
 in any way.
@@ -444,7 +494,7 @@ Conditions:
 Events:
 ```
 
-For this HorizontalPodAutoscaler, we can see several conditions in a healthy state.  The first,
+For this HorizontalPodAutoscaler, you can see several conditions in a healthy state.  The first,
 `AbleToScale`, indicates whether or not the HPA is able to fetch and update scales, as well as
 whether or not any backoff-related conditions would prevent scaling.  The second, `ScalingActive`,
 indicates whether or not the HPA is enabled (i.e. the replica count of the target is not zero) and
@@ -454,7 +504,7 @@ was capped by the maximum or minimum of the HorizontalPodAutoscaler.  This is an
 you may wish to raise or lower the minimum or maximum replica count constraints on your
 HorizontalPodAutoscaler.
 
-## Appendix: Quantities
+## Quantities
 
 All metrics in the HorizontalPodAutoscaler and metrics APIs are specified using
 a special whole-number notation known in Kubernetes as a
@@ -464,16 +514,16 @@ will return whole numbers without a suffix when possible, and will generally ret
 quantities in milli-units otherwise.  This means you might see your metric value fluctuate
 between `1` and `1500m`, or `1` and `1.5` when written in decimal notation.
 
-## Appendix: Other possible scenarios
+## Other possible scenarios
 
 ### Creating the autoscaler declaratively
 
 Instead of using `kubectl autoscale` command to create a HorizontalPodAutoscaler imperatively we
-can use the following file to create it declaratively:
+can use the following manifest to create it declaratively:
 
 {{< codenew file="application/hpa/php-apache.yaml" >}}
 
-We will create the autoscaler by executing the following command:
+Then, create the autoscaler by executing the following command:
 
 ```shell
 kubectl create -f https://k8s.io/examples/application/hpa/php-apache.yaml
diff --git a/content/en/docs/tasks/run-application/horizontal-pod-autoscale.md b/content/en/docs/tasks/run-application/horizontal-pod-autoscale.md
index 27165d0ca7..2adfa3dc6a 100644
--- a/content/en/docs/tasks/run-application/horizontal-pod-autoscale.md
+++ b/content/en/docs/tasks/run-application/horizontal-pod-autoscale.md
@@ -3,83 +3,107 @@ reviewers:
 - fgrzadkowski
 - jszczepkowski
 - directxman12
-title: Horizontal Pod Autoscaler
+title: Horizontal Pod Autoscaling
 feature:
   title: Horizontal scaling
   description: >
     Scale your application up and down with a simple command, with a UI, or automatically based on CPU usage.
-
 content_type: concept
 weight: 90
 ---
 
 <!-- overview -->
 
-The Horizontal Pod Autoscaler automatically scales the number of Pods
-in a replication controller, deployment, replica set or stateful set based on observed CPU utilization (or, with
-[custom metrics](https://git.k8s.io/community/contributors/design-proposals/instrumentation/custom-metrics-api.md)
-support, on some other application-provided metrics). Note that Horizontal
-Pod Autoscaling does not apply to objects that can't be scaled, for example, DaemonSets.
+In Kubernetes, a _HorizontalPodAutoscaler_ automatically updates a workload resource (such as
+a {{< glossary_tooltip text="Deployment" term_id="deployment" >}} or
+{{< glossary_tooltip text="StatefulSet" term_id="statefulset" >}}), with the
+aim of automatically scaling the workload to match demand.
 
-The Horizontal Pod Autoscaler is implemented as a Kubernetes API resource and a controller.
+Horizontal scaling means that the response to increased load is to deploy more
+{{< glossary_tooltip text="Pods" term_id="pod" >}}.
+This is different from _vertical_ scaling, which for Kubernetes would mean
+assigning more resources (for example: memory or CPU) to the Pods that are already
+running for the workload.
+
+If the load decreases, and the number of Pods is above the configured minimum,
+the HorizontalPodAutoscaler instructs the workload resource (the Deployment, StatefulSet,
+or other similar resource) to scale back down.
+
+Horizontal pod autoscaling does not apply to objects that can't be scaled (for example:
+a {{< glossary_tooltip text="DaemonSet" term_id="daemonset" >}}.)
+
+The HorizontalPodAutoscaler is implemented as a Kubernetes API resource and a
+{{< glossary_tooltip text="controller" term_id="controller" >}}.
 The resource determines the behavior of the controller.
-The controller periodically adjusts the number of replicas in a replication controller or deployment to match the observed metrics such as average CPU utilisation, average memory utilisation or any other custom metric to the target specified by the user.
-
+The horizontal pod autoscaling controller, running within the Kubernetes
+{{< glossary_tooltip text="control plane" term_id="control-plane" >}}, periodically adjusts the
+desired scale of its target (for example, a Deployment) to match observed metrics such as average
+CPU utilization, average memory utilization, or any other custom metric you specify.
 
+There is [walkthrough example](/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/) of using
+horizontal pod autoscaling.
 
 <!-- body -->
 
-## How does the Horizontal Pod Autoscaler work?
+## How does a HorizontalPodAutoscaler work?
 
-![Horizontal Pod Autoscaler diagram](/images/docs/horizontal-pod-autoscaler.svg)
+{{< figure src="/images/docs/horizontal-pod-autoscaler.svg" caption="HorizontalPodAutoscaler controls the scale of a Deployment and its ReplicaSet" class="diagram-medium">}}
 
-The Horizontal Pod Autoscaler is implemented as a control loop, with a period controlled
-by the controller manager's `--horizontal-pod-autoscaler-sync-period` flag (with a default
-value of 15 seconds).
+Kubernetes implements horizontal pod autoscaling as a control loop that runs intermittently
+(it is not a continuous process). The interval is set by the
+`--horizontal-pod-autoscaler-sync-period` parameter to the
+[`kube-controller-manager`](/docs/reference/command-line-tools-reference/kube-controller-manager/)
+(and the default interval is 15 seconds).
 
-During each period, the controller manager queries the resource utilization against the
-metrics specified in each HorizontalPodAutoscaler definition.  The controller manager
-obtains the metrics from either the resource metrics API (for per-pod resource metrics),
+Once during each period, the controller manager queries the resource utilization against the
+metrics specified in each HorizontalPodAutoscaler definition.  The controller manager 
+finds the target resource defined by the `scaleTargetRef`,
+then selects the pods based on the target resource's `.spec.selector` labels, and obtains the metrics from either the resource metrics API (for per-pod resource metrics),
 or the custom metrics API (for all other metrics).
 
 * For per-pod resource metrics (like CPU), the controller fetches the metrics
   from the resource metrics API for each Pod targeted by the HorizontalPodAutoscaler.
   Then, if a target utilization value is set, the controller calculates the utilization
-  value as a percentage of the equivalent resource request on the containers in
-  each Pod.  If a target raw value is set, the raw metric values are used directly.
+  value as a percentage of the equivalent
+  [resource request](/docs/concepts/configuration/manage-resources-containers/#requests-and-limits)
+  on the containers in each Pod.  If a target raw value is set, the raw metric values are used directly.
   The controller then takes the mean of the utilization or the raw value (depending on the type
   of target specified) across all targeted Pods, and produces a ratio used to scale
   the number of desired replicas.
 
   Please note that if some of the Pod's containers do not have the relevant resource request set,
   CPU utilization for the Pod will not be defined and the autoscaler will
-  not take any action for that metric. See the [algorithm
-  details](#algorithm-details) section below for more information about
-  how the autoscaling algorithm works.
+  not take any action for that metric. See the [algorithm details](#algorithm-details) section below
+  for more information about how the autoscaling algorithm works.
 
 * For per-pod custom metrics, the controller functions similarly to per-pod resource metrics,
   except that it works with raw values, not utilization values.
 
 * For object metrics and external metrics, a single metric is fetched, which describes
   the object in question. This metric is compared to the target
-  value, to produce a ratio as above. In the `autoscaling/v2beta2` API
+  value, to produce a ratio as above. In the `autoscaling/v2` API
   version, this value can optionally be divided by the number of Pods before the
   comparison is made.
 
-The HorizontalPodAutoscaler normally fetches metrics from a series of aggregated APIs (`metrics.k8s.io`,
-`custom.metrics.k8s.io`, and `external.metrics.k8s.io`).  The `metrics.k8s.io` API is usually provided by
-metrics-server, which needs to be launched separately. For more information about resource metrics, see [Metrics Server](/docs/tasks/debug-application-cluster/resource-metrics-pipeline/#metrics-server).
+The common use for HorizontalPodAutoscaler is to configure it to fetch metrics from
+{{< glossary_tooltip text="aggregated APIs" term_id="aggregation-layer" >}}
+(`metrics.k8s.io`, `custom.metrics.k8s.io`, or `external.metrics.k8s.io`).  The `metrics.k8s.io` API is
+usually provided by an add-on named Metrics Server, which needs to be launched separately.
+For more information about resource metrics, see
+[Metrics Server](/docs/tasks/debug/debug-cluster/resource-metrics-pipeline/#metrics-server).
 
-See [Support for metrics APIs](#support-for-metrics-apis) for more details.
+[Support for metrics APIs](#support-for-metrics-apis) explains the stability guarantees and support status for these
+different APIs.
 
-The autoscaler accesses corresponding scalable controllers (such as replication controllers, deployments, and replica sets)
-by using the scale sub-resource. Scale is an interface that allows you to dynamically set the number of replicas and examine
-each of their current states. More details on scale sub-resource can be found
-[here](https://git.k8s.io/community/contributors/design-proposals/autoscaling/horizontal-pod-autoscaler.md#scale-subresource).
+The HorizontalPodAutoscaler controller accesses corresponding workload resources that support scaling (such as Deployments
+and StatefulSet). These resources each have a subresource named `scale`, an interface that allows you to dynamically set the
+number of replicas and examine each of their current states.
+For general information about subresources in the Kubernetes API, see
+[Kubernetes API Concepts](/docs/reference/using-api/api-concepts/).
 
-### Algorithm Details
+### Algorithm details
 
-From the most basic perspective, the Horizontal Pod Autoscaler controller
+From the most basic perspective, the HorizontalPodAutoscaler controller
 operates on the ratio between desired metric value and current metric
 value:
 
@@ -89,26 +113,28 @@ desiredReplicas = ceil[currentReplicas * ( currentMetricValue / desiredMetricVal
 
 For example, if the current metric value is `200m`, and the desired value
 is `100m`, the number of replicas will be doubled, since `200.0 / 100.0 ==
-2.0` If the current value is instead `50m`, we'll halve the number of
-replicas, since `50.0 / 100.0 == 0.5`.  We'll skip scaling if the ratio is
-sufficiently close to 1.0 (within a globally-configurable tolerance, from
-the `--horizontal-pod-autoscaler-tolerance` flag, which defaults to 0.1).
+2.0` If the current value is instead `50m`, you'll halve the number of
+replicas, since `50.0 / 100.0 == 0.5`.  The control plane skips any scaling
+action if the ratio is sufficiently close to 1.0 (within a globally-configurable
+tolerance, 0.1 by default).
 
 When a `targetAverageValue` or `targetAverageUtilization` is specified,
 the `currentMetricValue` is computed by taking the average of the given
 metric across all Pods in the HorizontalPodAutoscaler's scale target.
-Before checking the tolerance and deciding on the final values, we take
-pod readiness and missing metrics into consideration, however.
 
-All Pods with a deletion timestamp set (i.e. Pods in the process of being
-shut down) and all failed Pods are discarded.
+Before checking the tolerance and deciding on the final values, the control
+plane also considers whether any metrics are missing, and how many Pods
+are [`Ready`](/docs/concepts/workloads/pods/pod-lifecycle/#pod-conditions).
+All Pods with a deletion timestamp set (objects with a deletion timestamp are
+in the process of being shut down / removed) are ignored, and all failed Pods
+are discarded.
 
 If a particular Pod is missing metrics, it is set aside for later; Pods
 with missing metrics will be used to adjust the final scaling amount.
 
-When scaling on CPU, if any pod has yet to become ready (i.e. it's still
-initializing) *or* the most recent metric point for the pod was before it
-became ready, that pod is set aside as well.
+When scaling on CPU, if any pod has yet to become ready (it's still
+initializing, or possibly is unhealthy) *or* the most recent metric point for
+the pod was before it became ready, that pod is set aside as well.
 
 Due to technical constraints, the HorizontalPodAutoscaler controller
 cannot exactly determine the first time a pod becomes ready when
@@ -124,20 +150,21 @@ default is 5 minutes.
 The `currentMetricValue / desiredMetricValue` base scale ratio is then
 calculated using the remaining pods not set aside or discarded from above.
 
-If there were any missing metrics, we recompute the average more
+If there were any missing metrics, the control plane recomputes the average more
 conservatively, assuming those pods were consuming 100% of the desired
 value in case of a scale down, and 0% in case of a scale up.  This dampens
 the magnitude of any potential scale.
 
-Furthermore, if any not-yet-ready pods were present, and we would have
-scaled up without factoring in missing metrics or not-yet-ready pods, we
-conservatively assume the not-yet-ready pods are consuming 0% of the
-desired metric, further dampening the magnitude of a scale up.
+Furthermore, if any not-yet-ready pods were present, and the workload would have
+scaled up without factoring in missing metrics or not-yet-ready pods,
+the controller conservatively assumes that the not-yet-ready pods are consuming 0%
+of the desired metric, further dampening the magnitude of a scale up.
 
-After factoring in the not-yet-ready pods and missing metrics, we
-recalculate the usage ratio.  If the new ratio reverses the scale
-direction, or is within the tolerance, we skip scaling.  Otherwise, we use
-the new ratio to scale.
+After factoring in the not-yet-ready pods and missing metrics, the
+controller recalculates the usage ratio.  If the new ratio reverses the scale
+direction, or is within the tolerance, the controller doesn't take any scaling
+action. In other cases, the new ratio is used to decide any change to the
+number of Pods.
 
 Note that the *original* value for the average utilization is reported
 back via the HorizontalPodAutoscaler status, without factoring in the
@@ -161,32 +188,25 @@ fluctuating metric values.
 
 ## API Object
 
-The Horizontal Pod Autoscaler is an API resource in the Kubernetes `autoscaling` API group.
-The current stable version, which only includes support for CPU autoscaling,
-can be found in the `autoscaling/v1` API version.
-
-The beta version, which includes support for scaling on memory and custom metrics,
-can be found in `autoscaling/v2beta2`. The new fields introduced in `autoscaling/v2beta2`
-are preserved as annotations when working with `autoscaling/v1`.
+The Horizontal Pod Autoscaler is an API resource in the Kubernetes
+`autoscaling` API group.  The current stable version can be found in
+the `autoscaling/v2` API version which includes support for scaling on
+memory and custom metrics. The new fields introduced in
+`autoscaling/v2` are preserved as annotations when working with
+`autoscaling/v1`.
 
 When you create a HorizontalPodAutoscaler API object, make sure the name specified is a valid
 [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 More details about the API object can be found at
-[HorizontalPodAutoscaler Object](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#horizontalpodautoscaler-v1-autoscaling).
+[HorizontalPodAutoscaler Object](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#horizontalpodautoscaler-v2-autoscaling).
 
+## Stability of workload scale {#flapping}
 
-## Support for Horizontal Pod Autoscaler in kubectl
+When managing the scale of a group of replicas using the HorizontalPodAutoscaler,
+it is possible that the number of replicas keeps fluctuating frequently due to the
+dynamic nature of the metrics evaluated. This is sometimes referred to as *thrashing*,
+or *flapping*. It's similar to the concept of *hysteresis* in cybernetics.
 
-Horizontal Pod Autoscaler, like every API resource, is supported in a standard way by `kubectl`.
-We can create a new autoscaler using `kubectl create` command.
-We can list autoscalers by `kubectl get hpa` and get detailed description by `kubectl describe hpa`.
-Finally, we can delete an autoscaler using `kubectl delete hpa`.
-
-In addition, there is a special `kubectl autoscale` command for creating a HorizontalPodAutoscaler object.
-For instance, executing `kubectl autoscale rs foo --min=2 --max=5 --cpu-percent=80`
-will create an autoscaler for replication set *foo*, with target CPU utilization set to `80%`
-and the number of replicas between 2 and 5.
-The detailed documentation of `kubectl autoscale` can be found [here](/docs/reference/generated/kubectl/kubectl-commands/#autoscale).
 
 
 ## Autoscaling during rolling update
@@ -203,31 +223,6 @@ If you perform a rolling update of a StatefulSet that has an autoscaled number o
 replicas, the StatefulSet directly manages its set of Pods (there is no intermediate resource
 similar to ReplicaSet).
 
-## Support for cooldown/delay
-
-When managing the scale of a group of replicas using the Horizontal Pod Autoscaler,
-it is possible that the number of replicas keeps fluctuating frequently due to the
-dynamic nature of the metrics evaluated. This is sometimes referred to as *thrashing*.
-
-Starting from v1.6, a cluster operator can mitigate this problem by tuning
-the global HPA settings exposed as flags for the `kube-controller-manager` component:
-
-Starting from v1.12, a new algorithmic update removes the need for the
-upscale delay.
-
-- `--horizontal-pod-autoscaler-downscale-stabilization`: Specifies the duration of the
-  downscale stabilization time window. Horizontal Pod Autoscaler remembers
-  the historical recommended sizes and only acts on the largest size within this time window.
-  The default value is 5 minutes (`5m0s`).
-
-{{< note >}}
-When tuning these parameter values, a cluster operator should be aware of the possible
-consequences. If the delay (cooldown) value is set too long, there could be complaints
-that the Horizontal Pod Autoscaler is not responsive to workload changes. However, if
-the delay value is set too short, the scale of the replicas set may keep thrashing as
-usual.
-{{< /note >}}
-
 ## Support for resource metrics
 
 Any HPA target can be scaled based on the resource usage of the pods in the scaling target.
@@ -256,11 +251,11 @@ a single container might be running with high usage and the HPA will not scale o
 pod usage is still within acceptable limits.
 {{< /note >}}
 
-### Container Resource Metrics
+### Container resource metrics
 
 {{< feature-state for_k8s_version="v1.20" state="alpha" >}}
 
-`HorizontalPodAutoscaler` also supports a container metric source where the HPA can track the
+The HorizontalPodAutoscaler API also supports a container metric source where the HPA can track the
 resource usage of individual containers across a set of Pods, in order to scale the target resource.
 This lets you configure scaling thresholds for the containers that matter most in a particular Pod.
 For example, if you have a web application and a logging sidecar, you can scale based on the resource
@@ -272,6 +267,7 @@ scaling. If the specified container in the metric source is not present or only
 of the pods then those pods are ignored and the recommendation is recalculated. See [Algorithm](#algorithm-details)
 for more details about the calculation. To use container resources for autoscaling define a metric
 source as follows:
+
 ```yaml
 type: ContainerResource
 containerResource:
@@ -297,28 +293,32 @@ Once you have rolled out the container name change to the workload resource, tid
 the old container name from the HPA specification.
 {{< /note >}}
 
-## Support for multiple metrics
 
-Kubernetes 1.6 adds support for scaling based on multiple metrics. You can use the `autoscaling/v2beta2` API
-version to specify multiple metrics for the Horizontal Pod Autoscaler to scale on. Then, the Horizontal Pod
-Autoscaler controller will evaluate each metric, and propose a new scale based on that metric. The largest of the
-proposed scales will be used as the new scale.
+## Scaling on custom metrics
 
-## Support for custom metrics
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
 
-{{< note >}}
-Kubernetes 1.2 added alpha support for scaling based on application-specific metrics using special annotations.
-Support for these annotations was removed in Kubernetes 1.6 in favor of the new autoscaling API.  While the old method for collecting
-custom metrics is still available, these metrics will not be available for use by the Horizontal Pod Autoscaler, and the former
-annotations for specifying which custom metrics to scale on are no longer honored by the Horizontal Pod Autoscaler controller.
-{{< /note >}}
+(the `autoscaling/v2beta2` API version previously provided this ability as a beta feature)
 
-Kubernetes 1.6 adds support for making use of custom metrics in the Horizontal Pod Autoscaler.
-You can add custom metrics for the Horizontal Pod Autoscaler to use in the `autoscaling/v2beta2` API.
-Kubernetes then queries the new custom metrics API to fetch the values of the appropriate custom metrics.
+Provided that you use the `autoscaling/v2` API version, you can configure a HorizontalPodAutoscaler
+to scale based on a custom metric (that is not built in to Kubernetes or any Kubernetes component).
+The HorizontalPodAutoscaler controller then queries for these custom metrics from the Kubernetes
+API.
 
 See [Support for metrics APIs](#support-for-metrics-apis) for the requirements.
 
+## Scaling on multiple metrics
+
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
+
+(the `autoscaling/v2beta2` API version previously provided this ability as a beta feature)
+
+Provided that you use the `autoscaling/v2` API version, you can specify multiple metrics for a
+HorizontalPodAutoscaler to scale on. Then, the HorizontalPodAutoscaler controller evaluates each metric,
+and proposes a new scale based on that metric. The HorizontalPodAutoscaler takes the maximum scale
+recommended for each metric and sets the workload to that size (provided that this isn't larger than the
+overall maximum that you configured).
+
 ## Support for metrics APIs
 
 By default, the HorizontalPodAutoscaler controller retrieves metrics from a series of APIs.  In order for it to access these
@@ -329,34 +329,38 @@ APIs, cluster administrators must ensure that:
 * The corresponding APIs are registered:
 
    * For resource metrics, this is the `metrics.k8s.io` API, generally provided by [metrics-server](https://github.com/kubernetes-sigs/metrics-server).
-     It can be launched as a cluster addon.
+     It can be launched as a cluster add-on.
 
    * For custom metrics, this is the `custom.metrics.k8s.io` API.  It's provided by "adapter" API servers provided by metrics solution vendors.
-     Check with your metrics pipeline, or the [list of known solutions](https://github.com/kubernetes/metrics/blob/master/IMPLEMENTATIONS.md#custom-metrics-api).
-     If you would like to write your own, check out the [boilerplate](https://github.com/kubernetes-sigs/custom-metrics-apiserver) to get started.
+     Check with your metrics pipeline to see if there is a Kubernetes metrics adapter available.
 
    * For external metrics, this is the `external.metrics.k8s.io` API.  It may be provided by the custom metrics adapters provided above.
 
 For more information on these different metrics paths and how they differ please see the relevant design proposals for
-[the HPA V2](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/autoscaling/hpa-v2.md),
-[custom.metrics.k8s.io](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/instrumentation/custom-metrics-api.md)
-and [external.metrics.k8s.io](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/instrumentation/external-metrics-api.md).
+[the HPA V2](https://git.k8s.io/design-proposals-archive/autoscaling/hpa-v2.md),
+[custom.metrics.k8s.io](https://git.k8s.io/design-proposals-archive/instrumentation/custom-metrics-api.md)
+and [external.metrics.k8s.io](https://git.k8s.io/design-proposals-archive/instrumentation/external-metrics-api.md).
 
 For examples of how to use them see [the walkthrough for using custom metrics](/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/#autoscaling-on-multiple-metrics-and-custom-metrics)
 and [the walkthrough for using external metrics](/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/#autoscaling-on-metrics-not-related-to-kubernetes-objects).
 
-## Support for configurable scaling behavior
+## Configurable scaling behavior
 
-Starting from
-[v1.18](https://github.com/kubernetes/enhancements/blob/master/keps/sig-autoscaling/853-configurable-hpa-scale-velocity/README.md)
-the `v2beta2` API allows scaling behavior to be configured through the HPA
-`behavior` field. Behaviors are specified separately for scaling up and down in
-`scaleUp` or `scaleDown` section under the `behavior` field. A stabilization
-window can be specified for both directions which prevents the flapping of the
-number of the replicas in the scaling target. Similarly specifying scaling
-policies controls the rate of change of replicas while scaling.
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
 
-### Scaling Policies
+(the `autoscaling/v2beta2` API version previously provided this ability as a beta feature)
+
+If you use the `v2` HorizontalPodAutoscaler API, you can use the `behavior` field
+(see the [API reference](/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v2/#HorizontalPodAutoscalerSpec))
+to configure separate scale-up and scale-down behaviors.
+You specify these behaviours by setting `scaleUp` and / or `scaleDown`
+under the `behavior` field.
+
+You can specify a _stabilization window_ that prevents [flapping](#flapping)
+the replica count for a scaling target. Scaling policies also let you controls the
+rate of change of replicas while scaling.
+
+### Scaling policies
 
 One or more scaling policies can be specified in the `behavior` section of the spec.
 When multiple policies are specified the policy which allows the highest amount of
@@ -393,21 +397,27 @@ direction. By setting the value to `Min` which would select the policy which all
 smallest change in the replica count. Setting the value to `Disabled` completely disables
 scaling in that direction.
 
-### Stabilization Window
+### Stabilization window
 
-The stabilization window is used to restrict the flapping of replicas when the metrics
-used for scaling keep fluctuating. The stabilization window is used by the autoscaling
-algorithm to consider the computed desired state from the past to prevent scaling. In
-the following example the stabilization window is specified for `scaleDown`.
+The stabilization window is used to restrict the [flapping](#flapping) of
+replica count when the metrics used for scaling keep fluctuating. The autoscaling algorithm
+uses this window to infer a previous desired state and avoid unwanted changes to workload
+scale.
+
+For example, in the following example snippet, a stabilization window is specified for `scaleDown`.
 
 ```yaml
-scaleDown:
-  stabilizationWindowSeconds: 300
+behavior:
+  scaleDown:
+    stabilizationWindowSeconds: 300
 ```
 
 When the metrics indicate that the target should be scaled down the algorithm looks
-into previously computed desired states and uses the highest value from the specified
-interval. In above example all desired states from the past 5 minutes will be considered.
+into previously computed desired states, and uses the highest value from the specified
+interval. In the above example, all desired states from the past 5 minutes will be considered.
+
+This approximates a rolling maximum, and avoids having the scaling algorithm frequently
+remove Pods only to trigger recreating an equivalent Pod just moments later.
 
 ### Default Behavior
 
@@ -495,6 +505,18 @@ behavior:
     selectPolicy: Disabled
 ```
 
+## Support for HorizontalPodAutoscaler in kubectl
+
+HorizontalPodAutoscaler, like every API resource, is supported in a standard way by `kubectl`.
+You can create a new autoscaler using `kubectl create` command.
+You can list autoscalers by `kubectl get hpa` or get detailed description by `kubectl describe hpa`.
+Finally, you can delete an autoscaler using `kubectl delete hpa`.
+
+In addition, there is a special `kubectl autoscale` command for creating a HorizontalPodAutoscaler object.
+For instance, executing `kubectl autoscale rs foo --min=2 --max=5 --cpu-percent=80`
+will create an autoscaler for ReplicaSet *foo*, with target CPU utilization set to `80%`
+and the number of replicas between 2 and 5.
+
 ## Implicit maintenance-mode deactivation
 
 You can implicitly deactivate the HPA for a target without the
@@ -504,9 +526,54 @@ stops adjusting the target (and sets the `ScalingActive` Condition on itself
 to `false`) until you reactivate it by manually adjusting the target's desired
 replica count or HPA's minimum replica count.
 
+### Migrating Deployments and StatefulSets to horizontal autoscaling
+
+When an HPA is enabled, it is recommended that the value of `spec.replicas` of
+the Deployment and / or StatefulSet be removed from their
+{{< glossary_tooltip text="manifest(s)" term_id="manifest" >}}.  If this isn't done, any time
+a change to that object is applied, for example via `kubectl apply -f
+deployment.yaml`, this will instruct Kubernetes to scale the current number of Pods
+to the value of the `spec.replicas` key. This may not be
+desired and could be troublesome when an HPA is active.
+
+Keep in mind that the removal of `spec.replicas` may incur a one-time
+degradation of Pod counts as the default value of this key is 1 (reference
+[Deployment Replicas](/docs/concepts/workloads/controllers/deployment#replicas)).
+Upon the update, all Pods except 1 will begin their termination procedures.  Any
+deployment application afterwards will behave as normal and respect a rolling
+update configuration as desired.  You can avoid this degradation by choosing one of the following two
+methods based on how you are modifying your deployments:
+
+{{< tabs name="fix_replicas_instructions" >}}
+{{% tab name="Client Side Apply (this is the default)" %}}
+
+1. `kubectl apply edit-last-applied deployment/<deployment_name>`
+2. In the editor, remove `spec.replicas`. When you save and exit the editor, `kubectl`
+    applies the update.  No changes to Pod counts happen at this step.
+3. You can now remove `spec.replicas` from the manifest. If you use source code management,
+    also commit your changes or take whatever other steps for revising the source code
+    are appropriate for how you track updates.
+4. From here on out you can run `kubectl apply -f deployment.yaml`
+
+{{% /tab %}}
+{{% tab name="Server Side Apply" %}}
+
+When using the [Server-Side Apply](/docs/reference/using-api/server-side-apply/)
+you can follow the [transferring ownership](/docs/reference/using-api/server-side-apply/#transferring-ownership)
+guidelines, which cover this exact use case.
+
+{{% /tab %}}
+{{< /tabs >}}
+
 ## {{% heading "whatsnext" %}}
 
+If you configure autoscaling in your cluster, you may also want to consider running a
+cluster-level autoscaler such as [Cluster Autoscaler](https://github.com/kubernetes/autoscaler/tree/master/cluster-autoscaler).
 
-* Design documentation: [Horizontal Pod Autoscaling](https://git.k8s.io/community/contributors/design-proposals/autoscaling/horizontal-pod-autoscaler.md).
-* kubectl autoscale command: [kubectl autoscale](/docs/reference/generated/kubectl/kubectl-commands/#autoscale).
-* Usage example of [Horizontal Pod Autoscaler](/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/).
+For more information on HorizontalPodAutoscaler:
+
+* Read a [walkthrough example](/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/) for horizontal pod autoscaling.
+* Read documentation for [`kubectl autoscale`](/docs/reference/generated/kubectl/kubectl-commands/#autoscale).
+* If you would like to write your own custom metrics adapter, check out the
+  [boilerplate](https://github.com/kubernetes-sigs/custom-metrics-apiserver) to get started.
+* Read the [API reference](/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v2/) for HorizontalPodAutoscaler.
diff --git a/content/en/docs/tasks/run-application/run-replicated-stateful-application.md b/content/en/docs/tasks/run-application/run-replicated-stateful-application.md
index e98830b9e3..89127691e9 100644
--- a/content/en/docs/tasks/run-application/run-replicated-stateful-application.md
+++ b/content/en/docs/tasks/run-application/run-replicated-stateful-application.md
@@ -14,7 +14,7 @@ weight: 30
 <!-- overview -->
 
 This page shows how to run a replicated stateful application using a
-[StatefulSet](/docs/concepts/workloads/controllers/statefulset/) controller.
+{{< glossary_tooltip term_id="statefulset" >}}.
 This application is a replicated MySQL database. The example topology has a
 single primary server and multiple replicas, using asynchronous row-based
 replication.
@@ -24,12 +24,10 @@ replication.
 on general patterns for running stateful applications in Kubernetes.
 {{< /note >}}
 
-
-
 ## {{% heading "prerequisites" %}}
 
 
-* {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+* {{< include "task-tutorial-prereqs.md" >}}
 * {{< include "default-storage-class-prereqs.md" >}}
 * This tutorial assumes you are familiar with
   [PersistentVolumes](/docs/concepts/storage/persistent-volumes/)
@@ -46,7 +44,7 @@ on general patterns for running stateful applications in Kubernetes.
 ## {{% heading "objectives" %}}
 
 
-* Deploy a replicated MySQL topology with a StatefulSet controller.
+* Deploy a replicated MySQL topology with a StatefulSet.
 * Send MySQL client traffic.
 * Observe resistance to downtime.
 * Scale the StatefulSet up and down.
@@ -60,7 +58,7 @@ on general patterns for running stateful applications in Kubernetes.
 The example MySQL deployment consists of a ConfigMap, two Services,
 and a StatefulSet.
 
-### ConfigMap
+### Create a ConfigMap {#configmap}
 
 Create the ConfigMap from the following YAML configuration file:
 
@@ -71,7 +69,7 @@ kubectl apply -f https://k8s.io/examples/application/mysql/mysql-configmap.yaml
 ```
 
 This ConfigMap provides `my.cnf` overrides that let you independently control
-configuration on the primary MySQL server and replicas.
+configuration on the primary MySQL server and its replicas.
 In this case, you want the primary server to be able to serve replication logs to replicas
 and you want replicas to reject any writes that don't come via replication.
 
@@ -80,7 +78,7 @@ portions to apply to different Pods.
 Each Pod decides which portion to look at as it's initializing,
 based on information provided by the StatefulSet controller.
 
-### Services
+### Create Services {#services}
 
 Create the Services from the following YAML configuration file:
 
@@ -90,23 +88,24 @@ Create the Services from the following YAML configuration file:
 kubectl apply -f https://k8s.io/examples/application/mysql/mysql-services.yaml
 ```
 
-The Headless Service provides a home for the DNS entries that the StatefulSet
-controller creates for each Pod that's part of the set.
-Because the Headless Service is named `mysql`, the Pods are accessible by
+The headless Service provides a home for the DNS entries that the StatefulSet
+{{< glossary_tooltip text="controllers" term_id="controller" >}} creates for each
+Pod that's part of the set.
+Because the headless Service is named `mysql`, the Pods are accessible by
 resolving `<pod-name>.mysql` from within any other Pod in the same Kubernetes
 cluster and namespace.
 
-The Client Service, called `mysql-read`, is a normal Service with its own
+The client Service, called `mysql-read`, is a normal Service with its own
 cluster IP that distributes connections across all MySQL Pods that report
 being Ready. The set of potential endpoints includes the primary MySQL server and all
 replicas.
 
-Note that only read queries can use the load-balanced Client Service.
+Note that only read queries can use the load-balanced client Service.
 Because there is only one primary MySQL server, clients should connect directly to the
-primary MySQL Pod (through its DNS entry within the Headless Service) to execute
+primary MySQL Pod (through its DNS entry within the headless Service) to execute
 writes.
 
-### StatefulSet
+### Create the StatefulSet {#statefulset}
 
 Finally, create the StatefulSet from the following YAML configuration file:
 
@@ -122,7 +121,7 @@ You can watch the startup progress by running:
 kubectl get pods -l app=mysql --watch
 ```
 
-After a while, you should see all 3 Pods become Running:
+After a while, you should see all 3 Pods become `Running`:
 
 ```
 NAME      READY     STATUS    RESTARTS   AGE
@@ -132,8 +131,11 @@ mysql-2   2/2       Running   0          1m
 ```
 
 Press **Ctrl+C** to cancel the watch.
+
+{{< note >}}
 If you don't see any progress, make sure you have a dynamic PersistentVolume
-provisioner enabled as mentioned in the [prerequisites](#before-you-begin).
+provisioner enabled, as mentioned in the [prerequisites](#before-you-begin).
+{{< /note >}}
 
 This manifest uses a variety of techniques for managing stateful Pods as part of
 a StatefulSet. The next section highlights some of these techniques to explain
@@ -155,10 +157,10 @@ properties to perform orderly startup of MySQL replication.
 ### Generating configuration
 
 Before starting any of the containers in the Pod spec, the Pod first runs any
-[Init Containers](/docs/concepts/workloads/pods/init-containers/)
+[init containers](/docs/concepts/workloads/pods/init-containers/)
 in the order defined.
 
-The first Init Container, named `init-mysql`, generates special MySQL config
+The first init container, named `init-mysql`, generates special MySQL config
 files based on the ordinal index.
 
 The script determines its own ordinal index by extracting it from the end of
@@ -166,8 +168,7 @@ the Pod name, which is returned by the `hostname` command.
 Then it saves the ordinal (with a numeric offset to avoid reserved values)
 into a file called `server-id.cnf` in the MySQL `conf.d` directory.
 This translates the unique, stable identity provided by the StatefulSet
-controller into the domain of MySQL server IDs, which require the same
-properties.
+into the domain of MySQL server IDs, which require the same properties.
 
 The script in the `init-mysql` container also applies either `primary.cnf` or
 `replica.cnf` from the ConfigMap by copying the contents into `conf.d`.
@@ -187,7 +188,7 @@ logs might not go all the way back to the beginning of time.
 These conservative assumptions are the key to allow a running StatefulSet
 to scale up and down over time, rather than being fixed at its initial size.
 
-The second Init Container, named `clone-mysql`, performs a clone operation on
+The second init container, named `clone-mysql`, performs a clone operation on
 a replica Pod the first time it starts up on an empty PersistentVolume.
 That means it copies all existing data from another running Pod,
 so its local state is consistent enough to begin replicating from the primary server.
@@ -202,10 +203,10 @@ Ready before starting Pod `N+1`.
 
 ### Starting replication
 
-After the Init Containers complete successfully, the regular containers run.
+After the init containers complete successfully, the regular containers run.
 The MySQL Pods consist of a `mysql` container that runs the actual `mysqld`
 server, and an `xtrabackup` container that acts as a
-[sidecar](https://kubernetes.io/blog/2015/06/the-distributed-system-toolkit-patterns).
+[sidecar](/blog/2015/06/the-distributed-system-toolkit-patterns).
 
 The `xtrabackup` sidecar looks at the cloned data files and determines if
 it's necessary to initialize MySQL replication on the replica.
@@ -291,13 +292,13 @@ endpoint might be selected upon each connection attempt:
 You can press **Ctrl+C** when you want to stop the loop, but it's useful to keep
 it running in another window so you can see the effects of the following steps.
 
-## Simulating Pod and Node downtime
+## Simulate Pod and Node failure {#simulate-pod-and-node-downtime}
 
 To demonstrate the increased availability of reading from the pool of replicas
 instead of a single server, keep the `SELECT @@server_id` loop from above
 running while you force a Pod out of the Ready state.
 
-### Break the Readiness Probe
+### Break the Readiness probe
 
 The [readiness probe](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#define-readiness-probes)
 for the `mysql` container runs the command `mysql -h 127.0.0.1 -e 'SELECT 1'`
@@ -371,14 +372,18 @@ NAME      READY     STATUS    RESTARTS   AGE       IP            NODE
 mysql-2   2/2       Running   0          15m       10.244.5.27   kubernetes-node-9l2t
 ```
 
-Then drain the Node by running the following command, which cordons it so
+Then, drain the Node by running the following command, which cordons it so
 no new Pods may schedule there, and then evicts any existing Pods.
 Replace `<node-name>` with the name of the Node you found in the last step.
 
-This might impact other applications on the Node, so it's best to
-**only do this in a test cluster**.
+{{< caution >}}
+Draining a Node can impact other workloads and applications 
+running on the same node. Only perform the following step in a test
+cluster.
+{{< /caution >}}
 
 ```shell
+# See above advice about impact on other workloads
 kubectl drain <node-name> --force --delete-emptydir-data --ignore-daemonsets
 ```
 
@@ -413,8 +418,9 @@ kubectl uncordon <node-name>
 
 ## Scaling the number of replicas
 
-With MySQL replication, you can scale your read query capacity by adding replicas.
-With StatefulSet, you can do this with a single command:
+When you use MySQL replication, you can scale your read query capacity by
+adding replicas.
+For a StatefulSet, you can achieve this with a single command:
 
 ```shell
 kubectl scale statefulset mysql  --replicas=5
@@ -453,10 +459,13 @@ Scaling back down is also seamless:
 kubectl scale statefulset mysql --replicas=3
 ```
 
-Note, however, that while scaling up creates new PersistentVolumeClaims
+{{< note >}}
+Although scaling up creates new PersistentVolumeClaims
 automatically, scaling down does not automatically delete these PVCs.
+
 This gives you the choice to keep those initialized PVCs around to make
 scaling back up quicker, or to extract data before deleting them.
+{{< /note >}}
 
 You can see this by running:
 
@@ -532,7 +541,7 @@ kubectl delete pvc data-mysql-4
 ## {{% heading "whatsnext" %}}
 
 * Learn more about [scaling a StatefulSet](/docs/tasks/run-application/scale-stateful-set/).
-* Learn more about [debugging a StatefulSet](/docs/tasks/debug-application-cluster/debug-stateful-set/).
+* Learn more about [debugging a StatefulSet](/docs/tasks/debug/debug-application/debug-statefulset/).
 * Learn more about [deleting a StatefulSet](/docs/tasks/run-application/delete-stateful-set/).
 * Learn more about [force deleting StatefulSet Pods](/docs/tasks/run-application/force-delete-stateful-set-pod/).
 * Look in the [Helm Charts repository](https://artifacthub.io/)
diff --git a/content/en/docs/tasks/service-catalog/_index.md b/content/en/docs/tasks/service-catalog/_index.md
deleted file mode 100644
index 77e5fa25e4..0000000000
--- a/content/en/docs/tasks/service-catalog/_index.md
+++ /dev/null
@@ -1,6 +0,0 @@
----
-title: "Service Catalog"
-description: Install the Service Catalog extension API.
-weight: 150
----
-
diff --git a/content/en/docs/tasks/service-catalog/install-service-catalog-using-helm.md b/content/en/docs/tasks/service-catalog/install-service-catalog-using-helm.md
deleted file mode 100644
index b01f380a1a..0000000000
--- a/content/en/docs/tasks/service-catalog/install-service-catalog-using-helm.md
+++ /dev/null
@@ -1,116 +0,0 @@
----
-title: Install Service Catalog using Helm
-reviewers:
-- chenopis
-content_type: task
----
-
-<!-- overview -->
-{{< glossary_definition term_id="service-catalog" length="all" prepend="Service Catalog is" >}}  
-
-Use [Helm](https://helm.sh/) to install Service Catalog on your Kubernetes cluster.
-Up to date information on this process can be found at the
-[kubernetes-sigs/service-catalog](https://github.com/kubernetes-sigs/service-catalog/blob/master/docs/install.md) repo.
-
-## {{% heading "prerequisites" %}}
-
-* Understand the key concepts of [Service Catalog](/docs/concepts/extend-kubernetes/service-catalog/).
-* Service Catalog requires a Kubernetes cluster running version 1.7 or higher.
-* You must have a Kubernetes cluster with cluster DNS enabled.
-    * If you are using a cloud-based Kubernetes cluster or {{< glossary_tooltip text="Minikube" term_id="minikube" >}}, you may already have cluster DNS enabled.
-    * If you are using `hack/local-up-cluster.sh`, ensure that the `KUBE_ENABLE_CLUSTER_DNS` environment variable is set, then run the install script.
-* [Install and setup kubectl](/docs/tasks/tools/) v1.7 or higher. Make sure it is configured to connect to the Kubernetes cluster.
-* Install [Helm](https://helm.sh/) v2.7.0 or newer.
-    * Follow the [Helm install instructions](https://helm.sh/docs/intro/install/).
-    * If you already have an appropriate version of Helm installed, execute `helm init` to install Tiller, the server-side component of Helm.
-
-
-
-
-<!-- steps -->
-## Add the service-catalog Helm repository
-
-Once Helm is installed, add the *service-catalog* Helm repository to your local machine by executing the following command:
-
-```shell
-helm repo add svc-cat https://kubernetes-sigs.github.io/service-catalog
-```
-
-Check to make sure that it installed successfully by executing the following command:
-
-```shell
-helm search repo service-catalog
-```
-
-If the installation was successful, the command should output the following:
-
-```
-NAME                	CHART VERSION	APP VERSION	DESCRIPTION                                                 
-svc-cat/catalog     	0.2.1        	           	service-catalog API server and controller-manager helm chart
-svc-cat/catalog-v0.2	0.2.2        	           	service-catalog API server and controller-manager helm chart
-```
-
-## Enable RBAC
-
-Your Kubernetes cluster must have RBAC enabled, which requires your Tiller Pod(s) to have `cluster-admin` access.
-
-When using Minikube v0.25 or older, you must run Minikube with RBAC explicitly enabled:
-
-```shell
-minikube start --extra-config=apiserver.Authorization.Mode=RBAC
-```
-
-When using Minikube v0.26+, run:
-
-```shell
-minikube start
-```
-
-With Minikube v0.26+, do not specify `--extra-config`. The flag has since been changed to --extra-config=apiserver.authorization-mode and Minikube now uses RBAC by default. Specifying the older flag may cause the start command to hang.
-
-If you are using `hack/local-up-cluster.sh`, set the `AUTHORIZATION_MODE` environment variable with the following values:
-
-```
-AUTHORIZATION_MODE=Node,RBAC hack/local-up-cluster.sh -O
-```
-
-By default, `helm init` installs the Tiller Pod into the `kube-system` namespace, with Tiller configured to use the `default` service account.
-
-{{< note >}}
-If you used the `--tiller-namespace` or `--service-account` flags when running `helm init`, the `--serviceaccount` flag in the following command needs to be adjusted to reference the appropriate namespace and ServiceAccount name.
-{{< /note >}}
-
-Configure Tiller to have `cluster-admin` access:
-
-```shell
-kubectl create clusterrolebinding tiller-cluster-admin \
-    --clusterrole=cluster-admin \
-    --serviceaccount=kube-system:default
-```
-
-
-## Install Service Catalog in your Kubernetes cluster
-
-Install Service Catalog from the root of the Helm repository using the following command:
-
-{{< tabs name="helm-versions" >}} 
-{{% tab name="Helm version 3" %}}
-```shell
-helm install catalog svc-cat/catalog --namespace catalog
-```
-{{% /tab %}}
-{{% tab name="Helm version 2" %}}
-```shell
-helm install svc-cat/catalog --name catalog --namespace catalog
-```
-{{% /tab %}}
-{{< /tabs >}}
-
-
-
-## {{% heading "whatsnext" %}}
-
-* View [sample service brokers](https://github.com/openservicebrokerapi/servicebroker/blob/master/gettingStarted.md#sample-service-brokers).
-* Explore the [kubernetes-sigs/service-catalog](https://github.com/kubernetes-sigs/service-catalog) project.
-
-
diff --git a/content/en/docs/tasks/service-catalog/install-service-catalog-using-sc.md b/content/en/docs/tasks/service-catalog/install-service-catalog-using-sc.md
deleted file mode 100644
index a724d5b17b..0000000000
--- a/content/en/docs/tasks/service-catalog/install-service-catalog-using-sc.md
+++ /dev/null
@@ -1,80 +0,0 @@
----
-title: Install Service Catalog using SC
-reviewers:
-- chenopis
-content_type: task
----
-
-<!-- overview -->
-{{< glossary_definition term_id="service-catalog" length="all" prepend="Service Catalog is" >}}
-
-You can use the GCP [Service Catalog Installer](https://github.com/GoogleCloudPlatform/k8s-service-catalog#installation)
-tool to easily install or uninstall Service Catalog on your Kubernetes cluster, linking it to
-Google Cloud projects.
-
-Service Catalog can work with any kind of managed service, not only Google Cloud.
-
-## {{% heading "prerequisites" %}}
-
-* Understand the key concepts of [Service Catalog](/docs/concepts/extend-kubernetes/service-catalog/).
-* Install [Go 1.6+](https://golang.org/dl/) and set the `GOPATH`.
-* Install the [cfssl](https://github.com/cloudflare/cfssl) tool needed for generating SSL artifacts.
-* Service Catalog requires Kubernetes version 1.7+.
-* [Install and setup kubectl](/docs/tasks/tools/) so that it is configured to connect to a Kubernetes v1.7+ cluster.
-* The kubectl user must be bound to the *cluster-admin* role for it to install Service Catalog. To ensure that this is true, run the following command:
-
-        kubectl create clusterrolebinding cluster-admin-binding --clusterrole=cluster-admin --user=<user-name>
-
-
-
-
-<!-- steps -->
-## Install `sc` in your local environment
-
-The installer runs on your local computer as a CLI tool named `sc`.
-
-Install using `go get`:
-
-```shell
-go get github.com/GoogleCloudPlatform/k8s-service-catalog/installer/cmd/sc
-```
-
-`sc` should now be installed in your `GOPATH/bin` directory.
-
-## Install Service Catalog in your Kubernetes cluster
-
-First, verify that all dependencies have been installed. Run:
-
-```shell
-sc check
-```
-
-If the check is successful, it should return:
-
-```
-Dependency check passed. You are good to go.
-```
-
-Next, run the install command and specify the `storageclass` that you want to use for the backup:
-
-```shell
-sc install --etcd-backup-storageclass "standard"
-```
-
-## Uninstall Service Catalog
-
-If you would like to uninstall Service Catalog from your Kubernetes cluster using the `sc` tool, run:
-
-```shell
-sc uninstall
-```
-
-
-
-
-## {{% heading "whatsnext" %}}
-
-* View [sample service brokers](https://github.com/openservicebrokerapi/servicebroker/blob/master/gettingStarted.md#sample-service-brokers).
-* Explore the [kubernetes-sigs/service-catalog](https://github.com/kubernetes-sigs/service-catalog) project.
-
-
diff --git a/content/en/docs/tasks/tls/certificate-rotation.md b/content/en/docs/tasks/tls/certificate-rotation.md
index 2db0c1255d..8d1992845c 100644
--- a/content/en/docs/tasks/tls/certificate-rotation.md
+++ b/content/en/docs/tasks/tls/certificate-rotation.md
@@ -28,7 +28,7 @@ default, these certificates are issued with one year expiration so that they do
 not need to be renewed too frequently.
 
 Kubernetes contains [kubelet certificate
-rotation](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/),
+rotation](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/),
 that will automatically generate a new key and request a new certificate from
 the Kubernetes API as the current certificate approaches expiration. Once the
 new certificate is available, it will be used for authenticating connections to
diff --git a/content/en/docs/tasks/tls/managing-tls-in-a-cluster.md b/content/en/docs/tasks/tls/managing-tls-in-a-cluster.md
index 6ea02a06af..bca428d750 100644
--- a/content/en/docs/tasks/tls/managing-tls-in-a-cluster.md
+++ b/content/en/docs/tasks/tls/managing-tls-in-a-cluster.md
@@ -18,7 +18,7 @@ draft](https://github.com/ietf-wg-acme/acme/).
 
 {{< note >}}
 Certificates created using the `certificates.k8s.io` API are signed by a
-dedicated CA. It is possible to configure your cluster to use the cluster root
+[dedicated CA](#configuring-your-cluster-to-provide-signing). It is possible to configure your cluster to use the cluster root
 CA for this purpose, but you should never rely on this. Do not assume that
 these certificates will validate against the cluster root CA.
 {{< /note >}}
@@ -29,26 +29,40 @@ these certificates will validate against the cluster root CA.
 ## {{% heading "prerequisites" %}}
 
 
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+{{< include "task-tutorial-prereqs.md" >}}
 
+You need the `cfssl` tool. You can download `cfssl` from
+[https://github.com/cloudflare/cfssl/releases](https://github.com/cloudflare/cfssl/releases).
 
+Some steps in this page use the `jq` tool. If you don't have `jq`, you can
+install it via your operating system's software sources, or fetch it from
+[https://stedolan.github.io/jq/](https://stedolan.github.io/jq/).
 
 <!-- steps -->
 
-## Trusting TLS in a Cluster
+## Trusting TLS in a cluster
 
-Trusting the custom CA from an application running as a pod usually requires
+Trusting the [custom CA](#configuring-your-cluster-to-provide-signing) from an application running as a pod usually requires
 some extra application configuration. You will need to add the CA certificate
 bundle to the list of CA certificates that the TLS client or server trusts. For
 example, you would do this with a golang TLS config by parsing the certificate
 chain and adding the parsed certificates to the `RootCAs` field in the
-[`tls.Config`](https://godoc.org/crypto/tls#Config) struct.
+[`tls.Config`](https://pkg.go.dev/crypto/tls#Config) struct.
 
-You can distribute the CA certificate as a
-[ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap) that your
-pods have access to use.
+{{< note >}}
+Even though the custom CA certificate may be included in the filesystem (in the
+ConfigMap `kube-root-ca.crt`),
+you should not use that certificate authority for any purpose other than to verify internal
+Kubernetes endpoints. An example of an internal Kubernetes endpoint is the
+Service named `kubernetes` in the default namespace.
 
-## Requesting a Certificate
+If you want to use a custom certificate authority for your workloads, you should generate
+that CA separately, and distribute its CA certificate using a 
+[ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap) that your pods 
+have access to read.
+{{< /note >}}
+
+## Requesting a certificate
 
 The following section demonstrates how to create a TLS certificate for a
 Kubernetes service accessed through DNS.
@@ -57,12 +71,7 @@ Kubernetes service accessed through DNS.
 This tutorial uses CFSSL: Cloudflare's PKI and TLS toolkit [click here](https://blog.cloudflare.com/introducing-cfssl/) to know more.
 {{< /note >}}
 
-## Download and install CFSSL
-
-The cfssl tools used in this example can be downloaded at
-[https://github.com/cloudflare/cfssl/releases](https://github.com/cloudflare/cfssl/releases).
-
-## Create a Certificate Signing Request
+## Create a certificate signing request
 
 Generate a private key and certificate signing request (or CSR) by running
 the following command:
@@ -76,16 +85,11 @@ cat <<EOF | cfssl genkey - | cfssljson -bare server
     "192.0.2.24",
     "10.0.34.2"
   ],
-  "CN": "system:node:my-pod.my-namespace.pod.cluster.local",
+  "CN": "my-pod.my-namespace.pod.cluster.local",
   "key": {
     "algo": "ecdsa",
     "size": 256
-  },
-  "names": [
-    {
-      "O": "system:nodes"
-    }
-  ]
+  }
 }
 EOF
 ```
@@ -93,24 +97,24 @@ EOF
 Where `192.0.2.24` is the service's cluster IP,
 `my-svc.my-namespace.svc.cluster.local` is the service's DNS name,
 `10.0.34.2` is the pod's IP and `my-pod.my-namespace.pod.cluster.local`
-is the pod's DNS name. You should see the following output:
+is the pod's DNS name. You should see the output similar to:
 
 ```
-2017/03/21 06:48:17 [INFO] generate received request
-2017/03/21 06:48:17 [INFO] received CSR
-2017/03/21 06:48:17 [INFO] generating key: ecdsa-256
-2017/03/21 06:48:17 [INFO] encoded CSR
+2022/02/01 11:45:32 [INFO] generate received request
+2022/02/01 11:45:32 [INFO] received CSR
+2022/02/01 11:45:32 [INFO] generating key: ecdsa-256
+2022/02/01 11:45:32 [INFO] encoded CSR
 ```
 
 This command generates two files; it generates `server.csr` containing the PEM
-encoded [pkcs#10](https://tools.ietf.org/html/rfc2986) certification request,
+encoded [PKCS#10](https://tools.ietf.org/html/rfc2986) certification request,
 and `server-key.pem` containing the PEM encoded key to the certificate that
 is still to be created.
 
-## Create a Certificate Signing Request object to send to the Kubernetes API
+## Create a CertificateSigningRequest object to send to the Kubernetes API
 
-Generate a CSR yaml blob and send it to the apiserver by running the following
-command:
+Generate a CSR manifest (in YAML), and send it to the API server. You can do that by
+running the following command:
 
 ```shell
 cat <<EOF | kubectl apply -f -
@@ -120,7 +124,7 @@ metadata:
   name: my-svc.my-namespace
 spec:
   request: $(cat server.csr | base64 | tr -d '\n')
-  signerName: kubernetes.io/kubelet-serving
+  signerName: example.com/serving
   usages:
   - digital signature
   - key encipherment
@@ -129,9 +133,9 @@ EOF
 ```
 
 Notice that the `server.csr` file created in step 1 is base64 encoded
-and stashed in the `.spec.request` field. We are also requesting a
+and stashed in the `.spec.request` field. You are also requesting a
 certificate with the "digital signature", "key encipherment", and "server
-auth" key usages, signed by the `kubernetes.io/kubelet-serving` signer.
+auth" key usages, signed by an example `example.com/serving` signer.
 A specific `signerName` must be requested.
 View documentation for [supported signer names](/docs/reference/access-authn-authz/certificate-signing-requests/#signers)
 for more information.
@@ -147,58 +151,192 @@ kubectl describe csr my-svc.my-namespace
 Name:                   my-svc.my-namespace
 Labels:                 <none>
 Annotations:            <none>
-CreationTimestamp:      Tue, 21 Mar 2017 07:03:51 -0700
+CreationTimestamp:      Tue, 01 Feb 2022 11:49:15 -0500
 Requesting User:        yourname@example.com
+Signer:                 example.com/serving
 Status:                 Pending
 Subject:
-        Common Name:    my-svc.my-namespace.svc.cluster.local
+        Common Name:    my-pod.my-namespace.pod.cluster.local
         Serial Number:
 Subject Alternative Names:
-        DNS Names:      my-svc.my-namespace.svc.cluster.local
+        DNS Names:      my-pod.my-namespace.pod.cluster.local
+                        my-svc.my-namespace.svc.cluster.local
         IP Addresses:   192.0.2.24
                         10.0.34.2
 Events: <none>
 ```
 
-## Get the Certificate Signing Request Approved
+## Get the CertificateSigningRequest approved {#get-the-certificate-signing-request-approved}
 
-Approving the certificate signing request is either done by an automated
-approval process or on a one off basis by a cluster administrator. More
-information on what this involves is covered below.
+Approving the [certificate signing request](/docs/reference/access-authn-authz/certificate-signing-requests/)
+is either done by an automated approval process or on a one off basis by a cluster
+administrator. If you're authorized to approve a certificate request, you can do that
+manually using `kubectl`; for example:
 
-## Download the Certificate and Use It
+```shell
+kubectl certificate approve my-svc.my-namespace
+```
 
-Once the CSR is signed and approved you should see the following:
+```none
+certificatesigningrequest.certificates.k8s.io/my-svc.my-namespace approved
+```
+
+You should now see the following:
 
 ```shell
 kubectl get csr
 ```
 
 ```none
-NAME                  AGE       REQUESTOR               CONDITION
-my-svc.my-namespace   10m       yourname@example.com    Approved,Issued
+NAME                  AGE   SIGNERNAME            REQUESTOR              REQUESTEDDURATION   CONDITION
+my-svc.my-namespace   10m   example.com/serving   yourname@example.com   <none>              Approved
 ```
 
-You can download the issued certificate and save it to a `server.crt` file
-by running the following:
+This means the certificate request has been approved and is waiting for the
+requested signer to sign it.
+
+## Sign the CertificateSigningRequest {#sign-the-certificate-signing-request}
+
+Next, you'll play the part of a certificate signer, issue the certificate, and upload it to the API.
+
+A signer would typically watch the CertificateSigningRequest API for objects with its `signerName`,
+check that they have been approved, sign certificates for those requests,
+and update the API object status with the issued certificate.
+
+### Create a Certificate Authority
+
+You need an authority to provide the digital signature on the new certificate.
+
+First, create a signing certificate by running the following:
+
+```shell
+cat <<EOF | cfssl gencert -initca - | cfssljson -bare ca
+{
+  "CN": "My Example Signer",
+  "key": {
+    "algo": "rsa",
+    "size": 2048
+  }
+}
+EOF
+```
+
+You should see output similar to:
+
+```none
+2022/02/01 11:50:39 [INFO] generating a new CA key and certificate from CSR
+2022/02/01 11:50:39 [INFO] generate received request
+2022/02/01 11:50:39 [INFO] received CSR
+2022/02/01 11:50:39 [INFO] generating key: rsa-2048
+2022/02/01 11:50:39 [INFO] encoded CSR
+2022/02/01 11:50:39 [INFO] signed certificate with serial number 263983151013686720899716354349605500797834580472
+```
+
+This produces a certificate authority key file (`ca-key.pem`) and certificate (`ca.pem`).
+
+### Issue a certificate
+
+{{< codenew file="tls/server-signing-config.json" >}}
+
+Use a `server-signing-config.json` signing configuration and the certificate authority key file 
+and certificate to sign the certificate request:
+
+```shell
+kubectl get csr my-svc.my-namespace -o jsonpath='{.spec.request}' | \
+  base64 --decode | \
+  cfssl sign -ca ca.pem -ca-key ca-key.pem -config server-signing-config.json - | \
+  cfssljson -bare ca-signed-server
+```
+
+You should see the output similar to:
+
+```
+2022/02/01 11:52:26 [INFO] signed certificate with serial number 576048928624926584381415936700914530534472870337
+```
+
+This produces a signed serving certificate file, `ca-signed-server.pem`.
+
+### Upload the signed certificate
+
+Finally, populate the signed certificate in the API object's status:
+
+```shell
+kubectl get csr my-svc.my-namespace -o json | \
+  jq '.status.certificate = "'$(base64 ca-signed-server.pem | tr -d '\n')'"' | \
+  kubectl replace --raw /apis/certificates.k8s.io/v1/certificatesigningrequests/my-svc.my-namespace/status -f -
+```
+
+{{< note >}}
+This uses the command line tool [`jq`](https://stedolan.github.io/jq/) to populate the base64-encoded
+content in the `.status.certificate` field.
+If you do not have `jq`, you can also save the JSON output to a file, populate this field manually, and
+upload the resulting file.
+{{< /note >}}
+
+Once the CSR is approved and the signed certificate is uploaded, run:
+
+```shell
+kubectl get csr
+```
+
+The output is similar to:
+```none
+NAME                  AGE   SIGNERNAME            REQUESTOR              REQUESTEDDURATION   CONDITION
+my-svc.my-namespace   20m   example.com/serving   yourname@example.com   <none>              Approved,Issued
+```
+
+## Download the certificate and use it
+
+Now, as the requesting user, you can download the issued certificate
+and save it to a `server.crt` file by running the following:
 
 ```shell
 kubectl get csr my-svc.my-namespace -o jsonpath='{.status.certificate}' \
     | base64 --decode > server.crt
 ```
 
-Now you can use `server.crt` and `server-key.pem` as the keypair to start
-your HTTPS server.
+Now you can populate `server.crt` and `server-key.pem` in a
+{{< glossary_tooltip text="Secret" term_id="secret" >}}
+that you could later mount into a Pod (for example, to use with a webserver
+that serves HTTPS).
 
-## Approving Certificate Signing Requests
+```shell
+kubectl create secret tls server --cert server.crt --key server-key.pem
+```
+
+```none
+secret/server created
+```
+
+Finally, you can populate `ca.pem` into a {{< glossary_tooltip text="ConfigMap" term_id="configmap" >}}
+and use it as the trust root to verify the serving certificate:
+
+```shell
+kubectl create configmap example-serving-ca --from-file ca.crt=ca.pem
+```
+
+```none
+configmap/example-serving-ca created
+```
+
+## Approving CertificateSigningRequests {#approving-certificate-signing-requests}
 
 A Kubernetes administrator (with appropriate permissions) can manually approve
-(or deny) Certificate Signing Requests by using the `kubectl certificate
+(or deny) CertificateSigningRequests by using the `kubectl certificate
 approve` and `kubectl certificate deny` commands. However if you intend
 to make heavy usage of this API, you might consider writing an automated
 certificates controller.
 
-Whether a machine or a human using kubectl as above, the role of the approver is
+{{< caution >}}
+The ability to approve CSRs decides who trusts whom within your environment. The
+ability to approve CSRs should not be granted broadly or lightly.
+
+You should make sure that you confidently understand both the verification requirements
+that fall on the approver **and** the repercussions of issuing a specific certificate
+before you grant the `approve` permission.
+{{< /caution >}}
+
+Whether a machine or a human using kubectl as above, the role of the _approver_ is
 to verify that the CSR satisfies two requirements:
 
 1. The subject of the CSR controls the private key used to sign the CSR. This
@@ -213,20 +351,15 @@ to verify that the CSR satisfies two requirements:
 If and only if these two requirements are met, the approver should approve
 the CSR and otherwise should deny the CSR.
 
-## A Word of Warning on the Approval Permission
+For more information on certificate approval and access control, read
+the [Certificate Signing Requests](/docs/reference/access-authn-authz/certificate-signing-requests/)
+reference page.
 
-The ability to approve CSRs decides who trusts whom within your environment. The
-ability to approve CSRs should not be granted broadly or lightly. The
-requirements of the challenge noted in the previous section and the
-repercussions of issuing a specific certificate should be fully understood
-before granting this permission.
+## Configuring your cluster to provide signing
 
-## A Note to Cluster Administrators
-
-This tutorial assumes that a signer is setup to serve the certificates API. The
+This page assumes that a signer is setup to serve the certificates API. The
 Kubernetes controller manager provides a default implementation of a signer. To
 enable it, pass the `--cluster-signing-cert-file` and
 `--cluster-signing-key-file` parameters to the controller manager with paths to
 your Certificate Authority's keypair.
 
-
diff --git a/content/en/docs/tasks/tls/manual-rotation-of-ca-certificates.md b/content/en/docs/tasks/tls/manual-rotation-of-ca-certificates.md
index e56322cbec..bad390575d 100644
--- a/content/en/docs/tasks/tls/manual-rotation-of-ca-certificates.md
+++ b/content/en/docs/tasks/tls/manual-rotation-of-ca-certificates.md
@@ -1,6 +1,5 @@
 ---
 title: Manual Rotation of CA Certificates
-min-kubernetes-server-version: v1.13
 content_type: task
 ---
 
@@ -10,11 +9,13 @@ This page shows how to manually rotate the certificate authority (CA) certificat
 
 ## {{% heading "prerequisites" %}}
 
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+{{< include "task-tutorial-prereqs.md" >}}
 
 
-- For more information about authentication in Kubernetes, see [Authenticating](/docs/reference/access-authn-authz/authentication).
-- For more information about best practices for CA certificates, see [Single root CA](/docs/setup/best-practices/certificates/#single-root-ca).
+- For more information about authentication in Kubernetes, see
+  [Authenticating](/docs/reference/access-authn-authz/authentication).
+- For more information about best practices for CA certificates, see
+  [Single root CA](/docs/setup/best-practices/certificates/#single-root-ca).
 
 <!-- steps -->
 
@@ -24,36 +25,41 @@ This page shows how to manually rotate the certificate authority (CA) certificat
 Make sure to back up your certificate directory along with configuration files and any other necessary files.
 
 This approach assumes operation of the Kubernetes control plane in a HA configuration with multiple API servers.
-Graceful termination of the API server is also assumed so clients can cleanly disconnect from one API server and reconnect to another.
+Graceful termination of the API server is also assumed so clients can cleanly disconnect from one API server and
+reconnect to another.
 
 Configurations with a single API server will experience unavailability while the API server is being restarted.
 {{< /caution >}}
 
-1. Distribute the new CA certificates and private keys
-   (ex: `ca.crt`, `ca.key`, `front-proxy-ca.crt`, and `front-proxy-ca.key`)
-   to all your control plane nodes in the Kubernetes certificates directory.
+1. Distribute the new CA certificates and private keys (for example: `ca.crt`, `ca.key`, `front-proxy-ca.crt`,
+   and `front-proxy-ca.key`) to all your control plane nodes in the Kubernetes certificates directory.
 
-1. Update {{< glossary_tooltip text="kube-controller-manager" term_id="kube-controller-manager" >}}'s `--root-ca-file` to
-   include both old and new CA. Then restart the component.
+1. Update the `--root-ca-file` flag for the {{< glossary_tooltip term_id="kube-controller-manager" >}} to include
+   both old and new CA, then restart the kube-controller-manager.
 
-   Any service account created after this point will get secrets that include both old and new CAs.
+   Any {{< glossary_tooltip text="ServiceAccount" term_id="service-account" >}} created after this point will get
+   Secrets that include both old and new CAs.
 
    {{< note >}}
    The files specified by the kube-controller-manager flags `--client-ca-file` and `--cluster-signing-cert-file`
    cannot be CA bundles. If these flags and `--root-ca-file` point to the same `ca.crt` file which is now a
-   bundle (includes both old and new CA) you will face an error. To workaround this problem you can copy the new CA to a separate
-   file and make the flags `--client-ca-file` and `--cluster-signing-cert-file` point to the copy. Once `ca.crt` is no longer
-   a bundle you can restore the problem flags to point to `ca.crt` and delete the copy.
+   bundle (includes both old and new CA) you will face an error. To workaround this problem you can copy the new CA
+   to a separate file and make the flags `--client-ca-file` and `--cluster-signing-cert-file` point to the copy.
+   Once `ca.crt` is no longer a bundle you can restore the problem flags to point to `ca.crt` and delete the copy.
+
+   [Issue 1350](https://github.com/kubernetes/kubeadm/issues/1350) for kubeadm tracks an bug with the
+   kube-controller-manager being unable to accept a CA bundle.
    {{< /note >}}
 
-1. Update all service account tokens to include both old and new CA certificates.
+1. Update all Secrets that hold service account tokens to include both old and new CA certificates.
 
-   If any pods are started before new CA is used by API servers, they will get this update and trust both old and new CAs.
+    If any Pods are started before new CA is used by API servers, the new Pods get this update and will trust both
+    old and new CAs.
 
    ```shell
    base64_encoded_ca="$(base64 -w0 <path to file containing both old and new CAs>)"
 
-   for namespace in $(kubectl get ns --no-headers | awk '{print $1}'); do
+   for namespace in $(kubectl get namespace --no-headers -o name | cut -d / -f 2 ); do
        for token in $(kubectl get secrets --namespace "$namespace" --field-selector type=kubernetes.io/service-account-token -o name); do
            kubectl get $token --namespace "$namespace" -o yaml | \
              /bin/sed "s/\(ca.crt:\).*/\1 ${base64_encoded_ca}/" | \
@@ -62,15 +68,18 @@ Configurations with a single API server will experience unavailability while the
    done
    ```
 
-1. Restart all pods using in-cluster configs (ex: kube-proxy, coredns, etc) so they can use the updated certificate authority data from *ServiceAccount* secrets.
+1. Restart all pods using in-cluster configurations (for example: kube-proxy, CoreDNS, etc) so they can use the
+   updated certificate authority data from Secrets that link to ServiceAccounts.
 
-   * Make sure coredns, kube-proxy and other pods using in-cluster configs are working as expected.
+   * Make sure CoreDNS, kube-proxy and other Pods using in-cluster configurations are working as expected.
 
-1. Append the both old and new CA to the file against `--client-ca-file` and `--kubelet-certificate-authority` flag in the `kube-apiserver` configuration.
+1. Append the both old and new CA to the file against `--client-ca-file` and `--kubelet-certificate-authority`
+   flag in the `kube-apiserver` configuration.
 
 1. Append the both old and new CA to the file against `--client-ca-file` flag in the `kube-scheduler` configuration.
 
-1. Update certificates for user accounts by replacing the content of `client-certificate-data` and `client-key-data` respectively.
+1. Update certificates for user accounts by replacing the content of `client-certificate-data` and `client-key-data`
+   respectively.
 
    For information about creating certificates for individual user accounts, see
    [Configure certificates for user accounts](/docs/setup/best-practices/certificates/#configure-certificates-for-user-accounts).
@@ -78,40 +87,46 @@ Configurations with a single API server will experience unavailability while the
    Additionally, update the `certificate-authority-data` section in the kubeconfig files,
    respectively with Base64-encoded old and new certificate authority data
 
-1. Follow below steps in a rolling fashion.
+1. Update the `--root-ca-file` flag for the {{< glossary_tooltip term_id="cloud-controller-manager" >}} to include
+   both old and new CA, then restart the cloud-controller-manager.
 
-   1. Restart any other *[aggregated api servers](/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)*
-      or *webhook handlers* to trust the new CA certificates.
+   {{< note >}}
+   If your cluster does not have a cloud-controller-manager, you can skip this step.
+   {{< /note >}}
+
+1. Follow the steps below in a rolling fashion.
+
+   1. Restart any other
+      [aggregated API servers](/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/) or
+      webhook handlers to trust the new CA certificates.
 
    1. Restart the kubelet by update the file against `clientCAFile` in kubelet configuration and
-      `certificate-authority-data` in kubelet.conf to use both the old and new CA on all nodes.
+      `certificate-authority-data` in `kubelet.conf` to use both the old and new CA on all nodes.
 
-      If your kubelet is not using client certificate rotation update `client-certificate-data` and
-      `client-key-data` in kubelet.conf on all nodes along with the kubelet client certificate file
+      If your kubelet is not using client certificate rotation, update `client-certificate-data` and
+      `client-key-data` in `kubelet.conf` on all nodes along with the kubelet client certificate file
       usually found in `/var/lib/kubelet/pki`.
 
-
    1. Restart API servers with the certificates (`apiserver.crt`, `apiserver-kubelet-client.crt` and
       `front-proxy-client.crt`) signed by new CA.
       You can use the existing private keys or new private keys.
       If you changed the private keys then update these in the Kubernetes certificates directory as well.
 
-      Since the pod trusts both old and new CAs, there will be a momentarily disconnection
-      after which the pod's kube client will reconnect to the new API server
-      that uses the certificate signed by the new CA.
-
-      * Restart Scheduler to use the new CAs.
+      Since the Pods in your cluster trust both old and new CAs, there will be a momentarily disconnection
+      after which pods' Kubernetes clients reconnect to the new API server.
+      The new API server uses a certificate signed by the new CA.
 
+      * Restart the {{< glossary_tooltip term_id="kube-scheduler" text="kube-scheduler" >}} to use and
+        trust the new CAs.
       * Make sure control plane components logs no TLS errors.
 
       {{< note >}}
-      To generate certificates and private keys for your cluster using the `openssl` command line tool, see [Certificates (`openssl`)](/docs/tasks/administer-cluster/certificates/#openssl).
+      To generate certificates and private keys for your cluster using the `openssl` command line tool,
+      see [Certificates (`openssl`)](/docs/tasks/administer-cluster/certificates/#openssl).
       You can also use [`cfssl`](/docs/tasks/administer-cluster/certificates/#cfssl).
       {{< /note >}}
 
-   1. Annotate any Daemonsets and Deployments to trigger pod replacement in a safer rolling fashion.
-
-      Example:
+    1. Annotate any DaemonSets and Deployments to trigger pod replacement in a safer rolling fashion.
 
       ```shell
       for namespace in $(kubectl get namespace -o jsonpath='{.items[*].metadata.name}'); do
@@ -129,7 +144,10 @@ Configurations with a single API server will experience unavailability while the
       see [configure pod disruption budget](/docs/tasks/run-application/configure-pdb/).
       {{< /note >}}
 
-1. If your cluster is using bootstrap tokens to join nodes, update the ConfigMap `cluster-info` in the `kube-public` namespace with new CA.
+        Depending on how you use StatefulSets you may also need to perform similar rolling replacement.
+
+1. If your cluster is using bootstrap tokens to join nodes, update the ConfigMap `cluster-info` in the `kube-public`
+   namespace with new CA.
 
    ```shell
    base64_encoded_ca="$(base64 -w0 /etc/kubernetes/pki/ca.crt)"
@@ -141,19 +159,24 @@ Configurations with a single API server will experience unavailability while the
 
 1. Verify the cluster functionality.
 
-   1. Validate the logs from control plane components, along with the kubelet and the
-      kube-proxy are not throwing any tls errors, see
-      [looking at the logs](/docs/tasks/debug-application-cluster/debug-cluster/#looking-at-logs).
+    1. Check the logs from control plane components, along with the kubelet and the kube-proxy.
+       Ensure those components are not reporting any TLS errors; see
+       [looking at the logs](/docs/tasks/debug/debug-cluster/#looking-at-logs) for more details.
 
-   1. Validate logs from any aggregated api servers and pods using in-cluster config.
+    1. Validate logs from any aggregated api servers and pods using in-cluster config.
 
 1. Once the cluster functionality is successfully verified:
 
    1. Update all service account tokens to include new CA certificate only.
 
-      * All pods using an in-cluster kubeconfig will eventually need to be restarted to pick up the new SA secret for the old CA to be completely untrusted.
+      * All pods using an in-cluster kubeconfig will eventually need to be restarted to pick up the new Secret,
+        so that no Pods are relying on the old cluster CA.
 
-   1. Restart the control plane components by removing the old CA from the kubeconfig files and the files against `--client-ca-file`, `--root-ca-file` flags resp.
+   1. Restart the control plane components by removing the old CA from the kubeconfig files and the files against
+      `--client-ca-file`, `--root-ca-file` flags resp.
 
-   1. Restart kubelet by removing the old CA from file against the `clientCAFile` flag and kubelet kubeconfig file.
+   1. On each node, restart the kubelet by removing the old CA from file against the `clientCAFile` flag
+      and from the kubelet kubeconfig file. You should carry this out as a rolling update.
 
+      If your cluster lets you make this change, you can also roll it out by replacing nodes rather than
+      reconfiguring them.
diff --git a/content/en/docs/tasks/tools/included/optional-kubectl-configs-bash-linux.md b/content/en/docs/tasks/tools/included/optional-kubectl-configs-bash-linux.md
index 949f1922c4..8a5889b813 100644
--- a/content/en/docs/tasks/tools/included/optional-kubectl-configs-bash-linux.md
+++ b/content/en/docs/tasks/tools/included/optional-kubectl-configs-bash-linux.md
@@ -26,25 +26,24 @@ Reload your shell and verify that bash-completion is correctly installed by typi
 
 ### Enable kubectl autocompletion
 
+#### Bash
+
 You now need to ensure that the kubectl completion script gets sourced in all your shell sessions. There are two ways in which you can do this:
 
-- Source the completion script in your `~/.bashrc` file:
-
-   ```bash
-   echo 'source <(kubectl completion bash)' >>~/.bashrc
-   ```
-
-- Add the completion script to the `/etc/bash_completion.d` directory:
-
-   ```bash
-   kubectl completion bash >/etc/bash_completion.d/kubectl
-   ```
+{{< tabs name="kubectl_bash_autocompletion" >}}
+{{{< tab name="User" codelang="bash" >}}
+echo 'source <(kubectl completion bash)' >>~/.bashrc
+{{< /tab >}}
+{{< tab name="System" codelang="bash" >}}
+kubectl completion bash | sudo tee /etc/bash_completion.d/kubectl > /dev/null
+{{< /tab >}}}
+{{< /tabs >}}
 
 If you have an alias for kubectl, you can extend shell completion to work with that alias:
 
 ```bash
 echo 'alias k=kubectl' >>~/.bashrc
-echo 'complete -F __start_kubectl k' >>~/.bashrc
+echo 'complete -o default -F __start_kubectl k' >>~/.bashrc
 ```
 
 {{< note >}}
diff --git a/content/en/docs/tasks/tools/included/optional-kubectl-configs-bash-mac.md b/content/en/docs/tasks/tools/included/optional-kubectl-configs-bash-mac.md
index 9854540649..47243c575a 100644
--- a/content/en/docs/tasks/tools/included/optional-kubectl-configs-bash-mac.md
+++ b/content/en/docs/tasks/tools/included/optional-kubectl-configs-bash-mac.md
@@ -77,7 +77,7 @@ You now have to ensure that the kubectl completion script gets sourced in all yo
 
     ```bash
     echo 'alias k=kubectl' >>~/.bash_profile
-    echo 'complete -F __start_kubectl k' >>~/.bash_profile
+    echo 'complete -o default -F __start_kubectl k' >>~/.bash_profile
     ```
 
 - If you installed kubectl with Homebrew (as explained [here](/docs/tasks/tools/install-kubectl-macos/#install-with-homebrew-on-macos)), then the kubectl completion script should already be in `/usr/local/etc/bash_completion.d/kubectl`. In that case, you don't need to do anything.
diff --git a/content/en/docs/tasks/tools/included/optional-kubectl-configs-fish.md b/content/en/docs/tasks/tools/included/optional-kubectl-configs-fish.md
new file mode 100644
index 0000000000..a64d0e184c
--- /dev/null
+++ b/content/en/docs/tasks/tools/included/optional-kubectl-configs-fish.md
@@ -0,0 +1,15 @@
+---
+title: "fish auto-completion"
+description: "Optional configuration to enable fish shell auto-completion."
+headless: true
+---
+
+The kubectl completion script for Fish can be generated with the command `kubectl completion fish`. Sourcing the completion script in your shell enables kubectl autocompletion.
+
+To do so in all your shell sessions, add the following line to your `~/.config/fish/config.fish` file:
+
+```shell
+kubectl completion fish | source
+```
+
+After reloading your shell, kubectl autocompletion should be working.
diff --git a/content/en/docs/tasks/tools/included/optional-kubectl-configs-pwsh.md b/content/en/docs/tasks/tools/included/optional-kubectl-configs-pwsh.md
new file mode 100644
index 0000000000..12e5d60c5d
--- /dev/null
+++ b/content/en/docs/tasks/tools/included/optional-kubectl-configs-pwsh.md
@@ -0,0 +1,23 @@
+---
+title: "PowerShell auto-completion"
+description: "Some optional configuration for powershell auto-completion."
+headless: true
+---
+
+The kubectl completion script for PowerShell can be generated with the command `kubectl completion powershell`.
+
+To do so in all your shell sessions, add the following line to your `$PROFILE` file:
+
+```powershell
+kubectl completion powershell | Out-String | Invoke-Expression
+```
+
+This command will regenerate the auto-completion script on every PowerShell start up. You can also add the generated script directly to your `$PROFILE` file.
+
+To add the generated script to your `$PROFILE` file, run the following line in your powershell prompt:
+
+```powershell
+kubectl completion powershell >> $PROFILE
+```
+
+After reloading your shell, kubectl autocompletion should be working.
diff --git a/content/en/docs/tasks/tools/included/optional-kubectl-configs-zsh.md b/content/en/docs/tasks/tools/included/optional-kubectl-configs-zsh.md
index 95c8c0aa71..176bdeeeb1 100644
--- a/content/en/docs/tasks/tools/included/optional-kubectl-configs-zsh.md
+++ b/content/en/docs/tasks/tools/included/optional-kubectl-configs-zsh.md
@@ -12,16 +12,11 @@ To do so in all your shell sessions, add the following to your `~/.zshrc` file:
 source <(kubectl completion zsh)
 ```
 
-If you have an alias for kubectl, you can extend shell completion to work with that alias:
-
-```zsh
-echo 'alias k=kubectl' >>~/.zshrc
-echo 'complete -F __start_kubectl k' >>~/.zshrc
-```
+If you have an alias for kubectl, kubectl autocompletion will automatically work with it.
 
 After reloading your shell, kubectl autocompletion should be working.
 
-If you get an error like `complete:13: command not found: compdef`, then add the following to the beginning of your `~/.zshrc` file:
+If you get an error like `2: command not found: compdef`, then add the following to the beginning of your `~/.zshrc` file:
 
 ```zsh
 autoload -Uz compinit
diff --git a/content/en/docs/tasks/tools/install-kubectl-linux.md b/content/en/docs/tasks/tools/install-kubectl-linux.md
index efb203f8b9..9ecd3b03c4 100644
--- a/content/en/docs/tasks/tools/install-kubectl-linux.md
+++ b/content/en/docs/tasks/tools/install-kubectl-linux.md
@@ -12,8 +12,8 @@ card:
 
 ## {{% heading "prerequisites" %}}
 
-You must use a kubectl version that is within one minor version difference of your cluster. For example, a v{{< skew latestVersion >}} client can communicate with v{{< skew prevMinorVersion >}}, v{{< skew latestVersion >}}, and v{{< skew nextMinorVersion >}} control planes.
-Using the latest version of kubectl helps avoid unforeseen issues.
+You must use a kubectl version that is within one minor version difference of your cluster. For example, a v{{< skew currentVersion >}} client can communicate with v{{< skew currentVersionAddMinor -1 >}}, v{{< skew currentVersionAddMinor 0 >}}, and v{{< skew currentVersionAddMinor 1 >}} control planes.
+Using the latest compatible version of kubectl helps avoid unforeseen issues.
 
 ## Install kubectl on Linux
 
@@ -52,7 +52,7 @@ For example, to download version {{< param "fullversion" >}} on Linux, type:
    Validate the kubectl binary against the checksum file:
 
    ```bash
-   echo "$(<kubectl.sha256) kubectl" | sha256sum --check
+   echo "$(cat kubectl.sha256)  kubectl" | sha256sum --check
    ```
 
    If valid, the output is:
@@ -83,9 +83,9 @@ For example, to download version {{< param "fullversion" >}} on Linux, type:
 
    ```bash
    chmod +x kubectl
-   mkdir -p ~/.local/bin/kubectl
+   mkdir -p ~/.local/bin
    mv ./kubectl ~/.local/bin/kubectl
-   # and then add ~/.local/bin/kubectl to $PATH
+   # and then append (or prepend) ~/.local/bin to $PATH
    ```
 
    {{< /note >}}
@@ -95,6 +95,11 @@ For example, to download version {{< param "fullversion" >}} on Linux, type:
    ```bash
    kubectl version --client
    ```
+   Or use this for detailed view of version:
+
+   ```cmd
+   kubectl version --client --output=yaml    
+   ```
 
 ### Install using native package management
 
@@ -105,7 +110,11 @@ For example, to download version {{< param "fullversion" >}} on Linux, type:
 
    ```shell
    sudo apt-get update
-   sudo apt-get install -y apt-transport-https ca-certificates curl
+   sudo apt-get install -y ca-certificates curl
+   ```
+   If you use Debian 9 (stretch) or earlier you would also need to install `apt-transport-https`:
+   ```shell
+   sudo apt-get install -y apt-transport-https
    ```
 
 2. Download the Google Cloud public signing key:
@@ -129,25 +138,27 @@ For example, to download version {{< param "fullversion" >}} on Linux, type:
 
 {{% /tab %}}
 
-{{< tab name="Red Hat-based distributions" codelang="bash" >}}
-cat <<EOF > /etc/yum.repos.d/kubernetes.repo
+{{% tab name="Red Hat-based distributions" %}}
+```bash
+cat <<EOF | sudo tee /etc/yum.repos.d/kubernetes.repo
 [kubernetes]
 name=Kubernetes
-baseurl=https://packages.cloud.google.com/yum/repos/kubernetes-el7-x86_64
+baseurl=https://packages.cloud.google.com/yum/repos/kubernetes-el7-\$basearch
 enabled=1
 gpgcheck=1
-repo_gpgcheck=1
 gpgkey=https://packages.cloud.google.com/yum/doc/yum-key.gpg https://packages.cloud.google.com/yum/doc/rpm-package-key.gpg
 EOF
-yum install -y kubectl
-{{< /tab >}}
+sudo yum install -y kubectl
+```
+
+{{% /tab %}}
 {{< /tabs >}}
 
 ### Install using other package management
 
 {{< tabs name="other_kubectl_install" >}}
 {{% tab name="Snap" %}}
-If you are on Ubuntu or another Linux distribution that support [snap](https://snapcraft.io/docs/core/install) package manager, kubectl is available as a [snap](https://snapcraft.io/) application.
+If you are on Ubuntu or another Linux distribution that supports the [snap](https://snapcraft.io/docs/core/install) package manager, kubectl is available as a [snap](https://snapcraft.io/) application.
 
 ```shell
 snap install kubectl --classic
@@ -176,12 +187,13 @@ kubectl version --client
 
 ### Enable shell autocompletion
 
-kubectl provides autocompletion support for Bash and Zsh, which can save you a lot of typing.
+kubectl provides autocompletion support for Bash, Zsh, Fish, and PowerShell, which can save you a lot of typing.
 
-Below are the procedures to set up autocompletion for Bash and Zsh.
+Below are the procedures to set up autocompletion for Bash, Fish, and Zsh.
 
 {{< tabs name="kubectl_autocompletion" >}}
 {{< tab name="Bash" include="included/optional-kubectl-configs-bash-linux.md" />}}
+{{< tab name="Fish" include="included/optional-kubectl-configs-fish.md" />}}
 {{< tab name="Zsh" include="included/optional-kubectl-configs-zsh.md" />}}
 {{< /tabs >}}
 
@@ -192,7 +204,7 @@ Below are the procedures to set up autocompletion for Bash and Zsh.
 1. Download the latest release with the command:
 
    ```bash
-   curl -LO https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl-convert
+   curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl-convert"
    ```
 
 1. Validate the binary (optional)
@@ -206,7 +218,7 @@ Below are the procedures to set up autocompletion for Bash and Zsh.
    Validate the kubectl-convert binary against the checksum file:
 
    ```bash
-   echo "$(<kubectl-convert.sha256) kubectl-convert" | sha256sum --check
+   echo "$(cat kubectl-convert.sha256) kubectl-convert" | sha256sum --check
    ```
 
    If valid, the output is:
diff --git a/content/en/docs/tasks/tools/install-kubectl-macos.md b/content/en/docs/tasks/tools/install-kubectl-macos.md
index b46ab03640..aa03051f9f 100644
--- a/content/en/docs/tasks/tools/install-kubectl-macos.md
+++ b/content/en/docs/tasks/tools/install-kubectl-macos.md
@@ -12,8 +12,8 @@ card:
 
 ## {{% heading "prerequisites" %}}
 
-You must use a kubectl version that is within one minor version difference of your cluster. For example, a v{{< skew latestVersion >}} client can communicate with v{{< skew prevMinorVersion >}}, v{{< skew latestVersion >}}, and v{{< skew nextMinorVersion >}} control planes.
-Using the latest version of kubectl helps avoid unforeseen issues.
+You must use a kubectl version that is within one minor version difference of your cluster. For example, a v{{< skew currentVersion >}} client can communicate with v{{< skew currentVersionAddMinor -1 >}}, v{{< skew currentVersionAddMinor 0 >}}, and v{{< skew currentVersionAddMinor 1 >}} control planes.
+Using the latest compatible version of kubectl helps avoid unforeseen issues.
 
 ## Install kubectl on macOS
 
@@ -69,7 +69,7 @@ The following methods exist for installing kubectl on macOS:
    Validate the kubectl binary against the checksum file:
 
    ```bash
-   echo "$(<kubectl.sha256)  kubectl" | shasum -a 256 --check
+   echo "$(cat kubectl.sha256)  kubectl" | shasum -a 256 --check
    ```
 
    If valid, the output is:
@@ -111,6 +111,11 @@ The following methods exist for installing kubectl on macOS:
    ```bash
    kubectl version --client
    ```
+   Or use this for detailed view of version:
+
+   ```cmd
+   kubectl version --client --output=yaml
+   ```
 
 ### Install with Homebrew on macOS
 
@@ -119,7 +124,7 @@ If you are on macOS and using [Homebrew](https://brew.sh/) package manager, you
 1. Run the installation command:
 
    ```bash
-   brew install kubectl 
+   brew install kubectl
    ```
 
    or
@@ -159,12 +164,13 @@ If you are on macOS and using [Macports](https://macports.org/) package manager,
 
 ### Enable shell autocompletion
 
-kubectl provides autocompletion support for Bash and Zsh, which can save you a lot of typing.
+kubectl provides autocompletion support for Bash, Zsh, Fish, and PowerShell which can save you a lot of typing.
 
-Below are the procedures to set up autocompletion for Bash and Zsh.
+Below are the procedures to set up autocompletion for Bash, Fish, and Zsh.
 
 {{< tabs name="kubectl_autocompletion" >}}
 {{< tab name="Bash" include="included/optional-kubectl-configs-bash-mac.md" />}}
+{{< tab name="Fish" include="included/optional-kubectl-configs-fish.md" />}}
 {{< tab name="Zsh" include="included/optional-kubectl-configs-zsh.md" />}}
 {{< /tabs >}}
 
@@ -199,7 +205,7 @@ Below are the procedures to set up autocompletion for Bash and Zsh.
    Validate the kubectl-convert binary against the checksum file:
 
    ```bash
-   echo "$(<kubectl-convert.sha256)  kubectl-convert" | shasum -a 256 --check
+   echo "$(cat kubectl-convert.sha256)  kubectl-convert" | shasum -a 256 --check
    ```
 
    If valid, the output is:
diff --git a/content/en/docs/tasks/tools/install-kubectl-windows.md b/content/en/docs/tasks/tools/install-kubectl-windows.md
index 8059fa7a3a..4c2f175e89 100644
--- a/content/en/docs/tasks/tools/install-kubectl-windows.md
+++ b/content/en/docs/tasks/tools/install-kubectl-windows.md
@@ -12,8 +12,8 @@ card:
 
 ## {{% heading "prerequisites" %}}
 
-You must use a kubectl version that is within one minor version difference of your cluster. For example, a v{{< skew latestVersion >}} client can communicate with v{{< skew prevMinorVersion >}}, v{{< skew latestVersion >}}, and v{{< skew nextMinorVersion >}} control planes.
-Using the latest version of kubectl helps avoid unforeseen issues.
+You must use a kubectl version that is within one minor version difference of your cluster. For example, a v{{< skew currentVersion >}} client can communicate with v{{< skew currentVersionAddMinor -1 >}}, v{{< skew currentVersionAddMinor 0 >}}, and v{{< skew currentVersionAddMinor 1 >}} control planes.
+Using the latest compatible version of kubectl helps avoid unforeseen issues.
 
 ## Install kubectl on Windows
 
@@ -22,7 +22,6 @@ The following methods exist for installing kubectl on Windows:
 - [Install kubectl binary with curl on Windows](#install-kubectl-binary-with-curl-on-windows)
 - [Install on Windows using Chocolatey or Scoop](#install-on-windows-using-chocolatey-or-scoop)
 
-
 ### Install kubectl binary with curl on Windows
 
 1. Download the [latest release {{< param "fullversion" >}}](https://dl.k8s.io/release/{{< param "fullversion" >}}/bin/windows/amd64/kubectl.exe).
@@ -39,13 +38,13 @@ The following methods exist for installing kubectl on Windows:
 
 1. Validate the binary (optional)
 
-   Download the kubectl checksum file:
+   Download the `kubectl` checksum file:
 
    ```powershell
    curl -LO "https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kubectl.exe.sha256"
    ```
 
-   Validate the kubectl binary against the checksum file:
+   Validate the `kubectl` binary against the checksum file:
 
    - Using Command Prompt to manually compare `CertUtil`'s output to the checksum file downloaded:
 
@@ -60,13 +59,18 @@ The following methods exist for installing kubectl on Windows:
      $($(CertUtil -hashfile .\kubectl.exe SHA256)[1] -replace " ", "") -eq $(type .\kubectl.exe.sha256)
      ```
 
-1. Add the binary in to your `PATH`.
+1. Append or prepend the `kubectl` binary folder to your `PATH` environment variable.
 
 1. Test to ensure the version of `kubectl` is the same as downloaded:
 
    ```cmd
    kubectl version --client
    ```
+   Or use this for detailed view of version:
+
+   ```cmd
+   kubectl version --client --output=yaml
+   ```
 
 {{< note >}}
 [Docker Desktop for Windows](https://docs.docker.com/docker-for-windows/#kubernetes) adds its own version of `kubectl` to `PATH`.
@@ -134,11 +138,11 @@ Edit the config file with a text editor of your choice, such as Notepad.
 
 ### Enable shell autocompletion
 
-kubectl provides autocompletion support for Bash and Zsh, which can save you a lot of typing.
+kubectl provides autocompletion support for Bash, Zsh, Fish, and PowerShell, which can save you a lot of typing.
 
-Below are the procedures to set up autocompletion for Zsh, if you are running that on Windows.
+Below are the procedures to set up autocompletion for PowerShell.
 
-{{< include "included/optional-kubectl-configs-zsh.md" >}}
+{{< include "included/optional-kubectl-configs-pwsh.md" >}}
 
 ### Install `kubectl convert` plugin
 
@@ -152,13 +156,13 @@ Below are the procedures to set up autocompletion for Zsh, if you are running th
 
 1. Validate the binary (optional)
 
-   Download the kubectl-convert checksum file:
+   Download the `kubectl-convert` checksum file:
 
    ```powershell
    curl -LO "https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kubectl-convert.exe.sha256"
    ```
 
-   Validate the kubectl-convert binary against the checksum file:
+   Validate the `kubectl-convert` binary against the checksum file:
 
    - Using Command Prompt to manually compare `CertUtil`'s output to the checksum file downloaded:
 
@@ -173,7 +177,7 @@ Below are the procedures to set up autocompletion for Zsh, if you are running th
      $($(CertUtil -hashfile .\kubectl-convert.exe SHA256)[1] -replace " ", "") -eq $(type .\kubectl-convert.exe.sha256)
      ```
 
-1. Add the binary in to your `PATH`.
+1. Append or prepend the `kubectl-convert` binary folder to your `PATH` environment variable.
 
 1. Verify plugin is successfully installed
 
diff --git a/content/en/docs/tutorials/_index.md b/content/en/docs/tutorials/_index.md
index fdc62e11fb..01bb9a6552 100644
--- a/content/en/docs/tutorials/_index.md
+++ b/content/en/docs/tutorials/_index.md
@@ -47,16 +47,16 @@ Before walking through each tutorial, you may want to bookmark the
 
 * [Running ZooKeeper, A CP Distributed System](/docs/tutorials/stateful-application/zookeeper/)
 
-## Clusters
-
-* [AppArmor](/docs/tutorials/clusters/apparmor/)
-
-* [seccomp](/docs/tutorials/clusters/seccomp/)
-
 ## Services
 
 * [Using Source IP](/docs/tutorials/services/source-ip/)
 
+## Security
+
+* [Apply Pod Security Standards at Cluster level](/docs/tutorials/security/cluster-level-pss/)
+* [Apply Pod Security Standards at Namespace level](/docs/tutorials/security/ns-level-pss/)
+* [AppArmor](/docs/tutorials/security/apparmor/)
+* [seccomp](/docs/tutorials/security/seccomp/)
 ## {{% heading "whatsnext" %}}
 
 If you would like to write a tutorial, see
diff --git a/content/en/docs/tutorials/clusters/_index.md b/content/en/docs/tutorials/clusters/_index.md
deleted file mode 100644
index 2db6156b6f..0000000000
--- a/content/en/docs/tutorials/clusters/_index.md
+++ /dev/null
@@ -1,5 +0,0 @@
----
-title: "Clusters"
-weight: 60
----
-
diff --git a/content/en/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice-interactive.html b/content/en/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice-interactive.html
index bb926a1d19..fd3db09a42 100644
--- a/content/en/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice-interactive.html
+++ b/content/en/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice-interactive.html
@@ -11,7 +11,7 @@ weight: 20
 
 <link href="/docs/tutorials/kubernetes-basics/public/css/styles.css" rel="stylesheet">
 <link href="/docs/tutorials/kubernetes-basics/public/css/overrides.css" rel="stylesheet">
-<script src="https://katacoda.com/embed.js"></script>
+{{< katacoda-tutorial >}}
 
 <div class="layout" id="top">
 
diff --git a/content/en/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice.md b/content/en/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice.md
index dccf214c47..8055f6774e 100644
--- a/content/en/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice.md
+++ b/content/en/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice.md
@@ -6,34 +6,63 @@ weight: 10
 
 <!-- overview -->
 
-In this tutorial you will learn how and why to externalize your microservice’s configuration.  Specifically, you will learn how to use Kubernetes ConfigMaps and Secrets to set environment variables and then consume them using MicroProfile Config.
+In this tutorial you will learn how and why to externalize your microservice’s configuration.
+Specifically, you will learn how to use Kubernetes ConfigMaps and Secrets to set environment
+variables and then consume them using MicroProfile Config.
 
 
 ## {{% heading "prerequisites" %}}
 
 ### Creating Kubernetes ConfigMaps & Secrets
-There are several ways to set environment variables for a Docker container in Kubernetes, including: Dockerfile, kubernetes.yml, Kubernetes ConfigMaps, and Kubernetes Secrets.  In the tutorial, you will learn how to use the latter two for setting your environment variables whose values will be injected into your microservices.  One of the benefits for using ConfigMaps and Secrets is that they can be re-used across multiple containers, including being assigned to different environment variables for the different containers.
 
-ConfigMaps are API Objects that store non-confidential key-value pairs.  In the Interactive Tutorial you will learn how to use a ConfigMap to store the application's name.  For more information regarding ConfigMaps, you can find the documentation [here](/docs/tasks/configure-pod-container/configure-pod-configmap/).
+There are several ways to set environment variables for a Docker container in Kubernetes,
+including: Dockerfile, kubernetes.yml, Kubernetes ConfigMaps, and Kubernetes Secrets.  In the
+tutorial, you will learn how to use the latter two for setting your environment variables whose
+values will be injected into your microservices.  One of the benefits for using ConfigMaps and
+Secrets is that they can be re-used across multiple containers, including being assigned to
+different environment variables for the different containers.
 
-Although Secrets are also used to store key-value pairs, they differ from ConfigMaps in that they're intended for confidential/sensitive information and are stored using Base64 encoding.  This makes secrets the appropriate choice for storing such things as credentials, keys, and tokens, the former of which you'll do in the Interactive Tutorial.  For more information on Secrets, you can find the documentation [here](/docs/concepts/configuration/secret/).
+ConfigMaps are API Objects that store non-confidential key-value pairs.  In the Interactive
+Tutorial you will learn how to use a ConfigMap to store the application's name.  For more
+information regarding ConfigMaps, you can find the documentation
+[here](/docs/tasks/configure-pod-container/configure-pod-configmap/).
+
+Although Secrets are also used to store key-value pairs, they differ from ConfigMaps in that
+they're intended for confidential/sensitive information and are stored using Base64 encoding.
+This makes secrets the appropriate choice for storing such things as credentials, keys, and
+tokens, the former of which you'll do in the Interactive Tutorial.  For more information on
+Secrets, you can find the documentation [here](/docs/concepts/configuration/secret/).
 
 
 ### Externalizing Config from Code
-Externalized application configuration is useful because configuration usually changes depending on your environment.  In order to accomplish this, we'll use Java's Contexts and Dependency Injection (CDI) and MicroProfile Config. MicroProfile Config is a feature of MicroProfile, a set of open Java technologies for developing and deploying cloud-native microservices.
 
-CDI provides a standard dependency injection capability enabling an application to be assembled from collaborating, loosely-coupled beans.  MicroProfile Config provides apps and microservices a standard way to obtain config properties from various sources, including the application, runtime, and environment.  Based on the source's defined priority, the properties are automatically combined into a single set of properties that the application can access via an API.  Together, CDI & MicroProfile will be used in the Interactive Tutorial to retrieve the externally provided properties from the Kubernetes ConfigMaps and Secrets and get injected into your application code.
+Externalized application configuration is useful because configuration usually changes depending
+on your environment.  In order to accomplish this, we'll use Java's Contexts and Dependency
+Injection (CDI) and MicroProfile Config. MicroProfile Config is a feature of MicroProfile, a set
+of open Java technologies for developing and deploying cloud-native microservices.
 
-Many open source frameworks and runtimes implement and support MicroProfile Config.  Throughout the interactive tutorial, you'll be using Open Liberty, a flexible open-source Java runtime for building and running cloud-native apps and microservices.  However, any MicroProfile compatible runtime could be used instead. 
+CDI provides a standard dependency injection capability enabling an application to be assembled
+from collaborating, loosely-coupled beans.  MicroProfile Config provides apps and microservices a
+standard way to obtain config properties from various sources, including the application, runtime,
+and environment.  Based on the source's defined priority, the properties are automatically
+combined into a single set of properties that the application can access via an API.  Together,
+CDI & MicroProfile will be used in the Interactive Tutorial to retrieve the externally provided
+properties from the Kubernetes ConfigMaps and Secrets and get injected into your application code.
+
+Many open source frameworks and runtimes implement and support MicroProfile Config.  Throughout
+the interactive tutorial, you'll be using Open Liberty, a flexible open-source Java runtime for
+building and running cloud-native apps and microservices.  However, any MicroProfile compatible
+runtime could be used instead. 
 
 
 ## {{% heading "objectives" %}}
 
 * Create a Kubernetes ConfigMap and Secret
 * Inject microservice configuration using MicroProfile Config
-
   
 <!-- lessoncontent -->
 
 ## Example: Externalizing config using MicroProfile, ConfigMaps and Secrets
-### [Start Interactive Tutorial](/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice-interactive/) 
+
+[Start Interactive Tutorial](/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice-interactive/) 
+
diff --git a/content/en/docs/tutorials/configuration/configure-redis-using-configmap.md b/content/en/docs/tutorials/configuration/configure-redis-using-configmap.md
index ec6edb9cc7..d95e752208 100644
--- a/content/en/docs/tutorials/configuration/configure-redis-using-configmap.md
+++ b/content/en/docs/tutorials/configuration/configure-redis-using-configmap.md
@@ -8,7 +8,7 @@ content_type: tutorial
 
 <!-- overview -->
 
-This page provides a real world example of how to configure Redis using a ConfigMap and builds upon the [Configure Containers Using a ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/) task. 
+This page provides a real world example of how to configure Redis using a ConfigMap and builds upon the [Configure a Pod to Use a ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/) task. 
 
 
 
@@ -27,7 +27,7 @@ This page provides a real world example of how to configure Redis using a Config
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
 * The example shown on this page works with `kubectl` 1.14 and above.
-* Understand [Configure Containers Using a ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/).
+* Understand [Configure a Pod to Use a ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/).
 
 
 
@@ -78,7 +78,7 @@ kubectl get pod/redis configmap/example-redis-config
 
 You should see the following output:
 
-```shell
+```
 NAME        READY   STATUS    RESTARTS   AGE
 pod/redis   1/1     Running   0          8s
 
diff --git a/content/en/docs/tutorials/hello-minikube.md b/content/en/docs/tutorials/hello-minikube.md
index 3911ff2de6..f43c63eae9 100644
--- a/content/en/docs/tutorials/hello-minikube.md
+++ b/content/en/docs/tutorials/hello-minikube.md
@@ -69,13 +69,13 @@ By default, the dashboard is only accessible from within the internal Kubernetes
 The `dashboard` command creates a temporary proxy to make the dashboard accessible from outside the Kubernetes virtual network.
 
 To stop the proxy, run `Ctrl+C` to exit the process.
-After the command exits, the dashboard remains running in Kubernetes cluster.
+After the command exits, the dashboard remains running in the Kubernetes cluster.
 You can run the `dashboard` command again to create another proxy to access the dashboard.
 {{< /note >}}
 
 ## Open Dashboard with URL
 
-If you don't want to open a web browser, run the dashboard command with the url flag to emit a URL:
+If you don't want to open a web browser, run the dashboard command with the `--url` flag to emit a URL:
 
 ```shell
 minikube dashboard --url
@@ -136,7 +136,7 @@ Pod runs a Container based on the provided Docker image.
     ```
 
 {{< note >}}
-For more information about `kubectl` commands, see the [kubectl overview](/docs/reference/kubectl/overview/).
+For more information about `kubectl` commands, see the [kubectl overview](/docs/reference/kubectl/).
 {{< /note >}}
 
 ## Create a Service
@@ -185,7 +185,7 @@ Kubernetes [*Service*](/docs/concepts/services-networking/service/).
 
 4. Katacoda environment only: Click the plus sign, and then click **Select port to view on Host 1**.
 
-5. Katacoda environment only: Note the 5 digit port number displayed opposite to `8080` in services output. This port number is randomly generated and it can be different for you. Type your number in the port number text box, then click Display Port. Using the example from earlier, you would type `30369`.
+5. Katacoda environment only: Note the 5-digit port number displayed opposite to `8080` in services output. This port number is randomly generated and it can be different for you. Type your number in the port number text box, then click Display Port. Using the example from earlier, you would type `30369`.
 
     This opens up a browser window that serves your app and shows the app's response.
 
diff --git a/content/en/docs/tutorials/kubernetes-basics/create-cluster/_index.md b/content/en/docs/tutorials/kubernetes-basics/create-cluster/_index.md
index b817926543..b4a4aa377a 100644
--- a/content/en/docs/tutorials/kubernetes-basics/create-cluster/_index.md
+++ b/content/en/docs/tutorials/kubernetes-basics/create-cluster/_index.md
@@ -2,3 +2,6 @@
 title: Create a Cluster
 weight: 10
 ---
+
+Learn about Kubernetes {{< glossary_tooltip text="cluster" term_id="cluster" length="all" >}} and create a simple cluster using Minikube.
+
diff --git a/content/en/docs/tutorials/kubernetes-basics/create-cluster/cluster-interactive.html b/content/en/docs/tutorials/kubernetes-basics/create-cluster/cluster-interactive.html
index 5301c6b7a1..2649ce4f94 100644
--- a/content/en/docs/tutorials/kubernetes-basics/create-cluster/cluster-interactive.html
+++ b/content/en/docs/tutorials/kubernetes-basics/create-cluster/cluster-interactive.html
@@ -11,7 +11,7 @@ weight: 20
 
 <link href="/docs/tutorials/kubernetes-basics/public/css/styles.css" rel="stylesheet">
 <link href="/docs/tutorials/kubernetes-basics/public/css/overrides.css" rel="stylesheet">
-<script src="https://katacoda.com/embed.js"></script>
+{{< katacoda-tutorial >}}
 
 <div class="layout" id="top">
 
diff --git a/content/en/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro.html b/content/en/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro.html
index 47a2629feb..153f0cec63 100644
--- a/content/en/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro.html
+++ b/content/en/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro.html
@@ -72,7 +72,7 @@ weight: 10
         <div class="row">
             <div class="col-md-8">
                 <p><b>The Control Plane is responsible for managing the cluster.</b> The Control Plane coordinates all activities in your cluster, such as scheduling applications, maintaining applications' desired state, scaling applications, and rolling out new updates.</p>
-                <p><b>A node is a VM or a physical computer that serves as a worker machine in a Kubernetes cluster.</b> Each node has a Kubelet, which is an agent for managing the node and communicating with the Kubernetes control plane. The node should also have tools for handling container operations, such as containerd or Docker. A Kubernetes cluster that handles production traffic should have a minimum of three nodes.</p>
+                <p><b>A node is a VM or a physical computer that serves as a worker machine in a Kubernetes cluster.</b> Each node has a Kubelet, which is an agent for managing the node and communicating with the Kubernetes control plane. The node should also have tools for handling container operations, such as containerd or Docker. A Kubernetes cluster that handles production traffic should have a minimum of three nodes because if one node goes down, both an etcd member and a control plane instance are lost, and redundancy is compromised. You can mitigate this risk by adding more control plane nodes.</p>
 
             </div>
             <div class="col-md-4">
diff --git a/content/en/docs/tutorials/kubernetes-basics/deploy-app/deploy-interactive.html b/content/en/docs/tutorials/kubernetes-basics/deploy-app/deploy-interactive.html
index 915304f912..d8a525a6d5 100644
--- a/content/en/docs/tutorials/kubernetes-basics/deploy-app/deploy-interactive.html
+++ b/content/en/docs/tutorials/kubernetes-basics/deploy-app/deploy-interactive.html
@@ -11,7 +11,7 @@ weight: 20
 
 <link href="/docs/tutorials/kubernetes-basics/public/css/styles.css" rel="stylesheet">
 <link href="/docs/tutorials/kubernetes-basics/public/css/overrides.css" rel="stylesheet">
-<script src="https://katacoda.com/embed.js"></script>
+{{< katacoda-tutorial >}}
 
 <div class="layout" id="top">
 
diff --git a/content/en/docs/tutorials/kubernetes-basics/explore/explore-interactive.html b/content/en/docs/tutorials/kubernetes-basics/explore/explore-interactive.html
index ad79ec5d7f..82b5f4bb33 100644
--- a/content/en/docs/tutorials/kubernetes-basics/explore/explore-interactive.html
+++ b/content/en/docs/tutorials/kubernetes-basics/explore/explore-interactive.html
@@ -11,7 +11,7 @@ weight: 20
 
 <link href="/docs/tutorials/kubernetes-basics/public/css/styles.css" rel="stylesheet">
 <link href="/docs/tutorials/kubernetes-basics/public/css/overrides.css" rel="stylesheet">
-<script src="https://katacoda.com/embed.js"></script>
+{{< katacoda-tutorial >}}
 
 <div class="layout" id="top">
 
diff --git a/content/en/docs/tutorials/kubernetes-basics/expose/expose-interactive.html b/content/en/docs/tutorials/kubernetes-basics/expose/expose-interactive.html
index 2b5d3aa365..ce5eeb455f 100644
--- a/content/en/docs/tutorials/kubernetes-basics/expose/expose-interactive.html
+++ b/content/en/docs/tutorials/kubernetes-basics/expose/expose-interactive.html
@@ -11,7 +11,7 @@ weight: 20
 
 <link href="/docs/tutorials/kubernetes-basics/public/css/styles.css" rel="stylesheet">
 <link href="/docs/tutorials/kubernetes-basics/public/css/overrides.css" rel="stylesheet">
-<script src="https://katacoda.com/embed.js"></script>
+{{< katacoda-tutorial >}}
 
 <div class="layout" id="top">
 
diff --git a/content/en/docs/tutorials/kubernetes-basics/expose/expose-intro.html b/content/en/docs/tutorials/kubernetes-basics/expose/expose-intro.html
index 1996859e2e..b362669c05 100644
--- a/content/en/docs/tutorials/kubernetes-basics/expose/expose-intro.html
+++ b/content/en/docs/tutorials/kubernetes-basics/expose/expose-intro.html
@@ -66,7 +66,7 @@ weight: 10
 		
 		<div class="row">
 			<div class="col-md-8">
-				<p>A Service routes traffic across a set of Pods. Services are the abstraction that allow pods to die and replicate in Kubernetes without impacting your application. Discovery and routing among dependent Pods (such as the frontend and backend components in an application) is handled by Kubernetes Services.</p>
+				<p>A Service routes traffic across a set of Pods. Services are the abstraction that allows pods to die and replicate in Kubernetes without impacting your application. Discovery and routing among dependent Pods (such as the frontend and backend components in an application) are handled by Kubernetes Services.</p>
 				<p>Services match a set of Pods using <a href="/docs/concepts/overview/working-with-objects/labels">labels and selectors</a>, a grouping primitive that allows logical operation on objects in Kubernetes. Labels are key/value pairs attached to objects and can be used in any number of ways:</p>
 				<ul>
 					<li>Designate objects for development, test, and production</li>
diff --git a/content/en/docs/tutorials/kubernetes-basics/scale/scale-interactive.html b/content/en/docs/tutorials/kubernetes-basics/scale/scale-interactive.html
index 3fedf79782..ad01e64c02 100644
--- a/content/en/docs/tutorials/kubernetes-basics/scale/scale-interactive.html
+++ b/content/en/docs/tutorials/kubernetes-basics/scale/scale-interactive.html
@@ -11,7 +11,7 @@ weight: 20
 
 <link href="/docs/tutorials/kubernetes-basics/public/css/styles.css" rel="stylesheet">
 <link href="/docs/tutorials/kubernetes-basics/public/css/overrides.css" rel="stylesheet">
-<script src="https://katacoda.com/embed.js"></script>
+{{< katacoda-tutorial >}}
 
 <div class="layout" id="top">
 
diff --git a/content/en/docs/tutorials/kubernetes-basics/update/update-interactive.html b/content/en/docs/tutorials/kubernetes-basics/update/update-interactive.html
index 2e70d61d74..99184ddb3e 100644
--- a/content/en/docs/tutorials/kubernetes-basics/update/update-interactive.html
+++ b/content/en/docs/tutorials/kubernetes-basics/update/update-interactive.html
@@ -11,7 +11,7 @@ weight: 20
 
 <link href="/docs/tutorials/kubernetes-basics/public/css/styles.css" rel="stylesheet">
 <link href="/docs/tutorials/kubernetes-basics/public/css/overrides.css" rel="stylesheet">
-<script src="https://katacoda.com/embed.js"></script>
+{{< katacoda-tutorial >}}
 
 <div class="layout" id="top">
 
diff --git a/content/en/docs/tutorials/security/_index.md b/content/en/docs/tutorials/security/_index.md
new file mode 100644
index 0000000000..fbb8140dfa
--- /dev/null
+++ b/content/en/docs/tutorials/security/_index.md
@@ -0,0 +1,5 @@
+---
+title: "Security"
+weight: 40
+---
+
diff --git a/content/en/docs/tutorials/clusters/apparmor.md b/content/en/docs/tutorials/security/apparmor.md
similarity index 89%
rename from content/en/docs/tutorials/clusters/apparmor.md
rename to content/en/docs/tutorials/security/apparmor.md
index 8907768089..5af4d86668 100644
--- a/content/en/docs/tutorials/clusters/apparmor.md
+++ b/content/en/docs/tutorials/security/apparmor.md
@@ -233,7 +233,7 @@ kubectl get events | grep hello-apparmor
 We can verify that the container is actually running with that profile by checking its proc attr:
 
 ```shell
-kubectl exec hello-apparmor cat /proc/1/attr/current
+kubectl exec hello-apparmor -- cat /proc/1/attr/current
 ```
 ```
 k8s-apparmor-example-deny-write (enforce)
@@ -242,7 +242,7 @@ k8s-apparmor-example-deny-write (enforce)
 Finally, we can see what happens if we try to violate the profile by writing to a file:
 
 ```shell
-kubectl exec hello-apparmor touch /tmp/test
+kubectl exec hello-apparmor -- touch /tmp/test
 ```
 ```
 touch: /tmp/test: Permission denied
@@ -264,7 +264,7 @@ metadata:
 spec:
   containers:
   - name: hello
-    image: busybox
+    image: busybox:1.28
     command: [ "sh", "-c", "echo 'Hello AppArmor!' && sleep 1h" ]
 EOF
 pod/hello-apparmor-2 created
@@ -350,7 +350,7 @@ node with the required profile.
 
 {{< note >}}
 PodSecurityPolicy is deprecated in Kubernetes v1.21, and will be removed in v1.25.
-See [PodSecurityPolicy documentation](/docs/concepts/policy/pod-security-policy/) for more information.
+See [PodSecurityPolicy](/docs/concepts/security/pod-security-policy/) documentation for more information.
 {{< /note >}}
 
 If the PodSecurityPolicy extension is enabled, cluster-wide AppArmor restrictions can be applied. To
@@ -382,27 +382,13 @@ If you do not want AppArmor to be available on your cluster, it can be disabled
 ```
 
 When disabled, any Pod that includes an AppArmor profile will fail validation with a "Forbidden"
-error. Note that by default docker always enables the "docker-default" profile on non-privileged
-pods (if the AppArmor kernel module is enabled), and will continue to do so even if the feature-gate
-is disabled. The option to disable AppArmor will be removed when AppArmor graduates to general
+error.
+
+{{<note>}}
+Even if the Kubernetes feature is disabled, runtimes may still enforce the default profile. The
+option to disable the AppArmor feature will be removed when AppArmor graduates to general
 availability (GA).
-
-### Upgrading to Kubernetes v1.4 with AppArmor
-
-No action is required with respect to AppArmor to upgrade your cluster to v1.4. However, if any
-existing pods had an AppArmor annotation, they will not go through validation (or PodSecurityPolicy
-admission). If permissive profiles are loaded on the nodes, a malicious user could pre-apply a
-permissive profile to escalate the pod privileges above the docker-default. If this is a concern, it
-is recommended to scrub the cluster of any pods containing an annotation with
-`apparmor.security.beta.kubernetes.io`.
-
-### Upgrade path to General Availability
-
-When AppArmor is ready to be graduated to general availability (GA), the options currently specified
-through annotations will be converted to fields. Supporting all the upgrade and downgrade paths
-through the transition is very nuanced, and will be explained in detail when the transition
-occurs. We will commit to supporting both fields and annotations for at least 2 releases, and will
-explicitly reject the annotations for at least 2 releases after that.
+{{</note>}}
 
 ## Authoring Profiles
 
@@ -415,10 +401,6 @@ tools to help with that:
 * [bane](https://github.com/jfrazelle/bane) is an AppArmor profile generator for Docker that uses a
   simplified profile language.
 
-It is recommended to run your application through Docker on a development workstation to generate
-the profiles, but there is nothing preventing running the tools on the Kubernetes node where your
-Pod is running.
-
 To debug problems with AppArmor, you can check the system logs to see what, specifically, was
 denied. AppArmor logs verbose messages to `dmesg`, and errors can usually be found in the system
 logs or through `journalctl`. More information is provided in
@@ -441,9 +423,8 @@ Specifying the profile a container will run with:
 - `runtime/default`: Refers to the default runtime profile.
   - Equivalent to not specifying a profile (without a PodSecurityPolicy default), except it still
     requires AppArmor to be enabled.
-  - For Docker, this resolves to the
-    [`docker-default`](https://docs.docker.com/engine/security/apparmor/) profile for non-privileged
-    containers, and unconfined (no profile) for privileged containers.
+  - In practice, many container runtimes use the same OCI default profile, defined here:
+    https://github.com/containers/common/blob/main/pkg/apparmor/apparmor_linux_template.go
 - `localhost/<profile_name>`: Refers to a profile loaded on the node (localhost) by name.
   - The possible profile names are detailed in the
     [core policy reference](https://gitlab.com/apparmor/apparmor/wikis/AppArmor_Core_Policy_Reference#profile-names-and-attachment-specifications).
@@ -474,5 +455,3 @@ Additional resources:
 
 * [Quick guide to the AppArmor profile language](https://gitlab.com/apparmor/apparmor/wikis/QuickProfileLanguage)
 * [AppArmor core policy reference](https://gitlab.com/apparmor/apparmor/wikis/Policy_Layout)
-
-
diff --git a/content/en/docs/tutorials/security/cluster-level-pss.md b/content/en/docs/tutorials/security/cluster-level-pss.md
new file mode 100644
index 0000000000..3b662efc60
--- /dev/null
+++ b/content/en/docs/tutorials/security/cluster-level-pss.md
@@ -0,0 +1,328 @@
+---
+title: Apply Pod Security Standards at the Cluster Level
+content_type: tutorial
+weight: 10
+---
+
+{{% alert title="Note" %}}
+This tutorial applies only for new clusters.
+{{% /alert %}}
+
+Pod Security admission (PSA) is enabled by default in v1.23 and later, as it has
+[graduated to beta](/blog/2021/12/09/pod-security-admission-beta/).
+Pod Security
+is an admission controller that carries out checks against the Kubernetes
+[Pod Security Standards](/docs/concepts/security/pod-security-standards/) when new pods are
+created. This tutorial shows you how to enforce the `baseline` Pod Security
+Standard at the cluster level which applies a standard configuration
+to all namespaces in a cluster.
+
+To apply Pod Security Standards to specific namespaces, refer to
+[Apply Pod Security Standards at the namespace level](/docs/tutorials/security/ns-level-pss).
+
+If you are running a version of Kubernetes other than v{{< skew currentVersion >}},
+check the documentation for that version.
+
+## {{% heading "prerequisites" %}}
+
+Install the following on your workstation:
+
+- [KinD](https://kind.sigs.k8s.io/docs/user/quick-start/#installation)
+- [kubectl](/docs/tasks/tools/)
+
+## Choose the right Pod Security Standard to apply
+
+[Pod Security Admission](/docs/concepts/security/pod-security-admission/)
+lets you apply built-in [Pod Security Standards](/docs/concepts/security/pod-security-standards/)
+with the following modes: `enforce`, `audit`, and `warn`.
+
+To gather information that helps you to choose the Pod Security Standards
+that are most appropriate for your configuration, do the following:
+
+1. Create a cluster with no Pod Security Standards applied:
+
+    ```shell
+    kind create cluster --name psa-wo-cluster-pss --image kindest/node:v1.24.0
+    ```
+   The output is similar to this:
+    ```
+    Creating cluster "psa-wo-cluster-pss" ...
+    ✓ Ensuring node image (kindest/node:v1.24.0) 🖼
+    ✓ Preparing nodes 📦  
+    ✓ Writing configuration 📜
+    ✓ Starting control-plane 🕹️
+    ✓ Installing CNI 🔌
+    ✓ Installing StorageClass 💾
+    Set kubectl context to "kind-psa-wo-cluster-pss"
+    You can now use your cluster with:
+    
+    kubectl cluster-info --context kind-psa-wo-cluster-pss
+    
+    Thanks for using kind! 😊
+    
+    ```
+
+1. Set the kubectl context to the new cluster:
+
+    ```shell
+    kubectl cluster-info --context kind-psa-wo-cluster-pss
+    ```
+   The output is similar to this:
+
+    ```
+     Kubernetes control plane is running at https://127.0.0.1:61350
+
+    CoreDNS is running at https://127.0.0.1:61350/api/v1/namespaces/kube-system/services/kube-dns:dns/proxy
+    
+    To further debug and diagnose cluster problems, use 'kubectl cluster-info dump'.
+    ```
+
+1.  Get a list of namespaces in the cluster:
+
+    ```shell
+    kubectl get ns
+    ```
+    The output is similar to this:
+    ```      
+    NAME                 STATUS   AGE
+    default              Active   9m30s
+    kube-node-lease      Active   9m32s
+    kube-public          Active   9m32s
+    kube-system          Active   9m32s
+    local-path-storage   Active   9m26s
+    ```
+
+1. Use `--dry-run=server` to understand what happens when different Pod Security Standards
+   are applied:
+
+   1. Privileged
+      ```shell
+      kubectl label --dry-run=server --overwrite ns --all \
+      pod-security.kubernetes.io/enforce=privileged
+      ```
+     The output is similar to this:
+      ```      
+      namespace/default labeled
+      namespace/kube-node-lease labeled
+      namespace/kube-public labeled
+      namespace/kube-system labeled
+      namespace/local-path-storage labeled
+      ```
+   2. Baseline
+      ```shell    
+      kubectl label --dry-run=server --overwrite ns --all \
+      pod-security.kubernetes.io/enforce=baseline
+      ```
+     The output is similar to this:
+      ```   
+      namespace/default labeled
+      namespace/kube-node-lease labeled
+      namespace/kube-public labeled
+      Warning: existing pods in namespace "kube-system" violate the new PodSecurity enforce level "baseline:latest"
+      Warning: etcd-psa-wo-cluster-pss-control-plane (and 3 other pods): host namespaces, hostPath volumes
+      Warning: kindnet-vzj42: non-default capabilities, host namespaces, hostPath volumes
+      Warning: kube-proxy-m6hwf: host namespaces, hostPath volumes, privileged
+      namespace/kube-system labeled
+      namespace/local-path-storage labeled
+      ```   
+
+   3. Restricted
+     ```shell
+      kubectl label --dry-run=server --overwrite ns --all \
+      pod-security.kubernetes.io/enforce=restricted
+      ```
+     The output is similar to this:
+      ```   
+      namespace/default labeled
+      namespace/kube-node-lease labeled
+      namespace/kube-public labeled
+      Warning: existing pods in namespace "kube-system" violate the new PodSecurity enforce level "restricted:latest"
+      Warning: coredns-7bb9c7b568-hsptc (and 1 other pod): unrestricted capabilities, runAsNonRoot != true, seccompProfile
+      Warning: etcd-psa-wo-cluster-pss-control-plane (and 3 other pods): host namespaces, hostPath volumes, allowPrivilegeEscalation != false, unrestricted capabilities, restricted volume types, runAsNonRoot != true
+      Warning: kindnet-vzj42: non-default capabilities, host namespaces, hostPath volumes, allowPrivilegeEscalation != false, unrestricted capabilities, restricted volume types, runAsNonRoot != true, seccompProfile
+      Warning: kube-proxy-m6hwf: host namespaces, hostPath volumes, privileged, allowPrivilegeEscalation != false, unrestricted capabilities, restricted volume types, runAsNonRoot != true, seccompProfile
+      namespace/kube-system labeled
+      Warning: existing pods in namespace "local-path-storage" violate the new PodSecurity enforce level "restricted:latest"
+      Warning: local-path-provisioner-d6d9f7ffc-lw9lh: allowPrivilegeEscalation != false, unrestricted capabilities, runAsNonRoot != true, seccompProfile
+      namespace/local-path-storage labeled
+      ```
+
+From the previous output, you'll notice that applying the `privileged` Pod Security Standard shows no warnings
+for any namespaces. However, `baseline` and `restricted` standards both have
+warnings, specifically in the `kube-system` namespace.
+
+## Set modes, versions and standards
+
+In this section, you apply the following Pod Security Standards to the `latest` version:
+
+* `baseline` standard in `enforce` mode.
+* `restricted` standard in `warn` and `audit` mode.
+
+The `baseline` Pod Security Standard provides a convenient
+middle ground that allows keeping the exemption list short and prevents known
+privilege escalations.
+
+Additionally, to prevent pods from failing in `kube-system`, you'll exempt the namespace
+from having Pod Security Standards applied.
+
+When you implement Pod Security Admission in your own environment, consider the
+following:
+
+1. Based on the risk posture applied to a cluster, a stricter Pod Security
+   Standard like `restricted` might be a better choice.
+1. Exempting the `kube-system` namespace allows pods to run as
+   `privileged` in this namespace. For real world use, the Kubernetes project
+   strongly recommends that you apply strict RBAC
+   policies that limit access to `kube-system`, following the principle of least
+   privilege.
+   To implement the preceding standards, do the following:
+1. Create a configuration file that can be consumed by the Pod Security
+   Admission Controller to implement these Pod Security Standards:
+
+    ```
+    mkdir -p /tmp/pss
+    cat <<EOF > /tmp/pss/cluster-level-pss.yaml 
+    apiVersion: apiserver.config.k8s.io/v1
+    kind: AdmissionConfiguration
+    plugins:
+    - name: PodSecurity
+      configuration:
+        apiVersion: pod-security.admission.config.k8s.io/v1beta1
+        kind: PodSecurityConfiguration
+        defaults:
+          enforce: "baseline"
+          enforce-version: "latest"
+          audit: "restricted"
+          audit-version: "latest"
+          warn: "restricted"
+          warn-version: "latest"
+        exemptions:
+          usernames: []
+          runtimeClasses: []
+          namespaces: [kube-system]
+    EOF
+    ```
+
+1. Configure the API server to consume this file during cluster creation:
+
+    ```
+    cat <<EOF > /tmp/pss/cluster-config.yaml 
+    kind: Cluster
+    apiVersion: kind.x-k8s.io/v1alpha4
+    nodes:
+    - role: control-plane
+      kubeadmConfigPatches:
+      - |
+        kind: ClusterConfiguration
+        apiServer:
+            extraArgs:
+              admission-control-config-file: /etc/config/cluster-level-pss.yaml
+            extraVolumes:
+              - name: accf
+                hostPath: /etc/config
+                mountPath: /etc/config
+                readOnly: false
+                pathType: "DirectoryOrCreate"
+      extraMounts:
+      - hostPath: /tmp/pss
+        containerPath: /etc/config
+        # optional: if set, the mount is read-only.
+        # default false
+        readOnly: false
+        # optional: if set, the mount needs SELinux relabeling.
+        # default false
+        selinuxRelabel: false
+        # optional: set propagation mode (None, HostToContainer or Bidirectional)
+        # see https://kubernetes.io/docs/concepts/storage/volumes/#mount-propagation
+        # default None
+        propagation: None
+    EOF
+    ```
+
+   {{<note>}}
+   If you use Docker Desktop with KinD on macOS, you can
+   add `/tmp` as a Shared Directory under the menu item
+   **Preferences > Resources > File Sharing**.
+   {{</note>}}
+
+1. Create a cluster that uses Pod Security Admission to apply
+   these Pod Security Standards:
+
+   ```shell
+    kind create cluster --name psa-with-cluster-pss --image kindest/node:v1.24.0 --config /tmp/pss/cluster-config.yaml
+   ```
+   The output is similar to this:
+   ```
+    Creating cluster "psa-with-cluster-pss" ...
+     ✓ Ensuring node image (kindest/node:v1.24.0) 🖼 
+     ✓ Preparing nodes 📦  
+     ✓ Writing configuration 📜 
+     ✓ Starting control-plane 🕹️ 
+     ✓ Installing CNI 🔌 
+     ✓ Installing StorageClass 💾 
+    Set kubectl context to "kind-psa-with-cluster-pss"
+    You can now use your cluster with:
+    
+    kubectl cluster-info --context kind-psa-with-cluster-pss
+    
+    Have a question, bug, or feature request? Let us know! https://kind.sigs.k8s.io/#community 🙂
+    ```
+
+1. Point kubectl to the cluster
+   ```shell
+    kubectl cluster-info --context kind-psa-with-cluster-pss
+    ```
+   The output is similar to this:
+    ```
+     Kubernetes control plane is running at https://127.0.0.1:63855
+     CoreDNS is running at https://127.0.0.1:63855/api/v1/namespaces/kube-system/services/kube-dns:dns/proxy
+  
+     To further debug and diagnose cluster problems, use 'kubectl cluster-info dump'.
+    ```
+1. Create the following Pod specification for a minimal configuration in the default namespace:
+
+    ```
+    cat <<EOF > /tmp/pss/nginx-pod.yaml
+    apiVersion: v1
+    kind: Pod
+    metadata:
+      name: nginx
+    spec:
+      containers:
+        - image: nginx
+          name: nginx
+          ports:
+            - containerPort: 80
+    EOF
+    ```
+1. Create the Pod in the cluster:
+
+   ```shell
+    kubectl apply -f /tmp/pss/nginx-pod.yaml
+   ```
+   The output is similar to this:
+   ```
+    Warning: would violate PodSecurity "restricted:latest": allowPrivilegeEscalation != false (container "nginx" must set securityContext.allowPrivilegeEscalation=false), unrestricted capabilities (container "nginx" must set securityContext.capabilities.drop=["ALL"]), runAsNonRoot != true (pod or container "nginx" must set securityContext.runAsNonRoot=true), seccompProfile (pod or container "nginx" must set securityContext.seccompProfile.type to "RuntimeDefault" or "Localhost")
+    pod/nginx created
+   ```
+
+## Clean up
+
+Run `kind delete cluster --name psa-with-cluster-pss` and
+`kind delete cluster --name psa-wo-cluster-pss` to delete the clusters you
+created.
+
+## {{% heading "whatsnext" %}}
+
+- Run a
+  [shell script](/examples/security/kind-with-cluster-level-baseline-pod-security.sh)
+  to perform all the preceding steps at once:
+  1. Create a Pod Security Standards based cluster level Configuration
+  2. Create a file to let API server consumes this configuration
+  3. Create a cluster that creates an API server with this configuration
+  4. Set kubectl context to this new cluster
+  5. Create a minimal pod yaml file
+  6. Apply this file to create a Pod in the new cluster
+- [Pod Security Admission](/docs/concepts/security/pod-security-admission/)
+- [Pod Security Standards](/docs/concepts/security/pod-security-standards/)
+- [Apply Pod Security Standards at the namespace level](/docs/tutorials/security/ns-level-pss/)
diff --git a/content/en/docs/tutorials/security/ns-level-pss.md b/content/en/docs/tutorials/security/ns-level-pss.md
new file mode 100644
index 0000000000..43a48d0932
--- /dev/null
+++ b/content/en/docs/tutorials/security/ns-level-pss.md
@@ -0,0 +1,174 @@
+---
+title: Apply Pod Security Standards at the Namespace Level
+content_type: tutorial
+weight: 10
+---
+
+{{% alert title="Note" %}}
+This tutorial applies only for new clusters.
+{{% /alert %}}
+
+Pod Security admission (PSA) is enabled by default in v1.23 and later, as it
+[graduated to beta](/blog/2021/12/09/pod-security-admission-beta/). Pod Security Admission
+is an admission controller that applies 
+[Pod Security Standards](/docs/concepts/security/pod-security-standards/) 
+when pods are created. In this tutorial, you will enforce the `baseline` Pod Security Standard,
+one namespace at a time.
+
+You can also apply Pod Security Standards to multiple namespaces at once at the cluster
+level. For instructions, refer to
+[Apply Pod Security Standards at the cluster level](/docs/tutorials/security/cluster-level-pss/).
+
+## {{% heading "prerequisites" %}}
+
+Install the following on your workstation:
+
+- [KinD](https://kind.sigs.k8s.io/docs/user/quick-start/#installation)
+- [kubectl](/docs/tasks/tools/)
+
+## Create cluster
+
+1. Create a `KinD` cluster as follows:
+
+   ```shell
+   kind create cluster --name psa-ns-level --image kindest/node:v1.23.0
+   ```
+
+   The output is similar to this:
+
+   ```
+   Creating cluster "psa-ns-level" ...
+    ✓ Ensuring node image (kindest/node:v1.23.0) 🖼 
+    ✓ Preparing nodes 📦  
+    ✓ Writing configuration 📜 
+    ✓ Starting control-plane 🕹️ 
+    ✓ Installing CNI 🔌 
+    ✓ Installing StorageClass 💾 
+   Set kubectl context to "kind-psa-ns-level"
+   You can now use your cluster with:
+    
+   kubectl cluster-info --context kind-psa-ns-level
+    
+   Not sure what to do next? 😅  Check out https://kind.sigs.k8s.io/docs/user/quick-start/
+   ```
+
+1. Set the kubectl context to the new cluster:
+
+   ```shell
+   kubectl cluster-info --context kind-psa-ns-level
+   ```
+   The output is similar to this:
+
+   ```
+   Kubernetes control plane is running at https://127.0.0.1:50996
+   CoreDNS is running at https://127.0.0.1:50996/api/v1/namespaces/kube-system/services/kube-dns:dns/proxy
+    
+   To further debug and diagnose cluster problems, use 'kubectl cluster-info dump'.
+   ```
+
+## Create a namespace
+
+Create a new namespace called `example`:
+
+```shell
+kubectl create ns example
+```
+
+The output is similar to this:
+
+```
+namespace/example created
+```
+
+## Apply Pod Security Standards
+
+1. Enable Pod Security Standards on this namespace using labels supported by
+   built-in Pod Security Admission. In this step we will warn on baseline pod
+   security standard as per the latest version (default value)
+
+   ```shell
+   kubectl label --overwrite ns example \
+      pod-security.kubernetes.io/warn=baseline \
+      pod-security.kubernetes.io/warn-version=latest
+   ```
+
+2. Multiple pod security standards can be enabled on any namespace, using labels.
+   Following command will `enforce` the `baseline` Pod Security Standard, but
+   `warn` and `audit` for `restricted` Pod Security Standards as per the latest
+   version (default value)
+
+   ```shell
+   kubectl label --overwrite ns example \
+     pod-security.kubernetes.io/enforce=baseline \
+     pod-security.kubernetes.io/enforce-version=latest \
+     pod-security.kubernetes.io/warn=restricted \
+     pod-security.kubernetes.io/warn-version=latest \
+     pod-security.kubernetes.io/audit=restricted \
+     pod-security.kubernetes.io/audit-version=latest
+   ```
+
+## Verify the Pod Security Standards
+
+1. Create a minimal pod in `example` namespace:
+
+   ```shell
+   cat <<EOF > /tmp/pss/nginx-pod.yaml
+   apiVersion: v1
+   kind: Pod
+   metadata:
+     name: nginx
+   spec:
+     containers:
+       - image: nginx
+         name: nginx
+         ports:
+           - containerPort: 80
+   EOF
+   ```
+
+1. Apply the pod spec to the cluster in `example` namespace:
+
+   ```shell
+   kubectl apply -n example -f /tmp/pss/nginx-pod.yaml
+   ```
+   The output is similar to this:
+
+   ```
+   Warning: would violate PodSecurity "restricted:latest": allowPrivilegeEscalation != false (container "nginx" must set securityContext.allowPrivilegeEscalation=false), unrestricted capabilities (container "nginx" must set securityContext.capabilities.drop=["ALL"]), runAsNonRoot != true (pod or container "nginx" must set securityContext.runAsNonRoot=true), seccompProfile (pod or container "nginx" must set securityContext.seccompProfile.type to "RuntimeDefault" or "Localhost")
+   pod/nginx created
+   ```
+
+1. Apply the pod spec to the cluster in `default` namespace:
+
+   ```shell
+   kubectl apply -n default -f /tmp/pss/nginx-pod.yaml
+   ```
+   Output is similar to this:
+
+   ```
+   pod/nginx created
+   ```
+
+The Pod Security Standards were applied only to the `example`
+namespace. You could create the same Pod in the `default` namespace
+with no warnings.
+
+## Clean up
+
+Run `kind delete cluster -name psa-ns-level` to delete the cluster created.
+
+## {{% heading "whatsnext" %}}
+
+- Run a
+  [shell script](/examples/security/kind-with-namespace-level-baseline-pod-security.sh)
+  to perform all the preceding steps all at once.
+
+  1. Create KinD cluster
+  2. Create new namespace
+  3. Apply `baseline` Pod Security Standard in `enforce` mode while applying
+     `restricted` Pod Security Standard also in `warn` and `audit` mode.
+  4. Create a new pod with the following pod security standards applied
+
+- [Pod Security Admission](/docs/concepts/security/pod-security-admission/)
+- [Pod Security Standards](/docs/concepts/security/pod-security-standards/)
+- [Apply Pod Security Standards at the cluster level](/docs/tutorials/security/cluster-level-pss/)
diff --git a/content/en/docs/tutorials/clusters/seccomp.md b/content/en/docs/tutorials/security/seccomp.md
similarity index 59%
rename from content/en/docs/tutorials/clusters/seccomp.md
rename to content/en/docs/tutorials/security/seccomp.md
index 029ea97a7d..5a3fa4a641 100644
--- a/content/en/docs/tutorials/clusters/seccomp.md
+++ b/content/en/docs/tutorials/security/seccomp.md
@@ -17,7 +17,7 @@ Seccomp stands for secure computing mode and has been a feature of the Linux
 kernel since version 2.6.12. It can be used to sandbox the privileges of a
 process, restricting the calls it is able to make from userspace into the
 kernel. Kubernetes lets you automatically apply seccomp profiles loaded onto a
-Node to your Pods and containers.
+{{< glossary_tooltip text="node" term_id="node" >}} to your Pods and containers.
 
 Identifying the privileges required for your workloads can be difficult. In this
 tutorial, you will go through how to load seccomp profiles into a local
@@ -36,16 +36,18 @@ profiles that give only the necessary privileges to your container processes.
 
 ## {{% heading "prerequisites" %}}
 
-{{< version-check >}}
-
 In order to complete all steps in this tutorial, you must install
-[kind](https://kind.sigs.k8s.io/docs/user/quick-start/) and
-[kubectl](/docs/tasks/tools/). This tutorial will show examples
-both alpha (new in v1.22) and generally available seccomp functionality. You should
-make sure that your cluster is [configured
-correctly](https://kind.sigs.k8s.io/docs/user/quick-start/#setting-kubernetes-version)
+[kind](/docs/tasks/tools/#kind) and [kubectl](/docs/tasks/tools/#kubectl).
+
+This tutorial shows some examples that are still alpha (since v1.22) and
+others that use only generally available seccomp functionality. You should
+make sure that your cluster is
+[configured correctly](https://kind.sigs.k8s.io/docs/user/quick-start/#setting-kubernetes-version)
 for the version you are using.
 
+The tutorial also uses the `curl` tool for downloading examples to your computer.
+You can adapt the steps to use a different tool if you prefer.
+
 {{< note >}}
 It is not possible to apply a seccomp profile to a container running with
 `privileged: true` set in the container's `securityContext`. Privileged containers always
@@ -54,6 +56,107 @@ run as `Unconfined`.
 
 <!-- steps -->
 
+
+## Download example seccomp profiles {#download-profiles}
+
+The contents of these profiles will be explored later on, but for now go ahead
+and download them into a directory named `profiles/` so that they can be loaded
+into the cluster.
+
+{{< tabs name="tab_with_code" >}}
+{{{< tab name="audit.json" >}}
+{{< codenew file="pods/security/seccomp/profiles/audit.json" >}}
+{{< /tab >}}
+{{< tab name="violation.json" >}}
+{{< codenew file="pods/security/seccomp/profiles/violation.json" >}}
+{{< /tab >}}}
+{{< tab name="fine-grained.json" >}}
+{{< codenew file="pods/security/seccomp/profiles/fine-grained.json" >}}
+{{< /tab >}}}
+{{< /tabs >}}
+
+Run these commands:
+
+```shell
+mkdir ./profiles
+curl -L -o profiles/audit.json https://k8s.io/examples/pods/security/seccomp/profiles/audit.json
+curl -L -o profiles/violation.json https://k8s.io/examples/pods/security/seccomp/profiles/violation.json
+curl -L -o profiles/fine-grained.json https://k8s.io/examples/pods/security/seccomp/profiles/fine-grained.json
+ls profiles
+```
+
+You should see three profiles listed at the end of the final step:
+```
+audit.json  fine-grained.json  violation.json
+```
+
+
+## Create a local Kubernetes cluster with kind
+
+
+For simplicity, [kind](https://kind.sigs.k8s.io/) can be used to create a single
+node cluster with the seccomp profiles loaded. Kind runs Kubernetes in Docker,
+so each node of the cluster is a container. This allows for files
+to be mounted in the filesystem of each container similar to loading files
+onto a node.
+
+{{< codenew file="pods/security/seccomp/kind.yaml" >}}
+
+Download that example kind configuration, and save it to a file named `kind.yaml`:
+```shell
+curl -L -O https://k8s.io/examples/pods/security/seccomp/kind.yaml
+```
+
+You can set a specific Kubernetes version by setting the node's container image.
+See [Nodes](https://kind.sigs.k8s.io/docs/user/configuration/#nodes) within the
+kind documentation about configuration for more details on this.
+This tutorial assumes you are using Kubernetes {{< param "version" >}}.
+
+As an alpha feature, you can configure Kubernetes to use the profile that the
+{{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}
+prefers by default, rather than falling back to `Unconfined`.
+If you want to try that, see
+[enable the use of `RuntimeDefault` as the default seccomp profile for all workloads](#enable-the-use-of-runtimedefault-as-the-default-seccomp-profile-for-all-workloads)
+before you continue.
+
+Once you have a kind configuration in place, create the kind cluster with
+that configuration:
+
+```shell
+kind create cluster --config=kind.yaml
+```
+
+After the new Kubernetes cluster is ready, identify the Docker container running
+as the single node cluster:
+
+```shell
+docker ps
+```
+
+You should see output indicating that a container is running with name
+`kind-control-plane`. The output is similar to:
+
+```
+CONTAINER ID        IMAGE                  COMMAND                  CREATED             STATUS              PORTS                       NAMES
+6a96207fed4b        kindest/node:v1.18.2   "/usr/local/bin/entr…"   27 seconds ago      Up 24 seconds       127.0.0.1:42223->6443/tcp   kind-control-plane
+```
+
+If observing the filesystem of that container, you should see that the
+`profiles/` directory has been successfully loaded into the default seccomp path
+of the kubelet. Use `docker exec` to run a command in the Pod:
+
+```shell
+# Change 6a96207fed4b to the container ID you saw from "docker ps"
+docker exec -it 6a96207fed4b ls /var/lib/kubelet/seccomp/profiles
+```
+
+```
+audit.json  fine-grained.json  violation.json
+```
+
+You have verified that these seccomp profiles are available to the kubelet
+running within kind.
+
 ## Enable the use of `RuntimeDefault` as the default seccomp profile for all workloads
 
 {{< feature-state state="alpha" for_k8s_version="v1.22" >}}
@@ -64,13 +167,22 @@ well as corresponding `--seccomp-default`
 [command line flag](/docs/reference/command-line-tools-reference/kubelet).
 Both have to be enabled simultaneously to use the feature.
 
-If enabled, the kubelet will use the `RuntimeDefault` seccomp profile by default, which is 
-defined by the container runtime, instead of using the `Unconfined` (seccomp disabled) mode. 
+If enabled, the kubelet will use the `RuntimeDefault` seccomp profile by default, which is
+defined by the container runtime, instead of using the `Unconfined` (seccomp disabled) mode.
 The default profiles aim to provide a strong set
 of security defaults while preserving the functionality of the workload. It is
 possible that the default profiles differ between container runtimes and their
 release versions, for example when comparing those from CRI-O and containerd.
 
+{{< note >}}
+Enabling the feature will neither change the Kubernetes
+`securityContext.seccompProfile` API field nor add the deprecated annotations of
+the workload. This provides users the possibility to rollback anytime without
+actually changing the workload configuration. Tools like
+[`crictl inspect`](https://github.com/kubernetes-sigs/cri-tools) can be used to
+verify which seccomp profile is being used by a container.
+{{< /note >}}
+
 Some workloads may require a lower amount of syscall restrictions than others.
 This means that they can fail during runtime even with the `RuntimeDefault`
 profile. To mitigate such a failure, you can:
@@ -100,69 +212,51 @@ kind: Cluster
 apiVersion: kind.x-k8s.io/v1alpha4
 featureGates:
   SeccompDefault: true
+nodes:
+  - role: control-plane
+    image: kindest/node:v1.23.0@sha256:49824ab1727c04e56a21a5d8372a402fcd32ea51ac96a2706a12af38934f81ac
+    kubeadmConfigPatches:
+      - |
+        kind: JoinConfiguration
+        nodeRegistration:
+          kubeletExtraArgs:
+            seccomp-default: "true"
+  - role: worker
+    image: kindest/node:v1.23.0@sha256:49824ab1727c04e56a21a5d8372a402fcd32ea51ac96a2706a12af38934f81ac
+    kubeadmConfigPatches:
+      - |
+        kind: JoinConfiguration
+        nodeRegistration:
+          kubeletExtraArgs:
+            feature-gates: SeccompDefault=true
+            seccomp-default: "true"
 ```
 
-## Create Seccomp Profiles
+If the cluster is ready, then running a pod:
 
-The contents of these profiles will be explored later on, but for now go ahead
-and download them into a directory named `profiles/` so that they can be loaded
-into the cluster.
-
-{{< tabs name="tab_with_code" >}}
-{{{< tab name="audit.json" >}}
-{{< codenew file="pods/security/seccomp/profiles/audit.json" >}}
-{{< /tab >}}
-{{< tab name="violation.json" >}}
-{{< codenew file="pods/security/seccomp/profiles/violation.json" >}}
-{{< /tab >}}}
-{{< tab name="fine-grained.json" >}}
-{{< codenew file="pods/security/seccomp/profiles/fine-grained.json" >}}
-{{< /tab >}}}
-{{< /tabs >}}
-
-## Create a Local Kubernetes Cluster with Kind
-
-For simplicity, [kind](https://kind.sigs.k8s.io/) can be used to create a single
-node cluster with the seccomp profiles loaded. Kind runs Kubernetes in Docker,
-so each node of the cluster is a container. This allows for files
-to be mounted in the filesystem of each container similar to loading files
-onto a node.
-
-{{< codenew file="pods/security/seccomp/kind.yaml" >}}
-<br>
-
-Download the example above, and save it to a file named `kind.yaml`. Then create
-the cluster with the configuration.
-
-```
-kind create cluster --config=kind.yaml
+```shell
+kubectl run --rm -it --restart=Never --image=alpine alpine -- sh
 ```
 
-Once the cluster is ready, identify the container running as the single node
-cluster:
+Should now have the default seccomp profile attached. This can be verified by
+using `docker exec` to run `crictl inspect` for the container on the kind
+worker:
 
-```
-docker ps
+```shell
+docker exec -it kind-worker bash -c \
+    'crictl inspect $(crictl ps --name=alpine -q) | jq .info.runtimeSpec.linux.seccomp'
 ```
 
-You should see output indicating that a container is running with name
-`kind-control-plane`.
-
-```
-CONTAINER ID        IMAGE                  COMMAND                  CREATED             STATUS              PORTS                       NAMES
-6a96207fed4b        kindest/node:v1.18.2   "/usr/local/bin/entr…"   27 seconds ago      Up 24 seconds       127.0.0.1:42223->6443/tcp   kind-control-plane
-```
-
-If observing the filesystem of that container, one should see that the
-`profiles/` directory has been successfully loaded into the default seccomp path
-of the kubelet. Use `docker exec` to run a command in the Pod:
-
-```
-docker exec -it 6a96207fed4b ls /var/lib/kubelet/seccomp/profiles
-```
-
-```
-audit.json  fine-grained.json  violation.json
+```json
+{
+  "defaultAction": "SCMP_ACT_ERRNO",
+  "architectures": ["SCMP_ARCH_X86_64", "SCMP_ARCH_X86", "SCMP_ARCH_X32"],
+  "syscalls": [
+    {
+      "names": ["..."]
+    }
+  ]
+}
 ```
 
 ## Create a Pod with a seccomp profile for syscall auditing
@@ -170,28 +264,28 @@ audit.json  fine-grained.json  violation.json
 To start off, apply the `audit.json` profile, which will log all syscalls of the
 process, to a new Pod.
 
-Download the correct manifest for your Kubernetes version:
+Here's a manifest for that Pod:
 
-{{< tabs name="audit_pods" >}}
-{{< tab name="v1.19 or Later (GA)" >}}
 {{< codenew file="pods/security/seccomp/ga/audit-pod.yaml" >}}
-{{< /tab >}}}
-{{{< tab name="Pre-v1.19 (alpha)" >}}
-{{< codenew file="pods/security/seccomp/alpha/audit-pod.yaml" >}}
-{{< /tab >}}
-{{< /tabs >}}
-<br>
+
+{{< note >}}
+The functional support for the already deprecated seccomp annotations
+`seccomp.security.alpha.kubernetes.io/pod` (for the whole pod) and
+`container.seccomp.security.alpha.kubernetes.io/[name]` (for a single container)
+is going to be removed with the release of Kubernetes v1.25. Please always use
+the native API fields in favor of the annotations.
+{{< /note >}}
 
 Create the Pod in the cluster:
 
-```
-kubectl apply -f audit-pod.yaml
+```shell
+kubectl apply -f https://k8s.io/examples/pods/security/seccomp/ga/audit-pod.yaml
 ```
 
 This profile does not restrict any syscalls, so the Pod should start
 successfully.
 
-```
+```shell
 kubectl get pod/audit-pod
 ```
 
@@ -201,28 +295,31 @@ audit-pod   1/1     Running   0          30s
 ```
 
 In order to be able to interact with this endpoint exposed by this
-container,create a NodePort Service that allows access to the endpoint from
-inside the kind control plane container.
+container, create a NodePort {{< glossary_tooltip text="Services" term_id="service" >}}
+that allows access to the endpoint from inside the kind control plane container.
 
-```
-kubectl expose pod/audit-pod --type NodePort --port 5678
+```shell
+kubectl expose pod audit-pod --type NodePort --port 5678
 ```
 
 Check what port the Service has been assigned on the node.
 
-```
-kubectl get svc/audit-pod
+```shell
+kubectl get service audit-pod
 ```
 
+The output is similar to:
 ```
 NAME        TYPE       CLUSTER-IP      EXTERNAL-IP   PORT(S)          AGE
 audit-pod   NodePort   10.111.36.142   <none>        5678:32373/TCP   72s
 ```
 
-Now you can `curl` the endpoint from inside the kind control plane container at
-the port exposed by this Service. Use `docker exec` to run a command in the Pod:
+Now you can use `curl` to access that endpoint from inside the kind control plane container,
+at the port exposed by this Service. Use `docker exec` to run the `curl` command within the
+container belonging to that control plane container:
 
-```
+```shell
+# Change 6a96207fed4b to the control plane container ID you saw from "docker ps"
 docker exec -it 6a96207fed4b curl localhost:32373
 ```
 
@@ -235,13 +332,14 @@ Because this Pod is running in a local cluster, you should be able to see those
 in `/var/log/syslog`. Open up a new terminal window and `tail` the output for
 calls from `http-echo`:
 
-```
+```shell
 tail -f /var/log/syslog | grep 'http-echo'
 ```
 
 You should already see some logs of syscalls made by `http-echo`, and if you
 `curl` the endpoint in the control plane container you will see more written.
 
+For example:
 ```
 Jul  6 15:37:40 my-machine kernel: [369128.669452] audit: type=1326 audit(1594067860.484:14536): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=29064 comm="http-echo" exe="/http-echo" sig=0 arch=c000003e syscall=51 compat=0 ip=0x46fe1f code=0x7ffc0000
 Jul  6 15:37:40 my-machine kernel: [369128.669453] audit: type=1326 audit(1594067860.484:14537): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=29064 comm="http-echo" exe="/http-echo" sig=0 arch=c000003e syscall=54 compat=0 ip=0x46fdba code=0x7ffc0000
@@ -260,37 +358,30 @@ for this container.
 
 Clean up that Pod and Service before moving to the next section:
 
-```
-kubectl delete pod/audit-pod
-kubectl delete svc/audit-pod
+```shell
+kubectl delete service audit-pod --wait
+kubectl delete pod audit-pod --wait --now
 ```
 
-## Create Pod with seccomp Profile that Causes Violation
+## Create Pod with seccomp profile that causes violation
 
 For demonstration, apply a profile to the Pod that does not allow for any
 syscalls.
 
-Download the correct manifest for your Kubernetes version:
+The manifest for this demonstration is:
 
-{{< tabs name="violation_pods" >}}
-{{< tab name="v1.19 or Later (GA)" >}}
 {{< codenew file="pods/security/seccomp/ga/violation-pod.yaml" >}}
-{{< /tab >}}}
-{{{< tab name="Pre-v1.19 (alpha)" >}}
-{{< codenew file="pods/security/seccomp/alpha/violation-pod.yaml" >}}
-{{< /tab >}}
-{{< /tabs >}}
-<br>
 
-Create the Pod in the cluster:
+Attempt to create the Pod in the cluster:
 
-```
-kubectl apply -f violation-pod.yaml
+```shell
+kubectl apply -f https://k8s.io/examples/pods/security/seccomp/ga/violation-pod.yaml
 ```
 
+The Pod creates, but there is an issue.
 If you check the status of the Pod, you should see that it failed to start.
 
-```
+```shell
 kubectl get pod/violation-pod
 ```
 
@@ -305,77 +396,71 @@ syscalls. Here seccomp has been instructed to error on any syscall by setting
 ability to do anything meaningful. What you really want is to give workloads
 only the privileges they need.
 
-Clean up that Pod and Service before moving to the next section:
+Clean up that Pod before moving to the next section:
 
-```
-kubectl delete pod/violation-pod
-kubectl delete svc/violation-pod
+```shell
+kubectl delete pod violation-pod --wait --now
 ```
 
-## Create Pod with seccomp Profile that Only Allows Necessary Syscalls
+## Create Pod with seccomp profile that only allows necessary syscalls
 
-If you take a look at the `fine-pod.json`, you will notice some of the syscalls
-seen in the first example where the profile set `"defaultAction":
+If you take a look at the `fine-grained.json` profile, you will notice some of the syscalls
+seen in syslog of the first example where the profile set `"defaultAction":
 "SCMP_ACT_LOG"`. Now the profile is setting `"defaultAction": "SCMP_ACT_ERRNO"`,
 but explicitly allowing a set of syscalls in the `"action": "SCMP_ACT_ALLOW"`
 block. Ideally, the container will run successfully and you will see no messages
 sent to `syslog`.
 
-Download the correct manifest for your Kubernetes version:
+The manifest for this example is:
 
-{{< tabs name="fine_pods" >}}
-{{< tab name="v1.19 or Later (GA)" >}}
 {{< codenew file="pods/security/seccomp/ga/fine-pod.yaml" >}}
-{{< /tab >}}}
-{{{< tab name="Pre-v1.19 (alpha)" >}}
-{{< codenew file="pods/security/seccomp/alpha/fine-pod.yaml" >}}
-{{< /tab >}}
-{{< /tabs >}}
-<br>
 
 Create the Pod in your cluster:
 
-```
-kubectl apply -f fine-pod.yaml
+```shell
+kubectl apply -f https://k8s.io/examples/pods/security/seccomp/ga/fine-pod.yaml
 ```
 
-The Pod should start successfully.
-
-```
-kubectl get pod/fine-pod
+```shell
+kubectl get pod fine-pod
 ```
 
+The Pod should be showing as having started successfully:
 ```
 NAME        READY   STATUS    RESTARTS   AGE
 fine-pod   1/1     Running   0          30s
 ```
 
-Open up a new terminal window and `tail` the output for calls from `http-echo`:
+Open up a new terminal window and use `tail` to monitor for log entries that
+mention calls from `http-echo`:
 
-```
+```shell
+# The log path on your computer might be different from "/var/log/syslog"
 tail -f /var/log/syslog | grep 'http-echo'
 ```
 
-Expose the Pod with a NodePort Service:
+Next, expose the Pod with a NodePort Service:
 
-```
-kubectl expose pod/fine-pod --type NodePort --port 5678
+```shell
+kubectl expose pod fine-pod --type NodePort --port 5678
 ```
 
 Check what port the Service has been assigned on the node:
 
-```
-kubectl get svc/fine-pod
+```shell
+kubectl get service fine-pod
 ```
 
+The output is similar to:
 ```
 NAME        TYPE       CLUSTER-IP      EXTERNAL-IP   PORT(S)          AGE
 fine-pod    NodePort   10.111.36.142   <none>        5678:32373/TCP   72s
 ```
 
-`curl` the endpoint from inside the kind control plane container:
+Use `curl` to access that endpoint from inside the kind control plane container:
 
-```
+```shell
+# Change 6a96207fed4b to the control plane container ID you saw from "docker ps"
 docker exec -it 6a96207fed4b curl localhost:32373
 ```
 
@@ -383,7 +468,7 @@ docker exec -it 6a96207fed4b curl localhost:32373
 just made some syscalls!
 ```
 
-You should see no output in the `syslog` because the profile allowed all
+You should see no output in the `syslog`. This is because the profile allowed all
 necessary syscalls and specified that an error should occur if one outside of
 the list is invoked. This is an ideal situation from a security perspective, but
 required some effort in analyzing the program. It would be nice if there was a
@@ -391,35 +476,51 @@ simple way to get closer to this security without requiring as much effort.
 
 Clean up that Pod and Service before moving to the next section:
 
-```
-kubectl delete pod/fine-pod
-kubectl delete svc/fine-pod
+```shell
+kubectl delete service fine-pod --wait
+kubectl delete pod fine-pod --wait --now
 ```
 
-## Create Pod that uses the Container Runtime Default seccomp Profile
+## Create Pod that uses the container runtime default seccomp profile
 
 Most container runtimes provide a sane set of default syscalls that are allowed
-or not. The defaults can easily be applied in Kubernetes by using the
-`runtime/default` annotation or setting the seccomp type in the security context
-of a pod or container to `RuntimeDefault`.
+or not. You can adopt these defaults for your workload by setting the seccomp
+type in the security context of a pod or container to `RuntimeDefault`.
 
-Download the correct manifest for your Kubernetes version:
+{{< note >}}
+If you have the `SeccompDefault` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) enabled, then Pods use the `RuntimeDefault` seccomp profile whenever
+no other seccomp profile is specified. Otherwise, the default is `Unconfined`.
+{{< /note >}}
+
+Here's a manifest for a Pod that requests the `RuntimeDefault` seccomp profile
+for all its containers:
 
-{{< tabs name="default_pods" >}}
-{{< tab name="v1.19 or Later (GA)" >}}
 {{< codenew file="pods/security/seccomp/ga/default-pod.yaml" >}}
-{{< /tab >}}}
-{{{< tab name="Pre-v1.19 (alpha)" >}}
-{{< codenew file="pods/security/seccomp/alpha/default-pod.yaml" >}}
-{{< /tab >}}
-{{< /tabs >}}
-<br>
 
-The default seccomp profile should provide adequate access for most workloads.
+Create that Pod:
+```shell
+kubectl apply -f https://k8s.io/examples/pods/security/seccomp/ga/default-pod.yaml
+```
+
+```shell
+kubectl get pod default-pod
+```
+
+The Pod should be showing as having started successfully:
+```
+NAME        READY   STATUS    RESTARTS   AGE
+default-pod 1/1     Running   0          20s
+```
+
+Finally, now that you saw that work OK, clean up:
+
+```shell
+kubectl delete pod default-pod --wait --now
+```
 
 ## {{% heading "whatsnext" %}}
 
-Additional resources:
+You can learn more about Linux seccomp:
 
 * [A seccomp Overview](https://lwn.net/Articles/656307/)
 * [Seccomp Security Profiles for Docker](https://docs.docker.com/engine/security/seccomp/)
diff --git a/content/en/docs/tutorials/services/source-ip.md b/content/en/docs/tutorials/services/source-ip.md
index 0a2d4b5929..9eab7538d4 100644
--- a/content/en/docs/tutorials/services/source-ip.md
+++ b/content/en/docs/tutorials/services/source-ip.md
@@ -119,7 +119,7 @@ clusterip    ClusterIP   10.0.170.92   <none>        80/TCP    51s
 And hitting the `ClusterIP` from a pod in the same cluster:
 
 ```shell
-kubectl run busybox -it --image=busybox --restart=Never --rm
+kubectl run busybox -it --image=busybox:1.28 --restart=Never --rm
 ```
 The output is similar to this:
 ```
@@ -164,7 +164,7 @@ The `client_address` is always the client pod's IP address, whether the client p
 ## Source IP for Services with `Type=NodePort`
 
 Packets sent to Services with
-[`Type=NodePort`](/docs/concepts/services-networking/service/#nodeport)
+[`Type=NodePort`](/docs/concepts/services-networking/service/#type-nodeport)
 are source NAT'd by default. You can test this by creating a `NodePort` Service:
 
 ```shell
@@ -206,19 +206,8 @@ Note that these are not the correct client IPs, they're cluster internal IPs. Th
 
 Visually:
 
-{{< mermaid >}}
-graph LR;
-  client(client)-->node2[Node 2];
-  node2-->client;
-  node2-. SNAT .->node1[Node 1];
-  node1-. SNAT .->node2;
-  node1-->endpoint(Endpoint);
+{{< figure src="/docs/images/tutor-service-nodePort-fig01.svg" alt="source IP nodeport figure 01" class="diagram-large" caption="Figure. Source IP Type=NodePort using SNAT" link="https://mermaid.live/edit#pako:eNqNkV9rwyAUxb-K3LysYEqS_WFYKAzat9GHdW9zDxKvi9RoMIZtlH732ZjSbE970cu5v3s86hFqJxEYfHjRNeT5ZcUtIbXRaMNN2hZ5vrYRqt52cSXV-4iMSuwkZiYtyX739EqWaahMQ-V1qPxDVLNOvkYrO6fj2dupWMR2iiT6foOKdEZoS5Q2hmVSStoH7w7IMqXUVOefWoaG3XVftHbGeZYVRbH6ZXJ47CeL2-qhxvt_ucTe1SUlpuMN6CX12XeGpLdJiaMMFFr0rdAyvvfxjHEIDbbIgcVSohKDCRy4PUV06KQIuJU6OA9MCdMjBTEEt_-2NbDgB7xAGy3i97VJPP0ABRmcqg" >}}
 
-  classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-  classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-  class node1,node2,endpoint k8s;
-  class client plain;
-{{</ mermaid >}}
 
 To avoid this, Kubernetes has a feature to
 [preserve the client source IP](/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip).
@@ -262,20 +251,8 @@ This is what happens:
 
 Visually:
 
-{{< mermaid >}}
-graph TD;
-  client --> node1[Node 1];
-  client(client) --x node2[Node 2];
-  node1 --> endpoint(endpoint);
-  endpoint --> node1;
-
-  classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-  classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-  class node1,node2,endpoint k8s;
-  class client plain;
-{{</ mermaid >}}
-
 
+{{< figure src="/docs/images/tutor-service-nodePort-fig02.svg" alt="source IP nodeport figure 02" class="diagram-large" caption="Figure. Source IP Type=NodePort preserves client source IP address" link="" >}}
 
 ## Source IP for Services with `Type=LoadBalancer`
 
diff --git a/content/en/docs/tutorials/stateful-application/cassandra.md b/content/en/docs/tutorials/stateful-application/cassandra.md
index ffbf65286b..b6b656b3f5 100644
--- a/content/en/docs/tutorials/stateful-application/cassandra.md
+++ b/content/en/docs/tutorials/stateful-application/cassandra.md
@@ -93,7 +93,7 @@ cassandra   ClusterIP   None         <none>        9042/TCP   45s
 ```
 
 If you don't see a Service named `cassandra`, that means creation failed. Read
-[Debug Services](/docs/tasks/debug-application-cluster/debug-service/)
+[Debug Services](/docs/tasks/debug/debug-application/debug-service/)
 for help troubleshooting common issues.
 
 ## Using a StatefulSet to create a Cassandra ring
diff --git a/content/en/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume.md b/content/en/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume.md
index d22d7df5ca..d3c426d789 100644
--- a/content/en/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume.md
+++ b/content/en/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume.md
@@ -16,7 +16,7 @@ This tutorial shows you how to deploy a WordPress site and a MySQL database usin
 A [PersistentVolume](/docs/concepts/storage/persistent-volumes/) (PV) is a piece of storage in the cluster that has been manually provisioned by an administrator, or dynamically provisioned by Kubernetes using a [StorageClass](/docs/concepts/storage/storage-classes).  A [PersistentVolumeClaim](/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims) (PVC) is a request for storage by a user that can be fulfilled by a PV. PersistentVolumes and PersistentVolumeClaims are independent from Pod lifecycles and preserve data through restarting, rescheduling, and even deleting Pods.
 
 {{< warning >}}
-This deployment is not suitable for production use cases, as it uses single instance WordPress and MySQL Pods. Consider using [WordPress Helm Chart](https://github.com/kubernetes/charts/tree/master/stable/wordpress) to deploy WordPress in production.
+This deployment is not suitable for production use cases, as it uses single instance WordPress and MySQL Pods. Consider using [WordPress Helm Chart](https://github.com/bitnami/charts/tree/master/bitnami/wordpress) to deploy WordPress in production.
 {{< /warning >}}
 
 {{< note >}}
@@ -236,10 +236,10 @@ Do not leave your WordPress installation on this page. If another user finds it,
 ## {{% heading "whatsnext" %}}
 
 
-* Learn more about [Introspection and Debugging](/docs/tasks/debug-application-cluster/debug-application-introspection/)
+* Learn more about [Introspection and Debugging](/docs/tasks/debug/debug-application/debug-running-pod/)
 * Learn more about [Jobs](/docs/concepts/workloads/controllers/job/)
 * Learn more about [Port Forwarding](/docs/tasks/access-application-cluster/port-forward-access-application-cluster/)
-* Learn how to [Get a Shell to a Container](/docs/tasks/debug-application-cluster/get-shell-running-container/)
+* Learn how to [Get a Shell to a Container](/docs/tasks/debug/debug-application/get-shell-running-container/)
 
 
 
diff --git a/content/en/docs/tutorials/stateful-application/zookeeper.md b/content/en/docs/tutorials/stateful-application/zookeeper.md
index 3ed1cd454b..3f57ab3ad4 100644
--- a/content/en/docs/tutorials/stateful-application/zookeeper.md
+++ b/content/en/docs/tutorials/stateful-application/zookeeper.md
@@ -123,7 +123,7 @@ zk-2      1/1       Running   0         40s
 ```
 
 The StatefulSet controller creates three Pods, and each Pod has a container with
-a [ZooKeeper](https://www-us.apache.org/dist/zookeeper/stable/) server.
+a [ZooKeeper](https://archive.apache.org/dist/zookeeper/stable/) server.
 
 ### Facilitating leader election
 
@@ -266,7 +266,7 @@ to read the data from another.
 The command below executes the `zkCli.sh` script to write `world` to the path `/hello` on the `zk-0` Pod in the ensemble.
 
 ```shell
-kubectl exec zk-0 zkCli.sh create /hello world
+kubectl exec zk-0 -- zkCli.sh create /hello world
 ```
 
 ```
@@ -279,7 +279,7 @@ Created /hello
 To get the data from the `zk-1` Pod use the following command.
 
 ```shell
-kubectl exec zk-1 zkCli.sh get /hello
+kubectl exec zk-1 -- zkCli.sh get /hello
 ```
 
 The data that you created on `zk-0` is available on all the servers in the
@@ -305,7 +305,7 @@ numChildren = 0
 
 ### Providing durable storage
 
-As mentioned in the [ZooKeeper Basics](#zookeeper-basics) section,
+As mentioned in the [ZooKeeper Basics](#zookeeper) section,
 ZooKeeper commits all entries to a durable WAL, and periodically writes snapshots
 in memory state, to storage media. Using WALs to provide durability is a common
 technique for applications that use consensus protocols to achieve a replicated
@@ -442,7 +442,7 @@ datadir-zk-2   Bound     pvc-bee0817e-bcb1-11e6-994f-42010a800002   20Gi       R
 
 The `volumeMounts` section of the `StatefulSet`'s container `template` mounts the PersistentVolumes in the ZooKeeper servers' data directories.
 
-```shell
+```yaml
 volumeMounts:
 - name: datadir
   mountPath: /var/lib/zookeeper
@@ -661,6 +661,8 @@ Use the `kubectl rollout history` command to view a history or previous configur
 kubectl rollout history sts/zk
 ```
 
+The output is similar to this:
+
 ```
 statefulsets "zk"
 REVISION
@@ -674,6 +676,8 @@ Use the `kubectl rollout undo` command to roll back the modification.
 kubectl rollout undo sts/zk
 ```
 
+The output is similar to this:
+
 ```
 statefulset.apps/zk rolled back
 ```
@@ -742,14 +746,14 @@ that your application's processes are unhealthy and it should restart them.
 The Pod `template` for the `zk` `StatefulSet` specifies a liveness probe.
 
 ```yaml
- livenessProbe:
-          exec:
-            command:
-            - sh
-            - -c
-            - "zookeeper-ready 2181"
-          initialDelaySeconds: 15
-          timeoutSeconds: 5
+  livenessProbe:
+    exec:
+      command:
+      - sh
+      - -c
+      - "zookeeper-ready 2181"
+    initialDelaySeconds: 15
+    timeoutSeconds: 5
 ```
 
 The probe calls a bash script that uses the ZooKeeper `ruok` four letter
@@ -773,7 +777,7 @@ kubectl get pod -w -l app=zk
 In another window, using the following command to delete the `zookeeper-ready` script from the file system of Pod `zk-0`.
 
 ```shell
-kubectl exec zk-0 -- rm /usr/bin/zookeeper-ready
+kubectl exec zk-0 -- rm /opt/zookeeper/bin/zookeeper-ready
 ```
 
 When the liveness probe for the ZooKeeper process fails, Kubernetes will
@@ -860,16 +864,16 @@ kubernetes-node-2g2d
 This is because the Pods in the `zk` `StatefulSet` have a `PodAntiAffinity` specified.
 
 ```yaml
-      affinity:
-        podAntiAffinity:
-          requiredDuringSchedulingIgnoredDuringExecution:
-            - labelSelector:
-                matchExpressions:
-                  - key: "app"
-                    operator: In
-                    values:
-                    - zk
-              topologyKey: "kubernetes.io/hostname"
+affinity:
+  podAntiAffinity:
+    requiredDuringSchedulingIgnoredDuringExecution:
+      - labelSelector:
+          matchExpressions:
+            - key: "app"
+              operator: In
+              values:
+                - zk
+        topologyKey: "kubernetes.io/hostname"
 ```
 
 The `requiredDuringSchedulingIgnoredDuringExecution` field tells the
@@ -894,8 +898,7 @@ Use this command to get the nodes in your cluster.
 kubectl get nodes
 ```
 
-Use [`kubectl cordon`](/docs/reference/generated/kubectl/kubectl-commands/#cordon) to
-cordon all but four of the nodes in your cluster.
+This tutorial assumes a cluster with at least four nodes. If the cluster has more than four, use [`kubectl cordon`](/docs/reference/generated/kubectl/kubectl-commands/#cordon) to cordon all but four nodes. Constraining to four nodes will ensure Kubernetes encounters affinity and PodDisruptionBudget constraints when scheduling zookeeper Pods in the following maintenance simulation.
 
 ```shell
 kubectl cordon <node-name>
@@ -927,6 +930,8 @@ In another terminal, use this command to get the nodes that the Pods are current
 for i in 0 1 2; do kubectl get pod zk-$i --template {{.spec.nodeName}}; echo ""; done
 ```
 
+The output is similar to this:
+
 ```
 kubernetes-node-pb41
 kubernetes-node-ixsl
@@ -940,6 +945,8 @@ drain the node on which the `zk-0` Pod is scheduled.
 kubectl drain $(kubectl get pod zk-0 --template {{.spec.nodeName}}) --ignore-daemonsets --force --delete-emptydir-data
 ```
 
+The output is similar to this:
+
 ```
 node "kubernetes-node-pb41" cordoned
 
@@ -972,15 +979,19 @@ Keep watching the `StatefulSet`'s Pods in the first terminal and drain the node
 `zk-1` is scheduled.
 
 ```shell
-kubectl drain $(kubectl get pod zk-1 --template {{.spec.nodeName}}) --ignore-daemonsets --force --delete-emptydir-data "kubernetes-node-ixsl" cordoned
+kubectl drain $(kubectl get pod zk-1 --template {{.spec.nodeName}}) --ignore-daemonsets --force --delete-emptydir-data
 ```
 
+The output is similar to this:
+
 ```
+"kubernetes-node-ixsl" cordoned
 WARNING: Deleting pods not managed by ReplicationController, ReplicaSet, Job, or DaemonSet: fluentd-cloud-logging-kubernetes-node-ixsl, kube-proxy-kubernetes-node-ixsl; Ignoring DaemonSet-managed pods: node-problem-detector-v0.1-voc74
 pod "zk-1" deleted
 node "kubernetes-node-ixsl" drained
 ```
 
+
 The `zk-1` Pod cannot be scheduled because the `zk` `StatefulSet` contains a `PodAntiAffinity` rule preventing
 co-location of the Pods, and as only two nodes are schedulable, the Pod will remain in a Pending state.
 
@@ -988,6 +999,8 @@ co-location of the Pods, and as only two nodes are schedulable, the Pod will rem
 kubectl get pods -w -l app=zk
 ```
 
+The output is similar to this:
+
 ```
 NAME      READY     STATUS    RESTARTS   AGE
 zk-0      1/1       Running   2          1h
@@ -1011,13 +1024,15 @@ zk-1      0/1       Pending   0         0s
 zk-1      0/1       Pending   0         0s
 ```
 
-Continue to watch the Pods of the stateful set, and drain the node on which
+Continue to watch the Pods of the StatefulSet, and drain the node on which
 `zk-2` is scheduled.
 
 ```shell
 kubectl drain $(kubectl get pod zk-2 --template {{.spec.nodeName}}) --ignore-daemonsets --force --delete-emptydir-data
 ```
 
+The output is similar to this:
+
 ```
 node "kubernetes-node-i4c4" cordoned
 
@@ -1061,6 +1076,8 @@ Use [`kubectl uncordon`](/docs/reference/generated/kubectl/kubectl-commands/#unc
 kubectl uncordon kubernetes-node-pb41
 ```
 
+The output is similar to this:
+
 ```
 node "kubernetes-node-pb41" uncordoned
 ```
@@ -1071,6 +1088,8 @@ node "kubernetes-node-pb41" uncordoned
 kubectl get pods -w -l app=zk
 ```
 
+The output is similar to this:
+
 ```
 NAME      READY     STATUS    RESTARTS   AGE
 zk-0      1/1       Running   2          1h
@@ -1104,7 +1123,7 @@ Attempt to drain the node on which `zk-2` is scheduled.
 kubectl drain $(kubectl get pod zk-2 --template {{.spec.nodeName}}) --ignore-daemonsets --force --delete-emptydir-data
 ```
 
-The output:
+The output is similar to this:
 
 ```
 node "kubernetes-node-i4c4" already cordoned
@@ -1122,6 +1141,8 @@ Uncordon the second node to allow `zk-2` to be rescheduled.
 kubectl uncordon kubernetes-node-ixsl
 ```
 
+The output is similar to this:
+
 ```
 node "kubernetes-node-ixsl" uncordoned
 ```
diff --git a/content/en/docs/tutorials/stateless-application/guestbook.md b/content/en/docs/tutorials/stateless-application/guestbook.md
index c31bcbc49e..78e19ad34a 100644
--- a/content/en/docs/tutorials/stateless-application/guestbook.md
+++ b/content/en/docs/tutorials/stateless-application/guestbook.md
@@ -243,7 +243,7 @@ pointing to. This IP address is accessible only within the cluster.
 
 If you want guests to be able to access your guestbook, you must configure the
 frontend Service to be externally visible, so a client can request the Service
-from outside the Kubernetes cluster. However a Kubernetes user you can use
+from outside the Kubernetes cluster. However a Kubernetes user can use
 `kubectl port-forward` to access the service even though it uses a
 `ClusterIP`.
 
diff --git a/content/en/examples/README.md b/content/en/examples/README.md
index 6a5f3ceea7..cb364850cc 100644
--- a/content/en/examples/README.md
+++ b/content/en/examples/README.md
@@ -9,4 +9,3 @@ where `<lang>` is the two character representation of a language. For example:
 ```
 go test k8s.io/website/content/en/examples
 ```
-
diff --git a/content/en/examples/admin/cloud/ccm-example.yaml b/content/en/examples/admin/cloud/ccm-example.yaml
index 3bce7b58fa..49a57ecca9 100644
--- a/content/en/examples/admin/cloud/ccm-example.yaml
+++ b/content/en/examples/admin/cloud/ccm-example.yaml
@@ -59,9 +59,13 @@ spec:
       - key: node.cloudprovider.kubernetes.io/uninitialized
         value: "true"
         effect: NoSchedule
-      # this is to have the daemonset runnable on master nodes
-      # the taint may vary depending on your cluster setup
+      # these tolerations are to have the daemonset runnable on control plane nodes
+      # remove them if your control plane nodes should not run pods
+      - key: node-role.kubernetes.io/control-plane
+        operator: Exists
+        effect: NoSchedule
       - key: node-role.kubernetes.io/master
+        operator: Exists
         effect: NoSchedule
       # this is to restrict CCM to only run on master nodes
       # the node selector may vary depending on your cluster setup
diff --git a/content/en/examples/admin/dns/dns-horizontal-autoscaler.yaml b/content/en/examples/admin/dns/dns-horizontal-autoscaler.yaml
index dff87cf851..b4bf65834a 100644
--- a/content/en/examples/admin/dns/dns-horizontal-autoscaler.yaml
+++ b/content/en/examples/admin/dns/dns-horizontal-autoscaler.yaml
@@ -1,33 +1,87 @@
+kind: ServiceAccount
+apiVersion: v1
+metadata:
+  name: kube-dns-autoscaler
+  namespace: kube-system
+---
+kind: ClusterRole
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: system:kube-dns-autoscaler
+rules:
+  - apiGroups: [""]
+    resources: ["nodes"]
+    verbs: ["list", "watch"]
+  - apiGroups: [""]
+    resources: ["replicationcontrollers/scale"]
+    verbs: ["get", "update"]
+  - apiGroups: ["apps"]
+    resources: ["deployments/scale", "replicasets/scale"]
+    verbs: ["get", "update"]
+# Remove the configmaps rule once below issue is fixed:
+# kubernetes-incubator/cluster-proportional-autoscaler#16
+  - apiGroups: [""]
+    resources: ["configmaps"]
+    verbs: ["get", "create"]
+---
+kind: ClusterRoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: system:kube-dns-autoscaler
+subjects:
+  - kind: ServiceAccount
+    name: kube-dns-autoscaler
+    namespace: kube-system
+roleRef:
+  kind: ClusterRole
+  name: system:kube-dns-autoscaler
+  apiGroup: rbac.authorization.k8s.io
+
+---
 apiVersion: apps/v1
 kind: Deployment
 metadata:
-  name: dns-autoscaler
+  name: kube-dns-autoscaler
   namespace: kube-system
   labels:
-    k8s-app: dns-autoscaler
+    k8s-app: kube-dns-autoscaler
+    kubernetes.io/cluster-service: "true"
 spec:
   selector:
     matchLabels:
-      k8s-app: dns-autoscaler
+      k8s-app: kube-dns-autoscaler
   template:
     metadata:
       labels:
-        k8s-app: dns-autoscaler
+        k8s-app: kube-dns-autoscaler
     spec:
+      priorityClassName: system-cluster-critical
+      securityContext:
+        seccompProfile:
+          type: RuntimeDefault
+        supplementalGroups: [ 65534 ]
+        fsGroup: 65534
+      nodeSelector:
+        kubernetes.io/os: linux
       containers:
       - name: autoscaler
-        image: k8s.gcr.io/cluster-proportional-autoscaler-amd64:1.6.0
+        image: k8s.gcr.io/cpa/cluster-proportional-autoscaler:1.8.4
         resources:
-          requests:
-            cpu: 20m
-            memory: 10Mi
+            requests:
+                cpu: "20m"
+                memory: "10Mi"
         command:
-        - /cluster-proportional-autoscaler
-        - --namespace=kube-system
-        - --configmap=dns-autoscaler
-        - --target=<SCALE_TARGET>
-        # When cluster is using large nodes(with more cores), "coresPerReplica" should dominate.
-        # If using small nodes, "nodesPerReplica" should dominate.
-        - --default-params={"linear":{"coresPerReplica":256,"nodesPerReplica":16,"min":1}}
-        - --logtostderr=true
-        - --v=2
+          - /cluster-proportional-autoscaler
+          - --namespace=kube-system
+          - --configmap=kube-dns-autoscaler
+          # Should keep target in sync with cluster/addons/dns/kube-dns.yaml.base
+          - --target=<SCALE_TARGET>
+          # When cluster is using large nodes(with more cores), "coresPerReplica" should dominate.
+          # If using small nodes, "nodesPerReplica" should dominate.
+          - --default-params={"linear":{"coresPerReplica":256,"nodesPerReplica":16,"preventSinglePointFailure":true,"includeUnschedulableNodes":true}}
+          - --logtostderr=true
+          - --v=2
+      tolerations:
+      - key: "CriticalAddonsOnly"
+        operator: "Exists"
+      serviceAccountName: kube-dns-autoscaler
diff --git a/content/en/examples/admin/dns/dnsutils.yaml b/content/en/examples/admin/dns/dnsutils.yaml
index 9192bf3502..5be0791c03 100644
--- a/content/en/examples/admin/dns/dnsutils.yaml
+++ b/content/en/examples/admin/dns/dnsutils.yaml
@@ -6,7 +6,7 @@ metadata:
 spec:
   containers:
   - name: dnsutils
-    image: gcr.io/kubernetes-e2e-test-images/dnsutils:1.3
+    image: k8s.gcr.io/e2e-test-images/jessie-dnsutils:1.3
     command:
       - sleep
       - "3600"
diff --git a/content/en/examples/admin/konnectivity/egress-selector-configuration.yaml b/content/en/examples/admin/konnectivity/egress-selector-configuration.yaml
index c85f25ea51..631e6cc268 100644
--- a/content/en/examples/admin/konnectivity/egress-selector-configuration.yaml
+++ b/content/en/examples/admin/konnectivity/egress-selector-configuration.yaml
@@ -2,7 +2,7 @@ apiVersion: apiserver.k8s.io/v1beta1
 kind: EgressSelectorConfiguration
 egressSelections:
 # Since we want to control the egress traffic to the cluster, we use the
-# "cluster" as the name. Other supported values are "etcd", and "master".
+# "cluster" as the name. Other supported values are "etcd", and "controlplane".
 - name: cluster
   connection:
     # This controls the protocol between the API Server and the Konnectivity
diff --git a/content/en/examples/admin/logging/two-files-counter-pod-agent-sidecar.yaml b/content/en/examples/admin/logging/two-files-counter-pod-agent-sidecar.yaml
index b37b616e6f..ddfb8104cb 100644
--- a/content/en/examples/admin/logging/two-files-counter-pod-agent-sidecar.yaml
+++ b/content/en/examples/admin/logging/two-files-counter-pod-agent-sidecar.yaml
@@ -5,7 +5,7 @@ metadata:
 spec:
   containers:
   - name: count
-    image: busybox
+    image: busybox:1.28
     args:
     - /bin/sh
     - -c
diff --git a/content/en/examples/admin/logging/two-files-counter-pod-streaming-sidecar.yaml b/content/en/examples/admin/logging/two-files-counter-pod-streaming-sidecar.yaml
index 87bd198cfd..ac19efe4a2 100644
--- a/content/en/examples/admin/logging/two-files-counter-pod-streaming-sidecar.yaml
+++ b/content/en/examples/admin/logging/two-files-counter-pod-streaming-sidecar.yaml
@@ -5,7 +5,7 @@ metadata:
 spec:
   containers:
   - name: count
-    image: busybox
+    image: busybox:1.28
     args:
     - /bin/sh
     - -c
@@ -22,14 +22,14 @@ spec:
     - name: varlog
       mountPath: /var/log
   - name: count-log-1
-    image: busybox
-    args: [/bin/sh, -c, 'tail -n+1 -f /var/log/1.log']
+    image: busybox:1.28
+    args: [/bin/sh, -c, 'tail -n+1 -F /var/log/1.log']
     volumeMounts:
     - name: varlog
       mountPath: /var/log
   - name: count-log-2
-    image: busybox
-    args: [/bin/sh, -c, 'tail -n+1 -f /var/log/2.log']
+    image: busybox:1.28
+    args: [/bin/sh, -c, 'tail -n+1 -F /var/log/2.log']
     volumeMounts:
     - name: varlog
       mountPath: /var/log
diff --git a/content/en/examples/admin/logging/two-files-counter-pod.yaml b/content/en/examples/admin/logging/two-files-counter-pod.yaml
index 6ebeb717a1..31bbed3cf8 100644
--- a/content/en/examples/admin/logging/two-files-counter-pod.yaml
+++ b/content/en/examples/admin/logging/two-files-counter-pod.yaml
@@ -5,7 +5,7 @@ metadata:
 spec:
   containers:
   - name: count
-    image: busybox
+    image: busybox:1.28
     args:
     - /bin/sh
     - -c
diff --git a/content/en/examples/admin/resource/limit-range-pod-1.yaml b/content/en/examples/admin/resource/limit-range-pod-1.yaml
index 0457792af9..b9bd20d06a 100644
--- a/content/en/examples/admin/resource/limit-range-pod-1.yaml
+++ b/content/en/examples/admin/resource/limit-range-pod-1.yaml
@@ -5,7 +5,7 @@ metadata:
 spec:
   containers:
   - name: busybox-cnt01
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt01; sleep 10;done"]
     resources:
@@ -16,7 +16,7 @@ spec:
         memory: "200Mi"
         cpu: "500m"
   - name: busybox-cnt02
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt02; sleep 10;done"]
     resources:
@@ -24,7 +24,7 @@ spec:
         memory: "100Mi"
         cpu: "100m"
   - name: busybox-cnt03
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt03; sleep 10;done"]
     resources:
@@ -32,6 +32,6 @@ spec:
         memory: "200Mi"
         cpu: "500m"
   - name: busybox-cnt04
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt04; sleep 10;done"]
diff --git a/content/en/examples/admin/resource/limit-range-pod-2.yaml b/content/en/examples/admin/resource/limit-range-pod-2.yaml
index efac440269..40da19c1ae 100644
--- a/content/en/examples/admin/resource/limit-range-pod-2.yaml
+++ b/content/en/examples/admin/resource/limit-range-pod-2.yaml
@@ -5,7 +5,7 @@ metadata:
 spec:
   containers:
   - name: busybox-cnt01
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt01; sleep 10;done"]
     resources:
@@ -16,7 +16,7 @@ spec:
         memory: "200Mi"
         cpu: "500m"
   - name: busybox-cnt02
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt02; sleep 10;done"]
     resources:
@@ -24,7 +24,7 @@ spec:
         memory: "100Mi"
         cpu: "100m"
   - name: busybox-cnt03
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt03; sleep 10;done"]
     resources:
@@ -32,6 +32,6 @@ spec:
         memory: "200Mi"
         cpu: "500m"
   - name: busybox-cnt04
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt04; sleep 10;done"]
diff --git a/content/en/examples/admin/resource/limit-range-pod-3.yaml b/content/en/examples/admin/resource/limit-range-pod-3.yaml
index 8afdb6379c..503200a966 100644
--- a/content/en/examples/admin/resource/limit-range-pod-3.yaml
+++ b/content/en/examples/admin/resource/limit-range-pod-3.yaml
@@ -5,7 +5,7 @@ metadata:
 spec:
   containers:
   - name: busybox-cnt01
-    image: busybox
+    image: busybox:1.28
     resources:
       limits:
         memory: "300Mi"
diff --git a/content/en/examples/admin/sched/my-scheduler.yaml b/content/en/examples/admin/sched/my-scheduler.yaml
index 800595862b..5addf9e0e6 100644
--- a/content/en/examples/admin/sched/my-scheduler.yaml
+++ b/content/en/examples/admin/sched/my-scheduler.yaml
@@ -30,6 +30,20 @@ roleRef:
   name: system:volume-scheduler
   apiGroup: rbac.authorization.k8s.io
 ---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: my-scheduler-config
+  namespace: kube-system
+data:
+  my-scheduler-config.yaml: |
+    apiVersion: kubescheduler.config.k8s.io/v1beta2
+    kind: KubeSchedulerConfiguration
+    profiles:
+      - schedulerName: my-scheduler
+    leaderElection:
+      leaderElect: false
+---
 apiVersion: apps/v1
 kind: Deployment
 metadata:
@@ -55,26 +69,31 @@ spec:
       containers:
       - command:
         - /usr/local/bin/kube-scheduler
-        - --address=0.0.0.0
-        - --leader-elect=false
-        - --scheduler-name=my-scheduler
+        - --config=/etc/kubernetes/my-scheduler/my-scheduler-config.yaml
         image: gcr.io/my-gcp-project/my-kube-scheduler:1.0
         livenessProbe:
           httpGet:
             path: /healthz
-            port: 10251
+            port: 10259
+            scheme: HTTPS
           initialDelaySeconds: 15
         name: kube-second-scheduler
         readinessProbe:
           httpGet:
             path: /healthz
-            port: 10251
+            port: 10259
+            scheme: HTTPS
         resources:
           requests:
             cpu: '0.1'
         securityContext:
           privileged: false
-        volumeMounts: []
+        volumeMounts:
+          - name: config-volume
+            mountPath: /etc/kubernetes/my-scheduler
       hostNetwork: false
       hostPID: false
-      volumes: []
+      volumes:
+        - name: config-volume
+          configMap:
+            name: my-scheduler-config
diff --git a/content/en/examples/application/job/cronjob.yaml b/content/en/examples/application/job/cronjob.yaml
index da905a9048..78d0e2d314 100644
--- a/content/en/examples/application/job/cronjob.yaml
+++ b/content/en/examples/application/job/cronjob.yaml
@@ -3,14 +3,14 @@ kind: CronJob
 metadata:
   name: hello
 spec:
-  schedule: "*/1 * * * *"
+  schedule: "* * * * *"
   jobTemplate:
     spec:
       template:
         spec:
           containers:
           - name: hello
-            image: busybox
+            image: busybox:1.28
             imagePullPolicy: IfNotPresent
             command:
             - /bin/sh
diff --git a/content/en/examples/application/job/job-tmpl.yaml b/content/en/examples/application/job/job-tmpl.yaml
index 790025b38b..d7dbbafd62 100644
--- a/content/en/examples/application/job/job-tmpl.yaml
+++ b/content/en/examples/application/job/job-tmpl.yaml
@@ -13,6 +13,6 @@ spec:
     spec:
       containers:
       - name: c
-        image: busybox
+        image: busybox:1.28
         command: ["sh", "-c", "echo Processing item $ITEM && sleep 5"]
       restartPolicy: Never
diff --git a/content/en/examples/application/mysql/mysql-configmap.yaml b/content/en/examples/application/mysql/mysql-configmap.yaml
index 519334bc82..9adb0344a3 100644
--- a/content/en/examples/application/mysql/mysql-configmap.yaml
+++ b/content/en/examples/application/mysql/mysql-configmap.yaml
@@ -4,6 +4,7 @@ metadata:
   name: mysql
   labels:
     app: mysql
+    app.kubernetes.io/name: mysql
 data:
   primary.cnf: |
     # Apply this config only on the primary.
diff --git a/content/en/examples/application/mysql/mysql-services.yaml b/content/en/examples/application/mysql/mysql-services.yaml
index 0cd76d91c6..bc01506678 100644
--- a/content/en/examples/application/mysql/mysql-services.yaml
+++ b/content/en/examples/application/mysql/mysql-services.yaml
@@ -5,6 +5,7 @@ metadata:
   name: mysql
   labels:
     app: mysql
+    app.kubernetes.io/name: mysql
 spec:
   ports:
   - name: mysql
@@ -21,10 +22,11 @@ metadata:
   name: mysql-read
   labels:
     app: mysql
+    app.kubernetes.io/name: mysql
+    readonly: "true"
 spec:
   ports:
   - name: mysql
     port: 3306
   selector:
     app: mysql
-
diff --git a/content/en/examples/application/mysql/mysql-statefulset.yaml b/content/en/examples/application/mysql/mysql-statefulset.yaml
index bb61537fcf..85563a2abc 100644
--- a/content/en/examples/application/mysql/mysql-statefulset.yaml
+++ b/content/en/examples/application/mysql/mysql-statefulset.yaml
@@ -6,12 +6,14 @@ spec:
   selector:
     matchLabels:
       app: mysql
+      app.kubernetes.io/name: mysql
   serviceName: mysql
   replicas: 3
   template:
     metadata:
       labels:
         app: mysql
+        app.kubernetes.io/name: mysql
     spec:
       initContainers:
       - name: init-mysql
diff --git a/content/en/examples/controllers/daemonset.yaml b/content/en/examples/controllers/daemonset.yaml
index 685a137244..5b47b61ac1 100644
--- a/content/en/examples/controllers/daemonset.yaml
+++ b/content/en/examples/controllers/daemonset.yaml
@@ -15,8 +15,11 @@ spec:
         name: fluentd-elasticsearch
     spec:
       tolerations:
-      # this toleration is to have the daemonset runnable on master nodes
-      # remove it if your masters can't run pods
+      # these tolerations are to have the daemonset runnable on control plane nodes
+      # remove them if your control plane nodes should not run pods
+      - key: node-role.kubernetes.io/control-plane
+        operator: Exists
+        effect: NoSchedule
       - key: node-role.kubernetes.io/master
         operator: Exists
         effect: NoSchedule
diff --git a/content/en/examples/controllers/fluentd-daemonset-update.yaml b/content/en/examples/controllers/fluentd-daemonset-update.yaml
index dcf08d4fc9..9521e73b00 100644
--- a/content/en/examples/controllers/fluentd-daemonset-update.yaml
+++ b/content/en/examples/controllers/fluentd-daemonset-update.yaml
@@ -19,9 +19,13 @@ spec:
         name: fluentd-elasticsearch
     spec:
       tolerations:
-      # this toleration is to have the daemonset runnable on master nodes
-      # remove it if your masters can't run pods
+      # these tolerations are to have the daemonset runnable on control plane nodes
+      # remove them if your control plane nodes should not run pods
+      - key: node-role.kubernetes.io/control-plane
+        operator: Exists
+        effect: NoSchedule
       - key: node-role.kubernetes.io/master
+        operator: Exists
         effect: NoSchedule
       containers:
       - name: fluentd-elasticsearch
diff --git a/content/en/examples/controllers/fluentd-daemonset.yaml b/content/en/examples/controllers/fluentd-daemonset.yaml
index 0e1e7d3345..653636fc57 100644
--- a/content/en/examples/controllers/fluentd-daemonset.yaml
+++ b/content/en/examples/controllers/fluentd-daemonset.yaml
@@ -19,9 +19,13 @@ spec:
         name: fluentd-elasticsearch
     spec:
       tolerations:
-      # this toleration is to have the daemonset runnable on master nodes
-      # remove it if your masters can't run pods
+      # these tolerations are to have the daemonset runnable on control plane nodes
+      # remove them if your control plane nodes should not run pods
+      - key: node-role.kubernetes.io/control-plane
+        operator: Exists
+        effect: NoSchedule
       - key: node-role.kubernetes.io/master
+        operator: Exists
         effect: NoSchedule
       containers:
       - name: fluentd-elasticsearch
diff --git a/content/en/examples/controllers/job.yaml b/content/en/examples/controllers/job.yaml
index b448f2eb81..d8befe89db 100644
--- a/content/en/examples/controllers/job.yaml
+++ b/content/en/examples/controllers/job.yaml
@@ -7,7 +7,7 @@ spec:
     spec:
       containers:
       - name: pi
-        image: perl
+        image: perl:5.34.0
         command: ["perl",  "-Mbignum=bpi", "-wle", "print bpi(2000)"]
       restartPolicy: Never
   backoffLimit: 4
diff --git a/content/en/examples/debug/counter-pod.yaml b/content/en/examples/debug/counter-pod.yaml
index f997886386..a91b2f8915 100644
--- a/content/en/examples/debug/counter-pod.yaml
+++ b/content/en/examples/debug/counter-pod.yaml
@@ -5,6 +5,6 @@ metadata:
 spec:
   containers:
   - name: count
-    image: busybox
+    image: busybox:1.28
     args: [/bin/sh, -c,
             'i=0; while true; do echo "$i: $(date)"; i=$((i+1)); sleep 1; done']
diff --git a/content/en/examples/examples_test.go b/content/en/examples/examples_test.go
index a31d01b130..27eae2eadf 100644
--- a/content/en/examples/examples_test.go
+++ b/content/en/examples/examples_test.go
@@ -160,10 +160,6 @@ func validateObject(obj runtime.Object) (errors field.ErrorList) {
 		AllowPodAffinityNamespaceSelector: true,
 	}
 
-	pspValidationOptions := policy_validation.PodSecurityPolicyValidationOptions{
-		AllowEphemeralVolumeType: true,
-	}
-
 	// Enable CustomPodDNS for testing
 	// feature.DefaultFeatureGate.Set("CustomPodDNS=true")
 	switch t := obj.(type) {
@@ -283,11 +279,7 @@ func validateObject(obj runtime.Object) (errors field.ErrorList) {
 		if t.Namespace == "" {
 			t.Namespace = api.NamespaceDefault
 		}
-		gv := schema.GroupVersion{
-			Group:   networking.GroupName,
-			Version: legacyscheme.Scheme.PrioritizedVersionsForGroup(networking.GroupName)[0].Version,
-		}
-		errors = networking_validation.ValidateIngressCreate(t, gv)
+		errors = networking_validation.ValidateIngressCreate(t)
 	case *networking.IngressClass:
 		/*
 			if t.Namespace == "" {
@@ -301,7 +293,7 @@ func validateObject(obj runtime.Object) (errors field.ErrorList) {
 		errors = networking_validation.ValidateIngressClass(t)
 
 	case *policy.PodSecurityPolicy:
-		errors = policy_validation.ValidatePodSecurityPolicy(t, pspValidationOptions)
+		errors = policy_validation.ValidatePodSecurityPolicy(t)
 	case *apps.ReplicaSet:
 		if t.Namespace == "" {
 			t.Namespace = api.NamespaceDefault
@@ -405,7 +397,7 @@ func TestExampleObjectSchemas(t *testing.T) {
 		},
 		"admin/dns": {
 			"busybox":                   {&api.Pod{}},
-			"dns-horizontal-autoscaler": {&apps.Deployment{}},
+			"dns-horizontal-autoscaler": {&api.ServiceAccount{}, &rbac.ClusterRole{}, &rbac.ClusterRoleBinding{}, &apps.Deployment{}},
 			"dnsutils":                  {&api.Pod{}},
 		},
 		"admin/logging": {
@@ -453,7 +445,7 @@ func TestExampleObjectSchemas(t *testing.T) {
 		},
 		"admin/sched": {
 			"clusterrole":  {&rbac.ClusterRole{}},
-			"my-scheduler": {&api.ServiceAccount{}, &rbac.ClusterRoleBinding{}, &rbac.ClusterRoleBinding{}, &apps.Deployment{}},
+			"my-scheduler": {&api.ServiceAccount{}, &rbac.ClusterRoleBinding{}, &rbac.ClusterRoleBinding{}, &api.ConfigMap{}, &apps.Deployment{}},
 			"pod1":         {&api.Pod{}},
 			"pod2":         {&api.Pod{}},
 			"pod3":         {&api.Pod{}},
@@ -564,6 +556,7 @@ func TestExampleObjectSchemas(t *testing.T) {
 			"pod-projected-svc-token":             {&api.Pod{}},
 			"pod-rs":                              {&api.Pod{}, &api.Pod{}},
 			"pod-single-configmap-env-variable":   {&api.Pod{}},
+			"pod-with-affinity-anti-affinity":     {&api.Pod{}},
 			"pod-with-node-affinity":              {&api.Pod{}},
 			"pod-with-pod-affinity":               {&api.Pod{}},
 			"pod-with-toleration":                 {&api.Pod{}},
@@ -592,6 +585,7 @@ func TestExampleObjectSchemas(t *testing.T) {
 		},
 		"pods/probe": {
 			"exec-liveness":                   {&api.Pod{}},
+			"grpc-liveness":                   {&api.Pod{}},
 			"http-liveness":                   {&api.Pod{}},
 			"pod-with-http-healthcheck":       {&api.Pod{}},
 			"pod-with-tcp-socket-healthcheck": {&api.Pod{}},
@@ -620,11 +614,15 @@ func TestExampleObjectSchemas(t *testing.T) {
 			"security-context-4": {&api.Pod{}},
 		},
 		"pods/storage": {
-			"projected": {&api.Pod{}},
-			"pv-claim":  {&api.PersistentVolumeClaim{}},
-			"pv-pod":    {&api.Pod{}},
-			"pv-volume": {&api.PersistentVolume{}},
-			"redis":     {&api.Pod{}},
+			"projected":                                    {&api.Pod{}},
+			"projected-secret-downwardapi-configmap":       {&api.Pod{}},
+			"projected-secrets-nondefault-permission-mode": {&api.Pod{}},
+			"projected-service-account-token":              {&api.Pod{}},
+			"pv-claim":                                     {&api.PersistentVolumeClaim{}},
+			"pv-duplicate":                                 {&api.Pod{}},
+			"pv-pod":                                       {&api.Pod{}},
+			"pv-volume":                                    {&api.PersistentVolume{}},
+			"redis":                                        {&api.Pod{}},
 		},
 		"policy": {
 			"baseline-psp":                 {&policy.PodSecurityPolicy{}},
@@ -649,6 +647,7 @@ func TestExampleObjectSchemas(t *testing.T) {
 		"service/networking": {
 			"curlpod":                                 {&apps.Deployment{}},
 			"custom-dns":                              {&api.Pod{}},
+			"default-ingressclass":                    {&networking.IngressClass{}},
 			"dual-stack-default-svc":                  {&api.Service{}},
 			"dual-stack-ipfamilies-ipv6":              {&api.Service{}},
 			"dual-stack-ipv6-svc":                     {&api.Service{}},
@@ -664,6 +663,7 @@ func TestExampleObjectSchemas(t *testing.T) {
 			"name-virtual-host-ingress":               {&networking.Ingress{}},
 			"name-virtual-host-ingress-no-third-host": {&networking.Ingress{}},
 			"namespaced-params":                       {&networking.IngressClass{}},
+			"networkpolicy":                           {&networking.NetworkPolicy{}},
 			"network-policy-allow-all-egress":         {&networking.NetworkPolicy{}},
 			"network-policy-allow-all-ingress":        {&networking.NetworkPolicy{}},
 			"network-policy-default-deny-egress":      {&networking.NetworkPolicy{}},
diff --git a/content/en/examples/pods/init-containers.yaml b/content/en/examples/pods/init-containers.yaml
index 667b03eccd..e55895d673 100644
--- a/content/en/examples/pods/init-containers.yaml
+++ b/content/en/examples/pods/init-containers.yaml
@@ -14,7 +14,7 @@ spec:
   # These containers are run during pod initialization
   initContainers:
   - name: install
-    image: busybox
+    image: busybox:1.28
     command:
     - wget
     - "-O"
diff --git a/content/en/examples/pods/inject/dependent-envars.yaml b/content/en/examples/pods/inject/dependent-envars.yaml
index 2509c6f47b..67d07098ba 100644
--- a/content/en/examples/pods/inject/dependent-envars.yaml
+++ b/content/en/examples/pods/inject/dependent-envars.yaml
@@ -10,7 +10,7 @@ spec:
       command:
         - sh
         - -c
-      image: busybox
+      image: busybox:1.28
       env:
         - name: SERVICE_PORT
           value: "80"
diff --git a/content/en/examples/pods/pod-with-affinity-anti-affinity.yaml b/content/en/examples/pods/pod-with-affinity-anti-affinity.yaml
new file mode 100644
index 0000000000..10d3056f2d
--- /dev/null
+++ b/content/en/examples/pods/pod-with-affinity-anti-affinity.yaml
@@ -0,0 +1,32 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: with-affinity-anti-affinity
+spec:
+  affinity:
+    nodeAffinity:
+      requiredDuringSchedulingIgnoredDuringExecution:
+        nodeSelectorTerms:
+        - matchExpressions:
+          - key: kubernetes.io/os
+            operator: In
+            values:
+            - linux
+      preferredDuringSchedulingIgnoredDuringExecution:
+      - weight: 1
+        preference:
+          matchExpressions:
+          - key: label-1
+            operator: In
+            values:
+            - key-1
+      - weight: 50
+        preference:
+          matchExpressions:
+          - key: label-2
+            operator: In
+            values:
+            - key-2
+  containers:
+  - name: with-node-affinity
+    image: k8s.gcr.io/pause:2.0
diff --git a/content/en/examples/pods/pod-with-node-affinity.yaml b/content/en/examples/pods/pod-with-node-affinity.yaml
index 253d2b21ea..ebc6f14490 100644
--- a/content/en/examples/pods/pod-with-node-affinity.yaml
+++ b/content/en/examples/pods/pod-with-node-affinity.yaml
@@ -8,11 +8,11 @@ spec:
       requiredDuringSchedulingIgnoredDuringExecution:
         nodeSelectorTerms:
         - matchExpressions:
-          - key: kubernetes.io/e2e-az-name
+          - key: topology.kubernetes.io/zone
             operator: In
             values:
-            - e2e-az1
-            - e2e-az2
+            - antarctica-east1
+            - antarctica-west1
       preferredDuringSchedulingIgnoredDuringExecution:
       - weight: 1
         preference:
diff --git a/content/en/examples/pods/probe/exec-liveness.yaml b/content/en/examples/pods/probe/exec-liveness.yaml
index 07bf75f85c..6a9c9b3213 100644
--- a/content/en/examples/pods/probe/exec-liveness.yaml
+++ b/content/en/examples/pods/probe/exec-liveness.yaml
@@ -11,7 +11,7 @@ spec:
     args:
     - /bin/sh
     - -c
-    - touch /tmp/healthy; sleep 30; rm -rf /tmp/healthy; sleep 600
+    - touch /tmp/healthy; sleep 30; rm -f /tmp/healthy; sleep 600
     livenessProbe:
       exec:
         command:
diff --git a/content/en/examples/pods/probe/grpc-liveness.yaml b/content/en/examples/pods/probe/grpc-liveness.yaml
new file mode 100644
index 0000000000..578fd080a4
--- /dev/null
+++ b/content/en/examples/pods/probe/grpc-liveness.yaml
@@ -0,0 +1,15 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: etcd-with-grpc
+spec:
+  containers:
+  - name: etcd
+    image: k8s.gcr.io/etcd:3.5.1-0
+    command: [ "/usr/local/bin/etcd", "--data-dir",  "/var/lib/etcd", "--listen-client-urls", "http://0.0.0.0:2379", "--advertise-client-urls", "http://127.0.0.1:2379", "--log-level", "debug"]
+    ports:
+    - containerPort: 2379
+    livenessProbe:
+      grpc:
+        port: 2379
+      initialDelaySeconds: 10
diff --git a/content/en/examples/pods/resource/memory-request-limit-3.yaml b/content/en/examples/pods/resource/memory-request-limit-3.yaml
index 9f089c4a7a..d816393986 100644
--- a/content/en/examples/pods/resource/memory-request-limit-3.yaml
+++ b/content/en/examples/pods/resource/memory-request-limit-3.yaml
@@ -8,9 +8,9 @@ spec:
   - name: memory-demo-3-ctr
     image: polinux/stress
     resources:
-      limits:
-        memory: "1000Gi"
       requests:
         memory: "1000Gi"
+      limits:
+        memory: "1000Gi"
     command: ["stress"]
     args: ["--vm", "1", "--vm-bytes", "150M", "--vm-hang", "1"]
diff --git a/content/en/examples/pods/resource/memory-request-limit.yaml b/content/en/examples/pods/resource/memory-request-limit.yaml
index 985b1308d9..07ce3e7d3c 100644
--- a/content/en/examples/pods/resource/memory-request-limit.yaml
+++ b/content/en/examples/pods/resource/memory-request-limit.yaml
@@ -8,9 +8,9 @@ spec:
   - name: memory-demo-ctr
     image: polinux/stress
     resources:
-      limits:
-        memory: "200Mi"
       requests:
         memory: "100Mi"
+      limits:
+        memory: "200Mi"
     command: ["stress"]
     args: ["--vm", "1", "--vm-bytes", "150M", "--vm-hang", "1"]
diff --git a/content/en/examples/pods/security/hello-apparmor.yaml b/content/en/examples/pods/security/hello-apparmor.yaml
index 3e9b3b2a9c..000645f1c7 100644
--- a/content/en/examples/pods/security/hello-apparmor.yaml
+++ b/content/en/examples/pods/security/hello-apparmor.yaml
@@ -9,5 +9,5 @@ metadata:
 spec:
   containers:
   - name: hello
-    image: busybox
+    image: busybox:1.28
     command: [ "sh", "-c", "echo 'Hello AppArmor!' && sleep 1h" ]
diff --git a/content/en/examples/pods/security/seccomp/ga/default-pod.yaml b/content/en/examples/pods/security/seccomp/ga/default-pod.yaml
index fbeec4c167..b884ec5924 100644
--- a/content/en/examples/pods/security/seccomp/ga/default-pod.yaml
+++ b/content/en/examples/pods/security/seccomp/ga/default-pod.yaml
@@ -1,9 +1,9 @@
 apiVersion: v1
 kind: Pod
 metadata:
-  name: audit-pod
+  name: default-pod
   labels:
-    app: audit-pod
+    app: default-pod
 spec:
   securityContext:
     seccompProfile:
@@ -12,6 +12,6 @@ spec:
   - name: test-container
     image: hashicorp/http-echo:0.2.3
     args:
-    - "-text=just made some syscalls!"
+    - "-text=just made some more syscalls!"
     securityContext:
       allowPrivilegeEscalation: false
\ No newline at end of file
diff --git a/content/en/examples/pods/security/security-context.yaml b/content/en/examples/pods/security/security-context.yaml
index 35cb1eeebe..7903c39c64 100644
--- a/content/en/examples/pods/security/security-context.yaml
+++ b/content/en/examples/pods/security/security-context.yaml
@@ -12,7 +12,7 @@ spec:
     emptyDir: {}
   containers:
   - name: sec-ctx-demo
-    image: busybox
+    image: busybox:1.28
     command: [ "sh", "-c", "sleep 1h" ]
     volumeMounts:
     - name: sec-ctx-vol
diff --git a/content/en/examples/pods/share-process-namespace.yaml b/content/en/examples/pods/share-process-namespace.yaml
index af812732a2..bd48bf0ff6 100644
--- a/content/en/examples/pods/share-process-namespace.yaml
+++ b/content/en/examples/pods/share-process-namespace.yaml
@@ -8,7 +8,7 @@ spec:
   - name: nginx
     image: nginx
   - name: shell
-    image: busybox
+    image: busybox:1.28
     securityContext:
       capabilities:
         add:
diff --git a/content/en/examples/pods/storage/projected-secret-downwardapi-configmap.yaml b/content/en/examples/pods/storage/projected-secret-downwardapi-configmap.yaml
new file mode 100644
index 0000000000..453dc08c0c
--- /dev/null
+++ b/content/en/examples/pods/storage/projected-secret-downwardapi-configmap.yaml
@@ -0,0 +1,35 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: volume-test
+spec:
+  containers:
+  - name: container-test
+    image: busybox:1.28
+    volumeMounts:
+    - name: all-in-one
+      mountPath: "/projected-volume"
+      readOnly: true
+  volumes:
+  - name: all-in-one
+    projected:
+      sources:
+      - secret:
+          name: mysecret
+          items:
+            - key: username
+              path: my-group/my-username
+      - downwardAPI:
+          items:
+            - path: "labels"
+              fieldRef:
+                fieldPath: metadata.labels
+            - path: "cpu_limit"
+              resourceFieldRef:
+                containerName: container-test
+                resource: limits.cpu
+      - configMap:
+          name: myconfigmap
+          items:
+            - key: config
+              path: my-group/my-config
diff --git a/content/en/examples/pods/storage/projected-secrets-nondefault-permission-mode.yaml b/content/en/examples/pods/storage/projected-secrets-nondefault-permission-mode.yaml
new file mode 100644
index 0000000000..b921fd93c5
--- /dev/null
+++ b/content/en/examples/pods/storage/projected-secrets-nondefault-permission-mode.yaml
@@ -0,0 +1,27 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: volume-test
+spec:
+  containers:
+  - name: container-test
+    image: busybox:1.28
+    volumeMounts:
+    - name: all-in-one
+      mountPath: "/projected-volume"
+      readOnly: true
+  volumes:
+  - name: all-in-one
+    projected:
+      sources:
+      - secret:
+          name: mysecret
+          items:
+            - key: username
+              path: my-group/my-username
+      - secret:
+          name: mysecret2
+          items:
+            - key: password
+              path: my-group/my-password
+              mode: 511
diff --git a/content/en/examples/pods/storage/projected-service-account-token.yaml b/content/en/examples/pods/storage/projected-service-account-token.yaml
new file mode 100644
index 0000000000..cc307659a7
--- /dev/null
+++ b/content/en/examples/pods/storage/projected-service-account-token.yaml
@@ -0,0 +1,21 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: sa-token-test
+spec:
+  containers:
+  - name: container-test
+    image: busybox:1.28
+    volumeMounts:
+    - name: token-vol
+      mountPath: "/service-account"
+      readOnly: true
+  serviceAccountName: default
+  volumes:
+  - name: token-vol
+    projected:
+      sources:
+      - serviceAccountToken:
+          audience: api
+          expirationSeconds: 3600
+          path: token
diff --git a/content/en/examples/pods/storage/projected.yaml b/content/en/examples/pods/storage/projected.yaml
index 172ca0dee5..4244048eb7 100644
--- a/content/en/examples/pods/storage/projected.yaml
+++ b/content/en/examples/pods/storage/projected.yaml
@@ -5,7 +5,7 @@ metadata:
 spec:
   containers:
   - name: test-projected-volume
-    image: busybox
+    image: busybox:1.28
     args:
     - sleep
     - "86400"
diff --git a/content/en/examples/pods/storage/pv-duplicate.yaml b/content/en/examples/pods/storage/pv-duplicate.yaml
new file mode 100644
index 0000000000..e5a0e6ff69
--- /dev/null
+++ b/content/en/examples/pods/storage/pv-duplicate.yaml
@@ -0,0 +1,22 @@
+
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test
+spec:
+  containers:
+    - name: test
+      image: nginx
+      volumeMounts:
+        # a mount for site-data
+        - name: config
+          mountPath: /usr/share/nginx/html
+          subPath: html
+        # another mount for nginx config
+        - name: config
+          mountPath: /etc/nginx/nginx.conf
+          subPath: nginx.conf
+  volumes:
+    - name: config
+      persistentVolumeClaim:
+        claimName: test-nfs-claim
diff --git a/content/en/examples/policy/restricted-psp.yaml b/content/en/examples/policy/restricted-psp.yaml
index 0837c5a3ce..4c9ae156d1 100644
--- a/content/en/examples/policy/restricted-psp.yaml
+++ b/content/en/examples/policy/restricted-psp.yaml
@@ -3,6 +3,7 @@ kind: PodSecurityPolicy
 metadata:
   name: restricted
   annotations:
+    # docker/default identifies a profile for seccomp, but it is not particularly tied to the Docker runtime
     seccomp.security.alpha.kubernetes.io/allowedProfileNames: 'docker/default,runtime/default'
     apparmor.security.beta.kubernetes.io/allowedProfileNames: 'runtime/default'
     apparmor.security.beta.kubernetes.io/defaultProfileName:  'runtime/default'
diff --git a/content/en/examples/priority-and-fairness/health-for-strangers.yaml b/content/en/examples/priority-and-fairness/health-for-strangers.yaml
index ec74077bbd..c57e2cae37 100644
--- a/content/en/examples/priority-and-fairness/health-for-strangers.yaml
+++ b/content/en/examples/priority-and-fairness/health-for-strangers.yaml
@@ -1,4 +1,4 @@
-apiVersion: flowcontrol.apiserver.k8s.io/v1beta1
+apiVersion: flowcontrol.apiserver.k8s.io/v1beta2
 kind: FlowSchema
 metadata:
   name: health-for-strangers
diff --git a/content/en/examples/security/kind-with-cluster-level-baseline-pod-security.sh b/content/en/examples/security/kind-with-cluster-level-baseline-pod-security.sh
new file mode 100644
index 0000000000..690b333443
--- /dev/null
+++ b/content/en/examples/security/kind-with-cluster-level-baseline-pod-security.sh
@@ -0,0 +1,70 @@
+#!/bin/sh
+mkdir -p /tmp/pss
+cat <<EOF > /tmp/pss/cluster-level-pss.yaml
+apiVersion: apiserver.config.k8s.io/v1
+kind: AdmissionConfiguration
+plugins:
+- name: PodSecurity
+  configuration:
+    apiVersion: pod-security.admission.config.k8s.io/v1beta1
+    kind: PodSecurityConfiguration
+    defaults:
+      enforce: "baseline"
+      enforce-version: "latest"
+      audit: "restricted"
+      audit-version: "latest"
+      warn: "restricted"
+      warn-version: "latest"
+    exemptions:
+      usernames: []
+      runtimeClasses: []
+      namespaces: [kube-system]
+EOF
+cat <<EOF > /tmp/pss/cluster-config.yaml
+kind: Cluster
+apiVersion: kind.x-k8s.io/v1alpha4
+nodes:
+- role: control-plane
+  kubeadmConfigPatches:
+  - |
+    kind: ClusterConfiguration
+    apiServer:
+        extraArgs:
+          admission-control-config-file: /etc/config/cluster-level-pss.yaml
+        extraVolumes:
+          - name: accf
+            hostPath: /etc/config
+            mountPath: /etc/config
+            readOnly: false
+            pathType: "DirectoryOrCreate"
+  extraMounts:
+  - hostPath: /tmp/pss
+    containerPath: /etc/config
+    # optional: if set, the mount is read-only.
+    # default false
+    readOnly: false
+    # optional: if set, the mount needs SELinux relabeling.
+    # default false
+    selinuxRelabel: false
+    # optional: set propagation mode (None, HostToContainer or Bidirectional)
+    # see https://kubernetes.io/docs/concepts/storage/volumes/#mount-propagation
+    # default None
+    propagation: None
+EOF
+kind create cluster --name psa-with-cluster-pss --image kindest/node:v1.23.0 --config /tmp/pss/cluster-config.yaml
+kubectl cluster-info --context kind-psa-with-cluster-pss
+# Wait for 15 seconds (arbitrary) ServiceAccount Admission Controller to be available
+sleep 15
+cat <<EOF > /tmp/pss/nginx-pod.yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: nginx
+spec:
+  containers:
+    - image: nginx
+      name: nginx
+      ports:
+        - containerPort: 80
+EOF
+kubectl apply -f /tmp/pss/nginx-pod.yaml
diff --git a/content/en/examples/security/kind-with-namespace-level-baseline-pod-security.sh b/content/en/examples/security/kind-with-namespace-level-baseline-pod-security.sh
new file mode 100644
index 0000000000..2081de7c14
--- /dev/null
+++ b/content/en/examples/security/kind-with-namespace-level-baseline-pod-security.sh
@@ -0,0 +1,28 @@
+#!/bin/sh
+# Until v1.23 is released, kind node image needs to be built from k/k master branch
+# Ref: https://kind.sigs.k8s.io/docs/user/quick-start/#building-images
+kind create cluster --name psa-ns-level --image kindest/node:v1.23.0
+kubectl cluster-info --context kind-psa-ns-level
+# Wait for 15 seconds (arbitrary) ServiceAccount Admission Controller to be available
+sleep 15
+kubectl create ns example
+kubectl label --overwrite ns example \
+  pod-security.kubernetes.io/enforce=baseline \
+  pod-security.kubernetes.io/enforce-version=latest \
+  pod-security.kubernetes.io/warn=restricted \
+  pod-security.kubernetes.io/warn-version=latest \
+  pod-security.kubernetes.io/audit=restricted \
+  pod-security.kubernetes.io/audit-version=latest
+cat <<EOF > /tmp/pss/nginx-pod.yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: nginx
+spec:
+  containers:
+    - image: nginx
+      name: nginx
+      ports:
+        - containerPort: 80
+EOF
+kubectl apply -n example -f /tmp/pss/nginx-pod.yaml
diff --git a/content/en/examples/service/networking/default-ingressclass.yaml b/content/en/examples/service/networking/default-ingressclass.yaml
new file mode 100644
index 0000000000..0602ad8c9d
--- /dev/null
+++ b/content/en/examples/service/networking/default-ingressclass.yaml
@@ -0,0 +1,10 @@
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+  name: nginx-example
+  annotations:
+    ingressclass.kubernetes.io/is-default-class: "true"
+spec:
+  controller: k8s.io/ingress-nginx
diff --git a/content/en/examples/service/networking/dual-stack-default-svc.yaml b/content/en/examples/service/networking/dual-stack-default-svc.yaml
index 86eadd5478..a42c7d8a25 100644
--- a/content/en/examples/service/networking/dual-stack-default-svc.yaml
+++ b/content/en/examples/service/networking/dual-stack-default-svc.yaml
@@ -3,10 +3,10 @@ kind: Service
 metadata:
   name: my-service
   labels:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
 spec:
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   ports:
     - protocol: TCP
       port: 80
diff --git a/content/en/examples/service/networking/dual-stack-ipfamilies-ipv6.yaml b/content/en/examples/service/networking/dual-stack-ipfamilies-ipv6.yaml
index 7c7239cae6..77949c883f 100644
--- a/content/en/examples/service/networking/dual-stack-ipfamilies-ipv6.yaml
+++ b/content/en/examples/service/networking/dual-stack-ipfamilies-ipv6.yaml
@@ -3,12 +3,12 @@ kind: Service
 metadata:
   name: my-service
   labels:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
 spec:
   ipFamilies:
   - IPv6
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   ports:
     - protocol: TCP
       port: 80
diff --git a/content/en/examples/service/networking/dual-stack-ipv6-svc.yaml b/content/en/examples/service/networking/dual-stack-ipv6-svc.yaml
index 2aa0725059..feb12f61a9 100644
--- a/content/en/examples/service/networking/dual-stack-ipv6-svc.yaml
+++ b/content/en/examples/service/networking/dual-stack-ipv6-svc.yaml
@@ -5,8 +5,8 @@ metadata:
 spec:
   ipFamily: IPv6
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   ports:
     - protocol: TCP
       port: 80
-      targetPort: 9376
\ No newline at end of file
+      targetPort: 9376
diff --git a/content/en/examples/service/networking/dual-stack-prefer-ipv6-lb-svc.yaml b/content/en/examples/service/networking/dual-stack-prefer-ipv6-lb-svc.yaml
index 0949a75428..5a4a99a45c 100644
--- a/content/en/examples/service/networking/dual-stack-prefer-ipv6-lb-svc.yaml
+++ b/content/en/examples/service/networking/dual-stack-prefer-ipv6-lb-svc.yaml
@@ -3,14 +3,14 @@ kind: Service
 metadata:
   name: my-service
   labels:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
 spec:
   ipFamilyPolicy: PreferDualStack
   ipFamilies:
   - IPv6
   type: LoadBalancer
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   ports:
     - protocol: TCP
       port: 80
diff --git a/content/en/examples/service/networking/dual-stack-preferred-ipfamilies-svc.yaml b/content/en/examples/service/networking/dual-stack-preferred-ipfamilies-svc.yaml
index c31acfec58..79a4f34a7f 100644
--- a/content/en/examples/service/networking/dual-stack-preferred-ipfamilies-svc.yaml
+++ b/content/en/examples/service/networking/dual-stack-preferred-ipfamilies-svc.yaml
@@ -3,14 +3,14 @@ kind: Service
 metadata:
   name: my-service
   labels:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
 spec:
   ipFamilyPolicy: PreferDualStack
   ipFamilies:
   - IPv6
   - IPv4
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   ports:
     - protocol: TCP
       port: 80
diff --git a/content/en/examples/service/networking/dual-stack-preferred-svc.yaml b/content/en/examples/service/networking/dual-stack-preferred-svc.yaml
index 8fb5bfa3d3..66d42b9612 100644
--- a/content/en/examples/service/networking/dual-stack-preferred-svc.yaml
+++ b/content/en/examples/service/networking/dual-stack-preferred-svc.yaml
@@ -3,11 +3,11 @@ kind: Service
 metadata:
   name: my-service
   labels:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
 spec:
   ipFamilyPolicy: PreferDualStack
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   ports:
     - protocol: TCP
       port: 80
diff --git a/content/en/examples/service/networking/hostaliases-pod.yaml b/content/en/examples/service/networking/hostaliases-pod.yaml
index 643813b34a..268bffbbf5 100644
--- a/content/en/examples/service/networking/hostaliases-pod.yaml
+++ b/content/en/examples/service/networking/hostaliases-pod.yaml
@@ -15,7 +15,7 @@ spec:
     - "bar.remote"
   containers:
   - name: cat-hosts
-    image: busybox
+    image: busybox:1.28
     command:
     - cat
     args:
diff --git a/content/en/examples/service/networking/minimal-ingress.yaml b/content/en/examples/service/networking/minimal-ingress.yaml
index 76640b9447..55a5837510 100644
--- a/content/en/examples/service/networking/minimal-ingress.yaml
+++ b/content/en/examples/service/networking/minimal-ingress.yaml
@@ -5,6 +5,7 @@ metadata:
   annotations:
     nginx.ingress.kubernetes.io/rewrite-target: /
 spec:
+  ingressClassName: nginx-example
   rules:
   - http:
       paths:
diff --git a/content/en/examples/service/networking/networkpolicy.yaml b/content/en/examples/service/networking/networkpolicy.yaml
new file mode 100644
index 0000000000..e91eed2f67
--- /dev/null
+++ b/content/en/examples/service/networking/networkpolicy.yaml
@@ -0,0 +1,35 @@
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: test-network-policy
+  namespace: default
+spec:
+  podSelector:
+    matchLabels:
+      role: db
+  policyTypes:
+    - Ingress
+    - Egress
+  ingress:
+    - from:
+        - ipBlock:
+            cidr: 172.17.0.0/16
+            except:
+              - 172.17.1.0/24
+        - namespaceSelector:
+            matchLabels:
+              project: myproject
+        - podSelector:
+            matchLabels:
+              role: frontend
+      ports:
+        - protocol: TCP
+          port: 6379
+  egress:
+    - to:
+        - ipBlock:
+            cidr: 10.0.0.0/24
+      ports:
+        - protocol: TCP
+          port: 5978
+
diff --git a/content/en/examples/tls/server-signing-config.json b/content/en/examples/tls/server-signing-config.json
new file mode 100644
index 0000000000..86860d7369
--- /dev/null
+++ b/content/en/examples/tls/server-signing-config.json
@@ -0,0 +1,15 @@
+{
+    "signing": {
+        "default": {
+            "usages": [
+                "digital signature",
+                "key encipherment",
+                "server auth"
+            ],
+            "expiry": "876000h",
+            "ca_constraint": {
+                "is_ca": false
+            }
+        }
+    }
+}
\ No newline at end of file
diff --git a/content/en/includes/default-storage-class-prereqs.md b/content/en/includes/default-storage-class-prereqs.md
index ef4823318d..8bf132be51 100644
--- a/content/en/includes/default-storage-class-prereqs.md
+++ b/content/en/includes/default-storage-class-prereqs.md
@@ -1,6 +1,6 @@
-You need to either have a dynamic PersistentVolume provisioner with a default
+You need to either have a [dynamic PersistentVolume provisioner](/docs/concepts/storage/dynamic-provisioning/) with a default
 [StorageClass](/docs/concepts/storage/storage-classes/),
-or [statically provision PersistentVolumes](/docs/user-guide/persistent-volumes/#provisioning)
-yourself to satisfy the [PersistentVolumeClaims](/docs/user-guide/persistent-volumes/#persistentvolumeclaims)
+or [statically provision PersistentVolumes](/docs/concepts/storage/persistent-volumes/#provisioning)
+yourself to satisfy the [PersistentVolumeClaims](/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims)
 used here.
 
diff --git a/content/en/includes/task-tutorial-prereqs.md b/content/en/includes/task-tutorial-prereqs.md
index b5d3c0abf3..db8edf8505 100644
--- a/content/en/includes/task-tutorial-prereqs.md
+++ b/content/en/includes/task-tutorial-prereqs.md
@@ -4,5 +4,5 @@ cluster, you can create one by using
 [minikube](https://minikube.sigs.k8s.io/docs/tutorials/multi_node/)
 or you can use one of these Kubernetes playgrounds:
 
-* [Katacoda](https://www.katacoda.com/courses/kubernetes/playground)
+* [Killercoda](https://killercoda.com/playgrounds/scenario/kubernetes)
 * [Play with Kubernetes](http://labs.play-with-k8s.com/)
diff --git a/content/en/releases/_index.md b/content/en/releases/_index.md
index af7819a0c1..689402cadf 100644
--- a/content/en/releases/_index.md
+++ b/content/en/releases/_index.md
@@ -7,7 +7,7 @@ type: docs
 
 <!-- overview -->
 
-The Kubernetes project maintains release branches for the most recent three minor releases ({{< skew latestVersion >}}, {{< skew prevMinorVersion >}}, {{< skew oldestMinorVersion >}}).  Kubernetes 1.19 and newer receive approximately 1 year of patch support. Kubernetes 1.18 and older received approximately 9 months of patch support.
+The Kubernetes project maintains release branches for the most recent three minor releases ({{< skew currentVersion >}}, {{< skew currentVersionAddMinor -1 >}}, {{< skew currentVersionAddMinor -2 >}}).  Kubernetes 1.19 and newer receive [approximately 1 year of patch support](/releases/patch-releases/#support-period). Kubernetes 1.18 and older received approximately 9 months of patch support.
 
 Kubernetes versions are expressed as **x.y.z**,
 where **x** is the major version, **y** is the minor version, and **z** is the patch version, following [Semantic Versioning](https://semver.org/) terminology.
@@ -22,6 +22,6 @@ More information in the [version skew policy](/releases/version-skew-policy/) do
 
 ## Upcoming Release
 
-Check out the [schedule](https://github.com/kubernetes/sig-release/tree/master/releases/release-{{< skew nextMinorVersion >}}) for the upcoming **{{< skew nextMinorVersion >}}** Kubernetes release!
+Check out the [schedule](https://github.com/kubernetes/sig-release/tree/master/releases/release-{{< skew currentVersionAddMinor 1 >}}) for the upcoming **{{< skew currentVersionAddMinor 1 >}}** Kubernetes release!
 
-## Helpful Resources
\ No newline at end of file
+## Helpful Resources
diff --git a/content/en/releases/download.md b/content/en/releases/download.md
index aa1fca98a4..9bad5d306c 100644
--- a/content/en/releases/download.md
+++ b/content/en/releases/download.md
@@ -2,15 +2,98 @@
 title: Download Kubernetes
 type: docs
 ---
-## Core Kubernetes components
+
+Kubernetes ships binaries for each component as well as a standard set of client
+applications to bootstrap or interact with a cluster. Components like the
+API server are capable of running within container images inside of a
+cluster. Those components are also shipped in container images as part of the
+official release process. All binaries as well as container images are available
+for multiple operating systems as well as hardware architectures.
+
+## Container Images
+
+All Kubernetes container images are deployed to the
+[k8s.gcr.io](https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/GLOBAL)
+container registry.
+
+{{< feature-state for_k8s_version="v1.24" state="alpha" >}}
+
+For Kubernetes {{< param "version" >}}, the following
+container images are signed using [cosign](https://github.com/sigstore/cosign)
+signatures:
+
+| Container Image                                                     | Supported Architectures                                                                  |
+| ------------------------------------------------------------------- | ---------------------------------------------------------------------------------------- |
+| [k8s.gcr.io/kube-apiserver:{{< param "fullversion" >}}][0]          | [amd64][0-amd64], [arm][0-arm], [arm64][0-arm64], [ppc64le][0-ppc64le], [s390x][0-s390x] |
+| [k8s.gcr.io/kube-controller-manager:{{< param "fullversion" >}}][1] | [amd64][1-amd64], [arm][1-arm], [arm64][1-arm64], [ppc64le][1-ppc64le], [s390x][1-s390x] |
+| [k8s.gcr.io/kube-proxy:{{< param "fullversion" >}}][2]              | [amd64][2-amd64], [arm][2-arm], [arm64][2-arm64], [ppc64le][2-ppc64le], [s390x][2-s390x] |
+| [k8s.gcr.io/kube-scheduler:{{< param "fullversion" >}}][3]          | [amd64][3-amd64], [arm][3-arm], [arm64][3-arm64], [ppc64le][3-ppc64le], [s390x][3-s390x] |
+| [k8s.gcr.io/conformance:{{< param "fullversion" >}}][4]             | [amd64][4-amd64], [arm][4-arm], [arm64][4-arm64], [ppc64le][4-ppc64le], [s390x][4-s390x] |
+
+[0]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-apiserver
+[0-amd64]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-apiserver-amd64
+[0-arm]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-apiserver-arm
+[0-arm64]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-apiserver-arm64
+[0-ppc64le]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-apiserver-ppc64le
+[0-s390x]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-apiserver-s390x
+[1]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-controller-manager
+[1-amd64]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-controller-manager-amd64
+[1-arm]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-controller-manager-arm
+[1-arm64]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-controller-manager-arm64
+[1-ppc64le]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-controller-manager-ppc64le
+[1-s390x]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-controller-manager-s390x
+[2]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-proxy
+[2-amd64]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-proxy-amd64
+[2-arm]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-proxy-arm
+[2-arm64]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-proxy-arm64
+[2-ppc64le]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-proxy-ppc64le
+[2-s390x]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-proxy-s390x
+[3]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-scheduler
+[3-amd64]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-scheduler-amd64
+[3-arm]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-scheduler-arm
+[3-arm64]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-scheduler-arm64
+[3-ppc64le]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-scheduler-ppc64le
+[3-s390x]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-scheduler-s390x
+[4]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/conformance
+[4-amd64]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/conformance-amd64
+[4-arm]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/conformance-arm
+[4-arm64]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/conformance-arm64
+[4-ppc64le]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/conformance-ppc64le
+[4-s390x]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/conformance-s390x
+
+All container images are available for multiple architectures, whereas the
+container runtime should choose the correct one based on the underlying
+platform. It is also possible to pull a dedicated architecture by suffixing the
+container image name, for example
+[`k8s.gcr.io/kube-apiserver-arm64:{{< param "fullversion" >}}`][0-arm64]. All
+those derivations are signed in the same way as the multi-architecture manifest lists.
+
+The Kubernetes project publishes a list of signed Kubernetes container images
+in SBoM (Software Bill of Materials) format.
+You can fetch that list using:
+
+```shell
+curl -Ls "https://sbom.k8s.io/$(curl -Ls https://dl.k8s.io/release/latest.txt)/release"  | awk '/PackageName: k8s.gcr.io\// {print $2}'
+```
+For Kubernetes v{{< skew currentVersion >}}, the only kind of code artifact that
+you can verify integrity for is a container image, using the experimental
+signing support.
+
+To manually verify signed container images of Kubernetes core components, refer to
+[Verify Signed Container Images](/docs/tasks/administer-cluster/verify-signed-images).
+
+
+
+## Binaries
 
 Find links to download Kubernetes components (and their checksums) in the [CHANGELOG](https://github.com/kubernetes/kubernetes/tree/master/CHANGELOG) files.
 
 Alternately, use [downloadkubernetes.com](https://www.downloadkubernetes.com/) to filter by version and architecture.
 
-## kubectl
+### kubectl
 
 <!-- overview -->
+
 The Kubernetes command-line tool, [kubectl](/docs/reference/kubectl/kubectl/), allows
 you to run commands against Kubernetes clusters.
 
@@ -18,9 +101,9 @@ You can use kubectl to deploy applications, inspect and manage cluster resources
 and view logs. For more information including a complete list of kubectl operations, see the
 [`kubectl` reference documentation](/docs/reference/kubectl/).
 
-kubectl is installable on a variety of Linux platforms, macOS and Windows. 
+kubectl is installable on a variety of Linux platforms, macOS and Windows.
 Find your preferred operating system below.
 
 - [Install kubectl on Linux](/docs/tasks/tools/install-kubectl-linux)
 - [Install kubectl on macOS](/docs/tasks/tools/install-kubectl-macos)
-- [Install kubectl on Windows](/docs/tasks/tools/install-kubectl-windows)
\ No newline at end of file
+- [Install kubectl on Windows](/docs/tasks/tools/install-kubectl-windows)
diff --git a/content/en/releases/notes.md b/content/en/releases/notes.md
index 3ad20944b2..1bb60c8106 100644
--- a/content/en/releases/notes.md
+++ b/content/en/releases/notes.md
@@ -8,6 +8,6 @@ sitemap:
   priority: 0.5
 ---
 
-Release notes can be found by reading the [Changelog](https://github.com/kubernetes/kubernetes/tree/master/CHANGELOG) that matches your Kubernetes version. View the changelog for {{< skew latestVersion >}} on [GitHub](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-{{< skew latestVersion >}}.md).
+Release notes can be found by reading the [Changelog](https://github.com/kubernetes/kubernetes/tree/master/CHANGELOG) that matches your Kubernetes version. View the changelog for {{< skew currentVersionAddMinor 0 >}} on [GitHub](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-{{< skew currentVersionAddMinor 0 >}}.md).
 
-Alternately, release notes can be searched and filtered online at: [relnotes.k8s.io](https://relnotes.k8s.io). View filtered release notes for {{< skew latestVersion >}} on [relnotes.k8s.io](https://relnotes.k8s.io/?releaseVersions={{< skew latestVersion >}}.0).
+Alternately, release notes can be searched and filtered online at: [relnotes.k8s.io](https://relnotes.k8s.io). View filtered release notes for {{< skew currentVersionAddMinor 0 >}} on [relnotes.k8s.io](https://relnotes.k8s.io/?releaseVersions={{< skew currentVersionAddMinor 0 >}}.0).
diff --git a/content/en/releases/patch-releases.md b/content/en/releases/patch-releases.md
index c7597e332f..f263e431c2 100644
--- a/content/en/releases/patch-releases.md
+++ b/content/en/releases/patch-releases.md
@@ -78,88 +78,79 @@ releases may also occur in between these.
 
 | Monthly Patch Release | Cherry Pick Deadline | Target date |
 | --------------------- | -------------------- | ----------- |
-| September 2021        | 2021-09-10           | 2021-09-15  |
-| October 2021          | 2021-10-15           | 2021-10-20  |
-| November 2021         | 2021-11-12           | 2021-11-17  |
-| December 2021         | 2021-12-10           | 2021-12-15  |
+| August 2022           | 2022-08-12           | 2022-08-17  |
+| September 2022        | 2022-09-09           | 2022-09-14  |
+| October 2022          | 2022-10-07           | 2022-10-12  |
 
 ## Detailed Release History for Active Branches
 
+### 1.24
+
+Next patch release is **1.24.4**
+
+End of Life for **1.24** is **2023-07-28**
+
+| PATCH RELEASE | CHERRY PICK DEADLINE | TARGET DATE | NOTE |
+|---------------|----------------------|-------------|------|
+| 1.24.4        | 2022-08-12           | 2022-08-17  |      |
+| 1.24.3        | 2022-07-08           | 2022-07-13  |      |
+| 1.24.2        | 2022-06-10           | 2022-06-15  |      |
+| 1.24.1        | 2022-05-20           | 2022-05-24  |      |
+
+### 1.23
+
+Next patch release is **1.23.10**
+
+**1.23** enters maintenance mode on **2022-12-28**.
+
+End of Life for **1.23** is **2023-02-28**.
+
+| Patch Release | Cherry Pick Deadline | Target Date | Note |
+|---------------|----------------------|-------------|------|
+| 1.23.10       | 2022-08-12           | 2022-08-17  |      |
+| 1.23.9        | 2022-07-08           | 2022-07-13  |      |
+| 1.23.8        | 2022-06-10           | 2022-06-15  |      |
+| 1.23.7        | 2022-05-20           | 2022-05-24  |      |
+| 1.23.6        | 2022-04-08           | 2022-04-13  |      |
+| 1.23.5        | 2022-03-11           | 2022-03-16  |      |
+| 1.23.4        | 2022-02-11           | 2022-02-16  |      |
+| 1.23.3        | 2022-01-24           | 2022-01-25  | [Out-of-Band Release](https://groups.google.com/a/kubernetes.io/g/dev/c/Xl1sm-CItaY) |
+| 1.23.2        | 2022-01-14           | 2022-01-19  |      |
+| 1.23.1        | 2021-12-14           | 2021-12-16  |      |
+
 ### 1.22
 
+Next patch release is **1.22.13**
+
 **1.22** enters maintenance mode on **2022-08-28**
 
 End of Life for **1.22** is **2022-10-28**
 
-| PATCH RELEASE | CHERRY PICK DEADLINE | TARGET DATE | NOTE |
+| Patch Release | Cherry Pick Deadline | Target Date | Note |
 |---------------|----------------------|-------------|------|
+| 1.22.13       | 2022-08-12           | 2022-08-17  |      |
+| 1.22.12       | 2022-07-08           | 2022-07-13  |      |
+| 1.22.11       | 2022-06-10           | 2022-06-15  |      |
+| 1.22.10       | 2022-05-20           | 2022-05-24  |      |
+| 1.22.9        | 2022-04-08           | 2022-04-13  |      |
+| 1.22.8        | 2022-03-11           | 2022-03-16  |      |
+| 1.22.7        | 2022-02-11           | 2022-02-16  |      |
+| 1.22.6        | 2022-01-14           | 2022-01-19  |      |
+| 1.22.5        | 2021-12-10           | 2021-12-15  |      |
+| 1.22.4        | 2021-11-12           | 2021-11-17  |      |
+| 1.22.3        | 2021-10-22           | 2021-10-27  |      |
 | 1.22.2        | 2021-09-10           | 2021-09-15  |      |
 | 1.22.1        | 2021-08-16           | 2021-08-19  |      |
 
-### 1.21
-
-**1.21** enters maintenance mode on **2022-04-28**
-
-End of Life for **1.21** is **2022-06-28**
-
-| PATCH RELEASE | CHERRY PICK DEADLINE | TARGET DATE | NOTE                                                                   |
-| ------------- | -------------------- | ----------- | ---------------------------------------------------------------------- |
-| 1.21.5        | 2021-09-10           | 2021-09-15  |                                                                        |
-| 1.21.4        | 2021-08-07           | 2021-08-11  |                                                                        |
-| 1.21.3        | 2021-07-10           | 2021-07-14  |                                                                        |
-| 1.21.2        | 2021-06-12           | 2021-06-16  |                                                                        |
-| 1.21.1        | 2021-05-07           | 2021-05-12  | [Regression](https://groups.google.com/g/kubernetes-dev/c/KuF8s2zueFs) |
-
-### 1.20
-
-**1.20** enters maintenance mode on **2021-12-28**
-
-End of Life for **1.20** is **2022-02-28**
-
-| PATCH RELEASE | CHERRY PICK DEADLINE | TARGET DATE | NOTE                                                                                |
-| ------------- | -------------------- | ----------- | ----------------------------------------------------------------------------------- |
-| 1.20.11       | 2021-09-10           | 2021-09-15  |                                                                                     |
-| 1.20.10       | 2021-08-07           | 2021-08-11  |                                                                                     |
-| 1.20.9        | 2021-07-10           | 2021-07-14  |                                                                                     |
-| 1.20.8        | 2021-06-12           | 2021-06-16  |                                                                                     |
-| 1.20.7        | 2021-05-07           | 2021-05-12  | [Regression](https://groups.google.com/g/kubernetes-dev/c/KuF8s2zueFs)              |
-| 1.20.6        | 2021-04-09           | 2021-04-14  |                                                                                     |
-| 1.20.5        | 2021-03-12           | 2021-03-17  |                                                                                     |
-| 1.20.4        | 2021-02-12           | 2021-02-18  |                                                                                     |
-| 1.20.3        | 2021-02-12           | 2021-02-17  | [Conformance Tests Issue](https://groups.google.com/g/kubernetes-dev/c/oUpY9vWgzJo) |
-| 1.20.2        | 2021-01-08           | 2021-01-13  |                                                                                     |
-| 1.20.1        | 2020-12-11           | 2020-12-18  | [Tagging Issue](https://groups.google.com/g/kubernetes-dev/c/dNH2yknlCBA)           |
-
-### 1.19
-
-**1.19** enters maintenance mode on **2021-08-28**
-
-End of Life for **1.19** is **2021-10-28**
-
-| PATCH RELEASE | CHERRY PICK DEADLINE | TARGET DATE | NOTE                                                                      |
-| ------------- | -------------------- | ----------- | ------------------------------------------------------------------------- |
-| 1.19.15       | 2021-09-10           | 2021-09-15  |                                                                           |
-| 1.19.14       | 2021-08-07           | 2021-08-11  |                                                                           |
-| 1.19.13       | 2021-07-10           | 2021-07-14  |                                                                           |
-| 1.19.12       | 2021-06-12           | 2021-06-16  |                                                                           |
-| 1.19.11       | 2021-05-07           | 2021-05-12  | [Regression](https://groups.google.com/g/kubernetes-dev/c/KuF8s2zueFs)    |
-| 1.19.10       | 2021-04-09           | 2021-04-14  |                                                                           |
-| 1.19.9        | 2021-03-12           | 2021-03-17  |                                                                           |
-| 1.19.8        | 2021-02-12           | 2021-02-17  |                                                                           |
-| 1.19.7        | 2021-01-08           | 2021-01-13  |                                                                           |
-| 1.19.6        | 2020-12-11           | 2020-12-18  | [Tagging Issue](https://groups.google.com/g/kubernetes-dev/c/dNH2yknlCBA) |
-| 1.19.5        | 2020-12-04           | 2020-12-09  |                                                                           |
-| 1.19.4        | 2020-11-06           | 2020-11-11  |                                                                           |
-| 1.19.3        | 2020-10-09           | 2020-10-14  |                                                                           |
-| 1.19.2        | 2020-09-11           | 2020-09-16  |                                                                           |
-| 1.19.1        | 2020-09-04           | 2020-09-09  |                                                                           |
-
 ## Non-Active Branch History
 
 These releases are no longer supported.
 
-| MINOR VERSION | FINAL PATCH RELEASE | EOL DATE   | NOTE                                                                   |
+| Minor Version | Final Patch Release | EOL Date   | Note                                                                   |
 | ------------- | ------------------- | ---------- | ---------------------------------------------------------------------- |
+| 1.21          | 1.21.14             | 2022-06-28 |                                                                        |
+| 1.20          | 1.20.15             | 2022-02-28 |                                                                        |
+| 1.19          | 1.19.16             | 2021-10-28 |                                                                        |
 | 1.18          | 1.18.20             | 2021-06-18 | Created to resolve regression introduced in 1.18.19                    |
 | 1.18          | 1.18.19             | 2021-05-12 | [Regression](https://groups.google.com/g/kubernetes-dev/c/KuF8s2zueFs) |
 | 1.17          | 1.17.17             | 2021-01-13 |                                                                        |
diff --git a/content/en/releases/release-managers.md b/content/en/releases/release-managers.md
index 0b68ca0b87..f653dab9d7 100644
--- a/content/en/releases/release-managers.md
+++ b/content/en/releases/release-managers.md
@@ -4,8 +4,8 @@ type: docs
 ---
 
 "Release Managers" is an umbrella term that encompasses the set of Kubernetes
-contributors responsible for maintaining release branches, tagging releases,
-and building/packaging Kubernetes.
+contributors responsible for maintaining release branches and creating releases
+by using the tools SIG Release provides.
 
 The responsibilities of each role are described below.
 
@@ -31,7 +31,7 @@ The responsibilities of each role are described below.
 
 ### Security Embargo Policy
 
-Some information about releases is subject to embargo and we have defined policy about how those embargos are set. Please refer [Security Embargo Policy](https://github.com/kubernetes/security/blob/master/private-distributors-list.md#embargo-policy) here for more information.
+Some information about releases is subject to embargo and we have defined policy about how those embargoes are set. Please refer to the [Security Embargo Policy](https://github.com/kubernetes/committee-security-response/blob/main/private-distributors-list.md#embargo-policy) for more information.
 
 ## Handbooks
 
@@ -69,7 +69,7 @@ Release Managers are responsible for:
   - Reviewing cherry picks
   - Ensuring the release branch stays healthy and that no unintended patch
     gets merged
-- Mentoring the [Release Manager Associates](#associates) group
+- Mentoring the [Release Manager Associates](#release-manager-associates) group
 - Actively developing features and maintaining the code in k/release
 - Supporting Release Manager Associates and contributors through actively
   participating in the Buddy program
@@ -88,10 +88,11 @@ GitHub Mentions: [@kubernetes/release-engineering](https://github.com/orgs/kuber
 
 - Adolfo García Veytia ([@puerco](https://github.com/puerco))
 - Carlos Panato ([@cpanato](https://github.com/cpanato))
-- Daniel Mangum ([@hasheddan](https://github.com/hasheddan))
 - Marko Mudrinić ([@xmudrii](https://github.com/xmudrii))
+- Nabarun Pal ([@palnabarun](https://github.com/palnabarun))
 - Sascha Grunert ([@saschagrunert](https://github.com/saschagrunert))
 - Stephen Augustus ([@justaugustus](https://github.com/justaugustus))
+- Verónica López ([@verolop](https://github.com/verolop))
 
 ### Becoming a Release Manager
 
@@ -132,13 +133,13 @@ referred to as Release Manager shadows. They are responsible for:
 GitHub Mentions: @kubernetes/release-engineering
 
 - Arnaud Meukam ([@ameukam](https://github.com/ameukam))
+- Jeremy Rickard ([@jeremyrickard](https://github.com/jeremyrickard))
 - Jim Angel ([@jimangel](https://github.com/jimangel))
+- Joseph Sandoval ([@jrsapi](https://github.com/jrsapi))
 - Joyce Kung ([@thejoycekung](https://github.com/thejoycekung))
 - Max Körbächer ([@mkorbi](https://github.com/mkorbi))
-- Nabarun Pal ([@palnabarun](https://github.com/palnabarun))
 - Seth McCombs ([@sethmccombs](https://github.com/sethmccombs))
 - Taylor Dolezal ([@onlydole](https://github.com/onlydole))
-- Verónica López ([@verolop](https://github.com/verolop))
 - Wilson Husin ([@wilsonehusin](https://github.com/wilsonehusin))
 
 ### Becoming a Release Manager Associate
@@ -170,9 +171,9 @@ of each minor (1.Y) and patch (1.Y.Z) release
 GitHub team: [@kubernetes/build-admins](https://github.com/orgs/kubernetes/teams/build-admins)
 
 - Aaron Crickenberger ([@spiffxp](https://github.com/spiffxp))
-- Amit Watve ([@amwat](https://github.com/amwat))
 - Benjamin Elder ([@BenTheElder](https://github.com/BenTheElder))
 - Grant McCloskey ([@MushuEE](https://github.com/MushuEE))
+- Juan Escobar ([@juanfescobar](https://github.com/juanfescobar))
 
 ## SIG Release Leads
 
@@ -199,7 +200,6 @@ GitHub team: [@kubernetes/sig-release-leads](https://github.com/orgs/kubernetes/
 
 - Adolfo García Veytia ([@puerco](https://github.com/puerco))
 - Carlos Panato ([@cpanato](https://github.com/cpanato))
-- Daniel Mangum ([@hasheddan](https://github.com/hasheddan))
 - Jeremy Rickard ([@jeremyrickard](https://github.com/jeremyrickard))
 
 ---
@@ -211,10 +211,10 @@ Example: [1.15 Release Team](https://git.k8s.io/sig-release/releases/release-1.1
 
 [community-membership]: https://git.k8s.io/community/community-membership.md#member
 [handbook-branch-mgmt]: https://git.k8s.io/sig-release/release-engineering/role-handbooks/branch-manager.md
-[handbook-packaging]: https://git.k8s.io/sig-release/release-engineering/packaging.md
+[handbook-packaging]: https://git.k8s.io/release/hack/rapture/README.md
 [handbook-patch-release]: https://git.k8s.io/sig-release/release-engineering/role-handbooks/patch-release-team.md
 [k-sig-release-releases]: https://git.k8s.io/sig-release/releases
-[patches]: /patch-releases.md
-[src]: https://git.k8s.io/community/committee-product-security/README.md
+[patches]: /releases/patch-releases/
+[src]: https://git.k8s.io/community/committee-security-response/README.md
 [release-team]: https://git.k8s.io/sig-release/release-team/README.md
 [security-release-process]: https://git.k8s.io/security/security-release-process.md
diff --git a/content/en/releases/release.md b/content/en/releases/release.md
index 5542b41202..e0d21c0df1 100644
--- a/content/en/releases/release.md
+++ b/content/en/releases/release.md
@@ -17,9 +17,9 @@ create an enhancement, issue, or pull request which targets a specific release
 milestone.
 
 - [TL;DR](#tldr)
-  - [Normal Dev (Weeks 1-8)](#normal-dev-weeks-1-8)
-  - [Code Freeze (Weeks 9-11)](#code-freeze-weeks-9-11)
-  - [Post-Release (Weeks 11+)](#post-release-weeks-11)
+  - [Normal Dev (Weeks 1-11)](#normal-dev-weeks-1-11)
+  - [Code Freeze (Weeks 12-14)](#code-freeze-weeks-12-14)
+  - [Post-Release (Weeks 14+)](#post-release-weeks-14+)
 - [Definitions](#definitions)
 - [The Release Cycle](#the-release-cycle)
 - [Removal Of Items From The Milestone](#removal-of-items-from-the-milestone)
@@ -54,14 +54,14 @@ requirements exist when the target milestone is a prior release (see
 If you want your PR to get merged, it needs the following required labels and
 milestones, represented here by the Prow /commands it would take to add them:
 
-### Normal Dev (Weeks 1-8)
+### Normal Dev (Weeks 1-11)
 
 - /sig {name}
 - /kind {type}
 - /lgtm
 - /approved
 
-### [Code Freeze][code-freeze] (Weeks 9-11)
+### [Code Freeze][code-freeze] (Weeks 12-14)
 
 - /milestone {v1.y}
 - /sig {name}
@@ -69,7 +69,7 @@ milestones, represented here by the Prow /commands it would take to add them:
 - /lgtm
 - /approved
 
-### Post-Release (Weeks 11+)
+### Post-Release (Weeks 14+)
 
 Return to 'Normal Dev' phase requirements:
 
@@ -90,43 +90,43 @@ The general labeling process should be consistent across artifact types.
 
 ## Definitions
 
-- _issue owners_: Creator, assignees, and user who moved the issue into a
+- *issue owners*: Creator, assignees, and user who moved the issue into a
   release milestone
 
-- _Release Team_: Each Kubernetes release has a team doing project management
+- *Release Team*: Each Kubernetes release has a team doing project management
   tasks described [here][release-team].
 
   The contact info for the team associated with any given release can be found
   [here](https://git.k8s.io/sig-release/releases/).
 
-- _Y days_: Refers to business days
+- *Y days*: Refers to business days
 
-- _enhancement_: see "[Is My Thing an Enhancement?](https://git.k8s.io/enhancements/README.md#is-my-thing-an-enhancement)"
+- *enhancement*: see "[Is My Thing an Enhancement?](https://git.k8s.io/enhancements/README.md#is-my-thing-an-enhancement)"
 
-- _[Enhancements Freeze][enhancements-freeze]_:
+- *[Enhancements Freeze][enhancements-freeze]*:
   the deadline by which [KEPs][keps] have to be completed in order for
   enhancements to be part of the current release
 
-- _[Exception Request][exceptions]_:
+- *[Exception Request][exceptions]*:
   The process of requesting an extension on the deadline for a particular
   Enhancement
 
-- _[Code Freeze][code-freeze]_:
+- *[Code Freeze][code-freeze]*:
   The period of ~4 weeks before the final release date, during which only
   critical bug fixes are merged into the release.
 
-- _[Pruning](https://git.k8s.io/sig-release/releases/release_phases.md#pruning)_:
+- *[Pruning](https://git.k8s.io/sig-release/releases/release_phases.md#pruning)*:
   The process of removing an Enhancement from a release milestone if it is not
   fully implemented or is otherwise considered not stable.
 
-- _release milestone_: semantic version string or
+- *release milestone*: semantic version string or
   [GitHub milestone](https://help.github.com/en/github/managing-your-work-on-github/associating-milestones-with-issues-and-pull-requests)
   referring to a release MAJOR.MINOR `vX.Y` version.
 
   See also
-  [release versioning](/contributors/design-proposals/release/versioning.md).
+  [release versioning](https://git.k8s.io/sig-release/release-engineering/versioning.md).
 
-- _release branch_: Git branch `release-X.Y` created for the `vX.Y` milestone.
+- *release branch*: Git branch `release-X.Y` created for the `vX.Y` milestone.
 
   Created at the time of the `vX.Y-rc.0` release and maintained after the
   release for approximately 12 months with `vX.Y.Z` patch releases.
@@ -136,9 +136,9 @@ The general labeling process should be consistent across artifact types.
 
 ## The Release Cycle
 
-![Image of one Kubernetes release cycle](release-cycle.png)
+![Image of one Kubernetes release cycle](/images/releases/release-cycle.jpg)
 
-Kubernetes releases currently happen approximately four times per year.
+Kubernetes releases currently happen approximately three times per year.
 
 The release process can be thought of as having three main phases:
 
@@ -161,7 +161,7 @@ conjunction with the Release Team's [Enhancements Lead](https://git.k8s.io/sig-r
 
 After Enhancements Freeze, tracking milestones on PRs and issues is important.
 Items within the milestone are used as a punchdown list to complete the
-release. _On issues_, milestones must be applied correctly, via triage by the
+release. *On issues*, milestones must be applied correctly, via triage by the
 SIG, so that [Release Team][release-team] can track bugs and enhancements (any
 enhancement-related issue needs a milestone).
 
@@ -189,7 +189,7 @@ under that automation umbrella should be have a milestone applied.
 Implementation and bug fixing is ongoing across the cycle, but culminates in a
 code freeze period.
 
-**[Code Freeze][code-freeze]** starts in week ~10 and continues for ~2 weeks.
+**[Code Freeze][code-freeze]** starts in week ~12 and continues for ~2 weeks.
 Only critical bug fixes are accepted into the release codebase during this
 time.
 
@@ -204,7 +204,7 @@ back to the release branch. The release is built from the release branch.
 
 Each release is part of a broader Kubernetes lifecycle:
 
-![Image of Kubernetes release lifecycle spanning three releases](release-lifecycle.png)
+![Image of Kubernetes release lifecycle spanning three releases](/images/releases/release-lifecycle.jpg)
 
 ## Removal Of Items From The Milestone
 
@@ -281,7 +281,7 @@ Issues are marked as targeting a milestone via the Prow "/milestone" command.
 The Release Team's [Bug Triage Lead](https://git.k8s.io/sig-release/release-team/role-handbooks/bug-triage/README.md)
 and overall community watch incoming issues and triage them, as described in
 the contributor guide section on
-[issue triage](/contributors/guide/issue-triage.md).
+[issue triage](https://k8s.dev/docs/guide/issue-triage/).
 
 Marking issues with the milestone provides the community better visibility
 regarding when an issue was observed and by when the community feels it must be
@@ -355,11 +355,11 @@ issue kind labels must be set:
 - `kind/feature`: New functionality.
 - `kind/flake`: CI test case is showing intermittent failures.
 
-[cherry-picks]: /community/blob/master/contributors/devel/sig-release/cherry-picks.md
+[cherry-picks]: https://git.k8s.io/community/contributors/devel/sig-release/cherry-picks.md
 [code-freeze]: https://git.k8s.io/sig-release/releases/release_phases.md#code-freeze
 [enhancements-freeze]: https://git.k8s.io/sig-release/releases/release_phases.md#enhancements-freeze
 [exceptions]: https://git.k8s.io/sig-release/releases/release_phases.md#exceptions
 [keps]: https://git.k8s.io/enhancements/keps
-[release-managers]: https://git.k8s.io/sig-release/release-managers.md
+[release-managers]: /releases/release-managers/
 [release-team]: https://git.k8s.io/sig-release/release-team
-[sig-list]: /sig-list.md
+[sig-list]: https://k8s.dev/sigs
diff --git a/content/en/releases/version-skew-policy.md b/content/en/releases/version-skew-policy.md
index 56a7afda10..6a58595919 100644
--- a/content/en/releases/version-skew-policy.md
+++ b/content/en/releases/version-skew-policy.md
@@ -21,16 +21,16 @@ Specific cluster deployment tools may place additional restrictions on version s
 ## Supported versions
 
 Kubernetes versions are expressed as **x.y.z**, where **x** is the major version, **y** is the minor version, and **z** is the patch version, following [Semantic Versioning](https://semver.org/) terminology.
-For more information, see [Kubernetes Release Versioning](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/release/versioning.md#kubernetes-release-versioning).
+For more information, see [Kubernetes Release Versioning](https://git.k8s.io/sig-release/release-engineering/versioning.md#kubernetes-release-versioning).
 
-The Kubernetes project maintains release branches for the most recent three minor releases ({{< skew latestVersion >}}, {{< skew prevMinorVersion >}}, {{< skew oldestMinorVersion >}}).  Kubernetes 1.19 and newer receive approximately 1 year of patch support. Kubernetes 1.18 and older received approximately 9 months of patch support.
+The Kubernetes project maintains release branches for the most recent three minor releases ({{< skew currentVersion >}}, {{< skew currentVersionAddMinor -1 >}}, {{< skew currentVersionAddMinor -2 >}}).  Kubernetes 1.19 and newer receive approximately 1 year of patch support. Kubernetes 1.18 and older received approximately 9 months of patch support.
 
 Applicable fixes, including security fixes, may be backported to those three release branches, depending on severity and feasibility.
-Patch releases are cut from those branches at a [regular cadence](https://git.k8s.io/sig-release/releases/patch-releases.md#cadence), plus additional urgent releases, when required.
+Patch releases are cut from those branches at a [regular cadence](/releases/patch-releases/#cadence), plus additional urgent releases, when required.
 
-The [Release Managers](https://git.k8s.io/sig-release/release-managers.md) group owns this decision.
+The [Release Managers](/releases/release-managers/) group owns this decision.
 
-For more information, see the Kubernetes [patch releases](https://git.k8s.io/sig-release/releases/patch-releases.md) page.
+For more information, see the Kubernetes [patch releases](/releases/patch-releases/) page.
 
 ## Supported version skew
 
@@ -40,8 +40,8 @@ In [highly-available (HA) clusters](/docs/setup/production-environment/tools/kub
 
 Example:
 
-* newest `kube-apiserver` is at **{{< skew latestVersion >}}**
-* other `kube-apiserver` instances are supported at **{{< skew latestVersion >}}** and **{{< skew prevMinorVersion >}}**
+* newest `kube-apiserver` is at **{{< skew currentVersion >}}**
+* other `kube-apiserver` instances are supported at **{{< skew currentVersion >}}** and **{{< skew currentVersionAddMinor -1 >}}**
 
 ### kubelet
 
@@ -49,8 +49,8 @@ Example:
 
 Example:
 
-* `kube-apiserver` is at **{{< skew latestVersion >}}**
-* `kubelet` is supported at **{{< skew latestVersion >}}**, **{{< skew prevMinorVersion >}}**, and **{{< skew oldestMinorVersion >}}**
+* `kube-apiserver` is at **{{< skew currentVersion >}}**
+* `kubelet` is supported at **{{< skew currentVersion >}}**, **{{< skew currentVersionAddMinor -1 >}}**, and **{{< skew currentVersionAddMinor -2 >}}**
 
 {{< note >}}
 If version skew exists between `kube-apiserver` instances in an HA cluster, this narrows the allowed `kubelet` versions.
@@ -58,8 +58,8 @@ If version skew exists between `kube-apiserver` instances in an HA cluster, this
 
 Example:
 
-* `kube-apiserver` instances are at **{{< skew latestVersion >}}** and **{{< skew prevMinorVersion >}}**
-* `kubelet` is supported at **{{< skew prevMinorVersion >}}**, and **{{< skew oldestMinorVersion >}}** (**{{< skew latestVersion >}}** is not supported because that would be newer than the `kube-apiserver` instance at version **{{< skew prevMinorVersion >}}**)
+* `kube-apiserver` instances are at **{{< skew currentVersion >}}** and **{{< skew currentVersionAddMinor -1 >}}**
+* `kubelet` is supported at **{{< skew currentVersionAddMinor -1 >}}**, and **{{< skew currentVersionAddMinor -2 >}}** (**{{< skew currentVersion >}}** is not supported because that would be newer than the `kube-apiserver` instance at version **{{< skew currentVersionAddMinor -1 >}}**)
 
 ### kube-controller-manager, kube-scheduler, and cloud-controller-manager
 
@@ -67,8 +67,8 @@ Example:
 
 Example:
 
-* `kube-apiserver` is at **{{< skew latestVersion >}}**
-* `kube-controller-manager`, `kube-scheduler`, and `cloud-controller-manager` are supported at **{{< skew latestVersion >}}** and **{{< skew prevMinorVersion >}}**
+* `kube-apiserver` is at **{{< skew currentVersion >}}**
+* `kube-controller-manager`, `kube-scheduler`, and `cloud-controller-manager` are supported at **{{< skew currentVersion >}}** and **{{< skew currentVersionAddMinor -1 >}}**
 
 {{< note >}}
 If version skew exists between `kube-apiserver` instances in an HA cluster, and these components can communicate with any `kube-apiserver` instance in the cluster (for example, via a load balancer), this narrows the allowed versions of these components.
@@ -76,9 +76,9 @@ If version skew exists between `kube-apiserver` instances in an HA cluster, and
 
 Example:
 
-* `kube-apiserver` instances are at **{{< skew latestVersion >}}** and **{{< skew prevMinorVersion >}}**
+* `kube-apiserver` instances are at **{{< skew currentVersion >}}** and **{{< skew currentVersionAddMinor -1 >}}**
 * `kube-controller-manager`, `kube-scheduler`, and `cloud-controller-manager` communicate with a load balancer that can route to any `kube-apiserver` instance
-* `kube-controller-manager`, `kube-scheduler`, and `cloud-controller-manager` are supported at **{{< skew prevMinorVersion >}}** (**{{< skew latestVersion >}}** is not supported because that would be newer than the `kube-apiserver` instance at version **{{< skew prevMinorVersion >}}**)
+* `kube-controller-manager`, `kube-scheduler`, and `cloud-controller-manager` are supported at **{{< skew currentVersionAddMinor -1 >}}** (**{{< skew currentVersion >}}** is not supported because that would be newer than the `kube-apiserver` instance at version **{{< skew currentVersionAddMinor -1 >}}**)
 
 ### kubectl
 
@@ -86,8 +86,8 @@ Example:
 
 Example:
 
-* `kube-apiserver` is at **{{< skew latestVersion >}}**
-* `kubectl` is supported at **{{< skew nextMinorVersion >}}**, **{{< skew latestVersion >}}**, and **{{< skew prevMinorVersion >}}**
+* `kube-apiserver` is at **{{< skew currentVersion >}}**
+* `kubectl` is supported at **{{< skew currentVersionAddMinor 1 >}}**, **{{< skew currentVersion >}}**, and **{{< skew currentVersionAddMinor -1 >}}**
 
 {{< note >}}
 If version skew exists between `kube-apiserver` instances in an HA cluster, this narrows the supported `kubectl` versions.
@@ -95,27 +95,40 @@ If version skew exists between `kube-apiserver` instances in an HA cluster, this
 
 Example:
 
-* `kube-apiserver` instances are at **{{< skew latestVersion >}}** and **{{< skew prevMinorVersion >}}**
-* `kubectl` is supported at **{{< skew latestVersion >}}** and **{{< skew prevMinorVersion >}}** (other versions would be more than one minor version skewed from one of the `kube-apiserver` components)
+* `kube-apiserver` instances are at **{{< skew currentVersion >}}** and **{{< skew currentVersionAddMinor -1 >}}**
+* `kubectl` is supported at **{{< skew currentVersion >}}** and **{{< skew currentVersionAddMinor -1 >}}** (other versions would be more than one minor version skewed from one of the `kube-apiserver` components)
 
 ## Supported component upgrade order
 
 The supported version skew between components has implications on the order in which components must be upgraded.
-This section describes the order in which components must be upgraded to transition an existing cluster from version **{{< skew prevMinorVersion >}}** to version **{{< skew latestVersion >}}**.
+This section describes the order in which components must be upgraded to transition an existing cluster from version **{{< skew currentVersionAddMinor -1 >}}** to version **{{< skew currentVersion >}}**.
+
+Optionally, when preparing to upgrade, the Kubernetes project recommends that
+you do the following to benefit from as many regression and bug fixes as
+possible during your upgrade: 
+
+*  Ensure that components are on the most recent patch version of your current
+   minor version.
+*  Upgrade components to the most recent patch version of the target minor
+   version.
+
+For example, if you're running version {{<skew currentVersionAddMinor -1>}},
+ensure that you're on the most recent patch version. Then, upgrade to the most
+recent patch version of {{<skew currentVersion>}}.
 
 ### kube-apiserver
 
 Pre-requisites:
 
-* In a single-instance cluster, the existing `kube-apiserver` instance is **{{< skew prevMinorVersion >}}**
-* In an HA cluster, all `kube-apiserver` instances are at **{{< skew prevMinorVersion >}}** or **{{< skew latestVersion >}}** (this ensures maximum skew of 1 minor version between the oldest and newest `kube-apiserver` instance)
-* The `kube-controller-manager`, `kube-scheduler`, and `cloud-controller-manager` instances that communicate with this server are at version **{{< skew prevMinorVersion >}}** (this ensures they are not newer than the existing API server version, and are within 1 minor version of the new API server version)
-* `kubelet` instances on all nodes are at version **{{< skew prevMinorVersion >}}** or **{{< skew oldestMinorVersion >}}** (this ensures they are not newer than the existing API server version, and are within 2 minor versions of the new API server version)
+* In a single-instance cluster, the existing `kube-apiserver` instance is **{{< skew currentVersionAddMinor -1 >}}**
+* In an HA cluster, all `kube-apiserver` instances are at **{{< skew currentVersionAddMinor -1 >}}** or **{{< skew currentVersion >}}** (this ensures maximum skew of 1 minor version between the oldest and newest `kube-apiserver` instance)
+* The `kube-controller-manager`, `kube-scheduler`, and `cloud-controller-manager` instances that communicate with this server are at version **{{< skew currentVersionAddMinor -1 >}}** (this ensures they are not newer than the existing API server version, and are within 1 minor version of the new API server version)
+* `kubelet` instances on all nodes are at version **{{< skew currentVersionAddMinor -1 >}}** or **{{< skew currentVersionAddMinor -2 >}}** (this ensures they are not newer than the existing API server version, and are within 2 minor versions of the new API server version)
 * Registered admission webhooks are able to handle the data the new `kube-apiserver` instance will send them:
-  * `ValidatingWebhookConfiguration` and `MutatingWebhookConfiguration` objects are updated to include any new versions of REST resources added in **{{< skew latestVersion >}}** (or use the [`matchPolicy: Equivalent` option](/docs/reference/access-authn-authz/extensible-admission-controllers/#matching-requests-matchpolicy) available in v1.15+)
-  * The webhooks are able to handle any new versions of REST resources that will be sent to them, and any new fields added to existing versions in **{{< skew latestVersion >}}**
+  * `ValidatingWebhookConfiguration` and `MutatingWebhookConfiguration` objects are updated to include any new versions of REST resources added in **{{< skew currentVersion >}}** (or use the [`matchPolicy: Equivalent` option](/docs/reference/access-authn-authz/extensible-admission-controllers/#matching-requests-matchpolicy) available in v1.15+)
+  * The webhooks are able to handle any new versions of REST resources that will be sent to them, and any new fields added to existing versions in **{{< skew currentVersion >}}**
 
-Upgrade `kube-apiserver` to **{{< skew latestVersion >}}**
+Upgrade `kube-apiserver` to **{{< skew currentVersion >}}**
 
 {{< note >}}
 Project policies for [API deprecation](/docs/reference/using-api/deprecation-policy/) and
@@ -127,17 +140,21 @@ require `kube-apiserver` to not skip minor versions when upgrading, even in sing
 
 Pre-requisites:
 
-* The `kube-apiserver` instances these components communicate with are at **{{< skew latestVersion >}}** (in HA clusters in which these control plane components can communicate with any `kube-apiserver` instance in the cluster, all `kube-apiserver` instances must be upgraded before upgrading these components)
+* The `kube-apiserver` instances these components communicate with are at **{{< skew currentVersion >}}** (in HA clusters in which these control plane components can communicate with any `kube-apiserver` instance in the cluster, all `kube-apiserver` instances must be upgraded before upgrading these components)
 
-Upgrade `kube-controller-manager`, `kube-scheduler`, and `cloud-controller-manager` to **{{< skew latestVersion >}}**
+Upgrade `kube-controller-manager`, `kube-scheduler`, and
+`cloud-controller-manager` to **{{< skew currentVersion >}}**. There is no
+required upgrade order between `kube-controller-manager`, `kube-scheduler`, and
+`cloud-controller-manager`. You can upgrade these components in any order, or
+even simultaneously.
 
 ### kubelet
 
 Pre-requisites:
 
-* The `kube-apiserver` instances the `kubelet` communicates with are at **{{< skew latestVersion >}}**
+* The `kube-apiserver` instances the `kubelet` communicates with are at **{{< skew currentVersion >}}**
 
-Optionally upgrade `kubelet` instances to **{{< skew latestVersion >}}** (or they can be left at **{{< skew prevMinorVersion >}}** or **{{< skew oldestMinorVersion >}}**)
+Optionally upgrade `kubelet` instances to **{{< skew currentVersion >}}** (or they can be left at **{{< skew currentVersionAddMinor -1 >}}** or **{{< skew currentVersionAddMinor -2 >}}**)
 
 {{< note >}}
 Before performing a minor version `kubelet` upgrade, [drain](/docs/tasks/administer-cluster/safely-drain-node/) pods from that node.
@@ -159,7 +176,7 @@ Running a cluster with `kubelet` instances that are persistently two minor versi
 
 Example:
 
-If `kube-proxy` version is **{{< skew oldestMinorVersion >}}**:
+If `kube-proxy` version is **{{< skew currentVersionAddMinor -2 >}}**:
 
-* `kubelet` version must be at the same minor version as **{{< skew oldestMinorVersion >}}**.
-* `kube-apiserver` version must be between **{{< skew oldestMinorVersion >}}** and **{{< skew latestVersion >}}**, inclusive.
+* `kubelet` version must be at the same minor version as **{{< skew currentVersionAddMinor -2 >}}**.
+* `kube-apiserver` version must be between **{{< skew currentVersionAddMinor -2 >}}** and **{{< skew currentVersion >}}**, inclusive.
diff --git a/content/en/training/_index.html b/content/en/training/_index.html
index 5b94d73bac..74880486a6 100644
--- a/content/en/training/_index.html
+++ b/content/en/training/_index.html
@@ -14,6 +14,9 @@ class: training
         <h2>Build your cloud native career</h2>
         <p>Kubernetes is at the core of the cloud native movement. Training and certifications from the Linux Foundation and our training partners lets you invest in your career, learn Kubernetes, and make your cloud native projects successful.</p>
       </div>
+      <div class="logo-certification cta-image" id="logo-kcnf">
+        <img src="/images/training/kubernetes-kcnf-white.svg" />
+      </div>
       <div class="logo-certification cta-image" id="logo-cka">
         <img src="/images/training/kubernetes-cka-white.svg"/>
       </div>
@@ -81,6 +84,15 @@ class: training
   <div class="main-section padded">
     <h2>Get Kubernetes Certified</h2>
     <div class="col-container">
+      <div class="col-nav">
+        <h5>
+          <b>Kubernetes and Cloud Native Associate (KCNA)</b>
+        </h5>
+        <p>The Kubernetes and Cloud Native Associate (KCNA) exam demonstrates a user’s foundational knowledge and skills in Kubernetes and the wider cloud native ecosystem.</p>
+        <p>A certified KCNA will confirm conceptual knowledge of the entire cloud native ecosystem, particularly focusing on Kubernetes.</p>
+        <br>
+        <a href="https://training.linuxfoundation.org/certification/kubernetes-cloud-native-associate/" target="_blank" class="button">Go to Certification</a>
+      </div>
       <div class="col-nav">
           <h5>
             <b>Certified Kubernetes Application Developer (CKAD)</b>
diff --git a/content/es/_index.html b/content/es/_index.html
index af07c0764b..1a5d8d06cd 100644
--- a/content/es/_index.html
+++ b/content/es/_index.html
@@ -41,12 +41,12 @@ Kubernetes es código abierto lo que le brinda la libertad de aprovechar su infr
         <button id="desktopShowVideoButton" onclick="kub.showVideo()">Ver vídeo</button>
         <br>
         <br>
-        <a href="https://events.linuxfoundation.org/events/kubecon-cloudnativecon-north-america-2019" button id="desktopKCButton">Asista a la KubeCon en San Diego del 18 al 21 de Nov. 2019</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/" button id="desktopKCButton">Asista a la KubeCon en Norte América del 24 al 28 de Octubre 2022</a>
         <br>
         <br>
         <br>
         <br>
-        <a href="https://events.linuxfoundation.org/events/kubecon-cloudnativecon-europe-2020/" button id="desktopKCButton">Asista a la KubeCon en Amsterdam del 30 Marzo al 2 Abril</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe-2023/" button id="desktopKCButton">Asista a la KubeCon en Europa del 17 al 21 de Abril 2023</a>
 </div>
 <div id="videoPlayer">
     <iframe data-url="https://www.youtube.com/embed/H06qrNmGqyE?autoplay=1" frameborder="0" allowfullscreen></iframe>
diff --git a/content/es/docs/_index.md b/content/es/docs/_index.md
index a5cbf56e30..caf9a58d7a 100644
--- a/content/es/docs/_index.md
+++ b/content/es/docs/_index.md
@@ -16,7 +16,7 @@ Como podrá comprobar, la mayor parte de la documentación aún está disponible
 
 <!-- body -->
 
-Si quiere participar, puede entrar al canal de Slack [#kubernets-docs-es](http://slack.kubernetes.io/) y formar parte del equipo detrás de la localización.
+Si quiere participar, puede entrar al canal de Slack [#kubernetes-docs-es](http://slack.kubernetes.io/) y formar parte del equipo detrás de la localización.
 
 También puede pasar por el canal para solicitar la traducción de alguna página en concreto o reportar algún error que se haya podido encontrar. ¡Cualquier aportación será bien recibida!
 
diff --git a/content/es/docs/concepts/architecture/nodes.md b/content/es/docs/concepts/architecture/nodes.md
index d2313849ef..ccb3e58290 100644
--- a/content/es/docs/concepts/architecture/nodes.md
+++ b/content/es/docs/concepts/architecture/nodes.md
@@ -8,7 +8,7 @@ weight: 10
 
 <!-- overview -->
 
-Un nodo es una máquina de trabajo en Kubernetes, previamente conocida como `minion`. Un nodo puede ser una máquina virtual o física, dependiendo del tipo de clúster. Cada nodo está gestionado por el componente máster y contiene los servicios necesarios para ejecutar [pods](/docs/concepts/workloads/pods/pod). Los servicios en un nodo incluyen el [container runtime](/docs/concepts/overview/components/#node-components), kubelet y el kube-proxy. Accede a la sección [The Kubernetes Node](https://git.k8s.io/community/contributors/design-proposals/architecture/architecture.md#the-kubernetes-node) en el documento de diseño de arquitectura para más detalle.
+Un nodo es una máquina de trabajo en Kubernetes, previamente conocida como `minion`. Un nodo puede ser una máquina virtual o física, dependiendo del tipo de clúster. Cada nodo está gestionado por el componente máster y contiene los servicios necesarios para ejecutar [pods](/docs/concepts/workloads/pods/pod). Los servicios en un nodo incluyen el [container runtime](/docs/concepts/overview/components/#node-components), kubelet y el kube-proxy. Accede a la sección [The Kubernetes Node](https://git.k8s.io/design-proposals-archive/architecture/architecture.md#the-kubernetes-node) en el documento de diseño de arquitectura para más detalle.
 
 
 
diff --git a/content/es/docs/concepts/configuration/manage-resources-containers.md b/content/es/docs/concepts/configuration/manage-resources-containers.md
index f936b9107e..4cdc6c4a26 100644
--- a/content/es/docs/concepts/configuration/manage-resources-containers.md
+++ b/content/es/docs/concepts/configuration/manage-resources-containers.md
@@ -110,11 +110,11 @@ CPU es siempre solicitada como una cantidad absoluta, nunca como una cantidad re
 
 Los límites y peticiones de `memoria` son medidos en bytes. Puedes expresar la memoria como
 un número entero o como un número decimal usando alguno de estos sufijos:
-E, P, T, G, M, K. También puedes usar los equivalentes en potencia de dos: Ei, Pi, Ti, Gi,
+E, P, T, G, M, k, m (millis). También puedes usar los equivalentes en potencia de dos: Ei, Pi, Ti, Gi,
 Mi, Ki. Por ejemplo, los siguientes valores representan lo mismo:
 
 ```shell
-128974848, 129e6, 129M, 123Mi
+128974848, 129e6, 129M, 128974848000m, 123Mi
 ```
 
 Aquí un ejemplo.
@@ -329,6 +329,9 @@ spec:
         ephemeral-storage: "2Gi"
       limits:
         ephemeral-storage: "4Gi"
+    volumeMounts:
+      - name: ephemeral
+        mountPath: "/tmp"
   - name: log-aggregator
     image: images.my-company.example/log-aggregator:v6
     resources:
@@ -336,6 +339,12 @@ spec:
         ephemeral-storage: "2Gi"
       limits:
         ephemeral-storage: "4Gi"
+    volumeMounts:
+      - name: ephemeral
+        mountPath: "/tmp"
+  volumes:
+    - name: ephemeral
+      emptyDir: {}
 ```
 
 ### Como son programados los Pods con solicitudes de almacenamiento efímero
@@ -555,8 +564,8 @@ El {{< glossary_tooltip text="planificador" term_id="kube-scheduler" >}} se enca
 la cantidad disponible sea asignada simultáneamente a los Pods.
 
 El servidor de API restringe las cantidades de recursos extendidos a números enteros.
-Ejemplos de cantidades _validas_ son `3`,` 3000m` y `3Ki`. Ejemplos de
-_cantidades no válidas_ son `0.5` y` 1500m`.
+Ejemplos de cantidades _validas_ son `3`, `3000m` y `3Ki`. Ejemplos de
+_cantidades no válidas_ son `0.5` y `1500m`.
 
 {{< note >}}
 Los recursos extendidos reemplazan los Recursos Integrales Opacos.
@@ -621,7 +630,7 @@ está pendiente con un mensaje de este tipo, hay varias cosas para probar:
 - Añadir más nodos al clúster.
 - Terminar Pods innecesarios para hacer hueco a los Pods en estado pendiente.
 - Compruebe que el Pod no sea más grande que todos los nodos. Por ejemplo, si todos los
-  los nodos tienen una capacidad de `cpu: 1`, entonces un Pod con una solicitud de` cpu: 1.1`
+  los nodos tienen una capacidad de `cpu: 1`, entonces un Pod con una solicitud de `cpu: 1.1`
   nunca se programará.
 
 Puedes comprobar las capacidades del nodo y cantidad utilizada con el comando 
@@ -667,7 +676,7 @@ La cantidad de recursos disponibles para los pods es menor que la capacidad del
 los demonios del sistema utilizan una parte de los recursos disponibles. El campo `allocatable`
 [NodeStatus](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#nodestatus-v1-core)
 indica la cantidad de recursos que están disponibles para los Pods. Para más información, mira 
-[Node Allocatable Resources](https://git.k8s.io/community/contributors/design-proposals/node/node-allocatable.md).
+[Node Allocatable Resources](https://git.k8s.io/design-proposals-archive/node/node-allocatable.md).
 
 La característica [resource quota](/docs/concepts/policy/resource-quotas/) se puede configurar
 para limitar la cantidad total de recursos que se pueden consumir. Si se usa en conjunto
@@ -748,10 +757,10 @@ Puedes ver que el Contenedor fué terminado a causa de `reason:OOM Killed`, dond
 * Obtén experiencia práctica [assigning CPU resources to Containers and Pods](/docs/tasks/configure-pod-container/assign-cpu-resource/).
 
 * Para más detalles sobre la diferencia entre solicitudes y límites, mira
-  [Resource QoS](https://git.k8s.io/community/contributors/design-proposals/node/resource-qos.md).
+  [Resource QoS](https://git.k8s.io/design-proposals-archive/node/resource-qos.md).
 
 * Lee [Container](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core) referencia de API
 
 * Lee [ResourceRequirements](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#resourcerequirements-v1-core) referencia de API
 
-* Lee sobre [project quotas](https://xfs.org/docs/xfsdocs-xml-dev/XFS_User_Guide/tmp/en-US/html/xfs-quotas.html) en XFS
+* Lee sobre [cuotas de proyecto](https://xfs.org/index.php/XFS_FAQ#Q:_Quota:_Do_quotas_work_on_XFS.3F) en XFS
diff --git a/content/es/docs/concepts/configuration/pod-overhead.md b/content/es/docs/concepts/configuration/pod-overhead.md
index 0d7a89bcd6..baaf8a902f 100644
--- a/content/es/docs/concepts/configuration/pod-overhead.md
+++ b/content/es/docs/concepts/configuration/pod-overhead.md
@@ -38,4 +38,4 @@ Para obtener más detalles vea la [documentación sobre autorización](/docs/ref
 <!-- whatsnext -->
 
 * [RuntimeClass](/docs/concepts/containers/runtime-class/)
-* [PodOverhead Design](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/20190226-pod-overhead.md)
+* [Diseño de capacidad de PodOverhead](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/688-pod-overhead)
diff --git a/content/es/docs/concepts/configuration/secret.md b/content/es/docs/concepts/configuration/secret.md
index 7120f0476b..ffbc78fa70 100644
--- a/content/es/docs/concepts/configuration/secret.md
+++ b/content/es/docs/concepts/configuration/secret.md
@@ -14,7 +14,7 @@ weight: 50
 
 Los objetos de tipo {{< glossary_tooltip text="Secret" term_id="secret" >}} en Kubernetes te permiten almacenar y administrar información confidencial, como
 contraseñas, tokens OAuth y llaves ssh.  Poniendo esta información en un Secret
-es más seguro y más flexible que ponerlo en la definición de un {{< glossary_tooltip term_id="pod" >}} o en un {{< glossary_tooltip text="container image" term_id="image" >}}. Ver [Secrets design document](https://git.k8s.io/community/contributors/design-proposals/auth/secrets.md) para más información.
+es más seguro y más flexible que ponerlo en la definición de un {{< glossary_tooltip term_id="pod" >}} o en un {{< glossary_tooltip text="container image" term_id="image" >}}. Ver [Secrets design document](https://git.k8s.io/design-proposals-archive/auth/secrets.md) para más información.
 
 <!-- body -->
 
@@ -345,7 +345,7 @@ echo 'MWYyZDFlMmU2N2Rm' | base64 --decode
 ## Usando Secrets
 
 Los Secrets se pueden montar como volúmenes de datos o ser expuestos como 
-{{< glossary_tooltip text="variables de ambiente" term_id="container-env-variables" >}}
+{{< glossary_tooltip text="variables de entorno" term_id="container-env-variables" >}}
 para ser usados por un contenedor en un pod.  También pueden ser utilizados por otras partes del sistema, 
 sin estar directamente expuesto en el pod.  Por ejemplo, pueden tener credenciales que otras partes del sistema usan para interactuar con sistemas externos en su nombre.
 
@@ -862,7 +862,7 @@ tu debes usar `ls -la` para verlos al enumerar los contenidos del directorio.
 
 ### Caso de uso: Secret visible para un contenedor en un pod
 
-Considere un programa que necesita manejar solicitudes HTTP, hacer una lógicca empresarial compleja y luego firmar algunos mensajes con un HMAC. Debido a que tiene una lógica de aplicación compleja, puede haber una vulnerabilidad de lectura remota de archivos inadvertida en el servidor, lo que podría exponer la clave privada a un atacante.
+Considere un programa que necesita manejar solicitudes HTTP, hacer una lógica empresarial compleja y luego firmar algunos mensajes con un HMAC. Debido a que tiene una lógica de aplicación compleja, puede haber una vulnerabilidad de lectura remota de archivos inadvertida en el servidor, lo que podría exponer la clave privada a un atacante.
 
 Esto podría dividirse en dos procesos en dos contenedores: un contenedor de frontend que maneja la interacción del usuario y la lógica empresarial. pero que no puede ver la clave privada; y un contenedor de firmante que puede ver la clave privada, y responde a solicitudes de firma simples del frontend (ejemplo, a través de redes de localhost).
 
diff --git a/content/es/docs/concepts/containers/container-environment-variables.md b/content/es/docs/concepts/containers/container-environment-variables.md
index 7f35309329..f266ff7796 100644
--- a/content/es/docs/concepts/containers/container-environment-variables.md
+++ b/content/es/docs/concepts/containers/container-environment-variables.md
@@ -48,7 +48,7 @@ FOO_SERVICE_HOST=<El host donde está funcionando el servicio>
 FOO_SERVICE_PORT=<El puerto dónde está funcionando el servicio>
 ```
 Los servicios tienen direcciones IP dedicadas y están disponibles para el Container a través de DNS,
-si el [complemento para DNS](http://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/dns/) está habilitado.
+si el [complemento para DNS](http://releases.k8s.io/master/cluster/addons/dns/) está habilitado.
 
 
 
diff --git a/content/es/docs/concepts/containers/container-lifecycle-hooks.md b/content/es/docs/concepts/containers/container-lifecycle-hooks.md
index 18cee92897..4471282d23 100644
--- a/content/es/docs/concepts/containers/container-lifecycle-hooks.md
+++ b/content/es/docs/concepts/containers/container-lifecycle-hooks.md
@@ -64,7 +64,7 @@ el contenedor no puede alcanzar el estado de `running` (en ejecución).
 El comportamiento es similar para un hook `PreStop`.
 Si el hook se cuelga durante la ejecución,
 la fase del Pod permanece en un estado de `terminating` (finalizando) y se cancela después del  `terminationGracePeriodSeconds` (finalización después del periodo de gracia) del pod en cuestión.
-Si un hook `PostStart` o` PreStop` falla, se mata el contenedor.
+Si un hook `PostStart` o `PreStop` falla, se mata el contenedor.
 
 Los usuarios deben hacer que sus controladores de hooks sean lo más livianos posible.
 Hay casos, sin embargo, que los comandos de larga ejecución tienen sentido,
@@ -74,7 +74,7 @@ como cuando se guarda el estado antes de detener un contenedor.
 
 La entrega de un hook está destinada a ser enviada *al menos una vez*,
 lo que significa que un hook puede ser llamado varias veces para cualquier evento dado,
-tanto para `PostStart` como para ` PreStop`.
+tanto para `PostStart` como para `PreStop`.
 Depende de la implementación del hook manejar esto correctamente.
 
 En general, solo se realizan entregas individuales.
diff --git a/content/es/docs/concepts/containers/runtime-class.md b/content/es/docs/concepts/containers/runtime-class.md
index 8c53cde87d..ef4c5e0d2c 100644
--- a/content/es/docs/concepts/containers/runtime-class.md
+++ b/content/es/docs/concepts/containers/runtime-class.md
@@ -134,7 +134,7 @@ de containerd en `/etc/containerd/config.toml`. Los `handlers` válidos se
 configuran en la sección de motores de ejecución:
 
 ```
-[plugins.cri.containerd.runtimes.${HANDLER_NAME}]
+[plugins."io.containerd.grpc.v1.cri".containerd.runtimes.${HANDLER_NAME}]
 ```
 
 Véase la configuración de containerd para más detalles:
@@ -202,4 +202,4 @@ cuentan en Kubernetes.
 - [Diseño de RuntimeClass](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/585-runtime-class/README.md)
 - [Diseño de programación de RuntimeClass](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/585-runtime-class/README.md#runtimeclass-scheduling)
 - Leer sobre el concepto de [Pod Overhead](/docs/concepts/scheduling-eviction/pod-overhead/)
-- [Diseño de capacidad de PodOverhead](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/20190226-pod-overhead.md)
+- [Diseño de capacidad de PodOverhead](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/688-pod-overhead)
diff --git a/content/es/docs/concepts/overview/kubernetes-api.md b/content/es/docs/concepts/overview/kubernetes-api.md
index 25cfe18049..54155a6302 100644
--- a/content/es/docs/concepts/overview/kubernetes-api.md
+++ b/content/es/docs/concepts/overview/kubernetes-api.md
@@ -66,7 +66,7 @@ Para facilitar la eliminación de propiedades o reestructurar la representación
 
 Se versiona a nivel de la API en vez de a nivel de los recursos o propiedades para asegurarnos de que la API presenta una visión clara y consistente de los recursos y el comportamiento del sistema, y para controlar el acceso a las APIs experimentales o que estén terminando su ciclo de vida. Los esquemas de serialización JSON y Protobuf siguen los mismos lineamientos para los cambios, es decir, estas descripciones cubren ambos formatos.
 
-Se ha de tener en cuenta que hay una relación indirecta entre el versionado de la API y el versionado del resto del software. La propuesta de [versionado de la API y releases](https://git.k8s.io/community/contributors/design-proposals/release/versioning.md) describe esta relación.
+Se ha de tener en cuenta que hay una relación indirecta entre el versionado de la API y el versionado del resto del software. La propuesta de [versionado de la API y releases](https://git.k8s.io/design-proposals-archive/release/versioning.md) describe esta relación.
 
 Las distintas versiones de la API implican distintos niveles de estabilidad y soporte. El criterio para cada nivel se describe en detalle en la documentación de [Cambios a la API](https://git.k8s.io/community/contributors/devel/sig-architecture/api_changes.md#alpha-beta-and-stable-versions). A continuación se ofrece un resumen:
 
@@ -89,7 +89,7 @@ Las distintas versiones de la API implican distintos niveles de estabilidad y so
 
 ## Grupos de API
 
-Para que sea más fácil extender la API de Kubernetes, se han creado los [*grupos de API*](https://git.k8s.io/community/contributors/design-proposals/api-machinery/api-group.md).
+Para que sea más fácil extender la API de Kubernetes, se han creado los [*grupos de API*](https://git.k8s.io/design-proposals-archive/api-machinery/api-group.md).
 Estos grupos se especifican en una ruta REST y en la propiedad `apiVersion` de un objeto serializado.
 
 Actualmente hay varios grupos de API en uso:
diff --git a/content/es/docs/concepts/overview/what-is-kubernetes.md b/content/es/docs/concepts/overview/what-is-kubernetes.md
index 4b2d829b1b..9fe53180b2 100644
--- a/content/es/docs/concepts/overview/what-is-kubernetes.md
+++ b/content/es/docs/concepts/overview/what-is-kubernetes.md
@@ -54,13 +54,13 @@ facilitar sus flujos de trabajo y hacer más fácil a las herramientas administr
 
 Además, el [Plano de Control](/docs/concepts/overview/components/) de Kubernetes usa las mismas
 [APIs](/docs/reference/using-api/api-overview/) que usan los desarrolladores y usuarios finales.
-Los usuarios pueden escribir sus propios controladores, como por ejemplo un planificador o [scheduler](https://github.com/kubernetes/community/blob/{{< param "githubbranch" >}}/contributors/devel/scheduler.md),
+Los usuarios pueden escribir sus propios controladores, como por ejemplo un planificador o [scheduler](https://github.com/kubernetes/community/blob/master/contributors/devel/scheduler.md),
 usando [sus propias
 APIs](/docs/concepts/api-extension/custom-resources/)
 desde una [herramienta de línea de comandos](/docs/user-guide/kubectl-overview/).
 
 Este
-[diseño](https://git.k8s.io/community/contributors/design-proposals/architecture/architecture.md)
+[diseño](https://git.k8s.io/design-proposals-archive/architecture/architecture.md)
 ha permitido que otros sistemas sean construidos sobre Kubernetes.
 
 ## Lo que Kubernetes no es
diff --git a/content/es/docs/concepts/overview/working-with-objects/names.md b/content/es/docs/concepts/overview/working-with-objects/names.md
index ef241f6aff..f683b3d985 100644
--- a/content/es/docs/concepts/overview/working-with-objects/names.md
+++ b/content/es/docs/concepts/overview/working-with-objects/names.md
@@ -10,7 +10,7 @@ Todos los objetos de la API REST de Kubernetes se identifica de forma inequívoc
 
 Para aquellos atributos provistos por el usuario que no son únicos, Kubernetes provee de [etiquetas](/docs/user-guide/labels) y [anotaciones](/docs/concepts/overview/working-with-objects/annotations/).
 
-Echa un vistazo al [documento de diseño de identificadores](https://git.k8s.io/community/contributors/design-proposals/architecture/identifiers.md) para información precisa acerca de las reglas sintácticas de los Nombres y UIDs.
+Echa un vistazo al [documento de diseño de identificadores](https://git.k8s.io/design-proposals-archive/architecture/identifiers.md) para información precisa acerca de las reglas sintácticas de los Nombres y UIDs.
 
 
 
diff --git a/content/es/docs/concepts/policy/limit-range.md b/content/es/docs/concepts/policy/limit-range.md
index 22d4c74f51..5fccd8b13d 100644
--- a/content/es/docs/concepts/policy/limit-range.md
+++ b/content/es/docs/concepts/policy/limit-range.md
@@ -58,7 +58,7 @@ Ni la contención ni los cambios en un LimitRange afectarán a los recursos ya c
 
 ## {{% heading "whatsnext" %}}
 
-Consulte el [documento de diseño del LimitRanger](https://git.k8s.io/community/contributors/design-proposals/resource-management/admission_control_limit_range.md) para más información.
+Consulte el [documento de diseño del LimitRanger](https://git.k8s.io/design-proposals-archive/resource-management/admission_control_limit_range.md) para más información.
 
 Los siguientes ejemplos utilizan límites y están pendientes de su traducción:
 
diff --git a/content/es/docs/concepts/security/controlling-access.md b/content/es/docs/concepts/security/controlling-access.md
new file mode 100644
index 0000000000..8d33ac49b4
--- /dev/null
+++ b/content/es/docs/concepts/security/controlling-access.md
@@ -0,0 +1,179 @@
+---
+reviewers:
+- electrocucaracha
+- raelga
+title: Controlando el Acceso a la API de Kubernetes
+content_type: concept
+---
+
+<!-- overview -->
+Esta página proporciona información sobre cómo controlar el acceso a la API de Kubernetes.
+
+
+<!-- body -->
+Los usuarios acceden a la [API de Kubernetes](/docs/concepts/overview/kubernetes-api/) usando `kubectl`,
+bibliotecas de cliente, o haciendo peticiones REST.  Usuarios y
+[Kubernetes service accounts](/docs/tasks/configure-pod-container/configure-service-account/) pueden ser
+autorizados para acceder a la API.
+Cuando una petición llega a la API, pasa por varias etapas, están ilustradas en el
+siguiente diagrama:
+
+![Diagrama de pasos para una petición a la API de Kubernetes](/images/docs/admin/access-control-overview.svg)
+
+## Seguridad en la capa de transporte
+
+En un {{< glossary_tooltip term_id="cluster" text="cluster" >}}  típico de Kubernetes, la API sirve peticiones en el puerto 443, protegida por TLS.
+El {{< glossary_tooltip term_id="kube-apiserver" text="API Server" >}} presenta un certificado. Este certificado puede ser firmando usando
+un certificado de autoridad privada (CA) o basado en una llave pública relacionada
+generalmente a un CA reconocido.
+
+Si el cluster usa un certificado de autoridad privado, se necesita copiar este certificado
+CA configurado dentro de su `~/.kube/config` en el cliente, entonces se podrá
+confiar en la conexión y estar seguro que no será comprometida.
+
+El cliente puede presentar un certificado TLS de cliente en esta etapa.
+
+## Autenticación
+
+Una vez que se estableció la conexión TLS, las peticiones HTTP avanzan a la etapa de autenticación.
+Esto se muestra en el paso 1 del diagrama.
+El script de creación del cluster o el administrador del cluster puede configurar el {{< glossary_tooltip term_id="kube-apiserver" text="API Server" >}} para ejecutar
+uno o mas módulos de autenticación.
+Los Autenticadores están descritos con más detalle en
+[Authentication](/docs/reference/access-authn-authz/authentication/).
+
+La entrada al paso de autenticación es la petición HTTP completa, aun así, esta tipicamente
+examina las cabeceras y/o el certificado del cliente.
+
+Los modulos de autenticación incluyen certificado de cliente, contraseña, tokens planos,
+tokens de inicio y JSON Web Tokens (usados para los service accounts).
+
+Múltiples módulos de autenticación puede ser especificados, en este caso cada uno es probado secuencialmente,
+hasta que uno de ellos tiene éxito.
+
+Si la petición no puede ser autenticada, la misma es rechazada con un código HTTP 401.
+Si la autenticación tiene éxito, el usuario es validado con el `username` específico, y el nombre de usuario
+esta disponible para los pasos siguientes. Algunos autenticadores
+también proporcionan membresías de grupo al usuario, mientras que otros
+no lo hacen.
+
+Aunque Kubernetes utiliza los nombres de usuario para tomar decisiones durante el control de acceso y para registrar las peticiones de entrada, no tiene un objeto `User` ni tampoco almacena información sobre los usuarios en la API.
+
+## Autorización
+
+Después de autenticar la petición como proveniente de un usuario específico, la petición debe ser autorizada. Esto se muestra en el paso 2 del diagrama.
+
+Una petición debe incluir el nombre de usuario solicitante, la acción solicitada y el objeto afectado por la acción. La petición es autorizada si hay una política existente que declare que el usuario tiene permisos para la realizar la acción.
+
+Por ejemplo, si el usuario Bob tiene la siguiente política, entonces puede leer pods solamente en el namespace `projectCaribou`:
+
+```json
+{
+    "apiVersion": "abac.authorization.kubernetes.io/v1beta1",
+    "kind": "Policy",
+    "spec": {
+        "user": "bob",
+        "namespace": "projectCaribou",
+        "resource": "pods",
+        "readonly": true
+    }
+}
+```
+Si Bob hace la siguiente petición, será autorizada dado que tiene permitido leer los objetos en el namespace `projectCaribou` :
+
+```json
+{
+  "apiVersion": "authorization.k8s.io/v1beta1",
+  "kind": "SubjectAccessReview",
+  "spec": {
+    "resourceAttributes": {
+      "namespace": "projectCaribou",
+      "verb": "get",
+      "group": "unicorn.example.org",
+      "resource": "pods"
+    }
+  }
+}
+```
+En cambio, si Bob en su petición intenta escribir (`create` o `update`) en los objetos del namespace `projectCaribou`, la petición será denegada. Del mismo modo, si Bob hace una petición para leer (`get`) objetos en otro namespace como `projectFish`, la autorización también será denegada.
+
+Las autorizaciones en Kubernetes requieren que se usen atributos REST comunes para interactuar con el existente sistema de control de toda la organización o del proveedor cloud. Es importante usar formatos REST porque esos sistemas de control pueden interactuar con otras APIs además de la API de Kubernetes.
+
+Kubernetes soporta múltiples módulos de autorización, como el modo ABAC, el modo RBAC y el modo Webhook. Cuando un administrador crea un cluster, se realiza la configuración de los módulos de autorización que deben ser usados con la API del server. Si más de uno módulo de autorización es configurado, Kubernetes verificada cada uno y si alguno de ellos autoriza la petición entonces la misma se ejecuta. Si todos los modules deniegan la petición, entonces la misma es denegada (Con un error HTTP con código 403).
+
+Para leer más acerca de las autorizaciones en Kubernetes, incluyendo detalles sobre cómo crear politicas usando los módulos de autorización soportados, vea [Authorization](/docs/reference/access-authn-authz/authorization/).
+
+
+## Control de Admisión
+
+Los módulos de Control de Admisión son módulos de software que solo pueden modificar o rechazar peticiones.
+Adicionalmente a los atributos disponibles en los módulos de Autorización, los de
+Control de Admisión pueden acceder al contenido del objeto que esta siendo creado o modificado.
+
+Los Controles de Admisión actúan en las peticiones que crean, modifican, borran o se conectan (proxy) a un objeto.
+Cuando múltiples módulos de control de admisión son configurados, son llamados en orden.
+
+Esto se muestra en el paso 3 del diagrama.
+
+A diferencia de los módulos de Autorización y Autenticación, si uno de los módulos de control de admisión
+rechaza la petición, entonces es inmediatamente rechazada.
+
+Adicionalmente a rechazar objetos, los controles de admisión también permiten establecer
+valores predeterminados complejos.
+
+Los módulos de Control de Admisión disponibles están descritos en [Admission Controllers](/docs/reference/access-authn-authz/admission-controllers/).
+
+Cuando una petición pasa todos los controles de admisión, esta es validada usando la rutinas de validación
+para el objeto API correspondiente y luego es escrita en el objeto.
+
+
+## Puertos e IPs del API server
+
+La discusión previa aplica a peticiones enviadas a un puerto seguro del servidor API
+(el caso típico). El servidor API puede en realidad servir en 2 puertos:
+
+Por defecto, la API de Kubernetes entrega HTTP en 2 puertos:
+
+  1. puerto `localhost`:
+
+      - debe usarse para testeo e iniciar el sistema y para otros componentes del nodo maestro
+        (scheduler, controller-manager) para hablar con la API
+      - no se usa TLS
+      - el puerto predeterminado es el `8080`
+      - la IP por defecto es localhost, la puede cambiar con el flag `--insecure-bind-address`.
+      - la petición no pasa por los mecanismos de autenticación ni autorización
+      - peticiones controladas por los modulos de control de admisión.
+      - protegidas por necesidad para tener acceso al host
+
+  2. “Puerto seguro”:
+
+      - usar siempre que sea posible
+      - usa TLS. Se configura el certificado con el flag `--tls-cert-file` y la clave con `--tls-private-key-file`.
+      - el puerto predeterminado es `6443`, se cambia con el flag `--secure-port`.
+      - la IP por defecto es la primer interface que no es la localhost. se cambia con el flag `--bind-address`.
+      - peticiones controladas por los módulos de autenticación y autorización.
+      - peticiones controladas por los módulos de control de admisión.
+
+## {{% heading "whatsnext" %}}
+
+En los siguientes enlaces, encontrará mucha más documentación sobre autenticación, autorización y el control de acceso a la API:
+
+- [Authenticating](/docs/reference/access-authn-authz/authentication/)
+   - [Authenticating with Bootstrap Tokens](/docs/reference/access-authn-authz/bootstrap-tokens/)
+- [Admission Controllers](/docs/reference/access-authn-authz/admission-controllers/)
+   - [Dynamic Admission Control](/docs/reference/access-authn-authz/extensible-admission-controllers/)
+- [Authorization](/docs/reference/access-authn-authz/authorization/)
+   - [Role Based Access Control](/docs/reference/access-authn-authz/rbac/)
+   - [Attribute Based Access Control](/docs/reference/access-authn-authz/abac/)
+   - [Node Authorization](/docs/reference/access-authn-authz/node/)
+   - [Webhook Authorization](/docs/reference/access-authn-authz/webhook/)
+- [Certificate Signing Requests](/docs/reference/access-authn-authz/certificate-signing-requests/)
+   - including [CSR approval](/docs/reference/access-authn-authz/certificate-signing-requests/#approval-rejection)
+     and [certificate signing](/docs/reference/access-authn-authz/certificate-signing-requests/#signing)
+- Service accounts
+  - [Developer guide](/docs/tasks/configure-pod-container/configure-service-account/)
+  - [Administration](/docs/reference/access-authn-authz/service-accounts-admin/)
+
+- Como los pods pueden usar
+  [Secrets](/docs/concepts/configuration/secret/#service-accounts-automatically-create-and-attach-secrets-with-api-credentials)
+  para obtener credenciales para la API.
diff --git a/content/es/docs/concepts/security/overview.md b/content/es/docs/concepts/security/overview.md
index 3a6d3cda9c..9bee65b8c6 100644
--- a/content/es/docs/concepts/security/overview.md
+++ b/content/es/docs/concepts/security/overview.md
@@ -54,6 +54,7 @@ Amazon Web Services | https://aws.amazon.com/security/ |
 Google Cloud Platform | https://cloud.google.com/security/ |
 IBM Cloud | https://www.ibm.com/cloud/security |
 Microsoft Azure | https://docs.microsoft.com/en-us/azure/security/azure-security |
+Oracle Cloud Infrastructure | https://www.oracle.com/security/ |
 VMWare VSphere | https://www.vmware.com/security/hardening-guides.html |
 
 {{< /table >}}
diff --git a/content/es/docs/concepts/services-networking/network-policies.md b/content/es/docs/concepts/services-networking/network-policies.md
new file mode 100644
index 0000000000..09f65765a4
--- /dev/null
+++ b/content/es/docs/concepts/services-networking/network-policies.md
@@ -0,0 +1,287 @@
+---
+reviewers:
+- raelga
+- electrocucaracha
+title: Políticas de red (Network Policies)
+content_type: concept
+weight: 50
+---
+
+<!-- overview -->
+
+Si quieres controlar el tráfico de red a nivel de dirección IP o puerto (capa OSI 3 o 4), puedes considerar el uso de Kubernetes NetworkPolicies para las aplicaciones que corren en tu clúster. Las NetworkPolicies son una estructura enfocada en las aplicaciones que permite establecer cómo un {{< glossary_tooltip text="Pod" term_id="pod">}} puede comunicarse con otras "entidades" (utilizamos la palabra "entidad" para evitar sobrecargar términos más comunes como "Endpoint" o "Service", que tienen connotaciones específicas de Kubernetes) a través de la red. Las NetworkPolicies se aplican a uno o ambos extremos de la conexión a un Pod, sin afectar a otras conexiones.
+
+Las entidades con las que un Pod puede comunicarse son de una combinación de estos 3 tipos:
+
+1. Otros Pods permitidos (excepción: un Pod no puede bloquear el acceso a sí mismo)
+2. Namespaces permitidos
+3. Bloqueos de IP (excepción: el tráfico hacia y desde el nodo donde se ejecuta un Pod siempre está permitido, independientemente de la dirección IP del Pod o del nodo)
+
+Cuando se define una NetworkPolicy basada en Pods o Namespaces, se utiliza un {{< glossary_tooltip text="Selector" term_id="selector">}} para especificar qué tráfico se permite desde y hacia los Pod(s) que coinciden con el selector.
+
+Por otro lado, cuando se crean NetworkPolicies basadas en IP, se definen políticas basadas en bloques de IP (rangos CIDR).
+
+
+  <!-- body -->
+## Prerrequisitos
+
+Las políticas de red son implementadas por el [plugin de red](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/). Para usar políticas de red, debes estar utilizando una solución de red que soporte NetworkPolicy. Crear un recurso NetworkPolicy sin un controlador que lo habilite no tendrá efecto alguno.
+
+
+## Dos Tipos de Aislamiento de Pod
+
+Hay dos tipos de aislamiento para un Pod: el aislamiento para la salida y el aislamiento para la entrada. Estos se refieren a las conexiones que pueden establecerse. El término "Aislamiento" en el contexto de este documento no es absoluto, sino que significa "se aplican algunas restricciones".  La alternativa, "no aislado para $dirección", significa que no se aplican restricciones en la dirección descrita.  Los dos tipos de aislamiento (o no) se declaran independientemente, y ambos son relevantes para una conexión de un Pod a otro.
+
+Por defecto, un Pod no está aislado para la salida; todas las conexiones salientes están permitidas. Un Pod está aislado para la salida si hay alguna NetworkPolicy con "Egress" en su `policyTypes` que seleccione el Pod; decimos que tal política se aplica al Pod para la salida. Cuando un Pod está aislado para la salida, las únicas conexiones permitidas desde el Pod son las permitidas por la lista `egress` de las NetworkPolicy que se aplique al Pod para la salida. Los valores de esas listas `egress` se combinan de forma aditiva.
+
+Por defecto, un Pod no está aislado para la entrada; todas las conexiones entrantes están permitidas. Un Pod está aislado para la entrada si hay alguna NetworkPolicy con "Ingress" en su `policyTypes` que seleccione el Pod; decimos que tal política se aplica al Pod para la entrada. Cuando un Pod está aislado para la entrada, las únicas conexiones permitidas en el Pod son las del nodo del Pod y las permitidas por la lista `ingress` de alguna NetworkPolicy que se aplique al Pod para la entrada. Los valores de esas listas de direcciones se combinan de forma aditiva.
+
+Las políticas de red no entran en conflicto; son aditivas. Si alguna política(s) se aplica a un Pod para una dirección determinada, las conexiones permitidas en esa dirección desde ese Pod es la unión de lo que permiten las políticas aplicables. Por tanto, el orden de evaluación no afecta al resultado de la política.
+
+Para que se permita una conexión desde un Pod de origen a un Pod de destino, tanto la política de salida del Pod de origen como la de entrada del Pod de destino deben permitir la conexión. Si cualquiera de los dos lados no permite la conexión, ésta no se producirá.
+
+
+## El Recurso NetworkPolicy {#networkpolicy-resource}
+
+Ver la referencia [NetworkPolicy](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#networkpolicy-v1-networking-k8s-io) para una definición completa del recurso.
+
+Un ejemplo de NetworkPolicy pudiera ser este:
+
+{{< codenew file="service/networking/networkpolicy.yaml" >}}
+
+{{< note >}}
+Enviar esto al API Server de su clúster no tendrá ningún efecto a menos que su solución de red soporte de políticas de red.
+{{< /note >}}
+
+__Campos Obligatorios__: Como con todos los otras configuraciones de Kubernetes, una NetworkPolicy
+necesita los campos `apiVersion`, `kind`, y `metadata`.  Para obtener información general
+sobre cómo funcionan esos ficheros de configuración, puedes consultar
+[Configurar un Pod para usar un ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/),
+y [Gestión de Objetos](/docs/concepts/overview/working-with-objects/object-management).
+
+__spec__: NetworkPolicy [spec](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#spec-and-status) contiene toda la información necesaria para definir una política de red dado un Namespace.
+
+__podSelector__: Cada NetworkPolicy incluye un `podSelector` el cual selecciona el grupo de Pods en los cuales aplica la política. La política de ejemplo selecciona Pods con el label "role=db". Un `podSelector` vacío selecciona todos los Pods en un Namespace.
+
+__policyTypes__: Cada NetworkPolicy incluye una lista de `policyTypes` la cual puede incluir `Ingress`, `Egress`, o ambas. Los campos `policyTypes` indican si la política aplica o no al tráfico de entrada hacia el Pod seleccionado, el tráfico de salida desde el Pod seleccionado, o ambos. Si no se especifican `policyTypes` en una NetworkPolicy el valor `Ingress` será siempre aplicado por defecto y `Egress` será aplicado si la NetworkPolicy contiene alguna regla de salida.
+
+__ingress__: Cada NetworkPolicy puede incluir una lista de reglas `ingress` permitidas. Cada regla permite el tráfico con que se relaciona a ambos valores de las secciones de `from` y `ports`. La política de ejemplo contiene una única regla, la cual se relaciona con el tráfico sobre un solo puerto, desde uno de los tres orígenes definidos, el primero especificado por el valor `ipBlock`, el segundo especificado por el valor `namespaceSelector` y el tercero especificado por el `podSelector`.
+
+__egress__: Cada NetworkPolicy puede incluir una lista de reglas de `egress` permitidas. Cada regla permite el tráfico con que se relaciona a ambos valores de las secciones de `to` and `ports`. La política de ejemplo contiene una única regla, la cual se relaciona con el tráfico en un único puerto para cualquier destino en el rango de IPs `10.0.0.0/24`.
+
+Por lo tanto, la NetworkPolicy de ejemplo:
+
+1. Aísla los Pods "role=db" en el Namespace "default" para ambos tipos de tráfico ingress y egress (si ellos no están aún aislados)
+2. (Reglas Ingress) permite la conexión hacia todos los Pods en el Namespace "default" con el label "role=db" en el puerto TCP 6379 desde los siguientes orígenes:
+
+  * cualquier Pod en el Namespace "default" con el label "role=frontend"
+  * cualquier Pod en un Namespace con el label "project=myproject"
+  * La dirección IP en los rangos 172.17.0.0–172.17.0.255 y 172.17.2.0–172.17.255.255 (por ejemplo, todo el rango de IPs de 172.17.0.0/16 con excepción del 172.17.1.0/24)
+3. (Egress rules) permite conexión desde cualquier Pod en el Namespace "default" con el label "role=db" hacia CIDR 10.0.0.0/24 en el puerto TCP 5978
+
+Ver el artículo de [Declarar Network Policy](/docs/tasks/administer-clúster/declare-network-policy/) para más ejemplos.
+
+
+## Comportamiento de los selectores `to` y `from`
+
+Existen cuatro tipos de selectores que pueden ser especificados en una sección de `ingress` `from` o en una sección de `egress` `to`:
+
+__podSelector__: Este selector selecciona Pods específicos en el mismo Namespace que la NetworkPolicy para permitir el tráfico como origen de entrada o destino de salida.
+
+__namespaceSelector__: Este selector selecciona Namespaces específicos para permitir el tráfico como origen de entrada o destino de salida.
+
+__namespaceSelector__ *y* __podSelector__: Una única entrada `to`/`from` que especifica tanto `namespaceSelector` como `podSelector` selecciona Pods específicos dentro de Namespaces específicos. Es importante revisar que se utiliza la sintaxis de YAML correcta. A continuación se muestra un ejemplo de esta política:
+
+```yaml
+  ...
+  ingress:
+  - from:
+    - namespaceSelector:
+        matchLabels:
+          user: alice
+      podSelector:
+        matchLabels:
+          role: client
+  ...
+```
+
+contiene un elemento `from` permitiendo conexiones desde los Pods con el label `role=client` en Namespaces con el label `user=alice`. Por el contrario, *esta* política:
+
+```yaml
+  ...
+  ingress:
+  - from:
+    - namespaceSelector:
+        matchLabels:
+          user: alice
+    - podSelector:
+        matchLabels:
+          role: client
+  ...
+```
+
+contiene dos elementos en el array `from`, y permite conexiones desde Pods en los Namespaces con el label `role=client`, *o* desde cualquier Pod en cualquier Namespace con el label `user=alice`.
+
+En caso de duda, utilice `kubectl describe` para ver cómo Kubernetes ha interpretado la política.
+
+
+<a name="behavior-of-ipblock-selectors"></a>
+__ipBlock__: Este selector selecciona rangos CIDR de IP específicos para permitirlas como origen de entrada o destino de salida. Estas IPs deben ser externas al clúster, ya que las IPs de Pod son efímeras e impredecibles.
+
+Los mecanismos de entrada y salida del clúster a menudo requieren reescribir la IP de origen o destino
+de los paquetes. En los casos en los que esto ocurre, no está definido si esto ocurre antes o
+después del procesamiento de NetworkPolicy, y el comportamiento puede ser diferente para diferentes
+combinaciones de plugin de red, proveedor de nube, implementación de `Service`, etc.
+
+En el caso de la entrada, esto significa que en algunos casos se pueden filtrar paquetes 
+entrantes basándose en la IP de origen real, mientras que en otros casos, la "IP de origen" sobre la que actúa la
+la NetworkPolicy actúa puede ser la IP de un `LoadBalancer` o la IP del Nodo donde este el Pod involucrado, etc.
+
+Para la salida, esto significa que las conexiones de los Pods a las IPs de `Service` que se reescriben a
+IPs externas al clúster pueden o no estar sujetas a políticas basadas en `ipBlock`.
+
+
+## Políticas por defecto
+
+Por defecto, si no existen políticas en un Namespace, se permite todo el tráfico de entrada y salida hacia y desde los Pods de ese Namespace. Los siguientes ejemplos muestran cómo cambiar el comportamiento por defecto en ese Namespace.
+
+
+### Denegar todo el tráfico de entrada por defecto
+
+Puedes crear una política que "por defecto" aisle a un Namespace del tráfico de entrada con la creación de una política que seleccione todos los Pods del Namespace pero no permite ningún tráfico de entrada en esos Pods.
+
+{{< codenew file="service/networking/network-policy-default-deny-ingress.yaml" >}}
+
+Esto asegura que incluso los Pods que no están seleccionados por ninguna otra NetworkPolicy también serán aislados del tráfico de entrada. Esta política no afecta el aislamiento en el tráfico de salida desde cualquier Pod. 
+
+
+### Permitir todo el tráfico de entrada
+
+Si tu quieres permitir todo el tráfico de entrada a todos los Pods en un Namespace, puedes crear una política que explícitamente permita eso.
+
+{{< codenew file="service/networking/network-policy-allow-all-ingress.yaml" >}}
+
+Con esta política en curso, ninguna política(s) adicional puede hacer que se niegue cualquier conexión entrante a esos Pods. Esta política no tiene efecto sobre el aislamiento del tráfico de salida de cualquier Pod.
+
+
+### Denegar por defecto todo el tráfico de salida
+
+Puedes crear una política que "por defecto" aisle el tráfico de salida para un Namespace, creando una NetworkPolicy que seleccione todos los Pods pero que no permita ningún tráfico de salida desde esos Pods.
+
+{{< codenew file="service/networking/network-policy-default-deny-egress.yaml" >}}
+
+Esto asegura que incluso los Pods que no son seleccionados por ninguna otra NetworkPolicy no tengan permitido el tráfico de salida. Esta política no cambia el comportamiento de aislamiento para el tráfico de entrada de ningún Pod.
+
+
+### Permitir todo el tráfico de salida
+
+Si quieres permitir todas las conexiones desde todos los Pods de un Namespace, puedes crear una política que permita explícitamente todas las conexiones salientes de los Pods de ese Namespace.
+
+{{< codenew file="service/networking/network-policy-allow-all-egress.yaml" >}}
+
+Con esta política en vigor, ninguna política(s) adicional puede hacer que se niegue cualquier conexión de salida desde esos Pods. Esta política no tiene efecto sobre el aislamiento para el tráfico de entrada a cualquier Pod.
+
+
+### Denegar por defecto todo el tráfico de entrada y de salida
+
+Puede crear una política que "por defecto" en un Namespace impida todo el tráfico de entrada y de salida creando la siguiente NetworkPolicy en ese Namespace.
+
+{{< codenew file="service/networking/network-policy-default-deny-all.yaml" >}}
+
+Esto asegura que incluso los Pods que no son seleccionados por ninguna otra NetworkPolicy no tendrán permitido el tráfico de entrada o salida.
+
+
+## Soporte a SCTP 
+
+{{< feature-state for_k8s_version="v1.20" state="stable" >}}
+
+Como característica estable, está activada por defecto. Para deshabilitar SCTP a nivel de clúster, usted (o el administrador de su clúster) tiene que deshabilitar la [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) `SCTPSupport` para el API Server con el flag `--feature-gates=SCTPSupport=false,...`.
+Cuando esta feature gate está habilitada, puede establecer el campo `protocol` de una NetworkPolicy como `SCTP`.
+
+{{< note >}}
+Debes utilizar un plugin de {{< glossary_tooltip text="CNI" term_id="cni" >}} que soporte el protocolo SCTP NetworkPolicies.
+{{< /note >}}
+
+
+## Apuntar a un rango de puertos
+
+{{< feature-state for_k8s_version="v1.22" state="beta" >}}
+
+Cuando se escribe una NetworkPolicy, se puede apuntar a un rango de puertos en lugar de un solo puerto.
+
+Esto se puede lograr con el uso del campo `endPort`, como el siguiente ejemplo:
+
+```yaml
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: multi-port-egress
+  namespace: default
+spec:
+  podSelector:
+    matchLabels:
+      role: db
+  policyTypes:
+  - Egress
+  egress:
+  - to:
+    - ipBlock:
+        cidr: 10.0.0.0/24
+    ports:
+    - protocol: TCP
+      port: 32000
+      endPort: 32768
+```
+
+La regla anterior permite que cualquier Pod con la etiqueta `role=db` en el Namespace `default` se comunique 
+con cualquier IP dentro del rango `10.0.0.0/24` sobre el protocolo TCP, siempre que el puerto 
+esté entre el rango 32000 y 32768.
+
+Se aplican las siguientes restricciones al utilizar este campo:
+* Como característica en estado beta, está activada por defecto. Para desactivar el campo `endPort` a nivel de clúster, usted (o su administrador de clúster) debe desactivar la [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) `NetworkPolicyEndPort`  
+en el API Server con el flag `--feature-gates=NetworkPolicyEndPort=false,...`.
+* El campo `endPort` debe ser igual o mayor que el campo `port`.
+* Sólo se puede definir `endPort` si también se define `port`.
+* Ambos puertos deben ser numéricos.
+
+
+{{< note >}}
+Su clúster debe utilizar un plugin de {{< glossary_tooltip text="CNI" term_id="cni" >}} que
+soporte el campo `endPort` en las especificaciones de NetworkPolicy.
+Si su [plugin de red](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/) 
+no soporta el campo `endPort` y usted especifica una NetworkPolicy que use este campo,
+la política se aplicará sólo para el campo `port`.
+{{< /note >}}
+
+
+## Como apuntar a un Namespace usando su nombre
+
+{{< feature-state for_k8s_version="1.22" state="stable" >}}
+
+El plano de control de Kubernetes establece una etiqueta inmutable `kubernetes.io/metadata.name` en todos los
+Namespaces, siempre que se haya habilitado la [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) `NamespaceDefaultLabelName`.
+El valor de la etiqueta es el nombre del Namespace.
+
+Aunque NetworkPolicy no puede apuntar a un Namespace por su nombre con algún campo de objeto, puede utilizar la etiqueta estandarizada para apuntar a un Namespace específico.
+
+
+ ## Que no puedes hacer con políticas de red (al menos, aún no)
+
+Actualmente, en Kubernetes {{< skew currentVersion >}}, la siguiente funcionalidad no existe en la API de NetworkPolicy, pero es posible que se puedan implementar soluciones mediante componentes del sistema operativo (como SELinux, OpenVSwitch, IPTables, etc.) o tecnologías de capa 7 (Ingress controllers, implementaciones de Service Mesh) o controladores de admisión.  En caso de que seas nuevo en la seguridad de la red en Kubernetes, vale la pena señalar que las siguientes historias de usuario no pueden (todavía) ser implementadas usando la API NetworkPolicy.
+
+- Forzar que el tráfico interno del clúster pase por una puerta de enlace común (esto se puede implementar con una malla de servicios u otro proxy).
+- Cualquier cosa relacionada con TLS (se puede implementar con una malla de servicios o un Ingress controllers para esto).
+- Políticas específicas de los nodos (se puede utilizar la notación CIDR para esto, pero no se puede apuntar a los nodos por sus identidades Kubernetes específicamente).
+- Apuntar Services por nombre (sin embargo, puede orientar los Pods o los Namespaces por su {{< glossary_tooltip text="labels" term_id="label" >}}, lo que suele ser una solución viable).
+- Creación o gestión de "solicitudes de políticas" que son atendidas por un tercero.
+- Políticas que por defecto son aplicadas a todos los Namespaces o Pods (hay algunas distribuciones y proyectos de Kubernetes de terceros que pueden hacer esto).
+- Consulta avanzada de políticas y herramientas de accesibilidad.
+- La capacidad de registrar los eventos de seguridad de la red (por ejemplo, las conexiones bloqueadas o aceptadas).
+- La capacidad de negar explícitamente las políticas (actualmente el modelo para NetworkPolicies es negar por defecto, con sólo la capacidad de añadir reglas de permitir).
+- La capacidad de impedir el tráfico entrante de Loopback o de Host (actualmente los Pods no pueden bloquear el acceso al host local, ni tienen la capacidad de bloquear el acceso desde su nodo residente).
+
+
+## {{% heading "whatsnext" %}}
+
+- Leer el artículo de como [Declarar de Políticas de Red](/docs/tasks/administer-clúster/declare-network-policy/) para ver más ejemplos.
+- Ver más [recetas](https://github.com/ahmetb/kubernetes-network-policy-recipes) de escenarios comunes habilitados por los recursos de las NetworkPolicy.
diff --git a/content/es/docs/concepts/services-networking/service.md b/content/es/docs/concepts/services-networking/service.md
new file mode 100644
index 0000000000..3bd85a1701
--- /dev/null
+++ b/content/es/docs/concepts/services-networking/service.md
@@ -0,0 +1,1035 @@
+---
+reviewers:
+- raelga
+- electrocucaracha
+title: Service
+content_type: concept
+weight: 20
+---
+
+<!-- overview -->
+
+{{< glossary_definition term_id="service" length="short" >}}
+
+Con Kubernetes no necesitas modificar tu aplicación para que utilice un mecanismo de descubrimiento de servicios desconocido.
+Kubernetes le otorga a sus Pods su propia dirección IP y un nombre DNS para un conjunto de Pods, y puede balancear la carga entre ellos.
+
+<!-- body -->
+
+## Motivación
+
+Los {{< glossary_tooltip term_id="pod" text="Pods" >}} de Kubernetes son creados y destruidos para coincidir con el estado de tu clúster.
+Los Pods son recursos no permanentes. Si utilizas un {{< glossary_tooltip term_id="deployment" text="Deployment" >}} para correr tu aplicación, puede crear y
+destruir los Pods dinámicamente.
+
+Cada Pod obtiene su propia dirección IP, sin embargo, en un Deployment, el conjunto de Pods corriendo en un momento dado puede ser diferente al
+conjunto de Pods corriendo esa aplicación un momento después.
+
+Esto conlleva un problema: si un conjunto de Pods (llamémoslos "backends") provee funcionalidad a otros Pods (llamémoslos "frontends") dentro de tu clúster,
+¿de qué manera los frontends encuentran y tienen seguimiento de cuál dirección IP conectarse, para que el frontend pueda usar la parte del backend de la carga de trabajo?
+
+Entran los _Services_.
+
+## Recursos Service {#service-resource}
+
+En Kubernetes, un Service es una abstracción que define un conjunto lógico de Pods y una política por la cual acceder a ellos
+(algunas veces este patrón es llamado micro-servicio). El conjunto de Pods a los que apunta un Servicio se determina usualmente por un {{< glossary_tooltip text="Selector" term_id="selector" >}}.
+Para aprender más sobre otras maneras de definir Endpoints para un Service, mira [Services sin selectores](#services-sin-selectores).
+
+Por ejemplo, considera un backend sin estado para procesar imágenes que está corriendo con 3 réplicas. Estas réplicas son fungibles; a los frontends no les importa
+cuál backend usar. Mientras que los Pods actuales que componen el backend pueden cambiar, los clientes del frontend no deberían estar al tanto de ello, ni deberían llevar un seguimiento
+del conjunto de backends en sí mismos.
+
+La abstracción del Service habilita este desacoplamiento.
+
+### Descubrimiento de servicios nativos en la nube
+
+Si eres capaz de usar la API de Kubernetes para descubrir servicios en tu aplicación,
+puedes hacer una búsqueda en el {{< glossary_tooltip text="servidor API" term_id="kube-apiserver" >}} para los Endpoints, que se actualizan cuando cambian el conjunto de Pods en el servicio.
+
+Para aplicaciones no nativas, Kubernetes ofrece una manera de colocar un puerto de red o un balanceador de carga entre tu aplicación y los Pods del backend.
+
+## Definiendo un Service
+
+Un Service en Kubernetes es un objeto REST, similar a un Pod. Como todos los objetos REST, puedes hacer un `Post` a una definición de un Service al servidor API para crear una nueva instancia.
+EL nombre de un objeto Service debe ser un [nombre RFC 1035 válido](/docs/concepts/overview/working-with-objects/names#rfc-1035-label-names).
+
+Por ejemplo, supongamos que tienes un conjunto de Pods en el que cada uno escucha el puerto TCP 9376 y contiene la etiqueta `app.kubernetes.io/name=MyApp`:
+
+```yaml
+apiVersion: v1
+kind: Service
+metadata:
+  name: mi-servicio
+spec:
+  selector:
+    app.kubernetes.io/name: MyApp
+  ports:
+    - protocol: TCP
+      port: 80
+      targetPort: 9376
+```
+
+Esta especificación crea un nuevo objeto Service llamado "mi-servicio", que apunta via TCP al puerto 9376 de cualquier Pod con la etiqueta `app.kubernetes.io/name=MyApp`.
+
+Kubernetes asigna una dirección IP a este Service (Algunas veces llamado "Cluster IP"), la cual es usada por los proxies de los Services (mira [IPs Virtuales y proxies de servicios](#virtual-ips-and-service-proxies) abajo).
+
+El controlador para el selector del Service escanea continuamente a los Pods que coincidan con este selector, y luego hace un Post de cualquier actualización a un objeto Endpoint llamado también "mi-servicio".
+
+{{< note >}}
+Un Service puede mapear _cualquier_ `port` de entrada a un `targetPort`. Por defecto y conveniencia, el `targetPort` se establece con el mismo valor que el campo `port`.
+{{< /note >}}
+
+Las definiciones de puerto en los Pods tienen nombres, y puedes hacer referencia a estos nombres en el atributo `targetPort` del Service. Esto funciona incluso si existe una mezcla
+de Pods en el Service usando un único nombre configurado, con el mismo protocolo de red disponible via diferentes números de puerto.
+Esto ofrece mucha flexibilidad para desplegar y evolucionar tus Services. Por ejemplo, puedes cambiar los números de puertos que los Pods exponen en la siguiente versión de tu software backend, sin romper los clientes.
+
+El protocolo por defecto para los Services is TCP; también puedes usar cualquier otro [protocolo soportado](#protocol-support).
+
+Como muchos Services necesitan exponer más de un puerto, Kubernetes soporta múltiples definiciones de puertos en un único objeto Service.
+Cada definición de un puerto puede tener el mismo protocolo, o uno diferente
+
+### Services sin selectores
+
+Los Services comúnmente abstraen el acceso a los Pods de Kubernetes, pero también pueden abstraer otros tipos de backends.
+
+Por ejemplo:
+
+- Quieres tener un clúster de base de datos externo en producción, pero en el entorno de pruebas quieres usar tus propias bases de datos.
+- Quieres apuntar tu Service a un Service en un {{< glossary_tooltip term_id="namespace" text="Namespace" >}} o en un clúster diferente.
+- Estás migrando tu carga de trabajo a Kubernetes. Mientras evalúas la aproximación, corres solo una porción de tus backends en Kubernetes.
+
+En cualquiera de estos escenarios puedes definir un Service _sin_ un selector de Pod.
+
+Por ejemplo:
+
+```yaml
+apiVersion: v1
+kind: Service
+metadata:
+  name: mi-servicio
+spec:
+  ports:
+    - protocol: TCP
+      port: 80
+      targetPort: 9376
+```
+
+Debido a que este Service no tiene un selector, el objeto Endpoints no se crea de forma automática.
+Puedes mapear manualmente el Service a la dirección de red y puerto donde está corriendo, añadiendo el objeto Endpoints manualmente:
+
+```yaml
+apiVersion: v1
+kind: Endpoints
+metadata:
+  name: mi-servicio
+subsets:
+  - addresses:
+      - ip: 192.0.2.42
+    ports:
+      - port: 9376
+```
+
+El nombre del objeto Endpoints debe ser un [nombre de subdominio DNS válido](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
+
+{{< note >}}
+Las direcciones IPs _no deben_ ser: loopback (127.0.0.0/8 para IPv4, ::1/128 para IPv6), o
+link-local (169.254.0.0/16 and 224.0.0.0/24 para IPv4, fe80::/64 para IPv6).
+
+Las direcciones IP del Endpoint no pueden ser IPs de clúster de otros Services de Kubernetes, debido a que el
+{{< glossary_tooltip term_id="kube-proxy" >}} no soporta IPs virtuales como destino.
+{{< /note >}}
+
+Acceder a un Service sin un selector funciona de la misma manera que si tuviese un selector.
+En el ejemplo de abajo, el tráfico se dirige al único Endpoint definido en el YAML:
+`192.0.2.42:9376` (TCP).
+
+{{< note >}}
+El servidor de API de Kubernetes no permite hacer proxy a Endpoints que no están mapeados a Pods.
+Acciones como `kubectl proxy <service-name>` donde el servicio no tiene un selector fallará debido a esta restricción.
+Esto previene que el servidor API de Kubernetes sea utilizado como proxy a endpoints a los que quien llama no tenga acceso autorizado.
+{{< /note >}}
+
+Un Service ExternalName es un caso especial de Service que no tiene selectores y usa nombres DNS en su lugar. Para más información, mira la sección [ExternalName](#externalname) en este documento.
+
+### Endpoints de sobrecapacidad
+
+Si un recurso Endpoint tiene más de 1000 endpoints entonces un clúster de Kubernetes v1.22 (o posterior)
+anota los Endpoints con `endpoints.kubernetes.io/over-capacity: truncated`.
+Esta anotación indica que el objeto Endpoints afectado está por encima de la capacidad y que
+el controlador de endpoints ha truncado el número de endpoints a 1000.
+
+### EndpointSlices
+
+{{< feature-state for_k8s_version="v1.21" state="stable" >}}
+
+Los EndpointSlices son un recurso de la API que pueden proveer una alternativa más escalable a los Endpoints.
+Aunque conceptualmente es muy similar a los Endpoints, los EndpointSlices permiten distribuir los endpoints de red a través de múltiples recursos.
+Por defecto, un EndpointSlice se considera "full" una vez que alcanza 100 endpoints, punto en el cual un EndpointSlice se creará para almacenar cualquier endpoint adicional.
+
+Los EndpointSlices proveen atributos adicionales y funcionalidad que se describe en detalle en [EndpointSlices](/docs/concepts/services-networking/endpoint-slices/).
+
+### Protocolo de aplicación
+
+{{< feature-state for_k8s_version="v1.20" state="stable" >}}
+
+El campo `appProtocol` provee una manera de especificar un protocolo de aplicación para cada puerto de un Service.
+El valor de este campo es reflejado por el Endpoint correspondiente y los objetos EndpointSlices.
+
+Este campo sigue una sintaxis estándar de etiquetas de Kubernetes. Los valores deberían ser [nombres de servicio IANA estándar](https://www.iana.org/assignments/service-names)
+o nombres de dominio con prefijos tales como `mycompany.com/my-custom-protocol`.
+
+
+## IPS Virtuales proxies de servicio
+
+Cada nodo en un clúster de Kubernetes ejecuta un `kube-proxy`. El `kube-proxy`es el responsable de implementar una forma de IP virtual para los
+`Services` de un tipo distinto al de [`ExternalName`](#externalname).
+
+### Por qué no usar DNS round-robin?
+
+Una pregunta que surge algunas veces es por qué Kubernetes depende de proxies para redirigir el tráfico de entrada a los backends. ¿Qué hay de otros enfoques?
+Por ejemplo, ¿sería posible configurar registros DNS que tengan múltiples valores A (o AAA para IPv6), y depender en la resolución de nombres round-robin?
+
+Existen algunas razones para usar proxies en los Services:
+
+- Hay una larga historia de implementaciones DNS que no respetan los registros TTLs, y cachean los resultados de la búsqueda de nombres luego de que deberían haber expirado.
+- Algunas aplicaciones realizan la búsqueda de DNS solo una vez y almacenan en caché los resultados indefinidamente.
+- Incluso si las aplicaciones y las librerías hicieran una resolución apropiada, los TTLs bajos o nulos en los registros DNS podrían imponer una carga alta en los DNS que luego se volvería difícil de manejar.
+
+Más adelante en esta página puedes leer acerca del trabajo de varias implementaciones de kube-proxy. En general, deberías notar que, cuando ejecutas `kube-proxy`, los niveles de reglas del kernel podrían modificarse (por ejemplo, podrían crearse reglas iptables), que luego no son limpiados, en algunos casos hasta que reinicias. Por tanto, ejecutar kube-proxy es algo que
+solo debería hacer un administrador que entienda las consecuencias de tener un servicio de bajo nivel privilegiado de proxy de red en un computador. Aunque el ejecutable de `kube-proxy` soporta una función de `cleanup`, esta función no es una característica oficial y solo está disponible para usarse como está.
+
+### Configuración
+
+Ten en cuenta que el kube-proxy inicia en diferentes modos, los cuales están determinados por su configuración.
+
+- La configuración del kube-proxy se hace via un ConfigMap, y el ConfigMap para el kube-proxy remplaza efectivamente el comportamiento de casi todas las banderas para el kube-proxy.
+- La configuración del ConfigMap no soporta la recarga en vivo de la configuración.
+- Los parámetros del ConfigMap para el kube-proxy no se pueden validar y verificar en el arranque. Por ejemplo, si tu sistema operativo no permite ejecutar comandos iptables, el kube-proxy del kernel estándar no funcionará. De igual forma, si tienes un sistema operativo que no soporta `netsh`, no se ejecutará en modo userspace en Windows.
+
+### Modo proxy userspace {#proxy-mode-userspace}
+
+En este modo, el kube-proxy observa la adición y eliminación de objetos Endpoint Service del plano de control de Kubernetes.
+Para cada Service se abre un puerto (elegido al azar) en el nodo local. Cualquier conexión a este "puerto proxy" es dirigido a uno de los Pods backend del Servicio (como se reporta via Endpoints). El kube-proxy toma el valor `sessionAffinity` del Service en cuenta cuando decide cuál Pod del backend utilizar.
+
+Finalmente, el proxy del userspace instala reglas de iptables que capturan el tráfico al `clusterIP` (que es virtual) del servicio y el `port`. Las reglas redirigen el tráfico al puerto proxy que redirige al Pod del backend.
+
+Por defecto, el kube-proxy en modo userspace elige un backend con un algoritmo round-robin.
+
+![Diagrama de descripción general de los Services para el proxy userspace](/images/docs/services-userspace-overview.svg)
+
+### Modo proxy `iptables` {#proxy-mode-iptables}
+
+En este modo, el kube-proxy observa la adición y eliminación de objetos Endpoint Service del panel de control de Kubernetes.
+Para Service, instala reglas iptables, las cuales capturan el tráfico al `clusterIP` y el `port` del Service, y redirige este tráfico a uno de los conjuntos del backend.
+Para cada objeto Endpoint, instala reglas de iptables que seleccionan un Pod del backend.
+
+Por defecto, el kube-proxy en modo iptables elige un backend al azar.
+
+Usar iptables para manejar tráfico tiene una sobrecarga más baja del sistema, porque el tráfico es manejado por el netfilter de Linux sin la necesidad de cambiar entre userspace y el espacio del kernel.
+Esta aproximación puede llegar a ser más confiable.
+
+Si el kube-proxy está corriendo en modo iptables y el primer Pod seleccionado no responde, la conexión falla. Esto es diferente del modo userspace: en ese escenario, el kube-proxy detectaría que la conexión al primer Pod ha fallado e intentaría automáticamente con otro Pod del backend.
+
+Puedes usar [readiness probes](/docs/concepts/workloads/pods/pod-lifecycle/#container-probes) para verificar que los Pods del backend están funcionando correctamente, para que kube-proxy en modo iptables solo vea los backends que han sido comprobados como sanos. Hacer esto significa que evitas enviar tráfico via kube-proxy a un Pod que se sabe que ha fallado.
+
+![Diagrama de descripción general de los Services para el proxy iptables](/images/docs/services-iptables-overview.svg)
+
+### Modo Proxy IPVS {#proxy-mode-ipvs}
+
+{{< feature-state for_k8s_version="v1.11" state="stable" >}}
+
+En el modo `ipvs`, el kube-proxy observa los Services de Kubernetes y los Endpoints, llama la interfaz `netlink` para crear reglas IPVS respectivamente y sincroniza las reglas IPVS con los Services de Kubernetes y los Endpoints periódicamente. Este ciclo de control asegura que los estados del IPVS coincidan con el estado deseado.
+
+Cuando accede a un Service, IPVS dirige el tráfico a uno de estos Pods del backend.
+
+El modo proxy IPVS está basado en la función de enlace netfilter que es similar al modo iptables, pero usa una tabla hash como estructura de datos subyacente y opera en el espacio del kernel.
+
+Esto significa que el kube-proxy en modo IPVS redirige el tráfico como menor latencia que el kube-proxy en modo iptables, con mejor desempeño cuando sincroniza las reglas proxy. Comparado con otros modos proxy, el modo IPVS también soporta un rendimiento más alto de tráfico de red.
+
+IPVS provee más opciones para balancear el tráfico a los Pods del backend; estas son:
+
+- `rr`: round-robin
+- `lc`: menor conexión (el número más pequeño de conexiones abiertas)
+- `dh`: hash de destino
+- `sh`: hash de origen
+- `sed`: retraso esperado más corto
+- `nq`: nunca hacer cola
+
+{{< note >}}
+Para correr kube-proxy en modo IPVS, deber estar disponible IPVS en el nodo antes de iniciar el kube-proxy.
+
+Cuando kube-proxy inicia en modo IPVS, este verifica si los módulos kernel IPVS están disponibles. Si no se detectan los módulos del kernel IPVS, kube-proxy vuelve al modo proxy iptables.
+{{< /note >}}
+
+![Diagrama de descripción general de los Services para el proxy IPVS](/images/docs/services-ipvs-overview.svg)
+
+En estos modelos de proxy, el tráfico enlazado para la IP:Port del Service es redirigido al backend apropiado sin que el cliente sepa nada de Kubernetes, Services o Pods.
+
+Si quieres asegurarte que las conexiones desde un cliente en particular se pasen al mismo Pod cada vez, puedes seleccionar la afinidad de sesión basada en la dirección IP del cliente al establecer `service.spec.sessionAffinity` a "ClientIP" (por defecto es "None").
+
+Puedes establecer también el número máximo de tiempo al establecer `service.spec.sessionAffinityConfig.clientIP.timeoutSeconds` apropiadamente. (El valor por defecto es 10800, que resulta ser unas 3 horas).
+
+## Services multi puerto
+
+Para algunos servicios, necesitas exponer más de un puerto. Kubernetes te permite configurar múltiples definiciones puertos en un objeto Service. Cuando usas múltiples puertos para un Service, debes nombrar todos tus puertos para que no sean ambiguos.
+Por ejemplo:
+
+```yaml
+apiVersion: v1
+kind: Service
+metadata:
+  name: mi-servicio
+spec:
+  selector:
+    app: MiApp
+  ports:
+    - name: http
+      protocol: TCP
+      port: 80
+      targetPort: 9376
+    - name: https
+      protocol: TCP
+      port: 443
+      targetPort: 9377
+```
+
+{{< note >}}
+Como con los {{< glossary_tooltip term_id="name" text="nombres">}} de Kubernetes en general, los nombres para los puertos deben contener alfanuméricos en minúsculas y `-`. Los nombres de puertos deben comenzar y terminar con un carácter alfanumérico.
+
+Por ejemplo, los nombres `123-abc` and `web` son válidos, pero `123_abc` y `-web` no lo son.
+{{< /note >}}
+
+## Eligiendo tu propia dirección IP
+
+Puedes especificar tu propia dirección IP para el clúster como parte de la petición de creación de un `Service`. Para hacer esto, establece el campo `.spec.clusterIP`. Por ejemplo, si ya tienes una entrada DNS existente que quieres reutilizar, o sistemas legacy que están configurados para direcciones IP específicas que son difíciles de reconfigurar.
+
+La dirección IP que elijas debe ser una dirección IPV4 o IPV6 válida dentro del rango CIDR `service-cluster-ip-range` que está configurado para el servidor API.
+Si intentas crear un Service con una dirección clusterIP inválida, el servidor API devolverá un código de estado 422 para indicar que hay un problema.
+
+## Políticas de tráfico
+
+### Política de tráfico externa
+
+Puedes establecer el campo `spec.externalTrafficPolicy` para controlar cómo se enruta el tráfico de fuentes externas. Los valores válidos son `Cluster`y `Local`. Establece el campo a `Cluster` para enrutar tráfico externo a todos los endpoints listos y `Local` para enrutar solamente a los endpoints locales del nodo. Si la política de tráfico es `Local` y no hay endpoints de nodos locales, kube-proxy no redirige ningún tráfico al Service relevante.
+
+{{< note >}}
+{{< feature-state for_k8s_version="v1.22" state="alpha" >}}
+Si habilitas el [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) `ProxyTerminatingEndpoints` para el kube-proxy, el kube-proxy revisa si el nodo tiene endpoints locales y si todos los endpoints locales están marcados como terminando. Si hay endpoints locales y **todos** están terminando, el kube-proxy ignora todo tráfico externo de `Local`. En cambio, mientras que los endpoints locales del nodo permanecen todos como terminando, el kube-proxy reenvía el tráfico para ese Service para endpoints sanos en otro lugar, como si la política de tráfico externo fuese `Cluster`.
+Este comportamiento de reenvío para endpoints que están terminando existe para permitir que los balanceadores de carga externos terminen las conexiones que están respaldadas por Services `NodePort` gradualmente, incluso cuando la verificación del estado del puerto del nodo comienza a fallar. De lo contrario, el tráfico puede perderse entre el tiempo en que un nodo está todavía en el grupo de nodos de un balanceador de carga y el tráfico se cae durante el periodo de terminación de un Pod.
+{{< /note >}}
+
+### Política de tráfico interna
+
+{{< feature-state for_k8s_version="v1.22" state="beta" >}}
+Puedes establecer el campo `spec.internalTrafficPolicy` para controlar como se enruta el tráfico desde las fuentes internas. Los valores válidos son `Cluster` y `Local`. Establece el campo a `Cluster` para enrutar el tráfico interno a todos los endpoints listos y `Local` para enrutar solo los endpoints locales del nodo. Si la política de tráfico es `Local` y no hay endpoints locales de nodo, el tráfico es terminado por el kube-proxy.
+
+## Descubriendo servicios
+
+Kubernetes soporta 2 modos primarios para encontrar un Service - variables de entorno y DNS
+
+### Variables de entorno
+
+Cuando un Pod está corriendo en un Node, kubelet añade un conjunto de variables de entorno para cada Service activo. Soporta tanto variables [Docker links
+compatible](https://docs.docker.com/userguide/dockerlinks/) como variables más sencillas `{SVCNAME}_SERVICE_HOST` and `{SVCNAME}_SERVICE_PORT`, donde el nombre del Service está en mayúsculas y los guiones medios se convierten en guiones bajos.
+
+Por ejemplo, el Service `redis-master` que expone el puerto TCP 6739 y se le ha asignado una dirección IP de clúster 10.0.0.11, produce las siguientes variables de entorno:
+
+```shell
+REDIS_MASTER_SERVICE_HOST=10.0.0.11
+REDIS_MASTER_SERVICE_PORT=6379
+REDIS_MASTER_PORT=tcp://10.0.0.11:6379
+REDIS_MASTER_PORT_6379_TCP=tcp://10.0.0.11:6379
+REDIS_MASTER_PORT_6379_TCP_PROTO=tcp
+REDIS_MASTER_PORT_6379_TCP_PORT=6379
+REDIS_MASTER_PORT_6379_TCP_ADDR=10.0.0.11
+```
+
+{{< note >}}
+Cuando tienes un Pod que necesita acceso a un Service, y estás usando el método de variable de entorno para publicar el puerto y la dirección clúster IP al Pod cliente, debes crear el Service _antes_ de que los Pods del cliente lleguen a existir. De lo contrario, esos Pods cliente no tendrán las variables de entorno pobladas.
+
+Si solo usas DNS para descubrir la clúster IP para un Service, no tienes que preocuparte acerca de este tema de ordenación.
+{{< /note >}}
+
+### DNS
+
+Puedes (y casi siempre deberías) configurar un servicio DNS para tu clúster de Kubernetes usando un [add-on](/docs/concepts/cluster-administration/addons/).
+
+Un servidor DNS consciente del clúster, como CoreDNS, observa la API de Kubernetes por nuevos Services y crea un conjunto de registros DNS para cada uno. Si DNS ha sido habilitado a través de tu clúster entonces todos los Pods automáticamente serán capaces de resolver los Services por su nombre DNS.
+
+Por ejemplo, si tienes un Service llamado `mi-servicio` en un namespace `mi-ns`, el plano de control y el Service DNS crean un registro DNS para `mi-servicio.mi-ns` conjuntamente. Los Pods en el namespace `mi-ns` deberían ser capaces de encontrar el Service haciendo una búsqueda de nombre por `mi-servicio` (`mi-servicio.mi-ns` también funcionaría)
+
+Los Pods en otros namespaces deben calificar el nombre como `my-service.my-ns`. Estos nombres resolverán la clúster IP asignada para el Service.
+
+Kubernetes también soporta registros DNS SRV (Service) para los puertos nombrados. Si el Service `mi-servicio.mi-ns` tiene un puerto llamado `http` con el protocolo fijado a `TCP`, puedes hacer una consulta DNS SRV a `_http._tcp.mi-servicio.mi-ns` para descubrir el número de puerto para `http` así como la dirección IP.
+
+El servidor DNS de Kubernetes es la única manera de acceder a los Services `ExternalName`. Puedes encontrar más información sobre la resolución `ExternalName` en [Pods y Services DNS](/docs/concepts/services-networking/dns-pod-service/).
+
+## Servicios Headless
+
+Algunas veces no necesitas balancear cargas y una IP única. En este caso, puedes crear lo que llamamos Services "headless", especificando `"None"` para el clúster IP (`.spec.clusterIP`).
+
+Puedes usar un Service headless para hacer una interfaz con otros mecanismos de descubrimiento de servicios, sin estar atado a la implementación de Kubernetes.
+
+Para los `Services` headless, no se asigna una clúster IP, kube-proxy no maneja estos Services, y no hay balanceo de cargas o redirección por la plataforma para ellos. Cómo se configura el DNS automáticamente depende de si el Service tiene selectores definidos:
+
+### Con selectores
+
+Para los Services headless que definen selectores, el controlador de endpoints crea registros `Endpoints` en la API, y modifica la configuración DNS para devolver registros A (direcciones IP) que apuntan directamente a los `Pods` que respaldan el `Service`.
+
+### Sin selectores
+
+Para Services headless que no definen selectores, el controlador de endpoints no crea registros `Endpoints`. Sin embargo, el sistema DNS busca y configura:
+
+- Registros CNAME para Services del tipo [`ExternalName`](#externalname).
+- Registros A para cualquier `Endpoints` que comparten un nombre con el Service, para todos los otros tipos.
+
+## Publicar Services (ServiceTypes) {#publishing-services-service-types}
+
+En algunas partes de tu aplicación (por ejemplo, frontends) puede que necesites exponer un Service a una dirección IP externa, que está fuera de tu clúster local
+
+Los `ServiceTypes` de Kubernetes permiten especificar qué tipo de Service quieres. El valor por defecto es `ClusterIP`
+
+Los valores `Type` y sus comportamientos son:
+
+- `ClusterIP`: Expone el Service en una dirección IP interna del clúster. Al escoger este valor el Service solo es alcanzable desde el clúster. Este es el `ServiceType` por defecto.
+- [`NodePort`](#tipo-nodeport): Expone el Service en cada IP del nodo en un puerto estático (el `NodePort`). Automáticamente se crea un Service `ClusterIP`, al cual enruta el `NodePort`del Service. Podrás alcanzar el Service `NodePort` desde fuera del clúster, haciendo una petición a `<NodeIP>:<NodePort>`.
+- [`LoadBalancer`](#loadbalancer): Expone el Service externamente usando el balanceador de carga del proveedor de la nube. Son creados automáticamente Services `NodePort`y `ClusterIP`, a los cuales el apuntará el balanceador externo.
+- [`ExternalName`](#externalname): Mapea el Service al contenido del campo `externalName` (ej. `foo.bar.example.com`), al devolver un registro `CNAME` con su valor. No se configura ningún tipo de proxy.
+
+  {{< note >}}
+- Necesitas la versión 1.7 de `kube-dns` o CoreDNS versión 0.0.8 o más para usar el tipo `ExternalName`.
+  {{< /note >}}
+
+También puedes usar un [Ingress](/docs/concepts/services-networking/ingress/) para exponer tu Service. Ingress no es un tipo de Service, pero actúa como el punto de entrada de tu clúster. Te permite consolidar tus reglas de enrutamiento en un único recurso, ya que puede exponer múltiples servicios bajo la misma dirección IP.
+
+### Tipo NodePort {#tipo-nodeport}
+
+Si estableces el campo `type` a `NodePort`, el plano de control de Kubernetes asigna un puerto desde un rango especificado por la bandera `--service-node-port-range` (por defecto: 30000-32767).
+Cada nodo es un proxy de ese puerto (el mismo número de puerto en cada nodo) hacia tu Service. Tu Service reporta al puerto asignado en el campo `.spec.ports[*].nodePort`
+
+Si quieres especificar una(s) IP(s) particular(es) para hacer proxy del puerto, puedes establecer la bandera `--nodeport-addresses` para el kube-proxy o el campo equivalente `nodePortAddresses` del [fichero de configuración de kube-proxy](/docs/reference/config-api/kube-proxy-config.v1alpha1/) para ese bloque particular de IP(s).
+
+Esta bandera recibe un listado de bloques de IP separados por coma (ej. `10.0.0.0/8`, `192.0.2.0/25`) para especificar rangos de direcciones IP que el kube-proxy debería considerar como local para este nodo.
+
+Por ejemplo, si arrancas el kube-proxy con la bandera `--nodeport-addresses=127.0.0.0/8`, el kube-proxy solo selecciona la interfaz loopback para los Services NodePort. El valor por defecto es `--nodeport-addresses` es una lista vacía. Esto significa que el kube-proxy considera todas las interfaces de red disponibles para el NodePort. (Esto es compatible también con versiones más antiguas de Kubernetes).
+
+Si quieres un número de puerto específico, puedes especificar un valor en el campo `nodePort`. El plano de control te asignará ese puerto o reportará que la transacción API ha fallado.
+Esto significa que necesitas prestar atención a posibles colisiones de puerto por tu cuenta.
+También tienes que usar un número de puerto válido, uno que esté dentro del rango configurado para uso del NodePort.
+
+Usar un NodePort te da libertad para configurar tu propia solución de balanceo de cargas, para configurar entornos que no soportan Kubernetes del todo, o para exponer uno o más IPs del nodo directamente.
+
+Ten en cuenta que este Service es visible como `<NodeIP>:spec.ports[*].nodePort` y `.spec.clusterIP:spec.ports[*].port`.
+Si la bandera `--nodeport-addresses` está configurada para el kube-proxy o para el campo equivalente en el fichero de configuración, `<NodeIP>` sería IP filtrada del nodo. Si
+
+Por ejemplo:
+
+```yaml
+apiVersion: v1
+kind: Service
+metadata:
+  name: mi-servicio
+spec:
+  type: NodePort
+  selector:
+    app: MiApp
+  ports:
+    # Por defecto y por comodidad, el `TargetPort` tiene el mismo valor que el campo `port.
+    - port: 80
+      targetPort: 80
+      # Campo opcional
+      # Por defecto y por comodidad, el plano de control de Kubernetes asignará el puerto desde un rango (por defecto: 30000-32767)
+      nodePort: 30007
+```
+
+### Tipo LoadBalancer {#loadbalancer}
+
+En proveedores de la nube que soportan balanceadores de carga externos, establecer el campo `type` a `LoadBalancer` aprovisiona un balanceador de carga para tu Service. La creación del balanceador de carga ocurre de forma asíncrona, y la información sobre el balanceador de carga provisto se publica en el campo `.status.loadBalancer` del Service.
+
+Por ejemplo:
+
+```yaml
+apiVersion: v1
+kind: Service
+metadata:
+  name: mi-servicio
+spec:
+  selector:
+    app: MiApp
+  ports:
+    - protocol: TCP
+      port: 80
+      targetPort: 9376
+  clusterIP: 10.0.171.239
+  type: LoadBalancer
+status:
+  loadBalancer:
+    ingress:
+      - ip: 192.0.2.127
+```
+
+El tráfico desde el balanceador de carga externo es dirigido a los Pods del backend. El proveedor de la nube decide cómo balancear la carga.
+
+Algunos proveedores de la nube te permiten especificar la IP `loadBalancerIP`. En esos caso, el balanceador de carga es creado con la `loadBalancerIP` especificada por el usuario. Si el campo `loadBalancerIP` no se especifica, el balanceador de carga se configura con una dirección IP efímera. Si especificas una `loadBalancerIP` pero tu proveedor de la nube no soporta esta característica, se ignora el campo `loadBalancerIP` que has configurado.
+
+{{< note >}}
+En **Azure**, si quieres usar un tipo `loadBalancerIP` público definido por el usuario, primero necesitas crear una dirección IP estática y pública. Esta dirección IP pública debería estar en el mismo grupo de recursos que los otros recursos del clúster creados automáticamente.
+Por ejemplo, `MC_myResourceGroup_myAKSCluster_eastus`.
+
+Especifica la dirección IP asignada como loadBalancerIP. Asegúrate que tienes actualizado el securityGroupName en tu fichero de configuración del proveedor de la nube. Para información sobre cómo resolver problemas de permisos de `CreatingLoadBalancerFailed`, mira [Usar una IP estática con el balanceador de carga de Azure Kubernetes Service (AKS)](https://docs.microsoft.com/en-us/azure/aks/static-ip) o [CreatingLoadBalancerFailed en un clúster AKS con configuración de red avanzada](https://github.com/Azure/AKS/issues/357).
+{{< /note >}}
+
+#### Balanceadores de carga con tipos de protocolo mixtos
+
+{{< feature-state for_k8s_version="v1.20" state="alpha" >}}
+Por defecto, para los tipos de Service LoadBalancer, cuando hay más de un puerto definido, todos los puertos deben tener el mismo protocolo, y el protocolo debe estar soportado por el proveedor de la nube.
+
+Si la feature gate `MixedProtocolLBService` está habilitada para el kube-apiserver se permiten usar diferentes protocolos cuando hay más de un puerto definido.
+
+{{< note >}}
+
+El conjunto de protocolos que pueden ser usados para Services de tipo LoadBalancer es definido por el proveedor de la nube.
+
+{{< /note >}}
+
+#### Deshabilitar la asignación NodePort del balanceador de carga {#load-balancer-nodeport-allocation}
+
+{{< feature-state for_k8s_version="v1.20" state="alpha" >}}
+
+A partir de v1.20, puedes deshabilitar opcionalmente la asignación del puerto del nodo para un Service de tipo LoadBalancer estableciendo el campo `spec.allocateLoadBalancerNodePorts` a `false`. Esto debería ser usado solo para implementaciones de balanceadores de carga que enrutan el tráfico directamente a los Pods al contrario de usar puertos del nodo. Por defecto, `spec.allocateLoadBalancerNodePorts` es `true` y los Services de tipo LoadBalancer continuarán asignando puertos. Si `spec.allocateLoadBalancerNodePorts` es `false` en un Service existente con puertos asignado, esos puertos del nodo no serán desasignados automáticamente.
+Debes quitar explícitamente la entrada `nodePorts`en cada puerto del Service para desasignar esos puertos del nodo.
+Debes habilitar la feature gate `ServiceLBNodePortControl` para usar este campo.
+
+#### Especificar la clase de implementación del balanceador de carga {#load-balancer-class}
+
+{{< feature-state for_k8s_version="v1.22" state="beta" >}}
+
+`spec.loadBalancerClass` te permite usar una implementación del balanceador de carga distinta que la que viene por defecto para el proveedor de la nube. Esta característica está disponible desde v1.21, debes habilitar la feature gate `ServiceLoadBalancerClass` para usar este campo en v1.21, y la feature gate está habilitada por defecto desde v1.22 en adelante.
+
+Por defecto, `spec.loadBalancerClass` es `nil` y un tipo de Service `LoadBalancer` usa la implementación por defecto del proveedor de la nube si el clúster está configurado con un proveedor de nube usando la bandera de componente `--cloud-provider`.
+
+Si `spec.loadBalancerClass` está especificado, se asume que una implementación de un balanceador de carga que coincida con la clase especificada está observando los Services. Cualquier implementación por defecto del balanceador de carga (por ejemplo, la que es provista por el proveedor de la nube) ignorará los Services que tienen este campo establecido. `spec.loadBalancerClass` se puede establecer en cualquier Service de tipo `LoadBalancer` únicamente. Una vez hecho, no se puede cambiar.
+El valor de `spec.loadBalancerClass` debe ser un identificador de etiqueta, con un prefijo opcional como "`internal-vip`" o "`example.com/internal-vip`". Los nombres sin prefijo están reservados para usuarios finales.
+
+#### Balanceador de carga interno
+
+En un entorno mixto algunas veces es necesario enrutar el tráfico desde Services dentro del mismo bloque (virtual) de direcciones de red.
+
+En un entorno de split-horizon DNS necesitarías dos Services para ser capaz de enrutar tanto el tráfico externo como el interno a tus Endpoints.
+
+Para establecer un balanceador de carga interno, agrega una de las siguientes anotaciones a tu Service dependiendo del proveedor de Service en la nube que estás usando.
+
+{{< tabs name="service_tabs" >}}
+{{% tab name="Default" %}}
+Selecciona una de las pestañas.
+{{% /tab %}}
+{{% tab name="GCP" %}}
+
+```yaml
+[...]
+metadata:
+    name: my-service
+    annotations:
+        cloud.google.com/load-balancer-type: "Internal"
+[...]
+```
+
+{{% /tab %}}
+{{% tab name="AWS" %}}
+
+```yaml
+[...]
+metadata:
+    name: my-service
+    annotations:
+        service.beta.kubernetes.io/aws-load-balancer-internal: "true"
+[...]
+```
+
+{{% /tab %}}
+{{% tab name="Azure" %}}
+
+```yaml
+[...]
+metadata:
+    name: my-service
+    annotations:
+        service.beta.kubernetes.io/azure-load-balancer-internal: "true"
+[...]
+```
+
+{{% /tab %}}
+{{% tab name="IBM Cloud" %}}
+
+```yaml
+[...]
+metadata:
+    name: my-service
+    annotations:
+        service.kubernetes.io/ibm-load-balancer-cloud-provider-ip-type: "private"
+[...]
+```
+
+{{% /tab %}}
+{{% tab name="OpenStack" %}}
+
+```yaml
+[...]
+metadata:
+    name: my-service
+    annotations:
+        service.beta.kubernetes.io/openstack-internal-load-balancer: "true"
+[...]
+```
+
+{{% /tab %}}
+{{% tab name="Baidu Cloud" %}}
+
+```yaml
+[...]
+metadata:
+    name: my-service
+    annotations:
+        service.beta.kubernetes.io/cce-load-balancer-internal-vpc: "true"
+[...]
+```
+
+{{% /tab %}}
+{{% tab name="Tencent Cloud" %}}
+
+```yaml
+[...]
+metadata:
+  annotations:
+    service.kubernetes.io/qcloud-loadbalancer-internal-subnetid: subnet-xxxxx
+[...]
+```
+
+{{% /tab %}}
+{{% tab name="Alibaba Cloud" %}}
+
+```yaml
+[...]
+metadata:
+  annotations:
+    service.beta.kubernetes.io/alibaba-cloud-loadbalancer-address-type: "intranet"
+[...]
+```
+
+{{% /tab %}}
+{{< /tabs >}}
+
+#### Soporte para TLS en AWS {#ssl-support-on-aws}
+
+Para soporte parcial de TLS/SSL en clústeres corriendo en AWS, puedes agregar tres anotaciones al servicio `LoadBalancer`:
+
+```yaml
+metadata:
+  name: mi-servicio
+  annotations:
+    service.beta.kubernetes.io/aws-load-balancer-ssl-cert: arn:aws:acm:us-east-1:123456789012:certificate/12345678-1234-1234-1234-123456789012
+```
+
+El primero especifica el ARN del certificado a usar. Este puede ser un certificado de un emisor de un tercero que fue subido en IAM o uno creado dentro del Administrador de Certificados de AWS.
+
+```yaml
+metadata:
+  name: mi-servicio
+  annotations:
+    service.beta.kubernetes.io/aws-load-balancer-backend-protocol: (https|http|ssl|tcp)
+```
+
+La segunda anotación especifica cuál protocolo habla el Pod. Para HTTPS y SSL, el ELB espera que el Pod se autentique a sí mismo sobre una conexión encriptada, usando un certificado.
+
+HTTP y HTTPS seleccionan un proxy de capa 7: el ELB termina la conexión con el usuario, interpreta los encabezados, e inyecta el encabezado `X-Forwared-For` con la dirección IP del usuario (los Pods solo ven la dirección IP del ELB del otro lado de su conexión) cuando reenvía las peticiones.
+
+TCP y SSL seleccionan un proxy de capa 4: el ELB reenvía el tráfico sin modificar los encabezados.
+
+En un entorno mixto donde algunos puertos están asegurados y otros se dejan sin encriptar, puedes usar una de las siguientes anotaciones:
+
+```yaml
+metadata:
+  name: mi-servicio
+  annotations:
+    service.beta.kubernetes.io/aws-load-balancer-backend-protocol: http
+    service.beta.kubernetes.io/aws-load-balancer-ssl-ports: "443,8443"
+```
+
+En el ejemplo de arriba, si el Service contenía tres puertos, `80`, `443` y `8443` entonces `443` y `8443` usarían el certificado SSL, pero `80`sería HTTP proxy.
+
+A partir de Kubernetes v1.9 en adelante puedes usar [políticas predefinidas de AWS SSL ](https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-security-policy-table.html) con listeners HTTPS o SSL para tus Services. Para ver cuáles políticas están disponibles para usar, puedes usar la herramienta de línea de comandos `aws`:
+
+```bash
+aws elb describe-load-balancer-policies --query 'PolicyDescriptions[].PolicyName'
+```
+
+Puedes especificar cualquiera de estas políticas usando la anotación "`service.beta.kubernetes.io/aws-load-balancer-ssl-negotiation-policy`", por ejemplo:
+
+```yaml
+metadata:
+  name: mi-servicio
+  annotations:
+    service.beta.kubernetes.io/aws-load-balancer-ssl-negotiation-policy: "ELBSecurityPolicy-TLS-1-2-2017-01"
+```
+
+#### Soporte de Protocolo PROXY en AWS
+
+Para habilitar el soporte para el [protocolo PROXY](https://www.haproxy.org/download/1.8/doc/proxy-protocol.txt) en clústeres corriendo en AWS, puedes usar la siguiente anotación para el servicio:
+
+```yaml
+metadata:
+  name: mi-servicio
+  annotations:
+    service.beta.kubernetes.io/aws-load-balancer-proxy-protocol: "*"
+```
+
+A partir de la versión 1.3.0, el uso de esta anotación aplica para todos los puertos proxy del ELB y no puede ser configurado de otra manera.
+
+#### Acceso a los logs ELB en AWS
+
+Existen algunas anotaciones para administrar el acceso a los logs para Services ELB en AWS.
+
+La anotación `service.beta.kubernetes.io/aws-load-balancer-access-log-enabled` controla si el acceso a los logs están habilitados.
+
+La anotación `service.beta.kubernetes.io/aws-load-balancer-access-log-emit-interval`
+controla el intervalo en minutos para publicar los logs de acceso. Puedes especificar un intervalo de 5 0 60 minutos.
+
+La anotación `service.beta.kubernetes.io/aws-load-balancer-access-log-s3-bucket-name`
+controla el nombre del bucket de Amazon S3 donde se almacenan los logs del balanceador de carga.
+
+La anotación `service.beta.kubernetes.io/aws-load-balancer-access-log-s3-bucket-prefix`
+especifica la jerarquía lógica que has creado para tu bucket de Amazon S3.
+
+```yaml
+metadata:
+  name: mi-servicio
+  annotations:
+    service.beta.kubernetes.io/aws-load-balancer-access-log-enabled: "true"
+    # Especifica si está habilitado el acceso a los logs
+    service.beta.kubernetes.io/aws-load-balancer-access-log-emit-interval: "60"
+    # EL intervalo para publicar los logs de acceso. Puedes especificar un intervalo de 5 o 60 (minutos)
+    service.beta.kubernetes.io/aws-load-balancer-access-log-s3-bucket-name: "my-bucket"
+    # El nombre del bucket S· de Amazon donde se almacenan los logs de acceso
+    service.beta.kubernetes.io/aws-load-balancer-access-log-s3-bucket-prefix: "my-bucket-prefix/prod"
+    # La jerarquía lógica que has creado para tu bucket S3 de Amazon, por ejemplo `my-bucket-prefix/prod`
+```
+
+#### Drenaje de conexión en AWS
+
+Drenaje de conexión para ELBs clásicos se puede administrar con la anotación
+`service.beta.kubernetes.io/aws-load-balancer-connection-draining-enabled` fijada al valor `"true"`.
+La anotación `service.beta.kubernetes.io/aws-load-balancer-connection-draining-timeout` puede
+ser usada también para establecer el tiempo máximo, en segundos, para mantener las conexiones existentes antes de dar de baja las instancias.
+
+```yaml
+metadata:
+  name: mi-servicio
+  annotations:
+    service.beta.kubernetes.io/aws-load-balancer-connection-draining-enabled: "true"
+    service.beta.kubernetes.io/aws-load-balancer-connection-draining-timeout: "60"
+```
+
+#### Otras anotaciones ELB
+
+Existen otras anotaciones para administrar Classic Elastic Load Balancers que se describen abajo.
+
+```yaml
+metadata:
+  name: mi-servicio
+  annotations:
+    service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: "60"
+    # El tiempo, en segundos, que se permite a una conexión estar en reposo (no se han enviado datos sobre la conexión) antes que sea cerrada por el balanceador de carga
+
+    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
+    # Especifica si el balanceo de cargas entre zonas está habilitado para el balanceador de carga
+
+    service.beta.kubernetes.io/aws-load-balancer-additional-resource-tags: "environment=prod,owner=devops"
+    # Un listado separado por comas de valores de clave-valor que será guardados como etiquetas adicionales en el ELB.
+
+    service.beta.kubernetes.io/aws-load-balancer-healthcheck-healthy-threshold: ""
+    # El número de comprobaciones de estado exitosas sucesivas requeridas para considerar sano para el tráfico a un backend.
+    # Por defecto es 2, debe ser entre 2 y 10
+
+    service.beta.kubernetes.io/aws-load-balancer-healthcheck-unhealthy-threshold: "3"
+    # El número de comprobaciones de estado fallidas requeridas para considerar a un backend no apto para el tráfico.
+    # Por defecto es 6, debe ser entre 2 y 10
+
+    service.beta.kubernetes.io/aws-load-balancer-healthcheck-interval: "20"
+    # EL intervalo aproximado, en segundos, entre comprobaciones de estados de una instancia individual.
+    # Por defecto es 10, debe ser entre 5 y 300.
+
+    service.beta.kubernetes.io/aws-load-balancer-healthcheck-timeout: "5"
+    # La cantidad de tiempo, en segundos, durante el cual no recibir respuesta significa una comprobación de estado fallida.
+    # Este valor debe ser menor que el valor de service.beta.kubernetes.io/aws-load-balancer-healthcheck-interval
+    # Por defecto es 5, debe estar entre 2 y 60
+
+    service.beta.kubernetes.io/aws-load-balancer-security-groups: "sg-53fae93f"
+    # Un listado de grupos de seguridad existentes para configurar en el ELB creado. A diferencia de la anotación
+    # service.beta.kubernetes.io/aws-load-balancer-extra-security-groups, esta reemplaza todos los grupos de seguridad previamente asignados al ELB y también sobreescribe la creación de un grupo de seguridad creado únicamente para este ELB.
+    # El primer ID grupo de seguridad en esta lista se utiliza para permitir tráfico de entrada a los nodos workers objetivo (tráfico de servicio y comprobaciones de estados).
+    # Si se configuran múltiples ELBs con el mismo grupo de seguridad, solo una única línea de permisos será añadida a los grupos de seguridad del nodo worker, lo que significa que si eliminas cualquiera de esos ELBs removerá la línea de permisos y bloqueará el acceso para todos los ELBs que comparten el mismo ID de seguridad de grupo.
+    # Esto puede ocasionar cortes entre servicios si no se usa apropiadamente
+
+    service.beta.kubernetes.io/aws-load-balancer-extra-security-groups: "sg-53fae93f,sg-42efd82e"
+    # Un listado adicional de grupos de seguridad para añadir al ELB creado, esto deja un grupo de seguridad creado únicamente, asegurando que cada ELB tiene un ID de grupo de seguridad único que coincide con la línea de permiso para permitir tráfico a los nodos worker objetivo (tráfico de servicio y comprobaciones de estados)
+    # Grupos de seguridad definidos se pueden compartir entre servicios.
+
+    service.beta.kubernetes.io/aws-load-balancer-target-node-labels: "ingress-gw,gw-name=public-api"
+    # Un listado separado por comas de clave-valor que se utilizan para seleccionar los nodos objetivos para el balanceador de carga
+```
+
+#### Soporte para Balanceador de Carga de Red (NLB) en AWS {#aws-nlb-support}
+
+{{< feature-state for_k8s_version="v1.15" state="beta" >}}
+Para usar un balanceador de carga de Red en AWS, usa la anotación `service.beta.kubernetes.io/aws-load-balancer-type` con el valor fijado a `nlb`.
+
+```yaml
+metadata:
+  name: mi-servicio
+  annotations:
+    service.beta.kubernetes.io/aws-load-balancer-type: "nlb"
+```
+
+{{< note >}}
+
+NLB solo funciona con ciertas clases de instancias; mira la [documentación AWS](https://docs.aws.amazon.com/elasticloadbalancing/latest/network/target-group-register-targets.html#register-deregister-targets) sobre balanceo de cargas elástico para un listado de tipos de instancia soportados.
+{{< /note >}}
+
+A diferencia de los balanceadores de cargas, el balanceador de carga de red (NLB) reenvía la dirección IP del cliente a través del nodo. Si el campo `.spec.externalTrafficPolicy` está fijado a `clúster`, la dirección IP del cliente no es propagada a los Pods finales.
+
+Al fijar `.spec.externalTrafficPolicy` en `Local`, la dirección IP del cliente se propaga a los Pods finales,
+pero esto puede resultar a una distribución de tráfico desigual. Los nodos sin ningún Pod para un Service particular de tipo LoadBalancer fallarán en la comprobación de estado del grupo objetivo del NLB en el puerto `.spec.healthCheckNodePort` y no recibirán ningún tráfico.
+
+Para conseguir trafico equilibrado, usa un DaemonSet o especifica [pod anti-affinity](/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity) para no localizar en el mismo nodo.
+
+También puedes usar Services NLB con la anotación del [balanceador de carga interno](/docs/concepts/services-networking/service/#internal-load-balancer)
+
+Para permitir que el tráfico del cliente alcance las instancias detrás del NLB, los grupos de seguridad del Nodo se modifican con las siguientes reglas de IP:
+
+| Regla           | Protocolo | Puerto(s)                                                                             | Rango de IP(s)                                                 | Descripción del Rango de IP                                 |
+| -------------- | -------- | ----------------------------------------------------------------------------------- | ---------------------------------------------------------- | -------------------------------------------------- |
+| Health Check   | TCP      | NodePort(s) (`.spec.healthCheckNodePort` para `.spec.externalTrafficPolicy = Local`) | Subnet CIDR                                                | kubernetes.io/rule/nlb/health=\<loadBalancerName\> |
+| Tráfico del Cliente | TCP      | NodePort(s)                                                                         | `.spec.loadBalancerSourceRanges` (por defecto en `0.0.0.0/0`) | kubernetes.io/rule/nlb/client=\<loadBalancerName\> |
+| MTU Discovery  | ICMP     | 3,4                                                                                 | `.spec.loadBalancerSourceRanges` (por defecto en `0.0.0.0/0`) | kubernetes.io/rule/nlb/mtu=\<loadBalancerName\>    |
+
+Para limitar cuáles IPs del cliente pueden acceder al balanceador de carga de red, especifica  `loadBalancerSourceRanges`.
+
+```yaml
+spec:
+  loadBalancerSourceRanges:
+    - "143.231.0.0/16"
+```
+
+{{< note >}}
+Si no se establece `.spec.loadBalancerSourceRanges`, Kubernetes permite el tráfico
+desde  `0.0.0.0/0` a los Grupos de Seguridad del Nodo. Si los nodos tienen direcciones IP públicas, ten en cuenta que el tráfico que no viene del NLB
+también puede alcanzar todas las instancias en esos grupos de seguridad modificados.
+{{< /note >}}
+
+#### Otras anotaciones CLS en Tencent Kubernetes Engine (TKE)
+
+Hay otras anotaciones para administrar balanceadores de carga en la nube en TKE como se muestra abajo.
+
+
+```yaml
+    metadata:
+      name: mi-servicio
+      annotations:
+        # Enlaza Loadbalancers con nodos específicos
+        service.kubernetes.io/qcloud-loadbalancer-backends-label: key in (value1, value2)
+
+        # Identificador de un balanceador de carga existente
+        service.kubernetes.io/tke-existed-lbid：lb-6swtxxxx
+
+        #Parámetros personalizados para el balanceador de cargas (LB), no soporta la modificación del tipo de LB todavía
+        service.kubernetes.io/service.extensiveParameters: ""
+
+        # Parámetros personalizados para el listener LB
+        service.kubernetes.io/service.listenerParameters: ""
+
+        # Especifica el tipo de balanceador de carga;
+        # valores válidos: clásico (Balanceador de Carga clásico) o aplicación (Balanceador de Carga de aplicación de la nube)
+        service.kubernetes.io/loadbalance-type: xxxxx
+
+        # Especifica método de pago el ancho de banda de la red pública;
+        # valores válidos: TRAFFIC_POSTPAID_BY_HOUR(bill-by-traffic) y BANDWIDTH_POSTPAID_BY_HOUR (bill-by-bandwidth).
+        service.kubernetes.io/qcloud-loadbalancer-internet-charge-type: xxxxxx
+
+        # Especifica el valor del ancho de banda (rango valor: [1,2000] Mbps).
+        service.kubernetes.io/qcloud-loadbalancer-internet-max-bandwidth-out: "10"
+
+        # Cuando se fija esta anotación, los balanceadores de carga solo registrarán nodos con Pods corriendo en él, de lo contrario todos los nodos serán registrados.
+        service.kubernetes.io/local-svc-only-bind-node-with-pod: true
+```
+
+### Tipo ExternalName {#externalname}
+
+Los Services de tipo ExternalName mapean un Service a un nombre DNS, no a un selector típico como `mi-servicio` o `cassandra`. Estos Services se especifican con el parámetro `spec.externalName`.
+
+Esta definición de Service, por ejemplo, mapea el Service `mi-Servicio` en el namespace `prod` a `my.database.example.com`:
+
+```yaml
+apiVersion: v1
+kind: Service
+metadata:
+  name: mi-servicio
+  namespace: prod
+spec:
+  type: ExternalName
+  externalName: my.database.example.com
+```
+
+{{< note >}}
+ExternalName acepta una cadena de texto IPv4, pero como un nombre DNS compuesto de dígitos, no como una dirección IP. ExternalNames que se parecen a direcciones IPv4 no se resuelven por el CoreDNS o ingress-nginx, ya que ExternalName se usa para especificar un nombre DNS canónico. Al fijar una dirección IP, considera usar [headless Services](#headless-services).
+{{< /note >}}
+
+Cuando busca el host `mi-servicio.prod.svc.cluster.local`, el Service DNS del clúster devuelve un registro `CNAME` con el valor `my.database.example.com`. Acceder a `mi-servicio` funciona de la misma manera que otros Services, pero con la diferencia crucial de que la redirección ocurre a nivel del DNS en lugar reenviarlo o redirigirlo. Si posteriormente decides mover tu base de datos al clúster, puedes iniciar sus Pods, agregar selectores apropiados o endpoints, y cambiar el `type` del Service.
+
+
+{{< warning >}}
+Podrías tener problemas al usar ExternalName para algunos protocolos comunes, incluyendo HTTP y HTTPS, si usas ExternalName entonces el nombre del host usado por los clientes dentro de tu clúster es diferente del nombre al que hace referencia el ExternalName.
+
+Para protocolos que usan el nombre del host esta diferencia puede llevar a errores o respuestas inesperadas. Las peticiones HTTP tendrán un encabezado `Host:` que el servidor de origen no reconocerá; los servidores TLS no serán capaces de proveer un certificado que coincida con el nombre del host al que el cliente está conectado.
+{{< /warning >}}
+
+{{< note >}}
+Esta sección está en deuda con el artículo de blog [Kubernetes Tips - Part 1](https://akomljen.com/kubernetes-tips-part-1/) de [Alen Komljen](https://akomljen.com/).
+{{< /note >}}
+
+### IPs Externas
+
+Si existen IPs externas que enrutan hacia uno o más nodos del clúster, los Services de Kubernetes pueden ser expuestos en esas `externalIPs`. El tráfico que ingresa al clúster con la IP externa (como IP de destino), en el puerto del Service, será enrutado a uno de estos endpoints del Service. Las `externalIPs` no son administradas por Kubernetes y son responsabilidad del administrador del clúster.
+
+En la especificación del Service, las `externalIPs` se pueden especificar junto con cualquiera de los `ServiceTypes`.
+En el ejemplo de abajo, "`mi-servicio`" puede ser accedido por clientes en "`80.11.12.10:80`" (`externalIP:port`)
+
+```yaml
+apiVersion: v1
+kind: Service
+metadata:
+  name: mi-servicio
+spec:
+  selector:
+    app.kubernetes.io/name: MyApp
+  ports:
+    - name: http
+      protocol: TCP
+      port: 80
+      targetPort: 9376
+  externalIPs:
+    - 80.11.12.10
+```
+
+## Limitaciones
+
+Usar el proxy del userspace for VIPs funciona en pequeña y mediana escala, pero no escalará a clústeres muy grandes con miles de Services. El tópico [original design proposal for portals](https://github.com/kubernetes/kubernetes/issues/1107) tiene más detalles sobre esto.
+
+Usar el proxy del userspace oculta la dirección IP de origen de un paquete que accede al Service. Esto hace que algún tipo de filtrado (firewalling) sea imposible. El modo proxy iptables no oculta IPs de origen en el clúster, pero aún tiene impacto en clientes que vienen desde un balanceador de carga o un node-port.
+
+El campo `Type` está diseñado como una funcionalidad anidada - cada nivel se agrega al anterior. Esto no es estrictamente requerido en todos los proveedores de la nube (ej. Google Compute Engine no necesita asignar un `NodePort` para que funcione el `LoadBalancer`, pero AWS si) pero la API actual lo requiere.
+
+## Implementación de IP Virtual {#the-gory-details-of-virtual-ips}
+
+La información previa sería suficiente para muchas personas que quieren usar Services. Sin embargo, ocurren muchas cosas detrás de bastidores que valdría la pena entender.
+
+### Evitar colisiones
+
+Una de las principales filosofías de Kubernetes es que no debe estar expuesto a situaciones que podrían hacer que sus acciones fracasen por su propia culpa. Para el diseño del recurso de Service, esto significa no obligarlo a elegir su propio número de puerto si esa elección puede colisionar con la de otra persona. Eso es un fracaso de aislamiento.
+
+Para permitirte elegir un número de puerto en tus Services, debemos asegurarnos que dos Services no puedan colisionar. Kubernetes lo hace asignando a cada Service su propia dirección IP.
+
+Para asegurarse que cada Service recibe una IP única, un asignador interno actualiza atómicamente el mapa global de asignaciones en {{< glossary_tooltip term_id="etcd" >}} antes de crear cada Service. El objeto mapa debe existir en el registro para que los Services obtengan asignaciones de dirección IP, de lo contrario las creaciones fallarán con un mensaje indicando que la dirección IP no pudo ser asignada.
+
+En el plano de control, un controlador de trasfondo es responsable de crear el mapa (requerido para soportar la migración desde versiones más antiguas de Kubernetes que usaban bloqueo en memoria). Kubernetes también utiliza controladores para revisar asignaciones inválidas (ej. debido a la intervención de un administrador) y para limpiar las direcciones IP que ya no son usadas por ningún Service.
+
+### Direcciones IP del Service {#ips-and-vips}
+
+A diferencia de direcciones IP del Pod, que enrutan a un destino fijo, las IPs del Service no son respondidas por ningún host. En lugar de ello, El kube-proxy usa iptables (lógica de procesamiento de paquetes en Linux) para definir direcciones IP _virtuales_ que se redirigen de forma transparente cuando se necesita. Cuando el cliente se conecta con la VIP, su tráfico es transportado automáticamente al endpoint apropiado. Las variables de entorno y DNS para los Services son pobladas en términos de la dirección IP virtual del Service (y el puerto).
+
+Kube-proxy soporta tres modos &mdash; userspace, iptables e IPVS &mdash; los cuales operan ligeramente diferente cada uno.
+
+#### Userspace
+
+Por ejemplo, considera la aplicación de procesamiento de imágenes descrita arriba. Cuando el Service del backend es creado, el nodo maestro de Kubernetes asigna una dirección IP virtual, por ejemplo 10.0.0.1. Asumiendo que el puerto del Service es 1234, el Service es observado por todas las instancias del kube-proxy en el clúster. Cuando un proxy mira un nuevo Service, abre un puerto al azar, establece una redirección iptables desde la dirección IP virtual a este nuevo puerto, y comienza a aceptar conexiones a este.
+
+Cuando un cliente se conecta a la dirección IP virtual del Service, la regla de iptables entra en acción, y redirige los paquetes al propio puerto del proxy. El "proxy del Service" elige un backend, y comienza a redirigir el tráfico desde el cliente al backend.
+
+Esto quiere decir que los dueños del Service pueden elegir cualquier puerto que quieran sin riesgo de colisión. Los clientes pueden conectarse a una IP y un puerto, sin estar conscientes de a cuáles Pods están accediendo.
+
+#### iptables
+
+Nuevamente, considera la aplicación de procesamiento de imágenes descrita arriba. Cuando se crea el Service Backend, el plano de control de Kubernetes asigna una dirección IP virtual, por ejemplo 10.0.0.1. Asumiendo que el puerto del servicio es 1234, el Service es observado por todas las instancias del kube-proxy en el clúster. Cuando un proxy mira un nuevo Service, instala una serie de reglas de iptables que redirigen desde la dirección IP virtual a las reglas del Service. Las reglas del Service enlazan a las reglas del Endpoint que redirigen el tráfico (usando NAT de destino) a los backends.
+
+Cuando un cliente se conecta a la dirección IP virtual del Service la regla de iptables son aplicadas. A diferencia del modo proxy userspace, el kube-proxy no tiene que estar corriendo para que funcione la dirección IP virtual, y los nodos observan el tráfico que viene desde la dirección IP del cliente sin alteraciones.
+
+El mismo flujo básico se ejecuta cuando el tráfico viene a través de un node-port o de un balanceador de carga, aunque en estos casos la IP del cliente es alterada.
+
+#### IPVS
+
+Las operaciones iptables ralentizan dramáticamente en un clúster a gran escala, ej. 10.000 Services. IPVS está diseñado para balancear cargas y está basado en tablas hash dentro del kernel. De esta manera puedes alcanzar consistencia en el desempeño en un número grande de Services de un kube-proxy basado en IPVS. Mientras tanto, el kube-proxy basado en IPVS tiene algoritmos de balanceo de cargas más sofisticados (least conns, locality, weighted, persistence).
+
+## Objeto API
+
+El Service es un recurso de alto nivel en la API REST de Kubernetes. Puedes encontrar más detalles sobre el objeto API en: [Objeto API Service API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#service-v1-core).
+
+## Protocolos soportados {#protocol-support}
+
+### TCP
+
+Puedes usar TPC para cualquier tipo de Service, y es el protocolo de red por defecto.
+
+### UDP
+
+Puedes usar UDP para la mayoría de los Services. Para Services type=LoadBalancer, el soporte UDP depende del proveedor de la nube que ofrece esta facilidad.
+
+### SCTP
+
+{{< feature-state for_k8s_version="v1.20" state="stable" >}}
+Cuando usas un plugin de red que soporta tráfico SCTP, puedes usar SCTP para la mayoría de los Services. Para Services type=LoadBalancer, el soporte SCTP depende del proveedor de la nube que ofrece esta facilidad. (La mayoría no lo hace)
+
+#### Advertencias {#caveat-sctp-overview}
+
+##### Soporte para asociaciones SCTP multihomed {#caveat-sctp-multihomed}
+
+{{< warning >}}
+El soporte para asociaciones SCTP multihomed requiere que el plugin CNI pueda soportar la asignación de múltiples interfaces y direcciones IP a un Pod.
+
+NAT para asociaciones SCTP multihomed requiere una lógica especial en los módulos del kernel correspondientes.
+{{< /warning >}}
+
+##### Windows {#caveat-sctp-windows-os}
+
+{{< note >}}
+SCTP no está soportado en nodos basados en Windows.
+{{< /note >}}
+
+##### Userspace kube-proxy {#caveat-sctp-kube-proxy-userspace}
+
+{{< warning >}}
+El kube-proxy no soporta la administración de asociaciones SCTP cuando está en el modo userspace.
+{{< /warning >}}
+
+### HTTP
+Si tu proveedor de la nube lo soporta, puedes usar un Service en modo LoadBalancer para configurar un proxy invertido HTTP/HTTPS, redirigido a los Endpoints del Service.
+
+{{< note >}}
+También puedes usar {{< glossary_tooltip term_id="ingress" >}} en lugar de un Service para exponer Services HTTP/HTTPS.
+{{< /note >}}
+
+### Protocolo PROXY
+Si tu proveedor de la nube lo soporta, puedes usar un Service en modo LoadBalancer para configurar un balanceador de carga fuera de Kubernetes mismo, que redirigirá las conexiones prefijadas con [protocolo PROXY](https://www.haproxy.org/download/1.8/doc/proxy-protocol.txt).
+
+El balanceador de carga enviará una serie inicial de octetos describiendo la conexión entrante, similar a este ejemplo
+
+```
+PROXY TCP4 192.0.2.202 10.0.42.7 12345 7\r\n
+```
+
+Seguido de la data del cliente.
+
+## {{% heading "whatsnext" %}}
+
+- Leer sobre [Conectar aplicaciones con Services](/docs/concepts/services-networking/connect-applications-service/)
+- Leer sobre [Ingress](/docs/concepts/services-networking/ingress/)
+- Leer sobre [EndpointSlices](/docs/concepts/services-networking/endpoint-slices/)
diff --git a/content/es/docs/concepts/storage/dynamic-provisioning.md b/content/es/docs/concepts/storage/dynamic-provisioning.md
new file mode 100644
index 0000000000..2a8b40461a
--- /dev/null
+++ b/content/es/docs/concepts/storage/dynamic-provisioning.md
@@ -0,0 +1,102 @@
+---
+reviewers:
+  - edithturn
+  - raelga
+  - electrocucaracha
+title: Aprovisionamiento Dinámico de volumen
+content_type: concept
+weight: 40
+---
+
+<!-- overview -->
+
+El aprovisionamiento dinámico de volúmenes permite crear volúmenes de almacenamiento bajo demanda. Sin el aprovisionamiento dinámico, los administradores de clústeres tienen que realizar llamadas manualmente a su proveedor de almacenamiento o nube para crear nuevos volúmenes de almacenamiento y luego crear [objetos de `PersistentVolume`](/docs/concepts/storage/persistent-volumes/)
+para representarlos en Kubernetes. La función de aprovisionamiento dinámico elimina la necesidad de que los administradores del clúster aprovisionen previamente el almacenamiento. En cambio, el aprovisionamiento ocurre automáticamente cuando los usuarios lo solicitan.
+
+<!-- body -->
+
+## Antecedentes
+
+La implementación del aprovisionamiento dinámico de volúmenes se basa en el objeto API `StorageClass`
+del grupo API `storage.k8s.io`. Un administrador de clúster puede definir tantos objetos
+`StorageClass` como sea necesario, cada uno especificando un _volume plugin_ (aka
+_provisioner_) que aprovisiona un volumen y el conjunto de parámetros para pasar a ese aprovisionador. Un administrador de clúster puede definir y exponer varios tipos de almacenamiento (del mismo o de diferentes sistemas de almacenamiento) dentro de un clúster, cada uno con un conjunto personalizado de parámetros. Este diseño también garantiza que los usuarios finales no tengan que preocuparse por la complejidad y los matices de cómo se aprovisiona el almacenamiento, pero que aún tengan la capacidad de seleccionar entre múltiples opciones de almacenamiento.
+
+Puede encontrar más información sobre las clases de almacenamiento
+[aqui](/docs/concepts/storage/storage-classes/).
+
+## Habilitación del aprovisionamiento dinámico
+
+Para habilitar el aprovisionamiento dinámico, un administrador de clúster debe crear previamente uno o más objetos StorageClass para los usuarios. Los objetos StorageClass definen qué aprovisionador se debe usar y qué parámetros se deben pasar a ese aprovisionador cuando se invoca el aprovisionamiento dinámico.
+El nombre de un objeto StorageClass debe ser un
+[nombre de subdominio de DNS](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names) válido.
+
+El siguiente manifiesto crea una clase de almacenamiento llamada "slow" que aprovisiona discos persistentes estándar similares a discos.
+
+```yaml
+apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: slow
+provisioner: kubernetes.io/gce-pd
+parameters:
+  type: pd-standard
+```
+
+El siguiente manifiesto crea una clase de almacenamiento llamada "fast" que aprovisiona discos persistentes similares a SSD.
+
+```yaml
+apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: fast
+provisioner: kubernetes.io/gce-pd
+parameters:
+  type: pd-ssd
+```
+
+## Usar Aprovisionamiento Dinámico
+
+Los usuarios solicitan almacenamiento aprovisionado dinámicamente al incluir una clase de almacenamiento en su `PersistentVolumeClaim`. Antes de Kubernetes v1.6, esto se hacía a través del la anotación
+`volume.beta.kubernetes.io/storage-class`. Sin embargo, esta anotación está obsoleta desde v1.9. Los usuarios ahora pueden y deben usar el campo
+`storageClassName` del objeto `PersistentVolumeClaim`. El valor de este campo debe coincidir con el nombre de un `StorageClass` configurada por el administrador
+(ver [documentación](#habilitación-del-aprovisionamiento-dinámico)).
+
+Para seleccionar la clase de almacenamiento llamada "fast", por ejemplo, un usuario crearía el siguiente PersistentVolumeClaim:
+
+```yaml
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: claim1
+spec:
+  accessModes:
+    - ReadWriteOnce
+  storageClassName: fast
+  resources:
+    requests:
+      storage: 30Gi
+```
+
+Esta afirmación da como resultado que se aprovisione automáticamente un disco persistente similar a SSD. Cuando se elimina la petición, se destruye el volumen.
+
+## Comportamiento Predeterminado
+
+El aprovisionamiento dinámico se puede habilitar en un clúster de modo que todas las peticiones se aprovisionen dinámicamente si no se especifica una clase de almacenamiento. Un administrador de clúster puede habilitar este comportamiento al:
+
+- Marcar un objeto `StorageClass` como _default_;
+- Asegúrese de que el [controlador de admisión `DefaultStorageClass`](/docs/reference/access-authn-authz/admission-controllers/#defaultstorageclass) esté habilitado en el servidor de API.
+
+Un administrador puede marcar un `StorageClass` específico como predeterminada agregando la anotación
+`storageclass.kubernetes.io/is-default-class`.
+Cuando existe un `StorageClass` predeterminado en un clúster y un usuario crea un
+`PersistentVolumeClaim` con `storageClassName` sin especificar, el controlador de admisión
+`DefaultStorageClass` agrega automáticamente el campo
+`storageClassName` que apunta a la clase de almacenamiento predeterminada.
+
+Tenga en cuenta que puede haber como máximo una clase de almacenamiento _default_, o un `PersistentVolumeClaim` sin `storageClassName` especificado explícitamente.
+
+## Conocimiento de la Topología
+
+En los clústeres [Multi-Zone](/docs/setup/multiple-zones), los Pods se pueden distribuir en zonas de una región. Los backends de almacenamiento de zona única deben aprovisionarse en las zonas donde se programan los Pods. Esto se puede lograr configurando el [Volume Binding
+Mode](/docs/concepts/storage/storage-classes/#volume-binding-mode).
diff --git a/content/es/docs/concepts/storage/storage-capacity.md b/content/es/docs/concepts/storage/storage-capacity.md
new file mode 100644
index 0000000000..e729232844
--- /dev/null
+++ b/content/es/docs/concepts/storage/storage-capacity.md
@@ -0,0 +1,74 @@
+---
+reviewers:
+  - edithturn
+  - raelga
+  - electrocucaracha
+title: Capacidad de Almacenamiento
+content_type: concept
+weight: 45
+---
+
+<!-- overview -->
+
+La capacidad de almacenamiento es limitada y puede variar según el nodo en el que un Pod se ejecuta: es posible que no todos los nodos puedan acceder al almacenamiento conectado a la red o que, para empezar, el almacenamiento sea local en un nodo.
+
+{{< feature-state for_k8s_version="v1.21" state="beta" >}}
+
+Esta página describe cómo Kubernetes realiza un seguimiento de la capacidad de almacenamiento y cómo el planificador usa esa información para programar Pods en nodos que tienen acceso a suficiente capacidad de almacenamiento para los volúmenes restantes que faltan. Sin el seguimiento de la capacidad de almacenamiento, el planificador puede elegir un nodo que no tenga suficiente capacidad para aprovisionar un volumen y se necesitarán varios reintentos de planificación.
+
+El seguimiento de la capacidad de almacenamiento es compatible con los controladores de la {{< glossary_tooltip
+text="Interfaz de Almacenamiento de Contenedores" term_id="csi" >}} (CSI) y
+[necesita estar habilitado](#enabling-storage-capacity-tracking) al instalar un controlador CSI.
+
+<!-- body -->
+
+## API
+
+Hay dos extensiones de API para esta función:
+
+- Los objetos CSIStorageCapacity:
+  son producidos por un controlador CSI en el Namespace donde está instalado el controlador. Cada objeto contiene información de capacidad para una clase de almacenamiento y define qué nodos tienen acceso a ese almacenamiento.
+- [El campo `CSIDriverSpec.StorageCapacity`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#csidriverspec-v1-storage-k8s-io):
+  cuando se establece en `true`, el [Planificador de Kubernetes](/docs/concepts/scheduling-eviction/kube-scheduler/) considerará la capacidad de almacenamiento para los volúmenes que usan el controlador CSI.
+
+## Planificación
+
+El planificador de Kubernetes utiliza la información sobre la capacidad de almacenamiento si:
+
+- la Feature gate de `CSIStorageCapacity` es `true`,
+- un Pod usa un volumen que aún no se ha creado,
+- ese volumen usa un {{< glossary_tooltip text="StorageClass" term_id="storage-class" >}} que hace referencia a un controlador CSI y usa el [modo de enlace de volumen] (/docs/concepts/storage/storage-classes/#volume-binding-mode)`WaitForFirstConsumer`,
+  y
+- el objeto `CSIDriver` para el controlador tiene `StorageCapacity` establecido en `true`.
+
+En ese caso, el planificador sólo considera los nodos para el Pod que tienen suficiente almacenamiento disponible. Esta verificación es muy simplista y solo compara el tamaño del volumen con la capacidad indicada en los objetos `CSIStorageCapacity` con una topología que incluye el nodo.
+
+Para los volúmenes con el modo de enlace de volumen `Immediate`, el controlador de almacenamiento decide dónde crear el volumen, independientemente de los pods que usarán el volumen.
+Luego, el planificador programa los pods en los nodos donde el volumen está disponible después de que se haya creado.
+
+Para los [volúmenes efímeros de CSI](/docs/concepts/storage/volumes/#csi),
+la planificación siempre ocurre sin considerar la capacidad de almacenamiento. Esto se basa en la suposición de que este tipo de volumen solo lo utilizan controladores CSI especiales que son locales a un nodo y no necesitan allí recursos importantes.
+
+## Replanificación
+
+Cuando se selecciona un nodo para un Pod con volúmenes `WaitForFirstConsumer`, esa decisión sigue siendo tentativa. El siguiente paso es que se le pide al controlador de almacenamiento CSI que cree el volumen con una pista de que el volumen está disponible en el nodo seleccionado.
+
+Debido a que Kubernetes pudo haber elegido un nodo basándose en información de capacidad desactualizada, es posible que el volumen no se pueda crear realmente. Luego, la selección de nodo se restablece y el planificador de Kubernetes intenta nuevamente encontrar un nodo para el Pod.
+
+## Limitaciones
+
+El seguimiento de la capacidad de almacenamiento aumenta las posibilidades de que la planificación funcione en el primer intento, pero no puede garantizarlo porque el planificador tiene que decidir basándose en información potencialmente desactualizada. Por lo general, el mismo mecanismo de reintento que para la planificación sin información de capacidad de almacenamiento es manejado por los errores de planificación.
+
+Una situación en la que la planificación puede fallar de forma permanente es cuando un pod usa varios volúmenes: es posible que un volumen ya se haya creado en un segmento de topología que luego no tenga suficiente capacidad para otro volumen. La intervención manual es necesaria para recuperarse de esto, por ejemplo, aumentando la capacidad o eliminando el volumen que ya se creó. [
+Trabajo adicional](https://github.com/kubernetes/enhancements/pull/1703) para manejar esto automáticamente.
+
+## Habilitación del seguimiento de la capacidad de almacenamiento
+
+El seguimiento de la capacidad de almacenamiento es una función beta y está habilitada de forma predeterminada en un clúster de Kubernetes desde Kubernetes 1.21. Además de tener la función habilitada en el clúster, un controlador CSI también tiene que admitirlo. Consulte la documentación del controlador para obtener más detalles.
+
+## {{% heading "whatsnext" %}}
+
+- Para obtener más información sobre el diseño, consulte las
+  [Restricciones de Capacidad de Almacenamiento para la Planificación de Pods KEP](https://github.com/kubernetes/enhancements/blob/master/keps/sig-storage/1472-storage-capacity-tracking/README.md).
+- Para obtener más información sobre un mayor desarrollo de esta función, consulte [problema de seguimiento de mejoras #1472](https://github.com/kubernetes/enhancements/issues/1472).
+- Aprender sobre [Planificador de Kubernetes](/docs/concepts/scheduling-eviction/kube-scheduler/)
diff --git a/content/es/docs/concepts/storage/storage-limits.md b/content/es/docs/concepts/storage/storage-limits.md
new file mode 100644
index 0000000000..4a62a27c94
--- /dev/null
+++ b/content/es/docs/concepts/storage/storage-limits.md
@@ -0,0 +1,63 @@
+---
+title: Límites de Volumen específicos del Nodo
+content_type: concept
+---
+
+<!-- overview -->
+
+Esta página describe la cantidad máxima de Volúmenes que se pueden adjuntar a un Nodo para varios proveedores de nube.
+
+Los proveedores de la nube como Google, Amazon y Microsoft suelen tener un límite en la cantidad de Volúmenes que se pueden adjuntar a un Nodo. Es importante que Kubernetes respete esos límites. De lo contrario, los Pods planificados en un Nodo podrían quedarse atascados esperando que los Volúmenes se conecten.
+
+
+
+<!-- body -->
+
+## Límites predeterminados de Kubernetes
+
+El Planificador de Kubernetes tiene límites predeterminados en la cantidad de Volúmenes que se pueden adjuntar a un Nodo:
+
+<table>
+  <tr><th>Servicio de almacenamiento en la nube</th><th>Volúmenes máximos por Nodo</th></tr>
+  <tr><td><a href="https://aws.amazon.com/ebs/">Amazon Elastic Block Store (EBS)</a></td><td>39</td></tr>
+  <tr><td><a href="https://cloud.google.com/persistent-disk/">Google Persistent Disk</a></td><td>16</td></tr>
+  <tr><td><a href="https://azure.microsoft.com/en-us/services/storage/main-disks/">Microsoft Azure Disk Storage</a></td><td>16</td></tr>
+</table>
+
+## Límites personalizados
+
+Puede cambiar estos límites configurando el valor de la variable de entorno KUBE_MAX_PD_VOLS y luego iniciando el Planificador. Los controladores CSI pueden tener un procedimiento diferente, consulte su documentación sobre cómo personalizar sus límites.
+
+Tenga cuidado si establece un límite superior al límite predeterminado. Consulte la documentación del proveedor de la nube para asegurarse de que los Nodos realmente puedan admitir el límite que establezca.
+
+El límite se aplica a todo el clúster, por lo que afecta a todos los Nodos.
+
+## Límites de Volumen dinámico
+
+{{< feature-state state="stable" for_k8s_version="v1.17" >}}
+
+Los límites de Volumen dinámico son compatibles con los siguientes tipos de Volumen.
+
+- Amazon EBS
+- Google Persistent Disk
+- Azure Disk
+- CSI
+
+Para los Volúmenes administrados por in-tree plugins de Volumen, Kubernetes determina automáticamente el tipo de Nodo y aplica la cantidad máxima adecuada de Volúmenes para el Nodo. Por ejemplo:
+
+* En
+<a href="https://cloud.google.com/compute/">Google Compute Engine</a>,
+se pueden adjuntar hasta 127 Volúmenes a un Nodo, [según el tipo de Nodo](https://cloud.google.com/compute/docs/disks/#pdnumberlimits).
+
+* Para los discos de Amazon EBS en los tipos de instancias M5,C5,R5,T3 y Z1D, Kubernetes permite que solo se adjunten 25 Volúmenes a un Nodo. Para otros tipos de instancias en 
+<a href="https://aws.amazon.com/ec2/">Amazon Elastic Compute Cloud (EC2)</a>,
+Kubernetes permite adjuntar 39 Volúmenes a un Nodo.
+
+* En Azure, se pueden conectar hasta 64 discos a un Nodo, según el tipo de Nodo. Para obtener más detalles, consulte [Sizes for virtual machines in Azure](https://docs.microsoft.com/en-us/azure/virtual-machines/windows/sizes).
+
+* Si un controlador de almacenamiento CSI anuncia una cantidad máxima de Volúmenes para un Nodo (usando `NodeGetInfo`), el {{< glossary_tooltip text="kube-scheduler" term_id="kube-scheduler" >}} respeta ese límite.
+Consulte las [especificaciones de CSI](https://github.com/container-storage-interface/spec/blob/master/spec.md#nodegetinfo) para obtener más información.
+
+* Para los Volúmenes administrados por in-tree plugins que han sido migrados a un controlador CSI, la cantidad máxima de Volúmenes será la que informe el controlador CSI.
+
+
diff --git a/content/es/docs/concepts/storage/volume-health-monitoring.md b/content/es/docs/concepts/storage/volume-health-monitoring.md
new file mode 100644
index 0000000000..a300368f83
--- /dev/null
+++ b/content/es/docs/concepts/storage/volume-health-monitoring.md
@@ -0,0 +1,36 @@
+---
+reviewers:
+- edithturn
+- raelga
+- electrocucaracha
+title: Supervisión del Estado del Volumen
+content_type: concept
+---
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+
+La supervisión del estado del volumen de {{< glossary_tooltip text="CSI" term_id="csi" >}}  permite que los controladores de CSI detecten condiciones de volumen anómalas de los sistemas de almacenamiento subyacentes y las notifiquen como eventos en {{< glossary_tooltip text="PVCs" term_id="persistent-volume-claim" >}} o {{< glossary_tooltip text="Pods" term_id="pod" >}}.
+
+
+
+<!-- body -->
+
+## Supervisión del Estado del Volumen
+
+El _monitoreo del estado del volumen_ de Kubernetes es parte de cómo Kubernetes implementa la Interfaz de Almacenamiento de Contenedores (CSI). La función de supervisión del estado del volumen se implementa en dos componentes: un controlador de supervisión del estado externo y {{< glossary_tooltip term_id="kubelet" text="Kubelet" >}}.
+
+Si un controlador CSI admite la función supervisión del estado del volumen desde el lado del controlador, se informará un evento en el {{< glossary_tooltip text="PersistentVolumeClaim" term_id="persistent-volume-claim" >}} (PVC) relacionado cuando se detecte una condición de volumen anormal en un volumen CSI.
+
+El {{< glossary_tooltip text="controlador" term_id="controller" >}} de estado externo también observa los eventos de falla del nodo. Se puede habilitar la supervisión de fallas de nodos configurando el indicador `enable-node-watcher` en verdadero. Cuando el monitor de estado externo detecta un evento de falla de nodo, el controlador reporta que se informará un evento en el PVC para indicar que los Pods que usan este PVC están en un nodo fallido.
+
+Si un controlador CSI es compatible con la función monitoreo del estado del volumen desde el lado del nodo, se informará un evento en cada Pod que use el PVC cuando se detecte una condición de volumen anormal en un volumen CSI.
+
+{{< note >}}
+Se necesita habilitar el `CSIVolumeHealth` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) para usar esta función desde el lado del nodo.
+{{< /note >}}
+
+## {{% heading "whatsnext" %}}
+
+Ver la [documentación del controlador CSI](https://kubernetes-csi.github.io/docs/drivers.html) para averiguar qué controladores CSI han implementado esta característica.
diff --git a/content/es/docs/concepts/storage/volume-pvc-datasource.md b/content/es/docs/concepts/storage/volume-pvc-datasource.md
new file mode 100644
index 0000000000..dcb2690d0e
--- /dev/null
+++ b/content/es/docs/concepts/storage/volume-pvc-datasource.md
@@ -0,0 +1,66 @@
+---
+reviewers:
+  - edithturn
+  - raelga
+  - electrocucaracha
+title: Clonación de volumen CSI
+content_type: concept
+weight: 30
+---
+
+<!-- overview -->
+
+Este documento describe el concepto para clonar volúmenes CSI existentes en Kubernetes. Se sugiere estar familiarizado con [Volúmenes](/docs/concepts/storage/volumes).
+
+<!-- body -->
+
+## Introducción
+
+La función de clonación de volumen {{< glossary_tooltip text="CSI" term_id="csi" >}} agrega soporte para especificar {{< glossary_tooltip text="PVC" term_id="persistent-volume-claim" >}}s existentes en el campo `dataSource` para indicar que un usuario desea clonar un {{< glossary_tooltip term_id="volume" >}}.
+
+Un Clon se define como un duplicado de un volumen de Kubernetes existente que se puede consumir como lo sería cualquier volumen estándar. La única diferencia es que al aprovisionar, en lugar de crear un "nuevo" Volumen vacío, el dispositivo de backend crea un duplicado exacto del Volumen especificado.
+
+La implementación de la clonación, desde la perspectiva de la API de Kubernetes, agrega la capacidad de especificar un PVC existente como dataSource durante la creación de un nuevo PVC. El PVC de origen debe estar vinculado y disponible (no en uso).
+
+Los usuarios deben tener en cuenta lo siguiente cuando utilicen esta función:
+
+- El soporte de clonación (`VolumePVCDataSource`) sólo está disponible para controladores CSI.
+- El soporte de clonación sólo está disponible para aprovisionadores dinámicos.
+- Los controladores CSI pueden haber implementado o no la funcionalidad de clonación de volúmenes.
+- Sólo puede clonar un PVC cuando existe en el mismo Namespace que el PVC de destino (el origen y el destino deben estar en el mismo Namespace).
+- La clonación sólo se admite dentro de la misma Clase de Almacenamiento.
+  - El volumen de destino debe ser de la misma clase de almacenamiento que el origen
+  - Se puede utilizar la clase de almacenamiento predeterminada y se puede omitir storageClassName en la especificación
+- La clonación sólo se puede realizar entre dos volúmenes que usan la misma configuración de VolumeMode (si solicita un volumen en modo de bloqueo, la fuente DEBE también ser en modo de bloqueo)
+
+## Aprovisionamiento
+
+Los clones se aprovisionan como cualquier otro PVC con la excepción de agregar un origen de datos que hace referencia a un PVC existente en el mismo Namespace.
+
+```yaml
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: clone-of-pvc-1
+  namespace: myns
+spec:
+  accessModes:
+    - ReadWriteOnce
+  storageClassName: cloning
+  resources:
+    requests:
+      storage: 5Gi
+  dataSource:
+    kind: PersistentVolumeClaim
+    name: pvc-1
+```
+
+{{< note >}}
+Debe especificar un valor de capacidad para `spec.resources.requests.storage` y el valor que especifique debe ser igual o mayor que la capacidad del volumen de origen.
+{{< /note >}}
+
+El resultado es un nuevo PVC con el nombre `clone-of-pvc-1` que tiene exactamente el mismo contenido que la fuente especificada `pvc-1`.
+
+## Uso
+
+Una vez disponible el nuevo PVC, el PVC clonado se consume igual que el resto de PVC. También se espera en este punto que el PVC recién creado sea un objeto independiente. Se puede consumir, clonar, tomar snapshots, o eliminar de forma independiente y sin tener en cuenta sus datos originales. Esto también implica que la fuente no está vinculada de ninguna manera al clon recién creado, también puede modificarse o eliminarse sin afectar al clon recién creado.
diff --git a/content/es/docs/concepts/storage/volume-snapshots.md b/content/es/docs/concepts/storage/volume-snapshots.md
new file mode 100644
index 0000000000..dcb0417a6f
--- /dev/null
+++ b/content/es/docs/concepts/storage/volume-snapshots.md
@@ -0,0 +1,152 @@
+---
+reviewers:
+- edithturn
+- raelga
+- electrocucaracha
+title: Snapshots de Volúmenes
+content_type: concept
+weight: 20
+---
+
+<!-- overview -->
+
+En Kubernetes, un _VolumeSnapshot_ representa un Snapshot de un volumen en un sistema de almacenamiento. Este documento asume que está familiarizado con [volúmenes persistentes](/docs/concepts/storage/persistent-volumes/) de Kubernetes.
+
+
+
+
+<!-- body -->
+
+## Introducción
+
+Al igual que los recursos de API `PersistentVolume` y `PersistentVolumeClaim` se utilizan para aprovisionar volúmenes para usuarios y administradores, `VolumeSnapshotContent` y `VolumeSnapshot` se proporcionan para crear Snapshots de volumen para usuarios y administradores.
+
+Un `VolumeSnapshotContent` es un Snapshot tomado de un volumen en el clúster que ha sido aprovisionado por un administrador. Es un recurso en el clúster al igual que un PersistentVolume es un recurso de clúster.
+
+Un `VolumeSnapshot` es una solicitud de Snapshot de un volumen por parte del usuario. Es similar a un PersistentVolumeClaim.
+
+`VolumeSnapshotClass` permite especificar diferentes atributos que pertenecen a un `VolumeSnapshot`. Estos atributos pueden diferir entre Snapshots tomados del mismo volumen en el sistema de almacenamiento y, por lo tanto, no se pueden expresar mediante el mismo `StorageClass` de un `PersistentVolumeClaim`.
+
+Los Snapshots de volumen brindan a los usuarios de Kubernetes una forma estandarizada de copiar el contenido de un volumen en un momento determinado, sin crear uno completamente nuevo. Esta funcionalidad permite, por ejemplo, a los administradores de bases de datos realizar copias de seguridad de las bases de datos antes de realizar una edición o eliminar modificaciones.
+
+Cuando utilicen esta función los usuarios deben tener en cuenta lo siguiente:
+
+* Los objetos de API `VolumeSnapshot`, `VolumeSnapshotContent`, y `VolumeSnapshotClass` son {{< glossary_tooltip term_id="CustomResourceDefinition" text="CRDs" >}}, y no forman parte de la API principal.
+* La compatibilidad con `VolumeSnapshot` solo está disponible para controladores CSI.
+* Como parte del proceso de implementación de `VolumeSnapshot`, el equipo de Kubernetes proporciona un controlador de Snapshot para implementar en el plano de control y un sidecar auxiliar llamado csi-snapshotter para implementar junto con el controlador CSI. El controlador de Snapshot observa los objetos `VolumeSnapshot` y `VolumeSnapshotContent` y es responsable de la creación y eliminación del objeto `VolumeSnapshotContent`. El sidecar csi-snapshotter observa los objetos `VolumeSnapshotContent` y activa las operaciones `CreateSnapshot` y `DeleteSnapshot` en un punto final CSI.
+* También hay un servidor webhook de validación que proporciona una validación más estricta en los objetos Snapshot. Esto debe ser instalado por las distribuciones de Kubernetes junto con el controlador de Snapshots y los CRDs, no los controladores CSI. Debe instalarse en todos los clústeres de Kubernetes que tengan habilitada la función de Snapshot.
+* Los controladores CSI pueden haber implementado o no la funcionalidad de Snapshot de volumen. Los controladores CSI que han proporcionado soporte para Snapshot de volumen probablemente usarán csi-snapshotter. Consulte [CSI Driver documentation](https://kubernetes-csi.github.io/docs/) para obtener más detalles.
+* Los CRDs y las instalaciones del controlador de Snapshot son responsabilidad de la distribución de Kubernetes.
+
+## Ciclo de vida de un Snapshot de volumen y el contenido de un Snapshot de volumen.
+
+`VolumeSnapshotContents` son recursos en el clúster. `VolumeSnapshots` son solicitudes de esos recursos. La interacción entre `VolumeSnapshotContents` y `VolumeSnapshots` sigue este ciclo de vida:
+
+### Snapshot del volumen de aprovisionamiento
+
+Hay dos formas de aprovisionar los Snapshots: aprovisionadas previamente o aprovisionadas dinámicamente.
+
+#### Pre-aprovisionado {#static}
+Un administrador de clúster crea una serie de `VolumeSnapshotContents`. Llevan los detalles del Snapshot del volumen real en el sistema de almacenamiento que está disponible para que lo utilicen los usuarios del clúster. Existen en la API de Kubernetes y están disponibles para su consumo.
+
+#### Dinámica
+En lugar de utilizar un Snapshot preexistente, puede solicitar que se tome una Snapshot dinámicamente de un PersistentVolumeClaim. El [VolumeSnapshotClass](/docs/concepts/storage/volume-snapshot-classes/) especifica los parámetros específicos del proveedor de almacenamiento para usar al tomar una Snapshot.
+
+### Vinculante
+
+El controlador de Snapshots maneja el enlace de un objeto `VolumeSnapshot` con un objeto `VolumeSnapshotContent` apropiado, tanto en escenarios de aprovisionamiento previo como de aprovisionamiento dinámico. El enlace es un mapeo uno a uno.
+
+En el caso de un enlace aprovisionado previamente, el VolumeSnapshot permanecerá sin enlazar hasta que se cree el objeto VolumeSnapshotContent solicitado.
+
+### Persistent Volume Claim como Snapshot Source Protection
+
+El propósito de esta protección es garantizar que los objetos de la API
+{{< glossary_tooltip text="PersistentVolumeClaim" term_id="persistent-volume-claim" >}}
+en uso, no se eliminen del sistema mientras se toma un Snapshot (ya que esto puede resultar en la pérdida de datos).
+
+Mientras se toma un Snapshot de un PersistentVolumeClaim, ese PersistentVolumeClaim está en uso. Si elimina un objeto de la API PersistentVolumeClaim en uso activo como fuente de Snapshot, el objeto PersistentVolumeClaim no se elimina de inmediato. En cambio, la eliminación del objeto PersistentVolumeClaim se pospone hasta que el Snapshot esté readyToUse o se cancele.
+
+### Borrar
+
+La eliminación se activa al eliminar el objeto `VolumeSnapshot`, y se seguirá la `DeletionPolicy`. Sí `DeletionPolicy` es `Delete`, entonces el Snapshot de almacenamiento subyacente se eliminará junto con el objeto `VolumeSnapshotContent`. Sí `DeletionPolicy` es `Retain`, tanto el Snapshot subyacente como el `VolumeSnapshotContent` permanecen.
+
+## VolumeSnapshots
+
+Cada VolumeSnapshot contiene una especificación y un estado.
+
+```yaml
+apiVersion: snapshot.storage.k8s.io/v1
+kind: VolumeSnapshot
+metadata:
+  name: new-snapshot-test
+spec:
+  volumeSnapshotClassName: csi-hostpath-snapclass
+  source:
+    persistentVolumeClaimName: pvc-test
+```
+
+`persistentVolumeClaimName` es el nombre de la fuente de datos PersistentVolumeClaim para el Snapshot. Este campo es obligatorio para aprovisionar dinámicamente un Snapshot.
+
+Un Snapshot de volumen puede solicitar una clase particular especificando el nombre de un [VolumeSnapshotClass](/docs/concepts/storage/volume-snapshot-classes/)
+utilizando el atributo `volumeSnapshotClassName`. Si no se establece nada, se usa la clase predeterminada si está disponible.
+
+Para los Snapshots aprovisionadas previamente, debe especificar un `volumeSnapshotContentName` como el origen del Snapshot, como se muestra en el siguiente ejemplo. El campo de origen `volumeSnapshotContentName` es obligatorio para los Snapshots aprovisionados previamente.
+
+```yaml
+apiVersion: snapshot.storage.k8s.io/v1
+kind: VolumeSnapshot
+metadata:
+  name: test-snapshot
+spec:
+  source:
+    volumeSnapshotContentName: test-content
+```
+
+## Contenido del Snapshot de volumen
+
+Cada VolumeSnapshotContent contiene una especificación y un estado. En el aprovisionamiento dinámico, el controlador común de Snapshots crea objetos `VolumeSnapshotContent`. Aquí hay un ejemplo:
+
+```yaml
+apiVersion: snapshot.storage.k8s.io/v1
+kind: VolumeSnapshotContent
+metadata:
+  name: snapcontent-72d9a349-aacd-42d2-a240-d775650d2455
+spec:
+  deletionPolicy: Delete
+  driver: hostpath.csi.k8s.io
+  source:
+    volumeHandle: ee0cfb94-f8d4-11e9-b2d8-0242ac110002
+  volumeSnapshotClassName: csi-hostpath-snapclass
+  volumeSnapshotRef:
+    name: new-snapshot-test
+    namespace: default
+    uid: 72d9a349-aacd-42d2-a240-d775650d2455
+```
+
+`volumeHandle` es el identificador único del volumen creado en el backend de almacenamiento y devuelto por el controlador CSI durante la creación del volumen. Este campo es obligatorio para aprovisionar dinámicamente un Snapshot. Especifica el origen del volumen del Snapshot.
+
+Para los Snapshots aprovisionados previamente, usted (como administrador del clúster) es responsable de crear el objeto `VolumeSnapshotContent` de la siguiente manera.
+
+```yaml
+apiVersion: snapshot.storage.k8s.io/v1
+kind: VolumeSnapshotContent
+metadata:
+  name: new-snapshot-content-test
+spec:
+  deletionPolicy: Delete
+  driver: hostpath.csi.k8s.io
+  source:
+    snapshotHandle: 7bdd0de3-aaeb-11e8-9aae-0242ac110002
+  volumeSnapshotRef:
+    name: new-snapshot-test
+    namespace: default
+```
+
+`snapshotHandle` es el identificador único del Snapshot de volumen creado en el backend de almacenamiento. Este campo es obligatorio para las Snapshots aprovisionadas previamente. Especifica el ID del Snapshot CSI en el sistema de almacenamiento que representa el `VolumeSnapshotContent`.
+
+## Aprovisionamiento de Volúmenes a partir de Snapshots
+
+Puede aprovisionar un nuevo volumen, rellenado previamente con datos de una Snapshot, mediante el campo *dataSource* en el objeto `PersistentVolumeClaim`.
+
+Para obtener más detalles, consulte
+[Volume Snapshot and Restore Volume from Snapshot](/docs/concepts/storage/persistent-volumes/#volume-snapshot-and-restore-volume-from-snapshot-support).
diff --git a/content/es/docs/concepts/storage/volumes.md b/content/es/docs/concepts/storage/volumes.md
new file mode 100644
index 0000000000..84ee2a2be2
--- /dev/null
+++ b/content/es/docs/concepts/storage/volumes.md
@@ -0,0 +1,1246 @@
+---
+title: Volumes
+content_type: concept
+weight: 10
+---
+
+<!-- overview -->
+
+Los archivos localizados dentro de un contenedor son efímeros, lo cual presenta problemas
+para aplicaciones no triviales cuando se ejecutan en contenedores. Un problema es la
+pérdida de archivos cuando el contenedor termina. Kubelet reinicia el contenedor con un estado limpio.
+Un segundo problema ocurre cuando compartimos ficheros entre contenedores corriendo juntos dentro de un `Pod`. La abstracción {{< glossary_tooltip text="volume" term_id="volume" >}} de Kubernetes resuelve ambos problemas.
+Se sugiere familiaridad con [Pods](/docs/concepts/workloads/pods/)
+
+<!-- body -->
+
+## Trasfondo
+
+Docker tiene el concepto de [volúmenes](https://docs.docker.com/storage/), aunque es algo más flojo y menos controlado.
+Un volumen de Docker es un directorio en disco o en otro contenedor. Docker provee controladores de volúmenes, pero la funcionalidad es algo limitada.
+
+Kubernetes soporta muchos tipos de volúmenes. Un {{< glossary_tooltip term_id="pod" text="Pod" >}}
+puede utilizar cualquier número de tipos de volúmenes simultáneamente. Los tipos de volúmenes efímeros tienen el mismo tiempo de vida que un Pod, pero los volúmenes persistentes existen más allá del tiempo de vida de un Pod. Cuando un Pod deja de existir,
+Kubernetes destruye los volúmenes efímeros; sin embargo, Kubernetes no destruye los volúmenes persistentes. Para cualquier tipo de volumen en un Pod dado, los datos son preservados a lo largo de los reinicios del contenedor.
+
+En su núcleo, un volumen es un directorio, posiblemente con algunos datos en este, que puede ser accesible para los contenedores en un Pod. Cómo ese directorio llega a crearse, el medio que lo respalda, y el contenido de este se determinan por el tipo de volumen usado.
+
+Para usar un volumen, especifica los volúmenes a proveer al por en `.spec.volumes` y declara
+dónde montar estos volúmenes dentro de los contenedores en `.spec.containers[*].volumeMounts`.
+Un proceso en el contenedor observa una vista del sistema de archivos compuesta por la imagen Docker y volúmenes.
+La [imagen Docker](https://docs.docker.com/userguide/dockerimages/) está en la raíz de la jerarquía del sistema de archivos.
+Los volúmenes se montan en las rutas especificadas dentro de la imagen. Los volúmenes no se pueden montar en otros volúmenes o tener enlaces duros a otros volúmenes. Cada contenedor en la configuración del Pod debe especificar de forma independiente donde montar cada volumen.
+
+## Tipos de volúmenes {#volume-types}
+
+Kubernetes soporta varios tipos de volúmenes
+
+### awsElasticBlockStore {#awselasticblockstore}
+
+Un volumen `awsElasticBlockStore` monta un
+[volumen EBS](https://aws.amazon.com/ebs/) de Amazon Web Services (AWS) en tu Pod. A diferencia de
+`emptyDir`, que se borra cuando se quita un Pod, el contenido de un volumen EBS es persistido cuando se desmonta el volumen.
+Esto significa que un volumen EBS puede ser pre-poblado con datos, y que los datos puedes ser compartidos entre pods.
+
+{{< note >}}
+Debes crear un volumen EBS usando `aws ec2 create-volume` o la API de AWS antes de poder usarlo.
+{{< /note >}}
+
+Existen algunas restricciones cuando usas un volumen `awsElasticBlockStore`:
+
+- Los nodos en los que corren los pods deben ser instances AWS EC2.
+- Estas instancias deben estar en la misma región y zona de disponibilidad que el volumen EBS
+- EBS solo soporta una única instancia EC2 montando un volumen
+
+#### Creando un volumen AWS EBS
+
+Antes poder usar un volumen EBS en un Pod, necesitas crearlo.
+
+```shell
+aws ec2 create-volume --availability-zone=eu-west-1a --size=10 --volume-type=gp2
+```
+
+Asegúrate de que la zona coincide con la zona en que has creado el clúster. Revisa que el tamaño y el tipo de
+volumen EBS son compatibles para tu uso.
+
+#### Ejemplo de configuración AWS EBS
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-ebs
+spec:
+  containers:
+    - image: k8s.gcr.io/test-webserver
+      name: test-container
+      volumeMounts:
+        - mountPath: /test-ebs
+          name: test-volume
+  volumes:
+    - name: test-volume
+      # Este volumen EBS debe existir anteriormente.
+      awsElasticBlockStore:
+        volumeID: "<volume id>"
+        fsType: ext4
+```
+
+Si el volumen EBS está particionado, puedes suministrar el campo opcional `partition: "<partition number>"` para especificar cuál partición montar.
+
+#### Migración CSI AWS EBS CSI
+
+{{< feature-state for_k8s_version="v1.17" state="beta" >}}
+
+La función `CSIMigration` para `awsElasticBlockStore`, cuando se habilita, redirige todas las operaciones
+de complemento desde el complemento existente dentro del árbol existente al controlador de Interfaz de Almacenamiento del Contenedor (CSI) de `ebs.csi.aws.com`. Para utilizar esta función, el [controlador AWS EBS CSI](https://github.com/kubernetes-sigs/aws-ebs-csi-driver) debe ser instalado en el clúster y las características beta
+`CSIMigration` y `CSIMigrationAWS` deben estar habilitadas.
+
+#### Migración CSI AWS EBS CSI completa
+
+{{< feature-state for_k8s_version="v1.17" state="alpha" >}}
+
+Para desactivar el complemento de almacenamiento `awsElasticBlockStore` de ser cargado por el administrador de controladores y el kubelet, establece el atributo `CSIMigrationAWSComplete` a `true`. Esta función requiere tener instalado el controlador de interfaz de almacenamiento del contenedor (CSI) en todos los nodos en obreros.
+
+### azureDisk {#azuredisk}
+
+El tipo de volumen `azureDisk` monta un [Data Disk](https://docs.microsoft.com/en-us/azure/aks/csi-storage-drivers) de Microsoft Azure en el Pod.
+
+Para más detalles, mira el [`azureDisk` volume plugin](https://github.com/kubernetes/examples/tree/master/staging/volumes/azure_disk/README.md).
+
+#### Migración CSI azureDisk
+
+{{< feature-state for_k8s_version="v1.19" state="beta" >}}
+
+La función `CSIMigration` para `azureDisk`, cuando se habilita, redirige todas las operaciones
+de complemento desde el complemento existente dentro del árbol existente al controlador de Interfaz de Almacenamiento del Contenedor (CSI) de `disk.csi.azure.com`. Para utilizar esta función, el [controlador Azure Disk CSI](https://github.com/kubernetes-sigs/azuredisk-csi-driver) debe ser instalado en el clúster y las características beta
+`CSIMigration` y `CSIMigrationAzureDisk` deben estar habilitadas.
+
+### azureFile {#azurefile}
+
+El tipo de volumen `azureFile` monta un volumen de ficheros de Microsoft Azure (SMB 2.1 and 3.0) en un Pod.
+
+Para más detalles, mira el [`azureFile` volume plugin](https://github.com/kubernetes/examples/tree/master/staging/volumes/azure_file/README.md).
+
+#### Migración CSI azureFile CSI
+
+{{< feature-state for_k8s_version="v1.21" state="beta" >}}
+
+La función `CSIMigration` para `azureFile`, cuando se habilita, redirige todas las operaciones
+de complemento desde el complemento existente dentro del árbol existente al controlador de Interfaz de Almacenamiento del Contenedor (CSI) de `file.csi.azure.com`. Para utilizar esta función, el [controlador Azure File CSI
+Driver](https://github.com/kubernetes-sigs/azurefile-csi-driver)
+debe ser instalado en el clúster y las [feature gates](/docs/reference/command-line-tools-reference/feature-gates/) `CSIMigration` y `CSIMigrationAzureFile` deben estar habilitadas.
+
+El controlador Azure File CSI no soporta usar el mismo volumen con fsgroups diferentes, si está habilitadla migración CSI Azurefile, usar el mismo volumen con fsgorups diferentes no será compatible en absoluto.
+
+### cephfs
+
+Un volumen `cephfs` permite montar un volumen CephFS existente en tu Pod.
+A diferencia de `emptydir`, que es borrado cuando se remueve el Pod, el contenido de un volumen `cephfs` es preservado y el volumen es meramente desmontado. Esto significa que un volumen `cephfs`puede ser pre-poblado por múltiples escritores simultáneamente.
+
+{{< note >}}
+Debes tener tu propio servidor Ceph corriendo con el recurso compartido exportado antes de usarlo.
+{{< /note >}}
+
+Mira el [CephFS example](https://github.com/kubernetes/examples/tree/master/volumes/cephfs/) para más detalles.
+
+### cinder
+
+{{< note >}}
+Kubernetes no debe ser configurado con el proveedor cloud OpenStack.
+{{< /note >}}
+
+El tipo de volumen `cinder` se usa para montar un volumen Cinder de OpenStack en tu Pod.
+
+#### Cinder volume configuration example
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-cinder
+spec:
+  containers:
+    - image: k8s.gcr.io/test-webserver
+      name: test-cinder-container
+      volumeMounts:
+        - mountPath: /test-cinder
+          name: test-volume
+  volumes:
+    - name: test-volume
+      # Este volumen de  OpenStack debe existir anteriormente.
+      cinder:
+        volumeID: "<volume id>"
+        fsType: ext4
+```
+
+#### Migración CSI OpenStack
+
+{{< feature-state for_k8s_version="v1.21" state="beta" >}}
+
+La función `CSIMigration` para Cinder está habilitada por defecto en Kubernetes 1.21.
+Esta redirige todas las operaciones de complemento desde el complemento existente dentro del árbol existente al controlador de Interfaz de Almacenamiento del Contenedor (CSI) de `cinder.csi.openstack.org`.
+El controlador [OpenStack Cinder CSI Driver](https://github.com/kubernetes/cloud-provider-openstack/blob/master/docs/cinder-csi-plugin/using-cinder-csi-plugin.md) debe estar instalado en el clúster.
+
+Puedes deshabilitar la migración CSI para tu clúster estableciendo el [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) `CSIMigrationOpenStack` a `false`.
+Si deshabilitas la función `CSIMigrationOpenStack`, el complemento del volumen Cinder dentro del árbol toma la responsabilidad para todos los aspectos de la administración del almacenamiento del volumen Cinder.
+
+### configMap
+
+Un [ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/)
+provee una manera de inyectar datos de configuración a los pods.
+Los datos almacenados en un ConfigMap se pueden referenciar en un volumen de tipo `configMap`
+y luego ser consumidos por aplicaciones contenerizadas corriendo en un Pod.
+
+Cuando haces referencia a un ConfigMap, provees el nombre del ConfigMap en el volumen.
+Puedes personalizar la ruta para una entrada específica en el ConfigMap.
+La siguiente configuración muestra cómo montar un ConfigMap `log-config` en un Pod llamado `configmap-pod`:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: configmap-pod
+spec:
+  containers:
+    - name: test
+      image: busybox
+      volumeMounts:
+        - name: config-vol
+          mountPath: /etc/config
+  volumes:
+    - name: config-vol
+      configMap:
+        name: log-config
+        items:
+          - key: log_level
+            path: log_level
+```
+
+El ConfigMap `log-config` es montado como un volumen, y todo el contenido almacenado en su entrada `log_level` es
+montado en el Pod en la ruta `/etc/config/log_level`. Ten en cuenta que esta ruta se deriva del `mountPath`del volumen y el `path` cuya clave es `log_level`.
+
+{{< note >}}
+
+- Debes crear un [ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/) antes de usarlo.
+- Un contenedor usando un ConfigMap montado como un volumen [`subPath`](#using-subpath) no recibirá actualizaciones del ConfigMap
+- Los datos de texto son expuestos como ficheros usando la codificación de caracteres UTF-8. Para otras codificaciones de caracteres, use `binaryData`.
+{{< /note >}}
+
+### downwardAPI {#downwardapi}
+
+Un volumen de `downwardAPI` hace que los datos API descendentes estén disponibles para las aplicaciones.
+Monta un directorio y escribe los datos solicitados en archivos de texto sin formato.
+
+{{< note >}}
+Un contenedor usando la API descendiente montado como un volumen [`subPath`](#using-subpath) no recibirá actualizaciones API descendientes.
+{{< /note >}}
+
+Mira el [downward API example](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/) para mayores detalles.
+
+### emptyDir {#emptydir}
+
+Un volumen `emptyDir`es creado primero cuando se asigna un Pod a un nodo, y existe mientras el Pod está corriendo en el nodo.
+Como su nombre lo indica un volumen `emptydir`está inicialmente vacío. Todos los contenedores en el Pod pueden leer y escribir
+los archivos en el volumen `emptyDir`, aunque ese volumen se puede montar en la misma o diferente ruta en cada contenedor. Cuando un Pod es removido del nodo por alguna razón, los datos en `emptydir` se borran permanentemente.
+
+{{< note >}}
+Un contenedor que colapsa _no_ remueve el Pod del nodo. Los datos en un volumen `emptyDir` están seguros en caso de
+colapso del contenedor.
+{{< /note >}}
+
+Algunos usos para un `emptyDir` son:
+
+- Espacio temporal, como para una clasificación de combinación basada en disco
+- Marcar un largo cálculo para la recuperación de fallos
+- Contener archivos que un contenedor de administrador de contenido recupera mientras un contenedor de servidor web
+  sirve los datos
+
+Dependiendo de tu entorno, los volúmenes `emptydir` se almacenan en cualquier medio que respalde el nodo tales como disco SSD, o almacenamiento de red. Sin embargo, si se establece el campo `emptydir.medium` a `Memory`, Kubernetes monta en su lugar un tmpfs (sistema de ficheros respaldado por la RAM). Mientras que tmpfs es muy rápido, ten en cuenta que a diferencia de los discos, tmpfs se limpia cuando el nodo reinicia y cualquier archivo que escribas cuenta con el límite de memoria del contenedor.
+
+{{< note >}}
+Si el [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) `SizeMemoryBackedVolumes` está habilitado,
+puedes especificar un tamaño para los volúmenes respaldados en memoria. Si no se especifica ningún tamaño, los volúmenes respaldados en memoria tienen un tamaño del 50% de la memoria en un host Linux.
+{{< /note>}}
+
+#### Ejemplo de configuración de emptyDir
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-pd
+spec:
+  containers:
+    - image: k8s.gcr.io/test-webserver
+      name: test-container
+      volumeMounts:
+        - mountPath: /cache
+          name: cache-volume
+  volumes:
+    - name: cache-volume
+      emptyDir: {}
+```
+
+### fc (canal de fibra) {#fc}
+
+Un tipo de volumen `fc` permite que un volumen de almacenamiento de bloque de canal de fibra existente se monte en un Pod.
+Puede especificar nombres mundiales de destino únicos o múltiples (WWN) utilizando el parámetro `targetWWNs` en su configuración de volumen.
+Si se especifican varios WWN, targettWWNs esperan que esos WWN sean de conexiones de múltiples rutas.
+
+{{< note >}}
+Debes configurar FC SAN zoning para asignar y enmascarar esos (volúmenes) LUNs para apuntar a los WWNs de destino de antemano
+para que los hosts Kubernetes pueda acceder a ellos.
+{{< /note >}}
+
+Revisa el [ejemplo de canal de fibra](https://github.com/kubernetes/examples/tree/master/staging/volumes/fibre_channel) para más detalles.
+
+### flocker (deprecado) {#flocker}
+
+[Flocker](https://github.com/ClusterHQ/flocker) es un administrador open-source de volúmenes de contenedor agrupado por clúster.
+Flocker proporciona administración y orquestación de volúmenes de datos respaldados por una variedad de backends de almacenamiento.
+
+Un volumen `flocker` permite montar un conjunto de datos Flocker en un Pod. Si el conjunto de datos no existe en Flocker, necesita ser creado primero con el CLI de Flocker o usando la API de Flocker. Si el conjunto de datos existe será adjuntado
+de nuevo por Flocker al nodo donde el Pod está programado. Esto significa que los datos pueden ser compartidos entre pods como sea necesario.
+
+{{< note >}}
+Debes tener una instalación propia de Flocker ejecutándose antes de poder usarla.
+{{< /note >}}
+
+Mira el [ejemplo de Flocker ](https://github.com/kubernetes/examples/tree/master/staging/volumes/flocker) para más detalles.
+
+### gcePersistentDisk
+
+Un volumen `gcePersistentDisk` monta un volumen de Google Compute Engine (GCE)
+de [disco persistente](https://cloud.google.com/compute/docs/disks) (DP) en tu Pod.
+A diferencia de `emptyDir`, que se borra cuando el Pod es removido, el contenido de un disco persistente es preservado
+y el volumen solamente se desmonta. Esto significa que un disco persistente puede ser pre-poblado con datos,
+y que esos datos se pueden compartir entre pods.
+
+{{< note >}}
+Debes crear un disco persistente usando `gcloud`, la API de GCE o la UI antes de poder usarlo.
+{{< /note >}}
+
+Existen algunas restricciones cuando usas `gcePersistentDisk`:
+
+- Los nodos en los que se ejecutan los pods deben ser máquinas virtuales GCE.
+- Esas máquinas virtuales deben estar en el mismo proyecto GCE y zona que el disco persistente se encuentra.
+
+Una de las características del disco persistente CGE es acceso concurrente de solo lectura al disco persistente.
+Un volumen `gcePersistentDisk` permite montar simultáneamente un disco de solo lectura a múltiples consumidores.
+Esto significa que puedes pre-poblar un DP con tu conjunto de datos y luego servirlo en paralelo desde tantos pods como necesites. Desafortunadamente, los DPs solo se pueden montar por un único consumidor en modo lectura-escritura.
+No están permitidos escritores simultáneos.
+
+Usar un disco persistente GCE con un Pod controlado por un ReplicaSet fallará a manos que el DP sea de solo lectura o el número de réplicas sea 0 o 1.
+
+#### Creando un disco persistente GCE {#gce-create-persistent-disk}
+
+Antes de poder usar un disco persistente GCE en un Pod, necesitas crearlo.
+
+```shell
+gcloud compute disks create --size=500GB --zone=us-central1-a my-data-disk
+```
+
+#### Ejemplo de configuración de un disco persistente GCE
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-pd
+spec:
+  containers:
+    - image: k8s.gcr.io/test-webserver
+      name: test-container
+      volumeMounts:
+        - mountPath: /test-pd
+          name: test-volume
+  volumes:
+    - name: test-volume
+      # Este PD GCE debe existir con anterioridad.
+      gcePersistentDisk:
+        pdName: my-data-disk
+        fsType: ext4
+```
+
+#### Discos regionales persistentes
+
+La función de [discos regionales persistentes](https://cloud.google.com/compute/docs/disks/#repds)
+permite la creación de discos persistentes que están disponibles en dos zonas dentro de la misma región.
+Para usar esta función, el volumen debe ser provisto como un PersistentVolumen; referenciar el volumen directamente desde un Pod no está soportado.
+
+#### Aprovisionamiento manual de un PD PersistentVolume Regional
+
+El aprovisionamiento dinámico es posible usando un [StorageClass para el DP GCE](/docs/concepts/storage/storage-classes/#gce).
+Antes de crear un PersistentVolume, debes crear el disco persistente:
+
+```shell
+gcloud compute disks create --size=500GB my-data-disk
+  --region us-central1
+  --replica-zones us-central1-a,us-central1-b
+```
+
+#### Ejemplo de configuración de un disco persistente regional
+
+```yaml
+apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: test-volume
+spec:
+  capacity:
+    storage: 400Gi
+  accessModes:
+    - ReadWriteOnce
+  gcePersistentDisk:
+    pdName: my-data-disk
+    fsType: ext4
+  nodeAffinity:
+    required:
+      nodeSelectorTerms:
+        - matchExpressions:
+            - key: failure-domain.beta.kubernetes.io/zone
+              operator: In
+              values:
+                - us-central1-a
+                - us-central1-b
+```
+
+#### Migración CSI GCE
+
+{{< feature-state for_k8s_version="v1.17" state="beta" >}}
+
+La función `CSIMigration` para el DP GCE, cuando se habilita, redirige todas las operaciones
+de complemento desde el complemento existente dentro del árbol existente al controlador de Interfaz de Almacenamiento del Contenedor (CSI) de `pd.csi.storage.gke.io`. Para poder usar esta función, el [controlador PD GCE](https://github.com/kubernetes-sigs/gcp-compute-persistent-disk-csi-driver) debe ser instalado en el clúster y habilitar las funciones beta
+`CSIMigration` y `CSIMigrationGCE`.
+
+### gitRepo (deprecado) {#gitrepo}
+
+{{< warning >}}
+El volumen `gitRepo` está deprecado. Para aprovisionar un contenedor con un repositorio git, monta un [EmptyDir](#emptydir) en un InitContainer que clona un repositorio usando git, luego monta el [EmptyDir](#emptydir) en el contenedor del Pod.
+{{< /warning >}}
+
+Un volumen `gitRepo` es un ejemplo de un complemento de volumen. Este complemento monta un directorio vacío y clona un repositorio git en este directorio para que tu Pod pueda usarlo.
+
+Aquí un ejemplo de un volumen `gitrepo`:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: server
+spec:
+  containers:
+    - image: nginx
+      name: nginx
+      volumeMounts:
+        - mountPath: /mypath
+          name: git-volume
+  volumes:
+    - name: git-volume
+      gitRepo:
+        repository: "git@somewhere:me/my-git-repository.git"
+        revision: "22f1d8406d464b0c0874075539c1f2e96c253775"
+```
+
+### glusterfs
+
+Un volumen `glusterfs` permite montar un volumen [Glusterfs](https://www.gluster.org) en tu Pod.
+A diferencia de `emptyDir`, que se borra cuando se remueve un Pod, el contenido de un volumen `glusterfs` es preservado 
+y el volumen solamente se desmonta. Esto significa que un volumen glusterfs puede ser pre-poblado con datos,
+y que los datos pueden ser compartidos entre pods. GlusterFS puede ser montado por múltiples escritores simultáneamente.
+
+{{< note >}}
+Debes tener tu propia instalación de GlusterFS ejecutándose antes de poder usarla.
+{{< /note >}}
+
+Mira el [ejemplo de GlusterFS](https://github.com/kubernetes/examples/tree/master/volumes/glusterfs) para más detalles.
+
+### hostPath {#hostpath}
+
+Un volumen `hostPath` monta un archivo o un directorio del sistema de archivos del nodo host a tu Pod.
+Esto no es algo de muchos Pods necesiten, pero ofrece una trampa de escape poderosa para algunas aplicaciones.
+
+Por ejemplo, algunos usos de un `hostPath` son:
+
+- ejecutar un contenedor que necesita acceso a los directorios internos de Docker, usa un `hostPath` de `/var/lib/docker`
+- ejecutar un cAdvisor en un contenedor; usa un `hostPath` de `/sys`
+- permitir a un Pod especificar si un `hostPath` dado debería existir ante de correr el Pod, si debe crearse, cómo debe existir
+
+Además de la propiedad requerida `path`, puedes especificar opcionalmente un `tipo`para un volumen `hostPath`.
+
+Los valores soportados para el campo `tipo` son:
+
+| Valor               | Comportamiento                                                                                                                                                   |
+| :------------------ | :--------------------------------------------------------------------------------------------------------------------------------------------------------------- |
+|                     | Una cadena vacía (por defecto) es para compatibilidad con versiones anteriores, lo que significa que no se harán revisiones antes de montar el volumen hostPath. |
+| `DirectoryOrCreate` | Si no hay nada en la ruta dada, se creará un directorio vacío como es requerido con los permisos a 0755, teniendo el mismo grupo y propiedad que el Kubelet.     |
+| `Directory`         | Un directorio debe existir en la ruta dada                                                                                                                       |
+| `FileOrCreate`      | Si no hay nada en la ruta dada, se creará un archivo vacío como es requerido con los permisos a 0644, teniendo el mismo grupo y propiedad que el Kubelet.        |
+| `File`              | Un archivo debe existir en la ruta dada                                                                                                                          |
+| `Socket`            | Un socket de UNIX debe existir en la ruta dada                                                                                                                   |
+| `CharDevice`        | Un dispositivo de caracteres debe existir en la ruta data                                                                                                        |
+| `BlockDevice`       | Un dispositivo de bloques dbe existir en la ruta dada                                                                                                            |
+
+Ten cuidado cuando uses este tipo de volumen, porque:
+
+- Los Pods con configuración idéntica (tales como los creados por un PodTemplate) pueden comportarse de forma distinta
+  en nodos distintos debido a diferentes ficheros en los nodos.
+- Los ficheros o directorios creados en los hosts subyacentes son modificables solo por root. Debes ejecutar tu proceso como root en un [Contenedor privilegiado](/docs/tasks/configure-pod-container/security-context/) o modificar los permisos de archivo en el host para escribir a un volumen `hostPath`
+
+#### Ejemplo de configuración hostPath
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-pd
+spec:
+  containers:
+    - image: k8s.gcr.io/test-webserver
+      name: test-container
+      volumeMounts:
+        - mountPath: /test-pd
+          name: test-volume
+  volumes:
+    - name: test-volume
+      hostPath:
+        # localización del directorio en el host
+        path: /data
+        # este campo es opcional
+        type: Directory
+```
+
+{{< caution >}}
+El modo `FileOrCreate` no crea el directorio padre del archivo. Si el directorio padre del archivo montado no existe,
+el Pod falla en iniciar. Para asegurar que este modo funciona, puedes intentar montar directorios y ficheros de forma separada,
+tal como se muestra en la [ confugiración `FileOrCreate`](#hostpath-fileorcreate-example)
+{{< /caution >}}
+
+#### ejemplo de configuración hostPath FileOrCreate {#hostpath-fileorcreate-example}
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-webserver
+spec:
+  containers:
+    - name: test-webserver
+      image: k8s.gcr.io/test-webserver:latest
+      volumeMounts:
+        - mountPath: /var/local/aaa
+          name: mydir
+        - mountPath: /var/local/aaa/1.txt
+          name: myfile
+  volumes:
+    - name: mydir
+      hostPath:
+        # Asegúrate que el directorio del archivo es creado.
+        path: /var/local/aaa
+        type: DirectoryOrCreate
+    - name: myfile
+      hostPath:
+        path: /var/local/aaa/1.txt
+        type: FileOrCreate
+```
+
+### iscsi
+
+Un volumen `iscsi` permite que se monte un volumen ISCSI (SCSI sobre IP) existente
+en tu Pod. A diferencia de `emptydir`, que es removido cuando se remueve un Pod,
+el contenido de un volumen `iscsi` es preservado y el volumen solamente se desmonta.
+Esto significa que un volumen iscsi puede ser pre-poblado con datos, y que estos datos se pueden compartir entre pods.
+
+{{< note >}}
+Debes tener tu propio servidor ISCSI corriendo con el volumen creado antes de poder usarlo.
+{{< /note >}}
+
+Una función de SCSI es que puede ser montado como de solo lectura por múltiples consumidores simultáneamente.
+Esto significa que puedes pre-poblar un volumen con tu conjunto de datos y servirlo en paralelo para tantos Pods como necesites.
+Desafortunadamente, los volúmenes ISCSI solo se pueden montar por un único consumidor en modo lectura-escritura.
+Escritores simultáneos no está permitido.
+
+Mira el [ejemplo iSCSI](https://github.com/kubernetes/examples/tree/master/volumes/iscsi) para más detalles.
+
+### local
+
+Un volumen `local` representa un dispositivo de almacenamiento local como un disco, una partición o un directorio.
+
+Los volúmenes locales solo se pueden usar como un PersistenVolume creado estáticamente.
+El aprovisionamiento dinámico no está soportado.
+
+Comparados con volúmenes `hostPath`, los volúmenes `local` se usan de manera duradera y portátil sin programar pods manualmente
+a los nodos. El sistema está consciente de las limitaciones del nodo del volumen al mirar la afinidad del nodo en el PersistenVolumen.
+
+Sin embargo, los volúmenes `local`están sujetos a la disponibilidad del nodo subyacente y no son compatibles para todas las aplicaciones.
+
+Si un nodo deja de estar sano, entonces el volumen `local` se vuelve inaccesible al Pod.
+El Pod que utiliza este volumen no se puede ejecutar.
+Las aplicaciones que usan volúmenes `local` deben ser capaces de tolerar esta disponibilidad reducida,
+así como la pérdida potencial de datos, dependiendo de las características de durabilidad del disco subyacente.
+
+El siguiente ejemplo muestra un PersistentVolume usando un volumen `local`y `nodeAffinity`:
+
+```yaml
+apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: example-pv
+spec:
+  capacity:
+    storage: 100Gi
+  volumeMode: Filesystem
+  accessModes:
+    - ReadWriteOnce
+  persistentVolumeReclaimPolicy: Delete
+  storageClassName: local-storage
+  local:
+    path: /mnt/disks/ssd1
+  nodeAffinity:
+    required:
+      nodeSelectorTerms:
+        - matchExpressions:
+            - key: kubernetes.io/hostname
+              operator: In
+              values:
+                - example-node
+```
+
+Debes establecer un valor de `nodeAffinity` del PersistenVolume cuando uses volúmenes `local`.
+El Scheduler de Kubernetes usa `nodeaffinity` del PersistenVolume para programar estos Pods al nodo correcto.
+
+El `volumeMode` del PersistentVolume se puede establecer en "Block" (en lugar del valor por defecto, "Filesystem")
+para exponer el volumen local como un dispositivo de bloque sin formato.
+
+Cuando usas volúmenes locales, se recomienda crear un StorageClass con `volumeBindingMode` en `WaitForFirstConsumer`.
+Para más detalles, mira el ejemplo de [StorageClass](/docs/concepts/storage/storage-classes/#local). Retrasar el enlace con el volumen asegura que la decisión del PersistenVolumeClaim sea evaluada con otras limitaciones que el Pod pueda tener,
+tales como requisitos de recursos del nodo, selectores de nodo, afinidad del Pod, y anti-afinidad del Pod.
+
+Se puede ejecutar un aprovisionador estático externo para un manejo mejorado del ciclo de vida del volumen local.
+Ten en cuenta que este aprovisionador no soporta aprovisionamiento dinámico todavía. Para un ejemplo de un aprovisionador local externo, mira la [guía de usuario de aprovisionador de volumen local](https://github.com/kubernetes-sigs/sig-storage-local-static-provisioner)
+
+{{< note >}}
+El PersistentVolume local requiere limpieza y borrado manual por el usuario si no se utiliza el aprovisionador estático externo para manejar el ciclo de vida del volumen.
+{{< /note >}}
+
+### nfs
+
+Un volumen `nfs` permite montar un NFS (Sistema de Ficheros de Red) compartido en tu Pod.
+A diferencia de `emptyDir` que se borra cuando el Pod es removido, el contenido de un volumen `nfs` solamente se desmonta.
+Esto significa que un volumen NFS puede ser pre-poblado con datos, y que estos datos puedes ser compartidos entre pods.
+NFS puede ser montado por múltiples escritores simultáneamente.
+
+{{< note >}}
+Debes tener tu propio servidor NFS en ejecución con el recurso compartido exportado antes de poder usarlo.
+{{< /note >}}
+
+Mira el [ ejemplo NFS ](https://github.com/kubernetes/examples/tree/master/staging/volumes/nfs) para más información.
+
+### persistentVolumeClaim {#persistentvolumeclaim}
+
+Un volumen `persistenceVolumeClain` se utiliza para montar un [PersistentVolume](/docs/concepts/storage/persistent-volumes/) en tu Pod. PersistentVolumeClaims son una forma en que el usuario "reclama" almacenamiento duradero (como un PersistentDisk GCE o un volumen ISCSI) sin conocer los detalles del entorno de la nube en particular.
+
+Mira la información spbre [PersistentVolumes](/docs/concepts/storage/persistent-volumes/) para más detalles.
+
+### portworxVolume {#portworxvolume}
+
+Un `portworxVolume` es un almacenamiento de bloque elástico que corre hiperconvergido con Kubernetes.
+Almacenamiento de huellas de [Portworx](https://portworx.com/use-case/kubernetes-storage/) en un servidor, niveles basados en capacidades y capacidad agregada en múltiples servidores.
+Portworx se ejecuta como invitado en máquinas virtuales o en nodos Linux nativos.
+
+Un `portworxVolume` puede ser creado dinámicamente a través de Kubernetes o puede ser pre-aprovisionado y referido dentro de un Pod. Aquí un Pod de ejemplo refiriendo a un volumen Portworx pre-aprovisionado:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-portworx-volume-pod
+spec:
+  containers:
+    - image: k8s.gcr.io/test-webserver
+      name: test-container
+      volumeMounts:
+        - mountPath: /mnt
+          name: pxvol
+  volumes:
+    - name: pxvol
+      # Este volumen portworx debe sxistir con anterioridad.
+      portworxVolume:
+        volumeID: "pxvol"
+        fsType: "<fs-type>"
+```
+
+{{< note >}}
+Asegúrate de tener un PortworxVolume con el nombre `pxvol` antes de usarlo en el Pod.
+{{< /note >}}
+
+Para más detalles, mira los ejemplos de [volumen Portworx](https://github.com/kubernetes/examples/tree/master/staging/volumes/portworx/README.md).
+
+### projected
+
+Un volumen `projected` mapea distintas fuentes de volúmenes existentes en un mismo directorio.
+
+Actualmente, se pueden los siguientes tipos de volúmenes:
+
+- [`secret`](#secret)
+- [`downwardAPI`](#downwardapi)
+- [`configMap`](#configmap)
+- `serviceAccountToken`
+
+Se requiere que todas las fuentes estén en el mismo namespace que el Pod. Para más detalles mira el [all-in-one volume design document](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/node/all-in-one-volume.md).
+
+#### Configuración de ejemplo con un secret, un downwardAPI, y un configMap {#example-configuration-secret-downwardapi-configmap}
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: volume-test
+spec:
+  containers:
+    - name: container-test
+      image: busybox
+      volumeMounts:
+        - name: all-in-one
+          mountPath: "/projected-volume"
+          readOnly: true
+  volumes:
+    - name: all-in-one
+      projected:
+        sources:
+          - secret:
+              name: mysecret
+              items:
+                - key: username
+                  path: my-group/my-username
+          - downwardAPI:
+              items:
+                - path: "labels"
+                  fieldRef:
+                    fieldPath: metadata.labels
+                - path: "cpu_limit"
+                  resourceFieldRef:
+                    containerName: container-test
+                    resource: limits.cpu
+          - configMap:
+              name: myconfigmap
+              items:
+                - key: config
+                  path: my-group/my-config
+```
+
+#### Configuración de ejemplo: secrets con un modo de permisos no predeterminados {#example-configuration-secrets-nondefault-permission-mode}
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: volume-test
+spec:
+  containers:
+    - name: container-test
+      image: busybox
+      volumeMounts:
+        - name: all-in-one
+          mountPath: "/projected-volume"
+          readOnly: true
+  volumes:
+    - name: all-in-one
+      projected:
+        sources:
+          - secret:
+              name: mysecret
+              items:
+                - key: username
+                  path: my-group/my-username
+          - secret:
+              name: mysecret2
+              items:
+                - key: password
+                  path: my-group/my-password
+                  mode: 511
+```
+
+Cada volumen proyectado está listado en spec bajo `sources`. Los parámetros son casi los mismos salvo dos excepciones:
+
+- Para los secrets, el campo `secretName` ha sido cambiado a `name` para ser consistente con el nombre del configMap.
+- El `defaultMode` solo se puede especificar en el nivel proyectado y no para cada fuente de volumen. Sin, como se muestra arriba, puedes establecer explícitamente el `mode` para cada proyección individual.
+
+Cuando la función `TokenRequestProjection` está habilitada, puedes inyectar el token para el [service account](/docs/reference/access-authn-authz/authentication/#service-account-tokens) actual en un Pod en la ruta especificada.
+Por ejemplo:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: sa-token-test
+spec:
+  containers:
+    - name: container-test
+      image: busybox
+      volumeMounts:
+        - name: token-vol
+          mountPath: "/service-account"
+          readOnly: true
+  volumes:
+    - name: token-vol
+      projected:
+        sources:
+          - serviceAccountToken:
+              audience: api
+              expirationSeconds: 3600
+              path: token
+```
+
+El Pod de ejemplo tiene un volumen proyectado que contiene el token del serviceAccount inyectado.
+Este token se puede usar por el contenedor de un Pod para acceder a la API del servidor de Kubernetes.
+El `audience` contiene la audiencia dirigida del token. Un recipiente del token debe identificarse a sí mismo con
+un identificador especificado en la audiencia del token, de lo contrario debería rechazar el token. Este campo es opcional y por defecto tiene el valor del identificador del servidor API.
+
+EL campo `expirationSeconds` es la duración esperada de la validez del token del serviceAccount.
+Su valor por defecto es 1 hora y debe ser al menos 10 minutos (600 segundos). Un administrador puede limitar
+su valor máximo al especificar la opción `--service-account-max-token-expiration` para el servidor API. El campo `path` especifica una ruta relativa al punto de montaje del volumen proyectado.
+
+{{< note >}}
+Un contenedor que usa una fuente de volumen proyectado como un volumen [`subPath`](#using-subpath) no recibirá actualizaciones de estas fuentes de volumen.  
+{{< /note >}}
+
+### quobyte
+
+Un volumen `quobyte` permite montar un volumen [Quobyte](https://www.quobyte.com) en tu Pod.
+
+{{< note >}}
+Debes tener tu propia configuración Quobyte ejecutándose con los volúmenes creados antes de usarlo.
+{{< /note >}}
+
+Quobyte soporta el {{< glossary_tooltip text="Container Storage Interface" term_id="csi" >}}.
+CSI es el complemento recomendado para usar Quobyte dentro de Kubernetes. El proyecto Github de Quobyte tiene [instrucciones](https://github.com/quobyte/quobyte-csi#quobyte-csi) para desplegar usando CSI, junto con ejemplos.
+
+### rbd
+
+Un volumen `rbd` permite montar un volumen [Rados Block Device](https://docs.ceph.com/en/latest/rbd/) (RBD) en tu Pod.
+A diferencia de `emptyDir`, que se borra cuando el Pod es removido, el contenido de un volumen `rbd` es preservado y el volumen se desmonta. Esto significa que un volumen RBD puede ser pre-poblado con datos, y que estos datos pueden ser compartidos entre pods.
+
+{{< note >}}
+Debes tener una instalación de Ceph ejecutándose antes de usar RBD.
+{{< /note >}}
+
+Una función de RBD es que solo se puede montar como de solo lectura por múltiples consumidores simultáneamente.
+Esto significa que puedes pre-poblar un volumen con tu conjunto de datos y luego servirlo en paralelo desde tantos pods como necesites. Desafortunadamente, los volúmenes RBD solo se pueden montar por un único consumidor en modo lectura-escritura. No se permiten escritores simultáneos.
+
+Mira el [ejemplo RBD](https://github.com/kubernetes/examples/tree/master/volumes/rbd) para más detalles.
+
+### scaleIO (deprecado) {#scaleio}
+
+ScaleIO es una plataforma de almacenamiento basada en software que usa el hardware existente para crear clústeres de almacenamiento en red de bloques compartidos escalables. El complemento de volumen `scaleIO` permite a los pods desplegados acceder a volúmenes existentes ScaleIO. Para información acerca de aprovisionamiento dinámico de nuevos persistence volumen claims, mira [ScaleIO persistent volumes](/docs/concepts/storage/persistent-volumes/#scaleio)
+
+{{< note >}}
+Debes tener un Cluster ScaleIO ya configurado y ejecutándose con los volúmenes creados antes de poder usarlos.
+{{< /note >}}
+
+El siguiente ejemplo es una configuración de un Pod con ScaleIO:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: pod-0
+spec:
+  containers:
+    - image: k8s.gcr.io/test-webserver
+      name: pod-0
+      volumeMounts:
+        - mountPath: /test-pd
+          name: vol-0
+  volumes:
+    - name: vol-0
+      scaleIO:
+        gateway: https://localhost:443/api
+        system: scaleio
+        protectionDomain: sd0
+        storagePool: sp1
+        volumeName: vol-0
+        secretRef:
+          name: sio-secret
+        fsType: xfs
+```
+
+Para más detalles, mira los ejemplos de [ScaleIO](https://github.com/kubernetes/examples/tree/master/staging/volumes/scaleio)
+
+### secret
+
+Un volumen `seret` se utiliza para pasar información sensible, como contraseñas, a los Pods.
+Puedes guardar secrets en la API de Kubernetes y montarlos como ficheros para usarlos con los pods sin acoplarlos con Kubernetes directamente. Los volúmenes `secret` son respaldados por tmpfs (un sistema de ficheros respaldado por la RAM) así que nunca se escriben en un almacenamiento no volátil.
+
+{{< note >}}
+Debes crear un secreto en la API de Kubernetes antes de poder usarlo.
+{{< /note >}}
+
+{{< note >}}
+Un contenedor que usa un Secret como un volumen [`subPath`](#using-subpath) no recibirá las actualizaciones del Secret.
+{{< /note >}}
+
+Para más detalles, mira [Configurando Secrets](/docs/concepts/configuration/secret/).
+
+### storageOS {#storageos}
+
+Un volumen `storageos` permite montar un volumen existente [StorageOS](https://www.storageos.com) en tu Pod.
+
+StorageOS corre como un contenedor dentro de tu contenedor Kubernetes, haciendo accesible el almacenamiento local o adjunto desde cualquier node dentro del cluster de Kubernetes.
+Los datos pueden ser replicados para protegerlos contra fallos del nodo. Este aprovisionamiento y compresión pueden mejorar el uso y reducir costes.
+
+El contenedor StorageOs requiere Linux de 64 bits y no tiene dependencias adicionales.
+Una licencia gratuita para desarrolladores está disponible.
+
+{{< caution >}}
+Debes correr un contenedor StorageOS en cada nodo que quiera acceder a los volúmenes StorageOS o que contribuyan a la capacidad de almacenamiento al grupo.
+Para instrucciones de instalación, consulta la [documentación StorageOS](https://docs.storageos.com)
+{{< /caution >}}
+
+El siguiente ejemplo es una configuración de un Pod con Storage OS:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  labels:
+    name: redis
+    role: master
+  name: test-storageos-redis
+spec:
+  containers:
+    - name: master
+      image: kubernetes/redis:v1
+      env:
+        - name: MASTER
+          value: "true"
+      ports:
+        - containerPort: 6379
+      volumeMounts:
+        - mountPath: /redis-master-data
+          name: redis-data
+  volumes:
+    - name: redis-data
+      storageos:
+        # El volumen `redis-vol01` debe existir dentro de StorageOS en el namespace `default`.
+        volumeName: redis-vol01
+        fsType: ext4
+```
+
+Para más información sobre StorageOS, aprovisionamiento dinámico, y PersistentVolumeClaims, mira los
+[ ejemplos de StorageOS examples](https://github.com/kubernetes/examples/blob/master/volumes/storageos).
+
+### vsphereVolume {#vspherevolume}
+
+{{< note >}}
+Debes configurar el proveedor en la nube de vSphere de Kubernetes.
+Para configuración de proveedores en la nube, mira la [ guía de inicio de vSphere ](https://vmware.github.io/vsphere-storage-for-kubernetes/documentation/).
+{{< /note >}}
+
+Un volumen `vsphereVolume` se usa para montar un volumen VMDK vSphere en tu Pod. El contenido de un volumen es preservado cuando se desmonta. Tiene soporte para almacén de datos VMFS y VSAN.
+
+{{< note >}}
+Debes crear un volumen vSphere VMDK usando uno de los siguientes métodos antes de usarlo con un Pod.
+{{< /note >}}
+
+#### Creando un volumen VMDK {#creating-vmdk-volume}
+
+Elige uno de los siguientes métodos para crear un VMDK.
+
+{{< tabs name="tabs_volumes" >}}
+{{% tab name="Create using vmkfstools" %}}
+Primero entra mediante ssh en ESX, luego usa uno de los siguientes comandos para crear un VMDK:
+
+```shell
+vmkfstools -c 2G /vmfs/volumes/DatastoreName/volumes/myDisk.vmdk
+```
+
+{{% /tab %}}
+{{% tab name="Create using vmware-vdiskmanager" %}}
+Usa el siguiente comando para crear un VMDK:
+
+```shell
+vmware-vdiskmanager -c -t 0 -s 40GB -a lsilogic myDisk.vmdk
+```
+
+{{% /tab %}}
+
+{{< /tabs >}}
+
+#### Ejemplo de configuración vSphere VMDK {#vsphere-vmdk-configuration}
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-vmdk
+spec:
+  containers:
+    - image: k8s.gcr.io/test-webserver
+      name: test-container
+      volumeMounts:
+        - mountPath: /test-vmdk
+          name: test-volume
+  volumes:
+    - name: test-volume
+      # Este volumen VMDK ya debe existir.
+      vsphereVolume:
+        volumePath: "[DatastoreName] volumes/myDisk"
+        fsType: ext4
+```
+
+Para mayor información, mira el ejemplo de [vSphere volume](https://github.com/kubernetes/examples/tree/master/staging/volumes/vsphere).
+
+#### Migración CSI vSphere {#vsphere-csi-migration}
+
+{{< feature-state for_k8s_version="v1.19" state="beta" >}}
+Cuando la función `CSIMigration` está habilitada, redirige todas las operaciones de complemento desde el complemento existente en el árbol al controlador {{< glossary_tooltip text="CSI" term_id="csi" >}} `csi.vsphere.vmware.com`. Para
+usar esta función, el [controlador vSphere CSI](https://github.com/kubernetes-sigs/vsphere-csi-driver) debe estar instalado en el clúster y las [feature gates](/docs/reference/command-line-tools-reference/feature-gates/) `CSIMigration` y `CSIMigrationvSphere` deben estar habilitadas.
+
+Esto también requiere que la versión de vSphere vCenter/ESXi sea la 7.0u1 y la versión mínima de HW version sea VM versión 15.
+
+{{< note >}}
+Los siguientes parámetros de Storageclass desde el complemento incorporado `vsphereVolume` no están soportados por el controlador vSphere CSI:
+
+- `diskformat`
+- `hostfailurestotolerate`
+- `forceprovisioning`
+- `cachereservation`
+- `diskstripes`
+- `objectspacereservation`
+- `iopslimit`
+
+Los volúmenes existentes creados usando estos parámetros serán migrados al controlador vSphere CSI, pero los volúmenes nuevos creados por el controlador vSphere CSI no respetarán estos parámetros
+{{< /note >}}
+
+#### migración completa de vSphere CSI {#vsphere-csi-migration-complete}
+
+{{< feature-state for_k8s_version="v1.19" state="beta" >}}
+Para apagar el complemento `vsphereVolume` y no cargarlo por el administrador del controlador y el kubelet, necesitas establecer eta función a `true`. Debes instalar un controlador de tipo `csi.vsphere.vmware.com` en todos los nodos worker.
+
+## Uso de subPath {#using-subpath}
+
+Algunas veces es útil compartir un volumen para múltiples usos en un único Pod.
+La propiedad `volumeMounts.subPath` especifica una sub-ruta dentro del volumen referenciado en lugar de su raíz.
+
+El siguiente ejemplo muestra cómo configurar un Pod con la pila LAMP (Linux Apache MySQL PHP) usando un único volumen compartido. Esta configuración de ejemplo usando `subPath` no se recomienda para su uso en producción.
+
+El código de la aplicación PHP y los recursos apuntan al directorio `html` del volumen y la base de datos MySQL se almacena en el directorio `mysql`. Por ejemplo:
+The PHP application's code and assets map to the volume's `html` folder and
+the MySQL database is stored in the volume's `mysql` folder. For example:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: my-lamp-site
+spec:
+  containers:
+    - name: mysql
+      image: mysql
+      env:
+        - name: MYSQL_ROOT_PASSWORD
+          value: "rootpasswd"
+      volumeMounts:
+        - mountPath: /var/lib/mysql
+          name: site-data
+          subPath: mysql
+    - name: php
+      image: php:7.0-apache
+      volumeMounts:
+        - mountPath: /var/www/html
+          name: site-data
+          subPath: html
+  volumes:
+    - name: site-data
+      persistentVolumeClaim:
+        claimName: my-lamp-site-data
+```
+
+### Uso de subPath con variables de entorno expandidas {#using-subpath-expanded-environment}
+
+{{< feature-state for_k8s_version="v1.17" state="stable" >}}
+Usa el campo `subPathExpr` para construir un nombre de directorio `subPath` desde variables de entorno de la API.
+Las propiedades `subPath` y `subPathExpr` son mutuamente exclusivas.
+
+En este ejemplo, un `Pod` usa `subPathExpr` para crear un directorio `pod1` dentro del volumen `hostPath` `var/logs/pods`.
+El volumen `hostPath` toma el nombre del `Pod` desde la `downwardAPI`.
+El directorio anfitrión `var/log/pods/pod1` se monta en `/logs` en el contenedor.
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: pod1
+spec:
+  containers:
+    - name: container1
+      env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              apiVersion: v1
+              fieldPath: metadata.name
+      image: busybox
+      command:
+        [
+          "sh",
+          "-c",
+          "while [ true ]; do echo 'Hello'; sleep 10; done | tee -a /logs/hello.txt",
+        ]
+      volumeMounts:
+        - name: workdir1
+          mountPath: /logs
+          subPathExpr: $(POD_NAME)
+  restartPolicy: Never
+  volumes:
+    - name: workdir1
+      hostPath:
+        path: /var/log/pods
+```
+
+## Recursos
+
+El medio de almacenamiento (como un disco o un SSD) de un volumen `emptyDir`
+se determina por el medio del sistema de archivos que contiene el directorio raíz
+del kubelet (típicamente `/var/lib/kubelet`).
+No hay límite de cuánto espacio puede consumir un volumen `emptydir` o `hostPath`,
+y no hay aislamiento entre contenedores o entre pods.
+
+Para aprender más sobre requerir espacio usando una espacificación de recurso, mira [cómo administrar recursos](/docs/concepts/configuration/manage-resources-containers/).
+
+## Complementos de volúmenes fuera del árbol
+
+Los complementos de volumen fuera del árbol incluyen {{< glossary_tooltip text="Container Storage Interface" term_id="csi" >}} (CSI) y FlexVolume. Estos complementos permiten a los proveedores de almacenamiento crear complementos de almacenamiento personalizados sin añadir su código fuente al repositorio de Kubernetes.
+
+Anteriormente, todos los complementos de volumen estaban "en el árbol". Los complementos "en el árbol" se construían, enlazaban, compilaban y enviaban con los binarios del núcleo de Kubernetes. Esto significaba que agregar un nuevo sistema de almacenamiento a Kubernetes (un complemento de volumen) requería verificar el código en el repositorio de código del núcleo de Kubernetes.
+
+Tanto CSI como FlexVolume permiten que se desarrollen complementos de volúmenes independientemente del código base de Kubernetes, y se desplieguen (instalen) en los clústeres de Kubernetes como extensiones.
+
+Para los proveedores de almacenamiento que buscan crear un complemento de volumen fuera del árbol, por favor refiéranse a [Preguntas frecuentees de complementos de volumen](https://github.com/kubernetes/community/blob/master/sig-storage/volume-plugin-faq.md).
+
+### csi
+
+La [interfaz de almacenamiento del contenedor](https://github.com/container-storage-interface/spec/blob/master/spec.md) (CSI) define una interfaz estándar para sistemas de orquestación del contenedor (como Kubernetes) para exponer sistemas de almacenamiento arbitrario a sus cargas de trabajo del contenedor.
+
+Por favor, lee la [propuesta de diseño CSI](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/storage/container-storage-interface.md) para más información.
+
+{{< note >}}
+El soporte para las especificaciones de las versiones CSI 0.2 y 0.3 están deprecadas en Kubernetes v1.13 y serán removidos en una versión futura.
+{{< /note >}}
+
+{{< note >}}
+Los controladores CSI podrían no ser compatibles con todas las versiones de Kubernetes. 
+Por favor, revisa la documentación específica del controlador CSI para los pasos de despliegue soportados para cada versión de Kubernetes y una matriz de compatibilidad.
+{{< /note >}}
+
+Una vez que se despliega un controlador de volumen CSI compatible, los usuarios pueden usar el tipo de volumen `csi` para adjuntar o montar los volúmenes expuestos por el controlador CSI.
+
+Un volumen `csi` puede ser usado en un Pod en tres maneras distintas:
+
+- a través de una referencia a [PersistentVolumeClaim](#persistentvolumeclaim)
+- con un [volumen general efímero](/docs/concepts/storage/ephemeral-volumes/#generic-ephemeral-volume)
+  (característica alpha)
+- con un [volumen efímero CSI](/docs/concepts/storage/ephemeral-volumes/#csi-ephemeral-volume) si el controlador permite esta (característica beta)
+
+Los siguientes campos están disponibles para que los administradores de almacenamiento configuren el volumen persistente CSI
+
+- `driver`: Un valor de cadena de caracteres que especifica el nombre del controlador de volumen a usar. Este valor debe corresponder al valor de respuesta en el `GetPluginInfoResponse` por el controlador CSI tal como se define en la [especificación CSI](https://github.com/container-storage-interface/spec/blob/master/spec.md#getplugininfo). Es usado por Kubernetes para identificar cuál controlador llamar, y por los componentes del controlador CSI para identificar cuáles objetos PV pertenecen al controlador CSI.
+- `volumenHandle`: Un valor de cadena de caracteres que identifica el volumen unívocamente. Este valor debe corresponder al valor en el campo `volumen.id` del `CreateVolumeResponse` por el controlador CSI como se define en la [especificación CSI spec](https://github.com/container-storage-interface/spec/blob/master/spec.md#createvolume). El valor es pasado como `volume.id` en todas las llamadas al controlador de volumen CSI cuando referencias el volumen.
+- `readOnly`: Un valor booleano opcional que indica si el volumen es para ser "ControllerPublished" (adjuntado) como solo lectura. Por defecto es falso. Este valor es pasado el controlador CSI en el campo `readOnly` en el `ControllerPublishVolumeRequest`.
+- `fsType`: Si el `VolumeMode`del PV es `Filesystem` entonces este campo se puede usar para especificar el sistema de archivos que debería usarse para montar el volumen. Si el volumen no ha sido formateado y soportado, este valor se utilizará para formatear el volumen. Este valor se para al controlador CSI con el campo `VolumeCapability` de `ControllerPublishVolumeRequest`, `NodeStageVolumeRequest`, y `NodePublishVolumeRequest`.
+- `volumeAttributes`: Un mapa de cadena de caracteres que especifica las propiedades estáticas de un volumen. Este mapa debe corresponder al map devuelto por el campo `volume.attributes` del `CreateVolumeResponse` por el controlador CSI tal como se define en la [especificación CSI spec](https://github.com/container-storage-interface/spec/blob/master/spec.md#createvolume). El mapa es pasado al controlador CSI con el campo `volume.context` en el `ControllerPublishVolumeRequest`, `NodeStageVolumeRequest`, y `NodePublishVolumeRequest`.
+- `controllerPublishSecretRef`: Una referencia al objeto secret que contiene información sensible para pasar al controlador CSI para completar las llamadas CSI `ControllerPublishVolume` y `ControllerUnpublishVolume`. Este campo es opcional, y puede estar vacío si no se requiere un secret. Si el Secret contiene más de un secret, se pasan todos los secrets.
+- `nodeStageSecretRef`: Una referencia al objeto secret que contiene información sensible a pasar al controlador CSI para completar la llamada CSI `NodeStageVolume`. Este ampo es opcional, y puede estar vacío si no se requiere un secret. Si el Secret contiene más de un secret, todos los secrets son pasados.
+- `nodePublishSecretRef`: Una referencia al objeto que contiene información sensible a pasar al controlador CSI para completar la llamada CSI `NodePublishVolume`. Este ampo es opcional, y puede estar vacío si no se requiere un secret. Si el Secret contiene más de un secret, todos los secrets son pasados.
+
+#### Soporte de volumen CSI de fila de bloques
+
+{{< feature-state for_k8s_version="v1.18" state="stable" >}}
+
+Los proveedores con controladores CSI externos pueden implementar soporte de volumen de bloques sin procesar en cargas de trabajo de Kubernetes.
+
+Puedes configurar tu
+You can set up your [PersistentVolume/PersistentVolumeClaim with raw block volume support](/docs/concepts/storage/persistent-volumes/#raw-block-volume-support) como de costumbre, sin ningún cambio específico CSI.
+
+#### Volúmenes efímeros CSI
+
+{{< feature-state for_k8s_version="v1.16" state="beta" >}}
+
+Puedes configurar directamente volúmenes CSI dentro de la especificación del Pod.
+Los volúmenes especificados de esta manera son efímeros y no se persisten entre reinicios del Pod. Mira [Volúmenes efímeros](/docs/concepts/storage/ephemeral-volumes/#csi-ephemeral-volume) para más información.
+
+Para más información de cómo desarrollador un controlador CSI, mira la [documentación kubernetes-csi](https://kubernetes-csi.github.io/docs/)
+
+#### Migrando a controladores CSI desde complementos en el árbol.
+
+{{< feature-state for_k8s_version="v1.17" state="beta" >}}
+La función `CSIMigration`, cuando está habilitada, dirige todas las operaciones hacia complementos existentes en el árbol a complementos CSI correspondientes (que se espera que estén instalados y configurados). Como resultado, los operadores no tienen que hacer ningún cambio de configuración a las clases de almacenamiento, PersistentVolumes o PersistentVolumeClaims (refiriéndose a complementos en el árbol) cuando haces la transición a un controlador CSI que un reemplaza complemento en el árbol.
+
+Las operaciones y funciones que están soportadas incluye:
+aprovisionamiento/borrado, adjuntar/separar, montar/desmontar y redimensionar volúmenes.
+
+In-tree plugins that support `CSIMigration` and have a corresponding CSI driver implemented
+are listed in [Types of Volumes](#volume-types).
+
+### flexVolume
+
+FlexVolume is an out-of-tree plugin interface that has existed in Kubernetes
+since version 1.2 (before CSI). It uses an exec-based model to interface with
+drivers. The FlexVolume driver binaries must be installed in a pre-defined volume
+plugin path on each node and in some cases the control plane nodes as well.
+
+Pods interact with FlexVolume drivers through the `flexvolume` in-tree volume plugin.
+For more details, see the [FlexVolume](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-storage/flexvolume.md) examples.
+
+## Propagación del montaje
+
+La propagación del montaje permite compartir volúmenes montados por un contenedor para otros contenedores en el mismo Pod, o aun para otros pods en el mismo nodo.
+
+La propagación del montaje de un volumen es controlada por el campo `mountPropagation` en `Container.volumeMounts`. Sus valores son:
+
+- `None` - Este montaje de volumen no recibirá ningún montaje posterior que el host haya montado en este volumen o en cualquiera de sus subdirectorios. De manera similar, los montajes creados por el contenedor no serán visibles en el host. Este es el modo por defecto.
+
+  Este modo es igual la propagación del montaje `private` tal como se describe en la [ documentación Linux kernel documentation](https://www.kernel.org/doc/Documentation/filesystems/sharedsubtree.txt)
+
+- `HostToContainer` - Este montaje de volumen recibirá todos los montajes subsecuentes que son montados a este volumen o cualquiera de sus subdirectorios.
+
+  En otras palabras, si el host monta algo dentro del montaje del volumen, el contenedor lo verá montado allí.
+
+  De manera similar, si cualquier Pod con propagación de montaje `Bidirectional` al mismo volumen monta algo allí, el contenedor con propagación de montaje` HostToContainer` lo verá.
+
+  Este modo es igual a la propagación de montaje `rslave` tal como se describe en la [documentación del kernel de Linux](https://www.kernel.org/doc/Documentation/filesystems/sharedsubtree.txt)
+
+- `Bidirectional`- Este montaje de volumen se comporta de la misma manera de el montaje`HostToContainer`. Adicionalmente, todos los montajes de volúmenes creados por el contenedor serán propagados de vuelta al host y a todos los contenedores de todos los pods que usan el mismo volumen.
+
+  Un uso típico para este modo es un Pod con un FlexVolumen o un controlador CSI o un Pod que necesita montar al en el host usando un volumen `hostPath`.
+
+  Este modo es igual a la propagación de montaje `rshared` tal como se describe en la [documentación del kernel de Linux documentación](https://www.kernel.org/doc/Documentation/filesystems/sharedsubtree.txt)
+
+  {{< warning >}}
+  La propagación por montaje `Bidirectional` puede ser peligrosa. Puede dañar el sistema operativo host y, por lo tanto, solo se permite en contenedores privilegiados. Se recomienda encarecidamente estar familiarizado con el comportamiento del kernel de Linux.
+  Además, cualquier montaje de volumen creado por contenedores en pods debe destruirse (desmontado) por los contenedores en el momento de la terminación.
+  {{< /warning >}}
+
+### Configuration
+
+Before mount propagation can work properly on some deployments (CoreOS,
+RedHat/Centos, Ubuntu) mount share must be configured correctly in
+Docker as shown below.
+
+Edit your Docker's `systemd` service file. Set `MountFlags` as follows:
+
+```shell
+MountFlags=shared
+```
+
+Or, remove `MountFlags=slave` if present. Then restart the Docker daemon:
+
+```shell
+sudo systemctl daemon-reload
+sudo systemctl restart docker
+```
+
+## {{% heading "whatsnext" %}}
+
+Sigue un ejemplo de [desplegar WordPrss y MySQL con volúmenes persistentes](/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume/).
diff --git a/content/es/docs/concepts/workloads/controllers/daemonset.md b/content/es/docs/concepts/workloads/controllers/daemonset.md
index d52a5d7010..686cf2f21f 100644
--- a/content/es/docs/concepts/workloads/controllers/daemonset.md
+++ b/content/es/docs/concepts/workloads/controllers/daemonset.md
@@ -12,23 +12,14 @@ Al eliminar un DaemonSet se limpian todos los Pods que han sido creados.
 
 Algunos casos de uso típicos de un DaemonSet son:
 
-- ejecutar un proceso de almacenamiento en el clúster, como `glusterd`, `ceph`, en cada nodo.
-- ejecutar un proceso de recolección de logs en cada nodo, como `fluentd` o `logstash`.
-- ejecutar un proceso de monitorización de nodos en cada nodo, como [Prometheus Node Exporter](
-  https://github.com/prometheus/node_exporter), [Sysdig Agent] (https://sysdigdocs.atlassian.net/wiki/spaces/Platform), `collectd`, 
-  [Dynatrace OneAgent](https://www.dynatrace.com/technologies/kubernetes-monitoring/), 
-  [AppDynamics Agent](https://docs.appdynamics.com/display/CLOUD/Container+Visibility+with+Kubernetes), 
-  [Datadog agent](https://docs.datadoghq.com/agent/kubernetes/daemonset_setup/), 
-  [New Relic agent](https://docs.newrelic.com/docs/integrations/kubernetes-integration/installation/kubernetes-installation-configuration), 
-  Ganglia `gmond` o un agente de Instana.
+- Ejecutar un proceso de almacenamiento en el clúster.
+- Ejecutar un proceso de recolección de logs en cada nodo.
+- Ejecutar un proceso de monitorización de nodos en cada nodo.
 
 De forma básica, se debería usar un DaemonSet, cubriendo todos los nodos, por cada tipo de proceso.
-En configuraciones más complejas se podría usar múltiples DaemonSets para un único tipo de proceso, 
+En configuraciones más complejas se podría usar múltiples DaemonSets para un único tipo de proceso,
 pero con diferentes parámetros y/o diferentes peticiones de CPU y memoria según el tipo de hardware.
 
-
-
-
 <!-- body -->
 
 ## Escribir una especificación de DaemonSet
@@ -46,7 +37,7 @@ kubectl apply -f https://k8s.io/examples/controllers/daemonset.yaml
 
 ### Campos requeridos
 
-Como con cualquier otra configuración de Kubernetes, un DaemonSet requiere los campos `apiVersion`, `kind`, y `metadata`.  
+Como con cualquier otra configuración de Kubernetes, un DaemonSet requiere los campos `apiVersion`, `kind`, y `metadata`.
 Para información general acerca de cómo trabajar con ficheros de configuración, ver los documentos [desplegar aplicaciones](/docs/user-guide/deploying-applications/),
 [configurar contenedores](/docs/tasks/), y [gestión de objetos usando kubectl](/docs/concepts/overview/object-management-kubectl/overview/).
 
@@ -56,10 +47,10 @@ Un DaemonSet también necesita un sección [`.spec`](https://git.k8s.io/communit
 
 El campo `.spec.template` es uno de los campos obligatorios de la sección `.spec`.
 
-El campo `.spec.template` es una [plantilla Pod](/docs/concepts/workloads/pods/pod-overview/#pod-templates). Tiene exactamente el mismo esquema que un [Pod](/docs/concepts/workloads/pods/pod/), 
+El campo `.spec.template` es una [plantilla Pod](/docs/concepts/workloads/pods/pod-overview/#pod-templates). Tiene exactamente el mismo esquema que un [Pod](/docs/concepts/workloads/pods/pod/),
 excepto por el hecho de que está anidado y no tiene los campos `apiVersion` o `kind`.
 
-Además de los campos obligatorios de un Pod, la plantilla Pod para un DaemonSet debe especificar 
+Además de los campos obligatorios de un Pod, la plantilla Pod para un DaemonSet debe especificar
 las etiquetas apropiadas (ver [selector de pod](#pod-selector)).
 
 Una plantilla Pod para un DaemonSet debe tener una [`RestartPolicy`](/docs/user-guide/pod-states)
@@ -67,7 +58,7 @@ Una plantilla Pod para un DaemonSet debe tener una [`RestartPolicy`](/docs/user-
 
 ### Selector de Pod
 
-El campo `.spec.selector` es un selector de pod. Funciona igual que el campo `.spec.selector` 
+El campo `.spec.selector` es un selector de pod. Funciona igual que el campo `.spec.selector`
 de un [Job](/docs/concepts/jobs/run-to-completion-finite-workloads/).
 
 A partir de Kubernetes 1.8, se debe configurar un selector de pod que coincida con las
@@ -86,15 +77,15 @@ Cuando se configura ambos campos, el resultado es conjuntivo (AND).
 
 Si se especifica el campo `.spec.selector`, entonces debe coincidir con el campo `.spec.template.metadata.labels`. Aquellas configuraciones que no coinciden, son rechazadas por la API.
 
-Además, normalmente no se debería crear ningún Pod con etiquetas que coincidan con el selector, bien sea de forma directa, via otro 
+Además, normalmente no se debería crear ningún Pod con etiquetas que coincidan con el selector, bien sea de forma directa, via otro
 DaemonSet, o via otro controlador como un ReplicaSet.  De ser así, el controlador del DaemonSet
-pensará que dichos Pods fueron en realidad creados por él mismo. Kubernetes, en cualquier caso, no te impide realizar esta 
+pensará que dichos Pods fueron en realidad creados por él mismo. Kubernetes, en cualquier caso, no te impide realizar esta
 operación. Un caso donde puede que necesites hacer esto es cuando quieres crear manualmente un Pod con un valor diferente en un nodo para pruebas.
 
-### Ejecutar Pods sólo en algunos Nodos
+### Ejecutar Pods sólo en Nodos seleccionados
 
 Si se configura un `.spec.template.spec.nodeSelector`, entonces el controlador del DaemonSet
- creará los Pods en aquellos nodos que coincidan con el [selector de nodo](/docs/concepts/configuration/assign-pod-node/) indicado. 
+ creará los Pods en aquellos nodos que coincidan con el [selector de nodo](/docs/concepts/configuration/assign-pod-node/) indicado.
  De forma similar, si se configura una `.spec.template.spec.affinity`,
 entonces el controlador del DaemonSet creará los Pods en aquellos nodos que coincidan con la [afinidad de nodo](/docs/concepts/configuration/assign-pod-node/) indicada.
 Si no se configura ninguno de los dos, entonces el controlador del DaemonSet creará los Pods en todos los nodos.
@@ -115,13 +106,13 @@ se indica el campo `.spec.nodeName`, y por ello el planificador los ignora). Por
 
 {{< feature-state state="beta" for-kubernetes-version="1.12" >}}
 
-Un DaemonSet garantiza que todos los nodos elegibles ejecuten una copia de un Pod. 
+Un DaemonSet garantiza que todos los nodos elegibles ejecuten una copia de un Pod.
 Normalmente, es el planificador de Kubernetes quien determina el nodo donde se ejecuta un Pod. Sin embargo,
 los pods del DaemonSet son creados y planificados por el mismo controlador del DaemonSet.
 Esto introduce los siguientes inconvenientes:
 
  * Comportamiento inconsistente de los Pods: Los Pods normales que están esperando
- a ser creados, se encuentran en estado `Pending`, pero los pods del DaemonSet no pasan por el estado `Pending`. 
+ a ser creados, se encuentran en estado `Pending`, pero los pods del DaemonSet no pasan por el estado `Pending`.
  Esto confunde a los usuarios.
  * La [prioridad y el comportamiento de apropiación de Pods](/docs/concepts/configuration/pod-priority-preemption/)
    se maneja por el planificador por defecto. Cuando se habilita la contaminación, el controlador del DaemonSet
@@ -130,7 +121,7 @@ Esto introduce los siguientes inconvenientes:
 `ScheduleDaemonSetPods` permite planificar DaemonSets usando el planificador por defecto
 en vez del controlador del DaemonSet, añadiendo la condición `NodeAffinity`
 a los pods del DaemonSet, en vez de la condición `.spec.nodeName`. El planificador por defecto
-se usa entonces para asociar el pod a su servidor destino. Si la afinidad de nodo del 
+se usa entonces para asociar el pod a su servidor destino. Si la afinidad de nodo del
 pod del DaemonSet ya existe, se sustituye. El controlador del DaemonSet sólo realiza
 estas operaciones cuando crea o modifica los pods del DaemonSet, y no se realizan cambios
 al `spec.template` del DaemonSet.
@@ -146,7 +137,7 @@ nodeAffinity:
         - target-host-name
 ```
 
-Adicionalmente, se añade de forma automática la tolerancia `node.kubernetes.io/unschedulable:NoSchedule` 
+Adicionalmente, se añade de forma automática la tolerancia `node.kubernetes.io/unschedulable:NoSchedule`
 a los Pods del DaemonSet. Así, el planificador por defecto ignora los nodos
 `unschedulable` cuando planifica los Pods del DaemonSet.
 
@@ -158,23 +149,23 @@ A pesar de que los Pods de proceso respetan las
 la siguientes tolerancias son añadidas a los Pods del DaemonSet de forma automática
 según las siguientes características:
 
-| Clave de tolerancia                          | Efecto     | Versión | Descripción                                                  |
-| ---------------------------------------- | ---------- | ------- | ------------------------------------------------------------ |
-| `node.kubernetes.io/not-ready`           | NoExecute  | 1.13+    | Los pods del DaemonSet no son expulsados cuando hay problemas de nodo como una partición de red. |
-| `node.kubernetes.io/unreachable`         | NoExecute  | 1.13+    | Los pods del DaemonSet no son expulsados cuando hay problemas de nodo como una partición de red. |
-| `node.kubernetes.io/disk-pressure`       | NoSchedule | 1.8+    | Los pods del DaemonSet no son expulsados cuando hay problemas de nodo como la falta de espacio en disco. |
-| `node.kubernetes.io/memory-pressure`     | NoSchedule | 1.8+    | Los pods del DaemonSet no son expulsados cuando hay problemas de nodo como la falta de memoria. |
-| `node.kubernetes.io/unschedulable`       | NoSchedule | 1.12+   | Los pods del DaemonSet toleran los atributos unschedulable del planificador por defecto.                                                    |
-| `node.kubernetes.io/network-unavailable` | NoSchedule | 1.12+   | Los pods del DaemonSet, que usan la red del servidor anfitrión, toleran los atributos network-unavailable del planificador por defecto.                      |
+| Clave de tolerancia                      | Efecto     | Versión | Descripción                                                                                                                             |
+| ---------------------------------------- | ---------- | ------- | --------------------------------------------------------------------------------------------------------------------------------------- |
+| `node.kubernetes.io/not-ready`           | NoExecute  | 1.13+   | Los pods del DaemonSet no son expulsados cuando hay problemas de nodo como una partición de red.                                        |
+| `node.kubernetes.io/unreachable`         | NoExecute  | 1.13+   | Los pods del DaemonSet no son expulsados cuando hay problemas de nodo como una partición de red.                                        |
+| `node.kubernetes.io/disk-pressure`       | NoSchedule | 1.8+    | Los pods del DaemonSet no son expulsados cuando hay problemas de nodo como la falta de espacio en disco.                                |
+| `node.kubernetes.io/memory-pressure`     | NoSchedule | 1.8+    | Los pods del DaemonSet no son expulsados cuando hay problemas de nodo como la falta de memoria.                                         |
+| `node.kubernetes.io/unschedulable`       | NoSchedule | 1.12+   | Los pods del DaemonSet toleran los atributos unschedulable del planificador por defecto.                                                |
+| `node.kubernetes.io/network-unavailable` | NoSchedule | 1.12+   | Los pods del DaemonSet, que usan la red del servidor anfitrión, toleran los atributos network-unavailable del planificador por defecto. |
 
 
 ## Comunicarse con los Pods de los DaemonSets
 
 Algunos patrones posibles para la comunicación con los Pods de un DaemonSet son:
 
-- **Push**: Los Pods del DaemonSet se configuran para enviar actualizaciones a otro servicio, 
+- **Push**: Los Pods del DaemonSet se configuran para enviar actualizaciones a otro servicio,
 como una base de datos de estadísticas. No tienen clientes.
-- **NodeIP y Known Port**: Los Pods del DaemonSet pueden usar un `hostPort`, de forma que se les puede alcanzar via las IPs del nodo. Los clientes conocen la lista de IPs del nodo de algún modo, 
+- **NodeIP y Known Port**: Los Pods del DaemonSet pueden usar un `hostPort`, de forma que se les puede alcanzar via las IPs del nodo. Los clientes conocen la lista de IPs del nodo de algún modo,
 y conocen el puerto acordado.
 - **DNS**: Se crea un [servicio headless](/docs/concepts/services-networking/service/#headless-services) con el mismo selector de pod,
   y entonces se descubre a los DaemonSets usando los recursos `endpoints` o mediante múltiples registros de tipo A en el DNS.
@@ -185,10 +176,10 @@ y conocen el puerto acordado.
 Si se cambian las etiquetas de nodo, el DaemonSet comenzará de forma inmediata a añadir Pods a los nuevos nodos que coincidan y a eliminar
 los Pods de aquellos nuevos nodos donde no coincidan.
 
-Puedes modificar los Pods que crea un DaemonSet. Sin embargo, no se permite actualizar todos los campos de los Pods. 
+Puedes modificar los Pods que crea un DaemonSet. Sin embargo, no se permite actualizar todos los campos de los Pods.
  Además, el controlador del DaemonSet utilizará la plantilla original la próxima vez que se cree un nodo (incluso con el mismo nombre).
 
-Puedes eliminar un DaemonSet. Si indicas el parámetro `--cascade=false` al usar `kubectl`, 
+Puedes eliminar un DaemonSet. Si indicas el parámetro `--cascade=false` al usar `kubectl`,
 entonces los Pods continuarán ejecutándose en los nodos. Así, puedes crear entonces un nuevo DaemonSet con una plantilla diferente.
 El nuevo DaemonSet con la plantilla diferente reconocerá a todos los Pods existentes que tengan etiquetas coincidentes y
 no modificará o eliminará ningún Pod aunque la plantilla no coincida con los Pods desplegados.
@@ -198,14 +189,14 @@ A partir de las versión 1.6 de Kubernetes, puedes [llevar a cabo una actualizac
 
 ## Alternativas al DaemonSet
 
-### Secuencias de comandos de inicialización 
+### Secuencias de comandos de inicialización
 
 Aunque es perfectamente posible ejecutar procesos arrancándolos directamente en un nodo (ej. usando
 `init`, `upstartd`, o `systemd`), existen numerosas ventajas si se realiza via un DaemonSet:
 
 - Capacidad de monitorizar y gestionar los logs de los procesos del mismo modo que para las aplicaciones.
 - Mismo lenguaje y herramientas de configuración (ej. plantillas de Pod, `kubectl`) tanto para los procesos como para las aplicaciones.
-- Los procesos que se ejecutan en contenedores con límitaciones de recursos aumentan el aislamiento entre dichos procesos y el resto de contenedores de aplicaciones. 
+- Los procesos que se ejecutan en contenedores con límitaciones de recursos aumentan el aislamiento entre dichos procesos y el resto de contenedores de aplicaciones.
   Sin embargo, esto también se podría conseguir ejecutando los procesos en un contenedor en vez de un Pod
   (ej. arrancarlos directamente via Docker).
 
@@ -231,8 +222,6 @@ ambos crean Pods, y que dichos Pods tienen procesos que no se espera que termine
 servidores de almacenamiento).
 
 Utiliza un Deployment para definir servicios sin estado, como las interfaces de usuario, donde el escalado vertical y horizontal
-del número de réplicas y las actualizaciones continuas son mucho más importantes que el control exacto del servidor donde se ejecuta el Pod. 
-Utiliza un DaemonSet cuando es importante que una copia de un Pod siempre se ejecute en cada uno de los nodos, 
-y cuando se necesite que arranque antes que el resto de Pods.
-
-
+del número de réplicas y las actualizaciones continuas son mucho más importantes que el control exacto del servidor donde se ejecuta el Pod.
+Utiliza un DaemonSet cuando es importante que una copia de un Pod siempre se ejecute en cada uno de los nodos,
+y cuando se necesite que arranque antes que el resto de Pods.
\ No newline at end of file
diff --git a/content/es/docs/concepts/workloads/controllers/garbage-collection.md b/content/es/docs/concepts/workloads/controllers/garbage-collection.md
index bc18541ce2..9653e6f582 100644
--- a/content/es/docs/concepts/workloads/controllers/garbage-collection.md
+++ b/content/es/docs/concepts/workloads/controllers/garbage-collection.md
@@ -170,7 +170,7 @@ Seguimiento en [#26120](https://github.com/kubernetes/kubernetes/issues/26120)
 ## {{% heading "whatsnext" %}}
 
 
-[Documento de Diseño 1](https://git.k8s.io/community/contributors/design-proposals/api-machinery/garbage-collection.md)
+[Documento de Diseño 1](https://git.k8s.io/design-proposals-archive/api-machinery/garbage-collection.md)
 
-[Documento de Diseño 2](https://git.k8s.io/community/contributors/design-proposals/api-machinery/synchronous-garbage-collection.md)
+[Documento de Diseño 2](https://git.k8s.io/design-proposals-archive/api-machinery/synchronous-garbage-collection.md)
 
diff --git a/content/es/docs/concepts/workloads/controllers/jobs-run-to-completion.md b/content/es/docs/concepts/workloads/controllers/jobs-run-to-completion.md
index f3bd77b4bf..49d9741b07 100644
--- a/content/es/docs/concepts/workloads/controllers/jobs-run-to-completion.md
+++ b/content/es/docs/concepts/workloads/controllers/jobs-run-to-completion.md
@@ -443,7 +443,7 @@ de controlador personalizado para esos Pods. Esto da la máxima flexibilidad, pe
 cueste un poco más de entender y ofrece menos integración con Kubernetes.
 
 Un ejemplo de este patrón sería un Job que arranca un Pod que ejecuta una secuencia de comandos que, a su vez,
-arranca un controlador maestro de Spark (ver el [ejemplo de spark](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/spark/README.md)), 
+arranca un controlador maestro de Spark (ver el [ejemplo de spark](https://github.com/kubernetes/examples/tree/master/staging/spark/README.md)), 
 ejecuta un manejador de spark, y a continuación lo limpia todo.
 
 Una ventaja de este enfoque es que el proceso general obtiene la garantía del objeto Job,
diff --git a/content/es/docs/concepts/workloads/controllers/statefulset.md b/content/es/docs/concepts/workloads/controllers/statefulset.md
index 1211160545..4ff09f2148 100644
--- a/content/es/docs/concepts/workloads/controllers/statefulset.md
+++ b/content/es/docs/concepts/workloads/controllers/statefulset.md
@@ -36,7 +36,7 @@ proporcione un conjunto de réplicas sin estado, como un
 
 ## Limitaciones
 
-* El almacenamiento de un determinado Pod debe provisionarse por un [Provisionador de PersistentVolume](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/persistent-volume-provisioning/README.md) basado en la `storage class` requerida, o pre-provisionarse por un administrador.
+* El almacenamiento de un determinado Pod debe provisionarse por un [Provisionador de PersistentVolume](https://github.com/kubernetes/examples/tree/master/staging/persistent-volume-provisioning/README.md) basado en la `storage class` requerida, o pre-provisionarse por un administrador.
 * Eliminar y/o reducir un StatefulSet *no* eliminará los volúmenes asociados con el StatefulSet. Este comportamiento es intencional y sirve para garantizar la seguridad de los datos, que da más valor que la purga automática de los recursos relacionados del StatefulSet.
 * Los StatefulSets actualmente necesitan un [Servicio Headless](/docs/concepts/services-networking/service/#headless-services) como responsable de la identidad de red de los Pods. Es tu responsabilidad crear este Service.
 * Los StatefulSets no proporcionan ninguna garantía de la terminación de los pods cuando se elimina un StatefulSet. Para conseguir un término de los pods ordenado y controlado en el StatefulSet, es posible reducir el StatefulSet a 0 réplicas justo antes de eliminarlo.
diff --git a/content/es/docs/concepts/workloads/pods/disruptions.md b/content/es/docs/concepts/workloads/pods/disruptions.md
new file mode 100644
index 0000000000..1cd146c001
--- /dev/null
+++ b/content/es/docs/concepts/workloads/pods/disruptions.md
@@ -0,0 +1,273 @@
+---
+reviewers:
+- electrocucaracha
+- raelga
+- gamba47
+title: Interrupciones
+content_type: concept
+weight: 60
+---
+
+<!-- overview -->
+Esta guía es para los dueños de aplicaciones que quieren crear
+aplicaciones con alta disponibilidad y que necesitan entender
+que tipos de interrupciones pueden suceder en los Pods.
+
+También es para los administradores de clústers que quieren aplicar acciones
+automatizadas en sus clústers, cómo actualizar o autoescalar los clústers.
+
+<!-- body -->
+
+## Interrupciones voluntarias e involuntarias
+
+Los Pods no desaparecen hasta que algo (una persona o un controlador) los destruye
+ó hay problemas de hardware ó software que son inevitables.
+
+Nosotros llamamos a esos casos inevitables *interrupciones involuntarias* de
+una aplicación. Algunos ejemplos:
+
+- Una falla en hardware de la máquina física del nodo
+- Un administrador del clúster borra una VM (instancia) por error
+- El proveedor de la nube o el hipervisor falla y hace desaparecer la VM
+- Un kernel panic
+- El nodo desaparece del clúster por un problema de red que lo separa del clúster
+- Una remoción del Pod porque el nodo [no tiene recursos suficientes](/docs/concepts/scheduling-eviction/node-pressure-eviction/).
+
+A excepción de la condición sin recursos suficientes, todas estas condiciones
+deben ser familiares para la mayoría de los usuarios, no son específicas
+de Kubernetes
+
+Nosotros llamamos a los otros casos *interrupciones voluntarias*. Estas incluyen
+las acciones iniciadas por el dueño de la aplicación y aquellas iniciadas por el Administrador
+del Clúster. Las acciones típicas de los dueños de la aplicación incluye:
+
+- borrar el Deployment u otro controlador que maneja el Pod
+- actualizar el Deployment del Pod que causa un reinicio 
+- borrar un Pod (por ejemplo, por accidente)
+
+Las acciones del administrador del clúster incluyen:
+
+- [Drenar un nodo](/docs/tasks/administer-cluster/safely-drain-node/) para reparar o actualizar.
+- Drenar un nodo del clúster para reducir el clúster (aprenda acerca de [Autoescalamiento de Clúster](https://github.com/kubernetes/autoscaler/#readme)
+).
+- Remover un Pod de un nodo para permitir que otra cosa pueda ingresar a ese nodo.
+
+Estas acciones pueden ser realizadas directamente por el administrador del clúster, por
+tareas automatizadas del administrador del clúster ó por el proveedor del clúster.
+
+Consulte al administrador de su clúster, a su proveedor de la nube ó a la documentación de su distribución
+para determinar si alguna de estas interrupciones voluntarias están habilitadas en su clúster.
+Si ninguna se encuentra habilitada, puede omitir la creación del presupuesto de Interrupción de Pods.
+
+{{< caution >}}
+No todas las interrupciones voluntarias son consideradas por el presupuesto de interrupción de Pods. Por ejemplo,
+borrar un Deployment o Pods que evitan el uso del presupuesto.
+{{< /caution >}}
+
+## Tratando con las interrupciones
+
+Estas son algunas de las maneras para mitigar las interrupciones involuntarias:
+
+- Asegurarse que el Pod [solicite los recursos](/docs/tasks/configure-pod-container/assign-memory-resource) que necesita.
+- Replique su aplicación si usted necesita alta disponibilidad. (Aprenda sobre correr aplicaciones replicadas
+  [stateless](/docs/tasks/run-application/run-stateless-application-deployment/)
+  y [stateful](/docs/tasks/run-application/run-replicated-stateful-application/)
+- Incluso, para una alta disponibilidad mayor cuando se corren aplicaciones replicadas,
+  propague las aplicaciones por varios racks (usando
+  [anti-affinity](/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity))
+  o usando zonas (si usa un [clúster multi-zona](/docs/setup/multiple-zones).)
+
+La frecuencia de las interrupciones voluntarias varía. En un clúster basico de Kubernetes, no hay 
+interrupciones voluntarias automáticas (solo el usuario las genera). Sin embargo, su administrador del clúster o proveedor de alojamiento
+puede correr algun servicio adicional que pueda causar estas interrupciones voluntarias. Por ejemplo,
+desplegando una actualización de software en los nodos puede causar interrupciones. También, algunas implementaciones
+de clústers con autoescalamiento de nodos puede causar interrupciones para defragmentar o compactar los nodos.
+Su administrador de clúster o proveedor de alojamiento debe tener documentado cuál es el nivel de interrupciones
+voluntarias esperadas, sí es que las hay. Ciertas opciones de configuración, como ser
+[usar PriorityClasses](/docs/concepts/scheduling-eviction/pod-priority-preemption/)
+en las especificaciones de su Pod pueden también causar interrupciones voluntarias (o involuntarias).
+
+
+## Presupuesto de Interrupción de Pods
+
+{{< feature-state for_k8s_version="v1.21" state="stable" >}}
+
+Kubernetes ofrece carácteristicas para ayudar a ejecutar aplicaciones con alta disponibliidad, incluso cuando usted
+introduce interrupciones voluntarias frecuentes.
+
+Como dueño de la aplicación, usted puede crear un presupuesto de interrupción de Pods (PDB por sus siglas en inglés) para cada aplicación.
+Un PDB limita el numero de Pods de una aplicación replicada, que estan caídos de manera simultánea por
+interrupciones voluntarias. Por ejemplo, una aplicación basada en quórum puede
+asegurarse que el número de réplicas corriendo nunca es menor al
+número necesitado para obtener el quórum. Una web de tipo front end puede querer
+asegurarse que el número de réplicas atendiendo al tráfico nunca puede caer bajo un cierto
+porcentaje del total.
+
+Los administradores del clúster y proveedores de hosting pueden usar herramientas que
+respeten el presupuesto de interrupción de Pods utilizando la [API de Desalojo](/docs/tasks/administer-clúster/safely-drain-node/#eviction-api)
+en vez de directamente borrar Pods o Deployments.
+
+Por ejemplo, el subcomando `kubectl drain` le permite marcar un nodo a un modo fuera de
+servicio. Cuando se ejecuta `kubectl drain`, la herramienta trata de quitar a todos los Pods en
+el nodo que se esta dejando fuera de servicio. La petición de desalojo que `kubectl` solicita en 
+su nombre puede ser temporalmente denegado, entonces la herramienta periodicamente reintenta todas las 
+peticiones fallidas hasta que todos los Pods en el nodo afectado son terminados ó hasta que el tiempo de espera,
+que puede ser configurado, es alcanzado.
+ 
+Un PDB especifica el número de réplicas que una aplicación puede tolerar, relativo a cuantas
+se pretende tener. Por ejemplo, un Deployment que tiene un `.spec.replicas: 5` se
+supone que tiene 5 Pods en cualquier momento. Si su PDB permite tener 4 a la vez,
+entonces la API de Desalojo va a permitir interrupciones voluntarias de un (pero no a dos) Pod a la vez.
+
+El grupo de Pods que comprende a la aplicación esta especificada usando una etiqueta selectora, la misma
+que es usada por el controlador de aplicación (deployment, stateful-set, etc).
+
+El numero de Pods "deseado" es calculado a partir de `.spec.replicas` de el recurso de Workload
+que es manejado para esos Pods. El plano de control descubre el recurso Workload perteneciente a el
+examinando las `.metadata.ownerReferences` del Pod.
+
+Las [Interrupciones Involuntarias](#voluntary-and-involuntary-disruptions) no pueden ser prevenidas por los PDB; pero si
+son contabilizadas a partir este presupuesto.
+
+Los Pods que son borrados o no estan disponibles debido a una actualización continua de una aplicación forman parte del presupuesto de interrupciones, pero los recursos Workload (como los Deployments y StatefulSet)
+no están limitados por los PDBs cuando se hacen actualizaciones continuas. En cambio, la administración de fallas
+durante la actualización de la aplicación es configurada en la especificación para este recurso Workload específico.
+
+Cuando un Pod es quitado usando la API de desalojo, este es 
+[terminado](/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination) correctamente, haciendo honor al 
+`terminationGracePeriodSeconds` configurado en su [PodSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core).
+
+## Ejemplo de Presupuesto de Interrupción de POD {#pdb-example}
+
+Considere un clúster con 3 nodos, `nodo-1` hasta `nodo-3`.
+El clúster esta corriendo varias aplicaciones. Uno de ellos tiene 3 replicas, que llamaremos
+`pod-a`, `pod-b`, y `pod-c`. Otro Pod no relacionado y sin PDB, llamado `pod-x`, también se muestra.
+
+Inicialmente los pods estan distribuidos de esta manera:
+
+
+|       nodo-1         |       nodo-2        |       nodo-3       |
+|:--------------------:|:-------------------:|:------------------:|
+| pod-a  *available*   | pod-b *available*   | pod-c *available*  |
+| pod-x  *available*   |                     |                    |
+
+Los 3 Pods son parte de un Deployment, ellos colectivamente tienen un PDB que requiere
+que por lo menos 2 de los 3 Pods esten disponibles todo el tiempo.
+
+Por ejemplo, supongamos que el administrador del clúster quiere reiniciar para actualizar el kernel y arreglar un bug.
+El administrador del clúster primero intenta desocupar el `nodo-1` usando el comando `kubectl drain`.
+La herramienta intenta desalojar a los pods `pod-a` y `pod-x`. Esto tiene éxito inmediatamente.
+Ambos Pods van al estado `terminating` al mismo tiempo.
+Pone al clúster en el siguiente estado:
+
+| nodo-1 *draining* |       nodo-2        |       nodo-3       |
+|:--------------------:|:-------------------:|:------------------:|
+| pod-a  *terminating* | pod-b *available*   | pod-c *available*  |
+| pod-x  *terminating* |                     |                    |
+
+El Deployment detecta que uno de los Pods esta terminando, entonces crea un reemplazo
+llamado `pod-d`. Como el `nodo-1` esta bloqueado, el pod termina en otro nodo. Algo más, adicionalmente
+a creado el pod `pod-y` como un reemplazo del `pod-x` . 
+
+(Nota: para un StatefulSet, `pod-a`, el cual debería ser llamado algo como `pod-0`, necesitaría ser terminado completamente antes de su remplazo, el cual también es llamado `pod-0` pero tiene un UID diferente, podría ser creado. De lo contrario, el ejemplo también aplica a un StatefulSet.)
+
+Ahora el clúster esta en este estado:
+
+| nodo-1 *draining* |       nodo-2        |       nodo-3       |
+|:--------------------:|:-------------------:|:------------------:|
+| pod-a  *terminating* | pod-b *available*   | pod-c *available*  |
+| pod-x  *terminating* | pod-d *starting*    | pod-y              |
+
+En algún punto, los Pods finalizan y el clúster se ve de esta forma:
+
+|  nodo-1 *drained* |       nodo-2        |       nodo-3       |
+|:--------------------:|:-------------------:|:------------------:|
+|                      | pod-b *available*   | pod-c *available*  |
+|                      | pod-d *starting*    | pod-y              |
+
+En este estado, si un administrador del clúster impaciente intenta desalojar el `nodo-2` ó el 
+`nodo-3`, el comando drain va a ser bloqueado, porque hay solamente 2 Pods disponibles para
+el Deployment y el PDB requiere por lo menos 2. Después de pasado un tiempo el `pod-d` esta disponible.
+
+El estado del clúster ahora se ve así:
+
+|  nodo-1 *drained* |       nodo-2        |       nodo-3       |
+|:--------------------:|:-------------------:|:------------------:|
+|                      | pod-b *available*   | pod-c *available*  |
+|                      | pod-d *available*   | pod-y              |
+
+Ahora, el administrador del clúster desaloja el `nodo-2`.
+El comando drain tratará de desalojar a los 2 Pods con algún orden, digamos
+primero el `pod-b` y después el `pod-d`. Va a tener éxito en quitar el `pod-b`.
+Pero cuando intente desalojar al `pod-d`, va a ser rechazado porque esto va a dejar 
+un Pod solamente disponible para el Deployment. 
+
+El Deployment crea un reemplazo para el `pod-b` llamado `pod-e`.
+Porque no hay recursos suficientes disponibles en el clúster para programar
+el `pod-e` el desalojo será bloqueado nuevamente. El clúster va a terminar en este
+estado:
+
+|    nodo-1 *drained*  |       nodo-2        |       nodo-3       | *no node*          |
+|:--------------------:|:-------------------:|:------------------:|:------------------:|
+|                      | pod-b *terminating* | pod-c *available*  | pod-e *pending*    |
+|                      | pod-d *available*   | pod-y              |                    |
+
+Ahora, el administrador del clúster necesita
+agregar un nuevo nodo en el clúster para continuar con la actualización.
+
+Usted puede ver como Kubernetes varia la tasa a la que las interrupciones
+pueden suceder, en función de: 
+
+- cuantas réplicas una aplicación necesita
+- cuanto toma apagar una instancia de manera correcta
+- cuanto tiempo toma que una nueva instancia inicie
+- el tipo de controlador
+- la capacidad de recursos del clúster
+
+## Separando al dueño del Clúster y los roles de dueños de la Aplicación
+
+Muchas veces es útil pensar en el Administrador del Clúster
+y al dueño de la aplicación como roles separados con conocimiento limitado
+el uno del otro. Esta separación de responsabilidades
+puede tener sentido en estos escenarios:
+
+- Cuando hay muchas equipos con aplicaciones compartiendo un clúster de Kubernetes y 
+  hay una especialización natural de roles
+- Cuando una herramienta de terceros o servicio es usado para automatizar el control del clúster
+
+El presupuesto de interrupción de Pods soporta esta separación de roles, ofreciendo
+una interfaz entre los roles.
+
+Si no se tiene tal separación de responsabilidades en la organización,
+posiblemente no se necesite el Presupuesto de Interrupción de Pods.
+
+## Como realizar Acciones Disruptivas en el Clúster
+
+Si usted es el Administrador del Clúster y necesita realizar una acción disruptiva en todos
+los nodos en el clúster, como ser una actualización de nodo o de software, estas son algunas de las opciones:
+
+- Aceptar el tiempo sin funcionar mientras dura la actualización.
+- Conmutar a otra replica completa del clúster.
+   - No hay tiempo sin funcionar, pero puede ser costoso tener duplicados los nodos
+   y tambien un esfuerzo humano para orquestar dicho cambio.
+- Escribir la toleracia a la falla de la aplicación y usar PDBs.
+   - No hay tiempo sin funcionar.
+   - Duplicación de recursos mínimo.
+   - Permite mucha más automatización de la administración del clúster.
+   - Escribir aplicaciones que tengan tolerancia a fallas es complicado, pero el trabajo para tolerar interrupciones
+     involuntarias, largamente se sobrepone con el trabajo que es dar soporte a autoescalamientos y tolerar
+     interrupciones involuntarias.
+
+
+
+
+## {{% heading "whatsnext" %}}
+
+
+* Siga los pasos para proteger su aplicación con [configurar el Presupuesto de Interrupciones de Pods](/docs/tasks/run-application/configure-pdb/).
+
+* Aprenda más sobre [desalojar nodos](/docs/tasks/administer-clúster/safely-drain-node/)
+
+* Aprenda sobre [actualizar un Deployment](/docs/concepts/workloads/controllers/deployment/#updating-a-deployment)
+  incluyendo los pasos para mantener su disponibilidad mientras dura la actualización.
+
diff --git a/content/es/docs/concepts/workloads/pods/init-containers.md b/content/es/docs/concepts/workloads/pods/init-containers.md
new file mode 100644
index 0000000000..2ae5323771
--- /dev/null
+++ b/content/es/docs/concepts/workloads/pods/init-containers.md
@@ -0,0 +1,341 @@
+---
+title: Contenedores de Inicialización
+content_type: concept
+weight: 40
+---
+
+<!-- overview -->
+Esta página proporciona una descripción general de los contenedores de inicialización (init containers): contenedores especializados que se ejecutan
+antes de los contenedores de aplicación en un {{< glossary_tooltip text="Pod" term_id="pod" >}}.
+Los contenedores de inicialización pueden contener utilidades o scripts de instalación no presentes en una imagen de aplicación.
+
+Tú puedes especificar contenedores de inicialización en la especificación del Pod junto con el arreglo de `containers`
+(el cual describe los contenedores de aplicación).
+
+<!-- body -->
+## Entendiendo los contenedores de inicialización
+
+Un {{< glossary_tooltip text="Pod" term_id="pod" >}} puede tener múltiples contenedores
+ejecutando aplicaciones dentro de él, pero también puede tener uno o más contenedores de inicialización
+que se ejecutan antes de que se inicien los contenedores de aplicación.
+
+Los contenedores de inicialización son exactamente iguales a los contenedores regulares excepto por:
+
+* Los contenedores de inicialización siempre se ejecutan hasta su finalización.
+* Cada contenedor de inicialiación debe completarse correctamente antes de que comience el siguiente.
+
+Si el contenedor de inicialización de un Pod falla, kubelet reinicia repetidamente ese contenedor de inicialización hasta que tenga éxito.
+Sin embargo, si el Pod tiene una `restartPolicy` de `Never` y un contenedor de inicialización falla durante el inicio de ese Pod, Kubernetes trata al Pod en general como fallido.
+
+Para especificar un contenedor de inicialización para un Pod, agrega el campo `initContainers` en
+la [especificación del Pod](/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodSpec),
+como un arreglo de elementos `container` (similar al campo `containers` de aplicación y su contenido).
+Consulta [Container](/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container) en la
+referencia de API para más detalles.
+
+El estado de los contenedores de inicialización se devuelve en el campo `.status.initContainerStatuses`
+como un arreglo de los estados del contenedor (similar al campo `.status.containerStatuses`).
+
+### Diferencias con los contenedores regulares
+
+Los contenedores de inicialización admiten todos los campos y características de los contenedores de aplicaciones,
+incluidos los límites de recursos, los volúmenes y la configuración de seguridad. Sin embargo, las
+solicitudes de recursos y los límites para un contenedor de inicialización se manejan de manera diferente,
+como se documenta en [Recursos](#resources).
+
+Además, los contenedores de inicialización no admiten `lifecycle`, `livenessProbe`, `readinessProbe` o
+`startupProbe` porque deben de ejecutarse hasta su finalización antes de que el Pod pueda estar listo.
+
+Si especificas varios contenedores de inicialización para un Pod, kubelet ejecuta cada contenedor
+de inicialización secuencialmente. Cada contenedor de inicialización debe tener éxito antes de que se pueda ejecutar el siguiente.
+Cuando todos los contenedores de inicialización se hayan ejecutado hasta su finalización, kubelet inicializa
+los contenedores de aplicación para el Pod y los ejecuta como de costumbre.
+
+### Usando contenedores de inicialización
+
+Dado que los contenedores de inicialización tienen imágenes separadas de los contenedores de aplicaciones, estos
+tienen algunas ventajas sobre el código relacionado de inicio:
+
+* Los contenedores de inicialización pueden contener utilidades o código personalizado para la configuración que no están presentes en una
+  imagen de aplicación. Por ejemplo, no hay necesidad de hacer una imagen `FROM` de otra imagen solo para usar una herramienta como
+  `sed`, `awk`, `python` o `dig` durante la instalación.
+* Los roles de constructor e implementador de imágenes de aplicación pueden funcionar de forma independiente sin
+  la necesidad de construir conjuntamente una sola imagen de aplicación.
+* Los contenedores de inicialización pueden ejecutarse con una vista diferente al sistema de archivos que los contenedores de aplicaciones en
+  el mismo Pod. En consecuencia, se les puede dar acceso a
+  {{<glossary_tooltip text = "Secrets" term_id = "secret">}} a los que los contenedores de aplicaciones no pueden acceder.
+* Debido a que los contenedores de inicialización se ejecutan hasta su finalización antes de que se inicien los contenedores de aplicaciones, los contenedores de inicialización ofrecen
+  un mecanismo para bloquear o retrasar el inicio del contenedor de aplicación hasta que se cumplan una serie de condiciones previas. Una vez
+  que las condiciones previas se cumplen, todos los contenedores de aplicaciones de un Pod pueden iniciarse en paralelo.
+* Los contenedores de inicialización pueden ejecutar de forma segura utilidades o código personalizado que de otro modo harían a una imagen de aplicación
+  de contenedor menos segura. Si mantiene separadas herramientas innecesarias, puede limitar la superficie de ataque
+  a la imagen del contenedor de aplicación.
+
+### Ejemplos
+
+A continuación, se muestran algunas ideas sobre cómo utilizar los contenedores de inicialización:
+
+* Esperar a que se cree un {{< glossary_tooltip text="Service" term_id="service">}}
+  usando una sola linea de comando de shell:
+
+  ```shell
+  for i in {1..100}; do sleep 1; if dig myservice; then exit 0; fi; done; exit 1
+  ```
+
+* Registrar este Pod con un servidor remoto desde la downward API con un comando como:
+
+  ```shell
+  curl -X POST http://$MANAGEMENT_SERVICE_HOST:$MANAGEMENT_SERVICE_PORT/register -d 'instance=$(<POD_NAME>)&ip=$(<POD_IP>)'
+  ```
+
+* Esperar algo de tiempo antes de iniciar el contenedor de aplicación con un comando como:
+
+  ```shell
+  sleep 60
+  ```
+
+* Clonar un repositorio de Git en un {{< glossary_tooltip text="Volume" term_id="volume" >}}
+
+* Colocar valores en un archivo de configuración y ejecutar una herramienta de plantilla para generar
+  dinámicamente un archivo de configuración para el contenedor de aplicación principal. Por ejemplo,
+  colocar el valor `POD_IP` en una configuración y generar el archivo de configuración
+  de la aplicación principal usando Jinja.
+
+#### Contenedores de inicialización en uso
+
+Este ejemplo define un simple Pod que tiene dos contenedores de inicialización.
+El primero espera por `myservice` y el segundo espera por `mydb`. Una vez que ambos
+contenedores de inicialización se completen, el Pod ejecuta el contenedor de aplicación desde su sección `spec`.
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: myapp-pod
+  labels:
+    app.kubernetes.io/name: MyApp
+spec:
+  containers:
+  - name: myapp-container
+    image: busybox:1.28
+    command: ['sh', '-c', 'echo ¡La aplicación se está ejecutando! && sleep 3600']
+  initContainers:
+  - name: init-myservice
+    image: busybox:1.28
+    command: ['sh', '-c', "until nslookup myservice.$(cat /var/run/secrets/kubernetes.io/serviceaccount/namespace).svc.cluster.local; do echo esperando a myservice; sleep 2; done"]
+  - name: init-mydb
+    image: busybox:1.28
+    command: ['sh', '-c', "until nslookup mydb.$(cat /var/run/secrets/kubernetes.io/serviceaccount/namespace).svc.cluster.local; do echo esperando a mydb; sleep 2; done"]
+```
+
+Puedes iniciar este Pod ejecutando:
+
+```shell
+kubectl apply -f myapp.yaml
+```
+
+El resultado es similar a esto:
+
+```shell
+pod/myapp-pod created
+```
+
+Y verificar su estado con:
+
+```shell
+kubectl get -f myapp.yaml
+```
+
+El resultado es similar a esto:
+
+```shell
+NAME        READY     STATUS     RESTARTS   AGE
+myapp-pod   0/1       Init:0/2   0          6m
+```
+
+o para más detalles:
+
+```shell
+kubectl describe -f myapp.yaml
+```
+
+El resultado es similar a esto:
+
+```shell
+Name:          myapp-pod
+Namespace:     default
+[...]
+Labels:        app.kubernetes.io/name=MyApp
+Status:        Pending
+[...]
+Init Containers:
+  init-myservice:
+[...]
+    State:         Running
+[...]
+  init-mydb:
+[...]
+    State:         Waiting
+      Reason:      PodInitializing
+    Ready:         False
+[...]
+Containers:
+  myapp-container:
+[...]
+    State:         Waiting
+      Reason:      PodInitializing
+    Ready:         False
+[...]
+Events:
+  FirstSeen    LastSeen    Count    From                      SubObjectPath                           Type          Reason        Message
+  ---------    --------    -----    ----                      -------------                           --------      ------        -------
+  16s          16s         1        {default-scheduler }                                              Normal        Scheduled     Successfully assigned myapp-pod to 172.17.4.201
+  16s          16s         1        {kubelet 172.17.4.201}    spec.initContainers{init-myservice}     Normal        Pulling       pulling image "busybox"
+  13s          13s         1        {kubelet 172.17.4.201}    spec.initContainers{init-myservice}     Normal        Pulled        Successfully pulled image "busybox"
+  13s          13s         1        {kubelet 172.17.4.201}    spec.initContainers{init-myservice}     Normal        Created       Created container with docker id 5ced34a04634; Security:[seccomp=unconfined]
+  13s          13s         1        {kubelet 172.17.4.201}    spec.initContainers{init-myservice}     Normal        Started       Started container with docker id 5ced34a04634
+```
+
+Para ver los logs de los contenedores de inicialización en este Pod ejecuta:
+
+```shell
+kubectl logs myapp-pod -c init-myservice # Inspecciona el primer contenedor de inicialización
+kubectl logs myapp-pod -c init-mydb      # Inspecciona el segundo contenedor de inicialización
+```
+
+En este punto, estos contenedores de inicialización estarán esperando para descubrir los Servicios denominados
+`mydb` y `myservice`.
+
+Aquí hay una configuración que puedes usar para que aparezcan esos Servicios:
+
+```yaml
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: myservice
+spec:
+  ports:
+  - protocol: TCP
+    port: 80
+    targetPort: 9376
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: mydb
+spec:
+  ports:
+  - protocol: TCP
+    port: 80
+    targetPort: 9377
+```
+
+Para crear los servicios de `mydb` y `myservice`:
+
+```shell
+kubectl apply -f services.yaml
+```
+
+El resultado es similar a esto:
+
+```shell
+service/myservice created
+service/mydb created
+```
+
+Luego verás que esos contenedores de inicialización se completan y que el Pod `myapp-pod`
+pasa al estado `Running`:
+
+```shell
+kubectl get -f myapp.yaml
+```
+
+El resultado es similar a esto:
+
+```shell
+NAME        READY     STATUS    RESTARTS   AGE
+myapp-pod   1/1       Running   0          9m
+```
+
+Este sencillo ejemplo debería servirte de inspiración para crear tus propios
+contenedores de inicialización. [¿Qué es lo que sigue?](#what-s-next) contiene un enlace a un ejemplo más detallado.
+
+## Comportamiento detallado
+
+Durante el inicio del Pod, kubelet retrasa la ejecución de contenedores de inicialización hasta que la red
+y el almacenamiento estén listos. Después, kubelet ejecuta los contenedores de inicialización del Pod en el orden que
+aparecen en la especificación del Pod.
+
+Cada contenedor de inicialización debe salir correctamente antes de que
+comience el siguiente contenedor. Si un contenedor falla en iniciar debido al tiempo de ejecución o
+sale con una falla, se vuelve a intentar de acuerdo con el `restartPolicy` del Pod. Sin embargo,
+si el `restartPolicy` del Pod se establece en `Always`, los contenedores de inicialización usan
+el `restartPolicy` como `OnFailure`.
+
+Un Pod no puede estar `Ready` sino hasta que todos los contenedores de inicialización hayan tenido éxito. Los puertos en un
+contenedor de inicialización no se agregan a un Servicio. Un Pod que se está inicializando,
+está en el estado de `Pending`, pero debe tener una condición `Initialized` configurada como falsa.
+
+Si el Pod [se reinicia](#pod-restart-reasons) o es reiniciado, todos los contenedores de inicialización
+deben ejecutarse de nuevo.
+
+Los cambios en la especificación del contenedor de inicialización se limitan al campo de la imagen del contenedor.
+Alterar un campo de la imagen del contenedor de inicialización equivale a reiniciar el Pod.
+
+Debido a que los contenedores de inicialización se pueden reiniciar, reintentar o volverse a ejecutar, el código del contenedor de inicialización
+debe ser idempotente. En particular, el código que escribe en archivos en `EmptyDirs`
+debe estar preparado para la posibilidad de que ya exista un archivo de salida.
+
+Los contenedores de inicialización tienen todos los campos de un contenedor de aplicaciones. Sin embargo, Kubernetes
+prohíbe el uso de `readinessProbe` porque los contenedores de inicialización no pueden
+definir el `readiness` distinto de la finalización. Esto se aplica durante la validación.
+
+Usa `activeDeadlineSeconds` en el Pod para prevenir que los contenedores de inicialización fallen por siempre.
+La fecha límite incluye contenedores de inicialización.
+Sin embargo, se recomienda utilizar `activeDeadlineSeconds` si el usuario implementa su aplicación
+como un `Job` porque `activeDeadlineSeconds` tiene un efecto incluso después de que `initContainer` finaliza.
+El Pod que ya se está ejecutando correctamente sería eliminado por `activeDeadlineSeconds` si lo estableces.
+
+El nombre de cada aplicación y contenedor de inicialización en un Pod debe ser único; un
+error de validación es arrojado para cualquier contenedor que comparta un nombre con otro.
+
+### Recursos
+
+Dado el orden y la ejecución de los contenedores de inicialización, las siguientes reglas
+para el uso de recursos se aplican:
+
+* La solicitud más alta de cualquier recurso o límite particular definido en todos los contenedores
+  de inicialización es la *solicitud/límite de inicialización efectiva*. Si algún recurso no tiene un
+  límite de recursos especificado éste se considera como el límite más alto.
+* La *solicitud/límite efectiva* para un recurso es la más alta entre:
+  * la suma de todas las solicitudes/límites de los contenedores de aplicación, y
+  * la solicitud/límite de inicialización efectiva para un recurso
+* La planificación es hecha con base en las solicitudes/límites efectivos, lo que significa
+  que los contenedores de inicialización pueden reservar recursos para la inicialización que no se utilizan
+  durante la vida del Pod.
+* El nivel de `QoS` (calidad de servicio) del *nivel de `QoS` efectivo* del Pod es el
+  nivel de `QoS` tanto para los contenedores de inicialización como para los contenedores de aplicación.
+
+La cuota y los límites son aplicados con base en la solicitud y límite efectivos de Pod.
+
+Los grupos de control de nivel de Pod (cgroups) se basan en la solicitud y el límite de Pod efectivos, al igual que el planificador de Kubernetes ({{< glossary_tooltip term_id="kube-scheduler" text="kube-scheduler" >}}).
+
+### Razones de reinicio del Pod
+
+Un Pod puede reiniciarse, provocando la re-ejecución de los contenedores de inicialización por las siguientes razones:
+
+* Se reinicia el contenedor de infraestructura del Pod. Esto es poco común y debería hacerlo alguien con acceso de root a los nodos.
+* Todos los contenedores en un Pod son terminados mientras `restartPolicy` esté configurado en `Always`,
+  forzando un reinicio y el registro de finalización del contenedor de inicialización se ha perdido debido a
+  la recolección de basura.
+
+El Pod no se reiniciará cuando se cambie la imagen del contenedor de inicialización o cuando
+se pierda el registro de finalización del contenedor de inicialización debido a la recolección de basura. Esto
+se aplica a Kubernetes v1.20 y posteriores. Si estás utilizando una versión anterior de
+Kubernetes, consulta la documentación de la versión que estás utilizando.
+
+## {{% heading "whatsnext" %}}
+
+* Lee acerca de [creando un Pod que tiene un contenedor de inicialización](/docs/tasks/configure-pod-container/configure-pod-initialization/#create-a-pod-that-has-an-init-container)
+* Aprende cómo [depurar contenedores de inicialización](/docs/tasks/debug/debug-application/debug-init-containers/)
diff --git a/content/es/docs/concepts/workloads/pods/pod.md b/content/es/docs/concepts/workloads/pods/pod.md
index 825ffbc016..b97a9f82a6 100644
--- a/content/es/docs/concepts/workloads/pods/pod.md
+++ b/content/es/docs/concepts/workloads/pods/pod.md
@@ -129,7 +129,7 @@ Un ejemplo del ciclo de terminación de un Pod:
 1. El Kubelet terminará de eliminar el Pod en el servidor API configurando el período de gracia 0 (eliminación inmediata). El Pod desaparece de la API y ya no es visible desde el cliente.
 
 Por defecto, todas las eliminaciones se realizan correctamente en 30 segundos. El comando `kubectl delete` admite la opción` --grace-period = <seconds> `que permite al usuario anular el valor predeterminado y especificar su propio valor. El valor `0` [forzar eliminación](/es/docs/concepts/workloads/pods/pod/#forzar-destrucción-de-pods) del Pod.
-Debe especificar un indicador adicional `--force` junto con` --grace-period = 0` para realizar eliminaciones forzadas.
+Debe especificar un indicador adicional `--force` junto con `--grace-period = 0` para realizar eliminaciones forzadas.
 
 ### Forzar destrucción de Pods
 
diff --git a/content/es/docs/concepts/workloads/pods/podpreset.md b/content/es/docs/concepts/workloads/pods/podpreset.md
index d4406f56ea..76110e5ee8 100644
--- a/content/es/docs/concepts/workloads/pods/podpreset.md
+++ b/content/es/docs/concepts/workloads/pods/podpreset.md
@@ -92,4 +92,4 @@ modificación del Pod Preset. En estos casos, se puede añadir una observación
 
 Ver [Inyectando datos en un Pod usando PodPreset](/docs/tasks/inject-data-application/podpreset/)
 
-Para más información sobre los detalles de los trasfondos, consulte la [propuesta de diseño de PodPreset](https://git.k8s.io/community/contributors/design-proposals/service-catalog/pod-preset.md). 
+Para más información sobre los detalles de los trasfondos, consulte la [propuesta de diseño de PodPreset](https://git.k8s.io/design-proposals-archive/service-catalog/pod-preset.md). 
diff --git a/content/es/docs/reference/_index.md b/content/es/docs/reference/_index.md
index a3625a903e..8ea72cfb26 100644
--- a/content/es/docs/reference/_index.md
+++ b/content/es/docs/reference/_index.md
@@ -59,6 +59,6 @@ En estos momento, las librerías con soporte oficial son:
 
 Un archivo de los documentos de diseño para la funcionalidad de Kubernetes.
 
-Puedes empezar por [Arquitectura de Kubernetes](https://git.k8s.io/community/contributors/design-proposals/architecture/architecture.md) y [Vista general del diseño de Kubernetes](https://git.k8s.io/community/contributors/design-proposals).
+Puedes empezar por [Arquitectura de Kubernetes](https://git.k8s.io/design-proposals-archive/architecture/architecture.md) y [Vista general del diseño de Kubernetes](https://git.k8s.io/community/contributors/design-proposals).
 
 
diff --git a/content/es/docs/reference/glossary/wg.md b/content/es/docs/reference/glossary/wg.md
new file mode 100644
index 0000000000..85c4eb7bd7
--- /dev/null
+++ b/content/es/docs/reference/glossary/wg.md
@@ -0,0 +1,19 @@
+---
+title: WG (working group)
+id: wg
+date: 2018-04-12
+full_link: https://github.com/kubernetes/community/blob/master/sig-list.md#master-working-group-list
+short_description: >
+  Facilita la discusión y/o la implementación de un proyecto que sea efímero, corto o desacoplado para un comité, {{< glossary_tooltip text="SIG" term_id="sig" >}}, o esfuerzo SIG cruzado.
+
+aka: 
+tags:
+- community
+---
+ Facilita la discusión y/o la implementación de un proyecto que sea efímero, corto o desacoplado para un comité, {{< glossary_tooltip text="SIG" term_id="sig" >}}, o un esfuerzo entre varios SIGs.
+
+<!--more-->
+
+Los grupos de trabajo son una forma de organizar personas para completar una tarea discreta.
+
+Para más información, consulta el repositorio [kubernetes/community](https://github.com/kubernetes/community) y la lista de los [SIGs y Grupos de Trabajo (WGs).](https://github.com/kubernetes/community/blob/master/sig-list.md).
diff --git a/content/es/docs/reference/glossary/workload.md b/content/es/docs/reference/glossary/workload.md
new file mode 100644
index 0000000000..19e0ef99b8
--- /dev/null
+++ b/content/es/docs/reference/glossary/workload.md
@@ -0,0 +1,22 @@
+---
+title: Workload
+id: workloads
+date: 2019-02-13
+full_link: /docs/concepts/workloads/
+short_description: >
+   Un Workload es una aplicación que se ejecuta en Kubernetes.
+
+aka: 
+tags:
+- fundamental
+---
+   Un Workload es una aplicación que se ejecuta en Kubernetes.
+
+<!--more--> 
+
+Varios objetos clave que representan diferentes tipos o partes de un Workload
+incluyen los objetos: DaemonSet, Deployment, Job, ReplicaSet y StatefulSet.
+
+Por ejemplo, un Workload que tiene un servidor web y una base de datos podría ejecutar
+la base de datos en un {{< glossary_tooltip term_id="StatefulSet" >}} y el servidor
+web en un {{< glossary_tooltip term_id="Deployment" >}}.
diff --git a/content/es/docs/setup/release/building-from-source.md b/content/es/docs/setup/release/building-from-source.md
index 42db05df4c..0ff6152b97 100644
--- a/content/es/docs/setup/release/building-from-source.md
+++ b/content/es/docs/setup/release/building-from-source.md
@@ -30,7 +30,7 @@ cd kubernetes
 make release
 ```
 
-Para más detalles sobre el proceso de compilación de una release, visita la carpeta kubernetes/kubernetes [`build`](http://releases.k8s.io/{{< param "githubbranch" >}}/build/)
+Para más detalles sobre el proceso de compilación de una release, visita la carpeta kubernetes/kubernetes [`build`](http://releases.k8s.io/master/build/)
 
 
 
diff --git a/content/es/docs/tasks/debug-application-cluster/audit.md b/content/es/docs/tasks/debug-application-cluster/audit.md
index fc2dec9e27..575a066114 100644
--- a/content/es/docs/tasks/debug-application-cluster/audit.md
+++ b/content/es/docs/tasks/debug-application-cluster/audit.md
@@ -421,8 +421,8 @@ al plugin de elasticsearch que soporta búsquedas avanzadas y analíticas.
 
 [kube-apiserver]: /docs/admin/kube-apiserver
 [auditing-proposal]: https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/auditing.md
-[auditing-api]: https://github.com/kubernetes/kubernetes/blob/{{< param "githubbranch" >}}/staging/src/k8s.io/apiserver/pkg/apis/audit/v1/types.go
-[gce-audit-profile]: https://github.com/kubernetes/kubernetes/blob/{{< param "githubbranch" >}}/cluster/gce/gci/configure-helper.sh#L735
+[auditing-api]: https://github.com/kubernetes/kubernetes/blob/master/staging/src/k8s.io/apiserver/pkg/apis/audit/v1/types.go
+[gce-audit-profile]: https://github.com/kubernetes/kubernetes/blob/master/cluster/gce/gci/configure-helper.sh#L735
 [kubeconfig]: /docs/tasks/access-application-cluster/configure-access-multiple-clusters/
 [fluentd]: http://www.fluentd.org/
 [fluentd_install_doc]: https://docs.fluentd.org/v1.0/articles/quickstart#step-1:-installing-fluentd
diff --git a/content/es/docs/tasks/debug-application-cluster/resource-metrics-pipeline.md b/content/es/docs/tasks/debug-application-cluster/resource-metrics-pipeline.md
index b1398e2faa..080a91df30 100644
--- a/content/es/docs/tasks/debug-application-cluster/resource-metrics-pipeline.md
+++ b/content/es/docs/tasks/debug-application-cluster/resource-metrics-pipeline.md
@@ -44,7 +44,7 @@ de datos de uso de recursos de todo el clúster.
 A partir de Kubernetes 1.8, el servidor de métricas se despliega por defecto como un objeto de
 tipo [Deployment](https://github.com/docs/concepts/workloads/controllers/deployment/) en clústeres
 creados con el script `kube-up.sh`. Si usas otro mecanismo de configuración de Kubernetes, puedes desplegarlo
-usando los [yamls de despliegue](https://github.com/kubernetes-incubator/metrics-server/tree/master/deploy)
+usando los [yamls de despliegue](https://github.com/kubernetes-sigs/metrics-server/releases)
 proporcionados. Está soportado a partir de Kubernetes 1.7 (más detalles al final).
 
 El servidor reune métricas de la Summary API, que es expuesta por el [Kubelet](/docs/admin/kubelet/) en cada nodo.
@@ -52,6 +52,6 @@ El servidor reune métricas de la Summary API, que es expuesta por el [Kubelet](
 El servidor de métricas se añadió a la API de Kubernetes utilizando el
 [Kubernetes aggregator](/docs/concepts/api-extension/apiserver-aggregation/) introducido en Kubernetes 1.7.
 
-Puedes aprender más acerca del servidor de métricas en el [documento de diseño](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/instrumentation/metrics-server.md).
+Puedes aprender más acerca del servidor de métricas en el [documento de diseño](https://github.com/kubernetes/design-proposals-archive/blob/main/instrumentation/metrics-server.md).
 
 
diff --git a/content/es/docs/tasks/tools/included/_index.md b/content/es/docs/tasks/tools/included/_index.md
new file mode 100644
index 0000000000..dda878fac7
--- /dev/null
+++ b/content/es/docs/tasks/tools/included/_index.md
@@ -0,0 +1,6 @@
+---
+title: "Herramientas incluidas"
+description: "Fragmentos que se incluirán en las páginas principales de kubectl-installs-*."
+headless: true
+toc_hide: true
+---
\ No newline at end of file
diff --git a/content/es/docs/tasks/tools/included/install-kubectl-linux.md b/content/es/docs/tasks/tools/included/install-kubectl-linux.md
new file mode 100644
index 0000000000..0238b53b9d
--- /dev/null
+++ b/content/es/docs/tasks/tools/included/install-kubectl-linux.md
@@ -0,0 +1,244 @@
+---
+reviewers:
+title: Instalar y configurar kubectl en Linux
+content_type: task
+weight: 10
+card:
+  name: tasks
+  weight: 20
+  title: Instalar kubectl en Linux
+---
+
+## {{% heading "prerequisites" %}}
+
+Debes usar una versión de kubectl que esté dentro de una diferencia de versión menor de tu clúster. Por ejemplo, un cliente v{{< skew latestVersion >}} puede comunicarse con v{{< skew prevMinorVersion >}}, v{{< skew latestVersion >}}, y v{{< skew nextMinorVersion >}} del plano de control.
+El uso de la última versión de kubectl ayuda a evitar problemas inesperados.
+
+## Instalar kubectl en Linux
+
+Existen los siguientes métodos para instalar kubectl en Linux:
+
+- [Instalar el binario kubectl con curl en Linux](#install-kubectl-binary-with-curl-on-linux)
+- [Instalar usando la administración nativa de paquetes](#install-using-native-package-management)
+- [Instalar usando otra administración de paquetes](#install-using-other-package-management)
+
+### Instale el binario kubectl con curl en Linux
+
+1. Descargue la última versión con el comando:
+
+   ```bash
+   curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl"
+   ```
+
+   {{< note >}}
+Para descargar una versión específica, reemplace la parte de `$(curl -L -s https://dl.k8s.io/release/stable.txt)` del comando con la versión específica.
+
+Por ejemplo, para descargar la versión {{< param "fullversion" >}} en Linux, escriba:
+
+   ```bash
+   curl -LO https://dl.k8s.io/release/{{< param "fullversion" >}}/bin/linux/amd64/kubectl
+   ```
+   {{< /note >}}
+
+1. Validar el binario (opcional)
+
+   Descargue el archivo de comprobación de kubectl:
+
+   ```bash
+   curl -LO "https://dl.k8s.io/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl.sha256"
+   ```
+
+   Valide el binario kubectl con el archivo de comprobación:
+
+   ```bash
+   echo "$(cat kubectl.sha256)  kubectl" | sha256sum --check
+   ```
+
+   Si es válido, la salida es:
+
+   ```console
+   kubectl: OK
+   ```
+
+   Si la comprobación falla, `sha256` arroja un valor distinto de cero e imprime una salida similar a:
+
+   ```bash
+   kubectl: FAILED
+   sha256sum: WARNING: 1 computed checksum did NOT match
+   ```
+
+   {{< note >}}
+   Descargue la misma versión del binario y el archivo de comprobación.
+   {{< /note >}}
+
+1. Instalar kubectl
+
+   ```bash
+   sudo install -o root -g root -m 0755 kubectl /usr/local/bin/kubectl
+   ```
+
+   {{< note >}}
+   Si no tiene acceso de root en el sistema de destino, aún puede instalar kubectl en el `~/.local/bin` directorio:
+
+   ```bash
+   chmod +x kubectl
+   mkdir -p ~/.local/bin/kubectl
+   mv ./kubectl ~/.local/bin/kubectl
+   # y luego agregue ~/.local/bin/kubectl en el $PATH
+   ```
+
+   {{< /note >}}
+
+1. Para asegurarse de que la versión que instaló este actualizada ejecute:
+
+   ```bash
+   kubectl version --client
+   ```
+
+### Instalar usando la administración nativa de paquetes
+
+{{< tabs name="kubectl_install" >}}
+{{% tab name="Debian-based distributions" %}}
+
+1. Actualice el índice de paquetes de `apt` e instale los paquetes necesarios para usar Kubernetes con el repositorio `apt`:
+
+   ```shell
+   sudo apt-get update
+   sudo apt-get install -y apt-transport-https ca-certificates curl
+   ```
+
+2. Descargue la clave de firma pública de Google Cloud:
+
+   ```shell
+   sudo curl -fsSLo /usr/share/keyrings/kubernetes-archive-keyring.gpg https://packages.cloud.google.com/apt/doc/apt-key.gpg
+   ```
+
+3. Agregue el repositorio de Kubernetes a `apt`:
+
+   ```shell
+   echo "deb [signed-by=/usr/share/keyrings/kubernetes-archive-keyring.gpg] https://apt.kubernetes.io/ kubernetes-xenial main" | sudo tee /etc/apt/sources.list.d/kubernetes.list
+   ```
+
+4. Actualice el índice de paquetes de `apt` con el nuevo repositorio e instale kubectl:
+
+   ```shell
+   sudo apt-get update
+   sudo apt-get install -y kubectl
+   ```
+
+{{% /tab %}}
+
+{{< tab name="Red Hat-based distributions" codelang="bash" >}}
+cat <<EOF > /etc/yum.repos.d/kubernetes.repo
+[kubernetes]
+name=Kubernetes
+baseurl=https://packages.cloud.google.com/yum/repos/kubernetes-el7-x86_64
+enabled=1
+gpgcheck=1
+repo_gpgcheck=1
+gpgkey=https://packages.cloud.google.com/yum/doc/yum-key.gpg https://packages.cloud.google.com/yum/doc/rpm-package-key.gpg
+EOF
+yum install -y kubectl
+{{< /tab >}}
+{{< /tabs >}}
+
+### Instalar usando otra administración de paquetes
+
+{{< tabs name="other_kubectl_install" >}}
+{{% tab name="Snap" %}}
+Si está en Ubuntu u otra distribución de Linux que admita el administrador de paquetes [snap](https://snapcraft.io/docs/core/install), kubectl estará disponible como solicitud de [snap](https://snapcraft.io/).
+
+```shell
+snap install kubectl --classic
+kubectl version --client
+```
+
+{{% /tab %}}
+
+{{% tab name="Homebrew" %}}
+Si está en Linux y usa [Homebrew](https://docs.brew.sh/Homebrew-on-Linux) como administrador de paquetes, kubectl está disponible para [instalación](https://docs.brew.sh/Homebrew-on-Linux#install).
+
+```shell
+brew install kubectl
+kubectl version --client
+```
+
+{{% /tab %}}
+
+{{< /tabs >}}
+
+## Verificar la configuración de kubectl
+
+{{< include "verify-kubectl.md" >}}
+
+## Plugins y configuraciones opcionales de kubectl
+
+### Habilitar el autocompletado de shell
+
+kubectl proporciona soporte de autocompletado para Bash y Zsh, lo que puede ahorrarle mucho tiempo al interactuar con la herramienta.
+
+A continuación, se muestran los procedimientos para configurar el autocompletado para Bash y Zsh.
+
+{{< tabs name="kubectl_autocompletion" >}}
+{{< tab name="Bash" include="optional-kubectl-configs-bash-linux.md" />}}
+{{< tab name="Zsh" include="optional-kubectl-configs-zsh.md" />}}
+{{< /tabs >}}
+
+### Instalar en pc `kubectl convert` plugin
+
+{{< include "kubectl-convert-overview.md" >}}
+
+1. Descargue la última versión con el comando:
+
+   ```bash
+   curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl-convert"
+   ```
+
+1. Valide el binario (opcional)
+
+   Descargue el archivo de comprobación kubectl-convert:
+
+   ```bash
+   curl -LO "https://dl.k8s.io/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl-convert.sha256"
+   ```
+
+   Valide el binario kubectl-convert con el archivo de comprobación:
+
+   ```bash
+   echo "$(cat kubectl-convert.sha256) kubectl-convert" | sha256sum --check
+   ```
+
+   Si es válido, la salida es:
+
+   ```console
+   kubectl-convert: OK
+   ```
+
+   Si la comprobación falla, `sha256` arroja un valor distinto de cero e imprime una salida similar a:
+
+   ```bash
+   kubectl-convert: FAILED
+   sha256sum: WARNING: 1 computed checksum did NOT match
+   ```
+
+   {{< note >}}
+   Descargue la misma versión del binario y el archivo de comprobación.
+   {{< /note >}}
+
+1. Instale kubectl-convert en pc
+
+   ```bash
+   sudo install -o root -g root -m 0755 kubectl-convert /usr/local/bin/kubectl-convert
+   ```
+
+1. Verifique que el plugin se haya instalado correctamente
+
+   ```shell
+   kubectl convert --help
+   ```
+
+   Si no ve un error, significa que el plugin se instaló correctamente.
+
+## {{% heading "whatsnext" %}}
+
+{{< include "kubectl-whats-next.md" >}}
\ No newline at end of file
diff --git a/content/es/docs/tasks/tools/included/install-kubectl-macos.md b/content/es/docs/tasks/tools/included/install-kubectl-macos.md
new file mode 100644
index 0000000000..71642b7ff1
--- /dev/null
+++ b/content/es/docs/tasks/tools/included/install-kubectl-macos.md
@@ -0,0 +1,248 @@
+---
+reviewers:
+title: Instalar y configurar kubectl en macOS
+content_type: task
+weight: 10
+card:
+  name: tasks
+  weight: 20
+  title: Instalar kubectl en macOS
+---
+
+## {{% heading "prerequisites" %}}
+
+Debes usar una versión de kubectl que esté dentro de una diferencia de versión menor de tu clúster. Por ejemplo, un cliente v{{< skew latestVersion >}} puede comunicarse con v{{< skew prevMinorVersion >}}, v{{< skew latestVersion >}}, y v{{< skew nextMinorVersion >}} del plano de control.
+El uso de la última versión de kubectl ayuda a evitar problemas imprevistos.
+
+## Instalar kubectl en macOS
+
+Existen los siguientes métodos para instalar kubectl en macOS:
+
+- [Instalar el binario de kubectl con curl en macOS](#install-kubectl-binary-with-curl-on-macos)
+- [Instalar con Homebrew en macOS](#install-with-homebrew-on-macos)
+- [Instalar con Macports en macOS](#install-with-macports-on-macos)
+
+### Instalar el binario de kubectl con curl en macOS
+
+1. Descargue la última versión:
+
+   {{< tabs name="download_binary_macos" >}}
+   {{< tab name="Intel" codelang="bash" >}}
+   curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/darwin/amd64/kubectl"
+   {{< /tab >}}
+   {{< tab name="Apple Silicon" codelang="bash" >}}
+   curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/darwin/arm64/kubectl"
+   {{< /tab >}}
+   {{< /tabs >}}
+
+   {{< note >}}
+   Para descargar una versión específica, reemplace el `$(curl -L -s https://dl.k8s.io/release/stable.txt)` parte del comando con la versión específica.
+
+   Por ejemplo, para descargar la versión {{< param "fullversion" >}} en Intel macOS, escriba:
+
+   ```bash
+   curl -LO "https://dl.k8s.io/release/{{< param "fullversion" >}}/bin/darwin/amd64/kubectl"
+   ```
+
+   Y para macOS en Apple Silicon, escriba:
+
+   ```bash
+   curl -LO "https://dl.k8s.io/release/{{< param "fullversion" >}}/bin/darwin/arm64/kubectl"
+   ```
+
+   {{< /note >}}
+
+1. Validar el binario (opcional)
+
+   Descargue el archivo de comprobación de kubectl:
+
+   {{< tabs name="download_checksum_macos" >}}
+   {{< tab name="Intel" codelang="bash" >}}
+   curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/darwin/amd64/kubectl.sha256"
+   {{< /tab >}}
+   {{< tab name="Apple Silicon" codelang="bash" >}}
+   curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/darwin/arm64/kubectl.sha256"
+   {{< /tab >}}
+   {{< /tabs >}}
+
+   Valide el binario kubectl con el archivo de comprobación:
+
+   ```bash
+   echo "$(<kubectl.sha256)  kubectl" | shasum -a 256 --check
+   ```
+
+   Si es válido, la salida es:
+
+   ```console
+   kubectl: OK
+   ```
+
+   Si la verificación falla, `shasum` arroja un valor distinto de cero e imprime una salida similar a:
+
+   ```bash
+   kubectl: FAILED
+   shasum: WARNING: 1 computed checksum did NOT match
+   ```
+
+   {{< note >}}
+   Descargue la misma versión del binario y el archivo de comprobación.
+   {{< /note >}}
+
+1. Hacer ejecutable el binario de kubectl.
+
+   ```bash
+   chmod +x ./kubectl
+   ```
+
+1. Mueva el binario kubectl a una ubicación de archivo en su sistema `PATH`.
+
+   ```bash
+   sudo mv ./kubectl /usr/local/bin/kubectl
+   sudo chown root: /usr/local/bin/kubectl
+   ```
+
+   {{< note >}}
+   Asegúrese de que `/usr/local/bin` se encuentre definida en su variable de entorno PATH.
+   {{< /note >}}
+
+1. Para asegurarse de que la versión que instaló se encuentra actualizada, ejecute:
+
+   ```bash
+   kubectl version --client
+   ```
+
+### Instalar con Homebrew en macOS
+
+Si está en macOS y usa [Homebrew](https://brew.sh/) como administrador de paquetes, puede instalar kubectl con Homebrew.
+
+1. Ejecute el comando de instalación:
+
+   ```bash
+   brew install kubectl 
+   ```
+
+   or
+
+   ```bash
+   brew install kubernetes-cli
+   ```
+
+1. Para asegurarse de que la versión que instaló se encuentra actualizada, ejecute:
+
+   ```bash
+   kubectl version --client
+   ```
+
+### Instalar con Macports en macOS
+
+Si está en macOS y usa [Macports](https://macports.org/) como administrador de paquetes, puede instalar kubectl con Macports.
+
+1. Ejecute el comando de instalación:
+
+   ```bash
+   sudo port selfupdate
+   sudo port install kubectl
+   ```
+
+1. Para asegurarse de que la versión que instaló se encuentra actualizada, ejecute:
+
+   ```bash
+   kubectl version --client
+   ```
+
+## Verificar la configuración de kubectl
+
+{{< include "verify-kubectl.md" >}}
+
+## Plugins y configuraciones opcionales de kubectl
+
+### Habilitar el autocompletado de shell
+
+kubectl proporciona soporte de autocompletado para Bash y Zsh, lo que puede ahorrarle mucho tiempo al escribir.
+
+A continuación, se muestran los procedimientos para configurar el autocompletado para Bash y Zsh.
+
+{{< tabs name="kubectl_autocompletion" >}}
+{{< tab name="Bash" include="optional-kubectl-configs-bash-mac.md" />}}
+{{< tab name="Zsh" include="optional-kubectl-configs-zsh.md" />}}
+{{< /tabs >}}
+
+### Instalar el plugin `kubectl-convert`
+
+{{< include "kubectl-convert-overview.md" >}}
+
+1. Descargue la última versión con el comando:
+
+   {{< tabs name="download_convert_binary_macos" >}}
+   {{< tab name="Intel" codelang="bash" >}}
+   curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/darwin/amd64/kubectl-convert"
+   {{< /tab >}}
+   {{< tab name="Apple Silicon" codelang="bash" >}}
+   curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/darwin/arm64/kubectl-convert"
+   {{< /tab >}}
+   {{< /tabs >}}
+
+1. Validar el binario (opcional)
+
+   Descargue el archivo de comprobación de kubectl:
+
+   {{< tabs name="download_convert_checksum_macos" >}}
+   {{< tab name="Intel" codelang="bash" >}}
+   curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/darwin/amd64/kubectl-convert.sha256"
+   {{< /tab >}}
+   {{< tab name="Apple Silicon" codelang="bash" >}}
+   curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/darwin/arm64/kubectl-convert.sha256"
+   {{< /tab >}}
+   {{< /tabs >}}
+
+   Valide el binario kubectl-convert con el archivo de comprobación:
+
+   ```bash
+   echo "$(<kubectl-convert.sha256)  kubectl-convert" | shasum -a 256 --check
+   ```
+
+   Si es válido, la salida es:
+
+   ```console
+   kubectl-convert: OK
+   ```
+
+   Si la verificación falla, `shasum` arroja un valor distinto de cero e imprime una salida similar a:
+
+   ```bash
+   kubectl-convert: FAILED
+   shasum: WARNING: 1 computed checksum did NOT match
+   ```
+
+   {{< note >}}
+   Descargue la misma versión del binario y el archivo de comprobación.
+   {{< /note >}}
+
+1. Hacer ejecutable el binario de kubectl-convert
+
+   ```bash
+   chmod +x ./kubectl-convert
+   ```
+
+1. Mueva el binario kubectl-convert a una ubicación de archivo en su sistema `PATH`.
+
+   ```bash
+   sudo mv ./kubectl-convert /usr/local/bin/kubectl-convert
+   sudo chown root: /usr/local/bin/kubectl-convert
+   ```
+
+   {{< note >}}
+   Asegúrese de que `/usr/local/bin` se encuentre definida en su variable de entorno PATH.
+   {{< /note >}}
+
+1. Verifique que el complemento se haya instalado correctamente
+
+   ```shell
+   kubectl convert --help
+   ```
+
+   Si no ve algun error, significa que el complemento se instaló correctamente.
+
+## {{% heading "whatsnext" %}}
+
+{{< include "kubectl-whats-next.md" >}}
\ No newline at end of file
diff --git a/content/es/docs/tasks/tools/included/install-kubectl-windows.md b/content/es/docs/tasks/tools/included/install-kubectl-windows.md
new file mode 100644
index 0000000000..427d0bcc75
--- /dev/null
+++ b/content/es/docs/tasks/tools/included/install-kubectl-windows.md
@@ -0,0 +1,190 @@
+---
+reviewers:
+title: Instalar y configurar kubectl en Windows
+content_type: task
+weight: 10
+card:
+  name: tasks
+  weight: 20
+  title: Instalar kubectl en Windows
+---
+
+## {{% heading "prerequisites" %}}
+
+Debes usar una versión de kubectl que este dentro de una diferencia de versión menor de tu clúster. Por ejemplo, un cliente v{{< skew latestVersion >}} puede comunicarse con versiones v{{< skew prevMinorVersion >}}, v{{< skew latestVersion >}}, y v{{< skew nextMinorVersion >}} del plano de control.
+
+El uso de la última versión de kubectl ayuda a evitar problemas imprevistos.
+
+## Instalar kubectl en Windows
+
+Existen los siguientes métodos para instalar kubectl en Windows:
+
+- [Instalar el binario de kubectl con curl en Windows](#install-kubectl-binary-with-curl-on-windows)
+- [Instalar en Windows usando Chocolatey o Scoop](#install-on-windows-using-chocolatey-or-scoop)
+
+
+### Instalar el binario de kubectl con curl en Windows
+
+1. Descarga la [última versión {{< param "fullversion" >}}](https://dl.k8s.io/release/{{< param "fullversion" >}}/bin/windows/amd64/kubectl.exe).
+
+   O si tiene `curl` instalado, use este comando:
+
+   ```powershell
+   curl -LO https://dl.k8s.io/release/{{< param "fullversion" >}}/bin/windows/amd64/kubectl.exe
+   ```
+
+   {{< note >}}
+   Para conocer la última versión estable (por ejemplo, para secuencias de comandos), eche un vistazo a [https://dl.k8s.io/release/stable.txt](https://dl.k8s.io/release/stable.txt).
+   {{< /note >}}
+
+1. Validar el binario (opcional)
+
+   Descargue el archivo de comprobación de kubectl:
+
+   ```powershell
+   curl -LO https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kubectl.exe.sha256
+   ```
+
+   Valide el binario kubectl con el archivo de comprobación:
+
+   - Usando la consola del sistema para comparar manualmente la salida de `CertUtil` con el archivo de comprobación descargado:
+
+     ```cmd
+     CertUtil -hashfile kubectl.exe SHA256
+     type kubectl.exe.sha256
+     ```
+
+   - Usando PowerShell puede automatizar la verificación usando el operador `-eq` para obtener un resultado de `True` o `False`:
+
+     ```powershell
+     $($(CertUtil -hashfile .\kubectl.exe SHA256)[1] -replace " ", "") -eq $(type .\kubectl.exe.sha256)
+     ```
+
+1. Agregue el binario a su `PATH`.
+
+1. Para asegurar que la versión de`kubectl` es la misma que descargada, ejecute:
+
+   ```cmd
+   kubectl version --client
+   ```
+
+{{< note >}}
+[Docker Desktop para Windows](https://docs.docker.com/docker-for-windows/#kubernetes) agrega su propia versión de `kubectl` a el `PATH`.
+Si ha instalado Docker Desktop antes, es posible que deba colocar su entrada en el `PATH` antes de la agregada por el instalador de Docker Desktop o elimine el `kubectl`.
+{{< /note >}}
+
+### Instalar en Windows usando Chocolatey o Scoop
+
+1. Para instalar kubectl en Windows, puede usar [Chocolatey](https://chocolatey.org) 
+como administrador de paquetes o el instalador [Scoop](https://scoop.sh) desde línea de comandos.
+
+   {{< tabs name="kubectl_win_install" >}}
+   {{% tab name="choco" %}}
+   ```powershell
+   choco install kubernetes-cli
+   ```
+   {{% /tab %}}
+   {{% tab name="scoop" %}}
+   ```powershell
+   scoop install kubectl
+   ```
+   {{% /tab %}}
+   {{< /tabs >}}
+
+
+1. Para asegurarse de que la versión que instaló esté actualizada, ejecute:
+
+   ```powershell
+   kubectl version --client
+   ```
+
+1. Navegue a su directorio de inicio:
+
+   ```powershell
+   # Si estas usando cmd.exe, correr: cd %USERPROFILE%
+   cd ~
+   ```
+
+1. Cree el directorio `.kube`:
+
+   ```powershell
+   mkdir .kube
+   ```
+
+1. Cambie al directorio `.kube` que acaba de crear:
+
+   ```powershell
+   cd .kube
+   ```
+
+1. Configure kubectl para usar un clúster de Kubernetes remoto:
+
+   ```powershell
+   New-Item config -type file
+   ```
+
+{{< note >}}
+Edite el archivo de configuración con un editor de texto de su elección, como el Bloc de notas.
+{{< /note >}}
+
+## Verificar la configuración de kubectl
+
+{{< include "verify-kubectl.md" >}}
+
+## Plugins y configuraciones opcionales de kubectl
+
+### Habilitar el autocompletado de shell
+
+kubectl proporciona soporte de autocompletado para Bash y Zsh, lo que puede ahorrarle mucho tiempo al escribir.
+
+A continuación se muestran los procedimientos para configurar el autocompletado para Zsh, si lo está ejecutando en Windows.
+
+{{< include "optional-kubectl-configs-zsh.md" >}}
+
+### Instalar el plugin `kubectl-convert`
+
+{{< include "kubectl-convert-overview.md" >}}
+
+1. Descargue la última versión con el comando:
+
+   ```powershell
+   curl -LO https://dl.k8s.io/release/{{< param "fullversion" >}}/bin/windows/amd64/kubectl-convert.exe
+   ```
+
+1. Validar el binario (opcional)
+
+   Descargue el archivo de comprobación kubectl-convert:
+
+   ```powershell
+   curl -LO https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kubectl-convert.exe.sha256
+   ```
+
+   Valide el binario kubectl-convert con el archivo de comprobación:
+
+   - Usando la consola del sistema puede comparar manualmente la salida de `CertUtil` con el archivo de comprobación descargado:
+
+     ```cmd
+     CertUtil -hashfile kubectl-convert.exe SHA256
+     type kubectl-convert.exe.sha256
+     ```
+
+   - Usando PowerShell puede automatizar la verificación usando el operador `-eq` 
+     para obtener un resultado de `True` o `False`:
+
+     ```powershell
+     $($(CertUtil -hashfile .\kubectl-convert.exe SHA256)[1] -replace " ", "") -eq $(type .\kubectl-convert.exe.sha256)
+     ```
+
+1. Agregue el binario a su `PATH`.
+
+1. Verifique que el plugin se haya instalado correctamente
+
+   ```shell
+   kubectl convert --help
+   ```
+
+   Si no ve un error, significa que el plugin se instaló correctamente.
+
+## {{% heading "whatsnext" %}}
+
+{{< include "kubectl-whats-next.md" >}}
\ No newline at end of file
diff --git a/content/es/docs/tasks/tools/included/kubectl-convert-overview.md b/content/es/docs/tasks/tools/included/kubectl-convert-overview.md
new file mode 100644
index 0000000000..8a9da57c43
--- /dev/null
+++ b/content/es/docs/tasks/tools/included/kubectl-convert-overview.md
@@ -0,0 +1,9 @@
+---
+title: "Descripción general de kubectl-convert"
+description: >-
+  Un plugin de kubectl que le permite convertir manifiestos de una versión
+headless: true
+---
+
+Un plugin para la herramienta de línea de comandos de Kubernetes `kubectl`, que le permite convertir manifiestos entre diferentes versiones de la API. Esto puede ser particularmente útil para migrar manifiestos a una versión no obsoleta de la API con la versión más reciente de Kubernetes.
+Para obtener más información, visite [migrar a APIs no obsoletas](/docs/reference/using-api/deprecation-guide/#migrate-to-non-deprecated-apis)
\ No newline at end of file
diff --git a/content/es/docs/tasks/tools/included/kubectl-whats-next.md b/content/es/docs/tasks/tools/included/kubectl-whats-next.md
new file mode 100644
index 0000000000..87b3246f6e
--- /dev/null
+++ b/content/es/docs/tasks/tools/included/kubectl-whats-next.md
@@ -0,0 +1,12 @@
+---
+title: "¿Que sigue?"
+description: "¿Qué sigue después de instalar kubectl."
+headless: true
+---
+
+* [Instalar Minikube](https://minikube.sigs.k8s.io/docs/start/)
+* Consulte las [guías de introducción](/docs/setup/) para obtener más información sobre la creación de clústeres.
+* [Aprenda a iniciar y exponer su aplicación.](/docs/tasks/access-application-cluster/service-access-application-cluster/)
+* Si necesita acceso a un clúster que no creó, consulte la guia de
+  [Compartir el acceso al clúster](/docs/tasks/access-application-cluster/configure-access-multiple-clusters/).
+* Lea los [documentos de referencia de kubectl](/docs/reference/kubectl/kubectl/)
\ No newline at end of file
diff --git a/content/es/docs/tasks/tools/included/optional-kubectl-configs-bash-linux.md b/content/es/docs/tasks/tools/included/optional-kubectl-configs-bash-linux.md
new file mode 100644
index 0000000000..feefb194ed
--- /dev/null
+++ b/content/es/docs/tasks/tools/included/optional-kubectl-configs-bash-linux.md
@@ -0,0 +1,54 @@
+---
+title: "Autocompletar bash en Linux"
+description: "Alguna configuración opcional para la finalización automática de bash en Linux."
+headless: true
+---
+
+### Introducción
+
+El script de completado de kubectl para Bash se puede generar con el comando `kubectl completion bash`. Obtener el script de completado en su shell habilita el autocompletado de kubectl.
+
+Sin embargo, el script de completado depende de [**bash-completion**](https://github.com/scop/bash-completion), lo que significa que primero debe instalar este software (puedes probar si tienes bash-completion ya instalado ejecutando `type _init_completion`).
+
+### Instalar bash-complete
+
+El completado de bash es proporcionado por muchos administradores de paquetes (ver [aquí](https://github.com/scop/bash-completion#installation)). Puedes instalarlo con `apt-get install bash-completion` o `yum install bash-completion`, etc.
+
+Los comandos anteriores crean `/usr/share/bash-completion/bash_completion`, que es el script principal de bash-complete. Dependiendo de su administrador de paquetes, debe obtener manualmente este archivo de perfil en su `~/.bashrc`.
+
+Para averiguarlo, recargue su shell y ejecute `type _init_completion`. Si el comando tiene éxito, ya está configurado; de lo contrario, agregue lo siguiente a su archivo `~/.bashrc`:
+
+```bash
+source /usr/share/bash-completion/bash_completion
+```
+
+Vuelva a cargar su shell y verifique que la finalización de bash esté correctamente instalada escribiendo `type _init_completion`.
+
+### Habilitar el autocompletado de kubectl
+
+Ahora debe asegurarse de que el script de completado de kubectl se obtenga en todas sus sesiones de shell. Hay dos formas de hacer esto:
+
+- Obtenga el script de completado en su perfil `~/.bashrc`:
+
+   ```bash
+   echo 'source <(kubectl completion bash)' >>~/.bashrc
+   ```
+
+- Agregue el script de completado al directorio de `/etc/bash_completion.d`:
+
+   ```bash
+   kubectl completion bash >/etc/bash_completion.d/kubectl
+   ```
+
+Si tiene un alias para kubectl, puede extender el completado del shell para trabajar con ese alias:
+
+```bash
+echo 'alias k=kubectl' >>~/.bashrc
+echo 'complete -o default -F __start_kubectl k' >>~/.bashrc
+```
+
+{{< note >}}
+El código fuente de bash-complete todos los scripts se encuentra en `/etc/bash_completion.d`.
+{{< /note >}}
+
+Ambos enfoques son equivalentes. Después de recargar su shell, el autocompletado de kubectl debería estar funcionando.
\ No newline at end of file
diff --git a/content/es/docs/tasks/tools/included/optional-kubectl-configs-bash-mac.md b/content/es/docs/tasks/tools/included/optional-kubectl-configs-bash-mac.md
new file mode 100644
index 0000000000..00437e7a67
--- /dev/null
+++ b/content/es/docs/tasks/tools/included/optional-kubectl-configs-bash-mac.md
@@ -0,0 +1,88 @@
+---
+title: "Autocompletar bash en macOS"
+description: "Alguna configuración opcional para la finalización automática de bash en macOS."
+headless: true
+---
+
+### Introducción
+
+El script de completado de kubectl para Bash se puede generar con `kubectl completion bash`. Obtener este script en su shell permite el completado de kubectl.
+
+Sin embargo, el script de finalización de kubectl depende de [**bash-completion**](https://github.com/scop/bash-completion) que, por lo tanto, debe instalar previamente.
+
+{{< warning>}}
+Hay dos versiones de bash-complete, v1 y v2. V1 es para Bash 3.2 (
+que es el predeterminado en macOS), y v2 es para Bash 4.1+. El script de completado de kubectl **no funciona** correctamente con bash-complete v1 y Bash 3.2. Requiere **bash-complete v2** y **Bash 4.1+**. Por lo tanto, para poder usar correctamente la finalización de kubectl en macOS, debe instalar y usar Bash 4.1+ ([*instrucciones*](https://itnext.io/upgrading-bash-on-macos-7138bd1066ba)). Las siguientes instrucciones asumen que usa Bash 4.1+ (es decir, cualquier versión de Bash de 4.1 o posterior).
+{{< /warning >}}
+
+### Actualizar Bash
+
+Las siguientes instrucciones asumen que usa Bash 4.1+. Puede verificar la versión de su Bash ejecutando:
+
+```bash
+echo $BASH_VERSION
+```
+Si es demasiado antiguo, puede instalarlo o actualizarlo usando Homebrew:
+
+```bash
+brew install bash
+```
+Vuelva a cargar su shell y verifique que se esté utilizando la versión deseada:
+
+```bash
+echo $BASH_VERSION $SHELL
+```
+
+Homebrew generalmente lo instala en `/usr/local/bin/bash`.
+
+### Instalar bash-complete
+
+{{< note >}}
+Como se mencionó antes, estas instrucciones asumen que usa Bash 4.1+, lo que significa que instalará bash-completacion v2 (a diferencia de Bash 3.2 y bash-deployment v1, en cuyo caso el completado de kubectl no funcionará).
+{{< /note >}}
+
+Puede probar si ya tiene instalado bash-complete v2 con `type _init_completion`. Si no es así, puede instalarlo con Homebrew:
+
+```bash
+brew install bash-completion@2
+```
+
+Como se indica en el resultado de este comando, agregue lo siguiente a su archivo `~/.bash_profile`:
+
+```bash
+export BASH_COMPLETION_COMPAT_DIR="/usr/local/etc/bash_completion.d"
+[[ -r "/usr/local/etc/profile.d/bash_completion.sh" ]] && . "/usr/local/etc/profile.d/bash_completion.sh"
+```
+
+Vuelva a cargar su shell y verifique que bash-complete v2 esté instalado correctamente con `type _init_completion`.
+
+### Habilitar el autocompletado de kubectl
+
+Ahora debe asegurarse de que el script de completado de kubectl se obtenga en todas sus sesiones de shell. Hay varias formas de lograrlo:
+
+- Obtenga el script de finalización en su perfil `~/.bash_profile`:
+
+    ```bash
+    echo 'source <(kubectl completion bash)' >>~/.bash_profile
+    ```
+
+- Agregue el script de completado al directorio `/usr/local/etc/bash_completion.d`:
+
+    ```bash
+    kubectl completion bash >/usr/local/etc/bash_completion.d/kubectl
+    ```
+
+- Si tiene un alias para kubectl, puede extender el completado del shell para trabajar con ese alias:
+
+    ```bash
+    echo 'alias k=kubectl' >>~/.bash_profile
+    echo 'complete -o default -F __start_kubectl k' >>~/.bash_profile
+    ```
+
+- Si instaló kubectl con Homebrew (como se explica [aquí](/docs/tasks/tools/install-kubectl-macos/#install-with-homebrew-on-macos)), entonces el script de completado de kubectl ya debería estar en `/usr/local/etc/bash_completion.d/kubectl`. En ese caso, no necesita hacer nada.
+
+   {{< note >}}
+   La instalación de Homebrew de bash-completion v2 genera todos los archivos en el directorio `BASH_COMPLETION_COMPAT_DIR`, es por eso que los dos últimos métodos funcionan.
+   {{< /note >}}
+
+En cualquier caso, después de recargar su shell, el completado de kubectl debería estar funcionando.
\ No newline at end of file
diff --git a/content/es/docs/tasks/tools/included/optional-kubectl-configs-zsh.md b/content/es/docs/tasks/tools/included/optional-kubectl-configs-zsh.md
new file mode 100644
index 0000000000..9a8d586c28
--- /dev/null
+++ b/content/es/docs/tasks/tools/included/optional-kubectl-configs-zsh.md
@@ -0,0 +1,29 @@
+---
+title: "Autocompletar zsh"
+description: "Alguna configuración opcional para la finalización automática de zsh."
+headless: true
+---
+
+El script de completado de kubectl para Zsh se puede generar con el comando `kubectl completion zsh`. Obtener el script de completado en su shell habilita el autocompletado de kubectl.
+
+Para hacerlo en todas sus sesiones de shell, agregue lo siguiente a su perfil `~/.zshrc`:
+
+```zsh
+source <(kubectl completion zsh)
+```
+Si tiene un alias para kubectl, puede extender el completado del shell para trabajar con ese alias:
+
+```zsh
+echo 'alias k=kubectl' >>~/.zshrc
+echo 'compdef __start_kubectl k' >>~/.zshrc
+```
+
+Después de recargar su shell, el autocompletado de kubectl debería estar funcionando.
+
+Si recibe un error como `complete:13: command not found: compdef`, 
+luego agregue lo siguiente al comienzo de su perfil `~/.zshrc`:
+
+```zsh
+autoload -Uz compinit
+compinit
+```
\ No newline at end of file
diff --git a/content/es/docs/tasks/tools/included/verify-kubectl.md b/content/es/docs/tasks/tools/included/verify-kubectl.md
new file mode 100644
index 0000000000..15bd90692c
--- /dev/null
+++ b/content/es/docs/tasks/tools/included/verify-kubectl.md
@@ -0,0 +1,31 @@
+---
+title: "verificar la instalación de kubectl"
+description: "Cómo verificar kubectl."
+headless: true
+---
+
+Para que kubectl encuentre y acceda a un clúster de Kubernetes, necesita un
+[archivo kubeconfig](/docs/concepts/configuration/organize-cluster-access-kubeconfig/), que se crea automáticamente cuando creas un clúster usando
+[kube-up.sh](https://github.com/kubernetes/kubernetes/blob/master/cluster/kube-up.sh)
+o implementar con éxito un clúster de Minikube.
+De forma predeterminada, la configuración de kubectl se encuentra en `~/.kube/config`.
+
+Verifique que kubectl esté configurado correctamente obteniendo el estado del clúster:
+
+```shell
+kubectl cluster-info
+```
+Si ve una respuesta de URL, kubectl está configurado correctamente para acceder a su clúster.
+
+Si ve un mensaje similar al siguiente, kubectl no está configurado correctamente o no puede conectarse a un clúster de Kubernetes.
+```
+The connection to the server <server-name:port> was refused - did you specify the right host or port?
+```
+
+Por ejemplo, si tiene la intención de ejecutar un clúster de Kubernetes en su computadora portátil (localmente), primero necesitará instalar una herramienta como Minikube y luego volver a ejecutar los comandos indicados anteriormente.
+
+Si kubectl cluster-info devuelve la respuesta de la URL pero no puede acceder a su clúster, para verificar si está configurado correctamente, use:
+
+```shell
+kubectl cluster-info dump
+```
\ No newline at end of file
diff --git a/content/es/docs/tasks/tools/install-kubectl.md b/content/es/docs/tasks/tools/install-kubectl.md
deleted file mode 100644
index fdca3db92c..0000000000
--- a/content/es/docs/tasks/tools/install-kubectl.md
+++ /dev/null
@@ -1,515 +0,0 @@
----
-title: Instalar y Configurar kubectl
-content_type: task
-weight: 10
-card:
-  name: tasks
-  weight: 20
-  title: Instalar kubectl
----
-
-<!-- overview -->
-Usa la herramienta de línea de comandos de Kubernetes, [kubectl](/docs/reference/kubectl/kubectl/), para desplegar y gestionar aplicaciones en Kubernetes. Usando kubectl, puedes inspeccionar recursos del clúster; crear, eliminar, y actualizar componentes; explorar tu nuevo clúster; y arrancar aplicaciones de ejemplo. Para ver la lista completa de operaciones de kubectl, se puede ver [el resumen de kubectl](/docs/reference/kubectl/overview/).
-
-
-## {{% heading "prerequisites" %}}
-
-Debes usar una versión de kubectl que esté a menos de una versión menor de diferencia con tu clúster. Por ejemplo, un cliente v1.2 debería funcionar con un máster v1.1, v1.2, y v1.3. Usar la última versión de kubectl ayuda a evitar problemas inesperados.
-
-
-
-<!-- steps -->
-
-## Instalar kubectl en Linux
-
-### Instalar el binario de kubectl con curl en Linux
-
-1. Descargar la última entrega:
-
-    ```
-    curl -LO "https://storage.googleapis.com/kubernetes-release/release/$(curl -s https://storage.googleapis.com/kubernetes-release/release/stable.txt)/bin/linux/amd64/kubectl"
-    ```
-
-Para descargar una versión específica, remplaza el comando `$(curl -s https://storage.googleapis.com/kubernetes-release/release/stable.txt)` con la versión específica. 
-
-Por ejemplo, para descarga la versión {{< param "fullversion" >}} en Linux, teclea: 
-
-    ```
-    curl -LO https://storage.googleapis.com/kubernetes-release/release/{{< param "fullversion" >}}/bin/linux/amd64/kubectl
-    ```
-
-2. Habilita los permisos de ejecución del binario `kubectl`.
-
-    ```
-    chmod +x ./kubectl
-    ```
-
-3. Mueve el binario dentro de tu PATH.
-
-    ```
-    sudo mv ./kubectl /usr/local/bin/kubectl
-    ```
-
-4. Comprueba que la versión que se ha instalado es la más reciente.
-
-    ```
-    kubectl version --client
-    ```
-
-
-## Instalar mediante el gestor de paquetes del sistema
-
-{{< tabs name="kubectl_install" >}}
-{{< tab name="Ubuntu, Debian or HypriotOS" codelang="bash" >}}
-sudo apt-get update && sudo apt-get install -y apt-transport-https gnupg2 curl
-curl -s https://packages.cloud.google.com/apt/doc/apt-key.gpg | sudo apt-key add -
-echo "deb https://apt.kubernetes.io/ kubernetes-xenial main" | sudo tee -a /etc/apt/sources.list.d/kubernetes.list
-sudo apt-get update
-sudo apt-get install -y kubectl
-{{< /tab >}}
-
-{{< tab name="CentOS, RHEL or Fedora" codelang="bash" >}}cat <<EOF > /etc/yum.repos.d/kubernetes.repo
-[kubernetes]
-name=Kubernetes
-baseurl=https://packages.cloud.google.com/yum/repos/kubernetes-el7-x86_64
-enabled=1
-gpgcheck=1
-repo_gpgcheck=1
-gpgkey=https://packages.cloud.google.com/yum/doc/yum-key.gpg https://packages.cloud.google.com/yum/doc/rpm-package-key.gpg
-EOF
-yum install -y kubectl
-{{< /tab >}}
-{{< /tabs >}}
-
-### Instalar usando otro gestor de paquetes
-
-{{< tabs name="other_kubectl_install" >}}
-{{% tab name="Snap" %}}
-Si usas Ubuntu o alguna de las otras distribuciones de Linux que soportan el gestor de paquetes [snap](https://snapcraft.io/docs/core/install), kubectl está disponible como una aplicación [snap](https://snapcraft.io/).
-
-```shell
-snap install kubectl --classic
-
-kubectl version --client
-```
-
-{{% /tab %}}
-
-{{% tab name="Homebrew" %}}
-Si usas alguna de las otras distribuciones de Linux que soportan el gestor de paquetes  [Homebrew](https://docs.brew.sh/Homebrew-on-Linux), kubectl está disponible como una aplicación de [Homebrew]((https://docs.brew.sh/Homebrew-on-Linux#install).
-
-```shell
-brew install kubectl
-
-kubectl version --client
-```
-
-{{% /tab %}}
-
-{{< /tabs >}}
-
-
-## Instalar kubectl en macOS
-
-### Instalar el binario de kubectl usando curl en macOS
-
-1. Descarga la última entrega:
-
-   ```bash
-   curl -LO "https://storage.googleapis.com/kubernetes-release/release/$(curl -s https://storage.googleapis.com/kubernetes-release/release/stable.txt)/bin/darwin/amd64/kubectl"
-   ```
-
-    Para descargar una versión específica, remplaza el comando `$(curl -s https://storage.googleapis.com/kubernetes-release/release/stable.txt)` con la versión específica.
-
-    Por ejemplo, para descargar la versión {{< param "fullversion" >}} en macOS, teclea:
-		
-  ```bash
-   curl -LO https://storage.googleapis.com/kubernetes-release/release/{{< param "fullversion" >}}/bin/darwin/amd64/kubectl
-   ```
-
-2. Habilita los permisos de ejecución del binario `kubectl`.
-
-   ```bash
-   chmod +x ./kubectl
-   ```
-
-3. Mueve el binario dentro de tu PATH.
-
-    ```bash
-    sudo mv ./kubectl /usr/local/bin/kubectl
-    ```
-
-4. Para asegurar que la versión utilizada sea la más actual puedes probar:
-
-   ```bash
-   kubectl version --client
-   ```
-
-### Instalar con Homebrew en macOS
-
-Si estás usando macOS y el gestor de paquetes es [Homebrew](https://brew.sh/), puedes instalar `kubectl` con `brew`.
-
-1. Ejecuta el comando de instalación:
-
-    ```bash
-    brew install kubectl
-    ```
-
-    o
-
-    ```bash
-    brew install kubernetes-cli
-    ```
-
-2. Para asegurar que la versión utilizada sea la más actual, puedes ejecutar:
-
-    ```bash
-    kubectl version --client
-    ```
-
-### Instalar con Macports en macOS
-
-Si estás en macOS y utilizas el gestor de paquetes [Macports](https://macports.org/), puedes instalar `kubectl` con `port`.
-
-1. Ejecuta los comandos de instalación:
-
-    ```bash
-    sudo port selfupdate
-    sudo port install kubectl
-    ```
-
-2. Para asegurar que la versión utilizada sea la más actual puedes ejecutar:
-
-    ```bash
-    kubectl version --client
-    ```
-
-# Instalar kubectl en Windows
-
-### Instalar el binario de kubectl con curl en Windows
-
-1. Descargar la última entrega {{< param "fullversion" >}} de [este link](https://storage.googleapis.com/kubernetes-release/release/{{< param "fullversion" >}}/bin/windows/amd64/kubectl.exe).
-
-    o si tiene `curl` instalada, utiliza este comando:
-
-   ```bash
-   curl -LO https://storage.googleapis.com/kubernetes-release/release/{{< param "fullversion" >}}/bin/windows/amd64/kubectl.exe
-   ```
-
-    Para averiguar la última versión estable (por ejemplo, para secuencias de comandos), echa un vistazo a [https://storage.googleapis.com/kubernetes-release/release/stable.txt](https://storage.googleapis.com/kubernetes-release/release/stable.txt).
-
-2. Añade el binario a tu PATH.
-
-3. Para asegurar que la versión utilizada sea la más actual, puedes ejecutar:
-
-    ```bash
-    kubectl version --client
-    ```
-
-{{< note >}}
-[Docker Desktop para Windows](https://docs.docker.com/docker-for-windows/#kubernetes) añade su propia versión de `kubectl` a PATH.
-
-Si tienes Docker Desktop instalado, es posible que tengas que modificar tu PATH al PATH añadido por Docker Desktop o eliminar la versión de `kubectl` proporcionada por Docker Desktop.
-{{< /note >}}
-
-### Instalar con Powershell desde PSGallery
-
-Si estás en Windows y utilizas el gestor de paquetes [Powershell Gallery](https://www.powershellgallery.com/), puedes instalar y actualizar kubectl con Powershell.
-
-1. Ejecuta los comandos de instalación (asegurándote de especificar una `DownloadLocation`):
-
-   ```powershell
-   Install-Script -Name 'install-kubectl' -Scope CurrentUser -Force
-   install-kubectl.ps1 [-DownloadLocation <path>]
-    ```
-
-    {{< note >}}Si no especificas una `DownloadLocation`, `kubectl` se instalará en el directorio temporal del usuario.{{< /note >}}
-
-    El instalador crea `$HOME/.kube` y crea un archivo de configuración
-
-2. Para asegurar que la versión utilizada sea la más actual puedes probar:
-
-    ```powershell
-    kubectl version --client
-    ```
-
-{{< note >}}
-Actualizar la instalación se realiza mediante la re-ejecución de los dos comandos listados en el paso 1.{{< /note >}}
-
-### Instalar en Windows usando Chocolatey o scoop
-
-1. Para instalar kubectl en Windows puedes usar el gestor de paquetes [Chocolatey](https://chocolatey.org) o el instalador de línea de comandos [scoop](https://scoop.sh).
-
-    {{< tabs name="kubectl_win_install" >}}
-    {{% tab name="choco" %}}
-Using  [Chocolatey](https://chocolatey.org).
-
-    ```powershell
-    choco install kubernetes-cli
-    ```
-    {{% /tab %}}
-    {{% tab name="scoop" %}}
-Using [scoop](https://scoop.sh).
-
-    ```powershell
-    scoop install kubectl
-    ```
-    {{% /tab %}}
-    {{< /tabs >}}
-
-2. Para asegurar que la versión utilizada sea la más actual puedes probar:
-
-    ```powershell
-    kubectl version --client
-    ```
-
-3. Navega a tu directorio de inicio:
-
-    ```powershell
-    # Si estas usando cmd.exe, ejecuta: cd %USERPROFILE%
-    cd ~
-    ```
-
-4. Crea el directorio `.kube`:
-
-    ```powershell
-    mkdir .kube
-    ```
-
-5. Cambia al directorio `.kube` que acabas de crear:
-
-    ```powershell
-    cd .kube
-    ```
-
-6. Configura kubectl para usar un clúster remoto de Kubernetes:
-
-    ```powershell
-    New-Item config -type file
-    ```
-
-{{< note >}}Edita el fichero de configuración con un editor de texto de tu elección, como Notepad.{{< /note >}}
-
-## Descarga como parte del Google Cloud SDK
-
-Puedes instalar kubectl como parte del Google Cloud SDK.
-
-1. Instala el [Google Cloud SDK](https://cloud.google.com/sdk/).
-2. Ejecuta el comando de instalación de `kubectl`:
-
-    ```shell
-    gcloud components install kubectl
-    ```
-
-3. Para asegurar que la versión utilizada sea la más actual puedes probar:
-
-    ```shell
-    kubectl version --client
-    ```
-
-## Comprobar la configuración kubectl
-
-Para que kubectl pueda encontrar y acceder a un clúster de Kubernetes, necesita un [fichero kubeconfig](/docs/tasks/access-application-cluster/configure-access-multiple-clusters/), que se crea de forma automática cuando creas un clúster usando [kube-up.sh](https://github.com/kubernetes/kubernetes/blob/master/cluster/kube-up.sh)  o despliegas de forma satisfactoria un clúster de Minikube. Revisa las [guías para comenzar](/docs/setup/) para más información acerca de crear clústers. Si necesitas acceso a un clúster que no has creado, ver el [documento de Compartir Acceso a un Clúster](/docs/tasks/access-application-cluster/configure-access-multiple-clusters/).
-Por defecto, la configuración de kubectl se encuentra en `~/.kube/config`.
-
-Comprueba que kubectl está correctamente configurado obteniendo el estado del clúster:
-
-```shell
-kubectl cluster-info
-```
-
-Si ves una respuesta en forma de URL, kubectl está correctamente configurado para acceder a tu clúster.
-
-Si ves un mensaje similar al siguiente, kubectl no está correctamente configurado o no es capaz de conectar con un clúster de Kubernetes.
-
-```
-The connection to the server <server-name:port> was refused - did you specify the right host or port?
-```
-
-Por ejemplo, si intentas ejecutar un clúster de Kubernetes en tu portátil (localmente), necesitarás una herramienta como minikube que esté instalada primero y entonces volver a ejecutar los comandos indicados arriba.
-
-Si kubectl cluster-info devuelve la respuesta en forma de url, pero no puedes acceder a tu clúster, para comprobar si está configurado adecuadamente, usa:
-
-```shell
-kubectl cluster-info dump
-```
-
-## kubectl configuraciones opcionales
-
-### Habilitar el auto-completado en el intérprete de comandos
-
-kubectl provee de soporte para auto-completado para Bash y Zsh, ¡que te puede ahorrar mucho uso del teclado!
-
-Abajo están los procedimientos para configurar el auto-completado para Bash (incluyendo la diferencia entre Linux y macOS) y Zsh.
-
-{{< tabs name="kubectl_autocompletion" >}}
-
-{{% tab name="Bash en Linux" %}}
-
-### Introducción
-
-La secuencia de comandos de completado de kubectl para Bash puede ser generado con el comando `kubectl completion bash`. Corriendo la secuencia de comandos de completado en tu intérprete de comandos habilita el auto-completado de kubectl.
-
-Sin embargo, la secuencia de comandos de completado depende de [*bash-completion**](https://github.com/scop/bash-completion), lo que significa que tienes que instalar primero este programa (puedes probar si ya tienes bash-completion instalado ejecutando `type _init_completion`).
-
-### Instalar bash-completion
-
-bash-completion es ofrecido por muchos gestores de paquetes (ver [aquí](https://github.com/scop/bash-completion#installation)). Puedes instalarlo con `apt-get install bash-completion` o `yum install bash-completion`, etc.
-
-Los comandos de arriba crean `/usr/share/bash-completion/bash_completion`, que es la secuencia de comandos principal de bash-completion. Dependiendo de tu gestor de paquetes, tienes que correr manualmente este archivo en tu `~/.bashrc`.
-
-Para averiguarlo, recarga tu intérprete de comandos y ejecuta `type _init_completion`. Si el comando tiene éxito, ya has terminado; si no, añade lo siguiente a tu `~/.bashrc`:
-
-```shell
-source /usr/share/bash-completion/bash_completion
-```
-
-recarga tu intérprete de comandos y verifica que bash-completion está correctamente instalado tecleando `type _init_completion`.
-
-### Habilitar el auto-completado de kubectl
-
-Debes asegurarte que la secuencia de comandos de completado de kubectl corre en todas tus sesiones de tu intérprete de comandos. Hay dos formas en que puedes hacer esto:
-
-- Corre la secuencia de comandos de completado en tu `~/.bashrc`:
-
-    ```bash
-    echo 'source <(kubectl completion bash)' >>~/.bashrc
-    ```
-
-- Añade la secuencia de comandos de completado al directorio `/etc/bash_completion.d`:
-
-    ```bash
-    kubectl completion bash >/etc/bash_completion.d/kubectl
-    ```
-
-Si tienes un alias para `kubectl`, puedes extender los comandos de shell para funcionar con ese alias:
-
-```bash
-echo 'alias k=kubectl' >>~/.bashrc
-echo 'complete -F __start_kubectl k' >>~/.bashrc
-```
-
-{{< note >}}
-bash-completion corre todas las secuencias de comandos de completado en `/etc/bash_completion.d`.
-{{< /note >}}
-
-Ambas estrategias son equivalentes. Tras recargar tu intérprete de comandos, el auto-completado de kubectl debería estar funcionando.
-
-{{% /tab %}}
-
-
-{{% tab name="Bash en macOS" %}}
-
-### Introducción
-
-La secuencia de comandos de completado de kubectl para Bash puede generarse con el comando `kubectl completion bash`. Corriendo la secuencia de comandos de completado en tu intérprete de comandos habilita el auto-completado de kubectl.
-
-Sin embargo, la secuencia de comandos de completado depende de [*bash-completion**](https://github.com/scop/bash-completion), lo que significa que tienes que instalar primero este programa (puedes probar si ya tienes bash-completion instalado ejecutando `type _init_completion`).
-
-{{< warning>}}
-macOS incluye Bash 3.2 por defecto. La secuencia de comandos de completado de kubectl requiere Bash 4.1+ y no funciona con Bash 3.2. Una posible alternativa es instalar una nueva versión de Bash en macOS (ver instrucciones [aquí](https://itnext.io/upgrading-bash-on-macos-7138bd1066ba)). Las instrucciones de abajo sólo funcionan si estás usando Bash 4.1+.
-{{< /warning >}}
-
-### Actualizar bash
-
-Las instrucciones asumen que usa Bash 4.1+. Puedes comprobar tu versión de bash con:
-
-```bash
-echo $BASH_VERSION
-```
-
-Si no es 4.1+, puede actualizar bash con Homebrew:
-
-```bash
-brew install bash
-```
-
-Recarga tu intérprete de comandos y verifica que estás usando la versión deseada:
-
-```bash
-echo $BASH_VERSION $SHELL
-```
-
-Usualmente, Homebrew lo instala en `/usr/local/bin/bash`.
-
-### Instalar bash-completion
-
-Puedes instalar bash-completion con Homebrew:
-
-```bash
-brew install bash-completion@2
-```
-
-{{< note >}}
-El `@2` simboliza bash-completion 2, que es requerido por la secuencia de comandos de completado de kubectl (no funciona con bash-completion 1). Luego, bash-completion 2 requiere Bash 4.1+, eso es por lo que necesitabas actualizar Bash.
-{{< /note >}}
-
-Como se indicaba en la salida de `brew install` (sección "Caveats"), añade las siguientes líneas a tu `~/.bashrc` o `~/.bash_profile`:
-
-```bash
-export BASH_COMPLETION_COMPAT_DIR="/usr/local/etc/bash_completion.d"
-[[ -r "/usr/local/etc/profile.d/bash_completion.sh" ]] && . "/usr/local/etc/profile.d/bash_completion.sh"
-```
-
-Recarga tu intérprete de comandos y verifica que bash-completion está correctamente instalado tecleando `type _init_completion`.
-
-### Habilitar el auto-completado de kubectl
-
-Debes asegurarte que la secuencia de comandos de completado de kubectl corre en todas tus sesiones de tu intérprete de comenados. Hay múltiples formas en que puedes hacer esto:
-
-- Corre la secuencia de comandos de completado en tu `~/.bashrc`:
-
-    ```shell
-    echo 'source <(kubectl completion bash)' >>~/.bashrc
-
-    ```
-
-- Añade la secuencia de comandos de completado al directorio `/usr/local/etc/bash_completion.d`:
-
-    ```shell
-    kubectl completion bash >/usr/local/etc/bash_completion.d/kubectl
-    ```
-
-- Si has instalado kubectl con Homebrew (como se explica [aquí](#install-with-homebrew-on-macos)), entonces la secuencia de comandos de completado se instaló automáticamente en `/usr/local/etc/bash_completion.d/kubectl`. En este caso, no tienes que hacer nada.
-
-{{< note >}}
-bash-completion (si se instaló con Homebrew) corre todas las secuencias de comandos de completado en el directorio que se ha puesto en la variable de entorno `BASH_COMPLETION_COMPAT_DIR`.
-{{< /note >}}
-
-Todas las estrategias son equivalentes. Tras recargar tu intérprete de comandos, el auto-completado de kubectl debería funcionar.
-{{% /tab %}}
-
-{{% tab name="Zsh" %}}
-
-La secuencia de comandos de completado de kubectl para Zsh puede ser generada con el comando `kubectl completion zsh`. Corriendo la secuencia de comandos de completado en tu intérprete de comandos habilita el auto-completado de kubectl.
-
-Para hacerlo en todas tus sesiones de tu intérprete de comandos, añade lo siguiente a tu `~/.zshrc`:
-
-```zsh
-source <(kubectl completion zsh)
-```
-
-Si tienes alias para kubectl, puedes extender el completado de intérprete de comandos para funcionar con ese alias.
-
-```zsh
-echo 'alias k=kubectl' >>~/.zshrc
-echo 'complete -F __start_kubectl k' >>~/.zshrc
-```
-
-Tras recargar tu intérprete de comandos, el auto-completado de kubectl debería funcionar.
-
-Si obtienes un error como `complete:13: command not found: compdef`, entonces añade lo siguiente al principio de tu `~/.zshrc`:
-
-```zsh
-autoload -Uz compinit
-compinit
-```
-{{% /tab %}}
-{{< /tabs >}}
-
-## {{% heading "whatsnext" %}}
-* [Instalar Minikube](https://minikube.sigs.k8s.io/docs/start/)
-* Ver las [guías](/docs/setup/) para ver mas información sobre como crear clusteres.
-* [Aprender cómo lanzar y exponer tu aplicación.](/docs/tasks/access-application-cluster/service-access-application-cluster/).
-* Si necesita acceso a un clúster que no se creó, ver el documento de [compartiendo acceso a clúster](/docs/tasks/access-application-cluster/configure-access-multiple-clusters/).
-* Leer ´la documentación de kubectl reference](/docs/reference/kubectl/kubectl/)
diff --git a/content/es/docs/tutorials/_index.md b/content/es/docs/tutorials/_index.md
index a8748b958d..27c804973a 100644
--- a/content/es/docs/tutorials/_index.md
+++ b/content/es/docs/tutorials/_index.md
@@ -55,6 +55,8 @@ Antes de recorrer cada tutorial, recomendamos añadir un marcador a
 
 * [AppArmor](/docs/tutorials/clusters/apparmor/)
 
+* [seccomp](/docs/tutorials/clusters/seccomp/)
+
 ## Servicios
 
 * [Using Source IP](/docs/tutorials/services/source-ip/)
diff --git a/content/es/docs/tutorials/hello-minikube.md b/content/es/docs/tutorials/hello-minikube.md
index 67d7bf7afa..fb40f2fdb0 100644
--- a/content/es/docs/tutorials/hello-minikube.md
+++ b/content/es/docs/tutorials/hello-minikube.md
@@ -17,7 +17,7 @@ card:
 
 Este tutorial muestra como ejecutar una aplicación Node.js Hola Mundo en Kubernetes utilizando 
 [Minikube](/docs/setup/learning-environment/minikube) y Katacoda.
-Katacoda provee un ambiente de Kubernetes desde el navegador.
+Katacoda provee un entorno de Kubernetes desde el navegador.
 
 {{< note >}}
 También se puede  seguir este tutorial si se ha instalado [Minikube localmente](/docs/tasks/tools/install-minikube/).
@@ -63,9 +63,9 @@ Para más información sobre el comando `docker build`, lea la [documentación d
     minikube dashboard
     ```
 
-3. Solo en el ambiente de Katacoda: En la parte superior de la terminal, haz clic en el símbolo + y luego clic en **Select port to view on Host 1**.
+3. Solo en el entorno de Katacoda: En la parte superior de la terminal, haz clic en el símbolo + y luego clic en **Select port to view on Host 1**.
 
-4. Solo en el ambiente de Katacoda: Escribir `30000`, y hacer clic en **Display Port**.
+4. Solo en el entorno de Katacoda: Escribir `30000`, y hacer clic en **Display Port**.
 
 ## Crear un Deployment
 
@@ -154,15 +154,15 @@ Por defecto, el Pod es accedido por su dirección IP interna dentro del clúster
     minikube service hello-node
     ```
 
-4. Solo en el ambiente de Katacoda: Hacer clic sobre el símbolo +, y luego en **Select port to view on Host 1**.
+4. Solo en el entorno de Katacoda: Hacer clic sobre el símbolo +, y luego en **Select port to view on Host 1**.
 
-5. Solo en el ambiente de Katacoda: Anotar el puerto de 5 dígitos ubicado al lado del valor de `8080` en el resultado de servicios. Este número de puerto es generado aleatoriamente y puede ser diferente al indicado en el ejemplo. Escribir el número de puerto en el cuadro de texto y hacer clic en Display Port. Usando el ejemplo anterior, usted escribiría `30369`.
+5. Solo en el entorno de Katacoda: Anotar el puerto de 5 dígitos ubicado al lado del valor de `8080` en el resultado de servicios. Este número de puerto es generado aleatoriamente y puede ser diferente al indicado en el ejemplo. Escribir el número de puerto en el cuadro de texto y hacer clic en Display Port. Usando el ejemplo anterior, usted escribiría `30369`.
 
     Esto abre una ventana de navegador que contiene la aplicación y muestra el mensaje "Hello World".
 
 ## Habilitar Extensiones
 
-Minikube tiene un conjunto  de {{< glossary_tooltip text="Extensiones" term_id="addons" >}} que pueden ser habilitados y desahabilitados en el ambiente local de Kubernetes.
+Minikube tiene un conjunto  de {{< glossary_tooltip text="Extensiones" term_id="addons" >}} que pueden ser habilitados y desahabilitados en el entorno local de Kubernetes.
 
 1. Listar las extensiones soportadas actualmente:
 
diff --git a/content/es/examples/service/networking/network-policy-allow-all-egress.yaml b/content/es/examples/service/networking/network-policy-allow-all-egress.yaml
new file mode 100644
index 0000000000..42b2a2a296
--- /dev/null
+++ b/content/es/examples/service/networking/network-policy-allow-all-egress.yaml
@@ -0,0 +1,11 @@
+---
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: allow-all-egress
+spec:
+  podSelector: {}
+  egress:
+  - {}
+  policyTypes:
+  - Egress
diff --git a/content/es/examples/service/networking/network-policy-allow-all-ingress.yaml b/content/es/examples/service/networking/network-policy-allow-all-ingress.yaml
new file mode 100644
index 0000000000..462912dae4
--- /dev/null
+++ b/content/es/examples/service/networking/network-policy-allow-all-ingress.yaml
@@ -0,0 +1,11 @@
+---
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: allow-all-ingress
+spec:
+  podSelector: {}
+  ingress:
+  - {}
+  policyTypes:
+  - Ingress
diff --git a/content/es/examples/service/networking/network-policy-default-deny-all.yaml b/content/es/examples/service/networking/network-policy-default-deny-all.yaml
new file mode 100644
index 0000000000..5c0086bd71
--- /dev/null
+++ b/content/es/examples/service/networking/network-policy-default-deny-all.yaml
@@ -0,0 +1,10 @@
+---
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: default-deny-all
+spec:
+  podSelector: {}
+  policyTypes:
+  - Ingress
+  - Egress
diff --git a/content/es/examples/service/networking/network-policy-default-deny-egress.yaml b/content/es/examples/service/networking/network-policy-default-deny-egress.yaml
new file mode 100644
index 0000000000..a4659e1417
--- /dev/null
+++ b/content/es/examples/service/networking/network-policy-default-deny-egress.yaml
@@ -0,0 +1,9 @@
+---
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: default-deny-egress
+spec:
+  podSelector: {}
+  policyTypes:
+  - Egress
diff --git a/content/es/examples/service/networking/network-policy-default-deny-ingress.yaml b/content/es/examples/service/networking/network-policy-default-deny-ingress.yaml
new file mode 100644
index 0000000000..e823802487
--- /dev/null
+++ b/content/es/examples/service/networking/network-policy-default-deny-ingress.yaml
@@ -0,0 +1,9 @@
+---
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: default-deny-ingress
+spec:
+  podSelector: {}
+  policyTypes:
+  - Ingress
diff --git a/content/es/examples/service/networking/networkpolicy.yaml b/content/es/examples/service/networking/networkpolicy.yaml
new file mode 100644
index 0000000000..e91eed2f67
--- /dev/null
+++ b/content/es/examples/service/networking/networkpolicy.yaml
@@ -0,0 +1,35 @@
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: test-network-policy
+  namespace: default
+spec:
+  podSelector:
+    matchLabels:
+      role: db
+  policyTypes:
+    - Ingress
+    - Egress
+  ingress:
+    - from:
+        - ipBlock:
+            cidr: 172.17.0.0/16
+            except:
+              - 172.17.1.0/24
+        - namespaceSelector:
+            matchLabels:
+              project: myproject
+        - podSelector:
+            matchLabels:
+              role: frontend
+      ports:
+        - protocol: TCP
+          port: 6379
+  egress:
+    - to:
+        - ipBlock:
+            cidr: 10.0.0.0/24
+      ports:
+        - protocol: TCP
+          port: 5978
+
diff --git a/content/es/includes/task-tutorial-prereqs.md b/content/es/includes/task-tutorial-prereqs.md
index 7c47e436f3..55ee0fb835 100644
--- a/content/es/includes/task-tutorial-prereqs.md
+++ b/content/es/includes/task-tutorial-prereqs.md
@@ -1,5 +1,5 @@
 Debes tener un cluster Kubernetes a tu dispocición, y la herramienta de línea de comandos `kubectl` debe estar configurada. Si no tienes un cluster, puedes crear uno utilizando [Minikube](/docs/setup/minikube),
 o puedes utilizar una de las siguientes herramientas en línea:
 
-* [Katacoda](https://www.katacoda.com/courses/kubernetes/playground)
+* [Killercoda](https://killercoda.com/playgrounds/scenario/kubernetes)
 * [Play with Kubernetes](http://labs.play-with-k8s.com/)
diff --git a/content/es/partners/_index.html b/content/es/partners/_index.html
index 87ae9d5349..afb2f6128f 100644
--- a/content/es/partners/_index.html
+++ b/content/es/partners/_index.html
@@ -7,85 +7,48 @@ cid: partners
 ---
 
 <section id="users">
-    <main>
-        <h5>Kubernetes trabaja con socios para crear una base de código sólida y vibrante que admita un espectro de plataformas complementarias.</h5>
-        <div class="col-container">
-          <div class="col-nav">
-            <center>
-              <h5>
-                <b>Kubernetes Certified Service Providers</b>
-              </h5>
-              <br>Proveedores de servicios con amplia experiencia ayudando a las empresas a adoptar Kubernetes con éxito.
-              <br><br><br>
-              <button id="kcsp" class="button" onClick="updateSrc(this.id)">See KCSP Partners</button>
-              <br><br>Conviértete en <a href="https://www.cncf.io/certification/kcsp/">KCSP</a>
-            </center>
-          </div>
-          <div class="col-nav">
-            <center>
-              <h5>
-                <b>Certified Kubernetes Distributions, Hosted Platforms, and Installers</b>
-              </h5>La conformidad del software garantiza que la versión de Kubernetes de cada proveedor sea compatible con las API requeridas.
-              <br><br><br>
-              <button id="conformance" class="button" onClick="updateSrc(this.id)">See Conformance Partners</button>
-              <br><br>Conviértete en <a href="https://www.cncf.io/certification/software-conformance/">Certified Kubernetes</a>
-            </center>
-          </div>
-          <div class="col-nav">
-            <center>
-              <h5><b>Kubernetes Training Partners</b></h5>
-              <br>Partners de formación que ofrecen cursos de alta calidad y con una amplia experiencia en formación de tecnologías nativas de la nube.
-              <br><br><br><br>
-              <button id="ktp" class="button" onClick="updateSrc(this.id)">See KTP Partners</button>
-              <br><br>Conviértete en <a href="https://www.cncf.io/certification/training/">KTP</a>
-            </center>
-          </div>
-        </div>
-<script src="https://code.jquery.com/jquery-3.3.1.min.js" integrity="sha256-FgpCb/KJQlLNfOu91ta32o/NMZxltwRo8QtmkMRdAu8=" crossorigin="anonymous"></script>
-<script type="text/javascript">
-
-			var defaultLink = "https://landscape.cncf.io/category=kubernetes-certified-service-provider&format=card-mode&grouping=category&embed=yes";
-			var firstLink = "https://landscape.cncf.io/category=certified-kubernetes-distribution,certified-kubernetes-hosted,certified-kubernetes-installer&format=card-mode&grouping=category&embed=yes";
-      var secondLink = "https://landscape.cncf.io/category=kubernetes-training-partner&format=card-mode&grouping=category&embed=yes";
-
-      function updateSrc(buttonId) {
-      	if (buttonId == "kcsp") {
-        		$("#landscape").attr("src",defaultLink);
-            window.location.hash = "#kcsp";
-        }
-        if (buttonId == "conformance") {
-         		$("#landscape").attr("src",firstLink);
-            window.location.hash = "#conformance";
-        }
-        if (buttonId == "ktp") {
-        		$("#landscape").attr("src",secondLink);
-            window.location.hash = "#ktp";
-        }
-      }
-
-      // Automatically load the correct iframe based on the URL fragment
-      document.addEventListener('DOMContentLoaded', function() {
-        var showContent = "kcsp";
-        if (window.location.hash) {
-          console.log('hash is:', window.location.hash.substring(1));
-          showContent = window.location.hash.substring(1);
-        }
-        updateSrc(showContent);
-      });
-</script>
-<body>
-    <div id="frameHolder">
-      <iframe id="landscape" frameBorder="0" scrolling="no" style="width: 1px; min-width: 100%" src=""></iframe>
-      <script src="https://landscape.cncf.io/iframeResizer.js"></script>
+    <h5>Kubernetes trabaja con socios para crear una base de código sólida y vibrante que admita un espectro de plataformas complementarias.</h5>
+    <div class="col-container">
+      <div class="col-nav">
+        <center>
+          <h5>
+            <b>Kubernetes Certified Service Providers</b>
+          </h5>
+          <br>Proveedores de servicios con amplia experiencia ayudando a las empresas a adoptar Kubernetes con éxito.
+          <br><br><br>
+          <button class="button landscape-trigger landscape-default" data-landscape-types="kubernetes-certified-service-provider" id="kcsp">See KCSP Partners</button>
+          <br><br>Conviértete en 
+          <a href="https://www.cncf.io/certification/kcsp/">KCSP</a>?
+        </center>
+      </div>
+      <div class="col-nav">
+        <center>
+          <h5>
+            <b>Certified Kubernetes Distributions, Hosted Platforms, and Installers</b>
+          </h5>La conformidad del software garantiza que la versión de Kubernetes de cada proveedor sea compatible con las API requeridas.
+          <br><br><br>
+          <button class="button landscape-trigger" data-landscape-types="certified-kubernetes-distribution,certified-kubernetes-hosted,certified-kubernetes-installer" id="conformance">See Conformance Partners</button>
+          <br><br>Conviértete en 
+          <a href="https://www.cncf.io/certification/software-conformance/">Certified Kubernetes</a>?
+        </center>
+      </div>
+      <div class="col-nav">
+        <center>
+          <h5>
+            <b>Kubernetes Training Partners</b>
+          </h5>
+          <br>Partners de formación que ofrecen cursos de alta calidad y con una amplia experiencia en formación de tecnologías nativas de la nube.
+          <br><br><br>
+          <button class="button landscape-trigger" data-landscape-types="kubernetes-training-partner" id="ktp">See KTP Partners</button>
+          <br><br>Conviértete en 
+          <a href="https://www.cncf.io/certification/training/">KTP</a>?
+        </center>
+      </div>
     </div>
-</body>
-    </main>
+    {{< cncf-landscape helpers=true >}}
 </section>
 
 <style>
     {{< include "partner-style.css" >}}
 </style>
 
-<script>
-    {{< include "partner-script.js" >}}
-</script>
diff --git a/content/fr/_index.html b/content/fr/_index.html
index 836e5b7504..87923c2868 100644
--- a/content/fr/_index.html
+++ b/content/fr/_index.html
@@ -43,12 +43,12 @@ Kubernetes est une solution open-source qui vous permet de tirer parti de vos in
         <button id="desktopShowVideoButton" onclick="kub.showVideo()">Voir la video (en)</button>
         <br>
         <br>
-        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccncna21" button id="desktopKCButton">Venez au KubeCon NA Los Angeles, USA du 11 au 15 Octobre 2021</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/" button id="desktopKCButton">Venez au KubeCon Detroit, Michigan, USA du 24 au 28 Octobre 2022</a>
         <br>
         <br>
         <br>
         <br>
-        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe-2022/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccnceu22" button id="desktopKCButton">Venez au KubeCon EU Valence, Espagne du 15 au 20 Mai 2022</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/" button id="desktopKCButton">Venez au KubeCon EU Amsterdam, Pays-Bas du 17 au 21 Avril 2023</a>
 </div>
 <div id="videoPlayer">
     <iframe data-url="https://www.youtube.com/embed/H06qrNmGqyE?autoplay=1" frameborder="0" allowfullscreen></iframe>
@@ -58,4 +58,4 @@ Kubernetes est une solution open-source qui vous permet de tirer parti de vos in
 
 {{< blocks/kubernetes-features >}}
 
-{{< blocks/case-studies >}}
\ No newline at end of file
+{{< blocks/case-studies >}}
diff --git a/content/fr/docs/concepts/architecture/nodes.md b/content/fr/docs/concepts/architecture/nodes.md
index b6718c6750..8fba205053 100644
--- a/content/fr/docs/concepts/architecture/nodes.md
+++ b/content/fr/docs/concepts/architecture/nodes.md
@@ -12,7 +12,7 @@ weight: 10
 Un nœud est une machine de travail dans Kubernetes, connue auparavant sous le nom de `minion`.
 Un nœud peut être une machine virtuelle ou une machine physique, selon le cluster.
 Chaque nœud contient les services nécessaires à l'exécution de [pods](/docs/concepts/workloads/pods/pod/) et est géré par les composants du master.
-Les services sur un nœud incluent le [container runtime](/docs/concepts/overview/components/#node-components), kubelet and kube-proxy.
+Les services sur un nœud incluent le [container runtime](/docs/concepts/overview/components/#node-components), kubelet et kube-proxy.
 Consultez la section [Le Nœud Kubernetes](https://git.k8s.io/community/contributors/design-proposals/architecture/architecture.md#the-kubernetes-node) dans le document de conception de l'architecture pour plus de détails.
 
 
@@ -157,7 +157,7 @@ Dans la plupart des cas, le contrôleur de noeud limite le taux d’expulsion à
 
 Le comportement d'éviction de noeud change lorsqu'un noeud d'une zone de disponibilité donnée devient défaillant.
 Le contrôleur de nœud vérifie quel pourcentage de nœuds de la zone est défaillant (la condition NodeReady est ConditionUnknown ou ConditionFalse) en même temps.
-Si la fraction de nœuds défaillant est au moins `--unhealthy-zone-threshold` (valeur par défaut de 0,55), le taux d'expulsion est réduit: si le cluster est petit (c'est-à-dire inférieur ou égal à ` --large-cluster-size-threshold` noeuds - valeur par défaut 50) puis les expulsions sont arrêtées, sinon le taux d'expulsion est réduit à `--secondary-node-eviction-rate` (valeur par défaut de 0,01) par seconde.
+Si la fraction de nœuds défaillant est au moins `--unhealthy-zone-threshold` (valeur par défaut de 0,55), le taux d'expulsion est réduit: si le cluster est petit (c'est-à-dire inférieur ou égal à `--large-cluster-size-threshold` noeuds - valeur par défaut 50) puis les expulsions sont arrêtées, sinon le taux d'expulsion est réduit à `--secondary-node-eviction-rate` (valeur par défaut de 0,01) par seconde.
 
 Ces stratégies sont implémentées par zone de disponibilité car une zone de disponibilité peut être partitionnée à partir du master, tandis que les autres restent connectées.
 Si votre cluster ne s'étend pas sur plusieurs zones de disponibilité de fournisseur de cloud, il n'existe qu'une seule zone de disponibilité (la totalité du cluster).
diff --git a/content/fr/docs/concepts/containers/container-environment.md b/content/fr/docs/concepts/containers/container-environment.md
index adad1ab64a..d73e26442d 100644
--- a/content/fr/docs/concepts/containers/container-environment.md
+++ b/content/fr/docs/concepts/containers/container-environment.md
@@ -49,7 +49,7 @@ FOO_SERVICE_PORT=<le port sur lequel le service fonctionne>
 ```
 
 Les services ont des adresses IP dédiées et sont disponibles pour le conteneur avec le DNS,
-si le [module DNS](http://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/dns/) est activé. 
+si le [module DNS](http://releases.k8s.io/master/cluster/addons/dns/) est activé. 
 
 
 
diff --git a/content/fr/docs/concepts/overview/what-is-kubernetes.md b/content/fr/docs/concepts/overview/what-is-kubernetes.md
index 07a6c738d8..e962c05dd7 100644
--- a/content/fr/docs/concepts/overview/what-is-kubernetes.md
+++ b/content/fr/docs/concepts/overview/what-is-kubernetes.md
@@ -46,7 +46,7 @@ C'est pourquoi Kubernetes a également été conçu pour servir de plate-forme e
 
 De plus, le [plan de contrôle Kubernetes (control
 plane)](/docs/concepts/overview/components/) est construit sur les mêmes [APIs](/docs/reference/using-api/api-overview/) que celles accessibles aux développeurs et utilisateurs.
-Les utilisateurs peuvent écrire leurs propres contrôleurs (controllers), tels que les [ordonnanceurs (schedulers)](https://github.com/kubernetes/community/blob/{{< param "githubbranch" >}}/contributors/devel/scheduler.md),
+Les utilisateurs peuvent écrire leurs propres contrôleurs (controllers), tels que les [ordonnanceurs (schedulers)](https://github.com/kubernetes/community/blob/master/contributors/devel/scheduler.md),
 avec [leurs propres APIs](/docs/concepts/api-extension/custom-resources/) qui peuvent être utilisés par un [outil en ligne de commande](/docs/user-guide/kubectl-overview/).
 
 Ce choix de [conception](https://git.k8s.io/community/contributors/design-proposals/architecture/architecture.md) a permis de construire un ensemble d'autres systèmes par dessus Kubernetes.
diff --git a/content/fr/docs/concepts/services-networking/endpoint-slices.md b/content/fr/docs/concepts/services-networking/endpoint-slices.md
index f5b157bc01..7771b7fe19 100644
--- a/content/fr/docs/concepts/services-networking/endpoint-slices.md
+++ b/content/fr/docs/concepts/services-networking/endpoint-slices.md
@@ -1,5 +1,5 @@
 ---
-reviewers: 
+reviewers:
 title: EndpointSlices
 feature:
   title: EndpointSlices
@@ -21,14 +21,14 @@ _EndpointSlices_ offrent une méthode simple pour suivre les Endpoints d'un rés
 
 <!-- body -->
 
-## Resource pour EndpointSlice {#endpointslice-resource}
+## Ressource pour EndpointSlice {#endpointslice-resource}
 
-Dans Kubernetes, un EndpointSlice contient des reférences à un ensemble de Endpoints. 
-Le controleur d'EndpointSlice crée automatiquement des EndpointSlices pour un Service quand un {{< glossary_tooltip text="sélecteur" term_id="selector" >}} est spécifié. 
-Ces EnpointSlices vont inclure des références à n'importe quels Pods qui correspondent aux selecteurs de Service. 
+Dans Kubernetes, un EndpointSlice contient des références à un ensemble de Endpoints.
+Le controleur d'EndpointSlice crée automatiquement des EndpointSlices pour un Service quand un {{< glossary_tooltip text="sélecteur" term_id="selector" >}} est spécifié.
+Ces EndpointSlices vont inclure des références à n'importe quels Pods qui correspondent aux selecteurs de Service.
 EndpointSlices groupent ensemble les Endpoints d'un réseau par combinaisons uniques de Services et de Ports.
 
-Par exemple, voici un échantillon d'une resource EndpointSlice pour le Kubernetes Service `exemple`.
+Par exemple, voici un échantillon d'une ressource EndpointSlice pour le Kubernetes Service `exemple`.
 
 ```yaml
 apiVersion: discovery.k8s.io/v1beta1
@@ -53,15 +53,15 @@ endpoints:
       topology.kubernetes.io/zone: us-west2-a
 ```
 
-Les EndpointSlices gérés par le contrôleur d'EndpointSlice n'auront, par défaut, pas plus de 100 Endpoints chacun. 
-En dessous de cette échelle, EndpointSlices devraient mapper 1:1 les Endpoints et les Services et devraientt avoir une performance similaire.
+Les EndpointSlices gérés par le contrôleur d'EndpointSlice n'auront, par défaut, pas plus de 100 Endpoints chacun.
+En dessous de cette échelle, EndpointSlices devraient mapper 1:1 les Endpoints et les Services et devraient avoir une performance similaire.
 
-EndpointSlices peuvent agir en tant que source de vérité pour kube-proxy quand il s'agit du routage d'un trafic interne. 
+EndpointSlices peuvent agir en tant que source de vérité pour kube-proxy quand il s'agit du routage d'un trafic interne.
 Lorsqu'ils sont activés, ils devraient offrir une amélioration de performance pour les services qui ont une grand quantité d'Endpoints.
 
 ### Types d'addresses
 
-Les EndpointSlices supportent 3 types d'addresses:
+Les EndpointSlices supportent 3 types d'addresses :
 
 * IPv4
 * IPv6
@@ -69,14 +69,14 @@ Les EndpointSlices supportent 3 types d'addresses:
 
 ### Topologie
 
-Chaque Endpoint dans un EnpointSlice peut contenir des informations de topologie pertinentes. 
+Chaque Endpoint dans un EndpointSlice peut contenir des informations de topologie pertinentes.
 Ceci est utilisé pour indiquer où se trouve un Endpoint, qui contient les informations sur le Node, zone et région correspondantes. Lorsque les valeurs sont disponibles, les labels de Topologies suivants seront définis par le contrôleur EndpointSlice:
 
 * `kubernetes.io/hostname` - Nom du Node sur lequel l'Endpoint se situe.
 * `topology.kubernetes.io/zone` - Zone dans laquelle l'Endpoint se situe.
 * `topology.kubernetes.io/region` - Région dans laquelle l'Endpoint se situe.
 
-Le contrôleur EndpointSlice surveille les Services et les Pods pour assurer que leurs correspondances avec les EndpointSlices sont à jour. 
+Le contrôleur EndpointSlice surveille les Services et les Pods pour assurer que leurs correspondances avec les EndpointSlices sont à jour.
 Le contrôleur gère les EndpointSlices pour tous les Services qui ont un sélecteur - [référence: {{< glossary_tooltip text="sélecteur" term_id="selector" >}}] - specifié. Celles-ci représenteront les IPs des Pods qui correspondent au sélecteur.
 
 ### Capacité d'EndpointSlices
@@ -85,32 +85,27 @@ Les EndpointSlices sont limités à une capacité de 100 Endpoints chacun, par d
 
 ### Distribution d'EndpointSlices
 
-Chaque EndpointSlice a un ensemble de ports qui s'applique à tous les Endpoints dans la resource. 
-Lorsque les ports nommés sont utilisés pour un Service, les Pods peuvent se retrouver avec différents ports cibles pour le même port nommé, nécessitant différents EndpointSlices. 
+Chaque EndpointSlice a un ensemble de ports qui s'applique à tous les Endpoints dans la ressource.
+Lorsque les ports nommés sont utilisés pour un Service, les Pods peuvent se retrouver avec différents ports cibles pour le même port nommé, nécessitant différents EndpointSlices.
 
 Le contrôleur essaie de remplir les EndpointSlices aussi complètement que possible, mais ne les rééquilibre pas activement. La logique du contrôleur est assez simple:
 
-1. Itérer à travers les EnpointSlices existants, retirer les Endpoints qui ne sont plus voulus et mettre à jour les Endpoints qui ont changé.
+1. Itérer à travers les EndpointSlices existants, retirer les Endpoints qui ne sont plus voulus et mettre à jour les Endpoints qui ont changé.
 2. Itérer à travers les EndpointSlices qui ont été modifiés dans la première étape et les remplir avec n'importe quel Endpoint nécéssaire.
 3. S'il reste encore des Endpoints nouveaux à ajouter, essayez de les mettre dans une slice qui n'a pas été changée et/ou en créer une nouvelle.
 
-Par-dessus tout, la troisième étape priorise la limitation de mises à jour d'EnpointSlice sur une distribution complètement pleine d'EndpointSlices. Par exemple, s'il y avait 10 nouveaux Endpoints à ajouter et 2 EndpointSlices qui peuvent contenir 5 Endpoints en plus chacun; cette approche créera un nouveau EndpointSlice au lieu de remplir les EndpointSlice existants. 
-C'est à dire, une seule création EndpointSlice est préférable à plusieurs mises à jour d'EndpointSlices.
+Par-dessus tout, la troisième étape priorise la limitation de mises à jour d'EndpointSlice sur une distribution complètement pleine d'EndpointSlices. Par exemple, s'il y avait 10 nouveaux Endpoints à ajouter et 2 EndpointSlices qui peuvent contenir 5 Endpoints en plus chacun; cette approche créera un nouveau EndpointSlice au lieu de remplir les EndpointSlice existants. C'est à dire, une seule création EndpointSlice est préférable à plusieurs mises à jour d'EndpointSlices.
 
-Avec kube-proxy exécuté sur chaque Node et surveillant EndpointSlices, chaque changement d'un EndpointSlice devient relativement coûteux puisqu'ils seront transmis à chaque Node du cluster. 
+Avec kube-proxy exécuté sur chaque Node et surveillant EndpointSlices, chaque changement d'un EndpointSlice devient relativement coûteux puisqu'ils seront transmis à chaque Node du cluster.
 Cette approche vise à limiter le nombre de modifications qui doivent être envoyées à chaque Node, même si ça peut causer plusieurs EndpointSlices non remplis.
 
 En pratique, cette distribution bien peu idéale devrait être rare. La plupart des changements traités par le contrôleur EndpointSlice seront suffisamment petits pour tenir dans un EndpointSlice existant, et sinon, un nouveau EndpointSlice aurait probablement été bientôt nécessaire de toute façon. Les mises à jour continues des déploiements fournissent également une compaction naturelle des EndpointSlices avec tous leurs pods et les Endpoints correspondants qui se feront remplacer.
 
 ## Motivation
 
-L'API des Endpoints fournit une méthode simple et facile à suivre pour les Endpoints dans Kubernetes. 
-Malheureusement, comme les clusters Kubernetes et Services sont devenus plus grands, les limitations de cette API sont devenues plus visibles. 
-Plus particulièrement, celles-ci comprennent des limitations liées au dimensionnement vers un plus grand nombre d'Endpoints d'un réseau.
+L'API des Endpoints fournit une méthode simple et facile à suivre pour les Endpoints dans Kubernetes. Malheureusement, comme les clusters Kubernetes et Services sont devenus plus grands, les limitations de cette API sont devenues plus visibles. Plus particulièrement, celles-ci comprennent des limitations liées au dimensionnement vers un plus grand nombre d'Endpoints d'un réseau.
 
-Puisque tous les Endpoints d'un réseau pour un Service ont été stockés dans une seule ressource Endpoints, ces ressources pourraient devenir assez lourdes. 
-Cela affecte les performances des composants Kubernetes (notamment le plan de contrôle) et cause une grande quantité de trafic réseau et de traitements lorsque les Endpoints changent. 
-Les EndpointSlices aident à atténuer ces problèmes ainsi qu'à fournir une plate-forme extensible pour des fonctionnalités supplémentaires telles que le routage topologique. 
+Puisque tous les Endpoints d'un réseau pour un Service ont été stockés dans une seule ressource Endpoints, ces ressources pourraient devenir assez lourdes. Cela affecte les performances des composants Kubernetes (notamment le plan de contrôle) et cause une grande quantité de trafic réseau et de traitements lorsque les Endpoints changent. Les EndpointSlices aident à atténuer ces problèmes ainsi qu'à fournir une plate-forme extensible pour des fonctionnalités supplémentaires telles que le routage topologique.
 
 
 
diff --git a/content/fr/docs/concepts/services-networking/ingress.md b/content/fr/docs/concepts/services-networking/ingress.md
index 5a611a6ad7..d8b489aa51 100644
--- a/content/fr/docs/concepts/services-networking/ingress.md
+++ b/content/fr/docs/concepts/services-networking/ingress.md
@@ -91,13 +91,13 @@ spec:
               number: 80
 ```
 
-Comme pour toutes les autres ressources Kubernetes, un Ingress (une entrée) a besoin des champs `apiVersion`,` kind` et `metadata`.
+Comme pour toutes les autres ressources Kubernetes, un Ingress (une entrée) a besoin des champs `apiVersion`, `kind` et `metadata`.
  Pour des informations générales sur l'utilisation des fichiers de configuration, voir [déployer des applications](/docs/tasks/run-application/run-stateless-application-deployment/), [configurer des conteneurs](/docs/tasks/configure-pod-container/configure-pod-configmap/), [gestion des ressources](/docs/concepts/cluster-administration/manage-deployment/).
  Ingress utilise fréquemment des annotations pour configurer certaines options en fonction du contrôleur Ingress, dont un exemple
  est l'annotation [rewrite-target](https://github.com/kubernetes/ingress-nginx/blob/master/docs/examples/rewrite/README.md).
  Différents [Ingress controller](/docs/concepts/services-networking/ingress-controllers) prennent en charge différentes annotations. Consultez la documentation du contrôleur Ingress de votre choix pour savoir quelles annotations sont prises en charge.
 
-La [spécification de la ressource Ingress](https://git.k8s.io/community/contributors/devel/api-conventions.md#spec-and-status) dispose de toutes les informations nécessaires pour configurer un loadbalancer ou un serveur proxy. Plus important encore, il
+La [spécification de la ressource Ingress](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#spec-and-status) dispose de toutes les informations nécessaires pour configurer un loadbalancer ou un serveur proxy. Plus important encore, il
 contient une liste de règles d'appariement de toutes les demandes entrantes. La ressource Ingress ne supporte que les règles pour diriger le trafic HTTP.
 
 
@@ -223,7 +223,7 @@ Events:
   Normal   ADD     22s                loadbalancer-controller  default/test
 ```
 
-Le contrôleur d’Ingress fournit une implémentation spécifique aux load-balancers qui satisfait l'Ingress, tant que les services (`s1`,` s2`) existent.
+Le contrôleur d’Ingress fournit une implémentation spécifique aux load-balancers qui satisfait l'Ingress, tant que les services (`s1`, `s2`) existent.
 Lorsque cela est fait, vous pouvez voir l’adresse du load-balancer sur le champ d'adresse.
 
 {{< note >}}
@@ -272,7 +272,7 @@ spec:
               number: 80
 ```
 
-Si vous créez une ressource Ingress sans aucun hôte défini dans les règles, tout trafic Web à destination de l'adresse IP de votre contrôleur d'Ingress peut être mis en correspondance sans qu'un hôte virtuel basé sur le nom ne soit requis. Par exemple, la ressource Ingress suivante acheminera le trafic demandé pour `first.bar.com` au `service1` `second.foo.com` au `service2`, et à tout trafic à l'adresse IP sans nom d'hôte défini dans la demande (c'est-à-dire sans en-tête de requête présenté) au `service3`.
+Si vous créez une ressource Ingress sans aucun hôte défini dans les règles, tout trafic Web à destination de l'adresse IP de votre contrôleur d'Ingress peut être mis en correspondance sans qu'un hôte virtuel basé sur le nom ne soit requis. Par exemple, la ressource Ingress suivante acheminera le trafic demandé pour `first.bar.com` au `service1`, `second.foo.com` au `service2`, et à tout trafic à l'adresse IP sans nom d'hôte défini dans la demande (c'est-à-dire sans en-tête de requête présenté) au `service3`.
 
 ```yaml
 apiVersion: networking.k8s.io/v1
diff --git a/content/fr/docs/concepts/services-networking/service.md b/content/fr/docs/concepts/services-networking/service.md
index 3360c48428..d8587068fc 100644
--- a/content/fr/docs/concepts/services-networking/service.md
+++ b/content/fr/docs/concepts/services-networking/service.md
@@ -209,7 +209,7 @@ Cela signifie que vous évitez d'envoyer du trafic via kube-proxy vers un pod co
 
 {{< feature-state for_k8s_version="v1.11" state="stable" >}}
 
-En mode `ipvs`, kube-proxy surveille les Services et Endpoints Kubernetes. kube-proxy appelle l'interface` netlink` pour créer les règles IPVS en conséquence et synchronise périodiquement les règles IPVS avec les Services et Endpoints Kubernetes.
+En mode `ipvs`, kube-proxy surveille les Services et Endpoints Kubernetes. kube-proxy appelle l'interface `netlink` pour créer les règles IPVS en conséquence et synchronise périodiquement les règles IPVS avec les Services et Endpoints Kubernetes.
 Cette boucle de contrôle garantit que l'état IPVS correspond à l'état souhaité.
 Lors de l'accès à un service, IPVS dirige le trafic vers l'un des pods backend.
 
@@ -289,7 +289,7 @@ Kubernetes prend en charge 2 modes principaux de recherche d'un service: les var
 ### Variables d'environnement
 
 Lorsqu'un pod est exécuté sur un nœud, le kubelet ajoute un ensemble de variables d'environnement pour chaque service actif.
-Il prend en charge à la fois les variables [Docker links](https://docs.docker.com/userguide/dockerlinks/) (voir [makeLinkVariables](http://releases.k8s.io/{{< param "githubbranch" >}}/pkg/kubelet/envvars/envvars.go#L49)) et plus simplement les variables `{SVCNAME}_SERVICE_HOST` et `{SVCNAME}_SERVICE_PORT`, où le nom du service est en majuscules et les tirets sont convertis en underscore.
+Il prend en charge à la fois les variables [Docker links](https://docs.docker.com/userguide/dockerlinks/) (voir [makeLinkVariables](http://releases.k8s.io/master/pkg/kubelet/envvars/envvars.go#L49)) et plus simplement les variables `{SVCNAME}_SERVICE_HOST` et `{SVCNAME}_SERVICE_PORT`, où le nom du service est en majuscules et les tirets sont convertis en underscore.
 
 Par exemple, le service `redis-master` qui expose le port TCP 6379 et a reçu l'adresse IP de cluster 10.0.0.11, produit les variables d'environnement suivantes:
 
@@ -363,12 +363,12 @@ Les valeurs de `Type` et leurs comportements sont:
    * `ClusterIP`: Expose le service sur une IP interne au cluster.
      Le choix de cette valeur rend le service uniquement accessible à partir du cluster.
      Il s'agit du `ServiceType` par défaut.
-   * [`NodePort`](#nodeport): Expose le service sur l'IP de chaque nœud sur un port statique (le `NodePort`).
-     Un service `ClusterIP`, vers lequel le service` NodePort` est automatiquement créé.
+   * [`NodePort`](#type-nodeport): Expose le service sur l'IP de chaque nœud sur un port statique (le `NodePort`).
+     Un service `ClusterIP`, vers lequel le service `NodePort` est automatiquement créé.
      Vous pourrez contacter le service `NodePort`, depuis l'extérieur du cluster, en demandant `<NodeIP>: <NodePort>`.
    * [`LoadBalancer`](#loadbalancer): Expose le service en externe à l'aide de l'équilibreur de charge d'un fournisseur de cloud.
      Les services `NodePort` et `ClusterIP`, vers lesquels les itinéraires de l'équilibreur de charge externe, sont automatiquement créés.
-   * [`ExternalName`](#externalname): Mappe le service au contenu du champ `externalName` (par exemple` foo.bar.example.com`), en renvoyant un enregistrement `CNAME` avec sa valeur.
+   * [`ExternalName`](#externalname): Mappe le service au contenu du champ `externalName` (par exemple `foo.bar.example.com`), en renvoyant un enregistrement `CNAME` avec sa valeur.
      Aucun proxy d'aucune sorte n'est mis en place.
      {{< note >}}
      Vous avez besoin de CoreDNS version 1.7 ou supérieure pour utiliser le type `ExternalName`.
@@ -378,7 +378,7 @@ Vous pouvez également utiliser [Ingress](/fr/docs/concepts/services-networking/
 Ingress n'est pas un type de service, mais il sert de point d'entrée pour votre cluster.
 Il vous permet de consolider vos règles de routage en une seule ressource car il peut exposer plusieurs services sous la même adresse IP.
 
-### Type NodePort {#nodeport}
+### Type NodePort {#type-nodeport}
 
 Si vous définissez le champ `type` sur` NodePort`, le plan de contrôle Kubernetes alloue un port à partir d'une plage spécifiée par l'indicateur `--service-node-port-range` (par défaut: 30000-32767).
 Chaque nœud assure le proxy de ce port (le même numéro de port sur chaque nœud) vers votre service.
diff --git a/content/fr/docs/concepts/storage/volumes.md b/content/fr/docs/concepts/storage/volumes.md
index 9fc229b5f2..596bb84644 100644
--- a/content/fr/docs/concepts/storage/volumes.md
+++ b/content/fr/docs/concepts/storage/volumes.md
@@ -137,7 +137,7 @@ Afin d'utiliser cette fonctionnalité, le [Pilote AWS EBS CSI](https://github.co
 
 Un type de volume `azureDisk` est utilisé pour monter un disque de données ([Data Disk](https://azure.microsoft.com/en-us/documentation/articles/virtual-machines-linux-about-disks-vhds/)) dans un Pod.
 
-Plus de détails sont disponibles [ici](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/azure_disk/README.md).
+Plus de détails sont disponibles [ici](https://github.com/kubernetes/examples/tree/master/staging/volumes/azure_disk/README.md).
 
 #### Migration CSI
 
@@ -150,7 +150,7 @@ Afin d'utiliser cette fonctionnalité, le [Pilote Azure Disk CSI](https://github
 
 Un type de volume `azureFile` est utilisé pour monter un volume de fichier Microsoft Azure (SMB 2.1 et 3.0) dans un Pod.
 
-Plus de détails sont disponibles [ici](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/azure_file/README.md).
+Plus de détails sont disponibles [ici](https://github.com/kubernetes/examples/tree/master/staging/volumes/azure_file/README.md).
 
 #### Migration CSI
 
@@ -170,7 +170,7 @@ CephFS peut être monté plusieurs fois en écriture simultanément.
 Vous devez exécuter votre propre serveur Ceph avec le partage exporté avant de pouvoir l'utiliser.
 {{< /caution >}}
 
-Voir [l'exemple CephFS](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/volumes/cephfs/) pour plus de détails.
+Voir [l'exemple CephFS](https://github.com/kubernetes/examples/tree/master/volumes/cephfs/) pour plus de détails.
 
 ### cinder {#cinder}
 
@@ -315,7 +315,7 @@ Si plusieurs WWNs sont spécifiés, targetWWNs s'attend à ce que ces WWNs provi
 Vous devez configurer un zonage FC SAN pour allouer et masquer au préalable ces LUNs (volumes) aux cibles WWNs afin que les hôtes Kubernetes puissent y accéder.
 {{< /caution >}}
 
-Voir [l'exemple FC](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/fibre_channel) pour plus de détails.
+Voir [l'exemple FC](https://github.com/kubernetes/examples/tree/master/staging/volumes/fibre_channel) pour plus de détails.
 
 ### flocker {#flocker}
 
@@ -330,7 +330,7 @@ Cela signifie que les données peuvent être transmises entre les Pods selon les
 Vous devez exécuter votre propre installation de Flocker avant de pouvoir l'utiliser.
 {{< /caution >}}
 
-Voir [l'exemple Flocker](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/flocker) pour plus de détails.
+Voir [l'exemple Flocker](https://github.com/kubernetes/examples/tree/master/staging/volumes/flocker) pour plus de détails.
 
 ### gcePersistentDisk {#gcepersistentdisk}
 
@@ -465,7 +465,7 @@ GlusterFS peut être monté plusieurs fois en écriture simultanément.
 Vous devez exécuter votre propre installation de GlusterFS avant de pouvoir l'utiliser.
 {{< /caution >}}
 
-Voir [l'exemple GlusterFS](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/volumes/glusterfs) pour plus de détails.
+Voir [l'exemple GlusterFS](https://github.com/kubernetes/examples/tree/master/volumes/glusterfs) pour plus de détails.
 
 ### hostPath {#hostpath}
 
@@ -537,7 +537,7 @@ Une fonctionnalité de iSCSI est qu'il peut être monté en lecture seule par pl
 Cela signifie que vous pouvez préremplir un volume avec votre jeu de données et l'exposer en parallèle à partir d'autant de Pods que nécessaire.
 Malheureusement, les volumes iSCSI peuvent seulement être montés par un seul consommateur en mode lecture-écriture - les écritures simultanées ne sont pas autorisées.
 
-Voir [l'exemple iSCSI](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/volumes/iscsi) pour plus de détails.
+Voir [l'exemple iSCSI](https://github.com/kubernetes/examples/tree/master/volumes/iscsi) pour plus de détails.
 
 ### local {#local}
 
@@ -605,7 +605,7 @@ Cela signifie qu'un volume NFS peut être prérempli avec des données et que le
 Vous devez exécuter votre propre serveur NFS avec le partage exporté avant de pouvoir l'utiliser.
 {{< /caution >}}
 
-Voir [l'exemple NFS](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/nfs) pour plus de détails.
+Voir [l'exemple NFS](https://github.com/kubernetes/examples/tree/master/staging/volumes/nfs) pour plus de détails.
 
 ### persistentVolumeClaim {#persistentvolumeclaim}
 
@@ -624,7 +624,7 @@ Actuellement, les types de sources de volume suivantes peuvent être projetés :
 - [`configMap`](#configmap)
 - `serviceAccountToken`
 
-Toutes les sources doivent se trouver dans le même namespace que celui du Pod. Pour plus de détails, voir le [document de conception tout-en-un ](https://github.com/kubernetes/community/blob/{{< param "githubbranch" >}}/contributors/design-proposals/node/all-in-one-volume.md).
+Toutes les sources doivent se trouver dans le même namespace que celui du Pod. Pour plus de détails, voir le [document de conception tout-en-un ](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/node/all-in-one-volume.md).
 
 La projection des jetons de compte de service (service account) est une fonctionnalité introduite dans Kubernetes 1.11 et promue en Beta dans la version 1.12.
 Pour activer cette fonctionnalité dans la version 1.11, il faut configurer explicitement la ["feature gate" `TokenRequestProjection`](/docs/reference/command-line-tools-reference/feature-gates/) à "True".
@@ -776,7 +776,7 @@ spec:
 Il faut s'assurer d'avoir un PortworxVolume existant avec le nom `pxvol` avant de l'utiliser dans le Pod.
 {{< /caution >}}
 
-Plus de détails et d'exemples peuvent être trouvé [ici](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/portworx/README.md).
+Plus de détails et d'exemples peuvent être trouvé [ici](https://github.com/kubernetes/examples/tree/master/staging/volumes/portworx/README.md).
 
 ### quobyte {#quobyte}
 
@@ -804,7 +804,7 @@ Une fonctionnalité de RBD est qu'il peut être monté en lecture seule par plus
 Cela signifie que vous pouvez préremplir un volume avec votre jeu de données et l'exposer en parallèle à partir d'autant de Pods que nécessaire.
 Malheureusement, les volumes RBD peuvent seulement être montés par un seul consommateur en mode lecture-écriture - les écritures simultanées ne sont pas autorisées.
 
-Voir [l'exemple RBD](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/volumes/rbd) pour plus de détails.
+Voir [l'exemple RBD](https://github.com/kubernetes/examples/tree/master/volumes/rbd) pour plus de détails.
 
 ### scaleIO {#scaleio}
 
@@ -842,7 +842,7 @@ spec:
       fsType: xfs
 ```
 
-Pour plus de détails, consulter [les exemples ScaleIO](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/scaleio).
+Pour plus de détails, consulter [les exemples ScaleIO](https://github.com/kubernetes/examples/tree/master/staging/volumes/scaleio).
 
 ### secret {#secret}
 
diff --git a/content/fr/docs/concepts/workloads/controllers/statefulset.md b/content/fr/docs/concepts/workloads/controllers/statefulset.md
index f223a8432f..14221ba82a 100644
--- a/content/fr/docs/concepts/workloads/controllers/statefulset.md
+++ b/content/fr/docs/concepts/workloads/controllers/statefulset.md
@@ -32,7 +32,7 @@ Un [Deployment](/fr/docs/concepts/workloads/controllers/deployment/) ou
 
 ## Limitations
 
-* Le stockage pour un Pod donné doit être provisionné soit par un [approvisionneur de PersistentVolume](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/persistent-volume-provisioning/README.md) basé sur un `storage class` donné, soit pré-provisionné par un admin.
+* Le stockage pour un Pod donné doit être provisionné soit par un [approvisionneur de PersistentVolume](https://github.com/kubernetes/examples/tree/master/staging/persistent-volume-provisioning/README.md) basé sur un `storage class` donné, soit pré-provisionné par un admin.
 * Supprimer et/ou réduire l'échelle d'un StatefulSet à zéro ne supprimera *pas* les volumes associés avec le StatefulSet. Ceci est fait pour garantir la sécurité des données, ce qui a généralement plus de valeur qu'une purge automatique de toutes les ressources relatives à un StatefulSet.
 * Les StatefulSets nécessitent actuellement un [Service Headless](/fr/docs/concepts/services-networking/service/#headless-services) qui est responsable de l'identité réseau des Pods. Vous êtes responsable de la création de ce Service.
 * Les StatefulSets ne fournissent aucune garantie de la terminaison des pods lorsqu'un StatefulSet est supprimé. Pour avoir une terminaison ordonnée et maîtrisée des pods du StatefulSet, il est possible de réduire l'échelle du StatefulSet à 0 avant de le supprimer.
diff --git a/content/fr/docs/concepts/workloads/pods/init-containers.md b/content/fr/docs/concepts/workloads/pods/init-containers.md
index fb4b6f3270..2af4306b0b 100644
--- a/content/fr/docs/concepts/workloads/pods/init-containers.md
+++ b/content/fr/docs/concepts/workloads/pods/init-containers.md
@@ -325,6 +325,6 @@ redémarrage du conteneur d'application.
 
 
 * Lire à propos de la [création d'un Pod ayant un init container](/docs/tasks/configure-pod-container/configure-pod-initialization/#creating-a-pod-that-has-an-init-container)
-* Apprendre à [debugger les init containers](/docs/tasks/debug-application-cluster/debug-init-containers/)
+* Apprendre à [debugger les init containers](/docs/tasks/debug/debug-application/debug-init-containers/)
 
 
diff --git a/content/fr/docs/concepts/workloads/pods/pod-topology-spread-constraints.md b/content/fr/docs/concepts/workloads/pods/pod-topology-spread-constraints.md
index d1cd1f41e1..bd11052a9d 100644
--- a/content/fr/docs/concepts/workloads/pods/pod-topology-spread-constraints.md
+++ b/content/fr/docs/concepts/workloads/pods/pod-topology-spread-constraints.md
@@ -205,6 +205,7 @@ apiVersion: kubescheduler.config.k8s.io/v1alpha2
 kind: KubeSchedulerConfiguration
 
 profiles:
+  - schedulerName: default-scheduler
   - pluginConfig:
       - name: PodTopologySpread
         args:
diff --git a/content/fr/docs/contribute/generate-ref-docs/kubernetes-api.md b/content/fr/docs/contribute/generate-ref-docs/kubernetes-api.md
index cdb91bb27a..b039d19c8b 100644
--- a/content/fr/docs/contribute/generate-ref-docs/kubernetes-api.md
+++ b/content/fr/docs/contribute/generate-ref-docs/kubernetes-api.md
@@ -122,7 +122,7 @@ On branch master
 
 ### Valider votre fichier édité
 
-Exécutez `git add` et ` git commit` pour valider les modifications que vous avez apportées jusqu'à présent.
+Exécutez `git add` et `git commit` pour valider les modifications que vous avez apportées jusqu'à présent.
 Dans l'étape suivante, vous ferez un deuxième commit.
 Il est important de séparer vos modifications en deux commits.
 
@@ -152,7 +152,7 @@ Voir le contenu de `api/openapi-spec/swagger.json` pour vous assurer que la faut
 Par exemple, vous pouvez exécuter `git diff -a api/openapi-spec/swagger.json`.
 Ceci est important, car `swagger.json` sera l’entrée de la seconde étape du processus de génération de doc.
 
-Exécutez `git add` et ` git commit` pour valider vos modifications.
+Exécutez `git add` et `git commit` pour valider vos modifications.
 Vous avez maintenant deux validations: une avec le fichier `types.go` édité et une avec les spécifications OpenAPI générées et les fichiers associés.
 Gardez ces deux commits séparés.
 C'est-à-dire, ne faites pas un squash de vos commits.
diff --git a/content/fr/docs/contribute/localization.md b/content/fr/docs/contribute/localization.md
index 91667afdd2..332aeb4ea4 100644
--- a/content/fr/docs/contribute/localization.md
+++ b/content/fr/docs/contribute/localization.md
@@ -147,7 +147,7 @@ La dernière version est **{{< latest-version >}}**, donc la branche de la relea
 
 ### Chaînes de sites en i18n/
 
-Les localisations doivent inclure le contenu des éléments suivants [`i18n/en.toml`](https://github.com/kubernetes/website/blob/master/i18n/en.toml) dans un nouveau fichier spécifique à la langue.
+Les localisations doivent inclure le contenu des éléments suivants [`i18n/en.toml`](https://github.com/kubernetes/website/blob/main/i18n/en.toml) dans un nouveau fichier spécifique à la langue.
 Prenons l'allemand comme exemple : `i18n/de.toml`.
 
 Ajouter un nouveau fichier de localisation dans `i18n/`. Par exemple, avec l'allemand (de) :
@@ -230,5 +230,3 @@ Une fois qu'une traduction répond aux exigences de logistique et à une couvert
 
 - Activer la sélection de la langue sur le site Web
 - Publier la disponibilité de la traduction via les canaux de la [Cloud Native Computing Foundation](https://www.cncf.io/), y compris sur le blog de [Kubernetes](https://kubernetes.io/blog/).
-
-
diff --git a/content/fr/docs/contribute/participating.md b/content/fr/docs/contribute/participating.md
index 0658be231f..4fe2583859 100644
--- a/content/fr/docs/contribute/participating.md
+++ b/content/fr/docs/contribute/participating.md
@@ -102,7 +102,7 @@ Pour en savoir plus sur comment devenir un relecteur SIG Docs et sur les respons
 Lorsque vous remplissez les [conditions requises](https://github.com/kubernetes/community/blob/master/community-membership.md#reviewer), vous pouvez devenir un relecteur SIG Docs.
 Les relecteurs d'autres SIG doivent demander séparément le statut de relecteur dans le SIG Docs.
 
-Pour postuler, ouvrez une pull request et ajoutez vous à la section `reviewers` du fichier [top-level OWNERS](https://github.com/kubernetes/website/blob/master/OWNERS) dans le dépôt `kubernetes/website`.
+Pour postuler, ouvrez une pull request et ajoutez vous à la section `reviewers` du fichier [top-level OWNERS](https://github.com/kubernetes/website/blob/main/OWNERS) dans le dépôt `kubernetes/website`.
 Affectez la PR à un ou plusieurs approbateurs SIG Docs.
 
 Si votre pull request est approuvée, vous êtes maintenant un relecteur SIG Docs.
@@ -130,7 +130,7 @@ Pour en savoir plus sur comment devenir un approbateur SIG Docs et sur les respo
 Lorsque vous remplissez les [conditions requises](https://github.com/kubernetes/community/blob/master/community-membership.md#approver), vous pouvez devenir un approbateur SIG Docs.
 Les approbateurs appartenant à d'autres SIG doivent demander séparément le statut d'approbateur dans SIG Docs.
 
-Pour postuler, ouvrez une pull request pour vous ajouter à la section `approvers` du fichier [top-level OWNERS](https://github.com/kubernetes/website/blob/master/OWNERS) dans le dépot `kubernetes/website`.
+Pour postuler, ouvrez une pull request pour vous ajouter à la section `approvers` du fichier [top-level OWNERS](https://github.com/kubernetes/website/blob/main/OWNERS) dans le dépot `kubernetes/website`.
 Affectez la PR à un ou plusieurs approbateurs SIG Docs.
 
 Si votre Pull Request est approuvée, vous êtes à présent approbateur SIG Docs.
@@ -184,9 +184,9 @@ Le [dépôt du site web Kubernetes](https://github.com/kubernetes/website) utili
 - blunderbuss
 - approve
 
-Ces deux plugins utilisent les fichiers [OWNERS](https://github.com/kubernetes/website/blob/master/OWNERS) et [OWNERS_ALIASES](https://github.com/kubernetes/website/blob/master/OWNERS_ALIASES) à la racine du dépôt Github `kubernetes/website` pour contrôler comment prow fonctionne.
+Ces deux plugins utilisent les fichiers [OWNERS](https://github.com/kubernetes/website/blob/main/OWNERS) et [OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS_ALIASES) à la racine du dépôt Github `kubernetes/website` pour contrôler comment prow fonctionne.
 
-Un fichier [OWNERS](https://github.com/kubernetes/website/blob/master/OWNERS) contient une liste de personnes qui sont des relecteurs et des approbateurs SIG Docs.
+Un fichier [OWNERS](https://github.com/kubernetes/website/blob/main/OWNERS) contient une liste de personnes qui sont des relecteurs et des approbateurs SIG Docs.
 Les fichiers OWNERS existent aussi dans les sous-dossiers, et peuvent ignorer qui peut agir en tant que relecteur ou approbateur des fichiers de ce sous-répertoire et de ses descendants.
 Pour plus d'informations sur les fichiers OWNERS en général, voir [OWNERS](https://github.com/kubernetes/community/blob/master/contributors/guide/owners.md).
 
@@ -203,5 +203,3 @@ Pour plus d'informations sur la contribution à la documentation Kubernetes, voi
 
 - [Commencez à contribuer](/docs/contribute/start/)
 - [Documentation style](/docs/contribute/style/)
-
-
diff --git a/content/fr/docs/reference/kubectl/cheatsheet.md b/content/fr/docs/reference/kubectl/cheatsheet.md
index a50eb8f320..e1d86f7dac 100644
--- a/content/fr/docs/reference/kubectl/cheatsheet.md
+++ b/content/fr/docs/reference/kubectl/cheatsheet.md
@@ -36,7 +36,7 @@ Vous pouvez de plus déclarer un alias pour `kubectl` qui fonctionne aussi avec
 
 ```bash
 alias k=kubectl
-complete -F __start_kubectl k
+complete -o default -F __start_kubectl k
 ```
 
 ### ZSH
diff --git a/content/fr/docs/setup/custom-cloud/kops.md b/content/fr/docs/setup/custom-cloud/kops.md
index 297ce01b73..fa2f5acfbe 100644
--- a/content/fr/docs/setup/custom-cloud/kops.md
+++ b/content/fr/docs/setup/custom-cloud/kops.md
@@ -132,7 +132,7 @@ mais aussi `dev.example.com` ou même `example.com`. kops fonctionne avec n'impo
 Supposons que vous utilisiez `dev.example.com` comme zone hébergée. Vous créeriez cette zone hébergée en utilisant la [méthode normal](http://docs.aws.amazon.com/Route53/latest/DeveloperGuide/CreatingNewSubdomain.html), ou avec une ligne de commande telle que `aws route53 create-hosted-zone --name dev.example.com --caller-reference 1`.
 
 Vous devrez ensuite configurer vos enregistrements NS dans le domaine parent afin que vous puissiez résoudre dans ce domaine.
-Vous créeriez donc des enregistrements NS dans le domaine `example.com` pour` dev`.
+Vous créeriez donc des enregistrements NS dans le domaine `example.com` pour `dev`.
 S'il s'agit d'un nom de domaine racine, vous devrez configurer les enregistrements NS chez votre hébergeur de nom de domaine (là où vous avez acheté votre nom de domaine `example.com`).
 
 Cette étape est délicate, soyez vigilants (c’est la première cause de problèmes !). Vous pouvez vérifier que
@@ -195,7 +195,7 @@ Il applique les modifications que vous avez apportées à la configuration sur v
 
 Par exemple, après un `kops edit ig nodes`, puis un `kops update cluster --yes` pour appliquer votre configuration, parfois, vous devrez également exécuter un `kops rolling-update cluster` pour déployer la configuration immédiatement.
 
-Sans l'argument `--yes`,` kops update cluster` vous montrera un aperçu de ce qu’il va faire. C'est pratique
+Sans l'argument `--yes`, `kops update cluster` vous montrera un aperçu de ce qu’il va faire. C'est pratique
 pour les clusters de production !
 
 ### Explorer d'autres composants additionnels (add-ons)
diff --git a/content/fr/docs/setup/custom-cloud/kubespray.md b/content/fr/docs/setup/custom-cloud/kubespray.md
index cde3cbb3f9..4a9709818d 100644
--- a/content/fr/docs/setup/custom-cloud/kubespray.md
+++ b/content/fr/docs/setup/custom-cloud/kubespray.md
@@ -15,8 +15,8 @@ Kubespray se base sur des outils de provisioning, des [paramètres](https://gith
 * Le support des principales distributions Linux:
   * Container Linux de CoreOS
   * Debian Jessie, Stretch, Wheezy
-  * Ubuntu 16.04, 18.04
-  * CentOS/RHEL 7
+  * Ubuntu 16.04, 18.04, 20.04, 22.04
+  * CentOS/RHEL 7, 8
   * Fedora/CentOS Atomic
   * openSUSE Leap 42.3/Tumbleweed
 * des tests d'intégration continue
@@ -33,8 +33,8 @@ Afin de choisir l'outil le mieux adapté à votre besoin, veuillez lire [cette c
 
 Les serveurs doivent être installés en s'assurant des éléments suivants:
 
-* **Ansible v2.6 (ou version plus récente) et python-netaddr installés sur la machine qui exécutera les commandes Ansible**
-* **Jinja 2.9 (ou version plus récente) est nécessaire pour exécuter les playbooks Ansible**
+* **Ansible v2.11 (ou version plus récente) et python-netaddr installés sur la machine qui exécutera les commandes Ansible**
+* **Jinja 2.11 (ou version plus récente) est nécessaire pour exécuter les playbooks Ansible**
 * Les serveurs cibles doivent avoir **accès à Internet** afin de télécharger les images Docker. Autrement, une configuration supplémentaire est nécessaire, (se référer à [Offline Environment](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/downloads.md#offline-environment))
 * Les serveurs cibles doivent être configurés afin d'autoriser le transfert IPv4 (**IPv4 forwarding**)
 * **Votre clé ssh doit être copiée** sur tous les serveurs faisant partie de votre inventaire Ansible.
diff --git a/content/fr/docs/setup/learning-environment/minikube.md b/content/fr/docs/setup/learning-environment/minikube.md
index 2ab0b3ae5a..94bd0744f5 100644
--- a/content/fr/docs/setup/learning-environment/minikube.md
+++ b/content/fr/docs/setup/learning-environment/minikube.md
@@ -527,5 +527,5 @@ Pour plus d'informations sur Minikube, voir la [proposition](https://git.k8s.io/
 
 Les contributions, questions et commentaires sont les bienvenus et sont encouragés !
 Les développeurs de minikube sont dans le canal #minikube du [Slack](https://kubernetes.slack.com) de Kubernetes (recevoir une invitation [ici](http://slack.kubernetes.io/)).
-Nous avons également la liste de diffusion [kubernetes-dev Google Groupes](https://groups.google.com/forum/#!forum/kubernetes-dev).
+Nous avons également la liste de diffusion [dev@kubernetes Google Groupes](https://groups.google.com/a/kubernetes.io/g/dev/).
 Si vous publiez sur la liste, veuillez préfixer votre sujet avec "minikube:".
diff --git a/content/fr/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm.md b/content/fr/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm.md
index f25ac905be..9983bde03c 100644
--- a/content/fr/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm.md
+++ b/content/fr/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm.md
@@ -243,7 +243,7 @@ Alternativement, si vous êtes `root`, vous pouvez exécuter:
 export KUBECONFIG=/etc/kubernetes/admin.conf
 ```
 
-Faites un enregistrement du retour de la commande `kubeadm join` que` kubeadm init` génère. Vous avez
+Faites un enregistrement du retour de la commande `kubeadm join` que `kubeadm init` génère. Vous avez
 besoin de cette commande pour [joindre des noeuds à votre cluster](#join-nodes).
 
 Le jeton est utilisé pour l'authentification mutuelle entre le master et les nœuds qui veulent le rejoindre.
@@ -284,7 +284,7 @@ car cela pourrait entraîner des problèmes.
 Si vous constatez une collision entre le réseau de pod de votre plug-in de réseau et certains
 de vos réseaux hôtes,
 vous devriez penser à un remplacement de CIDR approprié et l'utiliser lors de `kubeadm init` avec
-` --pod-network-cidr` et en remplacement du YAML de votre plugin réseau.
+ `--pod-network-cidr` et en remplacement du YAML de votre plugin réseau.
 Vous pouvez installer un add-on réseau de pod avec la commande suivante:
 
 ```bash
@@ -304,8 +304,8 @@ Pour plus d'informations sur l'utilisation de Calico, voir
 [Installation de Calico pour les netpols ( network policies ) et le réseau](https://docs.projectcalico.org/latest/getting-started/kubernetes/installation/calico), ainsi que d'autres resources liées à ce sujet.
 
 Pour que Calico fonctionne correctement, vous devez passer `--pod-network-cidr = 192.168.0.0 / 16`
-à` kubeadm init` ou mettre à jour le fichier `calico.yml` pour qu'il corresponde à votre réseau de Pod.
-Notez que Calico fonctionne uniquement sur `amd64`,` arm64`, `ppc64le` et` s390x`.
+à `kubeadm init` ou mettre à jour le fichier `calico.yml` pour qu'il corresponde à votre réseau de Pod.
+Notez que Calico fonctionne uniquement sur `amd64`, `arm64`, `ppc64le` et `s390x`.
 
 ```shell
 kubectl apply -f https://docs.projectcalico.org/v3.8/manifests/calico.yaml
@@ -317,7 +317,7 @@ Canal utilise Calico pour les netpols et Flannel pour la mise en réseau. Report
 documentation Calico pour obtenir le [guide de démarrage officiel](https://docs.projectcalico.org/latest/getting-started/kubernetes/installation/flannel).
 
 Pour que Canal fonctionne correctement, `--pod-network-cidr = 10.244.0.0 / 16` doit être passé à
-` kubeadm init`. Notez que Canal ne fonctionne que sur `amd64`.
+`kubeadm init`. Notez que Canal ne fonctionne que sur `amd64`.
 
 ```shell
 kubectl apply -f https://docs.projectcalico.org/v3.8/manifests/canal.yaml
@@ -353,14 +353,14 @@ cilium-drxkl   1/1     Running   0          18m
 {{% /tab %}}
 {{% tab name="Flannel" %}}
 
-Pour que `flannel` fonctionne correctement, vous devez passer` --pod-network-cidr = 10.244.0.0 / 16` à `kubeadm init`.
+Pour que `flannel` fonctionne correctement, vous devez passer `--pod-network-cidr = 10.244.0.0 / 16` à `kubeadm init`.
 Paramétrez `/proc/sys/net/bridge/bridge-nf-call-iptables` à «1» en exécutant
-` sysctl net.bridge.bridge-nf-call-iptables = 1`
+ `sysctl net.bridge.bridge-nf-call-iptables = 1`
 passez le trafic IPv4 bridged à iptables. Ceci est nécessaire pour que certains plugins CNI
 fonctionnent, pour plus d'informations
 allez voir [ici](/docs/concepts/cluster-administration/network-plugins/#network-plugin-requirements).
 
-Notez que `flannel` fonctionne sur` amd64`, `arm`,` arm64`, `ppc64le` et` s390x` sous Linux.
+Notez que `flannel` fonctionne sur `amd64`, `arm`, `arm64`, `ppc64le` et `s390x` sous Linux.
 Windows (`amd64`) est annoncé comme supporté dans la v0.11.0 mais son utilisation n’est pas
 documentée.
 
@@ -378,7 +378,7 @@ Ceci est nécessaire pour que certains plugins CNI fonctionnent, pour plus d'inf
 s'il vous plaît allez voir [ici](/docs/concepts/cluster-administration/network-plugins/#network-plugin-requirements).
 
 Kube-router s'appuie sur kube-controller-manager pour allouer le pod CIDR aux nœuds. Par conséquent,
-utilisez `kubeadm init` avec l'option` --pod-network-cidr`.
+utilisez `kubeadm init` avec l'option `--pod-network-cidr`.
 
 Kube-router fournit un réseau de pod, une stratégie réseau et un proxy de service basé sur un
 IP Virtual Server (IPVS) / Linux Virtual Server (LVS) hautement performant.
@@ -388,7 +388,7 @@ veuillez consulter le [guide d'installation](https://github.com/cloudnativelabs/
 {{% /tab %}}
 
 {{% tab name="Romana" %}}
-Paramétrez `/proc/sys/net/bridge/bridge-nf-call-iptables` à` 1` en exécutant
+Paramétrez `/proc/sys/net/bridge/bridge-nf-call-iptables` à `1` en exécutant
 `sysctl net.bridge.bridge-nf-call-iptables = 1`
 Cette commande indiquera de passer le trafic IPv4 bridged à iptables. Ceci est nécessaire pour que certains plugins CNI fonctionnent,
 pour plus d'informations
@@ -404,13 +404,13 @@ kubectl apply -f https://raw.githubusercontent.com/romana/romana/master/containe
 {{% /tab %}}
 
 {{% tab name="Weave Net" %}}
-Paramétrez `/proc/sys/net/bridge/bridge-nf-call-iptables` à «1» en exécutant` sysctl net.bridge.bridge-nf-call-iptables = 1`
+Paramétrez `/proc/sys/net/bridge/bridge-nf-call-iptables` à «1» en exécutant `sysctl net.bridge.bridge-nf-call-iptables = 1`
 Cette commande indiquera de passer le trafic IPv4 bridged à iptables. Ceci est nécessaire pour que certains plugins CNI fonctionnent, pour plus d'informations
 s'il vous plaît allez voir [ici](/docs/concepts/cluster-administration/network-plugins/#network-plugin-requirements).
 
 Le guide de configuration officiel de Weave Net est [ici](https://www.weave.works/docs/net/latest/kube-addon/).
 
-Weave Net fonctionne sur `amd64`,` arm`, `arm64` et` ppc64le` sans aucune action supplémentaire requise.
+Weave Net fonctionne sur `amd64`, `arm`, `arm64` et `ppc64le` sans aucune action supplémentaire requise.
 Weave Net paramètre le mode hairpin par défaut. Cela permet aux pods de se connecter via leur adresse IP de service
 s'ils ne connaissent pas leur Pod IP.
 
@@ -597,7 +597,7 @@ Si vous souhaitez réinitialiser les tables IPVS, vous devez exécuter la comman
 ipvsadm -C
 ```
 
-Si vous souhaitez recommencer Il suffit de lancer `kubeadm init` ou` kubeadm join` avec les
+Si vous souhaitez recommencer Il suffit de lancer `kubeadm init` ou `kubeadm join` avec les
 arguments appropriés.
 Plus d'options et d'informations sur la
 [`commande de réinitialisation de kubeadm`](/docs/reference/setup-tools/kubeadm/kubeadm-reset/).
diff --git a/content/fr/docs/setup/production-environment/tools/kubeadm/ha-topology.md b/content/fr/docs/setup/production-environment/tools/kubeadm/ha-topology.md
index fbc9d14c0c..d2e8d9fde8 100644
--- a/content/fr/docs/setup/production-environment/tools/kubeadm/ha-topology.md
+++ b/content/fr/docs/setup/production-environment/tools/kubeadm/ha-topology.md
@@ -27,7 +27,7 @@ Un cluster HA empilé est une [topologie réseau](https://fr.wikipedia.org/wiki/
 où le cluster de stockage de données distribuées est fourni par etcd et est superposé au
 cluster formé par les noeuds gérés par kubeadm qui exécute les composants du control plane.
 
-Chaque nœud du control plane exécute une instance de `kube-apiserver`,` kube-scheduler` et
+Chaque nœud du control plane exécute une instance de `kube-apiserver`, `kube-scheduler` et
 `kube-controller-manager`.
 Le `kube-apiserver` est exposé aux nœuds à l'aide d'un loadbalancer.
 
@@ -47,7 +47,7 @@ Par conséquent, vous devez exécuter au moins trois nœuds de control plane emp
 en haute disponibilité.
 
 C'est la topologie par défaut dans kubeadm. Un membre etcd local est créé automatiquement
-sur les noeuds du control plane en utilisant `kubeadm init` et` kubeadm join --experimental-control-plane`.
+sur les noeuds du control plane en utilisant `kubeadm init` et `kubeadm join --experimental-control-plane`.
 
 Schéma de la [Topologie etcd empilée](/images/kubeadm/kubeadm-ha-topology-stacked-etcd.svg)
 
@@ -59,7 +59,7 @@ distribuées fourni par etcd est externe au cluster formé par les nœuds qui ex
 du control plane.
 
 Comme la topologie etcd empilée, chaque nœud du control plane d'une topologie etcd externe exécute
-une instance de `kube-apiserver`,` kube-scheduler` et `kube-controller-manager`. Et le `kube-apiserver`
+une instance de `kube-apiserver`, `kube-scheduler` et `kube-controller-manager`. Et le `kube-apiserver`
 est exposé aux nœuds workers à l’aide d’un load-balancer. Cependant, les membres etcd s'exécutent sur
 des hôtes distincts et chaque hôte etcd communique avec le `kube-apiserver` de chaque nœud du control plane.
 
diff --git a/content/fr/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md b/content/fr/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md
index 06d5e5f286..a45ed1f7db 100644
--- a/content/fr/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md
+++ b/content/fr/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md
@@ -245,12 +245,12 @@ sudo mkdir -p $DOWNLOAD_DIR
 Installez crictl (requis pour Kubeadm / Kubelet Container Runtime Interface (CRI))
 
 ```bash
-CRICTL_VERSION="v1.17.0"
+CRICTL_VERSION="v1.22.0"
 ARCH="amd64"
 curl -L "https://github.com/kubernetes-sigs/cri-tools/releases/download/${CRICTL_VERSION}/crictl-${CRICTL_VERSION}-linux-${ARCH}.tar.gz" | sudo tar -C $DOWNLOAD_DIR -xz
 ```
 
-Installez `kubeadm`,` kubelet`, `kubectl` et ajoutez un service systemd` kubelet`:
+Installez `kubeadm`, `kubelet`, `kubectl` et ajoutez un service systemd `kubelet`:
 
 RELEASE_VERSION="v0.6.0"
 
diff --git a/content/fr/docs/setup/production-environment/tools/kubeadm/kubelet-integration.md b/content/fr/docs/setup/production-environment/tools/kubeadm/kubelet-integration.md
index 05f4839c05..9317f482f9 100644
--- a/content/fr/docs/setup/production-environment/tools/kubeadm/kubelet-integration.md
+++ b/content/fr/docs/setup/production-environment/tools/kubeadm/kubelet-integration.md
@@ -38,7 +38,7 @@ utilisant kubeadm, plutôt que de gérer manuellement la configuration des kubel
 ### Propagation de la configuration niveau cluster à chaque kubelet {#propagating-cluster-level-configuration-to-each-kubelet}
 
 Vous pouvez fournir à la kubelet les valeurs par défaut à utiliser par les commandes `kubeadm init` et
-` kubeadm join`. Des exemples intéressants incluent l’utilisation d’un runtime CRI différent ou la
+ `kubeadm join`. Des exemples intéressants incluent l’utilisation d’un runtime CRI différent ou la
  définition du sous-réseau par défaut utilisé par les services.
 
 Si vous souhaitez que vos services utilisent le sous-réseau `10.96.0.0 / 12` par défaut pour les
diff --git a/content/fr/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm.md b/content/fr/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm.md
index b13b6ff7d9..215f6b7f4f 100644
--- a/content/fr/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm.md
+++ b/content/fr/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm.md
@@ -230,8 +230,8 @@ kubeadm contient tout ce qui est nécessaire pour générer les certificats déc
 
     ```sh
     root@HOST0 $ kubeadm init phase etcd local --config=/tmp/${HOST0}/kubeadmcfg.yaml
-    root@HOST1 $ kubeadm init phase etcd local --config=/tmp/${HOST1}/kubeadmcfg.yaml
-    root@HOST2 $ kubeadm init phase etcd local --config=/tmp/${HOST2}/kubeadmcfg.yaml
+    root@HOST1 $ kubeadm init phase etcd local --config=$HOME/kubeadmcfg.yaml
+    root@HOST2 $ kubeadm init phase etcd local --config=$HOME/kubeadmcfg.yaml
     ```
 
 1. Facultatif: Vérifiez la santé du cluster
diff --git a/content/fr/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm.md b/content/fr/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm.md
index bf9b0d69cb..79ead91bb3 100644
--- a/content/fr/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm.md
+++ b/content/fr/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm.md
@@ -102,26 +102,26 @@ L'inspection des journaux de Docker peut également être utile:
 journalctl -ul docker
 ```
 
-## Pods dans l'état `RunContainerError`,` CrashLoopBackOff` ou `Error`
+## Pods dans l'état `RunContainerError`, `CrashLoopBackOff` ou `Error`
 
 Juste après `kubeadm init`, il ne devrait pas y avoir de pods dans ces états.
 
 - S'il existe des pods dans l'un de ces états _juste après_ `kubeadm init`, veuillez ouvrir un
   issue dans le dépôt de Kubeadm. `coredns` (ou` kube-dns`) devrait être dans l'état `Pending`
   jusqu'à ce que vous ayez déployé la solution réseau.
-- Si vous voyez des pods dans les états `RunContainerError`,` CrashLoopBackOff` ou `Error`
+- Si vous voyez des pods dans les états `RunContainerError`, `CrashLoopBackOff` ou `Error`
   après le déploiement de la solution réseau et que rien ne se passe pour `coredns` (ou` kube-dns`),
   il est très probable que la solution Pod Network que vous avez installée est en quelque sorte
 endommagée. Vous devrez peut-être lui accorder plus de privilèges RBAC ou utiliser une version
 plus récente. S'il vous plaît créez une issue dans le dépôt du fournisseur de réseau de Pod.
 - Si vous installez une version de Docker antérieure à 1.12.1, supprimez l'option `MountFlags = slave`
-  lors du démarrage de `dockerd` avec` systemd` et redémarrez `docker`. Vous pouvez voir les options
+  lors du démarrage de `dockerd` avec `systemd` et redémarrez `docker`. Vous pouvez voir les options
 de montage dans `/usr/lib/systemd/system/docker.service`.
   Les options de montage peuvent interférer avec les volumes montés par Kubernetes et mettre les
-  pods dans l'état`CrashLoopBackOff`. L'erreur se produit lorsque Kubernetes ne trouve pas les fichiers
+  pods dans l'état `CrashLoopBackOff`. L'erreur se produit lorsque Kubernetes ne trouve pas les fichiers
 `var/run/secrets/kubernetes.io/serviceaccount`.
 
-## `coredns` (ou` kube-dns`) est bloqué dans l'état `Pending`
+## `coredns` (ou `kube-dns`) est bloqué dans l'état `Pending`
 
 Ceci est **prévu** et fait partie du design. kubeadm est agnostique vis-à-vis du fournisseur
 de réseau, ainsi l'administrateur devrait [installer la solution réseau pod](/docs/concepts/cluster-administration/addons/)
@@ -132,7 +132,7 @@ D'où l' état `Pending` avant la mise en place du réseau.
 
 Les fonctionnalités `HostPort` et `HostIP` sont disponibles en fonction de votre fournisseur
 de réseau de pod. Veuillez contacter l’auteur de la solution de réseau de Pod pour savoir si
-Les fonctionnalités `HostPort` et` HostIP` sont disponibles.
+Les fonctionnalités `HostPort` et `HostIP` sont disponibles.
 
 Les fournisseurs de CNI Calico, Canal, et Flannel supportent HostPort.
 
@@ -151,7 +151,7 @@ Si votre fournisseur de réseau ne prend pas en charge le plug-in portmap CNI, v
 
 - Si vous utilisez VirtualBox (directement ou via Vagrant), vous devrez vous assurez que
 `hostname -i` renvoie une adresse IP routable. Par défaut la première interface est connectée
-à un réseau d’`hôte uniquement` non routable. En contournement vous pouvez modifier`/etc/hosts`,
+à un réseau d’ `hôte uniquement` non routable. En contournement vous pouvez modifier `/etc/hosts`,
  jetez un œil à ce [Vagrantfile](https://github.com/errordeveloper/k8s-playground/blob/22dd39dfc06111235620e6c4404a96ae146f26fd/Vagrantfile#L11) par exemple.
 
 ## Erreurs de certificats TLS
@@ -198,7 +198,7 @@ pour que la deuxième interface soit choisie.
 
 ## IP non publique utilisée pour les conteneurs
 
-Dans certaines situations, les commandes `kubectl logs` et` kubectl run` peuvent
+Dans certaines situations, les commandes `kubectl logs` et `kubectl run` peuvent
 renvoyer les erreurs suivantes dans un cluster par ailleurs fonctionnel:
 
 ```sh
@@ -211,9 +211,9 @@ avec d’autres adresses IP même sous-réseau, éventuellement à cause d'une p
 par le fournisseur de la machine.
 - Digital Ocean attribue une adresse IP publique à `eth0` ainsi qu’une adresse privée à
 utiliser en interne comme IP d'ancrage pour leur fonction IP flottante, mais `kubelet` choisira cette
-dernière comme` InternalIP` du noeud au lieu du public.
+dernière comme `InternalIP` du noeud au lieu du public.
 
-  Utilisez `ip addr show` pour verifier ce scénario au lieu de` ifconfig` car `ifconfig` n'affichera pas
+  Utilisez `ip addr show` pour verifier ce scénario au lieu de `ifconfig` car `ifconfig` n'affichera pas
   l'alias de l'adresse IP incriminée. Sinon, une API spécifique à Digital Ocean 
  permet de rechercher l'adresse IP d'ancrage à partir du droplet:
 
@@ -253,7 +253,7 @@ Pod de CoreDNS déployé dans Kubernetes détecte une boucle. [Un certain nombre
 sont disponibles pour éviter que Kubernetes ne tente de redémarrer le pod CoreDNS chaque fois que CoreDNS détecte une boucle et s'arrête.
 
 {{< warning >}}
-Désactiver SELinux ou paramètrer `allowPrivilegeEscalation` sur` true` peut compromettre
+Désactiver SELinux ou paramètrer `allowPrivilegeEscalation` sur `true` peut compromettre
 la sécurité de votre cluster.
 {{< /warning >}}
 
diff --git a/content/fr/docs/setup/release/building-from-source.md b/content/fr/docs/setup/release/building-from-source.md
index b8a8e46bca..81b2328a1a 100644
--- a/content/fr/docs/setup/release/building-from-source.md
+++ b/content/fr/docs/setup/release/building-from-source.md
@@ -29,6 +29,6 @@ cd kubernetes
 make release
 ```
 
-Pour plus de détails sur le processus de release, voir le repertoire [`build`](http://releases.k8s.io/{{< param "githubbranch" >}}/build/) dans kubernetes/kubernetes.
+Pour plus de détails sur le processus de release, voir le repertoire [`build`](http://releases.k8s.io/master/build/) dans kubernetes/kubernetes.
 
 
diff --git a/content/fr/docs/tasks/access-application-cluster/list-all-running-container-images.md b/content/fr/docs/tasks/access-application-cluster/list-all-running-container-images.md
index 114bcc784b..1c90abcc91 100644
--- a/content/fr/docs/tasks/access-application-cluster/list-all-running-container-images.md
+++ b/content/fr/docs/tasks/access-application-cluster/list-all-running-container-images.md
@@ -59,7 +59,7 @@ Lors de la récupération d'un seul pod par son nom, par exemple `kubectl get po
 Le formatage peut être contrôlé davantage en utilisant l'opération `range` pour parcourir les éléments individuellement.
 
 ```shell
-kubectl get pods --all-namespaces -o=jsonpath='{range .items[*]}{"\n"}{.metadata.name}{":\t"}{range .spec.containers[*]}{.image}{", "}{end}{end}' |\
+kubectl get pods --all-namespaces -o jsonpath='{range .items[*]}{"\n"}{.metadata.name}{":\t"}{range .spec.containers[*]}{.image}{", "}{end}{end}' |\
 sort
 ```
 
@@ -69,7 +69,7 @@ Pour cibler uniquement les pods correspondant à un label spécifique, utilisez
 Les éléments suivants correspondent uniquement aux pods avec les labels `app=nginx`.
 
 ```shell
-kubectl get pods --all-namespaces -o=jsonpath="{.items[*].spec.containers[*].image}" -l app=nginx
+kubectl get pods --all-namespaces -o jsonpath="{.items[*].spec.containers[*].image}" -l app=nginx
 ```
 
 ## Filtrage des images de conteneur de liste par namespace de pod
diff --git a/content/fr/docs/tasks/configure-pod-container/assign-cpu-resource.md b/content/fr/docs/tasks/configure-pod-container/assign-cpu-resource.md
index 284024b425..297cbd700e 100644
--- a/content/fr/docs/tasks/configure-pod-container/assign-cpu-resource.md
+++ b/content/fr/docs/tasks/configure-pod-container/assign-cpu-resource.md
@@ -212,7 +212,7 @@ vous pouvez utiliser efficacement les ressources CPU disponibles sur les Nœuds
 En gardant une demande faible de CPU de pod, vous donnez au Pod une bonne chance d'être ordonnancé.
 En ayant une limite CPU supérieure à la demande de CPU, vous accomplissez deux choses :
 
-* Le Pod peut avoir des pics d'activité où il utilise les ressources CPU qui se sont déjà disponible.
+* Le Pod peut avoir des pics d'activité où il utilise les ressources CPU qui sont déjà disponibles.
 * La quantité de ressources CPU qu'un Pod peut utiliser pendant une pic d'activité est limitée à une quantité raisonnable.
 
 ## Nettoyage
diff --git a/content/fr/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md b/content/fr/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md
index 5902ca926d..2aa904144f 100644
--- a/content/fr/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md
+++ b/content/fr/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md
@@ -37,7 +37,7 @@ Le champ `periodSeconds` spécifie que le Kubelet doit effectuer un check de liv
 Au démarrage, le conteneur exécute cette commande :
 
 ```shell
-/bin/sh -c "touch /tmp/healthy; sleep 30; rm -rf /tmp/healthy; sleep 600"
+/bin/sh -c "touch /tmp/healthy; sleep 30; rm -f /tmp/healthy; sleep 600"
 ```
 
 Pour les 30 premières secondes de la vie du conteneur, il y a un fichier `/tmp/healthy`.
diff --git a/content/fr/docs/tasks/configure-pod-container/configure-pod-initialization.md b/content/fr/docs/tasks/configure-pod-container/configure-pod-initialization.md
index 6d1ca96b31..eeb33a0d4b 100644
--- a/content/fr/docs/tasks/configure-pod-container/configure-pod-initialization.md
+++ b/content/fr/docs/tasks/configure-pod-container/configure-pod-initialization.md
@@ -81,7 +81,7 @@ La sortie montre que nginx sert la page web qui a été écrite par le conteneur
 [communiquer entre conteneurs fonctionnant dans le même Pod](/docs/tasks/access-application-cluster/communicate-containers-same-pod-shared-volume/).
 * Pour en savoir plus sur [Init Conteneurs](/docs/concepts/workloads/pods/init-containers/).
 * Pour en savoir plus sur [Volumes](/docs/concepts/storage/volumes/).
-* Pour en savoir plus sur [Débogage des Init Conteneurs](/docs/tasks/debug-application-cluster/debug-init-containers/)
+* Pour en savoir plus sur [Débogage des Init Conteneurs](/docs/tasks/debug/debug-application/debug-init-containers/)
 
 
 
diff --git a/content/fr/docs/tasks/configure-pod-container/translate-compose-kubernetes.md b/content/fr/docs/tasks/configure-pod-container/translate-compose-kubernetes.md
index f856847e85..0ade44801b 100644
--- a/content/fr/docs/tasks/configure-pod-container/translate-compose-kubernetes.md
+++ b/content/fr/docs/tasks/configure-pod-container/translate-compose-kubernetes.md
@@ -121,22 +121,7 @@ En quelques étapes, nous vous emmenons de Docker Compose à Kubernetes. Tous do
             kompose.service.type: LoadBalancer
       ```
 
-2.  Lancez la commande `kompose up` pour déployer directement sur Kubernetes, ou passez plutôt à l'étape suivante pour générer un fichier à utiliser avec `kubectl`.
-
-      ```bash
-      $ kompose up
-      We are going to create Kubernetes Deployments, Services and PersistentVolumeClaims for your Dockerized application.
-      If you need different kind of resources, use the 'kompose convert' and 'kubectl apply -f' commands instead.
-
-      INFO Successfully created Service: redis          
-      INFO Successfully created Service: web            
-      INFO Successfully created Deployment: redis       
-      INFO Successfully created Deployment: web         
-
-      Your application has been deployed to Kubernetes. You can run 'kubectl get deployment,svc,pods,pvc' for details.
-      ```
-
-3.  Pour convertir le fichier `docker-compose.yml` en fichiers que vous pouvez utiliser avec `kubectl`, lancez `kompose convert` et ensuite `kubectl apply -f <output file>`.
+2.  Pour convertir le fichier `docker-compose.yml` en fichiers que vous pouvez utiliser avec `kubectl`, lancez `kompose convert` et ensuite `kubectl apply -f <output file>`.
 
       ```bash
       $ kompose convert                           
@@ -160,7 +145,7 @@ En quelques étapes, nous vous emmenons de Docker Compose à Kubernetes. Tous do
 
       Vos déploiements fonctionnent sur Kubernetes.
 
-4.  Accédez à votre application.
+3.  Accédez à votre application.
 
       Si vous utilisez déjà `minikube` pour votre processus de développement :
 
@@ -201,10 +186,7 @@ En quelques étapes, nous vous emmenons de Docker Compose à Kubernetes. Tous do
 
 - CLI
   - [`kompose convert`](#kompose-convert)
-  - [`kompose up`](#kompose-up)
-  - [`kompose down`](#kompose-down)
 - Documentation
-  - [Construire et pousser des images de docker](#build-and-push-docker-images)
   - [Conversions alternatives](#alternative-conversions)
   - [Etiquettes](#labels)
   - [Redémarrage](#restart)
@@ -301,152 +283,6 @@ INFO OpenShift file "foo-buildconfig.yaml" created
 Si vous poussez manuellement les artefacts OpenShift en utilisant ``oc create -f``, vous devez vous assurer que vous poussez l'artefact imagestream avant l'artefact buildconfig, pour contourner ce problème OpenShift : https://github.com/openshift/origin/issues/4518 .
 {{< /note >}}
 
-## `kompose up`
-
-Kompose propose un moyen simple de déployer votre application "composée" sur Kubernetes ou OpenShift via `kompose up`.
-
-
-### Kubernetes
-```sh
-$ kompose --file ./examples/docker-guestbook.yml up
-We are going to create Kubernetes deployments and services for your Dockerized application.
-If you need different kind of resources, use the 'kompose convert' and 'kubectl apply -f' commands instead.
-
-INFO Successfully created service: redis-master   
-INFO Successfully created service: redis-slave    
-INFO Successfully created service: frontend       
-INFO Successfully created deployment: redis-master
-INFO Successfully created deployment: redis-slave
-INFO Successfully created deployment: frontend    
-
-Your application has been deployed to Kubernetes. You can run 'kubectl get deployment,svc,pods' for details.
-
-$ kubectl get deployment,svc,pods
-NAME                                              DESIRED       CURRENT       UP-TO-DATE   AVAILABLE   AGE
-deployment.extensions/frontend                    1             1             1            1           4m
-deployment.extensions/redis-master                1             1             1            1           4m
-deployment.extensions/redis-slave                 1             1             1            1           4m
-
-NAME                         TYPE               CLUSTER-IP    EXTERNAL-IP   PORT(S)      AGE
-service/frontend             ClusterIP          10.0.174.12   <none>        80/TCP       4m
-service/kubernetes           ClusterIP          10.0.0.1      <none>        443/TCP      13d
-service/redis-master         ClusterIP          10.0.202.43   <none>        6379/TCP     4m
-service/redis-slave          ClusterIP          10.0.1.85     <none>        6379/TCP     4m
-
-NAME                                READY         STATUS        RESTARTS     AGE
-pod/frontend-2768218532-cs5t5       1/1           Running       0            4m
-pod/redis-master-1432129712-63jn8   1/1           Running       0            4m
-pod/redis-slave-2504961300-nve7b    1/1           Running       0            4m
-```
-
-**Note**:
-
-- Vous devez avoir un cluster Kubernetes en cours d'exécution avec kubectl pré-configuré.
-- Seuls les déploiements et les services sont générés et déployés dans Kubernetes. Si vous avez besoin d'autres types de ressources, utilisez les commandes `kompose convert` et `kubectl apply -f` à la place.
-
-### OpenShift
-```sh
-$ kompose --file ./examples/docker-guestbook.yml --provider openshift up
-We are going to create OpenShift DeploymentConfigs and Services for your Dockerized application.
-If you need different kind of resources, use the 'kompose convert' and 'oc create -f' commands instead.
-
-INFO Successfully created service: redis-slave    
-INFO Successfully created service: frontend       
-INFO Successfully created service: redis-master   
-INFO Successfully created deployment: redis-slave
-INFO Successfully created ImageStream: redis-slave
-INFO Successfully created deployment: frontend    
-INFO Successfully created ImageStream: frontend   
-INFO Successfully created deployment: redis-master
-INFO Successfully created ImageStream: redis-master
-
-Your application has been deployed to OpenShift. You can run 'oc get dc,svc,is' for details.
-
-$ oc get dc,svc,is
-NAME               REVISION                              DESIRED       CURRENT    TRIGGERED BY
-dc/frontend        0                                     1             0          config,image(frontend:v4)
-dc/redis-master    0                                     1             0          config,image(redis-master:e2e)
-dc/redis-slave     0                                     1             0          config,image(redis-slave:v1)
-NAME               CLUSTER-IP                            EXTERNAL-IP   PORT(S)    AGE
-svc/frontend       172.30.46.64                          <none>        80/TCP     8s
-svc/redis-master   172.30.144.56                         <none>        6379/TCP   8s
-svc/redis-slave    172.30.75.245                         <none>        6379/TCP   8s
-NAME               DOCKER REPO                           TAGS          UPDATED
-is/frontend        172.30.12.200:5000/fff/frontend                     
-is/redis-master    172.30.12.200:5000/fff/redis-master                 
-is/redis-slave     172.30.12.200:5000/fff/redis-slave    v1  
-```
-
-**Note**:
-
-- Vous devez avoir un cluster OpenShift en cours d'exécution avec `oc` pré-configuré (`oc login`)
-
-## `kompose down`
-
-Une fois que vous avez déployé l'application "composée" sur Kubernetes, `$ kompose down` vous
-facilitera la suppression de l'application en supprimant ses déploiements et services. Si vous avez besoin de supprimer d'autres ressources, utilisez la commande 'kubectl'.
-
-```sh
-$ kompose --file docker-guestbook.yml down
-INFO Successfully deleted service: redis-master   
-INFO Successfully deleted deployment: redis-master
-INFO Successfully deleted service: redis-slave    
-INFO Successfully deleted deployment: redis-slave
-INFO Successfully deleted service: frontend       
-INFO Successfully deleted deployment: frontend
-```
-
-**Note**:
-
-- Vous devez avoir un cluster Kubernetes en cours d'exécution avec kubectl pré-configuré.
-
-## Construire et pousser des images de docker
-
-Kompose permet de construire et de pousser des images Docker. Lorsque vous utilisez la clé `build` dans votre fichier Docker Compose, votre image sera :
-
-  - Automatiquement construite avec le Docker en utilisant la clé "image" spécifiée dans votre fichier
-  - Être poussé vers le bon dépôt Docker en utilisant les identifiants locaux (situés dans  `.docker/config`)
-
-Utilisation d'un [exemple de fichier Docker Compose](https://raw.githubusercontent.com/kubernetes/kompose/master/examples/buildconfig/docker-compose.yml):
-
-```yaml
-version: "2"
-
-services:
-    foo:
-        build: "./build"
-        image: docker.io/foo/bar
-```
-
-En utilisant `kompose up` avec une clé `build` :
-
-```none
-$ kompose up
-INFO Build key detected. Attempting to build and push image 'docker.io/foo/bar'
-INFO Building image 'docker.io/foo/bar' from directory 'build'
-INFO Image 'docker.io/foo/bar' from directory 'build' built successfully
-INFO Pushing image 'foo/bar:latest' to registry 'docker.io'
-INFO Attempting authentication credentials 'https://index.docker.io/v1/
-INFO Successfully pushed image 'foo/bar:latest' to registry 'docker.io'
-INFO We are going to create Kubernetes Deployments, Services and PersistentVolumeClaims for your Dockerized application. If you need different kind of resources, use the 'kompose convert' and 'kubectl apply -f' commands instead.
-
-INFO Deploying application in "default" namespace
-INFO Successfully created Service: foo            
-INFO Successfully created Deployment: foo         
-
-Your application has been deployed to Kubernetes. You can run 'kubectl get deployment,svc,pods,pvc' for details.
-```
-
-Afin de désactiver cette fonctionnalité, ou de choisir d'utiliser la génération de BuildConfig (avec OpenShift) `--build (local|build-config|none)` peut être passé.
-
-```sh
-# Désactiver la construction/poussée d'images Docker
-$ kompose up --build none
-
-# Générer des artefacts de Build Config pour OpenShift
-$ kompose up --provider openshift --build build-config
-```
-
 ## Autres conversions
 
 La transformation par défaut `komposer` va générer des [Déploiements](/docs/concepts/workloads/controllers/deployment/) et [Services](/docs/concepts/services-networking/service/) de Kubernetes, au format yaml. Vous avez une autre option pour générer json avec `-j`. Vous pouvez aussi générer des objets de [Replication Controllers](/docs/concepts/workloads/controllers/replicationcontroller/), [Daemon Sets](/docs/concepts/workloads/controllers/daemonset/), ou [Helm](https://github.com/helm/helm) charts.
diff --git a/content/fr/docs/tasks/tools/install-kubectl.md b/content/fr/docs/tasks/tools/install-kubectl.md
index 2a88388374..651b224987 100644
--- a/content/fr/docs/tasks/tools/install-kubectl.md
+++ b/content/fr/docs/tasks/tools/install-kubectl.md
@@ -68,7 +68,7 @@ echo "deb https://apt.kubernetes.io/ kubernetes-xenial main" | sudo tee -a /etc/
 sudo apt-get update
 sudo apt-get install -y kubectl
 {{< /tab >}}
-{{< tab name="CentOS, RHEL or Fedora" codelang="bash" >}}cat <<EOF > /etc/yum.repos.d/kubernetes.repo
+{{< tab name="CentOS, RHEL or Fedora" codelang="bash" >}}sudo cat <<EOF > /etc/yum.repos.d/kubernetes.repo
 [kubernetes]
 name=Kubernetes
 baseurl=https://packages.cloud.google.com/yum/repos/kubernetes-el7-x86_64
@@ -77,7 +77,7 @@ gpgcheck=1
 repo_gpgcheck=1
 gpgkey=https://packages.cloud.google.com/yum/doc/yum-key.gpg https://packages.cloud.google.com/yum/doc/rpm-package-key.gpg
 EOF
-yum install -y kubectl
+sudo yum install -y kubectl
 {{< /tab >}}
 {{< /tabs >}}
 
@@ -363,7 +363,7 @@ Vous devez maintenant vérifier que le script de completion de kubectl est bien
 
     ```shell
     echo 'alias k=kubectl' >>~/.bashrc
-    echo 'complete -F __start_kubectl k' >>~/.bashrc
+    echo 'complete -o default -F __start_kubectl k' >>~/.bashrc
     ```
 
 {{< note >}}
@@ -431,7 +431,7 @@ Si vous n'avez pas installé via Homebrew, vous devez maintenant vous assurer qu
 
     ```shell
     echo 'alias k=kubectl' >>~/.bashrc
-    echo 'complete -F __start_kubectl k' >>~/.bashrc
+    echo 'complete -o default -F __start_kubectl k' >>~/.bashrc
     ```
     
 Si vous avez installé kubectl avec Homebrew (comme expliqué [ici](#installer-avec-homebrew-sur-macos)), alors le script de complétion a été automatiquement installé dans `/usr/local/etc/bash_completion.d/kubectl`. Dans ce cas, vous n'avez rien à faire.
@@ -457,7 +457,7 @@ Si vous avez un alias pour kubectl, vous pouvez étendre la completion de votre
 
 ```shell
 echo 'alias k=kubectl' >>~/.zshrc
-echo 'complete -F __start_kubectl k' >>~/.zshrc
+echo 'compdef __start_kubectl k' >>~/.zshrc
 ```
 
 Après avoir rechargé votre shell, l'auto-complétion de kubectl devrait fonctionner.
diff --git a/content/fr/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro.html b/content/fr/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro.html
index 0dd896232b..ff41cae0dd 100644
--- a/content/fr/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro.html
+++ b/content/fr/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro.html
@@ -27,12 +27,7 @@ weight: 10
 
             <div class="col-md-8">
                 <h3>Déploiements Kubernetes</h3>
-                <p>
-                Une fois que vous avez un cluster Kubernetes en cours d'exécution, vous pouvez déployer vos applications conteneurisées par dessus.
-                Pour ce faire, vous créez une configuration de <b>Déploiement (Deployments) </b> Kubernetes. Le déploiement instruit Kubernetes
-                de comment créer et mettre à jour des instances de votre application. Une fois que vous avez créé un déploiement, le plannificateur de Kubernetes (kube-scheduler)
-                planifient les instanciations d'application sur des nœuds du cluster.
-                </p>
+                <p>Une fois que vous avez un cluster Kubernetes en cours d'exécution, vous pouvez déployer vos applications conteneurisées par dessus. Pour ce faire, vous créez une configuration de <b>Déploiement (Deployments) </b> Kubernetes. Le déploiement instruit Kubernetes de comment créer et mettre à jour des instances de votre application. Une fois que vous avez créé un déploiement, le plannificateur de Kubernetes (kube-scheduler) planifient les instanciations d'application sur des nœuds du cluster.</p>
 
                 <p>Une fois les instances d’application créées, un contrôleur de déploiement Kubernetes surveille en permanence ces instances. Si le nœud hébergeant une instance tombe en panne ou est supprimé, le contrôleur de déploiement remplace l'instance par une instance située sur un autre nœud du cluster. <b> Ceci fournit un mécanisme d'auto-réparation pour faire face aux pannes ou à la maintenance de la machine.</b></p>
 
diff --git a/content/fr/examples/pods/probe/exec-liveness.yaml b/content/fr/examples/pods/probe/exec-liveness.yaml
index 07bf75f85c..6a9c9b3213 100644
--- a/content/fr/examples/pods/probe/exec-liveness.yaml
+++ b/content/fr/examples/pods/probe/exec-liveness.yaml
@@ -11,7 +11,7 @@ spec:
     args:
     - /bin/sh
     - -c
-    - touch /tmp/healthy; sleep 30; rm -rf /tmp/healthy; sleep 600
+    - touch /tmp/healthy; sleep 30; rm -f /tmp/healthy; sleep 600
     livenessProbe:
       exec:
         command:
diff --git a/content/fr/includes/default-storage-class-prereqs.md b/content/fr/includes/default-storage-class-prereqs.md
index c0a21bec17..eefd9fcf90 100644
--- a/content/fr/includes/default-storage-class-prereqs.md
+++ b/content/fr/includes/default-storage-class-prereqs.md
@@ -1 +1 @@
-Vous devez disposer soit d'un fournisseur PersistentVolume dynamique avec une valeur par défaut [StorageClass](/docs/concepts/storage/storage-classes/), soit préparer [un PersistentVolumes statique](/docs/user-guide/persistent-volumes/#provisioning) pour satisfaire les [PersistentVolumeClaims](/docs/user-guide/persistent-volumes/#persistentvolumeclaims) utilisés ici.
+Vous devez disposer soit d'un fournisseur PersistentVolume dynamique avec une valeur par défaut [StorageClass](/docs/concepts/storage/storage-classes/), soit préparer [un PersistentVolumes statique](/docs/concepts/storage/persistent-volumes/#provisioning) pour satisfaire les [PersistentVolumeClaims](/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims) utilisés ici.
diff --git a/content/fr/includes/task-tutorial-prereqs.md b/content/fr/includes/task-tutorial-prereqs.md
index 50d60b8546..c561cb8c4a 100644
--- a/content/fr/includes/task-tutorial-prereqs.md
+++ b/content/fr/includes/task-tutorial-prereqs.md
@@ -1,5 +1,5 @@
 Vous devez disposer d'un cluster Kubernetes et l'outil de ligne de commande kubectl doit être configuré pour communiquer avec votre cluster.
 Si vous ne possédez pas déjà de cluster, vous pouvez en créer un en utilisant [Minikube](/docs/setup/minikube), ou vous pouvez utiliser l'un de ces environnements Kubernetes:
 
-* [Katacoda](https://www.katacoda.com/courses/kubernetes/playground)
+* [Killercoda](https://killercoda.com/playgrounds/scenario/kubernetes)
 * [Play with Kubernetes](http://labs.play-with-k8s.com/)
diff --git a/content/fr/releases/notes.md b/content/fr/releases/notes.md
new file mode 100644
index 0000000000..803925fc5c
--- /dev/null
+++ b/content/fr/releases/notes.md
@@ -0,0 +1,13 @@
+---
+linktitle: Notes de version
+title: Notes
+type: docs
+description: >
+  Notes de version de Kubernetes.
+sitemap:
+  priority: 0.5
+---
+
+Les notes de version peuvent être trouvées en lisant le [Changelog](https://github.com/kubernetes/kubernetes/tree/master/CHANGELOG) qui correspond à votre version de Kubernetes. Consultez le journal des modifications pour {{< skew lastVersion >}} sur [GitHub](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-{{< skew lastVersion >}}.md).
+
+Alternativement, les notes de version peuvent être recherchées et filtrées en ligne sur : [relnotes.k8s.io](https://relnotes.k8s.io). Consultez les notes de version filtrées pour {{< skew lastVersion >}} sur [relnotes.k8s.io](https://relnotes.k8s.io/?releaseVersions={{< skew lastVersion >}}.0).
diff --git a/content/id/_index.html b/content/id/_index.html
index 10c0775866..f6797b6448 100644
--- a/content/id/_index.html
+++ b/content/id/_index.html
@@ -43,12 +43,12 @@ Kubernetes sebagai <i>open source</i> memberikan kamu kebebasan untuk menggunaka
         <button id="desktopShowVideoButton" onclick="kub.showVideo()">Watch Video</button>
         <br>
         <br>
-        <a href="https://events.linuxfoundation.org/events/kubecon-cloudnativecon-europe-2019" button id="desktopKCButton">Hadiri KubeCon di Barcelona tanggal 20-23 Mei 2019</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/" button id="desktopKCButton">Hadiri KubeCon North America pada 24-28 Oktober 2022</a>
         <br>
         <br>
         <br>
         <br>
-        <a href="https://www.lfasiallc.com/events/kubecon-cloudnativecon-china-2019" button id="desktopKCButton">Hadiri KubeCon di Shanghai tanggal 24-26 Juni 2019</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/" button id="desktopKCButton">Hadiri KubeCon Europe pada 17-21 April 2023</a>
 </div>
 <div id="videoPlayer">
     <iframe data-url="https://www.youtube.com/embed/H06qrNmGqyE?autoplay=1" frameborder="0" allowfullscreen></iframe>
diff --git a/content/id/docs/concepts/cluster-administration/addons.md b/content/id/docs/concepts/cluster-administration/addons.md
index e8a52a4910..a39668ee24 100644
--- a/content/id/docs/concepts/cluster-administration/addons.md
+++ b/content/id/docs/concepts/cluster-administration/addons.md
@@ -22,15 +22,15 @@ Laman ini akan menjabarkan beberapa *add-ons* yang tersedia serta tautan instruk
 
 * [ACI](https://www.github.com/noironetworks/aci-containers) menyediakan integrasi jaringan kontainer dan keamanan jaringan dengan Cisco ACI.
 * [Calico](https://docs.projectcalico.org/latest/getting-started/kubernetes/) merupakan penyedia jaringan L3 yang aman dan *policy* jaringan.
-* [Canal](https://github.com/tigera/canal/tree/master/k8s-install) menggabungkan Flannel dan Calico, menyediakan jaringan serta *policy* jaringan.
+* [Canal](https://projectcalico.docs.tigera.io/getting-started/kubernetes/flannel/flannel) menggabungkan Flannel dan Calico, menyediakan jaringan serta *policy* jaringan.
 * [Cilium](https://github.com/cilium/cilium) merupakan *plugin* jaringan L3 dan *policy* jaringan yang dapat menjalankan *policy* HTTP/API/L7 secara transparan. Mendukung mode *routing* maupun *overlay/encapsulation*.
-* [CNI-Genie](https://github.com/Huawei-PaaS/CNI-Genie) memungkinkan Kubernetes agar dapat terkoneksi dengan beragam *plugin* CNI, seperti Calico, Canal, Flannel, Romana, atau Weave dengan mulus.
+* [CNI-Genie](https://github.com/cni-genie/CNI-Genie) memungkinkan Kubernetes agar dapat terkoneksi dengan beragam *plugin* CNI, seperti Calico, Canal, Flannel, Romana, atau Weave dengan mulus.
 * [Contiv](http://contiv.github.io) menyediakan jaringan yang dapat dikonfigurasi (*native* L3 menggunakan BGP, *overlay* menggunakan vxlan, klasik L2, dan Cisco-SDN/ACI) untuk berbagai penggunaan serta *policy framework* yang kaya dan beragam. Proyek Contiv merupakan proyek [open source](http://github.com/contiv). Laman [instalasi](http://github.com/contiv/install) ini akan menjabarkan cara instalasi, baik untuk klaster dengan kubeadm maupun non-kubeadm.
 * [Contrail](http://www.juniper.net/us/en/products-services/sdn/contrail/contrail-networking/), yang berbasis dari [Tungsten Fabric](https://tungsten.io), merupakan sebuah proyek *open source* yang menyediakan virtualisasi jaringan *multi-cloud* serta platform manajemen *policy*. Contrail dan Tungsten Fabric terintegrasi dengan sistem orkestrasi lainnya seperti Kubernetes, OpenShift, OpenStack dan Mesos, serta menyediakan mode isolasi untuk mesin virtual (VM), kontainer/pod dan *bare metal*.
 * [Flannel](https://github.com/flannel-io/flannel#deploying-flannel-manually) merupakan penyedia jaringan *overlay* yang dapat digunakan pada Kubernetes.
 * [Knitter](https://github.com/ZTE/Knitter/) merupakan solusi jaringan yang mendukung multipel jaringan pada Kubernetes.
-* [Multus](https://github.com/Intel-Corp/multus-cni) merupakan sebuah multi *plugin* agar Kubernetes mendukung multipel jaringan secara bersamaan sehingga dapat menggunakan semua *plugin* CNI (contoh: Calico, Cilium, Contiv, Flannel), ditambah pula dengan SRIOV, DPDK, OVS-DPDK dan VPP pada *workload* Kubernetes.
-* [NSX-T](https://docs.vmware.com/en/VMware-NSX-T/2.0/nsxt_20_ncp_kubernetes.pdf) Container Plug-in (NCP) menyediakan integrasi antara VMware NSX-T dan orkestrator kontainer seperti Kubernetes, termasuk juga integrasi antara NSX-T dan platform CaaS/PaaS berbasis kontainer seperti *Pivotal Container Service* (PKS) dan OpenShift.
+* [Multus](https://github.com/k8snetworkplumbingwg/multus-cni) merupakan sebuah multi *plugin* agar Kubernetes mendukung multipel jaringan secara bersamaan sehingga dapat menggunakan semua *plugin* CNI (contoh: Calico, Cilium, Contiv, Flannel), ditambah pula dengan SRIOV, DPDK, OVS-DPDK dan VPP pada *workload* Kubernetes.
+* [NSX-T](https://docs.vmware.com/en/VMware-NSX-T-Data-Center/index.html) Container Plug-in (NCP) menyediakan integrasi antara VMware NSX-T dan orkestrator kontainer seperti Kubernetes, termasuk juga integrasi antara NSX-T dan platform CaaS/PaaS berbasis kontainer seperti *Pivotal Container Service* (PKS) dan OpenShift.
 * [Nuage](https://github.com/nuagenetworks/nuage-kubernetes/blob/v5.1.1-1/docs/kubernetes-1-installation.rst) merupakan platform SDN yang menyediakan *policy-based* jaringan antara Kubernetes Pods dan non-Kubernetes *environment* dengan *monitoring* visibilitas dan keamanan.
 * [Romana](http://romana.io) merupakan solusi jaringan  *Layer* 3 untuk jaringan pod yang juga mendukung [*NetworkPolicy* API](/id/docs/concepts/services-networking/network-policies/). Instalasi Kubeadm *add-on* ini tersedia [di sini](https://github.com/romana/romana/tree/master/containerize).
 * [Weave Net](https://www.weave.works/docs/net/latest/kube-addon/) menyediakan jaringan serta *policy* jaringan, yang akan membawa kedua sisi dari partisi jaringan, serta tidak membutuhkan basis data eksternal.
diff --git a/content/id/docs/concepts/cluster-administration/certificates.md b/content/id/docs/concepts/cluster-administration/certificates.md
index ee1f91cbeb..8bd5895475 100644
--- a/content/id/docs/concepts/cluster-administration/certificates.md
+++ b/content/id/docs/concepts/cluster-administration/certificates.md
@@ -30,7 +30,7 @@ secara manual melalui `easyrsa`, `openssl` atau `cfssl`.
 1. Hasilkan sertifikat dan kunci _server_.
     Argumen `--subject-alt-name` digunakan untuk mengatur alamat IP dan nama DNS yang dapat diakses
     oleh _server_ API. `MASTER_CLUSTER_IP` biasanya merupakan IP pertama dari CIDR _service cluster_
-    yang diset dengan argumen` --service-cluster-ip-range` untuk _server_ API dan
+    yang diset dengan argumen `--service-cluster-ip-range` untuk _server_ API dan
     komponen manajer pengontrol. Argumen `--days` digunakan untuk mengatur jumlah hari
     masa berlaku sertifikat.
     Sampel di bawah ini juga mengasumsikan bahwa kamu menggunakan `cluster.local` sebagai nama
diff --git a/content/id/docs/concepts/cluster-administration/flow-control.md b/content/id/docs/concepts/cluster-administration/flow-control.md
index 4f6036c0ca..048f6cbd55 100644
--- a/content/id/docs/concepts/cluster-administration/flow-control.md
+++ b/content/id/docs/concepts/cluster-administration/flow-control.md
@@ -263,7 +263,7 @@ perlu memastikan bahwa tidak ada dua FlowSchema yang memiliki `matchingPrecedenc
 
 Sebuah FlowSchema dianggap cocok dengan sebuah permintaan yang diberikan jika setidaknya salah satu dari `rules` nya
 ada yang cocok. Sebuah aturan (_rule_) cocok jika setidaknya satu dari `subject` *dan*
-ada salah satu dari `resourceRules` atau` nonResourceRules` (tergantung dari apakah permintaan 
+ada salah satu dari `resourceRules` atau `nonResourceRules` (tergantung dari apakah permintaan 
 yang masuk adalah untuk URL sumber daya atau non-sumber daya) yang cocok dengan permintaan tersebut.
 
 Untuk bagian `name` dalam subjek, dan bagian `verbs`, `apiGroups`, `resources`,
diff --git a/content/id/docs/concepts/cluster-administration/networking.md b/content/id/docs/concepts/cluster-administration/networking.md
index 6bcd78d7ef..b300c29e98 100644
--- a/content/id/docs/concepts/cluster-administration/networking.md
+++ b/content/id/docs/concepts/cluster-administration/networking.md
@@ -139,7 +139,7 @@ DOCKER_OPTS="--bridge=cbr0 --iptables=false --ip-masq=false"
 
 Jembatan ini dibuat oleh Kubelet (dikontrol oleh _flag_ `--network-plugin=kubenet`) sesuai dengan `.spec.podCIDR` yang dimiliki oleh Node.
 
-Docker sekarang akan mengalokasikan IP dari blok `cbr-cidr`. Kontainer dapat menjangkau satu sama lain dan Node di atas jembatan` cbr0`. IP-IP tersebut semuanya dapat dirutekan dalam jaringan proyek GCE.
+Docker sekarang akan mengalokasikan IP dari blok `cbr-cidr`. Kontainer dapat menjangkau satu sama lain dan Node di atas jembatan `cbr0`. IP-IP tersebut semuanya dapat dirutekan dalam jaringan proyek GCE.
 
 GCE sendiri tidak tahu apa-apa tentang IP ini, jadi tidak akan NAT untuk lalu lintas internet keluar. Untuk mencapai itu aturan iptables digunakan untuk menyamar (alias SNAT - untuk membuatnya seolah-olah paket berasal dari lalu lintas `Node` itu sendiri) yang terikat untuk IP di luar jaringan proyek GCE (10.0.0.0/8).
 
@@ -195,10 +195,6 @@ Multus mendukung semua [plugin referensi](https://github.com/containernetworking
 
 Platform Nuage menggunakan _overlay_ untuk menyediakan jaringan berbasis kebijakan yang mulus antara Kubernetes Pod-Pod dan lingkungan non-Kubernetes (VM dan server _bare metal_). Model abstraksi kebijakan Nuage dirancang dengan mempertimbangkan aplikasi dan membuatnya mudah untuk mendeklarasikan kebijakan berbutir halus untuk aplikasi. Mesin analisis _real-time_ platform memungkinkan pemantauan visibilitas dan keamanan untuk aplikasi Kubernetes.
 
-### OpenVSwitch
-
-[OpenVSwitch](https://www.openvswitch.org/) adalah cara yang agak lebih dewasa tetapi juga rumit untuk membangun jaringan _overlay_. Ini didukung oleh beberapa "Toko Besar" untuk jaringan.
-
 ### OVN (Open Virtual Networking)
 
 OVN adalah solusi virtualisasi jaringan opensource yang dikembangkan oleh komunitas Open vSwitch. Ini memungkinkan seseorang membuat switch logis, router logis, ACL stateful, load-balancers dll untuk membangun berbagai topologi jaringan virtual. Proyek ini memiliki plugin dan dokumentasi Kubernetes spesifik di [ovn-kubernetes](https://github.com/openvswitch/ovn-kubernetes).
diff --git a/content/id/docs/concepts/cluster-administration/system-metrics.md b/content/id/docs/concepts/cluster-administration/system-metrics.md
index f731ccfd77..0c4058c710 100644
--- a/content/id/docs/concepts/cluster-administration/system-metrics.md
+++ b/content/id/docs/concepts/cluster-administration/system-metrics.md
@@ -99,7 +99,7 @@ Opsi `show-hidden-metrics-for-version` menerima input versi yang kamu inginkan u
 
 Opsi tersebut hanya dapat menerima input versi minor sebelumnya sebagai nilai. Semua metrik yang disembunyikan di versi sebelumnya akan dikeluarkan jika admin mengatur versi sebelumnya ke `show-hidden-metrics-for-version`. Versi yang terlalu lama tidak diperbolehkan karena melanggar kebijakan untuk metrik usang.
 
-Ambil metrik `A` sebagai contoh, di sini diasumsikan bahwa` A` sudah menjadi usang di versi 1.n. Berdasarkan kebijakan metrik usang, kita dapat mencapai kesimpulan berikut:
+Ambil metrik `A` sebagai contoh, di sini diasumsikan bahwa `A` sudah menjadi usang di versi 1.n. Berdasarkan kebijakan metrik usang, kita dapat mencapai kesimpulan berikut:
 
 * Pada rilis `1.n`, metrik menjadi usang, dan dapat dikeluarkan secara bawaan.
 * Pada rilis `1.n+1`, metrik disembunyikan secara bawaan dan dapat dikeluarkan dengan baris perintah `show-hidden-metrics-for-version=1.n`.
@@ -155,7 +155,7 @@ kube-scheduler mengidentifikasi [permintaan dan limit](/docs/concepts/configurat
 - nama dari sumber daya (misalnya, `cpu`)
 - satuan dari sumber daya jika diketahui (misalnya, `cores`)
 
-Setelah pod selesai (memiliki `restartPolicy` `Never` atau `OnFailure` dan berada dalam fase pod `Succeeded` atau `Failed`, atau telah dihapus dan semua kontainer dalam keadaan Terminated) deret metrik tidak lagi dilaporkan karena penjadwal sekarang sudah dibebaskan untuk menjadwalkan pod lain untuk dijalankan. Metrik yang dibahas pada bagian ini dikenal sebagai `kube_pod_resource_request` dan` kube_pod_resource_limit`.
+Setelah pod selesai (memiliki `restartPolicy` `Never` atau `OnFailure` dan berada dalam fase pod `Succeeded` atau `Failed`, atau telah dihapus dan semua kontainer dalam keadaan Terminated) deret metrik tidak lagi dilaporkan karena penjadwal sekarang sudah dibebaskan untuk menjadwalkan pod lain untuk dijalankan. Metrik yang dibahas pada bagian ini dikenal sebagai `kube_pod_resource_request` dan `kube_pod_resource_limit`.
 
 Metrik diekspos melalui _endpoint_ HTTP `/metrics/resources` dan memerlukan otorisasi yang sama seperti endpoint `/metrics`
 pada penjadwal. Kamu harus menggunakan opsi `--show-hidden-metrics-for-version=1.20` untuk mengekspos metrik-metrik stabilitas alfa ini.
diff --git a/content/id/docs/concepts/configuration/overview.md b/content/id/docs/concepts/configuration/overview.md
index 51fb10f5ef..974d5b4a19 100644
--- a/content/id/docs/concepts/configuration/overview.md
+++ b/content/id/docs/concepts/configuration/overview.md
@@ -21,7 +21,7 @@ Dokumentasi ini terbuka. Jika Anda menemukan sesuatu yang tidak ada dalam daftar
 
 - Tulis file konfigurasi Anda menggunakan YAML tidak dengan JSON. Meskipun format ini dapat digunakan secara bergantian di hampir semua skenario, YAML cenderung lebih ramah pengguna.
 
-- Kelompokkan objek terkait ke dalam satu file yang memungkinkan. Satu file seringkali lebih mudah dikelola daripada beberapa file. Lihat pada [guestbook-all-in-one.yaml](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/guestbook/all-in-one/guestbook-all-in-one.yaml) sebagai contoh file sintaks ini.
+- Kelompokkan objek terkait ke dalam satu file yang memungkinkan. Satu file seringkali lebih mudah dikelola daripada beberapa file. Lihat pada [guestbook-all-in-one.yaml](https://github.com/kubernetes/examples/tree/master/guestbook/all-in-one/guestbook-all-in-one.yaml) sebagai contoh file sintaks ini.
 
 - Perhatikan juga bahwa banyak perintah `kubectl` dapat dipanggil pada direktori. Misalnya, Anda dapat memanggil `kubectl apply` pada direktori file konfigurasi.
 
@@ -46,25 +46,25 @@ Dokumentasi ini terbuka. Jika Anda menemukan sesuatu yang tidak ada dalam daftar
   FOO_SERVICE_PORT=<the port the Service is running on>
   ```
 
-  *Ini menunjukan persyaratan pemesanan * - `Service` apa pun yang ingin diakses oleh` Pod` harus dibuat sebelum `Pod` itu sendiri, atau environment variabel tidak akan diisi. DNS tidak memiliki batasan ini.
+  *Ini menunjukan persyaratan pemesanan * - `Service` apa pun yang ingin diakses oleh `Pod` harus dibuat sebelum `Pod` itu sendiri, atau environment variabel tidak akan diisi. DNS tidak memiliki batasan ini.
 
 - Opsional (meskipun sangat disarankan) [cluster add-on](/id/docs/concepts/cluster-administration/addons/) adalah server DNS.
 Server DNS melihat API Kubernetes untuk `Service` baru dan membuat satu set catatan DNS untuk masing-masing. Jika DNS telah diaktifkan di seluruh cluster maka semua `Pods` harus dapat melakukan resolusi nama`Service` secara otomatis.
 
-- Jangan tentukan `hostPort` untuk Pod kecuali jika benar-benar diperlukan. Ketika Anda bind Pod ke `hostPort`, hal itu membatasi jumlah tempat Pod dapat dijadwalkan, karena setiap kombinasi <` hostIP`, `hostPort`,` protokol`> harus unik. Jika Anda tidak menentukan `hostIP` dan` protokol` secara eksplisit, Kubernetes akan menggunakan `0.0.0.0` sebagai` hostIP` dan `TCP` sebagai default` protokol`.
+- Jangan tentukan `hostPort` untuk Pod kecuali jika benar-benar diperlukan. Ketika Anda bind Pod ke `hostPort`, hal itu membatasi jumlah tempat Pod dapat dijadwalkan, karena setiap kombinasi <`hostIP`, `hostPort`, `protokol`> harus unik. Jika Anda tidak menentukan `hostIP` dan `protokol` secara eksplisit, Kubernetes akan menggunakan `0.0.0.0` sebagai `hostIP` dan `TCP` sebagai default `protokol`.
 
   Jika kamu hanya perlu akses ke port untuk keperluan debugging, Anda bisa menggunakan [apiserver proxy](/id/docs/tasks/access-application-cluster/access-cluster/#manually-constructing-apiserver-proxy-urls) atau [`kubectl port-forward`](/id/docs/tasks/access-application-cluster/port-forward-access-application-cluster/).
 
   Jika Anda secara eksplisit perlu mengekspos port Pod pada node, pertimbangkan untuk menggunakan [NodePort](/id/docs/concepts/services-networking/service/#nodeport) Service sebelum beralih ke `hostPort`.
 
-- Hindari menggunakan `hostNetwork`, untuk alasan yang sama seperti` hostPort`.
+- Hindari menggunakan `hostNetwork`, untuk alasan yang sama seperti `hostPort`.
 
 - Gunakan [headless Services](/id/docs/concepts/services-networking/service/#headless-
-services) (yang memiliki `ClusterIP` dari` None`) untuk Service discovery yang mudah ketika Anda tidak membutuhkan `kube-proxy` load balancing.
+services) (yang memiliki `ClusterIP` dari `None`) untuk Service discovery yang mudah ketika Anda tidak membutuhkan `kube-proxy` load balancing.
 
 ## Menggunakan label
 
-- Deklarasi dan gunakan [labels] (/id/docs/concepts/overview/working-with-objects/labels/) untuk identifikasi __semantic attributes__  aplikasi atau Deployment kamu, seperti `{ app: myapp, tier: frontend, phase: test, deployment: v3 }`. Kamu dapat menggunakan label ini untuk memilih Pod yang sesuai untuk sumber daya lainnya; misalnya, Service yang memilih semua `tier: frontend` Pods, atau semua komponen` phase: test` dari `app: myapp`. Lihat [guestbook](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/guestbook/) aplikasi untuk contoh-contoh pendekatan ini.
+- Deklarasi dan gunakan [labels] (/id/docs/concepts/overview/working-with-objects/labels/) untuk identifikasi __semantic attributes__  aplikasi atau Deployment kamu, seperti `{ app: myapp, tier: frontend, phase: test, deployment: v3 }`. Kamu dapat menggunakan label ini untuk memilih Pod yang sesuai untuk sumber daya lainnya; misalnya, Service yang memilih semua `tier: frontend` Pods, atau semua komponen `phase: test` dari `app: myapp`. Lihat [guestbook](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/guestbook/) aplikasi untuk contoh-contoh pendekatan ini.
 
 
 Service dapat dibuat untuk menjangkau beberapa Penyebaran dengan menghilangkan label khusus rilis dari pemilihnya. [Deployments](/id/docs/concepts/workloads/controllers/deployment/) membuatnya mudah untuk memperbarui Service yang sedang berjalan tanpa downtime.
@@ -103,11 +103,11 @@ Semantik caching dari penyedia gambar yang mendasarinya membuat bahkan `imagePul
 ## Menggunakan kubectl
 
 
-- Gunakan `kubectl apply -f <directory>`. Ini mencari konfigurasi Kubernetes di semua file `.yaml`,` .yml`, dan `.json` di` <directory> `dan meneruskannya ke` apply`.
+- Gunakan `kubectl apply -f <directory>`. Ini mencari konfigurasi Kubernetes di semua file `.yaml`, `.yml`, dan `.json` di `<directory>` dan meneruskannya ke `apply`.
 
-- Gunakan label selector untuk operasi `get` dan` delete` alih-alih nama objek tertentu. Lihat bagian di [label selectors](/id/docs/concepts/overview/working-with-objects/labels/#label-selectors) dan [using labels effectively](/id/docs/concepts/cluster-administration/manage-deployment/#using-labels-effectively).
+- Gunakan label selector untuk operasi `get` dan `delete` alih-alih nama objek tertentu. Lihat bagian di [label selectors](/id/docs/concepts/overview/working-with-objects/labels/#label-selectors) dan [using labels effectively](/id/docs/concepts/cluster-administration/manage-deployment/#using-labels-effectively).
 
-- Gunakan `kubectl run` dan` kubectl expose` untuk dengan cepat membuat Deployment dan Service single-container. Lihat [Use a Service to Access an Application in a Cluster](/docs/tasks/access-application-cluster/service-access-application-cluster/) untuk Contoh.
+- Gunakan `kubectl run` dan `kubectl expose` untuk dengan cepat membuat Deployment dan Service single-container. Lihat [Use a Service to Access an Application in a Cluster](/docs/tasks/access-application-cluster/service-access-application-cluster/) untuk Contoh.
 
 
 
diff --git a/content/id/docs/concepts/containers/runtime-class.md b/content/id/docs/concepts/containers/runtime-class.md
index 539fbb7038..49b1c6f1fa 100644
--- a/content/id/docs/concepts/containers/runtime-class.md
+++ b/content/id/docs/concepts/containers/runtime-class.md
@@ -111,7 +111,7 @@ _Handler runtime_ diatur melalui konfigurasi containerd pada `/etc/containerd/co
 _Handler_ yang valid dapat dikonfigurasi pada bagian _runtime_:
 
 ```
-[plugins.cri.containerd.runtimes.${HANDLER_NAME}]
+[plugins."io.containerd.grpc.v1.cri".containerd.runtimes.${HANDLER_NAME}]
 ```
 
 Lihat dokumentasi konfigurasi containerd untuk lebih detail:
diff --git a/content/id/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins.md b/content/id/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins.md
index f54e285549..1c3bb469ae 100644
--- a/content/id/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins.md
+++ b/content/id/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins.md
@@ -28,7 +28,7 @@ Kubelet memiliki _plugin_ jaringan bawaan tunggal, dan jaringan bawaan umum untu
 
 ## Persyaratan _Plugin_ Jaringan
 
-Selain menyediakan [antarmuka `NetworkPlugin`](https://github.com/kubernetes/kubernetes/tree/{{< param "fullversion" >}}/pkg/kubelet/dockershim/network/plugins.go) untuk mengonfigurasi dan membersihkan jaringan Pod, _plugin_ ini mungkin juga memerlukan dukungan khusus untuk kube-proxy. Proksi _iptables_ jelas tergantung pada _iptables_, dan _plugin_ ini mungkin perlu memastikan bahwa lalu lintas kontainer tersedia untuk _iptables_. Misalnya, jika plugin menghubungkan kontainer ke _bridge_ Linux, _plugin_ harus mengatur nilai sysctl `net/bridge/bridge-nf-call-iptables` menjadi ` 1` untuk memastikan bahwa proksi _iptables_ berfungsi dengan benar. Jika _plugin_ ini tidak menggunakan _bridge_ Linux (melainkan sesuatu seperti Open vSwitch atau mekanisme lainnya), _plugin_ ini harus memastikan lalu lintas kontainer dialihkan secara tepat untuk proksi.
+Selain menyediakan [antarmuka `NetworkPlugin`](https://github.com/kubernetes/kubernetes/tree/{{< param "fullversion" >}}/pkg/kubelet/dockershim/network/plugins.go) untuk mengonfigurasi dan membersihkan jaringan Pod, _plugin_ ini mungkin juga memerlukan dukungan khusus untuk kube-proxy. Proksi _iptables_ jelas tergantung pada _iptables_, dan _plugin_ ini mungkin perlu memastikan bahwa lalu lintas kontainer tersedia untuk _iptables_. Misalnya, jika plugin menghubungkan kontainer ke _bridge_ Linux, _plugin_ harus mengatur nilai sysctl `net/bridge/bridge-nf-call-iptables` menjadi `1` untuk memastikan bahwa proksi _iptables_ berfungsi dengan benar. Jika _plugin_ ini tidak menggunakan _bridge_ Linux (melainkan sesuatu seperti Open vSwitch atau mekanisme lainnya), _plugin_ ini harus memastikan lalu lintas kontainer dialihkan secara tepat untuk proksi.
 
 Secara bawaan jika tidak ada _plugin_ jaringan Kubelet yang ditentukan, _plugin_ `noop` digunakan, yang menetapkan `net/bridge/bridge-nf-call-iptables=1` untuk memastikan konfigurasi sederhana (seperti Docker dengan sebuah _bridge_) bekerja dengan benar dengan proksi _iptables_.
 
@@ -148,7 +148,7 @@ Opsi ini disediakan untuk _plugin_ jaringan; Saat ini **hanya kubenet yang mendu
 ## Ringkasan Penggunaan
 
 * `--network-plugin=cni` menetapkan bahwa kita menggunakan _plugin_ jaringan `cni` dengan _binary-binary plugin_ CNI aktual yang terletak di `--cni-bin-dir` (nilai bawaannya `/opt/cni/bin`) dan konfigurasi _plugin_ CNI yang terletak di `--cni-conf-dir` (nilai bawaannya `/etc/cni/net.d`).
-* `--network-plugin=kubenet` menentukan bahwa kita menggunakan _plugin_ jaringan` kubenet` dengan `bridge` CNI dan _plugin-plugin_ `host-local` yang terletak di `/opt/cni/bin` atau `cni-bin-dir`.
+* `--network-plugin=kubenet` menentukan bahwa kita menggunakan _plugin_ jaringan `kubenet` dengan `bridge` CNI dan _plugin-plugin_ `host-local` yang terletak di `/opt/cni/bin` atau `cni-bin-dir`.
 * `--network-plugin-mtu=9001` menentukan MTU yang akan digunakan, saat ini hanya digunakan oleh _plugin_ jaringan `kubenet`.
 
 
diff --git a/content/id/docs/concepts/extend-kubernetes/service-catalog.md b/content/id/docs/concepts/extend-kubernetes/service-catalog.md
index cd63a89355..771ec30d3f 100644
--- a/content/id/docs/concepts/extend-kubernetes/service-catalog.md
+++ b/content/id/docs/concepts/extend-kubernetes/service-catalog.md
@@ -275,7 +275,6 @@ dengan nama `topic` ke dalam _environment variable_ `TOPIC`.
   ke dalam klaster Kubernetes. Alternatif lain, kamu dapat [memasang Service Catalog dengan SC tool](/docs/tasks/service-catalog/install-service-catalog-using-sc/).
 * Lihat [contoh makelar servis](https://github.com/openservicebrokerapi/servicebroker/blob/master/gettingStarted.md#sample-service-brokers).
 * Pelajari mengenai [kubernetes-incubator/service-catalog](https://github.com/kubernetes-incubator/service-catalog) proyek.
-* Lihat [svc-cat.io](https://svc-cat.io/docs/).
 
 
 
diff --git a/content/id/docs/concepts/scheduling-eviction/assign-pod-node.md b/content/id/docs/concepts/scheduling-eviction/assign-pod-node.md
index f8654f4276..4f0f838db5 100644
--- a/content/id/docs/concepts/scheduling-eviction/assign-pod-node.md
+++ b/content/id/docs/concepts/scheduling-eviction/assign-pod-node.md
@@ -279,7 +279,7 @@ web-server-1287567482-s330j    1/1       Running   0          7m        10.192.3
 ##### Tidak akan pernah ditempatkan bersamaan dalam node yang sama
 
 
-Contoh di atas menggunakan aturan `PodAntiAffinity` dengan` topologyKey: "kubernetes.io/hostname"` untuk melakukan deploy klaster redis sehingga tidak ada dua instance terletak pada hos yang sama.
+Contoh di atas menggunakan aturan `PodAntiAffinity` dengan `topologyKey: "kubernetes.io/hostname"` untuk melakukan deploy klaster redis sehingga tidak ada dua instance terletak pada hos yang sama.
 Lihat [tutorial ZooKeeper](/docs/tutorials/stateful-application/zookeeper/#tolerating-node-failure)  untuk contoh dari konfigurasi StatefulSet dengan anti-afinitas untuk ketersediaan tinggi, menggunakan teknik yang sama.
 
 Untuk informasi lebih lanjut tentang afinitas/anti-afinitas antar pod, lihat [design doc](https://git.k8s.io/community/contributors/design-proposals/scheduling/podaffinity.md).
diff --git a/content/id/docs/concepts/scheduling-eviction/resource-bin-packing.md b/content/id/docs/concepts/scheduling-eviction/resource-bin-packing.md
index 0f5b92784a..7cf64b6696 100644
--- a/content/id/docs/concepts/scheduling-eviction/resource-bin-packing.md
+++ b/content/id/docs/concepts/scheduling-eviction/resource-bin-packing.md
@@ -28,7 +28,7 @@ permintaan terhadap kapasitas. Hal ini memungkinkan pengguna untuk _bin pack_
 sumber daya tambahan dengan menggunakan parameter yang sesuai untuk meningkatkan
 pemanfaatan sumber daya yang langka dalam klaster yang besar. Perilaku 
 `RequestedToCapacityRatioResourceAllocation` dari fungsi prioritas dapat 
-dikontrol melalui pilihan konfigurasi yang disebut ` RequestToCapacityRatioArguments`.
+dikontrol melalui pilihan konfigurasi yang disebut `RequestToCapacityRatioArguments`.
 Argumen ini terdiri dari dua parameter yaitu `shape` dan `resources`. Shape 
 memungkinkan pengguna untuk menyempurnakan fungsi menjadi yang paling tidak 
 diminta atau paling banyak diminta berdasarkan nilai `utilization` dan `score`. 
@@ -36,7 +36,7 @@ Sumber daya terdiri dari `name` yang menentukan sumber daya mana yang dipertimba
 selama penilaian dan `weight` yang menentukan bobot masing-masing sumber daya.
 
 Di bawah ini adalah contoh konfigurasi yang menetapkan `requestedToCapacityRatioArguments` 
-pada perilaku _bin packing_ untuk sumber daya tambahan` intel.com/foo` dan `intel.com/bar`
+pada perilaku _bin packing_ untuk sumber daya tambahan `intel.com/foo` dan `intel.com/bar`
 
 ```json
 {
diff --git a/content/id/docs/concepts/security/overview.md b/content/id/docs/concepts/security/overview.md
index bc271e0645..0346314f3a 100644
--- a/content/id/docs/concepts/security/overview.md
+++ b/content/id/docs/concepts/security/overview.md
@@ -36,6 +36,7 @@ Amazon Web Services | https://aws.amazon.com/security/ |
 Google Cloud Platform | https://cloud.google.com/security/ |
 IBM Cloud | https://www.ibm.com/cloud/security |
 Microsoft Azure | https://docs.microsoft.com/en-us/azure/security/azure-security |
+Oracle Cloud Infrastructure | https://www.oracle.com/security/ |
 VMWare VSphere | https://www.vmware.com/security/hardening-guides.html |
 
 Jika kamu mengoperasikan perangkat keras kamu sendiri, atau penyedia layanan cloud yang berbeda, kamu perlu merujuk pada dokumentasi penyedia layanan cloud yang kamu pakai untuk praktik keamanan terbaik.
diff --git a/content/id/docs/concepts/services-networking/dual-stack.md b/content/id/docs/concepts/services-networking/dual-stack.md
index 6714a00cde..52e892f4f4 100644
--- a/content/id/docs/concepts/services-networking/dual-stack.md
+++ b/content/id/docs/concepts/services-networking/dual-stack.md
@@ -113,7 +113,7 @@ yang dikonfigurasi untuk Service ini.
 ### Tipe _LoadBalancer_
 
 Penyedia layanan _cloud_ yang mendukung IPv6 untuk pengaturan beban eksternal,
-Mengatur bagian `type` menjadi` LoadBalancer` sebagai tambahan terhadap mengatur bagian 
+Mengatur bagian `type` menjadi `LoadBalancer` sebagai tambahan terhadap mengatur bagian 
 `ipFamily` menjadi `IPv6` menyediakan sebuah _cloud load balancer_ untuk Service kamu.
 
 ## Lalu lintas _egress_
diff --git a/content/id/docs/concepts/services-networking/service-topology.md b/content/id/docs/concepts/services-networking/service-topology.md
index 05abffa323..6ad889b995 100644
--- a/content/id/docs/concepts/services-networking/service-topology.md
+++ b/content/id/docs/concepts/services-networking/service-topology.md
@@ -26,7 +26,7 @@ _availability zone_ yang sama.
 
 ## Pengantar
 
-Secara bawaan lalu lintas jaringan yang dikirim ke `ClusterIP` atau` NodePort` dari Service
+Secara bawaan lalu lintas jaringan yang dikirim ke `ClusterIP` atau `NodePort` dari Service
 dapat dialihkan ke alamat _backend_ untuk Service tersebut. Sejak Kubernetes 1.7
 dimungkinkan untuk merutekan lalu lintas jaringan "eksternal" ke Pod yang berjalan di 
 Node yang menerima lalu lintas jaringan, tetapi fitur ini tidak didukung untuk `ClusterIP` dari
diff --git a/content/id/docs/concepts/services-networking/service.md b/content/id/docs/concepts/services-networking/service.md
index 3c85c5abbf..f464e26468 100644
--- a/content/id/docs/concepts/services-networking/service.md
+++ b/content/id/docs/concepts/services-networking/service.md
@@ -387,7 +387,7 @@ _Value_ dan perilaku dari tipe `Service` dijelaskan sebagai berikut:
    * `ClusterIP`: Mengekspos `Service` ke _range_ alamat IP di dalam klaster. Apabila kamu memilih _value_ ini
      `Service` yang kamu miliki hanya dapat diakses secara internal. tipe ini adalah
      _default_ _value_ dari _ServiceType_.
-   * [`NodePort`](#nodeport): Mengekspos `Service` pada setiap IP *node* pada _port_ statis
+   * [`NodePort`](#type-nodeport): Mengekspos `Service` pada setiap IP *node* pada _port_ statis
      atau _port_ yang sama. Sebuah `Service` `ClusterIP`, yang mana `Service` `NodePort` akan di-_route_
      , dibuat secara otomatis. Kamu dapat mengakses `Service` dengan tipe ini,
      dari luar klaster melalui `<NodeIP>:<NodePort>`.
@@ -399,7 +399,7 @@ _Value_ dan perilaku dari tipe `Service` dijelaskan sebagai berikut:
       catatan `CNAME` beserta _value_-nya. Tidak ada metode _proxy_ apa pun yang diaktifkan. Mekanisme ini
       setidaknya membutuhkan `kube-dns` versi 1.7.
 
-### Type NodePort {#nodeport}
+### Type NodePort {#type-nodeport}
 
 Jika kamu menerapkan _value_ `NodePort` pada _field_ _type_, master Kubernetes akan mengalokasikan
 _port_ dari _range_ yang dispesifikasikan oleh penanda `--service-node-port-range` (secara _default_, 30000-32767)
diff --git a/content/id/docs/concepts/storage/storage-classes.md b/content/id/docs/concepts/storage/storage-classes.md
index 083620d937..e5f3265768 100644
--- a/content/id/docs/concepts/storage/storage-classes.md
+++ b/content/id/docs/concepts/storage/storage-classes.md
@@ -89,7 +89,7 @@ Kamu tidak dibatasi untuk hanya menggunakan _provisioner_ internal yang disediak
 pada list yang tersedia (yang memiliki nama dengan prefix "kubernetes.io" dan
 didistribusikan bersamaan dengan Kubernetes). Kamu juga dapat menjalankan dan
 mendefinisikan _provisioner_ eksternal yang merupakan program independen selama
-program tersebut menerapkan [spesifikasi](https://git.k8s.io/community/contributors/design-proposals/storage/volume-provisioning.md)
+program tersebut menerapkan [spesifikasi](https://github.com/kubernetes/design-proposals-archive/blob/main/storage/volume-provisioning.md)
 yang didefinisikan oleh Kubernetes. Penulis dari _provisioner_ eksternal Kubernetes
 memiliki kuasa penuh akan tempat dimana kode sumber yang mereka tulis, bagaimana
 mekanisme penyediaan (_provisioning_) dilakukan, serta bagaimana hal tersebut dapat dijalankan,
@@ -198,8 +198,8 @@ allowedTopologies:
 - matchLabelExpressions:
   - key: failure-domain.beta.kubernetes.io/zone
     values:
-    - us-central1-a
-    - us-central1-b
+    - us-central-1a
+    - us-central-1b
 ```
 
 ## Parameter-Parameter
diff --git a/content/id/docs/concepts/workloads/controllers/daemonset.md b/content/id/docs/concepts/workloads/controllers/daemonset.md
index 905a0a193a..ea21a7b268 100644
--- a/content/id/docs/concepts/workloads/controllers/daemonset.md
+++ b/content/id/docs/concepts/workloads/controllers/daemonset.md
@@ -106,7 +106,7 @@ membuat Pod pada semua Node.
 
 ### Dijadwalkan oleh _default scheduler_
 
-{{< feature-state state="stable" for-kubernetes-version="1.17" >}}
+{{< feature-state for_k8s_version="1.17" state="stable" >}}
 
 DaemonSet memastikan bahwa semua Node yang memenuhi syarat menjalankan salinan
 Pod. Normalnya, Node yang menjalankan Pod dipilih oleh _scheduler_ Kubernetes.
diff --git a/content/id/docs/concepts/workloads/pods/disruptions.md b/content/id/docs/concepts/workloads/pods/disruptions.md
index 7a09eed3a5..f466bc6300 100644
--- a/content/id/docs/concepts/workloads/pods/disruptions.md
+++ b/content/id/docs/concepts/workloads/pods/disruptions.md
@@ -67,7 +67,7 @@ Kubernetes menawarkan fitur-fitur untuk membantu menjalankan aplikasi-aplikasi d
 Pemilik aplikasi dapat membuat objek `PodDisruptionBudget` (PDB) untuk setiap aplikasi. Sebuah PDB membatasi jumlah Pod yang boleh mati secara bersamaan pada aplikasi yang direplikasi dikarenakan disrupsi yang disengaja.
 Misalnya, sebuah aplikasi yang bekerja secara _quorum_ mau memastikan bahwa jumlah replika yang berjalan tidak jatuh ke bawah yang dibutuhkan untuk membentuk sebuah _quorum_. Contoh lainnya, sebuah _front-end_ web mungkin perlu memastikan bahwa jumlah replika yang melayani trafik tidak pernah turun ke total persentase yang telah ditentukan.
 
-Administrator klaster dan penyedia layanan Kubernetes sebaiknya menggunakan alat-alat yang menghormati PDB dengan cara berkomunikasi dengan [Eviction API](/docs/tasks/administer-cluster/safely-drain-node/#the-eviction-api) dari pada menghapus Pod atau Deployment secara langsung. Contohnya adalah perintah `kubectl drain` dan skrip pembaruan Kubernets-on-GCE (`cluster/gce/upgrade.sh`)
+Administrator klaster dan penyedia layanan Kubernetes sebaiknya menggunakan alat-alat yang menghormati PDB dengan cara berkomunikasi dengan [Eviction API](/docs/tasks/administer-cluster/safely-drain-node/#the-eviction-api) dari pada menghapus Pod atau Deployment secara langsung. Contohnya adalah perintah `kubectl drain` dan skrip pembaruan Kubernetes-on-GCE (`cluster/gce/upgrade.sh`)
 
 Saat seorang administrator klaster ingin melakukan _drain_ terhadap sebuah node, ia akan menggunakan perintah `kubectl drain`. Alat tersebut mencoba untuk "mengusir" semua Pod di node tersebut. Permintaan untuk mengusir Pod tersebut mungkin ditolak untuk sementara, dan alat tersebut akan mencoba ulang permintaannya secara periodik hingga semua Pod dihapus, atau hingga batas waktu yang ditentukan telah dicapai.
 
diff --git a/content/id/docs/contribute/participate/_index.md b/content/id/docs/contribute/participate/_index.md
index 72c561432b..cd47d62309 100644
--- a/content/id/docs/contribute/participate/_index.md
+++ b/content/id/docs/contribute/participate/_index.md
@@ -71,8 +71,8 @@ dua buah [prow _plugin_](https://github.com/kubernetes/test-infra/tree/master/pr
 - approve
 
 Kedua _plugin_ menggunakan berkas
-[OWNERS](https://github.com/kubernetes/website/blob/master/OWNERS) dan
-[OWNERS_ALIASES](https://github.com/kubernetes/website/blob/master/OWNERS_ALIASES)
+[OWNERS](https://github.com/kubernetes/website/blob/main/OWNERS) dan
+[OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS_ALIASES)
 dalam level teratas dari repositori GitHub `kubernetes/website` untuk mengontrol
 bagaimana prow bekerja di dalam repositori.
 
diff --git a/content/id/docs/reference/access-authn-authz/rbac.md b/content/id/docs/reference/access-authn-authz/rbac.md
index 03e7d2e076..decb08d42b 100644
--- a/content/id/docs/reference/access-authn-authz/rbac.md
+++ b/content/id/docs/reference/access-authn-authz/rbac.md
@@ -64,7 +64,7 @@ untuk memberikan akses baca pada {{< glossary_tooltip text="Pod" term_id="pod" >
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  Namespace: default
+  namespace: default
   name: pod-reader
 rules:
 - apiGroups: [""] # "" mengindikasikan grup API inti
@@ -248,7 +248,7 @@ rules:
 
 Kamu juga dapat merujuk ke sumber daya dengan nama untuk permintaan tertentu melalui daftar `resourceNames`.
 Ketika nama dicantumkan, permintaan dapat dibatasi untuk setiap objek sumber daya.
-Berikut adalah contoh yang membatasi subjeknya hanya untuk melakukan `get` atau` update` pada sebuah
+Berikut adalah contoh yang membatasi subjeknya hanya untuk melakukan `get` atau `update` pada sebuah
 {{< glossary_tooltip term_id="ConfigMap" >}} bernama `my-configmap`:
 
 ```yaml
@@ -268,7 +268,7 @@ rules:
 ```
 
 {{< note >}}
-Kamu tidak dapat membatasi permintaan `create` atau` deletecollection` dengan nama sumber daya. Untuk `create`, 
+Kamu tidak dapat membatasi permintaan `create` atau `deletecollection` dengan nama sumber daya. Untuk `create`, 
 keterbatasan ini dikarenakan nama objek tidak diketahui pada waktu otorisasi.
 {{< /note >}}
 
@@ -773,7 +773,7 @@ Hal ini umumnya digunakan oleh pugasan server API untuk otentikasi dan otorisasi
 <tr>
 <td><b>system:persistent-volume-provisioner</b></td>
 <td>Tidak ada</td>
-<td>Mengizinkan akses ke sumber daya yang dibutuhkan oleh kebanyakan <a href="/docs/concepts/storage/persistent-volumes/#provisioner">penyedia volume dinamis</a>.</td>
+<td>Mengizinkan akses ke sumber daya yang dibutuhkan oleh kebanyakan <a href="/id/docs/concepts/storage/persistent-volumes/#dinamis">penyedia volume dinamis</a>.</td>
 </tr>
 <tbody>
 </table>
diff --git a/content/id/docs/reference/glossary/quantity.md b/content/id/docs/reference/glossary/quantity.md
index 7369fc20dc..fc2cd1290e 100644
--- a/content/id/docs/reference/glossary/quantity.md
+++ b/content/id/docs/reference/glossary/quantity.md
@@ -15,7 +15,7 @@ Representasi bilangan bulat dari bilangan kecil atau besar menggunakan sufiks SI
 
 Kuantitas adalah representasi dari bilangan kecil atau besar menggunakan notasi bilangan bulat kompak dengan sufiks SI. Bilangan pecahan direpresentasikan dengan satuan mili, sedangkan bilangan besar direpresentasikan dengan satuan kilo, mega, atau giga.
 
-Misalnya, angka `1,5` direpresentasikan sebagai` 1500m`, sedangkan angka `1000` dapat direpresentasikan sebagai `1k`, dan `1000000` sebagai `1M`.  Kamu juga dapat menentukan sufiks notasi biner; angka 2048 dapat ditulis sebagai `2Ki`.
+Misalnya, angka `1,5` direpresentasikan sebagai `1500m`, sedangkan angka `1000` dapat direpresentasikan sebagai `1k`, dan `1000000` sebagai `1M`.  Kamu juga dapat menentukan sufiks notasi biner; angka 2048 dapat ditulis sebagai `2Ki`.
 
 Satuan desimal yang diterima (pangkat 10) adalah `m` (mili), `k` (kilo, sengaja huruf kecil), `M` (mega), `G` (giga), `T` (tera), `P` (peta), `E` (exa).
 
diff --git a/content/id/docs/reference/setup-tools/kubeadm/_index.md b/content/id/docs/reference/setup-tools/kubeadm/_index.md
index 25fbca1cca..979c9cc1a7 100644
--- a/content/id/docs/reference/setup-tools/kubeadm/_index.md
+++ b/content/id/docs/reference/setup-tools/kubeadm/_index.md
@@ -8,7 +8,7 @@ card:
   weight: 40
 ---
 
-<img src="/images/kubeadm-stacked-color.png" align="right" width="150px">Kubeadm adalah fitur yang dibuat untuk menyediakan `kubeadm init` dan` kubeadm join` sebagai praktik terbaik dengan "jalur cepat" untuk membuat klaster Kubernetes.
+<img src="/images/kubeadm-stacked-color.png" align="right" width="150px">Kubeadm adalah fitur yang dibuat untuk menyediakan `kubeadm init` dan `kubeadm join` sebagai praktik terbaik dengan "jalur cepat" untuk membuat klaster Kubernetes.
 
 kubeadm melakukan tindakan yang diperlukan untuk membuat klaster minimum yang layak untuk aktif dan berjalan. Secara desain, ini hanya memperdulikan tentang *bootstrap*, bukan tentang mesin *provisioning*. Demikian pula, dengan instalasi berbagai *addon* atau tambahan yang bagus untuk dimiliki, seperti Dasbor Kubernetes, solusi pemantauan, dan tambahan khusus cloud, tidak termasuk dalam cakupan.
 
diff --git a/content/id/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md b/content/id/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md
index fa474e82f9..87bec4751f 100644
--- a/content/id/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md
+++ b/content/id/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md
@@ -233,7 +233,7 @@ curl -L "https://github.com/containernetworking/plugins/releases/download/${CNI_
 Menginstal crictl (dibutuhkan untuk kubeadm / Kubelet Container Runtime Interface (CRI))
 
 ```bash
-CRICTL_VERSION="v1.17.0"
+CRICTL_VERSION="v1.22.0"
 ARCH="amd64"
 mkdir -p /opt/bin
 curl -L "https://github.com/kubernetes-sigs/cri-tools/releases/download/${CRICTL_VERSION}/crictl-${CRICTL_VERSION}-linux-${ARCH}.tar.gz" | sudo tar -C $DOWNLOAD_DIR -xz
diff --git a/content/id/docs/tasks/access-application-cluster/access-cluster.md b/content/id/docs/tasks/access-application-cluster/access-cluster.md
index 6a575ad8f1..bba413951c 100644
--- a/content/id/docs/tasks/access-application-cluster/access-cluster.md
+++ b/content/id/docs/tasks/access-application-cluster/access-cluster.md
@@ -207,7 +207,7 @@ Dalam banyak kasus, IP Node, IP Pod, dan beberapa IP Service pada sebuah klaster
 Kamu memiliki beberapa opsi untuk menghubungi Node, Pod, dan Service dari luar klaster:
 
   - Mengakses Service melalui IP publik.
-    - Gunakan Service dengan tipe `NodePort` atau` LoadBalancer` untuk membuat Service dapat dijangkau di luar klaster. Lihat dokumentasi [Service](/docs/user-guide/services) dan perintah [kubectl expose](/docs/reference/generated/kubectl/kubectl-commands/#expose).
+    - Gunakan Service dengan tipe `NodePort` atau `LoadBalancer` untuk membuat Service dapat dijangkau di luar klaster. Lihat dokumentasi [Service](/docs/user-guide/services) dan perintah [kubectl expose](/docs/reference/generated/kubectl/kubectl-commands/#expose).
     - Bergantung pada lingkungan klaster kamu, hal ini mungkin hanya mengekspos Service ke jaringan perusahaan kamu, atau mungkin mengeksposnya ke internet. Pikirkan apakah Service yang diekspos aman atau tidak. Apakah layanan di balik Service tersebut melakukan autentikasinya sendiri?
     - Tempatkan Pod di belakang Service. Untuk mengakses satu Pod tertentu dari sekumpulan replika, misalnya untuk pengawakutuan (_debugging_), letakkan label unik di Pod dan buat Service baru yang memilih label ini.
     - Pada kebanyakan kasus, pengembang aplikasi tidak perlu langsung mengakses Node melalui IP Node mereka.
diff --git a/content/id/docs/tasks/access-application-cluster/list-all-running-container-images.md b/content/id/docs/tasks/access-application-cluster/list-all-running-container-images.md
index 86a6b267e2..a5e368b4a2 100644
--- a/content/id/docs/tasks/access-application-cluster/list-all-running-container-images.md
+++ b/content/id/docs/tasks/access-application-cluster/list-all-running-container-images.md
@@ -76,7 +76,7 @@ Format dapat dikontrol lebih lanjut dengan menggunakan operasi `range` untuk
 melakukan iterasi untuk setiap elemen secara individual.
 
 ```sh
-kubectl get pods --all-namespaces -o=jsonpath='{range .items[*]}{"\n"}{.metadata.name}{":\t"}{range .spec.containers[*]}{.image}{", "}{end}{end}' |\
+kubectl get pods --all-namespaces -o jsonpath='{range .items[*]}{"\n"}{.metadata.name}{":\t"}{range .spec.containers[*]}{.image}{", "}{end}{end}' |\
 sort
 ```
 
@@ -86,7 +86,7 @@ Untuk menargetkan hanya Pod yang cocok dengan label tertentu saja, gunakan tanda
 dibawah ini akan menghasilkan Pod dengan label yang cocok dengan `app=nginx`.
 
 ```sh
-kubectl get pods --all-namespaces -o=jsonpath="{.items[*].spec.containers[*].image}" -l app=nginx
+kubectl get pods --all-namespaces -o jsonpath="{.items[*].spec.containers[*].image}" -l app=nginx
 ```
 
 ## Membuat daftar _image_ Container yang difilter berdasarkan Namespace Pod
diff --git a/content/id/docs/tasks/administer-cluster/dns-debugging-resolution.md b/content/id/docs/tasks/administer-cluster/dns-debugging-resolution.md
index aeeeab1001..67b451db52 100644
--- a/content/id/docs/tasks/administer-cluster/dns-debugging-resolution.md
+++ b/content/id/docs/tasks/administer-cluster/dns-debugging-resolution.md
@@ -160,7 +160,7 @@ Nama layanan adalah `kube-dns` baik untuk CoreDNS maupun kube-dns.
 {{< /note >}}
 
 Jika kamu telah membuat Service atau seharusnya Service telah dibuat secara bawaan namun ternyata tidak muncul, lihat
-[_debugging_ Service](/docs/tasks/debug-application-cluster/debug-service/) untuk informasi lebih lanjut.
+[_debugging_ Service](/docs/tasks/debug/debug-application/debug-service/) untuk informasi lebih lanjut.
 
 ### Apakah endpoint DNS telah ekspos?
 
@@ -175,7 +175,7 @@ kube-dns   10.180.3.17:53,10.180.3.17:53    1h
 ```
 
 Jika kamu tidak melihat _endpoint_, lihat bagian _endpoint_ pada dokumentasi
-[_debugging_ Service](/docs/tasks/debug-application-cluster/debug-service/).
+[_debugging_ Service](/docs/tasks/debug/debug-application/debug-service/).
 
 Untuk tambahan contoh Kubernetes DNS, lihat
 [contoh cluster-dns](https://github.com/kubernetes/examples/tree/master/staging/cluster-dns) pada repositori Kubernetes GitHub.
diff --git a/content/id/docs/tasks/administer-cluster/reserve-compute-resources.md b/content/id/docs/tasks/administer-cluster/reserve-compute-resources.md
index e1ac7b035e..1462a6c87d 100644
--- a/content/id/docs/tasks/administer-cluster/reserve-compute-resources.md
+++ b/content/id/docs/tasks/administer-cluster/reserve-compute-resources.md
@@ -104,7 +104,7 @@ Ini dilakukan dengan menspesifikasikan _parent_ cgroup sebagai nilai dari _flag_
 Kami merekomendasikan _daemon_ sistem Kubernetes untuk ditempatkan pada
 tingkatan cgroup yang tertinggi (contohnya, `runtime.slice` pada mesin systemd).
 Secara ideal, setiap _daemon_ sistem sebaiknya dijalankan pada _child_ cgroup
-di bawah _parent_ ini. Lihat [dokumentasi](https://git.k8s.io/community/contributors/design-proposals/node/node-allocatable.md#recommended-cgroups-setup)
+di bawah _parent_ ini. Lihat [dokumentasi](https://git.k8s.io/design-proposals-archive/node/node-allocatable.md#recommended-cgroups-setup)
 untuk mengetahui rekomendasi hierarki cgroup secara detail.
 
 Catatan: kubelet **tidak membuat** `--kube-reserved-cgroup` jika cgroup
diff --git a/content/id/docs/tasks/administer-cluster/sysctl-cluster.md b/content/id/docs/tasks/administer-cluster/sysctl-cluster.md
index 7120f087fa..42acb5d0f5 100644
--- a/content/id/docs/tasks/administer-cluster/sysctl-cluster.md
+++ b/content/id/docs/tasks/administer-cluster/sysctl-cluster.md
@@ -55,7 +55,8 @@ Sysctl berikut ini didukung dalam kelompok _safe_:
 - `kernel.shm_rmid_forced`,
 - `net.ipv4.ip_local_port_range`,
 - `net.ipv4.tcp_syncookies`,
-- `net.ipv4.ping_group_range` (sejak Kubernetes 1.18).
+- `net.ipv4.ping_group_range` (sejak Kubernetes 1.18),
+- `net.ipv4.ip_unprivileged_port_start` (sejak Kubernetes 1.22).
 
 {{< note >}}
 Contoh `net.ipv4.tcp_syncookies` bukan merupakan Namespace pada kernel Linux versi 4.4 atau lebih rendah.
diff --git a/content/id/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md b/content/id/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md
index 934f6178cd..96b08d1aca 100644
--- a/content/id/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md
+++ b/content/id/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md
@@ -59,7 +59,7 @@ kode selain 0, maka kubelet akan mematikan Container dan mengulangnya kembali.
 Saat dimulai, Container akan menjalankan perintah berikut:
 
 ```shell
-/bin/sh -c "touch /tmp/healthy; sleep 30; rm -rf /tmp/healthy; sleep 600"
+/bin/sh -c "touch /tmp/healthy; sleep 30; rm -f /tmp/healthy; sleep 600"
 ```
 
 Container memiliki berkas `/tmp/healthy` pada saat 30 detik pertama setelah dijalankan.
diff --git a/content/id/docs/tasks/configure-pod-container/static-pod.md b/content/id/docs/tasks/configure-pod-container/static-pod.md
index 6088b458db..b13c95608b 100644
--- a/content/id/docs/tasks/configure-pod-container/static-pod.md
+++ b/content/id/docs/tasks/configure-pod-container/static-pod.md
@@ -33,7 +33,7 @@ sebuah {{< glossary_tooltip text="DaemonSet" term_id="daemonset" >}}.
 
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
-Laman ini mengasumsikan kamu menggunakan {{< glossary_tooltip term_id="docker" >}}
+Laman ini mengasumsikan kamu menggunakan {{< glossary_tooltip term_id="cri-o" >}}
 untuk menjalankan Pod, dan Node kamu berjalan menggunakan sistem operasi Fedora.
 Instruksi untuk distribusi lain atau instalasi Kubernetes mungkin berbeda.
 
@@ -90,23 +90,23 @@ Sebagai contoh, ini cara untuk memulai server web sederhana sebagai Pod statis:
 
 3. Atur kubelet pada Node untuk menggunakan direktori ini dengan menjalankannya menggunakan argumen `--pod-manifest-path=/etc/kubelet.d/`. Pada Fedora, ubah berkas `/etc/kubernetes/kubelet` dengan menambahkan baris berikut:
 
-    ```
-    KUBELET_ARGS="--cluster-dns=10.254.0.10 --cluster-domain=kube.local --pod-manifest-path=/etc/kubelet.d/"
-    ```
-    atau tambahkan _field_ `staticPodPath: <direktori>` pada [berkas konfigurasi kubelet](/docs/tasks/administer-cluster/kubelet-config-file).
+   ```
+   KUBELET_ARGS="--cluster-dns=10.254.0.10 --cluster-domain=kube.local --pod-manifest-path=/etc/kubelet.d/"
+   ```
+   atau tambahkan _field_ `staticPodPath: <direktori>` pada [berkas konfigurasi kubelet](/docs/tasks/administer-cluster/kubelet-config-file).
 
 4. Jalankan ulang kubelet. Pada Fedora, kamu dapat menjalankan:
 
-    ```shell
-    # Jalankan perintah berikut pada Node tempat kubelet berjalan
-    systemctl restart kubelet
-    ```
+   ```shell
+   # Jalankan perintah berikut pada Node tempat kubelet berjalan
+   systemctl restart kubelet
+   ```
 
 ### Manifes Pod statis pada Web {#konfigurasi-melalui-http}
 
 Berkas yang ditentukan pada argumen `--manifest-url=<URL>` akan diunduh oleh kubelet secara berkala
 dan kubelet akan menginterpretasinya sebagai sebuah berkas JSON/YAML yang berisikan definisi Pod.
-Mirip dengan cara kerja [manifes pada _filesystem_](##konfigurasi-melalui-berkas-sistem),
+Mirip dengan cara kerja [manifes pada _filesystem_](#konfigurasi-melalui-berkas-sistem),
 kubelet akan mengambil manifes berdasarkan jadwal. Jika ada perubahan pada daftar
 Pod statis, maka kubelet akan menerapkannya.
 
@@ -153,12 +153,12 @@ akan dijalankan.
 Kamu dapat melihat Container yang berjalan (termasuk Pod statis) dengan menjalankan (pada Node):
 ```shell
 # Jalankan perintah ini pada Node tempat kubelet berjalan
-docker ps
+crictl ps
 ```
 
 Keluarannya kira-kira seperti berikut:
 
-```
+```console
 CONTAINER ID IMAGE         COMMAND  CREATED        STATUS         PORTS     NAMES
 f6d05272b57e nginx:latest  "nginx"  8 minutes ago  Up 8 minutes             k8s_web.6f802af4_static-web-fk-node1_default_67e24ed9466ba55986d120c867395f3c_378e5f3c
 ```
@@ -169,8 +169,8 @@ Kamu dapat melihat Pod _mirror_ tersebut pada API server:
 kubectl get pods
 ```
 ```
-NAME                       READY     STATUS    RESTARTS   AGE
-static-web-my-node1        1/1       Running   0          2m
+NAME         READY   STATUS    RESTARTS        AGE
+static-web   1/1     Running   0               2m
 ```
 
 {{< note >}}
@@ -189,18 +189,18 @@ Kamu dapat mencoba untuk menggunakan kubelet untuk menghapus Pod _mirror_ terseb
 namun kubelet tidak akan menghapus Pod statis:
 
 ```shell
-kubectl delete pod static-web-my-node1
+kubectl delete pod static-web
 ```
 ```
-pod "static-web-my-node1" deleted
+pod "static-web" deleted
 ```
 Kamu akan melihat bahwa Pod tersebut tetap berjalan:
 ```shell
 kubectl get pods
 ```
 ```
-NAME                       READY     STATUS    RESTARTS   AGE
-static-web-my-node1        1/1       Running   0          12s
+NAME         READY   STATUS    RESTARTS   AGE
+static-web   1/1     Running   0          4s
 ```
 
 Kembali ke Node tempat kubelet berjalan, kamu dapat mencoba menghentikan Container
@@ -210,13 +210,13 @@ secara otomatis:
 
 ```shell
 # Jalankan perintah ini pada Node tempat kubelet berjalan
-docker stop f6d05272b57e # ganti dengan ID pada Container-mu
+crictl stop 129fd7d382018 # ganti dengan ID pada Container-mu
 sleep 20
-docker ps
+crictl ps
 ```
-```
-CONTAINER ID        IMAGE         COMMAND                CREATED       ...
-5b920cbaf8b1        nginx:latest  "nginx -g 'daemon of   2 seconds ago ...
+```console
+CONTAINER       IMAGE                                 CREATED           STATE      NAME    ATTEMPT    POD ID
+89db4553e1eeb   docker.io/library/nginx@sha256:...    19 seconds ago    Running    web     1          34533c6729106
 ```
 
 ## Penambahan dan pengurangan secara dinamis pada Pod statis
@@ -231,13 +231,13 @@ Pod sesuai dengan penambahan/pengurangan berkas pada direktori tersebut.
 #
 mv /etc/kubelet.d/static-web.yaml /tmp
 sleep 20
-docker ps
+crictl ps
 # Kamu mendapatkan bahwa tidak ada Container nginx yang berjalan
 mv /tmp/static-web.yaml  /etc/kubelet.d/
 sleep 20
-docker ps
+crictl ps
 ```
-```
-CONTAINER ID        IMAGE         COMMAND                CREATED           ...
-e7a62e3427f1        nginx:latest  "nginx -g 'daemon of   27 seconds ago
+```console
+CONTAINER       IMAGE                                 CREATED           STATE      NAME    ATTEMPT    POD ID
+f427638871c35   docker.io/library/nginx@sha256:...    19 seconds ago    Running    web     1          34533c6729106
 ```
diff --git a/content/id/docs/tasks/debug-application-cluster/debug-application-introspection.md b/content/id/docs/tasks/debug-application-cluster/debug-application-introspection.md
index 96b7a05e07..746c46f045 100644
--- a/content/id/docs/tasks/debug-application-cluster/debug-application-introspection.md
+++ b/content/id/docs/tasks/debug-application-cluster/debug-application-introspection.md
@@ -268,7 +268,7 @@ status:
 
 ## Contoh: Men-_debug_ Node yang mati/tidak terjangkau (_down/unreachable_)
 
-Terkadang saat men-_debug_ melihat status sebuah Node akan sangat berguna - misalnya, karena kamu telah melihat perilaku aneh dari sebuah Pod yang sedang berjalan pada Node tersebut, atau untuk mencari tahu mengapa sebuah Pod tidak dapat dijadwalkan ke dalam Node tersebut. Seperti pada Pod, kamu dapat menggunakan perintah `kubectl description node` dan` kubectl get node -o yaml` untuk mengambil informasi mendetil tentang Node. Misalnya, disini kamu akan melihat jika sebuah Node sedang mati (terputus dari jaringan, atau kubelet mati dan tidak mau restart, dll.). Perhatikan peristiwa yang menunjukkan Node tersebut NotReady, dan juga perhatikan bahwa Pod tidak lagi berjalan (mereka akan dikeluarkan setelah lima menit berstatus NotReady).
+Terkadang saat men-_debug_ melihat status sebuah Node akan sangat berguna - misalnya, karena kamu telah melihat perilaku aneh dari sebuah Pod yang sedang berjalan pada Node tersebut, atau untuk mencari tahu mengapa sebuah Pod tidak dapat dijadwalkan ke dalam Node tersebut. Seperti pada Pod, kamu dapat menggunakan perintah `kubectl description node` dan `kubectl get node -o yaml` untuk mengambil informasi mendetil tentang Node. Misalnya, disini kamu akan melihat jika sebuah Node sedang mati (terputus dari jaringan, atau kubelet mati dan tidak mau restart, dll.). Perhatikan peristiwa yang menunjukkan Node tersebut NotReady, dan juga perhatikan bahwa Pod tidak lagi berjalan (mereka akan dikeluarkan setelah lima menit berstatus NotReady).
 
 ```shell
 kubectl get nodes
diff --git a/content/id/docs/tasks/manage-kubernetes-objects/kustomization.md b/content/id/docs/tasks/manage-kubernetes-objects/kustomization.md
index 2ca6535d90..7cca240991 100644
--- a/content/id/docs/tasks/manage-kubernetes-objects/kustomization.md
+++ b/content/id/docs/tasks/manage-kubernetes-objects/kustomization.md
@@ -80,10 +80,10 @@ Isinya seperti di bawah ini:
 apiVersion: v1
 data:
   application.properties: |
-    FOO=Bar
+    FOO: Bar
 kind: ConfigMap
 metadata:
-  name: example-configmap-1-8mbdf7882g
+  name: example-configmap-1-42cfbf598f
 ```
 
 ConfigMap juga dapat dibangkitkan dari pasangan _key-value_ literal. Untuk membangkitkan secara literal, tambahkan entri pada daftar `literals` di `configMapGenerator`.
diff --git a/content/id/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough.md b/content/id/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough.md
index 442e3178ec..7a23efa6ff 100644
--- a/content/id/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough.md
+++ b/content/id/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough.md
@@ -426,7 +426,7 @@ pengambilan metrik. Terakhir, kondisi terakhir, `ScalingLimited`, menunjukkan ba
 
 ## Lampiran: Kuantitas
 
-Semua metrik di HorizontalPodAutoscaler dan metrik API ditentukan menggunakan notasi bilangan bulat khusus yang dikenal di Kubernetes sebagai {{< glossary_tooltip term_id="quantity" text="kuantitas">}}. Misalnya, kuantitas `10500m` akan ditulis sebagai `10.5` dalam notasi desimal. Metrik API akan menampilkan bilangan bulat tanpa sufiks jika memungkinkan, dan secara umum akan mengembalikan kuantitas dalam satuan mili. Ini berarti kamu mungkin melihat nilai metrik berfluktuasi antara `1` dan `1500m`, atau `1` dan` 1,5` ketika ditulis dalam notasi desimal.
+Semua metrik di HorizontalPodAutoscaler dan metrik API ditentukan menggunakan notasi bilangan bulat khusus yang dikenal di Kubernetes sebagai {{< glossary_tooltip term_id="quantity" text="kuantitas">}}. Misalnya, kuantitas `10500m` akan ditulis sebagai `10.5` dalam notasi desimal. Metrik API akan menampilkan bilangan bulat tanpa sufiks jika memungkinkan, dan secara umum akan mengembalikan kuantitas dalam satuan mili. Ini berarti kamu mungkin melihat nilai metrik berfluktuasi antara `1` dan `1500m`, atau `1` dan `1,5` ketika ditulis dalam notasi desimal.
 
 ## Lampiran: Skenario lain yang memungkinkan
 
diff --git a/content/id/docs/tasks/run-application/horizontal-pod-autoscale.md b/content/id/docs/tasks/run-application/horizontal-pod-autoscale.md
index cd82ded0b1..c9b74657ba 100644
--- a/content/id/docs/tasks/run-application/horizontal-pod-autoscale.md
+++ b/content/id/docs/tasks/run-application/horizontal-pod-autoscale.md
@@ -281,9 +281,9 @@ mengakses API ini, administrator klaster harus memastikan bahwa:
   `false` untuk mengubah ke *autoscaling* berdasarkan Heapster, dimana ini sudah tidak didukung lagi.
 
 Untuk informasi lebih lanjut mengenai metrik-metrik ini dan bagaimana perbedaan setiap metrik, perhatikan proposal
-desain untuk [HPA V2](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/autoscaling/hpa-v2.md),
-[custom.metrics.k8s.io](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/instrumentation/custom-metrics-api.md)
-dan [external.metrics.k8s.io](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/instrumentation/external-metrics-api.md).
+desain untuk [HPA V2](https://github.com/kubernetes/design-proposals-archive/blob/main/autoscaling/hpa-v2.md),
+[custom.metrics.k8s.io](https://github.com/kubernetes/design-proposals-archive/blob/main/instrumentation/custom-metrics-api.md)
+dan [external.metrics.k8s.io](https://github.com/kubernetes/design-proposals-archive/blob/main/instrumentation/external-metrics-api.md).
 
 Untuk contoh bagaimana menggunakan metrik-metrik ini, perhatikan [panduan penggunaan metrik khusus](/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/#autoscaling-on-multiple-metrics-and-custom-metrics)
 dan [panduan penggunaan metrik eksternal](/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/#autoscaling-on-metrics-not-related-to-kubernetes-objects).
diff --git a/content/id/docs/tasks/tools/install-kubectl.md b/content/id/docs/tasks/tools/install-kubectl.md
index bc112c3cdd..ce214ed799 100644
--- a/content/id/docs/tasks/tools/install-kubectl.md
+++ b/content/id/docs/tasks/tools/install-kubectl.md
@@ -472,7 +472,7 @@ Jika kamu menggunakan alias untuk `kubectl`, kamu masih dapat menggunakan fitur
 
 ```shell
 echo 'alias k=kubectl' >>~/.zshrc
-echo 'complete -F __start_kubectl k' >>~/.zshrc
+echo 'compdef __start_kubectl k' >>~/.zshrc
 ```
 
 Setelah memuat ulang terminal, penyelesaian otomatis dari `kubectl` seharusnya sudah dapat bekerja.
diff --git a/content/id/docs/tutorials/_index.md b/content/id/docs/tutorials/_index.md
index 9f3ec5afb3..041b7b62d2 100644
--- a/content/id/docs/tutorials/_index.md
+++ b/content/id/docs/tutorials/_index.md
@@ -50,6 +50,8 @@ Sebelum melangkah lebih lanjut ke tutorial, sebaiknya tandai dulu halaman [Kamus
 
 * [AppArmor](/docs/tutorials/clusters/apparmor/)
 
+* [seccomp](/docs/tutorials/clusters/seccomp/)
+
 ## Servis
 
 * [Menggunakan Source IP](/docs/tutorials/services/source-ip/)
diff --git a/content/id/docs/tutorials/kubernetes-basics/explore/explore-intro.html b/content/id/docs/tutorials/kubernetes-basics/explore/explore-intro.html
index a6381b3275..1b3b494b1a 100644
--- a/content/id/docs/tutorials/kubernetes-basics/explore/explore-intro.html
+++ b/content/id/docs/tutorials/kubernetes-basics/explore/explore-intro.html
@@ -76,9 +76,9 @@ weight: 10
                 <h2>Node</h2>
                 <p>Sebuah Pod selalu berjalan dalam sebuah <b>Node</b>. Node merupakan sebuah mesin pekerja (<i>worker</i>) di Kubernetes dan mungkin merupakan mesin virtual ataupun fisik, tergantung dari klaster. Tiap Node dikelola oleh control plane. Satu Node dapat memiliki beberapa Pod, dan control plane Kubernetes yang otomatis menangani penjadwalan pod seluruh Node-Node dalam klaster. Penjadwalan otomatis oleh control plane memperhitungkan tersedianya sumber daya tiap Node.</p>
 
-                <p>Tiap Node Kuberbetes menjalankan setidaknya:</p>
+                <p>Tiap Node Kubernetes menjalankan setidaknya:</p>
                 <ul>
-                    <li>Kubelet, satu proses yang bertanggung jawab untuk berkomunikasi antara control plane Kuberneter dan Node; ini juga mengelola Pod-Pod dan kontainer-kontainer yang berjalan di sebuah mesin.</li>
+                    <li>Kubelet, satu proses yang bertanggung jawab untuk berkomunikasi antara control plane Kubernetes dan Node; ini juga mengelola Pod-Pod dan kontainer-kontainer yang berjalan di sebuah mesin.</li>
                     <li>Satu <i>container runtime</i>, seperti Docker, bertanggung jawab untuk menarik <i>image</i> kontainer dari register, membuka kontainer, dan menjalankan aplikasi.</li>
                 </ul>
 
diff --git a/content/id/examples/admin/dns/dnsutils.yaml b/content/id/examples/admin/dns/dnsutils.yaml
index 9192bf3502..5be0791c03 100644
--- a/content/id/examples/admin/dns/dnsutils.yaml
+++ b/content/id/examples/admin/dns/dnsutils.yaml
@@ -6,7 +6,7 @@ metadata:
 spec:
   containers:
   - name: dnsutils
-    image: gcr.io/kubernetes-e2e-test-images/dnsutils:1.3
+    image: k8s.gcr.io/e2e-test-images/jessie-dnsutils:1.3
     command:
       - sleep
       - "3600"
diff --git a/content/id/examples/admin/logging/two-files-counter-pod-streaming-sidecar.yaml b/content/id/examples/admin/logging/two-files-counter-pod-streaming-sidecar.yaml
index 87bd198cfd..ac19efe4a2 100644
--- a/content/id/examples/admin/logging/two-files-counter-pod-streaming-sidecar.yaml
+++ b/content/id/examples/admin/logging/two-files-counter-pod-streaming-sidecar.yaml
@@ -5,7 +5,7 @@ metadata:
 spec:
   containers:
   - name: count
-    image: busybox
+    image: busybox:1.28
     args:
     - /bin/sh
     - -c
@@ -22,14 +22,14 @@ spec:
     - name: varlog
       mountPath: /var/log
   - name: count-log-1
-    image: busybox
-    args: [/bin/sh, -c, 'tail -n+1 -f /var/log/1.log']
+    image: busybox:1.28
+    args: [/bin/sh, -c, 'tail -n+1 -F /var/log/1.log']
     volumeMounts:
     - name: varlog
       mountPath: /var/log
   - name: count-log-2
-    image: busybox
-    args: [/bin/sh, -c, 'tail -n+1 -f /var/log/2.log']
+    image: busybox:1.28
+    args: [/bin/sh, -c, 'tail -n+1 -F /var/log/2.log']
     volumeMounts:
     - name: varlog
       mountPath: /var/log
diff --git a/content/id/examples/application/job/cronjob.yaml b/content/id/examples/application/job/cronjob.yaml
index 34ab2a3f06..5691950410 100644
--- a/content/id/examples/application/job/cronjob.yaml
+++ b/content/id/examples/application/job/cronjob.yaml
@@ -3,7 +3,7 @@ kind: CronJob
 metadata:
   name: hello
 spec:
-  schedule: "*/1 * * * *"
+  schedule: "* * * * *"
   jobTemplate:
     spec:
       template:
diff --git a/content/id/examples/pods/probe/exec-liveness.yaml b/content/id/examples/pods/probe/exec-liveness.yaml
index 07bf75f85c..6a9c9b3213 100644
--- a/content/id/examples/pods/probe/exec-liveness.yaml
+++ b/content/id/examples/pods/probe/exec-liveness.yaml
@@ -11,7 +11,7 @@ spec:
     args:
     - /bin/sh
     - -c
-    - touch /tmp/healthy; sleep 30; rm -rf /tmp/healthy; sleep 600
+    - touch /tmp/healthy; sleep 30; rm -f /tmp/healthy; sleep 600
     livenessProbe:
       exec:
         command:
diff --git a/content/it/_index.html b/content/it/_index.html
index 1e5191a982..23f7b881eb 100644
--- a/content/it/_index.html
+++ b/content/it/_index.html
@@ -41,12 +41,12 @@ Kubernetes è open source, e ti offre la libertà di spostare i tuoi carichi di
         <button id="desktopShowVideoButton" onclick="kub.showVideo()">Guarda il Video</button>
         <br>
         <br>
-        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccnceu20" button id="desktopKCButton">Partecipa alla KubeCon ad Amsterdam (13-16 Agosto 2020)</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccnceu22" button id="desktopKCButton">Partecipa alla KubeCon a Valencia, Spagna + Virtual (16-20 maggio 2022)</a>
         <br>
         <br>
         <br>
         <br>
-        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccncna20" button id="desktopKCButton">Partecipa alla KubeCon a Boston (17-20 Novembre 2020)</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccncna22" button id="desktopKCButton">Partecipa al KubeCon a Detroit, Michigan (24-28 ottobre 2022)</a>
 </div>
 <div id="videoPlayer">
     <iframe data-url="https://www.youtube.com/embed/H06qrNmGqyE?autoplay=1" frameborder="0" allowfullscreen></iframe>
diff --git a/content/it/docs/concepts/architecture/nodes.md b/content/it/docs/concepts/architecture/nodes.md
index c3c58be9d4..8bb62bb297 100644
--- a/content/it/docs/concepts/architecture/nodes.md
+++ b/content/it/docs/concepts/architecture/nodes.md
@@ -41,13 +41,13 @@ L'utilizzo di questi campi varia a seconda del provider cloud o della configuraz
 
 ### Condition
 
-l campo `conditions` descrive lo stato di tutti i nodi` Running`.
+l campo `conditions` descrive lo stato di tutti i nodi `Running`.
 
 
 | Condizione del nodo | Descrizione |
 | ---------------- | ------------- |
 | `OutOfDisk` | `True` se lo spazio disponibile sul nodo non è sufficiente per aggiungere nuovi pod, altrimenti` False` |
-| `Pronto` | `True` se il nodo è integro e pronto ad accettare i pod,` False` se il nodo non è integro e non accetta i pod e `Sconosciuto` se il controller del nodo non è stato ascoltato dal nodo nell'ultimo` nodo-monitor -grace-periodo` (il valore predefinito è 40 secondi) |
+| `Pronto` | `True` se il nodo è integro e pronto ad accettare i pod, `False` se il nodo non è integro e non accetta i pod e `Sconosciuto` se il controller del nodo non è stato ascoltato dal nodo nell'ultimo` nodo-monitor -grace-periodo` (il valore predefinito è 40 secondi) |
 | `MemoryPressure` | `Vero` se la pressione esiste sulla memoria del nodo, ovvero se la memoria del nodo è bassa; altrimenti `False` |
     | `PIDPressure` | `True` se la pressione esiste sui processi, ovvero se ci sono troppi processi sul nodo; altrimenti `False` |
 | `DiskPressure` | `True` se esiste una pressione sulla dimensione del disco, ovvero se la capacità del disco è bassa; altrimenti `False` |
@@ -64,12 +64,12 @@ La condizione del nodo è rappresentata come un oggetto JSON. Ad esempio, la seg
 ]
 ```
 
-Se lo stato della condizione Ready rimane `Unknown` o` False` per un tempo superiore a `pod-eviction-timeout`, viene passato un argomento al [gestore-kube-controller](/docs/admin/kube-controller-manager/) e tutti i pod sul nodo sono programmati per la cancellazione dal controller del nodo. La durata predefinita del timeout di sfratto è di ** cinque minuti **. In alcuni casi, quando il nodo non è raggiungibile, l'apiserver non è in grado di comunicare con kubelet sul nodo. La decisione di eliminare i pod non può essere comunicata al kubelet fino a quando non viene ristabilita la comunicazione con l'apiserver. Nel frattempo, i pod che sono programmati per la cancellazione possono continuare a funzionare sul nodo partizionato.
+Se lo stato della condizione Ready rimane `Unknown` o `False` per un tempo superiore a `pod-eviction-timeout`, viene passato un argomento al [gestore-kube-controller](/docs/admin/kube-controller-manager/) e tutti i pod sul nodo sono programmati per la cancellazione dal controller del nodo. La durata predefinita del timeout di sfratto è di ** cinque minuti **. In alcuni casi, quando il nodo non è raggiungibile, l'apiserver non è in grado di comunicare con kubelet sul nodo. La decisione di eliminare i pod non può essere comunicata al kubelet fino a quando non viene ristabilita la comunicazione con l'apiserver. Nel frattempo, i pod che sono programmati per la cancellazione possono continuare a funzionare sul nodo partizionato.
 
 Nelle versioni di Kubernetes precedenti alla 1.5, il controllore del nodo [forzerebbe la cancellazione](/docs/concepts/workloads/pods/pod/#force-deletion-of-pods)
 questi pod non raggiungibili dall'apiserver. Tuttavia, in 1.5 e versioni successive, il controller del nodo non impone l'eliminazione dei pod finché non lo è
 confermato che hanno smesso di funzionare nel cluster. Puoi vedere i pod che potrebbero essere in esecuzione su un nodo irraggiungibile
-lo stato `Terminating` o` Unknown`. Nei casi in cui Kubernetes non può dedurre dall'infrastruttura sottostante se ha un nodo
+lo stato `Terminating` o `Unknown`. Nei casi in cui Kubernetes non può dedurre dall'infrastruttura sottostante se ha un nodo
 lasciato permanentemente un cluster, potrebbe essere necessario che l'amministratore del cluster elimini manualmente l'oggetto nodo. Cancellare l'oggetto nodo da
 Kubernetes fa sì che tutti gli oggetti Pod in esecuzione sul nodo vengano eliminati dal server apis e libera i loro nomi.
 
@@ -227,7 +227,7 @@ Per l'autoregistrazione, il kubelet viene avviato con le seguenti opzioni:
   - `--kubeconfig` - Percorso delle credenziali per autenticarsi sull'apiserver.
   - `--cloud-provider` - Come parlare con un provider cloud per leggere i metadati su se stesso.
   - `--register-node` - Si registra automaticamente con il server API.
-  - `--register-with-taints` - Registra il nodo con la lista data di taints (separati da virgola` <chiave> = <valore>: <effetto> `). No-op se `register-node` è falso.
+  - `--register-with-taints` - Registra il nodo con la lista data di taints (separati da virgola `<chiave> = <valore>: <effetto>`). No-op se `register-node` è falso.
   - `--node-ip` - Indirizzo IP del nodo.
   - `--node-labels` - Etichette da aggiungere quando si registra il nodo nel cluster (vedere le restrizioni dell'etichetta applicate dal [plugin di accesso NodeRestriction](/docs/reference/access-authn-authz/admission-controller/#noderestriction) in 1.13+).
   - `--node-status-update-frequency` - Specifica la frequenza con cui kubelet invia lo stato del nodo al master
diff --git a/content/it/docs/concepts/cluster-administration/addons.md b/content/it/docs/concepts/cluster-administration/addons.md
index 8bd3c154af..782ce4ecfa 100644
--- a/content/it/docs/concepts/cluster-administration/addons.md
+++ b/content/it/docs/concepts/cluster-administration/addons.md
@@ -22,16 +22,16 @@ I componenti aggiuntivi in ogni sezione sono ordinati alfabeticamente - l'ordine
 
 * [ACI](https://www.github.com/noironetworks/aci-containers) fornisce funzionalità integrate di networking e sicurezza di rete con Cisco ACI.
 * [Calico](https://docs.projectcalico.org/latest/getting-started/kubernetes/) è un provider di sicurezza e rete L3 sicuro.
-* [Canal](https://github.com/tigera/canal/tree/master/k8s-install) unisce Flannel e Calico, fornendo i criteri di rete e di rete.
+* [Canal](https://projectcalico.docs.tigera.io/getting-started/kubernetes/flannel/flannel) unisce Flannel e Calico, fornendo i criteri di rete e di rete.
 * [Cilium](https://github.com/cilium/cilium) è un plug-in di criteri di rete e di rete L3 in grado di applicare in modo trasparente le politiche HTTP / API / L7. Sono supportate entrambe le modalità di routing e overlay / incapsulamento.
-* [CNI-Genie](https://github.com/Huawei-PaaS/CNI-Genie) consente a Kubernetes di connettersi senza problemi a una scelta di plugin CNI, come Calico, Canal, Flannel, Romana o Weave.
-* [Contiv](http://contiv.github.io) offre networking configurabile (L3 nativo con BGP, overlay con vxlan, L2 classico e Cisco-SDN / ACI) per vari casi d'uso e un ricco framework di policy. Il progetto Contiv è completamente [open source](http://github.com/contiv). Il [programma di installazione](http://github.com/contiv/install) fornisce sia opzioni di installazione basate su kubeadm che non su Kubeadm.
+* [CNI-Genie](https://github.com/cni-genie/CNI-Genie) consente a Kubernetes di connettersi senza problemi a una scelta di plugin CNI, come Calico, Canal, Flannel, Romana o Weave.
+* [Contiv](https://contivpp.io/) offre networking configurabile (L3 nativo con BGP, overlay con vxlan, L2 classico e Cisco-SDN / ACI) per vari casi d'uso e un ricco framework di policy. Il progetto Contiv è completamente [open source](http://github.com/contiv). Il [programma di installazione](http://github.com/contiv/install) fornisce sia opzioni di installazione basate su kubeadm che non su Kubeadm.
 * [Flannel](https://github.com/flannel-io/flannel#deploying-flannel-manually) è un provider di reti sovrapposte che può essere utilizzato con Kubernetes.
 * [Knitter](https://github.com/ZTE/Knitter/) è una soluzione di rete che supporta più reti in Kubernetes.
-* [Multus](https://github.com/Intel-Corp/multus-cni) è un multi-plugin per il supporto di più reti in Kubernetes per supportare tutti i plugin CNI (es. Calico, Cilium, Contiv, Flannel), oltre a SRIOV, DPDK, OVS-DPDK e carichi di lavoro basati su VPP in Kubernetes.
-* [NSX-T](https://docs.vmware.com/en/VMware-NSX-T/2.0/nsxt_20_ncp_kubernetes.pdf) Container Plug-in (NCP) fornisce l'integrazione tra VMware NSX-T e orchestratori di contenitori come Kubernetes, oltre all'integrazione tra NSX-T e piattaforme CaaS / PaaS basate su container come Pivotal Container Service (PKS) e OpenShift.
+* [Multus](https://github.com/k8snetworkplumbingwg/multus-cni) è un multi-plugin per il supporto di più reti in Kubernetes per supportare tutti i plugin CNI (es. Calico, Cilium, Contiv, Flannel), oltre a SRIOV, DPDK, OVS-DPDK e carichi di lavoro basati su VPP in Kubernetes.
+* [NSX-T](https://docs.vmware.com/en/VMware-NSX-T-Data-Center/index.html) Container Plug-in (NCP) fornisce l'integrazione tra VMware NSX-T e orchestratori di contenitori come Kubernetes, oltre all'integrazione tra NSX-T e piattaforme CaaS / PaaS basate su container come Pivotal Container Service (PKS) e OpenShift.
 * [Nuage](https://github.com/nuagenetworks/nuage-kubernetes/blob/v5.1.1/docs/kubernetes-1-installation.rst) è una piattaforma SDN che fornisce una rete basata su policy tra i pod di Kubernetes e non Kubernetes con visibilità e monitoraggio della sicurezza.
-* [Romana](http://romana.io) è una soluzione di rete Layer 3 per pod network che supporta anche [API NetworkPolicy](/docs/concepts/services-networking/network-policies/). Dettagli di installazione del componente aggiuntivo di Kubeadm disponibili [qui](https://github.com/romana/romana/tree/master/containerize).
+* [Romana](https://github.com/romana/romana) è una soluzione di rete Layer 3 per pod network che supporta anche [API NetworkPolicy](/docs/concepts/services-networking/network-policies/). Dettagli di installazione del componente aggiuntivo di Kubeadm disponibili [qui](https://github.com/romana/romana/tree/master/containerize).
 * [Weave Net](https://www.weave.works/docs/net/latest/kube-addon/) fornisce i criteri di rete e di rete, continuerà a funzionare su entrambi i lati di una partizione di rete e non richiede un database esterno.
 
 ## Service Discovery
@@ -48,5 +48,3 @@ I componenti aggiuntivi in ogni sezione sono ordinati alfabeticamente - l'ordine
 qui ci sono molti altri componenti aggiuntivi documentati nella directory deprecata [cluster / addons](https://git.k8s.io/kubernetes/cluster/addons).
 
 Quelli ben mantenuti dovrebbero essere collegati qui.
-
-
diff --git a/content/it/docs/concepts/cluster-administration/certificates.md b/content/it/docs/concepts/cluster-administration/certificates.md
index a05a982ccb..7e938447ba 100644
--- a/content/it/docs/concepts/cluster-administration/certificates.md
+++ b/content/it/docs/concepts/cluster-administration/certificates.md
@@ -9,7 +9,7 @@ weight: 20
 <!-- overview -->
 
 Quando si utilizza l'autenticazione del certificato client, è possibile generare certificati
-manualmente tramite `easyrsa`,` openssl` o `cfssl`.
+manualmente tramite `easyrsa`, `openssl` o `cfssl`.
 
 
 
diff --git a/content/it/docs/concepts/cluster-administration/cloud-providers.md b/content/it/docs/concepts/cluster-administration/cloud-providers.md
index 78e1f38bd2..8c409061e1 100644
--- a/content/it/docs/concepts/cluster-administration/cloud-providers.md
+++ b/content/it/docs/concepts/cluster-administration/cloud-providers.md
@@ -47,7 +47,7 @@ controllerManager:
     mountPath: "/etc/kubernetes/cloud.conf"
 ```
 
-I provider cloud in-tree in genere richiedono sia `--cloud-provider` e` --cloud-config` specificati nelle righe di
+I provider cloud in-tree in genere richiedono sia `--cloud-provider` e `--cloud-config` specificati nelle righe di
 comando per [kube-apiserver](/docs/admin/kube-apiserver/), [kube-controller-manager](/docs/admin/kube-controller-manager/)
 e il [Kubelet](/docs/admin/kubelet/). Anche il contenuto del file specificato in `--cloud-config` per ciascun provider
 è documentato di seguito.
@@ -91,8 +91,8 @@ spec:
 * `service.beta.kubernetes.io / aws-load-balancer-access-log-enabled`: utilizzato sul servizio per abilitare o disabilitare i log di accesso.
 * `service.beta.kubernetes.io / aws-load-balancer-access-log-s3-bucket-name`: usato per specificare il nome del bucket di log degli accessi s3.
 * `service.beta.kubernetes.io / aws-load-balancer-access-log-s3-bucket-prefix`: utilizzato per specificare il prefisso del bucket del registro di accesso s3.
-* `service.beta.kubernetes.io / aws-load-balancer-additional-resource-tags`: utilizzato sul servizio per specificare un elenco separato da virgole di coppie chiave-valore che verranno registrate come tag aggiuntivi nel ELB. Ad esempio: "Key1 = Val1, Key2 = Val2, KeyNoVal1 =, KeyNoVal2" `.
-* `service.beta.kubernetes.io / aws-load-balancer-backend-protocol`: utilizzato sul servizio per specificare il protocollo parlato dal backend (pod) dietro un listener. Se `http` (predefinito) o` https`, viene creato un listener HTTPS che termina la connessione e analizza le intestazioni. Se impostato su `ssl` o` tcp`, viene utilizzato un listener SSL "raw". Se impostato su `http` e` aws-load-balancer-ssl-cert` non viene utilizzato, viene utilizzato un listener HTTP.
+* `service.beta.kubernetes.io / aws-load-balancer-additional-resource-tags`: utilizzato sul servizio per specificare un elenco separato da virgole di coppie chiave-valore che verranno registrate come tag aggiuntivi nel ELB. Ad esempio: `"Key1 = Val1, Key2 = Val2, KeyNoVal1 =, KeyNoVal2"`.
+* `service.beta.kubernetes.io / aws-load-balancer-backend-protocol`: utilizzato sul servizio per specificare il protocollo parlato dal backend (pod) dietro un listener. Se `http` (predefinito) o `https`, viene creato un listener HTTPS che termina la connessione e analizza le intestazioni. Se impostato su `ssl` o `tcp`, viene utilizzato un listener SSL "raw". Se impostato su `http` e `aws-load-balancer-ssl-cert` non viene utilizzato, viene utilizzato un listener HTTP.
 * `service.beta.kubernetes.io / aws-load-balancer-ssl-cert`: utilizzato nel servizio per richiedere un listener sicuro. Il valore è un certificato ARN valido. Per ulteriori informazioni, vedere [ELB Listener Config](http://docs.aws.amazon.com/ElasticLoadBalancing/latest/DeveloperGuide/elb-listener-config.html) CertARN è un ARN certificato IAM o CM, ad es. `ARN: AWS: ACM: US-est-1: 123456789012: certificato / 12345678-1234-1234-1234-123456789012`.
 * `service.beta.kubernetes.io / aws-load-balancer-connection-draining-enabled`: utilizzato sul servizio per abilitare o disabilitare il drenaggio della connessione.
 * `service.beta.kubernetes.io / aws-load-balancer-connection-draining-timeout`: utilizzato sul servizio per specificare un timeout di drenaggio della connessione.
@@ -125,7 +125,7 @@ corrispondere al nome VM di CloudStack.
 Il provider cloud GCE utilizza il nome host del nodo (come determinato dal kubelet o sovrascritto
 con `--hostname-override`) come nome dell'oggetto Nodo Kubernetes. Si noti che il primo segmento del nome del nodo
 Kubernetes deve corrispondere al nome dell'istanza GCE (ad esempio, un nodo denominato `kubernetes-node-2.c.my-proj.internal`
-deve corrispondere a un'istanza denominata` kubernetes-node-2`) .
+deve corrispondere a un'istanza denominata `kubernetes-node-2`) .
 
 ## OpenStack
 Questa sezione descrive tutte le possibili configurazioni che possono
@@ -243,7 +243,7 @@ file:
   il bilanciamento del carico.
 * `lb-method` (Opzionale): utilizzato per specificare l'algoritmo in base al quale verrà caricato il carico
   distribuito tra i membri del pool di bilanciamento del carico. Il valore può essere
-  `ROUND_ROBIN`,` LEAST_CONNECTIONS` o `SOURCE_IP`. Il comportamento predefinito se
+  `ROUND_ROBIN`, `LEAST_CONNECTIONS` o `SOURCE_IP`. Il comportamento predefinito se
   nessuno è specificato è `ROUND_ROBIN`.
 * `lb-provider` (Opzionale): utilizzato per specificare il provider del servizio di bilanciamento del carico.
   Se non specificato, sarà il servizio provider predefinito configurato in neutron
@@ -272,7 +272,7 @@ Queste opzioni di configurazione per il provider OpenStack riguardano lo storage
 e dovrebbe apparire nella sezione `[BlockStorage]` del file `cloud.conf`:
 
 * `bs-version` (Opzionale): usato per sovrascrivere il rilevamento automatico delle versioni. Valido
-  i valori sono `v1`,` v2`, `v3` e` auto`. Quando `auto` è specificato automatico
+  i valori sono `v1`, `v2`, `v3` e `auto`. Quando `auto` è specificato automatico
   il rilevamento selezionerà la versione supportata più alta esposta dal sottostante
   Cloud OpenStack. Il valore predefinito se nessuno è fornito è `auto`.
 * `trust-device-path` (Opzionale): Nella maggior parte degli scenari i nomi dei dispositivi a blocchi
diff --git a/content/it/docs/concepts/cluster-administration/federation.md b/content/it/docs/concepts/cluster-administration/federation.md
index 7f4bdb5998..48816b40f9 100644
--- a/content/it/docs/concepts/cluster-administration/federation.md
+++ b/content/it/docs/concepts/cluster-administration/federation.md
@@ -162,9 +162,9 @@ In secondo luogo, decidi quanti cluster dovrebbero essere disponibili allo stess
 il numero che può essere non disponibile `U`. Se non sei sicuro, allora 1 è una buona scelta.
 
 Se è possibile bilanciare il carico per indirizzare il traffico verso qualsiasi regione in caso di guasto di un cluster, allora
-avete bisogno almeno dei grossi `R` o` U + 1`. Se non lo è (ad esempio, vuoi garantire una bassa latenza per tutti
+avete bisogno almeno dei grossi `R` o `U + 1`. Se non lo è (ad esempio, vuoi garantire una bassa latenza per tutti
 utenti in caso di guasto di un cluster), quindi è necessario disporre di cluster `R * (U + 1)`
-(`U + 1` in ciascuna delle regioni` R`). In ogni caso, prova a mettere ciascun cluster in una zona diversa.
+(`U + 1` in ciascuna delle regioni `R`). In ogni caso, prova a mettere ciascun cluster in una zona diversa.
 
 Infine, se uno qualsiasi dei tuoi cluster richiederebbe più del numero massimo consigliato di nodi per un cluster Kubernetes, allora
 potresti aver bisogno di più cluster. Kubernetes v1.3 supporta cluster di dimensioni fino a 1000 nodi. Supporta Kubernetes v1.8
diff --git a/content/it/docs/concepts/cluster-administration/kubelet-garbage-collection.md b/content/it/docs/concepts/cluster-administration/kubelet-garbage-collection.md
index 10e0af08cc..da7d469101 100644
--- a/content/it/docs/concepts/cluster-administration/kubelet-garbage-collection.md
+++ b/content/it/docs/concepts/cluster-administration/kubelet-garbage-collection.md
@@ -23,12 +23,12 @@ Kubernetes gestisce il ciclo di vita di tutte le immagini tramite imageManager,
 di consulente.
 
 La politica per la raccolta dei rifiuti delle immagini prende in considerazione due fattori:
-`HighThresholdPercent` e` LowThresholdPercent`. Utilizzo del disco al di sopra della soglia alta
+`HighThresholdPercent` e `LowThresholdPercent`. Utilizzo del disco al di sopra della soglia alta
 attiverà la garbage collection. La garbage collection cancellerà le immagini utilizzate meno di recente fino al minimo
 soglia è stata soddisfatta.
 
 La politica per la raccolta dei rifiuti delle immagini prende in considerazione due fattori:
-`HighThresholdPercent` e` LowThresholdPercent`. Utilizzo del disco al di sopra della soglia alta
+`HighThresholdPercent` e `LowThresholdPercent`. Utilizzo del disco al di sopra della soglia alta
 attiverà la garbage collection. La garbage collection cancellerà le immagini utilizzate meno di recente fino al minimo
 soglia è stata soddisfatta.
 
@@ -44,8 +44,8 @@ Kubelet agirà su contenitori non identificati, cancellati o al di fuori dei lim
 precedentemente menzionate. I contenitori più vecchi saranno generalmente rimossi per primi. `MaxPerPodContainer`
 e `MaxContainer` possono potenzialmente entrare in conflitto l'uno con l'altro in situazioni in cui il mantenimento del
 numero massimo di contenitori per pod (`MaxPerPodContainer`) non rientra nell'intervallo consentito di contenitori morti
-globali (` MaxContainers`). `MaxPerPodContainer` verrebbe regolato in questa situazione: uno scenario peggiore sarebbe
-quello di eseguire il downgrade di` MaxPerPodContainer` su 1 e rimuovere i contenitori più vecchi. Inoltre, i
+globali (`MaxContainers`). `MaxPerPodContainer` verrebbe regolato in questa situazione: uno scenario peggiore sarebbe
+quello di eseguire il downgrade di `MaxPerPodContainer` su 1 e rimuovere i contenitori più vecchi. Inoltre, i
 contenitori di proprietà dei pod che sono stati cancellati vengono rimossi una volta che sono più vecchi di "MinAge".
 
 I contenitori che non sono gestiti da Kubelet non sono soggetti alla garbage collection del contenitore.
@@ -83,12 +83,12 @@ Compreso:
 
 | Bandiera esistente | Nuova bandiera | Motivazione
 | ------------- | -------- | --------- |
-| `--image-gc-high-threshold` | `--eviction-hard` o` --eviction-soft` | i segnali di sfratto esistenti possono innescare la garbage collection delle immagini |
+| `--image-gc-high-threshold` | `--eviction-hard` o `--eviction-soft` | i segnali di sfratto esistenti possono innescare la garbage collection delle immagini |
 | `--image-gc-low-threshold` | `--eviction-minimum-reclaim` | i reclami di sfratto ottengono lo stesso comportamento |
 | `--maximum-dead-containers` | | deprecato una volta che i vecchi log sono memorizzati al di fuori del contesto del contenitore |
 | `--maximum-dead-containers-per-container` | | deprecato una volta che i vecchi log sono memorizzati al di fuori del contesto del contenitore |
 | `--minimum-container-ttl-duration` | | deprecato una volta che i vecchi log sono memorizzati al di fuori del contesto del contenitore |
-| `--low-diskspace-threshold-mb` | `--eviction-hard` o` eviction-soft` | lo sfratto generalizza le soglie del disco ad altre risorse |
+| `--low-diskspace-threshold-mb` | `--eviction-hard` o `eviction-soft` | lo sfratto generalizza le soglie del disco ad altre risorse |
 | `--outofdisk-transition-frequency` | `--eviction-pressure-transition-period` | lo sfratto generalizza la transizione della pressione del disco verso altre risorse |
 
 
diff --git a/content/it/docs/concepts/cluster-administration/logging.md b/content/it/docs/concepts/cluster-administration/logging.md
index ea7235d532..931eb1c2cb 100644
--- a/content/it/docs/concepts/cluster-administration/logging.md
+++ b/content/it/docs/concepts/cluster-administration/logging.md
@@ -47,7 +47,7 @@ $ kubectl logs counter
 ...
 ```
 
-You can use `kubectl logs` to retrieve logsPuoi usare `kubectl logs` per recuperare i log da una precedente istanziazione di un contenitore con il flag` --previous`, nel caso in cui il contenitore si sia arrestato in modo anomalo. Se il pod ha più contenitori, è necessario specificare i registri del contenitore a cui si desidera accedere aggiungendo un nome contenitore al comando. Vedi la documentazione [`kubectl logs`](/docs/reference/generated/kubectl/kubectl-commands#logs) per maggiori dettagli. from a previous instantiation of a container with `--previous` flag, in case the container has crashed. If your pod has multiple containers, you should specify which container's logs you want to access by appending a container name to the command. See the [`kubectl logs` documentation](/docs/reference/generated/kubectl/kubectl-commands#logs) for more details.
+You can use `kubectl logs` to retrieve logsPuoi usare `kubectl logs` per recuperare i log da una precedente istanziazione di un contenitore con il flag `--previous`, nel caso in cui il contenitore si sia arrestato in modo anomalo. Se il pod ha più contenitori, è necessario specificare i registri del contenitore a cui si desidera accedere aggiungendo un nome contenitore al comando. Vedi la documentazione [`kubectl logs`](/docs/reference/generated/kubectl/kubectl-commands#logs) per maggiori dettagli. from a previous instantiation of a container with `--previous` flag, in case the container has crashed. If your pod has multiple containers, you should specify which container's logs you want to access by appending a container name to the command. See the [`kubectl logs` documentation](/docs/reference/generated/kubectl/kubectl-commands#logs) for more details.
 
 ## Logging at the node level
 
@@ -88,7 +88,7 @@ la rotazione e ci sono due file, uno da 10 MB e uno vuoto,
 `kubectl logs` restituirà una risposta vuota.
 {{< /note >}}
 
-[cosConfigureHelper]: https://github.com/kubernetes/kubernetes/blob/{{< param "githubbranch" >}}/cluster/gce/gci/configure-helper.sh
+[cosConfigureHelper]: https://github.com/kubernetes/kubernetes/blob/master/cluster/gce/gci/configure-helper.sh
 
 ### System component logs
 
@@ -105,7 +105,7 @@ bypassando il meccanismo di registrazione predefinito. Usano il [klog] [klog]
 biblioteca di registrazione. È possibile trovare le convenzioni per la gravità della registrazione per quelli
 componenti nel [documento di sviluppo sulla registrazione](https://git.k8s.io/community/contributors/devel/logging.md).
 
-Analogamente ai log del contenitore, i log dei componenti di sistema sono in /var/log`
+Analogamente ai log del contenitore, i log dei componenti di sistema sono in `/var/log`
 la directory dovrebbe essere ruotata. Nei cluster di Kubernetes allevati da
 lo script `kube-up.sh`, quei log sono configurati per essere ruotati da
 lo strumento `logrotate` al giorno o una volta che la dimensione supera i 100 MB.
@@ -143,7 +143,7 @@ Puoi utilizzare un contenitore sidecar in uno dei seguenti modi:
 
 ![Sidecar container with a streaming container](/images/docs/user-guide/logging/logging-with-streaming-sidecar.png)
 
-Facendo scorrere i propri contenitori sidecar sul proprio `stdout` e` stderr`
+Facendo scorrere i propri contenitori sidecar sul proprio `stdout` e `stderr`
 flussi, è possibile sfruttare il kubelet e l'agente di registrazione che
 già eseguito su ciascun nodo. I contenitori del sidecar leggono i log da un file, un socket,
 o il diario. Ogni singolo contenitore sidecar stampa il log nel proprio `stdout`
@@ -151,16 +151,16 @@ o flusso `stderr`.
 
 Questo approccio consente di separare diversi flussi di log da diversi
 parti della tua applicazione, alcune delle quali possono mancare di supporto
-per scrivere su `stdout` o` stderr`. La logica dietro il reindirizzamento dei registri
+per scrivere su `stdout` o `stderr`. La logica dietro il reindirizzamento dei registri
 è minimo, quindi non è un sovraccarico significativo. Inoltre, perché
-`stdout` e` stderr` sono gestiti da kubelet, puoi usare gli strumenti integrati
+`stdout` e `stderr` sono gestiti da kubelet, puoi usare gli strumenti integrati
 come `log di kubectl`.
 
 Considera il seguente esempio. Un pod esegue un singolo contenitore e il contenitore
 scrive su due file di registro diversi, utilizzando due formati diversi. Ecco un
 file di configurazione per il pod:
 
-{{<codenew file = "admin/logging/two-files-counter-pod.yaml">}}
+{{< codenew file="admin/logging/two-files-counter-pod.yaml" >}}
 
 Sarebbe un disastro avere voci di registro di diversi formati nello stesso registro
 stream, anche se si è riusciti a reindirizzare entrambi i componenti al flusso `stdout` di
@@ -170,7 +170,7 @@ i registri al proprio flusso `stdout`.
 
 Ecco un file di configurazione per un pod con due contenitori sidecar:
 
-{{<codenew file = "admin/logging/two-files-counter-pod-streaming-sidecar.yaml">}}
+{{< codenew file="admin/logging/two-files-counter-pod-streaming-sidecar.yaml" >}}
 
 Ora quando si esegue questo pod, è possibile accedere separatamente a ciascun flusso di log
 eseguendo i seguenti comandi:
@@ -205,7 +205,7 @@ approccio contenitore.
 I contenitori del sidecar possono anche essere usati per ruotare i file di log che non possono essere
 ruotato dall'applicazione stessa. [Un esempio](https://github.com/samsung-cnct/logrotate)
 di questo approccio è un piccolo contenitore che esegue periodicamente logrotate.
-Tuttavia, si raccomanda di usare `stdout` e` stderr` direttamente e lasciare la rotazione
+Tuttavia, si raccomanda di usare `stdout` e `stderr` direttamente e lasciare la rotazione
 e politiche di conservazione al kubelet.
 
 
diff --git a/content/it/docs/concepts/cluster-administration/manage-deployment.md b/content/it/docs/concepts/cluster-administration/manage-deployment.md
index 5e8886ec6f..4d68765214 100644
--- a/content/it/docs/concepts/cluster-administration/manage-deployment.md
+++ b/content/it/docs/concepts/cluster-administration/manage-deployment.md
@@ -89,7 +89,7 @@ my-nginx-svc   LoadBalancer   10.0.0.208   <pending>     80/TCP       0s
 ```
 
 Con i suddetti comandi, prima creiamo le risorse sotto `examples/application/nginx/` e stampiamo le risorse create con il formato di output `-o name`
-(stampa ogni risorsa come risorsa / nome). Quindi `grep` solo il" servizio ", e poi lo stampiamo con` kubectl get`.
+(stampa ogni risorsa come risorsa / nome). Quindi `grep` solo il" servizio ", e poi lo stampiamo con `kubectl get`.
 
 Se si organizzano le risorse su più sottodirectory all'interno di una particolare directory, è possibile eseguire ricorsivamente anche le operazioni nelle sottodirectory, specificando `--recursive` o` -R` accanto al flag `--filename, -f`.
 
@@ -112,7 +112,7 @@ $ kubectl create -f project/k8s/development
 error: you must provide one or more resources by argument or filename (.json|.yaml|.yml|stdin)
 ```
 
-Invece, specifica il flag `--recursive` o` -R` con il flag `--filename, -f` come tale:
+Invece, specifica il flag `--recursive` o `-R` con il flag `--filename, -f` come tale:
 
 ```shell
 $ kubectl create -f project/k8s/development --recursive
@@ -121,7 +121,7 @@ deployment.apps/my-deployment created
 persistentvolumeclaim/my-pvc created
 ```
 
-Il flag `--recursive` funziona con qualsiasi operazione che accetta il flag` --filename, -f` come: `kubectl {crea, ottieni, cancella, descrivi, implementa} ecc .`
+Il flag `--recursive` funziona con qualsiasi operazione che accetta il flag `--filename, -f` come: `kubectl {crea, ottieni, cancella, descrivi, implementa} ecc .`
 
 Il flag `--recursive` funziona anche quando sono forniti più argomenti` -f`:
 
@@ -140,7 +140,7 @@ Se sei interessato a saperne di più su `kubectl`, vai avanti e leggi [Panoramic
 
 Gli esempi che abbiamo utilizzato fino ad ora si applicano al massimo una singola etichetta a qualsiasi risorsa. Esistono molti scenari in cui è necessario utilizzare più etichette per distinguere i set l'uno dall'altro.
 
-Ad esempio, diverse applicazioni utilizzerebbero valori diversi per l'etichetta `app`, ma un'applicazione multilivello, come l'esempio [guestbook](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/guestbook/), avrebbe inoltre bisogno di distinguere ogni livello. Il frontend potrebbe contenere le seguenti etichette:
+Ad esempio, diverse applicazioni utilizzerebbero valori diversi per l'etichetta `app`, ma un'applicazione multilivello, come l'esempio [guestbook](https://github.com/kubernetes/examples/tree/master/guestbook/), avrebbe inoltre bisogno di distinguere ogni livello. Il frontend potrebbe contenere le seguenti etichette:
 
 ```yaml
      labels:
@@ -195,7 +195,7 @@ modo che la nuova versione possa ricevere il traffico di produzione in tempo rea
 
 Ad esempio, puoi usare un'etichetta `track` per differenziare le diverse versioni.
 
-La versione stabile e primaria avrebbe un'etichetta `track` con valore come` stable`:
+La versione stabile e primaria avrebbe un'etichetta `track` con valore come `stable`:
 
 ```yaml
      name: frontend
@@ -210,7 +210,7 @@ La versione stabile e primaria avrebbe un'etichetta `track` con valore come` sta
 ```
 
 e quindi puoi creare una nuova versione del frontend del guestbook che porta l'etichetta `track` con un valore diverso
-(ad esempio` canary`), in modo che due gruppi di pod non si sovrappongano:
+(ad esempio `canary`), in modo che due gruppi di pod non si sovrappongano:
 
 ```yaml
      name: frontend-canary
@@ -266,7 +266,7 @@ my-nginx-2035384211-u3t6x   1/1       Running   0          23m       fe
 ```
 
 questo produce tutti i pod "app = nginx", con un'ulteriore colonna di etichette del livello dei pod (specificata
-con `-L` o` --label-columns`).
+con `-L` o `--label-columns`).
 
 Per ulteriori informazioni, consultare [labels](/docs/concepts/overview/working-with-objects/labels/) e
 [kubectl label](/docs/reference/generated/kubectl/kubectl-commands/#label).
@@ -353,7 +353,7 @@ non è in grado di rilevare l'eliminazione delle proprietà impostate al momento
 motivo, non li rimuoverà.
 
 Tutte le chiamate successive a `kubectl apply`, e altri comandi che modificano la configurazione, come `kubectl replace`
-e `kubectl edit`, aggiorneranno l'annotazione, consentendo le successive chiamate a` kubectl apply` per rilevare ed
+e `kubectl edit`, aggiorneranno l'annotazione, consentendo le successive chiamate a `kubectl apply` per rilevare ed
 eseguire cancellazioni usando un tre via diff.
 
 {{< note >}}
@@ -368,7 +368,7 @@ In alternativa, puoi anche aggiornare le risorse con `kubectl edit`:
 $ kubectl edit deployment/my-nginx
 ```
 
-Questo equivale a prima "get` la risorsa, modificarla nell'editor di testo e quindi" applicare "la risorsa con la
+Questo equivale a prima `get` la risorsa, modificarla nell'editor di testo e quindi `apply` la risorsa con la
 versione aggiornata:
 
 ```shell
@@ -381,7 +381,7 @@ $ rm /tmp/nginx.yaml
 ```
 
 Questo ti permette di fare più cambiamenti significativi più facilmente. Nota che puoi specificare l'editor con le
-variabili di ambiente `EDITOR` o` KUBE_EDITOR`.
+variabili di ambiente `EDITOR` o `KUBE_EDITOR`.
 
 Per ulteriori informazioni, consultare il documento [kubectl edit](/docs/reference/generated/kubectl/kubectl-commands/#edit).
 
diff --git a/content/it/docs/concepts/cluster-administration/networking.md b/content/it/docs/concepts/cluster-administration/networking.md
index 4c83d201e0..ddb129009f 100644
--- a/content/it/docs/concepts/cluster-administration/networking.md
+++ b/content/it/docs/concepts/cluster-administration/networking.md
@@ -59,7 +59,7 @@ parla con altre macchine virtuali nel tuo progetto. Questo è lo stesso modello
 
 Gli indirizzi IP di Kubernetes esistono nello scope `Pod` - contenitori all'interno di un 'Pod`
 condividere i loro spazi dei nomi di rete, compreso il loro indirizzo IP. Ciò significa che
-i contenitori all'interno di un `Pod` possono raggiungere tutti gli altri porti su` localhost`. Questo
+i contenitori all'interno di un `Pod` possono raggiungere tutti gli altri porti su `localhost`. Questo
 significa anche che i contenitori all'interno di un 'Pod` devono coordinare l'utilizzo della porta, ma questo
 non è diverso dai processi in una VM. Questo è chiamato il modello "IP-per-pod".
 
@@ -127,7 +127,7 @@ di [avere simultaneamente accesso a diverse implementazioni](https://github.com/
 del [modello di rete Kubernetes](https://git.k8s.io/website/docs/concepts/cluster-administration/networking.md#kubernetes-model) in runtime.
 Ciò include qualsiasi implementazione che funziona come un [plugin CNI](https://github.com/containernetworking/cni#3rd-party-plugins),
 come [Flannel](https://github.com/coreos/flannel#flanella), [Calico](http://docs.projectcalico.org/),
-[Romana](http://romana.io), [Weave-net](https://www.weave.works/products/tessere-net/).
+[Romana](https://github.com/romana/romana), [Weave-net](https://www.weave.works/products/tessere-net/).
 
 CNI-Genie supporta anche [assegnando più indirizzi IP a un pod](https://github.com/Huawei-PaaS/CNI-Genie/blob/master/docs/multiple-ips/README.md#feature-2-extension-cni-genie-multiple-ip-indirizzi-per-pod), ciascuno da un diverso plugin CNI.
 
@@ -153,7 +153,7 @@ complessità della rete richiesta per implementare Kubernetes su larga scala all
 
 226/5000
 [Contiv](https://github.com/contiv/netplugin) fornisce un networking configurabile (nativo l3 usando BGP,
-overlay usando vxlan, classic l2 o Cisco-SDN / ACI) per vari casi d'uso. [Contiv](http://contiv.io) è tutto aperto.
+overlay usando vxlan, classic l2 o Cisco-SDN / ACI) per vari casi d'uso. [Contiv](https://contivpp.io/) è tutto aperto.
 
 ### Contrail / Tungsten Fabric
 
@@ -195,10 +195,10 @@ Docker è avviato con:
 DOCKER_OPTS="--bridge=cbr0 --iptables=false --ip-masq=false"
 ```
 
-Questo bridge è creato da Kubelet (controllato da `--network-plugin = kubenet` flag) in base al `Nodo` .spec.podCIDR`.
+Questo bridge è creato da Kubelet (controllato da `--network-plugin = kubenet` flag) in base al Nodo `.spec.podCIDR`.
 
 Docker ora assegna gli IP dal blocco `cbr-cidr`. I contenitori possono raggiungere l'un l'altro e `Nodi` sul
-ponte` cbr0`. Questi IP sono tutti instradabili all'interno della rete del progetto GCE.
+ponte `cbr0`. Questi IP sono tutti instradabili all'interno della rete del progetto GCE.
 
 GCE non sa nulla di questi IP, quindi non lo farà loro per il traffico internet in uscita. Per ottenere ciò viene
 utilizzata una regola iptables masquerade (aka SNAT - per far sembrare che i pacchetti provengano dal `Node` stesso)
@@ -255,7 +255,7 @@ Lars Kellogg-Stedman.
 
 ### Multus (a Multi Network plugin)
 
-[Multus](https://github.com/Intel-Corp/multus-cni) è un plugin Multi CNI per supportare la funzionalità Multi
+[Multus](https://github.com/k8snetworkplumbingwg/multus-cni) è un plugin Multi CNI per supportare la funzionalità Multi
 Networking in Kubernetes utilizzando oggetti di rete basati su CRD in Kubernetes.
 
 Multus supporta tutti i [plug-in di riferimento](https://github.com/containernetworking/plugins)
@@ -292,12 +292,6 @@ Nuage è stato progettato pensando alle applicazioni e semplifica la dichiarazio
 applicazioni. Il motore di analisi in tempo reale della piattaforma consente la visibilità e il monitoraggio della
 sicurezza per le applicazioni Kubernetes.
 
-### OpenVSwitch
-
-[OpenVSwitch](https://www.openvswitch.org/) è un po 'più maturo ma anche
-modo complicato per costruire una rete di sovrapposizione. Questo è approvato da molti dei
-"Grandi negozi" per il networking.
-
 ### OVN (Apri rete virtuale)
 
 OVN è una soluzione di virtualizzazione della rete opensource sviluppata da
@@ -322,7 +316,7 @@ Flannel, alias [canal](https://github.com/tigera/canal) o native GCE, AWS o netw
 
 ### Romana
 
-[Romana](http://romana.io) è una soluzione di automazione della sicurezza e della rete open source che consente di
+[Romana](https://github.com/romana/romana) è una soluzione di automazione della sicurezza e della rete open source che consente di
 distribuire Kubernetes senza una rete di overlay. Romana supporta Kubernetes
 [Politica di rete](/docs/concepts/services-networking/network-policies/) per fornire isolamento tra gli spazi dei nomi
 di rete.
@@ -341,5 +335,3 @@ entrambi i casi, la rete fornisce un indirizzo IP per pod, come è standard per
 
 Il progetto iniziale del modello di rete e la sua logica, e un po 'di futuro i piani sono descritti in maggior
 dettaglio nella [progettazione della rete documento](https://git.k8s.io/community/contributors/design-proposals/network/networking.md).
-
-
diff --git a/content/it/docs/concepts/configuration/_index.md b/content/it/docs/concepts/configuration/_index.md
new file mode 100644
index 0000000000..4ec8154b58
--- /dev/null
+++ b/content/it/docs/concepts/configuration/_index.md
@@ -0,0 +1,6 @@
+---
+title: "Configurazione"
+weight: 80
+description: >
+  Risorse che fornisce Kubernetes per configurare i Pods.
+---
\ No newline at end of file
diff --git a/content/it/docs/concepts/configuration/configmap.md b/content/it/docs/concepts/configuration/configmap.md
new file mode 100644
index 0000000000..35e1ca4147
--- /dev/null
+++ b/content/it/docs/concepts/configuration/configmap.md
@@ -0,0 +1,250 @@
+---
+title: ConfigMaps
+content_type: concept
+weight: 20
+---
+
+<!-- overview -->
+
+{{< glossary_definition term_id="configmap" prepend="La ConfigMap è" length="all" >}}
+
+{{< caution >}}
+La ConfigMap non fornisce riservatezza o cifratura dei dati. Se i dati che vuoi salvare sono confidenziali, usa un {{< glossary_tooltip text="Secret" term_id="secret" >}} piuttosto che una ConfigMap, o usa uno strumento di terze parti per tenere privati i tuoi dati.
+{{< /caution >}}
+
+<!-- body -->
+## Utilizzo
+
+Usa una ConfigMap per tenere separati i dati di configurazione dal codice applicativo.
+
+Per esempio, immagina che stai sviluppando un'applicazione che puoi eseguire sul tuo computer (per lo sviluppo) e sul cloud (per gestire il traffico reale). Puoi scrivere il codice puntando a una variabile d'ambiente chiamata `DATABASE_HOST`. Localmente, puoi settare quella variabile a `localhost`. Nel cloud, la puoi settare referenziando il {{< glossary_tooltip text="Service" term_id="service" >}} di Kubernetes che espone la componente del database sul tuo cluster. Ciò ti permette di andare a recuperare l'immagine del container eseguita nel cloud e fare il debug dello stesso codice localmente se necessario.
+
+La ConfigMap non è pensata per sostenere una gran mole di dati. I dati memorizzati su una ConfigMap non possono superare 1 MiB. Se hai bisogno di memorizzare delle configurazioni che superano questo limite, puoi considerare di montare un volume oppure usare un database o un file service separato.
+
+
+## Oggetto ConfigMap
+
+La ConfigMap è un [oggetto](/docs/concepts/overview/working-with-objects/kubernetes-objects/) API che ti permette di salvare configurazioni per poi poter essere riutilizzate da altri oggetti. A differenza di molti oggetti di Kubernetes che hanno una `spec`, la ConfigMap ha i campi `data` e `binaryData`. Questi campi accettano le coppie chiave-valore come valori. Entrambi i campi `data` e `binaryData` sono opzionali. Il campo `data` è pensato per contenere le stringhe UTF-8 mentre il campo `binaryData` è pensato per contenere dati binari come le stringhe codificate in base64.
+
+Il nome di una ConfigMap deve essere un nome valido per un sottodominio DNS.
+
+Ogni chiave sotto il campo `data` o `binaryData` deve consistere di caratteri alfanumerici, `-`, `_` o `.`. Le chiavi salvate sotto `data` non devono coincidere con le chiavi nel campo `binaryData`.
+
+Partendo dalla versione 1.19, puoi aggiungere il campo `immutable` alla definizione di ConfigMap per creare una [ConfigMap immutabile](#configmap-immutable).
+
+## ConfigMaps e Pods
+
+Puoi scrivere una `spec` del Pod che si riferisce a una ConfigMap e configurare il o i containers
+in quel Pod sulla base dei dati presenti nella ConfigMap. Il Pod e la ConfigMap devono essere nello
+stesso Namespace.
+
+{{< note >}}
+La `spec` di un {{< glossary_tooltip text="Pod statico" term_id="static-pod" >}} non può riferirsi a una ConfigMap
+o ad altri oggetti API.
+{{< /note >}}
+
+Questo è un esempio di una ConfigMap che ha alcune chiavi con valori semplici,
+e altre chiavi dove il valore ha il formato di un frammento di configurazione.
+
+```yaml
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: game-demo
+data:
+  # chiavi simili a proprietà; ogni chiave mappa un valore semplice
+  player_initial_lives: "3"
+  ui_properties_file_name: "user-interface.properties"
+
+  # chiavi simili a files
+  game.properties: |
+    enemy.types=aliens,monsters
+    player.maximum-lives=5
+  user-interface.properties: |
+    color.good=purple
+    color.bad=yellow
+    allow.textmode=true
+```
+
+Ci sono quattro modi differenti con cui puoi usare una ConfigMap per configurare
+un container all'interno di un Pod:
+
+1. Argomento da riga di comando come entrypoint di un container
+1. Variabile d'ambiente di un container
+1. Aggiungere un file in un volume di sola lettura, per fare in modo che l'applicazione lo legga
+1. Scrivere il codice da eseguire all'interno del Pod che utilizza l'API di Kubernetes per leggere la ConfigMap
+
+Questi metodologie differenti permettono di utilizzare diversi metodi per modellare i dati che saranno consumati.
+Per i primi tre metodi, il 
+{{< glossary_tooltip text="kubelet" term_id="kubelet" >}} utilizza i dati della
+ConfigMap quando lancia il container (o più) in un Pod.
+
+Per il quarto metodo dovrai scrivere il codice per leggere la ConfigMap e i suoi dati.
+Comunque, poiché stai utilizzando l'API di Kubernetes direttamente, la tua applicazione può
+sottoscriversi per ottenere aggiornamenti ogniqualvolta la ConfigMap cambia, e reagire
+quando ciò accade. Accedendo direttamente all'API di Kubernetes, questa
+tecnica ti permette anche di accedere a una ConfigMap in namespace differenti.
+
+Ecco un esempio di Pod che usa i valori da `game-demo` per configurare il container:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: configmap-demo-pod
+spec:
+  containers:
+    - name: demo
+      image: alpine
+      command: ["sleep", "3600"]
+      env:
+        # Definire la variabile d'ambiente
+        - name: PLAYER_INITIAL_LIVES # Notare che il case qui è differente
+                                     # dal nome della key nella ConfigMap.
+          valueFrom:
+            configMapKeyRef:
+              name: game-demo           # La ConfigMap da cui proviene il valore.
+              key: player_initial_lives # La chiave da recuperare.
+        - name: UI_PROPERTIES_FILE_NAME
+          valueFrom:
+            configMapKeyRef:
+              name: game-demo
+              key: ui_properties_file_name
+      volumeMounts:
+      - name: config
+        mountPath: "/config"
+        readOnly: true
+  volumes:
+    # Settare i volumi al livello del Pod, in seguito montarli nei containers all'interno del Pod
+    - name: config
+      configMap:
+        # Fornire il nome della ConfigMap che vuoi montare.
+        name: game-demo
+        # Una lista di chiavi dalla ConfigMap per essere creata come file
+        items:
+        - key: "game.properties"
+          path: "game.properties"
+        - key: "user-interface.properties"
+          path: "user-interface.properties"
+```
+
+Una ConfigMap non differenzia tra le proprietà di una singola linea e un file con più linee e valori.
+L'importante è il modo in cui i Pods e gli altri oggetti consumano questi valori.
+
+Per questo esempio, definire un volume e montarlo all'interno del container `demo` come `/config` crea
+due files,
+`/config/game.properties` e `/config/user-interface.properties`,
+sebbene ci siano quattro chiavi nella ConfigMap. Ciò avviene perché la definizione del Pod
+specifica una lista di `items` nella sezione dei `volumes`.
+Se ometti del tutto la lista degli `items`, ogni chiave nella ConfigMap diventerà
+un file con lo stesso nome della chiave, e otterrai 4 files.
+
+## Usare le ConfigMaps
+
+Le ConfigMaps possono essere montate come volumi. Le ConfigMaps possono anche essere utilizzate da
+altre parti del sistema, senza essere direttamente esposte al Pod. Per esempio, le
+ConfigMaps possono contenere l'informazione che altre parti del sistema utilizzeranno per la loro
+configurazione.
+
+La maniera più comune per usare le ConfigMaps è di configurare i containers che sono in esecuzione
+in un Pod nello stesso namespace. Puoi anche utilizzare una ConfigMap separatamente.
+
+Per esempio, potresti incontrare
+ {{< glossary_tooltip text="addons" term_id="addons" >}}
+o {{< glossary_tooltip text="operators" term_id="operator-pattern" >}} che
+adattano il loro comportamento in base a una ConfigMap.
+
+### Usare le ConfigMaps come files in un Pod
+
+Per utilizzare una ConfigMap in un volume all'interno di un Pod:
+
+1. Creare una ConfigMap o usarne una che già esiste. Più Pods possono utilizzare
+   la stessa ConfigMap.
+1. Modificare la definizione del Pod per aggiungere un volume sotto `.spec.volumes[]`. Nominare
+   il volume in qualsiasi modo, e avere un campo `.spec.volumes[].configMap.name` configurato per 
+   referenziare il tuo oggetto ConfigMap.
+1. Aggiungere un `.spec.containers[].volumeMounts[]` a ogni container che necessiti di una
+   ConfigMap. Nello specifico `.spec.containers[].volumeMounts[].readOnly = true` e
+   `.spec.containers[].volumeMounts[].mountPath` in una cartella inutilizzata
+   dove vorresti che apparisse la ConfigMap.
+1. Modificare l'immagine o il comando utilizzato così che il programma cerchi i files in
+   quella cartella. Ogni chiave nella sezione `data` della ConfigMap si converte in un file
+   sotto `mountPath`.
+
+Questo è un esempio di un Pod che monta una ConfigMap in un volume:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: mypod
+spec:
+  containers:
+  - name: mypod
+    image: redis
+    volumeMounts:
+    - name: foo
+      mountPath: "/etc/foo"
+      readOnly: true
+  volumes:
+  - name: foo
+    configMap:
+      name: myconfigmap
+```
+
+Ogni ConfigMap che desideri utilizzare deve essere referenziata in `.spec.volumes`.
+
+Se c'è più di un container nel Pod, allora ogni container necessita del suo
+blocco `volumeMounts`, ma solamente un `.spec.volumes` è necessario ConfigMap.
+
+#### Le ConfigMaps montate sono aggiornate automaticamente
+
+Quando una ConfigMap è utilizzata in un volume ed è aggiornata, anche le chiavi vengono aggiornate.
+Il kubelet controlla se la ConfigMap montata è aggiornata ad ogni periodo di sincronizzazione.
+Ad ogni modo, il kubelet usa la sua cache locale per ottenere il valore attuale della ConfigMap.
+Il tipo di cache è configurabile usando il campo `ConfigMapAndSecretChangeDetectionStrategy` nel [KubeletConfiguration struct](/docs/reference/config-api/kubelet-config.v1beta1/).
+Una ConfigMap può essere propagata per vista (default), ttl-based, o redirigendo
+tutte le richieste direttamente all'API server.
+Come risultato, il ritardo totale dal momento in cui la ConfigMap è aggiornata al momento in cui nuove chiavi sono propagate al Pod può essere tanto lungo quanto il periodo della sincronizzazione del kubelet + il ritardo della propagazione della cache, dove il ritardo della propagazione della cache dipende dal tipo di cache scelta
+(è uguale rispettivamente al ritardo della propagazione, ttl della cache, o zero).
+
+Le ConfigMaps consumate come variabili d'ambiente non sono aggiornate automaticamente e necessitano di un riavvio del pod. 
+
+{{< note >}}
+Un container utilizzando una ConfigMap come un [subPath](/docs/concepts/storage/volumes#using-subpath) volume mount non riceverà gli aggiornamenti della ConfigMap.
+{{< /note >}}
+
+## ConfigMaps Immutabili {#configmap-immutable}
+
+{{< feature-state for_k8s_version="v1.21" state="stable" >}}
+
+La funzionalità di Kubernetes _Immutable Secrets and ConfigMaps_ fornisce un'opzione per
+configurare Secrets individuali e ConfigMaps come immutabili. Per clusters che usano le ConfigMaps come estensione (almeno decine o centinaia di ConfigMap uniche montate nel Pod), prevenire i cambiamenti nei loro dati ha i seguenti vantaggi:
+
+- protezione da aggiornamenti accidentali (o non voluti) che potrebbero causare l'interruzione di applicazioni
+- miglioramento della performance del tuo cluster riducendo significativamente il carico sul kube-apiserver, chiudendo l'ascolto sulle ConfigMaps che sono segnate come immutabili.
+
+Questa funzionalità è controllata dal `ImmutableEphemeralVolumes`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/).
+Puoi creare una ConfigMap immutabile settando il campo `immutable` a `true`.
+Per esempio:
+
+```yaml
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  ...
+data:
+  ...
+immutable: true
+```
+
+Una volta che una ConfigMap è segnata come immutabile, _non_ è possibile invertire questo cambiamento né cambiare il contenuto del campo `data` o `binaryData` field. Puoi solamente cancellare e ricreare la ConfigMap. Poiché i Pods hanno un puntamento verso la ConfigMap eliminata, è raccomandato di ricreare quei Pods.
+
+## {{% heading "whatsnext" %}}
+
+* Leggi in merito [Secrets](/docs/concepts/configuration/secret/).
+* Leggi [Configura un Pod per utilizzare una ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/).
+* Leggi in merito [Modificare una ConfigMap (o qualsiasi altro oggetto di Kubernetes)](/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/)
+* Leggi [The Twelve-Factor App](https://12factor.net/) per comprendere il motivo di separare
+  il codice dalla configurazione.
\ No newline at end of file
diff --git a/content/it/docs/concepts/containers/container-environment.md b/content/it/docs/concepts/containers/container-environment.md
index c4f497efc4..8c3084051e 100644
--- a/content/it/docs/concepts/containers/container-environment.md
+++ b/content/it/docs/concepts/containers/container-environment.md
@@ -46,7 +46,7 @@ FOO_SERVICE_PORT=<porta su cui il servizio è pubblicato>
 ```
 
 I servizi hanno un indirizzo IP dedicato e sono disponibili nei Container anche via DNS
-se il [DNS addon](http://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/dns/) è installato nel cluster.
+se il [DNS addon](http://releases.k8s.io/master/cluster/addons/dns/) è installato nel cluster.
 
 ## {{% heading "whatsnext" %}}
 
diff --git a/content/it/docs/concepts/overview/components.md b/content/it/docs/concepts/overview/components.md
index 906d1f7013..2734b38674 100644
--- a/content/it/docs/concepts/overview/components.md
+++ b/content/it/docs/concepts/overview/components.md
@@ -1,5 +1,7 @@
 ---
 title: I componenti di Kubernetes
+description: >
+  Un cluster di Kubernetes è costituito da un insieme di componenti che sono, come minimo, un Control Plane e uno o più sistemi di elaborazione, detti nodi.
 content_type: concept
 weight: 20
 card: 
diff --git a/content/it/docs/concepts/overview/kubernetes-api.md b/content/it/docs/concepts/overview/kubernetes-api.md
index 5214bea53a..78022336e8 100644
--- a/content/it/docs/concepts/overview/kubernetes-api.md
+++ b/content/it/docs/concepts/overview/kubernetes-api.md
@@ -1,5 +1,7 @@
 ---
-title: Le API di Kubernetes 
+title: Le API di Kubernetes
+description: >
+  Le API di Kubernetes ti permettono di interrogare e manipolare lo stato degli oggetti in Kubernetes. Il cuore del Control Plane di Kubernetes è l'API server e le API HTTP che esso espone. Ogni entità o componente che si interfaccia con il cluster (gli utenti, le singole parti del tuo cluster, i componenti esterni), comunica attraverso l'API server.
 content_type: concept
 weight: 30
 card: 
diff --git a/content/it/docs/reference/glossary/configmap.md b/content/it/docs/reference/glossary/configmap.md
new file mode 100644
index 0000000000..a359c323cd
--- /dev/null
+++ b/content/it/docs/reference/glossary/configmap.md
@@ -0,0 +1,17 @@
+---
+title: ConfigMap
+id: configmap
+date: 2022-06-21
+full_link: /it/docs/concepts/configuration/configmap/
+short_description: >
+  Un oggetto API usato per memorizzare dati non riservati in coppie chiave-valore. Può essere utilizzato come variabili d'ambiente, argomenti da riga di comanto, o files di configurazione in un volume.
+
+aka: 
+tags:
+- core-object
+---
+Un oggetto API usato per memorizzare dati non riservati in coppie chiave-valore. I {{< glossary_tooltip text="Pods" term_id="pod" >}} possono utilizzare le ConfigMaps come variabili d'ambiente, argomenti da riga di comando, o come files di configurazione all'interno di un {{< glossary_tooltip text="Volume" term_id="volume" >}}.
+
+<!--more--> 
+
+La ConfigMap ti permette di disaccoppiare le configurazioni specifiche per ambiente dalle {{< glossary_tooltip text="immagini del container" term_id="image" >}}, cosicchè le tue applicazioni siano facilmente portabili.
\ No newline at end of file
diff --git a/content/it/docs/reference/glossary/image.md b/content/it/docs/reference/glossary/image.md
new file mode 100644
index 0000000000..434d5b5aa5
--- /dev/null
+++ b/content/it/docs/reference/glossary/image.md
@@ -0,0 +1,17 @@
+---
+title: Image
+id: image
+date: 2022-07-30
+full_link: 
+short_description: >
+  Istanza archiviata di un cointainer che contiene un insieme di software e librerie necessarie per eseguire l'applicazione.
+
+aka: 
+tags:
+- fundamental
+---
+ Istanza archiviata di un {{< glossary_tooltip term_id="container" >}} che contiene un insieme di software e librerie necessarie per eseguire l'applicazione.
+
+<!--more-->
+
+Un modo di distribuire software che permette di immagazzinarlo in Image Registry (un registro di container images), scaricarlo in un sistema locale ed eseguirlo come un'applicazione. I metadati sono inclusi nell'immagine e possono contenere informazioni su come avviare l'esecuzione, chi ha prodotto l'immagine, o altro.
diff --git a/content/it/docs/reference/glossary/secret.md b/content/it/docs/reference/glossary/secret.md
new file mode 100644
index 0000000000..cb4c0bb608
--- /dev/null
+++ b/content/it/docs/reference/glossary/secret.md
@@ -0,0 +1,18 @@
+---
+title: Secret
+id: secret
+date: 2022-07-30
+full_link:
+short_description: >
+  Contiene informazioni sensibili, come passwords, token OAuth, e chiavi ssh.
+
+aka: 
+tags:
+- core-object
+- security
+---
+ Contiene informazioni sensibili, come passwords, token OAuth, e chiavi ssh.
+
+<!--more--> 
+
+Permette un maggiore controllo su come vengono usate le informazioni sensibili e riduce il rischio di un'esposizione accidentale. I valori del Secret sono codificati in base64 e esso viene memorizzato non criptato di default, ma può essere configurato per essere [criptato](/docs/tasks/administer-cluster/encrypt-data/#ensure-all-secrets-are-encrypted). Un {{< glossary_tooltip text="Pod" term_id="pod" >}} fa riferimento al Secret come un file in un volume montato o by the kubelet pulling images for a pod. I Secrets sono ideali per i dati sensibili e le [ConfigMaps](/docs/tasks/configure-pod-container/configure-pod-configmap/) per i dati non sensibili.
diff --git a/content/it/docs/reference/glossary/volume.md b/content/it/docs/reference/glossary/volume.md
new file mode 100644
index 0000000000..4790c2a41f
--- /dev/null
+++ b/content/it/docs/reference/glossary/volume.md
@@ -0,0 +1,20 @@
+---
+title: Volume
+id: volume
+date: 2022-06-21
+full_link: /it/docs/concepts/storage/volumes/
+short_description: >
+  Una cartella contenente dati, accessibile dai containers all'interno del pod.
+
+aka:
+tags:
+- core-object
+- fundamental
+---
+Una cartella contenente i dati, accessibile dal {{< glossary_tooltip text="containers" term_id="container" >}} in un {{< glossary_tooltip term_id="pod" >}}.
+
+<!--more-->
+
+Un volume di Kubernetes rimane in vita fintanto che lo rimane il Pod che lo racchiude. Di conseguenza, un volume sopravvive ad ogni container all'interno del Pod, e i dati nel volume sono preservati a prescindere dai restart del container.
+
+Vedi [storage](/docs/concepts/storage/) per più informazioni.
\ No newline at end of file
diff --git a/content/it/docs/tutorials/_index.md b/content/it/docs/tutorials/_index.md
index 04069ff5eb..240fce078c 100644
--- a/content/it/docs/tutorials/_index.md
+++ b/content/it/docs/tutorials/_index.md
@@ -50,6 +50,8 @@ Prima di procedere con vari tutorial, raccomandiamo di aggiungere il
 
 * [AppArmor](/docs/tutorials/clusters/apparmor/)
 
+* [seccomp](/docs/tutorials/clusters/seccomp/)
+
 ## Servizi
 
 * [Utilizzare Source IP](/docs/tutorials/services/source-ip/)
diff --git a/content/it/training/_index.html b/content/it/training/_index.html
index a8eee4e468..051fc87557 100644
--- a/content/it/training/_index.html
+++ b/content/it/training/_index.html
@@ -95,7 +95,7 @@ class: training
           <h5>
             <b>Certified Kubernetes Administrator (CKA)</b>
           </h5>
-          <p>Il programma "Certified Kubernetes Administrator" assicura che la persona ha le capacità, conoscenze, e competenze per operare come amministratore di Kubernets.</p>
+          <p>Il programma "Certified Kubernetes Administrator" assicura che la persona ha le capacità, conoscenze, e competenze per operare come amministratore di Kubernetes.</p>
           <br>
           <a href=https://training.linuxfoundation.org/certification/certified-kubernetes-administrator-cka/" target="_blank" class="button">Vai alla certificazione</a>
         </center>
diff --git a/content/ja/_index.html b/content/ja/_index.html
index b0a1005072..203711cdfd 100644
--- a/content/ja/_index.html
+++ b/content/ja/_index.html
@@ -41,12 +41,12 @@ Kubernetesはオープンソースなので、オンプレミスやパブリッ
         <button id="desktopShowVideoButton" onclick="kub.showVideo()">ビデオを見る</button>
         <br>
         <br>
-        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccncna20" button id="desktopKCButton">2020年11月17日-20日のKubeCon NAバーチャルに参加する</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccnceu22" button id="desktopKCButton">2022年5月16日〜20日のKubeCon EUバーチャルに参加する</a>
         <br>
         <br>
         <br>
         <br>
-        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccnceu21" button id="desktopKCButton">2021年5月4日-7日のKubeCon EUバーチャルに参加する</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccncna22" button id="desktopKCButton">2022年10月24日-28日のKubeCon NAバーチャルに参加する</a>
 </div>
 <div id="videoPlayer">
     <iframe data-url="https://www.youtube.com/embed/H06qrNmGqyE?autoplay=1" frameborder="0" allowfullscreen></iframe>
diff --git a/content/ja/blog/_posts/2020-12-02-dont-panic-kubernetes-and-docker.md b/content/ja/blog/_posts/2020-12-02-dont-panic-kubernetes-and-docker.md
new file mode 100644
index 0000000000..09e2a5592e
--- /dev/null
+++ b/content/ja/blog/_posts/2020-12-02-dont-panic-kubernetes-and-docker.md
@@ -0,0 +1,46 @@
+---
+layout: blog
+title: "Don't Panic: Kubernetes and Docker"
+date: 2020-12-02
+slug: dont-panic-kubernetes-and-docker
+---
+
+**著者:** Jorge Castro, Duffie Cooley, Kat Cosgrove, Justin Garrison, Noah Kantrowitz, Bob Killen, Rey Lejano, Dan “POP” Papandrea, Jeffrey Sica, Davanum “Dims” Srinivas
+
+Kubernetesはv1.20より新しいバージョンで、コンテナランタイムとして[Dockerをサポートしません](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.20.md#deprecation)。 
+
+**パニックを起こす必要はありません。これはそれほど抜本的なものではないのです。**
+
+概要: ランタイムとしてのDockerは、Kubernetesのために開発された[Container Runtime Interface(CRI)](https://kubernetes.io/blog/2016/12/container-runtime-interface-cri-in-kubernetes/)を利用しているランタイムを選んだ結果としてサポートされなくなります。しかし、Dockerによって生成されたイメージはこれからも、今までもそうだったように、みなさんのクラスターで使用可能です。
+
+もし、あなたがKubernetesのエンドユーザーであるならば、多くの変化はないでしょう。これはDockerの死を意味するものではありませんし、開発ツールとして今後Dockerを使用するべきでない、使用することは出来ないと言っているのでもありません。Dockerはコンテナを作成するのに便利なツールですし、docker buildコマンドで作成されたイメージはKubernetesクラスタ上でこれからも動作可能なのです。
+
+もし、GKE、EKS、AKSといったマネージドKubernetesサービス(それらはデフォルトで[containerdを使用しています](https://github.com/Azure/AKS/releases/tag/2020-11-16))を使っているのなら、ワーカーノードがサポート対象のランタイムを使用しているか、Dockerのサポートが将来のK8sバージョンで切れる前に確認しておく必要があるでしょう。
+もし、ノードをカスタマイズしているのなら、環境やRuntimeの仕様に合わせて更新する必要があるでしょう。サービスプロバイダーと確認し、アップグレードのための適切なテストと計画を立ててください。
+
+もし、ご自身でClusterを管理しているのなら、やはり問題が発生する前に必要な対応を行う必要があります。v1.20の時点で、Dockerの使用についての警告メッセージが表示されるようになります。将来のKubernetesリリース(現在の計画では2021年下旬のv1.22)でDockerのRuntimeとしての使用がサポートされなくなれば、containerdやCRI-Oといった他のサポート対象のRuntimeに切り替える必要があります。切り替える際、そのRuntimeが現在使用しているDocker Daemonの設定をサポートすることを確認してください。(Loggingなど)
+
+## では、なぜ混乱が生じ、誰もが恐怖に駆られているのか。 
+ここで議論になっているのは2つの異なる場面についてであり、それが混乱の原因になっています。Kubernetesクラスターの内部では、Container runtimeと呼ばれるものがあり、それはImageをPullし起動する役目を持っています。Dockerはその選択肢として人気があります(他にはcontainerdやCRI-Oが挙げられます)が、しかしDockerはそれ自体がKubernetesの一部として設計されているわけではありません。これが問題の原因となっています。
+
+お分かりかと思いますが、ここで”Docker”と呼んでいるものは、ある1つのものではなく、その技術的な体系の全体であり、その一部には"containerd"と呼ばれるものもあり、これはそれ自体がハイレベルなContainer runtimeとなっています。Dockerは素晴らしいもので、便利です。なぜなら、多くのUXの改善がされており、それは人間が開発を行うための操作を簡単にしているのです。しかし、それらはKubernetesに必要なものではありません。Kubernetesは人間ではないからです。
+このhuman-friendlyな抽象化レイヤが作られてために、結果としてはKubernetesクラスタはDockershimと呼ばれるほかのツールを使い、本当に必要な機能つまりcontainerdを利用してきました。これは素晴らしいとは言えません。なぜなら、我々がメンテする必要のあるものが増えますし、それは問題が発生する要因ともなります。今回の変更で実際に行われることというのは、Dockershimを最も早い場合でv1.23のリリースでkubeletから除外することです。その結果として、Dockerのサポートがなくなるということなのです。
+ここで、containerdがDockerに含まれているなら、なぜDockershimが必要なのかと疑問に思われる方もいるでしょう。
+
+DockerはCRI([Container Runtime Interface](https://kubernetes.io/blog/2016/12/container-runtime-interface-cri-in-kubernetes/))に準拠していません。もしそうであればshimは必要ないのですが、現実はそうでありません。
+しかし、これは世界の終わりでありません、心配しないでください。みなさんはContainer runtimeをDockerから他のサポート対象であるContainer runtimeに切り替えるだけでよいのです。
+
+1つ注意すべきことは、クラスターで行われる処理のなかでDocker socket(`/var/run/docker.sock`)に依存する部分がある場合、他のRuntimeへ切り替えるとこの部分が働かなくなるでしょう。このパターンはしばしばDocker in Dockerと呼ばれます。このような場合の対応方法はたくさんあります。[kaniko](https://github.com/GoogleContainerTools/kaniko)、[img](https://github.com/genuinetools/img)、[buildah](https://github.com/containers/buildah)などです。
+
+## では開発者にとって、この変更は何を意味するのか。これからもDockerfileを使ってよいのか。これからもDockerでビルドを行ってよいのか。 
+
+この変更は、Dockerを直接操作している多くのみなさんとは別の場面に影響を与えるでしょう。
+みなさんが開発を行う際に使用しているDockerと、Kubernetesクラスタの内部で使われているDocker runtimeは関係ありません。これがわかりにくいことは理解しています。開発者にとって、Dockerはこれからも便利なものであり、このアナウンスがあった前と変わらないでしょう。DockerでビルドされたImageは、決してDockerでだけ動作するというわけではありません。それはOCI([Open Container Initiative](https://opencontainers.org/)) Imageと呼ばれるものです。あらゆるOCI準拠のImageは、それを何のツールでビルドしたかによらず、Kubernetesから見れば同じものなのです。[containerd](https://containerd.io/)も[CRI-O](https://cri-o.io/)も、そのようなImageをPullし、起動することが出来ます。
+これがコンテナの仕様について、共通の仕様を策定している理由なのです。
+
+さて、この変更は決定しています。いくつかの問題は発生するかもしてませんが、決して壊滅的なものではなく、ほとんどの場合は良い変化となるでしょう。Kubernetesをどのように使用しているかによりますが、この変更が特に何の影響も及ぼさない人もいるでしょうし、影響がとても少ない場合もあります。長期的に見れば、物事を簡単にするのに役立つものです。
+もし、この問題がまだわかりにくいとしても、心配しないでください。Kubernetesでは多くのものが変化しており、その全てに完璧に精通している人など存在しません。
+経験の多寡や難易度にかかわらず、どんなことでも質問してください。我々の目標は、全ての人が将来の変化について、可能な限りの知識と理解を得られることです。
+このブログが多くの質問の答えとなり、不安を和らげることができればと願っています。
+
+別の情報をお探してあれば、[Dockershim Deprecation FAQ](/blog/2020/12/02/dockershim-faq/)を参照してください。
diff --git a/content/ja/docs/concepts/_index.md b/content/ja/docs/concepts/_index.md
index 1e22892eca..f8c7dd5cdb 100644
--- a/content/ja/docs/concepts/_index.md
+++ b/content/ja/docs/concepts/_index.md
@@ -35,7 +35,7 @@ Kubernetesには、デプロイ済みのコンテナ化されたアプリケー
 * [Volume](/docs/concepts/storage/volumes/)
 * [Namespace](/ja/docs/concepts/overview/working-with-objects/namespaces/)
 
-Kubernetesには、[コントローラー](/docs/concepts/architecture/controller/)に依存して基本オブジェクトを構築し、追加の機能と便利な機能を提供する高レベルの抽象化も含まれています。これらには以下のものを含みます:
+Kubernetesには、[コントローラー](/ja/docs/concepts/architecture/controller/)に依存して基本オブジェクトを構築し、追加の機能と便利な機能を提供する高レベルの抽象化も含まれています。これらには以下のものを含みます:
 
 * [Deployment](/ja/docs/concepts/workloads/controllers/deployment/)
 * [DaemonSet](/ja/docs/concepts/workloads/controllers/daemonset/)
diff --git a/content/ja/docs/concepts/architecture/cloud-controller.md b/content/ja/docs/concepts/architecture/cloud-controller.md
index a315616af3..fa7e5a34fc 100644
--- a/content/ja/docs/concepts/architecture/cloud-controller.md
+++ b/content/ja/docs/concepts/architecture/cloud-controller.md
@@ -177,7 +177,7 @@ rules:
 
 ## {{% heading "whatsnext" %}}
 
-[Cloud Controller Manager Administration](/docs/tasks/administer-cluster/running-cloud-controller/#cloud-controller-manager)
+[Cloud Controller Manager Administration](/ja/docs/tasks/administer-cluster/running-cloud-controller/#cloud-controller-manager)
 はクラウドコントラーマネージャーの実行と管理を説明しています。
 
 どのようにあなた自身のクラウドコントローラーマネージャーが実装されるのか、もしくは既存プロジェクトの拡張について知りたいですか？
@@ -186,4 +186,4 @@ rules:
 
 本ドキュメントでハイライトした共有コントローラー（Node、Route、Service）の実装と共有クラウドプロバイダーインターフェースに沿ったいくつかの足場は、Kubernetesコアの一部です。クラウドプロバイダに特化した実装は、Kubernetesのコアの外部として、また`CloudProvider`インターフェースを実装します。
 
-プラグイン開発ついての詳細な情報は、[Developing Cloud Controller Manager](/docs/tasks/administer-cluster/developing-cloud-controller-manager/)を見てください。
+プラグイン開発ついての詳細な情報は、[Developing Cloud Controller Manager](/ja/docs/tasks/administer-cluster/developing-cloud-controller-manager/)を見てください。
diff --git a/content/ja/docs/concepts/architecture/cri.md b/content/ja/docs/concepts/architecture/cri.md
new file mode 100644
index 0000000000..9ca24e41f0
--- /dev/null
+++ b/content/ja/docs/concepts/architecture/cri.md
@@ -0,0 +1,39 @@
+---
+title: コンテナランタイムインターフェイス(CRI)
+content_type: concept
+weight: 50
+---
+
+<!-- overview -->
+
+CRIは、クラスターコンポーネントを再コンパイルすることなく、kubeletがさまざまなコンテナランタイムを使用できるようにするプラグインインターフェイスです。
+
+{{< glossary_tooltip text="kubelet" term_id="kubelet" >}}が{{< glossary_tooltip text="Pod" term_id="pod" >}}とそのコンテナを起動できるように、クラスター内の各ノードで動作する{{<glossary_tooltip text="container runtime" term_id="container-runtime">}}が必要です。
+
+kubeletとContainerRuntime間の通信のメインプロトコルです。
+
+Kubernetes Container Runtime Interface(CRI)は、[クラスターコンポーネント](/ja/docs/concepts/overview/components/#node-components){{< glossary_tooltip text="kubelet" term_id="kubelet" >}}と{{<glossary_tooltip text="container runtime" term_id="container-runtime">}}間の通信用のメイン[gRPC](/ja/docs/concepts/overview/components/#node-components)プロトコルを定義します。
+
+<!-- body -->
+
+## API {#api}
+
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
+
+kubeletは、gRPCを介してコンテナランタイムに接続するときにクライアントとして機能します。ランタイムおよびイメージサービスエンドポイントは、コンテナランタイムで使用可能である必要があります。コンテナランタイムは、`--image-service-endpoint`および`--container-runtime-endpoint`[コマンドラインフラグ](/ja/docs/reference/command-line-tools-reference/kubelet)を使用して、kubelet内で個別に設定できます。
+
+Kubernetes v{{< skew currentVersion >}}の場合、kubeletはCRI `v1`の使用を優先します。
+コンテナランタイムがCRIの`v1`をサポートしていない場合、kubeletはサポートされている古いバージョンのネゴシエーションを試みます。
+kubelet v{{< skew currentVersion >}}はCRI `v1alpha2`をネゴシエートすることもできますが、このバージョンは非推奨と見なされます。
+kubeletがサポートされているCRIバージョンをネゴシエートできない場合、kubeletはあきらめて、ノードとして登録されません。
+
+## アップグレード
+
+Kubernetesをアップグレードする場合、kubeletはコンポーネントの再起動時に最新のCRIバージョンを自動的に選択しようとします。
+それが失敗した場合、フォールバックは上記のように行われます。
+コンテナランタイムがアップグレードされたためにgRPCリダイヤルが必要な場合は、コンテナランタイムも最初に選択されたバージョンをサポートする必要があります。
+そうでない場合、リダイヤルは失敗することが予想されます。これには、kubeletの再起動が必要です。
+
+## {{% heading "whatsnext" %}}
+
+- CRI[プロトコル定義](https://github.com/kubernetes/cri-api/blob/c75ef5b/pkg/apis/runtime/v1/api.proto)の詳細を学ぶ。
diff --git a/content/ja/docs/concepts/architecture/garbage-collection.md b/content/ja/docs/concepts/architecture/garbage-collection.md
new file mode 100644
index 0000000000..1ecf373059
--- /dev/null
+++ b/content/ja/docs/concepts/architecture/garbage-collection.md
@@ -0,0 +1,136 @@
+---
+title: ガベージコレクション
+content_type: concept
+weight: 50
+---
+
+<!-- overview -->
+ガベージコレクションは、Kubernetesがクラスターリソースをクリーンアップするために使用するさまざまなメカニズムの総称です。これにより、次のようなリソースのクリーンアップが可能になります:
+
+  * [失敗したPod](/ja/docs/concepts/workloads/pods/pod-lifecycle/#pod-garbage-collection)
+  * [完了したJob](/ja/docs/concepts/workloads/controllers/ttlafterfinished/)
+  * [owner referenceのないオブジェクト](#owners-dependents)
+  * [未使用のコンテナとコンテナイメージ](#containers-images)
+  * [StorageClassの再利用ポリシーがDeleteである動的にプロビジョニングされたPersistentVolume](/ja/docs/concepts/storage/persistent-volumes/#delete)
+  * [失効または期限切れのCertificateSigningRequests (CSRs)](/docs/reference/access-authn-authz/certificate-signing-requests/#request-signing-process)
+  * 次のシナリオで削除された{{<glossary_tooltip text="Node" term_id="node">}}:
+    * クラウド上でクラスターが[クラウドコントローラーマネージャー](/ja/docs/concepts/architecture/cloud-controller/)を使用する場合
+    * オンプレミスでクラスターがクラウドコントローラーマネージャーと同様のアドオンを使用する場合
+  * [Node Leaseオブジェクト](/ja/docs/concepts/architecture/nodes/#heartbeats)
+
+## オーナーの依存関係 {#owners-dependents}
+
+Kubernetesの多くのオブジェクトは、[*owner reference*](/docs/concepts/overview/working-with-objects/owners-dependents/)を介して相互にリンクしています。
+owner referenceは、どのオブジェクトが他のオブジェクトに依存しているかをコントロールプレーンに通知します。
+Kubernetesは、owner referenceを使用して、コントロールプレーンやその他のAPIクライアントに、オブジェクトを削除する前に関連するリソースをクリーンアップする機会を提供します。
+ほとんどの場合、Kubernetesはowner referenceを自動的に管理します。
+
+Ownershipは、一部のリソースでも使用される[ラベルおよびセレクター](/docs/concepts/overview/working-with-objects/labels/)メカニズムとは異なります。
+たとえば、`EndpointSlice`オブジェクトを作成する{{<glossary_tooltip text="Service" term_id="service">}}を考えます。
+Serviceは*ラベル*を使用して、コントロールプレーンがServiceに使用されている`EndpointSlice`オブジェクトを判別できるようにします。
+ラベルに加えて、Serviceに代わって管理される各`EndpointSlice`には、owner referenceがあります。
+owner referenceは、Kubernetesのさまざまな部分が制御していないオブジェクトへの干渉を回避するのに役立ちます。
+
+{{< note >}}
+namespace間のowner referenceは、設計上許可されていません。
+namespaceの依存関係は、クラスタースコープまたはnamespaceのオーナーを指定できます。
+namespaceのオーナーは、依存関係と同じnamespaceに**存在する必要があります**。
+そうでない場合、owner referenceは不在として扱われ、すべてのオーナーが不在であることが確認されると、依存関係は削除される可能性があります。
+
+クラスタースコープの依存関係は、クラスタースコープのオーナーのみを指定できます。
+v1.20以降では、クラスタースコープの依存関係がnamespaceを持つkindをオーナーとして指定している場合、それは解決できないowner referenceを持つものとして扱われ、ガベージコレクションを行うことはできません。
+
+V1.20以降では、ガベージコレクタは無効な名前空間間の`ownerReference`、またはnamespaceのkindを参照する`ownerReference`をもつクラスター・スコープの依存関係を検出した場合、無効な依存関係の`OwnerRefInvalidNamespace`と`involvedObject`を理由とする警告イベントが報告されます。
+以下のコマンドを実行すると、そのようなイベントを確認できます。
+`kubectl get events -A --field-selector=reason=OwnerRefInvalidNamespace`
+{{< /note >}}
+
+## カスケード削除 {#cascading-deletion}
+
+Kubernetesは、ReplicaSetを削除したときに残されたPodなど、owner referenceがなくなったオブジェクトをチェックして削除します。
+オブジェクトを削除する場合、カスケード削除と呼ばれるプロセスで、Kubernetesがオブジェクトの依存関係を自動的に削除するかどうかを制御できます。
+カスケード削除には、次の2つのタイプがあります。
+
+  * フォアグラウンドカスケード削除
+  * バックグラウンドカスケード削除
+
+また、Kubernetes {{<glossary_tooltip text="finalizer" term_id="finalizer">}}を使用して、ガベージコレクションがowner referenceを持つリソースを削除する方法とタイミングを制御することもできます。
+
+### フォアグラウンドカスケード削除 {#foreground-deletion}
+
+フォアグラウンドカスケード削除では、削除するオーナーオブジェクトは最初に*削除進行中*の状態になります。
+この状態では、オーナーオブジェクトに次のことが起こります。
+
+  * Kubernetes APIサーバーは、オブジェクトの`metadata.deletionTimestamp`フィールドを、オブジェクトに削除のマークが付けられた時刻に設定します。
+  * Kubernetes APIサーバーは、`metadata.finalizers`フィールドを`foregroundDeletion`に設定します。
+  * オブジェクトは、削除プロセスが完了するまで、KubernetesAPIを介して表示されたままになります。
+
+オーナーオブジェクトが削除進行中の状態に入ると、コントローラーは依存関係を削除します。
+すべての依存関係オブジェクトを削除した後、コントローラーはオーナーオブジェクトを削除します。
+この時点で、オブジェクトはKubernetesAPIに表示されなくなります。
+
+フォアグラウンドカスケード削除中に、オーナーの削除をブロックする依存関係は、`ownerReference.blockOwnerDeletion=true`フィールドを持つ依存関係のみです。
+詳細については、[フォアグラウンドカスケード削除の使用](/docs/tasks/administer-cluster/use-cascading-deletion/#use-foreground-cascading-deletion)を参照してください。
+
+### バックグラウンドカスケード削除 {#background-deletion}
+
+バックグラウンドカスケード削除では、Kubernetes APIサーバーがオーナーオブジェクトをすぐに削除し、コントローラーがバックグラウンドで依存オブジェクトをクリーンアップします。
+デフォルトでは、フォアグラウンド削除を手動で使用するか、依存オブジェクトを孤立させることを選択しない限り、Kubernetesはバックグラウンドカスケード削除を使用します。
+
+詳細については、[バックグラウンドカスケード削除の使用](/docs/tasks/administer-cluster/use-cascading-deletion/#use-background-cascading-deletion)を参照してください。
+
+### 孤立した依存関係
+
+Kubernetesがオーナーオブジェクトを削除すると、残された依存関係は*orphan*オブジェクトと呼ばれます。
+デフォルトでは、Kubernetesは依存関係オブジェクトを削除します。この動作をオーバーライドする方法については、[オーナーオブジェクトと孤立した依存関係の削除](/docs/tasks/administer-cluster/use-cascading-deletion/#set-orphan-deletion-policy)を参照してください。
+
+## 未使用のコンテナとイメージのガベージコレクション {#containers-images}
+
+{{<glossary_tooltip text="kubelet" term_id="kubelet">}}は未使用のイメージに対して5分ごとに、未使用のコンテナーに対して1分ごとにガベージコレクションを実行します。
+外部のガベージコレクションツールは、kubeletの動作を壊し、存在するはずのコンテナを削除する可能性があるため、使用しないでください。
+
+未使用のコンテナーとイメージのガベージコレクションのオプションを設定するには、[設定ファイル](/docs/tasks/administer-cluster/kubelet-config-file/)を使用してkubeletを調整し、[`KubeletConfiguration`](/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)リソースタイプを使用してガベージコレクションに関連するパラメーターを変更します。
+
+### コンテナイメージのライフサイクル
+
+Kubernetesは、kubeletの一部である*イメージマネージャー*を通じて、{{< glossary_tooltip text="cadvisor" term_id="cadvisor" >}}の協力を得て、すべてのイメージのライフサイクルを管理します。kubeletは、ガベージコレクションを決定する際に、次のディスク使用制限を考慮します。
+
+  * `HighThresholdPercent`
+  * `LowThresholdPercent`
+
+設定された`HighThresholdPercent`値を超えるディスク使用量はガベージコレクションをトリガーします。
+ガベージコレクションは、最後に使用された時間に基づいて、最も古いものから順にイメージを削除します。
+kubeletは、ディスク使用量が`LowThresholdPercent`値に達するまでイメージを削除します。
+
+### コンテナイメージのガベージコレクション {#container-image-garbage-collection}
+
+kubeletは、次の変数に基づいて未使用のコンテナをガベージコレクションします。
+
+  * `MinAge`: kubeletがガベージコレクションできるコンテナの最低期間。`0`を設定すると無効化されます。
+  * `MaxPerPodContainer`: 各Podのペアが持つことができるデッドコンテナの最大数。`0`未満に設定すると無効化されます。
+  * `MaxContainers`: クラスターが持つことができるデッドコンテナーの最大数。`0`未満に設定すると無効化されます。
+
+これらの変数に加えて、kubeletは、通常、最も古いものから順に、定義されていない削除されたコンテナをガベージコレクションします。
+
+`MaxPerPodContainer`と`MaxContainer`は、Podごとのコンテナーの最大数(`MaxPerPodContainer`)を保持すると、グローバルなデッドコンテナの許容合計(`MaxContainers`)を超える状況で、互いに競合する可能性があります。
+この状況では、kubeletは`MaxPodPerContainer`を調整して競合に対処します。最悪のシナリオは、`MaxPerPodContainer`を1にダウングレードし、最も古いコンテナーを削除することです。
+さらに、削除されたPodが所有するコンテナは、`MinAge`より古くなると削除されます。
+
+{{<note>}}
+ kubeletがガベージコレクションするのは、自分が管理するコンテナのみです。
+{{</note>}}
+
+## ガベージコレクションの設定 {#configuring-gc}
+
+これらのリソースを管理するコントローラーに固有のオプションを設定することにより、リソースのガベージコレクションを調整できます。次のページは、ガベージコレクションを設定する方法を示しています。
+
+  * [Kubernetesオブジェクトのカスケード削除の設定](/docs/tasks/administer-cluster/use-cascading-deletion/)
+  * [完了したジョブのクリーンアップの設定](/ja/docs/concepts/workloads/controllers/ttlafterfinished/)
+  
+<!-- * [Configuring unused container and image garbage collection](/docs/tasks/administer-cluster/reconfigure-kubelet/) -->
+
+## {{% heading "whatsnext" %}}
+
+* [Kubernetes オブジェクトの所有権](/docs/concepts/overview/working-with-objects/owners-dependents/)を学びます。
+* Kubernetes [finalizer](/docs/concepts/overview/working-with-objects/finalizers/)を学びます。
+* 完了したジョブをクリーンアップする[TTL controller](/ja/docs/concepts/workloads/controllers/ttlafterfinished/)(beta)について学びます。
diff --git a/content/ja/docs/concepts/architecture/master-node-communication.md b/content/ja/docs/concepts/architecture/master-node-communication.md
index e15d1187ad..d8e6b0f9f5 100644
--- a/content/ja/docs/concepts/architecture/master-node-communication.md
+++ b/content/ja/docs/concepts/architecture/master-node-communication.md
@@ -17,7 +17,7 @@ weight: 20
 ## クラスターからマスターへの通信
 
 クラスターからマスターへのすべての通信経路は、APIサーバーで終端します(他のマスターコンポーネントはどれもリモートサービスを公開するように設計されていません)。
-一般的には、1つ以上の形式のクライアント[認証](/docs/reference/access-authn-authz/authentication/)が有効になっている状態で、APIサーバーはセキュアなHTTPSポート(443)でリモート接続をlistenするように構成されています。
+一般的には、1つ以上の形式のクライアント[認証](/ja/docs/reference/access-authn-authz/authentication/)が有効になっている状態で、APIサーバーはセキュアなHTTPSポート(443)でリモート接続をlistenするように構成されています。
 特に[匿名のリクエスト](/docs/reference/access-authn-authz/authentication/#anonymous-requests)または[サービスアカウントトークン](/docs/reference/access-authn-authz/authentication/#service-account-tokens)が許可されている場合は、1つまたは複数の[認証](/docs/reference/access-authn-authz/authorization/)を有効にする必要があります。
 
 ノードには、有効なクライアント認証情報を使って安全にAPIサーバーに接続できるように、クラスターのパブリックなルート証明書をプロビジョニングする必要があります。
diff --git a/content/ja/docs/concepts/architecture/nodes.md b/content/ja/docs/concepts/architecture/nodes.md
index bf5fa1acb9..b2ba14b239 100644
--- a/content/ja/docs/concepts/architecture/nodes.md
+++ b/content/ja/docs/concepts/architecture/nodes.md
@@ -137,7 +137,7 @@ kubectl describe node <ノード名をここに挿入>
 `SchedulingDisabled`はKubernetesのAPIにおけるConditionではありません;その代わり、cordonされたノードはUnschedulableとしてマークされます。
 {{< /note >}}
 
-ノードのConditionはJSONオブジェクトで表現されます。例えば、正常なノードの場合は以下のような構造体が表示されます。
+Nodeの状態は、Nodeリソースの`.status`の一部として表現されます。例えば、正常なノードの場合は以下のようなjson構造が表示されます。
 
 ```json
 "conditions": [
@@ -173,36 +173,25 @@ CapacityとAllocatableについて深く知りたい場合は、ノード上で
 ### Info {#info}
 
 カーネルのバージョン、Kubernetesのバージョン（kubeletおよびkube-proxyのバージョン）、（使用されている場合）Dockerのバージョン、OS名など、ノードに関する一般的な情報です。
-この情報はノードからkubeletを通じて取得されます。
+この情報はノードからkubeletを通じて取得され、Kubernetes APIに公開されます。
 
-## 管理 {#management}
 
-[Pod](/ja/docs/concepts/workloads/pods/pod/)や[Service](/ja/docs/concepts/services-networking/service/)と違い、ノードは本質的にはKubernetesによって作成されません。GCPのようなクラウドプロバイダーによって外的に作成されるか、VMや物理マシンのプールに存在するものです。そのため、Kubernetesがノードを作成すると、そのノードを表すオブジェクトが作成されます。作成後、Kubernetesはそのノードが有効かどうかを確認します。 たとえば、次の内容からノードを作成しようとしたとします:
+## ハートビート
+ハートビートは、Kubernetesノードから送信され、ノードが利用可能か判断するのに役立ちます。
+以下の２つのハートビートがあります：
+* Nodeの`.status`の更新
+* [Lease object](/docs/reference/generated/kubernetes-api/{{< latest-version >}}#lease-v1-coordination-k8s-io)です。
+各ノードは`kube-node-lease`という{{< glossary_tooltip term_id="namespace" text="namespace">}}に関連したLeaseオブジェクトを持ちます。
+Leaseは軽量なリソースで、クラスターのスケールに応じてノードのハートビートにおけるパフォーマンスを改善します。
 
-```json
-{
-  "kind": "Node",
-  "apiVersion": "v1",
-  "metadata": {
-    "name": "10.240.79.157",
-    "labels": {
-      "name": "my-first-k8s-node"
-    }
-  }
-}
-```
+kubeletが`NodeStatus`とLeaseオブジェクトの作成および更新を担当します。
 
-Kubernetesは内部的にNodeオブジェクトを作成し、 `metadata.name`フィールドに基づくヘルスチェックによってノードを検証します。ノードが有効な場合、つまり必要なサービスがすべて実行されている場合は、Podを実行する資格があります。それ以外の場合、該当ノードが有効になるまではいかなるクラスターの活動に対しても無視されます。
-Nodeオブジェクトの名前は有効な[DNSサブドメイン名](/ja/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)である必要があります。
+- kubeletは、ステータスに変化があったり、設定した間隔の間に更新がない時に`NodeStatus`を更新します。`NodeStatus`更新のデフォルト間隔は５分です。(到達不能の場合のデフォルトタイムアウトである40秒よりもはるかに長いです)
+- kubeletは10秒間隔(デフォルトの更新間隔)でLeaseオブジェクトの生成と更新を実施します。Leaseの更新は`NodeStatus`の更新とは独立されて行われます。Leaseの更新が失敗した場合、kubeletは200ミリ秒から始まり7秒を上限とした指数バックオフでリトライします。
 
-{{< note >}}
-Kubernetesは無効なノードのためにオブジェクトを保存し、それをチェックし続けます。
-このプロセスを停止するには、Nodeオブジェクトを明示的に削除する必要があります。
-{{< /note >}}
 
-現在、Kubernetesのノードインターフェースと相互作用する3つのコンポーネントがあります。ノードコントローラー、kubelet、およびkubectlです。
 
-### ノードコントローラー
+## ノードコントローラー
 
 ノード{{< glossary_tooltip text="コントローラー" term_id="controller" >}}は、ノードのさまざまな側面を管理するKubernetesのコントロールプレーンコンポーネントです。
 
@@ -216,16 +205,6 @@ Kubernetesは無効なノードのためにオブジェクトを保存し、そ
 ノードが到達不能(例えば、ノードがダウンしているなどので理由で、ノードコントローラーがハートビートの受信を停止した場合)になると、ノードコントローラーは、NodeStatusのNodeReady conditionをConditionUnknownに変更する役割があります。その後も該当ノードが到達不能のままであった場合、Graceful Terminationを使って全てのPodを退役させます。デフォルトのタイムアウトは、ConditionUnknownの報告を開始するまで40秒、その後Podの追い出しを開始するまで5分に設定されています。
 ノードコントローラーは、`--node-monitor-period`に設定された秒数ごとに各ノードの状態をチェックします。
 
-#### ハートビート
-ハートビートは、Kubernetesノードから送信され、ノードが利用可能か判断するのに役立ちます。
-２つのハートビートがあります：`NodeStatus`の更新と[Lease object](/docs/reference/generated/kubernetes-api/{{< latest-version >}}#lease-v1-coordination-k8s-io)です。
-各ノードは`kube-node-lease`という{{< glossary_tooltip term_id="namespace" text="namespace">}}に関連したLeaseオブジェクトを持ちます。
-Leaseは軽量なリソースで、クラスターのスケールに応じてノードのハートビートにおけるパフォーマンスを改善します。
-
-kubeletが`NodeStatus`とLeaseオブジェクトの作成および更新を担当します。
-
-- kubeletは、ステータスに変化があったり、設定した間隔の間に更新がない時に`NodeStatus`を更新します。`NodeStatus`更新のデフォルト間隔は５分です。（到達不能の場合のデフォルトタイムアウトである40秒よりもはるかに長いです）
-- kubeletは10秒間隔(デフォルトの更新間隔)でLeaseオブジェクトの生成と更新を実施します。Leaseの更新は`NodeStatus`の更新とは独立されて行われます。Leaseの更新が失敗した場合、kubeletは200ミリ秒から始まり7秒を上限とした指数バックオフでリトライします。
 
 #### 信頼性
 
@@ -267,7 +246,89 @@ Pod以外のプロセス用にリソースを明示的に予約したい場合
 {{< feature-state state="alpha" for_k8s_version="v1.16" >}}
 `TopologyManager`の[フィーチャーゲート](/ja/docs/reference/command-line-tools-reference/feature-gates/)を有効にすると、
 kubeletはリソースの割当を決定する際にトポロジーのヒントを利用できます。
-詳細は、[ノードのトポロジー管理ポリシーを制御する](/docs/tasks/administer-cluster/topology-manager/)を参照してください。
+詳細は、[ノードのトポロジー管理ポリシーを制御する](/ja/docs/tasks/administer-cluster/topology-manager/)を参照してください。
+
+## ノードの正常終了 {#graceful-node-shutdown}
+
+{{< feature-state state="beta" for_k8s_version="v1.21" >}}
+
+kubeletは、ノードのシステムシャットダウンを検出すると、ノード上で動作しているPodを終了させます。
+
+Kubelet は、ノードのシャットダウン時に、ポッドが通常の[通常のポッド終了プロセス](/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)に従うようにします。
+
+Graceful Node Shutdownはsystemdに依存しているため、[systemd inhibitor locks](https://www.freedesktop.org/wiki/Software/systemd/inhibit/)を
+利用してノードのシャットダウンを一定時間遅らせることができます。
+
+Graceful Node Shutdownは、v1.21でデフォルトで有効になっている`GracefulNodeShutdown` [フィーチャーゲート](/ja/docs/reference/command-line-tools-reference/feature-gates/)で制御されます。
+
+なお、デフォルトでは、後述の設定オプション`ShutdownGracePeriod`および`ShutdownGracePeriodCriticalPods`の両方がゼロに設定されているため、Graceful node shutdownは有効になりません。この機能を有効にするには、この2つのkubeletの設定を適切に設定し、ゼロ以外の値を設定する必要があります。
+
+Graceful shutdownでは、kubeletは以下の2段階でPodを終了させます。
+
+1. そのノード上で動作している通常のPodを終了させます。
+2. そのノード上で動作している[critical pods](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical)を終了させます。
+
+Graceful Node Shutdownには、2つの[`KubeletConfiguration`](/docs/tasks/administer-cluster/kubelet-config-file/)オプションを設定します。:
+* `ShutdownGracePeriod`:
+  *  ノードがシャットダウンを遅らせるべき合計期間を指定します。これは、通常のPodと[critical pods](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical)の両方のPod終了の合計猶予期間です。
+* `ShutdownGracePeriodCriticalPods`:
+  * ノードのシャットダウン時に[critical pods](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical)を終了させるために使用する期間を指定します。この値は、ShutdownGracePeriodよりも小さくする必要があります。
+
+例えば、`ShutdownGracePeriod=30s`、`ShutdownGracePeriodCriticalPods=10s`とすると、
+kubeletはノードのシャットダウンを30秒遅らせます。シャットダウンの間、最初の20(30-10)秒は通常のポッドを優雅に終了させるために確保され、
+残りの10秒は重要なポッドを終了させるために確保されることになります。
+
+{{< note >}}
+Graceful Node Shutdown中にPodが退避された場合、それらのPodの`.status`は`Failed`になります。
+`kubectl get pods`を実行すると、退避させられたPodのステータスが `Shutdown` と表示されます。
+また、`kubectl describe pod`を実行すると、ノードのシャットダウンのためにPodが退避されたことがわかります。
+
+```
+Status:         Failed
+Reason:         Shutdown
+Message:        Node is shutting, evicting pods
+```
+
+失敗したポッドオブジェクトは、明示的に削除されるか、[GCによってクリーンアップ](/docs/concepts/workloads/pods/pod-lifecycle/#pod-garbage-collection)されるまで保存されます。
+これは、ノードが突然終了した場合とは異なった振る舞いです。
+
+{{< /note >}}
+
+## スワップメモリの管理 {#swap-memory}
+
+{{< feature-state state="alpha" for_k8s_version="v1.22" >}}
+
+Kubernetes 1.22以前では、ノードはスワップメモリの使用をサポートしておらず、ノード上でスワップが検出された場合、
+kubeletはデフォルトで起動に失敗していました。1.22以降では、スワップメモリのサポートをノードごとに有効にすることができます。
+
+
+
+ノードでスワップを有効にするには、kubeletの `NodeSwap` [フィーチャーゲート](/ja/docs/reference/command-line-tools-reference/feature-gates/)を有効にし、
+`--fail-swap-on`コマンドラインフラグまたは`failSwapOn`[KubeletConfiguration](/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)を false に設定する必要があります。
+
+
+ユーザーはオプションで、ノードがスワップメモリをどのように使用するかを指定するために、`memorySwap.swapBehavior`を設定することもできます。ノードがスワップメモリをどのように使用するかを指定します。例えば、以下のようになります。
+
+```yaml
+memorySwap:
+  swapBehavior: LimitedSwap
+```
+
+swapBehaviorで使用できる設定オプションは以下の通りです。:
+- `LimitedSwap`: Kubernetesのワークロードが、使用できるスワップ量に制限を設けます。Kubernetesが管理していないノード上のワークロードは、依然としてスワップを使用できます。
+- `UnlimitedSwap`: Kubernetesのワークロードが使用できるスワップ量に制限を設けません。システムの限界まで、要求されただけのスワップメモリを使用することができます。
+
+`memorySwap`の設定が指定されておらず、[フィーチャーゲート](/ja/docs/reference/command-line-tools-reference/feature-gates/)が有効な場合、デフォルトのkubeletは`LimitedSwap`の設定と同じ動作を適用します。
+
+`LimitedSwap`設定の動作は、ノードがコントロールグループ(「cgroups」とも呼ばれる)のv1とv2のどちらで動作しているかによって異なります。
+
+Kubernetesのワークロードでは、メモリとスワップを組み合わせて使用することができ、ポッドのメモリ制限が設定されている場合はその制限まで使用できます。
+- **cgroupsv1:** Kubernetesのワークロードは、メモリとスワップを組み合わせて使用することができ、ポッドのメモリ制限が設定されている場合はその制限まで使用できます。
+- **cgroupsv2:** Kubernetesのワークロードは、スワップメモリを使用できません。
+
+詳しくは、[KEP-2400](https://github.com/kubernetes/enhancements/issues/2400)と
+[design proposal](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/2400-node-swap/README.md)をご覧いただき、テストにご協力、ご意見をお聞かせください。
+
 
 ## {{% heading "whatsnext" %}}
 
diff --git a/content/ja/docs/concepts/cluster-administration/addons.md b/content/ja/docs/concepts/cluster-administration/addons.md
index c07cfce07c..f1740c56c8 100644
--- a/content/ja/docs/concepts/cluster-administration/addons.md
+++ b/content/ja/docs/concepts/cluster-administration/addons.md
@@ -17,20 +17,20 @@ content_type: concept
 
 * [ACI](https://www.github.com/noironetworks/aci-containers)は、統合されたコンテナネットワークとネットワークセキュリティをCisco ACIを使用して提供します。
 * [Antrea](https://antrea.io/)は、L3またはL4で動作して、Open vSwitchをネットワークデータプレーンとして活用する、Kubernetes向けのネットワークとセキュリティサービスを提供します。
-* [Calico](https://docs.projectcalico.org/latest/introduction/)はネットワークとネットワークプリシーのプロバイダーです。Calicoは、BGPを使用または未使用の非オーバーレイおよびオーバーレイネットワークを含む、フレキシブルなさまざまなネットワークオプションをサポートします。Calicoはホスト、Pod、そして(IstioとEnvoyを使用している場合には)サービスメッシュ上のアプリケーションに対してネットワークポリシーを強制するために、同一のエンジンを使用します。
-* [Canal](https://github.com/tigera/canal/tree/master/k8s-install)はFlannelとCalicoをあわせたもので、ネットワークとネットワークポリシーを提供します。
+* [Calico](https://docs.projectcalico.org/latest/introduction/)はネットワークとネットワークポリシーのプロバイダーです。Calicoは、BGPを使用または未使用の非オーバーレイおよびオーバーレイネットワークを含む、フレキシブルなさまざまなネットワークオプションをサポートします。Calicoはホスト、Pod、そして(IstioとEnvoyを使用している場合には)サービスメッシュ上のアプリケーションに対してネットワークポリシーを強制するために、同一のエンジンを使用します。
+* [Canal](https://projectcalico.docs.tigera.io/getting-started/kubernetes/flannel/flannel)はFlannelとCalicoをあわせたもので、ネットワークとネットワークポリシーを提供します。
 * [Cilium](https://github.com/cilium/cilium)は、L3のネットワークとネットワークポリシーのプラグインで、HTTP/API/L7のポリシーを透過的に強制できます。ルーティングとoverlay/encapsulationモードの両方をサポートしており、他のCNIプラグイン上で機能できます。
-* [CNI-Genie](https://github.com/Huawei-PaaS/CNI-Genie)は、KubernetesをCalico、Canal、Flannel、Romana、Weaveなど選択したCNIプラグインをシームレスに接続できるようにするプラグインです。
-* [Contiv](https://contiv.github.io)は、さまざまなユースケースと豊富なポリシーフレームワーク向けに設定可能なネットワーク(BGPを使用したネイティブのL3、vxlanを使用したオーバーレイ、古典的なL2、Cisco-SDN/ACI)を提供します。Contivプロジェクトは完全に[オープンソース](https://github.com/contiv)です。[インストーラ](https://github.com/contiv/install)はkubeadmとkubeadm以外の両方をベースとしたインストールオプションがあります。
+* [CNI-Genie](https://github.com/cni-genie/CNI-Genie)は、KubernetesをCalico、Canal、Flannel、Weaveなど選択したCNIプラグインをシームレスに接続できるようにするプラグインです。
+* [Contiv](https://contivpp.io/)は、さまざまなユースケースと豊富なポリシーフレームワーク向けに設定可能なネットワーク(BGPを使用したネイティブのL3、vxlanを使用したオーバーレイ、古典的なL2、Cisco-SDN/ACI)を提供します。Contivプロジェクトは完全に[オープンソース](https://github.com/contiv)です。[インストーラー](https://github.com/contiv/install)はkubeadmとkubeadm以外の両方をベースとしたインストールオプションがあります。
 * [Contrail](https://www.juniper.net/us/en/products-services/sdn/contrail/contrail-networking/)は、[Tungsten Fabric](https://tungsten.io)をベースにしている、オープンソースでマルチクラウドに対応したネットワーク仮想化およびポリシー管理プラットフォームです。ContrailおよびTungsten Fabricは、Kubernetes、OpenShift、OpenStack、Mesosなどのオーケストレーションシステムと統合されており、仮想マシン、コンテナ/Pod、ベアメタルのワークロードに隔離モードを提供します。
 * [Flannel](https://github.com/flannel-io/flannel#deploying-flannel-manually)は、Kubernetesで使用できるオーバーレイネットワークプロバイダーです。
 * [Knitter](https://github.com/ZTE/Knitter/)は、1つのKubernetes Podで複数のネットワークインターフェイスをサポートするためのプラグインです。
-* [Multus](https://github.com/Intel-Corp/multus-cni)は、すべてのCNIプラグイン(たとえば、Calico、Cilium、Contiv、Flannel)に加えて、SRIOV、DPDK、OVS-DPDK、VPPをベースとするKubernetes上のワークロードをサポートする、複数のネットワークサポートのためのマルチプラグインです。
-* [OVN-Kubernetes](https://github.com/ovn-org/ovn-kubernetes/)は、Open vSwitch(OVS)プロジェクトから生まれた仮想ネットワーク実装である[OVN(Open Virtual Network)](https://github.com/ovn-org/ovn/)をベースとする、Kubernetesのためのネットワークプロバイダです。OVN-Kubernetesは、OVSベースのロードバランサーおよびネットワークポリシーの実装を含む、Kubernetes向けのオーバーレイベースのネットワーク実装を提供します。
+* [Multus](https://github.com/k8snetworkplumbingwg/multus-cni)は、すべてのCNIプラグイン(たとえば、Calico、Cilium、Contiv、Flannel)に加えて、SRIOV、DPDK、OVS-DPDK、VPPをベースとするKubernetes上のワークロードをサポートする、複数のネットワークサポートのためのマルチプラグインです。
+* [OVN-Kubernetes](https://github.com/ovn-org/ovn-kubernetes/)は、Open vSwitch(OVS)プロジェクトから生まれた仮想ネットワーク実装である[OVN(Open Virtual Network)](https://github.com/ovn-org/ovn/)をベースとする、Kubernetesのためのネットワークプロバイダーです。OVN-Kubernetesは、OVSベースのロードバランサーおよびネットワークポリシーの実装を含む、Kubernetes向けのオーバーレイベースのネットワーク実装を提供します。
 * [OVN4NFV-K8S-Plugin](https://github.com/opnfv/ovn4nfv-k8s-plugin)は、クラウドネイティブベースのService function chaining(SFC)、Multiple OVNオーバーレイネットワーク、動的なサブネットの作成、動的な仮想ネットワークの作成、VLANプロバイダーネットワーク、Directプロバイダーネットワークを提供し、他のMulti-networkプラグインと付け替え可能なOVNベースのCNIコントローラープラグインです。
-* [NSX-T](https://docs.vmware.com/en/VMware-NSX-T/2.0/nsxt_20_ncp_kubernetes.pdf) Container Plug-in(NCP)は、VMware NSX-TとKubernetesなどのコンテナオーケストレーター間のインテグレーションを提供します。また、NSX-Tと、Pivotal Container Service(PKS)とOpenShiftなどのコンテナベースのCaaS/PaaSプラットフォームとのインテグレーションも提供します。
+* [NSX-T](https://docs.vmware.com/en/VMware-NSX-T-Data-Center/index.html) Container Plug-in(NCP)は、VMware NSX-TとKubernetesなどのコンテナオーケストレーター間のインテグレーションを提供します。また、NSX-Tと、Pivotal Container Service(PKS)とOpenShiftなどのコンテナベースのCaaS/PaaSプラットフォームとのインテグレーションも提供します。
 * [Nuage](https://github.com/nuagenetworks/nuage-kubernetes/blob/v5.1.1-1/docs/kubernetes-1-installation.rst)は、Kubernetes Podと非Kubernetes環境間で可視化とセキュリティモニタリングを使用してポリシーベースのネットワークを提供するSDNプラットフォームです。
-* [Romana](https://romana.io)は、[NetworkPolicy API](/docs/concepts/services-networking/network-policies/)もサポートするPodネットワーク向けのL3のネットワークソリューションです。Kubeadmアドオンのインストールの詳細は[こちら](https://github.com/romana/romana/tree/master/containerize)で確認できます。
+* [Romana](https://github.com/romana)は、[NetworkPolicy](/ja/docs/concepts/services-networking/network-policies/) APIもサポートするPodネットワーク向けのL3のネットワークソリューションです。
 * [Weave Net](https://www.weave.works/docs/net/latest/kubernetes/kube-addon/)は、ネットワークパーティションの両面で機能し、外部データベースを必要とせずに、ネットワークとネットワークポリシーを提供します。
 
 ## サービスディスカバリ
@@ -45,6 +45,7 @@ content_type: concept
 ## インフラストラクチャ
 
 * [KubeVirt](https://kubevirt.io/user-guide/#/installation/installation)は仮想マシンをKubernetes上で実行するためのアドオンです。通常、ベアメタルのクラスタで実行します。
+* [node problem detector](https://github.com/kubernetes/node-problem-detector)はLinuxノード上で動作し、システムの問題を[Event](/docs/reference/kubernetes-api/cluster-resources/event-v1/)または[ノードのCondition](/ja/docs/concepts/architecture/nodes/#condition)として報告します。
 
 ## レガシーなアドオン
 
diff --git a/content/ja/docs/concepts/cluster-administration/cluster-administration-overview.md b/content/ja/docs/concepts/cluster-administration/cluster-administration-overview.md
index 89b3b28919..9f27d7779d 100644
--- a/content/ja/docs/concepts/cluster-administration/cluster-administration-overview.md
+++ b/content/ja/docs/concepts/cluster-administration/cluster-administration-overview.md
@@ -31,11 +31,11 @@ Kubernetesクラスターの計画、セットアップ、設定の例を知る
 
 * [ノードの管理](/ja/docs/concepts/architecture/nodes/)方法について学んでください。
 
-* 共有クラスターにおける[リソースクォータ](/docs/concepts/policy/resource-quotas/)のセットアップと管理方法について学んでください。
+* 共有クラスターにおける[リソースクォータ](/ja/docs/concepts/policy/resource-quotas/)のセットアップと管理方法について学んでください。
 
 ## クラスターをセキュアにする
 
-* [Certificates](/docs/concepts/cluster-administration/certificates/)では、異なるツールチェインを使用して証明書を作成する方法を説明します。
+* [Certificates](/ja/docs/concepts/cluster-administration/certificates/)では、異なるツールチェインを使用して証明書を作成する方法を説明します。
 
 * [Kubernetes コンテナの環境](/ja/docs/concepts/containers/container-environment/)では、Kubernetesノード上でのKubeletが管理するコンテナの環境について説明します。
 
diff --git a/content/ja/docs/concepts/cluster-administration/logging.md b/content/ja/docs/concepts/cluster-administration/logging.md
new file mode 100644
index 0000000000..9e5b60367e
--- /dev/null
+++ b/content/ja/docs/concepts/cluster-administration/logging.md
@@ -0,0 +1,204 @@
+---
+title: ロギングのアーキテクチャ
+content_type: concept
+weight: 60
+---
+
+<!-- overview -->
+
+アプリケーションログは、アプリケーション内で何が起こっているかを理解するのに役立ちます。ログは、問題のデバッグとクラスターアクティビティの監視に特に役立ちます。最近のほとんどのアプリケーションには、何らかのロギングメカニズムがあります。同様に、コンテナエンジンはロギングをサポートするように設計されています。コンテナ化されたアプリケーションで、最も簡単で最も採用されているロギング方法は、標準出力と標準エラーストリームへの書き込みです。
+
+ただし、コンテナエンジンまたはランタイムによって提供されるネイティブ機能は、たいていの場合、完全なロギングソリューションには十分ではありません。
+
+たとえば、コンテナがクラッシュした場合やPodが削除された場合、またはノードが停止した場合に、アプリケーションのログにアクセスしたい場合があります。
+
+クラスターでは、ノードやPod、またはコンテナに関係なく、ノードに個別のストレージとライフサイクルが必要です。この概念は、_クラスターレベルロギング_ と呼ばれます。
+
+<!-- body -->
+
+クラスターレベルロギングのアーキテクチャでは、ログを保存、分析、およびクエリするための個別のバックエンドが必要です。Kubernetesは、ログデータ用のネイティブストレージソリューションを提供していません。代わりに、Kubernetesに統合される多くのロギングソリューションがあります。次のセクションでは、ノードでログを処理および保存する方法について説明します。
+
+## Kubernetesでの基本的なロギング {#basic-logging-in-kubernetes}
+
+この例では、1秒に1回標準出力ストリームにテキストを書き込むコンテナを利用する、`Pod` specificationを使います。
+
+{{< codenew file="debug/counter-pod.yaml" >}}
+
+このPodを実行するには、次のコマンドを使用します:
+
+```shell
+kubectl apply -f https://k8s.io/examples/debug/counter-pod.yaml
+```
+
+出力は次のようになります:
+
+```console
+pod/counter created
+```
+
+ログを取得するには、以下のように`kubectl logs`コマンドを使用します:
+
+```shell
+kubectl logs counter
+```
+
+出力は次のようになります:
+
+```console
+0: Mon Jan  1 00:00:00 UTC 2001
+1: Mon Jan  1 00:00:01 UTC 2001
+2: Mon Jan  1 00:00:02 UTC 2001
+...
+```
+
+コンテナの以前のインスタンスからログを取得するために、`kubectl logs --previous`を使用できます。Podに複数のコンテナがある場合は、次のように-cフラグでコマンドにコンテナ名を追加することで、アクセスするコンテナのログを指定します。
+
+```console
+kubectl logs counter -c count
+```
+
+詳細については、[`kubectl logs`ドキュメント](/docs/reference/generated/kubectl/kubectl-commands#logs)を参照してください。
+
+## ノードレベルでのロギング {#logging-at-the-node-level}
+
+![Node level logging](/images/docs/user-guide/logging/logging-node-level.png)
+
+コンテナエンジンは、生成された出力を処理して、コンテナ化されたアプリケーションの`stdout`と`stderr`ストリームにリダイレクトします。たとえば、Dockerコンテナエンジンは、これら2つのストリームを[ロギングドライバー](https://docs.docker.com/engine/admin/logging/overview)にリダイレクトします。ロギングドライバーは、JSON形式でファイルに書き込むようにKubernetesで設定されています。
+
+{{< note >}}
+Docker JSONロギングドライバーは、各行を個別のメッセージとして扱います。Dockerロギングドライバーを使用する場合、複数行メッセージを直接サポートすることはできません。ロギングエージェントレベルあるいはそれ以上のレベルで、複数行のメッセージを処理する必要があります。
+{{< /note >}}
+
+デフォルトでは、コンテナが再起動すると、kubeletは1つの終了したコンテナをログとともに保持します。Podがノードから削除されると、対応する全てのコンテナが、ログとともに削除されます。
+
+ノードレベルロギングでの重要な考慮事項は、ノードで使用可能な全てのストレージをログが消費しないように、ログローテーションを実装することです。Kubernetesはログのローテーションを担当しませんが、デプロイツールでそれに対処するソリューションを構築する必要があります。たとえば、`kube-up.sh`スクリプトによってデプロイされたKubernetesクラスターには、1時間ごとに実行するように構成された[`logrotate`](https://linux.die.net/man/8/logrotate)ツールがあります。アプリケーションのログを自動的にローテーションするようにコンテナランタイムを構築することもできます。
+
+例として、[`configure-helper` script](https://github.com/kubernetes/kubernetes/blob/master/cluster/gce/gci/configure-helper.sh)に対応するスクリプトである`kube-up.sh`が、どのようにGCPでCOSイメージのロギングを構築しているかについて、詳細な情報を見つけることができます。
+
+**CRIコンテナランタイム**を使用する場合、kubeletはログのローテーションとログディレクトリ構造の管理を担当します。kubeletはこの情報をCRIコンテナランタイムに送信し、ランタイムはコンテナログを指定された場所に書き込みます。2つのkubeletパラメーター、[`container-log-max-size`と`container-log-max-files`](/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)を[kubelet設定ファイル](/docs/tasks/administer-cluster/kubelet-config-file/)で使うことで、各ログファイルの最大サイズと各コンテナで許可されるファイルの最大数をそれぞれ設定できます。
+
+基本的なロギングの例のように、[`kubectl logs`](/docs/reference/generated/kubectl/kubectl-commands#logs)を実行すると、ノード上のkubeletがリクエストを処理し、ログファイルから直接読み取ります。kubeletはログファイルの内容を返します。
+
+{{< note >}}
+外部システムがローテーションを実行した場合、またはCRIコンテナランタイムが使用されている場合は、最新のログファイルの内容のみが`kubectl logs`で利用可能になります。例えば、10MBのファイルがある場合、`logrotate`によるローテーションが実行されると、2つのファイルが存在することになります: 1つはサイズが10MBのファイルで、もう1つは空のファイルです。この例では、`kubectl logs`は最新のログファイルの内容、つまり空のレスポンスを返します。
+{{< /note >}}
+
+### システムコンポーネントログ {#system-component-logs}
+
+システムコンポーネントには、コンテナ内で実行されるものとコンテナ内で実行されないものの2種類があります。例えば以下のとおりです。
+
+* Kubernetesスケジューラーとkube-proxyはコンテナ内で実行されます。
+* kubeletとコンテナランタイムはコンテナ内で実行されません。
+
+systemdを搭載したマシンでは、kubeletとコンテナランタイムがjournaldに書き込みます。systemdが存在しない場合、kubeletとコンテナランタイムは`var/log`ディレクトリ内の`.log`ファイルに書き込みます。コンテナ内のシステムコンポーネントは、デフォルトのロギングメカニズムを迂回して、常に`/var/log`ディレクトリに書き込みます。それらは[`klog`](https://github.com/kubernetes/klog)というロギングライブラリを使用します。これらのコンポーネントのロギングの重大性に関する規則は、[development docs on logging](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-instrumentation/logging.md)に記載されています。
+
+コンテナログと同様に、`/var/log`ディレクトリ内のシステムコンポーネントログはローテーションする必要があります。`kube-up.sh`スクリプトによって生成されたKubernetesクラスターでは、これらのログは、`logrotate`ツールによって毎日、またはサイズが100MBを超えた時にローテーションされるように設定されています。
+
+## クラスターレベルロギングのアーキテクチャ {#cluster-level-logging-architectures}
+
+Kubernetesはクラスターレベルロギングのネイティブソリューションを提供していませんが、検討可能な一般的なアプローチがいくつかあります。ここにいくつかのオプションを示します:
+
+* 全てのノードで実行されるノードレベルのロギングエージェントを使用します。
+* アプリケーションのPodにログインするための専用のサイドカーコンテナを含めます。
+* アプリケーション内からバックエンドに直接ログを送信します。
+
+### ノードロギングエージェントの使用 {#using-a-node-logging-agent}
+
+![Using a node level logging agent](/images/docs/user-guide/logging/logging-with-node-agent.png)
+
+各ノードに _ノードレベルのロギングエージェント_ を含めることで、クラスターレベルロギングを実装できます。ロギングエージェントは、ログを公開したり、ログをバックエンドに送信したりする専用のツールです。通常、ロギングエージェントは、そのノード上の全てのアプリケーションコンテナからのログファイルを含むディレクトリにアクセスできるコンテナです。
+
+ロギングエージェントは全てのノードで実行する必要があるため、エージェントを`DaemonSet`として実行することをおすすめします。
+
+ノードレベルのロギングは、ノードごとに1つのエージェントのみを作成し、ノードで実行されているアプリケーションに変更を加える必要はありません。
+
+コンテナはstdoutとstderrに書き込みますが、合意された形式はありません。ノードレベルのエージェントはこれらのログを収集し、集約のために転送します。
+
+### ロギングエージェントでサイドカーコンテナを使用する {#sidecar-container-with-logging-agent}
+
+サイドカーコンテナは、次のいずれかの方法で使用できます:
+
+* サイドカーコンテナは、アプリケーションログを自身の`stdout`にストリーミングします。
+* サイドカーコンテナは、アプリケーションコンテナからログを取得するように設定されたロギングエージェントを実行します。
+
+#### ストリーミングサイドカーコンテナ {#streaming-sidecar-container}
+
+![Sidecar container with a streaming container](/images/docs/user-guide/logging/logging-with-streaming-sidecar.png)
+
+サイドカーコンテナに自身の`stdout`や`stderr`ストリームへの書き込みを行わせることで、各ノードですでに実行されているkubeletとロギングエージェントを利用できます。サイドカーコンテナは、ファイル、ソケット、またはjournaldからログを読み取ります。各サイドカーコンテナは、ログを自身の`stdout`または`stderr`ストリームに出力します。
+
+このアプローチにより、`stdout`または`stderr`への書き込みのサポートが不足している場合も含め、アプリケーションのさまざまな部分からいくつかのログストリームを分離できます。ログのリダイレクトの背後にあるロジックは最小限であるため、大きなオーバーヘッドにはなりません。さらに、`stdout`と`stderr`はkubeletによって処理されるため、`kubectl logs`のような組み込みツールを使用できます。
+
+たとえば、Podは単一のコンテナを実行し、コンテナは2つの異なる形式を使用して2つの異なるログファイルに書き込みます。Podの構成ファイルは次のとおりです:
+
+{{< codenew file="admin/logging/two-files-counter-pod.yaml" >}}
+
+両方のコンポーネントをコンテナの`stdout`ストリームにリダイレクトできたとしても、異なる形式のログエントリを同じログストリームに書き込むことはおすすめしません。代わりに、2つのサイドカーコンテナを作成できます。各サイドカーコンテナは、共有ボリュームから特定のログファイルを追跡し、ログを自身の`stdout`ストリームにリダイレクトできます。
+
+2つのサイドカーコンテナを持つPodの構成ファイルは次のとおりです:
+
+{{< codenew file="admin/logging/two-files-counter-pod-streaming-sidecar.yaml" >}}
+
+これで、このPodを実行するときに、次のコマンドを実行して、各ログストリームに個別にアクセスできます:
+
+```shell
+kubectl logs counter count-log-1
+```
+
+出力は次のようになります:
+
+```console
+0: Mon Jan  1 00:00:00 UTC 2001
+1: Mon Jan  1 00:00:01 UTC 2001
+2: Mon Jan  1 00:00:02 UTC 2001
+...
+```
+
+```shell
+kubectl logs counter count-log-2
+```
+
+出力は次のようになります:
+
+```console
+Mon Jan  1 00:00:00 UTC 2001 INFO 0
+Mon Jan  1 00:00:01 UTC 2001 INFO 1
+Mon Jan  1 00:00:02 UTC 2001 INFO 2
+...
+```
+
+クラスターにインストールされているノードレベルのエージェントは、それ以上の設定を行わなくても、これらのログストリームを自動的に取得します。必要があれば、ソースコンテナに応じてログをパースするようにエージェントを構成できます。
+
+CPUとメモリーの使用量が少ない(CPUの場合は数ミリコアのオーダー、メモリーの場合は数メガバイトのオーダー)にも関わらず、ログをファイルに書き込んでから`stdout`にストリーミングすると、ディスクの使用量が2倍になる可能性があることに注意してください。単一のファイルに書き込むアプリケーションがある場合は、ストリーミングサイドカーコンテナアプローチを実装するのではなく、`/dev/stdout`を宛先として設定することをおすすめします。
+
+サイドカーコンテナを使用して、アプリケーション自体ではローテーションできないログファイルをローテーションすることもできます。このアプローチの例は、`logrotate`を定期的に実行する小さなコンテナです。しかし、`stdout`と`stderr`を直接使い、ローテーションと保持のポリシーをkubeletに任せることをおすすめします。
+
+#### ロギングエージェントを使用したサイドカーコンテナ {#sidecar-container-with-a-logging-agent}
+
+![Sidecar container with a logging agent](/images/docs/user-guide/logging/logging-with-sidecar-agent.png)
+
+ノードレベルロギングのエージェントが、あなたの状況に必要なだけの柔軟性を備えていない場合は、アプリケーションで実行するように特別に構成した別のロギングエージェントを使用してサイドカーコンテナを作成できます。
+
+{{< note >}}
+サイドカーコンテナでロギングエージェントを使用すると、大量のリソースが消費される可能性があります。さらに、これらのログはkubeletによって制御されていないため、`kubectl logs`を使用してこれらのログにアクセスすることができません。
+{{< /note >}}
+
+ロギングエージェントを使用したサイドカーコンテナを実装するために使用できる、2つの構成ファイルを次に示します。最初のファイルには、fluentdを設定するための[`ConfigMap`](/ja/docs/tasks/configure-pod-container/configure-pod-configmap/)が含まれています。
+
+{{< codenew file="admin/logging/fluentd-sidecar-config.yaml" >}}
+
+{{< note >}}
+fluentdの構成については、[fluentd documentation](https://docs.fluentd.org/)を参照してください。
+{{< /note >}}
+
+2番目のファイルは、fluentdを実行しているサイドカーコンテナを持つPodを示しています。Podは、fluentdが構成データを取得できるボリュームをマウントします。
+
+{{< codenew file="admin/logging/two-files-counter-pod-agent-sidecar.yaml" >}}
+
+サンプル構成では、fluentdを任意のロギングエージェントに置き換えて、アプリケーションコンテナ内の任意のソースから読み取ることができます。
+
+### アプリケーションから直接ログを公開する {#exposing-logs-directly-from-the-application}
+
+![Exposing logs directly from the application](/images/docs/user-guide/logging/logging-from-application.png)
+
+すべてのアプリケーションから直接ログを公開または送信するクラスターロギングは、Kubernetesのスコープ外です。
diff --git a/content/ja/docs/concepts/cluster-administration/manage-deployment.md b/content/ja/docs/concepts/cluster-administration/manage-deployment.md
index cb9c7c0fc3..084ff304b5 100644
--- a/content/ja/docs/concepts/cluster-administration/manage-deployment.md
+++ b/content/ja/docs/concepts/cluster-administration/manage-deployment.md
@@ -157,13 +157,13 @@ deployment.apps/my-deployment created
 persistentvolumeclaim/my-pvc created
 ```
 
-`kubectl`についてさらに知りたい場合は、[kubectlの概要](/docs/reference/kubectl/overview/)を参照してください。
+`kubectl`についてさらに知りたい場合は、[kubectlの概要](/ja/docs/reference/kubectl/overview/)を参照してください。
 
 ## ラベルを有効に使う
 
 これまで取り上げた例では、リソースに対して最大1つのラベルを適用してきました。リソースのセットを他のセットと区別するために、複数のラベルが必要な状況があります。
 
-例えば、異なるアプリケーション間では、異なる`app`ラベルを使用したり、[ゲストブックの例](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/guestbook/)のようなマルチティアーのアプリケーションでは、各ティアーを区別する必要があります。frontendというティアーでは下記のラベルを持ちます。:
+例えば、異なるアプリケーション間では、異なる`app`ラベルを使用したり、[ゲストブックの例](https://github.com/kubernetes/examples/tree/master/guestbook/)のようなマルチティアーのアプリケーションでは、各ティアーを区別する必要があります。frontendというティアーでは下記のラベルを持ちます。:
 
 ```yaml
      labels:
@@ -294,7 +294,7 @@ my-nginx-2035384211-u3t6x   1/1       Running   0          23m       fe
 
 このコマンドでは"app=nginx"というラベルのついた全てのPodを出力し、Podのtierという項目も表示します(`-L`または`--label-columns`で指定)。
 
-さらなる情報は、[ラベル](/docs/concepts/overview/working-with-objects/labels/)や[kubectl label](/docs/reference/generated/kubectl/kubectl-commands/#label)を参照してください。
+さらなる情報は、[ラベル](/ja/docs/concepts/overview/working-with-objects/labels/)や[kubectl label](/docs/reference/generated/kubectl/kubectl-commands/#label)を参照してください。
 
 ## アノテーションの更新
 
@@ -313,7 +313,7 @@ metadata:
 ...
 ```
 
-さらなる情報は、[アノテーション](/docs/concepts/overview/working-with-objects/annotations/) や、[kubectl annotate](/docs/reference/generated/kubectl/kubectl-commands/#annotate)を参照してください。
+さらなる情報は、[アノテーション](/ja/docs/concepts/overview/working-with-objects/annotations/) や、[kubectl annotate](/docs/reference/generated/kubectl/kubectl-commands/#annotate)を参照してください。
 
 ## アプリケーションのスケール
 
@@ -368,7 +368,7 @@ deployment.apps/my-nginx configured
 
 注意として、前回の変更適用時からの設定の変更内容を決めるため、`kubectl apply`はリソースに対してアノテーションを割り当てます。変更が実施されると`kubectl apply`は、1つ前の設定内容と、今回変更しようとする入力内容と、現在のリソースの設定との3つの間で変更内容の差分をとります。
 
-現在、リソースはこのアノテーションなしで作成されました。そのため、最初の`kubectl paply`の実行においては、与えられたにゅうチョクト、現在のリソースの設定の2つの間の差分が取られ、フォールバックします。この最初の実行の間、リソースが作成された時にプロパティーセットの削除を検知できません。この理由により、プロパティーの削除はされません。
+現在、リソースはこのアノテーションなしで作成されました。そのため、最初の`kubectl paply`の実行においては、与えられた入力と、現在のリソースの設定の2つの間の差分が取られ、フォールバックします。この最初の実行の間、リソースが作成された時にプロパティーセットの削除を検知できません。この理由により、プロパティーの削除はされません。
 
 `kubectl apply`の実行後の全ての呼び出しや、`kubectl replace`や`kubectl edit`などの設定を変更する他のコマンドではアノテーションを更新します。`kubectl apply`した後の全ての呼び出しにおいて3-wayの差分取得によってプロパティの検知と削除を実施します。
 
@@ -443,7 +443,7 @@ deployment.apps/my-nginx scaled
 kubectl edit deployment/my-nginx
 ```
 
-できました!Deploymentはデプロイされたnginxのアプリケーションを宣言的にプログレッシブに更新します。更新途中では、決まった数の古いレプリカのみダウンし、一定数の新しいレプリカが希望するPod数以上作成されても良いことを保証します。詳細について学ぶには[Deployment page](/docs/concepts/workloads/controllers/deployment/)を参照してください。
+できました!Deploymentはデプロイされたnginxのアプリケーションを宣言的にプログレッシブに更新します。更新途中では、決まった数の古いレプリカのみダウンし、一定数の新しいレプリカが希望するPod数以上作成されても良いことを保証します。詳細について学ぶには[Deployment page](/ja/docs/concepts/workloads/controllers/deployment/)を参照してください。
 
 
 
diff --git a/content/ja/docs/concepts/cluster-administration/networking.md b/content/ja/docs/concepts/cluster-administration/networking.md
index b94c9f6d15..37ce7102bc 100644
--- a/content/ja/docs/concepts/cluster-administration/networking.md
+++ b/content/ja/docs/concepts/cluster-administration/networking.md
@@ -88,9 +88,9 @@ Details on how the AOS system works can be accessed here: https://www.apstra.com
 さらに、このCNIは[ネットワークポリシーの適用のためにCalico](https://docs.aws.amazon.com/ja_jp/eks/latest/userguide/calico.html)と一緒に実行できます。AWS VPC CNIプロジェクトは、[GitHubのドキュメント](https://github.com/aws/amazon-vpc-cni-k8s)とともにオープンソースで公開されています。
 
 ### Azure CNI for Kubernetes
-[Azure CNI](https://docs.microsoft.com/en-us/azure/virtual-network/container-networking-overview) is an [open source](https://github.com/Azure/azure-container-networking/blob/master/docs/cni.md) plugin that integrates Kubernetes Pods with an Azure Virtual Network (also known as VNet) providing network performance at par with VMs. Pods can connect to peered VNet and to on-premises over Express Route or site-to-site VPN and are also directly reachable from these networks. Pods can access Azure services, such as storage and SQL, that are protected by Service Endpoints or Private Link. You can use VNet security policies and routing to filter Pod traffic. The plugin assigns VNet IPs to Pods by utilizing a pool of secondary IPs pre-configured on the Network Interface of a Kubernetes node.
+[Azure CNI](https://docs.microsoft.com/en-us/azure/virtual-network/container-networking-overview)は、Kubernetes PodをAzure仮想ネットワーク(VNetとも呼ばれます)と統合する[オープンソース](https://github.com/Azure/azure-container-networking/blob/master/docs/cni.md)プラグインで、VMと同等のネットワーク パフォーマンスを提供します。Pod は、ExpressRouteまたはサイト間VPN経由でピアリングされたVNetおよびオンプレミスに接続でき、これらのネットワークから直接アクセスすることもできます。Podは、サービスエンドポイントまたはプライベートリンクによって保護されているストレージやSQLなどのAzureサービスにアクセスできます。VNetセキュリティポリシーとルーティングを使用して、Podトラフィックをフィルター処理できます。プラグインは、Kubernetesノードのネットワークインターフェイスで事前に構成されたセカンダリIPのプールを利用して、VNet IPをPodに割り当てます。
 
-Azure CNI is available natively in the [Azure Kubernetes Service (AKS)] (https://docs.microsoft.com/en-us/azure/aks/configure-azure-cni).
+Azure CNIは、[Azure Kubernetes Service (AKS)] (https://docs.microsoft.com/en-us/azure/aks/configure-azure-cni)でネイティブに利用できます。
 
 
 ### Big Cloud Fabric from Big Switch Networks
@@ -115,7 +115,7 @@ addressing, and it can be used in combination with other CNI plugins.
 
 ### CNI-Genie from Huawei
 
-[CNI-Genie](https://github.com/Huawei-PaaS/CNI-Genie) is a CNI plugin that enables Kubernetes to [simultaneously have access to different implementations](https://github.com/Huawei-PaaS/CNI-Genie/blob/master/docs/multiple-cni-plugins/README.md#what-cni-genie-feature-1-multiple-cni-plugins-enables) of the [Kubernetes network model](/ja/docs/concepts/cluster-administration/networking/#the-kubernetes-network-model) in runtime. This includes any implementation that runs as a [CNI plugin](https://github.com/containernetworking/cni#3rd-party-plugins), such as [Flannel](https://github.com/coreos/flannel#flannel), [Calico](http://docs.projectcalico.org/), [Romana](http://romana.io), [Weave-net](https://www.weave.works/products/weave-net/).
+[CNI-Genie](https://github.com/Huawei-PaaS/CNI-Genie) is a CNI plugin that enables Kubernetes to [simultaneously have access to different implementations](https://github.com/Huawei-PaaS/CNI-Genie/blob/master/docs/multiple-cni-plugins/README.md#what-cni-genie-feature-1-multiple-cni-plugins-enables) of the [Kubernetes network model](/ja/docs/concepts/cluster-administration/networking/#how-to-implement-the-kubernetes-networking-model) in runtime. This includes any implementation that runs as a [CNI plugin](https://github.com/containernetworking/cni#3rd-party-plugins), such as [Flannel](https://github.com/coreos/flannel#flannel), [Calico](http://docs.projectcalico.org/), [Romana](https://github.com/romana/romana), [Weave-net](https://www.weave.works/products/weave-net/).
 
 CNI-Genie also supports [assigning multiple IP addresses to a pod](https://github.com/Huawei-PaaS/CNI-Genie/blob/master/docs/multiple-ips/README.md#feature-2-extension-cni-genie-multiple-ip-addresses-per-pod), each from a different CNI plugin.
 
@@ -142,7 +142,7 @@ Coilはベアメタルと比較して低いオーバーヘッドで操作する
 
 ### Contiv
 
-[Contiv](https://github.com/contiv/netplugin) provides configurable networking (native l3 using BGP, overlay using vxlan,  classic l2, or Cisco-SDN/ACI) for various use cases. [Contiv](https://contiv.io) is all open sourced.
+[Contiv](https://github.com/contiv/netplugin) provides configurable networking (native l3 using BGP, overlay using vxlan,  classic l2, or Cisco-SDN/ACI) for various use cases.
 
 ### Contrail / Tungsten Fabric
 
@@ -243,7 +243,7 @@ Lars Kellogg-Stedman.
 
 ### Multus (a Multi Network plugin)
 
-[Multus](https://github.com/Intel-Corp/multus-cni) is a Multi CNI plugin to support the Multi Networking feature in Kubernetes using CRD based network objects in Kubernetes.
+Multus is a Multi CNI plugin to support the Multi Networking feature in Kubernetes using CRD based network objects in Kubernetes.
 
 Multus supports all [reference plugins](https://github.com/containernetworking/plugins) (eg. [Flannel](https://github.com/containernetworking/plugins/tree/master/plugins/meta/flannel), [DHCP](https://github.com/containernetworking/plugins/tree/master/plugins/ipam/dhcp), [Macvlan](https://github.com/containernetworking/plugins/tree/master/plugins/main/macvlan)) that implement the CNI specification and 3rd party plugins (eg. [Calico](https://github.com/projectcalico/cni-plugin), [Weave](https://github.com/weaveworks/weave), [Cilium](https://github.com/cilium/cilium), [Contiv](https://github.com/contiv/netplugin)). In addition to it, Multus supports [SRIOV](https://github.com/hustcat/sriov-cni), [DPDK](https://github.com/Intel-Corp/sriov-cni), [OVS-DPDK & VPP](https://github.com/intel/vhost-user-net-plugin) workloads in Kubernetes with both cloud native and NFV based applications in Kubernetes.
 
@@ -263,12 +263,6 @@ Multus supports all [reference plugins](https://github.com/containernetworking/p
 
 The Nuage platform uses overlays to provide seamless policy-based networking between Kubernetes Pods and non-Kubernetes environments (VMs and bare metal servers). Nuage's policy abstraction model is designed with applications in mind and makes it easy to declare fine-grained policies for applications.The platform's real-time analytics engine enables visibility and security monitoring for Kubernetes applications.
 
-### OpenVSwitch
-
-[OpenVSwitch](https://www.openvswitch.org/) is a somewhat more mature but also
-complicated way to build an overlay network.  This is endorsed by several of the
-"Big Shops" for networking.
-
 ### OVN (Open Virtual Networking)
 
 OVN is an opensource network virtualization solution developed by the
@@ -279,7 +273,7 @@ at [ovn-kubernetes](https://github.com/openvswitch/ovn-kubernetes).
 
 ### Romana
 
-[Romana](https://romana.io) is an open source network and security automation solution that lets you deploy Kubernetes without an overlay network. Romana supports Kubernetes [Network Policy](/docs/concepts/services-networking/network-policies/) to provide isolation across network namespaces.
+[Romana](https://github.com/romana/romana) is an open source network and security automation solution that lets you deploy Kubernetes without an overlay network. Romana supports Kubernetes [Network Policy](/docs/concepts/services-networking/network-policies/) to provide isolation across network namespaces.
 
 ### Weave Net from Weaveworks
 
diff --git a/content/ja/docs/concepts/configuration/configmap.md b/content/ja/docs/concepts/configuration/configmap.md
index 32799c9e9d..f7d9ea7aa0 100644
--- a/content/ja/docs/concepts/configuration/configmap.md
+++ b/content/ja/docs/concepts/configuration/configmap.md
@@ -192,6 +192,6 @@ immutable: true
 
 ## {{% heading "whatsnext" %}}
 
-* [Secret](/docs/concepts/configuration/secret/)について読む。
+* [Secret](/ja/docs/concepts/configuration/secret/)について読む。
 * [Podを構成してConfigMapを使用する](/ja/docs/tasks/configure-pod-container/configure-pod-configmap/)を読む。
 * コードを設定から分離する動機を理解するために[The Twelve-Factor App](https://12factor.net/ja/)を読む。
diff --git a/content/ja/docs/concepts/configuration/manage-resources-containers.md b/content/ja/docs/concepts/configuration/manage-resources-containers.md
index 0d59ecd319..d9e5a13b41 100644
--- a/content/ja/docs/concepts/configuration/manage-resources-containers.md
+++ b/content/ja/docs/concepts/configuration/manage-resources-containers.md
@@ -17,7 +17,7 @@ Pod内のコンテナのリソース*要求*を指定すると、スケジュー
 
 <!-- body -->
 
-## 要求と制限
+## 要求と制限 {#requests-and-limits}
 
 Podが動作しているNodeに利用可能なリソースが十分にある場合、そのリソースの`要求`が指定するよりも多くのリソースをコンテナが使用することが許可されます
 ただし、コンテナはそのリソースの`制限`を超えて使用することはできません。
@@ -33,7 +33,7 @@ Podが動作しているNodeに利用可能なリソースが十分にある場
 コンテナが自身のメモリー制限を指定しているが、メモリー要求を指定していない場合、Kubernetesは制限に一致するメモリー要求を自動的に割り当てます。同様に、コンテナが自身のCPU制限を指定しているが、CPU要求を指定していない場合、Kubernetesは制限に一致するCPU要求を自動的に割り当てます。
 {{< /note >}}
 
-## リソースタイプ
+## リソースタイプ {#resource-types}
 
 *CPU*と*メモリー*はいずれも*リソースタイプ*です。リソースタイプには基本単位があります。
 CPUは計算処理を表し、[Kubernetes CPUs](#meaning-of-cpu)の単位で指定されます。
@@ -51,10 +51,10 @@ Huge PageはLinux固有の機能であり、Nodeのカーネルはデフォル
 
 CPUとメモリーは、まとめて*コンピュートリソース*または単に*リソース*と呼ばれます。
 コンピューティングリソースは、要求され、割り当てられ、消費され得る測定可能な量です。
-それらは[API resources](/docs/concepts/overview/kubernetes-api/)とは異なります。
-Podや[Services](/docs/concepts/services-networking/service/)などのAPIリソースは、Kubernetes APIサーバーを介して読み取りおよび変更できるオブジェクトです。
+それらは[API resources](/ja/docs/concepts/overview/kubernetes-api/)とは異なります。
+Podや[Services](/ja/docs/concepts/services-networking/service/)などのAPIリソースは、Kubernetes APIサーバーを介して読み取りおよび変更できるオブジェクトです。
 
-## Podとコンテナのリソース要求と制限
+## Podとコンテナのリソース要求と制限 {#resource-requests-and-limits-of-pod-and-container}
 
 Podの各コンテナは、次の1つ以上を指定できます。
 
@@ -68,9 +68,9 @@ Podの各コンテナは、次の1つ以上を指定できます。
 要求と制限はそれぞれのコンテナでのみ指定できますが、このPodリソースの要求と制限の関係性について理解すると便利です。
 特定のリソースタイプの*Podリソース要求/制限*は、Pod内の各コンテナに対するそのタイプのリソース要求/制限の合計です。
 
-## Kubernetesにおけるリソースの単位
+## Kubernetesにおけるリソースの単位 {#resource-units-in-kubernetes}
 
-### CPUの意味
+### CPUの意味 {#meaning-of-cpu}
 
 CPUリソースの制限と要求は、*cpu*単位で測定されます。
 Kuberenetesにおける1つのCPUは、クラウドプロバイダーの**1 vCPU/コア**およびベアメタルのインテルプロセッサーの**1 ハイパースレッド**に相当します。
@@ -85,7 +85,7 @@ Kuberenetesにおける1つのCPUは、クラウドプロバイダーの**1 vCPU
 CPUは常に相対量としてではなく、絶対量として要求されます。
 0.1は、シングルコア、デュアルコア、あるいは48コアマシンのどのCPUに対してでも、同一の量を要求します。
 
-### メモリーの意味
+### メモリーの意味 {#meaning-of-memory}
 
 `メモリー`の制限と要求はバイト単位で測定されます。
 E、P、T、G、M、Kのいずれかのサフィックスを使用して、メモリーを整数または固定小数点数として表すことができます。
@@ -128,7 +128,7 @@ spec:
         cpu: "500m"
 ```
 
-## リソース要求を含むPodがどのようにスケジュールされるか
+## リソース要求を含むPodがどのようにスケジュールされるか {#how-pods-with-resource-requests-are-scheduled}
 
 Podを作成すると、KubernetesスケジューラーはPodを実行するNodeを選択します。
 各Nodeには、リソースタイプごとに最大容量があります。それは、Podに提供できるCPUとメモリの量です。
@@ -136,7 +136,7 @@ Podを作成すると、KubernetesスケジューラーはPodを実行するNode
 Node上の実際のメモリーまたはCPUリソースの使用率は非常に低いですが、容量チェックが失敗した場合、スケジューラーはNodeにPodを配置しないことに注意してください。
 これにより、例えば日々のリソース要求のピーク時など、リソース利用が増加したときに、Nodeのリソース不足から保護されます。
 
-## リソース制限のあるPodがどのように実行されるか
+## リソース制限のあるPodがどのように実行されるか {#how-pods-with-resource-limits-are-run}
 
 kubeletがPodのコンテナを開始すると、CPUとメモリーの制限がコンテナランタイムに渡されます。
 
@@ -166,13 +166,13 @@ Dockerを使用する場合:
 
 コンテナをスケジュールできないか、リソース制限が原因で強制終了されているかどうかを確認するには、[トラブルシューティング](#troubleshooting)のセクションを参照してください。
 
-### コンピュートリソースとメモリーリソースの使用量を監視する
+### コンピュートリソースとメモリーリソースの使用量を監視する {#monitoring-compute-memory-resource-usage}
 
 Podのリソース使用量は、Podのステータスの一部として報告されます。
 
 オプションの[監視ツール](/docs/tasks/debug-application-cluster/resource-usage-monitoring/)がクラスターにおいて利用可能な場合、Podのリソース使用量は[メトリクスAPI](/docs/tasks/debug-application-cluster/resource-metrics-pipeline/#the-metrics-api)から直接、もしくは監視ツールから取得できます。
 
-## ローカルのエフェメラルストレージ
+## ローカルのエフェメラルストレージ {#local-ephemeral-storage}
 
 <!-- feature gate LocalStorageCapacityIsolation -->
 {{< feature-state for_k8s_version="v1.10" state="beta" >}}
@@ -192,7 +192,7 @@ Nodeに障害が発生すると、そのエフェメラルストレージ内の
 
 ベータ版の機能として、Kubernetesでは、Podが消費するローカルのエフェメラルストレージの量を追跡、予約、制限することができます。
 
-### ローカルエフェメラルストレージの設定
+### ローカルエフェメラルストレージの設定 {#configurations-for-local-ephemeral-storage}
 
 Kubernetesは、Node上のローカルエフェメラルストレージを構成する2つの方法をサポートしています。
 {{< tabs name="local_storage_configurations" >}}
@@ -235,7 +235,7 @@ kubeletは、ローカルストレージの使用量を測定できます。
 kubeletは、`tmpfs`のemptyDirボリュームをローカルのエフェメラルストレージとしてではなく、コンテナメモリーとして追跡します。
 {{< /note >}}
 
-### ローカルのエフェメラルストレージの要求と制限設定
+### ローカルのエフェメラルストレージの要求と制限設定 {#setting-requests-and-limits-for-local-ephemeral-storage}
 
 ローカルのエフェメラルストレージを管理するためには _ephemeral-storage_ パラメーターを利用することができます。
 Podの各コンテナは、次の1つ以上を指定できます。
@@ -270,6 +270,9 @@ spec:
         ephemeral-storage: "2Gi"
       limits:
         ephemeral-storage: "4Gi"
+    volumeMounts:
+      - name: ephemeral
+        mountPath: "/tmp"
   - name: log-aggregator
     image: images.my-company.example/log-aggregator:v6
     resources:
@@ -277,9 +280,15 @@ spec:
         ephemeral-storage: "2Gi"
       limits:
         ephemeral-storage: "4Gi"
+    volumeMounts:
+      - name: ephemeral
+        mountPath: "/tmp"
+  volumes:
+    - name: ephemeral
+      emptyDir: {}
 ```
 
-### エフェメラルストレージを要求するPodのスケジュール方法
+### エフェメラルストレージを要求するPodのスケジュール方法 {#how-pods-with-ephemeral-storage-requests-are-scheduled}
 
 Podを作成すると、KubernetesスケジューラーはPodを実行するNodeを選択します。
 各Nodeには、Podに提供できるローカルのエフェメラルストレージの上限があります。
@@ -366,7 +375,7 @@ Kubernetesが使用しないようにする必要があります。
 {{% /tab %}}
 {{< /tabs >}}
 
-## 拡張リソース
+## 拡張リソース {#extended-resources}
 
 拡張リソースは`kubernetes.io`ドメインの外で完全に修飾されたリソース名です。
 これにより、クラスタオペレータはKubernetesに組み込まれていないリソースをアドバタイズし、ユーザはそれを利用することができるようになります。
@@ -375,16 +384,16 @@ Kubernetesが使用しないようにする必要があります。
 第一に、クラスタオペレーターは拡張リソースをアドバタイズする必要があります。
 第二に、ユーザーはPodで拡張リソースを要求する必要があります。
 
-### 拡張リソースの管理
+### 拡張リソースの管理 {#managing-extended-resources}
 
-#### Nodeレベルの拡張リソース
+#### Nodeレベルの拡張リソース {#node-level-extended-resources}
 
 Nodeレベルの拡張リソースはNodeに関連付けられています。
 
-##### デバイスプラグイン管理のリソース
+##### デバイスプラグイン管理のリソース {#device-plugin-managed-resources}
 各Nodeにデバイスプラグインで管理されているリソースをアドバタイズする方法については、[デバイスプラグイン](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)を参照してください。
 
-##### その他のリソース
+##### その他のリソース {#other-resources}
 新しいNodeレベルの拡張リソースをアドバタイズするには、クラスタオペレータはAPIサーバに`PATCH`HTTPリクエストを送信し、クラスタ内のNodeの`status.capacity`に利用可能な量を指定します。
 この操作の後、ノードの`status.capacity`には新しいリソースが含まれます。
 `status.allocatable`フィールドは、kubeletによって非同期的に新しいリソースで自動的に更新されます。
@@ -407,7 +416,7 @@ JSON-Patchの操作パス値は、JSON-Pointerとして解釈されます。
 詳細については、[IETF RFC 6901, section 3](https://tools.ietf.org/html/rfc6901#section-3)を参照してください。
 {{< /note >}}
 
-#### クラスターレベルの拡張リソース
+#### クラスターレベルの拡張リソース {#cluster-level-extended-resources}
 
 クラスターレベルの拡張リソースはノードに関連付けられていません。
 これらは通常、リソース消費とリソースクォータを処理するスケジューラー拡張機能によって管理されます。
@@ -440,7 +449,7 @@ JSON-Patchの操作パス値は、JSON-Pointerとして解釈されます。
 }
 ```
 
-### 拡張リソースの消費
+### 拡張リソースの消費 {#consuming-extended-resources}
 
 ユーザーは、CPUやメモリのようにPodのスペックで拡張されたリソースを消費できます。
 利用可能な量以上のリソースが同時にPodに割り当てられないように、スケジューラーがリソースアカウンティングを行います。
@@ -484,9 +493,9 @@ spec:
         example.com/foo: 1
 ```
 
-## トラブルシューティング
+## トラブルシューティング {#troubleshooting}
 
-### failedSchedulingイベントメッセージが表示され、Podが保留中になる
+### failedSchedulingイベントメッセージが表示され、Podが保留中になる {#my-pods-are-pending-with-event-message-failedscheduling}
 
 スケジューラーがPodが収容されるNodeを見つけられない場合、場所が見つかるまでPodはスケジュールされないままになります。
 スケジューラーがPodの場所を見つけられないたびに、次のようなイベントが生成されます。
@@ -553,7 +562,7 @@ Allocated resources:
 [リソースクォータ](/docs/concepts/policy/resource-quotas/)機能は、消費できるリソースの総量を制限するように設定することができます。
 名前空間と組み合わせて使用すると、1つのチームがすべてのリソースを占有するのを防ぐことができます。
 
-### コンテナが終了した
+### コンテナが終了した {#my-container-is-terminated}
 
 コンテナはリソース不足のため、終了する可能性があります。
 コンテナがリソース制限に達したために強制終了されているかどうかを確認するには、対象のPodで`kubectl describe pod`を呼び出します。
@@ -615,9 +624,9 @@ LastState: map[terminated:map[exitCode:137 reason:OOM Killed startedAt:2015-07-0
 
 ## {{% heading "whatsnext" %}}
 
-* [コンテナとPodへのメモリーリソースの割り当て](/docs/tasks/configure-pod-container/assign-memory-resource/)ハンズオンを行う
+* [コンテナとPodへのメモリーリソースの割り当て](/ja/docs/tasks/configure-pod-container/assign-memory-resource/)ハンズオンを行う
 
-* [コンテナとPodへのCPUリソースの割り当て](/docs/tasks/configure-pod-container/assign-cpu-resource/)ハンズオンを行う
+* [コンテナとPodへのCPUリソースの割り当て](/ja/docs/tasks/configure-pod-container/assign-cpu-resource/)ハンズオンを行う
 
 * 要求と制限の違いの詳細については、[リソースQoS](https://git.k8s.io/community/contributors/design-proposals/node/resource-qos.md)を参照する
 
diff --git a/content/ja/docs/concepts/configuration/organize-cluster-access-kubeconfig.md b/content/ja/docs/concepts/configuration/organize-cluster-access-kubeconfig.md
index b3ed117931..a9188037aa 100644
--- a/content/ja/docs/concepts/configuration/organize-cluster-access-kubeconfig.md
+++ b/content/ja/docs/concepts/configuration/organize-cluster-access-kubeconfig.md
@@ -14,7 +14,7 @@ kubeconfigを使用すると、クラスターに、ユーザー、名前空間
 
 デフォルトでは、`kubectl`は`$HOME/.kube`ディレクトリ内にある`config`という名前のファイルを探します。`KUBECONFIG`環境変数を設定するか、[`--kubeconfig`](/docs/reference/generated/kubectl/kubectl/)フラグで指定することで、別のkubeconfigファイルを指定することもできます。
 
-kubeconfigファイルの作成と指定に関するステップバイステップの手順を知りたいときは、[複数のクラスターへのアクセスを設定する](/docs/tasks/access-application-cluster/configure-access-multiple-clusters)を参照してください。
+kubeconfigファイルの作成と指定に関するステップバイステップの手順を知りたいときは、[複数のクラスターへのアクセスを設定する](/ja/docs/tasks/access-application-cluster/configure-access-multiple-clusters)を参照してください。
 
 <!-- body -->
 
diff --git a/content/ja/docs/concepts/configuration/overview.md b/content/ja/docs/concepts/configuration/overview.md
index ee63e066d8..911d078b80 100644
--- a/content/ja/docs/concepts/configuration/overview.md
+++ b/content/ja/docs/concepts/configuration/overview.md
@@ -18,7 +18,7 @@ weight: 10
 
 - JSONではなくYAMLを使って設定ファイルを書いてください。これらのフォーマットはほとんどすべてのシナリオで互換的に使用できますが、YAMLはよりユーザーフレンドリーになる傾向があります。
 
-- 意味がある場合は常に、関連オブジェクトを単一ファイルにグループ化します。多くの場合、1つのファイルの方が管理が簡単です。例として[guestbook-all-in-one.yaml](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/guestbook/all-in-one/guestbook-all-in-one.yaml)ファイルを参照してください。
+- 意味がある場合は常に、関連オブジェクトを単一ファイルにグループ化します。多くの場合、1つのファイルの方が管理が簡単です。例として[guestbook-all-in-one.yaml](https://github.com/kubernetes/examples/tree/master/guestbook/all-in-one/guestbook-all-in-one.yaml)ファイルを参照してください。
 
 - 多くの`kubectl`コマンドがディレクトリに対しても呼び出せることも覚えておきましょう。たとえば、設定ファイルのディレクトリで `kubectl apply`を呼び出すことができます。
 
@@ -44,7 +44,7 @@ weight: 10
 
   *これは順序付けの必要性を意味します* - `Pod`がアクセスしたい`Service`は`Pod`自身の前に作らなければならず、そうしないと環境変数は注入されません。DNSにはこの制限はありません。
 
-- （強くお勧めしますが）[クラスターアドオン](/docs/concepts/cluster-administration/addons/)の1つの選択肢はDNSサーバーです。DNSサーバーは、新しい`Service`についてKubernetes APIを監視し、それぞれに対して一連のDNSレコードを作成します。クラスタ全体でDNSが有効になっている場合は、すべての`Pod`が自動的に`Services`の名前解決を行えるはずです。
+- （強くお勧めしますが）[クラスターアドオン](/ja/docs/concepts/cluster-administration/addons/)の1つの選択肢はDNSサーバーです。DNSサーバーは、新しい`Service`についてKubernetes APIを監視し、それぞれに対して一連のDNSレコードを作成します。クラスタ全体でDNSが有効になっている場合は、すべての`Pod`が自動的に`Services`の名前解決を行えるはずです。
 
 - どうしても必要な場合以外は、Podに`hostPort`を指定しないでください。Podを`hostPort`にバインドすると、Podがスケジュールできる場所の数を制限します、それぞれの<`hostIP`、 `hostPort`、`protocol`>の組み合わせはユニークでなければならないからです。`hostIP`と`protocol`を明示的に指定しないと、Kubernetesはデフォルトの`hostIP`として`0.0.0.0`を、デフォルトの `protocol`として`TCP`を使います。
 
@@ -58,7 +58,7 @@ weight: 10
 
 ## ラベルの使用
 
-- `{ app: myapp, tier: frontend, phase: test, deployment: v3 }`のように、アプリケーションまたはデプロイメントの __セマンティック属性__ を識別する[ラベル](/ja/docs/concepts/overview/working-with-objects/labels/)を定義して使いましょう。これらのラベルを使用して、他のリソースに適切なポッドを選択できます。例えば、すべての`tier：frontend`を持つPodを選択するServiceや、`app：myapp`に属するすべての`phase：test`コンポーネント、などです。このアプローチの例を知るには、[ゲストブック](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/guestbook/)アプリも合わせてご覧ください。
+- `{ app: myapp, tier: frontend, phase: test, deployment: v3 }`のように、アプリケーションまたはデプロイメントの __セマンティック属性__ を識別する[ラベル](/ja/docs/concepts/overview/working-with-objects/labels/)を定義して使いましょう。これらのラベルを使用して、他のリソースに適切なPodを選択できます。例えば、すべての`tier：frontend`を持つPodを選択するServiceや、`app：myapp`に属するすべての`phase：test`コンポーネント、などです。このアプローチの例を知るには、[ゲストブック](https://github.com/kubernetes/examples/tree/master/guestbook/)アプリも合わせてご覧ください。
 
 セレクターからリリース固有のラベルを省略することで、Serviceを複数のDeploymentにまたがるように作成できます。 [Deployment](/ja/docs/concepts/workloads/controllers/deployment/)により、ダウンタイムなしで実行中のサービスを簡単に更新できます。
 
@@ -68,7 +68,7 @@ weight: 10
 
 ## コンテナイメージ
 
-[imagePullPolicy](/docs/concepts/containers/images/#updating-images)とイメージのタグは、[kubelet](/docs/reference/command-line-tools-reference/kubelet/)が特定のイメージをpullしようとしたときに作用します。
+[imagePullPolicy](/ja/docs/concepts/containers/images/#updating-images)とイメージのタグは、[kubelet](/docs/reference/command-line-tools-reference/kubelet/)が特定のイメージをpullしようとしたときに作用します。
 
 - `imagePullPolicy: IfNotPresent`: ローカルでイメージが見つからない場合にのみイメージをpullします。
 
@@ -96,8 +96,8 @@ weight: 10
 
 - `kubectl apply -f <directory>`を使いましょう。これを使うと、ディレクトリ内のすべての`.yaml`、`.yml`、および`.json`ファイルが`apply`に渡されます。
 
-- `get`や`delete`を行う際は、特定のオブジェクト名を指定するのではなくラベルセレクターを使いましょう。[ラベルセレクター](/ja/docs/concepts/overview/working-with-objects/labels/#label-selectors)と[ラベルの効果的な使い方](/docs/concepts/cluster-administration/manage-deployment/#using-labels-effectively)のセクションを参照してください。
+- `get`や`delete`を行う際は、特定のオブジェクト名を指定するのではなくラベルセレクターを使いましょう。[ラベルセレクター](/ja/docs/concepts/overview/working-with-objects/labels/#label-selectors)と[ラベルの効果的な使い方](/ja/docs/concepts/cluster-administration/manage-deployment/#using-labels-effectively)のセクションを参照してください。
 
-- 単一コンテナのDeploymentやServiceを素早く作成するなら、`kubectl create deployment`や`kubectl expose`を使いましょう。一例として、[Serviceを利用したクラスター内のアプリケーションへのアクセス](/docs/tasks/access-application-cluster/service-access-application-cluster/)を参照してください。
+- 単一コンテナのDeploymentやServiceを素早く作成するなら、`kubectl create deployment`や`kubectl expose`を使いましょう。一例として、[Serviceを利用したクラスター内のアプリケーションへのアクセス](/ja/docs/tasks/access-application-cluster/service-access-application-cluster/)を参照してください。
 
 
diff --git a/content/ja/docs/concepts/configuration/secret.md b/content/ja/docs/concepts/configuration/secret.md
index f2a71e1860..3a2dd6ce43 100644
--- a/content/ja/docs/concepts/configuration/secret.md
+++ b/content/ja/docs/concepts/configuration/secret.md
@@ -10,14 +10,29 @@ weight: 30
 
 <!-- overview -->
 
-KubernetesのSecretはパスワード、OAuthトークン、SSHキーのような機密情報を保存し、管理できるようにします。
-Secretに機密情報を保存することは、それらを{{< glossary_tooltip text="Pod" term_id="pod" >}}の定義や{{< glossary_tooltip text="コンテナイメージ" term_id="image" >}}に直接記載するより、安全で柔軟です。
-詳しくは[Secretの設計文書](https://git.k8s.io/community/contributors/design-proposals/auth/secrets.md)を参照してください。
 
-Secretはパスワード、トークン、キーのような小容量の機密データを含むオブジェクトです。
-他の方法としては、そのような情報はPodの定義やイメージに含めることができます。
-ユーザーはSecretを作ることができ、またシステムが作るSecretもあります。
+Secretとは、パスワードやトークン、キーなどの少量の機密データを含むオブジェクトのことです。
+このような情報は、Secretを用いないと{{< glossary_tooltip term_id="pod" >}}の定義や{{< glossary_tooltip text="コンテナイメージ" term_id="image" >}}に直接記載することになってしまうかもしれません。
+Secretを使用すれば、アプリケーションコードに機密データを含める必要がなくなります。
 
+なぜなら、Secretは、それを使用するPodとは独立して作成することができ、
+Podの作成、閲覧、編集といったワークフローの中でSecret(およびそのデータ)が漏洩する危険性が低くなるためです。
+また、Kubernetesやクラスター内で動作するアプリケーションは、不揮発性ストレージに機密データを書き込まないようにするなど、Secretで追加の予防措置を取ることができます。
+
+Secretsは、{{< glossary_tooltip text="ConfigMaps" term_id="configmap" >}}に似ていますが、機密データを保持するために用います。
+
+
+{{< caution >}}
+KubernetesのSecretは、デフォルトでは、APIサーバーの基礎となるデータストア(etcd)に暗号化されずに保存されます。APIにアクセスできる人は誰でもSecretを取得または変更でき、etcdにアクセスできる人も同様です。
+さらに、名前空間でPodを作成する権限を持つ人は、そのアクセスを使用して、その名前空間のあらゆるSecretを読むことができます。これには、Deploymentを作成する能力などの間接的なアクセスも含まれます。
+
+Secretsを安全に使用するには、以下の手順を推奨します。
+
+1. Secretsを[安全に暗号化する](/docs/tasks/administer-cluster/encrypt-data/)
+2. Secretsのデータの読み取りを制限する[RBACルール](/docs/reference/access-authn-authz/authorization/)の有効化または設定 
+3. 適切な場合には、RBACなどのメカニズムを使用して、どの原則が新しいSecretの作成や既存のSecretの置き換えを許可されるかを制限します。
+
+{{< /caution >}}
 
 <!-- body -->
 
@@ -30,6 +45,7 @@ PodがSecretを使う方法は3種類あります。
 - [コンテナの環境変数](#using-secrets-as-environment-variables)として利用する
 - Podを生成するために[kubeletがイメージをpullする](#using-imagepullsecrets)ときに使用する
 
+KubernetesのコントロールプレーンでもSecretsは使われています。例えば、[bootstrap token Secrets](#bootstrap-token-secrets)は、ノード登録を自動化するための仕組みです。
 
 Secretオブジェクトの名称は正当な[DNSサブドメイン名](/ja/docs/concepts/overview/working-with-objects/names/#dns-subdomain-names)である必要があります。
 シークレットの構成ファイルを作成するときに、`data`および/または`stringData`フィールドを指定できます。`data`フィールドと`stringData`フィールドはオプションです。
@@ -145,7 +161,8 @@ Docker configファイルがない場合、または`kubectl`を使用してDock
 kubectl create secret docker-registry secret-tiger-docker \
   --docker-username=tiger \
   --docker-password=pass113 \
-  --docker-email=tiger@acme.com
+  --docker-email=tiger@acme.com \
+  --docker-server=my-registry.example:5000
 ```
 
 このコマンドは、`kubernetes.io/dockerconfigjson`型のSecretを作成します。
@@ -153,15 +170,21 @@ kubectl create secret docker-registry secret-tiger-docker \
 
 ```json
 {
-  "auths": {
-    "https://index.docker.io/v1/": {
-      "username": "tiger",
-      "password": "pass113",
-      "email": "tiger@acme.com",
-      "auth": "dGlnZXI6cGFzczExMw=="
-    }
-  }
+    "apiVersion": "v1",
+    "data": {
+        ".dockerconfigjson": "eyJhdXRocyI6eyJteS1yZWdpc3RyeTo1MDAwIjp7InVzZXJuYW1lIjoidGlnZXIiLCJwYXNzd29yZCI6InBhc3MxMTMiLCJlbWFpbCI6InRpZ2VyQGFjbWUuY29tIiwiYXV0aCI6ImRHbG5aWEk2Y0dGemN6RXhNdz09In19fQ=="
+    },
+    "kind": "Secret",
+    "metadata": {
+        "creationTimestamp": "2021-07-01T07:30:59Z",
+        "name": "secret-tiger-docker",
+        "namespace": "default",
+        "resourceVersion": "566718",
+        "uid": "e15c1d7b-9071-4100-8681-f3a7a2ce89ca"
+    },
+    "type": "kubernetes.io/dockerconfigjson"
 }
+
 ```
 
 ### Basic authentication Secret
@@ -254,7 +277,7 @@ kubectl create secret tls my-tls-secret \
 
 Bootstrap token Secretは、Secretの`type`を`bootstrap.kubernetes.io/token`に明示的に指定することで作成できます。このタイプのSecretは、ノードのブートストラッププロセス中に使用されるトークン用に設計されています。よく知られているConfigMapに署名するために使用されるトークンを格納します。
 
-Bootstrap toke Secretは通常、`kube-system`namespaceで作成され`bootstrap-token-<token-id>`の形式で名前が付けられます。ここで`<token-id>`はトークンIDの6文字の文字列です。
+Bootstrap token Secretは通常、`kube-system`namespaceで作成され`bootstrap-token-<token-id>`の形式で名前が付けられます。ここで`<token-id>`はトークンIDの6文字の文字列です。
 
 Kubernetesマニフェストとして、Bootstrap token Secretは次のようになります。
 
@@ -311,9 +334,9 @@ stringData:
 
 Secretを作成するには、いくつかのオプションがあります。
 
-- [create Secret using `kubectl` command](/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
-- [create Secret from config file](/docs/tasks/configmap-secret/managing-secret-using-config-file/)
-- [create Secret using kustomize](/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
+- [create Secret using `kubectl` command](/ja/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
+- [create Secret from config file](/ja/docs/tasks/configmap-secret/managing-secret-using-config-file/)
+- [create Secret using kustomize](/ja/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
 
 ## Secretの編集
 
@@ -636,7 +659,7 @@ Kubernetesベータ機能*ImmutableSecrets and ConfigMaps*は、個々のSecrets
 - アプリケーションの停止を引き起こす可能性のある偶発的な（または不要な）更新からユーザーを保護します
 - imutableとしてマークされたSecretのウォッチを閉じることで、kube-apiserverの負荷を大幅に削減することができ、クラスターのパフォーマンスを向上させます。
 
-この機能は、`ImmutableEphemeralVolumes`[feature gate](/docs/reference/command-line-tools-reference/feature-gates/)によって制御されます。これは、v1.19以降デフォルトで有効になっています。`immutable`フィールドを`true`に設定することで、imutableのSecretを作成できます。例えば、
+この機能は、`ImmutableEphemeralVolumes`[feature gate](/ja/docs/reference/command-line-tools-reference/feature-gates/)によって制御されます。これは、v1.19以降デフォルトで有効になっています。`immutable`フィールドを`true`に設定することで、imutableのSecretを作成できます。例えば、
 ```yaml
 apiVersion: v1
 kind: Secret
@@ -662,7 +685,7 @@ kubeletはこの情報をPodのためにプライベートイメージをpullす
 
 #### imagePullSecretを手動で指定する
 
-`ImagePullSecrets`の指定の方法は[コンテナイメージのドキュメント](/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod)に記載されています。
+`ImagePullSecrets`の指定の方法は[コンテナイメージのドキュメント](/ja/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod)に記載されています。
 
 ### imagePullSecretsが自動的にアタッチされるようにする
 
@@ -1006,7 +1029,7 @@ HTTPリクエストを扱い、複雑なビジネスロジックを処理し、
 ### Secret APIを使用するクライアント
 
 Secret APIとやりとりするアプリケーションをデプロイするときには、[RBAC](
-/docs/reference/access-authn-authz/rbac/)のような[認可ポリシー](
+/ja/docs/reference/access-authn-authz/rbac/)のような[認可ポリシー](
 /docs/reference/access-authn-authz/authorization/)を使用して、アクセスを制限すべきです。
 Secretは様々な種類の重要な値を保持することが多く、サービスアカウントのトークンのようにKubernetes内部や、外部のシステムで昇格できるものも多くあります。個々のアプリケーションが、Secretの能力について推論することができたとしても、同じネームスペースの別のアプリケーションがその推定を覆すこともあります。
 
@@ -1062,3 +1085,4 @@ Podに複数のコンテナが含まれることもあります。しかし、Po
 - [`kubectl`を使用してSecretを管理する](/docs/tasks/configmap-secret/managing-secret-using-kubectl/)方法を学ぶ
 - [config fileを使用してSecretを管理する](/docs/tasks/configmap-secret/managing-secret-using-config-file/)方法を学ぶ
 - [kustomizeを使用してSecretを管理する](/docs/tasks/configmap-secret/managing-secret-using-kustomize/)方法を学ぶ
+- [SecretのAPIリファレンス](/docs/reference/kubernetes-api/config-and-storage-resources/secret-v1/)を読む
diff --git a/content/ja/docs/concepts/containers/_index.md b/content/ja/docs/concepts/containers/_index.md
index cb2b457e57..39944f6c30 100644
--- a/content/ja/docs/concepts/containers/_index.md
+++ b/content/ja/docs/concepts/containers/_index.md
@@ -19,7 +19,7 @@ no_list: true
 <!-- body -->
 
 ## コンテナイメージ {#container-images}
-[コンテナイメージ](/docs/concepts/containers/images/)はすぐに実行可能なソフトウェアパッケージで、アプリケーションの実行に必要なものをすべて含んています。コードと必要なランタイム、アプリケーションとシステムのライブラリ、そして必須な設定項目のデフォルト値を含みます。
+[コンテナイメージ](/ja/docs/concepts/containers/images/)はすぐに実行可能なソフトウェアパッケージで、アプリケーションの実行に必要なものをすべて含んています。コードと必要なランタイム、アプリケーションとシステムのライブラリ、そして必須な設定項目のデフォルト値を含みます。
 
 設計上、コンテナは不変で、既に実行中のコンテナのコードを変更することはできません。コンテナ化されたアプリケーションがあり変更したい場合は、変更を含んだ新しいイメージをビルドし、コンテナを再作成して、更新されたイメージから起動する必要があります。
 
diff --git a/content/ja/docs/concepts/containers/container-environment.md b/content/ja/docs/concepts/containers/container-environment.md
index a311af7803..9c40e3c054 100644
--- a/content/ja/docs/concepts/containers/container-environment.md
+++ b/content/ja/docs/concepts/containers/container-environment.md
@@ -43,14 +43,14 @@ FOO_SERVICE_HOST=<サービスが実行されているホスト>
 FOO_SERVICE_PORT=<サービスが実行されているポート>
 ```
 
-サービスは専用のIPアドレスを持ち、[DNSアドオン](http://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/dns/)が有効の場合、DNSを介してコンテナで利用可能です。
+サービスは専用のIPアドレスを持ち、[DNSアドオン](http://releases.k8s.io/{{< param "fullversion" >}}/cluster/addons/dns/)が有効の場合、DNSを介してコンテナで利用可能です。
 
 
 
 ## {{% heading "whatsnext" %}}
 
 
-* [コンテナライフサイクルフック](/docs/concepts/containers/container-lifecycle-hooks/)の詳細
-* [コンテナライフサイクルイベントへのハンドラー紐付け](/docs/tasks/configure-pod-container/attach-handler-lifecycle-event/)のハンズオン
+* [コンテナライフサイクルフック](/ja/docs/concepts/containers/container-lifecycle-hooks/)の詳細
+* [コンテナライフサイクルイベントへのハンドラー紐付け](/ja/docs/tasks/configure-pod-container/attach-handler-lifecycle-event/)のハンズオン
 
 
diff --git a/content/ja/docs/concepts/containers/runtime-class.md b/content/ja/docs/concepts/containers/runtime-class.md
index bc4e285c66..15cf7446f0 100644
--- a/content/ja/docs/concepts/containers/runtime-class.md
+++ b/content/ja/docs/concepts/containers/runtime-class.md
@@ -100,7 +100,7 @@ Kubernetesのビルトインのdockershim CRIは、ランタイムハンドラ
 正しいハンドラーは、その`runtime`セクションで設定されます。
 
 ```
-[plugins.cri.containerd.runtimes.${HANDLER_NAME}]
+[plugins."io.containerd.grpc.v1.cri".containerd.runtimes.${HANDLER_NAME}]
 ```
 
 containerdの設定に関する詳細なドキュメントは下記を参照してください。  
diff --git a/content/ja/docs/concepts/extend-kubernetes/_index.md b/content/ja/docs/concepts/extend-kubernetes/_index.md
index 07cf8b2af2..132f1c100c 100644
--- a/content/ja/docs/concepts/extend-kubernetes/_index.md
+++ b/content/ja/docs/concepts/extend-kubernetes/_index.md
@@ -19,18 +19,15 @@ Kubernetesは柔軟な設定が可能で、高い拡張性を持っています
 
 *設定ファイル* と *フラグ* はオンラインドキュメントのリファレンスセクションの中の、各項目に記載されています:
 
-* [kubelet](/docs/admin/kubelet/)
-* [kube-apiserver](/docs/admin/kube-apiserver/)
-* [kube-controller-manager](/docs/admin/kube-controller-manager/)
-* [kube-scheduler](/docs/admin/kube-scheduler/)
 * [kubelet](/docs/reference/command-line-tools-reference/kubelet/)
+* [kube-proxy](/docs/reference/command-line-tools-reference/kube-proxy/)
 * [kube-apiserver](/docs/reference/command-line-tools-reference/kube-apiserver/)
 * [kube-controller-manager](/docs/reference/command-line-tools-reference/kube-controller-manager/)
-* [kube-scheduler](/docs/reference/command-line-tools-reference/kube-scheduler/)
+* [kube-scheduler](/docs/reference/command-line-tools-reference/kube-scheduler/).
 
 ホスティングされたKubernetesサービスやマネージドなKubernetesでは、フラグと設定ファイルが常に変更できるとは限りません。変更可能な場合でも、通常はクラスターの管理者のみが変更できます。また、それらは将来のKubernetesバージョンで変更される可能性があり、設定変更にはプロセスの再起動が必要になるかもしれません。これらの理由により、この方法は他の選択肢が無いときにのみ利用するべきです。
 
-[ResourceQuota](/docs/concepts/policy/resource-quotas/)、[PodSecurityPolicy](/docs/concepts/policy/pod-security-policy/)、[NetworkPolicy](/docs/concepts/services-networking/network-policies/)、そしてロールベースアクセス制御([RBAC](/docs/reference/access-authn-authz/rbac/))といった *ビルトインポリシーAPI* は、ビルトインのKubernetes APIです。APIは通常、ホスティングされたKubernetesサービスやマネージドなKubernetesで利用されます。これらは宣言的で、Podのような他のKubernetesリソースと同じ慣例に従っています。そのため、新しいクラスターの設定は繰り返し再利用することができ、アプリケーションと同じように管理することが可能です。さらに、安定版(stable)を利用している場合、他のKubernetes APIのような[定義済みのサポートポリシー](/docs/reference/deprecation-policy/)を利用することができます。これらの理由により、この方法は、適切な用途の場合、 *設定ファイル* や *フラグ* よりも好まれます。
+[ResourceQuota](/ja/docs/concepts/policy/resource-quotas/)、[PodSecurityPolicy](/docs/concepts/policy/pod-security-policy/)、[NetworkPolicy](/ja/docs/concepts/services-networking/network-policies/)、そしてロールベースアクセス制御([RBAC](/ja/docs/reference/access-authn-authz/rbac/))といった *ビルトインポリシーAPI* は、ビルトインのKubernetes APIです。APIは通常、ホスティングされたKubernetesサービスやマネージドなKubernetesで利用されます。これらは宣言的で、Podのような他のKubernetesリソースと同じ慣例に従っています。そのため、新しいクラスターの設定は繰り返し再利用することができ、アプリケーションと同じように管理することが可能です。さらに、安定版(stable)を利用している場合、他のKubernetes APIのような[定義済みのサポートポリシー](/docs/reference/deprecation-policy/)を利用することができます。これらの理由により、この方法は、適切な用途の場合、 *設定ファイル* や *フラグ* よりも好まれます。
 
 ## 拡張
 
@@ -115,7 +112,7 @@ Kubdernetesはいくつかのビルトイン認証方式をサポートしてい
 
 [認証](/ja/docs/reference/access-authn-authz/authentication/)は、全てのリクエストのヘッダーまたは証明書情報を、リクエストを投げたクライアントのユーザー名にマッピングします。
 
-Kubernetesはいくつかのビルトイン認証方式と、それらが要件に合わない場合、[認証Webhook](/docs/reference/access-authn-authz/authentication/#webhook-token-authentication)を提供します。
+Kubernetesはいくつかのビルトイン認証方式と、それらが要件に合わない場合、[認証Webhook](/ja/docs/reference/access-authn-authz/authentication/#webhook-token-authentication)を提供します。
 
 ### 認可
 
@@ -161,4 +158,4 @@ Kubernetesはいくつかのビルトイン認証方式と、それらが要件
   * [ネットワークプラグイン](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)
   * [デバイスプラグイン](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)
 * [kubectlプラグイン](/docs/tasks/extend-kubectl/kubectl-plugins/)について学ぶ
-* [オペレーターパターン](/docs/concepts/extend-kubernetes/operator/)について学ぶ
+* [オペレーターパターン](/ja/docs/concepts/extend-kubernetes/operator/)について学ぶ
diff --git a/content/ja/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation.md b/content/ja/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation.md
index 50593a61b8..d107478cca 100644
--- a/content/ja/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation.md
+++ b/content/ja/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation.md
@@ -8,7 +8,7 @@ weight: 20
 
 アグリゲーションレイヤーを使用すると、KubernetesのコアAPIで提供されている機能を超えて、追加のAPIでKubernetesを拡張できます。追加のAPIは、[service-catalog](/docs/concepts/extend-kubernetes/service-catalog/)のような既製のソリューション、または自分で開発したAPIのいずれかです。
 
-アグリゲーションレイヤーは、[カスタムリソース](/docs/concepts/extend-kubernetes/api-extension/custom-resources/)とは異なり、{{< glossary_tooltip term_id="kube-apiserver" text="kube-apiserver" >}}に新しい種類のオブジェクトを認識させる方法です。
+アグリゲーションレイヤーは、[カスタムリソース](/ja/docs/concepts/extend-kubernetes/api-extension/custom-resources/)とは異なり、{{< glossary_tooltip term_id="kube-apiserver" text="kube-apiserver" >}}に新しい種類のオブジェクトを認識させる方法です。
 
 
 
diff --git a/content/ja/docs/concepts/extend-kubernetes/api-extension/custom-resources.md b/content/ja/docs/concepts/extend-kubernetes/api-extension/custom-resources.md
index 85c1c4a77f..9fea0905c6 100644
--- a/content/ja/docs/concepts/extend-kubernetes/api-extension/custom-resources.md
+++ b/content/ja/docs/concepts/extend-kubernetes/api-extension/custom-resources.md
@@ -118,7 +118,7 @@ CRDオブジェクトの名前は[DNSサブドメイン名](/ja/docs/concepts/ov
 
 通常、Kubernetes APIの各リソースは、RESTリクエストとオブジェクトの永続的なストレージを管理するためのコードが必要です。メインのKubernetes APIサーバーは *Pod* や *Service* のようなビルトインのリソースを処理し、またカスタムリソースも[CRD](#customresourcedefinition)を通じて同じように管理することができます。
 
-[アグリゲーションレイヤー](/ja/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)は、独自のスタンドアローンAPIサーバーを書き、デプロイすることで、カスタムリソースに特化した実装の提供を可能にします。メインのAPIサーバーが、処理したいカスタムリソースへのリクエストを委譲することで、他のクライアントからも利用できるようにします。
+[アグリゲーションレイヤー](/ja/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)は、独自のAPIサーバーを書き、デプロイすることで、カスタムリソースに特化した実装の提供を可能にします。メインのAPIサーバーが、処理したいカスタムリソースへのリクエストを独自のAPIサーバーに委譲することで、他のクライアントからも利用できるようにします。
 
 ## カスタムリソースの追加方法を選択する
 
diff --git a/content/ja/docs/concepts/extend-kubernetes/operator.md b/content/ja/docs/concepts/extend-kubernetes/operator.md
index 116ebbb434..b7fae76b35 100644
--- a/content/ja/docs/concepts/extend-kubernetes/operator.md
+++ b/content/ja/docs/concepts/extend-kubernetes/operator.md
@@ -26,8 +26,9 @@ Kubernetes上でワークロードを稼働させている人は、しばしば
 Kubernetesは自動化のために設計されています。追加の作業、設定無しに、Kubernetesのコア機能によって多数のビルトインされた自動化機能が提供されます。
 ワークロードのデプロイおよび稼働を自動化するためにKubernetesを使うことができます。 *さらに* Kubernetesがそれをどのように行うかの自動化も可能です。
 
-Kubernetesの{{< glossary_tooltip text="コントローラー" term_id="controller" >}}コンセプトは、Kubernetesのソースコードを修正すること無く、クラスターの振る舞いを拡張することを可能にします。
-オペレーターはKubernetes APIのクライアントで、[Custom Resource](/docs/concepts/extend-kubernetes/api-extension/custom-resources/)にとっての、コントローラーのように振る舞います。
+
+Kubernetesの{{< glossary_tooltip text="オペレーターパターン" term_id="operator-pattern" >}}コンセプトは、Kubernetesのソースコードを修正すること無く、一つ以上のカスタムリソースに{{< glossary_tooltip text="カスタムコントローラー" term_id="controller" >}}をリンクすることで、クラスターの振る舞いを拡張することを可能にします。
+オペレーターはKubernetes APIのクライアントで、[Custom Resource](/ja/docs/concepts/extend-kubernetes/api-extension/custom-resources/)にとっての、コントローラーのように振る舞います。
 
 ## オペレーターの例 {#example}
 
@@ -88,8 +89,11 @@ kubectl edit SampleDB/example-database # 手動でいくつかの設定を変更
 * ユースケースに合わせた、既製のオペレーターを[OperatorHub.io](https://operatorhub.io/)から見つけます
 * 自前のオペレーターを書くために既存のツールを使います、例:
   * [Charmed Operator Framework](https://juju.is/)
+  * [Java Operator SDK](https://github.com/java-operator-sdk/java-operator-sdk)
+  * [Kopf](https://github.com/nolar/kopf) (Kubernetes Operator Pythonic Framework)
   * [KUDO](https://kudo.dev/)（Kubernetes Universal Declarative Operator）を使います
   * [kubebuilder](https://book.kubebuilder.io/)を使います
+  * [KubeOps](https://buehler.github.io/dotnet-operator-sdk/) (dotnet operator SDK)
   * [Metacontroller](https://metacontroller.github.io/metacontroller/intro.html)を自分で実装したWebHooksと一緒に使います
   * [Operator Framework](https://operatorframework.io)を使います
   * [shell-operator](https://github.com/flant/shell-operator)
diff --git a/content/ja/docs/concepts/overview/components.md b/content/ja/docs/concepts/overview/components.md
index 3dafc54e57..3f696afd57 100644
--- a/content/ja/docs/concepts/overview/components.md
+++ b/content/ja/docs/concepts/overview/components.md
@@ -88,7 +88,7 @@ kube-controller-managerを使用すると、cloud-controller-managerは複数の
 アドオンはクラスター機能を実装するためにKubernetesリソース({{< glossary_tooltip term_id="daemonset" >}}、{{< glossary_tooltip term_id="deployment" >}}など)を使用します。
 アドオンはクラスターレベルの機能を提供しているため、アドオンのリソースで名前空間が必要なものは`kube-system`名前空間に属します。
 
-いくつかのアドオンについて以下で説明します。より多くの利用可能なアドオンのリストは、[アドオン](/docs/concepts/cluster-administration/addons/) をご覧ください。
+いくつかのアドオンについて以下で説明します。より多くの利用可能なアドオンのリストは、[アドオン](/ja/docs/concepts/cluster-administration/addons/) をご覧ください。
 
 ### DNS
 
@@ -115,7 +115,7 @@ Kubernetesによって開始されたコンテナは、DNS検索にこのDNSサ
 ## {{% heading "whatsnext" %}}
 
 * [ノード](/ja/docs/concepts/architecture/nodes/)について学ぶ
-* [コントローラー](/docs/concepts/architecture/controller/)について学ぶ
+* [コントローラー](/ja/docs/concepts/architecture/controller/)について学ぶ
 * [kube-scheduler](/ja/docs/concepts/scheduling-eviction/kube-scheduler/)について学ぶ
 * etcdの公式 [ドキュメント](https://etcd.io/docs/)を読む
 
diff --git a/content/ja/docs/concepts/overview/kubernetes-api.md b/content/ja/docs/concepts/overview/kubernetes-api.md
index 876cdac7fa..c5a7a06c89 100644
--- a/content/ja/docs/concepts/overview/kubernetes-api.md
+++ b/content/ja/docs/concepts/overview/kubernetes-api.md
@@ -65,7 +65,7 @@ Kubernetes APIサーバーは、`/openapi/v2`エンドポイントを介してOp
 </table>
 
 
-Kubernetesは、他の手段として主にクラスター間の連携用途向けのAPIに、Protocol buffersをベースにしたシリアライズフォーマットを実装しています。このフォーマットに関しては、[Kubernetes Protobuf serialization](https://github.com/kubernetes/community/blob/master/contributors/des ign-proposals/api-machinery/protobuf.md)デザイン提案を参照してください。また、各スキーマのInterface Definition Language（IDL）ファイルは、APIオブジェクトを定義しているGoパッケージ内に配置されています。
+Kubernetesは、他の手段として主にクラスター間の連携用途向けのAPIに、Protocol buffersをベースにしたシリアライズフォーマットを実装しています。このフォーマットに関しては、[Kubernetes Protobuf serialization](https://github.com/kubernetes/design-proposals-archive/blob/main/api-machinery/protobuf.md)デザイン提案を参照してください。また、各スキーマのInterface Definition Language（IDL）ファイルは、APIオブジェクトを定義しているGoパッケージ内に配置されています。
 
 ## 永続性
 
diff --git a/content/ja/docs/concepts/overview/working-with-objects/field-selectors.md b/content/ja/docs/concepts/overview/working-with-objects/field-selectors.md
index 714e48e943..d3e647eb78 100644
--- a/content/ja/docs/concepts/overview/working-with-objects/field-selectors.md
+++ b/content/ja/docs/concepts/overview/working-with-objects/field-selectors.md
@@ -3,7 +3,7 @@ title: フィールドセレクター(Field Selectors)
 weight: 60
 ---
 
-_フィールドセレクター(Field Selectors)_ は、1つかそれ以上のリソースフィールドの値を元に[Kubernetesリソースを選択](/docs/concepts/overview/working-with-objects/kubernetes-objects)するためのものです。  
+_フィールドセレクター(Field Selectors)_ は、1つかそれ以上のリソースフィールドの値を元に[Kubernetesリソースを選択](/ja/docs/concepts/overview/working-with-objects/kubernetes-objects)するためのものです。  
 フィールドセレクタークエリの例は以下の通りです。  
 
 * `metadata.name=my-service`
diff --git a/content/ja/docs/concepts/overview/working-with-objects/names.md b/content/ja/docs/concepts/overview/working-with-objects/names.md
index 25566735bf..3be049c098 100644
--- a/content/ja/docs/concepts/overview/working-with-objects/names.md
+++ b/content/ja/docs/concepts/overview/working-with-objects/names.md
@@ -9,7 +9,7 @@ weight: 20
 
 クラスター内の各オブジェクトには、そのタイプのリソースに固有の[_名前_](#names)があります。すべてのKubernetesオブジェクトには、クラスター全体で一意の[_UID_](#uids)もあります。
 
-たとえば、同じ[名前空間](/docs/concepts/overview/working-with-objects/namespaces/)内に`myapp-1234`という名前のPodは1つしか含められませんが、`myapp-1234`という名前の1つのPodと1つのDeploymentを含めることができます。
+たとえば、同じ[名前空間](/ja/docs/concepts/overview/working-with-objects/namespaces/)内に`myapp-1234`という名前のPodは1つしか含められませんが、`myapp-1234`という名前の1つのPodと1つのDeploymentを含めることができます。
 
 ユーザーが一意ではない属性を付与するために、Kubernetesは[ラベル](/ja/docs/concepts/overview/working-with-objects/labels/)と[アノテーション](/ja/docs/concepts/overview/working-with-objects/annotations/)を提供しています。
 
diff --git a/content/ja/docs/concepts/policy/limit-range.md b/content/ja/docs/concepts/policy/limit-range.md
index 656ba98a12..64f89c060c 100644
--- a/content/ja/docs/concepts/policy/limit-range.md
+++ b/content/ja/docs/concepts/policy/limit-range.md
@@ -6,7 +6,7 @@ weight: 10
 
 <!-- overview -->
 
-デフォルトでは、コンテナは、Kubernetesクラスター上の[計算リソース](/docs/concepts/configuration/manage-resources-containers/)の消費を制限されずに実行されます。リソースクォータを利用すれば、クラスター管理者はリソースの消費と作成を{{< glossary_tooltip text="名前空間" term_id="namespace" >}}ベースで制限することができます。名前空間内では、Podやコンテナは名前空間のリソースクォータで定義された範囲内でできるだけ多くのCPUとメモリーを消費できてしまうため、1つのPodまたはコンテナが利用可能なすべてのリソースを専有してしまう恐れがあります。LimitRangeを利用すれば、このような名前空間内での(Podやコンテナへの)リソースの割り当てを制限するポリシーを定めることができます。
+デフォルトでは、コンテナは、Kubernetesクラスター上の[計算リソース](/ja/docs/concepts/configuration/manage-resources-containers/)の消費を制限されずに実行されます。リソースクォータを利用すれば、クラスター管理者はリソースの消費と作成を{{< glossary_tooltip text="名前空間" term_id="namespace" >}}ベースで制限することができます。名前空間内では、Podやコンテナは名前空間のリソースクォータで定義された範囲内でできるだけ多くのCPUとメモリーを消費できてしまうため、1つのPodまたはコンテナが利用可能なすべてのリソースを専有してしまう恐れがあります。LimitRangeを利用すれば、このような名前空間内での(Podやコンテナへの)リソースの割り当てを制限するポリシーを定めることができます。
 
 <!-- body -->
 
@@ -50,7 +50,7 @@ LimitRangeに対する競合や変更は、すでに作成済みのリソース
 制限の使用例については、以下のページを読んでください。
 
 - [名前空間ごとにCPUの最小値と最大値の制約を設定する方法](/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)。
-- [名前空間ごとにメモリーの最小値と最大値の制約を設定する方法](/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)。
+- [名前空間ごとにメモリーの最小値と最大値の制約を設定する方法](/ja/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)。
 - [名前空間ごとにCPUのRequestとLimitのデフォルト値を設定する方法](/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/)。
 - [名前空間ごとにメモリーのRequestとLimitのデフォルト値を設定する方法](/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)。
 - [名前空間ごとにストレージ消費量の最小値と最大値を設定する方法](/docs/tasks/administer-cluster/limit-storage-consumption/#limitrange-to-limit-requests-for-storage)。
diff --git a/content/ja/docs/concepts/policy/resource-quotas.md b/content/ja/docs/concepts/policy/resource-quotas.md
index cadcadf0ef..552b518441 100644
--- a/content/ja/docs/concepts/policy/resource-quotas.md
+++ b/content/ja/docs/concepts/policy/resource-quotas.md
@@ -44,7 +44,7 @@ ResourceQuotaのオブジェクト名は、有効な[DNSサブドメイン名](/
 
 ## リソースクォータの計算
 
-特定の名前空間において、[コンピュートリソース](/docs/concepts/configuration/manage-resources-containers/)の合計に上限を設定できます。
+特定の名前空間において、[コンピュートリソース](/ja/docs/concepts/configuration/manage-resources-containers/)の合計に上限を設定できます。
 
 下記のリソースタイプがサポートされています。
 
@@ -152,7 +152,7 @@ Kubernetes v1.8において、ローカルのエフェメラルストレージ
 | `NotTerminating` | `.spec.activeDeadlineSecondsがnil`であるPodに一致します。 |
 | `BestEffort` | ベストエフォート型のサービス品質のPodに一致します。 |
 | `NotBestEffort` | ベストエフォート型のサービス品質でないPodに一致します。 |
-| `PriorityClass` | 指定された[優先度クラス](/docs/concepts/configuration/pod-priority-preemption)と関連付いているPodに一致します。 |
+| `PriorityClass` | 指定された[優先度クラス](/ja/docs/concepts/configuration/pod-priority-preemption)と関連付いているPodに一致します。 |
 
 `BestEffort`スコープはリソースクォータを次のリソースに対するトラッキングのみに制限します:
 
@@ -201,7 +201,7 @@ Kubernetes v1.8において、ローカルのエフェメラルストレージ
 
 {{< feature-state for_k8s_version="v1.17" state="stable" >}}
 
-Podは特定の[優先度](/docs/concepts/configuration/pod-priority-preemption/#pod-priority)で作成されます。リソースクォータのSpec内にある`scopeSelector`フィールドを使用して、Podの優先度に基づいてPodのシステムリソースの消費をコントロールできます。
+Podは特定の[優先度](/ja/docs/concepts/configuration/pod-priority-preemption/#pod-priority)で作成されます。リソースクォータのSpec内にある`scopeSelector`フィールドを使用して、Podの優先度に基づいてPodのシステムリソースの消費をコントロールできます。
 
 リソースクォータのSpec内の`scopeSelector`によってPodが選択されたときのみ、そのリソースクォータが一致し、消費されます。
 
diff --git a/content/ja/docs/concepts/scheduling-eviction/api-eviction.md b/content/ja/docs/concepts/scheduling-eviction/api-eviction.md
new file mode 100644
index 0000000000..5092c96b19
--- /dev/null
+++ b/content/ja/docs/concepts/scheduling-eviction/api-eviction.md
@@ -0,0 +1,92 @@
+---
+title: APIを起点とした退避
+content_type: concept
+weight: 70
+---
+
+{{< glossary_definition term_id="api-eviction" length="short" >}} </br>
+
+Eviction APIを直接呼び出すか、`kubectl drain`コマンドのように{{<glossary_tooltip term_id="kube-apiserver" text="APIサーバー">}}のクライアントを使って退避を要求することが可能です。これにより、`Eviction`オブジェクトを作成し、APIサーバーにPodを終了させます。
+
+APIを起点とした退避は[`PodDisruptionBudgets`](/docs/tasks/run-application/configure-pdb/)と[`terminationGracePeriodSeconds`](/ja/docs/concepts/workloads/pods/pod-lifecycle#pod-termination)の設定を優先します。
+
+APIを使用してPodのEvictionオブジェクトを作成することは、Podに対してポリシー制御された[`DELETE`操作](/docs/reference/kubernetes-api/workload-resources/pod-v1/#delete-delete-a-pod)を実行することに似ています。
+
+## Eviction APIの実行 {#calling-the-eviction-api}
+
+Kubernetes APIへアクセスして`Eviction`オブジェクトを作るために[Kubernetesのプログラミング言語のクライアント](/docs/tasks/administer-cluster/access-cluster-api/#programmatic-access-to-the-api)を使用できます。
+そのためには、次の例のようなデータをPOSTすることで操作を試みることができます。
+
+{{< tabs name="Eviction_example" >}}
+{{% tab name="policy/v1" %}}
+{{< note >}}
+`policy/v1`においてEvictionはv1.22以上で利用可能です。それ以前のリリースでは、`policy/v1beta1`を使用してください。
+{{< /note >}}
+
+```json
+{
+  "apiVersion": "policy/v1",
+  "kind": "Eviction",
+  "metadata": {
+    "name": "quux",
+    "namespace": "default"
+  }
+}
+```
+{{% /tab %}}
+{{% tab name="policy/v1beta1" %}}
+{{< note >}}
+v1.22で非推奨となり、`policy/v1`が採用されました。
+{{< /note >}}
+
+```json
+{
+  "apiVersion": "policy/v1beta1",
+  "kind": "Eviction",
+  "metadata": {
+    "name": "quux",
+    "namespace": "default"
+  }
+}
+```
+{{% /tab %}}
+{{< /tabs >}}
+
+また、以下の例のように`curl`や`wget`を使ってAPIにアクセスすることで、操作を試みることもできます。
+
+```bash
+curl -v -H 'Content-type: application/json' https://your-cluster-api-endpoint.example/api/v1/namespaces/default/pods/quux/eviction -d @eviction.json
+```
+
+## APIを起点とした退避の仕組み {#how-api-initiated-eviction-works}
+
+APIを使用して退去を要求した場合、APIサーバーはアドミッションチェックを行い、以下のいずれかを返します。
+
+* `200 OK`:この場合、退去が許可されると`Eviction`サブリソースが作成され、PodのURLに`DELETE`リクエストを送るのと同じように、Podが削除されます。
+* `429 Too Many Requests`:{{<glossary_tooltip term_id="pod-disruption-budget" text="PodDisruptionBudget">}}の設定により、現在退去が許可されていないことを示します。しばらく時間を空けてみてください。また、APIのレート制限のため、このようなレスポンスが表示されることもあります。
+* `500 Internal Server Error`:複数のPodDisruptionBudgetが同じPodを参照している場合など、設定に誤りがあり退去が許可されないことを示します。
+
+退去させたいPodがPodDisruptionBudgetを持つワークロードの一部でない場合、APIサーバーは常に`200 OK`を返して退去を許可します。
+
+APIサーバーが退去を許可した場合、以下の流れでPodが削除されます。
+
+1. APIサーバーの`Pod`リソースの削除タイムスタンプが更新され、APIサーバーは`Pod`リソースが終了したと見なします。また`Pod`リソースは、設定された猶予期間が設けられます。
+1. ローカルのPodが動作しているNodeの{{<glossary_tooltip term_id="kubelet" text="kubelet">}}は、`Pod`リソースが終了するようにマークされていることに気付き、Podの適切なシャットダウンを開始します。
+1. kubeletがPodをシャットダウンしている間、コントロールプレーンは{{<glossary_tooltip term_id="endpoint" text="Endpoint">}}オブジェクトからPodを削除します。その結果、コントローラーはPodを有効なオブジェクトと見なさないようになります。
+1. Podの猶予期間が終了すると、kubeletはローカルPodを強制的に終了します。
+1. kubeletはAPIサーバーに`Pod`リソースを削除するように指示します。
+1. APIサーバーは`Pod`リソースを削除します。
+
+## トラブルシューティング {#troubleshooting-stuck-evictions}
+
+場合によっては、アプリケーションが壊れた状態になり、対処しない限りEviction APIが`429`または`500`レスポンスを返すだけとなることがあります。例えば、ReplicaSetがアプリケーション用のPodを作成しても、新しいPodが`Ready`状態にならない場合などです。また、最後に退去したPodの終了猶予期間が長い場合にも、この事象が見られます。
+
+退去が進まない場合は、以下の解決策を試してみてください。
+
+* 問題を引き起こしている自動化された操作を中止または一時停止し、操作を再開する前に、スタックしているアプリケーションを調査を行ってください。
+* しばらく待ってから、Eviction APIを使用する代わりに、クラスターのコントロールプレーンから直接Podを削除してください。
+
+## {{% heading "whatsnext" %}}
+* [Pod Disruption Budget](/docs/tasks/run-application/configure-pdb/)でアプリケーションを保護する方法について学ぶ
+* [Node不足による退避](/docs/concepts/scheduling-eviction/node-pressure-eviction/)について学ぶ
+* [Podの優先度とプリエンプション](/docs/concepts/scheduling-eviction/pod-priority-preemption/)について学ぶ
diff --git a/content/ja/docs/concepts/scheduling-eviction/kube-scheduler.md b/content/ja/docs/concepts/scheduling-eviction/kube-scheduler.md
index cbd833ba3d..12a7971d88 100644
--- a/content/ja/docs/concepts/scheduling-eviction/kube-scheduler.md
+++ b/content/ja/docs/concepts/scheduling-eviction/kube-scheduler.md
@@ -1,7 +1,7 @@
 ---
 title: Kubernetesのスケジューラー
 content_type: concept
-weight: 60
+weight: 10
 ---
 
 <!-- overview -->
@@ -62,9 +62,9 @@ _スコアリング_ ステップでは、Podを割り当てるのに最も適
 * [Podトポロジーの分散制約](/docs/concepts/workloads/pods/pod-topology-spread-constraints/)を参照してください。
 * kube-schedulerの[リファレンスドキュメント](/docs/reference/command-line-tools-reference/kube-scheduler/)を参照してください。
 * [複数のスケジューラーの設定](/docs/tasks/administer-cluster/configure-multiple-schedulers/)について学んでください。
-* [トポロジーの管理ポリシー](/docs/tasks/administer-cluster/topology-manager/)について学んでください。
-* [Podのオーバーヘッド](/docs/concepts/scheduling-eviction/pod-overhead/)について学んでください。
+* [トポロジーの管理ポリシー](/ja/docs/tasks/administer-cluster/topology-manager/)について学んでください。
+* [Podのオーバーヘッド](/ja/docs/concepts/scheduling-eviction/pod-overhead/)について学んでください。
 * ボリュームを使用するPodのスケジューリングについて以下で学んでください。
   * [Volume Topology Support](/docs/concepts/storage/storage-classes/#volume-binding-mode)
-  * [ストレージ容量の追跡](/ja//docs/concepts/storage/storage-capacity/)
+  * [ストレージ容量の追跡](/ja/docs/concepts/storage/storage-capacity/)
   * [Node-specific Volume Limits](/docs/concepts/storage/storage-limits/)
diff --git a/content/ja/docs/concepts/scheduling-eviction/pod-overhead.md b/content/ja/docs/concepts/scheduling-eviction/pod-overhead.md
new file mode 100644
index 0000000000..f88da29e8f
--- /dev/null
+++ b/content/ja/docs/concepts/scheduling-eviction/pod-overhead.md
@@ -0,0 +1,160 @@
+---
+title: Podのオーバーヘッド
+content_type: concept
+weight: 30
+---
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.18" state="beta" >}}
+
+
+PodをNode上で実行する時に、Pod自身は大量のシステムリソースを消費します。これらのリソースは、Pod内のコンテナ(群)を実行するために必要なリソースとして追加されます。Podのオーバーヘッドは、コンテナの要求と制限に加えて、Podのインフラストラクチャで消費されるリソースを計算するための機能です。
+
+
+
+
+<!-- body -->
+
+Kubernetesでは、Podの[RuntimeClass](/docs/concepts/containers/runtime-class/)に関連するオーバーヘッドに応じて、[アドミッション](/ja/docs/reference/access-authn-authz/extensible-admission-controllers/#what-are-admission-webhooks)時にPodのオーバーヘッドが設定されます。
+
+Podのオーバーヘッドを有効にした場合、Podのスケジューリング時にコンテナのリソース要求の合計に加えて、オーバーヘッドも考慮されます。同様に、Kubeletは、Podのcgroupのサイズ決定時およびPodの退役の順位付け時に、Podのオーバーヘッドを含めます。
+
+## Podのオーバーヘッドの有効化　{#set-up}
+
+クラスター全体で`PodOverhead`の[フィーチャーゲート](/ja/docs/reference/command-line-tools-reference/feature-gates/)が有効になっていること（1.18時点ではデフォルトでオンになっています）と、`overhead`フィールドを定義する`RuntimeClass`が利用されていることを確認する必要があります。
+
+## 使用例
+
+Podのオーバーヘッド機能を使用するためには、`overhead`フィールドが定義されたRuntimeClassが必要です。例として、仮想マシンとゲストOSにPodあたり約120MiBを使用する仮想化コンテナランタイムで、次のようなRuntimeClassを定義できます。
+
+```yaml
+---
+kind: RuntimeClass
+apiVersion: node.k8s.io/v1
+metadata:
+    name: kata-fc
+handler: kata-fc
+overhead:
+    podFixed:
+        memory: "120Mi"
+        cpu: "250m"
+```
+
+`kata-fc`RuntimeClassハンドラーを指定して作成されたワークロードは、リソースクォータの計算や、Nodeのスケジューリング、およびPodのcgroupのサイズ決定にメモリーとCPUのオーバーヘッドが考慮されます。
+
+次のtest-podのワークロードの例を実行するとします。
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-pod
+spec:
+  runtimeClassName: kata-fc
+  containers:
+  - name: busybox-ctr
+    image: busybox
+    stdin: true
+    tty: true
+    resources:
+      limits:
+        cpu: 500m
+        memory: 100Mi
+  - name: nginx-ctr
+    image: nginx
+    resources:
+      limits:
+        cpu: 1500m
+        memory: 100Mi
+```
+
+アドミッション時、RuntimeClass[アドミッションコントローラー](/docs/reference/access-authn-authz/admission-controllers/)は、RuntimeClass内に記述された`オーバーヘッド`を含むようにワークロードのPodSpecを更新します。もし既にPodSpec内にこのフィールドが定義済みの場合、そのPodは拒否されます。この例では、RuntimeClassの名前しか指定されていないため、アドミッションコントローラーは`オーバーヘッド`を含むようにPodを変更します。
+
+RuntimeClassのアドミッションコントローラーの後、更新されたPodSpecを確認できます。
+
+```bash
+kubectl get pod test-pod -o jsonpath='{.spec.overhead}'
+```
+
+出力は次の通りです:
+```
+map[cpu:250m memory:120Mi]
+```
+ResourceQuotaが定義されている場合、コンテナ要求の合計と`オーバーヘッド`フィールドがカウントされます。
+
+kube-schedulerが新しいPodを実行すべきNodeを決定する際、スケジューラーはそのPodの`オーバーヘッド`と、そのPodに対するコンテナ要求の合計を考慮します。この例だと、スケジューラーは、要求とオーバーヘッドを追加し、2.25CPUと320MiBのメモリを持つNodeを探します。
+
+PodがNodeにスケジュールされると、そのNodeのkubeletはPodのために新しい{{< glossary_tooltip text="cgroup" term_id="cgroup" >}}を生成します。基盤となるコンテナランタイムがコンテナを作成するのは、このPod内です。
+
+リソースにコンテナごとの制限が定義されている場合(制限が定義されているGuaranteed QoSまたはBustrable QoS)、kubeletはそのリソース(CPUはcpu.cfs_quota_us、メモリはmemory.limit_in_bytes)に関連するPodのcgroupの上限を設定します。この上限は、コンテナの制限とPodSpecで定義された`オーバーヘッド`の合計に基づきます。
+
+CPUについては、PodがGuaranteedまたはBurstable QoSの場合、kubeletはコンテナの要求の合計とPodSpecに定義された`オーバーヘッド`に基づいて`cpu.share`を設定します。
+
+次の例より、ワークロードに対するコンテナの要求を確認できます。
+```bash
+kubectl get pod test-pod -o jsonpath='{.spec.containers[*].resources.limits}'
+```
+
+コンテナの要求の合計は、CPUは2000m、メモリーは200MiBです。
+```
+map[cpu: 500m memory:100Mi] map[cpu:1500m memory:100Mi]
+```
+
+Nodeで観測される値と比較してみましょう。
+```bash
+kubectl describe node | grep test-pod -B2
+```
+
+出力では、2250mのCPUと320MiBのメモリーが要求されており、Podのオーバーヘッドが含まれていることが分かります。
+```
+  Namespace                   Name                CPU Requests  CPU Limits   Memory Requests  Memory Limits  AGE
+  ---------                   ----                ------------  ----------   ---------------  -------------  ---
+  default                     test-pod            2250m (56%)   2250m (56%)  320Mi (1%)       320Mi (1%)     36m
+```
+
+## Podのcgroupの制限を確認
+
+ワークロードで実行中のNode上にある、Podのメモリーのcgroupを確認します。次に示す例では、CRI互換のコンテナランタイムのCLIを提供するNodeで[`crictl`](https://github.com/kubernetes-sigs/cri-tools/blob/master/docs/crictl.md)を使用しています。これはPodのオーバーヘッドの動作を示すための高度な例であり、ユーザーがNode上で直接cgroupsを確認する必要はありません。
+
+まず、特定のNodeで、Podの識別子を決定します。
+
+```bash
+# PodがスケジュールされているNodeで実行
+POD_ID="$(sudo crictl pods --name test-pod -q)"
+```
+
+ここから、Podのcgroupのパスが決定します。
+```bash
+# PodがスケジュールされているNodeで実行
+sudo crictl inspectp -o=json $POD_ID | grep cgroupsPath
+```
+
+結果のcgroupパスにはPodの`ポーズ中`コンテナも含まれます。Podレベルのcgroupは１つ上のディレクトリです。
+```
+        "cgroupsPath": "/kubepods/podd7f4b509-cf94-4951-9417-d1087c92a5b2/7ccf55aee35dd16aca4189c952d83487297f3cd760f1bbf09620e206e7d0c27a"
+```
+
+今回のケースでは、Podのcgroupパスは、`kubepods/podd7f4b509-cf94-4951-9417-d1087c92a5b2`となります。メモリーのPodレベルのcgroupの設定を確認しましょう。
+```bash
+# PodがスケジュールされているNodeで実行
+# また、Podに割り当てられたcgroupと同じ名前に変更
+ cat /sys/fs/cgroup/memory/kubepods/podd7f4b509-cf94-4951-9417-d1087c92a5b2/memory.limit_in_bytes
+```
+
+予想通り320MiBです。
+```
+335544320
+```
+
+### Observability
+
+Podのオーバヘッドが利用されているタイミングを特定し、定義されたオーバーヘッドで実行されているワークロードの安定性を観察するため、[kube-state-metrics](https://github.com/kubernetes/kube-state-metrics)には`kube_pod_overhead`というメトリクスが用意されています。この機能はv1.9のkube-state-metricsでは利用できませんが、次のリリースで期待されています。それまでは、kube-state-metricsをソースからビルドする必要があります。
+
+
+
+## {{% heading "whatsnext" %}}
+
+
+* [RuntimeClass](/ja/docs/concepts/containers/runtime-class/)
+* [Podのオーバーヘッドの設計](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/688-pod-overhead)
diff --git a/content/ja/docs/concepts/scheduling-eviction/resource-bin-packing.md b/content/ja/docs/concepts/scheduling-eviction/resource-bin-packing.md
new file mode 100644
index 0000000000..fd2404984c
--- /dev/null
+++ b/content/ja/docs/concepts/scheduling-eviction/resource-bin-packing.md
@@ -0,0 +1,197 @@
+---
+title: 拡張リソースのリソースビンパッキング
+content_type: concept
+weight: 80
+---
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.16" state="alpha" >}}
+
+kube-schedulerでは、優先度関数`RequestedToCapacityRatioResourceAllocation`を使用した、
+拡張リソースを含むリソースのビンパッキングを有効化できます。優先度関数はそれぞれのニーズに応じて、kube-schedulerを微調整するために使用できます。
+
+<!-- body -->
+
+## `RequestedToCapacityRatioResourceAllocation`を使用したビンパッキングの有効化
+
+Kubernetesでは、キャパシティー比率への要求に基づいたNodeのスコアリングをするために、各リソースの重みと共にリソースを指定することができます。これにより、ユーザーは適切なパラメーターを使用することで拡張リソースをビンパックすることができ、大規模クラスターにおける希少なリソースを有効活用できるようになります。優先度関数`RequestedToCapacityRatioResourceAllocation`の動作は`RequestedToCapacityRatioArgs`と呼ばれる設定オプションによって変わります。この引数は`shape`と`resources`パラメーターによって構成されます。`shape`パラメーターは`utilization`と`score`の値に基づいて、最も要求が多い場合か最も要求が少ない場合の関数をチューニングできます。`resources`パラメーターは、スコアリングの際に考慮されるリソース名の`name`と、各リソースの重みを指定する`weight`で構成されます。
+
+以下は、拡張リソース`intel.com/foo`と`intel.com/bar`のビンパッキングに`requestedToCapacityRatioArguments`を設定する例になります。
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta1
+kind: KubeSchedulerConfiguration
+profiles:
+# ...
+  pluginConfig:
+  - name: RequestedToCapacityRatio
+    args:
+      shape:
+      - utilization: 0
+        score: 10
+      - utilization: 100
+        score: 0
+      resources:
+      - name: intel.com/foo
+        weight: 3
+      - name: intel.com/bar
+        weight: 5
+```
+スケジューラーには、kube-schedulerフラグ`--config=/path/to/config/file`を使用して`KubeSchedulerConfiguration`のファイルを指定することで渡すことができます。
+
+**この機能はデフォルトで無効化されています**
+
+### 優先度関数のチューニング
+
+`shape`は`RequestedToCapacityRatioPriority`関数の動作を指定するために使用されます。
+
+```yaml
+shape:
+ - utilization: 0
+   score: 0
+ - utilization: 100
+   score: 10
+```
+
+上記の引数は、`utilization`が0%の場合は0、`utilization`が100%の場合は10という`score`をNodeに与え、ビンパッキングの動作を有効にしています。最小要求を有効にするには、次のようにスコアを反転させる必要があります。
+
+```yaml
+shape:
+  - utilization: 0
+    score: 10
+  - utilization: 100
+    score: 0
+```
+
+`resources`はオプションパラメーターで、デフォルトでは以下の通りです。
+
+``` yaml
+resources:
+  - name: cpu
+    weight: 1
+  - name: memory
+    weight: 1
+```
+
+
+以下のように拡張リソースの追加に利用できます。
+
+```yaml
+resources:
+  - name: intel.com/foo
+    weight: 5
+  - name: cpu
+    weight: 3
+  - name: memory
+    weight: 1
+```
+
+`weight`はオプションパラメーターで、指定されてない場合1が設定されます。また、マイナスの値は設定できません。
+
+### キャパシティ割り当てのためのNodeスコアリング
+
+このセクションは、本機能の内部詳細について理解したい方を対象としています。以下は、与えられた値に対してNodeのスコアがどのように計算されるかの例です。
+
+要求されたリソース:
+
+```
+intel.com/foo : 2
+memory: 256MB
+cpu: 2
+```
+
+リソースの重み:
+
+```
+intel.com/foo : 5
+memory: 1
+cpu: 3
+```
+
+`shape`の値 {{0, 0}, {100, 10}}
+
+Node1のスペック:
+
+```
+Available:
+  intel.com/foo: 4
+  memory: 1 GB
+  cpu: 8
+
+Used:
+  intel.com/foo: 1
+  memory: 256MB
+  cpu: 1
+```
+
+Nodeのスコア:
+
+```
+intel.com/foo  = resourceScoringFunction((2+1),4)
+               = (100 - ((4-3)*100/4)
+               = (100 - 25)
+               = 75                       # requested + used = 75% * available
+               = rawScoringFunction(75)
+               = 7                        # floor(75/10)
+
+memory         = resourceScoringFunction((256+256),1024)
+               = (100 -((1024-512)*100/1024))
+               = 50                       # requested + used = 50% * available
+               = rawScoringFunction(50)
+               = 5                        # floor(50/10)
+
+cpu            = resourceScoringFunction((2+1),8)
+               = (100 -((8-3)*100/8))
+               = 37.5                     # requested + used = 37.5% * available
+               = rawScoringFunction(37.5)
+               = 3                        # floor(37.5/10)
+
+NodeScore   =  (7 * 5) + (5 * 1) + (3 * 3) / (5 + 1 + 3)
+            =  5
+```
+
+Node2のスペック:
+
+```
+Available:
+  intel.com/foo: 8
+  memory: 1GB
+  cpu: 8
+Used:
+  intel.com/foo: 2
+  memory: 512MB
+  cpu: 6
+```
+
+Nodeのスコア:
+
+```
+intel.com/foo  = resourceScoringFunction((2+2),8)
+               =  (100 - ((8-4)*100/8)
+               =  (100 - 50)
+               =  50
+               =  rawScoringFunction(50)
+               = 5
+
+memory         = resourceScoringFunction((256+512),1024)
+               = (100 -((1024-768)*100/1024))
+               = 75
+               = rawScoringFunction(75)
+               = 7
+
+cpu            = resourceScoringFunction((2+6),8)
+               = (100 -((8-8)*100/8))
+               = 100
+               = rawScoringFunction(100)
+               = 10
+
+NodeScore   =  (5 * 5) + (7 * 1) + (10 * 3) / (5 + 1 + 3)
+            =  7
+
+```
+
+## {{% heading "whatsnext" %}}
+
+- [スケジューリングフレームワーク](/ja/docs/concepts/scheduling-eviction/scheduling-framework/)について更に読む
+- [スケジューラーの設定](/docs/reference/scheduling/config/)について更に読む
diff --git a/content/ja/docs/concepts/scheduling-eviction/scheduler-perf-tuning.md b/content/ja/docs/concepts/scheduling-eviction/scheduler-perf-tuning.md
index 3457132bd1..3eeb51376e 100644
--- a/content/ja/docs/concepts/scheduling-eviction/scheduler-perf-tuning.md
+++ b/content/ja/docs/concepts/scheduling-eviction/scheduler-perf-tuning.md
@@ -40,7 +40,7 @@ kubectl get pods -n kube-system | grep kube-scheduler
 
 スケジューリング性能を改善するため、kube-schedulerは割り当て可能なノードが十分に見つかるとノードの検索を停止できます。大規模クラスターでは、すべてのノードを考慮する単純なアプローチと比較して時間を節約できます。
 
-クラスター内のすべてのノードに対する十分なノード数を整数パーセンテージで指定します。kube-schedulerは、これをノード数に変換します。スケジューリング中に、kube-schedulerが設定されたパーセンテージを超える十分な割り当て可能なノードを見つけた場合、kube-schedulerはこれ以上割り当て可能なノードを探すのを止め、[スコアリングフェーズ](/docs/concepts/scheduling-eviction/kube-scheduler/#kube-scheduler-implementation)に進みます。
+クラスター内のすべてのノードに対する十分なノード数を整数パーセンテージで指定します。kube-schedulerは、これをノード数に変換します。スケジューリング中に、kube-schedulerが設定されたパーセンテージを超える十分な割り当て可能なノードを見つけた場合、kube-schedulerはこれ以上割り当て可能なノードを探すのを止め、[スコアリングフェーズ](/ja/docs/concepts/scheduling-eviction/kube-scheduler/#kube-scheduler-implementation)に進みます。
 
 [スケジューラーはどのようにノードを探索するか](#how-the-scheduler-iterates-over-nodes)で処理を詳しく説明しています。
 
diff --git a/content/ja/docs/concepts/scheduling-eviction/scheduling-framework.md b/content/ja/docs/concepts/scheduling-eviction/scheduling-framework.md
new file mode 100644
index 0000000000..23ab9f5750
--- /dev/null
+++ b/content/ja/docs/concepts/scheduling-eviction/scheduling-framework.md
@@ -0,0 +1,174 @@
+---
+title: スケジューリングフレームワーク
+content_type: concept
+weight: 90
+---
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.19" state="stable" >}}
+
+スケジューリングフレームワークはKubernetesのスケジューラーに対してプラグイン可能なアーキテクチャです。
+このアーキテクチャは、既存のスケジューラーに新たに「プラグイン」としてAPI群を追加するもので、プラグインはスケジューラー内部にコンパイルされます。このAPI群により、スケジューリングの「コア」の軽量かつ保守しやすい状態に保ちながら、ほとんどのスケジューリングの機能をプラグインとして実装することができます。このフレームワークの設計に関する技術的な情報についてはこちらの[スケジューリングフレームワークの設計提案][kep]をご覧ください。
+
+[kep]: https://github.com/kubernetes/enhancements/blob/master/keps/sig-scheduling/624-scheduling-framework/README.md
+
+
+<!-- body -->
+
+# フレームワークのワークフロー
+
+スケジューリングフレームワークは、いくつかの拡張点を定義しています。スケジューラープラグインは、1つ以上の拡張点で呼び出されるように登録します。これらのプラグインの中には、スケジューリングの決定を変更できるものから、単に情報提供のみを行うだけのものなどがあります。
+
+この1つのPodをスケジュールしようとする各動作は**Scheduling Cycle**と**Binding Cycle**の2つのフェーズに分けられます。
+
+## Scheduling Cycle & Binding Cycle
+
+Scheduling CycleではPodが稼働するNodeを決定し、Binding Cycleではそれをクラスターに適用します。この2つのサイクルを合わせて「スケジューリングコンテキスト」と呼びます。
+
+Scheduling CycleではPodに対して1つ1つが順番に実行され、Binding Cyclesでは並列に実行されます。
+
+Podがスケジューリング不能と判断された場合や、内部エラーが発生した場合、Scheduling CycleまたはBinding Cycleを中断することができます。その際、Podはキューに戻され再試行されます。
+
+## 拡張点
+
+次の図はPodに対するスケジューリングコンテキストとスケジューリングフレームワークが公開する拡張点を示しています。この図では「Filter」がフィルタリングのための「Predicate」、「Scoring」がスコアリングのための「Priorities」機能に相当します。
+
+1つのプラグインを複数の拡張点に登録することで、より複雑なタスクやステートフルなタスクを実行することができます。
+
+{{< figure src="/images/docs/scheduling-framework-extensions.png" title="scheduling framework extension points" class="diagram-large">}}
+
+### QueueSort {#queue-sort}
+
+これらのプラグインはスケジューリングキュー内のPodをソートするために使用されます。このプラグインは、基本的に`Less(Pod1, Pod2)`という関数を提供します。また、このプラグインは、1つだけ有効化できます。
+
+### PreFilter {#pre-filter}
+
+これらのプラグインは、Podに関する情報を前処理したり、クラスターやPodが満たすべき特定の条件をチェックするために使用されます。もし、PreFilterプラグインのいずれかがエラーを返した場合、Scheduling Cycleは中断されます。
+
+### Filter
+
+FilterプラグインはPodを実行できないNodeを候補から除外します。各Nodeに対して、スケジューラーは設定された順番でFilterプラグインを呼び出します。もし、いずれかのFilterプラグインが途中でそのNodeを実行不可能とした場合、残りのプラグインではそのNodeは呼び出されません。Nodeは同時に評価されることがあります。
+
+### PostFilter {#post-filter}
+
+これらのプラグインはFilterフェーズで、Podに対して実行可能なNodeが見つからなかった場合にのみ呼び出されます。このプラグインは設定された順番で呼び出されます。もしいずれかのPostFilterプラグインが、あるNodeを「スケジュール可能(Schedulable)」と目星をつけた場合、残りのプラグインは呼び出されません。典型的なPostFilterの実装はプリエンプション方式で、他のPodを先取りして、Podをスケジューリングできるようにしようとします。
+
+### PreScore {#pre-score}
+
+これらのプラグインは、Scoreプラグインが使用する共有可能な状態を生成する「スコアリングの事前」作業を行うために使用されます。このプラグインがエラーを返した場合、Scheduling Cycleは中断されます。
+
+### Score {#scoring}
+
+これらのプラグインはフィルタリングのフェーズを通過したNodeをランク付けするために使用されます。スケジューラーはそれぞれのNodeに対して、それぞれのscoringプラグインを呼び出します。スコアの最小値と最大値の範囲が明確に定義されます。[NormalizeScore](#normalize-scoring)フェーズの後、スケジューラーは設定されたプラグインの重みに従って、全てのプラグインからNodeのスコアを足し合わせます。
+
+### NormalizeScore {#normalize-scoring}
+
+これらのプラグインはスケジューラーが最終的なNodeの順位を計算する前にスコアを修正するために使用されます。この拡張点に登録されたプラグインは、同じプラグインの[Score](#scoring)の結果を使用して呼び出されます。各プラグインはScheduling Cycle毎に、1回呼び出されます。
+
+
+例えば、`BlinkingLightScorer`というプラグインが、点滅する光の数に基づいてランク付けをするとします。
+
+```go
+func ScoreNode(_ *v1.pod, n *v1.Node) (int, error) {
+    return getBlinkingLightCount(n)
+}
+```
+
+ただし、`NodeScoreMax`に比べ、点滅をカウントした最大値の方が小さい場合があります。これを解決するために、`BlinkingLightScorer`も拡張点に登録する必要があります。
+
+```go
+func NormalizeScores(scores map[string]int) {
+    highest := 0
+    for _, score := range scores {
+        highest = max(highest, score)
+    }
+    for node, score := range scores {
+        scores[node] = score*NodeScoreMax/highest
+    }
+}
+```
+
+NormalizeScoreプラグインが途中でエラーを返した場合、Scheduling Cycleは中断されます。
+
+{{< note >}}
+「Reserveの事前」作業を行いたいプラグインは、NormalizeScore拡張点を使用してください。
+{{< /note >}}
+
+### Reserve {#reserve}
+
+Reserve拡張を実装したプラグインには、ReserveとUnreserve　という2つのメソッドがあり、それぞれ`Reserve`
+と`Unreserve`と呼ばれる2つの情報スケジューリングフェーズを返します。
+実行状態を保持するプラグイン（別名「ステートフルプラグイン」）は、これらのフェーズを使用して、Podに対してNodeのリソースが予約されたり予約解除された場合に、スケジューラーから通知を受け取ります。
+
+Reserveフェーズは、スケジューラーが実際にPodを指定されたNodeにバインドする前に発生します。このフェーズはスケジューラーがバインドが成功するのを待つ間にレースコンディションの発生を防ぐためにあります。
+各Reserveプラグインの`Reserve`メソッドは成功することも失敗することもあります。もしどこかの`Reserve`メソッドの呼び出しが失敗すると、後続のプラグインは実行されず、Reserveフェーズは失敗したものとみなされます。全てのプラグインの`Reserve`メソッドが成功した場合、Reserveフェーズは成功とみなされ、残りのScheduling CycleとBinding Cycleが実行されます。
+
+Unreserveフェーズは、Reserveフェーズまたは後続のフェーズが失敗した場合に、呼び出されます。この時、**全ての**Reserveプラグインの`Unreserve`メソッドが、`Reserve`メソッドの呼び出された逆の順序で実行されます。このフェーズは予約されたPodに関連する状態をクリーンアップするためにあります。
+
+{{< caution >}}
+`Unreserve`メソッドの実装は冪等性を持つべきであり、この処理で問題があった場合に失敗させてはなりません。
+{{< /caution >}}
+
+<!-- ### Permit -->
+### Permit
+
+_Permit_ プラグインは、各PodのScheduling Cycleの終了時に呼び出され、候補Nodeへのバインドを阻止もしくは遅延させるために使用されます。permitプラグインは次の3つのうちどれかを実行できます。
+
+1.  **承認(approve)** \
+    全てのPermitプラグインから承認(approve)されたPodは、バインド処理へ送られます。
+
+1.  **拒否(deny)** \
+    もしどれか1つのPermitプラグインがPodを拒否(deny)した場合、そのPodはスケジューリングキューに戻されます。
+    これは[Reserveプラグイン](#reserve)内のUnreserveフェーズで呼び出されます。
+
+1.  **待機(wait)** (タイムアウトあり) \
+    もしPermitプラグインが「待機(wait)」を返した場合、そのPodは内部の「待機中」Podリストに保持され、このPodに対するBinding Cycleは開始されるものの、承認(approve)されるまで直接ブロックされます。もしタイムアウトが発生した場合、この**待機(wait)**は**deny**へ変わり、対象のPodはスケジューリングキューに戻されると共に、[Reserveプラグイン](#reserve)のUnreserveフェーズが呼び出されます。
+
+{{< note >}}
+どのプラグインも「待機中」Podリストにアクセスして、それらを承認(approve)することができますが(参考:[`FrameworkHandle`](https://git.k8s.io/enhancements/keps/sig-scheduling/624-scheduling-framework#frameworkhandle))、その中の予約済みPodのバインドを承認(approve)できるのはPermitプラグインだけであると予想します。承認(approve)されたPodは、[PreBind](#pre-bind)フェーズへ送られます。
+{{< /note >}}
+
+### PreBind {#pre-bind}
+
+これらのプラグインは、Podがバインドされる前に必要な作業を行うために使用されます。例えば、Podの実行を許可する前に、ネットワークボリュームをプロビジョニングし、Podを実行予定のNodeにマウントすることができます。
+
+もし、いずれかのPreBindプラグインがエラーを返した場合、Podは[拒否](#reserve)され、スケジューリングキューに戻されます。
+
+### Bind
+
+これらのプラグインはPodをNodeにバインドするために使用されます。このプラグインは全てのPreBindプラグインの処理が完了するまで呼ばれません。それぞれのBindプラグインは設定された順序で呼び出されます。このプラグインは、与えられたPodを処理するかどうかを選択することができます。もしPodを処理することを選択した場合、**残りのBindプラグインは全てスキップされます。**
+
+### PostBind {#post-bind}
+
+これは単に情報提供のための拡張点です。Post-bindプラグインはPodのバインドが成功した後に呼び出されます。これはBinding Cycleの最後であり、関連するリソースのクリーンアップに使用されます。
+
+## プラグインAPI
+
+プラグインAPIには2つの段階があります。まず、プラグインを登録し設定することです。そして、拡張点インターフェースを使用することです。このインターフェースは次のような形式をとります。
+
+```go
+type Plugin interface {
+    Name() string
+}
+
+type QueueSortPlugin interface {
+    Plugin
+    Less(*v1.pod, *v1.pod) bool
+}
+
+type PreFilterPlugin interface {
+    Plugin
+    PreFilter(context.Context, *framework.CycleState, *v1.pod) error
+}
+
+// ...
+```
+
+## プラグインの設定
+
+スケジューラーの設定でプラグインを有効化・無効化することができます。Kubernetes v1.18以降を使用しているなら、ほとんどのスケジューリング[プラグイン](/docs/reference/scheduling/config/#scheduling-plugins)は使用されており、デフォルトで有効になっています。
+
+デフォルトのプラグインに加えて、独自のスケジューリングプラグインを実装し、デフォルトのプラグインと一緒に使用することも可能です。詳しくは[スケジューラープラグイン](https://github.com/kubernetes-sigs/scheduler-plugins)をご覧下さい。
+
+Kubernetes v1.18以降を使用しているなら、プラグインのセットをスケジューラープロファイルとして設定し、様々な種類のワークロードに適合するように複数のプロファイルを定義することが可能です。詳しくは[複数のプロファイル](/docs/reference/scheduling/config/#multiple-profiles)をご覧下さい。
diff --git a/content/ja/docs/concepts/scheduling-eviction/taint-and-toleration.md b/content/ja/docs/concepts/scheduling-eviction/taint-and-toleration.md
index e24b960924..6195519928 100644
--- a/content/ja/docs/concepts/scheduling-eviction/taint-and-toleration.md
+++ b/content/ja/docs/concepts/scheduling-eviction/taint-and-toleration.md
@@ -191,7 +191,7 @@ Kubernetesはユーザーまたはコントローラーが明示的に指定し
 自動的に設定されるtolerationは、taintに対応する問題がNodeで検知されても5分間はそのNodeにPodが残されることを意味します。
 {{< /note >}}
 
-[DaemonSet](/docs/concepts/workloads/controllers/daemonset/)のPodは次のtaintに対して`NoExecute`のtolerationが`tolerationSeconds`を指定せずに設定されます。
+[DaemonSet](/ja/docs/concepts/workloads/controllers/daemonset/)のPodは次のtaintに対して`NoExecute`のtolerationが`tolerationSeconds`を指定せずに設定されます。
 
   * `node.kubernetes.io/unreachable`
   * `node.kubernetes.io/not-ready`
diff --git a/content/ja/docs/concepts/security/controlling-access.md b/content/ja/docs/concepts/security/controlling-access.md
new file mode 100644
index 0000000000..914733d32c
--- /dev/null
+++ b/content/ja/docs/concepts/security/controlling-access.md
@@ -0,0 +1,170 @@
+---
+title: Kubernetes APIへのアクセスコントロール
+content_type: concept
+---
+
+<!-- overview -->
+このページではKubernetes APIへのアクセスコントロールの概要を説明します。
+
+
+<!-- body -->
+[Kubernetes API](/ja/docs/concepts/overview/kubernetes-api/)には`kubectl`やクライアントライブラリ、あるいはRESTリクエストを用いてアクセスします。
+APIアクセスには、人間のユーザーと[Kubernetesサービスアカウント](/docs/tasks/configure-pod-container/configure-service-account/)の両方が認証可能です。
+リクエストがAPIに到達すると、次の図のようにいくつかの段階を経ます。
+
+![Kubernetes APIリクエストの処理手順図](/images/docs/admin/access-control-overview.svg)
+
+## トランスポート層のセキュリティ {#transport-security}
+一般的なKubernetesクラスターでは、APIはTLSで保護された443番ポートで提供されます。
+APIサーバーは証明書を提示します。
+この証明書は、プライベート認証局(CA)を用いて署名することも、一般に認知されているCAと連携した公開鍵基盤に基づき署名することも可能です。
+
+クラスターがプライベート認証局を使用している場合、接続を信頼し、傍受されていないと確信できるように、クライアント上の`~/.kube/config`に設定されたそのCA証明書のコピーが必要です。
+
+クライアントは、この段階でTLSクライアント証明書を提示することができます。
+
+## 認証 {#authentication}
+TLSが確立されると、HTTPリクエストは認証のステップに移行します。
+これは図中のステップ**1**に該当します。
+クラスター作成スクリプトまたはクラスター管理者は、1つまたは複数のAuthenticatorモジュールを実行するようにAPIサーバーを設定します。
+Authenticatorについては、[認証](/ja/docs/reference/access-authn-authz/authentication/)で詳しく説明されています。
+
+認証ステップへの入力はHTTPリクエスト全体ですが、通常はヘッダとクライアント証明書の両方、またはどちらかを調べます。
+
+認証モジュールには、クライアント証明書、パスワード、プレーントークン、ブートストラップトークン、JSON Web Tokens(サービスアカウントに使用)などがあります。
+
+複数の認証モジュールを指定することができ、その場合、1つの認証モジュールが成功するまで、それぞれを順番に試行します。
+
+認証できない場合、HTTPステータスコード401で拒否されます。
+そうでなければ、ユーザーは特定の`username`として認証され、そのユーザー名は後続のステップでの判断に使用できるようになります。
+また、ユーザーのグループメンバーシップを提供する認証機関と、提供しない認証機関があります。
+
+Kubernetesはアクセスコントロールの決定やリクエストログにユーザー名を使用しますが、`User`オブジェクトを持たず、ユーザー名やその他のユーザーに関する情報をAPIはに保存しません。
+
+## 認可 {#authorization}
+
+リクエストが特定のユーザーからのものであると認証された後、そのリクエストは認可される必要があります。
+これは図のステップ**2**に該当します。
+
+リクエストには、リクエスト者のユーザー名、リクエストされたアクション、そのアクションによって影響を受けるオブジェクトを含める必要があります。
+既存のポリシーで、ユーザーが要求されたアクションを完了するための権限を持っていると宣言されている場合、リクエストは承認されます。
+
+例えば、Bobが以下のようなポリシーを持っている場合、彼は名前空間`projectCaribou`内のPodのみを読むことができます。
+
+```json
+{
+    "apiVersion": "abac.authorization.kubernetes.io/v1beta1",
+    "kind": "Policy",
+    "spec": {
+        "user": "bob",
+        "namespace": "projectCaribou",
+        "resource": "pods",
+        "readonly": true
+    }
+}
+```
+Bobが次のようなリクエストをした場合、Bobは名前空間`projectCaribou`のオブジェクトを読むことが許可されているので、このリクエストは認可されます。
+
+```json
+{
+  "apiVersion": "authorization.k8s.io/v1beta1",
+  "kind": "SubjectAccessReview",
+  "spec": {
+    "resourceAttributes": {
+      "namespace": "projectCaribou",
+      "verb": "get",
+      "group": "unicorn.example.org",
+      "resource": "pods"
+    }
+  }
+}
+```
+Bobが名前空間`projectCaribou`のオブジェクトに書き込み(`create`または`update`)のリクエストをした場合、承認は拒否されます。
+また、もしBobが`projectFish`のような別の名前空間にあるオブジェクトを読み込む(`get`)リクエストをした場合も、承認は拒否されます。
+
+Kubernetesの認可では、組織全体またはクラウドプロバイダー全体の既存のアクセスコントロールシステムと対話するために、共通のREST属性を使用する必要があります。
+これらのコントロールシステムは、Kubernetes API以外のAPIとやり取りする可能性があるため、REST形式を使用することが重要です。
+
+Kubernetesは、ABACモード、RBACモード、Webhookモードなど、複数の認可モジュールをサポートしています。
+管理者はクラスターを作成する際に、APIサーバーで使用する認証モジュールを設定します。
+複数の認可モジュールが設定されている場合、Kubernetesは各モジュールをチェックし、いずれかのモジュールがリクエストを認可した場合、リクエストを続行することができます。
+すべてのモジュールがリクエストを拒否した場合、リクエストは拒否されます(HTTPステータスコード403)。
+
+サポートされている認可モジュールを使用したポリシー作成の詳細を含む、Kubernetesの認可については、[認可](/docs/reference/access-authn-authz/authorization/)を参照してください。
+
+
+## アドミッションコントロール {#admission-control}
+アドミッションコントロールモジュールは、リクエストを変更したり拒否したりすることができるソフトウェアモジュールです。
+認可モジュールが利用できる属性に加えて、アドミッションコントロールモジュールは、作成または修正されるオブジェクトのコンテンツにアクセスすることができます。
+
+アドミッションコントローラーは、オブジェクトの作成、変更、削除、または接続(プロキシ)を行うリクエストに対して動作します。
+アドミッションコントローラーは、単にオブジェクトを読み取るだけのリクエストには動作しません。
+複数のアドミッションコントローラーが設定されている場合は、順番に呼び出されます。
+
+これは図中のステップ**3**に該当します。
+
+認証・認可モジュールとは異なり、いずれかのアドミッションコントローラーモジュールが拒否した場合、リクエストは即座に拒否されます。
+
+オブジェクトを拒否するだけでなく、アドミッションコントローラーは、フィールドに複雑なデフォルトを設定することもできます。
+
+利用可能なアドミッションコントロールモジュールは、[アドミッションコントローラー](/docs/reference/access-authn-authz/admission-controllers/)に記載されています。
+
+リクエストがすべてのアドミッションコントローラーを通過すると、対応するAPIオブジェクトの検証ルーチンを使って検証され、オブジェクトストアに書き込まれます(図のステップ**4**に該当します)。
+
+## 監査 {#auditing}
+
+Kubernetesの監査は、クラスター内の一連のアクションを文書化した、セキュリティに関連する時系列の記録を提供します。
+クラスターは、ユーザー、Kubernetes APIを使用するアプリケーション、およびコントロールプレーン自身によって生成されるアクティビティを監査します。
+
+詳しくは[監査](/ja/docs/tasks/debug-application-cluster/audit/)をご覧ください。
+
+## APIサーバーのIPとポート {#api-server-ports-and-ips}
+
+これまでの説明は、APIサーバーのセキュアポートに送信されるリクエストに適用されます(典型的なケース)。
+APIサーバーは、実際には2つのポートでサービスを提供することができます。
+
+
+デフォルトでは、Kubernetes APIサーバーは2つのポートでHTTPを提供します。
+
+  1. `localhost`ポート:
+
+      - テストとブートストラップ用で、マスターノードの他のコンポーネント(スケジューラー、コントローラーマネージャー)がAPIと通信するためのものです。
+      - TLSは使用しません。
+      - デフォルトポートは8080です。
+      - デフォルトのIPはlocalhostですが、`--insecure-bind-address`フラグで変更することができます。
+      - リクエストは認証と認可のモジュールを**バイパス**します。
+      - リクエストは、アドミッションコントロールモジュールによって処理されます。
+      - ホストにアクセスする必要があるため、保護されています。
+
+  2. “セキュアポート”:
+
+      - 可能な限りこちらを使用してください。
+      - TLSを使用します。証明書は`--tls-cert-file`フラグで、鍵は`--tls-private-key-file`フラグで設定します。
+      - デフォルトポートは6443です。`--secure-port`フラグで変更することができます。
+      - デフォルトのIPは、最初の非localhostのネットワークインターフェースです。`--bind-address`フラグで変更することができます。
+      - リクエストは、認証・認可モジュールによって処理されます。
+      - リクエストは、アドミッションコントロールモジュールによって処理されます。
+      - 認証・認可モジュールが実行されます。
+
+## {{% heading "whatsnext" %}}
+
+認証、認可、APIアクセスコントロールに関する詳しいドキュメントはこちらをご覧ください。
+
+- [認証](/ja/docs/reference/access-authn-authz/authentication/)
+   - [ブートストラップトークンでの認証](/docs/reference/access-authn-authz/bootstrap-tokens/)
+- [アドミッションコントローラー](/docs/reference/access-authn-authz/admission-controllers/)
+   - [動的アドミッションコントロール](/docs/reference/access-authn-authz/extensible-admission-controllers/)
+- [認可](/docs/reference/access-authn-authz/authorization/)
+   - [ロールに基づいたアクセスコントロール](/ja/docs/reference/access-authn-authz/rbac/)
+   - [属性に基づいたアクセスコントロール](/docs/reference/access-authn-authz/abac/)
+   - [Nodeの認可](/docs/reference/access-authn-authz/node/)
+   - [Webhookの認可](/docs/reference/access-authn-authz/webhook/)
+- [証明書の署名要求](/docs/reference/access-authn-authz/certificate-signing-requests/)
+   - [CSRの承認](/docs/reference/access-authn-authz/certificate-signing-requests/#approval-rejection)と[証明書の署名](/docs/reference/access-authn-authz/certificate-signing-requests/#signing)を含む
+- サービスアカウント
+  - [Developer guide](/docs/tasks/configure-pod-container/configure-service-account/)
+  - [Administration](/docs/reference/access-authn-authz/service-accounts-admin/)
+
+以下についても知ることができます。
+- PodがAPIクレデンシャルを取得するために[Secrets](/ja/docs/concepts/configuration/secret/#service-accounts-automatically-create-and-attach-secrets-with-api-credentials)を使用する方法について。
+
diff --git a/content/ja/docs/concepts/security/overview.md b/content/ja/docs/concepts/security/overview.md
index ca9505a6dd..f1bb1fed43 100644
--- a/content/ja/docs/concepts/security/overview.md
+++ b/content/ja/docs/concepts/security/overview.md
@@ -44,6 +44,7 @@ Amazon Web Services | https://aws.amazon.com/security/ |
 Google Cloud Platform | https://cloud.google.com/security/ |
 IBM Cloud | https://www.ibm.com/cloud/security |
 Microsoft Azure | https://docs.microsoft.com/en-us/azure/security/azure-security |
+Oracle Cloud Infrastructure | https://www.oracle.com/security/ |
 VMWare VSphere | https://www.vmware.com/security/hardening-guides.html |
 
 {{< /table >}}
@@ -124,7 +125,7 @@ TLS経由のアクセスのみ | コードがTCP通信を必要とする場合
 関連するKubernetesセキュリティについて学びます。
 
 * [Podセキュリティの標準](/ja/docs/concepts/security/pod-security-standards/)
-* [Podのネットワークポリシー]](/ja/docs/concepts/services-networking/network-policies/)
+* [Podのネットワークポリシー](/ja/docs/concepts/services-networking/network-policies/)
 * [Kubernetes APIへのアクセスを制御する](/docs/concepts/security/controlling-access)
 * [クラスターの保護](/docs/tasks/administer-cluster/securing-a-cluster/)
 * コントロールプレーンとの[通信時のデータ暗号化](/docs/tasks/tls/managing-tls-in-a-cluster/)
diff --git a/content/ja/docs/concepts/security/pod-security-admission.md b/content/ja/docs/concepts/security/pod-security-admission.md
new file mode 100644
index 0000000000..807ac69f88
--- /dev/null
+++ b/content/ja/docs/concepts/security/pod-security-admission.md
@@ -0,0 +1,134 @@
+---
+title: Podのセキュリティアドミッション
+content_type: concept
+weight: 20
+min-kubernetes-server-version: v1.22
+---
+
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
+
+Kubernetesの[Podセキュリティの標準](/ja/docs/concepts/security/pod-security-standards/)はPodに対して異なる分離レベルを定義します。
+これらの標準によって、Podの動作をどのように制限したいかを、明確かつ一貫した方法で定義することができます。
+
+ベータ版機能として、Kubernetesは[PodSecurityPolicy](/docs/concepts/policy/pod-security-policy/)の後継である組み込みの _Pod Security_ {{< glossary_tooltip text="アドミッションコントローラー" term_id="admission-controller" >}}を提供しています。
+Podセキュリティの制限は、Pod作成時に{{< glossary_tooltip text="名前空間" term_id="namespace" >}}レベルで適用されます。
+
+{{< note >}}
+PodSecurityPolicy APIは非推奨であり、v1.25でKubernetesから[削除](/docs/reference/using-api/deprecation-guide/#v1-25)される予定です。
+{{< /note >}}
+
+
+<!-- body -->
+
+## `PodSecurity`アドミッションプラグインの有効化 {#enabling-the-podsecurity-admission-plugin}
+v1.23において、`PodSecurity`の[フィーチャーゲート](/ja/docs/reference/command-line-tools-reference/feature-gates/)はベータ版の機能で、デフォルトで有効化されています。
+v1.22において、`PodSecurity`の[フィーチャーゲート](/ja/docs/reference/command-line-tools-reference/feature-gates/)はアルファ版の機能で、組み込みのアドミッションプラグインを使用するには、`kube-apiserver`で有効にする必要があります。
+
+```shell
+--feature-gates="...,PodSecurity=true"
+```
+
+## 代替案:`PodSecurity`アドミッションwebhookのインストール {#webhook}
+
+クラスターがv1.22より古い、あるいは`PodSecurity`機能を有効にできないなどの理由で、ビルトインの`PodSecurity`アドミッションプラグインが使えない環境では、`PodSecurity`はアドミッションロジックはベータ版の[validating admission webhook](https://git.k8s.io/pod-security-admission/webhook)としても提供されています。
+
+ビルド前のコンテナイメージ、証明書生成スクリプト、マニフェストの例は、[https://git.k8s.io/pod-security-admission/webhook](https://git.k8s.io/pod-security-admission/webhook)で入手可能です。
+
+
+インストール方法:
+```shell
+git clone git@github.com:kubernetes/pod-security-admission.git
+cd pod-security-admission/webhook
+make certs
+kubectl apply -k .
+```
+
+{{< note >}}
+生成された証明書の有効期限は2年間です。有効期限が切れる前に、証明書を再生成するか、内蔵のアドミッションプラグインを使用してWebhookを削除してください。
+{{< /note >}}
+
+## Podのセキュリティレベル {#pod-security-levels}
+
+Podのセキュリティアドミッションは、Podの[Security Context](/docs/tasks/configure-pod-container/security-context/)とその他の関連フィールドに、[Podセキュリティの標準](/ja/docs/concepts/security/pod-security-standards)で定義された3つのレベル、`privileged`、`baseline`、`restricted`に従って要件を設定するものです。
+これらの要件の詳細については、[Podセキュリティの標準](/ja/docs/concepts/security/pod-security-standards)のページを参照してください。
+
+## Podの名前空間に対するセキュリティアドミッションラベル {#pod-security-admission-labels-for-namespaces}
+
+この機能を有効にするか、Webhookをインストールすると、名前空間を設定して、各名前空間でPodセキュリティに使用したいadmission controlモードを定義できます。
+Kubernetesは、名前空間に使用したい定義済みのPodセキュリティの標準レベルのいずれかを適用するために設定できる{{< glossary_tooltip term_id="label" text="ラベル" >}}のセットを用意しています。
+選択したラベルは、以下のように違反の可能性が検出された場合に{{< glossary_tooltip text="コントロールプレーン" term_id="control-plane" >}}が取るアクションを定義します。
+
+{{< table caption="Podのセキュリティアドミッションのモード" >}}
+モード | 説明
+:---------|:------------
+**enforce** | ポリシーに違反した場合、Podは拒否されます。
+**audit** | ポリシー違反は、[監査ログ](/ja/docs/tasks/debug-application-cluster/audit/)に記録されるイベントに監査アノテーションを追加するトリガーとなりますが、それ以外は許可されます。
+**warn** | ポリシーに違反した場合は、ユーザーへの警告がトリガーされますが、それ以外は許可されます。
+{{< /table >}}
+
+名前空間は、任意のまたはすべてのモードを設定することができ、異なるモードに対して異なるレベルを設定することもできます。
+
+各モードには、使用するポリシーを決定する2つのラベルがあります。
+```yaml
+# モードごとのレベルラベルは、そのモードに適用するポリシーレベルを示す。
+#
+# MODEは`enforce`、`audit`、`warn`のいずれかでなければならない。
+# LEVELは`privileged`、`baseline`、`restricted`のいずれかでなければならない。
+pod-security.kubernetes.io/<MODE>: <LEVEL>
+
+# オプション: モードごとのバージョンラベルは、Kubernetesのマイナーバージョンに同梱される
+# バージョンにポリシーを固定するために使用できる（例えばv{{< skew latestVersion >}}など）。
+#
+# MODEは`enforce`、`audit`、`warn`のいずれかでなければならない。
+# VERSIONは有効なKubernetesのマイナーバージョンか`latest`でなければならない。
+pod-security.kubernetes.io/<MODE>-version: <VERSION>
+```
+
+[名前空間ラベルでのPodセキュリティの標準の適用](/docs/tasks/configure-pod-container/enforce-standards-namespace-labels)で使用例を確認できます。
+
+
+## WorkloadのリソースとPodテンプレート {#workload-resources-and-pod-templates}
+
+Podは、{{< glossary_tooltip term_id="deployment" >}}や{{< glossary_tooltip term_id="job">}}のような[ワークロードオブジェクト](/ja/docs/concepts/workloads/controllers/)を作成することによって、しばしば間接的に生成されます。
+ワークロードオブジェクトは_Pod template_を定義し、ワークロードリソースの{{< glossary_tooltip term_id="controller" text="コントローラー" >}}はそのテンプレートに基づきPodを作成します。
+違反の早期発見を支援するために、auditモードとwarningモードは、ワークロードリソースに適用されます。
+ただし、enforceモードはワークロードリソースには**適用されず**、結果としてのPodオブジェクトにのみ適用されます。
+
+## 適用除外(Exemption) {#exemptions}
+
+Podセキュリティの施行から _exemptions_ を定義することで、特定の名前空間に関連するポリシーのために禁止されていたPodの作成を許可することができます。
+Exemptionは[アドミッションコントローラーの設定](/docs/tasks/configure-pod-container/enforce-standards-admission-controller/#configure-the-admission-controller)で静的に設定することができます。
+
+Exemptionは明示的に列挙する必要があります。
+Exemptionを満たしたリクエストは、アドミッションコントローラーによって _無視_ されます(`enforce`、`audit`、`warn`のすべての動作がスキップされます)。Exemptionの次元は以下の通りです。
+
+- **Usernames:** 認証されていない(あるいは偽装された)ユーザー名を持つユーザーからの要求は無視されます。
+- **RuntimeClassNames:** Podと[ワークロードリソース](#workload-resources-and-pod-templates)で指定された除外ランタイムクラス名は、無視されます。
+- **Namespaces:** 除外された名前空間のPodと[ワークロードリソース](#workload-resources-and-pod-templates)は、無視されます。
+
+{{< caution >}}
+
+ほとんどのPodは、[ワークロードリソース](#workload-resources-and-pod-templates)に対応してコントローラーが作成します。つまり、エンドユーザーを適用除外にするのはPodを直接作成する場合のみで、ワークロードリソースを作成する場合は適用除外になりません。
+コントローラーサービスアカウント(`system:serviceaccount:kube-system:replicaset-controller`など)は通常、除外してはいけません。そうした場合、対応するワークロードリソースを作成できるすべてのユーザーを暗黙的に除外してしまうためです。
+
+{{< /caution >}}
+
+以下のPodフィールドに対する更新は、ポリシーチェックの対象外となります。つまり、Podの更新要求がこれらのフィールドを変更するだけであれば、Podが現在のポリシーレベルに違反していても拒否されることはありません。
+
+- すべてのメタデータの更新(seccompまたはAppArmorアノテーションへの変更を**除く**)
+  - `seccomp.security.alpha.kubernetes.io/pod`(非推奨)
+  - `container.seccomp.security.alpha.kubernetes.io/*`(非推奨)
+  - `container.apparmor.security.beta.kubernetes.io/*`
+- `.spec.activeDeadlineSeconds`に対する有効な更新
+- `.spec.tolerations`に対する有効な更新
+
+## {{% heading "whatsnext" %}}
+
+- [Podセキュリティの標準](/ja/docs/concepts/security/pod-security-standards)
+- [Podセキュリティの標準の適用](/docs/setup/best-practices/enforcing-pod-security-standards)
+- [ビルトインのアドミッションコントローラーの設定によるPodセキュリティの標準の適用](/docs/tasks/configure-pod-container/enforce-standards-admission-controller)
+- [名前空間ラベルでのPodセキュリティの標準の適用](/docs/tasks/configure-pod-container/enforce-standards-namespace-labels)
+- [PodSecurityPolicyからビルトインのPodSecurityアドミッションコントローラーへの移行](/docs/tasks/configure-pod-container/migrate-from-psp)
diff --git a/content/ja/docs/concepts/security/pod-security-standards.md b/content/ja/docs/concepts/security/pod-security-standards.md
index 7b0f16dff1..f55dc75ef5 100644
--- a/content/ja/docs/concepts/security/pod-security-standards.md
+++ b/content/ja/docs/concepts/security/pod-security-standards.md
@@ -49,6 +49,25 @@ _Pod Security Policy_ はクラスターレベルのリソースで、Pod定義
 			<td><strong>項目</strong></td>
 			<td><strong>ポリシー</strong></td>
 		</tr>
+    <tr>
+			<td>ホストのプロセス</td>
+			<td>
+        <p>Windows Podは、Windowsノードへの特権的なアクセスを可能にする<a href="/docs/tasks/configure-pod-container/create-hostprocess-pod">HostProcess</a>コンテナ</a>を実行する機能を提供します。ベースラインポリシーでは、ホストへの特権的なアクセスは禁止されています。HostProcess Podは、Kubernetes v1.22時点ではアルファ版の機能です。
+				ホストのネームスペースの共有は無効化すべきです。</p>
+				<p><strong>制限されるフィールド</strong></p>
+				<ul>
+					<li><code>spec.securityContext.windowsOptions.hostProcess</code></li>
+					<li><code>spec.containers[*].securityContext.windowsOptions.hostProcess</code></li>
+					<li><code>spec.initContainers[*].securityContext.windowsOptions.hostProcess</code></li>
+					<li><code>spec.ephemeralContainers[*].securityContext.windowsOptions.hostProcess</code></li>
+				</ul>
+				<p><strong>認められる値</strong></p>
+				<ul>
+					<li>Undefined/nil</li>
+					<li><code>false</code></li>
+				</ul>
+			</td>
+		</tr>
 		<tr>
 			<td>ホストのネームスペース</td>
 			<td>
@@ -57,7 +76,7 @@ _Pod Security Policy_ はクラスターレベルのリソースで、Pod定義
 				spec.hostNetwork<br>
 				spec.hostPID<br>
 				spec.hostIPC<br>
-				<br><b>認められる値:</b> false<br>
+				<br><b>認められる値:</b> false, Undefined/nil<br>
 			</td>
 		</tr>
 		<tr>
@@ -67,6 +86,7 @@ _Pod Security Policy_ はクラスターレベルのリソースで、Pod定義
 				<br><b>制限されるフィールド:</b><br>
 				spec.containers[*].securityContext.privileged<br>
 				spec.initContainers[*].securityContext.privileged<br>
+        spec.ephemeralContainers[*].securityContext.privileged<br>
 				<br><b>認められる値:</b> false, undefined/nil<br>
 			</td>
 		</tr>
@@ -77,7 +97,22 @@ _Pod Security Policy_ はクラスターレベルのリソースで、Pod定義
 				<br><b>制限されるフィールド:</b><br>
 				spec.containers[*].securityContext.capabilities.add<br>
 				spec.initContainers[*].securityContext.capabilities.add<br>
-				<br><b>認められる値:</b> 空 (または既知のリストに限定)<br>
+        spec.ephemeralContainers[*].securityContext.capabilities.add<br>
+				<br><b>認められる値:</b>
+					Undefined/nil<br>
+					AUDIT_WRITE<br>
+					CHOWN<br>
+					DAC_OVERRIDE<br>
+					FOWNER<br>
+					FSETID<br>
+					KILL<br>
+					MKNOD<br>
+					NET_BIND_SERVICE<br>
+					SETFCAP<br>
+					SETGID<br>
+					SETPCAP<br>
+					SETUID<br>
+					SYS_CHROOT<br>
 			</td>
 		</tr>
 		<tr>
@@ -96,16 +131,17 @@ _Pod Security Policy_ はクラスターレベルのリソースで、Pod定義
 				<br><b>制限されるフィールド:</b><br>
 				spec.containers[*].ports[*].hostPort<br>
 				spec.initContainers[*].ports[*].hostPort<br>
+        spec.ephemeralContainers[*].ports[*].hostPort<br>
 				<br><b>認められる値:</b> 0, undefined (または既知のリストに限定)<br>
 			</td>
 		</tr>
 		<tr>
-			<td>AppArmor <em>(任意)</em></td>
+			<td>AppArmor<em>(任意)</em></td>
 			<td>
 				サポートされるホストでは、AppArmorの'runtime/default'プロファイルがデフォルトで適用されます。デフォルトのポリシーはポリシーの上書きや無効化を防ぎ、許可されたポリシーのセットを上書きできないよう制限すべきです。<br>
 				<br><b>制限されるフィールド:</b><br>
 				metadata.annotations['container.apparmor.security.beta.kubernetes.io/*']<br>
-				<br><b>認められる値:</b> 'runtime/default', undefined<br>
+				<br><b>認められる値:</b> 'runtime/default', undefined, localhost/*<br>
 			</td>
 		</tr>
 		<tr>
@@ -116,7 +152,24 @@ _Pod Security Policy_ はクラスターレベルのリソースで、Pod定義
 				spec.securityContext.seLinuxOptions<br>
 				spec.containers[*].securityContext.seLinuxOptions<br>
 				spec.initContainers[*].securityContext.seLinuxOptions<br>
-				<br><b>認められる値:</b> undefined/nil<br>
+        spec.ephemeralContainers[*].securityContext.seLinuxOptions.type<br>
+				<br><b>認められる値:</b>undefined/nil<br>
+        Undefined/""<br>
+        container_t<br>
+        container_init_t<br>
+        container_kvm_t<br>
+        <hr />
+        <br><b>制限されるフィールド:</b><br>
+        spec.securityContext.seLinuxOptions.user<br>
+        spec.containers[*].securityContext.seLinuxOptions.user<br>
+        spec.initContainers[*].securityContext.seLinuxOptions.user<br>
+        spec.ephemeralContainers[*].securityContext.seLinuxOptions.user<br>
+        spec.securityContext.seLinuxOptions.role<br>
+        spec.containers[*].securityContext.seLinuxOptions.role<br>
+        spec.initContainers[*].securityContext.seLinuxOptions.role<br>
+        spec.ephemeralContainers[*].securityContext.seLinuxOptions.role<br>
+        <br><b>認められる値:</b>undefined/nil<br>
+        Undefined/""        
 			</td>
 		</tr>
 		<tr>
@@ -126,9 +179,29 @@ _Pod Security Policy_ はクラスターレベルのリソースで、Pod定義
 				<br><b>制限されるフィールド:</b><br>
 				spec.containers[*].securityContext.procMount<br>
 				spec.initContainers[*].securityContext.procMount<br>
-				<br><b>認められる値:</b> undefined/nil, 'Default'<br>
+        spec.ephemeralContainers[*].securityContext.procMount<br>
+				<br><b>認められる値:</b>undefined/nil, 'Default'<br>
 			</td>
 		</tr>
+    <tr>
+      <td>Seccomp</td>
+  			<td>
+          <p>Seccompプロファイルを明示的に<code>Unconfined</code>に設定することはできません。</p>
+  				<p><strong>Restricted Fields</strong></p>
+				<ul>
+					<li><code>spec.securityContext.seccompProfile.type</code></li>
+					<li><code>spec.containers[*].securityContext.seccompProfile.type</code></li>
+					<li><code>spec.initContainers[*].securityContext.seccompProfile.type</code></li>
+					<li><code>spec.ephemeralContainers[*].securityContext.seccompProfile.type</code></li>
+				</ul>
+				<p><strong>Allowed Values</strong></p>
+				<ul>
+					<li>Undefined/nil</li>
+					<li><code>RuntimeDefault</code></li>
+					<li><code>Localhost</code></li>
+				</ul>
+  			</td>
+    </tr>
 		<tr>
 			<td>Sysctl</td>
 			<td>
@@ -169,27 +242,27 @@ _Pod Security Policy_ はクラスターレベルのリソースで、Pod定義
 			<td>
 				HostPathボリュームの制限に加え、制限プロファイルではコアでない種類のボリュームの利用をPersistentVolumeにより定義されたものに限定します。<br>
 				<br><b>制限されるフィールド:</b><br>
-				spec.volumes[*].hostPath<br>
-				spec.volumes[*].gcePersistentDisk<br>
-				spec.volumes[*].awsElasticBlockStore<br>
-				spec.volumes[*].gitRepo<br>
-				spec.volumes[*].nfs<br>
-				spec.volumes[*].iscsi<br>
-				spec.volumes[*].glusterfs<br>
-				spec.volumes[*].rbd<br>
-				spec.volumes[*].flexVolume<br>
-				spec.volumes[*].cinder<br>
-				spec.volumes[*].cephFS<br>
-				spec.volumes[*].flocker<br>
-				spec.volumes[*].fc<br>
-				spec.volumes[*].azureFile<br>
-				spec.volumes[*].vsphereVolume<br>
-				spec.volumes[*].quobyte<br>
-				spec.volumes[*].azureDisk<br>
-				spec.volumes[*].portworxVolume<br>
-				spec.volumes[*].scaleIO<br>
-				spec.volumes[*].storageos<br>
-				spec.volumes[*].csi<br>
+				  spec.volumes[*].hostPath<br>
+          spec.volumes[*].gcePersistentDisk<br>
+          spec.volumes[*].awsElasticBlockStore<br>
+          spec.volumes[*].gitRepo<br>
+          spec.volumes[*].nfs<br>
+          spec.volumes[*].iscsi<br>
+          spec.volumes[*].glusterfs<br>
+          spec.volumes[*].rbd<br>
+          spec.volumes[*].flexVolume<br>
+          spec.volumes[*].cinder<br>
+          spec.volumes[*].cephfs<br>
+          spec.volumes[*].flocker<br>
+          spec.volumes[*].fc<br>
+          spec.volumes[*].azureFile<br>
+          spec.volumes[*].vsphereVolume<br>
+          spec.volumes[*].quobyte<br>
+          spec.volumes[*].azureDisk<br>
+          spec.volumes[*].portworxVolume<br>
+          spec.volumes[*].scaleIO<br>
+          spec.volumes[*].storageos<br>
+          spec.volumes[*].photonPersistentDisk<br>
 				<br><b>認められる値:</b> undefined/nil<br>
 			</td>
 		</tr>
@@ -200,6 +273,7 @@ _Pod Security Policy_ はクラスターレベルのリソースで、Pod定義
 				<br><b>制限されるフィールド:</b><br>
 				spec.containers[*].securityContext.allowPrivilegeEscalation<br>
 				spec.initContainers[*].securityContext.allowPrivilegeEscalation<br>
+        spec.ephemeralContainers[*].securityContext.allowPrivilegeEscalation<br>
 				<br><b>認められる値:</b> false<br>
 			</td>
 		</tr>
@@ -211,6 +285,7 @@ _Pod Security Policy_ はクラスターレベルのリソースで、Pod定義
 				spec.securityContext.runAsNonRoot<br>
 				spec.containers[*].securityContext.runAsNonRoot<br>
 				spec.initContainers[*].securityContext.runAsNonRoot<br>
+        spec.ephemeralContainers[*].securityContext.runAsNonRoot<br>
 				<br><b>認められる値:</b> true<br>
 			</td>
 		</tr>
@@ -242,6 +317,36 @@ _Pod Security Policy_ はクラスターレベルのリソースで、Pod定義
 				undefined / nil<br>
 			</td>
 		</tr>
+    <tr>
+			<td style="white-space: nowrap">Capabilities (v1.22+)</td>
+			<td>
+				<p>
+					コンテナはすべてのケイパビリティを削除する必要があり、<code>NET_BIND_SERVICE</code>ケイパビリティを追加することだけが許可されています。
+				</p>
+				<p><strong>Restricted Fields</strong></p>
+				<ul>
+					<li><code>spec.containers[*].securityContext.capabilities.drop</code></li>
+					<li><code>spec.initContainers[*].securityContext.capabilities.drop</code></li>
+					<li><code>spec.ephemeralContainers[*].securityContext.capabilities.drop</code></li>
+				</ul>
+				<p><strong>Allowed Values</strong></p>
+				<ul>
+					<li>Any list of capabilities that includes <code>ALL</code></li>
+				</ul>
+				<hr />
+				<p><strong>Restricted Fields</strong></p>
+				<ul>
+					<li><code>spec.containers[*].securityContext.capabilities.add</code></li>
+					<li><code>spec.initContainers[*].securityContext.capabilities.add</code></li>
+					<li><code>spec.ephemeralContainers[*].securityContext.capabilities.add</code></li>
+				</ul>
+				<p><strong>Allowed Values</strong></p>
+				<ul>
+					<li>Undefined/nil</li>
+					<li><code>NET_BIND_SERVICE</code></li>
+				</ul>
+			</td>
+		</tr>
 	</tbody>
 </table>
 
@@ -281,9 +386,17 @@ Gatekeeper](https://github.com/open-policy-agent/gatekeeper)があります。
 ### WindowsのPodにはどのプロファイルを適用すればよいですか?
 
 Kubernetesでは、Linuxベースのワークロードと比べてWindowsの使用は制限や差異があります。
-特に、PodのSecurityContextフィールドは[Windows環境では効果がありません](/docs/setup/production-environment/windows/intro-windows-in-kubernetes/#v1-podsecuritycontext)。
+特に、PodのSecurityContextフィールドは[Windows環境では効果がありません](/ja/docs/setup/production-environment/windows/intro-windows-in-kubernetes/#v1-podsecuritycontext)。
 したがって、現段階では標準化されたセキュリティポリシーは存在しません。
 
+Windows Podに制限付きプロファイルを適用すると、実行時にPodに影響が出る場合があります。
+制限付きプロファイルでは、Linux固有の制限(seccompプロファイルや特権昇格の不許可など)を適用する必要があります。
+kubeletおよび/またはそのコンテナランタイムがこれらのLinux固有の値を無視した場合、Windows Podは制限付きプロファイル内で正常に動作します。
+ただし、強制力がないため、Windows コンテナを使用するPodについては、ベースラインプロファイルと比較して追加の制限はありません。
+
+HostProcess Podを作成するためのHostProcessフラグの使用は、特権的なポリシーに沿ってのみ行われるべきです。
+Windows HostProcess Podの作成は、ベースラインおよび制限されたポリシーの下でブロックされているため、いかなるHostProcess Podも特権的であるとみなされるべきです。
+
 ### サンドボックス化されたPodはどのように扱えばよいでしょうか?
 
 現在のところ、Podがサンドボックス化されていると見なされるかどうかを制御できるAPI標準はありません。
diff --git a/content/ja/docs/concepts/services-networking/connect-applications-service.md b/content/ja/docs/concepts/services-networking/connect-applications-service.md
index 423b114096..86d7cd1b21 100644
--- a/content/ja/docs/concepts/services-networking/connect-applications-service.md
+++ b/content/ja/docs/concepts/services-networking/connect-applications-service.md
@@ -62,7 +62,7 @@ kubectl get pods -l run=my-nginx -o yaml | grep podIP
 つまり、同じcontainerPortを使用して同じノードで複数のnginx Podを実行し、IPを使用してクラスター内の他のPodやノードからそれらにアクセスできます。
 Dockerと同様に、ポートは引き続きホストノードのインターフェイスに公開できますが、ネットワークモデルにより、この必要性は根本的に減少します。
 
-興味があれば、これを[どのように達成するか](/docs/concepts/cluster-administration/networking/#how-to-achieve-this)について詳しく読むことができます。
+興味があれば、これを[どのように達成するか](/ja/docs/concepts/cluster-administration/networking/#how-to-achieve-this)について詳しく読むことができます。
 
 ## Serviceを作成する
 
@@ -139,7 +139,7 @@ Service IPは完全に仮想的なもので、ホスト側のネットワーク
 ## Serviceにアクセスする
 
 Kubernetesは、環境変数とDNSの2つの主要なService検索モードをサポートしています。
-前者はそのまま使用でき、後者は[CoreDNSクラスタアドオン](https://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/dns/coredns)を必要とします。
+前者はそのまま使用でき、後者は[CoreDNSクラスタアドオン](https://releases.k8s.io/{{< param "fullversion" >}}/cluster/addons/dns/coredns)を必要とします。
 {{< note >}}
 サービス環境変数が望ましくない場合(予想されるプログラム変数と衝突する可能性がある、処理する変数が多すぎる、DNSのみを使用するなど)、[Pod仕様](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#pod-v1-core)で`enableServiceLinks`フラグを`false`に設定することでこのモードを無効にできます。
 {{< /note >}}
@@ -203,7 +203,7 @@ NAME       TYPE        CLUSTER-IP   EXTERNAL-IP   PORT(S)         AGE
 kube-dns   ClusterIP   10.0.0.10    <none>        53/UDP,53/TCP   8m
 ```
 
-このセクションの残りの部分は、寿命の長いIP(my-nginx)を持つServiceと、そのIPに名前を割り当てたDNSサーバーがあることを前提にしています。ここではCoreDNSクラスターアドオン(アプリケーション名: `kube-dns`)を使用しているため、標準的なメソッド(`gethostbyname()`など) を使用してクラスター内の任意のPodからServiceに通信できます。CoreDNSが起動していない場合、[CoreDNS README](https://github.com/coredns/deployment/tree/master/kubernetes)または[Installing CoreDNS](/docs/tasks/administer-cluster/coredns/#installing-coredns)を参照し、有効にする事ができます。curlアプリケーションを実行して、これをテストしてみましょう。
+このセクションの残りの部分は、寿命の長いIP(my-nginx)を持つServiceと、そのIPに名前を割り当てたDNSサーバーがあることを前提にしています。ここではCoreDNSクラスターアドオン(アプリケーション名: `kube-dns`)を使用しているため、標準的なメソッド(`gethostbyname()`など) を使用してクラスター内の任意のPodからServiceに通信できます。CoreDNSが起動していない場合、[CoreDNS README](https://github.com/coredns/deployment/tree/master/kubernetes)または[Installing CoreDNS](/ja/docs/tasks/administer-cluster/coredns/#installing-coredns)を参照し、有効にする事ができます。curlアプリケーションを実行して、これをテストしてみましょう。
 
 ```shell
 kubectl run curl --image=radial/busyboxplus:curl -i --tty
@@ -232,9 +232,9 @@ Address 1: 10.0.162.149
 
 * https用の自己署名証明書(既にID証明書を持っている場合を除く)
 * 証明書を使用するように構成されたnginxサーバー
-* Podが証明書にアクセスできるようにする[Secret](/docs/concepts/configuration/secret/)
+* Podが証明書にアクセスできるようにする[Secret](/ja/docs/concepts/configuration/secret/)
 
-これらはすべて[nginx httpsの例](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/https-nginx/)から取得できます。
+これらはすべて[nginx httpsの例](https://github.com/kubernetes/examples/tree/master/staging/https-nginx/)から取得できます。
 これにはツールをインストールする必要があります。
 これらをインストールしたくない場合は、後で手動の手順に従ってください。つまり:
 
@@ -309,7 +309,7 @@ nginxsecret           kubernetes.io/tls                     2         1m
 nginx-secure-appマニフェストに関する注目すべき点:
 
 - 同じファイルにDeploymentとServiceの両方が含まれています。
-- [nginxサーバー](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/https-nginx/default.conf)はポート80のHTTPトラフィックと443のHTTPSトラフィックを処理し、nginx Serviceは両方のポートを公開します。
+- [nginxサーバー](https://github.com/kubernetes/examples/tree/master/staging/https-nginx/default.conf)はポート80のHTTPトラフィックと443のHTTPSトラフィックを処理し、nginx Serviceは両方のポートを公開します。
 - 各コンテナは`/etc/nginx/ssl`にマウントされたボリュームを介してキーにアクセスできます。
   これは、nginxサーバーが起動する*前に*セットアップされます。
 
diff --git a/content/ja/docs/concepts/services-networking/dual-stack.md b/content/ja/docs/concepts/services-networking/dual-stack.md
index 3bad029501..2365680691 100644
--- a/content/ja/docs/concepts/services-networking/dual-stack.md
+++ b/content/ja/docs/concepts/services-networking/dual-stack.md
@@ -98,4 +98,4 @@ IPv6が有効になった外部ロードバランサーをサポートしてい
 
 ## {{% heading "whatsnext" %}}
 
-* [IPv4/IPv6デュアルスタックのネットワークを検証する](/docs/tasks/network/validate-dual-stack)
+* [IPv4/IPv6デュアルスタックのネットワークを検証する](/ja/docs/tasks/network/validate-dual-stack)
diff --git a/content/ja/docs/concepts/services-networking/endpoint-slices.md b/content/ja/docs/concepts/services-networking/endpoint-slices.md
index b9d60eb6b3..6d0e13d8ee 100644
--- a/content/ja/docs/concepts/services-networking/endpoint-slices.md
+++ b/content/ja/docs/concepts/services-networking/endpoint-slices.md
@@ -127,6 +127,6 @@ EndpointSliceを使用する実装では、エンドポイントを複数のス
 
 ## {{% heading "whatsnext" %}}
 
-* [EndpointSliceの有効化](/docs/tasks/administer-cluster/enabling-endpointslices)について学ぶ
+* [EndpointSliceの有効化](/ja/docs/tasks/administer-cluster/enabling-endpointslices)について学ぶ
 * [サービスとアプリケーションの接続](/ja/docs/concepts/services-networking/connect-applications-service/)を読む
 
diff --git a/content/ja/docs/concepts/services-networking/ingress.md b/content/ja/docs/concepts/services-networking/ingress.md
index 97d18640b8..be1b51ad84 100644
--- a/content/ja/docs/concepts/services-networking/ingress.md
+++ b/content/ja/docs/concepts/services-networking/ingress.md
@@ -18,7 +18,7 @@ weight: 40
 * ノード: Kubernetes内のワーカーマシンで、クラスターの一部です。
 * クラスター: Kubernetesによって管理されているコンテナ化されたアプリケーションを実行させるノードの集合です。この例や、多くのKubernetesによるデプロイでは、クラスター内のノードはインターネットに公開されていません。
 * エッジルーター: クラスターでファイアウォールのポリシーを強制するルーターです。クラウドプロバイダーが管理するゲートウェイや、物理的なハードウェアの一部である場合もあります。
-* クラスターネットワーク: 物理的または論理的な繋がりの集合で、Kubernetesの[ネットワークモデル](/docs/concepts/cluster-administration/networking/)によって、クラスター内でのコミュニケーションを司るものです。
+* クラスターネットワーク: 物理的または論理的な繋がりの集合で、Kubernetesの[ネットワークモデル](/ja/docs/concepts/cluster-administration/networking/)によって、クラスター内でのコミュニケーションを司るものです。
 * Service: {{< glossary_tooltip text="ラベル" term_id="label" >}}セレクターを使ったPodの集合を特定するKubernetes {{< glossary_tooltip term_id="service" >}}です。特に指定がない限り、Serviceはクラスターネットワーク内でのみ疎通可能な仮想IPを持つものとして扱われます。
 
 ## Ingressとは何か
@@ -66,7 +66,7 @@ Ingressリソースの最小構成の例は以下のとおりです。
 
 {{< codenew file="service/networking/minimal-ingress.yaml" >}}
 
-他の全てのKubernetesリソースと同様に、Ingressには`apiVersion`、`kind`や`metadata`フィールドが必要です。Ingressオブジェクトの名前は、有効な[DNSサブドメイン名](/ja/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)である必要があります。設定ファイルに関する一般的な情報は、[アプリケーションのデプロイ](/ja/docs/tasks/run-application/run-stateless-application-deployment/)、[コンテナの設定](/docs/tasks/configure-pod-container/configure-pod-configmap/)、[リソースの管理](/docs/concepts/cluster-administration/manage-deployment/)を参照してください。Ingressでは、Ingressコントローラーに依存しているいくつかのオプションの設定をするためにアノテーションを一般的に使用します。例としては、[rewrite-targetアノテーション](https://github.com/kubernetes/ingress-nginx/blob/master/docs/examples/rewrite/README.md)などがあります。[Ingressコントローラー](/ja/docs/concepts/services-networking/ingress-controllers)の種類が異なれば、サポートするアノテーションも異なります。サポートされているアノテーションについて学ぶためには、使用するIngressコントローラーのドキュメントを確認してください。
+他の全てのKubernetesリソースと同様に、Ingressには`apiVersion`、`kind`や`metadata`フィールドが必要です。Ingressオブジェクトの名前は、有効な[DNSサブドメイン名](/ja/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)である必要があります。設定ファイルに関する一般的な情報は、[アプリケーションのデプロイ](/ja/docs/tasks/run-application/run-stateless-application-deployment/)、[コンテナの設定](/ja/docs/tasks/configure-pod-container/configure-pod-configmap/)、[リソースの管理](/ja/docs/concepts/cluster-administration/manage-deployment/)を参照してください。Ingressでは、Ingressコントローラーに依存しているいくつかのオプションの設定をするためにアノテーションを一般的に使用します。例としては、[rewrite-targetアノテーション](https://github.com/kubernetes/ingress-nginx/blob/master/docs/examples/rewrite/README.md)などがあります。[Ingressコントローラー](/ja/docs/concepts/services-networking/ingress-controllers)の種類が異なれば、サポートするアノテーションも異なります。サポートされているアノテーションについて学ぶためには、使用するIngressコントローラーのドキュメントを確認してください。
 
 Ingress [Spec](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status)は、ロードバランサーやプロキシーサーバーを設定するために必要な全ての情報を持っています。最も重要なものとして、外部からくる全てのリクエストに対して一致したルールのリストを含みます。IngressリソースはHTTP(S)トラフィックに対してのルールのみサポートしています。
 
@@ -346,7 +346,7 @@ IngressでこのSecretを参照すると、クライアントとロードバラ
 
 Ingressコントローラーは、負荷分散アルゴリズムやバックエンドの重みスキームなど、すべてのIngressに適用されるいくつかの負荷分散ポリシーの設定とともにブートストラップされます。発展した負荷分散のコンセプト(例: セッションの永続化、動的重み付けなど)はIngressによってサポートされていません。代わりに、それらの機能はService用のロードバランサーを介して利用できます。
 
-Ingressによってヘルスチェックの機能が直接に公開されていない場合でも、Kubernetesにおいて、同等の機能を提供する[Readiness Probe](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/)のようなコンセプトが存在することは注目に値します。コントローラーがどのようにヘルスチェックを行うかについては、コントローラーのドキュメントを参照してください(例えば[nginx](https://git.k8s.io/ingress-nginx/README.md)、または[GCE](https://git.k8s.io/ingress-gce/README.md#health-checks))。
+Ingressによってヘルスチェックの機能が直接に公開されていない場合でも、Kubernetesにおいて、同等の機能を提供する[Readiness Probe](/ja/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/)のようなコンセプトが存在することは注目に値します。コントローラーがどのようにヘルスチェックを行うかについては、コントローラーのドキュメントを参照してください(例えば[nginx](https://git.k8s.io/ingress-nginx/README.md)、または[GCE](https://git.k8s.io/ingress-gce/README.md#health-checks))。
 
 ## Ingressの更新
 
@@ -451,4 +451,4 @@ Ingressリソースを直接含まない複数の方法でサービスを公開
 ## {{% heading "whatsnext" %}}
 * [Ingress API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#ingress-v1beta1-networking-k8s-io)について学ぶ
 * [Ingressコントローラー](/ja/docs/concepts/services-networking/ingress-controllers/)について学ぶ
-* [MinikubeとNGINXコントローラーでIngressのセットアップを行う](/docs/tasks/access-application-cluster/ingress-minikube/)
+* [MinikubeとNGINXコントローラーでIngressのセットアップを行う](/ja/docs/tasks/access-application-cluster/ingress-minikube/)
diff --git a/content/ja/docs/concepts/services-networking/service-topology.md b/content/ja/docs/concepts/services-networking/service-topology.md
index 6af79ca7b3..1df3ad8b1e 100644
--- a/content/ja/docs/concepts/services-networking/service-topology.md
+++ b/content/ja/docs/concepts/services-networking/service-topology.md
@@ -139,6 +139,6 @@ spec:
 
 ## {{% heading "whatsnext" %}}
 
-* [Serviceトポトジーを有効にする](/docs/tasks/administer-cluster/enabling-service-topology)を読む。
+* [Serviceトポトジーを有効にする](/ja/docs/tasks/administer-cluster/enabling-service-topology)を読む。
 * [サービスとアプリケーションの接続](/ja/docs/concepts/services-networking/connect-applications-service/)を読む。
 
diff --git a/content/ja/docs/concepts/services-networking/service-traffic-policy.md b/content/ja/docs/concepts/services-networking/service-traffic-policy.md
new file mode 100644
index 0000000000..741c38c12a
--- /dev/null
+++ b/content/ja/docs/concepts/services-networking/service-traffic-policy.md
@@ -0,0 +1,57 @@
+---
+title: サービス内部トラフィックポリシー
+content_type: concept
+weight: 45
+---
+
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+
+*サービス内部トラフィックポリシー*を使用すると、内部トラフィック制限により、トラフィックが発信されたノード内のエンドポイントにのみ内部トラフィックをルーティングできます。
+ここでの「内部」トラフィックとは、現在のクラスターのPodから発信されたトラフィックを指します。これは、コストを削減し、パフォーマンスを向上させるのに役立ちます。
+
+<!-- body -->
+
+## ServiceInternalTrafficPolicyの使用
+
+`ServiceInternalTrafficPolicy` [フィーチャーゲート](/ja/docs/reference/command-line-tools-reference/feature-gates/)を有効にすると、`.spec.internalTrafficPolicy`を`Local`に設定して、{{< glossary_tooltip text="Service" term_id="service" >}}内部のみのトラフィックポリシーを有効にすることができます。
+これにより、kube-proxyは、クラスター内部トラフィックにノードローカルエンドポイントのみを使用するようになります。
+
+{{< note >}}
+特定のServiceのエンドポイントがないノード上のPodの場合、Serviceに他のノードのエンドポイントがある場合でも、Serviceは(このノード上のポッドの)エンドポイントがゼロであるかのように動作します。
+{{< /note >}}
+
+次の例は、`.spec.internalTrafficPolicy`を`Local`に設定した場合のServiceの様子を示しています：
+
+```yaml
+apiVersion: v1
+kind: Service
+metadata:
+  name: my-service
+spec:
+  selector:
+    app: MyApp
+  ports:
+    - protocol: TCP
+      port: 80
+      targetPort: 9376
+  internalTrafficPolicy: Local
+```
+
+## 使い方
+
+kube-proxyは、`spec.internalTrafficPolicy`の設定に基づいて、ルーティング先のエンドポイントをフィルタリングします。
+`spec.internalTrafficPolicy`が`Local`であれば、ノードのローカルエンドポイントにのみルーティングできるようにします。`Cluster`または未設定であればすべてのエンドポイントにルーティングできるようにします。
+`ServiceInternalTrafficPolicy`[フィーチャーゲート](/ja/docs/reference/command-line-tools-reference/feature-gates/)が有効な場合、`spec.internalTrafficPolicy`のデフォルトは`Cluster`です。
+
+## 制約
+
+* Serviceで`externalTrafficPolicy`が`Local`に設定されている場合、サービス内部トラフィックポリシーは使用されません。同じServiceだけではなく、同じクラスター内の異なるServiceで両方の機能を使用することができます。
+
+## {{% heading "whatsnext" %}}
+
+* [Topology Aware Hints](/docs/concepts/services-networking/topology-aware-hints)を読む
+* [Service External Traffic Policy](/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip)を読む
+* [サービスとアプリケーションの接続](/ja/docs/concepts/services-networking/connect-applications-service/)を読む
diff --git a/content/ja/docs/concepts/services-networking/service.md b/content/ja/docs/concepts/services-networking/service.md
index f7273d45f1..7506c3b4b6 100644
--- a/content/ja/docs/concepts/services-networking/service.md
+++ b/content/ja/docs/concepts/services-networking/service.md
@@ -280,7 +280,7 @@ Kubernetesは、Serviceオブジェクトを見つけ出すために2つの主
 
 PodがNode上で稼働するとき、kubeletはアクティブな各Serviceに対して、環境変数のセットを追加します。
 これは[Docker links互換性](https://docs.docker.com/userguide/dockerlinks/)のある変数(
-[makeLinkVariables関数](https://releases.k8s.io/{{< param "githubbranch" >}}/pkg/kubelet/envvars/envvars.go#L72)を確認してください)や、より簡単な`{SVCNAME}_SERVICE_HOST`や、`{SVCNAME}_SERVICE_PORT`変数をサポートします。この変数名で使われるService名は大文字に変換され、`-`は`_`に変換されます。
+[makeLinkVariables関数](https://releases.k8s.io/{{< param "fullversion" >}}/pkg/kubelet/envvars/envvars.go#L72)を確認してください)や、より簡単な`{SVCNAME}_SERVICE_HOST`や、`{SVCNAME}_SERVICE_PORT`変数をサポートします。この変数名で使われるService名は大文字に変換され、`-`は`_`に変換されます。
 
 例えば、TCPポート6379番を公開していて、さらにclusterIPが10.0.0.11に割り当てられている`redis-master`というServiceは、下記のような環境変数を生成します。
 
@@ -303,7 +303,7 @@ ServiceのclusterIPを発見するためにDNSのみを使う場合、このよ
 
 ### DNS
 
-ユーザーは[アドオン](/docs/concepts/cluster-administration/addons/)を使ってKubernetesクラスターにDNS Serviceをセットアップできます(常にセットアップすべきです)。
+ユーザーは[アドオン](/ja/docs/concepts/cluster-administration/addons/)を使ってKubernetesクラスターにDNS Serviceをセットアップできます(常にセットアップすべきです)。
 
 CoreDNSなどのクラスター対応のDNSサーバーは新しいServiceや、各Service用のDNSレコードのセットのためにKubernetes APIを常に監視します。
 もしクラスターを通してDNSが有効になっている場合、全てのPodはDNS名によって自動的にServiceに対する名前解決をするようにできるはずです。
diff --git a/content/ja/docs/concepts/services-networking/topology-aware-hints.md b/content/ja/docs/concepts/services-networking/topology-aware-hints.md
new file mode 100644
index 0000000000..ed26561f40
--- /dev/null
+++ b/content/ja/docs/concepts/services-networking/topology-aware-hints.md
@@ -0,0 +1,101 @@
+---
+title: トポロジーを意識したヒント
+content_type: concept
+weight: 45
+---
+
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
+
+*Topology Aware Hint*は、クライアントがendpointをどのように使用するかについての提案を含めることにより、トポロジーを考慮したルーティングを可能にします。このアプローチでは、EndpointSliceおよび/またはEndpointオブジェクトの消費者が、これらのネットワークエンドポイントへのトラフィックを、それが発生した場所の近くにルーティングできるように、メタデータを追加します。
+
+たとえば、局所的にトラフィックをルーティングすることで、コストを削減したり、ネットワークパフォーマンスを向上させたりできます。
+
+<!-- body -->
+
+## 動機
+
+Kubernetesクラスターは、マルチゾーン環境で展開されることが多くなっています。
+*Topology Aware Hint*は、トラフィックを発信元のゾーン内に留めておくのに役立つメカニズムを提供します。このコンセプトは、一般に「Topology Aware Routing」と呼ばれています。EndpointSliceコントローラーは{{< glossary_tooltip term_id="Service" >}}のendpointを計算する際に、各endpointのトポロジー(リージョンとゾーン)を考慮し、ゾーンに割り当てるためのヒントフィールドに値を入力します。
+EndpointSliceコントローラーは、各endpointのトポロジー(リージョンとゾーン)を考慮し、ゾーンに割り当てるためのヒントフィールドに入力します。
+{{< glossary_tooltip term_id="kube-proxy" text="kube-proxy" >}}のようなクラスターコンポーネントは、次にこれらのヒントを消費し、それらを使用してトラフィックがルーティングされる方法に影響を与えることが可能です(トポロジー的に近いendpointを優先します)。
+
+
+## Topology Aware Hintを使う
+
+`service.kubernetes.io/topology-aware-hints`アノテーションを`auto`に設定すると、サービスに対してTopology Aware Hintを有効にすることができます。これはEndpointSliceコントローラーが安全と判断した場合に、トポロジーヒントを設定するように指示します。
+重要なのは、これはヒントが常に設定されることを保証するものではないことです。
+
+## 使い方 {#implementation}
+
+この機能を有効にする機能は、EndpointSliceコントローラーとkube-proxyの2つのコンポーネントに分かれています。このセクションでは、各コンポーネントがこの機能をどのように実装しているか、高レベルの概要を説明します。
+
+### EndpointSliceコントローラー {#implementation-control-plane}
+
+この機能が有効な場合、EndpointSliceコントローラーはEndpointSliceにヒントを設定する役割を担います。
+コントローラーは、各ゾーンに比例した量のendpointを割り当てます。
+この割合は、そのゾーンで実行されているノードの[割り当て可能な](/ja/docs/task/administer-cluster/reserve-compute-resources/#node-allocatable)CPUコアを基に決定されます。
+
+たとえば、あるゾーンに2つのCPUコアがあり、別のゾーンに1つのCPUコアしかない場合、コントローラーは2つのCPUコアを持つゾーンに2倍のendpointを割り当てます。
+
+次の例は、ヒントが入力されたときのEndpointSliceの様子を示しています。
+
+```yaml
+apiVersion: discovery.k8s.io/v1
+kind: EndpointSlice
+metadata:
+  name: example-hints
+  labels:
+    kubernetes.io/service-name: example-svc
+addressType: IPv4
+ports:
+  - name: http
+    protocol: TCP
+    port: 80
+endpoints:
+  - addresses:
+      - "10.1.2.3"
+    conditions:
+      ready: true
+    hostname: pod-1
+    zone: zone-a
+    hints:
+      forZones:
+        - name: "zone-a"
+```
+
+### kube-proxy {#implementation-kube-proxy}
+
+kube-proxyは、EndpointSliceコントローラーによって設定されたヒントに基づいて、ルーティング先のendpointをフィルター処理します。ほとんどの場合、これはkube-proxyが同じゾーン内のendpointにトラフィックをルーティングできることを意味します。コントローラーが別のゾーンからendpointを割り当てて、ゾーン間でendpointがより均等に分散されるようにする場合があります。これにより、一部のトラフィックが他のゾーンにルーティングされます。
+
+## セーフガード
+
+各ノードのKubernetesコントロールプレーンとkube-proxyは、Topology Aware Hintを使用する前に、いくつかのセーフガードルールを適用します。これらがチェックアウトされない場合、kube-proxyは、ゾーンに関係なく、クラスター内のどこからでもendpointを選択します。
+
+1. **endpointの数が不十分です:** クラスター内のゾーンよりもendpointが少ない場合、コントローラーはヒントを割り当てません。
+
+2. **バランスの取れた割り当てを実現できません:** 場合によっては、ゾーン間でendpointのバランスの取れた割り当てを実現できないことがあります。たとえば、ゾーンaがゾーンbの2倍の大きさであるが、endpointが2つしかない場合、ゾーンaに割り当てられたendpointはゾーンbの2倍のトラフィックを受信する可能性があります。この「予想される過負荷」値が各ゾーンの許容しきい値を下回ることができない場合、コントローラーはヒントを割り当てません。重要なことに、これはリアルタイムのフィードバックに基づいていません。それでも、個々のendpointが過負荷になる可能性があります。
+
+3. **1つ以上のノードの情報が不十分です:** ノードに`topology.kubernetes.io/zone`ラベルがないか、割り当て可能なCPUの値を報告していない場合、コントロールプレーンはtopology-aware endpoint hintsを設定しないため、kube-proxyはendpointをゾーンでフィルタリングしません。
+
+4. **1つ以上のendpointにゾーンヒントが存在しません:** これが発生すると、kube-proxyはTopology Aware Hintから、またはTopology Aware Hintへの移行が進行中であると見なします。この状態のサービスに対してendpointをフィルタリングすることは危険であるため、kube-proxyはすべてのendpointを使用するようにフォールバックします。
+
+5. **ゾーンはヒントで表されません:** kube-proxyが、実行中のゾーンをターゲットとするヒントを持つendpointを1つも見つけることができない場合、すべてのゾーンのendpointを使用することになります。これは既存のクラスターに新しいゾーンを追加するときに発生する可能性が最も高くなります。
+
+## 制約事項
+
+* Serviceで`externalTrafficPolicy`または`internalTrafficPolicy`が`Local`に設定されている場合、Topology Aware Hintは使用されません。同じServiceではなく、異なるServiceの同じクラスターで両方の機能を使用することができます。
+
+* このアプローチは、ゾーンのサブセットから発信されるトラフィックの割合が高いサービスではうまく機能しません。代わりに、これは着信トラフィックが各ゾーンのノードの容量にほぼ比例することを前提としています。
+
+* EndpointSliceコントローラーは、各ゾーンの比率を計算するときに、準備ができていないノードを無視します。ノードの大部分の準備ができていない場合、これは意図しない結果をもたらす可能性があります。
+
+* EndpointSliceコントローラーは、各ゾーンの比率を計算するデプロイ時に{{< glossary_tooltip text="toleration" term_id="toleration" >}}を考慮しません。サービスをバックアップするPodがクラスター内のノードのサブセットに制限されている場合、これは考慮されません。
+
+* これはオートスケーリングと相性が悪いかもしれません。例えば、多くのトラフィックが1つのゾーンから発信されている場合、そのゾーンに割り当てられたendpointのみがそのトラフィックを処理することになります。その結果、{{< glossary_tooltip text="Horizontal Pod Autoscaler" term_id="horizontal-pod-autoscaler" >}}がこのイベントを拾えなくなったり、新しく追加されたPodが別のゾーンで開始されたりする可能性があります。
+
+## {{% heading "whatsnext" %}}
+
+* [サービスとアプリケーションの接続](/ja/docs/concepts/services-networking/connect-applications-service/)を読む。
diff --git a/content/ja/docs/concepts/storage/persistent-volumes.md b/content/ja/docs/concepts/storage/persistent-volumes.md
index b22ed7d8eb..4176d3fe57 100644
--- a/content/ja/docs/concepts/storage/persistent-volumes.md
+++ b/content/ja/docs/concepts/storage/persistent-volumes.md
@@ -124,7 +124,7 @@ Events:            <none>
 1. ストレージアセットに関連するのデータを手動で適切にクリーンアップします。
 1. 関連するストレージアセットを手動で削除するか、同じストレージアセットを再利用したい場合、新しいストレージアセット定義と共にPersistentVolumeを作成します。
 
-#### 削除
+#### 削除 {#delete}
 
 `Delete`再クレームポリシーをサポートするボリュームプラグインの場合、削除するとPersistentVolumeオブジェクトがKubernetesから削除されるだけでなく、AWS EBS、GCE PD、Azure Disk、Cinderボリュームなどの外部インフラストラクチャーの関連ストレージアセットも削除されます。動的にプロビジョニングされたボリュームは、[StorageClassの再クレームポリシー](#reclaim-policy)を継承します。これはデフォルトで削除です。管理者は、ユーザーの需要に応じてStorageClassを構成する必要があります。そうでない場合、PVは作成後に編集またはパッチを適用する必要があります。[PersistentVolumeの再クレームポリシーの変更](/docs/tasks/administer-cluster/change-pv-reclaim-policy/)を参照してください。
 
@@ -376,9 +376,19 @@ PersistentVolumeは、リソースプロバイダーがサポートする方法
 
 アクセスモードは次の通りです。
 
-* ReadWriteOnce –ボリュームは単一のNodeで読み取り/書き込みとしてマウントできます
-* ReadOnlyMany –ボリュームは多数のNodeで読み取り専用としてマウントできます
-* ReadWriteMany –ボリュームは多数のNodeで読み取り/書き込みとしてマウントできます
+`ReadWriteOnce`
+: ボリュームは単一のNodeで読み取り/書き込みとしてマウントできます
+
+`ReadOnlyMany`
+: ボリュームは多数のNodeで読み取り専用としてマウントできます
+
+`ReadWriteMany`
+: ボリュームは多数のNodeで読み取り/書き込みとしてマウントできます
+
+`ReadWriteOncePod`
+: ボリュームは、単一のPodで読み取り/書き込みとしてマウントできます。クラスタ全体で1つのPodのみがそのPVCの読み取りまたは書き込みを行えるようにする場合は、ReadWriteOncePodアクセスモードを使用します。これは、CSIボリュームとKubernetesバージョン1.22以降でのみサポートされます。
+
+これについてはブログ[Introducing Single Pod Access Mode for PersistentVolumes](/blog/2021/09/13/read-write-once-pod-access-mode-alpha/)に詳細が記載されています。
 
 CLIではアクセスモードは次のように略されます。
 
diff --git a/content/ja/docs/concepts/storage/projected-volumes.md b/content/ja/docs/concepts/storage/projected-volumes.md
new file mode 100644
index 0000000000..5bb0a7be11
--- /dev/null
+++ b/content/ja/docs/concepts/storage/projected-volumes.md
@@ -0,0 +1,91 @@
+---
+title: 投影ボリューム
+content_type: concept
+weight: 21 # just after persistent volumes
+---
+
+<!-- overview -->
+
+このドキュメントでは、Kubernetesの*投影ボリューム*について説明します。[ボリューム](/docs/concepts/storage/volumes/)に精通していることをお勧めします。
+
+<!-- body -->
+
+## 概要
+
+ボリュームは、いくつかの既存の`投影`ボリュームソースを同じディレクトリにマップします。
+
+現在、次のタイプのボリュームソースを投影できます。
+
+* [`secret`](/docs/concepts/storage/volumes/#secret)
+* [`downwardAPI`](/docs/concepts/storage/volumes/#downwardapi)
+* [`configMap`](/docs/concepts/storage/volumes/#configmap)
+* `serviceAccountToken`
+
+すべてのソースは、Podと同じnamespaceにある必要があります。詳細は[all-in-one volume](https://github.com/kubernetes/design-proposals-archive/blob/main/node/all-in-one-volume.md)デザインドキュメントを参照してください。
+
+### secret、downwardAPI、およびconfigMapを使用した構成例 {#example-configuration-secret-downwardapi-configmap}
+
+{{< codenew file="pods/storage/projected-secret-downwardapi-configmap.yaml" >}}
+
+### 構成例:デフォルト以外のアクセス許可モードが設定されたsecret {#example-configuration-secrets-nondefault-permission-mode}
+
+{{< codenew file="pods/storage/projected-secrets-nondefault-permission-mode.yaml" >}}
+
+各投影ボリュームソースは、specの`sources`にリストされています。パラメーターは、2つの例外を除いてほぼ同じです。
+
+* secretについて、ConfigMapの命名と一致するように`secretName`フィールドが`name`に変更されました。
+* `defaultMode`はprojectedレベルでのみ指定でき、各ボリュームソースには指定できません。ただし上に示したように、個々の投影ごとに`mode`を明示的に設定できます。
+
+`TokenRequestProjection`機能が有効になっている場合、現在の[サービスアカウントトークン](/ja/docs/reference/access-authn-authz/authentication/#service-account-token)を指定されたパスのPodに挿入できます。例えば:
+
+{{< codenew file="pods/storage/projected-service-account-token.yaml" >}}
+
+この例のPodには、挿入されたサービスアカウントトークンを含む投影ボリュームがあります。このトークンはPodのコンテナがKubernetes APIサーバーにアクセスするために使用できます。この`audience`フィールドにはトークンの受信対象者が含まれています。トークンの受信者は、トークンの`audience`フィールドで指定された識別子で自分自身であるかを識別します。そうでない場合はトークンを拒否します。このフィールドはオプションで、デフォルトではAPIサーバーの識別子が指定されます。
+
+`expirationSeconds`はサービスアカウントトークンが有効であると予想される期間です。
+デフォルトは1時間で、最低でも10分(600秒)でなければなりません。
+管理者は、APIサーバーに`--service-account-max-token-expiration`オプションを指定することで、その最大値を制限することも可能です。
+`path`フィールドは、投影ボリュームのマウントポイントへの相対パスを指定します。
+
+
+{{< note >}}
+投影ボリュームソースを[`subPath`](/docs/concepts/storage/volumes/#using-subpath)ボリュームマウントとして使用しているコンテナは、それらのボリュームソースの更新を受信しません。
+{{< /note >}}
+
+## SecurityContextの相互作用
+
+サービスアカウントの投影ボリューム拡張でのファイル権限処理の[提案](https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/2451-service-account-token-volumes#proposal)により、正しい所有者権限が設定された投影ファイルが導入されました。
+
+### Linux
+
+投影ボリュームがあり、Podの[`SecurityContext`](/docs/reference/kubernetes-api/workload-resources/pod-v1/#security-context)に`RunAsUser`が設定されているLinux Podでは、投影されたファイルには、コンテナユーザーの所有権を含む正しい所有権が設定されます。
+
+### Windows
+
+投影ボリュームを持ち、Podの`SecurityContext`で`RunAsUsername`を設定したWindows Podでは、Windowsのユーザーアカウント管理方法により所有権が強制されません。
+Windowsは、ローカルユーザーとグループアカウントをセキュリティアカウントマネージャー(SAM)と呼ばれるデータベースファイルに保存し、管理します。
+各コンテナはSAMデータベースの独自のインスタンスを維持し、コンテナの実行中はホストはそのインスタンスを見ることができません。
+Windowsコンテナは、OSのユーザーモード部分をホストから分離して実行するように設計されており、そのため仮想SAMデータベースを維持することになります。
+そのため、ホスト上で動作するkubeletには、仮想化されたコンテナアカウントのホストファイル所有権を動的に設定する機能がありません。
+ホストマシン上のファイルをコンテナと共有する場合は、`C:\`以外の独自のボリュームマウントに配置することをお勧めします。
+
+デフォルトでは、投影ボリュームファイルの例に示されているように、投影されたファイルには次の所有権があります。
+```powershell
+PS C:\> Get-Acl C:\var\run\secrets\kubernetes.io\serviceaccount\..2021_08_31_22_22_18.318230061\ca.crt | Format-List
+
+Path   : Microsoft.PowerShell.Core\FileSystem::C:\var\run\secrets\kubernetes.io\serviceaccount\..2021_08_31_22_22_18.318230061\ca.crt
+Owner  : BUILTIN\Administrators
+Group  : NT AUTHORITY\SYSTEM
+Access : NT AUTHORITY\SYSTEM Allow  FullControl
+         BUILTIN\Administrators Allow  FullControl
+         BUILTIN\Users Allow  ReadAndExecute, Synchronize
+Audit  :
+Sddl   : O:BAG:SYD:AI(A;ID;FA;;;SY)(A;ID;FA;;;BA)(A;ID;0x1200a9;;;BU)
+```
+これは、`ContainerAdministrator`のようなすべての管理者ユーザーが読み取り、書き込み、および実行アクセス権を持ち、非管理者ユーザーが読み取りおよび実行アクセス権を持つことを意味します。
+
+{{< note >}}
+一般に、コンテナにホストへのアクセスを許可することは、潜在的なセキュリティの悪用への扉を開く可能性があるため、お勧めできません。
+
+Windows Podの`SecurityContext`に`RunAsUser`を指定して作成すると、Podは`ContainerCreating`で永久に固まります。したがって、Windows PodでLinux専用の`RunAsUser`オプションを使用しないことをお勧めします。
+{{< /note >}}
diff --git a/content/ja/docs/concepts/storage/volumes.md b/content/ja/docs/concepts/storage/volumes.md
new file mode 100644
index 0000000000..50acb26968
--- /dev/null
+++ b/content/ja/docs/concepts/storage/volumes.md
@@ -0,0 +1,1132 @@
+---
+title: ボリューム
+content_type: concept
+weight: 10
+---
+
+<!-- overview -->
+
+コンテナ内のディスク上のファイルは一時的なものであり、コンテナ内で実行する場合、重要なアプリケーションでいくつかの問題が発生します。1つの問題は、コンテナがクラッシュしたときにファイルが失われることです。kubeletはコンテナを再起動しますが、クリーンな状態です。
+2番目の問題は、`Pod`で一緒に実行されているコンテナ間でファイルを共有するときに発生します。
+Kubernetes{{< glossary_tooltip text="ボリューム" term_id="volume" >}}の抽象化は、これらの問題の両方を解決します。
+[Pod](/ja/docs/concepts/workloads/pods/)に精通していることをお勧めします。
+
+<!-- body -->
+
+## 背景
+
+Dockerには[ボリューム](https://docs.docker.com/storage/)の概念がありますが、多少緩く、管理も不十分です。Dockerボリュームは、ディスク上または別のコンテナ内のディレクトリです。Dockerはボリュームドライバーを提供しますが、機能は多少制限されています。
+
+Kubernetesは多くの種類のボリュームをサポートしています。
+{{< glossary_tooltip term_id="pod" text="Pod" >}}は任意の数のボリュームタイプを同時に使用できます。
+エフェメラルボリュームタイプにはPodの存続期間がありますが、永続ボリュームはPodの存続期間を超えて存在します。
+Podが存在しなくなると、Kubernetesはエフェメラルボリュームを破棄します。ただしKubernetesは永続ボリュームを破棄しません。
+特定のPod内のあらゆる種類のボリュームについて、データはコンテナの再起動後も保持されます。
+
+コアとなるボリュームはディレクトリであり、Pod内のコンテナからアクセスできるデータが含まれている可能性があります。
+ディレクトリがどのように作成されるか、それをバックアップするメディア、およびそのコンテンツは、使用する特定のボリュームタイプによって決まります。
+
+ボリュームを使用するには、`.spec.volumes`でPodに提供するボリュームを指定し、`.spec.containers[*].volumeMounts`でそれらのボリュームをコンテナにマウントする場所を宣言します。
+コンテナ内のプロセスは{{< glossary_tooltip text="コンテナイメージ" term_id="image" >}}の初期コンテンツと、コンテナ内にマウントされたボリューム(定義されている場合)で構成されるファイルシステムビューを確認します。
+プロセスは、コンテナイメージのコンテンツと最初に一致するルートファイルシステムを確認します。
+そのファイルシステム階層内への書き込みは、もし許可されている場合、後続のファイルシステムアクセスを実行するときにそのプロセスが表示する内容に影響します。
+ボリュームはイメージ内の[指定されたパス](#using-subpath)へマウントされます。
+Pod内で定義されたコンテナごとに、コンテナが使用する各ボリュームをマウントする場所を個別に指定する必要があります。
+
+
+ボリュームは他のボリューム内にマウントできません(ただし、関連するメカニズムについては、[subPathの使用](#using-subpath)を参照してください)。
+またボリュームには、別のボリューム内の何かへのハードリンクを含めることはできません。
+
+## ボリュームの種類 {#volume-types}
+
+Kubernetesはいくつかのタイプのボリュームをサポートしています。
+
+### awsElasticBlockStore {#awselasticblockstore}
+
+`awsElasticBlockStore`ボリュームは、Amazon Web Services(AWS)[EBSボリューム](https://aws.amazon.com/ebs/)をPodにマウントします。
+Podを削除すると消去される`emptyDir`とは異なり、EBSボリュームのコンテンツは保持されたままボリュームはアンマウントされます。
+これは、EBSボリュームにデータを事前入力でき、データをPod間で共有できることを意味します。
+
+{{< note >}}
+使用する前に、`aws ec2 create-volume`またはAWSAPIを使用してEBSボリュームを作成する必要があります。
+{{< /note >}}
+
+`awsElasticBlockStore`ボリュームを使用する場合、いくつかの制限があります。
+
+* Podが実行されているノードはAWS EC2インスタンスである必要があります
+* これらのインスタンスは、EBSボリュームと同じリージョンおよびアベイラビリティーゾーンにある必要があります
+* EBSは、ボリュームをマウントする単一のEC2インスタンスのみをサポートします
+
+#### AWS EBSボリュームの作成
+
+PodでEBSボリュームを使用する前に作成する必要があります。
+
+```shell
+aws ec2 create-volume --availability-zone=eu-west-1a --size=10 --volume-type=gp2
+```
+
+ゾーンがクラスターを立ち上げたゾーンと一致していることを確認してください。サイズとEBSボリュームタイプが使用に適していることを確認してください。
+
+#### AWS EBS設定例
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-ebs
+spec:
+  containers:
+  - image: k8s.gcr.io/test-webserver
+    name: test-container
+    volumeMounts:
+    - mountPath: /test-ebs
+      name: test-volume
+  volumes:
+  - name: test-volume
+    # This AWS EBS volume must already exist.
+    awsElasticBlockStore:
+      volumeID: "<volume id>"
+      fsType: ext4
+```
+
+EBSボリュームがパーティション化されている場合は、オプションのフィールド`partition: "<partition number>"`を指定して、マウントするパーティションを指定できます。
+
+#### AWS EBS CSIの移行
+
+{{< feature-state for_k8s_version="v1.17" state="beta" >}}
+
+`awsElasticBlockStore`の`CSIMigration`機能を有効にすると、すべてのプラグイン操作が既存のツリー内プラグインから`ebs.csi.aws.com`Container Storage Interface(CSI)ドライバーにリダイレクトされます。
+この機能を使用するには、[AWS EBS CSIドライバー](https://github.com/kubernetes-sigs/aws-ebs-csi-driver)がクラスターにインストールされ、`CSIMigration`と`CSIMigrationAWS`のbeta機能が有効になっている必要があります。
+
+#### AWS EBS CSIの移行の完了
+
+{{< feature-state for_k8s_version="v1.17" state="alpha" >}}
+
+`awsElasticBlockStore`ストレージプラグインがコントローラーマネージャーとkubeletによって読み込まれないようにするには、`InTreePluginAWSUnregister`フラグを`true`に設定します。
+
+### azureDisk {#azuredisk}
+
+`azureDisk`ボリュームタイプは、MicrosoftAzure[データディスク](https://docs.microsoft.com/en-us/azure/aks/csi-storage-drivers)をPodにマウントします。
+
+詳細については、[`azureDisk`ボリュームプラグイン](https://github.com/kubernetes/examples/tree/master/staging/volumes/azure_disk/README.md)を参照してください。
+
+#### azureDisk CSIの移行
+
+{{< feature-state for_k8s_version="v1.19" state="beta" >}}
+
+`azureDisk`の`CSIMigration`機能を有効にすると、すべてのプラグイン操作が既存のツリー内プラグインから`disk.csi.azure.com`Container Storage Interface(CSI)ドライバーにリダイレクトされます。
+この機能を利用するには、クラスターに[Azure Disk CSI Driver](https://github.com/kubernetes-sigs/azuredisk-csi-driver)をインストールし、`CSIMigration`および`CSIMigrationAzureDisk`機能を有効化する必要があります。
+
+### azureFile {#azurefile}
+
+`azureFile`ボリュームタイプは、Microsoft Azureファイルボリューム(SMB 2.1および3.0)をPodにマウントします。
+
+詳細については[`azureFile` volume plugin](https://github.com/kubernetes/examples/tree/master/staging/volumes/azure_file/README.md)を参照してください。
+
+#### azureFile CSIの移行
+
+{{< feature-state for_k8s_version="v1.21" state="beta" >}}
+
+`zureFile`の`CSIMigration`機能を有効にすると、既存のツリー内プラグインから`file.csi.azure.com`Container Storage Interface(CSI)Driverへすべてのプラグイン操作がリダイレクトされます。
+この機能を利用するには、クラスターに[Azure File CSI Driver](https://github.com/kubernetes-sigs/azurefile-csi-driver)をインストールし、`CSIMigration`および`CSIMigrationAzureFile`[フィーチャーゲート](/ja/docs/reference/command-line-tools-reference/feature-gates/)を有効化する必要があります。
+
+Azure File CSIドライバーは、異なるfsgroupで同じボリュームを使用することをサポートしていません。AzurefileCSIの移行が有効になっている場合、異なるfsgroupで同じボリュームを使用することはまったくサポートされません。
+
+### cephfs
+
+`cephfs`ボリュームを使用すると、既存のCephFSボリュームをPodにマウントすることができます。
+Podを取り外すと消去される`emptyDir`とは異なり、`cephfs`ボリュームは内容を保持したまま単にアンマウントされるだけです。
+つまり`cephfs`ボリュームにあらかじめデータを入れておき、そのデータをPod間で共有することができます。
+`cephfs`ボリュームは複数の書き込み元によって同時にマウントすることができます。
+
+
+{{< note >}}
+事前に共有をエクスポートした状態で、自分のCephサーバーを起動しておく必要があります。
+{{< /note >}}
+
+詳細については[CephFSの例](https://github.com/kubernetes/examples/tree/master/volumes/cephfs/)を参照してください。
+
+### cinder
+
+{{< note >}}
+KubernetesはOpenStackクラウドプロバイダーで構成する必要があります。
+{{< /note >}}
+
+`cinder`ボリュームタイプは、PodにOpenStackのCinderのボリュームをマウントするために使用されます。
+
+#### Cinderボリュームの設定例
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-cinder
+spec:
+  containers:
+  - image: k8s.gcr.io/test-webserver
+    name: test-cinder-container
+    volumeMounts:
+    - mountPath: /test-cinder
+      name: test-volume
+  volumes:
+  - name: test-volume
+    # This OpenStack volume must already exist.
+    cinder:
+      volumeID: "<volume id>"
+      fsType: ext4
+```
+
+#### OpenStack CSIの移行
+
+{{< feature-state for_k8s_version="v1.21" state="beta" >}}
+
+Cinderの`CSIMigration`機能は、Kubernetes1.21ではデフォルトで有効になっています。
+既存のツリー内プラグインからのすべてのプラグイン操作を`cinder.csi.openstack.org`Container Storage Interface(CSI) Driverへリダイレクトします。
+[OpenStack Cinder CSIドライバー](https://github.com/kubernetes/cloud-provider-openstack/blob/master/docs/cinder-csi-plugin/using-cinder-csi-plugin.md)をクラスターにインストールする必要があります。
+`CSIMigrationOpenStack`[フィーチャーゲート](/ja/docs/reference/command-line-tools-reference/feature-gates/)を`false`に設定すると、クラスターのCinder CSIマイグレーションを無効化することができます。
+`CSIMigrationOpenStack`機能を無効にすると、ツリー内のCinderボリュームプラグインがCinderボリュームのストレージ管理のすべての側面に責任を持つようになります。
+
+### configMap
+
+[ConfigMap](/ja/docs/tasks/configure-pod-container/configure-pod-configmap/)は構成データをPodに挿入する方法を提供します。
+ConfigMapに格納されたデータは、タイプ`configMap`のボリュームで参照され、Podで実行されているコンテナ化されたアプリケーションによって使用されます。
+
+ConfigMapを参照するときは、ボリューム内のConfigMapの名前を指定します。
+ConfigMapの特定のエントリに使用するパスをカスタマイズできます。
+次の設定は、`log-config` ConfigMapを`configmap-pod`というPodにマウントする方法を示しています。
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: configmap-pod
+spec:
+  containers:
+    - name: test
+      image: busybox
+      volumeMounts:
+        - name: config-vol
+          mountPath: /etc/config
+  volumes:
+    - name: config-vol
+      configMap:
+        name: log-config
+        items:
+          - key: log_level
+            path: log_level
+```
+
+`log-config`ConfigMapはボリュームとしてマウントされ、その`log_level`エントリに格納されているすべてのコンテンツは、パス`/etc/config/log_level`のPodにマウントされます。
+このパスはボリュームの`mountPath`と`log_level`をキーとする`path`から派生することに注意してください。
+
+
+{{< note >}}
+* 使用する前に[ConfigMap](/ja/docs/tasks/configure-pod-container/configure-pod-configmap/)を作成する必要があります。
+
+* [`subPath`](#using-subpath)ボリュームマウントとしてConfigMapを使用するコンテナはConfigMapの更新を受信しません。
+
+* テキストデータはUTF-8文字エンコードを使用してファイルとして公開されます。その他の文字エンコードには`binaryData`を使用します。
+{{< /note >}}
+
+### downwardAPI {#downwardapi}
+
+`downwardAPI`ボリュームは、アプリケーションへのdownward APIデータを利用できるようになります。ディレクトリをマウントし、要求されたデータをプレーンテキストファイルに書き込みます。
+
+{{< note >}}
+[`subPath`](#using-subpath)ボリュームマウントとしてdownward APIを使用するコンテナは、downward APIの更新を受け取りません。
+{{< /note >}}
+
+詳細については[downward API example](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/)を参照してください。
+
+### emptyDir {#emptydir}
+
+`emptyDir`ボリュームはPodがノードに割り当てられたときに最初に作成され、そのPodがそのノードで実行されている限り存在します。
+名前が示すように`emptyDir`ボリュームは最初は空です。
+Pod内のすべてのコンテナは`emptyDir`ボリューム内の同じファイルを読み書きできますが、そのボリュームは各コンテナで同じパスまたは異なるパスにマウントされることがあります。
+何らかの理由でPodがノードから削除されると、`emptyDir`内のデータは永久に削除されます。
+
+{{< note >}}
+コンテナがクラッシュしても、ノードからPodが削除されることは*ありません*。`emptyDir`ボリューム内のデータは、コンテナのクラッシュしても安全です。
+
+{{< /note >}}
+
+`emptyDir`のいくつかの用途は次の通りです。
+
+* ディスクベースのマージソートなどのスクラッチスペース
+* クラッシュからの回復のための長い計算のチェックポイント
+* Webサーバーコンテナがデータを提供している間にコンテンツマネージャコンテナがフェッチするファイルを保持する
+
+環境に応じて、`emptyDir`ボリュームは、ディスクやSSD、ネットワークストレージなど、ノードをバックアップするあらゆる媒体に保存されます。
+ただし、`emptyDir.medium`フィールドを`"Memory"`に設定すると、Kubernetesは代わりにtmpfs(RAMベースのファイルシステム)をマウントします。
+tmpfsは非常に高速ですが、ディスクと違ってノードのリブート時にクリアされ、書き込んだファイルはコンテナのメモリー制限にカウントされることに注意してください。
+
+{{< note >}}
+`SizeMemoryBackedVolumes`[フィーチャーゲート](/ja/docs/reference/command-line-tools-reference/feature-gates/)が有効な場合、メモリーバックアップボリュームにサイズを指定することができます。
+サイズが指定されていない場合、メモリーでバックアップされたボリュームは、Linuxホストのメモリーの50％のサイズになります。
+{{< /note>}}
+
+#### emptyDirの設定例
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-pd
+spec:
+  containers:
+  - image: k8s.gcr.io/test-webserver
+    name: test-container
+    volumeMounts:
+    - mountPath: /cache
+      name: cache-volume
+  volumes:
+  - name: cache-volume
+    emptyDir: {}
+```
+
+### fc (fibre channel) {#fc}
+
+`fc`ボリュームタイプを使用すると、既存のファイバーチャネルブロックストレージボリュームをPodにマウントできます。
+`targetWWNs`ボリューム構成のパラメーターを使用して、単一または複数のターゲットWorld Wide Name(WWN)を指定できます。
+複数のWWNが指定されている場合、targetWWNは、それらのWWNがマルチパス接続からのものであると想定します。
+
+{{< note >}}
+Kubernetesホストがアクセスできるように、事前にこれらのLUN(ボリューム)をターゲットWWNに割り当ててマスクするようにFCSANゾーニングを構成する必要があります。
+{{< /note >}}
+
+詳細については[fibre channelの例](https://github.com/kubernetes/examples/tree/master/staging/volumes/fibre_channel)を参照してください。
+
+### flocker (非推奨) {#flocker}
+
+[Flocker](https://github.com/ClusterHQ/flocker)はオープンソースのクラスター化されたコンテナデータボリュームマネージャーです。
+Flockerは、さまざまなストレージバックエンドに支えられたデータボリュームの管理とオーケストレーションを提供します。
+
+`flocker`ボリュームを使用すると、FlockerデータセットをPodにマウントできます。
+もしデータセットがまだFlockerに存在しない場合は、まずFlocker CLIかFlocker APIを使ってデータセットを作成する必要があります。
+データセットがすでに存在する場合は、FlockerによってPodがスケジュールされているノードに再アタッチされます。
+これは、必要に応じてPod間でデータを共有できることを意味します。
+
+{{< note >}}
+使用する前に、独自のFlockerインストールを実行する必要があります。
+{{< /note >}}
+
+詳細については[Flocker example](https://github.com/kubernetes/examples/tree/master/staging/volumes/flocker)を参照してください。
+
+### gcePersistentDisk
+
+`gcePersistentDisk`ボリュームは、Google Compute Engine (GCE)の[永続ディスク](https://cloud.google.com/compute/docs/disks)(PD)をPodにマウントします。
+Podを取り外すと消去される`emptyDir`とは異なり、PDの内容は保持されボリュームは単にアンマウントされるだけです。これはPDにあらかじめデータを入れておくことができ、そのデータをPod間で共有できることを意味します。
+
+{{< note >}}
+`gcloud`を使用する前に、またはGCE APIまたはUIを使用してPDを作成する必要があります。
+{{< /note >}}
+
+`gcePersistentDisk`を使用する場合、いくつかの制限があります。
+
+* Podが実行されているノードはGCE VMである必要があります
+* これらのVMは、永続ディスクと同じGCEプロジェクトおよびゾーンに存在する必要があります
+
+GCE永続ディスクの機能の1つは、永続ディスクへの同時読み取り専用アクセスです。`gcePersistentDisk`ボリュームを使用すると、複数のコンシューマーが永続ディスクを読み取り専用として同時にマウントできます。
+これはPDにデータセットを事前入力してから、必要な数のPodから並行して提供できることを意味します。
+残念ながらPDは読み取り/書き込みモードで1つのコンシューマーのみがマウントできます。同時書き込みは許可されていません。
+
+PDが読み取り専用であるか、レプリカ数が0または1でない限り、ReplicaSetによって制御されるPodでGCE永続ディスクを使用すると失敗します。
+
+#### GCE永続ディスクの作成 {#gce-create-persistent-disk}
+
+PodでGCE永続ディスクを使用する前に、それを作成する必要があります。
+
+```shell
+gcloud compute disks create --size=500GB --zone=us-central1-a my-data-disk
+```
+
+#### GCE永続ディスクの設定例
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-pd
+spec:
+  containers:
+  - image: k8s.gcr.io/test-webserver
+    name: test-container
+    volumeMounts:
+    - mountPath: /test-pd
+      name: test-volume
+  volumes:
+  - name: test-volume
+    # This GCE PD must already exist.
+    gcePersistentDisk:
+      pdName: my-data-disk
+      fsType: ext4
+```
+
+#### リージョン永続ディスク
+
+[リージョン永続ディスク](https://cloud.google.com/compute/docs/disks/#repds)機能を使用すると、同じリージョン内の2つのゾーンで使用できる永続ディスクを作成できます。
+この機能を使用するには、ボリュームをPersistentVolumeとしてプロビジョニングする必要があります。Podから直接ボリュームを参照することはサポートされていません。
+
+#### リージョンPD PersistentVolumeを手動でプロビジョニングする
+
+[GCE PDのStorageClass](/docs/concepts/storage/storage-classes/#gce)を使用して動的プロビジョニングが可能です。
+SPDPersistentVolumeを作成する前に、永続ディスクを作成する必要があります。
+
+```shell
+gcloud compute disks create --size=500GB my-data-disk
+  --region us-central1
+  --replica-zones us-central1-a,us-central1-b
+```
+
+#### リージョン永続ディスクの設定例
+
+```yaml
+apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: test-volume
+spec:
+  capacity:
+    storage: 400Gi
+  accessModes:
+  - ReadWriteOnce
+  gcePersistentDisk:
+    pdName: my-data-disk
+    fsType: ext4
+  nodeAffinity:
+    required:
+      nodeSelectorTerms:
+      - matchExpressions:
+        # failure-domain.beta.kubernetes.io/zone should be used prior to 1.21
+        - key: topology.kubernetes.io/zone
+          operator: In
+          values:
+          - us-central1-a
+          - us-central1-b
+```
+
+#### GCE CSIの移行
+
+{{< feature-state for_k8s_version="v1.17" state="beta" >}}
+
+GCE PDの`CSIMigration`機能を有効にすると、すべてのプラグイン操作が既存のツリー内プラグインから`pd.csi.storage.gke.io`Container Storage Interface (CSI) Driverにリダイレクトされるようになります。
+この機能を使用するには、クラスターに[GCE PD CSI Driver](https://github.com/kubernetes-sigs/gcp-compute-persistent-disk-csi-driver)がインストールされ、`CSIMigration`と`CSIMigrationGCE`のbeta機能が有効になっている必要があります。
+
+#### GCE CSIの移行の完了
+
+{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+
+`gcePersistentDisk`ストレージプラグインがコントローラーマネージャーとkubeletによって読み込まれないようにするには、`InTreePluginGCEUnregister`フラグを`true`に設定します。
+
+### gitRepo(非推奨) {#gitrepo}
+
+{{< warning >}}
+`gitRepo`ボリュームタイプは非推奨です。gitリポジトリを使用してコンテナをプロビジョニングするには、Gitを使用してリポジトリのクローンを作成するInitContainerに[EmptyDir](#emptydir)をマウントしてから、Podのコンテナに[EmptyDir](#emptydir)をマウントします。
+{{< /warning >}}
+
+`gitRepo`ボリュームは、ボリュームプラグインの一例です。このプラグインは空のディレクトリをマウントし、そのディレクトリにgitリポジトリをクローンしてPodで使えるようにします。
+
+`gitRepo`ボリュームの例を次に示します。
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: server
+spec:
+  containers:
+  - image: nginx
+    name: nginx
+    volumeMounts:
+    - mountPath: /mypath
+      name: git-volume
+  volumes:
+  - name: git-volume
+    gitRepo:
+      repository: "git@somewhere:me/my-git-repository.git"
+      revision: "22f1d8406d464b0c0874075539c1f2e96c253775"
+```
+
+### glusterfs
+
+`glusterfs`ボリュームは[Glusterfs](https://www.gluster.org)(オープンソースのネットワークファイルシステム)ボリュームをPodにマウントできるようにするものです。
+Podを取り外すと消去される`emptyDir`とは異なり、`glusterfs`ボリュームの内容は保持され、単にアンマウントされるだけです。
+これは、glusterfsボリュームにデータを事前に入力でき、データをPod間で共有できることを意味します。
+GlusterFSは複数のライターが同時にマウントすることができます。
+
+{{< note >}}
+GlusterFSを使用するためには、事前にGlusterFSのインストールを実行しておく必要があります。
+{{< /note >}}
+
+詳細については[GlusterFSの例](https://github.com/kubernetes/examples/tree/master/volumes/glusterfs)を参照してください。
+
+### hostPath {#hostpath}
+
+{{< warning >}}
+HostPathボリュームには多くのセキュリティリスクがあり、可能な場合はHostPathの使用を避けることがベストプラクティスです。HostPathボリュームを使用する必要がある場合は、必要なファイルまたはディレクトリのみにスコープを設定し、読み取り専用としてマウントする必要があります。
+
+AdmissionPolicyによって特定のディレクトリへのHostPathアクセスを制限する場合、ポリシーを有効にするために`volumeMounts`は`readOnly`マウントを使用するように要求されなければなりません。
+{{< /warning >}}
+
+`hostPath`ボリュームは、ファイルまたはディレクトリをホストノードのファイルシステムからPodにマウントします。
+これはほとんどのPodに必要なものではありませんが、一部のアプリケーションには強力なエスケープハッチを提供します。
+
+たとえば`hostPath`のいくつかの使用法は次のとおりです。
+
+* Dockerの内部にアクセスする必要があるコンテナを実行する場合:`hostPath`に`/var/lib/docker`を使用します。
+* コンテナ内でcAdvisorを実行する場合:`hostPath`に`/sys`を指定します。
+* Podが実行される前に、与えられた`hostPath`が存在すべきかどうか、作成すべきかどうか、そして何として存在すべきかを指定できるようにします。
+
+必須の`path`プロパティに加えて、オプションで`hostPath`ボリュームに`type`を指定することができます。
+
+フィールド`type`でサポートされている値は次のとおりです。
+
+| 値 | ふるまい |
+|:------|:---------|
+| | 空の文字列(デフォルト)は下位互換性のためです。つまり、hostPathボリュームをマウントする前にチェックは実行されません。 |
+| `DirectoryOrCreate` | 指定されたパスに何も存在しない場合、必要に応じて、権限を0755に設定し、Kubeletと同じグループと所有権を持つ空のディレクトリが作成されます。 |
+| `Directory` | 指定されたパスにディレクトリが存在する必要があります。 |
+| `FileOrCreate` | 指定されたパスに何も存在しない場合、必要に応じて、権限を0644に設定し、Kubeletと同じグループと所有権を持つ空のファイルが作成されます。 |
+| `File` | 指定されたパスにファイルが存在する必要があります。 |
+| `Socket` | UNIXソケットは、指定されたパスに存在する必要があります。 |
+| `CharDevice` | キャラクターデバイスは、指定されたパスに存在する必要があります。 |
+| `BlockDevice` | ブロックデバイスは、指定されたパスに存在する必要があります。 |
+
+このタイプのボリュームを使用するときは、以下の理由のため注意してください。
+
+* HostPath は、特権的なシステム認証情報(Kubeletなど)や特権的なAPI(コンテナランタイムソケットなど)を公開する可能性があり、コンテナのエスケープやクラスターの他の部分への攻撃に利用される可能性があります。
+* 同一構成のPod(PodTemplateから作成されたものなど)は、ノード上のファイルが異なるため、ノードごとに動作が異なる場合があります。
+* ホスト上に作成されたファイルやディレクトリは、rootでしか書き込みができません。[特権コンテナ](/docs/tasks/configure-pod-container/security-context/)内でrootとしてプロセスを実行するか、ホスト上のファイルのパーミッションを変更して`hostPath`ボリュームに書き込みができるようにする必要があります。
+
+#### hostPathの設定例
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-pd
+spec:
+  containers:
+  - image: k8s.gcr.io/test-webserver
+    name: test-container
+    volumeMounts:
+    - mountPath: /test-pd
+      name: test-volume
+  volumes:
+  - name: test-volume
+    hostPath:
+      # directory location on host
+      path: /data
+      # this field is optional
+      type: Directory
+```
+
+{{< caution >}}
+`FileOrCreate`モードでは、ファイルの親ディレクトリは作成されません。マウントされたファイルの親ディレクトリが存在しない場合、Podは起動に失敗します。
+このモードが確実に機能するようにするには、[`FileOrCreate`構成](＃hostpath-fileorcreate-example)に示すように、ディレクトリとファイルを別々にマウントしてみてください。
+{{< /caution >}}
+
+#### hostPath FileOrCreateの設定例 {#hostpath-fileorcreate-example}
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-webserver
+spec:
+  containers:
+  - name: test-webserver
+    image: k8s.gcr.io/test-webserver:latest
+    volumeMounts:
+    - mountPath: /var/local/aaa
+      name: mydir
+    - mountPath: /var/local/aaa/1.txt
+      name: myfile
+  volumes:
+  - name: mydir
+    hostPath:
+      # Ensure the file directory is created.
+      path: /var/local/aaa
+      type: DirectoryOrCreate
+  - name: myfile
+    hostPath:
+      path: /var/local/aaa/1.txt
+      type: FileOrCreate
+```
+
+### iscsi
+
+`iscsi`ボリュームは、既存のiSCSI(SCSI over IP)ボリュームをPodにマウントすることができます。
+Podを取り外すと消去される`emptyDir`とは異なり、`iscsi`ボリュームの内容は保持され、単にアンマウントされるだけです。
+つまり、iscsiボリュームにはあらかじめデータを入れておくことができ、そのデータをPod間で共有することができるのです。
+
+
+{{< note >}}
+使用する前に、ボリュームを作成したiSCSIサーバーを起動する必要があります。
+
+{{< /note >}}
+
+iSCSIの特徴として、複数のコンシューマーから同時に読み取り専用としてマウントできることが挙げられます。
+つまり、ボリュームにあらかじめデータセットを入れておき、必要な数のPodから並行してデータを提供することができます。
+残念ながら、iSCSIボリュームは1つのコンシューマによってのみ読み書きモードでマウントすることができます。
+同時に書き込みを行うことはできません。
+
+詳細については[iSCSIの例](https://github.com/kubernetes/examples/tree/master/volumes/iscsi)を参照してください。
+
+### local
+
+`local`ボリュームは、ディスク、パーティション、ディレクトリなど、マウントされたローカルストレージデバイスを表します。
+
+ローカルボリュームは静的に作成されたPersistentVolumeとしてのみ使用できます。動的プロビジョニングはサポートされていません。
+
+`hostPath`ボリュームと比較して、`local`ボリュームは手動でノードにPodをスケジューリングすることなく、耐久性と移植性に優れた方法で使用することができます。
+システムはPersistentVolume上のノードアフィニティーを見ることで、ボリュームのノード制約を認識します。
+
+ただし、`local`ボリュームは、基盤となるノードの可用性に左右されるため、すべてのアプリケーションに適しているわけではありません。
+ノードが異常になると、Podは`local`ボリュームにアクセスできなくなります。
+このボリュームを使用しているPodは実行できません。`local`ボリュームを使用するアプリケーションは、基盤となるディスクの耐久性の特性に応じて、この可用性の低下と潜在的なデータ損失に耐えられる必要があります。
+
+次の例では、`local`ボリュームと`nodeAffinity`を使用したPersistentVolumeを示しています。
+
+```yaml
+apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: example-pv
+spec:
+  capacity:
+    storage: 100Gi
+  volumeMode: Filesystem
+  accessModes:
+  - ReadWriteOnce
+  persistentVolumeReclaimPolicy: Delete
+  storageClassName: local-storage
+  local:
+    path: /mnt/disks/ssd1
+  nodeAffinity:
+    required:
+      nodeSelectorTerms:
+      - matchExpressions:
+        - key: kubernetes.io/hostname
+          operator: In
+          values:
+          - example-node
+```
+
+ローカルボリュームを使用する場合は、PersistentVolume `nodeAffinity`を設定する必要があります。
+KubernetesのスケジューラはPersistentVolume `nodeAffinity`を使用して、これらのPodを正しいノードにスケジューリングします。
+
+PersistentVolume `volumeMode`を(デフォルト値の「Filesystem」ではなく)「Block」に設定して、ローカルボリュームをrawブロックデバイスとして公開できます。
+
+ローカルボリュームを使用する場合、`volumeBindingMode`を`WaitForFirstConsumer`に設定したStorageClassを作成することをお勧めします。
+詳細については、local [StorageClass](/docs/concepts/storage/storage-classes/#local)の例を参照してください。
+ボリュームバインディングを遅延させると、PersistentVolumeClaimバインディングの決定が、ノードリソース要件、ノードセレクター、Podアフィニティ、Podアンチアフィニティなど、Podが持つ可能性のある他のノード制約も含めて評価されるようになります。
+
+ローカルボリュームのライフサイクルの管理を改善するために、外部の静的プロビジョナーを個別に実行できます。
+このプロビジョナーはまだ動的プロビジョニングをサポートしていないことに注意してください。
+外部ローカルプロビジョナーの実行方法の例については、[ローカルボリュームプロビジョナーユーザーガイド](https://github.com/kubernetes-sigs/sig-storage-local-static-provisioner)を参照してください。
+
+{{< note >}}
+ボリュームのライフサイクルを管理するために外部の静的プロビジョナーが使用されていない場合、ローカルのPersistentVolumeは、ユーザーによる手動のクリーンアップと削除を必要とします。
+{{< /note >}}
+
+### nfs
+
+`nfs`ボリュームは、既存のNFS(Network File System)共有をPodにマウントすることを可能にします。Podを取り外すと消去される`emptyDir`とは異なり、`nfs`ボリュームのコンテンツは保存され、単にアンマウントされるだけです。
+つまり、NFSボリュームにはあらかじめデータを入れておくことができ、そのデータをPod間で共有することができます。
+NFSは複数のライターによって同時にマウントすることができます。
+
+{{< note >}}
+使用する前に、共有をエクスポートしてNFSサーバーを実行する必要があります。
+{{< /note >}}
+
+詳細については[NFSの例](https://github.com/kubernetes/examples/tree/master/staging/volumes/nfs)を参照してください。
+
+### persistentVolumeClaim {#persistentvolumeclaim}
+
+`PersistentVolumeClaim`ボリュームは[PersistentVolume](/ja/docs/concepts/storage/persistent-volumes/)をPodにマウントするために使用されます。
+PersistentVolumeClaimは、ユーザが特定のクラウド環境の詳細を知らなくても、耐久性のあるストレージ(GCE永続ディスクやiSCSIボリュームなど)を「要求」するための方法です。
+
+詳細については[PersistentVolume](/ja/docs/concepts/storage/persistent-volumes/)を参照してください。
+
+### portworxVolume {#portworxvolume}
+
+`portworxVolume`は、Kubernetesとハイパーコンバージドで動作するエラスティックブロックストレージレイヤーです。
+[Portworx](https://portworx.com/use-case/kubernetes-storage/)は、サーバー内のストレージをフィンガープリントを作成し、機能に応じて階層化し、複数のサーバーにまたがって容量を集約します。
+Portworxは、仮想マシンまたはベアメタルのLinuxノードでゲスト内動作します。
+
+
+`portworxVolume`はKubernetesを通して動的に作成することができますが、事前にプロビジョニングしてPodの中で参照することもできます。
+以下は、事前にプロビジョニングされたPortworxボリュームを参照するPodの例です。
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-portworx-volume-pod
+spec:
+  containers:
+  - image: k8s.gcr.io/test-webserver
+    name: test-container
+    volumeMounts:
+    - mountPath: /mnt
+      name: pxvol
+  volumes:
+  - name: pxvol
+    # This Portworx volume must already exist.
+    portworxVolume:
+      volumeID: "pxvol"
+      fsType: "<fs-type>"
+```
+
+{{< note >}}
+Podで使用する前に、`pxvol`という名前の既存のPortworxVolumeがあることを確認してください。
+{{< /note >}}
+
+詳細については[Portworxボリューム](https://github.com/kubernetes/examples/tree/master/staging/volumes/portworx/README.md)の例を参照してください。
+
+### 投影
+
+投影ボリュームは、複数の既存のボリュームソースを同じディレクトリにマッピングします。
+詳細については[投影ボリューム](/docs/concepts/storage/projected-volumes/)を参照してください。
+
+### quobyte(非推奨) {#quobyte}
+
+`quobyte`ボリュームは、既存の[Quobyte](https://www.quobyte.com)ボリュームをPodにマウントすることができます。
+
+
+{{< note >}}
+使用する前にQuobyteをセットアップして、ボリュームを作成した状態で動作させる必要があります。
+{{< /note >}}
+
+CSIは、Kubernetes内部でQuobyteボリュームを使用するための推奨プラグインです。
+QuobyteのGitHubプロジェクトには、CSIを使用してQuobyteをデプロイするための[手順](https://github.com/quobyte/quobyte-csi#quobyte-csi)と例があります
+
+### rbd
+
+`rbd`ボリュームは[Rados Block Device](https://docs.ceph.com/en/latest/rbd/)(RBD)ボリュームをPodにマウントすることを可能にします。
+Podを取り外すと消去される`emptyDir`とは異なり、`rbd`ボリュームの内容は保存され、ボリュームはアンマウントされます。つまり、RBDボリュームにはあらかじめデータを入れておくことができ、そのデータをPod間で共有することができるのです。
+
+{{< note >}}
+RBDを使用する前に、Cephのインストールが実行されている必要があります。
+{{< /note >}}
+
+RBDの特徴として、複数のコンシューマーから同時に読み取り専用としてマウントできることが挙げられます。
+つまり、ボリュームにあらかじめデータセットを入れておき、必要な数のPodから並行して提供することができるのです。
+残念ながら、RBDボリュームは1つのコンシューマーによってのみ読み書きモードでマウントすることができます。
+同時に書き込みを行うことはできません。
+
+詳細については[RBDの例](https://github.com/kubernetes/examples/tree/master/volumes/rbd)を参照してください。
+
+#### RBD CSIの移行 {#rbd-csi-migration}
+
+{{< feature-state for_k8s_version="v1.23" state="alpha" >}}
+
+`RBD`の`CSIMigration`機能を有効にすると、既存のツリー内プラグインから`rbd.csi.ceph.com`{{< glossary_tooltip text="CSI" term_id="csi" >}}ドライバーにすべてのプラグイン操作がリダイレクトされます。
+この機能を使用するには、クラスターに[Ceph CSIドライバー](https://github.com/ceph/ceph-csi)をインストールし、`CSIMigration`および`csiMigrationRBD`[フィーチャーゲート](/ja/docs/reference/command-line-tools-reference/feature-gates/)を有効にしておく必要があります。
+
+
+{{< note >}}
+
+ストレージを管理するKubernetesクラスターオペレーターとして、RBD CSIドライバーへの移行を試みる前に完了する必要のある前提条件は次のとおりです。
+
+* Ceph CSIドライバー(`rbd.csi.ceph.com`)v3.5.0以降をKubernetesクラスターにインストールする必要があります。
+* CSIドライバーの動作に必要なパラメーターとして`clusterID`フィールドがありますが、ツリー内StorageClassには`monitors`フィールドがあるため、Kubernetesストレージ管理者はCSI config mapでモニターハッシュ(例：`#echo -n '<monitors_string>' | md5sum`)に基づいたclusterIDを作成し、モニターをこのclusterID設定の下に保持しなければなりません。
+* また、ツリー内Storageclassの`adminId`の値が`admin`と異なる場合、ツリー内Storageclassに記載されている`adminSecretName`に`adminId`パラメーター値のbase64値をパッチしなければなりませんが、それ以外はスキップすることが可能です。
+{{< /note >}}
+
+### secret
+
+`secret`ボリュームは、パスワードなどの機密情報をPodに渡すために使用します。
+Kubernetes APIにsecretを格納し、Kubernetesに直接結合することなくPodが使用するファイルとしてマウントすることができます。
+`secret`ボリュームはtmpfs(RAM-backed filesystem)によってバックアップされるため、不揮発性ストレージに書き込まれることはありません。
+
+{{< note >}}
+使用する前にKubernetes APIでSecretを作成する必要があります。
+{{< /note >}}
+
+{{< note >}}
+[`SubPath`](#using-subpath)ボリュームマウントとしてSecretを使用しているコンテナは、Secretの更新を受け取りません。
+{{< /note >}}
+
+詳細については[Secretの設定](/ja/docs/concepts/configuration/secret/)を参照してください。
+
+### storageOS(非推奨) {#storageos}
+
+`storageos`ボリュームを使用すると、既存の[StorageOS](https://www.storageos.com)ボリュームをPodにマウントできます。
+
+StorageOSは、Kubernetes環境内でコンテナとして実行され、Kubernetesクラスター内の任意のノードからローカルストレージまたは接続されたストレージにアクセスできるようにします。
+データを複製してノードの障害から保護することができます。シンプロビジョニングと圧縮により使用率を向上させ、コストを削減できます。
+
+根本的にStorageOSは、コンテナにブロックストレージを提供しファイルシステムからアクセスできるようにします。
+
+StorageOS Containerは64ビットLinuxを必要とし、追加の依存関係はありません。
+無償の開発者ライセンスが利用可能です。
+
+
+{{< caution >}}
+StorageOSボリュームにアクセスする、またはプールにストレージ容量を提供する各ノードでStorageOSコンテナを実行する必要があります。
+インストール手順については、[StorageOSドキュメント](https://docs.storageos.com)を参照してください。
+{{< /caution >}}
+
+次の例は、StorageOSを使用したPodの設定です。
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  labels:
+    name: redis
+    role: master
+  name: test-storageos-redis
+spec:
+  containers:
+    - name: master
+      image: kubernetes/redis:v1
+      env:
+        - name: MASTER
+          value: "true"
+      ports:
+        - containerPort: 6379
+      volumeMounts:
+        - mountPath: /redis-master-data
+          name: redis-data
+  volumes:
+    - name: redis-data
+      storageos:
+        # The `redis-vol01` volume must already exist within StorageOS in the `default` namespace.
+        volumeName: redis-vol01
+        fsType: ext4
+```
+
+StorageOS、動的プロビジョニング、およびPersistentVolumeClaimの詳細については、[StorageOSの例](https://github.com/kubernetes/examples/blob/master/volumes/storageos)を参照してください。
+
+
+### vsphereVolume {#vspherevolume}
+
+{{< note >}}
+KubernetesvSphereクラウドプロバイダーを設定する必要があります。クラウドプロバイダーの設定については、[vSphere入門ガイド](https://vmware.github.io/vsphere-storage-for-kubernetes/documentation/)を参照してください。
+{{< /note >}}
+
+`vsphereVolume`は、vSphereVMDKボリュームをPodにマウントするために使用されます。
+ボリュームの内容は、マウント解除されたときに保持されます。VMFSとVSANの両方のデータストアをサポートします。
+
+{{< note >}}
+Podで使用する前に、次のいずれかの方法を使用してvSphereVMDKボリュームを作成する必要があります。
+{{< /note >}}
+
+#### Creating a VMDK volume {#creating-vmdk-volume}
+
+次のいずれかの方法を選択して、VMDKを作成します。
+
+{{< tabs name="tabs_volumes" >}}
+{{% tab name="vmkfstoolsを使用して作成する" %}}
+最初にESXにSSHで接続し、次に以下のコマンドを使用してVMDKを作成します。
+
+```shell
+vmkfstools -c 2G /vmfs/volumes/DatastoreName/volumes/myDisk.vmdk
+```
+
+{{% /tab %}}
+{{% tab name="vmware-vdiskmanagerを使用して作成する" %}}
+次のコマンドを使用してVMDKを作成します。
+
+```shell
+vmware-vdiskmanager -c -t 0 -s 40GB -a lsilogic myDisk.vmdk
+```
+
+{{% /tab %}}
+
+{{< /tabs >}}
+
+#### vSphere VMDKの設定例 {#vsphere-vmdk-configuration}
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-vmdk
+spec:
+  containers:
+  - image: k8s.gcr.io/test-webserver
+    name: test-container
+    volumeMounts:
+    - mountPath: /test-vmdk
+      name: test-volume
+  volumes:
+  - name: test-volume
+    # This VMDK volume must already exist.
+    vsphereVolume:
+      volumePath: "[DatastoreName] volumes/myDisk"
+      fsType: ext4
+```
+
+詳細については[vSphereボリューム](https://github.com/kubernetes/examples/tree/master/staging/volumes/vsphere)の例を参照してください。
+
+#### vSphere CSIの移行 {#vsphere-csi-migration}
+
+{{< feature-state for_k8s_version="v1.19" state="beta" >}}
+
+`vsphereVolume`の`CSIMigration`機能を有効にすると、既存のツリー内プラグインから`csi.vsphere.vmware.com`{{< glossary_tooltip text="CSI" term_id="csi" >}}ドライバーにすべてのプラグイン操作がリダイレクトされます。
+この機能を使用するには、クラスターに[vSphere CSIドライバー](https://github.com/kubernetes-sigs/vsphere-csi-driver)がインストールされ、`CSIMigration`および`CSIMigrationvSphere`[フィーチャーゲート](/ja/docs/reference/command-line-tools-reference/feature-gates/)が有効になっていなければなりません。
+
+また、vSphere vCenter/ESXiのバージョンが7.0u1以上、HWのバージョンがVM version 15以上であることが条件です。
+
+
+{{< note >}}
+組み込みの`vsphereVolume`プラグインの次のStorageClassパラメーターは、vSphere CSIドライバーでサポートされていません。
+
+* `diskformat`
+* `hostfailurestotolerate`
+* `forceprovisioning`
+* `cachereservation`
+* `diskstripes`
+* `objectspacereservation`
+* `iopslimit`
+
+これらのパラメーターを使用して作成された既存のボリュームはvSphere CSIドライバーに移行されますが、vSphere CSIドライバーで作成された新しいボリュームはこれらのパラメーターに従わないことに注意してください。
+
+{{< /note >}}
+
+#### vSphere CSIの移行の完了 {#vsphere-csi-migration-complete}
+
+{{< feature-state for_k8s_version="v1.19" state="beta" >}}
+
+`vsphereVolume`プラグインがコントローラーマネージャーとkubeletによって読み込まれないようにするには、`InTreePluginvSphereUnregister`機能フラグを`true`に設定する必要があります。すべてのワーカーノードに`csi.vsphere.vmware.com`{{< glossary_tooltip text="CSI" term_id="csi" >}}ドライバーをインストールする必要があります。
+
+#### Portworx CSIの移行
+{{< feature-state for_k8s_version="v1.23" state="alpha" >}}
+
+Portworxの`CSIMigration`機能が追加されましたが、Kubernetes 1.23ではAlpha状態であるため、デフォルトで無効になっています。
+すべてのプラグイン操作を既存のツリー内プラグインから`pxd.portworx.com`Container Storage Interface(CSI)ドライバーにリダイレクトします。
+[Portworx CSIドライバー](https://docs.portworx.com/portworx-install-with-kubernetes/storage-operations/csi/)をクラスターにインストールする必要があります。
+この機能を有効にするには、kube-controller-managerとkubeletで`CSIMigrationPortworx=true`を設定します。
+
+## subPathの使用 {#using-subpath}
+
+1つのPodで複数の用途に使用するために1つのボリュームを共有すると便利な場合があります。
+`volumeMounts.subPath`プロパティは、ルートではなく、参照されるボリューム内のサブパスを指定します。
+
+次の例は、単一の共有ボリュームを使用してLAMPスタック(Linux Apache MySQL PHP)でPodを構成する方法を示しています。
+このサンプルの`subPath`構成は、プロダクションでの使用にはお勧めしません。
+
+PHPアプリケーションのコードとアセットはボリュームの`html`フォルダーにマップされ、MySQLデータベースはボリュームの`mysql`フォルダーに保存されます。例えば:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: my-lamp-site
+spec:
+    containers:
+    - name: mysql
+      image: mysql
+      env:
+      - name: MYSQL_ROOT_PASSWORD
+        value: "rootpasswd"
+      volumeMounts:
+      - mountPath: /var/lib/mysql
+        name: site-data
+        subPath: mysql
+    - name: php
+      image: php:7.0-apache
+      volumeMounts:
+      - mountPath: /var/www/html
+        name: site-data
+        subPath: html
+    volumes:
+    - name: site-data
+      persistentVolumeClaim:
+        claimName: my-lamp-site-data
+```
+
+### 拡張された環境変数でのsubPathの使用{#using-subpath-expanded-environment}
+
+{{< feature-state for_k8s_version="v1.17" state="stable" >}}
+
+`subPathExpr`フィールドを使用して、downwart API環境変数から`subPath`ディレクトリ名を作成します。
+`subPath`プロパティと`subPathExpr`プロパティは相互に排他的です。
+
+この例では、`Pod`が`subPathExpr`を使用して、`hostPath`ボリューム`/var/log/pods`内に`pod1`というディレクトリを作成します。
+`hostPath`ボリュームは`downwardAPI`から`Pod`名を受け取ります。
+ホストディレクトリ`/var/log/pods/pod1`は、コンテナ内の`/logs`にマウントされます。
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: pod1
+spec:
+  containers:
+  - name: container1
+    env:
+    - name: POD_NAME
+      valueFrom:
+        fieldRef:
+          apiVersion: v1
+          fieldPath: metadata.name
+    image: busybox
+    command: [ "sh", "-c", "while [ true ]; do echo 'Hello'; sleep 10; done | tee -a /logs/hello.txt" ]
+    volumeMounts:
+    - name: workdir1
+      mountPath: /logs
+      # The variable expansion uses round brackets (not curly brackets).
+      subPathExpr: $(POD_NAME)
+  restartPolicy: Never
+  volumes:
+  - name: workdir1
+    hostPath:
+      path: /var/log/pods
+```
+
+## リソース
+
+`emptyDir`ボリュームの記憶媒体(DiskやSSDなど)は、kubeletのルートディレクトリ(通常は`/var/lib/kubelet`)を保持するファイルシステムの媒体によって決定されます。
+`emptyDir`または`hostPath`ボリュームが消費する容量に制限はなく、コンテナ間またはPod間で隔離されることもありません。
+
+リソース仕様を使用したスペースの要求については、[リソースの管理方法](/ja/docs/concepts/configuration/manage-resources-containers/)を参照してください。
+
+## ツリー外のボリュームプラグイン
+
+ツリー外ボリュームプラグインには{{< glossary_tooltip text="Container Storage Interface" term_id="csi" >}}(CSI)、およびFlexVolume(非推奨)があります。
+これらのプラグインによりストレージベンダーは、プラグインのソースコードをKubernetesリポジトリに追加することなく、カスタムストレージプラグインを作成することができます。
+
+以前は、すべてのボリュームプラグインが「ツリー内」にありました。
+「ツリー内」のプラグインは、Kubernetesのコアバイナリとともにビルド、リンク、コンパイルされ、出荷されていました。
+つまり、Kubernetesに新しいストレージシステム(ボリュームプラグイン)を追加するには、Kubernetesのコアコードリポジトリにコードをチェックインする必要があったのです。
+
+CSIとFlexVolumeはどちらも、ボリュームプラグインをKubernetesコードベースとは独立して開発し、拡張機能としてKubernetesクラスターにデプロイ(インストール)することを可能にします。
+
+ツリー外のボリュームプラグインの作成を検討しているストレージベンダーについては、[ボリュームプラグインのFAQ](https://github.com/kubernetes/community/blob/master/sig-storage/volume-plugin-faq.md)を参照してください。
+
+### csi
+
+[Container Storage Interface](https://github.com/container-storage-interface/spec/blob/master/spec.md)(CSI)は、コンテナオーケストレーションシステム(Kubernetesなど)の標準インターフェイスを定義して、任意のストレージシステムをコンテナワークロードに公開します。
+
+詳細については[CSI design proposal](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/storage/container-storage-interface.md)を参照してください。
+
+{{< note >}}
+CSI仕様バージョン0.2および0.3のサポートは、Kubernetes v1.13で非推奨になり、将来のリリースで削除される予定です。
+{{< /note >}}
+
+{{< note >}}
+CSIドライバーは、すべてのKubernetesリリース間で互換性があるとは限りません。各Kubernetesリリースでサポートされているデプロイ手順と互換性マトリックスについては、特定のCSIドライバーのドキュメントを確認してください。
+{{< /note >}}
+
+CSI互換のボリュームドライバーがKubernetesクラスター上に展開されると、ユーザーは`csi`ボリュームタイプを使用して、CSIドライバーによって公開されたボリュームをアタッチまたはマウントすることができます。
+
+`csi`ボリュームはPodで3つの異なる方法によって使用することができます。
+
+* [PersistentVolumeClaim](#persistentvolumeclaim)の参照を通して
+* [一般的なエフェメラルボリューム](/docs/concepts/storage/ephemeral-volumes/#generic-ephemeral-volume)(alpha機能)で
+* ドライバーがそれをサポートしている場合は、[CSIエフェメラルボリューム](/docs/concepts/storage/ephemeral-volumes/#csi-ephemeral-volume)(beta機能)を使って
+
+ストレージ管理者は、CSI永続ボリュームを構成するために次のフィールドを使用できます。
+
+* `driver`: 使用するボリュームドライバーの名前を指定する文字列。
+  この値は[CSI spec](https://github.com/container-storage-interface/spec/blob/master/spec.md#getplugininfo)で定義されたCSIドライバーが`GetPluginInfoResponse`で返す値に対応していなければなりません。
+  これはKubernetesが呼び出すCSIドライバーを識別するために使用され、CSIドライバーコンポーネントがCSIドライバーに属するPVオブジェクトを識別するために使用されます。
+* `volumeHandle`: ボリュームを一意に識別する文字列。この値は、[CSI spec](https://github.com/container-storage-interface/spec/blob/master/spec.md#createvolume)で定義されたCSIドライバーが`CreateVolumeResponse`の`volume.id`フィールドに返す値に対応していなければなりません。この値はCSIボリュームドライバーのすべての呼び出しで、ボリュームを参照する際に`volume_id`として渡されます。
+* `readOnly`: ボリュームを読み取り専用として「ControllerPublished」(添付)するかどうかを示すオプションのブール値。デフォルトはfalseです。この値は、`ControllerPublishVolumeRequest`の`readonly`フィールドを介してCSIドライバーに渡されます。
+* `fsType`: PVの`VolumeMode`が`Filesystem`の場合、このフィールドを使用して、ボリュームのマウントに使用する必要のあるファイルシステムを指定できます。ボリュームがフォーマットされておらず、フォーマットがサポートされている場合、この値はボリュームのフォーマットに使用されます。この値は、`ControllerPublishVolumeRequest`、`NodeStageVolumeRequest`、および`NodePublishVolumeRequest`の`VolumeCapability`フィールドを介してCSIドライバーに渡されます。
+* `volumeAttributes`: ボリュームの静的プロパティを指定する、文字列から文字列へのマップ。このマップは、[CSI spec](https://github.com/container-storage-interface/spec/blob/master/spec.md#createvolume)で定義されているように、CSIドライバーが`CreateVolumeResponse`の`volume.attributes`フィールドで返すマップと一致しなければなりません。このマップは`ControllerPublishVolumeRequest`,`NodeStageVolumeRequest`,`NodePublishVolumeRequest`の`volume_context`フィールドを介してCSIドライバーに渡されます。
+* `controllerPublishSecretRef`: CSI`ControllerPublishVolume`および`ControllerUnpublishVolume`呼び出しを完了するためにCSIドライバーに渡す機密情報を含むsecretオブジェクトへの参照。このフィールドはオプションで、secretが必要ない場合は空にすることができます。secretに複数のsecretが含まれている場合は、すべてのsecretが渡されます。
+* `nodeStageSecretRef`: CSI`NodeStageVolume`呼び出しを完了するために、CSIドライバーに渡す機密情報を含むsecretオブジェクトへの参照。このフィールドはオプションで、secretが必要ない場合は空にすることができます。secretに複数のsecretが含まれている場合、すべてのsecretが渡されます。
+* `nodePublishSecretRef`: CSI`NodePublishVolume`呼び出しを完了するために、CSIドライバーに渡す機密情報を含むsecretオブジェクトへの参照。このフィールドはオプションで、secretが必要ない場合は空にすることができます。secretオブジェクトが複数のsecretを含んでいる場合、すべてのsecretが渡されます。
+
+#### CSI rawブロックボリュームのサポート
+
+{{< feature-state for_k8s_version="v1.18" state="stable" >}}
+
+外部のCSIドライバーを使用するベンダーは、Kubernetesワークロードでrawブロックボリュームサポートを実装できます。
+
+CSI固有の変更を行うことなく、通常どおり、[rawブロックボリュームをサポートするPersistentVolume/PersistentVolumeClaim](/docs/concepts/storage/persistent-volumes/#raw-block-volume-support)を設定できます。
+
+#### CSIエフェメラルボリューム
+
+{{< feature-state for_k8s_version="v1.16" state="beta" >}}
+
+Pod仕様内でCSIボリュームを直接構成できます。この方法で指定されたボリュームは一時的なものであり、Podを再起動しても持続しません。詳細については[エフェメラルボリューム](/docs/concepts/storage/ephemeral-volumes/#csi-ephemeral-volume)を参照してください。
+
+CSIドライバーの開発方法の詳細については[kubernetes-csiドキュメント](https://kubernetes-csi.github.io/docs/)を参照してください。
+
+#### ツリー内プラグインからCSIドライバーへの移行
+
+{{< feature-state for_k8s_version="v1.17" state="beta" >}}
+
+`CSIMigration`機能を有効にすると、既存のツリー内プラグインに対する操作が、対応するCSIプラグイン(インストールおよび構成されていることが期待されます)に転送されます。
+その結果、オペレーターは、ツリー内プラグインに取って代わるCSIドライバーに移行するときに、既存のストレージクラス、PersistentVolume、またはPersistentVolumeClaim(ツリー内プラグインを参照)の構成を変更する必要がありません。
+
+サポートされている操作と機能には、プロビジョニング/削除、アタッチ/デタッチ、マウント/アンマウント、およびボリュームのサイズ変更が含まれます。
+
+`CSIMigration`をサポートし、対応するCSIドライバーが実装されているツリー内プラグインは、[ボリュームのタイプ](＃volume-types)にリストされています。
+
+### flexVolume
+
+{{< feature-state for_k8s_version="v1.23" state="deprecated" >}}
+
+FlexVolumeは、ストレージドライバーとのインターフェースにexecベースのモデルを使用するツリー外プラグインインターフェースです。FlexVolumeドライバーのバイナリは、各ノード、場合によってはコントロールプレーンノードにも、あらかじめ定義されたボリュームプラグインパスにインストールする必要があります。
+
+Podは`flexVolume`ツリー内ボリュームプラグインを通してFlexVolumeドライバーと対話します。
+
+詳細については[FlexVolumeのREADME](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-storage/flexvolume.md#readme)を参照してください。
+
+{{< note >}}
+FlexVolumeは非推奨です。ツリー外のCSIドライバーを使用することは、外部ストレージをKubernetesと統合するための推奨される方法です。
+
+FlexVolumeドライバーのメンテナーは、CSIドライバーを実装し、FlexVolumeドライバーのユーザーをCSIに移行するのを支援する必要があります。FlexVolumeのユーザーは、同等のCSIドライバーを使用するようにワークロードを移動する必要があります。
+{{< /note >}}
+
+## マウントの伝播
+
+マウントの伝播により、コンテナによってマウントされたボリュームを、同じPod内の他のコンテナ、または同じノード上の他のPodに共有できます。
+
+ボリュームのマウント伝播は、`Container.volumeMounts`の`mountPropagation`フィールドによって制御されます。その値は次のとおりです。
+
+* `None` - このボリュームマウントは、ホストによってこのボリュームまたはそのサブディレクトリにマウントされる後続のマウントを受け取りません。同様に、コンテナによって作成されたマウントはホストに表示されません。これがデフォルトのモードです。
+
+  このモードは[Linuxカーネルドキュメント](https://www.kernel.org/doc/Documentation/filesystems/sharedsubtree.txt)で説明されている`private`マウント伝播と同じです。
+
+* `HostToContainer` - このボリュームマウントは、このボリュームまたはそのサブディレクトリのいずれかにマウントされる後続のすべてのマウントを受け取ります。
+
+  つまりホストがボリュームマウント内に何かをマウントすると、コンテナはそこにマウントされていることを確認します。
+
+  同様に同じボリュームに対して`Bidirectional`マウント伝搬を持つPodが何かをマウントすると、`HostToContainer`マウント伝搬を持つコンテナはそれを見ることができます。
+
+  このモードは[Linuxカーネルドキュメント](https://www.kernel.org/doc/Documentation/filesystems/sharedsubtree.txt)で説明されている`rslave`マウント伝播と同じです。
+
+* `Bidirectional` - このボリュームマウントは、`HostToContainer`マウントと同じように動作します。さらに、コンテナによって作成されたすべてのボリュームマウントは、ホストと、同じボリュームを使用するすべてのPodのすべてのコンテナに伝播されます。
+
+  このモードの一般的な使用例は、FlexVolumeまたはCSIドライバーを備えたPod、または`hostPath`ボリュームを使用してホストに何かをマウントする必要があるPodです。
+
+  このモードは[Linuxカーネルドキュメント](https://www.kernel.org/doc/Documentation/filesystems/sharedsubtree.txt)で説明されている`rshared`マウント伝播と同じです。
+
+  {{< warning >}}
+  `Bidirectional`マウント伝搬は危険です。ホストオペレーティングシステムにダメージを与える可能性があるため、特権的なコンテナでのみ許可されています。
+  Linuxカーネルの動作に精通していることが強く推奨されます。
+  また、Pod内のコンテナによって作成されたボリュームマウントは、終了時にコンテナによって破棄(アンマウント)される必要があります。
+  {{< /warning >}}
+
+### 構成
+
+一部のデプロイメント(CoreOS、RedHat/Centos、Ubuntu)でマウント伝播が正しく機能する前に、以下に示すように、Dockerでマウント共有を正しく構成する必要があります。
+
+Dockerの`systemd`サービスファイルを編集します。以下のように`MountFlags`を設定します。
+
+
+```shell
+MountFlags=shared
+```
+
+または、`MountFlags=slave`があれば削除してください。その後、Dockerデーモンを再起動します。
+
+
+```shell
+sudo systemctl daemon-reload
+sudo systemctl restart docker
+```
+
+## {{% heading "whatsnext" %}}
+
+[永続ボリュームを使用してWordPressとMySQLをデプロイする例](/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume/)に従ってください。
+
diff --git a/content/ja/docs/concepts/workloads/controllers/cron-jobs.md b/content/ja/docs/concepts/workloads/controllers/cron-jobs.md
index 5f820a187a..29a8607c41 100644
--- a/content/ja/docs/concepts/workloads/controllers/cron-jobs.md
+++ b/content/ja/docs/concepts/workloads/controllers/cron-jobs.md
@@ -38,7 +38,7 @@ CronJobは、クラスターがアイドル状態になりそうなときにJob
 
 {{< codenew file="application/job/cronjob.yaml" >}}
 
-([Running Automated Tasks with a CronJob](/docs/tasks/job/automated-tasks-with-cron-jobs/)ではこの例をより詳しく説明しています。).
+([Running Automated Tasks with a CronJob](/ja/docs/tasks/job/automated-tasks-with-cron-jobs/)ではこの例をより詳しく説明しています。).
 
 ## CronJobの制限 {#cron-job-limitations}
 
diff --git a/content/ja/docs/concepts/workloads/controllers/daemonset.md b/content/ja/docs/concepts/workloads/controllers/daemonset.md
index 7d2d55febb..42647228e6 100644
--- a/content/ja/docs/concepts/workloads/controllers/daemonset.md
+++ b/content/ja/docs/concepts/workloads/controllers/daemonset.md
@@ -72,15 +72,14 @@ Kubernetes1.8のように、ユーザーは`.spec.template`のラベルにマッ
 
 ### 選択したNode上でPodを稼働させる
 
-もしユーザーが`.spec.template.spec.nodeSelector`を指定したとき、DaemonSetコントローラーは、その[node
-selector](/ja/docs/concepts/scheduling-eviction/assign-pod-node/)にマッチするPodをNode上に作成します。同様に、もし`.spec.template.spec.affinity`を指定したとき、DaemonSetコントローラーは[node affinity](/ja/docs/concepts/scheduling-eviction/assign-pod-node/)マッチするPodをNode上に作成します。
+もしユーザーが`.spec.template.spec.nodeSelector`を指定したとき、DaemonSetコントローラーは、その[node selector](/ja/docs/concepts/scheduling-eviction/assign-pod-node/)にマッチするNode上にPodを作成します。同様に、もし`.spec.template.spec.affinity`を指定したとき、DaemonSetコントローラーは[node affinity](/ja/docs/concepts/scheduling-eviction/assign-pod-node/)にマッチするNode上にPodを作成します。
 もしユーザーがどちらも指定しないとき、DaemonSetコントローラーは全てのNode上にPodを作成します。
 
 ## Daemon Podがどのようにスケジューリングされるか
 
 ### デフォルトスケジューラーによってスケジューリングされる場合
 
-{{< feature-state state="stable" for-kubernetes-version="1.17" >}}
+{{< feature-state for_k8s_version="1.17" state="stable" >}}
 
 DaemonSetは全ての利用可能なNodeが単一のPodのコピーを稼働させることを保証します。通常、Podが稼働するNodeはKubernetesスケジューラーによって選択されます。しかし、DaemonSetのPodは代わりにDaemonSetコントローラーによって作成され、スケジューリングされます。   
 下記の問題について説明します:
@@ -105,7 +104,7 @@ nodeAffinity:
 
 ### TaintsとTolerations
 
-DaemonSetのPodは[TaintsとTolerations](/docs/concepts/scheduling-eviction/taint-and-toleration/)の設定を尊重します。下記のTolerationsは、関連する機能によって自動的にDaemonSetのPodに追加されます。
+DaemonSetのPodは[TaintsとTolerations](/ja/docs/concepts/scheduling-eviction/taint-and-toleration/)の設定を尊重します。下記のTolerationsは、関連する機能によって自動的にDaemonSetのPodに追加されます。
 
 | Toleration Key                           | Effect     | Version | Description |
 | ---------------------------------------- | ---------- | ------- | ----------- |
@@ -151,7 +150,7 @@ Node上で直接起動することにより(例: `init`、`upstartd`、`systemd`
 
 ### 静的Pod Pods
 
-Kubeletによって監視されているディレクトリに対してファイルを書き込むことによって、Podを作成することが可能です。これは[静的Pod](/docs/tasks/configure-pod-container/static-pod/)と呼ばれます。DaemonSetと違い、静的Podはkubectlや他のKubernetes APIクライアントで管理できません。静的PodはApiServerに依存しておらず、クラスターの自立起動時に最適です。また、静的Podは将来的には廃止される予定です。
+Kubeletによって監視されているディレクトリに対してファイルを書き込むことによって、Podを作成することが可能です。これは[静的Pod](/ja/docs/tasks/configure-pod-container/static-pod/)と呼ばれます。DaemonSetと違い、静的Podはkubectlや他のKubernetes APIクライアントで管理できません。静的PodはApiServerに依存しておらず、クラスターの自立起動時に最適です。また、静的Podは将来的には廃止される予定です。
 
 ### Deployment
 
diff --git a/content/ja/docs/concepts/workloads/controllers/deployment.md b/content/ja/docs/concepts/workloads/controllers/deployment.md
index de2388ebee..b62151fc54 100644
--- a/content/ja/docs/concepts/workloads/controllers/deployment.md
+++ b/content/ja/docs/concepts/workloads/controllers/deployment.md
@@ -68,11 +68,6 @@ Deploymentによって作成されたReplicaSetを管理しないでください
   kubectl apply -f https://k8s.io/examples/controllers/nginx-deployment.yaml
   ```
 
-  {{< note >}}
-  実行したコマンドを`kubernetes.io/change-cause`というアノテーションに記録するために`--record`フラグを指定できます。
-  これは将来的な問題の調査のために有効です。例えば、各Deploymentのリビジョンにおいて実行されたコマンドを見るときに便利です。
-  {{< /note >}}
-
 
 2. Deploymentが作成されたことを確認するために、`kubectl get deployments`を実行してください。
 
@@ -158,12 +153,12 @@ Deploymentを更新するには以下のステップに従ってください。
 1. nginxのPodで、`nginx:1.14.2`イメージの代わりに`nginx:1.16.1`を使うように更新します。
 
     ```shell
-    kubectl --record deployment.apps/nginx-deployment set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1
+    kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1
     ```
     または単に次のコマンドを使用します。
 
     ```shell
-    kubectl set image deployment/nginx-deployment nginx=nginx:1.16.1 --record
+    kubectl set image deployment/nginx-deployment nginx=nginx:1.16.1
     ```
 
     実行結果は以下のとおりです。
@@ -235,7 +230,7 @@ Deploymentを更新するには以下のステップに従ってください。
 
     次にPodを更新させたいときは、DeploymentのPodテンプレートを再度更新するだけです。
 
-    Deploymentは、Podが更新されている間に特定の数のPodのみ停止状態になることを保証します。デフォルトでは、目標とするPod数の少なくとも25%が停止状態になることを保証します(25% max unavailable)。
+    Deploymentは、Podが更新されている間に特定の数のPodのみ停止状態になることを保証します。デフォルトでは、目標とするPod数の少なくとも75%が稼働状態であることを保証します(25% max unavailable)。
 
     また、DeploymentはPodが更新されている間に、目標とするPod数を特定の数まで超えてPodを稼働させることを保証します。デフォルトでは、目標とするPod数に対して最大でも125%を超えてPodを稼働させることを保証します(25% max surge)。
 
@@ -317,7 +312,7 @@ Deploymentのリビジョンは、Deploymentのロールアウトがトリガー
 * `nginx:1.16.1`の代わりに`nginx:1.161`というイメージに更新して、Deploymentの更新中にタイプミスをしたと仮定します。
 
     ```shell
-    kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.161 --record=true
+    kubectl set image deployment/nginx-deployment nginx=nginx:1.161
     ```
 
     実行結果は以下のとおりです。
@@ -431,15 +426,14 @@ Deploymentのリビジョンは、Deploymentのロールアウトがトリガー
     ```
     deployments "nginx-deployment"
     REVISION    CHANGE-CAUSE
-    1           kubectl apply --filename=https://k8s.io/examples/controllers/nginx-deployment.yaml --record=true
-    2           kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1 --record=true
-    3           kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.161 --record=true
+    1           kubectl apply --filename=https://k8s.io/examples/controllers/nginx-deployment.yaml
+    2           kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1
+    3           kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.161
     ```
 
     `CHANGE-CAUSE`はリビジョンの作成時にDeploymentの`kubernetes.io/change-cause`アノテーションからリビジョンにコピーされます。以下の方法により`CHANGE-CAUSE`メッセージを指定できます。
 
     * `kubectl annotate deployment.v1.apps/nginx-deployment kubernetes.io/change-cause="image updated to 1.16.1"`の実行によりアノテーションを追加します。
-    * リソースの変更時に`kubectl`コマンドの内容を記録するために`--record`フラグを追加します。
     * リソースのマニフェストを手動で編集します。
 
 2. 各リビジョンの詳細を確認するためには以下のコマンドを実行してください。
@@ -452,7 +446,7 @@ Deploymentのリビジョンは、Deploymentのロールアウトがトリガー
     deployments "nginx-deployment" revision 2
       Labels:       app=nginx
               pod-template-hash=1159050644
-      Annotations:  kubernetes.io/change-cause=kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1 --record=true
+      Annotations:  kubernetes.io/change-cause=kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1
       Containers:
        nginx:
         Image:      nginx:1.16.1
@@ -512,7 +506,7 @@ Deploymentのリビジョンは、Deploymentのロールアウトがトリガー
     CreationTimestamp:      Sun, 02 Sep 2018 18:17:55 -0500
     Labels:                 app=nginx
     Annotations:            deployment.kubernetes.io/revision=4
-                            kubernetes.io/change-cause=kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1 --record=true
+                            kubernetes.io/change-cause=kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1
     Selector:               app=nginx
     Replicas:               3 desired | 3 updated | 3 total | 3 available | 0 unavailable
     StrategyType:           RollingUpdate
@@ -562,7 +556,7 @@ kubectl scale deployment.v1.apps/nginx-deployment --replicas=10
 deployment.apps/nginx-deployment scaled
 ```
 
-クラスター内で[水平Podオートスケーラー](/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/)が有効になっていると仮定します。ここでDeploymentのオートスケーラーを設定し、稼働しているPodのCPU使用量に基づいて、稼働させたいPodのレプリカ数の最小値と最大値を設定できます。
+クラスター内で[水平Podオートスケーラー](/ja/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/)が有効になっていると仮定します。ここでDeploymentのオートスケーラーを設定し、稼働しているPodのCPU使用量に基づいて、稼働させたいPodのレプリカ数の最小値と最大値を設定できます。
 
 ```shell
 kubectl autoscale deployment.v1.apps/nginx-deployment --min=10 --max=15 --cpu-percent=80
diff --git a/content/ja/docs/concepts/workloads/controllers/statefulset.md b/content/ja/docs/concepts/workloads/controllers/statefulset.md
index 1fa4c5c767..b69e46af52 100644
--- a/content/ja/docs/concepts/workloads/controllers/statefulset.md
+++ b/content/ja/docs/concepts/workloads/controllers/statefulset.md
@@ -29,7 +29,7 @@ StatefulSetは下記の1つ以上の項目を要求するアプリケーショ
 
 ## 制限事項
 
-* 提供されたPodのストレージは、要求された`storage class`にもとづいて[PersistentVolume Provisioner](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/persistent-volume-provisioning/README.md)によってプロビジョンされるか、管理者によって事前にプロビジョンされなくてはなりません。
+* 提供されたPodのストレージは、要求された`storage class`にもとづいて[PersistentVolume Provisioner](https://github.com/kubernetes/examples/tree/master/staging/persistent-volume-provisioning/README.md)によってプロビジョンされるか、管理者によって事前にプロビジョンされなくてはなりません。
 * StatefulSetの削除もしくはスケールダウンをすることにより、StatefulSetに関連したボリュームは削除*されません* 。 これはデータ安全性のためで、関連するStatefulSetのリソース全てを自動的に削除するよりもたいてい有効です。
 * StatefulSetは現在、Podのネットワークアイデンティティーに責務をもつために[Headless Service](/ja/docs/concepts/services-networking/service/#headless-service)を要求します。ユーザーはこのServiceを作成する責任があります。
 * StatefulSetは、StatefulSetが削除されたときにPodの停止を行うことを保証していません。StatefulSetにおいて、規則的で安全なPodの停止を行う場合、削除のために事前にそのStatefulSetの数を0にスケールダウンさせることが可能です。
@@ -94,7 +94,7 @@ spec:
 
 * nginxという名前のHeadlessServiceは、ネットワークドメインをコントロールするために使われます。
 * webという名前のStatefulSetは、specで3つのnginxコンテナのレプリカを持ち、そのコンテナはそれぞれ別のPodで稼働するように設定されています。
-* volumeClaimTemplatesは、PersistentVolumeプロビジョナーによってプロビジョンされた[PersistentVolume](/docs/concepts/storage/persistent-volumes/)を使って安定したストレージを提供します。
+* volumeClaimTemplatesは、PersistentVolumeプロビジョナーによってプロビジョンされた[PersistentVolume](/ja/docs/concepts/storage/persistent-volumes/)を使って安定したストレージを提供します。
 
 StatefulSetの名前は有効な[名前](/ja/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)である必要があります。
 
@@ -159,7 +159,7 @@ StatefulSet {{< glossary_tooltip text="コントローラー" term_id="controlle
 
 StatefulSetは`pod.Spec.TerminationGracePeriodSeconds`を0に指定すべきではありません。これは不安全で、やらないことを強く推奨します。さらなる説明としては、[StatefulSetのPodの強制削除](/ja/docs/tasks/run-application/force-delete-stateful-set-pod/)を参照してください。
 
-上記の例のnginxが作成されたとき、3つのPodは`web-0`、`web-1`、`web-2`の順番でデプロイされます。`web-1`は`web-0`が[RunningかつReady状態](/docs/concepts/workloads/pods/pod-lifecycle/)になるまでは決してデプロイされないのと、同様に`web-2`は`web-1`がRunningかつReady状態にならないとデプロイされません。もし`web-0`が`web-1`がRunningかつReady状態になった後だが、`web-2`が起動する前に失敗した場合、`web-2`は`web-0`の再起動が成功し、RunningかつReady状態にならないと再起動されません。
+上記の例のnginxが作成されたとき、3つのPodは`web-0`、`web-1`、`web-2`の順番でデプロイされます。`web-1`は`web-0`が[RunningかつReady状態](/ja/docs/concepts/workloads/pods/pod-lifecycle/)になるまでは決してデプロイされないのと、同様に`web-2`は`web-1`がRunningかつReady状態にならないとデプロイされません。もし`web-0`が`web-1`がRunningかつReady状態になった後だが、`web-2`が起動する前に失敗した場合、`web-2`は`web-0`の再起動が成功し、RunningかつReady状態にならないと再起動されません。
 
 もしユーザーが`replicas=1`といったようにStatefulSetにパッチをあてることにより、デプロイされたものをスケールすることになった場合、`web-2`は最初に停止されます。`web-1`は`web-2`が完全にシャットダウンされ削除されるまでは、停止されません。もし`web-0`が、`web-2`が完全に停止され削除された後だが、`web-1`の停止の前に失敗した場合、`web-1`は`web-0`がRunningかつReady状態になるまでは停止されません。
 
@@ -205,6 +205,6 @@ Kubernetes1.7とそれ以降のバージョンにおいて、StatefulSetの`.spe
 ## {{% heading "whatsnext" %}}
 
 
-* [ステートフルなアプリケーションのデプロイ](/docs/tutorials/stateful-application/basic-stateful-set/)の例を参考にしてください。
-* [StatefulSetを使ったCassandraのデプロイ](/docs/tutorials/stateful-application/cassandra/)の例を参考にしてください。
+* [ステートフルなアプリケーションのデプロイ](/ja/docs/tutorials/stateful-application/basic-stateful-set/)の例を参考にしてください。
+* [StatefulSetを使ったCassandraのデプロイ](/ja/docs/tutorials/stateful-application/cassandra/)の例を参考にしてください。
 * [レプリカを持つステートフルアプリケーションを実行する](/ja/docs/tasks/run-application/run-replicated-stateful-application/)の例を参考にしてください。
diff --git a/content/ja/docs/concepts/workloads/pods/ephemeral-containers.md b/content/ja/docs/concepts/workloads/pods/ephemeral-containers.md
index beb92b3b88..b99d193308 100644
--- a/content/ja/docs/concepts/workloads/pods/ephemeral-containers.md
+++ b/content/ja/docs/concepts/workloads/pods/ephemeral-containers.md
@@ -42,7 +42,7 @@ weight: 80
 
 エフェメラルコンテナを利用する場合には、他のコンテナ内のプロセスにアクセスできるように、[プロセス名前空間の共有](/ja/docs/tasks/configure-pod-container/share-process-namespace/)を有効にすると便利です。
 
-エフェメラルコンテナを利用してトラブルシューティングを行う例については、[デバッグ用のエフェメラルコンテナを使用してデバッグする](/docs/tasks/debug-application-cluster/debug-running-pod/#ephemeral-container)を参照してください。
+エフェメラルコンテナを利用してトラブルシューティングを行う例については、[デバッグ用のエフェメラルコンテナを使用してデバッグする](/docs/tasks/debug/debug-application/debug-running-pod/#ephemeral-container)を参照してください。
 
 ## Ephemeral containers API
 
diff --git a/content/ja/docs/concepts/workloads/pods/pod-lifecycle.md b/content/ja/docs/concepts/workloads/pods/pod-lifecycle.md
index 012c042c81..9096e1a568 100644
--- a/content/ja/docs/concepts/workloads/pods/pod-lifecycle.md
+++ b/content/ja/docs/concepts/workloads/pods/pod-lifecycle.md
@@ -19,10 +19,10 @@ Podはその生存期間に1回だけ[スケジューリング](/docs/concepts/s
 
 ## Podのライフタイム
 
-個々のアプリケーションコンテナと同様に、Podは(永続的ではなく)比較的短期間の存在と捉えられます。Podが作成されると、一意のID([UID](ja/docs/concepts/overview/working-with-objects/names/#uids))が割り当てられ、(再起動ポリシーに従って)終了または削除されるまでNodeで実行されるようにスケジュールされます。  
+個々のアプリケーションコンテナと同様に、Podは(永続的ではなく)比較的短期間の存在と捉えられます。Podが作成されると、一意のID([UID](/ja/docs/concepts/overview/working-with-objects/names/#uids))が割り当てられ、(再起動ポリシーに従って)終了または削除されるまでNodeで実行されるようにスケジュールされます。  
 {{< glossary_tooltip term_id="node" >}}が停止した場合、そのNodeにスケジュールされたPodは、タイムアウト時間の経過後に[削除](#pod-garbage-collection)されます。
 
-Pod自体は、自己修復しません。Podが{{< glossary_tooltip text="node" term_id="node" >}}にスケジュールされ、その後に失敗、またはスケジュール操作自体が失敗した場合、Podは削除されます。同様に、リソースの不足またはNodeのメンテナンスによりポッドはNodeから立ち退きます。Kubernetesは、比較的使い捨てのPodインスタンスの管理作業を処理する、{{< glossary_tooltip term_id="controller" text="controller" >}}と呼ばれる上位レベルの抽象化を使用します。
+Pod自体は、自己修復しません。Podが{{< glossary_tooltip text="node" term_id="node" >}}にスケジュールされ、その後に失敗、またはスケジュール操作自体が失敗した場合、Podは削除されます。同様に、リソースの不足またはNodeのメンテナンスによりPodはNodeから立ち退きます。Kubernetesは、比較的使い捨てのPodインスタンスの管理作業を処理する、{{< glossary_tooltip term_id="controller" text="controller" >}}と呼ばれる上位レベルの抽象化を使用します。
 
 特定のPod(UIDで定義)は新しいNodeに"再スケジュール"されません。代わりに、必要に応じて同じ名前で、新しいUIDを持つ同一のPodに置き換えることができます。
 
@@ -55,7 +55,7 @@ Nodeが停止するか、クラスタの残りの部分から切断された場
 
 ## コンテナのステータス {#container-states}
 
-Pod全体の[フェーズ](#pod-phase)と同様に、KubernetesはPod内の各コンテナの状態を追跡します。[container lifecycle hooks](/docs/concepts/containers/container-lifecycle-hooks/)を使用して、コンテナのライフサイクルの特定のポイントで実行するイベントをトリガーできます。
+Pod全体の[フェーズ](#pod-phase)と同様に、KubernetesはPod内の各コンテナの状態を追跡します。[container lifecycle hooks](/ja/docs/concepts/containers/container-lifecycle-hooks/)を使用して、コンテナのライフサイクルの特定のポイントで実行するイベントをトリガーできます。
 
 Podが{{< glossary_tooltip text="scheduler" term_id="kube-scheduler" >}}によってNodeに割り当てられると、kubeletは{{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}を使用してコンテナの作成を開始します。コンテナの状態は`Waiting`、`Running`または`Terminated`の3ついずれかです。
 
@@ -89,7 +89,7 @@ PodにはPodStatusがあります。それはPodが成功したかどうかの
 
 * `PodScheduled`: PodがNodeにスケジュールされました。
 * `ContainersReady`: Pod内のすべてのコンテナが準備できた状態です。
-* `Initialized`: すべての[Initコンテナ](/docs/concepts/workloads/pods/init-containers)が正常に実行されました。
+* `Initialized`: すべての[Initコンテナ](/ja/docs/concepts/workloads/pods/init-containers)が正常に実行されました。
 * `Ready`: Podはリクエストを処理でき、一致するすべてのサービスの負荷分散プールに追加されます。
 
 フィールド名         | 内容
@@ -211,7 +211,7 @@ Podが削除されたときにリクエストを来ないようにするため
 
 {{< feature-state for_k8s_version="v1.18" state="beta" >}}
 
-startupProbeは、サービスの開始に時間がかかるコンテナを持つポッドに役立ちます。livenessProbeの間隔を長く設定するのではなく、コンテナの起動時に別のProbeを構成して、livenessProbeの間隔よりも長い時間を許可できます。
+startupProbeは、サービスの開始に時間がかかるコンテナを持つPodに役立ちます。livenessProbeの間隔を長く設定するのではなく、コンテナの起動時に別のProbeを構成して、livenessProbeの間隔よりも長い時間を許可できます。
 コンテナの起動時間が、`initialDelaySeconds + failureThreshold x periodSeconds`よりも長い場合は、livenessProbeと同じエンドポイントをチェックするためにstartupProbeを指定します。`periodSeconds`のデフォルトは30秒です。次に、`failureThreshold`をlivenessProbeのデフォルト値を変更せずにコンテナが起動できるように、十分に高い値を設定します。これによりデッドロックを防ぐことができます。
 
 ## Podの終了 {#pod-termination}
@@ -220,7 +220,7 @@ Podは、クラスター内のNodeで実行中のプロセスを表すため、
 
 ユーザーは削除を要求可能であるべきで、プロセスがいつ終了するかを知ることができなければなりませんが、削除が最終的に完了することも保証できるべきです。ユーザーがPodの削除を要求すると、システムはPodが強制終了される前に意図された猶予期間を記録および追跡します。強制削除までの猶予期間がある場合、{{< glossary_tooltip text="kubelet" term_id="kubelet" >}}正常な終了を試みます。
 
-通常、コンテナランタイムは各コンテナのメインプロセスにTERMシグナルを送信します。多くのコンテナランタイムは、コンテナイメージで定義されたSTOPSIGNAL値を尊重し、TERMの代わりにこれを送信します。猶予期間が終了すると、プロセスにKILLシグナルが送信され、Podは{{< glossary_tooltip text="API Server" term_id="kube-apiserver" >}}から削除されます。プロセスの終了を待っている間にkubeletかコンテナランタイムの管理サービスが再起動されると、クラスターは元の猶予期間を含めて、最初からリトライされます。
+通常、コンテナランタイムは各コンテナのメインプロセスにTERMシグナルを送信します。多くのコンテナランタイムは、コンテナイメージで定義されたSTOPSIGNAL値を尊重し、TERMシグナルの代わりにこれを送信します。猶予期間が終了すると、プロセスにKILLシグナルが送信され、Podは{{< glossary_tooltip text="API server" term_id="kube-apiserver" >}}から削除されます。プロセスの終了を待っている間にkubeletかコンテナランタイムの管理サービスが再起動されると、クラスターは元の猶予期間を含めて、最初からリトライされます。
 
 フローの例は下のようになります。
 
@@ -228,7 +228,7 @@ Podは、クラスター内のNodeで実行中のプロセスを表すため、
 1. API server内のPodは、猶予期間を越えるとPodが「死んでいる」と見なされるように更新される。  
    削除中のPodに対して`kubectl describe`コマンドを使用すると、Podは「終了中」と表示される。  
    Podが実行されているNode上で、Podが終了しているとマークされている(正常な終了期間が設定されている)とkubeletが認識するとすぐに、kubeletはローカルでPodの終了プロセスを開始します。
-    1. Pod内のコンテナの1つが`preStop`[フック](/docs/concepts/containers/container-lifecycle-hooks/#hook-details)を定義している場合は、コンテナの内側で呼び出される。猶予期間が終了した後も `preStop`フックがまだ実行されている場合は、一度だけ猶予期間を延長される(2秒)。
+    1. Pod内のコンテナの1つが`preStop`[フック](/ja/docs/concepts/containers/container-lifecycle-hooks/#hook-details)を定義している場合は、コンテナの内側で呼び出される。猶予期間が終了した後も `preStop`フックがまだ実行されている場合は、一度だけ猶予期間を延長される(2秒)。
    {{< note >}}
    `preStop`フックが完了するまでにより長い時間が必要な場合は、`terminationGracePeriodSeconds`を変更する必要があります。
    {{< /note >}}
@@ -271,10 +271,10 @@ StatefulSetのPodについては、[StatefulSetからPodを削除するための
 ## {{% heading "whatsnext" %}}
 
 
-* [attaching handlers to Container lifecycle events](/docs/tasks/configure-pod-container/attach-handler-lifecycle-event/)のハンズオンをやってみる
+* [attaching handlers to Container lifecycle events](/ja/docs/tasks/configure-pod-container/attach-handler-lifecycle-event/)のハンズオンをやってみる
 
 * [Configure Liveness, Readiness and Startup Probes](/ja/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/)のハンズオンをやってみる
 
-* [Container lifecycle hooks](/docs/concepts/containers/container-lifecycle-hooks/)についてもっと学ぶ
+* [Container lifecycle hooks](/ja/docs/concepts/containers/container-lifecycle-hooks/)についてもっと学ぶ
 
 * APIのPod/コンテナステータスの詳細情報は[PodStatus](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podstatus-v1-core)および[ContainerStatus](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#containerstatus-v1-core)を参照してください
diff --git a/content/ja/docs/contribute/_index.md b/content/ja/docs/contribute/_index.md
index 4bc7489b5e..25eb4f9fa2 100644
--- a/content/ja/docs/contribute/_index.md
+++ b/content/ja/docs/contribute/_index.md
@@ -39,17 +39,17 @@ Kubernetesコミュニティで効果的に働くためには、[git](https://gi
 
 1. CNCFの[Contributor License Agreement](https://github.com/kubernetes/community/blob/master/CLA.md)にサインしてください。
 2. [ドキュメンテーションのリポジトリー](https://github.com/kubernetes/website)と、ウェブサイトの[静的サイトジェネレーター](https://gohugo.io)に慣れ親しんでください。
-3. [プルリクエストのオープン](/docs/contribute/new-content/open-a-pr/)と[変更レビュー](/docs/contribute/review/reviewing-prs/)の基本的なプロセスを理解していることを確認してください。
+3. [プルリクエストのオープン](/docs/contribute/new-content/open-a-pr/)と[変更レビュー](/ja/docs/contribute/review/reviewing-prs/)の基本的なプロセスを理解していることを確認してください。
 
 一部のタスクでは、Kubernetes organizationで、より多くの信頼とアクセス権限が必要です。
 役割と権限についての詳細は、[SIG Docsへの参加](/docs/contribute/participating/)を参照してください。
 
 ## はじめての貢献
-- 貢献のための複数の方法について学ぶために[貢献の概要](/docs/contribute/new-content/overview/)を読んでください。
+- 貢献のための複数の方法について学ぶために[貢献の概要](/ja/docs/contribute/new-content/overview/)を読んでください。
 - 良い開始地点を探すために[`kubernetes/website` issueリスト](https://github.com/kubernetes/website/issues/)を確認してください。
 - 既存のドキュメントに対して[GitHubを使ってプルリクエストをオープン](/docs/contribute/new-content/open-a-pr/#changes-using-github)し、GitHubへのissueの登録について学んでください。
 - 正確さと言語の校正のため、他のKubernetesコミュニティメンバーから[プルリクエストのレビュー](/docs/contribute/review/reviewing-prs/)を受けてください。
-- 見識のあるコメントを残せるようにするため、Kubernetesの[コンテンツ](/docs/contribute/style/content-guide/)と[スタイルガイド](/docs/contribute/style/style-guide/)を読んでください。
+- 見識のあるコメントを残せるようにするため、Kubernetesの[コンテンツ](/ja/docs/contribute/style/content-guide/)と[スタイルガイド](/docs/contribute/style/style-guide/)を読んでください。
 - [ページコンテンツの種類](/docs/contribute/style/page-content-types/)と[Hugoショートコード](/docs/contribute/style/hugo-shortcodes/)について勉強してください。
 
 ## 次のステップ
@@ -57,7 +57,7 @@ Kubernetesコミュニティで効果的に働くためには、[git](https://gi
 - リポジトリの[ローカルクローンでの作業](/docs/contribute/new-content/open-a-pr/#fork-the-repo)について学んでください。
 - [リリース機能](/docs/contribute/new-content/new-features/)について記載してください。
 - [SIG Docs](/docs/contribute/participate/)に参加し、[memberやreviewer](/docs/contribute/participate/roles-and-responsibilities/)になってください。
-- [国際化](/docs/contribute/localization/)を始めたり、支援したりしてください。
+- [国際化](/ja/docs/contribute/localization/)を始めたり、支援したりしてください。
 
 ## SIG Docsに参加する
 
diff --git a/content/ja/docs/contribute/participate/_index.md b/content/ja/docs/contribute/participate/_index.md
index bf21148c40..740c44d6e8 100644
--- a/content/ja/docs/contribute/participate/_index.md
+++ b/content/ja/docs/contribute/participate/_index.md
@@ -68,8 +68,8 @@ Kubernetesプロジェクトは、GitHubのissueとPull Requestに関連する
 - approve
 
 これらの2つのプラグインは`kubernetes.website`のGithubリポジトリのトップレベルにある
-[OWNERS](https://github.com/kubernetes/website/blob/master/OWNERS)ファイルと、
-[OWNERS_ALIASES](https://github.com/kubernetes/website/blob/master/OWNERS_ALIASES)ファイルを使用して、
+[OWNERS](https://github.com/kubernetes/website/blob/main/OWNERS)ファイルと、
+[OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS_ALIASES)ファイルを使用して、
 リポジトリ内でのprowの動作を制御します。
 
 OWNERSファイルには、SIG Docsのレビュー担当者および承認者であるユーザーのリストが含まれています。 
diff --git a/content/ja/docs/contribute/review/for-approvers.md b/content/ja/docs/contribute/review/for-approvers.md
index 3a96595ea8..ea17bba99e 100644
--- a/content/ja/docs/contribute/review/for-approvers.md
+++ b/content/ja/docs/contribute/review/for-approvers.md
@@ -59,7 +59,7 @@ reviewerとapproverが最もよく使うprowコマンドには、以下のよう
 {{< table caption="Prow commands for reviewing" >}}
 Prowコマンド | Roleの制限 | 説明
 :------------|:------------------|:-----------
-`/lgtm` | 誰でも。ただし、オートメーションがトリガされるのはReviewerまたはApproverが使用したときのみ。 | PRのレビューが完了し、変更に納得したことを知らせる。
+`/lgtm` | Organizationメンバー | PRのレビューが完了し、変更に納得したことを知らせる。
 `/approve` | Approver | PRをマージすることを承認する。
 `/assign` | ReviewerまたはApprover | PRのレビューまたは承認するひとを割り当てる。
 `/close` | ReviewerまたはApprover | issueまたはPRをcloseする。
@@ -93,7 +93,7 @@ PRで利用できるすべてのコマンド一覧を確認するには、[Prow
   `priority/important-longterm` | 6ヶ月以内に取り組む。
   `priority/backlog` | 無期限に延期可能。リソースに余裕がある時に取り組む。
   `priority/awaiting-more-evidence` | よいissueの可能性があるissueを見失わないようにするためのプレースホルダー。
-  `help`または`good first issue` | KubernetesまたはSIG Docsでほとんど経験がない人に適したissue。より詳しい情報は、[Help WantedとGood First Issueラベル](https://github.com/kubernetes/community/blob/master/contributors/guide/help-wanted.md)を読んでください。
+  `help`または`good first issue` | KubernetesまたはSIG Docsでほとんど経験がない人に適したissue。より詳しい情報は、[Help WantedとGood First Issueラベル](https://kubernetes.dev/docs/guide/help-wanted/)を読んでください。
   {{< /table >}}
 
   あなたの裁量で、issueのオーナーシップを取り、issueに対するPRを提出してください(簡単なissueや、自分がすでに行った作業に関連するissueである場合は特に)。
diff --git a/content/ja/docs/home/_index.md b/content/ja/docs/home/_index.md
index 44419b4890..097c6f6fce 100644
--- a/content/ja/docs/home/_index.md
+++ b/content/ja/docs/home/_index.md
@@ -59,7 +59,7 @@ cards:
   title: "K8sリリースノート"
   description: "もしKubernetesをインストールする、また最新バージョンにアップグレードする場合、最新のリリースノートを参照してください。"
   button: "Kubernetesをダウンロードする"
-  button_path: "/docs/setup/release/notes"
+  button_path: "/releases/download"
 - name: about
   title: ドキュメントについて
   description: このWebサイトには、Kubernetesの最新バージョンと過去4世代のドキュメントが含まれています。
diff --git a/content/ja/docs/reference/access-authn-authz/authentication.md b/content/ja/docs/reference/access-authn-authz/authentication.md
index 14875c8229..e2bd78316b 100644
--- a/content/ja/docs/reference/access-authn-authz/authentication.md
+++ b/content/ja/docs/reference/access-authn-authz/authentication.md
@@ -63,7 +63,7 @@ openssl req -new -key jbeda.pem -out jbeda-csr.pem -subj "/CN=jbeda/O=app1/O=app
 
 これにより、"app1"と"app2"の2つのグループに属するユーザー名"jbeda"の証明書署名要求が作成されます。
 
-クライアント証明書の生成方法については、[証明書の管理](/docs/concepts/cluster-administration/certificates/)を参照してください。
+クライアント証明書の生成方法については、[証明書の管理](/ja/docs/concepts/cluster-administration/certificates/)を参照してください。
 
 ### 静的なトークンファイル
 
@@ -105,7 +105,7 @@ APIサーバーの`--enable-bootstrap-token-auth`フラグで、Bootstrap Token
 
 ブートストラップトークンの認証機能やコントローラーについての詳細な説明、`kubeadm`でこれらのトークンを管理する方法については、[ブートストラップトークン](/docs/reference/access-authn-authz/bootstrap-tokens/)を参照してください。
 
-### サービスアカウントトークン
+### サービスアカウントトークン {#service-account-token}
 
 サービスアカウントは、自動的に有効化される認証機能で、署名されたBearerトークンを使ってリクエストを検証します。このプラグインは、オプションとして2つのフラグを取ります。
 
@@ -314,7 +314,7 @@ Webhook認証は、Bearerトークンを検証するためのフックです。
 * `--authentication-token-webhook-config-file`: リモートのWebhookサービスへのアクセス方法を記述した設定ファイルです
 * `--authentication-token-webhook-cache-ttl`: 認証をキャッシュする時間を決定します。デフォルトは2分です
 
-設定ファイルは、[kubeconfig](/docs/concepts/configuration/organize-cluster-access-kubeconfig/)のファイル形式を使用します。
+設定ファイルは、[kubeconfig](/ja/docs/concepts/configuration/organize-cluster-access-kubeconfig/)のファイル形式を使用します。
 ファイル内で、`clusters`はリモートサービスを、`users`はAPIサーバーのWebhookを指します。例えば、以下のようになります。
 
 ```yaml
@@ -347,7 +347,7 @@ contexts:
 
 クライアントが[上記](#putting-a-bearer-token-in-a-request)のようにBearerトークンを使用してAPIサーバーとの認証を試みた場合、認証Webhookはトークンを含むJSONでシリアライズされた`authentication.k8s.io/v1beta1` `TokenReview`オブジェクトをリモートサービスにPOSTします。Kubernetesはそのようなヘッダーが不足しているリクエストを作成しようとはしません。
 
-Webhook APIオブジェクトは、他のKubernetes APIオブジェクトと同じように、[Versioning Compatibility Rule](/docs/concepts/overview/kubernetes-api/)に従うことに注意してください。実装者は、ベータオブジェクトで保証される互換性が緩いことに注意し、正しいデシリアライゼーションが使用されるようにリクエストの"apiVersion"フィールドを確認する必要があります。さらにAPIサーバーは、API拡張グループ`authentication.k8s.io/v1beta1`を有効にしなければなりません(`--runtime config=authentication.k8s.io/v1beta1=true`)。
+Webhook APIオブジェクトは、他のKubernetes APIオブジェクトと同じように、[Versioning Compatibility Rule](/ja/docs/concepts/overview/kubernetes-api/)に従うことに注意してください。実装者は、ベータオブジェクトで保証される互換性が緩いことに注意し、正しいデシリアライゼーションが使用されるようにリクエストの"apiVersion"フィールドを確認する必要があります。さらにAPIサーバーは、API拡張グループ`authentication.k8s.io/v1beta1`を有効にしなければなりません(`--runtime config=authentication.k8s.io/v1beta1=true`)。
 
 POSTボディは、以下の形式になります。
 
@@ -600,7 +600,7 @@ rules:
 
 ### 設定
 
-クレデンシャルプラグインの設定は、userフィールドの一部として[kubectlの設定ファイル](/docs/tasks/access-application-cluster/configure-access-multiple-clusters/)で行います。
+クレデンシャルプラグインの設定は、userフィールドの一部として[kubectlの設定ファイル](/ja/docs/tasks/access-application-cluster/configure-access-multiple-clusters/)で行います。
 
 ```yaml
 apiVersion: v1
diff --git a/content/ja/docs/reference/access-authn-authz/rbac.md b/content/ja/docs/reference/access-authn-authz/rbac.md
index 04409b3b8e..677d039a72 100644
--- a/content/ja/docs/reference/access-authn-authz/rbac.md
+++ b/content/ja/docs/reference/access-authn-authz/rbac.md
@@ -678,7 +678,7 @@ Secretsの内容を読み取るとNamespaceのServiceAccountのクレデンシ
 <tr>
 <td><b>system:kube-dns</b></td>
 <td><b><b>kube-system</b>Namespaceのサービスアカウントkube-dns</b></td>
-<td><a href="/docs/concepts/services-networking/dns-pod-service/">kube-dns</a>コンポーネントのRole。</td>
+<td><a href="/ja/docs/concepts/services-networking/dns-pod-service/">kube-dns</a>コンポーネントのRole。</td>
 </tr>
 <tr>
 <td><b>system:kubelet-api-admin</b></td>
@@ -698,7 +698,7 @@ Secretsの内容を読み取るとNamespaceのServiceAccountのクレデンシ
 <tr>
 <td><b>system:persistent-volume-provisioner</b></td>
 <td>None</td>
-<td>ほとんどの<a href="/docs/concepts/storage/persistent-volumes/#provisioner">dynamic volume provisioners</a>が必要とするリソースへのアクセスを許可します。</td>
+<td>ほとんどの<a href="/ja/docs/concepts/storage/persistent-volumes/#dynamic">dynamic volume provisioners</a>が必要とするリソースへのアクセスを許可します。</td>
 </tr>
 </table>
 
@@ -995,7 +995,7 @@ subjects:
       --namespace=my-namespace
     ```
 
-    多くの[アドオン](https://kubernetes.io/docs/concepts/cluster-administration/addons/)は、
+    多くの[アドオン](/ja/docs/concepts/cluster-administration/addons/)は、
     Namespace`kube-system`のサービスアカウント「default」として実行されます。
     これらのアドオンをスーパーユーザーアクセスでの実行を許可するには、Namespace`kube-system`のサービスアカウント「default」のcluster-admin権限を付与します。
 
diff --git a/content/ja/docs/reference/command-line-tools-reference/feature-gates.md b/content/ja/docs/reference/command-line-tools-reference/feature-gates.md
index caab3b8c11..b8b84402e6 100644
--- a/content/ja/docs/reference/command-line-tools-reference/feature-gates.md
+++ b/content/ja/docs/reference/command-line-tools-reference/feature-gates.md
@@ -330,7 +330,7 @@ GAになってからさらなる変更を加えることは現実的ではない
 - `APIListChunking`: APIクライアントがAPIサーバーからチャンク単位で（`LIST`や`GET`の）リソースを取得できるようにします。
 `APIPriorityAndFairness`: 各サーバーで優先順位付けと公平性を備えた要求の並行性を管理できるようにします(`RequestManagement`から名前が変更されました)。
 - `APIResponseCompression`:`LIST`や`GET`リクエストのAPIレスポンスを圧縮します。
-- `AppArmor`: Dockerを使用する場合にLinuxノードでAppArmorによる強制アクセスコントロールを有効にします。詳細は[AppArmorチュートリアル](/docs/tutorials/clusters/apparmor/)で確認できます。
+- `AppArmor`: Dockerを使用する場合にLinuxノードでAppArmorによる強制アクセスコントロールを有効にします。詳細は[AppArmorチュートリアル](/ja/docs/tutorials/clusters/apparmor/)で確認できます。
 - `AttachVolumeLimit`: ボリュームプラグインを有効にすることでノードにアタッチできるボリューム数の制限を設定できます。
 - `BalanceAttachedNodeVolumes`: スケジューリング中にバランスのとれたリソース割り当てを考慮するノードのボリュームカウントを含めます。判断を行う際に、CPU、メモリー使用率、およびボリュームカウントが近いノードがスケジューラーによって優先されます。
 - `BlockVolume`: PodでRawブロックデバイスの定義と使用を有効にします。詳細は[Rawブロックボリュームのサポート](/docs/concepts/storage/persistent-volumes/#raw-block-volume-support)で確認できます。
@@ -379,7 +379,7 @@ GAになってからさらなる変更を加えることは現実的ではない
 - `EndpointSlice`: よりスケーラブルで拡張可能なネットワークエンドポイントのエンドポイントスライスを有効にします。[Enabling Endpoint Slices](/docs/tasks/administer-cluster/enabling-endpointslices/)をご覧ください。
 - `EndpointSliceProxying`: このフィーチャーゲートを有効にすると、kube-proxyはエンドポイントの代わりにエンドポイントスライスをプライマリデータソースとして使用し、スケーラビリティとパフォーマンスの向上を実現します。[Enabling Endpoint Slices](/docs/tasks/administer-cluster/enabling-endpointslices/).をご覧ください。
 - `GCERegionalPersistentDisk`: GCEでリージョナルPD機能を有効にします。
-- `HugePages`: 事前に割り当てられた[huge pages](/docs/tasks/manage-hugepages/scheduling-hugepages/)の割り当てと消費を有効にします。
+- `HugePages`: 事前に割り当てられた[huge pages](/ja/docs/tasks/manage-hugepages/scheduling-hugepages/)の割り当てと消費を有効にします。
 - `HugePageStorageMediumSize`: 事前に割り当てられた複数のサイズの[huge pages](/docs/tasks/manage-hugepages/scheduling-hugepages/)のサポートを有効にします。
 - `HyperVContainer`: Windowsコンテナの[Hyper-Vによる分離](https://docs.microsoft.com/en-us/virtualization/windowscontainers/manage-containers/hyperv-container)を有効にします。
 - `HPAScaleToZero`: カスタムメトリクスまたは外部メトリクスを使用するときに、`HorizontalPodAutoscaler`リソースの`minReplicas`を0に設定できるようにします。
@@ -400,7 +400,7 @@ GAになってからさらなる変更を加えることは現実的ではない
 - `PodDisruptionBudget`: [PodDisruptionBudget](/docs/tasks/run-application/configure-pdb/)機能を有効にします。
 - `PodPriority`: [優先度](/docs/concepts/configuration/pod-priority-preemption/)に基づいてPodの再スケジューリングとプリエンプションを有効にします。
 - `PodReadinessGates`: Podのreadinessの評価を拡張するために`PodReadinessGate`フィールドの設定を有効にします。詳細は[Pod readiness gate](/ja/docs/concepts/workloads/pods/pod-lifecycle/#pod-readiness-gate)で確認できます。
-- `PodShareProcessNamespace`: Podで実行されているコンテナ間で単一のプロセス名前空間を共有するには、Podで`shareProcessNamespace`の設定を有効にします。詳細については、[Pod内のコンテナ間でプロセス名前空間を共有する](/docs/tasks/configure-pod-container/share-process-namespace/)をご覧ください。
+- `PodShareProcessNamespace`: Podで実行されているコンテナ間で単一のプロセス名前空間を共有するには、Podで`shareProcessNamespace`の設定を有効にします。詳細については、[Pod内のコンテナ間でプロセス名前空間を共有する](/ja/docs/tasks/configure-pod-container/share-process-namespace/)をご覧ください。
 - `ProcMountType`: コンテナのProcMountTypeの制御を有効にします。
 - `PVCProtection`: 永続ボリューム要求（PVC）がPodでまだ使用されているときに削除されないようにします。詳細は[ここ](/docs/tasks/administer-cluster/storage-object-in-use-protection/)で確認できます。
 - `QOSReserved`: QoSレベルでのリソース予約を許可して、低いQoSレベルのポッドが高いQoSレベルで要求されたリソースにバーストするのを防ぎます（現時点ではメモリのみ）。
@@ -409,7 +409,7 @@ GAになってからさらなる変更を加えることは現実的ではない
 - `RotateKubeletClientCertificate`: kubeletでクライアントTLS証明書のローテーションを有効にします。詳細は[kubeletの設定](/docs/tasks/administer-cluster/storage-object-in-use-protection/)で確認できます。
 - `RotateKubeletServerCertificate`: kubeletでサーバーTLS証明書のローテーションを有効にします。詳細は[kubeletの設定](/docs/tasks/administer-cluster/storage-object-in-use-protection/)で確認できます。
 - `RunAsGroup`: コンテナの初期化プロセスで設定されたプライマリグループIDの制御を有効にします。
-- `RuntimeClass`: コンテナのランタイム構成を選択するには[RuntimeClass](/docs/concepts/containers/runtime-class/)機能を有効にします。
+- `RuntimeClass`: コンテナのランタイム構成を選択するには[RuntimeClass](/ja/docs/concepts/containers/runtime-class/)機能を有効にします。
 - `ScheduleDaemonSetPods`: DaemonSetのPodをDaemonSetコントローラーではなく、デフォルトのスケジューラーによってスケジュールされるようにします。
 - `SCTPSupport`: `Service`、`Endpoints`、`NetworkPolicy`、`Pod`の定義で`protocol`の値としてSCTPを使用できるようにします
 - `ServerSideApply`: APIサーバーで[サーバーサイドApply(SSA)](/docs/reference/using-api/api-concepts/#server-side-apply)のパスを有効にします。
@@ -429,7 +429,7 @@ GAになってからさらなる変更を加えることは現実的ではない
 - `TaintNodesByCondition`: [ノードの条件](/ja/docs/concepts/architecture/nodes/#condition)に基づいてノードの自動Taintを有効にします。
 - `TokenRequest`: サービスアカウントリソースで`TokenRequest`エンドポイントを有効にします。
 - `TokenRequestProjection`: [Projectedボリューム](/docs/concepts/storage/volumes/#projected)を使用したPodへのサービスアカウントのトークンの注入を有効にします。
-- `TTLAfterFinished`: [TTLコントローラー](/docs/concepts/workloads/controllers/ttlafterfinished/)が実行終了後にリソースをクリーンアップできるようにします。
+- `TTLAfterFinished`: [TTLコントローラー](/ja/docs/concepts/workloads/controllers/ttlafterfinished/)が実行終了後にリソースをクリーンアップできるようにします。
 - `VolumePVCDataSource`: 既存のPVCをデータソースとして指定するサポートを有効にします。
 - `VolumeScheduling`: ボリュームトポロジー対応のスケジューリングを有効にし、PersistentVolumeClaim（PVC）バインディングにスケジューリングの決定を認識させます。また`PersistentLocalVolumes`フィーチャーゲートと一緒に使用すると[`local`](/docs/concepts/storage/volumes/#local)ボリュームタイプの使用が可能になります。
 - `VolumeSnapshotDataSource`: ボリュームスナップショットのデータソースサポートを有効にします。
diff --git a/content/ja/docs/reference/command-line-tools-reference/kube-apiserver.md b/content/ja/docs/reference/command-line-tools-reference/kube-apiserver.md
new file mode 100644
index 0000000000..77b354dc70
--- /dev/null
+++ b/content/ja/docs/reference/command-line-tools-reference/kube-apiserver.md
@@ -0,0 +1,1187 @@
+---
+title: kube-apiserver
+content_type: tool-reference
+weight: 30
+auto_generated: true
+---
+
+
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+## {{% heading "synopsis" %}}
+
+
+The Kubernetes API server validates and configures data
+for the api objects which include pods, services, replicationcontrollers, and
+others. The API Server services REST operations and provides the frontend to the
+cluster's shared state through which all other components interact.
+
+```
+kube-apiserver [flags]
+```
+
+## {{% heading "options" %}}
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--add-dir-header</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, adds the file directory to the header of the log messages</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--admission-control-config-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>File with admission control configuration.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--advertise-address string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The IP address on which to advertise the apiserver to members of the cluster. This address must be reachable by the rest of the cluster. If blank, the --bind-address will be used. If --bind-address is unspecified, the host's default interface will be used.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--allow-metric-labels stringToString&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: []</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The map from metric-label to value allow-list of this label. The key's format is &lt;MetricName&gt;,&lt;LabelName&gt;. The value's format is &lt;allowed_value&gt;,&lt;allowed_value&gt;...e.g. metric1,label1='v1,v2,v3', metric1,label2='v1,v2,v3' metric2,label1='v1,v2,v3'.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--allow-privileged</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, allow privileged containers. [default=false]</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--alsologtostderr</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>log to standard error as well as files</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--anonymous-auth&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: true</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Enables anonymous requests to the secure port of the API server. Requests that are not rejected by another authentication method are treated as anonymous requests. Anonymous requests have a username of system:anonymous, and a group name of system:unauthenticated.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--api-audiences strings</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Identifiers of the API. The service account token authenticator will validate that tokens used against the API are bound to at least one of these audiences. If the --service-account-issuer flag is configured and this flag is not, this field defaults to a single element list containing the issuer URL.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--apiserver-count int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 1</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The number of apiservers running in the cluster, must be a positive number. (In use when --endpoint-reconciler-type=master-count is enabled.)</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-log-batch-buffer-size int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 10000</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The size of the buffer to store events before batching and writing. Only used in batch mode.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-log-batch-max-size int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 1</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The maximum size of a batch. Only used in batch mode.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-log-batch-max-wait duration</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The amount of time to wait before force writing the batch that hadn't reached the max size. Only used in batch mode.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-log-batch-throttle-burst int</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Maximum number of requests sent at the same moment if ThrottleQPS was not utilized before. Only used in batch mode.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-log-batch-throttle-enable</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Whether batching throttling is enabled. Only used in batch mode.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-log-batch-throttle-qps float</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Maximum average number of batches per second. Only used in batch mode.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-log-compress</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If set, the rotated log files will be compressed using gzip.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-log-format string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "json"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Format of saved audits. &quot;legacy&quot; indicates 1-line text format for each event. &quot;json&quot; indicates structured json format. Known formats are legacy,json.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-log-maxage int</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The maximum number of days to retain old audit log files based on the timestamp encoded in their filename.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-log-maxbackup int</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The maximum number of old audit log files to retain.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-log-maxsize int</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The maximum size in megabytes of the audit log file before it gets rotated.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-log-mode string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "blocking"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Strategy for sending audit events. Blocking indicates sending events should block server responses. Batch causes the backend to buffer and write events asynchronously. Known modes are batch,blocking,blocking-strict.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-log-path string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If set, all requests coming to the apiserver will be logged to this file.  '-' means standard out.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-log-truncate-enabled</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Whether event and batch truncating is enabled.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-log-truncate-max-batch-size int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 10485760</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Maximum size of the batch sent to the underlying backend. Actual serialized size can be several hundreds of bytes greater. If a batch exceeds this limit, it is split into several batches of smaller size.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-log-truncate-max-event-size int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 102400</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Maximum size of the audit event sent to the underlying backend. If the size of an event is greater than this number, first request and response are removed, and if this doesn't reduce the size enough, event is discarded.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-log-version string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "audit.k8s.io/v1"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>API group and version used for serializing audit events written to log.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-policy-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Path to the file that defines the audit policy configuration.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-webhook-batch-buffer-size int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 10000</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The size of the buffer to store events before batching and writing. Only used in batch mode.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-webhook-batch-max-size int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 400</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The maximum size of a batch. Only used in batch mode.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-webhook-batch-max-wait duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 30s</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The amount of time to wait before force writing the batch that hadn't reached the max size. Only used in batch mode.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-webhook-batch-throttle-burst int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 15</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Maximum number of requests sent at the same moment if ThrottleQPS was not utilized before. Only used in batch mode.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-webhook-batch-throttle-enable&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: true</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Whether batching throttling is enabled. Only used in batch mode.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-webhook-batch-throttle-qps float&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 10</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Maximum average number of batches per second. Only used in batch mode.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-webhook-config-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Path to a kubeconfig formatted file that defines the audit webhook configuration.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-webhook-initial-backoff duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 10s</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The amount of time to wait before retrying the first failed request.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-webhook-mode string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "batch"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Strategy for sending audit events. Blocking indicates sending events should block server responses. Batch causes the backend to buffer and write events asynchronously. Known modes are batch,blocking,blocking-strict.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-webhook-truncate-enabled</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Whether event and batch truncating is enabled.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-webhook-truncate-max-batch-size int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 10485760</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Maximum size of the batch sent to the underlying backend. Actual serialized size can be several hundreds of bytes greater. If a batch exceeds this limit, it is split into several batches of smaller size.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-webhook-truncate-max-event-size int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 102400</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Maximum size of the audit event sent to the underlying backend. If the size of an event is greater than this number, first request and response are removed, and if this doesn't reduce the size enough, event is discarded.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--audit-webhook-version string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "audit.k8s.io/v1"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>API group and version used for serializing audit events written to webhook.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--authentication-token-webhook-cache-ttl duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 2m0s</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The duration to cache responses from the webhook token authenticator.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--authentication-token-webhook-config-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>File with webhook configuration for token authentication in kubeconfig format. The API server will query the remote service to determine authentication for bearer tokens.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--authentication-token-webhook-version string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "v1beta1"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The API version of the authentication.k8s.io TokenReview to send to and expect from the webhook.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--authorization-mode strings&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "AlwaysAllow"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Ordered list of plug-ins to do authorization on secure port. Comma-delimited list of: AlwaysAllow,AlwaysDeny,ABAC,Webhook,RBAC,Node.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--authorization-policy-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>File with authorization policy in json line by line format, used with --authorization-mode=ABAC, on the secure port.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--authorization-webhook-cache-authorized-ttl duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 5m0s</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The duration to cache 'authorized' responses from the webhook authorizer.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--authorization-webhook-cache-unauthorized-ttl duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 30s</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The duration to cache 'unauthorized' responses from the webhook authorizer.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--authorization-webhook-config-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>File with webhook configuration in kubeconfig format, used with --authorization-mode=Webhook. The API server will query the remote service to determine access on the API server's secure port.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--authorization-webhook-version string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "v1beta1"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The API version of the authorization.k8s.io SubjectAccessReview to send to and expect from the webhook.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--azure-container-registry-config string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Path to the file containing Azure container registry configuration information.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--bind-address string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 0.0.0.0</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The IP address on which to listen for the --secure-port port. The associated interface(s) must be reachable by the rest of the cluster, and by CLI/web clients. If blank or an unspecified address (0.0.0.0 or ::), all interfaces will be used.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--cert-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/var/run/kubernetes"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The directory where the TLS certs are located. If --tls-cert-file and --tls-private-key-file are provided, this flag will be ignored.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--client-ca-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If set, any request presenting a client certificate signed by one of the authorities in the client-ca-file is authenticated with an identity corresponding to the CommonName of the client certificate.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--cloud-config string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The path to the cloud provider configuration file. Empty string for no configuration file.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--cloud-provider string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The provider for cloud services. Empty string for no provider.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--cloud-provider-gce-l7lb-src-cidrs cidrs&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 130.211.0.0/22,35.191.0.0/16</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>CIDRs opened in GCE firewall for L7 LB traffic proxy &amp; health checks</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--contention-profiling</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Enable lock contention profiling, if profiling is enabled</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--cors-allowed-origins strings</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>List of allowed origins for CORS, comma separated.  An allowed origin can be a regular expression to support subdomain matching. If this list is empty CORS will not be enabled.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--default-not-ready-toleration-seconds int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 300</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Indicates the tolerationSeconds of the toleration for notReady:NoExecute that is added by default to every pod that does not already have such a toleration.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--default-unreachable-toleration-seconds int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 300</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Indicates the tolerationSeconds of the toleration for unreachable:NoExecute that is added by default to every pod that does not already have such a toleration.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--default-watch-cache-size int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 100</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Default watch cache size. If zero, watch cache will be disabled for resources that do not have a default watch size set.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--delete-collection-workers int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 1</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Number of workers spawned for DeleteCollection call. These are used to speed up namespace cleanup.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--disable-admission-plugins strings</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>admission plugins that should be disabled although they are in the default enabled plugins list (NamespaceLifecycle, LimitRanger, ServiceAccount, TaintNodesByCondition, PodSecurity, Priority, DefaultTolerationSeconds, DefaultStorageClass, StorageObjectInUseProtection, PersistentVolumeClaimResize, RuntimeClass, CertificateApproval, CertificateSigning, CertificateSubjectRestriction, DefaultIngressClass, MutatingAdmissionWebhook, ValidatingAdmissionWebhook, ResourceQuota). Comma-delimited list of admission plugins: AlwaysAdmit, AlwaysDeny, AlwaysPullImages, CertificateApproval, CertificateSigning, CertificateSubjectRestriction, DefaultIngressClass, DefaultStorageClass, DefaultTolerationSeconds, DenyServiceExternalIPs, EventRateLimit, ExtendedResourceToleration, ImagePolicyWebhook, LimitPodHardAntiAffinityTopology, LimitRanger, MutatingAdmissionWebhook, NamespaceAutoProvision, NamespaceExists, NamespaceLifecycle, NodeRestriction, OwnerReferencesPermissionEnforcement, PersistentVolumeClaimResize, PersistentVolumeLabel, PodNodeSelector, PodSecurity, PodSecurityPolicy, PodTolerationRestriction, Priority, ResourceQuota, RuntimeClass, SecurityContextDeny, ServiceAccount, StorageObjectInUseProtection, TaintNodesByCondition, ValidatingAdmissionWebhook. The order of plugins in this flag does not matter.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--disabled-metrics strings</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>This flag provides an escape hatch for misbehaving metrics. You must provide the fully qualified metric name in order to disable it. Disclaimer: disabling metrics is higher in precedence than showing hidden metrics.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--egress-selector-config-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>File with apiserver egress selector configuration.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--enable-admission-plugins strings</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>admission plugins that should be enabled in addition to default enabled ones (NamespaceLifecycle, LimitRanger, ServiceAccount, TaintNodesByCondition, PodSecurity, Priority, DefaultTolerationSeconds, DefaultStorageClass, StorageObjectInUseProtection, PersistentVolumeClaimResize, RuntimeClass, CertificateApproval, CertificateSigning, CertificateSubjectRestriction, DefaultIngressClass, MutatingAdmissionWebhook, ValidatingAdmissionWebhook, ResourceQuota). Comma-delimited list of admission plugins: AlwaysAdmit, AlwaysDeny, AlwaysPullImages, CertificateApproval, CertificateSigning, CertificateSubjectRestriction, DefaultIngressClass, DefaultStorageClass, DefaultTolerationSeconds, DenyServiceExternalIPs, EventRateLimit, ExtendedResourceToleration, ImagePolicyWebhook, LimitPodHardAntiAffinityTopology, LimitRanger, MutatingAdmissionWebhook, NamespaceAutoProvision, NamespaceExists, NamespaceLifecycle, NodeRestriction, OwnerReferencesPermissionEnforcement, PersistentVolumeClaimResize, PersistentVolumeLabel, PodNodeSelector, PodSecurity, PodSecurityPolicy, PodTolerationRestriction, Priority, ResourceQuota, RuntimeClass, SecurityContextDeny, ServiceAccount, StorageObjectInUseProtection, TaintNodesByCondition, ValidatingAdmissionWebhook. The order of plugins in this flag does not matter.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--enable-aggregator-routing</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Turns on aggregator routing requests to endpoints IP rather than cluster IP.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--enable-bootstrap-token-auth</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Enable to allow secrets of type 'bootstrap.kubernetes.io/token' in the 'kube-system' namespace to be used for TLS bootstrapping authentication.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--enable-garbage-collector&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: true</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Enables the generic garbage collector. MUST be synced with the corresponding flag of the kube-controller-manager.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--enable-priority-and-fairness&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: true</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true and the APIPriorityAndFairness feature gate is enabled, replace the max-in-flight handler with an enhanced one that queues and dispatches with priority and fairness</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--encryption-provider-config string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The file containing configuration for encryption providers to be used for storing secrets in etcd</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--endpoint-reconciler-type string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "lease"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Use an endpoint reconciler (master-count, lease, none)</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--etcd-cafile string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>SSL Certificate Authority file used to secure etcd communication.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--etcd-certfile string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>SSL certification file used to secure etcd communication.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--etcd-compaction-interval duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 5m0s</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The interval of compaction requests. If 0, the compaction request from apiserver is disabled.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--etcd-count-metric-poll-period duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 1m0s</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Frequency of polling etcd for number of resources per type. 0 disables the metric collection.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--etcd-db-metric-poll-interval duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 30s</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The interval of requests to poll etcd and update metric. 0 disables the metric collection</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--etcd-healthcheck-timeout duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 2s</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The timeout to use when checking etcd health.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--etcd-keyfile string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>SSL key file used to secure etcd communication.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--etcd-prefix string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/registry"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The prefix to prepend to all resource paths in etcd.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--etcd-servers strings</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>List of etcd servers to connect with (scheme://ip:port), comma separated.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--etcd-servers-overrides strings</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Per-resource etcd servers overrides, comma separated. The individual override format: group/resource#servers, where servers are URLs, semicolon separated. Note that this applies only to resources compiled into this server binary.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--event-ttl duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 1h0m0s</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Amount of time to retain events.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--experimental-logging-sanitization</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>[Experimental] When enabled prevents logging of fields tagged as sensitive (passwords, keys, tokens).<br/>Runtime log sanitization may introduce significant computation overhead and therefore should not be enabled in production.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--external-hostname string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The hostname to use when generating externalized URLs for this master (e.g. Swagger API Docs or OpenID Discovery).</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--feature-gates &lt;comma-separated 'key=True|False' pairs&gt;</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for alpha/experimental features. Options are:<br/>APIListChunking=true|false (BETA - default=true)<br/>APIPriorityAndFairness=true|false (BETA - default=true)<br/>APIResponseCompression=true|false (BETA - default=true)<br/>APIServerIdentity=true|false (ALPHA - default=false)<br/>APIServerTracing=true|false (ALPHA - default=false)<br/>AllAlpha=true|false (ALPHA - default=false)<br/>AllBeta=true|false (BETA - default=false)<br/>AnyVolumeDataSource=true|false (ALPHA - default=false)<br/>AppArmor=true|false (BETA - default=true)<br/>CPUManager=true|false (BETA - default=true)<br/>CPUManagerPolicyOptions=true|false (ALPHA - default=false)<br/>CSIInlineVolume=true|false (BETA - default=true)<br/>CSIMigration=true|false (BETA - default=true)<br/>CSIMigrationAWS=true|false (BETA - default=false)<br/>CSIMigrationAzureDisk=true|false (BETA - default=false)<br/>CSIMigrationAzureFile=true|false (BETA - default=false)<br/>CSIMigrationGCE=true|false (BETA - default=false)<br/>CSIMigrationOpenStack=true|false (BETA - default=true)<br/>CSIMigrationvSphere=true|false (BETA - default=false)<br/>CSIStorageCapacity=true|false (BETA - default=true)<br/>CSIVolumeFSGroupPolicy=true|false (BETA - default=true)<br/>CSIVolumeHealth=true|false (ALPHA - default=false)<br/>CSRDuration=true|false (BETA - default=true)<br/>ConfigurableFSGroupPolicy=true|false (BETA - default=true)<br/>ControllerManagerLeaderMigration=true|false (BETA - default=true)<br/>CustomCPUCFSQuotaPeriod=true|false (ALPHA - default=false)<br/>DaemonSetUpdateSurge=true|false (BETA - default=true)<br/>DefaultPodTopologySpread=true|false (BETA - default=true)<br/>DelegateFSGroupToCSIDriver=true|false (ALPHA - default=false)<br/>DevicePlugins=true|false (BETA - default=true)<br/>DisableAcceleratorUsageMetrics=true|false (BETA - default=true)<br/>DisableCloudProviders=true|false (ALPHA - default=false)<br/>DownwardAPIHugePages=true|false (BETA - default=false)<br/>EfficientWatchResumption=true|false (BETA - default=true)<br/>EndpointSliceTerminatingCondition=true|false (BETA - default=true)<br/>EphemeralContainers=true|false (ALPHA - default=false)<br/>ExpandCSIVolumes=true|false (BETA - default=true)<br/>ExpandInUsePersistentVolumes=true|false (BETA - default=true)<br/>ExpandPersistentVolumes=true|false (BETA - default=true)<br/>ExpandedDNSConfig=true|false (ALPHA - default=false)<br/>ExperimentalHostUserNamespaceDefaulting=true|false (BETA - default=false)<br/>GenericEphemeralVolume=true|false (BETA - default=true)<br/>GracefulNodeShutdown=true|false (BETA - default=true)<br/>HPAContainerMetrics=true|false (ALPHA - default=false)<br/>HPAScaleToZero=true|false (ALPHA - default=false)<br/>IPv6DualStack=true|false (BETA - default=true)<br/>InTreePluginAWSUnregister=true|false (ALPHA - default=false)<br/>InTreePluginAzureDiskUnregister=true|false (ALPHA - default=false)<br/>InTreePluginAzureFileUnregister=true|false (ALPHA - default=false)<br/>InTreePluginGCEUnregister=true|false (ALPHA - default=false)<br/>InTreePluginOpenStackUnregister=true|false (ALPHA - default=false)<br/>InTreePluginvSphereUnregister=true|false (ALPHA - default=false)<br/>IndexedJob=true|false (BETA - default=true)<br/>IngressClassNamespacedParams=true|false (BETA - default=true)<br/>JobTrackingWithFinalizers=true|false (ALPHA - default=false)<br/>KubeletCredentialProviders=true|false (ALPHA - default=false)<br/>KubeletInUserNamespace=true|false (ALPHA - default=false)<br/>KubeletPodResources=true|false (BETA - default=true)<br/>KubeletPodResourcesGetAllocatable=true|false (ALPHA - default=false)<br/>LocalStorageCapacityIsolation=true|false (BETA - default=true)<br/>LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - default=false)<br/>LogarithmicScaleDown=true|false (BETA - default=true)<br/>MemoryManager=true|false (BETA - default=true)<br/>MemoryQoS=true|false (ALPHA - default=false)<br/>MixedProtocolLBService=true|false (ALPHA - default=false)<br/>NetworkPolicyEndPort=true|false (BETA - default=true)<br/>NodeSwap=true|false (ALPHA - default=false)<br/>NonPreemptingPriority=true|false (BETA - default=true)<br/>PodAffinityNamespaceSelector=true|false (BETA - default=true)<br/>PodDeletionCost=true|false (BETA - default=true)<br/>PodOverhead=true|false (BETA - default=true)<br/>PodSecurity=true|false (ALPHA - default=false)<br/>PreferNominatedNode=true|false (BETA - default=true)<br/>ProbeTerminationGracePeriod=true|false (BETA - default=false)<br/>ProcMountType=true|false (ALPHA - default=false)<br/>ProxyTerminatingEndpoints=true|false (ALPHA - default=false)<br/>QOSReserved=true|false (ALPHA - default=false)<br/>ReadWriteOncePod=true|false (ALPHA - default=false)<br/>RemainingItemCount=true|false (BETA - default=true)<br/>RemoveSelfLink=true|false (BETA - default=true)<br/>RotateKubeletServerCertificate=true|false (BETA - default=true)<br/>SeccompDefault=true|false (ALPHA - default=false)<br/>ServiceInternalTrafficPolicy=true|false (BETA - default=true)<br/>ServiceLBNodePortControl=true|false (BETA - default=true)<br/>ServiceLoadBalancerClass=true|false (BETA - default=true)<br/>SizeMemoryBackedVolumes=true|false (BETA - default=true)<br/>StatefulSetMinReadySeconds=true|false (ALPHA - default=false)<br/>StorageVersionAPI=true|false (ALPHA - default=false)<br/>StorageVersionHash=true|false (BETA - default=true)<br/>SuspendJob=true|false (BETA - default=true)<br/>TTLAfterFinished=true|false (BETA - default=true)<br/>TopologyAwareHints=true|false (ALPHA - default=false)<br/>TopologyManager=true|false (BETA - default=true)<br/>VolumeCapacityPriority=true|false (ALPHA - default=false)<br/>WinDSR=true|false (ALPHA - default=false)<br/>WinOverlay=true|false (BETA - default=true)<br/>WindowsHostProcessContainers=true|false (ALPHA - default=false)</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--goaway-chance float</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>To prevent HTTP/2 clients from getting stuck on a single apiserver, randomly close a connection (GOAWAY). The client's other in-flight requests won't be affected, and the client will reconnect, likely landing on a different apiserver after going through the load balancer again. This argument sets the fraction of requests that will be sent a GOAWAY. Clusters with single apiservers, or which don't use a load balancer, should NOT enable this. Min is 0 (off), Max is .02 (1/50 requests); .001 (1/1000) is a recommended starting point.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>help for kube-apiserver</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--http2-max-streams-per-connection int</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The limit that the server gives to clients for the maximum number of streams in an HTTP/2 connection. Zero means to use golang's default.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--identity-lease-duration-seconds int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 3600</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The duration of kube-apiserver lease in seconds, must be a positive number. (In use when the APIServerIdentity feature gate is enabled.)</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--identity-lease-renew-interval-seconds int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 10</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The interval of kube-apiserver renewing its lease in seconds, must be a positive number. (In use when the APIServerIdentity feature gate is enabled.)</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--kubelet-certificate-authority string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Path to a cert file for the certificate authority.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--kubelet-client-certificate string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Path to a client cert file for TLS.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--kubelet-client-key string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Path to a client key file for TLS.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--kubelet-preferred-address-types strings&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "Hostname,InternalDNS,InternalIP,ExternalDNS,ExternalIP"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>List of the preferred NodeAddressTypes to use for kubelet connections.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--kubelet-timeout duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 5s</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Timeout for kubelet operations.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--kubernetes-service-node-port int</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If non-zero, the Kubernetes master service (which apiserver creates/maintains) will be of type NodePort, using this as the value of the port. If zero, the Kubernetes master service will be of type ClusterIP.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--lease-reuse-duration-seconds int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 60</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The time in seconds that each lease is reused. A lower value could avoid large number of objects reusing the same lease. Notice that a too small value may cause performance problems at storage layer.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--livez-grace-period duration</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>This option represents the maximum amount of time it should take for apiserver to complete its startup sequence and become live. From apiserver's start time to when this amount of time has elapsed, /livez will assume that unfinished post-start hooks will complete successfully and therefore return true.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--log-backtrace-at &lt;a string in the form 'file:N'&gt;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: :0</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>when logging hits line file:N, emit a stack trace</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--log-dir string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If non-empty, write log files in this directory</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--log-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If non-empty, use this log file</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--log-file-max-size uint&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 1800</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Defines the maximum size a log file can grow to. Unit is megabytes. If the value is 0, the maximum file size is unlimited.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--log-flush-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 5s</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Maximum number of seconds between log flushes</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--logging-format string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "text"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Sets the log format. Permitted formats: &quot;text&quot;.<br/>Non-default formats don't honor these flags: --add-dir-header, --alsologtostderr, --log-backtrace-at, --log-dir, --log-file, --log-file-max-size, --logtostderr, --one-output, --skip-headers, --skip-log-headers, --stderrthreshold, --vmodule, --log-flush-frequency.<br/>Non-default choices are currently alpha and subject to change without warning.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--logtostderr&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: true</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>log to standard error instead of files</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--master-service-namespace string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "default"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>DEPRECATED: the namespace from which the Kubernetes master services should be injected into pods.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--max-connection-bytes-per-sec int</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If non-zero, throttle each user connection to this number of bytes/sec. Currently only applies to long-running requests.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--max-mutating-requests-inflight int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 200</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>This and --max-requests-inflight are summed to determine the server's total concurrency limit (which must be positive) if --enable-priority-and-fairness is true. Otherwise, this flag limits the maximum number of mutating requests in flight, or a zero value disables the limit completely.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--max-requests-inflight int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 400</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>This and --max-mutating-requests-inflight are summed to determine the server's total concurrency limit (which must be positive) if --enable-priority-and-fairness is true. Otherwise, this flag limits the maximum number of non-mutating requests in flight, or a zero value disables the limit completely.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--min-request-timeout int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 1800</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>An optional field indicating the minimum number of seconds a handler must keep a request open before timing it out. Currently only honored by the watch request handler, which picks a randomized value above this number as the connection timeout, to spread out load.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--oidc-ca-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If set, the OpenID server's certificate will be verified by one of the authorities in the oidc-ca-file, otherwise the host's root CA set will be used.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--oidc-client-id string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The client ID for the OpenID Connect client, must be set if oidc-issuer-url is set.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--oidc-groups-claim string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If provided, the name of a custom OpenID Connect claim for specifying user groups. The claim value is expected to be a string or array of strings. This flag is experimental, please see the authentication documentation for further details.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--oidc-groups-prefix string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If provided, all groups will be prefixed with this value to prevent conflicts with other authentication strategies.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--oidc-issuer-url string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The URL of the OpenID issuer, only HTTPS scheme will be accepted. If set, it will be used to verify the OIDC JSON Web Token (JWT).</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--oidc-required-claim &lt;comma-separated 'key=value' pairs&gt;</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A key=value pair that describes a required claim in the ID Token. If set, the claim is verified to be present in the ID Token with a matching value. Repeat this flag to specify multiple claims.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--oidc-signing-algs strings&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "RS256"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Comma-separated list of allowed JOSE asymmetric signing algorithms. JWTs with a 'alg' header value not in this list will be rejected. Values are defined by RFC 7518 https://tools.ietf.org/html/rfc7518#section-3.1.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--oidc-username-claim string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "sub"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The OpenID claim to use as the user name. Note that claims other than the default ('sub') is not guaranteed to be unique and immutable. This flag is experimental, please see the authentication documentation for further details.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--oidc-username-prefix string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If provided, all usernames will be prefixed with this value. If not provided, username claims other than 'email' are prefixed by the issuer URL to avoid clashes. To skip any prefixing, provide the value '-'.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--one-output</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, only write logs to their native severity level (vs also writing to each lower severity level)</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--permit-address-sharing</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, SO_REUSEADDR will be used when binding the port. This allows binding to wildcard IPs like 0.0.0.0 and specific IPs in parallel, and it avoids waiting for the kernel to release sockets in TIME_WAIT state. [default=false]</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--permit-port-sharing</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, SO_REUSEPORT will be used when binding the port, which allows more than one instance to bind on the same address and port. [default=false]</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--profiling&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: true</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Enable profiling via web interface host:port/debug/pprof/</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--proxy-client-cert-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Client certificate used to prove the identity of the aggregator or kube-apiserver when it must call out during a request. This includes proxying requests to a user api-server and calling out to webhook admission plugins. It is expected that this cert includes a signature from the CA in the --requestheader-client-ca-file flag. That CA is published in the 'extension-apiserver-authentication' configmap in the kube-system namespace. Components receiving calls from kube-aggregator should use that CA to perform their half of the mutual TLS verification.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--proxy-client-key-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Private key for the client certificate used to prove the identity of the aggregator or kube-apiserver when it must call out during a request. This includes proxying requests to a user api-server and calling out to webhook admission plugins.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--request-timeout duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 1m0s</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>An optional field indicating the duration a handler must keep a request open before timing it out. This is the default request timeout for requests but may be overridden by flags such as --min-request-timeout for specific types of requests.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--requestheader-allowed-names strings</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>List of client certificate common names to allow to provide usernames in headers specified by --requestheader-username-headers. If empty, any client certificate validated by the authorities in --requestheader-client-ca-file is allowed.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--requestheader-client-ca-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Root certificate bundle to use to verify client certificates on incoming requests before trusting usernames in headers specified by --requestheader-username-headers. WARNING: generally do not depend on authorization being already done for incoming requests.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--requestheader-extra-headers-prefix strings</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>List of request header prefixes to inspect. X-Remote-Extra- is suggested.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--requestheader-group-headers strings</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>List of request headers to inspect for groups. X-Remote-Group is suggested.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--requestheader-username-headers strings</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>List of request headers to inspect for usernames. X-Remote-User is common.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--runtime-config &lt;comma-separated 'key=value' pairs&gt;</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that enable or disable built-in APIs. Supported options are:<br/>v1=true|false for the core API group<br/>&lt;group&gt;/&lt;version&gt;=true|false for a specific API group and version (e.g. apps/v1=true)<br/>api/all=true|false controls all API versions<br/>api/ga=true|false controls all API versions of the form v[0-9]+<br/>api/beta=true|false controls all API versions of the form v[0-9]+beta[0-9]+<br/>api/alpha=true|false controls all API versions of the form v[0-9]+alpha[0-9]+<br/>api/legacy is deprecated, and will be removed in a future version</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--secure-port int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 6443</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The port on which to serve HTTPS with authentication and authorization. It cannot be switched off with 0.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--service-account-extend-token-expiration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: true</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Turns on projected service account expiration extension during token generation, which helps safe transition from legacy token to bound service account token feature. If this flag is enabled, admission injected tokens would be extended up to 1 year to prevent unexpected failure during transition, ignoring value of service-account-max-token-expiration.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--service-account-issuer strings</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Identifier of the service account token issuer. The issuer will assert this identifier in &quot;iss&quot; claim of issued tokens. This value is a string or URI. If this option is not a valid URI per the OpenID Discovery 1.0 spec, the ServiceAccountIssuerDiscovery feature will remain disabled, even if the feature gate is set to true. It is highly recommended that this value comply with the OpenID spec: https://openid.net/specs/openid-connect-discovery-1_0.html. In practice, this means that service-account-issuer must be an https URL. It is also highly recommended that this URL be capable of serving OpenID discovery documents at {service-account-issuer}/.well-known/openid-configuration. When this flag is specified multiple times, the first is used to generate tokens and all are used to determine which issuers are accepted.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--service-account-jwks-uri string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Overrides the URI for the JSON Web Key Set in the discovery doc served at /.well-known/openid-configuration. This flag is useful if the discovery docand key set are served to relying parties from a URL other than the API server's external (as auto-detected or overridden with external-hostname). Only valid if the ServiceAccountIssuerDiscovery feature gate is enabled.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--service-account-key-file strings</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>File containing PEM-encoded x509 RSA or ECDSA private or public keys, used to verify ServiceAccount tokens. The specified file can contain multiple keys, and the flag can be specified multiple times with different files. If unspecified, --tls-private-key-file is used. Must be specified when --service-account-signing-key is provided</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--service-account-lookup&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: true</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, validate ServiceAccount tokens exist in etcd as part of authentication.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--service-account-max-token-expiration duration</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The maximum validity duration of a token created by the service account token issuer. If an otherwise valid TokenRequest with a validity duration larger than this value is requested, a token will be issued with a validity duration of this value.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--service-account-signing-key-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Path to the file that contains the current private key of the service account token issuer. The issuer will sign issued ID tokens with this private key.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--service-cluster-ip-range string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A CIDR notation IP range from which to assign service cluster IPs. This must not overlap with any IP ranges assigned to nodes or pods. Max of two dual-stack CIDRs is allowed.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--service-node-port-range &lt;a string in the form 'N1-N2'&gt;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 30000-32767</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A port range to reserve for services with NodePort visibility. Example: '30000-32767'. Inclusive at both ends of the range.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--show-hidden-metrics-for-version string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The previous version for which you want to show hidden metrics. Only the previous minor version is meaningful, other values will not be allowed. The format is &lt;major&gt;.&lt;minor&gt;, e.g.: '1.16'. The purpose of this format is make sure you have the opportunity to notice if the next release hides additional metrics, rather than being surprised when they are permanently removed in the release after that.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--shutdown-delay-duration duration</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Time to delay the termination. During that time the server keeps serving requests normally. The endpoints /healthz and /livez will return success, but /readyz immediately returns failure. Graceful termination starts after this delay has elapsed. This can be used to allow load balancer to stop sending traffic to this server.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--skip-headers</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, avoid header prefixes in the log messages</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--skip-log-headers</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If true, avoid headers when opening log files</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--stderrthreshold int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 2</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>logs at or above this threshold go to stderr</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--storage-backend string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The storage backend for persistence. Options: 'etcd3' (default).</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--storage-media-type string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "application/vnd.kubernetes.protobuf"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The media type to use to store objects in storage. Some resources or storage backends may only support a specific media type and will ignore this setting.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--strict-transport-security-directives strings</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>List of directives for HSTS, comma separated. If this list is empty, then HSTS directives will not be added. Example: 'max-age=31536000,includeSubDomains,preload'</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--tls-cert-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>File containing the default x509 Certificate for HTTPS. (CA cert, if any, concatenated after server cert). If HTTPS serving is enabled, and --tls-cert-file and --tls-private-key-file are not provided, a self-signed certificate and key are generated for the public address and saved to the directory specified by --cert-dir.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--tls-cipher-suites strings</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Comma-separated list of cipher suites for the server. If omitted, the default Go cipher suites will be used.<br/>Preferred values: TLS_AES_128_GCM_SHA256, TLS_AES_256_GCM_SHA384, TLS_CHACHA20_POLY1305_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_GCM_SHA384.<br/>Insecure values: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_RC4_128_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_RC4_128_SHA.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--tls-min-version string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Minimum TLS version supported. Possible values: VersionTLS10, VersionTLS11, VersionTLS12, VersionTLS13</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--tls-private-key-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>File containing the default x509 private key matching --tls-cert-file.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--tls-sni-cert-key string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A pair of x509 certificate and private key file paths, optionally suffixed with a list of domain patterns which are fully qualified domain names, possibly with prefixed wildcard segments. The domain patterns also allow IP addresses, but IPs should only be used if the apiserver has visibility to the IP address requested by a client. If no domain patterns are provided, the names of the certificate are extracted. Non-wildcard matches trump over wildcard matches, explicit domain patterns trump over extracted names. For multiple key/certificate pairs, use the --tls-sni-cert-key multiple times. Examples: &quot;example.crt,example.key&quot; or &quot;foo.crt,foo.key:*.foo.com,foo.com&quot;.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--token-auth-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>If set, the file that will be used to secure the secure port of the API server via token authentication.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--tracing-config-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>File with apiserver tracing configuration.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">-v, --v int</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>number for the log level verbosity</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--version version[=true]</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Print version information and quit</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--vmodule &lt;comma-separated 'pattern=N' settings&gt;</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>comma-separated list of pattern=N settings for file-filtered logging</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--watch-cache&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: true</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Enable watch caching in the apiserver</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--watch-cache-sizes strings</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Watch cache size settings for some resources (pods, nodes, etc.), comma separated. The individual setting format: resource[.group]#size, where resource is lowercase plural (no version), group is omitted for resources of apiVersion v1 (the legacy core API) and included for others, and size is a number. It takes effect when watch-cache is enabled. Some resources (replicationcontrollers, endpoints, nodes, pods, services, apiservices.apiregistration.k8s.io) have system defaults set by heuristics, others default to default-watch-cache-size</p></td>
+</tr>
+
+</tbody>
+</table>
+
+
+
diff --git a/content/zh/docs/reference/config-api/apiserver-audit.v1.md b/content/ja/docs/reference/config-api/apiserver-audit.v1.md
similarity index 96%
rename from content/zh/docs/reference/config-api/apiserver-audit.v1.md
rename to content/ja/docs/reference/config-api/apiserver-audit.v1.md
index c2e4a37704..11df06bd8c 100644
--- a/content/zh/docs/reference/config-api/apiserver-audit.v1.md
+++ b/content/ja/docs/reference/config-api/apiserver-audit.v1.md
@@ -81,7 +81,7 @@ For non-resource requests, this is the lower-cased HTTP method.</td>
     
   
 <tr><td><code>user</code> <B>[Required]</B><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.20/#userinfo-v1-authentication"><code>authentication/v1.UserInfo</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#userinfo-v1-authentication"><code>authentication/v1.UserInfo</code></a>
 </td>
 <td>
    Authenticated user information.</td>
@@ -89,7 +89,7 @@ For non-resource requests, this is the lower-cased HTTP method.</td>
     
   
 <tr><td><code>impersonatedUser</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.20/#userinfo-v1-authentication"><code>authentication/v1.UserInfo</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#userinfo-v1-authentication"><code>authentication/v1.UserInfo</code></a>
 </td>
 <td>
    Impersonated user information.</td>
@@ -123,7 +123,7 @@ Does not apply for List-type requests, or non-resource requests.</td>
     
   
 <tr><td><code>responseStatus</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.20/#status-v1-meta"><code>meta/v1.Status</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#status-v1-meta"><code>meta/v1.Status</code></a>
 </td>
 <td>
    The response status, populated even when the ResponseObject is not a Status type.
@@ -154,7 +154,7 @@ at Response Level.</td>
     
   
 <tr><td><code>requestReceivedTimestamp</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.20/#microtime-v1-meta"><code>meta/v1.MicroTime</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#microtime-v1-meta"><code>meta/v1.MicroTime</code></a>
 </td>
 <td>
    Time the request reached the apiserver.</td>
@@ -162,7 +162,7 @@ at Response Level.</td>
     
   
 <tr><td><code>stageTimestamp</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.20/#microtime-v1-meta"><code>meta/v1.MicroTime</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#microtime-v1-meta"><code>meta/v1.MicroTime</code></a>
 </td>
 <td>
    Time the request reached current audit stage.</td>
@@ -206,7 +206,7 @@ EventList is a list of audit Events.
   
   
 <tr><td><code>metadata</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.20/#listmeta-v1-meta"><code>meta/v1.ListMeta</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#listmeta-v1-meta"><code>meta/v1.ListMeta</code></a>
 </td>
 <td>
    <span class="text-muted">No description provided.</span>
@@ -252,7 +252,7 @@ categories are logged.
   
   
 <tr><td><code>metadata</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.20/#objectmeta-v1-meta"><code>meta/v1.ObjectMeta</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#objectmeta-v1-meta"><code>meta/v1.ObjectMeta</code></a>
 </td>
 <td>
    ObjectMeta is included for interoperability with API infrastructure.Refer to the Kubernetes API documentation for the fields of the <code>metadata</code> field.</td>
@@ -303,7 +303,7 @@ PolicyList is a list of audit Policies.
   
   
 <tr><td><code>metadata</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.20/#listmeta-v1-meta"><code>meta/v1.ListMeta</code></a>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.21/#listmeta-v1-meta"><code>meta/v1.ListMeta</code></a>
 </td>
 <td>
    <span class="text-muted">No description provided.</span>
@@ -614,3 +614,7 @@ An empty list means no restrictions will apply.</td>
 
 
 Stage defines the stages in request handling that audit events may be generated.
+
+
+    
+  
diff --git a/content/ja/docs/reference/glossary/api-eviction.md b/content/ja/docs/reference/glossary/api-eviction.md
new file mode 100644
index 0000000000..25677032b9
--- /dev/null
+++ b/content/ja/docs/reference/glossary/api-eviction.md
@@ -0,0 +1,23 @@
+---
+title: APIを起点とした退避
+id: api-eviction
+date: 2021-04-27
+full_link: /ja/docs/concepts/scheduling-eviction/api-eviction/
+short_description: >
+  APIを起点とした退避は、Eviction　APIを使用してEvictionオブジェクトを作成し、Podの正常終了を起動させるプロセスです。
+aka:
+tags:
+- operation
+---
+APIを起点とした退避は、[Eviction API](/docs/reference/generated/kubernetes-api/{{<param "version">}}/#create-eviction-pod-v1-core)を使用して退避オブジェクトを作成し、Podの正常終了を起動させるプロセスです。
+
+
+<!--more-->
+
+`kubectl drain`コマンドのようなkube-apiserverのクライアントを使用し、Eviction APIを直接呼び出すことで、退避を要求することができます。`Eviction`オブジェクトが生成された時、APIサーバーは対象のPodを終了させます。
+
+APIを起点とした退避は[`PodDisruptionBudgets`](/docs/tasks/run-application/configure-pdb/)と[`terminationGracePeriodSeconds`](/ja/docs/concepts/workloads/pods/pod-lifecycle#pod-termination)の設定を優先します。
+
+APIを起点とした退避は、[Node不足による退避](/docs/concepts/scheduling-eviction/eviction/#kubelet-eviction)とは異なります。
+
+* 詳しくは[APIを起点とした退避](/ja/docs/concepts/scheduling-eviction/api-eviction/)をご覧ください。
diff --git a/content/ja/docs/reference/glossary/cloud-controller-manager.md b/content/ja/docs/reference/glossary/cloud-controller-manager.md
index 6e9c9104da..d0e705c7c1 100644
--- a/content/ja/docs/reference/glossary/cloud-controller-manager.md
+++ b/content/ja/docs/reference/glossary/cloud-controller-manager.md
@@ -4,7 +4,7 @@ id: cloud-controller-manager
 date: 2018-04-12
 full_link: /ja/docs/concepts/architecture/cloud-controller/
 short_description: >
-  サードパーティクラウドプロバイダーにKubernetewを結合するコントロールプレーンコンポーネント
+  サードパーティクラウドプロバイダーにKubernetesを結合するコントロールプレーンコンポーネント
 aka: 
 tags:
 - core-object
diff --git a/content/ja/docs/reference/glossary/container.md b/content/ja/docs/reference/glossary/container.md
index 480934867a..0320a4c302 100644
--- a/content/ja/docs/reference/glossary/container.md
+++ b/content/ja/docs/reference/glossary/container.md
@@ -2,7 +2,7 @@
 title: コンテナ
 id: container
 date: 2018-04-12
-full_link: /docs/concepts/overview/what-is-kubernetes/#why-containers
+full_link: /ja/docs/concepts/overview/what-is-kubernetes/#why-containers
 short_description: >
   軽量でポータブルなソフトウェアとそのすべての依存関係が含まれている実行可能なイメージです。
 
diff --git a/content/ja/docs/reference/glossary/controller.md b/content/ja/docs/reference/glossary/controller.md
index d5ce544edd..98a3a0cc01 100644
--- a/content/ja/docs/reference/glossary/controller.md
+++ b/content/ja/docs/reference/glossary/controller.md
@@ -2,7 +2,7 @@
 title: Controller
 id: controller
 date: 2018-04-12
-full_link: /docs/concepts/architecture/controller/
+full_link: /ja/docs/concepts/architecture/controller/
 short_description: >
   クラスターの状態をAPIサーバーから取得、見張る制御ループで、現在の状態を望ましい状態に移行するように更新します。
 
diff --git a/content/ja/docs/reference/glossary/kube-apiserver.md b/content/ja/docs/reference/glossary/kube-apiserver.md
index c7a7cfec19..a6c73532d6 100644
--- a/content/ja/docs/reference/glossary/kube-apiserver.md
+++ b/content/ja/docs/reference/glossary/kube-apiserver.md
@@ -2,7 +2,7 @@
 title: APIサーバー
 id: kube-apiserver
 date: 2018-04-12
-full_link: /docs/concepts/overview/components/#kube-apiserver
+full_link: /ja/docs/concepts/overview/components/#kube-apiserver
 short_description: >
   Kubernetes APIを提供するコントロールプレーンのコンポーネントです。
 
diff --git a/content/ja/docs/reference/glossary/namespace.md b/content/ja/docs/reference/glossary/namespace.md
index 7bc6a0c703..2772ee9140 100644
--- a/content/ja/docs/reference/glossary/namespace.md
+++ b/content/ja/docs/reference/glossary/namespace.md
@@ -2,7 +2,7 @@
 title: Namespace
 id: namespace
 date: 2018-04-12
-full_link: /docs/concepts/overview/working-with-objects/namespaces
+full_link: /ja/docs/concepts/overview/working-with-objects/namespaces
 short_description: >
   同一の物理クラスター上で複数の仮想クラスターをサポートするために使われる抽象概念です。
 
diff --git a/content/ja/docs/reference/glossary/replica-set.md b/content/ja/docs/reference/glossary/replica-set.md
new file mode 100644
index 0000000000..97134927b9
--- /dev/null
+++ b/content/ja/docs/reference/glossary/replica-set.md
@@ -0,0 +1,20 @@
+---
+title: ReplicaSet
+id: replica-set
+date: 2018-04-12
+full_link: /ja/docs/concepts/workloads/controllers/replicaset/
+short_description: >
+  ReplicaSetは、指定された数のPodレプリカが一度に動作するように保証します。
+
+aka:
+tags:
+- fundamental
+- core-object
+- workload
+---
+ ReplicaSetは、任意の時点で動作しているレプリカPodの集合を保持します。(保持することを目指します。)
+
+<!--more-->
+{{< glossary_tooltip term_id="deployment" >}}などのワークロードオブジェクトは、ReplicaSetの仕様に基づいて、
+設定された数の{{< glossary_tooltip term_id="pod" text="Pods" >}}がクラスターで稼働することを保証するために、
+ReplicaSetを使用します。
diff --git a/content/ja/docs/reference/glossary/service-catalog.md b/content/ja/docs/reference/glossary/service-catalog.md
index 328bcf7280..b05d1528d8 100644
--- a/content/ja/docs/reference/glossary/service-catalog.md
+++ b/content/ja/docs/reference/glossary/service-catalog.md
@@ -13,4 +13,4 @@ tags:
  Kubernetesクラスターで稼働するアプリケーションが、クラウドプロバイダーによって提供されるデータストアサービスのように、外部のマネージドソフトウェアを容易に使えるようにするための拡張APIです。
 
 <!--more--> 
-サービスカタログを使用することで{{< glossary_tooltip text="サービスブローカー" term_id="service-broker" >}}が提供する{{< glossary_tooltip text="マネージドサービス" term_id="managed-service" >}}を、それらのサービスがどのように作成されるか、また管理されるかについての知識を無しに、一覧表示したり、プロビジョニングや使用をすることができます。
+サービスカタログを使用することで、提供されている{{< glossary_tooltip text="マネージドサービス" term_id="managed-service" >}}を、それらのサービスがどのように作成されるか、また管理されるかについての知識を無しに、一覧表示したり、プロビジョニングや使用をすることができます。
diff --git a/content/ja/docs/reference/kubectl/cheatsheet.md b/content/ja/docs/reference/kubectl/cheatsheet.md
index d93d02551b..681eecf96a 100644
--- a/content/ja/docs/reference/kubectl/cheatsheet.md
+++ b/content/ja/docs/reference/kubectl/cheatsheet.md
@@ -200,10 +200,10 @@ kubectl diff -f ./my-manifest.yaml
 
 # Nodeから返されるすべてのキーをピリオド区切りの階層表記で生成します。
 # 複雑にネストされたJSON構造をもつキーを指定したい時に便利です
-kubectl get nodes -o json | jq -c 'path(..)|[.[]|tostring]|join(".")'
+kubectl get nodes -o json | jq -c 'paths|join(".")'
 
 # Pod等から返されるすべてのキーをピリオド区切り階層表記で生成します。
-kubectl get pods -o json | jq -c 'path(..)|[.[]|tostring]|join(".")'
+kubectl get pods -o json | jq -c 'paths|join(".")'
 ```
 
 ## リソースのアップデート
@@ -307,9 +307,9 @@ kubectl top pod POD_NAME --containers               # 特定のPodとそのコ
 ## ノードおよびクラスターとの対話処理
 
 ```bash
-kubectl cordon my-node                                                # my-nodeをスケーリングされないように設定します
+kubectl cordon my-node                                                # my-nodeをスケジューリング不能に設定します
 kubectl drain my-node                                                 # メンテナンスの準備としてmy-nodeで動作中のPodを空にします
-kubectl uncordon my-node                                              # my-nodeをスケーリングされるように設定します
+kubectl uncordon my-node                                              # my-nodeをスケジューリング可能に設定します
 kubectl top node my-node                                              # 特定のノードのメトリクスを表示します
 kubectl cluster-info                                                  # Kubernetesクラスターのマスターとサービスのアドレスを表示します
 kubectl cluster-info dump                                             # 現在のクラスター状態を標準出力にダンプします
@@ -347,7 +347,7 @@ kubectl api-resources --api-group=extensions # "extensions" APIグループの
 `-o=custom-columns=<spec>` | コンマ区切りされたカスタムカラムのリストを指定してテーブルを表示します
 `-o=custom-columns-file=<filename>` | `<filename>`ファイル内のカスタムカラムテンプレートを使用してテーブルを表示します
 `-o=json`     | JSON形式のAPIオブジェクトを出力します
-`-o=jsonpath=<template>` | [jsonpath](/docs/reference/kubectl/jsonpath)式で定義されたフィールドを出力します
+`-o=jsonpath=<template>` | [jsonpath](/ja/docs/reference/kubectl/jsonpath)式で定義されたフィールドを出力します
 `-o=jsonpath-file=<filename>` | `<filename>`ファイル内の[jsonpath](/docs/reference/kubectl/jsonpath)式で定義されたフィールドを出力します
 `-o=name`     | リソース名のみを出力し、それ以外は何も出力しません。
 `-o=wide`     | 追加の情報を含むプレーンテキスト形式で出力します。Podの場合、Node名が含まれます。
diff --git a/content/ja/docs/reference/kubectl/conventions.md b/content/ja/docs/reference/kubectl/conventions.md
new file mode 100644
index 0000000000..338c97152a
--- /dev/null
+++ b/content/ja/docs/reference/kubectl/conventions.md
@@ -0,0 +1,58 @@
+---
+title: kubectlの使用規則
+content_type: concept
+---
+
+<!-- overview -->
+`kubectl`の推奨される使用規則です。
+
+<!-- body -->
+
+## 再利用可能なスクリプトでの`kubectl`の使用
+
+スクリプトでの安定した出力のために:
+
+* `-o name`, `-o json`, `-o yaml`, `-o go-template`, `-o jsonpath` などの機械指向の出力形式のいずれかを必要します。
+* バージョンを完全に指定します。例えば、`jobs.v1.batch/myjob`のようにします。これにより、kubectlが時間とともに変化する可能性のあるデフォルトのバージョンを使用しないようにします。
+* コンテキストや設定、その他の暗黙的な状態に頼ってはいけません。
+
+## ベストプラクティス
+
+### `kubectl run`
+
+`kubectl run`がインフラのコード化を満たすために:
+
+* イメージにバージョン固有のタグを付けて、そのタグを新しいバージョンに移さない。例えば、`:latest`ではなく、`:v1234`、`v1.2.3`、`r03062016-1-4`を使用してください(詳細は、[Best Practices for Configuration](/docs/concepts/configuration/overview/#container-images)を参照してください)。
+* パラメーターが多用されているイメージをスクリプトでチェックします。
+* `kubectl run` フラグでは表現できない機能を、ソースコントロールでチェックした設定ファイルに切り替えます。
+
+`dry-run=client` フラグを使用すると、実際に送信することなく、クラスターに送信されるオブジェクトを確認することができます。
+
+{{< note >}}
+すべての`kubectl run`ジェネレーターは非推奨です。ジェネレーターの[リスト](https://v1-17.docs.kubernetes.io/docs/reference/kubectl/conventions/#generators)とその使用方法については、Kubernetes v1.17のドキュメントを参照してください。
+{{< /note >}}
+
+#### Generators
+`kubectl create --dry-run=client -o yaml`というkubectlコマンドで以下のリソースを生成することができます。
+
+* `clusterrole`: ClusterRoleを作成します。
+* `clusterrolebinding`:  特定のClusterRoleに対するClusterRoleBindingを作成します。
+* `configmap`: ローカルファイル、ディレクトリ、またはリテラル値からConfigMapを作成します。
+* `cronjob`: 指定された名前のCronJobを作成します。
+* `deployment`: 指定された名前でDeploymentを作成します。
+* `job`: 指定された名前でJobを作成します。
+* `namespace`: 指定された名前でNamespaceを作成します。
+* `poddisruptionbudget`:  指定された名前でPodDisruptionBudgetを作成します。
+* `priorityclass`: 指定された名前でPriorityClassを作成します。
+* `quota`: 指定された名前でQuotaを作成します。
+* `role`: 1つのルールでRoleを作成します。
+* `rolebinding`: 特定のロールやClusterRoleに対するRoleBindingを作成します。
+* `secret`: 指定されたサブコマンドを使用してSecretを作成します。
+* `service`: 指定されたサブコマンドを使用してServiceを作成します。
+* `ServiceAccount`: 指定された名前でServiceAccountを作成します。
+
+### `kubectl apply`
+
+* リソースの作成や更新には `kubectl apply` を使用できます。kubectl applyを使ったリソースの更新については、[Kubectl Book](https://kubectl.docs.kubernetes.io)を参照してください。
+
+
diff --git a/content/ja/docs/reference/kubectl/overview.md b/content/ja/docs/reference/kubectl/overview.md
index c5855ce4af..5b9b8fb016 100644
--- a/content/ja/docs/reference/kubectl/overview.md
+++ b/content/ja/docs/reference/kubectl/overview.md
@@ -8,7 +8,7 @@ card:
 ---
 
 <!-- overview -->
-`kubectl`コマンドラインツールを使うと、Kubernetesクラスターを制御できます。環境設定のために、`kubectl`は、`$HOME/.kube`ディレクトリにある`config`という名前のファイルを探します。他の[kubeconfig](/docs/concepts/configuration/organize-cluster-access-kubeconfig/)ファイルは、`KUBECONFIG`環境変数を設定するか、[`--kubeconfig`](/docs/concepts/configuration/organize-cluster-access-kubeconfig/)フラグを設定することで指定できます。
+`kubectl`コマンドラインツールを使うと、Kubernetesクラスターを制御できます。環境設定のために、`kubectl`は、`$HOME/.kube`ディレクトリにある`config`という名前のファイルを探します。他の[kubeconfig](/ja/docs/concepts/configuration/organize-cluster-access-kubeconfig/)ファイルは、`KUBECONFIG`環境変数を設定するか、[`--kubeconfig`](/docs/concepts/configuration/organize-cluster-access-kubeconfig/)フラグを設定することで指定できます。
 この概要では、`kubectl`の構文を扱い、コマンド操作を説明し、一般的な例を示します。サポートされているすべてのフラグやサブコマンドを含め、各コマンドの詳細については、[kubectl](/docs/reference/generated/kubectl/kubectl-commands/)リファレンスドキュメントを参照してください。インストール方法については、[kubectlのインストールおよびセットアップ](/ja/docs/tasks/tools/install-kubectl/)をご覧ください。
 
 
diff --git a/content/ja/docs/reference/scheduling/_index.md b/content/ja/docs/reference/scheduling/_index.md
new file mode 100644
index 0000000000..316b774081
--- /dev/null
+++ b/content/ja/docs/reference/scheduling/_index.md
@@ -0,0 +1,5 @@
+---
+title: Scheduling
+weight: 70
+toc-hide: true
+---
diff --git a/content/ja/docs/reference/scheduling/config.md b/content/ja/docs/reference/scheduling/config.md
new file mode 100644
index 0000000000..8bf593ff4c
--- /dev/null
+++ b/content/ja/docs/reference/scheduling/config.md
@@ -0,0 +1,387 @@
+---
+title: スケジューラーの設定
+content_type: concept
+weight: 20
+---
+
+{{< feature-state for_k8s_version="v1.19" state="beta" >}}
+
+設定ファイルを作成し、そのパスをコマンドライン引数として渡すことで`kube-scheduler`の振る舞いをカスタマイズすることができます。
+
+
+<!-- overview -->
+
+<!-- body -->
+
+スケジューリングプロファイルは、{{< glossary_tooltip text="kube-scheduler" term_id="kube-scheduler" >}}でスケジューリングの異なるステージを設定することができます。
+各ステージは、拡張点に公開されています。プラグインをそれらの拡張点に1つ以上実装することで、スケジューリングの振る舞いを変更できます。
+
+KubeSchedulerConfiguration([`v1beta2`](/docs/reference/config-api/kube-scheduler-config.v1beta2/)か[`v1beta3`](/docs/reference/config-api/kube-scheduler-config.v1beta3/))構造体を使用して、`kube-scheduler --config <filename>`を実行することで、スケジューリングプロファイルを指定することができます。
+
+最小限の設定は次の通りです。
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta2
+kind: KubeSchedulerConfiguration
+clientConnection:
+  kubeconfig: /etc/srv/kubernetes/kube-scheduler/kubeconfig
+```
+
+## プロファイル
+
+スケジューリングプロファイルは、{{< glossary_tooltip text="kube-scheduler" term_id="kube-scheduler" >}}でスケジューリングの異なるステージを設定することができます。
+各ステージは[拡張点](#extension-points)に公開されています。
+[プラグイン](#scheduling-plugins)をそれらの拡張点に1つ以上実装することで、スケジューリングの振る舞いを変更できます。
+
+単一の`kube-scheduler`インスタンスで[複数のプロファイル](#multiple-profiles)を実行するように設定することも可能です。
+
+### 拡張点 {#extension-points}
+
+スケジューリングは一連のステージで行われ、以下の拡張点に公開されています。
+
+1. `queueSort`: これらのプラグインは、スケジューリングキューにある`pending`状態のPodをソートするための順序付け関数を提供します。同時に有効化できるプラグインは1つだけです。
+1. `preFilter`: これらのプラグインは、フィルタリングをする前にPodやクラスターの情報のチェックや前処理のために使用されます。これらのプラグインは、設定された順序で呼び出されます。
+1. `filter`: これらのプラグインは、スケジューリングポリシーにおけるPredicatesに相当するもので、Podの実行不可能なNodeをフィルターするために使用されます。もし全てのNodeがフィルターされてしまった場合、Podはunschedulableとしてマークされます。
+1. `postFilter`:これらのプラグインは、Podの実行可能なNodeが見つからなかった場合、設定された順序で呼び出されます。もし`postFilter`プラグインのいずれかが、Podを __スケジュール可能__ とマークした場合、残りの`postFilter`プラグインは呼び出されません。
+1. `preScore`: これは、スコアリング前の作業を行う際に使用できる情報提供のための拡張点です。
+1. `score`: これらのプラグインはフィルタリングフェーズを通過してきたそれぞれのNodeに対してスコア付けを行います。その後スケジューラーは、最も高い重み付きスコアの合計を持つノードを選択します。
+1. `reserve`: これは、指定されたPodのためにリソースが予約された際に、プラグインに通知する、情報提供のための拡張点です。また、プラグインは`Reserve`中に失敗した際、または`Reserve`の後に呼び出される`Unreserve`も実装しています。
+1. `permit`: これらのプラグインではPodのバインディングを拒む、または遅延させることができます。
+1. `preBind`: これらのプラグインは、Podがバインドされる前に必要な処理を実行できます。
+1. `bind`: これらのプラグインはPodをNodeにバインドします。`bind`プラグインは順番に呼び出され、1つのプラグインがバインドを完了すると、残りのプラグインはスキップされます。`bind`プラグインは少なくとも1つは必要です。
+1. `postBind`: これは、Podがバインドされた後に呼び出される情報提供のための拡張点です。
+1. `multiPoint`: このフィールドは設定のみ可能で、プラグインが適用されるすべての拡張点に対して同時に有効化または無効化することができます。
+
+次の例のように、それぞれの拡張点に対して、特定の[デフォルトプラグイン](#scheduling-plugins)を無効化、または自作のプラグインを有効化することができます。
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta2
+kind: KubeSchedulerConfiguration
+profiles:
+  - plugins:
+      score:
+        disabled:
+        - name: PodTopologySpread
+        enabled:
+        - name: MyCustomPluginA
+          weight: 2
+        - name: MyCustomPluginB
+          weight: 1
+```
+
+`disabled`配列の`name`フィールドに`*`を使用することで、その拡張点の全てのデフォルトプラグインを無効化できます。また、必要に応じてプラグインの順序を入れ替える場合にも使用されます。
+
+### Scheduling plugins {#scheduling-plugins}
+
+以下のプラグインはデフォルトで有効化されており、1つ以上の拡張点に実装されています。
+
+- `ImageLocality`:Podが実行するコンテナイメージを既に持っているNodeを優先します。
+  拡張点:`score`
+- `TaintToleration`:[TaintsとTolerations](/ja/docs/concepts/scheduling-eviction/taint-and-toleration/)を実行します。
+  実装する拡張点:`filter`、`preScore`、`score`
+- `NodeName`: PodのSpecのNode名が、現在のNodeと一致するかをチェックします。
+  拡張点:`filter`
+- `NodePorts`:要求されたPodのポートに対して、Nodeが空きポートを持っているかチェックします。
+  拡張点:`preFilter`、`filter`
+- `NodeAffinity`:[nodeselectors](/ja/docs/concepts/scheduling-eviction/assign-pod-node/#nodeselector)と[Nodeアフィニティ](/ja/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity)を実行します。
+  拡張点:`filter`、`score`
+- `PodTopologySpread`:[Podトポロジーの分散制約](/docs/concepts/workloads/pods/pod-topology-spread-constraints/)を実行します。
+  拡張点:`preFilter`、`filter`、`preScore`、`score`
+- `NodeUnschedulable`:`.spec.unschedulable`がtrueに設定されているNodeをフィルタリングします。
+  拡張点:`filter`.
+- `NodeResourcesFit`:Podが要求しているすべてのリソースがNodeにあるかをチェックします。スコアは3つのストラテジのうちの1つを使用します:`LeastAllocated`(デフォルト)、`MostAllocated`、 と`RequestedToCapacityRatio`
+  拡張点:`preFilter`、`filter`、`score`
+- `NodeResourcesBalancedAllocation`:Podがスケジュールされた場合に、よりバランスの取れたリソース使用量となるNodeを優先します。
+  拡張点:`score`
+- `VolumeBinding`:Nodeが、要求された{{< glossary_tooltip text="ボリューム" term_id="volume" >}}を持っている、もしくはバインドしているかチェックします。
+  拡張点:`preFilter`、`filter`、`reserve`、`preBind`、`score`
+  {{< note >}}
+  `score`拡張点は、`VolumeCapacityPriority`機能が有効になっている時に有効化されます。
+  要求されたボリュームに適合する最小のPVを優先的に使用します。
+  {{< /note >}}
+- `VolumeRestrictions`:Nodeにマウントされたボリュームが、ボリュームプロバイダ固有の制限を満たしているかを確認します。
+  拡張点:`filter`
+- `VolumeZone`:要求されたボリュームがゾーン要件を満たしているかどうかを確認します。
+  拡張点:`filter`
+- `NodeVolumeLimits`:NodeのCSIボリューム制限を満たすかどうかをチェックします。
+  拡張点:`filter`
+- `EBSLimits`:NodeのAWSのEBSボリューム制限を満たすかどうかをチェックします。
+  拡張点:`filter`
+- `GCEPDLimits`:NodeのGCP-PDボリューム制限を満たすかどうかをチェックします。
+  拡張点:`filter`
+- `AzureDiskLimits`:NodeのAzureディスクボリューム制限を満たすかどうかをチェックします。
+  拡張点:`filter`
+- `InterPodAffinity`:[Pod間のaffinityとanti-affinity](/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity)を実行します。
+  拡張点:`preFilter`、`filter`、`preScore`、`score`
+- `PrioritySort`:デフォルトの優先順位に基づくソートを提供します。
+  拡張点:`queueSort`.
+- `DefaultBinder`:デフォルトのバインディングメカニズムを提供します。
+  拡張点:`bind`
+- `DefaultPreemption`:デフォルトのプリエンプションメカニズムを提供します。
+  拡張点:`postFilter`
+
+また、コンポーネント設定のAPIにより、以下のプラグインを有効にすることができます。
+デフォルトでは有効になっていません。
+
+- `SelectorSpread`:{{< glossary_tooltip text="サービス" term_id="service" >}}と{{< glossary_tooltip text="レプリカセット" term_id="replica-set" >}}、{{< glossary_tooltip text="ステートフルセット" term_id="statefulset" >}}、に属するPodのNode間の拡散を優先します。
+  拡張点:`preScore`、`score`
+- `CinderLimits`:Nodeが[`OpenStack Cinder`](https://docs.openstack.org/cinder/)ボリューム制限を満たせるかチェックします。
+  拡張点:`filter`
+
+### 複数のプロファイル {#multiple-profiles}
+
+`kube-scheduler`は複数のプロファイルを実行するように設定することができます。
+各プロファイルは関連するスケジューラー名を持ち、その[拡張点](#extension-points)に異なるプラグインを設定することが可能です。
+
+以下のサンプル設定では、スケジューラーは2つのプロファイルで実行されます。1つはデフォルトプラグインで、もう1つはすべてのスコアリングプラグインを無効にしたものです。
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta2
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: default-scheduler
+  - schedulerName: no-scoring-scheduler
+    plugins:
+      preScore:
+        disabled:
+        - name: '*'
+      score:
+        disabled:
+        - name: '*'
+```
+
+特定のプロファイルに従ってスケジュールさせたいPodは、その`.spec.schedulerName`に、対応するスケジューラー名を含めることができます。
+
+デフォルトでは、スケジューラー名`default-scheduler`としてプロファイルが生成されます。
+このプロファイルは、上記のデフォルトプラグインを含みます。複数のプロファイルを宣言する場合は、それぞれユニークなスケジューラー名にする必要があります。
+
+もしPodがスケジューラー名を指定しない場合、kube-apiserverは`default-scheduler`を設定します。
+従って、これらのPodをスケジュールするために、このスケジューラー名を持つプロファイルが存在する必要があります。
+
+{{< note >}}
+Podのスケジューリングイベントには、ReportingControllerとして`.spec.schedulerName`が設定されています。
+リーダー選出のイベントには、リスト先頭のプロファイルのスケジューラー名が使用されます。
+{{< /note >}}
+
+{{< note >}}
+すべてのプロファイルは、`queueSort`拡張点で同じプラグインを使用し、同じ設定パラメーターを持つ必要があります (該当する場合)。これは、pending状態のPodキューがスケジューラーに1つしかないためです。
+{{< /note >}}
+
+### 複数の拡張点に適用されるプラグイン {#multipoint}
+
+`kubescheduler.config.k8s.io/v1beta3`からは、プロファイル設定に`multiPoint`というフィールドが追加され、複数の拡張点でプラグインを簡単に有効・無効化できるようになりました。
+`multiPoint`設定の目的は、カスタムプロファイルを使用する際に、ユーザーや管理者が必要とする設定を簡素化することです。
+
+`MyPlugin`というプラグインがあり、`preScore`、`score`、`preFilter`、`filter`拡張点を実装しているとします。
+すべての利用可能な拡張点で`MyPlugin`を有効化するためには、プロファイル設定は次のようにします。
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: multipoint-scheduler
+    plugins:
+      multiPoint:
+        enabled:
+        - name: MyPlugin
+```
+
+これは以下のように、`MyPlugin`を手動ですべての拡張ポイントに対して有効にすることと同じです。
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: non-multipoint-scheduler
+    plugins:
+      preScore:
+        enabled:
+        - name: MyPlugin
+      score:
+        enabled:
+        - name: MyPlugin
+      preFilter:
+        enabled:
+        - name: MyPlugin
+      filter:
+        enabled:
+        - name: MyPlugin
+```
+
+`multiPoint`を使用する利点の一つは、将来的に`MyPlugin`が別の拡張点を実装した場合に、`multiPoint`設定が自動的に新しい拡張点に対しても有効化されることです。
+
+特定の拡張点は、その拡張点の`disabled`フィールドを使用して、`MultiPoint`の展開から除外することができます。
+これは、デフォルトのプラグインを無効にしたり、デフォルト以外のプラグインを無効にしたり、ワイルドカード(`'*'`)を使ってすべてのプラグインを無効にしたりする場合に有効です。
+`Score`と`PreScore`を無効にするためには、次の例のようにします。
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: non-multipoint-scheduler
+    plugins:
+      multiPoint:
+        enabled:
+        - name: 'MyPlugin'
+      preScore:
+        disabled:
+        - name: '*'
+      score:
+        disabled:
+        - name: '*'
+```
+
+`v1beta3`では、`MultiPoint`を通じて、内部的に全ての[デフォルトプラグイン](#scheduling-plugins)が有効化されています。
+しかしながら、デフォルト値(並び順やスコアの重みなど)を柔軟に設定し直せるように、個別の拡張点は用意されています。
+例えば、2つのスコアプラグイン`DefaultScore1`と`DefaultScore2`に、重み1が設定されているとします。
+その場合、次のように重さを変更し、並べ替えることができます。
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: multipoint-scheduler
+    plugins:
+      score:
+        enabled:
+        - name: 'DefaultScore2'
+          weight: 5
+```
+
+この例では、`MultiPoint`はデフォルトプラグインであるため、明示的にプラグイン名を指定する必要はありません。
+そして、`Score`に指定されているプラグインは`DefaultScore2`のみです。
+これは、特定の拡張点を通じて設定されたプラグインは、常に`MultiPoint`プラグインよりも優先されるためです。つまり、この設定例では、結果的に2つのプラグインを両方指定することなく、並び替えが行えます。
+
+`MultiPoint`プラグインを設定する際の一般的な優先順位は、以下の通りです。
+1. 特定の拡張点が最初に実行され、その設定は他の場所で設定されたものよりも優先される
+2. `MultiPoint`を使用して、手動で設定したプラグインとその設定内容
+3. デフォルトプラグインとそのデフォルト設定
+
+上記の優先順位を示すために、次の例はこれらのプラグインをベースにします。
+
+|プラグイン|拡張点|
+|---|---|
+|`DefaultQueueSort`|`QueueSort`|
+|`CustomQueueSort`|`QueueSort`|
+|`DefaultPlugin1`|`Score`, `Filter`|
+|`DefaultPlugin2`|`Score`|
+|`CustomPlugin1`|`Score`, `Filter`|
+|`CustomPlugin2`|`Score`, `Filter`|
+
+これらのプラグインの有効な設定例は次の通りです。
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: multipoint-scheduler
+    plugins:
+      multiPoint:
+        enabled:
+        - name: 'CustomQueueSort'
+        - name: 'CustomPlugin1'
+          weight: 3
+        - name: 'CustomPlugin2'
+        disabled:
+        - name: 'DefaultQueueSort'
+      filter:
+        disabled:
+        - name: 'DefaultPlugin1'
+      score:
+        enabled:
+        - name: 'DefaultPlugin2'
+```
+
+なお、特定の拡張点に`MultiPoint`プラグインを再宣言しても、エラーにはなりません。
+特定の拡張点が優先されるため、再宣言は無視されます(ログは記録されます)。
+
+
+このサンプルは、ほとんどのコンフィグを一箇所にまとめるだけでなく、いくつかの工夫をしています。
+* カスタムの`queueSort`プラグインを有効にし、デフォルトのプラグインを無効にする。
+* `CustomPlugin1`と`CustomPlugin2`を有効にし、この拡張点のプラグイン内で、最初に実行されるようにする。
+* `filter`拡張点でのみ、`DefaultPlugin1`を無効にする。
+* `score`拡張点で`DefaultPlugin2`が最初に実行されるように並べ替える(カスタムプラグインより先に)。
+
+`v1beta3`以前のバージョンで、`multiPoint`がない場合、上記の設定例は、次のものと同等になります。
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta2
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: multipoint-scheduler
+    plugins:
+
+      # デフォルトQueueSortプラグインを無効化
+      queueSort:
+        enabled:
+        - name: 'CustomQueueSort'
+        disabled:
+        - name: 'DefaultQueueSort'
+
+      # カスタムFilterプラグインを有効化
+      filter:
+        enabled:
+        - name: 'CustomPlugin1'
+        - name: 'CustomPlugin2'
+        - name: 'DefaultPlugin2'
+        disabled:
+        - name: 'DefaultPlugin1'
+
+      # カスタムScoreプラグインを有効化し、実行順を並べ替える
+      score:
+        enabled:
+        - name: 'DefaultPlugin2'
+          weight: 1
+        - name: 'DefaultPlugin1'
+          weight: 3
+```
+
+これは複雑な例ですが、`MultiPoint`設定の柔軟性と、拡張点を設定する既存の方法とのシームレスな統合を実証しています。
+
+## スケジューラー設定の移行
+
+{{< tabs name="tab_with_md" >}}
+{{% tab name="v1beta1 → v1beta2" %}}
+* v1beta2`のバージョン`の設定では、新しい`NodeResourcesFit`プラグインをスコア拡張点で使用できます。
+  この新しい拡張機能は、`NodeResourcesLeastAllocated`、`NodeResourcesMostAllocated`、 `RequestedToCapacityRatio`プラグインの機能を組み合わせたものです。
+  例えば、以前は`NodeResourcesMostAllocated`プラグインを使っていたなら、代わりに`NodeResourcesFitプラグインを使用し(デフォルトで有効)、`pluginConfig`に次のような`scoreStrategy`を追加することになるでしょう。
+
+  ```yaml
+  apiVersion: kubescheduler.config.k8s.io/v1beta2
+  kind: KubeSchedulerConfiguration
+  profiles:
+  - pluginConfig:
+    - args:
+        scoringStrategy:
+          resources:
+          - name: cpu
+            weight: 1
+          type: MostAllocated
+      name: NodeResourcesFit
+  ```
+
+* スケジューラープラグインの`NodeLabel`は廃止されました。代わりに[`NodeAffinity`](/ja/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity)プラグイン(デフォルトで有効)を使用することで同様の振る舞いを実現できます。
+
+* スケジューラープラグインの`ServiceAffinity`は廃止されました。代わりに[`InterPodAffinity`](/ja/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity)プラグイン(デフォルトで有効)を使用することで同様の振る舞いを実現できます。
+
+* スケジューラープラグインの`NodePreferAvoidPods`は廃止されました。代わりに[Node taints](/ja/docs/concepts/scheduling-eviction/taint-and-toleration/)を使用することで同様の振る舞いを実現できます。
+
+* v1beta2で有効化されたプラグインは、そのプラグインのデフォルトの設定より優先されます。
+
+* スケジューラーのヘルスとメトリクスのバインドアドレスに設定されている`host`や`port`が無効な場合、バリデーションに失敗します。
+{{% /tab %}}
+
+{{% tab name="v1beta2 → v1beta3" %}}
+* デフォルトで3つのプラグインの重みが増加しました。
+  * `InterPodAffinity`:1から2
+  * `NodeAffinity`:1から2
+  * `TaintToleration`:1から3
+{{% /tab %}}
+{{< /tabs >}}
+
+## {{% heading "whatsnext" %}}
+
+* [kube-schedulerリファレンス](/docs/reference/command-line-tools-reference/kube-scheduler/)を読む
+* [scheduling](/ja/docs/concepts/scheduling-eviction/kube-scheduler/)について学ぶ
+* [kube-scheduler設定(v1beta2)](/docs/reference/config-api/kube-scheduler-config.v1beta2/)のリファレンスを読む
+* [kube-scheduler設定(v1beta3)](/docs/reference/config-api/kube-scheduler-config.v1beta3/)のリファレンスを読む
diff --git a/content/ja/docs/reference/scheduling/policies.md b/content/ja/docs/reference/scheduling/policies.md
new file mode 100644
index 0000000000..dd236d3c3d
--- /dev/null
+++ b/content/ja/docs/reference/scheduling/policies.md
@@ -0,0 +1,19 @@
+---
+title: スケジューリングポリシー
+content_type: concept
+sitemap:
+  priority: 0.2 # スケジューリングポリシーは廃止されました。
+---
+
+<!-- overview -->
+
+バージョンv1.23より前のKubernetesでは、スケジューリングポリシーを使用して、*predicates*と*priorities*の処理を指定することができました。例えば、`kube-scheduler --policy-config-file <filename>`または`kube-scheduler --policy-configmap <ConfigMap>`を実行すると、スケジューリングポリシーを設定することが可能です。
+
+このスケジューリングポリシーは、バージョンv1.23以降のKubernetesではサポートされていません。関連するフラグである、`policy-config-file`、`policy-configmap`、`policy-configmap-namespace`、`use-legacy-policy-config`も同様にサポートされていません。
+代わりに、[スケジューラー設定](/ja/docs/reference/scheduling/config/)を使用してください。
+
+## {{% heading "whatsnext" %}}
+
+* [スケジューリング](/ja/docs/concepts/scheduling-eviction/kube-scheduler/)について学ぶ
+* [kube-scheduler設定](/ja/docs/reference/scheduling/config/)について学ぶ
+* [kube-scheduler設定リファレンス(v1beta3)](/docs/reference/config-api/kube-scheduler-config.v1beta3/)について読む
diff --git a/content/ja/docs/reference/tools.md b/content/ja/docs/reference/tools.md
index c64b1e74f7..7c6548b24a 100644
--- a/content/ja/docs/reference/tools.md
+++ b/content/ja/docs/reference/tools.md
@@ -8,7 +8,7 @@ Kubernetesには、Kubernetesシステムの操作に役立ついくつかの組
 
 <!-- body -->
 ## Kubectl
-[`kubectl`](/docs/tasks/tools/install-kubectl/)は、Kubernetesのためのコマンドラインツールです。このコマンドはKubernetes cluster managerを操作します。
+[`kubectl`](/ja/docs/tasks/tools/install-kubectl/)は、Kubernetesのためのコマンドラインツールです。このコマンドはKubernetes cluster managerを操作します。
 
 ## Kubeadm
 [`kubeadm`](docs/setup/production-environment/tools/kubeadm/install-kubeadm/)は、物理サーバやクラウドサーバ、仮想マシン上にKubernetesクラスタを容易にプロビジョニングするためのコマンドラインツールです(現在はアルファ版です)。
@@ -17,7 +17,7 @@ Kubernetesには、Kubernetesシステムの操作に役立ついくつかの組
 [`minikube`](https://minikube.sigs.k8s.io/docs/)は、開発やテストのためにワークステーション上でシングルノードのKubernetesクラスタをローカルで実行するツールです。
 
 ## Dashboard
-[`Dashboard`](/docs/tasks/access-application-cluster/web-ui-dashboard/)は、KubernetesのWebベースのユーザインタフェースで、コンテナ化されたアプリケーションをKubernetesクラスタにデプロイしたり、トラブルシューティングしたり、クラスタとそのリソース自体を管理したりすることが出来ます。
+[`Dashboard`](/ja/docs/tasks/access-application-cluster/web-ui-dashboard/)は、KubernetesのWebベースのユーザインタフェースで、コンテナ化されたアプリケーションをKubernetesクラスタにデプロイしたり、トラブルシューティングしたり、クラスタとそのリソース自体を管理したりすることが出来ます。
 
 ## Helm
 [`Kubernetes Helm`](https://github.com/helm/helm)は、事前に設定されたKubernetesリソースのパッケージ、別名Kubernetes chartsを管理するためのツールです。
diff --git a/content/ja/docs/reference/using-api/_index.md b/content/ja/docs/reference/using-api/_index.md
new file mode 100644
index 0000000000..4cf5b25a95
--- /dev/null
+++ b/content/ja/docs/reference/using-api/_index.md
@@ -0,0 +1,114 @@
+---
+title: API概要
+content_type: concept
+weight: 10
+no_list: true
+card:
+  name: reference
+  weight: 50
+  title: API概要
+---
+
+<!-- overview -->
+
+このセクションでは、Kubernetes APIのリファレンス情報を提供します。
+
+REST APIはKubernetesの基本的な構造です。
+すべての操作とコンポーネント間のと通信、および外部ユーザーのコマンドは、REST API呼び出しでありAPIサーバーが処理します。
+
+その結果、Kubernetesプラットフォーム内のすべてのものは、APIオブジェクトとして扱われ、[API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)に対応するエントリーがあります。
+
+[Kubernetes APIリファレンス](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)は、Kubernetesバージョン{{< param "version" >}}のAPI一覧を提供します。
+
+一般的な背景情報を知るには、[The Kubernetes API](/docs/concepts/overview/kubernetes-api/)、
+[Controlling Access to the Kubernetes API](/docs/concepts/security/controlling-access/)を読んでください。
+それらはKubernetes APIサーバーがクライアントを認証する方法とリクエストを認可する方法を説明します。
+
+## APIバージョニング
+
+JSONとProtobufなどのシリアル化スキーマの変更については同じガイドラインに従います。
+以下の説明は、両方のフォーマットをカバーしています。
+
+APIのバージョニングとソフトウェアのバージョニングは間接的に関係しています。
+[API and release versioning proposal](https://git.k8s.io/sig-release/release-engineering/versioning.md)は、APIバージョニングとソフトウェアバージョニングの関係を説明しています。
+
+APIのバージョンが異なると、安定性やサポートのレベルも異なります。
+各レベルの基準については、[API Changes documentation](https://git.k8s.io/community/contributors/devel/sig-architecture/api_changes.md#alpha-beta-and-stable-versions)で詳しく説明しています。
+
+各レベルの概要は以下の通りです:
+
+- Alpha:
+  - バージョン名に「alpha」が含まれています（例：「v1alpha1」）。
+  - バグが含まれている可能性があります。
+    機能を有効にするとバグが露呈する可能性があります。
+    機能がデフォルトで無効になっている可能性があります。
+  - ある機能のサポートは、予告なしにいつでも中止される可能性があります。
+  - 後にリリースされるソフトウェアで、互換性のない方法で予告なく変更される可能性があります。
+  - バグのリスクが高く、長期的なサポートが得られないため、短期間のテストクラスターのみでの使用を推奨します。
+
+- Beta:
+  - バージョン名には `beta` が含まれています(例：`v2beta3`)。
+  - ソフトウェアは十分にテストされています。
+    機能を有効にすることは安全であると考えられています。
+    機能はデフォルトで有効になっています。
+  - 機能のサポートが打ち切られることはありませんが、詳細は変更される可能性があります。
+
+  - オブジェクトのスキーマやセマンティクスは、その後のベータ版や安定版のリリースで互換性のない方法で変更される可能性があります。
+    このような場合には、移行手順が提供されます。
+    スキーマの変更に伴い、APIオブジェクトの削除、編集、再作成が必要になる場合があります。
+    編集作業は単純ではないかもしれません。
+    移行に伴い、その機能に依存しているアプリケーションのダウンタイムが必要になる場合があります。
+
+  - 本番環境での使用は推奨しません。
+    後続のリリース は、互換性のない変更を導入する可能性があります。
+    独立してアップグレード可能な複数のクラスターがある場合、この制限を緩和できる可能性があります。
+
+  {{< note >}}
+ベータ版の機能をお試しいただき、ご意見をお寄せください。
+ベータ版の機能が終了した後はこれ以上の変更ができない場合があります。
+  {{< /note >}}
+
+- Stable:
+  - バージョン名は `vX` であり、`X` は整数である。
+  - 安定版の機能は、リリースされたソフトウェアの中で、その後の多くのバージョンに登場します。
+
+## APIグループ
+
+[API groups](https://git.k8s.io/community/contributors/design-proposals/api-machinery/api-group.md)で、KubernetesのAPIを簡単に拡張することができます。
+APIグループは、RESTパスとシリアル化されたオブジェクトの`apiVersion`フィールドで指定されます。
+
+KubernetesにはいくつかのAPIグループがあります:
+
+* *core*(*legacy*とも呼ばれる)グループは、RESTパス `/api/v1` にあります。
+   コアグループは `apiVersion` フィールドの一部としては指定されません。
+   例えば、`apiVersion: v1` のように。
+* 名前付きのグループは、RESTパス `/apis/$GROUP_NAME/$VERSION` にあり、以下のように使用します。
+   `apiVersion: $GROUP_NAME/$VERSION`を使用します(例：`apiVersion: batch/v1`)。
+   サポートされているAPIグループの完全なリストは以下にあります。
+   [Kubernetes API reference](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#strong-api-groups-strong-)。
+
+## APIグループの有効化と無効化   {#enabling-or-disabling}
+
+一部のリソースやAPIグループはデフォルトで有効になっています。
+APIサーバー上で`--runtime-config`を設定することで、有効にしたり無効にしたりすることができます。
+また`runtime-config`フラグには、APIサーバーのランタイム構成を記述したコンマ区切りの`<key>[=<value>]`ペアを指定します。
+もし`=<value>`の部分が省略された場合には、`=true`が指定されたものとして扱われます。
+
+例えば:
+
+ - `batch/v1`を無効するには、`--runtime-config=batch/v1=false`を設定する
+ - `batch/v2alpha1`を有効するには、`--runtime-config=batch/v2alpha1`を設定する
+
+{{< note >}}
+グループやリソースを有効または無効にした場合、
+APIサーバーとコントローラマネージャーを再起動して、`--runtime-config`の変更を反映させる必要があります。
+{{< /note >}}
+
+## 永続化
+
+Kubernetesはシリアライズされた状態を、APIリソースとして{{< glossary_tooltip term_id="etcd" >}}に書き込んで保存します。
+
+## {{% heading "whatsnext" %}}
+
+- [API conventions](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#api-conventions)をもっと知る
+- [aggregator](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/aggregated-api-servers.md)の設計ドキュメントを読む
diff --git a/content/ja/docs/setup/best-practices/certificates.md b/content/ja/docs/setup/best-practices/certificates.md
index 7fbf4bf8b8..3ec8f9c004 100644
--- a/content/ja/docs/setup/best-practices/certificates.md
+++ b/content/ja/docs/setup/best-practices/certificates.md
@@ -62,19 +62,19 @@ CAの秘密鍵をクラスターにコピーしたくない場合、自身で全
 
 必要な証明書:
 
-| デフォルトCN                    | 親認証局                   | 組織 　　　　　　| 種類                                   | ホスト名 (SAN)                                 |
-|-------------------------------|---------------------------|----------------|----------------------------------------|---------------------------------------------|
-| kube-etcd                     | etcd-ca                   |                | server, client                         | `localhost`, `127.0.0.1`                        |
+| デフォルトCN                    | 親認証局                   | 組織 　　　　　　| 種類                                   | ホスト名 (SAN)                                          |
+|-------------------------------|---------------------------|----------------|----------------------------------------|-----------------------------------------------------|
+| kube-etcd                     | etcd-ca                   |                | server, client                         | `<hostname>`, `<Host_IP>`, `localhost`, `127.0.0.1` |
 | kube-etcd-peer                | etcd-ca                   |                | server, client                         | `<hostname>`, `<Host_IP>`, `localhost`, `127.0.0.1` |
-| kube-etcd-healthcheck-client  | etcd-ca                   |                | client                                 |                                             |
-| kube-apiserver-etcd-client    | etcd-ca                   | system:masters | client                                 |                                             |
-| kube-apiserver                | kubernetes-ca             |                | server                                 | `<hostname>`, `<Host_IP>`, `<advertise_IP>`, `[1]` |
-| kube-apiserver-kubelet-client | kubernetes-ca             | system:masters | client                                 |                                             |
-| front-proxy-client            | kubernetes-front-proxy-ca |                | client                                 |                                             |
+| kube-etcd-healthcheck-client  | etcd-ca                   |                | client                                 |                                                     |
+| kube-apiserver-etcd-client    | etcd-ca                   | system:masters | client                                 |                                                     |
+| kube-apiserver                | kubernetes-ca             |                | server                                 | `<hostname>`, `<Host_IP>`, `<advertise_IP>`, `[1]`  |
+| kube-apiserver-kubelet-client | kubernetes-ca             | system:masters | client                                 |                                                     |
+| front-proxy-client            | kubernetes-front-proxy-ca |                | client                                 |                                                     |
 
 [1]: クラスターに接続するIPおよびDNS名( [kubeadm](/docs/reference/setup-tools/kubeadm/kubeadm/)を使用する場合と同様、ロードバランサーのIPおよびDNS名、`kubernetes`、`kubernetes.default`、`kubernetes.default.svc`、`kubernetes.default.svc.cluster`、`kubernetes.default.svc.cluster.local`)
 
-`kind`は下記の[x509の鍵用途](https://godoc.org/k8s.io/api/certificates/v1beta1#KeyUsage)のタイプにマッピングされます:
+`kind`は下記の[x509の鍵用途](https://pkg.go.dev/k8s.io/api/certificates/v1beta1#KeyUsage)のタイプにマッピングされます:
 
 | 種類   | 鍵の用途  　　　                                                                     |
 |--------|---------------------------------------------------------------------------------|
diff --git a/content/ja/docs/setup/best-practices/cluster-large.md b/content/ja/docs/setup/best-practices/cluster-large.md
index 5a1f45b662..4f99e1b551 100644
--- a/content/ja/docs/setup/best-practices/cluster-large.md
+++ b/content/ja/docs/setup/best-practices/cluster-large.md
@@ -1,123 +1,98 @@
 ---
-title: 大規模クラスタの構築
+title: 大規模クラスターの構築
 weight: 20
 ---
 
-## サポート
 
-At {{< param "version" >}}, Kubernetes supports clusters with up to 5000 nodes. More specifically, we support configurations that meet *all* of the following criteria:
+クラスターはKubernetesのエージェントが動作する(物理もしくは仮想の){{< glossary_tooltip text="ノード" term_id="node" >}}の集合で、{{< glossary_tooltip text="コントロールプレーン" term_id="control-plane" >}}によって管理されます。
+Kubernetes {{< param "version" >}} では、最大5000ノードから構成されるクラスターをサポートします。
+具体的には、Kubernetesは次の基準を *全て* 満たす構成に対して適用できるように設計されています。
 
-* No more than 110 pods per node
-* No more than 5000 nodes
-* No more than 150000 total pods
-* No more than 300000 total containers
+* 1ノードにつきPodが110個以上存在しない
+* 5000ノード以上存在しない
+* Podの総数が150000個以上存在しない
+* コンテナの総数が300000個以上存在しない
+
+ノードを追加したり削除したりすることによって、クラスターをスケールできます。
+これを行う方法は、クラスターがどのようにデプロイされたかに依存します。
 
 
-## 構築
+## クラウドプロバイダーのリソースクォータ {#クォータの問題}
 
-A cluster is a set of nodes (physical or virtual machines) running Kubernetes agents, managed by a "master" (the cluster-level control plane).
+クラウドプロバイダーのクォータの問題に遭遇することを避けるため、多数のノードを使ったクラスターを作成するときには次のようなことを考慮してください。
 
-Normally the number of nodes in a cluster is controlled by the value `NUM_NODES` in the platform-specific `config-default.sh` file (for example, see [GCE's `config-default.sh`](https://releases.k8s.io/{{< param "githubbranch" >}}/cluster/gce/config-default.sh)).
+* 次のようなクラウドリソースの増加をリクエストする
+  * コンピューターインスタンス
+  * CPU
+  * ストレージボリューム
+  * 使用中のIPアドレス
+  * パケットフィルタリングのルールセット
+  * ロードバランサーの数
+  * ネットワークサブネット
+  * ログストリーム
+* クラウドプロバイダーによる新しいインスタンスの作成に対するレート制限のため、バッチで新しいノードを立ち上げるようなクラスターのスケーリング操作を通すためには、バッチ間ですこし休止を入れます。
 
-Simply changing that value to something very large, however, may cause the setup script to fail for many cloud providers. A GCE deployment, for example, will run in to quota issues and fail to bring the cluster up.
 
-When setting up a large Kubernetes cluster, the following issues must be considered.
+## コントロールプレーンのコンポーネント
 
-### クォータの問題
+大きなクラスターでは、十分な計算とその他のリソースを持ったコントロールプレーンが必要になります。
 
-To avoid running into cloud provider quota issues, when creating a cluster with many nodes, consider:
+特に故障ゾーンあたり1つまたは2つのコントロールプレーンインスタンスを動かす場合、最初に垂直方向にインスタンスをスケールし、垂直方向のスケーリングの効果が低下するポイントに達したら水平方向にスケールします。
 
-* Increase the quota for things like CPU, IPs, etc.
-  * In [GCE, for example,](https://cloud.google.com/compute/docs/resource-quotas) you'll want to increase the quota for:
-    * CPUs
-    * VM instances
-    * Total persistent disk reserved
-    * In-use IP addresses
-    * Firewall Rules
-    * Forwarding rules
-    * Routes
-    * Target pools
-* Gating the setup script so that it brings up new node VMs in smaller batches with waits in between, because some cloud providers rate limit the creation of VMs.
+フォールトトレランスを備えるために、1つの故障ゾーンに対して最低1インスタンスを動かすべきです。
+Kubernetesノードは、同一故障ゾーン内のコントロールプレーンエンドポイントに対して自動的にトラフィックが向かないようにします。
+しかし、クラウドプロバイダーはこれを実現するための独自の機構を持っているかもしれません。
 
-### Etcdのストレージ
+例えばマネージドなロードバランサーを使うと、故障ゾーン _A_ にあるkubeletやPodから発生したトラフィックを、同じく故障ゾーン _A_ にあるコントロールプレーンホストに対してのみ送るように設定します。もし1つのコントロールプレーンホストまたは故障ゾーン _A_ のエンドポイントがオフラインになった場合、ゾーン _A_ にあるノードについてすべてのコントロールプレーンのトラフィックはゾーンを跨いで送信されます。それぞれのゾーンで複数のコントロールプレーンホストを動作させることは、結果としてほとんどありません。
 
-To improve performance of large clusters, we store events in a separate dedicated etcd instance.
 
-When creating a cluster, existing salt scripts:
+## etcdストレージ
 
-* start and configure additional etcd instance
-* configure api-server to use it for storing events
+大きなクラスターの性能を向上させるために、他の専用のetcdインスタンスにイベントオブジェクトを保存できます。
 
-### マスターのサイズと構成要素
+クラスターを作るときに、(カスタムツールを使って)以下のようなことができます。
 
-On GCE/Google Kubernetes Engine, and AWS, `kube-up` automatically configures the proper VM size for your master depending on the number of nodes
-in your cluster. On other providers, you will need to configure it manually. For reference, the sizes we use on GCE are
+* 追加のetcdインスタンスを起動または設定する
+* イベントを保存するために{{< glossary_tooltip term_id="kube-apiserver" text="APIサーバ" >}}を設定する
 
-* 1-5 nodes: n1-standard-1
-* 6-10 nodes: n1-standard-2
-* 11-100 nodes: n1-standard-4
-* 101-250 nodes: n1-standard-8
-* 251-500 nodes: n1-standard-16
-* more than 500 nodes: n1-standard-32
+大きなクラスターのためにetcdを設定・管理する詳細については、[Operating etcd clusters for Kubernetes](/docs/tasks/administer-cluster/configure-upgrade-etcd/)または[kubeadmを使用した高可用性etcdクラスターの作成](/ja/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm/)を見てください。
 
-And the sizes we use on AWS are
 
-* 1-5 nodes: m3.medium
-* 6-10 nodes: m3.large
-* 11-100 nodes: m3.xlarge
-* 101-250 nodes: m3.2xlarge
-* 251-500 nodes: c4.4xlarge
-* more than 500 nodes: c4.8xlarge
+## アドオンのリソース
 
-{{< note >}}
-On Google Kubernetes Engine, the size of the master node adjusts automatically based on the size of your cluster. For more information, see [this blog post](https://cloudplatform.googleblog.com/2017/11/Cutting-Cluster-Management-Fees-on-Google-Kubernetes-Engine.html).
+Kubernetesの[リソース制限](/ja/docs/concepts/configuration/manage-resources-containers/)は、メモリリークの影響やPodやコンテナが他のコンポーネントに与える他の影響を最小化することに役立ちます。
+これらのリソース制限は、アプリケーションのワークロードに適用するのと同様に、{{< glossary_tooltip text="アドオン" term_id="addons" >}}のリソースにも適用されます。
 
-On AWS, master node sizes are currently set at cluster startup time and do not change, even if you later scale your cluster up or down by manually removing or adding nodes or using a cluster autoscaler.
-{{< /note >}}
-
-### アドオンのリソース
-
-To prevent memory leaks or other resource issues in [cluster addons](https://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons) from consuming all the resources available on a node, Kubernetes sets resource limits on addon containers to limit the CPU and Memory resources they can consume (See PR [#10653](https://pr.k8s.io/10653/files) and [#10778](https://pr.k8s.io/10778/files)).
-
-For example:
+例えば、ロギングコンポーネントに対してCPUやメモリ制限を設定できます。
 
 ```yaml
+  ...
   containers:
   - name: fluentd-cloud-logging
-    image: k8s.gcr.io/fluentd-gcp:1.16
+    image: fluent/fluentd-kubernetes-daemonset:v1
     resources:
       limits:
         cpu: 100m
         memory: 200Mi
 ```
 
-Except for Heapster, these limits are static and are based on data we collected from addons running on 4-node clusters (see [#10335](https://issue.k8s.io/10335#issuecomment-117861225)). The addons consume a lot more resources when running on large deployment clusters (see [#5880](http://issue.k8s.io/5880#issuecomment-113984085)). So, if a large cluster is deployed without adjusting these values, the addons may continuously get killed because they keep hitting the limits.
+アドオンのデフォルト制限は、アドオンを小～中規模のKubernetesクラスターで動作させたときの経験から得られたデータに基づきます。
+大規模のクラスターで動作させる場合は、アドオンはデフォルト制限よりも多くのリソースを消費することが多いです。
+これらの値を調整せずに大規模のクラスターをデプロイした場合、メモリー制限に達し続けるため、アドオンが継続的に停止されるかもしれません。
+あるいは、CPUのタイムスライス制限により性能がでない状態で動作するかもしれません。
 
-To avoid running into cluster addon resource issues, when creating a cluster with many nodes, consider the following:
+クラスターのアドオンのリソース制限に遭遇しないために、多くのノードで構成されるクラスターを構築する場合は次のことを考慮します。
 
-* Scale memory and CPU limits for each of the following addons, if used, as you scale up the size of cluster (there is one replica of each handling the entire cluster so memory and CPU usage tends to grow proportionally with size/load on cluster):
-  * [InfluxDB and Grafana](https://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/cluster-monitoring/influxdb/influxdb-grafana-controller.yaml)
-  * [kubedns, dnsmasq, and sidecar](https://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/dns/kube-dns/kube-dns.yaml.in)
-  * [Kibana](https://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/fluentd-elasticsearch/kibana-deployment.yaml)
-* Scale number of replicas for the following addons, if used, along with the size of cluster (there are multiple replicas of each so increasing replicas should help handle increased load, but, since load per replica also increases slightly, also consider increasing CPU/memory limits):
-  * [elasticsearch](https://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/fluentd-elasticsearch/es-statefulset.yaml)
-* Increase memory and CPU limits slightly for each of the following addons, if used, along with the size of cluster (there is one replica per node but CPU/memory usage increases slightly along with cluster load/size as well):
-  * [FluentD with ElasticSearch Plugin](https://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/fluentd-elasticsearch/fluentd-es-ds.yaml)
-  * [FluentD with GCP Plugin](https://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/fluentd-gcp/fluentd-gcp-ds.yaml)
+* いくつかのアドオンは垂直方向にスケールします - クラスターに1つのレプリカ、もしくは故障ゾーン全体にサービングされるものがあります。このようなアドオンでは、クラスターをスケールアウトしたときにリクエストと制限を増やす必要があります。
+* 数多くのアドオンは、水平方向にスケールします - より多くのPod数を動作させることで性能を向上できます - ただし、とても大きなクラスターではCPUやメモリの制限も少し引き上げる必要があるかもしれません。VerticalPodAutoscalerは、提案されたリクエストや制限の数値を提供する `_recommender_` モードで動作可能です。
+* いくつかのアドオンは{{< glossary_tooltip text="DaemonSet" term_id="daemonset" >}}によって制御され、1ノードに1つ複製される形で動作します: 例えばノードレベルのログアグリゲーターです。水平方向にスケールするアドオンの場合と同様に、CPUやメモリ制限を少し引き上げる必要があるかもしれません。
 
-Heapster's resource limits are set dynamically based on the initial size of your cluster (see [#16185](http://issue.k8s.io/16185)
-and [#22940](http://issue.k8s.io/22940)). If you find that Heapster is running
-out of resources, you should adjust the formulas that compute heapster memory request (see those PRs for details).
 
-For directions on how to detect if addon containers are hitting resource limits, see the
-[Troubleshooting section of Compute Resources](/docs/concepts/configuration/manage-resources-containers/#troubleshooting).
+## {{% heading "whatsnext" %}}
 
-### 少数のノードの起動の失敗を許容する
+`VerticalPodAutoscaler` は、リソースのリクエストやPodの制限についての管理を手助けするためにクラスターへデプロイ可能なカスタムリソースです。
+`VerticalPodAutoscaler` やクラスターで致命的なアドオンを含むクラスターコンポーネントをスケールする方法についてさらに知りたい場合は[Vertical Pod Autoscaler](https://github.com/kubernetes/autoscaler/tree/master/vertical-pod-autoscaler#readme)をご覧ください。
 
-For various reasons (see [#18969](https://github.com/kubernetes/kubernetes/issues/18969) for more details) running
-`kube-up.sh` with a very large `NUM_NODES` may fail due to a very small number of nodes not coming up properly.
-Currently you have two choices: restart the cluster (`kube-down.sh` and then `kube-up.sh` again), or before
-running `kube-up.sh` set the environment variable `ALLOWED_NOTREADY_NODES` to whatever value you feel comfortable
-with. This will allow `kube-up.sh` to succeed with fewer than `NUM_NODES` coming up. Depending on the
-reason for the failure, those additional nodes may join later or the cluster may remain at a size of
-`NUM_NODES - ALLOWED_NOTREADY_NODES`.
+[cluster autoscaler](https://github.com/kubernetes/autoscaler/tree/master/cluster-autoscaler#readme)は、クラスターで要求されるリソース水準を満たす正確なノード数で動作できるよう、いくつかのクラウドプロバイダーと統合されています。
+
+[addon resizer](https://github.com/kubernetes/autoscaler/tree/master/addon-resizer#readme)は、クラスターのスケールが変化したときにアドオンの自動的なリサイズをお手伝いします。
diff --git a/content/ja/docs/setup/best-practices/multiple-zones.md b/content/ja/docs/setup/best-practices/multiple-zones.md
index 29370c78b6..4ba0583186 100644
--- a/content/ja/docs/setup/best-practices/multiple-zones.md
+++ b/content/ja/docs/setup/best-practices/multiple-zones.md
@@ -15,7 +15,7 @@ This page describes how to run a cluster in multiple zones.
 ## 始めに
 
 Kubernetes 1.2より、複数のゾーンにおいて単一のクラスターを運用するサポートが追加されました(GCEでは単純に"ゾーン"，AWSは"アベイラビリティゾーン"と呼びますが、ここでは"ゾーン"とします)。
-これは、より範囲の広いCluster Federationの軽量バージョンです(以前は["Ubernetes"](https://github.com/kubernetes/community/blob/{{< param "githubbranch" >}}/contributors/design-proposals/multicluster/federation.md)の愛称で言及されていました)。
+これは、より範囲の広いCluster Federationの軽量バージョンです(以前は["Ubernetes"](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/multicluster/federation.md)の愛称で言及されていました)。
 完全なCluster Federationでは、異なるリージョンやクラウドプロバイダー(あるいはオンプレミスデータセンター)内の独立したKubernetesクラスターをまとめることが可能になります。しかしながら、多くのユーザーは単に1つのクラウドプロバイダーの複数のゾーンでより可用性の高いKubernetesクラスターを運用したいと考えており、バージョン1.2におけるマルチゾーンサポート(以前は"Ubernetes Lite"の愛称で使用されていました)ではこれが可能になります。
 
 マルチゾーンサポートは故意に限定されています: 1つのKubernetesクラスターは複数のゾーンで運用することができますが、同じリージョン(あるいはクラウドプロバイダー)のみです。現在はGCEとAWSのみが自動的にサポートされています(他のクラウドプロバイダーやベアメタル環境においても、単にノードやボリュームに追加する適切なラベルを用意して同様のサポートを追加することは容易ではありますが)。
diff --git a/content/ja/docs/setup/learning-environment/minikube.md b/content/ja/docs/setup/learning-environment/minikube.md
index 171d2b1b1e..58fce33a34 100644
--- a/content/ja/docs/setup/learning-environment/minikube.md
+++ b/content/ja/docs/setup/learning-environment/minikube.md
@@ -522,4 +522,4 @@ Minikubeの詳細については、[proposal](https://git.k8s.io/community/contr
 
 ## コミュニティ
 
-コントリビューションや質問、コメントは歓迎・奨励されています! Minikubeの開発者は[Slack](https://kubernetes.slack.com)の`#minikube`チャンネルにいます(Slackへの招待状は[こちら](http://slack.kubernetes.io/))。[kubernetes-dev Google Groupsメーリングリスト](https://groups.google.com/forum/#!forum/kubernetes-dev)もあります。メーリングリストに投稿する際は件名の最初に "minikube: " をつけてください。
+コントリビューションや質問、コメントは歓迎・奨励されています! Minikubeの開発者は[Slack](https://kubernetes.slack.com)の`#minikube`チャンネルにいます(Slackへの招待状は[こちら](http://slack.kubernetes.io/))。[dev@kubernetes Google Groupsメーリングリスト](https://groups.google.com/a/kubernetes.io/g/dev/)もあります。メーリングリストに投稿する際は件名の最初に "minikube: " をつけてください。
diff --git a/content/ja/docs/setup/production-environment/tools/kops.md b/content/ja/docs/setup/production-environment/tools/kops.md
index 0b40a6540b..9d490751db 100644
--- a/content/ja/docs/setup/production-environment/tools/kops.md
+++ b/content/ja/docs/setup/production-environment/tools/kops.md
@@ -220,7 +220,7 @@ for production clusters!
 
 ### 他のアドオンの参照
 
-See the [list of add-ons](/docs/concepts/cluster-administration/addons/) to explore other add-ons, including tools for logging, monitoring, network policy, visualization, and control of your Kubernetes cluster.
+See the [list of add-ons](/ja/docs/concepts/cluster-administration/addons/) to explore other add-ons, including tools for logging, monitoring, network policy, visualization, and control of your Kubernetes cluster.
 
 ## クリーンアップ
 
diff --git a/content/ja/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm.md b/content/ja/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm.md
index 540f5f3fc7..56e0df68ea 100644
--- a/content/ja/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm.md
+++ b/content/ja/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm.md
@@ -162,7 +162,7 @@ To start using your cluster, you need to run the following as a regular user:
 
 You should now deploy a Pod network to the cluster.
 Run "kubectl apply -f [podnetwork].yaml" with one of the options listed at:
-  /docs/concepts/cluster-administration/addons/
+  /ja/docs/concepts/cluster-administration/addons/
 
 You can now join any number of machines by running the following on each node
 as root:
@@ -395,8 +395,8 @@ kubectl delete node <node name>
 * <a id="lifecycle" />`kubeadm`を使用したクラスターをアップグレードする方法について、[kubeadmクラスターをアップグレードする](/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)を読む。
 * `kubeadm`の高度な利用方法について[kubeadmリファレンスドキュメント](/docs/reference/setup-tools/kubeadm/kubeadm)で学ぶ。
 * Kubernetesの[コンセプト](/ja/docs/concepts/)や[`kubectl`](/ja/docs/reference/kubectl/overview/)についてもっと学ぶ。
-* Podネットワークアドオンのより完全なリストを[クラスターのネットワーク](/docs/concepts/cluster-administration/networking/)で確認する。
-* <a id="other-addons" />ロギング、モニタリング、ネットワークポリシー、仮想化、Kubernetesクラスターの制御のためのツールなど、その他のアドオンについて、[アドオンのリスト](/docs/concepts/cluster-administration/addons/)で確認する。
+* Podネットワークアドオンのより完全なリストを[クラスターのネットワーク](/ja/docs/concepts/cluster-administration/networking/)で確認する。
+* <a id="other-addons" />ロギング、モニタリング、ネットワークポリシー、仮想化、Kubernetesクラスターの制御のためのツールなど、その他のアドオンについて、[アドオンのリスト](/ja/docs/concepts/cluster-administration/addons/)で確認する。
 * クラスターイベントやPod内で実行中のアプリケーションから送られるログをクラスターがハンドリングする方法を設定する。関係する要素の概要を理解するために、[ロギングのアーキテクチャ](/docs/concepts/cluster-administration/logging/)を読んでください。
 
 ### フィードバック {#feedback}
diff --git a/content/ja/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md b/content/ja/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md
index 01fdd3a29a..f442096833 100644
--- a/content/ja/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md
+++ b/content/ja/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md
@@ -231,7 +231,7 @@ curl -L "https://github.com/containernetworking/plugins/releases/download/${CNI_
 crictlをインストールする (kubeadm / Kubelet Container Runtime Interface (CRI)に必要です)
 
 ```bash
-CRICTL_VERSION="v1.17.0"
+CRICTL_VERSION="v1.22.0"
 ARCH="amd64"
 curl -L "https://github.com/kubernetes-sigs/cri-tools/releases/download/${CRICTL_VERSION}/crictl-${CRICTL_VERSION}-linux-${ARCH}.tar.gz" | sudo tar -C $DOWNLOAD_DIR -xz
 ```
diff --git a/content/ja/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm.md b/content/ja/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm.md
index 319be36bbd..9c2939792c 100644
--- a/content/ja/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm.md
+++ b/content/ja/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm.md
@@ -29,7 +29,7 @@ when using kubeadm to set up a kubernetes cluster.
 * Three hosts that can talk to each other over ports 2379 and 2380. This
   document assumes these default ports. However, they are configurable through
   the kubeadm config file.
-* Each host must [have docker, kubelet, and kubeadm installed](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/).
+* Each host must [have docker, kubelet, and kubeadm installed](/ja/docs/setup/production-environment/tools/kubeadm/install-kubeadm/).
 * Each host should have access to the Kubernetes container image registry (`k8s.gcr.io`) or list/pull the required etcd image using `kubeadm config images list/pull`. This guide will setup etcd instances as [static pods](/docs/tasks/configure-pod-container/static-pod/) managed by a kubelet.
 * Some infrastructure to copy files between hosts. For example `ssh` and `scp`
   can satisfy this requirement.
@@ -242,8 +242,8 @@ this example.
 
     ```sh
     root@HOST0 $ kubeadm init phase etcd local --config=/tmp/${HOST0}/kubeadmcfg.yaml
-    root@HOST1 $ kubeadm init phase etcd local --config=/tmp/${HOST1}/kubeadmcfg.yaml
-    root@HOST2 $ kubeadm init phase etcd local --config=/tmp/${HOST2}/kubeadmcfg.yaml
+    root@HOST1 $ kubeadm init phase etcd local --config=$HOME/kubeadmcfg.yaml
+    root@HOST2 $ kubeadm init phase etcd local --config=$HOME/kubeadmcfg.yaml
     ```
 
 1. Optional: Check the cluster health
diff --git a/content/ja/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm.md b/content/ja/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm.md
index b6911ba298..8579317b76 100644
--- a/content/ja/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm.md
+++ b/content/ja/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm.md
@@ -147,7 +147,7 @@ Calico、Canal、FlannelのCNIプロバイダは、HostPortをサポートして
 
 ## サービスIP経由でPodにアクセスすることができない
 
-- 多くのネットワークアドオンは、PodがサービスIPを介して自分自身にアクセスできるようにする[ヘアピンモード](/docs/tasks/debug-application-cluster/debug-service/#a-pod-cannot-reach-itself-via-service-ip)を有効にしていません。これは[CNI](https://github.com/containernetworking/cni/issues/476)に関連する問題です。ヘアピンモードのサポート状況については、ネットワークアドオンプロバイダにお問い合わせください。
+- 多くのネットワークアドオンは、PodがサービスIPを介して自分自身にアクセスできるようにする[ヘアピンモード](/ja/docs/tasks/debug-application-cluster/debug-service/#a-pod-cannot-reach-itself-via-service-ip)を有効にしていません。これは[CNI](https://github.com/containernetworking/cni/issues/476)に関連する問題です。ヘアピンモードのサポート状況については、ネットワークアドオンプロバイダにお問い合わせください。
 
 - VirtualBoxを使用している場合(直接またはVagrant経由)は、`hostname -i`がルーティング可能なIPアドレスを返すことを確認する必要があります。デフォルトでは、最初のインターフェースはルーティング可能でないホスト専用のネットワークに接続されています。これを回避するには`/etc/hosts`を修正する必要があります。例としてはこの[Vagrantfile](https://github.com/errordeveloper/k8s-playground/blob/22dd39dfc06111235620e6c4404a96ae146f26fd/Vagrantfile#L11)を参照してください。
 
diff --git a/content/ja/docs/setup/production-environment/tools/kubespray.md b/content/ja/docs/setup/production-environment/tools/kubespray.md
index b254e63c60..9d6497c054 100644
--- a/content/ja/docs/setup/production-environment/tools/kubespray.md
+++ b/content/ja/docs/setup/production-environment/tools/kubespray.md
@@ -6,23 +6,24 @@ weight: 30
 
 <!-- overview -->
 
-This quickstart helps to install a Kubernetes cluster hosted on GCE, Azure, OpenStack, AWS, vSphere, Packet (bare metal), Oracle Cloud Infrastructure (Experimental) or Baremetal with [Kubespray](https://github.com/kubernetes-sigs/kubespray).
+This quickstart helps to install a Kubernetes cluster hosted on GCE, Azure, OpenStack, AWS, vSphere, Equinix Metal (formerly Packet), Oracle Cloud Infrastructure (Experimental) or Baremetal with [Kubespray](https://github.com/kubernetes-sigs/kubespray).
 
 Kubespray is a composition of [Ansible](https://docs.ansible.com/) playbooks, [inventory](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/ansible.md), provisioning tools, and domain knowledge for generic OS/Kubernetes clusters configuration management tasks. Kubespray provides:
 
 * a highly available cluster
 * composable attributes
 * support for most popular Linux distributions
-  * Container Linux by CoreOS
+  * Ubuntu 16.04, 18.04, 20.04, 22.04
+  * CentOS/RHEL/Oracle Linux 7, 8
   * Debian Buster, Jessie, Stretch, Wheezy
-  * Ubuntu 16.04, 18.04
-  * CentOS/RHEL/Oracle Linux 7
-  * Fedora 28
+  * Fedora 34, 35
+  * Fedora CoreOS
   * openSUSE Leap 15
+  * Flatcar Container Linux by Kinvolk
 * continuous integration tests
 
 To choose a tool which best fits your use case, read [this comparison](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/comparisons.md) to
-[kubeadm](/docs/reference/setup-tools/kubeadm/kubeadm/) and [kops](/docs/setup/production-environment/tools/kops/).
+[kubeadm](/docs/reference/setup-tools/kubeadm/kubeadm/) and [kops](/ja/docs/setup/production-environment/tools/kops/).
 
 
 
@@ -34,13 +35,13 @@ To choose a tool which best fits your use case, read [this comparison](https://g
 
 Provision servers with the following [requirements](https://github.com/kubernetes-sigs/kubespray#requirements):
 
-* **Ansible v2.7.8 and python-netaddr is installed on the machine that will run Ansible commands**
-* **Jinja 2.9 (or newer) is required to run the Ansible Playbooks**
+* **Ansible v2.11 and python-netaddr are installed on the machine that will run Ansible commands**
+* **Jinja 2.11 (or newer) is required to run the Ansible Playbooks**
 * The target servers must have access to the Internet in order to pull docker images. Otherwise, additional configuration is required ([See Offline Environment](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/offline-environment.md))
 * The target servers are configured to allow **IPv4 forwarding**
-* **Your ssh key must be copied** to all the servers part of your inventory
-* The **firewalls are not managed**, you'll need to implement your own rules the way you used to. in order to avoid any issue during deployment you should disable your firewall
-* If kubespray is ran from non-root user account, correct privilege escalation method should be configured in the target servers. Then the `ansible_become` flag or command parameters `--become` or `-b` should be specified
+* **Your ssh key must be copied** to all the servers in your inventory
+* **Firewalls are not managed by kubespray**. You'll need to implement appropriate rules as needed. You should disable your firewall in order to avoid any issues during deployment
+* If kubespray is run from a non-root user account, correct privilege escalation method should be configured in the target servers and the `ansible_become` flag or command parameters `--become` or `-b` should be specified
 
 Kubespray provides the following utilities to help provision your environment:
 
diff --git a/content/ja/docs/setup/production-environment/turnkey/aws.md b/content/ja/docs/setup/production-environment/turnkey/aws.md
index 03246c1b06..f7ec4bd012 100644
--- a/content/ja/docs/setup/production-environment/turnkey/aws.md
+++ b/content/ja/docs/setup/production-environment/turnkey/aws.md
@@ -53,9 +53,9 @@ export PATH=<path/to/kubernetes-directory>/platforms/linux/amd64:$PATH
 
 新しいクラスターを試すには、[簡単なnginxの例](/ja/docs/tasks/run-application/run-stateless-application-deployment/)を参照してください。
 
-"Guestbook"アプリケーションは、Kubernetesを始めるもう一つのポピュラーな例です: [guestbookの例](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/guestbook/)
+"Guestbook"アプリケーションは、Kubernetesを始めるもう一つのポピュラーな例です: [guestbookの例](https://github.com/kubernetes/examples/tree/master/guestbook/)
 
-より完全なアプリケーションについては、[examplesディレクトリ](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/)を参照してください。
+より完全なアプリケーションについては、[examplesディレクトリ](https://github.com/kubernetes/examples/tree/master/)を参照してください。
 
 ## クラスターのスケーリング
 
diff --git a/content/ja/docs/setup/production-environment/turnkey/gce.md b/content/ja/docs/setup/production-environment/turnkey/gce.md
index dcd269446a..39e03efc94 100644
--- a/content/ja/docs/setup/production-environment/turnkey/gce.md
+++ b/content/ja/docs/setup/production-environment/turnkey/gce.md
@@ -146,7 +146,7 @@ Some of the pods may take a few seconds to start up (during this time they'll sh
 
 Then, see [a simple nginx example](/ja/docs/tasks/run-application/run-stateless-application-deployment/) to try out your new cluster.
 
-For more complete applications, please look in the [examples directory](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/).  The [guestbook example](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/guestbook/) is a good "getting started" walkthrough.
+For more complete applications, please look in the [examples directory](https://github.com/kubernetes/examples/tree/master/).  The [guestbook example](https://github.com/kubernetes/examples/tree/master/guestbook/) is a good "getting started" walkthrough.
 
 ## クラスターの解体
 
diff --git a/content/ja/docs/setup/production-environment/windows/intro-windows-in-kubernetes.md b/content/ja/docs/setup/production-environment/windows/intro-windows-in-kubernetes.md
index fec66df50a..e3c9f1ecf8 100644
--- a/content/ja/docs/setup/production-environment/windows/intro-windows-in-kubernetes.md
+++ b/content/ja/docs/setup/production-environment/windows/intro-windows-in-kubernetes.md
@@ -16,7 +16,7 @@ Windowsアプリケーションは、多くの組織で実行されているサ
 
 KubernetesでWindowsコンテナのオーケストレーションを有効にする方法は、既存のLinuxクラスターにWindowsノードを含めるだけです。Kubernetesの{{< glossary_tooltip text="Pod" term_id="pod" >}}でWindowsコンテナをスケジュールすることは、Linuxベースのコンテナをスケジュールするのと同じくらいシンプルで簡単です。
 
-Windowsコンテナを実行するには、Kubernetesクラスターに複数のオペレーティングシステムを含める必要があります。コントロールプレーンノードはLinux、ワーカーノードはワークロードのニーズに応じてWindowsまたはLinuxで実行します。Windows Server 2019は、サポートされている唯一のWindowsオペレーティングシステムであり、Windows (kubelet、[コンテナランタイム](https://docs.microsoft.com/en-us/virtualization/windowscontainers/deploy-containers/containerd)、kube-proxyを含む)で[Kubernetesノード](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/architecture/architecture.md#the-kubernetes-node)を有効にします。Windowsディストリビューションチャンネルの詳細については、[Microsoftのドキュメント](https://docs.microsoft.com/en-us/windows-server/get-started-19/servicing-channels-19)を参照してください。
+Windowsコンテナを実行するには、Kubernetesクラスターに複数のオペレーティングシステムを含める必要があります。コントロールプレーンノードはLinux、ワーカーノードはワークロードのニーズに応じてWindowsまたはLinuxで実行します。Windows Server 2019は、サポートされている唯一のWindowsオペレーティングシステムであり、Windows (kubelet、[コンテナランタイム](https://docs.microsoft.com/en-us/virtualization/windowscontainers/deploy-containers/containerd)、kube-proxyを含む)で[Kubernetesノード](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/architecture/architecture.md#the-kubernetes-node)を有効にします。Windowsディストリビューションチャンネルの詳細については、[Microsoftのドキュメント](https://docs.microsoft.com/en-us/windows-server/get-started/servicing-channels-comparison)を参照してください。
 
 {{< note >}}
 [マスターコンポーネント](/ja/docs/concepts/overview/components/)を含むKubernetesコントロールプレーンは、Linuxで実行し続けます。WindowsのみのKubernetesクラスターを導入する計画はありません。
diff --git a/content/ja/docs/setup/production-environment/windows/user-guide-windows-containers.md b/content/ja/docs/setup/production-environment/windows/user-guide-windows-containers.md
index 2868afb182..ebd4d5e8b3 100644
--- a/content/ja/docs/setup/production-environment/windows/user-guide-windows-containers.md
+++ b/content/ja/docs/setup/production-environment/windows/user-guide-windows-containers.md
@@ -241,4 +241,4 @@ spec:
     app: iis-2019
 ```
 
-[RuntimeClass]: https://kubernetes.io/docs/concepts/containers/runtime-class/
+[RuntimeClass]: https://kubernetes.io/ja/docs/concepts/containers/runtime-class/
diff --git a/content/ja/docs/setup/release/version-skew-policy.md b/content/ja/docs/setup/release/version-skew-policy.md
index eb0764bcc3..bd1875aa41 100644
--- a/content/ja/docs/setup/release/version-skew-policy.md
+++ b/content/ja/docs/setup/release/version-skew-policy.md
@@ -12,11 +12,11 @@ weight: 30
 
 ## サポートされるバージョン {#supported-versions}
 
-Kubernetesのバージョンは**x.y.z**の形式で表現され、**x**はメジャーバージョン、**y**はマイナーバージョン、**z**はパッチバージョンを指します。これは[セマンティック バージョニング](https://semver.org/)に従っています。詳細は、[Kubernetesのリリースバージョニング](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/release/versioning.md#kubernetes-release-versioning)を参照してください。
+Kubernetesのバージョンは**x.y.z**の形式で表現され、**x**はメジャーバージョン、**y**はマイナーバージョン、**z**はパッチバージョンを指します。これは[セマンティック バージョニング](https://semver.org/)に従っています。詳細は、[Kubernetesのリリースバージョニング](https://git.k8s.io/sig-release/release-engineering/versioning.md#kubernetes-release-versioning)を参照してください。
 
 Kubernetesプロジェクトでは、最新の3つのマイナーリリースについてリリースブランチを管理しています ({{< skew latestVersion >}}, {{< skew prevMinorVersion >}}, {{< skew oldestMinorVersion >}})。
 
-セキュリティフィックスを含む適用可能な修正は、重大度や実行可能性によってはこれら3つのリリースブランチにバックポートされることもあります。パッチリリースは、これらのブランチから [定期的に](https://git.k8s.io/sig-release/releases/patch-releases.md#cadence) 切り出され、必要に応じて追加の緊急リリースも行われます。
+セキュリティフィックスを含む適用可能な修正は、重大度や実行可能性によってはこれら3つのリリースブランチにバックポートされることもあります。パッチリリースは、これらのブランチから [定期的に](https://kubernetes.io/releases/patch-releases/#cadence) 切り出され、必要に応じて追加の緊急リリースも行われます。
 
  [リリースマネージャー](https://git.k8s.io/sig-release/release-managers.md)グループがこれを決定しています。
 
diff --git a/content/ja/docs/tasks/access-application-cluster/configure-access-multiple-clusters.md b/content/ja/docs/tasks/access-application-cluster/configure-access-multiple-clusters.md
index e250155f2d..c6666c59e0 100644
--- a/content/ja/docs/tasks/access-application-cluster/configure-access-multiple-clusters.md
+++ b/content/ja/docs/tasks/access-application-cluster/configure-access-multiple-clusters.md
@@ -290,7 +290,7 @@ contexts:
   name: exp-scratch
 ```
 
-kubeconfigファイルに関するさらなる情報を参照するには、[kubeconfigファイルを使ってクラスターへのアクセスを管理する](/docs/concepts/configuration/organize-cluster-access-kubeconfig/)を参照してください。
+kubeconfigファイルに関するさらなる情報を参照するには、[kubeconfigファイルを使ってクラスターへのアクセスを管理する](/ja/docs/concepts/configuration/organize-cluster-access-kubeconfig/)を参照してください。
 
 ## $HOME/.kubeディレクトリの内容を確認する
 
diff --git a/content/ja/docs/tasks/access-application-cluster/connecting-frontend-backend.md b/content/ja/docs/tasks/access-application-cluster/connecting-frontend-backend.md
index a1d167c441..cbac02d80a 100644
--- a/content/ja/docs/tasks/access-application-cluster/connecting-frontend-backend.md
+++ b/content/ja/docs/tasks/access-application-cluster/connecting-frontend-backend.md
@@ -143,7 +143,7 @@ service/frontend created
 
 {{< note >}}
 nginxの構成は、[コンテナイメージ](/examples/service/access/Dockerfile)に焼き付けられます。
-これを行うためのより良い方法は、[ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/)を使用して、構成をより簡単に変更できるようにすることです。
+これを行うためのより良い方法は、[ConfigMap](/ja/docs/tasks/configure-pod-container/configure-pod-configmap/)を使用して、構成をより簡単に変更できるようにすることです。
 {{< /note >}}
 
 ## フロントエンドServiceと対話
diff --git a/content/ja/docs/tasks/access-application-cluster/list-all-running-container-images.md b/content/ja/docs/tasks/access-application-cluster/list-all-running-container-images.md
index b20a1d77d0..c1eb59241f 100644
--- a/content/ja/docs/tasks/access-application-cluster/list-all-running-container-images.md
+++ b/content/ja/docs/tasks/access-application-cluster/list-all-running-container-images.md
@@ -62,7 +62,7 @@ jsonpathは次のように解釈されます:
 `range`を使用して要素を個別に繰り返し処理することにより、フォーマットをさらに制御できます。
 
 ```shell
-kubectl get pods --all-namespaces -o=jsonpath='{range .items[*]}{"\n"}{.metadata.name}{":\t"}{range .spec.containers[*]}{.image}{", "}{end}{end}' |\
+kubectl get pods --all-namespaces -o jsonpath='{range .items[*]}{"\n"}{.metadata.name}{":\t"}{range .spec.containers[*]}{.image}{", "}{end}{end}' |\
 sort
 ```
 
@@ -71,7 +71,7 @@ sort
 特定のラベルに一致するPodのみを対象とするには、-lフラグを使用します。以下は、`app=nginx`に一致するラベルを持つPodのみに一致します。
 
 ```shell
-kubectl get pods --all-namespaces -o=jsonpath="{..image}" -l app=nginx
+kubectl get pods --all-namespaces -o jsonpath="{..image}" -l app=nginx
 ```
 
 ## Podの名前空間でコンテナイメージ一覧をフィルタリングする {#list-container-images-filtering-by-pod-namespace}
diff --git a/content/ja/docs/tasks/access-application-cluster/service-access-application-cluster.md b/content/ja/docs/tasks/access-application-cluster/service-access-application-cluster.md
index d566f09566..34413cedd3 100644
--- a/content/ja/docs/tasks/access-application-cluster/service-access-application-cluster.md
+++ b/content/ja/docs/tasks/access-application-cluster/service-access-application-cluster.md
@@ -140,6 +140,6 @@ Hello Worldアプリケーションが稼働しているDeployment、ReplicaSet
 
 
 詳細は
-[serviceを利用してアプリケーションと接続する](/docs/concepts/services-networking/connect-applications-service/)
+[serviceを利用してアプリケーションと接続する](/ja/docs/concepts/services-networking/connect-applications-service/)
 を確認してください。
 
diff --git a/content/ja/docs/tasks/administer-cluster/certificates.md b/content/ja/docs/tasks/administer-cluster/certificates.md
new file mode 100644
index 0000000000..56a0d4349d
--- /dev/null
+++ b/content/ja/docs/tasks/administer-cluster/certificates.md
@@ -0,0 +1,235 @@
+---
+title: 証明書
+content_type: task
+weight: 20
+---
+
+
+<!-- overview -->
+
+クライアント証明書認証を使用する場合、`easyrsa`,`openssl`または`cfssl`を使って手動で証明書を生成することができます。
+
+<!-- body -->
+
+### easyrsa
+
+**easyrsa**はクラスターの証明書を手動で生成することができます。
+
+1.  パッチが適用されたバージョンのeasyrsa3をダウンロードし、解凍し、初期化します。
+
+        curl -LO https://storage.googleapis.com/kubernetes-release/easy-rsa/easy-rsa.tar.gz
+        tar xzf easy-rsa.tar.gz
+        cd easy-rsa-master/easyrsa3
+        ./easyrsa init-pki
+1.  新しい認証局(CA)を生成します。
+    `req-cn`はCAの新しいルート証明書のコモンネーム(CN)を指定します。
+
+        ./easyrsa --batch "--req-cn=${MASTER_IP}@`date +%s`" build-ca nopass
+1.  サーバー証明書と鍵を生成します。
+    引数`--subject-alt-name`は、APIサーバーがアクセス可能なIPとDNS名を設定します。
+    `MASTER_CLUSTER_IP`は通常、APIサーバーとコントローラーマネージャーコンポーネントの両方で`--service-cluster-ip-range`引数に指定したサービスCIDRの最初のIPとなります。
+    引数`--days`は、証明書の有効期限が切れるまでの日数を設定するために使用します。
+    また、以下のサンプルでは、デフォルトのDNSドメイン名として`cluster.local`を使用することを想定しています。
+
+        ./easyrsa --subject-alt-name="IP:${MASTER_IP},"\
+        "IP:${MASTER_CLUSTER_IP},"\
+        "DNS:kubernetes,"\
+        "DNS:kubernetes.default,"\
+        "DNS:kubernetes.default.svc,"\
+        "DNS:kubernetes.default.svc.cluster,"\
+        "DNS:kubernetes.default.svc.cluster.local" \
+        --days=10000 \
+        build-server-full server nopass
+1.  `pki/ca.crt`,`pki/issued/server.crt`,`pki/private/server.key`を自分のディレクトリにコピーします。
+1.  APIサーバーのスタートパラメーターに以下のパラメーターを記入し、追加します。
+
+        --client-ca-file=/yourdirectory/ca.crt
+        --tls-cert-file=/yourdirectory/server.crt
+        --tls-private-key-file=/yourdirectory/server.key
+
+### openssl
+
+**openssl**は、クラスター用の証明書を手動で生成することができます。
+
+1.  2048bitのca.keyを生成します:
+
+        openssl genrsa -out ca.key 2048
+1.  ca.keyに従ってca.crtを生成します(-daysで証明書の有効期限を設定します)。
+
+        openssl req -x509 -new -nodes -key ca.key -subj "/CN=${MASTER_IP}" -days 10000 -out ca.crt
+1.  2048bitでserver.keyを生成します:
+
+        openssl genrsa -out server.key 2048
+1.  証明書署名要求(CSR)を生成するための設定ファイルを作成します。
+    角括弧で囲まれた値(例:`<MASTER_IP>`)は必ず実際の値に置き換えてから、ファイル(例:`csr.conf`)に保存してください。`MASTER_CLUSTER_IP`の値は、前のサブセクションで説明したように、APIサーバーのサービスクラスターのIPであることに注意してください。また、以下のサンプルでは、デフォルトのDNSドメイン名として`cluster.local`を使用することを想定しています。
+
+        [ req ]
+        default_bits = 2048
+        prompt = no
+        default_md = sha256
+        req_extensions = req_ext
+        distinguished_name = dn
+
+        [ dn ]
+        C = <country>
+        ST = <state>
+        L = <city>
+        O = <organization>
+        OU = <organization unit>
+        CN = <MASTER_IP>
+
+        [ req_ext ]
+        subjectAltName = @alt_names
+
+        [ alt_names ]
+        DNS.1 = kubernetes
+        DNS.2 = kubernetes.default
+        DNS.3 = kubernetes.default.svc
+        DNS.4 = kubernetes.default.svc.cluster
+        DNS.5 = kubernetes.default.svc.cluster.local
+        IP.1 = <MASTER_IP>
+        IP.2 = <MASTER_CLUSTER_IP>
+
+        [ v3_ext ]
+        authorityKeyIdentifier=keyid,issuer:always
+        basicConstraints=CA:FALSE
+        keyUsage=keyEncipherment,dataEncipherment
+        extendedKeyUsage=serverAuth,clientAuth
+        subjectAltName=@alt_names
+1.  設定ファイルに基づき、証明書署名要求を生成します:
+
+        openssl req -new -key server.key -out server.csr -config csr.conf
+1.  ca.key、ca.crt、server.csrを使用して、サーバー証明書を生成します:
+
+        openssl x509 -req -in server.csr -CA ca.crt -CAkey ca.key \
+        -CAcreateserial -out server.crt -days 10000 \
+        -extensions v3_ext -extfile csr.conf
+1.  証明書署名要求を表示します:
+
+        openssl req  -noout -text -in ./server.csr
+1.  証明書を表示します:
+
+        openssl x509  -noout -text -in ./server.crt
+
+最後に、同じパラメーターをAPIサーバーのスタートパラメーターに追加します。
+
+### cfssl
+
+**cfssl**も証明書生を成するためのツールです。
+
+1.  以下のように、コマンドラインツールをダウンロードし、解凍して準備してください。
+    なお、サンプルのコマンドは、お使いのハードウェア・アーキテクチャやCFSSLのバージョンに合わせる必要があるかもしれません。
+
+        curl -L https://github.com/cloudflare/cfssl/releases/download/v1.5.0/cfssl_1.5.0_linux_amd64 -o cfssl
+        chmod +x cfssl
+        curl -L https://github.com/cloudflare/cfssl/releases/download/v1.5.0/cfssljson_1.5.0_linux_amd64 -o cfssljson
+        chmod +x cfssljson
+        curl -L https://github.com/cloudflare/cfssl/releases/download/v1.5.0/cfssl-certinfo_1.5.0_linux_amd64 -o cfssl-certinfo
+        chmod +x cfssl-certinfo
+1.  成果物を格納するディレクトリを作成し、cfsslを初期化します:
+
+        mkdir cert
+        cd cert
+        ../cfssl print-defaults config > config.json
+        ../cfssl print-defaults csr > csr.json
+1.  CAファイルを生成するためのJSON設定ファイル、例えば`ca-config.json`を作成します:
+
+        {
+          "signing": {
+            "default": {
+              "expiry": "8760h"
+            },
+            "profiles": {
+              "kubernetes": {
+                "usages": [
+                  "signing",
+                  "key encipherment",
+                  "server auth",
+                  "client auth"
+                ],
+                "expiry": "8760h"
+              }
+            }
+          }
+        }
+1.  CA証明書署名要求(CSR)用のJSON設定ファイル(例:`ca-csr.json`)を作成します。
+    角括弧で囲まれた値は、必ず使用したい実際の値に置き換えてください。
+
+        {
+          "CN": "kubernetes",
+          "key": {
+            "algo": "rsa",
+            "size": 2048
+          },
+          "names":[{
+            "C": "<country>",
+            "ST": "<state>",
+            "L": "<city>",
+            "O": "<organization>",
+            "OU": "<organization unit>"
+          }]
+        }
+1.  CAキー(`ca-key.pem`)と証明書(`ca.pem`)を生成します:
+
+        ../cfssl gencert -initca ca-csr.json | ../cfssljson -bare ca
+1.  APIサーバーの鍵と証明書を生成するためのJSON設定ファイル、例えば`server-csr.json`を作成します。
+    角括弧内の値は、必ず使用したい実際の値に置き換えてください。
+    `MASTER_CLUSTER_IP`は、前のサブセクションで説明したように、APIサーバーのサービスクラスターのIPです。
+    また、以下のサンプルでは、デフォルトのDNSドメイン名として`cluster.local`を使用することを想定しています。
+
+        {
+          "CN": "kubernetes",
+          "hosts": [
+            "127.0.0.1",
+            "<MASTER_IP>",
+            "<MASTER_CLUSTER_IP>",
+            "kubernetes",
+            "kubernetes.default",
+            "kubernetes.default.svc",
+            "kubernetes.default.svc.cluster",
+            "kubernetes.default.svc.cluster.local"
+          ],
+          "key": {
+            "algo": "rsa",
+            "size": 2048
+          },
+          "names": [{
+            "C": "<country>",
+            "ST": "<state>",
+            "L": "<city>",
+            "O": "<organization>",
+            "OU": "<organization unit>"
+          }]
+        }
+1.  APIサーバーの鍵と証明書を生成します。
+    デフォルトでは、それぞれ`server-key.pem`と`server.pem`というファイルに保存されます:
+
+        ../cfssl gencert -ca=ca.pem -ca-key=ca-key.pem \
+        --config=ca-config.json -profile=kubernetes \
+        server-csr.json | ../cfssljson -bare server
+
+
+## 自己署名入りCA証明書を配布する
+
+クライアントノードが自己署名入りCA証明書を有効なものとして認識できない場合があります。
+
+非プロダクション環境、または会社のファイアウォールの内側での開発環境であれば、自己署名入りCA証明書をすべてのクライアントに配布し、有効な証明書のローカルリストを更新することができます。
+
+各クライアントで、次の操作を実行します:
+
+```bash
+sudo cp ca.crt /usr/local/share/ca-certificates/kubernetes.crt
+sudo update-ca-certificates
+```
+
+```
+Updating certificates in /etc/ssl/certs...
+1 added, 0 removed; done.
+Running hooks in /etc/ca-certificates/update.d....
+done.
+```
+
+## 証明書API
+
+認証に使用するx509証明書のプロビジョニングには`certificates.k8s.io` APIを使用することができます。[ここ](/docs/tasks/tls/managing-tls-in-a-cluster)に記述されています。
+
diff --git a/content/ja/docs/tasks/administer-cluster/enabling-endpointslices.md b/content/ja/docs/tasks/administer-cluster/enabling-endpointslices.md
index 0718205ded..5b492e0711 100644
--- a/content/ja/docs/tasks/administer-cluster/enabling-endpointslices.md
+++ b/content/ja/docs/tasks/administer-cluster/enabling-endpointslices.md
@@ -38,5 +38,5 @@ EndpoitSliceはベータ版の機能です。APIとEndpointSlice{{< glossary_too
 ## {{% heading "whatsnext" %}}
 
 
-* [EndpointSlice](/docs/concepts/services-networking/endpoint-slices/)を参照してください。
+* [EndpointSlice](/ja/docs/concepts/services-networking/endpoint-slices/)を参照してください。
 * [サービスとアプリケーションの接続](/ja/docs/concepts/services-networking/connect-applications-service/)を参照してください。
diff --git a/content/ja/docs/tasks/administer-cluster/extended-resource-node.md b/content/ja/docs/tasks/administer-cluster/extended-resource-node.md
index 59156efd89..df991aaf23 100644
--- a/content/ja/docs/tasks/administer-cluster/extended-resource-node.md
+++ b/content/ja/docs/tasks/administer-cluster/extended-resource-node.md
@@ -85,7 +85,7 @@ Capacity:
  example.com/dongle:  4
 ```
 
-これで、アプリケーション開発者は特定の数のdongleをリクエストするPodを作成できるようになりました。詳しくは、[拡張リソースをコンテナに割り当てる](/docs/tasks/configure-pod-container/extended-resource/)を読んでください。
+これで、アプリケーション開発者は特定の数のdongleをリクエストするPodを作成できるようになりました。詳しくは、[拡張リソースをコンテナに割り当てる](/ja/docs/tasks/configure-pod-container/extended-resource/)を読んでください。
 
 ## 議論
 
diff --git a/content/ja/docs/tasks/administer-cluster/kubeadm/_index.md b/content/ja/docs/tasks/administer-cluster/kubeadm/_index.md
new file mode 100644
index 0000000000..9094ab70e6
--- /dev/null
+++ b/content/ja/docs/tasks/administer-cluster/kubeadm/_index.md
@@ -0,0 +1,5 @@
+---
+title: "kubeadmによる管理"
+weight: 10
+---
+
diff --git a/content/ja/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes.md b/content/ja/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes.md
index 62e610b277..3cd7ec82e0 100644
--- a/content/ja/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes.md
+++ b/content/ja/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes.md
@@ -146,7 +146,7 @@ Windowsワーカーノードの(管理者)権限を持つPowerShell環境で実
 1. wins、kubelet、kubeadmをインストールします。
 
    ```PowerShell
-   curl.exe -LO https://github.com/kubernetes-sigs/sig-windows-tools/releases/latest/download/PrepareNode.ps1
+   curl.exe -LO https://raw.githubusercontent.com/kubernetes-sigs/sig-windows-tools/master/kubeadm/scripts/PrepareNode.ps1
    .\PrepareNode.ps1 -KubernetesVersion {{< param "fullversion" >}}
    ```
 
@@ -178,4 +178,4 @@ flannel Podが実行されると、ノードは`Ready`状態になり、ワー
 ## {{% heading "whatsnext" %}}
 
 
-- [Windows kubeadmノードのアップグレード](/docs/tasks/administer-cluster/kubeadm/upgrading-windows-nodes)
+- [Windows kubeadmノードのアップグレード](/ja/docs/tasks/administer-cluster/kubeadm/upgrading-windows-nodes)
diff --git a/content/ja/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver.md b/content/ja/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver.md
new file mode 100644
index 0000000000..90205b6106
--- /dev/null
+++ b/content/ja/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver.md
@@ -0,0 +1,104 @@
+---
+title: cgroupドライバーの設定
+content_type: task
+weight: 10
+---
+
+<!-- overview -->
+
+このページでは、kubeadmクラスターのコンテナランタイムcgroupドライバーに合わせて、kubelet cgroupドライバーを設定する方法について説明します。
+
+## {{% heading "prerequisites" %}}
+
+Kubernetesの[コンテナランタイムの要件](/docs/setup/production-environment/container-runtimes)を熟知している必要があります。
+
+<!-- steps -->
+
+## コンテナランタイムのcgroupドライバーの設定
+
+[Container runtimes](/docs/setup/production-environment/container-runtimes)ページでは、kubeadmベースのセットアップでは`cgroupfs`ドライバーではなく、`systemd`ドライバーが推奨されると説明されています。
+
+このページでは、デフォルトの`systemd`ドライバーを使用して多くの異なるコンテナランタイムをセットアップする方法についての詳細も説明されています。
+
+## kubelet cgroupドライバーの設定
+
+kubeadmでは、`kubeadm init`の際に`KubeletConfiguration`構造体を渡すことができます。
+
+この`KubeletConfiguration`には、kubeletのcgroupドライバーを制御する`cgroupDriver`フィールドを含めることができます。
+
+{{< note >}}
+v1.22では、ユーザーが`KubeletConfiguration`の`cgroupDriver`フィールドを設定していない場合、`kubeadm`はデフォルトで`systemd`を設定するようになりました。
+{{< /note >}}
+
+フィールドを明示的に設定する最小限の例です:
+
+```yaml
+# kubeadm-config.yaml
+kind: ClusterConfiguration
+apiVersion: kubeadm.k8s.io/v1beta3
+kubernetesVersion: v1.21.0
+---
+kind: KubeletConfiguration
+apiVersion: kubelet.config.k8s.io/v1beta1
+cgroupDriver: systemd
+```
+
+このような設定ファイルは、kubeadmコマンドに渡すことができます:
+
+```shell
+kubeadm init --config kubeadm-config.yaml
+```
+
+{{< note >}}
+Kubeadmはクラスター内の全ノードで同じ`KubeletConfiguration`を使用します。
+
+`KubeletConfiguration`は`kube-system`名前空間下の[ConfigMap](/docs/concepts/configuration/configmap)オブジェクトに格納されます。
+
+サブコマンド`init`、`join`、`upgrade`を実行すると、kubeadmが`KubeletConfiguration`を`/var/lib/kubelet/config.yaml`以下にファイルとして書き込み、ローカルノードのkubeletに渡します。
+{{< /note >}}
+
+##  cgroupfsドライバーの使用
+
+このガイドで説明するように、`cgroupfs`ドライバーをkubeadmと一緒に使用することは推奨されません。
+`cgroupfs`を使い続け、`kubeadm upgrade`が既存のセットアップで`KubeletConfiguration` cgroupドライバーを変更しないようにするには、その値を明示的に指定する必要があります。
+これは、将来のバージョンのkubeadmに`systemd`ドライバーをデフォルトで適用させたくない場合に適用されます。
+値を明示する方法については、後述の「kubelet ConfigMapの修正」の項を参照してください。
+`cgroupfs`ドライバーを使用するようにコンテナランタイムを設定したい場合は、選択したコンテナランタイムのドキュメントを参照する必要があります。
+
+## `systemd`ドライバーへの移行
+
+既存のkubeadmクラスターのcgroupドライバーを`systemd`にインプレースで変更する場合は、kubeletのアップグレードと同様の手順が必要です。
+これには、以下に示す両方の手順を含める必要があります。
+
+{{< note >}}
+あるいは、クラスター内の古いノードを`systemd`ドライバーを使用する新しいノードに置き換えることも可能です。
+この場合、新しいノードに参加する前に以下の最初のステップのみを実行し、古いノードを削除する前にワークロードが新しいノードに安全に移動できることを確認する必要があります。
+{{< /note >}}
+
+### kubelet ConfigMapの修正
+
+- `kubectl get cm -n kube-system | grep kubelet-config`で、kubelet ConfigMapの名前を探します。
+- `kubectl edit cm kubelet-config-x.yy -n kube-system`を呼び出します(`x.yy`はKubernetesのバージョンに置き換えてください)。
+- 既存の`cgroupDriver`の値を修正するか、以下のような新しいフィールドを追加します。
+
+``yaml
+  cgroupDriver: systemd
+```
+
+このフィールドは、ConfigMapの`kubelet:`セクションの下に存在する必要があります。
+
+### 全ノードでcgroupドライバーを更新
+
+クラスター内の各ノードについて:
+
+- [Drain the node](/docs/tasks/administer-cluster/safely-drain-node)を`kubectl drain <node-name> --ignore-daemonsets`を使ってドレーンします。
+- `systemctl stop kubelet`を使用して、kubeletを停止します。
+- コンテナランタイムの停止。
+- コンテナランタイムのcgroupドライバーを`systemd`に変更します。
+- `var/lib/kubelet/config.yaml`に`cgroupDriver: systemd`を設定します。
+- コンテナランタイムの開始。
+- `systemctl start kubelet`でkubeletを起動します。
+- [Drain the node](/docs/tasks/administer-cluster/safely-drain-node)を`kubectl uncordon <node-name>`を使って行います。
+
+ワークロードが異なるノードでスケジュールするための十分な時間を確保するために、これらのステップを1つずつノード上で実行します。
+プロセスが完了したら、すべてのノードとワークロードが健全であることを確認します。
diff --git a/content/ja/docs/tasks/administer-cluster/kubeadm/kubeadm-certs.md b/content/ja/docs/tasks/administer-cluster/kubeadm/kubeadm-certs.md
new file mode 100644
index 0000000000..1bac7b0018
--- /dev/null
+++ b/content/ja/docs/tasks/administer-cluster/kubeadm/kubeadm-certs.md
@@ -0,0 +1,269 @@
+---
+title: kubeadmによる証明書管理
+content_type: task
+weight: 10
+---
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.15" state="stable" >}}
+
+[kubeadm](/docs/reference/setup-tools/kubeadm/)で生成されたクライアント証明書は1年で失効します。
+このページでは、kubeadmで証明書の更新を管理する方法について説明します。
+
+## {{% heading "prerequisites" %}}
+
+[KubernetesにおけるPKI証明書と要件](/docs/setup/best-practices/certificates/)を熟知している必要があります。
+
+<!-- steps -->
+
+## カスタム証明書の使用 {#custom-certificates}
+
+デフォルトでは、kubeadmはクラスターの実行に必要なすべての証明書を生成します。
+独自の証明書を提供することで、この動作をオーバーライドできます。
+
+そのためには、`--cert-dir`フラグまたはkubeadmの`ClusterConfiguration`の`certificatesDir`フィールドで指定された任意のディレクトリに配置する必要があります。
+デフォルトは`/etc/kubernetes/pki`です。
+
+`kubeadm init` を実行する前に与えられた証明書と秘密鍵のペアが存在する場合、kubeadmはそれらを上書きしません。
+つまり、例えば既存のCAを`/etc/kubernetes/pki/ca.crt`と`/etc/kubernetes/pki/ca.key`にコピーすれば、kubeadmは残りの証明書に署名する際、このCAを使用できます。
+
+## 外部CAモード {#external-ca-mode}
+
+また、`ca.crt`ファイルのみを提供し、`ca.key`ファイルを提供しないことも可能です(これはルートCAファイルのみに有効で、他の証明書ペアには有効ではありません)。
+他の証明書とkubeconfigファイルがすべて揃っている場合、kubeadmはこの状態を認識し、外部CAモードを有効にします。
+kubeadmはディスク上のCAキーがなくても処理を進めます。
+
+代わりに、Controller-managerをスタンドアロンで、`--controllers=csrsigner`と実行し、CA証明書と鍵を指し示します。
+
+[PKI certificates and requirements](/docs/setup/best-practices/certificates/)には、外部CAを使用するためのクラスターのセットアップに関するガイダンスが含まれています。
+
+## 証明書の有効期限の確認
+
+`check-expiration`サブコマンドを使うと、証明書の有効期限を確認することができます。
+
+```
+kubeadm certs check-expiration
+```
+
+このような出力になります:
+
+```
+CERTIFICATE                EXPIRES                  RESIDUAL TIME   CERTIFICATE AUTHORITY   EXTERNALLY MANAGED
+admin.conf                 Dec 30, 2020 23:36 UTC   364d                                    no
+apiserver                  Dec 30, 2020 23:36 UTC   364d            ca                      no
+apiserver-etcd-client      Dec 30, 2020 23:36 UTC   364d            etcd-ca                 no
+apiserver-kubelet-client   Dec 30, 2020 23:36 UTC   364d            ca                      no
+controller-manager.conf    Dec 30, 2020 23:36 UTC   364d                                    no
+etcd-healthcheck-client    Dec 30, 2020 23:36 UTC   364d            etcd-ca                 no
+etcd-peer                  Dec 30, 2020 23:36 UTC   364d            etcd-ca                 no
+etcd-server                Dec 30, 2020 23:36 UTC   364d            etcd-ca                 no
+front-proxy-client         Dec 30, 2020 23:36 UTC   364d            front-proxy-ca          no
+scheduler.conf             Dec 30, 2020 23:36 UTC   364d                                    no
+
+CERTIFICATE AUTHORITY   EXPIRES                  RESIDUAL TIME   EXTERNALLY MANAGED
+ca                      Dec 28, 2029 23:36 UTC   9y              no
+etcd-ca                 Dec 28, 2029 23:36 UTC   9y              no
+front-proxy-ca          Dec 28, 2029 23:36 UTC   9y              no
+```
+
+このコマンドは、`/etc/kubernetes/pki`フォルダ内のクライアント証明書と、kubeadmが使用するKUBECONFIGファイル(`admin.conf`,`controller-manager.conf`,`scheduler.conf`)に埋め込まれたクライアント証明書の有効期限/残余時間を表示します。
+
+また、証明書が外部管理されている場合、kubeadmはユーザーに通知します。この場合、ユーザーは証明書の更新を手動または他のツールを使用して管理する必要があります。
+
+{{< warning >}}
+`kubeadm`は外部CAによって署名された証明書を管理することができません。
+{{< /warning >}}
+
+{{< note >}}
+kubeadmは`/var/lib/kubelet/pki`以下にあるローテート可能な証明書でkubeletの[証明書の自動更新](/docs/task/tls/certificate-rotation/)を構成するので`kubelet.conf`は上記のリストに含まれません。
+
+期限切れのkubeletクライアント証明書を修復するには、[Kubelet クライアント証明書のローテーションに失敗しました](/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm/#kubelet-client-cert)を参照ください。
+{{< /note >}}
+
+{{< warning >}}
+kubeadm version 1.17より前の`kubeadm init`で作成したノードでは、`kubelet.conf`の内容を手動で変更しなければならないという[bug](https://github.com/kubernetes/kubeadm/issues/1753)が存在します。
+
+`kubeadm init`が終了したら、`client-certificate-data`と`client-key-data`を置き換えて、ローテーションされたkubeletクライアント証明書を指すように`kubelet.conf`を更新してください。
+
+```yaml
+client-certificate: /var/lib/kubelet/pki/kubelet-client-current.pem
+client-key: /var/lib/kubelet/pki/kubelet-client-current.pem
+```
+{{< /warning >}}
+
+## 証明書の自動更新
+
+kubeadmはコントロールプレーンの[アップグレード](/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)時にすべての証明書を更新します。
+
+この機能は、最もシンプルなユースケースに対応するために設計されています。
+証明書の更新に特別な要件がなく、Kubernetesのバージョンアップを定期的に行う場合(各アップグレードの間隔が1年未満)、kubeadmがクラスターを最新かつ適度に安全に保つための処理を行います。
+
+{{< note >}}
+安全性を維持するために、クラスターを頻繁にアップグレードすることがベストプラクティスです。
+{{< /note >}}
+
+証明書の更新に関してより複雑な要求がある場合は、`--certificate-renewal=false`を`kubeadm upgrade apply`や`kubeadm upgrade node`に渡して、デフォルトの動作から外れるようにすることができます。
+
+{{< warning >}}
+kubeadmバージョン1.17より前のバージョンでは、`kubeadm upgrade node`コマンドの`--certificate-renewal`のデフォルト値が`false`になっているという[bug(https://github.com/kubernetes/kubeadm/issues/1818)]問題があります。
+この場合、明示的に`--certificate-renewal=true`を設定する必要があります。
+{{< /warning >}}
+
+## 手動による証明書更新
+
+`kubeadm certs renew` コマンドを使えば、いつでも証明書を手動で更新することができます。
+
+このコマンドは`/etc/kubernetes/pki`に格納されているCA(またはfront-proxy-CA)の証明書と鍵を使って更新を行います。
+
+コマンド実行後、コントロールプレーンのPodを再起動する必要があります。
+これは、現在すべてのコンポーネントと証明書について動的な証明書のリロードがサポートされていないため、必要な作業です。
+[スタティックPod](/docs/tasks/configure-pod-container/static-pod/)はローカルkubeletによって管理され、API Serverによって管理されないため、kubectlで削除および再起動することはできません。
+
+スタティックPodを再起動するには、一時的に`/etc/kubernetes/manifests/`からマニフェストファイルを削除して20秒間待ちます([KubeletConfiguration struct](/docs/reference/config-api/kubelet-config.v1beta1/)の`fileCheckFrequency`値を参照してください)。
+マニフェストディレクトリにPodが無くなると、kubeletはPodを終了します。
+その後ファイルを戻して、さらに`fileCheckFrequency`期間後に、kubeletはPodを再作成し、コンポーネントの証明書更新を完了することができます。
+
+{{< warning >}}
+HAクラスターを実行している場合、このコマンドはすべての制御プレーンノードで実行する必要があります。
+{{< /warning >}}
+
+{{< note >}}
+`certs renew`は、属性(Common Name、Organization、SANなど)の信頼できるソースとして、kubeadm-config ConfigMapではなく、既存の証明書を使用します。両者を同期させておくことが強く推奨されます。
+{{< /note >}}
+
+`kubeadm certs renew` は以下のオプションを提供します:
+
+Kubernetesの証明書は通常1年後に有効期限を迎えます。
+
+- `--csr-only`を使用すると、証明書署名要求を生成して外部CAとの証明書を更新することができます(実際にはその場で証明書を更新しません)。詳しくは次の段落を参照してください。
+
+- また、すべての証明書を更新するのではなく、1つの証明書を更新することも可能です。
+
+## Kubernetes certificates APIによる証明書の更新
+
+ここでは、Kubernetes certificates APIを使用して手動で証明書更新を実行する方法について詳しく説明します。
+
+{{< caution >}}
+これらは、組織の証明書インフラをkubeadmで構築されたクラスターに統合する必要があるユーザー向けの上級者向けのトピックです。
+kubeadmのデフォルトの設定で満足できる場合は、代わりにkubeadmに証明書を管理させる必要があります。
+{{< /caution >}}
+
+### 署名者の設定
+
+Kubernetesの認証局は、そのままでは機能しません。
+[cert-manager](https://cert-manager.io/docs/configuration/ca/)などの外部署名者を設定するか、組み込みの署名者を使用することができます。
+
+ビルトインサイナーは[`kube-controller-manager`](/docs/reference/command-line-tools-reference/kube-controller-manager/)に含まれるものです。
+
+ビルトインサイナーを有効にするには、`--cluster-signing-cert-file`と`--cluster-signing-key-file`フラグを渡す必要があります。
+
+新しいクラスターを作成する場合は、kubeadm[設定ファイル](https://pkg.go.dev/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta3)を使用します。
+
+```yaml
+apiVersion: kubeadm.k8s.io/v1beta3
+kind: ClusterConfiguration
+controllerManager:
+  extraArgs:
+    cluster-signing-cert-file: /etc/kubernetes/pki/ca.crt
+    cluster-signing-key-file: /etc/kubernetes/pki/ca.key
+```
+
+### 証明書署名要求の作成 (CSR)
+
+Kubernetes APIでのCSR作成については、[Create CertificateSigningRequest](/docs/reference/access-authn-authz/certificate-signing-requests/#create-certificatesigningrequest)を参照ください。
+
+## 外部CAによる証明書の更新
+
+ここでは、外部認証局を利用して手動で証明書更新を行う方法について詳しく説明します。
+
+外部CAとの連携を強化するために、kubeadmは証明書署名要求(CSR)を生成することもできます。
+CSRとは、クライアント用の署名付き証明書をCAに要求することを表します。
+kubeadmの用語では、通常ディスク上のCAによって署名される証明書をCSRとして生成することができます。しかし、CAはCSRとして生成することはできません。
+
+### 証明書署名要求の作成 (CSR)
+
+`kubeadm certs renew --csr-only`で証明書署名要求を作成することができます。
+
+CSRとそれに付随する秘密鍵の両方が出力されます。
+ディレクトリを`--csr-dir`で渡すと、指定した場所にCSRを出力することができます。
+`csr-dir`を指定しない場合は、デフォルトの証明書ディレクトリ(`/etc/kubernetes/pki`)が使用されます。
+
+証明書は`kubeadm certs renew --csr-only`で更新することができます。
+`kubeadm init`と同様に、`--csr-dir`フラグで出力先ディレクトリを指定することができます。
+
+CSRには、証明書の名前、ドメイン、IPが含まれますが、用途は指定されません。
+証明書を発行する際に、[正しい証明書の使用法](/docs/setup/best-practices/certificates/#all-certificates)を指定するのはCAの責任です。
+
+* `openssl`では、[`openssl ca`コマンド](https://superuser.com/questions/738612/openssl-ca-keyusage-extension)を使って行います。
+
+* `cfssl`では、[configファイルのusages](https://github.com/cloudflare/cfssl/blob/master/doc/cmd/cfssl.txt#L170)で指定します。
+
+お好みの方法で証明書に署名した後、証明書と秘密鍵をPKIディレクトリ(デフォルトでは`/etc/kubernetes/pki`)にコピーする必要があります。
+
+## 認証局(CA)のローテーション {#certificate-authority-rotation}
+
+Kubeadmは、CA証明書のローテーションや交換を最初からサポートしているわけではありません。
+
+CAの手動ローテーションや交換についての詳細は、[manual rotation of CA certificates](/docs/tasks/tls/manual-rotation-of-ca-certificates/)を参照してください。
+
+## 署名付きkubeletサービング証明書の有効化 {#kubelet-serving-certs}
+
+デフォルトでは、kubeadmによって展開されるkubeletサービング証明書は自己署名されています。
+これは、[metrics-server](https://github.com/kubernetes-sigs/metrics-server)のような外部サービスからキューブレットへの接続がTLSで保護されないことを意味します。
+新しいkubeadmクラスター内のkubeletが適切に署名されたサービング証明書を取得するように設定するには、`kubeadm init`に以下の最小限の設定を渡す必要があります。
+
+```yaml
+apiVersion: kubeadm.k8s.io/v1beta3
+kind: ClusterConfiguration
+---
+apiVersion: kubelet.config.k8s.io/v1beta1
+kind: KubeletConfiguration
+serverTLSBootstrap: true
+```
+
+すでにクラスターを作成している場合は、以下の手順で適応させる必要があります。
+
+ - kube-system` ネームスペースにある `kubelet-config-{{< skew latestVersion >}}` ConfigMapを見つけて編集します。
+
+そのConfigMapの`kubelet`キーの値として[KubeletConfiguration](/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)ドキュメントを指定します。KubeletConfigurationドキュメントを編集し、`serverTLSBootstrap: true`を設定します。
+
+- 各ノードで、`/var/lib/kubelet/config.yaml`に`serverTLSBootstrap: true`フィールドを追加し、`systemctl restart kubelet`でkubeletを再起動します。
+
+`serverTLSBootstrap: true`フィールドは、kubeleサービングのブートストラップを有効にします。
+証明書を`certificates.k8s.io`APIにリクエストすることで、証明書を発行することができます。
+
+既知の制限事項として、これらの証明書のCSR(Certificate Signing Requests)はkube-controller-managerのデフォルトサイナーによって自動的に承認されないことがあります。
+[`kubernetes.io/kubelet-serving`](/docs/reference/access-authn-authz/certificate-signing-requests/#kubernetes-signers) を参照してください。
+
+これには、ユーザーまたはサードパーティーのコントローラーからのアクションが必要です。
+
+これらのCSRは、以下を使用して表示できます:
+
+```shell
+kubectl get csr
+NAME        AGE     SIGNERNAME                        REQUESTOR                      CONDITION
+csr-9wvgt   112s    kubernetes.io/kubelet-serving     system:node:worker-1           Pending
+csr-lz97v   1m58s   kubernetes.io/kubelet-serving     system:node:control-plane-1    Pending
+```
+
+承認するためには、次のようにします:
+```shell
+kubectl certificate approve <CSR-name>
+```
+
+デフォルトでは、これらのサービング証明書は1年後に失効します。
+
+Kubeadmは`KubeletConfiguration`フィールド`rotateCertificates`を`true`に設定します。これは有効期限が切れる間際に、サービング証明書のための新しいCSRセットを作成し、ローテーションを完了するために承認する必要があることを意味します。
+
+詳しくは[Certificate Rotation](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/#certificate-rotation)をご覧ください。
+
+これらのCSRを自動的に承認するためのソリューションをお探しの場合は、以下をお勧めします。
+クラウドプロバイダーに連絡し、ノードの識別をアウトオブバンドのメカニズムで行うCSRの署名者がいるかどうか尋ねてください。
+
+{{% thirdparty-content %}}
+
+サードパーティーのカスタムコントローラーを使用することができます。
+- [kubelet-csr-approver](https://github.com/postfinance/kubelet-csr-approver)
+
+このようなコントローラーは、CSRのCommonNameを検証するだけでなく、要求されたIPやドメイン名も検証しなければ、安全なメカニズムとは言えません。これにより、kubeletクライアント証明書にアクセスできる悪意のあるアクターが、任意のIPやドメイン名に対してサービング証明書を要求するCSRを作成することを防ぐことができます。
diff --git a/content/ja/docs/tasks/administer-cluster/kubeadm/upgrading-windows-nodes.md b/content/ja/docs/tasks/administer-cluster/kubeadm/upgrading-windows-nodes.md
index 3c367aaa22..1deed73121 100644
--- a/content/ja/docs/tasks/administer-cluster/kubeadm/upgrading-windows-nodes.md
+++ b/content/ja/docs/tasks/administer-cluster/kubeadm/upgrading-windows-nodes.md
@@ -9,7 +9,7 @@ weight: 40
 
 {{< feature-state for_k8s_version="v1.18" state="beta" >}}
 
-このページでは、[kubeadmで作られた](/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes)Windowsノードをアップグレードする方法について説明します。
+このページでは、[kubeadmで作られた](/ja/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes)Windowsノードをアップグレードする方法について説明します。
 
 
 
diff --git a/content/ja/docs/tasks/administer-cluster/manage-resources/_index.md b/content/ja/docs/tasks/administer-cluster/manage-resources/_index.md
new file mode 100644
index 0000000000..a10d5bf6ab
--- /dev/null
+++ b/content/ja/docs/tasks/administer-cluster/manage-resources/_index.md
@@ -0,0 +1,4 @@
+---
+title: メモリー、CPU、APIリソースの管理
+weight: 20
+---
diff --git a/content/ja/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace.md b/content/ja/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace.md
index 1bc1b7951d..4ab8a06de4 100644
--- a/content/ja/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace.md
+++ b/content/ja/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace.md
@@ -255,4 +255,4 @@ kubectl delete namespace constraints-mem-example
 
 * [コンテナとPodへのCPUリソースの割り当て](/docs/tasks/configure-pod-container/assign-cpu-resource/)
 
-* [PodのQoS(サービス品質)を設定](/docs/tasks/configure-pod-container/quality-service-pod/)
+* [PodのQoS(サービス品質)を設定](/ja/docs/tasks/configure-pod-container/quality-service-pod/)
diff --git a/content/ja/docs/tasks/administer-cluster/manage-resources/memory-default-namespace.md b/content/ja/docs/tasks/administer-cluster/manage-resources/memory-default-namespace.md
new file mode 100644
index 0000000000..8266904358
--- /dev/null
+++ b/content/ja/docs/tasks/administer-cluster/manage-resources/memory-default-namespace.md
@@ -0,0 +1,197 @@
+---
+title: ネームスペースのデフォルトのメモリー要求と制限を設定する
+content_type: task
+weight: 10
+description: >-
+  ネームスペースのデフォルトのメモリーリソース制限を定義して、そのネームスペース内のすべての新しいPodにメモリーリソース制限が設定されるようにします。
+---
+
+<!-- overview -->
+
+このページでは、{{< glossary_tooltip text="ネームスペース" term_id="namespace" >}}のデフォルトのメモリー要求と制限を設定する方法を説明します。
+
+Kubernetesクラスターはネームスペースに分割することができます。デフォルトのメモリー[制限](/ja/docs/concepts/configuration/manage-resources-containers/#requests-and-limits)を持つネームスペースがあり、独自のメモリー制限を指定しないコンテナでPodを作成しようとすると、{{< glossary_tooltip text="コントロールプレーン" term_id="control-plane" >}}はそのコンテナにデフォルトのメモリー制限を割り当てます。
+
+Kubernetesは、このトピックで後ほど説明する特定の条件下で、デフォルトのメモリー要求を割り当てます。
+
+
+
+## {{% heading "prerequisites" %}}
+
+
+{{< include "task-tutorial-prereqs.md" >}}
+
+クラスターにネームスペースを作成するには、アクセス権が必要です。
+
+クラスターの各ノードには、最低でも2GiBのメモリーが必要です。
+
+
+
+<!-- steps -->
+
+## ネームスペースの作成
+
+この演習で作成したリソースがクラスターの他の部分から分離されるように、ネームスペースを作成します。
+
+```shell
+kubectl create namespace default-mem-example
+```
+
+## LimitRangeとPodの作成
+
+以下は、{{< glossary_tooltip text="LimitRange" term_id="limitrange" >}}のマニフェストの例です。このマニフェストでは、デフォルトのメモリー要求とデフォルトのメモリー制限を指定しています。
+
+{{< codenew file="admin/resource/memory-defaults.yaml" >}}
+
+default-mem-exampleネームスペースにLimitRangeを作成します:
+
+```shell
+kubectl apply -f https://k8s.io/examples/admin/resource/memory-defaults.yaml --namespace=default-mem-example
+```
+
+default-mem-exampleネームスペースでPodを作成し、そのPod内のコンテナがメモリー要求とメモリー制限の値を独自に指定しない場合、{{< glossary_tooltip text="コントロールプレーン" term_id="control-plane" >}}はデフォルト値のメモリー要求256MiBとメモリー制限512MiBを適用します。
+
+以下は、コンテナを1つ持つPodのマニフェストの例です。コンテナは、メモリー要求とメモリー制限を指定していません。
+
+{{< codenew file="admin/resource/memory-defaults-pod.yaml" >}}
+
+Podを作成します:
+
+```shell
+kubectl apply -f https://k8s.io/examples/admin/resource/memory-defaults-pod.yaml --namespace=default-mem-example
+```
+
+Podの詳細情報を表示します:
+
+```shell
+kubectl get pod default-mem-demo --output=yaml --namespace=default-mem-example
+```
+
+この出力は、Podのコンテナのメモリー要求が256MiBで、メモリー制限が512MiBであることを示しています。
+これらはLimitRangeで指定されたデフォルト値です。
+
+```shell
+containers:
+- image: nginx
+  imagePullPolicy: Always
+  name: default-mem-demo-ctr
+  resources:
+    limits:
+      memory: 512Mi
+    requests:
+      memory: 256Mi
+```
+
+Podを削除します:
+
+```shell
+kubectl delete pod default-mem-demo --namespace=default-mem-example
+```
+
+## コンテナの制限を指定し、要求を指定しない場合
+
+以下は1つのコンテナを持つPodのマニフェストです。コンテナはメモリー制限を指定しますが、メモリー要求は指定しません。
+
+{{< codenew file="admin/resource/memory-defaults-pod-2.yaml" >}}
+
+Podを作成します:
+
+
+```shell
+kubectl apply -f https://k8s.io/examples/admin/resource/memory-defaults-pod-2.yaml --namespace=default-mem-example
+```
+
+Podの詳細情報を表示します:
+
+```shell
+kubectl get pod default-mem-demo-2 --output=yaml --namespace=default-mem-example
+```
+
+この出力は、コンテナのメモリー要求がそのメモリー制限に一致するように設定されていることを示しています。
+コンテナにはデフォルトのメモリー要求値である256Miが割り当てられていないことに注意してください。
+
+```
+resources:
+  limits:
+    memory: 1Gi
+  requests:
+    memory: 1Gi
+```
+
+## コンテナの要求を指定し、制限を指定しない場合
+
+1つのコンテナを持つPodのマニフェストです。コンテナはメモリー要求を指定しますが、メモリー制限は指定しません。
+
+{{< codenew file="admin/resource/memory-defaults-pod-3.yaml" >}}
+
+Podを作成します:
+
+```shell
+kubectl apply -f https://k8s.io/examples/admin/resource/memory-defaults-pod-3.yaml --namespace=default-mem-example
+```
+
+Podの詳細情報を表示します:
+
+```shell
+kubectl get pod default-mem-demo-3 --output=yaml --namespace=default-mem-example
+```
+
+この出力は、コンテナのメモリー要求が、コンテナのマニフェストで指定された値に設定されていることを示しています。
+コンテナは512MiB以下のメモリーを使用するように制限されていて、これはネームスペースのデフォルトのメモリー制限と一致します。
+
+```
+resources:
+  limits:
+    memory: 512Mi
+  requests:
+    memory: 128Mi
+```
+
+## デフォルトのメモリー制限と要求の動機
+
+ネームスペースにメモリー{{< glossary_tooltip text="リソースクォータ" term_id="resource-quota" >}}が設定されている場合、メモリー制限のデフォルト値を設定しておくと便利です。
+
+以下はリソースクォータがネームスペースに課す制限のうちの2つです。
+
+* ネームスペースで実行されるすべてのPodについて、Podとその各コンテナにメモリー制限を設ける必要があります(Pod内のすべてのコンテナに対してメモリー制限を指定すると、Kubernetesはそのコンテナの制限を合計することでPodレベルのメモリー制限を推測することができます)。
+* メモリー制限は、当該Podがスケジュールされているノードのリソース予約を適用します。ネームスペース内のすべてのPodに対して予約されるメモリーの総量は、指定された制限を超えてはなりません。
+* また、ネームスペース内のすべてのPodが実際に使用するメモリーの総量も、指定された制限を超えてはなりません。
+
+LimitRangeの追加時:
+
+コンテナを含む、そのネームスペース内のいずれかのPodが独自のメモリー制限を指定していない場合、コントロールプレーンはそのコンテナにデフォルトのメモリー制限を適用し、メモリーのResourceQuotaによって制限されているネームスペース内でPodを実行できるようにします。
+
+## クリーンアップ
+
+ネームスペースを削除します:
+
+```shell
+kubectl delete namespace default-mem-example
+```
+
+
+
+## {{% heading "whatsnext" %}}
+
+
+### クラスター管理者向け
+
+* [Configure Default CPU Requests and Limits for a Namespace](/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/)
+
+* [Namespaceに対する最小および最大メモリー制約の構成](ja/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)
+
+* [Configure Minimum and Maximum CPU Constraints for a Namespace](/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
+
+* [Configure Memory and CPU Quotas for a Namespace](/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
+
+* [Configure a Pod Quota for a Namespace](/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace/)
+
+* [Configure Quotas for API Objects](/docs/tasks/administer-cluster/quota-api-object/)
+
+### アプリケーション開発者向け
+
+* [コンテナおよびPodへのメモリーリソースの割り当て](ja/docs/tasks/configure-pod-container/assign-memory-resource/)
+
+* [コンテナおよびPodへのCPUリソースの割り当て](ja/docs/tasks/configure-pod-container/assign-cpu-resource/)
+
+* [PodにQuality of Serviceを設定する](ja/docs/tasks/configure-pod-container/quality-service-pod/)
diff --git a/content/ja/docs/tasks/administer-cluster/migrating-from-dockershim/_index.md b/content/ja/docs/tasks/administer-cluster/migrating-from-dockershim/_index.md
new file mode 100644
index 0000000000..b93d71071e
--- /dev/null
+++ b/content/ja/docs/tasks/administer-cluster/migrating-from-dockershim/_index.md
@@ -0,0 +1,18 @@
+---
+title: dockershimからの移行
+weight: 10
+content_type: task
+---
+
+<!-- overview -->
+
+dockershimから他のコンテナランタイムに移行する際に知っておくべき情報を紹介します。
+
+Kubernetes 1.20で[dockershim deprecation](blog/2020/12/08/kubernetes-1-20-release-announcement/#dockershim-deprecation)が発表されてから、様々なワークロードやKubernetesインストールにどう影響するのかという質問が寄せられています。
+
+この問題をよりよく理解するために、[Dockershim Deprecation FAQ](/blog/2020/12/02/dockershim-faq/)ブログが役に立つでしょう。
+
+dockershimから代替のコンテナランタイムに移行することが推奨されます。
+[コンテナランタイム](/ja/docs/setup/production-environment/container-runtimes/)のセクションをチェックして、どのような選択肢があるかを確認してください。
+問題が発生した場合は、必ず[問題の報告](https://github.com/kubernetes/kubernetes/issues)をしてください。
+そうすれば、問題が適時に修正され、クラスターがdockershimの削除に対応できるようになります。
diff --git a/content/ja/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-deprecation-affects-you.md b/content/ja/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-deprecation-affects-you.md
new file mode 100644
index 0000000000..f854f051f7
--- /dev/null
+++ b/content/ja/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-deprecation-affects-you.md
@@ -0,0 +1,62 @@
+---
+title: Dockershim非推奨の影響範囲を確認する
+content_type: task
+weight: 20
+---
+
+<!-- overview -->
+Kubernetesの`dockershim`コンポーネントは、DockerをKubernetesの{{< glossary_tooltip text="コンテナランタイム" term_id="container-runtime" >}}として使用することを可能にします。
+
+Kubernetesの組み込みコンポーネントである`dockershim`はリリースv1.20で非推奨となりました。
+
+このページでは、あなたのクラスターがどのようにDockerをコンテナランタイムとして使用しているか、使用中の`dockershim`が果たす役割について詳しく説明し、`dockershim`の廃止によって影響を受けるワークロードがあるかどうかをチェックするためのステップを示します。
+
+## 自分のアプリがDockerに依存しているかどうかの確認 {#find-docker-dependencies}
+
+アプリケーションコンテナの構築にDockerを使用している場合でも、これらのコンテナを任意のコンテナランタイム上で実行することができます。このようなDockerの使用は、コンテナランタイムとしてのDockerへの依存とはみなされません。
+
+代替のコンテナランタイムが使用されている場合、Dockerコマンドを実行しても動作しないか、予期せぬ出力が得られる可能性があります。
+
+このように、Dockerへの依存があるかどうかを調べることができます:
+
+1. 特権を持つPodがDockerコマンド(`docker ps`など)を実行したり、Dockerサービスを再起動したり(`systemctl restart docker.service`などのコマンド)、Docker固有のファイル(`/etc/docker/daemon.json`など)を変更しないことを確認すること。
+1. Dockerの設定ファイル(`/etc/docker/daemon.json` など)にプライベートレジストリやイメージミラーの設定がないか確認します。これらは通常、別のコンテナランタイムのために再設定する必要があります。
+1. Kubernetesインフラストラクチャーの外側のノードで実行される以下のようなスクリプトやアプリがDockerコマンドを実行しないことを確認します。
+   - トラブルシューティングのために人間がノードにSSHで接続
+   - ノードのスタートアップスクリプト
+   - ノードに直接インストールされた監視エージェントやセキュリティエージェント
+1. 上記のような特権的な操作を行うサードパーティツール。詳しくは[Migrating telemetry and security agents from dockershim](/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents) を参照してください。
+1. dockershimの動作に間接的な依存性がないことを確認します。
+   これはエッジケースであり、あなたのアプリケーションに影響を与える可能性は低いです。ツールによっては、Docker固有の動作に反応するように設定されている場合があります。例えば、特定のメトリクスでアラートを上げたり、トラブルシューティングの指示の一部として特定のログメッセージを検索したりします。そのようなツールを設定している場合、移行前にテストクラスターで動作をテストしてください。
+
+## Dockerへの依存について解説 {#role-of-dockershim}
+
+[コンテナランタイム](/ja/docs/concepts/containers/#container-runtimes)とは、Kubernetes Podを構成するコンテナを実行できるソフトウェアです。
+
+KubernetesはPodのオーケストレーションとスケジューリングを担当し、各ノードでは{{< glossary_tooltip text="kubelet" term_id="kubelet" >}}がコンテナランタイムインターフェイスを抽象化して使用するので、互換性があればどのコンテナランタイムでも使用することができます。
+初期のリリースでは、Kubernetesは1つのコンテナランタイムと互換性を提供していました: Dockerです。
+その後、Kubernetesプロジェクトの歴史の中で、クラスター運用者は追加のコンテナランタイムを採用することを希望しました。
+CRIはこのような柔軟性を可能にするために設計され、kubeletはCRIのサポートを開始しました。
+しかし、DockerはCRI仕様が考案される前から存在していたため、Kubernetesプロジェクトはアダプタコンポーネント「dockershim」を作成しました。
+
+dockershimアダプターは、DockerがCRI互換ランタイムであるかのように、kubeletがDockerと対話することを可能にします。
+[Kubernetes Containerd integration goes GA](/blog/2018/05/24/kubernetes-containerd-integration-goes-ga/)ブログ記事で紹介されています。
+
+![Dockershim vs. CRI with Containerd](/images/blog/2018-05-24-kubernetes-containerd-integration-goes-ga/cri-containerd.png)
+
+コンテナランタイムとしてContainerdに切り替えることで、中間マージンを排除することができます。
+これまでと同じように、Containerdのようなコンテナランタイムですべてのコンテナを実行できます。
+しかし今は、コンテナはコンテナランタイムで直接スケジュールするので、Dockerからは見えません。
+そのため、これらのコンテナをチェックするために以前使っていたかもしれないDockerツールや派手なUIは、もはや利用できません。
+`docker ps`や`docker inspect`を使用してコンテナ情報を取得することはできません。
+コンテナを一覧表示できないので、ログを取得したり、コンテナを停止したり、`docker exec`を使用してコンテナ内で何かを実行したりすることもできません。
+
+{{< note >}}
+
+Kubernetes経由でワークロードを実行している場合、コンテナを停止する最善の方法は、コンテナランタイムを直接経由するよりもKubernetes APIを経由することです(このアドバイスはDockerだけでなく、すべてのコンテナランタイムに適用されます)。
+
+{{< /note >}}
+
+この場合でも、イメージを取得したり、`docker build`コマンドを使用してビルドすることは可能です。
+しかし、Dockerによってビルドまたはプルされたイメージは、コンテナランタイムとKubernetesからは見えません。
+Kubernetesで使用できるようにするには、何らかのレジストリにプッシュする必要がありました。
diff --git a/content/ja/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use.md b/content/ja/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use.md
new file mode 100644
index 0000000000..a6d297bdd8
--- /dev/null
+++ b/content/ja/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use.md
@@ -0,0 +1,45 @@
+---
+title: ノードで使用されているコンテナランタイムの確認
+content_type: task
+weight: 10
+---
+
+<!-- overview -->
+
+このページでは、クラスター内のノードが使用している[コンテナランタイム](/docs/setup/production-environment/container-runtimes/)を確認する手順を概説しています。
+
+クラスターの実行方法によっては、ノード用のコンテナランタイムが事前に設定されている場合と、設定する必要がある場合があります。
+マネージドKubernetesサービスを使用している場合、ノードに設定されているコンテナランタイムを確認するためのベンダー固有の方法があるかもしれません。
+このページで説明する方法は、`kubectl`の実行が許可されていればいつでも動作するはずです。
+
+## {{% heading "prerequisites" %}}
+
+`kubectl`をインストールし、設定します。詳細は[ツールのインストール](/ja/docs/tasks/tools/#kubectl)の項を参照してください。
+
+## ノードで使用されているコンテナランタイムの確認
+
+ノードの情報を取得して表示するには`kubectl`を使用します:
+
+```shell
+kubectl get nodes -o wide
+```
+
+出力は以下のようなものです。列`CONTAINER-RUNTIME`には、ランタイムとそのバージョンが出力されます。
+
+```none
+# For dockershim
+NAME         STATUS   VERSION    CONTAINER-RUNTIME
+node-1       Ready    v1.16.15   docker://19.3.1
+node-2       Ready    v1.16.15   docker://19.3.1
+node-3       Ready    v1.16.15   docker://19.3.1
+```
+
+```none
+# For containerd
+NAME         STATUS   VERSION   CONTAINER-RUNTIME
+node-1       Ready    v1.19.6   containerd://1.4.1
+node-2       Ready    v1.19.6   containerd://1.4.1
+node-3       Ready    v1.19.6   containerd://1.4.1
+```
+
+コンテナランタイムについては、[コンテナランタイム](/docs/setup/production-environment/container-runtimes/)のページで詳細を確認することができます。
diff --git a/content/ja/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents.md b/content/ja/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents.md
new file mode 100644
index 0000000000..a3b9a03d18
--- /dev/null
+++ b/content/ja/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents.md
@@ -0,0 +1,70 @@
+---
+title: dockershimからテレメトリーやセキュリティエージェントを移行する
+content_type: task
+weight: 70
+---
+
+<!-- overview -->
+
+Kubernetes 1.20でdockershimは非推奨になりました。
+
+[Dockershim Deprecation FAQ](/blog/2020/12/02/dockershim-faq/)から、ほとんどのアプリがコンテナをホストするランタイムに直接依存しないことは既にご存知かもしれません。
+しかし、コンテナのメタデータやログ、メトリクスを収集するためにDockerに依存しているテレメトリーやセキュリティエージェントはまだ多く存在します。
+この文書では、これらの依存関係を検出する方法と、これらのエージェントを汎用ツールまたは代替ランタイムに移行する方法に関するリンクを集約しています。
+
+## テレメトリーとセキュリティエージェント
+
+Kubernetesクラスター上でエージェントを実行するには、いくつかの方法があります。エージェントはノード上で直接、またはDaemonSetとして実行することができます。
+
+### テレメトリーエージェントがDockerに依存する理由とは？
+
+歴史的には、KubernetesはDockerの上に構築されていました。
+Kubernetesはネットワークとスケジューリングを管理し、Dockerはコンテナをノードに配置して操作していました。
+そのため、KubernetesからはPod名などのスケジューリング関連のメタデータを、Dockerからはコンテナの状態情報を取得することができます。
+時が経つにつれ、コンテナを管理するためのランタイムも増えてきました。
+また、多くのランタイムにまたがるコンテナ状態情報の抽出を一般化するプロジェクトやKubernetesの機能もあります。
+
+いくつかのエージェントはDockerツールに関連しています。
+エージェントは[`docker ps`](https://docs.docker.com/engine/reference/commandline/ps/)や[`docker top`](https://docs.docker.com/engine/reference/commandline/top/)といったコマンドを実行し、コンテナやプロセスの一覧を表示します。
+または[docker logs](https://docs.docker.com/engine/reference/commandline/logs/)を使えば、dockerログを購読することができます。
+
+Dockerがコンテナランタイムとして非推奨になったため、これらのコマンドはもう使えません。
+
+### Dockerに依存するDaemonSetの特定 {#identify-docker-dependency}
+
+Podがノード上で動作している`dockerd`を呼び出したい場合、Podは以下のいずれかを行う必要があります。
+
+- Dockerデーモンの特権ソケットがあるファイルシステムを{{< glossary_tooltip text="volume" term_id="volume" >}}のようにマウントする。
+
+- Dockerデーモンの特権ソケットの特定のパスを直接ボリュームとしてマウントします。
+
+例: COSイメージでは、DockerはそのUnixドメインソケットを`/var/run/docker.sock`に公開します。
+つまり、Pod仕様には`/var/run/docker.sock`の`hostPath`ボリュームマウントが含まれることになります。
+
+以下は、Dockerソケットを直接マッピングしたマウントを持つPodを探すためのシェルスクリプトのサンプルです。
+
+このスクリプトは、Podの名前空間と名前を出力します。
+
+`grep '/var/run/docker.sock'`を削除して、他のマウントを確認することもできます。
+
+```bash
+kubectl get pods --all-namespaces \
+-o=jsonpath='{range .items[*]}{"\n"}{.metadata.namespace}{":\t"}{.metadata.name}{":\t"}{range .spec.volumes[*]}{.hostPath.path}{", "}{end}{end}' \
+| sort \
+| grep '/var/run/docker.sock'
+```
+
+{{< note >}}
+Podがホスト上のDockerにアクセスするための代替方法があります。
+例えば、フルパスの代わりに親ディレクトリ`/var/run`をマウントすることができます([この例](https://gist.github.com/itaysk/7bc3e56d69c4d72a549286d98fd557dd) のように)。
+上記のスクリプトは、最も一般的な使用方法のみを検出します。
+{{< /note >}}
+
+### ノードエージェントからDockerの依存性を検出する
+
+クラスターノードをカスタマイズし、セキュリティやテレメトリーのエージェントをノードに追加インストールする場合、エージェントのベンダーにDockerへの依存性があるかどうかを必ず確認してください。
+
+### テレメトリーとセキュリティエージェントのベンダー
+
+様々なテレメトリーおよびセキュリティエージェントベンダーのための移行指示の作業中バージョンを[Google doc](https://docs.google.com/document/d/1ZFi4uKit63ga5sxEiZblfb-c23lFhvy6RXVPikS8wf0/edit#)に保管しています。
+dockershimからの移行に関する最新の手順については、各ベンダーにお問い合わせください。
diff --git a/content/ja/docs/tasks/administer-cluster/nodelocaldns.md b/content/ja/docs/tasks/administer-cluster/nodelocaldns.md
index 5b7b9e58e8..e7f97ea7f6 100644
--- a/content/ja/docs/tasks/administer-cluster/nodelocaldns.md
+++ b/content/ja/docs/tasks/administer-cluster/nodelocaldns.md
@@ -45,7 +45,7 @@ NodeLocal DNSキャッシュは、クラスターノード上でDNSキャッシ
 {{< figure src="/images/docs/nodelocaldns.svg" alt="NodeLocal DNSCache flow" title="Nodelocal DNSCacheのフロー" caption="この図は、NodeLocal DNSキャッシュがDNSクエリーをどう扱うかを表したものです。" >}}
 
 ## 設定
-{{< note >}} NodeLocal DNSキャッシュ用のローカルに待ち受けているIPアドレスは、169.254.20.0/16の範囲のIPか、既存のIPと衝突しないことが保証されている他のIPとなります。このドキュメントでは例として169.254.10を使用します。
+{{< note >}} NodeLocal DNSキャッシュのローカルリッスン用のIPアドレスは、クラスタ内の既存のIPと衝突しないことが保証できるものであれば、どのようなアドレスでもかまいません。例えば、IPv4のリンクローカル範囲169.254.0.0/16やIPv6のユニークローカルアドレス範囲fd00::/8から、ローカルスコープのアドレスを使用することが推奨されています。
 {{< /note >}}
 
 この機能は、下記の手順により有効化できます。
@@ -73,7 +73,7 @@ NodeLocal DNSキャッシュは、クラスターノード上でDNSキャッシ
   * kube-proxyがIPVSモードで稼働中のとき:
 
     ``` bash
-     sed -i "s/__PILLAR__LOCAL__DNS__/$localdns/g; s/__PILLAR__DNS__DOMAIN__/$domain/g; s/__PILLAR__DNS__SERVER__//g; s/__PILLAR__CLUSTER__DNS__/$kubedns/g" nodelocaldns.yaml
+     sed -i "s/__PILLAR__LOCAL__DNS__/$localdns/g; s/__PILLAR__DNS__DOMAIN__/$domain/g; s/,__PILLAR__DNS__SERVER__//g; s/__PILLAR__CLUSTER__DNS__/$kubedns/g" nodelocaldns.yaml
     ```
      このモードでは、node-local-dns Podは`<node-local-address>`上のみで待ち受けます。node-local-dnsのインターフェースはkube-dnsのクラスターIPをバインドしません。なぜならばIPVSロードバランシング用に使われているインターフェースは既にこのアドレスを使用しているためです。
      `__PILLAR__UPSTREAM__SERVERS__` はnode-local-dns Podにより生成されます。
diff --git a/content/ja/docs/tasks/administer-cluster/running-cloud-controller.md b/content/ja/docs/tasks/administer-cluster/running-cloud-controller.md
index 04dfd62f8b..def1401165 100644
--- a/content/ja/docs/tasks/administer-cluster/running-cloud-controller.md
+++ b/content/ja/docs/tasks/administer-cluster/running-cloud-controller.md
@@ -79,4 +79,4 @@ cloud-controller-managerは、クラウドプロバイダーのAPIにクエリ
 
 ## {{% heading "whatsnext" %}}
 
-独自のクラウドコントローラーマネージャーを構築および開発するには[クラウドコントローラーマネージャーの開発](/docs/tasks/administer-cluster/developing-cloud-controller-manager.md)を参照してください。
+独自のクラウドコントローラーマネージャーを構築および開発するには[クラウドコントローラーマネージャーの開発](/ja/docs/tasks/administer-cluster/developing-cloud-controller-manager/)を参照してください。
diff --git a/content/ja/docs/tasks/administer-cluster/securing-a-cluster.md b/content/ja/docs/tasks/administer-cluster/securing-a-cluster.md
new file mode 100644
index 0000000000..2210900193
--- /dev/null
+++ b/content/ja/docs/tasks/administer-cluster/securing-a-cluster.md
@@ -0,0 +1,197 @@
+---
+title: クラスターのセキュリティ
+content_type: task
+---
+
+<!-- overview -->
+
+このドキュメントでは、偶発的または悪意のあるアクセスからクラスターを保護するためのトピックについて説明します。
+また、全体的なセキュリティに関する推奨事項を提供します。
+
+
+## {{% heading "prerequisites" %}}
+
+
+* {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+
+
+
+<!-- steps -->
+
+## Kubernetes APIへのアクセスの制御
+
+Kubernetesは完全にAPI駆動であるため、誰がクラスターにアクセスできるか、どのようなアクションを実行できるかを制御・制限することが第一の防御策となります。
+
+### すべてのAPIトラフィックにTLS(Transport Layer Security)を使用する
+
+Kubernetesは、クラスター内のすべてのAPI通信がデフォルトでTLSにより暗号化されていることを期待しており、大半のインストール方法では、必要な証明書を作成してクラスターコンポーネントに配布することができます。
+
+コンポーネントやインストール方法によっては、HTTP上のローカルポートを有効にする場合があることに注意してください。管理者は、潜在的に保護されていないトラフィックを特定するために、各コンポーネントの設定に精通している必要があります。
+
+### APIの認証
+
+クラスターのインストール時に、共通のアクセスパターンに合わせて、APIサーバーが使用する認証メカニズムを選択します。
+例えば、シングルユーザーの小規模なクラスターでは、シンプルな証明書や静的なBearerトークンを使用することができます。
+大規模なクラスターでは、ユーザーをグループに細分化できる既存のOIDCまたはLDAPサーバーを統合することができます。
+
+ノード、プロキシー、スケジューラー、ボリュームプラグインなど、インフラの一部であるものも含めて、すべてのAPIクライアントを認証する必要があります。
+これらのクライアントは通常、[service accounts](/docs/reference/access-authn-authz/service-accounts-admin/)であるか、またはx509クライアント証明書を使用しており、クラスター起動時に自動的に作成されるか、クラスターインストールの一部として設定されます。
+
+詳細については、[認証](/ja/docs/reference/access-authn-authz/authentication/)を参照してください。
+
+### APIの認可
+
+認証されると、すべてのAPIコールは認可チェックを通過することになります。
+
+Kubernetesには、統合された[RBAC](/ja/docs/reference/access-authn-authz/rbac/)コンポーネントが搭載されており、入力されたユーザーやグループを、ロールにまとめられたパーミッションのセットにマッチさせます。
+これらのパーミッションは、動詞(get, create, delete)とリソース(pods, services, nodes)を組み合わせたもので、ネームスペース・スコープまたはクラスター・スコープに対応しています。
+すぐに使えるロールのセットが提供されており、クライアントが実行したいアクションに応じて、デフォルトで適切な責任の分離を提供します。
+
+[Node](/docs/reference/access-authn-authz/node/)と[RBAC](/ja/docs/reference/access-authn-authz/rbac/)の承認者は、[NodeRestriction](/docs/reference/access-authn-authz/admission-controllers/#noderestriction)のアドミッションプラグインと組み合わせて使用することをお勧めします。
+
+認証の場合と同様に、小規模なクラスターにはシンプルで幅広い役割が適切かもしれません。
+しかし、より多くのユーザーがクラスターに関わるようになるとチームを別の名前空間に分け、より限定的な役割を持たせることが必要になるかもしれません。
+認可においては、あるオブジェクトの更新が、他の場所でどのようなアクションを起こすかを理解することが重要です。
+
+たとえば、ユーザーは直接Podを作成することはできませんが、ユーザーに代わってPodを作成するDeploymentの作成を許可することで、間接的にそれらのPodを作成することができます。
+同様に、APIからノードを削除すると、そのノードにスケジューリングされていたPodが終了し、他のノードに再作成されます。
+すぐに使えるロールは、柔軟性と一般的なユースケースのバランスを表していますが、より限定的なロールは、偶発的なエスカレーションを防ぐために慎重に検討する必要があります。
+すぐに使えるロールがニーズを満たさない場合は、ユースケースに合わせてロールを作成することができます。
+
+詳しくは[authorization reference section](/docs/reference/access-authn-authz/authorization/)に参照してください。
+
+## Kubeletへのアクセスの制御
+
+Kubeletsは、ノードやコンテナの強力な制御を可能にするHTTPSエンドポイントを公開しています。
+デフォルトでは、KubeletsはこのAPIへの認証されていないアクセスを許可しています。
+
+本番環境のクラスターでは、Kubeletの認証と認可を有効にする必要があります。
+
+詳細は、[Kubelet 認証/認可](/ja/docs/reference/command-line-tools-reference/kubelet-authentication-authorization)に参照してください。
+
+## ワークロードやユーザーのキャパシティーを実行時に制御
+
+Kubernetesにおける権限付与は、意図的にハイレベルであり、リソースに対する粗いアクションに焦点を当てています。
+
+より強力なコントロールは**policies**として存在し、それらのオブジェクトがクラスタや自身、その他のリソースにどのように作用するかをユースケースによって制限します。
+
+### クラスターのリソース使用量の制限
+
+[リソースクォータ](/ja/docs/concepts/policy/resource-quotas/)は、ネームスペースに付与されるリソースの数や容量を制限するものです。
+
+これは、ネームスペースが割り当てることのできるCPU、メモリー、永続的なディスクの量を制限するためによく使われますが、各ネームスペースに存在するPod、サービス、ボリュームの数を制御することもできます。
+
+[Limit ranges](/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)は、上記のリソースの一部の最大または最小サイズを制限することで、ユーザーがメモリーなどの一般的に予約されたリソースに対して不当に高いまたは低い値を要求するのを防いだり、何も指定されていない場合にデフォルトの制限を提供したりします。
+
+### コンテナが利用する特権の制御
+
+Podの定義には、[security context](/docs/tasks/configure-pod-container/security-context/)が含まれており、ノード上の特定の Linux ユーザー(rootなど)として実行するためのアクセス、特権的に実行するためのアクセス、ホストネットワークにアクセスするためのアクセス、その他の制御を要求することができます。
+[Pod security policies](/docs/concepts/policy/pod-security-policy/)は、危険なセキュリティコンテキスト設定を提供できるユーザーやサービスアカウントを制限することができます。
+
+たとえば、Podのセキュリティポリシーでは、ボリュームマウント、特に`hostPath`を制限することができ、これはPodの制御すべき側面です。
+一般に、ほとんどのアプリケーションワークロードでは、ホストリソースへのアクセスを制限する必要があります。
+ホスト情報にアクセスすることなく、ルートプロセス(uid 0)として正常に実行できます。
+ただし、ルートユーザーに関連する権限を考慮して、非ルートユーザーとして実行するようにアプリケーションコンテナを記述する必要があります。
+
+## コンテナが不要なカーネルモジュールをロードしないようにします
+
+Linuxカーネルは、ハードウェアが接続されたときやファイルシステムがマウントされたときなど、特定の状況下で必要となるカーネルモジュールをディスクから自動的にロードします。
+特にKubernetesでは、非特権プロセスであっても、適切なタイプのソケットを作成するだけで、特定のネットワークプロトコル関連のカーネルモジュールをロードさせることができます。これにより、管理者が使用されていないと思い込んでいるカーネルモジュールのセキュリティホールを攻撃者が利用できる可能性があります。
+特定のモジュールが自動的にロードされないようにするには、そのモジュールをノードからアンインストールしたり、ルールを追加してブロックしたりします。
+
+ほとんどのLinuxディストリビューションでは、`/etc/modprobe.d/kubernetes-blacklist.conf`のような内容のファイルを作成することで実現できます。
+
+```
+# DCCPは必要性が低く、複数の深刻な脆弱性があり、保守も十分ではありません。
+blacklist dccp
+
+# SCTPはほとんどのKubernetesクラスタでは使用されておらず、また過去には脆弱性がありました。
+blacklist sctp
+```
+
+モジュールのロードをより一般的にブロックするには、SELinuxなどのLinuxセキュリティモジュールを使って、コンテナに対する `module_request`権限を完全に拒否し、いかなる状況下でもカーネルがコンテナ用のモジュールをロードできないようにすることができます。
+(Podは、手動でロードされたモジュールや、より高い権限を持つプロセスに代わってカーネルがロードしたモジュールを使用することはできます)。
+
+
+### ネットワークアクセスの制限
+
+名前空間の[ネットワークポリシー](/ja/docs/tasks/administer-cluster/declare-network-policy/)により、アプリケーション作成者は、他の名前空間のPodが自分の名前空間内のPodやポートにアクセスすることを制限することができます。
+
+サポートされている[Kubernetes networking providers](/ja/docs/concepts/cluster-administration/networking/)の多くは、ネットワークポリシーを尊重するようになりました。
+クォータやリミットの範囲は、ユーザーがノードポートや負荷分散サービスを要求するかどうかを制御するためにも使用でき、多くのクラスターでは、ユーザーのアプリケーションがクラスターの外で見えるかどうかを制御できます。
+ノードごとのファイアウォール、クロストークを防ぐための物理的なクラスタノードの分離、高度なネットワークポリシーなど、プラグインや環境ごとにネットワークルールを制御する追加の保護機能が利用できる場合もあります。
+
+### クラウドメタデータのAPIアクセスを制限
+
+クラウドプラットフォーム(AWS、Azure、GCEなど)では、しばしばメタデータサービスをインスタンスローカルに公開しています。
+デフォルトでは、これらのAPIはインスタンス上で実行されているPodからアクセスでき、そのノードのクラウド認証情報や、kubelet認証情報などのプロビジョニングデータを含むことができます。
+これらの認証情報は、クラスター内でのエスカレーションや、同じアカウントの他のクラウドサービスへのエスカレーションに使用できます。
+
+クラウドプラットフォーム上でKubernetesを実行する場合は、インスタンスの認証情報に与えられるパーミッションを制限し、[ネットワークポリシー](/ja/docs/tasks/administer-cluster/declare-network-policy/)を使用してメタデータAPIへのPodのアクセスを制限し、プロビジョニングデータを使用してシークレットを配信することは避けてください。
+
+### Podのアクセス可能ノードを制御
+
+デフォルトでは、どのノードがPodを実行できるかについての制限はありません。
+Kubernetesは、エンドユーザーが利用できる[Node上へのPodのスケジューリング](/ja/docs/concepts/scheduling-eviction/assign-pod-node/)と[TaintとToleration](/ja/docs/concepts/scheduling-eviction/taint-and-toleration/)を提供します。
+多くのクラスターでは、ワークロードを分離するためにこれらのポリシーを使用することは、作者が採用したり、ツールを使って強制したりする慣習になっています。
+
+管理者としては、ベータ版のアドミッションプラグイン「PodNodeSelector」を使用して、ネームスペース内のPodをデフォルトまたは特定のノードセレクタを必要とするように強制することができます。
+エンドユーザーがネームスペースを変更できない場合は、特定のワークロード内のすべてのPodの配置を強く制限することができます。
+
+## クラスターのコンポーネントの保護
+
+このセクションでは、クラスターを危険から守るための一般的なパターンを説明します。
+
+### etcdへのアクセスの制限
+
+API用のetcdバックエンドへの書き込みアクセスは、クラスタ全体のrootを取得するのと同等であり、読み取りアクセスはかなり迅速にエスカレートするために使用できます。
+管理者は、TLSクライアント証明書による相互認証など、APIサーバーからetcdサーバーへの強力な認証情報を常に使用すべきであり、API サーバーのみがアクセスできるファイアウォールの後ろにetcdサーバーを隔離することがしばしば推奨されます。
+
+{{< caution >}}
+クラスター内の他のコンポーネントが、完全なキースペースへの読み取りまたは書き込みアクセスを持つマスターetcdインスタンスへのアクセスを許可することは、クラスター管理者のアクセスを許可することと同じです。
+マスター以外のコンポーネントに別のetcdインスタンスを使用するか、またはetcd ACLを使用してキースペースのサブセットへの読み取りおよび書き込みアクセスを制限することを強く推奨します。
+{{< /caution >}}
+
+### 監査ログの有効
+
+[audit logger](/docs/tasks/debug/debug-cluster/audit/)はベータ版の機能で、APIによって行われたアクションを記録し、侵害があった場合に後から分析できるようにするものです。
+
+監査ログを有効にして、ログファイルを安全なサーバーにアーカイブすることをお勧めします。
+
+### アルファまたはベータ機能へのアクセスの制限
+
+アルファ版およびベータ版のKubernetesの機能は活発に開発が行われており、セキュリティ上の脆弱性をもたらす制限やバグがある可能性があります。
+常に、アルファ版またはベータ版の機能が提供する価値と、セキュリティ体制に起こりうるリスクを比較して評価してください。
+疑問がある場合は、使用しない機能を無効にしてください。
+
+### インフラの認証情報を頻繁に交換
+
+秘密やクレデンシャルの有効期間が短いほど、攻撃者がそのクレデンシャルを利用することは難しくなります。
+証明書の有効期間を短く設定し、そのローテーションを自動化します。
+発行されたトークンの利用可能期間を制御できる認証プロバイダーを使用し、可能な限り短いライフタイムを使用します。
+外部統合でサービス・アカウント・トークンを使用する場合、これらのトークンを頻繁にローテーションすることを計画します。
+例えば、ブートストラップ・フェーズが完了したら、ノードのセットアップに使用したブートストラップ・トークンを失効させるか、その認証を解除する必要があります。
+
+### サードパーティの統合を有効にする前に確認
+
+Kubernetesへの多くのサードパーティの統合は、クラスターのセキュリティプロファイルを変更する可能性があります。
+統合を有効にする際には、アクセスを許可する前に、拡張機能が要求するパーミッションを常に確認してください。
+
+例えば、多くのセキュリティ統合は、事実上そのコンポーネントをクラスター管理者にしているクラスター上のすべての秘密を見るためのアクセスを要求するかもしれません。
+疑問がある場合は、可能な限り単一の名前空間で機能するように統合を制限してください。
+Podを作成するコンポーネントも、`kube-system`名前空間のような名前空間内で行うことができれば、予想外に強力になる可能性があります。これは、サービスアカウントのシークレットにアクセスしたり、サービスアカウントに寛容な[pod security policies](/docs/concepts/policy/pod-security-policy/)へのアクセスが許可されている場合に、昇格したパーミッションでPodが実行される可能性があるからです。
+
+### etcdにあるSecretを暗号化
+
+一般的に、etcdデータベースにはKubernetes APIを介してアクセス可能なあらゆる情報が含まれており、クラスターの状態に対する大きな可視性を攻撃者へ与える可能性があります。
+よく吟味されたバックアップおよび暗号化ソリューションを使用して、常にバックアップを暗号化し、可能な場合はフルディスク暗号化の使用を検討してください。
+
+Kubernetesは1.7で導入された機能である[encryption at rest](/docs/tasks/administer-cluster/encrypt-data/)をサポートしており、これは1.13からはベータ版となっています。
+これは、etcdの`Secret`リソースを暗号化し、etcdのバックアップにアクセスした人が、それらのシークレットの内容を見ることを防ぎます。
+この機能は現在ベータ版ですが、バックアップが暗号化されていない場合や、攻撃者がetcdへの読み取りアクセスを得た場合に、追加の防御レベルを提供します。
+
+### セキュリティアップデートのアラートの受信と脆弱性の報告
+
+[kubernetes-announce](https://groups.google.com/forum/#!forum/kubernetes-announce)に参加してください。
+グループに参加すると、セキュリティアナウンスに関するメールを受け取ることができます。
+脆弱性の報告方法については、[security reporting](/docs/reference/issues-security/security/)ページを参照してください。
diff --git a/content/ja/docs/tasks/configure-pod-container/assign-pods-nodes-using-node-affinity.md b/content/ja/docs/tasks/configure-pod-container/assign-pods-nodes-using-node-affinity.md
index 5154669ed5..77caf9a13c 100644
--- a/content/ja/docs/tasks/configure-pod-container/assign-pods-nodes-using-node-affinity.md
+++ b/content/ja/docs/tasks/configure-pod-container/assign-pods-nodes-using-node-affinity.md
@@ -111,5 +111,5 @@ weight: 120
 
 ## {{% heading "whatsnext" %}}
 
-[Node Affinity](/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity)についてさらに学ぶ。
+[Node Affinity](/ja/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity)についてさらに学ぶ。
 
diff --git a/content/ja/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md b/content/ja/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md
index 68929ec5bb..2ac539bf06 100644
--- a/content/ja/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md
+++ b/content/ja/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md
@@ -51,7 +51,7 @@ Probeの動作としては、kubeletは`cat /tmp/healthy`を対象のコンテ
 このコンテナは、起動すると次のコマンドを実行します:
 
 ```shell
-/bin/sh -c "touch /tmp/healthy; sleep 30; rm -rf /tmp/healthy; sleep 600"
+/bin/sh -c "touch /tmp/healthy; sleep 30; rm -f /tmp/healthy; sleep 600"
 ```
 
 コンテナが起動してから初めの30秒間は`/tmp/healthy`ファイルがコンテナ内に存在します。
@@ -131,7 +131,7 @@ kubeletはコンテナが問題なく動いていると判断します。
 
 200以上400未満のコードは成功とみなされ、その他のコードは失敗とみなされます。
 
-[server.go](https://github.com/kubernetes/kubernetes/blob/{{< param "githubbranch" >}}/test/images/agnhost/liveness/server.go)
+[server.go](https://github.com/kubernetes/kubernetes/blob/master/test/images/agnhost/liveness/server.go)
 にてサーバーのソースコードを確認することができます。
 
 コンテナが生きている初めの10秒間は、`/healthz`ハンドラーが200ステータスを返します。
diff --git a/content/ja/docs/tasks/configure-pod-container/configure-projected-volume-storage.md b/content/ja/docs/tasks/configure-pod-container/configure-projected-volume-storage.md
index c67c826c4d..4c70662d42 100644
--- a/content/ja/docs/tasks/configure-pod-container/configure-projected-volume-storage.md
+++ b/content/ja/docs/tasks/configure-pod-container/configure-projected-volume-storage.md
@@ -79,5 +79,5 @@ kubectl delete secret user pass
 ## {{% heading "whatsnext" %}}
 
 * [`projected`](/docs/concepts/storage/volumes/#projected)ボリュームについてさらに学ぶ
-* [all-in-oneボリューム](https://github.com/kubernetes/community/blob/{{< param "githubbranch" >}}/contributors/design-proposals/node/all-in-one-volume.md)のデザインドキュメントを読む
+* [all-in-oneボリューム](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/node/all-in-one-volume.md)のデザインドキュメントを読む
 
diff --git a/content/ja/docs/tasks/debug-application-cluster/audit.md b/content/ja/docs/tasks/debug-application-cluster/audit.md
new file mode 100644
index 0000000000..c38014b39e
--- /dev/null
+++ b/content/ja/docs/tasks/debug-application-cluster/audit.md
@@ -0,0 +1,233 @@
+---
+content_type: concept
+title: 監査
+---
+
+<!-- overview -->
+
+Kubernetesの監査はクラスター内の一連の行動を記録するセキュリティに関連した時系列の記録を提供します。
+クラスターはユーザー、Kubernetes APIを使用するアプリケーション、
+およびコントロールプレーン自体によって生成されたアクティビティなどを監査します。
+
+監査により、クラスター管理者は以下の質問に答えることができます:
+
+ - 何が起きたのか？
+ - いつ起こったのか？
+ - 誰がそれを始めたのか？
+ - 何のために起こったのか？
+ - それはどこで観察されたのか？
+ - それはどこから始まったのか？
+ - それはどこへ向かっていたのか？
+
+<!-- body -->
+
+監査記録のライフサイクルは[kube-apiserver](/docs/reference/command-line-tools-reference/kube-apiserver/)コンポーネントの中で始まります。
+各リクエストの実行の各段階で、監査イベントが生成されます。
+ポリシーに従って前処理され、バックエンドに書き込まれます。 ポリシーが何を記録するかを決定し、
+バックエンドがその記録を永続化します。現在のバックエンドの実装はログファイルやWebhookなどがあります。
+
+各リクエストは関連する _stage_ で記録されます。
+定義されたステージは以下の通りです:
+
+- `RequestReceived` - 監査ハンドラーがリクエストを受信すると同時に生成されるイベントのステージ。
+  つまり、ハンドラーチェーンに委譲される前に生成されるイベントのステージです。
+- `ResponseStarted` - レスポンスヘッダーが送信された後、レスポンスボディが送信される前のステージです。
+  このステージは長時間実行されるリクエスト(watchなど)でのみ発生します。
+- `ResponseComplete` - レスポンスボディの送信が完了して、それ以上のバイトは送信されません。
+- `Panic` - パニックが起きたときに発生するイベント。
+
+{{< note >}}
+[Audit Event configuration](/docs/reference/config-api/apiserver-audit.v1/#audit-k8s-io-v1-Event)の設定は[Event](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#event-v1-core)APIオブジェクトとは異なります。
+{{< /note >}}
+
+監査ログ機能は、リクエストごとに監査に必要なコンテキストが保存されるため、APIサーバーのメモリー消費量が増加します。
+メモリーの消費量は、監査ログ機能の設定によって異なります。
+
+## 監査ポリシー
+
+監査ポリシーはどのようなイベントを記録し、どのようなデータを含むべきかについてのルールを定義します。
+監査ポリシーのオブジェクト構造は、[`audit.k8s.io` API group](/docs/reference/config-api/apiserver-audit.v1/#audit-k8s-io-v1-Policy)で定義されています。
+
+イベントが処理されると、そのイベントは順番にルールのリストと比較されます。
+最初のマッチングルールは、イベントの監査レベルを設定します。
+
+定義されている監査レベルは:
+
+- `None` - ルールに一致するイベントを記録しません。
+- `Metadata` - リクエストのメタデータ(リクエストしたユーザー、タイムスタンプ、リソース、動作など)を記録しますが、リクエストやレスポンスのボディは記録しません。
+- `Request` - ログイベントのメタデータとリクエストボディは表示されますが、レスポンスボディは表示されません。
+  これは非リソースリクエストには適用されません。
+- `RequestResponse` - イベントのメタデータ、リクエストとレスポンスのボディを記録しますが、
+  非リソースリクエストには適用されません。
+
+`audit-policy-file`フラグを使って、ポリシーを記述したファイルを `kube-apiserver`に渡すことができます。
+このフラグが省略された場合イベントは記録されません。
+監査ポリシーファイルでは、`rules`フィールドが必ず指定されることに注意してください。
+ルールがない(0)ポリシーは不当なものとして扱われます。
+
+以下は監査ポリシーファイルの例です:
+
+{{< codenew file="audit/audit-policy.yaml" >}}
+
+最小限の監査ポリシーファイルを使用して、すべてのリクエストを `Metadata`レベルで記録することができます。
+
+```yaml
+# Log all requests at the Metadata level.
+apiVersion: audit.k8s.io/v1
+kind: Policy
+rules:
+- level: Metadata
+```
+
+独自の監査プロファイルを作成する場合は、Google Container-Optimized OSの監査プロファイルを出発点として使用できます。
+監査ポリシーファイルを生成する[configure-helper.sh](https://github.com/kubernetes/kubernetes/blob/master/cluster/gce/gci/configure-helper.sh)スクリプトを確認することができます。
+スクリプトを直接見ることで、監査ポリシーファイルのほとんどを見ることができます。
+
+また、定義されているフィールドの詳細については、[Policy` configuration reference](/docs/reference/config-api/apiserver-audit.v1/#audit-k8s-io-v1-Policy)を参照できます。
+
+## 監査バックエンド
+
+監査バックエンドは監査イベントを外部ストレージに永続化します。
+kube-apiserverには2つのバックエンドが用意されています。
+
+- イベントをファイルシステムに書き込むログバックエンド
+- 外部のHTTP APIにイベントを送信するWebhookバックエンド
+
+いずれの場合も、監査イベントはKubernetes API[`audit.k8s.io` API group](/docs/reference/config-api/apiserver-audit.v1/#audit-k8s-io-v1-Event)で定義されている構造に従います。
+
+
+{{< note >}}
+パッチの場合、リクエストボディはパッチ操作を含むJSON配列であり、適切なKubernetes APIオブジェクトを含むJSONオブジェクトではありません。
+例えば、以下のリクエストボディは`/apis/batch/v1/namespaces/some-namespace/jobs/some-job-name`に対する有効なパッチリクエストです。
+
+```json
+[
+  {
+    "op": "replace",
+    "path": "/spec/parallelism",
+    "value": 0
+  },
+  {
+    "op": "remove",
+    "path": "/spec/template/spec/containers/0/terminationMessagePolicy"
+  }
+]
+```
+
+{{< /note >}}
+
+### ログバックエンド
+
+ログバックエンドは監査イベントを[JSONlines](https://jsonlines.org/)形式のファイルに書き込みます。
+以下の `kube-apiserver` フラグを使ってログ監査バックエンドを設定できます。
+
+- `--audit-log-path` は、ログバックエンドが監査イベントを書き込む際に使用するログファイルのパスを指定します。
+  このフラグを指定しないと、ログバックエンドは無効になります。`-` は標準出力を意味します。
+- `--audit-log-maxage` は、古い監査ログファイルを保持する最大日数を定義します。
+- `audit-log-maxbackup`は、保持する監査ログファイルの最大数を定義します。
+- `--audit-log-maxsize` は、監査ログファイルがローテーションされるまでの最大サイズをメガバイト単位で定義します。
+
+クラスターのコントロールプレーンでkube-apiserverをPodとして動作させている場合は、監査記録が永久化されるように、ポリシーファイルとログファイルの場所に`hostPath`をマウントすることを忘れないでください。
+例えば:
+```shell
+    --audit-policy-file=/etc/kubernetes/audit-policy.yaml \
+    --audit-log-path=/var/log/audit.log
+```
+
+それからボリュームをマウントします:
+```yaml
+...
+volumeMounts:
+  - mountPath: /etc/kubernetes/audit-policy.yaml
+    name: audit
+    readOnly: true
+  - mountPath: /var/log/audit.log
+    name: audit-log
+    readOnly: false
+```
+
+最後に`hostPath`を設定します:
+```yaml
+...
+volumes:
+- name: audit
+  hostPath:
+    path: /etc/kubernetes/audit-policy.yaml
+    type: File
+
+- name: audit-log
+  hostPath:
+    path: /var/log/audit.log
+    type: FileOrCreate
+```
+
+### Webhookバックエンド
+
+Webhook監査バックエンドは、監査イベントをリモートのWeb APIに送信しますが、
+これは認証手段を含むKubernetes APIの形式であると想定されます。
+
+Webhook監査バックエンドを設定するには、以下のkube-apiserverフラグを使用します。
+
+- `--audit-webhook-config-file` は、Webhookの設定ファイルのパスを指定します。
+  webhookの設定は、事実上特化した[kubeconfig](/docs/tasks/access-application-cluster/configure-access-multiple-clusters)です。
+- `--audit-webhook-initial-backoff` は、最初に失敗したリクエストの後、再試行するまでに待つ時間を指定します。
+  それ以降のリクエストは、指数関数的なバックオフで再試行されます。
+
+Webhookの設定ファイルは、kubeconfig形式でサービスのリモートアドレスと接続に使用する認証情報を指定します。
+
+## イベントバッチ {#batching}
+
+ログバックエンドとwebhookバックエンドの両方がバッチ処理をサポートしています。
+webhookを例に、利用可能なフラグの一覧を示します。
+ログバックエンドで同じフラグを取得するには、フラグ名の`webhook`を`log`に置き換えてください。
+デフォルトでは、バッチングは`webhook`では有効で、`log`では無効です。
+同様に、デフォルトではスロットリングは `webhook` で有効で、`log`では無効です。
+
+- `--audit-webhook-mode` は、バッファリング戦略を定義します。以下のいずれかとなります。
+  - `batch` - イベントをバッファリングして、非同期にバッチ処理します。これがデフォルトです。
+  - `blocking` - 個々のイベントを処理する際に、APIサーバーの応答をブロックします。
+  - `blocking-strict` - blockingと同じですが、RequestReceivedステージでの監査ログに失敗した場合は RequestReceivedステージで監査ログに失敗すると、kube-apiserverへのリクエスト全体が失敗します。
+
+以下のフラグは `batch` モードでのみ使用されます:
+
+- `--audit-webhook-batch-buffer-size`は、バッチ処理を行う前にバッファリングするイベントの数を定義します。
+  入力イベントの割合がバッファをオーバーフローすると、イベントはドロップされます。
+- `--audit-webhook-batch-max-size`は、1つのバッチに入れるイベントの最大数を定義します。
+- `--audit-webhook-batch-max-wait`は、キュー内のイベントを無条件にバッチ処理するまでの最大待機時間を定義します。
+- `--audit-webhook-batch-throttle-qps`は、1秒あたりに生成されるバッチの最大平均数を定義します。
+- `--audit-webhook-batch-throttle-burst`は、許可された QPS が低い場合に、同じ瞬間に生成されるバッチの最大数を定義します。
+
+
+## パラメーターチューニング
+
+パラメーターは、APIサーバーの負荷に合わせて設定してください。
+
+例えば、kube-apiserverが毎秒100件のリクエストを受け取り、それぞれのリクエストが`ResponseStarted`と`ResponseComplete`の段階でのみ監査されるとします。毎秒≅200の監査イベントが発生すると考えてください。
+1つのバッチに最大100個のイベントがあるの場合、スロットリングレベルを少なくとも2クエリ/秒に設定する必要があります。
+バックエンドがイベントを書き込むのに最大で5秒かかる場合、5秒分のイベントを保持するようにバッファーサイズを設定する必要があります。
+
+10バッチ、または1000イベントとなります。
+
+しかし、ほとんどの場合デフォルトのパラメーターで十分であり、手動で設定する必要はありません。
+kube-apiserverが公開している以下のPrometheusメトリクスや、ログを見て監査サブシステムの状態を監視することができます。
+
+- `apiserver_audit_event_total`メトリックには、エクスポートされた監査イベントの合計数が含まれます。
+- `apiserver_audit_error_total`メトリックには、エクスポート中にエラーが発生してドロップされたイベントの総数が含まれます。
+
+### ログエントリー・トランケーション {#truncate}
+
+logバックエンドとwebhookバックエンドは、ログに記録されるイベントのサイズを制限することをサポートしています。
+
+例として、logバックエンドで利用可能なフラグの一覧を以下に示します
+
+- `audit-log-truncate-enabled`イベントとバッチの切り捨てを有効にするかどうかです。
+- `audit-log-truncate-max-batch-size`バックエンドに送信されるバッチのバイト単位の最大サイズ。
+- `audit-log-truncate-max-event-size`バックエンドに送信される監査イベントのバイト単位の最大サイズです。
+
+デフォルトでは、`webhook`と`log`の両方で切り捨ては無効になっていますが、クラスター管理者は `audit-log-truncate-enabled`または`audit-webhook-truncate-enabled`を設定して、この機能を有効にする必要があります。
+
+## {{% heading "whatsnext" %}}
+
+* [Mutating webhook auditing annotations](/docs/reference/access-authn-authz/extensible-admission-controllers/#mutating-webhook-auditing-annotations).
+* [`Event`](/docs/reference/config-api/apiserver-audit.v1/#audit-k8s-io-v1-Event)
+* [`Policy`](/docs/reference/config-api/apiserver-audit.v1/#audit-k8s-io-v1-Policy)
diff --git a/content/ja/docs/tasks/debug-application-cluster/crictl.md b/content/ja/docs/tasks/debug-application-cluster/crictl.md
new file mode 100644
index 0000000000..3e3adbc7c3
--- /dev/null
+++ b/content/ja/docs/tasks/debug-application-cluster/crictl.md
@@ -0,0 +1,407 @@
+---
+title: crictlによるKubernetesノードのデバッグ
+content_type: task
+---
+
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.11" state="stable" >}}
+
+`crictl`はCRI互換のコンテナランタイム用のコマンドラインインターフェイスです。
+
+これを使って、Kubernetesノード上のコンテナランタイムやアプリケーションの検査やデバッグを行うことができます。
+`crictl`とそのソースコードは[cri-tools](https://github.com/kubernetes-sigs/cri-tools)リポジトリにホストされています。
+
+## {{% heading "prerequisites" %}}
+
+
+`crictl`にはCRIランタイムを搭載したLinuxが必要です。
+
+
+
+<!-- steps -->
+
+## crictlのインストール
+
+cri-toolsの[リリースページ](https://github.com/kubernetes-sigs/cri-tools/releases)から、いくつかの異なるアーキテクチャ用の圧縮アーカイブ`crictl`をダウンロードできます。
+
+お使いのKubernetesのバージョンに対応するバージョンをダウンロードしてください。
+それを解凍してシステムパス上の`/usr/local/bin/`などの場所に移動します。
+
+## 一般的な使い方
+
+`crictl`コマンドにはいくつかのサブコマンドとランタイムフラグがあります。
+詳細は`crictl help`または`crictl <subcommand> help`を参照してください。
+`crictl`はデフォルトでは`unix:///var/run/dockershim.sock`に接続します。
+
+他のランタイムの場合は、複数の異なる方法でエンドポイントを設定することができます:
+
+- フラグ`--runtime-endpoint`と`--image-endpoint`の設定により
+- 環境変数`CONTAINER_RUNTIME_ENDPOINT`と`IMAGE_SERVICE_ENDPOINT`の設定により
+- 設定ファイル`--config=/etc/crictl.yaml`でエンドポイントの設定により
+
+また、サーバーに接続する際のタイムアウト値を指定したり、デバッグを有効／無効にしたりすることもできます。
+これには、設定ファイルで`timeout`や`debug`を指定するか、`--timeout`や`--debug`のコマンドラインフラグを使用します。
+
+現在の設定を表示または編集するには、`/etc/crictl.yaml`の内容を表示または編集します。
+
+
+```shell
+cat /etc/crictl.yaml
+runtime-endpoint: unix:///var/run/dockershim.sock
+image-endpoint: unix:///var/run/dockershim.sock
+timeout: 10
+debug: true
+```
+
+## crictlコマンドの例
+
+以下の例では、いくつかの`crictl`コマンドとその出力例を示しています。
+
+{{< warning >}}
+実行中のKubernetesクラスターに`crictl`を使ってポッドのサンドボックスやコンテナを作成しても、Kubeletは最終的にそれらを削除します。`crictl` は汎用のワークフローツールではなく、デバッグに便利なツールです。
+{{< /warning >}}
+
+### podsの一覧
+
+すべてのポッドをリストアップ:
+
+```shell
+crictl pods
+```
+
+出力はこのようになります:
+
+```
+POD ID              CREATED              STATE               NAME                         NAMESPACE           ATTEMPT
+926f1b5a1d33a       About a minute ago   Ready               sh-84d7dcf559-4r2gq          default             0
+4dccb216c4adb       About a minute ago   Ready               nginx-65899c769f-wv2gp       default             0
+a86316e96fa89       17 hours ago         Ready               kube-proxy-gblk4             kube-system         0
+919630b8f81f1       17 hours ago         Ready               nvidia-device-plugin-zgbbv   kube-system         0
+```
+
+Podを名前でリストアップします:
+
+```shell
+crictl pods --name nginx-65899c769f-wv2gp
+```
+
+出力はこのようになります:
+
+```
+POD ID              CREATED             STATE               NAME                     NAMESPACE           ATTEMPT
+4dccb216c4adb       2 minutes ago       Ready               nginx-65899c769f-wv2gp   default             0
+```
+
+Podをラベルでリストアップします:
+
+```shell
+crictl pods --label run=nginx
+```
+
+出力はこのようになります:
+
+```
+POD ID              CREATED             STATE               NAME                     NAMESPACE           ATTEMPT
+4dccb216c4adb       2 minutes ago       Ready               nginx-65899c769f-wv2gp   default             0
+```
+
+### イメージの一覧
+
+すべてのイメージをリストアップします:
+
+```shell
+crictl images
+```
+
+出力はこのようになります:
+
+```
+IMAGE                                     TAG                 IMAGE ID            SIZE
+busybox                                   latest              8c811b4aec35f       1.15MB
+k8s-gcrio.azureedge.net/hyperkube-amd64   v1.10.3             e179bbfe5d238       665MB
+k8s-gcrio.azureedge.net/pause-amd64       3.1                 da86e6ba6ca19       742kB
+nginx                                     latest              cd5239a0906a6       109MB
+```
+
+イメージをリポジトリでリストアップします:
+
+```shell
+crictl images nginx
+```
+
+出力はこのようになります:
+
+```
+IMAGE               TAG                 IMAGE ID            SIZE
+nginx               latest              cd5239a0906a6       109MB
+```
+
+イメージのIDのみをリストアップします:
+
+```shell
+crictl images -q
+```
+
+出力はこのようになります:
+
+```
+sha256:8c811b4aec35f259572d0f79207bc0678df4c736eeec50bc9fec37ed936a472a
+sha256:e179bbfe5d238de6069f3b03fccbecc3fb4f2019af741bfff1233c4d7b2970c5
+sha256:da86e6ba6ca197bf6bc5e9d900febd906b133eaa4750e6bed647b0fbe50ed43e
+sha256:cd5239a0906a6ccf0562354852fae04bc5b52d72a2aff9a871ddb6bd57553569
+```
+
+### List containers
+
+すべてのコンテナをリストアップします:
+
+```shell
+crictl ps -a
+```
+
+出力はこのようになります:
+
+```
+CONTAINER ID        IMAGE                                                                                                             CREATED             STATE               NAME                       ATTEMPT
+1f73f2d81bf98       busybox@sha256:141c253bc4c3fd0a201d32dc1f493bcf3fff003b6df416dea4f41046e0f37d47                                   7 minutes ago       Running             sh                         1
+9c5951df22c78       busybox@sha256:141c253bc4c3fd0a201d32dc1f493bcf3fff003b6df416dea4f41046e0f37d47                                   8 minutes ago       Exited              sh                         0
+87d3992f84f74       nginx@sha256:d0a8828cccb73397acb0073bf34f4d7d8aa315263f1e7806bf8c55d8ac139d5f                                     8 minutes ago       Running             nginx                      0
+1941fb4da154f       k8s-gcrio.azureedge.net/hyperkube-amd64@sha256:00d814b1f7763f4ab5be80c58e98140dfc69df107f253d7fdd714b30a714260a   18 hours ago        Running             kube-proxy                 0
+```
+
+ランニングコンテナをリストアップします:
+
+```
+crictl ps
+```
+
+出力はこのようになります:
+
+```
+CONTAINER ID        IMAGE                                                                                                             CREATED             STATE               NAME                       ATTEMPT
+1f73f2d81bf98       busybox@sha256:141c253bc4c3fd0a201d32dc1f493bcf3fff003b6df416dea4f41046e0f37d47                                   6 minutes ago       Running             sh                         1
+87d3992f84f74       nginx@sha256:d0a8828cccb73397acb0073bf34f4d7d8aa315263f1e7806bf8c55d8ac139d5f                                     7 minutes ago       Running             nginx                      0
+1941fb4da154f       k8s-gcrio.azureedge.net/hyperkube-amd64@sha256:00d814b1f7763f4ab5be80c58e98140dfc69df107f253d7fdd714b30a714260a   17 hours ago        Running             kube-proxy                 0
+```
+
+### 実行中のコンテナでコマンドの実行
+
+```shell
+crictl exec -i -t 1f73f2d81bf98 ls
+```
+
+出力はこのようになります:
+
+```
+bin   dev   etc   home  proc  root  sys   tmp   usr   var
+```
+
+### コンテナログの取得
+
+すべてのコンテナログを取得します:
+
+```shell
+crictl logs 87d3992f84f74
+```
+
+出力はこのようになります:
+
+```
+10.240.0.96 - - [06/Jun/2018:02:45:49 +0000] "GET / HTTP/1.1" 200 612 "-" "curl/7.47.0" "-"
+10.240.0.96 - - [06/Jun/2018:02:45:50 +0000] "GET / HTTP/1.1" 200 612 "-" "curl/7.47.0" "-"
+10.240.0.96 - - [06/Jun/2018:02:45:51 +0000] "GET / HTTP/1.1" 200 612 "-" "curl/7.47.0" "-"
+```
+
+最新の`N`行のログのみを取得します:
+
+```shell
+crictl logs --tail=1 87d3992f84f74
+```
+
+出力はこのようになります:
+
+```
+10.240.0.96 - - [06/Jun/2018:02:45:51 +0000] "GET / HTTP/1.1" 200 612 "-" "curl/7.47.0" "-"
+```
+
+### Podサンドボックスの実行
+
+`crictl`を使ってPodサンドボックスを実行することは、コンテナのランタイムをデバッグするのに便利です。
+稼働中のKubernetesクラスタでは、サンドボックスは最終的にKubeletによって停止され、削除されます。
+
+1. 以下のようなJSONファイルを作成します:
+
+      ```json
+      {
+          "metadata": {
+              "name": "nginx-sandbox",
+              "namespace": "default",
+              "attempt": 1,
+              "uid": "hdishd83djaidwnduwk28bcsb"
+          },
+          "logDirectory": "/tmp",
+          "linux": {
+          }
+      }
+      ```
+
+2. JSONを適用してサンドボックスを実行するには、`crictl runp`コマンドを使用します:
+
+      ```shell
+      crictl runp pod-config.json
+      ```
+
+      サンドボックスのIDが返されます。
+
+### コンテナの作成
+
+コンテナの作成に`crictl`を使うと、コンテナのランタイムをデバッグするのに便利です。
+稼働中のKubernetesクラスタでは、サンドボックスは最終的にKubeletによって停止され、削除されます。
+
+1. busyboxイメージをプルします:
+
+      ```shell
+      crictl pull busybox
+      Image is up to date for busybox@sha256:141c253bc4c3fd0a201d32dc1f493bcf3fff003b6df416dea4f41046e0f37d47
+      ```
+
+2. Podとコンテナのコンフィグを作成します:
+
+      **Pod config**:
+      ```yaml
+      {
+          "metadata": {
+              "name": "nginx-sandbox",
+              "namespace": "default",
+              "attempt": 1,
+              "uid": "hdishd83djaidwnduwk28bcsb"
+          },
+          "log_directory": "/tmp",
+          "linux": {
+          }
+      }
+      ```
+
+      **Container config**:
+      ```yaml
+      {
+        "metadata": {
+            "name": "busybox"
+        },
+        "image":{
+            "image": "busybox"
+        },
+        "command": [
+            "top"
+        ],
+        "log_path":"busybox.log",
+        "linux": {
+        }
+      }
+      ```
+
+3. 先に作成されたPodのID、コンテナの設定ファイル、Podの設定ファイルを渡して、コンテナを作成します。コンテナのIDが返されます。
+
+      ```shell
+      crictl create f84dd361f8dc51518ed291fbadd6db537b0496536c1d2d6c05ff943ce8c9a54f container-config.json pod-config.json
+      ```
+
+4.  すべてのコンテナをリストアップし、新しく作成されたコンテナの状態が`Created`に設定されていることを確認します:
+
+      ```shell
+      crictl ps -a
+      ```
+
+      出力はこのようになります:
+      ```
+      CONTAINER ID        IMAGE               CREATED             STATE               NAME                ATTEMPT
+      3e025dd50a72d       busybox             32 seconds ago      Created             busybox             0
+      ```
+
+### コンテナの起動
+
+コンテナを起動するには、そのコンテナのIDを`crictl start`に渡します:
+
+```shell
+crictl start 3e025dd50a72d956c4f14881fbb5b1080c9275674e95fb67f965f6478a957d60
+```
+
+出力はこのようになります:
+
+```
+3e025dd50a72d956c4f14881fbb5b1080c9275674e95fb67f965f6478a957d60
+```
+
+コンテナの状態が「Running」に設定されていることを確認します:
+
+```shell
+crictl ps
+```
+
+出力はこのようになります:
+
+```
+CONTAINER ID        IMAGE               CREATED              STATE               NAME                ATTEMPT
+3e025dd50a72d       busybox             About a minute ago   Running             busybox             0
+```
+
+<!-- discussion -->
+
+詳しくは[kubernetes-sigs/cri-tools](https://github.com/kubernetes-sigs/cri-tools)をご覧ください。
+
+## docker cliからcrictlへのマッピング
+
+以下のマッピング表の正確なバージョンは、`docker cli v1.40`と`crictl v1.19.0`のものです。
+この一覧はすべてを網羅しているわけではないことに注意してください。
+たとえば、`docker cli`の実験的なコマンドは含まれていません。
+
+{{< note >}}
+CRICTLの出力形式はDocker CLIと似ていますが、いくつかのCLIでは列が欠けています。
+{{< /note >}}
+
+### デバッグ情報の取得
+
+{{< table caption="mapping from docker cli to crictl - retrieve debugging information" >}}
+docker cli | crictl | 説明 | サポートされていない機能
+-- | -- | -- | --
+`attach` | `attach` | 実行中のコンテナにアタッチ | `--detach-keys`, `--sig-proxy`
+`exec` | `exec` | 実行中のコンテナでコマンドの実行 | `--privileged`, `--user`, `--detach-keys`
+`images` | `images` | イメージのリストアップ |  
+`info` | `info` | システム全体の情報の表示 |  
+`inspect` | `inspect`, `inspecti` | コンテナ、イメージ、タスクの低レベルの情報を返します |  
+`logs` | `logs` | コンテナのログを取得します | `--details`
+`ps` | `ps` | コンテナのリストアップ |  
+`stats` | `stats` | コンテナのリソース使用状況をライブで表示 | Column: NET/BLOCK I/O, PIDs
+`version` | `version` | ランタイム(Docker、ContainerD、その他)のバージョン情報を表示します |  
+{{< /table >}}
+
+### 変更を行います
+
+{{< table caption="mapping from docker cli to crictl - perform changes" >}}
+docker cli | crictl | 説明 | サポートされていない機能
+-- | -- | -- | --
+`create` | `create` | 新しいコンテナを作成します |  
+`kill` | `stop` (timeout = 0) | 1つ以上の実行中のコンテナを停止します | `--signal`
+`pull` | `pull` | レジストリーからイメージやリポジトリをプルします | `--all-tags`, `--disable-content-trust`
+`rm` | `rm` | 1つまたは複数のコンテナを削除します |  
+`rmi` | `rmi` | 1つまたは複数のイメージを削除します |  
+`run` | `run` | 新しいコンテナでコマンドを実行 |  
+`start` | `start` | 停止した1つまたは複数のコンテナを起動 | `--detach-keys`
+`stop` | `stop` | 実行中の1つまたは複数のコンテナの停止 |  
+`update` | `update` | 1つまたは複数のコンテナの構成を更新 | `--restart`、`--blkio-weight`とその他
+{{< /table >}}
+
+### crictlでのみ対応
+
+{{< table caption="mapping from docker cli to crictl - supported only in crictl" >}}
+crictl | 説明
+-- | --
+`imagefsinfo` | イメージファイルシステムの情報を返します
+`inspectp` | 1つまたは複数のPodの状態を表示します
+`port-forward` | ローカルポートをPodに転送します
+`runp` | 新しいPodを実行します
+`rmp` | 1つまたは複数のPodを削除します
+`stopp` | 稼働中の1つまたは複数のPodを停止します
+{{< /table >}}
diff --git a/content/en/docs/tasks/debug-application-cluster/debug-application-introspection.md b/content/ja/docs/tasks/debug-application-cluster/debug-application-introspection.md
similarity index 63%
rename from content/en/docs/tasks/debug-application-cluster/debug-application-introspection.md
rename to content/ja/docs/tasks/debug-application-cluster/debug-application-introspection.md
index 03ba9d2c02..ce0e054225 100644
--- a/content/en/docs/tasks/debug-application-cluster/debug-application-introspection.md
+++ b/content/ja/docs/tasks/debug-application-cluster/debug-application-introspection.md
@@ -1,29 +1,23 @@
 ---
-reviewers:
-- janetkuo
-- thockin
 content_type: concept
-title: Application Introspection and Debugging
+title: アプリケーションの自己観察とデバッグ
 ---
 
 <!-- overview -->
 
-Once your application is running, you'll inevitably need to debug problems with it.
-Earlier we described how you can use `kubectl get pods` to retrieve simple status information about
-your pods. But there are a number of ways to get even more information about your application.
-
-
-
+アプリケーションが稼働すると、必然的にその問題をデバッグする必要が出てきます。
+先に、`kubectl get pods`を使って、Podの簡単なステータス情報を取得する方法を説明しました。
+しかし、アプリケーションに関するより多くの情報を取得する方法がいくつかあります。
 
 <!-- body -->
 
-## Using `kubectl describe pod` to fetch details about pods
+## `kubectl describe pod`を使ってpodの詳細を取得
 
-For this example we'll use a Deployment to create two pods, similar to the earlier example.
+この例では、先ほどの例と同様に、Deploymentを使用して2つのpodを作成します。
 
 {{< codenew file="application/nginx-with-request.yaml" >}}
 
-Create deployment by running following command:
+以下のコマンドを実行して、Deploymentを作成します:
 
 ```shell
 kubectl apply -f https://k8s.io/examples/application/nginx-with-request.yaml
@@ -33,7 +27,7 @@ kubectl apply -f https://k8s.io/examples/application/nginx-with-request.yaml
 deployment.apps/nginx-deployment created
 ```
 
-Check pod status by following command:
+以下のコマンドでPodの状態を確認します:
 
 ```shell
 kubectl get pods
@@ -45,7 +39,8 @@ nginx-deployment-1006230814-6winp   1/1       Running   0          11s
 nginx-deployment-1006230814-fmgu3   1/1       Running   0          11s
 ```
 
-We can retrieve a lot more information about each of these pods using `kubectl describe pod`. For example:
+`kubectl describe pod`を使うと、これらのPodについてより多くの情報を得ることができます。
+例えば:
 
 ```shell
 kubectl describe pod nginx-deployment-1006230814-6winp
@@ -106,21 +101,21 @@ Events:
   53s		53s		1	{kubelet kubernetes-node-wul5}	spec.containers{nginx}	Normal		Started		Started container with docker id 90315cc9f513
 ```
 
-Here you can see configuration information about the container(s) and Pod (labels, resource requirements, etc.), as well as status information about the container(s) and Pod (state, readiness, restart count, events, etc.).
+ここでは、コンテナ(複数可)とPodに関する構成情報(ラベル、リソース要件など)や、コンテナ(複数可)とPodに関するステータス情報(状態、準備状況、再起動回数、イベントなど)を確認できます。
 
-The container state is one of Waiting, Running, or Terminated. Depending on the state, additional information will be provided -- here you can see that for a container in Running state, the system tells you when the container started.
+コンテナの状態は、Waiting(待機中)、Running(実行中)、Terminated(終了)のいずれかです。状態に応じて、追加の情報が提供されます。ここでは、Running状態のコンテナについて、コンテナがいつ開始されたかが表示されています。
 
-Ready tells you whether the container passed its last readiness probe. (In this case, the container does not have a readiness probe configured; the container is assumed to be ready if no readiness probe is configured.)
+Readyは、コンテナが最後のReadiness Probeに合格したかどうかを示す。(この場合、コンテナにはReadiness Probeが設定されていません。Readiness Probeが設定されていない場合、コンテナは準備が完了した状態であるとみなされます)。
 
-Restart Count tells you how many times the container has been restarted; this information can be useful for detecting crash loops in containers that are configured with a restart policy of 'always.'
+Restart Countは、コンテナが何回再起動されたかを示します。この情報は、再起動ポリシーが「always」に設定されているコンテナのクラッシュループを検出するのに役立ちます。
 
-Currently the only Condition associated with a Pod is the binary Ready condition, which indicates that the pod is able to service requests and should be added to the load balancing pools of all matching services.
+現在、Podに関連する条件は、二値のReady条件のみです。これは、Podがリクエストに対応可能であり、マッチングするすべてのサービスのロードバランシングプールに追加されるべきであることを示します。
 
-Lastly, you see a log of recent events related to your Pod. The system compresses multiple identical events by indicating the first and last time it was seen and the number of times it was seen. "From" indicates the component that is logging the event, "SubobjectPath" tells you which object (e.g. container within the pod) is being referred to, and "Reason" and "Message" tell you what happened.
+最後に、Podに関連する最近のイベントのログが表示されます。このシステムでは、複数の同一イベントを圧縮して、最初に見られた時刻と最後に見られた時刻、そして見られた回数を示します。"From"はイベントを記録しているコンポーネントを示し、"SubobjectPath"はどのオブジェクト(例: Pod内のコンテナ)が参照されているかを示し、"Reason"と "Message"は何が起こったかを示しています。
 
-## Example: debugging Pending Pods
+## 例: Pending Podsのデバッグ
 
-A common scenario that you can detect using events is when you've created a Pod that won't fit on any node. For example, the Pod might request more resources than are free on any node, or it might specify a label selector that doesn't match any nodes. Let's say we created the previous Deployment with 5 replicas (instead of 2) and requesting 600 millicores instead of 500, on a four-node cluster where each (virtual) machine has 1 CPU. In that case one of the Pods will not be able to schedule. (Note that because of the cluster addon pods such as fluentd, skydns, etc., that run on each node, if we requested 1000 millicores then none of the Pods would be able to schedule.)
+イベントを使って検出できる一般的なシナリオは、どのノードにも収まらないPodを作成した場合です。例えば、Podがどのノードでも空いている以上のリソースを要求したり、どのノードにもマッチしないラベルセレクターを指定したりする場合です。例えば、各(仮想)マシンが1つのCPUを持つ4ノードのクラスター上で、(2つではなく)5つのレプリカを持ち、500ではなく600ミリコアを要求する前のDeploymentを作成したとします。この場合、Podの1つがスケジュールできなくなります。(なお、各ノードではfluentdやskydnsなどのクラスターアドオンPodが動作しているため、もし1000ミリコアを要求した場合、どのPodもスケジュールできなくなります)
 
 ```shell
 kubectl get pods
@@ -135,7 +130,7 @@ nginx-deployment-1370807587-fg172   0/1       Pending   0          1m
 nginx-deployment-1370807587-fz9sd   0/1       Pending   0          1m
 ```
 
-To find out why the nginx-deployment-1370807587-fz9sd pod is not running, we can use `kubectl describe pod` on the pending Pod and look at its events:
+nginx-deployment-1370807587-fz9sdのPodが実行されていない理由を調べるには、保留中のPodに対して`kubectl describe pod`を使用し、そのイベントを見てみましょう
 
 ```shell
 kubectl describe pod nginx-deployment-1370807587-fz9sd
@@ -175,25 +170,28 @@ kubectl describe pod nginx-deployment-1370807587-fz9sd
   fit failure on node (kubernetes-node-wul5): Node didn't have enough resource: CPU, requested: 1000, used: 1100, capacity: 2000
 ```
 
-Here you can see the event generated by the scheduler saying that the Pod failed to schedule for reason `FailedScheduling` (and possibly others).  The message tells us that there were not enough resources for the Pod on any of the nodes.
+ここでは、理由 `FailedScheduling` (およびその他の理由)でPodのスケジュールに失敗したという、スケジューラーによって生成されたイベントを見ることができます。このメッセージは、どのノードでもPodに十分なリソースがなかったことを示しています。
 
-To correct this situation, you can use `kubectl scale` to update your Deployment to specify four or fewer replicas. (Or you could leave the one Pod pending, which is harmless.)
+この状況を修正するには、`kubectl scale`を使用して、4つ以下のレプリカを指定するようにDeploymentを更新します。(あるいは、1つのPodを保留にしたままにしておいても害はありません。)
+
+`kubectl describe pod`の最後に出てきたようなイベントは、etcdに永続化され、クラスターで何が起こっているかについての高レベルの情報を提供します。
+
+すべてのイベントをリストアップするには、次のようにします:
 
-Events such as the ones you saw at the end of `kubectl describe pod` are persisted in etcd and provide high-level information on what is happening in the cluster. To list all events you can use
 
 ```shell
 kubectl get events
 ```
 
-but you have to remember that events are namespaced. This means that if you're interested in events for some namespaced object (e.g. what happened with Pods in namespace `my-namespace`) you need to explicitly provide a namespace to the command:
+しかし、イベントは名前空間に所属することを忘れてはいけません。つまり、名前空間で管理されているオブジェクトのイベントに興味がある場合(例: 名前空間 `my-namespace`のPods で何が起こったか)、コマンドに名前空間を明示的に指定する必要があります。
 
 ```shell
 kubectl get events --namespace=my-namespace
 ```
 
-To see events from all namespaces, you can use the `--all-namespaces` argument.
+すべての名前空間からのイベントを見るには、`--all-namespaces` 引数を使用できます。
 
-In addition to `kubectl describe pod`, another way to get extra information about a pod (beyond what is provided by `kubectl get pod`) is to pass the `-o yaml` output format flag to `kubectl get pod`. This will give you, in YAML format, even more information than `kubectl describe pod`--essentially all of the information the system has about the Pod. Here you will see things like annotations (which are key-value metadata without the label restrictions, that is used internally by Kubernetes system components), restart policy, ports, and volumes.
+`kubectl describe pod`に加えて、(`kubectl get pod` で提供される以上の)Podに関する追加情報を得るためのもう一つの方法は、`-o yaml`出力形式フラグを `kubectl get pod`に渡すことです。これにより、`kubectl describe pod`よりもさらに多くの情報、つまりシステムが持っているPodに関するすべての情報をYAML形式で得ることができます。ここでは、アノテーション(Kubernetesのシステムコンポーネントが内部的に使用している、ラベル制限のないキーバリューのメタデータ)、再起動ポリシー、ポート、ボリュームなどが表示されます。
 
 ```shell
 kubectl get pod nginx-deployment-1006230814-6winp -o yaml
@@ -269,9 +267,9 @@ status:
   startTime: 2016-03-24T01:39:49Z
 ```
 
-## Example: debugging a down/unreachable node
+## 例: ダウン/到達不可能なノードのデバッグ
 
-Sometimes when debugging it can be useful to look at the status of a node -- for example, because you've noticed strange behavior of a Pod that's running on the node, or to find out why a Pod won't schedule onto the node. As with Pods, you can use `kubectl describe node` and `kubectl get node -o yaml` to retrieve detailed information about nodes. For example, here's what you'll see if a node is down (disconnected from the network, or kubelet dies and won't restart, etc.). Notice the events that show the node is NotReady, and also notice that the pods are no longer running (they are evicted after five minutes of NotReady status).
+例えば、ノード上で動作しているPodのおかしな挙動に気付いたり、Podがノード上でスケジュールされない原因を探ったりと、デバッグ時にノードのステータスを見ることが有用な場合があります。Podと同様に、`kubectl describe node`や`kubectl get node -o yaml`を使ってノードの詳細情報を取得することができます。例えば、ノードがダウンした場合(ネットワークから切断された、またはkubeletが死んで再起動しないなど)に表示される内容は以下の通りです。ノードがNotReadyであることを示すイベントに注目してください。また、Podが実行されなくなっていることにも注目してください(NotReady状態が5分続くと、Podは退避されます)。
 
 ```shell
 kubectl get nodes
@@ -391,8 +389,7 @@ status:
 
 ## {{% heading "whatsnext" %}}
 
-
-Learn about additional debugging tools, including:
+以下のような追加のデバッグツールについて学びます:
 
 * [Logging](/docs/concepts/cluster-administration/logging/)
 * [Monitoring](/docs/tasks/debug-application-cluster/resource-usage-monitoring/)
@@ -400,5 +397,3 @@ Learn about additional debugging tools, including:
 * [Connecting to containers via proxies](/docs/tasks/extend-kubernetes/http-proxy-access-api/)
 * [Connecting to containers via port forwarding](/docs/tasks/access-application-cluster/port-forward-access-application-cluster/)
 * [Inspect Kubernetes node with crictl](/docs/tasks/debug-application-cluster/crictl/)
-
-
diff --git a/content/ja/docs/tasks/debug-application-cluster/debug-application.md b/content/ja/docs/tasks/debug-application-cluster/debug-application.md
new file mode 100644
index 0000000000..b9be05c3f7
--- /dev/null
+++ b/content/ja/docs/tasks/debug-application-cluster/debug-application.md
@@ -0,0 +1,142 @@
+---
+title: アプリケーションのトラブルシューティング
+content_type: concept
+---
+
+<!-- overview -->
+
+このガイドは、Kubernetesにデプロイされ、正しく動作しないアプリケーションをユーザーがデバッグするためのものです。
+これは、自分のクラスターをデバッグしたい人のためのガイドでは *ありません*。
+そのためには、[debug-cluster](/docs/tasks/debug-application-cluster/debug-cluster)を確認する必要があります。
+
+<!-- body -->
+
+## 問題の診断
+
+トラブルシューティングの最初のステップは切り分けです。何が問題なのでしょうか？
+Podなのか、レプリケーションコントローラーなのか、それともサービスなのか？
+
+   * [Debugging Pods](#debugging-pods)
+   * [Debugging Replication Controllers](#debugging-replication-controllers)
+   * [Debugging Services](#debugging-services)
+
+### Podのデバッグ
+
+デバッグの第一歩は、Podを見てみることです。
+以下のコマンドで、Podの現在の状態や最近のイベントを確認します。
+
+```shell
+kubectl describe pods ${POD_NAME}
+```
+
+Pod内のコンテナの状態を見てください。
+すべて`Running`ですか？ 最近、再起動がありましたか？
+Podの状態に応じてデバッグを続けます。
+
+#### PodがPendingのまま
+
+Podが`Pending`で止まっている場合、それはノードにスケジュールできないことを意味します。
+一般に、これはある種のリソースが不十分で、スケジューリングできないことが原因です。
+上の`kubectl describe ...`コマンドの出力を見てください。
+
+なぜあなたのPodをスケジュールできないのか、スケジューラーからのメッセージがあるはずです。
+理由は以下の通りです。
+
+* **リソースが不足しています。** クラスターのCPUまたはメモリーを使い果たしている可能性があります。Podを削除するか、リソースの要求値を調整するか、クラスターに新しいノードを追加する必要があります。詳しくは[Compute Resources document](/ja/docs/concepts/configuration/manage-resources-containers/)を参照してください。
+
+* **あなたが使用しているのは`hostPort`**です。Podを`hostPort`にバインドすると、そのPodがスケジュールできる場所が限定されます。ほとんどの場合、`hostPort`は不要なので、Serviceオブジェクトを使ってPodを公開するようにしてください。もし`hostPort` が必要な場合は、Kubernetesクラスターのノード数だけPodをスケジュールすることができます。
+
+
+#### Podがwaitingのまま
+
+Podが`Waiting`状態で止まっている場合、ワーカーノードにスケジュールされていますが、そのノード上で実行することができません。この場合も、`kubectl describe ...`の情報が参考になるはずです。`Waiting`状態のPodの最も一般的な原因は、コンテナイメージのプルに失敗することです。
+
+確認すべきことは3つあります。
+
+* イメージの名前が正しいかどうか確認してください。
+* イメージをレジストリにプッシュしましたか？
+* あなたのマシンで手動で`docker pull <image>`を実行し、イメージをプルできるかどうか確認してください。
+
+#### Podがクラッシュするなどの不健全な状態
+
+Podがスケジュールされると、[Debug Running Pods](/docs/tasks/debug-application-cluster/debug-running-pod/)で説明されている方法がデバッグに利用できるようになります。
+
+#### Podが期待する通りに動きません
+
+Podが期待した動作をしない場合、ポッドの記述(ローカルマシンの `mypod.yaml` ファイルなど)に誤りがあり、Pod作成時にその誤りが黙って無視された可能性があります。Pod記述のセクションのネストが正しくないか、キー名が間違って入力されていることがよくあり、そのようなとき、そのキーは無視されます。たとえば、`command`のスペルを`commnd`と間違えた場合、Podは作成されますが、あなたが意図したコマンドラインは使用されません。
+
+まずPodを削除して、`--validate` オプションを付けて再度作成してみてください。
+例えば、`kubectl apply --validate -f mypod.yaml`と実行します。
+`command`のスペルを`commnd`に間違えると、以下のようなエラーになります。
+
+```shell
+I0805 10:43:25.129850   46757 schema.go:126] unknown field: commnd
+I0805 10:43:25.129973   46757 schema.go:129] this may be a false alarm, see https://github.com/kubernetes/kubernetes/issues/6842
+pods/mypod
+```
+
+<!-- TODO: Now that #11914 is merged, this advice may need to be updated -->
+
+次に確認することは、apiserver上のPodが、作成しようとしたPod(例えば、ローカルマシンのyamlファイル)と一致しているかどうかです。
+例えば、`kubectl get pods/mypod -o yaml > mypod-on-apiserver.yaml` を実行して、元のポッドの説明である`mypod.yaml`とapiserverから戻ってきた`mypod-on-apiserver.yaml`を手動で比較してみてください。
+通常、"apiserver" バージョンには、元のバージョンにはない行がいくつかあります。これは予想されることです。
+しかし、もし元のバージョンにある行がapiserverバージョンにない場合、これはあなたのPod specに問題があることを示している可能性があります。
+
+### レプリケーションコントローラーのデバッグ
+
+レプリケーションコントローラーはかなり単純なものです。
+彼らはPodを作ることができるか、できないか、どちらかです。
+もしPodを作成できないのであれば、[上記の説明](#debugging-pods)を参照して、Podをデバッグしてください。
+また、`kubectl describe rc ${CONTROLLER_NAME}`を使用すると、レプリケーションコントローラーに関連するイベントを確認することができます。
+
+### Serviceのデバッグ
+
+Serviceは、Podの集合全体でロードバランシングを提供します。
+Serviceが正しく動作しない原因には、いくつかの一般的な問題があります。
+
+以下の手順は、Serviceの問題をデバッグするのに役立つはずです。
+
+まず、Serviceに対応するEndpointが存在することを確認します。
+全てのServiceオブジェクトに対して、apiserverは `endpoints` リソースを利用できるようにします。
+このリソースは次のようにして見ることができます。
+
+```shell
+kubectl get endpoints ${SERVICE_NAME}
+```
+
+EndpointがServiceのメンバーとして想定されるPod数と一致していることを確認してください。
+例えば、3つのレプリカを持つnginxコンテナ用のServiceであれば、ServiceのEndpointには3つの異なるIPアドレスが表示されるはずです。
+
+#### Serviceに対応するEndpointがありません
+
+Endpointが見つからない場合は、Serviceが使用しているラベルを使用してPodをリストアップしてみてください。
+ラベルがあるところにServiceがあると想像してください。
+
+```yaml
+...
+spec:
+  - selector:
+     name: nginx
+     type: frontend
+```
+
+セレクタに一致するPodを一覧表示するには、次のコマンドを使用します。
+
+```shell
+kubectl get pods --selector=name=nginx,type=frontend
+```
+
+リストがServiceを提供する予定のPodと一致することを確認します。
+Podの`containerPort`がServiceの`targetPort`と一致することを確認します。
+
+#### ネットワークトラフィックが転送されません
+
+詳しくは[Serviceのデバッグ](/ja/docs/tasks/debug-application-cluster/debug-service/)を参照してください。
+
+## {{% heading "whatsnext" %}}
+
+上記のいずれの方法でも問題が解決しない場合は、以下の手順に従ってください。
+[Debugging Service document](/docs/tasks/debug-application-cluster/debug-service/)で、`Service` が実行されていること、`Endpoints`があること、`Pods`が実際にサービスを提供していること、DNS が機能していること、IPtablesルールがインストールされていること、kube-proxyが誤作動を起こしていないようなことを確認してください。
+
+[トラブルシューティングドキュメント](/docs/tasks/debug-application-cluster/troubleshooting/)に詳細が記載されています。
+
diff --git a/content/ja/docs/tasks/debug-application-cluster/debug-cluster.md b/content/ja/docs/tasks/debug-application-cluster/debug-cluster.md
new file mode 100644
index 0000000000..34803b2b6b
--- /dev/null
+++ b/content/ja/docs/tasks/debug-application-cluster/debug-cluster.md
@@ -0,0 +1,114 @@
+---
+title: クラスターのトラブルシューティング
+content_type: concept
+---
+
+<!-- overview -->
+
+このドキュメントはクラスターのトラブルシューティングに関するもので、あなたが経験している問題の根本原因として、アプリケーションをすでに除外していることを前提としています。
+アプリケーションのデバッグのコツは、[application troubleshooting guide](/docs/tasks/debug-application-cluster/debug-application)をご覧ください。
+また、[troubleshooting document](/docs/tasks/debug-application-cluster/troubleshooting/)にも詳しい情報があります。
+
+<!-- body -->
+
+## クラスターのリストアップ
+
+クラスターで最初にデバッグするのは、ノードがすべて正しく登録されているかどうかです。
+
+```shell
+kubectl get nodes
+```
+
+そして、期待するノードがすべて存在し、それらがすべて `Ready` 状態であることを確認します。
+
+クラスター全体の健全性に関する詳細な情報を得るには、以下を実行します。
+
+```shell
+kubectl cluster-info dump
+```
+## ログの確認
+
+今のところ、クラスターをより深く掘り下げるには、関連するマシンにログインする必要があります。
+以下は、関連するログファイルの場所です。
+(systemdベースのシステムでは、代わりに `journalctl` を使う必要があるかもしれないことに注意してください)
+
+### マスターノード
+
+   * `/var/log/kube-apiserver.log` - APIの提供を担当するAPIサーバーのログ
+   * `/var/log/kube-scheduler.log` - スケジューリング決定責任者であるスケジューラーのログ
+   * `/var/log/kube-controller-manager.log` - レプリケーションコントローラーを管理するコントローラーのログ
+
+### ワーカーノード
+
+   * `/var/log/kubelet.log` - ノード上でコンテナの実行を担当するKubeletのログ
+   * `/var/log/kube-proxy.log` - サービスのロードバランシングを担うKube Proxyのログ
+
+## クラスター障害モードの一般的な概要
+
+これは、問題が発生する可能性のある事柄と、問題を軽減するためにクラスターのセットアップを調整する方法の不完全なリストです。
+
+### 根本的な原因
+
+  - VMのシャットダウン
+  - クラスター内、またはクラスターとユーザー間のネットワークパーティション
+  - Kubernetesソフトウェアのクラッシュ
+  - データの損失や永続的ストレージ(GCE PDやAWS EBSボリュームなど)の使用不能
+  - Kubernetesソフトウェアやアプリケーションソフトウェアの設定ミスなど、オペレーターのミス
+
+### 具体的なシナリオ
+
+  - apiserver VMのシャットダウンまたはapiserverのクラッシュ
+    - 新しいPod、サービス、レプリケーションコントローラの停止、更新、起動ができない
+    - Kubernetes APIに依存していない限り、既存のPodやサービスは正常に動作し続けるはずです
+  - apiserverのバックアップストレージが失われた
+    - apiserverが立ち上がらない
+    - kubeletsは到達できなくなりますが、同じPodを実行し、同じサービスのプロキシを提供し続けます
+    - apiserverを再起動する前に、手動でapiserverの状態を回復または再現する必要がある
+  - サポートサービス(ノードコントローラ、レプリケーションコントローラーマネージャー、スケジューラーなど)VMのシャットダウンまたはクラッシュ
+    - 現在、これらはapiserverとコロケーションしており、使用できない場合はapiserverと同様の影響があります
+    - 将来的には、これらも複製されるようになり、同じ場所に配置されない可能性があります
+    - 独自の永続的な状態を持っていない。
+
+  - 個別ノード(VMまたは物理マシン)のシャットダウン
+    - そのノード上のPodの実行を停止
+  - ネットワークパーティション
+    - パーティションAはパーティションBのノードがダウンしていると考え、パーティションBはapiserverがダウンしていると考えています。(マスターVMがパーティションAで終了したと仮定)
+  - Kubeletソフトウェア障害
+    - クラッシュしたkubeletがノード上で新しいPodを起動できない
+    - kubeletがPodを削除するかどうか
+    - ノードが不健全と判定される
+    - レプリケーションコントローラーが別の場所で新しいPodを起動する
+  - クラスターオペレーターエラー
+    - PodやServiceなどの損失
+    - apiserverのバックエンドストレージの紛失
+    - ユーザーがAPIを読めなくなる
+    - その他
+
+### 軽減策
+
+- 対処法: IaaSプロバイダーの自動VM再起動機能をIaaS VMに使用する
+  - 異常: Apiserver VMのシャットダウンまたはApiserverのクラッシュ
+  - 異常: サポートサービスのVMシャットダウンまたはクラッシュ
+
+- 対処法: IaaSプロバイダーの信頼できるストレージ(GCE PDやAWS EBSボリュームなど)をapiserver+etcdを使用するVMに使用する
+  - 異常: Apiserverのバックエンドストレージが失われる
+
+- 対処法: [高可用性](/docs/setup/production-environment/tools/kubeadm/high-availability/)構成を使用します
+  - 異常: コントロールプレーンノードのシャットダウンまたはコントロールプレーンコンポーネント(スケジューラー、APIサーバー、コントローラーマネージャー)のクラッシュ
+    - 1つ以上のノードまたはコンポーネントの同時故障に耐えることができる
+  - 異常: APIサーバーのバックアップストレージ(etcdのデータディレクトリーなど)が消失
+    - HA(高可用性) etcdの構成を想定しています
+
+- 対処法: apiserver PDs/EBS-volumesを定期的にスナップショットする
+  - 異常: Apiserver のバックエンドストレージが失われる
+  - 異常: 操作ミスが発生する場合がある
+  - 異常: Kubernetesのソフトウェアに障害が発生する場合がある
+
+- 対処法：レプリケーションコントローラーとServiceをPodの前に使用する
+  - 異常: ノードのシャットダウン
+  - 異常: Kubeletソフトウェア障害
+
+- 対処法: 予期せぬ再起動に耐えられるように設計されたアプリケーション(コンテナ)
+  - 異常: ノードのシャットダウン
+  - 異常: Kubeletソフトウェア障害
+
diff --git a/content/ja/docs/tasks/debug-application-cluster/debug-running-pod.md b/content/ja/docs/tasks/debug-application-cluster/debug-running-pod.md
new file mode 100644
index 0000000000..3e2c1c42f0
--- /dev/null
+++ b/content/ja/docs/tasks/debug-application-cluster/debug-running-pod.md
@@ -0,0 +1,279 @@
+---
+title: 実行中のPodのデバッグ
+content_type: task
+---
+
+<!-- overview -->
+
+このページでは、ノード上で動作している(またはクラッシュしている)Podをデバッグする方法について説明します。
+
+
+## {{% heading "prerequisites" %}}
+
+
+* あなたの{{< glossary_tooltip text="Pod" term_id="pod" >}}は既にスケジュールされ、実行されているはずです。Pod がまだ実行されていない場合は、[Troubleshoot Applications](/docs/tasks/debug-application-cluster/debug-application/) から始めてください。
+
+* いくつかの高度なデバッグ手順では、Podがどのノードで動作しているかを知り、そのノードでコマンドを実行するためのシェルアクセス権を持っていることが必要です。`kubectl` を使用する標準的なデバッグ手順の実行には、そのようなアクセスは必要ではありません。
+
+
+
+<!-- steps -->
+
+## Podログを調べます {#examine-pod-logs}
+
+まず、影響を受けるコンテナのログを見ます。
+
+```shell
+kubectl logs ${POD_NAME} ${CONTAINER_NAME}
+```
+
+コンテナが以前にクラッシュしたことがある場合、以前のコンテナのクラッシュログにアクセスすることができます。
+
+```shell
+kubectl logs --previous ${POD_NAME} ${CONTAINER_NAME}
+```
+
+## container execによるデバッグ {#container-exec}
+
+もし{{< glossary_tooltip text="container image" term_id="image" >}}がデバッグユーティリティを含んでいれば、LinuxやWindows OSのベースイメージからビルドしたイメージのように、`kubectl exec` で特定のコンテナ内でコマンドを実行することが可能です。
+
+```shell
+kubectl exec ${POD_NAME} -c ${CONTAINER_NAME} -- ${CMD} ${ARG1} ${ARG2} ... ${ARGN}
+```
+
+{{< note >}}
+`-c ${CONTAINER_NAME}`は省略可能です。コンテナを1つだけ含むPodの場合は省略できます。
+{{< /note >}}
+
+例として、実行中のCassandra Podからログを見るには、次のように実行します。
+
+```shell
+kubectl exec cassandra -- cat /var/log/cassandra/system.log
+```
+
+例えば`kubectl exec`の`-i`と`-t`引数を使って、端末に接続されたシェルを実行することができます。
+
+```shell
+kubectl exec -it cassandra -- sh
+```
+
+詳しくは、[実行中のコンテナのシェルを取得する](/docs/tasks/debug-application-cluster/get-shell-running-container/)を参照してください。
+
+## エフェメラルコンテナによるデバッグ {#ephemeral-container}
+
+{{< feature-state state="beta" for_k8s_version="v1.23" >}}
+
+{{< glossary_tooltip text="エフェメラルコンテナ" term_id="ephemeral-container" >}}は、コンテナがクラッシュしたり、コンテナイメージにデバッグユーティリティが含まれていないなどの理由で`kubectl exec`が不十分な場合に、対話的にトラブルシューティングを行うのに便利です([ディストロ・イメージ](
+https://github.com/GoogleContainerTools/distroless)の場合など)。
+
+### エフェメラルコンテナを使用したデバッグ例 {#ephemeral-container-example}
+
+実行中のPodにエフェメラルコンテナを追加するには、`kubectl debug`コマンドを使用することができます。
+まず、サンプル用のPodを作成します。
+
+```shell
+kubectl run ephemeral-demo --image=k8s.gcr.io/pause:3.1 --restart=Never
+```
+
+このセクションの例では、デバッグユーティリティが含まれていない`pause`コンテナイメージを使用していますが、この方法はすべてのコンテナイメージで動作します。
+
+もし、`kubectl exec`を使用してシェルを作成しようとすると、このコンテナイメージにはシェルが存在しないため、エラーが表示されます。
+
+```shell
+kubectl exec -it ephemeral-demo -- sh
+```
+
+```
+OCI runtime exec failed: exec failed: container_linux.go:346: starting container process caused "exec: \"sh\": executable file not found in $PATH": unknown
+```
+
+代わりに、`kubectl debug` を使ってデバッグ用のコンテナを追加することができます。
+引数に`-i`/`--interactive`を指定すると、`kubectl`は自動的にエフェメラルコンテナのコンソールにアタッチされます。
+
+```shell
+kubectl debug -it ephemeral-demo --image=busybox --target=ephemeral-demo
+```
+
+```
+Defaulting debug container name to debugger-8xzrl.
+If you don't see a command prompt, try pressing enter.
+/ #
+```
+
+このコマンドは新しいbusyboxコンテナを追加し、それにアタッチします。`target`パラメーターは、他のコンテナのプロセス名前空間をターゲットにします。これは`kubectl run`が作成するPodで[process namespace sharing](/docs/tasks/configure-pod-container/share-process-namespace/)を有効にしないため、指定する必要があります。
+
+{{< note >}}
+`target` パラメーターは {{< glossary_tooltip text="Container Runtime" term_id="container-runtime" >}} でサポートされている必要があります。サポートされていない場合、エフェメラルコンテナは起動されないか、`ps`が他のコンテナ内のプロセスを表示しないように孤立したプロセス名前空間を使用して起動されます。
+{{< /note >}}
+
+新しく作成されたエフェメラルコンテナの状態は`kubectl describe`を使って見ることができます。
+
+```shell
+kubectl describe pod ephemeral-demo
+```
+
+```
+...
+Ephemeral Containers:
+  debugger-8xzrl:
+    Container ID:   docker://b888f9adfd15bd5739fefaa39e1df4dd3c617b9902082b1cfdc29c4028ffb2eb
+    Image:          busybox
+    Image ID:       docker-pullable://busybox@sha256:1828edd60c5efd34b2bf5dd3282ec0cc04d47b2ff9caa0b6d4f07a21d1c08084
+    Port:           <none>
+    Host Port:      <none>
+    State:          Running
+      Started:      Wed, 12 Feb 2020 14:25:42 +0100
+    Ready:          False
+    Restart Count:  0
+    Environment:    <none>
+    Mounts:         <none>
+...
+```
+
+終了したら`kubectl delete`を使ってPodを削除してください。
+
+```shell
+kubectl delete pod ephemeral-demo
+```
+
+## Podのコピーを使ったデバッグ
+
+Podの設定オプションによって、特定の状況でのトラブルシューティングが困難になることがあります。
+例えば、コンテナイメージにシェルが含まれていない場合、またはアプリケーションが起動時にクラッシュした場合は、`kubectl exec`を実行してトラブルシューティングを行うことができません。
+このような状況では、`kubectl debug` を使用してデバッグを支援するために設定値を変更したPodのコピーです。
+
+### 新しいコンテナを追加しながらPodをコピーします
+
+新しいコンテナを追加することは、アプリケーションが動作しているが期待通りの動作をせず、トラブルシューティングユーティリティをPodに追加したい場合に便利な場合があります。
+例えば、アプリケーションのコンテナイメージは`busybox`上にビルドされているが、`busybox`に含まれていないデバッグユーティリティが必要な場合があります。このシナリオは `kubectl run` を使ってシミュレーションすることができます。
+
+```shell
+kubectl run myapp --image=busybox --restart=Never -- sleep 1d
+```
+
+このコマンドを実行すると、`myapp`のコピーに`myapp-debug`という名前が付き、デバッグ用の新しいUbuntuコンテナが追加されます。
+
+```shell
+kubectl debug myapp -it --image=ubuntu --share-processes --copy-to=myapp-debug
+```
+
+```
+Defaulting debug container name to debugger-w7xmf.
+If you don't see a command prompt, try pressing enter.
+root@myapp-debug:/#
+```
+
+{{< note >}}
+* `kubectl debug`は`--container`フラグでコンテナ名を選択しない場合、自動的にコンテナ名を生成します。
+
+* `i`フラグを指定すると、デフォルトで`kubectl debug`が新しいコンテナにアタッチされます。これを防ぐには、`--attach=false`を指定します。セッションが切断された場合は、`kubectl attach`を使用して再接続することができます。
+
+* `share-processes` を指定すると、Pod 内のコンテナからプロセスを参照することができます。この仕組みについて詳しくは、[Share Process Namespace between Containers in a Pod](/docs/tasks/configure-pod-container/share-process-namespace/)を参照してください。
+{{< /note >}}
+
+デバッグが終わったら、Podの後始末をするのを忘れないでください。
+
+```shell
+kubectl delete pod myapp myapp-debug
+```
+
+### Podのコマンドを変更しながらコピーします
+
+デバッグフラグを追加するためや、アプリケーションがクラッシュするためなど、コンテナのコマンドを変更すると便利な場合があります。
+アプリケーションのクラッシュをシミュレートするには、`kubectl run`を使用して、すぐに終了するコンテナを作成します。
+
+```
+kubectl run --image=busybox myapp -- false
+```
+
+`kubectl describe pod myapp` を使用すると、このコンテナがクラッシュしていることがわかります。
+
+```
+Containers:
+  myapp:
+    Image:         busybox
+    ...
+    Args:
+      false
+    State:          Waiting
+      Reason:       CrashLoopBackOff
+    Last State:     Terminated
+      Reason:       Error
+      Exit Code:    1
+```
+
+`kubectl debug`を使うと、コマンドをインタラクティブシェルに変更したこのPodのコピーを作成することができます。
+
+```
+kubectl debug myapp -it --copy-to=myapp-debug --container=myapp -- sh
+```
+
+```
+If you don't see a command prompt, try pressing enter.
+/ #
+```
+
+これで、ファイルシステムのパスのチェックやコンテナコマンドの手動実行などのタスクを実行するために使用できる対話型シェルが完成しました。
+
+{{< note >}}
+* 特定のコンテナのコマンドを変更するには、そのコンテナ名を`--container`で指定する必要があり、そうしないと`kubectl debug`が代わりに指定したコマンドを実行する新しいコンテナを作成します。
+
+* ` i` フラグは、デフォルトで `kubectl debug` がコンテナにアタッチされるようにします。これを防ぐには、`--attach=false`を指定します。セッションが切断された場合は、`kubectl attach` を使用して再接続することができます。
+{{< /note >}}
+
+デバッグが終わったら、Podの後始末をするのを忘れないでください。
+
+```shell
+kubectl delete pod myapp myapp-debug
+```
+
+### コンテナイメージを変更してPodをコピーします
+
+状況によっては、動作不良のPodを通常のプロダクション用のイメージから、デバッグ・ビルドや追加ユーティリティを含むイメージに変更したい場合があります。
+
+例として、`kubectl run`を使用してPodを作成します。
+
+```
+kubectl run myapp --image=busybox --restart=Never -- sleep 1d
+```
+
+ここで、`kubectl debug`を使用してコピーを作成し、そのコンテナイメージを`ubuntu`に変更します。
+
+```
+kubectl debug myapp --copy-to=myapp-debug --set-image=*=ubuntu
+```
+
+`set-image`の構文は、`kubectl set image`と同じ`container_name=image`の構文を使用します。`*=ubuntu`は、全てのコンテナのイメージを`ubuntu`に変更することを意味します。
+
+デバッグが終わったら、Podの後始末をするのを忘れないでください。
+
+```shell
+kubectl delete pod myapp myapp-debug
+```
+
+## ノード上のシェルによるデバッグ {#node-shell-session}
+
+いずれの方法でもうまくいかない場合は、Podが動作しているノードを探し出し、ホストの名前空間で動作する特権Podを作成します。
+ノード上で `kubectl debug` を使って対話型のシェルを作成するには、以下を実行します。
+
+```shell
+kubectl debug node/mynode -it --image=ubuntu
+```
+
+```
+Creating debugging pod node-debugger-mynode-pdx84 with container debugger on node mynode.
+If you don't see a command prompt, try pressing enter.
+root@ek8s:/#
+```
+
+ノードでデバッグセッションを作成する場合、以下の点に注意してください:
+
+* `kubectl debug`はノードの名前に基づいて新しい Pod の名前を自動的に生成します。
+* コンテナはホストのIPC、Network、PIDネームスペースで実行されます。
+* ノードのルートファイルシステムは`/host`にマウントされます。
+
+デバッグが終わったら、Podの後始末をするのを忘れないでください。
+
+```shell
+kubectl delete pod node-debugger-mynode-pdx84
+```
diff --git a/content/ja/docs/tasks/debug-application-cluster/debug-stateful-set.md b/content/ja/docs/tasks/debug-application-cluster/debug-stateful-set.md
index 7c8e6eeec8..c18f066b00 100644
--- a/content/ja/docs/tasks/debug-application-cluster/debug-stateful-set.md
+++ b/content/ja/docs/tasks/debug-application-cluster/debug-stateful-set.md
@@ -28,7 +28,7 @@ kubectl get pods -l app=myapp
 ```
 
 Podが長期間`Unknown`または`Terminating`の状態になっていることがわかった場合は、それらを処理する方法について[StatefulSetの削除](/ja/docs/tasks/run-application/delete-stateful-set/)タスクを参照してください。
-[Podのデバッグ](/docs/tasks/debug-application-cluster/debug-pod-replication-controller/)ガイドを使用して、StatefulSet内の個々のPodをデバッグできます。
+[Podのデバッグ](/ja/docs/tasks/debug-application-cluster/debug-pod-replication-controller/)ガイドを使用して、StatefulSet内の個々のPodをデバッグできます。
 
 
 
diff --git a/content/ja/docs/tasks/debug-application-cluster/local-debugging.md b/content/ja/docs/tasks/debug-application-cluster/local-debugging.md
new file mode 100644
index 0000000000..3edc646bb5
--- /dev/null
+++ b/content/ja/docs/tasks/debug-application-cluster/local-debugging.md
@@ -0,0 +1,60 @@
+---
+title: ローカルでのサービス開発・デバッグ
+content_type: task
+---
+
+<!-- overview -->
+
+Kubernetesアプリケーションは通常、複数の独立したサービスから構成され、それぞれが独自のコンテナで動作しています。これらのサービスをリモートのKubernetesクラスター上で開発・デバッグするには、[get a shell on a running container](/docs/task/debug-application-cluster/get-shell-running-container/)してリモートシェル内でツールを実行しなければならず面倒な場合があります。
+
+`telepresence`は、リモートKubernetesクラスターにサービスをプロキシーしながら、ローカルでサービスを開発・デバッグするプロセスを容易にするためのツールです。
+`telepresence` を使用すると、デバッガーやIDEなどのカスタムツールをローカルサービスで使用でき、ConfigMapやsecret、リモートクラスター上で動作しているサービスへのフルアクセスをサービスに提供します。
+
+このドキュメントでは、リモートクラスタ上で動作しているサービスをローカルで開発・デバッグするために`telepresence`を使用する方法を説明します。
+
+## {{% heading "prerequisites" %}}
+
+* Kubernetesクラスターがインストールされていること
+* クラスターと通信するために `kubectl` が設定されていること
+* [telepresence](https://www.telepresence.io/reference/install)がインストールされていること
+
+<!-- steps -->
+
+## リモートクラスター上でシェルの取得
+
+ターミナルを開いて、引数なしで`telepresence`を実行すると、`telepresence`シェルが表示されます。
+このシェルはローカルで動作し、ローカルのファイルシステムに完全にアクセスすることができます。
+
+この`telepresence`シェルは様々な方法で使用することができます。
+例えば、ラップトップでシェルスクリプトを書いて、それをシェルから直接リアルタイムで実行することができます。これはリモートシェルでもできますが、好みのコードエディターが使えないかもしれませんし、コンテナが終了するとスクリプトは削除されます。
+
+終了してシェルを閉じるには`exit`と入力してください。
+
+## 既存サービスの開発・デバッグ
+
+Kubernetes上でアプリケーションを開発する場合、通常は1つのサービスをプログラミングまたはデバッグすることになります。
+そのサービスは、テストやデバッグのために他のサービスへのアクセスを必要とする場合があります。
+継続的なデプロイメントパイプラインを使用することも一つの選択肢ですが、最速のデプロイメントパイプラインでさえ、プログラムやデバッグサイクルに遅延が発生します。
+
+既存のデプロイメントとtelepresenceプロキシーを交換するには、`--swap-deployment` オプションを使用します。
+スワップすることで、ローカルでサービスを実行し、リモートのKubernetesクラスターに接続することができます。
+リモートクラスター内のサービスは、ローカルで実行されているインスタンスにアクセスできるようになりました。
+
+telepresenceを「--swap-deployment」で実行するには、次のように入力します。
+
+`telepresence --swap-deployment $DEPLOYMENT_NAME`
+
+ここで、$DEPLOYMENT_NAMEは既存のDeploymentの名前です。
+
+このコマンドを実行すると、シェルが起動します。そのシェルで、サービスを起動します。
+そして、ローカルでソースコードの編集を行い、保存すると、すぐに変更が反映されるのを確認できます。
+また、デバッガーやその他のローカルな開発ツールでサービスを実行することもできます。
+
+## {{% heading "whatsnext" %}}
+
+もしハンズオンのチュートリアルに興味があるなら、Google Kubernetes Engine上でGuestbookアプリケーションをローカルに開発する手順を説明した[こちらのチュートリアル](https://cloud.google.com/community/tutorials/developing-services-with-k8s)をチェックしてみてください。
+
+telepresenceには、状況に応じて[numerous proxying options](https://www.telepresence.io/reference/methods)があります。
+
+さらに詳しい情報は、[telepresence website](https://www.telepresence.io)をご覧ください。
+
diff --git a/content/ja/docs/tasks/debug-application-cluster/monitor-node-health.md b/content/ja/docs/tasks/debug-application-cluster/monitor-node-health.md
new file mode 100644
index 0000000000..44d627a04c
--- /dev/null
+++ b/content/ja/docs/tasks/debug-application-cluster/monitor-node-health.md
@@ -0,0 +1,151 @@
+---
+title: ノードの健全性を監視します
+content_type: task
+reviewers:
+- ptux
+---
+
+<!-- overview -->
+
+*Node Problem Detector*は、ノードの健全性を監視し、報告するためのデーモンです。
+`Node Problem Detector`は`DaemonSet`として、あるいはスタンドアロンデーモンとして実行することができます。
+
+`Node Problem Detector`は様々なデーモンからノードの問題に関する情報を収集し、これらの状態を[NodeCondition](/ja/docs/concepts/architecture/nodes/#condition)および[Event](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#event-v1-core)としてAPIサーバーにレポートします。
+`Node Problem Detector`のインストール方法と使用方法については、[Node Problem Detectorプロジェクトドキュメント](https://github.com/kubernetes/node-problem-detector)を参照してください。
+
+## {{% heading "prerequisites" %}}
+
+{{< include "task-tutorial-prereqs.md" >}}
+
+<!-- steps -->
+
+## 制限事項
+
+* Node Problem Detectorは、ファイルベースのカーネルログのみをサポートします。
+  `journald`のようなログツールはサポートされていません。
+
+* Node Problem Detectorは、カーネルの問題を報告するためにカーネルログフォーマットを使用します。
+  カーネルログフォーマットを拡張する方法については、[Add support for another log format](#support-other-log-format) を参照してください。
+
+## ノード問題検出の有効化
+
+クラウドプロバイダーによっては、`Node Problem Detector`を{{< glossary_tooltip text="Addon" term_id="addons" >}}として有効にしている場合があります。
+また、`kubectl`を使って`Node Problem Detector`を有効にするか、`Addon pod`を作成することで有効にできます。
+
+### kubectlを使用してNode Problem Detectorを有効化します {#using-kubectl}
+
+`kubectl`は`Node Problem Detector`を最も柔軟に管理することができます。
+デフォルトの設定を上書きして自分の環境に合わせたり、カスタマイズしたノードの問題を検出したりすることができます。
+例えば:
+
+1. `node-problem-detector.yaml`のような`Node Problem Detector`の設定を作成します:
+
+   {{< codenew file="debug/node-problem-detector.yaml" >}}
+
+   {{< note >}}
+   システムログのディレクトリが、お使いのOSのディストリビューションに合っていることを確認する必要があります。
+   {{< /note >}}
+
+1. `Node Problem Detector`を`kubectl`で起動します。
+
+   ```shell
+   kubectl apply -f https://k8s.io/examples/debug/node-problem-detector.yaml
+   ```
+
+### Addon podを使用してNode Problem Detectorを有効化します {#using-addon-pod}
+
+カスタムのクラスターブートストラップソリューションを使用していて、デフォルトの設定を上書きする必要がない場合は、`Addon Pod`を利用してデプロイをさらに自動化できます。
+`node-problem-detector.yaml`を作成し、制御プレーンノードの`Addon Pod`のディレクトリ`/etc/kubernetes/addons/node-problem-detector`に設定を保存します。
+
+## コンフィギュレーションを上書きします
+
+`Node Problem Detector`の Dockerイメージをビルドする際に、[default configuration](https://github.com/kubernetes/node-problem-detector/tree/v0.1/config)が埋め込まれます。
+
+[`ConfigMap`](/ja/docs/tasks/configure-pod-container/configure-pod-configmap/) を使用することで設定を上書きすることができます。
+
+
+1. `config/` にある設定ファイルを変更します
+1. `ConfigMap` `node-problem-detector-config`を作成します。
+
+   ```shell
+   kubectl create configmap node-problem-detector-config --from-file=config/
+   ```
+
+1. `node-problem-detector.yaml`を変更して、`ConfigMap`を使用するようにします。
+
+   {{< codenew file="debug/node-problem-detector-configmap.yaml" >}}
+
+1. 新しい設定ファイルで`Node Problem Detector`を再作成します。
+
+   ```shell
+   # If you have a node-problem-detector running, delete before recreating
+   kubectl delete -f https://k8s.io/examples/debug/node-problem-detector.yaml
+   kubectl apply -f https://k8s.io/examples/debug/node-problem-detector-configmap.yaml
+   ```
+
+{{< note >}}
+この方法は `kubectl` で起動された Node Problem Detector にのみ適用されます。
+{{< /note >}}
+
+ノード問題検出装置がクラスターアドオンとして実行されている場合、設定の上書きはサポートされていません。
+`Addon Manager`は、`ConfigMap`をサポートしていません。
+
+## Kernel Monitor
+
+*Kernel Monitor*は`Node Problem Detector`でサポートされるシステムログ監視デーモンです。
+*Kernel Monitor*はカーネルログを監視し、事前に定義されたルールに従って既知のカーネル問題を検出します。
+*Kernel Monitor*は[`config/kernel-monitor.json`](https://github.com/kubernetes/node-problem-detector/blob/v0.1/config/kernel-monitor.json)にある一連の定義済みルールリストに従ってカーネルの問題を照合します。
+ルールリストは拡張可能です。設定を上書きすることで、ルールリストを拡張することができます。
+
+### 新しいNodeConditionsの追加
+
+新しい`NodeCondition`をサポートするには、例えば`config/kernel-monitor.json`の`conditions`フィールド内に条件定義を作成します。
+
+```json
+{
+  "type": "NodeConditionType",
+  "reason": "CamelCaseDefaultNodeConditionReason",
+  "message": "arbitrary default node condition message"
+}
+```
+
+### 新たな問題の発見
+
+新しい問題を検出するために、`config/kernel-monitor.json`の`rules`フィールドを新しいルール定義で拡張することができます。
+
+```json
+{
+  "type": "temporary/permanent",
+  "condition": "NodeConditionOfPermanentIssue",
+  "reason": "CamelCaseShortReason",
+  "message": "regexp matching the issue in the kernel log"
+}
+```
+
+### カーネルログデバイスのパスの設定 {#kernel-log-device-path}
+
+ご使用のオペレーティングシステム(OS)ディストリビューションのカーネルログパスをご確認ください。
+Linuxカーネルの[ログデバイス](https://www.kernel.org/doc/Documentation/ABI/testing/dev-kmsg)は通常`/dev/kmsg`として表示されます。
+しかし、OSのディストリビューションによって、ログパスの位置は異なります。
+`config/kernel-monitor.json`の`log`フィールドは、コンテナ内のログパスを表します。
+`log`フィールドは、`Node Problem Detector`で見たデバイスパスと一致するように設定することができます。
+
+### 別のログ形式をサポートします {#support-other-log-format}
+
+Kernel monitorは[`Translator`](https://github.com/kubernetes/node-problem-detector/blob/v0.1/pkg/kernelmonitor/translator/translator.go)プラグインを使用して、カーネルログの内部データ構造を変換します。
+新しいログフォーマット用に新しいトランスレータを実装することができます。
+
+<!-- discussion -->
+
+## 推奨・制限事項
+
+ノードの健全性を監視するために、クラスターでNode Problem Detectorを実行することが推奨されます。
+`Node Problem Detector`を実行する場合、各ノードで余分なリソースのオーバーヘッドが発生することが予想されます。
+
+通常これは問題ありません。
+
+* カーネルログは比較的ゆっくりと成長します。
+* Node Problem Detector にはリソース制限が設定されています。
+* 高負荷時であっても、リソースの使用は許容範囲内です。
+
+詳細は`Node Problem Detector`[ベンチマーク結果](https://github.com/kubernetes/node-problem-detector/issues/2#issuecomment-220255629)を参照してください。
diff --git a/content/ja/docs/tasks/debug-application-cluster/resource-metrics-pipeline.md b/content/ja/docs/tasks/debug-application-cluster/resource-metrics-pipeline.md
new file mode 100644
index 0000000000..006dfcd1d8
--- /dev/null
+++ b/content/ja/docs/tasks/debug-application-cluster/resource-metrics-pipeline.md
@@ -0,0 +1,62 @@
+---
+title: リソースメトリクスパイプライン
+content_type: concept
+---
+
+<!-- overview -->
+
+Kubernetesでは、コンテナのCPU使用率やメモリ使用率といったリソース使用量のメトリクスが、メトリクスAPIを通じて提供されています。これらのメトリクスは、ユーザーが`kubectl top`コマンドで直接アクセスするか、クラスター内のコントローラー(例えばHorizontal Pod Autoscaler)が判断するためにアクセスすることができます。
+
+<!-- body -->
+
+## メトリクスAPI
+
+メトリクスAPIを使用すると、指定したノードやPodが現在使用しているリソース量を取得することができます。
+このAPIはメトリックの値を保存しないので、例えば10分前に指定されたノードが使用したリソース量を取得することはできません。
+
+メトリクスAPIは他のAPIと何ら変わりはありません。
+
+- 他のKubernetes APIと同じエンドポイントを経由して、`/apis/metrics.k8s.io/`パスの下で発見できます。
+- 同じセキュリティ、スケーラビリティ、信頼性の保証を提供します。
+
+メトリクスAPIは[k8s.io/metrics](https://github.com/kubernetes/metrics/blob/master/pkg/apis/metrics/v1beta1/types.go)リポジトリで定義されています。
+メトリクスAPIについての詳しい情報はそちらをご覧ください。
+
+{{< note >}}
+メトリクスAPIを使用するには、クラスター内にメトリクスサーバーが配置されている必要があります。そうでない場合は利用できません。
+{{< /note >}}
+
+## リソース使用量の測定
+
+### CPU
+
+CPUは、一定期間の平均使用量を[CPU cores](/docs/concepts/configuration/manage-resources-containers/#meaning-of-cpu)という単位で報告されます。
+この値は、カーネルが提供する累積CPUカウンターの比率を取得することで得られます(LinuxとWindowsの両カーネルで)。
+kubeletは、比率計算のためのウィンドウを選択します。
+
+### メモリ
+
+メモリは、測定値が収集された時点のワーキングセットとして、バイト単位で報告されます。
+理想的な世界では、「ワーキングセット」は、メモリ不足で解放できない使用中のメモリ量です。
+しかし、ワーキングセットの計算はホストOSによって異なり、一般に推定値を生成するために経験則を多用しています。
+Kubernetesはスワップをサポートしていないため、すべての匿名(非ファイルバックアップ)メモリが含まれます。
+ホストOSは常にそのようなページを再請求することができないため、メトリックには通常、一部のキャッシュされた(ファイルバックされた)メモリも含まれます。
+
+## メトリクスサーバー
+
+[メトリクスサーバー](https://github.com/kubernetes-sigs/metrics-server)は、クラスター全体のリソース使用量データのアグリゲーターです。
+デフォルトでは、`kube-up.sh`スクリプトで作成されたクラスターにDeploymentオブジェクトとしてデプロイされます。
+別のKubernetesセットアップ機構を使用する場合は、提供される[deployment components.yaml](https://github.com/kubernetes-sigs/metrics-server/releases)ファイルを使用してデプロイすることができます。
+メトリクスサーバーは、Summary APIからメトリクスを収集します。
+各ノードの[Kubelet](/docs/reference/command-line-tools-reference/kubelet/)から[Kubernetes aggregator](/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)経由でメインAPIサーバーに登録されるようになっています。
+
+メトリクスサーバーについては、[Design proposals](https://github.com/kubernetes/design-proposals-archive/blob/main/instrumentation/metrics-server.md)で詳しく解説しています。
+
+
+### Summary APIソース
+
+[Kubelet](/docs/reference/command-line-tools-reference/kubelet/)は、ノード、ボリューム、Pod、コンテナレベルの統計情報を収集し、[Summary API](https://github.com/kubernetes/kubernetes/blob/7d309e0104fedb57280b261e5677d919cb2a0e2d/staging/src/k8s.io/kubelet/pkg/apis/stats/v1alpha1/types.go)で省略して消費者が読めるようにするものです。
+
+1.23以前は、これらのリソースは主に[cAdvisor](https://github.com/google/cadvisor)から収集されていました。しかし、1.23では`PodAndContainerStatsFromCRI`フィーチャーゲートの導入により、コンテナとPodレベルの統計情報をCRI実装で収集することができます。
+
+注意: これはCRI実装によるサポートも必要です(containerd >= 1.6.0, CRI-O >= 1.23.0)。
diff --git a/content/ja/docs/tasks/debug-application-cluster/resource-usage-monitoring.md b/content/ja/docs/tasks/debug-application-cluster/resource-usage-monitoring.md
new file mode 100644
index 0000000000..68c0841038
--- /dev/null
+++ b/content/ja/docs/tasks/debug-application-cluster/resource-usage-monitoring.md
@@ -0,0 +1,41 @@
+---
+content_type: concept
+title: リソース監視のためのツール
+---
+
+<!-- overview -->
+
+アプリケーションを拡張し、信頼性の高いサービスを提供するために、デプロイ時にアプリケーションがどのように動作するかを理解する必要があります。
+コンテナ、[Pod](/docs/concepts/workloads/pods/)、[Service](/docs/concepts/services-networking/service/)、クラスター全体の特性を調べることにより、Kubernetesクラスターのアプリケーションパフォーマンスを調査することができます。
+Kubernetesは、これらの各レベルでアプリケーションのリソース使用に関する詳細な情報を提供します。
+この情報により、アプリケーションのパフォーマンスを評価し、ボトルネックを取り除くことで全体のパフォーマンスを向上させることができます。
+
+<!-- body -->
+
+Kubernetesでは、アプリケーションの監視は1つの監視ソリューションに依存することはありません。
+新しいクラスターでは、[リソースメトリクス](#resource-metrics-pipeline)または[フルメトリクス](#full-metrics-pipeline)パイプラインを使用してモニタリング統計を収集することができます。
+
+## リソースメトリクスパイプライン
+
+リソースメトリックパイプラインは、[Horizontal Pod Autoscaler](/docs/tasks/run-application/horizontal-pod-autoscale/)コントローラーなどのクラスターコンポーネントや、`kubectl top`ユーティリティに関連する限定的なメトリックセットを提供します。
+
+これらのメトリクスは軽量、短期、インメモリーの[metrics-server](https://github.com/kubernetes-sigs/metrics-server)によって収集され、`metrics.k8s.io` APIを通じて公開されます。
+
+metrics-serverはクラスター上のすべてのノードを検出し
+各ノードの[kubelet](/docs/reference/command-line-tools-reference/kubelet/)にCPUとメモリーの使用量を問い合わせます。
+
+kubeletはKubernetesマスターとノードの橋渡し役として、マシン上で動作するPodやコンテナを管理する。
+kubeletは各Podを構成するコンテナに変換し、コンテナランタイムインターフェースを介してコンテナランタイムから個々のコンテナ使用統計情報を取得します。この情報は、レガシーDocker統合のための統合cAdvisorから取得されます。
+
+そして、集約されたPodリソース使用統計情報を、metrics-server Resource Metrics APIを通じて公開します。
+このAPIは、kubeletの認証済みおよび読み取り専用ポート上の `/metrics/resource/v1beta1` で提供されます。
+
+## フルメトリクスパイプライン
+
+フルメトリクスパイプラインは、より豊富なメトリクスにアクセスすることができます。
+Kubernetesは、Horizontal Pod Autoscalerなどのメカニズムを使用して、現在の状態に基づいてクラスターを自動的にスケールまたは適応させることによって、これらのメトリクスに対応することができます。
+モニタリングパイプラインは、kubeletからメトリクスを取得し、`custom.metrics.k8s.io` または `external.metrics.k8s.io` APIを実装してアダプタ経由でKubernetesにそれらを公開します。
+CNCFプロジェクトの[Prometheus](https://prometheus.io)は、Kubernetes、ノード、Prometheus自身をネイティブに監視することができます。
+CNCFに属さない完全なメトリクスパイプラインのプロジェクトは、Kubernetesのドキュメントの範囲外です。
+
+
diff --git a/content/ja/docs/tasks/debug-application-cluster/troubleshooting.md b/content/ja/docs/tasks/debug-application-cluster/troubleshooting.md
new file mode 100644
index 0000000000..436afc14ea
--- /dev/null
+++ b/content/ja/docs/tasks/debug-application-cluster/troubleshooting.md
@@ -0,0 +1,88 @@
+---
+content_type: concept
+title: トラブルシューティング
+---
+
+<!-- overview -->
+
+時には物事がうまくいかないこともあります。このガイドは、それらを正すことを目的としています。
+
+ 2つのセクションから構成されています:
+
+* [Troubleshooting your application](/docs/tasks/debug-application-cluster/debug-application/) - Kubernetesにコードをデプロイしていて、なぜ動かないのか不思議に思っているユーザーに便利です。
+* [Troubleshooting your cluster](/docs/tasks/debug-application-cluster/debug-cluster/) - クラスター管理者やKubernetesクラスターに不満がある人に有用です。
+
+また、使用している[リリース](https://github.com/kubernetes/kubernetes/releases)の既知の問題を確認する必要があります。
+
+<!-- body -->
+
+## ヘルプを受けます
+
+もしあなたの問題が上記のどのガイドでも解決されない場合は、Kubernetesコミュニティから助けを得るための様々な方法があります。
+
+### ご質問
+
+本サイトのドキュメントは、様々な疑問に対する答えを提供するために構成されています。
+
+[Concepts](/docs/concepts/)では、Kubernetesのアーキテクチャーと各コンポーネントの動作について説明し、[Setup](/docs/setup/)では、使い始めるための実用的な手順を提供しています。
+[Tasks](/docs/tasks/) は、よく使われるタスクの実行方法を示し、 [Tutorials](/docs/tutorials/)は、実世界の業界特有、またはエンドツーエンドの開発シナリオ、より包括的なウォークスルーとなります。
+[Reference](/docs/reference/)セクションでは、[Kubernetes API(/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)と`kubectl`](/docs/reference/kubectl/overview/)などのコマンドラインインターフェース(CLI)に関する詳しいドキュメントが提供されています。
+
+## ヘルプ!私の質問はカバーされていません!今すぐ助けてください!
+
+### Stack Overflow
+
+コミュニティの誰かがすでに同じような質問をしている可能性があり、あなたの問題を解決できるかもしれません。
+Kubernetesチームも[Kubernetesタグが付けられた投稿](https://stackoverflow.com/questions/tagged/kubernetes)を監視しています。
+もし役立つ既存の質問がない場合は、[新しく質問してみてください](https://stackoverflow.com/questions/ask?tags=kubernetes)。
+
+
+### Slack
+
+Kubernetesコミュニティの多くの人々は、Kubernetes Slackの`#kubernetes-users`チャンネルに集まっています。
+Slackは登録が必要です。[招待をリクエストする](https://slack.kubernetes.io)ことができ、登録は誰でも可能です）。
+お気軽にお越しいただき、何でも質問してください。
+登録が完了したら、WebブラウザまたはSlackの専用アプリから[Kubernetes organization in Slack](https://kubernetes.slack.com)にアクセスします。
+
+登録が完了したら、増え続けるチャンネルリストを見て、興味のある様々なテーマについて調べてみましょう。
+たとえば、Kubernetesの初心者は、[`#kubernetes-novice`](https://kubernetes.slack.com/messages/kubernetes-novice)に参加してみるのもよいでしょう。
+別の例として、開発者は[`#kubernetes-dev`](https://kubernetes.slack.com/messages/kubernetes-dev)チャンネルに参加するとよいでしょう。
+
+また、多くの国別/言語別チャンネルがあります。これらのチャンネルに参加すれば、地域特有のサポートや情報を得ることができます。
+
+{{< table caption="Country / language specific Slack channels" >}}
+Country | Channels
+:---------|:------------
+中国 | [`#cn-users`](https://kubernetes.slack.com/messages/cn-users), [`#cn-events`](https://kubernetes.slack.com/messages/cn-events)
+フィンランド | [`#fi-users`](https://kubernetes.slack.com/messages/fi-users)
+フランス | [`#fr-users`](https://kubernetes.slack.com/messages/fr-users), [`#fr-events`](https://kubernetes.slack.com/messages/fr-events)
+ドイツ | [`#de-users`](https://kubernetes.slack.com/messages/de-users), [`#de-events`](https://kubernetes.slack.com/messages/de-events)
+インド | [`#in-users`](https://kubernetes.slack.com/messages/in-users), [`#in-events`](https://kubernetes.slack.com/messages/in-events)
+イタリア | [`#it-users`](https://kubernetes.slack.com/messages/it-users), [`#it-events`](https://kubernetes.slack.com/messages/it-events)
+日本 | [`#jp-users`](https://kubernetes.slack.com/messages/jp-users), [`#jp-events`](https://kubernetes.slack.com/messages/jp-events)
+韓国 | [`#kr-users`](https://kubernetes.slack.com/messages/kr-users)
+オランダ | [`#nl-users`](https://kubernetes.slack.com/messages/nl-users)
+ノルウェー | [`#norw-users`](https://kubernetes.slack.com/messages/norw-users)
+ポーランド | [`#pl-users`](https://kubernetes.slack.com/messages/pl-users)
+ロシア | [`#ru-users`](https://kubernetes.slack.com/messages/ru-users)
+スペイン | [`#es-users`](https://kubernetes.slack.com/messages/es-users)
+スウェーデン | [`#se-users`](https://kubernetes.slack.com/messages/se-users)
+トルコ | [`#tr-users`](https://kubernetes.slack.com/messages/tr-users), [`#tr-events`](https://kubernetes.slack.com/messages/tr-events)
+{{< /table >}}
+
+### フォーラム
+
+Kubernetesの公式フォーラムへの参加は大歓迎です[discuss.kubernetes.io](https://discuss.kubernetes.io)。
+
+### バグと機能の要望
+
+バグらしきものを発見した場合、または機能要望を出したい場合、[GitHub課題追跡システム](https://github.com/kubernetes/kubernetes/issues)をご利用ください。
+課題を提出する前に、既存の課題を検索して、あなたの課題が解決されているかどうかを確認してください。
+
+バグを報告する場合は、そのバグを再現するための詳細な情報を含めてください。
+
+* Kubernetes のバージョン: `kubectl version`
+* クラウドプロバイダー、OSディストリビューション、ネットワーク構成、Dockerバージョン
+* 問題を再現するための手順
+
+
diff --git a/content/ja/docs/tasks/inject-data-application/define-environment-variable-container.md b/content/ja/docs/tasks/inject-data-application/define-environment-variable-container.md
index 2427603f35..a844f1bbc8 100644
--- a/content/ja/docs/tasks/inject-data-application/define-environment-variable-container.md
+++ b/content/ja/docs/tasks/inject-data-application/define-environment-variable-container.md
@@ -108,7 +108,7 @@ spec:
 
 ## {{% heading "whatsnext" %}}
 
-* [環境変数](/docs/tasks/inject-data-application/environment-variable-expose-pod-information/)の詳細
+* [環境変数](/ja/docs/tasks/inject-data-application/environment-variable-expose-pod-information/)の詳細
 * [Secretを環境変数として使用する](/docs/concepts/configuration/secret/#using-secrets-as-environment-variables)詳細
 * [EnvVarSource](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#envvarsource-v1-core)をご覧ください。
 
diff --git a/content/ja/docs/tasks/inject-data-application/distribute-credentials-secure.md b/content/ja/docs/tasks/inject-data-application/distribute-credentials-secure.md
new file mode 100644
index 0000000000..9cc49e3924
--- /dev/null
+++ b/content/ja/docs/tasks/inject-data-application/distribute-credentials-secure.md
@@ -0,0 +1,257 @@
+---
+title: Secretsで安全にクレデンシャルを配布する
+content_type: task
+weight: 50
+min-kubernetes-server-version: v1.6
+---
+
+<!-- overview -->
+このページでは、パスワードや暗号化キーなどの機密データをPodに安全に注入する方法を紹介します。
+
+## {{% heading "prerequisites" %}}
+
+
+{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+
+### 機密データをbase64でエンコードする
+
+ユーザー名`my-app`とパスワード`39528$vdg7Jb`の2つの機密データが必要だとします。
+まず、base64エンコーディングツールを使って、ユーザ名とパスワードをbase64表現に変換します。
+ここでは、手軽に入手できるbase64プログラムを使った例を紹介します:
+
+```shell
+echo -n 'my-app' | base64
+echo -n '39528$vdg7Jb' | base64
+```
+
+出力結果によると、ユーザ名のbase64表現は`bXktYXBw`で、パスワードのbase64表現は`Mzk1MjgkdmRnN0pi`です。
+
+{{< caution >}}
+OSから信頼されているローカルツールを使用することで、外部ツールのセキュリティリスクを低減することができます。
+{{< /caution >}}
+
+
+<!-- steps -->
+
+## Secretを作成する
+
+以下はユーザー名とパスワードを保持するSecretを作成するために使用できる設定ファイルです:
+
+{{< codenew file="pods/inject/secret.yaml" >}}
+
+1. Secret を作成する
+
+    ```shell
+    kubectl apply -f https://k8s.io/examples/pods/inject/secret.yaml
+    ```
+
+1. Secretの情報を取得する
+
+    ```shell
+    kubectl get secret test-secret
+    ```
+
+    出力:
+
+    ```
+    NAME          TYPE      DATA      AGE
+    test-secret   Opaque    2         1m
+    ```
+
+1. Secretの詳細な情報を取得する:
+
+    ```shell
+    kubectl describe secret test-secret
+    ```
+
+    出力:
+
+    ```
+    Name:       test-secret
+    Namespace:  default
+    Labels:     <none>
+    Annotations:    <none>
+
+    Type:   Opaque
+
+    Data
+    ====
+    password:   13 bytes
+    username:   7 bytes
+    ```
+
+### kubectlでSecretを作成する
+
+base64エンコードの手順を省略したい場合は、`kubectl create secret`コマンドで同じSecretを作成することができます。
+
+例えば:
+
+```shell
+kubectl create secret generic test-secret --from-literal='username=my-app' --from-literal='password=39528$vdg7Jb'
+```
+
+先ほどの詳細なアプローチでは 各ステップを明示的に実行し、何が起こっているかを示していますが、`kubectl create secret`の方が便利です。
+
+
+## Volumeにある機密情報をアクセスするPodを作成する
+
+これはPodの作成に使用できる設定ファイルです。
+
+{{< codenew file="pods/inject/secret-pod.yaml" >}}
+
+1. Podを作成する:
+
+   ```shell
+   kubectl apply -f https://k8s.io/examples/pods/inject/secret-pod.yaml
+   ```
+
+1. Podの`STATUS`が`Running`であるのを確認する:
+
+   ```shell
+   kubectl get pod secret-test-pod
+   ```
+
+    出力:
+   ```
+   NAME              READY     STATUS    RESTARTS   AGE
+   secret-test-pod   1/1       Running   0          42m
+   ```
+
+1. Podの中にあるコンテナにシェルを実行する
+
+   ```shell
+   kubectl exec -i -t secret-test-pod -- /bin/bash
+   ```
+
+1. 機密データは `/etc/secret-volume` にマウントされたボリュームを介してコンテナに公開されます。
+
+   ディレクトリ `/etc/secret-volume` 中のファイルの一覧を確認する:
+   ```shell
+   # Run this in the shell inside the container
+   ls /etc/secret-volume
+   ```
+   `password`と`username` ２つのファイル名が出力される:
+   ```
+   password username
+   ```
+
+1.  `username` と `password` ファイルの中身を表示する:
+
+   ```shell
+   # Run this in the shell inside the container
+   echo "$( cat /etc/secret-volume/username )"
+   echo "$( cat /etc/secret-volume/password )"
+
+   ```
+   出力:
+   ```
+   my-app
+   39528$vdg7Jb
+   ```
+
+## Secretでコンテナの環境変数を定義する
+
+### 単一のSecretでコンテナの環境変数を定義する
+
+*  Secretの中でkey-valueペアで環境変数を定義する:
+
+   ```shell
+   kubectl create secret generic backend-user --from-literal=backend-username='backend-admin'
+   ```
+
+*  Secretで定義された`backend-username`の値をPodの環境変数`SECRET_USERNAME`に割り当てます。
+
+   {{< codenew file="pods/inject/pod-single-secret-env-variable.yaml" >}}
+
+*  Podを作成する:
+
+   ```shell
+   kubectl create -f https://k8s.io/examples/pods/inject/pod-single-secret-env-variable.yaml
+   ```
+
+*  コンテナの環境変数`SECRET_USERNAME`の中身を表示する:
+
+   ```shell
+   kubectl exec -i -t env-single-secret -- /bin/sh -c 'echo $SECRET_USERNAME'
+   ```
+
+   出力:
+   ```
+   backend-admin
+   ```
+
+### 複数のSecretからコンテナの環境変数を定義する
+
+*  前述の例と同様に、まずSecretを作成します:
+
+   ```shell
+   kubectl create secret generic backend-user --from-literal=backend-username='backend-admin'
+   kubectl create secret generic db-user --from-literal=db-username='db-admin'
+   ```
+
+*  Podの中で環境変数を定義する:
+
+   {{< codenew file="pods/inject/pod-multiple-secret-env-variable.yaml" >}}
+
+*  Podを作成する:
+
+   ```shell
+   kubectl create -f https://k8s.io/examples/pods/inject/pod-multiple-secret-env-variable.yaml
+   ```
+
+*  コンテナの環境変数を表示する:
+
+   ```shell
+   kubectl exec -i -t envvars-multiple-secrets -- /bin/sh -c 'env | grep _USERNAME'
+   ```
+   出力:
+   ```
+   DB_USERNAME=db-admin
+   BACKEND_USERNAME=backend-admin
+   ```
+
+
+## Secretのすべてのkey-valueペアを環境変数として設定する
+
+{{< note >}}
+この機能は Kubernetes v1.6 以降から利用可能
+{{< /note >}}
+
+*  複数のkey-valueペアを含むSecretを作成する
+
+   ```shell
+   kubectl create secret generic test-secret --from-literal=username='my-app' --from-literal=password='39528$vdg7Jb'
+   ```
+
+*  envFromを使用してSecretのすべてのデータをコンテナの環境変数として定義します。SecretのキーがPodの環境変数名になります。
+
+    {{< codenew file="pods/inject/pod-secret-envFrom.yaml" >}}
+
+*  Podを作成する:
+
+   ```shell
+   kubectl create -f https://k8s.io/examples/pods/inject/pod-secret-envFrom.yaml
+   ```
+
+* `username`と`password`コンテナの環境変数を表示する
+
+  ```shell
+  kubectl exec -i -t envfrom-secret -- /bin/sh -c 'echo "username: $username\npassword: $password\n"'
+  ```
+
+  出力:
+  ```
+  username: my-app
+  password: 39528$vdg7Jb
+  ```
+
+### 参考文献
+
+* [Secret](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#secret-v1-core)
+* [Volume](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#volume-v1-core)
+* [Pod](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#pod-v1-core)
+
+## {{% heading "whatsnext" %}}
+
+* [Secrets](/docs/concepts/configuration/secret/)についてもっと知る。
+* [Volumes](/docs/concepts/storage/volumes/)について知る。
diff --git a/content/ja/docs/tasks/manage-gpus/scheduling-gpus.md b/content/ja/docs/tasks/manage-gpus/scheduling-gpus.md
index b4a01a7bd7..5c51771cd7 100644
--- a/content/ja/docs/tasks/manage-gpus/scheduling-gpus.md
+++ b/content/ja/docs/tasks/manage-gpus/scheduling-gpus.md
@@ -111,7 +111,7 @@ Googleは、GKE上でNVIDIAのGPUを使用するための[手順](https://cloud.
 
 ## 異なる種類のGPUを搭載するクラスター
 
-クラスター上の別のノードに異なる種類のGPUが搭載されている場合、[NodeラベルとNodeセレクター](/docs/tasks/configure-pod-container/assign-pods-nodes/)を使用することで、Podを適切なノードにスケジューリングできます。
+クラスター上の別のノードに異なる種類のGPUが搭載されている場合、[NodeラベルとNodeセレクター](/ja/docs/tasks/configure-pod-container/assign-pods-nodes/)を使用することで、Podを適切なノードにスケジューリングできます。
 
 以下に例を示します。
 
diff --git a/content/ja/docs/tasks/network/validate-dual-stack.md b/content/ja/docs/tasks/network/validate-dual-stack.md
index 9ab51d8701..1859d1e408 100644
--- a/content/ja/docs/tasks/network/validate-dual-stack.md
+++ b/content/ja/docs/tasks/network/validate-dual-stack.md
@@ -135,7 +135,7 @@ status:
   loadBalancer: {}
 ```
 
-`.spec.ipFamilies`内の配列の1番目の要素に`IPv6`を明示的に指定した、次のようなServiceを作成してみます。Kubernetesは`service-cluster-ip-range`で設定したIPv6の範囲からcluster IPを割り当てて、`.spec.ipFamilyPolicy`を`SingleStack`に設定します。
+`.spec.ipFamilies`内の配列の1番目の要素に`IPv6`を明示的に指定した、次のようなServiceを作成してみます。Kubernetesは`service-cluster-ip-range`で設定したIPv6の範囲からcluster IPを割り当てて、`.spec.ipFamilyPolicy`を`SingleStack`に設定します。
 
 {{< codenew file="service/networking/dual-stack-ipfamilies-ipv6.yaml" >}}
 
@@ -173,7 +173,7 @@ status:
   loadBalancer: {}
 ```
 
-`.spec.ipFamiliePolicy`に`PreferDualStack`を明示的に指定した、次のようなServiceを作成してみます。Kubernetesは(クラスターでデュアルスタックを有効化しているため)IPv4およびIPv6のアドレスの両方を割り当て、`.spec.ClusterIPs`のリストから、`.spec.ipFamilies`配列の最初の要素のアドレスファミリーに基づいた`.spec.ClusterIP`を設定します。
+`.spec.ipFamiliePolicy`に`PreferDualStack`を明示的に指定した、次のようなServiceを作成してみます。Kubernetesは(クラスターでデュアルスタックを有効化しているため)IPv4およびIPv6のアドレスの両方を割り当て、`.spec.ClusterIPs`のリストから、`.spec.ipFamilies`配列の最初の要素のアドレスファミリーに基づいた`.spec.ClusterIP`を設定します。
 
 {{< codenew file="service/networking/dual-stack-preferred-svc.yaml" >}}
 
diff --git a/content/ja/docs/tasks/run-application/force-delete-stateful-set-pod.md b/content/ja/docs/tasks/run-application/force-delete-stateful-set-pod.md
index ac20713a8d..a118950f36 100644
--- a/content/ja/docs/tasks/run-application/force-delete-stateful-set-pod.md
+++ b/content/ja/docs/tasks/run-application/force-delete-stateful-set-pod.md
@@ -74,5 +74,5 @@ StatefulSet Podの強制削除は、常に慎重に、関連するリスクを
 ## {{% heading "whatsnext" %}}
 
 
-[StatefulSetのデバッグ](/docs/tasks/debug-application-cluster/debug-stateful-set/)の詳細
+[StatefulSetのデバッグ](/ja/docs/tasks/debug-application-cluster/debug-stateful-set/)の詳細
 
diff --git a/content/ja/docs/tasks/run-application/scale-stateful-set.md b/content/ja/docs/tasks/run-application/scale-stateful-set.md
index 155b93d069..bfde1d0afd 100644
--- a/content/ja/docs/tasks/run-application/scale-stateful-set.md
+++ b/content/ja/docs/tasks/run-application/scale-stateful-set.md
@@ -14,7 +14,7 @@ weight: 50
 * StatefulSetはKubernetesバージョン1.5以降でのみ利用可能です。
   Kubernetesのバージョンを確認するには、`kubectl version`を実行してください。
 
-* すべてのステートフルアプリケーションがうまくスケールできるわけではありません。StatefulSetがスケールするかどうかわからない場合は、[StatefulSetの概念](/ja/docs/concepts/workloads/controllers/statefulset/)または[StatefulSetのチュートリアル](/docs/tutorials/stateful-application/basic-stateful-set/)を参照してください。
+* すべてのステートフルアプリケーションがうまくスケールできるわけではありません。StatefulSetがスケールするかどうかわからない場合は、[StatefulSetの概念](/ja/docs/concepts/workloads/controllers/statefulset/)または[StatefulSetのチュートリアル](/ja/docs/tutorials/stateful-application/basic-stateful-set/)を参照してください。
 
 * ステートフルアプリケーションクラスターが完全に健全であると確信できる場合にのみ、スケーリングを実行してください。
 
@@ -40,7 +40,7 @@ kubectl scale statefulsets <stateful-set-name> --replicas=<new-replicas>
 
 ### StatefulSetのインプレースアップデート
 
-コマンドライン上でレプリカ数を変更する代わりに、StatefulSetに[インプレースアップデート](/docs/concepts/cluster-administration/manage-deployment/#in-place-updates-of-resources)が可能です。
+コマンドライン上でレプリカ数を変更する代わりに、StatefulSetに[インプレースアップデート](/ja/docs/concepts/cluster-administration/manage-deployment/#in-place-updates-of-resources)が可能です。
 
 StatefulSetが最初に `kubectl apply`で作成されたのなら、StatefulSetマニフェストの`.spec.replicas`を更新してから、`kubectl apply`を実行します:
 
diff --git a/content/ja/docs/tasks/tools/install-kubectl.md b/content/ja/docs/tasks/tools/install-kubectl.md
index a33b475671..688c996b1b 100644
--- a/content/ja/docs/tasks/tools/install-kubectl.md
+++ b/content/ja/docs/tasks/tools/install-kubectl.md
@@ -484,7 +484,7 @@ kubectlにエイリアスを張っている場合は、以下のようにシェ
 
 ```zsh
 echo 'alias k=kubectl' >>~/.zshrc
-echo 'complete -F __start_kubectl k' >>~/.zshrc
+echo 'compdef __start_kubectl k' >>~/.zshrc
 ```
 
 シェルをリロードしたあとに、kubectlの自動補完が機能するはずです。
diff --git a/content/ja/docs/tutorials/_index.md b/content/ja/docs/tutorials/_index.md
index 1c1d55300a..11e0308a9a 100644
--- a/content/ja/docs/tutorials/_index.md
+++ b/content/ja/docs/tutorials/_index.md
@@ -24,19 +24,19 @@ content_type: concept
 
 ## 設定
 
-* [ConfigMapを用いたRedisの設定](/docs/tutorials/configuration/configure-redis-using-configmap/)
+* [ConfigMapを用いたRedisの設定](/ja/docs/tutorials/configuration/configure-redis-using-configmap/)
 
 ## ステートレスアプリケーション
 
 * [クラスター内のアプリケーションにアクセスするために外部IPアドレスを公開する](/ja/docs/tutorials/stateless-application/expose-external-ip-address/)
 
-* [例: Redisを使用したPHPゲストブックアプリケーションのデプロイ](/docs/tutorials/stateless-application/guestbook/)
+* [例: Redisを使用したPHPゲストブックアプリケーションのデプロイ](/ja/docs/tutorials/stateless-application/guestbook/)
 
 ## ステートフルアプリケーション
 
 * [StatefulSetの基本](/docs/tutorials/stateful-application/basic-stateful-set/)
 
-* [例: 永続ボリュームを使ったWordPressとMySQLのデプロイ](/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume/)
+* [例: 永続ボリュームを使ったWordPressとMySQLのデプロイ](/ja/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume/)
 
 * [例: Stateful Setsを使ったCassandraのデプロイ](/docs/tutorials/stateful-application/cassandra/)
 
@@ -46,9 +46,11 @@ content_type: concept
 
 * [AppArmor](/docs/tutorials/clusters/apparmor/)
 
+* [seccomp](/docs/tutorials/clusters/seccomp/)
+
 ## サービス
 
-* [Source IPを使う](/docs/tutorials/services/source-ip/)
+* [Source IPを使う](/ja/docs/tutorials/services/source-ip/)
 
 
 
diff --git a/content/ja/docs/tutorials/clusters/apparmor.md b/content/ja/docs/tutorials/clusters/apparmor.md
index 5ee0201d71..69a3063c6a 100644
--- a/content/ja/docs/tutorials/clusters/apparmor.md
+++ b/content/ja/docs/tutorials/clusters/apparmor.md
@@ -35,7 +35,7 @@ AppArmorを利用すれば、コンテナに許可することを制限したり
    gke-test-default-pool-239f5d02-xwux: v1.4.0
    ```
 
-2. AppArmorカーネルモジュールが有効であること。LinuxカーネルがAppArmorプロファイルを強制するためには、AppArmorカーネルモジュールのインストールと有効化が必須です。UbuntuやSUSEなどのディストリビューションではデフォルトで有効化されますが、他の多くのディストリビューションでのサポートはオプションです。モジュールが有効になっているかチェックするには、次のように`/sys/module/apparmor/parameters/enabled`ファイルを確認します。
+2. AppArmorカーネルモジュールが有効であること。LinuxカーネルがAppArmorプロファイルを強制するためには、AppArmorカーネルモジュールのインストールと有効化が必須です。UbuntuやSUSEなどのディストリビューションではデフォルトで有効化されますが、他の多くのディストリビューションでのサポートはオプションです。モジュールが有効になっているかチェックするには、次のように`/sys/module/apparmor/parameters/enabled`ファイルを確認します。
 
    ```shell
    cat /sys/module/apparmor/parameters/enabled
@@ -183,7 +183,7 @@ kubectl get events | grep hello-apparmor
 コンテナがこのプロファイルで実際に実行されていることを確認するために、コンテナのproc attrをチェックします。
 
 ```shell
-kubectl exec hello-apparmor cat /proc/1/attr/current
+kubectl exec hello-apparmor -- cat /proc/1/attr/current
 ```
 ```
 k8s-apparmor-example-deny-write (enforce)
@@ -192,7 +192,7 @@ k8s-apparmor-example-deny-write (enforce)
 最後に、ファイルへの書き込みを行おうとすることで、プロファイルに違反すると何が起こるか見てみましょう。
 
 ```shell
-kubectl exec hello-apparmor touch /tmp/test
+kubectl exec hello-apparmor touch -- /tmp/test
 ```
 ```
 touch: /tmp/test: Permission denied
diff --git a/content/ja/docs/tutorials/kubernetes-basics/expose/expose-intro.html b/content/ja/docs/tutorials/kubernetes-basics/expose/expose-intro.html
index 3111e67396..ccd00e3bbd 100644
--- a/content/ja/docs/tutorials/kubernetes-basics/expose/expose-intro.html
+++ b/content/ja/docs/tutorials/kubernetes-basics/expose/expose-intro.html
@@ -30,7 +30,7 @@ weight: 10
 
 			<p>Kubernetes Podの寿命は永続的ではありません。実際、<a href="/ja/docs/concepts/workloads/pods/pod/">Pod</a>には<a href="/ja/docs/concepts/workloads/pods/pod-lifecycle/">ライフサイクル</a>があります。ワーカーのノードが停止すると、そのノードで実行されているPodも失われます。そうなると、<a href="/ja/docs/concepts/workloads/controllers/replicaset/">ReplicaSet</a>は、新しいPodを作成してアプリケーションを実行し続けるために、クラスターを動的に目的の状態に戻すことができます。別の例として、3つのレプリカを持つ画像処理バックエンドを考えます。それらのレプリカは交換可能です。フロントエンドシステムはバックエンドのレプリカを気にしたり、Podが失われて再作成されたとしても配慮すべきではありません。ただし、Kubernetesクラスター内の各Podは、同じノード上のPodであっても一意のIPアドレスを持っているため、アプリケーションが機能し続けるように、Pod間の変更を自動的に調整する方法が必要です。</p>
 
-			<p>KubernetesのServiceは、Podの論理セットと、それらにアクセスするためのポリシーを定義する抽象概念です。Serviceによって、依存Pod間の疎結合が可能になります。Serviceは、すべてのKubernetesオブジェクトのように、YAML<a href="/docs/concepts/configuration/overview/#general-configuration-tips">(推奨)</a>またはJSONを使って定義されます。Serviceが対象とするPodのセットは通常、<i>LabelSelector</i>によって決定されます(なぜ仕様に<code>セレクタ</code>を含めずにServiceが必要になるのかについては下記を参照してください)。</p>
+			<p>KubernetesのServiceは、Podの論理セットと、それらにアクセスするためのポリシーを定義する抽象概念です。Serviceによって、依存Pod間の疎結合が可能になります。Serviceは、すべてのKubernetesオブジェクトのように、YAML<a href="/ja/docs/concepts/configuration/overview/#general-configuration-tips">(推奨)</a>またはJSONを使って定義されます。Serviceが対象とするPodのセットは通常、<i>LabelSelector</i>によって決定されます(なぜ仕様に<code>セレクタ</code>を含めずにServiceが必要になるのかについては下記を参照してください)。</p>
 
 			<p>各Podには固有のIPアドレスがありますが、それらのIPは、Serviceなしではクラスターの外部に公開されません。Serviceによって、アプリケーションはトラフィックを受信できるようになります。ServiceSpecで<code>type</code>を指定することで、Serviceをさまざまな方法で公開することができます。</p>
 			<ul>
diff --git a/content/ja/docs/tutorials/stateful-application/basic-stateful-set.md b/content/ja/docs/tutorials/stateful-application/basic-stateful-set.md
index 6b9d8da5a8..093962f2ce 100644
--- a/content/ja/docs/tutorials/stateful-application/basic-stateful-set.md
+++ b/content/ja/docs/tutorials/stateful-application/basic-stateful-set.md
@@ -15,7 +15,7 @@ weight: 10
 * [Cluster DNS](/ja/docs/concepts/services-networking/dns-pod-service/)
 * [Headless Service](/ja/docs/concepts/services-networking/service/#headless-services)
 * [PersistentVolume](/ja/docs/concepts/storage/persistent-volumes/)
-* [PersistentVolumeのプロビジョニング](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/persistent-volume-provisioning/)
+* [PersistentVolumeのプロビジョニング](https://github.com/kubernetes/examples/tree/master/staging/persistent-volume-provisioning/)
 * [StatefulSet](/ja/docs/concepts/workloads/controllers/statefulset/)
 * [kubectl](/docs/reference/kubectl/kubectl/)コマンドラインツール
 
diff --git a/content/ja/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume.md b/content/ja/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume.md
index 5e7b77443d..a55a093c2b 100644
--- a/content/ja/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume.md
+++ b/content/ja/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume.md
@@ -234,7 +234,7 @@ WordPressのインストールをこのページのまま放置してはいけ
 ## {{% heading "whatsnext" %}}
 
 
-* [イントロスペクションとデバッグ](/docs/tasks/debug-application-cluster/debug-application-introspection/)についてさらに学ぶ
+* [イントロスペクションとデバッグ](/docs/tasks/debug/debug-application)についてさらに学ぶ
 * [Job](/docs/concepts/workloads/controllers/job/)についてさらに学ぶ
 * [Portフォワーディング](/docs/tasks/access-application-cluster/port-forward-access-application-cluster/)についてさらに学ぶ
 * [コンテナへのシェルを取得する](/ja/docs/tasks/debug-application-cluster/get-shell-running-container/)方法について学ぶ
diff --git a/content/ja/docs/tutorials/stateless-application/guestbook.md b/content/ja/docs/tutorials/stateless-application/guestbook.md
index 82e38a56d2..b9aefecfa9 100644
--- a/content/ja/docs/tutorials/stateless-application/guestbook.md
+++ b/content/ja/docs/tutorials/stateless-application/guestbook.md
@@ -79,7 +79,7 @@ POD-NAMEの部分を実際のPodの名前に書き換えてください。
 
 ### RedisのマスターのServiceを作成する
 
-ゲストブックアプリケーションは、データを書き込むためにRedisのマスターと通信する必要があります。そのためには、[Service](/docs/concepts/services-networking/service/)を適用して、トラフィックをRedisのマスターのPodへプロキシーしなければなりません。Serviceは、Podにアクセスするためのポリシーを指定します。
+ゲストブックアプリケーションは、データを書き込むためにRedisのマスターと通信する必要があります。そのためには、[Service](/ja/docs/concepts/services-networking/service/)を適用して、トラフィックをRedisのマスターのPodへプロキシーしなければなりません。Serviceは、Podにアクセスするためのポリシーを指定します。
 
 {{< codenew file="application/guestbook/redis-master-service.yaml" >}}
 
@@ -199,7 +199,7 @@ Deploymentはマニフェストファイル内に書かれた設定に基づい
 
 ### フロントエンドのServiceを作成する
 
-適用した`redis-slave`および`redis-master` Serviceは、コンテナクラスター内部からのみアクセス可能です。これは、デフォルトのServiceのtypeが[ClusterIP](/docs/concepts/services-networking/service/#publishing-services-service-types)であるためです。`ClusterIP`は、Serviceが指している一連のPodに対して1つのIPアドレスを提供します。このIPアドレスはクラスター内部からのみアクセスできます。
+適用した`redis-slave`および`redis-master` Serviceは、コンテナクラスター内部からのみアクセス可能です。これは、デフォルトのServiceのtypeが[ClusterIP](/ja/docs/concepts/services-networking/service/#publishing-services-service-types)であるためです。`ClusterIP`は、Serviceが指している一連のPodに対して1つのIPアドレスを提供します。このIPアドレスはクラスター内部からのみアクセスできます。
 
 もしゲストの人にゲストブックにアクセスしてほしいのなら、フロントエンドServiceを外部から見えるように設定しなければなりません。そうすれば、クライアントはコンテナクラスターの外部からServiceにリクエストを送れるようになります。Minikubeでは、Serviceを`NodePort`でのみ公開できます。
 
@@ -363,8 +363,8 @@ DeploymentとServiceを削除すると、実行中のPodも削除されます。
 
 ## {{% heading "whatsnext" %}}
 
-* ゲストブックアプリケーションに対する[ELKによるロギングとモニタリング](/docs/tutorials/stateless-application/guestbook-logs-metrics-with-elk/)
+* ゲストブックアプリケーションに対する[ELKによるロギングとモニタリング](/ja/docs/tutorials/stateless-application/guestbook-logs-metrics-with-elk/)
 * [Kubernetesの基本](/ja/docs/tutorials/kubernetes-basics/)のインタラクティブチュートリアルを終わらせる
-* Kubernetesを使って、[MySQLとWordpressのためにPersistent Volume](/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume/#visit-your-new-wordpress-blog)を使用したブログを作成する
+* Kubernetesを使って、[MySQLとWordpressのためにPersistent Volume](/ja/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume/#visit-your-new-wordpress-blog)を使用したブログを作成する
 * [サービスとアプリケーションの接続](/ja/docs/concepts/services-networking/connect-applications-service/)についてもっと読む
-* [リソースの管理](/docs/concepts/cluster-administration/manage-deployment/#using-labels-effectively)についてもっと読む
+* [リソースの管理](/ja/docs/concepts/cluster-administration/manage-deployment/#using-labels-effectively)についてもっと読む
diff --git a/content/ja/examples/admin/resource/cpu-constraints-pod-3.yaml b/content/ja/examples/admin/resource/cpu-constraints-pod-3.yaml
deleted file mode 100644
index 896d98ec2f..0000000000
--- a/content/ja/examples/admin/resource/cpu-constraints-pod-3.yaml
+++ /dev/null
@@ -1,13 +0,0 @@
-apiVersion: v1
-kind: Pod
-metadata:
-  name: constraints-cpu-demo-4
-spec:
-  containers:
-  - name: constraints-cpu-demo-4-ctr
-    image: nginx
-    resources:
-      limits:
-        cpu: "800m"
-      requests:
-        cpu: "100m"
diff --git a/content/ja/examples/admin/sched/my-scheduler.yaml b/content/ja/examples/admin/sched/my-scheduler.yaml
index 3e51d12721..5c84398133 100644
--- a/content/ja/examples/admin/sched/my-scheduler.yaml
+++ b/content/ja/examples/admin/sched/my-scheduler.yaml
@@ -49,13 +49,15 @@ spec:
         livenessProbe:
           httpGet:
             path: /healthz
-            port: 10251
+            port: 10259
+            scheme: HTTPS
           initialDelaySeconds: 15
         name: kube-second-scheduler
         readinessProbe:
           httpGet:
             path: /healthz
-            port: 10251
+            port: 10259
+            scheme: HTTPS
         resources:
           requests:
             cpu: '0.1'
diff --git a/content/ja/examples/application/job/cronjob.yaml b/content/ja/examples/application/job/cronjob.yaml
index 34ab2a3f06..5691950410 100644
--- a/content/ja/examples/application/job/cronjob.yaml
+++ b/content/ja/examples/application/job/cronjob.yaml
@@ -3,7 +3,7 @@ kind: CronJob
 metadata:
   name: hello
 spec:
-  schedule: "*/1 * * * *"
+  schedule: "* * * * *"
   jobTemplate:
     spec:
       template:
diff --git a/content/ja/examples/application/mysql/mysql-configmap.yaml b/content/ja/examples/application/mysql/mysql-configmap.yaml
index 46d34e422c..9adb0344a3 100644
--- a/content/ja/examples/application/mysql/mysql-configmap.yaml
+++ b/content/ja/examples/application/mysql/mysql-configmap.yaml
@@ -4,13 +4,14 @@ metadata:
   name: mysql
   labels:
     app: mysql
+    app.kubernetes.io/name: mysql
 data:
-  master.cnf: |
-    # Apply this config only on the master.
+  primary.cnf: |
+    # Apply this config only on the primary.
     [mysqld]
     log-bin
-  slave.cnf: |
-    # Apply this config only on slaves.
+  replica.cnf: |
+    # Apply this config only on replicas.
     [mysqld]
     super-read-only
 
diff --git a/content/zh/examples/pods/inject/pod-multiple-secret-env-variable.yaml b/content/ja/examples/pods/inject/pod-multiple-secret-env-variable.yaml
similarity index 100%
rename from content/zh/examples/pods/inject/pod-multiple-secret-env-variable.yaml
rename to content/ja/examples/pods/inject/pod-multiple-secret-env-variable.yaml
diff --git a/content/zh/examples/pods/inject/pod-secret-envFrom.yaml b/content/ja/examples/pods/inject/pod-secret-envFrom.yaml
similarity index 100%
rename from content/zh/examples/pods/inject/pod-secret-envFrom.yaml
rename to content/ja/examples/pods/inject/pod-secret-envFrom.yaml
diff --git a/content/zh/examples/pods/inject/pod-single-secret-env-variable.yaml b/content/ja/examples/pods/inject/pod-single-secret-env-variable.yaml
similarity index 100%
rename from content/zh/examples/pods/inject/pod-single-secret-env-variable.yaml
rename to content/ja/examples/pods/inject/pod-single-secret-env-variable.yaml
diff --git a/content/ja/examples/pods/probe/exec-liveness.yaml b/content/ja/examples/pods/probe/exec-liveness.yaml
index 07bf75f85c..6a9c9b3213 100644
--- a/content/ja/examples/pods/probe/exec-liveness.yaml
+++ b/content/ja/examples/pods/probe/exec-liveness.yaml
@@ -11,7 +11,7 @@ spec:
     args:
     - /bin/sh
     - -c
-    - touch /tmp/healthy; sleep 30; rm -rf /tmp/healthy; sleep 600
+    - touch /tmp/healthy; sleep 30; rm -f /tmp/healthy; sleep 600
     livenessProbe:
       exec:
         command:
diff --git a/content/ja/examples/pods/storage/projected-secret-downwardapi-configmap.yaml b/content/ja/examples/pods/storage/projected-secret-downwardapi-configmap.yaml
new file mode 100644
index 0000000000..270db99dcd
--- /dev/null
+++ b/content/ja/examples/pods/storage/projected-secret-downwardapi-configmap.yaml
@@ -0,0 +1,35 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: volume-test
+spec:
+  containers:
+  - name: container-test
+    image: busybox
+    volumeMounts:
+    - name: all-in-one
+      mountPath: "/projected-volume"
+      readOnly: true
+  volumes:
+  - name: all-in-one
+    projected:
+      sources:
+      - secret:
+          name: mysecret
+          items:
+            - key: username
+              path: my-group/my-username
+      - downwardAPI:
+          items:
+            - path: "labels"
+              fieldRef:
+                fieldPath: metadata.labels
+            - path: "cpu_limit"
+              resourceFieldRef:
+                containerName: container-test
+                resource: limits.cpu
+      - configMap:
+          name: myconfigmap
+          items:
+            - key: config
+              path: my-group/my-config
diff --git a/content/ja/examples/pods/storage/projected-secrets-nondefault-permission-mode.yaml b/content/ja/examples/pods/storage/projected-secrets-nondefault-permission-mode.yaml
new file mode 100644
index 0000000000..f69b43161e
--- /dev/null
+++ b/content/ja/examples/pods/storage/projected-secrets-nondefault-permission-mode.yaml
@@ -0,0 +1,27 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: volume-test
+spec:
+  containers:
+  - name: container-test
+    image: busybox
+    volumeMounts:
+    - name: all-in-one
+      mountPath: "/projected-volume"
+      readOnly: true
+  volumes:
+  - name: all-in-one
+    projected:
+      sources:
+      - secret:
+          name: mysecret
+          items:
+            - key: username
+              path: my-group/my-username
+      - secret:
+          name: mysecret2
+          items:
+            - key: password
+              path: my-group/my-password
+              mode: 511
diff --git a/content/ja/examples/pods/storage/projected-service-account-token.yaml b/content/ja/examples/pods/storage/projected-service-account-token.yaml
new file mode 100644
index 0000000000..3ad06b5dc7
--- /dev/null
+++ b/content/ja/examples/pods/storage/projected-service-account-token.yaml
@@ -0,0 +1,21 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: sa-token-test
+spec:
+  containers:
+  - name: container-test
+    image: busybox
+    volumeMounts:
+    - name: token-vol
+      mountPath: "/service-account"
+      readOnly: true
+  serviceAccountName: default
+  volumes:
+  - name: token-vol
+    projected:
+      sources:
+      - serviceAccountToken:
+          audience: api
+          expirationSeconds: 3600
+          path: token
diff --git a/content/ja/includes/default-storage-class-prereqs.md b/content/ja/includes/default-storage-class-prereqs.md
index 52d100d6ef..648bbfc1ac 100644
--- a/content/ja/includes/default-storage-class-prereqs.md
+++ b/content/ja/includes/default-storage-class-prereqs.md
@@ -1 +1 @@
-ここで使用されている[PersistentVolumeClaims](/docs/user-guide/persistent-volumes/#persistentvolumeclaims)の要件を満たすには、デフォルトの[StorageClass](/docs/concepts/storage/storage-classes/)を使用して動的PersistentVolumeプロビジョナーを作成するか、[PersistentVolumesを静的にプロビジョニングする](/docs/user-guide/persistent-volumes/#provisioning)必要があります。
+ここで使用されている[PersistentVolumeClaims](/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims)の要件を満たすには、デフォルトの[StorageClass](/docs/concepts/storage/storage-classes/)を使用して動的PersistentVolumeプロビジョナーを作成するか、[PersistentVolumesを静的にプロビジョニングする](/docs/concepts/storage/persistent-volumes/#provisioning)必要があります。
diff --git a/content/ja/partners/_index.html b/content/ja/partners/_index.html
index c2d3f52f7e..6184e464c7 100644
--- a/content/ja/partners/_index.html
+++ b/content/ja/partners/_index.html
@@ -7,85 +7,45 @@ cid: partners
 ---
 
 <section id="users">
-    <main class="main-section">
-        <h5>Kubernetesはパートナーと協力して、さまざまなプラットフォームをサポートする強力で活気のあるコードベースを作り上げています。</h5>
-        <div class="col-container">
-          <div class="col-nav">
-            <center>
-              <h5>
-                <b>Kubernetes認定サービスプロバイダー(Kubernetes Certified Service Providers, KCSP)</b>
-              </h5>
-              <br>企業のKubernetes導入を支援してきた豊富な経験を持つ、熟練のサービスプロバイダーです。
-              <br><br><br>
-              <button id="kcsp" class="button" onClick="updateSrc(this.id)">KCSPパートナーを見る</button>
-              <br><br><a href="https://www.cncf.io/certification/kcsp/">KCSP</a>に興味がありますか？
-            </center>
-          </div>
-          <div class="col-nav">
-            <center>
-              <h5>
-                <b>認定Kubernetesディストリビューション、マネージド環境、およびインストーラー</b>
-              </h5>ソフトウェアの適合性により、すべてのベンダーのバージョンのKubernetesが必要なAPIを確実にサポートします。
-              <br><br><br>
-              <button id="conformance" class="button" onClick="updateSrc(this.id)">認定パートナーを見る</button>
-              <br><br><a href="https://www.cncf.io/certification/software-conformance/">Kubernetes Certified</a>に興味がありますか？
-            </center>
-          </div>
-          <div class="col-nav">
-            <center>
-              <h5><b>Kubernetesトレーニングパートナー(Kubernetes Training Partners, KTP)</b></h5>
-              <br>クラウドネイティブな技術のトレーニングに長けた、熟練のトレーニングプロバイダーです。
-              <br><br><br><br>
-              <button id="ktp" class="button" onClick="updateSrc(this.id)">KTPパートナーを見る</button>
-              <br><br><a href="https://www.cncf.io/certification/training/">KTP</a>に興味がありますか？
-            </center>
-          </div>
-        </div>
-<script src="https://code.jquery.com/jquery-3.3.1.min.js" integrity="sha256-FgpCb/KJQlLNfOu91ta32o/NMZxltwRo8QtmkMRdAu8=" crossorigin="anonymous"></script>
-<script type="text/javascript">
-
-			var defaultLink = "https://landscape.cncf.io/category=kubernetes-certified-service-provider&format=card-mode&grouping=category&embed=yes";
-			var firstLink = "https://landscape.cncf.io/category=certified-kubernetes-distribution,certified-kubernetes-hosted,certified-kubernetes-installer&format=card-mode&grouping=category&embed=yes";
-      var secondLink = "https://landscape.cncf.io/category=kubernetes-training-partner&format=card-mode&grouping=category&embed=yes";
-
-      function updateSrc(buttonId) {
-      	if (buttonId == "kcsp") {
-        		$("#landscape").attr("src",defaultLink);
-            window.location.hash = "#kcsp";
-        }
-        if (buttonId == "conformance") {
-         		$("#landscape").attr("src",firstLink);
-            window.location.hash = "#conformance";
-        }
-        if (buttonId == "ktp") {
-        		$("#landscape").attr("src",secondLink);
-            window.location.hash = "#ktp";
-        }
-      }
-
-      // Automatically load the correct iframe based on the URL fragment
-      document.addEventListener('DOMContentLoaded', function() {
-        var showContent = "kcsp";
-        if (window.location.hash) {
-          console.log('hash is:', window.location.hash.substring(1));
-          showContent = window.location.hash.substring(1);
-        }
-        updateSrc(showContent);
-      });
-</script>
-<body>
-    <div id="frameHolder">
-      <iframe id="landscape" title="CNCF Landscape" frameBorder="0" scrolling="no" style="width: 1px; min-width: 100%" src=""></iframe>
-      <script src="https://landscape.cncf.io/iframeResizer.js"></script>
+    <h5>Kubernetesはパートナーと協力して、さまざまなプラットフォームをサポートする強力で活気のあるコードベースを作り上げています。</h5>
+    <div class="col-container">
+      <div class="col-nav">
+        <center>
+          <h5>
+            <b>Kubernetes認定サービスプロバイダー(Kubernetes Certified Service Providers, KCSP)</b>
+          </h5>
+          <br>企業のKubernetes導入を支援してきた豊富な経験を持つ、熟練のサービスプロバイダーです。
+          <br><br><br>
+          <button class="button landscape-trigger landscape-default" data-landscape-types="kubernetes-certified-service-provider" id="kcsp">KCSPパートナーを見る</button>
+          <br><br><a href="https://www.cncf.io/certification/kcsp/">KCSP</a>に興味がありますか？
+        </center>
+      </div>
+      <div class="col-nav">
+        <center>
+          <h5>
+            <b>認定Kubernetesディストリビューション、マネージド環境、およびインストーラー</b>
+          </h5>ソフトウェアの適合性により、すべてのベンダーのバージョンのKubernetesが必要なAPIを確実にサポートします。
+          <br><br><br>
+          <button class="button landscape-trigger" data-landscape-types="certified-kubernetes-distribution,certified-kubernetes-hosted,certified-kubernetes-installer" id="conformance">認定パートナーを見る</button>
+          <br><br><a href="https://www.cncf.io/certification/software-conformance/">Kubernetes Certified</a>に興味がありますか？
+        </center>
+      </div>
+      <div class="col-nav">
+        <center>
+          <h5>
+            <b>Kubernetesトレーニングパートナー(Kubernetes Training Partners, KTP)</b>
+          </h5>
+          <br>クラウドネイティブな技術のトレーニングに長けた、熟練のトレーニングプロバイダーです。
+          <br><br><br>
+          <button class="button landscape-trigger" data-landscape-types="kubernetes-training-partner" id="ktp">KTPパートナーを見る</button>
+          <br><br><a href="https://www.cncf.io/certification/training/">KTP</a>に興味がありますか？
+        </center>
+      </div>
     </div>
-</body>
-    </main>
+    {{< cncf-landscape helpers=true >}}
 </section>
 
 <style>
     {{< include "partner-style.css" >}}
 </style>
 
-<script>
-    {{< include "partner-script.js" >}}
-</script>
diff --git a/content/ko/_index.html b/content/ko/_index.html
index c6350f1559..0925f2ef7e 100644
--- a/content/ko/_index.html
+++ b/content/ko/_index.html
@@ -30,7 +30,7 @@ Google이 일주일에 수십억 개의 컨테이너들을 운영하게 해준 
 {{% blocks/feature image="suitcase" %}}
 #### K8s를 어디서나 실행
 
-쿠버네티스는 오픈소스로서 온-프레미스, 하이브리드, 또는 퍼블릭 클라우드 인프라스트럭처를 활용하는데 자유를 제공하며, 워크로드를 사용자에게 관건이 되는 곳으로 손쉽게 이동시켜 줄 수 있습니다.
+쿠버네티스는 오픈소스로서 온-프레미스, 하이브리드, 또는 퍼블릭 클라우드 인프라스트럭처를 활용하는 데 자유를 제공하며, 워크로드를 사용자에게 관건이 되는 곳으로 손쉽게 이동시켜 줄 수 있습니다.
 
 {{% /blocks/feature %}}
 
@@ -39,16 +39,16 @@ Google이 일주일에 수십억 개의 컨테이너들을 운영하게 해준 
 {{< blocks/section id="video" background-image="kub_video_banner_homepage" >}}
 <div class="light-text">
 <h2>150+ 마이크로서비스를 쿠버네티스로 마이그레이션하는 도전</h2>
-        <p>By Sarah Wells, Technical Director for Operations and Reliability, Financial Times</p>
-        <button id="desktopShowVideoButton" onclick="kub.showVideo()">Watch Video</button>
+        <p>Sarah Wells, Financial Times 운영 및 안정성 기술 담당 이사</p>
+        <button id="desktopShowVideoButton" onclick="kub.showVideo()">비디오 보기</button>
         <br>
         <br>
-        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccncna21" button id="desktopKCButton">Attend KubeCon North America on October 11-15, 2021</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe-2022/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccnceu22" button id="desktopKCButton">KubeCon Europe (2022년 5월 17~20일) 참가하기</a>
         <br>
         <br>
         <br>
         <br>
-        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe-2022/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccnceu22" button id="desktopKCButton">Attend KubeCon Europe on May 17-20, 2022</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccncna22" button id="desktopKCButton">KubeCon North America (2022년 10월 24~28일) 참가하기</a>
 </div>
 <div id="videoPlayer">
     <iframe data-url="https://www.youtube.com/embed/H06qrNmGqyE?autoplay=1" frameborder="0" allowfullscreen></iframe>
diff --git a/content/ko/blog/_posts/2020-12-02-dont-panic-kubernetes-and-docker.md b/content/ko/blog/_posts/2020-12-02-dont-panic-kubernetes-and-docker.md
index d540565187..13e137f3b5 100644
--- a/content/ko/blog/_posts/2020-12-02-dont-panic-kubernetes-and-docker.md
+++ b/content/ko/blog/_posts/2020-12-02-dont-panic-kubernetes-and-docker.md
@@ -3,6 +3,13 @@ layout: blog
 title: "당황하지 마세요. 쿠버네티스와 도커"
 date: 2020-12-02
 slug: dont-panic-kubernetes-and-docker
+evergreen: true
+---
+
+**업데이트:** _쿠버네티스의 `dockershim`을 통한 도커 지원이 제거되었습니다.
+더 자세한 정보는 [제거와 관련된 자주 묻는 질문](/dockershim/)을 참고하세요.
+또는 지원 중단에 대한 [GitHub 이슈](https://github.com/kubernetes/kubernetes/issues/106917)에서 논의를 할 수도 있습니다._
+
 ---
 
 **저자:** Jorge Castro, Duffie Cooley, Kat Cosgrove, Justin Garrison, Noah Kantrowitz, Bob Killen, Rey Lejano, Dan “POP” Papandrea, Jeffrey Sica, Davanum “Dims” Srinivas
@@ -10,8 +17,7 @@ slug: dont-panic-kubernetes-and-docker
 **번역:** 박재화(삼성SDS), 손석호(한국전자통신연구원)
 
 쿠버네티스는 v1.20 이후 컨테이너 런타임으로서
-[도커를
-사용 중단(deprecating)](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.20.md#deprecation)합니다.
+[도커를 사용 중단(deprecating)](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.20.md#deprecation)합니다.
 
 **당황할 필요는 없습니다. 말처럼 극적이진 않습니다.**
 
@@ -26,7 +32,7 @@ slug: dont-panic-kubernetes-and-docker
 빌드하는 데 유용한 도구이며, `docker
 build` 실행 결과로 만들어진 이미지도 여전히 쿠버네티스 클러스터에서 동작합니다.
 
-GKE, EKS 또는 AKS([containerd가 기본](https://github.com/Azure/AKS/releases/tag/2020-11-16)인)와 같은 관리형 쿠버네티스 서비스를
+AKS, EKS 또는 GKE와 같은 관리형 쿠버네티스 서비스를
 사용하는 경우 쿠버네티스의 향후 버전에서 도커에 대한 지원이
 없어지기 전에, 워커 노드가 지원되는 컨테이너 런타임을 사용하고 있는지 확인해야 합니다. 노드에
 사용자 정의가 적용된 경우 사용자 환경 및 런타임 요구 사항에 따라 업데이트가 필요할 수도
@@ -35,8 +41,8 @@ GKE, EKS 또는 AKS([containerd가 기본](https://github.com/Azure/AKS/releases
 
 자체 클러스터를 운영하는 경우에도, 클러스터의 고장을 피하기 위해서
 변경을 수행해야 합니다. v1.20에서는 도커에 대한 지원 중단 경고(deprecation warning)가 표시됩니다.
-도커 런타임 지원이 쿠버네티스의 향후 릴리스(현재는 2021년 하반기의
-1.22 릴리스로 계획됨)에서 제거되면 더 이상 지원되지
+도커 런타임 지원이 쿠버네티스의 향후 릴리스(<del>현재는 2021년 하반기의
+1.22 릴리스로 계획됨</del>)에서 제거되면 더 이상 지원되지
 않으며, containerd 또는 CRI-O와 같은 다른 호환 컨테이너 런타임 중
 하나로 전환해야 합니다. 선택한 런타임이 현재 사용 중인
 도커 데몬 구성(예: 로깅)을 지원하는지 확인하세요.
@@ -103,4 +109,4 @@ containerd가 정말 필요로 하는 것들을 확보하기 위해서 도커심
 모든 사람이 다가오는 변경 사항에 대해 최대한 많은 교육을 받을 수 있도록 하는 것입니다. 이 글이
 여러분이 가지는 대부분의 질문에 대한 답이 되었고, 불안을 약간은 진정시켰기를 바랍니다! ❤️
 
-더 많은 답변을 찾고 계신가요? 함께 제공되는 [도커심 사용 중단 FAQ](/blog/2020/12/02/dockershim-faq/)를 확인하세요.
+더 많은 답변을 찾고 계신가요? 함께 제공되는 [도커심 제거 FAQ](/blog/2022/02/17/dockershim-faq/)(2022년 2월에 갱신됨)를 확인하세요.
diff --git a/content/ko/blog/_posts/2021-08-04-kubernetes-release-1.22.md b/content/ko/blog/_posts/2021-08-04-kubernetes-release-1.22.md
index d936d7c767..c67cc47ea1 100644
--- a/content/ko/blog/_posts/2021-08-04-kubernetes-release-1.22.md
+++ b/content/ko/blog/_posts/2021-08-04-kubernetes-release-1.22.md
@@ -3,6 +3,7 @@ layout: blog
 title: '쿠버네티스 1.22: 새로운 정점에 도달(Reaching New Peaks)'
 date: 2021-08-04
 slug: kubernetes-1-22-release-announcement
+evergreen: true
 ---
 
 **저자:** [쿠버네티스 1.22 릴리스 팀](https://github.com/kubernetes/sig-release/blob/master/releases/release-1.22/release-team.md)
@@ -50,7 +51,7 @@ SIG Windows는 계속해서 성장하는 개발자 커뮤니티를 지원하기
 
 ### 기본(default) seccomp 프로파일
 
-알파 기능인 기본 seccomp 프로파일이 신규 커맨드라인 플래그 및 설정과 함께 kubelet에 추가되었습니다. 이 신규 기능을 사용하면, `Unconfined`대신 `RuntimeDefault` seccomp 프로파일을 기본으로 사용하는 seccomp이 클러스터 전반에서 기본이 됩니다. 이는 쿠버네티스 디플로이먼트(Deployment)의 기본 보안을 강화합니다. 워크로드에 대한 보안이 기본으로 더 강화되었으므로, 이제 보안 관리자도 조금 더 안심하고 쉴 수 있습니다. 이 기능에 대한 자세한 사항은 공식적인 [seccomp 튜토리얼](https://kubernetes.io/docs/tutorials/clusters/seccomp/#enable-the-use-of-runtimedefault-as-the-default-seccomp-profile-for-all-workloads)을 참고하시기 바랍니다.
+알파 기능인 기본 seccomp 프로파일이 신규 커맨드라인 플래그 및 설정과 함께 kubelet에 추가되었습니다. 이 신규 기능을 사용하면, `Unconfined`대신 `RuntimeDefault` seccomp 프로파일을 기본으로 사용하는 seccomp이 클러스터 전반에서 기본이 됩니다. 이는 쿠버네티스 디플로이먼트(Deployment)의 기본 보안을 강화합니다. 워크로드에 대한 보안이 기본으로 더 강화되었으므로, 이제 보안 관리자도 조금 더 안심하고 쉴 수 있습니다. 이 기능에 대한 자세한 사항은 공식적인 [seccomp 튜토리얼](/docs/tutorials/security/seccomp/#enable-the-use-of-runtimedefault-as-the-default-seccomp-profile-for-all-workloads)을 참고하시기 바랍니다.
 
 ### kubeadm을 통한 보안성이 더 높은 컨트롤 플레인
 
@@ -142,7 +143,7 @@ GA 버전과 중복된 사용 중단(deprecated)된 여러 베타 API가 1.22에
 
 # 다가오는 릴리스 웨비나
 
-이번 릴리스에 대한 중요 기능뿐만 아니라 업그레이드 계획을 위해 필요한 사용 중지된 사항이나 제거에 대한 사항을 학습하고 싶다면, 2021년 9월 7일에 쿠버네티스 1.22 릴리스 팀 웨비나에 참여하세요. 더 자세한 정보와 등록에 대해서는 CNCF 온라인 프로그램 사이트의 [이벤트 페이지](https://community.cncf.io/events/details/cncf-cncf-online-programs-presents-cncf-live-webinar-kubernetes-122-release/)를 확인하세요.
+이번 릴리스에 대한 중요 기능뿐만 아니라 업그레이드 계획을 위해 필요한 사용 중지된 사항이나 제거에 대한 사항을 학습하고 싶다면, 2021년 10월 5일에 쿠버네티스 1.22 릴리스 팀 웨비나에 참여하세요. 더 자세한 정보와 등록에 대해서는 CNCF 온라인 프로그램 사이트의 [이벤트 페이지](https://community.cncf.io/events/details/cncf-cncf-online-programs-presents-cncf-live-webinar-kubernetes-122-release/)를 확인하세요.
 
 # 참여하기
 
diff --git a/content/ko/community/_index.html b/content/ko/community/_index.html
index 0fa8d8658a..867916e208 100644
--- a/content/ko/community/_index.html
+++ b/content/ko/community/_index.html
@@ -1,256 +1,183 @@
 ---
-title: 커뮤니티
+title: Community
 layout: basic
 cid: community
+community_styles_migrated: true
 ---
+<img
+  id="banner"
+  srcset="/images/community/kubernetes-community-final-02.jpg 1500w, /images/community/kubernetes-community-02-mobile.jpg 900w"
+  sizes="(max-width: 900px) 900px, (max-width: 1920px) 1500px"
+  src="/images/community/kubernetes-community-final-02.jpg"
+  alt="Kubernetes conference photo">
 
-<div class="newcommunitywrapper">
-<div class="banner1">
-  <img src="/images/community/kubernetes-community-final-02.jpg" alt="쿠버네티스 컨퍼런스 갤러리" style="width:100%;padding-left:0px" class="desktop">
-  <img src="/images/community/kubernetes-community-02-mobile.jpg" alt="쿠버네티스 컨퍼런스 갤러리" style="width:100%;padding-left:0px" class="mobile">
+<div class="community-section" id="introduction">
+  <p>사용자, 기여자, 그리고 우리가 함께 구축한 문화를 통해 구성된 쿠버네티스 커뮤니티는 
+  본 오픈소스 프로젝트가 급부상하는 가장 큰 이유 중 하나입니다. 
+  프로젝트 자체가 성장하고 변화함에 따라 
+  우리의 문화와 가치관 또한 지속적으로 성장하고 변화하고 있습니다. 
+  우리 모두는 프로젝트와 작업 방식을 지속적으로 개선하기 위해 함께 노력합니다.</p>
+  <p>우리는 이슈(issue)와 풀 리퀘스트(pull request)를 제출하고, SIG 미팅과 쿠버네티스 모임 그리고 KubeCon에 참석하고, 
+  도입(adoption)과 혁신(innovation)을 지지하며, 
+  <code>kubectl get pods</code> 를 실행하고, 
+  다른 수천가지 중요한 방법으로 기여하는 사람들 입니다. 
+  어떻게 하면 이 놀라운 공동체의 일부가 될 수 있는지 계속 읽어보세요.</p>
 </div>
 
-<div class="intro">
-<br class="mobile">
-<p>사용자, 기여자, 그리고 우리가 함께 구축한 문화로 구성된 쿠버네티스 커뮤니티는 이 오픈소스 프로젝트가 급부상하는 가장 큰 이유 중 하나입니다. 프로젝트 자체가 성장 하고 변화함에 따라 우리의 문화와 가치관이 계속 성장하고 변화하고 있습니다. 우리 모두는 프로젝트의 지속적인 개선과 작업 방식을 위해 함께 노력합니다.
-<br><br>우리는 이슈를 제기하고 풀 리퀘스트하고, SIG 미팅과 쿠버네티스 모임 그리고 KubeCon에 참석하고 채택과 혁신을 옹호하며, <code>kubectl get pods</code> 을 실행하고, 다른 수천가지 중요한 방법으로 기여하는 사람들 입니다. 여러분이 어떻게 이 놀라운 공동체의 일부가 될 수 있는지 계속 읽어보세요.</p>
-<br class="mobile">
-</div>
-
-<div class="community__navbar">
-
-<a href="#values">커뮤니티 가치</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
-<a href="#conduct">행동 강령 </a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
-<a href="#videos">비디오</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
-<a href="#discuss">토론</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
-<a href="#events">이벤트와 모임들</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
-<a href="#news">새소식</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
-<a href="/releases">릴리즈</a>
-
-</div>
-<br class="mobile"><br class="mobile">
-<div class="imagecols">
-<br class="mobile">
-  <div class="imagecol">
-    <img src="/images/community/kubernetes-community-final-03.jpg" alt="쿠버네티스 컨퍼런스 갤러리" style="width:100%" class="desktop">
+<div id="navigation-items">
+  <div class="community-nav-item external-link">
+    <a href="https://www.kubernetes.dev/">기여자 커뮤니티</a>
   </div>
-
-  <div class="imagecol">
-    <img src="/images/community/kubernetes-community-final-04.jpg" alt="쿠버네티스 컨퍼런스 갤러리" style="width:100%" class="desktop">
+  <div class="community-nav-item">
+    <a href="#values">커뮤니티 가치</a>
   </div>
-
-  <div class="imagecol" style="margin-right:0% important">
-    <img src="/images/community/kubernetes-community-final-05.jpg" alt="쿠버네티스 컨퍼런스 갤러리" style="width:100%;margin-right:0% important" class="desktop">
+  <div class="community-nav-item">
+    <a href="#conduct">행동 강령</a>
+  </div>
+  <div class="community-nav-item">
+    <a href="#videos">비디오</a>
+  </div>
+  <div class="community-nav-item">
+    <a href="#discuss">토론</a>
+  </div>
+  <div class="community-nav-item">
+    <a href="#meetups">밋업</a>
+  </div>
+  <div class="community-nav-item">
+    <a href="#news">새소식</a>
+  </div>
+  <div class="community-nav-item">
+    <a href="/releases">릴리스</a>
   </div>
-  <img src="/images/community/kubernetes-community-04-mobile.jpg" alt="쿠버네티스 컨퍼런스 갤러리" style="width:100%;margin-bottom:3%" class="mobile">
-<a name="values"></a>
 </div>
 
-<div><a name="values"></a></div>
-<div class="conduct">
-<div class="conducttext">
-<br class="mobile"><br class="mobile">
-<br class="tablet"><br class="tablet">
-<div class="conducttextnobutton" style="margin-bottom:2%"><h1>커뮤니티 가치</h1>
-쿠버네티스 커뮤니티가 추구하는 가치는 프로젝트의 지속적인 성공의 핵심입니다.<br>
-이러한 원칙은 쿠버네티스 프로젝트의 모든 측면을 이끌어 갑니다.
-<br>
-<a href="/community/values/">
-<br class="mobile"><br class="mobile">
-<span class="fullbutton">
-  더 읽어 보기
-  </span>
+<div class="community-section" id="gallery">
+  <img src="/images/community/kubernetes-community-final-03.jpg" alt="쿠버네티스 컨퍼런스 갤러리 사진" class="community-gallery-desktop">
+  <img src="/images/community/kubernetes-community-final-04.jpg" alt="쿠버네티스 컨퍼런스 갤러리 사진" class="community-gallery-desktop">
+  <img src="/images/community/kubernetes-community-final-05.jpg" alt="쿠버네티스 컨퍼런스 갤러리 사진" class="community-gallery-desktop">
+  <img src="/images/community/kubernetes-community-04-mobile.jpg" alt="쿠버네티스 컨퍼런스 갤러리 사진" class="community-gallery-mobile">
+</div>
+
+<div class="community-section" id="values">
+  <h2>커뮤니티 가치</h2>
+  <p>쿠버네티스 커뮤니티가 추구하는 가치는 프로젝트의 지속적인 성공의 핵심입니다.<br class="optional"/>
+  이러한 원칙은 쿠버네티스 프로젝트의 모든 측면을 이끌어 갑니다.</p>
+  <a href="https://www.kubernetes.dev/community/values/" class="community-cta-button">
+    <span class="community-cta">더 읽어 보기</span>
   </a>
-  </div><a name="conduct"></a>
+</div>
+
+<div class="community-section" id="conduct">
+  <h2>행동 강령</h2>
+  <p>쿠버네티스 커뮤니티는 존중과 포괄성을 중요시하며 모든 상호작용에 행동 강령을 시행합니다.</p>
+  <p>이벤트나 회의, <a href="#slack">슬랙</a> 또는 다른 커뮤니케이션 메커니즘에서 행동 강령의 위반이 발견되면, 쿠버네티스 행동 강령 위원회 <a href="mailto:conduct@kubernetes.io">conduct@kubernetes.io</a>에 연락하세요. 모든 제보는 기밀로 유지됩니다. <a href="https://github.com/kubernetes/community/tree/master/committee-code-of-conduct">여기</a>서 위원회에 대한 내용을 읽을 수 있습니다.</p>
+  <a href="/ko/community/code-of-conduct/" class="community-cta-button">
+    <span class="community-cta">더 읽어 보기</span>
+  </a>
+</div>
+
+<div id="videos" class="community-section">
+  <h2>비디오</h2>
+
+  <p class="community-simple">유튜브에 많이 올라와 있어요. 다양한 주제에 대해 구독하세요.</p>
+
+  <div class="container">
+    <div class="video youtube">
+      <iframe src="https://www.youtube.com/embed/videoseries?list=PL69nYSiGNLP3azFUvYJjGn45YbF6C-uIg" title="Monthly office hours" allow="camera 'none'; microphone 'none'; geolocation 'none'; fullscreen https://www.youtube.com/" ></iframe>
+      <a href="https://www.youtube.com/playlist?list=PL69nYSiGNLP3azFUvYJjGn45YbF6C-uIg">
+       <span class="videocta">월간 Office Hours 보기&nbsp;&#9654;</span>
+      </a>
+    </div>
+
+    <div class="video youtube">
+      <iframe src="https://www.youtube.com/embed/videoseries?list=PL69nYSiGNLP1pkHsbPjzAewvMgGUpkCnJ" title="Weekly community meetings" allow="camera 'none'; microphone 'none'; geolocation 'none'; fullscreen https://www.youtube.com/"></iframe>
+      <a href="https://www.youtube.com/playlist?list=PL69nYSiGNLP1pkHsbPjzAewvMgGUpkCnJ">
+        <span class="videocta">주간 커뮤니티 미팅 보기&nbsp;&#9654;</span>
+      </a>
+    </div>
+
+    <div class="video youtube" id="discuss">
+      <iframe src="https://www.youtube.com/embed/videoseries?list=PL69nYSiGNLP3QpQrhZq_sLYo77BVKv09F" title="Talk from a community member" allow="camera 'none'; microphone 'none'; geolocation 'none'; fullscreen https://www.youtube.com/"></iframe>
+      <a href="https://www.youtube.com/playlist?list=PL69nYSiGNLP3QpQrhZq_sLYo77BVKv09F">
+        <span class="videocta">커뮤니티 멤버와의 대화 보기&nbsp;&#9654;</span>
+      </a>
+    </div>
   </div>
+</div>
+
+<div id="resources" class="community-section">
+  <h2>토론</h2>
+
+  <p class="community-simple">우리는 대화를 많이 합니다. 아래의 플랫폼에서 우리를 찾아 대화에 참여하세요.</p>
+
+  <div class="container">
+    <div class="community-resource">
+      <a href="https://discuss.kubernetes.io/">
+        <img src="/images/community/discuss.png" alt="Forum">
+      </a>
+      <a href="https://discuss.kubernetes.io/">커뮤니티 포럼&nbsp;&#9654;</a>
+      <p>문서, 트러블슈팅 및 그 외 더 많은 것을 소개하는 
+        주제 기반 기술 토론이 열리는 곳입니다.</p>
+    </div>
+
+    <div id="twitter" class="community-resource">
+      <a href="https://twitter.com/kubernetesio">
+        <img src="/images/community/twitter.png" alt="Twitter">
+      </a>
+      <a href="https://twitter.com/kubernetesio">트위터&nbsp;&#9654;</a>
+      <p><em>#kubernetesio</em></p>
+      <p>블로그 게시물, 이벤트, 뉴스, 아이디어에 대한 실시간 소식들입니다.</p>
+    </div>
+
+    <div id="github" class="community-resource">
+      <a href="https://github.com/kubernetes/kubernetes">
+        <img src="/images/community/github.png" alt="GitHub">
+      </a>
+      <a href="https://github.com/kubernetes/kubernetes">GitHub&nbsp;&#9654;</a>
+      <p>모든 프로젝트와 이슈 추적, 그리고 물론 코드도 있습니다.</p>
+    </div>
+
+    <div id="server-fault" class="community-resource">
+      <a href="https://serverfault.com/questions/tagged/kubernetes">
+        <img src="/images/community/serverfault.png" alt="Server Fault">
+      </a>
+      <a href="https://serverfault.com/questions/tagged/kubernetes">Server Fault&nbsp;&#9654;</a>
+      <p>Server Fault에 쿠버네티스 관련 토론들이 있습니다. 질문을 하거나, 질문에 답해 보세요.</p>
+    </div>
+
+    <div id="slack" class="community-resource">
+      <a href="https://kubernetes.slack.com/">
+        <img src="/images/community/slack.png" alt="Slack">
+      </a>
+      <a href="https://kubernetes.slack.com/">Slack&nbsp;&#9654;</a>
+      <p>170개 이상의 채널이 있으며, 필요에 맞는 채널을 찾을 수 있습니다.</p>
+      <details><summary><em>초대가 필요하신가요?</em></summary>
+        초대를 받으려면 <a href="https://slack.k8s.io/">https://slack.k8s.io/</a> 를
+        방문하세요.</details>
+    </div>
   </div>
-
-
-
-<div class="conduct">
-<div class="conducttext">
-<br class="mobile"><br class="mobile">
-<br class="tablet"><br class="tablet">
-<div class="conducttextnobutton" style="margin-bottom:2%"><h1>행동 강령</h1>
-쿠버네티스 커뮤니티는 존중과 포괄성을 중요시하며 모든 상호작용에 행동 강령을 시행합니다. 이벤트나 회의, 슬랙 또는 다른 커뮤니케이션 메커니즘에서 행동 강령의 위반이 발견되면, 쿠버네티스 행동 강령 위원회 <a href="mailto:conduct@kubernetes.io" style="color:#0662EE;font-weight:300">conduct@kubernetes.io</a>에 연락하세요. 모든 보고서는 기밀로 유지됩니다. <a href="https://github.com/kubernetes/community/tree/master/committee-code-of-conduct" style="color:#0662EE;font-weight:300">여기</a>서 위원회에 대한 내용을 읽을 수 있습니다.
-<br>
-<a href="/ko/community/code-of-conduct/">
-<br class="mobile"><br class="mobile">
-
-<span class="fullbutton">
-더 읽어 보기
-</span>
-</a>
-</div><a name="videos"></a>
-</div>
 </div>
 
-
-
-<div class="videos">
-<br class="mobile"><br class="mobile">
-<br class="tablet"><br class="tablet">
-<h1 style="margin-top:0px">비디오</h1>
-
-<div style="margin-bottom:4%;font-weight:300;text-align:center;padding-left:10%;padding-right:10%">유튜브에 많이 올라와 있어요. 다양한 주제에 대해 구독하세요.</div>
-
-<div class="videocontainer">
-
-<div class="video">
-
-  <iframe width="100%" height="250" src="https://www.youtube.com/embed/videoseries?list=PL69nYSiGNLP3azFUvYJjGn45YbF6C-uIg" title="월간 Office Hours" frameborder="0" allow="autoplay; encrypted-media" allowfullscreen></iframe>
-
-<a href="https://www.youtube.com/playlist?list=PL69nYSiGNLP3azFUvYJjGn45YbF6C-uIg">
-<div class="videocta">
-월간 Office Hours 보기&nbsp;&#9654;</div>
-</a>
+<div class="community-section" id="events">
+  <div class="container">
+   <h2>다가오는 이벤트</h2>
+   {{< upcoming-events >}}
+  </div>
 </div>
 
-<div class="video">
-  <iframe width="100%" height="250" src="https://www.youtube.com/embed/videoseries?list=PL69nYSiGNLP1pkHsbPjzAewvMgGUpkCnJ" title="주간 커뮤니티 미팅" frameborder="0" allow="autoplay; encrypted-media" allowfullscreen></iframe>
-<a href="https://www.youtube.com/playlist?list=PL69nYSiGNLP1pkHsbPjzAewvMgGUpkCnJ">
-<div class="videocta">
-주간 커뮤니티 미팅 보기&nbsp;&#9654;
-</div>
-</a>
-</div>
-
-<div class="video">
-
-<iframe width="100%" height="250" src="https://www.youtube.com/embed/videoseries?list=PL69nYSiGNLP3QpQrhZq_sLYo77BVKv09F" title="커뮤니티 멤버와의 대화" frameborder="0" allow="autoplay; encrypted-media" allowfullscreen></iframe>
-
-<a href="https://www.youtube.com/playlist?list=PL69nYSiGNLP3QpQrhZq_sLYo77BVKv09F">
-<div class="videocta">
-커뮤니티 멤버와의 대화 보기&nbsp;&#9654;
-</div>
-
-</a>
-<a name="discuss"></a>
-</div>
-</div>
-</div>
-
-
-<div class="resources">
-<br class="mobile"><br class="mobile">
-<br class="tablet"><br class="tablet">
-<h1 style="padding-top:1%">토론</h1>
-
-<div style="font-weight:300;text-align:center">우리는 대화를 많이 합니다. 이 모든 플랫폼에서 우리를 찾아 대화에 참여하세요.</div>
-
-<div class="resourcecontainer">
-
-<div class="resourcebox">
-<img src="/images/community/discuss.png" alt=Forum" style="width:80%;padding-bottom:2%">
-<a href="https://discuss.kubernetes.io/" style="color:#0662EE;display:block;margin-top:1%">
-포럼&nbsp;&#9654;
-</a>
-<div class="resourceboxtext" style="font-size:12px;text-transform:none !important;font-weight:300;line-height:1.4em;color:#333333;margin-top:4%">
-문서, 스택오버플로우 등을 연결하는 주제 기반 기술 토론하는 곳입니다.
-</div>
-</div>
-
-<div class="resourcebox">
-<img src="/images/community/twitter.png" alt="Twitter" style="width:80%;padding-bottom:2%">
-<a href="https://twitter.com/kubernetesio" style="color:#0662EE;display:block;margin-top:1%">
-트위터&nbsp;&#9654;
-</a>
-<div class="resourceboxtext" style="font-size:12px;text-transform:none !important;font-weight:300;line-height:1.4em;color:#333333;margin-top:4%">블로그 게시물, 이벤트, 뉴스, 아이디어의 실시간 소식들입니다.
-</div>
-</div>
-
-<div class="resourcebox">
-<img src="/images/community/github.png" alt="GitHub" style="width:80%;padding-bottom:2%">
-<a href="https://github.com/kubernetes/kubernetes" style="color:#0662EE;display:block;margin-top:1%">
-깃헙&nbsp;&#9654;
-</a>
-<div class="resourceboxtext" style="font-size:12px;text-transform:none !important;font-weight:300;line-height:1.4em;color:#333333;margin-top:4%">
-모든 프로젝트와 이슈 추적, 더불어 코드도 물론이죠.
-</div>
-</div>
-
-<div class="resourcebox">
-<img src="/images/community/stack.png" alt="Stack Overflow" style="width:80%;padding-bottom:2%">
-<a href="https://stackoverflow.com/search?q=kubernetes" style="color:#0662EE;display:block;margin-top:1%">
-스택 오버플로우&nbsp;&#9654;
-</a>
-<div class="resourceboxtext" style="font-size:12px;text-transform:none !important;font-weight:300;line-height:1.4em;color:#333333;margin-top:4%">
-  모든 유스 케이스에 대한 기술적인 문제 해결입니다.
-  <a name="events"></a>
-</div>
-</div>
-
-<!--
-<div class="resourcebox">
-
-<img src="/images/community/slack.png" style="width:80%">
-
-slack&nbsp;&#9654;
-
-<div class="resourceboxtext" style="font-size:11px;text-transform:none !important;font-weight:200;line-height:1.4em;color:#333333;margin-top:4%">
-170개 이상의 채널이 있으며, 필요에 맞는 채널을 찾을 수 있습니다.
-</div>
-
-</div>-->
-
-</div>
-</div>
-<div class="events">
-  <br class="mobile"><br class="mobile">
-  <br class="tablet"><br class="tablet">
-<div class="eventcontainer">
- <h1 style="color:white !important">다가오는 이벤트</h1>
-    {{< upcoming-events >}}
-</div>
-</div>
-
-<div class="meetups">
-<div class="meetupcol">
-<div class="meetuptext">
-<h1 style="text-align:left">글로벌 커뮤니티</h1>
-전 세계 150개가 넘는 모임이 있고 성장하고 있는 가운데, 현지 kube 사람들을 찾아보세요. 가까운 곳에 없다면, 책임감을 갖고 직접 만들어보세요.
-</div>
-<a href="https://www.meetup.com/topics/kubernetes/">
-<div class="button">
-모임 찾아보기
-</div>
-</a>
-<a name="news"></a>
-</div>
-</div>
-
-
-<!--
-<div class="contributor">
-<div class="contributortext">
-<br>
-<h1 style="text-align:left">
-New Contributors Site
- </h1>
-Text about new contributors site.
-
-<br><br>
-
-<div class="button">
-VISIT SITE
-</div>
-</div>
-</div>
-
--->
-
-<div class="news">
-<br class="mobile"><br class="mobile">
-<br class="tablet"><br class="tablet">
-<h1 style="margin-bottom:2%">최근 소식들</h1>
-
-<br>
-<div class="twittercol1">
-<a class="twitter-timeline" data-tweet-limit="1" href="https://twitter.com/kubernetesio?ref_src=twsrc%5Etfw">Tweets by kubernetesio</a> <script async src="https://platform.twitter.com/widgets.js" charset="utf-8"></script>
-</div>
-
-<br>
-<br><br><br><br>
+<div class="community-section" id="meetups">
+  <h2>글로벌 커뮤니티</h2>
+  <p>
+    전 세계 150개가 넘는 모임이 있고 성장하고 있는 가운데, 가까이에 있는 kube people을 찾아보세요. 가까운 곳에 없다면, 역할을 맡아 직접 만들어보세요.
+  </p>
+  <a href="https://www.meetup.com/topics/kubernetes/" class="community-cta-button">
+    <span class="community-cta">밋업 찾아보기</span>
+  </a>
 </div>
 
+<div class="community-section community-frame" id="news">
+  <h2>최근 소식</h2>
+  <div class="twittercol1">
+    <a class="twitter-timeline" data-tweet-limit="1" href="https://twitter.com/kubernetesio?ref_src=twsrc%5Etfw">kubernetesio의 트윗</a>
+  </div>
 </div>
diff --git a/content/ko/community/code-of-conduct.md b/content/ko/community/code-of-conduct.md
index 5781d0cfd7..e0adb28c27 100644
--- a/content/ko/community/code-of-conduct.md
+++ b/content/ko/community/code-of-conduct.md
@@ -1,27 +1,29 @@
 ---
-title: 커뮤니티
+title: 쿠버네티스 커뮤니티 행동 강령
 layout: basic
 cid: community
-css: /css/community.css
+community_styles_migrated: true
 ---
 
-<div class="community_main">
-<h1>쿠버네티스 커뮤니티 행동 강령</h1>
-
+<div class="community-section" id="cncf-code-of-conduct-intro">
+<p>
 쿠버네티스는
 <a href="https://github.com/cncf/foundation/blob/master/code-of-conduct.md">CNCF의 행동 강령</a>을 따르고 있습니다.
 <a href="https://github.com/cncf/foundation/blob/214585e24aab747fb85c2ea44fbf4a2442e30de6/code-of-conduct.md">커밋 214585e</a>
 에 따라 CNCF 행동 강령의 내용이 아래에 복제됩니다.
 만약 최신 버전이 아닌 경우에는
 <a href="https://github.com/kubernetes/website/issues/new">이슈를 제기해 주세요</a>.
+</p>
 
+<p>
 이벤트나 회의, 슬랙 또는 다른 커뮤니케이션
 메커니즘에서 행동 강령을 위반한 경우
 <a href="https://git.k8s.io/community/committee-code-of-conduct">쿠버네티스 행동 강령 위원회</a>에 연락하세요.
 <a href="mailto:conduct@kubernetes.io">conduct@kubernetes.io</a>로 이메일을 보내 주세요.
 당신의 익명성은 보호됩니다.
+</p>
+</div>
 
-<div class="cncf_coc_container">
+<div id="cncf-code-of-conduct">
 {{< include "/static/cncf-code-of-conduct.md" >}}
 </div>
-</div>
diff --git a/content/ko/community/static/README.md b/content/ko/community/static/README.md
index 2732334d68..b216650275 100644
--- a/content/ko/community/static/README.md
+++ b/content/ko/community/static/README.md
@@ -1,2 +1,5 @@
 이 디렉터리의 파일은 다른 소스에서 가져왔습니다. 새 버전으로
-교체하는 경우를 제외하고 직접 편집하지 마십시오.
\ No newline at end of file
+교체하는 경우를 제외하고 직접 편집하지 마십시오.
+
+현지화 관련 노트: 이 디렉토리의 어떤 파일도 
+                    번역할 필요는 없습니다.
\ No newline at end of file
diff --git a/content/ko/docs/concepts/architecture/cloud-controller.md b/content/ko/docs/concepts/architecture/cloud-controller.md
index e5e7d315c5..eccfe091ce 100644
--- a/content/ko/docs/concepts/architecture/cloud-controller.md
+++ b/content/ko/docs/concepts/architecture/cloud-controller.md
@@ -44,10 +44,10 @@ weight: 40
 ### 노드 컨트롤러
 
 노드 컨트롤러는 클라우드 인프라스트럭처에 새 서버가 생성될 때 {{< glossary_tooltip text="노드" term_id="node" >}}
-오브젝트를 생성하는 역할을 한다. 노드 컨트롤러는 클라우드 공급자의 사용자
+오브젝트를 업데이트하는 역할을 한다. 노드 컨트롤러는 클라우드 공급자의 사용자
 테넌시 내에서 실행되는 호스트에 대한 정보를 가져온다. 노드 컨트롤러는 다음 기능들을 수행한다.
 
-1. 컨트롤러가 클라우드 공급자 API를 통해 찾아내는 각 서버에 대해 노드 오브젝트를 초기화한다.
+1. 클라우드 공급자 API를 통해 획득한 해당 서버의 고유 ID를 노드 오브젝트에 업데이트한다.
 2. 클라우드 관련 정보(예를 들어, 노드가 배포되는 지역과 사용 가능한 리소스(CPU, 메모리 등))를
    사용해서 노드 오브젝트에 어노테이션과 레이블을 작성한다.
 3. 노드의 호스트 이름과 네트워크 주소를 가져온다.
diff --git a/content/ko/docs/concepts/architecture/control-plane-node-communication.md b/content/ko/docs/concepts/architecture/control-plane-node-communication.md
index 52fa728043..00f99d07ea 100644
--- a/content/ko/docs/concepts/architecture/control-plane-node-communication.md
+++ b/content/ko/docs/concepts/architecture/control-plane-node-communication.md
@@ -67,4 +67,4 @@ SSH 터널은 현재 더 이상 사용되지 않으므로, 수행 중인 작업
 SSH 터널을 대체하는 Konnectivity 서비스는 컨트롤 플레인에서 클러스터 통신에 TCP 레벨 프록시를 제공한다. Konnectivity 서비스는 컨트롤 플레인 네트워크의 Konnectivity 서버와 노드 네트워크의 Konnectivity 에이전트, 두 부분으로 구성된다. Konnectivity 에이전트는 Konnectivity 서버에 대한 연결을 시작하고 네트워크 연결을 유지한다.
 Konnectivity 서비스를 활성화한 후, 모든 컨트롤 플레인에서 노드로의 트래픽은 이 연결을 통과한다.
 
-[Konnectivity 서비스 태스크](/docs/tasks/extend-kubernetes/setup-konnectivity/)에 따라 클러스터에서 Konnectivity 서비스를 설정한다.
+[Konnectivity 서비스 태스크](/ko/docs/tasks/extend-kubernetes/setup-konnectivity/)에 따라 클러스터에서 Konnectivity 서비스를 설정한다.
diff --git a/content/ko/docs/concepts/architecture/cri.md b/content/ko/docs/concepts/architecture/cri.md
new file mode 100644
index 0000000000..34fd95ccd1
--- /dev/null
+++ b/content/ko/docs/concepts/architecture/cri.md
@@ -0,0 +1,50 @@
+---
+title: 컨테이너 런타임 인터페이스(CRI)
+content_type: concept
+weight: 50
+---
+
+<!-- overview -->
+
+컨테이너 런타임 인터페이스(CRI)는 클러스터 컴포넌트를 다시 컴파일하지 않아도 Kubelet이 다양한 
+컨테이너 런타임을 사용할 수 있도록 하는 플러그인 인터페이스다.
+
+클러스터의 모든 노드에 동작 중인
+{{<glossary_tooltip text="컨테이너 런타임" term_id="container-runtime">}}이 존재해야, 
+{{< glossary_tooltip text="kubelet" term_id="kubelet" >}}이
+{{< glossary_tooltip text="파드" term_id="pod" >}}들과 컨테이너들을 
+구동할 수 있다.
+
+{{< glossary_definition prepend="컨테이너 런타임 인터페이스(CRI)는" term_id="container-runtime-interface" length="all" >}}
+
+<!-- body -->
+
+## API {#api}
+
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
+
+Kubelet은 gRPC를 통해 컨테이너 런타임과 연결할 때 클라이언트의 역할을 수행한다.
+런타임과 이미지 서비스 엔드포인트는 컨테이너 런타임 내에서 사용 가능해야 하며, 
+이는 각각 Kubelet 내에서 `--image-service-endpoint`와 `--container-runtime-endpoint` 
+[커맨드라인 플래그](/docs/reference/command-line-tools-reference/kubelet)
+를 통해 설정할 수 있다.
+
+쿠버네티스 v{{< skew currentVersion >}}에서는, Kubelet은 CRI `v1`을 사용하는 것을 권장한다.
+컨테이너 런타임이 CRI `v1` 버전을 지원하지 않는다면, 
+Kubelet은 지원 가능한 이전 지원 버전으로 협상을 시도한다.
+또한 v{{< skew currentVersion >}} Kubelet은 CRI `v1alpha2`버전도 협상할 수 있지만, 
+해당 버전은 사용 중단(deprecated)으로 간주한다.
+Kubelet이 지원되는 CRI 버전을 협상할 수 없는 경우, 
+Kubelet은 협상을 포기하고 노드로 등록하지 않는다.
+
+## 업그레이드
+
+쿠버네티스를 업그레이드할 때, Kubelet은 컴포넌트의 재시작 시점에서 최신 CRI 버전을 자동으로 선택하려고 시도한다. 
+이 과정이 실패하면 위에서 언급한 대로 이전 버전을 선택하는 과정을 거친다. 
+컨테이너 런타임이 업그레이드되어 gRPC 재다이얼이 필요하다면, 
+컨테이너 런타임도 처음에 선택된 버전을 지원해야 하며, 
+그렇지 못한 경우 재다이얼은 실패하게 될 것이다. 이 과정은 Kubelet의 재시작이 필요하다.
+
+## {{% heading "whatsnext" %}}
+
+- CRI [프로토콜 정의](https://github.com/kubernetes/cri-api/blob/c75ef5b/pkg/apis/runtime/v1/api.proto)를 자세히 알아보자.
diff --git a/content/ko/docs/concepts/architecture/garbage-collection.md b/content/ko/docs/concepts/architecture/garbage-collection.md
new file mode 100644
index 0000000000..e3ffffe432
--- /dev/null
+++ b/content/ko/docs/concepts/architecture/garbage-collection.md
@@ -0,0 +1,172 @@
+---
+title: 가비지(Garbage) 수집
+content_type: concept
+weight: 50
+---
+
+<!-- overview -->
+{{<glossary_definition term_id="garbage-collection" length="short">}}
+다음과 같은 리소스를 정리한다:
+
+  * [실패한 파드](/ko/docs/concepts/workloads/pods/pod-lifecycle/#pod-garbage-collection)
+  * [종료된 잡](/ko/docs/concepts/workloads/controllers/ttlafterfinished/)
+  * [소유자 참조가 없는 오브젝트](#owners-dependents)
+  * [사용되지 않는 컨테이너와 컨테이너 이미지](#containers-images)
+  * [반환 정책이 삭제인 스토리지클래스에 의해 동적으로 생성된 퍼시스턴트볼륨](/ko/docs/concepts/storage/persistent-volumes/#delete)
+  * [Stale 또는 만료된 CertificateSigningRequests (CSRs)](/docs/reference/access-authn-authz/certificate-signing-requests/#request-signing-process)
+  * {{<glossary_tooltip text="노드" term_id="node">}} 는 다음과 같은 상황에서 삭제된다:
+    * 클러스터가 [클라우드 컨트롤러 매니저](/ko/docs/concepts/architecture/cloud-controller/)를 사용하는 클라우드
+    * 클러스터가 클라우드 컨트롤러 매니저와 유사한 애드온을 사용하는 온프레미스
+  * [노드 리스(Lease) 오브젝트](/ko/docs/concepts/architecture/nodes/#heartbeats)
+
+## 소유자(Owners)와 종속(dependents) {#owners-dependents}
+
+쿠버네티스의 많은 오브젝트는 [*owner references*](/docs/concepts/overview/working-with-objects/owners-dependents/)를 통해 서로 연결되어 있다.
+
+소유자 참조(Owner references)는 컨트롤 플레인에게 어떤 오브젝트가 서로 종속적인지를 알려준다.
+쿠버네티스는 소유자 참조를 사용하여 컨트롤 플레인과 다른 API 클라이언트에게 오브젝트를 삭제하기 전 관련 리소스를 정리하는 기회를 제공한다. 대부분의 경우, 쿠버네티스는 소유자 참조를 자동으로 관리한다.
+
+소유권(Ownership)은 일부 리소스가 사용하는 [레이블과 셀렉터](/ko/docs/concepts/overview/working-with-objects/labels/)
+메커니즘과는 다르다. 예를 들어, 
+`EndpointSlice` 오브젝트를 생성하는 {{<glossary_tooltip text="서비스" term_id="service">}}를 
+생각해보자. 서비스는 *레이블*을 사용해 컨트롤 플레인이
+어떤 `EndpointSlice` 오브젝트가 해당 서비스에 의해 사용되는지 판단하는 데 도움을 준다. 레이블과 더불어,
+서비스를 대신해 관리되는 각 `EndpointSlice` 오브젝트는
+소유자 참조를 가진다. 소유자 참조는 쿠버네티스의 다른 부분이 제어하지 않는
+오브젝트를 방해하는 것을 방지하는 데 도움을 준다.
+
+
+{{< note >}}
+교차 네임스페이스(cross-namespace)의 소유자 참조는 디자인상 허용되지 않는다.
+네임스페이스 종속 오브젝트는 클러스터 범위 또는 네임스페이스 소유자를 지정할 수 있다.
+네임스페이스 소유자는 **반드시** 종속 오브젝트와 동일한 네임스페이스에 존재해야 한다.
+그렇지 않다면, 소유자 참조는 없는 것으로 간주되어, 종속 오브젝트는
+모든 소유자가 없는 것으로 확인되면 삭제될 수 있다.
+
+클러스터 범위의 종속 오브젝트는 클러스터 범위의 소유자만 지정할 수 있다.
+v1.20 이상에서, 클러스터 범위의 종속 오브젝트가 네임스페이스 종류를 소유자로 지정하면,
+확인할 수 없는 소유자 참조가 있는 것으로 간주되어 가비지 수집이 될 수 없다.
+
+v1.20 이상에서, 가비지 수집기가 잘못된 교차 네임스페이스 `ownerReference`
+또는 네임스페이스 종류를 참조하는 `ownerReference`가 있는 클러스터 범위의 종속 항목을 감지하면,
+`OwnerRefInvalidNamespace`가 원인인 경고 이벤트와 유효하지 않은 종속 항목의 `involvedObject`가 보고된다.
+`kubectl get events -A --field-selector=reason=OwnerRefInvalidNamespace`
+를 실행하여 이러한 종류의 이벤트를 확인할 수 있다.
+{{< /note >}}
+
+## 캐스케이딩(Cascading) 삭제 {#cascading-deletion}
+
+쿠버네티스는 오브젝트를 삭제할 때 더 이상 소유자 참조가 없는지,
+예를 들어 레플리카셋을 삭제할 때, 남겨진 파드가 없는지 확인하고 삭제한다.
+오브젝트를 삭제할 때 쿠버네티스가 오브젝트의 종속 오브젝트들을 자동으로 삭제할 지 여부를 제어할 수 있다.
+이 과정을 `캐스케이딩 삭제`라고 한다.
+캐스케이딩 삭제에는 다음과 같은 두 가지 종류가 있다.
+
+  * 포그라운드 캐스케이딩 삭제(Foreground cascading deletion)
+  * 백그라운드 캐스케이딩 삭제(Background cascading deletion)
+
+또한 쿠버네티스의 {{<glossary_tooltip text="finalizers" term_id="finalizer">}}를 사용하여 가비지 수집이 소유자 참조가 있는 자원을 언제 어떻게 삭제할 것인지 제어할 수 있다.
+
+### 포그라운드 캐스케이딩 삭제 {#foreground-deletion}
+
+포그라운드 캐스케이딩 삭제에서는 삭제하려는 소유자 오브젝트가 먼저
+*삭제 중* 상태가 된다. 이 상태에서는 소유자 오브젝트에게 다음과 같은 일이
+일어난다:
+
+  * 쿠버네티스 API 서버가 오브젝트의 `metadata.deletionTimestamp` 필드를
+    오브젝트가 삭제 표시된 시간으로 설정한다.
+  * 쿠버네티스 API 서버가 `metadata.finalizers` 필드를 `foregroundDeletion`로
+    설정한다. 
+  * 오브젝트는 삭제 과정이 완료되기 전까지 쿠버네티스 API를 통해 조회할 수 있다.
+
+소유자 오브젝트가 삭제 중 상태가 된 이후, 컨트롤러는 종속 오브젝트들을 삭제한다.
+모든 종속 오브젝트들이 삭제되고나면, 컨트롤러가 소유자 오브젝트를 삭제한다.
+이 시점에서 오브젝트는 더 이상 쿠버네티스 API를 통해 조회할 수 없다.
+
+포그라운드 캐스케이딩 삭제 중에 소유자 오브젝트의 삭제를 막는
+종속 오브젝트는`ownerReference.blockOwnerDeletion=true`필드를 가진 오브젝트다.
+더 자세한 내용은 [Use foreground cascading deletion](/docs/tasks/administer-cluster/use-cascading-deletion/#use-foreground-cascading-deletion)를
+참고한다.
+
+### 백그라운드 캐스케이딩 삭제 {#background-deletion}
+
+백그라운드 캐스케이딩 삭제에서는 쿠버네티스 API 서버가 소유자 오브젝트를 즉시 삭제하고
+백그라운드에서 컨트롤러가 종속 오브젝트들을 삭제한다.
+쿠버네티스는 수동으로 포그라운드 삭제를 사용하거나 종속 오브젝트를 분리하지 않는다면, 기본적으로 백그라운드 캐스케이딩 삭제를 사용한다.
+
+더 자세한 내용은 [Use background cascading deletion](/docs/tasks/administer-cluster/use-cascading-deletion/#use-background-cascading-deletion)를
+참고한다.
+
+### 분리된 종속 (Orphaned dependents)
+
+쿠버네티스가 소유자 오브젝트를 삭제할 때, 남은 종속 오브젝트는 *분리된* 오브젝트라고 부른다.
+기본적으로 쿠버네티스는 종속 오브젝트를 삭제한다.
+이 행동을 오버라이드하는 방법을 보려면,
+다음 [Delete owner objects and orphan dependents](/docs/tasks/administer-cluster/use-cascading-deletion/#set-orphan-deletion-policy)를 참고한다.
+
+## 사용되지 않는 컨테이너와 이미지 가비지 수집 {#containers-images}
+
+{{<glossary_tooltip text="kubelet" term_id="kubelet">}}은
+사용되지 않는 이미지에 대한 가비지 수집을 5분마다, 컨테이너에 대한 가비지 수집을 1분마다
+수행한다. 외부 가비지 수집 도구는 Kubelet 의 행동을 중단시키고
+존재해야만 하는 컨테이너를 삭제할 수 있으므로 사용을 피해야 한다.
+
+사용되지 않는 컨테이너와 이미지에 대한 가비지 수집 옵션을 구성하려면, 
+[configuration file](/docs/tasks/administer-cluster/kubelet-config-file/) 사용하여 Kubelet 을 수정하거나
+[`KubeletConfiguration`](/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration) 리소스 타입의
+가비지 수집과 관련된 파라미터를 수정한다.
+
+### 컨테이너 이미지 라이프사이클
+
+쿠버네티스는 Kubelet의 일부인 *이미지 관리자*가 {{< glossary_tooltip text="cadvisor" term_id="cadvisor" >}}와 협동하여
+모든 이미지의 라이프사이클을 관리한다.
+Kubelet은 가비지 수집 결정을 내릴 때, 다음 디스크 사용량 제한을 고려한다.
+
+  * `HighThresholdPercent`
+  * `LowThresholdPercent`
+
+`HighThresholdPercent` 값을 초과한 디스크 사용량은
+마지막으로 사용된 시간을 기준으로 오래된 이미지순서대로 이미지를 삭제하는
+가비지 수집을 트리거한다. Kubelet은 디스크 사용량이 `LowThresholdPercent` 값에 도달할 때까지
+이미지를 삭제한다.
+
+### 컨테이너 이미지 가비지 수집 {#container-image-garbage-collection}
+
+Kubelet은 사용자가 정의할 수 있는 다음 변수들을 기반으로 사용되지 않는 컨테이너들을 삭제한다:
+
+  * `MinAge`: Kubelet이 가비지 수집할 수 있는 최소 나이. `0`으로 세팅하여 비활성화할 수 있다.
+  * `MaxPerPodContainer`: 각 파드 쌍이 가질 수 있는 죽은 컨테이너의 최대 개수.
+    `0`으로 세팅하여 비활성화할 수 있다.
+  * `MaxContainers`: 클러스터가 가질 수 있는 죽은 컨테이너의 최대 개수
+    `0`으로 세팅하여 비활성화할 수 있다.
+
+위 변수와 더불어, Kubelet은 식별할 수 없고 삭제된 컨테이너들을 오래된 순서대로 가비지 수집한다.
+
+`MaxPerPodContainer`와 `MaxContainer`는
+파드의 최대 컨테이너 개수(`MaxPerPodContainer`)를 유지하는 것이
+전체 죽은 컨테이너의 개수 제한(`MaxContainers`)을 초과하게 될 때,
+서로 충돌이 발생할 수 있다.
+이 상황에서 Kubelet은 충돌을 해결하기 위해 `MaxPodPerContainer`를 조절한다.
+최악의 시나리오에서는 `MaxPerPodContainer`를 `1`로 다운그레이드하고
+가장 오래된 컨테이너들을 축출한다.
+또한, 삭제된 파드가 소유한 컨테이너들은 `MinAge`보다 오래되었을 때 삭제된다.
+
+{{<note>}}
+Kubelet은 자신이 관리하는 컨테이너에 대한 가비지 수집만을 수행한다.
+{{</note>}}
+
+## 가비지 수집 구성하기 {#configuring-gc}
+
+자원을 관리하는 컨트롤러의 옵션을 구성하여 가비지 컬렉션을 수정할 수 있다.
+다음 페이지에서 어떻게 가비지 수집을 구성할 수 있는지 확인할 수 있다:
+
+  * [쿠버네티스 오브젝트의 캐스케이딩 삭제 구성하기](/docs/tasks/administer-cluster/use-cascading-deletion/)
+  * [완료된 잡 자동 정리하기](/ko/docs/concepts/workloads/controllers/ttlafterfinished/)
+  
+<!-- * [Configuring unused container and image garbage collection](/docs/tasks/administer-cluster/reconfigure-kubelet/) -->
+
+## {{% heading "whatsnext" %}}
+
+* [쿠버네티스 오브젝트의 소유권](/docs/concepts/overview/working-with-objects/owners-dependents/)에 대해 알아보자.
+* 쿠버네티스 [finalizers](/docs/concepts/overview/working-with-objects/finalizers/)에 대해 알아보자.
+* 완료된 잡을 정리하는 [TTL 컨트롤러](/ko/docs/concepts/workloads/controllers/ttlafterfinished/) (beta) 에 대해 알아보자.
diff --git a/content/ko/docs/concepts/architecture/nodes.md b/content/ko/docs/concepts/architecture/nodes.md
index 3ab89472d8..76b1801daa 100644
--- a/content/ko/docs/concepts/architecture/nodes.md
+++ b/content/ko/docs/concepts/architecture/nodes.md
@@ -33,7 +33,7 @@ weight: 10
 1. 노드의 kubelet으로 컨트롤 플레인에 자체 등록
 2. 사용자(또는 다른 사용자)가 노드 오브젝트를 수동으로 추가
 
-노드 오브젝트 또는 노드의 kubelet으로 자체 등록한 후
+노드 {{< glossary_tooltip text="오브젝트" term_id="object" >}} 또는 노드의 kubelet으로 자체 등록한 후
 컨트롤 플레인은 새 노드 오브젝트가 유효한지 확인한다.
 예를 들어 다음 JSON 매니페스트에서 노드를 만들려는 경우이다.
 
@@ -51,7 +51,7 @@ weight: 10
 ```
 
 쿠버네티스는 내부적으로 노드 오브젝트를 생성한다(표시한다). 쿠버네티스는
-kubelet이 노드의 `metadata.name` 필드와 일치하는 API 서버에 등록이 되어있는지 확인한다.
+kubelet이 노드의 `metadata.name` 필드와 일치하는 API 서버에 등록이 되어 있는지 확인한다.
 노드가 정상이면(예를 들어 필요한 모든 서비스가 실행중인 경우) 파드를 실행할 수 있게 된다.
 그렇지 않으면, 해당 노드는 정상이 될 때까지 모든 클러스터 활동에
 대해 무시된다.
@@ -72,31 +72,51 @@ kubelet이 노드의 `metadata.name` 필드와 일치하는 API 서버에 등록
 [이름](/ko/docs/concepts/overview/working-with-objects/names#names)은 노드를 식별한다. 두 노드는
 동시에 같은 이름을 가질 수 없다. 쿠버네티스는 또한 같은 이름의 리소스가
 동일한 객체라고 가정한다. 노드의 경우, 동일한 이름을 사용하는 인스턴스가 동일한
-상태(예: 네트워크 설정, 루트 디스크 내용)를 갖는다고 암시적으로 가정한다. 인스턴스가
+상태(예: 네트워크 설정, 루트 디스크 내용)와 노드 레이블과 같은 동일한 속성(attribute)을
+갖는다고 암시적으로 가정한다. 인스턴스가
 이름을 변경하지 않고 수정된 경우 이로 인해 불일치가 발생할 수 있다. 노드를 대폭 교체하거나
 업데이트해야 하는 경우, 기존 노드 오브젝트를 먼저 API 서버에서 제거하고
 업데이트 후 다시 추가해야 한다.
 
-### 노드에 대한 자체-등록
+### 노드에 대한 자체-등록(self-registration)
 
-kubelet 플래그 `--register-node`는 참(기본값)일 경우, kubelet 은 API 서버에
-스스로 등록을 시도할 것이다. 이는 대부분의 배포판에 의해 이용되는, 선호하는 패턴이다.
+kubelet 플래그 `--register-node`가 참(기본값)일 경우, kubelet은 API 서버에
+스스로 등록을 시도할 것이다. 이는 선호되는 패턴이며, 대부분의 배포판에서 사용된다.
 
 자체-등록에 대해, kubelet은 다음 옵션과 함께 시작된다.
 
   - `--kubeconfig` - apiserver에 스스로 인증하기 위한 자격증명에 대한 경로.
-  - `--cloud-provider` - 자신에 대한 메터데이터를 읽기 위해 어떻게 {{< glossary_tooltip text="클라우드 제공자" term_id="cloud-provider" >}}와 소통할지에 대한 방법.
+  - `--cloud-provider` - 자신에 대한 메터데이터를 읽기 위해 어떻게 
+    {{< glossary_tooltip text="클라우드 제공자" term_id="cloud-provider" >}}와 소통할지에 대한 방법.
   - `--register-node` - 자동으로 API 서버에 등록.
-  - `--register-with-taints` - 주어진 {{< glossary_tooltip text="테인트(taint)" term_id="taint" >}} 리스트(콤마로 분리된 `<key>=<value>:<effect>`)를 가진 노드 등록.
+  - `--register-with-taints` - 주어진 {{< glossary_tooltip text="테인트(taint)" term_id="taint" >}} 
+    리스트(콤마로 분리된 `<key>=<value>:<effect>`)를 가진 노드 등록.
 
     `register-node`가 거짓이면 동작 안 함.
   - `--node-ip` - 노드의 IP 주소.
-  - `--node-labels` - 클러스터에 노드를 등록할 때 추가 할 {{< glossary_tooltip text="레이블" term_id="label" >}}([NodeRestriction admission plugin](/docs/reference/access-authn-authz/admission-controllers/#noderestriction)에 의해 적용되는 레이블 제한 사항 참고).
-  - `--node-status-update-frequency` - 얼마나 자주 kubelet이 마스터에 노드 상태를 게시할 지 정의.
+  - `--node-labels` - 클러스터에 노드를 등록할 때 추가 할 
+    {{< glossary_tooltip text="레이블" term_id="label" >}}
+    ([NodeRestriction admission plugin](/docs/reference/access-authn-authz/admission-controllers/#noderestriction)에 의해 적용되는 레이블 제한 사항 참고).
+  - `--node-status-update-frequency` - 얼마나 자주 kubelet이 API 서버에 해당 노드 상태를 게시할 지 정의.
 
 [Node authorization mode](/docs/reference/access-authn-authz/node/)와
 [NodeRestriction admission plugin](/docs/reference/access-authn-authz/admission-controllers/#noderestriction)이 활성화 되면,
-kubelets 은 자신의 노드 리소스를 생성/수정할 권한을 가진다.
+각 kubelet은 자신이 속한 노드의 리소스에 대해서만 생성/수정할 권한을 가진다.
+
+{{< note >}}
+[노드 이름 고유성](#노드-이름-고유성) 섹션에서 언급했듯이,
+노드 구성을 업데이트해야 하는 경우 API 서버에 노드를
+다시 등록하는 것이 좋다. 예를 들어 kubelet이 `--node-labels`의 새로운 구성으로
+다시 시작되더라도, 동일한 노드 이름이 사용된 경우
+레이블이 해당 노드의 등록에 설정되기 때문에 변경 사항이 적용되지 않는다.
+
+노드에 이미 스케줄된 파드는 해당 노드 구성이 kubelet 재시작에 의해 변경된 경우
+오작동하거나 문제를 일으킬 수 있다. 예를 들어 이미 실행 중인 파드가 노드에
+할당된 새 레이블에 대해 테인트(taint)될 수 있는 반면 해당 파드와 호환되지 않는 다른 파드는
+새 레이블을 기반으로 스케줄링된다. 노드 재등록(re-registration)은 모든 파드를
+비우고(drain) 다시 적절하게 스케줄링되도록
+한다.
+{{< /note >}}
 
 #### 수동 노드 관리
 
@@ -122,6 +142,9 @@ kubelets 은 자신의 노드 리소스를 생성/수정할 권한을 가진다.
 kubectl cordon $NODENAME
 ```
 
+보다 자세한 내용은 [안전하게 노드를 드레인(drain)하기](/docs/tasks/administer-cluster/safely-drain-node/)
+를 참고한다.
+
 {{< note >}}
 {{< glossary_tooltip term_id="daemonset" >}}에 포함되는 일부 파드는
 스케줄 불가 노드에서 실행될 수 있다. 일반적으로 데몬셋은 워크로드 애플리케이션을
@@ -143,14 +166,16 @@ kubectl cordon $NODENAME
 kubectl describe node <insert-node-name-here>
 ```
 
-출력되는 각 섹션은 아래에 설명되어있다.
+출력되는 각 섹션은 아래에 설명되어 있다.
 
 ### 주소 {#addresses}
 
 이 필드의 용법은 클라우드 제공사업자 또는 베어메탈 구성에 따라 다양하다.
 
-* HostName: 노드의 커널에 의해 알려진 호스트명이다. `--hostname-override` 파라미터를 통해 치환될 수 있다.
-* ExternalIP: 일반적으로 노드의 IP 주소는 외부로 라우트 가능 (클러스터 외부에서 이용 가능) 하다 .
+* HostName: 노드의 커널에 의해 알려진 호스트명이다. 
+  `--hostname-override` 파라미터를 통해 치환될 수 있다.
+* ExternalIP: 일반적으로 노드의 IP 주소는 외부로 라우트 가능 
+  (클러스터 외부에서 이용 가능) 하다 .
 * InternalIP: 일반적으로 노드의 IP 주소는 클러스터 내에서만 라우트 가능하다.
 
 
@@ -174,7 +199,8 @@ kubectl describe node <insert-node-name-here>
 대신 코드화된 노드는 사양에 스케줄 불가로 표시된다.
 {{< /note >}}
 
-노드 컨디션은 JSON 오브젝트로 표현된다. 예를 들어, 다음 응답은 상태 양호한 노드를 나타낸다.
+쿠버네티스 API에서, 노드의 컨디션은 노드 리소스의 `.status` 부분에
+표현된다. 예를 들어, 다음의 JSON 구조는 상태가 양호한 노드를 나타낸다.
 
 ```json
 "conditions": [
@@ -189,20 +215,32 @@ kubectl describe node <insert-node-name-here>
 ]
 ```
 
-ready 컨디션의 상태가 `pod-eviction-timeout` ({{< glossary_tooltip text="kube-controller-manager" term_id="kube-controller-manager" >}}에 전달된 인수) 보다 더 길게 `Unknown` 또는 `False`로 유지되는 경우, 노드 상에 모든 파드는 노드 컨트롤러에 의해 삭제되도록 스케줄 된다. 기본 축출 타임아웃 기간은 **5분** 이다. 노드에 접근이 불가할 때와 같은 경우, apiserver는 노드 상의 kubelet과 통신이 불가하다. apiserver와의 통신이 재개될 때까지 파드 삭제에 대한 결정은 kubelet에 전해질 수 없다. 그 사이, 삭제되도록 스케줄 되어진 파드는 분할된 노드 상에서 계속 동작할 수도 있다.
+ready 컨디션의 `status`가 `pod-eviction-timeout`
+({{< glossary_tooltip text="kube-controller-manager" term_id="kube-controller-manager"
+>}}에 전달된 인수)보다 더 길게 `Unknown` 또는 `False`로 유지되는 경우,
+[노드 컨트롤러](#node-controller)가 해당 노드에 할당된 전체 파드에 대해
+{{< glossary_tooltip text="API를 이용한 축출" term_id="api-eviction" >}}
+을 트리거한다. 기본 축출 타임아웃 기간은 
+**5분** 이다.
+노드에 접근이 불가할 때와 같은 경우, API 서버는 노드 상의 kubelet과 통신이 불가하다.
+API 서버와의 통신이 재개될 때까지 파드 삭제에 대한 결정은 kubelet에 전해질 수 없다.
+그 사이, 삭제되도록 스케줄 되어진 파드는 분할된 노드 상에서 계속 동작할 수도 있다.
 
-노드 컨트롤러가 클러스터 내 동작 중지된 것을 확신할 때까지는 파드를
-강제로 삭제하지 않는다. 파드가 `Terminating` 또는 `Unknown` 상태로 있을 때 접근 불가한 노드 상에서
+노드 컨트롤러가 클러스터 내 동작 중지된 것을 확신할 때까지는 파드를 강제로 삭제하지 않는다.
+파드가 `Terminating` 또는 `Unknown` 상태로 있을 때 접근 불가한 노드 상에서
 동작되고 있는 것을 보게 될 수도 있다. 노드가 영구적으로 클러스터에서 삭제되었는지에
 대한 여부를 쿠버네티스가 기반 인프라로부터 유추할 수 없는 경우, 노드가 클러스터를 영구적으로
 탈퇴하게 되면, 클러스터 관리자는 손수 노드 오브젝트를 삭제해야 할 수도 있다.
-쿠버네티스에서 노드 오브젝트를 삭제하면 노드 상에서 동작중인 모든 파드 오브젝트가
-apiserver로부터 삭제되어 그 이름을 사용할 수 있는 결과를 낳는다.
+쿠버네티스에서 노드 오브젝트를 삭제하면
+노드 상에서 동작 중인 모든 파드 오브젝트가 API 서버로부터 삭제되며
+파드가 사용하던 이름을 다시 사용할 수 있게 된다.
 
-노드 수명주기 컨트롤러는 자동으로 컨디션을 나타내는
-[테인트(taints)](/ko/docs/concepts/scheduling-eviction/taint-and-toleration/)를 생성한다.
-스케줄러는 파드를 노드에 할당 할 때 노드의 테인트를 고려한다.
-또한 파드는 노드의 테인트를 극복(tolerate)할 수 있는 톨러레이션(toleration)을 가질 수 있다.
+노드에서 문제가 발생하면, 쿠버네티스 컨트롤 플레인은 자동으로 노드 상태에 영향을 주는 조건과 일치하는
+[테인트(taints)](/ko/docs/concepts/scheduling-eviction/taint-and-toleration/)를
+생성한다.
+스케줄러는 파드를 노드에 할당할 때 노드의 테인트를 고려한다.
+또한 파드는 노드에 특정 테인트가 있더라도 해당 노드에서 동작하도록 
+{{< glossary_tooltip text="톨러레이션(toleration)" term_id="toleration" >}}을 가질 수 있다.
 
 자세한 내용은
 [컨디션별 노드 테인트하기](/ko/docs/concepts/scheduling-eviction/taint-and-toleration/#컨디션별-노드-테인트하기)를 참조한다.
@@ -222,8 +260,40 @@ apiserver로부터 삭제되어 그 이름을 사용할 수 있는 결과를 낳
 
 ### 정보
 
-커널 버전, 쿠버네티스 버전 (kubelet과 kube-proxy 버전), (사용하는 경우) Docker 버전, OS 이름과 같은노드에 대한 일반적인 정보를 보여준다.
-이 정보는 Kubelet에 의해 노드로부터 수집된다.
+커널 버전, 쿠버네티스 버전 (kubelet과 kube-proxy 버전), 컨테이너
+런타임 상세 정보 및 노드가 사용하는 운영 체제가 무엇인지와 같은
+노드에 대한 일반적인 정보가 기술된다.
+이 정보는 Kubelet이 노드에서 수집하여
+쿠버네티스 API로 전송한다.
+
+## 하트비트
+
+쿠버네티스 노드가 보내는 하트비트는 클러스터가 개별 노드가 가용한지를
+판단할 수 있도록 도움을 주고, 장애가 발견된 경우 조치를 할 수 있게한다.
+
+노드에는 두 가지 형태의 하트비트가 있다.
+
+* 노드의 `.status`에 대한 업데이트
+* `kube-node-lease`
+  {{< glossary_tooltip term_id="namespace" text="네임스페이스">}}
+  내의 [리스(Lease)](/docs/reference/kubernetes-api/cluster-resources/lease-v1/)
+  오브젝트. 각 노드는 연관된 리스 오브젝트를 갖는다.
+
+노드의 `.status`에 비하면, 리스는 경량의 리소스이다.
+큰 규모의 클러스터에서는 리스를 하트비트에 사용하여 
+업데이트로 인한 성능 영향을 줄일 수 있다.
+
+kubelet은 노드의 `.status` 생성과 업데이트 및
+관련된 리스의 업데이트를 담당한다. 
+
+- kubelet은 상태가 변경되거나 설정된 인터벌보다 오래 업데이트가 없는 경우
+  노드의 `.status`를 업데이트한다. 노드의 `.status` 업데이트에 대한 기본
+  인터벌은 접근이 불가능한 노드에 대한 타임아웃인
+  40초 보다 훨씬 긴 5분이다.
+- kubelet은 리스 오브젝트를 (기본 업데이트 인터벌인) 매 10초마다
+  생성하고 업데이트한다. 리스 업데이트는 노드의 `.status` 업데이트와는 독립적이다.
+  만약 리스 업데이트가 실패하면, kubelet은 200밀리초에서 시작하고
+  7초의 상한을 갖는 지수적 백오프를 사용해서 재시도한다.
 
 ### 노드 컨트롤러
 
@@ -239,41 +309,23 @@ apiserver로부터 삭제되어 그 이름을 사용할 수 있는 결과를 낳
 해당 노드용 VM이 여전히 사용 가능한지에 대해 클라우드 제공사업자에게 묻는다. 사용 가능하지 않을 경우,
 노드 컨트롤러는 노드 리스트로부터 그 노드를 삭제한다.
 
-세 번째는 노드의 동작 상태를 모니터링 하는 것이다. 노드 컨트롤러는
+세 번째는 노드의 동작 상태를 모니터링하는 것이다. 노드 컨트롤러는
 다음을 담당한다.
-- 노드 다운과 같은 어떤 이유로 노드 컨트롤러가
-  하트비트 수신이 중단되는 경우 NodeStatus의 NodeReady
-  컨디션을 ConditionUnknown으로 업데이트 한다.
-- 노드가 계속 접근 불가할 경우 나중에 노드로부터 정상적인 종료를 이용해서 모든 파드를 축출 한다.
-  ConditionUnknown을 알리기 시작하는 기본 타임아웃 값은 40초 이고,
-  파드를 축출하기 시작하는 값은 5분이다.
 
-노드 컨트롤러는 매 `--node-monitor-period` 초 마다 각 노드의 상태를 체크한다.
+- 노드가 접근 불가능(unreachable) 상태가 되는 경우, 
+  노드의 `.status` 필드의 `Ready` 컨디션을 업데이트한다. 
+  이 경우에는 노드 컨트롤러가 `Ready` 컨디션을 `Unknown`으로 설정한다.
+- 노드가 계속 접근 불가능 상태로 남아있는 경우, 해당 노드의 모든 파드에 대해서
+  [API를 이용한 축출](/ko/docs/concepts/scheduling-eviction/api-eviction/)을
+  트리거한다. 기본적으로, 노드 컨트롤러는 노드를
+  `Unknown`으로 마킹한 뒤 5분을 기다렸다가
+  최초의 축출 요청을 시작한다. 
 
-#### 하트비트
+기본적으로, 노드 컨트롤러는 5 초마다 각 노드의 상태를 체크한다.
+체크 주기는 `kube-controller-manager` 구성 요소의 
+`--node-monitor-period` 플래그를 이용하여 설정할 수 있다.
 
-쿠버네티스 노드에서 보내는 하트비트는 노드의 가용성을 결정하는데 도움이 된다.
-
-하트비트의 두 가지 형태는 `NodeStatus` 와
-[리스(Lease) 오브젝트](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#lease-v1-coordination-k8s-io)이다.
-각 노드에는 `kube-node-lease` 라는
-{{< glossary_tooltip term_id="namespace" text="네임스페이스">}} 에 관련된 리스 오브젝트가 있다.
-리스는 경량 리소스로, 클러스터가 확장될 때
-노드의 하트비트 성능을 향상 시킨다.
-
-kubelet은 `NodeStatus` 와 리스 오브젝트를 생성하고 업데이트 할
-의무가 있다.
-
-- kubelet은 상태가 변경되거나 구성된 상태에 대한 업데이트가 없는 경우,
-  `NodeStatus` 를 업데이트 한다. `NodeStatus` 의 기본 업데이트
-  주기는 5분으로, 연결할 수 없는 노드의 시간 제한인 40초
-  보다 훨씬 길다.
-- kubelet은 10초마다 리스 오브젝트를 생성하고 업데이트 한다(기본 업데이트 주기).
-  리스 업데이트는 `NodeStatus` 업데이트와는
-  독립적으로 발생한다. 리스 업데이트가 실패하면 kubelet에 의해 재시도하며
-  7초로 제한된 지수 백오프를 200 밀리초에서 부터 시작한다.
-
-#### 안정성
+#### 축출 빈도 제한
 
  대부분의 경우, 노드 컨트롤러는 초당 `--node-eviction-rate`(기본값 0.1)로
 축출 속도를 제한한다. 이 말은 10초당 1개의 노드를 초과하여
@@ -281,8 +333,9 @@ kubelet은 `NodeStatus` 와 리스 오브젝트를 생성하고 업데이트 할
 
 노드 축출 행위는 주어진 가용성 영역 내 하나의 노드가 상태가 불량할
 경우 변화한다. 노드 컨트롤러는 영역 내 동시에 상태가 불량한 노드의 퍼센티지가 얼마나 되는지
-체크한다(NodeReady 컨디션은 ConditionUnknown 또는
-ConditionFalse 다).
+체크한다(`Ready` 컨디션은 `Unknown` 또는
+`False` 값을 가진다).
+
 - 상태가 불량한 노드의 비율이 최소 `--unhealthy-zone-threshold`
   (기본값 0.55)가 되면 축출 속도가 감소한다.
 - 클러스터가 작으면 (즉 `--large-cluster-size-threshold`
@@ -291,17 +344,19 @@ ConditionFalse 다).
   `--secondary-node-eviction-rate`(기본값 0.01)로 감소된다.
 
 이 정책들이 가용성 영역 단위로 실행되어지는 이유는 나머지가 연결되어 있는 동안
-하나의 가용성 영역이 마스터로부터 분할되어 질 수도 있기 때문이다.
-만약 클러스터가 여러 클라우드 제공사업자의 가용성 영역에 걸쳐 있지 않으면,
-오직 하나의 가용성 영역만 (전체 클러스터) 존재하게 된다.
+하나의 가용성 영역이 컨트롤 플레인으로부터 분할되어 질 수도 있기 때문이다.
+만약 클러스터가 여러 클라우드 제공사업자의 가용성 영역에 걸쳐 있지 않는 이상,
+축출 매커니즘은 영역 별 가용성을 고려하지 않는다.
 
 노드가 가용성 영역들에 걸쳐 퍼져 있는 주된 이유는 하나의 전체 영역이
 장애가 발생할 경우 워크로드가 상태 양호한 영역으로 이전되어질 수 있도록 하기 위해서이다.
 그러므로, 하나의 영역 내 모든 노드들이 상태가 불량하면 노드 컨트롤러는
 `--node-eviction-rate` 의 정상 속도로 축출한다. 코너 케이스란 모든 영역이
-완전히 상태불량 (즉 클러스터 내 양호한 노드가 없는 경우) 한 경우이다.
-이러한 경우, 노드 컨트롤러는 마스터 연결에 문제가 있어 일부 연결이
-복원될 때까지 모든 축출을 중지하는 것으로 여긴다.
+완전히 상태불량(클러스터 내 양호한 노드가 없는 경우)한 경우이다.
+이러한 경우, 노드 컨트롤러는 컨트롤 플레인과 노드 간 연결에 문제가
+있는 것으로 간주하고 축출을 실행하지 않는다. (중단 이후 일부 노드가
+다시 보이는 경우 노드 컨트롤러는 상태가 양호하지 않거나 접근이 불가능한
+나머지 노드에서 파드를 축출한다.)
 
 또한, 노드 컨트롤러는 파드가 테인트를 허용하지 않을 때 `NoExecute` 테인트 상태의
 노드에서 동작하는 파드에 대한 축출 책임을 가지고 있다.
@@ -309,7 +364,7 @@ ConditionFalse 다).
 {{< glossary_tooltip text="테인트" term_id="taint" >}}를 추가한다.
 이는 스케줄러가 비정상적인 노드에 파드를 배치하지 않게 된다.
 
-### 노드 용량
+## 리소스 용량 추적 {#node-capacity}
 
 노드 오브젝트는 노드 리소스 용량에 대한 정보: 예를 들어, 사용 가능한 메모리의
 양과 CPU의 수를 추적한다.
@@ -331,7 +386,7 @@ ConditionFalse 다).
 
 ## 노드 토폴로지
 
-{{< feature-state state="alpha" for_k8s_version="v1.16" >}}
+{{< feature-state state="beta" for_k8s_version="v1.18" >}}
 
 `TopologyManager`
 [기능 게이트(feature gate)](/ko/docs/reference/command-line-tools-reference/feature-gates/)를
@@ -339,13 +394,15 @@ ConditionFalse 다).
 자세한 내용은
 [노드의 컨트롤 토폴로지 관리 정책](/docs/tasks/administer-cluster/topology-manager/)을 본다.
 
-## 그레이스풀(Graceful) 노드 셧다운 {#graceful-node-shutdown}
+## 그레이스풀(Graceful) 노드 셧다운(shutdown) {#graceful-node-shutdown}
 
 {{< feature-state state="beta" for_k8s_version="v1.21" >}}
 
 kubelet은 노드 시스템 셧다운을 감지하고 노드에서 실행 중인 파드를 종료하려고 시도한다.
 
-Kubelet은 노드가 종료되는 동안 파드가 일반 [파드 종료 프로세스](/ko/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)를 따르도록 한다.
+Kubelet은 노드가 종료되는 동안 파드가 
+일반 [파드 종료 프로세스](/ko/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)를 
+따르도록 한다.
 
 그레이스풀 노드 셧다운 기능은
 [systemd inhibitor locks](https://www.freedesktop.org/wiki/Software/systemd/inhibit/)를
@@ -356,42 +413,243 @@ Kubelet은 노드가 종료되는 동안 파드가 일반 [파드 종료 프로
 제어된다.
 
 기본적으로, 아래 설명된 두 구성 옵션,
-`ShutdownGracePeriod` 및 `ShutdownGracePeriodCriticalPods` 는 모두 0으로 설정되어 있으므로,
+`shutdownGracePeriod` 및 `shutdownGracePeriodCriticalPods` 는 모두 0으로 설정되어 있으므로,
 그레이스풀 노드 셧다운 기능이 활성화되지 않는다.
-기능을 활성화하려면, 두 개의 kubelet 구성 설정을 적절하게 구성하고 0이 아닌 값으로 설정해야 한다.
+기능을 활성화하려면, 두 개의 kubelet 구성 설정을 적절하게 구성하고 
+0이 아닌 값으로 설정해야 한다.
 
 그레이스풀 셧다운 중에 kubelet은 다음의 두 단계로 파드를 종료한다.
 
 1. 노드에서 실행 중인 일반 파드를 종료시킨다.
-2. 노드에서 실행 중인 [중요(critical) 파드](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical)를 종료시킨다.
+2. 노드에서 실행 중인 
+  [중요(critical) 파드](/ko/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#파드를-중요-critical-로-표시하기)를 종료시킨다.
 
-그레이스풀 노드 셧다운 기능은 두 개의 [`KubeletConfiguration`](/docs/tasks/administer-cluster/kubelet-config-file/) 옵션으로 구성된다.
-* `ShutdownGracePeriod`:
-  * 노드가 종료를 지연해야 하는 총 기간을 지정한다. 이것은 모든 일반 및 [중요 파드](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical)의 파드 종료에 필요한 총 유예 기간에 해당한다.
-* `ShutdownGracePeriodCriticalPods`:
-  * 노드 종료 중에 [중요 파드](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical)를 종료하는 데 사용되는 기간을 지정한다. 이 값은 `ShutdownGracePeriod` 보다 작아야 한다.
+그레이스풀 노드 셧다운 기능은 
+두 개의 [`KubeletConfiguration`](/docs/tasks/administer-cluster/kubelet-config-file/) 옵션으로 구성된다.
 
-예를 들어, `ShutdownGracePeriod=30s`,
-`ShutdownGracePeriodCriticalPods=10s` 인 경우, kubelet은 노드 종료를 30초까지
+* `shutdownGracePeriod`:
+  * 노드가 종료를 지연해야 하는 총 기간을 지정한다. 
+    이것은 모든 일반 및 [중요 파드](/ko/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#파드를-중요-critical-로-표시하기)의 
+    파드 종료에 필요한 총 유예 기간에 해당한다.
+* `shutdownGracePeriodCriticalPods`:
+  * 노드 종료 중에 [중요 파드](/ko/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#파드를-중요-critical-로-표시하기)를 
+    종료하는 데 사용되는 기간을 지정한다. 
+    이 값은 `shutdownGracePeriod` 보다 작아야 한다.
+
+예를 들어, `shutdownGracePeriod=30s`,
+`shutdownGracePeriodCriticalPods=10s` 인 경우, kubelet은 노드 종료를 30초까지
 지연시킨다. 종료하는 동안 처음 20(30-10)초는 일반 파드의
 유예 종료에 할당되고, 마지막 10초는
-[중요 파드](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical)의 종료에 할당된다.
+[중요 파드](/ko/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#파드를-중요-critical-로-표시하기)의 종료에 할당된다.
 
 {{< note >}}
-그레이스풀 노드 셧다운 과정에서 축출된 파드는 `Failed` 라고 표시된다.
-`kubectl get pods` 명령을 실행하면 축출된 파드의 상태가 `Shutdown`으로 표시된다.
+그레이스풀 노드 셧다운 과정에서 축출된 파드는 셧다운(shutdown)된 것으로 표시된다.
+`kubectl get pods` 명령을 실행하면 축출된 파드의 상태가 `Terminated`으로 표시된다.
 그리고 `kubectl describe pod` 명령을 실행하면 노드 셧다운으로 인해 파드가 축출되었음을 알 수 있다.
 
 ```
-Status:         Failed
-Reason:         Shutdown
-Message:        Node is shutting, evicting pods
+Reason:         Terminated
+Message:        Pod was terminated in response to imminent node shutdown.
 ```
 
-실패한 파드 오브젝트는 명시적으로 삭제하거나 [가비지 콜렉션에 의해 정리](/ko/docs/concepts/workloads/pods/pod-lifecycle/#pod-garbage-collection)되기 전까지는 보존된다.
-이는 갑작스러운 노드 종료의 경우와 비교했을 때 동작에 차이가 있다.
 {{< /note >}}
 
+## 논 그레이스풀 노드 셧다운 {#non-graceful-node-shutdown}
+
+{{< feature-state state="alpha" for_k8s_version="v1.24" >}}
+
+전달한 명령이 kubelet에서 사용하는 금지 잠금 메커니즘(inhibitor locks mechanism)을 트리거하지 않거나, 
+또는 사용자 오류(예: ShutdownGracePeriod 및 ShutdownGracePeriodCriticalPods가 제대로 설정되지 않음)로 인해 
+kubelet의 노드 셧다운 관리자(Node Shutdown Mananger)가 
+노드 셧다운 액션을 감지하지 못할 수 있다. 
+자세한 내용은 위의 [그레이스풀 노드 셧다운](#graceful-node-shutdown) 섹션을 참조한다.
+
+노드가 셧다운되었지만 kubelet의 노드 셧다운 관리자가 이를 감지하지 못하면, 
+스테이트풀셋에 속한 파드는 셧다운된 노드에 '종료 중(terminating)' 상태로 고착되어 
+다른 동작 중인 노드로 이전될 수 없다. 
+이는 셧다운된 노드의 kubelet이 파드를 지울 수 없어서 
+결국 스테이트풀셋이 동일한 이름으로 새 파드를 만들 수 없기 때문이다. 
+만약 파드가 사용하던 볼륨이 있다면, 
+볼륨어태치먼트(VolumeAttachment)도 기존의 셧다운된 노드에서 삭제되지 않아 
+결국 파드가 사용하던 볼륨이 다른 동작 중인 노드에 연결(attach)될 수 없다. 
+결과적으로, 스테이트풀셋에서 실행되는 애플리케이션이 제대로 작동하지 않는다. 
+기존의 셧다운된 노드가 정상으로 돌아오지 못하면, 
+이러한 파드는 셧다운된 노드에 '종료 중(terminating)' 상태로 영원히 고착될 것이다.
+
+위와 같은 상황을 완화하기 위해, 
+사용자가 `node.kubernetes.io/out-of-service` 테인트를 
+`NoExecute` 또는 `NoSchedule` 값으로 추가하여 
+노드를 서비스 불가(out-of-service) 상태로 표시할 수 있다. 
+`kube-controller-manager`에 `NodeOutOfServiceVolumeDetach` 
+[기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)가 활성화되어 있고, 
+노드가 이 테인트에 의해 서비스 불가 상태로 표시되어 있는 경우, 
+노드에 매치되는 톨러레이션이 없다면 노드 상의 파드는 강제로 삭제될 것이고, 
+노드 상에서 종료되는 파드에 대한 볼륨 해제(detach) 작업은 즉시 수행될 것이다. 
+이를 통해 서비스 불가 상태 노드의 파드가 빠르게 다른 노드에서 복구될 수 있다.
+
+논 그레이스풀 셧다운 과정 동안, 파드는 다음의 두 단계로 종료된다.
+
+1. 매치되는 `out-of-service` 톨러레이션이 없는 파드를 강제로 삭제한다.
+2. 이러한 파드에 대한 볼륨 해제 작업을 즉시 수행한다.
+
+
+{{< note >}}
+- `node.kubernetes.io/out-of-service` 테인트를 추가하기 전에, 
+  노드가 완전한 셧다운 또는 전원 꺼짐 상태에 있는지 
+  (재시작 중인 것은 아닌지) 확인한다.
+- 사용자가 서비스 불가 상태 테인트를 직접 추가한 것이기 때문에, 
+  파드가 다른 노드로 옮겨졌고 셧다운 상태였던 노드가 복구된 것을 확인했다면 
+  사용자가 서비스 불가 상태 테인트를 수동으로 제거해야 한다.
+
+
+{{< /note >}}
+
+### 파드 우선순위 기반 그레이스풀 노드 셧다운 {#pod-priority-graceful-node-shutdown}
+
+{{< feature-state state="alpha" for_k8s_version="v1.23" >}}
+
+그레이스풀 노드 셧다운 시 파드 셧다운 순서에 더 많은 유연성을 제공할 수 있도록, 
+클러스터에 프라이어리티클래스(PriorityClass) 기능이 활성화되어 있으면 
+그레이스풀 노드 셧다운 과정에서 파드의 프라이어리티클래스가 고려된다. 
+이 기능으로 그레이스풀 노드 셧다운 시 파드가 종료되는 순서를 클러스터 관리자가 
+[프라이어리티 클래스](/ko/docs/concepts/scheduling-eviction/pod-priority-preemption/#프라이어리티클래스) 
+기반으로 명시적으로 정할 수 있다.
+
+위에서 기술된 것처럼, [그레이스풀 노드 셧다운](#graceful-node-shutdown) 기능은 파드를 
+중요하지 않은(non-critical) 파드와 
+중요한(critical) 파드 2단계(phase)로 구분하여 종료시킨다. 
+셧다운 시 파드가 종료되는 순서를 명시적으로 더 상세하게 정해야 한다면, 
+파드 우선순위 기반 그레이스풀 노드 셧다운을 사용할 수 있다.
+
+그레이스풀 노드 셧다운 과정에서 파드 우선순위가 고려되기 때문에, 
+그레이스풀 노드 셧다운이 여러 단계로 일어날 수 있으며, 
+각 단계에서 특정 프라이어리티 클래스의 파드를 종료시킨다. 
+정확한 단계와 단계별 셧다운 시간은 kubelet에 설정할 수 있다.
+
+다음과 같이 클러스터에 커스텀 파드 
+[프라이어리티 클래스](/ko/docs/concepts/scheduling-eviction/pod-priority-preemption/#프라이어리티클래스)가 있다고 
+가정하자.
+
+|파드 프라이어리티 클래스 이름|파드 프라이어리티 클래스 값|
+|-------------------------|------------------------|
+|`custom-class-a`         | 100000                 |
+|`custom-class-b`         | 10000                  |
+|`custom-class-c`         | 1000                   |
+|`regular/unset`          | 0                      |
+
+[kubelet 환경 설정](/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration) 안의
+`shutdownGracePeriodByPodPriority` 설정은 다음과 같을 수 있다.
+
+|파드 프라이어리티 클래스 값|종료 대기 시간|
+|------------------------|---------------|
+| 100000                 |10 seconds     |
+| 10000                  |180 seconds    |
+| 1000                   |120 seconds    |
+| 0                      |60 seconds     |
+
+이를 나타내는 kubelet 환경 설정 YAML은 다음과 같다.
+
+```yaml
+shutdownGracePeriodByPodPriority:
+  - priority: 100000
+    shutdownGracePeriodSeconds: 10
+  - priority: 10000
+    shutdownGracePeriodSeconds: 180
+  - priority: 1000
+    shutdownGracePeriodSeconds: 120
+  - priority: 0
+    shutdownGracePeriodSeconds: 60
+```
+
+위의 표에 의하면 `priority` 값이 100000 이상인 파드는 종료까지 10초만 주어지며, 
+10000 이상 ~ 100000 미만이면 180초, 
+1000 이상 ~ 10000 미만이면 120초가 주어진다.
+마지막으로, 다른 모든 파드는 종료까지 60초가 주어질 것이다.
+
+모든 클래스에 대해 값을 명시할 필요는 없다. 
+예를 들어, 대신 다음과 같은 구성을 사용할 수도 있다.
+
+|파드 프라이어리티 클래스 값|종료 대기 시간|
+|------------------------|---------------|
+| 100000                 |300 seconds    |
+| 1000                   |120 seconds    |
+| 0                      |60 seconds     |
+
+
+위의 경우, `custom-class-b`에 속하는 파드와 `custom-class-c`에 속하는 파드는 
+동일한 종료 대기 시간을 갖게 될 것이다.
+
+특정 범위에 해당되는 파드가 없으면, 
+kubelet은 해당 범위에 해당되는 파드를 위해 기다려 주지 않는다. 
+대신, kubelet은 즉시 다음 프라이어리티 클래스 값 범위로 넘어간다.
+
+기능이 활성화되어 있지만 환경 설정이 되어 있지 않으면, 
+순서 지정 동작이 수행되지 않을 것이다.
+
+이 기능을 사용하려면 `GracefulNodeShutdownBasedOnPodPriority` 
+[기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 활성화해야 하고, 
+[kubelet config](/docs/reference/config-api/kubelet-config.v1beta1/)의 
+`ShutdownGracePeriodByPodPriority`를 
+파드 프라이어리티 클래스 값과 각 값에 대한 종료 대기 시간을 명시하여 
+지정해야 한다.
+
+{{< note >}}
+그레이스풀 노드 셧다운 과정에서 파드 프라이어리티를 고려하는 기능은 
+쿠버네티스 v1.23에서 알파 기능으로 도입되었다. 
+쿠버네티스 {{< skew currentVersion >}}에서 이 기능은 베타 상태이며 기본적으로 활성화되어 있다.
+{{< /note >}}
+
+`graceful_shutdown_start_time_seconds` 및 `graceful_shutdown_end_time_seconds` 메트릭은 
+노드 셧다운을 모니터링하기 위해 kubelet 서브시스템에서 방출된다.
+
+## 스왑(swap) 메모리 관리 {#swap-memory}
+
+{{< feature-state state="alpha" for_k8s_version="v1.22" >}}
+
+쿠버네티스 1.22 이전에는 노드가 스왑 메모리를 지원하지 않았다. 그리고 
+kubelet은 노드에서 스왑을 발견하지 못한 경우 시작과 동시에 실패하도록 되어 있었다.
+1.22부터는 스왑 메모리 지원을 노드 단위로 활성화할 수 있다.
+
+노드에서 스왑을 활성화하려면, `NodeSwap` 기능 게이트가 kubelet에서
+활성화되어야 하며, 명령줄 플래그 `--fail-swap-on` 또는
+[구성 설정](/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)에서 `failSwapOn`가
+false로 지정되어야 한다.
+
+{{< warning >}}
+메모리 스왑 기능이 활성화되면, 시크릿 오브젝트의 내용과 같은 
+tmpfs에 기록되었던 쿠버네티스 데이터가 디스크에 스왑될 수 있다.
+{{< /warning >}}
+
+사용자는 또한 선택적으로 `memorySwap.swapBehavior`를 구성할 수 있으며, 
+이를 통해 노드가 스왑 메모리를 사용하는 방식을 명시한다. 예를 들면,
+
+```yaml
+memorySwap:
+  swapBehavior: LimitedSwap
+```
+
+`swapBehavior`에 가용한 구성 옵션은 다음과 같다.
+
+- `LimitedSwap`: 쿠버네티스 워크로드는 스왑을 사용할 수 있는 만큼으로
+  제한된다. 쿠버네티스에 의해 관리되지 않는 노드의 워크로드는 여전히 스왑될 수 있다.
+- `UnlimitedSwap`: 쿠버네티스 워크로드는 요청한 만큼 스왑 메모리를 사용할 수 있으며,
+  시스템의 최대치까지 사용 가능하다.
+
+만약 `memorySwap` 구성이 명시되지 않았고 기능 게이트가 활성화되어 있다면, 
+kubelet은 `LimitedSwap` 설정과 같은 행동을
+기본적으로 적용한다.
+
+`LimitedSwap` 설정에 대한 행동은 노드가 ("cgroups"으로 알려진)
+제어 그룹이 v1 또는 v2 중에서 무엇으로 동작하는가에 따라서 결정된다. 
+
+- **cgroupsv1:** 쿠버네티스 워크로드는 메모리와 스왑의 조합을 사용할 수 있다.
+  파드의 메모리 제한이 설정되어 있다면 가용 상한이 된다.
+- **cgroupsv2:** 쿠버네티스 워크로드는 스왑 메모리를 사용할 수 없다.
+
+테스트를 지원하고 피드벡을 제공하기 위한 정보는
+[KEP-2400](https://github.com/kubernetes/enhancements/issues/2400) 및
+[디자인 제안](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/2400-node-swap/README.md)에서 찾을 수 있다.
+
 ## {{% heading "whatsnext" %}}
 
 * 노드를 구성하는 [컴포넌트](/ko/docs/concepts/overview/components/#노드-컴포넌트)에 대해 알아본다.
diff --git a/content/ko/docs/concepts/cluster-administration/_index.md b/content/ko/docs/concepts/cluster-administration/_index.md
index f5363a45c2..83feab60ba 100644
--- a/content/ko/docs/concepts/cluster-administration/_index.md
+++ b/content/ko/docs/concepts/cluster-administration/_index.md
@@ -57,9 +57,9 @@ no_list: true
 
 * [어드미션 컨트롤러 사용하기](/docs/reference/access-authn-authz/admission-controllers/)는 인증과 권한 부여 후 쿠버네티스 API 서버에 대한 요청을 가로채는 플러그인에 대해 설명한다.
 
-* [쿠버네티스 클러스터에서 Sysctls 사용하기](/docs/tasks/administer-cluster/sysctl-cluster/)는 관리자가 `sysctl` 커맨드라인 도구를 사용하여 커널 파라미터를 설정하는 방법에 대해 설명한다.
+* [쿠버네티스 클러스터에서 Sysctls 사용하기](/ko/docs/tasks/administer-cluster/sysctl-cluster/)는 관리자가 `sysctl` 커맨드라인 도구를 사용하여 커널 파라미터를 설정하는 방법에 대해 설명한다.
 
-* [감사(audit)](/docs/tasks/debug-application-cluster/audit/)는 쿠버네티스의 감사 로그를 다루는 방법에 대해 설명한다.
+* [감사(audit)](/docs/tasks/debug/debug-cluster/audit/)는 쿠버네티스의 감사 로그를 다루는 방법에 대해 설명한다.
 
 ### kubelet 보안
   * [컨트롤 플레인-노드 통신](/ko/docs/concepts/architecture/control-plane-node-communication/)
diff --git a/content/ko/docs/concepts/cluster-administration/addons.md b/content/ko/docs/concepts/cluster-administration/addons.md
index 270063a737..2d758cce13 100644
--- a/content/ko/docs/concepts/cluster-administration/addons.md
+++ b/content/ko/docs/concepts/cluster-administration/addons.md
@@ -21,16 +21,16 @@ content_type: concept
 * [Canal](https://github.com/tigera/canal/tree/master/k8s-install)은 Flannel과 Calico를 통합하여 네트워킹 및 네트워크 폴리시를 제공한다.
 * [Cilium](https://github.com/cilium/cilium)은 L3 네트워크 및 네트워크 폴리시 플러그인으로 HTTP/API/L7 폴리시를 투명하게 시행할 수 있다. 라우팅 및 오버레이/캡슐화 모드를 모두 지원하며, 다른 CNI 플러그인 위에서 작동할 수 있다.
 * [CNI-Genie](https://github.com/Huawei-PaaS/CNI-Genie)를 사용하면 쿠버네티스는 Calico, Canal, Flannel, Romana 또는 Weave와 같은 CNI 플러그인을 완벽하게 연결할 수 있다.
-* [Contiv](https://contiv.github.io)는 다양한 유스케이스와 풍부한 폴리시 프레임워크를 위해 구성 가능한 네트워킹(BGP를 사용하는 네이티브 L3, vxlan을 사용하는 오버레이, 클래식 L2 그리고 Cisco-SDN/ACI)을 제공한다. Contiv 프로젝트는 완전히 [오픈소스](https://github.com/contiv)이다. [인스톨러](https://github.com/contiv/install)는 kubeadm을 이용하거나, 그렇지 않은 경우에 대해서도 설치 옵션을 모두 제공한다.
+* [Contiv](https://contivpp.io/)는 다양한 유스케이스와 풍부한 폴리시 프레임워크를 위해 구성 가능한 네트워킹(BGP를 사용하는 네이티브 L3, vxlan을 사용하는 오버레이, 클래식 L2 그리고 Cisco-SDN/ACI)을 제공한다. Contiv 프로젝트는 완전히 [오픈소스](https://github.com/contiv)이다. [인스톨러](https://github.com/contiv/install)는 kubeadm을 이용하거나, 그렇지 않은 경우에 대해서도 설치 옵션을 모두 제공한다.
 * [Contrail](https://www.juniper.net/us/en/products-services/sdn/contrail/contrail-networking/)은 [Tungsten Fabric](https://tungsten.io)을 기반으로 하며, 오픈소스이고, 멀티 클라우드 네트워크 가상화 및 폴리시 관리 플랫폼이다. Contrail과 Tungsten Fabric은 쿠버네티스, OpenShift, OpenStack 및 Mesos와 같은 오케스트레이션 시스템과 통합되어 있으며, 가상 머신, 컨테이너/파드 및 베어 메탈 워크로드에 대한 격리 모드를 제공한다.
 * [Flannel](https://github.com/flannel-io/flannel#deploying-flannel-manually)은 쿠버네티스와 함께 사용할 수 있는 오버레이 네트워크 제공자이다.
 * [Knitter](https://github.com/ZTE/Knitter/)는 쿠버네티스 파드에서 여러 네트워크 인터페이스를 지원하는 플러그인이다.
-* [Multus](https://github.com/Intel-Corp/multus-cni)는 쿠버네티스에서 SRIOV, DPDK, OVS-DPDK 및 VPP 기반 워크로드 외에 모든 CNI 플러그인(예: Calico, Cilium, Contiv, Flannel)을 지원하기 위해 쿠버네티스에서 다중 네트워크 지원을 위한 멀티 플러그인이다.
+* Multus는 쿠버네티스의 다중 네트워크 지원을 위한 멀티 플러그인이며, 모든 CNI 플러그인(예: Calico, Cilium, Contiv, Flannel)과 쿠버네티스 상의 SRIOV, DPDK, OVS-DPDK 및 VPP 기반 워크로드를 지원한다.
 * [OVN-Kubernetes](https://github.com/ovn-org/ovn-kubernetes/)는 Open vSwitch(OVS) 프로젝트에서 나온 가상 네트워킹 구현인 [OVN(Open Virtual Network)](https://github.com/ovn-org/ovn/)을 기반으로 하는 쿠버네티스용 네트워킹 제공자이다. OVN-Kubernetes는 OVS 기반 로드 밸런싱과 네트워크 폴리시 구현을 포함하여 쿠버네티스용 오버레이 기반 네트워킹 구현을 제공한다.
 * [OVN4NFV-K8S-Plugin](https://github.com/opnfv/ovn4nfv-k8s-plugin)은 OVN 기반의 CNI 컨트롤러 플러그인으로 클라우드 네이티브 기반 서비스 기능 체인(Service function chaining(SFC)), 다중 OVN 오버레이 네트워킹, 동적 서브넷 생성, 동적 가상 네트워크 생성, VLAN 공급자 네트워크, 직접 공급자 네트워크와 멀티 클러스터 네트워킹의 엣지 기반 클라우드 등 네이티브 워크로드에 이상적인 멀티 네티워크 플러그인이다.
 * [NSX-T](https://docs.vmware.com/en/VMware-NSX-T/2.0/nsxt_20_ncp_kubernetes.pdf) 컨테이너 플러그인(NCP)은 VMware NSX-T와 쿠버네티스와 같은 컨테이너 오케스트레이터 간의 통합은 물론 NSX-T와 PKS(Pivotal 컨테이너 서비스) 및 OpenShift와 같은 컨테이너 기반 CaaS/PaaS 플랫폼 간의 통합을 제공한다.
 * [Nuage](https://github.com/nuagenetworks/nuage-kubernetes/blob/v5.1.1-1/docs/kubernetes-1-installation.rst)는 가시성과 보안 모니터링 기능을 통해 쿠버네티스 파드와 비-쿠버네티스 환경 간에 폴리시 기반 네트워킹을 제공하는 SDN 플랫폼이다.
-* [Romana](https://romana.io)는 [네트워크폴리시 API](/ko/docs/concepts/services-networking/network-policies/)도 지원하는 파드 네트워크용 Layer 3 네트워킹 솔루션이다. Kubeadm 애드온 설치에 대한 세부 정보는 [여기](https://github.com/romana/romana/tree/master/containerize)에 있다.
+* **Romana**는 [네트워크폴리시 API](/ko/docs/concepts/services-networking/network-policies/)도 지원하는 파드 네트워크용 Layer 3 네트워킹 솔루션이다. Kubeadm 애드온 설치에 대한 세부 정보는 [여기](https://github.com/romana/romana/tree/master/containerize)에 있다.
 * [Weave Net](https://www.weave.works/docs/net/latest/kubernetes/kube-addon/)은 네트워킹 및 네트워크 폴리시를 제공하고, 네트워크 파티션의 양면에서 작업을 수행하며, 외부 데이터베이스는 필요하지 않다.
 
 ## 서비스 검색
@@ -45,6 +45,11 @@ content_type: concept
 ## 인프라스트럭처
 
 * [KubeVirt](https://kubevirt.io/user-guide/#/installation/installation)는 쿠버네티스에서 가상 머신을 실행하기 위한 애드온이다. 일반적으로 베어 메탈 클러스터에서 실행한다.
+* [node problem detector](https://github.com/kubernetes/node-problem-detector)는 
+  리눅스 노드에서 실행되며, 
+  시스템 이슈를 
+  [이벤트](/docs/reference/kubernetes-api/cluster-resources/event-v1/) 또는 
+  [노드 컨디션](/ko/docs/concepts/architecture/nodes/#condition) 형태로 보고한다.
 
 ## 레거시 애드온
 
diff --git a/content/ko/docs/concepts/cluster-administration/kubelet-garbage-collection.md b/content/ko/docs/concepts/cluster-administration/kubelet-garbage-collection.md
deleted file mode 100644
index c64dd127b3..0000000000
--- a/content/ko/docs/concepts/cluster-administration/kubelet-garbage-collection.md
+++ /dev/null
@@ -1,97 +0,0 @@
----
-title: kubelet 가비지(Garbage) 수집 설정하기
-content_type: concept
-weight: 70
----
-
-<!-- overview -->
-
-가비지 수집은 사용되지 않는 
-[이미지](/ko/docs/concepts/containers/#컨테이너-이미지)들과 
-[컨테이너](/ko/docs/concepts/containers/)들을 정리하는 kubelet의 유용한 기능이다. Kubelet은 
-1분마다 컨테이너들에 대하여 가비지 수집을 수행하며, 5분마다 이미지들에 대하여 가비지 수집을 수행한다.
-
-별도의 가비지 수집 도구들을 사용하는 것은, 이러한 도구들이 존재할 수도 있는 컨테이너들을 제거함으로써 
-kubelet을 중단시킬 수도 있으므로 권장하지 않는다.
-
-<!-- body -->
-
-## 이미지 수집
-
-쿠버네티스는 cadvisor와 imageManager를 통하여 모든 이미지들의
-라이프사이클을 관리한다.
-
-이미지들에 대한 가비지 수집 정책은 다음의 2가지 요소를 고려한다.
-`HighThresholdPercent` 와 `LowThresholdPercent`. 임계값을 초과하는
-디스크 사용량은 가비지 수집을 트리거 한다. 가비지 수집은 낮은 입계값에 도달 할 때까지 최근에 가장 적게 사용한
-이미지들을 삭제한다.
-
-## 컨테이너 수집
-
-컨테이너에 대한 가비지 수집 정책은 세 가지 사용자 정의 변수들을 고려한다. 
-`MinAge` 는 컨테이너를 가비지 수집할 수 있는 최소 연령이다. 
-`MaxPerPodContainer` 는 모든 단일 파드(UID, 컨테이너 이름) 
-쌍이 가질 수 있는 최대 비활성 컨테이너의 수량이다. 
-`MaxContainers` 는 죽은 컨테이너의 최대 수량이다. 
-이러한 변수는 `MinAge` 를 0으로 설정하고, 
-`MaxPerPodContainer` 와 `MaxContainers` 를 각각 0 보다 작게 설정해서 비활성화할 수 있다.
-
-Kubelet은 미확인, 삭제 또는 앞에서 언급한 
-플래그가 설정한 경계를 벗어나거나, 확인되지 않은 컨테이너에 대해 조치를 취한다. 
-일반적으로 가장 오래된 컨테이너가 먼저 제거된다. `MaxPerPodContainer` 와 `MaxContainer` 는 
-파드 당 최대 
-컨테이너 수(`MaxPerPodContainer`)가 허용 가능한 범위의 
-전체 죽은 컨테이너의 수(`MaxContainers`)를 벗어나는 상황에서 잠재적으로 서로 충돌할 수 있다. 
-다음의 상황에서 `MaxPerPodContainer` 가 조정된다. 
-최악의 시나리오는 `MaxPerPodContainer` 를 1로 다운그레이드하고 
-가장 오래된 컨테이너를 제거하는 것이다. 추가로, 삭제된 파드가 소유한 컨테이너는 
-`MinAge` 보다 오래되면 제거된다.
-
-kubelet이 관리하지 않는 컨테이너는 컨테이너 가비지 수집 대상이 아니다.
-
-## 사용자 설정
-
-여러분은 후술될 kubelet 플래그들을 통하여 이미지 가비지 수집을 조정하기 위하여 다음의 임계값을 조정할 수 있다.
-
-1. `image-gc-high-threshold`, 이미지 가비지 수집을 발생시키는 디스크 사용량의 비율로
- 기본값은 85% 이다.
-2. `image-gc-low-threshold`, 이미지 가비지 수집을 더 이상 시도하지 않는 디스크 사용량의 비율로
- 기본값은 80% 이다.
-
-다음의 kubelet 플래그를 통해 가비지 수집 정책을 사용자 정의할 수 있다.
-
-1. `minimum-container-ttl-duration`, 종료된 컨테이너가 가비지 수집
-되기 전의 최소 시간. 기본 값은 0 분이며, 이 경우 모든 종료된 컨테이너는 바로 가비지 수집의 대상이 된다.
-2. `maximum-dead-containers-per-container`, 컨테이너가 보유할 수 있는 오래된
-인스턴스의 최대 수. 기본 값은 1 이다.
-3. `maximum-dead-containers`, 글로벌하게 보유 할 컨테이너의 최대 오래된 인스턴스의 최대 수.
-기본 값은 -1이며, 이 경우 인스턴스 수의 제한은 없다.
-
-컨테이너들은 유용성이 만료되기 이전에도 가비지 수집이 될 수 있다. 이러한 컨테이너들은
-문제 해결에 도움이 될 수 있는 로그나 다른 데이터를 포함하고 있을 수 있다. 컨테이너 당 적어도
-1개의 죽은 컨테이너가 허용될 수 있도록 `maximum-dead-containers-per-container`
-값을 충분히 큰 값으로 지정하는 것을 권장한다. 동일한 이유로 `maximum-dead-containers`
-의 값도 상대적으로 더 큰 값을 권장한다.
-자세한 내용은 [해당 이슈](https://github.com/kubernetes/kubernetes/issues/13287)를 참고한다.
-
-
-## 사용 중단(Deprecation)
-
-문서에 있는 몇 가지 kubelet의 가비지 수집 특징은 향후에 kubelet 축출(eviction) 기능으로 대체될 예정이다.
-
-포함:
-
-| 기존 Flag | 신규 Flag | 근거 |
-| ------------- | -------- | --------- |
-| `--image-gc-high-threshold` | `--eviction-hard` or `--eviction-soft` | 기존의 축출 신호로 인하여 이미지 가비지 수집이 트리거 될 수 있음 |
-| `--image-gc-low-threshold` | `--eviction-minimum-reclaim` | 축출 리클레임 기능이 동일한 행동을 수행 |
-| `--maximum-dead-containers` | | 컨테이너의 외부 영역에 오래된 로그가 저장되어 사용중단(deprecated)됨 |
-| `--maximum-dead-containers-per-container` | | 컨테이너의 외부 영역에 오래된 로그가 저장되어 사용중단(deprecated)됨 |
-| `--minimum-container-ttl-duration` | | 컨테이너의 외부 영역에 오래된 로그가 저장되어 사용중단(deprecated)됨 |
-| `--low-diskspace-threshold-mb` | `--eviction-hard` or `eviction-soft` | 축출이 다른 리소스에 대한 디스크 임계값을 일반화 함 |
-| `--outofdisk-transition-frequency` | `--eviction-pressure-transition-period` | 축출이 다른 리소스로의 디스크 압력전환을 일반화 함 |
-
-## {{% heading "whatsnext" %}}
-
-자세한 내용은 [리소스 부족 처리 구성](/docs/concepts/scheduling-eviction/node-pressure-eviction/)를 
-본다.
diff --git a/content/ko/docs/concepts/cluster-administration/logging.md b/content/ko/docs/concepts/cluster-administration/logging.md
index d4e0119c41..cd81413ff8 100644
--- a/content/ko/docs/concepts/cluster-administration/logging.md
+++ b/content/ko/docs/concepts/cluster-administration/logging.md
@@ -12,13 +12,15 @@ weight: 60
 애플리케이션 로그는 애플리케이션 내부에서 발생하는 상황을 이해하는 데 도움이 된다. 로그는 문제를 디버깅하고 클러스터 활동을 모니터링하는 데 특히 유용하다. 대부분의 최신 애플리케이션에는 일종의 로깅 메커니즘이 있다. 마찬가지로, 컨테이너 엔진들도 로깅을 지원하도록 설계되었다. 컨테이너화된 애플리케이션에 가장 쉽고 가장 널리 사용되는 로깅 방법은 표준 출력과 표준 에러 스트림에 작성하는 것이다.
 
 그러나, 일반적으로 컨테이너 엔진이나 런타임에서 제공하는 기본 기능은 완전한 로깅 솔루션으로 충분하지 않다.
+
 예를 들어, 컨테이너가 크래시되거나, 파드가 축출되거나, 노드가 종료된 경우에도 애플리케이션의 로그에 접근하고 싶을 것이다.
+
 클러스터에서 로그는 노드, 파드 또는 컨테이너와는 독립적으로 별도의 스토리지와 라이프사이클을 가져야 한다. 이 개념을 _클러스터-레벨-로깅_ 이라고 한다.  
 
 <!-- body -->
 
-클러스터-레벨 로깅은 로그를 저장하고, 분석하고, 쿼리하기 위해 별도의 백엔드가 필요하다. 쿠버네티스는
-로그 데이터를 위한 네이티브 스토리지 솔루션을 제공하지 않지만,
+클러스터-레벨 로깅은 로그를 저장, 분석, 쿼리하기 위해서는 별도의 백엔드가 필요하다. 쿠버네티스가
+로그 데이터를 위한 네이티브 스토리지 솔루션을 제공하지는 않지만,
 쿠버네티스에 통합될 수 있는 기존의 로깅 솔루션이 많이 있다.
 
 ## 쿠버네티스의 기본 로깅
@@ -55,7 +57,15 @@ kubectl logs counter
 ...
 ```
 
-`kubectl logs --previous` 를 사용해서 컨테이너의 이전 인스턴스에 대한 로그를 검색할 수 있다. 파드에 여러 컨테이너가 있는 경우, 명령에 컨테이너 이름을 추가하여 접근하려는 컨테이너 로그를 지정해야 한다. 자세한 내용은 [`kubectl logs` 문서](/docs/reference/generated/kubectl/kubectl-commands#logs)를 참조한다.
+`kubectl logs --previous` 를 사용해서 컨테이너의 이전 인스턴스에 대한 로그를 검색할 수 있다. 
+파드에 여러 컨테이너가 있는 경우, 
+다음과 같이 명령에 `-c` 플래그와 컨테이너 이름을 추가하여 접근하려는 컨테이너 로그를 지정해야 한다. 
+
+```console
+kubectl logs counter -c count
+```
+
+자세한 내용은 [`kubectl logs` 문서](/docs/reference/generated/kubectl/kubectl-commands#logs)를 참조한다.
 
 ## 노드 레벨에서의 로깅
 
@@ -80,7 +90,7 @@ kubectl logs counter
 로테이션하도록 컨테이너 런타임을 설정할 수도 있다.
 
 예를 들어, `kube-up.sh` 가 GCP의 COS 이미지 로깅을 설정하는 방법은
-[`configure-helper` 스크립트](https://github.com/kubernetes/kubernetes/blob/{{< param "githubbranch" >}}/cluster/gce/gci/configure-helper.sh)를 통해
+[`configure-helper` 스크립트](https://github.com/kubernetes/kubernetes/blob/master/cluster/gce/gci/configure-helper.sh)를 통해
 자세히 알 수 있다.
 
 **CRI 컨테이너 런타임** 을 사용할 때, kubelet은 로그를 로테이션하고 로깅 디렉터리 구조를 관리한다.
@@ -136,12 +146,12 @@ systemd를 사용하지 않으면, kubelet과 컨테이너 런타임은 `/var/lo
 
 각 노드에 _노드-레벨 로깅 에이전트_ 를 포함시켜 클러스터-레벨 로깅을 구현할 수 있다. 로깅 에이전트는 로그를 노출하거나 로그를 백엔드로 푸시하는 전용 도구이다. 일반적으로, 로깅 에이전트는 해당 노드의 모든 애플리케이션 컨테이너에서 로그 파일이 있는 디렉터리에 접근할 수 있는 컨테이너이다.
 
-로깅 에이전트는 모든 노드에서 실행해야 하므로, 에이전트는
+로깅 에이전트는 모든 노드에서 실행되어야 하므로, 에이전트를
 `DaemonSet` 으로 동작시키는 것을 추천한다.
 
 노드-레벨 로깅은 노드별 하나의 에이전트만 생성하며, 노드에서 실행되는 애플리케이션에 대한 변경은 필요로 하지 않는다.
 
-컨테이너는 stdout과 stderr를 동의되지 않은 포맷으로 작성한다. 노드-레벨 에이전트는 이러한 로그를 수집하고 취합을 위해 전달한다.
+컨테이너는 로그를 stdout과 stderr로 출력하며, 합의된 형식은 없다. 노드-레벨 에이전트는 이러한 로그를 수집하고 취합을 위해 전달한다.
 
 ### 로깅 에이전트와 함께 사이드카 컨테이너 사용 {#sidecar-container-with-logging-agent}
 
@@ -160,7 +170,7 @@ systemd를 사용하지 않으면, kubelet과 컨테이너 런타임은 `/var/lo
 각 사이드카 컨테이너는 자체 `stdout` 또는 `stderr` 스트림에 로그를 출력한다.
 
 이 방법을 사용하면 애플리케이션의 다른 부분에서 여러 로그 스트림을
-분리할 수 ​​있고, 이 중 일부는 `stdout` 또는 `stderr` 에
+분리할 수 있고, 이 중 일부는 `stdout` 또는 `stderr` 에
 작성하기 위한 지원이 부족할 수 있다. 로그를 리디렉션하는 로직은
 최소화되어 있기 때문에, 심각한 오버헤드가 아니다. 또한,
 `stdout` 및 `stderr` 가 kubelet에서 처리되므로, `kubectl logs` 와 같은
@@ -262,4 +272,4 @@ fluentd를 구성하는 것에 대한 자세한 내용은, [fluentd 문서](http
 
 ![애플리케이션에서 직접 로그 노출](/images/docs/user-guide/logging/logging-from-application.png)
 
-모든 애플리케이션에서 직접 로그를 노출하거나 푸시하는 클러스터-로깅은 쿠버네티스의 범위를 벗어난다.
+애플리케이션에서 직접 로그를 노출하거나 푸시하는 클러스터-로깅은 쿠버네티스의 범위를 벗어난다.
diff --git a/content/ko/docs/concepts/cluster-administration/manage-deployment.md b/content/ko/docs/concepts/cluster-administration/manage-deployment.md
index 7e3093d51e..cd52e8ba4b 100644
--- a/content/ko/docs/concepts/cluster-administration/manage-deployment.md
+++ b/content/ko/docs/concepts/cluster-administration/manage-deployment.md
@@ -154,13 +154,13 @@ deployment.apps/my-deployment created
 persistentvolumeclaim/my-pvc created
 ```
 
-`kubectl` 에 대해 더 자세히 알고 싶다면, [kubectl 개요](/ko/docs/reference/kubectl/overview/)를 참조한다.
+`kubectl` 에 대해 더 자세히 알고 싶다면, [명령줄 도구 (kubectl)](/ko/docs/reference/kubectl/)를 참조한다.
 
 ## 효과적인 레이블 사용
 
 지금까지 사용한 예는 모든 리소스에 최대 한 개의 레이블만 적용하는 것이었다. 세트를 서로 구별하기 위해 여러 레이블을 사용해야 하는 많은 시나리오가 있다.
 
-예를 들어, 애플리케이션마다 `app` 레이블에 다른 값을 사용하지만, [방명록 예제](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/guestbook/)와 같은 멀티-티어 애플리케이션은 각 티어를 추가로 구별해야 한다. 프론트엔드는 다음의 레이블을 가질 수 있다.
+예를 들어, 애플리케이션마다 `app` 레이블에 다른 값을 사용하지만, [방명록 예제](https://github.com/kubernetes/examples/tree/master/guestbook/)와 같은 멀티-티어 애플리케이션은 각 티어를 추가로 구별해야 한다. 프론트엔드는 다음의 레이블을 가질 수 있다.
 
 ```yaml
      labels:
@@ -397,7 +397,7 @@ deployment.apps/my-nginx configured
 rm /tmp/nginx.yaml
 ```
 
-이를 통해 보다 중요한 변경을 더 쉽게 ​​수행할 수 있다. 참고로 `EDITOR` 또는 `KUBE_EDITOR` 환경 변수를 사용하여 편집기를 지정할 수 있다.
+이를 통해 보다 중요한 변경을 더 쉽게 수행할 수 있다. 참고로 `EDITOR` 또는 `KUBE_EDITOR` 환경 변수를 사용하여 편집기를 지정할 수 있다.
 
 더 자세한 내용은, [kubectl edit](/docs/reference/generated/kubectl/kubectl-commands/#edit) 문서를 참고하길 바란다.
 
@@ -461,5 +461,5 @@ kubectl edit deployment/my-nginx
 ## {{% heading "whatsnext" %}}
 
 
-- [애플리케이션 검사 및 디버깅에 `kubectl` 을 사용하는 방법](/docs/tasks/debug-application-cluster/debug-application-introspection/)에 대해 알아본다.
+- [애플리케이션 검사 및 디버깅에 `kubectl` 을 사용하는 방법](/ko/docs/tasks/debug/debug-application/debug-running-pod/)에 대해 알아본다.
 - [구성 모범 사례 및 팁](/ko/docs/concepts/configuration/overview/)을 참고한다.
diff --git a/content/ko/docs/concepts/cluster-administration/networking.md b/content/ko/docs/concepts/cluster-administration/networking.md
index b72d38a360..bfb1c67f9e 100644
--- a/content/ko/docs/concepts/cluster-administration/networking.md
+++ b/content/ko/docs/concepts/cluster-administration/networking.md
@@ -1,4 +1,6 @@
 ---
+
+
 title: 클러스터 네트워킹
 content_type: concept
 weight: 50
@@ -28,46 +30,7 @@ weight: 50
 찾는 방법 등을 알아야 한다. 쿠버네티스는 이런 것들을 다루는 대신
 다른 접근법을 취한다.
 
-## 쿠버네티스 네트워크 모델
-
-모든 `Pod` 에는 고유의 IP 주소가 있다. 즉, `Pod` 간에 링크를 명시적으로
-생성할 필요가 없으며 컨테이너 포트를 호스트 포트에 매핑할
-필요가 거의 없다. 이렇게 하면 포트 할당, 이름 지정, 서비스 검색, 로드 밸런싱,
-애플리케이션 구성 및 마이그레이션 관점에서 `Pod` 를 VM 또는
-물리적 호스트처럼 취급할 수 있는 깔끔하고, 하위 호환성
-있는 모델이 생성된다.
-
-쿠버네티스는 모든 네트워크 구현에 다음과 같은
-기본 요구 사항을 적용한다(의도적 네트워크 세분화 정책 제외).
-
-   * 노드의 파드는 NAT 없이 모든 노드의 모든 파드와 통신할 수 있다.
-   * 노드의 에이전트(예: 시스템 데몬, kubelet)는 해당 노드의 모든
-     파드와 통신할 수 있다.
-
-참고: 호스트 네트워크에서 실행되는 `Pod` 를 지원하는 리눅스와 같은 플랫폼의 경우, 다음의 요구 사항을
-적용한다.
-
-   * 노드의 호스트 네트워크에 있는 파드는 NAT 없이 모든 노드에 있는 모든
-     파드와 통신할 수 있다.
-
-이 모델은 전체적으로 덜 복잡할 뿐만 아니라, 쿠버네티스를 위해 VM에서
-컨테이너로 애플리케이션을 포팅할 때 충돌이 적게 구현하려는 요구와
-주로 호환된다. 잡이 이전에 VM에서 실행된 경우, VM에 IP가 있고
-프로젝트의 다른 VM과 통신할 수 있다. 이것은 동일한 기본 모델이다.
-
-쿠버네티스의 IP 주소는 그것의 IP 주소와 MAC 주소를 포함하여 `Pod` 범위에 존재한다(`Pod` 내
-컨테이너는 네트워크 네임스페이스를 공유함). 이것은 `Pod` 내 컨테이너가 모두
-`localhost` 에서 서로의 포트에 도달할 수 있다는 것을 의미한다. 또한
-`Pod` 내부의 컨테이너 포트의 사용을 조정해야하는 것을 의미하지만, 이것도
-VM 내의 프로세스와 동일하다. 이것을 "IP-per-pod(파드별 IP)" 모델이라고 
-한다.
-
-이것이 어떻게 구현되는 지는 사용 중인 특정 컨테이너 런타임의 세부 사항이다.
-
-`Pod` 로 전달하는 `Node` 자체의 포트(호스트 포트라고 함)를
-요청할 수 있지만, 이는 매우 틈새 작업이다. 전달이 구현되는 방법은
-컨테이너 런타임의 세부 사항이기도 하다. `Pod` 자체는
-호스트 포트의 존재 여부에 대해 인식하지 못한다.
+쿠버네티스 네트워킹 모델에 대한 상세 정보는 [여기](/ko/docs/concepts/services-networking/)를 참고한다.
 
 ## 쿠버네티스 네트워크 모델의 구현 방법
 
@@ -89,18 +52,6 @@ VM 내의 프로세스와 동일하다. 이것을 "IP-per-pod(파드별 IP)" 모
 프로젝트 [Antrea](https://github.com/vmware-tanzu/antrea)는 쿠버네티스 고유의 오픈소스 쿠버네티스 네트워킹 솔루션이다. 네트워킹 데이터 플레인으로 Open vSwitch를 활용한다. Open vSwitch는 리눅스와 윈도우를 모두 지원하는 고성능의 프로그래밍이 가능한 가상 스위치이다. Antrea는 Open vSwitch를 통해 쿠버네티스 네트워크 정책을 고성능의 효율적인 방식으로 구현할 수 있다.
 Antrea는 Open vSwitch의 "프로그래밍이 가능한" 특성으로 인해 Open vSwitch 위에 광범위한 네트워킹 및 보안 기능과 서비스를 구현할 수 있다.
 
-### Apstra의 AOS
-
-[AOS](https://www.apstra.com/products/aos/)는 단순한 통합 플랫폼에서 복잡한 데이터센터 환경을 만들고 관리하는 의도기반(Intent-Based) 네트워킹 시스템이다. AOS는 확장성이 뛰어난 분산 설계를 활용하여 네트워크 중단을 제거하면서 비용을 최소화한다.
-
-AOS 레퍼런스 디자인은 현재 레거시 Layer-2 스위칭 문제를 제거하는 Layer-3 연결 호스트를 지원한다. 이 Layer-3 호스트는 리눅스 서버(Debian, Ubuntu, CentOS)일 수 있으며 랙 상단 스위치(TOR)와 직접 BGP 인접 관계를 만든다. AOS는 라우팅 인접성을 자동화한 다음 쿠버네티스 디플로이먼트에서 일반적으로 사용되는 RHI(Route Health Injection)에 대한 세밀한 제어를 제공한다.
-
-AOS는 쿠버네티스가 애플리케이션 요구 사항에 따라 네트워크 정책을 신속하게 변경할 수 있는 풍부한 REST API 엔드포인트 셋을 제공한다. 네트워크 설계에 사용된 AOS 그래프 모델을 워크로드 프로비저닝과 통합하여 프라이빗 클라우드와 퍼블릭 클라우드 모두에 대한 엔드-투-엔드 관리 시스템을 향상시킬 수 있다.
-
-AOS는 Cisco, Arista, Dell, Mellanox, HPE 그리고 Microsoft SONiC, Dell OPX 및 Cumulus Linux와 같은 개방형 네트워크 운영체제와 수많은 화이트-박스 시스템을 포함한 제조업체의 일반적인 벤더 장비 사용을 지원한다.
-
-AOS 시스템 작동 방식에 대한 자세한 내용은 다음을 참고한다. https://www.apstra.com/products/how-it-works/
-
 ### 쿠버네티스용 AWS VPC CNI
 
 [AWS VPC CNI](https://github.com/aws/amazon-vpc-cni-k8s)는 쿠버네티스 클러스터를 위한 통합된 AWS 버추얼 프라이빗 클라우드(Virtual Private Cloud, VPC) 네트워킹을 제공한다. 이 CNI 플러그인은 높은 처리량과 가용성, 낮은 레이턴시(latency) 그리고 최소 네트워크 지터(jitter)를 제공한다. 또한, 사용자는 쿠버네티스 클러스터를 구축하기 위한 기존의 AWS VPC 네트워킹 및 보안 모범 사례를 적용할 수 있다. 여기에는 VPC 플로우 로그, VPC 라우팅 정책과 네트워크 트래픽 격리를 위한 보안 그룹을 사용하는 기능이 포함되어 있다.
@@ -114,18 +65,9 @@ AOS 시스템 작동 방식에 대한 자세한 내용은 다음을 참고한다
 
 Azure CNI는 [Azure 쿠버네티스 서비스(Azure Kubernetes Service, AKS)](https://docs.microsoft.com/en-us/azure/aks/configure-azure-cni)에서 기본적으로 사용할 수 있다.
 
-
-### Big Switch Networks의 빅 클라우드 패브릭(Big Cloud Fabric)
-
-[빅 클라우드 패브릭](https://www.bigswitch.com/container-network-automation)은 클라우드 네이티브 네트워킹 아키텍처로, 프라이빗 클라우드/온-프레미스 환경에서 쿠버네티스를 실행하도록 디자인되었다. 통합된 물리 및 가상 SDN을 사용하여, 빅 클라우드 패브릭은 로드 밸런싱, 가시성, 문제 해결, 보안 정책 및 컨테이너 트래픽 모니터링과 같은 내재한 컨테이너 네트워킹 문제를 해결한다.
-
-빅 클라우드 패브릭의 가상 파드 멀티 테넌트 아키텍처를 통해 쿠버네티스, RedHat OpenShift, Mesosphere DC/OS 및 Docker Swarm과 같은 컨테이너 오케스트레이션 시스템은 VMware, OpenStack 및 Nutanix와 같은 VM 오케스트레이션 시스템과 함께 네이티브로 통합된다. 고객은 원하는 수의 클러스터를 안전하게 상호 연결할 수 있으며 필요한 경우 이들 사이의 테넌트 간 통신을 활성화할 수 있다.
-
-가트너는 최신의 [매직 쿼드런트(Magic Quadrant)](https://go.bigswitch.com/17GatedDocuments-MagicQuadrantforDataCenterNetworking_Reg.html)에서 BCF를 비저너리(Visionary)로 인정했다. BCF 쿠버네티스 온-프레미스 디플로이먼트 중 하나(지리적으로 다른 리전에 걸쳐 여러 DC에서 실행되는 쿠버네티스, DC/OS 및 VMware 포함)도 [여기](https://portworx.com/architects-corner-kubernetes-satya-komala-nio/)에서 사례로 참조된다.
-
 ### 캘리코
 
-[캘리코](https://docs.projectcalico.org/)는 컨테이너, 가상 시스템 및 기본 호스트 기반 워크로드를 위한 오픈소스 네트워킹 및 네트워크 보안 솔루션이다. 캘리코는 순수 리눅스 eBPF 데이터플레인, 표준 리눅스 네트워킹 데이터플레인, 윈도우 HNS 데이터플레인을 포함한 여러 데이터플레인을 지원한다. 캘리코는 완전한 네트워킹 스택을 제공하지만, [클라우드 제공자 CNI](https://docs.projectcalico.org/networking/determine-best-networking#calico-compatible-cni-plugins-and-cloud-provider-integrations)와 함께 사용하여 네트워크 정책 시행을 제공할 수도 있다.
+[캘리코](https://projectcalico.docs.tigera.io/about/about-calico/)는 컨테이너, 가상 시스템 및 기본 호스트 기반 워크로드를 위한 오픈소스 네트워킹 및 네트워크 보안 솔루션이다. 캘리코는 순수 리눅스 eBPF 데이터플레인, 표준 리눅스 네트워킹 데이터플레인, 윈도우 HNS 데이터플레인을 포함한 여러 데이터플레인을 지원한다. 캘리코는 완전한 네트워킹 스택을 제공하지만, [클라우드 제공자 CNI](https://projectcalico.docs.tigera.io/networking/determine-best-networking#calico-compatible-cni-plugins-and-cloud-provider-integrations)와 함께 사용하여 네트워크 정책 시행을 제공할 수도 있다.
 
 ### 실리움(Cilium)
 
@@ -137,9 +79,9 @@ Azure CNI는 [Azure 쿠버네티스 서비스(Azure Kubernetes Service, AKS)](ht
 
 ### 화웨이의 CNI-Genie
 
-[CNI-Genie](https://github.com/Huawei-PaaS/CNI-Genie)는 쿠버네티스가 런타임 시 [쿠버네티스 네트워크 모델](https://github.com/kubernetes/website/blob/master/content/en/docs/concepts/cluster-administration/networking.md#the-kubernetes-network-model)의 [서로 다른 구현에 동시에 접근](https://github.com/Huawei-PaaS/CNI-Genie/blob/master/docs/multiple-cni-plugins/README.md#what-cni-genie-feature-1-multiple-cni-plugins-enables)할 수 있는 CNI 플러그인이다. 여기에는 [플라넬(Flannel)](https://github.com/coreos/flannel#flannel), [캘리코](https://docs.projectcalico.org/), [로마나(Romana)](https://romana.io), [위브넷(Weave-net)](https://www.weave.works/products/weave-net/)과 같은 [CNI 플러그인](https://github.com/containernetworking/cni#3rd-party-plugins)으로 실행되는 모든 구현이 포함된다.
+[CNI-Genie](https://github.com/cni-genie/CNI-Genie)는 쿠버네티스가 런타임 시 [쿠버네티스 네트워크 모델](/ko/docs/concepts/cluster-administration/networking/#쿠버네티스-네트워크-모델)의 [서로 다른 구현에 동시에 접근](https://github.com/cni-genie/CNI-Genie/blob/master/docs/multiple-cni-plugins/README.md#what-cni-genie-feature-1-multiple-cni-plugins-enables)할 수 있는 CNI 플러그인이다. 여기에는 [플라넬(Flannel)](https://github.com/flannel-io/flannel#flannel), [캘리코](https://projectcalico.docs.tigera.io/about/about-calico/), [위브넷(Weave-net)](https://www.weave.works/oss/net/)과 같은 [CNI 플러그인](https://github.com/containernetworking/cni#3rd-party-plugins)으로 실행되는 모든 구현이 포함된다.
 
-CNI-Genie는 각각 다른 CNI 플러그인에서 [하나의 파드에 여러 IP 주소를 할당](https://github.com/Huawei-PaaS/CNI-Genie/blob/master/docs/multiple-ips/README.md#feature-2-extension-cni-genie-multiple-ip-addresses-per-pod)하는 것도 지원한다.
+CNI-Genie는 각각 다른 CNI 플러그인에서 [하나의 파드에 여러 IP 주소를 할당](https://github.com/cni-genie/CNI-Genie/blob/master/docs/multiple-ips/README.md#feature-2-extension-cni-genie-multiple-ip-addresses-per-pod)하는 것도 지원한다.
 
 ### cni-ipvlan-vpc-k8s
 [cni-ipvlan-vpc-k8s](https://github.com/lyft/cni-ipvlan-vpc-k8s)는
@@ -162,9 +104,10 @@ VPC 라우팅 테이블을 조정하여 각 호스트에 인스턴스별 서브
 [Coil](https://github.com/cybozu-go/coil)은 통합이 용이하도록 설계된 CNI 플러그인으로 유연한 이그레스(egress) 네트워킹을 제공한다.
 Coil은 베어메탈에 비해 낮은 오버헤드로 작동하며, 외부 네트워크에 대해 임의의 이그레스 NAT 게이트웨이를 정의할 수 있다.
 
-### 콘티브(Contiv)
+### 콘티브-VPP(Contiv-VPP)
 
-[콘티브](https://github.com/contiv/netplugin)는 다양한 적용 사례에서 구성 가능한 네트워킹(BGP를 사용하는 네이티브 L3, vxlan을 사용하는 오버레이, 클래식 L2 또는 Cisco-SDN/ACI)을 제공한다. [콘티브](https://contiv.io)는 모두 오픈소스이다.
+[Contiv-VPP](https://contivpp.io/)는 유저 스페이스에서 동작하고 성능을 중시하는 쿠버네티스 네트워크 플러그인이며, 
+데이터 플레인으로 [fd.io](https://fd.io/)를 사용한다.
 
 ### 콘트레일(Contrail) / 텅스텐 패브릭(Tungsten Fabric)
 
@@ -184,52 +127,13 @@ Coil은 베어메탈에 비해 낮은 오버헤드로 작동하며, 외부 네
 
 ### 플라넬
 
-[플라넬](https://github.com/coreos/flannel#flannel)은 쿠버네티스 요구 사항을
+[플라넬](https://github.com/flannel-io/flannel#flannel)은 쿠버네티스 요구 사항을
 충족하는 매우 간단한 오버레이 네트워크이다. 많은
 경우에 쿠버네티스와 플라넬은 성공적으로 적용이 가능하다.
 
-### Google 컴퓨트 엔진(GCE)
+### Hybridnet
 
-Google 컴퓨트 엔진 클러스터 구성 스크립트의 경우, [고급
-라우팅](https://cloud.google.com/vpc/docs/routes)을 사용하여
-각 VM에 서브넷을 할당한다(기본값은 `/24` - 254개 IP). 해당 서브넷에 바인딩된
-모든 트래픽은 GCE 네트워크 패브릭에 의해 VM으로 직접 라우팅된다. 이는
-아웃 바운드 인터넷 접근을 위해 NAT로 구성된 VM에 할당된 "기본"
-IP 주소에 추가된다. 리눅스 브릿지(`cbr0`)는 해당 서브넷에 존재하도록
-구성되며, 도커의 `--bridge` 플래그로 전달된다.
-
-도커는 다음의 설정으로 시작한다.
-
-```shell
-DOCKER_OPTS="--bridge=cbr0 --iptables=false --ip-masq=false"
-```
-
-이 브릿지는 노드의 `.spec.podCIDR`에 따라 Kubelet(`--network-plugin=kubenet`
-플래그로 제어되는)에 의해 생성된다.
-
-도커는 이제 `cbr-cidr` 블록에서 IP를 할당한다. 컨테이너는 `cbr0` 브릿지를
-통해 서로 `Node` 에 도달할 수 있다. 이러한 IP는 모두 GCE 프로젝트 네트워크
-내에서 라우팅할 수 있다.
-
-그러나, GCE 자체는 이러한 IP에 대해 전혀 알지 못하므로, 아웃 바운드 인터넷 트래픽을 위해
-IP를 NAT하지 않는다. 그것을 달성하기 위해 iptables 규칙을 사용하여
-GCE 프로젝트 네트워크(10.0.0.0/8) 외부의 IP에 바인딩된 트래픽을
-마스커레이드(일명 SNAT - 마치 패킷이 `Node` 자체에서 온 것처럼
-보이게 함)한다.
-
-```shell
-iptables -t nat -A POSTROUTING ! -d 10.0.0.0/8 -o eth0 -j MASQUERADE
-```
-
-마지막으로 커널에서 IP 포워딩이 활성화되어 있으므로, 커널은 브릿지된 컨테이너에
-대한 패킷을 처리한다.
-
-```shell
-sysctl net.ipv4.ip_forward=1
-```
-
-이 모든 것의 결과는 모든 `Pod` 가 서로에게 도달할 수 있고 인터넷으로 트래픽을
-송신할 수 있다는 것이다.
+[Hybridnet](https://github.com/alibaba/hybridnet)은 하이브리드 클라우드를 위해 디자인된 오픈소스 CNI 플러그인이며 하나 또는 다수의 클러스터에 있는 컨테이너를 위한 오버레이 및 언더레이 네트워킹을 제공한다. 오버레이 및 언더레이 컨테이너는 동일한 노드에서 실행될 수 있으며 클러스터 범위의 양방향 네트워크 연결성을 가진다.
 
 ### 재규어(Jaguar)
 
@@ -265,9 +169,9 @@ Lars Kellogg-Stedman이 제공하는
 
 ### Multus(멀티 네트워크 플러그인)
 
-[Multus](https://github.com/Intel-Corp/multus-cni)는 쿠버네티스의 CRD 기반 네트워크 오브젝트를 사용하여 쿠버네티스에서 멀티 네트워킹 기능을 지원하는 멀티 CNI 플러그인이다.
+Multus는 쿠버네티스의 CRD 기반 네트워크 오브젝트를 사용하여 쿠버네티스에서 멀티 네트워킹 기능을 지원하는 멀티 CNI 플러그인이다.
 
-Multus는 CNI 명세를 구현하는 모든 [레퍼런스 플러그인](https://github.com/containernetworking/plugins)(예: [플라넬](https://github.com/containernetworking/plugins/tree/master/plugins/meta/flannel), [DHCP](https://github.com/containernetworking/plugins/tree/master/plugins/ipam/dhcp), [Macvlan](https://github.com/containernetworking/plugins/tree/master/plugins/main/macvlan)) 및 써드파티 플러그인(예: [캘리코](https://github.com/projectcalico/cni-plugin), [위브(Weave)](https://github.com/weaveworks/weave), [실리움](https://github.com/cilium/cilium), [콘티브](https://github.com/contiv/netplugin))을 지원한다. 또한, Multus는 쿠버네티스의 클라우드 네이티브 애플리케이션과 NFV 기반 애플리케이션을 통해 쿠버네티스의 [SRIOV](https://github.com/hustcat/sriov-cni), [DPDK](https://github.com/Intel-Corp/sriov-cni), [OVS-DPDK 및 VPP](https://github.com/intel/vhost-user-net-plugin) 워크로드를 지원한다.
+Multus는 CNI 명세를 구현하는 모든 [레퍼런스 플러그인](https://github.com/containernetworking/plugins)(예: [플라넬](https://github.com/containernetworking/cni.dev/blob/main/content/plugins/v0.9/meta/flannel.md), [DHCP](https://github.com/containernetworking/plugins/tree/master/plugins/ipam/dhcp), [Macvlan](https://github.com/containernetworking/plugins/tree/master/plugins/main/macvlan)) 및 써드파티 플러그인(예: [캘리코](https://github.com/projectcalico/cni-plugin), [위브(Weave)](https://github.com/weaveworks/weave), [실리움](https://github.com/cilium/cilium), [콘티브](https://github.com/contiv/netplugin))을 지원한다. 또한, Multus는 쿠버네티스의 클라우드 네이티브 애플리케이션과 NFV 기반 애플리케이션을 통해 쿠버네티스의 [SRIOV](https://github.com/hustcat/sriov-cni), [DPDK](https://github.com/Intel-Corp/sriov-cni), [OVS-DPDK 및 VPP](https://github.com/intel/vhost-user-net-plugin) 워크로드를 지원한다.
 
 ### OVN4NFV-K8s-Plugin (OVN 기반의 CNI 컨트롤러 & 플러그인)
 
@@ -279,18 +183,6 @@ Multus는 CNI 명세를 구현하는 모든 [레퍼런스 플러그인](https://
 
 [NSX-T 컨테이너 플러그인(NCP)](https://docs.vmware.com/en/VMware-NSX-T/2.0/nsxt_20_ncp_kubernetes.pdf)은 NSX-T와 쿠버네티스와 같은 컨테이너 오케스트레이터 사이의 통합은 물론, NSX-T와 Pivotal 컨테이너 서비스(PKS) 및 OpenShift와 같은 컨테이너 기반 CaaS/PaaS 플랫폼 간의 통합을 제공한다.
 
-### Nuage Networks VCS(가상 클라우드 서비스)
-
-[Nuage](https://www.nuagenetworks.net)는 확장성이 뛰어난 정책 기반의 소프트웨어 정의 네트워킹(SDN) 플랫폼을 제공한다. Nuage는 개방형 표준을 기반으로 구축된 풍부한 기능의 SDN 컨트롤러와 함께 데이터 플레인용 오픈소스 Open vSwitch를 사용한다.
-
-Nuage 플랫폼은 오버레이를 사용하여 쿠버네티스 파드와 쿠버네티스가 아닌 환경(VM 및 베어메탈 서버) 간에 완벽한 정책 기반의 네트워킹을 제공한다. Nuage의 정책 추상화 모델은 애플리케이션을 염두에 두고 설계되었으며 애플리케이션에 대한 세분화된 정책을 쉽게 선언할 수 있도록 한다. 플랫폼의 실시간 분석 엔진을 통해 쿠버네티스 애플리케이션에 대한 가시성과 보안 모니터링이 가능하다.
-
-### OpenVSwitch
-
-[OpenVSwitch](https://www.openvswitch.org/)는 다소 성숙하지만
-오버레이 네트워크를 구축하는 복잡한 방법이다. 이것은 네트워킹 분야의 몇몇
-"대형 벤더"에 의해 승인되었다.
-
 ### OVN(오픈 버추얼 네트워킹)
 
 OVN은 Open vSwitch 커뮤니티에서 개발한 오픈소스 네트워크
@@ -299,13 +191,9 @@ OVN은 Open vSwitch 커뮤니티에서 개발한 오픈소스 네트워크
 [ovn-kubernetes](https://github.com/openvswitch/ovn-kubernetes)에
 특정 쿠버네티스 플러그인 및 문서가 있다.
 
-### 로마나
-
-[로마나](https://romana.io)는 오버레이 네트워크 없이 쿠버네티스를 배포할 수 있는 오픈소스 네트워크 및 보안 자동화 솔루션이다. 로마나는 쿠버네티스 [네트워크 폴리시](/ko/docs/concepts/services-networking/network-policies/)를 지원하여 네트워크 네임스페이스에서 격리를 제공한다.
-
 ### Weaveworks의 위브넷
 
-[위브넷](https://www.weave.works/products/weave-net/)은
+[위브넷](https://www.weave.works/oss/net/)은
 쿠버네티스 및 호스팅된 애플리케이션을 위한 탄력적이고 사용하기 쉬운 네트워크이다.
 위브넷은 [CNI 플러그인](https://www.weave.works/docs/net/latest/cni-plugin/) 또는
 독립형으로 실행된다. 두 버전에서, 실행하기 위해 구성이나 추가 코드가 필요하지 않으며,
diff --git a/content/ko/docs/concepts/cluster-administration/system-logs.md b/content/ko/docs/concepts/cluster-administration/system-logs.md
index eff3c05a65..3dc9aa88b6 100644
--- a/content/ko/docs/concepts/cluster-administration/system-logs.md
+++ b/content/ko/docs/concepts/cluster-administration/system-logs.md
@@ -17,23 +17,70 @@ weight: 60
 
 ## Klog
 
-klog는 쿠버네티스의 로깅 라이브러리다. [klog](https://github.com/kubernetes/klog)
-는 쿠버네티스 시스템 컴포넌트의 로그 메시지를 생성한다.
+klog는 쿠버네티스의 로깅 라이브러리다. [klog](https://github.com/kubernetes/klog)는 
+쿠버네티스 시스템 컴포넌트의 로그 메시지를 생성한다.
 
 klog 설정에 대한 더 많은 정보는, [커맨드라인 툴](/ko/docs/reference/command-line-tools-reference/)을 참고한다.
 
+쿠버네티스는 각 컴포넌트의 로깅을 간소화하는 중에 있다. 
+다음 klog 명령줄 플래그는 쿠버네티스 1.23에서 
+[사용 중단](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components)되었으며 
+이후 릴리스에서 제거될 것이다.
+
+- `--add-dir-header`
+- `--alsologtostderr`
+- `--log-backtrace-at`
+- `--log-dir`
+- `--log-file`
+- `--log-file-max-size`
+- `--logtostderr`
+- `--one-output`
+- `--skip-headers`
+- `--skip-log-headers`
+- `--stderrthreshold`
+
+출력은 출력 형식에 관계없이 항상 표준 에러(stderr)에 기록될 것이다. 
+출력 리다이렉션은 쿠버네티스 컴포넌트를 호출하는 컴포넌트가 담당할 것으로 기대된다. 
+이는 POSIX 셸 또는 systemd와 같은 도구일 수 
+있다.
+
+배포판과 무관한(distroless) 컨테이너 또는 윈도우 시스템 서비스와 같은 몇몇 경우에서, 
+위의 옵션은 사용할 수 없다. 
+그런 경우 출력을 리다이렉트하기 위해 
+[`kube-log-runner`](https://github.com/kubernetes/kubernetes/blob/d2a8a81639fcff8d1221b900f66d28361a170654/staging/src/k8s.io/component-base/logs/kube-log-runner/README.md) 
+바이너리를 쿠버네티스 컴포넌트의 래퍼(wrapper)로 사용할 수 있다. 
+미리 빌드된 바이너리가 몇몇 쿠버네티스 베이스 이미지에 기본 이름 `/go-runner` 와 
+서버 및 노드 릴리스 아카이브에는 `kube-log-runner`라는 이름으로 포함되어 있다.
+
+다음 표는 각 `kube-log-runner` 실행법이 어떤 셸 리다이렉션에 해당되는지 보여준다.
+
+| 사용법                                    | POSIX 셸 (예:) bash) | `kube-log-runner <options> <cmd>`                           |
+| -----------------------------------------|----------------------------|-------------------------------------------------------------|
+| stderr와 stdout을 합치고, stdout으로 출력 | `2>&1`                     | `kube-log-runner` (기본 동작))                        |
+| stderr와 stdout을 로그 파일에 기록              | `1>>/tmp/log 2>&1`         | `kube-log-runner -log-file=/tmp/log`                        |
+| 로그 파일에 기록하면서 stdout으로 출력        | `2>&1 \| tee -a /tmp/log`  | `kube-log-runner -log-file=/tmp/log -also-stdout`           |
+| stdout만 로그 파일에 기록      | `>/tmp/log`                | `kube-log-runner -log-file=/tmp/log -redirect-stderr=false` |
+
+### Klog 출력
+
 klog 네이티브 형식 예 : 
 ```
 I1025 00:15:15.525108       1 httplog.go:79] GET /api/v1/namespaces/kube-system/pods/metrics-server-v0.3.1-57c75779f-9p8wg: (1.512ms) 200 [pod_nanny/v0.0.0 (linux/amd64) kubernetes/$Format 10.56.1.19:51756]
 ```
 
+메시지 문자열은 줄바꿈을 포함하고 있을 수도 있다.
+```
+I1025 00:15:15.525108       1 example.go:79] This is a message
+which has a line break.
+```
+
+
 ### 구조화된 로깅
 
-{{< feature-state for_k8s_version="v1.19" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
 
-{{<warning>}}
-구조화된 로그메시지로 마이그레이션은 진행중인 작업이다. 이 버전에서는 모든 로그 메시지가 구조화되지 않는다. 로그 파일을
-파싱할 때, 구조화되지 않은 로그 메시지도 처리해야 한다.
+{{< warning >}}
+구조화된 로그메시지로 마이그레이션은 진행중인 작업이다. 이 버전에서는 모든 로그 메시지가 구조화되지 않는다. 로그 파일을 파싱할 때, 구조화되지 않은 로그 메시지도 처리해야 한다.
 
 로그 형식 및 값 직렬화는 변경될 수 있다.
 {{< /warning>}}
@@ -42,7 +89,8 @@ I1025 00:15:15.525108       1 httplog.go:79] GET /api/v1/namespaces/kube-system/
 로그를 보다 쉽고 저렴하게 저장하고 처리하는 작업이다.
 새로운 메시지 형식은 이전 버전과 호환되며 기본적으로 활성화 된다.
 
-구조화된 로그 형식:
+구조화된 로그 메시지의 기본 형식은 텍스트이며, 
+기존 klog와 하위 호환되는 형식이다.
 
 ```ini
 <klog header> "<message>" <key1>="<value1>" <key2>="<value2>" ...
@@ -54,24 +102,77 @@ I1025 00:15:15.525108       1 httplog.go:79] GET /api/v1/namespaces/kube-system/
 I1025 00:15:15.525108       1 controller_utils.go:116] "Pod status updated" pod="kube-system/kubedns" status="ready"
 ```
 
+문자열은 따옴표로 감싸진다. 다른 값들은 
+[`%+v`](https://pkg.go.dev/fmt#hdr-Printing)로 포맷팅되며, 이로 인해 
+[데이터에 따라](https://github.com/kubernetes/kubernetes/issues/106428) 로그 메시지가 다음 줄로 이어질 수 있다.
+```
+I1025 00:15:15.525108       1 example.go:116] "Example" data="This is text with a line break\nand \"quotation marks\"." someInt=1 someFloat=0.1 someStruct={StringField: First line,
+second line.}
+```
+
+### 컨텍스츄얼 로깅(Contextual Logging)
+
+{{< feature-state for_k8s_version="v1.24" state="alpha" >}}
+
+컨텍스츄얼 로깅은 구조화된 로깅을 기반으로 한다. 
+컨텍스츄얼 로깅은 주로 개발자가 로깅 호출을 사용하는 방법에 관한 것이다. 
+해당 개념을 기반으로 하는 코드는 좀 더 유연하며, 
+[컨텍스츄얼 로깅 KEP](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/3077-contextual-logging)에 기술된 추가적인 사용 사례를 지원한다.
+
+개발자가 자신의 구성 요소에서 
+`WithValues` 또는 `WithName`과 같은 추가 기능을 사용하는 경우, 
+로그 항목에는 호출자가 함수로 전달하는 추가 정보가 포함된다.
+
+현재 이 기능은 `StructuredLogging` 기능 게이트 뒤에 있으며 
+기본적으로 비활성화되어 있다. 
+이 기능을 위한 인프라는 구성 요소를 수정하지 않고 1.24에 추가되었다. 
+[`component-base/logs/example`](https://github.com/kubernetes/kubernetes/blob/v1.24.0-beta.0/staging/src/k8s.io/component-base/logs/example/cmd/logger.go) 
+명령은 새 로깅 호출을 사용하는 방법과 
+컨텍스츄얼 로깅을 지원하는 구성 요소가 어떻게 작동하는지 보여준다.
+
+```console
+$ cd $GOPATH/src/k8s.io/kubernetes/staging/src/k8s.io/component-base/logs/example/cmd/
+$ go run . --help
+...
+      --feature-gates mapStringBool  A set of key=value pairs that describe feature gates for alpha/experimental features. Options are:
+                                     AllAlpha=true|false (ALPHA - default=false)
+                                     AllBeta=true|false (BETA - default=false)
+                                     ContextualLogging=true|false (ALPHA - default=false)
+$ go run . --feature-gates ContextualLogging=true
+...
+I0404 18:00:02.916429  451895 logger.go:94] "example/myname: runtime" foo="bar" duration="1m0s"
+I0404 18:00:02.916447  451895 logger.go:95] "example: another runtime" foo="bar" duration="1m0s"
+```
+
+`runtime` 메시지 및 `duration="1m0s"` 값을 로깅하는 
+기존 로깅 함수를 수정하지 않고도, 
+이 함수의 호출자에 의해 `example` 접두사 및 `foo="bar"` 문자열이 로그에 추가되었다.
+
+컨텍스츄얼 로깅이 비활성화되어 있으면, `WithValues` 및 `WithName` 은 아무 효과가 없으며, 
+로그 호출은 전역 klog 로거를 통과한다. 
+따라서 이 추가 정보는 더 이상 로그 출력에 포함되지 않는다.
+
+```console
+$ go run . --feature-gates ContextualLogging=false
+...
+I0404 18:03:31.171945  452150 logger.go:94] "runtime" duration="1m0s"
+I0404 18:03:31.171962  452150 logger.go:95] "another runtime" duration="1m0s"
+```
 
 ### JSON 로그 형식
 
 {{< feature-state for_k8s_version="v1.19" state="alpha" >}}
 
 {{<warning >}}
-
 JSON 출력은 많은 표준 klog 플래그를 지원하지 않는다. 지원하지 않는 klog 플래그 목록은, [커맨드라인 툴](/ko/docs/reference/command-line-tools-reference/)을 참고한다.
 
-모든 로그가 JSON 형식으로 작성되는 것은 아니다(예: 프로세스 시작 중). 로그를 파싱하려는 경우
-JSON 형식이 아닌 로그 행을 처리할 수 있는지 확인해야 한다.
+모든 로그가 JSON 형식으로 작성되는 것은 아니다(예: 프로세스 시작 중). 로그를 파싱하려는 경우 JSON 형식이 아닌 로그 행을 처리할 수 있는지 확인해야 한다.
 
 필드 이름과 JSON 직렬화는 변경될 수 있다.
 {{< /warning >}}
 
 `--logging-format=json` 플래그는 로그 형식을 klog 기본 형식에서 JSON 형식으로 변경한다.
-JSON 로그 형식 예시(보기좋게 출력된 형태):
-
+JSON 로그 형식 예시(보기좋게 출력된 형태)는 다음과 같다.
 ```json
 {
    "ts": 1580306777.04728,
@@ -98,40 +199,19 @@ JSON 로그 형식 예시(보기좋게 출력된 형태):
 * {{< glossary_tooltip term_id="kube-scheduler" text="kube-scheduler" >}}
 * {{< glossary_tooltip term_id="kubelet" text="kubelet" >}}
 
-### 로그 정리(sanitization)
-
-{{< feature-state for_k8s_version="v1.20" state="alpha" >}}
-
-{{<warning >}}
-로그 정리(sanitization)는 상당한 오버 헤드를 발생시킬 수 있으므로 프로덕션 환경에서는 사용하지 않아야한다.
-{{< /warning >}}
-
- `--experimental-logging-sanitization` 플래그는 klog 정리(sanitization) 필터를 활성화 한다.
-활성화된 경우 모든 로그 인자에서 민감한 데이터(예: 비밀번호, 키, 토큰)가 표시된 필드를 검사하고
-이러한 필드의 로깅이 방지된다.
-
-현재 로그 정리(sanitization)를 지원하는 컴포넌트 목록:
-* kube-controller-manager
-* kube-apiserver
-* kube-scheduler
-* kubelet
-
-{{< note >}}
-로그 정리(sanitization) 필터는 사용자 작업 로그로부터 민감한 데이터가 유출되는 것을 방지할 수 없다.
-{{< /note >}}
-
 ### 로그 상세 레벨(verbosity)
 
-`-v` 플래그로 로그 상세 레벨(verbosity)을 제어한다. 값을 늘리면 기록된 이벤트 수가 증가한다. 값을 줄이면
-기록된 이벤트 수가 줄어든다.
+`-v` 플래그로 로그 상세 레벨(verbosity)을 제어한다. 값을 늘리면 기록된 이벤트 수가 증가한다. 값을 줄이면 기록된 이벤트 수가 줄어든다.
 로그 상세 레벨(verbosity)를 높이면 점점 덜 심각한 이벤트가 기록된다. 로그 상세 레벨(verbosity)을 0으로 설정하면 중요한 이벤트만 기록된다.
 
 ### 로그 위치
 
-시스템 컴포넌트에는 컨테이너에서 실행되는 것과 컨테이너에서 실행되지 않는 두 가지 유형이 있다.  예를 들면 다음과 같다.
+시스템 컴포넌트에는 컨테이너에서 실행되는 것과 컨테이너에서 실행되지 않는 두 가지 유형이 있다.
+예를 들면 다음과 같다.
 
 * 쿠버네티스 스케줄러와 kube-proxy는 컨테이너에서 실행된다.
-* kubelet과 컨테이너 런타임(예: 도커)은 컨테이너에서 실행되지 않는다.
+* kubelet과 {{<glossary_tooltip term_id="container-runtime" text="컨테이너 런타임">}}은 
+  컨테이너에서 실행되지 않는다.
 
 systemd를 사용하는 시스템에서는, kubelet과 컨테이너 런타임은 jounald에 기록한다.
 그 외 시스템에서는, `/var/log` 디렉터리의 `.log` 파일에 기록한다.
@@ -145,4 +225,6 @@ systemd를 사용하는 시스템에서는, kubelet과 컨테이너 런타임은
 
 * [쿠버네티스 로깅 아키텍처](/ko/docs/concepts/cluster-administration/logging/) 알아보기
 * [구조화된 로깅](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/1602-structured-logging) 알아보기
+* [컨텍스츄얼 로깅](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/3077-contextual-logging) 알아보기
+* [klog 플래그 사용 중단](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components) 알아보기
 * [로깅 심각도(serverity) 규칙](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-instrumentation/logging.md) 알아보기
diff --git a/content/ko/docs/concepts/cluster-administration/system-traces.md b/content/ko/docs/concepts/cluster-administration/system-traces.md
new file mode 100644
index 0000000000..589c62eb86
--- /dev/null
+++ b/content/ko/docs/concepts/cluster-administration/system-traces.md
@@ -0,0 +1,89 @@
+---
+title: 쿠버네티스 시스템 컴포넌트에 대한 추적(trace)
+
+
+
+content_type: concept
+weight: 60
+---
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.22" state="alpha" >}}
+
+시스템 컴포넌트 추적은 클러스터 내에서 수행된 동작들 간의 지연(latency)과 관계(relationship)를 기록한다.
+
+쿠버네티스 컴포넌트들은 [OpenTelemetry 프로토콜](https://github.com/open-telemetry/opentelemetry-specification/blob/main/specification/protocol/otlp.md#opentelemetry-protocol-specification)과
+gRPC exporter를 이용하여 추적을 생성하고
+[OpenTelemetry 수집기](https://github.com/open-telemetry/opentelemetry-collector#-opentelemetry-collector)를
+통해 추적 백엔드(tracing backends)로 라우팅되거나 수집될 수 있다.
+
+<!-- body -->
+
+## 추적 수집
+
+추적 수집 및 수집기에 대한 전반적인 가이드는
+[OpenTelemetry 수집기 시작하기](https://opentelemetry.io/docs/collector/getting-started/)에서 제공한다.
+그러나, 쿠버네티스 컴포넌트에 관련된 몇 가지 사항에 대해서는 특별히 살펴볼 필요가 있다.
+
+기본적으로, 쿠버네티스 컴포넌트들은 [IANA OpenTelemetry 포트](https://www.iana.org/assignments/service-names-port-numbers/service-names-port-numbers.xhtml?search=opentelemetry)인
+4317 포트로 OTLP에 대한 grpc exporter를 이용하여 추적를 내보낸다.
+예를 들면, 수집기가 쿠버네티스 컴포넌트에 대해 사이드카(sidecar)로 동작한다면,
+다음과 같은 리시버 설정을 통해 span을 수집하고 그 로그를 표준 출력(standard output)으로 내보낼 것이다.
+
+```yaml
+receivers:
+  otlp:
+    protocols:
+      grpc:
+exporters:
+  # 이 exporter를 사용자의 백엔드를 위한 exporter로 변경
+  logging:
+    logLevel: debug
+service:
+  pipelines:
+    traces:
+      receivers: [otlp]
+      exporters: [logging]
+```
+
+## 컴포넌트 추적
+
+### kube-apiserver 추적
+
+kube-apiserver는 들어오는 HTTP 요청들과 
+webhook, etcd 로 나가는 요청들, 그리고 재진입 요청들에 대해 span을 생성한다. 
+kube-apiserver는 자주 퍼블릭 엔드포인트로 이용되기 때문에, 
+들어오는 요청들에 첨부된 추적 컨택스트를 사용하지 않고, 
+나가는 요청들을 통해 [W3C Trace Context](https://www.w3.org/TR/trace-context/)를 전파한다.
+
+#### kube-apiserver 에서의 추적 활성화
+
+추적을 활성화하기 위해서는, kube-apiserve에서 `APIServerTracing`
+[기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 활성화한다. 
+또한, kube-apiserver의 추적 설정 파일에 
+`--tracing-config-file=<path-to-config>`을 추가한다. 
+다음은 10000개 요청 당 1개에 대한 span을 기록하는 설정에 대한 예시이고, 이는 기본 OpenTelemetry 엔드포인트를 이용한다.
+
+```yaml
+apiVersion: apiserver.config.k8s.io/v1alpha1
+kind: TracingConfiguration
+# 기본값
+#endpoint: localhost:4317
+samplingRatePerMillion: 100
+```
+
+`TracingConfiguration` 구조체에 대해 더 많은 정보를 얻고 싶다면 
+[API server config API (v1alpha1)](/docs/reference/config-api/apiserver-config.v1alpha1/#apiserver-k8s-io-v1alpha1-TracingConfiguration)를 참고한다.
+
+## 안정성
+
+추적의 계측화(tracing instrumentation)는 여전히 활발히 개발되는 중이어서 다양한 형태로 변경될 수 있다. 
+span의 이름, 첨부되는 속성, 계측될 엔드포인트(instrumented endpoints)들 등이 그렇다. 
+이 속성이 안정화(graduates to stable)되기 전까지는 
+이전 버전과의 호환성은 보장되지 않는다.
+
+## {{% heading "whatsnext" %}}
+
+* [OpenTelemetry 수집기 시작하기](https://opentelemetry.io/docs/collector/getting-started/)을 참고
+
diff --git a/content/ko/docs/concepts/configuration/configmap.md b/content/ko/docs/concepts/configuration/configmap.md
index 841feb8fb3..e8e51ca728 100644
--- a/content/ko/docs/concepts/configuration/configmap.md
+++ b/content/ko/docs/concepts/configuration/configmap.md
@@ -15,7 +15,6 @@ weight: 20
 사용하여 데이터를 비공개로 유지하자.
 {{< /caution >}}
 
-
 <!-- body -->
 ## 사용 동기
 
@@ -42,7 +41,7 @@ API [오브젝트](/ko/docs/concepts/overview/working-with-objects/kubernetes-ob
 `spec` 이 있는 대부분의 쿠버네티스 오브젝트와 달리, 컨피그맵에는 `data` 및 `binaryData`
 필드가 있다. 이러한 필드는 키-값 쌍을 값으로 허용한다. `data` 필드와
 `binaryData` 는 모두 선택 사항이다. `data` 필드는
-UTF-8 바이트 시퀀스를 포함하도록 설계되었으며 `binaryData` 필드는 바이너리
+UTF-8 문자열을 포함하도록 설계되었으며 `binaryData` 필드는 바이너리
 데이터를 base64로 인코딩된 문자열로 포함하도록 설계되었다.
 
 컨피그맵의 이름은 유효한
@@ -61,6 +60,11 @@ v1.19부터 컨피그맵 정의에 `immutable` 필드를 추가하여
 기반으로 해당 파드의 컨테이너를 구성할 수 있다. 파드와 컨피그맵은
 동일한 {{< glossary_tooltip text="네임스페이스" term_id="namespace" >}}에 있어야 한다.
 
+{{< note >}}
+{{< glossary_tooltip text="스태틱(static) 파드" term_id="static-pod" >}}의 `spec`은 컨피그맵
+또는 다른 API 오브젝트를 참조할 수 없다.
+{{< /note >}}
+
 다음은 단일 값을 가진 키와,
 값이 구성 형식의 일부처럼 보이는 키를 가진 컨피그맵의
 예시이다.
@@ -234,6 +238,10 @@ kubelet은 모든 주기적인 동기화에서 마운트된 컨피그맵이 최
 
 환경 변수로 사용되는 컨피그맵은 자동으로 업데이트되지 않으며 파드를 다시 시작해야 한다.
 
+{{< note >}}
+컨피그맵을 [subPath](/ko/docs/concepts/storage/volumes/#using-subpath) 볼륨 마운트로 사용하는 컨테이너는 컨피그맵 업데이트를 받지 못할 것이다.
+{{< /note >}}
+
 ## 변경할 수 없는(immutable) 컨피그맵 {#configmap-immutable}
 
 {{< feature-state for_k8s_version="v1.21" state="stable" >}}
@@ -271,5 +279,6 @@ immutable: true
 
 * [시크릿](/ko/docs/concepts/configuration/secret/)에 대해 읽어본다.
 * [컨피그맵을 사용하도록 파드 구성하기](/docs/tasks/configure-pod-container/configure-pod-configmap/)를 읽어본다.
+* [컨피그맵 (또는 어떠한 쿠버네티스 오브젝트) 변경하기](/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/)를 읽어본다.
 * 코드를 구성에서 분리하려는 동기를 이해하려면
   [Twelve-Factor 앱](https://12factor.net/ko/)을 읽어본다.
diff --git a/content/ko/docs/concepts/configuration/manage-resources-containers.md b/content/ko/docs/concepts/configuration/manage-resources-containers.md
index 3084651390..0bb1a35566 100644
--- a/content/ko/docs/concepts/configuration/manage-resources-containers.md
+++ b/content/ko/docs/concepts/configuration/manage-resources-containers.md
@@ -1,11 +1,12 @@
 ---
-title: 컨테이너 리소스 관리
+title: 파드 및 컨테이너 리소스 관리
 content_type: concept
 weight: 40
 feature:
   title: 자동 빈 패킹(bin packing)
   description: >
-    리소스 요구 사항과 기타 제약 조건에 따라 컨테이너를 자동으로 배치하지만, 가용성은 그대로 유지한다. 활용도를 높이고 더 많은 리소스를 절약하기 위해 중요한(critical) 워크로드와 최선의(best-effort) 워크로드를 혼합한다.
+    리소스 요구 사항과 기타 제약 조건에 따라 컨테이너를 자동으로 배치하지만, 가용성은 그대로 유지한다. 
+    활용도를 높이고 더 많은 리소스를 절약하기 위해 중요한(critical) 워크로드와 최선의(best-effort) 워크로드를 혼합한다.
 ---
 
 <!-- overview -->
@@ -14,7 +15,8 @@ feature:
 {{< glossary_tooltip text="컨테이너" term_id="container" >}}에 필요한 각 리소스의 양을 선택적으로 지정할 수 있다.
 지정할 가장 일반적인 리소스는 CPU와 메모리(RAM) 그리고 다른 것들이 있다.
 
-파드에서 컨테이너에 대한 리소스 _요청(request)_ 을 지정하면, 스케줄러는 이 정보를
+파드에서 컨테이너에 대한 리소스 _요청(request)_ 을 지정하면, 
+{{< glossary_tooltip text="kube-scheduler" term_id="kube-scheduler" >}}는 이 정보를
 사용하여 파드가 배치될 노드를 결정한다. 컨테이너에 대한 리소스 _제한(limit)_ 을
 지정하면, kubelet은 실행 중인 컨테이너가 설정한 제한보다 많은 리소스를
 사용할 수 없도록 해당 제한을 적용한다. 또한 kubelet은
@@ -45,10 +47,9 @@ feature:
 다른 방식으로 동일한 제약을 구현할 수 있다.
 
 {{< note >}}
-컨테이너가 자체 메모리 제한을 지정하지만, 메모리 요청을 지정하지 않는 경우, 쿠버네티스는
-제한과 일치하는 메모리 요청을 자동으로 할당한다. 마찬가지로, 컨테이너가 자체 CPU 제한을
-지정하지만, CPU 요청을 지정하지 않는 경우, 쿠버네티스는 제한과 일치하는 CPU 요청을 자동으로
-할당한다.
+리소스에 대해 제한은 지정하지만 요청은 지정하지 않고, 
+해당 리소스에 대한 요청 기본값을 지정하는 승인-시점 메커니즘(admission-time mechanism)이 없는 경우, 
+쿠버네티스는 당신이 지정한 제한을 복사하여 해당 리소스의 요청 값으로 사용한다.
 {{< /note >}}
 
 ## 리소스 타입
@@ -56,7 +57,7 @@ feature:
 *CPU* 와 *메모리* 는 각각 *리소스 타입* 이다. 리소스 타입에는 기본 단위가 있다.
 CPU는 컴퓨팅 처리를 나타내며 [쿠버네티스 CPU](#cpu의-의미) 단위로 지정된다.
 메모리는 바이트 단위로 지정된다.
-쿠버네티스 v1.14 이상을 사용하는 경우, _huge page_ 리소스를 지정할 수 있다.
+리눅스 워크로드에 대해서는, _huge page_ 리소스를 지정할 수 있다.
 Huge page는 노드 커널이 기본 페이지 크기보다 훨씬 큰 메모리
 블록을 할당하는 리눅스 관련 기능이다.
 
@@ -74,12 +75,12 @@ CPU와 메모리를 통칭하여 *컴퓨트 리소스* 또는 *리소스* 라고
 수량이다. 이것은
 [API 리소스](/ko/docs/concepts/overview/kubernetes-api/)와는 다르다. 파드 및
 [서비스](/ko/docs/concepts/services-networking/service/)와 같은 API 리소스는
-쿠버네티스 API 서버를 통해 읽고 수정할 수
-있는 오브젝트이다.
+쿠버네티스 API 서버를 통해 읽고 수정할 수 있는 오브젝트이다.
 
 ## 파드와 컨테이너의 리소스 요청 및 제한
 
-파드의 각 컨테이너는 다음 중 하나 이상을 지정할 수 있다.
+각 컨테이너에 대해, 다음과 같은 
+리소스 제한(limit) 및 요청(request)을 지정할 수 있다.
 
 * `spec.containers[].resources.limits.cpu`
 * `spec.containers[].resources.limits.memory`
@@ -88,48 +89,64 @@ CPU와 메모리를 통칭하여 *컴퓨트 리소스* 또는 *리소스* 라고
 * `spec.containers[].resources.requests.memory`
 * `spec.containers[].resources.requests.hugepages-<size>`
 
-요청과 제한은 개별 컨테이너에서만 지정할 수 있지만,
-파드 리소스 요청 및 제한에 대해 이야기하는 것이 편리하다.
-특정 리소스 타입에 대한 *파드 리소스 요청/제한* 은 파드의 각 컨테이너에 대한
+요청 및 제한은 개별 컨테이너에 대해서만 지정할 수 있지만, 
+한 파드의 총 리소스 요청 및 제한에 대해 생각해 보는 것도 
+유용할 수 있다.
+특정 리소스 종류에 대해, *파드 리소스 요청/제한* 은 파드의 각 컨테이너에 대한
 해당 타입의 리소스 요청/제한의 합이다.
 
 ## 쿠버네티스의 리소스 단위
 
-### CPU의 의미
+### CPU 리소스 단위 {#meaning-of-cpu}
 
 CPU 리소스에 대한 제한 및 요청은 *cpu* 단위로 측정된다.
-쿠버네티스의 CPU 1개는 클라우드 공급자용 **vCPU/Core 1개** 와 베어메탈 인텔 프로세서에서의 **1개 하이퍼스레드** 에 해당한다.
+쿠버네티스에서, 1 CPU 단위는 노드가 물리 호스트인지 
+아니면 물리 호스트 내에서 실행되는 가상 머신인지에 따라 
+**1 물리 CPU 코어** 또는 **1 가상 코어** 에 해당한다.
 
-분수의 요청이 허용된다.
-`0.5` 의 `spec.containers[].resources.requests.cpu` 요청을 가진
-컨테이너는 CPU 1개를 요구하는 컨테이너의 절반만큼 CPU를 보장한다. `0.1` 이라는 표현은
+요청량을 소수점 형태로 명시할 수도 있다. 컨테이너의 
+`spec.containers[].resources.requests.cpu`를 `0.5`로 설정한다는 것은, 
+`1.0` CPU를 요청했을 때와 비교하여 절반의 CPU 타임을 요청한다는 의미이다. 
+CPU 자원의 단위와 관련하여, `0.1` 이라는 [수량](/docs/reference/kubernetes-api/common-definitions/quantity/) 표현은
 "백 밀리cpu"로 읽을 수 있는 `100m` 표현과 동일하다. 어떤 사람들은
 "백 밀리코어"라고 말하는데, 같은 것을 의미하는 것으로 이해된다.
-`0.1` 과 같이 소수점이 있는 요청은 API에 의해 `100m` 으로 변환되며, 
-`1m` 보다 더 정밀한 단위는 허용되지 않는다. 이러한 이유로, 
-`100m` 과 같은 형식이 선호될 수 있다.
 
-CPU는 항상 절대 수량으로 요청되며, 상대적 수량은 아니다.
-0.1은 단일 코어, 이중 코어 또는 48코어 시스템에서 동일한 양의 CPU이다.
+CPU 리소스는 항상 리소스의 절대량으로 표시되며, 상대량으로 표시되지 않는다. 
+예를 들어, 컨테이너가 싱글 코어, 듀얼 코어, 또는 48 코어 머신 중 어디에서 실행되는지와 상관없이 
+`500m` CPU는 거의 같은 양의 컴퓨팅 파워를 가리킨다.
 
-### 메모리의 의미
+{{< note >}}
+쿠버네티스에서 CPU 리소스를 `1m`보다 더 정밀한 단위로 표기할 수 없다. 
+이 때문에, CPU 단위를 `1.0` 또는 `1000m`보다 작은 밀리CPU 형태로 표기하는 것이 유용하다. 
+예를 들어, `0.005` 보다는 `5m`으로 표기하는 것이 좋다.
+{{< /note >}}
+
+### 메모리 리소스 단위 {#meaning-of-memory}
 
 `memory` 에 대한 제한 및 요청은 바이트 단위로 측정된다.
-E, P, T, G, M, K와 같은 접미사 중 하나를 사용하여 메모리를
+E, P, T, G, M, k 와 같은 
+[수량](/docs/reference/kubernetes-api/common-definitions/quantity/) 접미사 중 하나를 사용하여 메모리를
 일반 정수 또는 고정 소수점 숫자로 표현할 수 있다. Ei, Pi, Ti, Gi, Mi, Ki와
 같은 2의 거듭제곱을 사용할 수도 있다. 예를 들어, 다음은 대략 동일한 값을 나타낸다.
 
 ```shell
-128974848, 129e6, 129M, 123Mi
+128974848, 129e6, 129M, 128974848000m, 123Mi
 ```
 
-다음은 예제이다.
-다음 파드에는 두 개의 컨테이너가 있다. 각 컨테이너에는 0.25 cpu와
-64MiB(2<sup>26</sup> 바이트)의 메모리 요청이 있다. 각 컨테이너는 0.5
-cpu와 128MiB 메모리로 제한된다. 파드에 0.5 cpu와 128 MiB
-메모리, 1 cpu와 256MiB 메모리 제한이 있다고 말할 수 있다.
+접미사의 대소문자에 유의한다. 
+`400m`의 메모리를 요청하면, 이는 0.4 바이트를 요청한 것이다. 
+이 사람은 아마도 400 메비바이트(mebibytes) (`400Mi`) 또는 400 메가바이트 (`400M`) 를 요청하고 싶었을 것이다.
+
+## 컨테이너 리소스 예제 {#example-1}
+
+다음 파드는 두 컨테이너로 구성된다. 
+각 컨테이너는 0.25 CPU와 64 MiB(2<sup>26</sup> 바이트) 메모리 요청을 갖도록 정의되어 있다. 
+또한 각 컨테이너는 0.5 CPU와 128 MiB 메모리 제한을 갖는다. 
+이 경우 파드는 0.5 CPU와 128 MiB 메모리 요청을 가지며, 
+1 CPU와 256 MiB 메모리 제한을 갖는다.
 
 ```yaml
+---
 apiVersion: v1
 kind: Pod
 metadata:
@@ -162,58 +179,57 @@ spec:
 선택한다. 각 노드는 파드에 제공할 수 있는 CPU와 메모리 양과 같은 각 리소스 타입에 대해
 최대 용량을 갖는다. 스케줄러는 각 리소스 타입마다
 스케줄된 컨테이너의 리소스 요청 합계가
-노드 용량보다 작도록 한다. 참고로 노드의 실제 메모리나
+노드 용량보다 작도록 한다. 
+참고로 노드의 실제 메모리나
 CPU 리소스 사용량은 매우 적지만, 용량 확인에 실패한 경우
 스케줄러는 여전히 노드에 파드를 배치하지 않는다. 이는 리소스 사용량이
 나중에 증가할 때, 예를 들어, 일일 요청 비율이
 최대일 때 노드의 리소스 부족을 방지한다.
 
-## 리소스 제한이 있는 파드가 실행되는 방법
+## 쿠버네티스가 리소스 요청 및 제한을 적용하는 방법 {#how-pods-with-resource-limits-are-run}
 
-kubelet은 파드의 컨테이너를 시작할 때, CPU와 메모리 제한을
-컨테이너 런타임으로 전달한다.
+kubelet이 파드의 컨테이너를 시작할 때, 
+kubelet은 해당 컨테이너의 메모리/CPU 요청 및 제한을 컨테이너 런타임에 전달한다.
 
-도커를 사용하는 경우에는 다음과 같다.
+리눅스에서, 일반적으로 컨테이너 런타임은 
+적용될 커널 {{< glossary_tooltip text="cgroup" term_id="cgroup" >}}을 설정하고, 
+명시한 제한을 적용한다.
 
-- `spec.containers[].resources.requests.cpu` 는 잠재적인 분수이며,
-  1024를 곱한 값인 코어 값으로 변환된다. 이 숫자 또는 2보다
-  큰 값은 `docker run` 명령에서
-  [`--cpu-shares`](https://docs.docker.com/engine/reference/run/#cpu-share-constraint)
-  플래그의 값으로 사용된다.
+- CPU 제한은 해당 컨테이너가 사용할 수 있는 CPU 시간에 대한 강한 상한(hard ceiling)을 정의한다.
+  각 스케줄링 간격(시간 조각)마다, 리눅스 커널은 이 제한이 초과되었는지를 확인하고, 
+  만약 초과되었다면 cgroup의 실행 재개를 허가하지 않고 기다린다.
+- CPU 요청은 일반적으로 가중치 설정(weighting)을 정의한다. 
+  현재 부하율이 높은 시스템에서 여러 개의 컨테이너(cgroup)가 실행되어야 하는 경우, 
+  큰 CPU 요청값을 갖는 워크로드가 작은 CPU 요청값을 갖는 워크로드보다 더 많은 CPU 시간을 할당받는다.
+- 메모리 요청은 주로 (쿠버네티스) 파드 스케줄링 과정에서 사용된다. 
+  cgroup v2를 사용하는 노드에서, 컨테이너 런타임은 메모리 요청을 힌트로 사용하여 
+  `memory.min` 및 `memory.low`을 설정할 수 있다.
+- 메모리 제한은 해당 cgroup에 대한 메모리 사용량 상한을 정의한다. 
+  컨테이너가 제한보다 더 많은 메모리를 할당받으려고 시도하면, 
+  리눅스 커널의 메모리 부족(out-of-memory) 서브시스템이 활성화되고 
+  (일반적으로) 개입하여 메모리를 할당받으려고 했던 컨테이너의 프로세스 중 하나를 종료한다. 
+  해당 프로세스의 PID가 1이고, 컨테이너가 재시작 가능(restartable)으로 표시되어 있으면, 쿠버네티스가 해당 컨테이너를 재시작한다.
+- 파드 또는 컨테이너의 메모리 제한은 메모리 기반 볼륨(예: `emptyDir`)의 페이지에도 적용될 수 있다. 
+  kubelet은 `tmpfs` emptyDir 볼륨을 로컬 임시(ephemeral) 스토리지가 아닌 
+  컨테이너 메모리 사용으로 간주하여 추적한다.
 
-- 이 `spec.containers[].resources.limits.cpu` 값은 밀리코어 값으로 변환되고
-  100을 곱한 값이다. 그 결과 값은 컨테이너가 100ms마다 사용할 수 있는 총 CPU
-  시간이다. 이 간격 동안 컨테이너는 CPU 시간을 초과하여 사용할 수 없다.
+한 컨테이너가 메모리 요청을 초과하고 
+해당 노드의 메모리가 부족하지면, 
+해당 컨테이너가 속한 파드가 {{< glossary_tooltip text="축출" term_id="eviction" >}}될 수 있다.
 
-  {{< note >}}
-  기본 쿼터 기간은 100ms이다. 최소 CPU 쿼터는 1ms이다.
-  {{</ note >}}
+컨테이너가 비교적 긴 시간 동안 CPU 제한을 초과하는 것이 허용될 수도, 허용되지 않을 수도 있다.
+그러나, 컨테이너 런타임은 과도한 CPU 사용률을 이유로 파드 또는 컨테이너를 종료시키지는 않는다.
 
-- `spec.containers[].resources.limits.memory` 는 정수로 변환되어,
-  `docker run` 명령에서
-  [`--memory`](https://docs.docker.com/engine/reference/run/#/user-memory-constraints)
-  플래그의 값으로 사용된다.
-
-컨테이너가 메모리 제한을 초과하면, 컨테이너는 종료될 수 있다. 다시
-시작할 수 있으면, 다른 타입의 런타임 오류와 마찬가지로, kubelet이 다시
-시작한다.
-
-컨테이너가 메모리 요청을 초과하면, 노드에 메모리가
-부족할 때마다 파드가 축출될 수 있다.
-
-컨테이너가 오랫동안 CPU 제한을 초과하는 것은 허용되거나 허용되지
-않을 수 있다. 그러나, 과도한 CPU 사용으로 인해 종료되지는 않는다.
-
-리소스 제한으로 인해 컨테이너를 스케줄할 수 없는지 또는
-종료 중인지 확인하려면,
+리소스 제한으로 인해 컨테이너를 스케줄할 수 없는지 또는 종료 중인지 확인하려면,
 [문제 해결](#문제-해결) 섹션을 참조한다.
 
 ### 컴퓨트 및 메모리 리소스 사용량 모니터링
 
-파드의 리소스 사용량은 파드 상태의 일부로 보고된다.
+kubelet은 파드의 리소스 사용량을 파드 
+[`status`](/ko/docs/concepts/overview/working-with-objects/kubernetes-objects/#오브젝트-명세-spec-와-상태-status)에 포함하여 보고한다.
 
-클러스터에서 선택적인 모니터링 도구를
-사용할 수 있다면, [메트릭 API](/ko/docs/tasks/debug-application-cluster/resource-metrics-pipeline/#메트릭-api)에서
+클러스터에서 선택적인 [모니터링 도구](/ko/docs/tasks/debug/debug-cluster/resource-usage-monitoring/)를
+사용할 수 있다면, [메트릭 API](/ko/docs/tasks/debug/debug-cluster/resource-metrics-pipeline/#metrics-api)에서
 직접 또는 모니터링 도구에서 파드 리소스
 사용량을 검색할 수 있다.
 
@@ -308,21 +324,26 @@ kubelet은 로컬 임시 스토리지가 아닌 컨테이너 메모리 사용으
 
 ### 로컬 임시 스토리지에 대한 요청 및 제한 설정
 
-_임시-스토리지_ 를 사용하여 로컬 임시 저장소를 관리할 수 있다. 파드의 각 컨테이너는 다음 중 하나 이상을 지정할 수 있다.
+`ephemeral-storage`를 명시하여 로컬 임시 저장소를 관리할 수 있다. 
+파드의 각 컨테이너는 다음 중 하나 또는 모두를 명시할 수 있다.
 
 * `spec.containers[].resources.limits.ephemeral-storage`
 * `spec.containers[].resources.requests.ephemeral-storage`
 
-`ephemeral-storage` 에 대한 제한 및 요청은 바이트 단위로 측정된다. E, P, T, G, M, K와
-같은 접미사 중 하나를 사용하여 스토리지를 일반 정수 또는 고정 소수점 숫자로 표현할 수 있다.
+`ephemeral-storage` 에 대한 제한 및 요청은 바이트 단위로 측정된다. 
+E, P, T, G, M, K와 같은 접미사 중 하나를 사용하여 스토리지를 일반 정수 또는 고정 소수점 숫자로 표현할 수 있다.
 Ei, Pi, Ti, Gi, Mi, Ki와 같은 2의 거듭제곱을 사용할 수도 있다.
-예를 들어, 다음은 대략 동일한 값을 나타낸다.
+예를 들어, 다음은 거의 동일한 값을 나타낸다.
 
-```shell
-128974848, 129e6, 129M, 123Mi
-```
+- `128974848`
+- `129e6`
+- `129M`
+- `123Mi`
 
-다음 예에서, 파드에 두 개의 컨테이너가 있다. 각 컨테이너에는 2GiB의 로컬 임시 스토리지 요청이 있다. 각 컨테이너에는 4GiB의 로컬 임시 스토리지 제한이 있다. 따라서, 파드는 4GiB의 로컬 임시 스토리지 요청과 8GiB 로컬 임시 스토리지 제한을 가진다.
+다음 예에서, 파드에 두 개의 컨테이너가 있다. 
+각 컨테이너에는 2GiB의 로컬 임시 스토리지 요청이 있다. 
+각 컨테이너에는 4GiB의 로컬 임시 스토리지 제한이 있다. 
+따라서, 파드는 4GiB의 로컬 임시 스토리지 요청과 8GiB 로컬 임시 스토리지 제한을 가진다.
 
 ```yaml
 apiVersion: v1
@@ -338,6 +359,9 @@ spec:
         ephemeral-storage: "2Gi"
       limits:
         ephemeral-storage: "4Gi"
+    volumeMounts:
+    - name: ephemeral
+      mountPath: "/tmp"
   - name: log-aggregator
     image: images.my-company.example/log-aggregator:v6
     resources:
@@ -345,12 +369,20 @@ spec:
         ephemeral-storage: "2Gi"
       limits:
         ephemeral-storage: "4Gi"
+    volumeMounts:
+    - name: ephemeral
+      mountPath: "/tmp"
+  volumes:
+    - name: ephemeral
+      emptyDir: {}
 ```
 
-### 임시-스토리지 요청이 있는 파드의 스케줄링 방법
+### `ephemeral-storage` 요청이 있는 파드의 스케줄링 방법
 
-파드를 생성할 때, 쿠버네티스 스케줄러는 파드를 실행할 노드를
-선택한다. 각 노드에는 파드에 제공할 수 있는 최대 임시 스토리지 공간이 있다. 자세한 정보는, [노드 할당 가능](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)을 참조한다.
+파드를 생성할 때, 쿠버네티스 스케줄러는 파드를 실행할 노드를 선택한다. 
+각 노드에는 파드에 제공할 수 있는 최대 임시 스토리지 공간이 있다. 
+자세한 정보는, 
+[노드 할당 가능](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)을 참조한다.
 
 스케줄러는 스케줄된 컨테이너의 리소스 요청 합계가 노드 용량보다 작도록 한다.
 
@@ -483,15 +515,19 @@ kubelet은 각 `emptyDir` 볼륨, 컨테이너 로그 디렉터리 및 쓰기 
 [장치 플러그인](/ko/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)을 참조한다.
 
 ##### 기타 리소스
+
 새로운 노드-레벨의 확장된 리소스를 알리기 위해, 클러스터 운영자는
 API 서버에 `PATCH` HTTP 요청을 제출하여 클러스터의
 노드에 대해 `status.capacity` 에서 사용할 수 있는 수량을 지정할 수 있다. 이 작업
 후에는, 노드의 `status.capacity` 에 새로운 리소스가 포함된다. 이
 `status.allocatable` 필드는 kubelet에 의해 비동기적으로 새로운
-리소스로 자동 업데이트된다. 참고로 스케줄러가 파드 적합성을 평가할 때 노드
-`status.allocatable` 값을 사용하므로, 노드 용량을
-새 리소스로 패치하는 것과 해당 노드에서 리소스를 스케줄하도록 요청하는 첫 번째 파드
-사이에 약간의 지연이 있을 수 있다.
+리소스로 자동 업데이트된다. 
+
+스케줄러가 파드 적합성을 평가할 때 노드의 `status.allocatable` 값을 사용하므로, 
+스케줄러는 해당 비동기 업데이트 이후의 새로운 값만을 고려한다. 
+따라서 노드 용량을 새 리소스로 패치하는 시점과 
+해당 자원을 요청하는 첫 파드가 해당 노드에 스케줄될 수 있는 시점 사이에 
+약간의 지연이 있을 수 있다.
 
 **예제:**
 
@@ -518,7 +554,7 @@ JSON-Pointer로 해석된다. 더 자세한 내용은,
 클러스터-레벨의 확장된 리소스는 노드에 연결되지 않는다. 이들은 일반적으로
 리소스 소비와 리소스 쿼터를 처리하는 스케줄러 익스텐더(extender)에 의해 관리된다.
 
-[스케줄러 정책 구성](/docs/reference/config-api/kube-scheduler-policy-config.v1/)에서
+[스케줄러 구성](/docs/reference/config-api/kube-scheduler-config.v1beta3/)에서
 스케줄러 익스텐더가 처리하는 확장된 리소스를 지정할 수 있다.
 
 **예제:**
@@ -601,26 +637,31 @@ spec:
 
 ## PID 제한
 
-프로세스 ID(PID) 제한은 kubelet의 구성에 대해 주어진 파드가 사용할 수 있는 PID 수를 제한할 수 있도록 허용한다. 자세한 내용은 [Pid 제한](/docs/concepts/policy/pid-limiting/)을 참고한다.
+프로세스 ID(PID) 제한은 kubelet의 구성에 대해 
+주어진 파드가 사용할 수 있는 PID 수를 제한할 수 있도록 허용한다. 
+자세한 내용은 [PID 제한](/docs/concepts/policy/pid-limiting/)을 참고한다.
 
 ## 문제 해결
 
-### 내 파드가 failedScheduling 이벤트 메시지로 보류 중이다
+### 내 파드가 `FailedScheduling` 이벤트 메시지로 보류 중이다
 
-파드가 배치될 수 있는 노드를 스케줄러가 찾을 수 없으면, 노드를
-찾을 수 있을 때까지 파드는 스케줄되지 않은 상태로 유지한다. 스케줄러가 다음과 같이
-파드의 위치를 ​​찾지 못하면 이벤트가 생성된다.
+파드가 배치될 수 있는 노드를 스케줄러가 찾을 수 없으면, 
+노드를 찾을 수 있을 때까지 파드는 스케줄되지 않은 상태로 유지한다. 
+파드가 할당될 곳을 스케줄러가 찾지 못하면 
+[Event](/docs/reference/kubernetes-api/cluster-resources/event-v1/)가 생성된다. 
+다음과 같이 `kubectl`을 사용하여 파드의 이벤트를 볼 수 있다.
 
 ```shell
-kubectl describe pod frontend | grep -A 3 Events
+kubectl describe pod frontend | grep -A 9999999999 Events
 ```
 ```
 Events:
-  FirstSeen LastSeen   Count  From          Subobject   PathReason      Message
-  36s   5s     6      {scheduler }              FailedScheduling  Failed for reason PodExceedsFreeCPU and possibly others
+  Type     Reason            Age   From               Message
+  ----     ------            ----  ----               -------
+  Warning  FailedScheduling  23s   default-scheduler  0/42 nodes available: insufficient cpu
 ```
 
-위의 예에서, 노드의 CPU 리소스가 충분하지 않아 이름이
+위의 예에서, 모든 노드의 CPU 리소스가 충분하지 않아 이름이
 "frontend"인 파드를 스케줄하지 못했다. 비슷한 메시지로
 메모리 부족(PodExceedsFreeMemory)으로 인한 장애도 알릴 수 있다. 일반적으로, 파드가
 이 타입의 메시지로 보류 중인 경우, 몇 가지 시도해 볼 것들이 있다.
@@ -630,6 +671,9 @@ Events:
 - 파드가 모든 노드보다 크지 않은지 확인한다. 예를 들어, 모든
   노드의 용량이 `cpu: 1` 인 경우, `cpu: 1.1` 요청이 있는 파드는
   절대 스케줄되지 않는다.
+- 노드 테인트를 확인한다. 
+  대부분의 노드에 테인트가 걸려 있고, 신규 파드가 해당 테인트에 배척된다면, 
+  스케줄러는 해당 테인트가 걸려 있지 않은 나머지 노드에만 배치를 고려할 것이다.
 
 `kubectl describe nodes` 명령으로 노드 용량과 할당된 양을
 확인할 수 있다. 예를 들면, 다음과 같다.
@@ -664,21 +708,34 @@ Allocated resources:
   680m (34%)      400m (20%)    920Mi (11%)        1070Mi (13%)
 ```
 
-위의 출력에서, ​파드가 1120m 이상의 CPU 또는 6.23Gi의 메모리를
-요청하는 것은 노드에 맞지 않음을 알 수 있다.
+위의 출력에서, 1.120 이상의 CPU 또는 6.23 Gi 이상의 메모리를 요청하는 파드는 
+노드에 할당될 수 없음을 확인할 수 있다.
 
-`Pods` 섹션을 살펴보면, 파드가 노드에서 공간을 차지하는 것을
+"Pods" 섹션을 살펴보면, 어떤 파드가 노드에서 공간을 차지하고 있는지를
 볼 수 있다.
 
-시스템 데몬이 사용 가능한 리소스의 일부를 사용하기 때문에, 파드에
-사용 가능한 리소스의 양이 노드 용량보다 적다. `allocatable` 필드
-[NodeStatus](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#nodestatus-v1-core)는
-파드가 사용할 수 있는 리소스의 양을 제공한다. 자세한 정보는
-[노드 할당 가능 리소스](https://git.k8s.io/community/contributors/design-proposals/node/node-allocatable.md)를 참조한다.
+사용 가능한 리소스의 일부를 시스템 데몬이 사용하기 때문에, 
+파드에 사용 가능한 리소스의 양은 노드 총 용량보다 적다. 
+쿠버네티스 API에서, 각 노드는 `.status.allocatable` 필드(상세 사항은 
+[NodeStatus](/docs/reference/kubernetes-api/cluster-resources/node-v1/#NodeStatus) 참조)를 
+갖는다.
 
-[리소스 쿼터](/ko/docs/concepts/policy/resource-quotas/) 기능은
-소비될 수 있는 리소스의 총량을 제한하도록 구성할 수 있다. 네임스페이스와
-함께 사용하면, 한 팀이 모든 리소스를 사용하는 경우를 방지할 수 있다.
+`.status.allocatable` 필드는 해당 노드에서 파드가 사용할 수 있는 
+리소스의 양을 표시한다(예: 15 vCPUs 및 7538 MiB 메모리).
+쿠버네티스의 노드 할당 가능 리소스에 대한 상세 사항은 
+[시스템 데몬을 위한 컴퓨트 자원 예약하기](/docs/tasks/administer-cluster/reserve-compute-resources/)를 참고한다.
+
+[리소스 쿼터](/ko/docs/concepts/policy/resource-quotas/)를 설정하여, 
+한 네임스페이스가 사용할 수 있는 리소스 총량을 제한할 수 있다. 
+특정 네임스페이스 내에 ResourceQuota가 설정되어 있으면 
+쿠버네티스는 오브젝트에 대해 해당 쿼터를 적용한다. 
+예를 들어, 각 팀에 네임스페이스를 할당한다면, 각 네임스페이스에 ResourceQuota를 설정할 수 있다. 
+리소스 쿼터를 설정함으로써 한 팀이 지나치게 많은 리소스를 사용하여 
+다른 팀에 영향을 주는 것을 막을 수 있다.
+
+해당 네임스페이스에 어떤 접근을 허용할지도 고려해야 한다. 
+네임스페이스에 대한 **완전한** 쓰기 권한을 가진 사람은 
+어떠한 리소스(네임스페이스에 설정된 ResourceQuota 포함)라도 삭제할 수 있다.
 
 ### 내 컨테이너가 종료되었다
 
@@ -689,6 +746,8 @@ Allocated resources:
 ```shell
 kubectl describe pod simmemleak-hra99
 ```
+
+출력은 다음과 같다.
 ```
 Name:                           simmemleak-hra99
 Namespace:                      default
@@ -699,56 +758,47 @@ Status:                         Running
 Reason:
 Message:
 IP:                             10.244.2.75
-Replication Controllers:        simmemleak (1/1 replicas created)
 Containers:
   simmemleak:
-    Image:  saadali/simmemleak
+    Image:  saadali/simmemleak:latest
     Limits:
-      cpu:                      100m
-      memory:                   50Mi
-    State:                      Running
-      Started:                  Tue, 07 Jul 2015 12:54:41 -0700
-    Last Termination State:     Terminated
-      Exit Code:                1
-      Started:                  Fri, 07 Jul 2015 12:54:30 -0700
-      Finished:                 Fri, 07 Jul 2015 12:54:33 -0700
-    Ready:                      False
-    Restart Count:              5
+      cpu:          100m
+      memory:       50Mi
+    State:          Running
+      Started:      Tue, 07 Jul 2019 12:54:41 -0700
+    Last State:     Terminated
+      Reason:       OOMKilled
+      Exit Code:    137
+      Started:      Fri, 07 Jul 2019 12:54:30 -0700
+      Finished:     Fri, 07 Jul 2019 12:54:33 -0700
+    Ready:          False
+    Restart Count:  5
 Conditions:
   Type      Status
   Ready     False
 Events:
-  FirstSeen                         LastSeen                         Count  From                              SubobjectPath                       Reason      Message
-  Tue, 07 Jul 2015 12:53:51 -0700   Tue, 07 Jul 2015 12:53:51 -0700  1      {scheduler }                                                          scheduled   Successfully assigned simmemleak-hra99 to kubernetes-node-tf0f
-  Tue, 07 Jul 2015 12:53:51 -0700   Tue, 07 Jul 2015 12:53:51 -0700  1      {kubelet kubernetes-node-tf0f}    implicitly required container POD   pulled      Pod container image "k8s.gcr.io/pause:0.8.0" already present on machine
-  Tue, 07 Jul 2015 12:53:51 -0700   Tue, 07 Jul 2015 12:53:51 -0700  1      {kubelet kubernetes-node-tf0f}    implicitly required container POD   created     Created with docker id 6a41280f516d
-  Tue, 07 Jul 2015 12:53:51 -0700   Tue, 07 Jul 2015 12:53:51 -0700  1      {kubelet kubernetes-node-tf0f}    implicitly required container POD   started     Started with docker id 6a41280f516d
-  Tue, 07 Jul 2015 12:53:51 -0700   Tue, 07 Jul 2015 12:53:51 -0700  1      {kubelet kubernetes-node-tf0f}    spec.containers{simmemleak}         created     Created with docker id 87348f12526a
+  Type    Reason     Age   From               Message
+  ----    ------     ----  ----               -------
+  Normal  Scheduled  42s   default-scheduler  Successfully assigned simmemleak-hra99 to kubernetes-node-tf0f
+  Normal  Pulled     41s   kubelet            Container image "saadali/simmemleak:latest" already present on machine
+  Normal  Created    41s   kubelet            Created container simmemleak
+  Normal  Started    40s   kubelet            Started container simmemleak
+  Normal  Killing    32s   kubelet            Killing container with id ead3fb35-5cf5-44ed-9ae1-488115be66c6: Need to kill Pod
 ```
 
 앞의 예제에서, `Restart Count:  5` 표시는 파드의 `simmemleak`
-컨테이너가 종료되고 5번 다시 시작되었음을 나타낸다.
+컨테이너가 종료되고 (지금까지) 5번 다시 시작되었음을 나타낸다.
+`Reason: OOMKilled`를 통해 컨테이너가 제한보다 많은 양의 메모리를 사용하려고 했다는 것을 확인할 수 있다.
 
-이전에 종료된 컨테이너의 상태를 가져오기 위해 `-o go-template=...` 옵션을 사용해서
-`kubectl get pod` 를 호출할 수 있다.
-
-```shell
-kubectl get pod -o go-template='{{range.status.containerStatuses}}{{"Container Name: "}}{{.name}}{{"\r\nLastState: "}}{{.lastState}}{{end}}'  simmemleak-hra99
-```
-```
-Container Name: simmemleak
-LastState: map[terminated:map[exitCode:137 reason:OOM Killed startedAt:2015-07-07T20:58:43Z finishedAt:2015-07-07T20:58:43Z containerID:docker://0e4095bba1feccdfe7ef9fb6ebffe972b4b14285d5acdec6f0d3ae8a22fad8b2]]
-```
-
-컨테이너가 `reason:OOM Killed`(`OOM` 은 메모리 부족(Out Of Memory)의 약자) 때문에 종료된 것을 알 수 있다.
+다음 단계로 메모리 누수가 있는지 애플리케이션 코드를 확인해 볼 수 있다. 
+애플리케이션이 예상한 대로 동작하는 것을 확인했다면, 
+해당 컨테이너의 메모리 제한(및 요청)을 더 높게 설정해 본다.
 
 ## {{% heading "whatsnext" %}}
 
 * [컨테이너와 파드에 메모리 리소스를 할당](/ko/docs/tasks/configure-pod-container/assign-memory-resource/)하는 핸즈온 경험을 해보자.
 * [컨테이너와 파드에 CPU 리소스를 할당](/docs/tasks/configure-pod-container/assign-cpu-resource/)하는 핸즈온 경험을 해보자.
-* 요청과 제한의 차이점에 대한 자세한 내용은,
-  [리소스 QoS](https://git.k8s.io/community/contributors/design-proposals/node/resource-qos.md)를 참조한다.
-* [컨테이너](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core) API 레퍼런스 읽어보기
-* [ResourceRequirements](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#resourcerequirements-v1-core) API 레퍼런스 읽어보기
-* XFS의 [프로젝트 쿼터](https://xfs.org/docs/xfsdocs-xml-dev/XFS_User_Guide/tmp/en-US/html/xfs-quotas.html)에 대해 읽어보기
-* [kube-scheduler 정책 레퍼런스 (v1)](/docs/reference/config-api/kube-scheduler-policy-config.v1/)에 대해 더 읽어보기
+* API 레퍼런스에 [컨테이너](/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container)와 
+  [컨테이너 리소스 요구사항](/docs/reference/kubernetes-api/workload-resources/pod-v1/#resources)이 어떻게 정의되어 있는지 확인한다.
+* XFS의 [프로젝트 쿼터](https://xfs.org/index.php/XFS_FAQ#Q:_Quota:_Do_quotas_work_on_XFS.3F)에 대해 읽어보기
+* [kube-scheduler 정책 레퍼런스 (v1beta3)](/docs/reference/config-api/kube-scheduler-config.v1beta3/)에 대해 더 읽어보기
diff --git a/content/ko/docs/concepts/configuration/organize-cluster-access-kubeconfig.md b/content/ko/docs/concepts/configuration/organize-cluster-access-kubeconfig.md
index aa739b381c..48b3c9a960 100644
--- a/content/ko/docs/concepts/configuration/organize-cluster-access-kubeconfig.md
+++ b/content/ko/docs/concepts/configuration/organize-cluster-access-kubeconfig.md
@@ -148,7 +148,28 @@ kubeconfig 파일에서 파일과 경로 참조는 kubeconfig 파일의 위치
 `$HOME/.kube/config`에서 상대 경로는 상대적으로, 절대 경로는
 절대적으로 저장한다.
 
+## 프록시
 
+다음과 같이 kubeconfig 파일에 `proxy-url`을 설정하여 `kubectl`이 프록시를 거치도록 설정할 수 있다.
+
+```yaml
+apiVersion: v1
+kind: Config
+
+proxy-url: https://proxy.host:3128
+
+clusters:
+- cluster:
+  name: development
+
+users:
+- name: developer
+
+contexts:
+- context:
+  name: development
+
+```
 
 
 ## {{% heading "whatsnext" %}}
diff --git a/content/ko/docs/concepts/configuration/overview.md b/content/ko/docs/concepts/configuration/overview.md
index 17fd61c6a6..8b33e3322e 100644
--- a/content/ko/docs/concepts/configuration/overview.md
+++ b/content/ko/docs/concepts/configuration/overview.md
@@ -21,7 +21,7 @@ weight: 10
 
 - JSON보다는 YAML을 사용해 구성 파일을 작성한다. 비록 이러한 포맷들은 대부분의 모든 상황에서 통용되어 사용될 수 있지만, YAML이 좀 더 사용자 친화적인 성향을 가진다.
 
-- 의미상 맞다면 가능한 연관된 오브젝트들을 하나의 파일에 모아 놓는다. 때로는 여러 개의 파일보다 하나의 파일이 더 관리하기 쉽다. 이 문법의 예시로서 [guestbook-all-in-one.yaml](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/guestbook/all-in-one/guestbook-all-in-one.yaml) 파일을 참고한다.
+- 의미상 맞다면 가능한 연관된 오브젝트들을 하나의 파일에 모아 놓는다. 때로는 여러 개의 파일보다 하나의 파일이 더 관리하기 쉽다. 이 문법의 예시로서 [guestbook-all-in-one.yaml](https://github.com/kubernetes/examples/tree/master/guestbook/all-in-one/guestbook-all-in-one.yaml) 파일을 참고한다.
 
 - 많은 `kubectl` 커맨드들은 디렉터리에 대해 호출될 수 있다. 예를 들어, 구성 파일들의 디렉터리에 대해 `kubectl apply`를 호출할 수 있다.
 
@@ -55,7 +55,7 @@ DNS 서버는 새로운 `서비스`를 위한 쿠버네티스 API를 Watch하며
 
   만약 오직 디버깅의 목적으로 포트에 접근해야 한다면, [apiserver proxy](/ko/docs/tasks/access-application-cluster/access-cluster/#수작업으로-apiserver-proxy-url을-구축) 또는 [`kubectl port-forward`](/ko/docs/tasks/access-application-cluster/port-forward-access-application-cluster/)를 사용할 수 있다.
 
-  만약 파드의 포트를 노드에서 명시적으로 노출해야 한다면, `hostPort`에 의존하기 전에 [NodePort](/ko/docs/concepts/services-networking/service/#nodeport) 서비스를 사용하는 것을 고려할 수 있다.
+  만약 파드의 포트를 노드에서 명시적으로 노출해야 한다면, `hostPort`에 의존하기 전에 [NodePort](/ko/docs/concepts/services-networking/service/#type-nodeport) 서비스를 사용하는 것을 고려할 수 있다.
 
 - `hostPort`와 같은 이유로, `hostNetwork`를 사용하는 것을 피한다.
 
@@ -63,7 +63,7 @@ DNS 서버는 새로운 `서비스`를 위한 쿠버네티스 API를 Watch하며
 
 ## 레이블 사용하기
 
-- `{ app: myapp, tier: frontend, phase: test, deployment: v3 }`처럼 애플리케이션이나 디플로이먼트의 __속성에 대한 의미__ 를 식별하는 [레이블](/ko/docs/concepts/overview/working-with-objects/labels/)을 정의해 사용한다. 다른 리소스를 위해 적절한 파드를 선택하는 용도로 이러한 레이블을 이용할 수 있다. 예를 들어, 모든 `tier: frontend` 파드를 선택하거나, `app: myapp`의 모든 `phase: test` 컴포넌트를 선택하는 서비스를 생각해 볼 수 있다. 이 접근 방법의 예시는 [방명록](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/guestbook/) 앱을 참고한다.
+- `{ app: myapp, tier: frontend, phase: test, deployment: v3 }`처럼 애플리케이션이나 디플로이먼트의 __속성에 대한 의미__ 를 식별하는 [레이블](/ko/docs/concepts/overview/working-with-objects/labels/)을 정의해 사용한다. 다른 리소스를 위해 적절한 파드를 선택하는 용도로 이러한 레이블을 이용할 수 있다. 예를 들어, 모든 `tier: frontend` 파드를 선택하거나, `app: myapp`의 모든 `phase: test` 컴포넌트를 선택하는 서비스를 생각해 볼 수 있다. 이 접근 방법의 예시는 [방명록](https://github.com/kubernetes/examples/tree/master/guestbook/) 앱을 참고한다.
 
 릴리스에 특정되는 레이블을 서비스의 셀렉터에서 생략함으로써 여러 개의 디플로이먼트에 걸치는 서비스를 생성할 수 있다. 동작 중인 서비스를 다운타임 없이 갱신하려면, [디플로이먼트](/ko/docs/concepts/workloads/controllers/deployment/)를 사용한다.
 
@@ -73,32 +73,6 @@ DNS 서버는 새로운 `서비스`를 위한 쿠버네티스 API를 Watch하며
 
 - 디버깅을 위해 레이블을 조작할 수 있다. (레플리카셋과 같은) 쿠버네티스 컨트롤러와 서비스는 셀렉터 레이블을 사용해 파드를 선택하기 때문에, 관련된 레이블을 파드에서 삭제하는 것은 컨트롤러로부터 관리되거나 서비스로부터 트래픽을 전달받는 것을 중단시킨다. 만약 이미 존재하는 파드의 레이블을 삭제한다면, 파드의 컨트롤러는 그 자리를 대신할 새로운 파드를 생성한다. 이것은 이전에 "살아 있는" 파드를 "격리된" 환경에서 디버그할 수 있는 유용한 방법이다. 레이블을 상호적으로 추가하고 삭제하기 위해서, [`kubectl label`](/docs/reference/generated/kubectl/kubectl-commands#label)를 사용할 수 있다.
 
-## 컨테이너 이미지
-
-[imagePullPolicy](/ko/docs/concepts/containers/images/#이미지-업데이트)와 이미지의 태그는 [kubelet](/docs/reference/command-line-tools-reference/kubelet/)이 명시된 이미지를 풀(pull) 하려고 시도할 때 영향을 미친다.
-
-- `imagePullPolicy: IfNotPresent`: 이미지가 로컬에 이미 존재하지 않으면 이미지가 풀(Pull) 된다.
-
-- `imagePullPolicy: Always`: kubelet이 컨테이너를 시작할 때마다, kubelet은 컨테이너 이미지 레지스트리를 쿼리해서 이름을 이미지 다이제스트(digest)로 확인한다. kubelet에 정확한 다이제스트가 저장된 컨테이너 이미지가 로컬로 캐시된 경우, kubelet은 캐시된 이미지를 사용한다. 그렇지 않으면, kubelet은 확인한 다이제스트를 사용해서 이미지를 다운로드(pull)하고, 해당 이미지를 사용해서 컨테이너를 시작한다.
-
-- `imagePullPolicy`가 생략되어 있고, 이미지 태그가 `:latest` 이거나 생략되어 있다면 `imagePullPolicy`는 자동으로 `Always`가 적용된다. 태그 값을 변경하더라도 이 값은 `IfNotPresent`로 업데이트 되지 _않는다_.
-
-- `imagePullPolicy`가 생략되어 있고, 이미지 태그가 존재하지만 `:latest`가 아니라면 `imagePullPolicy`는 자동으로 `IfNotPresent`가 적용된다. 태그가 나중에 제거되거나 `:latest`로 변경되더라도 `Always`로 업데이트 되지 _않는다_.
-
-- `imagePullPolicy: Never`: 이미지가 로컬에 존재한다고 가정한다. 이미지를 풀(Pull) 하기 위해 시도하지 않는다.
-
-{{< note >}}
-컨테이너가 항상 같은 버전의 이미지를 사용하도록 하기 위해, `<이미지 이름>:<태그>` 를 `<이미지 이름>@<다이제스트>` (예시 `image@sha256:45b23dee08af5e43a7fea6c4cf9c25ccf269ee113168c19722f87876677c5cb2`)로 변경해서 이미지의 [다이제스트](https://docs.docker.com/engine/reference/commandline/pull/#pull-an-image-by-digest-immutable-identifier)를 명시할 수 있다. 다이제스트는 특정 버전의 이미지를 고유하게 식별하며, 다이제스트 값을 변경하지 않는 한 쿠버네티스에 의해 절대로 변경되지 않는다.
-{{< /note >}}
-
-{{< note >}}
-운영 환경에서 컨테이너를 생성할 때 `:latest` 태그의 사용을 피하는 것이 좋은데, 이는 어떠한 버전의 이미지가 실행 중인지 추적하기가 어렵고, 적절히 롤백하기가 더 어려워지기 때문이다.
-{{< /note >}}
-
-{{< note >}}
-레지스트리가 안정적으로 동작하는 상황에서는, `imagePullPolicy: Always`로 설정되어 있더라도 기반 이미지 관리 도구의 캐싱 정책을 통해 이미지 풀(pull) 작업의 효율성을 높일 수 있다. 예를 들어, 도커를 사용하는 경우 이미지가 이미 존재한다면 풀(Pull) 시도는 빠르게 진행되는데, 이는 모든 이미지 레이어가 캐시되어 있으며 이미지 다운로드가 필요하지 않기 때문이다.
-{{< /note >}}
-
 ## kubectl 사용하기
 
 - `kubectl apply -f <디렉터리>`를 사용한다. 이 명령어는 `<디렉터리>` 내부의 모든 `.yaml`, `.yml`, 그리고 `.json` 쿠버네티스 구성 파일을 찾아 `apply`에 전달한다.
diff --git a/content/ko/docs/concepts/configuration/secret.md b/content/ko/docs/concepts/configuration/secret.md
index 06be7d5a54..9591c47220 100644
--- a/content/ko/docs/concepts/configuration/secret.md
+++ b/content/ko/docs/concepts/configuration/secret.md
@@ -6,49 +6,105 @@ content_type: concept
 feature:
   title: 시크릿과 구성 관리
   description: >
-    사용자의 이미지를 다시 빌드하거나 스택 구성의 시크릿을 노출하지 않고 시크릿과 애플리케이션 구성을 배포하고 업데이트한다.
+    사용자의 이미지를 다시 빌드하거나 스택 구성의 시크릿을 노출하지 않고 
+    시크릿과 애플리케이션 구성을 배포하고 업데이트한다.
 weight: 30
 ---
 
 <!-- overview -->
 
-쿠버네티스 시크릿을 사용하면 비밀번호, OAuth 토큰, ssh 키와 같은
-민감한 정보를 저장하고 관리할 수 ​​있다. 기밀 정보를 시크릿에 저장하는 것이
-{{< glossary_tooltip term_id="pod" >}} 정의나
-{{< glossary_tooltip text="컨테이너 이미지" term_id="image" >}}
-내에 그대로 두는 것보다 안전하고 유연하다.
-자세한 내용은 [시크릿 디자인 문서](https://git.k8s.io/community/contributors/design-proposals/auth/secrets.md)를 참고한다.
-
 시크릿은 암호, 토큰 또는 키와 같은 소량의 중요한 데이터를
-포함하는 오브젝트이다. 그렇지 않으면  이러한 정보가 파드
-명세나 이미지에 포함될 수 있다. 사용자는 시크릿을 만들 수 있고 시스템도
-일부 시크릿을 만들 수 있다.
+포함하는 오브젝트이다. 이를 사용하지 않으면 중요한 정보가 {{< glossary_tooltip text="파드" term_id="pod" >}}
+명세나 {{< glossary_tooltip text="컨테이너 이미지" term_id="image" >}}에
+포함될 수 있다. 시크릿을 사용한다는 것은 사용자의 기밀 데이터를
+애플리케이션 코드에 넣을 필요가
+없음을 뜻한다.
+
+시크릿은 시크릿을 사용하는 파드와 독립적으로 생성될 수 있기 때문에,
+파드를 생성하고, 확인하고, 수정하는 워크플로우 동안 시크릿(그리고 데이터)이
+노출되는 것에 대한 위험을 경감시킬 수 있다. 쿠버네티스
+및 클러스터에서 실행되는 애플리케이션은 비밀 데이터를 비휘발성
+저장소에 쓰는 것을 피하는 것과 같이, 시크릿에 대해 추가 예방 조치를 취할 수도 있다.
+
+시크릿은 {{< glossary_tooltip text="컨피그맵" term_id="configmap" >}}과 유사하지만
+특별히 기밀 데이터를 보관하기 위한 것이다.
 
 {{< caution >}}
-쿠버네티스 시크릿은 기본적으로 암호화되지 않은 base64 인코딩 문자열로 저장된다.
-기본적으로 API 액세스 권한이 있는 모든 사용자 또는 쿠버네티스의 기본 데이터 저장소 etcd에
-액세스할 수 있는 모든 사용자가 일반 텍스트로 검색할 수 있다.
-시크릿을 안전하게 사용하려면 (최소한) 다음과 같이 하는 것이 좋다.
+쿠버네티스 시크릿은 기본적으로 API 서버의 기본 데이터 저장소(etcd)에 암호화되지 않은 상태로 저장된다. API 접근(access) 권한이 있는 모든 사용자 또는 etcd에 접근할 수 있는 모든 사용자는 시크릿을 조회하거나 수정할 수 있다.
+또한 네임스페이스에서 파드를 생성할 권한이 있는 사람은 누구나 해당 접근을 사용하여 해당 네임스페이스의 모든 시크릿을 읽을 수 있다. 여기에는 디플로이먼트 생성 기능과 같은 간접 접근이 포함된다. 
+
+시크릿을 안전하게 사용하려면 최소한 다음의 단계를 따르는 것이 좋다.
+
+1. 시크릿에 대해 [저장된 데이터 암호화(Encryption at Rest)를 활성화](/docs/tasks/administer-cluster/encrypt-data/)한다.
+1. 시크릿 읽기 및 쓰기를 제한하는 
+   [RBAC 규칙을 활성화 또는 구성](/ko/docs/reference/access-authn-authz/authorization/)한다. 
+   파드 생성 권한을 가진 사람은 암묵적으로 시크릿에 접근할 수 있음에 주의한다.
+1. 적절한 경우, RBAC과 같은 메커니즘을 사용하여 새로운 시크릿을 생성하거나 
+   기존 시크릿을 대체할 수 있는 주체(principal)들을 제한한다.
 
-1. 시크릿에 대한 [암호화 활성화](/docs/tasks/administer-cluster/encrypt-data/).
-2. 시크릿 읽기 및 쓰기를 제한하는 [RBAC 규칙 활성화 또는 구성](/ko/docs/reference/access-authn-authz/authorization/). 파드를 만들 권한이 있는 모든 사용자는 시크릿을 암묵적으로 얻을 수 있다.
 {{< /caution >}}
 
+더 자세한 것은 [시크릿을 위한 정보 보안(Information security)](#시크릿을-위한-정보-보안-information-security)을 참고한다.
+
 <!-- body -->
 
-## 시크릿 개요
-
-시크릿을 사용하려면, 파드가 시크릿을 참조해야 한다.
-시크릿은 세 가지 방법으로 파드와 함께 사용할 수 있다.
+## 시크릿의 사용
 
+파드가 시크릿을 사용하는 주요한 방법으로 다음의 세 가지가 있다.
 - 하나 이상의 컨테이너에 마운트된
   {{< glossary_tooltip text="볼륨" term_id="volume" >}} 내의
-  [파일](#시크릿을-파드의-파일로-사용하기)로써 사용.
-- [컨테이너 환경 변수](#시크릿을-환경-변수로-사용하기)로써 사용.
+  [파일](#using-secrets-as-files-from-a-pod)로써 사용.
+- [컨테이너 환경 변수](#시크릿을-환경-변수-형태로-사용하기)로써 사용.
 - 파드의 [이미지를 가져올 때 kubelet](#imagepullsecrets-사용하기)에 의해 사용.
 
+쿠버네티스 컨트롤 플레인 또한 시크릿을 사용한다. 예를 들어,
+[부트스트랩 토큰 시크릿](#부트스트랩-토큰-시크릿)은
+노드 등록을 자동화하는 데 도움을 주는 메커니즘이다.
+
+### 시크릿의 대체품
+
+기밀 데이터를 보호하기 위해 시크릿 대신 다음의 대안 중 하나를 고를 수 있다.
+
+다음과 같은 대안이 존재한다.
+
+- 클라우드 네이티브 구성 요소가 
+  동일 쿠버네티스 클러스터 안에 있는 다른 애플리케이션에 인증해야 하는 경우, 
+  [서비스어카운트(ServiceAccount)](/docs/reference/access-authn-authz/authentication/#service-account-tokens) 및 
+  그의 토큰을 이용하여 클라이언트를 식별할 수 있다.
+- 비밀 정보 관리 기능을 제공하는 써드파티 도구를 
+  클러스터 내부 또는 외부에 실행할 수 있다. 
+  예를 들어, 클라이언트가 올바르게 인증했을 때에만(예: 서비스어카운트 토큰으로 인증) 비밀 정보를 공개하고, 
+  파드가 HTTPS를 통해서만 접근하도록 처리하는 서비스가 있을 수 있다.
+- 인증을 위해, X.509 인증서를 위한 커스텀 인증자(signer)를 구현하고, 
+  [CertificateSigningRequests](/docs/reference/access-authn-authz/certificate-signing-requests/)를 사용하여 
+  해당 커스텀 인증자가 인증서를 필요로 하는 파드에 인증서를 발급하도록 할 수 있다.
+- [장치 플러그인](/ko/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)을 사용하여 
+  노드에 있는 암호화 하드웨어를 특정 파드에 노출할 수 있다. 
+  예를 들어, 신뢰할 수 있는 파드를 별도로 구성된 TPM(Trusted Platform Module, 신뢰할 수 있는 플랫폼 모듈)을 제공하는 노드에 스케줄링할 수 있다.
+
+위의 옵션들 및 시크릿 오브젝트 자체를 이용하는 옵션 중 2가지 이상을 조합하여 사용할 수도 있다.
+
+예시: 외부 서비스에서 단기 유효(short-lived) 세션 토큰을 가져오는 
+{{< glossary_tooltip text="오퍼레이터" term_id="operator-pattern" >}}를 구현(또는 배포)한 다음, 
+이 단기 유효 세션 토큰을 기반으로 시크릿을 생성할 수 있다. 
+클러스터의 파드는 이 세션 토큰을 활용할 수 있으며, 오퍼레이터는 토큰이 유효한지 검증해 준다. 
+이러한 분리 구조는 곧 파드가 이러한 세션 토큰의 발급 및 갱신에 대한 정확한 메커니즘을 모르게 하면서도 파드를 실행할 수 있음을 의미한다.
+
+## 시크릿 다루기
+
+### 시크릿 생성하기
+
+시크릿 생성에는 다음과 같은 방법이 있다.
+
+- [`kubectl` 명령으로 시크릿 생성](/ko/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
+- [환경 설정 파일을 사용하여 시크릿 생성](/ko/docs/tasks/configmap-secret/managing-secret-using-config-file/)
+- [kustomize를 사용하여 시크릿 생성](/ko/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
+
+#### 시크릿 이름 및 데이터에 대한 제약 사항 {#restriction-names-data}
+
 시크릿 오브젝트의 이름은 유효한
 [DNS 서브도메인 이름](/ko/docs/concepts/overview/working-with-objects/names/#dns-서브도메인-이름)이어야 한다.
+
 사용자는 시크릿을 위한 파일을 구성할 때 `data` 및 (또는) `stringData` 필드를
 명시할 수 있다. 해당 `data` 와 `stringData` 필드는 선택적으로 명시할 수 있다.
 `data` 필드의 모든 키(key)에 해당하는 값(value)은 base64로 인코딩된 문자열이어야 한다.
@@ -61,12 +117,723 @@ weight: 30
 있으면, `stringData` 필드에 지정된 값이
 우선적으로 사용된다.
 
+#### 크기 제한 {#restriction-data-size}
+
+개별 시크릿의 크기는 1 MiB로 제한된다. 
+이는 API 서버 및 kubelet 메모리를 고갈시킬 수 있는 매우 큰 시크릿의 생성을 방지하기 위함이다. 
+그러나, 작은 크기의 시크릿을 많이 만드는 것도 메모리를 고갈시킬 수 있다. 
+[리소스 쿼터](/ko/docs/concepts/policy/resource-quotas/)를 사용하여 
+한 네임스페이스의 시크릿 (또는 다른 리소스) 수를 제한할 수 있다.
+
+### 시크릿 편집하기
+
+kubectl을 사용하여 기존 시크릿을 편집할 수 있다.
+
+```shell
+kubectl edit secrets mysecret
+```
+
+이렇게 하면 기본으로 설정된 에디터가 열리며, 
+다음과 같이 `data` 필드에 base64로 인코딩된 시크릿 값을 업데이트할 수 있다.
+
+```yaml
+# 아래 오브젝트를 수정한다. '#'로 시작하는 줄은 무시되고,
+# 빈 파일을 저장하면 편집이 취소된다. 이 파일을 저장하는 도중에 오류가 발생하면
+# 관련 오류와 함께 파일이 다시 열릴 것이다.
+#
+apiVersion: v1
+data:
+  username: YWRtaW4=
+  password: MWYyZDFlMmU2N2Rm
+kind: Secret
+metadata:
+  annotations:
+    kubectl.kubernetes.io/last-applied-configuration: { ... }
+  creationTimestamp: 2020-01-22T18:41:56Z
+  name: mysecret
+  namespace: default
+  resourceVersion: "164619"
+  uid: cfee02d6-c137-11e5-8d73-42010af00002
+type: Opaque
+```
+
+위의 예시 매니페스트는 `data`에 `username` 및 `password` 2개의 키를 갖는 시크릿을 정의한다. 
+매니페스트에서 이 값들은 Base64 문자열이지만, 
+이 시크릿을 파드에 대해 사용할 때에는 kubelet이 파드와 컨테이너에 _디코드된_ 데이터를 제공한다.
+
+한 시크릿에 여러 키 및 값을 넣을 수도 있고, 여러 시크릿으로 정의할 수도 있으며, 둘 중 편리한 쪽을 고르면 된다.
+
+### 시크릿 사용하기
+
+시크릿은 데이터 볼륨으로 마운트되거나 파드의 컨테이너에서 사용할
+{{< glossary_tooltip text="환경 변수" term_id="container-env-variables" >}}로
+노출될 수 있다. 또한, 시크릿은 파드에 직접 노출되지 않고,
+시스템의 다른 부분에서도 사용할 수 있다. 예를 들어, 시크릿은
+시스템의 다른 부분이 사용자를 대신해서 외부 시스템과 상호 작용하는 데 사용해야 하는
+자격 증명을 보유할 수 있다.
+
+특정된 오브젝트 참조(reference)가 실제로 시크릿 유형의 오브젝트를 가리키는지 확인하기 위해, 
+시크릿 볼륨 소스의 유효성이 검사된다. 
+따라서, 시크릿은 자신에 의존하는 파드보다 먼저 생성되어야 한다.
+
+시크릿을 가져올 수 없는 경우 
+(아마도 시크릿이 존재하지 않거나, 또는 API 서버에 대한 일시적인 연결 불가로 인해) 
+kubelet은 해당 파드 실행을 주기적으로 재시도한다. 
+kubelet은 또한 시크릿을 가져올 수 없는 문제에 대한 세부 정보를 포함하여 해당 파드에 대한 이벤트를 보고한다.
+
+#### 선택적 시크릿 {#restriction-secret-must-exist}
+
+시크릿을 기반으로 컨테이너 환경 변수를 정의하는 경우, 
+이 환경 변수를 _선택 사항_ 으로 표시할 수 있다. 
+기본적으로는 시크릿은 필수 사항이다.
+
+모든 필수 시크릿이 사용 가능해지기 전에는 
+파드의 컨테이너가 시작되지 않을 것이다.
+
+파드가 시크릿의 특정 키를 참조하고, 해당 시크릿이 존재하지만 해당 키가 존재하지 않는 경우, 
+파드는 시작 과정에서 실패한다.
+
+### 파드에서 시크릿을 파일처럼 사용하기 {#using-secrets-as-files-from-a-pod}
+
+파드 안에서 시크릿의 데이터에 접근하고 싶다면, 한 가지 방법은 
+쿠버네티스로 하여금 해당 시크릿의 값을 
+파드의 하나 이상의 컨테이너의 파일시스템 내에 파일 형태로 표시하도록 만드는 것이다.
+
+이렇게 구성하려면, 다음을 수행한다.
+
+1. 시크릿을 생성하거나 기존 시크릿을 사용한다. 여러 파드가 동일한 시크릿을 참조할 수 있다.
+1. `.spec.volumes[].` 아래에 볼륨을 추가하려면 파드 정의를 수정한다. 볼륨의 이름을 뭐든지 지정하고, 시크릿 오브젝트의 이름과 동일한 `.spec.volumes[].secret.secretName` 필드를 생성한다.
+1. 시크릿이 필요한 각 컨테이너에 `.spec.containers[].volumeMounts[]` 를 추가한다. 시크릿을 표시하려는 사용되지 않은 디렉터리 이름에 `.spec.containers[].volumeMounts[].readOnly = true` 와 `.spec.containers[].volumeMounts[].mountPath` 를 지정한다.
+1. 프로그램이 해당 디렉터리에서 파일을 찾도록 이미지 또는 커맨드 라인을 수정한다. 시크릿 `data` 맵의 각 키는 `mountPath` 아래의 파일명이 된다.
+
+다음은 볼륨에 `mysecret`이라는 시크릿을 마운트하는 파드의 예시이다.
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: mypod
+spec:
+  containers:
+  - name: mypod
+    image: redis
+    volumeMounts:
+    - name: foo
+      mountPath: "/etc/foo"
+      readOnly: true
+  volumes:
+  - name: foo
+    secret:
+      secretName: mysecret
+      optional: false # 기본값임; "mysecret" 은 반드시 존재해야 함
+```
+
+사용하려는 각 시크릿은 `.spec.volumes` 에서 참조해야 한다.
+
+파드에 여러 컨테이너가 있는 경우, 모든 컨테이너는
+자체 `volumeMounts` 블록이 필요하지만, 시크릿에 대해서는 시크릿당 하나의 `.spec.volumes` 만 필요하다.
+
+{{< note >}}
+쿠버네티스 v1.22 이전 버전은 쿠버네티스 API에 접근하기 위한 크리덴셜을 자동으로 생성했다. 
+이러한 예전 메커니즘은 토큰 시크릿 생성 및 이를 실행 중인 파드에 마운트하는 절차에 기반했다. 
+쿠버네티스 v{{< skew currentVersion >}} 버전을 포함한 최근 버전에서는, 
+API 크리덴셜이 [TokenRequest](/docs/reference/kubernetes-api/authentication-resources/token-request-v1/) API를 사용하여 직접 얻어지고, 
+[프로젝티드 볼륨](/ko/docs/reference/access-authn-authz/service-accounts-admin/#바인딩된-서비스-어카운트-토큰-볼륨)을 
+사용하여 파드 내에 마운트된다. 
+이러한 방법을 사용하여 얻은 토큰은 수명이 제한되어 있으며, 
+토큰이 탑재된 파드가 삭제되면 자동으로 무효화된다.
+
+여전히 서비스 어카운트 토큰 시크릿을 [수동으로 생성](/docs/tasks/configure-pod-container/configure-service-account/#manually-create-a-service-account-api-token)할 수도 있다. 
+예를 들어, 영원히 만료되지 않는 토큰이 필요한 경우에 활용할 수 있다. 
+그러나, 이렇게 하기보다는 API 접근에 필요한 토큰을 얻기 위해 
+[TokenRequest](/docs/reference/kubernetes-api/authentication-resources/token-request-v1/) 서브리소스를 사용하는 것을 권장한다.
+{{< /note >}}
+
+#### 특정 경로에 대한 시크릿 키 투영하기
+
+시크릿 키가 투영되는 볼륨 내 경로를 제어할 수도 있다.
+`.spec.volumes[].secret.items` 필드를 사용하여 각 키의 대상 경로를 변경할 수 있다.
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: mypod
+spec:
+  containers:
+  - name: mypod
+    image: redis
+    volumeMounts:
+    - name: foo
+      mountPath: "/etc/foo"
+      readOnly: true
+  volumes:
+  - name: foo
+    secret:
+      secretName: mysecret
+      items:
+      - key: username
+        path: my-group/my-username
+```
+
+다음과 같은 일들이 일어날 것이다.
+
+* `mysecret`의 `username` 키는 컨테이너의 `/etc/foo/username` 경로 대신 
+  `/etc/foo/my-group/my-username` 경로에서 사용 가능하다.
+* 시크릿 오브젝트의 `password` 키는 투영되지 않는다.
+
+`.spec.volumes[].secret.items` 를 사용하면, `items` 에 지정된 키만 투영된다.
+시크릿의 모든 키를 사용하려면, 모든 키가 `items` 필드에 나열되어야 한다.
+
+키를 명시적으로 나열했다면, 나열된 모든 키가 해당 시크릿에 존재해야 한다. 
+그렇지 않으면, 볼륨이 생성되지 않는다.
+
+#### 시크릿 파일 퍼미션
+
+단일 시크릿 키에 대한 POSIX 파일 접근 퍼미션 비트를 설정할 수 있다.
+만약 사용자가 퍼미션을 지정하지 않는다면, 기본적으로 `0644` 가 사용된다.
+전체 시크릿 볼륨에 대한 기본 모드를 설정하고 필요한 경우 키별로 오버라이드할 수도 있다.
+
+예를 들어, 다음과 같은 기본 모드를 지정할 수 있다.
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: mypod
+spec:
+  containers:
+  - name: mypod
+    image: redis
+    volumeMounts:
+    - name: foo
+      mountPath: "/etc/foo"
+  volumes:
+  - name: foo
+    secret:
+      secretName: mysecret
+      defaultMode: 0400
+```
+
+시크릿이 `/etc/foo` 에 마운트되고, 
+시크릿 볼륨 마운트로 생성된 모든 파일의 퍼미션은 `0400` 이다.
+
+
+{{< note >}}
+JSON을 사용하여 파드 또는 파드 템플릿을 정의하는 경우, 
+JSON 스펙은 8진수 표기법을 지원하지 않음에 유의한다. 
+`defaultMode` 값으로 대신 10진수를 사용할 수 있다(예를 들어, 8진수 0400은 10진수로는 256이다). 
+YAML로 작성하는 경우, `defaultMode` 값을 8진수로 표기할 수 있다.
+{{< /note >}}
+
+#### 볼륨으로부터 시크릿 값 사용하기
+
+시크릿 볼륨을 마운트하는 컨테이너 내부에서, 시크릿 키는 파일 형태로 나타난다. 
+시크릿 값은 base64로 디코딩되어 이러한 파일 내에 저장된다.
+
+다음은 위 예시의 컨테이너 내부에서 실행된 명령의 결과이다.
+
+```shell
+ls /etc/foo/
+```
+
+출력 결과는 다음과 비슷하다.
+
+```
+username
+password
+```
+
+```shell
+cat /etc/foo/username
+```
+
+출력 결과는 다음과 비슷하다.
+
+```
+admin
+```
+
+```shell
+cat /etc/foo/password
+```
+
+출력 결과는 다음과 비슷하다.
+
+```
+1f2d1e2e67df
+```
+
+컨테이너의 프로그램은 필요에 따라 
+이러한 파일에서 시크릿 데이터를 읽는다.
+
+#### 마운트된 시크릿은 자동으로 업데이트됨
+
+볼륨이 시크릿의 데이터를 포함하고 있는 상태에서 시크릿이 업데이트되면, 쿠버네티스는 이를 추적하고 
+최종적으로 일관된(eventually-consistent) 접근 방식을 사용하여 볼륨 안의 데이터를 업데이트한다.
+
+{{< note >}}
+시크릿을 [subPath](/ko/docs/concepts/storage/volumes/#subpath-사용하기)
+볼륨 마운트로 사용하는 컨테이너는 자동 시크릿 업데이트를
+받지 못한다.
+{{< /note >}}
+
+kubelet은 해당 노드의 파드의 볼륨에서 사용되는 시크릿의 현재 키 및 값 캐시를 유지한다. 
+kubelet이 캐시된 값에서 변경 사항을 감지하는 방식을 변경할 수 있다. 
+[kubelet 환경 설정](/docs/reference/config-api/kubelet-config.v1beta1/)의 `configMapAndSecretChangeDetectionStrategy` 필드는 
+kubelet이 사용하는 전략을 제어한다. 기본 전략은 `Watch`이다.
+
+시크릿 업데이트는 TTL(time-to-live)이 설정된 캐시 기반의 
+API 감시(watch) 메커니즘에 의해 전파되거나 (기본값임), 
+각 kubelet 동기화 때마다 클러스터 API 서버로부터의 폴링으로 달성될 수 있다.
+
+결과적으로 시크릿이 업데이트되는 순간부터 
+새 키가 파드에 투영되는 순간까지의 총 지연은 
+kubelet 동기화 기간 + 캐시 전파 지연만큼 길어질 수 있다. 
+여기서 캐시 전파 지연은 선택한 캐시 유형에 따라 다르다(이전 단락과 동일한 순서로 나열하면, 
+감시(watch) 전파 지연, 설정된 캐시 TTL, 또는 직접 폴링의 경우 0임).
+
+### 시크릿을 환경 변수 형태로 사용하기
+
+파드에서 {{< glossary_tooltip text="환경 변수" term_id="container-env-variables" >}} 형태로
+시크릿을 사용하려면 다음과 같이 한다.
+
+1. 시크릿을 생성(하거나 기존 시크릿을 사용)한다. 여러 파드가 동일한 시크릿을 참조할 수 있다.
+1. 사용하려는 각 시크릿 키에 대한 환경 변수를 추가하려면 
+   시크릿 키 값을 사용하려는 각 컨테이너에서 파드 정의를 수정한다. 
+   시크릿 키를 사용하는 환경 변수는 시크릿의 이름과 키를 `env[].valueFrom.secretKeyRef` 에 채워야 한다.
+1. 프로그램이 지정된 환경 변수에서 값을 찾도록 
+   이미지 및/또는 커맨드 라인을 수정한다.
+
+다음은 환경 변수를 통해 시크릿을 사용하는 파드의 예시이다.
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: secret-env-pod
+spec:
+  containers:
+  - name: mycontainer
+    image: redis
+    env:
+      - name: SECRET_USERNAME
+        valueFrom:
+          secretKeyRef:
+            name: mysecret
+            key: username
+            optional: false # 기본값과 동일하다
+                            # "mysecret"이 존재하고 "username"라는 키를 포함해야 한다
+      - name: SECRET_PASSWORD
+        valueFrom:
+          secretKeyRef:
+            name: mysecret
+            key: password
+            optional: false # 기본값과 동일하다
+                            # "mysecret"이 존재하고 "password"라는 키를 포함해야 한다
+  restartPolicy: Never
+```
+
+
+#### 올바르지 않은 환경 변수 {#restriction-env-from-invalid}
+
+유효하지 않은 환경 변수 이름으로 간주되는 키가 있는 `envFrom` 필드로 
+환경 변수를 채우는 데 사용되는 시크릿은 해당 키를 건너뛴다. 
+하지만 파드를 시작할 수는 있다.
+
+유효하지 않은 변수 이름이 파드 정의에 포함되어 있으면, 
+`reason`이 `InvalidVariableNames`로 설정된 이벤트와 
+유효하지 않은 스킵된 키 목록 메시지가 파드 시작 실패 정보에 추가된다. 
+다음 예시는 2개의 유효하지 않은 키 `1badkey` 및 `2alsobad`를 포함하는 `mysecret` 시크릿을 참조하는 파드를 보여준다.
+
+```shell
+kubectl get events
+```
+
+출력은 다음과 같다.
+
+```
+LASTSEEN   FIRSTSEEN   COUNT     NAME            KIND      SUBOBJECT                         TYPE      REASON
+0s         0s          1         dapi-test-pod   Pod                                         Warning   InvalidEnvironmentVariableNames   kubelet, 127.0.0.1      Keys [1badkey, 2alsobad] from the EnvFrom secret default/mysecret were skipped since they are considered invalid environment variable names.
+```
+
+
+#### 환경 변수로부터 시크릿 값 사용하기
+
+환경 변수 형태로 시크릿을 사용하는 컨테이너 내부에서, 
+시크릿 키는 일반적인 환경 변수로 보인다. 
+이러한 환경 변수의 값은 시크릿 데이터를 base64 디코드한 값이다.
+
+다음은 위 예시 컨테이너 내부에서 실행된 명령의 결과이다.
+
+```shell
+echo "$SECRET_USERNAME"
+```
+
+출력 결과는 다음과 비슷하다.
+
+```
+admin
+```
+
+```shell
+echo "$SECRET_PASSWORD"
+```
+
+출력 결과는 다음과 비슷하다.
+
+```
+1f2d1e2e67df
+```
+
+{{< note >}}
+컨테이너가 이미 환경 변수 형태로 시크릿을 사용하는 경우, 
+컨테이너가 다시 시작되기 전에는 
+시크릿 업데이트를 볼 수 없다. 
+시크릿이 변경되면 컨테이너 재시작을 트리거하는 써드파티 솔루션이 존재한다.
+{{< /note >}}
+
+### 컨테이너 이미지 풀 시크릿 {#using-imagepullsecrets}
+
+비공개 저장소에서 컨테이너 이미지를 가져오고 싶다면, 
+각 노드의 kubelet이 해당 저장소에 인증을 수행하는 방법을 마련해야 한다. 
+이를 위해 _이미지 풀 시크릿_ 을 구성할 수 있다. 
+이러한 시크릿은 파드 수준에 설정된다.
+
+파드의 `imagePullSecrets` 필드는 파드가 속한 네임스페이스에 있는 시크릿들에 대한 참조 목록이다.
+`imagePullSecrets`를 사용하여 이미지 저장소 접근 크리덴셜을 kubelet에 전달할 수 있다. 
+kubelet은 이 정보를 사용하여 파드 대신 비공개 이미지를 가져온다.
+`imagePullSecrets` 필드에 대한 더 많은 정보는 
+[파드 API 레퍼런스](/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodSpec)의 
+`PodSpec` 부분을 확인한다.
+
+#### imagePullSecrets 사용하기
+
+`imagePullSecrets` 필드는 동일한 네임스페이스의 시크릿에 대한 참조 목록이다.
+`imagePullSecrets` 를 사용하여 도커(또는 다른 컨테이너) 이미지 레지스트리 비밀번호가 포함된 시크릿을 kubelet에 전달할 수 있다. 
+kubelet은 이 정보를 사용해서 파드를 대신하여 프라이빗 이미지를 가져온다.
+`imagePullSecrets` 필드에 대한 자세한 정보는 [PodSpec API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core)를 참고한다.
+
+##### imagePullSecret 수동으로 지정하기
+
+[컨테이너 이미지](/ko/docs/concepts/containers/images/#파드에-imagepullsecrets-명시) 문서에서 
+`imagePullSecrets`를 지정하는 방법을 배울 수 있다.
+
+##### imagePullSecrets가 자동으로 연결되도록 준비하기
+
+수동으로 `imagePullSecrets` 를 생성하고, 
+서비스어카운트(ServiceAccount)에서 이들을 참조할 수 있다. 
+해당 서비스어카운트로 생성되거나 기본적인 서비스어카운트로 생성된 모든 파드는 
+파드의 `imagePullSecrets` 필드를 가져오고 서비스 어카운트의 필드로 설정한다. 
+해당 프로세스에 대한 자세한 설명은 
+[서비스 어카운트에 ImagePullSecrets 추가하기](/docs/tasks/configure-pod-container/configure-service-account/#add-imagepullsecrets-to-a-service-account)를 참고한다.
+
+### 스태틱 파드에서의 시크릿 사용 {#restriction-static-pod}
+
+{{< glossary_tooltip text="스태틱(static) 파드" term_id="static-pod" >}}에서는 
+컨피그맵이나 시크릿을 사용할 수 없다.
+
+## 사용 사레
+
+### 사용 사례: 컨테이너 환경 변수로 사용하기
+
+시크릿 정의를 작성한다.
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: mysecret
+type: Opaque
+data:
+  USER_NAME: YWRtaW4=
+  PASSWORD: MWYyZDFlMmU2N2Rm
+```
+
+시크릿을 생성한다.
+```shell
+kubectl apply -f mysecret.yaml
+```
+
+모든 시크릿 데이터를 컨테이너 환경 변수로 정의하는 데 `envFrom` 을 사용한다. 시크릿의 키는 파드의 환경 변수 이름이 된다.
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: secret-test-pod
+spec:
+  containers:
+    - name: test-container
+      image: k8s.gcr.io/busybox
+      command: [ "/bin/sh", "-c", "env" ]
+      envFrom:
+      - secretRef:
+          name: mysecret
+  restartPolicy: Never
+```
+
+### 사용 사례: SSH 키를 사용하는 파드
+
+몇 가지 SSH 키를 포함하는 시크릿을 생성한다.
+
+```shell
+kubectl create secret generic ssh-key-secret --from-file=ssh-privatekey=/path/to/.ssh/id_rsa --from-file=ssh-publickey=/path/to/.ssh/id_rsa.pub
+```
+
+출력 결과는 다음과 비슷하다.
+
+```
+secret "ssh-key-secret" created
+```
+
+SSH 키를 포함하는 `secretGenerator` 필드가 있는 `kustomization.yaml` 를 만들 수도 있다.
+
+{{< caution >}}
+사용자 자신의 SSH 키를 보내기 전에 신중하게 생각한다. 
+클러스터의 다른 사용자가 시크릿에 접근할 수 있게 될 수도 있기 때문이다.
+
+대신, 쿠버네티스 클러스터를 공유하는 모든 사용자가 접근할 수 있으면서도, 
+크리덴셜이 유출된 경우 폐기가 가능한 서비스 아이덴티티를 가리키는 
+SSH 프라이빗 키를 만들 수 있다.
+{{< /caution >}}
+
+이제 SSH 키를 가진 시크릿을 참조하고
+볼륨에서 시크릿을 사용하는 파드를 만들 수 있다.
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: secret-test-pod
+  labels:
+    name: secret-test
+spec:
+  volumes:
+  - name: secret-volume
+    secret:
+      secretName: ssh-key-secret
+  containers:
+  - name: ssh-test-container
+    image: mySshImage
+    volumeMounts:
+    - name: secret-volume
+      readOnly: true
+      mountPath: "/etc/secret-volume"
+```
+
+컨테이너의 명령이 실행될 때, 다음 위치에서 키 부분을 사용할 수 있다.
+
+```
+/etc/secret-volume/ssh-publickey
+/etc/secret-volume/ssh-privatekey
+```
+
+그러면 컨테이너는 SSH 연결을 맺기 위해 시크릿 데이터를 자유롭게 사용할 수 있다.
+
+### 사용 사례: 운영 / 테스트 자격 증명을 사용하는 파드
+
+이 예제에서는 
+운영 환경의 자격 증명이 포함된 시크릿을 사용하는 파드와 
+테스트 환경의 자격 증명이 있는 시크릿을 사용하는 다른 파드를 보여준다.
+
+사용자는 `secretGenerator` 필드가 있는 `kustomization.yaml` 을 만들거나
+`kubectl create secret` 을 실행할 수 있다.
+
+```shell
+kubectl create secret generic prod-db-secret --from-literal=username=produser --from-literal=password=Y4nys7f11
+```
+
+출력 결과는 다음과 비슷하다.
+
+```
+secret "prod-db-secret" created
+```
+
+테스트 환경의 자격 증명에 대한 시크릿을 만들 수도 있다.
+
+```shell
+kubectl create secret generic test-db-secret --from-literal=username=testuser --from-literal=password=iluvtests
+```
+
+출력 결과는 다음과 비슷하다.
+
+```
+secret "test-db-secret" created
+```
+
+{{< note >}}
+`$`, `\`, `*`, `=` 그리고 `!` 와 같은 특수 문자는 사용자의 [셸](https://ko.wikipedia.org/wiki/셸)에 의해 해석되고 이스케이핑이 필요하다.
+
+대부분의 셸에서 비밀번호를 이스케이프하는 가장 쉬운 방법은 작은 따옴표(`'`)로 묶는 것이다.
+예를 들어, 실제 비밀번호가 `S!B\*d$zDsb=` 이면, 다음과 같은 명령을 실행해야 한다.
+
+```shell
+kubectl create secret generic dev-db-secret --from-literal=username=devuser --from-literal=password='S!B\*d$zDsb='
+```
+
+파일(`--from-file`)에서는 비밀번호의 특수 문자를 이스케이프할 필요가 없다.
+{{< /note >}}
+
+이제 파드를 생성한다.
+
+```shell
+cat <<EOF > pod.yaml
+apiVersion: v1
+kind: List
+items:
+- kind: Pod
+  apiVersion: v1
+  metadata:
+    name: prod-db-client-pod
+    labels:
+      name: prod-db-client
+  spec:
+    volumes:
+    - name: secret-volume
+      secret:
+        secretName: prod-db-secret
+    containers:
+    - name: db-client-container
+      image: myClientImage
+      volumeMounts:
+      - name: secret-volume
+        readOnly: true
+        mountPath: "/etc/secret-volume"
+- kind: Pod
+  apiVersion: v1
+  metadata:
+    name: test-db-client-pod
+    labels:
+      name: test-db-client
+  spec:
+    volumes:
+    - name: secret-volume
+      secret:
+        secretName: test-db-secret
+    containers:
+    - name: db-client-container
+      image: myClientImage
+      volumeMounts:
+      - name: secret-volume
+        readOnly: true
+        mountPath: "/etc/secret-volume"
+EOF
+```
+
+동일한 `kustomization.yaml`에 파드를 추가한다.
+
+```shell
+cat <<EOF >> kustomization.yaml
+resources:
+- pod.yaml
+EOF
+```
+
+다음을 실행하여 API 서버에 이러한 모든 오브젝트를 적용한다.
+
+```shell
+kubectl apply -k .
+```
+
+두 컨테이너 모두 각 컨테이너의 환경에 대한 값을 가진 파일시스템에 
+다음의 파일이 존재한다.
+
+```
+/etc/secret-volume/username
+/etc/secret-volume/password
+```
+
+두 파드의 사양이 한 필드에서만 어떻게 다른지 확인한다. 이를 통해
+공통 파드 템플릿에서 다양한 기능을 가진 파드를 생성할 수 있다.
+
+두 개의 서비스 어카운트를 사용하여 기본 파드 명세를 더욱 단순화할 수 있다.
+
+1. `prod-db-secret` 을 가진 `prod-user`
+1. `test-db-secret` 을 가진 `test-user`
+
+파드 명세는 다음과 같이 단축된다.
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: prod-db-client-pod
+  labels:
+    name: prod-db-client
+spec:
+  serviceAccount: prod-db-client
+  containers:
+  - name: db-client-container
+    image: myClientImage
+```
+
+### 사용 사례: 시크릿 볼륨의 도트 파일(dotfile)
+
+점으로 시작하는 키를 정의하여 데이터를 "숨김"으로 만들 수 있다.
+이 키는 도트 파일 또는 "숨겨진" 파일을 나타낸다.
+예를 들어, 다음 시크릿이 `secret-volume` 볼륨에 마운트되면 아래와 같다.
+
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: dotfile-secret
+data:
+  .secret-file: dmFsdWUtMg0KDQo=
+---
+apiVersion: v1
+kind: Pod
+metadata:
+  name: secret-dotfiles-pod
+spec:
+  volumes:
+  - name: secret-volume
+    secret:
+      secretName: dotfile-secret
+  containers:
+  - name: dotfile-test-container
+    image: k8s.gcr.io/busybox
+    command:
+    - ls
+    - "-l"
+    - "/etc/secret-volume"
+    volumeMounts:
+    - name: secret-volume
+      readOnly: true
+      mountPath: "/etc/secret-volume"
+```
+
+볼륨은 `.secret-file` 이라는 하나의 파일을 포함하고,
+`dotfile-test-container` 는 `/etc/secret-volume/.secret-file` 경로에
+이 파일을 가지게 된다.
+
+{{< note >}}
+`ls -l` 명령의 결과에서 숨겨진 점으로 시작하는 파일들은
+디렉터리 내용을 나열할 때 `ls -la` 를 사용해야 이 파일들을 볼 수 있다.
+{{< /note >}}
+
+### 사용 사례: 파드의 한 컨테이너에 표시되는 시크릿
+
+HTTP 요청을 처리하고, 복잡한 비즈니스 로직을 수행한 다음, HMAC이 있는 일부 메시지에
+서명해야 하는 프로그램을 고려한다. 애플리케이션 로직이
+복잡하기 때문에, 서버에서 눈에 띄지 않는 원격 파일 읽기 공격이
+있을 수 있으며, 이로 인해 개인 키가 공격자에게 노출될 수 있다.
+
+이는 두 개의 컨테이너의 두 개 프로세스로 나눌 수 있다. 사용자 상호 작용과
+비즈니스 로직을 처리하지만, 개인 키를 볼 수 없는 프론트엔드 컨테이너와
+개인 키를 볼 수 있고, 프론트엔드의 간단한 서명 요청(예를 들어, localhost 네트워킹을 통해)에
+응답하는 서명자 컨테이너로 나눌 수 있다.
+
+이 분할된 접근 방식을 사용하면, 공격자는 이제 애플리케이션 서버를 속여서
+파일을 읽는 것보다 다소 어려운 임의적인 어떤 작업을 수행해야
+한다.
+
 ## 시크릿 타입 {#secret-types}
 
 시크릿을 생성할 때, [`Secret`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#secret-v1-core)
 리소스의 `type` 필드를 사용하거나, (활용 가능하다면) `kubectl` 의
 유사한 특정 커맨드라인 플래그를 사용하여 시크릿의 타입을 명시할 수 있다.
-시크릿 타입은 시크릿 데이터의 프로그래믹 처리를 촉진시키기 위해 사용된다.
+시크릿 타입은 여러 종류의 기밀 데이터를 프로그래밍 방식으로 용이하게 처리하기 위해 사용된다.
 
 쿠버네티스는 일반적인 사용 시나리오를 위해 몇 가지 빌트인 타입을 제공한다.
 이 타입은 쿠버네티스가 부과하여 수행되는 검증 및 제약에
@@ -83,15 +850,20 @@ weight: 30
 | `kubernetes.io/tls` | TLS 클라이언트나 서버를 위한 데이터 |
 | `bootstrap.kubernetes.io/token` | 부트스트랩 토큰 데이터 |
 
-사용자는 시크릿 오브젝트의 `type` 값에 비어 있지 않은 문자열을 할당하여 자신만의 시크릿
-타입을 정의하고 사용할 수 있다. 비어 있는 문자열은 `Opaque` 타입으로 인식된다.
-쿠버네티스는 타입 명칭에 제약을 부과하지는 않는다. 그러나 만약
-빌트인 타입 중 하나를 사용한다면, 해당 타입에 정의된 모든 요구 사항을
-만족시켜야 한다.
+사용자는 시크릿 오브젝트의 `type` 값에 비어 있지 않은 문자열을 할당하여 자신만의 시크릿 타입을 정의하고 사용할 수 있다 
+(비어 있는 문자열은 `Opaque` 타입으로 인식된다).
+
+쿠버네티스는 타입 명칭에 제약을 부과하지는 않는다. 
+그러나 만약 빌트인 타입 중 하나를 사용한다면, 
+해당 타입에 정의된 모든 요구 사항을 만족시켜야 한다.
+
+공개 사용을 위한 시크릿 타입을 정의하는 경우, 규칙에 따라 
+`cloud-hosting.example.net/cloud-api-credentials`와 같이 시크릿 타입 이름 앞에 도메인 이름 및 `/`를 추가하여 
+전체 시크릿 타입 이름을 구성한다.
 
 ### 불투명(Opaque) 시크릿
 
-`Opaque` 은 시크릿 구성 파일에서 누락된 경우의 기본 시크릿 타입이다.
+`Opaque` 은 시크릿 구성 파일에서 시크릿 타입을 지정하지 않았을 경우의 기본 시크릿 타입이다.
 `kubectl` 을 사용하여 시크릿을 생성할 때 `Opaque` 시크릿 타입을 나타내기
 위해서는 `generic` 하위 커맨드를 사용할 것이다. 예를 들어, 다음 커맨드는
 타입 `Opaque` 의 비어 있는 시크릿을 생성한다.
@@ -109,16 +881,20 @@ empty-secret   Opaque   0      2m6s
 ```
 
 해당 `DATA` 열은 시크릿에 저장된 데이터 아이템의 수를 보여준다.
-이 경우, `0` 은 비어 있는 시크릿을 하나 생성하였다는 것을 의미한다.
+이 경우, `0` 은 비어 있는 시크릿을 생성하였다는 것을 의미한다.
 
 ###  서비스 어카운트 토큰 시크릿
 
-`kubernetes.io/service-account-token` 시크릿 타입은 서비스 어카운트를 확인하는 토큰을 저장하기 위해서 사용한다. 이 시크릿 타입을 사용할 때는,
-`kubernetes.io/service-account.name` 어노테이션이 존재하는 서비스
-어카운트 이름으로 설정되도록 해야 한다. 쿠버네티스 컨트롤러는
-`kubernetes.io/service-account.uid` 및 실제 토큰
-콘텐츠로 설정된 `data` 필드의 `token` 키와 같은,
-몇 가지 다른 필드들을 채운다.
+`kubernetes.io/service-account-token` 시크릿 타입은 
+{{< glossary_tooltip text="서비스 어카운트" term_id="service-account" >}}를 확인하는 
+토큰을 저장하기 위해서 사용한다. 
+이 시크릿 타입을 사용할 때는, 
+`kubernetes.io/service-account.name` 어노테이션이 존재하는 
+서비스 어카운트 이름으로 설정되도록 해야 한다. 
+쿠버네티스 {{< glossary_tooltip text="컨트롤러" term_id="controller" >}}는 
+`kubernetes.io/service-account.uid` 어노테이션 및 
+`data` 필드의 `token` 키와 같은 몇 가지 다른 필드들을 채우며, 
+이들은 인증 토큰을 보관한다.
 
 다음은 서비스 어카운트 토큰 시크릿의 구성 예시이다.
 
@@ -158,7 +934,7 @@ data:
 - `kubernetes.io/dockercfg`
 - `kubernetes.io/dockerconfigjson`
 
-`kubernetes.io/dockercfg` 는 직렬화 된 도커 커맨드라인 구성을
+`kubernetes.io/dockercfg` 는 직렬화된 도커 커맨드라인 구성을
 위한 기존(legacy) 포맷 `~/.dockercfg` 를 저장하기 위해 할당된 타입이다.
 시크릿 타입을 사용할 때는, `data` 필드가 base64 포맷으로
 인코딩된 `~/.dockercfg` 파일의 콘텐츠를 값으로 가지는 `.dockercfg` 키를 포함하고 있는지
@@ -185,8 +961,8 @@ data:
 ```
 
 {{< note >}}
-만약 base64 인코딩 수행을 원하지 않는다면, 그 대신 `stringData` 필드의
-사용을 선택할 수 있다.
+만약 base64 인코딩 수행을 원하지 않는다면, 
+그 대신 `stringData` 필드를 사용할 수 있다.
 {{< /note >}}
 
 이러한 타입들을 매니페스트를 사용하여 생성하는 경우, API
@@ -199,34 +975,46 @@ data:
 
 ```shell
 kubectl create secret docker-registry secret-tiger-docker \
+  --docker-email=tiger@acme.example \
   --docker-username=tiger \
-  --docker-password=pass113 \
-  --docker-email=tiger@acme.com
+  --docker-password=pass1234 \
+  --docker-server=my-registry.example:5000
 ```
 
-이 커맨드는 `kubernetes.io/dockerconfigjson` 타입의 시크릿을 생성한다.
-만약 `data` 필드로부터 `.dockerconfigjson` 콘텐츠를 복사(dump)해오면,
-다음과 같이 유효한 도커 JSON 콘텐츠를
-즉석에서 얻게 될 것이다.
+이 커맨드는 `kubernetes.io/dockerconfigjson` 타입의 시크릿을 생성한다. 
+다음 명령으로 이 새 시크릿에서 `.data.dockercfgjson` 필드를 덤프하고 
+base64로 디코드하면,
+
+```shell
+kubectl get secret secret-tiger-docker -o jsonpath='{.data.*}' | base64 -d
+```
+
+출력은 다음과 같은 JSON 문서이다(그리고 
+이는 또한 유효한 도커 구성 파일이다).
 
 ```json
 {
   "auths": {
-    "https://index.docker.io/v1/": {
+    "my-registry.example:5000": {
       "username": "tiger",
-      "password": "pass113",
-      "email": "tiger@acme.com",
-      "auth": "dGlnZXI6cGFzczExMw=="
+      "password": "pass1234",
+      "email": "tiger@acme.example",
+      "auth": "dGlnZXI6cGFzczEyMzQ="
     }
   }
 }
 ```
 
-### 기본 인증 시크릿
+{{< note >}}
+위의 `auth` 값은 base64 인코딩되어 있다. 이는 난독화된 것이지 암호화된 것이 아니다. 
+이 시크릿을 읽을 수 있는 사람은 레지스트리 접근 베어러 토큰을 알 수 있는 것이다.
+{{< /note >}}
+
+### 기본 인증(Basic authentication) 시크릿
 
 `kubernetes.io/basic-auth` 타입은 기본 인증을 위한 자격 증명을 저장하기
 위해 제공된다. 이 시크릿 타입을 사용할 때는 시크릿의 `data` 필드가
-다음의 두 키를 포함해야 한다.
+다음의 두 키 중 하나를 포함해야 한다.
 
 - `username`: 인증을 위한 사용자 이름
 - `password`: 인증을 위한 암호나 토큰
@@ -244,15 +1032,17 @@ metadata:
   name: secret-basic-auth
 type: kubernetes.io/basic-auth
 stringData:
-  username: admin
-  password: t0p-Secret
+  username: admin      # kubernetes.io/basic-auth 에서 요구하는 필드
+  password: t0p-Secret # kubernetes.io/basic-auth 에서 요구하는 필드
 ```
 
-이 기본 인증 시크릿 타입은 사용자 편의만을 위해서 제공된다.
-사용자는 기본 인증에서 사용되는 자격 증명을 위한 `Opaque` 를 생성할 수도 있다.
-그러나, 빌트인 시크릿 타입을 사용하는 것은 사용자의 자격 증명들의 포맷을 통합하는 데 도움이 되고,
-API 서버는 요구되는 키가 시크릿 구성에서 제공되고 있는지
-검증도 한다.
+이 기본 인증 시크릿 타입은 오직 사용자 편의를 위해 제공되는 것이다.
+사용자는 기본 인증에서 사용할 자격 증명을 위해 `Opaque` 타입의 시크릿을 생성할 수도 있다. 
+그러나, 미리 정의되어 공개된 시크릿 타입(`kubernetes.io/basic-auth`)을 사용하면 
+다른 사람이 이 시크릿의 목적을 이해하는 데 도움이 되며, 
+예상되는 키 이름에 대한 규칙이 설정된다. 
+쿠버네티스 API는 이 유형의 시크릿에 대해 
+필수 키가 설정되었는지 확인한다.
 
 ### SSH 인증 시크릿
 
@@ -261,7 +1051,8 @@ API 서버는 요구되는 키가 시크릿 구성에서 제공되고 있는지
 키-값 쌍을 사용할 SSH 자격 증명으로 `data` (또는 `stringData`)
 필드에 명시해야 할 것이다.
 
-다음 YAML은 SSH 인증 시크릿의 구성 예시이다.
+다음 매니페스트는 
+SSH 공개/개인 키 인증에 사용되는 시크릿 예시이다.
 
 ```yaml
 apiVersion: v1
@@ -275,11 +1066,13 @@ data:
      MIIEpQIBAAKCAQEAulqb/Y ...
 ```
 
-SSH 인증 시크릿 타입은 사용자 편의만을 위해서 제공된다.
-사용자는 SSH 인증에서 사용되는 자격 증명을 위한 `Opaque` 를 생성할 수도 있다.
-그러나, 빌트인 시크릿 타입을 사용하는 것은 사용자의 자격 증명들의 포맷을 통합하는 데 도움이 되고,
-API 서버는 요구되는 키가 시크릿 구성에서 제공되고 있는지
-검증도 한다.
+SSH 인증 시크릿 타입은 오직 사용자 편의를 위해 제공되는 것이다. 
+사용자는 SSH 인증에서 사용할 자격 증명을 위해 `Opaque` 타입의 시크릿을 생성할 수도 있다. 
+그러나, 미리 정의되어 공개된 시크릿 타입(`kubernetes.io/ssh-auth`)을 사용하면 
+다른 사람이 이 시크릿의 목적을 이해하는 데 도움이 되며, 
+예상되는 키 이름에 대한 규칙이 설정된다. 
+그리고 API 서버가 
+시크릿 정의에 필수 키가 명시되었는지 확인한다.
 
 {{< caution >}}
 SSH 개인 키는 자체적으로 SSH 클라이언트와 호스트 서버 간에 신뢰할 수 있는 통신을
@@ -290,13 +1083,15 @@ SSH 개인 키는 자체적으로 SSH 클라이언트와 호스트 서버 간에
 
 ### TLS 시크릿
 
-쿠버네티스는 보통 TLS를 위해 사용되는 인증서와 관련된 키를 저장하기 위해서
+쿠버네티스는 일반적으로 TLS를 위해 사용되는 인증서 및 관련된 키를 저장하기 위한 
 빌트인 시크릿 타입 `kubernetes.io/tls` 를 제공한다.
-이 데이터는 인그레스 리소스의 TLS 종료에 주로 사용되지만, 다른
-리소스나 워크로드에 의해 직접적으로 사용될 수도 있다.
-이 타입의 시크릿을 사용할 때는 `tls.key` 와 `tls.crt` 키가 시크릿 구성의
-`data` (또는 `stringData`) 필드에서 제공되어야 한다. 그러나, API
-서버가 각 키에 대한 값이 유효한지 실제로 검증하지는 않는다.
+
+TLS 시크릿의 일반적인 용도 중 하나는 [인그레스](/ko/docs/concepts/services-networking/ingress/)에 대한 
+전송 암호화(encryption in transit)를 구성하는 것이지만, 
+다른 리소스와 함께 사용하거나 워크로드에서 직접 사용할 수도 있다. 
+이 타입의 시크릿을 사용할 때는 `tls.key` 와 `tls.crt` 키가 
+시크릿 구성의 `data` (또는 `stringData`) 필드에서 제공되어야 한다. 
+그러나, API 서버가 각 키에 대한 값이 유효한지 실제로 검증하지는 않는다.
 
 다음 YAML은 TLS 시크릿을 위한 구성 예시를 포함한다.
 
@@ -328,13 +1123,21 @@ kubectl create secret tls my-tls-secret \
   --key=path/to/key/file
 ```
 
-공개/개인 키 쌍은 사전에 존재해야 한다. `--cert` 를 위한 공개 키 인증서는
-.PEM 으로 인코딩(Base64로 인코딩된 DER 포맷)되어야 하며, `--key` 를 위해 주어진
-개인 키에 맞아야 한다.
-개인 키는 일반적으로 PEM 개인 키 포맷이라고 하는,
-암호화되지 않은 형태(unencrypted)이어야 한다. 두 가지 방식 모두에 대해서, PEM의
-시작과 끝 라인(예를 들면, 인증서의 `--------BEGIN CERTIFICATE-----` 및 `-------END CERTIFICATE----`)
-은 포함되면 *안* 된다.
+공개/개인 키 쌍은 사전에 준비되어야 한다. 
+`--cert` 에 들어가는 공개 키 인증서는 
+[RFC 7468의 섹션 5.1](https://datatracker.ietf.org/doc/html/rfc7468#section-5.1)에 있는 DER 형식이어야 하고, 
+`--key` 에 들어가는 개인 키 인증서는 
+[RFC 7468의 섹션 11](https://datatracker.ietf.org/doc/html/rfc7468#section-11)에 있는 DER 형식 PKCS #8 을 따라야 한다.
+
+{{< note >}}
+`kubernetes.io/tls` 시크릿은 
+키 및 인증서에 Base64 인코드된 DER 데이터를 보관한다. 
+개인 키 및 인증서에 사용되는 PEM 형식에 익숙하다면, 
+이 base64 데이터는 PEM 형식에서 맨 윗줄과 아랫줄을 제거한 것과 동일하다.
+
+예를 들어, 인증서의 경우, 
+`--------BEGIN CERTIFICATE-----` 및 `-------END CERTIFICATE----` 줄은 포함되면 **안** 된다.
+{{< /note >}}
 
 ### 부트스트랩 토큰 시크릿
 
@@ -403,367 +1206,23 @@ stringData:
   usage-bootstrap-signing: "true"
 ```
 
-## 시크릿 생성하기
 
-시크릿을 생성하기 위한 몇 가지 옵션이 있다.
-
-- [`kubectl` 명령을 사용하여 시크릿 생성하기](/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
-- [구성 파일로 시크릿 생성하기](/docs/tasks/configmap-secret/managing-secret-using-config-file/)
-- [kustomize를 사용하여 시크릿 생성하기](/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
-
-## 시크릿 편집하기
-
-기존 시크릿은 다음 명령을 사용하여 편집할 수 있다.
-
-```shell
-kubectl edit secrets mysecret
-```
-
-이렇게 하면 기본으로 설정된 에디터가 열리고 `data` 필드에 base64로 인코딩된 시크릿 값을 업데이트할 수 있다.
-
-```yaml
-# 아래 오브젝트를 수정한다. '#'로 시작하는 줄은 무시되고,
-# 빈 파일은 편집이 취소될 것이다. 이 파일을 저장하는 도중에 오류가 발생하면
-# 관련 오류와 함께 다시 열린다.
-#
-apiVersion: v1
-data:
-  username: YWRtaW4=
-  password: MWYyZDFlMmU2N2Rm
-kind: Secret
-metadata:
-  annotations:
-    kubectl.kubernetes.io/last-applied-configuration: { ... }
-  creationTimestamp: 2016-01-22T18:41:56Z
-  name: mysecret
-  namespace: default
-  resourceVersion: "164619"
-  uid: cfee02d6-c137-11e5-8d73-42010af00002
-type: Opaque
-```
-
-## 시크릿 사용하기
-
-시크릿은 데이터 볼륨으로 마운트되거나 파드의 컨테이너에서 사용할
-{{< glossary_tooltip text="환경 변수" term_id="container-env-variables" >}}로
-노출될 수 있다. 또한, 시크릿은 파드에 직접 노출되지 않고,
-시스템의 다른 부분에서도 사용할 수 있다. 예를 들어, 시크릿은
-시스템의 다른 부분이 사용자를 대신해서 외부 시스템과 상호 작용하는 데 사용해야 하는
-자격 증명을 보유할 수 있다.
-
-### 시크릿을 파드의 파일로 사용하기
-
-파드의 볼륨에서 시크릿을 사용하려면 다음과 같이 한다.
-
-1. 시크릿을 생성하거나 기존 시크릿을 사용한다. 여러 파드가 동일한 시크릿을 참조할 수 있다.
-1. `.spec.volumes[].` 아래에 볼륨을 추가하려면 파드 정의를 수정한다. 볼륨의 이름을 뭐든지 지정하고, 시크릿 오브젝트의 이름과 동일한 `.spec.volumes[].secret.secretName` 필드를 생성한다.
-1. 시크릿이 필요한 각 컨테이너에 `.spec.containers[].volumeMounts[]` 를 추가한다. 시크릿을 표시하려는 사용되지 않은 디렉터리 이름에 `.spec.containers[].volumeMounts[].readOnly = true` 와 `.spec.containers[].volumeMounts[].mountPath` 를 지정한다.
-1. 프로그램이 해당 디렉터리에서 파일을 찾도록 이미지 또는 커맨드 라인을 수정한다. 시크릿 `data` 맵의 각 키는 `mountPath` 아래의 파일명이 된다.
-
-다음은 볼륨에 시크릿을 마운트하는 파드의 예시이다.
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: mypod
-spec:
-  containers:
-  - name: mypod
-    image: redis
-    volumeMounts:
-    - name: foo
-      mountPath: "/etc/foo"
-      readOnly: true
-  volumes:
-  - name: foo
-    secret:
-      secretName: mysecret
-```
-
-사용하려는 각 시크릿은 `.spec.volumes` 에서 참조해야 한다.
-
-파드에 여러 컨테이너가 있는 경우, 모든 컨테이너는
-자체 `volumeMounts` 블록이 필요하지만, 시크릿에 대해서는 시크릿당 하나의 `.spec.volumes` 만 필요하다.
-
-많은 파일을 하나의 시크릿으로 패키징하거나, 여러 시크릿을 사용할 수 있으며, 어느 쪽이든 편리한 방법을 사용하면 된다.
-
-#### 특정 경로에 대한 시크릿 키 투영하기
-
-시크릿 키가 투영되는 볼륨 내 경로를 제어할 수도 있다.
-`.spec.volumes[].secret.items` 필드를 사용하여 각 키의 대상 경로를 변경할 수 있다.
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: mypod
-spec:
-  containers:
-  - name: mypod
-    image: redis
-    volumeMounts:
-    - name: foo
-      mountPath: "/etc/foo"
-      readOnly: true
-  volumes:
-  - name: foo
-    secret:
-      secretName: mysecret
-      items:
-      - key: username
-        path: my-group/my-username
-```
-
-다음과 같은 일들이 일어날 것이다.
-
-* `username` 시크릿은 `/etc/foo/username` 대신 `/etc/foo/my-group/my-username` 아래의 파일에 저장된다.
-* `password` 시크릿은 투영되지 않는다.
-
-`.spec.volumes[].secret.items` 를 사용하면, `items` 에 지정된 키만 투영된다.
-시크릿의 모든 키를 사용하려면, 모든 키가 `items` 필드에 나열되어야 한다.
-나열된 모든 키는 해당 시크릿에 존재해야 한다. 그렇지 않으면, 볼륨이 생성되지 않는다.
-
-#### 시크릿 파일 퍼미션
-
-단일 시크릿 키에 대한 파일 접근 퍼미션 비트를 설정할 수 있다.
-만약 사용자가 퍼미션을 지정하지 않는다면, 기본적으로 `0644` 가 사용된다.
-전체 시크릿 볼륨에 대한 기본 모드를 설정하고 필요한 경우 키별로 오버라이드할 수도 있다.
-
-예를 들어, 다음과 같은 기본 모드를 지정할 수 있다.
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: mypod
-spec:
-  containers:
-  - name: mypod
-    image: redis
-    volumeMounts:
-    - name: foo
-      mountPath: "/etc/foo"
-  volumes:
-  - name: foo
-    secret:
-      secretName: mysecret
-      defaultMode: 0400
-```
-
-그러고 나면, 시크릿이 `/etc/foo` 에 마운트되고 시크릿 볼륨 마운트로 생성된
-모든 파일의 퍼미션은 `0400` 이 될 것이다.
-
-참고로 JSON 스펙은 8진수 표기법을 지원하지 않으므로, 0400 퍼미션에 대해서
-값 256을 사용한다. 파드에 대해 JSON 대신 YAML을 사용하는 경우, 8진수 표기법을
-사용하여 보다 자연스러운 방식으로 퍼미션을 지정할 수 있다.
-
-참고로 파드에 `kubectl exec` 을 사용하는 경우, 예상되는 파일 모드를 찾기 위해
-심볼릭 링크를 따라가야 한다. 예를 들면, 다음과 같다.
-
-파드에서 시크릿 파일 모드를 확인한다.
-```
-kubectl exec mypod -it sh
-
-cd /etc/foo
-ls -l
-```
-
-출력 결과는 다음과 비슷하다.
-```
-total 0
-lrwxrwxrwx 1 root root 15 May 18 00:18 password -> ..data/password
-lrwxrwxrwx 1 root root 15 May 18 00:18 username -> ..data/username
-```
-
-올바른 파일 모드를 찾으려면 심볼릭 링크를 따라간다.
-
-```
-cd /etc/foo/..data
-ls -l
-```
-
-출력 결과는 다음과 비슷하다.
-```
-total 8
--r-------- 1 root root 12 May 18 00:18 password
--r-------- 1 root root  5 May 18 00:18 username
-```
-
-이전 예제에서와 같이 매핑을 사용하여, 다음과 같이
-다른 파일에 대해 다른 퍼미션을 지정할 수도 있다.
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: mypod
-spec:
-  containers:
-  - name: mypod
-    image: redis
-    volumeMounts:
-    - name: foo
-      mountPath: "/etc/foo"
-  volumes:
-  - name: foo
-    secret:
-      secretName: mysecret
-      items:
-      - key: username
-        path: my-group/my-username
-        mode: 0777
-```
-
-이 경우, `/etc/foo/my-group/my-username` 에 있는 파일은
-결과적으로 `0777` 퍼미션 값을 갖게 된다. JSON을 사용하는 경우, JSON 제한으로 인해
-10진수 표기법(`511`)으로 모드를 지정해야 한다.
-
-참고로 이 퍼미션 값은 나중에 읽을 때 10진수 표기법으로
-표시될 수 있다.
-
-#### 볼륨에서 시크릿 값 사용하기
-
-시크릿 볼륨을 마운트하는 컨테이너 내부에서, 시크릿 키는 파일로
-나타나고 시크릿 값은 base64로 디코딩되어 이런 파일 내에 저장된다.
-다음은 위의 예에서 컨테이너 내부에서 실행된 명령의 결과이다.
-
-```shell
-ls /etc/foo/
-```
-
-출력 결과는 다음과 비슷하다.
-
-```
-username
-password
-```
-
-```shell
-cat /etc/foo/username
-```
-
-출력 결과는 다음과 비슷하다.
-
-```
-admin
-```
-
-```shell
-cat /etc/foo/password
-```
-
-출력 결과는 다음과 비슷하다.
-
-```
-1f2d1e2e67df
-```
-
-컨테이너의 프로그램은 파일에서 시크릿을 읽는 역할을
-한다.
-
-#### 마운트된 시크릿은 자동으로 업데이트됨
-
-볼륨에서 현재 사용되는 시크릿이 업데이트되면, 투영된 키도 결국 업데이트된다.
-kubelet은 마운트된 시크릿이 모든 주기적인 동기화에서 최신 상태인지 여부를 확인한다.
-그러나, kubelet은 시크릿의 현재 값을 가져 오기 위해 로컬 캐시를 사용한다.
-캐시의 유형은 [KubeletConfiguration 구조체](/docs/reference/config-api/kubelet-config.v1beta1/)의
-`ConfigMapAndSecretChangeDetectionStrategy` 필드를 사용하여 구성할 수 있다.
-시크릿은 watch(기본값), ttl 기반 또는 API 서버로 모든 요청을 직접
-리디렉션하여 전파할 수 있다.
-결과적으로, 시크릿이 업데이트된 순간부터 새로운 키가 파드에 투영되는
-순간까지의 총 지연 시간은 kubelet 동기화 시간 + 캐시
-전파 지연만큼 길 수 있다. 여기서 캐시 전파 지연은 선택한 캐시 유형에 따라
-달라질 수 있다(캐시 전파 지연은 각 캐시 유형에 따라 watch 전파 지연, 캐시의 ttl, 또는 0 에 상응함).
-
-{{< note >}}
-시크릿을 [subPath](/ko/docs/concepts/storage/volumes/#subpath-사용하기)
-볼륨 마운트로 사용하는 컨테이너는 시크릿 업데이트를
-받지 않는다.
-{{< /note >}}
-
-### 시크릿을 환경 변수로 사용하기
-
-파드에서 {{< glossary_tooltip text="환경 변수" term_id="container-env-variables" >}}에
-시크릿을 사용하려면 다음과 같이 한다.
-
-1. 시크릿을 생성하거나 기존 시크릿을 사용한다. 여러 파드가 동일한 시크릿을 참조할 수 있다.
-1. 사용하려는 각 시크릿 키에 대한 환경 변수를 추가하려면 시크릿 키 값을 사용하려는 각 컨테이너에서 파드 정의를 수정한다. 시크릿 키를 사용하는 환경 변수는 시크릿의 이름과 키를 `env[].valueFrom.secretKeyRef` 에 채워야 한다.
-1. 프로그램이 지정된 환경 변수에서 값을 찾도록 이미지 및/또는 커맨드 라인을 수정한다.
-
-다음은 환경 변수의 시크릿을 사용하는 파드의 예시이다.
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: secret-env-pod
-spec:
-  containers:
-  - name: mycontainer
-    image: redis
-    env:
-      - name: SECRET_USERNAME
-        valueFrom:
-          secretKeyRef:
-            name: mysecret
-            key: username
-      - name: SECRET_PASSWORD
-        valueFrom:
-          secretKeyRef:
-            name: mysecret
-            key: password
-  restartPolicy: Never
-```
-
-#### 환경 변수에서 시크릿 값 사용하기
-
-환경 변수에서 시크릿을 사용하는 컨테이너 내부에서, 시크릿 키는
-시크릿 데이터의 base64 디코딩된 값을 포함하는 일반 환경 변수로 나타난다.
-다음은 위의 예에서 컨테이너 내부에서 실행된 명령의 결과이다.
-
-```shell
-echo $SECRET_USERNAME
-```
-
-출력 결과는 다음과 비슷하다.
-
-```
-admin
-```
-
-```shell
-echo $SECRET_PASSWORD
-```
-
-출력 결과는 다음과 비슷하다.
-
-```
-1f2d1e2e67df
-```
-
-#### 시크릿 업데이트 후 환경 변수가 업데이트되지 않음
-
-컨테이너가 환경 변수에서 이미 시크릿을 사용하는 경우, 다시 시작하지 않는 한 컨테이너에서 시크릿 업데이트를 볼 수 없다.
-시크릿이 변경될 때 재시작을 트리거하는 써드파티 솔루션이 있다.
-
-## 변경할 수 없는(immutable) 시크릿 {#secret-immutable}
+## 수정 불가능한(immutable) 시크릿 {#secret-immutable}
 
 {{< feature-state for_k8s_version="v1.21" state="stable" >}}
 
-쿠버네티스 기능인 _변경할 수 없는 시크릿과 컨피그맵_ 은
-개별 시크릿과 컨피그맵을 변경할 수 없는 것으로 설정하는 옵션을 제공한다. 시크릿을 광범위하게 사용하는
-클러스터(최소 수만 개의 고유한 시크릿이 파드에 마운트)의 경우, 데이터 변경을 방지하면
-다음과 같은 이점이 있다.
+쿠버네티스에서 특정 시크릿(및 컨피그맵)을 _수정 불가능_ 으로 표시할 수 있다.
+기존 시크릿 데이터의 변경을 금지시키면 다음과 같은 이점을 가진다.
 
-- 애플리케이션 중단을 유발할 수 있는 우발적(또는 원하지 않는) 업데이트로부터 보호
-- immutable로 표시된 시크릿에 대한 감시를 중단하여, kube-apiserver의 부하를
-크게 줄임으로써 클러스터의 성능을 향상시킴
+- 잘못된(또는 원치 않은) 업데이트를 차단하여 애플리케이션 중단을 방지
+- (수만 개 이상의 시크릿-파드 마운트와 같이 시크릿을 대규모로 사용하는 클러스터의 경우,) 
+  수정 불가능한 시크릿으로 전환하면 kube-apiserver의 부하를 크게 줄여 클러스터의 성능을 향상시킬 수 있다. 
+  kubelet은 수정 불가능으로 지정된 시크릿에 대해서는 
+  [감시(watch)]를 유지할 필요가 없기 때문이다.
 
-이 기능은 v1.19부터 기본적으로 활성화된 `ImmutableEphemeralVolumes`
-[기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)에
-의해 제어된다. `immutable` 필드를 `true` 로 설정하여
-변경할 수 없는 시크릿을 생성할 수 있다. 다음은 예시이다.
+### 시크릿을 수정 불가능으로 지정하기 {#secret-immutable-create}
+
+다음과 같이 시크릿의 `immutable` 필드를 `true`로 설정하여 수정 불가능한 시크릿을 만들 수 있다.
 ```yaml
 apiVersion: v1
 kind: Secret
@@ -774,392 +1233,19 @@ data:
 immutable: true
 ```
 
-{{< note >}}
-시크릿 또는 컨피그맵을 immutable로 표시하면, 이 변경 사항을 되돌리거나
-`data` 필드 내용을 변경할 수 _없다_. 시크릿을 삭제하고 다시 생성할 수만 있다.
-기존 파드는 삭제된 시크릿에 대한 마운트 포인트를 유지하며, 이러한 파드를 다시 생성하는 것을
-권장한다.
-{{< /note >}}
-
-### imagePullSecrets 사용하기
-
-`imagePullSecrets` 필드는 동일한 네임스페이스의 시크릿에 대한 참조 목록이다.
-`imagePullSecretsDocker` 를 사용하여 도커(또는 다른 컨테이너) 이미지 레지스트리
-비밀번호가 포함된 시크릿을 kubelet에 전달할 수 있다. kubelet은 이 정보를 사용해서 파드를 대신하여 프라이빗 이미지를 가져온다.
-`imagePullSecrets` 필드에 대한 자세한 정보는 [PodSpec API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core)를 참고한다.
-
-#### imagePullSecret 수동으로 지정하기
-
-[컨테이너 이미지 문서](/ko/docs/concepts/containers/images/#파드에-imagepullsecrets-명시)에서 `ImagePullSecrets` 지정하는 방법을 배울 수 있다.
-
-### imagePullSecrets가 자동으로 연결되도록 정렬하기
-
-수동으로 `imagePullSecrets` 를 생성하고, 서비스어카운트(ServiceAccount)에서
-참조할 수 있다. 해당 서비스어카운트로 생성되거나
-기본적인 서비스어카운트로 생성된 모든 파드는 파드의 `imagePullSecrets`
-필드를 가져오고 서비스 어카운트의 필드로 설정한다.
-해당 프로세스에 대한 자세한 설명은
-[서비스 어카운트에 ImagePullSecrets 추가하기](/docs/tasks/configure-pod-container/configure-service-account/#add-imagepullsecrets-to-a-service-account)를 참고한다.
-
-## 상세 내용
-
-### 제약 사항
-
-시크릿 볼륨 소스는 지정된 오브젝트 참조가
-실제로 시크릿 유형의 오브젝트를 가리키는지 확인하기 위해 유효성을 검사한다. 따라서, 시크릿에
-의존하는 모든 파드보다 먼저 시크릿을 만들어야 한다.
-
-시크릿 리소스는 {{< glossary_tooltip text="네임스페이스" term_id="namespace" >}}에 존재한다.
-시크릿은 동일한 네임스페이스에 있는 파드에서만 참조할 수 있다.
-
-개별 시크릿의 크기는 1MiB로 제한된다. 이는 API 서버와
-kubelet 메모리를 소진시키는 매우 큰 시크릿 생성을 막기 위한 것이다.
-그러나, 많은 작은 시크릿을 만들어도 메모리가 고갈될 수 있다. 시크릿으로
-인한 메모리 사용에 대한 보다 포괄적인 제한은 향후 버전에 계획된 기능이다.
-
-kubelet은 API 서버에서 시크릿을 가져오는 파드에 대한
-시크릿 사용만 지원한다.
-여기에는 `kubectl` 을 사용하거나, 레플리케이션 컨트롤러를 통해 간접적으로 생성된 모든
-파드가 포함된다. kubelet의 `--manifest-url` 플래그, `--config` 플래그 또는
-kubectl의 REST API(이 방법들은 파드를 생성하는 일반적인 방법이 아님)로
-생성된 파드는 포함하지 않는다.
-
-시크릿은 optional(선택 사항)로 표시되지 않는 한 파드에서 환경
-변수로 사용되기 전에 생성되어야 한다. 존재하지 않는 시크릿을
-참조하면 파드가 시작되지 않는다.
-
-명명된 시크릿에 존재하지 않는 키에 대한 참조(`secretKeyRef` 필드)는
-파드가 시작되지 않도록 한다.
-
-잘못된 환경 변수 이름으로 간주되는 키가 있는 `envFrom` 필드로
-환경 변수를 채우는 데 사용되는 시크릿은 해당 키를
-건너뛴다. 이러면 해당 파드가 시작될 수 있다. 원인이 `InvalidVariableNames` 인
-이벤트가 발생하며 건너뛴 유효하지 않은 키 목록이
-포함된 메시지가 생성된다. 다음의 예는 2개의 유효하지 않은
-키(`1badkey` 와 `2alsobad`)가 포함된 default/mysecret을 참조하는 파드를 보여준다.
-
-```shell
-kubectl get events
-```
-
-출력 결과는 다음과 비슷하다.
-
-```
-LASTSEEN   FIRSTSEEN   COUNT     NAME            KIND      SUBOBJECT                         TYPE      REASON
-0s         0s          1         dapi-test-pod   Pod                                         Warning   InvalidEnvironmentVariableNames   kubelet, 127.0.0.1      Keys [1badkey, 2alsobad] from the EnvFrom secret default/mysecret were skipped since they are considered invalid environment variable names.
-```
-
-### 시크릿 및 파드 수명 상호 작용
-
-쿠버네티스 API를 호출하여 파드가 생성될 때, 참조된 시크릿이 있는지 확인하지
-않는다. 일단 파드가 스케줄되면, kubelet은 시크릿 값 가져오기를
-시도한다. 시크릿이 존재하지 않거나 API 서버에 대한
-일시적인 연결 부족으로 인해 시크릿을 가져올 수 없는 경우, kubelet은
-주기적으로 재시도한다. kubelet은 아직 시작되지 않은 이유를 설명하는
-파드에 대한 이벤트를 보고한다. 시크릿을 가져오면, kubelet은
-이를 포함하는 볼륨을 생성하고 마운트한다. 모든 파드의 볼륨이
-마운트될 때까지 파드의 컨테이너는 시작되지 않는다.
-
-## 사용 사레
-
-### 사용 사례: 컨테이너 환경 변수로 사용하기
-
-시크릿 정의를 작성한다.
-
-```yaml
-apiVersion: v1
-kind: Secret
-metadata:
-  name: mysecret
-type: Opaque
-data:
-  USER_NAME: YWRtaW4=
-  PASSWORD: MWYyZDFlMmU2N2Rm
-```
-
-시크릿을 생성한다.
-
-```shell
-kubectl apply -f mysecret.yaml
-```
-
-모든 시크릿 데이터를 컨테이너 환경 변수로 정의하는 데 `envFrom` 을 사용한다. 시크릿의 키는 파드의 환경 변수 이름이 된다.
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: secret-test-pod
-spec:
-  containers:
-    - name: test-container
-      image: k8s.gcr.io/busybox
-      command: [ "/bin/sh", "-c", "env" ]
-      envFrom:
-      - secretRef:
-          name: mysecret
-  restartPolicy: Never
-```
-
-### 사용 사례: ssh 키가 있는 파드
-
-몇 가지 ssh 키를 포함하는 시크릿을 생성한다.
-
-```shell
-kubectl create secret generic ssh-key-secret --from-file=ssh-privatekey=/path/to/.ssh/id_rsa --from-file=ssh-publickey=/path/to/.ssh/id_rsa.pub
-```
-
-출력 결과는 다음과 비슷하다.
-
-```
-secret "ssh-key-secret" created
-```
-
-ssh 키를 포함하는 `secretGenerator` 필드가 있는 `kustomization.yaml` 를 만들 수도 있다.
-
-{{< caution >}}
-사용자 자신의 ssh 키를 보내기 전에 신중하게 생각한다. 클러스터의 다른 사용자가 시크릿에 접근할 수 있다. 쿠버네티스 클러스터를 공유하는 모든 사용자가 접근할 수 있도록 하려는 서비스 어카운트를 사용하고, 사용자가 손상된 경우 이 계정을 취소할 수 있다.
-{{< /caution >}}
-
-이제 ssh 키를 가진 시크릿을 참조하고
-볼륨에서 시크릿을 사용하는 파드를 만들 수 있다.
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: secret-test-pod
-  labels:
-    name: secret-test
-spec:
-  volumes:
-  - name: secret-volume
-    secret:
-      secretName: ssh-key-secret
-  containers:
-  - name: ssh-test-container
-    image: mySshImage
-    volumeMounts:
-    - name: secret-volume
-      readOnly: true
-      mountPath: "/etc/secret-volume"
-```
-
-컨테이너의 명령이 실행될 때, 다음 위치에서 키 부분을 사용할 수 있다.
-
-```
-/etc/secret-volume/ssh-publickey
-/etc/secret-volume/ssh-privatekey
-```
-
-그러면 컨테이너는 ssh 연결을 맺기 위해 시크릿 데이터를 자유롭게 사용할 수 있다.
-
-### 사용 사례: 운영 / 테스트 자격 증명이 있는 파드
-
-이 예제에서는 운영 환경의 자격 증명이 포함된 시크릿을
-사용하는 파드와 테스트 환경의 자격 증명이 있는 시크릿을 사용하는 다른 파드를
-보여준다.
-
-사용자는 `secretGenerator` 필드가 있는 `kustomization.yaml` 을 만들거나
-`kubectl create secret` 을 실행할 수 있다.
-
-```shell
-kubectl create secret generic prod-db-secret --from-literal=username=produser --from-literal=password=Y4nys7f11
-```
-
-출력 결과는 다음과 비슷하다.
-
-```
-secret "prod-db-secret" created
-```
-
-테스트 환경의 자격 증명에 대한 시크릿을 만들 수도 있다.
-
-```shell
-kubectl create secret generic test-db-secret --from-literal=username=testuser --from-literal=password=iluvtests
-```
-
-출력 결과는 다음과 비슷하다.
-
-```
-secret "test-db-secret" created
-```
+또한 기존의 수정 가능한 시크릿을 변경하여 수정 불가능한 시크릿으로 바꿀 수도 있다.
 
 {{< note >}}
-`$`, `\`, `*`, `=` 그리고 `!` 와 같은 특수 문자는 사용자의 [셸](https://ko.wikipedia.org/wiki/셸)에 의해 해석되고 이스케이핑이 필요하다.
-대부분의 셸에서 비밀번호를 이스케이프하는 가장 쉬운 방법은 작은 따옴표(`'`)로 묶는 것이다.
-예를 들어, 실제 비밀번호가 `S!B\*d$zDsb=` 이면, 다음과 같은 명령을 실행해야 한다.
-
-```shell
-kubectl create secret generic dev-db-secret --from-literal=username=devuser --from-literal=password='S!B\*d$zDsb='
-```
-
-파일(`--from-file`)에서는 비밀번호의 특수 문자를 이스케이프할 필요가 없다.
+시크릿 또는 컨피그맵이 수정 불가능으로 지정되면, 이 변경을 취소하거나 `data` 필드의 내용을 바꿀 수 _없다_. 
+시크릿을 삭제하고 다시 만드는 것만 가능하다. 
+기존의 파드는 삭제된 시크릿으로의 마운트 포인트를 유지하기 때문에, 
+이러한 파드는 재생성하는 것을 추천한다.
 {{< /note >}}
 
-이제 파드를 생성한다.
+## 시크릿을 위한 정보 보안(Information security)
 
-```shell
-cat <<EOF > pod.yaml
-apiVersion: v1
-kind: List
-items:
-- kind: Pod
-  apiVersion: v1
-  metadata:
-    name: prod-db-client-pod
-    labels:
-      name: prod-db-client
-  spec:
-    volumes:
-    - name: secret-volume
-      secret:
-        secretName: prod-db-secret
-    containers:
-    - name: db-client-container
-      image: myClientImage
-      volumeMounts:
-      - name: secret-volume
-        readOnly: true
-        mountPath: "/etc/secret-volume"
-- kind: Pod
-  apiVersion: v1
-  metadata:
-    name: test-db-client-pod
-    labels:
-      name: test-db-client
-  spec:
-    volumes:
-    - name: secret-volume
-      secret:
-        secretName: test-db-secret
-    containers:
-    - name: db-client-container
-      image: myClientImage
-      volumeMounts:
-      - name: secret-volume
-        readOnly: true
-        mountPath: "/etc/secret-volume"
-EOF
-```
-
-동일한 kustomization.yaml에 파드를 추가한다.
-
-```shell
-cat <<EOF >> kustomization.yaml
-resources:
-- pod.yaml
-EOF
-```
-
-다음을 실행하여 API 서버에 이러한 모든 오브젝트를 적용한다.
-
-```shell
-kubectl apply -k .
-```
-
-두 컨테이너 모두 각 컨테이너의 환경에 대한 값을 가진 파일시스템에 다음의 파일이 존재한다.
-
-```
-/etc/secret-volume/username
-/etc/secret-volume/password
-```
-
-두 파드의 사양이 한 필드에서만 어떻게 다른지 확인한다. 이를 통해
-공통 파드 템플릿에서 다양한 기능을 가진 파드를 생성할 수 있다.
-
-두 개의 서비스 어카운트를 사용하여 기본 파드 명세를 더욱 단순화할 수 있다.
-
-1. `prod-db-secret` 을 가진 `prod-user`
-1. `test-db-secret` 을 가진 `test-user`
-
-파드 명세는 다음과 같이 단축된다.
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: prod-db-client-pod
-  labels:
-    name: prod-db-client
-spec:
-  serviceAccount: prod-db-client
-  containers:
-  - name: db-client-container
-    image: myClientImage
-```
-
-### 사용 사례: 시크릿 볼륨의 도트 파일(dotfile)
-
-점으로 시작하는 키를 정의하여 데이터를 "숨김"으로 만들 수 있다.
-이 키는 도트 파일 또는 "숨겨진" 파일을 나타낸다. 예를 들어, 다음 시크릿이 `secret-volume` 볼륨에
-마운트되면 아래와 같다.
-
-```yaml
-apiVersion: v1
-kind: Secret
-metadata:
-  name: dotfile-secret
-data:
-  .secret-file: dmFsdWUtMg0KDQo=
----
-apiVersion: v1
-kind: Pod
-metadata:
-  name: secret-dotfiles-pod
-spec:
-  volumes:
-  - name: secret-volume
-    secret:
-      secretName: dotfile-secret
-  containers:
-  - name: dotfile-test-container
-    image: k8s.gcr.io/busybox
-    command:
-    - ls
-    - "-l"
-    - "/etc/secret-volume"
-    volumeMounts:
-    - name: secret-volume
-      readOnly: true
-      mountPath: "/etc/secret-volume"
-```
-
-볼륨은 `.secret-file` 이라는 하나의 파일을 포함하고,
-`dotfile-test-container` 는 `/etc/secret-volume/.secret-file` 경로에
-이 파일을 가지게 된다.
-
-{{< note >}}
-`ls -l` 명령의 결과에서 숨겨진 점으로 시작하는 파일들은
-디렉터리 내용을 나열할 때 `ls -la` 를 사용해야 이 파일들을 볼 수 있다.
-{{< /note >}}
-
-### 사용 사례: 파드의 한 컨테이너에 표시되는 시크릿
-
-HTTP 요청을 처리하고, 복잡한 비즈니스 로직을 수행한 다음, HMAC이 있는 일부 메시지에
-서명해야 하는 프로그램을 고려한다. 애플리케이션 로직이
-복잡하기 때문에, 서버에서 눈에 띄지 않는 원격 파일 읽기 공격이
-있을 수 있으며, 이로 인해 개인 키가 공격자에게 노출될 수 있다.
-
-이는 두 개의 컨테이너의 두 개 프로세스로 나눌 수 있다. 사용자 상호 작용과
-비즈니스 로직을 처리하지만, 개인 키를 볼 수 없는 프론트엔드 컨테이너와
-개인 키를 볼 수 있고, 프론트엔드의 간단한 서명 요청(예를 들어, localhost 네트워킹을 통해)에
-응답하는 서명자 컨테이너로 나눌 수 있다.
-
-이 분할된 접근 방식을 사용하면, 공격자는 이제 애플리케이션 서버를 속여서
-파일을 읽는 것보다 다소 어려운 임의적인 어떤 작업을 수행해야
-한다.
-
-<!-- TODO: explain how to do this while still using automation. -->
-
-## 모범 사례
-
-### 시크릿 API를 사용하는 클라이언트
-
-시크릿 API와 상호 작용하는 애플리케이션을 배포할 때,
-[RBAC](/docs/reference/access-authn-authz/rbac/)과 같은
-[인가 정책](/ko/docs/reference/access-authn-authz/authorization/)을
-사용하여 접근을 제한해야 한다.
+컨피그맵과 시크릿은 비슷하게 동작하지만, 
+쿠버네티스는 시크릿 오브젝트에 대해 약간의 추가적인 보호 조치를 적용한다.
 
 시크릿은 종종 다양한 중요도에 걸친 값을 보유하며, 이 중 많은 부분이
 쿠버네티스(예: 서비스 어카운트 토큰)와 외부 시스템으로 단계적으로
@@ -1167,78 +1253,78 @@ HTTP 요청을 처리하고, 복잡한 비즈니스 로직을 수행한 다음,
 동일한 네임스페이스 내의 다른 앱이 이러한 가정을
 무효화할 수 있다.
 
-이러한 이유로 네임스페이스 내 시크릿에 대한 `watch` 와 `list` 요청은
-매우 강력한 기능이며, 시크릿을 나열하면 클라이언트가 해당 네임스페이스에
-있는 모든 시크릿의 값을 검사할 수 있기 때문에 피해야 한다. 클러스터의
-모든 시크릿을 감시(`watch`)하고 나열(`list`)하는 기능은 가장 특권이 있는 시스템 레벨의
-컴포넌트에 대해서만 예약되어야 한다.
+해당 노드의 파드가 필요로 하는 경우에만 시크릿이 노드로 전송된다. 
+시크릿을 파드 내부로 마운트할 때, 기밀 데이터가 보존적인(durable) 저장소에 기록되지 않도록 하기 위해 
+kubelet이 데이터 복제본을 `tmpfs`에 저장한다. 
+해당 시크릿을 사용하는 파드가 삭제되면, 
+kubelet은 시크릿에 있던 기밀 데이터의 로컬 복사본을 삭제한다.
 
-시크릿 API에 접근해야 하는 애플리케이션은 필요한 시크릿에 대한 `get` 요청을
-수행해야 한다. 이를 통해 관리자는 앱에 필요한
-[개별 인스턴스에 대한 접근을 허용 목록에 추가](/docs/reference/access-authn-authz/rbac/#referring-to-resources)하면서 모든 시크릿에 대한 접근을
-제한할 수 있다.
+파드에는 여러 개의 컨테이너가 있을 수 있다. 
+기본적으로, 사용자가 정의한 컨테이너는 기본 서비스어카운트 및 이에 연관된 시크릿에만 접근할 수 있다. 
+다른 시크릿에 접근할 수 있도록 하려면 
+명시적으로 환경 변수를 정의하거나 컨테이너 내에 볼륨을 맵핑해야 한다.
 
-`get` 반복을 통한 성능 향상을 위해, 클라이언트는 시크릿을
-참조한 다음 리소스를 감시(`watch`)하고, 참조가 변경되면 시크릿을 다시 요청하는 리소스를
-설계할 수 있다. 덧붙여, 클라이언트에게 개별 리소스를 감시(`watch`)하도록 하는 ["대량 감시" API](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/bulk_watch.md)도
-제안되었으며, 쿠버네티스의 후속 릴리스에서 사용할 수
-있을 것이다.
-
-## 보안 속성
-
-### 보호
-
-시크릿은 시크릿을 사용하는 파드와 독립적으로 생성될 수
-있으므로, 파드 생성, 보기, 편집 워크플로 중에
-시크릿이 노출될 위험이 적다. 또한 시스템은 가능한 경우
-디스크에 기록하지 않는 등 시크릿에 대한 추가 예방 조치를
-취할 수 있다.
-
-해당 노드의 파드에 필요한 경우에만 시크릿이 노드로 전송된다.
-kubelet은 시크릿이 디스크 저장소에 기록되지 않도록 시크릿을
-`tmpfs` 에 저장한다. 일단 시크릿에 의존하는 파드가 삭제되면, kubelet은
-시크릿 데이터의 로컬 복제본도 삭제한다.
-
-동일한 노드의 여러 파드에 대한 시크릿이 있을 수 있다. 그러나
-파드가 요청하는 시크릿만 해당 컨테이너 내에서 잠재적으로 볼 수 있다.
+동일한 노드의 여러 파드에 대한 시크릿이 있을 수 있다. 
+그러나 잠재적으로는 파드가 요청한 시크릿만 해당 파드의 컨테이너 내에서 볼 수 있다. 
 따라서, 하나의 파드는 다른 파드의 시크릿에 접근할 수 없다.
 
-파드에는 여러 개의 컨테이너가 있을 수 있다. 그러나, 파드의 각 컨테이너는
-컨테이너 내에서 볼 수 있도록 파드의 `volumeMounts` 에 있는 시크릿 볼륨을
-요청해야 한다. 이것은 유용한 [파드 레벨에서의 보안
-파티션](#사용-사례-파드의-한-컨테이너에-표시되는-시크릿)을 구성하는 데 사용할 수 있다.
+{{< warning >}}
+노드 상의 높은 권한을 갖는(privileged) 컨테이너는 
+해당 노드에 있는 모든 시크릿에 접근할 수 있다.
+{{< /warning >}}
 
-대부분의 쿠버네티스 배포판에서, 사용자와 API 서버 간,
-API 서버에서 kubelet으로의 통신은 SSL/TLS로 보호된다.
-이러한 채널을 통해 전송될 때 시크릿이 보호된다.
 
-{{< feature-state for_k8s_version="v1.13" state="beta" >}}
+### 개발자를 위한 보안 추천 사항
 
-시크릿 데이터에 대해 [저장 시 암호화(encryption at rest)](/docs/tasks/administer-cluster/encrypt-data/)를
-활성화할 수 있으며, 이를 통해 보안성에 대한 보장 없이는 시크릿이 {{< glossary_tooltip term_id="etcd" >}}에 저장되지 않도록 한다 .
+- 애플리케이션은 환경 변수 또는 볼륨에서 기밀 정보를 읽은 뒤에 기밀 정보를 계속 보호해야 한다. 
+  예를 들어, 애플리케이션은 비밀 데이터를 암호화되지 않은 상태로 기록하거나 
+  신뢰할 수 없는 당사자에게 전송하지 말아야 한다.
+- 파드에 여러 컨테이너가 있고, 
+  그 중 한 컨테이너만 시크릿에 접근해야 하는 경우, 
+  다른 컨테이너는 해당 시크릿에 접근할 수 없도록 
+  볼륨 마운트 또는 환경 변수 구성을 적절히 정의한다.
+- {{< glossary_tooltip text="매니페스트" term_id="manifest" >}}를 통해 시크릿을 구성하고, 
+  이 안에 비밀 데이터가 base64로 인코딩된 경우, 
+  이 파일을 공유하거나 소스 저장소에 올리면 
+  해당 매니페스트를 읽을 수 있는 모든 사람이 이 비밀 정보를 볼 수 있음에 주의한다. 
+  base64 인코딩은 암호화 수단이 _아니기 때문에_, 평문과 마찬가지로 기밀성을 제공하지 않는다.
+- 시크릿 API와 통신하는 애플리케이션을 배포할 때, 
+  [RBAC](/docs/reference/access-authn-authz/rbac/)과 같은 
+  [인증 정책](/ko/docs/reference/access-authn-authz/authorization/)을 사용하여 
+  접근을 제한해야 한다.
+- 쿠버네티스 API에서, 네임스페이스 내 시크릿에 대한 `watch` 와 `list` 요청은 매우 강력한 기능이다. 
+  시크릿 목록 조회를 가능하게 하면 
+  클라이언트가 해당 네임스페이스에 있는 모든 시크릿의 값을 검사할 수도 있기 때문에 
+  가능한 한 이러한 접근 권한을 주는 것은 피해야 한다.
 
-### 위험
+### 클러스터 관리자를 위한 보안 추천 사항
 
- - API 서버에서 시크릿 데이터는 {{< glossary_tooltip term_id="etcd" >}}에 저장된다.
-   따라서,
-   - 관리자는 클러스터 데이터에 대해 저장 시 암호화를 활성화해야 한다. (v1.13 이상 필요)
-   - 관리자는 etcd에 대한 접근을 admin 사용자로 제한해야 한다.
-   - 관리자는 더 이상 사용하지 않을 때 etcd에서 사용하는 디스크를 지우거나 폐기할 수 있다.
-   - 클러스터에서 etcd를 실행하는 경우, 관리자는 etcd peer-to-peer 통신에 대해
-     SSL/TLS를 사용해야 한다.
- - base64로 인코딩된 시크릿 데이터가 있는 매니페스트(JSON 또는 YAML)
-   파일을 통해 시크릿을 구성하는 경우, 이 파일을 공유하거나 소스 리포지터리에
-   체크인하면 시크릿이 손상된다. Base64 인코딩은 암호화 방법이 _아니며_
-   일반 텍스트와 동일한 것으로 간주된다.
- - 실수로 기록하거나 신뢰할 수 없는 상대방에게 전송하지 않는 것과 같이,
-   애플리케이션은 볼륨에서 읽은 후에 시크릿 값을 보호해야 한다.
- - 시크릿을 사용하는 파드를 생성할 수 있는 사용자는 해당 시크릿의 값도 볼 수 있다.
-   API 서버 정책이 해당 사용자가 시크릿을 읽을 수 있도록 허용하지 않더라도, 사용자는
-   시크릿을 노출하는 파드를 실행할 수 있다.
+{{< caution >}}
+시크릿을 사용하는 파드를 생성할 수 있는 사용자는 해당 시크릿의 값을 볼 수도 있다. 
+클러스터 정책에서 사용자가 직접 시크릿을 조회하는 것을 금지했더라도, 
+동일한 사용자가 시크릿을 노출하는 파드에 접근 권한을 가질 수 있다.
+{{< /caution >}}
 
+- (쿠버네티스 API를 사용하여) 클러스터의 모든 시크릿을 감시(`watch`) 또는 나열(`list`)하는 권한을 제한하여, 
+  가장 특권이 있는 시스템 레벨의 컴포넌트에만 이 동작을 허용한다.
+- 시크릿 API와 통신하는 애플리케이션을 배포할 때, 
+  [RBAC](/docs/reference/access-authn-authz/rbac/)과 같은 
+  [인증 정책](/ko/docs/reference/access-authn-authz/authorization/)을 사용하여 
+  접근을 제한해야 한다.
+- API 서버에서, (시크릿을 포함한) 오브젝트는 
+  {{< glossary_tooltip term_id="etcd" >}}에 저장된다. 그러므로
+  - 클러스터 관리자만 etcd에 접근할 수 있도록 한다(읽기 전용 접근 포함)
+  - 시크릿 오브젝트에 대해 
+    [저장된 데이터 암호화(encryption at rest)](/docs/tasks/administer-cluster/encrypt-data/)를 활성화하여, 
+    이러한 시크릿의 데이터가 {{< glossary_tooltip term_id="etcd" >}}에 암호화되지 않은 상태로 저장되지 않도록 한다.
+  - etcd가 동작하던 장기 저장 장치를 더 이상 사용하지 않는다면 
+    초기화 또는 파쇄하는 것을 검토한다.
+  - etcd 인스턴스가 여러 개라면, 
+    etcd 피어 간 통신에 SSL/TLS를 사용하고 있는지 확인한다.
 
 ## {{% heading "whatsnext" %}}
 
-- [`kubectl` 을 사용한 시크릿 관리](/docs/tasks/configmap-secret/managing-secret-using-kubectl/)하는 방법 배우기
-- [구성 파일을 사용한 시크릿 관리](/docs/tasks/configmap-secret/managing-secret-using-config-file/)하는 방법 배우기
-- [kustomize를 사용한 시크릿 관리](/docs/tasks/configmap-secret/managing-secret-using-kustomize/)하는 방법 배우기
+- [`kubectl` 을 사용하여 시크릿 관리](/ko/docs/tasks/configmap-secret/managing-secret-using-kubectl/)하는 방법 배우기
+- [구성 파일을 사용하여 시크릿 관리](/ko/docs/tasks/configmap-secret/managing-secret-using-config-file/)하는 방법 배우기
+- [kustomize를 사용하여 시크릿 관리](/ko/docs/tasks/configmap-secret/managing-secret-using-kustomize/)하는 방법 배우기
+- [API 레퍼런스](/docs/reference/kubernetes-api/config-and-storage-resources/secret-v1/)에서 `Secret`에 대해 읽기
diff --git a/content/ko/docs/concepts/containers/_index.md b/content/ko/docs/concepts/containers/_index.md
index fa56660f1a..a6b3420ac6 100644
--- a/content/ko/docs/concepts/containers/_index.md
+++ b/content/ko/docs/concepts/containers/_index.md
@@ -13,7 +13,7 @@ no_list: true
 의미한다.
 
 컨테이너는 기본 호스트 인프라에서 애플리케이션을 분리한다.
-따라서 다양한 클라우드 또는 OS 환경에서 보다 쉽게 ​​배포할 수 있다.
+따라서 다양한 클라우드 또는 OS 환경에서 보다 쉽게 배포할 수 있다.
 
 
 
@@ -22,7 +22,7 @@ no_list: true
 
 ## 컨테이너 이미지
 [컨테이너 이미지](/ko/docs/concepts/containers/images/)는 애플리케이션을
-실행하는 데 필요한 모든 것이 포함된 실행할 준비가 되어있는(ready-to-run) 소프트웨어 패키지이다.
+실행하는 데 필요한 모든 것이 포함된 실행할 준비가 되어 있는(ready-to-run) 소프트웨어 패키지이다.
 여기에는 실행하는 데 필요한 코드와 모든 런타임, 애플리케이션 및 시스템 라이브러리,
 그리고 모든 필수 설정에 대한 기본값이 포함된다.
 
diff --git a/content/ko/docs/concepts/containers/container-environment.md b/content/ko/docs/concepts/containers/container-environment.md
index 58c106fdce..4cd2c0cb09 100644
--- a/content/ko/docs/concepts/containers/container-environment.md
+++ b/content/ko/docs/concepts/containers/container-environment.md
@@ -32,9 +32,9 @@ weight: 20
 함수 호출을 통해서 구할 수 있다.
 
 파드 이름과 네임스페이스는
-[다운워드(Downward) API](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/)를 통해 환경 변수로 구할 수 있다.
+[다운워드(Downward) API](/ko/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/)를 통해 환경 변수로 구할 수 있다.
 
-Docker 이미지에 정적으로 명시된 환경 변수와 마찬가지로,
+컨테이너 이미지에 정적으로 명시된 환경 변수와 마찬가지로,
 파드 정의에서의 사용자 정의 환경 변수도 컨테이너가 사용할 수 있다.
 
 ### 클러스터 정보
@@ -42,7 +42,6 @@ Docker 이미지에 정적으로 명시된 환경 변수와 마찬가지로,
 컨테이너가 생성될 때 실행 중이던 모든 서비스의 목록은 환경 변수로 해당 컨테이너에서 사용할 수
 있다.
 이 목록은 새로운 컨테이너의 파드 및 쿠버네티스 컨트롤 플레인 서비스와 동일한 네임스페이스 내에 있는 서비스로 한정된다.
-이러한 환경 변수는 Docker 링크 구문과 일치한다.
 
 *bar* 라는 이름의 컨테이너에 매핑되는 *foo* 라는 이름의 서비스에 대해서는,
 다음의 형태로 변수가 정의된다.
@@ -52,7 +51,7 @@ FOO_SERVICE_HOST=<서비스가 동작 중인 호스트>
 FOO_SERVICE_PORT=<서비스가 동작 중인 포트>
 ```
 
-서비스에 지정된 IP 주소가 있고 [DNS 애드온](https://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/dns/)이 활성화된 경우, DNS를 통해서 컨테이너가 서비스를 사용할 수 있다.
+서비스에 지정된 IP 주소가 있고 [DNS 애드온](https://releases.k8s.io/{{< param "fullversion" >}}/cluster/addons/dns/)이 활성화된 경우, DNS를 통해서 컨테이너가 서비스를 사용할 수 있다.
 
 
 
diff --git a/content/ko/docs/concepts/containers/container-lifecycle-hooks.md b/content/ko/docs/concepts/containers/container-lifecycle-hooks.md
index d9a1137024..9354e1dac6 100644
--- a/content/ko/docs/concepts/containers/container-lifecycle-hooks.md
+++ b/content/ko/docs/concepts/containers/container-lifecycle-hooks.md
@@ -99,28 +99,28 @@ TERM 신호를 보내기 전에 실행을 완료해야 한다. 실행 중에 `Pr
 예를 들어, 훅을 전송하는 도중에 kubelet이 재시작된다면,
 Kubelet이 구동된 후에 해당 훅은 재전송될 것이다.
 
-### 디버깅 훅 핸들러
+### 훅 핸들러 디버깅
 
 훅 핸들러의 로그는 파드 이벤트로 노출되지 않는다.
 만약 핸들러가 어떠한 이유로 실패하면, 핸들러는 이벤트를 방송한다.
 `PostStart`의 경우, 이것은 `FailedPostStartHook` 이벤트이며,
 `PreStop`의 경우, 이것은 `FailedPreStopHook` 이벤트이다.
-이 이벤트는 `kubectl describe pod <파드_이름>`를 실행하면 볼 수 있다.
-다음은 이 커맨드 실행을 통한 이벤트 출력의 몇 가지 예다.
+실패한 `FailedPreStopHook` 이벤트를 직접 생성하려면, [lifecycle-events.yaml](https://raw.githubusercontent.com/kubernetes/website/main/content/en/examples/pods/lifecycle-events.yaml) 파일을 수정하여 postStart 명령을 "badcommand"로 변경하고 이를 적용한다.
+다음은 `kubectl describe pod lifecycle-demo` 를 실행하여 볼 수 있는 이벤트 출력 예시이다.
 
 ```
 Events:
-  FirstSeen  LastSeen  Count  From                                                   SubObjectPath          Type      Reason               Message
-  ---------  --------  -----  ----                                                   -------------          --------  ------               -------
-  1m         1m        1      {default-scheduler }                                                          Normal    Scheduled            Successfully assigned test-1730497541-cq1d2 to gke-test-cluster-default-pool-a07e5d30-siqd
-  1m         1m        1      {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}  spec.containers{main}  Normal    Pulling              pulling image "test:1.0"
-  1m         1m        1      {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}  spec.containers{main}  Normal    Created              Created container with docker id 5c6a256a2567; Security:[seccomp=unconfined]
-  1m         1m        1      {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}  spec.containers{main}  Normal    Pulled               Successfully pulled image "test:1.0"
-  1m         1m        1      {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}  spec.containers{main}  Normal    Started              Started container with docker id 5c6a256a2567
-  38s        38s       1      {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}  spec.containers{main}  Normal    Killing              Killing container with docker id 5c6a256a2567: PostStart handler: Error executing in Docker Container: 1
-  37s        37s       1      {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}  spec.containers{main}  Normal    Killing              Killing container with docker id 8df9fdfd7054: PostStart handler: Error executing in Docker Container: 1
-  38s        37s       2      {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}                         Warning   FailedSync           Error syncing pod, skipping: failed to "StartContainer" for "main" with RunContainerError: "PostStart handler: Error executing in Docker Container: 1"
-  1m         22s       2      {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}  spec.containers{main}  Warning   FailedPostStartHook
+  Type     Reason               Age              From               Message
+  ----     ------               ----             ----               -------
+  Normal   Scheduled            7s               default-scheduler  Successfully assigned default/lifecycle-demo to ip-XXX-XXX-XX-XX.us-east-2...
+  Normal   Pulled               6s               kubelet            Successfully pulled image "nginx" in 229.604315ms
+  Normal   Pulling              4s (x2 over 6s)  kubelet            Pulling image "nginx"
+  Normal   Created              4s (x2 over 5s)  kubelet            Created container lifecycle-demo-container
+  Normal   Started              4s (x2 over 5s)  kubelet            Started container lifecycle-demo-container
+  Warning  FailedPostStartHook  4s (x2 over 5s)  kubelet            Exec lifecycle hook ([badcommand]) for Container "lifecycle-demo-container" in Pod "lifecycle-demo_default(30229739-9651-4e5a-9a32-a8f1688862db)" failed - error: command 'badcommand' exited with 126: , message: "OCI runtime exec failed: exec failed: container_linux.go:380: starting container process caused: exec: \"badcommand\": executable file not found in $PATH: unknown\r\n"
+  Normal   Killing              4s (x2 over 5s)  kubelet            FailedPostStartHook
+  Normal   Pulled               4s               kubelet            Successfully pulled image "nginx" in 215.66395ms
+  Warning  BackOff              2s (x2 over 3s)  kubelet            Back-off restarting failed container
 ```
 
 
diff --git a/content/ko/docs/concepts/containers/images.md b/content/ko/docs/concepts/containers/images.md
index 886f8247a3..5ccd3e7e53 100644
--- a/content/ko/docs/concepts/containers/images.md
+++ b/content/ko/docs/concepts/containers/images.md
@@ -1,4 +1,7 @@
 ---
+
+
+
 title: 이미지
 content_type: concept
 weight: 10
@@ -16,9 +19,6 @@ weight: 10
 
 이 페이지는 컨테이너 이미지 개념의 개요를 제공한다.
 
-
-
-
 <!-- body -->
 
 ## 이미지 이름
@@ -29,8 +29,7 @@ weight: 10
 
 레지스트리 호스트 이름을 지정하지 않으면, 쿠버네티스는 도커 퍼블릭 레지스트리를 의미한다고 가정한다.
 
-이미지 이름 부분 다음에 _tag_ 를 추가할 수 있다(`docker` 와 `podman`
-등의 명령과 함께 사용).
+이미지 이름 부분 다음에 _tag_ 를 추가할 수 있다(`docker` 또는 `podman` 과 같은 명령을 사용할 때와 동일한 방식으로).
 태그를 사용하면 동일한 시리즈 이미지의 다른 버전을 식별할 수 있다.
 
 이미지 태그는 소문자와 대문자, 숫자, 밑줄(`_`),
@@ -39,14 +38,6 @@ weight: 10
 배치할 수 있는 위치에 대한 추가 규칙이 있다.
 태그를 지정하지 않으면, 쿠버네티스는 태그 `latest` 를 의미한다고 가정한다.
 
-{{< caution >}}
-프로덕션에서 컨테이너를 배포할 때는 `latest` 태그를 사용하지 않아야 한다.
-실행 중인 이미지 버전을 추적하기가 어렵고
-이전에 잘 동작하던 버전으로 롤백하기가 더 어렵다.
-
-대신, `v1.42.0` 과 같은 의미있는 태그를 지정한다.
-{{< /caution >}}
-
 ## 이미지 업데이트
 
 {{< glossary_tooltip text="디플로이먼트" term_id="deployment" >}},
@@ -57,13 +48,68 @@ weight: 10
 {{< glossary_tooltip text="kubelet" term_id="kubelet" >}}이 이미 존재하는
 이미지에 대한 풀을 생략하게 한다.
 
-만약 항상 풀을 강제하고 싶다면, 다음 중 하나를 수행하면 된다.
+### 이미지 풀(pull) 정책
 
-- 컨테이너의 `imagePullPolicy`를 `Always`로 설정.
-- `imagePullPolicy`를 생략하고 `:latest`를 사용할 이미지의 태그로 사용,
-  쿠버네티스는 정책을 `Always`로 설정한다.
-- `imagePullPolicy`와 사용할 이미지의 태그를 생략.
-- [AlwaysPullImages](/docs/reference/access-authn-authz/admission-controllers/#alwayspullimages) 어드미션 컨트롤러를 활성화.
+컨테이너에 대한 `imagePullPolicy`와 이미지의 태그는
+[kubelet](/docs/reference/command-line-tools-reference/kubelet/)이 특정 이미지를 풀(다운로드)하려고 할 때 영향을 준다.
+
+다음은 `imagePullPolicy`에 설정할 수 있는 값의 목록과 
+효과이다.
+
+`IfNotPresent`
+: 이미지가 로컬에 없는 경우에만 내려받는다.
+
+`Always`
+: kubelet이 컨테이너를 기동할 때마다, kubelet이 컨테이너 
+  이미지 레지스트리에 이름과 이미지의
+  [다이제스트](https://docs.docker.com/engine/reference/commandline/pull/#pull-an-image-by-digest-immutable-identifier)가 있는지 질의한다.
+  일치하는 다이제스트를 가진 컨테이너 이미지가 로컬에 있는 경우, kubelet은 캐시된 이미지를 사용한다.
+  이외의 경우, kubelet은 검색된 다이제스트를 가진 이미지를 내려받아서
+  컨테이너를 기동할 때 사용한다.
+
+`Never`
+: kubelet은 이미지를 가져오려고 시도하지 않는다. 이미지가 어쨌든 이미 로컬에 존재하는
+  경우, kubelet은 컨테이너 기동을 시도한다. 이외의 경우 기동은 실패한다.
+  보다 자세한 내용은 [미리 내려받은 이미지](#pre-pulled-images)를 참조한다.
+
+이미지 제공자에 앞서 깔린 캐시의 의미 체계는 레지스트리에 안정적으로 접근할 수 있는 한,
+`imagePullPolicy: Always`인 경우 조차도 효율적이다.
+컨테이너 런타임은 노드에 이미 존재하는 이미지 레이어를 알고
+다시 내려받지 않는다.
+
+{{< note >}}
+프로덕션 환경에서 컨테이너를 배포하는 경우 `:latest` 태그 사용을 지양해야 하는데,
+이미지의 어떤 버전이 기동되고 있는지 추적이 어렵고 
+제대로 롤백하기 어렵게 되기 때문이다.
+
+대신, `v1.42.0`과 같이 의미있는 태그를 명기한다.
+{{< /note >}}
+
+파드가 항상 컨테이너 이미지의 같은 버전을 사용하는 것을 확실히 하려면,
+이미지의 다이제스트를 명기할 수 있다.
+`<image-name>:<tag>`를 `<image-name>@<digest>`로 교체한다.
+(예를 들어, `image@sha256:45b23dee08af5e43a7fea6c4cf9c25ccf269ee113168c19722f87876677c5cb2`).
+
+이미지 태그를 사용하는 경우, 이미지 레지스트리에서 한 이미지를 나타내는 태그에 코드를 변경하게 되면, 기존 코드와 신규 코드를 구동하는 파드가 섞이게 되고 만다. 이미지 다이제스트를 통해 이미지의 특정 버전을 유일하게 식별할 수 있기 때문에, 쿠버네티스는 매번 해당 이미지 이름과 다이제스트가 명시된 컨테이너를 기동해서 같은 코드를 구동한다. 이미지를 다이제스트로 명시하면 구동할 코드를 고정시켜서 레지스트리에서의 변경으로 인해 버전이 섞이는 일이 발생하지 않도록 해 준다.
+
+파드(및 파드 템플릿)가 생성될 때 구동 중인 워크로드가 
+태그가 아닌 이미지 다이제스트를 통해 정의되도록 조작해주는
+서드-파티 [어드미션 컨트롤러](/docs/reference/access-authn-authz/admission-controllers/)가 있다.
+이는 레지스트리에서 태그가 변경되는 일이 발생해도
+구동 중인 워크로드가 모두 같은 코드를 사용하고 있다는 것을 보장하기를 원하는 경우 유용할 것이다.
+
+#### 기본 이미지 풀 정책 {#imagepullpolicy-defaulting}
+
+사용자(또는 컨트롤러)가 신규 파드를 API 서버에 요청할 때,
+특정 조건에 부합하면 클러스터가 `imagePullPolicy` 필드를 설정한다.
+
+- `imagePullPolicy` 필드를 생략하고 컨테이너 이미지의 태그가
+  `:latest`인 경우, `imagePullPolicy`는 자동으로 `Always`로 설정된다.
+- `imagePullPolicy` 필드를 생략하고 컨테이너 이미지의 태그를 명기하지 않은 경우,
+  `imagePullPolicy`는 자동으로 `Always`로 설정된다.
+- `imagePullPolicy` 필드를 생략하고, 
+  명기한 컨테이너 이미지의 태그가 `:latest`가 아니면, 
+  `imagePullPolicy`는 자동으로 `IfNotPresent`로 설정된다.
 
 {{< note >}}
 컨테이너의 `imagePullPolicy` 값은 오브젝트가 처음 _created_ 일 때 항상
@@ -75,7 +121,17 @@ weight: 10
 처음 생성 한 후 모든 오브젝트의 풀 정책을 수동으로 변경해야 한다.
 {{< /note >}}
 
-`imagePullPolicy` 가 특정값 없이 정의되면, `Always` 로 설정된다.
+#### 이미지 풀 강제
+
+이미지를 내려받도록 강제하려면, 다음 중 한가지 방법을 사용한다.
+
+- 컨테이너의 `imagePullPolicy`를 `Always`로 설정한다.
+- `imagePullPolicy`를 생략하고 사용할 이미지 태그로 `:latest`를 사용한다.
+  그러면 사용자가 파드를 요청할 때 쿠버네티스가 정책을 `Always`로 설정한다.
+- `imagePullPolicy`와 사용할 이미지의 태그를 생략한다.
+  그러면 사용자가 파드를 요청할 때 쿠버네티스가 정책을 `Always`로 설정한다.
+- [AlwaysPullImages](/docs/reference/access-authn-authz/admission-controllers/#alwayspullimages) 어드미션 컨트롤러를 활성화 한다.
+
 
 ### 이미지풀백오프(ImagePullBackOff)
 
@@ -118,101 +174,81 @@ kubelet이 컨테이너 런타임을 사용하여 파드의 컨테이너 생성
 
 ### 프라이빗 레지스트리에 인증하도록 노드 구성
 
-노드에서 도커를 실행하는 경우, 프라이빗 컨테이너 레지스트리를 인증하도록
-도커 컨테이너 런타임을 구성할 수 있다.
+크리덴셜 설정에 대한 상세 지침은 사용하는 컨테이너 런타임 및 레지스트리에 따라 다르다. 가장 정확한 정보는 솔루션 설명서를 참조해야 한다.
 
-이 방법은 노드 구성을 제어할 수 있는 경우에 적합하다.
+프라이빗 컨테이너 이미지 레지스트리 구성 예시를 보려면, 
+[프라이빗 레지스트리에서 이미지 가져오기](/ko/docs/tasks/configure-pod-container/pull-image-private-registry/)를 참조한다. 
+해당 예시는 도커 허브에서 제공하는 프라이빗 레지스트리를 사용한다.
 
-{{< note >}}
-기본 쿠버네티스는 도커 구성에서 `auths` 와 `HttpHeaders` 섹션만 지원한다.
-도커 자격 증명 도우미(`credHelpers` 또는 `credsStore`)는 지원되지 않는다.
-{{< /note >}}
+### config.json 파일 해석 {#config-json}
 
+`config.json` 파일의 해석에 있어서, 기존 도커의 구현과 쿠버네티스의 구현에 차이가 있다. 
+도커에서는 `auths` 키에 특정 루트 URL만 기재할 수 있으나, 
+쿠버네티스에서는 glob URL과 접두사-매칭 경로도 기재할 수 있다. 
+이는 곧 다음과 같은 `config.json`도 유효하다는 뜻이다.
 
-도커는 프라이빗 레지스트리를 위한 키를 `$HOME/.dockercfg` 또는 `$HOME/.docker/config.json` 파일에 저장한다. 만약 동일한 파일을
-아래의 검색 경로 리스트에 넣으면, kubelet은 이미지를 풀 할 때 해당 파일을 자격 증명 공급자로 사용한다.
-
-* `{--root-dir:-/var/lib/kubelet}/config.json`
-* `{cwd of kubelet}/config.json`
-* `${HOME}/.docker/config.json`
-* `/.docker/config.json`
-* `{--root-dir:-/var/lib/kubelet}/.dockercfg`
-* `{cwd of kubelet}/.dockercfg`
-* `${HOME}/.dockercfg`
-* `/.dockercfg`
-
-{{< note >}}
-kubelet 프로세스의 환경 변수에서 `HOME=/root` 를 명시적으로 설정해야 할 수 있다.
-{{< /note >}}
-
-프라이빗 레지스트리를 사용도록 사용자의 노드를 구성하기 위해서 권장되는 단계는 다음과 같다. 이
-예제의 경우, 사용자의 데스크탑/랩탑에서 아래 내용을 실행한다.
-
-   1. 사용하고 싶은 각 자격 증명 세트에 대해서 `docker login [서버]`를 실행한다. 이것은 여러분 PC의 `$HOME/.docker/config.json`를 업데이트한다.
-   1. 편집기에서 `$HOME/.docker/config.json`를 보고 사용하고 싶은 자격 증명만 포함하고 있는지 확인한다.
-   1. 노드의 리스트를 구한다. 예를 들면 다음과 같다.
-      - 이름을 원하는 경우: `nodes=$( kubectl get nodes -o jsonpath='{range.items[*].metadata}{.name} {end}' )`
-      - IP를 원하는 경우: `nodes=$( kubectl get nodes -o jsonpath='{range .items[*].status.addresses[?(@.type=="ExternalIP")]}{.address} {end}' )`
-   1. 로컬의 `.docker/config.json`를 위의 검색 경로 리스트 중 하나에 복사한다.
-      - 이를 테스트하기 위한 예: `for n in $nodes; do scp ~/.docker/config.json root@"$n":/var/lib/kubelet/config.json; done`
-
-{{< note >}}
-프로덕션 클러스터의 경우, 이 설정을 필요한 모든 노드에 적용할 수 있도록
-구성 관리 도구를 사용한다.
-{{< /note >}}
-
-프라이빗 이미지를 사용하는 파드를 생성하여 검증한다. 예를 들면 다음과 같다.
-
-```shell
-kubectl apply -f - <<EOF
-apiVersion: v1
-kind: Pod
-metadata:
-  name: private-image-test-1
-spec:
-  containers:
-    - name: uses-private-image
-      image: $PRIVATE_IMAGE_NAME
-      imagePullPolicy: Always
-      command: [ "echo", "SUCCESS" ]
-EOF
-```
-```
-pod/private-image-test-1 created
+```json
+{
+    "auths": {
+        "*my-registry.io/images": {
+            "auth": "…"
+        }
+    }
+}
 ```
 
-만약 모든 것이 잘 작동한다면, 잠시 후에, 다음을 실행할 수 있다.
+루트 URL(`*my-registry.io`)은 다음 문법을 사용하여 매치된다.
 
-```shell
-kubectl logs private-image-test-1
 ```
-그리고 커맨드 출력을 본다.
-```
-SUCCESS
+pattern:
+    { term }
+
+term:
+    '*'         구분자가 아닌 모든 문자와 매치됨
+    '?'         구분자가 아닌 문자 1개와 매치됨
+    '[' [ '^' ] { character-range } ']'
+                문자 클래스 (비어 있으면 안 됨))
+    c           문자 c에 매치됨 (c != '*', '?', '\\', '[')
+    '\\' c      문자 c에 매치됨
+
+character-range:
+    c           문자 c에 매치됨 (c != '\\', '-', ']')
+    '\\' c      문자 c에 매치됨
+    lo '-' hi   lo <= c <= hi 인 문자 c에 매치됨
 ```
 
-명령이 실패한 것으로 의심되는 경우 다음을 실행할 수 있다.
-```shell
-kubectl describe pods/private-image-test-1 | grep 'Failed'
-```
-실패하는 케이스에는 출력이 다음과 유사하다.
-```
-  Fri, 26 Jun 2015 15:36:13 -0700    Fri, 26 Jun 2015 15:39:13 -0700    19    {kubelet node-i2hq}    spec.containers{uses-private-image}    failed        Failed to pull image "user/privaterepo:v1": Error: image user/privaterepo:v1 not found
+이미지 풀 작업 시, 모든 유효한 패턴에 대해 크리덴셜을 CRI 컨테이너 런타임에 제공할 것이다. 
+예를 들어 다음과 같은 컨테이너 이미지 이름은 
+성공적으로 매치될 것이다.
+
+- `my-registry.io/images`
+- `my-registry.io/images/my-image`
+- `my-registry.io/images/another-image`
+- `sub.my-registry.io/images/my-image`
+- `a.sub.my-registry.io/images/my-image`
+
+kubelet은 인식된 모든 크리덴셜을 순차적으로 이용하여 이미지 풀을 수행한다. 즉,
+`config.json`에 다음과 같이 여러 항목을 기재할 수도 있다.
+
+```json
+{
+    "auths": {
+        "my-registry.io/images": {
+            "auth": "…"
+        },
+        "my-registry.io/images/subpath": {
+            "auth": "…"
+        }
+    }
+}
 ```
 
+이제 컨테이너가 `my-registry.io/images/subpath/my-image` 
+이미지를 풀 해야 한다고 명시하면,
+kubelet은 크리덴셜을 순차적으로 사용하여 풀을 시도한다.
 
-클러스터의 모든 노드가 반드시 동일한 `.docker/config.json`를 가져야 한다. 그렇지 않으면, 파드가
-일부 노드에서만 실행되고 다른 노드에서는 실패할 것이다. 예를 들어, 노드 오토스케일링을 사용한다면, 각 인스턴스
-템플릿은 `.docker/config.json`을 포함하거나 그것을 포함한 드라이브를 마운트해야 한다.
 
-프라이빗 레지스트리 키가 `.docker/config.json`에 추가되고 나면 모든 파드는
-프라이빗 레지스트리의 이미지에 읽기 접근 권한을 가지게 될 것이다.
-
-### 미리 내려받은 이미지
-
-{{< note >}}
-Google 쿠버네티스 엔진에서 동작 중이라면, 이미 각 노드에 Google 컨테이너 레지스트리에 대한 자격 증명과 함께 `.dockercfg`가 있을 것이다. 그렇다면 이 방법은 쓸 수 없다.
-{{< /note >}}
+### 미리 내려받은 이미지 {#pre-pulled-images}
 
 {{< note >}}
 이 방법은 노드의 구성을 제어할 수 있는 경우에만 적합하다. 이 방법은
@@ -242,6 +278,8 @@ Google 쿠버네티스 엔진에서 동작 중이라면, 이미 각 노드에 Go
 
 #### 도커 구성으로 시크릿 생성
 
+레지스트리에 인증하기 위해서는, 레지스트리 호스트네임 뿐만 아니라, 
+사용자 이름, 비밀번호 및 클라이언트 이메일 주소를 알아야 한다.
 대문자 값을 적절히 대체하여, 다음 커맨드를 실행한다.
 
 ```shell
@@ -306,17 +344,16 @@ imagePullSecrets을 셋팅하여 자동화할 수 있다.
 일반적인 유스케이스와 제안된 솔루션이다.
 
 1. 비소유 이미지(예를 들어, 오픈소스)만 실행하는 클러스터의 경우. 이미지를 숨길 필요가 없다.
-   - 도커 허브의 퍼블릭 이미지를 사용한다.
+   - 퍼블릭 레지스트리의 퍼블릭 이미지를 사용한다.
      - 설정이 필요 없다.
      - 일부 클라우드 제공자는 퍼블릭 이미지를 자동으로 캐시하거나 미러링하므로, 가용성이 향상되고 이미지를 가져오는 시간이 줄어든다.
 1. 모든 클러스터 사용자에게는 보이지만, 회사 외부에는 숨겨야하는 일부 독점 이미지를
    실행하는 클러스터의 경우.
-   - 호스트 된 프라이빗 [도커 레지스트리](https://docs.docker.com/registry/)를 사용한다.
-     - 그것은 [도커 허브](https://hub.docker.com/signup)에 호스트 되어 있거나, 다른 곳에 되어 있을 것이다.
-     - 위에 설명된 바와 같이 수동으로 .docker/config.json을 구성한다.
+   - 호스트된 프라이빗 레지스트리를 사용한다.
+     - 프라이빗 레지스트리에 접근해야 하는 노드에 수동 설정이 필요할 수 있다
    - 또는, 방화벽 뒤에서 읽기 접근 권한을 가진 내부 프라이빗 레지스트리를 실행한다.
-     - 쿠버네티스 구성은 필요 없다.
-   - 이미지 접근을 제어하는 ​​호스팅된 컨테이너 이미지 레지스트리 서비스를 사용한다.
+     - 쿠버네티스 구성은 필요하지 않다.
+   - 이미지 접근을 제어하는 호스팅된 컨테이너 이미지 레지스트리 서비스를 사용한다.
      - 그것은 수동 노드 구성에 비해서 클러스터 오토스케일링과 더 잘 동작할 것이다.
    - 또는, 노드의 구성 변경이 불편한 클러스터에서는, `imagePullSecrets`를 사용한다.
 1. 독점 이미지를 가진 클러스터로, 그 중 일부가 더 엄격한 접근 제어를 필요로 하는 경우.
@@ -330,8 +367,9 @@ imagePullSecrets을 셋팅하여 자동화할 수 있다.
 
 
 다중 레지스트리에 접근해야 하는 경우, 각 레지스트리에 대해 하나의 시크릿을 생성할 수 있다.
-Kubelet은 모든 `imagePullSecrets` 파일을 하나의 가상 `.docker/config.json` 파일로 병합한다.
 
 ## {{% heading "whatsnext" %}}
 
-* [OCI 이미지 매니페스트 명세](https://github.com/opencontainers/image-spec/blob/master/manifest.md) 읽어보기
+* [OCI 이미지 매니페스트 명세](https://github.com/opencontainers/image-spec/blob/master/manifest.md) 읽어보기.
+* [컨테이너 이미지 가비지 수집(garbage collection)](/ko/docs/concepts/architecture/garbage-collection/#container-image-garbage-collection)에 대해 배우기.
+* [프라이빗 레지스트리에서 이미지 받아오기](/ko/docs/tasks/configure-pod-container/pull-image-private-registry)
diff --git a/content/ko/docs/concepts/containers/runtime-class.md b/content/ko/docs/concepts/containers/runtime-class.md
index 953571ec62..eeab1e0680 100644
--- a/content/ko/docs/concepts/containers/runtime-class.md
+++ b/content/ko/docs/concepts/containers/runtime-class.md
@@ -1,4 +1,7 @@
 ---
+
+
+
 title: 런타임클래스(RuntimeClass)
 content_type: concept
 weight: 20
@@ -13,9 +16,6 @@ weight: 20
 런타임클래스는 컨테이너 런타임을 구성을 선택하는 기능이다. 컨테이너 런타임
 구성은 파드의 컨테이너를 실행하는 데 사용된다.
 
-
-
-
 <!-- body -->
 
 ## 동기
@@ -59,12 +59,15 @@ weight: 20
 (`handler`)로 단 2개의 중요 필드만 가지고 있다. 오브젝트 정의는 다음과 같은 형태이다.
 
 ```yaml
-apiVersion: node.k8s.io/v1  # 런타임클래스는 node.k8s.io API 그룹에 정의되어 있음
+# 런타임클래스는 node.k8s.io API 그룹에 정의되어 있음
+apiVersion: node.k8s.io/v1
 kind: RuntimeClass
 metadata:
-  name: myclass  # 런타임클래스는 해당 이름을 통해서 참조됨
+  # 런타임클래스 참조에 사용될 이름
   # 런타임클래스는 네임스페이스가 없는 리소스임
-handler: myconfiguration  # 상응하는 CRI 설정의 이름임
+  name: myclass
+# 상응하는 CRI 설정의 이름
+handler: myconfiguration
 ```
 
 런타임클래스 오브젝트의 이름은 유효한
@@ -78,8 +81,8 @@ handler: myconfiguration  # 상응하는 CRI 설정의 이름임
 
 ## 사용
 
-클러스터를 위해서 런타임클래스를 설정하고 나면, 그것을 사용하는 것은 매우 간단하다. 파드 스펙에
-`runtimeClassName`를 명시한다. 예를 들면 다음과 같다.
+클러스터에 런타임클래스를 설정하고 나면, 
+다음과 같이 파드 스펙에 `runtimeClassName`를 명시하여 해당 런타임클래스를 사용할 수 있다.
 
 ```yaml
 apiVersion: v1
@@ -94,7 +97,7 @@ spec:
 이것은 kubelet이 지명된 런타임클래스를 사용하여 해당 파드를 실행하도록 지시할 것이다.
 만약 지명된 런타임클래스가 없거나, CRI가 상응하는 핸들러를 실행할 수 없는 경우, 파드는
 `Failed` 터미널 [단계](/ko/docs/concepts/workloads/pods/pod-lifecycle/#파드의-단계-phase)로 들어간다.
-에러 메시지에 상응하는 [이벤트](/docs/tasks/debug-application-cluster/debug-application-introspection/)를
+에러 메시지에 상응하는 [이벤트](/ko/docs/tasks/debug/debug-application/debug-running-pod/)를
 확인한다.
 
 만약 명시된 `runtimeClassName`가 없다면, 기본 런타임 핸들러가 사용되며,
@@ -104,22 +107,17 @@ spec:
 
 CRI 런타임 설치에 대한 자세한 내용은 [CRI 설치](/ko/docs/setup/production-environment/container-runtimes/)를 확인한다.
 
-#### dockershim
-
-dockershim을 사용하는 경우 RuntimeClass는 런타임 핸들러를 `docker`로 고정한다.
-dockershim은 사용자 정의 런타임 핸들러를 지원하지 않는다.
-
 #### {{< glossary_tooltip term_id="containerd" >}}
 
 런타임 핸들러는 containerd의 구성 파일인 `/etc/containerd/config.toml` 통해 설정한다.
 유효한 핸들러는 runtimes 단락 아래에서 설정한다.
 
 ```
-[plugins.cri.containerd.runtimes.${HANDLER_NAME}]
+[plugins."io.containerd.grpc.v1.cri".containerd.runtimes.${HANDLER_NAME}]
 ```
 
-더 자세한 containerd의 구성 문서를 살펴본다.
-https://github.com/containerd/cri/blob/master/docs/config.md
+더 자세한 내용은 containerd의 [구성 문서](https://github.com/containerd/cri/blob/master/docs/config.md)를 
+살펴본다.
 
 #### {{< glossary_tooltip term_id="cri-o" >}}
 
@@ -158,21 +156,17 @@ RuntimeClass에 `scheduling` 필드를 지정하면, 이 RuntimeClass로 실행
 
 ### 파드 오버헤드
 
-{{< feature-state for_k8s_version="v1.18" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 파드 실행과 연관되는 _오버헤드_ 리소스를 지정할 수 있다. 오버헤드를 선언하면
 클러스터(스케줄러 포함)가 파드와 리소스에 대한 결정을 내릴 때 처리를 할 수 있다.
-PodOverhead를 사용하려면, PodOverhead [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)
-를 활성화 시켜야 한다. (기본으로 활성화 되어 있다.)
 
 파드 오버헤드는 런타임 클래스에서 `overhead` 필드를 통해 정의된다. 이 필드를 사용하면,
 해당 런타임 클래스를 사용해서 구동 중인 파드의 오버헤드를 특정할 수 있고 이 오버헤드가
 쿠버네티스 내에서 처리된다는 것을 보장할 수 있다.
 
-
 ## {{% heading "whatsnext" %}}
 
-
 - [런타임클래스 설계](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/585-runtime-class/README.md)
 - [런타임클래스 스케줄링 설계](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/585-runtime-class/README.md#runtimeclass-scheduling)
 - [파드 오버헤드](/ko/docs/concepts/scheduling-eviction/pod-overhead/) 개념에 대해 읽기
diff --git a/content/ko/docs/concepts/extend-kubernetes/_index.md b/content/ko/docs/concepts/extend-kubernetes/_index.md
index 95c61079dd..a00bc89cc4 100644
--- a/content/ko/docs/concepts/extend-kubernetes/_index.md
+++ b/content/ko/docs/concepts/extend-kubernetes/_index.md
@@ -2,6 +2,11 @@
 title: 쿠버네티스 확장
 weight: 110
 description: 쿠버네티스 클러스터의 동작을 변경하는 다양한 방법
+
+
+
+
+
 feature:
   title: 확장성을 고려하여 설계됨
   description: >
@@ -34,22 +39,23 @@ no_list: true
 *구성 파일* 및 *플래그* 는 온라인 문서의 레퍼런스 섹션에 각 바이너리 별로 문서화되어 있다.
 
 * [kubelet](/docs/reference/command-line-tools-reference/kubelet/)
+* [kube-proxy](/docs/reference/command-line-tools-reference/kube-proxy/)
 * [kube-apiserver](/docs/reference/command-line-tools-reference/kube-apiserver/)
 * [kube-controller-manager](/docs/reference/command-line-tools-reference/kube-controller-manager/)
 * [kube-scheduler](/docs/reference/command-line-tools-reference/kube-scheduler/).
 
 호스팅된 쿠버네티스 서비스 또는 매니지드 설치 환경의 배포판에서 플래그 및 구성 파일을 항상 변경할 수 있는 것은 아니다. 변경 가능한 경우 일반적으로 클러스터 관리자만 변경할 수 있다. 또한 향후 쿠버네티스 버전에서 변경될 수 있으며, 이를 설정하려면 프로세스를 다시 시작해야 할 수도 있다. 이러한 이유로 다른 옵션이 없는 경우에만 사용해야 한다.
 
-[리소스쿼터](/ko/docs/concepts/policy/resource-quotas/), [파드시큐리티폴리시(PodSecurityPolicy)](/ko/docs/concepts/policy/pod-security-policy/), [네트워크폴리시](/ko/docs/concepts/services-networking/network-policies/) 및 역할 기반 접근 제어([RBAC](/docs/reference/access-authn-authz/rbac/))와 같은 *빌트인 정책 API(built-in Policy API)* 는 기본적으로 제공되는 쿠버네티스 API이다. API는 일반적으로 호스팅된 쿠버네티스 서비스 및 매니지드 쿠버네티스 설치 환경과 함께 사용된다. 그것들은 선언적이며 파드와 같은 다른 쿠버네티스 리소스와 동일한 규칙을 사용하므로, 새로운 클러스터 구성을 반복할 수 있고 애플리케이션과 동일한 방식으로 관리할 수 있다. 또한, 이들 API가 안정적인 경우, 다른 쿠버네티스 API와 같이 [정의된 지원 정책](/docs/reference/using-api/deprecation-policy/)을 사용할 수 있다. 이러한 이유로 인해 *구성 파일* 과 *플래그* 보다 선호된다.
+[리소스쿼터](/ko/docs/concepts/policy/resource-quotas/), [파드시큐리티폴리시(PodSecurityPolicy)](/ko/docs/concepts/security/pod-security-policy/), [네트워크폴리시](/ko/docs/concepts/services-networking/network-policies/) 및 역할 기반 접근 제어([RBAC](/docs/reference/access-authn-authz/rbac/))와 같은 *빌트인 정책 API(built-in Policy API)* 는 기본적으로 제공되는 쿠버네티스 API이다. API는 일반적으로 호스팅된 쿠버네티스 서비스 및 매니지드 쿠버네티스 설치 환경과 함께 사용된다. 그것들은 선언적이며 파드와 같은 다른 쿠버네티스 리소스와 동일한 규칙을 사용하므로, 새로운 클러스터 구성을 반복할 수 있고 애플리케이션과 동일한 방식으로 관리할 수 있다. 또한, 이들 API가 안정적인 경우, 다른 쿠버네티스 API와 같이 [정의된 지원 정책](/docs/reference/using-api/deprecation-policy/)을 사용할 수 있다. 이러한 이유로 인해 *구성 파일* 과 *플래그* 보다 선호된다.
 
 ## 익스텐션
 
 익스텐션은 쿠버네티스를 확장하고 쿠버네티스와 긴밀하게 통합되는 소프트웨어 컴포넌트이다.
 이들 컴포넌트는 쿠버네티스가 새로운 유형과 새로운 종류의 하드웨어를 지원할 수 있게 해준다.
 
-대부분의 클러스터 관리자는 쿠버네티스의 호스팅 또는 배포판 인스턴스를 사용한다.
-결과적으로 대부분의 쿠버네티스 사용자는 익스텐션 기능을 설치할 필요가 없고
-새로운 익스텐션 기능을 작성할 필요가 있는 사람은 더 적다.
+많은 클러스터 관리자가 호스팅 또는 배포판 쿠버네티스 인스턴스를 사용한다.
+이러한 클러스터들은 미리 설치된 익스텐션을 포함한다. 결과적으로 대부분의
+쿠버네티스 사용자는 익스텐션을 설치할 필요가 없고, 새로운 익스텐션을 만들 필요가 있는 사용자는 더 적다.
 
 ## 익스텐션 패턴
 
@@ -72,16 +78,14 @@ no_list: true
 웹훅 모델에서 쿠버네티스는 원격 서비스에 네트워크 요청을 한다.
 *바이너리 플러그인* 모델에서 쿠버네티스는 바이너리(프로그램)를 실행한다.
 바이너리 플러그인은 kubelet(예:
-[Flex Volume 플러그인](/ko/docs/concepts/storage/volumes/#flexVolume)과
+[Flex Volume 플러그인](/ko/docs/concepts/storage/volumes/#flexvolume)과
 [네트워크 플러그인](/ko/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/))과
-kubectl에서
-사용한다.
+kubectl에서 사용한다.
 
 아래는 익스텐션 포인트가 쿠버네티스 컨트롤 플레인과 상호 작용하는 방법을
 보여주는 다이어그램이다.
 
 <!-- image source drawing https://docs.google.com/drawings/d/1muJ7Oxuj_7Gtv7HV9-2zJbOnkQJnjxq-v1ym_kZfB-4/edit?ts=5a01e054 -->
-
 ![익스텐션 포인트와 컨트롤 플레인](/ko/docs/concepts/extend-kubernetes/control-plane.png)
 
 ## 익스텐션 포인트
@@ -89,7 +93,6 @@ kubectl에서
 이 다이어그램은 쿠버네티스 시스템의 익스텐션 포인트를 보여준다.
 
 <!-- image source diagrams: https://docs.google.com/drawings/d/1k2YdJgNTtNfW7_A8moIIkij-DmVgEhNrn3y2OODwqQQ/view -->
-
 ![익스텐션 포인트](/docs/concepts/extend-kubernetes/extension-points.png)
 
 1.   사용자는 종종 `kubectl`을 사용하여 쿠버네티스 API와 상호 작용한다. [Kubectl 플러그인](/ko/docs/tasks/extend-kubectl/kubectl-plugins/)은 kubectl 바이너리를 확장한다. 개별 사용자의 로컬 환경에만 영향을 미치므로 사이트 전체 정책을 적용할 수는 없다.
@@ -103,10 +106,10 @@ kubectl에서
 어디서부터 시작해야 할지 모르겠다면, 이 플로우 차트가 도움이 될 수 있다. 일부 솔루션에는 여러 유형의 익스텐션이 포함될 수 있다.
 
 <!-- image source drawing: https://docs.google.com/drawings/d/1sdviU6lDz4BpnzJNHfNpQrqI9F19QZ07KnhnxVrp2yg/edit -->
-
 ![익스텐션 플로우차트](/ko/docs/concepts/extend-kubernetes/flowchart.png)
 
 ## API 익스텐션
+
 ### 사용자 정의 유형
 
 새 컨트롤러, 애플리케이션 구성 오브젝트 또는 기타 선언적 API를 정의하고 `kubectl` 과 같은 쿠버네티스 도구를 사용하여 관리하려면 쿠버네티스에 커스텀 리소스를 추가하자.
@@ -143,7 +146,7 @@ API를 추가해도 기존 API(예: 파드)의 동작에 직접 영향을 미치
 
 ### 인가
 
-[인가](/docs/reference/access-authn-authz/webhook/)는 특정 사용자가 API 리소스에서 읽고, 쓰고, 다른 작업을 수행할 수 있는지를 결정한다. 전체 리소스 레벨에서 작동하며 임의의 오브젝트 필드를 기준으로 구별하지 않는다. 빌트인 인증 옵션이 사용자의 요구를 충족시키지 못하면 [인가 웹훅](/docs/reference/access-authn-authz/webhook/)을 통해 사용자가 제공한 코드를 호출하여 인증 결정을 내릴 수 있다.
+[인가](/ko/docs/reference/access-authn-authz/authorization/)는 특정 사용자가 API 리소스에서 읽고, 쓰고, 다른 작업을 수행할 수 있는지를 결정한다. 전체 리소스 레벨에서 작동하며 임의의 오브젝트 필드를 기준으로 구별하지 않는다. 빌트인 인증 옵션이 사용자의 요구를 충족시키지 못하면 [인가 웹훅](/docs/reference/access-authn-authz/webhook/)을 통해 사용자가 제공한 코드를 호출하여 인증 결정을 내릴 수 있다.
 
 
 ### 동적 어드미션 컨트롤
@@ -155,13 +158,14 @@ API를 추가해도 기존 API(예: 파드)의 동작에 직접 영향을 미치
 
 ## 인프라스트럭처 익스텐션
 
-
 ### 스토리지 플러그인
 
 [Flex Volumes](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/storage/flexvolume-deployment.md)을 사용하면
 Kubelet이 바이너리 플러그인을 호출하여 볼륨을 마운트하도록 함으로써
 빌트인 지원 없이 볼륨 유형을 마운트 할 수 있다.
 
+FlexVolume은 쿠버네티스 v1.23부터 사용 중단(deprecated)되었다. Out-of-tree CSI 드라이버가 쿠버네티스에서 볼륨 드라이버를 작성할 때 추천하는 방식이다. 자세한 정보는 [스토리지 업체를 위한 쿠버네티스 볼륨 플러그인 FAQ](https://github.com/kubernetes/community/blob/master/sig-storage/volume-plugin-faq.md#kubernetes-volume-plugin-faq-for-storage-vendors)에서 찾을 수 있다.
+
 
 ### 장치 플러그인
 
@@ -172,7 +176,8 @@ Kubelet이 바이너리 플러그인을 호출하여 볼륨을 마운트하도
 
 ### 네트워크 플러그인
 
-노드-레벨의 [네트워크 플러그인](/ko/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)을 통해 다양한 네트워킹 패브릭을 지원할 수 있다.
+노드-레벨의 [네트워크 플러그인](/ko/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)
+을 통해 다양한 네트워킹 패브릭을 지원할 수 있다.
 
 ### 스케줄러 익스텐션
 
@@ -200,3 +205,4 @@ Kubelet이 바이너리 플러그인을 호출하여 볼륨을 마운트하도
   * [장치 플러그인](/ko/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)
 * [kubectl 플러그인](/ko/docs/tasks/extend-kubectl/kubectl-plugins/)에 대해 알아보기
 * [오퍼레이터 패턴](/ko/docs/concepts/extend-kubernetes/operator/)에 대해 알아보기
+
diff --git a/content/ko/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation.md b/content/ko/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation.md
index a2326c71dd..5e8d7b2734 100644
--- a/content/ko/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation.md
+++ b/content/ko/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation.md
@@ -1,5 +1,5 @@
 ---
-title: 애그리게이션 레이어(aggregation layer)로 쿠버네티스 API 확장하기
+title: 쿠버네티스 API 애그리게이션 레이어(aggregation layer)
 
 
 
@@ -11,9 +11,9 @@ weight: 10
 <!-- overview -->
 
 애그리게이션 레이어는 코어 쿠버네티스 API가 제공하는 기능 이외에 더 많은 기능을 제공할 수 있도록 추가 API를 더해 쿠버네티스를 확장할 수 있게 해준다.
-추가 API는 [서비스-카탈로그](/ko/docs/concepts/extend-kubernetes/service-catalog/)와 같이 미리 만들어진 솔루션이거나 사용자가 직접 개발한 API일 수 있다.
+추가 API는 [메트릭 서버](https://github.com/kubernetes-sigs/metrics-server)와 같이 미리 만들어진 솔루션이거나 사용자가 직접 개발한 API일 수 있다.
 
-애그리게이션 레이어는 [사용자 정의 리소스](/ko/docs/concepts/extend-kubernetes/api-extension/custom-resources/)와는 다르며, 애그리게이션 레이어는 {{< glossary_tooltip term_id="kube-apiserver" text="kube-apiserver" >}} 가 새로운 종류의 오브젝트를 인식하도록 하는 방법이다.
+애그리게이션 레이어는 {{< glossary_tooltip term_id="kube-apiserver" text="kube-apiserver" >}}가 새로운 종류의 오브젝트를 인식하도록 하는 방법인 [사용자 정의 리소스](/ko/docs/concepts/extend-kubernetes/api-extension/custom-resources/)와는 다르다.
 
 <!-- body -->
 
@@ -28,11 +28,12 @@ APIService를 구현하는 가장 일반적인 방법은 클러스터 내에 실
 Extension-apiserver는 kube-apiserver로 오가는 연결의 레이턴시가 낮아야 한다.
 kube-apiserver로 부터의 디스커버리 요청은 왕복 레이턴시가 5초 이내여야 한다.
 
-extention API server가 레이턴시 요구 사항을 달성할 수 없는 경우 이를 충족할 수 있도록 변경하는 것을 고려한다.
+Extension API server가 레이턴시 요구 사항을 달성할 수 없는 경우 이를 충족할 수 있도록 변경하는 것을 고려한다.
 
 ## {{% heading "whatsnext" %}}
 
 * 사용자의 환경에서 Aggregator를 동작시키려면, [애그리게이션 레이어를 설정한다](/docs/tasks/extend-kubernetes/configure-aggregation-layer/).
 * 다음에, [확장 API 서버를 구성해서](/ko/docs/tasks/extend-kubernetes/setup-extension-api-server/) 애그리게이션 레이어와 연계한다.
-* 또한, 어떻게 [쿠버네티스 API를 커스텀 리소스 데피니션으로 확장하는지](/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/)를 배워본다.
-* [API 서비스](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#apiservice-v1-apiregistration-k8s-io)의 사양을 읽어본다.
+* API 레퍼런스에서 [API 서비스](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#apiservice-v1-apiregistration-k8s-io)에 대해 읽어본다.
+
+대안으로, 어떻게 [쿠버네티스 API를 커스텀 리소스 데피니션으로 확장하는지](/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/)를 배워본다.
diff --git a/content/ko/docs/concepts/extend-kubernetes/api-extension/custom-resources.md b/content/ko/docs/concepts/extend-kubernetes/api-extension/custom-resources.md
index 0357ac7619..ef87cd1ec6 100644
--- a/content/ko/docs/concepts/extend-kubernetes/api-extension/custom-resources.md
+++ b/content/ko/docs/concepts/extend-kubernetes/api-extension/custom-resources.md
@@ -26,7 +26,7 @@ weight: 10
 동적 등록을 통해 실행 중인 클러스터에서 커스텀 리소스가 나타나거나 사라질 수 있으며
 클러스터 관리자는 클러스터 자체와 독립적으로 커스텀 리소스를 업데이트 할 수 있다.
 커스텀 리소스가 설치되면 사용자는 *파드* 와 같은 빌트인 리소스와 마찬가지로
-[kubectl](/ko/docs/reference/kubectl/overview/)을 사용하여 해당 오브젝트를 생성하고
+[kubectl](/ko/docs/reference/kubectl/)을 사용하여 해당 오브젝트를 생성하고
 접근할 수 있다.
 
 ## 커스텀 컨트롤러
@@ -35,11 +35,11 @@ weight: 10
 커스텀 리소스를 *커스텀 컨트롤러* 와 결합하면, 커스텀 리소스가 진정한
 _선언적(declarative) API_ 를 제공하게 된다.
 
-[선언적 API](/ko/docs/concepts/overview/kubernetes-api/)는 리소스의 의도한 상태를
-_선언_ 하거나 지정할 수 있게 해주며 쿠버네티스 오브젝트의 현재 상태를 의도한 상태와
-동기화 상태로 유지하려고 한다. 컨트롤러는 구조화된 데이터를 사용자가
-원하는 상태의 레코드로 해석하고 지속적으로
-이 상태를 유지한다.
+쿠버네티스 [선언적 API](/ko/docs/concepts/overview/kubernetes-api/)는
+책임의 분리를 강제한다. 사용자는 리소스의 의도한 상태를 선언한다.
+쿠버네티스 컨트롤러는 쿠버네티스 오브젝트의 현재 상태가
+선언한 의도한 상태에 동기화 되도록 한다.
+이는 서버에 무엇을 해야할지 *지시하는* 명령적인 API와는 대조된다.
 
 클러스터 라이프사이클과 관계없이 실행 중인 클러스터에 커스텀 컨트롤러를 배포하고
 업데이트할 수 있다. 커스텀 컨트롤러는 모든 종류의 리소스와 함께 작동할 수 있지만
@@ -145,11 +145,11 @@ CRD 오브젝트의 이름은 유효한
 
 ## API 서버 애그리게이션
 
-일반적으로 쿠버네티스 API의 각 리소스에는 REST 요청을 처리하고 오브젝트의 퍼시스턴트 스토리지를 관리하는 코드가 필요하다. 주요 쿠버네티스 API 서버는 *파드* 및 *서비스* 와 같은 빌트인 리소스를 처리하고, 일반적으로 [CRD](#커스텀리소스데피니션)를 통해 커스텀 리소스를 처리할 수 ​​있다.
+일반적으로 쿠버네티스 API의 각 리소스에는 REST 요청을 처리하고 오브젝트의 퍼시스턴트 스토리지를 관리하는 코드가 필요하다. 주요 쿠버네티스 API 서버는 *파드* 및 *서비스* 와 같은 빌트인 리소스를 처리하고, 일반적으로 [CRD](#커스텀리소스데피니션)를 통해 커스텀 리소스를 처리할 수 있다.
 
-[애그리게이션 레이어](/ko/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)를 사용하면 자체 독립형 API 서버를
+[애그리게이션 레이어](/ko/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)를 사용하면 자체 API 서버를
 작성하고 배포하여 커스텀 리소스에 대한 특수한 구현을 제공할 수 있다.
-기본 API 서버는 처리하는 커스텀 리소스에 대한 요청을 사용자에게 위임하여
+주(main) API 서버는 사용자의 커스텀 리소스에 대한 요청을 사용자의 자체 API 서버에 위임하여
 모든 클라이언트가 사용할 수 있게 한다.
 
 ## 커스텀 리소스를 추가할 방법 선택
@@ -167,7 +167,7 @@ CRD는 애그리게이트 API보다 생성하기가 쉽다.
 
 | CRD                         | 애그리게이트 API        |
 | --------------------------- | -------------- |
-| 프로그래밍이 필요하지 않다. 사용자는 CRD 컨트롤러에 대한 모든 언어를 선택할 수 있다. | Go로 프로그래밍하고 바이너리와 이미지를 빌드해야 한다. |
+| 프로그래밍이 필요하지 않다. 사용자는 CRD 컨트롤러에 대한 모든 언어를 선택할 수 있다. | 프로그래밍하고 바이너리와 이미지를 빌드해야 한다. |
 | 실행할 추가 서비스가 없다. CR은 API 서버에서 처리한다. | 추가 서비스를 생성하면 실패할 수 있다. |
 | CRD가 생성된 후에는 지속적인 지원이 없다. 모든 버그 픽스는 일반적인 쿠버네티스 마스터 업그레이드의 일부로 선택된다. | 업스트림에서 버그 픽스를 주기적으로 선택하고 애그리게이트 API 서버를 다시 빌드하고 업데이트해야 할 수 있다. |
 | 여러 버전의 API를 처리할 필요가 없다. 예를 들어, 이 리소스에 대한 클라이언트를 제어할 때 API와 동기화하여 업그레이드할 수 있다. | 인터넷에 공유할 익스텐션을 개발할 때와 같이 여러 버전의 API를 처리해야 한다. |
@@ -180,7 +180,7 @@ CRD는 애그리게이트 API보다 생성하기가 쉽다.
 | ------- | ----------- | ---- | -------------- |
 | 유효성 검사 | 사용자가 오류를 방지하고 클라이언트와 독립적으로 API를 발전시킬 수 있도록 도와준다. 이러한 기능은 동시에 많은 클라이언트를 모두 업데이트할 수 없는 경우에 아주 유용하다. | 예. [OpenAPI v3.0 유효성 검사](/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#validation)를 사용하여 CRD에서 대부분의 유효성 검사를 지정할 수 있다. [웹훅 유효성 검사](/docs/reference/access-authn-authz/admission-controllers/#validatingadmissionwebhook-alpha-in-1-8-beta-in-1-9)를 추가해서 다른 모든 유효성 검사를 지원한다. | 예, 임의의 유효성 검사를 지원한다. |
 | 기본 설정 | 위를 참고하자. | 예, [OpenAPI v3.0 유효성 검사](/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#defaulting)의 `default` 키워드(1.17에서 GA) 또는 [웹훅 변형(mutating)](/docs/reference/access-authn-authz/admission-controllers/#mutatingadmissionwebhook)(이전 오브젝트의 etcd에서 읽을 때는 실행되지 않음)을 통해 지원한다. | 예 |
-| 다중 버전 관리 | 두 가지 API 버전을 통해 동일한 오브젝트를 제공할 수 있다. 필드 이름 바꾸기와 같은 API 변경을 쉽게 할 수 있다. 클라이언트 버전을 제어하는 ​​경우는 덜 중요하다. | [예](/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definition-versioning) | 예 |
+| 다중 버전 관리 | 두 가지 API 버전을 통해 동일한 오브젝트를 제공할 수 있다. 필드 이름 바꾸기와 같은 API 변경을 쉽게 할 수 있다. 클라이언트 버전을 제어하는 경우는 덜 중요하다. | [예](/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definition-versioning) | 예 |
 | 사용자 정의 스토리지 | 다른 성능 모드(예를 들어, 키-값 저장소 대신 시계열 데이터베이스)나 보안에 대한 격리(예를 들어, 암호화된 시크릿이나 다른 암호화) 기능을 가진 스토리지가 필요한 경우 | 아니오 | 예 |
 | 사용자 정의 비즈니스 로직 | 오브젝트를 생성, 읽기, 업데이트 또는 삭제를 할 때 임의의 점검 또는 조치를 수행한다. | 예, [웹훅](/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks)을 사용한다. | 예 |
 | 서브리소스 크기 조정 | HorizontalPodAutoscaler 및 PodDisruptionBudget과 같은 시스템이 새로운 리소스와 상호 작용할 수 있다. | [예](/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#scale-subresource)  | 예 |
diff --git a/content/ko/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins.md b/content/ko/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins.md
index 13313adf58..0459685034 100644
--- a/content/ko/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins.md
+++ b/content/ko/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins.md
@@ -1,7 +1,6 @@
 ---
-
 title: 장치 플러그인
-description: GPU, NIC, FPGA, InfiniBand 및 공급 업체별 설정이 필요한 유사한 리소스를 위한 플러그인을 구현하는데 쿠버네티스 장치 플러그인 프레임워크를 사용한다.
+description: 장치 플러그인을 사용하여 GPU, NIC, FPGA, 또는 비휘발성 주 메모리와 같이 공급 업체별 설정이 필요한 장치 또는 리소스를 클러스터에서 지원하도록 설정할 수 있다.
 content_type: concept
 weight: 20
 ---
@@ -48,13 +47,15 @@ service Registration {
 노드에 두 개의 정상 장치를 보고하고 나면, 노드 상태가 업데이트되어
 노드에 2개의 "Foo" 장치가 설치되어 사용 가능함을 알릴 수 있다.
 
-그러고 나면, 사용자가
-[컨테이너](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core) 명세에 있는 장치를 요청할 수 있다.
-다만, 다른 종류의 리소스를 요청하는 것이므로 다음과 같은 제한이 있다.
-
+그러고 나면, 사용자가 장치를 파드 스펙의 일부로 요청할 수 
+있다([`container`](/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container) 참조). 
+확장 리소스를 요청하는 것은 다른 자원의 요청 및 제한을 관리하는 것과 비슷하지만, 
+다음과 같은 차이점이 존재한다.
 * 확장된 리소스는 정수(integer) 형태만 지원되며 오버커밋(overcommit) 될 수 없다.
 * 컨테이너간에 장치를 공유할 수 없다.
 
+### 예제 {#example-pod}
+
 쿠버네티스 클러스터가 특정 노드에서 `hardware-vendor.example/foo` 리소스를 알리는 장치 플러그인을 실행한다고
 가정해 보자. 다음은 데모 워크로드를 실행하기 위해 이 리소스를 요청하는 파드의 예이다.
 
@@ -197,31 +198,41 @@ service PodResourcesLister {
 }
 ```
 
-`List` 엔드포인트는 독점적으로 할당된 CPU의 ID, 장치 플러그인에 의해 보고된 장치 ID,
-이러한 장치가 할당된 NUMA 노드의 ID와 같은 세부 정보와 함께
-실행 중인 파드의 리소스에 대한 정보를 제공한다.
+### `List` gRPC 엔드포인트 {#grpc-endpoint-list}
+
+`List` 엔드포인트는 실행 중인 파드의 리소스에 대한 정보를 제공하며,
+독점적으로 할당된 CPU의 ID, 장치 플러그인에 의해 보고된 장치 ID,
+이러한 장치가 할당된 NUMA 노드의 ID와 같은 세부 정보를 함께 제공한다. 또한, NUMA 기반 머신의 경우, 컨테이너를 위해 예약된 메모리와 hugepage에 대한 정보를 포함한다.
 
 ```gRPC
-// ListPodResourcesResponse는 List 함수가 반환하는 응답이다
+// ListPodResourcesResponse는 List 함수가 반환하는 응답이다.
 message ListPodResourcesResponse {
     repeated PodResources pod_resources = 1;
 }
 
-// PodResources에는 파드에 할당된 노드 리소스에 대한 정보가 포함된다
+// PodResources에는 파드에 할당된 노드 리소스에 대한 정보가 포함된다.
 message PodResources {
     string name = 1;
     string namespace = 2;
     repeated ContainerResources containers = 3;
 }
 
-// ContainerResources는 컨테이너에 할당된 리소스에 대한 정보를 포함한다
+// ContainerResources는 컨테이너에 할당된 리소스에 대한 정보를 포함한다.
 message ContainerResources {
     string name = 1;
     repeated ContainerDevices devices = 2;
     repeated int64 cpu_ids = 3;
+    repeated ContainerMemory memory = 4;
 }
 
-// 토폴로지는 리소스의 하드웨어 토폴로지를 설명한다
+// ContainerMemory는 컨테이너에 할당된 메모리와 hugepage에 대한 정보를 포함한다.
+message ContainerMemory {
+    string memory_type = 1;
+    uint64 size = 2;
+    TopologyInfo topology = 3;
+}
+
+// 토폴로지는 리소스의 하드웨어 토폴로지를 설명한다.
 message TopologyInfo {
         repeated NUMANode nodes = 1;
 }
@@ -231,25 +242,58 @@ message NUMANode {
         int64 ID = 1;
 }
 
-// ContainerDevices는 컨테이너에 할당된 장치에 대한 정보를 포함한다
+// ContainerDevices는 컨테이너에 할당된 장치에 대한 정보를 포함한다.
 message ContainerDevices {
     string resource_name = 1;
     repeated string device_ids = 2;
     TopologyInfo topology = 3;
 }
 ```
+{{< note >}}
+`List` 엔드포인트의 `ContainerResources` 내부에 있는 cpu_ids은 특정 컨테이너에 할당된
+독점 CPU들에 해당한다. 만약 공유 풀(shared pool)에 있는 CPU들을 확인(evaluate)하는 것이 목적이라면, 해당 `List`
+엔드포인트는 다음에 설명된 것과 같이, `GetAllocatableResources` 엔드포인트와 함께 사용되어야
+한다.
+1. `GetAllocatableResources`를 호출하여 할당 가능한 모든 CPU 목록을 조회
+2. 시스템의 모든 `ContainerResources`에서 `GetCpuIds`를 호출
+3. `GetAllocateableResources` 호출에서 `GetCpuIds` 호출로 얻은 모든 CPU를 빼기
+{{< /note >}}
+
+### `GetAllocatableResources` gRPC 엔드포인트 {#grpc-endpoint-getallocatableresources}
+
+{{< feature-state state="beta" for_k8s_version="v1.23" >}}
 
 GetAllocatableResources는 워커 노드에서 처음 사용할 수 있는 리소스에 대한 정보를 제공한다.
 kubelet이 APIServer로 내보내는 것보다 더 많은 정보를 제공한다.
 
+{{< note >}}
+`GetAllocatableResources`는 [할당 가능(allocatable)](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable) 리소스를 확인(evaluate)하기 위해서만 
+사용해야 한다. 만약 목적이 free/unallocated 리소스를 확인하기 위한 것이라면
+List() 엔드포인트와 함께 사용되어야 한다. `GetAllocableResources`로 얻은 결과는 kubelet에
+노출된 기본 리소스가 변경되지 않는 한 동일하게 유지된다. 이러한 변경은 드물지만, 발생하게 된다면
+(예를 들면: hotplug/hotunplug, 장치 상태 변경) 클라이언트가 `GetAlloctableResources` 엔드포인트를
+호출할 것으로 가정한다.
+그러나 CPU 및/또는 메모리가 갱신된 경우 `GetAllocateableResources` 엔드포인트를 호출하는 것만으로는
+충분하지 않으며, Kubelet을 다시 시작하여 올바른 리소스 용량과 할당 가능(allocatable) 리소스를 반영해야 한다.
+{{< /note >}}
+
+
 ```gRPC
 // AllocatableResourcesResponses에는 kubelet이 알고 있는 모든 장치에 대한 정보가 포함된다.
 message AllocatableResourcesResponse {
     repeated ContainerDevices devices = 1;
     repeated int64 cpu_ids = 2;
+    repeated ContainerMemory memory = 3;
 }
 
 ```
+쿠버네티스 v1.23부터, `GetAllocatableResources`가 기본으로 활성화된다.
+이를 비활성화하려면 `KubeletPodResourcesGetAllocatable` [기능 게이트(feature gate)](/ko/docs/reference/command-line-tools-reference/feature-gates/)를
+끄면 된다.
+
+쿠버네티스 v1.23 이전 버전에서 이 기능을 활성화하려면 `kubelet`이 다음 플래그를 가지고 시작되어야 한다. 
+
+`--feature-gates=KubeletPodResourcesGetAllocatable=true`
 
 `ContainerDevices` 는 장치가 어떤 NUMA 셀과 연관되는지를 선언하는 토폴로지 정보를 노출한다.
 NUMA 셀은 불분명한(opaque) 정수 ID를 사용하여 식별되며, 이 값은
@@ -259,7 +303,7 @@ NUMA 셀은 불분명한(opaque) 정수 ID를 사용하여 식별되며, 이 값
 gRPC 서비스는 `/var/lib/kubelet/pod-resources/kubelet.sock` 의 유닉스 소켓을 통해 제공된다.
 장치 플러그인 리소스에 대한 모니터링 에이전트는 데몬 또는 데몬셋으로 배포할 수 있다.
 표준 디렉터리 `/var/lib/kubelet/pod-resources` 에는 특권을 가진 접근이 필요하므로, 모니터링
-에이전트는 특권을 가진 ​​보안 컨텍스트에서 실행해야 한다. 장치 모니터링 에이전트가
+에이전트는 특권을 가진 보안 컨텍스트에서 실행해야 한다. 장치 모니터링 에이전트가
 데몬셋으로 실행 중인 경우, 해당 장치 모니터링 에이전트의 [PodSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core)에서
 `/var/lib/kubelet/pod-resources` 를
 {{< glossary_tooltip text="볼륨" term_id="volume" >}}으로 마운트해야 한다.
@@ -295,15 +339,16 @@ pluginapi.Device{ID: "25102017", Health: pluginapi.Healthy, Topology:&pluginapi.
 
 ## 장치 플러그인 예시 {#examples}
 
+{{% thirdparty-content %}}
+
 다음은 장치 플러그인 구현의 예이다.
 
 * [AMD GPU 장치 플러그인](https://github.com/RadeonOpenCompute/k8s-device-plugin)
-* 인텔 GPU, FPGA 및 QuickAssist 장치용 [인텔 장치 플러그인](https://github.com/intel/intel-device-plugins-for-kubernetes)
+* 인텔 GPU, FPGA, QAT, VPU, SGX, DSA, DLB 및 IAA 장치용 [인텔 장치 플러그인](https://github.com/intel/intel-device-plugins-for-kubernetes)
 * 하드웨어 지원 가상화를 위한 [KubeVirt 장치 플러그인](https://github.com/kubevirt/kubernetes-device-plugins)
-* [NVIDIA GPU 장치 플러그인](https://github.com/NVIDIA/k8s-device-plugin)
-    * GPU를 지원하는 Docker 컨테이너를 실행할 수 있는 [nvidia-docker](https://github.com/NVIDIA/nvidia-docker) 2.0이 필요하다.
 * [컨테이너에 최적화된 OS를 위한 NVIDIA GPU 장치 플러그인](https://github.com/GoogleCloudPlatform/container-engine-accelerators/tree/master/cmd/nvidia_gpu)
 * [RDMA 장치 플러그인](https://github.com/hustcat/k8s-rdma-device-plugin)
+* [SocketCAN 장치 플러그인](https://github.com/collabora/k8s-socketcan)
 * [Solarflare 장치 플러그인](https://github.com/vikaschoudhary16/sfc-device-plugin)
 * [SR-IOV 네트워크 장치 플러그인](https://github.com/intel/sriov-network-device-plugin)
 * Xilinx FPGA 장치용 [Xilinx FPGA 장치 플러그인](https://github.com/Xilinx/FPGA_as_a_Service/tree/master/k8s-fpga-device-plugin)
@@ -314,5 +359,5 @@ pluginapi.Device{ID: "25102017", Health: pluginapi.Healthy, Topology:&pluginapi.
 
 * 장치 플러그인을 사용한 [GPU 리소스 스케줄링](/ko/docs/tasks/manage-gpus/scheduling-gpus/)에 대해 알아보기
 * 노드에서의 [확장 리소스 알리기](/ko/docs/tasks/administer-cluster/extended-resource-node/)에 대해 배우기
-* 쿠버네티스에서 [TLS 수신에 하드웨어 가속](https://kubernetes.io/blog/2019/04/24/hardware-accelerated-ssl/tls-termination-in-ingress-controllers-using-kubernetes-device-plugins-and-runtimeclass/) 사용에 대해 읽기
 * [토폴로지 관리자](/docs/tasks/administer-cluster/topology-manager/)에 대해 알아보기
+* 쿠버네티스에서 [TLS 인그레스에 하드웨어 가속](/blog/2019/04/24/hardware-accelerated-ssl/tls-termination-in-ingress-controllers-using-kubernetes-device-plugins-and-runtimeclass/) 사용에 대해 읽기
diff --git a/content/ko/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins.md b/content/ko/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins.md
index 359284b357..09f448d83a 100644
--- a/content/ko/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins.md
+++ b/content/ko/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins.md
@@ -11,17 +11,20 @@ weight: 10
 
 <!-- overview -->
 
-쿠버네티스의 네트워크 플러그인은 몇 가지 종류가 있다.
+쿠버네티스 {{< skew currentVersion >}} 버전은 클러스터 네트워킹을 위해 [컨테이너 네트워크 인터페이스](https://github.com/containernetworking/cni)(CNI) 플러그인을 지원한다. 
+클러스터와 호환되며 사용자의 요구 사항을 충족하는 CNI 플러그인을 사용해야 한다. 더 넓은 쿠버네티스 생태계에 다양한 플러그인이 존재한다(오픈소스 및 클로즈드 소스).
 
-* CNI 플러그인: 상호 운용성을 위해 설계된 [컨테이너 네트워크 인터페이스](https://github.com/containernetworking/cni)(CNI) 명세를 준수한다.
-* 쿠버네티스는 CNI 명세의 [v0.4.0](https://github.com/containernetworking/cni/blob/spec-v0.4.0/SPEC.md) 릴리스를 따른다.
-* Kubenet 플러그인: `bridge` 와 `host-local` CNI 플러그인을 사용하여 기본 `cbr0` 구현한다.
+[v0.4.0](https://github.com/containernetworking/cni/blob/spec-v0.4.0/SPEC.md) 이상의 
+CNI 스펙과 호환되는 CNI 플러그인을 사용해야 한다. 
+쿠버네티스 플러그인은 
+CNI 스펙 [v1.0.0](https://github.com/containernetworking/cni/blob/spec-v1.0.0/SPEC.md)과 호환되는 
+플러그인의 사용을 권장한다(플러그인은 여러 스펙 버전과 호환 가능).
 
 <!-- body -->
 
 ## 설치
 
-kubelet에는 단일 기본 네트워크 플러그인과 전체 클러스터에 공통된 기본 네트워크가 있다. 플러그인은 시작할 때 플러그인을 검색하고, 찾은 것을 기억하며, 파드 라이프사이클에서 적절한 시간에 선택한 플러그인을 실행한다(CRI는 자체 CNI 플러그인을 관리하므로 도커에만 해당됨). 플러그인 사용 시 명심해야 할 두 가지 Kubelet 커맨드라인 파라미터가 있다.
+CNI 플러그인은 [쿠버네티스 네트워크 모델](/ko/docs/concepts/services-networking/#쿠버네티스-네트워크-모델)을 구현해야 한다. CRI는 자체 CNI 플러그인을 관리한다. 플러그인 사용 시 명심해야 할 두 가지 Kubelet 커맨드라인 파라미터가 있다.
 
 * `cni-bin-dir`: Kubelet은 시작할 때 플러그인에 대해 이 디렉터리를 검사한다.
 * `network-plugin`: `cni-bin-dir` 에서 사용할 네트워크 플러그인. 플러그인 디렉터리에서 검색한 플러그인이 보고된 이름과 일치해야 한다. CNI 플러그인의 경우, 이는 "cni"이다.
@@ -85,7 +88,7 @@ CNI 네트워킹 플러그인은 파드 수신 및 송신 트래픽 셰이핑도
 플러그인을 사용하거나 대역폭 제어 기능이 있는 자체 플러그인을 사용할 수 있다.
 
 트래픽 셰이핑 지원을 활성화하려면, CNI 구성 파일 (기본값 `/etc/cni/net.d`)에 `bandwidth` 플러그인을
-추가하고, 바이너리가 CNI 실행 파일 디렉터리(기본값: `/opt/cni/bin`)에 포함되어있는지 확인한다.
+추가하고, 바이너리가 CNI 실행 파일 디렉터리(기본값: `/opt/cni/bin`)에 포함되어 있는지 확인한다.
 
 ```json
 {
@@ -129,35 +132,8 @@ metadata:
 ...
 ```
 
-### kubenet
-
-Kubenet은 리눅스에서만 사용할 수 있는 매우 기본적이고, 간단한 네트워크 플러그인이다. 그 자체로는, 크로스-노드 네트워킹 또는 네트워크 정책과 같은 고급 기능을 구현하지 않는다. 일반적으로 노드 간, 또는 단일 노드 환경에서 통신을 위한 라우팅 규칙을 설정하는 클라우드 제공자와 함께 사용된다.
-
-Kubenet은 `cbr0` 라는 리눅스 브리지를 만들고 각 쌍의 호스트 끝이 `cbr0` 에 연결된 각 파드에 대한 veth 쌍을 만든다. 쌍의 파드 끝에는 구성 또는 컨트롤러 관리자를 통해 노드에 할당된 범위 내에서 할당된 IP 주소가 지정된다. `cbr0` 에는 호스트에서 활성화된 일반 인터페이스의 가장 작은 MTU와 일치하는 MTU가 지정된다.
-
-플러그인에는 몇 가지 사항이 필요하다.
-
-* 표준 CNI `bridge`, `lo` 및 `host-local` 플러그인은 최소 0.2.0 버전이 필요하다. Kubenet은 먼저 `/opt/cni/bin` 에서 검색한다. 추가 검색 경로를 제공하려면 `cni-bin-dir` 을 지정한다. 처음 검색된 디렉터리가 적용된다.
-* 플러그인을 활성화하려면 Kubelet을 `--network-plugin=kubenet` 인수와 함께 실행해야 한다.
-* Kubelet은 `--non-masquerade-cidr=<clusterCidr>` 인수와 함께 실행하여 이 범위 밖 IP로의 트래픽이 IP 마스커레이드(masquerade)를 사용하도록 해야 한다.
-* `--pod-cidr` kubelet 커맨드라인 옵션 또는 `--allocate-node-cidrs=true --cluster-cidr=<cidr>` 컨트롤러 관리자 커맨드라인 옵션을 통해 노드에 IP 서브넷을 할당해야 한다.
-
-### MTU 사용자 정의 (kubenet 사용)
-
-최상의 네트워킹 성능을 얻으려면 MTU를 항상 올바르게 구성해야 한다. 네트워크 플러그인은 일반적으로 합리적인 MTU를
-유추하려고 시도하지만, 때로는 로직에 따라 최적의 MTU가 지정되지 않는다. 예를 들어,
-도커 브리지나 다른 인터페이스에 작은 MTU가 지정되어 있으면, kubenet은 현재 해당 MTU를 선택한다. 또는
-IPSEC 캡슐화를 사용하는 경우, MTU를 줄여야 하며, 이 계산은 대부분의
-네트워크 플러그인에서 범위를 벗어난다.
-
-필요한 경우, `network-plugin-mtu` kubelet 옵션을 사용하여 MTU를 명시 적으로 지정할 수 있다. 예를 들어,
-AWS에서 `eth0` MTU는 일반적으로 9001이므로, `--network-plugin-mtu=9001` 을 지정할 수 있다. IPSEC를 사용하는 경우
-캡슐화 오버헤드를 허용하도록 `--network-plugin-mtu=8873` 과 같이 IPSEC을 줄일 수 있다.
-
-이 옵션은 네트워크 플러그인에 제공된다. 현재 **kubenet만 `network-plugin-mtu` 를 지원한다**.
-
 ## 용법 요약
 
 * `--network-plugin=cni` 는 `--cni-bin-dir`(기본값 `/opt/cni/bin`)에 있는 실제 CNI 플러그인 바이너리와 `--cni-conf-dir`(기본값 `/etc/cni/net.d`)에 있는 CNI 플러그인 구성과 함께 `cni` 네트워크 플러그인을 사용하도록 지정한다.
-* `--network-plugin=kubenet` 은 `/opt/cni/bin` 또는 `cni-bin-dir` 에 있는 CNI `bridge`, `lo` 및 `host-local` 플러그인과 함께 `kubenet` 네트워크 플러그인을 사용하도록 지정한다.
-* 현재 kubenet 네트워크 플러그인에서만 사용하는 `--network-plugin-mtu=9001` 은 사용할 MTU를 지정한다.
+
+## {{% heading "whatsnext" %}}
diff --git a/content/ko/docs/concepts/extend-kubernetes/operator.md b/content/ko/docs/concepts/extend-kubernetes/operator.md
index 80ed86c2ec..0403a1f1b8 100644
--- a/content/ko/docs/concepts/extend-kubernetes/operator.md
+++ b/content/ko/docs/concepts/extend-kubernetes/operator.md
@@ -31,9 +31,7 @@ weight: 30
 및 실행을 자동화할 수 있고, *또한* 쿠버네티스가 수행하는 방식을
 자동화할 수 있다.
 
-쿠버네티스의 {{< glossary_tooltip text="컨트롤러" term_id="controller" >}}
-개념을 통해 쿠버네티스 코드 자체를 수정하지 않고도 클러스터의 동작을
-확장할 수 있다.
+쿠버네티스의 {{< glossary_tooltip text="오퍼레이터 패턴" term_id="operator-pattern" >}} 개념을 통해 쿠버네티스 코드 자체를 수정하지 않고도 {{< glossary_tooltip text="컨트롤러" term_id="controller" >}}를 하나 이상의 사용자 정의 리소스(custom resource)에 연결하여 클러스터의 동작을 확장할 수 있다.
 오퍼레이터는 [사용자 정의 리소스](/ko/docs/concepts/extend-kubernetes/api-extension/custom-resources/)의
 컨트롤러 역할을 하는 쿠버네티스 API의 클라이언트이다.
 
@@ -113,7 +111,9 @@ kubectl edit SampleDB/example-database # 일부 설정을 수동으로 변경하
 {{% thirdparty-content %}}
 
 * [Charmed Operator Framework](https://juju.is/)
+* [Kopf](https://github.com/nolar/kopf) (Kubernetes Operator Pythonic Framework)
 * [kubebuilder](https://book.kubebuilder.io/) 사용하기
+* [KubeOps](https://buehler.github.io/dotnet-operator-sdk/) (.NET 오퍼레이터 SDK)
 * [KUDO](https://kudo.dev/) (Kubernetes Universal Declarative Operator)
 * 웹훅(WebHook)과 함께 [Metacontroller](https://metacontroller.github.io/metacontroller/intro.html)를
   사용하여 직접 구현하기
diff --git a/content/ko/docs/concepts/extend-kubernetes/service-catalog.md b/content/ko/docs/concepts/extend-kubernetes/service-catalog.md
index cc387c2f02..6d2bd2ee39 100644
--- a/content/ko/docs/concepts/extend-kubernetes/service-catalog.md
+++ b/content/ko/docs/concepts/extend-kubernetes/service-catalog.md
@@ -32,7 +32,7 @@ weight: 40
 
 서비스 카탈로그는 [오픈 서비스 브로커 API](https://github.com/openservicebrokerapi/servicebroker)를 사용하여 쿠버네티스 API 서버가 초기 프로비저닝을 협상하고 애플리케이션이 매니지드 서비스를 사용하는데 필요한 자격 증명을 검색하는 중개자 역할을 하는 서비스 브로커와 통신한다.
 
-스토리지에 etcd를 사용하여 확장 API 서버와 컨트롤러로 구현된다. 또한 쿠버네티스 1.7 이상에서 제공하는 [애그리게이션 레이어(aggregation layer)](/ko/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)를 사용하여 API를 제공한다.
+이는 [CRD 기반](/ko/docs/concepts/extend-kubernetes/api-extension/custom-resources/#커스텀-리소스) 아키텍처를 사용해서 구현되었다.
 
 <br>
 
@@ -227,7 +227,6 @@ spec:
 
 ## {{% heading "whatsnext" %}}
 
-* 만약 당신이 {{< glossary_tooltip text="Helm Charts" term_id="helm-chart" >}}에 익숙하다면, 당신의 쿠버네티스 클러스터에 [Helm을 이용하여 서비스 카탈로그를 설치](/docs/tasks/service-catalog/install-service-catalog-using-helm/)할 수 있다. 다른 방법으로 [SC tool을 이용하여 서비스 카탈로그를 설치](/docs/tasks/service-catalog/install-service-catalog-using-sc/)할 수 있다.
+* 만약 당신이 {{< glossary_tooltip text="Helm Charts" term_id="helm-chart" >}}에 익숙하다면, 당신의 쿠버네티스 클러스터에 [Helm을 이용하여 서비스 카탈로그를 설치](/docs/tasks/service-catalog/install-service-catalog-using-helm/)할 수 있다. 다른 방법으로 [SC tool을 이용하여 서비스 카탈로그를 설치](/ko/docs/tasks/service-catalog/install-service-catalog-using-sc/)할 수 있다.
 * [샘플 서비스 브로커](https://github.com/openservicebrokerapi/servicebroker/blob/master/gettingStarted.md#sample-service-brokers) 살펴보기
 * [kubernetes-sigs/service-catalog](https://github.com/kubernetes-sigs/service-catalog) 프로젝트 탐색
-* [svc-cat.io](https://svc-cat.io/docs/) 살펴보기
diff --git a/content/ko/docs/concepts/overview/components.md b/content/ko/docs/concepts/overview/components.md
index b4c6079213..c48219e9d7 100644
--- a/content/ko/docs/concepts/overview/components.md
+++ b/content/ko/docs/concepts/overview/components.md
@@ -1,4 +1,6 @@
 ---
+
+
 title: 쿠버네티스 컴포넌트
 content_type: concept
 description: >
@@ -17,11 +19,7 @@ card:
 이 문서는 완전히 작동하는 쿠버네티스 클러스터를 갖기 위해 필요한
 다양한 컴포넌트들에 대해 요약하고 정리한다.
 
-여기에 모든 컴포넌트가 함께 있는 쿠버네티스 클러스터 다이어그램이 있다.
-
-![쿠버네티스의 컴포넌트](/images/docs/components-of-kubernetes.svg)
-
-
+{{< figure src="/images/docs/components-of-kubernetes.svg" alt="쿠버네티스 구성 요소" caption="쿠버네티스 클러스터 구성 요소" class="diagram-large" >}}
 
 <!-- body -->
 ## 컨트롤 플레인 컴포넌트
@@ -30,7 +28,7 @@ card:
 
 컨트롤 플레인 컴포넌트는 클러스터 내 어떠한 머신에서든지 동작할 수 있다. 그러나
 간결성을 위하여, 구성 스크립트는 보통 동일 머신 상에 모든 컨트롤 플레인 컴포넌트를 구동시키고,
-사용자 컨테이너는 해당 머신 상에 동작시키지 않는다. 여러 VM에서
+사용자 컨테이너는 해당 머신 상에 동작시키지 않는다. 여러 머신에서
 실행되는 컨트롤 플레인 설정의 예제를 보려면
 [kubeadm을 사용하여 고가용성 클러스터 만들기](/docs/setup/production-environment/tools/kubeadm/high-availability/)를 확인해본다.
 
@@ -116,7 +114,7 @@ kube-controller-manager와 마찬가지로 cloud-controller-manager는 논리적
 
 ### 컨테이너 리소스 모니터링
 
-[컨테이너 리소스 모니터링](/ko/docs/tasks/debug-application-cluster/resource-usage-monitoring/)은
+[컨테이너 리소스 모니터링](/ko/docs/tasks/debug/debug-cluster/resource-usage-monitoring/)은
 중앙 데이터베이스 내의 컨테이너들에 대한 포괄적인 시계열 매트릭스를 기록하고 그 데이터를 열람하기 위한 UI를 제공해 준다.
 
 ### 클러스터-레벨 로깅
diff --git a/content/ko/docs/concepts/overview/kubernetes-api.md b/content/ko/docs/concepts/overview/kubernetes-api.md
index 919d59b459..0281daaae0 100644
--- a/content/ko/docs/concepts/overview/kubernetes-api.md
+++ b/content/ko/docs/concepts/overview/kubernetes-api.md
@@ -1,4 +1,6 @@
 ---
+
+
 title: 쿠버네티스 API
 content_type: concept
 weight: 30
@@ -20,7 +22,7 @@ card:
 쿠버네티스 API를 사용하면 쿠버네티스의 API 오브젝트(예:
 파드(Pod), 네임스페이스(Namespace), 컨피그맵(ConfigMap) 그리고 이벤트(Event))를 질의(query)하고 조작할 수 있다.
 
-대부분의 작업은 [kubectl](/ko/docs/reference/kubectl/overview/)
+대부분의 작업은 [kubectl](/ko/docs/reference/kubectl/)
 커맨드 라인 인터페이스 또는 API를 사용하는
 [kubeadm](/ko/docs/reference/setup-tools/kubeadm/)과
 같은 다른 커맨드 라인 도구를 통해 수행할 수 있다.
@@ -35,36 +37,39 @@ card:
 
 완전한 API 상세 내용은 [OpenAPI](https://www.openapis.org/)를 활용해서 문서화했다.
 
-OpenAPI 규격은 `/openapi/v2` 엔드포인트에서만 제공된다.
-다음과 같은 요청 헤더를 사용해서 응답 형식을 요청할 수 있다.
+### OpenAPI V2
+
+쿠버네티스 API 서버는 `/openapi/v2` 엔드포인트를 통해 
+통합된(aggregated) OpenAPI v2 스펙을 제공한다. 
+요청 헤더에 다음과 같이 기재하여 응답 형식을 지정할 수 있다.
 
 <table>
-  <caption style="display:none">Valid request header values for OpenAPI v2 queries</caption>
+  <caption style="display:none"> OpenAPI v2 질의에 사용할 수 있는 유효한 요청 헤더 값</caption>
   <thead>
      <tr>
-        <th>Header</th>
-        <th style="min-width: 50%;">Possible values</th>
-        <th>Notes</th>
+        <th>헤더</th>
+        <th style="min-width: 50%;">사용할 수 있는 값</th>
+        <th>참고</th>
      </tr>
   </thead>
   <tbody>
      <tr>
         <td><code>Accept-Encoding</code></td>
         <td><code>gzip</code></td>
-        <td><em>not supplying this header is also acceptable</em></td>
+        <td><em>이 헤더를 제공하지 않는 것도 가능</em></td>
      </tr>
      <tr>
         <td rowspan="3"><code>Accept</code></td>
         <td><code>application/com.github.proto-openapi.spec.v2@v1.0+protobuf</code></td>
-        <td><em>mainly for intra-cluster use</em></td>
+        <td><em>주로 클러스터 내부 용도로 사용</em></td>
      </tr>
      <tr>
         <td><code>application/json</code></td>
-        <td><em>default</em></td>
+        <td><em>기본값</em></td>
      </tr>
      <tr>
         <td><code>*</code></td>
-        <td><em>serves </em><code>application/json</code></td>
+        <td><code>JSON으로 응답</em></td>
      </tr>
   </tbody>
 </table>
@@ -75,6 +80,76 @@ Protobuf에 기반한 직렬화 형식을 구현한다. 이 형식에 대한
 API 오브젝트를 정의하는 Go 패키지에 들어있는 각각의 스키마에 대한
 IDL(인터페이스 정의 언어) 파일을 참고한다.
 
+### OpenAPI V3
+
+{{< feature-state state="beta"  for_k8s_version="v1.24" >}}
+
+쿠버네티스 {{< param "version" >}} 버전은 OpenAPI v3 API 발행(publishing)에 대한 베타 지원을 제공한다. 
+이는 베타 기능이며 기본적으로 활성화되어 있다.
+kube-apiserver 구성 요소에 
+`OpenAPIV3` [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 비활성화하여 
+이 베타 기능을 비활성화할 수 있다.
+
+`/openapi/v3` 디스커버리 엔드포인트는 사용 가능한 모든 
+그룹/버전의 목록을 제공한다. 이 엔드포인트는 JSON 만을 반환한다.
+이러한 그룹/버전은 다음과 같은 형식으로 제공된다.
+```json
+{
+    "paths": {
+        ...
+        "api/v1": {
+            "serverRelativeURL": "/openapi/v3/api/v1?hash=CC0E9BFD992D8C59AEC98A1E2336F899E8318D3CF4C68944C3DEC640AF5AB52D864AC50DAA8D145B3494F75FA3CFF939FCBDDA431DAD3CA79738B297795818CF"
+        },
+        "apis/admissionregistration.k8s.io/v1": {
+            "serverRelativeURL": "/openapi/v3/apis/admissionregistration.k8s.io/v1?hash=E19CC93A116982CE5422FC42B590A8AFAD92CDE9AE4D59B5CAAD568F083AD07946E6CB5817531680BCE6E215C16973CD39003B0425F3477CFD854E89A9DB6597"
+        },
+        ...
+}
+```
+
+위의 상대 URL은 변경 불가능한(immutable) OpenAPI 상세를 가리키고 있으며, 
+이는 클라이언트에서의 캐싱을 향상시키기 위함이다. 
+같은 목적을 위해 API 서버는 적절한 HTTP 캐싱 헤더를 
+설정한다(`Expires`를 1년 뒤로, `Cache-Control`을 `immutable`). 
+사용 중단된 URL이 사용되면, API 서버는 최신 URL로의 리다이렉트를 반환한다.
+
+쿠버네티스 API 서버는 
+쿠버네티스 그룹 버전에 따른 OpenAPI v3 스펙을 
+`/openapi/v3/apis/<group>/<version>?hash=<hash>` 엔드포인트에 게시한다.
+
+사용 가능한 요청 헤더 목록은 아래의 표를 참고한다.
+
+<table>
+  <caption style="display:none"> OpenAPI v3 질의에 사용할 수 있는 유효한 요청 헤더 값</caption>
+  <thead>
+     <tr>
+        <th>헤더</th>
+        <th style="min-width: 50%;">사용할 수 있는 값</th>
+        <th>참고</th>
+     </tr>
+  </thead>
+  <tbody>
+     <tr>
+        <td><code>Accept-Encoding</code></td>
+        <td><code>gzip</code></td>
+        <td><em>이 헤더를 제공하지 않는 것도 가능</em></td>
+     </tr>
+     <tr>
+        <td rowspan="3"><code>Accept</code></td>
+        <td><code>application/com.github.proto-openapi.spec.v3@v1.0+protobuf</code></td>
+        <td><em>주로 클러스터 내부 용도로 사용</em></td>
+     </tr>
+     <tr>
+        <td><code>application/json</code></td>
+        <td><em>기본값</em></td>
+     </tr>
+     <tr>
+        <td><code>*</code></td>
+        <td><code>JSON으로 응답</em></td>
+     </tr>
+  </tbody>
+</table>
+
 ## 지속성
 
 쿠버네티스는 오브젝트의 직렬화된 상태를
diff --git a/content/ko/docs/concepts/overview/what-is-kubernetes.md b/content/ko/docs/concepts/overview/what-is-kubernetes.md
index 5d2ef83d76..2b6809782d 100644
--- a/content/ko/docs/concepts/overview/what-is-kubernetes.md
+++ b/content/ko/docs/concepts/overview/what-is-kubernetes.md
@@ -45,7 +45,7 @@ sitemap:
 * 기민한 애플리케이션 생성과 배포: VM 이미지를 사용하는 것에 비해 컨테이너 이미지 생성이 보다 쉽고 효율적임.
 * 지속적인 개발, 통합 및 배포: 안정적이고 주기적으로 컨테이너 이미지를 빌드해서 배포할 수 있고 (이미지의 불변성 덕에) 빠르고 효율적으로 롤백할 수 있다.
 * 개발과 운영의 관심사 분리: 배포 시점이 아닌 빌드/릴리스 시점에 애플리케이션 컨테이너 이미지를 만들기 때문에, 애플리케이션이 인프라스트럭처에서 분리된다.
-* 가시성은 OS 수준의 정보와 메트릭에 머무르지 않고, 애플리케이션의 헬스와 그 밖의 시그널을 볼 수 있다.
+* 가시성(observability): OS 수준의 정보와 메트릭에 머무르지 않고, 애플리케이션의 헬스와 그 밖의 시그널을 볼 수 있다.
 * 개발, 테스팅 및 운영 환경에 걸친 일관성: 랩탑에서도 클라우드에서와 동일하게 구동된다.
 * 클라우드 및 OS 배포판 간 이식성: Ubuntu, RHEL, CoreOS, 온-프레미스, 주요 퍼블릭 클라우드와 어디에서든 구동된다.
 * 애플리케이션 중심 관리: 가상 하드웨어 상에서 OS를 실행하는 수준에서 논리적인 리소스를 사용하는 OS 상에서 애플리케이션을 실행하는 수준으로 추상화 수준이 높아진다.
diff --git a/content/ko/docs/concepts/overview/working-with-objects/annotations.md b/content/ko/docs/concepts/overview/working-with-objects/annotations.md
index 245da33db3..89334978c0 100644
--- a/content/ko/docs/concepts/overview/working-with-objects/annotations.md
+++ b/content/ko/docs/concepts/overview/working-with-objects/annotations.md
@@ -30,6 +30,11 @@ weight: 50
 }
 ```
 
+{{<note>}}
+맵의 키와 값은 문자열이어야 한다. 다르게 말해서, 숫자,
+불리언(boolean), 리스트 등의 다른 형식을 키나 값에 사용할 수 없다.
+{{</note>}}
+
 다음은 어노테이션에 기록할 수 있는 정보의 예제이다.
 
 * 필드는 선언적 구성 계층에 의해 관리된다. 이러한 필드를 어노테이션으로 첨부하는 것은
diff --git a/content/ko/docs/concepts/overview/working-with-objects/common-labels.md b/content/ko/docs/concepts/overview/working-with-objects/common-labels.md
index c19ec0b3a9..05bb5bd074 100644
--- a/content/ko/docs/concepts/overview/working-with-objects/common-labels.md
+++ b/content/ko/docs/concepts/overview/working-with-objects/common-labels.md
@@ -42,9 +42,10 @@ kubectl과 대시보드와 같은 많은 도구들로 쿠버네티스 오브젝
 | `app.kubernetes.io/managed-by`      | 애플리케이션의 작동을 관리하는 데 사용되는 도구 | `helm` | 문자열 |
 | `app.kubernetes.io/created-by`      | 이 리소스를 만든 컨트롤러/사용자 | `controller-manager` | 문자열 |
 
-위 레이블의 실제 예시는 다음 스테이트풀셋 오브젝트를 고려한다.
+위 레이블의 실제 예시는 다음 {{< glossary_tooltip text="스테이트풀셋" term_id="statefulset" >}} 오브젝트를 고려한다.
 
 ```yaml
+# 아래는 전체 명세의 일부분이다
 apiVersion: apps/v1
 kind: StatefulSet
 metadata:
diff --git a/content/ko/docs/concepts/overview/working-with-objects/kubernetes-objects.md b/content/ko/docs/concepts/overview/working-with-objects/kubernetes-objects.md
index cf1f5675bb..b320dc8eb8 100644
--- a/content/ko/docs/concepts/overview/working-with-objects/kubernetes-objects.md
+++ b/content/ko/docs/concepts/overview/working-with-objects/kubernetes-objects.md
@@ -63,7 +63,7 @@ spec과 status간의 차이에 대응한다.
 [`kubectl apply`](/docs/reference/generated/kubectl/kubectl-commands#apply) 커맨드를 이용하는 것이다. 다음 예시와 같다.
 
 ```shell
-kubectl apply -f https://k8s.io/examples/application/deployment.yaml --record
+kubectl apply -f https://k8s.io/examples/application/deployment.yaml
 ```
 
 그 출력 내용은 다음과 유사하다.
@@ -81,17 +81,24 @@ deployment.apps/nginx-deployment created
 * `metadata` - `이름` 문자열, `UID`, 그리고 선택적인 `네임스페이스`를 포함하여 오브젝트를 유일하게 구분지어 줄 데이터
 * `spec` - 오브젝트에 대해 어떤 상태를 의도하는지
 
-오브젝트 `spec`에 대한 정확한 포맷은 모든 쿠버네티스 오브젝트마다 다르고, 그 오브젝트 특유의 중첩된 필드를 포함한다. [Kubernetes API Reference](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/) 는 쿠버네티스를 이용하여 생성할 수 있는 오브젝트에 대한 모든 spec 포맷을 살펴볼 수 있도록 해준다. 
-예를 들어, 파드에 대한 `spec` 포맷은 
-[PodSpec v1 Core](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core)
-에서 확인할 수 있고, 디플로이먼트에 대한 `spec` 포맷은 
-[DeploymentSpec v1 apps](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#deploymentspec-v1-apps)에서 확인할 수 있다.
-
+오브젝트 `spec`에 대한 정확한 포맷은 모든 쿠버네티스 오브젝트마다 다르고, 그 오브젝트 특유의 중첩된 필드를 포함한다. [쿠버네티스 API 레퍼런스](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/) 는 쿠버네티스를 이용하여 생성할 수 있는 오브젝트에 대한 모든 spec 포맷을 살펴볼 수 있도록 해준다.
 
+예를 들어, 파드 API 레퍼런스를 보려면 
+[`spec` 필드](/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodSpec)를 참조한다. 
+각 파드에 대해, `.spec` 필드는 파드 및 파드의 원하는 상태(desired state)를 
+기술한다(예: 파드의 각 컨테이너에 대한 컨테이너 이미지). 
+오브젝트 상세에 대한 또 다른 예시는 스테이트풀셋 API의 
+[`spec` 필드](/docs/reference/kubernetes-api/workload-resources/stateful-set-v1/#StatefulSetSpec)이다. 
+스테이트풀셋의 경우, `.spec` 필드는 스테이트풀셋 및 스테이트풀셋의 원하는 상태(desired state)를 기술한다. 
+스테이트풀셋의 `.spec`에는 파드 오브젝트에 대한 
+[템플릿](/ko/docs/concepts/workloads/pods/#파드-템플릿)이 존재한다. 
+이 템플릿은 스테이트풀셋 명세를 만족시키기 위해 
+스테이트풀셋 컨트롤러가 생성할 파드에 대한 상세 사항을 설명한다.
+서로 다른 종류의 오브젝트는 서로 다른 `.status`를 가질 수 있다. 
+다시 한번 말하자면, 각 API 레퍼런스 페이지는 각 오브젝트 타입에 대해 해당 `.status` 필드의 구조와 내용에 대해 소개한다. 
 
 ## {{% heading "whatsnext" %}}
 
-
 * [파드](/ko/docs/concepts/workloads/pods/)와 같이, 가장 중요하고 기본적인 쿠버네티스 오브젝트에 대해 배운다.
 * 쿠버네티스의 [컨트롤러](/ko/docs/concepts/architecture/controller/)에 대해 배운다.
 * API 개념의 더 많은 설명은 [쿠버네티스 API 사용](/ko/docs/reference/using-api/)을 본다.
diff --git a/content/ko/docs/concepts/overview/working-with-objects/labels.md b/content/ko/docs/concepts/overview/working-with-objects/labels.md
index 0583ae0fe3..76eda67392 100644
--- a/content/ko/docs/concepts/overview/working-with-objects/labels.md
+++ b/content/ko/docs/concepts/overview/working-with-objects/labels.md
@@ -42,7 +42,7 @@ _레이블_ 은 파드와 같은 오브젝트에 첨부된 키와 값의 쌍이
    * `"partition" : "customerA"`, `"partition" : "customerB"`
    * `"track" : "daily"`, `"track" : "weekly"`
 
-이 예시는 일반적으로 사용하는 레이블이며, 사용자는 자신만의 규칙(convention)에 따라 자유롭게 개발할 수 있다. 오브젝트에 붙여진 레이블 키는 고유해야 한다는 것을 기억해야 한다.
+이 예시는 [일반적으로 사용하는 레이블](/ko/docs/concepts/overview/working-with-objects/common-labels/)이며, 사용자는 자신만의 규칙(convention)에 따라 자유롭게 개발할 수 있다. 오브젝트에 붙여진 레이블 키는 고유해야 한다는 것을 기억해야 한다.
 
 ## 구문과 캐릭터 셋
 
@@ -50,15 +50,13 @@ _레이블_ 은 키와 값의 쌍이다. 유효한 레이블 키에는 슬래시
 
 접두사를 생략하면 키 레이블은 개인용으로 간주한다. 최종 사용자의 오브젝트에 자동화된 시스템 컴포넌트(예: `kube-scheduler`, `kube-controller-manager`, `kube-apiserver`, `kubectl` 또는 다른 타사의 자동화 구성 요소)의 접두사를 지정해야 한다.
 
-`kubernetes.io/`와 `k8s.io/` 접두사는 쿠버네티스의 핵심 컴포넌트로 예약되어있다.
+`kubernetes.io/`와 `k8s.io/` 접두사는 쿠버네티스의 핵심 컴포넌트로 [예약](/ko/docs/reference/labels-annotations-taints/)되어 있다.
 
 유효한 레이블 값은 다음과 같다.
 * 63 자 이하여야 하고 (공백일 수도 있음),
 * (공백이 아니라면) 시작과 끝은 알파벳과 숫자(`[a-z0-9A-Z]`)이며,
 * 알파벳과 숫자, 대시(`-`), 밑줄(`_`), 점(`.`)을 중간에 포함할 수 있다.
 
-유효한 레이블 값은 63자 미만 또는 공백이며 시작과 끝은 알파벳과 숫자(`[a-z0-9A-Z]`)이며, 대시(`-`), 밑줄(`_`), 점(`.`)과 함께 사용할 수 있다.
-
 다음의 예시는 파드에 `environment: production` 과 `app: nginx` 2개의 레이블이 있는 구성 파일이다.
 
 ```yaml
@@ -97,7 +95,7 @@ API는 현재 _일치성 기준_ 과 _집합성 기준_ 이라는 두 종류의
 {{< /note >}}
 
 {{< caution >}}
-일치성 기준과 집합성 기준 조건 모두에 대해 논리적인 _OR_ (`||`) 연산자가 없다. 필터 구문이 적절히 구성되어있는지 확인해야 한다.
+일치성 기준과 집합성 기준 조건 모두에 대해 논리적인 _OR_ (`||`) 연산자가 없다. 필터 구문이 적절히 구성되어 있는지 확인해야 한다.
 {{< /caution >}}
 
 ### _일치성 기준_ 요건
@@ -233,7 +231,7 @@ selector:
     - {key: environment, operator: NotIn, values: [dev]}
 ```
 
-`matchLabels`는 `{key,value}`의 쌍과 매칭된다. `matchLabels`에 매칭된 단일 `{key,value}`는 `matchExpressions`의 요소와 같으며 `key` 필드는 "key"로, `operator`는 "In" 그리고 `values`에는 "value"만 나열되어 있다. `matchExpressions`는 파드 셀렉터의 요건 목록이다. 유효한 연산자에는 In, NotIn, Exists 및 DoNotExist가 포함된다. In 및 NotIn은 설정된 값이 있어야 한다. `matchLabels`와 `matchExpressions` 모두 AND로 되어있어 일치하기 위해서는 모든 요건을 만족해야 한다.
+`matchLabels`는 `{key,value}`의 쌍과 매칭된다. `matchLabels`에 매칭된 단일 `{key,value}`는 `matchExpressions`의 요소와 같으며 `key` 필드는 "key"로, `operator`는 "In" 그리고 `values`에는 "value"만 나열되어 있다. `matchExpressions`는 파드 셀렉터의 요건 목록이다. 유효한 연산자에는 In, NotIn, Exists 및 DoNotExist가 포함된다. In 및 NotIn은 설정된 값이 있어야 한다. `matchLabels`와 `matchExpressions` 모두 AND로 되어 있어 일치하기 위해서는 모든 요건을 만족해야 한다.
 
 #### 노드 셋 선택
 
diff --git a/content/ko/docs/concepts/overview/working-with-objects/names.md b/content/ko/docs/concepts/overview/working-with-objects/names.md
index 78b7addd43..69afaa0069 100644
--- a/content/ko/docs/concepts/overview/working-with-objects/names.md
+++ b/content/ko/docs/concepts/overview/working-with-objects/names.md
@@ -1,4 +1,7 @@
 ---
+
+
+
 title: 오브젝트 이름과 ID
 content_type: concept
 weight: 20
@@ -25,7 +28,7 @@ weight: 20
 물리적 호스트를 나타내는 노드와 같이 오브젝트가 물리적 엔티티를 나타내는 경우, 노드를 삭제한 후 다시 생성하지 않은 채 동일한 이름으로 호스트를 다시 생성하면, 쿠버네티스는 새 호스트를 불일치로 이어질 수 있는 이전 호스트로 취급한다.
 {{< /note >}}
 
-다음은 리소스에 일반적으로 사용되는 세 가지 유형의 이름 제한 조건이다.
+다음은 리소스에 일반적으로 사용되는 네 가지 유형의 이름 제한 조건이다.
 
 ### DNS 서브도메인 이름
 
@@ -38,7 +41,7 @@ DNS 서브도메인 이름으로 사용할 수 있는 이름이 필요하다.
 - 영숫자로 시작한다.
 - 영숫자로 끝난다.
 
-### DNS 레이블 이름
+### RFC 1123 레이블 이름 {#dns-label-names}
 
 일부 리소스 유형은 [RFC 1123](https://tools.ietf.org/html/rfc1123)에
 정의된 대로 DNS 레이블 표준을 따라야 한다.
@@ -49,6 +52,17 @@ DNS 서브도메인 이름으로 사용할 수 있는 이름이 필요하다.
 - 영숫자로 시작한다.
 - 영숫자로 끝난다.
 
+### RFC 1035 레이블 이름
+
+몇몇 리소스 타입은 자신의 이름을 [RFC 1035](https://tools.ietf.org/html/rfc1035)에
+정의된 DNS 레이블 표준을 따르도록 요구한다.
+이것은 이름이 다음을 만족해야 한다는 의미이다.
+
+- 최대 63개 문자를 포함
+- 소문자 영숫자 또는 '-'만 포함
+- 알파벳 문자로 시작
+- 영숫자로 끝남
+
 ### 경로 세그먼트 이름
 
 일부 리소스 유형에서는 이름을 경로 세그먼트로 안전하게 인코딩 할 수
diff --git a/content/ko/docs/concepts/overview/working-with-objects/namespaces.md b/content/ko/docs/concepts/overview/working-with-objects/namespaces.md
index 049b30a1f7..f97d0858de 100644
--- a/content/ko/docs/concepts/overview/working-with-objects/namespaces.md
+++ b/content/ko/docs/concepts/overview/working-with-objects/namespaces.md
@@ -1,4 +1,8 @@
 ---
+
+
+
+
 title: 네임스페이스
 content_type: concept
 weight: 30
@@ -6,8 +10,7 @@ weight: 30
 
 <!-- overview -->
 
-쿠버네티스는 동일한 물리 클러스터를 기반으로 하는 여러 가상 클러스터를 지원한다.
-이런 가상 클러스터를 네임스페이스라고 한다.
+쿠버네티스에서, _네임스페이스_ 는 단일 클러스터 내에서의 리소스 그룹 격리 메커니즘을 제공한다. 리소스의 이름은 네임스페이스 내에서 유일해야 하며, 네임스페이스 간에서 유일할 필요는 없다. 네임스페이스 기반 스코핑은 네임스페이스 기반 오브젝트 _(예: 디플로이먼트, 서비스 등)_ 에만 적용 가능하며 클러스터 범위의 오브젝트 _(예: 스토리지클래스, 노드, 퍼시스턴트볼륨 등)_ 에는 적용 불가능하다.
 
 <!-- body -->
 
@@ -58,7 +61,9 @@ kube-system       Active   1d
    * `default` 다른 네임스페이스가 없는 오브젝트를 위한 기본 네임스페이스
    * `kube-system` 쿠버네티스 시스템에서 생성한 오브젝트를 위한 네임스페이스
    * `kube-public` 이 네임스페이스는 자동으로 생성되며 모든 사용자(인증되지 않은 사용자 포함)가 읽기 권한으로 접근할 수 있다. 이 네임스페이스는 주로 전체 클러스터 중에 공개적으로 드러나서 읽을 수 있는 리소스를 위해 예약되어 있다. 이 네임스페이스의 공개적인 성격은 단지 관례이지 요구 사항은 아니다.
-   * `kube-node-lease` 클러스터가 스케일링될 때 노드 하트비트의 성능을 향상시키는 각 노드와 관련된 리스(lease) 오브젝트에 대한 네임스페이스
+   * `kube-node-lease` 이 네임스페이스는 각 노드와 연관된 [리스](/docs/reference/kubernetes-api/cluster-resources/lease-v1/)
+      오브젝트를 갖는다. 노드 리스는 kubelet이 [하트비트](/ko/docs/concepts/architecture/nodes/#하트비트)를
+      보내서 컨트롤 플레인이 노드의 장애를 탐지할 수 있게 한다.
 
 ### 요청에 네임스페이스 설정하기
 
@@ -89,7 +94,26 @@ kubectl config view --minify | grep namespace:
 이 엔트리는 `<서비스-이름>.<네임스페이스-이름>.svc.cluster.local`의 형식을 갖는데,
 이는 컨테이너가 `<서비스-이름>`만 사용하는 경우, 네임스페이스 내에 국한된 서비스로 연결된다.
 개발, 스테이징, 운영과 같이 여러 네임스페이스 내에서 동일한 설정을 사용하는 경우에 유용하다.
-네임스페이스를 넘어서 접근하기 위해서는, 전체 주소 도메인 이름(FQDN)을 사용해야 한다.
+네임스페이스를 넘어서 접근하기 위해서는, 
+전체 주소 도메인 이름(FQDN)을 사용해야 한다.
+
+그렇기 때문에, 모든 네임스페이스 이름은 유효한 
+[RFC 1123 DNS 레이블](/ko/docs/concepts/overview/working-with-objects/names/#dns-label-names)이어야 한다.
+
+{{< warning >}}
+네임스페이스의 이름을 [공개 최상위 도메인](https://data.iana.org/TLD/tlds-alpha-by-domain.txt) 중 하나와 동일하게 만들면, 
+해당 네임스페이스 내의 서비스의 짧은 DNS 이름이 공개 DNS 레코드와 겹칠 수 있다. 
+어떠한 네임스페이스 내의 워크로드가 
+[접미점(trailing dot)](https://datatracker.ietf.org/doc/html/rfc1034#page-8) 없이 DNS 룩업을 수행하면 
+공개 DNS 레코드보다 우선하여 해당 서비스로 리다이렉트될 것이다.
+
+이를 방지하기 위해, 신뢰하는 사용자만 네임스페이스를 
+생성할 수 있도록 권한을 제한한다. 
+필요한 경우, 추가적으로 써드파티 보안 컨트롤을 구성할 수 있으며, 
+예를 들어 [어드미션 웹훅](/docs/reference/access-authn-authz/extensible-admission-controllers/)을 이용하여 
+[공개 TLD](https://data.iana.org/TLD/tlds-alpha-by-domain.txt)와 
+동일한 이름의 네임스페이스 생성을 금지시킬 수 있다.
+{{< /warning >}}
 
 ## 모든 오브젝트가 네임스페이스에 속하지는 않음
 
diff --git a/content/ko/docs/concepts/overview/working-with-objects/object-management.md b/content/ko/docs/concepts/overview/working-with-objects/object-management.md
index 575def2256..4a0c28315e 100644
--- a/content/ko/docs/concepts/overview/working-with-objects/object-management.md
+++ b/content/ko/docs/concepts/overview/working-with-objects/object-management.md
@@ -6,7 +6,7 @@ weight: 15
 
 <!-- overview -->
 `kubectl` 커맨드라인 툴은 쿠버네티스 오브젝트를 생성하고 관리하기 위한
-몇 가지 상이한 방법을 지원한다. 이 문서는 여러가지 접근법에 대한 개요을
+몇 가지 상이한 방법을 지원한다. 이 문서는 여러가지 접근법에 대한 개요를
 제공한다. Kubectl로 오브젝트 관리하기에 대한 자세한 설명은
 [Kubectl 서적](https://kubectl.docs.kubernetes.io)에서 확인한다.
 
diff --git a/content/ko/docs/concepts/policy/resource-quotas.md b/content/ko/docs/concepts/policy/resource-quotas.md
index b5254e4300..40fe114453 100644
--- a/content/ko/docs/concepts/policy/resource-quotas.md
+++ b/content/ko/docs/concepts/policy/resource-quotas.md
@@ -104,7 +104,7 @@ GPU 리소스를 다음과 같이 쿼터를 정의할 수 있다.
 
 지정된 네임스페이스에서 요청할 수 있는 총 [스토리지 리소스](/ko/docs/concepts/storage/persistent-volumes/) 합을 제한할 수 있다.
 
-또한 연관된 ​​스토리지 클래스를 기반으로 스토리지 리소스 사용을 제한할 수 있다.
+또한 연관된 스토리지 클래스를 기반으로 스토리지 리소스 사용을 제한할 수 있다.
 
 | 리소스 이름 | 설명        |
 | --------------------- | ----------------------------------------------------------- |
@@ -442,7 +442,7 @@ pods        0     10
 
 ### 네임스페이스 간 파드 어피니티 쿼터
 
-{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 오퍼레이터는 네임스페이스를 교차하는 어피니티가 있는 파드를 가질 수 있는 네임스페이스를
 제한하기 위해 `CrossNamespacePodAffinity` 쿼터 범위를 사용할 수 있다. 특히, 파드 어피니티 용어의
@@ -493,10 +493,6 @@ plugins:
 해당 필드를 사용하는 파드 수보다 크거나 같은 하드 제한이 있는 경우에만
 파드 어피니티에서 `namespaces` 및 `namespaceSelector` 를 사용할 수 있다.
 
-이 기능은 알파이며 기본적으로 비활성화되어 있다. kube-apiserver 및 kube-scheduler 모두에서
-[기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)
-`PodAffinityNamespaceSelector` 를 설정하여 활성화할 수 있다.
-
 ## 요청과 제한의 비교 {#requests-vs-limits}
 
 컴퓨트 리소스를 할당할 때 각 컨테이너는 CPU 또는 메모리에 대한 요청과 제한값을 지정할 수 있다.
diff --git a/content/ko/docs/concepts/scheduling-eviction/_index.md b/content/ko/docs/concepts/scheduling-eviction/_index.md
index 7128dbe99f..7ee5c488ed 100644
--- a/content/ko/docs/concepts/scheduling-eviction/_index.md
+++ b/content/ko/docs/concepts/scheduling-eviction/_index.md
@@ -33,5 +33,5 @@ no_list: true
 {{<glossary_definition term_id="pod-disruption" length="all">}}
 
 * [파드 우선순위와 선점](/ko/docs/concepts/scheduling-eviction/pod-priority-preemption/)
-* [노드-압박 축출](/docs/concepts/scheduling-eviction/node-pressure-eviction/)
+* [노드-압박 축출](/ko/docs/concepts/scheduling-eviction/node-pressure-eviction/)
 * [API를 이용한 축출](/ko/docs/concepts/scheduling-eviction/api-eviction/)
diff --git a/content/ko/docs/concepts/scheduling-eviction/api-eviction.md b/content/ko/docs/concepts/scheduling-eviction/api-eviction.md
index 53724320b0..8368be9831 100644
--- a/content/ko/docs/concepts/scheduling-eviction/api-eviction.md
+++ b/content/ko/docs/concepts/scheduling-eviction/api-eviction.md
@@ -1,18 +1,122 @@
 ---
-title: API를 이용한 축출(Eviction)
+title: API를 이용한 축출(API-initiated Eviction)
 content_type: concept
 weight: 70
 ---
 
 {{< glossary_definition term_id="api-eviction" length="short" >}} </br>
 
-`kubectl drain` 명령과 같은 kube-apiserver의 클라이언트를 사용하여,
-축출 API를 직접 호출해 축출 요청을 할 수 있다.
-그러면 API 서버가 파드를 종료하는 `Eviction` 오브젝트가 생성된다.
+축출 API를 직접 호출하거나, 또는 `kubectl drain` 명령과 같이 
+{{<glossary_tooltip term_id="kube-apiserver" text="API 서버">}}의 클라이언트를 사용하여 프로그램적인 방법으로 축출 요청을 할 수 있다. 
+이는 `Eviction` 오브젝트를 만들며, API 서버로 하여금 파드를 종료하도록 만든다.
 
-API를 이용한 축출은 구성된 [`PodDisruptionBudgets`](/docs/tasks/run-application/configure-pdb/) 및 [`terminationGracePeriodSeconds`](/ko/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)를 준수한다.
+API를 이용한 축출은 사용자가 설정한 [`PodDisruptionBudgets`](/docs/tasks/run-application/configure-pdb/) 및 
+[`terminationGracePeriodSeconds`](/ko/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination) 값을 준수한다.
+
+API를 사용하여 `Eviction` 오브젝트를 만드는 것은 
+정책 기반의 파드 [`DELETE` 동작](/docs/reference/kubernetes-api/workload-resources/pod-v1/#delete-delete-a-pod)을 수행하는 것과 
+비슷한 효과를 낸다.
+
+## 축출 API 호출하기
+
+[각 언어 별 쿠버네티스 클라이언트](/ko/docs/tasks/administer-cluster/access-cluster-api/#api에-프로그래밍-방식으로-접근)를 사용하여 
+쿠버네티스 API를 호출하고 `Eviction` 오브젝트를 생성할 수 있다. 
+이를 실행하려면, 아래의 예시를 참고하여 POST 호출을 수행한다.
+
+{{< tabs name="Eviction_example" >}}
+{{% tab name="policy/v1" %}}
+{{< note >}}
+`policy/v1` 축출은 v1.22 이상에서 사용 가능하다. 이전 버전에서는 `policy/v1beta1`를 사용한다.
+{{< /note >}}
+
+```json
+{
+  "apiVersion": "policy/v1",
+  "kind": "Eviction",
+  "metadata": {
+    "name": "quux",
+    "namespace": "default"
+  }
+}
+```
+{{% /tab %}}
+{{% tab name="policy/v1beta1" %}}
+{{< note >}}
+v1.22에서 사용 중단 및 `policy/v1`으로 대체되었다.
+{{< /note >}}
+
+```json
+{
+  "apiVersion": "policy/v1beta1",
+  "kind": "Eviction",
+  "metadata": {
+    "name": "quux",
+    "namespace": "default"
+  }
+}
+```
+{{% /tab %}}
+{{< /tabs >}}
+
+또는 다음 예시와 같이 `curl` 또는 `wget`으로 API에 접근하여 
+축출 동작을 시도할 수도 있다.
+
+```bash
+curl -v -H 'Content-type: application/json' https://your-cluster-api-endpoint.example/api/v1/namespaces/default/pods/quux/eviction -d @eviction.json
+```
+
+## API를 이용한 축출의 동작
+
+API를 사용하여 축출을 요청하면, 
+API 서버는 인가 확인(admission checks)를 수행하고 다음 중 하나로 응답한다.
+
+* `200 OK`: 축출 요청이 허용되었고, `Eviction` 서브리소스가 생성되었고, 
+  (마치 파드 URL에 `DELETE` 요청을 보낸 것처럼) 파드가 삭제되었다.
+* `429 Too Many Requests`: 현재 설정된 
+  {{<glossary_tooltip term_id="pod-disruption-budget" text="PodDisruptionBudget">}} 때문에 
+  축출이 현재 허용되지 않는다. 
+  또는 API 요청 속도 제한(rate limiting) 때문에 이 응답을 받았을 수도 있다.
+* `500 Internal Server Error`: 잘못된 환경 설정(예: 
+  여러 PodDisruptionBudget이 하나의 동일한 파드를 참조함)으로 인해 축출이 허용되지 않는다.
+
+축출하려는 파드가 
+PodDisruptionBudget이 설정된 워크로드에 속하지 않는다면, 
+API 서버는 항상 `200 OK`를 반환하고 축출을 허용한다.
+
+API 서버가 축출을 허용하면, 파드는 다음과 같이 삭제된다.
+
+1. API 서버 내 `Pod` 리소스의 삭제 타임스탬프(deletion timestamp)가 업데이트되며, 
+   이 타임스탬프에 명시된 시각이 경과하면 API 서버는 해당 `Pod` 리소스를 종료 대상으로 간주한다. 
+   또한 설정된 그레이스 시간(grace period)이 `Pod` 리소스에 기록된다.
+1. 로컬 파드가 실행되고 있는 노드의 {{<glossary_tooltip term_id="kubelet" text="kubelet">}}이 
+   `Pod`가 종료 대상으로 표시된 것을 감지하고 
+   로컬 파드의 그레이스풀 셧다운을 시작한다.
+1. kubelet이 파드를 종료하는 와중에, 컨트롤 플레인은 
+   {{<glossary_tooltip term_id="endpoint" text="엔드포인트">}} 및 
+   {{<glossary_tooltip term_id="endpoint-slice" text="엔드포인트슬라이스">}} 오브젝트에서 파드를 삭제한다. 
+   이 결과, 컨트롤러는 파드를 더 이상 유효한 오브젝트로 간주하지 않는다.
+1. 파드의 그레이스 시간이 만료되면, 
+   kubelet이 로컬 파드를 강제로 종료한다.
+1. kubelet이 API 서버에 `Pod` 리소스를 삭제하도록 지시한다.
+1. API 서버가 `Pod` 리소스를 삭제한다.
+
+## 문제가 있어 중단된 축출 트러블슈팅하기
+
+일부 경우에, 애플리케이션이 잘못된 상태로 돌입하여, 
+직접 개입하기 전에는 축출 API가 `429` 또는 `500` 응답만 반환할 수 있다. 
+이러한 현상은, 예를 들면 레플리카셋이 애플리케이션을 서비스할 파드를 생성했지만 
+새 파드가 `Ready`로 바뀌지 못하는 경우에 발생할 수 있다. 
+또는 마지막으로 축출된 파드가 긴 종료 그레이스 시간을 가진 경우에 이러한 현상을 목격할 수도 있다.
+
+문제가 있어 중단된 축출을 발견했다면, 다음 해결책 중 하나를 시도해 본다.
+
+* 이 문제를 발생시키는 자동 동작(automated operation)을 중단하거나 일시 중지한다. 
+  해당 동작을 재시작하기 전에, 문제가 있어 중단된 애플리케이션을 조사한다.
+* 잠시 기다린 뒤, 축출 API를 사용하는 것 대신 
+  클러스터 컨트롤 플레인에서 파드를 직접 삭제한다.
 
 ## {{% heading "whatsnext" %}}
 
-- [노드-압박 축출](/docs/concepts/scheduling-eviction/node-pressure-eviction/)에 대해 더 배우기
-- [파드 우선순위와 선점](/ko/docs/concepts/scheduling-eviction/pod-priority-preemption/)에 대해 더 배우기
+* [Pod Disruption Budget](/docs/tasks/run-application/configure-pdb/)을 사용하여 애플리케이션을 보호하는 방법에 대해 알아본다.
+* [노드-압박 축출](/ko/docs/concepts/scheduling-eviction/node-pressure-eviction/)에 대해 알아본다.
+* [파드 우선순위와 선점](/ko/docs/concepts/scheduling-eviction/pod-priority-preemption/)에 대해 알아본다.
diff --git a/content/ko/docs/concepts/scheduling-eviction/assign-pod-node.md b/content/ko/docs/concepts/scheduling-eviction/assign-pod-node.md
index f46e075b57..51ecff20b4 100644
--- a/content/ko/docs/concepts/scheduling-eviction/assign-pod-node.md
+++ b/content/ko/docs/concepts/scheduling-eviction/assign-pod-node.md
@@ -15,159 +15,182 @@ weight: 20
 {{< glossary_tooltip text="파드" term_id="pod" >}}를 제한할 수 있다.
 이를 수행하는 방법에는 여러 가지가 있으며 권장되는 접근 방식은 모두
 [레이블 셀렉터](/ko/docs/concepts/overview/working-with-objects/labels/)를 사용하여 선택을 용이하게 한다.
-보통 스케줄러가 자동으로 합리적인 배치(예: 자원이 부족한 노드에 파드를 배치하지 않도록
-노드 간에 파드를 분배하는 등)를 수행하기에 이러한 제약 조건은 필요하지 않지만
-간혹 파드가 배포할 노드를 제어해야 하는 경우가 있다.
-예를 들어 SSD가 장착된 머신에 파드가 연결되도록 하거나 또는 동일한 가용성 영역(availability zone)에서
-많은 것을 통신하는 두 개의 서로 다른 서비스의 파드를 같이 배치할 수 있다.
-
+보통은 스케줄러가 자동으로 합리적인 배치(예: 자원이 부족한 노드에 파드를 배치하지 않도록 
+노드 간에 파드를 분배)를 수행하기에 이러한 제약 조건은 필요하지 않다.
+그러나, 예를 들어 SSD가 장착된 머신에 파드가 배포되도록 하거나 또는 
+많은 통신을 하는 두 개의 서로 다른 서비스의 파드를 동일한 가용성 영역(availability zone)에 배치하는 경우와 같이, 
+파드가 어느 노드에 배포될지를 제어해야 하는 경우도 있다.
 
 <!-- body -->
 
-## 노드 셀렉터(nodeSelector)
+쿠버네티스가 특정 파드를 어느 노드에 스케줄링할지 고르는 
+다음의 방법 중 하나를 골라 사용할 수 있다.
 
-`nodeSelector` 는 가장 간단하고 권장되는 노드 선택 제약 조건의 형태이다.
-`nodeSelector` 는 PodSpec의 필드이다. 이는 키-값 쌍의 매핑으로 지정한다. 파드가 노드에서 동작할 수 있으려면,
-노드는 키-값의 쌍으로 표시되는 레이블을 각자 가지고 있어야 한다(이는 추가 레이블을 가지고 있을 수 있다).
-일반적으로 하나의 키-값 쌍이 사용된다.
+  * [노드 레이블](#built-in-node-labels)에 매칭되는 [nodeSelector](#nodeselector) 필드
+  * [어피니티 / 안티 어피니티](#affinity-and-anti-affinity)
+  * [nodeName](#nodename) 필드
 
-`nodeSelector` 를 어떻게 사용하는지 예시를 통해 알아보도록 하자.
+## 노드 레이블 {#built-in-node-labels}
 
-### 0 단계: 사전 준비
+다른 쿠버네티스 오브젝트와 마찬가지로, 노드도 [레이블](/ko/docs/concepts/overview/working-with-objects/labels/)을 가진다.
+[레이블을 수동으로 추가](/ko/docs/tasks/configure-pod-container/assign-pods-nodes/#노드에-레이블-추가)할 수 있다.
+또한 쿠버네티스도 클러스터의 모든 노드에 표준화된 레이블 집합을 적용한다.
+[잘 알려진 레이블, 어노테이션, 테인트](/ko/docs/reference/labels-annotations-taints/)에서 널리 사용되는 노드 레이블의 목록을 확인한다.
 
-이 예시는 쿠버네티스 파드에 대한 기본적인 이해를 하고 있고 [쿠버네티스 클러스터가 설정](/ko/docs/setup/)되어 있다고 가정한다.
+{{<note>}}
+이러한 레이블에 대한 값은 클라우드 제공자별로 다르며 정확하지 않을 수 있다.
+예를 들어, `kubernetes.io/hostname`에 대한 값은 특정 환경에서는 노드 이름과 동일할 수 있지만 
+다른 환경에서는 다른 값일 수도 있다.
+{{</note>}}
 
-### 1 단계: 노드에 레이블 붙이기
+### 노드 격리/제한 {#node-isolation-restriction}
 
-`kubectl get nodes` 를 실행해서 클러스터 노드 이름을 가져온다. 이 중에 레이블을 추가하기 원하는 것 하나를 선택한 다음에 `kubectl label nodes <노드 이름> <레이블 키>=<레이블 값>` 을 실행해서 선택한 노드에 레이블을 추가한다. 예를 들어 노드의 이름이 'kubernetes-foo-node-1.c.a-robinson.internal' 이고, 원하는 레이블이 'disktype=ssd' 라면, `kubectl label nodes kubernetes-foo-node-1.c.a-robinson.internal disktype=ssd` 를 실행한다.
+노드에 레이블을 추가하여 
+파드를 특정 노드 또는 노드 그룹에 스케줄링되도록 지정할 수 있다.
+이 기능을 사용하여 특정 파드가 특정 격리/보안/규제 속성을 만족하는 노드에서만 
+실행되도록 할 수 있다.
 
-`kubectl get nodes --show-labels` 를 다시 실행해서 노드가 현재 가진 레이블을 확인하여, 이 작업을 검증할 수 있다. 또한 `kubectl describe node "노드 이름"` 을 사용해서 노드에 주어진 레이블의 전체 목록을 확인할 수 있다.
+노드 격리를 위해 레이블을 사용할 때, {{<glossary_tooltip text="kubelet" term_id="kubelet">}}이 변경할 수 없는 레이블 키를 선택한다.
+그렇지 않으면 kubelet이 해당 레이블을 변경하여 노드가 사용 불가능(compromised) 상태로 빠지고 
+스케줄러가 이 노드에 워크로드를 스케줄링하는 일이 발생할 수 있다.
 
-### 2 단계: 파드 설정에 nodeSelector 필드 추가하기
+[`NodeRestriction` 어드미션 플러그인](/docs/reference/access-authn-authz/admission-controllers/#noderestriction)은 
+kubelet이 `node-restriction.kubernetes.io/` 접두사를 갖는 레이블을 
+설정하거나 변경하지 못하도록 한다.
 
-실행하고자 하는 파드의 설정 파일을 가져오고, 이처럼 nodeSelector 섹션을 추가한다. 예를 들어 이것이 파드 설정이라면,
+노드 격리를 위해 레이블 접두사를 사용하려면,
 
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: nginx
-  labels:
-    env: test
-spec:
-  containers:
-  - name: nginx
-    image: nginx
-```
+1. [노드 인가자(authorizer)](/docs/reference/access-authn-authz/node/)를 사용하고 있는지, 그리고 `NodeRestriction` 어드미션 플러그인을 **활성화** 했는지 확인한다.
+1. 노드에 `node-restriction.kubernetes.io/` 접두사를 갖는 레이블을 추가하고, [노드 셀렉터](#nodeselector)에서 해당 레이블을 사용한다.
+   예: `example.com.node-restriction.kubernetes.io/fips=true` 또는 `example.com.node-restriction.kubernetes.io/pci-dss=true`
 
-이 다음에 nodeSelector 를 다음과 같이 추가한다.
+## 노드셀렉터(nodeSelector) {#nodeselector}
 
-{{< codenew file="pods/pod-nginx.yaml" >}}
+`nodeSelector`는 노드 선택 제약사항의 가장 간단하면서도 추천하는 형태이다.
+파드 스펙에 `nodeSelector` 필드를 추가하고, 
+타겟으로 삼고 싶은 노드가 갖고 있는 [노드 레이블](#built-in-node-labels)을 명시한다.
+쿠버네티스는 사용자가 명시한 레이블을 갖고 있는 노드에만 
+파드를 스케줄링한다.
 
-그런 다음에 `kubectl apply -f https://k8s.io/examples/pods/pod-nginx.yaml` 을
-실행하면, 레이블이 붙여진 노드에 파드가 스케줄된다.
-`kubectl get pods -o wide` 를 실행해서 파드가 할당된
-"NODE" 를 보면 작동하는지 검증할 수 있다.
+[노드에 파드 할당](/ko/docs/tasks/configure-pod-container/assign-pods-nodes)에서 
+더 많은 정보를 확인한다.
 
-## 넘어가기 전에: 내장 노드 레이블들 {#built-in-node-labels}
+## 어피니티(affinity)와 안티-어피니티(anti-affinity) {#affinity-and-anti-affinity}
 
-[붙인](#1-단계-노드에-레이블-붙이기) 레이블뿐만 아니라, 노드에는
-표준 레이블 셋이 미리 채워져 있다. 이들 목록은 [잘 알려진 레이블, 어노테이션 및 테인트](/ko/docs/reference/labels-annotations-taints/)를 참고한다.
+`nodeSelector` 는 파드를 특정 레이블이 있는 노드로 제한하는 가장 간단한 방법이다.
+어피니티/안티-어피니티 기능은 표현할 수 있는 제약 종류를 크게 확장한다.
+주요 개선 사항은 다음과 같다.
 
-{{< note >}}
-이 레이블들의 값은 클라우드 공급자에 따라 다르고 신뢰성이 보장되지 않는다.
-예를 들어 `kubernetes.io/hostname` 은 어떤 환경에서는 노드 이름과 같지만,
-다른 환경에서는 다른 값일 수 있다.
-{{< /note >}}
+* 어피니티/안티-어피니티 언어가 더 표현적이다.
+  `nodeSelector`로는 명시한 레이블이 있는 노드만 선택할 수 있다.
+  어피니티/안티-어피니티는 선택 로직에 대한 좀 더 많은 제어권을 제공한다.
+* 규칙이 "소프트(soft)" 또는 "선호사항(preference)" 임을 나타낼 수 있으며, 
+  이 덕분에 스케줄러는 매치되는 노드를 찾지 못한 경우에도 파드를 스케줄링할 수 있다.
+* 다른 노드 (또는 다른 토폴로지 도메인)에서 실행 중인 
+  다른 파드의 레이블을 사용하여 파드를 제한할 수 있으며, 
+  이를 통해 어떤 파드들이 노드에 함께 위치할 수 있는지에 대한 규칙을 정의할 수 있다.
 
-## 노드 격리(isolation)/제한(restriction)
+어피니티 기능은 다음의 두 가지 종류로 구성된다.
 
-노드 오브젝트에 레이블을 추가하면 파드가 특정 노드 또는 노드 그룹을 목표 대상으로 할 수 있게 된다.
-이는 특정 파드가 어떤 격리, 보안, 또는 규제 속성이 있는 노드에서만 실행되도록 사용할 수 있다.
-이 목적으로 레이블을 사용하는 경우, 노드에서 kubelet 프로세스로 수정할 수 없는 레이블 키를 선택하는 것을 권장한다.
-이렇게 하면 손상된 노드가 해당 kubelet 자격 증명을 사용해서 해당 레이블을 자체 노드 오브젝트에 설정하고,
-스케줄러가 손상된 노드로 워크로드를 스케줄 하는 것을 방지할 수 있다.
+* *노드 어피니티* 기능은 `nodeSelector` 필드와 비슷하지만 
+  더 표현적이고 소프트(soft) 규칙을 지정할 수 있게 해 준다.
+* *파드 간 어피니티/안티-어피니티* 는 다른 파드의 레이블을 이용하여 
+  해당 파드를 제한할 수 있게 해 준다.
 
-`NodeRestriction` 어드미션 플러그인은 kubelet이 `node-restriction.kubernetes.io/` 접두사로 레이블을 설정 또는 수정하지 못하게 한다.
-노드 격리에 해당 레이블 접두사를 사용하려면 다음과 같이 한다.
+### 노드 어피니티 {#node-affinity}
 
-1. [노드 권한부여자](/docs/reference/access-authn-authz/node/)를 사용하고 있고, [NodeRestriction 어드미션 플러그인](/docs/reference/access-authn-authz/admission-controllers/#noderestriction)을 _활성화_ 해야 한다.
-2. 노드 오브젝트의 `node-restriction.kubernetes.io/` 접두사 아래에 레이블을 추가하고, 해당 레이블을 노드 셀렉터에서 사용한다.
-예를 들어, `example.com.node-restriction.kubernetes.io/fips=true` 또는 `example.com.node-restriction.kubernetes.io/pci-dss=true` 이다.
+노드 어피니티는 개념적으로 `nodeSelector` 와 비슷하며, 
+노드의 레이블을 기반으로 파드가 스케줄링될 수 있는 노드를 제한할 수 있다.
+노드 어피니티에는 다음의 두 종류가 있다.
 
-## 어피니티(affinity)와 안티-어피니티(anti-affinity)
+  * `requiredDuringSchedulingIgnoredDuringExecution`: 
+    규칙이 만족되지 않으면 스케줄러가 파드를 스케줄링할 수 없다.
+    이 기능은 `nodeSelector`와 유사하지만, 좀 더 표현적인 문법을 제공한다.
+  * `preferredDuringSchedulingIgnoredDuringExecution`: 
+    스케줄러는 조건을 만족하는 노드를 찾으려고 노력한다.
+    해당되는 노드가 없더라도, 스케줄러는 여전히 파드를 스케줄링한다.
 
-`nodeSelector` 는 파드를 특정 레이블이 있는 노드로 제한하는 매우 간단한 방법을 제공한다.
-어피니티/안티-어피니티 기능은 표현할 수 있는 제약 종류를 크게 확장한다. 주요 개선 사항은 다음과 같다.
+{{<note>}}
+앞의 두 유형에서, `IgnoredDuringExecution`는 
+쿠버네티스가 파드를 스케줄링한 뒤에 노드 레이블이 변경되어도 파드는 계속 해당 노드에서 실행됨을 의미한다.
+{{</note>}}
 
-1. 어피니티/안티-어피니티 언어가 더 표현적이다. 언어는 논리 연산자인 AND 연산으로 작성된
-   정확한 매칭 항목 이외에 더 많은 매칭 규칙을 제공한다.
-2. 규칙이 엄격한 요구 사항이 아니라 "유연한(soft)"/"선호(preference)" 규칙을 나타낼 수 있기에 스케줄러가 규칙을 만족할 수 없더라도,
-   파드가 계속 스케줄되도록 한다.
-3. 노드 자체에 레이블을 붙이기보다는 노드(또는 다른 토폴로지 도메인)에서 실행 중인 다른 파드의 레이블을 제한할 수 있다.
-   이를 통해 어떤 파드가 함께 위치할 수 있는지와 없는지에 대한 규칙을 적용할 수 있다.
+파드 스펙의 `.spec.affinity.nodeAffinity` 필드에 
+노드 어피니티를 명시할 수 있다.
 
-어피니티 기능은 "노드 어피니티" 와 "파드 간 어피니티/안티-어피니티" 두 종류의 어피니티로 구성된다.
-노드 어피니티는 기존 `nodeSelector` 와 비슷하지만(그러나 위에서 나열된 첫째와 두 번째 이점이 있다.),
-파드 간 어피니티/안티-어피니티는 위에서 나열된 세번째 항목에 설명된 대로
-노드 레이블이 아닌 파드 레이블에 대해 제한되고 위에서 나열된 첫 번째와 두 번째 속성을 가진다.
-
-### 노드 어피니티
-
-노드 어피니티는 개념적으로 `nodeSelector` 와 비슷하다 -- 이는 노드의 레이블을 기반으로 파드를
-스케줄할 수 있는 노드를 제한할 수 있다.
-
-여기에 현재 `requiredDuringSchedulingIgnoredDuringExecution` 와 `preferredDuringSchedulingIgnoredDuringExecution` 로 부르는
-두 가지 종류의 노드 어피니티가 있다. 전자는 파드가 노드에 스케줄되도록 *반드시*
-규칙을 만족해야 하는 것(`nodeSelector` 와 비슷하나 보다 표현적인 구문을 사용해서)을 지정하고,
-후자는 스케줄러가 시도하려고는 하지만, 보증하지 않는 *선호(preferences)* 를 지정한다는 점에서
-이를 각각 "엄격함(hard)" 과 "유연함(soft)" 으로 생각할 수 있다.
-이름의 "IgnoredDuringExecution" 부분은 `nodeSelector` 작동 방식과 유사하게 노드의
-레이블이 런타임 중에 변경되어 파드의 어피니티 규칙이 더 이상 충족되지 않으면 파드가 그 노드에서
-동작한다는 의미이다. 향후에는 파드의 노드 어피니티 요구 사항을 충족하지 않는 노드에서 파드를 제거한다는
-점을 제외하고는 `preferredDuringSchedulingIgnoredDuringExecution` 와 동일한 `requiredDuringSchedulingIgnoredDuringExecution` 를 제공할 계획이다.
-
-따라서 `requiredDuringSchedulingIgnoredDuringExecution` 의 예로는 "인텔 CPU가 있는 노드에서만 파드 실행"이
-될 수 있고, `preferredDuringSchedulingIgnoredDuringExecution` 의 예로는 "장애 조치 영역 XYZ에 파드 집합을 실행하려고
-하지만, 불가능하다면 다른 곳에서 일부를 실행하도록 허용"이 있을 것이다.
-
-노드 어피니티는 PodSpec의 `affinity` 필드의 `nodeAffinity` 필드에서 지정된다.
-
-여기에 노드 어피니티를 사용하는 파드 예시가 있다.
+예를 들어, 다음과 같은 파드 스펙이 있다고 하자.
 
 {{< codenew file="pods/pod-with-node-affinity.yaml" >}}
 
-이 노드 어피니티 규칙은 키가 `kubernetes.io/e2e-az-name` 이고 값이 `e2e-az1` 또는 `e2e-az2` 인
-레이블이 있는 노드에만 파드를 배치할 수 있다고 말한다. 또한, 이 기준을 충족하는 노드들
-중에서 키가 `another-node-label-key` 이고 값이 `another-node-label-value` 인 레이블이 있는 노드를
-선호하도록 한다.
+이 예시에서는 다음의 규칙이 적용된다.
 
-예시에서 연산자 `In` 이 사용되고 있는 것을 볼 수 있다. 새로운 노드 어피니티 구문은 다음의 연산자들을 지원한다. `In`, `NotIn`, `Exists`, `DoesNotExist`, `Gt`, `Lt`.
-`NotIn` 과 `DoesNotExist` 를 사용해서 안티-어피니티를 수행하거나,
-특정 노드에서 파드를 쫓아내는 [노드 테인트(taint)](/ko/docs/concepts/scheduling-eviction/taint-and-toleration/)를 설정할 수 있다.
+  * 노드는 키가 `kubernetes.io/os`이고 값이 `linux`인 레이블을 
+    갖고 *있어야 한다* .
+  * 키가 `another-node-label-key`이고 값이 `another-node-label-value`인 레이블을 
+    갖고 있는 노드를 *선호한다* .
 
-`nodeSelector` 와 `nodeAffinity` 를 모두 지정한다면 파드가 후보 노드에 스케줄되기 위해서는
-*둘 다* 반드시 만족해야 한다.
+`operator` 필드를 사용하여 
+쿠버네티스가 규칙을 해석할 때 사용할 논리 연산자를 지정할 수 있다.
+`In`, `NotIn`, `Exists`, `DoesNotExist`, `Gt` 및 `Lt` 연산자를 사용할 수 있다.
 
-`nodeAffinity` 유형과 연관된 `nodeSelectorTerms` 를 지정하면, `nodeSelectorTerms` 중 **하나라도** 만족시키는 노드에 파드가 스케줄된다.
+`NotIn` 및 `DoesNotExist` 연산자를 사용하여 노드 안티-어피니티 규칙을 정의할 수 있다.
+또는, 특정 노드에서 파드를 쫓아내는 
+[노드 테인트(taint)](/ko/docs/concepts/scheduling-eviction/taint-and-toleration/)를 설정할 수 있다.
 
-`nodeSelectorTerms` 와 연관된 여러 `matchExpressions` 를 지정하면, 파드는 `matchExpressions` 를 **모두** 만족하는 노드에만 스케줄된다.
+{{<note>}}
+`nodeSelector`와 `nodeAffinity`를 모두 사용하는 경우, 
+파드가 노드에 스케줄링되려면 두 조건 *모두* 만족되어야 한다.
 
-파드가 스케줄된 노드의 레이블을 지우거나 변경해도 파드는 제거되지 않는다. 다시 말해서 어피니티 선택은 파드를 스케줄링 하는 시점에만 작동한다.
+`nodeAffinity`에 연결된 `nodeSelectorTerms`를 여러 개 명시한 경우, 
+명시된 `nodeSelectorTerms` 중 하나를 만족하는 노드에도 
+파드가 스케줄링될 수 있다.
 
-`preferredDuringSchedulingIgnoredDuringExecution` 의 `weight` 필드의 범위는 1-100이다. 모든 스케줄링 요구 사항 (리소스 요청, RequiredDuringScheduling 어피니티 표현식 등)을 만족하는 각 노드들에 대해 스케줄러는 이 필드의 요소들을 반복해서 합계를 계산하고 노드가 MatchExpressions 에 일치하는 경우 합계에 "가중치(weight)"를 추가한다. 이후에 이 점수는 노드에 대한 다른 우선순위 함수의 점수와 합쳐진다. 전체 점수가 가장 높은 노드를 가장 선호한다.
+단일 `nodeSelectorTerms`와 연결된 `matchExpressions`를 여러 개 명시한 경우, 
+모든 `matchExpressions`를 만족하는 노드에만 
+파드가 스케줄링될 수 있다.
+{{</note>}}
 
-#### 스케줄링 프로파일당 노드 어피니티
+[노드 어피니티를 사용해 노드에 파드 할당](/ko/docs/tasks/configure-pod-container/assign-pods-nodes-using-node-affinity/)에서 
+더 많은 정보를 확인한다.
+
+#### 노드 어피니티 가중치(weight) {#node-affinity-weight}
+
+각 `preferredDuringSchedulingIgnoredDuringExecution` 어피니티 타입 인스턴스에 대해 
+1-100 범위의 `weight`를 명시할 수 있다.
+스케줄러가 다른 모든 파드 스케줄링 요구 사항을 만족하는 노드를 찾으면, 
+스케줄러는 노드가 만족한 모든 선호하는(preferred) 규칙에 대해 
+합계 계산을 위한 `weight` 값을 각각 추가한다.
+
+최종 합계는 해당 노드에 대한 다른 우선 순위 함수 점수에 더해진다.
+스케줄러가 파드에 대한 스케줄링 판단을 할 때, 
+총 점수가 가장 높은 노드가 우선 순위를 갖는다.
+
+예를 들어, 다음과 같은 파드 스펙이 있다고 하자.
+
+{{< codenew file="pods/pod-with-affinity-anti-affinity.yaml" >}}
+
+`requiredDuringSchedulingIgnoredDuringExecution` 규칙을 만족하는 노드가 2개 있고, 
+하나에는 `label-1:key-1` 레이블이 있고 다른 하나에는 `label-2:key-2` 레이블이 있으면, 
+스케줄러는 각 노드의 `weight`를 확인한 뒤 
+해당 노드에 대한 다른 점수에 가중치를 더하고, 
+최종 점수가 가장 높은 노드에 해당 파드를 스케줄링한다.
+
+{{<note>}}
+이 예시에서 쿠버네티스가 정상적으로 파드를 스케줄링하려면, 
+보유하고 있는 노드에 `kubernetes.io/os=linux` 레이블이 있어야 한다.
+{{</note>}}
+
+#### 스케줄링 프로파일당 노드 어피니티 {#node-affinity-per-scheduling-profile}
 
 {{< feature-state for_k8s_version="v1.20" state="beta" >}}
 
 여러 [스케줄링 프로파일](/ko/docs/reference/scheduling/config/#여러-프로파일)을 구성할 때
 노드 어피니티가 있는 프로파일을 연결할 수 있는데, 이는 프로파일이 특정 노드 집합에만 적용되는 경우 유용하다.
-이렇게 하려면 [스케줄러 구성](/ko/docs/reference/scheduling/config/)에 있는
-[`NodeAffinity` 플러그인](/ko/docs/reference/scheduling/config/#스케줄링-플러그인-1)의 인수에 `addedAffinity`를 추가한다. 예를 들면
+이렇게 하려면 다음과 같이 [스케줄러 구성](/ko/docs/reference/scheduling/config/)에 있는
+[`NodeAffinity` 플러그인](/ko/docs/reference/scheduling/config/#스케줄링-플러그인-1)의 `args` 필드에 `addedAffinity`를 추가한다.
 
 ```yaml
-apiVersion: kubescheduler.config.k8s.io/v1beta1
+apiVersion: kubescheduler.config.k8s.io/v1beta3
 kind: KubeSchedulerConfiguration
 
 profiles:
@@ -188,29 +211,41 @@ profiles:
 
 `addedAffinity`는 `.spec.schedulerName`을 `foo-scheduler`로 설정하는 모든 파드에 적용되며
 PodSpec에 지정된 NodeAffinity도 적용된다.
-즉, 파드를 매칭시키려면, 노드가 `addedAffinity`와 파드의 `.spec.NodeAffinity`를 충족해야 한다.
+즉, 파드를 매칭시키려면, 노드가 `addedAffinity`와 
+파드의 `.spec.NodeAffinity`를 충족해야 한다.
 
-`addedAffinity`는 엔드 유저에게 표시되지 않으므로, 예상치 못한 동작이 일어날 수 있다. 프로파일의
-스케줄러 이름과 명확한 상관 관계가 있는 노드 레이블을 사용하는 것이 좋다.
+`addedAffinity`는 엔드 유저에게 표시되지 않으므로, 
+예상치 못한 동작이 일어날 수 있다.
+스케줄러 프로파일 이름과 명확한 상관 관계가 있는 노드 레이블을 사용한다.
 
 {{< note >}}
-[데몬셋용 파드를 생성](/ko/docs/concepts/workloads/controllers/daemonset/#기본-스케줄러로-스케줄)하는 데몬셋 컨트롤러는
-스케줄링 프로파일을 인식하지 못한다.
-따라서 `addedAffinity`없이 `default-scheduler`와 같은 스케줄러 프로파일을 유지하는 것이 좋다. 그런 다음 데몬셋의 파드 템플릿이 스케줄러 이름을 사용해야 한다.
-그렇지 않으면, 데몬셋 컨트롤러에 의해 생성된 일부 파드가 스케줄되지 않은 상태로 유지될 수 있다.
+[데몬셋 파드를 생성](/ko/docs/concepts/workloads/controllers/daemonset/#기본-스케줄러로-스케줄)하는 데몬셋 컨트롤러는 
+스케줄링 프로파일을 지원하지 않는다.
+데몬셋 컨트롤러가 파드를 생성할 때, 기본 쿠버네티스 스케줄러는 해당 파드를 배치하고 
+데몬셋 컨트롤러의 모든 `nodeAffinity` 규칙을 준수한다.
 {{< /note >}}
 
-### 파드간 어피니티와 안티-어피니티
+### 파드간 어피니티와 안티-어피니티 {#inter-pod-affinity-and-anti-affinity}
 
-파드간 어피니티와 안티-어피니티를 사용하면 노드의 레이블을 기반으로 하지 않고, *노드에서 이미 실행 중인 파드 레이블을 기반으로*
-파드가 스케줄될 수 있는 노드를 제한할 수 있다. 규칙은 "X가 규칙 Y를 충족하는 하나 이상의 파드를 이미 실행중인 경우
-이 파드는 X에서 실행해야 한다(또는 안티-어피니티가 없는 경우에는 동작하면 안된다)"는 형태이다. Y는
-선택적으로 연관된 네임스페이스 목록을 가진 LabelSelector로 표현된다. 노드와는 다르게 파드는 네임스페이스이기에
-(그리고 따라서 파드의 레이블은 암암리에 네임스페이스이다) 파드 레이블위의 레이블 셀렉터는 반드시
-셀렉터가 적용될 네임스페이스를 지정해야만 한다. 개념적으로 X는 노드, 랙,
-클라우드 공급자 영역, 클라우드 공급자 지역 등과 같은 토폴로지 도메인이다. 시스템이 이런 토폴로지
-도메인을 나타내는 데 사용하는 노드 레이블 키인 `topologyKey` 를 사용하여 이를 표현한다.
-예: [넘어가기 전에: 빌트인 노드 레이블](#built-in-node-labels) 섹션 위에 나열된 레이블 키를 본다.
+파드간 어피니티와 안티-어피니티를 사용하여, 
+노드 레이블 대신, 각 노드에 이미 실행 중인 다른 **파드** 의 레이블을 기반으로 
+파드가 스케줄링될 노드를 제한할 수 있다.
+
+파드간 어피니티와 안티-어피니티 규칙은 
+"X가 규칙 Y를 충족하는 하나 이상의 파드를 이미 실행중인 경우 이 파드는 X에서 실행해야 한다(또는 
+안티-어피니티의 경우에는 "실행하면 안 된다")"의 형태이며, 
+여기서 X는 노드, 랙, 클라우드 제공자 존 또는 리전 등이며 
+Y는 쿠버네티스가 충족할 규칙이다.
+
+이러한 규칙(Y)은 [레이블 셀렉터](/ko/docs/concepts/overview/working-with-objects/labels/#레이블-셀렉터) 형태로 작성하며, 
+연관된 네임스페이스 목록을 선택적으로 명시할 수도 있다.
+쿠버네티스에서 파드는 네임스페이스에 속하는(namespaced) 오브젝트이므로, 
+파드 레이블도 암묵적으로 특정 네임스페이스에 속하게 된다.
+파드 레이블에 대한 모든 레이블 셀렉터는 쿠버네티스가 해당 레이블을 어떤 네임스페이스에서 탐색할지를 명시해야 한다.
+
+`topologyKey`를 사용하여 토폴로지 도메인(X)를 나타낼 수 있으며, 
+이는 시스템이 도메인을 표시하기 위해 사용하는 노드 레이블의 키이다.
+이에 대한 예시는 [잘 알려진 레이블, 어노테이션, 테인트](/ko/docs/reference/labels-annotations-taints/)를 참고한다.
 
 {{< note >}}
 파드간 어피니티와 안티-어피니티에는 상당한 양의 프로세싱이 필요하기에
@@ -219,80 +254,100 @@ PodSpec에 지정된 NodeAffinity도 적용된다.
 {{< /note >}}
 
 {{< note >}}
-파드 안티-어피니티에서는 노드에 일관된 레이블을 지정해야 한다. 즉, 클러스터의 모든 노드는 `topologyKey` 와 매칭되는 적절한 레이블을 가지고 있어야 한다. 일부 또는 모든 노드에 지정된 `topologyKey` 레이블이 없는 경우에는 의도하지 않은 동작이 발생할 수 있다.
+파드 안티-어피니티에서는 노드에 일관된 레이블을 지정해야 한다.
+즉, 클러스터의 모든 노드는 `topologyKey` 와 매칭되는 적절한 레이블을 가지고 있어야 한다.
+일부 또는 모든 노드에 지정된 `topologyKey` 레이블이 없는 경우에는 
+의도하지 않은 동작이 발생할 수 있다.
 {{< /note >}}
 
-노드 어피니티와 마찬가지로 현재 파드 어피니티와 안티-어피니티로 부르는 "엄격함" 대 "유연함"의 요구사항을 나타내는 `requiredDuringSchedulingIgnoredDuringExecution` 와
-`preferredDuringSchedulingIgnoredDuringExecution` 두 가지 종류가 있다.
-앞의 노드 어피니티 섹션의 설명을 본다.
-`requiredDuringSchedulingIgnoredDuringExecution` 어피니티의 예시는
-"서로 많은 통신을 하기 때문에 서비스 A와 서비스 B를 같은 영역에 함께 위치시키는 것"이고,
-`preferredDuringSchedulingIgnoredDuringExecution` 안티-어피니티의 예시는 "서비스를 여러 영역에 걸쳐서 분배하는 것"이다
-(엄격한 요구사항은 영역보다 파드가 더 많을 수 있기 때문에 엄격한 요구사항은 의미가 없다).
+#### 파드간 어피니티 및 안티-어피니티 종류 {#types-of-inter-pod-affinity-and-anti-affinity}
 
-파드간 어피니티는 PodSpec에서 `affinity` 필드 중 `podAffinity` 필드로 지정한다.
-그리고 파드간 안티-어피니티는 PodSpec에서 `affinity` 필드 중 `podAntiAffinity` 필드로 지정한다.
+노드 어피니티와 마찬가지로 
+파드 어피니티 및 안티-어피니티에는 다음의 2 종류가 있다.
 
-#### 파드 어피니티를 사용하는 파드의 예시
+  * `requiredDuringSchedulingIgnoredDuringExecution`
+  * `preferredDuringSchedulingIgnoredDuringExecution`
+
+예를 들어, `requiredDuringSchedulingIgnoredDuringExecution` 어피니티를 사용하여 
+서로 통신을 많이 하는 두 서비스의 파드를 
+동일 클라우드 제공자 존에 배치하도록 스케줄러에게 지시할 수 있다.
+비슷하게, `preferredDuringSchedulingIgnoredDuringExecution` 안티-어피니티를 사용하여 
+서비스의 파드를 
+여러 클라우드 제공자 존에 퍼뜨릴 수 있다.
+
+파드간 어피니티를 사용하려면, 파드 스펙에 `affinity.podAffinity` 필드를 사용한다.
+파드간 안티-어피니티를 사용하려면, 
+파드 스펙에 `affinity.podAntiAffinity` 필드를 사용한다.
+
+#### 파드 어피니티 예시 {#an-example-of-a-pod-that-uses-pod-affinity}
+
+다음과 같은 파드 스펙을 가정한다.
 
 {{< codenew file="pods/pod-with-pod-affinity.yaml" >}}
 
-이 파드의 어피니티는 하나의 파드 어피니티 규칙과 하나의 파드 안티-어피니티 규칙을 정의한다.
-이 예시에서 `podAffinity` 는 `requiredDuringSchedulingIgnoredDuringExecution` 이고 `podAntiAffinity` 는
-`preferredDuringSchedulingIgnoredDuringExecution` 이다. 파드 어피니티 규칙에 의하면 키 "security" 와 값
-"S1"인 레이블이 있는 하나 이상의 이미 실행 중인 파드와 동일한 영역에 있는 경우에만 파드를 노드에 스케줄할 수 있다.
-(보다 정확하게는, 클러스터에 키 "security"와 값 "S1"인 레이블을 가지고 있는 실행 중인 파드가 있는 키
-`topology.kubernetes.io/zone` 와 값 V인 노드가 최소 하나 이상 있고,
-노드 N이 키 `topology.kubernetes.io/zone` 와
-일부 값이 V인 레이블을 가진다면 파드는 노드 N에서 실행할 수 있다.)
-파드 안티-어피니티 규칙에 의하면 파드는 키 "security"와 값 "S2"인 레이블을 가진 파드와
-동일한 영역의 노드에 스케줄되지 않는다.
-[디자인 문서](https://git.k8s.io/community/contributors/design-proposals/scheduling/podaffinity.md)를 통해
-`requiredDuringSchedulingIgnoredDuringExecution` 와 `preferredDuringSchedulingIgnoredDuringExecution` 의
-파드 어피니티와 안티-어피니티에 대한 많은 예시를 맛볼 수 있다.
+이 예시는 하나의 파드 어피니티 규칙과 
+하나의 파드 안티-어피니티 규칙을 정의한다.
+파드 어피니티 규칙은 "하드" `requiredDuringSchedulingIgnoredDuringExecution`을, 
+안티-어피니티 규칙은 "소프트" `preferredDuringSchedulingIgnoredDuringExecution`을 사용한다.
 
-파드 어피니티와 안티-어피니티의 적합한 연산자는 `In`, `NotIn`, `Exists`, `DoesNotExist` 이다.
+위의 어피니티 규칙은 `security=S1` 레이블이 있는 하나 이상의 기존 파드의 존와 동일한 존에 있는 노드에만 
+파드를 스케줄링하도록 스케줄러에 지시한다.
+더 정확히 말하면, 만약 `security=S1` 파드 레이블이 있는 하나 이상의 기존 파드를 실행하고 있는 노드가 
+`zone=V`에 하나 이상 존재한다면, 
+스케줄러는 파드를 `topology.kubernetes.io/zone=V` 레이블이 있는 노드에 배치해야 한다.
 
-원칙적으로, `topologyKey` 는 적법한 어느 레이블-키도 될 수 있다.
-하지만, 성능과 보안상의 이유로 topologyKey에는 몇 가지 제약조건이 있다.
+위의 안티-어피니티 규칙은 `security=S2` 레이블이 있는 하나 이상의 기존 파드의 존와 동일한 존에 있는 노드에는 
+가급적 파드를 스케줄링하지 않도록 스케줄러에 지시한다.
+더 정확히 말하면, 만약 `security=S2` 파드 레이블이 있는 파드가 실행되고 있는 `zone=R`에 
+다른 노드도 존재한다면, 
+스케줄러는 `topology.kubernetes.io/zone=R` 레이블이 있는 노드에는 가급적 해당 파드를 스케줄링하지 않야아 한다.
 
-1. 파드 어피니티에서 `requiredDuringSchedulingIgnoredDuringExecution` 와 `preferredDuringSchedulingIgnoredDuringExecution` 는
-`topologyKey` 의 빈 값을 허용하지 않는다.
-2. 파드 안티-어피니티에서도 `requiredDuringSchedulingIgnoredDuringExecution` 와 `preferredDuringSchedulingIgnoredDuringExecution` 는
-`topologyKey` 의 빈 값을 허용하지 않는다.
-3. `requiredDuringSchedulingIgnoredDuringExecution` 파드 안티-어피니티에서 `topologyKey` 를 `kubernetes.io/hostname` 로 제한하기 위해 어드미션 컨트롤러 `LimitPodHardAntiAffinityTopology` 가 도입되었다. 사용자 지정 토폴로지를 사용할 수 있도록 하려면, 어드미션 컨트롤러를 수정하거나 아니면 이를 비활성화해야 한다.
-4. 위의 경우를 제외하고, `topologyKey` 는 적법한 어느 레이블-키도 가능하다.
+[디자인 문서](https://git.k8s.io/community/contributors/design-proposals/scheduling/podaffinity.md)에서 
+파드 어피니티와 안티-어피니티에 대한 
+많은 예시를 볼 수 있다.
 
-`labelSelector` 와 `topologyKey` 외에도 `labelSelector` 와 일치해야 하는 네임스페이스 목록 `namespaces` 를
-선택적으로 지정할 수 있다(이것은 `labelSelector` 와 `topologyKey` 와 같은 수준의 정의이다).
-생략되어있거나 비어있을 경우 어피니티/안티-어피니티 정의가 있는 파드의 네임스페이스가 기본 값이다.
+파드 어피니티와 안티-어피니티의 `operator` 필드에 
+`In`, `NotIn`, `Exists` 및 `DoesNotExist` 값을 사용할 수 있다.
 
-파드를 노드에 스케줄하려면 `requiredDuringSchedulingIgnoredDuringExecution` 어피니티와 안티-어피니티와
-연관된 `matchExpressions` 가 모두 충족되어야 한다.
+원칙적으로, `topologyKey` 에는 성능과 보안상의 이유로 다음의 예외를 제외하면 
+어느 레이블 키도 사용할 수 있다.
 
-#### 네임스페이스 셀렉터
-{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+* 파드 어피니티 및 안티-어피니티에 대해, 빈 `topologyKey` 필드는 
+  `requiredDuringSchedulingIgnoredDuringExecution` 및 `preferredDuringSchedulingIgnoredDuringExecution` 내에 허용되지 않는다.
+* `requiredDuringSchedulingIgnoredDuringExecution` 파드 안티-어피니티 규칙에 대해, 
+  `LimitPodHardAntiAffinityTopology` 어드미션 컨트롤러는 
+  `topologyKey`를 `kubernetes.io/hostname`으로 제한한다.
+  커스텀 토폴로지를 허용하고 싶다면 어드미션 컨트롤러를 수정하거나 비활성화할 수 있다.
 
-사용자는 네임스페이스 집합에 대한 레이블 쿼리인 `namespaceSelector` 를 사용하여 일치하는 네임스페이스를 선택할 수도 있다.
-어피니티 용어는 `namespaceSelector` 에서 선택한 네임스페이스와 `namespaces` 필드에 나열된 네임스페이스의 결합에 적용된다.
-빈 `namespaceSelector` ({})는 모든 네임스페이스와 일치하는 반면, null 또는 빈 `namespaces` 목록과
-null `namespaceSelector` 는 "이 파드의 네임스페이스"를 의미한다.
+`labelSelector`와 `topologyKey`에 더하여 선택적으로, 
+`labelSelector`가 비교해야 하는 네임스페이스의 목록을 
+`labelSelector` 및 `topologyKey` 필드와 동일한 계위의 `namespaces` 필드에 명시할 수 있다.
+생략하거나 비워 두면, 
+해당 어피니티/안티-어피니티 정의가 있는 파드의 네임스페이스를 기본값으로 사용한다.
 
-이 기능은 알파이며 기본적으로 비활성화되어 있다. kube-apiserver 및 kube-scheduler 모두에서
-[기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)
-`PodAffinityNamespaceSelector` 를 설정하여 활성화할 수 있다.
+#### 네임스페이스 셀렉터 {#namespace-selector}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
-#### 더 실용적인 유스케이스
+네임스페이스 집합에 대한 레이블 쿼리인 `namespaceSelector` 를 사용하여 일치하는 네임스페이스를 선택할 수도 있다.
+`namespaceSelector` 또는 `namespaces` 필드에 의해 선택된 네임스페이스 모두에 적용된다.
+빈 `namespaceSelector` ({})는 모든 네임스페이스와 일치하는 반면, 
+null 또는 빈 `namespaces` 목록과 null `namespaceSelector` 는 규칙이 적용된 파드의 네임스페이스에 매치된다.
 
-파드간 어피니티와 안티-어피니티는 레플리카셋, 스테이트풀셋, 디플로이먼트 등과 같은
-상위 레벨 모음과 함께 사용할 때 더욱 유용할 수 있다. 워크로드 집합이 동일한 노드와 같이
+#### 더 실제적인 유스케이스 {#more-practical-use-cases}
+
+파드간 어피니티와 안티-어피니티는 레플리카셋, 스테이트풀셋, 디플로이먼트 등과 같은 
+상위 레벨 모음과 함께 사용할 때 더욱 유용할 수 있다.
+이러한 규칙을 사용하여, 워크로드 집합이 예를 들면 '동일한 노드'와 같이 
 동일하게 정의된 토폴로지와 같은 위치에 배치되도록 쉽게 구성할 수 있다.
 
-##### 항상 같은 노드에 위치시키기
+redis와 같은 인-메모리 캐시를 사용하는 웹 애플리케이션을 실행하는 세 개의 노드로 구성된 클러스터를 가정한다.
+이 때 웹 서버를 가능한 한 캐시와 같은 위치에서 실행되도록 하기 위해 
+파드간 어피니티/안티-어피니티를 사용할 수 있다.
 
-세 개의 노드가 있는 클러스터에서 웹 애플리케이션에는 redis와 같은 인-메모리 캐시가 있다. 웹 서버가 가능한 캐시와 함께 위치하기를 원한다.
-
-다음은 세 개의 레플리카와 셀렉터 레이블이 `app=store` 가 있는 간단한 redis 디플로이먼트의 yaml 스니펫이다. 디플로이먼트에는 스케줄러가 단일 노드에서 레플리카를 함께 배치하지 않도록 `PodAntiAffinity` 가 구성되어 있다.
+다음의 redis 캐시 디플로이먼트 예시에서, 레플리카는 `app=store` 레이블을 갖는다.
+`podAntiAffinity` 규칙은 스케줄러로 하여금 
+`app=store` 레이블이 있는 레플리카를 한 노드에 여러 개 배치하지 못하도록 한다.
+이렇게 하여 캐시 파드를 각 노드에 분산하여 생성한다.
 
 ```yaml
 apiVersion: apps/v1
@@ -324,7 +379,10 @@ spec:
         image: redis:3.2-alpine
 ```
 
-아래 yaml 스니펫의 웹서버 디플로이먼트는 `podAntiAffinity` 와 `podAffinity` 설정을 가지고 있다. 이렇게 하면 스케줄러에 모든 레플리카는 셀렉터 레이블이 `app=store` 인 파드와 함께 위치해야 한다. 또한 각 웹 서버 레플리카가 단일 노드의 같은 위치에 있지 않도록 한다.
+웹 서버를 위한 다음의 디플로이먼트는 `app=web-store` 레이블을 갖는 레플리카를 생성한다.
+파드 어피니티 규칙은 스케줄러로 하여금 `app=store` 레이블이 있는 파드를 실행 중인 노드에 각 레플리카를 배치하도록 한다.
+파드 안티-어피니티 규칙은 스케줄러로 하여금 `app=web-store` 레이블이 있는 서버 파드를 
+한 노드에 여러 개 배치하지 못하도록 한다.
 
 ```yaml
 apiVersion: apps/v1
@@ -365,44 +423,25 @@ spec:
         image: nginx:1.16-alpine
 ```
 
-만약 위의 두 디플로이먼트를 생성하면 세 개의 노드가 있는 클러스터는 다음과 같아야 한다.
+위의 두 디플로이먼트를 생성하면 다음과 같은 클러스터 형상이 나타나는데, 
+세 노드에 각 웹 서버가 캐시와 함께 있는 형상이다.
 
 |       node-1         |       node-2        |       node-3       |
 |:--------------------:|:-------------------:|:------------------:|
 | *webserver-1*        |   *webserver-2*     |    *webserver-3*   |
 |  *cache-1*           |     *cache-2*       |     *cache-3*      |
 
-여기서 볼 수 있듯이 `web-server` 의 세 레플리카들이 기대했던 것처럼 자동으로 캐시와 함께 위치하게 된다.
+[ZooKeeper 튜토리얼](/ko/docs/tutorials/stateful-application/zookeeper/#노드-실패-방지)에서 
+위 예시와 동일한 기술을 사용해 
+고 가용성을 위한 안티-어피니티로 구성된 스테이트풀셋의 예시를 확인한다.
 
-```
-kubectl get pods -o wide
-```
-출력은 다음과 유사할 것이다.
-```
-NAME                           READY     STATUS    RESTARTS   AGE       IP           NODE
-redis-cache-1450370735-6dzlj   1/1       Running   0          8m        10.192.4.2   kube-node-3
-redis-cache-1450370735-j2j96   1/1       Running   0          8m        10.192.2.2   kube-node-1
-redis-cache-1450370735-z73mh   1/1       Running   0          8m        10.192.3.1   kube-node-2
-web-server-1287567482-5d4dz    1/1       Running   0          7m        10.192.2.3   kube-node-1
-web-server-1287567482-6f7v5    1/1       Running   0          7m        10.192.4.3   kube-node-3
-web-server-1287567482-s330j    1/1       Running   0          7m        10.192.3.2   kube-node-2
-```
+## nodeName {#nodename}
 
-##### 절대 동일한 노드에 위치시키지 않게 하기
-
-위의 예시에서 `topologyKey:"kubernetes.io/hostname"` 과 함께 `PodAntiAffinity` 규칙을 사용해서
-두 개의 인스터스가 동일한 호스트에 있지 않도록 redis 클러스터를 배포한다.
-같은 기술을 사용해서 고 가용성을 위해 안티-어피니티로 구성된 스테이트풀셋의 예시는
-[ZooKeeper 튜토리얼](/ko/docs/tutorials/stateful-application/zookeeper/#노드-실패-방지)을 본다.
-
-## nodeName
-
-`nodeName` 은 가장 간단한 형태의 노트 선택 제약 조건이지만,
-한계로 인해 일반적으로는 사용하지 않는다.
-`nodeName` 은 PodSpec의 필드이다. 만약 비어있지 않으면, 스케줄러는
-파드를 무시하고 명명된 노드에서 실행 중인 kubelet이
-파드를 실행하려고 한다. 따라서 만약 PodSpec에 `nodeName` 가
-제공된 경우, 노드 선택을 위해 위의 방법보다 우선한다.
+`nodeName`은 어피니티 또는 `nodeSelector`보다 더 직접적인 형태의 노드 선택 방법이다.
+`nodeName`은 파드 스펙의 필드 중 하나이다.
+`nodeName` 필드가 비어 있지 않으면, 스케줄러는 파드를 무시하고, 
+명명된 노드의 kubelet이 해당 파드를 자기 노드에 배치하려고 시도한다.
+`nodeName`은 `nodeSelector` 또는 어피니티/안티-어피니티 규칙보다 우선적으로 적용(overrule)된다.
 
 `nodeName` 을 사용해서 노드를 선택할 때의 몇 가지 제한은 다음과 같다.
 
@@ -414,7 +453,7 @@ web-server-1287567482-s330j    1/1       Running   0          7m        10.192.3
 -   클라우드 환경의 노드 이름은 항상 예측 가능하거나
     안정적인 것은 아니다.
 
-여기에 `nodeName` 필드를 사용하는 파드 설정 파일 예시가 있다.
+다음은 `nodeName` 필드를 사용하는 파드 스펙 예시이다.
 
 ```yaml
 apiVersion: v1
@@ -428,19 +467,14 @@ spec:
   nodeName: kube-01
 ```
 
-위 파드는 kube-01 노드에서 실행될 것이다.
-
-
+위 파드는 `kube-01` 노드에서만 실행될 것이다.
 
 ## {{% heading "whatsnext" %}}
 
-
-[테인트](/ko/docs/concepts/scheduling-eviction/taint-and-toleration/)는 노드가 특정 파드들을 *쫓아낼* 수 있다.
-
-[노드 어피니티](https://git.k8s.io/community/contributors/design-proposals/scheduling/nodeaffinity.md)와
-[파드간 어피니티/안티-어피니티](https://git.k8s.io/community/contributors/design-proposals/scheduling/podaffinity.md)에 대한 디자인 문서에는
-이러한 기능에 대한 추가 배경 정보가 있다.
-
-파드가 노드에 할당되면 kubelet은 파드를 실행하고 노드의 로컬 리소스를 할당한다.
-[토폴로지 매니저](/docs/tasks/administer-cluster/topology-manager/)는
-노드 수준의 리소스 할당 결정에 참여할 수 있다.
+* [테인트 및 톨러레이션](/ko/docs/concepts/scheduling-eviction/taint-and-toleration/)에 대해 더 읽어본다.
+* [노드 어피니티](https://git.k8s.io/community/contributors/design-proposals/scheduling/nodeaffinity.md)와
+  [파드간 어피니티/안티-어피니티](https://git.k8s.io/community/contributors/design-proposals/scheduling/podaffinity.md)에 대한 디자인 문서를 읽어본다.
+* [토폴로지 매니저](/docs/tasks/administer-cluster/topology-manager/)가 
+  노드 수준 리소스 할당 결정에 어떻게 관여하는지 알아본다.
+* [노드셀렉터(nodeSelector)](/ko/docs/tasks/configure-pod-container/assign-pods-nodes/)를 어떻게 사용하는지 알아본다.
+* [어피니티/안티-어피니티](/ko/docs/tasks/configure-pod-container/assign-pods-nodes-using-node-affinity/)를 어떻게 사용하는지 알아본다.
diff --git a/content/ko/docs/concepts/scheduling-eviction/kube-scheduler.md b/content/ko/docs/concepts/scheduling-eviction/kube-scheduler.md
index 8c17269a64..0ab5b4b76f 100644
--- a/content/ko/docs/concepts/scheduling-eviction/kube-scheduler.md
+++ b/content/ko/docs/concepts/scheduling-eviction/kube-scheduler.md
@@ -85,11 +85,11 @@ _스코어링_ 단계에서 스케줄러는 목록에 남아있는 노드의 순
 * [스케줄러 성능 튜닝](/ko/docs/concepts/scheduling-eviction/scheduler-perf-tuning/)에 대해 읽기
 * [파드 토폴로지 분배 제약 조건](/ko/docs/concepts/workloads/pods/pod-topology-spread-constraints/)에 대해 읽기
 * kube-scheduler의 [레퍼런스 문서](/docs/reference/command-line-tools-reference/kube-scheduler/) 읽기
-* [kube-scheduler 구성(v1beta1)](/docs/reference/config-api/kube-scheduler-config.v1beta1/) 레퍼런스 읽기
+* [kube-scheduler 구성(v1beta3)](/docs/reference/config-api/kube-scheduler-config.v1beta3/) 레퍼런스 읽기
 * [멀티 스케줄러 구성하기](/docs/tasks/extend-kubernetes/configure-multiple-schedulers/)에 대해 배우기
 * [토폴로지 관리 정책](/docs/tasks/administer-cluster/topology-manager/)에 대해 배우기
 * [파드 오버헤드](/ko/docs/concepts/scheduling-eviction/pod-overhead/)에 대해 배우기
 * 볼륨을 사용하는 파드의 스케줄링에 대해 배우기
   * [볼륨 토폴리지 지원](/ko/docs/concepts/storage/storage-classes/#볼륨-바인딩-모드)
-  * [스토리지 용량 추적](/docs/concepts/storage/storage-capacity/)
+  * [스토리지 용량 추적](/ko/docs/concepts/storage/storage-capacity/)
   * [노드별 볼륨 한도](/ko/docs/concepts/storage/storage-limits/)
diff --git a/content/ko/docs/concepts/scheduling-eviction/node-pressure-eviction.md b/content/ko/docs/concepts/scheduling-eviction/node-pressure-eviction.md
index a3330a1b0d..09e5bf0c5e 100644
--- a/content/ko/docs/concepts/scheduling-eviction/node-pressure-eviction.md
+++ b/content/ko/docs/concepts/scheduling-eviction/node-pressure-eviction.md
@@ -87,7 +87,7 @@ Kubelet은 다른 구성은 지원하지 않는다.
 
 {{<note>}}
 일부 kubelet 가비지 수집 기능은 더 이상 사용되지 않으며 축출로 대체되었다.
-사용 중지된 기능의 목록은 [kubelet 가비지 수집 사용 중단](/ko/docs/concepts/cluster-administration/kubelet-garbage-collection/#사용-중단-deprecation)을 참조한다.
+사용 중지된 기능의 목록은 [kubelet 가비지 수집 사용 중단](/ko/docs/concepts/architecture/garbage-collection/#containers-images)을 참조한다.
 {{</note>}}
 
 ### 축출 임계값
@@ -235,7 +235,7 @@ QoS는 EphemeralStorage 요청에 적용되지 않으므로,
 `Guaranteed` 파드는 모든 컨테이너에 대해 자원 요청량과 제한이 명시되고 
 그 둘이 동일할 때에만 보장(guaranteed)된다. 다른 파드의 자원 사용으로 인해 
 `Guaranteed` 파드가 축출되는 일은 발생하지 않는다. 만약 시스템 데몬(예: 
-`kubelet`, `docker`, `journald`)이 `system-reserved` 또는 `kube-reserved` 
+`kubelet`, `journald`)이 `system-reserved` 또는 `kube-reserved` 
 할당을 통해 예약된 것보다 더 많은 자원을 소비하고, 노드에는 요청량보다 적은 양의 
 자원을 사용하고 있는 `Guaranteed` / `Burstable` 파드만 존재한다면, 
 kubelet은 노드 안정성을 유지하고 자원 고갈이 다른 파드에 미칠 영향을 통제하기 위해 
diff --git a/content/ko/docs/concepts/scheduling-eviction/pod-overhead.md b/content/ko/docs/concepts/scheduling-eviction/pod-overhead.md
index b0da80ceae..0feb96eb9a 100644
--- a/content/ko/docs/concepts/scheduling-eviction/pod-overhead.md
+++ b/content/ko/docs/concepts/scheduling-eviction/pod-overhead.md
@@ -1,4 +1,8 @@
 ---
+
+
+
+
 title: 파드 오버헤드
 content_type: concept
 weight: 30
@@ -6,17 +10,12 @@ weight: 30
 
 <!-- overview -->
 
-{{< feature-state for_k8s_version="v1.18" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
-
-노드 위에서 파드를 구동할 때, 파드는 그 자체적으로 많은 시스템 리소스를 사용한다.
+노드 상에서 파드를 구동할 때, 파드는 그 자체적으로 많은 시스템 리소스를 사용한다.
 이러한 리소스는 파드 내의 컨테이너들을 구동하기 위한 리소스 이외에 추가적으로 필요한 것이다.
-_파드 오버헤드_ 는 컨테이너 리소스 요청과 상한 위에서 파드의 인프라에 의해
-소비되는 리소스를 계산하는 기능이다.
-
-
-
-
+쿠버네티스에서, _파드 오버헤드_ 는 리소스 요청 및 상한 외에도 
+파드의 인프라에 의해 소비되는 리소스를 계산하는 방법 중 하나이다.
 
 <!-- body -->
 
@@ -25,33 +24,30 @@ _파드 오버헤드_ 는 컨테이너 리소스 요청과 상한 위에서 파
 [어드미션](/docs/reference/access-authn-authz/extensible-admission-controllers/#what-are-admission-webhooks)
 이 수행될 때 지정된다.
 
-파드 오버헤드가 활성화 되면, 파드를 노드에 스케줄링 할 때 컨테이너 리소스 요청의 합에
-파드의 오버헤드를 추가해서 스케줄링을 고려한다. 마찬가지로, kubelet은 파드의 cgroups 크기를 변경하거나
-파드의 축출 등급을 부여할 때에도 파드의 오버헤드를 포함하여 고려한다.
+파드를 노드에 스케줄링할 때, 컨테이너 리소스 요청의 합 뿐만 아니라 파드의 오버헤드도 함께 고려된다. 
+마찬가지로, kubelet은 파드의 cgroups 크기를 변경하거나 파드의 축출 등급을 부여할 때에도 
+파드의 오버헤드를 포함하여 고려한다.
 
-## 파드 오버헤드 활성화하기 {#set-up}
+## 파드 오버헤드 환경 설정하기 {#set-up}
 
-기능 활성화를 위해 클러스터에서
-`PodOverhead` [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)가 활성화되어 있고(1.18 버전에서는 기본적으로 활성화),
 `overhead` 필드를 정의하는 `RuntimeClass` 가 사용되고 있는지 확인해야 한다.
 
 ## 사용 예제
 
-파드 오버헤드 기능을 사용하기 위하여, `overhead` 필드를 정의하는 런타임클래스가 필요하다.
+파드 오버헤드를 활용하려면, `overhead` 필드를 정의하는 런타임클래스가 필요하다.
 예를 들어, 가상 머신 및 게스트 OS에 대하여 파드 당 120 MiB를 사용하는
 가상화 컨테이너 런타임의 런타임클래스의 경우 다음과 같이 정의 할 수 있다.
 
 ```yaml
----
-kind: RuntimeClass
 apiVersion: node.k8s.io/v1
+kind: RuntimeClass
 metadata:
-    name: kata-fc
+  name: kata-fc
 handler: kata-fc
 overhead:
-    podFixed:
-        memory: "120Mi"
-        cpu: "250m"
+  podFixed:
+    memory: "120Mi"
+    cpu: "250m"
 ```
 
 `kata-fc` 런타임클래스 핸들러를 지정하는 워크로드는 리소스 쿼터 계산,
@@ -68,7 +64,7 @@ spec:
   runtimeClassName: kata-fc
   containers:
   - name: busybox-ctr
-    image: busybox
+    image: busybox:1.28
     stdin: true
     tty: true
     resources:
@@ -88,13 +84,15 @@ spec:
 파드는 거부된다. 주어진 예제에서, 오직 런타임클래스의 이름만이 정의되어 있기 때문에, 어드미션 컨트롤러는 파드가
 `overhead` 를 포함하도록 변경한다.
 
-런타임클래스의 어드미션 수행 후에, 파드의 스펙이 갱신된 것을 확인할 수 있다.
+런타임클래스 어드미션 컨트롤러가 변경을 완료하면, 
+다음의 명령어로 업데이트된 파드 오버헤드 값을 확인할 수 있다.
 
 ```bash
 kubectl get pod test-pod -o jsonpath='{.spec.overhead}'
 ```
 
 명령 실행 결과는 다음과 같다.
+
 ```
 map[cpu:250m memory:120Mi]
 ```
@@ -106,23 +104,26 @@ kube-scheduler 는 어떤 노드에 파드가 기동 되어야 할지를 정할
 해당 파드에 대한 컨테이너의 리소스 요청의 합을 고려한다. 이 예제에서, 스케줄러는
 리소스 요청과 파드의 오버헤드를 더하고, 2.25 CPU와 320 MiB 메모리가 사용 가능한 노드를 찾는다.
 
-일단 파드가 특정 노드에 스케줄링 되면, 해당 노드에 있는 kubelet 은 파드에 대한 새로운 {{< glossary_tooltip text="cgroup" term_id="cgroup" >}}을 생성한다.
+일단 파드가 특정 노드에 스케줄링 되면, 해당 노드에 있는 kubelet 은 
+파드에 대한 새로운 {{< glossary_tooltip text="cgroup" term_id="cgroup" >}}을 생성한다.
 기본 컨테이너 런타임이 만들어내는 컨테이너들은 이 파드 안에 존재한다.
 
-만약 각 컨테이너에 대하여 QoS가 보장되었거나 향상이 가능하도록 QoS 의 리소스 상한 제한이 걸려있으면,
-kubelet 은 해당 리소스(CPU의 경우 cpu.cfs_quota_us, 메모리의 경우 memory.limit_in_bytes)와 연관된 파드의
-cgroup 의 상한선을 설정한다. 이 상한선은 컨테이너 리소스 상한과 PodSpec에
-정의된 `overhead` 의 합에 기반한다.
+만약 각 컨테이너에 대하여 리소스 상한 제한이 걸려있으면 
+(제한이 걸려있는 보장된(Guaranteed) Qos 또는 향상 가능한(Burstable) QoS), 
+kubelet 은 해당 리소스(CPU의 경우 cpu.cfs_quota_us, 메모리의 경우 memory.limit_in_bytes)와 연관된 파드의 cgroup 의 상한선을 설정한다. 
+이 상한선은 컨테이너 리소스 상한과 PodSpec에 정의된 `overhead` 의 합에 기반한다.
 
-CPU의 경우, 만약 파드가 보장형 또는 버스트형 QoS로 설정되었으면, kubelet은 PodSpec에 정의된 `overhead` 에 컨테이너의
-리소스 요청의 합을 더한 값을 `cpu.shares` 로 설정한다.
+CPU의 경우, 만약 파드가 보장형 또는 버스트형 QoS로 설정되었으면, 
+kubelet은 PodSpec에 정의된 `overhead` 에 컨테이너의 리소스 요청의 합을 더한 값을 `cpu.shares` 로 설정한다.
 
 다음의 예제를 참고하여, 워크로드에 대하여 컨테이너의 리소스 요청을 확인하자.
+
 ```bash
 kubectl get pod test-pod -o jsonpath='{.spec.containers[*].resources.limits}'
 ```
 
 컨테이너 리소스 요청의 합은 각각 CPU 2000m 와 메모리 200MiB 이다.
+
 ```
 map[cpu: 500m memory:100Mi] map[cpu:1500m memory:100Mi]
 ```
@@ -133,19 +134,21 @@ map[cpu: 500m memory:100Mi] map[cpu:1500m memory:100Mi]
 kubectl describe node | grep test-pod -B2
 ```
 
-CPU 2250m와 메모리 320MiB 가 리소스로 요청되었으며, 이 결과는 파드의 오버헤드를 포함한다.
+결과를 보면 2250 m의 CPU와 320 MiB의 메모리가 리소스로 요청되었다. 여기에는 파드 오버헤드가 포함되어 있다.
+
 ```
-  Namespace                   Name                CPU Requests  CPU Limits   Memory Requests  Memory Limits  AGE
-  ---------                   ----                ------------  ----------   ---------------  -------------  ---
-  default                     test-pod            2250m (56%)   2250m (56%)  320Mi (1%)       320Mi (1%)     36m
+  Namespace    Name       CPU Requests  CPU Limits   Memory Requests  Memory Limits  AGE
+  ---------    ----       ------------  ----------   ---------------  -------------  ---
+  default      test-pod   2250m (56%)   2250m (56%)  320Mi (1%)       320Mi (1%)     36m
 ```
 
 ## 파드 cgroup 상한 확인하기
 
-워크로드가 실행 중인 노드에서 파드의 메모리 cgroup들을 확인 해보자. 다음의 예제에서, [`crictl`](https://github.com/kubernetes-sigs/cri-tools/blob/master/docs/crictl.md)은 노드에서 사용되며,
-CRI-호환 컨테이너 런타임을 위해서 노드에서 사용할 수 있는 CLI 를 제공한다.
-파드의 오버헤드 동작을 보여주는 좋은 예이며,
-사용자가 노드에서 직접 cgroup들을 확인하지 않아도 된다.
+워크로드가 실행 중인 노드에서 파드의 메모리 cgroup들을 확인해 보자. 
+다음의 예제에서, 
+[`crictl`](https://github.com/kubernetes-sigs/cri-tools/blob/master/docs/crictl.md)은 노드에서 사용되며, 
+CRI-호환 컨테이너 런타임을 위해서 노드에서 사용할 수 있는 CLI 를 제공한다. 
+파드 오버헤드 동작을 보여주는 좋은 예이며, 사용자가 노드에서 직접 cgroup들을 확인하지 않아도 된다.
 
 먼저 특정 노드에서 파드의 식별자를 확인해 보자.
 
@@ -155,39 +158,41 @@ POD_ID="$(sudo crictl pods --name test-pod -q)"
 ```
 
 여기에서, 파드의 cgroup 경로를 확인할 수 있다.
+
 ```bash
 # 파드가 스케줄 된 노드에서 이것을 실행
 sudo crictl inspectp -o=json $POD_ID | grep cgroupsPath
 ```
 
 명령의 결과로 나온 cgroup 경로는 파드의 `pause` 컨테이너를 포함한다. 파드 레벨의 cgroup은 하나의 디렉터리이다.
+
 ```
-        "cgroupsPath": "/kubepods/podd7f4b509-cf94-4951-9417-d1087c92a5b2/7ccf55aee35dd16aca4189c952d83487297f3cd760f1bbf09620e206e7d0c27a"
+  "cgroupsPath": "/kubepods/podd7f4b509-cf94-4951-9417-d1087c92a5b2/7ccf55aee35dd16aca4189c952d83487297f3cd760f1bbf09620e206e7d0c27a"
 ```
 
-아래의 특정한 경우에, 파드 cgroup 경로는 `kubepods/podd7f4b509-cf94-4951-9417-d1087c92a5b2` 이다. 메모리의 파드 레벨 cgroup 설정을 확인하자.
+아래의 특정한 경우에, 파드 cgroup 경로는 `kubepods/podd7f4b509-cf94-4951-9417-d1087c92a5b2` 이다. 
+메모리의 파드 레벨 cgroup 설정을 확인하자.
+
 ```bash
 # 파드가 스케줄 된 노드에서 이것을 실행.
 # 또한 사용자의 파드에 할당된 cgroup 이름에 맞춰 해당 이름을 수정.
  cat /sys/fs/cgroup/memory/kubepods/podd7f4b509-cf94-4951-9417-d1087c92a5b2/memory.limit_in_bytes
 ```
 
-예상대로 320 MiB 이다.
+예상한 것과 같이 320 MiB 이다.
+
 ```
 335544320
 ```
 
 ### 관찰성
-`kube_pod_overhead` 항목은 [kube-state-metrics](https://github.com/kubernetes/kube-state-metrics)
-에서 사용할 수 있어, 파드 오버헤드가 사용되는 시기를 식별하고,
-정의된 오버헤드로 실행되는 워크로드의 안정성을 관찰할 수 있다.
-이 기능은 kube-state-metrics 의 1.9 릴리스에서는 사용할 수 없지만, 다음 릴리스에서는 가능할 예정이다.
-그 전까지는 소스로부터 kube-state-metric 을 빌드해야 한다.
-
 
+몇몇 `kube_pod_overhead` 메트릭은 
+[kube-state-metrics](https://github.com/kubernetes/kube-state-metrics) 에서 사용할 수 있어, 
+파드 오버헤드가 사용되는 시기를 식별하고, 정의된 오버헤드로 실행되는 워크로드의 안정성을 관찰할 수 있다.
 
 ## {{% heading "whatsnext" %}}
 
-
-* [런타임클래스](/ko/docs/concepts/containers/runtime-class/)
-* [파드오버헤드 디자인](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/688-pod-overhead)
+* [런타임클래스](/ko/docs/concepts/containers/runtime-class/)에 대해 알아본다.
+* 더 자세한 문맥은 
+  [파드오버헤드 디자인](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/688-pod-overhead) 향상 제안을 확인한다.
diff --git a/content/ko/docs/concepts/scheduling-eviction/pod-priority-preemption.md b/content/ko/docs/concepts/scheduling-eviction/pod-priority-preemption.md
index f149290882..778b9b5614 100644
--- a/content/ko/docs/concepts/scheduling-eviction/pod-priority-preemption.md
+++ b/content/ko/docs/concepts/scheduling-eviction/pod-priority-preemption.md
@@ -1,4 +1,7 @@
 ---
+
+
+
 title: 파드 우선순위(priority)와 선점(preemption)
 content_type: concept
 weight: 70
@@ -45,7 +48,7 @@ weight: 70
 {{< note >}}
 쿠버네티스는 이미 `system-cluster-critical` 과 `system-node-critical`,
 두 개의 프라이어리티클래스를 제공한다.
-이들은 일반적인 클래스이며 [중요한(critical) 컴포넌트가 항상 먼저 스케줄링이 되도록 하는 데](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/) 사용된다.
+이들은 일반적인 클래스이며 [중요한(critical) 컴포넌트가 항상 먼저 스케줄링이 되도록 하는 데](/ko/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/) 사용된다.
 {{< /note >}}
 
 ## 프라이어리티클래스
@@ -101,9 +104,9 @@ description: "이 프라이어리티클래스는 XYZ 서비스 파드에만 사
 
 ## 비-선점 프라이어리티클래스 {#non-preempting-priority-class}
 
-{{< feature-state for_k8s_version="v1.19" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
-`PreemptionPolicy: Never` 를 가진 파드는 낮은 우선순위 파드의 스케줄링 대기열의
+`preemptionPolicy: Never` 를 가진 파드는 낮은 우선순위 파드의 스케줄링 대기열의
 앞쪽에 배치되지만,
 그 파드는 다른 파드를 축출할 수 없다.
 스케줄링 대기 중인 비-선점 파드는 충분한 리소스가 확보되고
@@ -119,17 +122,17 @@ description: "이 프라이어리티클래스는 XYZ 서비스 파드에만 사
 비-선점 파드는 다른 우선순위가 높은 파드에 의해
 축출될 수 있다.
 
-`PreemptionPolicy` 는 기본값으로 `PreemptLowerPriority` 로 설정되어,
+`preemptionPolicy` 는 기본값으로 `PreemptLowerPriority` 로 설정되어,
 해당 프라이어리티클래스의 파드가 우선순위가 낮은 파드를 축출할 수
 있다(기존의 기본 동작과 동일).
-`PreemptionPolicy` 가 `Never` 로 설정된 경우,
+`preemptionPolicy` 가 `Never` 로 설정된 경우,
 해당 프라이어리티클래스의 파드는 비-선점될 것이다.
 
 예제 유스케이스는 데이터 과학 관련 워크로드이다.
 사용자는 다른 워크로드보다 우선순위가 높은 잡(job)을 제출할 수 있지만,
 실행 중인 파드를 축출하여 기존의 작업을 삭제하지는 않을 것이다.
 클러스터 리소스가 "자연스럽게" 충분히 사용할 수 있게 되면,
-`PreemptionPolicy: Never` 의 우선순위가 높은 잡이
+`preemptionPolicy: Never` 의 우선순위가 높은 잡이
 다른 대기 중인 파드보다 먼저 스케줄링된다.
 
 ### 비-선점 프라이어리티클래스 예제
@@ -200,9 +203,11 @@ spec:
 정보를 제공한다.
 
 파드 P는 반드시 "지정된 노드"로 스케줄링되지는 않는다.
+The scheduler always tries the "nominated Node" before iterating over any other nodes.
+스케줄러는 다른 노드에 스케줄링을 시도하기 전에 항상 "지정된 노드"부터 시도한다.
 피해자 파드가 축출된 후, 그것은 정상적(graceful)으로 종료되는 기간을 갖는다.
 스케줄러가 종료될 피해자 파드를 기다리는 동안 다른 노드를 사용할 수
-있게 되면, 스케줄러는 파드 P를 스케줄링하기 위해 다른 노드를 사용한다. 그 결과,
+있게 되면, 스케줄러는 파드 P를 스케줄링하기 위해 다른 노드를 사용할 수 있다. 그 결과,
 파드 스펙의 `nominatedNodeName` 과 `nodeName` 은 항상 동일하지 않다. 또한,
 스케줄러가 노드 N에서 파드를 축출했지만, 파드 P보다 우선순위가 높은 파드가
 도착하면, 스케줄러가 노드 N에 새로운 우선순위가 높은 파드를 제공할 수 있다. 이러한
@@ -350,21 +355,25 @@ spec:
 `PodDisruptionBudget` 으로 보호되는 경우에만, 우선순위가 가장 낮은 파드를
 축출 대상으로 고려한다.
 
-QoS와 파드 우선순위를 모두 고려하는 유일한 컴포넌트는
-[kubelet 리소스 부족 축출](/docs/concepts/scheduling-eviction/node-pressure-eviction/)이다.
-kubelet은 부족한 리소스의 사용이 요청을 초과하는지 여부에 따라, 그런 다음 우선순위에 따라,
-파드의 스케줄링 요청에 대한 부족한 컴퓨팅 리소스의 소비에 의해
-먼저 축출 대상 파드의 순위를 매긴다.
-더 자세한 내용은
-[엔드유저 파드 축출](/docs/concepts/scheduling-eviction/node-pressure-eviction/#evicting-end-user-pods)을
+kubelet은 우선순위를 사용하여 파드의 [노드-압박(node-pressure) 축출](/ko/docs/concepts/scheduling-eviction/node-pressure-eviction/) 순서를 결정한다.
+사용자는 QoS 클래스를 사용하여 어떤 파드가 축출될 것인지
+예상할 수 있다. kubelet은 다음의 요소들을 통해서 파드의 축출 순위를 매긴다.
+
+  1. 기아(starved) 리소스 사용량이 요청을 초과하는지 여부
+  1. 파드 우선순위
+  1. 요청 대비 리소스 사용량
+
+더 자세한 내용은 [kubelet 축출을 위한 파드 선택](/ko/docs/concepts/scheduling-eviction/node-pressure-eviction/#kubelet-축출을-위한-파드-선택)을
 참조한다.
 
-kubelet 리소스 부족 축출은 사용량이 요청을 초과하지 않는 경우
+kubelet 노드-압박 축출은 사용량이 요청을 초과하지 않는 경우
 파드를 축출하지 않는다. 우선순위가 낮은 파드가 요청을
 초과하지 않으면, 축출되지 않는다. 요청을 초과하는 우선순위가
 더 높은 다른 파드가 축출될 수 있다.
 
-
 ## {{% heading "whatsnext" %}}
 
-* 프라이어리티클래스와 관련하여 리소스쿼터 사용에 대해 [기본적으로 프라이어리티클래스 소비 제한](/ko/docs/concepts/policy/resource-quotas/#기본적으로-우선-순위-클래스-소비-제한)을 읽어보자.
+* 프라이어리티클래스와 함께 리소스쿼터 사용에 대해 읽기: [기본으로 프라이어리티 클래스 소비 제한](/ko/docs/concepts/policy/resource-quotas/#기본적으로-우선-순위-클래스-소비-제한)
+* [파드 중단(disruption)](/ko/docs/concepts/workloads/pods/disruptions/)에 대해 학습한다.
+* [API를 이용한 축출](/ko/docs/concepts/scheduling-eviction/api-eviction/)에 대해 학습한다.
+* [노드-압박(node-pressure) 축출](/ko/docs/concepts/scheduling-eviction/node-pressure-eviction/)에 대해 학습한다.
diff --git a/content/ko/docs/concepts/scheduling-eviction/resource-bin-packing.md b/content/ko/docs/concepts/scheduling-eviction/resource-bin-packing.md
index 1ac3b81262..8c5f19b8ff 100644
--- a/content/ko/docs/concepts/scheduling-eviction/resource-bin-packing.md
+++ b/content/ko/docs/concepts/scheduling-eviction/resource-bin-packing.md
@@ -21,25 +21,24 @@ kube-scheduler를 미세 조정할 수 있다.
 
 ## RequestedToCapacityRatioResourceAllocation을 사용해서 빈 패킹 활성화하기
 
-쿠버네티스를 사용하면 사용자가 각 리소스에 대한 가중치와 함께 리소스를 지정하여
-용량 대비 요청 비율을 기반으로 노드의 점수를 매기는 것을 허용한다. 이를
-통해 사용자는 적절한 파라미터를 사용해서 확장된 리소스를 빈 팩으로 만들 수 있어
-대규모의 클러스터에서 부족한 리소스의 활용도가 향상된다.
-`RequestedToCapacityRatioResourceAllocation` 우선 순위 기능의
-동작은 `RequestedToCapacityRatioArgs`라는
-구성 옵션으로 제어할 수 있다. 이 인수는 `shape`와 `resources`
-두 개의 파라미터로 구성된다. `shape` 파라미터는 사용자가 `utilization`과
-`score` 값을 기반으로 최소 요청 또는 최대 요청된 대로 기능을
-조정할 수 있게 한다. `resources` 파라미터는 점수를 매길 때 고려할
-리소스의 `name` 과 각 리소스의 가중치를 지정하는 `weight` 로
-구성된다.
+쿠버네티스는 사용자가 각 리소스에 대한 가중치와 함께 리소스를 지정하여 
+용량 대비 요청 비율을 기반으로 노드의 점수를 매기는 것을 허용한다. 
+이를 통해 사용자는 적절한 파라미터를 사용해서 확장된 리소스를 빈 팩으로 만들 수 있어 
+대규모의 클러스터에서 부족한 리소스의 활용도가 향상된다. 
+`RequestedToCapacityRatioResourceAllocation` 우선 순위 기능의 동작은 
+`RequestedToCapacityRatioArgs`라는 구성 옵션으로 제어할 수 있다. 
+이 인수는 `shape`와 `resources` 두 개의 파라미터로 구성된다. 
+`shape` 파라미터는 사용자가 `utilization`과 `score` 값을 기반으로 
+최소 요청 또는 최대 요청된 대로 기능을 조정할 수 있게 한다. 
+`resources` 파라미터는 점수를 매길 때 고려할 리소스의 `name` 과 
+각 리소스의 가중치를 지정하는 `weight` 로 구성된다.
 
 다음은 확장된 리소스 `intel.com/foo` 와 `intel.com/bar` 에 대한
 `requestedToCapacityRatioArguments` 를 빈 패킹 동작으로
 설정하는 구성의 예시이다.
 
 ```yaml
-apiVersion: kubescheduler.config.k8s.io/v1beta1
+apiVersion: kubescheduler.config.k8s.io/v1beta3
 kind: KubeSchedulerConfiguration
 profiles:
 # ...
@@ -93,9 +92,9 @@ shape:
 
 ``` yaml
 resources:
-  - name: CPU
+  - name: cpu
     weight: 1
-  - name: Memory
+  - name: memory
     weight: 1
 ```
 
@@ -105,9 +104,9 @@ resources:
 resources:
   - name: intel.com/foo
     weight: 5
-  - name: CPU
+  - name: cpu
     weight: 3
-  - name: Memory
+  - name: memory
     weight: 1
 ```
 
@@ -124,16 +123,16 @@ resources:
 
 ```
 intel.com/foo : 2
-Memory: 256MB
-CPU: 2
+memory: 256MB
+cpu: 2
 ```
 
 리소스의 가중치는 다음과 같다.
 
 ```
 intel.com/foo : 5
-Memory: 1
-CPU: 3
+memory: 1
+cpu: 3
 ```
 
 FunctionShapePoint {{0, 0}, {100, 10}}
@@ -143,13 +142,13 @@ FunctionShapePoint {{0, 0}, {100, 10}}
 ```
 Available:
   intel.com/foo: 4
-  Memory: 1 GB
-  CPU: 8
+  memory: 1 GB
+  cpu: 8
 
 Used:
   intel.com/foo: 1
-  Memory: 256MB
-  CPU: 1
+  memory: 256MB
+  cpu: 1
 ```
 
 노드 점수는 다음과 같다.
@@ -159,16 +158,16 @@ intel.com/foo  = resourceScoringFunction((2+1),4)
                = (100 - ((4-3)*100/4)
                = (100 - 25)
                = 75                       # requested + used = 75% * available
-               = rawScoringFunction(75)
-               = 7                        # floor(75/10)
+               = rawScoringFunction(75) 
+               = 7                        # floor(75/10) 
 
-Memory         = resourceScoringFunction((256+256),1024)
+memory         = resourceScoringFunction((256+256),1024)
                = (100 -((1024-512)*100/1024))
                = 50                       # requested + used = 50% * available
                = rawScoringFunction(50)
                = 5                        # floor(50/10)
 
-CPU            = resourceScoringFunction((2+1),8)
+cpu            = resourceScoringFunction((2+1),8)
                = (100 -((8-3)*100/8))
                = 37.5                     # requested + used = 37.5% * available
                = rawScoringFunction(37.5)
@@ -183,12 +182,12 @@ NodeScore   =  (7 * 5) + (5 * 1) + (3 * 3) / (5 + 1 + 3)
 ```
 Available:
   intel.com/foo: 8
-  Memory: 1GB
-  CPU: 8
+  memory: 1GB
+  cpu: 8
 Used:
   intel.com/foo: 2
-  Memory: 512MB
-  CPU: 6
+  memory: 512MB
+  cpu: 6
 ```
 
 노드 점수는 다음과 같다.
@@ -207,7 +206,7 @@ Memory         = resourceScoringFunction((256+512),1024)
                = rawScoringFunction(75)
                = 7
 
-CPU            = resourceScoringFunction((2+6),8)
+cpu            = resourceScoringFunction((2+6),8)
                = (100 -((8-8)*100/8))
                = 100
                = rawScoringFunction(100)
diff --git a/content/ko/docs/concepts/scheduling-eviction/scheduler-perf-tuning.md b/content/ko/docs/concepts/scheduling-eviction/scheduler-perf-tuning.md
index 6be3e204c8..5fd12dc521 100644
--- a/content/ko/docs/concepts/scheduling-eviction/scheduler-perf-tuning.md
+++ b/content/ko/docs/concepts/scheduling-eviction/scheduler-perf-tuning.md
@@ -43,7 +43,7 @@ kube-scheduler 의 `percentageOfNodesToScore` 설정을 통해
 마치 100을 설정한 것처럼 작동한다.
 
 값을 변경하려면,
-[kube-scheduler 구성 파일](/docs/reference/config-api/kube-scheduler-config.v1beta1/)을
+[kube-scheduler 구성 파일](/docs/reference/config-api/kube-scheduler-config.v1beta3/)을
 편집한 다음 스케줄러를 재시작한다.
 대부분의 경우, 구성 파일은 `/etc/kubernetes/config/kube-scheduler.yaml` 에서 찾을 수 있다.
 
@@ -161,4 +161,4 @@ percentageOfNodesToScore: 50
 
 ## {{% heading "whatsnext" %}}
 
-* [kube-scheduler 구성 레퍼런스(v1beta1)](/docs/reference/config-api/kube-scheduler-config.v1beta1/) 확인
+* [kube-scheduler 구성 레퍼런스(v1beta3)](/docs/reference/config-api/kube-scheduler-config.v1beta3/) 확인
diff --git a/content/ko/docs/concepts/scheduling-eviction/taint-and-toleration.md b/content/ko/docs/concepts/scheduling-eviction/taint-and-toleration.md
index c47f5f995b..f6321e4aa7 100644
--- a/content/ko/docs/concepts/scheduling-eviction/taint-and-toleration.md
+++ b/content/ko/docs/concepts/scheduling-eviction/taint-and-toleration.md
@@ -203,7 +203,7 @@ tolerations:
  * `tolerationSeconds` 가 지정된 테인트를 용인하는 파드는 지정된
   시간 동안 바인딩된 상태로 유지된다.
 
-노드 컨트롤러는 특정 조건이 참일 때 자동으로
+노드 컨트롤러는 특정 컨디션이 참일 때 자동으로
 노드를 테인트시킨다. 다음은 빌트인 테인트이다.
 
  * `node.kubernetes.io/not-ready`: 노드가 준비되지 않았다. 이는 NodeCondition
@@ -264,19 +264,19 @@ tolerations:
 
 이렇게 하면 이러한 문제로 인해 데몬셋 파드가 축출되지 않는다.
 
-## 컨디션을 기준으로 노드 테인트하기
+## 컨디션(condition)을 기준으로 노드 테인트하기
 
 컨트롤 플레인은 노드 {{<glossary_tooltip text="컨트롤러" term_id="controller">}}를 이용하여 
-[노드 조건](/docs/concepts/scheduling-eviction/node-pressure-eviction/)에 대한 `NoSchedule` 효과를 사용하여 자동으로 테인트를 생성한다.
+[노드 컨디션](/ko/docs/concepts/scheduling-eviction/node-pressure-eviction/#node-conditions)에 대한 `NoSchedule` 효과를 사용하여 자동으로 테인트를 생성한다.
 
-스케줄러는 스케줄링 결정을 내릴 때 노드 조건을 확인하는 것이 아니라 테인트를 확인한다. 
-이렇게 하면 노드 조건이 스케줄링에 직접적인 영향을 주지 않는다.
-예를 들어 `DiskPressure` 노드 조건이 활성화된 경우 
+스케줄러는 스케줄링 결정을 내릴 때 노드 컨디션을 확인하는 것이 아니라 테인트를 확인한다. 
+이렇게 하면 노드 컨디션이 스케줄링에 직접적인 영향을 주지 않는다.
+예를 들어 `DiskPressure` 노드 컨디션이 활성화된 경우 
 컨트롤 플레인은 `node.kubernetes.io/disk-pressure` 테인트를 추가하고 영향을 받는 노드에 새 파드를 할당하지 않는다. 
-`MemoryPressure` 노드 조건이 활성화되면 
+`MemoryPressure` 노드 컨디션이 활성화되면 
 컨트롤 플레인이 `node.kubernetes.io/memory-pressure` 테인트를 추가한다.
 
-새로 생성된 파드에 파드 톨러레이션을 추가하여 노드 조건을 무시하도록 할 수 있다. 
+새로 생성된 파드에 파드 톨러레이션을 추가하여 노드 컨디션을 무시하도록 할 수 있다. 
 또한 컨트롤 플레인은 `BestEffort` 이외의 
 {{< glossary_tooltip text="QoS 클래스" term_id="qos-class" >}}를 가지는 파드에 
 `node.kubernetes.io/memory-pressure` 톨러레이션을 추가한다. 
@@ -298,5 +298,5 @@ tolerations:
 
 ## {{% heading "whatsnext" %}}
 
-* [리소스 부족 다루기](/docs/concepts/scheduling-eviction/node-pressure-eviction/)와 어떻게 구성하는지에 대해 알아보기
+* [노드-압박(node-pressure) 축출](/ko/docs/concepts/scheduling-eviction/node-pressure-eviction/)과 어떻게 구성하는지에 대해 알아보기
 * [파드 우선순위](/ko/docs/concepts/scheduling-eviction/pod-priority-preemption/)에 대해 알아보기
diff --git a/content/ko/docs/concepts/security/controlling-access.md b/content/ko/docs/concepts/security/controlling-access.md
index 9612159eb4..ad30adf3c6 100644
--- a/content/ko/docs/concepts/security/controlling-access.md
+++ b/content/ko/docs/concepts/security/controlling-access.md
@@ -1,7 +1,9 @@
 ---
+
+
+
 title: 쿠버네티스 API 접근 제어하기
 content_type: concept
-weight: 5
 ---
 
 <!-- overview -->
@@ -29,13 +31,16 @@ API 서버의 인증서에 대한 루트 인증서를 포함하며,
 이 인증서는 일반적으로 `$USER/.kube/config`에 자동으로 기록된다.
 클러스터에 여러 명의 사용자가 있는 경우, 작성자는 인증서를 다른 사용자와 공유해야 한다.
 
+클라이언트는 이 단계에서 TLS 클라이언트 인증서를 제시할 수 있다.
+
 ## 인증
 
 TLS가 설정되면 HTTP 요청이 인증 단계로 넘어간다.
 이는 다이어그램에 **1**단계로 표시되어 있다.
 클러스터 생성 스크립트 또는 클러스터 관리자는
 API 서버가 하나 이상의 인증기 모듈을 실행하도록 구성한다.
-인증기는 [여기](/docs/reference/access-authn-authz/authentication/)에서 더 자세히 서술한다.
+인증기에 대해서는 
+[인증](/docs/reference/access-authn-authz/authentication/)에서 더 자세히 서술한다.
 
 인증 단계로 들어가는 것은 온전한 HTTP 요청이지만
 일반적으로 헤더 그리고/또는 클라이언트 인증서를 검사한다.
@@ -46,8 +51,6 @@ JWT 토큰(서비스 어카운트에 사용됨)을 포함한다.
 여러 개의 인증 모듈을 지정할 수 있으며,
 이 경우 하나의 인증 모듈이 성공할 때까지 각 모듈을 순차적으로 시도한다.
 
-GCE에서는 클라이언트 인증서, 암호, 일반 토큰 및 JWT 토큰이 모두 사용 가능하다.
-
 요청을 인증할 수 없는 경우 HTTP 상태 코드 401과 함께 거부된다.
 이 외에는 사용자가 특정 `username`으로 인증되며,
 이 username은 다음 단계에서 사용자의 결정에 사용할 수 있다.
@@ -126,6 +129,12 @@ Bob이 `projectCaribou` 네임스페이스에 있는 오브젝트에 쓰기(`cre
 요청이 모든 어드미션 제어 모듈을 통과하면 유효성 검사 루틴을 사용하여 해당 API 오브젝트를 검증한 후
 오브젝트 저장소에 기록(**4**단계)된다.
 
+## 감사(Auditing)
+
+쿠버네티스 감사는 클러스터에서 발생하는 일들의 순서를 문서로 기록하여, 보안과 관련되어 있고 시간 순서로 정리된 기록을 제공한다.
+클러스터는 사용자, 쿠버네티스 API를 사용하는 애플리케이션, 그리고 컨트롤 플레인 자신이 생성한 활동을 감사한다.
+
+더 많은 정보는 [감사](/docs/tasks/debug/debug-cluster/audit/)를 참고한다.
 
 ## API 서버 포트와 IP
 
@@ -139,7 +148,7 @@ API 서버는 실제로 다음과 같이 2개의 포트에서 서비스할 수 
       - 테스트 및 부트스트랩을 하기 위한 것이며 마스터 노드의 다른 구성요소
         (스케줄러, 컨트롤러 매니저)가 API와 통신하기 위한 것이다.
       - TLS가 없다.
-      - 기본 포트는 8080이며, `--insecure-port` 플래그를 사용하여 변경한다.
+      - 기본 포트는 8080이다.
       - 기본 IP는 로컬호스트(localhost)이며, `--insecure-bind-address` 플래그를 사용하여 변경한다.
       - 요청이 인증 및 인가 모듈을 **우회한다**.
       - 요청이 어드미션 제어 모듈(들)에 의해 처리된다.
diff --git a/content/ko/docs/concepts/security/overview.md b/content/ko/docs/concepts/security/overview.md
index 64ed2675b2..02cf7d72ae 100644
--- a/content/ko/docs/concepts/security/overview.md
+++ b/content/ko/docs/concepts/security/overview.md
@@ -1,17 +1,21 @@
 ---
+
+
 title: 클라우드 네이티브 보안 개요
+description: >
+  클라우드 네이티브 보안 관점에서 쿠버네티스 보안을 생각해보기 위한 모델
 content_type: concept
-weight: 10
+weight: 1
 ---
 
 <!-- overview -->
+
 이 개요는 클라우드 네이티브 보안의 맥락에서 쿠버네티스 보안에 대한 생각의 모델을 정의한다.
 
 {{< warning >}}
 이 컨테이너 보안 모델은 입증된 정보 보안 정책이 아닌 제안 사항을 제공한다.
 {{< /warning >}}
 
-
 <!-- body -->
 
 ## 클라우드 네이티브 보안의 4C
@@ -25,7 +29,7 @@ weight: 10
 널리 알려져 있다.
 {{< /note >}}
 
-{{< figure src="/images/docs/4c.png" title="클라우드 네이티브 보안의 4C" >}}
+{{< figure src="/images/docs/4c.png" title="클라우드 네이티브 보안의 4C" class="diagram-large" >}}
 
 클라우드 네이티브 보안 모델의 각 계층은 다음의 가장 바깥쪽 계층을 기반으로 한다.
 코드 계층은 강력한 기본(클라우드, 클러스터, 컨테이너) 보안 계층의 이점을 제공한다.
@@ -56,6 +60,7 @@ Amazon Web Services | https://aws.amazon.com/security/ |
 Google Cloud Platform | https://cloud.google.com/security/ |
 IBM Cloud | https://www.ibm.com/cloud/security |
 Microsoft Azure | https://docs.microsoft.com/en-us/azure/security/azure-security |
+Oracle Cloud Infrastructure | https://www.oracle.com/security/ |
 VMWare VSphere | https://www.vmware.com/security/hardening-guides.html |
 
 {{< /table >}}
@@ -72,7 +77,7 @@ API 서버에 대한 네트워크 접근(컨트롤 플레인) | 쿠버네티스
 노드에 대한 네트워크 접근(노드) | 지정된 포트의 컨트롤 플레인에서 _만_ (네트워크 접근 제어 목록을 통한) 연결을 허용하고 NodePort와 LoadBalancer 유형의 쿠버네티스 서비스에 대한 연결을 허용하도록 노드를 구성해야 한다. 가능하면 이러한 노드가 공용 인터넷에 완전히 노출되어서는 안된다.
 클라우드 공급자 API에 대한 쿠버네티스 접근 | 각 클라우드 공급자는 쿠버네티스 컨트롤 플레인 및 노드에 서로 다른 권한 집합을 부여해야 한다. 관리해야하는 리소스에 대해 [최소 권한의 원칙](https://en.wikipedia.org/wiki/Principle_of_least_privilege)을 따르는 클라우드 공급자의 접근 권한을 클러스터에 구성하는 것이 가장 좋다. [Kops 설명서](https://github.com/kubernetes/kops/blob/master/docs/iam_roles.md#iam-roles)는 IAM 정책 및 역할에 대한 정보를 제공한다.
 etcd에 대한 접근 | etcd(쿠버네티스의 데이터 저장소)에 대한 접근은 컨트롤 플레인으로만 제한되어야 한다. 구성에 따라 TLS를 통해 etcd를 사용해야 한다. 자세한 내용은 [etcd 문서](https://github.com/etcd-io/etcd/tree/master/Documentation)에서 확인할 수 있다.
-etcd 암호화 | 가능한 한 모든 드라이브를 암호화하는 것이 좋은 방법이지만, etcd는 전체 클러스터(시크릿 포함)의 상태를 유지하고 있기에 특히 디스크는 암호화되어 있어야 한다.
+etcd 암호화 | 가능한 한 모든 스토리지를 암호화하는 것이 좋은 방법이며, etcd는 전체 클러스터(시크릿 포함)의 상태를 유지하고 있기에 특히 디스크는 암호화되어 있어야 한다.
 
 {{< /table >}}
 
@@ -83,7 +88,6 @@ etcd 암호화 | 가능한 한 모든 드라이브를 암호화하는 것이 좋
 * 설정 가능한 클러스터 컴포넌트의 보안
 * 클러스터에서 실행되는 애플리케이션의 보안
 
-
 ### 클러스터의 컴포넌트 {#cluster-components}
 
 우발적이거나 악의적인 접근으로부터 클러스터를 보호하고,
@@ -103,9 +107,9 @@ etcd 암호화 | 가능한 한 모든 드라이브를 암호화하는 것이 좋
 ------------------------------ | ------------ |
 RBAC 인증(쿠버네티스 API에 대한 접근) | https://kubernetes.io/docs/reference/access-authn-authz/rbac/
 인증 | https://kubernetes.io/ko/docs/concepts/security/controlling-access/
-애플리케이션 시크릿 관리(및 유휴 상태에서의 etcd 암호화 등) | https://kubernetes.io/docs/concepts/configuration/secret/ <br> https://kubernetes.io/docs/tasks/administer-cluster/encrypt-data/
-파드 보안 정책 | https://kubernetes.io/docs/concepts/policy/pod-security-policy/
-서비스 품질(및 클러스터 리소스 관리) | https://kubernetes.io/docs/tasks/configure-pod-container/quality-service-pod/
+애플리케이션 시크릿 관리(및 유휴 상태에서의 etcd 암호화 등) | https://kubernetes.io/ko/docs/concepts/configuration/secret/ <br> https://kubernetes.io/docs/tasks/administer-cluster/encrypt-data/
+파드가 파드 시큐리티 폴리시를 만족하는지 확인하기 | https://kubernetes.io/docs/concepts/security/pod-security-standards/#policy-instantiation
+서비스 품질(및 클러스터 리소스 관리) | https://kubernetes.io/ko/docs/tasks/configure-pod-container/quality-service-pod/
 네트워크 정책 | https://kubernetes.io/ko/docs/concepts/services-networking/network-policies/
 쿠버네티스 인그레스를 위한 TLS | https://kubernetes.io/ko/docs/concepts/services-networking/ingress/#tls
 
@@ -133,7 +137,7 @@ RBAC 인증(쿠버네티스 API에 대한 접근) | https://kubernetes.io/docs/r
 
 코드에서 고려할 영역 | 추천 |
 -------------------------| -------------- |
-TLS를 통한 접근 | 코드가 TCP를 통해 통신해야 한다면, 미리 클라이언트와 TLS 핸드 셰이크를 수행한다. 몇 가지 경우를 제외하고, 전송 중인 모든 것을 암호화한다. 한 걸음 더 나아가, 서비스 간 네트워크 트래픽을 암호화하는 것이 좋다. 이것은 인증서를 가지고 있는 두 서비스의 양방향 검증을 [mTLS](https://en.wikipedia.org/wiki/Mutual_authentication)를 통해 수행할 수 있다. |
+TLS를 통한 접근 | 코드가 TCP를 통해 통신해야 한다면, 미리 클라이언트와 TLS 핸드 셰이크를 수행한다. 몇 가지 경우를 제외하고, 전송 중인 모든 것을 암호화한다. 한 걸음 더 나아가, 서비스 간 네트워크 트래픽을 암호화하는 것이 좋다. 이것은 인증서를 가지고 있는 두 서비스의 양방향 검증을 실행하는 [mTLS(상호 TLS 인증)](https://en.wikipedia.org/wiki/Mutual_authentication)를 통해 수행할 수 있다. |
 통신 포트 범위 제한 | 이 권장사항은 당연할 수도 있지만, 가능하면 통신이나 메트릭 수집에 꼭 필요한 서비스의 포트만 노출시켜야 한다. |
 타사 종속성 보안 | 애플리케이션의 타사 라이브러리를 정기적으로 스캔하여 현재 알려진 취약점이 없는지 확인하는 것이 좋다. 각 언어에는 이런 검사를 자동으로 수행하는 도구를 가지고 있다. |
 정적 코드 분석 | 대부분 언어에는 잠재적으로 안전하지 않은 코딩 방법에 대해 코드 스니펫을 분석할 수 있는 방법을 제공한다. 가능한 언제든지 일반적인 보안 오류에 대해 코드베이스를 스캔할 수 있는 자동화된 도구를 사용하여 검사를 한다. 도구는 다음에서 찾을 수 있다. https://owasp.org/www-community/Source_Code_Analysis_Tools |
diff --git a/content/ko/docs/concepts/policy/pod-security-policy.md b/content/ko/docs/concepts/security/pod-security-policy.md
similarity index 97%
rename from content/ko/docs/concepts/policy/pod-security-policy.md
rename to content/ko/docs/concepts/security/pod-security-policy.md
index ff98e134eb..13e1d4cde6 100644
--- a/content/ko/docs/concepts/policy/pod-security-policy.md
+++ b/content/ko/docs/concepts/security/pod-security-policy.md
@@ -11,8 +11,9 @@ weight: 30
 
 {{< feature-state for_k8s_version="v1.21" state="deprecated" >}}
 
-파드시큐리티폴리시(PodSecurityPolicy)는 쿠버네티스 v1.21부터 더이상 사용되지 않으며, v1.25에서 제거된다. 사용 중단에 대한 상세 사항은
-[파드시큐리티폴리시 사용 중단: 과거, 현재, 그리고 미래](/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/)를 참조한다.
+파드시큐리티폴리시(PodSecurityPolicy)는 쿠버네티스 v1.21부터 더 이상 사용되지 않으며, v1.25에서 제거될 예정이다. 
+파드시큐리티폴리시는 [파드 시큐리티 어드미션](/docs/concepts/security/pod-security-admission/)으로 대체되었다.
+사용 중단에 대한 상세 사항은 [파드시큐리티폴리시 사용 중단: 과거, 현재, 그리고 미래](/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/)를 참조한다.
 
 파드 시큐리티 폴리시를 사용하면 파드 생성 및 업데이트에 대한 세분화된 권한을
 부여할 수 있다.
@@ -21,7 +22,7 @@ weight: 30
 
 ## 파드 시큐리티 폴리시란?
 
-_Pod Security Policy_ 는 파드 명세의 보안 관련 측면을 제어하는 ​​클러스터-레벨의
+_Pod Security Policy_ 는 파드 명세의 보안 관련 측면을 제어하는 클러스터-레벨의
 리소스이다. [파드시큐리티폴리시](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritypolicy-v1beta1-policy) 오브젝트는
 관련 필드에 대한 기본값뿐만 아니라 시스템에 적용하기 위해 파드가 실행해야만 하는
 조건 셋을 정의한다. 관리자는
@@ -195,7 +196,7 @@ API 서버 접근 제어에 대한 자세한 내용은
 ## 정책 순서
 
 파드 생성 및 업데이트를 제한할 뿐만 아니라 파드 시큐리티 폴리시를 사용하여
-제어하는 ​​많은 필드에 기본값을 제공할 수도 있다. 여러 정책을
+제어하는 많은 필드에 기본값을 제공할 수도 있다. 여러 정책을
 사용할 수 있는 경우 파드 시큐리티 폴리시 컨트롤러는
 다음 기준에 따라 정책을 선택한다.
 
@@ -651,13 +652,13 @@ spec:
 ### AppArmor
 
 파드시큐리티폴리시의 어노테이션을 통해 제어된다. [AppArmor
-문서](/ko/docs/tutorials/clusters/apparmor/#podsecuritypolicy-annotations)를 참고하길 바란다.
+문서](/ko/docs/tutorials/security/apparmor/#podsecuritypolicy-annotations)를 참고하길 바란다.
 
 ### Seccomp
 
 쿠버네티스 v1.19부터 파드나 컨테이너의 `securityContext` 에서
 `seccompProfile` 필드를 사용하여 [seccomp 프로파일 사용을
-제어](/docs/tutorials/clusters/seccomp)할 수 있다. 이전 버전에서는, 파드에
+제어](/docs/tutorials/security/seccomp/)할 수 있다. 이전 버전에서는, 파드에
 어노테이션을 추가하여 seccomp를 제어했다. 두 버전에서 동일한 파드시큐리티폴리시를 사용하여
 이러한 필드나 어노테이션이 적용되는 방식을 적용할 수 있다.
 
@@ -695,7 +696,7 @@ spec:
 - `allowedUnsafeSysctls` - `forbiddenSysctls`에 나열되지 않는 한 기본 목록에서 허용하지 않은 특정 sysctls를 허용한다.
 
 [Sysctl 문서](
-/docs/tasks/administer-cluster/sysctl-cluster/#podsecuritypolicy)를 참고하길 바란다.
+/ko/docs/tasks/administer-cluster/sysctl-cluster/#파드시큐리티폴리시-podsecuritypolicy)를 참고하길 바란다.
 
 ## {{% heading "whatsnext" %}}
 
diff --git a/content/ko/docs/concepts/services-networking/_index.md b/content/ko/docs/concepts/services-networking/_index.md
index 9cfcfd540b..b80c3a40f6 100644
--- a/content/ko/docs/concepts/services-networking/_index.md
+++ b/content/ko/docs/concepts/services-networking/_index.md
@@ -5,8 +5,50 @@ description: >
   쿠버네티스의 네트워킹에 대한 개념과 리소스에 대해 설명한다.
 ---
 
+## 쿠버네티스 네트워크 모델
+
+모든 [`파드`](/ko/docs/concepts/workloads/pods/)는 고유한 IP 주소를 갖는다. 
+이는 즉 `파드`간 연결을 명시적으로 만들 필요가 없으며 
+또한 컨테이너 포트를 호스트 포트에 매핑할 필요가 거의 없음을 의미한다. 
+이로 인해 포트 할당, 네이밍, 서비스 디스커버리, 
+[로드 밸런싱](/ko/docs/concepts/services-networking/ingress/#load-balancing), 
+애플리케이션 구성, 마이그레이션 관점에서 `파드`를 
+VM 또는 물리 호스트처럼 다룰 수 있는 깔끔하고 하위 호환성을 갖는 모델이 제시된다.
+
+쿠버네티스는 모든 네트워킹 구현에 대해 다음과 같은 근본적인 요구사항을 만족할 것을 요구한다 
+(이로 인해 모든 의도적인 네트워크 분할 정책이 방지된다)
+
+   * [노드](/ko/docs/concepts/architecture/nodes/) 상의 파드가 NAT 없이 모든 노드의 모든 파드와 통신할 수 있다
+   * 노드 상의 에이전트(예: 시스템 데몬, kubelet)가 해당 노드의 모든 
+     파드와 통신할 수 있다
+
+참고: `파드`를 호스트 네트워크에서 구동하는 것도 지원하는 플랫폼(예: 리눅스)에 대해서는 
+다음의 요구사항도 존재한다.
+
+   * 한 노드의 호스트 네트워크에 있는 파드는 
+     NAT 없이 모든 노드의 모든 파드와 통신할 수 있다
+
+이 모델은 전반적으로 덜 복잡할 뿐만 아니라, 
+무엇보다도 VM에 있던 앱을 컨테이너로 손쉽게 포팅하려는 쿠버네티스 요구사항을 만족시킬 수 있다. 
+작업을 기존에는 VM에서 실행했었다면, VM은 IP주소를 가지며 프로젝트 내의 다른 VM과 통신할 수 있었을 것이다. 
+이는 동일한 기본 모델이다.
+
+쿠버네티스 IP 주소는 `파드` 범주에 존재하며, 
+`파드` 내의 컨테이너들은 IP 주소, MAC 주소를 포함하는 네트워크 네임스페이스를 공유한다. 
+이는 곧 `파드` 내의 컨테이너들이 각자의 포트에 `localhost`로 접근할 수 있음을 의미한다. 
+또한 `파드` 내의 컨테이너들이 포트 사용에 있어 서로 협조해야 하는데, 
+이는 VM 내 프로세스 간에도 마찬가지이다. 
+이러한 모델은 "파드 별 IP" 모델로 불린다.
+
+이것이 어떻게 구현되는지는 사용하는 컨테이너 런타임의 상세사항이다.
+
+`노드` 자체의 포트를 `파드`로 포워드하도록 요청하는 것도 가능하지만(호스트 포트라고 불림), 
+이는 매우 비주류적인(niche) 동작이다. 
+포워딩이 어떻게 구현되는지도 컨테이너 런타임의 상세사항이다. 
+`파드` 자체는 호스트 포트 존재 유무를 인지할 수 없다.
+
 쿠버네티스 네트워킹은 다음의 네 가지 문제를 해결한다.
-- 파드 내의 컨테이너는 루프백(loopback)을 통한 네트워킹을 사용하여 통신한다.
+- 파드 내의 컨테이너는 루프백(loopback)을 통한 [네트워킹을 사용하여 통신](/ko/docs/concepts/services-networking/dns-pod-service/)한다.
 - 클러스터 네트워킹은 서로 다른 파드 간의 통신을 제공한다.
-- 서비스 리소스를 사용하면 파드에서 실행 중인 애플리케이션을 클러스터 외부에서 접근할 수 있다.
-- 또한 서비스를 사용하여 클러스터 내부에서 사용할 수 있는 서비스만 게시할 수 있다.
+- [서비스 리소스](/ko/docs/concepts/services-networking/service/)를 사용하면 [파드에서 실행 중인 애플리케이션을 클러스터 외부에서 접근](/ko/docs/concepts/services-networking/connect-applications-service/)할 수 있다.
+- 또한 서비스를 사용하여 [서비스를 클러스터 내부에서만 사용할 수 있도록 게시](/ko/docs/concepts/services-networking/service-traffic-policy/)할 수 있다.
diff --git a/content/ko/docs/concepts/services-networking/connect-applications-service.md b/content/ko/docs/concepts/services-networking/connect-applications-service.md
index 0848c35772..7765c77adb 100644
--- a/content/ko/docs/concepts/services-networking/connect-applications-service.md
+++ b/content/ko/docs/concepts/services-networking/connect-applications-service.md
@@ -1,4 +1,8 @@
 ---
+
+
+
+
 title: 서비스와 애플리케이션 연결하기
 content_type: concept
 weight: 30
@@ -9,11 +13,9 @@ weight: 30
 
 ## 컨테이너 연결을 위한 쿠버네티스 모델
 
-지속적으로 실행중이고, 복제된 애플리케이션을 가지고 있다면 네트워크에 노출할 수 있다. 쿠버네티스의 네트워킹 접근 방식을 논의하기 전에, 도커와 함께 동작하는 "일반적인" 네트워킹 방법과 대조해볼 가치가 있다.
+지속적으로 실행중이고, 복제된 애플리케이션을 가지고 있다면 네트워크에 노출할 수 있다.
 
-기본적으로 도커는 호스트-프라이빗 네트워킹을 사용하기에 컨테이너는 동일한 머신에 있는 경우에만 다른 컨테이너와 통신 할 수 있다. 도커 컨테이너가 노드를 통해 통신하려면 머신 포트에 IP 주소가 할당되어야 컨테이너에 전달되거나 프록시된다. 이것은 컨테이너가 사용하는 포트를 매우 신중하게 조정하거나 포트를 동적으로 할당해야 한다는 의미이다.
-
-컨테이너를 제공하는 여러 개발자 또는 팀에서 포트를 조정하는 것은 규모면에서 매우 어려우며, 사용자가 제어할 수 없는 클러스터 수준의 문제에 노출된다. 쿠버네티스는 파드가 배치된 호스트와는 무관하게 다른 파드와 통신할 수 있다고 가정한다. 쿠버네티스는 모든 파드에게 자체 클러스터-프라이빗 IP 주소를 제공하기 때문에 파드간에 명시적으로 링크를 만들거나 컨테이너 포트를 호스트 포트에 매핑 할 필요가 없다. 이것은 파드 내의 컨테이너는 모두 로컬호스트에서 서로의 포트에 도달할 수 있으며 클러스터의 모든 파드는 NAT 없이 서로를 볼 수 있다는 의미이다. 이 문서의 나머지 부분에서는 이러한 네트워킹 모델에서 신뢰할 수 있는 서비스를 실행하는 방법에 대해 자세히 설명할 것이다.
+쿠버네티스는 파드가 배치된 호스트와는 무관하게 다른 파드와 통신할 수 있다고 가정한다. 쿠버네티스는 모든 파드에게 자체 클러스터-프라이빗 IP 주소를 제공하기 때문에 파드간에 명시적으로 링크를 만들거나 컨테이너 포트를 호스트 포트에 매핑할 필요가 없다. 이것은 파드 내의 컨테이너는 모두 로컬호스트(localhost)에서 서로의 포트에 도달할 수 있으며 클러스터의 모든 파드는 NAT 없이 서로를 볼 수 있다는 의미이다. 이 문서의 나머지 부분에서는 이러한 네트워킹 모델에서 신뢰할 수 있는 서비스를 실행하는 방법에 대해 자세히 설명할 것이다.
 
 이 가이드는 간단한 nginx 서버를 사용해서 개념증명을 보여준다.
 
@@ -48,15 +50,15 @@ kubectl get pods -l run=my-nginx -o yaml | grep podIP
     podIP: 10.244.2.5
 ```
 
-클러스터의 모든 노드로 ssh 접속하고 두 IP로 curl을 할수 있어야 한다. 컨테이너는 노드의 포트 80을 사용하지 *않으며* , 트래픽을 파드로 라우팅하는 특별한 NAT 규칙도 없다는 것을 참고한다. 이것은 동일한 containerPort를 사용해서 동일한 노드에서 여러 nginx 파드를 실행하고 IP를 사용해서 클러스터의 다른 파드나 노드에서 접근할 수 있다는 의미이다. 도커와 마찬가지로 포트는 여전히 호스트 노드의 인터페이스에 게시될 수 있지만, 네트워킹 모델로 인해 포트의 필요성이 크게 줄어든다.
+이제 클러스터의 모든 노드로 ssh 접속하거나 `curl`과 같은 도구를 사용하여 두 IP 주소에 질의를 전송할 수 있을 것이다. 컨테이너는 노드의 포트 80을 사용하지 *않으며* , 트래픽을 파드로 라우팅하는 특별한 NAT 규칙도 없다는 것을 참고한다. 이것은 동일한 `containerPort`를 사용하여 동일한 노드에서 여러 nginx 파드를 실행하는 것이 가능하고, 또한 서비스에 할당된 IP 주소를 사용하여 클러스터의 다른 파드나 노드에서 접근할 수 있다는 의미이다. 호스트 노드의 특정 포트를 배후(backing) 파드로 포워드하고 싶다면, 가능은 하지만 네트워킹 모델을 사용하면 그렇게 할 필요가 없어야 한다.
 
-만약 궁금하다면 [우리가 이것을 달성하는 방법](/ko/docs/concepts/cluster-administration/networking/#쿠버네티스-네트워크-모델의-구현-방법)을 자세히 읽어본다.
+만약 궁금하다면 [쿠버네티스 네트워킹 모델](/ko/docs/concepts/cluster-administration/networking/#쿠버네티스-네트워크-모델)을 자세히 읽어본다.
 
 ## 서비스 생성하기
 
 평평하고 넓은 클러스터 전체의 주소 공간에서 nginx를 실행하는 파드가 있다고 가정하자. 이론적으로는 이러한 파드와 직접 대화할 수 있지만, 노드가 죽으면 어떻게 되는가? 파드가 함께 죽으면 디플로이먼트에서 다른 IP를 가진 새로운 파드를 생성한다. 이 문제를 서비스가 해결한다.
 
-쿠버네티스 서비스는 클러스터 어딘가에서 실행되는 논리적인 파드 집합을 정의하고 추상화함으로써 모두 동일한 기능을 제공한다. 생성시 각 서비스에는 고유한 IP 주소(clusterIP라고도 한다)가 할당된다. 이 주소는 서비스의 수명과 연관되어 있으며, 서비스가 활성화 되어있는 동안에는 변경되지 않는다. 파드는 서비스와 통신하도록 구성할 수 있으며, 서비스와의 통신은 서비스의 맴버 중 일부 파드에 자동적으로 로드-밸런싱 된다.
+쿠버네티스 서비스는 클러스터 어딘가에서 실행되는 논리적인 파드 집합을 정의하고 추상화함으로써 모두 동일한 기능을 제공한다. 생성시 각 서비스에는 고유한 IP 주소(clusterIP라고도 한다)가 할당된다. 이 주소는 서비스의 수명과 연관되어 있으며, 서비스가 활성화 되어 있는 동안에는 변경되지 않는다. 파드는 서비스와 통신하도록 구성할 수 있으며, 서비스와의 통신은 서비스의 맴버 중 일부 파드에 자동적으로 로드-밸런싱 된다.
 
 `kubectl expose` 를 사용해서 2개의 nginx 레플리카에 대한 서비스를 생성할 수 있다.
 
@@ -129,7 +131,7 @@ curl을 할 수 있을 것이다. 서비스 IP는 완전히 가상이므로 외
 
 쿠버네티스는 서비스를 찾는 두 가지 기본 모드인 환경 변수와 DNS를
 지원한다. 전자는 기본적으로 작동하지만 후자는
-[CoreDNS 클러스터 애드온](https://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/dns/coredns)이 필요하다.
+[CoreDNS 클러스터 애드온](https://releases.k8s.io/{{< param "fullversion" >}}/cluster/addons/dns/coredns)이 필요하다.
 {{< note >}}
 만약 서비스 환경 변수가 필요하지 않은 경우(소유한 프로그램과의 예상되는 충돌 가능성,
 처리할 변수가 너무 많은 경우, DNS만 사용하는 경우 등) [파드 사양](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#pod-v1-core)에서
@@ -227,7 +229,7 @@ Address 1: 10.0.162.149
 * 인증서를 사용하도록 구성된 nginx 서버
 * 파드에 접근할 수 있는 인증서를 만드는 [시크릿](/ko/docs/concepts/configuration/secret/)
 
-[nginx https 예제](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/https-nginx/)에서 이 모든 것을 얻을 수 있다. 이를 위해서는 도구를 설치해야 한다. 만약 설치하지 않으려면 나중에 수동으로 단계를 수행한다. 한마디로:
+[nginx https 예제](https://github.com/kubernetes/examples/tree/master/staging/https-nginx/)에서 이 모든 것을 얻을 수 있다. 이를 위해서는 도구를 설치해야 한다. 만약 설치하지 않으려면 나중에 수동으로 단계를 수행한다. 한마디로:
 
 ```shell
 make keys KEY=/tmp/nginx.key CERT=/tmp/nginx.crt
@@ -299,7 +301,7 @@ nginxsecret           kubernetes.io/tls                     2         1m
 nginx-secure-app의 매니페스트에 대한 주목할만한 점:
 
 - 이것은 동일한 파일에 디플로이먼트와 서비스의 사양을 모두 포함하고 있다.
-- [nginx 서버](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/https-nginx/default.conf)
+- [nginx 서버](https://github.com/kubernetes/examples/tree/master/staging/https-nginx/default.conf)
   는 포트 80에서 HTTP 트래픽을 443에서 HTTPS 트래픽 서비스를 제공하고, nginx 서비스는
   두 포트를 모두 노출한다.
 - 각 컨테이너는 `/etc/nginx/ssl` 에 마운트된 볼륨을 통해 키에 접근할 수 있다.
@@ -346,7 +348,7 @@ kubectl exec curl-deployment-1515033274-1410r -- curl https://my-nginx --cacert
 노출할 수 있다. 쿠버네티스는 이를 수행하는 2가지 방법인 NodePorts와
 LoadBalancers를지원한다. 마지막 섹션에서 생성된 서비스는 이미 `NodePort` 를 사용했기에
 노드에 공용 IP가 있는경우 nginx HTTPS 레플리카가 인터넷 트래픽을 처리할
-준비가 되어있다.
+준비가 되어 있다.
 
 ```shell
 kubectl get svc my-nginx -o yaml | grep nodePort -C 5
diff --git a/content/ko/docs/concepts/services-networking/dns-pod-service.md b/content/ko/docs/concepts/services-networking/dns-pod-service.md
index b405617118..9b4521e2b7 100644
--- a/content/ko/docs/concepts/services-networking/dns-pod-service.md
+++ b/content/ko/docs/concepts/services-networking/dns-pod-service.md
@@ -39,7 +39,7 @@ DNS 쿼리는 그것을 생성하는 파드의 네임스페이스에 따라 다
 
 DNS 쿼리는 파드의 `/etc/resolv.conf` 를 사용하여 확장될 수 있을 것이다. Kubelet은
 각 파드에 대해서 파일을 설정한다. 예를 들어, `data` 만을 위한 쿼리는
-`data.test.cluster.local` 로 확장된다. `search` 옵션의 값은
+`data.test.svc.cluster.local` 로 확장된다. `search` 옵션의 값은
 쿼리를 확장하기 위해서 사용된다. DNS 쿼리에 대해 더 자세히 알고 싶은 경우,
 [`resolv.conf` 설명 페이지.](https://www.man7.org/linux/man-pages/man5/resolv.conf.5.html)를 참고한다.
 
@@ -106,10 +106,9 @@ SRV 레코드는 노멀 서비스 또는
 
 `172-17-0-3.default.pod.cluster.local`.
 
-서비스에 의해 노출된 디플로이먼트(Deployment)나 데몬셋(DaemonSet)에 의해 생성된
-모든 파드는 다음과 같은 DNS 주소를 갖는다.
+서비스에 의해 노출된 모든 파드는 다음과 같은 DNS 주소를 갖는다.
 
-`pod-ip-address.deployment-name.my-namespace.svc.cluster-domain.example`.
+`pod-ip-address.service-name.my-namespace.svc.cluster-domain.example`.
 
 ### 파드의 hostname 및 subdomain 필드
 
@@ -197,7 +196,7 @@ A 또는 AAAA 레코드만 생성할 수 있다. (`default-subdomain.my-namespac
 
 ### 파드의 setHostnameAsFQDN 필드 {#pod-sethostnameasfqdn-field}
 
-{{< feature-state for_k8s_version="v1.20" state="beta" >}}
+{{< feature-state for_k8s_version="v1.22" state="stable" >}}
 
 파드가 전체 주소 도메인 이름(FQDN)을 갖도록 구성된 경우, 해당 호스트네임은 짧은 호스트네임이다. 예를 들어, 전체 주소 도메인 이름이 `busybox-1.default-subdomain.my-namespace.svc.cluster-domain.example` 인 파드가 있는 경우, 기본적으로 해당 파드 내부의 `hostname` 명령어는 `busybox-1` 을 반환하고 `hostname --fqdn` 명령은 FQDN을 반환한다.
 
@@ -217,13 +216,13 @@ DNS 정책은 파드별로 설정할 수 있다.
 
 - "`Default`": 파드는 파드가 실행되고 있는 노드로부터 네임 해석 설정(the name resolution configuration)을 상속받는다.
   자세한 내용은
-  [관련 논의](/ko/docs/tasks/administer-cluster/dns-custom-nameservers/)에서
+  [관련 논의](/ko/docs/tasks/administer-cluster/dns-custom-nameservers)에서
   확인할 수 있다.
 - "`ClusterFirst`": "`www.kubernetes.io`"와 같이 클러스터 도메인 suffix 구성과
   일치하지 않는 DNS 쿼리는 노드에서 상속된 업스트림 네임서버로 전달된다.
   클러스터 관리자는 추가 스텁-도메인(stub-domain)과 업스트림 DNS 서버를 구축할 수 있다.
   그러한 경우 DNS 쿼리를 어떻게 처리하는지에 대한 자세한 내용은
-  [관련 논의](/ko/docs/tasks/administer-cluster/dns-custom-nameservers/)에서
+  [관련 논의](/ko/docs/tasks/administer-cluster/dns-custom-nameservers)에서
   확인할 수 있다.
 - "`ClusterFirstWithHostNet`": hostNetwork에서 running 상태인 파드의 경우 DNS 정책인
   "`ClusterFirstWithHostNet`"을 명시적으로 설정해야 한다.
@@ -233,7 +232,7 @@ DNS 정책은 파드별로 설정할 수 있다.
   자세한 내용을 확인할 수 있다.
 
 {{< note >}}
-"Default"는 기본 DNS 정책이 아니다. `dnsPolicy`가 명시적으로 지정되어있지 않다면
+"Default"는 기본 DNS 정책이 아니다. `dnsPolicy`가 명시적으로 지정되어 있지 않다면
 "ClusterFirst"가 기본값으로 사용된다.
 {{< /note >}}
 
@@ -313,6 +312,17 @@ search default.svc.cluster-domain.example svc.cluster-domain.example cluster-dom
 options ndots:5
 ```
 
+#### 확장된 DNS 환경 설정
+
+{{< feature-state for_k8s_version="1.22" state="alpha" >}}
+
+쿠버네티스는 파드의 DNS 환경 설정을 위해 기본적으로 최대 6개의 탐색 도메인과 
+최대 256자의 탐색 도메인 목록을 허용한다.
+
+kube-apiserver와 kubelet에 `ExpandedDNSConfig` 기능 게이트가 활성화되어 있으면, 
+쿠버네티스는 최대 32개의 탐색 도메인과 
+최대 2048자의 탐색 도메인 목록을 허용한다.
+
 ## {{% heading "whatsnext" %}}
 
 
diff --git a/content/ko/docs/concepts/services-networking/dual-stack.md b/content/ko/docs/concepts/services-networking/dual-stack.md
index 821ca34989..1e8c9c2a03 100644
--- a/content/ko/docs/concepts/services-networking/dual-stack.md
+++ b/content/ko/docs/concepts/services-networking/dual-stack.md
@@ -1,4 +1,9 @@
 ---
+
+
+
+
+
 title: IPv4/IPv6 이중 스택
 feature:
   title: IPv4/IPv6 이중 스택
@@ -11,7 +16,7 @@ weight: 70
 
 <!-- overview -->
 
-{{< feature-state for_k8s_version="v1.21" state="beta" >}}
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
 
 IPv4/IPv6 이중 스택 네트워킹을 사용하면 {{< glossary_tooltip text="파드" term_id="pod" >}}와 {{< glossary_tooltip text="서비스" term_id="service" >}}에 IPv4와 IPv6 주소를 모두 할당할 수 있다.
 
@@ -38,12 +43,10 @@ IPv4/IPv6 이중 스택 쿠버네티스 클러스터를 활용하려면 다음
      쿠버네티스 버전, 쿠버네티스 해당 버전에 대한
      문서 참조
    * 이중 스택 네트워킹을 위한 공급자의 지원(클라우드 공급자 또는 다른 방식으로 쿠버네티스 노드에 라우팅 가능한 IPv4/IPv6 네트워크 인터페이스를 제공할 수 있어야 한다.)
-   * 이중 스택(예: Kubenet 또는 Calico)을 지원하는 네트워크 플러그인
+   * 이중 스택 네트워킹을 지원하는 [네트워크 플러그인](/ko/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)
 
 ## IPv4/IPv6 이중 스택 구성
 
-IPv4/IPv6 이중 스택을 사용하려면, 클러스터의 관련 구성 요소에 대해 `IPv6DualStack` [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 활성화한다. (1.21부터 IPv4/IPv6 이중 스택이 기본적으로 활성화된다.)
-
 IPv4/IPv6 이중 스택을 구성하려면, 이중 스택 클러스터 네트워크 할당을 설정한다.
 
    * kube-apiserver:
@@ -54,15 +57,20 @@ IPv4/IPv6 이중 스택을 구성하려면, 이중 스택 클러스터 네트워
       * `--node-cidr-mask-size-ipv4|--node-cidr-mask-size-ipv6` IPv4의 기본값은 /24 이고 IPv6의 기본값은 /64 이다.
    * kube-proxy:
       * `--cluster-cidr=<IPv4 CIDR>,<IPv6 CIDR>`
+   * kubelet:
+      * `--cloud-provider`가 명시되지 않았다면 
+        관리자는 해당 노드에 듀얼 스택 `.status.addresses`를 수동으로 설정하기 위해 
+        쉼표로 구분된 IP 주소 쌍을 `--node-ip` 플래그로 전달할 수 있다.
+        해당 노드의 파드가 HostNetwork 모드로 실행된다면, 
+        파드는 이 IP 주소들을 자신의 `.status.podIPs` 필드에 보고한다.
+        노드의 모든 `podIPs`는 해당 노드의 `.status.addresses` 필드에 의해 정의된 
+        IP 패밀리 선호사항을 만족한다.
 
 {{< note >}}
 IPv4 CIDR의 예: `10.244.0.0/16` (자신의 주소 범위를 제공하더라도)
 
 IPv6 CIDR의 예: `fdXY:IJKL:MNOP:15::/64` (이 형식으로 표시되지만, 유효한 주소는 아니다 - [RFC 4193](https://tools.ietf.org/html/rfc4193)을 본다.)
 
-1.21부터, IPv4/IPv6 이중 스택은 기본적으로 활성화된다.
-필요한 경우 kube-apiserver, kube-controller-manager, kubelet 및 kube-proxy 커맨드 라인에
-`--feature-gates="IPv6DualStack=false"` 를 지정하여 비활성화할 수 있다.
 {{< /note >}}
 
 ## 서비스
@@ -76,7 +84,7 @@ IPv4, IPv6 또는 둘 다를 사용할 수 있는 {{< glossary_tooltip text="서
 
 * `SingleStack`: 단일 스택 서비스. 컨트롤 플레인은 첫 번째로 구성된 서비스 클러스터 IP 범위를 사용하여 서비스에 대한 클러스터 IP를 할당한다.
 * `PreferDualStack`:
-  * 서비스에 IPv4 및 IPv6 클러스터 IP를 할당한다. (클러스터에 `--feature-gates="IPv6DualStack=false"` 가 있는 경우, 이 설정은 `SingleStack` 과 동일한 동작을 따른다.)
+  * 서비스에 IPv4 및 IPv6 클러스터 IP를 할당한다.
 * `RequireDualStack`: IPv4 및 IPv6 주소 범위 모두에서 서비스 `.spec.ClusterIPs`를 할당한다.
   * `.spec.ipFamilies` 배열의 첫 번째 요소의 주소 계열을 기반으로 `.spec.ClusterIPs` 목록에서 `.spec.ClusterIP`를 선택한다.
 
@@ -119,7 +127,7 @@ IPv4, IPv6 또는 둘 다를 사용할 수 있는 {{< glossary_tooltip text="서
 
 #### 기존 서비스의 이중 스택 기본값
 
-이 예제는 서비스가 이미 있는 클러스터에서 이중 스택이 새로 활성화된 경우의 기본 동작을 보여준다. (`--feature-gates="IPv6DualStack=false"` 가 설정되지 않은 경우 기존 클러스터를 1.21로 업그레이드하면 이중 스택이 활성화된다.)
+이 예제는 서비스가 이미 있는 클러스터에서 이중 스택이 새로 활성화된 경우의 기본 동작을 보여준다. (기존 클러스터를 1.21 이상으로 업그레이드하면 이중 스택이 활성화된다.)
 
 1. 클러스터에서 이중 스택이 활성화된 경우 기존 서비스 (`IPv4` 또는 `IPv6`)는 컨트롤 플레인이 `.spec.ipFamilyPolicy`를 `SingleStack`으로 지정하고 `.spec.ipFamilies`를 기존 서비스의 주소 계열로 설정한다. 기존 서비스 클러스터 IP는 `.spec.ClusterIPs`에 저장한다.
 
diff --git a/content/ko/docs/concepts/services-networking/endpoint-slices.md b/content/ko/docs/concepts/services-networking/endpoint-slices.md
index 4ea1281faa..7a3c2f0e0e 100644
--- a/content/ko/docs/concepts/services-networking/endpoint-slices.md
+++ b/content/ko/docs/concepts/services-networking/endpoint-slices.md
@@ -1,4 +1,6 @@
 ---
+
+
 title: 엔드포인트슬라이스
 content_type: concept
 weight: 45
@@ -144,12 +146,12 @@ endpoints:
 v1 API에서는, 전용 필드 `nodeName` 및 `zone` 을 위해 엔드 포인트별
 `topology` 가 효과적으로 제거되었다.
 
-`EndpointSlice` 리소스의 `endpoint` 필드에 임의의 토폴로지 필드를
-설정하는 것은 더 이상 사용되지 않으며, v1 API에서 지원되지 않는다. 대신,
-v1 API는 개별 `nodeName` 및 `zone` 필드 설정을 지원한다. 이러한
-필드는 API 버전 간에 자동으로 번역된다. 예를 들어,
-v1beta1 API의 `topology` 필드에 있는 `"topology.kubernetes.io/zone"`
-키 값은 v1 API의 `zone` 필드로 접근할 수 있다.
+`EndpointSlice` 리소스의 `endpoint` 필드에 임의의 토폴로지 필드를 설정하는 것은 
+더 이상 사용되지 않으며 v1 API에서 지원되지 않는다. 
+대신, v1 API는 개별 `nodeName` 및 `zone` 필드 설정을 지원한다. 
+이러한 필드는 API 버전 간에 자동으로 번역된다. 
+예를 들어, v1beta1 API의 `topology` 필드에 있는 `"topology.kubernetes.io/zone"` 키 값은 
+v1 API의 `zone` 필드로 접근할 수 있다.
 {{< /note >}}
 
 ### 관리
diff --git a/content/ko/docs/concepts/services-networking/ingress-controllers.md b/content/ko/docs/concepts/services-networking/ingress-controllers.md
index 41524039f0..67073efa4c 100644
--- a/content/ko/docs/concepts/services-networking/ingress-controllers.md
+++ b/content/ko/docs/concepts/services-networking/ingress-controllers.md
@@ -23,15 +23,17 @@ weight: 40
 
 {{% thirdparty-content %}}
 
-* [AKS 애플리케이션 게이트웨이 인그레스 컨트롤러](https://azure.github.io/application-gateway-kubernetes-ingress/)는 [Azure 애플리케이션 게이트웨이](https://docs.microsoft.com)를 구성하는 인그레스 컨트롤러다.
+* [AKS 애플리케이션 게이트웨이 인그레스 컨트롤러](https://docs.microsoft.com/azure/application-gateway/tutorial-ingress-controller-add-on-existing?toc=https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Faks%2Ftoc.json&bc=https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Fbread%2Ftoc.json)는 [Azure 애플리케이션 게이트웨이](https://docs.microsoft.com/azure/application-gateway/overview)를 구성하는 인그레스 컨트롤러다.
 * [Ambassador](https://www.getambassador.io/) API 게이트웨이는 [Envoy](https://www.envoyproxy.io) 기반 인그레스
   컨트롤러다.
 * [Apache APISIX 인그레스 컨트롤러](https://github.com/apache/apisix-ingress-controller)는 [Apache APISIX](https://github.com/apache/apisix) 기반의 인그레스 컨트롤러이다.
 * [Avi 쿠버네티스 오퍼레이터](https://github.com/vmware/load-balancer-and-ingress-services-for-kubernetes)는 [VMware NSX Advanced Load Balancer](https://avinetworks.com/)을 사용하는 L4-L7 로드 밸런싱을 제공한다.
+* [BFE Ingress Controller](https://github.com/bfenetworks/ingress-bfe)는 [BFE](https://www.bfe-networks.net) 기반 인그레스 컨트롤러다.
 * [Citrix 인그레스 컨트롤러](https://github.com/citrix/citrix-k8s-ingress-controller#readme)는
   Citrix 애플리케이션 딜리버리 컨트롤러에서 작동한다.
 * [Contour](https://projectcontour.io/)는 [Envoy](https://www.envoyproxy.io/) 기반 인그레스 컨트롤러다.
 * [EnRoute](https://getenroute.io/)는 인그레스 컨트롤러로 실행할 수 있는 [Envoy](https://www.envoyproxy.io) 기반 API 게이트웨이다.
+* [Easegress IngressController](https://github.com/megaease/easegress/blob/main/doc/reference/ingresscontroller.md)는 인그레스 컨트롤러로서 실행할 수 있는 [Easegress](https://megaease.com/easegress/) 기반 API 게이트웨이다.
 * F5 BIG-IP [쿠버네티스 용 컨테이너 인그레스 서비스](https://clouddocs.f5.com/containers/latest/userguide/kubernetes/)를
   이용하면 인그레스를 사용하여 F5 BIG-IP 가상 서버를 구성할 수 있다.
 * [Gloo](https://gloo.solo.io)는 API 게이트웨이 기능을 제공하는 [Envoy](https://www.envoyproxy.io) 기반의
@@ -46,6 +48,7 @@ weight: 40
   구동하는 인그레스 컨트롤러다.
 * [쿠버네티스 용 NGINX 인그레스 컨트롤러](https://www.nginx.com/products/nginx-ingress-controller/)는 [NGINX](https://www.nginx.com/resources/glossary/nginx/)
   웹서버(프록시로 사용)와 함께 작동한다.
+* [Pomerium 인그레스 컨트롤러](https://www.pomerium.com/docs/k8s/ingress.html)는 [Pomerium](https://pomerium.com/) 기반 인그레스 컨트롤러이며, 상황 인지 접근 정책을 제공한다.
 * [Skipper](https://opensource.zalando.com/skipper/kubernetes/ingress-controller/)는 사용자의 커스텀 프록시를 구축하기 위한 라이브러리로 설계된 쿠버네티스 인그레스와 같은 유스케이스를 포함한 서비스 구성을 위한 HTTP 라우터 및 역방향 프록시다.
 * [Traefik 쿠버네티스 인그레스 제공자](https://doc.traefik.io/traefik/providers/kubernetes-ingress/)는
   [Traefik](https://traefik.io/traefik/) 프록시 용 인그레스 컨트롤러다.
@@ -75,4 +78,4 @@ weight: 40
 
 
 * [인그레스](/ko/docs/concepts/services-networking/ingress/)에 대해 자세히 알아보기.
-* [NGINX 컨트롤러로 Minikube에서 인그레스를 설정하기](/docs/tasks/access-application-cluster/ingress-minikube).
+* [NGINX 컨트롤러로 Minikube에서 인그레스를 설정하기](/ko/docs/tasks/access-application-cluster/ingress-minikube/).
diff --git a/content/ko/docs/concepts/services-networking/ingress.md b/content/ko/docs/concepts/services-networking/ingress.md
index 802cc486bf..ba281bf659 100644
--- a/content/ko/docs/concepts/services-networking/ingress.md
+++ b/content/ko/docs/concepts/services-networking/ingress.md
@@ -1,4 +1,6 @@
 ---
+
+
 title: 인그레스(Ingress)
 content_type: concept
 weight: 40
@@ -24,7 +26,7 @@ weight: 40
 ## 인그레스란?
 
 [인그레스](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#ingress-v1-networking-k8s-io)는 클러스터 외부에서 클러스터 내부
-{{< link text="서비스" url="/docs/concepts/services-networking/service/" >}}로 HTTP와 HTTPS 경로를 노출한다.
+{{< link text="서비스" url="/ko/docs/concepts/services-networking/service/" >}}로 HTTP와 HTTPS 경로를 노출한다.
 트래픽 라우팅은 인그레스 리소스에 정의된 규칙에 의해 컨트롤된다.
 
 다음은 인그레스가 모든 트래픽을 하나의 서비스로 보내는 간단한 예시이다.
@@ -49,7 +51,7 @@ graph LR;
 인그레스는 외부에서 서비스로 접속이 가능한 URL, 로드 밸런스 트래픽, SSL / TLS 종료 그리고 이름-기반의 가상 호스팅을 제공하도록 구성할 수 있다. [인그레스 컨트롤러](/ko/docs/concepts/services-networking/ingress-controllers)는 일반적으로 로드 밸런서를 사용해서 인그레스를 수행할 책임이 있으며, 트래픽을 처리하는데 도움이 되도록 에지 라우터 또는 추가 프런트 엔드를 구성할 수도 있다.
 
 인그레스는 임의의 포트 또는 프로토콜을 노출시키지 않는다. HTTP와 HTTPS 이외의 서비스를 인터넷에 노출하려면 보통
-[Service.Type=NodePort](/ko/docs/concepts/services-networking/service/#nodeport) 또는
+[Service.Type=NodePort](/ko/docs/concepts/services-networking/service/#type-nodeport) 또는
 [Service.Type=LoadBalancer](/ko/docs/concepts/services-networking/service/#loadbalancer) 유형의 서비스를 사용한다.
 
 ## 전제 조건들
@@ -72,13 +74,13 @@ graph LR;
 
 {{< codenew file="service/networking/minimal-ingress.yaml" >}}
 
-다른 모든 쿠버네티스 리소스와 마찬가지로 인그레스에는 `apiVersion`, `kind`, 그리고 `metadata` 필드가 필요하다.
+인그레스에는 `apiVersion`, `kind`, `metadata` 및 `spec` 필드가 명시되어야 한다.
 인그레스 오브젝트의 이름은 유효한
 [DNS 서브도메인 이름](/ko/docs/concepts/overview/working-with-objects/names/#dns-서브도메인-이름)이어야 한다.
-설정 파일의 작성에 대한 일반적인 내용은 [애플리케이션 배포하기](/docs/tasks/run-application/run-stateless-application-deployment/), [컨테이너 구성하기](/docs/tasks/configure-pod-container/configure-pod-configmap/), [리소스 관리하기](/ko/docs/concepts/cluster-administration/manage-deployment/)를 참조한다.
+설정 파일의 작성에 대한 일반적인 내용은 [애플리케이션 배포하기](/ko/docs/tasks/run-application/run-stateless-application-deployment/), [컨테이너 구성하기](/docs/tasks/configure-pod-container/configure-pod-configmap/), [리소스 관리하기](/ko/docs/concepts/cluster-administration/manage-deployment/)를 참조한다.
  인그레스는 종종 어노테이션을 이용해서 인그레스 컨트롤러에 따라 몇 가지 옵션을 구성하는데,
  그 예시는 [재작성-타겟 어노테이션](https://github.com/kubernetes/ingress-nginx/blob/master/docs/examples/rewrite/README.md)이다.
-다른 [인그레스 컨트롤러](/ko/docs/concepts/services-networking/ingress-controllers)는 다른 어노테이션을 지원한다.
+서로 다른 [인그레스 컨트롤러](/ko/docs/concepts/services-networking/ingress-controllers)는 서로 다른 어노테이션을 지원한다.
  지원되는 어노테이션을 확인하려면 선택한 인그레스 컨트롤러의 설명서를 검토한다.
 
 인그레스 [사양](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status)
@@ -86,6 +88,15 @@ graph LR;
 들어오는 요청과 일치하는 규칙 목록을 포함하는 것이다. 인그레스 리소스는 HTTP(S) 트래픽을
 지시하는 규칙만 지원한다.
 
+`ingressClassName`을 생략하려면, [기본 인그레스 클래스](#default-ingress-class)가 
+정의되어 있어야 한다.
+
+몇몇 인그레스 컨트롤러는 기본 `IngressClass`가 정의되어 있지 않아도 동작한다. 
+예를 들어, Ingress-NGINX 컨트롤러는 `--watch-ingress-without-class` 
+[플래그](https://kubernetes.github.io/ingress-nginx/#what-is-the-flag-watch-ingress-without-class)를 이용하여 구성될 수 있다. 
+하지만 [아래](#default-ingress-class)에 나와 있는 것과 같이 기본 `IngressClass`를 명시하는 것을 
+[권장](https://kubernetes.github.io/ingress-nginx/#i-have-only-one-instance-of-the-ingresss-nginx-controller-in-my-cluster-what-should-i-do)한다.
+
 ### 인그레스 규칙
 
 각 HTTP 규칙에는 다음의 정보가 포함된다.
@@ -107,8 +118,14 @@ graph LR;
 
 ### DefaultBackend {#default-backend}
 
-규칙이 없는 인그레스는 모든 트래픽을 단일 기본 백엔드로 전송한다. `defaultBackend` 는 일반적으로
-[인그레스 컨트롤러](/ko/docs/concepts/services-networking/ingress-controllers)의 구성 옵션이며, 인그레스 리소스에 지정되어 있지 않다.
+규칙이 없는 인그레스는 모든 트래픽을 단일 기본 백엔드로 전송하며, 
+`.spec.defaultBackend`는 이와 같은 경우에 요청을 처리할 백엔드를 지정한다. 
+`defaultBackend` 는 일반적으로 [인그레스 컨트롤러](/ko/docs/concepts/services-networking/ingress-controllers)의 구성 옵션이며, 
+인그레스 리소스에 지정되어 있지 않다. 
+`.spec.rules` 가 명시되어 있지 않으면, 
+`.spec.defaultBackend` 는 반드시 명시되어 있어야 한다. 
+`defaultBackend` 가 설정되어 있지 않으면, 어느 규칙에도 해당되지 않는 요청의 처리는 인그레스 컨트롤러의 구현을 따른다(이러한 
+경우를 어떻게 처리하는지 알아보려면 해당 인그레스 컨트롤러 문서를 참고한다).
 
 만약 인그레스 오브젝트의 HTTP 요청과 일치하는 호스트 또는 경로가 없으면, 트래픽은
 기본 백엔드로 라우팅 된다.
@@ -162,8 +179,8 @@ Events:       <none>
   요청은 _p_ 경로에 일치한다.
 
   {{< note >}} 경로의 마지막 요소가 요청 경로에 있는 마지막
-  요소의 하위 문자열인 경우에는 일치하지 않는다(예시: `/foo/bar` 와
-  `/foo/bar/baz` 와 일치하지만, `/foo/barbaz` 는 일치하지 않는다). {{< /note >}}
+  요소의 하위 문자열인 경우에는 일치하지 않는다(예시: `/foo/bar` 는
+  `/foo/bar/baz` 와 일치하지만, `/foo/barbaz` 와는 일치하지 않는다). {{< /note >}}
 
 ### 예제
 
@@ -217,20 +234,98 @@ Events:       <none>
 
 {{< codenew file="service/networking/external-lb.yaml" >}}
 
-IngressClass 리소스에는 선택적인 파라미터 필드가 있다. 이 클래스에 대한
-추가 구현 별 구성을 참조하는데 사용할 수 있다.
+인그레스클래스의 `.spec.parameters` 필드를 사용하여 
+해당 인그레스클래스와 연관있는 환경 설정을 제공하는 다른 리소스를 참조할 수 있다.
 
-#### 네임스페이스 범위의 파라미터
+사용 가능한 파라미터의 상세한 타입은 
+인그레스클래스의 `.spec.parameters` 필드에 명시한 인그레스 컨트롤러의 종류에 따라 다르다.
 
-{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+### 인그레스클래스 범위
 
-`Parameters` 필드에는 인그레스 클래스 구성을 위해 네임스페이스 별 리소스를 참조하는 데
-사용할 수 있는 `scope` 및 `namespace` 필드가 있다.
-`Scope` 필드의 기본값은 `Cluster` 이다. 즉, 기본값은 클러스터 범위의
-리소스이다. `Scope` 를 `Namespace` 로 설정하고 `Namespace` 필드를
-설정하면 특정 네임스페이스의 파라미터 리소스를 참조한다.
+인그레스 컨트롤러의 종류에 따라, 클러스터 범위로 설정한 파라미터의 사용이 가능할 수도 있고, 
+또는 한 네임스페이스에서만 사용 가능할 수도 있다.
 
-{{< codenew file="service/networking/namespaced-params.yaml" >}}
+{{< tabs name="tabs_ingressclass_parameter_scope" >}}
+{{% tab name="클러스터" %}}
+인그레스클래스 파라미터의 기본 범위는 클러스터 범위이다.
+
+`.spec.parameters` 필드만 설정하고 `.spec.parameters.scope` 필드는 지정하지 않거나,
+`.spec.parameters.scope` 필드를 `Cluster`로 지정하면, 
+인그레스클래스는 클러스터 범위의 리소스를 참조한다.
+파라미터의 `kind`(+`apiGroup`)는 
+클러스터 범위의 API (커스텀 리소스일 수도 있음) 를 참조하며, 
+파라미터의 `name`은 
+해당 API에 대한 특정 클러스터 범위 리소스를 가리킨다.
+
+예시는 다음과 같다.
+```yaml
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  name: external-lb-1
+spec:
+  controller: example.com/ingress-controller
+  parameters:
+    # 이 인그레스클래스에 대한 파라미터는 "external-config-1" 라는
+    # ClusterIngressParameter(API 그룹 k8s.example.net)에 기재되어 있다.
+    # 이 정의는 쿠버네티스가 
+    # 클러스터 범위의 파라미터 리소스를 검색하도록 한다.
+    scope: Cluster
+    apiGroup: k8s.example.net
+    kind: ClusterIngressParameter
+    name: external-config-1
+```
+{{% /tab %}}
+{{% tab name="네임스페이스" %}}
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
+
+`.spec.parameters` 필드를 설정하고 
+`.spec.parameters.scope` 필드를 `Namespace`로 지정하면, 
+인그레스클래스는 네임스페이스 범위의 리소스를 참조한다. 
+사용하고자 하는 파라미터가 속한 네임스페이스를 
+`.spec.parameters` 의 `namespace` 필드에 설정해야 한다.
+
+파라미터의 `kind`(+`apiGroup`)는 
+네임스페이스 범위의 API (예: 컨피그맵) 를 참조하며, 
+파라미터의 `name`은 
+`namespace`에 명시한 네임스페이스의 특정 리소스를 가리킨다.
+
+네임스페이스 범위의 파라미터를 이용하여, 
+클러스터 운영자가 워크로드에 사용되는 환경 설정(예: 로드 밸런서 설정, API 게이트웨이 정의)에 대한 제어를 위임할 수 있다.
+클러스터 범위의 파라미터를 사용했다면 다음 중 하나에 해당된다.
+
+- 다른 팀의 새로운 환경 설정 변경을 적용하려고 할 때마다 
+  클러스터 운영 팀이 매번 승인을 해야 한다. 또는,
+- 애플리케이션 팀이 클러스터 범위 파라미터 리소스를 변경할 수 있게 하는 
+  [RBAC](/docs/reference/access-authn-authz/rbac/) 롤, 바인딩 등의 특별 접근 제어를 
+  클러스터 운영자가 정의해야 한다.
+
+인그레스클래스 API 자신은 항상 클러스터 범위이다.
+
+네임스페이스 범위의 파라미터를 참조하는 인그레스클래스 예시가 
+다음과 같다.
+```yaml
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  name: external-lb-2
+spec:
+  controller: example.com/ingress-controller
+  parameters:
+    # 이 인그레스클래스에 대한 파라미터는 
+    # "external-configuration" 네임스페이스에 있는
+    # "external-config" 라는 IngressParameter(API 그룹 k8s.example.com)에 기재되어 있다.
+    scope: Namespace
+    apiGroup: k8s.example.com
+    kind: IngressParameter
+    namespace: external-configuration
+    name: external-config
+```
+
+{{% /tab %}}
+{{< /tabs >}}
 
 ### 사용중단(Deprecated) 어노테이션
 
@@ -259,6 +354,14 @@ IngressClass 리소스에는 선택적인 파라미터 필드가 있다. 이 클
 기본값으로 표시하도록 해서 이 문제를 해결할 수 있다.
 {{< /caution >}}
 
+몇몇 인그레스 컨트롤러는 기본 `IngressClass`가 정의되어 있지 않아도 동작한다. 
+예를 들어, Ingress-NGINX 컨트롤러는 `--watch-ingress-without-class` 
+[플래그](https://kubernetes.github.io/ingress-nginx/#what-is-the-flag-watch-ingress-without-class)를 이용하여 구성될 수 있다. 
+하지만 다음과 같이 기본 `IngressClass`를 명시하는 것을 
+[권장](https://kubernetes.github.io/ingress-nginx/#i-have-only-one-instance-of-the-ingresss-nginx-controller-in-my-cluster-what-should-i-do)한다.
+
+{{< codenew file="service/networking/default-ingressclass.yaml" >}}
+
 ## 인그레스 유형들
 
 ### 단일 서비스로 지원되는 인그레스 {#single-service-ingress}
@@ -388,9 +491,7 @@ graph LR;
 트래픽을 일치 시킬 수 있다.
 
 예를 들어, 다음 인그레스는 `first.bar.com`에 요청된 트래픽을
-`service1`로, `second.bar.com`는 `service2`로, 호스트 이름이 정의되지
-않은(즉, 요청 헤더가 표시 되지 않는) IP 주소로의 모든
-트래픽은 `service3`로 라우팅 한다.
+`service1`로, `second.bar.com`는 `service2`로, 그리고 요청 헤더가 `first.bar.com` 또는 `second.bar.com`에 해당되지 않는 모든 트래픽을 `service3`로 라우팅한다.
 
 {{< codenew file="service/networking/name-virtual-host-ingress-no-third-host.yaml" >}}
 
@@ -557,12 +658,12 @@ Events:
 사용자는 인그레스 리소스를 직접적으로 포함하지 않는 여러가지 방법으로 서비스를 노출할 수 있다.
 
 * [Service.Type=LoadBalancer](/ko/docs/concepts/services-networking/service/#loadbalancer) 사용.
-* [Service.Type=NodePort](/ko/docs/concepts/services-networking/service/#nodeport) 사용.
+* [Service.Type=NodePort](/ko/docs/concepts/services-networking/service/#type-nodeport) 사용.
 
 
 
 ## {{% heading "whatsnext" %}}
 
-* [인그레스 API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#ingress-v1beta1-networking-k8s-io)에 대해 배우기
+* [인그레스](/docs/reference/kubernetes-api/service-resources/ingress-v1/) API에 대해 배우기
 * [인그레스 컨트롤러](/ko/docs/concepts/services-networking/ingress-controllers/)에 대해 배우기
-* [NGINX 컨트롤러로 Minikube에서 인그레스 구성하기](/docs/tasks/access-application-cluster/ingress-minikube/)
+* [NGINX 컨트롤러로 Minikube에서 인그레스 구성하기](/ko/docs/tasks/access-application-cluster/ingress-minikube/)
diff --git a/content/ko/docs/concepts/services-networking/network-policies.md b/content/ko/docs/concepts/services-networking/network-policies.md
index 5a9b16a309..f72d1f0cff 100644
--- a/content/ko/docs/concepts/services-networking/network-policies.md
+++ b/content/ko/docs/concepts/services-networking/network-policies.md
@@ -10,7 +10,7 @@ weight: 50
 
 <!-- overview -->
 
-IP 주소 또는 포트 수준(OSI 계층 3 또는 4)에서 트래픽 흐름을 제어하려는 경우, 클러스터의 특정 애플리케이션에 대해 쿠버네티스 네트워크폴리시(NetworkPolicy) 사용을 고려할 수 있다. 네트워크폴리시는 {{< glossary_tooltip text="파드" term_id="pod" >}}가 네트워크 상의 다양한 네트워크 "엔티티"(여기서는 "엔티티"를 사용하여 쿠버네티스에서 특별한 의미로 사용되는 "엔드포인트" 및 "서비스"와 같은 일반적인 용어가 중의적으로 표현되는 것을 방지함)와 통신할 수 있도록 허용하는 방법을 지정할 수 있는 애플리케이션 중심 구조이다.
+IP 주소 또는 포트 수준(OSI 계층 3 또는 4)에서 트래픽 흐름을 제어하려는 경우, 클러스터의 특정 애플리케이션에 대해 쿠버네티스 네트워크폴리시(NetworkPolicy) 사용을 고려할 수 있다. 네트워크폴리시는 {{< glossary_tooltip text="파드" term_id="pod" >}}가 네트워크 상의 다양한 네트워크 "엔티티"(여기서는 "엔티티"를 사용하여 쿠버네티스에서 특별한 의미로 사용되는 "엔드포인트" 및 "서비스"와 같은 일반적인 용어가 중의적으로 표현되는 것을 방지함)와 통신할 수 있도록 허용하는 방법을 지정할 수 있는 애플리케이션 중심 구조이다. 네트워크폴리시는 한쪽 또는 양쪽 종단이 파드인 연결에만 적용되며, 다른 연결에는 관여하지 않는다.
 
 파드가 통신할 수 있는 엔티티는 다음 3개의 식별자 조합을 통해 식별된다.
 
@@ -27,15 +27,17 @@ pod- 또는 namespace- 기반의 네트워크폴리시를 정의할 때, {{< glo
 
 네트워크 정책은 [네트워크 플러그인](/ko/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)으로 구현된다. 네트워크 정책을 사용하려면 네트워크폴리시를 지원하는 네트워킹 솔루션을 사용해야만 한다. 이를 구현하는 컨트롤러 없이 네트워크폴리시 리소스를 생성해도 아무런 효과가 없기 때문이다.
 
-## 격리 및 격리되지 않은 파드
+## 파드 격리의 두 가지 종류
 
-기본적으로, 파드는 격리되지 않는다. 이들은 모든 소스에서 오는 트래픽을 받아들인다.
+파드 격리에는 이그레스에 대한 격리와 인그레스에 대한 격리의 두 가지 종류가 있다. 이들은 어떤 연결이 성립될지에 대해 관여한다. 여기서 "격리"는 절대적인 것이 아니라, "일부 제한이 적용됨"을 의미한다. 반대말인 "이그레스/인그레스에 대한 비격리"는 각 방향에 대해 제한이 적용되지 않음을 의미한다. 두 종류의 격리(또는 비격리)는 독립적으로 선언되며, 두 종류 모두 파드 간 연결과 연관된다.
 
-파드는 파드를 선택한 네트워크폴리시에 의해서 격리된다. 네임스페이스에 특정 파드를 선택하는 네트워크폴리시가 있으면 해당 파드는 네트워크폴리시에서 허용하지 않는 모든 연결을 거부한다. (네임스페이스 내에서 어떠한 네트워크폴리시에도 선택 받지 않은 다른 파드들은 계속해서 모든 트래픽을 받아들인다.)
+기본적으로, 파드는 이그레스에 대해 비격리되어 있다. 즉, 모든 아웃바운드 연결이 허용된다. 해당 파드에 적용되면서 `policyTypes`에 "Egress"가 있는 NetworkPolicy가 존재하는 경우, 파드가 이그레스에 대해 격리된다. 이러한 정책은 파드의 이그레스에 적용된다고 말한다. 파드가 이그레스에 대해 격리되면, 파드에서 나가는 연결 중에서 파드의 이그레스에 적용된 NetworkPolicy의 `egress` 리스트에 허용된 연결만이 허용된다. `egress` 리스트 각 항목의 효과는 합산되어 적용된다.
 
-네트워크 정책은 충돌하지 않으며, 추가된다. 만약 어떤 정책 또는 정책들이 파드를 선택하면, 해당 정책의 인그레스(수신)/이그레스(송신) 규칙을 통합하여 허용되는 범위로 파드가 제한된다. 따라서 평가 순서는 정책 결과에 영향을 미치지 않는다.
+기본적으로, 파드는 인그레스에 대해 비격리되어 있다. 즉, 모든 인바운드 연결이 허용된다. 해당 파드에 적용되면서 `policyTypes`에 "Ingress"가 있는 NetworkPolicy가 존재하는 경우, 파드가 인그레스에 대해 격리된다. 이러한 정책은 파드의 인그레스에 적용된다고 말한다. 파드가 인그레스에 대해 격리되면, 파드로 들어오는 연결 중에서 파드의 인그레스에 적용된 NetworkPolicy의 `ingress` 리스트에 허용된 연결만이 허용된다. `ingress` 리스트 각 항목의 효과는 합산되어 적용된다.
 
-두 파드간 네트워크 흐름을 허용하기 위해서는, 소스 파드의 이그레스 정책과 목적지 파드의 인그레스 정책 모두가 해당 트래픽을 허용해야 한다. 만약 소스의 이그레스 정책이나 목적지의 인그레스 정책 중 한쪽이라도 트래픽을 거절하게 되어 있다면, 해당 트래픽은 거절될 것이다.
+네트워크 폴리시가 충돌하는 경우는 없다. 네트워크 폴리시는 합산되어 적용된다. 특정 파드의 특정 방향에 대해 하나 또는 여러 개의 폴리시가 적용되면, 해당 파드의 해당 방향에 대해 허용된 연결은 모든 폴리시가 허용하는 연결의 합집합이다. 따라서, 판별 순서는 폴리시 결과에 영향을 미치지 않는다.
+
+송신 파드에서 수신 파드로의 연결이 허용되기 위해서는, 송신 파드의 이그레스 폴리시와 수신 파드의 인그레스 폴리시가 해당 연결을 허용해야 한다. 만약 어느 한 쪽이라도 해당 연결을 허용하지 않으면, 연결이 되지 않을 것이다.
 
 ## 네트워크폴리시 리소스 {#networkpolicy-resource}
 
@@ -43,42 +45,7 @@ pod- 또는 namespace- 기반의 네트워크폴리시를 정의할 때, {{< glo
 
 네트워크폴리시 의 예시는 다음과 같다.
 
-```yaml
-apiVersion: networking.k8s.io/v1
-kind: NetworkPolicy
-metadata:
-  name: test-network-policy
-  namespace: default
-spec:
-  podSelector:
-    matchLabels:
-      role: db
-  policyTypes:
-  - Ingress
-  - Egress
-  ingress:
-  - from:
-    - ipBlock:
-        cidr: 172.17.0.0/16
-        except:
-        - 172.17.1.0/24
-    - namespaceSelector:
-        matchLabels:
-          project: myproject
-    - podSelector:
-        matchLabels:
-          role: frontend
-    ports:
-    - protocol: TCP
-      port: 6379
-  egress:
-  - to:
-    - ipBlock:
-        cidr: 10.0.0.0/24
-    ports:
-    - protocol: TCP
-      port: 5978
-```
+{{< codenew file="service/networking/networkpolicy.yaml" >}}
 
 {{< note >}}
 선택한 네트워킹 솔루션이 네트워킹 정책을 지원하지 않으면 클러스터의 API 서버에 이를 POST 하더라도 효과가 없다.
@@ -96,7 +63,7 @@ __podSelector__: 각 네트워크폴리시에는 정책이 적용되는 파드 
 
 __policyTypes__: 각 네트워크폴리시에는 `Ingress`, `Egress` 또는 두 가지 모두를 포함할 수 있는 `policyTypes` 목록이 포함된다. `policyTypes` 필드는 선택한 파드에 대한 인그레스 트래픽 정책, 선택한 파드에 대한 이그레스 트래픽 정책 또는 두 가지 모두에 지정된 정책의 적용 여부를 나타낸다. 만약 네트워크폴리시에 `policyTypes` 가 지정되어 있지 않으면 기본적으로 `Ingress` 가 항상 설정되고, 네트워크폴리시에 `Egress` 가 있으면 이그레스 규칙이 설정된다.
 
-__ingress__: 각 네트워크폴리시에는 화이트리스트 `ingress` 규칙 목록이 포함될 수 있다. 각 규칙은 `from` 과 `ports` 부분과 모두 일치하는 트래픽을 허용한다. 예시 정책에는 단일 규칙이 포함되어있는데 첫 번째 포트는 `ipBlock` 을 통해 지정되고, 두 번째는 `namespaceSelector` 를 통해 그리고 세 번째는 `podSelector` 를 통해 세 가지 소스 중 하나의 단일 포트에서 발생하는 트래픽과 일치 시킨다.
+__ingress__: 각 네트워크폴리시에는 화이트리스트 `ingress` 규칙 목록이 포함될 수 있다. 각 규칙은 `from` 과 `ports` 부분과 모두 일치하는 트래픽을 허용한다. 예시 정책에는 단일 규칙이 포함되어 있는데 첫 번째 포트는 `ipBlock` 을 통해 지정되고, 두 번째는 `namespaceSelector` 를 통해 그리고 세 번째는 `podSelector` 를 통해 세 가지 소스 중 하나의 단일 포트에서 발생하는 트래픽과 일치 시킨다.
 
 __egress__: 각 네트워크폴리시에는 화이트리스트 `egress` 규칙이 포함될 수 있다. 각 규칙은 `to` 와 `ports` 부분과 모두 일치하는 트래픽을 허용한다. 예시 정책에는 단일 포트의 트래픽을 `10.0.0.0/24` 의 모든 대상과 일치시키는 단일 규칙을 포함하고 있다.
 
@@ -154,6 +121,7 @@ __namespaceSelector__ *와* __podSelector__: `namespaceSelector` 와 `podSelecto
 
 의심스러운 경우, `kubectl describe` 를 사용해서 쿠버네티스가 정책을 어떻게 해석하는지 확인해본다.
 
+<a name="behavior-of-ipblock-selectors"></a>
 __ipBlock__: 인그레스 소스 또는 이그레스 대상으로 허용할 IP CIDR 범위를 선택한다. 파드 IP는 임시적이고 예측할 수 없기에 클러스터 외부 IP이어야 한다.
 
 클러스터 인그레스 및 이그레스 매커니즘은 종종 패킷의 소스 또는 대상 IP의 재작성을
@@ -175,18 +143,20 @@ __ipBlock__: 인그레스 소스 또는 이그레스 대상으로 허용할 IP C
 
 ### 기본적으로 모든 인그레스 트래픽 거부
 
-모든 파드를 선택하지만 해당 파드에 대한 인그레스 트래픽은 허용하지 않는 네트워크폴리시를 생성해서 네임스페이스에 대한 "기본" 격리 정책을 생성할 수 있다.
+모든 파드를 선택하지만 해당 파드에 대한 인그레스 트래픽은 허용하지 않는 네트워크폴리시를 생성해서 네임스페이스에 대한 "기본" 인그레스 격리 정책을 생성할 수 있다.
 
 {{< codenew file="service/networking/network-policy-default-deny-ingress.yaml" >}}
 
-이렇게 하면 다른 네트워크폴리시에서 선택하지 않은 파드도 여전히 격리된다. 이 정책은 기본 이그레스 격리 동작을 변경하지 않는다.
+이렇게 하면 다른 네트워크폴리시에서 선택하지 않은 파드도 인그레스에 대해 여전히 격리된다. 이 정책은 다른 파드로부터의 이그레스 격리에는 영향을 미치지 않는다.
 
-### 기본적으로 모든 인그레스 트래픽 허용
+### 모든 인그레스 트래픽 허용
 
-만약 네임스페이스의 모든 파드에 대한 모든 트래픽을 허용하려는 경우(일부 파드가 "격리 된" 것으로 처리되는 정책이 추가 된 경우에도) 해당 네임스페이스의 모든 트래픽을 명시적으로 허용하는 정책을 만들 수 있다.
+한 네임스페이스의 모든 파드로의 인입(incoming) 연결을 허용하려면, 이를 명시적으로 허용하는 정책을 만들 수 있다.
 
 {{< codenew file="service/networking/network-policy-allow-all-ingress.yaml" >}}
 
+이 정책이 존재하면, 해당 파드로의 인입 연결을 막는 다른 정책은 효력이 없다. 이 정책은 모든 파드로부터의 이그레스 격리에는 영향을 미치지 않는다.
+
 ### 기본적으로 모든 이그레스 트래픽 거부
 
 모든 파드를 선택하지만, 해당 파드의 이그레스 트래픽을 허용하지 않는 네트워크폴리시를 생성해서 네임스페이스에 대한 "기본" 이그레스 격리 정책을 생성할 수 있다.
@@ -194,14 +164,16 @@ __ipBlock__: 인그레스 소스 또는 이그레스 대상으로 허용할 IP C
 {{< codenew file="service/networking/network-policy-default-deny-egress.yaml" >}}
 
 이렇게 하면 다른 네트워크폴리시에서 선택하지 않은 파드조차도 이그레스 트래픽을 허용하지 않는다. 이 정책은
-기본 인그레스 격리 정책을 변경하지 않는다.
+모든 파드의 인그레스 격리 정책을 변경하지 않는다.
 
-### 기본적으로 모든 이그레스 트래픽 허용
+### 모든 이그레스 트래픽 허용
 
-만약 네임스페이스의 모든 파드의 모든 트래픽을 허용하려면 (일부 파드가 "격리 된"으로 처리되는 정책이 추가 된 경우에도) 해당 네임스페이스에서 모든 이그레스 트래픽을 명시적으로 허용하는 정책을 생성할 수 있다.
+한 네임스페이스의 모든 파드로부터의 모든 연결을 허용하려면, 해당 네임스페이스의 파드로부터 나가는(outgoing) 모든 연결을 명시적으로 허용하는 정책을 생성할 수 있다.
 
 {{< codenew file="service/networking/network-policy-allow-all-egress.yaml" >}}
 
+이 정책이 존재하면, 해당 파드에서 나가는 연결을 막는 다른 정책은 효력이 없다. 이 정책은 모든 파드로의 인그레스 격리에는 영향을 미치지 않는다.
+
 ### 기본적으로 모든 인그레스와 모든 이그레스 트래픽 거부
 
 해당 네임스페이스에 아래의 네트워크폴리시를 만들어 모든 인그레스와 이그레스 트래픽을 방지하는 네임스페이스에 대한 "기본" 정책을 만들 수 있다.
@@ -223,7 +195,7 @@ SCTP 프로토콜 네트워크폴리시를 지원하는 {{< glossary_tooltip tex
 
 ## 포트 범위 지정
 
-{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.22" state="beta" >}}
 
 네트워크폴리시를 작성할 때, 단일 포트 대신 포트 범위를 대상으로 지정할 수 있다.
 
@@ -251,22 +223,30 @@ spec:
       endPort: 32768
 ```
 
-위 규칙은 대상 포트가 32000에서 32768 사이에 있는 경우, 네임스페이스 `default` 에 레이블이 `db` 인 모든 파드가 TCP를 통해 `10.0.0.0/24` 범위 내의 모든 IP와 통신하도록 허용한다.
+위 규칙은 대상 포트가 32000에서 32768 사이에 있는 경우, 
+네임스페이스 `default` 에 레이블이 `role=db` 인 모든 파드가
+TCP를 통해 `10.0.0.0/24` 범위 내의 모든 IP와 통신하도록 허용한다.
 
 이 필드를 사용할 때 다음의 제한 사항이 적용된다.
-* 알파 기능으로, 기본적으로 비활성화되어 있다. 클러스터 수준에서 `endPort` 필드를 활성화하려면, 사용자(또는 클러스터 관리자)가 `--feature-gates=NetworkPolicyEndPort=true,…` 가 있는 API 서버에 대해 `NetworkPolicyEndPort` [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 활성화해야 한다.
+* 베타 기능으로, 기본적으로 활성화되어 있다. 
+클러스터 수준에서 `endPort` 필드를 비활성화하려면, 사용자(또는 클러스터 관리자)가 
+API 서버에 대해 `--feature-gates=NetworkPolicyEndPort=false,…` 명령을 이용하여 
+`NetworkPolicyEndPort` [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 비활성화해야 한다.
 * `endPort` 필드는 `port` 필드보다 크거나 같아야 한다.
 * `endPort` 는 `port` 도 정의된 경우에만 정의할 수 있다.
 * 두 포트 모두 숫자여야 한다.
 
 {{< note >}}
-클러스터는 {{< glossary_tooltip text="CNI" term_id="cni" >}} 플러그인을 사용해야 한다.
-네트워크폴리시 명세에서 `endPort` 필드를 지원한다.
+클러스터가 네트워크폴리시 명세의 `endPort` 필드를 지원하는
+{{< glossary_tooltip text="CNI" term_id="cni" >}} 플러그인을 사용해야 한다.
+만약 [네트워크 플러그인](/ko/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)이 
+`endPort` 필드를 지원하지 않는데 네트워크폴리시의 해당 필드에 명시를 하면, 
+그 정책은 `port` 필드에만 적용될 것이다.
 {{< /note >}}
 
 ## 이름으로 네임스페이스 지정
 
-{{< feature-state state="beta" for_k8s_version="1.21" >}}
+{{< feature-state for_k8s_version="1.22" state="stable" >}}
 
 쿠버네티스 컨트롤 플레인은 `NamespaceDefaultLabelName`
 [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)가 활성화된 경우
diff --git a/content/ko/docs/concepts/services-networking/service-topology.md b/content/ko/docs/concepts/services-networking/service-topology.md
index 47799ba9f7..898daa7853 100644
--- a/content/ko/docs/concepts/services-networking/service-topology.md
+++ b/content/ko/docs/concepts/services-networking/service-topology.md
@@ -16,7 +16,7 @@ weight: 10
 
 이 기능, 특히 알파 `topologyKeys` API는 쿠버네티스 v1.21부터
 더 이상 사용되지 않는다.
-쿠버네티스 v1.21에 도입된 [토폴로지 인지 힌트](/docs/concepts/services-networking/topology-aware-hints/)는
+쿠버네티스 v1.21에 도입된 [토폴로지 인지 힌트](/ko/docs/concepts/services-networking/topology-aware-hints/)는
 유사한 기능을 제공한다.
 
 {{</ note >}}
@@ -96,7 +96,7 @@ _서비스 토폴로지_ 를 활성화 하면 서비스는 클러스터의 노
 
 * 유효한 토폴로지 키는 현재 `kubernetes.io/hostname`,
   `topology.kubernetes.io/zone` 그리고 `topology.kubernetes.io/region` 로
-  제한되어있지만, 앞으로 다른 노드 레이블로 일반화 될 것이다.
+  제한되어 있지만, 앞으로 다른 노드 레이블로 일반화 될 것이다.
 
 * 토폴로지 키는 유효한 레이블 키이어야 하며 최대 16개의 키를 지정할 수 있다.
 
diff --git a/content/ko/docs/concepts/services-networking/service-traffic-policy.md b/content/ko/docs/concepts/services-networking/service-traffic-policy.md
index c4f87e2b3e..7696657c65 100644
--- a/content/ko/docs/concepts/services-networking/service-traffic-policy.md
+++ b/content/ko/docs/concepts/services-networking/service-traffic-policy.md
@@ -9,7 +9,7 @@ weight: 45
 
 <!-- overview -->
 
-{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
 
 _서비스 내부 트래픽 정책_ 을 사용하면 내부 트래픽 제한이 트래픽이 시작된 
 노드 내의 엔드포인트로만 내부 트래픽을 라우팅하도록 한다. 
@@ -20,9 +20,9 @@ _서비스 내부 트래픽 정책_ 을 사용하면 내부 트래픽 제한이
 
 ## 서비스 내부 트래픽 정책 사용
 
-
-[기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)에서 
-`ServiceInternalTrafficPolicy`를 활성화한 후에 
+`ServiceInternalTrafficPolicy` [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)는 
+베타 기능이며 기본적으로 활성화되어 있다. 
+이 기능이 활성화되어 있으면, 
 {{< glossary_tooltip text="서비스" term_id="service" >}}의 
 `.spec.internalTrafficPolicy`를 `Local`로 설정하여 내부 전용 트래픽 정책을 활성화 할 수 있다.
 이것은 kube-proxy가 클러스터 내부 트래픽을 위해 노드 내부 엔드포인트로만 사용하도록 한다.
@@ -68,6 +68,6 @@ kube-proxy는 `spec.internalTrafficPolicy` 의 설정에 따라서 라우팅되
 
 ## {{% heading "whatsnext" %}}
 
-* [토폴로지 인식 힌트 활성화](/docs/tasks/administer-cluster/enabling-topology-aware-hints)에 대해서 읽기
+* [토폴로지 인지 힌트](/ko/docs/concepts/services-networking/topology-aware-hints/)에 대해서 읽기
 * [서비스 외부 트래픽 정책](/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip)에 대해서 읽기
 * [서비스와 애플리케이션 연결하기](/ko/docs/concepts/services-networking/connect-applications-service/) 읽기
diff --git a/content/ko/docs/concepts/services-networking/service.md b/content/ko/docs/concepts/services-networking/service.md
index 5c4b9edeee..858c5ab09a 100644
--- a/content/ko/docs/concepts/services-networking/service.md
+++ b/content/ko/docs/concepts/services-networking/service.md
@@ -24,7 +24,7 @@ weight: 10
 
 ## 동기
 
-쿠버네티스 {{< glossary_tooltip term_id="pod" text="파드" >}}는 클러스터 상태와
+쿠버네티스 {{< glossary_tooltip term_id="pod" text="파드" >}}는 클러스터 목표 상태(desired state)와
 일치하도록 생성되고 삭제된다. 파드는 비영구적 리소스이다.
 만약 앱을 실행하기 위해 {{< glossary_tooltip term_id="deployment" text="디플로이먼트" >}}를 사용한다면,
 동적으로 파드를 생성하고 제거할 수 있다.
@@ -61,7 +61,7 @@ _서비스_ 로 들어가보자.
 
 애플리케이션에서 서비스 디스커버리를 위해 쿠버네티스 API를 사용할 수 있는 경우,
 서비스 내 파드 세트가 변경될 때마다 업데이트되는 엔드포인트를 {{< glossary_tooltip text="API 서버" term_id="kube-apiserver" >}}에
-질의할 수 ​​있다.
+질의할 수 있다.
 
 네이티브 애플리케이션이 아닌 (non-native applications) 경우, 쿠버네티스는 애플리케이션과 백엔드 파드 사이에 네트워크 포트 또는 로드
 밸런서를 배치할 수 있는 방법을 제공한다.
@@ -72,7 +72,7 @@ _서비스_ 로 들어가보자.
 마찬가지로, 서비스 정의를 API 서버에 `POST`하여
 새 인스턴스를 생성할 수 있다.
 서비스 오브젝트의 이름은 유효한
-[DNS 서브도메인 이름](/ko/docs/concepts/overview/working-with-objects/names/#dns-서브도메인-이름)이어야 한다.
+[RFC 1035 레이블 이름](/ko/docs/concepts/overview/working-with-objects/names/#rfc-1035-label-names)이어야 한다.
 
 예를 들어, 각각 TCP 포트 9376에서 수신하고
 `app=MyApp` 레이블을 가지고 있는 파드 세트가 있다고 가정해 보자.
@@ -108,13 +108,46 @@ spec:
 필드와 같은 값으로 설정된다.
 {{< /note >}}
 
-파드의 포트 정의에는 이름이 있고, 서비스의 `targetPort` 속성에서 이 이름을
-참조할 수 있다. 이것은 다른 포트 번호를 통한 가용한 동일 네트워크 프로토콜이 있고,
-단일 구성 이름을 사용하는 서비스 내에
-혼합된 파드가 존재해도 가능하다.
-이를 통해 서비스를 배포하고 진전시키는데 많은 유연성을 제공한다.
-예를 들어, 클라이언트를 망가뜨리지 않고, 백엔드 소프트웨어의 다음
-버전에서 파드가 노출시키는 포트 번호를 변경할 수 있다.
+파드의 포트 정의에 이름이 있으므로, 
+서비스의 `targetPort` 속성에서 이 이름을 참조할 수 있다. 
+예를 들어, 다음과 같은 방법으로 서비스의 `targetPort`를 파드 포트에 바인딩할 수 있다.
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: nginx
+  labels:
+    app.kubernetes.io/name: proxy
+spec:
+  containers:
+  - name: nginx
+    image: nginx:11.14.2
+    ports:
+      - containerPort: 80
+        name: http-web-svc
+        
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: nginx-service
+spec:
+  selector:
+    app.kubernetes.io/name: proxy
+  ports:
+  - name: name-of-service-port
+    protocol: TCP
+    port: 80
+    targetPort: http-web-svc
+```
+
+
+이것은 서로 다른 포트 번호를 통해 가용한 동일 네트워크 프로토콜이 있고, 
+단일 구성 이름을 사용하는 서비스 내에 혼합된 파드가 존재해도 가능하다. 
+이를 통해 서비스를 배포하고 진전시키는 데 많은 유연성을 제공한다. 
+예를 들어, 클라이언트를 망가뜨리지 않고, 
+백엔드 소프트웨어의 다음 버전에서 파드가 노출시키는 포트 번호를 변경할 수 있다.
 
 서비스의 기본 프로토콜은 TCP이다. 다른
 [지원되는 프로토콜](#protocol-support)을 사용할 수도 있다.
@@ -125,9 +158,9 @@ spec:
 
 ### 셀렉터가 없는 서비스
 
-서비스는 일반적으로 쿠버네티스 파드에 대한 접근을 추상화하지만,
-다른 종류의 백엔드를 추상화할 수도 있다.
-예를 들면
+서비스는 일반적으로 셀렉터를 이용하여 쿠버네티스 파드에 대한 접근을 추상화하지만, 
+셀렉터 대신 매칭되는(corresponding) 엔드포인트와 함께 사용되면 다른 종류의 백엔드도 추상화할 수 있으며, 
+여기에는 클러스터 외부에서 실행되는 것도 포함된다. 예시는 다음과 같다.
 
 * 프로덕션 환경에서는 외부 데이터베이스 클러스터를 사용하려고 하지만,
   테스트 환경에서는 자체 데이터베이스를 사용한다.
@@ -183,14 +216,22 @@ subsets:
 위의 예에서, 트래픽은 YAML에 정의된 단일 엔드 포인트로
 라우팅된다. `192.0.2.42:9376` (TCP)
 
+{{< note >}}
+쿠버네티스 API 서버는 파드에 매핑되지 않은 엔드포인트를 프록시하는 것을 허용하지 않는다.
+셀렉터가 없는 서비스에 대해서 `kubectl proxy <service-name>`과 같은 행위는
+이런 제약으로 인해 실패할 것이다. 이는 사용자가 쿠버네티스 API 서버를
+프록시로 사용하여 허가받지 않은 엔드포인트에 접근하는 것을 막아준다.
+{{< /note >}}
+
 ExternalName 서비스는 셀렉터가 없고
 DNS명을 대신 사용하는 특수한 상황의 서비스이다. 자세한 내용은
 이 문서 뒷부분의 [ExternalName](#externalname) 섹션을 참조한다.
 
 ### 초과 용량 엔드포인트
-엔드포인트 리소스에 1,000개가 넘는 엔드포인트가 있는 경우 쿠버네티스 v1.21(또는 그 이상)
-클러스터는 해당 엔드포인트에 `endpoints.kubernetes.io/over-capacity: warning` 어노테이션을 추가한다.
-이 어노테이션은 영향을 받는 엔드포인트 오브젝트가 용량을 초과했음을 나타낸다.
+엔드포인트 리소스에 1,000개가 넘는 엔드포인트가 있는 경우 쿠버네티스 v1.22(또는 그 이상)
+클러스터는 해당 엔드포인트에 `endpoints.kubernetes.io/over-capacity: truncated` 어노테이션을 추가한다.
+이 어노테이션은 영향을 받는 엔드포인트 오브젝트가 용량을 초과했으며
+엔드포인트 컨트롤러가 엔드포인트의 수를 1000으로 줄였음을 나타낸다.
 
 ### 엔드포인트슬라이스
 
@@ -241,6 +282,22 @@ DNS 레코드를 구성하고, 라운드-로빈 이름 확인 방식을
   낮거나 0이면 DNS에 부하가 높아 관리하기가
   어려워 질 수 있다.
 
+본 페이지의 뒷 부분에서 다양한 kube-proxy 구현의 동작에 대해 읽을 수 있다.
+우선 알아두어야 할 것은, `kube-proxy`를 구동할 때, 커널 수준의 규칙이
+수정(예를 들어, iptables 규칙이 생성될 수 있음)될 수 있고,
+이는 때로는 리부트 전까지 정리되지 않을 수도 있다.
+그래서, kube-proxy는 컴퓨터에서 저수준의, 특권을 가진(privileged) 네트워킹 
+프록시 서비스가 구동됨으로써 발생하는 결과를 이해하고 있는 관리자에 의해서만 구동되어야 한다.
+비록 `kube-proxy` 실행 파일이 `cleanup` 기능을 지원하기는 하지만, 이 기능은 공식적인 기능이
+아니기 때문에 구현된 그대로만 사용할 수 있다.
+
+### 구성
+
+kube-proxy는 구성에 따라 결정되는 여러 모드에서 기동될 수 있다.
+- kube-proxy의 구성은 컨피그맵(ConfigMap)을 통해 이루어진다. 그리고 해당 kube-proxy를 위한 컨피그맵은 실효성있게 거의 대부분의 kube-proxy의 플래그의 행위를 더 이상 사용하지 않도록 한다.
+- kube-proxy를 위한 해당 컨피그맵은 기동 중 구성의 재적용(live reloading)은 지원하지 않는다.
+- kube-proxy를 위한 컨피그맵 파라미터는 기동 시에 검증이나 확인을 하지 않는다. 예를 들어, 운영 체계가 iptables 명령을 허용하지 않을 경우, 표준 커널 kube-proxy 구현체는 작동하지 않을 것이다. 마찬가지로, `netsh`을 지원하지 않는 운영 체계에서는, 윈도우 유저스페이스 모드로는 기동하지 않을 것이다.
+
 ### 유저 스페이스(User space) 프록시 모드 {#proxy-mode-userspace}
 
 이 모드에서는, kube-proxy는 쿠버네티스 컨트롤 플레인의 서비스 및 엔드포인트 오브젝트의
@@ -384,6 +441,40 @@ CIDR 범위 내의 유효한 IPv4 또는 IPv6 주소여야 한다.
 유효하지 않은 clusterIP 주소 값으로 서비스를 생성하려고 하면, API 서버는
 422 HTTP 상태 코드를 리턴하여 문제점이 있음을 알린다.
 
+## 트래픽 정책
+
+### 외부 트래픽 정책
+
+`spec.externalTrafficPolicy` 필드를 설정하여 외부 소스에서 오는 트래픽이 어떻게 라우트될지를 제어할 수 있다.
+이 필드는 `Cluster` 또는 `Local`로 설정할 수 있다. 필드를 `Cluster`로 설정하면 외부 트래픽을 준비 상태의 모든 엔드포인트로 라우트하며, 
+`Local`로 설정하면 준비 상태의 노드-로컬 엔드포인트로만 라우트한다. 만약 트래픽 정책이 `Local`로 설정되어 있는데 노드-로컬 
+엔드포인트가 하나도 없는 경우, kube-proxy는 연관된 서비스로의 트래픽을 포워드하지 않는다.
+
+{{< note >}}
+{{< feature-state for_k8s_version="v1.22" state="alpha" >}}
+kube-proxy에 대해 `ProxyTerminatingEndpoints` 
+[기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 
+활성화하면, kube-proxy는 노드에 로컬 엔드포인트가 있는지, 
+그리고 모든 로컬 엔드포인트가 "종료 중(terminating)"으로 표시되어 있는지 여부를 확인한다.
+만약 로컬 엔드포인트가 존재하는데 **모두**가 종료 중이면, kube-proxy는 `Local`로 설정된 모든 외부 트래픽 정책을 무시한다. 
+대신, 모든 노드-로컬 엔드포인트가 "종료 중" 상태를 유지하는 동안, 
+kube-proxy는 마치 외부 트래픽 정책이 `Cluster`로 설정되어 있는 것처럼 
+그 서비스에 대한 트래픽을 정상 상태의 다른 엔드포인트로 포워드한다.
+이러한 종료 중인 엔드포인트에 대한 포워딩 정책은 `NodePort` 서비스로 트래픽을 로드밸런싱하던 외부 로드밸런서가 
+헬스 체크 노드 포트가 작동하지 않을 때에도 연결들을 비돌발적으로(gracefully) 종료시킬 수 있도록 하기 위해 존재한다.
+이러한 정책이 없다면, 노드가 여전히 로드밸런서 노드 풀에 있지만 
+파드 종료 과정에서 트래픽이 제거(drop)되는 상황에서 트래픽이 유실될 수 있다.
+{{< /note >}}
+
+### 내부 트래픽 정책
+
+{{< feature-state for_k8s_version="v1.22" state="beta" >}}
+
+`spec.internalTrafficPolicy` 필드를 설정하여 내부 소스에서 오는 트래픽이 어떻게 라우트될지를 제어할 수 있다.
+이 필드는 `Cluster` 또는 `Local`로 설정할 수 있다. 필드를 `Cluster`로 설정하면 내부 트래픽을 준비 상태의 모든 엔드포인트로 라우트하며, 
+`Local`로 설정하면 준비 상태의 노드-로컬 엔드포인트로만 라우트한다. 만약 트래픽 정책이 `Local`로 설정되어 있는데 노드-로컬 
+엔드포인트가 하나도 없는 경우, kube-proxy는 트래픽을 포워드하지 않는다.
+
 ## 서비스 디스커버리하기
 
 쿠버네티스는 서비스를 찾는 두 가지 기본 모드를 지원한다. - 환경
@@ -391,12 +482,8 @@ CIDR 범위 내의 유효한 IPv4 또는 IPv6 주소여야 한다.
 
 ### 환경 변수
 
-파드가 노드에서 실행될 때, kubelet은 각 활성화된 서비스에 대해
-환경 변수 세트를 추가한다. [도커 링크
-호환](https://docs.docker.com/userguide/dockerlinks/) 변수
-([makeLinkVariables](https://releases.k8s.io/{{< param "githubbranch" >}}/pkg/kubelet/envvars/envvars.go#L49) 참조)와
-보다 간단한 `{SVCNAME}_SERVICE_HOST` 및 `{SVCNAME}_SERVICE_PORT` 변수를 지원하고,
-이때 서비스 이름은 대문자이고 대시는 밑줄로 변환된다.
+파드가 노드에서 실행될 때, kubelet은 각 활성화된 서비스에 대해 환경 변수 세트를 추가한다. 
+`{SVCNAME}_SERVICE_HOST` 및 `{SVCNAME}_SERVICE_PORT` 환경 변수가 추가되는데, 이 때 서비스 이름은 대문자로, 하이픈(`-`)은 언더스코어(`_`)로 변환하여 사용한다. 또한 도커 엔진의 "_[레거시 컨테이너 연결](https://docs.docker.com/network/links/)_" 기능과 호환되는 변수([makeLinkVariables](https://github.com/kubernetes/kubernetes/blob/dd2d12f6dc0e654c15d5db57a5f9f6ba61192726/pkg/kubelet/envvars/envvars.go#L72) 참조)도 지원한다.
 
 예를 들어, TCP 포트 6379를 개방하고
 클러스터 IP 주소 10.0.0.11이 할당된 서비스 `redis-master`는,
@@ -493,7 +580,7 @@ API에서 `엔드포인트` 레코드를 생성하고, DNS 구성을 수정하
 * `ClusterIP`: 서비스를 클러스터-내부 IP에 노출시킨다. 이 값을 선택하면
   클러스터 내에서만 서비스에 도달할 수 있다. 이것은
   `ServiceTypes`의 기본 값이다.
-* [`NodePort`](#nodeport): 고정 포트 (`NodePort`)로 각 노드의 IP에 서비스를
+* [`NodePort`](#type-nodeport): 고정 포트 (`NodePort`)로 각 노드의 IP에 서비스를
   노출시킨다. `NodePort` 서비스가 라우팅되는 `ClusterIP` 서비스가
   자동으로 생성된다. `<NodeIP>:<NodePort>`를 요청하여,
   클러스터 외부에서
@@ -511,7 +598,7 @@ API에서 `엔드포인트` 레코드를 생성하고, DNS 구성을 수정하
 [인그레스](/ko/docs/concepts/services-networking/ingress/)를 사용하여 서비스를 노출시킬 수도 있다. 인그레스는 서비스 유형이 아니지만, 클러스터의 진입점 역할을 한다. 동일한 IP 주소로 여러 서비스를
 노출시킬 수 있기 때문에 라우팅 규칙을 단일 리소스로 통합할 수 있다.
 
-### NodePort 유형 {#nodeport}
+### NodePort 유형 {#type-nodeport}
 
 `type` 필드를 `NodePort`로 설정하면, 쿠버네티스 컨트롤 플레인은
 `--service-node-port-range` 플래그로 지정된 범위에서 포트를 할당한다 (기본값 : 30000-32767).
@@ -523,6 +610,7 @@ API에서 `엔드포인트` 레코드를 생성하고, DNS 구성을 수정하
 [kube-proxy 구성 파일](/docs/reference/config-api/kube-proxy-config.v1alpha1/)의
 동등한 `nodePortAddresses` 필드를
 특정 IP 블록으로 설정할 수 있다.
+
 이 플래그는 쉼표로 구분된 IP 블록 목록(예: `10.0.0.0/8`, `192.0.2.0/25`)을 사용하여 kube-proxy가 로컬 노드로 고려해야 하는 IP 주소 범위를 지정한다.
 
 예를 들어, `--nodeport-addresses=127.0.0.0/8` 플래그로 kube-proxy를 시작하면, kube-proxy는 NodePort 서비스에 대하여 루프백(loopback) 인터페이스만 선택한다. `--nodeport-addresses`의 기본 값은 비어있는 목록이다. 이것은 kube-proxy가 NodePort에 대해 사용 가능한 모든 네트워크 인터페이스를 고려해야 한다는 것을 의미한다. (이는 이전 쿠버네티스 릴리스와도 호환된다).
@@ -613,40 +701,41 @@ status:
 
 #### 프로토콜 유형이 혼합된 로드밸런서
 
-{{< feature-state for_k8s_version="v1.20" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.24" state="beta" >}}
 
 기본적으로 로드밸런서 서비스 유형의 경우 둘 이상의 포트가 정의되어 있을 때 모든
 포트는 동일한 프로토콜을 가져야 하며 프로토콜은 클라우드 공급자가
 지원하는 프로토콜이어야 한다.
 
-kube-apiserver에 대해 기능 게이트 `MixedProtocolLBService`가 활성화된 경우 둘 이상의 포트가 정의되어 있을 때 다른 프로토콜을 사용할 수 있다.
+`MixedProtocolLBService` 기능 게이트(v1.24에서 kube-apiserver에 대해 기본적으로 활성화되어 있음)는 
+둘 이상의 포트가 정의되어 있는 경우에 로드밸런서 타입의 서비스에 대해 서로 다른 프로토콜을 사용할 수 있도록 해 준다.
 
 {{< note >}}
 
 로드밸런서 서비스 유형에 사용할 수 있는 프로토콜 세트는 여전히 클라우드 제공 업체에서 정의한다.
+클라우드 제공자가 혼합 프로토콜을 지원하지 않는다면 이는 단일 프로토콜만을 제공한다는 것을 의미한다.
 
 {{< /note >}}
 
 #### 로드밸런서 NodePort 할당 비활성화
 
-{{< feature-state for_k8s_version="v1.20" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
-v1.20부터는 `spec.allocateLoadBalancerNodePorts` 필드를 `false`로 설정하여 서비스 Type=LoadBalancer에
-대한 노드 포트 할당을 선택적으로 비활성화 할 수 있다.
-노드 포트를 사용하는 대신 트래픽을 파드로 직접 라우팅하는 로드 밸런서 구현에만 사용해야 한다.
-기본적으로 `spec.allocateLoadBalancerNodePorts`는 `true`이며 로드밸런서 서비스 유형은 계속해서 노드 포트를 할당한다.
-노드 포트가 할당된 기존 서비스에서 `spec.allocateLoadBalancerNodePorts`가 `false`로 설정된 경우 해당 노드 포트는 자동으로 할당 해제되지 않는다.
+`type=LoadBalancer` 서비스에 대한 노드 포트 할당을 선택적으로 비활성화할 수 있으며, 
+이는 `spec.allocateLoadBalancerNodePorts` 필드를 `false`로 설정하면 된다. 
+노드 포트를 사용하지 않고 트래픽을 파드로 직접 라우팅하는 로드 밸런서 구현에만 사용해야 한다.
+기본적으로 `spec.allocateLoadBalancerNodePorts`는 `true`이며 로드밸런서 서비스 유형은 계속해서 노드 포트를 할당할 것이다.
+노드 포트가 할당된 기존 서비스에서 `spec.allocateLoadBalancerNodePorts`가 `false`로 설정된 경우 해당 노드 포트는 자동으로 할당 해제되지 **않는다**.
 이러한 노드 포트를 할당 해제하려면 모든 서비스 포트에서 `nodePorts` 항목을 명시적으로 제거해야 한다.
-이 필드를 사용하려면 `ServiceLBNodePortControl` 기능 게이트를 활성화해야 한다.
 
 #### 로드 밸런서 구현 클래스 지정 {#load-balancer-class}
 
-{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
-v1.21부터는, `spec.loadBalancerClass` 필드를 설정하여 `LoadBalancer` 서비스 유형에
-대한 로드 밸런서 구현 클래스를 선택적으로 지정할 수 있다.
-기본적으로, `spec.loadBalancerClass` 는 `nil` 이고 `LoadBalancer` 유형의 서비스는
-클라우드 공급자의 기본 로드 밸런서 구현을 사용한다.
+`spec.loadBalancerClass` 필드를 설정하여 클라우드 제공자가 설정한 기본값 이외의 로드 밸런서 구현을 사용할 수 있다. 
+기본적으로, `spec.loadBalancerClass` 는 `nil` 이고, 
+클러스터가 클라우드 제공자의 로드밸런서를 이용하도록 `--cloud-provider` 컴포넌트 플래그를 이용하여 설정되어 있으면 
+`LoadBalancer` 유형의 서비스는 클라우드 공급자의 기본 로드 밸런서 구현을 사용한다.
 `spec.loadBalancerClass` 가 지정되면, 지정된 클래스와 일치하는 로드 밸런서
 구현이 서비스를 감시하고 있다고 가정한다.
 모든 기본 로드 밸런서 구현(예: 클라우드 공급자가 제공하는
@@ -656,7 +745,6 @@ v1.21부터는, `spec.loadBalancerClass` 필드를 설정하여 `LoadBalancer` 
 `spec.loadBalancerClass` 의 값은 "`internal-vip`" 또는
 "`example.com/internal-vip`" 와 같은 선택적 접두사가 있는 레이블 스타일 식별자여야 한다.
 접두사가 없는 이름은 최종 사용자를 위해 예약되어 있다.
-이 필드를 사용하려면 `ServiceLoadBalancerClass` 기능 게이트를 활성화해야 한다.
 
 #### 내부 로드 밸런서
 
@@ -1015,6 +1103,9 @@ spec:
 
 {{< /note >}}
 
+엘라스틱 IP에 대한 설명 문서와 기타 일반적 사용 사례를 
+[AWS 로드 밸런서 컨트롤러 문서](https://kubernetes-sigs.github.io/aws-load-balancer-controller/latest/guide/service/annotations/)에서 볼 수 있다.
+
 #### Tencent Kubernetes Engine (TKE)의 다른 CLB 어노테이션
 
 아래 표시된 것처럼 TKE에서 클라우드 로드 밸런서를 관리하기 위한 다른 어노테이션이 있다.
@@ -1147,7 +1238,7 @@ VIP용 유저스페이스 프록시를 사용하면 중소 규모의 스케일
 충분해야 한다. 그러나, 이해가 필요한 부분 뒤에는
 많은 일이 있다.
 
-### 충돌 방지
+### 충돌 방지 {#avoiding-collisions}
 
 쿠버네티스의 주요 철학 중 하나는 잘못한 것이
 없는 경우 실패할 수 있는 상황에 노출되어서는
@@ -1155,9 +1246,10 @@ VIP용 유저스페이스 프록시를 사용하면 중소 규모의 스케일
 충돌할 경우에 대비해 자신의 포트 번호를 선택하지
 않아도 된다. 그것은 격리 실패이다.
 
-서비스에 대한 포트 번호를 선택할 수 있도록 하기 위해, 두 개의
-서비스가 충돌하지 않도록 해야 한다. 쿠버네티스는 각 서비스에 고유한 IP 주소를
-할당하여 이를 수행한다.
+서비스에 대한 포트 번호를 선택할 수 있도록 하기 위해, 
+두 개의 서비스가 충돌하지 않도록 해야 한다. 
+쿠버네티스는 API 서버에 설정되어 있는 `service-cluster-ip-range` CIDR 범위에서 
+각 서비스에 고유한 IP 주소를 할당하여 이를 달성한다.
 
 각 서비스가 고유한 IP를 받도록 하기 위해, 내부 할당기는
 각 서비스를 만들기 전에 {{< glossary_tooltip term_id="etcd" >}}에서
@@ -1171,6 +1263,25 @@ IP 주소를 할당할 수 없다는 메시지와 함께 생성에 실패한다.
 할당 (예: 관리자 개입으로)을 체크하고 더 이상 서비스에서 사용하지 않는 할당된
 IP 주소를 정리한다.
 
+#### `type: ClusterIP` 서비스의 IP 주소 범위 {#service-ip-static-sub-range}
+
+{{< feature-state for_k8s_version="v1.24" state="alpha" >}}
+그러나, 이러한 `ClusterIP` 할당 전략에는 한 가지 문제가 있는데, 
+그것은 사용자 또한 [서비스의 IP 주소를 직접 고를 수 있기 때문이다](#choosing-your-own-ip-address).
+이로 인해 만약 내부 할당기(allocator)가 다른 서비스에 대해 동일한 IP 주소를 선택하면 
+충돌이 발생할 수 있다.
+
+`ServiceIPStaticSubrange` 
+[기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 활성화하면, 
+할당 전략은 `min(max(16, cidrSize / 16), 256)` 공식을 사용하여 얻어진 
+`service-cluster-ip-range`의 크기에 기반하여 `ClusterIP` 범위를 두 대역으로 나누며, 
+여기서 이 공식은 _16 이상 256 이하이며, 그 사이에 계단 함수가 있음_ 으로 설명할 수 있다. 
+동적 IP 할당은 상위 대역에서 우선적으로 선택하며, 
+이를 통해 하위 대역에서 할당된 IP와의 충돌 위험을 줄인다. 
+이렇게 함으로써 사용자가 서비스의 고정 IP를 
+`service-cluster-ip-range`의 하위 대역에서 할당하면서도 
+충돌 위험을 줄일 수 있다.
+
 ### 서비스 IP 주소 {#ips-and-vips}
 
 실제로 고정된 목적지로 라우팅되는 파드 IP 주소와 달리,
diff --git a/content/ko/docs/concepts/services-networking/topology-aware-hints.md b/content/ko/docs/concepts/services-networking/topology-aware-hints.md
new file mode 100644
index 0000000000..bf0f1fb8c2
--- /dev/null
+++ b/content/ko/docs/concepts/services-networking/topology-aware-hints.md
@@ -0,0 +1,164 @@
+---
+
+
+title: 토폴로지 인지 힌트
+content_type: concept
+weight: 45
+---
+
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
+
+_토폴로지 인지 힌트(Topology Aware Hints)_ 는 클라이언트가 엔드포인트를 어떻게 사용해야 하는지에 대한 제안을 포함시킴으로써 
+토폴로지 인지 라우팅을 가능하게 한다. 
+이러한 접근은 엔드포인트슬라이스(EndpointSlice) 및 엔드포인트(Endpoint) 오브젝트의 소비자(consumer)가 이용할 수 있는 메타데이터를 추가하며, 
+이를 통해 해당 네트워크 엔드포인트로의 트래픽이 근원지에 더 가깝게 라우트될 수 있다.
+
+예를 들어, 비용을 줄이거나 네트워크 성능을 높이기 위해, 
+인접성을 고려하여 트래픽을 라우트할 수 있다.
+
+{{< note >}}
+"토폴로지 인지 힌트" 기능은 베타 단계이며 기본적으로 활성화되어 있지 **않다**. 
+이 기능을 사용해 보려면, 
+`TopologyAwareHints` [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 활성화해야 한다.
+{{< /note >}}
+
+<!-- body -->
+
+## 동기(motivation)
+
+쿠버네티스 클러스터가 멀티-존(multi-zone) 환경에 배포되는 일이 점점 많아지고 있다. 
+_토폴로지 인지 힌트_ 는 트래픽이 발생한 존 내에서 트래픽을 유지하도록 처리하는 메커니즘을 제공한다. 
+이러한 개념은 보통 "토폴로지 인지 라우팅"이라고 부른다. 
+{{< glossary_tooltip text="서비스" term_id="Service" >}}의 엔드포인트를 계산할 때, 
+엔드포인트슬라이스 컨트롤러는 각 엔드포인트의 토폴로지(지역(region) 및 존)를 고려하여, 
+엔드포인트가 특정 존에 할당되도록 힌트 필드를 채운다. 
+그러면 {{< glossary_tooltip term_id="kube-proxy" text="kube-proxy" >}}와 같은 
+클러스터 구성 요소는 해당 힌트를 인식하고, 
+(토폴로지 상 가까운 엔드포인트를 사용하도록) 트래픽 라우팅 구성에 활용한다.
+
+## 토폴로지 인지 힌트 사용하기
+
+`service.kubernetes.io/topology-aware-hints` 어노테이션을 `auto`로 설정하여 
+서비스에 대한 토폴로지 인지 힌트를 활성화할 수 있다. 
+이는 엔드포인트슬라이스 컨트롤러가 안전하다고 판단되는 경우 토폴로지 힌트를 설정하도록 지시하는 것이다. 
+명심할 점은, 이를 수행한다고 해서 힌트가 항상 설정되는 것은 아니라는 것이다.
+
+## 동작 방법 {#implementation}
+
+이 기능을 동작시키는 요소는 
+엔드포인트슬라이스 컨트롤러와 kube-proxy 두 구성요소로 나눠져 있다. 
+이 섹션에서는 각 구성요소가 어떻게 이 기능을 동작시키는지에 대한 고차원 개요를 제공한다.
+
+### 엔드포인트슬라이스 컨트롤러 {#implementation-control-plane}
+
+엔드포인트슬라이스 컨트롤러는 이 기능이 활성화되어 있을 때 
+엔드포인트슬라이스에 힌트를 설정하는 일을 담당한다. 
+컨트롤러는 각 존에 일정 비율의 엔드포인트를 할당한다. 
+이 비율은 해당 존에 있는 노드의 
+[할당 가능한(allocatable)](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable) CPU 코어에 의해 결정된다. 
+예를 들어, 한 존에 2 CPU 코어가 있고 다른 존에 1 CPU 코어만 있는 경우, 
+컨트롤러는 2 CPU 코어가 있는 존에 엔드포인트를 2배 할당할 것이다.
+
+다음 예시는 엔드포인트슬라이스에 힌트가 채워졌을 때에 대한 
+예시이다.
+
+```yaml
+apiVersion: discovery.k8s.io/v1
+kind: EndpointSlice
+metadata:
+  name: example-hints
+  labels:
+    kubernetes.io/service-name: example-svc
+addressType: IPv4
+ports:
+  - name: http
+    protocol: TCP
+    port: 80
+endpoints:
+  - addresses:
+      - "10.1.2.3"
+    conditions:
+      ready: true
+    hostname: pod-1
+    zone: zone-a
+    hints:
+      forZones:
+        - name: "zone-a"
+```
+
+### kube-proxy {#implementation-kube-proxy}
+
+kube-proxy 구성요소는 엔드포인트슬라이스 컨트롤러가 설정한 힌트를 기반으로 
+자신이 라우팅하는 엔드포인트를 필터링한다. 
+대부분의 경우, 이는 kube-proxy가 동일 존 내에서 트래픽을 엔드포인트로 라우팅할 수 있음을 뜻한다. 
+때때로 컨트롤러는 존 사이에 보다 균등한 엔드포인트 분배를 위해 다른 존으로부터 엔드포인트를 할당하기도 한다. 
+이러한 경우 일부 트래픽은 다른 존으로 라우팅될 것이다.
+
+## 보호 규칙
+
+쿠버네티스 컨트롤 플레인과 각 노드의 kube-proxy는 
+토폴로지 인지 힌트를 사용하기 전에 몇 가지 보호 규칙을 적용한다. 
+이들이 만족되지 않으면, kube-proxy는 존에 상관없이 
+클러스터의 모든 곳으로부터 엔드포인트를 선택한다.
+
+1. **엔드포인트 수가 충분하지 않음:** 존의 숫자보다 엔드포인트의 숫자가 적으면, 
+   컨트롤러는 어떤 힌트도 할당하지 않을 것이다.
+
+2. **균형잡힌 할당이 불가능함:** 일부 경우에, 존 간 균형잡힌 엔드포인트 할당이 불가능할 수 있다. 
+   예를 들어, zone-a가 zone-b보다 2배 큰 상황에서, 
+   엔드포인트가 2개 뿐이라면, 
+   zone-a에 할당된 엔드포인트는 zone-b에 할당된 엔드포인트보다 2배의 트래픽을 수신할 것이다. 
+   컨트롤러는 이 "예상 과부하" 값을 각 존에 대해 
+   허용 가능한 임계값보다 작게 낮출 수 없는 경우에는 힌트를 할당하지 않는다. 
+   명심할 점은, 이것이 실시간 피드백 기반이 아니라는 것이다. 
+   개별 엔드포인트가 과부하 상태로 바뀔 가능성도 여전히 있다.
+
+3. **하나 이상의 노드에 대한 정보가 불충분함:** `topology.kubernetes.io/zone` 레이블이 없는 노드가 있거나 
+   할당 가능한 CPU 값을 보고하지 않는 노드가 있으면, 
+   컨트롤 플레인은 토폴로지 인지 엔드포인트를 설정하지 않으며 
+   이로 인해 kube-proxy는 존 별로 엔드포인트를 필터링하지 않는다.
+
+4. **하나 이상의 엔드포인트에 존 힌트가 없음:** 이러한 상황이 발생하면, 
+   kube-proxy는 토폴로지 인지 힌트로부터의 또는 토폴로지 인지 힌트로의 전환이 진행 중이라고 가정한다. 
+   이 상태에서 서비스의 엔드포인트를 필터링하는 것은 위험할 수 있으므로 
+   kube-proxy는 모든 엔드포인트를 사용하는 모드로 전환된다.
+
+5. **힌트에 존이 기재되지 않음:** kube-proxy가 실행되고 있는 존을 향하는 힌트를 갖는 엔드포인트를 
+   하나도 찾지 못했다면, 
+   모든 존에서 오는 엔드포인트를 사용하는 모드로 전환된다. 
+   이러한 경우는 기존에 있던 클러스터에 새로운 존을 추가하는 경우에 발생할 가능성이 가장 높다.
+
+## 제약사항
+
+* 토폴로지 인지 힌트는 서비스의 `externalTrafficPolicy` 또는 
+  `internalTrafficPolicy`가 `Local`로 설정된 경우에는 사용되지 않는다. 
+  동일 클러스터의 서로 다른 서비스들에 대해 두 기능 중 하나를 사용하는 것은 가능하며, 
+  하나의 서비스에 두 기능 모두를 사용하는 것은 불가능하다.
+
+* 이러한 접근 방법은 존의 일부분에서 
+  많은 트래픽이 발생하는 서비스에는 잘 작동하지 않을 것이다. 
+  대신, 들어오는 트래픽이 
+  각 존 내 노드 용량에 대략 비례한다고 가정한다.
+
+* 엔드포인트슬라이스 컨트롤러는 각 존 내의 비율을 계산할 때 
+  준비되지 않은(unready) 노드는 무시한다. 
+  이 때문에 많은 노드가 준비되지 않은 상태에서는 의도하지 않은 결과가 나타날 수도 있다.
+
+* 엔드포인트슬라이스 컨트롤러는 각 존 내의 비율을 계산할 때 
+  {{< glossary_tooltip text="톨러레이션" term_id="toleration" >}}은 고려하지 않는다. 
+  서비스를 구성하는 파드가 클러스터의 일부 노드에만 배치되어 있는 경우, 
+  이러한 상황은 고려되지 않을 것이다.
+
+* 오토스케일링 기능과는 잘 동작하지 않을 수 있다. 
+  예를 들어, 하나의 존에서 많은 트래픽이 발생하는 경우, 
+  해당 존에 할당된 엔드포인트만 트래픽을 처리하고 있을 것이다. 
+  이로 인해 {{< glossary_tooltip text="Horizontal Pod Autoscaler" term_id="horizontal-pod-autoscaler" >}}가 
+  이 이벤트를 감지하지 못하거나, 
+  또는 새롭게 추가되는 파드가 다른 존에 추가될 수 있다.
+
+## {{% heading "whatsnext" %}}
+
+* [서비스와 애플리케이션 연결하기](/ko/docs/concepts/services-networking/connect-applications-service/)를 읽어본다.
diff --git a/content/ko/docs/concepts/storage/ephemeral-volumes.md b/content/ko/docs/concepts/storage/ephemeral-volumes.md
new file mode 100644
index 0000000000..0360d4e59c
--- /dev/null
+++ b/content/ko/docs/concepts/storage/ephemeral-volumes.md
@@ -0,0 +1,276 @@
+---
+
+
+
+
+
+
+title: 임시 볼륨
+content_type: concept
+weight: 30
+---
+
+<!-- overview -->
+
+이 문서는 쿠버네티스의 _임시(ephemeral) 볼륨_ 에 대해 설명한다. 
+쿠버네티스 [볼륨](/ko/docs/concepts/storage/volumes/), 
+특히 퍼시스턴트볼륨클레임(PersistentVolumeClaim) 및 퍼시스턴트볼륨(PersistentVolume)에 대해 잘 알고 있는 것이 좋다.
+
+<!-- body -->
+
+일부 애플리케이션은 추가적인 저장소를 필요로 하면서도 
+재시작 시 데이터의 영구적 보존 여부는 신경쓰지 않을 수도 있다. 
+예를 들어, 캐싱 서비스는 종종 메모리 사이즈에 제약을 받으며 
+이에 따라 전반적인 성능에 적은 영향을 미치면서도 
+사용 데이터를 메모리보다는 느린 저장소에 간헐적으로 옮길 수도 있다.
+
+또 다른 애플리케이션은 읽기 전용 입력 데이터를 파일에서 읽도록 되어 있으며, 
+이러한 데이터의 예시로는 구성 데이터 또는 비밀 키 등이 있다.
+
+_임시 볼륨_ 은 이러한 사용 사례를 위해 설계되었다. 
+임시 볼륨은 파드의 수명을 따르며 파드와 함께 생성 및 삭제되기 때문에, 
+일부 퍼시스턴트 볼륨이 어디에서 사용 가능한지에 제약되는 일 없이 
+파드가 중지 및 재시작될 수 있다.
+
+임시 볼륨은 파드 명세에 _인라인_ 으로 명시되며, 
+이로 인해 애플리케이션 배포 및 관리가 간편해진다.
+
+### 임시 볼륨의 종류
+
+쿠버네티스는 각 목적에 맞는 
+몇 가지의 임시 볼륨을 지원한다.
+- [emptyDir](/ko/docs/concepts/storage/volumes/#emptydir): 
+  파드가 시작될 때 빈 상태로 시작되며, 
+  저장소는 로컬의 kubelet 베이스 디렉터리(보통 루트 디스크) 또는 램에서 제공된다
+- [configMap](/ko/docs/concepts/storage/volumes/#configmap),
+  [downwardAPI](/ko/docs/concepts/storage/volumes/#downwardapi),
+  [secret](/ko/docs/concepts/storage/volumes/#secret): 
+  각 종류의 쿠버네티스 데이터를 파드에 주입한다
+- [CSI 임시 볼륨](#csi-ephemeral-volumes): 
+  앞의 볼륨 종류와 비슷하지만, 
+  특히 [이 기능을 지원](https://kubernetes-csi.github.io/docs/drivers.html)하는 특수한 
+  [CSI 드라이버](https://github.com/container-storage-interface/spec/blob/master/spec.md)에 의해 제공된다
+- [일반(generic) 임시 볼륨](#generic-ephemeral-volumes): 
+  퍼시스턴트 볼륨도 지원하는 모든 스토리지 드라이버에 의해 제공될 수 있다
+
+`emptyDir`, `configMap`, `downwardAPI`, `secret`은 
+[로컬 임시 스토리지](/ko/docs/concepts/configuration/manage-resources-containers/#로컬-임시-ephemeral-스토리지)로서 
+제공된다. 
+이들은 각 노드의 kubelet에 의해 관리된다.
+
+CSI 임시 볼륨은 
+써드파티 CSI 스토리지 드라이버에 의해 제공 *되어야 한다*.
+
+일반 임시 볼륨은 써드파티 CSI 스토리지 드라이버에 의해 제공 *될 수 있지만*, 
+동적 프로비저닝을 지원하는 다른 스토리지 드라이버에 의해서도 제공될 수 있다. 
+일부 CSI 드라이버는 특히 CSI 임시 볼륨을 위해 만들어져서 
+동적 프로비저닝을 지원하지 않는데, 
+이러한 경우에는 일반 임시 볼륨 용으로는 사용할 수 없다.
+
+써드파티 드라이버 사용의 장점은 
+쿠버네티스 자체적으로는 지원하지 않는 기능(예: 
+kubelet에서 관리하는 디스크와 성능 특성이 다른 스토리지, 또는 다른 데이터 주입)을 
+제공할 수 있다는 것이다.
+
+### CSI 임시 볼륨 {#csi-ephemeral-volumes}
+
+{{< feature-state for_k8s_version="v1.16" state="beta" >}}
+
+이 기능을 사용하려면 `CSIInlineVolume` [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 활성화해야 한다. 
+쿠버네티스 1.16부터는 기본적으로 활성화되어 있다.
+
+{{< note >}}
+CSI 드라이버 중 일부만 CSI 임시 볼륨을 지원한다.
+쿠버네티스 CSI [드라이버 목록](https://kubernetes-csi.github.io/docs/drivers.html)에서 
+어떤 드라이버가 임시 볼륨을 지원하는지 보여 준다.
+{{< /note >}}
+
+개념적으로, CSI 임시 볼륨은 `configMap`, `downwardAPI`, `secret` 볼륨 유형과 비슷하다. 
+즉, 스토리지는 각 노드에서 로컬하게 관리되며, 
+파드가 노드에 스케줄링된 이후에 다른 로컬 리소스와 함께 생성된다. 
+쿠버네티스에는 지금 단계에서는 파드를 재스케줄링하는 개념이 없다. 
+볼륨 생성은 실패하는 일이 거의 없어야 하며, 
+만약 실패할 경우 파드 시작 과정이 중단될 것이다. 
+특히, [스토리지 용량 인지 파드 스케줄링](/ko/docs/concepts/storage/storage-capacity/)은 
+이러한 볼륨에 대해서는 지원되지 *않는다*. 
+또한 이러한 볼륨은 파드의 스토리지 자원 사용 상한에 제한받지 않는데, 
+이는 kubelet 자신이 관리하는 스토리지에만 강제할 수 있는 것이기 때문이다.
+
+
+다음은 CSI 임시 스토리지를 사용하는 파드에 대한 예시 매니페스트이다.
+
+```yaml
+kind: Pod
+apiVersion: v1
+metadata:
+  name: my-csi-app
+spec:
+  containers:
+    - name: my-frontend
+      image: busybox:1.28
+      volumeMounts:
+      - mountPath: "/data"
+        name: my-csi-inline-vol
+      command: [ "sleep", "1000000" ]
+  volumes:
+    - name: my-csi-inline-vol
+      csi:
+        driver: inline.storage.kubernetes.io
+        volumeAttributes:
+          foo: bar
+```
+
+`volumeAttributes`은 드라이버에 의해 어떤 볼륨이 준비되는지를 결정한다. 
+이러한 속성은 각 드라이버별로 다르며 표준화되지 않았다. 
+더 자세한 사항은 각 CSI 드라이버 문서를 
+참고한다.
+
+### CSI 드라이버 제한 사항
+
+CSI 임시 볼륨은 사용자로 하여금 `volumeAttributes`를 
+파드 스펙의 일부로서 CSI 드라이버에 직접 제공할 수 있도록 한다. 
+보통은 관리자만 사용할 수 있는 `volumeAttributes`를 허용하는 CSI 드라이버는 
+내장(inline) 임시 볼륨 내에서 사용하는 것이 적합하지 않다. 
+예를 들어, 일반적으로 스토리지클래스 내에 정의되어 있는 파라미터들은 
+내장 임시 볼륨 사용을 통해 사용자에게 노출되어서는 안 된다.
+
+클러스터 관리자가 이처럼 파드 스펙 내장 임시 볼륨 사용이 가능한 CSI 드라이버를 제한하려면 
+다음을 수행할 수 있다.
+- CSIDriver 스펙의 `volumeLifecycleModes`에서 `Ephemeral`을 제거하여, 해당 드라이버가 내장 임시 볼륨으로 사용되는 것을 막는다.
+- [어드미션 웹훅](/docs/reference/access-authn-authz/extensible-admission-controllers/)을 사용하여 드라이버를 활용하는 방법을 제한한다.
+
+### 일반 임시 볼륨 {#generic-ephemeral-volumes}
+
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
+
+일반 임시 볼륨은 
+프로비저닝 후 일반적으로 비어 있는 스크래치 데이터에 대해 파드 별 디렉터리를 제공한다는 점에서 
+`emptyDir` 볼륨과 유사하다. 
+하지만 다음과 같은 추가 기능도 제공한다.
+
+- 스토리지는 로컬이거나 네트워크 연결형(network-attached)일 수 있다.
+- 볼륨의 크기를 고정할 수 있으며 파드는 이 크기를 초과할 수 없다.
+- 드라이버와 파라미터에 따라 
+  볼륨이 초기 데이터를 가질 수도 있다.
+- 볼륨에 대한 일반적인 작업은 드라이버가 지원하는 범위 내에서 지원된다. 
+  이와 같은 작업은 다음을 포함한다.
+  [스냅샷](/ko/docs/concepts/storage/volume-snapshots/),
+  [복제](/ko/docs/concepts/storage/volume-pvc-datasource/),
+  [크기 조정](/ko/docs/concepts/storage/persistent-volumes/#퍼시스턴트-볼륨-클레임-확장),
+  및 [스토리지 용량 추적](/ko/docs/concepts/storage/storage-capacity/).
+
+다음은 예시이다.
+
+```yaml
+kind: Pod
+apiVersion: v1
+metadata:
+  name: my-app
+spec:
+  containers:
+    - name: my-frontend
+      image: busybox:1.28
+      volumeMounts:
+      - mountPath: "/scratch"
+        name: scratch-volume
+      command: [ "sleep", "1000000" ]
+  volumes:
+    - name: scratch-volume
+      ephemeral:
+        volumeClaimTemplate:
+          metadata:
+            labels:
+              type: my-frontend-volume
+          spec:
+            accessModes: [ "ReadWriteOnce" ]
+            storageClassName: "scratch-storage-class"
+            resources:
+              requests:
+                storage: 1Gi
+```
+
+### 라이프사이클 및 퍼시스턴트볼륨클레임
+
+핵심 설계 아이디어는 
+[볼륨 클레임을 위한 파라미터](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#ephemeralvolumesource-v1alpha1-core)는 
+파드의 볼륨 소스 내부에서 허용된다는 점이다. 
+레이블, 어노테이션 및 퍼시스턴트볼륨클레임을 위한 모든 필드가 지원된다. 
+이러한 파드가 생성되면, 임시 볼륨 컨트롤러는 파드가 속한 동일한 네임스페이스에 
+퍼시스턴트볼륨클레임 오브젝트를 생성하고 
+파드가 삭제될 때에는 퍼시스턴트볼륨클레임도 삭제되도록 만든다.
+
+이는 볼륨 바인딩 및/또는 프로비저닝을 유발하는데, 
+{{< glossary_tooltip text="스토리지클래스" term_id="storage-class" >}}가 
+즉각적인(immediate) 볼륨 바인딩을 사용하는 경우에는 즉시, 
+또는 파드가 노드에 잠정적으로 스케줄링되었을 때 발생한다(`WaitForFirstConsumer` 볼륨 바인딩 모드). 
+일반 임시 볼륨에는 후자가 추천되는데, 이 경우 스케줄러가 파드를 할당하기에 적합한 노드를 선택하기가 쉬워지기 때문이다. 
+즉각적인 바인딩을 사용하는 경우, 
+스케줄러는 볼륨이 사용 가능해지는 즉시 해당 볼륨에 접근 가능한 노드를 선택하도록 강요받는다.
+
+[리소스 소유권](/ko/docs/concepts/architecture/garbage-collection/#owners-dependents) 관점에서, 
+일반 임시 스토리지를 갖는 파드는 
+해당 임시 스토리지를 제공하는 퍼시스턴트볼륨클레임의 소유자이다. 
+파드가 삭제되면, 쿠버네티스 가비지 콜렉터는 해당 PVC를 삭제하는데, 
+스토리지 클래스의 기본 회수 정책이 볼륨을 삭제하는 것이기 때문에 PVC의 삭제는 보통 볼륨의 삭제를 유발한다. 
+회수 정책을 `retain`으로 설정한 스토리지클래스를 사용하여 준 임시(quasi-ephemeral) 로컬 스토리지를 생성할 수도 있는데, 
+이렇게 하면 스토리지의 수명이 파드의 수명보다 길어지며, 
+이러한 경우 볼륨 정리를 별도로 수행해야 함을 명심해야 한다.
+
+이러한 PVC가 존재하는 동안은, 다른 PVC와 동일하게 사용될 수 있다. 
+특히, 볼륨 복제 또는 스냅샷 시에 데이터 소스로 참조될 수 있다. 
+또한 해당 PVC 오브젝트는 해당 볼륨의 현재 상태도 
+가지고 있다.
+
+### 퍼시스턴트볼륨클레임 이름 정하기
+
+자동으로 생성된 PVC의 이름은 규칙에 따라 정해진다. 
+PVC의 이름은 파드 이름과 볼륨 이름의 사이를 하이픈(`-`)으로 결합한 형태이다. 
+위의 예시에서, PVC 이름은 `my-app-scratch-volume`가 된다. 
+이렇게 규칙에 의해 정해진 이름은 PVC와의 상호작용을 더 쉽게 만드는데, 
+이는 파드 이름과 볼륨 이름을 알면 
+PVC 이름을 별도로 검색할 필요가 없기 때문이다.
+
+PVC 이름 규칙에 따라 서로 다른 파드 간 이름 충돌이 발생할 수 
+있으며("pod-a" 파드 + "scratch" 볼륨 vs. "pod" 파드 + "a-scratch" 볼륨 - 
+두 경우 모두 PVC 이름은 "pod-a-scratch") 
+또한 파드와 수동으로 생성한 PVC 간에도 이름 충돌이 발생할 수 있다.
+
+이러한 충돌은 감지될 수 있는데, 이는 PVC가 파드를 위해 생성된 경우에만 임시 볼륨으로 사용되기 때문이다. 
+이러한 체크는 소유권 관계를 기반으로 한다. 
+기존에 존재하던 PVC는 덮어써지거나 수정되지 않는다. 
+대신에 충돌을 해결해주지는 않는데, 
+이는 적합한 PVC가 없이는 파드가 시작될 수 없기 때문이다.
+
+{{< caution >}}
+이러한 충돌이 발생하지 않도록 
+동일한 네임스페이스 내에서는 파드와 볼륨의 이름을 정할 때 주의해야 한다.
+{{< /caution >}}
+
+### 보안
+
+GenericEphemeralVolume 기능을 활성화하면 
+사용자가 파드를 생성할 수 있는 경우 PVC를 간접적으로 생성할 수 있도록 허용하며, 
+심지어 사용자가 PVC를 직접적으로 만들 수 있는 권한이 없는 경우에도 이를 허용한다. 클러스터 관리자는 이를 명심해야 한다. 
+이것이 보안 모델에 부합하지 않는다면, [어드미션 웹훅](/docs/reference/access-authn-authz/extensible-admission-controllers/)을 사용하여 
+일반 임시 볼륨을 갖는 파드와 같은 오브젝트를 거부해야 한다.
+
+일반적인 [PVC의 네임스페이스 쿼터](/ko/docs/concepts/policy/resource-quotas/#스토리지-리소스-쿼터)는 여전히 적용되므로, 
+사용자가 이 새로운 메카니즘을 사용할 수 있도록 허용되었어도, 
+다른 정책을 우회하는 데에는 사용할 수 없다.
+
+## {{% heading "whatsnext" %}}
+
+### kubelet이 관리하는 임시 볼륨
+
+[로컬 임시 스토리지](/ko/docs/concepts/configuration/manage-resources-containers/#로컬-임시-ephemeral-스토리지)를 참고한다.
+
+### CSI 임시 볼륨
+
+- 설계에 대한 더 자세한 정보는 
+  [임시 인라인 CSI 볼륨 KEP](https://github.com/kubernetes/enhancements/blob/ad6021b3d61a49040a3f835e12c8bb5424db2bbb/keps/sig-storage/20190122-csi-inline-volumes.md)를 참고한다.
+- 이 기능의 추가 개발에 대한 자세한 정보는 [enhancement 저장소의 이슈 #596](https://github.com/kubernetes/enhancements/issues/596)을 참고한다.
+
+### 일반 임시 볼륨
+
+- 설계에 대한 더 자세한 정보는 
+  [일반 임시 인라인 볼륨 KEP](https://github.com/kubernetes/enhancements/blob/master/keps/sig-storage/1698-generic-ephemeral-volumes/README.md)를 참고한다.
diff --git a/content/ko/docs/concepts/storage/persistent-volumes.md b/content/ko/docs/concepts/storage/persistent-volumes.md
index c70b7413ad..857d25e8ae 100644
--- a/content/ko/docs/concepts/storage/persistent-volumes.md
+++ b/content/ko/docs/concepts/storage/persistent-volumes.md
@@ -10,14 +10,13 @@ feature:
   title: 스토리지 오케스트레이션
   description: >
     로컬 스토리지, <a href="https://cloud.google.com/storage/">GCP</a>나 <a href="https://aws.amazon.com/products/storage/">AWS</a>와 같은 퍼블릭 클라우드 공급자 또는 NFS, iSCSI, Gluster, Ceph, Cinder나 Flocker와 같은 네트워크 스토리지 시스템에서 원하는 스토리지 시스템을 자동으로 마운트한다.
-
 content_type: concept
 weight: 20
 ---
 
 <!-- overview -->
 
-이 페이지는 쿠버네티스의 _퍼시스턴트 볼륨_ 의 현재 상태를 설명한다. [볼륨](/ko/docs/concepts/storage/volumes/)에 대해 익숙해지는 것을 추천한다.
+이 페이지에서는 쿠버네티스의 _퍼시스턴트 볼륨_ 에 대해 설명한다. [볼륨](/ko/docs/concepts/storage/volumes/)에 대해 익숙해지는 것을 추천한다.
 
 <!-- body -->
 
@@ -74,8 +73,8 @@ API 서버 커맨드라인 플래그에 대한 자세한 정보는
 
 일단 사용자에게 클레임이 있고 그 클레임이 바인딩되면, 바인딩된 PV는 사용자가 필요로 하는 한 사용자에게 속한다. 사용자는 파드의 `volumes` 블록에 `persistentVolumeClaim`을 포함하여 파드를 스케줄링하고 클레임한 PV에 접근한다. 이에 대한 자세한 내용은 [볼륨으로 클레임하기](#볼륨으로-클레임하기)를 참고하길 바란다.
 
-### 사용 중인 스토리지 오브젝트 ​​보호
-사용 중인 스토리지 오브젝트 ​​보호 기능의 목적은 PVC에 바인딩된 파드와 퍼시스턴트볼륨(PV)이 사용 중인 퍼시스턴트볼륨클레임(PVC)을 시스템에서 삭제되지 않도록 하는 것이다. 삭제되면 이로 인해 데이터의 손실이 발생할 수 있기 때문이다.
+### 사용 중인 스토리지 오브젝트 보호
+사용 중인 스토리지 오브젝트 보호 기능의 목적은 PVC에 바인딩된 파드와 퍼시스턴트볼륨(PV)이 사용 중인 퍼시스턴트볼륨클레임(PVC)을 시스템에서 삭제되지 않도록 하는 것이다. 삭제되면 이로 인해 데이터의 손실이 발생할 수 있기 때문이다.
 
 {{< note >}}
 PVC를 사용하는 파드 오브젝트가 존재하면 파드가 PVC를 사용하고 있는 상태이다.
@@ -130,8 +129,10 @@ Events:            <none>
 `Retain` 반환 정책은 리소스를 수동으로 반환할 수 있게 한다. 퍼시스턴트볼륨클레임이 삭제되면 퍼시스턴트볼륨은 여전히 존재하며 볼륨은 "릴리스 된" 것으로 간주된다. 그러나 이전 요청자의 데이터가 여전히 볼륨에 남아 있기 때문에 다른 요청에 대해서는 아직 사용할 수 없다. 관리자는 다음 단계에 따라 볼륨을 수동으로 반환할 수 있다.
 
 1. 퍼시스턴트볼륨을 삭제한다. PV가 삭제된 후에도 외부 인프라(예: AWS EBS, GCE PD, Azure Disk 또는 Cinder 볼륨)의 관련 스토리지 자산이 존재한다.
-1. 관련 스토리지 자산의 데이터를 수동으로 삭제한다.
-1. 연결된 스토리지 자산을 수동으로 삭제하거나 동일한 스토리지 자산을 재사용하려는 경우 스토리지 자산 정의로 새 퍼시스턴트볼륨을 생성한다.
+2. 관련 스토리지 자산의 데이터를 수동으로 삭제한다.
+3. 연결된 스토리지 자산을 수동으로 삭제한다.
+
+동일한 스토리지 자산을 재사용하려는 경우, 동일한 스토리지 자산 정의로 새 퍼시스턴트볼륨을 생성한다.
 
 #### Delete(삭제)
 
@@ -174,6 +175,74 @@ spec:
 
 그러나 `volumes` 부분의 사용자 정의 재활용 파드 템플릿에 지정된 특정 경로는 재활용되는 볼륨의 특정 경로로 바뀐다.
 
+### 퍼시스턴트볼륨 삭제 보호 파이널라이저(finalizer) {#persistentvolume-deletion-protection-finalizer}
+{{< feature-state for_k8s_version="v1.23" state="alpha" >}}
+
+퍼시스턴트볼륨에 파이널라이저를 추가하여, `Delete` 반환 정책을 갖는 퍼시스턴트볼륨이 
+기반 스토리지(backing storage)가 삭제된 이후에만 삭제되도록 할 수 있다.
+
+새롭게 도입된 `kubernetes.io/pv-controller` 및 `external-provisioner.volume.kubernetes.io/finalizer` 파이널라이저는 
+동적으로 프로비전된 볼륨에만 추가된다.
+
+`kubernetes.io/pv-controller` 파이널라이저는 인-트리 플러그인 볼륨에 추가된다. 다음은 이에 대한 예시이다.
+
+```shell
+kubectl describe pv pvc-74a498d6-3929-47e8-8c02-078c1ece4d78
+Name:            pvc-74a498d6-3929-47e8-8c02-078c1ece4d78
+Labels:          <none>
+Annotations:     kubernetes.io/createdby: vsphere-volume-dynamic-provisioner
+                 pv.kubernetes.io/bound-by-controller: yes
+                 pv.kubernetes.io/provisioned-by: kubernetes.io/vsphere-volume
+Finalizers:      [kubernetes.io/pv-protection kubernetes.io/pv-controller]
+StorageClass:    vcp-sc
+Status:          Bound
+Claim:           default/vcp-pvc-1
+Reclaim Policy:  Delete
+Access Modes:    RWO
+VolumeMode:      Filesystem
+Capacity:        1Gi
+Node Affinity:   <none>
+Message:         
+Source:
+    Type:               vSphereVolume (a Persistent Disk resource in vSphere)
+    VolumePath:         [vsanDatastore] d49c4a62-166f-ce12-c464-020077ba5d46/kubernetes-dynamic-pvc-74a498d6-3929-47e8-8c02-078c1ece4d78.vmdk
+    FSType:             ext4
+    StoragePolicyName:  vSAN Default Storage Policy
+Events:                 <none>
+```
+
+`external-provisioner.volume.kubernetes.io/finalizer` 파이널라이저는 CSI 볼륨에 추가된다.
+다음은 이에 대한 예시이다.
+```shell
+Name:            pvc-2f0bab97-85a8-4552-8044-eb8be45cf48d
+Labels:          <none>
+Annotations:     pv.kubernetes.io/provisioned-by: csi.vsphere.vmware.com
+Finalizers:      [kubernetes.io/pv-protection external-provisioner.volume.kubernetes.io/finalizer]
+StorageClass:    fast
+Status:          Bound
+Claim:           demo-app/nginx-logs
+Reclaim Policy:  Delete
+Access Modes:    RWO
+VolumeMode:      Filesystem
+Capacity:        200Mi
+Node Affinity:   <none>
+Message:         
+Source:
+    Type:              CSI (a Container Storage Interface (CSI) volume source)
+    Driver:            csi.vsphere.vmware.com
+    FSType:            ext4
+    VolumeHandle:      44830fa8-79b4-406b-8b58-621ba25353fd
+    ReadOnly:          false
+    VolumeAttributes:      storage.kubernetes.io/csiProvisionerIdentity=1648442357185-8081-csi.vsphere.vmware.com
+                           type=vSphere CNS Block Volume
+Events:                <none>
+```
+
+특정 인-트리 볼륨 플러그인에 대해 `CSIMigration` 기능을 활성화하면 `kubernetes.io/pv-controller` 파이널라이저는 제거되고, 
+`external-provisioner.volume.kubernetes.io/finalizer` 파이널라이저가 추가된다. 
+이와 비슷하게, `CSIMigration` 기능을 비활성화하면 `external-provisioner.volume.kubernetes.io/finalizer` 파이널라이저는 제거되고, 
+`kubernetes.io/pv-controller` 파이널라이저가 추가된다.
+
 ### 퍼시스턴트볼륨 예약
 
 컨트롤 플레인은 클러스터에서 [퍼시스턴트볼륨클레임을 일치하는 퍼시스턴트볼륨에 바인딩](#바인딩)할
@@ -219,19 +288,19 @@ spec:
 
 {{< feature-state for_k8s_version="v1.11" state="beta" >}}
 
-이제 퍼시스턴트볼륨클레임(PVC) 확장 지원이 기본적으로 활성화되어 있다. 다음 유형의
+퍼시스턴트볼륨클레임(PVC) 확장 지원은 기본적으로 활성화되어 있다. 다음 유형의
 볼륨을 확장할 수 있다.
 
-* gcePersistentDisk
+* azureDisk
+* azureFile
 * awsElasticBlockStore
-* Cinder
+* cinder (deprecated)
+* {{< glossary_tooltip text="csi" term_id="csi" >}}
+* flexVolume (deprecated)
+* gcePersistentDisk
 * glusterfs
 * rbd
-* Azure File
-* Azure Disk
-* Portworx
-* FlexVolumes
-* {{< glossary_tooltip text="CSI" term_id="csi" >}}
+* portworxVolume
 
 스토리지 클래스의 `allowVolumeExpansion` 필드가 true로 설정된 경우에만 PVC를 확장할 수 있다.
 
@@ -253,6 +322,16 @@ PVC에 대해 더 큰 볼륨을 요청하려면 PVC 오브젝트를 수정하여
 지정한다. 이는 기본 퍼시스턴트볼륨을 지원하는 볼륨의 확장을 트리거한다. 클레임을 만족시키기 위해
 새로운 퍼시스턴트볼륨이 생성되지 않고 기존 볼륨의 크기가 조정된다.
 
+{{< warning >}}
+퍼시스턴트볼륨의 크기를 직접 변경하면 자동 볼륨 리사이즈 기능을 이용할 수 없게 된다. 
+퍼시스턴트볼륨의 크기를 변경하고, 
+퍼시스턴트볼륨에 해당되는 퍼시스턴트볼륨클레임의 `.spec`에 적혀 있는 크기를 동일하게 변경하면, 
+스토리지 리사이즈가 발생하지 않는다.
+쿠버네티스 컨트롤 플레인은 
+두 리소스의 목표 상태(desired state)가 일치하는 것을 확인하고, 
+배후(backing) 볼륨 크기가 수동으로 증가되어 리사이즈가 필요하지 않다고 판단할 것이다.
+{{< /warning >}}
+
 #### CSI 볼륨 확장
 
 {{< feature-state for_k8s_version="v1.16" state="beta" >}}
@@ -268,23 +347,18 @@ CSI 볼륨 확장 지원은 기본적으로 활성화되어 있지만 볼륨 확
 경우에만 파일시스템의 크기가 조정된다. 파일시스템 확장은 파드가 시작되거나
 파드가 실행 중이고 기본 파일시스템이 온라인 확장을 지원할 때 수행된다.
 
-FlexVolumes는 `RequiresFSResize` 기능으로 드라이버가 `true`로 설정된 경우 크기 조정을 허용한다.
+FlexVolumes(쿠버네티스 v1.23부터 사용 중단됨)는 드라이버의 `RequiresFSResize` 기능이 `true`로 설정된 경우 크기 조정을 허용한다.
 FlexVolume은 파드 재시작 시 크기를 조정할 수 있다.
 
 #### 사용 중인 퍼시스턴트볼륨클레임 크기 조정
 
-{{< feature-state for_k8s_version="v1.15" state="beta" >}}
-
-{{< note >}}
-사용 중인 PVC 확장은 쿠버네티스 1.15 이후 버전에서는 베타로, 1.11 이후 버전에서는 알파로 제공된다. `ExpandInUsePersistentVolumes` 기능을 사용하도록 설정해야 한다. 베타 기능의 경우 여러 클러스터에서 자동으로 적용된다. 자세한 내용은 [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/) 문서를 참고한다.
-{{< /note >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 이 경우 기존 PVC를 사용하는 파드 또는 디플로이먼트를 삭제하고 다시 만들 필요가 없다.
 파일시스템이 확장되자마자 사용 중인 PVC가 파드에서 자동으로 사용 가능하다.
 이 기능은 파드나 디플로이먼트에서 사용하지 않는 PVC에는 영향을 미치지 않는다. 확장을 완료하기 전에
 PVC를 사용하는 파드를 만들어야 한다.
 
-
 다른 볼륨 유형과 비슷하게 FlexVolume 볼륨도 파드에서 사용 중인 경우 확장할 수 있다.
 
 {{< note >}}
@@ -297,6 +371,11 @@ EBS 볼륨 확장은 시간이 많이 걸리는 작업이다. 또한 6시간마
 
 #### 볼륨 확장 시 오류 복구
 
+사용자가 기반 스토리지 시스템이 제공할 수 있는 것보다 더 큰 사이즈를 지정하면, 사용자 또는 클러스터 관리자가 조치를 취하기 전까지 PVC 확장을 계속 시도한다. 이는 바람직하지 않으며 따라서 쿠버네티스는 이러한 오류 상황에서 벗어나기 위해 다음과 같은 방법을 제공한다.
+
+{{< tabs name="recovery_methods" >}}
+{{% tab name="클러스터 관리자 접근 권한을 이용하여 수동으로" %}}
+
 기본 스토리지 확장에 실패하면, 클러스터 관리자가 수동으로 퍼시스턴트 볼륨 클레임(PVC) 상태를 복구하고 크기 조정 요청을 취소할 수 있다. 그렇지 않으면, 컨트롤러가 관리자 개입 없이 크기 조정 요청을 계속해서 재시도한다.
 
 1. 퍼시스턴트볼륨클레임(PVC)에 바인딩된 퍼시스턴트볼륨(PV)을 `Retain` 반환 정책으로 표시한다.
@@ -305,6 +384,30 @@ EBS 볼륨 확장은 시간이 많이 걸리는 작업이다. 또한 6시간마
 4. PV 보다 작은 크기로 PVC를 다시 만들고 PVC의 `volumeName` 필드를 PV 이름으로 설정한다. 이것은 새 PVC를 기존 PV에 바인딩해야 한다.
 5. PV의 반환 정책을 복원하는 것을 잊지 않는다.
 
+{{% /tab %}}
+{{% tab name="더 작은 크기로의 확장을 요청하여" %}}
+{{% feature-state for_k8s_version="v1.23" state="alpha" %}}
+
+{{< note >}}
+PVC 확장 실패의 사용자에 의한 복구는 쿠버네티스 1.23부터 제공되는 알파 기능이다. 이 기능이 작동하려면 `RecoverVolumeExpansionFailure` 기능이 활성화되어 있어야 한다. 더 많은 정보는 [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/) 문서를 참조한다.
+{{< /note >}}
+
+클러스터에 `RecoverVolumeExpansionFailure` 
+기능 게이트가 활성화되어 있는 상태에서 PVC 확장이 실패하면 
+이전에 요청했던 값보다 작은 크기로의 확장을 재시도할 수 있다. 
+더 작은 크기를 지정하여 확장 시도를 요청하려면, 
+이전에 요청했던 값보다 작은 크기로 PVC의 `.spec.resources` 값을 수정한다.
+이는 총 용량 제한(capacity constraint)으로 인해 큰 값으로의 확장이 실패한 경우에 유용하다. 
+만약 확장이 실패했다면, 또는 실패한 것 같다면, 기반 스토리지 공급자의 용량 제한보다 작은 값으로 확장을 재시도할 수 있다. 
+`.status.resizeStatus`와 PVC의 이벤트를 감시하여 리사이즈 작업의 상태를 모니터할 수 있다.
+
+참고: 
+이전에 요청했던 값보다 작은 크기를 요청했더라도, 
+새로운 값이 여전히 `.status.capacity`보다 클 수 있다. 
+쿠버네티스는 PVC를 현재 크기보다 더 작게 축소하는 것은 지원하지 않는다.
+{{% /tab %}}
+{{% /tabs %}}
+
 
 ## 퍼시스턴트 볼륨의 유형
 
@@ -314,12 +417,8 @@ EBS 볼륨 확장은 시간이 많이 걸리는 작업이다. 또한 6시간마
 * [`azureDisk`](/ko/docs/concepts/storage/volumes/#azuredisk) - Azure Disk
 * [`azureFile`](/ko/docs/concepts/storage/volumes/#azurefile) - Azure File
 * [`cephfs`](/ko/docs/concepts/storage/volumes/#cephfs) - CephFS 볼륨
-* [`cinder`](/ko/docs/concepts/storage/volumes/#cinder) - Cinder (오픈스택 블록 스토리지)
-  (**사용 중단**)
 * [`csi`](/ko/docs/concepts/storage/volumes/#csi) - 컨테이너 스토리지 인터페이스 (CSI)
 * [`fc`](/ko/docs/concepts/storage/volumes/#fc) - Fibre Channel (FC) 스토리지
-* [`flexVolume`](/ko/docs/concepts/storage/volumes/#flexVolume) - FlexVolume
-* [`flocker`](/ko/docs/concepts/storage/volumes/#flocker) - Flocker 스토리지
 * [`gcePersistentDisk`](/ko/docs/concepts/storage/volumes/#gcepersistentdisk) - GCE Persistent Disk
 * [`glusterfs`](/ko/docs/concepts/storage/volumes/#glusterfs) - Glusterfs 볼륨
 * [`hostPath`](/ko/docs/concepts/storage/volumes/#hostpath) - HostPath 볼륨
@@ -329,17 +428,30 @@ EBS 볼륨 확장은 시간이 많이 걸리는 작업이다. 또한 6시간마
 * [`local`](/ko/docs/concepts/storage/volumes/#local) - 노드에 마운트된
   로컬 스토리지 디바이스
 * [`nfs`](/ko/docs/concepts/storage/volumes/#nfs) - 네트워크 파일 시스템 (NFS) 스토리지
-* `photonPersistentDisk` - Photon 컨트롤러 퍼시스턴트 디스크.
-  (이 볼륨 유형은 해당 클라우드 공급자가 없어진 이후 더 이상
-  작동하지 않는다.)
 * [`portworxVolume`](/ko/docs/concepts/storage/volumes/#portworxvolume) - Portworx 볼륨
-* [`quobyte`](/ko/docs/concepts/storage/volumes/#quobyte) - Quobyte 볼륨
 * [`rbd`](/ko/docs/concepts/storage/volumes/#rbd) - Rados Block Device (RBD) 볼륨
-* [`scaleIO`](/ko/docs/concepts/storage/volumes/#scaleio) - ScaleIO 볼륨
-  (**사용 중단**)
-* [`storageos`](/ko/docs/concepts/storage/volumes/#storageos) - StorageOS 볼륨
 * [`vsphereVolume`](/ko/docs/concepts/storage/volumes/#vspherevolume) - vSphere VMDK 볼륨
 
+아래의 PersistentVolume 타입은 사용 중단되었다. 이 말인 즉슨, 지원은 여전히 제공되지만 추후 쿠버네티스 릴리스에서는 삭제될 예정이라는 것이다.
+
+* [`cinder`](/ko/docs/concepts/storage/volumes/#cinder) - Cinder (오픈스택 블록 스토리지)
+  (v1.18에서 **사용 중단**)
+* [`flexVolume`](/ko/docs/concepts/storage/volumes/#flexvolume) - FlexVolume
+  (v1.23에서 **사용 중단**)
+* [`flocker`](/ko/docs/concepts/storage/volumes/#flocker) - Flocker 스토리지
+  (v1.22에서 **사용 중단**)
+* [`quobyte`](/ko/docs/concepts/storage/volumes/#quobyte) - Quobyte 볼륨
+  (v1.22에서 **사용 중단**)
+* [`storageos`](/ko/docs/concepts/storage/volumes/#storageos) - StorageOS 볼륨
+  (v1.22에서 **사용 중단**)
+
+이전 쿠버네티스 버전은 아래의 인-트리 PersistentVolume 타입도 지원했었다.
+
+* `photonPersistentDisk` - Photon 컨트롤러 퍼시스턴트 디스크.
+  (v1.15 이후 **사용 불가**)
+* [`scaleIO`](/ko/docs/concepts/storage/volumes/#scaleio) - ScaleIO 볼륨
+  (v1.21 이후 **사용 불가**)
+
 ## 퍼시스턴트 볼륨
 
 각 PV에는 스펙과 상태(볼륨의 명세와 상태)가 포함된다.
@@ -373,7 +485,7 @@ spec:
 
 ### 용량
 
-일반적으로 PV는 특정 저장 용량을 가진다. 이것은 PV의 `capacity` 속성을 사용하여 설정된다. `capacity`가 사용하는 단위를 이해하려면 쿠버네티스 [리소스 모델](https://git.k8s.io/community/contributors/design-proposals/scheduling/resources.md)을 참고한다.
+일반적으로 PV는 특정 저장 용량을 가진다. 이것은 PV의 `capacity` 속성을 사용하여 설정된다. `capacity`가 사용하는 단위를 이해하려면 용어집에 있는 [수량](/ko/docs/reference/glossary/?all=true#term-quantity) 항목을 참고한다.
 
 현재 스토리지 용량 크기는 설정하거나 요청할 수 있는 유일한 리소스이다. 향후 속성에 IOPS, 처리량 등이 포함될 수 있다.
 
@@ -404,41 +516,54 @@ spec:
 
 접근 모드는 다음과 같다.
 
-* ReadWriteOnce -- 하나의 노드에서 볼륨을 읽기-쓰기로 마운트할 수 있다
-* ReadOnlyMany -- 여러 노드에서 볼륨을 읽기 전용으로 마운트할 수 있다
-* ReadWriteMany -- 여러 노드에서 볼륨을 읽기-쓰기로 마운트할 수 있다
+`ReadWriteOnce`
+: 하나의 노드에서 해당 볼륨이 읽기-쓰기로 마운트 될 수 있다. ReadWriteOnce 접근 모드에서도 파드가 동일 노드에서 구동되는 경우에는 복수의 파드에서 볼륨에 접근할 수 있다.
+
+`ReadOnlyMany`
+: 볼륨이 다수의 노드에서 읽기 전용으로 마운트 될 수 있다.
+
+`ReadWriteMany`
+: 볼륨이 다수의 노드에서 읽기-쓰기로 마운트 될 수 있다.
+
+`ReadWriteOncePod`
+: 볼륨이 단일 파드에서 읽기-쓰기로 마운트될 수 있다. 전체 클러스터에서 단 하나의 파드만 해당 PVC를 읽거나 쓸 수 있어야하는 경우 ReadWriteOncePod 접근 모드를 사용한다. 이 기능은 CSI 볼륨과 쿠버네티스 버전 1.22+ 에서만 지원된다.
+
+
+
+[퍼시스턴트 볼륨에 대한 단일 파드 접근 모드 소개](/blog/2021/09/13/read-write-once-pod-access-mode-alpha/) 블로그 기사에서 이에 대해 보다 자세한 내용을 다룬다.
+
 
 CLI에서 접근 모드는 다음과 같이 약어로 표시된다.
 
 * RWO - ReadWriteOnce
 * ROX - ReadOnlyMany
 * RWX - ReadWriteMany
+* RWOP - ReadWriteOncePod
 
 > __중요!__ 볼륨이 여러 접근 모드를 지원하더라도 한 번에 하나의 접근 모드를 사용하여 마운트할 수 있다. 예를 들어 GCEPersistentDisk는 하나의 노드가 ReadWriteOnce로 마운트하거나 여러 노드가 ReadOnlyMany로 마운트할 수 있지만 동시에는 불가능하다.
 
 
-| Volume Plugin        | ReadWriteOnce          | ReadOnlyMany          | ReadWriteMany|
-| :---                 | :---:                  | :---:                 | :---:        |
-| AWSElasticBlockStore | &#x2713;               | -                     | -            |
-| AzureFile            | &#x2713;               | &#x2713;              | &#x2713;     |
-| AzureDisk            | &#x2713;               | -                     | -            |
-| CephFS               | &#x2713;               | &#x2713;              | &#x2713;     |
-| Cinder               | &#x2713;               | -                     | -            |
-| CSI                  | 드라이버에 따라 다름    | 드라이버에 따라 다름    | 드라이버에 따라 다름 |
-| FC                   | &#x2713;               | &#x2713;              | -            |
-| FlexVolume           | &#x2713;               | &#x2713;              | 드라이버에 따라 다름 |
-| Flocker              | &#x2713;               | -                     | -            |
-| GCEPersistentDisk    | &#x2713;               | &#x2713;              | -            |
-| Glusterfs            | &#x2713;               | &#x2713;              | &#x2713;     |
-| HostPath             | &#x2713;               | -                     | -            |
-| iSCSI                | &#x2713;               | &#x2713;              | -            |
-| Quobyte              | &#x2713;               | &#x2713;              | &#x2713;     |
-| NFS                  | &#x2713;               | &#x2713;              | &#x2713;     |
-| RBD                  | &#x2713;               | &#x2713;              | -            |
-| VsphereVolume        | &#x2713;               | -                     | - (파드가 병치될(collocated) 때 작동)  |
-| PortworxVolume       | &#x2713;               | -                     | &#x2713;     |
-| ScaleIO              | &#x2713;               | &#x2713;              | -            |
-| StorageOS            | &#x2713;               | -                     | -            |
+| Volume Plugin        | ReadWriteOnce          | ReadOnlyMany          | ReadWriteMany | ReadWriteOncePod       |
+| :---                 | :---:                  | :---:                 | :---:         | -                      |
+| AWSElasticBlockStore | &#x2713;               | -                     | -             | -                      |
+| AzureFile            | &#x2713;               | &#x2713;              | &#x2713;      | -                      |
+| AzureDisk            | &#x2713;               | -                     | -             | -                      |
+| CephFS               | &#x2713;               | &#x2713;              | &#x2713;      | -                      |
+| Cinder               | &#x2713;               | -                     | -             | -                      |
+| CSI                  | depends on the driver  | depends on the driver | depends on the driver | depends on the driver |
+| FC                   | &#x2713;               | &#x2713;              | -             | -                      |
+| FlexVolume           | &#x2713;               | &#x2713;              | depends on the driver | -              |
+| Flocker              | &#x2713;               | -                     | -             | -                      |
+| GCEPersistentDisk    | &#x2713;               | &#x2713;              | -             | -                      |
+| Glusterfs            | &#x2713;               | &#x2713;              | &#x2713;      | -                      |
+| HostPath             | &#x2713;               | -                     | -             | -                      |
+| iSCSI                | &#x2713;               | &#x2713;              | -             | -                      |
+| Quobyte              | &#x2713;               | &#x2713;              | &#x2713;      | -                      |
+| NFS                  | &#x2713;               | &#x2713;              | &#x2713;      | -                      |
+| RBD                  | &#x2713;               | &#x2713;              | -             | -                      |
+| VsphereVolume        | &#x2713;               | -                     | - (works when Pods are collocated) | - |
+| PortworxVolume       | &#x2713;               | -                     | &#x2713;      | -                  | - |
+| StorageOS            | &#x2713;               | -                     | -             | -                      |
 
 ### 클래스
 
@@ -473,19 +598,19 @@ PV는 `storageClassName` 속성을
 
 다음 볼륨 유형은 마운트 옵션을 지원한다.
 
-* AWSElasticBlockStore
-* AzureDisk
-* AzureFile
-* CephFS
-* Cinder (OpenStack 블록 스토리지)
-* GCEPersistentDisk
-* Glusterfs
-* NFS
-* Quobyte Volumes
-* RBD (Ceph Block Device)
-* StorageOS
-* VsphereVolume
-* iSCSI
+* `awsElasticBlockStore`
+* `azureDisk`
+* `azureFile`
+* `cephfs`
+* `cinder` (v1.18에서 **사용 중단됨**)
+* `gcePersistentDisk`
+* `glusterfs`
+* `iscsi`
+* `nfs`
+* `quobyte` (v1.22에서 **사용 중단됨**)
+* `rbd`
+* `storageos` (v1.22에서 **사용 중단됨**)
+* `vsphereVolume`
 
 마운트 옵션의 유효성이 검사되지 않는다. 마운트 옵션이 유효하지 않으면, 마운트가 실패한다.
 
@@ -499,7 +624,7 @@ PV는 `storageClassName` 속성을
 대부분의 볼륨 유형의 경우 이 필드를 설정할 필요가 없다. [AWS EBS](/ko/docs/concepts/storage/volumes/#awselasticblockstore), [GCE PD](/ko/docs/concepts/storage/volumes/#gcepersistentdisk) 및 [Azure Disk](/ko/docs/concepts/storage/volumes/#azuredisk) 볼륨 블록 유형에 자동으로 채워진다. [로컬](/ko/docs/concepts/storage/volumes/#local) 볼륨에 대해서는 이를 명시적으로 설정해야 한다.
 {{< /note >}}
 
-PV는 [노드 어피니티](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#volumenodeaffinity-v1-core)를 지정하여 이 볼륨에 접근할 수 있는 노드를 제한하는 제약 조건을 정의할 수 있다. PV를 사용하는 파드는 노드 어피니티에 의해 선택된 노드로만 스케줄링된다.
+PV는 [노드 어피니티](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#volumenodeaffinity-v1-core)를 지정하여 이 볼륨에 접근할 수 있는 노드를 제한하는 제약 조건을 정의할 수 있다. PV를 사용하는 파드는 노드 어피니티에 의해 선택된 노드로만 스케줄링된다. 노드 어피니티를 명기하기 위해서는, PV의 `.spec`에 `nodeAffinity`를 설정한다. [퍼시스턴트볼륨](/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-v1/#PersistentVolumeSpec) API 레퍼런스에 해당 필드에 대해 보다 자세한 내용이 있다.
 
 ### 단계(Phase)
 
@@ -785,6 +910,78 @@ spec:
       storage: 10Gi
 ```
 
+## 볼륨 파퓰레이터(Volume populator)와 데이터 소스
+
+{{< feature-state for_k8s_version="v1.24" state="beta" >}}
+
+쿠버네티스는 커스텀 볼륨 파퓰레이터를 지원한다. 
+커스텀 볼륨 파퓰레이터를 사용하려면, 
+kube-apiserver와 kube-controller-manager에 대해 `AnyVolumeDataSource` 
+[기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 활성화해야 한다.
+
+볼륨 파퓰레이터는 `dataSourceRef`라는 PVC 스펙 필드를 활용한다. 
+다른 PersistentVolumeClaim 또는 VolumeSnapshot을 가리키는 참조만 명시할 수 있는 
+`dataSource` 필드와는 다르게, `dataSourceRef` 필드는 동일 네임스페이스에 있는 
+어떠한 오브젝트에 대한 참조도 명시할 수 있다(단, PVC 외의 다른 코어 오브젝트는 제외). 
+기능 게이트가 활성화된 클러스터에서는 `dataSource`보다 `dataSourceRef`를 사용하는 것을 권장한다.
+
+## 데이터 소스 참조
+
+`dataSourceRef` 필드는 `dataSource` 필드와 거의 동일하게 동작한다. 
+둘 중 하나만 명시되어 있으면, API 서버는 두 필드에 같은 값을 할당할 것이다. 
+두 필드 모두 생성 이후에는 변경될 수 없으며, 
+두 필드에 다른 값을 넣으려고 시도하면 검증 에러가 발생할 것이다. 
+따라서 두 필드는 항상 같은 값을 갖게 된다.
+
+`dataSourceRef` 필드와 `dataSource` 필드 사이에는 
+사용자가 알고 있어야 할 두 가지 차이점이 있다.
+
+* `dataSource` 필드는 유효하지 않은 값(예를 들면, 빈 값)을 무시하지만, 
+  `dataSourceRef` 필드는 어떠한 값도 무시하지 않으며 유효하지 않은 값이 들어오면 에러를 발생할 것이다. 
+  유효하지 않은 값은 PVC를 제외한 모든 코어 오브젝트(apiGroup이 없는 오브젝트)이다.
+* `dataSourceRef` 필드는 여러 타입의 오브젝트를 포함할 수 있지만, `dataSource` 필드는 
+  PVC와 VolumeSnapshot만 포함할 수 있다.
+
+기능 게이트가 활성화된 클러스터에서는 `dataSourceRef`를 사용해야 하고, 그렇지 않은 
+클러스터에서는 `dataSource`를 사용해야 한다. 어떤 경우에서든 두 필드 모두를 확인해야 
+할 필요는 없다. 이렇게 약간의 차이만 있는 중복된 값은 이전 버전 호환성을 위해서만 
+존재하는 것이다. 상세히 설명하면, 이전 버전과 새로운 버전의 컨트롤러가 함께 동작할 
+수 있는데, 이는 두 필드가 동일하기 때문이다.
+
+### 볼륨 파퓰레이터 사용하기
+
+볼륨 파퓰레이터는 비어 있지 않은 볼륨(non-empty volume)을 생성할 수 있는 {{< glossary_tooltip text="컨트롤러" term_id="controller" >}}이며, 
+이 볼륨의 내용물은 커스텀 리소스(Custom Resource)에 의해 결정된다.
+파퓰레이티드 볼륨(populated volume)을 생성하려면 `dataSourceRef` 필드에 커스텀 리소스를 기재한다.
+
+```yaml
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: populated-pvc
+spec:
+  dataSourceRef:
+    name: example-name
+    kind: ExampleDataSource
+    apiGroup: example.storage.k8s.io
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi
+```
+
+볼륨 파퓰레이터는 외부 컴포넌트이기 때문에, 
+만약 적합한 컴포넌트가 설치되어 있지 않다면 볼륨 파퓰레이터를 사용하는 PVC에 대한 생성 요청이 실패할 수 있다.
+외부 컨트롤러는 '컴포넌트가 없어서 PVC를 생성할 수 없음' 경고와 같은 
+PVC 생성 상태에 대한 피드백을 제공하기 위해, PVC에 대한 이벤트를 생성해야 한다.
+
+알파 버전의 [볼륨 데이터 소스 검증기](https://github.com/kubernetes-csi/volume-data-source-validator)를 
+클러스터에 설치할 수 있다. 
+해당 데이터 소스를 다루는 파퓰레이터가 등록되어 있지 않다면 이 컨트롤러가 PVC에 경고 이벤트를 생성한다.
+PVC를 위한 적절한 파퓰레이터가 설치되어 있다면, 
+볼륨 생성과 그 과정에서 발생하는 이슈에 대한 이벤트를 생성하는 것은 파퓰레이터 컨트롤러의 몫이다.
+
 ## 포터블 구성 작성
 
 광범위한 클러스터에서 실행되고 퍼시스턴트 스토리지가 필요한
@@ -811,16 +1008,15 @@ spec:
   클러스터에 스토리지 시스템이 없음을 나타낸다(이 경우
   사용자는 PVC가 필요한 구성을 배포할 수 없음).
 
-  ## {{% heading "whatsnext" %}}
-
+## {{% heading "whatsnext" %}}
 
 * [퍼시스턴트볼륨 생성](/ko/docs/tasks/configure-pod-container/configure-persistent-volume-storage/#퍼시스턴트볼륨-생성하기)에 대해 자세히 알아보기
 * [퍼시스턴트볼륨클레임 생성](/ko/docs/tasks/configure-pod-container/configure-persistent-volume-storage/#퍼시스턴트볼륨클레임-생성하기)에 대해 자세히 알아보기
 * [퍼시스턴트 스토리지 설계 문서](https://git.k8s.io/community/contributors/design-proposals/storage/persistent-storage.md) 읽어보기
 
-### 참고
+### API 레퍼런스 {#reference}
 
-* [퍼시스턴트볼륨](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#persistentvolume-v1-core)
-* [PersistentVolumeSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#persistentvolumespec-v1-core)
-* [퍼시스턴트볼륨클레임](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#persistentvolumeclaim-v1-core)
-* [PersistentVolumeClaimSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#persistentvolumeclaimspec-v1-core)
+본 페이지에 기술된 API에 대해서 다음을 읽어본다.
+
+* [`PersistentVolume`](/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-v1/)
+* [`PersistentVolumeClaim`](/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-claim-v1/)
diff --git a/content/ko/docs/concepts/storage/storage-capacity.md b/content/ko/docs/concepts/storage/storage-capacity.md
new file mode 100644
index 0000000000..69ce7e9e65
--- /dev/null
+++ b/content/ko/docs/concepts/storage/storage-capacity.md
@@ -0,0 +1,109 @@
+---
+
+
+
+
+
+
+title: 스토리지 용량
+content_type: concept
+weight: 70
+---
+
+<!-- overview -->
+
+스토리지 용량은 제한이 있으며, 파드가 실행되는 노드의 상황에 따라 달라질 수 있다.
+예를 들어, 일부 노드에서 NAS(Network Attached Storage)에 접근할 수 없는 경우가 있을 수 있으며,
+또는 각 노드에 종속적인 로컬 스토리지를 사용하는 경우일 수도 있다.
+
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
+
+이 페이지에서는 쿠버네티스가 어떻게 스토리지 용량을 추적하고
+스케줄러가 남아 있는 볼륨을 제공하기 위해 스토리지 용량이 충분한 노드에
+[파드를 스케줄링](/ko/docs/concepts/scheduling-eviction/)하기 위해 이 정보를 어떻게 사용하는지 설명한다.
+스토리지 용량을 추적하지 않으면, 스케줄러는
+볼륨을 제공할 충분한 용량이 없는 노드를 선정할 수 있으며,
+스케줄링을 여러 번 다시 시도해야 한다.
+
+## {{% heading "prerequisites" %}}
+
+쿠버네티스 v{{< skew currentVersion >}} 버전은 스토리지 용량 추적을 위한 클러스터-수준 API를 지원한다. 
+이를 사용하려면, 스토리지 용량 추적을 지원하는 CSI 드라이버를 사용하고 있어야 한다. 
+사용 중인 CSI 드라이버가 이를 지원하는지, 지원한다면 어떻게 사용하는지를 알아보려면 
+해당 CSI 드라이버의 문서를 참고한다. 
+쿠버네티스 v{{< skew currentVersion >}} 버전을 사용하고 있지 않다면, 
+해당 버전 쿠버네티스 문서를 참고한다.
+
+<!-- body -->
+
+## API
+
+ 이 기능에는 다음 두 가지 API 확장이 있다.
+- [CSIStorageCapacity](/docs/reference/kubernetes-api/config-and-storage-resources/csi-storage-capacity-v1/) 오브젝트:
+  CSI 드라이버가 설치된 네임스페이스에
+  CSI 드라이버가 이 오브젝트를 생성한다. 각 오브젝트는
+  하나의 스토리지 클래스에 대한 용량 정보를 담고 있으며,
+  어떤 노드가 해당 스토리지에 접근할 수 있는지를 정의한다.
+- [`CSIDriverSpec.StorageCapacity` 필드](/docs/reference/kubernetes-api/config-and-storage-resources/csi-driver-v1/#CSIDriverSpec):
+  `true`로 설정하면, 쿠버네티스 스케줄러가
+  CSI 드라이버를 사용하는 볼륨의 스토리지 용량을 고려하게 된다.
+
+## 스케줄링
+
+다음과 같은 경우 쿠버네티스 스케줄러에서 스토리지 용량 정보를 사용한다.
+- 파드가 아직 생성되지 않은 볼륨을 사용하고,
+- 해당 볼륨은 CSI 드라이버를 참조하고
+  `WaitForFirstConsumer`
+  [볼륨 바인딩 모드](/ko/docs/concepts/storage/storage-classes/#볼륨-바인딩-모드)를 사용하는
+  {{< glossary_tooltip text="스토리지클래스(StorageClass)" term_id="storage-class" >}}를 사용하고,
+- 드라이버의 `CSIDriver` 오브젝트에 `StorageCapacity` 속성이
+  true로 설정되어 있다.
+
+이 경우 스케줄러는 파드에 제공할
+충분한 스토리지가 있는 노드만 고려한다.
+이 검사는 아주 간단한데,
+볼륨의 크기를 노드를 포함하는 토폴로지를 가진 `CSIStorageCapacity` 오브젝트에
+나열된 용량과 비교한다.
+
+볼륨 바인딩 모드가 `Immediate` 인 볼륨의 경우에는 스토리지 드라이버는
+볼륨을 사용하는 파드와 관계없이 볼륨을 생성할 위치를 정한다.
+볼륨을 생성한 후에, 스케줄러는
+볼륨을 사용할 수 있는 노드에 파드를 스케줄링한다.
+
+[CSI 임시 볼륨](/ko/docs/concepts/storage/volumes/#csi)의 경우에는
+볼륨 유형이 로컬 볼륨이고
+큰 자원이 필요하지 않은 특정 CSI 드라이버에서만 사용된다는 가정하에,
+항상 스토리지 용량을 고려하지 않고
+스케줄링한다.
+
+## 리스케줄링
+
+`WaitForFirstConsumer` 볼륨을 가진 파드에 대해
+노드가 선정되었더라도 아직은 잠정적인 결정이다. 다음 단계에서
+선정한 노드에서 볼륨을 사용할 수 있어야 한다는 힌트를 주고
+CSI 스토리지 드라이버에 볼륨 생성을 요청한다
+
+쿠버네티스는 시간이 지난 스토리지 용량 정보를 기반으로
+노드를 선정할 수도 있으므로, 볼륨을 실제로 생성하지 않을 수도 있다.
+그런 다음 노드 선정이 재설정되고 쿠버네티스 스케줄러가
+파드를 위한 노드를 찾는 것을 재시도한다.
+
+## 제한사항
+
+스토리지 용량 추적은 첫 시도에 스케줄링이 성공할 가능성을 높이지만,
+스케줄러가 시간이 지난 정보를 기반으로
+결정해야 할 수도 있기 때문에 이를 보장하지는 않는다.
+일반적으로 스토리지 용량 정보가 없는 스케줄링과
+동일한 재시도 메커니즘으로 스케줄링 실패를 처리한다.
+
+스케줄링이 영구적으로 실패할 수 있는 한 가지 상황은
+파드가 여러 볼륨을 사용하는 경우이다.
+토폴로지 세그먼트에 하나의 볼륨이 이미 생성되어
+다른 볼륨에 충분한 용량이 남아 있지 않을 수 있다.
+이러한 상황을 복구하려면
+용량을 늘리거나 이미 생성된 볼륨을 삭제하는 등의 수작업이 필요하다.
+
+## {{% heading "whatsnext" %}}
+
+- 설계에 대한 자세한 내용은
+ [파드 스케줄링 스토리지 용량 제약 조건](https://github.com/kubernetes/enhancements/blob/master/keps/sig-storage/1472-storage-capacity-tracking/README.md)을 참조한다.
diff --git a/content/ko/docs/concepts/storage/storage-classes.md b/content/ko/docs/concepts/storage/storage-classes.md
index f4385419f1..970b7f3ddd 100644
--- a/content/ko/docs/concepts/storage/storage-classes.md
+++ b/content/ko/docs/concepts/storage/storage-classes.md
@@ -76,7 +76,7 @@ volumeBindingMode: Immediate
 | Glusterfs            | &#x2713;            | [Glusterfs](#glusterfs)              |
 | iSCSI                | -                   | -                                    |
 | Quobyte              | &#x2713;            | [Quobyte](#quobyte)                  |
-| NFS                  | -                   | -                                    |
+| NFS                  | -                   | [NFS](#nfs)       |
 | RBD                  | &#x2713;            | [Ceph RBD](#ceph-rbd)                |
 | VsphereVolume        | &#x2713;            | [vSphere](#vsphere)                  |
 | PortworxVolume       | &#x2713;            | [Portworx 볼륨](#portworx-볼륨)  |
@@ -87,7 +87,7 @@ volumeBindingMode: Immediate
 여기 목록에서 "내부" 프로비저너를 지정할 수 있다(이
 이름은 "kubernetes.io" 가 접두사로 시작하고, 쿠버네티스와
 함께 제공된다). 또한, 쿠버네티스에서 정의한
-[사양](https://git.k8s.io/community/contributors/design-proposals/storage/volume-provisioning.md)을
+[사양](https://github.com/kubernetes/design-proposals-archive/blob/main/storage/volume-provisioning.md)을
 따르는 독립적인 프로그램인 외부 프로비저너를 실행하고 지정할 수 있다.
 외부 프로비저너의 작성자는 코드의 수명, 프로비저너의
 배송 방법, 실행 방법, (Flex를 포함한)볼륨 플러그인
@@ -241,8 +241,8 @@ allowedTopologies:
 - matchLabelExpressions:
   - key: failure-domain.beta.kubernetes.io/zone
     values:
-    - us-central1-a
-    - us-central1-b
+    - us-central-1a
+    - us-central-1b
 ```
 
 ## 파라미터
@@ -423,6 +423,29 @@ parameters:
     헤드리스 서비스를 자동으로 생성한다. 퍼시스턴트 볼륨 클레임을
     삭제하면 동적 엔드포인트와 서비스가 자동으로 삭제된다.
 
+### NFS
+
+```yaml
+apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: example-nfs
+provisioner: example.com/external-nfs
+parameters:
+  server: nfs-server.example.com
+  path: /share
+  readOnly: "false"
+```
+
+* `server`: NFS 서버의 호스트네임 또는 IP 주소.
+* `path`: NFS 서버가 익스포트(export)한 경로.
+* `readOnly`: 스토리지를 읽기 전용으로 마운트할지 나타내는 플래그(기본값: false).
+
+쿠버네티스에는 내장 NFS 프로비저너가 없다. NFS를 위한 스토리지클래스를 생성하려면 외부 프로비저너를 사용해야 한다.
+예시는 다음과 같다.
+* [NFS Ganesha server and external provisioner](https://github.com/kubernetes-sigs/nfs-ganesha-server-and-external-provisioner)
+* [NFS subdir external provisioner](https://github.com/kubernetes-sigs/nfs-subdir-external-provisioner)
+
 ### OpenStack Cinder
 
 ```yaml
@@ -447,14 +470,14 @@ parameters:
 
 vSphere 스토리지 클래스에는 두 가지 유형의 프로비저닝 도구가 있다.
 
-- [CSI 프로비저닝 도구](#csi-프로비저닝-도구): `csi.vsphere.vmware.com`
+- [CSI 프로비저닝 도구](#vsphere-provisioner-csi): `csi.vsphere.vmware.com`
 - [vCP 프로비저닝 도구](#vcp-프로비저닝-도구): `kubernetes.io/vsphere-volume`
 
 인-트리 프로비저닝 도구는 [사용 중단](/blog/2019/12/09/kubernetes-1-17-feature-csi-migration-beta/#why-are-we-migrating-in-tree-plugins-to-csi)되었다. CSI 프로비저닝 도구에 대한 자세한 내용은 [쿠버네티스 vSphere CSI 드라이버](https://vsphere-csi-driver.sigs.k8s.io/) 및 [vSphereVolume CSI 마이그레이션](/ko/docs/concepts/storage/volumes/#csi-마이그레이션)을 참고한다.
 
 #### CSI 프로비저닝 도구 {#vsphere-provisioner-csi}
 
-vSphere CSI 스토리지클래스 프로비저닝 도구는 Tanzu 쿠버네티스 클러스터에서 작동한다. 예시는 [vSphere CSI 리포지터리](https://raw.githubusercontent.com/kubernetes-sigs/vsphere-csi-driver/master/example/vanilla-k8s-file-driver/example-sc.yaml)를 참조한다.
+vSphere CSI 스토리지클래스 프로비저닝 도구는 Tanzu 쿠버네티스 클러스터에서 작동한다. 예시는 [vSphere CSI 리포지터리](https://github.com/kubernetes-sigs/vsphere-csi-driver/blob/master/example/vanilla-k8s-RWM-filesystem-volumes/example-sc.yaml)를 참조한다.
 
 #### vCP 프로비저닝 도구
 
@@ -578,6 +601,12 @@ parameters:
 
 ### Quobyte
 
+{{< feature-state for_k8s_version="v1.22" state="deprecated" >}}
+
+Quobyte 인-트리 스토리지 플러그인은 사용 중단되었으며, 
+아웃-오브-트리 Quobyte 플러그인에 대한 [예제](https://github.com/quobyte/quobyte-csi/blob/master/example/StorageClass.yaml) 
+`StorageClass`는 Quobyte CSI 저장소에서 찾을 수 있다.
+
 ```yaml
 apiVersion: storage.k8s.io/v1
 kind: StorageClass
@@ -768,7 +797,7 @@ parameters:
   storagePool: sp1
   storageMode: ThinProvisioned
   secretRef: sio-secret
-  readOnly: false
+  readOnly: "false"
   fsType: xfs
 ```
 
diff --git a/content/ko/docs/concepts/storage/volume-health-monitoring.md b/content/ko/docs/concepts/storage/volume-health-monitoring.md
index ce149165da..99cc8ca353 100644
--- a/content/ko/docs/concepts/storage/volume-health-monitoring.md
+++ b/content/ko/docs/concepts/storage/volume-health-monitoring.md
@@ -1,4 +1,9 @@
 ---
+
+
+
+
+
 title: 볼륨 헬스 모니터링
 content_type: concept
 ---
@@ -19,7 +24,7 @@ CSI 드라이버가 컨트롤러 측의 볼륨 헬스 모니터링 기능을 지
 
 외부 헬스 모니터 {{< glossary_tooltip text="컨트롤러" term_id="controller" >}}는 노드 장애 이벤트도 감시한다. `enable-node-watcher` 플래그를 true로 설정하여 노드 장애 모니터링을 활성화할 수 있다. 외부 헬스 모니터가 노드 장애 이벤트를 감지하면, 컨트롤러는 이 PVC를 사용하는 파드가 장애 상태인 노드에 있음을 나타내는 이벤트가 PVC에 보고된다고 알린다.
 
-CSI 드라이버가 노드 측에서 볼륨 헬스 모니터링 기능을 지원하는 경우, CSI 볼륨에서 비정상적인 볼륨 상태가 감지되면 PVC를 사용하는 모든 파드에서 이벤트가 보고된다.
+CSI 드라이버가 노드 측에서 볼륨 헬스 모니터링 기능을 지원하는 경우, CSI 볼륨에서 비정상적인 볼륨 상태가 감지되면 PVC를 사용하는 모든 파드에서 이벤트가 보고된다. 그리고, 볼륨 헬스 정보는 kubelet VolumeStats 메트릭 형태로 노출된다. 새로운 kubelet_volume_stats_health_status_abnormal 메트릭이 추가되었다. 이 메트릭은 `namespace` 및 `persistentvolumeclaim` 2개의 레이블을 포함한다. 카운터는 1 또는 0이다. 카운터가 1이면 볼륨이 정상적이지 않음을, 0이면 정상적임을 의미한다. 더 많은 정보는 [KEP](https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/1432-volume-health-monitor#kubelet-metrics-changes)를 참고한다.
 
 {{< note >}}
 노드 측에서 이 기능을 사용하려면 `CSIVolumeHealth` [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 활성화해야 한다.
diff --git a/content/ko/docs/concepts/storage/volume-pvc-datasource.md b/content/ko/docs/concepts/storage/volume-pvc-datasource.md
index e9857885d7..365f780230 100644
--- a/content/ko/docs/concepts/storage/volume-pvc-datasource.md
+++ b/content/ko/docs/concepts/storage/volume-pvc-datasource.md
@@ -1,7 +1,12 @@
 ---
+
+
+
+
+
 title: CSI 볼륨 복제하기
 content_type: concept
-weight: 30
+weight: 60
 ---
 
 <!-- overview -->
diff --git a/content/ko/docs/concepts/storage/volume-snapshot-classes.md b/content/ko/docs/concepts/storage/volume-snapshot-classes.md
index 862c900fee..849a83a98e 100644
--- a/content/ko/docs/concepts/storage/volume-snapshot-classes.md
+++ b/content/ko/docs/concepts/storage/volume-snapshot-classes.md
@@ -8,7 +8,7 @@
 
 title: 볼륨 스냅샷 클래스
 content_type: concept
-weight: 30
+weight: 41 # just after volume snapshots
 ---
 
 <!-- overview -->
@@ -39,6 +39,10 @@ weight: 30
 처음 생성할 때 클래스의 이름과 기타 파라미터를 설정하고, 오브젝트가
 생성된 이후에는 업데이트할 수 없다.
 
+{{< note >}}
+CRD의 설치는 쿠버네티스 배포판의 책임이다. 필요한 CRD가 존재하지 않는다면, 볼륨스냅샷클래스 생성이 실패할 것이다.
+{{< /note >}}
+
 ```yaml
 apiVersion: snapshot.storage.k8s.io/v1
 kind: VolumeSnapshotClass
diff --git a/content/ko/docs/concepts/storage/volume-snapshots.md b/content/ko/docs/concepts/storage/volume-snapshots.md
index b01a8affa4..0d02310ae8 100644
--- a/content/ko/docs/concepts/storage/volume-snapshots.md
+++ b/content/ko/docs/concepts/storage/volume-snapshots.md
@@ -1,7 +1,14 @@
 ---
+
+
+
+
+
+
+
 title: 볼륨 스냅샷
 content_type: concept
-weight: 20
+weight: 40
 ---
 
 <!-- overview -->
@@ -113,6 +120,7 @@ spec:
   driver: hostpath.csi.k8s.io
   source:
     volumeHandle: ee0cfb94-f8d4-11e9-b2d8-0242ac110002
+  sourceVolumeMode: Filesystem
   volumeSnapshotClassName: csi-hostpath-snapclass
   volumeSnapshotRef:
     name: new-snapshot-test
@@ -134,6 +142,7 @@ spec:
   driver: hostpath.csi.k8s.io
   source:
     snapshotHandle: 7bdd0de3-aaeb-11e8-9aae-0242ac110002
+  sourceVolumeMode: Filesystem
   volumeSnapshotRef:
     name: new-snapshot-test
     namespace: default
@@ -141,6 +150,51 @@ spec:
 
 `snapshotHandle` 은 스토리지 백엔드에서 생성된 볼륨 스냅샷의 고유 식별자이다. 이 필드는 사전 프로비저닝된 스냅샷에 필요하다. `VolumeSnapshotContent` 가 나타내는 스토리지 시스템의 CSI 스냅샷 id를 지정한다.
 
+`sourceVolumeMode` 은 스냅샷이 생성된 볼륨의 모드를 나타낸다. 
+`sourceVolumeMode` 필드의 값은 `Filesystem` 또는 `Block` 일 수 있다. 
+소스 볼륨 모드가 명시되어 있지 않으면, 
+쿠버네티스는 해당 스냅샷의 소스 볼륨 모드를 알려지지 않은 상태(unknown)로 간주하여 스냅샷을 처리한다.
+
+## 스냅샷의 볼륨 모드 변환하기 {#convert-volume-mode}
+
+클러스터에 설치된 `VolumeSnapshots` API가 `sourceVolumeMode` 필드를 지원한다면, 
+인증되지 않은 사용자가 볼륨의 모드를 변경하는 것을 금지하는 기능이 
+API에 있는 것이다.
+
+클러스터가 이 기능을 지원하는지 확인하려면, 다음 명령어를 실행한다.
+
+```yaml
+$ kubectl get crd volumesnapshotcontent -o yaml
+```
+
+사용자가 기존 `VolumeSnapshot`으로부터 `PersistentVolumeClaim`을 생성할 때 
+기존 소스와 다른 볼륨 모드를 지정할 수 있도록 하려면, 
+`VolumeSnapshot`와 연관된 `VolumeSnapshotContent`에 
+`snapshot.storage.kubernetes.io/allowVolumeModeChange: "true"` 어노테이션을 추가해야 한다.
+
+이전에 프로비전된 스냅샷의 경우에는, 
+클러스터 관리자가 `Spec.SourceVolumeMode`를 추가해야 한다.
+
+이 기능이 활성화된 예시 `VolumeSnapshotContent` 리소스는 다음과 같을 것이다.
+
+```yaml
+apiVersion: snapshot.storage.k8s.io/v1
+kind: VolumeSnapshotContent
+metadata:
+  name: new-snapshot-content-test
+  annotations:
+    - snapshot.storage.kubernetes.io/allowVolumeModeChange: "true"
+spec:
+  deletionPolicy: Delete
+  driver: hostpath.csi.k8s.io
+  source:
+    snapshotHandle: 7bdd0de3-aaeb-11e8-9aae-0242ac110002
+  sourceVolumeMode: Filesystem
+  volumeSnapshotRef:
+    name: new-snapshot-test
+    namespace: default
+```
+
 ## 스냅샷을 위한 프로비저닝 볼륨
 
 `PersistentVolumeClaim` 오브젝트의 *dataSource* 필드를 사용하여
diff --git a/content/ko/docs/concepts/storage/volumes.md b/content/ko/docs/concepts/storage/volumes.md
index 29f4755172..c7f6a2df5a 100644
--- a/content/ko/docs/concepts/storage/volumes.md
+++ b/content/ko/docs/concepts/storage/volumes.md
@@ -44,12 +44,21 @@ weight: 10
 
 볼륨을 사용하려면, `.spec.volumes` 에서 파드에 제공할 볼륨을 지정하고
 `.spec.containers[*].volumeMounts` 의 컨테이너에 해당 볼륨을 마운트할 위치를 선언한다.
-컨테이너의 프로세스는 도커 이미지와 볼륨으로 구성된 파일시스템
-뷰를 본다. [도커 이미지](https://docs.docker.com/userguide/dockerimages/)는
-파일시스템 계층의 루트에 있다. 볼륨은 이미지 내에 지정된 경로에
-마운트된다. 볼륨은 다른 볼륨에 마운트할 수 없거나 다른 볼륨에 대한 하드 링크를
-가질 수 없다. 파드 구성의 각 컨테이너는 각 볼륨을 마운트할 위치를 독립적으로
-지정해야 한다.
+컨테이너의 프로세스는 
+{{< glossary_tooltip text="컨테이너 이미지" term_id="image" >}}의 최초 내용물과 
+컨테이너 안에 마운트된 볼륨(정의된 경우에 한함)으로 구성된 파일시스템을 보게 된다.
+프로세스는 컨테이너 이미지의 최초 내용물에 해당되는 루트 파일시스템을 
+보게 된다.
+쓰기가 허용된 경우, 해당 파일시스템에 쓰기 작업을 하면 
+추후 파일시스템에 접근할 때 변경된 내용을 보게 될 것이다.
+볼륨은 이미지의 [특정 경로](#using-subpath)에 
+마운트된다.
+파드에 정의된 각 컨테이너에 대해, 
+컨테이너가 사용할 각 볼륨을 어디에 마운트할지 명시해야 한다.
+
+볼륨은 다른 볼륨 안에 마운트될 수 없다 
+(하지만, [서브패스 사용](#using-subpath)에서 관련 메커니즘을 확인한다). 
+또한, 볼륨은 다른 볼륨에 있는 내용물을 가리키는 하드 링크를 포함할 수 없다.
 
 ## 볼륨 유형들 {#volume-types}
 
@@ -124,31 +133,37 @@ EBS 볼륨이 파티션된 경우, 선택적 필드인 `partition: "<partition n
 {{< feature-state for_k8s_version="v1.17" state="alpha" >}}
 
 컨트롤러 관리자와 kubelet에 의해 로드되지 않도록 `awsElasticBlockStore` 스토리지
-플러그인을 끄려면, `CSIMigrationAWSComplete` 플래그를 `true` 로 설정한다. 이 기능은 모든 워커 노드에서 `ebs.csi.aws.com` 컨테이너 스토리지 인터페이스(CSI) 드라이버 설치를 필요로 한다.
+플러그인을 끄려면, `InTreePluginAWSUnregister` 플래그를 `true` 로 설정한다.
 
 ### azureDisk {#azuredisk}
 
 `azureDisk` 볼륨 유형은 Microsoft Azure [데이터 디스크](https://docs.microsoft.com/en-us/azure/aks/csi-storage-drivers)를 파드에 마운트한다.
 
-더 자세한 내용은 [`azureDisk` 볼륨 플러그인](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/azure_disk/README.md)을 참고한다.
+더 자세한 내용은 [`azureDisk` 볼륨 플러그인](https://github.com/kubernetes/examples/tree/master/staging/volumes/azure_disk/README.md)을 참고한다.
 
 #### azureDisk CSI 마이그레이션
 
-{{< feature-state for_k8s_version="v1.19" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
-`azureDisk` 의 `CSIMigration` 기능이 활성화된 경우, 기존 트리 내 플러그인에서
-`disk.csi.azure.com` 컨테이너 스토리지 인터페이스(CSI)
-드라이버로 모든 플러그인 작업을 수행한다. 이 기능을 사용하려면, 클러스터에 [Azure 디스크 CSI
-드라이버](https://github.com/kubernetes-sigs/azuredisk-csi-driver)
-를 설치하고 `CSIMigration` 과 `CSIMigrationAzureDisk`
-기능을 활성화해야 한다.
+`azureDisk` 의 `CSIMigration` 기능이 활성화된 경우, 
+기존 인-트리 플러그인의 모든 플러그인 작업을 
+`disk.csi.azure.com` 컨테이너 스토리지 인터페이스(CSI) 드라이버로 리다이렉트한다. 
+이 기능을 사용하려면, 클러스터에 [Azure 디스크 CSI 드라이버](https://github.com/kubernetes-sigs/azuredisk-csi-driver) 를 설치하고 
+`CSIMigration` 기능을 활성화해야 한다.
+
+#### azureDisk CSI 마이그레이션 완료
+
+{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+
+컨트롤러 매니저 및 kubelet이 `azureDisk` 스토리지 플러그인을 로드하지 않도록 하려면, 
+`InTreePluginAzureDiskUnregister` 플래그를 `true`로 설정한다.
 
 ### azureFile {#azurefile}
 
 `azureFile` 볼륨 유형은 Microsoft Azure 파일 볼륨(SMB 2.1과 3.0)을 파드에
 마운트한다.
 
-더 자세한 내용은 [`azureFile` 볼륨 플러그인](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/azure_file/README.md)을 참고한다.
+더 자세한 내용은 [`azureFile` 볼륨 플러그인](https://github.com/kubernetes/examples/tree/master/staging/volumes/azure_file/README.md)을 참고한다.
 
 #### azureFile CSI 마이그레이션
 
@@ -161,7 +176,15 @@ EBS 볼륨이 파티션된 경우, 선택적 필드인 `partition: "<partition n
 를 설치하고 `CSIMigration` 과 `CSIMigrationAzureFile`
 [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 활성화해야 한다.
 
-Azure File CSI 드라이버는 동일한 볼륨을 다른 fsgroup에서 사용하는 것을 지원하지 않는다. Azurefile CSI 마이그레이션이 활성화된 경우, 다른 fsgroup에서 동일한 볼륨을 사용하는 것은 전혀 지원되지 않는다.
+Azure File CSI 드라이버는 동일한 볼륨을 다른 fsgroup에서 사용하는 것을 지원하지 않는다. 
+Azurefile CSI 마이그레이션이 활성화된 경우, 다른 fsgroup에서 동일한 볼륨을 사용하는 것은 전혀 지원되지 않는다.
+
+#### azureFile CSI 마이그레이션 완료
+
+{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+
+컨트롤러 매니저 및 kubelet이 `azureFile` 스토리지 플러그인을 로드하지 않도록 하려면, 
+`InTreePluginAzureFileUnregister` 플래그를 `true`로 설정한다.
 
 ### cephfs
 
@@ -176,7 +199,7 @@ Azure File CSI 드라이버는 동일한 볼륨을 다른 fsgroup에서 사용
 CephFS를 사용하기 위해선 먼저 Ceph 서버를 실행하고 공유를 내보내야 한다.
 {{< /note >}}
 
-더 자세한 내용은 [CephFS 예시](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/volumes/cephfs/)를 참조한다.
+더 자세한 내용은 [CephFS 예시](https://github.com/kubernetes/examples/tree/master/volumes/cephfs/)를 참조한다.
 
 ### cinder
 
@@ -210,17 +233,17 @@ spec:
 
 #### 오픈스택 CSI 마이그레이션
 
-{{< feature-state for_k8s_version="v1.21" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
-Cinder의`CSIMigration` 기능은 Kubernetes 1.21에서 기본적으로 활성화됩니다.
+Cinder의`CSIMigration` 기능은 Kubernetes 1.21부터 기본적으로 활성화되어 있다.
 기존 트리 내 플러그인에서 `cinder.csi.openstack.org` 컨테이너 스토리지 인터페이스(CSI)
 드라이버로 모든 플러그인 작업을 수행한다.
 [오픈스택 Cinder CSI 드라이버](https://github.com/kubernetes/cloud-provider-openstack/blob/master/docs/cinder-csi-plugin/using-cinder-csi-plugin.md)가
 클러스터에 설치되어 있어야 한다.
-`CSIMigrationOpenStack` [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를
-`false` 로 설정하여 클러스터에 대한 Cinder CSI 마이그레이션을 비활성화할 수 있다.
-`CSIMigrationOpenStack` 기능을 비활성화하면, 트리 내 Cinder 볼륨 플러그인이
-Cinder 볼륨 스토리지 관리의 모든 측면을 담당한다.
+
+컨트롤러 매니저 및 kubelet이 인-트리 Cinder 플러그인을 로드하지 않도록 하려면, 
+`InTreePluginOpenStackUnregister` 
+[기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 활성화한다.
 
 ### 컨피그맵(configMap) {#configmap}
 
@@ -242,7 +265,7 @@ metadata:
 spec:
   containers:
     - name: test
-      image: busybox
+      image: busybox:1.28
       volumeMounts:
         - name: config-vol
           mountPath: /etc/config
@@ -264,7 +287,7 @@ spec:
 * [컨피그맵](/docs/tasks/configure-pod-container/configure-pod-configmap/)을 사용하기 위해서는
   먼저 컨피그맵을 생성해야 한다.
 
-* 컨피그맵을 [`subPath`](#subpath-사용하기) 볼륨 마운트로 사용하는 컨테이너는 컨피그맵
+* 컨피그맵을 [`subPath`](#using-subpath) 볼륨 마운트로 사용하는 컨테이너는 컨피그맵
 업데이트를 수신하지 않는다.
 
 * 텍스트 데이터는 UTF-8 문자 인코딩을 사용하는 파일로 노출된다. 다른 문자 인코딩의 경우, `binaryData` 를 사용한다.
@@ -276,11 +299,11 @@ spec:
 이것은 디렉터리를 마운트하고 요청된 데이터를 일반 텍스트 파일로 작성한다.
 
 {{< note >}}
-다운워드 API를 [`subPath`](#subpath-사용하기) 볼륨 마운트로 사용하는 컨테이너는 다운워드 API
+다운워드 API를 [`subPath`](#using-subpath) 볼륨 마운트로 사용하는 컨테이너는 다운워드 API
 업데이트를 수신하지 않는다.
 {{< /note >}}
 
-더 자세한 내용은 [다운워드 API 예시](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/)를 참고한다.
+더 자세한 내용은 [다운워드 API 예시](/ko/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/)를 참고한다.
 
 ### emptyDir {#emptydir}
 
@@ -347,7 +370,7 @@ targetWWN은 해당 WWN이 다중 경로 연결에서 온 것으로 예상한다
 쿠버네티스 호스트가 해당 LUN에 접근할 수 있다.
 {{< /note >}}
 
-더 자세한 내용은 [파이버 채널 예시](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/fibre_channel)를 참고한다.
+더 자세한 내용은 [파이버 채널 예시](https://github.com/kubernetes/examples/tree/master/staging/volumes/fibre_channel)를 참고한다.
 
 ### flocker (사용 중단됨(deprecated)){#flocker}
 
@@ -358,14 +381,14 @@ targetWWN은 해당 WWN이 다중 경로 연결에서 온 것으로 예상한다
 `flocker` 볼륨은 Flocker 데이터셋을 파드에 마운트할 수 있게 한다. 만약
 Flocker내에 데이터셋이 없는 경우, 먼저 Flocker
 CLI 또는 Flocker API를 사용해서 생성해야 한다. 만약 데이터셋이 이미 있다면
-Flocker는 파드가 스케줄 되어있는 노드에 다시 연결한다. 이는 필요에
+Flocker는 파드가 스케줄 되어 있는 노드에 다시 연결한다. 이는 필요에
 따라 파드 간에 데이터를 공유할 수 있다는 의미이다.
 
 {{< note >}}
 `flocker` 볼륨을 사용하기 위해서는 먼저 Flocker를 설치하고 실행한다.
 {{< /note >}}
 
-더 자세한 내용은 [Flocker 예시](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/flocker)를 참조한다.
+더 자세한 내용은 [Flocker 예시](https://github.com/kubernetes/examples/tree/master/staging/volumes/flocker)를 참조한다.
 
 ### gcePersistentDisk
 
@@ -462,7 +485,8 @@ spec:
     required:
       nodeSelectorTerms:
       - matchExpressions:
-        - key: failure-domain.beta.kubernetes.io/zone
+        # 1.21 이전 버전에서는 failure-domain.beta.kubernetes.io/zone 키를 사용해야 한다.
+        - key: topology.kubernetes.io/zone
           operator: In
           values:
           - us-central1-a
@@ -480,6 +504,13 @@ GCE PD의 `CSIMigration` 기능이 활성화된 경우 기존 인-트리 플러
 를 설치하고 `CSIMigration` 과 `CSIMigrationGCE`
 베타 기능을 활성화해야 한다.
 
+#### GCE CSI 마이그레이션 완료
+
+{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+
+컨트롤러 매니저와 kubelet이 `gcePersistentDisk` 스토리지 플러그인을 로드하는 것을 방지하려면, 
+`InTreePluginGCEUnregister` 플래그를 `true`로 설정한다.
+
 ### gitRepo (사용 중단됨) {#gitrepo}
 
 {{< warning >}}
@@ -525,7 +556,7 @@ glusterfs 볼륨에 데이터를 미리 채울 수 있으며, 파드 간에 데
 사용하려면 먼저 GlusterFS를 설치하고 실행해야 한다.
 {{< /note >}}
 
-더 자세한 내용은 [GlusterFS 예시](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/volumes/glusterfs)를 본다.
+더 자세한 내용은 [GlusterFS 예시](https://github.com/kubernetes/examples/tree/master/volumes/glusterfs)를 본다.
 
 ### hostPath {#hostpath}
 
@@ -653,7 +684,7 @@ iSCSI 특징은 여러 고객이 읽기 전용으로 마운트할 수
 iSCSI 볼륨은 읽기-쓰기 모드에서는 단일 고객만 마운트할 수 있다.
 동시 쓰기는 허용되지 않는다.
 
-더 자세한 내용은 [iSCSI 예시](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/volumes/iscsi)를 본다.
+더 자세한 내용은 [iSCSI 예시](https://github.com/kubernetes/examples/tree/master/volumes/iscsi)를 본다.
 
 ### local
 
@@ -741,7 +772,7 @@ local [스토리지클래스(StorageClas)](/ko/docs/concepts/storage/storage-cla
 사용하려면 먼저 NFS 서버를 실행하고 공유를 내보내야 한다.
 {{< /note >}}
 
-더 자세한 내용은 [NFS 예시](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/nfs)를 본다.
+더 자세한 내용은 [NFS 예시](https://github.com/kubernetes/examples/tree/master/staging/volumes/nfs)를 본다.
 
 ### persistentVolumeClaim {#persistentvolumeclaim}
 
@@ -789,149 +820,14 @@ spec:
 있는지 확인한다.
 {{< /note >}}
 
-자세한 내용은 [Portworx 볼륨](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/portworx/README.md) 예제를 참고한다.
+자세한 내용은 [Portworx 볼륨](https://github.com/kubernetes/examples/tree/master/staging/volumes/portworx/README.md) 예제를 참고한다.
 
 ### projected
 
 `Projected` 볼륨은 여러 기존 볼륨 소스를 동일한 디렉터리에 매핑한다.
+더 자세한 사항은 [projected volumes](/docs/concepts/storage/projected-volumes/)를 참고한다.
 
-현재, 다음 유형의 볼륨 소스를 프로젝티드한다.
-
-* [`secret`](#secret)
-* [`downwardAPI`](#downwardapi)
-* [`configMap`](#configmap)
-* `serviceAccountToken`
-
-모든 소스는 파드와 동일한 네임스페이스에 있어야 한다. 더 자세한 내용은
-[올인원 볼륨 디자인 문서](https://github.com/kubernetes/community/blob/{{< param "githubbranch" >}}/contributors/design-proposals/node/all-in-one-volume.md)를 본다.
-
-#### 시크릿, 다운워드 API 그리고 컨피그맵이 있는 구성 예시 {#example-configuration-secret-downwardapi-configmap}
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: volume-test
-spec:
-  containers:
-  - name: container-test
-    image: busybox
-    volumeMounts:
-    - name: all-in-one
-      mountPath: "/projected-volume"
-      readOnly: true
-  volumes:
-  - name: all-in-one
-    projected:
-      sources:
-      - secret:
-          name: mysecret
-          items:
-            - key: username
-              path: my-group/my-username
-      - downwardAPI:
-          items:
-            - path: "labels"
-              fieldRef:
-                fieldPath: metadata.labels
-            - path: "cpu_limit"
-              resourceFieldRef:
-                containerName: container-test
-                resource: limits.cpu
-      - configMap:
-          name: myconfigmap
-          items:
-            - key: config
-              path: my-group/my-config
-```
-
-#### 구성 예시: 기본값이 아닌 소유권 모드 설정의 시크릿 {#example-configuration-secrets-nondefault-permission-mode}
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: volume-test
-spec:
-  containers:
-  - name: container-test
-    image: busybox
-    volumeMounts:
-    - name: all-in-one
-      mountPath: "/projected-volume"
-      readOnly: true
-  volumes:
-  - name: all-in-one
-    projected:
-      sources:
-      - secret:
-          name: mysecret
-          items:
-            - key: username
-              path: my-group/my-username
-      - secret:
-          name: mysecret2
-          items:
-            - key: password
-              path: my-group/my-password
-              mode: 511
-```
-
-각각의 projected 볼륨 소스는 `source` 아래 사양 목록에 있다.
-파라미터는 두 가지 예외를 제외하고 거의 동일하다.
-
-* 시크릿의 경우 `secretName` 필드는 컨피그맵 이름과 일치하도록
-  `name` 으로 변경되었다.
-* `defaultMode` 는 각각의 볼륨 소스에 대해 projected 수준에서만
-  지정할 수 있다. 그러나 위에서 설명한 것처럼 각각의 개별 projection 에 대해 `mode`
-  를 명시적으로 설정할 수 있다.
-
-`TokenRequestProjection` 기능이 활성화 되면, 현재
-[서비스 어카운트](/docs/reference/access-authn-authz/authentication/#service-account-tokens)에
-대한 토큰을 파드의 지정된 경로에 주입할 수 있다. 예를 들면 다음과 같다.
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: sa-token-test
-spec:
-  containers:
-  - name: container-test
-    image: busybox
-    volumeMounts:
-    - name: token-vol
-      mountPath: "/service-account"
-      readOnly: true
-  volumes:
-  - name: token-vol
-    projected:
-      sources:
-      - serviceAccountToken:
-          audience: api
-          expirationSeconds: 3600
-          path: token
-```
-
-예시 파드에 주입된 서비스 어카운트 토큰이 포함된 projected 볼륨이
-있다. 이 토큰은 파드의 컨테이너에서 쿠버네티스 API 서버에 접근하는데
-사용할 수 있다. `audience` 필드는 토큰에 의도하는 대상을
-포함한다. 토큰 수령은 토큰 대상에 지정된 식별자로 자신을 식별해야 하며,
-그렇지 않으면 토큰을 거부해야 한다. 이 필드는
-선택 사항이며 기본값은 API 서버의 식별자이다.
-
-`expirationSeconds` 는 서비스 어카운트 토큰의 예상 유효
-기간이다. 기본값은 1시간이며 최소 10분(600초)이어야 한다. 관리자는
-API 서버에 대해 `--service-account-max-token-expiration` 옵션을 지정해서
-최대 값을 제한할 수도 있다. `path` 필드는 projected 볼륨의 마운트 위치에 대한
-상대 경로를 지정한다.
-
-{{< note >}}
-projected 볼륨 소스를 [`subPath`](#subpath-사용하기) 볼륨으로 마운트해서 사용하는 컨테이너는 
-해당 볼륨 소스의 업데이트를 수신하지 않는다.
-{{< /note >}}
-
-### quobyte
+### quobyte (사용 중단됨) {#quobyte}
 
 `quobyte` 볼륨을 사용하면 기존 [Quobyte](https://www.quobyte.com) 볼륨을
 파드에 마운트할 수 있다.
@@ -964,51 +860,40 @@ RBD의 특징은 여러 고객이 동시에 읽기 전용으로 마운트할 수
 RBD는 읽기-쓰기 모드에서 단일 고객만 마운트할 수 있다.
 동시 쓰기는 허용되지 않는다.
 
-더 자세한 내용은 [RBD 예시](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/volumes/rbd)를
+더 자세한 내용은 [RBD 예시](https://github.com/kubernetes/examples/tree/master/volumes/rbd)를
 참고한다.
 
-### scaleIO (사용 중단됨) {#scaleio}
+#### RBD CSI 마이그레이션 {#rbd-csi-migration}
 
-ScaleIO는 기존 하드웨어를 사용해서 확장 가능한 공유 블럭 네트워크 스토리지 클러스터를
-생성하는 소프트웨어 기반 스토리지 플랫폼이다. `scaleIO` 볼륨
-플러그인을 사용하면 배포된 파드가 기존 ScaleIO에 접근할 수
-있다. 퍼시스턴트 볼륨 클레임을 위해 새로운 볼륨을 동적으로 프로비저닝하는
-방법에 대한 자세한 내용은
-[ScaleIO 퍼시스턴트 볼륨](/ko/docs/concepts/storage/persistent-volumes/#scaleio)을 참고한다.
+{{< feature-state for_k8s_version="v1.23" state="alpha" >}}
+
+`RBD`를 위한 `CSIMigration` 기능이 활성화되어 있으면, 
+사용 중이 트리 내(in-tree) 플러그인의 모든 플러그인 동작을 
+`rbd.csi.ceph.com` {{< glossary_tooltip text="CSI" term_id="csi" >}} 
+드라이버로 리다이렉트한다. 
+이 기능을 사용하려면, 클러스터에 
+[Ceph CSI 드라이버](https://github.com/ceph/ceph-csi)가 설치되어 있고 
+`CSIMigration`, `csiMigrationRBD` 
+[기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)가 활성화되어 있어야 한다.
 
 {{< note >}}
-사용하기 위해선 먼저 기존에 ScaleIO 클러스터를 먼저 설정하고
-생성한 볼륨과 함께 실행해야 한다.
-{{< /note >}}
 
-다음의 예시는 ScaleIO를 사용하는 파드 구성이다.
+스토리지를 관리하는 쿠버네티스 클러스터 관리자는, 
+RBD CSI 드라이버로의 마이그레이션을 시도하기 전에 
+다음의 선행 사항을 완료해야 한다.
 
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: pod-0
-spec:
-  containers:
-  - image: k8s.gcr.io/test-webserver
-    name: pod-0
-    volumeMounts:
-    - mountPath: /test-pd
-      name: vol-0
-  volumes:
-  - name: vol-0
-    scaleIO:
-      gateway: https://localhost:443/api
-      system: scaleio
-      protectionDomain: sd0
-      storagePool: sp1
-      volumeName: vol-0
-      secretRef:
-        name: sio-secret
-      fsType: xfs
-```
-
-더 자세한 내용은 [ScaleIO](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/scaleio) 예제를 참고한다.
+* 쿠버네티스 클러스터에 Ceph CSI 드라이버 (`rbd.csi.ceph.com`) v3.5.0 
+  이상을 설치해야 한다.
+* CSI 드라이버가 동작하기 위해 `clusterID` 필드가 필수이지만 
+  트리 내(in-tree) 스토리지클래스는 `monitors` 필드가 필수임을 감안하여, 
+  쿠버네티스 저장소 관리자는 monitors 값의 
+  해시(예: `#echo -n '<monitors_string>' | md5sum`) 
+  기반으로 clusterID를 CSI 컨피그맵 내에 만들고 
+  이 clusterID 환경 설정 아래에 monitors 필드를 유지해야 한다.
+* 또한, 트리 내(in-tree) 스토리지클래스의 
+  `adminId` 값이 `admin`이 아니면, 트리 내(in-tree) 스토리지클래스의 
+  `adminSecretName` 값이 `adminId` 파라미터 값의 
+  base64 값으로 패치되어야 하며, 아니면 이 단계를 건너뛸 수 있다. {{< /note >}}
 
 ### secret
 
@@ -1023,13 +908,13 @@ tmpfs(RAM 기반 파일시스템)로 지원되기 때문에 비 휘발성 스토
 {{< /note >}}
 
 {{< note >}}
-시크릿을 [`subPath`](#subpath-사용하기) 볼륨 마운트로 사용하는 컨테이너는 시크릿
+시크릿을 [`subPath`](#using-subpath) 볼륨 마운트로 사용하는 컨테이너는 시크릿
 업데이트를 수신하지 못한다.
 {{< /note >}}
 
 더 자세한 내용은 [시크릿 구성하기](/ko/docs/concepts/configuration/secret/)를 참고한다.
 
-### storageOS {#storageos}
+### storageOS (사용 중단됨) {#storageos}
 
 `storageos` 볼륨을 사용하면 기존 [StorageOS](https://www.storageos.com)
 볼륨을 파드에 마운트할 수 있다.
@@ -1084,66 +969,15 @@ spec:
 StorageOS, 동적 프로비저닝과 퍼시스턴트 볼륨 클래임에 대한 더 자세한 정보는
 [StorageOS 예제](https://github.com/kubernetes/examples/blob/master/volumes/storageos)를 참고한다.
 
-### vsphereVolume {#vspherevolume}
+### vsphereVolume (사용 중단됨) {#vspherevolume}
 
 {{< note >}}
-쿠버네티스 vSphere 클라우드 공급자를 구성해야 한다. 클라우드공급자
-구성에 대해선 [vSphere 시작 가이드](https://vmware.github.io/vsphere-storage-for-kubernetes/documentation/)를 참조한다.
+이 드라이버 대신 외부(out-of-tree) vSphere CSI 드라이버를 사용하는 것을 권장한다.
 {{< /note >}}
 
 `vsphereVolume` 은 vSphere VMDK 볼륨을 파드에 마운트하는데 사용된다.  볼륨을
 마운트 해제해도 볼륨의 내용이 유지된다. VMFS와 VSAM 데이터스토어를 모두 지원한다.
 
-{{< note >}}
-파드와 함께 사용하기 위해선 먼저 다음 방법 중 하나를 사용하여 vSphere VMDK 볼륨을 생성해야 한다.
-{{< /note >}}
-
-#### VMDK 볼륨 생성하기 {#creating-vmdk-volume}
-
-다음 중 하나를 선택해서 VMDK를 생성한다.
-
-{{< tabs name="tabs_volumes" >}}
-{{% tab name="vmkfstools를 사용해서 생성" %}}
-먼저 ESX에 ssh로 들어간 다음, 다음 명령을 사용해서 VMDK를 생성한다.
-
-```shell
-vmkfstools -c 2G /vmfs/volumes/DatastoreName/volumes/myDisk.vmdk
-```
-
-{{% /tab %}}
-{{% tab name="vmware-vdiskmanager를 사용해서 생성" %}}
-다음 명령을 사용해서 VMDK를 생성한다.
-
-```shell
-vmware-vdiskmanager -c -t 0 -s 40GB -a lsilogic myDisk.vmdk
-```
-
-{{% /tab %}}
-
-{{< /tabs >}}
-
-#### vSphere VMDK 구성 예시 {#vsphere-vmdk-configuration}
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: test-vmdk
-spec:
-  containers:
-  - image: k8s.gcr.io/test-webserver
-    name: test-container
-    volumeMounts:
-    - mountPath: /test-vmdk
-      name: test-volume
-  volumes:
-  - name: test-volume
-    # 이 VMDK 볼륨은 이미 있어야 한다.
-    vsphereVolume:
-      volumePath: "[DatastoreName] volumes/myDisk"
-      fsType: ext4
-```
-
 더 자세한 내용은 [vSphere 볼륨](https://github.com/kubernetes/examples/tree/master/staging/volumes/vsphere) 예제를 참고한다.
 
 #### vSphere CSI 마이그레이션 {#vsphere-csi-migration}
@@ -1155,8 +989,15 @@ spec:
 [vSphere CSI 드라이버](https://github.com/kubernetes-sigs/vsphere-csi-driver)가
 클러스터에 설치되어야 하며 `CSIMigration` 및 `CSIMigrationvSphere`
 [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)가 활성화되어 있어야 한다.
+마이그레이션에 대한 추가 조언은 VMware의 문서 페이지 
+[인-트리 vSphere 볼륨을 vSphere 컨테이너 스토리지 플러그인으로 마이그레이션하기](https://docs.vmware.com/en/VMware-vSphere-Container-Storage-Plug-in/2.0/vmware-vsphere-csp-getting-started/GUID-968D421F-D464-4E22-8127-6CB9FF54423F.html)를 참고한다.
 
-또한 최소 vSphere vCenter/ESXi 버전은 7.0u1이고 최소 HW 버전은 VM 버전 15여야 한다.
+쿠버네티스 v{{< skew currentVersion >}} 버전에서 외부(out-of-tree) CSI 드라이버로 마이그레이션하려면 
+vSphere 7.0u2 이상을 사용하고 있어야 한다. 
+v{{< skew currentVersion >}} 외의 쿠버네티스 버전을 사용 중인 경우, 
+해당 쿠버네티스 버전의 문서를 참고한다. 
+쿠버네티스 v{{< skew currentVersion >}} 버전과 vSphere 이전 버전을 사용 중이라면, 
+vSphere 버전을 7.0u2 이상으로 업그레이드하는 것을 추천한다.
 
 {{< note >}}
 빌트인 `vsphereVolume` 플러그인의 다음 스토리지클래스 파라미터는 vSphere CSI 드라이버에서 지원되지 않는다.
@@ -1177,7 +1018,17 @@ vSphere CSI 드라이버에서 생성된 새 볼륨은 이러한 파라미터를
 
 {{< feature-state for_k8s_version="v1.19" state="beta" >}}
 
-`vsphereVolume` 플러그인이 컨트롤러 관리자와 kubelet에 의해 로드되지 않도록 기능을 비활성화하려면, 이 기능 플래그를 `true` 로 설정해야 한다. 이를 위해서는 모든 워커 노드에 `csi.vsphere.vmware.com` {{< glossary_tooltip text="CSI" term_id="csi" >}} 드라이버가 설치해야 한다.
+`vsphereVolume` 플러그인이 컨트롤러 관리자와 kubelet에 의해 로드되지 않도록 기능을 비활성화하려면, `InTreePluginvSphereUnregister` 기능 플래그를 `true` 로 설정해야 한다. 이를 위해서는 모든 워커 노드에 `csi.vsphere.vmware.com` {{< glossary_tooltip text="CSI" term_id="csi" >}} 드라이버를 설치해야 한다.
+
+#### Portworx CSI 마이그레이션
+{{< feature-state for_k8s_version="v1.23" state="alpha" >}}
+
+Portworx를 위한 `CSIMigration` 기능이 쿠버네티스 1.23에 추가되었지만 
+알파 상태이기 때문에 기본적으로는 비활성화되어 있다. 
+이 기능은 사용 중이 트리 내(in-tree) 플러그인의 모든 플러그인 동작을 
+`pxd.portworx.com` CSI 드라이버로 리다이렉트한다. 
+이 기능을 사용하려면, 클러스터에 [Portworx CSI 드라이버](https://docs.portworx.com/portworx-install-with-kubernetes/storage-operations/csi/)가 
+설치되어 있고, kube-controller-manager와 kubelet에 `CSIMigrationPortworx=true`로 설정해야 한다.
 
 ## subPath 사용하기 {#using-subpath}
 
@@ -1247,11 +1098,12 @@ spec:
         fieldRef:
           apiVersion: v1
           fieldPath: metadata.name
-    image: busybox
+    image: busybox:1.28
     command: [ "sh", "-c", "while [ true ]; do echo 'Hello'; sleep 10; done | tee -a /logs/hello.txt" ]
     volumeMounts:
     - name: workdir1
       mountPath: /logs
+      # 변수 확장에는 괄호를 사용한다(중괄호 아님).
       subPathExpr: $(POD_NAME)
   restartPolicy: Never
   volumes:
@@ -1274,8 +1126,7 @@ spec:
 ## 아웃-오브-트리(out-of-tree) 볼륨 플러그인
 
 아웃-오브-트리 볼륨 플러그인에는
-{{< glossary_tooltip text="컨테이너 스토리지 인터페이스" term_id="csi" >}}(CSI) 그리고
-FlexVolume이 포함된다. 이러한 플러그인을 사용하면 스토리지 벤더들은 플러그인 소스 코드를 쿠버네티스 리포지터리에
+{{< glossary_tooltip text="컨테이너 스토리지 인터페이스" term_id="csi" >}}(CSI) 그리고 FlexVolume(사용 중단됨)이 포함된다. 이러한 플러그인을 사용하면 스토리지 벤더들은 플러그인 소스 코드를 쿠버네티스 리포지터리에
 추가하지 않고도 사용자 정의 스토리지 플러그인을 만들 수 있다.
 
 이전에는 모든 볼륨 플러그인이 "인-트리(in-tree)"에 있었다. "인-트리" 플러그인은 쿠버네티스 핵심 바이너리와
@@ -1315,10 +1166,9 @@ CSI 호환 볼륨 드라이버가 쿠버네티스 클러스터에 배포되면
 `csi` 볼륨은 세 가지 방법으로 파드에서 사용할 수 있다.
 
 * [퍼시스턴트볼륨클레임](#persistentvolumeclaim)에 대한 참조를 통해서
-* [일반 임시 볼륨](/docs/concepts/storage/ephemeral-volumes/#generic-ephemeral-volume)과 함께
-(알파 기능)
+* [일반 임시 볼륨](/ko/docs/concepts/storage/ephemeral-volumes/#generic-ephemeral-volumes)과 함께
 * 드라이버가 지원하는 경우
-[CSI 임시 볼륨](/docs/concepts/storage/ephemeral-volumes/#csi-ephemeral-volume)과 함께 (베타 기능)
+  [CSI 임시 볼륨](/ko/docs/concepts/storage/ephemeral-volumes/#csi-ephemeral-volumes)과 함께 (베타 기능)
 
 스토리지 관리자가 다음 필드를 사용해서 CSI 퍼시스턴트 볼륨을
 구성할 수 있다.
@@ -1381,11 +1231,11 @@ CSI 설정 변경 없이 평소와 같이
 
 {{< feature-state for_k8s_version="v1.16" state="beta" >}}
 
-파드 명세 내에서 CSI 볼륨을 직접 구성할 수
-있다. 이 방식으로 지정된 볼륨은 임시 볼륨이며
-파드가 다시 시작할 때 지속되지 않는다. 자세한 내용은 [임시
-볼륨](/docs/concepts/storage/ephemeral-volumes/#csi-ephemeral-volumes)을
-참고한다.
+파드 명세 내에서 CSI 볼륨을 직접 구성할 수 있다. 
+이 방식으로 지정된 볼륨은 임시 볼륨이며 
+파드가 다시 시작할 때 지속되지 않는다. 
+자세한 내용은 
+[임시 볼륨](/ko/docs/concepts/storage/ephemeral-volumes/#csi-ephemeral-volumes)을 참고한다.
 
 CSI 드라이버의 개발 방법에 대한 더 자세한 정보는
 [쿠버네티스-csi 문서](https://kubernetes-csi.github.io/docs/)를 참조한다.
@@ -1408,13 +1258,21 @@ CSI 드라이버로 전환할 때 기존 스토리지 클래스, 퍼시스턴트
 
 ### flexVolume
 
-FlexVolume은 버전 1.2(CSI 이전) 이후 쿠버네티스에 존재하는
-아웃-오브-트리 플러그인 인터페이스이다. 이것은 exec 기반 모델을 사용해서 드라이버에
-접속한다. FlexVolume 드라이버 바이너리 파일은 각각의 노드와 일부 경우에 컨트롤 플레인 노드의
-미리 정의된 볼륨 플러그인 경로에 설치해야 한다.
+{{< feature-state for_k8s_version="v1.23" state="deprecated" >}}
+
+FlexVolume은 스토리지 드라이버와 인터페이싱하기 위해 exec 기반 모델을 사용하는 아웃-오브-트리 플러그인 인터페이스이다. 
+FlexVolume 드라이버 바이너리 파일은 각 노드의 미리 정의된 볼륨 플러그인 경로에 설치되어야 하며, 
+일부 경우에는 컨트롤 플레인 노드에도 설치되어야 한다.
 
 파드는 `flexvolume` 인-트리 볼륨 플러그인을 통해 FlexVolume 드라이버와 상호 작용한다.
-더 자세한 내용은 [FlexVolume](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-storage/flexvolume.md) 예제를 참고한다.
+더 자세한 내용은 FlexVolume [README](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-storage/flexvolume.md#readme) 문서를 참고한다.
+
+{{< note >}}
+FlexVolume은 사용 중단되었다. 쿠버네티스에 외부 스토리지를 연결하려면 아웃-오브-트리 CSI 드라이버를 사용하는 것을 권장한다.
+
+FlexVolume 드라이버 메인테이너는 CSI 드라이버를 구현하고 사용자들이 FlexVolume 드라이버에서 CSI로 마이그레이트할 수 있도록 지원해야 한다.
+FlexVolume 사용자는 워크로드가 동등한 CSI 드라이버를 사용하도록 이전해야 한다.
+{{< /note >}}
 
 ## 마운트 전파(propagation)
 
diff --git a/content/ko/docs/concepts/workloads/_index.md b/content/ko/docs/concepts/workloads/_index.md
index ff1c62221c..09caa7c622 100644
--- a/content/ko/docs/concepts/workloads/_index.md
+++ b/content/ko/docs/concepts/workloads/_index.md
@@ -60,7 +60,7 @@ _모든_ 파드가 가용한 경우가 아닌 경우 멈추고 싶다면(아마
 
 각 리소스에 대해 읽을 수 있을 뿐만 아니라, 리소스와 관련된 특정 작업에 대해서도 알아볼 수 있다.
 
-* [`Deployment` 를 사용하여 스테이트리스(stateless) 애플리케이션 실행](/docs/tasks/run-application/run-stateless-application-deployment/)
+* [`Deployment` 를 사용하여 스테이트리스(stateless) 애플리케이션 실행](/ko/docs/tasks/run-application/run-stateless-application-deployment/)
 * 스테이트풀(stateful) 애플리케이션을 [단일 인스턴스](/ko/docs/tasks/run-application/run-single-instance-stateful-application/)
   또는 [복제된 세트](/docs/tasks/run-application/run-replicated-stateful-application/)로 실행
 * [`CronJob` 을 사용하여 자동화된 작업 실행](/ko/docs/tasks/job/automated-tasks-with-cron-jobs/)
@@ -70,7 +70,7 @@ _모든_ 파드가 가용한 경우가 아닌 경우 멈추고 싶다면(아마
 
 다음은 쿠버네티스가 애플리케이션의 파드를 어떻게 관리하는지를 알 수 있게 해주는
 두 가지 개념이다.
-* [가비지(Garbage) 수집](/ko/docs/concepts/workloads/controllers/garbage-collection/)은 _소유하는 리소스_ 가
+* [가비지(Garbage) 수집](/ko/docs/concepts/architecture/garbage-collection/)은 _소유하는 리소스_ 가
   제거된 후 클러스터에서 오브젝트를 정리한다.
 * [_time-to-live after finished_ 컨트롤러](/ko/docs/concepts/workloads/controllers/ttlafterfinished/)는
   잡이 완료된 이후에 정의된 시간이 경과되면 잡을 제거한다.
diff --git a/content/ko/docs/concepts/workloads/controllers/cron-jobs.md b/content/ko/docs/concepts/workloads/controllers/cron-jobs.md
index 6935cf8fb4..7ab8eca81e 100644
--- a/content/ko/docs/concepts/workloads/controllers/cron-jobs.md
+++ b/content/ko/docs/concepts/workloads/controllers/cron-jobs.md
@@ -26,6 +26,16 @@ kube-controller-manager 컨테이너에 설정된 시간대는
 크론잡 컨트롤러가 사용하는 시간대로 결정한다.
 {{< /caution >}}
 
+{{< caution >}}
+[v1 CronJob API](/docs/reference/kubernetes-api/workload-resources/cron-job-v1/)은 
+위에서 설명한 타임존 설정을 공식적으로 지원하지는 않는다.
+
+`CRON_TZ` 또는 `TZ` 와 같은 변수를 설정하는 것은 쿠버네티스 프로젝트에서 공식적으로 지원하지는 않는다.
+`CRON_TZ` 또는 `TZ` 와 같은 변수를 설정하는 것은 
+크론탭을 파싱하고 다음 잡 생성 시간을 계산하는 내부 라이브러리의 구현 상세사항이다.
+프로덕션 클러스터에서는 사용을 권장하지 않는다.
+{{< /caution >}}
+
 크론잡 리소스에 대한 매니페스트를 생성할 때에는 제공하는 이름이
 유효한 [DNS 서브도메인 이름](/ko/docs/concepts/overview/working-with-objects/names/#dns-서브도메인-이름)이어야 한다.
 이름은 52자 이하여야 한다. 이는 크론잡 컨트롤러는 제공된 잡 이름에
@@ -36,9 +46,10 @@ kube-controller-manager 컨테이너에 설정된 시간대는
 
 ## 크론잡
 
-크론잡은 백업 실행 또는 이메일 전송과 같은 정기적이고 반복적인
-작업을 만드는데 유용하다. 또한 크론잡은 클러스터가 유휴 상태일 때 잡을
-스케줄링하는 것과 같이 특정 시간 동안의 개별 작업을 스케줄할 수 있다.
+크론잡은 백업, 리포트 생성 등의 정기적 작업을 수행하기 위해 사용된다. 
+각 작업은 무기한 반복되도록 구성해야 한다(예: 
+1일/1주/1달마다 1회). 
+작업을 시작해야 하는 해당 간격 내 특정 시점을 정의할 수 있다.
 
 ### 예시
 
@@ -58,7 +69,7 @@ kube-controller-manager 컨테이너에 설정된 시간대는
 # │ │ │ ┌───────────── 월 (1 - 12)
 # │ │ │ │ ┌───────────── 요일 (0 - 6) (일요일부터 토요일까지;
 # │ │ │ │ │                                   특정 시스템에서는 7도 일요일)
-# │ │ │ │ │
+# │ │ │ │ │                                   또는 sun, mon, tue, wed, thu, fri, sat
 # │ │ │ │ │
 # * * * * *
 ```
@@ -73,12 +84,28 @@ kube-controller-manager 컨테이너에 설정된 시간대는
 | @hourly 									| 매시 0분에 시작                          								       | 0 * * * * 		|
 
 
+
 예를 들면, 다음은 해당 작업이 매주 금요일 자정에 시작되어야 하고, 매월 13일 자정에도 시작되어야 한다는 뜻이다.
 
 `0 0 13 * 5`
 
 크론잡 스케줄 표현을 생성하기 위해서 [crontab.guru](https://crontab.guru/)와 같은 웹 도구를 사용할 수도 있다.
 
+## 타임 존
+크론잡에 타임 존이 명시되어 있지 않으면, kube-controller-manager는 로컬 타임 존을 기준으로 스케줄을 해석한다.
+
+{{< feature-state for_k8s_version="v1.24" state="alpha" >}}
+
+`CronJobTimeZone` [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 활성화하면, 
+크론잡에 대해 타임 존을 명시할 수 있다(기능 게이트를 활성화하지 않거나, 
+타임 존에 대한 실험적 지원을 제공하지 않는 쿠버네티스 버전을 사용 중인 경우, 
+클러스터의 모든 크론잡은 타임 존이 명시되지 않은 것으로 동작한다).
+
+이 기능을 활성화하면, `spec.timeZone`을 유효한 [타임 존](https://en.wikipedia.org/wiki/List_of_tz_database_time_zones) 이름으로 지정할 수 있다. 
+예를 들어, `spec.timeZone: "Etc/UTC"`와 같이 설정하면 쿠버네티스는 협정 세계시를 기준으로 스케줄을 해석한다.
+
+Go 표준 라이브러리의 타임 존 데이터베이스가 바이너리로 인클루드되며, 시스템에서 외부 데이터베이스를 사용할 수 없을 때 폴백(fallback)으로 사용된다.
+
 ## 크론잡의 한계 {#cron-job-limitations}
 
 크론잡은 일정의 실행시간 마다 _약_ 한 번의 잡 오브젝트를 생성한다. "약" 이라고 하는 이유는
@@ -131,8 +158,16 @@ Cannot determine if job needs to be started. Too many missed start time (> 100).
 
 ## {{% heading "whatsnext" %}}
 
-[크론 표현 포맷](https://ko.wikipedia.org/wiki/Cron)은
-크론잡 `schedule` 필드의 포맷을 문서화 한다.
-
-크론잡 생성과 작업에 대한 지침과 크론잡 매니페스트의
-예는 [크론잡으로 자동화된 작업 실행하기](/ko/docs/tasks/job/automated-tasks-with-cron-jobs/)를 참조한다.
+* 크론잡이 의존하고 있는 [파드](/ko/docs/concepts/workloads/pods/)와
+  [잡](/ko/docs/concepts/workloads/controllers/job/) 두 개념에
+  대해 배운다.
+* 크론잡 `.spec.schedule` 필드의 [형식](https://pkg.go.dev/github.com/robfig/cron/v3#hdr-CRON_Expression_Format)에
+  대해서 읽는다.
+* 크론잡을 생성하고 다루기 위한 지침 및
+  크론잡 매니페스트의 예제로
+  [크론잡으로 자동화된 작업 실행](/ko/docs/tasks/job/automated-tasks-with-cron-jobs/)를 읽는다.
+* 실패했거나 완료된 잡을 자동으로 정리하도록 하려면, 
+  [완료된 잡을 자동으로 정리](/ko/docs/concepts/workloads/controllers/job/#clean-up-finished-jobs-automatically)를 확인한다.
+* `CronJob`은 쿠버네티스 REST API의 일부이다.
+  {{< api-reference page="workload-resources/cron-job-v1" >}}
+  오브젝트 정의를 읽고 쿠버네티스 크론잡 API에 대해 이해한다.
diff --git a/content/ko/docs/concepts/workloads/controllers/daemonset.md b/content/ko/docs/concepts/workloads/controllers/daemonset.md
index 1496b25ec3..ffd07afd9a 100644
--- a/content/ko/docs/concepts/workloads/controllers/daemonset.md
+++ b/content/ko/docs/concepts/workloads/controllers/daemonset.md
@@ -47,7 +47,7 @@ kubectl apply -f https://k8s.io/examples/controllers/daemonset.yaml
 
 다른 모든 쿠버네티스 설정과 마찬가지로 데몬셋에는 `apiVersion`, `kind` 그리고 `metadata` 필드가 필요하다.
 일반적인 설정파일 작업에 대한 정보는
-[스테이트리스 애플리케이션 실행하기](/docs/tasks/run-application/run-stateless-application-deployment/)와
+[스테이트리스 애플리케이션 실행하기](/ko/docs/tasks/run-application/run-stateless-application-deployment/)와
  [kubectl을 사용한 오브젝트 관리](/ko/docs/concepts/overview/working-with-objects/object-management/)를 참고한다.
 
 데몬셋 오브젝트의 이름은 유효한
@@ -76,11 +76,11 @@ kubectl apply -f https://k8s.io/examples/controllers/daemonset.yaml
 `.spec.selector` 필드는 파드 셀렉터이다. 이것은
 [잡](/ko/docs/concepts/workloads/controllers/job/)의 `.spec.selector` 와 같은 동작을 한다.
 
-쿠버네티스 1.8 부터는 레이블이 `.spec.template` 와 일치하는 파드 셀렉터를 명시해야 한다.
-파드 셀렉터는 비워두면 더 이상 기본 값이 설정이 되지 않는다.
-셀렉터의 기본 값은 `kubectl apply` 과 호환되지 않는다.
-또한, 한 번 데몬셋이 만들어지면 `.spec.selector` 의 변형은 가능하지 않다.
-파드 셀렉터를 변형하면 의도하지 않게 파드는 고아가 되거나 사용자에게 혼란을 주는 것으로 밝혀졌다.
+`.spec.template`의 레이블과 매치되는 
+파드 셀렉터를 명시해야 한다.
+또한, 한 번 데몬셋이 만들어지면 
+`.spec.selector` 는 바꿀 수 없다.
+파드 셀렉터를 변형하면 의도치 않게 파드가 고아가 될 수 있으며, 이는 사용자에게 혼란을 주는 것으로 밝혀졌다.
 
 `.spec.selector` 는 다음 2개의 필드로 구성된 오브젝트이다.
 
@@ -91,8 +91,8 @@ kubectl apply -f https://k8s.io/examples/controllers/daemonset.yaml
 
 2개의 필드가 명시되면 두 필드를 모두 만족하는 것(ANDed)이 결과가 된다.
 
-만약 `.spec.selector` 를 명시하면, 이것은 `.spec.template.metadata.labels` 와 일치해야 한다. 
-일치하지 않는 구성은 API에 의해 거부된다.
+`.spec.selector` 는 `.spec.template.metadata.labels` 와 일치해야 한다. 
+이 둘이 서로 일치하지 않는 구성은 API에 의해 거부된다.
 
 ### 오직 일부 노드에서만 파드 실행
 
@@ -107,7 +107,7 @@ kubectl apply -f https://k8s.io/examples/controllers/daemonset.yaml
 
 ### 기본 스케줄러로 스케줄
 
-{{< feature-state state="stable" for-kubernetes-version="1.17" >}}
+{{< feature-state for_k8s_version="1.17" state="stable" >}}
 
 데몬셋은 자격이 되는 모든 노드에서 파드 사본이 실행하도록 보장한다. 일반적으로
 쿠버네티스 스케줄러에 의해 파드가 실행되는 노드가 선택된다. 그러나
@@ -166,7 +166,7 @@ nodeAffinity:
 데몬셋의 파드와 통신할 수 있는 몇 가지 패턴은 다음과 같다.
 
 - **푸시(Push)**: 데몬셋의 파드는 통계 데이터베이스와 같은 다른 서비스로 업데이트를 보내도록
-  구성되어있다. 그들은 클라이언트들을 가지지 않는다.
+  구성되어 있다. 그들은 클라이언트들을 가지지 않는다.
 - **노드IP와 알려진 포트**: 데몬셋의 파드는 `호스트 포트`를 사용할 수 있으며, 
   노드IP를 통해 파드에 접근할 수 있다. 
   클라이언트는 노드IP를 어떻게든지 알고 있으며, 관례에 따라 포트를 알고 있다.
@@ -185,7 +185,7 @@ nodeAffinity:
 필드가 업데이트 되는 것을 허용하지 않는다. 또한 데몬셋 컨트롤러는
 다음에 노드(동일한 이름으로)가 생성될 때 원본 템플릿을 사용한다.
 
-사용자는 데몬셋을 삭제할 수 있다. 만약 `kubectl` 에서 `--cascade=false` 를 명시하면
+사용자는 데몬셋을 삭제할 수 있다. 만약 `kubectl` 에서 `--cascade=orphan` 를 명시하면
 파드는 노드에 남게 된다. 이후에 동일한 셀렉터로 새 데몬셋을 생성하면,
 새 데몬셋은 기존 파드를 채택한다. 만약 파드를 교체해야 하는 경우 데몬셋은
 `updateStrategy` 에 따라 파드를 교체한다.
@@ -213,7 +213,7 @@ nodeAffinity:
 어떠한 이유로든 삭제되거나 종료된 파드를 교체한다. 따라서 개별 파드를
 생성하는 것보다는 데몬 셋을 사용해야 한다.
 
-### 스태틱(static) 파드
+### 스태틱(static) 파드 {#static-pods}
 
 Kubelet이 감시하는 특정 디렉터리에 파일을 작성하는 파드를 생성할 수 있다. 이것을
 [스태틱 파드](/ko/docs/tasks/configure-pod-container/static-pod/)라고 부른다.
@@ -229,5 +229,25 @@ Kubelet이 감시하는 특정 디렉터리에 파일을 작성하는 파드를
 
 파드가 실행되는 호스트를 정확하게 제어하는 것보다 레플리카의 수를 스케일링 업 및 다운 하고,
 업데이트 롤아웃이 더 중요한 프런트 엔드와 같은 것은 스테이트리스 서비스의
-디플로이먼트를 사용한다. 파드 사본이 항상 모든 호스트 또는 특정 호스트에서 실행되는 것이 중요하고,
-다른 파드의 실행 이전에 필요한 경우에는 데몬셋을 사용한다.
+디플로이먼트를 사용한다. 데몬셋이 특정 노드에서 다른 파드가 올바르게 실행되도록 하는 노드 수준 기능을 제공한다면, 
+파드 사본이 항상 모든 호스트 또는 특정 호스트에서 실행되는 것이 중요한 경우에 데몬셋을 사용한다.
+
+예를 들어, [네트워크 플러그인](/ko/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)은 데몬셋으로 실행되는 컴포넌트를 포함할 수 있다. 데몬셋 컴포넌트는 작동 중인 노드가 정상적인 클러스터 네트워킹을 할 수 있도록 한다.
+
+## {{% heading "whatsnext" %}}
+
+* [파드](/ko/docs/concepts/workloads/pods/)에 대해 배운다.
+  * 쿠버네티스 {{< glossary_tooltip text="컨트롤 플레인" term_id="control-plane" >}}
+    컴포넌트를 기동하는데 유용한
+    [스태틱 파드](#static-pods)에 대해 배운다. 
+* 데몬셋을 어떻게 사용하는지 알아본다.
+  * [데몬셋 롤링 업데이트 수행하기](/ko/docs/tasks/manage-daemon/update-daemon-set/)
+  * [데몬셋 롤백하기](/ko/docs/tasks/manage-daemon/rollback-daemon-set/)
+    (예를 들어, 롤 아웃이 예상대로 동작하지 않은 경우).
+* [쿠버네티스가 파드를 노드에 할당하는 방법](/ko/docs/concepts/scheduling-eviction/assign-pod-node/)을 이해한다.
+* 데몬셋으로 구동되곤 하는, [디바이스 플러그인](/ko/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)과
+  [애드온](/ko/docs/concepts/cluster-administration/addons/)에 대해 배운다.
+* `DaemonSet`은 쿠버네티스 REST API에서 상위-수준 리소스이다.
+  데몬셋 API에 대해 이해하기 위해 
+  {{< api-reference page="workload-resources/daemon-set-v1" >}}
+  오브젝트 정의를 읽는다.
diff --git a/content/ko/docs/concepts/workloads/controllers/deployment.md b/content/ko/docs/concepts/workloads/controllers/deployment.md
index ac782e7008..395ad1b73a 100644
--- a/content/ko/docs/concepts/workloads/controllers/deployment.md
+++ b/content/ko/docs/concepts/workloads/controllers/deployment.md
@@ -1,4 +1,6 @@
 ---
+
+
 title: 디플로이먼트
 feature:
   title: 자동화된 롤아웃과 롤백
@@ -30,7 +32,7 @@ _디플로이먼트(Deployment)_ 는 {{< glossary_tooltip text="파드" term_id=
 * 디플로이먼트의 PodTemplateSpec을 업데이트해서 [파드의 새로운 상태를 선언한다](#디플로이먼트-업데이트). 새 레플리카셋이 생성되면, 디플로이먼트는 파드를 기존 레플리카셋에서 새로운 레플리카셋으로 속도를 제어하며 이동하는 것을 관리한다. 각각의 새로운 레플리카셋은 디플로이먼트의 수정 버전에 따라 업데이트한다.
 * 만약 디플로이먼트의 현재 상태가 안정적이지 않은 경우 [디플로이먼트의 이전 버전으로 롤백](#디플로이먼트-롤백)한다. 각 롤백은 디플로이먼트의 수정 버전에 따라 업데이트한다.
 * [더 많은 로드를 위해 디플로이먼트의 스케일 업](#디플로이먼트-스케일링).
-* [디플로이먼트 일시 중지](#디플로이먼트의-일시-중지와-재개)로 PodTemplateSpec에 여러 수정 사항을 적용하고, 새로운 롤아웃의 시작을 재개한다.
+* [디플로이먼트 롤아웃 일시 중지](#디플로이먼트의-일시-중지와-재개)로 PodTemplateSpec에 여러 수정 사항을 적용하고, 재개하여 새로운 롤아웃을 시작한다.
 * 롤아웃이 막혀있는지를 나타내는 [디플로이먼트 상태를 이용](#디플로이먼트-상태).
 * 더 이상 필요 없는 [이전 레플리카셋 정리](#정책-초기화).
 
@@ -50,13 +52,13 @@ _디플로이먼트(Deployment)_ 는 {{< glossary_tooltip text="파드" term_id=
   보다 정교한 선택 규칙의 적용이 가능하다.
 
   {{< note >}}
-  `.spec.selector.matchLabels` 필드는 {key,value}의 쌍으로 매핑되어있다. `matchLabels` 에 매핑된
+  `.spec.selector.matchLabels` 필드는 {key,value}의 쌍으로 매핑되어 있다. `matchLabels` 에 매핑된
   단일 {key,value}은 `matchExpressions` 의 요소에 해당하며, `key` 필드는 "key"에 그리고 `operator`는 "In"에 대응되며
   `value` 배열은 "value"만 포함한다.
   매칭을 위해서는 `matchLabels` 와 `matchExpressions` 의 모든 요건이 충족되어야 한다.
   {{< /note >}}
 
-* `template` 필드에는 다음 하위 필드가 포함되어있다.
+* `template` 필드에는 다음 하위 필드가 포함되어 있다.
   * 파드는 `.metadata.labels` 필드를 사용해서 `app: nginx` 라는 레이블을 붙인다.
   * 파드 템플릿의 사양 또는 `.template.spec` 필드는
   파드가 [도커 허브](https://hub.docker.com/)의 `nginx` 1.14.2 버전 이미지를 실행하는
@@ -73,11 +75,6 @@ _디플로이먼트(Deployment)_ 는 {{< glossary_tooltip text="파드" term_id=
 kubectl apply -f https://k8s.io/examples/controllers/nginx-deployment.yaml
 ```
 
-  {{< note >}}
-  `--record` 플래그를 지정해서 실행된 명령을 `kubernetes.io/change-cause` 리소스 어노테이션에 작성할 수 있다.
-  기록된 변경사항은 향후 인트로스펙션(introspection)에 유용하다. 예를 들면, 디플로이먼트의 각 수정 버전에서 실행된 명령을 볼 수 있다.
-  {{< /note >}}
-
 
 2. `kubectl get deployments` 을 실행해서 디플로이먼트가 생성되었는지 확인한다.
 
@@ -167,13 +164,13 @@ kubectl apply -f https://k8s.io/examples/controllers/nginx-deployment.yaml
 1. `nginx:1.14.2` 이미지 대신 `nginx:1.16.1` 이미지를 사용하도록 nginx 파드를 업데이트 한다.
 
     ```shell
-    kubectl --record deployment.apps/nginx-deployment set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1
+    kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1
     ```
 
     또는 다음의 명령어를 사용한다.
 
     ```shell
-    kubectl set image deployment/nginx-deployment nginx=nginx:1.16.1 --record
+    kubectl set image deployment/nginx-deployment nginx=nginx:1.16.1
     ```
 
     다음과 유사하게 출력된다.
@@ -185,7 +182,7 @@ kubectl apply -f https://k8s.io/examples/controllers/nginx-deployment.yaml
     대안으로 디플로이먼트를 `edit` 해서 `.spec.template.spec.containers[0].image` 를 `nginx:1.14.2` 에서 `nginx:1.16.1` 로 변경한다.
 
     ```shell
-    kubectl edit deployment.v1.apps/nginx-deployment
+    kubectl edit deployment/nginx-deployment
     ```
 
     다음과 유사하게 출력된다.
@@ -258,10 +255,11 @@ kubectl apply -f https://k8s.io/examples/controllers/nginx-deployment.yaml
     또한 디플로이먼트는 의도한 파드 수 보다 더 많이 생성되는 파드의 수를 제한한다.
     기본적으로, 의도한 파드의 수 기준 최대 125%까지만 추가 파드가 동작할 수 있도록 제한한다(최대 25% 까지).
 
-    예를 들어, 위 디플로이먼트를 자세히 살펴보면 먼저 새로운 파드를 생성한 다음
-    이전 파드를 삭제하고, 새로운 파드를 만든 것을 볼 수 있다. 충분한 수의 새로운 파드가 나올 때까지 이전 파드를 죽이지 않으며,
-    충분한 수의 이전 파드들이 죽기 전까지 새로운 파드를 만들지 않는다.
-    이것은 최소 2개의 파드를 사용할 수 있게 하고, 최대 4개의 파드를 사용할 수 있게 한다.
+    예를 들어, 위 디플로이먼트를 자세히 살펴보면 먼저 새로운 파드를 생성한 다음, 
+    이전 파드를 삭제하고, 또 다른 새로운 파드를 만든 것을 볼 수 있다. 
+    충분한 수의 새로운 파드가 나올 때까지 이전 파드를 죽이지 않으며, 충분한 수의 이전 파드들이 죽기 전까지 새로운 파드를 만들지 않는다. 
+    이것은 최소 3개의 파드를 사용할 수 있게 하고, 최대 4개의 파드를 사용할 수 있게 한다. 
+    디플로이먼트의 레플리카 크기가 4인 경우, 파드 숫자는 3개에서 5개 사이이다.
 
 * 디플로이먼트의 세부 정보 가져오기
   ```shell
@@ -306,13 +304,20 @@ kubectl apply -f https://k8s.io/examples/controllers/nginx-deployment.yaml
       Normal  ScalingReplicaSet  19s   deployment-controller  Scaled up replica set nginx-deployment-1564180365 to 3
       Normal  ScalingReplicaSet  14s   deployment-controller  Scaled down replica set nginx-deployment-2035384211 to 0
     ```
-    처음 디플로이먼트를 생성했을 때, 디플로이먼트가 레플리카셋(nginx-deployment-2035384211)을 생성해서
-    3개의 레플리카로 직접 스케일 업한 것을 볼 수 있다.
-    디플로이먼트를 업데이트할 때 새 레플리카셋(nginx-deployment-1564180365)을 생성하고, 1개로   스케일 업한 다음
-    이전 레플리카셋을 2개로 스케일 다운해서, 최소 2개의 파드를 사용할 수 있고 최대 4개의 파드가 항상 생성되어 있도록 하였다.
-    이후 지속해서 같은 롤링 업데이트 정책으로 새 레플리카셋은 스케일 업하고 이전 레플리카셋은 스케일 다운한다.
+    처음 디플로이먼트를 생성했을 때, 디플로이먼트가 레플리카셋(nginx-deployment-2035384211)을 생성하고 
+    3개의 레플리카로 직접 스케일 업한 것을 볼 수 있다. 
+    디플로이먼트를 업데이트하자, 새 레플리카셋(nginx-deployment-1564180365)을 생성하고, 1개로 스케일 업한 다음 모두 실행될 때까지 대기하였다. 
+    그 뒤 이전 레플리카셋을 2개로 스케일 다운하고 새 레플리카셋을 2개로 스케일 업하여 모든 시점에 대해 최소 3개 / 최대 3개의 파드가 존재하도록 하였다. 
+    이후 지속해서 같은 롤링 업데이트 정책으로 새 레플리카셋은 스케일 업하고 이전 레플리카셋은 스케일 다운한다. 
     마지막으로 새로운 레플리카셋에 3개의 사용 가능한 레플리카가 구성되며, 이전 레플리카셋은 0개로 스케일 다운된다.
 
+{{< note >}}
+쿠버네티스가 `availableReplicas` 수를 계산할 때 종료 중인(terminating) 파드는 포함하지 않으며, 
+이 수는 `replicas - maxUnavailable` 와 `replicas + maxSurge` 사이에 존재한다. 
+그 결과, 롤아웃 중에는 파드의 수가 예상보다 많을 수 있으며, 
+종료 중인 파드의 `terminationGracePeriodSeconds`가 만료될 때까지는 디플로이먼트가 소비하는 총 리소스가 `replicas + maxSurge` 이상일 수 있다.
+{{< /note >}}
+
 ### 롤오버(일명 인-플라이트 다중 업데이트)
 
 디플로이먼트 컨트롤러는 각 시간마다 새로운 디플로이먼트에서 레플리카셋이
@@ -368,7 +373,7 @@ API 버전 `apps/v1` 에서 디플로이먼트의 레이블 셀렉터는 생성
 * 디플로이먼트를 업데이트하는 동안 이미지 이름을 `nginx:1.16.1` 이 아닌 `nginx:1.161` 로 입력해서 오타를 냈다고 가정한다.
 
     ```shell
-    kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.161 --record=true
+    kubectl set image deployment/nginx-deployment nginx=nginx:1.161 
     ```
 
     이와 유사하게 출력된다.
@@ -477,26 +482,25 @@ API 버전 `apps/v1` 에서 디플로이먼트의 레이블 셀렉터는 생성
 
 1. 먼저 이 디플로이먼트의 수정 사항을 확인한다.
     ```shell
-    kubectl rollout history deployment.v1.apps/nginx-deployment
+    kubectl rollout history deployment/nginx-deployment
     ```
     이와 유사하게 출력된다.
     ```
     deployments "nginx-deployment"
     REVISION    CHANGE-CAUSE
-    1           kubectl apply --filename=https://k8s.io/examples/controllers/nginx-deployment.yaml --record=true
-    2           kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1 --record=true
-    3           kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.161 --record=true
+    1           kubectl apply --filename=https://k8s.io/examples/controllers/nginx-deployment.yaml
+    2           kubectl set image deployment/nginx-deployment nginx=nginx:1.16.1
+    3           kubectl set image deployment/nginx-deployment nginx=nginx:1.161
     ```
 
     `CHANGE-CAUSE` 는 수정 생성시 디플로이먼트 주석인 `kubernetes.io/change-cause` 에서 복사한다. 다음에 대해 `CHANGE-CAUSE` 메시지를 지정할 수 있다.
 
-    * 디플로이먼트에 `kubectl annotate deployment.v1.apps/nginx-deployment kubernetes.io/change-cause="image updated to 1.16.1"` 로 주석을 단다.
-    * `kubectl` 명령어 이용시 `--record` 플래그를 추가해서 리소스 변경을 저장한다.
+    * 디플로이먼트에 `kubectl annotate deployment/nginx-deployment kubernetes.io/change-cause="image updated to 1.16.1"` 로 주석을 단다.
     * 수동으로 리소스 매니페스트 편집.
 
 2. 각 수정 버전의 세부 정보를 보려면 다음을 실행한다.
     ```shell
-    kubectl rollout history deployment.v1.apps/nginx-deployment --revision=2
+    kubectl rollout history deployment/nginx-deployment --revision=2
     ```
 
     이와 유사하게 출력된다.
@@ -504,7 +508,7 @@ API 버전 `apps/v1` 에서 디플로이먼트의 레이블 셀렉터는 생성
     deployments "nginx-deployment" revision 2
       Labels:       app=nginx
               pod-template-hash=1159050644
-      Annotations:  kubernetes.io/change-cause=kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1 --record=true
+      Annotations:  kubernetes.io/change-cause=kubectl set image deployment/nginx-deployment nginx=nginx:1.16.1
       Containers:
        nginx:
         Image:      nginx:1.16.1
@@ -521,7 +525,7 @@ API 버전 `apps/v1` 에서 디플로이먼트의 레이블 셀렉터는 생성
 
 1. 이제 현재 롤아웃의 실행 취소 및 이전 수정 버전으로 롤백 하기로 결정했다.
     ```shell
-    kubectl rollout undo deployment.v1.apps/nginx-deployment
+    kubectl rollout undo deployment/nginx-deployment
     ```
 
     이와 유사하게 출력된다.
@@ -531,7 +535,7 @@ API 버전 `apps/v1` 에서 디플로이먼트의 레이블 셀렉터는 생성
     Alternatively, you can rollback to a specific revision by specifying it with `--to-revision`:
 
     ```shell
-    kubectl rollout undo deployment.v1.apps/nginx-deployment --to-revision=2
+    kubectl rollout undo deployment/nginx-deployment --to-revision=2
     ```
 
     이와 유사하게 출력된다.
@@ -565,7 +569,7 @@ API 버전 `apps/v1` 에서 디플로이먼트의 레이블 셀렉터는 생성
     CreationTimestamp:      Sun, 02 Sep 2018 18:17:55 -0500
     Labels:                 app=nginx
     Annotations:            deployment.kubernetes.io/revision=4
-                            kubernetes.io/change-cause=kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1 --record=true
+                            kubernetes.io/change-cause=kubectl set image deployment/nginx-deployment nginx=nginx:1.16.1
     Selector:               app=nginx
     Replicas:               3 desired | 3 updated | 3 total | 3 available | 0 unavailable
     StrategyType:           RollingUpdate
@@ -608,7 +612,7 @@ API 버전 `apps/v1` 에서 디플로이먼트의 레이블 셀렉터는 생성
 다음 명령어를 사용해서 디플로이먼트의 스케일을 할 수 있다.
 
 ```shell
-kubectl scale deployment.v1.apps/nginx-deployment --replicas=10
+kubectl scale deployment/nginx-deployment --replicas=10
 ```
 이와 유사하게 출력된다.
 ```
@@ -620,7 +624,7 @@ deployment.apps/nginx-deployment scaled
 실행할 최소 파드 및 최대 파드의 수를 선택할 수 있다.
 
 ```shell
-kubectl autoscale deployment.v1.apps/nginx-deployment --min=10 --max=15 --cpu-percent=80
+kubectl autoscale deployment/nginx-deployment --min=10 --max=15 --cpu-percent=80
 ```
 이와 유사하게 출력된다.
 ```
@@ -649,7 +653,7 @@ deployment.apps/nginx-deployment scaled
 
 * 클러스터 내부에서 확인할 수 없는 새 이미지로 업데이트 된다.
     ```shell
-    kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:sometag
+    kubectl set image deployment/nginx-deployment nginx=nginx:sometag
     ```
 
     이와 유사하게 출력된다.
@@ -701,12 +705,16 @@ nginx-deployment-1989198191   7         7         0         7m
 nginx-deployment-618515232    11        11        11        7m
 ```
 
-## 디플로이먼트의 일시 중지와 재개
+## 디플로이먼트 롤아웃 일시 중지와 재개 {#pausing-and-resuming-a-deployment}
 
-하나 이상의 업데이트를 트리거하기 전에 디플로이먼트를 일시 중지한 다음 다시 시작할 수 있다.
-이렇게 하면 불필요한 롤아웃을 트리거하지 않고 일시 중지와 재개 사이에 여러 수정 사항을 적용할 수 있다.
+디플로이먼트를 업데이트할 때 (또는 계획할 때), 
+하나 이상의 업데이트를 트리거하기 전에 해당 디플로이먼트에 대한 롤아웃을 일시 중지할 수 있다. 
+변경 사항을 적용할 준비가 되면, 디플로이먼트 롤아웃을 재개한다. 
+이러한 방법으로, 불필요한 롤아웃을 트리거하지 않고 
+롤아웃 일시 중지와 재개 사이에 여러 수정 사항을 적용할 수 있다.
 
 * 예를 들어, 생성된 디플로이먼트의 경우
+
   디플로이먼트 상세 정보를 가져온다.
   ```shell
   kubectl get deploy
@@ -728,7 +736,7 @@ nginx-deployment-618515232    11        11        11        7m
 
 * 다음 명령을 사용해서 일시 중지한다.
     ```shell
-    kubectl rollout pause deployment.v1.apps/nginx-deployment
+    kubectl rollout pause deployment/nginx-deployment
     ```
 
     이와 유사하게 출력된다.
@@ -738,7 +746,7 @@ nginx-deployment-618515232    11        11        11        7m
 
 * 그런 다음 디플로이먼트의 이미지를 업데이트 한다.
     ```shell
-    kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1
+    kubectl set image deployment/nginx-deployment nginx=nginx:1.16.1
     ```
 
     이와 유사하게 출력된다.
@@ -748,7 +756,7 @@ nginx-deployment-618515232    11        11        11        7m
 
 * 새로운 롤아웃이 시작되지 않는다.
     ```shell
-    kubectl rollout history deployment.v1.apps/nginx-deployment
+    kubectl rollout history deployment/nginx-deployment
     ```
 
     이와 유사하게 출력된다.
@@ -757,7 +765,7 @@ nginx-deployment-618515232    11        11        11        7m
     REVISION  CHANGE-CAUSE
     1   <none>
     ```
-* 롤아웃 상태를 가져와서 디플로이먼트 업데이트가 성공적인지 확인한다.
+* 기존 레플리카셋이 변경되지 않았는지 확인하기 위해 롤아웃 상태를 출력한다.
     ```shell
     kubectl get rs
     ```
@@ -770,7 +778,7 @@ nginx-deployment-618515232    11        11        11        7m
 
 * 예를 들어 사용할 리소스를 업데이트하는 것처럼 원하는 만큼 업데이트할 수 있다.
     ```shell
-    kubectl set resources deployment.v1.apps/nginx-deployment -c=nginx --limits=cpu=200m,memory=512Mi
+    kubectl set resources deployment/nginx-deployment -c=nginx --limits=cpu=200m,memory=512Mi
     ```
 
     이와 유사하게 출력된다.
@@ -778,12 +786,12 @@ nginx-deployment-618515232    11        11        11        7m
     deployment.apps/nginx-deployment resource requirements updated
     ```
 
-    디플로이먼트를 일시 중지하기 전의 초기 상태는 해당 기능을 지속한다.
-    그러나 디플로이먼트가 일시 중지한 상태에서는 디플로이먼트의 새 업데이트에 영향을 주지 않는다.
+    디플로이먼트 롤아웃을 일시 중지하기 전 디플로이먼트의 초기 상태는 해당 기능을 지속한다.
+    그러나 디플로이먼트 롤아웃이 일시 중지한 상태에서는 디플로이먼트의 새 업데이트에 영향을 주지 않는다.
 
-* 결국, 디플로이먼트를 재개하고 새로운 레플리카셋이 새로운 업데이트를 제공하는 것을 관찰한다.
+* 결국, 디플로이먼트 롤아웃을 재개하고 새로운 레플리카셋이 새로운 업데이트를 제공하는 것을 관찰한다.
     ```shell
-    kubectl rollout resume deployment.v1.apps/nginx-deployment
+    kubectl rollout resume deployment/nginx-deployment
     ```
 
     이와 유사하게 출력된다.
@@ -842,6 +850,13 @@ nginx-deployment-618515232    11        11        11        7m
 * 디플로이먼트로 기존 레플리카셋을 스케일 다운.
 * 새 파드가 준비되거나 이용할 수 있음(최소 [준비 시간(초)](#최소-대기-시간-초) 동안 준비됨).
 
+롤아웃이 "진행 중" 상태가 되면, 
+디플로이먼트 컨트롤러는 디플로이먼트의 `.status.conditions`에 다음 속성을 포함하는 컨디션을 추가한다.
+
+* `type: Progressing`
+* `status: "True"`
+* `reason: NewReplicaSetCreated` | `reason: FoundNewReplicaSet` | `reason: ReplicaSetUpdated`
+
 `kubectl rollout status` 를 사용해서 디플로이먼트의 진행사황을 모니터할 수 있다.
 
 ### 디플로이먼트 완료
@@ -853,6 +868,17 @@ nginx-deployment-618515232    11        11        11        7m
 * 디플로이먼트와 관련한 모든 레플리카를 사용할 수 있을 때.
 * 디플로이먼트에 대해 이전 복제본이 실행되고 있지 않을 때.
 
+롤아웃이 "완료" 상태가 되면, 
+디플로이먼트 컨트롤러는 디플로이먼트의 `.status.conditions`에 다음 속성을 포함하는 컨디션을 추가한다.
+
+* `type: Progressing`
+* `status: "True"`
+* `reason: NewReplicaSetAvailable`
+
+이 `Progressing` 컨디션은 새로운 롤아웃이 시작되기 전까지는 `"True"` 상태값을 유지할 것이다. 
+레플리카의 가용성이 변경되는 경우에도(이 경우 `Available` 컨디션에 영향을 미침) 
+컨디션은 유지된다.
+
 `kubectl rollout status` 를 사용해서 디플로이먼트가 완료되었는지 확인할 수 있다.
 만약 롤아웃이 성공적으로 완료되면 `kubectl rollout status` 는 종료 코드로 0이 반환된다.
 
@@ -890,10 +916,10 @@ echo $?
 대기하는 시간(초)를 나타낸다.
 
 다음 `kubectl` 명령어로 `progressDeadlineSeconds` 를 설정해서 컨트롤러가
-10분 후 디플로이먼트에 대한 진행 상태의 부족에 대한 리포트를 수행하게 한다.
+10분 후 디플로이먼트 롤아웃에 대한 진행 상태의 부족에 대한 리포트를 수행하게 한다.
 
 ```shell
-kubectl patch deployment.v1.apps/nginx-deployment -p '{"spec":{"progressDeadlineSeconds":600}}'
+kubectl patch deployment/nginx-deployment -p '{"spec":{"progressDeadlineSeconds":600}}'
 ```
 이와 유사하게 출력된다.
 ```
@@ -902,21 +928,24 @@ deployment.apps/nginx-deployment patched
 만약 데드라인을 넘어서면 디플로이먼트 컨트롤러는 디플로이먼트의 `.status.conditions` 속성에 다음의
 디플로이먼트 컨디션(DeploymentCondition)을 추가한다.
 
-* Type=Progressing
-* Status=False
-* Reason=ProgressDeadlineExceeded
+* `type: Progressing`
+* `status: "False"`
+* `reason: ProgressDeadlineExceeded`
+
+이 컨디션은 일찍 실패할 수도 있으며 이러한 경우 `ReplicaSetCreateError`를 이유로 상태값을 `"False"`로 설정한다.
+또한, 디플로이먼트 롤아웃이 완료되면 데드라인은 더 이상 고려되지 않는다.
 
 컨디션 상태에 대한 자세한 내용은 [쿠버네티스 API 규칙](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties)을 참고한다.
 
 {{< note >}}
-쿠버네티스는 `Reason=ProgressDeadlineExceeded` 과 같은 상태 조건을
+쿠버네티스는 `reason: ProgressDeadlineExceeded` 과 같은 상태 조건을
 보고하는 것 이외에 정지된 디플로이먼트에 대해 조치를 취하지 않는다. 더 높은 수준의 오케스트레이터는 이를 활용할 수 있으며,
 예를 들어 디플로이먼트를 이전 버전으로 롤백할 수 있다.
 {{< /note >}}
 
 {{< note >}}
-만약 디플로이먼트를 일시 중지하면 쿠버네티스는 지정된 데드라인과 비교하여 진행 상황을 확인하지 않는다.
-롤아웃 중에 디플로이먼트를 안전하게 일시 중지하고, 데드라인을 넘기도록 하는 조건을 트리거하지 않고
+만약 디플로이먼트 롤아웃을 일시 중지하면 쿠버네티스는 지정된 데드라인과 비교하여 진행 상황을 확인하지 않는다.
+롤아웃 중에 디플로이먼트 롤아웃을 안전하게 일시 중지하고, 데드라인을 넘기도록 하는 조건을 트리거하지 않고
 재개할 수 있다.
 {{< /note >}}
 
@@ -984,7 +1013,7 @@ Conditions:
 디플로이먼트를 스케일 다운하거나, 실행 중인 다른 컨트롤러를 스케일 다운하거나,
 네임스페이스에서 할당량을 늘려서 할당량이 부족한 문제를 해결할 수 있다.
 만약 할당량 컨디션과 디플로이먼트 롤아웃이 완료되어 디플로이먼트 컨트롤러를 만족한다면
-성공한 컨디션의 디플로이먼트 상태가 업데이트를 볼 수 있다(`Status=True` 와 `Reason=NewReplicaSetAvailable`).
+성공한 컨디션의 디플로이먼트 상태가 업데이트를 볼 수 있다(`status: "True"` 와 `reason: NewReplicaSetAvailable`).
 
 ```
 Conditions:
@@ -994,17 +1023,17 @@ Conditions:
   Progressing   True    NewReplicaSetAvailable
 ```
 
-`Type=Available` 과 `Status=True` 는 디플로이먼트가 최소한의 가용성을 가지고 있는 것을 의미한다.
-최소한의 가용성은 디플로이먼트 계획에 명시된 파라미터에 의해 결정된다. `Type=Progressing` 과 `Status=True` 는 디플로이먼트가
+`type: Available` 과 `status: "True"` 는 디플로이먼트가 최소한의 가용성을 가지고 있는 것을 의미한다.
+최소한의 가용성은 디플로이먼트 계획에 명시된 파라미터에 의해 결정된다. `type: Progressing` 과 `status: "True"` 는 디플로이먼트가
 롤아웃 도중에 진행 중 이거나, 성공적으로 완료되었으며, 진행 중 최소한으로 필요한 새로운 레플리카를 이용 가능하다는 것이다.
 (자세한 내용은 특정 조건의 이유를 참조한다.
-이 경우 `Reason=NewReplicaSetAvailable` 는 배포가 완료되었음을 의미한다.)
+이 경우 `reason: NewReplicaSetAvailable` 는 배포가 완료되었음을 의미한다.)
 
 `kubectl rollout status` 를 사용해서 디플로이먼트의 진행이 실패되었는지 확인할 수 있다.
 `kubectl rollout status` 는 디플로이먼트의 진행 데드라인을 초과하면 0이 아닌 종료 코드를 반환한다.
 
 ```shell
-kubectl rollout status deployment.v1.apps/nginx-deployment
+kubectl rollout status deployment/nginx-deployment
 ```
 이와 유사하게 출력된다.
 ```
@@ -1028,7 +1057,7 @@ echo $?
 
 디플로이먼트의 `.spec.revisionHistoryLimit` 필드를 설정해서
 디플로이먼트에서 유지해야 하는 이전 레플리카셋의 수를 명시할 수 있다. 나머지는 백그라운드에서 가비지-수집이 진행된다.
-기본적으로 10으로 되어있다.
+기본적으로 10으로 되어 있다.
 
 {{< note >}}
 명시적으로 이 필드를 0으로 설정하면 그 결과로 디플로이먼트의 기록을 전부 초기화를 하고,
@@ -1045,7 +1074,7 @@ echo $?
 
 다른 모든 쿠버네티스 설정과 마찬가지로 디플로이먼트에는 `.apiVersion`, `.kind` 그리고 `.metadata` 필드가 필요하다.
 설정 파일 작업에 대한 일반적인 내용은
-[애플리케이션 배포하기](/docs/tasks/run-application/run-stateless-application-deployment/),
+[애플리케이션 배포하기](/ko/docs/tasks/run-application/run-stateless-application-deployment/),
 컨테이너 구성하기 그리고 [kubectl을 사용해서 리소스 관리하기](/ko/docs/concepts/overview/working-with-objects/object-management/) 문서를 참조한다.
 디플로이먼트 오브젝트의 이름은 유효한
 [DNS 서브도메인 이름](/ko/docs/concepts/overview/working-with-objects/names/#dns-서브도메인-이름)이어야 한다.
@@ -1056,8 +1085,7 @@ echo $?
 
 `.spec.template` 과 `.spec.selector` 은 `.spec` 에서 유일한 필수 필드이다.
 
-`.spec.template` 는 [파드 템플릿](/ko/docs/concepts/workloads/pods/#파드-템플릿)이다.
-이것은 {{< glossary_tooltip text="파드" term_id="pod" >}}와 정확하게 동일한 스키마를 가지고 있고, 중첩된 것을 제외하면 `apiVersion` 과 `kind` 를 가지고 있지 않는다.
+`.spec.template` 는 [파드 템플릿](/ko/docs/concepts/workloads/pods/#파드-템플릿)이다. 이것은 {{< glossary_tooltip text="파드" term_id="pod" >}}와 정확하게 동일한 스키마를 가지고 있고, 중첩된 것을 제외하면 `apiVersion` 과 `kind` 를 가지고 있지 않는다.
 
 파드에 필요한 필드 외에 디플로이먼트 파드 템플릿은 적절한 레이블과 적절한 재시작 정책을 명시해야 한다.
 레이블의 경우 다른 컨트롤러와 겹치지 않도록 해야 한다. 자세한 것은 [셀렉터](#셀렉터)를 참조한다.
@@ -1069,6 +1097,18 @@ echo $?
 
 `.spec.replicas` 은 필요한 파드의 수를 지정하는 선택적 필드이다. 이것의 기본값은 1이다.
 
+예를 들어 `kubectl scale deployment deployment --replicas=X` 명령으로 
+디플로이먼트의 크기를 수동으로 조정한 뒤, 
+매니페스트를 이용하여 디플로이먼트를 업데이트하면(예: `kubectl apply -f deployment.yaml` 실행), 
+수동으로 설정했던 디플로이먼트의 크기가 오버라이드된다.
+
+[HorizontalPodAutoscaler](/ko/docs/tasks/run-application/horizontal-pod-autoscale/)(또는 수평 스케일링을 위한 유사 API)가 
+디플로이먼트 크기를 관리하고 있다면, `.spec.replicas` 를 설정해서는 안 된다.
+
+대신, 쿠버네티스 
+{{< glossary_tooltip text="컨트롤 플레인" term_id="control-plane" >}}이 
+`.spec.replicas` 필드를 자동으로 관리한다.
+
 ### 셀렉터
 
 `.spec.selector` 는 디플로이먼트의 대상이 되는 파드에 대해 [레이블 셀렉터](/ko/docs/concepts/overview/working-with-objects/labels/)를
@@ -1120,7 +1160,7 @@ API 버전 `apps/v1` 에서는 `.spec.selector` 와 `.metadata.labels` 이 설
 
 `.spec.strategy.rollingUpdate.maxUnavailable` 은 업데이트 프로세스 중에 사용할 수 없는 최대 파드의 수를 지정하는 선택적 필드이다.
 이 값은 절대 숫자(예: 5) 또는 의도한 파드 비율(예: 10%)이 될 수 있다.
-절대 값은 반올림해서 백분율로 계산한다.
+절대 값은 내림해서 백분율로 계산한다.
 만약 `.spec.strategy.rollingUpdate.maxSurge` 가 0이면 값이 0이 될 수 없다. 기본 값은 25% 이다.
 
 예를 들어 이 값을 30%로 설정하면 롤링업데이트 시작시 즉각 이전 레플리카셋의 크기를
@@ -1133,7 +1173,7 @@ API 버전 `apps/v1` 에서는 `.spec.selector` 와 `.metadata.labels` 이 설
 `.spec.strategy.rollingUpdate.maxSurge` 는 의도한 파드의 수에 대해 생성할 수 있는 최대 파드의 수를 지정하는 선택적 필드이다.
 이 값은 절대 숫자(예: 5) 또는 의도한 파드 비율(예: 10%)이 될 수 있다.
 `MaxUnavailable` 값이 0이면 이 값은 0이 될 수 없다.
-절대 값은 반올림해서 백분율로 계산한다. 기본 값은 25% 이다.
+절대 값은 올림해서 백분율로 계산한다. 기본 값은 25% 이다.
 
 예를 들어 이 값을 30%로 설정하면 롤링업데이트 시작시 새 레플리카셋의 크기를 즉시 조정해서
 기존 및 새 파드의 전체 갯수를 의도한 파드의 130%를 넘지 않도록 한다.
@@ -1142,8 +1182,8 @@ API 버전 `apps/v1` 에서는 `.spec.selector` 와 `.metadata.labels` 이 설
 
 ### 진행 기한 시간(초)
 
-`.spec.progressDeadlineSeconds` 는 디플로어먼트가 표면적으로 `Type=Progressing`, `Status=False`의
-상태 그리고 리소스가 `Reason=ProgressDeadlineExceeded` 상태로 [진행 실패](#디플로이먼트-실패)를 보고하기 전에
+`.spec.progressDeadlineSeconds` 는 디플로어먼트가 표면적으로 `type: Progressing`, `status: "False"`의
+상태 그리고 리소스가 `reason: ProgressDeadlineExceeded` 상태로 [진행 실패](#디플로이먼트-실패)를 보고하기 전에
 디플로이먼트가 진행되는 것을 대기시키는 시간(초)를 명시하는 선택적 필드이다.
 디플로이먼트 컨트롤러는 디플로이먼트를 계속 재시도 한다. 기본값은 600(초)이다.
 미래에 자동화된 롤백이 구현된다면 디플로이먼트 컨트롤러는 상태를 관찰하고,
@@ -1174,3 +1214,14 @@ API 버전 `apps/v1` 에서는 `.spec.selector` 와 `.metadata.labels` 이 설
 일시 중지 된 디플로이먼트와 일시 중지 되지 않은 디플로이먼트 사이의 유일한 차이점은
 일시 중지된 디플로이먼트는 PodTemplateSpec에 대한 변경 사항이 일시중지 된 경우 새 롤아웃을 트리거 하지 않는다.
 디플로이먼트는 생성시 기본적으로 일시 중지되지 않는다.
+
+## {{% heading "whatsnext" %}}
+
+* [파드](/ko/docs/concepts/workloads/pods)에 대해 배운다.
+* [디플로이먼트를 사용해서 상태를 유지하지 않는 애플리케이션을 구동한다](/ko/docs/tasks/run-application/run-stateless-application-deployment/).
+* `Deployment`는 쿠버네티스 REST API에서 상위-수준 리소스이다.
+  디플로이먼트 API를 이해하기 위해서
+  {{< api-reference page="workload-resources/deployment-v1" >}}
+  오브젝트 정의를 읽는다.
+* [PodDisruptionBudget](/ko/docs/concepts/workloads/pods/disruptions/)과
+  이를 사용해서 어떻게 중단 중에 애플리케이션 가용성을 관리할 수 있는지에 대해 읽는다.
diff --git a/content/ko/docs/concepts/workloads/controllers/garbage-collection.md b/content/ko/docs/concepts/workloads/controllers/garbage-collection.md
deleted file mode 100644
index a3ed4ea68d..0000000000
--- a/content/ko/docs/concepts/workloads/controllers/garbage-collection.md
+++ /dev/null
@@ -1,184 +0,0 @@
----
-title: 가비지(Garbage) 수집
-content_type: concept
-weight: 60
----
-
-<!-- overview -->
-
-쿠버네티스의 가비지 수집기는 한때 소유자가 있었지만, 더 이상
-소유자가 없는 오브젝트들을 삭제하는 역할을 한다.
-
-
-<!-- body -->
-
-## 소유자(owner)와 종속(dependent)
-
-일부 쿠버네티스 오브젝트는 다른 오브젝트의 소유자이다. 예를 들어 레플리카셋은
-파드 집합의 소유자이다. 소유자 오브젝트에게 소유된 오브젝트를 *종속*
-이라고 한다. 모든 종속 오브젝트는 소유하는 오브젝트를 가르키는 `metadata.ownerReferences`
-필드를 가지고 있다.
-
-때때로, 쿠버네티스는 `ownerReference` 값을 자동적으로 설정한다.
-예를 들어 레플리카셋을 만들 때 쿠버네티스는 레플리카셋에 있는 각 파드의
-`ownerReference` 필드를 자동으로 설정한다. 1.8 에서는 쿠버네티스가
-레플리케이션컨트롤러, 레플리카셋, 스테이트풀셋, 데몬셋, 디플로이먼트, 잡
-그리고 크론잡에 의해서 생성되거나 차용된 오브젝트의 `ownerReference` 값을
-자동으로 설정한다.
-
-또한 `ownerReference` 필드를 수동으로 설정해서 소유자와 종속 항목 간의
-관계를 지정할 수도 있다.
-
-여기에 파드 3개가 있는 레플리카셋의 구성 파일이 있다.
-
-{{< codenew file="controllers/replicaset.yaml" >}}
-
-레플리카셋을 생성하고 파드의 메타데이터를 본다면,
-OwnerReferences 필드를 찾을 수 있다.
-
-```shell
-kubectl apply -f https://k8s.io/examples/controllers/replicaset.yaml
-kubectl get pods --output=yaml
-```
-
-출력 결과는 파드의 소유자가 `my-repset` 이라는 이름의 레플리카셋인 것을 보여준다.
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  ...
-  ownerReferences:
-  - apiVersion: apps/v1
-    controller: true
-    blockOwnerDeletion: true
-    kind: ReplicaSet
-    name: my-repset
-    uid: d9607e19-f88f-11e6-a518-42010a800195
-  ...
-```
-
-{{< note >}}
-교차 네임스페이스(cross-namespace)의 소유자 참조는 디자인상 허용되지 않는다.
-
-네임스페이스 종속 항목은 클러스터 범위 또는 네임스페이스 소유자를 지정할 수 있다.
-네임스페이스 소유자는 **반드시** 종속 항목과 동일한 네임스페이스에 있어야 한다.
-그렇지 않은 경우, 소유자 참조는 없는 것으로 처리되며, 소유자가 없는 것으로 확인되면
-종속 항목이 삭제될 수 있다.
-
-클러스터 범위의 종속 항목은 클러스터 범위의 소유자만 지정할 수 있다.
-v1.20 이상에서 클러스터 범위의 종속 항목이 네임스페이스 종류를 소유자로 지정하면,
-확인할 수 없는 소유자 참조가 있는 것으로 처리되고 가비지 수집이 될 수 없다.
-
-v1.20 이상에서 가비지 수집기가 잘못된 교차 네임스페이스 `ownerReference`
-또는 네임스페이스 종류를 참조하는 `ownerReference` 가 있는 클러스터 범위의 종속 항목을 감지하면,
-`OwnerRefInvalidNamespace` 의 원인이 있는 경고 이벤트와 유효하지 않은 종속 항목의 `involvedObject` 가 보고된다.
-`kubectl get events -A --field-selector=reason=OwnerRefInvalidNamespace` 를 실행하여
-이러한 종류의 이벤트를 확인할 수 있다.
-{{< /note >}}
-
-## 가비지 수집기의 종속 항목 삭제 방식 제어
-
-오브젝트를 삭제할 때, 오브젝트의 종속 항목을 자동으로 삭제하는지의
-여부를 지정할 수 있다. 종속 항목을 자동으로 삭제하는 것을 *캐스케이딩(cascading)
-삭제* 라고 한다. *캐스케이딩 삭제* 에는 *백그라운드* 와 *포어그라운드* 2가지 모드가 있다.
-
-만약 종속 항목을 자동으로 삭제하지 않고 오브젝트를 삭제한다면,
-종속 항목은 *분리됨(orphaned)* 이라고 한다.
-
-### 포어그라운드 캐스케이딩 삭제
-
-*포어그라운드 캐스케이딩 삭제* 에서는 루트 오브젝트가 먼저
-"삭제 중(deletion in progress)" 상태가 된다. "삭제 중" 상태에서는
-다음 사항이 적용된다.
-
- * 오브젝트는 REST API를 통해 여전히 볼 수 있음
- * 오브젝트에 `deletionTimestamp` 가 설정됨
- * 오브젝트의 "foregroundDeletion"에 `metadata.finalizers` 값이 포함됨.
-
-"삭제 중" 상태가 설정되면, 가비지
-수집기는 오브젝트의 종속 항목을 삭제한다. 가비지 수집기는 모든
-"차단" 종속 항목(`ownerReference.blockOwnerDeletion=true` 가 있는 오브젝트)의 삭제가 완료되면,
-소유자 오브젝트를 삭제한다.
-
-"foregroundDeletion" 에서는 ownerReference.blockOwnerDeletion=true 로
-설정된 종속 항목만 소유자 오브젝트의 삭제를 차단한다는 것을 참고한다.
-쿠버네티스 버전 1.7에서는 소유자 오브젝트에 대한 삭제 권한에 따라 `blockOwnerDeletion` 를 true로 설정하기 위해 사용자 접근을 제어하는
-[어드미션 컨트롤러](/docs/reference/access-authn-authz/admission-controllers/#ownerreferencespermissionenforcement)가
-추가되었기에 권한이 없는 종속 항목은 소유자 오브젝트의 삭제를 지연시킬 수 없다.
-
-만약 오브젝트의 `ownerReferences` 필드가 컨트롤러(디플로이먼트 또는 레플리카셋과 같은)에
-의해 설정된 경우 blockOwnerDeletion이 자동으로 설정되므로 이 필드를 수동으로 수정할 필요가 없다.
-
-### 백그라운드 캐스케이딩 삭제
-
-*백그라운드 캐스케이딩 삭제* 에서 쿠버네티스는 소유자 오브젝트를
-즉시 삭제하고, 가비지 수집기는 백그라운드에서 종속 항목을
-삭제한다.
-
-### 캐스케이딩 삭제 정책 설정하기
-
-캐스케이딩 삭제 정책을 제어하려면, 오브젝트를 삭제할 때 `deleteOptions`
-인수를 `propagationPolicy` 필드에 설정한다. 여기에 가능한 값으로는 "Orphan",
-"Foreground" 또는 "Background" 이다.
-
-여기에 백그라운드에서 종속 항목을 삭제하는 예시가 있다.
-
-```shell
-kubectl proxy --port=8080
-curl -X DELETE localhost:8080/apis/apps/v1/namespaces/default/replicasets/my-repset \
-  -d '{"kind":"DeleteOptions","apiVersion":"v1","propagationPolicy":"Background"}' \
-  -H "Content-Type: application/json"
-```
-
-여기에 포어그라운드에서 종속 항목을 삭제하는 예시가 있다.
-
-```shell
-kubectl proxy --port=8080
-curl -X DELETE localhost:8080/apis/apps/v1/namespaces/default/replicasets/my-repset \
-  -d '{"kind":"DeleteOptions","apiVersion":"v1","propagationPolicy":"Foreground"}' \
-  -H "Content-Type: application/json"
-```
-
-여기에 종속 항목을 분리됨으로 하는 예시가 있다.
-
-```shell
-kubectl proxy --port=8080
-curl -X DELETE localhost:8080/apis/apps/v1/namespaces/default/replicasets/my-repset \
-  -d '{"kind":"DeleteOptions","apiVersion":"v1","propagationPolicy":"Orphan"}' \
-  -H "Content-Type: application/json"
-```
-
-kubectl도 캐스케이딩 삭제를 지원한다.
-
-kubectl을 사용해서 포어그라운드의 종속 항목을 삭제하려면 `--cascade=foreground` 를 설정한다. 종속 항목을
-분리하기 위해서는 `--cascade=orphan` 를 설정한다.
-
-기본 동작은 백그라운드의 종속 항목을 삭제하는 것이며,
-이는 `--cascade` 를 생략하거나 명시적으로 `background` 를 설정한 경우의 동작에 해당한다.
-
-여기에 레플리카셋의 종속 항목을 분리로 만드는 예시가 있다.
-
-```shell
-kubectl delete replicaset my-repset --cascade=false
-```
-
-### 디플로이먼트에 대한 추가 참고
-
-1.7 이전에서는 디플로이먼트와 캐스케이딩 삭제를 사용하면 반드시 `propagationPolicy: Foreground`
-를 사용해서 생성된 레플리카셋뿐만 아니라 해당 파드도 삭제해야 한다. 만약 이 _propagationPolicy_
-유형을 사용하지 않는다면, 레플리카셋만 삭제되고 파드는 분리된 상태로 남을 것이다.
-더 많은 정보는 [kubeadm/#149](https://github.com/kubernetes/kubeadm/issues/149#issuecomment-284766613)를 본다.
-
-## 알려진 이슈들
-
-[#26120](https://github.com/kubernetes/kubernetes/issues/26120)을 추적한다.
-
-
-
-## {{% heading "whatsnext" %}}
-
-
-[디자인 문서 1](https://git.k8s.io/community/contributors/design-proposals/api-machinery/garbage-collection.md)
-
-[디자인 문서 2](https://git.k8s.io/community/contributors/design-proposals/api-machinery/synchronous-garbage-collection.md)
diff --git a/content/ko/docs/concepts/workloads/controllers/job.md b/content/ko/docs/concepts/workloads/controllers/job.md
index c24beb0fca..1c05462b10 100644
--- a/content/ko/docs/concepts/workloads/controllers/job.md
+++ b/content/ko/docs/concepts/workloads/controllers/job.md
@@ -25,6 +25,9 @@ weight: 50
 
 잡을 사용하면 여러 파드를 병렬로 실행할 수도 있다.
 
+잡을 스케줄에 따라 구동하고 싶은 경우(단일 작업이든, 여러 작업의 병렬 수행이든), 
+[크론잡(CronJob)](/ko/docs/concepts/workloads/controllers/cron-jobs/)을 참고한다.
+
 <!-- body -->
 
 ## 예시 잡 실행하기
@@ -39,7 +42,9 @@ weight: 50
 ```shell
 kubectl apply -f https://kubernetes.io/examples/controllers/job.yaml
 ```
+
 출력 결과는 다음과 같다.
+
 ```
 job.batch/pi created
 ```
@@ -49,7 +54,9 @@ job.batch/pi created
 ```shell
 kubectl describe jobs/pi
 ```
+
 출력 결과는 다음과 같다.
+
 ```
 Name:           pi
 Namespace:      default
@@ -94,7 +101,9 @@ Events:
 pods=$(kubectl get pods --selector=job-name=pi --output=jsonpath='{.items[*].metadata.name}')
 echo $pods
 ```
+
 출력 결과는 다음과 같다.
+
 ```
 pi-5rwd7
 ```
@@ -107,7 +116,9 @@ pi-5rwd7
 ```shell
 kubectl logs $pods
 ```
+
 출력 결과는 다음과 같다.
+
 ```shell
 3.1415926535897932384626433832795028841971693993751058209749445923078164062862089986280348253421170679821480865132823066470938446095505822317253594081284811174502841027019385211055596446229489549303819644288109756659334461284756482337867831652712019091456485669234603486104543266482133936072602491412737245870066063155881748815209209628292540917153643678925903600113305305488204665213841469519415116094330572703657595919530921861173819326117931051185480744623799627495673518857527248912279381830119491298336733624406566430860213949463952247371907021798609437027705392171762931767523846748184676694051320005681271452635608277857713427577896091736371787214684409012249534301465495853710507922796892589235420199561121290219608640344181598136297747713099605187072113499999983729780499510597317328160963185950244594553469083026425223082533446850352619311881710100031378387528865875332083814206171776691473035982534904287554687311595628638823537875937519577818577805321712268066130019278766111959092164201989380952572010654858632788659361533818279682303019520353018529689957736225994138912497217752834791315155748572424541506959508295331168617278558890750983817546374649393192550604009277016711390098488240128583616035637076601047101819429555961989467678374494482553797747268471040475346462080466842590694912933136770289891521047521620569660240580381501935112533824300355876402474964732639141992726042699227967823547816360093417216412199245863150302861829745557067498385054945885869269956909272107975093029553211653449872027559602364806654991198818347977535663698074265425278625518184175746728909777727938000816470600161452491921732172147723501414419735685481613611573525521334757418494684385233239073941433345477624168625189835694855620992192221842725502542568876717904946016534668049886272327917860857843838279679766814541009538837863609506800642251252051173929848960841284886269456042419652850222106611863067442786220391949450471237137869609563643719172874677646575739624138908658326459958133904780275901
 ```
@@ -142,19 +153,19 @@ kubectl logs $pods
 잡으로 실행하기에 적합한 작업 유형은 크게 세 가지가 있다.
 
 1. 비-병렬(Non-parallel) 잡:
-  - 일반적으로, 파드가 실패하지 않은 한, 하나의 파드만 시작된다.
-  - 파드가 성공적으로 종료하자마자 즉시 잡이 완료된다.
+   - 일반적으로, 파드가 실패하지 않은 한, 하나의 파드만 시작된다.
+   - 파드가 성공적으로 종료하자마자 즉시 잡이 완료된다.
 1. *고정적(fixed)인 완료 횟수* 를 가진 병렬 잡:
-  - `.spec.completions` 에 0이 아닌 양수 값을 지정한다.
-  - 잡은 전체 작업을 나타내며, `.spec.completions` 성공한 파드가 있을 때 완료된다.
-  - `.spec.completionMode="Indexed"` 를 사용할 때, 각 파드는 0에서 `.spec.completions-1` 범위 내의 서로 다른 인덱스를 가져온다.
+   - `.spec.completions` 에 0이 아닌 양수 값을 지정한다.
+   - 잡은 전체 작업을 나타내며, `.spec.completions` 성공한 파드가 있을 때 완료된다.
+   - `.spec.completionMode="Indexed"` 를 사용할 때, 각 파드는 0에서 `.spec.completions-1` 범위 내의 서로 다른 인덱스를 가져온다.
 1. *작업 큐(queue)* 가 있는 병렬 잡:
-  - `.spec.completions` 를 지정하지 않고, `.spec.parallelism` 를 기본으로 한다.
-  - 파드는 각자 또는 외부 서비스 간에 조정을 통해 각각의 작업을 결정해야 한다. 예를 들어 파드는 작업 큐에서 최대 N 개의 항목을 일괄로 가져올(fetch) 수 있다.
-  - 각 파드는 모든 피어들의 작업이 완료되었는지 여부를 독립적으로 판단할 수 있으며, 결과적으로 전체 잡이 완료되게 한다.
-  - 잡의 _모든_ 파드가 성공적으로 종료되면, 새로운 파드는 생성되지 않는다.
-  - 하나 이상의 파드가 성공적으로 종료되고, 모든 파드가 종료되면 잡은 성공적으로 완료된다.
-  - 성공적으로 종료된 파드가 하나라도 생긴 경우, 다른 파드들은 해당 작업을 지속하지 않아야 하며 어떠한 출력도 작성하면 안 된다.  파드들은 모두 종료되는 과정에 있어야 한다.
+   - `.spec.completions` 를 지정하지 않고, `.spec.parallelism` 를 기본으로 한다.
+   - 파드는 각자 또는 외부 서비스 간에 조정을 통해 각각의 작업을 결정해야 한다. 예를 들어 파드는 작업 큐에서 최대 N 개의 항목을 일괄로 가져올(fetch) 수 있다.
+   - 각 파드는 모든 피어들의 작업이 완료되었는지 여부를 독립적으로 판단할 수 있으며, 결과적으로 전체 잡이 완료되게 한다.
+   - 잡의 _모든_ 파드가 성공적으로 종료되면, 새로운 파드는 생성되지 않는다.
+   - 하나 이상의 파드가 성공적으로 종료되고, 모든 파드가 종료되면 잡은 성공적으로 완료된다.
+   - 성공적으로 종료된 파드가 하나라도 생긴 경우, 다른 파드들은 해당 작업을 지속하지 않아야 하며 어떠한 출력도 작성하면 안 된다.  파드들은 모두 종료되는 과정에 있어야 한다.
 
 _비-병렬_ 잡은 `.spec.completions` 와 `.spec.parallelism` 모두를 설정하지 않은 채로 둘 수 있다. 이때 둘 다
 설정하지 않은 경우 1이 기본으로 설정된다.
@@ -187,14 +198,7 @@ _작업 큐_ 잡은 `.spec.completions` 를 설정하지 않은 상태로 두고
 
 ### 완료 모드
 
-{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
-
-{{< note >}}
-인덱싱된 잡을 생성하려면, [API 서버](/docs/reference/command-line-tools-reference/kube-apiserver/)
-및 [컨트롤러 관리자](/docs/reference/command-line-tools-reference/kube-controller-manager/)에서
-`IndexedJob` [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를
-활성화해야 한다.
-{{< /note >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 완료 횟수가 _고정적인 완료 횟수_ 즉, null이 아닌 `.spec.completions` 가 있는 잡은
 `.spec.completionMode` 에 지정된 완료 모드를 가질 수 있다.
@@ -203,8 +207,15 @@ _작업 큐_ 잡은 `.spec.completions` 를 설정하지 않은 상태로 두고
   완료된 파드가 있는 경우 작업이 완료된 것으로 간주된다. 즉, 각 파드
   완료는 서로 상동하다(homologous). null `.spec.completions` 가 있는
   잡은 암시적으로 `NonIndexed` 이다.
-- `Indexed`: 잡의 파드는 `batch.kubernetes.io/job-completion-index`
-  어노테이션에서 사용할 수 있는 0에서 `.spec.completions-1` 까지 연결된 완료 인덱스를 가져온다.
+- `Indexed`: 잡의 파드는 연결된 완료 인덱스를 0에서 `.spec.completions-1` 까지 
+  가져온다. 이 인덱스는 다음의 세 가지 메카니즘으로 얻을 수 있다.
+  - 파드 어노테이션 `batch.kubernetes.io/job-completion-index`.
+  - 파드 호스트네임 중 일부(`$(job-name)-$(index)` 형태). 인덱스된(Indexed) 잡과 
+    {{< glossary_tooltip text="서비스" term_id="Service" >}}를 결합하여 사용하고 
+    있다면, 잡에 속한 파드는 DNS를 이용하여 서로를 디스커버 하기 위해 사전에 결정된 
+    호스트네임을 사용할 수 있다.
+  - 컨테이너화된 태스크의 경우, `JOB_COMPLETION_INDEX` 환경 변수.
+
   각 인덱스에 대해 성공적으로 완료된 파드가 하나 있으면 작업이 완료된 것으로
   간주된다. 이 모드를 사용하는 방법에 대한 자세한 내용은
   [정적 작업 할당을 사용한 병렬 처리를 위해 인덱싱된 잡](/docs/tasks/job/indexed-parallel-processing-static/)을 참고한다.
@@ -248,14 +259,15 @@ _작업 큐_ 잡은 `.spec.completions` 를 설정하지 않은 상태로 두고
 
 {{< note >}}
 만약 잡에 `restartPolicy = "OnFailure"` 가 있는 경우 잡 백오프 한계에
-도달하면 잡을 실행 중인 컨테이너가 종료된다. 이로 인해 잡 실행 파일의 디버깅이
+도달하면 잡을 실행 중인 파드가 종료된다. 이로 인해 잡 실행 파일의 디버깅이
 더 어려워질 수 있다. 디버깅하거나 로깅 시스템을 사용해서 실패한 작업의 결과를 실수로 손실되지 않도록
 하려면 `restartPolicy = "Never"` 로 설정하는 것을 권장한다.
 {{< /note >}}
 
 ## 잡의 종료와 정리
 
-잡이 완료되면 파드가 더 이상 생성되지도 않지만, 삭제되지도 않는다.  이를 유지하면
+잡이 완료되면 파드가 더 이상 생성되지도 않지만, [일반적으로는](#pod-backoff-failure-policy) 삭제되지도 않는다.  
+이를 유지하면
 완료된 파드의 로그를 계속 보며 에러, 경고 또는 다른 기타 진단 출력을 확인할 수 있다.
 잡 오브젝트는 완료된 후에도 상태를 볼 수 있도록 남아 있다. 상태를 확인한 후 이전 잡을 삭제하는 것은 사용자의 몫이다.
 `kubectl` 로 잡을 삭제할 수 있다 (예: `kubectl delete jobs/pi` 또는 `kubectl delete -f ./job.yaml`). `kubectl` 을 사용해서 잡을 삭제하면 생성된 모든 파드도 함께 삭제된다.
@@ -294,7 +306,7 @@ spec:
 `restartPolicy` 는 잡 자체에 적용되는 것이 아니라 파드에 적용된다는 점을 유념한다. 잡의 상태가 `type: Failed` 이 되면, 잡의 자동 재시작은 없다.
 즉, `.spec.activeDeadlineSeconds` 와 `.spec.backoffLimit` 로 활성화된 잡의 종료 메커니즘은 영구적인 잡의 실패를 유발하며 이를 해결하기 위해 수동 개입이 필요하다.
 
-## 완료된 잡을 자동으로 정리
+## 완료된 잡을 자동으로 정리 {#clean-up-finished-jobs-automatically}
 
 완료된 잡은 일반적으로 시스템에서 더 이상 필요로 하지 않는다. 시스템 내에
 이를 유지한다면 API 서버에 부담이 된다.
@@ -304,7 +316,7 @@ spec:
 
 ### 완료된 잡을 위한 TTL 메커니즘
 
-{{< feature-state for_k8s_version="v1.21" state="beta" >}}
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
 
 완료된 잡 (`Complete` 또는 `Failed`)을 자동으로 정리하는 또 다른 방법은
 잡의 `.spec.ttlSecondsAfterFinished` 필드를 지정해서 완료된 리소스에 대해
@@ -342,6 +354,25 @@ spec:
 삭제되도록 할 수 있다. 만약 필드를 설정하지 않으면, 이 잡이 완료된
 후에 TTL 컨트롤러에 의해 정리되지 않는다.
 
+{{< note >}}
+`ttlSecondsAfterFinished` 필드를 설정하는 것을 권장하는데, 
+이는 관리되지 않는 잡(직접 생성한, 
+크론잡 등 다른 워크로드 API를 통해 간접적으로 생성하지 않은 잡)의 
+기본 삭제 정책이 `orphanDependents`(관리되지 않는 잡이 완전히 삭제되어도 
+해당 잡에 의해 생성된 파드를 남겨둠)이기 때문이다.
+삭제된 잡의 파드가 실패하거나 완료된 뒤 
+{{< glossary_tooltip text="컨트롤 플레인" term_id="control-plane" >}}이 언젠가 
+[가비지 콜렉션](/ko/docs/concepts/workloads/pods/pod-lifecycle/#pod-garbage-collection)을 한다고 해도, 
+이렇게 남아 있는 파드는 클러스터의 성능을 저하시키거나 
+최악의 경우에는 이 성능 저하로 인해 클러스터가 중단될 수도 있다.
+
+[리밋 레인지(Limit Range)](/ko/docs/concepts/policy/limit-range/)와 
+[리소스 쿼터](/ko/docs/concepts/policy/resource-quotas/)를 사용하여 
+특정 네임스페이스가 사용할 수 있는 자원량을 제한할 수 
+있다.
+{{< /note >}}
+
+
 ## 잡 패턴
 
 잡 오브젝트를 사용해서 신뢰할 수 있는 파드의 병렬 실행을 지원할 수 있다.  잡 오브젝트는 과학
@@ -367,7 +398,7 @@ spec:
   다른 접근 방식들은 기존에 컨테이너화된 애플리케이션에 보다 쉽게 적용할 수 있다.
 
 
-여기에 트레이드오프가 요약되어있고, 2열에서 4열까지가 위의 트레이드오프에 해당한다.
+여기에 트레이드오프가 요약되어 있고, 2열에서 4열까지가 위의 트레이드오프에 해당한다.
 패턴 이름은 예시와 더 자세한 설명을 위한 링크이다.
 
 |                  패턴                      | 단일 잡 오브젝트      | 작업 항목보다 파드가 적은가?       | 수정되지 않은 앱을 사용하는가? |
@@ -393,30 +424,25 @@ spec:
 | [정적 작업 할당을 사용한 인덱싱된 잡]             |          W          |        any           |
 | [잡 템플릿 확장]                             |          1          |     1이어야 함         |
 
-[작업 항목 당 파드가 있는 큐]: /docs/tasks/job/coarse-parallel-processing-work-queue/
-[가변 파드 수를 가진 큐]: /docs/tasks/job/fine-parallel-processing-work-queue/
+[작업 항목 당 파드가 있는 큐]: /ko/docs/tasks/job/coarse-parallel-processing-work-queue/
+[가변 파드 수를 가진 큐]: /ko/docs/tasks/job/fine-parallel-processing-work-queue/
 [정적 작업 할당을 사용한 인덱싱된 잡]: /docs/tasks/job/indexed-parallel-processing-static/
-[잡 템플릿 확장]: /docs/tasks/job/parallel-processing-expansion/
+[잡 템플릿 확장]: /ko/docs/tasks/job/parallel-processing-expansion/
 
 ## 고급 사용법
 
 ### 잡 일시 중지
 
-{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
-
-{{< note >}}
-잡 일시 중지는 쿠버네티스 버전 1.21 이상에서 사용할 수 있다. 이 기능을
-사용하려면 [API 서버](/docs/reference/command-line-tools-reference/kube-apiserver/)
-및 [컨트롤러 관리자](/docs/reference/command-line-tools-reference/kube-controller-manager/)에서
-`SuspendJob` [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를
-활성화해야 한다.
-{{< /note >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 잡이 생성되면, 잡 컨트롤러는 잡의 요구 사항을 충족하기 위해
 즉시 파드 생성을 시작하고 잡이 완료될 때까지
 계속한다. 그러나, 잡의 실행을 일시적으로 중단하고 나중에
-다시 시작할 수도 있다. 잡을 일시 중지하려면, 잡의 `.spec.suspend` 필드를 true로
-업데이트할 수 있다. 나중에, 다시 재개하려면, false로 업데이트한다.
+재개하거나, 잡을 중단 상태로 생성하고 언제 시작할지를 
+커스텀 컨트롤러가 나중에 결정하도록 하고 싶을 수도 있다. 
+
+잡을 일시 중지하려면, 잡의 `.spec.suspend` 필드를 true로
+업데이트할 수 있다. 이후에, 다시 재개하려면, false로 업데이트한다.
 `.spec.suspend` 로 설정된 잡을 생성하면 일시 중지된 상태로
 생성된다.
 
@@ -458,7 +484,7 @@ spec:
 kubectl get jobs/myjob -o yaml
 ```
 
-```json
+```yaml
 apiVersion: batch/v1
 kind: Job
 # .metadata and .spec omitted
@@ -501,6 +527,32 @@ Events:
 파드가 생성되지 않았지만, 잡이 재개되자마자 파드 생성이 다시
 시작되었음을 알 수 있다.
 
+### 가변적 스케줄링 지시
+
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
+
+{{< note >}}
+이 기능을 사용하려면, 
+[API 서버](/docs/reference/command-line-tools-reference/kube-apiserver/)에 
+`JobMutableNodeSchedulingDirectives` [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 활성화해야 한다.
+이 기능은 기본적으로 활성화되어 있다.
+{{< /note >}}
+
+병렬 잡에서 대부분의 경우 파드를 특정 제약 조건 하에서 실행하고 싶을 것이다. 
+(예를 들면 동일 존에서 실행하거나, 또는 GPU 모델 x 또는 y를 사용하지만 둘을 혼합하지는 않는 등)
+
+[suspend](#suspending-a-job) 필드는 이러한 목적을 달성하기 위한 첫 번째 단계이다. 
+이 필드를 사용하면 커스텀 큐(queue) 컨트롤러가 잡이 언제 시작될지를 결정할 수 있다. 
+그러나, 잡이 재개된 이후에는, 커스텀 큐 컨트롤러는 잡의 파드가 실제로 어디에 할당되는지에 대해서는 영향을 주지 않는다.
+
+이 기능을 이용하여 잡이 실행되기 전에 잡의 스케줄링 지시를 업데이트할 수 있으며, 
+이를 통해 커스텀 큐 컨트롤러가 파드 배치에 영향을 줌과 동시에 
+노드로의 파드 실제 할당 작업을 kube-scheduler로부터 경감시켜 줄 수 있도록 한다. 
+이는 이전에 재개된 적이 없는 중지된 잡에 대해서만 허용된다.
+
+잡의 파드 템플릿 필드 중, 노드 어피니티(node affinity), 노드 셀렉터(node selector), 
+톨러레이션(toleration), 레이블(label), 어노테이션(annotation)은 업데이트가 가능하다.
+
 ### 자신의 파드 셀렉터를 지정하기
 
 일반적으로 잡 오브젝트를 생성할 때 `.spec.selector` 를 지정하지 않는다.
@@ -524,14 +576,16 @@ Events:
 실행되기를 원하지만, 잡이 생성한 나머지 파드에는 다른
 파드 템플릿을 사용하고 잡으로 하여금 새 이름을 부여하기를 원한다.
 그러나 관련된 필드들은 업데이트가 불가능하기 때문에 잡을 업데이트할 수 없다.
-따라서 `kubectl delete jobs/old --cascade=false` 를 사용해서
+따라서 `kubectl delete jobs/old --cascade=orphan` 명령을 사용해서
 잡 `old` 를 삭제하지만, _파드를 실행 상태로 둔다_.
 삭제하기 전에 어떤 셀렉터를 사용하는지 기록한다.
 
 ```shell
 kubectl get job old -o yaml
 ```
+
 출력 결과는 다음과 같다.
+
 ```yaml
 kind: Job
 metadata:
@@ -565,8 +619,49 @@ spec:
 ```
 
 새 잡 자체는 `a8f3d00d-c6d2-11e5-9f87-42010af00002` 와 다른 uid 를 가지게 될 것이다.
-`manualSelector: true` 를 설정하면 시스템에게 사용자가 무엇을 하는지 알고 있음을 알리고, 이런
-불일치를 허용한다.
+`manualSelector: true` 를 설정하면 시스템에게 사용자가 무엇을 하는지 알고 있으며 
+이런 불일치를 허용한다고 알릴 수 있다.
+
+### 종료자(finalizers)를 이용한 잡 추적
+
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
+
+{{< note >}}
+이 기능을 이용하기 위해서는 
+[API 서버](/docs/reference/command-line-tools-reference/kube-apiserver/)와 
+[컨트롤러 매니저](/docs/reference/command-line-tools-reference/kube-controller-manager/)에 대해 
+`JobTrackingWithFinalizers` [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 활성화해야 한다. 
+기본적으로는 활성화되어 있다.
+
+이 기능이 활성화되면, 컨트롤 플레인은 아래에 설명할 동작을 이용하여 새로운 잡이 생성되는지 추적한다. 
+이 기능이 활성화되기 이전에 생성된 잡은 영향을 받지 않는다. 
+사용자가 느낄 수 있는 유일한 차이점은 
+컨트롤 플레인이 잡 종료를 좀 더 정확하게 추적할 수 있다는 것이다.
+{{< /note >}}
+
+이 기능이 활성화되지 않으면, 잡 
+{{< glossary_tooltip text="컨트롤러" term_id="controller" >}}는 
+`succeeded`와 `failed` 파드의 수를 세어 잡 상태를 추적한다. 
+그런데, 파드는 다음과 같은 이유로 제거될 수 있다.
+- 노드가 다운되었을 때 가비지 콜렉터가 버려진(orphan) 파드를 제거
+- 가비지 콜렉터가 (`Succeeded` 또는 `Failed` 단계에 있는) 완료된 파드를 
+  일정 임계값 이후에 제거
+- 잡에 속한 파드를 사용자가 임의로 제거
+- (쿠버네티스에 속하지 않는) 외부 컨트롤러가 파드를 제거하거나 
+  교체
+
+클러스터에서 `JobTrackingWithFinalizers` 기능을 활성화하면, 
+컨트롤 플레인은 잡에 속하는 파드의 상태를 추적하고 
+API 서버에서 파드가 제거되면 이를 알아챈다. 
+이를 위해, 잡 컨트롤러는 `batch.kubernetes.io/job-tracking` 종료자를 갖는 파드를 생성한다. 
+컨트롤러는 파드의 상태 변화가 잡 상태에 반영된 후에만 종료자를 제거하므로, 
+이후 다른 컨트롤러나 사용자가 파드를 제거할 수 있다.
+
+잡 컨트롤러는 새로운 잡에 대해서만 새로운 알고리즘을 적용한다. 
+이 기능이 활성화되기 전에 생성된 잡은 영향을 받지 않는다. 
+잡에 `batch.kubernetes.io/job-tracking` 어노테이션이 있는지 확인하여, 
+잡 컨트롤러가 파드 종료자를 이용하여 잡을 추적하고 있는지 여부를 확인할 수 있다. 
+이 어노테이션을 잡에 수동으로 추가하거나 제거해서는 **안 된다**.
 
 ## 대안
 
@@ -594,12 +689,25 @@ spec:
 시작하기에는 다소 복잡할 수 있으며 쿠버네티스와의 통합성이 낮아진다.
 
 이 패턴의 한 예시는 파드를 시작하는 잡이다. 파드는 스크립트를 실행해서
-스파크(Spark) 마스터 컨트롤러 ([스파크 예시](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/spark/README.md)를 본다)를 시작하고,
+스파크(Spark) 마스터 컨트롤러 ([스파크 예시](https://github.com/kubernetes/examples/tree/master/staging/spark/README.md)를 본다)를 시작하고,
 스파크 드라이버를 실행한 다음, 정리한다.
 
 이 접근 방식의 장점은 전체 프로세스가 잡 오브젝트의 완료를 보장하면서도,
 파드 생성과 작업 할당 방법을 완전히 제어하고 유지한다는 것이다.
 
-## 크론잡 {#cron-jobs}
+## {{% heading "whatsnext" %}}
 
-[`CronJob`](/ko/docs/concepts/workloads/controllers/cron-jobs/)을 사용해서 Unix 도구인 `cron`과 유사하게 지정된 시간/일자에 실행되는 잡을 생성할 수 있다.
+* [파드](/ko/docs/concepts/workloads/pods)에 대해 배운다.
+* 다른 방식으로 잡을 구동하는 방법에 대해서 읽는다.
+  * [작업 대기열을 사용한 거친 병렬 처리](/ko/docs/tasks/job/coarse-parallel-processing-work-queue/)
+  * [작업 대기열을 사용한 정밀 병렬 처리](/ko/docs/tasks/job/fine-parallel-processing-work-queue/)
+  * [병렬 처리를 위한 정적 작업 할당으로 인덱스된 잡](/docs/tasks/job/indexed-parallel-processing-static/)(베타) 사용
+  * 템플릿 기반으로 복수의 잡 생성: [확장을 사용한 병렬 처리](/ko/docs/tasks/job/parallel-processing-expansion/)
+* [완료된 잡을 자동으로 정리](#clean-up-finished-jobs-automatically) 섹션 내 링크를 따라서
+  클러스터가 완료되거나 실패된 태스크를 어떻게 정리하는지에 대해 더 배운다.
+* `Job`은 쿠버네티스 REST API의 일부이다.
+  잡 API에 대해 이해하기 위해
+  {{< api-reference page="workload-resources/job-v1" >}}
+  오브젝트 정의를 읽은다.
+* 스케줄을 기반으로 실행되는 일련의 잡을 정의하는데 사용할 수 있고, 유닉스 툴 `cron`과 유사한
+  [`CronJob`](/ko/docs/concepts/workloads/controllers/cron-jobs/)에 대해 읽는다.
diff --git a/content/ko/docs/concepts/workloads/controllers/replicaset.md b/content/ko/docs/concepts/workloads/controllers/replicaset.md
index 7cf399d242..5a799680b2 100644
--- a/content/ko/docs/concepts/workloads/controllers/replicaset.md
+++ b/content/ko/docs/concepts/workloads/controllers/replicaset.md
@@ -26,7 +26,7 @@ weight: 20
 레플리카셋이 새로운 파드를 생성해야 할 경우, 명시된 파드 템플릿을
 사용한다.
 
-레플리카셋은 파드의 [metadata.ownerReferences](/ko/docs/concepts/workloads/controllers/garbage-collection/#소유자-owner-와-종속-dependent)
+레플리카셋은 파드의 [metadata.ownerReferences](/ko/docs/concepts/architecture/garbage-collection/#소유자-owner-와-종속-dependent)
 필드를 통해 파드에 연결되며, 이는 현재 오브젝트가 소유한 리소스를 명시한다.
 레플리카셋이 가지고 있는 모든 파드의 ownerReferences 필드는 해당 파드를 소유한 레플리카셋을 식별하기 위한 소유자 정보를 가진다.
 이 링크를 통해 레플리카셋은 자신이 유지하는 파드의 상태를 확인하고 이에 따라 관리 한다.
@@ -50,7 +50,7 @@ OwnerReference가 {{< glossary_tooltip term_id="controller" >}} 가 아니고 
 
 {{< codenew file="controllers/frontend.yaml" >}}
 
-이 매니페스트를 `frontend.yaml`에 저장하고 쿠버네티스 클러스터에 적용하면 정의되어있는 레플리카셋이
+이 매니페스트를 `frontend.yaml`에 저장하고 쿠버네티스 클러스터에 적용하면 정의되어 있는 레플리카셋이
 생성되고 레플리카셋이 관리하는 파드가 생성된다.
 
 ```shell
@@ -128,7 +128,7 @@ frontend-wtsmm   1/1     Running   0          6m36s
 kubectl get pods frontend-b2zdv -o yaml
 ```
 
-메타데이터의 ownerReferences 필드에 설정되어있는 프런트엔드 레플리카셋의 정보가 다음과 유사하게 나오는 것을 볼 수 있다.
+메타데이터의 ownerReferences 필드에 설정되어 있는 프런트엔드 레플리카셋의 정보가 다음과 유사하게 나오는 것을 볼 수 있다.
 
 ```shell
 apiVersion: v1
@@ -223,8 +223,6 @@ pod2             1/1     Running   0          36s
 
 레플리카셋은 모든 쿠버네티스 API 오브젝트와 마찬가지로 `apiVersion`, `kind`, `metadata` 필드가 필요하다.
 레플리카셋에 대한 `kind` 필드의 값은 항상 레플리카셋이다.
-쿠버네티스 1.9에서의 레플리카셋의 kind에 있는 API 버전 `apps/v1`은 현재 버전이며, 기본으로 활성화 되어있다. API 버전 `apps/v1beta2`은 사용 중단(deprecated)되었다.
-API 버전에 대해서는 `frontend.yaml` 예제의 첫 번째 줄을 참고한다.
 
 레플리카셋 오브젝트의 이름은 유효한
 [DNS 서브도메인 이름](/ko/docs/concepts/overview/working-with-objects/names/#dns-서브도메인-이름)이어야 한다.
@@ -233,7 +231,7 @@ API 버전에 대해서는 `frontend.yaml` 예제의 첫 번째 줄을 참고한
 
 ### 파드 템플릿
 
-`.spec.template`은 레이블을 붙이도록 되어있는 [파드 템플릿](/ko/docs/concepts/workloads/pods/#파드-템플릿)이다.
+`.spec.template`은 레이블을 붙이도록 되어 있는 [파드 템플릿](/ko/docs/concepts/workloads/pods/#파드-템플릿)이다.
 우리는 `frontend.yaml` 예제에서 `tier: frontend`이라는 레이블을 하나 가지고 있다.
 이 파드를 다른 컨트롤러가 취하지 않도록 다른 컨트롤러의 셀렉터와 겹치지 않도록 주의해야 한다.
 
@@ -269,7 +267,7 @@ matchLabels:
 
 ### 레플리카셋과 해당 파드 삭제
 
-레플리카셋 및 모든 파드를 삭제하려면 [`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands#delete)를 사용한다. [가비지 수집기](/ko/docs/concepts/workloads/controllers/garbage-collection/)는 기본적으로 종속되어있는 모든 파드를 자동으로 삭제한다.
+레플리카셋 및 모든 파드를 삭제하려면 [`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands#delete)를 사용한다. [가비지 수집기](/ko/docs/concepts/architecture/garbage-collection/)는 기본적으로 종속되어 있는 모든 파드를 자동으로 삭제한다.
 
 REST API또는 `client-go` 라이브러리를 이용할 때는 -d 옵션으로 `propagationPolicy`를 `Background`또는 `Foreground`로
 설정해야 한다.
@@ -323,9 +321,9 @@ curl -X DELETE  'localhost:8080/apis/apps/v1/namespaces/default/replicasets/fron
 모든 기준에 대해 동등하다면, 스케일 다운할 파드가 임의로 선택된다.
 
 ### 파드 삭제 비용
-{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.22" state="beta" >}}
 
-[`controller.kubernetes.io/pod-deletion-cost`](/docs/reference/labels-annotations-taints/#pod-deletion-cost) 어노테이션을 이용하여, 
+[`controller.kubernetes.io/pod-deletion-cost`](/ko/docs/reference/labels-annotations-taints/#pod-deletion-cost) 어노테이션을 이용하여, 
 레플리카셋을 스케일 다운할 때 어떤 파드부터 먼저 삭제할지에 대한 우선순위를 설정할 수 있다.
 
 이 어노테이션은 파드에 설정되어야 하며, [-2147483647, 2147483647] 범위를 갖는다.
@@ -335,9 +333,9 @@ curl -X DELETE  'localhost:8080/apis/apps/v1/namespaces/default/replicasets/fron
 파드에 대해 이 값을 명시하지 않으면 기본값은 0이다. 음수로도 설정할 수 있다.
 유효하지 않은 값은 API 서버가 거부한다.
 
-이 기능은 알파 상태이며 기본적으로는 비활성화되어 있다. 
-kube-apiserver와 kube-controller-manager에서 `PodDeletionCost` 
-[기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 켜서 활성화할 수 있다.
+이 기능은 베타 상태이며 기본적으로 활성화되어 있다. 
+kube-apiserver와 kube-controller-manager에 대해 `PodDeletionCost` 
+[기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 이용하여 비활성화할 수 있다.
 
 {{< note >}}
 - 이 기능은 best-effort 방식으로 동작하므로, 파드 삭제 순서를 보장하지는 않는다.
@@ -408,3 +406,16 @@ kubectl autoscale rs frontend --max=10 --min=3 --cpu-percent=50
 이 두 개의 용도는 동일하고, 유사하게 동작하며, 레플리케이션 컨트롤러가 [레이블 사용자 가이드](/ko/docs/concepts/overview/working-with-objects/labels/#레이블-셀렉터)에
 설명된 설정-기반의 셀렉터의 요건을 지원하지 않는다는 점을 제외하면 유사하다.
 따라서 레플리카셋이 레플리케이션 컨트롤러보다 선호된다.
+
+
+## {{% heading "whatsnext" %}}
+
+* [파드](/ko/docs/concepts/workloads/pods)에 대해 배운다.
+* [디플로이먼트](/ko/docs/concepts/workloads/controllers/deployment/)에 대해 배운다.
+* 레플리카셋에 의존해서 동작하는 [디플로이먼트로 스테이트리스 애플리케이션을 실행한다](/ko/docs/tasks/run-application/run-stateless-application-deployment/).
+* `ReplicaSet`는 쿠버네티스 REST API의 상위-수준 리소스이다.
+  레플리카셋 API에 대해 이해하기 위해
+  {{< api-reference page="workload-resources/replica-set-v1" >}}
+  오브젝트 정의를 읽는다.
+* [PodDisruptionBudget](/ko/docs/concepts/workloads/pods/disruptions/)과
+  이를 사용해서 어떻게 중단 중에 애플리케이션 가용성을 관리할 수 있는지에 대해 읽는다.
diff --git a/content/ko/docs/concepts/workloads/controllers/replicationcontroller.md b/content/ko/docs/concepts/workloads/controllers/replicationcontroller.md
index db69cf921c..3de8fbfc02 100644
--- a/content/ko/docs/concepts/workloads/controllers/replicationcontroller.md
+++ b/content/ko/docs/concepts/workloads/controllers/replicationcontroller.md
@@ -118,7 +118,6 @@ nginx-3ntk0 nginx-4ok8v nginx-qrm3m
 다른 형식의 파일인 `replication.yaml` 의 것과 동일하다. `--output=jsonpath` 은
 반환된 목록의 각 파드의 이름을 출력하도록 하는 옵션이다.
 
-
 ## 레플리케이션 컨트롤러의 Spec 작성
 
 다른 모든 쿠버네티스 컨피그와 마찬가지로 레플리케이션 컨트롤러는 `apiVersion`, `kind`, `metadata` 와 같은 필드가 필요하다.
@@ -186,16 +185,16 @@ delete`](/docs/reference/generated/kubectl/kubectl-commands#delete) 를 사용
 Kubectl은 레플리케이션 컨트롤러를 0으로 스케일하고 레플리케이션 컨트롤러 자체를
 삭제하기 전에 각 파드를 삭제하기를 기다린다. 이 kubectl 명령이 인터럽트되면 다시 시작할 수 있다.
 
-REST API나 Go 클라이언트 라이브러리를 사용하는 경우 명시적으로 단계를 수행해야 한다(레플리카를 0으로 스케일하고 파드의 삭제를 기다린 이후,
-레플리케이션 컨트롤러를 삭제).
+REST API나 [클라이언트 라이브러리](/ko/docs/reference/using-api/client-libraries)를 사용하는 경우 
+명시적으로 단계를 수행해야 한다(레플리카를 0으로 스케일하고 파드의 삭제를 기다린 이후, 레플리케이션 컨트롤러를 삭제).
 
 ### 레플리케이션 컨트롤러만 삭제
 
 해당 파드에 영향을 주지 않고 레플리케이션 컨트롤러를 삭제할 수 있다.
 
-kubectl을 사용하여, [`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands#delete)에 옵션으로 `--cascade=false`를 지정하라.
+kubectl을 사용하여, [`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands#delete)에 옵션으로 `--cascade=orphan`을 지정하라.
 
-REST API나 Go 클라이언트 라이브러리를 사용하는 경우 레플리케이션 컨트롤러 오브젝트를 삭제하라.
+REST API나 [클라이언트 라이브러리](/ko/docs/reference/using-api/client-libraries)를 사용하는 경우 레플리케이션 컨트롤러 오브젝트를 삭제하라.
 
 원본이 삭제되면 대체할 새로운 레플리케이션 컨트롤러를 생성하여 교체할 수 있다. 오래된 파드와 새로운 파드의 `.spec.selector` 가 동일하다면,
 새로운 레플리케이션 컨트롤러는 오래된 파드를 채택할 것이다. 그러나 기존 파드를
@@ -249,7 +248,7 @@ REST API나 Go 클라이언트 라이브러리를 사용하는 경우 레플리
 
 레플리케이션 컨트롤러는 이 좁은 책임에 영원히 제약을 받는다. 그 자체로는 준비성 또는 활성 프로브를 실행하지 않을 것이다. 오토 스케일링을 수행하는 대신, 외부 오토 스케일러 ([#492](https://issue.k8s.io/492)에서 논의된)가 레플리케이션 컨트롤러의 `replicas` 필드를 변경함으로써 제어되도록 의도되었다. 레플리케이션 컨트롤러에 스케줄링 정책 (예를 들어 [spreading](https://issue.k8s.io/367#issuecomment-48428019))을 추가하지 않을 것이다. 오토사이징 및 기타 자동화 된 프로세스를 방해할 수 있으므로 제어된 파드가 현재 지정된 템플릿과 일치하는지 확인해야 한다. 마찬가지로 기한 완료, 순서 종속성, 구성 확장 및 기타 기능은 다른 곳에 속한다. 대량의 파드 생성 메커니즘 ([#170](https://issue.k8s.io/170))까지도 고려해야 한다.
 
-레플리케이션 컨트롤러는 조합 가능한 빌딩-블록 프리미티브가 되도록 고안되었다. 향후 사용자의 편의를 위해 더 상위 수준의 API 및/또는 도구와 그리고 다른 보완적인 기본 요소가 그 위에 구축 될 것으로 기대한다. 현재 kubectl이 지원하는 "매크로" 작업 (실행, 스케일)은 개념 증명의 예시이다. 예를 들어 [Asgard](https://techblog.netflix.com/2012/06/asgard-web-based-cloud-management-and.html)와 같이 레플리케이션 컨트롤러, 오토 스케일러, 서비스, 정책 스케줄링, 카나리 등을 관리할 수 있다.
+레플리케이션 컨트롤러는 조합 가능한 빌딩-블록 프리미티브가 되도록 고안되었다. 향후 사용자의 편의를 위해 더 상위 수준의 API 및/또는 도구와 그리고 다른 보완적인 기본 요소가 그 위에 구축 될 것으로 기대한다. 현재 kubectl이 지원하는 "매크로" 작업 (실행, 스케일)은 개념 증명의 예시이다. 예를 들어 [Asgard](https://netflixtechblog.com/asgard-web-based-cloud-management-and-deployment-2c9fc4e4d3a1)와 같이 레플리케이션 컨트롤러, 오토 스케일러, 서비스, 정책 스케줄링, 카나리 등을 관리할 수 있다.
 
 ## API 오브젝트
 
@@ -285,6 +284,11 @@ API 오브젝트에 대한 더 자세한 것은
 다른 파드가 시작되기 전에 파드가 머신에서 실행되어야 하며,
 머신이 재부팅/종료 준비가 되어 있을 때 안전하게 종료된다.
 
-## 더 자세한 정보는
+## {{% heading "whatsnext" %}}
 
-[스테이트리스 애플리케이션 디플로이먼트 실행하기](/docs/tasks/run-application/run-stateless-application-deployment/)를 참고한다.
+* [파드](/ko/docs/concepts/workloads/pods)에 대해 배운다.
+* 레플리케이션 컨트롤러를 대신하는 [디플로이먼트](/ko/docs/concepts/workloads/controllers/deployment/)에 대해 배운다.
+* `ReplicationController`는 쿠버네티스 REST API의 일부이다.
+  레플리케이션 컨트롤러 API에 대해 이해하기 위해
+  {{< api-reference page="workload-resources/replication-controller-v1" >}}
+  오브젝트 정의를 읽는다.
diff --git a/content/ko/docs/concepts/workloads/controllers/statefulset.md b/content/ko/docs/concepts/workloads/controllers/statefulset.md
index e231770cc5..94d5112503 100644
--- a/content/ko/docs/concepts/workloads/controllers/statefulset.md
+++ b/content/ko/docs/concepts/workloads/controllers/statefulset.md
@@ -1,4 +1,11 @@
 ---
+
+
+
+
+
+
+
 title: 스테이트풀셋
 content_type: concept
 weight: 30
@@ -32,7 +39,7 @@ weight: 30
 
 ## 제한사항
 
-* 파드에 지정된 스토리지는 관리자에 의해 [퍼시스턴트 볼륨 프로비저너](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/persistent-volume-provisioning/README.md)를 기반으로 하는 `storage class` 를 요청해서 프로비전하거나 사전에 프로비전이 되어야 한다.
+* 파드에 지정된 스토리지는 관리자에 의해 [퍼시스턴트 볼륨 프로비저너](https://github.com/kubernetes/examples/tree/master/staging/persistent-volume-provisioning/README.md)를 기반으로 하는 `storage class` 를 요청해서 프로비전하거나 사전에 프로비전이 되어야 한다.
 * 스테이트풀셋을 삭제 또는 스케일 다운해도 스테이트풀셋과 연관된 볼륨이 *삭제되지 않는다*. 이는 일반적으로 스테이트풀셋과 연관된 모든 리소스를 자동으로 제거하는 것보다 더 중요한 데이터의 안전을 보장하기 위함이다.
 * 스테이트풀셋은 현재 파드의 네트워크 신원을 책임지고 있는 [헤드리스 서비스](/ko/docs/concepts/services-networking/service/#헤드리스-headless-서비스)가 필요하다. 사용자가 이 서비스를 생성할 책임이 있다.
 * 스테이트풀셋은 스테이트풀셋의 삭제 시 파드의 종료에 대해 어떠한 보증을 제공하지 않는다. 스테이트풀셋에서는 파드가 순차적이고 정상적으로 종료(graceful termination)되도록 하려면, 삭제 전 스테이트풀셋의 스케일을 0으로 축소할 수 있다.
@@ -67,13 +74,14 @@ metadata:
 spec:
   selector:
     matchLabels:
-      app: nginx # has to match .spec.template.metadata.labels
+      app: nginx # .spec.template.metadata.labels 와 일치해야 한다
   serviceName: "nginx"
-  replicas: 3 # by default is 1
+  replicas: 3 # 기본값은 1
+  minReadySeconds: 10 # 기본값은 0
   template:
     metadata:
       labels:
-        app: nginx # has to match .spec.selector.matchLabels
+        app: nginx # .spec.selector.matchLabels 와 일치해야 한다
     spec:
       terminationGracePeriodSeconds: 10
       containers:
@@ -105,9 +113,24 @@ spec:
 스테이트풀셋 오브젝트의 이름은 유효한
 [DNS 서브도메인 이름](/ko/docs/concepts/overview/working-with-objects/names/#dns-서브도메인-이름)이어야 한다.
 
-## 파드 셀렉터
+### 파드 셀렉터
 
-스테이트풀셋의 `.spec.selector` 필드는 `.spec.template.metadata.labels` 레이블과 일치하도록 설정해야 한다. 쿠버네티스 1.8 이전에서는 생략시에 `.spec.selector` 필드가 기본 설정 되었다. 1.8 과 이후 버전에서는 파드 셀렉터를 명시하지 않으면 스테이트풀셋 생성시 유효성 검증 오류가 발생하는 결과가 나오게 된다.
+스테이트풀셋의 `.spec.selector` 필드는 `.spec.template.metadata.labels` 레이블과 일치하도록 설정해야 한다. 해당되는 파드 셀렉터를 찾지 못하면 스테이트풀셋 생성 과정에서 검증 오류가 발생한다.
+
+### 볼륨 클레임 템플릿
+
+`.spec.volumeClaimTemplates` 를 설정하여, 퍼시스턴트볼륨 프로비저너에 의해 프로비전된 [퍼시스턴트볼륨](/ko/docs/concepts/storage/persistent-volumes/)을 이용하는 안정적인 스토리지를 제공할 수 있다.
+
+
+### 최소 준비 시간 초 {#minimum-ready-seconds}
+
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
+
+`.spec.minReadySeconds` 는 파드가 '사용 가능(available)'이라고 간주될 수 있도록 파드의 모든 컨테이너가 
+문제 없이 실행되어야 하는 최소 시간(초)을 나타내는 선택적인 필드이다. 이 기능은 베타이며 기본적으로 활성화되어 
+있음에 유의한다. 이 기능을 사용하지 않으려면 StatefulSetMinReadySeconds 플래그를 설정 해제한다. 
+이 필드의 기본값은 0이다(이 경우, 파드가 Ready 상태가 되면 바로 사용 가능하다고 간주된다.) 
+파드가 언제 사용 가능하다고 간주되는지에 대한 자세한 정보는 [컨테이너 프로브(probe)](/ko/docs/concepts/workloads/pods/pod-lifecycle/#컨테이너-프로브-probe)를 참고한다.
 
 ## 파드 신원
 
@@ -166,9 +189,7 @@ N개의 레플리카가 있는 스테이트풀셋은 스테이트풀셋에 있
 
 ### 안정된 스토리지
 
-쿠버네티스는 각 VolumeClaimTemplate마다 하나의 [퍼시스턴트 볼륨](/ko/docs/concepts/storage/persistent-volumes/)을
-생성한다. 위의 nginx 예시에서 각 파드는 `my-storage-class` 라는 스토리지 클래스와
-1 Gib의 프로비전된 스토리지를 가지는 단일 퍼시스턴트 볼륨을 받게 된다. 만약 스토리지 클래스가
+쿠버네티스는 각 VolumeClaimTemplate마다 하나의 [퍼시스턴트 볼륨](/ko/docs/concepts/storage/persistent-volumes/)을 생성한다. 위의 nginx 예시에서 각 파드는 `my-storage-class` 라는 스토리지 클래스와 1 Gib의 프로비전된 스토리지를 가지는 단일 퍼시스턴트 볼륨을 받게 된다. 만약 스토리지 클래스가
 명시되지 않은 경우, 기본 스토리지 클래스가 사용된다. 파드가 노드에서 스케줄 혹은 재스케줄이 되면
 파드의 `volumeMounts` 는 퍼시스턴트 볼륨 클레임과 관련된 퍼시스턴트 볼륨이 마운트 된다.
 참고로, 파드 퍼시스턴트 볼륨 클레임과 관련된 퍼시스턴트 볼륨은
@@ -189,7 +210,7 @@ N개의 레플리카가 있는 스테이트풀셋은 스테이트풀셋에 있
 * 파드에 스케일링 작업을 적용하기 전에 모든 선행 파드가 Running 및 Ready 상태여야 한다.
 * 파드가 종료되기 전에 모든 후속 파드가 완전히 종료 되어야 한다.
 
-스테이트풀셋은 `pod.Spec.TerminationGracePeriodSeconds` 을 0으로 명시해서는 안된다. 이 방법은 안전하지 않으며, 사용하지 않기를 강권한다. 자세한 설명은 [스테이트풀셋 파드 강제 삭제](/docs/tasks/run-application/force-delete-stateful-set-pod/)를 참고한다.
+스테이트풀셋은 `pod.Spec.TerminationGracePeriodSeconds` 을 0으로 명시해서는 안된다. 이 방법은 안전하지 않으며, 사용하지 않기를 강권한다. 자세한 설명은 [스테이트풀셋 파드 강제 삭제](/ko/docs/tasks/run-application/force-delete-stateful-set-pod/)를 참고한다.
 
 위의 nginx 예시가 생성될 때 web-0, web-1, web-2 순서로 3개 파드가
 배포된다. web-1은 web-0이
@@ -205,8 +226,8 @@ web-0이 실패할 경우 web-1은 web-0이 Running 및 Ready 상태가
 되기 전까지 종료되지 않는다.
 
 ### 파드 관리 정책
-쿠버네티스 1.7 및 이후에는 스테이트풀셋의 `.spec.podManagementPolicy` 필드를
-통해 고유성 및 신원 보증을 유지하면서 순차 보증을 완화한다.
+스테이트풀셋의 `.spec.podManagementPolicy` 필드를 통해 
+고유성 및 신원 보증을 유지하면서 순차 보증을 완화한다.
 
 #### OrderedReady 파드 관리
 
@@ -223,27 +244,33 @@ web-0이 실패할 경우 web-1은 web-0이 Running 및 Ready 상태가
 
 ## 업데이트 전략
 
-쿠버네티스 1.7 및 이후에는 스테이트풀셋의 `.spec.updateStrategy` 필드는 스테이트풀셋의
+스테이트풀셋의 `.spec.updateStrategy` 필드는 스테이트풀셋의
 파드에 대한 컨테이너, 레이블, 리소스의 요청/제한 그리고 주석에 대한 자동화된 롤링 업데이트를
-구성하거나 비활성화 할 수 있다.
+구성하거나 비활성화할 수 있다. 두 가지 가능한 전략이 있다.
 
-### 삭제 시(On Delete)
-
-`OnDelete` 업데이트 전략은 레거시(1.6과 이전)의 행위를 구현한다. 이때 스테이트풀셋의
-`.spec.updateStrategy.type` 은 `OnDelete` 를 설정하며, 스테이트풀셋 컨트롤러는
-스테이트풀셋의 파드를 자동으로 업데이트하지 않는다. 사용자는 컨트롤러가 스테이트풀셋의
+`OnDelete`(삭제시)
+: 스테이트풀셋의 `.spec.updateStrategy.type` 은 `OnDelete` 를 설정하며, 
+스테이트풀셋 컨트롤러는 스테이트풀셋의 파드를 자동으로 업데이트하지 않는다. 
+사용자는 컨트롤러가 스테이트풀셋의
 `.spec.template`를 반영하는 수정된 새로운 파드를 생성하도록 수동으로 파드를 삭제해야 한다.
 
-### 롤링 업데이트
+`RollingUpdate`(롤링 업데이트)
+: `롤링 업데이트` 의 업데이트 전략은 스테이트풀셋의 파드에 대한 롤링 업데이트를
+구현한다. 롤링 업데이트는 `.spec.updateStrategy` 가 지정되지 않으면 기본 전략이 된다.
 
-`롤링 업데이트` 의 업데이트 전략은 스테이트풀셋의 파드에 대한 롤링 업데이트를
-구현한다. 롤링 업데이트는 `.spec.updateStrategy` 가 지정되지 않으면 기본 전략이 된다. 스테이트풀셋에 `롤링 업데이트` 가 `.spec.updateStrategy.type` 에 설정되면
-스테이트풀셋 컨트롤러는 스테이트풀셋의 각 파드를 삭제 및 재생성을 한다. 이 과정에서 똑같이
-순차적으로 파드가 종료되고(가장 큰 수에서 작은 수까지),
-각 파드의 업데이트는 한 번에 하나씩 한다. 이전 버전을 업데이트하기 전까지 업데이트된 파드가 실행 및 준비될
-때까지 기다린다.
+## 롤링 업데이트
 
-#### 파티션(Partition)
+스테이트풀셋에 `롤링 업데이트` 가 `.spec.updateStrategy.type` 에 설정되면
+스테이트풀셋 컨트롤러는 스테이트풀셋의 각 파드를 삭제 및 재생성한다. 이 과정에서 똑같이
+순차적으로 파드가 종료되고(가장 큰 순서 색인에서부터에서 작은 순서 색인쪽으로),
+각 파드의 업데이트는 한 번에 하나씩 한다.
+
+쿠버네티스 컨트롤 플레인은 이전 버전을 업데이트 하기 전에, 업데이트된 파드가 실행 및 준비될 때까지 기다린다.
+`.spec.minReadySeconds`([최소 준비 시간 초](#minimum-ready-seconds) 참조)를 
+설정한 경우, 
+컨트롤 플레인은 파드가 준비 상태로 전환된 후 해당 시간을 추가로 기다린 후 이동한다.
+
+### 파티션 롤링 업데이트 {#partitions}
 
 `롤링 업데이트` 의 업데이트 전략은 `.spec.updateStrategy.rollingUpdate.partition`
 를 명시해서 파티션 할 수 있다. 만약 파티션을 명시하면 스테이트풀셋의 `.spec.template` 가
@@ -255,7 +282,28 @@ web-0이 실패할 경우 web-1은 web-0이 Running 및 Ready 상태가
 대부분의 케이스는 파티션을 사용할 필요가 없지만 업데이트를 준비하거나,
 카나리의 롤 아웃 또는 단계적인 롤 아웃을 행하려는 경우에는 유용하다.
 
-#### 강제 롤백
+### 최대 사용 불가능(unavailable) 파드 수
+
+{{< feature-state for_k8s_version="v1.24" state="alpha" >}}
+
+`.spec.updateStrategy.rollingUpdate.maxUnavailable` 필드를 명시하여, 
+업데이트 과정에서 사용 불가능(unavailable) 파드를 최대 몇 개까지 허용할 것인지를 조절할 수 있다. 
+값은 절대값(예: `5`) 또는 목표 파드 퍼센티지(예: `10%`)로 명시할 수 있다. 
+절대값은 퍼센티지 값으로 계산한 뒤 올림하여 얻는다. 
+이 필드는 0일 수 없다. 기본값은 1이다.
+
+이 필드는 `0` 에서 `replicas - 1` 사이 범위에 있는 모든 파드에 적용된다. 
+이 범위 내에 사용 불가능한 파드가 있으면, 
+`maxUnavailable`로 집계된다.
+
+{{< note >}}
+`maxUnavailable` 필드는 현재 알파 단계이며 
+`MaxUnavailableStatefulSet` 
+[기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)가 활성화된 API 서버에서만 
+동작한다.
+{{< /note >}}
+
+### 강제 롤백
 
 기본 [파드 관리 정책](#파드-관리-정책) (`OrderedReady`)과
 함께 [롤링 업데이트](#롤링-업데이트)를 사용할 경우
@@ -273,12 +321,116 @@ web-0이 실패할 경우 web-1은 web-0이 Running 및 Ready 상태가
 
 템플릿을 되돌린 이후에는 스테이트풀셋이 이미 잘못된 구성으로
 실행하려고 시도한 모든 파드를 삭제해야 한다.
-그러면 스테이트풀셋은 되돌린 템플릿을 사용해서 파드를 다시 생성하기 시작 한다.
+그러면 스테이트풀셋은 되돌린 템플릿을 사용해서 파드를 다시 생성하기 시작한다.
 
 
+## 퍼시스턴트볼륨클레임 유보
+
+{{< feature-state for_k8s_version="v1.23" state="alpha" >}}
+
+선택적 필드인 `.spec.persistentVolumeClaimRetentionPolicy` 는 
+스테이트풀셋의 생애주기동안 PVC를 삭제할 것인지, 
+삭제한다면 어떻게 삭제하는지를 관리한다. 
+이 필드를 사용하려면 `StatefulSetAutoDeletePVC` [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 활성화해야 한다. 
+활성화 시, 각 스테이트풀셋에 대해 두 가지 정책을 설정할 수 있다.
+
+`whenDeleted`
+: 스테이트풀셋이 삭제될 때 적용될 볼륨 유보 동작을 설정한다.
+
+`whenScaled`
+: 스테이트풀셋의 레플리카 수가 줄어들 때, 예를 들면 스테이트풀셋을 스케일 다운할 때 
+  적용될 볼륨 유보 동작을 설정한다.
+
+설정 가능한 각 정책에 대해, 그 값을 `Delete` 또는 `Retain` 으로 설정할 수 있다.
+
+`Delete`
+: `volumeClaimTemplate` 스테이트풀셋으로부터 생성된 PVC는 정책에 영향을 받는 각 파드에 대해 삭제된다. 
+`whenDeleted` 가 이 값으로 설정되어 있으면 
+`volumeClaimTemplate` 으로부터 생성된 모든 PVC는 파드가 삭제된 뒤에 삭제된다. 
+`whenScaled` 가 이 값으로 설정되어 있으면 
+스케일 다운된 파드 레플리카가 삭제된 뒤, 삭제된 파드에 해당되는 PVC만 삭제된다.
+
+`Retain` (기본값)
+: 파드가 삭제되어도 `volumeClaimTemplate` 으로부터 생성된 PVC는 영향을 받지 않는다. 
+  이는 이 신기능이 도입되기 전의 기본 동작이다.
+
+이러한 정책은 파드의 삭제가 스테이트풀셋 삭제 또는 스케일 다운으로 인한 것일 때**에만** 적용됨에 유의한다. 
+예를 들어, 스테이트풀셋의 파드가 노드 실패로 인해 실패했고, 
+컨트롤 플레인이 대체 파드를 생성했다면, 스테이트풀셋은 기존 PVC를 유지한다. 
+기존 볼륨은 영향을 받지 않으며, 
+새 파드가 실행될 노드에 클러스터가 볼륨을 연결(attach)한다.
+  
+정책의 기본값은 `Retain` 이며, 이는 이 신기능이 도입되기 전의 스테이트풀셋 기본 동작이다.
+
+다음은 정책 예시이다.
+
+```yaml
+apiVersion: apps/v1
+kind: StatefulSet
+...
+spec:
+  persistentVolumeClaimRetentionPolicy:
+    whenDeleted: Retain
+    whenScaled: Delete
+...
+```
+
+스테이트풀셋 {{<glossary_tooltip text="컨트롤러" term_id="controller">}}는 자신이 소유한 PVC에 
+[소유자 정보(reference)](/docs/concepts/overview/working-with-objects/owners-dependents/#owner-references-in-object-specifications)를 
+추가하며, 파드가 종료된 이후에는 {{<glossary_tooltip text="가비지 콜렉터" term_id="garbage-collection">}}가 이 정보를 삭제한다. 
+이로 인해 PVC가 삭제되기 전에 
+(그리고 유보 정책에 따라, 매칭되는 기반 PV와 볼륨이 삭제되기 전에) 
+파드가 모든 볼륨을 깨끗하게 언마운트할 수 있다. 
+`whenDeleted` 정책을 `Delete` 로 설정하면, 
+해당 스테이트풀셋에 연결된 모든 PVC에 스테이트풀셋 인스턴스의 소유자 정보가 기록된다.
+
+`whenScaled` 정책은 파드가 스케일 다운되었을 때에만 PVC를 삭제하며, 
+파드가 다른 원인으로 삭제되면 PVC를 삭제하지 않는다. 
+조정 상황 발생 시, 스테이트풀셋 컨트롤러는 목표 레플리카 수와 클러스터 상의 실제 파드 수를 비교한다. 
+레플리카 카운트보다 큰 ID를 갖는 스테이트풀셋 파드는 부적격 판정을 받으며 삭제 대상으로 표시된다. 
+`whenScaled` 정책이 `Delete` 이면, 부적격 파드는 삭제되기 전에, 
+연결된 스테이트풀셋 템플릿 PVC의 소유자로 지정된다. 
+이로 인해, 부적격 파드가 종료된 이후에만 PVC가 가비지 콜렉트된다.
+
+이는 곧 만약 컨트롤러가 강제 종료되어 재시작되면, 
+파드의 소유자 정보가 정책에 적합하게 업데이트되기 전에는 어떤 파드도 삭제되지 않을 것임을 의미한다. 
+만약 컨트롤러가 다운된 동안 부적격 파드가 강제로 삭제되면, 
+컨트롤러가 강제 종료된 시점에 따라 소유자 정보가 설정되었을 수도 있고 설정되지 않았을 수도 있다. 
+소유자 정보가 업데이트되기까지 몇 번의 조정 절차가 필요할 수 있으며, 
+따라서 일부 부적격 파드는 소유자 정보 설정을 완료하고 나머지는 그러지 못했을 수 있다. 
+이러한 이유로, 컨트롤러가 다시 켜져서 파드를 종료하기 전에 
+소유자 정보를 검증할 때까지 기다리는 것을 추천한다. 
+이것이 불가능하다면, 관리자는 PVC의 소유자 정보를 확인하여 파드가 강제 삭제되었을 때 해당되는 오브젝트가 삭제되도록 해야 한다.
+
+### 레플리카
+
+`.spec.replicas` 은 필요한 파드의 수를 지정하는 선택적 필드이다. 기본값은 1이다.
+
+예를 들어 `kubectl scale deployment deployment --replicas=X` 명령으로 
+디플로이먼트의 크기를 수동으로 조정한 뒤, 
+매니페스트를 이용하여 디플로이먼트를 업데이트하면(예: `kubectl apply -f deployment.yaml` 실행), 
+수동으로 설정했던 디플로이먼트의 크기가 
+오버라이드된다.
+
+[HorizontalPodAutoscaler](/ko/docs/tasks/run-application/horizontal-pod-autoscale/)(또는 수평 스케일링을 위한 유사 API)가 
+디플로이먼트 크기를 관리하고 있다면, `.spec.replicas` 를 설정해서는 안 된다.
+대신, 쿠버네티스 
+{{< glossary_tooltip text="컨트롤 플레인" term_id="control-plane" >}}이 
+`.spec.replicas` 필드를 자동으로 관리한다.
+
 ## {{% heading "whatsnext" %}}
 
-
-* [스테이트풀 애플리케이션의 배포](/ko/docs/tutorials/stateful-application/basic-stateful-set/)의 예시를 따른다.
-* [카산드라와 스테이트풀셋 배포](/ko/docs/tutorials/stateful-application/cassandra/)의 예시를 따른다.
-* [레플리케이티드(replicated) 스테이트풀 애플리케이션 실행하기](/docs/tasks/run-application/run-replicated-stateful-application/)의 예시를 따른다.
+* [파드](/ko/docs/concepts/workloads/pods)에 대해 배운다.
+* 스테이트풀셋을 사용하는 방법을 알아본다.
+  * [스테이트풀셋 애플리케이션 배포](/ko/docs/tutorials/stateful-application/basic-stateful-set/) 예제를 따라한다.
+  * [스테이트풀셋으로 카산드라 배포](/ko/docs/tutorials/stateful-application/cassandra/) 예제를 따라한다.
+  * [복제된 스테이트풀셋 애플리케이션 구동하기](/docs/tasks/run-application/run-replicated-stateful-application/) 예제를 따라한다.
+  * [스테이트풀셋 확장하기](/ko/docs/tasks/run-application/scale-stateful-set/)에 대해 배운다.
+  * [스테이트풀셋을 삭제하면](/ko/docs/tasks/run-application/delete-stateful-set/) 어떤 일이 수반되는지를 배운다.
+  * [스토리지의 볼륨을 사용하는 파드 구성](/ko/docs/tasks/configure-pod-container/configure-volume-storage/)을 하는 방법을 배운다.
+  * [스토리지로 퍼시스턴트볼륨(PersistentVolume)을 사용하도록 파드 설정](/ko/docs/tasks/configure-pod-container/configure-persistent-volume-storage/)하는 방법을 배운다.
+* `StatefulSet`은 쿠버네티스 REST API의 상위-수준 리소스이다.
+  스테이트풀셋 API에 대해 이해하기 위해 
+  {{< api-reference page="workload-resources/stateful-set-v1" >}} 오브젝트 정의를 읽는다.
+* [PodDisruptionBudget](/ko/docs/concepts/workloads/pods/disruptions/)과
+  이를 사용해서 어떻게 중단 중에 애플리케이션 가용성을 관리할 수 있는지에 대해 읽는다.
diff --git a/content/ko/docs/concepts/workloads/controllers/ttlafterfinished.md b/content/ko/docs/concepts/workloads/controllers/ttlafterfinished.md
index 4703b63b4a..4923afadd0 100644
--- a/content/ko/docs/concepts/workloads/controllers/ttlafterfinished.md
+++ b/content/ko/docs/concepts/workloads/controllers/ttlafterfinished.md
@@ -1,51 +1,48 @@
 ---
-title: 완료된 리소스를 위한 TTL 컨트롤러
+
+
+title: 완료된 잡 자동 정리
 content_type: concept
 weight: 70
 ---
 
 <!-- overview -->
 
-{{< feature-state for_k8s_version="v1.21" state="beta" >}}
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
 
-TTL 컨트롤러는 실행이 완료된 리소스 오브젝트의 수명을
-제한하는 TTL (time to live) 메커니즘을 제공한다. TTL 컨트롤러는 현재
-{{< glossary_tooltip text="잡(Job)" term_id="job" >}}만
-처리하며, 파드와 커스텀 리소스와 같이 실행을 완료할 다른 리소스를
-처리하도록 확장될 수 있다.
-
-이 기능은 현재 베타이고 기본적으로 활성화되어 있다. 
-kube-apiserver와 kube-controller-manager에서 `TTLAfterFinished` 
-[기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 이용하여 비활성화할 수 있다.
+완료-이후-TTL(TTL-after-finished) {{<glossary_tooltip text="컨트롤러" term_id="controller">}}는 
+실행이 완료된 리소스 오브젝트의 수명을 제한하는 
+TTL (time to live) 메커니즘을 제공한다. 
+TTL 컨트롤러는 {{< glossary_tooltip text="잡" term_id="job" >}}만을 제어한다.
 
 <!-- body -->
 
-## TTL 컨트롤러
+## 완료-이후-TTL 컨트롤러
 
-현재의 TTL 컨트롤러는 잡만 지원한다. 클러스터 운영자는
+완료-이후-TTL 컨트롤러는 잡만을 지원한다. 클러스터 운영자는
 [예시](/ko/docs/concepts/workloads/controllers/job/#완료된-잡을-자동으로-정리)
 와 같이 `.spec.ttlSecondsAfterFinished` 필드를 명시하여
 완료된 잡(`완료` 또는 `실패`)을 자동으로 정리하기 위해 이 기능을 사용할 수 있다.
-리소스의 작업이 완료된 TTL 초(sec) 후 (다른 말로는, TTL이 만료되었을 때),
-TTL 컨트롤러는 해당 리소스가 정리될 수 있다고 가정한다.
-TTL 컨트롤러가 리소스를 정리할때 리소스를 연속적으로 삭제한다. 이는
-의존하는 오브젝트도 해당 리소스와 함께 삭제되는 것을 의미한다. 리소스가 삭제되면 완료자(finalizers)와
+잡의 작업이 완료된 TTL 초(sec) 후 (다른 말로는, TTL이 만료되었을 때),
+완료-이후-TTL 컨트롤러는 해당 잡이 정리될 수 있다고 가정한다.
+완료-이후-TTL 컨트롤러가 잡을 정리할때 잡을 연속적으로 삭제한다. 이는
+의존하는 오브젝트도 해당 잡과 함께 삭제되는 것을 의미한다. 잡이 삭제되면 완료자(finalizers)와
 같은 라이프 사이클 보증이 적용 된다.
 
 TTL 초(sec)는 언제든지 설정이 가능하다. 여기에 잡 필드 중
 `.spec.ttlSecondsAfterFinished` 를 설정하는 몇 가지 예시가 있다.
 
 * 작업이 완료된 다음, 일정 시간 후에 자동으로 잡이 정리될 수 있도록
-  리소스 메니페스트에 이 필드를 지정한다.
-* 이미 완료된 기존 리소스에 이 새 기능을 적용하기 위해서 이 필드를
+  잡 메니페스트에 이 필드를 지정한다.
+* 이미 완료된 기존 잡에 이 새 기능을 적용하기 위해서 이 필드를
   설정한다.
 * [어드미션 웹후크 변형](/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks)
   을 사용해서
-  리소스 생성시 이 필드를 동적으로 설정 한다. 클러스터 관리자는 이것을
-  사용해서 완료된 리소스에 대해 TTL 정책을 적용할 수 있다.
-* 리소스가 완료된 이후에
+  잡 생성시 이 필드를 동적으로 설정 한다. 클러스터 관리자는 이것을
+  사용해서 완료된 잡에 대해 TTL 정책을 적용할 수 있다.
+* 잡이 완료된 이후에
   [어드미션 웹후크 변형](/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks)
-  을 사용해서 이 필드를 동적으로 설정하고, 리소스의 상태,
+  을 사용해서 이 필드를 동적으로 설정하고, 잡의 상태,
   레이블 등에 따라 다른 TTL 값을 선택한다.
 
 ## 경고
@@ -53,21 +50,19 @@ TTL 초(sec)는 언제든지 설정이 가능하다. 여기에 잡 필드 중
 ### TTL 초(sec) 업데이트
 
 TTL 기간은, 예를 들어 잡의 `.spec.ttlSecondsAfterFinished` 필드는
-리소스를 생성하거나 완료한 후에 수정할 수 있다. 그러나, 잡을
+잡을 생성하거나 완료한 후에 수정할 수 있다. 그러나, 잡을
 삭제할 수 있게 되면(TTL이 만료된 경우) 시스템은 TTL을 연장하기
 위한 업데이트가 성공적인 API 응답을 리턴하더라도
 작업이 유지되도록 보장하지 않는다.
 
 ### 시간 차이(Skew)
 
-TTL 컨트롤러는 쿠버네티스 리소스에
+완료-이후-TTL 컨트롤러는 쿠버네티스 잡에
 저장된 타임스탬프를 사용해서 TTL의 만료 여부를 결정하기 때문에, 이 기능은 클러스터 간의
-시간 차이에 민감하며, 시간 차이에 의해서 TTL 컨트롤러가 잘못된 시간에 리소스
+시간 차이에 민감하며, 시간 차이에 의해서 완료-이후-TTL 컨트롤러가 잘못된 시간에 잡
 오브젝트를 정리하게 될 수 있다.
 
-쿠버네티스에서는 시간 차이를 피하기 위해 모든 노드
-([#6159](https://github.com/kubernetes/kubernetes/issues/6159#issuecomment-93844058)를 본다)
-에서 NTP를 실행해야 한다. 시계가 항상 정확한 것은 아니지만, 그 차이는
+시계가 항상 정확한 것은 아니지만, 그 차이는
 아주 작아야 한다. 0이 아닌 TTL을 설정할때는 이 위험에 대해 유의해야 한다.
 
 
diff --git a/content/ko/docs/concepts/workloads/pods/_index.md b/content/ko/docs/concepts/workloads/pods/_index.md
index 22b98b705c..ce0c620392 100644
--- a/content/ko/docs/concepts/workloads/pods/_index.md
+++ b/content/ko/docs/concepts/workloads/pods/_index.md
@@ -48,6 +48,21 @@ _파드_ (고래 떼(pod of whales)나 콩꼬투리(pea pod)와 마찬가지로)
 
 ## 파드의 사용
 
+다음은 `nginx:1.14.2` 이미지를 실행하는 컨테이너로 구성되는 파드의 예시이다.
+
+{{< codenew file="pods/simple-pod.yaml" >}}
+
+위에서 설명한 파드를 생성하려면, 다음 명령을 실행한다.
+```shell
+kubectl apply -f https://k8s.io/examples/pods/simple-pod.yaml
+```
+
+일반적으로 파드는 직접 생성하지는 않으며, 대신 워크로드 리소스를 사용하여 생성한다.
+[파드 작업](#파드-작업) 섹션에서 파드와 워크로드 리소스의 관계에 대한 
+더 많은 정보를 확인한다.
+
+### Workload resources for managing pods
+
 일반적으로 싱글톤(singleton) 파드를 포함하여 파드를 직접 만들 필요가 없다. 대신, {{< glossary_tooltip text="디플로이먼트(Deployment)"
 term_id="deployment" >}} 또는 {{< glossary_tooltip text="잡(Job)" term_id="job" >}}과 같은 워크로드 리소스를 사용하여 생성한다.
 파드가 상태를 추적해야 한다면,
@@ -97,12 +112,12 @@ term_id="deployment" >}} 또는 {{< glossary_tooltip text="잡(Job)" term_id="jo
 공유 볼륨의 파일에 대한 웹 서버 역할을 하는 컨테이너와, 원격 소스에서 해당 파일을 업데이트하는
 별도의 "사이드카" 컨테이너가 있을 수 있다.
 
-{{< figure src="/images/docs/pod.svg" alt="예제 파드 다이어그램" width="50%" >}}
+{{< figure src="/images/docs/pod.svg" alt="파드 생성 다이어그램" class="diagram-medium" >}}
 
 일부 파드에는 {{< glossary_tooltip text="앱 컨테이너" term_id="app-container" >}} 뿐만 아니라 {{< glossary_tooltip text="초기화 컨테이너" term_id="init-container" >}}를 갖고 있다. 초기화 컨테이너는 앱 컨테이너가 시작되기 전에 실행되고 완료된다.
 
 파드는 기본적으로 파드에 속한 컨테이너에 [네트워킹](#파드-네트워킹)과 [스토리지](#pod-storage)라는
-두 가지 종류의 공유 ​​리소스를 제공한다.
+두 가지 종류의 공유 리소스를 제공한다.
 
 ## 파드 작업
 
@@ -165,7 +180,7 @@ spec:
     spec:
       containers:
       - name: hello
-        image: busybox
+        image: busybox:1.28
         command: ['sh', '-c', 'echo "Hello, Kubernetes!" && sleep 3600']
       restartPolicy: OnFailure
     # 여기까지 파드 템플릿이다
@@ -236,20 +251,19 @@ spec:
 
 ### 파드 네트워킹
 
-각 파드에는 각 주소 패밀리에 대해 고유한 IP 주소가 할당된다. 파드의
-모든 컨테이너는 IP 주소와 네트워크 포트를 포함하여 네트워크 네임스페이스를
-공유한다. 파드 내부(그때 **만** 해당)에서, 파드에 속한
-컨테이너는 `localhost` 를 사용하여 서로 통신할 수 있다. 파드의 컨테이너가
-*파드 외부의* 엔티티와 통신할 때,
-공유 네트워크 리소스(포트와 같은)를 사용하는 방법을 조정해야 한다.
-파드 내에서 컨테이너는 IP 주소와 포트 공간을 공유하며,
-`localhost` 를 통해 서로를 찾을 수 있다. 파드의 컨테이너는 SystemV 세마포어 또는
-POSIX 공유 메모리와 같은 표준 프로세스 간 통신을 사용하여 서로
-통신할 수도 있다. 다른 파드의 컨테이너는
-고유한 IP 주소를 가지며
-[특별한 구성](/ko/docs/concepts/policy/pod-security-policy/) 없이 IPC로 통신할 수 없다.
-다른 파드에서 실행되는 컨테이너와 상호 작용하려는 컨테이너는 IP 네트워킹을
-사용하여 통신할 수 있다.
+각 파드에는 각 주소 패밀리에 대해 고유한 IP 주소가 할당된다. 
+파드의 모든 컨테이너는 네트워크 네임스페이스를 공유하며, 
+여기에는 IP 주소와 네트워크 포트가 포함된다. 
+파드 내부(이 경우에 **만** 해당)에서, 파드에 속한 컨테이너는 
+`localhost` 를 사용하여 서로 통신할 수 있다. 
+파드의 컨테이너가 *파드 외부의* 엔티티와 통신할 때, 
+공유 네트워크 리소스(포트와 같은)를 사용하는 방법을 조정해야 한다. 
+파드 내에서 컨테이너는 IP 주소와 포트 공간을 공유하며, 
+`localhost` 를 통해 서로를 찾을 수 있다. 
+파드의 컨테이너는 SystemV 세마포어 또는 POSIX 공유 메모리와 같은 
+표준 프로세스 간 통신을 사용하여 서로 통신할 수도 있다. 
+다른 파드의 컨테이너는 고유한 IP 주소를 가지며 특별한 구성 없이 OS 수준의 IPC로 통신할 수 없다. 
+다른 파드에서 실행되는 컨테이너와 상호 작용하려는 컨테이너는 IP 네트워킹을 사용하여 통신할 수 있다.
 
 파드 내의 컨테이너는 시스템 호스트명이 파드에 대해 구성된
 `name` 과 동일한 것으로 간주한다. [네트워킹](/ko/docs/concepts/cluster-administration/networking/) 섹션에 이에 대한
@@ -257,8 +271,9 @@ POSIX 공유 메모리와 같은 표준 프로세스 간 통신을 사용하여
 
 ## 컨테이너에 대한 특권 모드
 
-파드의 모든 컨테이너는 컨테이너 명세의 [보안 콘텍스트](/docs/tasks/configure-pod-container/security-context/)에 있는 `privileged` 플래그를 사용하여 특권 모드를 활성화할 수 있다. 이는 네트워크 스택 조작이나 하드웨어 장치 접근과 같은 운영 체제 관리 기능을 사용하려는 컨테이너에 유용하다.
-특권이 있는 컨테이너 내의 프로세스는 컨테이너 외부의 프로세스가 가지는 거의 동일한 권한을 가진다.
+리눅스에서, 파드의 모든 컨테이너는 컨테이너 명세의 [보안 컨텍스트](/docs/tasks/configure-pod-container/security-context/)에 있는 `privileged` (리눅스) 플래그를 사용하여 특권 모드를 활성화할 수 있다. 이는 네트워크 스택 조작이나 하드웨어 장치 접근과 같은 운영 체제 관리 기능을 사용하려는 컨테이너에 유용하다.
+
+클러스터가 `WindowsHostProcessContainers` 기능을 활성화하였다면, 파드 스펙의 보안 컨텍스트의 `windowsOptions.hostProcess` 에 의해 [윈도우 HostProcess 파드](/docs/tasks/configure-pod-container/create-hostprocess-pod)를 생성할 수 있다. 이러한 모든 컨테이너는 윈도우 HostProcess 컨테이너로 실행해야 한다. HostProcess 파드는 직접적으로 호스트에서 실행하는 것으로, 리눅스 특권있는 컨테이너에서 수행되는 관리 태스크 수행에도 사용할 수 있다. 파드의 모든 컨테이너는 윈도우 HostProcess 컨테이너로 반드시 실행해야 한다. HostProcess 파드는 호스트에서 직접 실행되며 리눅스 특권있는 컨테이너에서 수행되는 것과 같은 관리 작업을 수행하는데도 사용할 수 있다.
 
 {{< note >}}
 이 설정을 사용하려면 사용자의 {{< glossary_tooltip text="컨테이너 런타임" term_id="container-runtime" >}}이 특권이 있는 컨테이너의 개념을 지원해야 한다.
@@ -282,6 +297,24 @@ kubelet은 자동으로 각 정적 파드에 대한 쿠버네티스 API 서버
 즉, 노드에서 실행되는 파드는 API 서버에서 보이지만,
 여기에서 제어할 수는 없다는 의미이다.
 
+{{< note >}}
+스태틱 파드의 `스펙(spec)`은 다른 API 오브젝트
+(예를 들면, {{< glossary_tooltip text="서비스어카운트" term_id="service-account" >}},
+{{< glossary_tooltip text="컨피그맵" term_id="configmap" >}},
+{{< glossary_tooltip text="시크릿" term_id="secret" >}}, 등)가 참조할 수 없다.
+{{< /note >}}
+
+## 컨테이너 프로브
+
+_프로브_는 컨테이너의 kubelet에 의해 주기적으로 실행되는 진단이다. 진단을 수행하기 위하여 kubelet은 다음과 같은 작업을 호출할 수 있다.
+
+- `ExecAction` (컨테이너 런타임의 도움을 받아 수행)
+- `TCPSocketAction` (kubelet에 의해 직접 검사)
+- `HTTPGetAction` (kubelet에 의해 직접 검사)
+
+[프로브](/ko/docs/concepts/workloads/pods/pod-lifecycle/#컨테이너-프로브-probe)에 대한 자세한 내용은
+파드 라이프사이클 문서를 참고한다.
+
 ## {{% heading "whatsnext" %}}
 
 * [파드의 라이프사이클](/ko/docs/concepts/workloads/pods/pod-lifecycle/)에 대해 알아본다.
@@ -290,9 +323,9 @@ kubelet은 자동으로 각 정적 파드에 대한 쿠버네티스 API 서버
 * [파드 토폴로지 분배 제약 조건](/ko/docs/concepts/workloads/pods/pod-topology-spread-constraints/)에 대해 읽어본다.
 * [PodDisruptionBudget](/ko/docs/concepts/workloads/pods/disruptions/)과 이를 사용하여 서비스 중단 중에 애플리케이션 가용성을 관리하는 방법에 대해 읽어본다.
 * 파드는 쿠버네티스 REST API의 최상위 리소스이다.
-  [파드](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#pod-v1-core)
+  {{< api-reference page="workload-resources/pod-v1" >}}
   오브젝트 정의는 오브젝트를 상세히 설명한다.
-* [분산 시스템 툴킷: 컴포지트 컨테이너에 대한 패턴](https://kubernetes.io/blog/2015/06/the-distributed-system-toolkit-patterns)은 둘 이상의 컨테이너가 있는 파드의 일반적인 레이아웃을 설명한다.
+* [분산 시스템 툴킷: 컴포지트 컨테이너에 대한 패턴](/blog/2015/06/the-distributed-system-toolkit-patterns/)은 둘 이상의 컨테이너가 있는 파드의 일반적인 레이아웃을 설명한다.
 
 쿠버네티스가 다른 리소스({{< glossary_tooltip text="스테이트풀셋" term_id="statefulset" >}}이나 {{< glossary_tooltip text="디플로이먼트" term_id="deployment" >}}와 같은)에서 공통 파드 API를 래핑하는 이유에 대한 콘텍스트를 이해하기 위해서, 다음과 같은 선행 기술에 대해 읽어볼 수 있다.
 
diff --git a/content/ko/docs/concepts/workloads/pods/disruptions.md b/content/ko/docs/concepts/workloads/pods/disruptions.md
index 497d857d11..ad099f96c7 100644
--- a/content/ko/docs/concepts/workloads/pods/disruptions.md
+++ b/content/ko/docs/concepts/workloads/pods/disruptions.md
@@ -31,7 +31,7 @@ weight: 60
 - 클라우드 공급자 또는 하이퍼바이저의 오류로 인한 VM 장애
 - 커널 패닉
 - 클러스터 네트워크 파티션의 발생으로 클러스터에서 노드가 사라짐
-- 노드의 [리소스 부족](/docs/concepts/scheduling-eviction/node-pressure-eviction/)으로 파드가 축출됨
+- 노드의 [리소스 부족](/ko/docs/concepts/scheduling-eviction/node-pressure-eviction/)으로 파드가 축출됨
 
 리소스 부족을 제외한 나머지 조건은 대부분의 사용자가 익숙할 것이다.
 왜냐하면
@@ -71,7 +71,7 @@ weight: 60
 
 - 파드가 필요로 하는 [리소스를 요청](/ko/docs/tasks/configure-pod-container/assign-memory-resource/)하는지 확인한다.
 - 고가용성이 필요한 경우 애플리케이션을 복제한다.
-  (복제된 [스테이트리스](/docs/tasks/run-application/run-stateless-application-deployment/) 및
+  (복제된 [스테이트리스](/ko/docs/tasks/run-application/run-stateless-application-deployment/) 및
   [스테이트풀](/docs/tasks/run-application/run-replicated-stateful-application/) 애플리케이션에 대해 알아보기.)
 - 복제된 애플리케이션의 구동 시 훨씬 더 높은 가용성을 위해 랙 전체
   ([안티-어피니티](/ko/docs/concepts/scheduling-eviction/assign-pod-node/#파드간-어피니티와-안티-어피니티) 이용)
@@ -128,8 +128,8 @@ Eviction API는 한 번에 1개(2개의 파드가 아닌)의 파드의 자발적
 기반으로 계산한다. 컨트롤 플레인은 파드의 `.metadata.ownerReferences` 를 검사하여
 소유하는 워크로드 리소스를 발견한다.
 
-PDB는 [비자발적 중단](#자발적-중단과-비자발적-중단)이 발생하는 것을 막을 수는 없지만,
-버짓이 차감된다.
+[비자발적 중단](#자발적-중단과-비자발적-중단)은 PDB로는 막을 수 없지만, 
+버짓은 차감된다.
 
 애플리케이션의 롤링 업그레이드로 파드가 삭제되거나 사용할 수 없는 경우 중단 버짓에 영향을 준다.
 그러나 워크로드 리소스(디플로이먼트, 스테이트풀셋과 같은)는
diff --git a/content/ko/docs/concepts/workloads/pods/ephemeral-containers.md b/content/ko/docs/concepts/workloads/pods/ephemeral-containers.md
index 9aa9e9bf51..2700946a58 100644
--- a/content/ko/docs/concepts/workloads/pods/ephemeral-containers.md
+++ b/content/ko/docs/concepts/workloads/pods/ephemeral-containers.md
@@ -1,4 +1,7 @@
 ---
+
+
+
 title: 임시(Ephemeral) 컨테이너
 content_type: concept
 weight: 80
@@ -6,21 +9,12 @@ weight: 80
 
 <!-- overview -->
 
-{{< feature-state state="alpha" for_k8s_version="v1.16" >}}
-
-이 페이지는 임시 컨테이너에 대한 개요를 제공한다: 이 특별한 유형의 컨테이너는
-트러블 슈팅과 같은 사용자가 시작한 작업을 완료하기위해 기존 {{< glossary_tooltip text="파드" term_id="pod" >}} 에서
-임시적으로 실행된다. 사용자는 애플리케이션 빌드보다는 서비스를 점검할 때 임시
-컨테이너를 사용한다.
-
-{{< warning >}}
-임시 컨테이너는 초기 알파 상태이며,
-프로덕션 클러스터에는 적합하지 않다.
-[쿠버네티스 사용 중단(deprecation) 정책](/docs/reference/using-api/deprecation-policy/)에 따라
-이 알파 기능은 향후 크게 변경되거나, 완전히 제거될 수 있다.
-{{< /warning >}}
-
+{{< feature-state state="beta" for_k8s_version="v1.23" >}}
 
+이 페이지는 임시 컨테이너에 대한 개요를 제공한다. 
+이 특별한 유형의 컨테이너는 트러블슈팅과 같은 사용자가 시작한 작업을 완료하기 위해 
+기존 {{< glossary_tooltip text="파드" term_id="pod" >}}에서 임시적으로 실행된다. 
+임시 컨테이너는 애플리케이션을 빌드하는 경우보다는 서비스 점검과 같은 경우에 더 적합하다.
 
 <!-- body -->
 
@@ -72,119 +66,8 @@ API에서 특별한 `ephemeralcontainers` 핸들러를 사용해서 만들어지
 
 임시 컨테이너 사용 시 [프로세스 네임스페이스
 공유](/docs/tasks/configure-pod-container/share-process-namespace/)를
-활성화하면 다른 컨테이너 안의 프로세스를 보는데 도움이 된다.
+활성화하면 다른 컨테이너 안의 프로세스를 보는 데 도움이 된다.
 
-임시 컨테이너를 사용해서 문제를 해결하는 예시는
-[임시 디버깅 컨테이너로 디버깅하기]
-(/docs/tasks/debug-application-cluster/debug-running-pod/#ephemeral-container)를 참조한다.
+## {{% heading "whatsnext" %}}
 
-## 임시 컨테이너 API
-
-{{< note >}}
-이 섹션의 예시는 `EphemeralContainers` [기능
-게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)의
-활성화를 필요로 하고, 쿠버네티스 클라이언트와 서버는 v1.16 또는 이후의 버전이어야 한다.
-{{< /note >}}
-
-이 섹션의 예시는 임시 컨테이너가 어떻게 API에 나타나는지
-보여준다. 일반적으로 `kubectl debug` 또는
-다른 `kubectl` [플러그인](/ko/docs/tasks/extend-kubectl/kubectl-plugins/)을
-사용해서 API를 직접 호출하지 않고 이런 단계들을 자동화 한다.
-
-임시 컨테이너는 파드의 `ephemeralcontainers` 하위 리소스를
-사용해서 생성되며, `kubectl --raw` 를 사용해서 보여준다. 먼저
-`EphemeralContainers` 목록으로 추가하는 임시 컨테이너를 명시한다.
-
-```json
-{
-    "apiVersion": "v1",
-    "kind": "EphemeralContainers",
-    "metadata": {
-        "name": "example-pod"
-    },
-    "ephemeralContainers": [{
-        "command": [
-            "sh"
-        ],
-        "image": "busybox",
-        "imagePullPolicy": "IfNotPresent",
-        "name": "debugger",
-        "stdin": true,
-        "tty": true,
-        "terminationMessagePolicy": "File"
-    }]
-}
-```
-
-이미 실행중인 `example-pod` 에 임시 컨테이너를 업데이트 한다.
-
-```shell
-kubectl replace --raw /api/v1/namespaces/default/pods/example-pod/ephemeralcontainers  -f ec.json
-```
-
-그러면 새로운 임시 컨테이너 목록이 반환된다.
-
-```json
-{
-   "kind":"EphemeralContainers",
-   "apiVersion":"v1",
-   "metadata":{
-      "name":"example-pod",
-      "namespace":"default",
-      "selfLink":"/api/v1/namespaces/default/pods/example-pod/ephemeralcontainers",
-      "uid":"a14a6d9b-62f2-4119-9d8e-e2ed6bc3a47c",
-      "resourceVersion":"15886",
-      "creationTimestamp":"2019-08-29T06:41:42Z"
-   },
-   "ephemeralContainers":[
-      {
-         "name":"debugger",
-         "image":"busybox",
-         "command":[
-            "sh"
-         ],
-         "resources":{
-
-         },
-         "terminationMessagePolicy":"File",
-         "imagePullPolicy":"IfNotPresent",
-         "stdin":true,
-         "tty":true
-      }
-   ]
-}
-```
-
-사용자는 `kubectl describe` 를 사용해서 새로 만든 임시 컨테이너의 상태를 볼 수 있다.
-
-```shell
-kubectl describe pod example-pod
-```
-
-```
-...
-Ephemeral Containers:
-  debugger:
-    Container ID:  docker://cf81908f149e7e9213d3c3644eda55c72efaff67652a2685c1146f0ce151e80f
-    Image:         busybox
-    Image ID:      docker-pullable://busybox@sha256:9f1003c480699be56815db0f8146ad2e22efea85129b5b5983d0e0fb52d9ab70
-    Port:          <none>
-    Host Port:     <none>
-    Command:
-      sh
-    State:          Running
-      Started:      Thu, 29 Aug 2019 06:42:21 +0000
-    Ready:          False
-    Restart Count:  0
-    Environment:    <none>
-    Mounts:         <none>
-...
-```
-
-예시와 같이 `kubectl attach`, `kubectl exec`, 그리고 `kubectl logs` 를 사용해서
-다른 컨테이너와 같은 방식으로 새로운 임시 컨테이너와
-상호작용할 수 있다.
-
-```shell
-kubectl attach -it example-pod -c debugger
-```
+* [임시 컨테이너 디버깅하기](/ko/docs/tasks/debug/debug-application/debug-running-pod/#ephemeral-container)에 대해 알아보기.
diff --git a/content/ko/docs/concepts/workloads/pods/init-containers.md b/content/ko/docs/concepts/workloads/pods/init-containers.md
index c8c7055408..5e532fe5a9 100644
--- a/content/ko/docs/concepts/workloads/pods/init-containers.md
+++ b/content/ko/docs/concepts/workloads/pods/init-containers.md
@@ -32,12 +32,14 @@ weight: 40
 그러나, 만약 파드의 `restartPolicy` 를 절대 하지 않음(Never)으로 설정하고, 해당 파드를 시작하는 동안 초기화 컨테이너가 실패하면, 쿠버네티스는 전체 파드를 실패한 것으로 처리한다.
 
 컨테이너를 초기화 컨테이너로 지정하기 위해서는,
-파드 스펙에 앱 `containers` 배열과 나란히 `initContainers` 필드를
-[컨테이너](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core)
-타입 오브젝트들의 JSON 배열로서 추가한다.
-초기화 컨테이너의 상태는 `.status.initContainerStatuses` 필드를
-통해서 컨테이너 상태 배열로 반환된다
-(`.status.containerStatuses` 필드와 유사하게).
+[파드 스펙](/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodSpec)에 `initContainers` 필드를
+`container` 항목(앱 `container` 필드 및 내용과 유사한)들의 배열로서 추가한다.
+[컨테이너](/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container)에 대한 더 상세한 사항은
+API 레퍼런스를 참고한다.
+
+초기화 컨테이너의 상태는 컨테이너
+상태의 배열(`.status.containerStatuses` 필드와 유사)로 `.status.initContainerStatuses`
+필드에 반환된다.
 
 ### 일반적인 컨테이너와의 차이점
 
@@ -278,9 +280,11 @@ myapp-pod   1/1       Running   0          9m
 `readinessProbe` 가 사용되는 것을 금지한다. 초기화 컨테이너가 완료 상태와 준비성을
 구분해서 정의할 수 없기 때문이다. 이것은 유효성 검사 중에 시행된다.
 
-초기화 컨테이너들이 실패를
-영원히 지속하는 상황을 방지하기 위해서
-파드의 `activeDeadlineSeconds` 와 컨테이너의 `livenessProbe` 를 사용한다.
+초기화 컨테이너들이 실패를 영원히 지속하는 상황을 방지하기 위해서
+파드의 `activeDeadlineSeconds`를 사용한다.
+Active deadline은 초기화 컨테이너를 포함한다.
+그러나 팀에서 애플리케이션을 잡(job)으로 배포한 경우에만 `activeDeadlineSeconds`를 사용하길 추천한다. 왜냐하면, `activeDeadlineSeconds`는 초기화 컨테이너가 완료된 이후에도 영향을 주기 때문이다.
+이미 정상적으로 동작하고 있는 파드도 `activeDeadlineSeconds`를 설정한 경우 종료(killed)될 수 있다.
 
 파드 내의 각 앱과 초기화 컨테이너의 이름은 유일해야 한다. 어떤
 컨테이너가 다른 컨테이너와 같은 이름을 공유하는 경우 유효성 오류가 발생한다.
@@ -290,8 +294,9 @@ myapp-pod   1/1       Running   0          9m
 초기화 컨테이너에게 명령과 실행이 주어진 경우, 리소스 사용에 대한
 다음의 규칙이 적용된다.
 
-* 모든 컨테이너에 정의된 특정 리소스 요청량 또는 상한 중 가장
-  높은 것은 *유효한 초기화 요청량/상한* 이다.
+* 모든 컨테이너에 정의된 특정 리소스 요청량 또는 상한 중 
+  가장 높은 것은 *유효 초기화 요청량/상한* 이다. 리소스 제한이 지정되지 않은 리소스는 
+  이 *유효 초기화 요청량/상한*을 가장 높은 요청량/상한으로 간주한다.
 * 리소스를 위한 파드의 *유효한 초기화 요청량/상한* 은 다음 보다 더 높다.
   * 모든 앱 컨테이너의 리소스에 대한 요청량/상한의 합계
   * 리소스에 대한 유효한 초기화 요청량/상한
@@ -327,4 +332,4 @@ myapp-pod   1/1       Running   0          9m
 ## {{% heading "whatsnext" %}}
 
 * [초기화 컨테이너를 가진 파드 생성하기](/ko/docs/tasks/configure-pod-container/configure-pod-initialization/#초기화-컨테이너를-갖는-파드-생성)
-* [초기화 컨테이너 디버깅](/ko/docs/tasks/debug-application-cluster/debug-init-containers/) 알아보기
+* [초기화 컨테이너 디버깅](/ko/docs/tasks/debug/debug-application/debug-init-containers/) 알아보기
diff --git a/content/ko/docs/concepts/workloads/pods/pod-lifecycle.md b/content/ko/docs/concepts/workloads/pods/pod-lifecycle.md
index 010694409e..b5a83a7720 100644
--- a/content/ko/docs/concepts/workloads/pods/pod-lifecycle.md
+++ b/content/ko/docs/concepts/workloads/pods/pod-lifecycle.md
@@ -17,8 +17,8 @@ weight: 30
 결정한다.
 
 쿠버네티스 API에서 파드는 명세와 실제 상태를 모두 가진다.
-파드 오브젝트의 상태는 일련의 [파드 조건](#파드의-조건)으로 구성된다.
-사용자의 애플리케이션에 유용한 경우, 파드의 조건 데이터에
+파드 오브젝트의 상태는 일련의 [파드 컨디션](#파드의-컨디션)으로 구성된다.
+사용자의 애플리케이션에 유용한 경우, 파드의 컨디션 데이터에
 [사용자 정의 준비성 정보](#pod-readiness-gate)를 삽입할 수도 있다.
 
 파드는 파드의 수명 중 한 번만 [스케줄](/ko/docs/concepts/scheduling-eviction/)된다.
@@ -55,7 +55,7 @@ UID로 정의된 특정 파드는 다른 노드로 절대 "다시 스케줄"되
 생성되더라도, 관련된 그것(이 예에서는 볼륨)도 폐기되고
 새로 생성된다.
 
-{{< figure src="/images/docs/pod.svg" title="Pod diagram" width="50%" >}}
+{{< figure src="/images/docs/pod.svg" title="Pod diagram" class="diagram-medium" >}}
 
 *컨테이너 간의 공유 스토리지에 퍼시스턴트 볼륨을 사용하는 웹 서버와
 파일 풀러(puller)가 포함된 다중 컨테이너 파드이다.*
@@ -136,8 +136,8 @@ UID로 정의된 특정 파드는 다른 노드로 절대 "다시 스케줄"되
 쿼리하면, 이유와 종료 코드 그리고 해당 컨테이너의 실행 기간에 대한 시작과
 종료 시간이 표시된다.
 
-컨테이너에 구성된 `preStop` 훅이 있는 경우, 컨테이너가 `Terminated` 상태에 들어가기 전에
-실행된다.
+컨테이너에 구성된 `preStop` 훅이 있는 경우, 
+이 혹은 컨테이너가 `Terminated` 상태에 들어가기 전에 실행된다.
 
 ## 컨테이너 재시작 정책 {#restart-policy}
 
@@ -150,26 +150,26 @@ Never이다. 기본값은 Always이다.
 컨테이너를 재시작한다. 컨테이너가 10분 동안 아무런 문제없이 실행되면,
 kubelet은 해당 컨테이너의 재시작 백오프 타이머를 재설정한다.
 
-## 파드의 조건
+## 파드의 컨디션
 
 파드는 하나의 PodStatus를 가지며,
-그것은 파드가 통과했거나 통과하지 못한 조건에 대한
+그것은 파드가 통과했거나 통과하지 못한 
 [PodConditions](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podcondition-v1-core) 배열을 가진다.
 
 * `PodScheduled`: 파드가 노드에 스케줄되었다.
 * `ContainersReady`: 파드의 모든 컨테이너가 준비되었다.
 * `Initialized`: 모든 [초기화 컨테이너](/ko/docs/concepts/workloads/pods/init-containers/)가
-  성공적으로 시작되었다.
+  성공적으로 완료(completed)되었다.
 * `Ready`: 파드는 요청을 처리할 수 있으며 일치하는 모든 서비스의 로드
   밸런싱 풀에 추가되어야 한다.
 
 필드 이름              | 설명
 :--------------------|:-----------
-`type`               | 이 파드 조건의 이름이다.
-`status`             | 가능한 값이 "`True`", "`False`", 또는 "`Unknown`"으로, 해당 조건이 적용 가능한지 여부를 나타낸다.
-`lastProbeTime`      | 파드 조건이 마지막으로 프로브된 시간의 타임스탬프이다.
+`type`               | 이 파드 컨디션의 이름이다.
+`status`             | 가능한 값이 "`True`", "`False`", 또는 "`Unknown`"으로, 해당 컨디션이 적용 가능한지 여부를 나타낸다.
+`lastProbeTime`      | 파드 컨디션이 마지막으로 프로브된 시간의 타임스탬프이다.
 `lastTransitionTime` | 파드가 한 상태에서 다른 상태로 전환된 마지막 시간에 대한 타임스탬프이다.
-`reason`             | 조건의 마지막 전환에 대한 이유를 나타내는 기계가 판독 가능한 UpperCamelCase 텍스트이다.
+`reason`             | 컨디션의 마지막 전환에 대한 이유를 나타내는 기계가 판독 가능한 UpperCamelCase 텍스트이다.
 `message`            | 마지막 상태 전환에 대한 세부 정보를 나타내는 사람이 읽을 수 있는 메시지이다.
 
 
@@ -179,11 +179,11 @@ kubelet은 해당 컨테이너의 재시작 백오프 타이머를 재설정한
 
 애플리케이션은 추가 피드백 또는 신호를 PodStatus: _Pod readiness_
 와 같이 주입할 수 있다. 이를 사용하기 위해, kubelet이 파드의 준비성을 평가하기
-위한 추가적인 조건들을 파드의 `spec` 내 `readinessGate` 필드를 통해서 지정할 수 있다.
+위한 추가적인 컨디션들을 파드의 `spec` 내 `readinessGate` 필드를 통해서 지정할 수 있다.
 
 준비성 게이트는 파드에 대한 `status.condition` 필드의 현재
 상태에 따라 결정된다. 만약 쿠버네티스가 `status.conditions` 필드에서 해당하는
-조건을 찾지 못한다면, 그 조건의 상태는
+컨디션을 찾지 못한다면, 그 컨디션의 상태는
 기본 값인 "`False`"가 된다.
 
 여기 예제가 있다.
@@ -220,70 +220,100 @@ status:
 {{< glossary_tooltip term_id="operator-pattern" text="오퍼레이터">}}의
 `PATCH` 액션을 필요로 한다.
 [쿠버네티스 클라이언트 라이브러리](/ko/docs/reference/using-api/client-libraries/)를
-사용해서 파드 준비성에 대한 사용자 지정 파드 조건을 설정하는 코드를 작성할 수 있다.
+사용해서 파드 준비성에 대한 사용자 지정 파드 컨디션을 설정하는 코드를 작성할 수 있다.
 
-사용자 지정 조건을 사용하는 파드의 경우, 다음 두 조건이 모두 적용되는
+사용자 지정 컨디션을 사용하는 파드의 경우, 다음 두 컨디션이 모두 적용되는
 경우에 **만** 해당 파드가 준비된 것으로 평가된다.
 
 * 파드 내의 모든 컨테이너들이 준비 상태이다.
-* `readinessGates`에 지정된 모든 조건들이 `True` 이다.
+* `readinessGates`에 지정된 모든 컨디션들이 `True` 이다.
 
-파드의 컨테이너가 Ready 이나 적어도 한 개의 사용자 지정 조건이 빠졌거나 `False` 이면,
-kubelet은 파드의 [조건](#파드의-조건)을 `ContainerReady` 로 설정한다.
+파드의 컨테이너가 Ready 이나 적어도 한 개의 사용자 지정 컨디션이 빠졌거나 `False` 이면,
+kubelet은 파드의 [컨디션](#파드의-컨디션)을 `ContainerReady` 로 설정한다.
 
 ## 컨테이너 프로브(probe)
 
-[프로브](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#probe-v1-core)는
+_프로브_ 는
 컨테이너에서 [kubelet](/docs/reference/command-line-tools-reference/kubelet/)에 의해
 주기적으로 수행되는 진단(diagnostic)이다.
 진단을 수행하기 위해서,
-kubelet은 컨테이너에 의해서 구현된
-[핸들러](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#handler-v1-core)를 호출한다.
-핸들러에는 다음과 같이 세 가지 타입이 있다.
+kubelet은 컨테이너 안에서 코드를 실행하거나, 
+또는 네트워크 요청을 전송한다.
 
-* [ExecAction](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#execaction-v1-core)은
-  컨테이너 내에서 지정된 명령어를 실행한다.
+### 체크 메커니즘 {#probe-check-methods}
+
+프로브를 사용하여 컨테이너를 체크하는 방법에는 4가지가 있다.
+각 프로브는 다음의 4가지 메커니즘 중 단 하나만을 정의해야 한다.
+
+`exec`
+: 컨테이너 내에서 지정된 명령어를 실행한다.
   명령어가 상태 코드 0으로 종료되면 진단이 성공한 것으로 간주한다.
 
-* [TCPSocketAction](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#tcpsocketaction-v1-core)은
-  지정된 포트에서 컨테이너의 IP주소에 대해 TCP 검사를 수행한다.
-  포트가 활성화되어 있다면 진단이 성공한 것으로 간주한다.
+`grpc`
+: [gRPC](https://grpc.io/)를 사용하여 
+  원격 프로시저 호출을 수행한다. 
+  체크 대상이 [gRPC 헬스 체크](https://grpc.io/grpc/core/md_doc_health-checking.html)를 구현해야 한다. 
+  응답의 `status` 가 `SERVING` 이면 
+  진단이 성공했다고 간주한다. 
+  gRPC 프로브는 알파 기능이며 
+  `GRPCContainerProbe` [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 
+  활성화해야 사용할 수 있다.
 
-* [HTTPGetAction](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#httpgetaction-v1-core)은
-  지정한 포트 및 경로에서 컨테이너의 IP주소에
-  대한 HTTP `GET` 요청을 수행한다. 응답의 상태 코드가 200 이상 400 미만이면
+`httpGet`
+: 지정한 포트 및 경로에서 컨테이너의 IP주소에 대한
+  HTTP `GET` 요청을 수행한다. 
+  응답의 상태 코드가 200 이상 400 미만이면
   진단이 성공한 것으로 간주한다.
 
+`tcpSocket`
+: 지정된 포트에서 컨테이너의 IP주소에 대해 TCP 검사를 수행한다.
+  포트가 활성화되어 있다면 진단이 성공한 것으로 간주한다. 
+  원격 시스템(컨테이너)가 연결을 연 이후 즉시 닫는다면, 
+  이 또한 진단이 성공한 것으로 간주한다.
+
+### 프로브 결과
+
 각 probe는 다음 세 가지 결과 중 하나를 가진다.
 
-* `Success`: 컨테이너가 진단을 통과함.
-* `Failure`: 컨테이너가 진단에 실패함.
-* `Unknown`: 진단 자체가 실패하였으므로 아무런 액션도 수행되면 안됨.
+`Success`
+: 컨테이너가 진단을 통과함.
+
+`Failure`
+: 컨테이너가 진단에 실패함.
+
+`Unknown`
+: 진단 자체가 실패함(아무런 조치를 수행해서는 안 되며, kubelet이 
+  추가 체크를 수행할 것이다)
+
+### 프로브 종류
 
 kubelet은 실행 중인 컨테이너들에 대해서 선택적으로 세 가지 종류의 프로브를 수행하고
 그에 반응할 수 있다.
 
-* `livenessProbe`: 컨테이너가 동작 중인지 여부를 나타낸다. 만약
-   활성 프로브(liveness probe)에 실패한다면, kubelet은 컨테이너를 죽이고, 해당 컨테이너는
-   [재시작 정책](#restart-policy)의 대상이 된다. 만약 컨테이너가
-   활성 프로브를 제공하지 않는 경우, 기본 상태는 `Success`이다.
+`livenessProbe`
+: 컨테이너가 동작 중인지 여부를 나타낸다. 만약
+  활성 프로브(liveness probe)에 실패한다면, kubelet은 컨테이너를 죽이고, 해당 컨테이너는
+  [재시작 정책](#restart-policy)의 대상이 된다. 만약 컨테이너가
+  활성 프로브를 제공하지 않는 경우, 기본 상태는 `Success` 이다.
 
-* `readinessProbe`: 컨테이너가 요청을 처리할 준비가 되었는지 여부를 나타낸다.
-   만약 준비성 프로브(readiness probe)가 실패한다면, 엔드포인트 컨트롤러는
-   파드에 연관된 모든 서비스들의 엔드포인트에서 파드의 IP주소를 제거한다. 준비성 프로브의
-   초기 지연 이전의 기본 상태는 `Failure`이다. 만약 컨테이너가 준비성 프로브를
-   지원하지 않는다면, 기본 상태는 `Success`이다.
+`readinessProbe`
+: 컨테이너가 요청을 처리할 준비가 되었는지 여부를 나타낸다.
+  만약 준비성 프로브(readiness probe)가 실패한다면, 엔드포인트 컨트롤러는
+  파드에 연관된 모든 서비스들의 엔드포인트에서 파드의 IP주소를 제거한다. 준비성 프로브의
+  초기 지연 이전의 기본 상태는 `Failure` 이다. 만약 컨테이너가 준비성 프로브를
+  지원하지 않는다면, 기본 상태는 `Success` 이다.
 
-* `startupProbe`: 컨테이너 내의 애플리케이션이 시작되었는지를 나타낸다.
-   스타트업 프로브(startup probe)가 주어진 경우, 성공할 때까지 다른 나머지 프로브는
-   활성화되지 않는다. 만약 스타트업 프로브가 실패하면, kubelet이 컨테이너를 죽이고,
-   컨테이너는 [재시작 정책](#restart-policy)에 따라 처리된다. 컨테이너에 스타트업
-   프로브가 없는 경우, 기본 상태는 `Success`이다.
+`startupProbe`
+: 컨테이너 내의 애플리케이션이 시작되었는지를 나타낸다.
+  스타트업 프로브(startup probe)가 주어진 경우, 성공할 때까지 다른 나머지 프로브는
+  활성화되지 않는다. 만약 스타트업 프로브가 실패하면, kubelet이 컨테이너를 죽이고,
+  컨테이너는 [재시작 정책](#restart-policy)에 따라 처리된다. 컨테이너에 스타트업
+  프로브가 없는 경우, 기본 상태는 `Success` 이다.
 
 활성, 준비성 및 스타트업 프로브를 설정하는 방법에 대한 추가적인 정보는,
 [활성, 준비성 및 스타트업 프로브 설정하기](/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/)를 참조하면 된다.
 
-### 언제 활성 프로브를 사용해야 하는가?
+#### 언제 활성 프로브를 사용해야 하는가?
 
 {{< feature-state for_k8s_version="v1.0" state="stable" >}}
 
@@ -295,7 +325,7 @@ kubelet은 실행 중인 컨테이너들에 대해서 선택적으로 세 가지
 프로브가 실패한 후 컨테이너가 종료되거나 재시작되길 원한다면, 활성 프로브를
 지정하고, `restartPolicy`를 항상(Always) 또는 실패 시(OnFailure)로 지정한다.
 
-### 언제 준비성 프로브를 사용해야 하는가?
+#### 언제 준비성 프로브를 사용해야 하는가?
 
 {{< feature-state for_k8s_version="v1.0" state="stable" >}}
 
@@ -329,7 +359,7 @@ failed 애플리케이션과 시동 중에 아직 데이터를 처리하고 있
 남아 있다.
 {{< /note >}}
 
-### 언제 스타트업 프로브를 사용해야 하는가?
+#### 언제 스타트업 프로브를 사용해야 하는가?
 
 {{< feature-state for_k8s_version="v1.20" state="stable" >}}
 
@@ -379,7 +409,7 @@ TERM 대신 이 값을 보낸다.
    확인하는 즉시(정상적인 종료 기간이 설정됨), kubelet은 로컬 파드의 종료
    프로세스를 시작한다.
    1. 파드의 컨테이너 중 하나가 `preStop`
-      [훅](/ko/docs/concepts/containers/container-lifecycle-hooks/#hook-details)을 정의한 경우, kubelet은
+      [훅](/ko/docs/concepts/containers/container-lifecycle-hooks)을 정의한 경우, kubelet은
       컨테이너 내부에서 해당 훅을 실행한다. 유예 기간이 만료된 후 `preStop` 훅이
       계속 실행되면, kubelet은 2초의 작은 일회성 유예 기간 연장을
       요청한다.
@@ -433,7 +463,7 @@ API에서 즉시 파드를 제거하므로 동일한 이름으로 새로운 파
 작은 유예 기간이 계속 제공된다.
 
 스테이트풀셋(StatefulSet)의 일부인 파드를 강제 삭제해야 하는 경우,
-[스테이트풀셋에서 파드를 삭제하기](/docs/tasks/run-application/force-delete-stateful-set-pod/)에 대한
+[스테이트풀셋에서 파드를 삭제하기](/ko/docs/tasks/run-application/force-delete-stateful-set-pod/)에 대한
 태스크 문서를 참고한다.
 
 ### 실패한 파드의 가비지 콜렉션 {#pod-garbage-collection}
@@ -458,6 +488,6 @@ API에서 즉시 파드를 제거하므로 동일한 이름으로 새로운 파
 
 * [컨테이너 라이프사이클 훅](/ko/docs/concepts/containers/container-lifecycle-hooks/)에 대해 자세히 알아보자.
 
-* API의 파드 / 컨테이너 상태에 대한 자세한 내용은 [PodStatus](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podstatus-v1-core)
-그리고
-[ContainerStatus](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#containerstatus-v1-core)를 참고한다.
+* API의 파드와 컨테이너 상태에 대한 자세한 내용은 
+  파드의 [`.status`](/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodStatus)에 대해 다루는 
+  API 레퍼런스 문서를 참고한다.
diff --git a/content/ko/docs/concepts/workloads/pods/pod-topology-spread-constraints.md b/content/ko/docs/concepts/workloads/pods/pod-topology-spread-constraints.md
index 304471bb28..ee458256f5 100644
--- a/content/ko/docs/concepts/workloads/pods/pod-topology-spread-constraints.md
+++ b/content/ko/docs/concepts/workloads/pods/pod-topology-spread-constraints.md
@@ -4,21 +4,11 @@ content_type: concept
 weight: 40
 ---
 
-{{< feature-state for_k8s_version="v1.19" state="stable" >}}
-<!-- leave this shortcode in place until the note about EvenPodsSpread is
-obsolete -->
 
 <!-- overview -->
 
 사용자는 _토폴로지 분배 제약 조건_ 을 사용해서 지역, 영역, 노드 그리고 기타 사용자-정의 토폴로지 도메인과 같이 장애-도메인으로 설정된 클러스터에 걸쳐 파드가 분산되는 방식을 제어할 수 있다. 이를 통해 고가용성뿐만 아니라, 효율적인 리소스 활용의 목적을 이루는 데 도움이 된다.
 
-{{< note >}}
-v1.18 이전 버전의 쿠버네티스에서는 파드 토폴로지 분배 제약조건을 사용하려면
-[API 서버](/ko/docs/concepts/overview/components/#kube-apiserver)와
-[스케줄러](/docs/reference/command-line-tools-reference/kube-scheduler/)에서
-`EvenPodsSpread`[기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를
-활성화해야 한다
-{{< /note >}}
 
 <!-- body -->
 
@@ -58,7 +48,7 @@ graph TB
     class zoneA,zoneB cluster;
 {{< /mermaid >}}
 
-레이블을 수동으로 적용하는 대신에, 사용자는 대부분의 클러스터에서 자동으로 생성되고 채워지는 [잘-알려진 레이블](/docs/reference/labels-annotations-taints/)을 재사용할 수 있다.
+레이블을 수동으로 적용하는 대신에, 사용자는 대부분의 클러스터에서 자동으로 생성되고 채워지는 [잘 알려진 레이블](/ko/docs/reference/labels-annotations-taints/)을 재사용할 수 있다.
 
 ## 파드의 분배 제약 조건
 
@@ -83,16 +73,42 @@ spec:
 
 - **maxSkew** 는 파드가 균등하지 않게 분산될 수 있는 정도를 나타낸다.
   이것은 0보다는 커야 한다. 그 의미는 `whenUnsatisfiable` 의 값에 따라 다르다.
+
   - `whenUnsatisfiable` 이 "DoNotSchedule"과 같을 때, `maxSkew` 는
     대상 토폴로지에서 일치하는 파드 수와 전역 최솟값
-    (토폴로지 도메인에서 레이블 셀렉터와 일치하는 최소 파드 수. 예를 들어 3개의 영역에 각각 0, 2, 3개의 일치하는 파드가 있으면, 전역 최솟값은 0) 
+    (토폴로지 도메인에서 레이블 셀렉터와 일치하는 최소 파드 수. 
+    예를 들어 3개의 영역에 각각 0, 2, 3개의 일치하는 파드가 있으면, 
+    전역 최솟값은 0) 
     사이에 허용되는 최대 차이이다.
   - `whenUnsatisfiable` 이 "ScheduleAnyway"와 같으면, 스케줄러는
     왜곡을 줄이는데 도움이 되는 토폴로지에 더 높은 우선 순위를 부여한다.
+
+- **minDomains** 는 적합한(eligible) 도메인의 최소 수를 나타낸다. 
+  도메인은 토폴로지의 특정 인스턴스 중 하나이다. 
+  도메인의 노드가 노드 셀렉터에 매치되면 그 도메인은 적합한 도메인이다.
+
+  - `minDomains` 값을 명시하는 경우, 이 값은 0보다 커야 한다.
+  - 매치되는 토폴로지 키의 적합한 도메인 수가 `minDomains`보다 적으면, 
+    파드 토폴로지 스프레드는 "글로벌 미니멈"을 0으로 간주한 뒤, `skew` 계산이 수행된다. 
+    "글로벌 미니멈"은 적합한 도메인 내에 매치되는 파드의 최소 수 이며, 
+    적합한 도메인 수가 `minDomains`보다 적은 경우에는 0이다.
+  - 매치되는 토폴로지 키의 적합한 도메인 수가 `minDomains`보다 크거나 같으면, 
+    이 값은 스케줄링에 영향을 미치지 않는다.
+  - `minDomains`가 nil이면, 이 제약은 `minDomains`가 1인 것처럼 동작한다.
+  - `minDomains`가 nil이 아니면, `whenUnsatisfiable`의 값은 "`DoNotSchedule`"이어야 한다.
+
+  {{< note >}}
+  `minDomains` 필드는 1.24에서 추가된 알파 필드이다. 
+  이를 사용하려면 `MinDomainsInPodToplogySpread` 
+  [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를 활성화해야 한다.
+  {{< /note >}}
+
 - **topologyKey** 는 노드 레이블의 키다. 만약 두 노드가 이 키로 레이블이 지정되고, 레이블이 동일한 값을 가진다면 스케줄러는 두 노드를 같은 토폴로지에 있는것으로 여기게 된다. 스케줄러는 각 토폴로지 도메인에 균형잡힌 수의 파드를 배치하려고 시도한다.
+
 - **whenUnsatisfiable** 는 분산 제약 조건을 만족하지 않을 경우에 처리하는 방법을 나타낸다.
   - `DoNotSchedule` (기본값)은 스케줄러에 스케줄링을 하지 말라고 알려준다.
   - `ScheduleAnyway` 는 스케줄러에게 차이(skew)를 최소화하는 노드에 높은 우선 순위를 부여하면서, 스케줄링을 계속하도록 지시한다.
+
 - **labelSelector** 는 일치하는 파드를 찾는데 사용된다. 이 레이블 셀렉터와 일치하는 파드의 수를 계산하여 해당 토폴로지 도메인에 속할 파드의 수를 결정한다. 자세한 내용은 [레이블 셀렉터](/ko/docs/concepts/overview/working-with-objects/labels/#레이블-셀렉터)를 참조한다.
 
 파드에 2개 이상의 `topologySpreadConstraint`가 정의되어 있으면, 각 제약 조건은 AND로 연결된다 - kube-scheduler는 새로운 파드의 모든 제약 조건을 만족하는 노드를 찾는다.
@@ -230,7 +246,53 @@ graph BT
 
 이 상황을 극복하기 위해서는 사용자가 `maxSkew` 의 증가 또는 `whenUnsatisfiable: ScheduleAnyway` 를 사용하도록 제약 조건 중 하나를 수정할 수 있다.
 
-### 규칙
+### 노드 어피니티(Affinity) 및 노드 셀렉터(Selector)와의 상호 작용
+
+스케줄러는 신규 파드에 `spec.nodeSelector` 또는 `spec.affinity.nodeAffinity`가 정의되어 있는 경우, 부합하지 않는 노드들을 차이(skew) 계산에서 생략한다.
+
+### 예시: TopologySpreadConstraints와 노드 어피니티
+
+zoneA 에서 zoneC에 걸쳐있고, 5개의 노드를 가지는 클러스터가 있다고 가정한다.
+
+{{<mermaid>}}
+graph BT
+    subgraph "zoneB"
+        p3(Pod) --> n3(Node3)
+        n4(Node4)
+    end
+    subgraph "zoneA"
+        p1(Pod) --> n1(Node1)
+        p2(Pod) --> n2(Node2)
+    end
+
+classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+class n1,n2,n3,n4,p1,p2,p3 k8s;
+class p4 plain;
+class zoneA,zoneB cluster;
+{{< /mermaid >}}
+
+{{<mermaid>}}
+graph BT
+    subgraph "zoneC"
+        n5(Node5)
+    end
+
+classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+class n5 k8s;
+class zoneC cluster;
+{{< /mermaid >}}
+
+그리고 알다시피 "zoneC"는 제외해야 한다. 이 경우에, "mypod"가 "zoneC"가 아닌 "zoneB"에 배치되도록 yaml을 다음과 같이 구성할 수 있다. 마찬가지로 `spec.nodeSelector` 도 존중된다.
+
+{{< codenew file="pods/topology-spread-constraints/one-constraint-with-nodeaffinity.yaml" >}}
+
+스케줄러는 클러스터에 있는 모든 영역(zone) 또는 다른 토폴로지 도메인에 대한 사전 지식이 없다. 스케줄링은 클러스터의 기존 노드에서 결정된다. 노드 풀(또는 노드 그룹)이 0개의 노드로 스케일(scale)되고 사용자는 노드가 확장될 것으로 예상하는 경우, 자동 스케일되는 클러스터에서 문제가 발생할 수 있다. 이러한 토폴로지 도메인은 스케줄링에서 해당 도메인에 노드가 하나 이상 있을 때까지 고려되지 않을 것이기 때문이다.
+
+### 기타 눈에 띄는 의미(semantics)
 
 여기에 주목할만한 몇 가지 암묵적인 규칙이 있다.
 
@@ -243,46 +305,6 @@ graph BT
 
 - 들어오는 파드의 `topologySpreadConstraints[*].labelSelector` 와 자체 레이블과 일치하지 않을 경우 어떻게 되는지 알고 있어야 한다. 위의 예시에서, 만약 들어오는 파드의 레이블을 제거하더라도 여전히 제약 조건이 충족하기 때문에 "zoneB"에 배치할 수 있다. 그러나, 배치 이후에도 클러스터의 불균형 정도는 변경되지 않는다. - 여전히 zoneA는 {foo:bar} 레이블을 가지고 있는 2개의 파드를 가지고 있고, zoneB 도 {foo:bar}를 레이블로 가지는 파드 1개를 가지고 있다. 따라서 만약 예상과 다르면, 워크로드의 `topologySpreadConstraints[*].labelSelector` 가 자체 레이블과 일치하도록 하는 것을 권장한다.
 
-- 만약 신규 파드에 `spec.nodeSelector` 또는 `spec.affinity.nodeAffinity` 가 정의되어 있으면, 일치하지 않는 노드는 무시하게 된다.
-
-    zoneA 에서 zoneC에 걸쳐있고, 5개의 노드를 가지는 클러스터가 있다고 가정한다.
-
-    {{<mermaid>}}
-    graph BT
-        subgraph "zoneB"
-            p3(Pod) --> n3(Node3)
-            n4(Node4)
-        end
-        subgraph "zoneA"
-            p1(Pod) --> n1(Node1)
-            p2(Pod) --> n2(Node2)
-        end
-
-    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-    class n1,n2,n3,n4,p1,p2,p3 k8s;
-    class p4 plain;
-    class zoneA,zoneB cluster;
-    {{< /mermaid >}}
-
-    {{<mermaid>}}
-    graph BT
-        subgraph "zoneC"
-            n5(Node5)
-        end
-
-    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-    class n5 k8s;
-    class zoneC cluster;
-    {{< /mermaid >}}
-
-    그리고 알다시피 "zoneC"는 제외해야 한다. 이 경우에, "mypod"가 "zoneC"가 아닌 "zoneB"에 배치되도록 yaml을 다음과 같이 구성할 수 있다. 마찬가지로 `spec.nodeSelector` 도 존중된다.
-
-    {{< codenew file="pods/topology-spread-constraints/one-constraint-with-nodeaffinity.yaml" >}}
-
 ### 클러스터 수준의 기본 제약 조건
 
 클러스터에 대한 기본 토폴로지 분배 제약 조건을 설정할 수 있다. 기본
@@ -300,11 +322,12 @@ graph BT
 예시 구성은 다음과 같다.
 
 ```yaml
-apiVersion: kubescheduler.config.k8s.io/v1beta1
+apiVersion: kubescheduler.config.k8s.io/v1beta3
 kind: KubeSchedulerConfiguration
 
 profiles:
-  - pluginConfig:
+  - schedulerName: default-scheduler
+    pluginConfig:
       - name: PodTopologySpread
         args:
           defaultConstraints:
@@ -315,21 +338,17 @@ profiles:
 ```
 
 {{< note >}}
-기본 스케줄링 제약 조건에 의해 생성된 점수는
-[`SelectorSpread` 플러그인](/ko/docs/reference/scheduling/config/#스케줄링-플러그인)에
-의해 생성된 점수와 충돌 할 수 있다.
-`PodTopologySpread` 에 대한 기본 제약 조건을 사용할 때 스케줄링 프로파일에서
-이 플러그인을 비활성화 하는 것을 권장한다.
+[`SelectorSpread` 플러그인](/ko/docs/reference/scheduling/config/#스케줄링-플러그인)은 
+기본적으로 비활성화되어 있다. 
+비슷한 효과를 얻기 위해 `PodTopologySpread`를 사용하는 것을 추천한다.
 {{< /note >}}
 
-#### 내부 기본 제약
+#### 내장 기본 제약 {#internal-default-constraints}
 
-{{< feature-state for_k8s_version="v1.20" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
-기본적으로 활성화된 `DefaultPodTopologySpread` 기능 게이트를 사용하면, 기존
-`SelectorSpread` 플러그인이 비활성화된다.
-kube-scheduler는 `PodTopologySpread` 플러그인 구성에 다음과 같은
-기본 토폴로지 제약 조건을 사용한다.
+파드 토폴로지 스프레딩에 대해 클러스터 수준의 기본 제약을 설정하지 않으면, 
+kube-scheduler는 다음과 같은 기본 토폴로지 제약을 설정한 것처럼 동작한다.
 
 ```yaml
 defaultConstraints:
@@ -341,16 +360,18 @@ defaultConstraints:
     whenUnsatisfiable: ScheduleAnyway
 ```
 
-또한, 같은 동작을 제공하는 레거시 `SelectorSpread` 플러그인이
-비활성화된다.
+또한, 같은 동작을 제공하는 레거시 `SelectorSpread` 플러그인은
+기본적으로 비활성화되어 있다.
 
 {{< note >}}
+`PodTopologySpread` 플러그인은 분배 제약 조건에 지정된 토폴로지 키가
+없는 노드에 점수를 매기지 않는다. 
+이로 인해 기본 토폴로지 제약을 사용하는 경우의 
+레거시 `SelectorSpread` 플러그인과는 기본 정책이 다를 수 있다.
+
 노드에 `kubernetes.io/hostname` 및 `topology.kubernetes.io/zone`
 레이블 세트 **둘 다**가 설정되지 않을 것으로 예상되는 경우, 쿠버네티스 기본값을 사용하는
 대신 자체 제약 조건을 정의한다.
-
-`PodTopologySpread` 플러그인은 분배 제약 조건에 지정된 토폴로지 키가
-없는 노드에 점수를 매기지 않는다.
 {{< /note >}}
 
 클러스터에 기본 파드 분배 제약 조건을 사용하지 않으려면,
@@ -358,11 +379,12 @@ defaultConstraints:
 `defaultConstraints` 를 비워두어 기본값을 비활성화할 수 있다.
 
 ```yaml
-apiVersion: kubescheduler.config.k8s.io/v1beta1
+apiVersion: kubescheduler.config.k8s.io/v1beta3
 kind: KubeSchedulerConfiguration
 
 profiles:
-  - pluginConfig:
+  - schedulerName: default-scheduler
+    pluginConfig:
       - name: PodTopologySpread
         args:
           defaultConstraints: []
diff --git a/content/ko/docs/contribute/_index.md b/content/ko/docs/contribute/_index.md
index dcb7a68f49..62b98b68d3 100644
--- a/content/ko/docs/contribute/_index.md
+++ b/content/ko/docs/contribute/_index.md
@@ -29,6 +29,8 @@ card:
 - 문서를 번역합니다.
 - 쿠버네티스 릴리스 주기에 맞추어 문서 부분을 관리하고 발행합니다.
 
+
+
 <!-- body -->
 
 ## 시작하기
@@ -44,19 +46,99 @@ card:
 문서에 참여하려면
 
 1. CNCF [Contributor License Agreement](https://github.com/kubernetes/community/blob/master/CLA.md)에 서명합니다.
-1. [문서 리포지터리](https://github.com/kubernetes/website)와 웹사이트의
+2. [문서 리포지터리](https://github.com/kubernetes/website)와 웹사이트의
    [정적 사이트 생성기](https://gohugo.io)를 숙지합니다.
-1. [풀 리퀘스트 열기](/ko/docs/contribute/new-content/open-a-pr/)와
+3. [풀 리퀘스트 열기](/ko/docs/contribute/new-content/open-a-pr/)와
    [변경 검토](/ko/docs/contribute/review/reviewing-prs/)의
    기본 프로세스를 이해하도록 합니다.
 
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
+
+{{< mermaid >}}
+flowchart TB
+subgraph third[PR 열기]
+direction TB
+U[ ] -.-
+Q[컨텐츠 향상시키기] --- N[컨텐츠 생성하기]
+N --- O[문서 번역하기]
+O --- P[K8s 릴리스 사이클의 문서 파트<br>관리/퍼블리싱하기]
+
+end
+
+subgraph second[리뷰]
+direction TB
+   T[ ] -.-
+   D[K8s/website<br>저장소 살펴보기] --- E[Hugo 정적 사이트<br>생성기 확인하기]
+   E --- F[기본 GitHub 명령어<br>이해하기]
+   F --- G[열려 있는 PR을 리뷰하기]
+end
+
+subgraph first[가입]
+    direction TB
+    S[ ] -.-
+    B[CNCF<br>Contributor<br>License Agreement<br>서명하기] --- C[sig-docs 슬랙 채널<br>가입하기] 
+    C --- V[kubernetes-sig-docs<br>메일링 리스트 가입하기]
+    V --- M[주간<br>sig-docs 회의/<br>슬랙 미팅 참여하기]
+end
+
+A([fa:fa-user 신규<br>기여자]) --> first
+A --> second
+A --> third
+A --> H[질문하세요!!!]
+
+
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class A,B,C,D,E,F,G,H,M,Q,N,O,P,V grey
+class S,T,U spacewhite
+class first,second,third white
+{{</ mermaid >}}
+그림 1. 신규 기여자를 위한 시작 가이드.
+
+그림 1은 신규 기여자를 위한 로드맵을 간략하게 보여줍니다. `가입` 및 `리뷰` 단계의 일부 또는 전체를 따를 수 있습니다. 이제 `PR 열기` 아래에 나열된 항목들을 수행하여 당신의 기여 목표를 달성할 수 있습니다. 다시 말하지만 질문은 언제나 환영입니다!
+
 일부 작업에는 쿠버네티스 조직에서 더 많은 신뢰와 더 많은 접근이 필요할 수 있습니다.
 역할과 권한에 대한 자세한 내용은
 [SIG Docs 참여](/ko/docs/contribute/participate/)를 봅니다.
 
 ## 첫 번째 기여
 
-- [기여 개요](/ko/docs/contribute/new-content/overview/)를 읽고
+몇 가지 단계를 미리 검토하여 첫 번째 기여를 준비할 수 있습니다. 그림 2는 각 단계를 설명하며, 그 다음에 세부 사항도 설명되어 있습니다.
+
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
+
+{{< mermaid >}}
+flowchart LR
+    subgraph second[첫 기여]
+    direction TB
+    S[ ] -.-
+    G[다른 K8s 멤버의 PR 리뷰하기] -->
+    A[K8s/website 이슈 리스트에서<br>good first issue 확인하기] --> B[PR을 여세요!!]
+    end
+    subgraph first[추천 준비 사항]
+    direction TB
+       T[ ] -.-
+       D[기여 개요 읽기] -->E[K8s 컨텐츠 및 <br>스타일 가이드 읽기]
+       E --> F[Hugo 페이지 컨텐츠 종류와<br>shortcode 숙지하기]
+    end
+    
+
+    first ----> second
+     
+
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class A,B,D,E,F,G grey
+class S,T spacewhite
+class first,second white
+{{</ mermaid >}}
+그림 2. 첫 기여를 위한 준비.
+
+- [기여 개요](/ko/docs/contribute/new-content/)를 읽고
   기여할 수 있는 다양한 방법에 대해 알아봅니다.
 - [`kubernetes/website` 이슈 목록](https://github.com/kubernetes/website/issues/)을
   확인하여 좋은 진입점이 되는 이슈를 찾을 수 있습니다.
@@ -92,10 +174,13 @@ SIG Docs는 여러가지 방법으로 의견을 나누고 있습니다.
   자신을 소개하세요!
 - 더 광범위한 토론이 이루어지고 공식적인 결정이 기록이 되는
   [`kubernetes-sig-docs` 메일링 리스트에 가입](https://groups.google.com/forum/#!forum/kubernetes-sig-docs) 하세요.
-- [주간 SIG Docs 화상 회의](https://github.com/kubernetes/community/tree/master/sig-docs)에 참여하세요. 회의는 항상 `#sig-docs` 에 발표되며 [쿠버네티스 커뮤니티 회의 일정](https://calendar.google.com/calendar/embed?src=cgnt364vd8s86hr2phapfjc6uk%40group.calendar.google.com&ctz=America/Los_Angeles)에 추가됩니다. [줌(Zoom) 클라이언트](https://zoom.us/download)를 다운로드하거나 전화를 이용하여 전화 접속해야 합니다.
+- 2주마다 열리는 [SIG Docs 화상 회의](https://github.com/kubernetes/community/tree/master/sig-docs)에 참여하세요. 회의는 항상 `#sig-docs` 에 공지되며 [쿠버네티스 커뮤니티 회의 일정](https://calendar.google.com/calendar/embed?src=cgnt364vd8s86hr2phapfjc6uk%40group.calendar.google.com&ctz=America/Los_Angeles)에 추가됩니다. [줌(Zoom) 클라이언트](https://zoom.us/download)를 다운로드하거나 전화를 이용하여 전화 접속해야 합니다.
+- 줌 화상 회의가 열리지 않은 경우, SIG Docs 비실시간 슬랙 스탠드업 회의에 참여하세요. 회의는 항상 `#sig-docs` 에 공지됩니다. 회의 공지 후 24시간까지 어느 스레드에나 기여할 수 있습니다.
 
 ## 다른 기여 방법들
 
 - [쿠버네티스 커뮤니티 사이트](/ko/community/)를 방문하십시오. 트위터 또는 스택 오버플로우에 참여하고, 현지 쿠버네티스 모임과 이벤트 등에 대해 알아봅니다.
-- [기여자 치트시트](https://github.com/kubernetes/community/tree/master/contributors/guide/contributor-cheatsheet)를 읽고 쿠버네티스 기능 개발에 참여합니다.
+- [기여자 치트시트](https://www.kubernetes.dev/docs/contributor-cheatsheet/)를 읽고 쿠버네티스 기능 개발에 참여합니다.
+- 쿠버네티스 기여자 사이트에서 [쿠버네티스 기여자](https://www.kubernetes.dev/)와 [추가적인 기여자 리소스](https://www.kubernetes.dev/resources/)에 대해 더 알아봅니다.
 - [블로그 게시물 또는 사례 연구](/docs/contribute/new-content/blogs-case-studies/)를 제출합니다.
+
diff --git a/content/ko/docs/contribute/advanced.md b/content/ko/docs/contribute/advanced.md
index 21337a785e..e40ebc71c1 100644
--- a/content/ko/docs/contribute/advanced.md
+++ b/content/ko/docs/contribute/advanced.md
@@ -8,13 +8,11 @@ weight: 98
 <!-- overview -->
 
 이 페이지에서는 당신이
-[새로운 콘텐츠에 기여](/ko/docs/contribute/new-content/overview)하고
+[새로운 콘텐츠에 기여](/ko/docs/contribute/new-content/)하고
 [다른 사람의 작업을 리뷰](/ko/docs/contribute/review/reviewing-prs/)하는 방법을
 이해한다고 가정한다. 또한 기여하기 위한 더 많은 방법에 대해 배울 준비가 되었다고 가정한다. 이러한
 작업 중 일부에는 Git 커맨드 라인 클라이언트와 다른 도구를 사용해야 한다.
 
-
-
 <!-- body -->
 
 ## 개선 제안
@@ -29,8 +27,8 @@ website 스타일, 풀 리퀘스트 리뷰와 병합
 프로세스 또는 문서 작성의 다른 측면을 개선하기 위한 아이디어가 있을 수 있다. 투명성을 극대화하려면,
 이러한 유형의 제안을 SIG Docs 회의나
 [kubernetes-sig-docs 메일링리스트](https://groups.google.com/forum/#!forum/kubernetes-sig-docs)에서 논의해야 한다.
-또한, 현재의 작업 방식과 과거의 결정이 왜 획기적인 변경을
-제안하기 전에 결정되었는지에 대한 맥락을 이해하는 데 실제로
+또한, 획기적인 변경을 제안하기 전에, 현재의 작업 방식과 과거의 결정이 
+어떻게 정해졌는지에 대한 맥락을 이해하는 데 실제로
 도움이 될 수 있다. 현재의 문서 작업이 어떻게 진행되는지에 대한 질문의
 답변을 얻는 가장 빠른 방법은 [kubernetes.slack.com](https://kubernetes.slack.com)의
 `#sig-docs` 슬랙 채널에 문의하는 것이다.
@@ -84,10 +82,11 @@ SIG Docs [승인자](/ko/docs/contribute/participate/roles-and-responsibilities/
 새로운 기여자 홍보대사의 책임은 다음과 같다.
 
 - [#sig-docs 슬랙 채널](https://kubernetes.slack.com)에서 새로운 기여자의 질문을 모니터링한다.
-- PR 랭글러와 협력하여 새로운 기여자에게 좋은 첫 이슈를 파악한다.
+- PR 랭글러와 협력하여 새로운 기여자에게 [좋은 첫 이슈](https://kubernetes.dev/docs/guide/help-wanted/#good-first-issue)를 파악한다.
 - 문서 리포지터리에 대한 처음 몇 번의 PR을 통해 새로운 기여자를 멘토링한다.
 - 새로운 기여자가 쿠버네티스 멤버가 되기 위해 필요한 보다 복잡한 PR을 작성하도록 지원한다.
 - 쿠버네티스 멤버 가입을 위해 [기여자를 후원](/ko/docs/contribute/advanced/#새로운-기여자-후원)한다.
+- 월간 미팅을 개최하여 새로운 기여자에게 도움을 주고 조언을 해 준다.
 
 현재 새로운 기여자 홍보대사는 각 SIG-Docs 회의와 [쿠버네티스 #sig-docs 채널](https://kubernetes.slack.com)에서 발표된다.
 
@@ -112,15 +111,13 @@ SIG Docs [리뷰어](/ko/docs/contribute/participate/roles-and-responsibilities/
 
 ## SIG 공동 의장으로 봉사
 
-SIG Docs [승인자](/ko/docs/contribute/participate/roles-and-responsibilities/#승인자)는
+SIG Docs [멤버](/ko/docs/contribute/participate/roles-and-responsibilities/#멤버)는
 SIG Docs의 공동 의장 역할을 할 수 있다.
 
 ### 전제 조건
 
-승인자는 공동 의장이 되려면 다음의 요구 사항을 충족해야 한다.
+쿠버네티스 멤버가 공동 의장이 되려면 다음의 요구 사항을 충족해야 한다.
 
-- 6개월 이상 SIG Docs 승인자로 활동한다.
-- [쿠버네티스 문서 릴리스 주도](/ko/docs/contribute/advanced/#쿠버네티스-릴리스를-위한-문서-조정) 또는 두 개의 릴리스에서 섀도잉을 수행한다.
 - SIG Docs 워크플로와 툴링을 이해한다(git, Hugo, 현지화, 블로그 하위 프로젝트).
 - [k/org의 팀](https://github.com/kubernetes/org/blob/master/config/kubernetes/sig-docs/teams.yaml),
   [k/community의 프로세스](https://github.com/kubernetes/community/tree/master/sig-docs),
@@ -128,6 +125,8 @@ SIG Docs의 공동 의장 역할을 할 수 있다.
   [SIG 아키텍처](https://github.com/kubernetes/community/tree/master/sig-architecture)의
   역할을 포함하여 다른 쿠버네티스 SIG와 리포지터리가 SIG Docs 워크플로에 미치는
   영향을 이해한다.
+  추가로, [쿠버네티스 문서 릴리스 프로세스](/ko/docs/contribute/advanced/#쿠버네티스-릴리스를-위한-문서-조정)가 어떻게 동작하는지 이해한다.
+- SIG Docs 커뮤니티에 이해 직접적으로 또는 lazy consensus(특정 기간 내에 아무런 의견이 없으면 통과)를 통해 승인된다.
 - 최소 6개월 동안 일주일에 5시간 이상(대부분 더)을 역할에 책임진다.
 
 ### 책임
diff --git a/content/ko/docs/contribute/generate-ref-docs/quickstart.md b/content/ko/docs/contribute/generate-ref-docs/quickstart.md
index 6855696b9d..775c7ed77a 100644
--- a/content/ko/docs/contribute/generate-ref-docs/quickstart.md
+++ b/content/ko/docs/contribute/generate-ref-docs/quickstart.md
@@ -6,7 +6,7 @@ weight: 40
 
 <!-- overview -->
 
-이 문서에서는 `update-imported-docs` 스크립트를 사용하여 
+이 문서에서는 `update-imported-docs.py` 스크립트를 사용하여 
 쿠버네티스 레퍼런스 문서를 생성하는 방법에 대해 설명한다. 
 이 스크립트는 특정 쿠버네티스 릴리스 버전에 대해 빌드 설정을 자동으로 수행하고 레퍼런스 문서를 생성한다.
 
@@ -39,7 +39,7 @@ git clone git@github.com:<your_github_username>/website.git
 
 ## `update-imported-docs` 스크립트 개요 {#Overview-of-update-imported-docs}
 
-`update-imported-docs` 스크립트는 `<web-base>/update-imported-docs/` 
+`update-imported-docs.py` 스크립트는 `<web-base>/update-imported-docs/` 
 디렉터리에 존재한다.
 
 이 스크립트는 다음 레퍼런스를 생성한다.
@@ -48,7 +48,7 @@ git clone git@github.com:<your_github_username>/website.git
 * `kubectl` 명령어 레퍼런스
 * 쿠버네티스 API 레퍼런스
 
-`update-imported-docs` 스크립트는 쿠버네티스 소스코드로부터 레퍼런스 문서를 
+`update-imported-docs.py` 스크립트는 쿠버네티스 소스코드로부터 레퍼런스 문서를 
 생성한다. 스크립트가 실행되면 개발 머신의 `/tmp` 디렉터리 아래에 임시 디렉터리를 
 생성하고, 이 임시 디렉터리 아래에 레퍼런스 문서 생성에 필요한 `kubernetes/kubernetes` 저장소와 
 `kubernetes-sigs/reference-docs` 저장소를 클론하며, 
@@ -69,7 +69,7 @@ git clone git@github.com:<your_github_username>/website.git
 `kubernetes-sigs/reference-docs/Makefile` 에 있는 Make 타겟들을 활용하여 빌드하는 일련의 과정이 명시되어 있다.
 `K8S_RELEASE` 환경 변수는 릴리스 버전을 결정한다.
 
-`update-imported-docs` 스크립트는 다음의 과정을 수행한다.
+`update-imported-docs.py` 스크립트는 다음의 과정을 수행한다.
 
 1. 환경설정 파일에 있는 관련 저장소를 클론한다. 
    레퍼런스 문서 생성을 위해 
@@ -114,7 +114,7 @@ repos:
 `generate-command` 필드의 내용은 수정하지 말아야 한다.
 대부분의 경우 `reference.yml` 을 직접 수정해야 할 필요는 없다.
 때때로, 업스트림 소스코드 업데이트 때문에 이 환경설정 파일을 수정해야 할 수도 있다. 
-(예: Golang 버전 의존성, 서드파티 라이브러리 변경 등)
+(예: Golang 버전 의존성, 써드파티 라이브러리 변경 등)
 만약 스크립트 사용 시 빌드 문제가 있다면, 
 [쿠버네티스 슬랙의 #sig-docs 채널](https://kubernetes.slack.com/archives/C1J0BPD2M)에서 SIG-Docs 팀에 문의하면 된다.
 
@@ -152,11 +152,11 @@ repos:
 
 ## `update-imported-docs` 도구 실행하기 {#Running-the-update-imported-docs-tool}
 
-다음과 같이 `update-imported-docs` 도구를 실행할 수 있다.
+다음과 같이 `update-imported-docs.py` 도구를 실행할 수 있다.
 
 ```shell
 cd <web-base>/update-imported-docs
-./update-imported-docs <configuration-file.yml> <release-version>
+./update-imported-docs.py <configuration-file.yml> <release-version>
 ```
 
 예를 들면 다음과 같다.
@@ -254,4 +254,3 @@ static/docs/reference/generated/kubernetes-api/{{< param "version" >}}/fonts/fon
 * [kubectl 명령어에 대한 레퍼런스 문서 생성하기](/docs/contribute/generate-ref-docs/kubectl/)
 * [쿠버네티스 API에 대한 레퍼런스 문서 생성하기](/docs/contribute/generate-ref-docs/kubernetes-api/)
 
-
diff --git a/content/ko/docs/contribute/localization_ko.md b/content/ko/docs/contribute/localization_ko.md
index e2e10f01cc..aee8873248 100644
--- a/content/ko/docs/contribute/localization_ko.md
+++ b/content/ko/docs/contribute/localization_ko.md
@@ -19,7 +19,7 @@ content_type: concept
 위한 팀 마일스톤과 개발 브랜치를 관리한다. 본 섹션은 한글화팀의 팀 마일스톤 관리에 특화된
 내용을 다룬다.
 
-한글화팀은 `master` 브랜치에서 분기한 개발 브랜치를 사용한다. 개발 브랜치 이름은 다음과 같은
+한글화팀은 `main` 브랜치에서 분기한 개발 브랜치를 사용한다. 개발 브랜치 이름은 다음과 같은
 구조를 갖는다.
 
 `dev-<소스 버전>-ko.<팀 마일스톤>`
@@ -46,7 +46,7 @@ content_type: concept
 - [CLA 서명 없음, 병합할 수 없음](https://github.com/kubernetes/website/pulls?q=is%3Aopen+is%3Apr+label%3A%22cncf-cla%3A+no%22+-label%3Ado-not-merge+label%3Alanguage%2Fko)
 - [LGTM 필요](https://github.com/kubernetes/website/pulls?utf8=%E2%9C%93&q=is%3Aopen+is%3Apr+-label%3Ado-not-merge+label%3Alanguage%2Fko+-label%3Algtm+)
 - [LGTM 보유, 문서 승인 필요](https://github.com/kubernetes/website/pulls?q=is%3Aopen+is%3Apr+-label%3Ado-not-merge+label%3Alanguage%2Fko+label%3Algtm)
-- [퀵윈(Quick Wins)](https://github.com/kubernetes/website/pulls?utf8=%E2%9C%93&q=is%3Apr+is%3Aopen+base%3Amaster+-label%3A%22do-not-merge%2Fwork-in-progress%22+-label%3A%22do-not-merge%2Fhold%22+label%3A%22cncf-cla%3A+yes%22+label%3A%22size%2FXS%22+label%3A%22language%2Fko%22+)
+- [퀵윈(Quick Wins)](https://github.com/kubernetes/website/pulls?utf8=%E2%9C%93&q=is%3Apr+is%3Aopen+base%3Amain+-label%3A%22do-not-merge%2Fwork-in-progress%22+-label%3A%22do-not-merge%2Fhold%22+label%3A%22cncf-cla%3A+yes%22+label%3A%22size%2FXS%22+label%3A%22language%2Fko%22+)
 
 팀 마일스톤 일정과 PR 랭글러는 커뮤니티 슬랙 내 [#kubernetes-docs-ko 채널](https://kubernetes.slack.com/archives/CA1MMR86S)에 공지된다.
 
@@ -221,7 +221,7 @@ API 오브젝트의 필드 이름, 파일 이름, 경로와 같은 내용은 독
 
 한글화 용어집의 개선(추가, 수정, 삭제 등)을 위한 과정은 다음과 같다.
 
-1. 컨트리뷰터가 개선이 필요한 용어을 파악하면, ISSUE를 생성하여 개선 필요성을 공유하거나 `master` 브랜치에
+1. 컨트리뷰터가 개선이 필요한 용어을 파악하면, ISSUE를 생성하여 개선 필요성을 공유하거나 `main` 브랜치에
 PR을 생성하여 개선된 용어를 제안한다.
 
 1. 개선 제안에 대한 논의는 ISSUE 및 PR을 통해서 이루어지며, 한글화팀 회의를 통해 확정한다.
diff --git a/content/ko/docs/contribute/new-content/_index.md b/content/ko/docs/contribute/new-content/_index.md
index 2a97dcca2c..9020b80f1f 100644
--- a/content/ko/docs/contribute/new-content/_index.md
+++ b/content/ko/docs/contribute/new-content/_index.md
@@ -1,4 +1,120 @@
 ---
 title: 새로운 콘텐츠 기여하기
+content_type: concept
+main_menu: true
 weight: 20
 ---
+
+
+
+<!-- overview -->
+
+이 섹션에는 새로운 콘텐츠를 기여하기 전에 알아야 할 정보가 
+있다.
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
+
+{{< mermaid >}}
+flowchart LR 
+    subgraph second[시작하기 전에]
+    direction TB
+    S[ ] -.-
+    A[CNCF CLA 서명하기] --> B[Git 브랜치 선택하기]
+    B --> C[한 PR에는 한 언어에 대한 변경사항만]
+    C --> F[기여자 도구 확인하기]
+    end
+    subgraph first[기여 기초]
+    direction TB
+       T[ ] -.-
+       D[문서를 마크다운으로 작성하고<br>Hugo로 사이트 빌드] --- E[GitHub에 있는 소스]
+       E --- G['/content/../docs' 폴더에<br>각 언어 컨텐츠가 있음]
+       G --- H[Hugo 페이지 컨텐츠 종류와<br>shortcode 숙지하기]
+    end
+    
+
+    first ----> second
+     
+
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class A,B,C,D,E,F,G,H grey
+class S,T spacewhite
+class first,second white
+{{</ mermaid >}}
+
+***Figure - Contributing new content preparation***
+
+The figure above depicts the information you should know
+prior to submitting new content. The information details follow.
+
+
+
+<!-- body -->
+
+## 기여에 대한 기본 사항
+
+- 마크다운(Markdown)으로 쿠버네티스 문서를 작성하고 
+  [Hugo](https://gohugo.io/)를 사용하여 쿠버네티스 사이트를 구축한다.
+- 쿠버네티스 문서는 마크다운 스펙으로 [CommonMark](https://commonmark.org/)를 사용한다.
+- 소스는 [GitHub](https://github.com/kubernetes/website)에 있다. 
+  쿠버네티스 문서는 `/content/ko/docs/` 에서 찾을 수 있다. 
+  일부 참조 문서는 `update-imported-docs/` 디렉터리의 스크립트를 이용하여 
+  자동으로 생성된다.
+- [페이지 콘텐츠 타입](/docs/contribute/style/page-content-types/)은 
+  Hugo에서 문서 콘텐츠가 표시되는 방식을 기술한다.
+- 쿠버네티스 문서 기여 시 [Docsy shortcodes](https://www.docsy.dev/docs/adding-content/shortcodes/) 또는 [custom Hugo shortcodes](/docs/contribute/style/hugo-shortcodes/)를 사용할 수 있다.
+- 표준 Hugo 단축코드(shortcode) 이외에도 설명서에서 여러
+  [사용자 정의 Hugo 단축코드](/docs/contribute/style/hugo-shortcodes/)를 사용하여 
+  콘텐츠 표시를 제어한다.
+- 문서 소스는 `/content/` 에서 여러 언어로 제공된다. 각
+  언어는 [ISO 639-1 표준](https://www.loc.gov/standards/iso639-2/php/code_list.php)에
+  의해 결정된 2문자 코드가 있는 자체 폴더가 있다. 예를 들어,
+  한글 문서의 소스는 `/content/ko/docs/` 에 저장된다.
+- 여러 언어로 문서화에 기여하거나 
+  새로운 번역을 시작하는 방법에 대한 자세한 내용은 
+  [현지화](/ko/docs/contribute/localization_ko/)를 참고한다.
+
+## 시작하기 전에 {#before-you-begin}
+
+### CNCF CLA 서명 {#sign-the-cla}
+
+모든 쿠버네티스 기여자는 **반드시** 
+[기여자 가이드](https://github.com/kubernetes/community/blob/master/contributors/guide/README.md)를 읽고 
+[기여자 라이선스 계약(CLA)에 서명](https://github.com/kubernetes/community/blob/master/CLA.md)해야 한다
+.
+
+CLA에 서명하지 않은 기여자의 풀 리퀘스트(pull request)는 자동 테스트에 실패한다. 
+제공한 이름과 이메일은 `git config` 에 있는 것과 일치해야 하며, 
+git 이름과 이메일은 CNCF CLA에 사용된 것과 
+일치해야 한다.
+
+### 사용할 Git 브랜치를 선택한다
+
+풀 리퀘스트를 열 때는, 작업의 기반이 되는 브랜치를 
+미리 알아야 한다.
+
+시나리오   | 브랜치
+:---------|:------------
+현재 릴리스의 기존 또는 새로운 영어 콘텐츠 | `main`
+기능 변경 릴리스의 콘텐츠 | `dev-<version>` 패턴을 사용하여 기능 변경이 있는 주 버전과 부 버전에 해당하는 브랜치. 예를 들어, `v{{< skew nextMinorVersion >}}` 에서 기능이 변경된 경우, ``dev-{{< skew nextMinorVersion >}}`` 에 문서 변경을 추가한다.
+다른 언어로된 콘텐츠(현지화) | 현지화 규칙을 사용. 자세한 내용은 [현지화 브랜치 전략](/docs/contribute/localization/#branching-strategy)을 참고한다.
+
+어떤 브랜치를 선택해야 할지 잘 모르는 경우 슬랙의 `#sig-docs` 에 문의한다.
+
+{{< note >}} 풀 리퀘스트를 이미 제출했는데 기본 브랜치가 잘못되었다는 것을 알게 되면,
+제출자(제출자인 여러분만)가 이를 변경할 수 있다.
+{{< /note >}}
+
+### PR 당 언어
+
+PR 당 하나의 언어로 풀 리퀘스트를 제한한다. 
+여러 언어로 동일한 코드 샘플을 동일하게 변경해야 하는 경우 
+각 언어마다 별도의 PR을 연다.
+
+## 기여자를 위한 도구들
+
+`kubernetes/website` 리포지터리의 
+[문서 기여자를 위한 도구](https://github.com/kubernetes/website/tree/main/content/en/docs/doc-contributor-tools) 
+디렉터리에는 기여 여정을 좀 더 순조롭게 도와주는 도구들이 포함되어 있다.
+
diff --git a/content/ko/docs/contribute/new-content/open-a-pr.md b/content/ko/docs/contribute/new-content/open-a-pr.md
index a1f0178b3c..0871800715 100644
--- a/content/ko/docs/contribute/new-content/open-a-pr.md
+++ b/content/ko/docs/contribute/new-content/open-a-pr.md
@@ -15,7 +15,7 @@ card:
 [새 기능 문서화](/docs/contribute/new-content/new-features/)를 참고한다.
 {{< /note >}}
 
-새 콘텐츠 페이지를 기여하거나 기존 콘텐츠 페이지를 개선하려면, 풀 리퀘스트(PR)를 연다. [시작하기 전에](/ko/docs/contribute/new-content/overview/#before-you-begin) 섹션의 모든 요구 사항을 준수해야 한다.
+새 콘텐츠 페이지를 기여하거나 기존 콘텐츠 페이지를 개선하려면, 풀 리퀘스트(PR)를 연다. [시작하기 전에](/ko/docs/contribute/new-content/#before-you-begin) 섹션의 모든 요구 사항을 준수해야 한다.
 
 변경 사항이 작거나, git에 익숙하지 않은 경우, [GitHub을 사용하여 변경하기](#github을-사용하여-변경하기)를 읽고 페이지를 편집하는 방법을 알아보자.
 
@@ -28,7 +28,40 @@ card:
 ## GitHub을 사용하여 변경하기
 
 git 워크플로에 익숙하지 않은 경우, 풀 리퀘스트를
-여는 쉬운 방법이 있다.
+여는 쉬운 방법이 있다. 아래의 그림은 각 단계를 보여주며, 상세사항은 그 아래에 나온다.
+
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
+
+{{< mermaid >}}
+flowchart LR
+A([fa:fa-user 신규<br>기여자]) --- id1[(K8s/Website<br>GitHub)]
+subgraph tasks[GitHub 상에서 변경하기]
+direction TB
+    0[ ] -.-
+    1[1. '페이지 편집' 누르기] --> 2[2. GitHub 마크다운<br>편집기로 편집하기]
+    2 --> 3[3. 'Propose file change'에<br>추가 내용 기재하기]
+
+end
+subgraph tasks2[ ]
+direction TB
+4[4. 'Propose changes' 누르기] --> 5[5. 'Create pull request' 누르기] --> 6[6. 'Open a pull request'에<br>추가 내용 기재하기]
+6 --> 7[7. 'Create pull request' 누르기] 
+end
+
+id1 --> tasks --> tasks2
+
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+classDef k8s fill:#326ce5,stroke:#fff,stroke-width:1px,color:#fff;
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class A,1,2,3,4,5,6,7 grey
+class 0 spacewhite
+class tasks,tasks2 white
+class id1 k8s
+{{</ mermaid >}}
+
+***그림 - GitHub 상에서 PR을 여는 단계***
 
 1.  이슈가 있는 페이지에서, 오른쪽 상단에 있는 연필 아이콘을 선택한다.
     페이지 하단으로 스크롤 하여 **페이지 편집하기** 를 선택할 수도 있다.
@@ -89,6 +122,37 @@ git에 익숙하거나, 변경 사항이 몇 줄보다 클 경우,
 
 컴퓨터에 [git](https://git-scm.com/book/en/v2/Getting-Started-Installing-Git)이 설치되어 있는지 확인한다. git UI 애플리케이션을 사용할 수도 있다.
 
+아래 그림은 로컬 포크에서 작업할 때의 단계를 나타낸다. 상세 사항도 소개되어 있다.
+
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
+
+{{< mermaid >}}
+flowchart LR
+1[K8s/website<br>저장소 포크하기] --> 2[로컬 클론 생성<br>및 upstream 설정]
+subgraph changes[당신의 변경사항]
+direction TB
+S[ ] -.-
+3[브랜치 생성<br>예: my_new_branch] --> 3a[텍스트 편집기로<br>변경사항 만들기] --> 4["Hugo (localhost:1313)<br>를 이용하거나<br>컨테이너 이미지를 빌드하여<br>변경사항을 로컬에서 미리보기"]
+end
+subgraph changes2[커밋 / 푸시]
+direction TB
+T[ ] -.-
+5[변경사항 커밋하기] --> 6[커밋을<br>origin/my_new_branch<br>로 푸시하기]
+end
+
+2 --> changes --> changes2
+
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+classDef k8s fill:#326ce5,stroke:#fff,stroke-width:1px,color:#fff;
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class 1,2,3,3a,4,5,6 grey
+class S,T spacewhite
+class changes,changes2 white
+{{</ mermaid >}}
+***그림 - 로컬 포크에서 변경 사항 작업하기***
+
 ### kubernetes/website 리포지터리 포크하기
 
 1. [`kubernetes/website`](https://github.com/kubernetes/website/) 리포지터리로 이동한다.
@@ -230,7 +294,6 @@ website의 컨테이너 이미지를 만들거나 Hugo를 로컬에서 실행할
 1.  로컬에서 이미지를 빌드한다.
 
       ```bash
-      make docker-image
       # docker 사용(기본값)
       make container-image
 
@@ -243,7 +306,6 @@ website의 컨테이너 이미지를 만들거나 Hugo를 로컬에서 실행할
 2. 로컬에서 `kubernetes-hugo` 이미지를 빌드한 후, 사이트를 빌드하고 서비스한다.
 
       ```bash
-      make docker-serve
       # docker 사용(기본값)
       make container-serve
 
@@ -291,6 +353,34 @@ website의 컨테이너 이미지를 만들거나 Hugo를 로컬에서 실행할
 
 ### 포크에서 kubernetes/website로 풀 리퀘스트 열기 {#open-a-pr}
 
+아래 그림은 당신의 포크에서 K8s/website 저장소로 PR을 여는 단계를 보여 준다. 상세 사항은 아래에 등장한다.
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
+
+{{< mermaid >}}
+flowchart LR
+subgraph first[ ]
+direction TB
+1[1. K8s/website 저장소로 이동] --> 2[2. 'New Pull Request' 클릭]
+2 --> 3[3. 'Compare across forks' 클릭]
+3 --> 4[4. 'head repository' 드롭다운 메뉴에서<br>당신의 포크 선택]
+end
+subgraph second [ ]
+direction TB
+5[5. 'compare' 드롭다운 메뉴에서<br>당신의 브랜치 선택] --> 6[6. 'Create Pull Request' 클릭]
+6 --> 7[7. PR 본문에 상세 설명 기재]
+7 --> 8[8. 'Create pull request' 클릭]
+end
+
+first --> second
+
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+class 1,2,3,4,5,6,7,8 grey
+class first,second white
+{{</ mermaid >}}
+***그림 - 당신의 포크에서 K8s/website 저장소로 PR을 여는 단계***
+
 1. 웹 브라우저에서 [`kubernetes/website`](https://github.com/kubernetes/website/) 리포지터리로 이동한다.
 2. **New Pull Request** 를 선택한다.
 3. **compare across forks** 를 선택한다.
@@ -305,7 +395,7 @@ website의 컨테이너 이미지를 만들거나 Hugo를 로컬에서 실행할
 
 8. **Create pull request** 버튼을 선택한다.
 
-  축하한다! 여러분의 풀 리퀘스트가 [풀 리퀘스트](https://github.com/kubernetes/website/pulls)에 열렸다.
+축하한다! 여러분의 풀 리퀘스트가 [풀 리퀘스트](https://github.com/kubernetes/website/pulls)에 열렸다.
 
 
 PR을 연 후, GitHub는 자동 테스트를 실행하고 [Netlify](https://www.netlify.com/)를 사용하여 미리보기를 배포하려고 시도한다.
@@ -416,7 +506,6 @@ PR을 연 후, GitHub는 자동 테스트를 실행하고 [Netlify](https://www.
 
     풀 리퀘스트에 더 이상 충돌이 표시되지 않는다.
 
-
 ### 커밋 스쿼시하기
 
 {{< note >}}
@@ -502,8 +591,6 @@ PR에 여러 커밋이 있는 경우, PR을 병합하기 전에 해당 커밋을
 느낌을 얻으려면 열린 이슈와 PR을 살펴보자. 이슈나 PR을 제출할 때
 가능한 한 상세하게 템플릿의 내용을 작성한다.
 
-
-
 ## {{% heading "whatsnext" %}}
 
 
diff --git a/content/ko/docs/contribute/new-content/overview.md b/content/ko/docs/contribute/new-content/overview.md
deleted file mode 100644
index 540f1e6c12..0000000000
--- a/content/ko/docs/contribute/new-content/overview.md
+++ /dev/null
@@ -1,65 +0,0 @@
----
-title: 새로운 콘텐츠 기여하기에 대한 개요
-linktitle: 개요
-content_type: concept
-main_menu: true
-weight: 5
----
-
-<!-- overview -->
-
-이 섹션에는 새로운 콘텐츠를 기여하기 전에 알아야 할 정보가 있다.
-
-
-
-
-<!-- body -->
-
-## 기여하기에 대한 기본
-
-- 마크다운(Markdown)으로 쿠버네티스 문서를 작성하고 [Hugo](https://gohugo.io/)를 사용하여 쿠버네티스 사이트를 구축한다.
-- 소스는 [GitHub](https://github.com/kubernetes/website)에 있다. 쿠버네티스 문서는 `/content/ko/docs/` 에서 찾을 수 있다. 일부 참조 문서는 `update-imported-docs/` 디렉터리의 스크립트에서 자동으로 생성된다.
-- [페이지 템플릿](/docs/contribute/style/page-content-types/)은 Hugo에서 문서 콘텐츠의 프리젠테이션을 제어한다.
-- 표준 Hugo 단축코드(shortcode) 이외에도 설명서에서 여러
-  [사용자 정의 Hugo 단축코드](/docs/contribute/style/hugo-shortcodes/)를 사용하여 콘텐츠 표시를 제어한다.
-- 문서 소스는 `/content/` 에서 여러 언어로 제공된다. 각
-  언어는 [ISO 639-1 표준](https://www.loc.gov/standards/iso639-2/php/code_list.php)에
-  의해 결정된 2문자 코드가 있는 자체 폴더가 있다. 예를 들어,
-  한글 문서의 소스는 `/content/ko/docs/` 에 저장된다.
-- 여러 언어로 문서화에 기여하거나 새로운 번역을 시작하는 방법에 대한 자세한 내용은 [현지화](/ko/docs/contribute/localization_ko/)를 참고한다.
-
-## 시작하기 전에 {#before-you-begin}
-
-### CNCF CLA 서명 {#sign-the-cla}
-
-모든 쿠버네티스 기여자는 **반드시** [기여자 가이드](https://github.com/kubernetes/community/blob/master/contributors/guide/README.md)를 읽고 [기여자 라이선스 계약(CLA)에 서명](https://github.com/kubernetes/community/blob/master/CLA.md)해야 한다.
-
-CLA에 서명하지 않은 기여자의 풀 리퀘스트(pull request)는 자동 테스트에 실패한다. 제공한 이름과 이메일은 `git config` 에 있는 것과 일치해야 하며, git 이름과 이메일은 CNCF CLA에 사용된 것과 일치해야 한다.
-
-### 사용할 Git 브랜치를 선택한다
-
-풀 리퀘스트를 열 때는, 작업의 기반이 되는 브랜치를 미리 알아야 한다.
-
-시나리오   | 브랜치
-:---------|:------------
-현재 릴리스의 기존 또는 새로운 영어 콘텐츠 | `main`
-기능 변경 릴리스의 콘텐츠 | `dev-<version>` 패턴을 사용하여 기능 변경이 있는 주 버전과 부 버전에 해당하는 브랜치. 예를 들어, `v{{< skew nextMinorVersion >}}` 에서 기능이 변경된 경우, ``dev-{{< skew nextMinorVersion >}}`` 에 문서 변경을 추가한다.
-다른 언어로된 콘텐츠(현지화) | 현지화 규칙을 사용. 자세한 내용은 [현지화 브랜치 전략](/docs/contribute/localization/#branching-strategy)을 참고한다.
-
-
-어떤 브랜치를 선택해야 할지 잘 모르는 경우 슬랙의 `#sig-docs` 에 문의한다.
-
-{{< note >}}
-풀 리퀘스트를 이미 제출했는데 기본 브랜치가 잘못되었다는 것을 알게 되면,
-제출자(제출자인 여러분만)가 이를 변경할 수 있다.
-{{< /note >}}
-
-### PR 당 언어
-
-PR 당 하나의 언어로 풀 리퀘스트를 제한한다. 여러 언어로 동일한 코드 샘플을 동일하게 변경해야 하는 경우 각 언어마다 별도의 PR을 연다.
-
-## 기여자를 위한 도구들
-
-`kubernetes/website` 리포지터리의 [문서 기여자를 위한 도구](https://github.com/kubernetes/website/tree/main/content/en/docs/doc-contributor-tools) 디렉터리에는 기여 여정이 좀 더 순조롭게 진행되도록 도와주는 도구들이 포함되어 있다.
-
-
diff --git a/content/ko/docs/contribute/participate/_index.md b/content/ko/docs/contribute/participate/_index.md
index c2d9aed771..9f874351b0 100644
--- a/content/ko/docs/contribute/participate/_index.md
+++ b/content/ko/docs/contribute/participate/_index.md
@@ -116,6 +116,6 @@ PR 소유자에게 조언하는데 활용된다.
 
 쿠버네티스 문서화에 기여하는 일에 대한 보다 많은 정보는 다음 문서를 참고한다.
 
-- [신규 콘텐츠 기여하기](/ko/docs/contribute/new-content/overview/)
+- [신규 콘텐츠 기여하기](/ko/docs/contribute/new-content/)
 - [콘텐츠 검토하기](/ko/docs/contribute/review/reviewing-prs/)
 - [문서 스타일 가이드](/ko/docs/contribute/style/)
diff --git a/content/ko/docs/contribute/participate/pr-wranglers.md b/content/ko/docs/contribute/participate/pr-wranglers.md
index 674696ee90..0bcffe84fa 100644
--- a/content/ko/docs/contribute/participate/pr-wranglers.md
+++ b/content/ko/docs/contribute/participate/pr-wranglers.md
@@ -26,9 +26,16 @@ PR 랭글러는 일주일 간 매일 다음의 일을 해야 한다.
   - 내용을 확인해야 하는 경우, PR에 코멘트를 달고 자세한 내용을 요청한다.
   - 관련 `sig/` 레이블을 할당한다.
   - 필요한 경우, 파일의 머리말(front matter)에 있는 `reviewers:` 블록의 리뷰어를 할당한다.
+  - PR에 `@kubernetes/<sig>-pr-reviews` 코멘트를 남겨 [SIG](https://github.com/kubernetes/community/blob/master/sig-list.md)에 리뷰를 요청할 수도 있다.
 - PR을 병합하려면 승인을 위한 `approve` 코멘트를 사용한다. 준비가 되면 PR을 병합한다.
   - 병합하기 전에 PR은 다른 멤버의 `/lgtm` 코멘트를 받아야 한다.
   - [스타일 지침]을 충족하지 않지만 기술적으로는 정확한 PR은 수락하는 것을 고려한다. 스타일 문제를 해결하는 `good first issue` 레이블의 새로운 이슈를 올리면 된다.
+  - [스타일 지침](/docs/contribute/style/style-guide/)을 충족하지 않지만 
+      기술적으로는 정확한 PR은 수락하는 쪽으로 고려한다. 
+      변경 사항을 승인하면, 스타일 이슈에 대한 새 이슈를 연다. 
+      보통 이러한 스타일 수정 이슈는 [좋은 첫 이슈](https://kubernetes.dev/docs/guide/help-wanted/#good-first-issue)로 지정할 수 있다.
+    - 스타일 수정 이슈를 좋은 첫 이슈로 표시하면 비교적 쉬운 작업을 공급하여 
+      새로운 기여자가 참여하는 것을 장려할 수 있다.
 
 ### 랭글러를 위해 도움이 되는 GitHub 쿼리
 
@@ -41,8 +48,7 @@ PR 랭글러는 일주일 간 매일 다음의 일을 해야 한다.
   CLA에 서명한 후 PR을 열 수 있음을 알린다.
   **작성자가 CLA에 서명하지 않은 PR은 리뷰하지 않는다!**
 - [LGTM 필요](https://github.com/kubernetes/website/pulls?q=is%3Aopen+is%3Apr+-label%3A%22cncf-cla%3A+no%22+-label%3Ado-not-merge%2Fwork-in-progress+-label%3Ado-not-merge%2Fhold+label%3Alanguage%2Fen+-label%3Algtm):
-  멤버의 LGTM이 필요한 PR을 나열한다. PR에 기술 리뷰가 필요한 경우, 봇이 제안한 리뷰어 중 한 명을
-  지정한다. 콘텐츠에 대한 작업이 필요하다면, 제안하거나 인라인 피드백을 추가한다.
+  멤버의 LGTM이 필요한 PR을 나열한다. PR에 기술 리뷰가 필요한 경우, 봇이 제안한 리뷰어 중 한 명을 지정한다. 콘텐츠에 대한 작업이 필요하다면, 제안하거나 인라인 피드백을 추가한다.
 - [LGTM 보유, 문서 승인 필요](https://github.com/kubernetes/website/pulls?q=is%3Aopen+is%3Apr+-label%3Ado-not-merge%2Fwork-in-progress+-label%3Ado-not-merge%2Fhold+label%3Alanguage%2Fen+label%3Algtm+):
   병합을 위해 `/approve` 코멘트가 필요한 PR을 나열한다.
 - [퀵윈(Quick Wins)](https://github.com/kubernetes/website/pulls?utf8=%E2%9C%93&q=is%3Apr+is%3Aopen+base%3Amain+-label%3A%22do-not-merge%2Fwork-in-progress%22+-label%3A%22do-not-merge%2Fhold%22+label%3A%22cncf-cla%3A+yes%22+label%3A%22size%2FXS%22+label%3A%22language%2Fen%22): 명확한 결격 사유가 없는 메인 브랜치에 대한 PR을 나열한다. ([XS, S, M, L, XL, XXL] 크기의 PR을 작업할 때 크기 레이블에서 "XS"를 변경한다)
@@ -78,6 +84,20 @@ PR 랭글러는 일주일 간 매일 다음의 일을 해야 한다.
 
 {{< note >}}
 
-[`fejta-bot`](https://github.com/fejta-bot)이라는 봇은 90일 동안 활동이 없으면 이슈를 오래된 것(stale)으로 표시한다. 30일이 더 지나면 rotten으로 표시하고 종료한다. PR 랭글러는 14-30일 동안 활동이 없으면 이슈를 닫아야 한다.
+[`k8s-triage-robot`](https://github.com/k8s-triage-robot)이라는 봇은 90일 동안 활동이 없으면 이슈를 오래된 것(stale)으로 표시한다. 30일이 더 지나면 rotten으로 표시하고 종료한다. PR 랭글러는 14-30일 동안 활동이 없으면 이슈를 닫아야 한다.
 
 {{< /note >}}
+
+## PR 랭글러 섀도우 프로그램
+
+2021년 말에, SIG Docs는 PR 랭글러 섀도우 프로그램을 도입했다. 이 프로그램은 새로운 기여자가 PR 랭글링 과정을 이해하는 데 도움을 주기 위해 도입되었다.
+
+### 섀도우 되기
+
+- PR 랭글러 섀도우 활동에 관심이 있다면, [PR 랭글러 위키 페이지](https://github.com/kubernetes/website/wiki/PR-Wranglers)에서 올해의 PR 랭글링 스케줄을 확인하고 지원한다.
+
+- 쿠버네티스 org 멤버는 [PR 랭글러 위키 페이지](https://github.com/kubernetes/website/wiki/PR-Wranglers)를 수정하여 기존 PR 랭글러를 1주일 간 섀도잉할 수 있다.
+
+- 쿠버네티스 org 비 멤버는 [#sig-docs 슬랙 채널](https://kubernetes.slack.com/messages/sig-docs)에서 특정 주간에 대해 기존 PR 랭글러에 대한 섀도잉을 요청할 수 있다. Brad Topol (`@bradtopol`) 또는 [SIG Docs co-chairs/leads](https://github.com/kubernetes/community/tree/master/sig-docs#leadership) 중 한 명에게 연락하면 된다.
+
+- PR 랭글러 섀도워로 지원했다면, [쿠버네티스 슬랙](https://slack.k8s.io)에서 PR 랭글러에게 자신을 소개한다.
diff --git a/content/ko/docs/contribute/participate/roles-and-responsibilities.md b/content/ko/docs/contribute/participate/roles-and-responsibilities.md
index ad27eea6ff..091dac7059 100644
--- a/content/ko/docs/contribute/participate/roles-and-responsibilities.md
+++ b/content/ko/docs/contribute/participate/roles-and-responsibilities.md
@@ -32,7 +32,7 @@ GitHub 계정을 가진 누구나 쿠버네티스에 기여할 수 있다. SIG D
 - [슬랙](https://slack.k8s.io/) 또는
   [SIG docs 메일링 리스트](https://groups.google.com/forum/#!forum/kubernetes-sig-docs)에 개선을 제안한다.
 
-[CLA에 서명](/ko/docs/contribute/new-content/overview/#sign-the-cla) 후에 누구나 다음을 할 수 있다.
+[CLA에 서명](/ko/docs/contribute/new-content/#sign-the-cla) 후에 누구나 다음을 할 수 있다.
 
 - 기존 콘텐츠를 개선하거나, 새 콘텐츠를 추가하거나, 블로그 게시물 또는 사례연구 작성을 위해 풀 리퀘스트를 연다.
 - 다이어그램, 그래픽 자산 그리고 포함할 수 있는 스크린캐스트와 비디오를 제작한다.
@@ -51,7 +51,8 @@ GitHub 계정을 가진 누구나 쿠버네티스에 기여할 수 있다. SIG D
 - 풀 리퀘스트에 `/lgtm` 코멘트를 사용하여 LGTM(looks good to me) 레이블을 추가한다.
 
   {{< note >}}
-  `/lgtm` 사용은 자동화를 트리거한다. 만약 구속력 없는 승인을 제공하려면, "LGTM" 코멘트를 남기는 것도 좋다!
+  `/lgtm` 사용은 자동화를 트리거한다. 만약 구속력 없는 승인을 제공하려면, 
+  "LGTM" 코멘트를 남기는 것도 좋다!
   {{< /note >}}
 
 - `/hold` 코멘트를 사용하여 풀 리퀘스트에 대한 병합을 차단한다.
@@ -89,7 +90,8 @@ GitHub 계정을 가진 누구나 쿠버네티스에 기여할 수 있다. SIG D
      쿠버네티스 GitHub 관리자가 여러분을 멤버로 추가한다.
      축하한다!
 
-     만약 멤버십이 수락되지 않으면 피드백을 받게 될 것이다. 피드백의 내용을 해결한 후, 다시 지원하자.
+     만약 멤버십이 수락되지 않으면 피드백을 받게 될 것이다. 
+     피드백의 내용을 해결한 후, 다시 지원하자.
 
 1. 여러분의 이메일 계정으로 수신된 쿠버네티스 GitHub 조직으로의 초대를 수락한다.
 
@@ -138,13 +140,14 @@ LGTM은 "Looks good to me"의 약자이며 풀 리퀘스트가 기술적으로
 ### 리뷰어 되기
 
 [요건](https://github.com/kubernetes/community/blob/master/community-membership.md#reviewer)을
-충족하면, SIG Docs 리뷰어가 될 수 있다. 다른 SIG의 리뷰어는 SIG Docs의 리뷰어 자격에
+충족하면, SIG Docs 리뷰어가 될 수 있다. 
+다른 SIG의 리뷰어는 SIG Docs의 리뷰어 자격에
 반드시 별도로 지원해야 한다.
 
 지원하려면, 다음을 수행한다.
 
 1. `kubernetes/website` 리포지터리 내
-   [OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS) 파일의 섹션에
+   [OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS_ALIASES) 파일의 섹션에
    여러분의 GitHub 사용자 이름을 추가하는 풀 리퀘스트를 연다.
    
      {{< note >}}
@@ -216,7 +219,7 @@ PR은 자동으로 병합된다. SIG Docs 승인자는 추가적인 기술 리
 지원하려면 다음을 수행한다.
 
 1. `kubernetes/website` 리포지터리 내
-   [OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS)
+   [OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS_ALIASES)
    파일의 섹션에 자신을 추가하는 풀 리퀘스트를 연다.
 
     {{< note >}}
diff --git a/content/ko/docs/contribute/review/for-approvers.md b/content/ko/docs/contribute/review/for-approvers.md
index ff1c33f383..5b99cd02a6 100644
--- a/content/ko/docs/contribute/review/for-approvers.md
+++ b/content/ko/docs/contribute/review/for-approvers.md
@@ -72,14 +72,14 @@ PR 코멘트를 남기는 것이 도움이 되지만, 대신 다른 사람의 PR
 [Prow](https://github.com/kubernetes/test-infra/blob/master/prow/README.md)는
 풀 리퀘스트 (PR)에 대한 작업을 실행하는 쿠버네티스 기반 CI/CD 시스템이다. Prow는
 챗봇 스타일 명령으로 쿠버네티스
-조직 전체에서 [레이블 추가와 제거](#이슈-레이블-추가와-제거), 이슈 종료 및 승인자 할당과 같은 GitHub 작업을 처리할 수 ​​있다. `/<command-name>` 형식을 사용하여 Prow 명령을 GitHub 코멘트로 입력한다.
+조직 전체에서 [레이블 추가와 제거](#이슈-레이블-추가와-제거), 이슈 종료 및 승인자 할당과 같은 GitHub 작업을 처리할 수 있다. `/<command-name>` 형식을 사용하여 Prow 명령을 GitHub 코멘트로 입력한다.
 
 리뷰어와 승인자가 사용하는 가장 일반적인 Prow 명령은 다음과 같다.
 
 {{< table caption="리뷰를 위한 Prow 명령" >}}
 Prow 명령     | 역할 제한           | 설명
 :------------|:------------------|:-----------
-`/lgtm` | 누구나, 리뷰어나 승인자가 사용한다면 자동화를 트리거한다. | PR 리뷰를 마치고 변경 사항에 만족했음을 나타낸다.
+`/lgtm` | 조직 멤버 | PR 리뷰를 마치고 변경 사항에 만족했음을 나타낸다.
 `/approve` | 승인자 | PR을 병합(merge)하기 위해 승인한다.
 `/assign` | 리뷰어 또는 승인자 | PR을 리뷰하거나 승인할 사람을 지정한다.
 `/close` | 리뷰어 또는 승인자 | 이슈 또는 PR을 닫는다.
@@ -121,7 +121,7 @@ PR에서 사용할 수 있는 명령의 전체 목록을 보려면
   `priority/important-longterm` | 6개월 이내에 이 작업을 수행한다.
   `priority/backlog` | 무기한 연기할 수 있다. 자원이 있을 때 수행한다.
   `priority/awaiting-more-evidence` | 잠재적으로 좋은 이슈에 대해 잊지 않도록 표시한다.
-  `help` 또는 `good first issue` | 쿠버네티스나 SIG Docs 경험이 거의 없는 사람에게 적합하다. 자세한 내용은 [도움이 필요함 및 좋은 첫 번째 이슈 레이블](https://github.com/kubernetes/community/blob/master/contributors/guide/help-wanted.md)을 참고한다.
+  `help` 또는 `good first issue` | 쿠버네티스나 SIG Docs 경험이 거의 없는 사람에게 적합하다. 자세한 내용은 [도움이 필요함 및 좋은 첫 번째 이슈 레이블](https://kubernetes.dev/docs/guide/help-wanted/)을 참고한다.
 
   {{< /table >}}
 
diff --git a/content/ko/docs/contribute/review/reviewing-prs.md b/content/ko/docs/contribute/review/reviewing-prs.md
index e0b07a79a9..91f8627e17 100644
--- a/content/ko/docs/contribute/review/reviewing-prs.md
+++ b/content/ko/docs/contribute/review/reviewing-prs.md
@@ -18,7 +18,8 @@ weight: 10
 - 적합한 코멘트를 남길 수 있도록 [콘텐츠 가이드](/docs/contribute/style/content-guide/)와
   [스타일 가이드](/docs/contribute/style/style-guide/)를 읽는다.
 - 쿠버네티스 문서화 커뮤니티의 다양한
-  [역할과 책임](/ko/docs/contribute/participate/#역할과-책임)을 이해한다.
+  [역할과 책임](/ko/docs/contribute/participate/#역할과-책임)을 
+  이해한다.
 
 <!-- body -->
 
@@ -35,7 +36,38 @@ weight: 10
 
 ## 리뷰 과정
 
-일반적으로, 영어로 콘텐츠와 스타일에 대한 풀 리퀘스트를 리뷰한다.
+일반적으로, 영어로 콘텐츠와 스타일에 대한 풀 리퀘스트를 리뷰한다. 그림 1은 리뷰 과정의 단계를 보여 준다. 각 단계에 대한 상세 사항은 아래에 나와 있다.
+
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
+
+{{< mermaid >}}
+flowchart LR
+    subgraph fourth[리뷰 시작]
+    direction TB
+    S[ ] -.-
+    M[코멘트 작성] --> N[변경사항 리뷰]
+    N --> O[새 기여자가 어떤 코멘트를<br>반영할지 선택해야 함]
+    end
+    subgraph third[PR 선택]
+    direction TB
+    T[ ] -.-
+    J[본문과 코멘트 확인]--> K[Netlify 미리보기 빌드로<br>변경사항 미리보기]
+    end
+ 
+  A[열려 있는 PR 목록 확인]--> B[레이블을 이용하여<br>PR을 필터링]
+  B --> third --> fourth
+     
+
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class A,B,J,K,M,N,O grey
+class S,T spacewhite
+class third,fourth white
+{{</ mermaid >}}
+
+그림 1. 리뷰 과정 절차.
 
 1.  [https://github.com/kubernetes/website/pulls](https://github.com/kubernetes/website/pulls)로
     이동한다.
@@ -43,7 +75,7 @@ weight: 10
     표시된다.
 
 2.  다음 레이블 중 하나 또는 모두를 사용하여 열린 PR을 필터링한다.
-    - `cncf-cla: yes`(권장): CLA에 서명하지 않은 기여자가 제출한 PR은 병합할 수 없다. 자세한 내용은 [CLA 서명](/ko/docs/contribute/new-content/overview/#sign-the-cla)을 참고한다.
+    - `cncf-cla: yes`(권장): CLA에 서명하지 않은 기여자가 제출한 PR은 병합할 수 없다. 자세한 내용은 [CLA 서명](/ko/docs/contribute/new-content/#sign-the-cla)을 참고한다.
     - `language/en`(권장): 영어 문서에 대한 PR 전용 필터이다.
     - `size/<size>`: 특정 크기의 PR을 필터링한다. 새로 시작하는 사람이라면, 더 작은 PR로 시작한다.
 
@@ -53,7 +85,11 @@ weight: 10
     - PR 설명을 통해 변경 사항을 이해하고, 연결된 이슈 읽기
     - 다른 리뷰어의 의견 읽기
     - **Files changed** 탭을 클릭하여 변경된 파일과 행 보기
-    - **Conversation** 탭의 맨 아래에 있는 PR의 빌드 확인 섹션으로 스크롤하여 **deploy/netlify** 행의 **Details** 링크를 클릭하고 Netlify 미리보기 빌드의 변경 사항을 확인
+    - **Conversation** 탭의 맨 아래에 있는 PR의 빌드 확인 섹션으로 스크롤하여 Netlify 미리보기 빌드의 변경 사항을 확인. 
+      다음은 스크린샷이다(GitHub 데스크탑 사이트이며, 
+      태블릿 또는 스마트폰 장치에서 리뷰하는 경우 GitHub 웹 UI가 약간 다르다).
+      {{< figure src="/images/docs/github_netlify_deploy_preview.png" alt="Netlify 미리보기 링크를 포함하는 GitHub PR 상세 사항" >}}
+      미리보기를 열려면, 체크 목록의 **deploy/netlify** 행의 **Details** 링크를 클릭한다.
 
 4.  **Files changed** 탭으로 이동하여 리뷰를 시작한다.
     1. 코멘트을 달려는 줄 옆에 있는 `+` 기호를 클릭한다.
diff --git a/content/ko/docs/contribute/style/write-new-topic.md b/content/ko/docs/contribute/style/write-new-topic.md
index 9bb3376933..5571756c35 100644
--- a/content/ko/docs/contribute/style/write-new-topic.md
+++ b/content/ko/docs/contribute/style/write-new-topic.md
@@ -24,7 +24,7 @@ weight: 20
 타입 | 설명
 :--- | :----------
 개념 | 개념 페이지는 쿠버네티스의 일부 측면을 설명한다. 예를 들어 개념 페이지는 쿠버네티스 디플로이먼트 오브젝트를 설명하고 배치, 확장 및 업데이트되는 동안 애플리케이션으로서 수행하는 역할을 설명할 수 있다. 일반적으로 개념 페이지는 일련의 단계가 포함되지 않지만 대신 태스크나 튜토리얼에 대한 링크를 제공한다. 개념 문서의 예로서 <a href="/ko/docs/concepts/architecture/nodes/">노드</a>를 참조하자.
-태스크 | 태스크 페이지는 단일 작업을 수행하는 방법을 보여준다. 아이디어는 독자가 페이지를 읽을 때 실제로 수행할 수 있는 일련의 단계를 제공하는 것이다. 태스크 페이지는 한 영역에 집중되어 있으면 짧거나 길 수 있다. 태스크 페이지에서 수행할 단계와 간단한 설명을 혼합하는 것은 괜찮지만, 긴 설명을 제공해야 하는 경우에는 개념 문서에서 수행해야 한다. 관련 태스크와 개념 문서는 서로 연결되어야 한다. 짧은 태스크 페이지의 예제는 <a href="/docs/tasks/configure-pod-container/configure-volume-storage/">저장소에 볼륨을 사용하도록 파드 구성</a>을 참조하자. 더 긴 태스크 페이지의 예제는 <a href="/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/">활동성 및 준비성 프로브 구성</a>을 참조하자.
+태스크 | 태스크 페이지는 단일 작업을 수행하는 방법을 보여준다. 아이디어는 독자가 페이지를 읽을 때 실제로 수행할 수 있는 일련의 단계를 제공하는 것이다. 태스크 페이지는 한 영역에 집중되어 있으면 짧거나 길 수 있다. 태스크 페이지에서 수행할 단계와 간단한 설명을 혼합하는 것은 괜찮지만, 긴 설명을 제공해야 하는 경우에는 개념 문서에서 수행해야 한다. 관련 태스크와 개념 문서는 서로 연결되어야 한다. 짧은 태스크 페이지의 예제는 <a href="/ko/docs/tasks/configure-pod-container/configure-volume-storage/">저장소에 볼륨을 사용하도록 파드 구성</a>을 참조하자. 더 긴 태스크 페이지의 예제는 <a href="/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/">활동성 및 준비성 프로브 구성</a>을 참조하자.
 튜토리얼 | 튜토리얼 페이지는 여러 쿠버네티스의 특징들을 하나로 묶어서 목적을 달성하는 방법을 보여준다. 튜토리얼은 독자들이 페이지를 읽을 때 실제로 할 수 있는 몇 가지 단계의 순서를 제공한다. 또는 관련 코드 일부에 대한 설명을 제공할 수도 있다. 예를 들어 튜토리얼은 코드 샘플의 연습을 제공할 수 있다. 튜토리얼에는 쿠버네티스의 특징에 대한 간략한 설명이 포함될 수 있지만 개별 기능에 대한 자세한 설명은 관련 개념 문서과 연결지어야 한다.
 {{< /table >}}
 
@@ -105,7 +105,7 @@ YAML 블록이다. 여기 예시가 있다.
   포함할 수 있다.
 - 이 코드의 목적은 더 큰 파일의 일부를 강조하는 것이기 때문에
   불완전한 예제다. 예를 들어 몇 가지 이유로
-  [PodSecurityPolicy](/docs/tasks/administer-cluster/sysctl-cluster/#podsecuritypolicy)
+  [PodSecurityPolicy](/ko/docs/tasks/administer-cluster/sysctl-cluster/#파드시큐리티폴리시-podsecuritypolicy)
   를 사용자 정의 방법을 설명할 때 문서 파일에서 직접 짧은 요약 정보를 제공할 수 있다.
 - 이 코드는 사용자가 다른 이유로 시도하기 위한 것이 아니다. 예를 들어
   `kubectl edit` 명령을 사용하여 리소스에 새 속성을 추가하는 방법을
diff --git a/content/ko/docs/home/_index.md b/content/ko/docs/home/_index.md
index 82ef348775..5becc565f9 100644
--- a/content/ko/docs/home/_index.md
+++ b/content/ko/docs/home/_index.md
@@ -1,4 +1,6 @@
 ---
+
+
 title: 쿠버네티스 문서
 noedit: true
 cid: docsHome
@@ -20,9 +22,9 @@ overview: >
   쿠버네티스는 배포, 스케일링, 그리고 컨테이너화된 애플리케이션의 관리를 자동화 해주는 오픈 소스 컨테이너 오케스트레이션 엔진이다. 본 오픈 소스 프로젝트는 Cloud Native Computing Foundation(<a href="https://www.cncf.io/about">CNCF</a>)가 주관한다.
 cards:
 - name: concepts
-  title: "기초 이해하기"
+  title: "쿠버네티스 이해하기"
   description: "쿠버네티스와 쿠버네티스의 기본 개념을 배운다."
-  button: "개념 배우기"
+  button: "개념 살펴보기"
   button_path: "/ko/docs/concepts"
 - name: tutorials
   title: "쿠버네티스 사용해보기"
@@ -58,7 +60,7 @@ cards:
   title: K8s 릴리스 노트
   description: 쿠버네티스를 설치하거나 최신의 버전으로 업그레이드하는 경우, 현재 릴리스 노트를 참고한다.
   button: "쿠버네티스 다운로드"
-  button_path: "/docs/setup/release/notes"
+  button_path: "/releases/download"
 - name: about
   title: 문서에 대하여
   description: 이 웹사이트는 현재 버전과 이전 4개 버전의 쿠버네티스 문서를 포함한다.
diff --git a/content/ko/docs/reference/_index.md b/content/ko/docs/reference/_index.md
index 55401988b4..0f1f0d7155 100644
--- a/content/ko/docs/reference/_index.md
+++ b/content/ko/docs/reference/_index.md
@@ -26,7 +26,7 @@ no_list: true
 * [쿠버네티스 {{< param "version" >}}용 원페이지(One-page) API 레퍼런스](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)
 * [쿠버네티스 API 사용](/ko/docs/reference/using-api/) - 쿠버네티스 API에 대한 개요
 * [API 접근 제어](/ko/docs/reference/access-authn-authz/) - 쿠버네티스가 API 접근을 제어하는 방법에 대한 세부사항
-* [잘 알려진 레이블, 어노테이션과 테인트](/docs/reference/labels-annotations-taints/)
+* [잘 알려진 레이블, 어노테이션과 테인트](/ko/docs/reference/labels-annotations-taints/)
 
 ## 공식적으로 지원되는 클라이언트 라이브러리
 
@@ -43,7 +43,7 @@ no_list: true
 
 ## CLI
 
-* [kubectl](/ko/docs/reference/kubectl/overview/) - 명령어를 실행하거나 쿠버네티스 클러스터를 관리하기 위해 사용하는 주된 CLI 도구.
+* [kubectl](/ko/docs/reference/kubectl/) - 명령어를 실행하거나 쿠버네티스 클러스터를 관리하기 위해 사용하는 주된 CLI 도구.
     * [JSONPath](/ko/docs/reference/kubectl/jsonpath/) - kubectl에서 [JSONPath 표현](https://goessner.net/articles/JsonPath/)을 사용하기 위한 문법 가이드.
 * [kubeadm](/ko/docs/reference/setup-tools/kubeadm/) - 안정적인 쿠버네티스 클러스터를 쉽게 프로비전하기 위한 CLI 도구.
 
@@ -64,6 +64,9 @@ TCP/UDP 스트림 포워딩이나 백-엔드 집합에 걸쳐서 라운드-로
   * [kube-scheduler 정책](/ko/docs/reference/scheduling/policies)
   * [kube-scheduler 프로파일](/ko/docs/reference/scheduling/config/#여러-프로파일)
 
+* 컨트롤 플레인과 워커 노드에서 꼭 열어야 하는
+  [포트와 프로토콜](/ko/docs/reference/ports-and-protocols/) 리스트
+
 ## API 설정
 
 이 섹션은 쿠버네티스 구성요소 또는 도구를 환경설정하는 데에 사용되는
@@ -71,17 +74,24 @@ TCP/UDP 스트림 포워딩이나 백-엔드 집합에 걸쳐서 라운드-로
 사용/관리하는 데에 중요하지만, 이들 API의 대부분은 아직 API 서버가
 제공하지 않는다.
 
-* [kubelet 환경설정 (v1beta1)](/docs/reference/config-api/kubelet-config.v1beta1/)
-* [kube-scheduler 환경설정 (v1beta1)](/docs/reference/config-api/kube-scheduler-config.v1beta1/)
-* [kube-scheduler 정책 레퍼런스 (v1)](/docs/reference/config-api/kube-scheduler-policy-config.v1/)
+* [kube-apiserver 환경설정 (v1alpha1)](/docs/reference/config-api/apiserver-config.v1alpha1/)
+* [kube-apiserver 환경설정 (v1)](/docs/reference/config-api/apiserver-config.v1/)
+* [kube-apiserver 암호화 (v1)](/docs/reference/config-api/apiserver-encryption.v1/)
+* [kubelet 환경설정 (v1alpha1)](/docs/reference/config-api/kubelet-config.v1alpha1/) 및
+  [kubelet 환경설정 (v1beta1)](/docs/reference/config-api/kubelet-config.v1beta1/)
+* [kubelet 크리덴셜 제공자 (v1alpha1)](/docs/reference/config-api/kubelet-credentialprovider.v1alpha1/)
+* [kube-scheduler 환경설정 (v1beta2)](/docs/reference/config-api/kube-scheduler-config.v1beta2/) 및
+  [kube-scheduler 환경설정 (v1beta3)](/docs/reference/config-api/kube-scheduler-config.v1beta3/)
 * [kube-proxy 환경설정 (v1alpha1)](/docs/reference/config-api/kube-proxy-config.v1alpha1/)
 * [`audit.k8s.io/v1` API](/docs/reference/config-api/apiserver-audit.v1/)
-* [클라이언트 인증 API (v1beta1)](/docs/reference/config-api/client-authentication.v1beta1/)
+* [클라이언트 인증 API (v1beta1)](/docs/reference/config-api/client-authentication.v1beta1/) 및 
+  [클라이언트 인증 API (v1)](/docs/reference/config-api/client-authentication.v1/)
 * [WebhookAdmission 환경설정 (v1)](/docs/reference/config-api/apiserver-webhookadmission.v1/)
 
 ## kubeadm을 위한 API 설정
 
 * [v1beta2](/docs/reference/config-api/kubeadm-config.v1beta2/)
+* [v1beta3](/docs/reference/config-api/kubeadm-config.v1beta3/)
 
 ## 설계 문서
 
diff --git a/content/ko/docs/reference/access-authn-authz/authorization.md b/content/ko/docs/reference/access-authn-authz/authorization.md
index a9370ea74b..bd36cd0f54 100644
--- a/content/ko/docs/reference/access-authn-authz/authorization.md
+++ b/content/ko/docs/reference/access-authn-authz/authorization.md
@@ -1,4 +1,9 @@
 ---
+
+
+
+
+
 title: 인가 개요
 content_type: concept
 weight: 60
@@ -71,7 +76,7 @@ DELETE    | delete(개별 리소스), deletecollection(리소스 모음)
 
 쿠버네티스는 종종 전문 동사를 사용하여 부가적인 권한 인가를 확인한다. 예를 들면,
 
-* [파드시큐리티폴리시(PodSecurityPolicy)](/ko/docs/concepts/policy/pod-security-policy/)
+* [파드시큐리티폴리시(PodSecurityPolicy)](/ko/docs/concepts/security/pod-security-policy/)
   * `policy` API 그룹의 `podsecuritypolicies` 리소스에 대한 `use` 동사.
 * [RBAC](/docs/reference/access-authn-authz/rbac/#privilege-escalation-prevention-and-bootstrapping)
   * `rbac.authorization.k8s.io` API 그룹의 `roles` 및 `clusterroles` 리소스에 대한 `bind` 동사.
@@ -82,7 +87,7 @@ DELETE    | delete(개별 리소스), deletecollection(리소스 모음)
 
 쿠버네티스 API 서버는 몇 가지 인가 모드 중 하나를 사용하여 요청을 승인할 수 있다.
 
- * **Node** - 실행되도록 스케줄된 파드에 따라 kubelet에게 권한을 부여하는 특수 목적 인가 모드. Node 인가 모드 사용에 대한 자세한 내용은 [Node 인가](/docs/reference/access-authn-authz/node/)을 참조한다.
+ * **Node** - 실행되도록 스케줄된 파드에 따라 kubelet에게 권한을 부여하는 특수 목적 인가 모드. Node 인가 모드 사용에 대한 자세한 내용은 [Node 인가](/docs/reference/access-authn-authz/node/)를 참조한다.
  * **ABAC** - 속성 기반 접근 제어 (ABAC, Attribute-based access control)는 속성과 결합한 정책의 사용을 통해 사용자에게 접근 권한을 부여하는 접근 제어 패러다임을 말한다. 이 정책은 모든 유형의 속성(사용자 속성, 리소스 속성, 오브젝트, 환경 속성 등)을 사용할 수 있다. ABAC 모드 사용에 대한 자세한 내용은 [ABAC 모드](/docs/reference/access-authn-authz/abac/)를 참조한다.
  * **RBAC** - 역할 기반 접근 제어(RBAC, Role-based access control)는 기업 내 개별 사용자의 역할을 기반으로 컴퓨터나 네트워크 리소스에 대한 접근을 규제하는 방식이다. 이 맥락에서 접근은 개별 사용자가 파일을 보거나 만들거나 수정하는 것과 같은 특정 작업을 수행할 수 있는 능력이다. RBAC 모드 사용에 대한 자세한 내용은 [RBAC 모드](/docs/reference/access-authn-authz/rbac/)를 참조한다.
    * 지정된 RBAC(역할 기반 접근 제어)이 인가 결정을 위해 `rbac.authorization.k8s.io` API 그룹을 사용하면, 관리자가 쿠버네티스 API를 통해 권한 정책을 동적으로 구성할 수 있다.
@@ -129,6 +134,21 @@ kubectl auth can-i list secrets --namespace dev --as dave
 no
 ```
 
+유사하게, `dev` 네임스페이스의 `dev-sa` 서비스어카운트가 
+`target` 네임스페이스의 파드 목록을 볼 수 있는지 확인하려면 다음을 실행한다.
+
+```bash
+kubectl auth can-i list pods \
+	--namespace target \
+	--as system:serviceaccount:dev:dev-sa
+```
+
+다음과 유사하게 출력된다.
+
+```
+yes
+```
+
 `SelfSubjectAccessReview`는 `authorization.k8s.io` API 그룹의 일부로서
 API 서버 인가를 외부 서비스에 노출시킨다.
 이 그룹의 기타 리소스에는 다음이 포함된다.
@@ -187,22 +207,33 @@ status:
 하나 이상의 인가 모듈을 선택할 수 있다. 모듈이 순서대로 확인되기 때문에
 우선 순위가 더 높은 모듈이 요청을 허용하거나 거부할 수 있다.
 
-## 파드 생성을 통한 권한 확대
+## 워크로드 생성 및 수정을 통한 권한 확대 {#privilege-escalation-via-pod-creation}
 
-네임스페이스에서 파드를 생성할 수 있는 권한을 가진 사용자는
-해당 네임스페이스 안에서 자신의 권한을 확대할 가능성이 있다.
-네임스페이스에서 자신의 권한에 접근할 수 있는 파드를 만들 수 있다.
-사용자가 스스로 읽을 수 없는 시크릿에 접근할 수 있는 파드나
-서로 다른/더 큰 권한을 가진 서비스 어카운트로 실행되는 파드를 생성할 수 있다.
+네임스페이스에서 파드를 직접, 또는 오퍼레이터와 같은 [컨트롤러](/ko/docs/concepts/architecture/controller/)를 통해 생성/수정할 수 있는 사용자는 
+해당 네임스페이스 안에서 자신의 권한을 확대할 수 있다.
 
 {{< caution >}}
-시스템 관리자는 파드 생성에 대한 접근 권한을 부여할 때 주의한다.
-네임스페이스에서 파드(또는 파드를 생성하는 컨트롤러)를 생성할 수 있는 권한을 부여받은 사용자는
-네임스페이스의 모든 시크릿을 읽을 수 있으며 네임스페이스의 모든 컨피그 맵을 읽을 수 있고
-네임스페이스의 모든 서비스 어카운트를 가장하고 해당 어카운트가 취할 수 있는 모든 작업을 취할 수 있다.
-이는 인가 모드에 관계없이 적용된다.
+시스템 관리자는 파드 생성/수정에 대한 접근 권한을 부여할 때 주의한다.
+[권한 확대 경로](#escalation-paths)에서 접근 권한이 잘못 사용되었을 때의 상세사항을 확인할 수 있다.
 {{< /caution >}}
 
+### 권한 확대 경로 {#escalation-paths}
+- 네임스페이스 내의 임의의 시크릿을 마운트
+  - 다른 워크로드를 위한 시크릿으로의 접근에 사용될 수 있음
+  - 더 권한이 많은 서비스 어카운트의 서비스 어카운트 토큰 획득에 사용될 수 있음
+- 네임스페이스 내의 임의의 서비스 어카운트를 사용
+  - 다른 워크로드인것처럼 사칭하여 쿠버네티스 API 액션을 수행할 수 있음
+  - 서비스 어카운트가 갖고 있는 '권한이 필요한 액션'을 수행할 수 있음
+- 네임스페이스 내의 다른 워크로드를 위한 컨피그맵을 마운트
+  - 다른 워크로드를 위한 정보(예: DB 호스트 이름) 획득에 사용될 수 있음
+- 네임스페이스 내의 다른 워크로드를 위한 볼륨을 마운트
+  - 다른 워크로드를 위한 정보의 획득 및 수정에 사용될 수 있음
+
+{{< caution >}}
+시스템 관리자는 위와 같은 영역을 수정하는 CRD를 배포할 때 주의를 기울여야 한다. 
+이들은 의도하지 않은 권한 확대 경로를 노출할 수 있다. 
+RBAC 제어에 대해 결정할 때 이와 같은 사항을 고려해야 한다.
+{{< /caution >}}
 
 ## {{% heading "whatsnext" %}}
 
diff --git a/content/ko/docs/reference/access-authn-authz/service-accounts-admin.md b/content/ko/docs/reference/access-authn-authz/service-accounts-admin.md
index ca06783465..91ee87ebc2 100644
--- a/content/ko/docs/reference/access-authn-authz/service-accounts-admin.md
+++ b/content/ko/docs/reference/access-authn-authz/service-accounts-admin.md
@@ -57,10 +57,9 @@ weight: 50
 
 #### 바인딩된 서비스 어카운트 토큰 볼륨
 
-{{< feature-state for_k8s_version="v1.21" state="beta" >}}
+{{< feature-state for_k8s_version="v1.22" state="stable" >}}
 
-`BoundServiceAccountTokenVolume` [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)가 활성화되면, 
-토큰 컨트롤러에 의해 생성된 무기한 서비스 어카운트 토큰을 위해, 서비스 어카운트 어드미션 컨트롤러가 시크릿 기반 볼륨 대신 다음과 같은 프로젝티드 볼륨을 추가한다.
+서비스 어카운트 어드미션 컨트롤러는 토큰 컨트롤러에서 생성한 만료되지 않은 서비스 계정 토큰에 시크릿 기반 볼륨 대신 다음과 같은 프로젝티드 볼륨을 추가한다.
 
 ```yaml
 - name: kube-api-access-<random-suffix>
@@ -68,7 +67,7 @@ weight: 50
     defaultMode: 420 # 0644
     sources:
       - serviceAccountToken:
-          expirationSeconds: 3600
+          expirationSeconds: 3607
           path: token
       - configMap:
           items:
@@ -91,10 +90,6 @@ weight: 50
 
 상세 사항은 [프로젝티드 볼륨](/docs/tasks/configure-pod-container/configure-projected-volume-storage/)을 참고한다.
 
-`BoundServiceAccountTokenVolume` 기능 게이트가 활성화되어 있지 않은 경우, 
-위의 프로젝티드 볼륨을 파드 스펙에 추가하여 
-시크릿 기반 서비스 어카운트 볼륨을 프로젝티드 볼륨으로 수동으로 옮길 수 있다.
-
 ### 토큰 컨트롤러
 
 토큰컨트롤러는 `kube-controller-manager` 의 일부로 실행된다. 이것은 비동기적으로 동작한다. 토큰 컨트롤러는,
diff --git a/content/ko/docs/reference/command-line-tools-reference/feature-gates.md b/content/ko/docs/reference/command-line-tools-reference/feature-gates.md
index 97262073a1..c1746978b2 100644
--- a/content/ko/docs/reference/command-line-tools-reference/feature-gates.md
+++ b/content/ko/docs/reference/command-line-tools-reference/feature-gates.md
@@ -2,6 +2,9 @@
 weight: 10
 title: 기능 게이트
 content_type: concept
+card:
+  name: reference
+  weight: 60
 ---
 
 <!-- overview -->
@@ -22,10 +25,11 @@ content_type: concept
 각 쿠버네티스 컴포넌트를 사용하면 해당 컴포넌트와 관련된 기능 게이트 집합을
 활성화 또는 비활성화할 수 있다.
 모든 컴포넌트에 대한 전체 기능 게이트 집합을 보려면 `-h` 플래그를 사용한다.
-kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 쌍 목록에 지정된 `--feature-gates` 플래그를 사용한다.
+kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 
+기능 쌍 목록에 지정된 `--feature-gates` 플래그를 사용한다.
 
 ```shell
---feature-gates="...,DynamicKubeletConfig=true"
+--feature-gates=...,GracefulNodeShutdown=true
 ```
 
 다음 표는 다른 쿠버네티스 컴포넌트에서 설정할 수 있는 기능 게이트를
@@ -50,145 +54,154 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
 |---------|---------|-------|-------|-------|
 | `APIListChunking` | `false` | 알파 | 1.8 | 1.8 |
 | `APIListChunking` | `true` | 베타 | 1.9 | |
-| `APIPriorityAndFairness` | `false` | 알파 | 1.17 | 1.19 |
+| `APIPriorityAndFairness` | `false` | 알파 | 1.18 | 1.19 |
 | `APIPriorityAndFairness` | `true` | 베타 | 1.20 | |
 | `APIResponseCompression` | `false` | 알파 | 1.7 | 1.15 |
 | `APIResponseCompression` | `true` | 베타 | 1.16 | |
 | `APIServerIdentity` | `false` | 알파 | 1.20 | |
+| `APIServerTracing` | `false` | 알파 | 1.22 | |
 | `AllowInsecureBackendProxy` | `true` | 베타 | 1.17 | |
-| `AnyVolumeDataSource` | `false` | 알파 | 1.18 | |
+| `AnyVolumeDataSource` | `false` | 알파 | 1.18 | 1.23 |
+| `AnyVolumeDataSource` | `true` | 베타 | 1.24 | |
 | `AppArmor` | `true` | 베타 | 1.4 | |
-| `BalanceAttachedNodeVolumes` | `false` | 알파 | 1.11 | |
-| `BoundServiceAccountTokenVolume` | `false` | 알파 | 1.13 | 1.20 |
-| `BoundServiceAccountTokenVolume` | `true` | 베타 | 1.21 | |
-| `ControllerManagerLeaderMigration` | `false` | 알파 | 1.21 | |
 | `CPUManager` | `false` | 알파 | 1.8 | 1.9 |
 | `CPUManager` | `true` | 베타 | 1.10 | |
+| `CPUManagerPolicyAlphaOptions` | `false` | 알파 | 1.23 | |
+| `CPUManagerPolicyBetaOptions` | `true` | 베타 | 1.23 | |
+| `CPUManagerPolicyOptions` | `false` | 알파 | 1.22 | 1.22 |
+| `CPUManagerPolicyOptions` | `true` | 베타 | 1.23 | |
 | `CSIInlineVolume` | `false` | 알파 | 1.15 | 1.15 |
 | `CSIInlineVolume` | `true` | 베타 | 1.16 | - |
 | `CSIMigration` | `false` | 알파 | 1.14 | 1.16 |
 | `CSIMigration` | `true` | 베타 | 1.17 | |
-| `CSIMigrationAWS` | `false` | 알파 | 1.14 | |
-| `CSIMigrationAWS` | `false` | 베타 | 1.17 | |
-| `CSIMigrationAWSComplete` | `false` | 알파 | 1.17 | |
-| `CSIMigrationAzureDisk` | `false` | 알파 | 1.15 | 1.18 |
-| `CSIMigrationAzureDisk` | `false` | 베타 | 1.19 | |
-| `CSIMigrationAzureDiskComplete` | `false` | 알파 | 1.17 | |
+| `CSIMigrationAWS` | `false` | 알파 | 1.14 | 1.16 |
+| `CSIMigrationAWS` | `false` | 베타 | 1.17 | 1.22 |
+| `CSIMigrationAWS` | `true` | 베타 | 1.23 | |
 | `CSIMigrationAzureFile` | `false` | 알파 | 1.15 | 1.19 |
-| `CSIMigrationAzureFile` | `false` | 베타 | 1.21 | |
-| `CSIMigrationAzureFileComplete` | `false` | 알파 | 1.17 | |
+| `CSIMigrationAzureFile` | `false` | 베타 | 1.21 | 1.23 |
+| `CSIMigrationAzureFile` | `true` | 베타 | 1.24 | |
 | `CSIMigrationGCE` | `false` | 알파 | 1.14 | 1.16 |
-| `CSIMigrationGCE` | `false` | 베타 | 1.17 | |
-| `CSIMigrationGCEComplete` | `false` | 알파 | 1.17 | |
-| `CSIMigrationOpenStack` | `false` | 알파 | 1.14 | 1.17 |
-| `CSIMigrationOpenStack` | `true` | 베타 | 1.18 | |
-| `CSIMigrationOpenStackComplete` | `false` | 알파 | 1.17 | |
+| `CSIMigrationGCE` | `false` | 베타 | 1.17 | 1.22 |
+| `CSIMigrationGCE` | `true` | 베타 | 1.23 | |
 | `CSIMigrationvSphere` | `false` | 베타 | 1.19 | |
-| `CSIMigrationvSphereComplete` | `false` | 베타 | 1.19 | |
-| `CSIServiceAccountToken` | `false` | 알파 | 1.20 | 1.20 |
-| `CSIServiceAccountToken` | `true` | 베타 | 1.21 | |
-| `CSIStorageCapacity` | `false` | 알파 | 1.19 | 1.20 |
-| `CSIStorageCapacity` | `true` | 베타 | 1.21 | |
-| `CSIVolumeFSGroupPolicy` | `false` | 알파 | 1.19 | 1.19 |
-| `CSIVolumeFSGroupPolicy` | `true` | 베타 | 1.20 | |
+| `CSIMigrationPortworx` | `false` | 알파 | 1.23 | |
+| `csiMigrationRBD` | `false` | 알파 | 1.23 | |
 | `CSIVolumeHealth` | `false` | 알파 | 1.21 | |
-| `ConfigurableFSGroupPolicy` | `false` | 알파 | 1.18 | 1.19 |
-| `ConfigurableFSGroupPolicy` | `true` | 베타 | 1.20 | |
-| `CronJobControllerV2` | `false` | 알파 | 1.20 | 1.20 |
-| `CronJobControllerV2` | `true` | 베타 | 1.21 | |
+| `ContextualLogging` | `false` | 알파 | 1.24 | |
 | `CustomCPUCFSQuotaPeriod` | `false` | 알파 | 1.12 | |
-| `DefaultPodTopologySpread` | `false` | 알파 | 1.19 | 1.19 |
-| `DefaultPodTopologySpread` | `true` | 베타 | 1.20 | |
+| `CustomResourceValidationExpressions` | `false` | 알파 | 1.23 | |
+| `DaemonSetUpdateSurge` | `false` | 알파 | 1.21 | 1.21 |
+| `DaemonSetUpdateSurge` | `true` | 베타 | 1.22 | |
+| `DelegateFSGroupToCSIDriver` | `false` | 알파 | 1.22 | 1.22 |
+| `DelegateFSGroupToCSIDriver` | `true` | 베타 | 1.23 | |
 | `DevicePlugins` | `false` | 알파 | 1.8 | 1.9 |
 | `DevicePlugins` | `true` | 베타 | 1.10 | |
 | `DisableAcceleratorUsageMetrics` | `false` | 알파 | 1.19 | 1.19 |
 | `DisableAcceleratorUsageMetrics` | `true` | 베타 | 1.20 | |
+| `DisableCloudProviders` | `false` | 알파 | 1.22 | |
+| `DisableKubeletCloudCredentialProviders` | `false` | 알파 | 1.23 | |
 | `DownwardAPIHugePages` | `false` | 알파 | 1.20 | 1.20 |
-| `DownwardAPIHugePages` | `false` | 베타 | 1.21 | |
-| `DynamicKubeletConfig` | `false` | 알파 | 1.4 | 1.10 |
-| `DynamicKubeletConfig` | `true` | 베타 | 1.11 | |
-| `EfficientWatchResumption` | `false` | 알파 | 1.20 | |
-| `EndpointSliceProxying` | `false` | 알파 | 1.18 | 1.18 |
-| `EndpointSliceProxying` | `true` | 베타 | 1.19 | |
-| `EndpointSliceTerminatingCondition` | `false` | 알파 | 1.20 | |
-| `EphemeralContainers` | `false` | 알파 | 1.16 | |
-| `ExpandCSIVolumes` | `false` | 알파 | 1.14 | 1.15 |
-| `ExpandCSIVolumes` | `true` | 베타 | 1.16 | |
-| `ExpandInUsePersistentVolumes` | `false` | 알파 | 1.11 | 1.14 |
-| `ExpandInUsePersistentVolumes` | `true` | 베타 | 1.15 | |
-| `ExpandPersistentVolumes` | `false` | 알파 | 1.8 | 1.10 |
-| `ExpandPersistentVolumes` | `true` | 베타 | 1.11 | |
+| `DownwardAPIHugePages` | `false` | 베타 | 1.21 | 1.21 |
+| `DownwardAPIHugePages` | `true` | 베타 | 1.22 | |
+| `EndpointSliceTerminatingCondition` | `false` | 알파 | 1.20 | 1.21 |
+| `EndpointSliceTerminatingCondition` | `true` | 베타 | 1.22 | |
+| `EphemeralContainers` | `false` | 알파 | 1.16 | 1.22 |
+| `EphemeralContainers` | `true` | 베타 | 1.23 | |
+| `ExpandedDNSConfig` | `false` | 알파 | 1.22 | |
 | `ExperimentalHostUserNamespaceDefaulting` | `false` | 베타 | 1.5 | |
-| `GenericEphemeralVolume` | `false` | 알파 | 1.19 | 1.20 |
-| `GenericEphemeralVolume` | `true` | 베타 | 1.21 | |
 | `GracefulNodeShutdown` | `false` | 알파 | 1.20 | 1.20 |
 | `GracefulNodeShutdown` | `true` | 베타 | 1.21 | |
+| `GracefulNodeShutdownBasedOnPodPriority` | `false` | 알파 | 1.23 | 1.23 |
+| `GracefulNodeShutdownBasedOnPodPriority` | `true` | 베타 | 1.24 | |
+| `GRPCContainerProbe` | `false` | 알파 | 1.23 | 1.23 |
+| `GRPCContainerProbe` | `true` | 베타 | 1.24 | |
+| `HonorPVReclaimPolicy` | `false` | 알파 | 1.23 |  |
 | `HPAContainerMetrics` | `false` | 알파 | 1.20 | |
 | `HPAScaleToZero` | `false` | 알파 | 1.16 | |
-| `HugePageStorageMediumSize` | `false` | 알파 | 1.18 | 1.18 |
-| `HugePageStorageMediumSize` | `true` | 베타 | 1.19 | |
-| `IndexedJob` | `false` | 알파 | 1.21 | |
-| `IngressClassNamespacedParams` | `false` | 알파 | 1.21 | |
-| `IPv6DualStack` | `false` | 알파 | 1.15 | 1.20 |
-| `IPv6DualStack` | `true` | 베타 | 1.21 | |
-| `KubeletCredentialProviders` | `false` | 알파 | 1.20 | |
-| `LegacyNodeRoleBehavior` | `false` | 알파 | 1.16 | 1.18 |
-| `LegacyNodeRoleBehavior` | `true` | 베타 | 1.19 | 1.20 |
+| `IdentifyPodOS` | `false` | 알파 | 1.23 | 1.23 |
+| `IdentifyPodOS` | `true` | 베타 | 1.24 | |
+| `InTreePluginAWSUnregister` | `false` | 알파 | 1.21 | |
+| `InTreePluginAzureDiskUnregister` | `false` | 알파 | 1.21 | |
+| `InTreePluginAzureFileUnregister` | `false` | 알파 | 1.21 | |
+| `InTreePluginGCEUnregister` | `false` | 알파 | 1.21 | |
+| `InTreePluginOpenStackUnregister` | `false` | 알파 | 1.21 | |
+| `InTreePluginPortworxUnregister` | `false` | 알파 | 1.23 | |
+| `InTreePluginRBDUnregister` | `false` | 알파 | 1.23 | |
+| `InTreePluginvSphereUnregister` | `false` | 알파 | 1.21 | |
+| `JobMutableNodeSchedulingDirectives` | `true` | 베타 | 1.23 | |
+| `JobReadyPods` | `false` | 알파 | 1.23 | 1.23 |
+| `JobReadyPods` | `true` | 베타 | 1.24 | |
+| `JobTrackingWithFinalizers` | `false` | 알파 | 1.22 | 1.22 |
+| `JobTrackingWithFinalizers` | `true` | 베타 | 1.23 | 1.23 |
+| `JobTrackingWithFinalizers` | `false` | 베타 | 1.24 | |
+| `KubeletCredentialProviders` | `false` | 알파 | 1.20 | 1.23 |
+| `KubeletCredentialProviders` | `true` | 베타 | 1.24 | |
+| `KubeletInUserNamespace` | `false` | 알파 | 1.22 | |
+| `KubeletPodResources` | `false` | 알파 | 1.13 | 1.14 |
+| `KubeletPodResources` | `true` | 베타 | 1.15 | |
+| `KubeletPodResourcesGetAllocatable` | `false` | 알파 | 1.21 | 1.22 |
+| `KubeletPodResourcesGetAllocatable` | `true` | 베타 | 1.23 | |
 | `LocalStorageCapacityIsolation` | `false` | 알파 | 1.7 | 1.9 |
 | `LocalStorageCapacityIsolation` | `true` | 베타 | 1.10 | |
 | `LocalStorageCapacityIsolationFSQuotaMonitoring` | `false` | 알파 | 1.15 | |
-| `LogarithmicScaleDown` | `false` | 알파 | 1.21 | |
-| `KubeletPodResourcesGetAllocatable` | `false` | 알파 | 1.21 | |
-| `MixedProtocolLBService` | `false` | 알파 | 1.20 | |
-| `NamespaceDefaultLabelName` | `true` | 베타 | 1.21 | |
-| `NetworkPolicyEndPort` | `false` | 알파 | 1.21 |  |
-| `NodeDisruptionExclusion` | `false` | 알파 | 1.16 | 1.18 |
-| `NodeDisruptionExclusion` | `true` | 베타 | 1.19 | 1.20 |
-| `NonPreemptingPriority` | `false` | 알파 | 1.15 | 1.18 |
-| `NonPreemptingPriority` | `true` | 베타 | 1.19 | |
-| `PodDeletionCost` | `false` | 알파 | 1.21 | |
-| `PodAffinityNamespaceSelector` | `false` | 알파 | 1.21 | |
-| `PodOverhead` | `false` | 알파 | 1.16 | 1.17 |
-| `PodOverhead` | `true` | 베타 | 1.18 |  |
-| `ProbeTerminationGracePeriod` | `false` | 알파 | 1.21 | |
+| `LogarithmicScaleDown` | `false` | 알파 | 1.21 | 1.21 |
+| `LogarithmicScaleDown` | `true` | 베타 | 1.22 | |
+| `MaxUnavailableStatefulSet` | `false` | 알파 | 1.24 | |
+| `MemoryManager` | `false` | 알파 | 1.21 | 1.21 |
+| `MemoryManager` | `true` | 베타 | 1.22 | |
+| `MemoryQoS` | `false` | 알파 | 1.22 | |
+| `MinDomainsInPodTopologySpread` | `false` | 알파 | 1.24 | |
+| `MixedProtocolLBService` | `false` | 알파 | 1.20 | 1.23 |
+| `MixedProtocolLBService` | `true` | 베타 | 1.24 | |
+| `NetworkPolicyEndPort` | `false` | 알파 | 1.21 | 1.21 |
+| `NetworkPolicyEndPort` | `true` | 베타 | 1.22 |  |
+| `NetworkPolicyStatus` | `false` | 알파 | 1.24 |  |
+| `NodeSwap` | `false` | 알파 | 1.22 | |
+| `NodeOutOfServiceVolumeDetach` | `false` | 알파 | 1.24 | |
+| `OpenAPIEnums` | `false` | 알파 | 1.23 | 1.23 |
+| `OpenAPIEnums` | `true` | 베타 | 1.24 | |
+| `OpenAPIV3` | `false` | 알파 | 1.23 | 1.23 |
+| `OpenAPIV3` | `true` | 베타 | 1.24 | |
+| `PodAndContainerStatsFromCRI` | `false` | 알파 | 1.23 | |
+| `PodDeletionCost` | `false` | 알파 | 1.21 | 1.21 |
+| `PodDeletionCost` | `true` | 베타 | 1.22 | |
+| `PodSecurity` | `false` | 알파 | 1.22 | 1.22 |
+| `PodSecurity` | `true` | 베타 | 1.23 | |
+| `ProbeTerminationGracePeriod` | `false` | 알파 | 1.21 | 1.21 |
+| `ProbeTerminationGracePeriod` | `false` | 베타 | 1.22 | |
 | `ProcMountType` | `false` | 알파 | 1.12 | |
+| `ProxyTerminatingEndpoints` | `false` | 알파 | 1.22 | |
 | `QOSReserved` | `false` | 알파 | 1.11 | |
+| `ReadWriteOncePod` | `false` | 알파 | 1.22 | |
+| `RecoverVolumeExpansionFailure` | `false` | 알파 | 1.23 | |
 | `RemainingItemCount` | `false` | 알파 | 1.15 | 1.15 |
 | `RemainingItemCount` | `true` | 베타 | 1.16 | |
-| `RemoveSelfLink` | `false` | 알파 | 1.16 | 1.19 |
-| `RemoveSelfLink` | `true` | 베타 | 1.20 | |
 | `RotateKubeletServerCertificate` | `false` | 알파 | 1.7 | 1.11 |
 | `RotateKubeletServerCertificate` | `true` | 베타 | 1.12 | |
-| `RunAsGroup` | `true` | 베타 | 1.14 | |
-| `ServerSideApply` | `false` | 알파 | 1.14 | 1.15 |
-| `ServerSideApply` | `true` | 베타 | 1.16 | |
-| `ServiceInternalTrafficPolicy` | `false` | 알파 | 1.21 | |
-| `ServiceLBNodePortControl` | `false` | 알파 | 1.20 | |
-| `ServiceLoadBalancerClass` | `false` | 알파 | 1.21 | |
-| `ServiceNodeExclusion` | `false` | 알파 | 1.8 | 1.18 |
-| `ServiceNodeExclusion` | `true` | 베타 | 1.19 | 1.20 |
-| `ServiceTopology` | `false` | 알파 | 1.17 | |
-| `SetHostnameAsFQDN` | `false` | 알파 | 1.19 | 1.19 |
-| `SetHostnameAsFQDN` | `true` | 베타 | 1.20 | |
-| `SizeMemoryBackedVolumes` | `false` | 알파 | 1.20 | |
+| `SeccompDefault` | `false` | 알파 | 1.22 | |
+| `ServerSideFieldValidation` | `false` | 알파 | 1.23 | - |
+| `ServiceInternalTrafficPolicy` | `false` | 알파 | 1.21 | 1.21 |
+| `ServiceInternalTrafficPolicy` | `true` | 베타 | 1.22 | |
+| `ServiceIPStaticSubrange` | `false` | 알파 | 1.24 | |
+| `SizeMemoryBackedVolumes` | `false` | 알파 | 1.20 | 1.21 |
+| `SizeMemoryBackedVolumes` | `true` | 베타 | 1.22 | |
+| `StatefulSetAutoDeletePVC` | `false` | 알파 | 1.22 | |
+| `StatefulSetMinReadySeconds` | `false` | 알파 | 1.22 | 1.22 |
+| `StatefulSetMinReadySeconds` | `true` | 베타 | 1.23 | |
 | `StorageVersionAPI` | `false` | 알파 | 1.20 | |
 | `StorageVersionHash` | `false` | 알파 | 1.14 | 1.14 |
 | `StorageVersionHash` | `true` | 베타 | 1.15 | |
-| `SuspendJob` | `false` | 알파 | 1.21 | |
-| `TTLAfterFinished` | `false` | 알파 | 1.12 | 1.20 |
-| `TTLAfterFinished` | `true` | 베타 | 1.21 | |
-| `TopologyAwareHints` | `false` | 알파 | 1.21 | |
+| `TopologyAwareHints` | `false` | 알파 | 1.21 | 1.22 |
+| `TopologyAwareHints` | `false` | 베타 | 1.23 | 1.23 |
+| `TopologyAwareHints` | `true` | 베타 | 1.24 | |
 | `TopologyManager` | `false` | 알파 | 1.16 | 1.17 |
 | `TopologyManager` | `true` | 베타 | 1.18 | |
-| `ValidateProxyRedirects` | `false` | 알파 | 1.12 | 1.13 |
-| `ValidateProxyRedirects` | `true` | 베타 | 1.14 | |
 | `VolumeCapacityPriority` | `false` | 알파 | 1.21 | - |
-| `WarningHeaders` | `true` | 베타 | 1.19 | |
 | `WinDSR` | `false` | 알파 | 1.14 | |
 | `WinOverlay` | `false` | 알파 | 1.14 | 1.19 |
 | `WinOverlay` | `true` | 베타 | 1.20 | |
-| `WindowsEndpointSliceProxying` | `false` | 알파 | 1.19 | 1.20 |
-| `WindowsEndpointSliceProxying` | `true` | 베타 | 1.21 | |
+| `WindowsHostProcessContainers` | `false` | 알파 | 1.22 | 1.22 |
+| `WindowsHostProcessContainers` | `true` | 베타 | 1.23 | |
 {{< /table >}}
 
 ### GA 또는 사용 중단된 기능을 위한 기능 게이트
@@ -198,17 +211,31 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
 | 기능     | 디폴트    | 단계   | 도입   | 종료   |
 |---------|---------|-------|-------|-------|
 | `Accelerators` | `false` | 알파 | 1.6 | 1.10 |
-| `Accelerators` | - | 사용중단 | 1.11 | - |
+| `Accelerators` | - | Deprecated | 1.11 | - |
 | `AdvancedAuditing` | `false` | 알파 | 1.7 | 1.7 |
 | `AdvancedAuditing` | `true` | 베타 | 1.8 | 1.11 |
 | `AdvancedAuditing` | `true` | GA | 1.12 | - |
 | `AffinityInAnnotations` | `false` | 알파 | 1.6 | 1.7 |
-| `AffinityInAnnotations` | - | 사용중단 | 1.8 | - |
+| `AffinityInAnnotations` | - | Deprecated | 1.8 | - |
 | `AllowExtTrafficLocalEndpoints` | `false` | 베타 | 1.4 | 1.6 |
 | `AllowExtTrafficLocalEndpoints` | `true` | GA | 1.7 | - |
+| `AttachVolumeLimit` | `false` | 알파 | 1.11 | 1.11 |
+| `AttachVolumeLimit` | `true` | 베타 | 1.12 | 1.16 |
+| `AttachVolumeLimit` | `true` | GA | 1.17 | - |
+| `BalanceAttachedNodeVolumes` | `false` | 알파 | 1.11 | 1.21 |
+| `BalanceAttachedNodeVolumes` | `false` | Deprecated | 1.22 | |
 | `BlockVolume` | `false` | 알파 | 1.9 | 1.12 |
 | `BlockVolume` | `true` | 베타 | 1.13 | 1.17 |
 | `BlockVolume` | `true` | GA | 1.18 | - |
+| `BoundServiceAccountTokenVolume` | `false` | 알파 | 1.13 | 1.20 |
+| `BoundServiceAccountTokenVolume` | `true` | 베타 | 1.21 | 1.21 |
+| `BoundServiceAccountTokenVolume` | `true` | GA | 1.22 | - |
+| `ConfigurableFSGroupPolicy` | `false` | 알파 | 1.18 | 1.19 |
+| `ConfigurableFSGroupPolicy` | `true` | 베타 | 1.20 | 1.22 |
+| `ConfigurableFSGroupPolicy` | `true` | GA | 1.23 | - |
+| `ControllerManagerLeaderMigration` | `false` | 알파 | 1.21 | 1.21 |
+| `ControllerManagerLeaderMigration` | `true` | 베타 | 1.22 | 1.23 |
+| `ControllerManagerLeaderMigration` | `true` | GA | 1.24 | - |
 | `CRIContainerLogRotation` | `false` | 알파 | 1.10 | 1.10 |
 | `CRIContainerLogRotation` | `true` | 베타 | 1.11 | 1.20 |
 | `CRIContainerLogRotation` | `true` | GA | 1.21 | - |
@@ -217,16 +244,47 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
 | `CSIBlockVolume` | `true` | GA | 1.18 | - |
 | `CSIDriverRegistry` | `false` | 알파 | 1.12 | 1.13 |
 | `CSIDriverRegistry` | `true` | 베타 | 1.14 | 1.17 |
-| `CSIDriverRegistry` | `true` | GA | 1.18 | |
+| `CSIDriverRegistry` | `true` | GA | 1.18 | - |
+| `CSIMigrationAWSComplete` | `false` | 알파 | 1.17 | 1.20 |
+| `CSIMigrationAWSComplete` | - | Deprecated | 1.21 | - |
+| `CSIMigrationAzureDisk` | `false` | 알파 | 1.15 | 1.18 |
+| `CSIMigrationAzureDisk` | `false` | 베타 | 1.19 | 1.22 |
+| `CSIMigrationAzureDisk` | `true` | 베타 | 1.23 | 1.23 |
+| `CSIMigrationAzureDisk` | `true` | GA | 1.24 | |
+| `CSIMigrationAzureDiskComplete` | `false` | 알파 | 1.17 | 1.20 |
+| `CSIMigrationAzureDiskComplete` | - | Deprecated | 1.21 | - |
+| `CSIMigrationAzureFileComplete` | `false` | 알파 | 1.17 | 1.20 |
+| `CSIMigrationAzureFileComplete` | - | Deprecated |  1.21 | - |
+| `CSIMigrationGCEComplete` | `false` | 알파 | 1.17 | 1.20 |
+| `CSIMigrationGCEComplete` | - | Deprecated | 1.21 | - |
+| `CSIMigrationOpenStack` | `false` | 알파 | 1.14 | 1.17 |
+| `CSIMigrationOpenStack` | `true` | 베타 | 1.18 | 1.23 |
+| `CSIMigrationOpenStack` | `true` | GA | 1.24 | |
+| `CSIMigrationOpenStackComplete` | `false` | 알파 | 1.17 | 1.20 |
+| `CSIMigrationOpenStackComplete` | - | Deprecated | 1.21 | - |
+| `CSIMigrationvSphereComplete` | `false` | 베타 | 1.19 | 1.21 |
+| `CSIMigrationvSphereComplete` | - | Deprecated | 1.22 | - |
 | `CSINodeInfo` | `false` | 알파 | 1.12 | 1.13 |
 | `CSINodeInfo` | `true` | 베타 | 1.14 | 1.16 |
-| `CSINodeInfo` | `true` | GA | 1.17 | |
-| `AttachVolumeLimit` | `false` | 알파 | 1.11 | 1.11 |
-| `AttachVolumeLimit` | `true` | 베타 | 1.12 | 1.16 |
-| `AttachVolumeLimit` | `true` | GA | 1.17 | - |
+| `CSINodeInfo` | `true` | GA | 1.17 | - |
 | `CSIPersistentVolume` | `false` | 알파 | 1.9 | 1.9 |
 | `CSIPersistentVolume` | `true` | 베타 | 1.10 | 1.12 |
 | `CSIPersistentVolume` | `true` | GA | 1.13 | - |
+| `CSIServiceAccountToken` | `false` | 알파 | 1.20 | 1.20 |
+| `CSIServiceAccountToken` | `true` | 베타 | 1.21 | 1.21 |
+| `CSIServiceAccountToken` | `true` | GA | 1.22 | - |
+| `CSIStorageCapacity` | `false` | 알파 | 1.19 | 1.20 |
+| `CSIStorageCapacity` | `true` | 베타 | 1.21 | 1.23 |
+| `CSIStorageCapacity` | `true` | GA | 1.24 | - |
+| `CSIVolumeFSGroupPolicy` | `false` | 알파 | 1.19 | 1.19 |
+| `CSIVolumeFSGroupPolicy` | `true` | 베타 | 1.20 | 1.22 |
+| `CSIVolumeFSGroupPolicy` | `true` | GA | 1.23 | |
+| `CSRDuration` | `true` | 베타 | 1.22 | 1.23 |
+| `CSRDuration` | `true` | GA | 1.24 | - |
+| `CronJobControllerV2` | `false` | 알파 | 1.20 | 1.20 |
+| `CronJobControllerV2` | `true` | 베타 | 1.21 | 1.21 |
+| `CronJobControllerV2` | `true` | GA | 1.22 | - |
+| `CronJobTimeZone` | `false` | 알파 | 1.24 | |
 | `CustomPodDNS` | `false` | 알파 | 1.9 | 1.9 |
 | `CustomPodDNS` | `true` | 베타| 1.10 | 1.13 |
 | `CustomPodDNS` | `true` | GA | 1.14 | - |
@@ -245,69 +303,118 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
 | `CustomResourceWebhookConversion` | `false` | 알파 | 1.13 | 1.14 |
 | `CustomResourceWebhookConversion` | `true` | 베타 | 1.15 | 1.15 |
 | `CustomResourceWebhookConversion` | `true` | GA | 1.16 | - |
+| `DefaultPodTopologySpread` | `false` | 알파 | 1.19 | 1.19 |
+| `DefaultPodTopologySpread` | `true` | 베타 | 1.20 | 1.23 |
+| `DefaultPodTopologySpread` | `true` | GA | 1.24 | - |
 | `DryRun` | `false` | 알파 | 1.12 | 1.12 |
 | `DryRun` | `true` | 베타 | 1.13 | 1.18 |
 | `DryRun` | `true` | GA | 1.19 | - |
 | `DynamicAuditing` | `false` | 알파 | 1.13 | 1.18 |
-| `DynamicAuditing` | - | 사용중단 | 1.19 | - |
+| `DynamicAuditing` | - | Deprecated | 1.19 | - |
+| `DynamicKubeletConfig` | `false` | 알파 | 1.4 | 1.10 |
+| `DynamicKubeletConfig` | `true` | 베타 | 1.11 | 1.21 |
+| `DynamicKubeletConfig` | `false` | Deprecated | 1.22 | - |
 | `DynamicProvisioningScheduling` | `false` | 알파 | 1.11 | 1.11 |
-| `DynamicProvisioningScheduling` | - | 사용중단| 1.12 | - |
+| `DynamicProvisioningScheduling` | - | Deprecated| 1.12 | - |
 | `DynamicVolumeProvisioning` | `true` | 알파 | 1.3 | 1.7 |
 | `DynamicVolumeProvisioning` | `true` | GA | 1.8 | - |
-| `EnableAggregatedDiscoveryTimeout` | `true` | 사용중단 | 1.16 | - |
+| `EfficientWatchResumption` | `false` | 알파 | 1.20 | 1.20 |
+| `EfficientWatchResumption` | `true` | 베타 | 1.21 | 1.23 |
+| `EfficientWatchResumption` | `true` | GA | 1.24 | - |
+| `EnableAggregatedDiscoveryTimeout` | `true` | Deprecated | 1.16 | - |
 | `EnableEquivalenceClassCache` | `false` | 알파 | 1.8 | 1.14 |
-| `EnableEquivalenceClassCache` | - | 사용중단 | 1.15 | - |
+| `EnableEquivalenceClassCache` | - | Deprecated | 1.15 | - |
 | `EndpointSlice` | `false` | 알파 | 1.16 | 1.16 |
 | `EndpointSlice` | `false` | 베타 | 1.17 | 1.17 |
 | `EndpointSlice` | `true` | 베타 | 1.18 | 1.20 |
-| `EndpointSlice` | `true` | GA | 1.21 | -  |
+| `EndpointSlice` | `true` | GA | 1.21 | - |
 | `EndpointSliceNodeName` | `false` | 알파 | 1.20 | 1.20 |
 | `EndpointSliceNodeName` | `true` | GA | 1.21 | - |
-| `ExperimentalCriticalPodAnnotation` | `false` | 알파 | 1.5 | 1.12 |
-| `ExperimentalCriticalPodAnnotation` | `false` | 사용중단 | 1.13 | - |
+| `EndpointSliceProxying` | `false` | 알파 | 1.18 | 1.18 |
+| `EndpointSliceProxying` | `true` | 베타 | 1.19 | 1.21 |
+| `EndpointSliceProxying` | `true` | GA | 1.22 | - |
 | `EvenPodsSpread` | `false` | 알파 | 1.16 | 1.17 |
 | `EvenPodsSpread` | `true` | 베타 | 1.18 | 1.18 |
 | `EvenPodsSpread` | `true` | GA | 1.19 | - |
 | `ExecProbeTimeout` | `true` | GA | 1.20 | - |
+| `ExpandCSIVolumes` | `false` | 알파 | 1.14 | 1.15 |
+| `ExpandCSIVolumes` | `true` | 베타 | 1.16 | 1.23 |
+| `ExpandCSIVolumes` | `true` | GA | 1.24 | - |
+| `ExpandInUsePersistentVolumes` | `false` | 알파 | 1.11 | 1.14 |
+| `ExpandInUsePersistentVolumes` | `true` | 베타 | 1.15 | 1.23 |
+| `ExpandInUsePersistentVolumes` | `true` | GA | 1.24 | - |
+| `ExpandPersistentVolumes` | `false` | 알파 | 1.8 | 1.10 |
+| `ExpandPersistentVolumes` | `true` | 베타 | 1.11 | 1.23 |
+| `ExpandPersistentVolumes` | `true` | GA | 1.24 |- |
+| `ExperimentalCriticalPodAnnotation` | `false` | 알파 | 1.5 | 1.12 |
+| `ExperimentalCriticalPodAnnotation` | `false` | Deprecated | 1.13 | - |
 | `ExternalPolicyForExternalIP` | `true` | GA | 1.18 | - |
 | `GCERegionalPersistentDisk` | `true` | 베타 | 1.10 | 1.12 |
 | `GCERegionalPersistentDisk` | `true` | GA | 1.13 | - |
+| `GenericEphemeralVolume` | `false` | 알파 | 1.19 | 1.20 |
+| `GenericEphemeralVolume` | `true` | 베타 | 1.21 | 1.22 |
+| `GenericEphemeralVolume` | `true` | GA | 1.23 | - |
+| `HugePageStorageMediumSize` | `false` | 알파 | 1.18 | 1.18 |
+| `HugePageStorageMediumSize` | `true` | 베타 | 1.19 | 1.21 |
+| `HugePageStorageMediumSize` | `true` | GA | 1.22 | - |
 | `HugePages` | `false` | 알파 | 1.8 | 1.9 |
 | `HugePages` | `true` | 베타| 1.10 | 1.13 |
 | `HugePages` | `true` | GA | 1.14 | - |
 | `HyperVContainer` | `false` | 알파 | 1.10 | 1.19 |
-| `HyperVContainer` | `false` | 사용중단 | 1.20 | - |
+| `HyperVContainer` | `false` | Deprecated | 1.20 | - |
+| `IPv6DualStack` | `false` | 알파 | 1.15 | 1.20 |
+| `IPv6DualStack` | `true` | 베타 | 1.21 | 1.22 |
+| `IPv6DualStack` | `true` | GA | 1.23 | - |
 | `ImmutableEphemeralVolumes` | `false` | 알파 | 1.18 | 1.18 |
 | `ImmutableEphemeralVolumes` | `true` | 베타 | 1.19 | 1.20 |
 | `ImmutableEphemeralVolumes` | `true` | GA | 1.21 | |
+| `IndexedJob` | `false` | 알파 | 1.21 | 1.21 |
+| `IndexedJob` | `true` | 베타 | 1.22 | 1.23 |
+| `IndexedJob` | `true` | GA | 1.24 | - |
+| `IngressClassNamespacedParams` | `false` | 알파 | 1.21 | 1.21 |
+| `IngressClassNamespacedParams` | `true` | 베타 | 1.22 | 1.22 |
+| `IngressClassNamespacedParams` | `true` | GA | 1.23 | - |
 | `Initializers` | `false` | 알파 | 1.7 | 1.13 |
-| `Initializers` | - | 사용중단 | 1.14 | - |
+| `Initializers` | - | Deprecated | 1.14 | - |
 | `KubeletConfigFile` | `false` | 알파 | 1.8 | 1.9 |
-| `KubeletConfigFile` | - | 사용중단 | 1.10 | - |
+| `KubeletConfigFile` | - | Deprecated | 1.10 | - |
 | `KubeletPluginsWatcher` | `false` | 알파 | 1.11 | 1.11 |
 | `KubeletPluginsWatcher` | `true` | 베타 | 1.12 | 1.12 |
 | `KubeletPluginsWatcher` | `true` | GA | 1.13 | - |
-| `KubeletPodResources` | `false` | 알파 | 1.13 | 1.14 |
-| `KubeletPodResources` | `true` | 베타 | 1.15 | |
-| `KubeletPodResources` | `true` | GA | 1.20 | |
+| `LegacyNodeRoleBehavior` | `false` | 알파 | 1.16 | 1.18 |
+| `LegacyNodeRoleBehavior` | `true` | 베타 | 1.19 | 1.20 |
 | `LegacyNodeRoleBehavior` | `false` | GA | 1.21 | - |
+| `LegacyServiceAccountTokenNoAutoGeneration` | `true` | 베타 | 1.24 | |
 | `MountContainers` | `false` | 알파 | 1.9 | 1.16 |
-| `MountContainers` | `false` | 사용중단 | 1.17 | - |
+| `MountContainers` | `false` | Deprecated | 1.17 | - |
 | `MountPropagation` | `false` | 알파 | 1.8 | 1.9 |
 | `MountPropagation` | `true` | 베타 | 1.10 | 1.11 |
 | `MountPropagation` | `true` | GA | 1.12 | - |
+| `NamespaceDefaultLabelName` | `true` | 베타 | 1.21 | 1.21 |
+| `NamespaceDefaultLabelName` | `true` | GA | 1.22 | - |
+| `NodeDisruptionExclusion` | `false` | 알파 | 1.16 | 1.18 |
+| `NodeDisruptionExclusion` | `true` | 베타 | 1.19 | 1.20 |
 | `NodeDisruptionExclusion` | `true` | GA | 1.21 | - |
 | `NodeLease` | `false` | 알파 | 1.12 | 1.13 |
 | `NodeLease` | `true` | 베타 | 1.14 | 1.16 |
 | `NodeLease` | `true` | GA | 1.17 | - |
+| `NonPreemptingPriority` | `false` | 알파 | 1.15 | 1.18 |
+| `NonPreemptingPriority` | `true` | 베타 | 1.19 | 1.23 |
+| `NonPreemptingPriority` | `true` | GA | 1.24 | - |
 | `PVCProtection` | `false` | 알파 | 1.9 | 1.9 |
-| `PVCProtection` | - | 사용중단 | 1.10 | - |
+| `PVCProtection` | - | Deprecated | 1.10 | - |
 | `PersistentLocalVolumes` | `false` | 알파 | 1.7 | 1.9 |
 | `PersistentLocalVolumes` | `true` | 베타 | 1.10 | 1.13 |
 | `PersistentLocalVolumes` | `true` | GA | 1.14 | - |
+| `PodAffinityNamespaceSelector` | `false` | 알파 | 1.21 | 1.21 |
+| `PodAffinityNamespaceSelector` | `true` | 베타 | 1.22 | 1.23 |
+| `PodAffinityNamespaceSelector` | `true` | GA | 1.24 | - |
 | `PodDisruptionBudget` | `false` | 알파 | 1.3 | 1.4 |
 | `PodDisruptionBudget` | `true` | 베타 | 1.5 | 1.20 |
 | `PodDisruptionBudget` | `true` | GA | 1.21 | - |
+| `PodOverhead` | `false` | 알파 | 1.16 | 1.17 |
+| `PodOverhead` | `true` | 베타 | 1.18 | 1.23 |
+| `PodOverhead` | `true` | GA | 1.24 | - |
 | `PodPriority` | `false` | 알파 | 1.8 | 1.10 |
 | `PodPriority` | `true` | 베타 | 1.11 | 1.13 |
 | `PodPriority` | `true` | GA | 1.14 | - |
@@ -317,10 +424,16 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
 | `PodShareProcessNamespace` | `false` | 알파 | 1.10 | 1.11 |
 | `PodShareProcessNamespace` | `true` | 베타 | 1.12 | 1.16 |
 | `PodShareProcessNamespace` | `true` | GA | 1.17 | - |
+| `PreferNominatedNode` | `false` | 알파 | 1.21 | 1.21 |
+| `PreferNominatedNode` | `true` | 베타 | 1.22 | 1.23 |
+| `PreferNominatedNode` | `true` | GA | 1.24 | - |
+| `RemoveSelfLink` | `false` | 알파 | 1.16 | 1.19 |
+| `RemoveSelfLink` | `true` | 베타 | 1.20 | 1.23 |
+| `RemoveSelfLink` | `true` | GA | 1.24 | - |
 | `RequestManagement` | `false` | 알파 | 1.15 | 1.16 |
-| `RequestManagement` | - | 사용중단 | 1.17 | - |
+| `RequestManagement` | - | Deprecated | 1.17 | - |
 | `ResourceLimitsPriorityFunction` | `false` | 알파 | 1.9 | 1.18 |
-| `ResourceLimitsPriorityFunction` | - | 사용중단 | 1.19 | - |
+| `ResourceLimitsPriorityFunction` | - | Deprecated | 1.19 | - |
 | `ResourceQuotaScopeSelectors` | `false` | 알파 | 1.11 | 1.11 |
 | `ResourceQuotaScopeSelectors` | `true` | 베타 | 1.12 | 1.16 |
 | `ResourceQuotaScopeSelectors` | `true` | GA | 1.17 | - |
@@ -329,33 +442,55 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
 | `RootCAConfigMap` | `true` | GA | 1.21 | - |
 | `RotateKubeletClientCertificate` | `true` | 베타 | 1.8 | 1.18 |
 | `RotateKubeletClientCertificate` | `true` | GA | 1.19 | - |
+| `RunAsGroup` | `true` | 베타 | 1.14 | 1.20 |
+| `RunAsGroup` | `true` | GA | 1.21 | - |
 | `RuntimeClass` | `false` | 알파 | 1.12 | 1.13 |
 | `RuntimeClass` | `true` | 베타 | 1.14 | 1.19 |
 | `RuntimeClass` | `true` | GA | 1.20 | - |
-| `ScheduleDaemonSetPods` | `false` | 알파 | 1.11 | 1.11 |
-| `ScheduleDaemonSetPods` | `true` | 베타 | 1.12 | 1.16  |
-| `ScheduleDaemonSetPods` | `true` | GA | 1.17 | - |
 | `SCTPSupport` | `false` | 알파 | 1.12 | 1.18 |
 | `SCTPSupport` | `true` | 베타 | 1.19 | 1.19 |
 | `SCTPSupport` | `true` | GA | 1.20 | - |
+| `ScheduleDaemonSetPods` | `false` | 알파 | 1.11 | 1.11 |
+| `ScheduleDaemonSetPods` | `true` | 베타 | 1.12 | 1.16  |
+| `ScheduleDaemonSetPods` | `true` | GA | 1.17 | - |
+| `SelectorIndex` | `false` | 알파 | 1.18 | 1.18 |
+| `SelectorIndex` | `true` | 베타 | 1.19 | 1.19 |
+| `SelectorIndex` | `true` | GA | 1.20 | - |
+| `ServerSideApply` | `false` | 알파 | 1.14 | 1.15 |
+| `ServerSideApply` | `true` | 베타 | 1.16 | 1.21 |
+| `ServerSideApply` | `true` | GA | 1.22 | - |
 | `ServiceAccountIssuerDiscovery` | `false` | 알파 | 1.18 | 1.19 |
 | `ServiceAccountIssuerDiscovery` | `true` | 베타 | 1.20 | 1.20 |
 | `ServiceAccountIssuerDiscovery` | `true` | GA | 1.21 | - |
 | `ServiceAppProtocol` | `false` | 알파 | 1.18 | 1.18 |
 | `ServiceAppProtocol` | `true` | 베타 | 1.19 | 1.19 |
 | `ServiceAppProtocol` | `true` | GA | 1.20 | - |
+| `ServiceLBNodePortControl` | `false` | 알파 | 1.20 | 1.21 |
+| `ServiceLBNodePortControl` | `true` | 베타 | 1.22 | 1.23 |
+| `ServiceLBNodePortControl` | `true` | GA | 1.24 | - |
+| `ServiceLoadBalancerClass` | `false` | 알파 | 1.21 | 1.21 |
+| `ServiceLoadBalancerClass` | `true` | 베타 | 1.22 | 1.23 |
+| `ServiceLoadBalancerClass` | `true` | GA | 1.24 | - |
 | `ServiceLoadBalancerFinalizer` | `false` | 알파 | 1.15 | 1.15 |
 | `ServiceLoadBalancerFinalizer` | `true` | 베타 | 1.16 | 1.16 |
 | `ServiceLoadBalancerFinalizer` | `true` | GA | 1.17 | - |
+| `ServiceNodeExclusion` | `false` | 알파 | 1.8 | 1.18 |
+| `ServiceNodeExclusion` | `true` | 베타 | 1.19 | 1.20 |
 | `ServiceNodeExclusion` | `true` | GA | 1.21 | - |
+| `ServiceTopology` | `false` | 알파 | 1.17 | 1.19 |
+| `ServiceTopology` | `false` | Deprecated | 1.20 | - |
+| `SetHostnameAsFQDN` | `false` | 알파 | 1.19 | 1.19 |
+| `SetHostnameAsFQDN` | `true` | 베타 | 1.20 | 1.21 |
+| `SetHostnameAsFQDN` | `true` | GA | 1.22 | - |
 | `StartupProbe` | `false` | 알파 | 1.16 | 1.17 |
 | `StartupProbe` | `true` | 베타 | 1.18 | 1.19 |
 | `StartupProbe` | `true` | GA | 1.20 | - |
 | `StorageObjectInUseProtection` | `true` | 베타 | 1.10 | 1.10 |
 | `StorageObjectInUseProtection` | `true` | GA | 1.11 | - |
 | `StreamingProxyRedirects` | `false` | 베타 | 1.5 | 1.5 |
-| `StreamingProxyRedirects` | `true` | 베타 | 1.6 | 1.18 |
-| `StreamingProxyRedirects` | - | GA | 1.19 | - |
+| `StreamingProxyRedirects` | `true` | 베타 | 1.6 | 1.17 |
+| `StreamingProxyRedirects` | `true` | Deprecated | 1.18 | 1.21 |
+| `StreamingProxyRedirects` | `false` | Deprecated | 1.22 | - |
 | `SupportIPVSProxyMode` | `false` | 알파 | 1.8 | 1.8 |
 | `SupportIPVSProxyMode` | `false` | 베타 | 1.9 | 1.9 |
 | `SupportIPVSProxyMode` | `true` | 베타 | 1.10 | 1.10 |
@@ -366,8 +501,14 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
 | `SupportPodPidsLimit` | `false` | 알파 | 1.10 | 1.13 |
 | `SupportPodPidsLimit` | `true` | 베타 | 1.14 | 1.19 |
 | `SupportPodPidsLimit` | `true` | GA | 1.20 | - |
+| `SuspendJob` | `false` | 알파 | 1.21 | 1.21 |
+| `SuspendJob` | `true` | 베타 | 1.22 | 1.23 |
+| `SuspendJob` | `true` | GA | 1.24 | - |
 | `Sysctls` | `true` | 베타 | 1.11 | 1.20 |
-| `Sysctls` | `true` | GA | 1.21 | |
+| `Sysctls` | `true` | GA | 1.21 | - |
+| `TTLAfterFinished` | `false` | 알파 | 1.12 | 1.20 |
+| `TTLAfterFinished` | `true` | 베타 | 1.21 | 1.22 |
+| `TTLAfterFinished` | `true` | GA | 1.23 | - |
 | `TaintBasedEvictions` | `false` | 알파 | 1.6 | 1.12 |
 | `TaintBasedEvictions` | `true` | 베타 | 1.13 | 1.17 |
 | `TaintBasedEvictions` | `true` | GA | 1.18 | - |
@@ -380,6 +521,9 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
 | `TokenRequestProjection` | `false` | 알파 | 1.11 | 1.11 |
 | `TokenRequestProjection` | `true` | 베타 | 1.12 | 1.19 |
 | `TokenRequestProjection` | `true` | GA | 1.20 | - |
+| `ValidateProxyRedirects` | `false` | 알파 | 1.12 | 1.13 |
+| `ValidateProxyRedirects` | `true` | 베타 | 1.14 | 1.21 |
+| `ValidateProxyRedirects` | `true` | Deprecated | 1.22 | - |
 | `VolumePVCDataSource` | `false` | 알파 | 1.15 | 1.15 |
 | `VolumePVCDataSource` | `true` | 베타 | 1.16 | 1.17 |
 | `VolumePVCDataSource` | `true` | GA | 1.18 | - |
@@ -393,9 +537,14 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
 | `VolumeSubpathEnvExpansion` | `false` | 알파 | 1.14 | 1.14 |
 | `VolumeSubpathEnvExpansion` | `true` | 베타 | 1.15 | 1.16 |
 | `VolumeSubpathEnvExpansion` | `true` | GA | 1.17 | - |
+| `WarningHeaders` | `true` | 베타 | 1.19 | 1.21 |
+| `WarningHeaders` | `true` | GA | 1.22 | - |
 | `WatchBookmark` | `false` | 알파 | 1.15 | 1.15 |
 | `WatchBookmark` | `true` | 베타 | 1.16 | 1.16 |
 | `WatchBookmark` | `true` | GA | 1.17 | - |
+| `WindowsEndpointSliceProxying` | `false` | 알파 | 1.19 | 1.20 |
+| `WindowsEndpointSliceProxying` | `true` | 베타 | 1.21 | 1.21 |
+| `WindowsEndpointSliceProxying` | `true` | GA | 1.22| - |
 | `WindowsGMSA` | `false` | 알파 | 1.14 | 1.15 |
 | `WindowsGMSA` | `true` | 베타 | 1.16 | 1.17 |
 | `WindowsGMSA` | `true` | GA | 1.18 | - |
@@ -453,8 +602,12 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
   관리할 수 있다. (`RequestManagement` 에서 이름이 변경됨)
 - `APIResponseCompression`: `LIST` 또는 `GET` 요청에 대한 API 응답을 압축한다.
 - `APIServerIdentity`: 클러스터의 각 API 서버에 ID를 할당한다.
-- `Accelerators`: 도커 사용 시 Nvidia GPU 지원 활성화한다.
-- `AdvancedAuditing`: [고급 감사](/docs/tasks/debug-application-cluster/audit/#advanced-audit) 기능을 활성화한다.
+- `APIServerTracing`: API 서버에서 분산 추적(tracing)에 대한 지원을 추가한다.
+- `Accelerators`: 도커 엔진 사용 시 Nvidia GPU 지원을 활성화하는 
+  플러그인의 초기 형태를 제공하였으며, 사용 중단되었다. 
+  대안을 위해서는 [장치 플러그인](/ko/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)을 
+  확인한다.
+- `AdvancedAuditing`: [고급 감사](/docs/tasks/debug/debug-cluster/audit/#advanced-audit) 기능을 활성화한다.
 - `AffinityInAnnotations`: [파드 어피니티 또는 안티-어피니티](/ko/docs/concepts/scheduling-eviction/assign-pod-node/#어피니티-affinity-와-안티-어피니티-anti-affinity)
   설정을 활성화한다.
 - `AllowExtTrafficLocalEndpoints`: 서비스가 외부 요청을 노드의 로컬 엔드포인트로 라우팅할 수 있도록 한다.
@@ -462,100 +615,151 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
   TLS 확인을 건너뛸 수 있도록 한다.
 - `AnyVolumeDataSource`: {{< glossary_tooltip text="PVC" term_id="persistent-volume-claim" >}}의
   `DataSource` 로 모든 사용자 정의 리소스 사용을 활성화한다.
-- `AppArmor`: 도커를 사용할 때 리눅스 노드에서 AppArmor 기반의 필수 접근 제어를 활성화한다.
-  자세한 내용은 [AppArmor 튜토리얼](/ko/docs/tutorials/clusters/apparmor/)을 참고한다.
+- `AppArmor`: 리눅스 노드에서 실행되는 파드에 대한 AppArmor 필수 접근 제어의 사용을 활성화한다.
+  자세한 내용은 [AppArmor 튜토리얼](/ko/docs/tutorials/security/apparmor/)을 참고한다.
 - `AttachVolumeLimit`: 볼륨 플러그인이 노드에 연결될 수 있는 볼륨 수에
   대한 제한을 보고하도록 한다.
-  자세한 내용은 [동적 볼륨 제한](/ko/docs/concepts/storage/storage-limits/#동적-볼륨-한도)을 참고한다.
+  자세한 내용은 [동적 볼륨 제한](/ko/docs/concepts/storage/storage-limits/#동적-볼륨-한도)을 
+  참고한다.
 - `BalanceAttachedNodeVolumes`: 스케줄링 시 균형 잡힌 리소스 할당을 위해 고려할 노드의 볼륨 수를
   포함한다. 스케줄러가 결정을 내리는 동안 CPU, 메모리 사용률 및 볼륨 수가
   더 가까운 노드가 선호된다.
 - `BlockVolume`: 파드에서 원시 블록 장치의 정의와 사용을 활성화한다.
   자세한 내용은 [원시 블록 볼륨 지원](/ko/docs/concepts/storage/persistent-volumes/#원시-블록-볼륨-지원)을
   참고한다.
-- `BoundServiceAccountTokenVolume`: ServiceAccountTokenVolumeProjection으로 구성된 프로젝션 볼륨을 사용하도록 서비스어카운트 볼륨을
-  마이그레이션한다. 클러스터 관리자는 `serviceaccount_stale_tokens_total` 메트릭을 사용하여
-  확장 토큰에 의존하는 워크로드를 모니터링 할 수 있다. 이러한 워크로드가 없는 경우 `--service-account-extend-token-expiration=false` 플래그로
-  `kube-apiserver`를 시작하여 확장 토큰 기능을 끈다.
-  자세한 내용은 [바운드 서비스 계정 토큰](https://github.com/kubernetes/enhancements/blob/master/keps/sig-auth/1205-bound-service-account-tokens/README.md)을
-  확인한다.
+- `BoundServiceAccountTokenVolume`: ServiceAccountTokenVolumeProjection으로 구성된 프로젝션 볼륨을 사용하도록 
+  서비스어카운트 볼륨을 마이그레이션한다. 
+  클러스터 관리자는 `serviceaccount_stale_tokens_total` 메트릭을 사용하여 
+  확장 토큰에 의존하는 워크로드를 모니터링 할 수 있다. 
+  이러한 워크로드가 없는 경우 `--service-account-extend-token-expiration=false` 플래그로 
+  `kube-apiserver`를 시작하여 확장 토큰 기능을 끈다. 
+  자세한 내용은 [바운드 서비스 계정 토큰](https://github.com/kubernetes/enhancements/blob/master/keps/sig-auth/1205-bound-service-account-tokens/README.md)을 확인한다.
 - `ControllerManagerLeaderMigration`: HA 클러스터에서 클러스터 오퍼레이터가
   kube-controller-manager의 컨트롤러들을 외부 controller-manager(예를 들면,
   cloud-controller-manager)로 다운타임 없이 라이브 마이그레이션할 수 있도록 허용하도록
-  [kube-controller-manager](/docs/tasks/administer-cluster/controller-manager-leader-migration/#initial-leader-migration-configuration)와 [cloud-controller-manager](/docs/tasks/administer-cluster/controller-manager-leader-migration/#deploy-cloud-controller-manager)의
+  [kube-controller-manager](/docs/tasks/administer-cluster/controller-manager-leader-migration/#initial-leader-migration-configuration)와 
+  [cloud-controller-manager](/docs/tasks/administer-cluster/controller-manager-leader-migration/#deploy-cloud-controller-manager)의
   리더 마이그레이션(Leader Migration)을 활성화한다.
 - `CPUManager`: 컨테이너 수준의 CPU 어피니티 지원을 활성화한다.
   [CPU 관리 정책](/docs/tasks/administer-cluster/cpu-management-policies/)을 참고한다.
-- `CRIContainerLogRotation`: cri 컨테이너 런타임에 컨테이너 로그 로테이션을 활성화한다. 로그 파일 사이즈 기본값은 10MB이며,
-컨테이너 당 최대 로그 파일 수 기본값은 5이다. 이 값은 kubelet 환경설정으로 변경할 수 있다.
-더 자세한 내용은 [노드 레벨에서의 로깅](/ko/docs/concepts/cluster-administration/logging/#노드-레벨에서의-로깅)을 참고한다.
+- `CPUManagerPolicyAlphaOptions`: CPUManager 정책 중 실험적이며 알파 품질인 옵션의 
+  미세 조정을 허용한다. 
+  이 기능 게이트는 품질 수준이 알파인 CPUManager 옵션의 *그룹*을 보호한다.
+  이 기능 게이트는 베타 또는 안정(stable) 상태로 변경되지 않을 것이다.
+- `CPUManagerPolicyBetaOptions`: CPUManager 정책 중 실험적이며 베타 품질인 옵션의 
+  미세 조정을 허용한다. 
+  이 기능 게이트는 품질 수준이 베타인 CPUManager 옵션의 *그룹*을 보호한다.
+  이 기능 게이트는 안정(stable) 상태로 변경되지 않을 것이다.
+- `CPUManagerPolicyOptions`: CPUManager 정책의 미세 조정을 허용한다.
+- `CRIContainerLogRotation`: CRI 컨테이너 런타임에 컨테이너 로그 로테이션을 활성화한다. 
+  로그 파일 사이즈 기본값은 10MB이며, 
+  컨테이너 당 최대 로그 파일 수 기본값은 5이다. 
+  이 값은 kubelet 환경설정으로 변경할 수 있다. 
+  더 자세한 내용은 
+  [노드 레벨에서의 로깅](/ko/docs/concepts/cluster-administration/logging/#노드-레벨에서의-로깅)을 참고한다.
 - `CSIBlockVolume`: 외부 CSI 볼륨 드라이버가 블록 스토리지를 지원할 수 있게 한다.
-  자세한 내용은 [`csi` 원시 블록 볼륨 지원](/ko/docs/concepts/storage/volumes/#csi-원시-raw-블록-볼륨-지원)
-  문서를 참고한다.
+  자세한 내용은 [`csi` 원시 블록 볼륨 지원](/ko/docs/concepts/storage/volumes/#csi-원시-raw-블록-볼륨-지원)을
+  참고한다.
 - `CSIDriverRegistry`: csi.storage.k8s.io에서 CSIDriver API 오브젝트와 관련된
   모든 로직을 활성화한다.
 - `CSIInlineVolume`: 파드에 대한 CSI 인라인 볼륨 지원을 활성화한다.
 - `CSIMigration`: shim 및 변환 로직을 통해 볼륨 작업을 인-트리 플러그인에서
   사전 설치된 해당 CSI 플러그인으로 라우팅할 수 있다.
-- `CSIMigrationAWS`: shim 및 변환 로직을 통해 볼륨 작업을
-  AWS-EBS 인-트리 플러그인에서 EBS CSI 플러그인으로 라우팅할 수 있다. 노드에
-  EBS CSI 플러그인이 설치와 구성이 되어 있지 않은 경우 인-트리 EBS 플러그인으로
-  폴백(falling back)을 지원한다. CSIMigration 기능 플래그가 필요하다.
+- `CSIMigrationAWS`: shim 및 변환 로직을 통해 볼륨 작업을 
+  AWS-EBS 인-트리 플러그인에서 EBS CSI 플러그인으로 라우팅할 수 있다. 
+  이 기능이 비활성화되어 있거나 EBS CSI 플러그인이 설치 및 구성되어 있지 않은 노드에서의 마운트 동작에 대해 
+  인-트리 EBS 플러그인으로의 폴백(falling back)을 지원한다. 
+  프로비전 동작에 대해서는 폴백을 지원하지 않는데, 
+  프로비전 동작은 해당 CSI 플러그인이 설치 및 구성되어 있어야 가능하기 때문이다.
 - `CSIMigrationAWSComplete`: kubelet 및 볼륨 컨트롤러에서 EBS 인-트리
   플러그인 등록을 중지하고 shim 및 변환 로직을 사용하여 볼륨 작업을 AWS-EBS
   인-트리 플러그인에서 EBS CSI 플러그인으로 라우팅할 수 있다.
   클러스터의 모든 노드에 CSIMigration과 CSIMigrationAWS 기능 플래그가 활성화되고
   EBS CSI 플러그인이 설치 및 구성이 되어 있어야 한다.
+  이 플래그는 인-트리 EBS 플러그인의 등록을 막는 `InTreePluginAWSUnregister` 기능 플래그로 인해
+  더 이상 사용되지 않는다. 
 - `CSIMigrationAzureDisk`: shim 및 변환 로직을 통해 볼륨 작업을
   Azure-Disk 인-트리 플러그인에서 AzureDisk CSI 플러그인으로 라우팅할 수 있다.
-  노드에 AzureDisk CSI 플러그인이 설치와 구성이 되어 있지 않은 경우 인-트리
-  AzureDisk 플러그인으로 폴백을 지원한다. CSIMigration 기능 플래그가
-  필요하다.
-- `CSIMigrationAzureDiskComplete`: kubelet 및 볼륨 컨트롤러에서 Azure-Disk 인-트리
-  플러그인 등록을 중지하고 shim 및 변환 로직을 사용하여 볼륨 작업을
-  Azure-Disk 인-트리 플러그인에서 AzureDisk CSI 플러그인으로
-  라우팅할 수 있다. 클러스터의 모든 노드에 CSIMigration과 CSIMigrationAzureDisk 기능
-  플래그가 활성화되고 AzureDisk CSI 플러그인이 설치 및 구성이 되어
-  있어야 한다.
+  이 기능이 비활성화되어 있거나 AzureDisk CSI 플러그인이 설치 및 구성되어 있지 않은 노드에서의 마운트 동작에 대해 
+  인-트리 AzureDisk 플러그인으로의 폴백(falling back)을 지원한다. 
+  프로비전 동작에 대해서는 폴백을 지원하지 않는데, 
+  프로비전 동작은 해당 CSI 플러그인이 설치 및 구성되어 있어야 가능하기 때문이다.
+  이 기능을 사용하려면 CSIMigration 기능 플래그가 활성화되어 있어야 한다.
+- `CSIMigrationAzureDiskComplete`: kubelet 및 볼륨 컨트롤러에서 
+  Azure-Disk 인-트리 플러그인 등록을 중지하고 
+  shim 및 변환 로직을 사용하여 
+  볼륨 작업을 Azure-Disk 인-트리 플러그인에서 AzureDisk CSI 플러그인으로 라우팅할 수 있다. 
+  클러스터의 모든 노드에 CSIMigration과 CSIMigrationAzureDisk 기능 플래그가 활성화되고 
+  AzureDisk CSI 플러그인이 설치 및 구성이 되어 있어야 한다. 
+  이 플래그는 인-트리 AzureDisk 플러그인의 등록을 막는 
+  `InTreePluginAzureDiskUnregister` 기능 플래그로 인해 더 이상 사용되지 않는다.
 - `CSIMigrationAzureFile`: shim 및 변환 로직을 통해 볼륨 작업을
   Azure-File 인-트리 플러그인에서 AzureFile CSI 플러그인으로 라우팅할 수 있다.
-  노드에 AzureFile CSI 플러그인이 설치 및 구성이 되어 있지 않은 경우 인-트리
-  AzureFile 플러그인으로 폴백을 지원한다. CSIMigration 기능 플래그가
-  필요하다.
+  이 기능이 비활성화되어 있거나 AzureFile CSI 플러그인이 설치 및 구성되어 있지 않은 노드에서의 마운트 동작에 대해 
+  인-트리 AzureFile 플러그인으로의 폴백(falling back)을 지원한다. 
+  프로비전 동작에 대해서는 폴백을 지원하지 않는데, 
+  프로비전 동작은 해당 CSI 플러그인이 설치 및 구성되어 있어야 가능하기 때문이다.
+  이 기능을 사용하려면 CSIMigration 기능 플래그가 활성화되어 있어야 한다.
 - `CSIMigrationAzureFileComplete`: kubelet 및 볼륨 컨트롤러에서 Azure 파일 인-트리
   플러그인 등록을 중지하고 shim 및 변환 로직을 통해 볼륨 작업을
   Azure 파일 인-트리 플러그인에서 AzureFile CSI 플러그인으로
   라우팅할 수 있다. 클러스터의 모든 노드에 CSIMigration과 CSIMigrationAzureFile 기능
   플래그가 활성화되고 AzureFile CSI 플러그인이 설치 및 구성이 되어
-  있어야 한다.
+  있어야 한다. 이 플래그는 인-트리 AzureFile 플러그인의 등록을 막는 
+  `InTreePluginAzureFileUnregister` 기능 플래그로 인해
+  더 이상 사용되지 않는다.
 - `CSIMigrationGCE`: shim 및 변환 로직을 통해 볼륨 작업을
-  GCE-PD 인-트리 플러그인에서 PD CSI 플러그인으로 라우팅할 수 있다. 노드에
-  PD CSI 플러그인이 설치 및 구성이 되어 있지 않은 경우 인-트리 GCE 플러그인으로 폴백을
-  지원한다. CSIMigration 기능 플래그가 필요하다.
+  GCE-PD 인-트리 플러그인에서 PD CSI 플러그인으로 라우팅할 수 있다. 
+  이 기능이 비활성화되어 있거나 PD CSI 플러그인이 설치 및 구성되어 있지 않은 노드에서의 마운트 동작에 대해 
+  인-트리 GCE 플러그인으로의 폴백(falling back)을 지원한다. 
+  프로비전 동작에 대해서는 폴백을 지원하지 않는데, 
+  프로비전 동작은 해당 CSI 플러그인이 설치 및 구성되어 있어야 가능하기 때문이다.
+  이 기능을 사용하려면 CSIMigration 기능 플래그가 활성화되어 있어야 한다.
 - `CSIMigrationGCEComplete`: kubelet 및 볼륨 컨트롤러에서 GCE-PD
   인-트리 플러그인 등록을 중지하고 shim 및 변환 로직을 통해 볼륨 작업을 GCE-PD
   인-트리 플러그인에서 PD CSI 플러그인으로 라우팅할 수 있다.
   CSIMigration과 CSIMigrationGCE 기능 플래그가 활성화되고 PD CSI
-  플러그인이 클러스터의 모든 노드에 설치 및 구성이 되어 있어야 한다.
+  플러그인이 클러스터의 모든 노드에 설치 및 구성이 되어 있어야 한다. 
+  이 플래그는 인-트리 GCE PD 플러그인의 등록을 막는 `InTreePluginGCEUnregister` 기능 플래그로 인해
+  더 이상 사용되지 않는다.
 - `CSIMigrationOpenStack`: shim 및 변환 로직을 통해 볼륨 작업을
-  Cinder 인-트리 플러그인에서 Cinder CSI 플러그인으로 라우팅할 수 있다. 노드에
-  Cinder CSI 플러그인이 설치 및 구성이 되어 있지 않은 경우 인-트리
-  Cinder 플러그인으로 폴백을 지원한다. CSIMigration 기능 플래그가 필요하다.
+  Cinder 인-트리 플러그인에서 Cinder CSI 플러그인으로 라우팅할 수 있다. 
+  이 기능이 비활성화되어 있거나 Cinder CSI 플러그인이 설치 및 구성되어 있지 않은 노드에서의 마운트 동작에 대해 
+  인-트리 Cinder 플러그인으로의 폴백(falling back)을 지원한다. 
+  프로비전 동작에 대해서는 폴백을 지원하지 않는데, 
+  프로비전 동작은 해당 CSI 플러그인이 설치 및 구성되어 있어야 가능하기 때문이다.
+  이 기능을 사용하려면 CSIMigration 기능 플래그가 활성화되어 있어야 한다.
 - `CSIMigrationOpenStackComplete`: kubelet 및 볼륨 컨트롤러에서
   Cinder 인-트리 플러그인 등록을 중지하고 shim 및 변환 로직이 Cinder 인-트리
   플러그인에서 Cinder CSI 플러그인으로 볼륨 작업을 라우팅할 수 있도록 한다.
   클러스터의 모든 노드에 CSIMigration과 CSIMigrationOpenStack 기능 플래그가 활성화되고
-  Cinder CSI 플러그인이 설치 및 구성이 되어 있어야 한다.
+  Cinder CSI 플러그인이 설치 및 구성이 되어 있어야 한다. 
+  이 플래그는 인-트리 openstack cinder 플러그인의 등록을 막는 `InTreePluginOpenStackUnregister` 기능 플래그로 인해 
+  더 이상 사용되지 않는다.
+- `csiMigrationRBD`: RBD 트리 내(in-tree) 플러그인으로 가는 볼륨 작업을 
+  Ceph RBD CSI 플러그인으로 라우트하는 심(shim)과 변환 로직을 활성화한다. 
+  클러스터에 CSIMigration 및 csiMigrationRBD 기능 플래그가 활성화되어 있어야 하고, 
+  Ceph CSI 플러그인이 설치 및 설정되어 있어야 한다. 
+  이 플래그는 트리 내(in-tree) RBD 플러그인 등록을 금지시키는 `InTreePluginRBDUnregister` 기능 플래그에 의해 
+  사용 중단되었다.
 - `CSIMigrationvSphere`: vSphere 인-트리 플러그인에서 vSphere CSI 플러그인으로 볼륨 작업을
   라우팅하는 shim 및 변환 로직을 사용한다.
-  노드에 vSphere CSI 플러그인이 설치 및 구성이 되어 있지 않은 경우
-  인-트리 vSphere 플러그인으로 폴백을 지원한다. CSIMigration 기능 플래그가 필요하다.
+  이 기능이 비활성화되어 있거나 vSphere CSI 플러그인이 설치 및 구성되어 있지 않은 노드에서의 마운트 동작에 대해 
+  인-트리 vSphere 플러그인으로의 폴백(falling back)을 지원한다. 
+  프로비전 동작에 대해서는 폴백을 지원하지 않는데, 
+  프로비전 동작은 해당 CSI 플러그인이 설치 및 구성되어 있어야 가능하기 때문이다.
+  이 기능을 사용하려면 CSIMigration 기능 플래그가 활성화되어 있어야 한다.
 - `CSIMigrationvSphereComplete`: kubelet 및 볼륨 컨트롤러에서 vSphere 인-트리
   플러그인 등록을 중지하고 shim 및 변환 로직을 활성화하여 vSphere 인-트리 플러그인에서
   vSphere CSI 플러그인으로 볼륨 작업을 라우팅할 수 있도록 한다. CSIMigration 및
   CSIMigrationvSphere 기능 플래그가 활성화되고 vSphere CSI 플러그인이
-  클러스터의 모든 노드에 설치 및 구성이 되어 있어야 한다.
-- `CSINodeInfo`: csi.storage.k8s.io에서 CSINodeInfo API 오브젝트와 관련된 모든 로직을 활성화한다.
+  클러스터의 모든 노드에 설치 및 구성이 되어 있어야 한다. 
+  이 플래그는 인-트리 vsphere 플러그인의 등록을 막는 `InTreePluginvSphereUnregister` 기능 플래그로 인해
+  더 이상 사용되지 않는다.
+- `CSIMigrationPortworx`: Portworx 트리 내(in-tree) 플러그인으로 가는 볼륨 작업을 
+  Portworx CSI 플러그인으로 라우트하는 심(shim)과 변환 로직을 활성화한다. 
+  Portworx CSI 드라이버가 설치 및 설정되어 있어야 한다.
+- `CSINodeInfo`: `csi.storage.k8s.io` 내의 CSINodeInfo API 오브젝트와 관련된 모든 로직을 활성화한다.
 - `CSIPersistentVolume`: [CSI (Container Storage Interface)](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/storage/container-storage-interface.md)
   호환 볼륨 플러그인을 통해 프로비저닝된 볼륨을 감지하고
   마운트할 수 있다.
@@ -564,22 +768,31 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
   [토큰 요청](https://kubernetes-csi.github.io/docs/token-requests.html)을 참조한다.
 - `CSIStorageCapacity`: CSI 드라이버가 스토리지 용량 정보를 게시하고
   쿠버네티스 스케줄러가 파드를 스케줄할 때 해당 정보를 사용하도록 한다.
-  [스토리지 용량](/docs/concepts/storage/storage-capacity/)을 참고한다.
+  [스토리지 용량](/ko/docs/concepts/storage/storage-capacity/)을 참고한다.
   자세한 내용은 [`csi` 볼륨 유형](/ko/docs/concepts/storage/volumes/#csi) 문서를 확인한다.
 - `CSIVolumeFSGroupPolicy`: CSI드라이버가 `fsGroupPolicy` 필드를 사용하도록 허용한다.
   이 필드는 CSI드라이버에서 생성된 볼륨이 마운트될 때 볼륨 소유권과
   권한 수정을 지원하는지 여부를 제어한다.
 - `CSIVolumeHealth`: 노드에서의 CSI 볼륨 상태 모니터링 기능을 활성화한다.
+- `CSRDuration`: 클라이언트가 쿠버네티스 CSR API를 통해 발급된 인증서의 기간을
+  요청할 수 있다.
 - `ConfigurableFSGroupPolicy`: 사용자가 파드에 볼륨을 마운트할 때 fsGroups에 대한
   볼륨 권한 변경 정책을 구성할 수 있다. 자세한 내용은
   [파드의 볼륨 권한 및 소유권 변경 정책 구성](/docs/tasks/configure-pod-container/security-context/#configure-volume-permission-and-ownership-change-policy-for-pods)을
   참고한다.
+- `ContextualLogging`: 이 기능을 활성화하면, 
+  컨텍스츄얼 로깅을 지원하는 쿠버네티스 구성 요소가 로그 출력에 추가 상세를 추가한다.
+- `ControllerManagerLeaderMigration`: `kube-controller-manager` 및 `cloud-controller-manager`에 
+  대한 리더 마이그레이션을 지원한다.
 - `CronJobControllerV2`: {{< glossary_tooltip text="크론잡(CronJob)" term_id="cronjob" >}}
   컨트롤러의 대체 구현을 사용한다. 그렇지 않으면,
   동일한 컨트롤러의 버전 1이 선택된다.
-  버전 2 컨트롤러는 실험적인 성능 향상을 제공한다.
+- `CronJobTimeZone`: [크론잡](/ko/docs/concepts/workloads/controllers/cron-jobs/)의 선택적 `timeZone` 필드 사용을 허용한다.
 - `CustomCPUCFSQuotaPeriod`: [kubelet config](/docs/tasks/administer-cluster/kubelet-config-file/)에서
   `cpuCFSQuotaPeriod` 를 노드가 변경할 수 있도록 한다.
+- `CustomResourceValidationExpressions`: `x-kubernetes-validations` 확장 기능으로 작성된 
+  검증 규칙을 기반으로 커스텀 리소스를 검증하는 
+  표현 언어 검증(expression language validation)을 CRD에 활성화한다.
 - `CustomPodDNS`: `dnsConfig` 속성을 사용하여 파드의 DNS 설정을 사용자 정의할 수 있다.
   자세한 내용은 [파드의 DNS 설정](/ko/docs/concepts/services-networking/dns-pod-service/#pod-dns-config)을
   확인한다.
@@ -591,19 +804,31 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
   생성된 리소스에서 스키마 기반 유효성 검사를 활성화한다.
 - `CustomResourceWebhookConversion`: [커스텀리소스데피니션](/ko/docs/concepts/extend-kubernetes/api-extension/custom-resources/)에서
   생성된 리소스에 대해 웹 훅 기반의 변환을 활성화한다.
+- `DaemonSetUpdateSurge`: 노드당 업데이트 중 가용성을 유지하도록 
+  데몬셋 워크로드를 사용하도록 설정한다.
+  [데몬셋에서 롤링 업데이트 수행](/ko/docs/tasks/manage-daemon/update-daemon-set/)을 참고한다.
 - `DefaultPodTopologySpread`: `PodTopologySpread` 스케줄링 플러그인을 사용하여
   [기본 분배](/ko/docs/concepts/workloads/pods/pod-topology-spread-constraints/#내부-기본-제약)를 수행한다.
+- `DelegateFSGroupToCSIDriver`: CSI 드라이버가 지원할 경우, NodeStageVolume 및 NodePublishVolume CSI 호출을 통해 
+  `fsGroup`를 전달하여 파드의 `securityContext`에서 
+  `fsGroup`를 드라이브에 적용하는 역할을 위임한다.
 - `DevicePlugins`: 노드에서 [장치 플러그인](/ko/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)
   기반 리소스 프로비저닝을 활성화한다.
 - `DisableAcceleratorUsageMetrics`:
   [kubelet이 수집한 액셀러레이터 지표 비활성화](/ko/docs/concepts/cluster-administration/system-metrics/#액셀러레이터-메트릭-비활성화).
-- `DownwardAPIHugePages`: [다운워드 API](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information)에서
+- `DisableCloudProviders`: `kube-apiserver`,  `kube-controller-manager`, 
+  `--cloud-provider` 컴포넌트 플래그와 관련된 `kubelet`의 
+  모든 기능을 비활성화한다.
+- `DisableKubeletCloudCredentialProviders`: 이미지 풀 크리덴셜을 위해 
+  클라우드 프로바이더 컨테이너 레지스트리에 인증을 수행하는 kubelet 내부(in-tree) 기능을 비활성화한다.
+- `DownwardAPIHugePages`: [다운워드 API](/ko/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/)에서
   hugepages 사용을 활성화한다.
 - `DryRun`: 서버 측의 [dry run](/docs/reference/using-api/api-concepts/#dry-run) 요청을
   요청을 활성화하여 커밋하지 않고 유효성 검사, 병합 및 변화를 테스트할 수 있다.
 - `DynamicAuditing`: v1.19 이전의 버전에서 동적 감사를 활성화하는 데 사용된다.
-- `DynamicKubeletConfig`: kubelet의 동적 구성을 활성화한다.
-  [kubelet 재구성](/docs/tasks/administer-cluster/reconfigure-kubelet/)을 참고한다.
+- `DynamicKubeletConfig`: kubelet의 동적 구성을 활성화한다. 
+  이 기능은 지원하는 버전 차이(supported skew policy) 바깥에서는 더 이상 지원되지 않는다. 
+  이 기능 게이트는 1.24에 kubelet에서 제거되었다. [kubelet 재구성하기](/docs/tasks/administer-cluster/reconfigure-kubelet/)를 참고한다.
 - `DynamicProvisioningScheduling`: 볼륨 토폴로지를 인식하고 PV 프로비저닝을 처리하도록
   기본 스케줄러를 확장한다.
   이 기능은 v1.12의 `VolumeScheduling` 기능으로 대체되었다.
@@ -635,30 +860,43 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
   현재 수정된 결함에 의존하는 경우 존재한다.
   [준비성 프로브](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes)를 참조한다.
 - `ExpandCSIVolumes`: CSI 볼륨 확장을 활성화한다.
+- `ExpandedDNSConfig`: 더 많은 DNS 검색 경로와 더 긴 DNS 검색 경로 목록을 허용하려면 
+  kubelet과 kube-apiserver를 사용하도록 설정한다.
+  이 기능을 사용하려면 컨테이너 런타임이 지원해야 한다(Containerd: v1.5.6 이상, CRI-O: v1.22 이상).
+  [확장된 DNS 구성](/ko/docs/concepts/services-networking/dns-pod-service/#확장된-dns-환경-설정)을 참고한다.
 - `ExpandInUsePersistentVolumes`: 사용 중인 PVC를 확장할 수 있다.
   [사용 중인 퍼시스턴트볼륨클레임 크기 조정](/ko/docs/concepts/storage/persistent-volumes/#사용-중인-퍼시스턴트볼륨클레임-크기-조정)을 참고한다.
 - `ExpandPersistentVolumes`: 퍼시스턴트 볼륨 확장을 활성화한다.
   [퍼시스턴트 볼륨 클레임 확장](/ko/docs/concepts/storage/persistent-volumes/#퍼시스턴트-볼륨-클레임-확장)을 참고한다.
 - `ExperimentalCriticalPodAnnotation`: 특정 파드에 *critical* 로
-  어노테이션을 달아서 [스케줄링이 보장되도록](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/) 한다.
+  어노테이션을 달아서 [스케줄링이 보장되도록](/ko/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/) 한다.
   이 기능은 v1.13부터 파드 우선 순위 및 선점으로 인해 사용 중단되었다.
 - `ExperimentalHostUserNamespaceDefaulting`: 사용자 네임스페이스를 호스트로
   기본 활성화한다. 이것은 다른 호스트 네임스페이스, 호스트 마운트,
   권한이 있는 컨테이너 또는 특정 비-네임스페이스(non-namespaced) 기능(예: `MKNODE`, `SYS_MODULE` 등)을
   사용하는 컨테이너를 위한 것이다. 도커 데몬에서 사용자 네임스페이스
   재 매핑이 활성화된 경우에만 활성화해야 한다.
-- `ExternalPolicyForExternalIP`: ExternalTrafficPolicy가 서비스(Service) ExternalIP에 적용되지 않는 버그를 수정한다.
+- `ExternalPolicyForExternalIP`: ExternalTrafficPolicy가 서비스(Service) ExternalIP에 적용되지 않는 
+  버그를 수정한다.
 - `GCERegionalPersistentDisk`: GCE에서 지역 PD 기능을 활성화한다.
 - `GenericEphemeralVolume`: 일반 볼륨의 모든 기능을 지원하는 임시, 인라인
   볼륨을 활성화한다(타사 스토리지 공급 업체, 스토리지 용량 추적, 스냅샷으로부터 복원
   등에서 제공할 수 있음).
-  [임시 볼륨](/docs/concepts/storage/ephemeral-volumes/)을 참고한다.
+  [임시 볼륨](/ko/docs/concepts/storage/ephemeral-volumes/)을 참고한다.
 - `GracefulNodeShutdown` : kubelet에서 정상 종료를 지원한다.
   시스템 종료 중에 kubelet은 종료 이벤트를 감지하고 노드에서 실행 중인
   파드를 정상적으로 종료하려고 시도한다. 자세한 내용은
   [Graceful Node Shutdown](/ko/docs/concepts/architecture/nodes/#그레이스풀-graceful-노드-셧다운)을
   참조한다.
-- `HPAContainerMetrics`: `HorizontalPodAutoscaler`를 활성화하여 대상 파드의
+- `GracefulNodeShutdownBasedOnPodPriority`: 그레이스풀(graceful) 노드 셧다운을 할 때 
+  kubelet이 파드 우선순위를 체크할 수 있도록 활성화한다.
+- `GRPCContainerProbe`: 활성 프로브(Liveness Probe), 준비성 프로브(Readiness Probe), 스타트업 프로브(Startup Probe)에 대해 gRPC 프로브를 활성화한다. 
+  [활성/준비성/스타트업 프로브 구성하기](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#define-a-grpc-liveness-probe)를 참조한다.
+- `HonorPVReclaimPolicy`: 퍼시스턴트 볼륨 회수 정책이 `Delete`인 경우 PV-PVC 삭제 순서와 상관없이 정책을 준수한다.
+  더 자세한 정보는 
+  [퍼시스턴트볼륨 삭제 보호 파이널라이저(finalizer)](/ko/docs/concepts/storage/persistent-volumes/#persistentvolume-deletion-protection-finalizer) 문서를 
+  참고한다.
+- `HPAContainerMetrics`: `HorizontalPodAutoscaler` 를 활성화하여 대상 파드의
   개별 컨테이너 메트릭을 기반으로 확장한다.
 - `HPAScaleToZero`: 사용자 정의 또는 외부 메트릭을 사용할 때 `HorizontalPodAutoscaler` 리소스에 대해
   `minReplicas` 를 0으로 설정한다.
@@ -669,33 +907,72 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
 - `HyperVContainer`: 윈도우 컨테이너를 위한
   [Hyper-V 격리](https://docs.microsoft.com/ko-kr/virtualization/windowscontainers/manage-containers/hyperv-container)
   기능을 활성화한다.
+- `IdentifyPodOS`: 파드 OS 필드를 지정할 수 있게 한다. 
+  이를 통해 API 서버 관리 시 파드의 OS를 정석적인 방법으로 알 수 있다. 
+  쿠버네티스 {{< skew currentVersion >}}에서, 
+  `pod.spec.os.name` 에 사용할 수 있는 값은 `windows` 와 `linux` 이다.
 - `ImmutableEphemeralVolumes`: 안정성과 성능 향상을 위해 개별 시크릿(Secret)과 컨피그맵(ConfigMap)을
   변경할 수 없는(immutable) 것으로 표시할 수 있다.
-- `IndexedJob`: [잡](/ko/docs/concepts/workloads/controllers/job/) 컨트롤러가
-  완료 횟수를 기반으로 파드 완료를 관리할 수 있도록 한다.
-- `IngressClassNamespacedParams`: `IngressClass` 리소스가 네임스페이스 범위로
-  한정된 파라미터를 이용할 수 있도록 한다. 이 기능은 `IngressClass.spec.parameters` 에
-  `Scope` 와 `Namespace` 2개의 필드를 추가한다.
-- `Initializers`: Initializers 어드미션 플러그인을 사용하여 오브젝트 생성의
-  비동기 조정을 허용한다.
+- `IndexedJob`: [잡](/ko/docs/concepts/workloads/controllers/job/) 컨트롤러가 파드 완료(completion)를 
+  완료 인덱스에 따라 관리할 수 있도록 허용한다.
+- `IngressClassNamespacedParams`: 네임스페이스 범위의 파라미터가 
+  `IngressClass` 리소스를 참조할 수 있도록 허용한다. 
+  이 기능은 `IngressClass.spec.parameters`에 `Scope` 및 `Namespace`의 2 필드를 추가한다.
+- `Initializers`: Initializers 어드미션 플러그인을 사용하여, 
+  오브젝트 생성 시 비동기 협조(asynchronous coordination)를 허용한다.
+- `InTreePluginAWSUnregister`: kubelet 및 볼륨 컨트롤러에 aws-ebs 인-트리 
+  플러그인의 등록을 중지한다.
+- `InTreePluginAzureDiskUnregister`: kubelet 및 볼륨 컨트롤러에 azuredisk 인-트리 
+  플러그인의 등록을 중지한다.
+- `InTreePluginAzureFileUnregister`: kubelet 및 볼륨 컨트롤러에 azurefile 인-트리 
+  플러그인의 등록을 중지한다.
+- `InTreePluginGCEUnregister`: kubelet 및 볼륨 컨트롤러에 gce-pd 인-트리 
+  플러그인의 등록을 중지한다.
+- `InTreePluginOpenStackUnregister`: kubelet 및 볼륨 컨트롤러에 오픈스택 cinder 인-트리 
+  플러그인의 등록을 중지한다.
+- `InTreePluginPortworxUnregister`: kubelet 및 볼륨 컨트롤러에 Portworx 인-트리 
+  플러그인의 등록을 중지한다.
+- `InTreePluginRBDUnregister`: kubelet 및 볼륨 컨트롤러에 RBD 인-트리 
+  플러그인의 등록을 중지한다.
+- `InTreePluginvSphereUnregister`: kubelet 및 볼륨 컨트롤러에 vSphere 인-트리 
+  플러그인의 등록을 중지한다.
 - `IPv6DualStack`: IPv6을 위한 [이중 스택](/ko/docs/concepts/services-networking/dual-stack/)
   기능을 활성화한다.
+- `JobMutableNodeSchedulingDirectives`: [잡](/ko/docs/concepts/workloads/controllers/job/)의 
+  파드 템플릿에 있는 노드 스케줄링 지시를 업데이트할 수 있게 한다.
+- `JobReadyPods`: 파드 [컨디션](/ko/docs/concepts/workloads/pods/pod-lifecycle/#파드의-조건)이 
+  `Ready`인 파드의 수를 추적하는 기능을 활성화한다. 
+  `Ready`인 파드의 수는 [잡](/ko/docs/concepts/workloads/controllers/job/) 상태의 
+  [status](/docs/reference/kubernetes-api/workload-resources/job-v1/#JobStatus) 
+  필드에 기록된다.
+- `JobTrackingWithFinalizers`: 클러스터에 무제한으로 남아 있는 파드에 의존하지 않고 
+  [잡](/ko/docs/concepts/workloads/controllers/job)의 완료를 추적할 수 있다.
+  잡 컨트롤러는 완료된 파드를 추적하기 위해 
+  완료된 파드의 잡 상태 필드를 사용한다.
 - `KubeletConfigFile`: 구성 파일을 사용하여 지정된 파일에서
   kubelet 구성을 로드할 수 있다.
   자세한 내용은 [구성 파일을 통해 kubelet 파라미터 설정](/docs/tasks/administer-cluster/kubelet-config-file/)을
   참고한다.
-- `KubeletCredentialProviders`: 이미지 풀 자격 증명에 대해 kubelet exec 자격 증명 공급자를 활성화한다.
+- `KubeletCredentialProviders`: 이미지 풀 자격 증명에 대해 
+  kubelet exec 자격 증명 공급자를 활성화한다.
+- `KubeletInUserNamespace`: {{<glossary_tooltip text="user namespace" term_id="userns">}}에서 
+  kubelet 실행을 활성화한다.
+  [루트가 아닌 유저로 쿠버네티스 노드 컴포넌트 실행](/docs/tasks/administer-cluster/kubelet-in-userns/)을 참고한다.
 - `KubeletPluginsWatcher`: kubelet이 [CSI 볼륨 드라이버](/ko/docs/concepts/storage/volumes/#csi)와 같은
   플러그인을 검색할 수 있도록 프로브 기반 플러그인 감시자(watcher) 유틸리티를 사용한다.
 - `KubeletPodResources`: kubelet의 파드 리소스 gPRC 엔드포인트를 활성화한다. 자세한 내용은
   [장치 모니터링 지원](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/606-compute-device-assignment/README.md)을
   참고한다.
-- `KubeletPodResourcesGetAllocatable`: kubelet의 파드 리소스 `GetAllocatableResources` 기능을 활성화한다.
-  이 API는 클라이언트가 노드의 여유 컴퓨팅 자원을 잘 파악할 수 있도록, 할당 가능 자원에 대한 정보를
+- `KubeletPodResourcesGetAllocatable`: kubelet의 파드 리소스 
+  `GetAllocatableResources` 기능을 활성화한다.
+  이 API는 클라이언트가 노드의 여유 컴퓨팅 자원을 잘 파악할 수 있도록, 
+  할당 가능 자원에 대한 정보를
   [자원 할당 보고](/ko/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/#장치-플러그인-리소스-모니터링)한다.
 - `LegacyNodeRoleBehavior`: 비활성화되면, 서비스 로드 밸런서 및 노드 중단의 레거시 동작은
   `NodeDisruptionExclusion` 과 `ServiceNodeExclusion` 에 의해 제공된 기능별 레이블을 대신하여
   `node-role.kubernetes.io/master` 레이블을 무시한다.
+- `LegacyServiceAccountTokenNoAutoGeneration`: 시크릿 기반 
+  [서비스 어카운트 토큰](/docs/reference/access-authn-authz/authentication/#service-account-tokens)의 자동 생성을 중단한다.
 - `LocalStorageCapacityIsolation`:
   [로컬 임시 스토리지](/ko/docs/concepts/configuration/manage-resources-containers/)와
   [emptyDir 볼륨](/ko/docs/concepts/storage/volumes/#emptydir)의
@@ -709,27 +986,52 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
   향상시킨다.
 - `LogarithmicScaleDown`: 컨트롤러 스케일 다운 시에 파드 타임스탬프를 로그 스케일로 버켓화하여
   축출할 파드를 반-랜덤하게 선택하는 기법을 활성화한다.
+- `MaxUnavailableStatefulSet`: 스테이트풀셋의 
+  [롤링 업데이트 전략](/ko/docs/concepts/workloads/controllers/statefulset/#롤링-업데이트)에 대해 
+  `maxUnavailable` 필드를 설정할 수 있도록 한다. 
+  이 필드는 업데이트 동안 사용 불가능(unavailable) 상태의 파드를 몇 개까지 허용할지를 정한다.
+- `MemoryManager`: NUMA 토폴로지를 기반으로 컨테이너에 대한 
+  메모리 어피니티를 설정할 수 있다.
+- `MemoryQoS`: cgroup v2 메모리 컨트롤러를 사용하여 
+  파드/컨테이너에서 메모리 보호 및 사용 제한을 사용하도록 설정한다.
+- `MinDomainsInPodTopologySpread`: 파드 [토폴로지 분배 제약 조건](/ko/docs/concepts/workloads/pods/pod-topology-spread-constraints/) 내의 
+  `minDomains` 사용을 활성화한다.
 - `MixedProtocolLBService`: 동일한 로드밸런서 유형 서비스 인스턴스에서 다른 프로토콜
   사용을 활성화한다.
 - `MountContainers`: 호스트의 유틸리티 컨테이너를 볼륨 마운터로 사용할 수 있다.
 - `MountPropagation`: 한 컨테이너에서 다른 컨테이너 또는 파드로 마운트된 볼륨을 공유할 수 있다.
   자세한 내용은 [마운트 전파(propagation)](/ko/docs/concepts/storage/volumes/#마운트-전파-propagation)을 참고한다.
 - `NamespaceDefaultLabelName`: API 서버로 하여금 모든 네임스페이스에 대해 변경할 수 없는 (immutable)
-  {{< glossary_tooltip text="레이블" term_id="label" >}} `kubernetes.io/metadata.name`을 설정하도록 한다. (네임스페이스의 이름도 변경 불가)
-- `NetworkPolicyEndPort`: 네트워크폴리시(NetworkPolicy)	오브젝트에서 단일 포트를 지정하는 것 대신에 포트 범위를 지정할 수 있도록, `endPort` 필드의 사용을 활성화한다.
+  {{< glossary_tooltip text="레이블" term_id="label" >}} `kubernetes.io/metadata.name`을 설정하도록 한다. 
+  (네임스페이스의 이름도 변경 불가)
+- `NetworkPolicyEndPort`: 네트워크폴리시(NetworkPolicy)	오브젝트에서 단일 포트를 지정하는 것 대신에 
+  포트 범위를 지정할 수 있도록, `endPort` 필드의 사용을 활성화한다.
+- `NetworkPolicyStatus`: 네트워크폴리시 오브젝트에 대해 `status` 서브리소스를 활성화한다.
 - `NodeDisruptionExclusion`: 영역(zone) 장애 시 노드가 제외되지 않도록 노드 레이블 `node.kubernetes.io/exclude-disruption`
   사용을 활성화한다.
 - `NodeLease`: 새로운 리스(Lease) API가 노드 상태 신호로 사용될 수 있는 노드 하트비트(heartbeats)를 보고할 수 있게 한다.
+- `NodeOutOfServiceVolumeDetach`: 노드가 `node.kubernetes.io/out-of-service` 테인트를 사용하여 서비스 불가(out-of-service)로 표시되면, 
+  노드에 있던 이 테인트를 허용하지 않는 파드는 강제로 삭제되며, 
+  종료되는 파드에 대한 볼륨 해제(detach) 동작도 즉시 수행된다. 
+  이로 인해 삭제된 파드가 다른 노드에서 빠르게 복구될 수 있다.
+- `NodeSwap`: 노드의 쿠버네티스 워크로드용 스왑 메모리를 할당하려면 kubelet을 활성화한다.
+  반드시 `KubeletConfiguration.failSwapOn`를 false로 설정한 후 사용해야 한다.
+  더 자세한 정보는 [스왑 메모리](/ko/docs/concepts/architecture/nodes/#swap-memory)를 참고한다.
 - `NonPreemptingPriority`: 프라이어리티클래스(PriorityClass)와 파드에 `preemptionPolicy` 필드를 활성화한다.
-- `PVCProtection`: 파드에서 사용 중일 때 퍼시스턴트볼륨클레임(PVC)이
-  삭제되지 않도록 한다.
+- `OpenAPIEnums`: API 서버로부터 리턴된 스펙 내 OpenAPI 스키마의 
+  "enum" 필드 채우기를 활성화한다.
+- `OpenAPIV3`: API 서버의 OpenAPI v3 발행을 활성화한다.
 - `PodDeletionCost`: 레플리카셋 다운스케일 시 삭제될 파드의 우선순위를 사용자가 조절할 수 있도록,
    [파드 삭제 비용](/ko/docs/concepts/workloads/controllers/replicaset/#파드-삭제-비용) 기능을 활성화한다.
 - `PersistentLocalVolumes`: 파드에서 `local` 볼륨 유형의 사용을 활성화한다.
   `local` 볼륨을 요청하는 경우 파드 어피니티를 지정해야 한다.
+- `PodAndContainerStatsFromCRI`: kubelet이 컨테이너와 파드 통계(stat) 정보를 cAdvisor가 아니라 
+  CRI 컨테이너 런타임으로부터 수집하도록 설정한다.
 - `PodDisruptionBudget`: [PodDisruptionBudget](/docs/tasks/run-application/configure-pdb/) 기능을 활성화한다.
-- `PodAffinityNamespaceSelector`: [파드 어피니티 네임스페이스 셀렉터](/ko/docs/concepts/scheduling-eviction/assign-pod-node/#네임스페이스-셀렉터) 기능과
-  [CrossNamespacePodAffinity](/ko/docs/concepts/policy/resource-quotas/#네임스페이스-간-파드-어피니티-쿼터) 쿼터 범위 기능을 활성화한다.
+- `PodAffinityNamespaceSelector`: [파드 어피니티 네임스페이스 셀렉터](/ko/docs/concepts/scheduling-eviction/assign-pod-node/#네임스페이스-셀렉터) 
+  기능과
+  [CrossNamespacePodAffinity](/ko/docs/concepts/policy/resource-quotas/#네임스페이스-간-파드-어피니티-쿼터) 
+  쿼터 범위 기능을 활성화한다.
 - `PodOverhead`: 파드 오버헤드를 판단하기 위해 [파드오버헤드(PodOverhead)](/ko/docs/concepts/scheduling-eviction/pod-overhead/)
   기능을 활성화한다.
 - `PodPriority`: [우선 순위](/ko/docs/concepts/scheduling-eviction/pod-priority-preemption/)를
@@ -737,22 +1039,39 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
 - `PodReadinessGates`: 파드 준비성 평가를 확장하기 위해
   `PodReadinessGate` 필드 설정을 활성화한다. 자세한 내용은 [파드의 준비성 게이트](/ko/docs/concepts/workloads/pods/pod-lifecycle/#pod-readiness-gate)를
   참고한다.
+- `PodSecurity`: `PodSecurity` 어드미션 플러그인을 사용하도록 설정한다.
 - `PodShareProcessNamespace`: 파드에서 실행되는 컨테이너 간에 단일 프로세스 네임스페이스를
   공유하기 위해 파드에서 `shareProcessNamespace` 설정을 활성화한다. 자세한 내용은
   [파드의 컨테이너 간 프로세스 네임스페이스 공유](/docs/tasks/configure-pod-container/share-process-namespace/)에서 확인할 수 있다.
+- `PreferNominatedNode`: 이 플래그는 클러스터에 존재하는 다른 노드를 반복해서 검사하기 전에 
+  지정된 노드를 먼저 검사할지 여부를 
+  스케줄러에 알려준다.
 - `ProbeTerminationGracePeriod`: 파드의 [프로브-수준
-  `terminationGracePeriodSeconds` 설정하기](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#probe-level-terminationgraceperiodseconds) 기능을 활성화한다.
+  `terminationGracePeriodSeconds` 설정하기](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#probe-level-terminationgraceperiodseconds) 
+  기능을 활성화한다.
   더 자세한 사항은 [기능개선 제안](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2238-liveness-probe-grace-period)을 참고한다.
 - `ProcMountType`: SecurityContext의 `procMount` 필드를 설정하여
   컨테이너의 proc 타입의 마운트를 제어할 수 있다.
+- `ProxyTerminatingEndpoints`: `ExternalTrafficPolicy=Local`일 때 종료 엔드포인트를 처리하도록 
+  kube-proxy를 활성화한다.
+- `PVCProtection`: 파드에서 사용 중일 때 퍼시스턴트볼륨클레임(PVC)이
+  삭제되지 않도록 한다.
 - `QOSReserved`: QoS 수준에서 리소스 예약을 허용하여 낮은 QoS 수준의 파드가
   더 높은 QoS 수준에서 요청된 리소스로 파열되는 것을 방지한다
   (현재 메모리만 해당).
+- `ReadWriteOncePod`: `ReadWriteOncePod` 퍼시스턴트 볼륨 엑세스 모드를
+  사용한다.
+- `RecoverVolumeExpansionFailure`: 이전에 실패했던 볼륨 확장으로부터 복구할 수 있도록, 
+  사용자가 PVC를 더 작은 크기로 변경할 수 있도록 한다. 
+  [볼륨 확장 시 오류 복구](/ko/docs/concepts/storage/persistent-volumes/#볼륨-확장-시-오류-복구)에서 
+  자세한 사항을 확인한다.
 - `RemainingItemCount`: API 서버가
   [청크(chunking) 목록 요청](/docs/reference/using-api/api-concepts/#retrieving-large-results-sets-in-chunks)에 대한
   응답에서 남은 항목 수를 표시하도록 허용한다.
-- `RemoveSelfLink`: ObjectMeta 및 ListMeta에서 `selfLink` 를 사용하지 않고
-  제거한다.
+- `RemoveSelfLink`: 모든 오브젝트와 콜렉션에 대해 `.metadata.selfLink` 필드를 빈 칸(빈 문자열)으로 설정한다. 
+  이 필드는 쿠버네티스 v1.16에서 사용 중단되었다. 
+  이 기능을 활성화하면, `.metadata.selfLink` 필드는 쿠버네티스 API에 존재하지만, 
+  항상 빈 칸으로 유지된다.
 - `RequestManagement`: 각 API 서버에서 우선 순위 및 공정성으로 요청 동시성을
   관리할 수 있다. 1.17 이후 `APIPriorityAndFairness` 에서 사용 중단되었다.
 - `ResourceLimitsPriorityFunction`: 입력 파드의 CPU 및 메모리 한도 중
@@ -767,7 +1086,8 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
   [바운드 서비스 계정 토큰](https://github.com/kubernetes/enhancements/blob/master/keps/sig-auth/1205-bound-service-account-tokens/README.md)을
   참조한다.
 - `RotateKubeletClientCertificate`: kubelet에서 클라이언트 TLS 인증서의 로테이션을 활성화한다.
-  자세한 내용은 [kubelet 구성](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/#kubelet-configuration)을 참고한다.
+  자세한 내용은 
+  [kubelet 구성](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/#kubelet-configuration)을 참고한다.
 - `RotateKubeletServerCertificate`: kubelet에서 서버 TLS 인증서의 로테이션을 활성화한다.
   자세한 사항은
   [kubelet 구성](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/#kubelet-configuration)을 확인한다.
@@ -779,8 +1099,16 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
   스케줄링할 수 있다.
 - `SCTPSupport`: 파드, 서비스, 엔드포인트, 엔드포인트슬라이스 및 네트워크폴리시 정의에서
   _SCTP_ `protocol` 값을 활성화한다.
+- `SeccompDefault`: 모든 워크로드의 기본 구분 프로파일로 
+  `RuntimeDefault`을 사용한다.
+  seccomp 프로파일은 파드 및 컨테이너 `securityContext`에 지정되어 있다.
+- `SelectorIndex`: API 서버 감시(watch) 캐시의 레이블 및 필드 기반 인덱스를 사용하여
+  목록 작업을 가속화할 수 있다.
 - `ServerSideApply`: API 서버에서 [SSA(Sever Side Apply)](/docs/reference/using-api/server-side-apply/)
   경로를 활성화한다.
+- `ServerSideFieldValidation`: 서버-사이드(server-side) 필드 검증을 활성화한다. 
+  이는 리소스 스키마의 검증이 클라이언트 사이드(예: `kubectl create` 또는 `kubectl apply` 명령줄)가 아니라 
+  API 서버 사이드에서 수행됨을 의미한다.
 - `ServiceAccountIssuerDiscovery`: API 서버에서 서비스 어카운트 발행자에 대해 OIDC 디스커버리 엔드포인트(발급자 및
   JWKS URL)를 활성화한다. 자세한 내용은
   [파드의 서비스 어카운트 구성](/docs/tasks/configure-pod-container/configure-service-account/#service-account-issuer-discovery)을
@@ -788,7 +1116,8 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
 - `ServiceAppProtocol`: 서비스와 엔드포인트에서 `appProtocol` 필드를 활성화한다.
 - `ServiceInternalTrafficPolicy`: 서비스에서 `internalTrafficPolicy` 필드를 활성화한다.
 - `ServiceLBNodePortControl`: 서비스에서 `allocateLoadBalancerNodePorts` 필드를 활성화한다.
-- `ServiceLoadBalancerClass`: 서비스에서 `loadBalancerClass` 필드를 활성화한다. 자세한 내용은
+- `ServiceLoadBalancerClass`: 서비스에서 `loadBalancerClass` 필드를 활성화한다. 
+  자세한 내용은
   [로드밸런서 구현체의 종류 확인하기](/ko/docs/concepts/services-networking/service/#load-balancer-class)를 참고한다.
 - `ServiceLoadBalancerFinalizer`: 서비스 로드 밸런서에 대한 Finalizer 보호를 활성화한다.
 - `ServiceNodeExclusion`: 클라우드 제공자가 생성한 로드 밸런서에서 노드를
@@ -798,6 +1127,12 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
   있도록 한다. 자세한 내용은
   [서비스토폴로지(ServiceTopology)](/ko/docs/concepts/services-networking/service-topology/)를
   참고한다.
+- `ServiceIPStaticSubrange`: ClusterIP 범위를 분할하는 
+  서비스 ClusterIP 할당 전략을 활성화한다. 
+  ClusterIP 동적 할당을 주로 상위 범위에서 수행하여, 
+  사용자가 고정 ClusterIP를 하위 범위에서 할당하는 상황에서도 충돌 확률을 낮출 수 있다. 
+  더 자세한 사항은 
+  [충돌 방지](/ko/docs/concepts/services-networking/service/#avoiding-collisions)를 참고한다.
 - `SetHostnameAsFQDN`: 전체 주소 도메인 이름(FQDN)을 파드의 호스트 이름으로
   설정하는 기능을 활성화한다.
   [파드의 `setHostnameAsFQDN` 필드](/ko/docs/concepts/services-networking/dns-pod-service/#pod-sethostnameasfqdn-field)를 참고한다.
@@ -806,6 +1141,8 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
 - `StartupProbe`: kubelet에서
   [스타트업](/ko/docs/concepts/workloads/pods/pod-lifecycle/#언제-스타트업-프로브를-사용해야-하는가)
   프로브를 활성화한다.
+- `StatefulSetMinReadySeconds`: 스테이트풀셋 컨트롤러가 `minReadySeconds`를 
+  반영할 수 있다.
 - `StorageObjectInUseProtection`: 퍼시스턴트볼륨 또는 퍼시스턴트볼륨클레임 오브젝트가 여전히
   사용 중인 경우 삭제를 연기한다.
 - `StorageVersionAPI`: [스토리지 버전 API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#storageversion-v1alpha1-internal-apiserver-k8s-io)를
@@ -828,7 +1165,7 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
   참고한다.
 - `Sysctls`: 각 파드에 설정할 수 있는 네임스페이스 커널
   파라미터(sysctl)를 지원한다. 자세한 내용은
-  [sysctl](/docs/tasks/administer-cluster/sysctl-cluster/)을 참고한다.
+  [sysctl](/ko/docs/tasks/administer-cluster/sysctl-cluster/)을 참고한다.
 - `TTLAfterFinished`: [TTL 컨트롤러](/ko/docs/concepts/workloads/controllers/ttlafterfinished/)가
   실행이 끝난 후 리소스를 정리하도록
   허용한다.
@@ -843,7 +1180,7 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
   서비스 어카운트 토큰을 파드에 주입할 수 있다.
 - `TopologyAwareHints`: 엔드포인트슬라이스(EndpointSlices)에서 토폴로지 힌트 기반
   토폴로지-어웨어 라우팅을 활성화한다. 자세한 내용은
-  [토폴로지 어웨어 힌트](/docs/concepts/services-networking/topology-aware-hints/)
+  [토폴로지 인지 힌트](/ko/docs/concepts/services-networking/topology-aware-hints/)
   를 참고한다.
 - `TopologyManager`: 쿠버네티스의 다른 컴포넌트에 대한 세분화된 하드웨어 리소스
   할당을 조정하는 메커니즘을 활성화한다.
@@ -866,18 +1203,24 @@ kubelet과 같은 컴포넌트의 기능 게이트를 설정하려면, 기능 
 - `WatchBookmark`: 감시자 북마크(watch bookmark) 이벤트 지원을 활성화한다.
 - `WinDSR`: kube-proxy가 윈도우용 DSR 로드 밸런서를 생성할 수 있다.
 - `WinOverlay`: kube-proxy가 윈도우용 오버레이 모드에서 실행될 수 있도록 한다.
-- `WindowsGMSA`: 파드에서 컨테이너 런타임으로 GMSA 자격 증명 스펙을 전달할 수 있다.
-- `WindowsRunAsUserName` : 기본 사용자가 아닌(non-default) 사용자로 윈도우 컨테이너에서
-  애플리케이션을 실행할 수 있도록 지원한다. 자세한 내용은
-  [RunAsUserName 구성](/ko/docs/tasks/configure-pod-container/configure-runasusername/)을
-  참고한다.
 - `WindowsEndpointSliceProxying`: 활성화되면, 윈도우에서 실행되는 kube-proxy는
   엔드포인트 대신 엔드포인트슬라이스를 기본 데이터 소스로 사용하여
   확장성과 성능을 향상시킨다.
   [엔드포인트슬라이스 활성화하기](/ko/docs/concepts/services-networking/endpoint-slices/)를 참고한다.
+- `WindowsGMSA`: 파드에서 컨테이너 런타임으로 GMSA 자격 증명 스펙을 전달할 수 있다.
+- `WindowsHostProcessContainers`: 윈도우 HostProcess 컨테이너에 대한 지원을 사용하도록 설정한다.
+- `WindowsRunAsUserName` : 기본 사용자가 아닌(non-default) 사용자로 윈도우 컨테이너에서
+  애플리케이션을 실행할 수 있도록 지원한다. 자세한 내용은
+  [RunAsUserName 구성](/ko/docs/tasks/configure-pod-container/configure-runasusername/)을
+  참고한다.
 
 
 ## {{% heading "whatsnext" %}}
 
 * [사용 중단 정책](/docs/reference/using-api/deprecation-policy/)은 쿠버네티스에 대한
   기능과 컴포넌트를 제거하는 프로젝트의 접근 방법을 설명한다.
+* 쿠버네티스 1.24부터, 새로운 베타 API는 기본적으로 활성화되어 있지 않다. 
+  베타 기능을 활성화하려면, 연관된 API 리소스도 활성화해야 한다. 
+  예를 들어, `storage.k8s.io/v1beta1/csistoragecapacities`와 같은 특정 리소스를 활성화하려면, 
+  `--runtime-config=storage.k8s.io/v1beta1/csistoragecapacities`를 설정한다. 
+  명령줄 플래그에 대한 상세 사항은 [API 버전 규칙](/ko/docs/reference/using-api/#api-버전-규칙)을 참고한다.
diff --git a/content/ko/docs/reference/command-line-tools-reference/kube-proxy.md b/content/ko/docs/reference/command-line-tools-reference/kube-proxy.md
index 29e9deee83..70753d44a4 100644
--- a/content/ko/docs/reference/command-line-tools-reference/kube-proxy.md
+++ b/content/ko/docs/reference/command-line-tools-reference/kube-proxy.md
@@ -42,20 +42,6 @@ kube-proxy [flags]
 </colgroup>
 <tbody>
 
-<tr>
-<td colspan="2">--add-dir-header</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>true로 되어 있으면, 로그 메시지의 헤더에 파일 디렉터리를 기재한다.</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--alsologtostderr</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>로그를 파일뿐만 아니라 표준 에러(standard error)로도 출력한다.</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--azure-container-registry-config string</td>
 </tr>
@@ -84,6 +70,13 @@ kube-proxy [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>boot-id를 위해 확인할 파일 목록(쉼표로 분리). 가장 먼저 발견되는 항목을 사용한다.</p></td>
 </tr>
 
+<tr>
+<td colspan="2">--boot_id_file string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;기본값: "/proc/sys/kernel/random/boot_id"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>boot-id를 체크할 파일들의 콤마로 구분된 목록. 목록 중에서, 존재하는 첫 번째 파일을 사용한다.</p></td>
+</tr>
+
 <tr>
 <td colspan="2">--cleanup</td>
 </tr>
@@ -179,7 +172,7 @@ kube-proxy [flags]
 <td colspan="2">--feature-gates mapStringBool</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>알파/실험 기능에 대한 기능 게이트를 설명하는 키=값 쌍 집합. 옵션은 다음과 같다.<br/>APIListChunking=true|false (BETA - 기본값=true)<br/>APIPriorityAndFairness=true|false (BETA - 기본값=true)<br/>APIResponseCompression=true|false (BETA - 기본값=true)<br/>APIServerIdentity=true|false (ALPHA - 기본값=false)<br/>AllAlpha=true|false (ALPHA - 기본값=false)<br/>AllBeta=true|false (BETA - 기본값=false)<br/>AnyVolumeDataSource=true|false (ALPHA - 기본값=false)<br/>AppArmor=true|false (BETA - 기본값=true)<br/>BalanceAttachedNodeVolumes=true|false (ALPHA - 기본값=false)<br/>BoundServiceAccountTokenVolume=true|false (BETA - 기본값=true)<br/>CPUManager=true|false (BETA - 기본값=true)<br/>CSIInlineVolume=true|false (BETA - 기본값=true)<br/>CSIMigration=true|false (BETA - 기본값=true)<br/>CSIMigrationAWS=true|false (BETA - 기본값=false)<br/>CSIMigrationAzureDisk=true|false (BETA - 기본값=false)<br/>CSIMigrationAzureFile=true|false (BETA - 기본값=false)<br/>CSIMigrationGCE=true|false (BETA - 기본값=false)<br/>CSIMigrationOpenStack=true|false (BETA - 기본값=true)<br/>CSIMigrationvSphere=true|false (BETA - 기본값=false)<br/>CSIMigrationvSphereComplete=true|false (BETA - 기본값=false)<br/>CSIServiceAccountToken=true|false (BETA - 기본값=true)<br/>CSIStorageCapacity=true|false (BETA - 기본값=true)<br/>CSIVolumeFSGroupPolicy=true|false (BETA - 기본값=true)<br/>CSIVolumeHealth=true|false (ALPHA - 기본값=false)<br/>ConfigurableFSGroupPolicy=true|false (BETA - 기본값=true)<br/>ControllerManagerLeaderMigration=true|false (ALPHA - 기본값=false)<br/>CronJobControllerV2=true|false (BETA - 기본값=true)<br/>CustomCPUCFSQuotaPeriod=true|false (ALPHA - 기본값=false)<br/>DaemonSetUpdateSurge=true|false (ALPHA - 기본값=false)<br/>DefaultPodTopologySpread=true|false (BETA - 기본값=true)<br/>DevicePlugins=true|false (BETA - 기본값=true)<br/>DisableAcceleratorUsageMetrics=true|false (BETA - 기본값=true)<br/>DownwardAPIHugePages=true|false (BETA - 기본값=false)<br/>DynamicKubeletConfig=true|false (BETA - 기본값=true)<br/>EfficientWatchResumption=true|false (BETA - 기본값=true)<br/>EndpointSliceProxying=true|false (BETA - 기본값=true)<br/>EndpointSliceTerminatingCondition=true|false (ALPHA - 기본값=false)<br/>EphemeralContainers=true|false (ALPHA - 기본값=false)<br/>ExpandCSIVolumes=true|false (BETA - 기본값=true)<br/>ExpandInUsePersistentVolumes=true|false (BETA - 기본값=true)<br/>ExpandPersistentVolumes=true|false (BETA - 기본값=true)<br/>ExperimentalHostUserNamespaceDefaulting=true|false (BETA - 기본값=false)<br/>GenericEphemeralVolume=true|false (BETA - 기본값=true)<br/>GracefulNodeShutdown=true|false (BETA - 기본값=true)<br/>HPAContainerMetrics=true|false (ALPHA - 기본값=false)<br/>HPAScaleToZero=true|false (ALPHA - 기본값=false)<br/>HugePageStorageMediumSize=true|false (BETA - 기본값=true)<br/>IPv6DualStack=true|false (BETA - 기본값=true)<br/>InTreePluginAWSUnregister=true|false (ALPHA - 기본값=false)<br/>InTreePluginAzureDiskUnregister=true|false (ALPHA - 기본값=false)<br/>InTreePluginAzureFileUnregister=true|false (ALPHA - 기본값=false)<br/>InTreePluginGCEUnregister=true|false (ALPHA - 기본값=false)<br/>InTreePluginOpenStackUnregister=true|false (ALPHA - 기본값=false)<br/>InTreePluginvSphereUnregister=true|false (ALPHA - 기본값=false)<br/>IndexedJob=true|false (ALPHA - 기본값=false)<br/>IngressClassNamespacedParams=true|false (ALPHA - 기본값=false)<br/>KubeletCredentialProviders=true|false (ALPHA - 기본값=false)<br/>KubeletPodResources=true|false (BETA - 기본값=true)<br/>KubeletPodResourcesGetAllocatable=true|false (ALPHA - 기본값=false)<br/>LocalStorageCapacityIsolation=true|false (BETA - 기본값=true)<br/>LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - 기본값=false)<br/>LogarithmicScaleDown=true|false (ALPHA - 기본값=false)<br/>MemoryManager=true|false (ALPHA - 기본값=false)<br/>MixedProtocolLBService=true|false (ALPHA - 기본값=false)<br/>NamespaceDefaultLabelName=true|false (BETA - 기본값=true)<br/>NetworkPolicyEndPort=true|false (ALPHA - 기본값=false)<br/>NonPreemptingPriority=true|false (BETA - 기본값=true)<br/>PodAffinityNamespaceSelector=true|false (ALPHA - 기본값=false)<br/>PodDeletionCost=true|false (ALPHA - 기본값=false)<br/>PodOverhead=true|false (BETA - 기본값=true)<br/>PreferNominatedNode=true|false (ALPHA - 기본값=false)<br/>ProbeTerminationGracePeriod=true|false (ALPHA - 기본값=false)<br/>ProcMountType=true|false (ALPHA - 기본값=false)<br/>QOSReserved=true|false (ALPHA - 기본값=false)<br/>RemainingItemCount=true|false (BETA - 기본값=true)<br/>RemoveSelfLink=true|false (BETA - 기본값=true)<br/>RotateKubeletServerCertificate=true|false (BETA - 기본값=true)<br/>ServerSideApply=true|false (BETA - 기본값=true)<br/>ServiceInternalTrafficPolicy=true|false (ALPHA - 기본값=false)<br/>ServiceLBNodePortControl=true|false (ALPHA - 기본값=false)<br/>ServiceLoadBalancerClass=true|false (ALPHA - 기본값=false)<br/>ServiceTopology=true|false (ALPHA - 기본값=false)<br/>SetHostnameAsFQDN=true|false (BETA - 기본값=true)<br/>SizeMemoryBackedVolumes=true|false (ALPHA - 기본값=false)<br/>StorageVersionAPI=true|false (ALPHA - 기본값=false)<br/>StorageVersionHash=true|false (BETA - 기본값=true)<br/>SuspendJob=true|false (ALPHA - 기본값=false)<br/>TTLAfterFinished=true|false (BETA - 기본값=true)<br/>TopologyAwareHints=true|false (ALPHA - 기본값=false)<br/>TopologyManager=true|false (BETA - 기본값=true)<br/>ValidateProxyRedirects=true|false (BETA - 기본값=true)<br/>VolumeCapacityPriority=true|false (ALPHA - 기본값=false)<br/>WarningHeaders=true|false (BETA - 기본값=true)<br/>WinDSR=true|false (ALPHA - 기본값=false)<br/>WinOverlay=true|false (BETA - 기본값=true)<br/>WindowsEndpointSliceProxying=true|false (BETA - 기본값=true)</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A set of key=value pairs that describe feature gates for alpha/experimental features. Options are:<br/>APIListChunking=true|false (BETA - default=true)<br/>APIPriorityAndFairness=true|false (BETA - default=true)<br/>APIResponseCompression=true|false (BETA - default=true)<br/>APIServerIdentity=true|false (ALPHA - default=false)<br/>APIServerTracing=true|false (ALPHA - default=false)<br/>AllAlpha=true|false (ALPHA - default=false)<br/>AllBeta=true|false (BETA - default=false)<br/>AnyVolumeDataSource=true|false (ALPHA - default=false)<br/>AppArmor=true|false (BETA - default=true)<br/>CPUManager=true|false (BETA - default=true)<br/>CPUManagerPolicyAlphaOptions=true|false (ALPHA - default=false)<br/>CPUManagerPolicyBetaOptions=true|false (BETA - default=true)<br/>CPUManagerPolicyOptions=true|false (BETA - default=true)<br/>CSIInlineVolume=true|false (BETA - default=true)<br/>CSIMigration=true|false (BETA - default=true)<br/>CSIMigrationAWS=true|false (BETA - default=true)<br/>CSIMigrationAzureDisk=true|false (BETA - default=true)<br/>CSIMigrationAzureFile=true|false (BETA - default=false)<br/>CSIMigrationGCE=true|false (BETA - default=true)<br/>CSIMigrationOpenStack=true|false (BETA - default=true)<br/>CSIMigrationPortworx=true|false (ALPHA - default=false)<br/>CSIMigrationvSphere=true|false (BETA - default=false)<br/>CSIStorageCapacity=true|false (BETA - default=true)<br/>CSIVolumeHealth=true|false (ALPHA - default=false)<br/>CSRDuration=true|false (BETA - default=true)<br/>ControllerManagerLeaderMigration=true|false (BETA - default=true)<br/>CustomCPUCFSQuotaPeriod=true|false (ALPHA - default=false)<br/>CustomResourceValidationExpressions=true|false (ALPHA - default=false)<br/>DaemonSetUpdateSurge=true|false (BETA - default=true)<br/>DefaultPodTopologySpread=true|false (BETA - default=true)<br/>DelegateFSGroupToCSIDriver=true|false (BETA - default=true)<br/>DevicePlugins=true|false (BETA - default=true)<br/>DisableAcceleratorUsageMetrics=true|false (BETA - default=true)<br/>DisableCloudProviders=true|false (ALPHA - default=false)<br/>DisableKubeletCloudCredentialProviders=true|false (ALPHA - default=false)<br/>DownwardAPIHugePages=true|false (BETA - default=true)<br/>EfficientWatchResumption=true|false (BETA - default=true)<br/>EndpointSliceTerminatingCondition=true|false (BETA - default=true)<br/>EphemeralContainers=true|false (BETA - default=true)<br/>ExpandCSIVolumes=true|false (BETA - default=true)<br/>ExpandInUsePersistentVolumes=true|false (BETA - default=true)<br/>ExpandPersistentVolumes=true|false (BETA - default=true)<br/>ExpandedDNSConfig=true|false (ALPHA - default=false)<br/>ExperimentalHostUserNamespaceDefaulting=true|false (BETA - default=false)<br/>GRPCContainerProbe=true|false (ALPHA - default=false)<br/>GracefulNodeShutdown=true|false (BETA - default=true)<br/>GracefulNodeShutdownBasedOnPodPriority=true|false (ALPHA - default=false)<br/>HPAContainerMetrics=true|false (ALPHA - default=false)<br/>HPAScaleToZero=true|false (ALPHA - default=false)<br/>HonorPVReclaimPolicy=true|false (ALPHA - default=false)<br/>IdentifyPodOS=true|false (ALPHA - default=false)<br/>InTreePluginAWSUnregister=true|false (ALPHA - default=false)<br/>InTreePluginAzureDiskUnregister=true|false (ALPHA - default=false)<br/>InTreePluginAzureFileUnregister=true|false (ALPHA - default=false)<br/>InTreePluginGCEUnregister=true|false (ALPHA - default=false)<br/>InTreePluginOpenStackUnregister=true|false (ALPHA - default=false)<br/>InTreePluginPortworxUnregister=true|false (ALPHA - default=false)<br/>InTreePluginRBDUnregister=true|false (ALPHA - default=false)<br/>InTreePluginvSphereUnregister=true|false (ALPHA - default=false)<br/>IndexedJob=true|false (BETA - default=true)<br/>JobMutableNodeSchedulingDirectives=true|false (BETA - default=true)<br/>JobReadyPods=true|false (ALPHA - default=false)<br/>JobTrackingWithFinalizers=true|false (BETA - default=true)<br/>KubeletCredentialProviders=true|false (ALPHA - default=false)<br/>KubeletInUserNamespace=true|false (ALPHA - default=false)<br/>KubeletPodResources=true|false (BETA - default=true)<br/>KubeletPodResourcesGetAllocatable=true|false (BETA - default=true)<br/>LocalStorageCapacityIsolation=true|false (BETA - default=true)<br/>LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - default=false)<br/>LogarithmicScaleDown=true|false (BETA - default=true)<br/>MemoryManager=true|false (BETA - default=true)<br/>MemoryQoS=true|false (ALPHA - default=false)<br/>MixedProtocolLBService=true|false (ALPHA - default=false)<br/>NetworkPolicyEndPort=true|false (BETA - default=true)<br/>NodeSwap=true|false (ALPHA - default=false)<br/>NonPreemptingPriority=true|false (BETA - default=true)<br/>OpenAPIEnums=true|false (ALPHA - default=false)<br/>OpenAPIV3=true|false (ALPHA - default=false)<br/>PodAffinityNamespaceSelector=true|false (BETA - default=true)<br/>PodAndContainerStatsFromCRI=true|false (ALPHA - default=false)<br/>PodDeletionCost=true|false (BETA - default=true)<br/>PodOverhead=true|false (BETA - default=true)<br/>PodSecurity=true|false (BETA - default=true)<br/>PreferNominatedNode=true|false (BETA - default=true)<br/>ProbeTerminationGracePeriod=true|false (BETA - default=false)<br/>ProcMountType=true|false (ALPHA - default=false)<br/>ProxyTerminatingEndpoints=true|false (ALPHA - default=false)<br/>QOSReserved=true|false (ALPHA - default=false)<br/>ReadWriteOncePod=true|false (ALPHA - default=false)<br/>RecoverVolumeExpansionFailure=true|false (ALPHA - default=false)<br/>RemainingItemCount=true|false (BETA - default=true)<br/>RemoveSelfLink=true|false (BETA - default=true)<br/>RotateKubeletServerCertificate=true|false (BETA - default=true)<br/>SeccompDefault=true|false (ALPHA - default=false)<br/>ServerSideFieldValidation=true|false (ALPHA - default=false)<br/>ServiceInternalTrafficPolicy=true|false (BETA - default=true)<br/>ServiceLBNodePortControl=true|false (BETA - default=true)<br/>ServiceLoadBalancerClass=true|false (BETA - default=true)<br/>SizeMemoryBackedVolumes=true|false (BETA - default=true)<br/>StatefulSetAutoDeletePVC=true|false (ALPHA - default=false)<br/>StatefulSetMinReadySeconds=true|false (BETA - default=true)<br/>StorageVersionAPI=true|false (ALPHA - default=false)<br/>StorageVersionHash=true|false (BETA - default=true)<br/>SuspendJob=true|false (BETA - default=true)<br/>TopologyAwareHints=true|false (BETA - default=false)<br/>TopologyManager=true|false (BETA - default=true)<br/>VolumeCapacityPriority=true|false (ALPHA - default=false)<br/>WinDSR=true|false (ALPHA - default=false)<br/>WinOverlay=true|false (BETA - default=true)<br/>WindowsHostProcessContainers=true|false (BETA - default=true)<br/>csiMigrationRBD=true|false (ALPHA - default=false)</p></td>
 </tr>
 
 <tr>
@@ -308,48 +301,6 @@ kube-proxy [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>인증 정보가 있는 kubeconfig 파일의 경로(마스터 위치는 마스터 플래그로 설정됨).</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--log-backtrace-at &lt;'file:N' 형태의 문자열&gt;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;기본값: :0</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>로깅 과정에서 file:N 번째 라인에 도달하면 스택 트레이스를 출력한다.</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--log-dir string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>로그 파일이 저장될 디렉터리</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--log-file string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>사용할 로그 파일</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--log-file-max-size uint&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;기본값: 1800</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>로그 파일의 최대 크기(단위: MB). 0으로 설정하면 무제한이다.</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--log-flush-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;기본값: 5s</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>로그 플러시 사이의 최대 시간</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--logtostderr&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;기본값: true</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>로그를 파일에 기록하지 않고 표준 에러로만 출력</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--machine-id-file string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;기본값: "/etc/machine-id,/var/lib/dbus/machine-id"</td>
 </tr>
@@ -357,6 +308,13 @@ kube-proxy [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>machine-id를 위해 확인할 파일 목록(쉼표로 분리). 가장 먼저 발견되는 항목을 사용한다.</p></td>
 </tr>
 
+<tr>
+<td colspan="2">--machine_id_file string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;기본값: "/etc/machine-id,/var/lib/dbus/machine-id"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>machine-id를 위해 확인할 파일 목록(쉼표로 분리). 가장 먼저 발견되는 항목을 사용한다.</p></td>
+</tr>
+
 <tr>
 <td colspan="2">--masquerade-all</td>
 </tr>
@@ -385,13 +343,6 @@ kube-proxy [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>NodePort에 사용할 주소를 지정하는 값의 문자열 조각. 값은 유효한 IP 블록(예: 1.2.3.0/24, 1.2.3.4/32). 기본값인 빈 문자열 조각값은([]) 모든 로컬 주소를 사용하는 것을 의미한다.</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--one-output</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>true이면, 해당 로그가 속하는 심각성 레벨에만 각 로그를 기록한다(원래는 하위 심각성 레벨에도 기록한다).</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--oom-score-adj int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;기본값: -999</td>
 </tr>
@@ -427,27 +378,6 @@ kube-proxy [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>숨겨진 메트릭을 표시하려는 이전 버전. 이전 마이너 버전만 인식하며, 다른 값은 허용하지 않는다. 포멧은 &lt;메이저&gt;.&lt;마이너&gt; 와 같으며, 예를 들면 '1.16' 과 같다. 이 포멧의 목적은, 다음 릴리스가 숨길 추가적인 메트릭을 사용자에게 공지하여, 그 이후 릴리스에서 메트릭이 영구적으로 삭제됐을 때 사용자가 놀라지 않도록 하기 위함이다.</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--skip-headers</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>true이면, 로그 메시지에서 헤더 접두사를 붙이지 않는다.</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--skip-log-headers</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>true이면, 로그 파일을 열 때 헤더를 붙이지 않는다.</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--stderrthreshold int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;기본값: 2</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>이 값 이상의 로그는 표준 에러(stderr)로 출력되도록 한다.</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--udp-timeout duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;기본값: 250ms</td>
 </tr>
@@ -455,13 +385,6 @@ kube-proxy [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>유휴 UDP 연결이 열린 상태로 유지되는 시간(예: '250ms', '2s'). 값은 0보다 커야 한다. 프록시 모드 userspace에만 적용 가능함.</p></td>
 </tr>
 
-<tr>
-<td colspan="2">-v, --v int</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>로그 상세 레벨(verbosity)</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--version version[=true]</td>
 </tr>
@@ -469,13 +392,6 @@ kube-proxy [flags]
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>버전 정보를 출력하고 종료</p></td>
 </tr>
 
-<tr>
-<td colspan="2">--vmodule &lt;쉼표로 구분된 'pattern=N' 설정&gt;</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>파일-필터된 로깅을 위한 'pattern=N' 설정들(쉼표로 구분됨)</p></td>
-</tr>
-
 <tr>
 <td colspan="2">--write-config-to string</td>
 </tr>
diff --git a/content/ko/docs/reference/glossary/aggregation-layer.md b/content/ko/docs/reference/glossary/aggregation-layer.md
index b09902c287..e0b5c0a21f 100644
--- a/content/ko/docs/reference/glossary/aggregation-layer.md
+++ b/content/ko/docs/reference/glossary/aggregation-layer.md
@@ -2,7 +2,7 @@
 title: 애그리게이션 레이어(Aggregation Layer)
 id: aggregation-layer
 date: 2018-10-08
-full_link: /docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/
+full_link: /ko/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/
 short_description: >
   애그리게이션 레이어를 이용하면 사용자가 추가로 쿠버네티스 형식의 API를 클러스터에 설치할 수 있다.
 
diff --git a/content/ko/docs/reference/glossary/api-eviction.md b/content/ko/docs/reference/glossary/api-eviction.md
index f8a65c606e..d155f0152a 100644
--- a/content/ko/docs/reference/glossary/api-eviction.md
+++ b/content/ko/docs/reference/glossary/api-eviction.md
@@ -2,7 +2,7 @@
 title: API를 이용한 축출(Eviction)
 id: api-eviction
 date: 2021-04-27
-full_link: /docs/concepts/scheduling-eviction/pod-eviction/#api-eviction
+full_link: /ko/docs/concepts/scheduling-eviction/api-eviction/
 short_description: >
   API를 이용한 축출은 축출 API를 사용하여 파드의 정상 종료를 트리거하는
   축출 오브젝트를 만드는 프로세스이다
@@ -10,7 +10,6 @@ aka:
 tags:
   - operation
 ---
-
 API를 이용한 축출은 [축출 API](/docs/reference/generated/kubernetes-api/{{<param "version">}}/#create-eviction-pod-v1-core)를 사용하여
 생성된 `Eviction` 오브젝트로 파드를 정상 종료한다.
 
@@ -20,4 +19,9 @@ API를 이용한 축출은 [축출 API](/docs/reference/generated/kubernetes-api
 축출 API를 직접 호출해 축출 요청을 할 수 있다.
 `Eviction` 오브젝트가 생성되면, API 서버가 파드를 종료한다.
 
+API를 이용한 축출은 사용자가 설정한 [`PodDisruptionBudgets`](/docs/tasks/run-application/configure-pdb/) 및 
+[`terminationGracePeriodSeconds`](/ko/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination) 값을 준수한다.
+
 API를 이용한 축출은 [노드-압박 축출](/docs/concepts/scheduling-eviction/eviction/#kubelet-eviction)과 동일하지 않다.
+
+* 더 많은 정보는 [API를 이용한 축출](/ko/docs/concepts/scheduling-eviction/api-eviction/)을 참고한다.
diff --git a/content/ko/docs/reference/glossary/configmap.md b/content/ko/docs/reference/glossary/configmap.md
index 06cd2c9c46..1ed97217e9 100644
--- a/content/ko/docs/reference/glossary/configmap.md
+++ b/content/ko/docs/reference/glossary/configmap.md
@@ -2,7 +2,7 @@
 title: 컨피그맵(ConfigMap)
 id: configmap
 date: 2018-04-12
-full_link: /docs/concepts/configuration/configmap/
+full_link: /ko/docs/concepts/configuration/configmap/
 short_description: >
   키-값 쌍으로 기밀이 아닌 데이터를 저장하는 데 사용하는 API 오브젝트이다. 볼륨에서 환경 변수, 커맨드-라인 인수 또는 구성 파일로 사용될 수 있다.
 
diff --git a/content/ko/docs/reference/glossary/container-runtime-interface.md b/content/ko/docs/reference/glossary/container-runtime-interface.md
new file mode 100644
index 0000000000..6ab65dc3f0
--- /dev/null
+++ b/content/ko/docs/reference/glossary/container-runtime-interface.md
@@ -0,0 +1,22 @@
+---
+title: 컨테이너 런타임 인터페이스(Container Runtime Interface)
+id: container-runtime-interface
+date: 2022-01-10
+full_link: /ko/docs/concepts/architecture/cri/
+short_description: >
+  Kubelet과 컨테이너 런타임 사이의 통신을 위한 주요 프로토콜이다.
+
+aka:
+tags:
+  - cri
+---
+
+Kubelet과 컨테이너 런타임 사이의 통신을 위한 주요 프로토콜이다.
+
+<!--more-->
+
+쿠버네티스 컨테이너 런타임 인터페이스(CRI)는
+[클러스터 컴포넌트](/ko/docs/concepts/overview/components/#노드-컴포넌트)
+{{< glossary_tooltip text="kubelet" term_id="kubelet" >}}과
+{{< glossary_tooltip text="container runtime" term_id="container-runtime" >}} 사이의
+통신을 위한 주요 [gRPC](https://grpc.io) 프로토콜을 정의한다.
diff --git a/content/ko/docs/reference/glossary/container-runtime.md b/content/ko/docs/reference/glossary/container-runtime.md
index 76bdb71b91..1f40145c34 100644
--- a/content/ko/docs/reference/glossary/container-runtime.md
+++ b/content/ko/docs/reference/glossary/container-runtime.md
@@ -2,7 +2,7 @@
 title: 컨테이너 런타임
 id: container-runtime
 date: 2019-06-05
-full_link: /docs/setup/production-environment/container-runtimes
+full_link: /ko/docs/setup/production-environment/container-runtimes/
 short_description: >
  컨테이너 런타임은 컨테이너 실행을 담당하는 소프트웨어이다.
 
@@ -15,7 +15,7 @@ tags:
 
 <!--more-->
 
-쿠버네티스는 여러 컨테이너 런타임을 지원한다. {{< glossary_tooltip term_id="docker">}},
-{{< glossary_tooltip term_id="containerd" >}}, {{< glossary_tooltip term_id="cri-o" >}}
-그리고 [Kubernetes CRI (컨테이너 런타임
-인터페이스)](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-node/container-runtime-interface.md)를 구현한 모든 소프트웨어.
+쿠버네티스는 {{< glossary_tooltip term_id="containerd" >}}, 
+{{< glossary_tooltip term_id="cri-o" >}}와 같은 컨테이너 런타임 및 
+모든 [Kubernetes CRI (컨테이너 런타임 인터페이스)](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-node/container-runtime-interface.md) 
+구현체를 지원한다.
diff --git a/content/ko/docs/reference/glossary/csi.md b/content/ko/docs/reference/glossary/csi.md
new file mode 100644
index 0000000000..64053db20b
--- /dev/null
+++ b/content/ko/docs/reference/glossary/csi.md
@@ -0,0 +1,21 @@
+---
+title: 컨테이너 스토리지 인터페이스(CSI)
+id: csi
+date: 2018-06-25
+full_link: /ko/docs/concepts/storage/volumes/#csi
+short_description: >
+    컨테이너 스토리지 인터페이스(CSI)는 컨테이너에 스토리지 시스템을 노출하는 표준 인터페이스를 정의한다.
+
+
+aka: 
+tags:
+- storage 
+---
+ 컨테이너 스토리지 인터페이스(CSI)는 컨테이너에 스토리지 시스템을 노출하는 표준 인터페이스를 정의한다.
+
+
+<!--more--> 
+CSI를 통해 공급업체는 쿠버네티스 저장소(트리 외 플러그인)를 추가하지 않고도 쿠버네티스용 사용자 스토리지 플러그인을 생성할 수 있다. 스토리지 제공자가 CSI 드라이버를 사용하려면, 먼저 [클러스터에 배포](https://kubernetes-csi.github.io/docs/deploying.html)해야 한다. 그런 다음 해당 CSI 드라이버를 사용하는 {{< glossary_tooltip text="스토리지클래스(StorageClass)" term_id="storage-class" >}}를 생성할 수 있다.
+
+* [쿠버네티스 문서에서 CSI](/ko/docs/concepts/storage/volumes/#csi)
+* [사용 가능한 CSI 드라이버 목록](https://kubernetes-csi.github.io/docs/drivers.html)
diff --git a/content/ko/docs/reference/glossary/device-plugin.md b/content/ko/docs/reference/glossary/device-plugin.md
index 4d7ec8debe..9d20380bd6 100644
--- a/content/ko/docs/reference/glossary/device-plugin.md
+++ b/content/ko/docs/reference/glossary/device-plugin.md
@@ -2,7 +2,7 @@
 title: 장치 플러그인(Device Plugin)
 id: device-plugin
 date: 2019-02-02
-full_link: /docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/
+full_link: /ko/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/
 short_description: >
   파드가 공급자별 초기화 또는 설정이 필요한 장치에 접근할 수 있도록 하는 소프트웨어 확장
 aka:
diff --git a/content/ko/docs/reference/glossary/extensions.md b/content/ko/docs/reference/glossary/extensions.md
index 547cd934bc..daa5e37841 100644
--- a/content/ko/docs/reference/glossary/extensions.md
+++ b/content/ko/docs/reference/glossary/extensions.md
@@ -15,4 +15,4 @@ tags:
 
 <!--more-->
 
-대부분의 클러스터 관리자는 호스트된 쿠버네티스 또는 쿠버네티스의 배포 인스턴스를 사용할 것이다. 그 결과, 대부분의 쿠버네티스 사용자는 [익스텐션](/ko/docs/concepts/extend-kubernetes/#익스텐션)의 설치가 필요할 것이며, 일부 사용자만 직접 새로운 것을 만들 것이다.
+많은 클러스터 관리자가 호스트된 쿠버네티스 또는 쿠버네티스의 배포 인스턴스를 사용하고 있다. 이러한 클러스터는 익스텐션이 미리 설치되어 제공된다. 그 결과, 대부분의 쿠버네티스 사용자는 [익스텐션](/ko/docs/concepts/extend-kubernetes/#익스텐션)을 별도로 설치할 필요가 없으며, 또한 익스텐션을 새로 만들어야 하는 사용자는 거의 없을 것이다.
diff --git a/content/ko/docs/reference/glossary/garbage-collection.md b/content/ko/docs/reference/glossary/garbage-collection.md
new file mode 100644
index 0000000000..529ae67400
--- /dev/null
+++ b/content/ko/docs/reference/glossary/garbage-collection.md
@@ -0,0 +1,22 @@
+---
+title: 가비지(Garbage) 수집
+id: garbage-collection
+date: 2022-01-14
+full_link: /ko/docs/concepts/architecture/garbage-collection/
+short_description: >
+  쿠버네티스가 클러스터 자원을 정리하기 위해 사용하는 다양한 방법을 종합한 용어이다.
+
+aka: 
+tags:
+- fundamental
+- operation
+---
+ 쿠버네티스가 클러스터 자원을 정리하기 위해 사용하는 다양한 방법을 종합한 용어이다.
+
+<!--more-->
+
+쿠버네티스는 [사용되지 않는 컨테이너와 이미지](/ko/docs/concepts/architecture/garbage-collection/#containers-images),
+[실패한 파드](/ko/docs/concepts/workloads/pods/pod-lifecycle/#pod-garbage-collection),
+[타겟 리소스가 소유한 오브젝트](/docs/concepts/overview/working-with-objects/owners-dependents/),
+[종료된 잡](/ko/docs/concepts/workloads/controllers/ttlafterfinished/), 그리고
+만료되거나 실패한 리소스를 정리하기 위해 가비지 수집을 사용한다.
diff --git a/content/ko/docs/reference/glossary/job.md b/content/ko/docs/reference/glossary/job.md
index 8f227f76ac..dad64bc787 100644
--- a/content/ko/docs/reference/glossary/job.md
+++ b/content/ko/docs/reference/glossary/job.md
@@ -2,7 +2,7 @@
 title: 잡(Job)
 id: job
 date: 2018-04-12
-full_link: /docs/concepts/workloads/controllers/job
+full_link: /ko/docs/concepts/workloads/controllers/job/
 short_description: >
   완료를 목표로 실행되는 유한 또는 배치 작업.
 
diff --git a/content/ko/docs/reference/glossary/kube-proxy.md b/content/ko/docs/reference/glossary/kube-proxy.md
index c82ef7d968..0a37c7e829 100644
--- a/content/ko/docs/reference/glossary/kube-proxy.md
+++ b/content/ko/docs/reference/glossary/kube-proxy.md
@@ -2,7 +2,7 @@
 title: kube-proxy
 id: kube-proxy
 date: 2018-04-12
-full_link: /docs/reference/command-line-tools-reference/kube-proxy/
+full_link: /ko/docs/reference/command-line-tools-reference/kube-proxy/
 short_description: >
   `kube-proxy`는 클러스터의 각 노드에서 실행되는 네트워크 프록시이다.
 
diff --git a/content/ko/docs/reference/glossary/kubectl.md b/content/ko/docs/reference/glossary/kubectl.md
index 0de6f95898..fadfb2b275 100644
--- a/content/ko/docs/reference/glossary/kubectl.md
+++ b/content/ko/docs/reference/glossary/kubectl.md
@@ -4,16 +4,19 @@ id: kubectl
 date: 2018-04-12
 full_link: /docs/user-guide/kubectl-overview/
 short_description: >
-  쿠버네티스 API 서버와 통신하기 위한 커맨드라인 툴.
+  쿠버네티스 클러스터와 통신하기 위한 커맨드라인 툴.
 
 aka:
+- kubectl
 tags:
 - tool
 - fundamental
 ---
- {{< glossary_tooltip text="쿠버네티스 API" term_id="kubernetes-api" >}} 서버와 통신하기 위한 커맨드라인 툴.
+쿠버네티스 API를 사용하여 
+쿠버네티스 클러스터의 {{< glossary_tooltip text="컨트롤 플레인" term_id="control-plane" >}}과 
+통신하기 위한 커맨드라인 툴
 
 <!--more-->
 
-사용자는 쿠버네티스 오브젝트를 생성, 점검, 업데이트, 삭제하기 위해서 kubectl를 사용할 수 있다.
+사용자는 쿠버네티스 오브젝트를 생성, 점검, 업데이트, 삭제하기 위해서 `kubectl`을 사용할 수 있다.
 
diff --git a/content/ko/docs/reference/glossary/limitrange.md b/content/ko/docs/reference/glossary/limitrange.md
index 26802da637..4a468f1fb2 100644
--- a/content/ko/docs/reference/glossary/limitrange.md
+++ b/content/ko/docs/reference/glossary/limitrange.md
@@ -2,7 +2,7 @@
 title: 범위 제한(LimitRange)
 id: limitrange
 date: 2019-04-15
-full_link:  /docs/concepts/policy/limit-range/
+full_link: /ko/docs/concepts/policy/limit-range/
 short_description: >
   네임스페이스 내에 컨테이너나 파드당 리소스 소비를 한정하는 제약 조건을 제공한다.
 
diff --git a/content/ko/docs/reference/glossary/logging.md b/content/ko/docs/reference/glossary/logging.md
index 1f3cb251df..523895785c 100644
--- a/content/ko/docs/reference/glossary/logging.md
+++ b/content/ko/docs/reference/glossary/logging.md
@@ -2,7 +2,7 @@
 title: 로깅(Logging)
 id: logging
 date: 2019-04-04
-full_link: /docs/concepts/cluster-administration/logging/
+full_link: /ko/docs/concepts/cluster-administration/logging/
 short_description: >
   로그는 클러스터나 애플리케이션에 의해 로깅된 이벤트의 목록이다.
 
diff --git a/content/ko/docs/reference/glossary/namespace.md b/content/ko/docs/reference/glossary/namespace.md
index 584f2fc2bd..3c98d7a7a7 100644
--- a/content/ko/docs/reference/glossary/namespace.md
+++ b/content/ko/docs/reference/glossary/namespace.md
@@ -2,17 +2,17 @@
 title: 네임스페이스(Namespace)
 id: namespace
 date: 2018-04-12
-full_link: /ko/docs/concepts/overview/working-with-objects/namespaces
+full_link: /ko/docs/concepts/overview/working-with-objects/namespaces/
 short_description: >
-  쿠버네티스에서 동일한 물리 클러스터에서 다중의 가상 클러스터를 지원하기 위해 사용하는 추상화.
+  쿠버네티스에서, 하나의 클러스터 내에서 리소스 그룹의 격리를 지원하기 위해 사용하는 추상화.
 
 aka: 
 tags:
 - fundamental
 ---
- 쿠버네티스에서 동일한 물리 {{< glossary_tooltip text="클러스터" term_id="cluster" >}}에서 다중의 가상 클러스터를 지원하기 위해 사용하는 추상화.
+ 쿠버네티스에서 하나의 {{< glossary_tooltip text="클러스터" term_id="cluster" >}} 내에서 리소스 그룹의 격리를 지원하기 위해 사용하는 추상적 개념.
 
 <!--more--> 
 
-네임스페이스는 클러스터의 오브젝트를 체계화하고 클러스터의 리소스를 분리하는 방법을 제공한다. 리소스의 이름은 네임스페이스 내에서 유일해야 한다. 그러나, 네임스페이스 간에서 유일할 필요는 없다.
+네임스페이스는 클러스터의 오브젝트를 체계화하고 클러스터의 리소스를 분리하는 방법을 제공한다. 리소스의 이름은 네임스페이스 내에서 유일해야 한다. 그러나, 네임스페이스 간에서 유일할 필요는 없다. 네임스페이스 기반 스코핑은 네임스페이스 기반 오브젝트(예: 디플로이먼트, 서비스 등)에만 적용 가능하며 클러스터 범위의 오브젝트(예: 스토리지클래스, 노드, 퍼시스턴트볼륨 등)에는 적용 불가능하다.
 
diff --git a/content/ko/docs/reference/glossary/network-policy.md b/content/ko/docs/reference/glossary/network-policy.md
index 7e1a752733..e82a885d90 100644
--- a/content/ko/docs/reference/glossary/network-policy.md
+++ b/content/ko/docs/reference/glossary/network-policy.md
@@ -2,7 +2,7 @@
 title: 네트워크 폴리시(Network Policy)
 id: network-policy
 date: 2018-04-12
-full_link: /docs/concepts/services-networking/network-policies/
+full_link: /ko/docs/concepts/services-networking/network-policies/
 short_description: >
   파드 그룹들이 서로에 대한 그리고 다른 네트워크 엔드포인트에 대한 통신이 어떻게 허용되는지에 대한 명세이다.
 
diff --git a/content/ko/docs/reference/glossary/pod-disruption.md b/content/ko/docs/reference/glossary/pod-disruption.md
index 93a473035c..1855f2118f 100644
--- a/content/ko/docs/reference/glossary/pod-disruption.md
+++ b/content/ko/docs/reference/glossary/pod-disruption.md
@@ -14,6 +14,11 @@ tags:
  - operation
 ---
 
-[파드 중단](/ko/docs/concepts/workloads/pods/disruptions/)은 노드에 있는 파드가 자발적 또는 비자발적으로 종료되는 절차이다.
+[파드 중단](/ko/docs/concepts/workloads/pods/disruptions/)은 
+노드에 있는 파드가 자발적 또는 비자발적으로 종료되는 절차이다.
 
-자발적 중단은 애플리케이션 소유자 또는 클러스터 관리자가 의도적으로 시작한다. 비자발적 중단은 의도하지 않은 것이며, 노드의 리소스 부족과 같은 피할 수 없는 문제 또는 우발적인 삭제로 인해 트리거될 수 있다.
+<!--more--> 
+
+자발적 중단은 애플리케이션 소유자 또는 클러스터 관리자가 의도적으로 시작한다. 
+비자발적 중단은 의도하지 않은 것이며, 
+노드의 리소스 부족과 같은 피할 수 없는 문제 또는 우발적인 삭제로 인해 트리거가 될 수 있다.
diff --git a/content/ko/docs/reference/glossary/pod-security-policy.md b/content/ko/docs/reference/glossary/pod-security-policy.md
index 43f0db0f2a..8dd0a09af4 100644
--- a/content/ko/docs/reference/glossary/pod-security-policy.md
+++ b/content/ko/docs/reference/glossary/pod-security-policy.md
@@ -2,7 +2,7 @@
 title: 파드 시큐리티 폴리시(Pod Security Policy)
 id: pod-security-policy
 date: 2018-04-12
-full_link: /docs/concepts/policy/pod-security-policy/
+full_link: /ko/docs/concepts/security/pod-security-policy/
 short_description: >
   파드 생성과 업데이트에 대한 세밀한 인가를 활성화한다.
 
@@ -17,3 +17,4 @@ tags:
 
 파드 명세에서 보안에 민감한 측면을 제어하는 클러스터 수준의 리소스. `PodSecurityPolicy` 오브젝트는 파드가 시스템에 수용될 수 있도록 파드가 실행해야 하는 조건의 집합과 관련된 필드의 기본 값을 정의한다. 파드 시큐리티 폴리시 제어는 선택적인 어드미션 컨트롤러로서 구현된다.
 
+파드 시큐리티 폴리시는 쿠버네티스 v1.21에서 사용 중단되었고, v1.25에서 제거될 예정이다. [파드 시큐리티 어드미션](/docs/concepts/security/pod-security-admission/) 또는 써드파티 어드미션 플러그인으로 이전(migrate)하는 것을 추천한다.
diff --git a/content/ko/docs/reference/glossary/quantity.md b/content/ko/docs/reference/glossary/quantity.md
index 450307841a..9c9c8b7582 100644
--- a/content/ko/docs/reference/glossary/quantity.md
+++ b/content/ko/docs/reference/glossary/quantity.md
@@ -10,7 +10,7 @@ aka:
 tags:
 - core-object
 ---
- SI 접미사를 사용하는 작거나 큰 숫자의 정수(whole-number) 표현.
+ [SI](https://en.wikipedia.org/wiki/International_System_of_Units) 접미사를 사용하는 작거나 큰 숫자의 정수(whole-number) 표현.
 
 <!--more-->
 
@@ -19,9 +19,8 @@ tags:
 큰 숫자는 킬로(kilo), 메가(mega), 또는 기가(giga) 
 단위로 표시할 수 있다.
 
-
 예를 들어, 숫자 `1.5`는 `1500m`으로, 숫자 `1000`은 `1k`로, `1000000`은
-`1M`으로 표시할 수 있다. 또한, 이진 표기법 접미사도 명시 가능하므로,
+`1M`으로 표시할 수 있다. 또한, [이진 표기법](https://en.wikipedia.org/wiki/Binary_prefix) 접미사도 명시 가능하므로,
 숫자 2048은 `2Ki`로 표기될 수 있다. 
 
 허용되는 10진수(10의 거듭 제곱) 단위는 `m` (밀리), `k` (킬로, 의도적인 소문자),
diff --git a/content/ko/docs/reference/glossary/resource-quota.md b/content/ko/docs/reference/glossary/resource-quota.md
index c5cafb3bee..84dc2e5d54 100644
--- a/content/ko/docs/reference/glossary/resource-quota.md
+++ b/content/ko/docs/reference/glossary/resource-quota.md
@@ -2,7 +2,7 @@
 title: 리소스 쿼터(Resource Quotas)
 id: resource-quota
 date: 2018-04-12
-full_link: /docs/concepts/policy/resource-quotas/
+full_link: /ko/docs/concepts/policy/resource-quotas/
 short_description: >
   네임스페이스당 전체 리소스 소비를 제한하는 제약을 제공한다.
 
diff --git a/content/ko/docs/reference/glossary/secret.md b/content/ko/docs/reference/glossary/secret.md
index 63637adc1a..69923c2b4e 100644
--- a/content/ko/docs/reference/glossary/secret.md
+++ b/content/ko/docs/reference/glossary/secret.md
@@ -15,4 +15,4 @@ tags:
 
 <!--more--> 
 
-민감한 정보를 사용하는 방식에 대해 더 세밀하게 제어할 수 있으며, 유휴 상태의 [암호화](/docs/tasks/administer-cluster/encrypt-data/#ensure-all-secrets-are-encrypted)를 포함하여 우발적인 노출 위험을 줄인다. {{< glossary_tooltip text="파드(Pod)" term_id="pod" >}}는 시크릿을 마운트된 볼륨의 파일로 참조하거나, 파드의 이미지를 풀링하는 kubelet이 시크릿을 참조한다. 시크릿은 기밀 데이터에 적합하고 [컨피그맵](/docs/tasks/configure-pod-container/configure-pod-configmap/)은 기밀이 아닌 데이터에 적합하다.
+민감한 정보를 사용하는 방식에 대해 더 세밀하게 제어할 수 있으며, 우발적인 노출 위험을 줄인다. 시크릿 값은 기본적으로 base64 문자열로 인코딩되어 암호화되지 않은 채로 저장되지만, [안전하게 암호화](/docs/tasks/administer-cluster/encrypt-data/#ensure-all-secrets-are-encrypted)되도록 설정할 수 있다. {{< glossary_tooltip text="파드" term_id="pod" >}}는 볼륨 마운트 내의 파일 형태로 시크릿에 접근하며, 시크릿은 또한 kubelet이 파드를 위해 이미지를 풀링할 때에도 사용될 수 있다. 시크릿은 기밀 데이터를 다루는 용도로 적합하며, [컨피그맵](/docs/tasks/configure-pod-container/configure-pod-configmap/)은 기밀이 아닌 데이터를 다루는 용도로 적합하다.
diff --git a/content/ko/docs/reference/glossary/service.md b/content/ko/docs/reference/glossary/service.md
index 65a0d17787..3970df28cf 100644
--- a/content/ko/docs/reference/glossary/service.md
+++ b/content/ko/docs/reference/glossary/service.md
@@ -2,7 +2,7 @@
 title: 서비스(Service)
 id: service
 date: 2018-04-12
-full_link: /docs/concepts/services-networking/service/
+full_link: /ko/docs/concepts/services-networking/service/
 short_description: >
   네트워크 서비스로 파드 집합에서 실행 중인 애플리케이션을 노출하는 방법
 
diff --git a/content/ko/docs/reference/glossary/static-pod.md b/content/ko/docs/reference/glossary/static-pod.md
index 19e1f4bbc6..b00b9bada6 100644
--- a/content/ko/docs/reference/glossary/static-pod.md
+++ b/content/ko/docs/reference/glossary/static-pod.md
@@ -2,7 +2,7 @@
 title: 스태틱 파드(Static Pod)
 id: static-pod
 date: 2019-02-12
-full_link: /docs/tasks/configure-pod-container/static-pod/
+full_link: /ko/docs/tasks/configure-pod-container/static-pod/
 short_description: >
   특정 노드의 Kubelet 데몬이 직접 관리하는 파드
 
diff --git a/content/ko/docs/reference/glossary/sysctl.md b/content/ko/docs/reference/glossary/sysctl.md
new file mode 100644
index 0000000000..e099aaec6e
--- /dev/null
+++ b/content/ko/docs/reference/glossary/sysctl.md
@@ -0,0 +1,23 @@
+---
+title: sysctl
+id: sysctl
+date: 2019-02-12
+full_link: /ko/docs/tasks/administer-cluster/sysctl-cluster/
+short_description: >
+  유닉스 커널 파라미터를 가져오거나 설정하는 데 사용하는 인터페이스
+
+aka:
+tags:
+- tool
+---
+ `sysctl`은 동작 중인 유닉스 커널의 속성을 읽거나 수정하는 데 사용하는
+ (준)표준 인터페이스이다. 
+
+<!--more-->
+
+유닉스 계열 시스템에서 `sysctl`은 관리자가 이러한 설정을 확인하고 수정하는데 사용하는 도구의 
+이름이기도 하고, 해당 도구가 사용하는 시스템 콜이기도
+하다.
+
+{{< glossary_tooltip text="컨테이너" term_id="container" >}} 런타임과 
+네트워크 플러그인은 특정 방식으로 설정된 `sysctl` 값에 의존성이 있을 수 있다.
diff --git a/content/ko/docs/reference/glossary/taint.md b/content/ko/docs/reference/glossary/taint.md
index 323580ee6d..a05b932fb1 100644
--- a/content/ko/docs/reference/glossary/taint.md
+++ b/content/ko/docs/reference/glossary/taint.md
@@ -2,7 +2,7 @@
 title: 테인트(Taint)
 id: taint
 date: 2019-01-11
-full_link: /docs/concepts/scheduling-eviction/taint-and-toleration/
+full_link: /ko/docs/concepts/scheduling-eviction/taint-and-toleration/
 short_description: >
   세 가지 필수 속성: 키(key), 값(value), 효과(effect)로 구성된 코어 오브젝트. 테인트는 파드가 노드나 노드 그룹에 스케줄링되는 것을 방지한다.
 
diff --git a/content/ko/docs/reference/glossary/toleration.md b/content/ko/docs/reference/glossary/toleration.md
index 44200ee028..0bc0ed57c7 100644
--- a/content/ko/docs/reference/glossary/toleration.md
+++ b/content/ko/docs/reference/glossary/toleration.md
@@ -2,7 +2,7 @@
 title: 톨러레이션(Toleration)
 id: toleration
 date: 2019-01-11
-full_link: /docs/concepts/scheduling-eviction/taint-and-toleration/
+full_link: /ko/docs/concepts/scheduling-eviction/taint-and-toleration/
 short_description: >
   세 가지 필수 속성: 키(key), 값(value), 효과(effect)로 구성된 코어 오브젝트. 톨러레이션은 매칭되는 테인트(taint)를 가진 노드나 노드 그룹에 파드가 스케줄링되는 것을 활성화한다.
 
diff --git a/content/ko/docs/reference/issues-security/security.md b/content/ko/docs/reference/issues-security/security.md
index 6db604665e..84fda49478 100644
--- a/content/ko/docs/reference/issues-security/security.md
+++ b/content/ko/docs/reference/issues-security/security.md
@@ -1,5 +1,11 @@
 ---
 title: 쿠버네티스 보안과 공개 정보
+aliases: [/ko/security/]
+
+
+
+
+
 content_type: concept
 weight: 20
 ---
@@ -11,17 +17,17 @@ weight: 20
 <!-- body -->
 ## 보안 공지
 
-보안 및 주요 API 공지에 대한 이메일을 위해 [kubernetes-security-announce](https://groups.google.com/forum/#!forum/kubernetes-security-announce)) 그룹에 가입하세요.
-
-[이 링크](https://groups.google.com/forum/feed/kubernetes-security-announce/msgs/rss_v2_0.xml?num=50)를 사용하여 RSS 피드를 구독할 수 있다.
+보안 및 주요 API 공지에 대한 이메일을 위해서는 [kubernetes-security-announce](https://groups.google.com/forum/#!forum/kubernetes-security-announce)) 그룹에 가입한다.
 
 ## 취약점 보고
 
 우리는 쿠버네티스 오픈소스 커뮤니티에 취약점을 보고하는 보안 연구원들과 사용자들에게 매우 감사하고 있다. 모든 보고서는 커뮤니티 자원 봉사자들에 의해 철저히 조사된다.
 
-보고서를 작성하려면, [쿠버네티스 버그 현상금 프로그램](https://hackerone.com/kubernetes)에 취약점을 제출한다. 이를 통해 표준화된 응답시간으로 취약점을 분류하고 처리할 수 있다. 또한, 보안 세부 내용과 [모든 쿠버네티스 버그 보고서](https://git.k8s.io/kubernetes/.github/ISSUE_TEMPLATE/bug-report.md)로 부터 예상되는 세부사항을 [security@kubernetes.io](mailto:security@kubernetes.io)로 이메일을 보낸다.
+보고서를 작성하려면, [쿠버네티스 버그 현상금 프로그램](https://hackerone.com/kubernetes)에 취약점을 제출한다. 이를 통해 표준화된 응답시간으로 취약점을 분류하고 처리할 수 있다.
 
-[제품 보안 위원회 구성원](https://git.k8s.io/security/README.md#product-security-committee-psc)의 GPG 키를 사용하여 이 목록으로 이메일을 암호화할 수 있다. GPG를 사용한 암호화는 공개할 필요가 없다.
+또한, 보안 세부 내용과 [모든 쿠버네티스 버그 보고서](https://github.com/kubernetes/kubernetes/blob/master/.github/ISSUE_TEMPLATE/bug-report.yaml)로 부터 예상되는 세부사항을 [security@kubernetes.io](mailto:security@kubernetes.io)로 이메일을 보낸다.
+
+[보안 대응 위원회(Security Response Committee) 구성원](https://git.k8s.io/security/README.md#product-security-committee-psc)의 GPG 키를 사용하여 이 목록으로 이메일을 암호화할 수 있다. GPG를 사용한 암호화는 공개할 필요가 없다.
 
 ### 언제 취약점을 보고해야 하는가?
 
@@ -39,13 +45,13 @@ weight: 20
 
 ## 보안 취약점 대응
 
-각 보고서는 제품 보안 위원회 위원들에 의해 작업일 3일 이내에 인정되고 분석된다. 이렇게 하면 [보안 릴리스 프로세스](https://git.k8s.io/security/security-release-process.md#disclosures)가 시작된다.
+각 보고서는 보안 대응 위원회 위원들에 의해 작업일 3일 이내에 인정되고 분석된다. 이렇게 하면 [보안 릴리스 프로세스](https://git.k8s.io/security/security-release-process.md#disclosures)가 시작된다.
 
-제품 보안 위원회와 공유하는 모든 취약성 정보는 쿠버네티스 프로젝트 내에 있으며, 문제를 해결할 필요가 없는 한 다른 프로젝트에 전파되지 않는다.
+보안 대응 위원회와 공유하는 모든 취약성 정보는 쿠버네티스 프로젝트 내에 있으며, 문제를 해결할 필요가 없는 한 다른 프로젝트에 전파되지 않는다.
 
 보안 문제가 심사에서 확인된 수정, 릴리스 계획으로 이동함에 따라 리포터를 계속 업데이트할 것이다.
 
 ## 공개 시기
 
-공개 날짜는 쿠버네티스 제품 보안 위원회와 버그 제출자가 협상한다. 사용자 완화가 가능해지면 가능한 빨리 버그를 완전히 공개하는 것이 좋다. 버그 또는 픽스가 아직 완전히 이해되지 않았거나 솔루션이 제대로 테스트되지 않았거나 벤더 협력을 위해 공개를 지연시키는 것이 합리적이다. 공개 기간은 즉시(특히 이미 공개적으로 알려진 경우)부터 몇 주까지입니다. 간단한 완화 기능이 있는 취약점의 경우 보고 날짜부터 공개 날짜까지는 7일 정도 소요될 것으로 예상된다. 쿠버네티스 제품 보안 위원회는 공개 날짜를 설정할 때 최종 결정권을 갖는다.
+공개 날짜는 쿠버네티스 보안 대응 위원회와 버그 제출자가 협상한다. 사용자 완화가 가능해지면 가능한 빨리 버그를 완전히 공개하는 것이 좋다. 버그 또는 픽스가 아직 완전히 이해되지 않았거나 솔루션이 제대로 테스트되지 않았거나 벤더 협력을 위해 공개를 지연시키는 것이 합리적이다. 공개 기간은 즉시(특히 이미 공개적으로 알려진 경우)부터 몇 주까지다. 간단한 완화 기능이 있는 취약점의 경우 보고 날짜부터 공개 날짜까지는 7일 정도 소요될 것으로 예상된다. 쿠버네티스 보안 대응 위원회는 공개 날짜를 설정할 때 최종 결정권을 갖는다.
 
diff --git a/content/ko/docs/reference/kubectl/_index.md b/content/ko/docs/reference/kubectl/_index.md
index 765adb6fe8..26890840a1 100644
--- a/content/ko/docs/reference/kubectl/_index.md
+++ b/content/ko/docs/reference/kubectl/_index.md
@@ -1,5 +1,556 @@
 ---
-title: "kubectl"
+title: 명령줄 도구 (kubectl)
+content_type: reference
 weight: 60
+no_list: true
+card:
+  name: reference
+  weight: 20
 ---
 
+<!-- overview -->
+{{< glossary_definition prepend="쿠버네티스는 다음을 제공한다: " term_id="kubectl" length="short" >}}
+
+이 툴의 이름은 `kubectl`이다.
+
+구성을 위해, `kubectl` 은 config 파일을 $HOME/.kube 에서 찾는다.
+KUBECONFIG 환경 변수를 설정하거나 [`--kubeconfig`](/ko/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
+플래그를 설정하여 다른 [kubeconfig](/ko/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
+파일을 지정할 수 있다.
+
+이 개요는 `kubectl` 구문을 다루고, 커맨드 동작을 설명하며, 일반적인 예제를 제공한다.
+지원되는 모든 플래그 및 하위 명령을 포함한 각 명령에 대한 자세한 내용은
+[kubectl](/docs/reference/generated/kubectl/kubectl-commands/) 참조 문서를 참고한다.
+
+설치 방법에 대해서는 [kubectl 설치](/ko/docs/tasks/tools/)를 참고하고, 
+빠른 가이드는 [치트 시트](/ko/docs/reference/kubectl/cheatsheet/)를 참고한다. `docker` 명령줄 도구에 익숙하다면, 
+[도커 사용자를 위한 `kubectl`](/ko/docs/reference/kubectl/docker-cli-to-kubectl/)에서 대응되는 쿠버네티스 명령어를 볼 수 있다.
+
+<!-- body -->
+
+## 구문
+
+터미널 창에서 `kubectl` 명령을 실행하려면 다음의 구문을 사용한다.
+
+```shell
+kubectl [command] [TYPE] [NAME] [flags]
+```
+
+다음은 `command`, `TYPE`, `NAME` 과 `flags` 에 대한 설명이다.
+
+* `command`: 하나 이상의 리소스에서 수행하려는 동작을 지정한다.
+예: `create`, `get`, `describe`, `delete`
+
+* `TYPE`: [리소스 타입](#리소스-타입)을 지정한다. 리소스 타입은 대소문자를 구분하지 않으며
+  단수형, 복수형 또는 약어 형식을 지정할 수 있다.
+  예를 들어, 다음의 명령은 동일한 출력 결과를 생성한다.
+
+   ```shell
+   kubectl get pod pod1
+   kubectl get pods pod1
+   kubectl get po pod1
+   ```
+
+* `NAME`: 리소스 이름을 지정한다. 이름은 대소문자를 구분한다. 이름을 생략하면, 모든 리소스에 대한 세부 사항이 표시된다. 예: `kubectl get pods`
+
+   여러 리소스에 대한 작업을 수행할 때, 타입 및 이름별로 각 리소스를 지정하거나 하나 이상의 파일을 지정할 수 있다.
+
+   * 타입 및 이름으로 리소스를 지정하려면 다음을 참고한다.
+
+      * 리소스가 모두 동일한 타입인 경우 리소스를 그룹화하려면 다음을 사용한다. `TYPE1 name1 name2 name<#>`<br/>
+      예: `kubectl get pod example-pod1 example-pod2`
+
+      * 여러 리소스 타입을 개별적으로 지정하려면 다음을 사용한다. `TYPE1/name1 TYPE1/name2 TYPE2/name3 TYPE<#>/name<#>`<br/>
+      예: `kubectl get pod/example-pod1 replicationcontroller/example-rc1`
+
+   * 하나 이상의 파일로 리소스를 지정하려면 다음을 사용한다. `-f file1 -f file2 -f file<#>`
+
+      * YAML이 특히 구성 파일에 대해 더 사용자 친화적이므로, [JSON 대신 YAML을 사용한다](/ko/docs/concepts/configuration/overview/#일반적인-구성-팁).<br/>
+     예: `kubectl get -f ./pod.yaml`
+
+* `flags`: 선택적 플래그를 지정한다. 예를 들어, `-s` 또는 `--server` 플래그를 사용하여 쿠버네티스 API 서버의 주소와 포트를 지정할 수 있다.<br/>
+
+{{< caution >}}
+커맨드 라인에서 지정하는 플래그는 기본값과 해당 환경 변수를 무시한다.
+{{< /caution >}}
+
+도움이 필요하다면, 터미널 창에서 `kubectl help` 를 실행한다.
+
+## 클러스터 내 인증과 네임스페이스 오버라이드
+
+기본적으로 `kubectl`은 먼저 자신이 파드 안에서 실행되고 있는지, 즉 클러스터 안에 있는지를 판별한다. 이를 위해 `KUBERNETES_SERVICE_HOST`와 `KUBERNETES_SERVICE_PORT` 환경 변수, 그리고 서비스 어카운트 토큰 파일이 `/var/run/secrets/kubernetes.io/serviceaccount/token` 경로에 있는지를 확인한다. 세 가지가 모두 감지되면, 클러스터 내 인증이 적용된다.
+
+하위 호환성을 위해, 클러스터 내 인증 시에 `POD_NAMESPACE` 환경 변수가 설정되어 있으면, 서비스 어카운트 토큰의 기본 네임스페이스 설정을 오버라이드한다. 기본 네임스페이스 설정에 의존하는 모든 매니페스트와 도구가 영향을 받을 것이다.
+
+**`POD_NAMESPACE` 환경 변수**
+
+`POD_NAMESPACE` 환경 변수가 설정되어 있으면, 네임스페이스에 속하는 자원에 대한 CLI 작업은 환경 변수에 설정된 네임스페이스를 기본값으로 사용한다. 예를 들어, 환경 변수가 `seattle`로 설정되어 있으면, `kubectl get pods` 명령은 `seattle` 네임스페이스에 있는 파드 목록을 반환한다. 이는 파드가 네임스페이스에 속하는 자원이며, 명령어에 네임스페이스를 특정하지 않았기 때문이다. `kubectl api-resources` 명령을 실행하고 결과를 확인하여 특정 자원이 네임스페이스에 속하는 자원인지 판별한다.
+
+명시적으로 `--namespace <value>` 인자를 사용하면 위와 같은 동작을 오버라이드한다.
+
+**kubectl이 서비스어카운트 토큰을 관리하는 방법**
+
+만약
+* 쿠버네티스 서비스 어카운트 토큰 파일이 
+  `/var/run/secrets/kubernetes.io/serviceaccount/token` 경로에 마운트되어 있고,
+* `KUBERNETES_SERVICE_HOST` 환경 변수가 설정되어 있고,
+* `KUBERNETES_SERVICE_PORT` 환경 변수가 설정되어 있고,
+* kubectl 명령에 네임스페이스를 명시하지 않으면
+
+kubectl은 자신이 클러스터 내부에서 실행되고 있다고 가정한다. 
+kubectl은 해당 서비스어카운트의 네임스페이스(파드의 네임스페이스와 동일하다)를 인식하고 해당 네임스페이스에 대해 동작한다.
+이는 클러스터 외부에서 실행되었을 때와는 다른데, 
+kubectl이 클러스터 외부에서 실행되었으며 네임스페이스가 명시되지 않은 경우 
+kubectl은 `default` 네임스페이스에 대해 동작한다.
+
+## 명령어
+
+다음 표에는 모든 `kubectl` 작업에 대한 간단한 설명과 일반적인 구문이 포함되어 있다.
+
+명령어       | 구문    |       설명
+-------------------- | -------------------- | --------------------
+`alpha`    | `kubectl alpha SUBCOMMAND [flags]` | 쿠버네티스 클러스터에서 기본적으로 활성화되어 있지 않은 알파 기능의 사용할 수 있는 명령을 나열한다.
+`annotate`    | <code>kubectl annotate (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) KEY_1=VAL_1 ... KEY_N=VAL_N [--overwrite] [--all] [--resource-version=version] [flags]</code> | 하나 이상의 리소스 어노테이션을 추가하거나 업데이트한다.
+`api-resources`    | `kubectl api-resources [flags]` | 사용 가능한 API 리소스를 나열한다.
+`api-versions`    | `kubectl api-versions [flags]` | 사용 가능한 API 버전을 나열한다.
+`apply`            | `kubectl apply -f FILENAME [flags]`| 파일이나 표준입력(stdin)으로부터 리소스에 구성 변경 사항을 적용한다.
+`attach`        | `kubectl attach POD -c CONTAINER [-i] [-t] [flags]` | 실행 중인 컨테이너에 연결하여 출력 스트림을 보거나 표준입력을 통해 컨테이너와 상호 작용한다.
+`auth`    | `kubectl auth [flags] [options]` | 승인을 검사한다.
+`autoscale`    | <code>kubectl autoscale (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) [--min=MINPODS] --max=MAXPODS [--cpu-percent=CPU] [flags]</code> | 레플리케이션 컨트롤러에서 관리하는 파드 집합을 자동으로 조정한다.
+`certificate`    | `kubectl certificate SUBCOMMAND [options]` | 인증서 리소스를 수정한다.
+`cluster-info`    | `kubectl cluster-info [flags]` | 클러스터의 마스터와 서비스에 대한 엔드포인트 정보를 표시한다.
+`completion`    | `kubectl completion SHELL [options]` | 지정된 셸(bash 또는 zsh)에 대한 셸 완성 코드를 출력한다.
+`config`        | `kubectl config SUBCOMMAND [flags]` | kubeconfig 파일을 수정한다. 세부 사항은 개별 하위 명령을 참고한다.
+`convert`    | `kubectl convert -f FILENAME [options]` | 다른 API 버전 간에 구성 파일을 변환한다. YAML 및 JSON 형식이 모두 허용된다. 참고 - `kubectl-convert` 플러그인을 설치해야 한다.
+`cordon`    | `kubectl cordon NODE [options]` | 노드를 스케줄 불가능(unschedulable)으로 표시한다.
+`cp`    | `kubectl cp <file-spec-src> <file-spec-dest> [options]` | 컨테이너에서 그리고 컨테이너로 파일 및 디렉터리를 복사한다.
+`create`        | `kubectl create -f FILENAME [flags]` | 파일이나 표준입력에서 하나 이상의 리소스를 생성한다.
+`delete`        | <code>kubectl delete (-f FILENAME &#124; TYPE [NAME &#124; /NAME &#124; -l label &#124; --all]) [flags]</code> | 파일, 표준입력 또는 레이블 셀렉터, 이름, 리소스 셀렉터 또는 리소스를 지정하여 리소스를 삭제한다.
+`describe`    | <code>kubectl describe (-f FILENAME &#124; TYPE [NAME_PREFIX &#124; /NAME &#124; -l label]) [flags]</code> | 하나 이상의 리소스의 자세한 상태를 표시한다.
+`diff`        | `kubectl diff -f FILENAME [flags]`| 라이브 구성에 대해 파일이나 표준입력의 차이점을 출력한다.
+`drain`    | `kubectl drain NODE [options]` | 유지 보수를 준비 중인 노드를 드레인한다.
+`edit`        | <code>kubectl edit (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) [flags]</code> | 기본 편집기를 사용하여 서버에서 하나 이상의 리소스 정의를 편집하고 업데이트한다.
+`exec`        | `kubectl exec POD [-c CONTAINER] [-i] [-t] [flags] [-- COMMAND [args...]]` | 파드의 컨테이너에 대해 명령을 실행한다.
+`explain`    | `kubectl explain  [--recursive=false] [flags]` | 파드, 노드, 서비스 등의 다양한 리소스에 대한 문서를 출력한다.
+`expose`        | <code>kubectl expose (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) [--port=port] [--protocol=TCP&#124;UDP] [--target-port=number-or-name] [--name=name] [--external-ip=external-ip-of-service] [--type=type] [flags]</code> | 레플리케이션 컨트롤러, 서비스 또는 파드를 새로운 쿠버네티스 서비스로 노출한다.
+`get`        | <code>kubectl get (-f FILENAME &#124; TYPE [NAME &#124; /NAME &#124; -l label]) [--watch] [--sort-by=FIELD] [[-o &#124; --output]=OUTPUT_FORMAT] [flags]</code> | 하나 이상의 리소스를 나열한다.
+`kustomize`    | `kubectl kustomize <dir> [flags] [options]` | kustomization.yaml 파일의 지시 사항에서 생성된 API 리소스 집합을 나열한다. 인수는 파일을 포함하는 디렉터리의 경로이거나, 리포지터리 루트와 관련하여 경로 접미사가 동일한 git 리포지터리 URL이어야 한다.
+`label`        | <code>kubectl label (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) KEY_1=VAL_1 ... KEY_N=VAL_N [--overwrite] [--all] [--resource-version=version] [flags]</code> | 하나 이상의 리소스 레이블을 추가하거나 업데이트한다.
+`logs`        | `kubectl logs POD [-c CONTAINER] [--follow] [flags]` | 파드의 컨테이너에 대한 로그를 출력한다.
+`options`    | `kubectl options` | 모든 명령에 적용되는 전역 커맨드 라인 옵션을 나열한다.
+`patch`        | <code>kubectl patch (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) --patch PATCH [flags]</code> | 전략적 병합 패치 프로세스를 사용하여 리소스의 하나 이상의 필드를 업데이트한다.
+`plugin`    | `kubectl plugin [flags] [options]` | 플러그인과 상호 작용하기 위한 유틸리티를 제공한다.
+`port-forward`    | `kubectl port-forward POD [LOCAL_PORT:]REMOTE_PORT [...[LOCAL_PORT_N:]REMOTE_PORT_N] [flags]` | 하나 이상의 로컬 포트를 파드로 전달한다.
+`proxy`        | `kubectl proxy [--port=PORT] [--www=static-dir] [--www-prefix=prefix] [--api-prefix=prefix] [flags]` | 쿠버네티스 API 서버에 프록시를 실행한다.
+`replace`        | `kubectl replace -f FILENAME` | 파일 또는 표준입력에서 리소스를 교체한다.
+`rollout`    | `kubectl rollout SUBCOMMAND [options]` | 리소스의 롤아웃을 관리한다. 유효한 리소스 타입에는 디플로이먼트(deployment), 데몬셋(daemonset)과 스테이트풀셋(statefulset)이 포함된다.
+`run`        | <code>kubectl run NAME --image=image [--env="key=value"] [--port=port] [--dry-run=server&#124;client&#124;none] [--overrides=inline-json] [flags]</code> | 클러스터에서 지정된 이미지를 실행한다.
+`scale`        | <code>kubectl scale (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) --replicas=COUNT [--resource-version=version] [--current-replicas=count] [flags]</code> | 지정된 레플리케이션 컨트롤러의 크기를 업데이트한다.
+`set`    | `kubectl set SUBCOMMAND [options]` | 애플리케이션 리소스를 구성한다.
+`taint`    | `kubectl taint NODE NAME KEY_1=VAL_1:TAINT_EFFECT_1 ... KEY_N=VAL_N:TAINT_EFFECT_N [options]` | 하나 이상의 노드에서 테인트(taint)를 업데이트한다.
+`top`    | `kubectl top [flags] [options]` | 리소스(CPU/메모리/스토리지) 사용량을 표시한다.
+`uncordon`    | `kubectl uncordon NODE [options]` | 노드를 스케줄 가능(schedulable)으로 표시한다.
+`version`        | `kubectl version [--client] [flags]` | 클라이언트와 서버에서 실행 중인 쿠버네티스 버전을 표시한다.
+`wait`    | <code>kubectl wait ([-f FILENAME] &#124; resource.group/resource.name &#124; resource.group [(-l label &#124; --all)]) [--for=delete&#124;--for condition=available] [options]</code> | 실험(experimental) 기능: 하나 이상의 리소스에서 특정 조건을 기다린다.
+
+명령 동작에 대한 자세한 내용을 배우려면 [kubectl](/ko/docs/reference/kubectl/kubectl/) 참조 문서를 참고한다.
+
+## 리소스 타입
+
+다음 표에는 지원되는 모든 리소스 타입과 해당 약어가 나열되어 있다.
+
+(이 출력은 `kubectl api-resources` 에서 확인할 수 있으며, 쿠버네티스 1.19.1 에서의 출력을 기준으로 한다.)
+
+| NAME | SHORTNAMES | APIGROUP | NAMESPACED | KIND |
+|---|---|---|---|---|
+| `bindings` | | | true | Binding |
+| `componentstatuses` | `cs` | | false | ComponentStatus |
+| `configmaps` | `cm` | | true | ConfigMap |
+| `endpoints` | `ep` | | true | Endpoints |
+| `events` | `ev` | | true | Event |
+| `limitranges` | `limits` | | true | LimitRange |
+| `namespaces` | `ns` | | false | Namespace |
+| `nodes` | `no` | | false | Node |
+| `persistentvolumeclaims` | `pvc` | | true | PersistentVolumeClaim |
+| `persistentvolumes` | `pv` | | false | PersistentVolume |
+| `pods` | `po` | | true | Pod |
+| `podtemplates` | | | true | PodTemplate |
+| `replicationcontrollers` | `rc` | | true | ReplicationController |
+| `resourcequotas` | `quota` | | true | ResourceQuota |
+| `secrets` | | | true | Secret |
+| `serviceaccounts` | `sa` | | true | ServiceAccount |
+| `services` | `svc` | | true | Service |
+| `mutatingwebhookconfigurations` | | admissionregistration.k8s.io | false | MutatingWebhookConfiguration |
+| `validatingwebhookconfigurations` | | admissionregistration.k8s.io | false | ValidatingWebhookConfiguration |
+| `customresourcedefinitions` | `crd,crds` | apiextensions.k8s.io | false |  CustomResourceDefinition |
+| `apiservices` | | apiregistration.k8s.io | false | APIService |
+| `controllerrevisions` | | apps | true | ControllerRevision |
+| `daemonsets` | `ds` | apps | true | DaemonSet |
+| `deployments` | `deploy` | apps | true | Deployment |
+| `replicasets` | `rs` | apps | true | ReplicaSet |
+| `statefulsets` | `sts` | apps | true | StatefulSet |
+| `tokenreviews` | | authentication.k8s.io | false | TokenReview |
+| `localsubjectaccessreviews` | | authorization.k8s.io | true | LocalSubjectAccessReview |
+| `selfsubjectaccessreviews` | | authorization.k8s.io | false | SelfSubjectAccessReview |
+| `selfsubjectrulesreviews` | | authorization.k8s.io | false | SelfSubjectRulesReview |
+| `subjectaccessreviews` | | authorization.k8s.io | false | SubjectAccessReview |
+| `horizontalpodautoscalers` | `hpa` | autoscaling | true | HorizontalPodAutoscaler |
+| `cronjobs` | `cj` | batch | true | CronJob |
+| `jobs` | | batch | true | Job |
+| `certificatesigningrequests` | `csr` | certificates.k8s.io | false | CertificateSigningRequest |
+| `leases` | | coordination.k8s.io | true | Lease |
+| `endpointslices` |  | discovery.k8s.io | true | EndpointSlice |
+| `events` | `ev` | events.k8s.io | true | Event |
+| `ingresses` | `ing` | extensions | true | Ingress |
+| `flowschemas` |  | flowcontrol.apiserver.k8s.io | false | FlowSchema |
+| `prioritylevelconfigurations` |  | flowcontrol.apiserver.k8s.io | false | PriorityLevelConfiguration |
+| `ingressclasses` |  | networking.k8s.io | false | IngressClass |
+| `ingresses` | `ing` | networking.k8s.io | true | Ingress |
+| `networkpolicies` | `netpol` | networking.k8s.io | true | NetworkPolicy |
+| `runtimeclasses` |  | node.k8s.io | false | RuntimeClass |
+| `poddisruptionbudgets` | `pdb` | policy | true | PodDisruptionBudget |
+| `podsecuritypolicies` | `psp` | policy | false | PodSecurityPolicy |
+| `clusterrolebindings` | | rbac.authorization.k8s.io | false | ClusterRoleBinding |
+| `clusterroles` | | rbac.authorization.k8s.io | false | ClusterRole |
+| `rolebindings` | | rbac.authorization.k8s.io | true | RoleBinding |
+| `roles` | | rbac.authorization.k8s.io | true | Role |
+| `priorityclasses` | `pc` | scheduling.k8s.io | false | PriorityClass |
+| `csidrivers` | | storage.k8s.io | false | CSIDriver |
+| `csinodes` | | storage.k8s.io | false | CSINode |
+| `storageclasses` | `sc` | storage.k8s.io | false | StorageClass |
+| `volumeattachments` | | storage.k8s.io | false | VolumeAttachment |
+
+## 출력 옵션
+
+특정 명령의 출력을 서식화하거나 정렬하는 방법에 대한 정보는 다음 섹션을 참고한다. 다양한 출력 옵션을 지원하는 명령에 대한 자세한 내용은 [kubectl](/ko/docs/reference/kubectl/kubectl/) 참조 문서를 참고한다.
+
+### 출력 서식화
+
+모든 `kubectl` 명령의 기본 출력 형식은 사람이 읽을 수 있는 일반 텍스트 형식이다. 특정 형식으로 터미널 창에 세부 정보를 출력하려면, 지원되는 `kubectl` 명령에 `-o` 또는 `--output` 플래그를 추가할 수 있다.
+
+#### 구문
+
+```shell
+kubectl [command] [TYPE] [NAME] -o <output_format>
+```
+
+`kubectl` 명령에 따라, 다음과 같은 출력 형식이 지원된다.
+
+출력 형식 | 설명
+--------------| -----------
+`-o custom-columns=<spec>` | 쉼표로 구분된 [사용자 정의 열](#custom-columns) 목록을 사용하여 테이블을 출력한다.
+`-o custom-columns-file=<filename>` | `<filename>` 파일에서 [사용자 정의 열](#custom-columns) 템플릿을 사용하여 테이블을 출력한다.
+`-o json`     | JSON 형식의 API 오브젝트를 출력한다.
+`-o jsonpath=<template>` | [jsonpath](/ko/docs/reference/kubectl/jsonpath/) 표현식에 정의된 필드를 출력한다.
+`-o jsonpath-file=<filename>` | `<filename>` 파일에서 [jsonpath](/ko/docs/reference/kubectl/jsonpath/) 표현식으로 정의된 필드를 출력한다.
+`-o name`     | 리소스 이름만 출력한다.
+`-o wide`     | 추가 정보가 포함된 일반 텍스트 형식으로 출력된다. 파드의 경우, 노드 이름이 포함된다.
+`-o yaml`     | YAML 형식의 API 오브젝트를 출력한다.
+
+##### 예제
+
+이 예제에서, 다음의 명령은 단일 파드에 대한 세부 정보를 YAML 형식의 오브젝트로 출력한다.
+
+```shell
+kubectl get pod web-pod-13je7 -o yaml
+```
+
+기억하기: 각 명령이 지원하는 출력 형식에 대한 자세한 내용은
+[kubectl](/ko/docs/reference/kubectl/kubectl/) 참조 문서를 참고한다.
+
+#### 사용자 정의 열 {#custom-columns}
+
+사용자 정의 열을 정의하고 원하는 세부 정보만 테이블에 출력하려면, `custom-columns` 옵션을 사용할 수 있다.
+사용자 정의 열을 인라인으로 정의하거나 템플릿 파일을 사용하도록 선택할 수 있다. `-o custom-columns=<spec>` 또는 `-o custom-columns-file=<filename>`
+
+##### 예제
+
+인라인:
+
+```shell
+kubectl get pods <pod-name> -o custom-columns=NAME:.metadata.name,RSRC:.metadata.resourceVersion
+```
+
+템플릿 파일:
+
+```shell
+kubectl get pods <pod-name> -o custom-columns-file=template.txt
+```
+
+`template.txt` 파일에 포함된 내용은 다음과 같다.
+
+```
+NAME          RSRC
+metadata.name metadata.resourceVersion
+```
+두 명령 중 하나를 실행한 결과는 다음과 비슷하다.
+
+```
+NAME           RSRC
+submit-queue   610995
+```
+
+#### 서버측 열
+
+`kubectl` 는 서버에서 오브젝트에 대한 특정 열 정보 수신을 지원한다.
+이는 클라이언트가 출력할 수 있도록, 주어진 리소스에 대해 서버가 해당 리소스와 관련된 열과 행을 반환한다는 것을 의미한다.
+이는 서버가 출력의 세부 사항을 캡슐화하도록 하여, 동일한 클러스터에 대해 사용된 클라이언트에서 사람이 읽을 수 있는 일관된 출력을 허용한다.
+
+이 기능은 기본적으로 활성화되어 있다. 사용하지 않으려면,
+`kubectl get` 명령에 `--server-print=false` 플래그를 추가한다.
+
+##### 예제
+
+파드 상태에 대한 정보를 출력하려면, 다음과 같은 명령을 사용한다.
+
+```shell
+kubectl get pods <pod-name> --server-print=false
+```
+
+출력 결과는 다음과 비슷하다.
+
+```
+NAME       AGE
+pod-name   1m
+```
+
+### 오브젝트 목록 정렬
+
+터미널 창에서 정렬된 목록으로 오브젝트를 출력하기 위해, 지원되는 `kubectl` 명령에 `--sort-by` 플래그를 추가할 수 있다. `--sort-by` 플래그와 함께 숫자나 문자열 필드를 지정하여 오브젝트를 정렬한다. 필드를 지정하려면, [jsonpath](/ko/docs/reference/kubectl/jsonpath/) 표현식을 사용한다.
+
+#### 구문
+
+```shell
+kubectl [command] [TYPE] [NAME] --sort-by=<jsonpath_exp>
+```
+
+##### 예제
+
+이름별로 정렬된 파드 목록을 출력하려면, 다음을 실행한다.
+
+```shell
+kubectl get pods --sort-by=.metadata.name
+```
+
+## 예제: 일반적인 작업
+
+다음 예제 세트를 사용하여 일반적으로 사용되는 `kubectl` 조작 실행에 익숙해진다.
+
+`kubectl apply` - 파일 또는 표준입력에서 리소스를 적용하거나 업데이트한다.
+
+```shell
+# example-service.yaml의 정의를 사용하여 서비스를 생성한다.
+kubectl apply -f example-service.yaml
+
+# example-controller.yaml의 정의를 사용하여 레플리케이션 컨트롤러를 생성한다.
+kubectl apply -f example-controller.yaml
+
+# <directory> 디렉터리 내의 .yaml, .yml 또는 .json 파일에 정의된 오브젝트를 생성한다.
+kubectl apply -f <directory>
+```
+
+`kubectl get` - 하나 이상의 리소스를 나열한다.
+
+```shell
+# 모든 파드를 일반 텍스트 출력 형식으로 나열한다.
+kubectl get pods
+
+# 모든 파드를 일반 텍스트 출력 형식으로 나열하고 추가 정보(예: 노드 이름)를 포함한다.
+kubectl get pods -o wide
+
+# 지정된 이름의 레플리케이션 컨트롤러를 일반 텍스트 출력 형식으로 나열한다. 팁: 'replicationcontroller' 리소스 타입을 'rc'로 짧게 바꿔쓸 수 있다.
+kubectl get replicationcontroller <rc-name>
+
+# 모든 레플리케이션 컨트롤러와 서비스를 일반 텍스트 출력 형식으로 함께 나열한다.
+kubectl get rc,services
+
+# 모든 데몬 셋을 일반 텍스트 출력 형식으로 나열한다.
+kubectl get ds
+
+# 노드 server01에서 실행 중인 모든 파드를 나열한다.
+kubectl get pods --field-selector=spec.nodeName=server01
+```
+
+`kubectl describe` - 초기화되지 않은 리소스를 포함하여 하나 이상의 리소스의 기본 상태를 디폴트로 표시한다.
+
+```shell
+# 노드 이름이 <node-name>인 노드의 세부 사항을 표시한다.
+kubectl describe nodes <node-name>
+
+# 파드 이름이 <pod-name> 인 파드의 세부 정보를 표시한다.
+kubectl describe pods/<pod-name>
+
+# 이름이 <rc-name>인 레플리케이션 컨트롤러가 관리하는 모든 파드의 세부 정보를 표시한다.
+# 기억하기: 레플리케이션 컨트롤러에서 생성된 모든 파드에는 레플리케이션 컨트롤러 이름이 접두사로 붙는다.
+kubectl describe pods <rc-name>
+
+# 모든 파드의 정보를 출력한다.
+kubectl describe pods
+```
+
+{{< note >}}
+`kubectl get` 명령은 일반적으로 동일한 리소스 타입의 하나 이상의
+리소스를 검색하는 데 사용된다. 예를 들어, `-o` 또는 `--output` 플래그를
+사용하여 출력 형식을 사용자 정의할 수 있는 풍부한 플래그 세트가 있다.
+`-w` 또는 `--watch` 플래그를 지정하여 특정 오브젝트에 대한 업데이트 진행과정을 확인할 수
+있다. `kubectl describe` 명령은 지정된 리소스의 여러 관련 측면을
+설명하는 데 더 중점을 둔다. API 서버에 대한 여러 API 호출을 호출하여
+사용자에 대한 뷰(view)를 빌드할 수 있다. 예를 들어, `kubectl describe node`
+명령은 노드에 대한 정보뿐만 아니라, 노드에서 실행 중인 파드의 요약 정보, 노드에 대해 생성된 이벤트 등의
+정보도 검색한다.
+{{< /note >}}
+
+`kubectl delete` - 파일, 표준입력 또는 레이블 선택기, 이름, 리소스 선택기나 리소스를 지정하여 리소스를 삭제한다.
+
+```shell
+# pod.yaml 파일에 지정된 타입과 이름을 사용하여 파드를 삭제한다.
+kubectl delete -f pod.yaml
+
+# '<label-key>=<label-value>' 레이블이 있는 모든 파드와 서비스를 삭제한다.
+kubectl delete pods,services -l <label-key>=<label-value>
+
+# 초기화되지 않은 파드를 포함한 모든 파드를 삭제한다.
+kubectl delete pods --all
+```
+
+`kubectl exec` - 파드의 컨테이너에 대해 명령을 실행한다.
+
+```shell
+# 파드 <pod-name>에서 'date'를 실행한 결과를 얻는다. 기본적으로, 첫 번째 컨테이너에서 출력된다.
+kubectl exec <pod-name> -- date
+
+# 파드 <pod-name>의 <container-name> 컨테이너에서 'date'를 실행하여 출력 결과를 얻는다.
+kubectl exec <pod-name> -c <container-name> -- date
+
+# 파드 <pod-name>에서 대화식 TTY를 연결해 /bin/bash를 실행한다. 기본적으로, 첫 번째 컨테이너에서 출력된다.
+kubectl exec -ti <pod-name> -- /bin/bash
+```
+
+`kubectl logs` - 파드의 컨테이너에 대한 로그를 출력한다.
+
+```shell
+# 파드 <pod-name>에서 로그의 스냅샷을 반환한다.
+kubectl logs <pod-name>
+
+# 파드 <pod-name>에서 로그 스트리밍을 시작한다. 이것은 리눅스 명령 'tail -f'와 비슷하다.
+kubectl logs -f <pod-name>
+```
+
+`kubectl diff` - 제안된 클러스터 업데이트의 차이점을 본다.
+
+```shell
+# "pod.json"에 포함된 리소스의 차이점을 출력한다.
+kubectl diff -f pod.json
+
+# 표준입력에서 파일을 읽어 차이점을 출력한다.
+cat service.yaml | kubectl diff -f -
+```
+
+## 예제: 플러그인 작성 및 사용
+
+`kubectl` 플러그인 작성과 사용에 익숙해지려면 다음의 예제 세트를 사용한다.
+
+```shell
+# 어떤 언어로든 간단한 플러그인을 만들고 "kubectl-" 접두사로
+# 시작하도록 실행 파일의 이름을 지정한다.
+cat ./kubectl-hello
+```
+```shell
+#!/bin/sh
+
+# 이 플러그인은 "hello world"라는 단어를 출력한다
+echo "hello world"
+```
+작성한 플러그인을 실행 가능하게 한다
+```bash
+chmod a+x ./kubectl-hello
+
+# 그리고 PATH의 위치로 옮긴다
+sudo mv ./kubectl-hello /usr/local/bin
+sudo chown root:root /usr/local/bin
+
+# 이제 kubectl 플러그인을 만들고 "설치했다".
+# kubectl에서 플러그인을 일반 명령처럼 호출하여 플러그인을 사용할 수 있다
+kubectl hello
+```
+```
+hello world
+```
+
+```shell
+# 플러그인을 배치한 $PATH의 폴더에서 플러그인을 삭제하여,
+# 플러그인을 "제거"할 수 있다
+sudo rm /usr/local/bin/kubectl-hello
+```
+
+`kubectl` 에 사용할 수 있는 모든 플러그인을 보려면,
+`kubectl plugin list` 하위 명령을 사용한다.
+
+```shell
+kubectl plugin list
+```
+출력 결과는 다음과 비슷하다.
+```
+The following kubectl-compatible plugins are available:
+
+/usr/local/bin/kubectl-hello
+/usr/local/bin/kubectl-foo
+/usr/local/bin/kubectl-bar
+```
+
+`kubectl plugin list` 는 또한 실행 가능하지 않거나,
+다른 플러그인에 의해 차단된 플러그인에 대해 경고한다. 예를 들면 다음과 같다.
+```shell
+sudo chmod -x /usr/local/bin/kubectl-foo # 실행 권한 제거
+kubectl plugin list
+```
+```
+The following kubectl-compatible plugins are available:
+
+/usr/local/bin/kubectl-hello
+/usr/local/bin/kubectl-foo
+  - warning: /usr/local/bin/kubectl-foo identified as a plugin, but it is not executable
+/usr/local/bin/kubectl-bar
+
+error: one plugin warning was found
+```
+
+플러그인은 기존 kubectl 명령 위에 보다 복잡한 기능을
+구축하는 수단으로 생각할 수 있다.
+
+```shell
+cat ./kubectl-whoami
+```
+다음 몇 가지 예는 이미 `kubectl-whoami` 에
+다음 내용이 있다고 가정한다.
+```shell
+#!/bin/bash
+
+# 이 플러그인은 현재 선택된 컨텍스트를 기반으로 현재 사용자에 대한
+# 정보를 출력하기 위해 'kubectl config' 명령을 사용한다.
+kubectl config view --template='{{ range .contexts }}{{ if eq .name "'$(kubectl config current-context)'" }}Current user: {{ printf "%s\n" .context.user }}{{ end }}{{ end }}'
+```
+
+위의 플러그인을 실행하면 KUBECONFIG 파일에서 현재의 컨텍스트에 대한
+사용자가 포함된 출력이 제공된다.
+
+```shell
+# 파일을 실행 가능하게 한다
+sudo chmod +x ./kubectl-whoami
+
+# 그리고 PATH로 옮긴다
+sudo mv ./kubectl-whoami /usr/local/bin
+
+kubectl whoami
+Current user: plugins-user
+```
+
+## {{% heading "whatsnext" %}}
+
+* `kubectl` 레퍼런스 문서를 읽는다.
+  * kubectl [명령어 레퍼런스](/ko/docs/reference/kubectl/kubectl/)
+  * [명령줄 인자](/docs/reference/generated/kubectl/kubectl-commands/) 레퍼런스
+* [`kubectl` 사용 규칙](/ko/docs/reference/kubectl/conventions/)에 대해 알아본다.
+* kubectl의 [JSONPath 지원](/ko/docs/reference/kubectl/jsonpath/)에 대해 알아본다.
+* [플러그인으로 kubectl 확장](/ko/docs/tasks/extend-kubectl/kubectl-plugins/)에 대해 알아본다.
+  * 플러그인에 대해 좀 더 알아보려면, [예시 CLI 플러그인](https://github.com/kubernetes/sample-cli-plugin)을 살펴본다.
diff --git a/content/ko/docs/reference/kubectl/cheatsheet.md b/content/ko/docs/reference/kubectl/cheatsheet.md
index 71fc5a5f27..051c4502ed 100644
--- a/content/ko/docs/reference/kubectl/cheatsheet.md
+++ b/content/ko/docs/reference/kubectl/cheatsheet.md
@@ -1,6 +1,11 @@
 ---
 title: kubectl 치트 시트
+
+
+
+
 content_type: concept
+weight: 10 # highlight it
 card:
   name: reference
   weight: 30
@@ -34,6 +39,11 @@ complete -F __start_kubectl k
 source <(kubectl completion zsh)  # 현재 셸에 zsh의 자동 완성 설정
 echo "[[ $commands[kubectl] ]] && source <(kubectl completion zsh)" >> ~/.zshrc # 자동 완성을 zsh 셸에 영구적으로 추가한다.
 ```
+### --all-namespaces 에 대한 노트
+
+`--all-namespaces`를 붙여야 하는 상황이 자주 발생하므로, `--all-namespaces`의 축약형을 알아 두는 것이 좋다.
+
+```kubectl -A```
 
 ## Kubectl 컨텍스트와 설정
 
@@ -52,11 +62,11 @@ kubectl config view
 # e2e 사용자의 암호를 확인한다
 kubectl config view -o jsonpath='{.users[?(@.name == "e2e")].user.password}'
 
-kubectl config view -o jsonpath='{.users[].name}'    # 첫 번째 사용자 출력
+kubectl config view -o jsonpath='{.users[].name}'     # 첫 번째 사용자 출력
 kubectl config view -o jsonpath='{.users[*].name}'    # 사용자 리스트 조회
-kubectl config get-contexts                          # 컨텍스트 리스트 출력
-kubectl config current-context              # 현재 컨텍스트 출력
-kubectl config use-context my-cluster-name  # my-cluster-name를 기본 컨텍스트로 설정
+kubectl config get-contexts                           # 컨텍스트 리스트 출력
+kubectl config current-context                        # 현재 컨텍스트 출력
+kubectl config use-context my-cluster-name            # my-cluster-name를 기본 컨텍스트로 설정
 
 # 기본 인증을 지원하는 새로운 사용자를 kubeconf에 추가한다
 kubectl config set-credentials kubeuser/foo.kubernetes.com --username=kubeuser --password=kubepassword
@@ -69,6 +79,10 @@ kubectl config set-context gce --user=cluster-admin --namespace=foo \
   && kubectl config use-context gce
 
 kubectl config unset users.foo                       # foo 사용자 삭제
+
+# 컨텍스트/네임스페이스를 설정/조회하는 단축 명령 (bash 및 bash 호환 셸에서만 동작함, 네임스페이스 설정을 위해 kn 을 사용하기 전에 현재 컨텍스트가 설정되어야 함)
+alias kx='f() { [ "$1" ] && kubectl config use-context $1 || kubectl config current-context ; } ; f'
+alias kn='f() { [ "$1" ] && kubectl config set-context --current --namespace $1 || kubectl config view --minify | grep namespace | cut -d" " -f6 ; } ; f'
 ```
 
 ## Kubectl apply
@@ -88,10 +102,10 @@ kubectl apply -f https://git.io/vPieo          # url로부터 리소스(들) 생
 kubectl create deployment nginx --image=nginx  # nginx 단일 인스턴스를 시작
 
 # "Hello World"를 출력하는 잡(Job) 생성
-kubectl create job hello --image=busybox -- echo "Hello World"
+kubectl create job hello --image=busybox:1.28 -- echo "Hello World"
 
 # 매분마다 "Hello World"를 출력하는 크론잡(CronJob) 생성
-kubectl create cronjob hello --image=busybox   --schedule="*/1 * * * *" -- echo "Hello World"    
+kubectl create cronjob hello --image=busybox:1.28   --schedule="*/1 * * * *" -- echo "Hello World"
 
 kubectl explain pods                           # 파드 매니페스트 문서를 조회
 
@@ -104,7 +118,7 @@ metadata:
 spec:
   containers:
   - name: busybox
-    image: busybox
+    image: busybox:1.28
     args:
     - sleep
     - "1000000"
@@ -116,7 +130,7 @@ metadata:
 spec:
   containers:
   - name: busybox
-    image: busybox
+    image: busybox:1.28
     args:
     - sleep
     - "1000"
@@ -168,9 +182,9 @@ kubectl get pods --selector=app=cassandra -o \
 kubectl get configmap myconfig \
   -o jsonpath='{.data.ca\.crt}'
 
-# 모든 워커 노드 조회 (셀렉터를 사용하여 'node-role.kubernetes.io/master'
+# 모든 워커 노드 조회 (셀렉터를 사용하여 'node-role.kubernetes.io/control-plane'
 # 으로 명명된 라벨의 결과를 제외)
-kubectl get node --selector='!node-role.kubernetes.io/master'
+kubectl get node --selector='!node-role.kubernetes.io/control-plane'
 
 # 네임스페이스의 모든 실행 중인 파드를 조회
 kubectl get pods --field-selector=status.phase=Running
@@ -208,19 +222,21 @@ kubectl diff -f ./my-manifest.yaml
 
 # 노드에 대해 반환된 모든 키의 마침표로 구분된 트리를 생성한다.
 # 복잡한 중첩 JSON 구조 내에서 키를 찾을 때 유용하다.
-kubectl get nodes -o json | jq -c 'path(..)|[.[]|tostring]|join(".")'
+kubectl get nodes -o json | jq -c 'paths|join(".")'
 
 # 파드 등에 대해 반환된 모든 키의 마침표로 구분된 트리를 생성한다.
-kubectl get pods -o json | jq -c 'path(..)|[.[]|tostring]|join(".")'
+kubectl get pods -o json | jq -c 'paths|join(".")'
 
 # 모든 파드에 대해 ENV를 생성한다(각 파드에 기본 컨테이너가 있고, 기본 네임스페이스가 있고, `env` 명령어가 동작한다고 가정).
 # `env` 뿐만 아니라 다른 지원되는 명령어를 모든 파드에 실행할 때에도 참고할 수 있다.
-for pod in $(kubectl get po --output=jsonpath={.items..metadata.name}); do echo $pod && kubectl exec -it $pod env; done
+for pod in $(kubectl get po --output=jsonpath={.items..metadata.name}); do echo $pod && kubectl exec -it $pod -- env; done
+
+# 디플로이먼트의 status 서브리소스를 조회한다.
+kubectl get deployment nginx-deployment --subresource=status
 ```
 
 ## 리소스 업데이트
 
-
 ```bash
 kubectl set image deployment/frontend www=image:v2               # "frontend" 디플로이먼트의 "www" 컨테이너 이미지를 업데이트하는 롤링 업데이트
 kubectl rollout history deployment/frontend                      # 현 리비전을 포함한 디플로이먼트의 이력을 체크
@@ -230,7 +246,7 @@ kubectl rollout status -w deployment/frontend                    # 완료될 때
 kubectl rollout restart deployment/frontend                      # "frontend" 디플로이먼트의 롤링 재시작
 
 
-cat pod.json | kubectl replace -f -                              # std로 전달된 JSON을 기반으로 파드 교체
+cat pod.json | kubectl replace -f -                              # stdin으로 전달된 JSON을 기반으로 파드 교체
 
 # 리소스를 강제 교체, 삭제 후 재생성함. 이것은 서비스를 중단시킴.
 kubectl replace --force -f ./pod.json
@@ -262,11 +278,15 @@ kubectl patch deployment valid-deployment  --type json   -p='[{"op": "remove", "
 
 # 위치 배열에 새 요소 추가
 kubectl patch sa default --type='json' -p='[{"op": "add", "path": "/secrets/1", "value": {"name": "whatever" } }]'
+
+# Update a deployment's replicas count by patching it's scale subresource
+# 디플로이먼트의 scale 서브리소스를 패치하여 레플리카 카운트를 업데이트.
+kubectl patch deployment nginx-deployment --subresource='scale' --type='merge' -p '{"spec":{"replicas":2}}'
 ```
 
 ## 리소스 편집
 
-편집기로 모든 API 리소스를 편집.
+선호하는 편집기로 모든 API 리소스를 편집할 수 있다.
 
 ```bash
 kubectl edit svc/docker-registry                      # docker-registry라는 서비스 편집
@@ -285,11 +305,11 @@ kubectl scale --replicas=5 rc/foo rc/bar rc/baz                   # 여러 개
 ## 리소스 삭제
 
 ```bash
-kubectl delete -f ./pod.json                                              # pod.json에 지정된 유형 및 이름을 사용하여 파드 삭제
-kubectl delete pod,service baz foo                                        # "baz", "foo"와 동일한 이름을 가진 파드와 서비스 삭제
-kubectl delete pods,services -l name=myLabel                              # name=myLabel 라벨을 가진 파드와 서비스 삭제
-kubectl delete pods,services -l name=myLabel --include-uninitialized      # 초기화되지 않은 것을 포함하여, name=myLabel 라벨을 가진 파드와 서비스 삭제
-kubectl -n my-ns delete pod,svc --all                                      # 초기화되지 않은 것을 포함하여, my-ns 네임스페이스 내 모든 파드와 서비스 삭제
+kubectl delete -f ./pod.json                                      # pod.json에 지정된 유형 및 이름을 사용하여 파드 삭제
+kubectl delete pod unwanted --now                                 # 유예 시간 없이 즉시 파드 삭제
+kubectl delete pod,service baz foo                                # "baz", "foo"와 동일한 이름을 가진 파드와 서비스 삭제
+kubectl delete pods,services -l name=myLabel                      # name=myLabel 라벨을 가진 파드와 서비스 삭제
+kubectl -n my-ns delete pod,svc --all                             # my-ns 네임스페이스 내 모든 파드와 서비스 삭제
 # awk pattern1 또는 pattern2에 매칭되는 모든 파드 삭제
 kubectl get pods  -n mynamespace --no-headers=true | awk '/pattern1|pattern2/{print $1}' | xargs  kubectl delete -n mynamespace pod
 ```
@@ -306,9 +326,8 @@ kubectl logs my-pod -c my-container --previous      # 컨테이너의 이전 인
 kubectl logs -f my-pod                              # 실시간 스트림 파드 로그(stdout)
 kubectl logs -f my-pod -c my-container              # 실시간 스트림 파드 로그(stdout, 멀티-컨테이너 경우)
 kubectl logs -f -l name=myLabel --all-containers    # name이 myLabel인 모든 파드의 로그 스트리밍 (stdout)
-kubectl run -i --tty busybox --image=busybox -- sh  # 대화형 셸로 파드를 실행
-kubectl run nginx --image=nginx -n
-mynamespace                                         # 특정 네임스페이스에서 nginx 파드 실행
+kubectl run -i --tty busybox --image=busybox:1.28 -- sh  # 대화형 셸로 파드를 실행
+kubectl run nginx --image=nginx -n mynamespace      # mynamespace 네임스페이스에서 nginx 파드 1개 실행
 kubectl run nginx --image=nginx                     # nginx 파드를 실행하고 해당 스펙을 pod.yaml 파일에 기록
 --dry-run=client -o yaml > pod.yaml
 
@@ -320,6 +339,24 @@ kubectl exec my-pod -c my-container -- ls /         # 기존 파드에서 명령
 kubectl top pod POD_NAME --containers               # 특정 파드와 해당 컨테이너에 대한 메트릭 표시
 kubectl top pod POD_NAME --sort-by=cpu              # 지정한 파드에 대한 메트릭을 표시하고 'cpu' 또는 'memory'별로 정렬
 ```
+## 컨테이너로/컨테이너에서 파일과 디렉터리 복사
+
+```bash
+kubectl cp /tmp/foo_dir my-pod:/tmp/bar_dir            # 로컬 디렉토리 /tmp/foo_dir 를 현재 네임스페이스의 my-pod 파드 안의 /tmp/bar_dir 로 복사
+kubectl cp /tmp/foo my-pod:/tmp/bar -c my-container    # 로컬 파일 /tmp/foo 를 my-pod 파드의 my-container 컨테이너 안의 /tmp/bar 로 복사
+kubectl cp /tmp/foo my-namespace/my-pod:/tmp/bar       # 로컬 파일 /tmp/foo 를 my-namespace 네임스페이스의 my-pod 파드 안의 /tmp/bar 로 복사
+kubectl cp my-namespace/my-pod:/tmp/foo /tmp/bar       # my-namespace 네임스페이스의 my-pod 파드 안의 파일 /tmp/foo 를 로컬의 /tmp/bar 로 복사
+```
+{{< note >}}
+`kubectl cp` 명령을 사용하려면 컨테이너 이미지에 'tar' 바이너리가 포함되어 있어야 한다. 'tar'가 없으면, `kubectl cp`는 실패할 것이다.
+심볼릭 링크, 와일드카드 확장, 파일 모드 보존과 같은 고급 사용 사례에 대해서는 `kubectl exec` 를 고려해 볼 수 있다.
+{{< /note >}}
+
+```bash
+tar cf - /tmp/foo | kubectl exec -i -n my-namespace my-pod -- tar xf - -C /tmp/bar           # 로컬 파일 /tmp/foo 를 my-namespace 네임스페이스의 my-pod 파드 안의 /tmp/bar 로 복사
+kubectl exec -n my-namespace my-pod -- tar cf - /tmp/foo | tar xf - -C /tmp/bar    # my-namespace 네임스페이스의 my-pod 파드 안의 파일 /tmp/foo 를 로컬의 /tmp/bar 로 복사
+```
+
 
 ## 디플로이먼트, 서비스와 상호 작용
 ```bash
@@ -398,7 +435,7 @@ kubectl get pods -A -o=custom-columns='DATA:spec.containers[?(@.image!="k8s.gcr.
 kubectl get pods -A -o=custom-columns='DATA:metadata.*'
 ```
 
-더 많은 예제는 kubectl [참조 문서](/ko/docs/reference/kubectl/overview/#custom-columns)를 참고한다.
+더 많은 예제는 kubectl [참조 문서](/ko/docs/reference/kubectl/#custom-columns)를 참고한다.
 
 ### Kubectl 출력 로그 상세 레벨(verbosity)과 디버깅
 
@@ -419,10 +456,10 @@ Kubectl 로그 상세 레벨(verbosity)은 `-v` 또는`--v` 플래그와 로그
 
 ## {{% heading "whatsnext" %}}
 
-* [kubectl 개요](/ko/docs/reference/kubectl/overview/)를 읽고 [JsonPath](/ko/docs/reference/kubectl/jsonpath)에 대해 배워보자.
+* [kubectl 개요](/ko/docs/reference/kubectl/)를 읽고 [JsonPath](/ko/docs/reference/kubectl/jsonpath)에 대해 배워보자.
 
 * [kubectl](/ko/docs/reference/kubectl/kubectl/) 옵션을 참고한다.
 
-* 재사용 스크립트에서 kubectl 사용 방법을 이해하기 위해 [kubectl 사용법](/ko/docs/reference/kubectl/conventions/)을 참고한다.
+* 재사용 스크립트에서 kubectl 사용 방법을 이해하기 위해 [kubectl 사용 규칙](/ko/docs/reference/kubectl/conventions/)을 참고한다.
 
 * 더 많은 커뮤니티 [kubectl 치트시트](https://github.com/dennyzhang/cheatsheet-kubernetes-A4)를 확인한다.
diff --git a/content/ko/docs/reference/kubectl/conventions.md b/content/ko/docs/reference/kubectl/conventions.md
index aa76c0c8bf..b4fec4c0b1 100644
--- a/content/ko/docs/reference/kubectl/conventions.md
+++ b/content/ko/docs/reference/kubectl/conventions.md
@@ -19,6 +19,16 @@ content_type: concept
 * 예를 들어 `jobs.v1.batch/myjob`과 같이 전체 버전을 사용한다. 이를 통해 `kubectl`이 시간이 지남에 따라 변경될 수 있는 기본 버전을 사용하지 않도록 한다.
 * 문맥, 설정 또는 기타 암묵적 상태에 의존하지 않는다.
 
+## 서브리소스 {#subresources}
+
+* kubectl의 `get`, `patch`, `edit` 및 `replace`와 같은 명령어에서 
+  서브리소스를 지원하는 모든 리소스에 대해 `--subresource` 알파 플래그를 사용하여 
+  서브리소스를 조회하고 업데이트할 수 있다. 현재, `status`와 `scale` 서브리소스만 지원된다.
+* 서브리소스에 대한 API 계약은 전체 리소스와 동일하다. 
+  `status` 서브리소스를 새 값으로 업데이트해도, 
+  컨트롤러에서 서브리소스를 잠재적으로 다른 값으로 조정할 수 있다는 점을 염두에 두어야 한다.
+
+
 ## 모범 사례
 
 ### `kubectl run`
@@ -31,29 +41,6 @@ content_type: concept
 
 `--dry-run` 플래그를 사용하여 실제로 제출하지 않고 클러스터로 보낼 오브젝트를 미리 볼 수 있다.
 
-{{< note >}}
-모든 `kubectl run`의 생성기(generator)는 더 이상 사용 할 수 없다. 생성기 [목록](https://v1-17.docs.kubernetes.io/docs/reference/kubectl/conventions/#generators) 및 사용 방법은 쿠버네티스 v1.17 문서를 참고한다.
-{{< /note >}}
-
-#### 생성기
-`kubectl create --dry-run -o yaml`라는 kubectl 커맨드를 통해 다음과 같은 리소스를 생성할 수 있다.
-
-* `clusterrole`: 클러스터롤(ClusterRole)를 생성한다.
-* `clusterrolebinding`: 특정 클러스터롤에 대한 클러스터롤바인딩(ClusterRoleBinding)을 생성한다.
-* `configmap`: 로컬 파일, 디렉토리 또는 문자 그대로의 값으로 컨피그맵(ConfigMap)을 생성한다.
-* `cronjob`: 지정된 이름으로 크론잡(CronJob)을 생성한다.
-* `deployment`: 지정된 이름으로 디플로이먼트(Deployment)를 생성한다.
-* `job`: 지정된 이름으로 잡(Job)을 생성한다.
-* `namespace`: 지정된 이름으로 네임스페이스(Namespace)를 생성한다.
-* `poddisruptionbudget`: 지정된 이름으로 PodDisruptionBudget을 생성한다.
-* `priorityclass`: 지정된 이름으로 프라이어리티클래스(PriorityClass)을 생성한다.
-* `quota`: 지정된 이름으로 쿼터(Quota)를 생성한다.
-* `role`: 단일 규칙으로 롤(Role)을 생성한다.
-* `rolebinding`: 특정 롤 또는 클러스터롤에 대한 롤바인딩(RoleBinding)을 생성한다.
-* `secret`: 지정된 하위 커맨드를 사용하여 시크릿(Secret)을 생성한다.
-* `service`: 지정된 하위 커맨드를 사용하여 서비스(Service)를 생성한다.
-* `serviceaccount`: 지정된 이름으로 서비스어카운트(ServiceAccount)을 생성한다.
-
 ### `kubectl apply`
 
 * `kubectl apply`를 사용해서 리소스를 생성하거나 업데이트 할 수 있다. kubectl apply를 사용하여 리소스를 업데이트하는 방법에 대한 자세한 정보는 [Kubectl 책](https://kubectl.docs.kubernetes.io)을 참고한다.
diff --git a/content/ko/docs/reference/kubectl/docker-cli-to-kubectl.md b/content/ko/docs/reference/kubectl/docker-cli-to-kubectl.md
index a367c175cb..b6dd29c851 100644
--- a/content/ko/docs/reference/kubectl/docker-cli-to-kubectl.md
+++ b/content/ko/docs/reference/kubectl/docker-cli-to-kubectl.md
@@ -187,7 +187,7 @@ kubectl exec -ti nginx-app-5jyvm -- /bin/sh
 # exit
 ```
 
-자세한 내용은 [실행 중인 컨테이너의 셸 얻기](/docs/tasks/debug-application-cluster/get-shell-running-container/)를 참고한다.
+자세한 내용은 [실행 중인 컨테이너의 셸 얻기](/ko/docs/tasks/debug/debug-application/get-shell-running-container/)를 참고한다.
 
 ## docker logs
 
diff --git a/content/ko/docs/reference/kubectl/jsonpath.md b/content/ko/docs/reference/kubectl/jsonpath.md
index 4a910829f8..b3ecc4e70b 100644
--- a/content/ko/docs/reference/kubectl/jsonpath.md
+++ b/content/ko/docs/reference/kubectl/jsonpath.md
@@ -1,7 +1,6 @@
 ---
 title: JSONPath 지원
 content_type: concept
-weight: 25
 ---
 
 <!-- overview -->
diff --git a/content/ko/docs/reference/kubectl/kubectl.md b/content/ko/docs/reference/kubectl/kubectl.md
index 81e4d3fa74..55d83debe2 100644
--- a/content/ko/docs/reference/kubectl/kubectl.md
+++ b/content/ko/docs/reference/kubectl/kubectl.md
@@ -9,7 +9,7 @@ weight: 30
 
 kubectl은 쿠버네티스 클러스터 관리자를 제어한다.
 
- 자세한 정보는 [kubectl 개요](/ko/docs/reference/kubectl/overview/)를 확인한다.
+ 자세한 정보는 [kubectl 개요](/ko/docs/reference/kubectl/)를 확인한다.
 
 ```
 kubectl [flags]
@@ -328,7 +328,31 @@ kubectl [flags]
 </tbody>
 </table>
 
+## {{% heading "envvars" %}}
 
+<table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">KUBECONFIG</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">kubectl 구성 ("kubeconfig") 파일 경로. 기본: "$HOME/.kube/config"</td>
+</tr>
+
+<tr>
+<td colspan="2">KUBECTL_COMMAND_HEADERS</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">false로 설정하면, 호출된 kubectl 명령(쿠버네티스 버전 v1.22 이상)을 자세히 설명하는 추가 HTTP 헤더를 해제</td>
+</tr>
+
+</tbody>
+</table>
 
 ## {{% heading "seealso" %}}
 
diff --git a/content/ko/docs/reference/kubectl/overview.md b/content/ko/docs/reference/kubectl/overview.md
deleted file mode 100644
index 3d8179a08a..0000000000
--- a/content/ko/docs/reference/kubectl/overview.md
+++ /dev/null
@@ -1,518 +0,0 @@
----
-title: kubectl 개요
-content_type: concept
-weight: 20
-card:
-  name: reference
-  weight: 20
----
-
-<!-- overview -->
-Kubectl은 쿠버네티스 클러스터를 제어하기 위한 커맨드 라인 도구이다.
-구성을 위해, `kubectl` 은 config 파일을 $HOME/.kube 에서 찾는다.
-KUBECONFIG 환경 변수를 설정하거나 [`--kubeconfig`](/ko/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
-플래그를 설정하여 다른 [kubeconfig](/ko/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
-파일을 지정할 수 있다.
-
-이 개요는 `kubectl` 구문을 다루고, 커맨드 동작을 설명하며, 일반적인 예제를 제공한다.
-지원되는 모든 플래그 및 하위 명령을 포함한 각 명령에 대한 자세한 내용은
-[kubectl](/docs/reference/generated/kubectl/kubectl-commands/) 참조 문서를 참고한다.
-설치 방법에 대해서는 [kubectl 설치](/ko/docs/tasks/tools/)를 참고한다.
-
-<!-- body -->
-
-## 구문
-
-터미널 창에서 `kubectl` 명령을 실행하려면 다음의 구문을 사용한다.
-
-```shell
-kubectl [command] [TYPE] [NAME] [flags]
-```
-
-다음은 `command`, `TYPE`, `NAME` 과 `flags` 에 대한 설명이다.
-
-* `command`: 하나 이상의 리소스에서 수행하려는 동작을 지정한다.
-예: `create`, `get`, `describe`, `delete`
-
-* `TYPE`: [리소스 타입](#리소스-타입)을 지정한다. 리소스 타입은 대소문자를 구분하지 않으며
-  단수형, 복수형 또는 약어 형식을 지정할 수 있다.
-  예를 들어, 다음의 명령은 동일한 출력 결과를 생성한다.
-
-   ```shell
-   kubectl get pod pod1
-   kubectl get pods pod1
-   kubectl get po pod1
-   ```
-
-* `NAME`: 리소스 이름을 지정한다. 이름은 대소문자를 구분한다. 이름을 생략하면, 모든 리소스에 대한 세부 사항이 표시된다. 예: `kubectl get pods`
-
-   여러 리소스에 대한 작업을 수행할 때, 타입 및 이름별로 각 리소스를 지정하거나 하나 이상의 파일을 지정할 수 있다.
-
-   * 타입 및 이름으로 리소스를 지정하려면 다음을 참고한다.
-
-      * 리소스가 모두 동일한 타입인 경우 리소스를 그룹화하려면 다음을 사용한다. `TYPE1 name1 name2 name<#>`<br/>
-      예: `kubectl get pod example-pod1 example-pod2`
-
-      * 여러 리소스 타입을 개별적으로 지정하려면 다음을 사용한다. `TYPE1/name1 TYPE1/name2 TYPE2/name3 TYPE<#>/name<#>`<br/>
-      예: `kubectl get pod/example-pod1 replicationcontroller/example-rc1`
-
-   * 하나 이상의 파일로 리소스를 지정하려면 다음을 사용한다. `-f file1 -f file2 -f file<#>`
-
-      * YAML이 특히 구성 파일에 대해 더 사용자 친화적이므로, [JSON 대신 YAML을 사용한다](/ko/docs/concepts/configuration/overview/#일반적인-구성-팁).<br/>
-     예: `kubectl get -f ./pod.yaml`
-
-* `flags`: 선택적 플래그를 지정한다. 예를 들어, `-s` 또는 `--server` 플래그를 사용하여 쿠버네티스 API 서버의 주소와 포트를 지정할 수 있다.<br/>
-
-{{< caution >}}
-커맨드 라인에서 지정하는 플래그는 기본값과 해당 환경 변수를 무시한다.
-{{< /caution >}}
-
-도움이 필요하다면, 터미널 창에서 `kubectl help` 를 실행한다.
-
-## 명령어
-
-다음 표에는 모든 `kubectl` 작업에 대한 간단한 설명과 일반적인 구문이 포함되어 있다.
-
-명령어       | 구문    |       설명
--------------------- | -------------------- | --------------------
-`alpha`    | `kubectl alpha SUBCOMMAND [flags]` | 쿠버네티스 클러스터에서 기본적으로 활성화되어 있지 않은 알파 기능의 사용할 수 있는 명령을 나열한다.
-`annotate`    | <code>kubectl annotate (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) KEY_1=VAL_1 ... KEY_N=VAL_N [--overwrite] [--all] [--resource-version=version] [flags]</code> | 하나 이상의 리소스 어노테이션을 추가하거나 업데이트한다.
-`api-resources`    | `kubectl api-resources [flags]` | 사용 가능한 API 리소스를 나열한다.
-`api-versions`    | `kubectl api-versions [flags]` | 사용 가능한 API 버전을 나열한다.
-`apply`            | `kubectl apply -f FILENAME [flags]`| 파일이나 표준입력(stdin)으로부터 리소스에 구성 변경 사항을 적용한다.
-`attach`        | `kubectl attach POD -c CONTAINER [-i] [-t] [flags]` | 실행 중인 컨테이너에 연결하여 출력 스트림을 보거나 표준입력을 통해 컨테이너와 상호 작용한다.
-`auth`    | `kubectl auth [flags] [options]` | 승인을 검사한다.
-`autoscale`    | <code>kubectl autoscale (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) [--min=MINPODS] --max=MAXPODS [--cpu-percent=CPU] [flags]</code> | 레플리케이션 컨트롤러에서 관리하는 파드 집합을 자동으로 조정한다.
-`certificate`    | `kubectl certificate SUBCOMMAND [options]` | 인증서 리소스를 수정한다.
-`cluster-info`    | `kubectl cluster-info [flags]` | 클러스터의 마스터와 서비스에 대한 엔드포인트 정보를 표시한다.
-`completion`    | `kubectl completion SHELL [options]` | 지정된 셸(bash 또는 zsh)에 대한 셸 완성 코드를 출력한다.
-`config`        | `kubectl config SUBCOMMAND [flags]` | kubeconfig 파일을 수정한다. 세부 사항은 개별 하위 명령을 참고한다.
-`convert`    | `kubectl convert -f FILENAME [options]` | 다른 API 버전 간에 구성 파일을 변환한다. YAML 및 JSON 형식이 모두 허용된다.
-`cordon`    | `kubectl cordon NODE [options]` | 노드를 스케줄 불가능(unschedulable)으로 표시한다.
-`cp`    | `kubectl cp <file-spec-src> <file-spec-dest> [options]` | 컨테이너에서 그리고 컨테이너로 파일 및 디렉터리를 복사한다.
-`create`        | `kubectl create -f FILENAME [flags]` | 파일이나 표준입력에서 하나 이상의 리소스를 생성한다.
-`delete`        | <code>kubectl delete (-f FILENAME &#124; TYPE [NAME &#124; /NAME &#124; -l label &#124; --all]) [flags]</code> | 파일, 표준입력 또는 레이블 셀렉터, 이름, 리소스 셀렉터 또는 리소스를 지정하여 리소스를 삭제한다.
-`describe`    | <code>kubectl describe (-f FILENAME &#124; TYPE [NAME_PREFIX &#124; /NAME &#124; -l label]) [flags]</code> | 하나 이상의 리소스의 자세한 상태를 표시한다.
-`diff`        | `kubectl diff -f FILENAME [flags]`| 라이브 구성에 대해 파일이나 표준입력의 차이점을 출력한다.
-`drain`    | `kubectl drain NODE [options]` | 유지 보수를 준비 중인 노드를 드레인한다.
-`edit`        | <code>kubectl edit (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) [flags]</code> | 기본 편집기를 사용하여 서버에서 하나 이상의 리소스 정의를 편집하고 업데이트한다.
-`exec`        | `kubectl exec POD [-c CONTAINER] [-i] [-t] [flags] [-- COMMAND [args...]]` | 파드의 컨테이너에 대해 명령을 실행한다.
-`explain`    | `kubectl explain  [--recursive=false] [flags]` | 파드, 노드, 서비스 등의 다양한 리소스에 대한 문서를 출력한다.
-`expose`        | <code>kubectl expose (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) [--port=port] [--protocol=TCP&#124;UDP] [--target-port=number-or-name] [--name=name] [--external-ip=external-ip-of-service] [--type=type] [flags]</code> | 레플리케이션 컨트롤러, 서비스 또는 파드를 새로운 쿠버네티스 서비스로 노출한다.
-`get`        | <code>kubectl get (-f FILENAME &#124; TYPE [NAME &#124; /NAME &#124; -l label]) [--watch] [--sort-by=FIELD] [[-o &#124; --output]=OUTPUT_FORMAT] [flags]</code> | 하나 이상의 리소스를 나열한다.
-`kustomize`    | `kubectl kustomize <dir> [flags] [options]` | kustomization.yaml 파일의 지시 사항에서 생성된 API 리소스 집합을 나열한다. 인수는 파일을 포함하는 디렉터리의 경로이거나, 리포지터리 루트와 관련하여 경로 접미사가 동일한 git 리포지터리 URL이어야 한다.
-`label`        | <code>kubectl label (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) KEY_1=VAL_1 ... KEY_N=VAL_N [--overwrite] [--all] [--resource-version=version] [flags]</code> | 하나 이상의 리소스 레이블을 추가하거나 업데이트한다.
-`logs`        | `kubectl logs POD [-c CONTAINER] [--follow] [flags]` | 파드의 컨테이너에 대한 로그를 출력한다.
-`options`    | `kubectl options` | 모든 명령에 적용되는 전역 커맨드 라인 옵션을 나열한다.
-`patch`        | <code>kubectl patch (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) --patch PATCH [flags]</code> | 전략적 병합 패치 프로세스를 사용하여 리소스의 하나 이상의 필드를 업데이트한다.
-`plugin`    | `kubectl plugin [flags] [options]` | 플러그인과 상호 작용하기 위한 유틸리티를 제공한다.
-`port-forward`    | `kubectl port-forward POD [LOCAL_PORT:]REMOTE_PORT [...[LOCAL_PORT_N:]REMOTE_PORT_N] [flags]` | 하나 이상의 로컬 포트를 파드로 전달한다.
-`proxy`        | `kubectl proxy [--port=PORT] [--www=static-dir] [--www-prefix=prefix] [--api-prefix=prefix] [flags]` | 쿠버네티스 API 서버에 프록시를 실행한다.
-`replace`        | `kubectl replace -f FILENAME` | 파일 또는 표준입력에서 리소스를 교체한다.
-`rollout`    | `kubectl rollout SUBCOMMAND [options]` | 리소스의 롤아웃을 관리한다. 유효한 리소스 타입에는 디플로이먼트(deployment), 데몬셋(daemonset)과 스테이트풀셋(statefulset)이 포함된다.
-`run`        | <code>kubectl run NAME --image=image [--env="key=value"] [--port=port] [--dry-run=server&#124;client&#124;none] [--overrides=inline-json] [flags]</code> | 클러스터에서 지정된 이미지를 실행한다.
-`scale`        | <code>kubectl scale (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) --replicas=COUNT [--resource-version=version] [--current-replicas=count] [flags]</code> | 지정된 레플리케이션 컨트롤러의 크기를 업데이트한다.
-`set`    | `kubectl set SUBCOMMAND [options]` | 애플리케이션 리소스를 구성한다.
-`taint`    | `kubectl taint NODE NAME KEY_1=VAL_1:TAINT_EFFECT_1 ... KEY_N=VAL_N:TAINT_EFFECT_N [options]` | 하나 이상의 노드에서 테인트(taint)를 업데이트한다.
-`top`    | `kubectl top [flags] [options]` | 리소스(CPU/메모리/스토리지) 사용량을 표시한다.
-`uncordon`    | `kubectl uncordon NODE [options]` | 노드를 스케줄 가능(schedulable)으로 표시한다.
-`version`        | `kubectl version [--client] [flags]` | 클라이언트와 서버에서 실행 중인 쿠버네티스 버전을 표시한다.
-`wait`    | <code>kubectl wait ([-f FILENAME] &#124; resource.group/resource.name &#124; resource.group [(-l label &#124; --all)]) [--for=delete&#124;--for condition=available] [options]</code> | 실험(experimental) 기능: 하나 이상의 리소스에서 특정 조건을 기다린다.
-
-명령 동작에 대한 자세한 내용을 배우려면 [kubectl](/ko/docs/reference/kubectl/kubectl/) 참조 문서를 참고한다.
-
-## 리소스 타입
-
-다음 표에는 지원되는 모든 리소스 타입과 해당 약어가 나열되어 있다.
-
-(이 출력은 `kubectl api-resources` 에서 확인할 수 있으며, 쿠버네티스 1.19.1 에서의 출력을 기준으로 한다.)
-
-| NAME | SHORTNAMES | APIGROUP | NAMESPACED | KIND |
-|---|---|---|---|---|
-| `bindings` | | | true | Binding |
-| `componentstatuses` | `cs` | | false | ComponentStatus |
-| `configmaps` | `cm` | | true | ConfigMap |
-| `endpoints` | `ep` | | true | Endpoints |
-| `events` | `ev` | | true | Event |
-| `limitranges` | `limits` | | true | LimitRange |
-| `namespaces` | `ns` | | false | Namespace |
-| `nodes` | `no` | | false | Node |
-| `persistentvolumeclaims` | `pvc` | | true | PersistentVolumeClaim |
-| `persistentvolumes` | `pv` | | false | PersistentVolume |
-| `pods` | `po` | | true | Pod |
-| `podtemplates` | | | true | PodTemplate |
-| `replicationcontrollers` | `rc` | | true | ReplicationController |
-| `resourcequotas` | `quota` | | true | ResourceQuota |
-| `secrets` | | | true | Secret |
-| `serviceaccounts` | `sa` | | true | ServiceAccount |
-| `services` | `svc` | | true | Service |
-| `mutatingwebhookconfigurations` | | admissionregistration.k8s.io | false | MutatingWebhookConfiguration |
-| `validatingwebhookconfigurations` | | admissionregistration.k8s.io | false | ValidatingWebhookConfiguration |
-| `customresourcedefinitions` | `crd,crds` | apiextensions.k8s.io | false |  CustomResourceDefinition |
-| `apiservices` | | apiregistration.k8s.io | false | APIService |
-| `controllerrevisions` | | apps | true | ControllerRevision |
-| `daemonsets` | `ds` | apps | true | DaemonSet |
-| `deployments` | `deploy` | apps | true | Deployment |
-| `replicasets` | `rs` | apps | true | ReplicaSet |
-| `statefulsets` | `sts` | apps | true | StatefulSet |
-| `tokenreviews` | | authentication.k8s.io | false | TokenReview |
-| `localsubjectaccessreviews` | | authorization.k8s.io | true | LocalSubjectAccessReview |
-| `selfsubjectaccessreviews` | | authorization.k8s.io | false | SelfSubjectAccessReview |
-| `selfsubjectrulesreviews` | | authorization.k8s.io | false | SelfSubjectRulesReview |
-| `subjectaccessreviews` | | authorization.k8s.io | false | SubjectAccessReview |
-| `horizontalpodautoscalers` | `hpa` | autoscaling | true | HorizontalPodAutoscaler |
-| `cronjobs` | `cj` | batch | true | CronJob |
-| `jobs` | | batch | true | Job |
-| `certificatesigningrequests` | `csr` | certificates.k8s.io | false | CertificateSigningRequest |
-| `leases` | | coordination.k8s.io | true | Lease |
-| `endpointslices` |  | discovery.k8s.io | true | EndpointSlice |
-| `events` | `ev` | events.k8s.io | true | Event |
-| `ingresses` | `ing` | extensions | true | Ingress |
-| `flowschemas` |  | flowcontrol.apiserver.k8s.io | false | FlowSchema |
-| `prioritylevelconfigurations` |  | flowcontrol.apiserver.k8s.io | false | PriorityLevelConfiguration |
-| `ingressclasses` |  | networking.k8s.io | false | IngressClass |
-| `ingresses` | `ing` | networking.k8s.io | true | Ingress |
-| `networkpolicies` | `netpol` | networking.k8s.io | true | NetworkPolicy |
-| `runtimeclasses` |  | node.k8s.io | false | RuntimeClass |
-| `poddisruptionbudgets` | `pdb` | policy | true | PodDisruptionBudget |
-| `podsecuritypolicies` | `psp` | policy | false | PodSecurityPolicy |
-| `clusterrolebindings` | | rbac.authorization.k8s.io | false | ClusterRoleBinding |
-| `clusterroles` | | rbac.authorization.k8s.io | false | ClusterRole |
-| `rolebindings` | | rbac.authorization.k8s.io | true | RoleBinding |
-| `roles` | | rbac.authorization.k8s.io | true | Role |
-| `priorityclasses` | `pc` | scheduling.k8s.io | false | PriorityClass |
-| `csidrivers` | | storage.k8s.io | false | CSIDriver |
-| `csinodes` | | storage.k8s.io | false | CSINode |
-| `storageclasses` | `sc` | storage.k8s.io | false | StorageClass |
-| `volumeattachments` | | storage.k8s.io | false | VolumeAttachment |
-
-## 출력 옵션
-
-특정 명령의 출력을 서식화하거나 정렬하는 방법에 대한 정보는 다음 섹션을 참고한다. 다양한 출력 옵션을 지원하는 명령에 대한 자세한 내용은 [kubectl](/ko/docs/reference/kubectl/kubectl/) 참조 문서를 참고한다.
-
-### 출력 서식화
-
-모든 `kubectl` 명령의 기본 출력 형식은 사람이 읽을 수 있는 일반 텍스트 형식이다. 특정 형식으로 터미널 창에 세부 정보를 출력하려면, 지원되는 `kubectl` 명령에 `-o` 또는 `--output` 플래그를 추가할 수 있다.
-
-#### 구문
-
-```shell
-kubectl [command] [TYPE] [NAME] -o <output_format>
-```
-
-`kubectl` 명령에 따라, 다음과 같은 출력 형식이 지원된다.
-
-출력 형식 | 설명
---------------| -----------
-`-o custom-columns=<spec>` | 쉼표로 구분된 [사용자 정의 열](#custom-columns) 목록을 사용하여 테이블을 출력한다.
-`-o custom-columns-file=<filename>` | `<filename>` 파일에서 [사용자 정의 열](#custom-columns) 템플릿을 사용하여 테이블을 출력한다.
-`-o json`     | JSON 형식의 API 오브젝트를 출력한다.
-`-o jsonpath=<template>` | [jsonpath](/ko/docs/reference/kubectl/jsonpath/) 표현식에 정의된 필드를 출력한다.
-`-o jsonpath-file=<filename>` | `<filename>` 파일에서 [jsonpath](/ko/docs/reference/kubectl/jsonpath/) 표현식으로 정의된 필드를 출력한다.
-`-o name`     | 리소스 이름만 출력한다.
-`-o wide`     | 추가 정보가 포함된 일반 텍스트 형식으로 출력된다. 파드의 경우, 노드 이름이 포함된다.
-`-o yaml`     | YAML 형식의 API 오브젝트를 출력한다.
-
-##### 예제
-
-이 예제에서, 다음의 명령은 단일 파드에 대한 세부 정보를 YAML 형식의 오브젝트로 출력한다.
-
-```shell
-kubectl get pod web-pod-13je7 -o yaml
-```
-
-기억하기: 각 명령이 지원하는 출력 형식에 대한 자세한 내용은
-[kubectl](/ko/docs/reference/kubectl/kubectl/) 참조 문서를 참고한다.
-
-#### 사용자 정의 열 {#custom-columns}
-
-사용자 정의 열을 정의하고 원하는 세부 정보만 테이블에 출력하려면, `custom-columns` 옵션을 사용할 수 있다.
-사용자 정의 열을 인라인으로 정의하거나 템플릿 파일을 사용하도록 선택할 수 있다. `-o custom-columns=<spec>` 또는 `-o custom-columns-file=<filename>`
-
-##### 예제
-
-인라인:
-
-```shell
-kubectl get pods <pod-name> -o custom-columns=NAME:.metadata.name,RSRC:.metadata.resourceVersion
-```
-
-템플릿 파일:
-
-```shell
-kubectl get pods <pod-name> -o custom-columns-file=template.txt
-```
-
-`template.txt` 파일에 포함된 내용은 다음과 같다.
-
-```
-NAME          RSRC
-metadata.name metadata.resourceVersion
-```
-두 명령 중 하나를 실행한 결과는 다음과 비슷하다.
-
-```
-NAME           RSRC
-submit-queue   610995
-```
-
-#### 서버측 열
-
-`kubectl` 는 서버에서 오브젝트에 대한 특정 열 정보 수신을 지원한다.
-이는 클라이언트가 출력할 수 있도록, 주어진 리소스에 대해 서버가 해당 리소스와 관련된 열과 행을 반환한다는 것을 의미한다.
-이는 서버가 출력의 세부 사항을 캡슐화하도록 하여, 동일한 클러스터에 대해 사용된 클라이언트에서 사람이 읽을 수 있는 일관된 출력을 허용한다.
-
-이 기능은 기본적으로 활성화되어 있다. 사용하지 않으려면,
-`kubectl get` 명령에 `--server-print=false` 플래그를 추가한다.
-
-##### 예제
-
-파드 상태에 대한 정보를 출력하려면, 다음과 같은 명령을 사용한다.
-
-```shell
-kubectl get pods <pod-name> --server-print=false
-```
-
-출력 결과는 다음과 비슷하다.
-
-```
-NAME       AGE
-pod-name   1m
-```
-
-### 오브젝트 목록 정렬
-
-터미널 창에서 정렬된 목록으로 오브젝트를 출력하기 위해, 지원되는 `kubectl` 명령에 `--sort-by` 플래그를 추가할 수 있다. `--sort-by` 플래그와 함께 숫자나 문자열 필드를 지정하여 오브젝트를 정렬한다. 필드를 지정하려면, [jsonpath](/ko/docs/reference/kubectl/jsonpath/) 표현식을 사용한다.
-
-#### 구문
-
-```shell
-kubectl [command] [TYPE] [NAME] --sort-by=<jsonpath_exp>
-```
-
-##### 예제
-
-이름별로 정렬된 파드 목록을 출력하려면, 다음을 실행한다.
-
-```shell
-kubectl get pods --sort-by=.metadata.name
-```
-
-## 예제: 일반적인 작업
-
-다음 예제 세트를 사용하여 일반적으로 사용되는 `kubectl` 조작 실행에 익숙해진다.
-
-`kubectl apply` - 파일 또는 표준입력에서 리소스를 적용하거나 업데이트한다.
-
-```shell
-# example-service.yaml의 정의를 사용하여 서비스를 생성한다.
-kubectl apply -f example-service.yaml
-
-# example-controller.yaml의 정의를 사용하여 레플리케이션 컨트롤러를 생성한다.
-kubectl apply -f example-controller.yaml
-
-# <directory> 디렉터리 내의 .yaml, .yml 또는 .json 파일에 정의된 오브젝트를 생성한다.
-kubectl apply -f <directory>
-```
-
-`kubectl get` - 하나 이상의 리소스를 나열한다.
-
-```shell
-# 모든 파드를 일반 텍스트 출력 형식으로 나열한다.
-kubectl get pods
-
-# 모든 파드를 일반 텍스트 출력 형식으로 나열하고 추가 정보(예: 노드 이름)를 포함한다.
-kubectl get pods -o wide
-
-# 지정된 이름의 레플리케이션 컨트롤러를 일반 텍스트 출력 형식으로 나열한다. 팁: 'replicationcontroller' 리소스 타입을 'rc'로 짧게 바꿔쓸 수 있다.
-kubectl get replicationcontroller <rc-name>
-
-# 모든 레플리케이션 컨트롤러와 서비스를 일반 텍스트 출력 형식으로 함께 나열한다.
-kubectl get rc,services
-
-# 모든 데몬 셋을 일반 텍스트 출력 형식으로 나열한다.
-kubectl get ds
-
-# 노드 server01에서 실행 중인 모든 파드를 나열한다.
-kubectl get pods --field-selector=spec.nodeName=server01
-```
-
-`kubectl describe` - 초기화되지 않은 리소스를 포함하여 하나 이상의 리소스의 기본 상태를 디폴트로 표시한다.
-
-```shell
-# 노드 이름이 <node-name>인 노드의 세부 사항을 표시한다.
-kubectl describe nodes <node-name>
-
-# 파드 이름이 <pod-name> 인 파드의 세부 정보를 표시한다.
-kubectl describe pods/<pod-name>
-
-# 이름이 <rc-name>인 레플리케이션 컨트롤러가 관리하는 모든 파드의 세부 정보를 표시한다.
-# 기억하기: 레플리케이션 컨트롤러에서 생성된 모든 파드에는 레플리케이션 컨트롤러 이름이 접두사로 붙는다.
-kubectl describe pods <rc-name>
-
-# 모든 파드의 정보를 출력한다.
-kubectl describe pods
-```
-
-{{< note >}}
-`kubectl get` 명령은 일반적으로 동일한 리소스 타입의 하나 이상의
-리소스를 검색하는 데 사용된다. 예를 들어, `-o` 또는 `--output` 플래그를
-사용하여 출력 형식을 사용자 정의할 수 있는 풍부한 플래그 세트가 있다.
-`-w` 또는 `--watch` 플래그를 지정하여 특정 오브젝트에 대한 업데이트 진행과정을 확인할 수
-있다. `kubectl describe` 명령은 지정된 리소스의 여러 관련 측면을
-설명하는 데 더 중점을 둔다. API 서버에 대한 여러 API 호출을 호출하여
-사용자에 대한 뷰(view)를 빌드할 수 있다. 예를 들어, `kubectl describe node`
-명령은 노드에 대한 정보뿐만 아니라, 노드에서 실행 중인 파드의 요약 정보, 노드에 대해 생성된 이벤트 등의
-정보도 검색한다.
-{{< /note >}}
-
-`kubectl delete` - 파일, 표준입력 또는 레이블 선택기, 이름, 리소스 선택기나 리소스를 지정하여 리소스를 삭제한다.
-
-```shell
-# pod.yaml 파일에 지정된 타입과 이름을 사용하여 파드를 삭제한다.
-kubectl delete -f pod.yaml
-
-# '<label-key>=<label-value>' 레이블이 있는 모든 파드와 서비스를 삭제한다.
-kubectl delete pods,services -l <label-key>=<label-value>
-
-# 초기화되지 않은 파드를 포함한 모든 파드를 삭제한다.
-kubectl delete pods --all
-```
-
-`kubectl exec` - 파드의 컨테이너에 대해 명령을 실행한다.
-
-```shell
-# 파드 <pod-name>에서 'date'를 실행한 결과를 얻는다. 기본적으로, 첫 번째 컨테이너에서 출력된다.
-kubectl exec <pod-name> -- date
-
-# 파드 <pod-name>의 <container-name> 컨테이너에서 'date'를 실행하여 출력 결과를 얻는다.
-kubectl exec <pod-name> -c <container-name> -- date
-
-# 파드 <pod-name>에서 대화식 TTY를 연결해 /bin/bash를 실행한다. 기본적으로, 첫 번째 컨테이너에서 출력된다.
-kubectl exec -ti <pod-name> -- /bin/bash
-```
-
-`kubectl logs` - 파드의 컨테이너에 대한 로그를 출력한다.
-
-```shell
-# 파드 <pod-name>에서 로그의 스냅샷을 반환한다.
-kubectl logs <pod-name>
-
-# 파드 <pod-name>에서 로그 스트리밍을 시작한다. 이것은 리눅스 명령 'tail -f'와 비슷하다.
-kubectl logs -f <pod-name>
-```
-
-`kubectl diff` - 제안된 클러스터 업데이트의 차이점을 본다.
-
-```shell
-# "pod.json"에 포함된 리소스의 차이점을 출력한다.
-kubectl diff -f pod.json
-
-# 표준입력에서 파일을 읽어 차이점을 출력한다.
-cat service.yaml | kubectl diff -f -
-```
-
-## 예제: 플러그인 작성 및 사용
-
-`kubectl` 플러그인 작성과 사용에 익숙해지려면 다음의 예제 세트를 사용한다.
-
-```shell
-# 어떤 언어로든 간단한 플러그인을 만들고 "kubectl-" 접두사로
-# 시작하도록 실행 파일의 이름을 지정한다.
-cat ./kubectl-hello
-```
-```shell
-#!/bin/sh
-
-# 이 플러그인은 "hello world"라는 단어를 출력한다
-echo "hello world"
-```
-작성한 플러그인을 실행 가능하게 한다
-```bash
-chmod a+x ./kubectl-hello
-
-# 그리고 PATH의 위치로 옮긴다
-sudo mv ./kubectl-hello /usr/local/bin
-sudo chown root:root /usr/local/bin
-
-# 이제 kubectl 플러그인을 만들고 "설치했다".
-# kubectl에서 플러그인을 일반 명령처럼 호출하여 플러그인을 사용할 수 있다
-kubectl hello
-```
-```
-hello world
-```
-
-```shell
-# 플러그인을 배치한 $PATH의 폴더에서 플러그인을 삭제하여,
-# 플러그인을 "제거"할 수 있다
-sudo rm /usr/local/bin/kubectl-hello
-```
-
-`kubectl` 에 사용할 수 있는 모든 플러그인을 보려면,
-`kubectl plugin list` 하위 명령을 사용한다.
-
-```shell
-kubectl plugin list
-```
-출력 결과는 다음과 비슷하다.
-```
-The following kubectl-compatible plugins are available:
-
-/usr/local/bin/kubectl-hello
-/usr/local/bin/kubectl-foo
-/usr/local/bin/kubectl-bar
-```
-
-`kubectl plugin list` 는 또한 실행 가능하지 않거나,
-다른 플러그인에 의해 차단된 플러그인에 대해 경고한다. 예를 들면 다음과 같다.
-```shell
-sudo chmod -x /usr/local/bin/kubectl-foo # 실행 권한 제거
-kubectl plugin list
-```
-```
-The following kubectl-compatible plugins are available:
-
-/usr/local/bin/kubectl-hello
-/usr/local/bin/kubectl-foo
-  - warning: /usr/local/bin/kubectl-foo identified as a plugin, but it is not executable
-/usr/local/bin/kubectl-bar
-
-error: one plugin warning was found
-```
-
-플러그인은 기존 kubectl 명령 위에 보다 복잡한 기능을
-구축하는 수단으로 생각할 수 있다.
-
-```shell
-cat ./kubectl-whoami
-```
-다음 몇 가지 예는 이미 `kubectl-whoami` 에
-다음 내용이 있다고 가정한다.
-```shell
-#!/bin/bash
-
-# 이 플러그인은 현재 선택된 컨텍스트를 기반으로 현재 사용자에 대한
-# 정보를 출력하기 위해 'kubectl config' 명령을 사용한다.
-kubectl config view --template='{{ range .contexts }}{{ if eq .name "'$(kubectl config current-context)'" }}Current user: {{ printf "%s\n" .context.user }}{{ end }}{{ end }}'
-```
-
-위의 플러그인을 실행하면 KUBECONFIG 파일에서 현재의 컨텍스트에 대한
-사용자가 포함된 출력이 제공된다.
-
-```shell
-# 파일을 실행 가능하게 한다
-sudo chmod +x ./kubectl-whoami
-
-# 그리고 PATH로 옮긴다
-sudo mv ./kubectl-whoami /usr/local/bin
-
-kubectl whoami
-Current user: plugins-user
-```
-
-## {{% heading "whatsnext" %}}
-
-* [kubectl](/docs/reference/generated/kubectl/kubectl-commands/) 명령을 사용하여 시작한다.
-
-* 플러그인에 대한 자세한 내용은 [cli plugin 예제](https://github.com/kubernetes/sample-cli-plugin)를 참고한다.
diff --git a/content/ko/docs/reference/labels-annotations-taints.md b/content/ko/docs/reference/labels-annotations-taints/_index.md
similarity index 68%
rename from content/ko/docs/reference/labels-annotations-taints.md
rename to content/ko/docs/reference/labels-annotations-taints/_index.md
index 0854c1b5cf..5c098a0084 100644
--- a/content/ko/docs/reference/labels-annotations-taints.md
+++ b/content/ko/docs/reference/labels-annotations-taints/_index.md
@@ -36,10 +36,9 @@ Go에 의해 정의된 `runtime.GOOS` 값을 kubelet이 읽어서 이 레이블
 
 적용 대상: 네임스페이스
 
-`NamespaceDefaultLabelName` [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)가 
-활성화되어 있으면, 
-쿠버네티스 API 서버가 모든 네임스페이스에 이 레이블을 적용한다. 
-레이블의 값은 네임스페이스의 이름으로 적용된다.
+({{< glossary_tooltip text="컨트롤 플레인" term_id="control-plane" >}}의 일부인) 
+쿠버네티스 API 서버가 이 레이블을 모든 네임스페이스에 설정한다. 
+레이블의 값은 네임스페이스의 이름으로 적용된다. 이 레이블의 값을 변경할 수는 없다.
 
 레이블 {{< glossary_tooltip text="셀렉터" term_id="selector" >}}를 이용하여 특정 네임스페이스를 지정하고 싶다면 
 이 레이블이 유용할 수 있다.
@@ -63,6 +62,16 @@ kubelet이 호스트네임을 읽어서 이 레이블의 값으로 채운다. `k
 이 레이블은 토폴로지 계층의 일부로도 사용된다. [`topology.kubernetes.io/zone`](#topologykubernetesiozone)에서 세부 사항을 확인한다.
 
 
+## kubernetes.io/change-cause {#change-cause}
+
+예시: `kubernetes.io/change-cause=kubectl edit --record deployment foo`
+
+적용 대상: 모든 오브젝트
+
+이 어노테이션은 어떤 오브젝트가 왜 변경되었는지 그 이유를 담는다.
+
+어떤 오브젝트를 변경할 수도 있는 `kubectl` 명령에 `--record` 플래그를 사용하면 이 레이블이 추가된다.
+
 ## controller.kubernetes.io/pod-deletion-cost {#pod-deletion-cost}
 
 예시: `controller.kubernetes.io/pod-deletion-cost=10`
@@ -150,6 +159,20 @@ _SelectorSpreadPriority_ 는 최선 노력(best effort) 배치 방법이다. 클
 `PersistentVolumeLabel`이 퍼시스턴트볼륨의 자동 레이블링을 지원하지 않는다면, 레이블을 수동으로 추가하거나 `PersistentVolumeLabel`이 동작하도록 변경할 수 있다. 
 `PersistentVolumeLabel`이 설정되어 있으면, 스케줄러는 파드가 다른 영역에 있는 볼륨에 마운트하는 것을 막는다. 만약 사용 중인 인프라에 이러한 제약이 없다면, 볼륨에 영역 레이블을 추가할 필요가 전혀 없다.
 
+## volume.beta.kubernetes.io/storage-provisioner (사용 중단됨)
+
+예시: `volume.beta.kubernetes.io/storage-provisioner: k8s.io/minikube-hostpath`
+
+적용 대상: PersistentVolumeClaim
+
+이 어노테이션은 사용 중단되었다.
+
+## volume.kubernetes.io/storage-provisioner
+
+적용 대상: PersistentVolumeClaim
+
+이 어노테이션은 동적 프로비저닝이 요구되는 PVC에 추가될 예정이다.
+
 ## node.kubernetes.io/windows-build {#nodekubernetesiowindows-build}
 
 예시: `node.kubernetes.io/windows-build=10.0.17763`
@@ -200,7 +223,7 @@ kubelet이 Microsoft 윈도우에서 실행되고 있다면, 사용 중인 Windo
 
 kube-proxy 에는 커스텀 프록시를 위한 이와 같은 레이블이 있으며, 이 레이블은 서비스 컨트롤을 커스텀 프록시에 위임한다.
 
-## experimental.windows.kubernetes.io/isolation-type
+## experimental.windows.kubernetes.io/isolation-type (deprecated) {#experimental-windows-kubernetes-io-isolation-type}
 
 예시: `experimental.windows.kubernetes.io/isolation-type: "hyperv"`
 
@@ -210,6 +233,7 @@ Hyper-V 격리(isolation)를 사용하여 윈도우 컨테이너를 실행하려
 
 {{< note >}}
 이 어노테이션은 하나의 컨테이너로 구성된 파드에만 설정할 수 있다.
+v1.20부터 이 어노테이션은 더이상 사용되지 않는다. 실험적인 Hyper-V 지원은 1.21버전에서 제거되었다.
 {{< /note >}}
 
 ## ingressclass.kubernetes.io/is-default-class
@@ -262,11 +286,29 @@ kube-controller-manager의 잡(Job) 컨트롤러는
 
 ## endpoints.kubernetes.io/over-capacity
 
-예시: `endpoints.kubernetes.io/over-capacity:warning`
+예시: `endpoints.kubernetes.io/over-capacity:truncated`
 
 적용 대상: 엔드포인트(Endpoints)
 
-v1.21 이상의 쿠버네티스 클러스터에서, 엔드포인트(Endpoints) 컨트롤러가 1000개 이상의 엔드포인트를 관리하고 있다면 각 엔드포인트 리소스에 이 어노테이션을 추가한다. 이 어노테이션은 엔드포인트 리소스가 용량 초과 되었음을 나타낸다.
+v1.22 이상의 쿠버네티스 클러스터에서, 한 엔드포인트(Endpoints) 리소스가 관리하고 있는 엔드포인트의 수가 1000개 이상이면 엔드포인트 컨트롤러가 해당 엔드포인트 리소스에 이 어노테이션을 추가한다. 이 어노테이션은 해당 엔드포인트 리소스가 용량 초과 되었으며 엔드포인트 컨트롤러가 엔드포인트의 수를 1000으로 줄였음을 나타낸다.
+
+## batch.kubernetes.io/job-tracking
+
+예시: `batch.kubernetes.io/job-tracking: ""`
+
+적용 대상: 잡
+
+잡에 어노테이션이 있으면 컨트롤 플레인은 [finalizers를 사용하여 잡 상태 추적](/ko/docs/concepts/workloads/controllers/job/#job-tracking-with-finalizers) 
+중임을 나타낸다.
+어노테이션을 수동으로 추가하거나 제거하지 **않는다**.
+
+## scheduler.alpha.kubernetes.io/preferAvoidPods (deprecated) {#scheduleralphakubernetesio-preferavoidpods}
+
+적용 대상: 노드
+
+이 어노테이션을 사용하려면 [NodePreferAvoidPods 스케줄링 플러그인](/ko/docs/reference/scheduling/config/#scheduling-plugins)이 활성화되어 있어야 한다.
+해당 플러그인은 쿠버네티스 1.22에서 사용 중단되었다.
+대신 [테인트와 톨러레이션](/ko/docs/concepts/scheduling-eviction/taint-and-toleration/)을 사용한다.
 
 **이 이후로 나오는 테인트는 모두 '적용 대상: 노드' 이다.**
 
@@ -323,3 +365,103 @@ kubelet이 "외부" 클라우드 공급자에 의해 실행되었다면 노드
 예시: `node.cloudprovider.kubernetes.io/shutdown:NoSchedule`
 
 노드의 상태가 클라우드 공급자가 정의한 'shutdown' 상태이면, 이에 따라 노드에 `node.cloudprovider.kubernetes.io/shutdown` 테인트가 `NoSchedule` 값으로 설정된다.
+
+## pod-security.kubernetes.io/enforce
+
+예시: `pod-security.kubernetes.io/enforce: baseline`
+
+적용 대상: 네임스페이스
+
+값은 **반드시** [파드 보안 표준](/docs/concepts/security/pod-security-standards) 레벨과 상응하는 
+`privileged`, `baseline`, 또는 `restricted` 중 하나여야 한다.
+특히 `enforce` 레이블은 표시된 수준에 정의된 요구 사항을 충족하지 않는 
+레이블 네임스페이스에 모든 파드의 생성을 금지한다.
+
+더 많은 정보는 [네임스페이스에서 파드 보안 적용](/docs/concepts/security/pod-security-admission)을
+참고한다.
+
+## pod-security.kubernetes.io/enforce-version
+
+예시: `pod-security.kubernetes.io/enforce-version: {{< skew latestVersion >}}`
+
+적용 대상: 네임스페이스
+
+값은 **반드시** `latest`이거나 `v<MAJOR>.<MINOR>` 형식의 유효한 쿠버네티스 버전이어야 한다.
+설정된 파드의 유효성을 검사할 때 적용할 [파드 보안 표준](/docs/concepts/security/pod-security-standards) 
+정책의 버전이 결정된다.
+
+더 많은 정보는 [네임스페이스에서 파드 보안 적용](/docs/concepts/security/pod-security-admission)을
+참고한다.
+
+## pod-security.kubernetes.io/audit
+
+예시: `pod-security.kubernetes.io/audit: baseline`
+
+적용 대상: 네임스페이스
+
+값은 **반드시** [파드 보안 표준](/docs/concepts/security/pod-security-standards) 레벨과 상응하는 
+`privileged`, `baseline`, 또는 `restricted` 중 하나여야 한다.
+특히 `audit` 레이블은 표시된 수준에 정의된 요구 사항을 충족하지 않는 레이블 네임스페이스에 파드를 생성하는 것을 
+방지하지 않지만, 해당 파드에 audit 어노테이션을 추가한다.
+
+더 많은 정보는 [네임스페이스에서 파드 보안 적용](/docs/concepts/security/pod-security-admission)을
+참고한다.
+
+## pod-security.kubernetes.io/audit-version
+
+예시: `pod-security.kubernetes.io/audit-version: {{< skew latestVersion >}}`
+
+적용 대상: 네임스페이스
+
+값은 **반드시** `latest`이거나 `v<MAJOR>.<MINOR>` 형식의 유효한 쿠버네티스 버전이어야 한다.
+설정된 파드의 유효성을 검사할 때 적용할 [파드 보안 표준](/docs/concepts/security/pod-security-standards) 
+정책의 버전이 결정된다.
+
+더 많은 정보는 [네임스페이스에서 파드 보안 적용](/docs/concepts/security/pod-security-admission)을
+참고한다.
+
+## pod-security.kubernetes.io/warn
+
+예시: `pod-security.kubernetes.io/warn: baseline`
+
+적용 대상: 네임스페이스
+
+값은 **반드시** [파드 보안 표준](/docs/concepts/security/pod-security-standards) 레벨과 상응하는 
+`privileged`, `baseline`, 또는 `restricted` 중 하나여야 한다.
+특히 `warn` 레이블은 해당 레이블이 달린 네임스페이스에, 표시된 레벨에 명시된 요구 사항을 충족하지 않는 파드를 생성하는 것을 
+방지하지는 않지만, 그러한 파드가 생성되면 사용자에게 경고를 반환한다.
+디플로이먼트, 잡, 스테이트풀셋 등과 같은 파드 템플릿을 포함하는 
+객체를 만들거나 업데이트할 때에도 경고가 표시된다.
+
+더 많은 정보는 [네임스페이스에서 파드 보안 적용](/docs/concepts/security/pod-security-admission)을
+참고한다.
+
+## pod-security.kubernetes.io/warn-version
+
+예시: `pod-security.kubernetes.io/warn-version: {{< skew latestVersion >}}`
+
+적용 대상: 네임스페이스
+
+값은 **반드시** `latest`이거나 `v<MAJOR>.<MINOR>` 형식의 유효한 쿠버네티스 버전이어야 한다.
+설정된 파드의 유효성을 검사할 때 적용할 [파드 보안 표준](/docs/concepts/security/pod-security-standards) 
+정책의 버전이 결정된다. 디플로이먼트, 잡, 스테이트풀셋 등과 같은 파드 템플릿을 포함하는 
+객체를 만들거나 업데이트할 때에도 경고가 표시된다.
+
+더 많은 정보는 [네임스페이스에서 파드 보안 적용](/docs/concepts/security/pod-security-admission)을
+참고한다.
+
+## seccomp.security.alpha.kubernetes.io/pod (사용 중단됨) {#seccomp-security-alpha-kubernetes-io-pod}
+
+이 어노테이션은 쿠버네티스 v1.19부터 사용 중단되었으며 v1.25에서는 작동하지 않을 것이다. 
+파드의 보안 설정을 지정하려면, 파드 스펙에 `securityContext` 필드를 추가한다. 
+파드의 `.spec` 내의 [`securityContext`](/docs/reference/kubernetes-api/workload-resources/pod-v1/#security-context) 필드는 파드 수준 보안 속성을 정의한다. 
+[파드의 보안 컨텍스트를 설정](/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-pod)하면, 
+해당 설정이 파드 내의 모든 컨테이너에 적용된다.
+
+## container.seccomp.security.alpha.kubernetes.io/[이름] {#container-seccomp-security-alpha-kubernetes-io}
+
+이 어노테이션은 쿠버네티스 v1.19부터 사용 중단되었으며 v1.25에서는 작동하지 않을 것이다. 
+[seccomp를 이용하여 컨테이너의 syscall 제한하기](/docs/tutorials/security/seccomp/) 튜토리얼에서 
+seccomp 프로파일을 파드 또는 파드 내 컨테이너에 적용하는 단계를 확인한다. 
+튜토리얼에서는 쿠버네티스에 seccomp를 설정하기 위해 사용할 수 있는 방법을 소개하며, 
+이는 파드의 `.spec` 내에 `securityContext` 를 설정함으로써 가능하다.
diff --git a/content/ko/docs/reference/ports-and-protocols.md b/content/ko/docs/reference/ports-and-protocols.md
new file mode 100644
index 0000000000..6ba447cda9
--- /dev/null
+++ b/content/ko/docs/reference/ports-and-protocols.md
@@ -0,0 +1,40 @@
+---
+title: 포트와 프로토콜
+content_type: reference
+weight: 50
+---
+
+물리적 네트워크 방화벽이 있는 온프레미스 데이터 센터 또는 
+퍼블릭 클라우드의 가상 네트워크와 같이 네트워크 경계가 엄격한 환경에서 
+쿠버네티스를 실행할 때, 쿠버네티스 구성 요소에서 
+사용하는 포트와 프로토콜을 알고 있는 것이 유용하다.
+
+## 컨트롤 플레인
+
+| 프로토콜   | 방향       | 포트 범위    | 용도                      | 사용 주체                   |
+|----------|-----------|------------|-------------------------|---------------------------|
+| TCP      | 인바운드    | 6443       | 쿠버네티스 API 서버         | 전부                       |
+| TCP      | 인바운드    | 2379-2380  | etcd 서버 클라이언트 API    | kube-apiserver, etcd      |
+| TCP      | 인바운드    | 10250      | Kubelet API             | Self, 컨트롤 플레인          |
+| TCP      | 인바운드    | 10259      | kube-scheduler          | Self                      |
+| TCP      | 인바운드    | 10257      | kube-controller-manager | Self                      |
+
+etcd 포트가 컨트롤 플레인 섹션에 포함되어 있지만, 외부 또는 사용자 지정 포트에서 자체 
+etcd 클러스터를 호스팅할 수도 있다.
+
+## 워커 노드 {#node}
+
+| 프로토콜   | 방향       | 포트 범위     | 용도                    | 사용 주체                 |
+|----------|-----------|-------------|-----------------------|-------------------------|
+| TCP      | 인바운드    | 10250       | Kubelet API           | Self, 컨트롤 플레인         
+| TCP      | 인바운드    | 30000-32767 | NodePort 서비스†        | 전부                     |
+
+† [노드포트(NodePort) 서비스](/ko/docs/concepts/services-networking/service/)의 기본 포트 범위.
+
+모든 기본 포트 번호를 재정의할 수 있다. 사용자 지정 포트를 사용하는 경우 
+여기에 언급된 기본값 대신 해당 포트를 열어야 한다.
+
+종종 발생하는 한 가지 일반적인 예는 API 서버 포트를 443으로 변경하는 경우이다. 
+또는, API 서버의 기본 포트를 그대로 유지하고, 
+443 포트에서 수신 대기하는 로드 밸런서 뒤에 API 서버를 두고, 
+로드 밸런서에서 API 서버로 가는 요청을 API 서버의 기본 포트로 라우팅할 수도 있다.
diff --git a/content/ko/docs/reference/scheduling/config.md b/content/ko/docs/reference/scheduling/config.md
index 2f46c78d8b..1c1db61d1b 100644
--- a/content/ko/docs/reference/scheduling/config.md
+++ b/content/ko/docs/reference/scheduling/config.md
@@ -18,7 +18,8 @@ weight: 20
 각 단계는 익스텐션 포인트(extension point)를 통해 노출된다. 플러그인은 이러한
 익스텐션 포인트 중 하나 이상을 구현하여 스케줄링 동작을 제공한다.
 
-[KubeSchedulerConfiguration (v1beta1)](/docs/reference/config-api/kube-scheduler-config.v1beta1/)
+KubeSchedulerConfiguration ([v1beta2](/docs/reference/config-api/kube-scheduler-config.v1beta2/)
+또는 [v1beta3](/docs/reference/config-api/kube-scheduler-config.v1beta3/)) 
 구조에 맞게 파일을 작성하고,
 `kube-scheduler --config <filename>`을 실행하여
 스케줄링 프로파일을 지정할 수 있다.
@@ -26,7 +27,7 @@ weight: 20
 최소 구성은 다음과 같다.
 
 ```yaml
-apiVersion: kubescheduler.config.k8s.io/v1beta1
+apiVersion: kubescheduler.config.k8s.io/v1beta2
 kind: KubeSchedulerConfiguration
 clientConnection:
   kubeconfig: /etc/srv/kubernetes/kube-scheduler/kubeconfig
@@ -48,44 +49,49 @@ clientConnection:
 스케줄링은 다음 익스텐션 포인트를 통해 노출되는 일련의 단계에서
 발생한다.
 
-1. `QueueSort`: 이 플러그인은 스케줄링 대기열에서 보류 중인 파드를
+1. `queueSort`: 이 플러그인은 스케줄링 대기열에서 보류 중인 파드를
    정렬하는 데 사용되는 정렬 기능을 제공한다. 대기열 정렬 플러그인은 한 번에 단 하나만 활성화될 수 있다.
    사용할 수 있다.
-1. `PreFilter`: 이 플러그인은 필터링하기 전에 파드 또는 클러스터에 대한 정보를
+1. `preFilter`: 이 플러그인은 필터링하기 전에 파드 또는 클러스터에 대한 정보를
    사전 처리하거나 확인하는 데 사용된다. 이 플러그인은 파드를 unschedulable로
    표시할 수 있다.
-1. `Filter`: 이 플러그인은 스케줄링 정책의 단정(Predicates)과 동일하며
+1. `filter`: 이 플러그인은 스케줄링 정책의 단정(Predicates)과 동일하며
    파드를 실행할 수 없는 노드를 필터링하는 데 사용된다. 필터는
    구성된 순서대로 호출된다. 노드가 모든 필터를 통과하지 않으면 파드는 unschedulable로
    표시된다.
-1. `PreScore`: 이것은 사전 스코어링 작업을 수행하는 데 사용할 수 있는
+1. `postFilter`: 이 플러그인은 파드의 실행 가능한 노드를 찾을 수 없을 때,
+   구성된 순서대로 호출된다. `postFilter` 플러그인이 파드 _schedulable_ 을 표시하는 경우, 
+   나머지 플러그인은 호출 되지 않는다.
+1. `preScore`: 이것은 사전 스코어링 작업을 수행하는 데 사용할 수 있는
    정보성 익스텐션 포인트이다.
-1. `Score`: 이 플러그인은 필터링 단계를 통과한 각 노드에 점수를
+1. `score`: 이 플러그인은 필터링 단계를 통과한 각 노드에 점수를
    제공한다. 그런 다음 스케줄러는 가중치 합계가 가장 높은
    노드를 선택한다.
-1. `Reserve`: 지정된 파드에 리소스가 예약된 경우 플러그인에
+1. `reserve`: 지정된 파드에 리소스가 예약된 경우 플러그인에
    알리는 정보성 익스텐션 포인트이다. 플러그인은 또한
    `Reserve` 도중 또는 이후에 실패한 경우 호출 되는 `Unreserve` 호출을
    구현한다.
-1. `Permit`: 이 플러그인은 파드 바인딩을 방지하거나 지연시킬 수 있다.
-1. `PreBind`: 이 플러그인은 파드가 바인딩되기 전에 필요한 모든 작업을 수행한다.
-1. `Bind`: 플러그인은 파드를 노드에 바인딩한다. Bind 플러그인은 순서대로 호출되며
-   일단 바인딩이 완료되면 나머지 플러그인은 건너뛴다. Bind
+1. `permit`: 이 플러그인은 파드 바인딩을 방지하거나 지연시킬 수 있다.
+1. `preBind`: 이 플러그인은 파드가 바인딩되기 전에 필요한 모든 작업을 수행한다.
+1. `bind`: 플러그인은 파드를 노드에 바인딩한다. `bind` 플러그인은 순서대로 호출되며
+   일단 바인딩이 완료되면 나머지 플러그인은 건너뛴다. bind
    플러그인은 적어도 하나 이상 필요하다.
-1. `PostBind`: 파드가 바인드된 후 호출되는
+1. `postBind`: 파드가 바인드된 후 호출되는
    정보성 익스텐션 포인트이다.
+1. `multiPoint`: 이 필드는 플러그인들의 모든 적용 가능한 익스텐션 포인트에 대해 
+   플러그인들을 동시에 활성화하거나 비활성화할 수 있게 하는 환경 설정 전용 필드이다.
 
 각 익스텐션 포인트에 대해 특정 [기본 플러그인](#스케줄링-플러그인)을 비활성화하거나
 자체 플러그인을 활성화할 수 있다. 예를 들면, 다음과 같다.
 
 ```yaml
-apiVersion: kubescheduler.config.k8s.io/v1beta1
+apiVersion: kubescheduler.config.k8s.io/v1beta2
 kind: KubeSchedulerConfiguration
 profiles:
   - plugins:
       score:
         disabled:
-        - name: NodeResourcesLeastAllocated
+        - name: PodTopologySpread
         enabled:
         - name: MyCustomPluginA
           weight: 2
@@ -97,108 +103,83 @@ profiles:
 모든 기본 플러그인을 비활성화할 수 있다. 원하는 경우, 플러그인 순서를 재정렬하는 데
 사용할 수도 있다.
 
-### 스케줄링 플러그인
-
-1. `UnReserve`: 파드가 예약된 후 거부되고 `Permit` 플러그인에 의해 보류된 경우
-   호출되는 정보성 익스텐션 포인트이다.
-
-## 스케줄링 플러그인
+### 스케줄링 플러그인 {#scheduling-plugins}
 
 기본적으로 활성화된 다음의 플러그인은 이들 익스텐션 포인트 중
 하나 이상을 구현한다.
 
-- `SelectorSpread`: {{< glossary_tooltip text="서비스" term_id="service" >}},
-  {{< glossary_tooltip text="레플리카셋(ReplicaSets)" term_id="replica-set" >}} 및
-  {{< glossary_tooltip text="스테이트풀셋(StatefulSets)" term_id="statefulset" >}}에
-  속하는 파드에 대해 노드 간 분산을 선호한다.
-  익스텐션 포인트: `PreScore`, `Score`.
 - `ImageLocality`: 파드가 실행하는 컨테이너 이미지가 이미 있는 노드를
   선호한다.
-  익스텐션 포인트: `Score`.
+  익스텐션 포인트: `score`.
 - `TaintToleration`: [테인트(taint)와 톨러레이션(toleration)](/ko/docs/concepts/scheduling-eviction/taint-and-toleration/)을
   구현한다.
-  익스텐션 포인트 구현: `Filter`, `Prescore`, `Score`.
+  익스텐션 포인트 구현: `filter`, `preScore`, `score`.
 - `NodeName`: 파드 명세 노드 이름이 현재 노드와 일치하는지 확인한다.
-  익스텐션 포인트: `Filter`.
+  익스텐션 포인트: `filter`.
 - `NodePorts`: 노드에 요청된 파드 포트에 대해 사용 가능한 포트가 있는지 확인한다.
-  익스텐션 포인트: `PreFilter`, `Filter`.
-- `NodePreferAvoidPods`: 노드 {{< glossary_tooltip text="어노테이션" term_id="annotation" >}}
-  `scheduler.alpha.kubernetes.io/preferAvoidPods` 에 따라
-  노드 점수를 매긴다.
-  익스텐션 포인트: `Score`.
+  익스텐션 포인트: `preFilter`, `filter`.
 - `NodeAffinity`: [노드 셀렉터](/ko/docs/concepts/scheduling-eviction/assign-pod-node/#노드-셀렉터-nodeselector)와
   [노드 어피니티](/ko/docs/concepts/scheduling-eviction/assign-pod-node/#노드-어피니티)를
   구현한다.
-  익스텐션 포인트: `Filter`, `Score`.
+  익스텐션 포인트: `filter`, `score`.
 - `PodTopologySpread`: [파드 토폴로지 분배](/ko/docs/concepts/workloads/pods/pod-topology-spread-constraints/)를
   구현한다.
-  익스텐션 포인트: `PreFilter`, `Filter`, `PreScore`, `Score`.
+  익스텐션 포인트: `preFilter`, `filter`, `preScore`, `score`.
 - `NodeUnschedulable`: `.spec.unschedulable` 이 true로 설정된 노드를
   필터링한다.
-  익스텐션 포인트: `Filter`.
+  익스텐션 포인트: `filter`.
 - `NodeResourcesFit`: 노드에 파드가 요청하는 모든 리소스가 있는지
-  확인한다.
-  익스텐션 포인트: `PreFilter`, `Filter`.
+  확인한다. 점수는 `LeastAllocated`(기본값), `MostAllocated`, `RequestedToCapacityRatio` 등
+  3가지 전략 중 하나를 사용할 수 있다.
+  익스텐션 포인트: `preFilter`, `filter`, `score`.
 - `NodeResourcesBalancedAllocation`: 파드가 스케줄된 경우, 보다 균형잡힌 리소스 사용량을
   얻을 수 있는 노드를 선호한다.
-  익스텐션 포인트: `Score`.
-- `NodeResourcesLeastAllocated`: 리소스 할당이 적은 노드를
-  선호한다.
-  익스텐션 포인트: `Score`.
+  익스텐션 포인트: `score`.
 - `VolumeBinding`: 노드에 요청된 {{< glossary_tooltip text="볼륨" term_id="volume" >}}이 있는지
   또는 바인딩할 수 있는지 확인한다.
-  익스텐션 포인트: `PreFilter`, `Filter`, `Reserve`, `PreBind`, `Score`.
+  익스텐션 포인트: `preFilter`, `filter`, `reserve`, `preBind`, `score`.
   {{< note >}}
-  `Score` 익스텐션 포인트는 `VolumeCapacityPriority` 기능이
+  `score` 익스텐션 포인트는 `VolumeCapacityPriority` 기능이
   활성화되어 있어야 활성화되며,
   요청된 볼륨 사이즈를 만족하는 가장 작은 PV들을 우선순위 매긴다.
   {{< /note >}}
 - `VolumeRestrictions`: 노드에 마운트된 볼륨이 볼륨 제공자에 특정한
   제한 사항을 충족하는지 확인한다.
-  익스텐션 포인트: `Filter`.
+  익스텐션 포인트: `filter`.
 - `VolumeZone`: 요청된 볼륨이 가질 수 있는 영역 요구 사항을 충족하는지
   확인한다.
-  익스텐션 포인트: `Filter`.
+  익스텐션 포인트: `filter`.
 - `NodeVolumeLimits`: 노드에 대해 CSI 볼륨 제한을 충족할 수 있는지
   확인한다.
-  익스텐션 포인트: `Filter`.
+  익스텐션 포인트: `filter`.
 - `EBSLimits`: 노드에 대해 AWS EBS 볼륨 제한을 충족할 수 있는지 확인한다.
-  익스텐션 포인트: `Filter`.
+  익스텐션 포인트: `filter`.
 - `GCEPDLimits`: 노드에 대해 GCP-PD 볼륨 제한을 충족할 수 있는지 확인한다.
-  익스텐션 포인트: `Filter`.
+  익스텐션 포인트: `filter`.
 - `AzureDiskLimits`: 노드에 대해 Azure 디스크 볼륨 제한을 충족할 수 있는지
   확인한다.
-  익스텐션 포인트: `Filter`.
+  익스텐션 포인트: `filter`.
 - `InterPodAffinity`: [파드 간 어피니티 및 안티-어피니티](/ko/docs/concepts/scheduling-eviction/assign-pod-node/#파드간-어피니티와-안티-어피니티)를
   구현한다.
-  익스텐션 포인트: `PreFilter`, `Filter`, `PreScore`, `Score`.
+  익스텐션 포인트: `preFilter`, `filter`, `preScore`, `score`.
 - `PrioritySort`: 기본 우선 순위 기반 정렬을 제공한다.
-  익스텐션 포인트: `QueueSort`.
+  익스텐션 포인트: `queueSort`.
 - `DefaultBinder`: 기본 바인딩 메커니즘을 제공한다.
-  익스텐션 포인트: `Bind`.
+  익스텐션 포인트: `bind`.
 - `DefaultPreemption`: 기본 선점 메커니즘을 제공한다.
-  익스텐션 포인트: `PostFilter`.
+  익스텐션 포인트: `postFilter`.
 
 기본으로 활성화되지 않는 다음의 플러그인을
 컴포넌트 구성 API를 통해 활성화할 수도 있다.
 
-- `NodeResourcesMostAllocated`: 리소스 할당이 많은 노드를
-  선호한다.
-  익스텐션 포인트: `Score`.
-- `RequestedToCapacityRatio`: 할당된 리소스의 구성된 기능에 따라 노드를
-  선호한다.
-  익스텐션 포인트: `Score`.
-- `CinderVolume`: 노드에 대해 OpenStack Cinder 볼륨 제한을 충족할 수 있는지
-  확인한다.
-  익스텐션 포인트: `Filter`.
-- `NodeLabel`: Filters and / or scores a node according to configured
-  {{< glossary_tooltip text="label(s)" term_id="label" >}}.
-  익스텐션 포인트: `Filter`, `Score`.
-- `ServiceAffinity`: {{< glossary_tooltip text="서비스" term_id="service" >}}에
-  속한 파드가 구성된 레이블로 정의된 노드 집합에 맞는지
-  확인한다. 이 플러그인은 또한 서비스에 속한 파드를 노드 간에
-  분산하는 것을 선호한다.
-  익스텐션 포인트: `PreFilter`, `Filter`, `Score`.
+- `SelectorSpread`: {{< glossary_tooltip text="Services" term_id="service" >}},
+  {{< glossary_tooltip text="ReplicaSets" term_id="replica-set" >}}와
+  {{< glossary_tooltip text="StatefulSets" term_id="statefulset" >}}에 속하는 파드의 경우, 
+  노드간에 퍼지는 것을 선호한다.
+  익스텐션 포인트: `preScore`, `score`.
+- `CinderLimits`: 노드에 대해 [OpenStack Cinder](https://docs.openstack.org/cinder/)
+  볼륨 제한이 충족될 수 있는지 확인한다.
+  익스텐션 포인트: `filter`.
 
 ### 여러 프로파일
 
@@ -211,7 +192,7 @@ profiles:
 실행된다.
 
 ```yaml
-apiVersion: kubescheduler.config.k8s.io/v1beta1
+apiVersion: kubescheduler.config.k8s.io/v1beta2
 kind: KubeSchedulerConfiguration
 profiles:
   - schedulerName: default-scheduler
@@ -243,13 +224,238 @@ profiles:
 {{< /note >}}
 
 {{< note >}}
-모든 프로파일은 QueueSort 익스텐션 포인트에서 동일한 플러그인을 사용해야 하며
+모든 프로파일은 `queueSort` 익스텐션 포인트에서 동일한 플러그인을 사용해야 하며
 동일한 구성 파라미터(해당하는 경우)를 가져야 한다. 그 이유는 스케줄러가 보류 중 상태인 파드 대기열을
 단 하나만 가질 수 있기 때문이다.
 {{< /note >}}
 
+### 다수의 익스텐션 포인트에 플러그인 적용하기 {#multipoint}
+
+`kubescheduler.config.k8s.io/v1beta3` 부터, 
+다수의 익스텐션 포인트에 대해 플러그인을 쉽게 활성화하거나 
+비활성화할 수 있게 하는 프로파일 환경 설정 `multiPoint` 가 추가되었다. 
+이를 사용하여 사용자와 관리자가 커스텀 프로파일을 사용할 때 환경 설정을 간소화할 수 있다.
+
+`preScore`, `score`, `preFilter`, `filter` 익스텐션 포인트가 있는 `MyPlugin` 이라는 플러그인이 있다고 가정하자. 
+모든 사용 가능한 익스텐션 포인트에 대해 `MyPlugin` 을 활성화하려면, 
+다음과 같은 프로파일 환경 설정을 사용한다.
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: multipoint-scheduler
+    plugins:
+      multiPoint:
+        enabled:
+        - name: MyPlugin
+```
+
+위의 예시는 아래와 같이 모든 익스텐션 포인트에 대해 `MyPlugin` 을 수동으로 활성화하는 것과 
+동일한 효과를 갖는다.
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: non-multipoint-scheduler
+    plugins:
+      preScore:
+        enabled:
+        - name: MyPlugin
+      score:
+        enabled:
+        - name: MyPlugin
+      preFilter:
+        enabled:
+        - name: MyPlugin
+      filter:
+        enabled:
+        - name: MyPlugin
+```
+
+여기서 `multiPoint` 를 사용했을 때의 이점은, 
+추후 `MyPlugin` 이 다른 익스텐션 포인트에 대한 구현을 추가했을 때, 
+새로운 익스텐션에 대해서도 `multiPoint` 환경 설정이 자동으로 활성화될 것이라는 점이다.
+
+`disabled` 필드를 사용하여, `MultiPoint` 확장으로부터 특정 익스텐션 포인트를 제외할 수 있다. 
+기본 플러그인을 비활성화하거나, 기본이 아닌(non-default) 플러그인을 비활성화하거나, 
+와일드카드(`'*'`)를 사용하여 모든 플러그인을 비활성화할 수 있다. 
+다음은 `Score` 와 `PreScore` 에 대해 비활성화하는 예시이다.
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: non-multipoint-scheduler
+    plugins:
+      multiPoint:
+        enabled:
+        - name: 'MyPlugin'
+      preScore:
+        disabled:
+        - name: '*'
+      score:
+        disabled:
+        - name: '*'
+```
+
+`v1beta3` 에서, `MultiPoint` 필드를 통해 내부적으로 모든 [기본 플러그인](#scheduling-plugins)이 활성화된다. 
+그러나, 개별 익스텐션 포인트에 대해 기본값(예: 순서, Score 가중치)을 유연하게 재설정하는 것도 여전히 가능하다. 
+예를 들어, 2개의 Score 플러그인 `DefaultScore1` 과 `DefaultScore2` 가 있고 
+각각의 가중치가 `1` 이라고 하자. 
+이 때, 다음과 같이 가중치를 다르게 설정하여 순서를 바꿀 수 있다.
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: multipoint-scheduler
+    plugins:
+      score:
+        enabled:
+        - name: 'DefaultScore2'
+          weight: 5
+```
+
+이 예제에서, 이 플러그인들을 `MultiPoint` 에 명시할 필요는 없는데, 
+이는 이 플러그인들이 기본 플러그인이기 때문이다. 
+그리고 `Score` 에는 `DefaultScore2` 플러그인만 명시되었다. 
+이는 익스텐션 포인트를 명시하여 설정된 플러그인은 언제나 `MultiPoint` 플러그인보다 우선순위가 높기 때문이다. 
+결론적으로, 위의 예시에서는 두 플러그인을 모두 명시하지 않고도 두 플러그인의 순서를 조정하였다.
+
+`MultiPoint` 플러그인을 설정할 때, 일반적인 우선 순위는 다음과 같다.
+1. 명시된 익스텐션 포인트가 먼저 실행되며, 여기에 명시된 환경 설정은 다른 모든 곳에 설정된 내용보다 우선한다.
+2. `MultiPoint` 및 플러그인 설정을 통해 수동으로 구성된 플러그인
+3. 기본 플러그인 및 기본 플러그인의 기본 설정
+
+위의 우선 순위를 설명하기 위해, 다음과 같은 예시를 가정한다.
+| 플러그인 | 익스텐션 포인트 |
+|---|---|
+|`DefaultQueueSort`|`QueueSort`|
+|`CustomQueueSort`|`QueueSort`|
+|`DefaultPlugin1`|`Score`, `Filter`|
+|`DefaultPlugin2`|`Score`|
+|`CustomPlugin1`|`Score`, `Filter`|
+|`CustomPlugin2`|`Score`, `Filter`|
+
+이들 플러그인에 대한 유효한 예시 환경 설정은 다음과 같다.
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: multipoint-scheduler
+    plugins:
+      multiPoint:
+        enabled:
+        - name: 'CustomQueueSort'
+        - name: 'CustomPlugin1'
+          weight: 3
+        - name: 'CustomPlugin2'
+        disabled:
+        - name: 'DefaultQueueSort'
+      filter:
+        disabled:
+        - name: 'DefaultPlugin1'
+      score:
+        enabled:
+        - name: 'DefaultPlugin2'
+```
+
+명시한 익스텐션 포인트 내에 `MultiPoint` 플러그인을 재정의해도 에러가 발생하지 않음에 유의한다. 
+명시한 익스텐션 포인트의 우선 순위가 더 높으므로, 
+이 재정의는 무시되고 로그에만 기록된다.
+
+대부분의 환경 설정을 한 곳에서 관리하는 것 말고도, 이 예시는 다음과 같은 내용을 포함한다.
+* 커스텀 `queueSort` 플러그인을 활성화하고 기존의 기본 플러그인을 비활성화한다
+* `CustomPlugin1` 과 `CustomPlugin2` 플러그인을 활성화하며, 이 플러그인에 연결된 모든 익스텐션 포인트를 위해 이 플러그인들이 먼저 실행된다
+* `filter` 에 대해서만 `DefaultPlugin1` 을 비활성화한다
+* `score` 에 대해, `DefaultPlugin2` 플러그인이 (심지어 커스텀 플러그인보다도) 가장 먼저 실행되도록 순서를 조정한다
+
+`multiPoint` 필드가 없는 `v1beta3` 이전 버전의 환경 설정에서는, 위의 스니펫을 다음과 같이 표현할 수 있다.
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta2
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: multipoint-scheduler
+    plugins:
+    
+      # 기본 QueueSort 플러그인을 비활성화한다
+      queueSort:
+        enabled:
+        - name: 'CustomQueueSort'
+        disabled:
+        - name: 'DefaultQueueSort'
+        
+      # 커스텀 Filter 플러그인을 활성화한다
+      filter:
+        enabled:
+        - name: 'CustomPlugin1'
+        - name: 'CustomPlugin2'
+        - name: 'DefaultPlugin2'
+        disabled:
+        - name: 'DefaultPlugin1'
+        
+      # 커스텀 score 플러그인을 활성화하고 순서를 조정한다
+      score:
+        enabled:
+        - name: 'DefaultPlugin2'
+          weight: 1
+        - name: 'DefaultPlugin1'
+          weight: 3
+```
+
+다소 복잡한 예시를 통해, 익스텐션 포인트를 설정함에 있어서 `MultiPoint` 환경 설정의 유연성과 
+기존 방법과의 끊김없는 통합을 확인할 수 있다.
+
+## 스케줄러 설정 전환
+
+{{< tabs name="tab_with_md" >}}
+{{% tab name="v1beta1 → v1beta2" %}}
+* 설정 버전 v1beta2 에서는, `NodeResourcesFit` 플러그인을 위한 새로운 스코어링 확장을 
+  이용할 수 있다.
+  새 확장은 `NodeResourcesLeastAllocated`, `NodeResourcesMostAllocated`, 
+  `RequestedToCapacityRatio` 플러그인의 기능을 통합하여 제공한다.
+  예를 들어, 이전에 `NodeResourcesMostAllocated` 플러그인을 사용했다면, 
+  대신 `NodeResourcesFit`(기본적으로 활성화되어 있음)을 사용하면서 
+  다음과 같이 `scoreStrategy`를 포함하는 `pluginConfig`를 추가할 수 있다.
+  ```yaml
+  apiVersion: kubescheduler.config.k8s.io/v1beta2
+  kind: KubeSchedulerConfiguration
+  profiles:
+  - pluginConfig:
+    - args:
+        scoringStrategy:
+          resources:
+          - name: cpu
+            weight: 1
+          type: MostAllocated
+      name: NodeResourcesFit
+  ```
+
+* 스케줄러 플러그인 `NodeLabel`은 사용 중단되었다. 대신, 비슷한 효과를 얻기 위해 [`NodeAffinity`](/ko/docs/concepts/scheduling-eviction/assign-pod-node/#어피니티-affinity-와-안티-어피니티-anti-affinity) 플러그인(기본적으로 활성화되어 있음)을 사용한다.
+
+* 스케줄러 플러그인 `ServiceAffinity`은 사용 중단되었다. 대신, 비슷한 효과를 얻기 위해 [`InterPodAffinity`](/ko/docs/concepts/scheduling-eviction/assign-pod-node/#파드간-어피니티와-안티-어피니티) 플러그인(기본적으로 활성화되어 있음)을 사용한다.
+
+* 스케줄러 플러그인 `NodePreferAvoidPods`은 사용 중단되었다. 대신, 비슷한 효과를 얻기 위해 [노드 테인트](/ko/docs/concepts/scheduling-eviction/taint-and-toleration/)를 사용한다.
+
+* v1beta2 설정 파일에서 활성화된 플러그인은 해당 플러그인의 기본 설정값보다 v1beta2 설정 파일의 값이 우선 적용된다.
+
+* 스케줄러 healthz와 metrics 바인드 주소에 대해 `host` 또는 `port` 가 잘못 설정되면 검증 실패를 유발한다.
+{{% /tab %}}
+
+{{% tab name="v1beta2 → v1beta3" %}}
+* 세 플러그인의 가중치 기본값이 다음과 같이 증가한다.
+  * `InterPodAffinity`: 1 에서 2 로
+  * `NodeAffinity`: 1 에서 2 로
+  * `TaintToleration`: 1 에서 3 으로
+{{% /tab %}}
+{{< /tabs >}}
+
 ## {{% heading "whatsnext" %}}
 
 * [kube-scheduler 레퍼런스](/docs/reference/command-line-tools-reference/kube-scheduler/) 읽어보기
 * [스케줄링](/ko/docs/concepts/scheduling-eviction/kube-scheduler/)에 대해 알아보기
-* [kube-scheduler configuration (v1beta1)](/docs/reference/config-api/kube-scheduler-config.v1beta1/) 레퍼런스 읽어보기
+* [kube-scheduler 설정 (v1beta2)](/docs/reference/config-api/kube-scheduler-config.v1beta2/) 레퍼런스 읽어보기
+* [kube-scheduler 설정 (v1beta3)](/docs/reference/config-api/kube-scheduler-config.v1beta3/) 레퍼런스 읽어보기
diff --git a/content/ko/docs/reference/scheduling/policies.md b/content/ko/docs/reference/scheduling/policies.md
index c2b9cbbdff..8be0974ede 100644
--- a/content/ko/docs/reference/scheduling/policies.md
+++ b/content/ko/docs/reference/scheduling/policies.md
@@ -1,102 +1,19 @@
 ---
 title: 스케줄링 정책
 content_type: concept
-weight: 10
+sitemap:
+  priority: 0.2 # Scheduling priorities are deprecated
 ---
 
 <!-- overview -->
 
-스케줄링 정책을 사용하여 {{< glossary_tooltip text="kube-scheduler" term_id="kube-scheduler" >}}가 각각 노드를 필터링하고 스코어링(scoring)하기 위해 실행하는 *단정(predicates)* 및 *우선순위(priorities)* 를 지정할 수 있다.
+쿠버네티스 v1.23 이전 버전에서는, *단정(predicates)* 및 *우선순위(priorities)* 프로세스를 지정하기 위해 스케줄링 정책을 사용할 수 있다. 
+예를 들어, `kube-scheduler --policy-config-file <filename>` 또는 `kube-scheduler --policy-configmap <ConfigMap>` 명령을 실행하여 스케줄링 정책을 설정할 수 있다.
 
-`kube-scheduler --policy-config-file <filename>` 또는 `kube-scheduler --policy-configmap <ConfigMap>`을 실행하고 [정책 유형](/docs/reference/config-api/kube-scheduler-policy-config.v1/)을 사용하여 스케줄링 정책을 설정할 수 있다.
-
-<!-- body -->
-
-## 단정 {#predicates}
-
-다음의 *단정* 은 필터링을 구현한다.
-
-- `PodFitsHostPorts`: 파드가 요청하는 파드의 포트에 대해 노드에 사용할 수 있는
-  포트(네트워크 프로토콜 종류)가 있는지 확인한다.
-
-- `PodFitsHost`: 파드가 호스트 이름으로 특정 노드를 지정하는지 확인한다.
-
-- `PodFitsResources`: 파드의 요구 사항을 충족할 만큼 노드에 사용할 수 있는
-  리소스(예: CPU 및 메모리)가 있는지 확인한다.
-
-- `MatchNodeSelector`: 파드의 노드 {{< glossary_tooltip text="셀렉터" term_id="selector" >}}가
-  노드의 {{< glossary_tooltip text="레이블" term_id="label" >}}과 일치하는지 확인한다.
-
-- `NoVolumeZoneConflict`: 해당 스토리지에 대한 장애 영역 제한이 주어지면
-  파드가 요청하는 {{< glossary_tooltip text="볼륨" term_id="volume" >}}을 노드에서 사용할 수 있는지
-  평가한다.
-
-- `NoDiskConflict`: 요청하는 볼륨과 이미 마운트된 볼륨으로 인해
-  파드가 노드에 적합한지 평가한다.
-
-- `MaxCSIVolumeCount`: 연결해야 하는 {{< glossary_tooltip text="CSI" term_id="csi" >}} 볼륨의 수와
-  구성된 제한을 초과하는지 여부를 결정한다.
-
-- `PodToleratesNodeTaints`: 파드의 {{< glossary_tooltip text="톨러레이션" term_id="toleration" >}}이
-  노드의 {{< glossary_tooltip text="테인트" term_id="taint" >}}를 용인할 수 있는지 확인한다.
-
-- `CheckVolumeBinding`: 파드가 요청한 볼륨에 적합할 수 있는지 평가한다.
-  이는 바인딩된 {{< glossary_tooltip text="PVC" term_id="persistent-volume-claim" >}}와
-  바인딩되지 않은 PVC 모두에 적용된다.
-
-## 우선순위 {#priorities}
-
-다음의 *우선순위* 는 스코어링을 구현한다.
-
-- `SelectorSpreadPriority`: 동일한 {{< glossary_tooltip text="서비스" term_id="service" >}},
-  {{< glossary_tooltip text="스테이트풀셋(StatefulSet)" term_id="statefulset" >}} 또는
-  {{< glossary_tooltip text="레플리카셋(ReplicaSet)" term_id="replica-set" >}}에 속하는
-  파드를 고려하여, 파드를 여러 호스트에 파드를 분산한다.
-
-- `InterPodAffinityPriority`: 선호된
-  [파드간 어피니티와 안티-어피니티](/ko/docs/concepts/scheduling-eviction/assign-pod-node/#파드간-어피니티와-안티-어피니티)를 구현한다.
-
-- `LeastRequestedPriority`: 요청된 리소스가 적은 노드를 선호한다. 즉,
-  노드에 배치되는 파드가 많고, 해당 파드가 사용하는 리소스가
-  많을수록 이 정책이 부여하는 순위가 낮아진다.
-
-- `MostRequestedPriority`: 요청된 리소스가 가장 많은 노드를 선호한다.
-  이 정책은 전체 워크로드 세트를 실행하는 데 필요한 최소 노드 수에 스케줄된
-  파드를 맞춘다.
-
-- `RequestedToCapacityRatioPriority`: 기본 리소스 스코어링 기능을 사용하여 ResourceAllocationPriority에 기반한 requestedToCapacity를 생성한다.
-
-- `BalancedResourceAllocation`: 균형 잡힌 리소스 사용의 노드를 선호한다.
-
-- `NodePreferAvoidPodsPriority`: 노드 어노테이션 `scheduler.alpha.kubernetes.io/preferAvoidPods`에 따라
-  노드의 우선순위를 지정한다. 이를 사용하여 두 개의 다른 파드가
-  동일한 노드에서 실행되면 안된다는 힌트를 줄 수 있다.
-
-- `NodeAffinityPriority`: PreferredDuringSchedulingIgnoredDuringExecution에 표시된 노드 어피니티 스케줄링
-  설정에 따라 노드의 우선순위를 지정한다.
-  이에 대한 자세한 내용은 [노드에 파드 할당하기](/ko/docs/concepts/scheduling-eviction/assign-pod-node/)에서 확인할 수 있다.
-
-- `TaintTolerationPriority`: 노드에서 용인할 수 없는 테인트 수를 기반으로,
-  모든 노드의 우선순위 목록을 준비한다. 이 정책은 해당 목록을
-  고려하여 노드의 순위를 조정한다.
-
-- `ImageLocalityPriority`: 해당 파드의
-  {{< glossary_tooltip text="컨테이너 이미지" term_id="image" >}}가 이미 로컬로 캐시된
-  노드를 선호한다.
-
-- `ServiceSpreadingPriority`: 특정 서비스에 대해, 이 정책은 해당 서비스에 대한
-  파드가 서로 다른 노드에서 실행되는 것을 목표로 한다. 해당 서비스에 대한
-  파드가 이미 할당되지 않은 노드에 스케줄링하는 것을 선호한다. 전반적인 결과는
-  서비스가 단일 노드 장애에 대해 더 탄력적이라는 것이다.
-
-- `EqualPriority`: 모든 노드에 동일한 가중치를 부여한다.
-
-- `EvenPodsSpreadPriority`: 선호된
-  [파드 토폴로지 분배 제약 조건](/ko/docs/concepts/workloads/pods/pod-topology-spread-constraints/)을 구현한다.
+이러한 스케줄링 정책은 쿠버네티스 v1.23 버전부터 지원되지 않는다. 관련된 플래그인 `policy-config-file`, `policy-configmap`, `policy-configmap-namespace`, `use-legacy-policy-config` 플래그도 지원되지 않는다. 대신, 비슷한 효과를 얻기 위해 [스케줄러 구성](/ko/docs/reference/scheduling/config/)을 사용한다.
 
 ## {{% heading "whatsnext" %}}
 
 * [스케줄링](/ko/docs/concepts/scheduling-eviction/kube-scheduler/)에 대해 배우기
 * [kube-scheduler 프로파일](/docs/reference/scheduling/profiles/)에 대해 배우기
-* [kube-scheduler configuration 레퍼런스 (v1beta1)](/docs/reference/config-api/kube-scheduler-config.v1beta1) 읽어보기
-* [kube-scheduler Policy 레퍼런스 (v1)](/docs/reference/config-api/kube-scheduler-policy-config.v1/) 읽어보기
+* [kube-scheduler configuration 레퍼런스 (v1beta3)](/docs/reference/config-api/kube-scheduler-config.v1beta3) 읽어보기
diff --git a/content/ko/docs/reference/setup-tools/kubeadm/_index.md b/content/ko/docs/reference/setup-tools/kubeadm/_index.md
index 17ed75ba38..83222323e2 100644
--- a/content/ko/docs/reference/setup-tools/kubeadm/_index.md
+++ b/content/ko/docs/reference/setup-tools/kubeadm/_index.md
@@ -8,7 +8,7 @@ card:
   weight: 40
 ---
 
-<img src="/images/kubeadm-stacked-color.png" align="right" width="150px">Kubeadm은 쿠버네티스 클러스터 생성을 위한 모범 사례의 "빠른 경로"로 `kubeadm init` 과 `kubeadm join` 을 제공하도록 만들어진 도구이다.
+<img src="/images/kubeadm-stacked-color.png" align="right" width="150px">Kubeadm은 쿠버네티스 클러스터 생성을 위한 "빠른 경로"의 모범 사례로 `kubeadm init` 및 `kubeadm join` 을 제공하도록 만들어진 도구이다.
 
 kubeadm은 실행 가능한 최소 클러스터를 시작하고 실행하는 데 필요한 작업을 수행한다. 설계 상, 시스템 프로비저닝이 아닌 부트스트랩(bootstrapping)만 다룬다. 마찬가지로, 쿠버네티스 대시보드, 모니터링 솔루션 및 클라우드별 애드온과 같은 다양한 있으면 좋은(nice-to-have) 애드온을 설치하는 것은 범위에 포함되지 않는다.
 
diff --git a/content/ko/docs/reference/tools/_index.md b/content/ko/docs/reference/tools/_index.md
index 6ac3b1dc82..328fc68a25 100644
--- a/content/ko/docs/reference/tools/_index.md
+++ b/content/ko/docs/reference/tools/_index.md
@@ -8,23 +8,24 @@ no_list: true
 ---
 
 <!-- overview -->
-쿠버네티스는 쿠버네티스 시스템으로 작업하는 데 도움이되는 몇 가지 기본 제공 도구를 포함한다.
-
+쿠버네티스는 쿠버네티스 시스템으로 작업하는 데 도움이 되는 몇 가지 도구를 포함한다.
 
 <!-- body -->
 
-## Minikube
+## crictl
 
-[`minikube`](https://minikube.sigs.k8s.io/docs/)는 개발과 테스팅 목적으로
-단일 노드 쿠버네티스 클러스터를 로컬 워크스테이션에서
-실행하는 도구이다.
+[`crictl`](https://github.com/kubernetes-sigs/cri-tools)은 
+{{<glossary_tooltip term_id="cri" text="CRI">}}-호환 컨테이너 런타임의 조사 및 디버깅을 위한 
+명령줄 인터페이스이다.
 
 ## 대시보드
 
-[`대시보드`](/ko/docs/tasks/access-application-cluster/web-ui-dashboard/), 는 쿠버네티스의 웹기반 유저 인터페이스이며 컨테이너화된 애플리케이션을 쿠버네티스 클러스터로 배포하고
-클러스터 및 클러스터 자원의 문제를 해결하며 관리할 수 있게 해준다.
+[`대시보드`](/ko/docs/tasks/access-application-cluster/web-ui-dashboard/)는 
+쿠버네티스의 웹기반 유저 인터페이스이며 
+컨테이너화된 애플리케이션을 쿠버네티스 클러스터로 배포하고 클러스터 및 클러스터 자원의 문제를 해결하며 관리할 수 있게 해 준다.
 
 ## Helm
+{{% thirdparty-content single="true" %}}
 
 [Helm](https://helm.sh/)은 사전 구성된 쿠버네티스 리소스 패키지를 관리하기 위한 도구이다.
 이 패키지는 _Helm charts_ 라고 알려져 있다.
@@ -39,10 +40,32 @@ Helm의 용도
 
 ## Kompose
 
-[`Kompose`](https://github.com/kubernetes/kompose)는 도커 컴포즈 유저들이 쿠버네티스로 이동하는데 도움이 되는 도구이다.
+[`Kompose`](https://github.com/kubernetes/kompose)는 도커 컴포즈(Compose) 유저들이 쿠버네티스로 이동하는데 도움이 되는 도구이다.
 
 Kompose의 용도
 
 * 도커 컴포즈 파일을 쿠버네티스 오브젝트로 변환
 * 로컬 도커 개발 환경에서 나의 애플리케이션을 쿠버네티스를 통해 관리하도록 이전
 * V1 또는 V2 도커 컴포즈 `yaml` 파일 또는 [분산 애플리케이션 번들](https://docs.docker.com/compose/bundles/)을 변환
+
+## Kui
+
+[`Kui`](https://github.com/kubernetes-sigs/kui)는 입력으로 일반적인 `kubectl` 커맨드 라인 요청을 받고
+출력으로 그래픽적인 응답을 제공하는 GUI 도구이다.
+
+Kui는 입력으로 일반적인 `kubectl` 커맨드 라인 요청을 받고 출력으로 그래픽적인 응답을 제공한다.
+Kui는 ASCII 표 대신 정렬 가능한 표를 GUI로 제공한다.
+
+Kui를 사용하면 다음의 작업이 가능하다.
+
+* 자동으로 생성되어 길이가 긴 리소스 이름을 클릭하여 복사할 수 있다.
+* `kubectl` 명령을 입력하면 실행되는 모습을 볼 수 있으며, `kubectl` 보다 더 빠른 경우도 있다.
+* {{< glossary_tooltip text="잡" term_id="job">}}을 조회하여
+  실행 형상을 워터폴 그림으로 확인한다.
+* 탭이 있는 UI를 이용하여 클러스터의 자원을 클릭 동작으로 확인할 수 있다.
+
+## Minikube
+
+[`minikube`](https://minikube.sigs.k8s.io/docs/)는 개발과 테스팅 목적으로
+단일 노드 쿠버네티스 클러스터를 로컬 워크스테이션에서
+실행하는 도구이다.
diff --git a/content/ko/docs/reference/using-api/_index.md b/content/ko/docs/reference/using-api/_index.md
index 423d82e0f2..28e7dace35 100644
--- a/content/ko/docs/reference/using-api/_index.md
+++ b/content/ko/docs/reference/using-api/_index.md
@@ -1,5 +1,9 @@
 ---
 title: API 개요
+
+
+
+
 content_type: concept
 weight: 10
 no_list: true
@@ -104,6 +108,7 @@ API 그룹은 REST 경로와 직렬화된 오브젝트의 `apiVersion` 필드에
 
  - `batch/v1` 을 비활성화하려면, `--runtime-config=batch/v1=false` 로 설정
  - `batch/v2alpha1` 을 활성화하려면, `--runtime-config=batch/v2alpha1` 으로 설정
+ - 예를 들어 `storage.k8s.io/v1beta1/csistoragecapacities`와 같이 특정 버전의 API를 활성화하려면, `--runtime-config=storage.k8s.io/v1beta1/csistoragecapacities`와 같이 설정
 
 {{< note >}}
 그룹이나 리소스를 활성화 또는 비활성화하려면, apiserver와 controller-manager를 재시작하여
diff --git a/content/ko/docs/reference/using-api/client-libraries.md b/content/ko/docs/reference/using-api/client-libraries.md
index 11d2e793bc..25edc311b2 100644
--- a/content/ko/docs/reference/using-api/client-libraries.md
+++ b/content/ko/docs/reference/using-api/client-libraries.md
@@ -1,5 +1,7 @@
 ---
 title: 클라이언트 라이브러리
+
+
 content_type: concept
 weight: 30
 ---
@@ -35,7 +37,6 @@ API 호출 또는 요청/응답 타입을 직접 구현할 필요는 없다.
 | JavaScript   | [github.com/kubernetes-client/javascript](https://github.com/kubernetes-client/javascript) | [둘러보기](https://github.com/kubernetes-client/javascript/tree/master/examples)
 | Python   | [github.com/kubernetes-client/python/](https://github.com/kubernetes-client/python/) | [둘러보기](https://github.com/kubernetes-client/python/tree/master/examples)
 
-
 ## 커뮤니티에 의해 관리되는 클라이언트 라이브러리
 
 {{% thirdparty-content %}}
@@ -66,11 +67,11 @@ API 호출 또는 요청/응답 타입을 직접 구현할 필요는 없다.
 | PHP                  | [github.com/travisghansen/kubernetes-client-php](https://github.com/travisghansen/kubernetes-client-php) |
 | PHP                  | [github.com/renoki-co/php-k8s](https://github.com/renoki-co/php-k8s) |
 | Python               | [github.com/fiaas/k8s](https://github.com/fiaas/k8s) |
+| Python               | [github.com/gtsystem/lightkube](https://github.com/gtsystem/lightkube) |
 | Python               | [github.com/mnubo/kubernetes-py](https://github.com/mnubo/kubernetes-py) |
 | Python               | [github.com/tomplus/kubernetes_asyncio](https://github.com/tomplus/kubernetes_asyncio) |
 | Python               | [github.com/Frankkkkk/pykorm](https://github.com/Frankkkkk/pykorm) |
 | Ruby                 | [github.com/abonas/kubeclient](https://github.com/abonas/kubeclient) |
-| Ruby                 | [github.com/Ch00k/kuber](https://github.com/Ch00k/kuber) |
 | Ruby                 | [github.com/k8s-ruby/k8s-ruby](https://github.com/k8s-ruby/k8s-ruby) |
 | Ruby                 | [github.com/kontena/k8s-client](https://github.com/kontena/k8s-client) |
 | Rust                 | [github.com/clux/kube-rs](https://github.com/clux/kube-rs) |
diff --git a/content/ko/docs/reference/using-api/health-checks.md b/content/ko/docs/reference/using-api/health-checks.md
index 07857ea5d2..3e4b113e6d 100644
--- a/content/ko/docs/reference/using-api/health-checks.md
+++ b/content/ko/docs/reference/using-api/health-checks.md
@@ -1,5 +1,7 @@
 ---
 title: 쿠버네티스 API 헬스(health) 엔드포인트
+
+
 content_type: concept
 weight: 50
 ---
@@ -16,13 +18,13 @@ weight: 50
 `healthz` 엔드포인트는 사용 중단(deprecated)됐으며 (쿠버네티스  v1.16 버전 이후), 대신 보다 구체적인 `livez` 와 `readyz` 엔드포인트를 사용해야 한다.
 `livez` 엔드포인트는 `--livez-grace-period` [플래그](/docs/reference/command-line-tools-reference/kube-apiserver) 옵션을 사용하여 시작 대기 시간을 지정할 수 있다.
 `/readyz` 엔드포인트는 `--shutdown-delay-duration` [플래그](/docs/reference/command-line-tools-reference/kube-apiserver) 옵션을 사용하여 정상적(graceful)으로 셧다운할 수 있다.
-API 서버의 `health`/`livez`/`readyz` 를 사용하는 머신은 HTTP 상태 코드에 의존해야 한다.
+API 서버의 `healthz`/`livez`/`readyz` 를 사용하는 머신은 HTTP 상태 코드에 의존해야 한다.
 상태 코드 200은 호출된 엔드포인트에 따라 API 서버의 `healthy`/`live`/`ready` 상태를 나타낸다.
-아래 표시된 더 자세한 옵션은 운영자가 클러스터나 특정 API 서버의 상태를 디버깅하는데 사용할 수 있다.
+아래 표시된 더 자세한 옵션은 운영자가 클러스터를 디버깅하거나 특정 API 서버의 상태를 이해하는 데 사용할 수 있다.
 
 다음의 예시는 헬스 API 엔드포인트와 상호 작용할 수 있는 방법을 보여준다.
 
-모든 엔드포인트는 `verbose` 파라미터를 사용하여 검사 항목과 상태를 출력할 수 있다.
+모든 엔드포인트에 대해, `verbose` 파라미터를 사용하여 검사 항목과 상태를 출력할 수 있다.
 이는 운영자가 머신 사용을 위한 것이 아닌, API 서버의 현재 상태를 디버깅하는데 유용하다.
 
 ```shell
@@ -91,7 +93,7 @@ curl -k 'https://localhost:6443/readyz?verbose&exclude=etcd'
 
 {{< feature-state state="alpha" >}}
 
-각 개별 헬스 체크는 http 엔드포인트를 노출하고 개별적으로 체크가 가능하다.
+각 개별 헬스 체크는 HTTP 엔드포인트를 노출하며 개별적으로 체크할 수 있다.
 개별 체크를 위한 스키마는 `/livez/<healthcheck-name>` 이고, 여기서 `livez` 와 `readyz` 는 API 서버의 활성 상태 또는 준비 상태인지를 확인할 때 사용한다.
 `<healthcheck-name>` 경로 위에서 설명한 `verbose` 플래그를 사용해서 찾을 수 있고, `[+]` 와 `ok` 사이의 경로를 사용한다.
 이러한 개별 헬스 체크는 머신에서 사용되서는 안되며, 운영자가 시스템의 현재 상태를 디버깅하는데 유용하다.
diff --git a/content/ko/docs/setup/best-practices/certificates.md b/content/ko/docs/setup/best-practices/certificates.md
index e6640be52d..2774fca3e0 100644
--- a/content/ko/docs/setup/best-practices/certificates.md
+++ b/content/ko/docs/setup/best-practices/certificates.md
@@ -1,5 +1,7 @@
 ---
 title: PKI 인증서 및 요구 사항
+
+
 content_type: concept
 weight: 40
 ---
@@ -20,6 +22,8 @@ weight: 40
 쿠버네티스는 다음 작업에서 PKI를 필요로 한다.
 
 * kubelet에서 API 서버 인증서를 인증시 사용하는 클라이언트 인증서
+* API 서버가 kubelet과 통신하기 위한 
+  kubelet [서버 인증서](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/#client-and-serving-certificates)
 * API 서버 엔드포인트를 위한 서버 인증서
 * API 서버에 클러스터 관리자 인증을 위한 클라이언트 인증서
 * API 서버에서 kubelet과 통신을 위한 클라이언트 인증서
@@ -36,11 +40,13 @@ etcd 역시 클라이언트와 피어 간에 상호 TLS 인증을 구현한다.
 
 ## 인증서를 저장하는 위치
 
-만약 쿠버네티스를 kubeadm으로 설치했다면 인증서는 `/etc/kubernetes/pki`에 저장된다. 이 문서에 언급된 모든 파일 경로는 그 디렉터리에 상대적이다.
+만약 쿠버네티스를 kubeadm으로 설치했다면, 대부분의 인증서는 `/etc/kubernetes/pki`에 저장된다. 이 문서에 언급된 모든 파일 경로는 그 디렉터리에 상대적이나, kubeadm이 `/etc/kubernetes`에 저장하는 사용자 어카운트 인증서는 예외이다.
 
 ## 인증서 수동 설정
 
-필요한 인증서를 kubeadm으로 생성하기 싫다면 다음 방법 중 하나로 생성할 수 있다.
+필요한 인증서를 kubeadm으로 생성하기 싫다면, 단일 루트 CA를 이용하거나 모든 인증서를 제공하여 생성할 수 있다. 소유한 인증기관을 이용해서 생성하는 방법에 대해서는 [인증서](/ko/docs/tasks/administer-cluster/certificates/)를 살펴본다.
+인증서를 관리하는 방법에 대해서는 [kubeadm을 사용한 인증서 관리](/ko/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/)를 살펴본다.
+
 
 ### 단일 루트 CA
 
@@ -55,7 +61,16 @@ etcd 역시 클라이언트와 피어 간에 상호 TLS 인증을 구현한다.
 | front-proxy-ca.crt,key | kubernetes-front-proxy-ca | [front-end proxy](/docs/tasks/extend-kubernetes/configure-aggregation-layer/) 위해서  |
 
 위의 CA외에도, 서비스 계정 관리를 위한 공개/개인 키 쌍인 `sa.key` 와 `sa.pub` 을 얻는 것이 필요하다.
+다음은 이전 표에 나온 CA 키와 인증서 파일을 보여준다.
 
+```
+/etc/kubernetes/pki/ca.crt
+/etc/kubernetes/pki/ca.key
+/etc/kubernetes/pki/etcd/ca.crt
+/etc/kubernetes/pki/etcd/ca.key
+/etc/kubernetes/pki/front-proxy-ca.crt
+/etc/kubernetes/pki/front-proxy-ca.key
+```
 ### 모든 인증서
 
 이런 개인키를 API 서버에 복사하기 원치 않는다면, 모든 인증서를 스스로 생성할 수 있다.
@@ -64,7 +79,7 @@ etcd 역시 클라이언트와 피어 간에 상호 TLS 인증을 구현한다.
 
 | 기본 CN                       | 부모 CA                   | O (주체에서)   | 종류                                   | 호스트  (SAN)                                |
 |-------------------------------|---------------------------|----------------|----------------------------------------|---------------------------------------------|
-| kube-etcd                     | etcd-ca                   |                | server, client                         | `localhost`, `127.0.0.1`                        |
+| kube-etcd                     | etcd-ca                   |                | server, client                         | `<hostname>`, `<Host_IP>`, `localhost`, `127.0.0.1` |
 | kube-etcd-peer                | etcd-ca                   |                | server, client                         | `<hostname>`, `<Host_IP>`, `localhost`, `127.0.0.1` |
 | kube-etcd-healthcheck-client  | etcd-ca                   |                | client                                 |                                             |
 | kube-apiserver-etcd-client    | etcd-ca                   | system:masters | client                                 |                                             |
@@ -72,10 +87,11 @@ etcd 역시 클라이언트와 피어 간에 상호 TLS 인증을 구현한다.
 | kube-apiserver-kubelet-client | kubernetes-ca             | system:masters | client                                 |                                             |
 | front-proxy-client            | kubernetes-front-proxy-ca |                | client                                 |                                             |
 
-[1]: 클러스터에 접속한 다른 IP 또는 DNS 이름([kubeadm](/ko/docs/reference/setup-tools/kubeadm/) 이 사용하는 로드 밸런서 안정 IP 또는 DNS 이름, `kubernetes`, `kubernetes.default`, `kubernetes.default.svc`,
+[1]: 클러스터에 접속한 다른 IP 또는 DNS 이름([kubeadm](/ko/docs/reference/setup-tools/kubeadm/)이 사용하는
+로드 밸런서 안정 IP 또는 DNS 이름, `kubernetes`, `kubernetes.default`, `kubernetes.default.svc`,
 `kubernetes.default.svc.cluster`, `kubernetes.default.svc.cluster.local`)
 
-`kind`는 하나 이상의 [x509 키 사용](https://godoc.org/k8s.io/api/certificates/v1beta1#KeyUsage) 종류를 가진다.
+`kind`는 하나 이상의 [x509 키 사용](https://pkg.go.dev/k8s.io/api/certificates/v1beta1#KeyUsage) 종류를 가진다.
 
 | 종류   | 키 사용                                                                         |
 |--------|---------------------------------------------------------------------------------|
@@ -95,9 +111,10 @@ kubeadm 사용자만 해당:
 
 {{< /note >}}
 
-### 인증서 파일 경로
+### 인증서 파일 경로 {#certificate-paths}
 
-인증서는 권고하는 파일 경로에 존재해야 한다([kubeadm](/ko/docs/reference/setup-tools/kubeadm/)에서 사용되는 것처럼). 경로는 위치에 관계없이 주어진 파라미터를 사용하여 지정해야 한다.
+인증서는 권고하는 파일 경로에 존재해야 한다([kubeadm](/ko/docs/reference/setup-tools/kubeadm/)에서 사용되는 것처럼).
+경로는 위치에 관계없이 주어진 파라미터를 사용하여 지정해야 한다.
 
 | 기본 CN                      | 권고되는 키 파일 경로         | 권고하는 인증서 파일 경로   | 명령어         | 키 파라미터                  | 인증서 파라미터                           |
 |------------------------------|------------------------------|-----------------------------|----------------|------------------------------|-------------------------------------------|
@@ -123,6 +140,32 @@ kubeadm 사용자만 해당:
 |  sa.key                      |                             | kube-controller-manager | --service-account-private-key-file   |
 |                              | sa.pub                      | kube-apiserver          | --service-account-key-file           |
 
+다음은 키와 인증서를 모두 생성할 때에 제공해야 하는 [이전 표에 있는](#certificate-paths) 파일의 경로를 보여준다.
+
+```
+/etc/kubernetes/pki/etcd/ca.key
+/etc/kubernetes/pki/etcd/ca.crt
+/etc/kubernetes/pki/apiserver-etcd-client.key
+/etc/kubernetes/pki/apiserver-etcd-client.crt
+/etc/kubernetes/pki/ca.key
+/etc/kubernetes/pki/ca.crt
+/etc/kubernetes/pki/apiserver.key
+/etc/kubernetes/pki/apiserver.crt
+/etc/kubernetes/pki/apiserver-kubelet-client.key
+/etc/kubernetes/pki/apiserver-kubelet-client.crt
+/etc/kubernetes/pki/front-proxy-ca.key
+/etc/kubernetes/pki/front-proxy-ca.crt
+/etc/kubernetes/pki/front-proxy-client.key
+/etc/kubernetes/pki/front-proxy-client.crt
+/etc/kubernetes/pki/etcd/server.key
+/etc/kubernetes/pki/etcd/server.crt
+/etc/kubernetes/pki/etcd/peer.key
+/etc/kubernetes/pki/etcd/peer.crt
+/etc/kubernetes/pki/etcd/healthcheck-client.key
+/etc/kubernetes/pki/etcd/healthcheck-client.crt
+/etc/kubernetes/pki/sa.key
+/etc/kubernetes/pki/sa.pub
+```
 ## 각 사용자 계정을 위한 인증서 설정하기
 
 반드시 이런 관리자 계정과 서비스 계정을 설정해야 한다.
@@ -142,7 +185,7 @@ kubeadm 사용자만 해당:
 
 1. 각 환경 설정에 대해 다음과 같이 `kubectl`를 실행한다.
 
-```shell
+```
 KUBECONFIG=<filename> kubectl config set-cluster default-cluster --server=https://<host ip>:6443 --certificate-authority <path-to-kubernetes-ca> --embed-certs
 KUBECONFIG=<filename> kubectl config set-credentials <credential-name> --client-key <path-to-key>.pem --client-certificate <path-to-cert>.pem --embed-certs
 KUBECONFIG=<filename> kubectl config set-context default-system --cluster default-cluster --user <credential-name>
@@ -157,3 +200,12 @@ KUBECONFIG=<filename> kubectl config use-context default-system
 | kubelet.conf            | kubelet                 | 클러스터 각 노드를 위해 필요하다.                            |
 | controller-manager.conf | kube-controller-manager | 반드시 매니페스트를 `manifests/kube-controller-manager.yaml`에 추가해야 한다. |
 | scheduler.conf          | kube-scheduler          | 반드시 매니페스트를 `manifests/kube-scheduler.yaml`에 추가해야 한다.          |
+
+다음의 파일은 이전 표에 나열된 파일의 전체 경로를 보여준다.
+
+```
+/etc/kubernetes/admin.conf
+/etc/kubernetes/kubelet.conf
+/etc/kubernetes/controller-manager.conf
+/etc/kubernetes/scheduler.conf
+```
\ No newline at end of file
diff --git a/content/ko/docs/setup/best-practices/cluster-large.md b/content/ko/docs/setup/best-practices/cluster-large.md
index 899c63f6b7..5cf90e840e 100644
--- a/content/ko/docs/setup/best-practices/cluster-large.md
+++ b/content/ko/docs/setup/best-practices/cluster-large.md
@@ -121,3 +121,6 @@ _A_ 영역에 있는 컨트롤 플레인 호스트로만 전달한다. 단일 
 [클러스터 오토스케일러](https://github.com/kubernetes/autoscaler/tree/master/cluster-autoscaler#readme)는
 여러 클라우드 프로바이더와 통합되어 클러스터의 리소스 요구 수준에 맞는
 노드 수를 실행할 수 있도록 도와준다.
+
+[addon resizer](https://github.com/kubernetes/autoscaler/tree/master/addon-resizer#readme)는 
+클러스터 스케일이 변경될 때 자동으로 애드온 크기를 조정할 수 있도록 도와준다.
\ No newline at end of file
diff --git a/content/ko/docs/setup/best-practices/node-conformance.md b/content/ko/docs/setup/best-practices/node-conformance.md
index c2f919968f..4e765f3e87 100644
--- a/content/ko/docs/setup/best-practices/node-conformance.md
+++ b/content/ko/docs/setup/best-practices/node-conformance.md
@@ -1,4 +1,6 @@
 ---
+
+
 title: 노드 구성 검증하기
 weight: 30
 ---
@@ -6,13 +8,15 @@ weight: 30
 
 ## 노드 적합성 테스트
 
-*노드 적합성 테스트* 는 노드의 시스템 검증과 기능 테스트를 제공하기 위해 컨테이너화된 테스트 프레임워크이다.
-테스트는 노드가 쿠버네티스를 위한 최소 요구조건을 만족하는지를 검증한다. 그리고 테스트를 통과한 노드는 쿠버네티스 클러스터에 참
-여할 자격이 주어진다.
+*노드 적합성 테스트* 는 노드의 시스템 검증과 기능 테스트를 제공하기 위해 컨테이너화된 
+테스트 프레임워크이다. 
+테스트는 노드가 쿠버네티스를 위한 최소 요구조건을 만족하는지를 검증한다. 
+그리고 테스트를 통과한 노드는 쿠버네티스 클러스터에 참여할 자격이 주어진다.
 
 ## 노드 필수 구성 요소
 
-노드 적합성 테스트를 실행하기 위해서는, 해당 노드는 표준 쿠버네티스 노드로서 동일한 전제조건을 만족해야 한다.
+노드 적합성 테스트를 실행하기 위해서는, 
+해당 노드는 표준 쿠버네티스 노드로서 동일한 전제조건을 만족해야 한다.
 노드는 최소한 아래 데몬들이 설치되어 있어야 한다.
 
 * 컨테이너 런타임 (Docker)
@@ -21,14 +25,13 @@ weight: 30
 ## 노드 적합성 테스트 실행
 
 노드 적합성 테스트는 다음 순서로 진행된다.
-
 1. kubelet에 대한 `--kubeconfig` 옵션의 값을 계산한다. 예를 들면, 다음과 같다.
    `--kubeconfig = / var / lib / kubelet / config.yaml`.
    테스트 프레임워크는 kubelet을 테스트하기 위해 로컬 컨트롤 플레인을 시작하기 때문에,
    `http://localhost:8080` 을 API 서버의 URL로 사용한다.
    사용할 수 있는 kubelet 커맨드 라인 파라미터가 몇 개 있다.
-  * `--pod-cidr`: `kubenet`을 사용 중이라면, 임의의 CIDR을 Kubelet에 지정해주어야 한다. 예) `--pod-cidr=10.180.0.0/24`.
-  * `--cloud-provider`: `--cloud-provider=gce`를 사용 중이라면, 테스트 실행 시에는 제거해야 한다.
+  * `--cloud-provider`: `--cloud-provider=gce`를 사용 중이라면, 
+    테스트 실행 시에는 제거해야 한다.
 
 2. 다음 커맨드로 노드 적합성 테스트를 실행한다.
 
diff --git a/content/ko/docs/setup/learning-environment/_index.md b/content/ko/docs/setup/learning-environment/_index.md
index 1c035d5bae..c9a8bf8813 100644
--- a/content/ko/docs/setup/learning-environment/_index.md
+++ b/content/ko/docs/setup/learning-environment/_index.md
@@ -11,7 +11,7 @@ weight: 20
 {{/* If you're localizing this page, you only need to copy the front matter */}}
 {{/* and add a redirect into "/static/_redirects", for YOUR localization. */}}
 -->
-
+<!--
 ## kind
 
 [`kind`](https://kind.sigs.k8s.io/docs/)를 사용하면 로컬 컴퓨터에서
@@ -31,3 +31,4 @@ kind를 시작하고 실행하기 위해 해야 할 일이 나와 있다.
 툴을 설치하고 싶으면
 [시작하기!](https://minikube.sigs.k8s.io/docs/start/) 공식 가이드를
 참조하기 바란다.
+-->
diff --git a/content/ko/docs/setup/production-environment/_index.md b/content/ko/docs/setup/production-environment/_index.md
index 1394c2f325..e14fce8baa 100644
--- a/content/ko/docs/setup/production-environment/_index.md
+++ b/content/ko/docs/setup/production-environment/_index.md
@@ -197,7 +197,7 @@ etcd 백업 계획을 세우려면
 스크립트를 구성할 수 있는 가상화 플랫폼이 있다.
 - *노드 헬스 체크 구성*: 중요한 워크로드의 경우, 
 해당 노드에서 실행 중인 노드와 파드의 상태가 정상인지 확인하고 싶을 것이다. 
-[Node Problem Detector](/docs/tasks/debug-application-cluster/monitor-node-health/) 
+[Node Problem Detector](/docs/tasks/debug/debug-cluster/monitor-node-health/) 
 데몬을 사용하면 노드가 정상인지 확인할 수 있다.
 
 ## 프로덕션 사용자 관리
diff --git a/content/ko/docs/setup/production-environment/container-runtimes.md b/content/ko/docs/setup/production-environment/container-runtimes.md
index fb749a2346..6f375e081b 100644
--- a/content/ko/docs/setup/production-environment/container-runtimes.md
+++ b/content/ko/docs/setup/production-environment/container-runtimes.md
@@ -8,27 +8,49 @@ weight: 20
 ---
 <!-- overview -->
 
+{{% dockershim-removal %}}
+
 파드가 노드에서 실행될 수 있도록 클러스터의 각 노드에
 {{< glossary_tooltip text="컨테이너 런타임" term_id="container-runtime" >}}을
 설치해야 한다. 이 페이지에서는 관련된 항목을 설명하고
 노드 설정 관련 작업을 설명한다.
 
-<!-- body -->
+쿠버네티스 {{< skew currentVersion >}}에서는 
+{{< glossary_tooltip term_id="cri" text="컨테이너 런타임 인터페이스">}}(CRI) 요구사항을 만족하는 
+런타임을 사용해야 한다.
 
-이 페이지에는 리눅스 환경의 쿠버네티스에서 여러 공통 컨테이너 런타임을 사용하는 방법에 대한
-세부 정보가 있다.
+더 자세한 정보는 [CRI 버전 지원](#cri-versions)을 참조한다.
+
+이 페이지는 쿠버네티스에서 
+여러 공통 컨테이너 런타임을 사용하는 방법에 대한 개요를 제공한다.
 
 - [containerd](#containerd)
 - [CRI-O](#cri-o)
-- [도커](#도커)
+- [도커 엔진](#docker)
+- [미란티스 컨테이너 런타임](#mcr)
 
 {{< note >}}
-다른 운영 체제의 경우, 해당 플랫폼과 관련된 문서를 찾아보자.
+쿠버네티스 v1.24 이전 릴리스는 
+_dockershim_ 이라는 구성 요소를 사용하여 도커 엔진과의 직접 통합을 지원했다. 
+이 특별한 직접 통합은 
+더 이상 쿠버네티스에 포함되지 않는다(이 제거는 
+v1.20 릴리스의 일부로 [공지](/blog/2020/12/08/kubernetes-1-20-release-announcement/#dockershim-deprecation)되었다). 
+이 제거가 어떻게 영향을 미치는지 알아보려면 
+[Dockershim 사용 중단이 영향을 미치는지 확인하기](/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you/) 문서를 확인한다. 
+dockershim을 사용하던 환경에서 이전(migrating)하는 방법을 보려면, 
+[dockershim에서 이전하기](/docs/tasks/administer-cluster/migrating-from-dockershim/)를 확인한다.
+
+v{{< skew currentVersion >}} 이외의 쿠버네티스 버전을 사용하고 있다면, 
+해당 버전의 문서를 참고한다.
 {{< /note >}}
 
-## Cgroup 드라이버
 
-Control group은 프로세스에 할당된 리소스를 제한하는데 사용된다.
+<!-- body -->
+
+## cgroup 드라이버
+
+리눅스에서, {{< glossary_tooltip text="control group" term_id="cgroup" >}}은 
+프로세스에 할당된 리소스를 제한하는데 사용된다.
 
 리눅스 배포판의 init 시스템이 [systemd](https://www.freedesktop.org/wiki/Software/systemd/)인
 경우, init 프로세스는 root control group(`cgroup`)을
@@ -57,105 +79,103 @@ kubelet을 재시작하는 것은 에러를 해결할 수 없을 것이다.
 교체하거나, 자동화를 사용하여 다시 설치한다.
 {{< /caution >}}
 
+### Cgroup 버전 2 {#cgroup-v2}
+
+cgroup v2는 cgroup Linux API의 다음 버전이다. 
+cgroup v1과는 다르게 각 컨트롤러마다 다른 계층 대신 단일 계층이 있다.
+
+새 버전은 cgroup v1에 비해 몇 가지 향상된 기능을 제공하며, 개선 사항 중 일부는 다음과 같다.
+
+- API를 더 쉽고 깔끔하게 사용할 수 있음
+- 컨테이너로의 안전한 하위 트리 위임
+- 압력 중지 정보와 같은 새로운 기능
+
+일부 컨트롤러는 cgroup v1에 의해 관리되고 다른 컨트롤러는 cgroup v2에 의해 관리되는 하이브리드 구성을 지원하더라도, 
+쿠버네티스는 모든 컨트롤러를 관리하기 위해 
+동일한 cgroup 버전만 지원한다.
+
+systemd가 기본적으로 cgroup v2를 사용하지 않는 경우, 커널 명령줄에 `systemd.unified_cgroup_hierarchy=1`을 
+추가하여 cgroup v2를 사용하도록 시스템을 구성할 수 있다.
+
+```shell
+# 이 예제는 리눅스 OS에서 DNF 패키지 관리자를 사용하는 경우에 대한 것이다.
+# 리눅스 커널이 사용하는 커맨드 라인을 설정하기 위해 
+# 사용자의 시스템이 다른 방법을 사용하고 있을 수도 있다.
+sudo dnf install -y grubby && \
+  sudo grubby \
+  --update-kernel=ALL \
+  --args="systemd.unified_cgroup_hierarchy=1"
+```
+
+커널이 사용하는 커맨드 라인을 업데이트하려면, 
+변경 사항을 적용하기 위해 노드를 재시작해야 한다.
+
+cgroup v2로 전환할 때 사용자가 노드 또는 컨테이너 내에서 
+cgroup 파일 시스템에 직접 접근하지 않는 한 사용자 경험에 현저한 차이가 없어야 한다.
+
+cgroup v2를 사용하려면 CRI 런타임에서도 cgroup v2를 지원해야 한다.
+
 ### kubeadm으로 생성한 클러스터의 드라이버를 `systemd`로 변경하기
 
-kubeadm으로 생성한 클러스터의 cgroup 드라이버를 `systemd`로 변경하려면
-[변경 가이드](/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver/)를 참고한다.
+기존에 kubeadm으로 생성한 클러스터의 cgroup 드라이버를 `systemd`로 변경하려면, 
+[cgroup 드라이버 설정하기](/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver/)를 참고한다.
+
+## CRI 버전 지원 {#cri-versions}
+
+사용할 컨테이너 런타임이 적어도 CRI의 v1alpha2 이상을 지원해야 한다.
+
+쿠버네티스 {{< skew currentVersion >}} 버전에서는 기본적으로 CRI API 중 v1을 사용한다.
+컨테이너 런타임이 v1 API를 지원하지 않으면, 
+kubelet은 대신 (사용 중단된) v1alpha2 API를 사용하도록 설정된다.
 
 ## 컨테이너 런타임
 
 {{% thirdparty-content %}}
 
+
 ### containerd
 
-이 섹션에는 containerd 를 CRI 런타임으로 사용하는 데 필요한 단계가 포함되어 있다.
+이 섹션에는 containerd를 CRI 런타임으로 사용하는 데 필요한 단계를 간략하게 설명한다.
 
-필수 구성 요소를 설치 및 구성한다.
+다음 명령을 사용하여 시스템에 containerd를 설치한다.
 
-```shell
-cat <<EOF | sudo tee /etc/modules-load.d/containerd.conf
-overlay
-br_netfilter
-EOF
+1. 필수 구성 요소를 설치 및 구성한다.
 
-sudo modprobe overlay
-sudo modprobe br_netfilter
-
-# 필요한 sysctl 파라미터를 설정하면 재부팅 후에도 유지된다.
-cat <<EOF | sudo tee /etc/sysctl.d/99-kubernetes-cri.conf
-net.bridge.bridge-nf-call-iptables  = 1
-net.ipv4.ip_forward                 = 1
-net.bridge.bridge-nf-call-ip6tables = 1
-EOF
-
-# 재부팅하지 않고 sysctl 파라미터 적용
-sudo sysctl --system
-```
-
-containerd를 설치한다.
-
-{{< tabs name="tab-cri-containerd-installation" >}}
-{{% tab name="Linux" %}}
-
-1. 공식 도커 리포지터리에서 `containerd.io` 패키지를 설치한다.
-각 리눅스 배포판에 대한 도커 리포지터리를 설정하고
-`containerd.io` 패키지를 설치하는 방법은
-[도커 엔진 설치](https://docs.docker.com/engine/install/#server)에서 찾을 수 있다.
-
-2. containerd 설정
+   (이 지침은 리눅스 노드에만 적용된다)
 
    ```shell
-   sudo mkdir -p /etc/containerd
-   containerd config default | sudo tee /etc/containerd/config.toml
+   cat <<EOF | sudo tee /etc/modules-load.d/containerd.conf
+   overlay
+   br_netfilter
+   EOF
+
+   sudo modprobe overlay
+   sudo modprobe br_netfilter
+
+   # 필요한 sysctl 파라미터를 설정하면 재부팅 후에도 유지된다.
+   cat <<EOF | sudo tee /etc/sysctl.d/99-kubernetes-cri.conf
+   net.bridge.bridge-nf-call-iptables  = 1
+   net.ipv4.ip_forward                 = 1
+   net.bridge.bridge-nf-call-ip6tables = 1
+   EOF
+
+   # 재부팅하지 않고 sysctl 파라미터 적용
+   sudo sysctl --system
    ```
 
-3. containerd 재시작
+1. containerd를 설치한다.
 
-   ```shell
-   sudo systemctl restart containerd
-   ```
+   [containerd 시작하기](https://github.com/containerd/containerd/blob/main/docs/getting-started.md) 
+   문서를 확인하고, 
+   유효한 환경 설정 파일(`config.toml`)을 작성하는 부분까지의 
+   가이드를 따른다. 
+   리눅스에서, 이 파일은 `/etc/containerd/config.toml`에 존재한다. 
+   윈도우에서, 이 파일은 `C:\Program Files\containerd\config.toml`에 존재한다.
 
-{{% /tab %}}
-{{% tab name="Windows (PowerShell)" %}}
+리눅스에서, containerd를 위한 기본 CRI 소켓은 `/run/containerd/containerd.sock`이다.
+윈도우에서, 기본 CRI 엔드포인트는 `npipe://./pipe/containerd-containerd`이다.
 
-PowerShell 세션을 시작하고 `$Version`을 원하는 버전으로
-설정(예: `$Version:1.4.3`)한 후 다음 명령을 실행한다.
-
-1. containerd 다운로드
-
-   ```powershell
-   curl.exe -L https://github.com/containerd/containerd/releases/download/v$Version/containerd-$Version-windows-amd64.tar.gz -o containerd-windows-amd64.tar.
-gz
-   tar.exe xvf .\containerd-windows-amd64.tar.gz
-   ```
-
-2. 추출과 설정
-
-   ```powershell
-   Copy-Item -Path ".\bin\" -Destination "$Env:ProgramFiles\containerd" -Recurse -Force
-   cd $Env:ProgramFiles\containerd\
-   .\containerd.exe config default | Out-File config.toml -Encoding ascii
-
-   # 설정을 검토한다. 설정에 따라 다음을 조정할 수 있다.
-   # - sandbox_image (쿠버네티스 일시중지 이미지)
-   # - cni bin 폴더와 conf 폴더 위치
-   Get-Content config.toml
-
-   # (선택사항 - 그러나 적극 권장함) Windows 디펜더 검사에서 containerd 제외
-   Add-MpPreference -ExclusionProcess "$Env:ProgramFiles\containerd\containerd.exe"
-   ```
-
-3. containerd 실행
-
-   ```powershell
-   .\containerd.exe --register-service
-   Start-Service containerd
-   ```
-
-{{% /tab %}}
-{{< /tabs >}}
-
-#### `systemd` cgroup 드라이버의 사용 {#containerd-systemd}
+#### `systemd` cgroup 드라이버 환경 설정하기 {#containerd-systemd}
 
 `/etc/containerd/config.toml` 의 `systemd` cgroup 드라이버를 `runc` 에서 사용하려면, 다음과 같이 설정한다.
 
@@ -166,7 +186,7 @@ gz
     SystemdCgroup = true
 ```
 
-이 변경 사항을 적용하는 경우 containerd를 재시작한다.
+이 변경 사항을 적용하려면, containerd를 재시작한다.
 
 ```shell
 sudo systemctl restart containerd
@@ -179,176 +199,14 @@ kubeadm을 사용하는 경우,
 
 이 섹션은 CRI-O를 컨테이너 런타임으로 설치하는 필수적인 단계를 담고 있다.
 
-시스템에 CRI-O를 설치하기 위해서 다음의 커맨드를 사용한다.
-
-{{< note >}}
-CRI-O 메이저와 마이너 버전은 쿠버네티스 메이저와 마이너 버전이 일치해야 한다.
-더 자세한 정보는 [CRI-O 호환 매트릭스](https://github.com/cri-o/cri-o#compatibility-matrix-cri-o--kubernetes)를 본다.
-{{< /note >}}
-
-필수 구성 요소를 설치하고 구성한다.
-
-```shell
-# .conf 파일을 만들어 부팅 시 모듈을 로드한다
-cat <<EOF | sudo tee /etc/modules-load.d/crio.conf
-overlay
-br_netfilter
-EOF
-
-sudo modprobe overlay
-sudo modprobe br_netfilter
-
-# 요구되는 sysctl 파라미터 설정, 이 설정은 재부팅 간에도 유지된다.
-cat <<EOF | sudo tee /etc/sysctl.d/99-kubernetes-cri.conf
-net.bridge.bridge-nf-call-iptables  = 1
-net.ipv4.ip_forward                 = 1
-net.bridge.bridge-nf-call-ip6tables = 1
-EOF
-
-sudo sysctl --system
-```
-
-{{< tabs name="tab-cri-cri-o-installation" >}}
-{{% tab name="Debian" %}}
-
-다음의 운영 체제에서 CRI-O를 설치하려면, 환경 변수 `OS` 를
-아래의 표에서 적절한 필드로 설정한다.
-
-| 운영 체제          | `$OS`             |
-| ---------------- | ----------------- |
-| Debian Unstable  | `Debian_Unstable` |
-| Debian Testing   | `Debian_Testing`  |
-
-<br />
-그런 다음, `$VERSION` 을 사용자의 쿠버네티스 버전과 일치하는 CRI-O 버전으로 설정한다.
-예를 들어, CRI-O 1.20을 설치하려면, `VERSION=1.20` 로 설정한다.
-사용자의 설치를 특정 릴리스에 고정할 수 있다.
-버전 1.20.0을 설치하려면, `VERSION=1.20:1.20.0` 을 설정한다.
-<br />
-
-그런 다음, 아래를 실행한다.
-```shell
-cat <<EOF | sudo tee /etc/apt/sources.list.d/devel:kubic:libcontainers:stable.list
-deb https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/$OS/ /
-EOF
-cat <<EOF | sudo tee /etc/apt/sources.list.d/devel:kubic:libcontainers:stable:cri-o:$VERSION.list
-deb http://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable:/cri-o:/$VERSION/$OS/ /
-EOF
-
-curl -L https://download.opensuse.org/repositories/devel:kubic:libcontainers:stable:cri-o:$VERSION/$OS/Release.key | sudo apt-key --keyring /etc/apt/trusted.gpg.d/libcontainers.gpg add -
-curl -L https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/$OS/Release.key | sudo apt-key --keyring /etc/apt/trusted.gpg.d/libcontainers.gpg add -
-
-sudo apt-get update
-sudo apt-get install cri-o cri-o-runc
-```
-
-{{% /tab %}}
-
-{{% tab name="Ubuntu" %}}
-
-다음의 운영 체제에서 CRI-O를 설치하려면, 환경 변수 `OS` 를
-아래의 표에서 적절한 필드로 설정한다.
-
-| 운영 체제          | `$OS`             |
-| ---------------- | ----------------- |
-| Ubuntu 20.04     | `xUbuntu_20.04`   |
-| Ubuntu 19.10     | `xUbuntu_19.10`   |
-| Ubuntu 19.04     | `xUbuntu_19.04`   |
-| Ubuntu 18.04     | `xUbuntu_18.04`   |
-
-<br />
-그런 다음, `$VERSION` 을 사용자의 쿠버네티스 버전과 일치하는 CRI-O 버전으로 설정한다.
-예를 들어, CRI-O 1.20을 설치하려면, `VERSION=1.20` 로 설정한다.
-사용자의 설치를 특정 릴리스에 고정할 수 있다.
-버전 1.20.0을 설치하려면, `VERSION=1.20:1.20.0` 을 설정한다.
-<br />
-
-그런 다음, 아래를 실행한다.
-```shell
-cat <<EOF | sudo tee /etc/apt/sources.list.d/devel:kubic:libcontainers:stable.list
-deb https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/$OS/ /
-EOF
-cat <<EOF | sudo tee /etc/apt/sources.list.d/devel:kubic:libcontainers:stable:cri-o:$VERSION.list
-deb http://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable:/cri-o:/$VERSION/$OS/ /
-EOF
-
-curl -L https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/$OS/Release.key | sudo apt-key --keyring /etc/apt/trusted.gpg.d/libcontainers.gpg add -
-curl -L https://download.opensuse.org/repositories/devel:kubic:libcontainers:stable:cri-o:$VERSION/$OS/Release.key | sudo apt-key --keyring /etc/apt/trusted.gpg.d/libcontainers-cri-o.gpg add -
-
-apt-get update
-apt-get install cri-o cri-o-runc
-```
-{{% /tab %}}
-
-{{% tab name="CentOS" %}}
-
-다음의 운영 체제에서 CRI-O를 설치하려면, 환경 변수 `OS` 를
-아래의 표에서 적절한 필드로 설정한다.
-
-| 운영 체제          | `$OS`             |
-| ---------------- | ----------------- |
-| Centos 8         | `CentOS_8`        |
-| Centos 8 Stream  | `CentOS_8_Stream` |
-| Centos 7         | `CentOS_7`        |
-
-<br />
-그런 다음, `$VERSION` 을 사용자의 쿠버네티스 버전과 일치하는 CRI-O 버전으로 설정한다.
-예를 들어, CRI-O 1.20을 설치하려면, `VERSION=1.20` 로 설정한다.
-사용자의 설치를 특정 릴리스에 고정할 수 있다.
-버전 1.20.0을 설치하려면, `VERSION=1.20:1.20.0` 을 설정한다.
-<br />
-
-그런 다음, 아래를 실행한다.
-```shell
-sudo curl -L -o /etc/yum.repos.d/devel:kubic:libcontainers:stable.repo https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/$OS/devel:kubic:libcontainers:stable.repo
-sudo curl -L -o /etc/yum.repos.d/devel:kubic:libcontainers:stable:cri-o:$VERSION.repo https://download.opensuse.org/repositories/devel:kubic:libcontainers:stable:cri-o:$VERSION/$OS/devel:kubic:libcontainers:stable:cri-o:$VERSION.repo
-sudo yum install cri-o
-```
-
-{{% /tab %}}
-
-{{% tab name="openSUSE Tumbleweed" %}}
-
-```shell
-sudo zypper install cri-o
-```
-{{% /tab %}}
-{{% tab name="Fedora" %}}
-
-`$VERSION` 을 사용자의 쿠버네티스 버전과 일치하는 CRI-O 버전으로 설정한다.
-예를 들어, CRI-O 1.20을 설치하려면, `VERSION=1.20` 로 설정한다.
-
-사용할 수 있는 버전을 찾으려면 다음을 실행한다.
-```shell
-sudo dnf module list cri-o
-```
-CRI-O는 Fedora에서 특정 릴리스를 고정하여 설치하는 방법은 지원하지 않는다.
-
-그런 다음, 아래를 실행한다.
-```shell
-sudo dnf module enable cri-o:$VERSION
-sudo dnf install cri-o
-```
-
-{{% /tab %}}
-{{< /tabs >}}
-
-CRI-O를 시작한다.
-
-```shell
-sudo systemctl daemon-reload
-sudo systemctl enable crio --now
-```
-
-자세한 사항은 [CRI-O 설치 가이드](https://github.com/cri-o/cri-o/blob/master/install.md)를
-참고한다.
-
+CRI-O를 설치하려면, [CRI-O 설치 방법](https://github.com/cri-o/cri-o/blob/main/install.md#readme)을 따른다.
 
 #### cgroup 드라이버
 
-CRI-O는 기본적으로 systemd cgroup 드라이버를 사용한다. `cgroupfs` cgroup 드라이버로
-전환하려면, `/etc/crio/crio.conf` 를 수정하거나 `/etc/crio/crio.conf.d/02-cgroup-manager.conf` 에
-드롭-인(drop-in) 구성을 배치한다. 예를 들면, 다음과 같다.
+CRI-O는 기본적으로 systemd cgroup 드라이버를 사용하며, 이는 대부분의 경우에 잘 동작할 것이다. 
+`cgroupfs` cgroup 드라이버로 전환하려면, `/etc/crio/crio.conf` 를 수정하거나 
+`/etc/crio/crio.conf.d/02-cgroup-manager.conf` 에 드롭-인(drop-in) 구성을 배치한다. 
+예를 들면 다음과 같다.
 
 ```toml
 [crio.runtime]
@@ -357,48 +215,43 @@ cgroup_manager = "cgroupfs"
 ```
 
 또한 `cgroupfs` 와 함께 CRI-O를 사용할 때 `pod` 값으로 설정해야 하는
-변경된 `conmon_cgroup` 에 유의한다. 일반적으로 kubelet(일반적으로 kubeadm을 통해 수행됨)과
+변경된 `conmon_cgroup` 에 유의해야 한다. 일반적으로 kubelet(일반적으로 kubeadm을 통해 수행됨)과
 CRI-O의 cgroup 드라이버 구성을 동기화 상태로
 유지해야 한다.
 
-### 도커
+CRI-O의 경우, CRI 소켓은 기본적으로 `/var/run/crio/crio.sock`이다.
 
-1. 각 노드에서 [도커 엔진 설치](https://docs.docker.com/engine/install/#server)에 따라
-리눅스 배포판용 도커를 설치한다.
-이 [의존성 파일](https://git.k8s.io/kubernetes/build/dependencies.yaml)에서
-검증된 최신 버전의 도커를 찾을 수 있다.
-
-2. 특히 컨테이너의 cgroup 관리에 systemd를 사용하도록 도커 데몬을 구성한다.
-
-   ```shell
-   sudo mkdir /etc/docker
-   cat <<EOF | sudo tee /etc/docker/daemon.json
-   {
-     "exec-opts": ["native.cgroupdriver=systemd"],
-     "log-driver": "json-file",
-     "log-opts": {
-       "max-size": "100m"
-     },
-     "storage-driver": "overlay2"
-   }
-   EOF
-   ```
-
-   {{< note >}}
-   `overlay2`는 리눅스 커널 4.0 이상 또는 3.10.0-514 버전 이상을 사용하는 RHEL
-   또는 CentOS를 구동하는 시스템에서 선호하는 스토리지 드라이버이다.
-   {{< /note >}}
-
-3. 도커 재시작과 부팅시 실행되게 설정
-
-   ```shell
-   sudo systemctl enable docker
-   sudo systemctl daemon-reload
-   sudo systemctl restart docker
-   ```
+### 도커 엔진 {#docker}
 
 {{< note >}}
-더 자세한 내용은
-  - [도커 데몬 설정](https://docs.docker.com/config/daemon/)
-  - [systemd로 도커 제어](https://docs.docker.com/config/daemon/systemd/)
+아래의 지침은 
+당신이 도커 엔진과 쿠버네티스를 통합하는 데 
+[`cri-dockerd`](https://github.com/Mirantis/cri-dockerd) 어댑터를 사용하고 있다고 가정한다.
 {{< /note >}}
+
+1. 각 노드에서, [도커 엔진 설치하기](https://docs.docker.com/engine/install/#server)에 따라 
+   리눅스 배포판에 맞게 도커를 설치한다.
+
+2. [`cri-dockerd`](https://github.com/Mirantis/cri-dockerd) 소스 코드 저장소의 지침대로 
+   `cri-dockerd`를 설치한다.
+
+`cri-dockerd`의 경우, CRI 소켓은 기본적으로 `/run/cri-dockerd.sock`이다.
+
+### 미란티스 컨테이너 런타임 {#mcr}
+
+[미란티스 컨테이너 런타임](https://docs.mirantis.com/mcr/20.10/overview.html)(MCR)은 상용 컨테이너 런타임이며 
+이전에는 도커 엔터프라이즈 에디션으로 알려져 있었다.
+
+오픈소스인 [`cri-dockerd`](https://github.com/Mirantis/cri-dockerd) 컴포넌트를 이용하여 쿠버네티스에서 미란티스 컨테이너 런타임을 사용할 수 있으며, 
+이 컴포넌트는 MCR에 포함되어 있다.
+
+미란티스 컨테이너 런타임을 설치하는 방법에 대해 더 알아보려면, 
+[MCR 배포 가이드](https://docs.mirantis.com/mcr/20.10/install.html)를 참고한다.
+
+CRI 소켓의 경로를 찾으려면 
+`cri-docker.socket`라는 이름의 systemd 유닛을 확인한다.
+
+## {{% heading "whatsnext" %}}
+
+컨테이너 런타임과 더불어, 클러스터에는 
+동작하는 [네트워크 플러그인](/ko/docs/concepts/cluster-administration/networking/#쿠버네티스-네트워크-모델의-구현-방법)도 필요하다.
diff --git a/content/ko/docs/setup/production-environment/tools/kops.md b/content/ko/docs/setup/production-environment/tools/kops.md
index 3bfb49380e..d4ec7f47de 100644
--- a/content/ko/docs/setup/production-environment/tools/kops.md
+++ b/content/ko/docs/setup/production-environment/tools/kops.md
@@ -231,7 +231,7 @@ kops는 클러스터에 사용될 설정을 생성할것이다. 여기서 주의
 ## {{% heading "whatsnext" %}}
 
 
-* 쿠버네티스 [개념](/ko/docs/concepts/) 과 [`kubectl`](/ko/docs/reference/kubectl/overview/)에 대해 더 알아보기.
+* 쿠버네티스 [개념](/ko/docs/concepts/) 과 [`kubectl`](/ko/docs/reference/kubectl/)에 대해 더 알아보기.
 * 튜토리얼, 모범사례 및 고급 구성 옵션에 대한 `kops` [고급 사용법](https://kops.sigs.k8s.io/)에 대해 더 자세히 알아본다.
 * 슬랙(Slack)에서 `kops` 커뮤니티 토론을 할 수 있다: [커뮤니티 토론](https://github.com/kubernetes/kops#other-ways-to-communicate-with-the-contributors)
 * 문제를 해결하거나 이슈를 제기하여 `kops` 에 기여한다. [깃헙 이슈](https://github.com/kubernetes/kops/issues)
diff --git a/content/ko/docs/setup/production-environment/tools/kubeadm/control-plane-flags.md b/content/ko/docs/setup/production-environment/tools/kubeadm/control-plane-flags.md
index cae9a85b0a..cfba872e2a 100644
--- a/content/ko/docs/setup/production-environment/tools/kubeadm/control-plane-flags.md
+++ b/content/ko/docs/setup/production-environment/tools/kubeadm/control-plane-flags.md
@@ -1,78 +1,111 @@
 ---
-reviewers:
-title: kubeadm으로 컨트롤 플레인 사용자 정의하기
+
+
+title: kubeadm API로 컴포넌트 사용자 정의하기
 content_type: concept
 weight: 40
 ---
 
 <!-- overview -->
 
-{{< feature-state for_k8s_version="v1.12" state="stable" >}}
+이 페이지는 kubeadm이 배포하는 컴포넌트(component)들을 사용자 정의하는 방법을 다룬다. 컨트롤 플레인 컴포넌트에
+대해서는 `Cluster Configuration` 구조에서 플래그를 사용하거나 노드당 패치를 사용할 수 있다. kubelet과
+kube-proxy의 경우, `KubeletConfiguration`과 `KubeProxyConfiguration`을 각각 사용할 수 있다.
 
-kubeadm의 `ClusterConfiguration` 오브젝트는 API 서버, 컨트롤러매니저, 스케줄러와 같은 컨트롤 플레인 구성요소에 전달되는
-기본 플래그 `extraArgs` 필드를 노출한다. 이 구성요소는 다음 필드를 사용하도록 정의되어 있다.
+이 모든 옵션이 kubeadm 구성 API를 통해 가용하다.
+구성의 각 필드 상세 사항은
+[API 참조 페이지](/docs/reference/config-api/kubeadm-config.v1beta3/)에서 찾아볼 수 있다.
+
+{{< note >}}
+kubeadm의 CoreDNS 디플로이먼트 사용자 정의는 현재 제공되지 않는다.
+`kube-system/coredns` {{< glossary_tooltip text="컨피그맵" term_id="configmap" >}}을 수동으로
+패치하고, 그 이후에 CoreDNS {{< glossary_tooltip text="파드" term_id="pod" >}}를 다시 생성해야 한다. 또는,
+기본 CoreDNS 디플로이먼트를 생략하고 자체 변형(variant)을 배포할 수 있다.
+더 자세한 사항은 [kubeadm에서 초기화 단계 사용하기](/docs/reference/setup-tools/kubeadm/kubeadm-init/#init-phases)을 참고한다.
+{{< /note >}}
+
+{{< note >}}
+이미 생성된 클러스터를 다시 구성하려면 
+[kubeadm 클러스터 다시 구성하기](/docs/tasks/administer-cluster/kubeadm/kubeadm-reconfigure/)를 참고한다.
+{{< /note >}}
+
+<!-- body -->
+
+## `ClusterConfiguration`의 플래그로 컨트롤 플레인 사용자 정의하기
+
+kubeadm의 `ClusterConfiguration` 오브젝트는 API 서버, 컨트롤러매니저, 스케줄러, Etcd와 같은 컨트롤 플레인 컴포넌트에 전달되는
+기본 플래그를 사용자가 덮어쓸 수 있도록 노출한다.
+이 컴포넌트는 다음 구조체를 사용하여 정의된다.
 
 - `apiServer`
 - `controllerManager`
 - `scheduler`
+- `etcd`
 
-`extraArgs` 필드는 `key: value` 쌍으로 구성되어 있다. 컨트롤 플레인 구성요소를 위한 플래그를 대체하려면 다음을 수행한다.
+이 구조체들은 공통 필드인 `extraArgs`를 포함하며, 이 필드는 `키: 값` 쌍으로 구성된다.
+컨트롤 플레인 컴포넌트를 위한 플래그를 덮어쓰려면 다음을 수행한다.
 
-1.  사용자 구성에서 적절한 필드를 추가한다.
-2.  필드에 대체할 플래그를 추가한다.
+1.  사용자 구성에 적절한 `extraArgs` 필드를 추가한다.
+2.  `extraArgs` 필드에 플래그를 추가한다.
 3.  `kubeadm init`에 `--config <CONFIG YAML 파일>` 파라미터를 추가해서 실행한다.
 
-각 필드의 구성에서 자세한 정보를 보려면,
-[API 참고 문서](/docs/reference/config-api/kubeadm-config.v1beta2/)에서 확인해 볼 수 있다.
-
 {{< note >}}
-`kubeadm config print init-defaults`를 실행하고 원하는 파일에 출력을 저장하여 기본값인 `ClusterConfiguration` 오브젝트를 생성할 수 있다.
+`kubeadm config print init-defaults`를 실행하고 원하는 파일에 출력을
+저장하여 기본값들로 구성된 `ClusterConfiguration` 오브젝트를 생성할 수 있다.
 {{< /note >}}
 
+{{< note >}}
+`ClusterConfiguration` 오브젝트는 현재 kubeadm 클러스터에서 전역(global)으로 사용된다. 즉, 사용자가 추가하는 모든 플래그는
+다른 노드에 있는 동일한 컴포넌트에도 모두 적용될 것이다. 다른 노드에서
+컴포넌트별로 개별 구성을 적용하려면 [패치](#patches)를 사용하면 된다.
+{{< /note >}}
 
+{{< note >}}
+플래그(키)를 복제하거나 동일한 플래그 `--foo`를 여러 번 전달하는 것은 현재 지원하지 않는다.
+이 문제를 해결하려면 [패치](#patches)를 사용해야 한다.
+{{< /note >}}
 
-<!-- body -->
-
-## APIServer 플래그
+### APIServer 플래그
 
 자세한 내용은 [kube-apiserver 레퍼런스 문서](/docs/reference/command-line-tools-reference/kube-apiserver/)를 확인한다.
 
-예시:
+사용 예시:
+
 ```yaml
-apiVersion: kubeadm.k8s.io/v1beta2
+apiVersion: kubeadm.k8s.io/v1beta3
 kind: ClusterConfiguration
 kubernetesVersion: v1.16.0
 apiServer:
   extraArgs:
-    advertise-address: 192.168.0.103
     anonymous-auth: "false"
     enable-admission-plugins: AlwaysPullImages,DefaultStorageClass
     audit-log-path: /home/johndoe/audit.log
 ```
 
-## 컨트롤러매니저 플래그
+### 컨트롤러매니저 플래그
 
 자세한 내용은 [kube-controller-manager 레퍼런스 문서](/docs/reference/command-line-tools-reference/kube-controller-manager/)를 확인한다.
 
-예시:
+사용 예시:
+
 ```yaml
-apiVersion: kubeadm.k8s.io/v1beta2
+apiVersion: kubeadm.k8s.io/v1beta3
 kind: ClusterConfiguration
 kubernetesVersion: v1.16.0
 controllerManager:
   extraArgs:
     cluster-signing-key-file: /home/johndoe/keys/ca.key
-    bind-address: 0.0.0.0
     deployment-controller-sync-period: "50"
 ```
 
-## 스케줄러 플래그
+### 스케줄러 플래그
 
 자세한 내용은 [kube-scheduler 레퍼런스 문서](/docs/reference/command-line-tools-reference/kube-scheduler/)를 확인한다.
 
-예시:
+사용 예시:
+
 ```yaml
-apiVersion: kubeadm.k8s.io/v1beta2
+apiVersion: kubeadm.k8s.io/v1beta3
 kind: ClusterConfiguration
 kubernetesVersion: v1.16.0
 scheduler:
@@ -85,3 +118,94 @@ scheduler:
       readOnly: true
       pathType: "File"
 ```
+
+### Etcd 플래그
+
+자세한 사항은 [etcd 서버 문서](https://etcd.io/docs/)를 확인한다.
+
+사용 예시:
+
+```yaml
+apiVersion: kubeadm.k8s.io/v1beta3
+kind: ClusterConfiguration
+etcd:
+  local:
+    extraArgs:
+      election-timeout: 1000
+```
+
+## 패치를 통해 컨트롤 플레인 사용자 정의하기 {#patches}
+
+{{< feature-state for_k8s_version="v1.22" state="beta" >}}
+
+Kubeadm을 사용하면 패치 파일이 있는 디렉토리를 개별 노드에 대한 `InitConfiguration`과 `JoinConfiguration`에
+전달할 수 있다. 이 패치는 컨트롤 플레인 컴포넌트 메니패스트가 디스크에 기록되기 전에
+최종 사용자 정의 단계로 사용될 수 있다.
+
+`--config <YOUR CONFIG YAML>`을 사용하여 이 파일을 `kubeadm init`에 전달할 수 있다.
+
+```yaml
+apiVersion: kubeadm.k8s.io/v1beta3
+kind: InitConfiguration
+  patches:
+    directory: /home/user/somedir
+```
+
+{{< note >}}
+`kubeadm init`의 경우, `---`로 구분된 `ClusterConfiguration`과 `InitConfiguration`을 모두
+포함하는 파일을 전달할 수 있다.
+{{< /note >}}
+
+`--config <YOUR CONFIG YAML>`을 사용하여 이 파일을 `kubeadm join`에 전달할 수 있다.
+
+```yaml
+apiVersion: kubeadm.k8s.io/v1beta3
+kind: JoinConfiguration
+  patches:
+    directory: /home/user/somedir
+```
+
+디렉토리는 `target[suffix][+patchtype].extension` 형태의 파일을 포함해야 한다.
+예를 들면, `kube-apiserver0+merge.yaml` 또는 단순히 `etcd.json`의 형태이다.
+
+- `target`은 `kube-apiserver`, `kube-controller-manager`, `kube-scheduler` 그리고 `etcd` 중 하나가 될 수 있다.
+- `patchtype`은 `strategic`, `merge` 그리고 `json` 중 하나가 될 수 있으며
+[kubectl에서 지원하는](/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch) 패치 형식을 준수해야 한다.
+`patchtype`의 기본값은 `strategic`이다.
+- `extension`은 `json` 또는 `yaml` 중 하나여야 한다.
+- `suffix`는 어떤 패치가 먼저 적용되는지를 결정하는 데 사용할 수 있는 영숫자 형태의
+선택적 문자열이다.
+
+{{< note >}}
+`kubeadm upgrade`를 사용하여 kubeadm 노드를 업그레이드하는 경우, 업그레이드 이후에도
+사용자 정의를 유지하려면 동일한 패치를 다시 제공해야 한다. 이는 동일한 디렉토리로 지정된 `--patches`
+플래그를 사용하여 처리할 수 있다. `kubeadm upgrade`는 동일 목적으로 재사용할 수 있는 구성
+API 구조를 현재는 지원하지 않는다.
+{{< /note >}}
+
+## kubelet 사용자 정의하기
+
+kubelet을 사용자 정의하려면, `KubeletConfiguration`을 동일한 구성 파일 내에서 `---`로 구분된 `ClusterConfiguration`이나 `InitConfiguration` 다음에 추가하면
+된다. 그런 다음 `kubeadm init`에 해당 파일을 전달한다.
+
+{{< note >}}
+kubeadm은 클러스터의 모든 노드에 동일한 `KubeletConfiguration`을 적용한다. 노드별 설정을
+적용하려면 kubelet 플래그를 덮어쓰기(overrides)로 사용하여, `InitConfiguration` 및
+`JoinConfiguration` 모두에서 지원되는 `nodeRegistration.kubeletExtraArgs`에 전달할 수 있다.
+일부 kubelet 플래그는 더 이상 사용되지 않는다(deprecated). 따라서 사용하기 전에 [kubelet 참조 문서](/docs/reference/command-line-tools-reference/kubelet)를 통해
+상태를 확인해야 한다.
+{{< /note >}}
+
+자세한 사항은 [kubeadm을 통해 클러스터의 각 kubelet 구성하기](/docs/setup/production-environment/tools/kubeadm/kubelet-integration)에서 살펴본다.
+
+## kube-proxy 사용자 정의하기
+
+kube-proxy를 사용자 정의하려면, `KubeProxyConfiguration`을 `---`로 구분된 `ClusterConfiguration`이나 `InitConfiguration`
+다음에 두고 `kubeadm init`에 전달하면 된다.
+
+자세한 사항은 [API 참조 페이지](/docs/reference/config-api/kubeadm-config.v1beta3/)에서 살펴볼 수 있다.
+
+{{< note >}}
+kubeadm은 kube-proxy를 {{< glossary_tooltip text="데몬셋" term_id="daemonset" >}}으로 배포한다. 이것은
+`KubeProxyConfiguration`이 클러스터의 모든 kube-proxy 인스턴스에 적용된다는 것을 의미한다.
+{{< /note >}}
diff --git a/content/ko/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md b/content/ko/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md
index d102f5f587..6d11250ac8 100644
--- a/content/ko/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md
+++ b/content/ko/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md
@@ -10,11 +10,11 @@ card:
 
 <!-- overview -->
 
-<img src="/images/kubeadm-stacked-color.png" align="right" width="150px">이 페이지에서는 `kubeadm` 툴박스를 설치하는 방법을 보여준다.
+<img src="/images/kubeadm-stacked-color.png" align="right" width="150px"></img>
+이 페이지에서는 `kubeadm` 툴박스 설치 방법을 보여준다.
 이 설치 프로세스를 수행한 후 kubeadm으로 클러스터를 만드는 방법에 대한 자세한 내용은 [kubeadm을 사용하여 클러스터 생성하기](/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/) 페이지를 참고한다.
 
 
-
 ## {{% heading "prerequisites" %}}
 
 
@@ -31,6 +31,7 @@ card:
 <!-- steps -->
 
 ## MAC 주소 및 product_uuid가 모든 노드에 대해 고유한지 확인 {#verify-mac-address}
+
 * 사용자는 `ip link` 또는 `ifconfig -a` 명령을 사용하여 네트워크 인터페이스의 MAC 주소를 확인할 수 있다.
 * product_uuid는 `sudo cat /sys/class/dmi/id/product_uuid` 명령을 사용하여 확인할 수 있다.
 
@@ -65,81 +66,71 @@ sudo sysctl --system
 자세한 내용은 [네트워크 플러그인 요구 사항](/ko/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/#네트워크-플러그인-요구-사항) 페이지를 참고한다.
 
 ## 필수 포트 확인 {#check-required-ports}
+[필수 포트들](/ko/docs/reference/ports-and-protocols/)은
+쿠버네티스 컴포넌트들이 서로 통신하기 위해서 열려 있어야
+한다. 다음과 같이 netcat과 같은 도구를 이용하여 포트가 열려 있는지 확인해 볼 수 있다.
 
-### 컨트롤 플레인 노드
-
-| 프로토콜   | 방향       | 포트 범위    | 목적                      | 사용자                     |
-|----------|-----------|------------|-------------------------|---------------------------|
-| TCP      | 인바운드    | 6443\*      | 쿠버네티스 API 서버         | 모두                       |
-| TCP      | 인바운드    | 2379-2380  | etcd 서버 클라이언트 API    | kube-apiserver, etcd      |
-| TCP      | 인바운드    | 10250      | kubelet API             | 자체, 컨트롤 플레인          |
-| TCP      | 인바운드    | 10251      | kube-scheduler          | 자체                      |
-| TCP      | 인바운드    | 10252      | kube-controller-manager | 자체                      |
-
-### 워커 노드
-
-| 프로토콜   | 방향       | 포트 범위      | 목적                   | 사용자                   |
-|----------|-----------|-------------|-----------------------|-------------------------|
-| TCP      | 인바운드    | 10250       | kubelet API           | 자체, 컨트롤 플레인        |
-| TCP      | 인바운드    | 30000-32767 | NodePort 서비스†        | 모두                     |
-
-† [NodePort 서비스](/ko/docs/concepts/services-networking/service/)의 기본 포트 범위.
-
-*로 표시된 모든 포트 번호는 재정의할 수 있으므로, 사용자 지정 포트도
-열려 있는지 확인해야 한다.
-
-etcd 포트가 컨트롤 플레인 노드에 포함되어 있지만, 외부 또는 사용자 지정 포트에서
-자체 etcd 클러스터를 호스팅할 수도 있다.
+```shell
+nc 127.0.0.1 6443
+```
 
 사용자가 사용하는 파드 네트워크 플러그인(아래 참조)은 특정 포트를 열어야 할 수도
 있다. 이것은 각 파드 네트워크 플러그인마다 다르므로, 필요한 포트에 대한
 플러그인 문서를 참고한다.
 
-## 런타임 설치 {#installing-runtime}
+## 컨테이너 런타임 설치 {#installing-runtime}
 
 파드에서 컨테이너를 실행하기 위해, 쿠버네티스는
 {{< glossary_tooltip term_id="container-runtime" text="컨테이너 런타임" >}}을 사용한다.
 
-{{< tabs name="container_runtime" >}}
-{{% tab name="리눅스 노드" %}}
-
 기본적으로, 쿠버네티스는
 {{< glossary_tooltip term_id="cri" text="컨테이너 런타임 인터페이스">}}(CRI)를
 사용하여 사용자가 선택한 컨테이너 런타임과 인터페이스한다.
 
-런타임을 지정하지 않으면, kubeadm은 잘 알려진 유닉스 도메인 소켓 목록을 검색하여
+런타임을 지정하지 않으면, kubeadm은 잘 알려진 엔드포인트를 스캐닝하여 
 설치된 컨테이너 런타임을 자동으로 감지하려고 한다.
-다음 표에는 컨테이너 런타임 및 관련 소켓 경로가 나열되어 있다.
 
-{{< table caption = "컨테이너 런타임과 소켓 경로" >}}
-| 런타임       | 유닉스 도메인 소켓 경로                |
-|------------|-----------------------------------|
-| 도커        | `/var/run/dockershim.sock`            |
-| containerd | `/run/containerd/containerd.sock` |
-| CRI-O      | `/var/run/crio/crio.sock`         |
+컨테이너 런타임이 여러 개 감지되거나 하나도 감지되지 않은 경우, 
+kubeadm은 에러를 반환하고 사용자가 어떤 것을 사용할지를 명시하도록 요청할 것이다.
+
+더 많은 정보는 
+[컨테이너 런타임](/ko/docs/setup/production-environment/container-runtimes/)을 참고한다.
+
+{{< note >}}
+도커 엔진은 컨테이너 런타임이 쿠버네티스와 호환되기 위한 요구 사항인 
+[CRI](/ko/docs/concepts/architecture/cri/)를 만족하지 않는다. 
+이러한 이유로, 추가 서비스인 [cri-dockerd](https://github.com/Mirantis/cri-dockerd)가 설치되어야 한다. 
+cri-dockerd는 쿠버네티스 버전 1.24부터 kubelet에서 [제거](/dockershim/)된 
+기존 내장 도커 엔진 지원을 기반으로 한 프로젝트이다.
+{{< /note >}}
+
+아래 표는 지원 운영 체제에 대한 알려진 엔드포인트를 담고 있다.
+
+{{< tabs name="container_runtime" >}}
+{{% tab name="리눅스" %}}
+
+{{< table >}}
+| 런타임                            | 유닉스 도메인 소켓 경로                   |
+|------------------------------------|----------------------------------------------|
+| containerd                         | `unix:///var/run/containerd/containerd.sock` |
+| CRI-O                              | `unix:///var/run/crio/crio.sock`             |
+| 도커 엔진 (cri-dockerd 사용)  | `unix:///var/run/cri-dockerd.sock`           |
 {{< /table >}}
 
-<br />
-도커와 containerd가 모두 감지되면 도커가 우선시된다. 이것이 필요한 이유는 도커 18.09에서
-도커만 설치한 경우에도 containerd와 함께 제공되므로 둘 다 감지될 수 있기
-때문이다.
-다른 두 개 이상의 런타임이 감지되면, kubeadm은 오류와 함께 종료된다.
-
-kubelet은 빌트인 `dockershim` CRI 구현을 통해 도커와 통합된다.
-
-자세한 내용은 [컨테이너 런타임](/ko/docs/setup/production-environment/container-runtimes/)을
-참고한다.
 {{% /tab %}}
-{{% tab name="다른 운영 체제" %}}
-기본적으로, kubeadm은 컨테이너 런타임으로 {{< glossary_tooltip term_id="docker" >}}를 사용한다.
-kubelet은 빌트인 `dockershim` CRI 구현을 통해 도커와 통합된다.
 
-자세한 내용은 [컨테이너 런타임](/ko/docs/setup/production-environment/container-runtimes/)을
-참고한다.
+{{% tab name="윈도우" %}}
+
+{{< table >}}
+| 런타임                            | 윈도우 네임드 파이프(named pipe) 경로                   |
+|------------------------------------|----------------------------------------------|
+| containerd                         | `npipe:////./pipe/containerd-containerd`     |
+| 도커 엔진 (cri-dockerd 사용)  | `npipe:////./pipe/cri-dockerd`               |
+{{< /table >}}
+
 {{% /tab %}}
 {{< /tabs >}}
 
-
 ## kubeadm, kubelet 및 kubectl 설치
 
 모든 머신에 다음 패키지들을 설치한다.
@@ -233,14 +224,19 @@ sudo systemctl enable --now kubelet
 
   - 구성 방법을 알고 있는 경우 SELinux를 활성화된 상태로 둘 수 있지만 kubeadm에서 지원하지 않는 설정이 필요할 수 있다.
 
+  - 사용 중인 레드햇 배포판이 `basearch`를 해석하지 못하여 `baseurl`이 실패하면, `\$basearch`를 당신의 컴퓨터의 아키텍처로 치환한다.
+    `uname -m` 명령을 실행하여 해당 값을 확인한다.
+    예를 들어, `x86_64`에 대한 `baseurl` URL은 `https://packages.cloud.google.com/yum/repos/kubernetes-el7-x86_64` 이다.
+
 {{% /tab %}}
 {{% tab name="패키지 매니저를 사용하지 않는 경우" %}}
 CNI 플러그인 설치(대부분의 파드 네트워크에 필요)
 
 ```bash
 CNI_VERSION="v0.8.2"
+ARCH="amd64"
 sudo mkdir -p /opt/cni/bin
-curl -L "https://github.com/containernetworking/plugins/releases/download/${CNI_VERSION}/cni-plugins-linux-amd64-${CNI_VERSION}.tgz" | sudo tar -C /opt/cni/bin -xz
+curl -L "https://github.com/containernetworking/plugins/releases/download/${CNI_VERSION}/cni-plugins-linux-${ARCH}-${CNI_VERSION}.tgz" | sudo tar -C /opt/cni/bin -xz
 ```
 
 명령어 파일을 다운로드할 디렉터리 정의
@@ -258,16 +254,18 @@ sudo mkdir -p $DOWNLOAD_DIR
 crictl 설치(kubeadm / Kubelet 컨테이너 런타임 인터페이스(CRI)에 필요)
 
 ```bash
-CRICTL_VERSION="v1.17.0"
-curl -L "https://github.com/kubernetes-sigs/cri-tools/releases/download/${CRICTL_VERSION}/crictl-${CRICTL_VERSION}-linux-amd64.tar.gz" | sudo tar -C $DOWNLOAD_DIR -xz
+CRICTL_VERSION="v1.22.0"
+ARCH="amd64"
+curl -L "https://github.com/kubernetes-sigs/cri-tools/releases/download/${CRICTL_VERSION}/crictl-${CRICTL_VERSION}-linux-${ARCH}.tar.gz" | sudo tar -C $DOWNLOAD_DIR -xz
 ```
 
 `kubeadm`, `kubelet`, `kubectl` 설치 및 `kubelet` systemd 서비스 추가
 
 ```bash
 RELEASE="$(curl -sSL https://dl.k8s.io/release/stable.txt)"
+ARCH="amd64"
 cd $DOWNLOAD_DIR
-sudo curl -L --remote-name-all https://storage.googleapis.com/kubernetes-release/release/${RELEASE}/bin/linux/amd64/{kubeadm,kubelet,kubectl}
+sudo curl -L --remote-name-all https://storage.googleapis.com/kubernetes-release/release/${RELEASE}/bin/linux/${ARCH}/{kubeadm,kubelet,kubectl}
 sudo chmod +x {kubeadm,kubelet,kubectl}
 
 RELEASE_VERSION="v0.4.0"
diff --git a/content/ko/docs/setup/production-environment/tools/kubespray.md b/content/ko/docs/setup/production-environment/tools/kubespray.md
index 6e7d9c8185..16cae936fa 100644
--- a/content/ko/docs/setup/production-environment/tools/kubespray.md
+++ b/content/ko/docs/setup/production-environment/tools/kubespray.md
@@ -13,10 +13,10 @@ Kubespray는 [Ansible](https://docs.ansible.com/) 플레이북, [인벤토리](h
 * 고가용성을 지닌 클러스터
 * 구성할 수 있는 속성들
 * 대부분의 인기있는 리눅스 배포판들에 대한 지원
-    * Ubuntu 16.04, 18.04, 20.04
+    * Ubuntu 16.04, 18.04, 20.04, 22.04
     * CentOS/RHEL/Oracle Linux 7, 8
     * Debian Buster, Jessie, Stretch, Wheezy
-    * Fedora 31, 32
+    * Fedora 34, 35
     * Fedora CoreOS
     * openSUSE Leap 15
     * Flatcar Container Linux by Kinvolk
@@ -33,13 +33,13 @@ Kubespray는 [Ansible](https://docs.ansible.com/) 플레이북, [인벤토리](h
 
 언더레이(underlay) [요건](https://github.com/kubernetes-sigs/kubespray#requirements)을 만족하는 프로비전 한다.
 
-* **Ansible의 명령어를 실행하기 위해 Ansible v 2.9와 Python netaddr 라이브러리가 머신에 설치되어 있어야 한다**
+* **Ansible의 명령어를 실행하기 위해 Ansible v 2.11와 Python netaddr 라이브러리가 머신에 설치되어 있어야 한다**
 * **Ansible 플레이북을 실행하기 위해 2.11 (혹은 그 이상) 버전의 Jinja가 필요하다**
 * 타겟 서버들은 docker 이미지를 풀(pull) 하기 위해 반드시 인터넷에 접속할 수 있어야 한다. 아니라면, 추가적인 설정을 해야 한다 ([오프라인 환경 확인하기](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/offline-environment.md))
 * 타겟 서버들의 **IPv4 포워딩**이 활성화되어야 한다
 * **SSH 키**가 인벤토리의 모든 서버들에 복사되어야 한다
-* **방화벽은 관리되지 않는다**. 사용자가 예전 방식대로 고유한 규칙을 구현해야 한다. 디플로이먼트 과정에서의 문제를 방지하려면 방화벽을 비활성화해야 한다
-* 만약 kubespray가 루트가 아닌 사용자 계정에서 실행되었다면, 타겟 서버에서 알맞은 권한 확대 방법이 설정되어야 한다. 그 뒤 `ansible_become` 플래그나 커맨드 파라미터들, `--become` 또는 `-b` 가 명시되어야 한다
+* **방화벽은 kubespray에 의해 관리되지 않는다**. 사용자는 필요에 따라 적절한 규칙을 구현해야 한다. 디플로이먼트 과정에서의 문제를 방지하려면 방화벽을 비활성화해야 한다
+* 만약 kubespray가 루트가 아닌 사용자 계정에서 실행되었다면, 타겟 서버에서 알맞은 권한 확대 방법이 설정되어야 하며, `ansible_become` 플래그나 커맨드 파라미터들, `--become` 또는 `-b` 가 명시되어야 한다
 
 Kubespray는 환경에 맞는 프로비저닝을 돕기 위해 아래와 같은 서비스를 제공한다:
 
diff --git a/content/ko/docs/setup/production-environment/windows/intro-windows-in-kubernetes.md b/content/ko/docs/setup/production-environment/windows/intro-windows-in-kubernetes.md
index 67db901778..18234f97aa 100644
--- a/content/ko/docs/setup/production-environment/windows/intro-windows-in-kubernetes.md
+++ b/content/ko/docs/setup/production-environment/windows/intro-windows-in-kubernetes.md
@@ -1,16 +1,24 @@
 ---
-title: 쿠버네티스의 윈도우 지원 소개
+
+
+
+
+
+title: 쿠버네티스에서 윈도우 컨테이너
 content_type: concept
 weight: 65
-
-
-
-
-
 ---
 
 <!-- overview -->
 
+{{< note >}}
+본 문서의 영어 원문([Windows containers in Kubernetes](/docs/setup/production-environment/windows/intro-windows-in-kubernetes/))은 변경되었습니다.
+
+최신 내용은 원문을 통해 확인하시기 바랍니다.
+
+본 문서에 대한 갱신은 기여를 통해 진행되며, 갱신이 완료되면 해당 알림은 제거됩니다.
+{{< /note >}}
+
 윈도우 애플리케이션은 많은 조직에서 실행되는 서비스 및
 애플리케이션의 상당 부분을 구성한다.
 [윈도우 컨테이너](https://aka.ms/windowscontainers)는 프로세스와 패키지 종속성을
@@ -67,10 +75,9 @@ weight: 65
 
 | 쿠버네티스 버전 | 윈도우 서버 LTSC 릴리스 | 윈도우 서버 SAC 릴리스 |
 | --- | --- | --- | --- |
-| *Kubernetes v1.19* | Windows Server 2019 | Windows Server ver 1909, Windows Server ver 2004 |
 | *Kubernetes v1.20* | Windows Server 2019 | Windows Server ver 1909, Windows Server ver 2004 |
 | *Kubernetes v1.21* | Windows Server 2019 | Windows Server ver 2004, Windows Server ver 20H2 |
-
+| *Kubernetes v1.22* | Windows Server 2019 | Windows Server ver 2004, Windows Server ver 20H2 |
 
 지원 모델을 포함한 다양한 윈도우 서버
 서비스 채널에 대한 정보는
@@ -98,12 +105,16 @@ weight: 65
 일단 쿠버네티스에서 Hyper-V 격리가 포함된 윈도우 컨테이너를 지원하면,
 제한 및 호환성 규칙이 변경될 것이다.
 
-#### 퍼즈(Pause) 이미지
+#### 퍼즈(Pause) 이미지 {#pause-image}
 
-Microsoft는 `mcr.microsoft.com/oss/kubernetes/pause:3.4.1`에서
-윈도우 퍼즈 인프라 컨테이너를 유지한다.
-이외에도 `k8s.gcr.io/pause:3.5`를 통해 쿠버네티스에서 관리하는 다중 아키텍처 이미지를
-사용할 수도 있는데, 이 이미지는 리눅스와 윈도우를 모두 지원한다.
+쿠버네티스는 윈도우 지원을 포함하는 다중 아키텍처 이미지를 유지보수한다.
+쿠버네티스 v1.22의 경우 권장 퍼즈 이미지는 `k8s.gcr.io/pause:3.5`이다.
+[소스 코드](https://github.com/kubernetes/kubernetes/tree/master/build/pause)는 
+GitHub에서 찾을 수 있다.
+
+Microsoft는 리눅스, 윈도우 amd64를 지원하는 다중 아키텍처 이미지를 `mcr.microsoft.com/oss/kubernetes/pause:3.5`에서 유지보수하고 있다.
+이 이미지는 쿠버네티스가 유지 관리하는 이미지와 동일한 소스코드에서 생성되었지만, 모든 윈도우 바이너리는 Microsoft에 의해 서명된 [인증 코드](https://docs.microsoft.com/en-us/windows-hardware/drivers/install/authenticode)이다.
+프로덕션 환경에서 서명된 바이너리가 필요한 경우, Microsoft가 유지 관리하는 이미지를 사용하는 것을 권장한다.
 
 #### 컴퓨트
 
@@ -237,7 +248,7 @@ powershell 스크립트로 배포된 다음의 FlexVolume
 
 ##### CSI 플러그인
 
-{{< feature-state for_k8s_version="v1.19" state="beta" >}}
+{{< feature-state for_k8s_version="v1.22" state="stable" >}}
 
 {{< glossary_tooltip text="CSI" term_id="csi" >}} 플러그인과
 관련된 코드는 일반적으로 컨테이너 이미지로 배포되고 데몬셋(DaemonSets)
@@ -246,9 +257,7 @@ powershell 스크립트로 배포된 다음의 FlexVolume
 바이너리로 제공된다. CSI 플러그인은 쿠버네티스에서 볼륨 프로비저닝/디-프로비저닝, 볼륨
 크기 조정, 쿠버네티스 노드에 볼륨 연결/분리, 파드의 개별 컨테이너에 볼륨
 마운트/분리, 스냅샷 및 복제를 사용하여 퍼시스턴트 데이터 백업/복원과 같은
-다양한 볼륨 관리 작업을 처리한다. CSI 플러그인은
-일반적으로 (각 노드에서 데몬셋으로 실행되는) 노드 플러그인과 컨트롤러
-플러그인으로 구성된다.
+다양한 볼륨 관리 작업을 처리한다.
 
 CSI 노드 플러그인(특히 블록 디바이스 또는 공유 파일시스템으로 노출된
 퍼시스턴트 볼륨과 관련된 플러그인)은 디스크 장치 스캔, 파일 시스템 마운트 등과 같은
@@ -262,6 +271,13 @@ CSI 노드 플러그인에 대한 특권이 필요한 작업은 커뮤니티에
 내용은 배포하려는 CSI 플러그인의 배포 가이드를
 참조한다.
 
+윈도우 노드에서 CSI 노드 플러그인은 일반적으로 로컬 스토리지 작업을 처리하는 
+커뮤니티에서 관리하는 [csi-proxy](https://github.com/kubernetes-csi/csi-proxy)에 의해 노출된 API를 호출한다.
+
+설치에 대한 자세한 내용은 윈도우 CSI 플러그인을 
+배포할 환경의 배포 가이드를 참고한다.
+또한 다음 [설치 단계](https://github.com/kubernetes-csi/csi-proxy#installation)를 참고할 수도 있다.
+
 #### 네트워킹
 
 윈도우 컨테이너용 네트워킹은
@@ -686,7 +702,7 @@ kubelet 파라미터 `--kubelet-reserve` 를 사용하여 CPU 사용량을
 * 시크릿에 대한 하위 경로 볼륨 마운트
 * 호스트 마운트 프로젝션
 * DefaultMode(UID/GID 종속성에 기인함)
-* 읽기 전용 루트 파일시스템. 매핑된 볼륨은 여전히 ​​읽기 전용을 지원한다.
+* 읽기 전용 루트 파일시스템. 매핑된 볼륨은 여전히 읽기 전용을 지원한다.
 * 블록 디바이스 매핑
 * 저장 매체로서의 메모리
 * uui/guid, 사용자별 리눅스 파일시스템 권한과 같은 파일시스템 기능
@@ -747,7 +763,7 @@ DNS, 라우트, 메트릭과 같은 많은 구성은 리눅스에서와 같이 /
     파드에서 외부 인터넷으로의 통신)은 치환될 수 없으므로
     소스로 다시 라우팅되지 않는다.
 
-  * TCP/UDP 패킷은 여전히 ​​치환될 수 있기 때문에
+  * TCP/UDP 패킷은 여전히 치환될 수 있기 때문에
     `ping <destination>`을 `curl <destination>`으로 대체하여
     외부와의 연결을 디버깅할 수 있다.
 
@@ -814,7 +830,7 @@ DNS, 라우트, 메트릭과 같은 많은 구성은 리눅스에서와 같이 /
 [RunAsUsername](/ko/docs/tasks/configure-pod-container/configure-runasusername/)은
 컨테이너 프로세스를 노드 기본 사용자로 실행하기 위해 윈도우 파드 또는
 컨테이너에 지정할 수 있다. 이것은
-[RunAsUser](/ko/docs/concepts/policy/pod-security-policy/#사용자-및-그룹)와 거의 동일하다.
+[RunAsUser](/ko/docs/concepts/security/pod-security-policy/#사용자-및-그룹)와 거의 동일하다.
 
 SELinux, AppArmor, Seccomp, 기능(POSIX 기능)과 같은
 리눅스 특유의 파드 시큐리티 컨텍스트 권한은 지원하지 않는다.
@@ -981,8 +997,8 @@ PodSecurityContext 필드는 윈도우에서 작동하지 않는다. 참조를 
 ## 도움 받기 및 트러블슈팅 {#troubleshooting}
 
 쿠버네티스 클러스터 트러블슈팅을 위한 기본
-도움말은 이
-[섹션](/docs/tasks/debug-application-cluster/troubleshooting/)에서 먼저 찾아야 한다. 이
+도움말은 
+[이 섹션](/ko/docs/tasks/debug/debug-cluster/)에서 먼저 찾아야 한다. 이
 섹션에는 몇 가지 추가 윈도우 관련 트러블슈팅 도움말이 포함되어 있다.
 로그는 쿠버네티스에서 트러블슈팅하는데 중요한 요소이다. 다른
 기여자로부터 트러블슈팅 지원을 구할 때마다 이를 포함해야
@@ -1068,9 +1084,8 @@ PodSecurityContext 필드는 윈도우에서 작동하지 않는다. 참조를 
     kubelet.exe를 등록한다.
 
     ```powershell
-    # Microsoft는 mcr.microsoft.com/oss/kubernetes/pause:1.4.1에서 pause 인프라 컨테이너를 릴리스했다.
     nssm install kubelet C:\k\kubelet.exe
-    nssm set kubelet AppParameters --hostname-override=<hostname> --v=6 --pod-infra-container-image=mcr.microsoft.com/oss/kubernetes/pause:1.4.1 --resolv-conf="" --allow-privileged=true --enable-debugging-handlers --cluster-dns=<DNS-service-IP> --cluster-domain=cluster.local --kubeconfig=c:\k\config --hairpin-mode=promiscuous-bridge --image-pull-progress-deadline=20m --cgroups-per-qos=false  --log-dir=<log directory> --logtostderr=false --enforce-node-allocatable="" --network-plugin=cni --cni-bin-dir=c:\k\cni --cni-conf-dir=c:\k\cni\config
+    nssm set kubelet AppParameters --hostname-override=<hostname> --v=6 --pod-infra-container-image=k8s.gcr.io/pause:3.5 --resolv-conf="" --allow-privileged=true --enable-debugging-handlers --cluster-dns=<DNS-service-IP> --cluster-domain=cluster.local --kubeconfig=c:\k\config --hairpin-mode=promiscuous-bridge --image-pull-progress-deadline=20m --cgroups-per-qos=false  --log-dir=<log directory> --logtostderr=false --enforce-node-allocatable="" --network-plugin=cni --cni-bin-dir=c:\k\cni --cni-conf-dir=c:\k\cni\config
     nssm set kubelet AppDirectory C:\k
     nssm start kubelet
     ```
@@ -1224,13 +1239,13 @@ PodSecurityContext 필드는 윈도우에서 작동하지 않는다. 참조를 
 
 * 내 파드가 "Container Creating"에서 멈췄거나 계속해서 다시 시작된다.
 
-  pause 이미지가 OS 버전과 호환되는지 확인한다.
+  퍼즈 이미지가 OS 버전과 호환되는지 확인한다.
   [지침](https://docs.microsoft.com/en-us/virtualization/windowscontainers/kubernetes/deploying-resources)에서는
   OS와 컨테이너가 모두 버전 1803이라고 가정한다. 이후 버전의
   윈도우가 있는 경우, Insider 빌드와 같이 그에 따라 이미지를
   조정해야 한다. 이미지는 Microsoft의
   [도커 리포지터리](https://hub.docker.com/u/microsoft/)를 참조한다.
-  그럼에도 불구하고, pause 이미지 Dockerfile과 샘플 서비스는 이미지가
+  그럼에도 불구하고, 퍼즈 이미지 Dockerfile과 샘플 서비스는 이미지가
   :latest로 태그될 것으로 예상한다.
 
 * DNS 확인(resolution)이 제대로 작동하지 않는다.
@@ -1239,12 +1254,18 @@ PodSecurityContext 필드는 윈도우에서 작동하지 않는다. 참조를 
 
 * `kubectl port-forward`가 "unable to do port forwarding: wincat not found"로 실패한다.
 
-  이는 쿠버네티스 1.15 및 pause 인프라 컨테이너
+  이는 쿠버네티스 1.15 및 퍼즈 인프라 컨테이너
   `mcr.microsoft.com/oss/kubernetes/pause:1.4.1`에서 구현되었다.
-  해당 버전 또는 최신 버전을 사용해야 한다. 자체 pause
+  해당 버전 또는 최신 버전을 사용해야 한다. 자체 퍼즈
   인프라 컨테이너를 빌드하려면
   [wincat](https://github.com/kubernetes-sigs/sig-windows-tools/tree/master/cmd/wincat)을 포함해야 한다.
 
+  윈도우에서 포트 포워딩을 지원하려면 [퍼즈 인프라 컨테이너](#pause-image)를 이용하기 위해서 
+  wincat.exe가 필요하다. 
+  윈도우 OS 버전과 호환되는 지원되는 이미지를 사용하고 있는지 확인해야 한다.
+  자신만의 퍼즈 인프라 컨테이너를 구축하려면 
+  [wincat](https://github.com/kubernetes/kubernetes/tree/master/build/pause/windows/wincat)을 포함해야 한다.
+
 * 내 윈도우 서버 노드가 프록시 뒤에 있기 때문에 내 쿠버네티스
   설치가 실패한다.
 
@@ -1256,20 +1277,18 @@ PodSecurityContext 필드는 윈도우에서 작동하지 않는다. 참조를 
   [Environment]::SetEnvironmentVariable("HTTPS_PROXY", "http://proxy.example.com:443/", [EnvironmentVariableTarget]::Machine)
   ```
 
-* `pause` 컨테이너란 무엇인가?
+* 퍼즈(`pause`) 컨테이너란 무엇인가?
 
   쿠버네티스 파드에서는 컨테이너 엔드포인트를 호스팅하기 위해
-  먼저 인프라 또는 "pause" 컨테이너가 생성된다. 인프라 및 워커 컨테이너를 포함하여
+  먼저 인프라 또는 "퍼즈" 컨테이너가 생성된다. 인프라 및 워커 컨테이너를 포함하여
   동일한 파드에 속하는 컨테이너는 공통 네트워크 네임스페이스 및
   엔드포인트(동일한 IP 및 포트 공간)를 공유한다. 네트워크 구성을 잃지 않고
-  워커 컨테이너가 충돌하거나 다시 시작되도록 하려면 pause 컨테이너가
+  워커 컨테이너가 충돌하거나 다시 시작되도록 하려면 퍼즈 컨테이너가
   필요하다.
 
-  "pause" (인프라) 이미지는 Microsoft Container Registry(MCR)에서
-  호스팅된다. `mcr.microsoft.com/oss/kubernetes/pause:1.4.1`을 사용하여 접근할 수 있다.
-  자세한 내용은
-  [DOCKERFILE](https://github.com/kubernetes-sigs/windows-testing/blob/master/images/pause/Dockerfile)을 참고한다.
-
+  퍼즈 이미지 추천 버전을 찾기 위해서는 
+  [퍼즈 이미지](#pause-image)를 참고한다.
+  
 ### 추가 조사
 
 이러한 단계로 문제가 해결되지 않으면, 다음을 통해 쿠버네티스의 윈도우 노드에서
diff --git a/content/ko/docs/setup/production-environment/windows/user-guide-windows-containers.md b/content/ko/docs/setup/production-environment/windows/user-guide-windows-containers.md
index 5c3d52e475..eeeb6bc09b 100644
--- a/content/ko/docs/setup/production-environment/windows/user-guide-windows-containers.md
+++ b/content/ko/docs/setup/production-environment/windows/user-guide-windows-containers.md
@@ -1,4 +1,9 @@
 ---
+
+
+
+
+
 title: 쿠버네티스에서 윈도우 컨테이너 스케줄링을 위한 가이드
 content_type: concept
 weight: 75
@@ -20,11 +25,11 @@ weight: 75
 
 ## 시작하기 전에
 
-* [윈도우 서버에서 운영하는 마스터와 워커 노드](/ko/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes)를
-포함한 쿠버네티스 클러스터를 생성한다.
+* 컨트롤 플레인과 [윈도우 서버로 운영되는 워커 노드](/ko/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes/)를
+포함하는 쿠버네티스 클러스터를 생성한다.
 * 쿠버네티스에서 서비스와 워크로드를 생성하고 배포하는 것은 리눅스나 윈도우 컨테이너
 모두 비슷한 방식이라는 것이 중요하다.
-[Kubectl 커맨드](/ko/docs/reference/kubectl/overview/)로 클러스터에 접속하는 것은 동일하다.
+[Kubectl 커맨드](/ko/docs/reference/kubectl/)로 클러스터에 접속하는 것은 동일하다.
 아래 단원의 예시를 통해 윈도우 컨테이너와 좀 더 빨리 친숙해질 수 있다.
 
 ## 시작하기: 윈도우 컨테이너 배포하기
@@ -100,15 +105,15 @@ spec:
 1. 이 디플로이먼트가 성공적인지 확인한다. 다음을 검토하자.
 
     * 윈도우 노드에 파드당 두 컨테이너가 존재하는지 확인하려면, `docker ps`를 사용한다.
-    * 리눅스 마스터에서 나열된 두 파드가 존재하는지 확인하려면, `kubectl get pods`를 사용한다.
-    * 네트워크를 통한 노드에서 파드로의 통신이 되는지 확인하려면, 리눅스 마스터에서 `curl`을
+    * 리눅스 컨트롤 플레인 노드에서 나열된 두 파드가 존재하는지 확인하려면, `kubectl get pods`를 사용한다.
+    * 네트워크를 통한 노드에서 파드로의 통신이 되는지 확인하려면, 리눅스 컨트롤 플레인 노드에서 `curl`을
       파드 IP 주소의 80 포트로 실행하여 웹 서버 응답을 확인한다.
     * 파드 간 통신이 되는지 확인하려면, `docker exec` 나 `kubectl exec`를 이용해 파드 간에
       핑(ping)한다(윈도우 노드가 2대 이상이라면, 서로 다른 노드에 있는 파드 간 통신도 확인할 수 있다).
-    * 서비스에서 파드로의 통신이 되는지 확인하려면, 리눅스 마스터와 독립 파드에서 `curl`을 가상 서비스
+    * 서비스에서 파드로의 통신이 되는지 확인하려면, 리눅스 컨트롤 플레인 노드와 독립 파드에서 `curl`을 가상 서비스
       IP 주소(`kubectl get services`로 볼 수 있는)로 실행한다.
     * 서비스 검색(discovery)이 되는지 확인하려면, 쿠버네티스 [기본 DNS 접미사](/ko/docs/concepts/services-networking/dns-pod-service/#서비스)와 서비스 이름으로 `curl`을 실행한다.
-    * 인바운드 연결이 되는지 확인하려면, 클러스터 외부 장비나 리눅스 마스터에서 NodePort로 `curl`을 실행한다.
+    * 인바운드 연결이 되는지 확인하려면, 클러스터 외부 장비나 리눅스 컨트롤 플레인 노드에서 NodePort로 `curl`을 실행한다.
     * 아웃바운드 연결이 되는지 확인하려면, `kubectl exec`를 이용해서 파드에서 외부 IP 주소로 `curl`을 실행한다.
 
 {{< note >}}
@@ -147,7 +152,7 @@ LogMonitor가 로그를 STDOUT으로 푸시할 수 있도록 필요한 엔트리
 그룹 매니지드 서비스 어카운트는 액티브 디렉터리 어카운트의 특정한 종류로 자동 암호 관리 기능,
 단순화된 서비스 주체 이름(SPN, simplified service principal name), 여러 서버의 다른 관리자에게 관리를 위임하는 기능을 제공한다.
 GMSA로 구성한 컨테이너는 GMSA로 구성된 신원을 들고 있는 동안 외부 액티브 디렉터리 도메인 리소스를 접근할 수 있다.
-윈도우 컨테이너를 위한 GMSA를 이용하고 구성하는 방법은 [여기](/docs/tasks/configure-pod-container/configure-gmsa/)에서 알아보자.
+윈도우 컨테이너를 위한 GMSA를 이용하고 구성하는 방법은 [여기](/ko/docs/tasks/configure-pod-container/configure-gmsa/)에서 알아보자.
 
 ## 테인트(Taint)와 톨러레이션(Toleration)
 
@@ -156,6 +161,27 @@ GMSA로 구성한 컨테이너는 GMSA로 구성된 신원을 들고 있는 동
 이것은 윈도우 사용자에게만 부담을 줄 것으로 보인다. 아래는 권장되는 방식의 개요인데,
 이것의 주요 목표 중에 하나는 이 방식이 기존 리눅스 워크로드와 호환되어야 한다는 것이다.
 
+
+`IdentifyPodOS` [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)가 활성화되어 있으면, 
+파드의 컨테이너가 어떤 운영 체제용인지를 파드의 `.spec.os.name`에 설정할 수 있다(그리고 설정해야 한다). 
+리눅스 컨테이너를 실행하는 파드에는 `.spec.os.name`을 `linux`로 설정한다. 
+윈도우 컨테이너를 실행하는 파드에는 `.spec.os.name`을 
+`windows`로 설정한다.
+
+{{< note >}}
+1.24부터, `IdentifyPodOS` 기능은 베타 단계이며 기본적으로 활성화되어 있다.
+{{< /note >}}
+
+스케줄러는 파드를 노드에 할당할 때 
+`.spec.os.name` 필드의 값을 사용하지 않는다. 
+컨트롤 플레인이 파드를 적절한 운영 체제가 실행되고 있는 노드에 배치하도록 하려면, 
+[파드를 노드에 할당](/ko/docs/concepts/scheduling-eviction/assign-pod-node/)하는 
+일반적인 쿠버네티스 메카니즘을 사용해야 한다. 
+
+`.spec.os.name` 필드는 윈도우 파드의 스케줄링에는 영향을 미치지 않기 때문에, 
+윈도우 파드가 적절한 윈도우 노드에 할당되도록 하려면 테인트, 
+톨러레이션 및 노드 셀렉터가 여전히 필요하다.
+
 ### 특정 OS 워크로드를 적절한 컨테이너 호스트에서 처리하도록 보장하기
 
 사용자는 테인트와 톨러레이션을 이용하여 윈도우 컨테이너가 적절한 호스트에서 스케줄링되기를 보장할 수 있다.
@@ -178,8 +204,8 @@ GMSA로 구성한 컨테이너는 GMSA로 구성된 신원을 들고 있는 동
 예를 들면,  `--register-with-taints='os=windows:NoSchedule'`
 
 모든 윈도우 노드에 테인트를 추가하여 아무 것도 거기에 스케줄링하지 않게 될 것이다(존재하는 리눅스 파드를 포함하여).
-윈도우 파드가 윈도우 노드에 스케줄링되려면,
-윈도우를 선택하기 위한 노드 셀렉터 및 적합하게 일치하는 톨러레이션이 모두 필요하다.
+윈도우 파드가 윈도우 노드에 스케줄링되도록 하려면,
+윈도우 노드가 선택되도록 하기 위한 노드 셀렉터 및 적합하게 일치하는 톨러레이션이 모두 필요하다.
 
 ```yaml
 nodeSelector:
@@ -290,4 +316,4 @@ spec:
 
 
 
-[RuntimeClass]: https://kubernetes.io/docs/concepts/containers/runtime-class/
+[RuntimeClass]: https://kubernetes.io/ko/docs/concepts/containers/runtime-class/
diff --git a/content/ko/docs/tasks/administer-cluster/access-cluster-services.md b/content/ko/docs/tasks/access-application-cluster/access-cluster-services.md
similarity index 87%
rename from content/ko/docs/tasks/administer-cluster/access-cluster-services.md
rename to content/ko/docs/tasks/access-application-cluster/access-cluster-services.md
index 8019e46c25..ab083d3690 100644
--- a/content/ko/docs/tasks/administer-cluster/access-cluster-services.md
+++ b/content/ko/docs/tasks/access-application-cluster/access-cluster-services.md
@@ -86,7 +86,17 @@ heapster is running at https://104.197.5.247/api/v1/namespaces/kube-system/servi
 위에서 언급한 것처럼, `kubectl cluster-info` 명령을 사용하여 서비스의 프록시 URL을 검색한다. 서비스 엔드포인트, 접미사 및 매개 변수를 포함하는 프록시 URL을 작성하려면, 서비스의 프록시 URL에 추가하면 된다.
 `http://`*`kubernetes_master_address`*`/api/v1/namespaces/`*`namespace_name`*`/services/`*`[https:]service_name[:port_name]`*`/proxy`
 
-포트에 대한 이름을 지정하지 않은 경우, URL에 *port_name* 을 지정할 필요가 없다.
+포트에 대한 이름을 지정하지 않은 경우, URL에 *port_name* 을 지정할 필요가 없다. 또한, 이름이 지정된 포트와 지정되지 않은 포트 모두에 대해, *port_name* 자리에 포트 번호를 기재할 수도 있다.
+
+기본적으로, API 서버는 서비스로의 프록시를 HTTP로 제공한다. HTTPS를 사용하려면, 서비스 이름 앞에 `https:`를 추가한다.
+`http://<쿠버네티스_컨트롤_플레인_주소>/api/v1/namespaces/<네임스페이스_이름>/services/<서비스_이름>/proxy`
+
+URL에서 `<서비스_이름>`이 지원하는 형식은 다음과 같다.
+
+* `<서비스_이름>` - 기본 포트 또는 이름이 지정되지 않은 포트로 http를 사용하여 프록시
+* `<서비스_이름>:<포트_이름>` - 기재된 포트 이름 또는 포트 번호로 http를 사용하여 프록시
+* `https:<서비스_이름>:` - 기본 포트 또는 이름이 지정되지 않은 포트로 https를 사용하여 프록시(맨 끝의 콜론에 유의)
+* `https:<서비스_이름>:<포트_이름>` - 기재된 포트 이름 또는 포트 번호로 https를 사용하여 프록시
 
 ##### 예제
 
diff --git a/content/ko/docs/tasks/access-application-cluster/access-cluster.md b/content/ko/docs/tasks/access-application-cluster/access-cluster.md
index 9e7c9b4fc7..ab884150aa 100644
--- a/content/ko/docs/tasks/access-application-cluster/access-cluster.md
+++ b/content/ko/docs/tasks/access-application-cluster/access-cluster.md
@@ -27,8 +27,8 @@ kubectl config view
 ```
 
 [여기](/ko/docs/reference/kubectl/cheatsheet/)에서 
-kubectl 사용 예시를 볼 수 있으며, 완전한 문서는
-[kubectl 매뉴얼](/ko/docs/reference/kubectl/overview/)에서 확인할 수 있다.
+`kubectl` 사용 예시를 볼 수 있으며, 완전한 문서는
+[kubectl 레퍼런스](/ko/docs/reference/kubectl/)에서 확인할 수 있다.
 
 ## REST API에 직접 접근
 
@@ -86,12 +86,36 @@ curl http://localhost:8080/api/
 
 ### kubectl proxy를 사용하지 않음
 
-기본 서비스 어카운트의 토큰을 얻어내려면 `kubectl describe secret...`을 grep/cut과 함께 사용한다.
+`kubectl apply` 및 `kubectl describe secret...` 명령과 grep/cut을 활용하여 기본 서비스 어카운트의 토큰을 생성한다.
+
+먼저, 기본 서비스어카운트를 위한 토큰을 요청하는 시크릿을 생성한다.
+
+```shell
+kubectl apply -f - <<EOF
+apiVersion: v1
+kind: Secret
+metadata:
+  name: default-token
+  annotations:
+    kubernetes.io/service-account.name: default
+type: kubernetes.io/service-account-token
+EOF
+```
+
+다음으로, 토큰 컨트롤러가 해당 시크릿에 토큰을 채우기를 기다린다.
+
+```shell
+while ! kubectl describe secret default-token | grep -E '^token' >/dev/null; do
+  echo "waiting for token..." >&2
+  sleep 1
+done
+```
+
+결과를 캡처하여 생성된 토큰을 사용한다.
 
 ```shell
 APISERVER=$(kubectl config view --minify | grep server | cut -f 2- -d ":" | tr -d " ")
-SECRET_NAME=$(kubectl get secrets | grep ^default | cut -f1 -d ' ')
-TOKEN=$(kubectl describe secret $SECRET_NAME | grep -E '^token' | cut -f2 -d':' | tr -d " ")
+TOKEN=$(kubectl describe secret default-token | grep -E '^token' | cut -f2 -d':' | tr -d " ")
 
 curl $APISERVER/api --header "Authorization: Bearer $TOKEN" --insecure
 ```
@@ -117,8 +141,7 @@ curl $APISERVER/api --header "Authorization: Bearer $TOKEN" --insecure
 
 ```shell
 APISERVER=$(kubectl config view --minify -o jsonpath='{.clusters[0].cluster.server}')
-SECRET_NAME=$(kubectl get serviceaccount default -o jsonpath='{.secrets[0].name}')
-TOKEN=$(kubectl get secret $SECRET_NAME -o jsonpath='{.data.token}' | base64 --decode)
+TOKEN=$(kubectl get secret default-token -o jsonpath='{.data.token}' | base64 --decode)
 
 curl $APISERVER/api --header "Authorization: Bearer $TOKEN" --insecure
 ```
@@ -181,150 +204,19 @@ Python 클라이언트는 apiserver의 위치지정과 인증에 kubectl CLI와
 
 ## 파드에서 API 접근
 
-파드에서 API를 접속한다면 apiserver의
-위치지정과 인증은 다소 다르다.
+파드에서 API에 접근하는 경우, 
+API 서버를 찾고 인증하는 방식이 약간 다를 수 있다.
 
-파드 내에서 apiserver의 위치를 지정하는데 추천하는 방식은
-`kubernetes.default.svc` DNS 네임을 사용하는 것이다.
-이 DNS 네임은 apiserver로 라우팅되는 서비스 IP로 resolve된다.
-
-apiserver 인증에 추천되는 방식은
-[서비스 어카운트](/docs/tasks/configure-pod-container/configure-service-account/)
-인증정보를 사용하는 것이다. kube-system에 의해 파드는 서비스 어카운트와 연계되며
-해당 서비스 어카운트의 인증정보(토큰)은 파드 내 각 컨테이너의 파일시스템 트리의
-`/var/run/secrets/kubernetes.io/serviceaccount/token`에 위치한다.
-
-사용 가능한 경우, 인증서 번들은 각 컨테이너 내 파일시스템 트리의
-`/var/run/secrets/kubernetes.io/serviceaccount/ca.crt`에 위치하며
-apiserver의 인증서 제공을 검증하는데 사용되어야 한다.
-
-마지막으로 네임스페이스 한정의 API 조작에 사용되는 기본 네임스페이스는 각 컨테이터 내의
-`/var/run/secrets/kubernetes.io/serviceaccount/namespace` 파일로 존재한다.
-
-파드 내에서 API에 접근하는데 권장되는 방식은 다음과 같다.
-
-  - 파드의 sidecar 컨테이너 내에서 `kubectl proxy`를 실행하거나,
-    컨테이너 내부에서 백그라운드 프로세스로 실행한다.
-    이는 쿠버네티스 API를 파드의 localhost 인터페이스로 프록시하여
-    해당 파드의 컨테이너 내에 다른 프로세스가 API에 접속할 수 있게 해준다.
-  - Go 클라이언트 라이브러리를 이용하여 `rest.InClusterConfig()`와 `kubernetes.NewForConfig()` 함수들을 사용하도록 클라이언트를 만든다.
-    이는 apiserver의 위치지정과 인증을 처리한다. [예제](https://git.k8s.io/client-go/examples/in-cluster-client-configuration/main.go)
-
-각각의 사례에서 apiserver와의 보안 통신에 파드의 인증정보가 사용된다.
+더 자세한 내용은 
+[파드 내에서 쿠버네티스 API에 접근](/ko/docs/tasks/run-application/access-api-from-pod/)을 참조한다.
 
 ## 클러스터에서 실행되는 서비스로 접근
 
-이전 장은 쿠버네티스 API server 접속에 대한 내용을 다루었다. 이번 장은
-쿠버네티스 클러스터 상에서 실행되는 다른 서비스로의 연결을 다룰 것이다. 
+이전 섹션에서는 쿠버네티스 API 서버에 연결하는 방법을 소개하였다. 
+쿠버네티스 클러스터에서 실행되는 다른 서비스에 연결하는 방법은 
+[클러스터 서비스에 접근](/ko/docs/tasks/access-application-cluster/access-cluster-services/) 페이지를 참조한다.
 
-쿠버네티스에서, [노드](/ko/docs/concepts/architecture/nodes/),
-[파드](/ko/docs/concepts/workloads/pods/) 및 [서비스](/ko/docs/concepts/services-networking/service/)는 모두
-고유한 IP를 가진다. 당신의 데스크탑 PC와 같은 클러스터 외부 장비에서는
-클러스터 상의 노드 IP, 파드 IP, 서비스 IP로 라우팅되지 않아서 접근을
-할 수 없을 것이다.
-
-### 통신을 위한 방식들
-
-클러스터 외부에서 노드, 파드 및 서비스에 접속하기 위한 몇 가지 옵션이 있다.
-
-  - 공인 IP를 통해 서비스에 접근.
-    - 클러스터 외부에서 접근할 수 있도록 `NodePort` 또는 `LoadBalancer` 타입의
-      서비스를 사용한다. [서비스](/ko/docs/concepts/services-networking/service/)와
-      [kubectl expose](/docs/reference/generated/kubectl/kubectl-commands/#expose) 문서를 참조한다.
-    - 클러스터 환경에 따라, 서비스는 회사 네트워크에만 노출되기도 하며,
-      인터넷에 노출되는 경우도 있다. 이 경우 노출되는 서비스의 보안 여부를 고려해야 한다.
-      해당 서비스는 자체적으로 인증을 수행하는가?
-    - 파드는 서비스 뒤에 위치시킨다. 레플리카들의 집합에서 특정 파드 하나에 debugging 같은 목적으로 접근하려면
-      해당 파드에 고유의 레이블을 붙이고 셀렉터에 해당 레이블을 선택하는 신규 서비스를 생성한다.
-    - 대부분의 경우에는 애플리케이션 개발자가 노드 IP를 통해 직접 노드에
-      접근할 필요는 없다.
-  - Proxy Verb를 사용하여 서비스, 노드, 파드에 접근.
-    - 원격 서비스에 접근하기에 앞서 apiserver의 인증과 인가를 받아야 한다.
-      서비스가 인터넷에 노출하기에 보안이 충분하지 않거나 노드 IP 상의 포트에
-      접근을 하려고 하거나 debugging을 하려면 이를 사용한다.
-    - 어떤 web 애플리케이션에서는 프록시가 문제를 일으킬 수 있다.
-    - HTTP/HTTPS에서만 동작한다.
-    - [여기](#수작업으로-apiserver-proxy-url들을-구축)에서 설명하고 있다.
-  - 클러스터 내 노드 또는 파드에서 접근.
-    - 파드를 실행한 다음, [kubectl exec](/docs/reference/generated/kubectl/kubectl-commands/#exec)를 사용하여 해당 파드의 셸로 접속한다.
-      해당 셸에서 다른 노드, 파드, 서비스에 연결한다.
-    - 어떤 클러스터는 클러스터 내의 노드에 ssh 접속을 허용하기도 한다. 이런 클러스터에서는
-      클러스터 서비스에 접근도 가능하다. 이는 비표준 방식으로 특정 클러스터에서는 동작하지만
-      다른 클러스터에서는 동작하지 않을 수 있다. 브라우저와 다른 도구들이 설치되지 않았거나 설치되었을 수 있다. 클러스터 DNS가 동작하지 않을 수도 있다.
-
-### 빌트인 서비스 검색
-
-일반적으로 kube-system에 의해 클러스터에 실행되는 몇 가지 서비스가 있다. 
-`kubectl cluster-info` 커맨드로 이 서비스의 리스트를 볼 수 있다.
-
-```shell
-kubectl cluster-info
-```
-
-결괏값은 다음과 같을 것이다.
-
-```
-Kubernetes master is running at https://104.197.5.247
-elasticsearch-logging is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy
-kibana-logging is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/kibana-logging/proxy
-kube-dns is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/kube-dns/proxy
-grafana is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/monitoring-grafana/proxy
-heapster is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/monitoring-heapster/proxy
-```
-
-이는 각 서비스에 접근하기 위한 proxy-verb URL을 보여준다.
-예를 들어 위 클러스터는 클러스터 수준의 logging(Elasticsearch 사용)이 활성화되었으므로 적절한 인증을 통과하여
-`https://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/`로 접근할 수 있다. 예를 들어 kubectl proxy로
-`http://localhost:8080/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/`를 통해 logging에 접근할 수도 있다.
-(인증을 통과하는 방법이나 kubectl proxy를 사용하는 것은 [쿠버네티스 API를 사용해서 클러스터에 접근하기](/ko/docs/tasks/administer-cluster/access-cluster-api/)을 참조한다.)
-
-#### 수작업으로 apiserver proxy URL을 구축
-
-위에서 언급한 것처럼 서비스의 proxy URL을 검색하는 데 `kubectl cluster-info` 커맨드를 사용할 수 있다. 서비스 endpoint, 접미사, 매개변수를 포함하는 proxy URL을 생성하려면 해당 서비스에
-`http://`*`kubernetes_master_address`*`/api/v1/namespaces/`*`namespace_name`*`/services/`*`service_name[:port_name]`*`/proxy` 형식의 proxy URL을 덧붙인다.
-
-당신이 포트에 이름을 지정하지 않았다면 URL에 *port_name* 을 지정할 필요는 없다. 이름이 있는 포트와 이름이 없는 포트 모두에 대하여, *port_name* 이 들어갈 자리에 포트 번호를 기재할 수도 있다.
-
-기본적으로 API server는 http를 사용하여 서비스를 프록시한다. https를 사용하려면 다음과 같이 서비스 네임의 접두사에 `https:`를 붙인다.
-`http://`*`kubernetes_master_address`*`/api/v1/namespaces/`*`namespace_name`*`/services/`*`https:service_name:[port_name]`*`/proxy`
-
-URL의 네임 부분에 지원되는 양식은 다음과 같다.
-
-* `<service_name>` - http를 사용하여 기본값 또는 이름이 없는 포트로 프록시한다.
-* `<service_name>:<port_name>` - http를 사용하여 지정된 포트 이름 또는 포트 번호로 프록시한다.
-* `https:<service_name>:` - https를 사용하여 기본값 또는 이름이 없는 포트로 프록시한다. (마지막 콜론:에 주의)
-* `https:<service_name>:<port_name>` - https를 사용하여 지정된 포트 이름 또는 포트 번호로 프록시한다.
-
-##### 예제들
-
- * Elasticsearch 서비스 endpoint `_search?q=user:kimchy`에 접근하려면 `http://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/_search?q=user:kimchy`를 사용할 수 있다.
- * Elasticsearch 클러스터 상태 정보 `_cluster/health?pretty=true`에 접근하려면 `https://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/_cluster/health?pretty=true`를 사용할 수 있다.
-
-```json
-{
-  "cluster_name" : "kubernetes_logging",
-  "status" : "yellow",
-  "timed_out" : false,
-  "number_of_nodes" : 1,
-  "number_of_data_nodes" : 1,
-  "active_primary_shards" : 5,
-  "active_shards" : 5,
-  "relocating_shards" : 0,
-  "initializing_shards" : 0,
-  "unassigned_shards" : 5
-}
-```
-
-### 클러스터 상에서 실행되는 서비스에 웹브라우저를 사용하여 접근
-
-브라우저의 주소창에 apiserver proxy url을 넣을 수도 있다. 하지만
-
-  - 웹브라우저는 일반적으로 토큰을 전달할 수 없으므로 basic (password) auth를 사용해야 할 것이다. basic auth를 수용할 수 있도록 apiserver를 구성할 수 있지만,
-    당신의 클러스터가 basic auth를 수용할 수 있도록 구성되어 있지 않을 수도 있다.
-  - 몇몇 web app은 동작하지 않을 수도 있다. 특히 proxy path prefix를 인식하지 않는 방식으로 url을
-    구성하는 client side javascript를 가진 web app은 동작하지 않을 수 있다.
-
-## 요청 redirect
+## redirect 요청하기
 
 redirect 기능은 deprecated되고 제거 되었다. 대신 (아래의) 프록시를 사용하기를 바란다.
 
diff --git a/content/ko/docs/tasks/access-application-cluster/connecting-frontend-backend.md b/content/ko/docs/tasks/access-application-cluster/connecting-frontend-backend.md
index 11afa655e8..01888bf2cb 100644
--- a/content/ko/docs/tasks/access-application-cluster/connecting-frontend-backend.md
+++ b/content/ko/docs/tasks/access-application-cluster/connecting-frontend-backend.md
@@ -26,7 +26,7 @@ weight: 70
 
 이 작업은
 지원되는 환경이 필요한
-[외부 로드밸런서가 있는 서비스](/docs/tasks/access-application-cluster/create-external-load-balancer/)를 사용한다. 만약, 이를 지원하지 않는 환경이라면, [노드포트](/ko/docs/concepts/services-networking/service/#nodeport) 서비스 타입을
+[외부 로드밸런서가 있는 서비스](/docs/tasks/access-application-cluster/create-external-load-balancer/)를 사용한다. 만약, 이를 지원하지 않는 환경이라면, [노드포트](/ko/docs/concepts/services-networking/service/#type-nodeport) 서비스 타입을
 대신 사용할 수 있다.
 
 <!-- lessoncontent -->
diff --git a/content/ko/docs/tasks/access-application-cluster/ingress-minikube.md b/content/ko/docs/tasks/access-application-cluster/ingress-minikube.md
new file mode 100644
index 0000000000..f4d24f4e49
--- /dev/null
+++ b/content/ko/docs/tasks/access-application-cluster/ingress-minikube.md
@@ -0,0 +1,304 @@
+---
+title: NGINX 인그레스(Ingress) 컨트롤러로 Minikube에서 인그레스 설정하기
+content_type: task
+weight: 100
+min-kubernetes-server-version: 1.19
+---
+
+<!-- overview -->
+
+[인그레스](/ko/docs/concepts/services-networking/ingress/)는 클러스터의 서비스에 대한 외부 액세스를 허용하는 규칙을 정의하는 
+API 객체이다. [인그레스 컨트롤러](/ko/docs/concepts/services-networking/ingress-controllers/)는 인그레스에 설정된 규칙을 이행한다.
+
+이 페이지에서는 HTTP URI에 따라 요청을 Service web 또는 web2로 라우팅하는 간단한 인그레스를 설정하는 방법을 보여준다.
+
+
+
+## {{% heading "prerequisites" %}}
+
+
+{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+만약 이보다 더 이전 버전의 쿠버네티스를 사용하고 있다면, 
+해당 쿠버네티스 버전의 문서를 참고한다.
+
+
+### Minikube 클러스터 생성하기
+
+Katacoda 활용하기
+: {{< kat-button >}}
+
+로컬에서 생성하기
+: 이미 로컬에 [Minikube를 설치](/ko/docs/tasks/tools/#minikube)했다면,
+  `minikube start`를 실행하여 클러스터를 생성한다.
+
+<!-- steps -->
+
+## 인그레스 컨트롤러 활성화
+
+1. NGINX 인그레스 컨트롤러를 활성화하기 위해 다음 명령을 실행한다.
+
+    ```shell
+    minikube addons enable ingress
+    ```
+
+1. NGINX 인그레스 컨트롤러가 실행 중인지 확인한다.
+
+
+   {{< tabs name="tab_with_md" >}}
+   {{% tab name="minikube v1.19 or later" %}}
+```shell
+kubectl get pods -n ingress-nginx
+```
+   {{< note >}}파드가 정상적으로 실행되기까지 1분 정도 소요될 수 있다.{{< /note >}}
+
+   결과는 다음과 같다.
+
+```
+NAME                                        READY   STATUS      RESTARTS    AGE
+ingress-nginx-admission-create-g9g49        0/1     Completed   0          11m
+ingress-nginx-admission-patch-rqp78         0/1     Completed   1          11m
+ingress-nginx-controller-59b45fb494-26npt   1/1     Running     0          11m
+```
+   {{% /tab %}}
+   {{% tab name="minikube v1.18.1 or earlier" %}}
+```shell
+kubectl get pods -n kube-system
+```
+   {{< note >}}파드가 정상적으로 실행되기까지 1분 정도 소요될 수 있다.{{< /note >}}
+
+   결과는 다음과 같다.
+
+```
+NAME                                        READY     STATUS    RESTARTS   AGE
+default-http-backend-59868b7dd6-xb8tq       1/1       Running   0          1m
+kube-addon-manager-minikube                 1/1       Running   0          3m
+kube-dns-6dcb57bcc8-n4xd4                   3/3       Running   0          2m
+kubernetes-dashboard-5498ccf677-b8p5h       1/1       Running   0          2m
+nginx-ingress-controller-5984b97644-rnkrg   1/1       Running   0          1m
+storage-provisioner                         1/1       Running   0          2m
+```
+
+  `nginx-ingress-controller-`로 시작하는 파드가 있는지 확인한다.
+   {{% /tab %}}
+   {{< /tabs >}}
+
+## hello, world 앱 배포하기
+
+1. 다음 명령을 사용하여 디플로이먼트(Deployment)를 생성한다.
+
+   ```shell
+   kubectl create deployment web --image=gcr.io/google-samples/hello-app:1.0
+   ```
+
+   결과는 다음과 같다.
+
+   ```
+   deployment.apps/web created
+   ```
+
+1. 디플로이먼트를 노출시킨다.
+
+   ```shell
+   kubectl expose deployment web --type=NodePort --port=8080
+   ```
+
+   결과는 다음과 같다.
+
+   ```
+   service/web exposed
+   ```
+
+1. 서비스(Service)가 생성되고 노드 포트에서 사용할 수 있는지 확인한다.
+
+   ```shell
+   kubectl get service web
+   ```
+
+   결과는 다음과 같다.
+
+   ```
+   NAME      TYPE       CLUSTER-IP       EXTERNAL-IP   PORT(S)          AGE
+   web       NodePort   10.104.133.249   <none>        8080:31637/TCP   12m
+   ```
+
+1. 노드포트(NodePort)를 통해 서비스에 접속한다.
+
+   ```shell
+   minikube service web --url
+   ```
+
+   결과는 다음과 같다.
+
+   ```
+   http://172.17.0.15:31637
+   ```
+
+   {{< note >}}Katacoda 환경만 해당: 터미널 패널 상단에서 더하기 기호를 클릭한 다음 **Select port to view on Host 1**을 클릭한다. 노드포트(이 경우 '31637')를 입력한 다음 **Display Port**를 클릭한다.{{< /note >}}
+
+   결과는 다음과 같다.
+
+   ```
+   Hello, world!
+   Version: 1.0.0
+   Hostname: web-55b8c6998d-8k564
+   ```
+
+   이제 Minikube IP 주소와 노드포트를 통해 샘플 앱에 액세스할 수 있다. 다음 단계에서는 
+   인그레스 리소스를 사용하여 앱에 액세스할 수 있다.
+
+## 인그레스 생성하기
+
+다음 매니페스트는 hello-world.info를 통해 서비스로 트래픽을 보내는 인그레스를 정의한다.
+
+1. 다음 파일을 통해 `example-ingress.yaml`을 만든다.
+
+  {{< codenew file="service/networking/example-ingress.yaml" >}}
+
+1. 다음 명령어를 실행하여 인그레스 오브젝트를 생성한다.
+
+   ```shell
+   kubectl apply -f https://k8s.io/examples/service/networking/example-ingress.yaml
+   ```
+
+   결과는 다음과 같다.
+
+   ```
+   ingress.networking.k8s.io/example-ingress created
+   ```
+
+1. IP 주소가 설정되었는지 확인한다.
+
+   ```shell
+   kubectl get ingress
+   ```
+
+   {{< note >}}이 작업은 몇 분 정도 소요될 수 있다.{{< /note >}}
+
+다음 예시와 같이, ADDRESS 열에서 IPv4 주소를 확인할 수 있다.
+
+   ```
+   NAME              CLASS    HOSTS              ADDRESS        PORTS   AGE
+   example-ingress   <none>   hello-world.info   172.17.0.15    80      38s
+   ```
+
+1. 호스트 컴퓨터의 `/etc/hosts` 파일 맨 아래에 
+   다음 행을 추가한다 (관리자 권한 필요).
+
+    ```
+    172.17.0.15 hello-world.info
+    ```
+
+   {{< note >}}Minikube를 로컬에서 실행하는 경우 'minikube ip'를 사용하여 외부 IP를 가져온다. 인그레스 목록에 표시되는 IP 주소는 내부 IP가 된다.{{< /note >}}
+
+    이렇게 하면, 웹 브라우저가 
+    hello-world.info URL에 대한 요청을 Minikube로 전송한다.
+
+1. 인그레스 컨트롤러가 트래픽을 전달하는지 확인한다.
+
+    ```shell
+    curl hello-world.info
+    ```
+
+    결과는 다음과 같다.
+
+    ```
+    Hello, world!
+    Version: 1.0.0
+    Hostname: web-55b8c6998d-8k564
+    ```
+
+    {{< note >}}Minikube를 로컬에서 실행하는 경우 브라우저에서 hello-world.info에 접속할 수 있다.{{< /note >}}
+
+## 두 번째 디플로이먼트 생성하기
+
+1. 다음 명령을 사용하여 두 번째 디플로이먼트를 생성한다.
+
+   ```shell
+   kubectl create deployment web2 --image=gcr.io/google-samples/hello-app:2.0
+   ```
+   결과는 다음과 같다.
+
+   ```
+   deployment.apps/web2 created
+   ```
+
+1. 두 번째 디플로이먼트를 노출시킨다.
+
+   ```shell
+   kubectl expose deployment web2 --port=8080 --type=NodePort
+   ```
+
+   결과는 다음과 같다.
+
+   ```
+   service/web2 exposed
+   ```
+
+## 기존 인그레스 수정하기 {#edit-ingress}
+
+1. 기존 `example-ingress.yaml` 매니페스트를 편집하고, 
+하단에 다음 줄을 추가한다.
+
+    ```yaml
+              - path: /v2
+                pathType: Prefix
+                backend:
+                  service:
+                    name: web2
+                    port:
+                      number: 8080
+    ```
+
+1. 변경 사항을 적용한다.
+
+   ```shell
+   kubectl apply -f example-ingress.yaml
+   ```
+
+   결과는 다음과 같다.
+
+   ```
+   ingress.networking/example-ingress configured
+   ```
+
+## 인그레스 테스트하기
+
+1. Hello World 앱의 첫 번째 버전에 액세스한다.
+
+   ```shell
+   curl hello-world.info
+   ```
+
+   결과는 다음과 같다.
+
+   ```
+   Hello, world!
+   Version: 1.0.0
+   Hostname: web-55b8c6998d-8k564
+   ```
+
+1. Hello World 앱의 두 번째 버전에 액세스한다.
+
+   ```shell
+   curl hello-world.info/v2
+   ```
+
+   결과는 다음과 같다.
+
+   ```
+   Hello, world!
+   Version: 2.0.0
+   Hostname: web2-75cd47646f-t8cjk
+   ```
+
+   {{< note >}}Minikube를 로컬에서 실행하는 경우 브라우저에서 hello-world.info 및 hello-world.info/v2에 접속할 수 있다.{{< /note >}}
+
+
+
+
+## {{% heading "whatsnext" %}}
+
+* [인그레스](/ko/docs/concepts/services-networking/ingress/)에 대해 더 보기.
+* [인그레스 컨트롤러](/ko/docs/concepts/services-networking/ingress-controllers/)에 대해 더 보기.
+* [서비스](/ko/docs/concepts/services-networking/service/)에 대해 더 보기.
+
diff --git a/content/ko/docs/tasks/access-application-cluster/list-all-running-container-images.md b/content/ko/docs/tasks/access-application-cluster/list-all-running-container-images.md
index f777d192cd..a6f4f086d2 100644
--- a/content/ko/docs/tasks/access-application-cluster/list-all-running-container-images.md
+++ b/content/ko/docs/tasks/access-application-cluster/list-all-running-container-images.md
@@ -70,7 +70,7 @@ jsonpath에서 `.items[*]` 부분은 생략해야 하는데, 이는 명령어가
 반복하여 출력할 수 있다.
 
 ```shell
-kubectl get pods --all-namespaces -o=jsonpath='{range .items[*]}{"\n"}{.metadata.name}{":\t"}{range .spec.containers[*]}{.image}{", "}{end}{end}' |\
+kubectl get pods --all-namespaces -o jsonpath='{range .items[*]}{"\n"}{.metadata.name}{":\t"}{range .spec.containers[*]}{.image}{", "}{end}{end}' |\
 sort
 ```
 
@@ -80,7 +80,7 @@ sort
 명령어 결과값은 `app=nginx` 레이블에 일치하는 파드만 출력한다.
 
 ```shell
-kubectl get pods --all-namespaces -o=jsonpath="{.items[*].spec.containers[*].image}" -l app=nginx
+kubectl get pods --all-namespaces -o jsonpath="{.items[*].spec.containers[*].image}" -l app=nginx
 ```
 
 ## 파드 네임스페이스로 필터링된 컨테이너 이미지 목록 보기
diff --git a/content/ko/docs/tasks/access-application-cluster/port-forward-access-application-cluster.md b/content/ko/docs/tasks/access-application-cluster/port-forward-access-application-cluster.md
index 333001af81..6aa257dca4 100644
--- a/content/ko/docs/tasks/access-application-cluster/port-forward-access-application-cluster.md
+++ b/content/ko/docs/tasks/access-application-cluster/port-forward-access-application-cluster.md
@@ -31,7 +31,7 @@ min-kubernetes-server-version: v1.10
 1. MongoDB를 실행하기 위해 디플로이먼트를 생성한다.
 
     ```shell
-    kubectl apply -f https://k8s.io/examples/application/guestbook/mongo-deployment.yaml
+    kubectl apply -f https://k8s.io/examples/application/mongodb/mongo-deployment.yaml
     ```
 
     성공적인 명령어의 출력은 디플로이먼트가 생성됐다는 것을 확인해준다.
@@ -84,7 +84,7 @@ min-kubernetes-server-version: v1.10
 2. MongoDB를 네트워크에 노출시키기 위해 서비스를 생성한다.
 
     ```shell
-    kubectl apply -f https://k8s.io/examples/application/guestbook/mongo-service.yaml
+    kubectl apply -f https://k8s.io/examples/application/mongodb/mongo-service.yaml
     ```
 
     성공적인 커맨드의 출력은 서비스가 생성되었다는 것을 확인해준다.
diff --git a/content/ko/docs/tasks/access-application-cluster/web-ui-dashboard.md b/content/ko/docs/tasks/access-application-cluster/web-ui-dashboard.md
index 7cb694386d..30d72d4015 100644
--- a/content/ko/docs/tasks/access-application-cluster/web-ui-dashboard.md
+++ b/content/ko/docs/tasks/access-application-cluster/web-ui-dashboard.md
@@ -3,7 +3,10 @@
 
 
 
-title: 웹 UI (대시보드)
+
+title: 쿠버네티스 대시보드를 배포하고 접속하기
+description: >-
+  웹 UI(쿠버네티스 대시보드)를 배포하고 접속한다.
 content_type: concept
 weight: 10
 card:
@@ -31,36 +34,39 @@ card:
 
 ## 대시보드 UI 배포
 
-대시보드 UI는 기본으로 배포되지 않는다. 배포하려면 다음 커맨드를 동작한다.
+대시보드 UI는 기본으로 배포되지 않는다. 배포하려면 다음 커맨드를 실행한다.
 
 ```
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/dashboard/v2.2.0/aio/deploy/recommended.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/dashboard/v2.5.0/aio/deploy/recommended.yaml
 ```
 
 ## 대시보드 UI 접근
 
 클러스터 데이터를 보호하기 위해, 대시보드는 기본적으로 최소한의 RBAC 설정을 제공한다.
-현재, 대시보드는 Bearer 토큰으로 로그인 하는 방법을 제공한다.
+현재, 대시보드는 Bearer 토큰으로 로그인하는 방법을 제공한다.
 본 시연을 위한 토큰을 생성하기 위해서는,
 [샘플 사용자 만들기](https://github.com/kubernetes/dashboard/blob/master/docs/user/access-control/creating-sample-user.md) 가이드를 따른다.
 
 {{< warning >}}
-시연 중에 생성한 샘플 사용자는 어드민 권한이 부여되며, 이는 교육 목적으로만 사용한다.
+시연 중 생성한 샘플의 사용자에게는 관리자(admin) 권한이 부여되며, 이는 교육 목적으로만 사용한다.
 {{< /warning >}}
 
 ### 커맨드 라인 프록시
-kubectl 커맨드라인 도구를 이용해 다음 커맨드를 실행함으로써 대시보드를 사용할 수 있다.
+
+`kubectl` 커맨드라인 도구를 이용해 다음 커맨드를 실행함으로써 대시보드로의
+접속을 활성화할 수 있다.
 
 ```
 kubectl proxy
 ```
 
-kubectl은 [http://localhost:8001/api/v1/namespaces/kubernetes-dashboard/services/https:kubernetes-dashboard:/proxy/](http://localhost:8001/api/v1/namespaces/kubernetes-dashboard/services/https:kubernetes-dashboard:/proxy/)에 대시보드를 사용하는 것을 가능하게 해줄 것이다.
+kubectl은 [http://localhost:8001/api/v1/namespaces/kubernetes-dashboard/services/https:kubernetes-dashboard:/proxy/](http://localhost:8001/api/v1/namespaces/kubernetes-dashboard/services/https:kubernetes-dashboard:/proxy/)를 통해 대시보드에 접속할 수 있게 해줄 것이다.
 
-UI는 커맨드가 실행된 머신에서 _오직_ 접근 가능하다. 상세 내용은 `kubectl proxy --help` 옵션을 확인한다.
+UI는 _오직_ 커맨드가 실행된 머신에서만 접근 가능하다. 상세 내용은 `kubectl proxy --help` 옵션을 확인한다.
 
 {{< note >}}
-Kubeconfig 인증 방법은 외부 아이덴티티 프로파이더 또는 x509 인증서를 지원하지 않는다.
+Kubeconfig 인증 방법은 외부 아이덴티티 프로바이더
+또는 X.509 인증서를 **지원하지 않는다**.
 {{< /note >}}
 
 ## 웰컴 뷰
@@ -75,7 +81,7 @@ Kubeconfig 인증 방법은 외부 아이덴티티 프로파이더 또는 x509 
 ## 컨테이너화 된 애플리케이션 배포
 
 대시보드를 이용하여 컨테이너화 된 애플리케이션을 디플로이먼트와 간단한 마법사를 통한 선택적인 서비스로 생성하고 배포할 수 있다.
-애플리케이션 세부 정보를 수동으로 지정할 수 있고, 또는 애플리케이션 구성을 포함한 YAML, JSON 파일을 업로드할 수 있다.
+애플리케이션 세부 정보를 수동으로 지정할 수 있고, 또는 애플리케이션 구성을 포함한 YAML 또는 JSON _매니페스트(manifest)_ 파일을 업로드할 수 있다.
 
 시작하는 페이지의 상위 오른쪽 코너에 있는 **CREATE** 버튼을 클릭한다.
 
@@ -178,7 +184,7 @@ Kubeconfig 인증 방법은 외부 아이덴티티 프로파이더 또는 x509 
   특권을 가진(privileged) 컨테이너는 네트워크 스택과 디바이스에 접근하는 것을 조작하도록 활용할 수 있다.
 
 - **환경 변수**: 쿠버네티스 서비스를
-  [환경 변수](/docs/tasks/inject-data-application/environment-variable-expose-pod-information/)를 통해 노출한다.
+  [환경 변수](/ko/docs/tasks/inject-data-application/environment-variable-expose-pod-information/)를 통해 노출한다.
   환경 변수 또는 인자를 환경 변수들의 값으로 커맨드를 통해 구성할 수 있다.
   애플리케이션들이 서비스를 찾는데 사용된다.
   값들은 `$(VAR_NAME)` 구문을 사용하는 다른 변수들로 참조할 수 있다.
@@ -186,13 +192,14 @@ Kubeconfig 인증 방법은 외부 아이덴티티 프로파이더 또는 x509 
 ### YAML 또는 JSON 파일 업로드
 
 쿠버네티스는 선언적인 설정을 제공한다.
-이 방식으로 모든 설정은 쿠버네티스 [API](/ko/docs/concepts/overview/kubernetes-api/) 리소스 스키마를
-이용하여 YAML 또는 JSON 설정 파일에 저장한다.
+이 방식에서는 모든 설정이 매니페스트(YAML 또는 JSON 설정 파일)에 저장된다.
+매니페스트는 쿠버네티스 [API](/ko/docs/concepts/overview/kubernetes-api/) 리소스 스키마를
+사용한다.
 
-배포 마법사를 통해 애플리케이션 세부사항들을 지정하는 대신,
-애플리케이션을 YAML 또는 JSON 파일로 정의할 수 있고 대시보드를 이용해서 파일을 업로드할 수 있다.
+배포 마법사를 통해 애플리케이션 세부 사항들을 지정하는 대신, 애플리케이션을 하나 이상의 매니페스트로 정의할 수 있고 대시보드를 이용해서 파일을 업로드할 수 있다.
 
 ## 대시보드 사용
+
 다음 섹션들은 어떻게 제공하고 어떻게 사용할 수 있는지에 대한 쿠버네티스 대시보드 UI의 모습을 보여준다.
 
 ### 탐색
@@ -201,9 +208,10 @@ Kubeconfig 인증 방법은 외부 아이덴티티 프로파이더 또는 x509 
 기본적으로 _기본_ 네임스페이스의 오프젝트만이 보이는데,
 이는 탐색 창에 위치한 네임스페이스 셀렉터를 이용해 변경할 수 있다.
 
-대시보드는 몇가지 메뉴 카테고리 중에서 대부분의 쿠버네티스 오브젝트 종류와 그룹을 보여준다.
+대시보드는 몇 가지 메뉴 카테고리 중에서 대부분의 쿠버네티스 오브젝트 종류와 그룹을 보여준다.
 
 #### 어드민 개요
+
 클러스터와 네임스페이스 관리자에게 대시보드는 노드, 네임스페이스 그리고 퍼시스턴트 볼륨과 세부사항들이 보여진다.
 노드는 모든 노드를 통틀어 CPU와 메모리 사용량을 보여준다.
 세부사항은 각 노드들에 대한 사용량, 사양, 상태,
@@ -212,8 +220,8 @@ Kubeconfig 인증 방법은 외부 아이덴티티 프로파이더 또는 x509 
 #### 워크로드
 
 선택된 네임스페이스에서 구동되는 모든 애플리케이션을 보여준다.
-애플리케이션의 워크로드 종류(예를 들어, 디플로이먼트, 레플리카셋(ReplicaSet), 스테이트풀셋(StatefulSet) 등)를 보여주고
-각각의 워크로드 종류는 따로 보여진다.
+해당 뷰는 애플리케이션의 워크로드 종류(예시: 디플로이먼트, 레플리카셋(ReplicaSet), 스테이트풀셋(StatefulSet))를 보여준다.
+각각의 워크로드 종류는 분리하여 볼 수 있다.
 리스트는 예를 들어 레플리카셋에서 준비된 파드의 숫자 또는 파드의 현재 메모리 사용량과 같은
 워크로드에 대한 실용적인 정보를 요약한다.
 
@@ -230,9 +238,9 @@ Kubeconfig 인증 방법은 외부 아이덴티티 프로파이더 또는 x509 
 
 #### 스토리지
 
-스토리지는 애플리케이션이 데이터를 저장하기 위해 사용하는 퍼시턴트 볼륨 클레임 리소스들을 보여준다.
+스토리지는 애플리케이션이 데이터를 저장하기 위해 사용하는 퍼시턴트볼륨클레임 리소스들을 보여준다.
 
-#### 컨피그 맵과 시크릿
+#### 컨피그맵과 시크릿 {#config-maps-and-secrets}
 
 클러스터에서 동작 중인 애플리케이션의 라이브 설정을 사용하는 모든 쿠버네티스 리소스들을 보여준다.
 컨피그 오브젝트들을 수정하고 관리할 수 있도록 허용하며, 기본적으로는 숨겨져 있는 시크릿들을 보여준다.
diff --git a/content/ko/docs/tasks/administer-cluster/access-cluster-api.md b/content/ko/docs/tasks/administer-cluster/access-cluster-api.md
index 2d44a51b0e..3ea3381880 100644
--- a/content/ko/docs/tasks/administer-cluster/access-cluster-api.md
+++ b/content/ko/docs/tasks/administer-cluster/access-cluster-api.md
@@ -30,8 +30,8 @@ content_type: task
 kubectl config view
 ```
 
-많은 [예제](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/)는 kubectl 사용에 대한 소개를
-제공한다. 전체 문서는 [kubectl 매뉴얼](/ko/docs/reference/kubectl/overview/)에 있다.
+많은 [예제](https://github.com/kubernetes/examples/tree/master/)는 kubectl 사용에 대한 소개를
+제공한다. 전체 문서는 [kubectl 매뉴얼](/ko/docs/reference/kubectl/)에 있다.
 
 ### REST API에 직접 접근
 
@@ -95,8 +95,25 @@ export CLUSTER_NAME="some_server_name"
 # 클러스터 이름을 참조하는 API 서버를 가리킨다.
 APISERVER=$(kubectl config view -o jsonpath="{.clusters[?(@.name==\"$CLUSTER_NAME\")].cluster.server}")
 
+# 기본 서비스 어카운트용 토큰을 보관할 시크릿을 생성한다.
+kubectl apply -f - <<EOF
+apiVersion: v1
+kind: Secret
+metadata:
+  name: default-token
+  annotations:
+    kubernetes.io/service-account.name: default
+type: kubernetes.io/service-account-token
+EOF
+
+# 토큰 컨트롤러가 해당 시크릿에 토큰을 기록할 때까지 기다린다.
+while ! kubectl describe secret default-token | grep -E '^token' >/dev/null; do
+  echo "waiting for token..." >&2
+  sleep 1
+done
+
 # 토큰 값을 얻는다
-TOKEN=$(kubectl get secrets -o jsonpath="{.items[?(@.metadata.annotations['kubernetes\.io/service-account\.name']=='default')].data.token}"|base64 --decode)
+TOKEN=$(kubectl get secret default-token -o jsonpath='{.data.token}' | base64 --decode)
 
 # TOKEN으로 API 탐색
 curl -X GET $APISERVER/api --header "Authorization: Bearer $TOKEN" --insecure
@@ -119,26 +136,6 @@ curl -X GET $APISERVER/api --header "Authorization: Bearer $TOKEN" --insecure
 }
 ```
 
-`jsonpath` 방식을 사용한다.
-
-```shell
-APISERVER=$(kubectl config view --minify -o jsonpath='{.clusters[0].cluster.server}')
-TOKEN=$(kubectl get secret $(kubectl get serviceaccount default -o jsonpath='{.secrets[0].name}') -o jsonpath='{.data.token}' | base64 --decode )
-curl $APISERVER/api --header "Authorization: Bearer $TOKEN" --insecure
-{
-  "kind": "APIVersions",
-  "versions": [
-    "v1"
-  ],
-  "serverAddressByClientCIDRs": [
-    {
-      "clientCIDR": "0.0.0.0/0",
-      "serverAddress": "10.0.1.149:443"
-    }
-  ]
-}
-```
-
 위의 예는 `--insecure` 플래그를 사용한다. 이로 인해 MITM 공격이
 발생할 수 있다. kubectl이 클러스터에 접근하면 저장된 루트 인증서와
 클라이언트 인증서를 사용하여 서버에 접근한다. (`~/.kube` 디렉터리에
@@ -146,15 +143,14 @@ curl $APISERVER/api --header "Authorization: Bearer $TOKEN" --insecure
 http 클라이언트가 루트 인증서를 사용하도록 하려면 특별한 구성이
 필요할 수 있다.
 
-일부 클러스터에서, API 서버는 인증이 필요하지 않다.
-로컬 호스트에서 제공되거나, 방화벽으로 보호될 수 있다. 이에 대한 표준은
-없다. [쿠버네티스 API에 대한 접근 제어](/ko/docs/concepts/security/controlling-access)은
-클러스터 관리자로서 이를 구성하는 방법에 대해 설명한다. 이러한 접근 방식은 향후
-고 가용성 지원과 충돌할 수 있다.
+일부 클러스터에서, API 서버는 인증이 필요하지 않다. 로컬 호스트에서 제공되거나,
+방화벽으로 보호될 수 있다. 이에 대한 표준은 없다.
+[쿠버네티스 API에 대한 접근 제어](/ko/docs/concepts/security/controlling-access)는 클러스터
+관리자로서 이를 구성하는 방법에 대해 설명한다. 이러한 접근 방식은 향후 고 가용성 지원과 충돌할 수 있다.
 
 ### API에 프로그래밍 방식으로 접근
 
-쿠버네티스는 공식적으로 [Go](#go-client), [Python](#python-client), [Java](#java-client), [dotnet](#dotnet-client), [Javascript](#javascript-client) 및 [Haskell](#haskell-client) 용 클라이언트 라이브러리를 지원한다. 쿠버네티스 팀이 아닌 작성자가 제공하고 유지 관리하는 다른 클라이언트 라이브러리가 있다. 다른 언어에서 API에 접근하고 인증하는 방법에 대해서는 [클라이언트 라이브러리](/ko/docs/reference/using-api/client-libraries/)를 참고한다.
+쿠버네티스는 공식적으로 [Go](#go-client), [Python](#python-client), [Java](#java-client), [dotnet](#dotnet-client), [JavaScript](#javascript-client) 및 [Haskell](#haskell-client) 용 클라이언트 라이브러리를 지원한다. 쿠버네티스 팀이 아닌 작성자가 제공하고 유지 관리하는 다른 클라이언트 라이브러리가 있다. 다른 언어에서 API에 접근하고 인증하는 방법에 대해서는 [클라이언트 라이브러리](/ko/docs/reference/using-api/client-libraries/)를 참고한다.
 
 #### Go 클라이언트 {#go-client}
 
diff --git a/content/ko/docs/tasks/administer-cluster/change-default-storage-class.md b/content/ko/docs/tasks/administer-cluster/change-default-storage-class.md
index ff6379ee1f..2f64503d49 100644
--- a/content/ko/docs/tasks/administer-cluster/change-default-storage-class.md
+++ b/content/ko/docs/tasks/administer-cluster/change-default-storage-class.md
@@ -80,7 +80,7 @@ content_type: task
       최대 1개의 스토리지클래스를 기본값으로 표시할 수 있다는 것을 알아두자. 만약
 	  2개 이상이 기본값으로 표시되면, 명시적으로 `storageClassName` 가 지정되지 않은 `PersistentVolumeClaim` 은 생성될 수 없다.
 
-1. 사용자가 선택한 스토리지클래스가 기본값으로 되어있는지 확인한다.
+1. 사용자가 선택한 스토리지클래스가 기본값으로 되어 있는지 확인한다.
 
       ```bash
       kubectl get storageclass
diff --git a/content/ko/docs/tasks/administer-cluster/change-pv-reclaim-policy.md b/content/ko/docs/tasks/administer-cluster/change-pv-reclaim-policy.md
index 2d1b723e27..1c3b362a56 100644
--- a/content/ko/docs/tasks/administer-cluster/change-pv-reclaim-policy.md
+++ b/content/ko/docs/tasks/administer-cluster/change-pv-reclaim-policy.md
@@ -7,14 +7,10 @@ content_type: task
 이 페이지는 쿠버네티스 퍼시트턴트볼륨(PersistentVolume)의 반환 정책을
 변경하는 방법을 보여준다.
 
-
 ## {{% heading "prerequisites" %}}
 
-
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
-
-
 <!-- steps -->
 
 ## 왜 퍼시스턴트볼륨 반환 정책을 변경하는가?
@@ -33,63 +29,68 @@ content_type: task
 
 1. 사용자의 클러스터에서 퍼시스턴트볼륨을 조회한다.
 
-    ```shell
-    kubectl get pv
-    ```
+   ```shell
+   kubectl get pv
+   ```
 
-	결과는 아래와 같다.
+   결과는 아래와 같다.
 
-        NAME                                       CAPACITY   ACCESSMODES   RECLAIMPOLICY   STATUS    CLAIM             STORAGECLASS     REASON    AGE
-        pvc-b6efd8da-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim1    manual                     10s
-        pvc-b95650f8-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim2    manual                     6s
-        pvc-bb3ca71d-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim3    manual                     3s
+   ```none
+   NAME                                       CAPACITY   ACCESSMODES   RECLAIMPOLICY   STATUS    CLAIM             STORAGECLASS     REASON    AGE
+   pvc-b6efd8da-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim1    manual                     10s
+   pvc-b95650f8-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim2    manual                     6s
+   pvc-bb3ca71d-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim3    manual                     3s
+   ```
 
-	 이 목록은 동적으로 프로비저닝 된 볼륨을 쉽게 식별할 수 있도록
+   이 목록은 동적으로 프로비저닝 된 볼륨을 쉽게 식별할 수 있도록
    각 볼륨에 바인딩 되어 있는 퍼시스턴트볼륨클레임(PersistentVolumeClaim)의 이름도 포함한다.
 
 1. 사용자의 퍼시스턴트볼륨 중 하나를 선택한 후에 반환 정책을 변경한다.
 
-    ```shell
-    kubectl patch pv <your-pv-name> -p '{"spec":{"persistentVolumeReclaimPolicy":"Retain"}}'
-    ```
+   ```shell
+   kubectl patch pv <your-pv-name> -p '{"spec":{"persistentVolumeReclaimPolicy":"Retain"}}'
+   ```
 
-	`<your-pv-name>` 는 사용자가 선택한 퍼시스턴트볼륨의 이름이다.
+   여기서 `<your-pv-name>` 는 사용자가 선택한 퍼시스턴트볼륨의 이름이다.
 
-    {{< note >}}
-	윈도우에서는, 공백이 포함된 모든 JSONPath 템플릿에 _겹_ 따옴표를 사용해야 한다.(bash에 대해 위에서 표시된 홑 따옴표가 아니다.) 따라서 템플릿의 모든 표현식에서 홑 따옴표를 쓰거나, 이스케이프 처리된 겹 따옴표를 써야 한다. 예를 들면 다음과 같다.
+   {{< note >}}
+   윈도우에서는, 공백이 포함된 모든 JSONPath 템플릿에 _겹_ 따옴표를 사용해야 한다.
+   (bash에 대해 위에서 표시된 홑 따옴표가 아니다.) 
+   따라서 템플릿의 모든 표현식에서 홑 따옴표를 쓰거나, 이스케이프 처리된 겹 따옴표를 써야 한다. 예를 들면 다음과 같다.
 
-```cmd
-kubectl patch pv <your-pv-name> -p "{\"spec\":{\"persistentVolumeReclaimPolicy\":\"Retain\"}}"
-```
-
-    {{< /note >}}
+   ```cmd
+   kubectl patch pv <your-pv-name> -p "{\"spec\":{\"persistentVolumeReclaimPolicy\":\"Retain\"}}"
+   ```
+   {{< /note >}}
 
 1. 선택한 PersistentVolume이 올바른 정책을 갖는지 확인한다.
 
-    ```shell
-    kubectl get pv
-    ```
+   ```shell
+   kubectl get pv
+   ```
 
-	결과는 아래와 같다.
-
-        NAME                                       CAPACITY   ACCESSMODES   RECLAIMPOLICY   STATUS    CLAIM             STORAGECLASS     REASON    AGE
-        pvc-b6efd8da-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim1    manual                     40s
-        pvc-b95650f8-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim2    manual                     36s
-        pvc-bb3ca71d-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Retain          Bound     default/claim3    manual                     33s
-
-	위 결과에서, `default/claim3` 클레임과 바인딩 되어 있는 볼륨이 `Retain` 반환 정책을
-	갖는 것을 볼 수 있다. 사용자가 `default/claim3` 클레임을 삭제할 경우,
-	볼륨은 자동으로 삭제 되지 않는다.
+   결과는 아래와 같다.
 
+   ```none
+   NAME                                       CAPACITY   ACCESSMODES   RECLAIMPOLICY   STATUS    CLAIM             STORAGECLASS     REASON    AGE
+   pvc-b6efd8da-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim1    manual                     40s
+   pvc-b95650f8-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim2    manual                     36s
+   pvc-bb3ca71d-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Retain          Bound     default/claim3    manual                     33s
+   ```
 
+   위 결과에서, `default/claim3` 클레임과 바인딩 되어 있는 볼륨이 `Retain` 반환 정책을
+   갖는 것을 볼 수 있다. 사용자가 `default/claim3` 클레임을 삭제할 경우,
+   볼륨은 자동으로 삭제 되지 않는다.
 
 ## {{% heading "whatsnext" %}}
 
 * [퍼시스턴트볼륨](/ko/docs/concepts/storage/persistent-volumes/)에 대해 더 배워 보기.
 * [퍼시스턴트볼륨클레임](/ko/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims)에 대해 더 배워 보기.
 
-### Reference
+### 레퍼런스 {#reference}
 
-* [퍼시스턴트볼륨](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#persistentvolume-v1-core)
-* [퍼시스턴트볼륨클레임](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#persistentvolumeclaim-v1-core)
-* [PersistentVolumeSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#persistentvolumeclaim-v1-core)의 `persistentVolumeReclaimPolicy` 필드에 대해 보기.
+* {{< api-reference page="config-and-storage-resources/persistent-volume-v1" >}}
+  * 퍼시스턴트볼륨의 `.spec.persistentVolumeReclaimPolicy` 
+    [필드](/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-v1/#PersistentVolumeSpec)에 
+    주의한다.
+* {{< api-reference page="config-and-storage-resources/persistent-volume-claim-v1" >}}
diff --git a/content/ko/docs/tasks/administer-cluster/coredns.md b/content/ko/docs/tasks/administer-cluster/coredns.md
index 414f681901..820575365a 100644
--- a/content/ko/docs/tasks/administer-cluster/coredns.md
+++ b/content/ko/docs/tasks/administer-cluster/coredns.md
@@ -1,4 +1,6 @@
 ---
+
+
 title: 서비스 디스커버리를 위해 CoreDNS 사용하기
 min-kubernetes-server-version: v1.9
 content_type: task
@@ -17,11 +19,14 @@ content_type: task
 
 ## CoreDNS 소개
 
-[CoreDNS](https://coredns.io)는 쿠버네티스 클러스터의 DNS 역할을 수행할 수 있는, 유연하고 확장 가능한 DNS 서버이다.
-쿠버네티스와 동일하게, CoreDNS 프로젝트도 {{< glossary_tooltip text="CNCF" term_id="cncf" >}}가 관리한다.
+[CoreDNS](https://coredns.io)는 쿠버네티스 클러스터의 DNS 역할을 수행할 수 있는, 
+유연하고 확장 가능한 DNS 서버이다.
+쿠버네티스와 동일하게, CoreDNS 프로젝트도 
+{{< glossary_tooltip text="CNCF" term_id="cncf" >}}가 관리한다.
 
-사용자는 기존 디플로이먼트인 kube-dns를 교체하거나, 클러스터를 배포하고 업그레이드하는 
-kubeadm과 같은 툴을 사용하여 클러스터 안의 kube-dns 대신 CoreDNS를 사용할 수 있다.
+사용자는 기존 디플로이먼트인 kube-dns를 교체하거나, 
+클러스터를 배포하고 업그레이드하는 kubeadm과 같은 툴을 사용하여 
+클러스터 안의 kube-dns 대신 CoreDNS를 사용할 수 있다.
 
 ## CoreDNS 설치
 
@@ -32,46 +37,43 @@ Kube-dns의 배포나 교체에 관한 매뉴얼은 [CoreDNS GitHub 프로젝트
 
 ### Kubeadm을 사용해 기존 클러스터 업그레이드하기
 
-쿠버네티스 버전 1.10 이상에서, `kube-dns` 를 사용하는 클러스터를 업그레이드하기 위하여
-`kubeadm` 을 사용할 때 CoreDNS로 전환할 수도 있다. 이 경우, `kubeadm` 은
-`kube-dns` 컨피그맵(ConfigMap)을 기반으로 스텁 도메인(stub domain), 업스트림 네임 서버의
-설정을 유지하며 CoreDNS 설정("Corefile")을 생성한다.
+쿠버네티스 버전 1.21에서, kubeadm은 DNS 애플리케이션으로서의 `kube-dns` 지원을 제거했다. 
+`kubeadm` v{{< skew currentVersion >}} 버전에서는, 
+DNS 애플리케이션으로 CoreDNS만이 지원된다.
 
-만약 kube-dns에서 CoreDNS로 이동하는 경우, 업그레이드 과정에서 기능 게이트의 `CoreDNS` 값을 `true` 로 설정해야 한다.
-예를 들어, `v1.11.0` 로 업그레이드 하는 경우는 다음과 같다.
-```
-kubeadm upgrade apply v1.11.0 --feature-gates=CoreDNS=true
-```
-
-쿠버네티스 1.13 이상에서 기능 게이트의 `CoreDNS` 항목은 제거되었으며, CoreDNS가 기본적으로 사용된다.
-
-1.11 미만 버전일 경우 업그레이드 과정에서 만들어진 파일이 Corefile을 **덮어쓴다**.
-**만약 컨피그맵을 사용자 정의한 경우, 기존의 컨피그맵을 저장해야 한다.** 새 컨피그맵이
-시작된 후에 변경 사항을 다시 적용해야 할 수도 있다.
-
-만약 쿠버네티스 1.11 이상 버전에서 CoreDNS를 사용하는 경우, 업그레이드 과정에서,
-기존의 Corefile이 유지된다.
-
-쿠버네티스 버전 1.21에서, kubeadm 의 `kube-dns` 지원 기능이 삭제되었다.
+`kube-dns`를 사용 중인 클러스터를 업그레이드하기 위하여 
+`kubeadm` 을 사용할 때 CoreDNS로 전환할 수 있다. 
+이 경우, `kubeadm` 은 `kube-dns` 컨피그맵(ConfigMap)을 기반으로 
+스텁 도메인(stub domain), 업스트림 네임 서버의 설정을 유지하며 CoreDNS 설정("Corefile")을 생성한다.
 
 ## CoreDNS 업그레이드하기
 
-CoreDNS는 쿠버네티스 1.9 버전부터 사용할 수 있다.
-쿠버네티스와 함께 제공되는 CoreDNS의 버전과 CoreDNS의 변경 사항은 [여기](https://github.com/coredns/deployment/blob/master/kubernetes/CoreDNS-k8s_version.md)에서 확인할 수 있다.
+[쿠버네티스에서의 CoreDNS 버전](https://github.com/coredns/deployment/blob/master/kubernetes/CoreDNS-k8s_version.md) 페이지에서, 
+쿠버네티스 각 버전에 대해 kubeadm이 설치하는 
+CoreDNS의 버전을 확인할 수 있다.
+
+CoreDNS만 업그레이드하고 싶거나 커스텀 이미지를 사용하고 싶은 경우, 
+CoreDNS를 수동으로 업그레이드할 수 있다. 
+[가이드라인 및 따라해보기](https://github.com/coredns/deployment/blob/master/kubernetes/Upgrading_CoreDNS.md)를 참고하여 
+부드러운 업그레이드를 수행할 수 있다. 
+클러스터를 업그레이드할 때 
+기존 CoreDNS 환경 설정("Corefile")을 보존했는지 확인한다.
+
+`kubeadm` 도구를 사용하여 클러스터를 업그레이드하는 경우, 
+`kubeadm`이 자동으로 기존 CoreDNS 환경 설정을 보존한다.
 
-CoreDNS는 사용자 정의 이미지를 사용하거나 CoreDNS만 업그레이드 하려는 경우에 수동으로 업그레이드할 수 있다.
-업그레이드를 원활하게 수행하는 데 유용한 [가이드라인 및 연습](https://github.com/coredns/deployment/blob/master/kubernetes/Upgrading_CoreDNS.md)을 참고하자.
 
 ## CoreDNS 튜닝하기
 
-리소스 활용이 중요한 경우, CoreDNS 구성을 조정하는 것이 유용할 수 있다. 
-더 자세한 내용은 [CoreDNS 스케일링에 대한 설명서](https://github.com/coredns/deployment/blob/master/kubernetes/Scaling_CoreDNS.md)를 확인하자.
-
-
+리소스 활용이 중요한 경우, 
+CoreDNS 구성을 조정하는 것이 유용할 수 있다. 
+더 자세한 내용은 [CoreDNS 스케일링에 대한 설명서](https://github.com/coredns/deployment/blob/master/kubernetes/Scaling_CoreDNS.md)를 확인한다.
 
 ## {{% heading "whatsnext" %}}
 
-
-`Corefile` 을 수정하여 kube-dns 보다 더 많은 유스케이스를 지원하도록 
-[CoreDNS](https://coredns.io)를 구성할 수 있다.
-더 자세한 내용은 [CoreDNS 웹사이트](https://coredns.io/2017/05/08/custom-dns-entries-for-kubernetes/)을 확인하자.
+CoreDNS 환경 설정("Corefile")을 수정하여 
+kube-dns보다 더 많은 유스케이스를 지원하도록 [CoreDNS](https://coredns.io)를 구성할 수 있다. 
+더 많은 정보는 CoreDNS의 `kubernetes` 플러그인 
+[문서](https://coredns.io/plugins/kubernetes/)를 참고하거나, 
+CoreDNS 블로그의 
+[쿠버네티스를 위한 커스텀 DNS 엔트리](https://coredns.io/2017/05/08/custom-dns-entries-for-kubernetes/)를 확인한다.
diff --git a/content/ko/docs/tasks/administer-cluster/declare-network-policy.md b/content/ko/docs/tasks/administer-cluster/declare-network-policy.md
index 6d4193e63c..682ad19a24 100644
--- a/content/ko/docs/tasks/administer-cluster/declare-network-policy.md
+++ b/content/ko/docs/tasks/administer-cluster/declare-network-policy.md
@@ -68,7 +68,7 @@ pod/nginx-701339712-e0qfq   1/1           Running       0          35s
 사용자는 다른 파드에서 새 `nginx` 서비스에 접근할 수 있어야 한다. `default` 네임스페이스에 있는 다른 파드에서 `nginx` 서비스에 접근하기 위하여, busybox 컨테이너를 생성한다.
 
 ```console
-kubectl run busybox --rm -ti --image=busybox -- /bin/sh
+kubectl run busybox --rm -ti --image=busybox:1.28 -- /bin/sh
 ```
 
 사용자 쉘에서, 다음의 명령을 실행한다.
@@ -111,7 +111,7 @@ networkpolicy.networking.k8s.io/access-nginx created
 올바른 레이블이 없는 파드에서 `nginx` 서비스에 접근하려 할 경우, 요청 타임 아웃이 발생한다.
 
 ```console
-kubectl run busybox --rm -ti --image=busybox -- /bin/sh
+kubectl run busybox --rm -ti --image=busybox:1.28 -- /bin/sh
 ```
 
 사용자 쉘에서, 다음의 명령을 실행한다.
@@ -130,7 +130,7 @@ wget: download timed out
 사용자는 요청이 허용되도록 하기 위하여 올바른 레이블을 갖는 파드를 생성한다.
 
 ```console
-kubectl run busybox --rm -ti --labels="access=true" --image=busybox -- /bin/sh
+kubectl run busybox --rm -ti --labels="access=true" --image=busybox:1.28 -- /bin/sh
 ```
 
 사용자 쉘에서, 다음의 명령을 실행한다.
diff --git a/content/ko/docs/tasks/administer-cluster/dns-custom-nameservers.md b/content/ko/docs/tasks/administer-cluster/dns-custom-nameservers.md
index f681bc8778..df79fe7790 100644
--- a/content/ko/docs/tasks/administer-cluster/dns-custom-nameservers.md
+++ b/content/ko/docs/tasks/administer-cluster/dns-custom-nameservers.md
@@ -1,4 +1,7 @@
 ---
+
+
+
 title: DNS 서비스 사용자 정의하기
 content_type: task
 min-kubernetes-server-version: v1.12
@@ -23,7 +26,7 @@ DNS 변환(DNS resolution) 절차를 사용자 정의하는 방법을 설명한
 
 ## 소개
 
-DNS는 _애드온 관리자_ 인 [클러스터 애드온](https://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/README.md)을
+DNS는 _애드온 관리자_ 인 [클러스터 애드온](https://releases.k8s.io/master/cluster/addons/README.md)을
 사용하여 자동으로 시작되는 쿠버네티스
 내장 서비스이다.
 
diff --git a/content/ko/docs/tasks/administer-cluster/enabling-topology-aware-hints.md b/content/ko/docs/tasks/administer-cluster/enabling-topology-aware-hints.md
deleted file mode 100644
index c0342fb377..0000000000
--- a/content/ko/docs/tasks/administer-cluster/enabling-topology-aware-hints.md
+++ /dev/null
@@ -1,38 +0,0 @@
----
-title: 토폴로지 인지 힌트 활성화하기
-content_type: task
-min-kubernetes-server-version: 1.21
----
-
-<!-- overview -->
-{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
-
-_토폴로지 인지 힌트_ 는 {{< glossary_tooltip text="엔드포인트슬라이스(EndpointSlices)" term_id="endpoint-slice" >}}에 포함되어 있는 
-토폴로지 정보를 이용해 토폴로지 인지 라우팅을 가능하게 한다.
-이 방법은 트래픽을 해당 트래픽이 시작된 곳과 최대한 근접하도록 라우팅하는데,
-이를 통해 비용을 줄이거나 네트워크 성능을 향상시킬 수 있다.
-
-## {{% heading "prerequisites" %}}
-
-  {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-토폴로지 인지 힌트를 활성화하기 위해서는 다음의 필수 구성 요소가 필요하다.
-
-* {{< glossary_tooltip text="kube-proxy" term_id="kube-proxy" >}}가 
-  iptables 모드 혹은 IPVS 모드로 동작하도록 설정
-* 엔드포인트슬라이스가 비활성화되지 않았는지 확인
-
-## 토폴로지 인지 힌트 활성화하기
-
-서비스 토폴로지 힌트를 활성화하기 위해서는 kube-apiserver, kube-controller-manager, kube-proxy에 대해
-`TopologyAwareHints` [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를
-활성화한다.
-
-```
---feature-gates="TopologyAwareHints=true"
-```
-
-## {{% heading "whatsnext" %}}
-
-* 서비스 항목 아래의 [토폴로지 인지 힌트](/docs/concepts/services-networking/topology-aware-hints)를 참고
-* [서비스와 애플리케이션 연결하기](/ko/docs/concepts/services-networking/connect-applications-service/)를 참고
diff --git a/content/ko/docs/tasks/administer-cluster/highly-available-control-plane.md b/content/ko/docs/tasks/administer-cluster/highly-available-control-plane.md
deleted file mode 100644
index 2ee11427f3..0000000000
--- a/content/ko/docs/tasks/administer-cluster/highly-available-control-plane.md
+++ /dev/null
@@ -1,216 +0,0 @@
----
-
-
-title: 고가용성 쿠버네티스 클러스터 컨트롤 플레인 설정하기
-content_type: task
-
----
-
-<!-- overview -->
-
-{{< feature-state for_k8s_version="v1.5" state="alpha" >}}
-
-구글 컴퓨트 엔진(Google Compute Engine, 이하 GCE)의 `kube-up`이나 `kube-down` 스크립트에 쿠버네티스 컨트롤 플레인 노드를 복제할 수 있다. 하지만 이러한 스크립트들은 프로덕션 용도로 사용하기에 적합하지 않으며, 프로젝트의 CI에서만 주로 사용된다.
-이 문서는 kube-up/down 스크립트를 사용하여 고가용(HA) 컨트롤 플레인을 관리하는 방법과 GCE와 함께 사용하기 위해 HA 컨트롤 플레인을 구현하는 방법에 관해 설명한다.
-
-
-
-
-## {{% heading "prerequisites" %}}
-
-
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-
-
-<!-- steps -->
-
-## HA 호환 클러스터 시작
-
-새 HA 호환 클러스터를 생성하려면, `kube-up` 스크립트에 다음 플래그를 설정해야 한다.
-
-* `MULTIZONE=true` - 서버의 기본 영역(zone)과 다른 영역에서 컨트롤 플레인 kubelet이 제거되지 않도록 한다.
-여러 영역에서 컨트롤 플레인 노드를 실행(권장됨)하려는 경우에 필요하다.
-
-* `ENABLE_ETCD_QUORUM_READ=true` - 모든 API 서버에서 읽은 내용이 최신 데이터를 반환하도록 하기 위한 것이다.
-true인 경우, Etcd의 리더 복제본에서 읽는다.
-이 값을 true로 설정하는 것은 선택 사항이다. 읽기는 더 안정적이지만 느리게 된다.
-
-선택적으로, 첫 번째 컨트롤 플레인 노드가 생성될 GCE 영역을 지정할 수 있다.
-다음 플래그를 설정한다.
-
-* `KUBE_GCE_ZONE=zone` - 첫 번째 컨트롤 플레인 노드가 실행될 영역.
-
-다음 샘플 커맨드는 europe-west1-b GCE 영역에 HA 호환 클러스터를 구성한다.
-
-```shell
-MULTIZONE=true KUBE_GCE_ZONE=europe-west1-b  ENABLE_ETCD_QUORUM_READS=true ./cluster/kube-up.sh
-```
-
-위의 커맨드는 하나의 컨트롤 플레인 노드를 포함하는 클러스터를 생성한다.
-그러나 후속 커맨드로 새 컨트롤 플레인 노드를 추가할 수 있다.
-
-## 새 컨트롤 플레인 노드 추가
-
-HA 호환 클러스터를 생성했다면, 여기에 컨트롤 플레인 노드를 추가할 수 있다.
-`kube-up` 스크립트에 다음 플래그를 사용하여 컨트롤 플레인 노드를 추가한다.
-
-* `KUBE_REPLICATE_EXISTING_MASTER=true` - 기존 컨트롤 플레인 노드의 복제본을
-만든다.
-
-* `KUBE_GCE_ZONE=zone` - 컨트롤 플레인 노드가 실행될 영역.
-반드시 다른 컨트롤 플레인 노드가 존재하는 영역과 동일한 지역(region)에 있어야 한다.
-
-HA 호환 클러스터를 시작할 때, 상속되는 `MULTIZONE`이나 `ENABLE_ETCD_QUORUM_READS` 플래그를 따로
-설정할 필요는 없다.
-
-다음 샘플 커맨드는 기존 HA 호환 클러스터에서
-컨트롤 플레인 노드를 복제한다.
-
-```shell
-KUBE_GCE_ZONE=europe-west1-c KUBE_REPLICATE_EXISTING_MASTER=true ./cluster/kube-up.sh
-```
-
-## 컨트롤 플레인 노드 제거
-
-다음 플래그가 있는 `kube-down` 스크립트를 사용하여 HA 클러스터에서 컨트롤 플레인 노드를 제거할 수 있다.
-
-* `KUBE_DELETE_NODES=false` - kubelet을 삭제하지 않기 위한 것이다.
-
-* `KUBE_GCE_ZONE=zone` - 컨트롤 플레인 노드가 제거될 영역.
-
-* `KUBE_REPLICA_NAME=replica_name` - (선택) 제거할 컨트롤 플레인 노드의 이름.
-명시하지 않으면, 해당 영역의 모든 복제본이 제거된다.
-
-다음 샘플 커맨드는 기존 HA 클러스터에서 컨트롤 플레인 노드를 제거한다.
-
-```shell
-KUBE_DELETE_NODES=false KUBE_GCE_ZONE=europe-west1-c ./cluster/kube-down.sh
-```
-
-## 동작에 실패한 컨트롤 플레인 노드 처리
-
-HA 클러스터의 컨트롤 플레인 노드 중 하나가 동작에 실패하면,
-클러스터에서 해당 노드를 제거하고 동일한 영역에 새 컨트롤 플레인
-노드를 추가하는 것이 가장 좋다.
-다음 샘플 커맨드로 이 과정을 시연한다.
-
-1. 손상된 복제본을 제거한다.
-
-```shell
-KUBE_DELETE_NODES=false KUBE_GCE_ZONE=replica_zone KUBE_REPLICA_NAME=replica_name ./cluster/kube-down.sh
-```
-
-<ol start="2"><li>기존 복제본을 대신할 새 노드를 추가한다.</li></ol>
-
-```shell
-KUBE_GCE_ZONE=replica-zone KUBE_REPLICATE_EXISTING_MASTER=true ./cluster/kube-up.sh
-```
-
-## HA 클러스터에서 컨트롤 플레인 노드 복제에 관한 모범 사례
-
-* 다른 영역에 컨트롤 플레인 노드를 배치하도록 한다. 한 영역이 동작에 실패하는 동안,
-해당 영역에 있는 컨트롤 플레인 노드도 모두 동작에 실패할 것이다.
-영역 장애를 극복하기 위해 노드를 여러 영역에 배치한다
-(더 자세한 내용은 [멀티 영역](/ko/docs/setup/best-practices/multiple-zones/)를 참조한다).
-
-* 두 개의 노드로 구성된 컨트롤 플레인은 사용하지 않는다. 두 개의 노드로 구성된
-컨트롤 플레인에서의 합의를 위해서는 지속적 상태(persistent state) 변경 시 두 컨트롤 플레인 노드가 모두 정상적으로 동작 중이어야 한다.
-결과적으로 두 컨트롤 플레인 노드 모두 필요하고, 둘 중 한 컨트롤 플레인 노드에만 장애가 발생해도
-클러스터의 심각한 장애 상태를 초래한다.
-따라서 HA 관점에서는 두 개의 노드로 구성된 컨트롤 플레인은
-단일 노드로 구성된 컨트롤 플레인보다도 못하다.
-
-* 컨트롤 플레인 노드를 추가하면, 클러스터의 상태(Etcd)도 새 인스턴스로 복사된다.
-클러스터가 크면, 이 상태를 복제하는 시간이 오래 걸릴 수 있다.
-이 작업은 [etcd 관리 가이드](https://etcd.io/docs/v2.3/admin_guide/#member-migration)에 기술한 대로
-Etcd 데이터 디렉터리를 마이그레이션하여 속도를 높일 수 있다.
-(향후에 Etcd 데이터 디렉터리 마이그레이션 지원 추가를 고려 중이다)
-
-
-
-<!-- discussion -->
-
-## 구현 지침
-
-![ha-master-gce](/images/docs/ha-master-gce.png)
-
-### 개요
-
-각 컨트롤 플레인 노드는 다음 모드에서 다음 구성 요소를 실행한다.
-
-* Etcd 인스턴스: 모든 인스턴스는 합의를 사용하여 함께 클러스터화 한다.
-
-* API 서버: 각 서버는 내부 Etcd와 통신한다. 클러스터의 모든 API 서버가 가용하게 된다.
-
-* 컨트롤러, 스케줄러, 클러스터 오토스케일러: 임대 방식을 이용한다. 각 인스턴스 중 하나만이 클러스터에서 활성화된다.
-
-* 애드온 매니저: 각 매니저는 애드온의 동기화를 유지하려고 독립적으로 작업한다.
-
-또한 API 서버 앞단에 외부/내부 트래픽을 라우팅하는 로드 밸런서가 있을 것이다.
-
-### 로드 밸런싱
-
-두 번째 컨트롤 플레인 노드를 배치할 때, 두 개의 복제본에 대한 로드 밸런서가 생성될 것이고, 첫 번째 복제본의 IP 주소가 로드 밸런서의 IP 주소로 승격된다.
-비슷하게 끝에서 두 번째의 컨트롤 플레인 노드를 제거한 후에는 로드 밸런서가 제거되고
-해당 IP 주소는 마지막으로 남은 복제본에 할당된다.
-로드 밸런서 생성 및 제거는 복잡한 작업이며, 이를 전파하는 데 시간(~20분)이 걸릴 수 있다.
-
-### 컨트롤 플레인 서비스와 Kubelet
-
-쿠버네티스 서비스에서 최신의 쿠버네티스 API 서버 목록을 유지하는 대신,
-시스템은 모든 트래픽을 외부 IP 주소로 보낸다.
-
-* 단일 노드 컨트롤 플레인의 경우, IP 주소는 단일 컨트롤 플레인 노드를 가리킨다.
-
-* 고가용성 컨트롤 플레인의 경우, IP 주소는 컨트롤 플레인 노드 앞의 로드밸런서를 가리킨다.
-
-마찬가지로 Kubelet은 외부 IP 주소를 사용하여 컨트롤 플레인과 통신한다.
-
-### 컨트롤 플레인 노드 인증서
-
-쿠버네티스는 각 컨트롤 플레인 노드의 외부 퍼블릭 IP 주소와 내부 IP 주소를 대상으로 TLS 인증서를 발급한다.
-컨트롤 플레인 노드의 임시 퍼블릭 IP 주소에 대한 인증서는 없다.
-임시 퍼블릭 IP 주소를 통해 컨트롤 플레인 노드에 접근하려면, TLS 검증을 건너뛰어야 한다.
-
-### etcd 클러스터화
-
-etcd를 클러스터로 구축하려면, etcd 인스턴스간 통신에 필요한 포트를 열어야 한다(클러스터 내부 통신용).
-이러한 배포를 안전하게 하기 위해, etcd 인스턴스간의 통신은 SSL을 이용하여 승인한다.
-
-### API 서버 신원
-
-{{< feature-state state="alpha" for_k8s_version="v1.20" >}}
-
-API 서버 식별 기능은
-[기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)에
-의해 제어되며 기본적으로 활성화되지 않는다.
-{{< glossary_tooltip text="API 서버" term_id="kube-apiserver" >}}
-시작 시 `APIServerIdentity` 라는 기능 게이트를 활성화하여 API 서버 신원을 활성화할 수 있다.
-
-```shell
-kube-apiserver \
---feature-gates=APIServerIdentity=true \
- # …다른 플래그는 평소와 같다.
-```
-
-부트스트랩 중에 각 kube-apiserver는 고유한 ID를 자신에게 할당한다. ID는
-`kube-apiserver-{UUID}` 형식이다. 각 kube-apiserver는
-_kube-system_ {{< glossary_tooltip text="네임스페이스" term_id="namespace">}}에
-[임대](/docs/reference/generated/kubernetes-api/{{< param "version" >}}//#lease-v1-coordination-k8s-io)를 생성한다.
-임대 이름은 kube-apiserver의 고유 ID이다. 임대에는
-`k8s.io/component=kube-apiserver` 라는 레이블이 있다. 각 kube-apiserver는
-`IdentityLeaseRenewIntervalSeconds` (기본값은 10초)마다 임대를 새로 갱신한다. 각
-kube-apiserver는 `IdentityLeaseDurationSeconds` (기본값은 3600초)마다
-모든 kube-apiserver 식별 ID 임대를 확인하고,
-`IdentityLeaseDurationSeconds` 이상 갱신되지 않은 임대를 삭제한다.
-`IdentityLeaseRenewIntervalSeconds` 및 `IdentityLeaseDurationSeconds`는
-kube-apiserver 플래그 `identity-lease-renew-interval-seconds`
-및 `identity-lease-duration-seconds`로 구성된다.
-
-이 기능을 활성화하는 것은 HA API 서버 조정과 관련된 기능을
-사용하기 위한 전제조건이다(예: `StorageVersionAPI` 기능 게이트).
-
-## 추가 자료
-
-[자동화된 HA 마스터 배포 - 제안 문서](https://git.k8s.io/community/contributors/design-proposals/cluster-lifecycle/ha_master.md)
diff --git a/content/ko/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes.md b/content/ko/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes.md
index e67a08a74e..a950d50b95 100644
--- a/content/ko/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes.md
+++ b/content/ko/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes.md
@@ -1,4 +1,9 @@
 ---
+
+
+
+
+
 title: 윈도우 노드 추가
 min-kubernetes-server-version: 1.17
 content_type: tutorial
@@ -12,8 +17,6 @@ weight: 30
 쿠버네티스를 사용하여 리눅스와 윈도우 노드를 혼합하여 실행할 수 있으므로, 리눅스에서 실행되는 파드와 윈도우에서 실행되는 파드를 혼합할 수 있다. 이 페이지는 윈도우 노드를 클러스터에 등록하는 방법을 보여준다.
 
 
-
-
 ## {{% heading "prerequisites" %}}
  {{< version-check >}}
 
@@ -142,33 +145,7 @@ curl -L https://github.com/kubernetes-sigs/sig-windows-tools/releases/latest/dow
 {{< /note >}}
 
 {{< tabs name="tab-windows-kubeadm-runtime-installation" >}}
-{{% tab name="Docker EE" %}}
 
-#### Docker EE 설치
-
-`컨테이너` 기능 설치
-
-```powershell
-Install-WindowsFeature -Name containers
-```
-
-도커 설치
-자세한 내용은 [도커 엔진 설치 - 윈도우 서버 엔터프라이즈](https://hub.docker.com/editions/enterprise/docker-ee-server-windows)에서 확인할 수 있다.
-
-#### wins, kubelet 및 kubeadm 설치
-
-   ```PowerShell
-   curl.exe -LO https://github.com/kubernetes-sigs/sig-windows-tools/releases/latest/download/PrepareNode.ps1
-   .\PrepareNode.ps1 -KubernetesVersion {{< param "fullversion" >}}
-   ```
-
-#### `kubeadm` 실행하여 노드에 조인
-
-컨트롤 플레인 호스트에서 `kubeadm init` 실행할 때 제공된 명령을 사용한다.
-이 명령이 더 이상 없거나, 토큰이 만료된 경우, `kubeadm token create --print-join-command`
-(컨트롤 플레인 호스트에서)를 실행하여 새 토큰 및 조인 명령을 생성할 수 있다.
-
-{{% /tab %}}
 {{% tab name="CRI-containerD" %}}
 
 #### containerD 설치
@@ -186,9 +163,6 @@ curl.exe -LO https://github.com/kubernetes-sigs/sig-windows-tools/releases/lates
 .\Install-Containerd.ps1 -ContainerDVersion 1.4.1
 ```
 
-{{< /note >}}
-
-{{< note >}}
 윈도우 노드에서 이더넷(예: "Ethernet0 2")이 아닌 다른 인터페이스를 사용하는 경우, `-netAdapterName` 으로 이름을 지정한다.
 
 ```powershell
@@ -201,21 +175,63 @@ curl.exe -LO https://github.com/kubernetes-sigs/sig-windows-tools/releases/lates
 #### wins, kubelet 및 kubeadm 설치
 
 ```PowerShell
-curl.exe -LO https://github.com/kubernetes-sigs/sig-windows-tools/releases/latest/download/PrepareNode.ps1
+curl.exe -LO https://raw.githubusercontent.com/kubernetes-sigs/sig-windows-tools/master/kubeadm/scripts/PrepareNode.ps1
 .\PrepareNode.ps1 -KubernetesVersion {{< param "fullversion" >}} -ContainerRuntime containerD
 ```
 
+kubeadm이 CRI 엔드포인트와 통신하기 위해 필요한 
+[`crictl`을 cri-tools 패키지로부터 설치한다](https://github.com/kubernetes-sigs/cri-tools).
+
 #### `kubeadm` 실행하여 노드에 조인
 
     컨트롤 플레인 호스트에서 `kubeadm init` 실행할 때 제공된 명령을 사용한다.
     이 명령이 더 이상 없거나, 토큰이 만료된 경우, `kubeadm token create --print-join-command`
     (컨트롤 플레인 호스트에서)를 실행하여 새 토큰 및 조인 명령을 생성할 수 있다.
 
+{{% /tab %}}
+
+{{% tab name="Docker Engine" %}}
+
+#### Docker Engine 설치
+
+`컨테이너` 기능 설치
+
+```powershell
+Install-WindowsFeature -Name containers
+```
+
+도커 설치에 대한 
+자세한 내용은 [도커 엔진 설치 - 윈도우 서버 엔터프라이즈](https://docs.microsoft.com/ko-kr/virtualization/windowscontainers/quick-start/set-up-environment?tabs=Windows-Server#install-docker)에서 확인할 수 있다.
+
+kubelet이 CRI 호환 엔드포인트를 통해 도커와 통신하기 위해 필요한 
+[cri-dockerd를 설치](https://github.com/Mirantis/cri-dockerd)한다.
+
 {{< note >}}
-**CRI-containerD** 를 사용하는 경우 kubeadm 호출에 `--cri-socket "npipe:////./pipe/containerd-containerd"` 를 추가한다
+도커 엔진은 컨테이너 런타임이 쿠버네티스와 호환되기 위한 요구 사항인 
+[CRI](/ko/docs/concepts/architecture/cri/)를 만족하지 않는다. 
+이러한 이유로, 추가 서비스인 [cri-dockerd](https://github.com/Mirantis/cri-dockerd)가 설치되어야 한다. 
+cri-dockerd는 쿠버네티스 버전 1.24부터 kubelet에서 [제거](/dockershim/)된 
+기존 내장 도커 엔진 지원을 기반으로 한 프로젝트이다.
 {{< /note >}}
 
+kubeadm이 CRI 엔드포인트와 통신하기 위해 필요한 
+`crictl`을 [cri-tools 프로젝트](https://github.com/kubernetes-sigs/cri-tools)로부터 설치한다.
+
+#### wins, kubelet 및 kubeadm 설치
+
+```PowerShell
+curl.exe -LO https://raw.githubusercontent.com/kubernetes-sigs/sig-windows-tools/master/kubeadm/scripts/PrepareNode.ps1
+.\PrepareNode.ps1 -KubernetesVersion {{< param "fullversion" >}}
+```
+
+#### `kubeadm` 실행하여 노드에 조인
+
+컨트롤 플레인 호스트에서 `kubeadm init` 실행할 때 제공된 명령을 사용한다.
+이 명령이 더 이상 없거나, 토큰이 만료된 경우, `kubeadm token create --print-join-command`
+(컨트롤 플레인 호스트에서)를 실행하여 새 토큰 및 조인 명령을 생성할 수 있다.
+
 {{% /tab %}}
+
 {{< /tabs >}}
 
 ### 설치 확인
diff --git a/content/ko/docs/tasks/administer-cluster/kubeadm/kubeadm-certs.md b/content/ko/docs/tasks/administer-cluster/kubeadm/kubeadm-certs.md
index de6feb480d..c5fc28ba3f 100644
--- a/content/ko/docs/tasks/administer-cluster/kubeadm/kubeadm-certs.md
+++ b/content/ko/docs/tasks/administer-cluster/kubeadm/kubeadm-certs.md
@@ -10,7 +10,9 @@ weight: 10
 
 {{< feature-state for_k8s_version="v1.15" state="stable" >}}
 
-[kubeadm](/ko/docs/reference/setup-tools/kubeadm/)으로 생성된 클라이언트 인증서는 1년 후에 만료된다. 이 페이지는 kubeadm으로 인증서 갱신을 관리하는 방법을 설명한다.
+[kubeadm](/ko/docs/reference/setup-tools/kubeadm/)으로 생성된 클라이언트 인증서는 1년 후에 만료된다. 
+이 페이지는 kubeadm으로 인증서 갱신을 관리하는 방법을 설명하며, 
+kubeadm 인증서 관리와 관련된 다른 작업에 대해서도 다룬다.
 
 ## {{% heading "prerequisites" %}}
 
@@ -128,6 +130,16 @@ kubeadm 1.17 이전 버전에는 `kubeadm upgrade node` 명령에서
 
 이 명령은 `/etc/kubernetes/pki` 에 저장된 CA(또는 프론트 프록시 CA) 인증서와 키를 사용하여 갱신을 수행한다.
 
+명령을 실행한 후에는 컨트롤 플레인 파드를 재시작해야 한다.
+이는 현재 일부 구성 요소 및 인증서에 대해 인증서를 동적으로 다시 로드하는 것이 지원되지 않기 때문이다.
+[스태틱(static) 파드](/ko/docs/tasks/configure-pod-container/static-pod/)는 API 서버가 아닌 로컬 kubelet에서 관리되므로 
+kubectl을 사용하여 삭제 및 재시작할 수 없다.
+스태틱 파드를 다시 시작하려면 `/etc/kubernetes/manifests/`에서 매니페스트 파일을 일시적으로 제거하고 
+20초를 기다리면 된다 ([KubeletConfiguration struct](/docs/reference/config-api/kubelet-config.v1beta1/)의 `fileCheckFrequency` 값을 참고한다).
+파드가 매니페스트 디렉터리에 더 이상 없는 경우 kubelet은 파드를 종료한다.
+그런 다음 파일을 다시 이동할 수 있으며 또 다른 `fileCheckFrequency` 기간이 지나면,
+kubelet은 파드를 생성하고 구성 요소에 대한 인증서 갱신을 완료할 수 있다.
+
 {{< warning >}}
 HA 클러스터를 실행 중인 경우, 모든 컨트롤 플레인 노드에서 이 명령을 실행해야 한다.
 {{< /warning >}}
@@ -155,16 +167,16 @@ HA 클러스터를 실행 중인 경우, 모든 컨트롤 플레인 노드에서
 ### 서명자 설정
 
 쿠버네티스 인증 기관(Certificate Authority)은 기본적으로 작동하지 않는다.
-[cert-manager](https://docs.cert-manager.io/en/latest/tasks/issuers/setup-ca.html)와 같은 외부 서명자를 설정하거나, 빌트인 서명자를 사용할 수 있다.
+[cert-manager](https://cert-manager.io/docs/configuration/ca/)와 같은 외부 서명자를 설정하거나, 빌트인 서명자를 사용할 수 있다.
 
 빌트인 서명자는 [`kube-controller-manager`](/docs/reference/command-line-tools-reference/kube-controller-manager/)의 일부이다.
 
 빌트인 서명자를 활성화하려면, `--cluster-signing-cert-file` 와 `--cluster-signing-key-file` 플래그를 전달해야 한다.
 
-새 클러스터를 생성하는 경우, kubeadm [구성 파일](/docs/reference/config-api/kubeadm-config.v1beta2/)을 사용할 수 있다.
+새 클러스터를 생성하는 경우, kubeadm [구성 파일](https://pkg.go.dev/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta3)을 사용할 수 있다.
 
 ```yaml
-apiVersion: kubeadm.k8s.io/v1beta2
+apiVersion: kubeadm.k8s.io/v1beta3
 kind: ClusterConfiguration
 controllerManager:
   extraArgs:
@@ -223,7 +235,7 @@ TLS로 보안되지 않음을 의미한다.
 다음의 최소 구성을 `kubeadm init` 에 전달해야 한다.
 
 ```yaml
-apiVersion: kubeadm.k8s.io/v1beta2
+apiVersion: kubeadm.k8s.io/v1beta3
 kind: ClusterConfiguration
 ---
 apiVersion: kubelet.config.k8s.io/v1beta1
@@ -272,10 +284,59 @@ CSR 서명자를 가지고 있는지 문의하는 것을 추천한다.
 
 {{% thirdparty-content %}}
 
-제 3 자 커스텀 컨트롤러도 사용될 수 있다.
-- [kubelet-rubber-stamp](https://github.com/kontena/kubelet-rubber-stamp)
+써드파티 커스텀 컨트롤러도 사용될 수 있다.
+- [kubelet-csr-approver](https://github.com/postfinance/kubelet-csr-approver)
 
 이러한 컨트롤러는 CSR의 CommonName과 요청된 IPs 및 도메인 네임을
 모두 검증하지 않는 한, 보안이 되는 메커니즘이 아니다. 이것을 통해 악의적 행위자가
 kubelet 인증서(클라이언트 인증)를 사용하여 아무 IP나 도메인 네임에 대해 인증서를
 요청하는 CSR의 생성을 방지할 수 있을 것이다.
+
+## 추가 사용자를 위한 kubeconfig 파일 생성하기 {#kubeconfig-additional-users}
+
+클러스터 생성 과정에서, kubeadm은 
+`Subject: O = system:masters, CN = kubernetes-admin` 값이 설정되도록 `admin.conf`의 인증서에 서명한다.
+[`system:masters`](/docs/reference/access-authn-authz/rbac/#user-facing-roles)는 
+인증 계층(예: RBAC)을 우회하는 획기적인 슈퍼유저 그룹이다. 
+`admin.conf`를 추가 사용자와 공유하는 것은 **권장하지 않는다**!
+
+대신, [`kubeadm kubeconfig user`](/docs/reference/setup-tools/kubeadm/kubeadm-kubeconfig) 
+명령어를 사용하여 추가 사용자를 위한 kubeconfig 파일을 생성할 수 있다. 
+이 명령어는 명령줄 플래그와 
+[kubeadm 환경 설정](/docs/reference/config-api/kubeadm-config.v1beta3/) 옵션을 모두 인식한다. 
+생성된 kubeconfig는 stdout으로 출력되며, 
+`kubeadm kubeconfig user ... > somefile.conf` 명령어를 사용하여 파일에 기록될 수 있다.
+
+다음은 `--config` 플래그와 함께 사용될 수 있는 환경 설정 파일 예시이다.
+
+```yaml
+# example.yaml
+apiVersion: kubeadm.k8s.io/v1beta3
+kind: ClusterConfiguration
+# kubeconfig에서 타겟 "cluster"로 사용될 것이다.
+clusterName: "kubernetes"
+# kubeconfig에서 클러스터의 "server"(IP 또는 DNS 이름)로 사용될 것이다.
+controlPlaneEndpoint: "some-dns-address:6443"
+# 클러스터 CA 키 및 인증서가 이 로컬 디렉토리에서 로드될 것이다.
+certificatesDir: "/etc/kubernetes/pki"
+```
+
+이러한 항목들이 사용하고자 하는 클러스터의 상세 사항과 일치하는지 확인한다.
+기존 클러스터의 환경 설정을 보려면 다음 명령을 사용한다.
+
+```shell
+kubectl get cm kubeadm-config -n kube-system -o=jsonpath="{.data.ClusterConfiguration}"
+```
+
+다음 예시는 `appdevs` 그룹의 새 사용자 `johndoe`를 위해 
+24시간동안 유효한 인증서와 함께 kubeconfig 파일을 생성할 것이다.
+
+```shell
+kubeadm kubeconfig user --config example.yaml --org appdevs --client-name johndoe --validity-period 24h
+```
+
+다음 예시는 1주일간 유효한 관리자 크리덴셜을 갖는 kubeconfig 파일을 생성할 것이다.
+
+```shell
+kubeadm kubeconfig user --config example.yaml --client-name admin --validity-period 168h
+```
diff --git a/content/ko/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade.md b/content/ko/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade.md
index c009339acc..ad8e8d7529 100644
--- a/content/ko/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade.md
+++ b/content/ko/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade.md
@@ -8,18 +8,18 @@ weight: 20
 
 <!-- overview -->
 
-이 페이지는 kubeadm으로 생성된 쿠버네티스 클러스터를
-{{< skew latestVersionAddMinor -1 >}}.x 버전에서 {{< skew latestVersion >}}.x 버전으로,
-{{< skew latestVersion >}}.x 버전에서 {{< skew latestVersion >}}.y(여기서 `y > x`) 버전으로 업그레이드하는 방법을 설명한다.  업그레이드가 지원되지 않는 경우
-마이너 버전을 건너뛴다.
+이 페이지는 kubeadm으로 생성된 쿠버네티스 클러스터를 {{< skew currentVersionAddMinor -1 >}}.x 버전에서 {{< skew currentVersion >}}.x 버전으로, 
+{{< skew currentVersion >}}.x 버전에서 {{< skew currentVersion >}}.y(여기서 `y > x`) 버전으로 업그레이드하는 방법을 설명한다. 
+업그레이드가 지원되지 않는 경우 마이너 버전을 건너뛴다. 
+더 자세한 정보는 [버전 차이(skew) 정책](/ko/releases/version-skew-policy/)을 참고한다.
 
 이전 버전의 kubeadm을 사용하여 생성된 클러스터 업그레이드에 대한 정보를 보려면,
 이 페이지 대신 다음의 페이지들을 참고한다.
 
-- [kubeadm 클러스터를 {{< skew latestVersionAddMinor -2 >}}에서 {{< skew latestVersionAddMinor -1 >}}로 업그레이드](https://v{{< skew latestVersionAddMinor -1 "-" >}}.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
-- [kubeadm 클러스터를 {{< skew latestVersionAddMinor -3 >}}에서 {{< skew latestVersionAddMinor -2 >}}로 업그레이드](https://v{{< skew latestVersionAddMinor -2 "-" >}}.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
-- [kubeadm 클러스터를 {{< skew latestVersionAddMinor -4 >}}에서 {{< skew latestVersionAddMinor -3 >}}로 업그레이드](https://v{{< skew latestVersionAddMinor -3 "-" >}}.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
-- [kubeadm 클러스터를 {{< skew latestVersionAddMinor -5 >}}에서 {{< skew latestVersionAddMinor -4 >}}으로 업그레이드](https://v{{< skew latestVersionAddMinor -4 "-" >}}.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
+- [kubeadm 클러스터를 {{< skew currentVersionAddMinor -2 >}}에서 {{< skew currentVersionAddMinor -1 >}}로 업그레이드](https://v{{< skew currentVersionAddMinor -1 "-" >}}.docs.kubernetes.io/ko/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
+- [kubeadm 클러스터를 {{< skew currentVersionAddMinor -3 >}}에서 {{< skew currentVersionAddMinor -2 >}}로 업그레이드](https://v{{< skew currentVersionAddMinor -2 "-" >}}.docs.kubernetes.io/ko/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
+- [kubeadm 클러스터를 {{< skew currentVersionAddMinor -4 >}}에서 {{< skew currentVersionAddMinor -3 >}}로 업그레이드](https://v{{< skew currentVersionAddMinor -3 "-" >}}.docs.kubernetes.io/ko/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
+- [kubeadm 클러스터를 {{< skew currentVersionAddMinor -5 >}}에서 {{< skew currentVersionAddMinor -4 >}}으로 업그레이드](https://v{{< skew currentVersionAddMinor -4 "-" >}}.docs.kubernetes.io/ko/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
 
 추상적인 업그레이드 작업 절차는 다음과 같다.
 
@@ -37,27 +37,36 @@ weight: 20
 
 ### 추가 정보
 
-- kubelet 마이너 버전을 업그레이드하기 전에 [노드 드레이닝(draining)](/docs/tasks/administer-cluster/safely-drain-node/)이
-  필요하다. 컨트롤 플레인 노드의 경우 CoreDNS 파드 또는 기타 중요한 워크로드를 실행할 수 있다.
+- 아래의 지침은 업그레이드 과정 중 언제 각 노드를 드레인해야 하는지를 제시한다. 
+  kubelet에 대해 **마이너** 버전 업그레이드를 하는 경우, 
+  먼저 업그레이드할 노드(들)을 드레인**해야 한다**. 
+  컨트롤 플레인 노드의 경우, CoreDNS 파드 또는 다른 중요한 워크로드를 실행 중일 수 있다. 
+  더 많은 정보는 [노드 드레인하기](/docs/tasks/administer-cluster/safely-drain-node/)를 참조한다.
 - 컨테이너 사양 해시 값이 변경되므로, 업그레이드 후 모든 컨테이너가 다시 시작된다.
+- kubelet이 업그레이드된 이후 kubelet 서비스가 성공적으로 재시작되었는지 확인하려면, 
+  `systemctl status kubelet` 명령을 실행하거나, `journalctl -xeu kubelet` 명령을 실행하여 서비스 로그를 확인할 수 있다.
+- 클러스터를 재구성하기 위해 `kubeadm upgrade` 시에 
+  [kubeadm 구성 API 종류](/docs/reference/config-api/kubeadm-config.v1beta3)를 명시하여 
+  `--config` 플래그를 사용하는 것은 추천하지 않으며 예상치 못한 결과를 초래할 수 있다. 
+  대신 [kubeadm 클러스터 재구성하기](/docs/tasks/administer-cluster/kubeadm/kubeadm-reconfigure)를 참조한다.
 
 <!-- steps -->
 
 ## 업그레이드할 버전 결정
 
-OS 패키지 관리자를 사용하여 최신의 안정 버전({{< skew latestVersion >}})을 찾는다.
+OS 패키지 관리자를 사용하여 쿠버네티스의 최신 패치 릴리스 버전({{< skew currentVersion >}})을 찾는다.
 
 {{< tabs name="k8s_install_versions" >}}
 {{% tab name="Ubuntu, Debian 또는 HypriotOS" %}}
     apt update
     apt-cache madison kubeadm
-    # 목록에서 최신 버전({{< skew latestVersion >}})을 찾는다
-    # {{< skew latestVersion >}}.x-00과 같아야 한다. 여기서 x는 최신 패치이다.
+    # 목록에서 최신 버전({{< skew currentVersion >}})을 찾는다
+    # {{< skew currentVersion >}}.x-00과 같아야 한다. 여기서 x는 최신 패치이다.
 {{% /tab %}}
 {{% tab name="CentOS, RHEL 또는 Fedora" %}}
     yum list --showduplicates kubeadm --disableexcludes=kubernetes
-    # 목록에서 최신 버전({{< skew latestVersion >}})을 찾는다
-    # {{< skew latestVersion >}}.x-0과 같아야 한다. 여기서 x는 최신 패치이다.
+    # 목록에서 최신 버전({{< skew currentVersion >}})을 찾는다
+    # {{< skew currentVersion >}}.x-0과 같아야 한다. 여기서 x는 최신 패치이다.
 {{% /tab %}}
 {{< /tabs >}}
 
@@ -74,20 +83,17 @@ OS 패키지 관리자를 사용하여 최신의 안정 버전({{< skew latestVe
 
 {{< tabs name="k8s_install_kubeadm_first_cp" >}}
 {{% tab name="Ubuntu, Debian 또는 HypriotOS" %}}
-    # {{< skew latestVersion >}}.x-00에서 x를 최신 패치 버전으로 바꾼다.
+    # {{< skew currentVersion >}}.x-00에서 x를 최신 패치 버전으로 바꾼다.
     apt-mark unhold kubeadm && \
-    apt-get update && apt-get install -y kubeadm={{< skew latestVersion >}}.x-00 && \
+    apt-get update && apt-get install -y kubeadm={{< skew currentVersion >}}.x-00 && \
     apt-mark hold kubeadm
-    -
-    # apt-get 버전 1.1부터 다음 방법을 사용할 수도 있다
-    apt-get update && \
-    apt-get install -y --allow-change-held-packages kubeadm={{< skew latestVersion >}}.x-00
 {{% /tab %}}
 {{% tab name="CentOS, RHEL 또는 Fedora" %}}
-    # {{< skew latestVersion >}}.x-0에서 x를 최신 패치 버전으로 바꾼다.
-    yum install -y kubeadm-{{< skew latestVersion >}}.x-0 --disableexcludes=kubernetes
+    # {{< skew currentVersion >}}.x-0에서 x를 최신 패치 버전으로 바꾼다.
+    yum install -y kubeadm-{{< skew currentVersion >}}.x-0 --disableexcludes=kubernetes
 {{% /tab %}}
 {{< /tabs >}}
+<br />
 
 -  다운로드하려는 버전이 잘 받아졌는지 확인한다.
 
@@ -120,13 +126,13 @@ OS 패키지 관리자를 사용하여 최신의 안정 버전({{< skew latestVe
 
     ```shell
     # 이 업그레이드를 위해 선택한 패치 버전으로 x를 바꾼다.
-    sudo kubeadm upgrade apply v{{< skew latestVersion >}}.x
+    sudo kubeadm upgrade apply v{{< skew currentVersion >}}.x
     ```
 
     명령이 완료되면 다음을 확인해야 한다.
 
     ```
-    [upgrade/successful] SUCCESS! Your cluster was upgraded to "v{{< skew latestVersion >}}.x". Enjoy!
+    [upgrade/successful] SUCCESS! Your cluster was upgraded to "v{{< skew currentVersion >}}.x". Enjoy!
 
     [upgrade/kubelet] Now that your control plane is upgraded, please proceed with upgrading your kubelets if you haven't already done so.
     ```
@@ -169,25 +175,18 @@ sudo kubeadm upgrade apply
 -  모든 컨트롤 플레인 노드에서 kubelet 및 kubectl을 업그레이드한다.
 
 {{< tabs name="k8s_install_kubelet" >}}
-{{< tab name="Ubuntu, Debian 또는 HypriotOS" >}}
-    <pre>>
-    # {{< skew latestVersion >}}.x-00의 x를 최신 패치 버전으로 바꾼다
+{{% tab name="Ubuntu, Debian 또는 HypriotOS" %}}
+    # replace x in {{< skew currentVersion >}}.x-00의 x를 최신 패치 버전으로 바꾼다
     apt-mark unhold kubelet kubectl && \
-    apt-get update && apt-get install -y kubelet={{< skew latestVersion >}}.x-00 kubectl={{< skew latestVersion >}}.x-00 && \
+    apt-get update && apt-get install -y kubelet={{< skew currentVersion >}}.x-00 kubectl={{< skew currentVersion >}}.x-00 && \
     apt-mark hold kubelet kubectl
-    -
-    # apt-get 버전 1.1부터 다음 방법을 사용할 수도 있다
-    apt-get update && \
-    apt-get install -y --allow-change-held-packages kubelet={{< skew latestVersion >}}.x-00 kubectl={{< skew latestVersion >}}.x-00
-    </pre>
-{{< /tab >}}
-{{< tab name="CentOS, RHEL 또는 Fedora" >}}
-    <pre>
-    # {{< skew latestVersion >}}.x-0에서 x를 최신 패치 버전으로 바꾼다
-    yum install -y kubelet-{{< skew latestVersion >}}.x-0 kubectl-{{< skew latestVersion >}}.x-0 --disableexcludes=kubernetes
-    </pre>
-{{< /tab >}}
+{{% /tab %}}
+{{% tab name="CentOS, RHEL 또는 Fedora" %}}
+    # {{< skew currentVersion >}}.x-0에서 x를 최신 패치 버전으로 바꾼다
+    yum install -y kubelet-{{< skew currentVersion >}}.x-0 kubectl-{{< skew currentVersion >}}.x-0 --disableexcludes=kubernetes
+{{% /tab %}}
 {{< /tabs >}}
+<br />
 
 -  kubelet을 다시 시작한다.
 
@@ -216,18 +215,14 @@ sudo systemctl restart kubelet
 
 {{< tabs name="k8s_install_kubeadm_worker_nodes" >}}
 {{% tab name="Ubuntu, Debian 또는 HypriotOS" %}}
-    # {{< skew latestVersion >}}.x-00의 x를 최신 패치 버전으로 바꾼다
+    # {{< skew currentVersion >}}.x-00의 x를 최신 패치 버전으로 바꾼다
     apt-mark unhold kubeadm && \
-    apt-get update && apt-get install -y kubeadm={{< skew latestVersion >}}.x-00 && \
+    apt-get update && apt-get install -y kubeadm={{< skew currentVersion >}}.x-00 && \
     apt-mark hold kubeadm
-    -
-    # apt-get 버전 1.1부터 다음 방법을 사용할 수도 있다
-    apt-get update && \
-    apt-get install -y --allow-change-held-packages kubeadm={{< skew latestVersion >}}.x-00
 {{% /tab %}}
 {{% tab name="CentOS, RHEL 또는 Fedora" %}}
-    # {{< skew latestVersion >}}.x-0에서 x를 최신 패치 버전으로 바꾼다
-    yum install -y kubeadm-{{< skew latestVersion >}}.x-0 --disableexcludes=kubernetes
+    # {{< skew currentVersion >}}.x-0에서 x를 최신 패치 버전으로 바꾼다
+    yum install -y kubeadm-{{< skew currentVersion >}}.x-0 --disableexcludes=kubernetes
 {{% /tab %}}
 {{< /tabs >}}
 
@@ -254,20 +249,17 @@ sudo systemctl restart kubelet
 
 {{< tabs name="k8s_kubelet_and_kubectl" >}}
 {{% tab name="Ubuntu, Debian 또는 HypriotOS" %}}
-    # {{< skew latestVersion >}}.x-00의 x를 최신 패치 버전으로 바꾼다
+    # {{< skew currentVersion >}}.x-00의 x를 최신 패치 버전으로 바꾼다
     apt-mark unhold kubelet kubectl && \
-    apt-get update && apt-get install -y kubelet={{< skew latestVersion >}}.x-00 kubectl={{< skew latestVersion >}}.x-00 && \
+    apt-get update && apt-get install -y kubelet={{< skew currentVersion >}}.x-00 kubectl={{< skew currentVersion >}}.x-00 && \
     apt-mark hold kubelet kubectl
-    -
-    # apt-get 버전 1.1부터 다음 방법을 사용할 수도 있다
-    apt-get update && \
-    apt-get install -y --allow-change-held-packages kubelet={{< skew latestVersion >}}.x-00 kubectl={{< skew latestVersion >}}.x-00
 {{% /tab %}}
 {{% tab name="CentOS, RHEL 또는 Fedora" %}}
-    # {{< skew latestVersion >}}.x-0에서 x를 최신 패치 버전으로 바꾼다
-    yum install -y kubelet-{{< skew latestVersion >}}.x-0 kubectl-{{< skew latestVersion >}}.x-0 --disableexcludes=kubernetes
+    # {{< skew currentVersion >}}.x-0에서 x를 최신 패치 버전으로 바꾼다
+    yum install -y kubelet-{{< skew currentVersion >}}.x-0 kubectl-{{< skew currentVersion >}}.x-0 --disableexcludes=kubernetes
 {{% /tab %}}
 {{< /tabs >}}
+<br />
 
 -  kubelet을 다시 시작한다.
 
diff --git a/content/ko/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace.md b/content/ko/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace.md
index 43160db786..9ec6eb119a 100644
--- a/content/ko/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace.md
+++ b/content/ko/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace.md
@@ -2,16 +2,20 @@
 title: 네임스페이스에 대한 CPU의 최소 및 최대 제약 조건 구성
 content_type: task
 weight: 40
+description: >-
+  한 네임스페이스 내에서 CPU 리소스 제한의 유효한 범위를 정의하며, 
+  이를 통해 해당 네임스페이스의 새로운 파드가 미리 설정한 범위 안에 들어오도록 한다.
 ---
 
 
 <!-- overview -->
 
-이 페이지는 네임스페이스에서 컨테이너와 파드가 사용하는 CPU 리소스의 최솟값과 최댓값을 설정하는
-방법을 보여준다. [리밋레인지(LimitRange)](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#limitrange-v1-core)
-오브젝트에 CPU의 최솟값과 최댓값을
-지정한다. 리밋레인지에 의해 부과된 제약 조건을 파드가 충족하지 않으면, 네임스페이스에서
-생성될 수 없다.
+이 페이지는 {{< glossary_tooltip text="네임스페이스" term_id="namespace" >}}에서 
+컨테이너와 파드가 사용하는 CPU 리소스의 최솟값과 최댓값을 설정하는 방법을 보여준다. 
+[리밋레인지(LimitRange)](/docs/reference/kubernetes-api/policy-resources/limit-range-v1/) 오브젝트에 
+CPU의 최솟값과 최댓값을 지정한다. 
+리밋레인지에 의해 부과된 제약 조건을 파드가 충족하지 않으면, 
+해당 네임스페이스에 생성될 수 없다.
 
 
 
@@ -19,11 +23,13 @@ weight: 40
 ## {{% heading "prerequisites" %}}
 
 
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-태스크 예제를 실행하려면 클러스터에 적어도 1 CPU 이상이 사용 가능해야 한다.
+{{< include "task-tutorial-prereqs.md" >}}
 
+클러스터에 네임스페이스를 생성할 수 있는 권한이 있어야 한다.
 
+태스크 예제를 실행하려면 클러스터에 적어도 1.0 CPU 이상이 사용 가능해야 한다.
+쿠버네티스에서 “1 CPU”가 무엇을 의미하는지 알아보려면 
+[CPU의 의미](/ko/docs/concepts/configuration/manage-resources-containers/#cpu의-의미)를 참조한다.
 
 
 <!-- steps -->
@@ -39,7 +45,7 @@ kubectl create namespace constraints-cpu-example
 
 ## 리밋레인지와 파드 생성
 
-다음은 리밋레인지에 대한 구성 파일이다.
+다음은 리밋레인지에 대한 예시 매니페스트이다.
 
 {{< codenew file="admin/resource/cpu-constraints.yaml" >}}
 
@@ -72,15 +78,15 @@ limits:
   type: Container
 ```
 
-이제 constraints-cpu-example 네임스페이스에 컨테이너가 생성될 때마다, 쿠버네티스는
-다음 단계를 수행한다.
+이제 `constraints-cpu-example` 네임스페이스에 파드를 생성할 때마다(또는 
+다른 쿠버네티스 API 클라이언트가 동일한 파드를 생성할 때마다), 쿠버네티스는 다음 단계를 수행한다.
 
-* 컨테이너가 자체 CPU 요청량(request)과 상한(limit)을 지정하지 않으면, 컨테이너에
-CPU 요청량과 상한의 기본값(default)을 지정한다.
+* 해당 파드의 어떤 컨테이너도 자체 CPU 요청량(request)과 상한(limit)을 명시하지 않으면, 
+  컨트롤 플레인이 해당 컨테이너에 CPU 요청량과 상한의 기본값(default)을 지정한다.
 
-* 컨테이너가 200 millicpu 이상의 CPU 요청량을 지정하는지 확인한다.
+* 해당 파드의 모든 컨테이너가 200 millicpu 이상의 CPU 요청량을 지정하는지 확인한다.
 
-* 컨테이너가 800 millicpu 이하의 CPU 상한을 지정하는지 확인한다.
+* 해당 파드의 모든 컨테이너가 800 millicpu 이하의 CPU 상한을 지정하는지 확인한다.
 
 {{< note >}}
 `LimitRange` 오브젝트를 생성할 때, huge-pages
@@ -88,8 +94,8 @@ CPU 요청량과 상한의 기본값(default)을 지정한다.
 모두 지정되어 있으면, 두 값은 같아야 한다.
 {{< /note >}}
 
-컨테이너가 하나인 파드의 구성 파일은 다음과 같다. 컨테이너 매니페스트는
-500 millicpu의 CPU 요청량 및 800 millicpu의 CPU 상한을 지정한다. 이는 리밋레인지에
+다음은 컨테이너가 하나인 파드의 매니페스트이다. 컨테이너 매니페스트는
+500 millicpu의 CPU 요청량 및 800 millicpu의 CPU 상한을 지정하고 있다. 이는 리밋레인지에
 의해 부과된 CPU의 최소와 최대 제약 조건을 충족시킨다.
 
 {{< codenew file="admin/resource/cpu-constraints-pod.yaml" >}}
@@ -100,7 +106,7 @@ CPU 요청량과 상한의 기본값(default)을 지정한다.
 kubectl apply -f https://k8s.io/examples/admin/resource/cpu-constraints-pod.yaml --namespace=constraints-cpu-example
 ```
 
-파드의 컨테이너가 실행 중인지 확인한다.
+파드가 실행 중이고 컨테이너의 상태가 정상인지 확인한다.
 
 ```shell
 kubectl get pod constraints-cpu-demo --namespace=constraints-cpu-example
@@ -112,7 +118,7 @@ kubectl get pod constraints-cpu-demo --namespace=constraints-cpu-example
 kubectl get pod constraints-cpu-demo --output=yaml --namespace=constraints-cpu-example
 ```
 
-출력 결과는 컨테이너의 CPU 요청량이 500 millicpu이고, CPU 상한이 800 millicpu임을
+출력 결과는 파드 내 유일한 컨테이너의 CPU 요청량이 500 millicpu이고, CPU 상한이 800 millicpu임을
 나타낸다. 이는 리밋레인지에 의해 부과된 제약 조건을 만족시킨다.
 
 ```yaml
@@ -131,8 +137,8 @@ kubectl delete pod constraints-cpu-demo --namespace=constraints-cpu-example
 
 ## CPU 최대 제약 조건을 초과하는 파드 생성 시도
 
-컨테이너가 하나인 파드의 구성 파일은 다음과 같다. 컨테이너는
-500 millicpu의 CPU 요청량과 1.5 cpu의 CPU 상한을 지정한다.
+다음은 컨테이너가 하나인 파드의 매니페스트이다. 컨테이너는
+500 millicpu의 CPU 요청량과 1.5 cpu의 CPU 상한을 지정하고 있다.
 
 {{< codenew file="admin/resource/cpu-constraints-pod-2.yaml" >}}
 
@@ -142,8 +148,8 @@ kubectl delete pod constraints-cpu-demo --namespace=constraints-cpu-example
 kubectl apply -f https://k8s.io/examples/admin/resource/cpu-constraints-pod-2.yaml --namespace=constraints-cpu-example
 ```
 
-컨테이너가 너무 큰 CPU 상한을 지정하므로, 출력 결과에 파드가 생성되지 않은 것으로
-표시된다.
+결과를 보면 파드가 생성되지 않은 것을 확인할 수 있으며, 이는 해당 파드가 수용 불가능한 컨테이너를 정의하고 있기 때문이다.
+해당 컨테이너가 수용 불가능한 이유는 너무 큰 CPU 상한을 지정하고 있기 때문이다.
 
 ```
 Error from server (Forbidden): error when creating "examples/admin/resource/cpu-constraints-pod-2.yaml":
@@ -152,8 +158,8 @@ pods "constraints-cpu-demo-2" is forbidden: maximum cpu usage per Container is 8
 
 ## 최소 CPU 요청량을 충족하지 않는 파드 생성 시도
 
-컨테이너가 하나인 파드의 구성 파일은 다음과 같다. 컨테이너는
-100 millicpu의 CPU 요청량과 800 millicpu의 CPU 상한을 지정한다.
+다음은 컨테이너가 하나인 파드의 매니페스트이다. 컨테이너는
+100 millicpu의 CPU 요청량과 800 millicpu의 CPU 상한을 지정하고 있다.
 
 {{< codenew file="admin/resource/cpu-constraints-pod-3.yaml" >}}
 
@@ -163,8 +169,9 @@ pods "constraints-cpu-demo-2" is forbidden: maximum cpu usage per Container is 8
 kubectl apply -f https://k8s.io/examples/admin/resource/cpu-constraints-pod-3.yaml --namespace=constraints-cpu-example
 ```
 
-컨테이너가 너무 작은 CPU 요청량을 지정하므로, 출력 결과에 파드가 생성되지
-않은 것으로 표시된다.
+결과를 보면 파드가 생성되지 않은 것을 확인할 수 있으며, 이는 해당 파드가 수용 불가능한 컨테이너를 정의하고 있기 때문이다.
+해당 컨테이너가 수용 불가능한 이유는 
+지정된 최저 CPU 요청량보다도 낮은 CPU 요청량을 지정하고 있기 때문이다.
 
 ```
 Error from server (Forbidden): error when creating "examples/admin/resource/cpu-constraints-pod-3.yaml":
@@ -173,8 +180,8 @@ pods "constraints-cpu-demo-3" is forbidden: minimum cpu usage per Container is 2
 
 ## CPU 요청량 또는 상한을 지정하지 않은 파드 생성
 
-컨테이너가 하나인 파드의 구성 파일은 다음과 같다. 컨테이너는
-CPU 요청량을 지정하지 않으며, CPU 상한을 지정하지 않는다.
+다음은 컨테이너가 하나인 파드의 매니페스트이다. 컨테이너는
+CPU 요청량을 지정하지 않았으며, CPU 상한도 지정하지 않았다.
 
 {{< codenew file="admin/resource/cpu-constraints-pod-4.yaml" >}}
 
@@ -190,8 +197,9 @@ kubectl apply -f https://k8s.io/examples/admin/resource/cpu-constraints-pod-4.ya
 kubectl get pod constraints-cpu-demo-4 --namespace=constraints-cpu-example --output=yaml
 ```
 
-출력 결과는 파드의 컨테이너에 대한 CPU 요청량이 800 millicpu이고, CPU 상한이 800 millicpu임을 나타낸다.
-컨테이너는 어떻게 이런 값을 얻었을까?
+출력을 보면 파드의 유일한 컨테이너에 대한 CPU 요청량이 800 millicpu이고, 
+CPU 상한이 800 millicpu이다.
+이 컨테이너는 어떻게 이런 값을 얻었을까?
 
 ```yaml
 resources:
@@ -201,11 +209,12 @@ resources:
     cpu: 800m
 ```
 
-컨테이너가 자체 CPU 요청량과 상한을 지정하지 않았으므로, 리밋레인지로부터
-[CPU 요청량과 상한의 기본값](/ko/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/)이
-주어졌다.
+컨테이너가 자체 CPU 요청량과 상한을 지정하지 않았으므로, 
+컨테이너가 이 네임스페이스에 대해 리밋레인지로부터
+[CPU 요청량과 상한의 기본값](/ko/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/)을 
+적용했다.
 
-이 시점에서, 컨테이너는 실행 중이거나 실행 중이 아닐 수 있다. 이 태스크의 전제 조건은 클러스터에 1 CPU 이상 사용 가능해야 한다는 것이다. 각 노드에 1 CPU만 있는 경우, 노드에 할당할 수 있는 CPU가 800 millicpu의 요청량을 수용하기에 충분하지 않을 수 있다. 2 CPU인 노드를 사용하는 경우에는, CPU가 800 millicpu 요청량을 수용하기에 충분할 것이다.
+이 시점에서, 파드는 실행 중일 수도 있고 아닐 수도 있다. 이 태스크의 전제 조건은 클러스터에 1 CPU 이상 사용 가능해야 한다는 것이다. 각 노드에 1 CPU만 있는 경우, 노드에 할당할 수 있는 CPU가 800 millicpu의 요청량을 수용하기에 충분하지 않을 수 있다. 2 CPU인 노드를 사용하는 경우에는, CPU가 800 millicpu 요청량을 수용하기에 충분할 것이다.
 
 파드를 삭제한다.
 
diff --git a/content/ko/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace.md b/content/ko/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace.md
index ab77c226b0..f7c09e159d 100644
--- a/content/ko/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace.md
+++ b/content/ko/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace.md
@@ -2,23 +2,36 @@
 title: 네임스페이스에 대한 기본 CPU 요청량과 상한 구성
 content_type: task
 weight: 20
+description: >-
+  한 네임스페이스에 CPU 리소스 상한의 기본값을 정의하며, 
+  이를 통해 미리 설정한 CPU 리소스 상한이 해당 네임스페이스의 새로운 파드에 설정되도록 한다.
 ---
 
 <!-- overview -->
 
-이 페이지는 네임스페이스에 대한 기본 CPU 요청량(request) 및 상한(limit)을 구성하는 방법을 보여준다.
-쿠버네티스 클러스터는 네임스페이스로 나눌 수 있다. 기본 CPU 상한이 있는 네임스페이스에서
-컨테이너가 생성되고, 컨테이너가 자체 CPU 상한을 지정하지 않으면,
-컨테이너에 기본 CPU 상한이 할당된다. 쿠버네티스는 이 문서의 뒷부분에서
-설명하는 특정 조건에서 기본 CPU 요청량을 할당한다.
+이 페이지는 {{< glossary_tooltip text="네임스페이스" term_id="namespace" >}}에 대한 
+기본 CPU 요청량(request) 및 상한(limit)을 구성하는 방법을 보여준다.
 
+쿠버네티스 클러스터를 여러 네임스페이스로 나눌 수 있다. 
+기본 CPU [상한](/ko/docs/concepts/configuration/manage-resources-containers/#요청-및-제한)이 
+설정되어 있는 네임스페이스에 파드를 생성했는데, 
+해당 파드의 모든 컨테이너에 CPU 상한이 명시되어 있지 않다면, 
+{{< glossary_tooltip text="컨트롤 플레인" term_id="control-plane" >}}이 
+해당 컨테이너에 기본 CPU 상한을 할당한다.
 
+쿠버네티스는 기본 CPU 
+[사용량](/ko/docs/concepts/configuration/manage-resources-containers/#요청-및-제한)을 할당하는데, 
+이는 이 페이지의 이후 부분에서 설명될 특정 조건 하에서만 수행된다.
 
 ## {{% heading "prerequisites" %}}
 
 
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+{{< include "task-tutorial-prereqs.md" >}}
 
+클러스터에 네임스페이스를 생성할 수 있는 권한이 있어야 한다.
+
+쿠버네티스에서 “1.0 CPU”가 무엇을 의미하는지 익숙하지 않다면, 
+[CPU의 의미](/ko/docs/concepts/configuration/manage-resources-containers/#cpu의-의미)를 참조한다.
 
 <!-- steps -->
 
@@ -33,8 +46,8 @@ kubectl create namespace default-cpu-example
 
 ## 리밋레인지(LimitRange)와 파드 생성
 
-다음은 리밋레인지 오브젝트의 구성 파일이다. 구성은
-기본 CPU 요청량 및 기본 CPU 상한을 지정한다.
+다음은 예시 {{< glossary_tooltip text="리밋레인지" term_id="limitrange" >}}에 대한 매니페스트이다.
+이 매니페스트는 기본 CPU 요청량 및 기본 CPU 상한을 지정한다.
 
 {{< codenew file="admin/resource/cpu-defaults.yaml" >}}
 
@@ -44,13 +57,13 @@ default-cpu-example 네임스페이스에 리밋레인지를 생성한다.
 kubectl apply -f https://k8s.io/examples/admin/resource/cpu-defaults.yaml --namespace=default-cpu-example
 ```
 
-이제 컨테이너가 default-cpu-example 네임스페이스에 생성되고,
-컨테이너가 CPU 요청량 및 CPU 상한에 대해 고유한 값을 지정하지 않으면,
-컨테이너에 CPU 요청량의 기본값 0.5와 CPU 상한
-기본값 1이 부여된다.
+이제 파드를 `default-cpu-example` 네임스페이스에 생성하고, 
+해당 파드의 어떤 컨테이너도 자체 CPU 요청량(request)과 상한(limit)을 명시하지 않으면, 
+컨트롤 플레인이 해당 컨테이너에 CPU 요청량의 기본값(0.5)과 
+상한의 기본값(1)을 지정한다.
 
-컨테이너가 하나인 파드의 구성 파일은 다음과 같다. 컨테이너는
-CPU 요청량과 상한을 지정하지 않는다.
+다음은 컨테이너가 하나인 파드의 매니페스트이다. 
+해당 컨테이너는 CPU 요청량과 상한을 지정하지 않는다.
 
 {{< codenew file="admin/resource/cpu-defaults-pod.yaml" >}}
 
@@ -66,8 +79,9 @@ kubectl apply -f https://k8s.io/examples/admin/resource/cpu-defaults-pod.yaml --
 kubectl get pod default-cpu-demo --output=yaml --namespace=default-cpu-example
 ```
 
-출력 결과는 파드의 컨테이너에 500 milicpu의 CPU 요청량과
-1 cpu의 CPU 상한이 있음을 나타낸다. 이것은 리밋레인지에 의해 지정된 기본값이다.
+출력을 보면 파드 내 유일한 컨테이너의 CPU 요청량이 500m `cpu`("500 밀리cpu"로 읽을 수 있음)이고,
+CPU 상한이 1 `cpu`임을 알 수 있다.
+이것은 리밋레인지에 의해 지정된 기본값이다.
 
 ```shell
 containers:
@@ -83,8 +97,8 @@ containers:
 
 ## 컨테이너 상한은 지정하고, 요청량을 지정하지 않으면 어떻게 되나?
 
-컨테이너가 하나인 파드의 구성 파일은 다음과 같다. 컨테이너는
-CPU 상한을 지정하지만, 요청량은 지정하지 않는다.
+다음은 컨테이너가 하나인 파드의 매니페스트이다. 
+해당 컨테이너는 CPU 상한은 지정하지만, 요청량은 지정하지 않는다.
 
 {{< codenew file="admin/resource/cpu-defaults-pod-2.yaml" >}}
 
@@ -95,14 +109,15 @@ CPU 상한을 지정하지만, 요청량은 지정하지 않는다.
 kubectl apply -f https://k8s.io/examples/admin/resource/cpu-defaults-pod-2.yaml --namespace=default-cpu-example
 ```
 
-파드 사양을 확인한다.
+생성한 파드의 
+[명세](/ko/docs/concepts/overview/working-with-objects/kubernetes-objects/#오브젝트-명세-spec-와-상태-status)를 확인한다.
 
 ```
 kubectl get pod default-cpu-demo-2 --output=yaml --namespace=default-cpu-example
 ```
 
 출력 결과는 컨테이너의 CPU 요청량이 CPU 상한과 일치하도록 설정되었음을 보여준다.
-참고로 컨테이너에는 CPU 요청량의 기본값인 0.5 cpu가 할당되지 않았다.
+참고로 컨테이너에는 CPU 요청량의 기본값인 0.5 `cpu`가 할당되지 않았다.
 
 ```
 resources:
@@ -114,8 +129,8 @@ resources:
 
 ## 컨테이너의 요청량은 지정하고, 상한을 지정하지 않으면 어떻게 되나?
 
-컨테이너가 하나인 파드의 구성 파일은 다음과 같다. 컨테이너는
-CPU 요청량을 지정하지만, 상한은 지정하지 않았다.
+다음은 컨테이너가 하나인 파드의 예시 매니페스트이다. 
+해당 컨테이너는 CPU 요청량은 지정하지만, 상한은 지정하지 않는다.
 
 {{< codenew file="admin/resource/cpu-defaults-pod-3.yaml" >}}
 
@@ -125,15 +140,16 @@ CPU 요청량을 지정하지만, 상한은 지정하지 않았다.
 kubectl apply -f https://k8s.io/examples/admin/resource/cpu-defaults-pod-3.yaml --namespace=default-cpu-example
 ```
 
-파드 사양을 확인한다.
+생성한 파드의 명세를 확인한다.
 
 ```
 kubectl get pod default-cpu-demo-3 --output=yaml --namespace=default-cpu-example
 ```
 
-출력 결과는 컨테이너의 CPU 요청량이 컨테이너의 구성 파일에 지정된 값으로
-설정되었음을 보여준다. 컨테이너의 CPU 상한은 1 cpu로 설정되며, 이는
-네임스페이스의 CPU 상한 기본값이다.
+출력을 보면 파드 생성 시 명시한 값대로 
+컨테이너의 CPU 요청량이 설정된 것을 알 수 있다(다시 말해, 매니페스트와 일치한다).
+그러나, 해당 컨테이너의 CPU 상한은 1 `cpu`로 설정되며, 
+이는 네임스페이스의 CPU 상한 기본값이다.
 
 ```
 resources:
@@ -145,15 +161,22 @@ resources:
 
 ## CPU 상한 및 요청량의 기본값에 대한 동기
 
-네임스페이스에 [리소스 쿼터](/ko/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)가 있는 경우,
+네임스페이스에 {{< glossary_tooltip text="리소스 쿼터" term_id="resource-quota" >}}가 
+설정되어 있는 경우,
 CPU 상한에 대해 기본값을 설정하는 것이 좋다.
-다음은 리소스 쿼터가 네임스페이스에 적용하는 두 가지 제한 사항이다.
+다음은 CPU 리소스 쿼터가 네임스페이스에 적용하는 두 가지 제한 사항이다.
 
-* 네임스페이스에서 실행되는 모든 컨테이너에는 자체 CPU 상한이 있어야 한다.
-* 네임스페이스의 모든 컨테이너가 사용하는 총 CPU 양은 지정된 상한을 초과하지 않아야 한다.
+* 네임스페이스에서 실행되는 모든 파드에 대해, 모든 컨테이너에 CPU 상한이 있어야 한다.
+* CPU 상한은 해당 파드가 스케줄링될 노드에 리소스 예약을 적용한다.
+  해당 네임스페이스의 모든 파드에 대해 예약된 CPU 총량이 
+  지정된 상한을 초과하지 않아야 한다.
+
+리밋레인지를 추가할 때에는 다음을 고려해야 한다.
+
+컨테이너를 갖고 있는 해당 네임스페이스의 파드가 자체 CPU 상한을 지정하지 않았다면, 
+컨트롤 플레인이 해당 컨테이너에 CPU 상한 기본값을 적용하며, 
+해당 파드는 CPU 리소스쿼터가 적용된 네임스페이스에서 실행되도록 허용될 수 있다.
 
-컨테이너가 자체 CPU 상한을 지정하지 않으면, 상한 기본값이 부여되고, 쿼터에
-의해 제한되는 네임스페이스에서 실행될 수 있다.
 
 ## 정리
 
diff --git a/content/ko/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace.md b/content/ko/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace.md
index 19163fd7e7..ef6c5b5580 100644
--- a/content/ko/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace.md
+++ b/content/ko/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace.md
@@ -2,6 +2,9 @@
 title: 네임스페이스에 대한 메모리의 최소 및 최대 제약 조건 구성
 content_type: task
 weight: 30
+description: >-
+  한 네임스페이스 내에서 메모리 리소스 제한의 유효한 범위를 정의하며, 
+  이를 통해 해당 네임스페이스의 새로운 파드가 미리 설정한 범위 안에 들어오도록 한다.
 ---
 
 
@@ -15,16 +18,14 @@ weight: 30
 
 
 
-
 ## {{% heading "prerequisites" %}}
 
 
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-클러스터의 각 노드에는 최소 1GiB의 메모리가 있어야 한다.
-
+{{< include "task-tutorial-prereqs.md" >}}
 
+클러스터에 네임스페이스를 생성할 수 있는 권한이 있어야 한다.
 
+클러스터의 각 노드에는 파드가 사용할 수 있는 메모리가 최소 1GiB 이상 있어야 한다.
 
 <!-- steps -->
 
@@ -39,7 +40,7 @@ kubectl create namespace constraints-mem-example
 
 ## 리밋레인지와 파드 생성
 
-다음은 리밋레인지의 구성 파일이다.
+다음은 리밋레인지의 예시 매니페스트이다.
 
 {{< codenew file="admin/resource/memory-constraints.yaml" >}}
 
@@ -72,19 +73,20 @@ kubectl get limitrange mem-min-max-demo-lr --namespace=constraints-mem-example -
     type: Container
 ```
 
-이제 constraints-mem-example 네임스페이스에 컨테이너가 생성될 때마다, 쿠버네티스는
-다음 단계를 수행한다.
+이제 `constraints-mem-example` 네임스페이스에 파드를 생성할 때마다,
+쿠버네티스는 다음 단계를 수행한다.
 
-* 컨테이너가 자체 메모리 요청량(request)과 상한(limit)을 지정하지 않으면, 기본 메모리 요청량과
-상한을 컨테이너에 지정한다.
+* 해당 파드의 어떤 컨테이너도 자체 메모리 요청량(request)과 상한(limit)을 명시하지 않으면, 
+  해당 컨테이너에 메모리 요청량과 상한의 기본값(default)을 지정한다.
 
-* 컨테이너에 500MiB 이상의 메모리 요청량이 있는지 확인한다.
+* 해당 파드의 모든 컨테이너의 메모리 요청량이 최소 500 MiB 이상인지 확인한다.
 
-* 컨테이너의 메모리 상한이 1GiB 이하인지 확인한다.
+* 해당 파드의 모든 컨테이너의 메모리 요청량이 1024 MiB(1 GiB)를 넘지 않는지 
+  확인한다.
 
-컨테이너가 하나인 파드의 구성 파일은 다음과 같다. 컨테이너 매니페스트는
-600MiB의 메모리 요청량과 800MiB의 메모리 상한을 지정한다. 이들은
-리밋레인지에 의해 부과된 메모리의 최소 및 최대 제약 조건을 충족한다.
+다음은 컨테이너가 하나인 파드의 매니페스트이다. 
+파드 명세 내에, 파드의 유일한 컨테이너는 600 MiB의 메모리 요청량 및 800 MiB의 메모리 상한을 지정하고 있다. 
+이는 리밋레인지에 의해 부과된 최소 및 최대 메모리 제약 조건을 충족시킨다.
 
 {{< codenew file="admin/resource/memory-constraints-pod.yaml" >}}
 
@@ -94,7 +96,7 @@ kubectl get limitrange mem-min-max-demo-lr --namespace=constraints-mem-example -
 kubectl apply -f https://k8s.io/examples/admin/resource/memory-constraints-pod.yaml --namespace=constraints-mem-example
 ```
 
-파드의 컨테이너가 실행 중인지 확인한다.
+파드가 실행 중이고 컨테이너의 상태가 정상인지 확인한다.
 
 ```shell
 kubectl get pod constraints-mem-demo --namespace=constraints-mem-example
@@ -106,8 +108,9 @@ kubectl get pod constraints-mem-demo --namespace=constraints-mem-example
 kubectl get pod constraints-mem-demo --output=yaml --namespace=constraints-mem-example
 ```
 
-출력 결과는 컨테이너의 메모리 요청량이 600MiB이고 메모리 상한이 800MiB임을
-나타낸다. 이는 리밋레인지에 의해 부과된 제약 조건을 충족한다.
+출력을 보면 파드의 컨테이너의 메모리 요청량이 600 MiB이고 메모리 상한이 800 MiB임을 알 수 있다.
+이는 리밋레인지에 의해 해당 네임스페이스에 부과된 제약 조건을 
+만족시킨다.
 
 ```yaml
 resources:
@@ -125,8 +128,8 @@ kubectl delete pod constraints-mem-demo --namespace=constraints-mem-example
 
 ## 최대 메모리 제약 조건을 초과하는 파드 생성 시도
 
-컨테이너가 하나인 파드의 구성 파일은 다음과 같다. 컨테이너는
-800MiB의 메모리 요청량과 1.5GiB의 메모리 상한을 지정한다.
+다음은 컨테이너가 하나인 파드의 매니페스트이다. 
+컨테이너는 800MiB의 메모리 요청량과 1.5GiB의 메모리 상한을 지정하고 있다.
 
 {{< codenew file="admin/resource/memory-constraints-pod-2.yaml" >}}
 
@@ -136,8 +139,8 @@ kubectl delete pod constraints-mem-demo --namespace=constraints-mem-example
 kubectl apply -f https://k8s.io/examples/admin/resource/memory-constraints-pod-2.yaml --namespace=constraints-mem-example
 ```
 
-컨테이너가 너무 큰 메모리 상한을 지정하므로, 출력 결과에 파드가 생성되지 않은 것으로
-표시된다.
+결과를 보면 파드가 생성되지 않은 것을 확인할 수 있으며, 
+이는 해당 파드가 정의하고 있는 컨테이너가 허용된 것보다 더 많은 메모리를 요청하고 있기 때문이다.
 
 ```
 Error from server (Forbidden): error when creating "examples/admin/resource/memory-constraints-pod-2.yaml":
@@ -146,8 +149,8 @@ pods "constraints-mem-demo-2" is forbidden: maximum memory usage per Container i
 
 ## 최소 메모리 요청량을 충족하지 않는 파드 생성 시도
 
-컨테이너가 하나인 파드의 구성 파일은 다음과 같다. 컨테이너는
-100MiB의 메모리 요청량과 800MiB의 메모리 상한을 지정한다.
+다음은 컨테이너가 하나인 파드의 매니페스트이다.
+컨테이너는 100MiB의 메모리 요청량과 800MiB의 메모리 상한을 지정하고 있다.
 
 {{< codenew file="admin/resource/memory-constraints-pod-3.yaml" >}}
 
@@ -157,8 +160,8 @@ pods "constraints-mem-demo-2" is forbidden: maximum memory usage per Container i
 kubectl apply -f https://k8s.io/examples/admin/resource/memory-constraints-pod-3.yaml --namespace=constraints-mem-example
 ```
 
-컨테이너가 너무 작은 메모리 요청량을 지정하므로, 출력 결과에 파드가 생성되지
-않은 것으로 표시된다.
+결과를 보면 파드가 생성되지 않은 것을 확인할 수 있으며, 
+이는 해당 파드가 정의하고 있는 컨테이너가 지정된 최저 메모리 요청량보다도 낮은 메모리 요청량을 지정하고 있기 때문이다.
 
 ```
 Error from server (Forbidden): error when creating "examples/admin/resource/memory-constraints-pod-3.yaml":
@@ -167,10 +170,8 @@ pods "constraints-mem-demo-3" is forbidden: minimum memory usage per Container i
 
 ## 메모리 요청량 또는 상한을 지정하지 않은 파드 생성
 
-
-
-컨테이너가 하나인 파드의 구성 파일은 다음과 같다. 컨테이너는
-메모리 요청량을 지정하지 않으며, 메모리 상한을 지정하지 않는다.
+다음은 컨테이너가 하나인 파드의 매니페스트이다. 
+해당 컨테이너는 메모리 요청량과 상한을 지정하지 않는다.
 
 {{< codenew file="admin/resource/memory-constraints-pod-4.yaml" >}}
 
@@ -182,12 +183,12 @@ kubectl apply -f https://k8s.io/examples/admin/resource/memory-constraints-pod-4
 
 파드에 대한 자세한 정보를 본다.
 
-```
+```shell
 kubectl get pod constraints-mem-demo-4 --namespace=constraints-mem-example --output=yaml
 ```
 
-출력 결과는 파드의 컨테이너에 1GiB의 메모리 요청량과 1GiB의 메모리 상한이 있음을 보여준다.
-컨테이너는 이러한 값을 어떻게 얻었을까?
+출력을 보면 파드의 유일한 컨테이너에 대한 메모리 요청량이 1 GiB이고 메모리 상한도 1 GiB이다.
+이 컨테이너는 어떻게 이런 값을 얻었을까?
 
 ```
 resources:
@@ -197,11 +198,20 @@ resources:
     memory: 1Gi
 ```
 
-컨테이너가 자체 메모리 요청량과 상한을 지정하지 않았으므로,
-리밋레인지의 [메모리의 요청량과 상한 기본값](/ko/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)이
-제공되었다.
+파드가 해당 컨테이너에 대해 메모리 요청량과 상한을 지정하지 않았으므로, 
+클러스터가 리밋레인지로부터 
+[메모리의 요청량과 상한 기본값](/ko/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)을 
+적용하였다.
 
-이 시점에서, 컨테이너가 실행 중이거나 실행 중이 아닐 수 있다. 이 태스크의 전제 조건은
+이는 곧 파드 정의에서 이 값들을 볼 수 있음을 의미한다. 
+`kubectl describe` 명령을 사용하여 확인할 수 있다.
+
+```shell
+# 출력에서 "Requests:" 섹션을 확인한다
+kubectl describe pod constraints-mem-demo-4 --namespace=constraints-mem-example
+```
+
+이 시점에서, 파드는 실행 중일 수도 있고 아닐 수도 있다. 이 태스크의 전제 조건은
 노드에 최소 1GiB의 메모리가 있어야 한다는 것이다. 각 노드에
 1GiB의 메모리만 있는 경우, 노드에 할당할 수 있는 메모리가 1GiB의 메모리 요청량을 수용하기에 충분하지
 않을 수 있다. 메모리가 2GiB인 노드를 사용하는 경우에는, 메모리가
@@ -209,7 +219,7 @@ resources:
 
 파드를 삭제한다.
 
-```
+```shell
 kubectl delete pod constraints-mem-demo-4 --namespace=constraints-mem-example
 ```
 
@@ -224,12 +234,12 @@ kubectl delete pod constraints-mem-demo-4 --namespace=constraints-mem-example
 클러스터 관리자는 파드가 사용할 수 있는 메모리 양에 제한을 둘 수 있다.
 예를 들면 다음과 같다.
 
-* 클러스터의 각 노드에는 2GB의 메모리가 있다. 클러스터의 어떤 노드도 2GB 이상의 요청량을
-지원할 수 없으므로, 2GB 이상의 메모리를 요청하는 파드를 수락하지 않으려고 한다.
+* 클러스터의 각 노드에는 2GiB의 메모리가 있다. 클러스터의 어떤 노드도 2GiB 이상의 요청량을
+지원할 수 없으므로, 2GiB 이상의 메모리를 요청하는 파드를 수락하지 않으려고 한다.
 
 * 클러스터는 운영 부서와 개발 부서에서 공유한다.
-프로덕션 워크로드가 최대 8GB의 메모리를 소비하도록 하려면,
-개발 워크로드를 512MB로 제한해야 한다. 프로덕션 및 개발을 위해
+프로덕션 워크로드가 최대 8GiB의 메모리를 소비하도록 하려면,
+개발 워크로드를 512MiB로 제한해야 한다. 프로덕션 및 개발을 위해
 별도의 네임스페이스를 만들고, 각 네임스페이스에 메모리 제약 조건을 적용한다.
 
 ## 정리
diff --git a/content/ko/docs/tasks/administer-cluster/manage-resources/memory-default-namespace.md b/content/ko/docs/tasks/administer-cluster/manage-resources/memory-default-namespace.md
index a74d492e5a..3f97d9b6f4 100644
--- a/content/ko/docs/tasks/administer-cluster/manage-resources/memory-default-namespace.md
+++ b/content/ko/docs/tasks/administer-cluster/manage-resources/memory-default-namespace.md
@@ -2,21 +2,35 @@
 title: 네임스페이스에 대한 기본 메모리 요청량과 상한 구성
 content_type: task
 weight: 10
+description: >-
+  한 네임스페이스에 메모리 리소스 상한의 기본값을 정의하며, 
+  이를 통해 미리 설정한 메모리 리소스 상한이 해당 네임스페이스의 새로운 파드에 설정되도록 한다.
 ---
 
 <!-- overview -->
 
-이 페이지는 네임스페이스에 대한 기본 메모리 요청량(request)과 상한(limit)을 구성하는 방법을 보여준다.
-기본 메모리 상한이 있는 네임스페이스에서 컨테이너가 생성되고, 컨테이너가
-자체 메모리 상한을 지정하지 않으면, 컨테이너에 기본 메모리 상한이 할당된다.
+이 페이지는 {{< glossary_tooltip text="네임스페이스" term_id="namespace" >}}에 대한 
+기본 메모리 요청량(request) 및 상한(limit)을 구성하는 방법을 보여준다.
+
+쿠버네티스 클러스터를 여러 네임스페이스로 나눌 수 있다. 
+기본 메모리 [상한](/ko/docs/concepts/configuration/manage-resources-containers/#요청-및-제한)이 
+설정되어 있는 네임스페이스에 파드를 생성했는데, 
+해당 파드의 모든 컨테이너에 메모리 상한이 명시되어 있지 않다면, 
+{{< glossary_tooltip text="컨트롤 플레인" term_id="control-plane" >}}이 
+해당 컨테이너에 
+기본 메모리 상한을 할당한다.
+
 쿠버네티스는 이 문서의 뒷부분에서 설명하는 특정 조건에서 기본 메모리 요청량을 할당한다.
 
 
 
+
 ## {{% heading "prerequisites" %}}
 
 
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+{{< include "task-tutorial-prereqs.md" >}}
+
+클러스터에 네임스페이스를 생성할 수 있는 권한이 있어야 한다.
 
 클러스터의 각 노드에는 최소 2GiB의 메모리가 있어야 한다.
 
@@ -35,8 +49,9 @@ kubectl create namespace default-mem-example
 
 ## 리밋레인지(LimitRange)와 파드 생성
 
-다음은 리밋레인지 오브젝트의 구성 파일이다. 구성은
-메모리 요청량 기본값(default)과 메모리 상한 기본값을 지정한다.
+다음은 예시 {{< glossary_tooltip text="리밋레인지" term_id="limitrange" >}}에 대한 매니페스트이다.
+이 매니페스트는 기본 메모리 요청량 및 
+기본 메모리 상한을 지정한다.
 
 {{< codenew file="admin/resource/memory-defaults.yaml" >}}
 
@@ -46,13 +61,14 @@ default-mem-example 네임스페이스에 리밋레인지를 생성한다.
 kubectl apply -f https://k8s.io/examples/admin/resource/memory-defaults.yaml --namespace=default-mem-example
 ```
 
-이제 컨테이너가 default-mem-example 네임스페이스에 생성되고,
-컨테이너가 메모리 요청량 및 메모리 상한에 대해 고유한 값을 지정하지 않으면,
-컨테이너에 메모리 요청량 기본값 256MiB와 메모리 상한 기본값
-512MiB가 지정된다.
+이제 파드를 `default-mem-example` 네임스페이스에 생성하고, 
+해당 파드의 어떤 컨테이너도 자체 메모리 요청량(request)과 상한(limit)을 명시하지 않으면, 
+컨트롤 플레인이 해당 컨테이너에 메모리 요청량의 기본값(256 MiB)과 
+상한의 기본값(512 MiB)을 지정한다.
 
-컨테이너가 하나인 파드의 구성 파일은 다음과 같다. 컨테이너는
-메모리 요청량 및 상한을 지정하지 않는다.
+
+다음은 컨테이너가 하나인 파드의 매니페스트이다. 
+해당 컨테이너는 메모리 요청량과 상한을 지정하지 않는다.
 
 {{< codenew file="admin/resource/memory-defaults-pod.yaml" >}}
 
@@ -91,8 +107,8 @@ kubectl delete pod default-mem-demo --namespace=default-mem-example
 
 ## 컨테이너 상한은 지정하고, 요청량을 지정하지 않으면 어떻게 되나?
 
-컨테이너가 하나인 파드의 구성 파일은 다음과 같다. 컨테이너는
-메모리 상한을 지정하지만, 요청량은 지정하지 않는다.
+다음은 컨테이너가 하나인 파드의 매니페스트이다. 
+해당 컨테이너는 메모리 상한은 지정하지만, 요청량은 지정하지 않는다.
 
 {{< codenew file="admin/resource/memory-defaults-pod-2.yaml" >}}
 
@@ -122,8 +138,8 @@ resources:
 
 ## 컨테이너의 요청량은 지정하고, 상한을 지정하지 않으면 어떻게 되나?
 
-컨테이너가 하나인 파드의 구성 파일은 다음과 같다. 컨테이너는
-메모리 요청량을 지정하지만, 상한은 지정하지 않았다.
+다음은 컨테이너가 하나인 파드의 예시 매니페스트이다. 
+해당 컨테이너는 메모리 요청량은 지정하지만, 상한은 지정하지 않는다.
 
 {{< codenew file="admin/resource/memory-defaults-pod-3.yaml" >}}
 
@@ -139,9 +155,9 @@ kubectl apply -f https://k8s.io/examples/admin/resource/memory-defaults-pod-3.ya
 kubectl get pod default-mem-demo-3 --output=yaml --namespace=default-mem-example
 ```
 
-출력 결과는 컨테이너의 메모리 요청량이 컨테이너의 구성 파일에 지정된 값으로
-설정되었음을 보여준다. 컨테이너의 메모리 상한은 네임스페이스의
-기본 메모리 상한인 512Mi로 설정되어 있다.
+출력을 보면 컨테이너의 매니페스트에 명시한 값대로 컨테이너의 메모리 요청량이 설정된 것을 알 수 있다.
+해당 컨테이너의 메모리 상한은 512 MiB로 설정되며, 
+이는 네임스페이스의 메모리 상한 기본값과 일치한다.
 
 ```
 resources:
@@ -153,15 +169,23 @@ resources:
 
 ## 기본 메모리 상한 및 요청량에 대한 동기
 
-네임스페이스에 리소스 쿼터가 있는 경우,
+네임스페이스에 {{< glossary_tooltip text="리소스 쿼터" term_id="resource-quota" >}}가 
+설정되어 있는 경우,
 메모리 상한에 기본값을 설정하는 것이 좋다.
 다음은 리소스 쿼터가 네임스페이스에 적용하는 두 가지 제한 사항이다.
 
-* 네임스페이스에서 실행되는 모든 컨테이너에는 자체 메모리 상한이 있어야 한다.
-* 네임스페이스의 모든 컨테이너가 사용하는 총 메모리 양은 지정된 상한을 초과하지 않아야 한다.
+* 네임스페이스에서 실행되는 모든 파드에 대해, 모든 컨테이너에 메모리 상한이 있어야 한다.
+  (파드의 모든 컨테이너에 대해 메모리 상한을 지정하면, 
+  쿠버네티스가 파드 내의 컨테이너의 상한을 합산하여 파드-수준 메모리 상한을 추론할 수 있다.)
+* 메모리 상한은 해당 파드가 스케줄링될 노드에 리소스 예약을 적용한다.
+  해당 네임스페이스의 모든 파드에 대해 예약된 메모리 총량이 지정된 상한을 초과하지 않아야 한다.
+* 해당 네임스페이스의 모든 파드가 실제로 사용하고 있는 메모리의 총량 또한 지정된 상한을 초과하지 않아야 한다.
 
-컨테이너가 자체 메모리 상한을 지정하지 않으면, 기본 상한이 부여되고,
-쿼터에 의해 제한되는 네임스페이스에서 실행될 수 있다.
+리밋레인지를 추가할 때에는 다음을 고려해야 한다.
+
+컨테이너를 갖고 있는 해당 네임스페이스의 파드가 자체 메모리 상한을 지정하지 않았다면, 
+컨트롤 플레인이 해당 컨테이너에 메모리 상한 기본값을 적용하며, 
+해당 파드는 메모리 리소스쿼터가 적용된 네임스페이스에서 실행되도록 허용될 수 있다.
 
 ## 정리
 
diff --git a/content/ko/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace.md b/content/ko/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace.md
index f17a387a5b..892566050a 100644
--- a/content/ko/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace.md
+++ b/content/ko/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace.md
@@ -2,29 +2,31 @@
 title: 네임스페이스에 대한 메모리 및 CPU 쿼터 구성
 content_type: task
 weight: 50
+description: >-
+  한 네임스페이스에 대한 총 메모리 및 CPU 자원 상한을 정의한다.
 ---
 
 
 <!-- overview -->
 
-이 페이지는 네임스페이스에서 실행 중인 모든 컨테이너가 사용할 수 있는
+이 페이지는 {{< glossary_tooltip text="네임스페이스" term_id="namespace" >}}에서 
+실행 중인 모든 파드가 사용할 수 있는
 총 메모리 및 CPU 양에 대한 쿼터를 설정하는 방법을 보여준다.
-[리소스쿼터(ResourceQuota)](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#resourcequota-v1-core)
-오브젝트에 쿼터를 지정한다.
+[리소스쿼터(ResourceQuota)](/docs/reference/kubernetes-api/policy-resources/resource-quota-v1/) 오브젝트에 
+쿼터를 지정할 수 있다.
 
 
 
 
 ## {{% heading "prerequisites" %}}
 
+{{< include "task-tutorial-prereqs.md" >}}
 
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+클러스터에 네임스페이스를 생성할 수 있는 권한이 있어야 한다.
 
 클러스터의 각 노드에는 최소 1GiB의 메모리가 있어야 한다.
 
 
-
-
 <!-- steps -->
 
 ## 네임스페이스 생성
@@ -38,7 +40,7 @@ kubectl create namespace quota-mem-cpu-example
 
 ## 리소스쿼터 생성
 
-다음은 리소스쿼터 오브젝트의 구성 파일이다.
+다음은 예시 리소스쿼터 오브젝트에 대한 매니페스트이다.
 
 {{< codenew file="admin/resource/quota-mem-cpu.yaml" >}}
 
@@ -56,15 +58,18 @@ kubectl get resourcequota mem-cpu-demo --namespace=quota-mem-cpu-example --outpu
 
 리소스쿼터는 이러한 요구 사항을 quota-mem-cpu-example 네임스페이스에 배치한다.
 
-* 모든 컨테이너에는 메모리 요청량(request), 메모리 상한(limit), CPU 요청량 및 CPU 상한이 있어야 한다.
-* 모든 컨테이너에 대한 총 메모리 요청량은 1GiB를 초과하지 않아야 한다.
-* 모든 컨테이너에 대한 총 메모리 상한은 2GiB를 초과하지 않아야 한다.
-* 모든 컨테이너에 대한 총 CPU 요청량은 1 cpu를 초과해서는 안된다.
-* 모든 컨테이너에 대한 총 CPU 상한은 2 cpu를 초과해서는 안된다.
+* 네임스페이스의 모든 파드에 대해, 각 컨테이너에는 메모리 요청량(request), 메모리 상한(limit), CPU 요청량 및 CPU 상한이 있어야 한다.
+* 네임스페이스의 모든 파드에 대한 총 메모리 요청량은 1GiB를 초과하지 않아야 한다.
+* 네임스페이스의 모든 파드에 대한 총 메모리 상한은 2GiB를 초과하지 않아야 한다.
+* 네임스페이스의 모든 파드에 대한 총 CPU 요청량은 1 cpu를 초과해서는 안된다.
+* 네임스페이스의 모든 파드에 대한 총 CPU 상한은 2 cpu를 초과해서는 안된다.
+
+쿠버네티스에서 “1 CPU”가 무엇을 의미하는지 알아보려면 
+[CPU의 의미](/ko/docs/concepts/configuration/manage-resources-containers/#cpu의-의미)를 참조한다.
 
 ## 파드 생성
 
-파드의 구성 파일은 다음과 같다.
+다음은 예시 파드에 대한 매니페스트이다.
 
 {{< codenew file="admin/resource/quota-mem-cpu-pod.yaml" >}}
 
@@ -75,15 +80,15 @@ kubectl get resourcequota mem-cpu-demo --namespace=quota-mem-cpu-example --outpu
 kubectl apply -f https://k8s.io/examples/admin/resource/quota-mem-cpu-pod.yaml --namespace=quota-mem-cpu-example
 ```
 
-파드의 컨테이너가 실행 중인지 확인한다.
+파드가 실행 중이고 파드의 (유일한) 컨테이너의 상태가 정상인지 확인한다.
 
-```
+```shell
 kubectl get pod quota-mem-cpu-demo --namespace=quota-mem-cpu-example
 ```
 
 다시 한 번, 리소스쿼터에 대한 자세한 정보를 본다.
 
-```
+```shell
 kubectl get resourcequota mem-cpu-demo --namespace=quota-mem-cpu-example --output=yaml
 ```
 
@@ -105,15 +110,22 @@ status:
     requests.memory: 600Mi
 ```
 
+`jq` 도구가 설치되어 있으면, ([JSONPath](/ko/docs/reference/kubectl/jsonpath/)를 사용하여) `used` 값만을 질의 **하고**, 
+정돈된 상태로 출력할 수 있다. 예시는 다음과 같다.
+
+```shell
+kubectl get resourcequota mem-cpu-demo --namespace=quota-mem-cpu-example -o jsonpath='{ .status.used }' | jq .
+```
+
 ## 두 번째 파드 생성 시도
 
-다음은 두 번째 파드의 구성 파일이다.
+다음은 두 번째 파드에 대한 매니페스트이다.
 
 {{< codenew file="admin/resource/quota-mem-cpu-pod-2.yaml" >}}
 
-구성 파일에서, 파드의 메모리 요청량이 700MiB임을 알 수 있다.
+매니페스트에서, 파드의 메모리 요청량이 700MiB임을 알 수 있다.
 사용된 메모리 요청량과 이 새 메모리 요청량의 합계가
-메모리 요청량 쿼터를 초과한다. 600MiB + 700MiB > 1GiB
+메모리 요청량 쿼터를 초과함에 유의한다(600 MiB + 700 MiB > 1 GiB).
 
 파드 생성을 시도한다.
 
@@ -133,11 +145,12 @@ requested: requests.memory=700Mi,used: requests.memory=600Mi, limited: requests.
 ## 토론
 
 이 연습에서 보았듯이, 리소스쿼터를 사용하여
-네임스페이스에서 실행 중인 모든 컨테이너에 대한 메모리 요청량의 총 합계를 제한할 수 있다.
+네임스페이스에서 실행 중인 모든 파드에 대한 메모리 요청량의 총 합계를 제한할 수 있다.
 메모리 상한, CPU 요청량 및 CPU 상한의 총 합계를 제한할 수도 있다.
 
-모든 컨테이너에 대한 합계 대신 개별 컨테이너를 제한하려면,
-[리밋레인지(LimitRange)](/ko/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)를 사용한다.
+네임스페이스 내의 총 자원을 관리하는 것 대신, 
+개별 파드 또는 파드 내의 컨테이너별로 제한하고 싶을 수도 있다.
+이러한 종류의 제한을 걸려면, [리밋레인지(LimitRange)](/ko/docs/concepts/policy/limit-range/)를 사용한다.
 
 ## 정리
 
diff --git a/content/ko/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace.md b/content/ko/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace.md
index 9c4d787429..c525db0323 100644
--- a/content/ko/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace.md
+++ b/content/ko/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace.md
@@ -2,15 +2,17 @@
 title: 네임스페이스에 대한 파드 쿼터 구성
 content_type: task
 weight: 60
+description: >-
+  한 네임스페이스 내에 만들 수 있는 파드의 수를 제한한다.
 ---
 
 
 <!-- overview -->
 
-이 페이지는 네임스페이스에서 실행할 수 있는 총 파드 수에 대한 쿼터를
+이 페이지는 {{< glossary_tooltip text="네임스페이스" term_id="namespace" >}}에서 실행할 수 있는 총 파드 수에 대한 쿼터를
 설정하는 방법을 보여준다.
-[리소스쿼터(ResourceQuota)](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#resourcequota-v1-core)
-오브젝트에 쿼터를 지정한다.
+[리소스쿼터(ResourceQuota)](/docs/reference/kubernetes-api/policy-resources/resource-quota-v1/) 오브젝트에 
+쿼터를 지정할 수 있다.
 
 
 
@@ -18,10 +20,9 @@ weight: 60
 ## {{% heading "prerequisites" %}}
 
 
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-
+{{< include "task-tutorial-prereqs.md" >}}
 
+클러스터에 네임스페이스를 생성할 수 있는 권한이 있어야 한다.
 
 <!-- steps -->
 
@@ -36,7 +37,7 @@ kubectl create namespace quota-pod-example
 
 ## 리소스쿼터 생성
 
-다음은 리소스쿼터 오브젝트의 구성 파일이다.
+다음은 예시 리소스쿼터 오브젝트에 대한 매니페스트이다.
 
 {{< codenew file="admin/resource/quota-pod.yaml" >}}
 
@@ -66,11 +67,12 @@ status:
     pods: "0"
 ```
 
-다음은 디플로이먼트(Deployment) 구성 파일이다.
+다음은 {{< glossary_tooltip text="디플로이먼트(Deployment)" term_id="deployment" >}}에 대한 예시 매니페스트이다.
 
 {{< codenew file="admin/resource/quota-pod-deployment.yaml" >}}
 
-구성 파일에서, `replicas: 3` 은 쿠버네티스가 모두 동일한 애플리케이션을 실행하는 세 개의 파드를 만들도록 지시한다.
+매니페스트에서, `replicas: 3` 은 쿠버네티스가 모두 동일한 애플리케이션을 실행하는 
+세 개의 새로운 파드를 만들도록 지시한다.
 
 디플로이먼트를 생성한다.
 
@@ -84,8 +86,8 @@ kubectl apply -f https://k8s.io/examples/admin/resource/quota-pod-deployment.yam
 kubectl get deployment pod-quota-demo --namespace=quota-pod-example --output=yaml
 ```
 
-출력 결과는 디플로이먼트에서 3개의 레플리카를 지정하더라도, 쿼터로
-인해 2개의 파드만 생성되었음을 보여준다.
+출력을 보면 디플로이먼트가 3개의 레플리카를 정의하고 있음에도, 
+앞서 설정한 쿼터로 인해 2개의 파드만 생성되었음을 보여준다.
 
 ```yaml
 spec:
@@ -95,11 +97,18 @@ spec:
 status:
   availableReplicas: 2
 ...
-lastUpdateTime: 2017-07-07T20:57:05Z
+lastUpdateTime: 2021-04-02T20:57:05Z
     message: 'unable to create pods: pods "pod-quota-demo-1650323038-" is forbidden:
       exceeded quota: pod-demo, requested: pods=1, used: pods=2, limited: pods=2'
 ```
 
+### 리소스 선택
+
+이 예제에서는 총 파드 수를 제한하는 리소스쿼터를 정의하였다. 
+하지만, 다른 종류의 오브젝트의 총 수를 제한할 수도 있다. 
+예를 들어, 한 네임스페이스에 존재할 수 있는 
+{{< glossary_tooltip text="크론잡" term_id="cronjob" >}}의 총 수를 제한할 수 있다.
+
 ## 정리
 
 네임스페이스를 삭제한다.
diff --git a/content/ko/docs/tasks/administer-cluster/network-policy-provider/cilium-network-policy.md b/content/ko/docs/tasks/administer-cluster/network-policy-provider/cilium-network-policy.md
index eb953143be..4a6a769556 100644
--- a/content/ko/docs/tasks/administer-cluster/network-policy-provider/cilium-network-policy.md
+++ b/content/ko/docs/tasks/administer-cluster/network-policy-provider/cilium-network-policy.md
@@ -22,44 +22,59 @@ weight: 20
 
 실리움에 쉽게 친숙해지기 위해
 Minikube에 실리움을 기본적인 데몬셋으로 설치를 수행하는
-[실리움 쿠버네티스 시작하기 안내](https://docs.cilium.io/en/stable/gettingstarted/minikube/)를 따라 해볼 수 있다.
+[실리움 쿠버네티스 시작하기 안내](https://docs.cilium.io/en/stable/gettingstarted/k8s-install-default/)를 따라 해볼 수 있다.
 
-Minikube를 시작하려면 최소 버전으로 >= v1.3.1 이 필요하고,
+Minikube를 시작하려면 최소 버전으로 >= v1.5.2 이 필요하고,
 다음의 실행 파라미터로 실행한다.
 
 ```shell
 minikube version
 ```
 ```
-minikube version: v1.3.1
+minikube version: v1.5.2
 ```
 
 ```shell
-minikube start --network-plugin=cni --memory=4096
+minikube start --network-plugin=cni
 ```
 
-BPF 파일시스템을 마운트한다
+minikube의 경우 CLI 도구를 사용하여 실리움을 설치할 수 있다.
+실리움은 클러스터 구성을 자동으로 감지하고 
+성공적인 설치를 위해 적절한 구성 요소를 설치한다.
 
 ```shell
-minikube ssh -- sudo mount bpffs -t bpf /sys/fs/bpf
+curl -LO https://github.com/cilium/cilium-cli/releases/latest/download/cilium-linux-amd64.tar.gz
+sudo tar xzvfC cilium-linux-amd64.tar.gz /usr/local/bin
+rm cilium-linux-amd64.tar.gz
+cilium install
 ```
 
-Minikube에서 실리움의 데몬셋 구성과 적절한 RBAC 설정을 포함하는 필요한 구성을
-간단한 ``올인원`` YAML 파일로 배포할 수 있다.
-
 ```shell
-kubectl create -f  https://raw.githubusercontent.com/cilium/cilium/v1.8/install/kubernetes/quick-install.yaml
-```
-```
-configmap/cilium-config created
-serviceaccount/cilium created
-serviceaccount/cilium-operator created
-clusterrole.rbac.authorization.k8s.io/cilium created
-clusterrole.rbac.authorization.k8s.io/cilium-operator created
-clusterrolebinding.rbac.authorization.k8s.io/cilium created
-clusterrolebinding.rbac.authorization.k8s.io/cilium-operator created
-daemonset.apps/cilium create
-deployment.apps/cilium-operator created
+🔮 Auto-detected Kubernetes kind: minikube
+✨ Running "minikube" validation checks
+✅ Detected minikube version "1.20.0"
+ℹ️  Cilium version not set, using default version "v1.10.0"
+🔮 Auto-detected cluster name: minikube
+🔮 Auto-detected IPAM mode: cluster-pool
+🔮 Auto-detected datapath mode: tunnel
+🔑 Generating CA...
+2021/05/27 02:54:44 [INFO] generate received request
+2021/05/27 02:54:44 [INFO] received CSR
+2021/05/27 02:54:44 [INFO] generating key: ecdsa-256
+2021/05/27 02:54:44 [INFO] encoded CSR
+2021/05/27 02:54:44 [INFO] signed certificate with serial number 48713764918856674401136471229482703021230538642
+🔑 Generating certificates for Hubble...
+2021/05/27 02:54:44 [INFO] generate received request
+2021/05/27 02:54:44 [INFO] received CSR
+2021/05/27 02:54:44 [INFO] generating key: ecdsa-256
+2021/05/27 02:54:44 [INFO] encoded CSR
+2021/05/27 02:54:44 [INFO] signed certificate with serial number 3514109734025784310086389188421560613333279574
+🚀 Creating Service accounts...
+🚀 Creating Cluster roles...
+🚀 Creating ConfigMap...
+🚀 Creating Agent DaemonSet...
+🚀 Creating Operator Deployment...
+⌛ Waiting for Cilium to be installed...
 ```
 
 시작하기 안내서의 나머지 부분은 예제 애플리케이션을 이용하여
@@ -82,14 +97,14 @@ L3/L4(예, IP 주소 + 포트) 모두의 보안 정책뿐만 아니라 L7(예, H
 파드의 목록을 보려면 다음을 실행한다.
 
 ```shell
-kubectl get pods --namespace=kube-system
+kubectl get pods --namespace=kube-system -l k8s-app=cilium
 ```
 
 다음과 유사한 파드의 목록을 볼 것이다.
 
 ```console
-NAME            READY   STATUS    RESTARTS   AGE
-cilium-6rxbd    1/1     Running   0          1m
+NAME           READY   STATUS    RESTARTS   AGE
+cilium-kkdhz   1/1     Running   0          3m23s
 ...
 ```
 
diff --git a/content/ko/docs/tasks/administer-cluster/sysctl-cluster.md b/content/ko/docs/tasks/administer-cluster/sysctl-cluster.md
new file mode 100644
index 0000000000..33bc3de55d
--- /dev/null
+++ b/content/ko/docs/tasks/administer-cluster/sysctl-cluster.md
@@ -0,0 +1,230 @@
+---
+title: 쿠버네티스 클러스터에서 sysctl 사용하기
+
+
+content_type: task
+---
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.21" state="stable" >}}
+
+이 문서는 쿠버네티스 클러스터에서 {{< glossary_tooltip term_id="sysctl" >}} 인터페이스를 사용하여 
+커널 파라미터를 어떻게 구성하고, 사용하는지를 
+설명한다.
+
+{{< note >}}
+쿠버네티스 버전 1.23부터, kubelet은 `/` 또는 `.`를 
+sysctl 이름의 구분자로 사용하는 것을 지원한다. 
+예를 들어, 동일한 sysctl 이름을 `kernel.shm_rmid_forced`와 같이 마침표를 구분자로 사용하여 나타내거나 
+`kernel/shm_rmid_forced`와 같이 슬래시를 구분자로 사용하여 나타낼 수 있다. 
+sysctl 파라미터 변환에 대한 세부 사항은 
+리눅스 맨페이지 프로젝트의 
+[sysctl.d(5)](https://man7.org/linux/man-pages/man5/sysctl.d.5.html) 페이지를 참고한다. 
+파드와 파드시큐리티폴리시(PodSecurityPolicy)에 대해 sysctl을 설정하는 기능에서는 
+아직 슬래시 구분자를 지원하지 않는다.
+{{< /note >}}
+## {{% heading "prerequisites" %}}
+
+
+{{< include "task-tutorial-prereqs.md" >}}
+
+일부 단계에서는 실행 중인 클러스터의 kubelet에서 
+커맨드 라인 옵션을 재구성할 필요가 있다.
+
+
+<!-- steps -->
+
+## 모든 sysctl 파라미터 나열
+
+리눅스에서 sysctl 인터페이스는 관리자들이 런타임에 커널 파라미터를 수정할 수 있도록 
+허용한다. 파라미터는 `/proc/sys` 가상 파일 시스템을 통해 이용할 수 있다. 파라미터는 
+다음과 같은 다양한 서브 시스템을 포함한다.
+
+- 커널 (공통 접두사: `kernel.`)
+- 네트워크 (공통 접두사: `net.`)
+- 가상 메모리 (공통 접두사: `vm.`)
+- MDADM (공통 접두사: `dev.`)
+- 더 많은 서브 시스템은 [커널 문서](https://www.kernel.org/doc/Documentation/sysctl/README)에 설명되어 있다.
+
+모든 파라미터 리스트를 가져오려면 다음 명령을 실행한다.
+
+```shell
+sudo sysctl -a
+```
+
+## unsafe sysctl 활성화하기
+
+sysctl은 _safe_ sysctl과 _unsafe_ sysctl로 구성되어 있다. _safe_ sysctl은 
+적절한 네임스페이스 뿐만 아니라 동일한 노드의 파드 사이에 _고립_ 되어야 한다. 즉, 하나의 
+파드에 _safe_ sysctl을 설정한다는 것은 다음을 의미한다.
+
+- 노드의 다른 파드에 영향을 미치지 않아야 한다
+- 노드의 상태를 손상시키지 않아야 한다
+- CPU 또는 메모리 리소스가 파드의 리소스 제한에 벗어나는 것을 
+  허용하지 않아야 한다
+
+아직까지 대부분 _네임스페이스된_ sysctl은 _safe_ sysctl로 고려되지 않았다.
+다음 sysctl은 _safe_ 명령을 지원한다.
+
+- `kernel.shm_rmid_forced`,
+- `net.ipv4.ip_local_port_range`,
+- `net.ipv4.tcp_syncookies`,
+- `net.ipv4.ping_group_range` (쿠버네티스 1.18 이후),
+- `net.ipv4.ip_unprivileged_port_start` (쿠버네티스 1.22 이후).
+
+{{< note >}}
+`net.ipv4.tcp_syncookies` 예시는 리눅스 커널 버전 4.4 또는 이하에서 네임스페이스되지 않는다.
+{{< /note >}}
+
+kubelet이 더 고립된 방법을 지원하면 추후 쿠버네티스 버전에서 
+확장될 것이다.
+
+모든 _safe_ sysctl은 기본적으로 활성화된다.
+
+모든 _unsafe_ sysctl은 기본적으로 비활성화되고, 노드별 기본 클러스터 관리자에 
+의해 수동으로 메뉴얼로 허용되어야 한다.
+unsafe sysctl이 비활성화된 파드는 스케줄링되지만, 시작에 실패한다.
+
+위의 경고를 염두에 두고 클러스터 관리자는 
+고성능 또는 실시간 애플리케이션 조정과 같은 
+매우 특수한 상황에 대해 특정 _unsafe_ sysctl을 허용할 수 있다. _unsafe_ sysctl은 
+kubelet 플래그를 사용하여 노드별로 활성화된다. 예를 들면, 다음과 같다.
+
+```shell
+kubelet --allowed-unsafe-sysctls \
+  'kernel.msg*,net.core.somaxconn' ...
+```
+
+{{< glossary_tooltip term_id="minikube" >}}의 경우, `extra-config` 플래그를 통해 이 작업을 수행할 수 있다.
+
+```shell
+minikube start --extra-config="kubelet.allowed-unsafe-sysctls=kernel.msg*,net.core.somaxconn"...
+```
+
+_네임스페이스_ sysctl만 이 방법을 사용할 수 있다.
+
+## 파드에 대한 sysctl 설정
+
+수많은 sysctl은 최근 리눅스 커널에서 _네임스페이스_ 되어 있다. 이는 노드의 각 파드에 
+대해 개별적으로 설정할 수 있다는 것이다. 쿠버네티스의 파드 securityContext를 통해 
+네임스페이스 sysctl만 구성할 수 있다.
+
+다음 sysctls는 네임스페이스로 알려져 있다. 
+이 목록은 이후 버전의 Linux 커널에서 변경될 수 있다.
+
+- `kernel.shm*`,
+- `kernel.msg*`,
+- `kernel.sem`,
+- `fs.mqueue.*`,
+- `net.*` 아래의 파라미터는 컨테이너 네트워킹 네임스페이스에서 설정할 수 있다. 
+  그러나 예외가 존재한다. (예, `net.netfilter.nf_conntrack_max`와 `net.netfilter.nf_conntrack_expect_max`는 
+  컨테이너 네트워킹 네임스페이스에서 설정되지만, 
+  네임스페이스가 없다.)
+
+네임스페이스가 없는 sysctl은 _node-level_ sysctl이라고 부른다. 
+이를 설정해야 한다면, 각 노드의 OS에서 수동으로 구성하거나 
+특권있는 컨테이너의 데몬셋을 사용하여야 한다.
+
+네임스페이스 sysctl을 구성하기 위해서 파드 securityContext를 사용한다. 
+securityContext는 동일한 파드의 모든 컨테이너에 적용된다.
+
+이 예시는 safe sysctl `kernel.shm_rmid_forced`와 두 개의 unsafe sysctl인 
+`net.core.somaxconn` 과 `kernel.msgmax` 를 설정하기 위해 파드 securityContext를 사용한다.
+스펙에 따르면 _safe_ sysctl과 _unsafe_ sysctl 간 
+차이는 없다.
+
+{{< warning >}}
+파라미터의 영향을 파악한 후에만 운영체제가 
+불안정해지지 않도록 sysctl 파라미터를 수정한다.
+{{< /warning >}}
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: sysctl-example
+spec:
+  securityContext:
+    sysctls:
+    - name: kernel.shm_rmid_forced
+      value: "0"
+    - name: net.core.somaxconn
+      value: "1024"
+    - name: kernel.msgmax
+      value: "65536"
+  ...
+```
+
+
+<!-- discussion -->
+
+{{< warning >}}
+_unsafe_의 특성으로 인해 _unsafe_sysctl는 위험 부담이 있으며 
+컨테이너의 잘못된 동작, 리소스 부족 혹은 노드 완전 파손과 같은 
+심각한 문제를 초래할 수 있다.
+{{< /warning >}}
+
+특별한 sysctl 설정이 있는 노드를 클러스터 내에서 _tainted_로 간주하고 
+sysctl 설정이 필요한 노드에만 파드를 예약하는 것이 좋다. 
+이를 구현하려면 쿠버네티스 [_테인트(taint)와 톨러레이션(toleration)_ 기능](/docs/reference/generated/kubectl/kubectl-commands/#taint) 을 
+사용하는 것이 좋다.
+
+두 _unsafe_ sysctl을 명시적으로 활성화하지 않은 노드에서 _unsafe_ sysctl을 사용하는 
+파드가 시작되지 않는다. _node-level_ sysctl과 마찬가지로 
+[_테인트와 톨러레이션_ 특징](/docs/reference/generated/kubectl/kubectl-commands/#taint) 또는 
+[노드 테인트](/ko/docs/concepts/scheduling-eviction/taint-and-toleration/)를 
+사용하여 해당 파드를 오른쪽 노드에 
+스케줄하는 것을 추천한다.
+
+## 파드시큐리티폴리시(PodSecurityPolicy)
+
+{{< feature-state for_k8s_version="v1.21" state="deprecated" >}}
+
+또한 파드시큐리티폴리시의 `forbiddenSysctls` 및/또는 `allowedUnsafeSysctls` 필드에 
+sysctl 또는 sysctl 패턴 목록을 지정하여 파드에서 설정할 
+수 있는 sysctl를 제어할 수 있다. sysctl 패턴은 `kernel.*`과 같은 `*` 
+문자로 끝난다. `*` 문자 자체는 
+모든 sysctl와 일치한다.
+
+기본적으로 모든 safe sysctl은 허용된다.
+
+`forbiddenSysctls`와 `allowedUnsafeSysctls`는 모두 단순한 sysctl 이름 또는 
+sysctl 패턴 목록이다(`*`로 끝남). `*` 문자는 모든 sysctl과 일치한다.
+
+`forbiddenSysctls` 필드에는 특정 sysctl이 제외된다. 
+목록에서 safe sysctl과 unsafe sysctl의 조합을 금지할 수 있다.
+sysctl 설정을 금지하기 위해서는 `*`를 사용한다.
+
+`allowedUnsafeSysctls` 필드에 unsafe sysctl을 지정하고 `forbiddenSysctls` 필드가 
+존재하지 않는 경우, 파드시큐리티폴리시를 사용하여 
+sysctl을 파드에서 사용할 수 있다. 
+파드시큐리티폴리시의 모든 unsafe sysctl을 설정하려면 `*`를 사용한다.
+
+이 두 필드를 겹치도록 구성하지 않는다. 
+이는 지정된 sysctl이 허용 및 금지됨을 의미한다.
+
+{{< warning >}}
+파드시큐리티폴리시의 'allowedUnsafeSysctls' 필드를 통해 unsafe sysctl을 
+허용하는 경우, 해당 노드에서 sysctl이 
+'--allowed-unsafe-sysctls' kubelet 플래그를 통해 허용되지 않으면, 
+sysctl을 사용하는 모든 파드가 시작에 실패한다.
+{{< /warning >}}
+
+이 예에서는 `kernel.msg` 접두사가 붙은 unsafe sysctl을 설정할 수 있으며, 
+`kernel.shm_rmid_forced` sysctl의 설정을 허용하지 않는다.
+
+```yaml
+apiVersion: policy/v1beta1
+kind: PodSecurityPolicy
+metadata:
+  name: sysctl-psp
+spec:
+  allowedUnsafeSysctls:
+  - kernel.msg*
+  forbiddenSysctls:
+  - kernel.shm_rmid_forced
+ ...
+```
+
+
diff --git a/content/ko/docs/tasks/configmap-secret/managing-secret-using-kubectl.md b/content/ko/docs/tasks/configmap-secret/managing-secret-using-kubectl.md
index 8b3f62217e..410b5722aa 100644
--- a/content/ko/docs/tasks/configmap-secret/managing-secret-using-kubectl.md
+++ b/content/ko/docs/tasks/configmap-secret/managing-secret-using-kubectl.md
@@ -67,7 +67,7 @@ kubectl create secret generic db-user-pass \
 다음 커맨드를 실행한다.
 
 ```shell
-kubectl create secret generic dev-db-secret \
+kubectl create secret generic db-user-pass \
   --from-literal=username=devuser \
   --from-literal=password='S!B\*d$zDsb='
 ```
@@ -130,6 +130,12 @@ kubectl get secret db-user-pass -o jsonpath='{.data}'
 이제 `password` 데이터를 디코딩할 수 있다.
 
 ```shell
+# 이 예시는 문서화를 위한 것이다. 
+# 아래와 같은 방법으로 이를 수행했다면, 
+# 'MWYyZDFlMmU2N2Rm' 데이터가 셸 히스토리에 저장될 수 있다. 
+# 당신의 컴퓨터에 접근할 수 있는 사람이 당신 몰래 저장된 명령을 찾아 
+# 시크릿을 base-64 디코드할 수도 있다. 
+# 따라서 이 페이지의 아래 부분에 나오는 다른 단계들과 조합하는 것이 좋다.
 echo 'MWYyZDFlMmU2N2Rm' | base64 --decode
 ```
 
@@ -139,6 +145,15 @@ echo 'MWYyZDFlMmU2N2Rm' | base64 --decode
 1f2d1e2e67df
 ```
 
+인코딩된 시크릿 값이 셸 히스토리에 저장되는 것을 피하려면, 
+다음의 명령을 실행할 수 있다.
+
+```shell
+kubectl get secret db-user-pass -o jsonpath='{.data.password}' | base64 --decode
+```
+
+출력은 위의 경우와 유사할 것이다.
+
 ## 삭제
 
 생성한 시크릿을 삭제하려면 다음 명령을 실행한다.
diff --git a/content/ko/docs/tasks/configure-pod-container/assign-memory-resource.md b/content/ko/docs/tasks/configure-pod-container/assign-memory-resource.md
index a798018b91..ffcf47d097 100644
--- a/content/ko/docs/tasks/configure-pod-container/assign-memory-resource.md
+++ b/content/ko/docs/tasks/configure-pod-container/assign-memory-resource.md
@@ -99,10 +99,10 @@ kubectl get pod memory-demo --output=yaml --namespace=mem-example
 ```yaml
 ...
 resources:
-  limits:
-    memory: 200Mi
   requests:
     memory: 100Mi
+  limits:
+    memory: 200Mi
 ...
 ```
 
@@ -174,7 +174,7 @@ kubectl get pod memory-demo-2 --output=yaml --namespace=mem-example
 ```shell
 lastState:
    terminated:
-     containerID: docker://65183c1877aaec2e8427bc95609cc52677a454b56fcb24340dbd22917c23b10f
+     containerID: 65183c1877aaec2e8427bc95609cc52677a454b56fcb24340dbd22917c23b10f
      exitCode: 137
      finishedAt: 2017-06-20T20:52:19Z
      reason: OOMKilled
diff --git a/content/ko/docs/tasks/configure-pod-container/configure-gmsa.md b/content/ko/docs/tasks/configure-pod-container/configure-gmsa.md
new file mode 100644
index 0000000000..d5fa867d40
--- /dev/null
+++ b/content/ko/docs/tasks/configure-pod-container/configure-gmsa.md
@@ -0,0 +1,278 @@
+---
+title: 윈도우 파드와 컨테이너용 GMSA 구성
+content_type: task
+weight: 20
+---
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.18" state="stable" >}}
+
+이 페이지는 윈도우 노드에서 실행되는 파드와 컨테이너용으로 [그룹 관리 서비스 어카운트(Group Managed Service Accounts,](https://docs.microsoft.com/ko-kr/windows-server/security/group-managed-service-accounts/group-managed-service-accounts-overview) GMSA)를 구성하는 방법을 소개한다. 그룹 관리 서비스 어카운트는 자동 암호 관리, 단순화된 서비스 사용자 이름(service principal name, SPN) 관리, 여러 서버에 걸쳐 다른 관리자에게 관리를 위임하는 기능을 제공하는 특정한 유형의 액티브 디렉터리(Active Directory) 계정이다.
+
+쿠버네티스에서 GMSA 자격 증명 사양은 쿠버네티스 클러스터 전체 범위에서 사용자 정의 리소스(Custom Resources)로 구성된다. 윈도우 파드 및 파드 내의 개별 컨테이너들은 다른 윈도우 서비스와 상호 작용할 때 도메인 기반 기능(예: Kerberos 인증)에 GMSA를 사용하도록 구성할 수 있다.
+
+## {{% heading "prerequisites" %}}
+
+쿠버네티스 클러스터가 있어야 하며 클러스터와 통신하도록 `kubectl` 커맨드라인 툴을 구성해야 한다. 클러스터에는 윈도우 워커 노드가 있어야 한다. 이 섹션에서는 각 클러스터에 대해 한 번씩 필요한 일련의 초기 단계를 다룬다.
+
+### GMSACredentialSpec CRD 설치
+
+GMSA 자격 증명 사양 리소스에 대한 [커스텀리소스데피니션(CustomResourceDefinition,](/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/) CRD)을 클러스터에서 구성하여 사용자 정의 리소스 유형 `GMSACredentialSpec`을 정의해야 한다. GMSA CRD [YAML](https://github.com/kubernetes-sigs/windows-gmsa/blob/master/admission-webhook/deploy/gmsa-crd.yml)을 다운로드하고 gmsa-crd.yaml로 저장한다.
+다음, `kubectl apply -f gmsa-crd.yaml` 로 CRD를 설치한다.
+
+### GMSA 사용자를 검증하기 위해 웹훅 설치
+
+쿠버네티스 클러스터에서 두 개의 웹훅을 구성하여 파드 또는 컨테이너 수준에서 GMSA 자격 증명 사양 참조를 채우고 검증한다.
+
+1. 변형(mutating) 웹훅은 (파드 사양의 이름별로) GMSA에 대한 참조를 파드 사양 내 JSON 형식의 전체 자격 증명 사양으로 확장한다.
+
+1. 검증(validating) 웹훅은 GMSA에 대한 모든 참조가 파드 서비스 어카운트에서 사용하도록 승인되었는지 확인한다.
+
+위의 웹훅 및 관련 오브젝트를 설치하려면 다음 단계가 필요하다.
+
+1. 인증서 키 쌍 생성 (웹훅 컨테이너가 클러스터와 통신할 수 있도록 하는데 사용됨)
+
+1. 위의 인증서로 시크릿을 설치
+
+1. 핵심 웹훅 로직에 대한 디플로이먼트(deployment)를 생성
+
+1. 디플로이먼트를 참조하여 검증 및 변경 웹훅 구성을 생성
+
+[스크립트](https://github.com/kubernetes-sigs/windows-gmsa/blob/master/admission-webhook/deploy/deploy-gmsa-webhook.sh)를 사용하여 GMSA 웹훅과 위에서 언급한 관련 오브젝트를 배포 및 구성할 수 있다. 스크립트는 ```--dry-run=server``` 옵션으로 실행되어 클러스터에 대한 변경 사항을 검토할 수 있다.
+
+스크립트에서 사용하는 [YAML 템플릿](https://github.com/kubernetes-sigs/windows-gmsa/blob/master/admission-webhook/deploy/gmsa-webhook.yml.tpl)을 사용하여 웹훅 및 (파라미터를 적절히 대체하여) 관련 오브젝트를 수동으로 배포할 수도 있다. 
+
+<!-- steps -->
+
+## 액티브 디렉터리에서 GMSA 및 윈도우 노드 구성
+
+쿠버네티스의 파드가 GMSA를 사용하도록 구성되기 전에 [윈도우 GMSA 문서](https://docs.microsoft.com/ko-kr/windows-server/security/group-managed-service-accounts/getting-started-with-group-managed-service-accounts#BKMK_Step1)에 설명된 대로 액티브 디렉터리에서 원하는 GMSA를 프로비저닝해야 한다. [윈도우 GMSA 문서](https://docs.microsoft.com/ko-kr/windows-server/security/group-managed-service-accounts/getting-started-with-group-managed-service-accounts#to-add-member-hosts-using-the-set-adserviceaccount-cmdlet)에 설명된 대로 원하는 GMSA와 연결된 시크릿 자격 증명에 접근하려면 (쿠버네티스 클러스터의 일부인) 윈도우 워커 노드를 액티브 디렉터리에서 구성해야 한다.
+
+## GMSA 자격 증명 사양 리소스 생성
+
+(앞에서 설명한 대로) GMSACredentialSpec CRD를 설치하면 GMSA 자격 증명 사양이 포함된 사용자 정의 리소스를 구성할 수 있다. GMSA 자격 증명 사양에는 시크릿 또는 민감한 데이터가 포함되어 있지 않다. 이것은 컨테이너 런타임이 원하는 윈도우 컨테이너 GMSA를 설명하는 데 사용할 수 있는 정보이다. GMSA 자격 증명 사양은 [PowerShell 스크립트](https://github.com/kubernetes-sigs/windows-gmsa/tree/master/scripts/GenerateCredentialSpecResource.ps1) 유틸리티를 사용하여 YAML 형식으로 생성할 수 있다.
+
+다음은 JSON 형식으로 GMSA 자격 증명 사양 YAML을 수동으로 생성한 다음 변환하는 단계이다.
+
+1. CredentialSpec [모듈](https://github.com/MicrosoftDocs/Virtualization-Documentation/blob/live/windows-server-container-tools/ServiceAccounts/CredentialSpec.psm1) 가져오기(import): `ipmo CredentialSpec.psm1`
+
+1. `New-CredentialSpec`을 사용하여 JSON 형식의 자격 증명 사양을 만든다. WebApp1이라는 GMSA 자격 증명 사양을 만들려면 `New-CredentialSpec -Name WebApp1 -AccountName WebApp1 -Domain $(Get-ADDomain -Current LocalComputer)`를 호출한다.
+
+1. `Get-CredentialSpec`을 사용하여 JSON 파일의 경로를 표시한다.
+
+1. credspec 파일을 JSON에서 YAML 형식으로 변환하고 필요한 헤더 필드 `apiVersion`, `kind`, `metadata`, `credspec`을 적용하여 쿠버네티스에서 구성할 수 있는 GMSACredentialSpec 사용자 정의 리소스로 만든다.
+
+다음 YAML 구성은 `gmsa-WebApp1`이라는 GMSA 자격 증명 사양을 설명한다.
+
+```yaml
+apiVersion: windows.k8s.io/v1
+kind: GMSACredentialSpec
+metadata:
+  name: gmsa-WebApp1  #임의의 이름이지만 참조로 사용된다.
+credspec:
+  ActiveDirectoryConfig:
+    GroupManagedServiceAccounts:
+    - Name: WebApp1   #GMSA 계정의 사용자 이름
+      Scope: CONTOSO  #NETBIOS 도메인 명
+    - Name: WebApp1   #GMSA 계정의 사용자 이름
+      Scope: contoso.com #DNS 도메인 명
+  CmsPlugins:
+  - ActiveDirectory
+  DomainJoinConfig:
+    DnsName: contoso.com  #DNS 도메인 명
+    DnsTreeName: contoso.com #DNS 도메인 명 루트
+    Guid: 244818ae-87ac-4fcd-92ec-e79e5252348a  #GUID
+    MachineAccountName: WebApp1 #GMSA 계정의 사용자 이름
+    NetBiosName: CONTOSO  #NETBIOS 도메인 명
+    Sid: S-1-5-21-2126449477-2524075714-3094792973 #SID of GMSA
+```
+
+위의 자격 증명 사양 리소스는 `gmsa-Webapp1-credspec.yaml`로 저장되고 `kubectl apply -f gmsa-Webapp1-credspec.yml`을 사용하여 클러스터에 적용될 수 있다.
+
+## 특정 GMSA 자격 증명 사양에서 RBAC를 활성화하도록 cluster role 구성
+
+각 GMSA 자격 증명 사양 리소스에 대해 cluster role을 정의해야 한다. 이것은 일반적으로 서비스 어카운트인 주체에 의해 특정 GMSA 리소스에 대한 `use` 동사를 승인한다. 다음 예는 위에서 `gmsa-WebApp1` 자격 증명 사양의 사용을 승인하는 클러스터 롤(cluster role)을 보여준다. 파일을 gmsa-webapp1-role.yaml로 저장하고 `kubectl apply -f gmsa-webapp1-role.yaml`을 사용하여 적용한다.
+
+```yaml
+#credspec을 읽을 Role 생성
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: webapp1-role
+rules:
+- apiGroups: ["windows.k8s.io"]
+  resources: ["gmsacredentialspecs"]
+  verbs: ["use"]
+  resourceNames: ["gmsa-WebApp1"]
+```
+
+## 특정 GMSA credspecs를 사용하도록 서비스 어카운트에 롤 할당
+
+(파드가 사용하게 되는) 서비스 어카운트는 위에서 생성한 클러스터 롤에 바인딩되어야 한다. 이렇게 하면 서비스 어카운트가 원하는 GMSA 자격 증명 사양 리소스를 사용할 수 있다. 다음은 위에서 생성한 `gmsa-WebApp1` 자격 증명 사양 리소스를 사용하기 위해 `webapp1-role` 클러스터 롤에 바인딩되는 기본(default) 서비스 어카운트이다.
+
+```yaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  name: allow-default-svc-account-read-on-gmsa-WebApp1
+  namespace: default
+subjects:
+- kind: ServiceAccount
+  name: default
+  namespace: default
+roleRef:
+  kind: ClusterRole
+  name: webapp1-role
+  apiGroup: rbac.authorization.k8s.io
+```
+
+## 파드 사양에서 GMSA 자격 증명 사양 참조 구성
+
+파드 사양 필드 `securityContext.windowsOptions.gmsaCredentialSpecName`은 파드 사양에서 원하는 GMSA 자격 증명 사양 사용자 정의 리소스에 대한 참조를 지정하는 데 사용된다. 이렇게 하면 지정된 GMSA를 사용하도록 파드 사양의 모든 컨테이너가 구성된다. 다음은 `gmsa-WebApp1`을 참조하도록 채워진 어노테이션이 있는 샘플 파드 사양이다.
+
+```yaml
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    run: with-creds
+  name: with-creds
+  namespace: default
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      run: with-creds
+  template:
+    metadata:
+      labels:
+        run: with-creds
+    spec:
+      securityContext:
+        windowsOptions:
+          gmsaCredentialSpecName: gmsa-webapp1
+      containers:
+      - image: mcr.microsoft.com/windows/servercore/iis:windowsservercore-ltsc2019
+        imagePullPolicy: Always
+        name: iis
+      nodeSelector:
+        kubernetes.io/os: windows
+```
+
+파드 사양의 개별 컨테이너는 컨테이너별 `securityContext.windowsOptions.gmsaCredentialSpecName` 필드를 사용하여 원하는 GMSA credspec을 지정할 수도 있다. 다음은 예이다.
+
+```yaml
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    run: with-creds
+  name: with-creds
+  namespace: default
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      run: with-creds
+  template:
+    metadata:
+      labels:
+        run: with-creds
+    spec:
+      containers:
+      - image: mcr.microsoft.com/windows/servercore/iis:windowsservercore-ltsc2019
+        imagePullPolicy: Always
+        name: iis
+        securityContext:
+          windowsOptions:
+            gmsaCredentialSpecName: gmsa-Webapp1
+      nodeSelector:
+        kubernetes.io/os: windows
+```
+
+(위에서 설명한 대로) GMSA 필드가 채워진 파드 사양이 클러스터에 적용되면 다음과 같은 일련의 이벤트가 발생한다.
+
+1. 변형 웹훅은 GMSA 자격 증명 사양 리소스에 대한 모든 참조를 확인하고 GMSA 자격 증명 사양의 내용으로 확장한다.
+
+1. 검증 웹훅은 파드와 연결된 서비스 어카운트가 지정된 GMSA 자격 증명 사양의 `use` 동사에 대해 승인되었는지 확인한다.
+
+1. 컨테이너 런타임은 컨테이너가 액티브 디렉터리에서 GMSA의 ID를 가정하고 해당 ID를 사용하여 도메인의 서비스에 접근할 수 있도록 지정된 GMSA 자격 증명 사양으로 각 윈도우 컨테이너를 구성한다.
+
+## 호스트네임 또는 FQDN을 사용하는 경우에 네트워크 공유에 인증하기
+
+파드에서 호스트네임 또는 FQDN을 사용하여 SMB 공유에 연결할 때 문제를 겪고 있으나, IPv4 주소로는 해당 공유에 접속이 가능한 상황이라면, 윈도우 노드에 다음 레지스트리 키를 등록했는지 확인한다.
+
+```cmd
+reg add "HKLM\SYSTEM\CurrentControlSet\Services\hns\State" /v EnableCompartmentNamespace /t REG_DWORD /d 1
+```
+
+그런 다음 동작 변경 사항을 적용하려면 실행 중인 파드를 다시 생성해야 한다.
+이 레지스트리 키가 어떻게 사용되는지에 대한 자세한 정보는 
+[여기](https://github.com/microsoft/hcsshim/blob/885f896c5a8548ca36c88c4b87fd2208c8d16543/internal/uvm/create.go#L74-L83)에서 볼 수 있다.
+
+## 문제 해결
+
+GMSA가 사용자 환경에서 작동하도록 하는 데 어려움이 있는 경우 취할 수 있는 몇 가지 문제 해결 단계가 있다.
+
+먼저 credspec이 파드에 전달되었는지 확인한다. 이렇게 하려면 파드 중 하나에서 `exec`를 실행하고 `nltest.exe /parentdomain` 명령의 출력을 확인해야 한다.
+
+아래 예에서 파드는 credspec을 올바르게 가져오지 못했다.
+
+```PowerShell
+kubectl exec -it iis-auth-7776966999-n5nzr powershell.exe
+```
+
+`nltest.exe /parentdomain` 는 다음과 같은 오류를 발생시킨다.
+
+```output
+Getting parent domain failed: Status = 1722 0x6ba RPC_S_SERVER_UNAVAILABLE
+```
+
+파드가 credspec을 올바르게 가져오면 다음으로 도메인과의 통신을 확인한다. 먼저 파드 내부에서 nslookup을 빠르게 수행하여 도메인의 루트를 찾는다.
+
+이것은 다음의 세 가지를 의미한다.
+
+1. 파드는 DC에 도달할 수 있다.
+1. DC는 파드에 도달할 수 있다.
+1. DNS가 올바르게 작동하고 있다.
+
+DNS 및 통신 테스트를 통과하면 다음으로 파드가 도메인과 보안 채널 통신을 설정했는지 확인해야 한다. 이렇게 하려면 파드에서 다시 `exec`를 실행하고 `nltest.exe /query` 명령을 실행한다.
+
+```PowerShell
+nltest.exe /query
+```
+
+결과는 다음과 같다.
+
+```output
+I_NetLogonControl failed: Status = 1722 0x6ba RPC_S_SERVER_UNAVAILABLE
+```
+
+이것은 어떤 이유로 파드가 credspec에 지정된 계정을 사용하여 도메인에 로그온할 수 없음을 알려준다. 다음을 실행하여 보안 채널 복구를 시도할 수 있다.
+
+```PowerShell
+nltest /sc_reset:domain.example
+```
+
+명령이 성공하면 다음과 유사한 출력이 표시된다.
+
+```output
+Flags: 30 HAS_IP  HAS_TIMESERV
+Trusted DC Name \\dc10.domain.example
+Trusted DC Connection Status Status = 0 0x0 NERR_Success
+The command completed successfully
+```
+
+위의 방법으로 오류가 수정되면 다음 수명 주기 훅(hook)을 파드 사양에 추가하여 단계를 자동화할 수 있다. 오류가 수정되지 않은 경우 credspec을 다시 검사하여 정확하고 완전한지 확인해야 한다.
+
+```yaml
+        image: registry.domain.example/iis-auth:1809v1
+        lifecycle:
+          postStart:
+            exec:
+              command: ["powershell.exe","-command","do { Restart-Service -Name netlogon } while ( $($Result = (nltest.exe /query); if ($Result -like '*0x0 NERR_Success*') {return $true} else {return $false}) -eq $false)"]
+        imagePullPolicy: IfNotPresent
+```
+
+위의 `lifecycle` 섹션을 파드 사양에 추가하면, 파드는 `nltest.exe /query` 명령이 오류 없이 종료될 때까지 나열된 명령을 실행하여 `netlogon` 서비스를 다시 시작한다.
diff --git a/content/ko/docs/tasks/configure-pod-container/configure-persistent-volume-storage.md b/content/ko/docs/tasks/configure-pod-container/configure-persistent-volume-storage.md
index 3461c57061..a2bac74f99 100644
--- a/content/ko/docs/tasks/configure-pod-container/configure-persistent-volume-storage.md
+++ b/content/ko/docs/tasks/configure-pod-container/configure-persistent-volume-storage.md
@@ -96,11 +96,10 @@ hostPath 퍼시스턴트볼륨의 설정 파일은 아래와 같다.
 
 설정 파일에 클러스터 노드의 `/mnt/data` 에 볼륨이 있다고
 지정한다. 또한 설정에서 볼륨 크기를 10 기가바이트로 지정하고 단일 노드가
-읽기-쓰기 모드로 볼륨을 마운트할 수 있는 `ReadWriteOnce` 접근 모드를
-지정한다. 여기서는 
+읽기-쓰기 모드로 볼륨을 마운트할 수 있는 `ReadWriteOnce` 접근 모드를 지정한다. 여기서는 
 퍼시스턴트볼륨클레임의 [스토리지클래스 이름](/ko/docs/concepts/storage/persistent-volumes/#클래스)을 
 `manual` 로 정의하며, 퍼시스턴트볼륨클레임의 요청을 
-이 퍼시스턴트볼륨에 바인딩하는데 사용한다.
+이 퍼시스턴트볼륨에 바인딩하는 데 사용한다.
 
 퍼시스턴트볼륨을 생성한다.
 
@@ -237,8 +236,14 @@ sudo rmdir /mnt/data
 
 이제 사용자 노드에서 셸을 종료해도 된다.
 
+## 하나의 퍼시스턴트볼륨을 두 경로에 마운트하기
 
+{{< codenew file="pods/storage/pv-duplicate.yaml" >}}
 
+하나의 퍼시스턴트볼륨을 nginx 컨테이너의 두 경로에 마운트할 수 있다.
+
+`/usr/share/nginx/html` - 정적 웹사이트 용
+`/etc/nginx/nginx.conf` - 기본 환경 설정 용
 
 <!-- discussion -->
 
diff --git a/content/ko/docs/tasks/configure-pod-container/configure-pod-initialization.md b/content/ko/docs/tasks/configure-pod-container/configure-pod-initialization.md
index 92abf6e4f6..9343b7116f 100644
--- a/content/ko/docs/tasks/configure-pod-container/configure-pod-initialization.md
+++ b/content/ko/docs/tasks/configure-pod-container/configure-pod-initialization.md
@@ -85,4 +85,4 @@ init-demo 파드 내 실행 중인 nginx 컨테이너의 셸을 실행한다.
 대해 배우기.
 * [초기화 컨테이너](/ko/docs/concepts/workloads/pods/init-containers/)에 대해 배우기.
 * [볼륨](/ko/docs/concepts/storage/volumes/)에 대해 배우기.
-* [초기화 컨테이너 디버깅](/ko/docs/tasks/debug-application-cluster/debug-init-containers/)에 대해 배우기.
+* [초기화 컨테이너 디버깅](/ko/docs/tasks/debug/debug-application/debug-init-containers/)에 대해 배우기.
diff --git a/content/ko/docs/tasks/configure-pod-container/configure-runasusername.md b/content/ko/docs/tasks/configure-pod-container/configure-runasusername.md
index 8bae2f4286..12546126ce 100644
--- a/content/ko/docs/tasks/configure-pod-container/configure-runasusername.md
+++ b/content/ko/docs/tasks/configure-pod-container/configure-runasusername.md
@@ -122,5 +122,5 @@ ContainerAdministrator
 
 * [쿠버네티스에서 윈도우 컨테이너 스케줄링을 위한 가이드](/ko/docs/setup/production-environment/windows/user-guide-windows-containers/)
 * [그룹 매니지드 서비스 어카운트를 이용하여 워크로드 신원 관리하기](/ko/docs/setup/production-environment/windows/user-guide-windows-containers/#그룹-매니지드-서비스-어카운트를-이용하여-워크로드-신원-관리하기)
-* [윈도우 파드와 컨테이너의 GMSA 구성](/docs/tasks/configure-pod-container/configure-gmsa/)
+* [윈도우 파드와 컨테이너의 GMSA 구성](/ko/docs/tasks/configure-pod-container/configure-gmsa/)
 
diff --git a/content/ko/docs/tasks/configure-pod-container/pull-image-private-registry.md b/content/ko/docs/tasks/configure-pod-container/pull-image-private-registry.md
index 2188ced539..87efe777a9 100644
--- a/content/ko/docs/tasks/configure-pod-container/pull-image-private-registry.md
+++ b/content/ko/docs/tasks/configure-pod-container/pull-image-private-registry.md
@@ -6,29 +6,40 @@ weight: 100
 
 <!-- overview -->
 
-이 페이지는 프라이빗 도커 레지스트리나 리포지터리로부터 이미지를 받아오기 위해 시크릿(Secret)을 
-사용하는 파드를 생성하는 방법을 보여준다.
+이 페이지는 프라이빗 컨테이너 레지스트리나 리포지터리로부터 이미지를 받아오기 위해 
+{{< glossary_tooltip text="시크릿(Secret)" term_id="secret" >}}을 사용하는 
+파드를 생성하는 방법을 보여준다. 
+현재 많은 곳에서 프라이빗 레지스트리가 사용되고 있다. 
+여기서는 예시 레지스트리로 [Docker Hub](https://www.docker.com/products/docker-hub)을 사용한다.
+
+{{% thirdparty-content single="true" %}}
 
 ## {{% heading "prerequisites" %}}
 
-* {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+* {{< include "task-tutorial-prereqs.md" >}}
 
-* 이 실습을 수행하기 위해, 
-[도커 ID](https://docs.docker.com/docker-id/)와 비밀번호가 필요하다.
+* 이 실습을 수행하기 위해, `docker` 명령줄 도구와
+  [도커 ID](https://docs.docker.com/docker-id/) 및 비밀번호가 필요하다.
+* 다른 프라이빗 컨테이너 레지스트리를 사용하는 경우, 
+  해당 레지스트리를 위한 명령줄 도구 및 레지스트리 로그인 정보가 필요하다.
 
 <!-- steps -->
 
-## 도커 로그인
+## 도커 허브 로그인
 
 노트북에 프라이빗 이미지를 받아오기 위하여 레지스트리 인증을 필수로 수행해야 한다.
 
+`docker` 도구를 사용하여 도커 허브에 로그인한다. 자세한 정보는 
+[도커 ID 계정](https://docs.docker.com/docker-id/#log-in)의 _로그 인_ 섹션을 참조한다.
+
 ```shell
 docker login
 ```
 
-프롬프트가 나타나면, 도커 사용자 이름(username)과 비밀번호(password)를 입력하자.
+프롬프트가 나타나면, 도커 ID를 입력한 다음, 사용하려는 자격증명(액세스 토큰, 
+또는 도커 ID의 비밀번호)을 입력한다.
 
-로그인 프로세스는 권한 토큰 정보를 가지고 있는 `config.json` 파일을 생성하거나 업데이트 한다.
+로그인 프로세스를 수행하면 권한 토큰 정보를 가지고 있는 `config.json` 파일이 생성되거나 업데이트된다. [쿠버네티스가 이 파일을 어떻게 해석하는지](/ko/docs/concepts/containers/images#config-json) 참고한다.
 
 `config.json` 파일을 확인하자.
 
@@ -52,12 +63,13 @@ cat ~/.docker/config.json
 도커 자격 증명 저장소를 사용하는 경우, `auth` 항목이 아닌, 저장소의 이름을 값으로 사용하는 `credsStore` 항목을 확인할 수 있다.
 {{< /note >}}
 
-## 기존의 도커 자격 증명을 기반으로 시크릿 생성하기 {#registry-secret-existing-credentials}
+## 기존의 자격 증명을 기반으로 시크릿 생성하기 {#registry-secret-existing-credentials}
 
 쿠버네티스 클러스터는 프라이빗 이미지를 받아올 때, 컨테이너 레지스트리에 인증하기 위하여 
 `kubernetes.io/dockerconfigjson` 타입의 시크릿을 사용한다.
 
-만약 이미 `docker login` 을 수행하였다면, 이 때 생성된 자격 증명을 쿠버네티스 클러스터로 복사할 수 있다.
+만약 이미 `docker login` 을 수행하였다면, 
+이 때 생성된 자격 증명을 쿠버네티스 클러스터로 복사할 수 있다.
 
 ```shell
 kubectl create secret generic regcred \
@@ -70,7 +82,7 @@ kubectl create secret generic regcred \
 다음을 확인하자.
 
 - 데이터 항목의 이름을 `.dockerconfigjson` 으로 설정한다
-- 도커 파일을 base64로 인코딩하고 그 문자열을 `data[".dockerconfigjson"]` 
+- 도커 구성 파일을 base64로 인코딩하고 그 문자열을 `data[".dockerconfigjson"]` 
   필드에 자르지 않고 한 줄로 이어서 붙여넣는다
 - `type` 을 `kubernetes.io/dockerconfigjson` 으로 설정한다
 
@@ -102,7 +114,7 @@ kubectl create secret docker-registry regcred --docker-server=<your-registry-ser
 아래의 각 항목에 대한 설명을 참고한다.
 
 * `<your-registry-server>` 은 프라이빗 도커 저장소의 FQDN 주소이다.
-  도커허브(DockerHub)는 `https://index.docker.io/v2/` 를 사용한다.
+  도커허브(DockerHub)는 `https://index.docker.io/v1/` 를 사용한다.
 * `<your-name>` 은 도커 사용자의 계정이다.
 * `<your-pword>` 은 도커 사용자의 비밀번호이다.
 * `<your-email>` 은 도커 사용자의 이메일 주소이다.
@@ -171,14 +183,14 @@ janedoe:xxxxxxxxxxx
 
 ## 시크릿을 사용하는 파드 생성하기
 
-다음은 `regcred` 에 있는 도커 자격 증명에 접근해야 하는 파드의 구성 파일이다.
+다음은 `regcred` 에 있는 도커 자격 증명에 접근해야 하는 예제 파드의 매니페스트이다.
 
 {{< codenew file="pods/private-reg-pod.yaml" >}}
 
-아래의 파일을 다운로드받는다.
+위 파일을 컴퓨터에 다운로드한다.
 
 ```shell
-wget -O my-private-reg-pod.yaml https://k8s.io/examples/pods/private-reg-pod.yaml
+curl -L -O my-private-reg-pod.yaml https://k8s.io/examples/pods/private-reg-pod.yaml
 ```
 
 `my-private-reg-pod.yaml` 파일 안에서, `<your-private-image>` 값을 다음과 같은 프라이빗 저장소 안의 이미지 경로로 변경한다.
@@ -200,9 +212,9 @@ kubectl get pod private-reg
 
 ## {{% heading "whatsnext" %}}
 
-* [시크릿](/ko/docs/concepts/configuration/secret/)에 대해 더 배워 보기.
+* [시크릿](/ko/docs/concepts/configuration/secret/)에 대해 더 배워 보기
+  * 또는 {{< api-reference page="config-and-storage-resources/secret-v1" >}} API 레퍼런스 읽어보기
 * [프라이빗 레지스트리 사용](/ko/docs/concepts/containers/images/#프라이빗-레지스트리-사용)에 대해 더 배워 보기.
 * [서비스 어카운트에 풀 시크릿(pull secret) 추가하기](/docs/tasks/configure-pod-container/configure-service-account/#add-imagepullsecrets-to-a-service-account)에 대해 더 배워 보기.
 * [kubectl create secret docker-registry](/docs/reference/generated/kubectl/kubectl-commands/#-em-secret-docker-registry-em-)에 대해 읽어보기.
-* [시크릿](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#secret-v1-core)에 대해 읽어보기.
-* [PodSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core)의 `imagePullSecrets` 필드에 대해 읽어보기.
+* 파드의 [컨테이너 정의](/docs/reference/kubernetes-api/workload-resources/pod-v1/#containers)의 `imagePullSecrets` 필드에 대해 읽어보기
diff --git a/content/ko/docs/tasks/configure-pod-container/quality-service-pod.md b/content/ko/docs/tasks/configure-pod-container/quality-service-pod.md
index c644a8aff1..b8b2448f04 100644
--- a/content/ko/docs/tasks/configure-pod-container/quality-service-pod.md
+++ b/content/ko/docs/tasks/configure-pod-container/quality-service-pod.md
@@ -107,7 +107,7 @@ kubectl delete pod qos-demo --namespace=qos-example
 다음의 경우 파드에 Burstable QoS 클래스가 부여된다.
 
 * 파드가 Guaranteed QoS 클래스 기준을 만족하지 않는다.
-* 파드 내에서 최소한 하나의 컨테이너가 메모리 또는 CPU 요청량을 가진다.
+* 파드 내에서 최소한 하나의 컨테이너가 메모리 또는 CPU 요청량/상한을 가진다.
 
 컨테이너가 하나인 파드의 구성 파일은 다음과 같다. 컨테이너는
 200MiB의 메모리 상한과 100MiB의 메모리 요청량을 가진다.
diff --git a/content/ko/docs/tasks/configure-pod-container/static-pod.md b/content/ko/docs/tasks/configure-pod-container/static-pod.md
index aea2fcffa1..6eac6f3e20 100644
--- a/content/ko/docs/tasks/configure-pod-container/static-pod.md
+++ b/content/ko/docs/tasks/configure-pod-container/static-pod.md
@@ -31,11 +31,18 @@ API 서버에서 제어될 수는 없다.
 을 사용하는 것이 바람직하다.
 {{< /note >}}
 
+{{< note >}}
+스태틱 파드의 `spec`은 다른 API 오브젝트(예를 들면,
+{{< glossary_tooltip text="서비스어카운트" term_id="service-account" >}},
+{{< glossary_tooltip text="컨피그맵" term_id="configmap" >}},
+{{< glossary_tooltip text="시크릿" term_id="secret" >}}, 등)가 참조할 수 없다.
+{{< /note >}}
+
 ## {{% heading "prerequisites" %}}
 
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
-이 페이지는 파드를 실행하기 위해 {{< glossary_tooltip term_id="docker" >}}를 사용하며,
+이 페이지는 파드를 실행하기 위해 {{< glossary_tooltip term_id="cri-o" >}}를 사용하며,
 노드에서 Fedora 운영 체제를 구동하고 있다고 가정한다.
 다른 배포판이나 쿠버네티스 설치 지침과는 다소 상이할 수 있다.
 
@@ -149,15 +156,20 @@ Kubelet 을 시작하면, 정의된 모든 스태틱 파드가 자동으로 시
 (노드에서) 구동되고 있는 (스태틱 파드를 포함한) 컨테이너들을 볼 수 있다.
 ```shell
 # kubelet 이 동작하고 있는 노드에서 이 명령을 수행한다.
-docker ps
+crictl ps
 ```
 
 결과는 다음과 유사하다.
 
+```console
+CONTAINER       IMAGE                                 CREATED           STATE      NAME    ATTEMPT    POD ID
+129fd7d382018   docker.io/library/nginx@sha256:...    11 minutes ago    Running    web     0          34533c6729106
 ```
-CONTAINER ID IMAGE         COMMAND  CREATED        STATUS         PORTS     NAMES
-f6d05272b57e nginx:latest  "nginx"  8 minutes ago  Up 8 minutes             k8s_web.6f802af4_static-web-fk-node1_default_67e24ed9466ba55986d120c867395f3c_378e5f3c
-```
+
+{{< note >}}
+`crictl`은 이미지 URI와 SHA-256 체크섬을 출력한다. `NAME`은 다음과 같을 것이다.
+`docker.io/library/nginx@sha256:0d17b565c37bcbd895e9d92315a05c1c3c9a29f762b011a10c54a66cd53c9b31`
+{{< /note >}}
 
 API 서버에서 미러 파드를 볼 수 있다.
 
@@ -165,16 +177,14 @@ API 서버에서 미러 파드를 볼 수 있다.
 kubectl get pods
 ```
 ```
-NAME                       READY     STATUS    RESTARTS   AGE
-static-web-my-node1        1/1       Running   0          2m
+NAME         READY   STATUS    RESTARTS        AGE
+static-web   1/1     Running   0               2m
 ```
 
 {{< note >}}
-Kubelet에 API 서버에서 미러 파드를 생성할 수 있는 권한이 있는지 미리 확인해야 한다. 그렇지 않을 경우 API 서버에 의해서 생성 요청이 거부된다.
-[파드시큐리티폴리시(PodSecurityPolicy)](/ko/docs/concepts/policy/pod-security-policy/) 에 대해 보기.
+Kubelet에 API 서버에서 미러 파드를 생성할 수 있는 권한이 있는지 미리 확인해야 한다. 그렇지 않을 경우 API 서버에 의해서 생성 요청이 거부된다. [파드 시큐리티 어드미션](/docs/concepts/security/pod-security-admission/) 및 [파드시큐리티폴리시(PodSecurityPolicy)](/ko/docs/concepts/security/pod-security-policy/)를 확인한다.
 {{< /note >}}
 
-
 스태틱 파드에 있는 {{< glossary_tooltip term_id="label" text="레이블" >}} 은
 미러 파드로 전파된다.  {{< glossary_tooltip term_id="selector" text="셀렉터" >}} 등을
 통하여 이러한 레이블을 사용할 수 있다.
@@ -183,34 +193,33 @@ Kubelet에 API 서버에서 미러 파드를 생성할 수 있는 권한이 있
 kubelet 은 스태틱 파드를 지우지 _않는다._
 
 ```shell
-kubectl delete pod static-web-my-node1
+kubectl delete pod static-web
 ```
 ```
-pod "static-web-my-node1" deleted
+pod "static-web" deleted
 ```
 파드가 여전히 구동 중인 것을 볼 수 있다.
 ```shell
 kubectl get pods
 ```
 ```
-NAME                       READY     STATUS    RESTARTS   AGE
-static-web-my-node1        1/1       Running   0          12s
+NAME         READY   STATUS    RESTARTS   AGE
+static-web   1/1     Running   0          4s
 ```
 
-kubelet 이 구동 중인 노드로 돌아가서 도커 컨테이너를 수동으로
-중지할 수 있다.
+kubelet 이 구동 중인 노드로 돌아가서 컨테이너를 수동으로 중지할 수 있다.
 일정 시간이 지나면, kubelet이 파드를 자동으로 인식하고 다시 시작하는
 것을 볼 수 있다.
 
 ```shell
 # kubelet 이 동작하고 있는 노드에서 이 명령을 수행한다.
-docker stop f6d05272b57e # 예제를 수행하는 사용자의 컨테이너 ID로 변경한다.
+crictl stop 129fd7d382018 # 예제를 수행하는 사용자의 컨테이너 ID로 변경한다.
 sleep 20
-docker ps
+crictl ps
 ```
-```
-CONTAINER ID        IMAGE         COMMAND                CREATED       ...
-5b920cbaf8b1        nginx:latest  "nginx -g 'daemon of   2 seconds ago ...
+```console
+CONTAINER       IMAGE                                 CREATED           STATE      NAME    ATTEMPT    POD ID
+89db4553e1eeb   docker.io/library/nginx@sha256:...    19 seconds ago    Running    web     1          34533c6729106
 ```
 
 ## 스태틱 파드의 동적 추가 및 제거
@@ -223,13 +232,13 @@ CONTAINER ID        IMAGE         COMMAND                CREATED       ...
 #
 mv /etc/kubelet.d/static-web.yaml /tmp
 sleep 20
-docker ps
+crictl ps
 # 구동 중인 nginx 컨테이너가 없는 것을 확인한다.
 mv /tmp/static-web.yaml  /etc/kubelet.d/
 sleep 20
-docker ps
+crictl ps
 ```
-```
-CONTAINER ID        IMAGE         COMMAND                CREATED           ...
-e7a62e3427f1        nginx:latest  "nginx -g 'daemon of   27 seconds ago
+```console
+CONTAINER       IMAGE                                 CREATED           STATE      NAME    ATTEMPT    POD ID
+f427638871c35   docker.io/library/nginx@sha256:...    19 seconds ago    Running    web     1          34533c6729106
 ```
diff --git a/content/ko/docs/tasks/debug-application-cluster/_index.md b/content/ko/docs/tasks/debug-application-cluster/_index.md
deleted file mode 100644
index d0bda0ea0f..0000000000
--- a/content/ko/docs/tasks/debug-application-cluster/_index.md
+++ /dev/null
@@ -1,6 +0,0 @@
----
-title: "모니터링, 로깅, 그리고 디버깅"
-description: 모니터링 및 로깅을 설정하여 클러스터 문제를 해결하거나, 컨테이너화된 애플리케이션을 디버깅한다.
-weight: 80
----
-
diff --git a/content/ko/docs/tasks/debug-application-cluster/debug-pod-replication-controller.md b/content/ko/docs/tasks/debug-application-cluster/debug-pod-replication-controller.md
deleted file mode 100644
index f8696993ff..0000000000
--- a/content/ko/docs/tasks/debug-application-cluster/debug-pod-replication-controller.md
+++ /dev/null
@@ -1,105 +0,0 @@
----
-
-
-title: 파드와 레플리케이션컨트롤러(ReplicationController) 디버그하기
-content_type: task
----
-
-<!-- overview -->
-
-이 페이지에서는 파드와 레플리케이션컨트롤러를 디버깅하는 방법을 소개한다.
-
-## {{% heading "prerequisites" %}}
-
-
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-* 사용자는
-  {{< glossary_tooltip text="파드" term_id="pod" >}} 기본 사항과 파드의  
-  [라이프사이클](/ko/docs/concepts/workloads/pods/pod-lifecycle/)에 대해 잘 알고 있어야 한다.
-
-<!-- steps -->
-
-## 파드 디버깅
-
-파드 디버깅의 첫 번째 단계는 파드를 살펴 보는 것이다. 다음의 명령어를
-사용하여 파드의 현재 상태와 최근 이벤트를 점검한다.
-
-```shell
-kubectl describe pods ${POD_NAME}
-```
-
-파드 내부 컨테이너의 상태를 확인한다. 모두 `Running` 상태인가?
-최근에 재시작 되었는가?
-
-파드의 상태에 따라 디버깅을 계속한다.
-
-### 파드가 pending 상태로 유지
-
-파드가 `Pending` 상태로 멈춰 있는 경우는, 노드에 스케줄 될 수 없음을 의미한다.
-일반적으로 이것은 어떤 유형의 리소스가 부족하거나 스케줄링을 방해하는 다른 요인 때문이다.
-상단의 `kubectl describe ...` 명령의 결과를 확인하자.
-파드를 스케줄 할 수 없는 이유에 대한 스케줄러의 메세지가 있어야 한다.
-이유는 다음과 같다.
-
-#### 부족한 리소스
-
-사용자 클러스터의 CPU 나 Memory의 공급이 소진되었을 수 있다. 이 경우
-몇 가지 방법을 시도할 수 있다.
-
-* 클러스터에 노드를 더 추가하기.
-
-* pending 상태인 파드를 위한 공간을 확보하기 위해
-  [불필요한 파드 종료하기](/ko/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)
-
-* 파드가 노드보다 크지 않은지 확인한다. 예를 들어 모든
-  노드가 `cpu:1` 의 용량을 가지고 있을 경우, `cpu: 1.1` 을 요청하는 파드는
-  절대 스케줄 될 수 없다.
-
-	사용자는 `kubectl get nodes -o <format>` 명령으로 노드의
-	용량을 점검할 수 있다. 다음은 필요한 정보를 추출하는 몇 가지
-	명령의 예이다.
-
-    ```shell
-    kubectl get nodes -o yaml | egrep '\sname:|cpu:|memory:'
-    kubectl get nodes -o json | jq '.items[] | {name: .metadata.name, cap: .status.capacity}'
-    ```
-
-  [리소스 쿼터](/ko/docs/concepts/policy/resource-quotas/)
-  기능은 사용할 수 있는 전체 리소스의 양을 제한하도록 설정할 수 있다.
-  네임스페이스와 함께 사용하면,
-  한 팀이 모든 리소스를 점유하는 것을 방지할 수 있다.
-
-#### hostPort 사용하기
-
-파드를 `hostPort` 에 바인딩 할 때 파드를 스케줄링 할 수 있는
-위치는 제한되어 있다. 대부분의 경우 `hostPort` 는 불필요하다. 서비스 오브젝트를
-사용하여 파드를 노출하도록 한다. `hostPort` 가 필요한 경우
-컨테이너 클러스터에 있는 노드의 수만큼 파드를 스케줄 할 수 있다.
-
-### 파드가 waiting 상태로 유지
-
-파드가 `Waiting` 상태에서 멈춘 경우, 워커 노드에 스케줄 되었지만, 해당 장비에서 사용할 수 없다.
-거듭 강조하지만, `kubectl describe ...` 의 정보는 유익하게 사용되어야 한다.
-`Waiting` 파드의 가장 일반적인 원인은 이미지를 가져오지 못하는 경우이다.
-확인해야 할 3가지 사항이 있다.
-
-* 이미지 이름이 올바른지 확인한다.
-* 이미지를 저장소에 푸시하였는가?
-* 이미지가 풀 될 수 있는지 보기 위해, 사용자의 장비에서 `docker pull <image>` 를 수동으로
-  실행한다.
-
-### 파드가 손상(crashing)되었거나 양호하지 않을(unhealthy) 경우
-
-일단 사용자의 파드가 스케줄 되면, [구동중인 파드 디버그하기](/docs/tasks/debug-application-cluster/debug-running-pod/)에
-기술된 메서드를 디버깅에 사용할 수 있다.
-
-
-## 레플리케이션컨트롤러 디버깅
-
-레플리케이션컨트롤러는 매우 간단하다. 이 오브젝트는 파드를 만들거나
-만들 수 없는 경우뿐이다. 만약 파드를 만들 수 없는 경우,
-[위의 지침](#파드-디버깅)을 참조하여 파드를 디버그한다.
-
-사용자는 `kubectl describe rc ${CONTROLLER_NAME}` 을 사용하여 레플리케이션 컨트롤러와
-관련된 이벤트를 검사할 수도 있다.
diff --git a/content/ko/docs/tasks/debug-application-cluster/resource-metrics-pipeline.md b/content/ko/docs/tasks/debug-application-cluster/resource-metrics-pipeline.md
deleted file mode 100644
index e4bf6a1715..0000000000
--- a/content/ko/docs/tasks/debug-application-cluster/resource-metrics-pipeline.md
+++ /dev/null
@@ -1,64 +0,0 @@
----
-title: 리소스 메트릭 파이프라인
-content_type: concept
----
-
-<!-- overview -->
-
-컨테이너 CPU 및 메모리 사용량과 같은 리소스 사용량 메트릭은
-쿠버네티스의 메트릭 API를 통해 사용할 수 있다. 이 메트릭은
-`kubectl top` 커맨드 사용하여 사용자가 직접적으로 액세스하거나,
-Horizontal Pod Autoscaler 같은 클러스터의 컨트롤러에서 결정을 내릴 때 사용될 수 있다.
-
-<!-- body -->
-
-## 메트릭 API
-
-메트릭 API를 통해, 주어진 노드나 파드에서 현재 사용중인
-리소스의 양을 알 수 있다. 이 API는 메트릭 값을 저장하지
-않으므로, 예를 들어, 지정된 노드에서 10분 전에 사용된 리소스의 양을
-가져오는 것과 같은 일을 할 수는 없다.
-
-이 API와 다른 API는 차이가 없다.
-
-- 다른 쿠버네티스 API의 엔드포인트와 같이 `/apis/metrics.k8s.io/` 하위 경로에서 발견될 수 있다
-- 동일한 보안, 확장성 및 신뢰성 보장을 제공한다
-
-[k8s.io/metrics](https://github.com/kubernetes/metrics/blob/master/pkg/apis/metrics/v1beta1/types.go)
-리포지터리에서 이 API를 정의하고 있다. 여기에서 이 API에 대한 더 상세한 정보를 찾을 수 있다.
-
-{{< note >}}
-이 API를 사용하려면 메트릭 서버를 클러스터에 배포해야 한다. 그렇지 않으면 사용할 수 없다.
-{{< /note >}}
-
-## 리소스 사용량 측정
-
-### CPU
-
-CPU는 일정 기간 동안
-[CPU 코어](/ko/docs/concepts/configuration/manage-resources-containers/#cpu의-의미)에서
-평균 사용량으로 리포트된다. 이 값은 커널(리눅스와 윈도우 커널 모두)에서 제공하는
-누적 CPU 카운터보다 높은 비율을 적용해서 얻는다.
-kubelet은 비율 계산에 사용할 윈도우를 선택한다.
-
-### 메모리
-
-메모리는 메트릭이 수집된 순간 작업 집합으로 리포트 된다.
-이상적인 환경에서 "작업 집합(working set)"은 압박(memory pressure)에서 풀려날 수 없는 사용 중인(in-use) 메모리의 양이다.
-그러나 작업 집합의 계산은 호스트 OS에 따라 다르며, 일반적으로 휴리스틱스를 사용해서 평가한다.
-쿠버네티스는 스왑(swap)을 지원하지 않기 때문에 모든 익명(파일로 백업되지 않은) 메모리를 포함한다.
-호스트 OS가 항상 이러한 페이지를 회수할 수 없기 때문에 메트릭에는 일반적으로 일부 캐시된(파일 백업) 메모리도 포함된다.
-
-## 메트릭 서버
-
-[메트릭 서버](https://github.com/kubernetes-sigs/metrics-server)는 클러스터 전역에서 리소스 사용량 데이터를 집계한다.
-`kube-up.sh` 스크립트에 의해 생성된 클러스터에는 기본적으로 메트릭 서버가
-디플로이먼트 오브젝트로 배포된다. 만약 다른 쿠버네티스 설치 메커니즘을 사용한다면, 제공된
-[디플로이먼트 components.yaml](https://github.com/kubernetes-sigs/metrics-server/releases) 파일을 사용하여 메트릭 서버를 배포할 수 있다.
-
-메트릭 서버는 각 노드에서 [Kubelet](/docs/reference/command-line-tools-reference/kubelet/)에 의해
-노출된 Summary API에서 메트릭을 수집하고, [쿠버네티스 aggregator](/ko/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)를
-통해 메인 API 서버에 등록된다.
-
-[설계 문서](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/instrumentation/metrics-server.md)에서
-메트릭 서버에 대해 자세하게 배울 수 있다.
diff --git a/content/ko/docs/tasks/debug/_index.md b/content/ko/docs/tasks/debug/_index.md
new file mode 100644
index 0000000000..43972f2bac
--- /dev/null
+++ b/content/ko/docs/tasks/debug/_index.md
@@ -0,0 +1,108 @@
+---
+title: "모니터링, 로깅, 및 디버깅"
+description: 클러스터를 트러블슈팅할 수 있도록 모니터링과 로깅을 설정하거나, 컨테이너화된 애플리케이션을 디버깅한다.
+weight: 20
+
+
+
+content_type: concept
+no_list: true
+---
+
+<!-- overview -->
+
+때때로 문제가 발생할 수 있다. 이 가이드는 이러한 상황을 해결하기 위해 작성되었다. 문제 해결에는
+다음 두 가지를 참고해 볼 수 있다.
+
+* [애플리케이션 디버깅하기](/ko/docs/tasks/debug/debug-application/) - 쿠버네티스에
+  코드를 배포하였지만 제대로 동작하지 않는 사용자들에게 유용한 가이드이다.
+* [클러스터 디버깅하기](/ko/docs/tasks/debug/debug-cluster/) - 쿠버네티스 클러스터에
+  문제를 겪고 있는 클러스터 관리자 혹은 기분이 나쁜 사람들에게 유용한 가이드이다.
+
+여러분이 현재 사용중인 릴리스에 대한 알려진 이슈들을 다음의 [릴리스](https://github.com/kubernetes/kubernetes/releases)
+페이지에서 확인해 볼 수도 있다.
+
+<!-- body -->
+
+## 도움 받기
+
+여러분의 문제가 위에 소개된 어떠한 가이드로도 해결할 수 없다면, 
+쿠버네티스 커뮤니티로부터 도움을 받을 수 있는 다양한 방법들을 시도해 볼 수 있다.
+
+### 질문
+
+이 사이트의 문서들은 다양한 질문들에 대한 답변을 제공할 수 있도록 구성되어 있다. 
+[개념](/ko/docs/concepts/)은 쿠버네티스의 아키텍처와 각 컴포넌트들이 어떻게 동작하는지에 대해 설명하고, 
+[시작하기](/ko/docs/setup/)는 쿠버네티스를 시작하는 데 유용한 지침들을 제공한다. 
+[태스크](/ko/docs/tasks/)는 흔히 사용되는 작업들을 수행하는 방법에 대해 소개하고, 
+[튜토리얼](/ko/docs/tutorials/)은 실무, 산업 특화 혹은 종단간 개발에 특화된 시나리오를 통해 차근차근 설명한다. 
+[레퍼런스](/ko/docs/reference/) 섹션에서는 
+[쿠버네티스 API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)와 
+[`kubectl`](/ko/docs/reference/kubectl/)과 같은 커맨드 라인 인터페이스(CLI)에 대한 
+상세한 설명을 다룬다.
+
+## 도와주세요! 내 질문이 다뤄지지 않았어요! 도움이 필요해요!
+
+### 스택 오버플로우
+
+여러분들이 겪고 있는 문제와 동일한 문제에 대한 도움을 위해 커뮤니티의 다른 사람들이 이미
+질문을 올렸을 수 있다. 쿠버네티스 팀은
+[쿠버네티스 태그가 등록된 글](https://stackoverflow.com/questions/tagged/kubernetes)들을 모니터링하고 있다.
+발생한 문제에 도움이 되는 기존 질문이 없다면,
+**[해당 질문이 스택 오버플로우에 적합한지](https://stackoverflow.com/help/on-topic)와 [새로운 질문을 올리는 방법](https://stackoverflow.com/help/how-to-ask)에 대한 가이드를 읽은 뒤에** 
+[새로운 질문](https://stackoverflow.com/questions/ask?tags=kubernetes)을 올리자!
+
+### 슬랙
+
+쿠버네티스 슬랙의 `#kubernetes-users` 채널을 통해 쿠버네티스 커뮤니티의 여러 사람들을 접할 수도 있다.
+쿠버네티스 슬랙을 사용하기 위해서는 등록이 필요한데, 다음을 통해 [채널 초대 요청](https://slack.kubernetes.io)을 할 수 있다.
+(누구나 가입할 수 있다). 슬랙 채널은 여러분이 어떠한 질문을 할 수 있도록 언제나 열려있다.
+가입하고 나면 여러분의 웹 브라우저나 슬랙 앱을 통해 [쿠버네티스 슬랙](https://kubernetes.slack.com)
+에 참여할 수 있다.
+
+쿠버네티스 슬랙에 참여하게 된다면, 다양한 주제의 흥미와 관련된 여러 채널들에 대해
+살펴본다. 가령, 쿠버네티스를 처음 접하는 사람이라면 
+[`#kubernetes-novice`](https://kubernetes.slack.com/messages/kubernetes-novice) 채널에 가입할 수 있다. 혹은, 만약 당신이 개발자라면
+[`#kubernetes-dev`](https://kubernetes.slack.com/messages/kubernetes-dev) 채널에 가입할 수 있다.
+
+또한 각 국가 및 사용 언어별 채널들이 여럿 존재한다. 사용하는 언어로 도움을 받거나 정보를
+얻기 위해서는 다음의 채널에 참가한다.
+
+{{< table caption="국가 / 언어별 슬랙 채널" >}}
+국가 | 채널
+:---------|:------------
+China(중국) | [`#cn-users`](https://kubernetes.slack.com/messages/cn-users), [`#cn-events`](https://kubernetes.slack.com/messages/cn-events)
+Finland(핀란드) | [`#fi-users`](https://kubernetes.slack.com/messages/fi-users)
+France(프랑스) | [`#fr-users`](https://kubernetes.slack.com/messages/fr-users), [`#fr-events`](https://kubernetes.slack.com/messages/fr-events)
+Germany(독일) | [`#de-users`](https://kubernetes.slack.com/messages/de-users), [`#de-events`](https://kubernetes.slack.com/messages/de-events)
+India(인도) | [`#in-users`](https://kubernetes.slack.com/messages/in-users), [`#in-events`](https://kubernetes.slack.com/messages/in-events)
+Italy(이탈리아) | [`#it-users`](https://kubernetes.slack.com/messages/it-users), [`#it-events`](https://kubernetes.slack.com/messages/it-events)
+Japan(일본) | [`#jp-users`](https://kubernetes.slack.com/messages/jp-users), [`#jp-events`](https://kubernetes.slack.com/messages/jp-events)
+Korea(한국) | [`#kr-users`](https://kubernetes.slack.com/messages/kr-users)
+Netherlands(네덜란드) | [`#nl-users`](https://kubernetes.slack.com/messages/nl-users)
+Norway(노르웨이) | [`#norw-users`](https://kubernetes.slack.com/messages/norw-users)
+Poland(폴란드) | [`#pl-users`](https://kubernetes.slack.com/messages/pl-users)
+Russia(러시아) | [`#ru-users`](https://kubernetes.slack.com/messages/ru-users)
+Spain(스페인) | [`#es-users`](https://kubernetes.slack.com/messages/es-users)
+Sweden(스웨덴) | [`#se-users`](https://kubernetes.slack.com/messages/se-users)
+Turkey(터키) | [`#tr-users`](https://kubernetes.slack.com/messages/tr-users), [`#tr-events`](https://kubernetes.slack.com/messages/tr-events)
+{{< /table >}}
+
+### 포럼
+
+공식 쿠버네티스 포럼에 참여하는 것도 추천되는 방법이다. [discuss.kubernetes.io](https://discuss.kubernetes.io).
+
+### 버그와 기능 추가 요청
+
+만약 여러분이 버그처럼 보이는 것을 발견했거나, 기능 추가 요청을 하기 위해서는
+[GitHub 이슈 트래킹 시스템](https://github.com/kubernetes/kubernetes/issues)을 사용한다.
+
+이슈를 작성하기 전에는, 여러분의 이슈가 기존 이슈에서 이미 
+다뤄졌는지 검색해 본다.
+
+버그를 보고하는 경우에는, 해당 문제를 어떻게 재현할 수 있는지에 관련된 상세한 정보를 포함한다.
+포함되어야 하는 정보들은 다음과 같다.
+
+* 쿠버네티스 버전: `kubectl version`
+* 클라우드 프로바이더, OS 배포판, 네트워크 구성, 및 도커 버전
+* 문제를 재현하기 위한 절차
diff --git a/content/ko/docs/tasks/debug/debug-application/_index.md b/content/ko/docs/tasks/debug/debug-application/_index.md
new file mode 100644
index 0000000000..6208a08166
--- /dev/null
+++ b/content/ko/docs/tasks/debug/debug-application/_index.md
@@ -0,0 +1,7 @@
+---
+title: "애플리케이션 트러블슈팅하기"
+description: 일반적인 컨테이너화된 애플리케이션 이슈를 디버깅한다.
+weight: 20
+---
+
+이 문서는 컨테이너화된 애플리케이션의 이슈를 해결하기 위한 자원을 담고 있다. 쿠버네티스 리소스(예: 파드, 서비스, 스테이트풀셋)의 일반적 이슈, 컨테이너 종료 메시지 이해에 대한 조언, 실행 중인 컨테이너를 디버그하는 방법 등을 다룬다.
diff --git a/content/ko/docs/tasks/debug-application-cluster/debug-init-containers.md b/content/ko/docs/tasks/debug/debug-application/debug-init-containers.md
similarity index 99%
rename from content/ko/docs/tasks/debug-application-cluster/debug-init-containers.md
rename to content/ko/docs/tasks/debug/debug-application/debug-init-containers.md
index a831f5d267..3e4dd6aec6 100644
--- a/content/ko/docs/tasks/debug-application-cluster/debug-init-containers.md
+++ b/content/ko/docs/tasks/debug/debug-application/debug-init-containers.md
@@ -1,6 +1,15 @@
 ---
+
+
+
+
+
+
+
+
 title: 초기화 컨테이너(Init Containers) 디버그하기
 content_type: task
+weight: 40
 ---
 
 <!-- overview -->
diff --git a/content/ko/docs/tasks/debug/debug-application/debug-pods.md b/content/ko/docs/tasks/debug/debug-application/debug-pods.md
new file mode 100644
index 0000000000..c575663a05
--- /dev/null
+++ b/content/ko/docs/tasks/debug/debug-application/debug-pods.md
@@ -0,0 +1,159 @@
+---
+
+
+
+title: 파드 디버깅하기
+content_type: task
+weight: 10
+---
+
+<!-- overview -->
+
+이 가이드는 쿠버네티스에 배포되었지만 제대로 동작하지 않는 애플리케이션을 디버깅하는 방법을 소개한다. 
+이 가이드는 클러스터 디버깅에 대한 것은 아니다. 
+클러스터 디버깅에 대해서는 [이 가이드](/ko/docs/tasks/debug/debug-cluster/)를 참고한다.
+
+<!-- body -->
+
+## 문제 진단하기
+
+트러블슈팅의 첫 단계는 문제를 파악하는 것이다. 
+무엇이 문제인가? 파드인가, 레플리케이션 컨트롤러인가, 서비스인가?
+
+   * [파드 디버깅하기](#debugging-pods)
+   * [레플리케이션컨트롤러 디버깅하기](#debugging-replication-controllers)
+   * [서비스 디버깅하기](#debugging-services)
+
+### 파드 디버깅하기 {#debugging-pods}
+
+파드 디버깅의 첫 번째 단계는 파드를 살펴 보는 것이다. 다음의 명령어를 사용하여 파드의 현재 상태와 최근 이벤트를 점검한다.
+
+```shell
+kubectl describe pods ${POD_NAME}
+```
+
+파드 내부 컨테이너의 상태를 확인한다. 모두 `Running` 상태인가? 최근에 재시작 되었는가?
+
+파드의 상태에 따라 디버깅을 계속한다.
+
+#### 파드가 계속 pending 상태인 경우
+
+파드가 `Pending` 상태로 멈춰 있는 경우는, 노드에 스케줄 될 수 없음을 의미한다.
+일반적으로 이것은 어떤 유형의 리소스가 부족하거나 스케줄링을 방해하는 다른 요인 때문이다.
+상단의 `kubectl describe ...` 명령의 결과를 확인하자.
+파드를 스케줄 할 수 없는 사유에 대한 스케줄러의 메세지가 있을 것이다. 다음과 같은 사유가 있을 수 있다.
+
+* **리소스가 부족한 경우**: 사용자 클러스터의 CPU 나 메모리가 고갈되었을 수 있다. 
+이러한 경우, 파드를 삭제하거나, 리소스 요청을 조정하거나, 클러스터에 노드를 추가해야 한다. 
+[컴퓨트 자원 문서](/ko/docs/concepts/configuration/manage-resources-containers/)에서 더 많은 정보를 확인한다.
+
+* **`hostPort`를 사용하고 있는 경우**: 파드를 `hostPort`에 바인딩할 때, 파드가 스케줄링될 수 있는 장소 수 제한이 존재한다. 
+대부분의 경우 `hostPort`는 불필요하므로, 파드를 노출하기 위해서는 서비스(Service) 오브젝트 사용을 고려해 본다. 
+`hostPort`가 꼭 필요하다면 클러스터의 노드 수 만큼만 파드를 스케줄링할 수 있다.
+
+
+#### 파드가 계속 waiting 상태인 경우
+
+파드가 `Waiting` 상태에서 멈춘 경우는, 파드가 워커 노드에 스케줄링되었지만 해당 노드에서 실행될 수 없음을 의미한다.
+다시 말하지만, `kubectl describe ...` 명령은 유용한 정보를 제공한다. 파드가 `Waiting` 상태에서 멈추는 가장 흔한 원인은 이미지 풀링(pulling)에 실패했기 때문이다. 다음의 3가지 사항을 확인한다.
+
+* 이미지 이름이 올바른지 확인한다.
+* 해당 이미지를 저장소에 푸시하였는가?
+* 이미지가 풀 될 수 있는지 확인하기 위해 수동으로 이미지를 풀 해본다. 
+  예를 들어, PC에서 도커를 사용하는 경우, `docker pull <image>` 명령을 실행한다.
+
+#### 파드가 손상(crashing)되었거나 양호하지 않을(unhealthy) 경우
+
+일단 사용자의 파드가 스케줄 되면, [구동중인 파드 디버그하기](/ko/docs/tasks/debug/debug-application/debug-running-pod/)에
+있는 방법을 사용하여 디버깅을 할 수 있다.
+
+#### 파드가 running 상태이지만 해야 할 일을 하고 있지 않은 경우
+
+파드가 예상과 다르게 동작 중이라면, 파드 상세(예: 로컬 머신에 있는 `mypod.yaml` 파일)에 에러가 있었는데 
+파드 생성 시에 에러가 조용히 지나쳐진 경우일 수 있다. 
+종종 파드 상세의 들여쓰기가 잘못되었거나, 
+키 이름에 오타가 있어서 해당 키가 무시되는 일이 있을 수 있다. 
+예를 들어, `command`를 `commnd`로 잘못 기재했다면 
+해당 파드는 생성은 되지만 명시한 명령줄을 실행하지 않을 것이다.
+
+가장 먼저 해야 할 일은 파드를 삭제한 다음, `--validate` 옵션을 사용하여 다시 만들어 보는 것이다.
+예를 들어, `kubectl apply --validate -f mypod.yaml` 를 실행한다.
+`command`를 `commnd`로 잘못 기재했다면 다음과 같은 에러가 발생할 것이다.
+
+```shell
+I0805 10:43:25.129850   46757 schema.go:126] unknown field: commnd
+I0805 10:43:25.129973   46757 schema.go:129] this may be a false alarm, see https://github.com/kubernetes/kubernetes/issues/6842
+pods/mypod
+```
+
+<!-- TODO: Now that #11914 is merged, this advice may need to be updated -->
+
+다음으로 확인할 것은 apiserver를 통해 확인한 파드 상세가 
+사용자가 의도한 파드 상세(예: 로컬 머신에 있는 yaml 파일)와 일치하는지 여부이다.
+예를 들어, `kubectl get pods/mypod -o yaml > mypod-on-apiserver.yaml` 를 실행한 다음, 
+원본 파드 상세(`mypod.yaml`)와 apiserver를 통해 확인한 파드 상세(`mypod-on-apiserver.yaml`)를 수동으로 비교한다. 
+보통 원본 버전에는 없지만 "apiserver" 버전에는 있는 줄들이 존재한다. 
+이는 예상대로이다. 
+하지만, 원본 버전에는 있지만 "apiserver" 버전에는 없는 줄들이 있다면, 
+이는 원본 파드 상세에 문제가 있을 수도 있음을 의미한다.
+
+## 레플리케이션컨트롤러 디버깅하기 {#debugging-replication-controllers}
+
+레플리케이션컨트롤러의 경우에는 매우 직관적이다. 파드 생성이 가능하거나 또는 불가능한 경우 둘 뿐이다. 
+레플리케이션컨트롤러가 파드를 생성할 수 없다면, [위의 지침](#debugging-pods)을 참고하여 파드를 디버깅한다.
+
+사용자는 `kubectl describe rc ${CONTROLLER_NAME}` 을 사용하여 
+레플리케이션 컨트롤러와 관련된 이벤트를 검사할 수도 있다.
+
+### 서비스 디버깅하기 {#debugging-services}
+
+서비스는 파드 집합에 대한 로드 밸런싱 기능을 제공한다. 일반적인 몇몇 문제들 때문에 서비스가 제대로 동작하지 않을 수 있다. 
+다음 지침을 이용하여 서비스 문제를 디버깅할 수 있다.
+
+먼저, 서비스를 위한 엔드포인트가 존재하는지 확인한다. 모든 서비스 오브젝트에 대해, apiserver는 `endpoints` 리소스를 생성하고 사용 가능한(available) 상태로 만든다.
+
+다음 명령을 사용하여 이 리소스를 볼 수 있다.
+
+```shell
+kubectl get endpoints ${SERVICE_NAME}
+```
+
+엔드포인트의 수가 해당 서비스에 속하는 파드의 수와 일치하는지 확인한다.
+예를 들어, 서비스가 레플리카 3개인 nginx 컨테이너를 위한 것이라면, 
+서비스의 엔드포인트 항목에서 서로 다른 3개의 IP 주소가 확인되어야 한다.
+
+#### 서비스에 엔드포인트가 없는 경우
+
+엔드포인트가 없는 상태라면, 서비스가 사용 중인 레이블을 이용하여 파드 목록을 조회해 본다. 
+다음과 같은 레이블을 갖는 서비스를 가정한다.
+
+```yaml
+...
+spec:
+  - selector:
+     name: nginx
+     type: frontend
+```
+
+다음의 명령을 사용하여,
+
+```shell
+kubectl get pods --selector=name=nginx,type=frontend
+```
+
+이 셀렉터에 매치되는 파드 목록을 조회할 수 있다. 서비스에 속할 것으로 예상하는 파드가 모두 조회 결과에 있는지 확인한다. 
+파드의 `containerPort`가 서비스의 `targetPort`와 일치하는지 확인한다.
+
+#### 네트워크 트래픽이 포워드되지 않는 경우
+
+[서비스 디버깅하기](/docs/tasks/debug/debug-application/debug-service/)에서 더 많은 정보를 확인한다.
+
+## {{% heading "whatsnext" %}}
+
+위의 방법 중 어떤 것으로도 문제가 해결되지 않는다면, 
+[서비스 디버깅하기 문서](/docs/tasks/debug/debug-application/debug-service/)를 참조하여 
+`서비스`가 실행 중인지, 서비스에 `엔드포인트`가 있는지, `파드`가 실제로 서빙 중인지 확인한다. 
+예를 들어, DNS가 실행 중이고, iptables 규칙이 설정되어 있고, kube-proxy가 정상적으로 동작하는 것으로 보이는 상황이라면, 
+위와 같은 사항을 확인해 볼 수 있다.
+
+[트러블슈팅 문서](/ko/docs/tasks/debug/)에서 더 많은 정보를 볼 수도 있다.
diff --git a/content/ko/docs/tasks/debug/debug-application/debug-running-pod.md b/content/ko/docs/tasks/debug/debug-application/debug-running-pod.md
new file mode 100644
index 0000000000..a31c83f82a
--- /dev/null
+++ b/content/ko/docs/tasks/debug/debug-application/debug-running-pod.md
@@ -0,0 +1,638 @@
+---
+
+
+
+title: 동작 중인 파드 디버그
+content_type: task
+---
+
+<!-- overview -->
+
+이 페이지는 노드에서 동작 중인(혹은 크래시된) 파드를 디버그하는 방법에 대해 설명한다.
+
+
+## {{% heading "prerequisites" %}}
+
+
+* 여러분의 {{< glossary_tooltip text="파드" term_id="pod" >}}는 이미 스케줄링 되어
+  동작하고 있을 것이다. 만약 파드가 아직 동작중이지 않다면, [애플리케이션
+  트러블슈팅](/ko/docs/tasks/debug/debug-application/)을 참고한다.
+* 일부 고급 디버깅 과정에서는 해당 파드가 어떤 노드에서 동작하고 있는지
+  알아야 하고, 해당 노드에서 쉘 명령어를 실행시킬 수 있어야 한다.
+  `kubectl`을 사용하는 일반적인 디버깅 과정에서는 이러한 접근 권한이 필요하지 않다.
+
+## `kubectl describe pod` 명령으로 파드 상세사항 가져오기
+
+이 예제에서는 앞의 예제와 비슷하게 두 개의 파드를 생성하기 위해 디플로이먼트를 사용할 것이다.
+
+{{< codenew file="application/nginx-with-request.yaml" >}}
+
+다음 명령을 실행하여 디플로이먼트를 생성한다.
+
+```shell
+kubectl apply -f https://k8s.io/examples/application/nginx-with-request.yaml
+```
+
+```none
+deployment.apps/nginx-deployment created
+```
+
+다음 명령을 실행하여 파드 상태를 확인한다.
+
+```shell
+kubectl get pods
+```
+
+```none
+NAME                                READY   STATUS    RESTARTS   AGE
+nginx-deployment-67d4bdd6f5-cx2nz   1/1     Running   0          13s
+nginx-deployment-67d4bdd6f5-w6kd7   1/1     Running   0          13s
+```
+
+다음과 같이 `kubectl describe pod` 명령을 사용하여 각 파드에 대한 더 많은 정보를 가져올 수 있다.
+
+```shell
+kubectl describe pod nginx-deployment-67d4bdd6f5-w6kd7
+```
+
+```none
+Name:         nginx-deployment-67d4bdd6f5-w6kd7
+Namespace:    default
+Priority:     0
+Node:         kube-worker-1/192.168.0.113
+Start Time:   Thu, 17 Feb 2022 16:51:01 -0500
+Labels:       app=nginx
+              pod-template-hash=67d4bdd6f5
+Annotations:  <none>
+Status:       Running
+IP:           10.88.0.3
+IPs:
+  IP:           10.88.0.3
+  IP:           2001:db8::1
+Controlled By:  ReplicaSet/nginx-deployment-67d4bdd6f5
+Containers:
+  nginx:
+    Container ID:   containerd://5403af59a2b46ee5a23fb0ae4b1e077f7ca5c5fb7af16e1ab21c00e0e616462a
+    Image:          nginx
+    Image ID:       docker.io/library/nginx@sha256:2834dc507516af02784808c5f48b7cbe38b8ed5d0f4837f16e78d00deb7e7767
+    Port:           80/TCP
+    Host Port:      0/TCP
+    State:          Running
+      Started:      Thu, 17 Feb 2022 16:51:05 -0500
+    Ready:          True
+    Restart Count:  0
+    Limits:
+      cpu:     500m
+      memory:  128Mi
+    Requests:
+      cpu:        500m
+      memory:     128Mi
+    Environment:  <none>
+    Mounts:
+      /var/run/secrets/kubernetes.io/serviceaccount from kube-api-access-bgsgp (ro)
+Conditions:
+  Type              Status
+  Initialized       True 
+  Ready             True 
+  ContainersReady   True 
+  PodScheduled      True 
+Volumes:
+  kube-api-access-bgsgp:
+    Type:                    Projected (a volume that contains injected data from multiple sources)
+    TokenExpirationSeconds:  3607
+    ConfigMapName:           kube-root-ca.crt
+    ConfigMapOptional:       <nil>
+    DownwardAPI:             true
+QoS Class:                   Guaranteed
+Node-Selectors:              <none>
+Tolerations:                 node.kubernetes.io/not-ready:NoExecute op=Exists for 300s
+                             node.kubernetes.io/unreachable:NoExecute op=Exists for 300s
+Events:
+  Type    Reason     Age   From               Message
+  ----    ------     ----  ----               -------
+  Normal  Scheduled  34s   default-scheduler  Successfully assigned default/nginx-deployment-67d4bdd6f5-w6kd7 to kube-worker-1
+  Normal  Pulling    31s   kubelet            Pulling image "nginx"
+  Normal  Pulled     30s   kubelet            Successfully pulled image "nginx" in 1.146417389s
+  Normal  Created    30s   kubelet            Created container nginx
+  Normal  Started    30s   kubelet            Started container nginx
+```
+
+위 예시에서 컨테이너와 파드에 대한 구성 정보(레이블, 리소스 요구사항 등) 및 상태 정보(상태(state), 준비성(readiness), 재시작 횟수, 이벤트 등)를 볼 수 있다.
+
+컨테이너의 상태(state)값은 Waiting, Running, 또는 Terminated 중 하나이다. 각 상태에 따라, 추가 정보가 제공될 것이다. 위 예시에서 Running 상태의 컨테이너에 대해서는 컨테이너의 시작 시각을 시스템이 표시해 주는 것을 볼 수 있다.
+
+Ready 값은 컨테이너의 마지막 준비성 프로브(readiness probe) 통과 여부를 알려 준다. (위 예시에서는 컨테이너에 준비성 프로브가 설정되어 있지 않다. 컨테이너에 준비성 프로브가 설정되어 있지 않으면, 컨테이너는 준비(ready) 상태로 간주된다.)
+
+'재시작 카운트'는 컨테이너가 재시작된 횟수를 보여 준다. 이 정보는 재시작 정책이 'always'로 설정된 컨테이너의 반복적인 강제 종료를 알아차리는 데에 유용하다.
+
+위 예시에서 파드와 연관된 유일한 컨디션(Condition)은 True 또는 False 값을 갖는 Ready 컨디션이며, 이 값이 True라는 것은 파드가 요청을 처리할 수 있으며 모든 동일한 서비스를 묶는 로드 밸런싱 풀에 추가되어야 함을 의미한다.
+
+마지막으로, 파드와 관련된 최근 이벤트 로그가 표시된다. 시스템은 동일한 여러 이벤트를 처음/마지막 발생 시간 및 발생 횟수만 압축적으로 표시한다. "From"은 이벤트 로그를 발생하는 구성 요소를 가리키고, "SubobjectPath"는 참조되는 개체(예: 파드 내 컨테이너)를 나타내며, "Reason" 및 "Message"는 발생한 상황을 알려 준다.
+
+
+## 예시: Pending 상태의 파드 디버깅하기
+
+이벤트를 사용하여 감지할 수 있는 일반적인 시나리오는 노드에 할당될 수 없는 파드를 생성하는 경우이다. 예를 들어 파드가 노드에 사용 가능한 리소스보다 더 많은 리소스를 요청하거나, 또는 어떤 노드에도 해당되지 않는 레이블 셀렉터를 명시했을 수 있다. 예를 들어 4개 노드로 구성되며 각 (가상) 머신에 1 CPU가 있는 클러스터가 있는 상황에서, 위 예시 대신 2 레플리카가 아니라 5 레플리카를, 500 밀리코어가 아니라 600 밀리코어를 요청하는 디플로이먼트를 배포했다고 해 보자. 이러한 경우 5개의 파드 중 하나는 스케줄링될 수 없을 것이다. (각 노드에는 fluentd, skydns 등의 클러스터 애드온도 실행되고 있으므로, 만약 1000 밀리코어를 요청했다면 파드가 하나도 스케줄될 수 없었을 것이다.)
+
+```shell
+kubectl get pods
+```
+
+```none
+NAME                                READY     STATUS    RESTARTS   AGE
+nginx-deployment-1006230814-6winp   1/1       Running   0          7m
+nginx-deployment-1006230814-fmgu3   1/1       Running   0          7m
+nginx-deployment-1370807587-6ekbw   1/1       Running   0          1m
+nginx-deployment-1370807587-fg172   0/1       Pending   0          1m
+nginx-deployment-1370807587-fz9sd   0/1       Pending   0          1m
+```
+
+nginx-deployment-1370807587-fz9sd 파드가 왜 실행되지 않는지를 알아 보려면, pending 상태의 파드에 대해 `kubectl describe pod` 명령을 실행하고 이벤트(event) 항목을 확인해 볼 수 있다.
+
+```shell
+kubectl describe pod nginx-deployment-1370807587-fz9sd
+```
+
+```none
+  Name:		nginx-deployment-1370807587-fz9sd
+  Namespace:	default
+  Node:		/
+  Labels:		app=nginx,pod-template-hash=1370807587
+  Status:		Pending
+  IP:
+  Controllers:	ReplicaSet/nginx-deployment-1370807587
+  Containers:
+    nginx:
+      Image:	nginx
+      Port:	80/TCP
+      QoS Tier:
+        memory:	Guaranteed
+        cpu:	Guaranteed
+      Limits:
+        cpu:	1
+        memory:	128Mi
+      Requests:
+        cpu:	1
+        memory:	128Mi
+      Environment Variables:
+  Volumes:
+    default-token-4bcbi:
+      Type:	Secret (a volume populated by a Secret)
+      SecretName:	default-token-4bcbi
+  Events:
+    FirstSeen	LastSeen	Count	From			        SubobjectPath	Type		Reason			    Message
+    ---------	--------	-----	----			        -------------	--------	------			    -------
+    1m		    48s		    7	    {default-scheduler }			        Warning		FailedScheduling	pod (nginx-deployment-1370807587-fz9sd) failed to fit in any node
+  fit failure on node (kubernetes-node-6ta5): Node didn't have enough resource: CPU, requested: 1000, used: 1420, capacity: 2000
+  fit failure on node (kubernetes-node-wul5): Node didn't have enough resource: CPU, requested: 1000, used: 1100, capacity: 2000
+```
+
+여기서 스케줄러가 기록한 이벤트를 통해, 파드가 `FailedScheduling` 사유로 인해 스케줄링되지 않았음을 알 수 있다(다른 이유도 있을 수 있음). 이 메시지를 통해 어떤 노드에도 이 파드를 실행하기 위한 충분한 리소스가 없었음을 알 수 있다.
+
+이 상황을 바로잡으려면, `kubectl scale` 명령으로 디플로이먼트의 레플리카를 4 이하로 줄일 수 있다. (또는 한 파드를 pending 상태로 두어도 되며, 이렇게 해도 문제는 없다.)
+
+`kubectl describe pod` 출력의 마지막에 있는 것과 같은 이벤트는 etcd에 기록되어 보존되며 클러스터에 어떤 일이 일어나고 있는지에 대한 높은 차원의 정보를 제공한다. 모든 이벤트의 목록을 보려면 다음 명령을 실행한다.
+
+```shell
+kubectl get events
+```
+
+그런데 이벤트는 네임스페이스 스코프 객체라는 것을 기억해야 한다. 즉 네임스페이스 스코프 객체에 대한 이벤트(예: `my-namespace` 네임스페이스의 파드에 어떤 일이 발생했는지)가 궁금하다면, 다음과 같이 커맨드에 네임스페이스를 명시해야 한다.
+
+```shell
+kubectl get events --namespace=my-namespace
+```
+
+모든 네임스페이스에 대한 이벤트를 보려면, `--all-namespaces` 인자를 사용할 수 있다.
+
+`kubectl describe pod` 명령 외에도, `kubectl get pod` 이상의 정보를 얻는 다른 방법은 `kubectl get pod` 명령에 출력 형식 플래그 `-o yaml` 인자를 추가하는 것이다. 이렇게 하면 `kubectl describe pod` 명령보다 더 많은 정보, 원천적으로는 시스템이 파드에 대해 알고 있는 모든 정보를 YAML 형식으로 볼 수 있다. 여기서 어노테이션(레이블 제한이 없는 키-밸류 메타데이터이며, 쿠버네티스 시스템 구성 요소가 내부적으로 사용함), 재시작 정책, 포트, 볼륨과 같은 정보를 볼 수 있을 것이다.
+
+```shell
+kubectl get pod nginx-deployment-1006230814-6winp -o yaml
+```
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  creationTimestamp: "2022-02-17T21:51:01Z"
+  generateName: nginx-deployment-67d4bdd6f5-
+  labels:
+    app: nginx
+    pod-template-hash: 67d4bdd6f5
+  name: nginx-deployment-67d4bdd6f5-w6kd7
+  namespace: default
+  ownerReferences:
+  - apiVersion: apps/v1
+    blockOwnerDeletion: true
+    controller: true
+    kind: ReplicaSet
+    name: nginx-deployment-67d4bdd6f5
+    uid: 7d41dfd4-84c0-4be4-88ab-cedbe626ad82
+  resourceVersion: "1364"
+  uid: a6501da1-0447-4262-98eb-c03d4002222e
+spec:
+  containers:
+  - image: nginx
+    imagePullPolicy: Always
+    name: nginx
+    ports:
+    - containerPort: 80
+      protocol: TCP
+    resources:
+      limits:
+        cpu: 500m
+        memory: 128Mi
+      requests:
+        cpu: 500m
+        memory: 128Mi
+    terminationMessagePath: /dev/termination-log
+    terminationMessagePolicy: File
+    volumeMounts:
+    - mountPath: /var/run/secrets/kubernetes.io/serviceaccount
+      name: kube-api-access-bgsgp
+      readOnly: true
+  dnsPolicy: ClusterFirst
+  enableServiceLinks: true
+  nodeName: kube-worker-1
+  preemptionPolicy: PreemptLowerPriority
+  priority: 0
+  restartPolicy: Always
+  schedulerName: default-scheduler
+  securityContext: {}
+  serviceAccount: default
+  serviceAccountName: default
+  terminationGracePeriodSeconds: 30
+  tolerations:
+  - effect: NoExecute
+    key: node.kubernetes.io/not-ready
+    operator: Exists
+    tolerationSeconds: 300
+  - effect: NoExecute
+    key: node.kubernetes.io/unreachable
+    operator: Exists
+    tolerationSeconds: 300
+  volumes:
+  - name: kube-api-access-bgsgp
+    projected:
+      defaultMode: 420
+      sources:
+      - serviceAccountToken:
+          expirationSeconds: 3607
+          path: token
+      - configMap:
+          items:
+          - key: ca.crt
+            path: ca.crt
+          name: kube-root-ca.crt
+      - downwardAPI:
+          items:
+          - fieldRef:
+              apiVersion: v1
+              fieldPath: metadata.namespace
+            path: namespace
+status:
+  conditions:
+  - lastProbeTime: null
+    lastTransitionTime: "2022-02-17T21:51:01Z"
+    status: "True"
+    type: Initialized
+  - lastProbeTime: null
+    lastTransitionTime: "2022-02-17T21:51:06Z"
+    status: "True"
+    type: Ready
+  - lastProbeTime: null
+    lastTransitionTime: "2022-02-17T21:51:06Z"
+    status: "True"
+    type: ContainersReady
+  - lastProbeTime: null
+    lastTransitionTime: "2022-02-17T21:51:01Z"
+    status: "True"
+    type: PodScheduled
+  containerStatuses:
+  - containerID: containerd://5403af59a2b46ee5a23fb0ae4b1e077f7ca5c5fb7af16e1ab21c00e0e616462a
+    image: docker.io/library/nginx:latest
+    imageID: docker.io/library/nginx@sha256:2834dc507516af02784808c5f48b7cbe38b8ed5d0f4837f16e78d00deb7e7767
+    lastState: {}
+    name: nginx
+    ready: true
+    restartCount: 0
+    started: true
+    state:
+      running:
+        startedAt: "2022-02-17T21:51:05Z"
+  hostIP: 192.168.0.113
+  phase: Running
+  podIP: 10.88.0.3
+  podIPs:
+  - ip: 10.88.0.3
+  - ip: 2001:db8::1
+  qosClass: Guaranteed
+  startTime: "2022-02-17T21:51:01Z"
+```
+
+## 파드의 로그 확인하기 {#examine-pod-logs}
+
+먼저, 확인하고자 하는 컨테이너의 로그를 확인한다.
+
+```shell
+kubectl logs ${POD_NAME} ${CONTAINER_NAME}
+```
+
+만약 컨테이너가 이전에 크래시 되었다면, 다음의 명령을 통해 컨테이너의 크래시 로그를 살펴볼 수 있다.
+
+```shell
+kubectl logs --previous ${POD_NAME} ${CONTAINER_NAME}
+```
+
+## exec를 통해 컨테이너 디버깅하기 {#container-exec}
+
+만약 {{< glossary_tooltip text="컨테이너 이미지" term_id="image" >}}에
+디버깅 도구가 포함되어 있다면, `kubectl exec`을 통해 특정 컨테이너에서 해당 명령들을
+실행할 수 있다. (리눅스나 윈도우 OS를 기반으로 만들어진 이미지에는 대부분 디버깅 도구를 포함하고
+있다.)
+
+```shell
+kubectl exec ${POD_NAME} -c ${CONTAINER_NAME} -- ${CMD} ${ARG1} ${ARG2} ... ${ARGN}
+```
+
+{{< note >}}
+`-c ${CONTAINER_NAME}` 인자는 선택적이다. 만약 하나의 컨테이너만 포함된 파드라면 해당 옵션을 생략할 수 있다.
+{{< /note >}}
+
+예를 들어, 동작 중인 카산드라 파드의 로그를 살펴보기 위해서는 다음과 같은 명령을 실행할 수 있다.
+
+```shell
+kubectl exec cassandra -- cat /var/log/cassandra/system.log
+```
+
+`kubectl exec`에 `-i`와 `-t` 옵션을 사용해서 터미널에서 접근할 수 있는 쉘을 실행시킬 수도 있다.
+예를 들면 다음과 같다.
+
+```shell
+kubectl exec -it cassandra -- sh
+```
+
+더욱 상세한 내용은 
+[동작중인 컨테이너의 쉘에 접근하기](/ko/docs/tasks/debug/debug-application/get-shell-running-container/)를 참고한다.
+
+## 임시(ephemeral) 디버그 컨테이너를 사용해서 디버깅하기 {#ephemeral-container}
+
+{{< feature-state state="beta" for_k8s_version="v1.23" >}}
+
+컨테이너가 크래시 됐거나 
+[distroless 이미지](https://github.com/GoogleContainerTools/distroless)처럼
+컨테이너 이미지에 디버깅 도구를 포함하고 있지 않아 `kubectl exec`로는 충분하지 않은 경우에는
+{{< glossary_tooltip text="임시(Ephemeral) 컨테이너" term_id="ephemeral-container" >}}를 사용하는 것이
+인터랙티브한 트러블슈팅에 유용하다.
+
+### 임시 컨테이너를 사용한 디버깅 예시 {#ephemeral-container-example}
+
+`kubectl debug` 명령어를 사용해서 동작 중인 파드에 임시 컨테이너를 추가할 수 있다.
+먼저, 다음과 같이 파드를 추가한다.
+
+```shell
+kubectl run ephemeral-demo --image=k8s.gcr.io/pause:3.1 --restart=Never
+```
+
+이 섹션의 예시에서는 디버깅 도구가 포함되지 않은 이미지의 사례를 보여드리기 위해
+`pause` 컨테이너 이미지를 사용했는데, 이 대신 어떠한 이미지를 사용해도
+될 것이다.
+
+만약 `kubectl exec`을 통해 쉘을 생성하려 한다면 다음과 같은 에러를
+확인할 수 있을 텐데, 그 이유는 이 이미지에 쉘이 존재하지 않기 때문이다.
+
+```shell
+kubectl exec -it ephemeral-demo -- sh
+```
+
+```
+OCI runtime exec failed: exec failed: container_linux.go:346: starting container process caused "exec: \"sh\": executable file not found in $PATH": unknown
+```
+
+이 명령어 대신 `kubectl debug`을 사용해서 디버깅 컨테이너를 생성할 수 있다.
+만약 `-i`/`--interactive` 인자를 사용한다면, `kubectl`은 임시
+컨테이너의 콘솔에 자동으로 연결할 것이다.
+
+```shell
+kubectl debug -it ephemeral-demo --image=busybox --target=ephemeral-demo
+```
+
+```
+Defaulting debug container name to debugger-8xzrl.
+If you don't see a command prompt, try pressing enter.
+/ #
+```
+
+이 명령어는 새로운 busybox 컨테이너를 추가하고 해당 컨테이너로 연결한다. `--target`
+파라미터를 사용하면 다른 컨테이너의 프로세스 네임스페이스를 대상으로 하게 된다. 여기서는
+이 옵션이 꼭 필요한데, `kubectl run`이 생성하는 파드에 대해
+[프로세스 네임스페이스 공유](/docs/tasks/configure-pod-container/share-process-namespace/)를
+활성화하지 않기 때문이다.
+
+{{< note >}}
+`--target` 파라미터는 사용 중인 
+{{< glossary_tooltip text="컨테이너 런타임" term_id="container-runtime" >}}에서
+지원해야지만 사용할 수 있다. 만일 지원되지 않는다면,
+임시 컨테이너가 시작되지 않을 수 있거나 독립적인 프로세스
+네임스페이스를 가지고 시작될 수 있다.
+{{< /note >}}
+
+`kubectl describe` 명령을 사용하면 새롭게 생성된 임시 컨테이너의 상태를 확인할 수 있다.
+
+```shell
+kubectl describe pod ephemeral-demo
+```
+
+```
+...
+Ephemeral Containers:
+  debugger-8xzrl:
+    Container ID:   docker://b888f9adfd15bd5739fefaa39e1df4dd3c617b9902082b1cfdc29c4028ffb2eb
+    Image:          busybox
+    Image ID:       docker-pullable://busybox@sha256:1828edd60c5efd34b2bf5dd3282ec0cc04d47b2ff9caa0b6d4f07a21d1c08084
+    Port:           <none>
+    Host Port:      <none>
+    State:          Running
+      Started:      Wed, 12 Feb 2020 14:25:42 +0100
+    Ready:          False
+    Restart Count:  0
+    Environment:    <none>
+    Mounts:         <none>
+...
+```
+
+디버깅이 다 끝나면 `kubectl delete`을 통해 파드를 제거할 수 있다.
+
+```shell
+kubectl delete pod ephemeral-demo
+```
+
+## 파드의 복제본을 이용해서 디버깅하기
+
+때때로 파드의 설정 옵션에 따라 특정 상황에서 트러블슈팅을 하기가 어려울 수 있다.
+예를 들어, 만일 여러분의 컨테이너 이미지가 쉘을 포함하고 있지 않거나, 여러분의
+애플리케이션이 컨테이너 시작에서 크래시가 발생한다면 `kubectl exec`을 이용해서
+컨테이너를 트러블슈팅할 수 없을 수 있다. 이러한 상황에서는 `kubectl debug`을 사용해서
+파드의 복제본을 디버깅을 위한 추가적인 설정 옵션과 함께 생성할 수 있다.
+
+### 새 컨테이너와 함께 파드의 복제본 생성하기
+
+만일 여러분의 애플리케이션이 동작은 하고 있지만 예상과는 다르게 동작하는 경우,
+파드의 복제본에 새로운 컨테이너를 추가함으로써 추가적인 트러블슈팅 도구들을
+파드에 함께 추가할 수 있다.
+
+가령, 여러분의 애플리케이션 컨테이너 이미지는 `busybox`를 기반으로 하고 있는데
+여러분은 `busybox`에는 없는 디버깅 도구를 필요로 한다고 가정해 보자. 이러한
+시나리오는 `kubectl run` 명령을 통해 시뮬레이션 해볼 수 있다.
+
+```shell
+kubectl run myapp --image=busybox --restart=Never -- sleep 1d
+```
+
+다음의 명령을 실행시켜 디버깅을 위한 새로운 우분투 컨테이너와 함께 `myapp-debug`이란
+이름의 `myapp` 컨테이너 복제본을 생성할 수 있다.
+
+```shell
+kubectl debug myapp -it --image=ubuntu --share-processes --copy-to=myapp-debug
+```
+
+```
+Defaulting debug container name to debugger-w7xmf.
+If you don't see a command prompt, try pressing enter.
+root@myapp-debug:/#
+```
+
+{{< note >}}
+* 만일 여러분이 새로 생성되는 컨테이너의 이름을 `--container` 플래그와 함께 지정하지 않는다면,
+  `kubectl debug`는 자동으로 새로운 컨테이너 이름을 생성한다.
+* `-i` 플래그를 사용하면 `kubectl debug` 명령이 새로운 컨테이너에 기본적으로 연결되게 된다.
+  이러한 동작은 `--attach=false`을 지정하여 방지할 수 있다. 만일 여러분의 세션이
+  연결이 끊어진다면 `kubectl attach`를 사용해서 다시 연결할 수 있다.
+* `--share-processes` 옵션은 이 파드에 있는 컨테이너가 해당 파드에 속한 다른 컨테이너의
+  프로세스를 볼 수 있도록 한다. 이 옵션이 어떻게 동작하는지에 대해 더 알아보기 위해서는
+  다음의 [파드의 컨테이너 간 프로세스 네임스페이스 공유](
+  /docs/tasks/configure-pod-container/share-process-namespace/)를 참고하라.
+{{< /note >}}
+
+사용이 모두 끝나면, 디버깅에 사용된 파드를 잊지 말고 정리한다.
+
+```shell
+kubectl delete pod myapp myapp-debug
+```
+
+### 명령어를 변경하며 파드의 복제본 생성하기
+
+때때로 컨테이너의 명령어를 변경하는 것이 유용한 경우가 있는데, 예를 들면 디버그 플래그를 추가하기
+위해서나 애플리케이션이 크래시 되는 경우이다.
+
+다음의 `kubectl run` 명령을 통해 즉각적으로 크래시가 발생하는 애플리케이션의
+사례를 시뮬레이션해 볼 수 있다.
+
+```
+kubectl run --image=busybox myapp -- false
+```
+
+`kubectl describe pod myapp` 명령을 통해 이 컨테이너에 크래시가 발생하고 있음을 확인할 수 있다.
+
+```
+Containers:
+  myapp:
+    Image:         busybox
+    ...
+    Args:
+      false
+    State:          Waiting
+      Reason:       CrashLoopBackOff
+    Last State:     Terminated
+      Reason:       Error
+      Exit Code:    1
+```
+
+이러한 경우에 `kubectl debug`을 통해 명령어를 지정함으로써 해당 파드의
+복제본을 인터랙티브 쉘로 생성할 수 있다.
+
+```
+kubectl debug myapp -it --copy-to=myapp-debug --container=myapp -- sh
+```
+
+```
+If you don't see a command prompt, try pressing enter.
+/ #
+```
+
+이제 인터랙티브 쉘에 접근할 수 있으니 파일 시스템 경로를 확인하거나
+동작 중인 컨테이너의 명령어를 직접 확인하는 등의 작업이 가능하다.
+
+{{< note >}}
+* 특정 컨테이너의 명령어를 변경하기 위해서는 `--container` 옵션을 통해 해당 컨테이너의
+  이름을 지정해야만 한다. 이름을 지정하지 않는다면 `kubectl debug`은 이전에 지정한 명령어를
+  그대로 사용해서 컨테이너를 생성할 것이다.
+* 기본적으로 `-i` 플래그는 `kubectl debug` 명령이 컨테이너에 바로 연결되도록 한다.
+  이러한 동작을 방지하기 위해서는 `--attach=false` 옵션을 지정할 수 있다. 만약 여러분이 세션이
+  종료된다면 `kubectl attach` 명령을 통해 다시 연결할 수 있다.
+{{< /note >}}
+
+사용이 모두 끝나면, 디버깅에 사용된 파드들을 잊지 말고 정리한다.
+
+```shell
+kubectl delete pod myapp myapp-debug
+```
+
+### 컨테이너 이미지를 변경하며 파드의 복제본 생성하기
+
+특정한 경우에 여러분은 제대로 동작하지 않는 파드의 이미지를
+기존 프로덕션 컨테이너 이미지에서 디버깅 빌드나 추가적인 도구를 포함한
+이미지로 변경하고 싶을 수 있다.
+
+이 사례를 보여주기 위해 `kubectl run` 명령을 통해 파드를 생성하였다.
+
+```
+kubectl run myapp --image=busybox --restart=Never -- sleep 1d
+```
+
+여기서는 `kubectl debug` 명령을 통해 해당 컨테이너 이미지를 `ubuntu`로 변경하며
+복제본을 생성하였다.
+
+```
+kubectl debug myapp --copy-to=myapp-debug --set-image=*=ubuntu
+```
+
+`--set-image`의 문법은 `kubectl set image`와 동일하게 `container_name=image`
+형식의 문법을 사용한다. `*=ubuntu`라는 의미는 모든 컨테이너의 이미지를 `ubuntu`로
+변경하겠다는 의미이다.
+
+사용이 모두 끝나면, 디버깅에 사용된 파드를 잊지 말고 정리한다.
+
+```shell
+kubectl delete pod myapp myapp-debug
+```
+
+## 노드의 쉘을 사용해서 디버깅하기 {#node-shell-session}
+
+만약 위의 어떠한 방법도 사용할 수 없다면, 파드가 현재 동작 중인 노드를 찾아
+호스트의 네임스페이스로 동작하는 특권 파드를 생성할 수 있다.
+다음 `kubectl debug` 명령을 통해 해당 노드에서 인터랙티브한 쉘을 생성할 수 있다.
+
+```shell
+kubectl debug node/mynode -it --image=ubuntu
+```
+
+```
+Creating debugging pod node-debugger-mynode-pdx84 with container debugger on node mynode.
+If you don't see a command prompt, try pressing enter.
+root@ek8s:/#
+```
+
+노드에서 디버깅 세션을 생성할 때 유의해야 할 점은 다음과 같다.
+
+* `kubectl debug`는 노드의 이름에 기반해 새로운 파드의 이름을
+  자동으로 생성한다.
+* 컨테이너는 호스트 네임스페이스(IPC, 네트워크, PID 네임스페이스)에서 동작한다.
+* 노드의 루트 파일시스템은 `/host`에 마운트된다.
+
+사용이 모두 끝나면, 디버깅에 사용된 파드를 잊지 말고 정리한다.
+
+```shell
+kubectl delete pod node-debugger-mynode-pdx84
+```
diff --git a/content/ko/docs/tasks/debug/debug-application/debug-statefulset.md b/content/ko/docs/tasks/debug/debug-application/debug-statefulset.md
new file mode 100644
index 0000000000..92c5b96d59
--- /dev/null
+++ b/content/ko/docs/tasks/debug/debug-application/debug-statefulset.md
@@ -0,0 +1,42 @@
+---
+
+
+
+
+
+
+
+
+title: 스테이트풀셋 디버깅하기
+content_type: task
+weight: 30
+---
+
+<!-- overview -->
+이 문서에서는 스테이트풀셋을 디버깅 방법에 대해 설명한다.
+
+## {{% heading "prerequisites" %}}
+
+* 쿠버네티스 클러스터가 준비되어 있어야 하고, kubectl 커맨드 라인 도구가 클러스터와 통신할 수 있게 사전에 설정되어 있어야 한다.
+* 조사하고자 하는 스테이트풀셋이 사전에 준비되어 있어야 한다.
+
+<!-- steps -->
+
+## 스테이트풀셋 디버깅하기
+
+레이블이 `app=myapp`으로 지정된 스테이트풀셋 파드를 전부 나열하기 위해서는
+다음의 명령을 사용할 수 있다.
+
+```shell
+kubectl get pods -l app=myapp
+```
+
+만약 오랜 시간동안 `Unknown`이나 `Terminating` 상태에 있는
+파드들을 발견하였다면, 이러한 파드들을 어떻게 다루는지 알아보기 위해 
+[스테이트풀셋 파드 삭제하기](/ko/docs/tasks/run-application/delete-stateful-set/)를 참고하길 바란다.
+스테이트풀셋에 포함된 개별 파드들을 디버깅하기 위해서는
+[파드 디버그하기](/ko/docs/tasks/debug/debug-application/debug-pods/) 가이드를 참고하길 바란다.
+
+## {{% heading "whatsnext" %}}
+
+[초기화 컨테이너(Init container) 디버그하기](/ko/docs/tasks/debug/debug-application/debug-init-containers/)를 참고하길 바란다.
diff --git a/content/ko/docs/tasks/debug-application-cluster/determine-reason-pod-failure.md b/content/ko/docs/tasks/debug/debug-application/determine-reason-pod-failure.md
similarity index 92%
rename from content/ko/docs/tasks/debug-application-cluster/determine-reason-pod-failure.md
rename to content/ko/docs/tasks/debug/debug-application/determine-reason-pod-failure.md
index 4dde485c13..40b9a24205 100644
--- a/content/ko/docs/tasks/debug-application-cluster/determine-reason-pod-failure.md
+++ b/content/ko/docs/tasks/debug/debug-application/determine-reason-pod-failure.md
@@ -75,6 +75,12 @@ content_type: task
 
         kubectl get pod termination-demo -o go-template="{{range .status.containerStatuses}}{{.lastState.terminated.message}}{{end}}"
 
+여러 컨테이너를 포함하는 파드의 경우, Go 템플릿을 사용하여 컨테이너 이름도 출력할 수 있다. 이렇게 하여, 어떤 컨테이너가 실패하는지 찾을 수 있다.
+
+```shell
+kubectl get pod multi-container-pod -o go-template='{{range .status.containerStatuses}}{{printf "%s:\n%s\n\n" .name .lastState.terminated.message}}{{end}}'
+```
+
 ## 종료 메시지 사용자 정의하기
 
 쿠버네티스는 컨테이너의 `terminationMessagePath` 필드에 지정된
diff --git a/content/ko/docs/tasks/debug/debug-application/get-shell-running-container.md b/content/ko/docs/tasks/debug/debug-application/get-shell-running-container.md
new file mode 100644
index 0000000000..7eba18aebc
--- /dev/null
+++ b/content/ko/docs/tasks/debug/debug-application/get-shell-running-container.md
@@ -0,0 +1,157 @@
+---
+
+
+
+title: 동작중인 컨테이너의 셸에 접근하기
+content_type: task
+---
+
+<!-- overview -->
+
+이 페이지는 동작중인 컨테이너에 접근하기 위해 `kubectl exec`을 사용하는
+방법에 대해 설명한다.
+
+
+
+
+## {{% heading "prerequisites" %}}
+
+
+{{< include "task-tutorial-prereqs.md" >}}
+
+
+
+
+<!-- steps -->
+
+## 컨테이너의 셸에 접근하기
+
+이 예시에서는 하나의 컨테이너를 가진 파드를 생성할 것이다. 이 컨테이너는
+nginx 이미지를 실행한다. 해당 파드에 대한 설정 파일은 다음과 같다.
+
+{{< codenew file="application/shell-demo.yaml" >}}
+
+파드를 생성한다.
+
+```shell
+kubectl apply -f https://k8s.io/examples/application/shell-demo.yaml
+```
+
+다음을 통해 컨테이너가 동작하고 있는지 확인할 수 있다.
+
+```shell
+kubectl get pod shell-demo
+```
+
+동작중인 컨테이너의 셸에 접근한다.
+
+```shell
+kubectl exec --stdin --tty shell-demo -- /bin/bash
+```
+
+{{< note >}}
+kubectl 명령어 인자와 사용하고자 하는 명령어의 인자를 구분하기 위해서는 이중 대시(`--`)를 사용할 수 있다.
+{{< /note >}}
+
+셸에 접근해서 다음처럼 루트 디렉토리를 확인해 볼 수 있다.
+
+```shell
+# Run this inside the container
+ls /
+```
+
+접근한 셸에서 다른 명령어도 한번 실행해 보아라. 다음은 실행해 볼
+명령의 예시이다.
+
+```shell
+# You can run these example commands inside the container
+ls /
+cat /proc/mounts
+cat /proc/1/maps
+apt-get update
+apt-get install -y tcpdump
+tcpdump
+apt-get install -y lsof
+lsof
+apt-get install -y procps
+ps aux
+ps aux | grep nginx
+```
+
+## nginx의 최상단 페이지 작성하기
+
+앞에서 생성한 파드에 대한 설정을 살펴보아라. 파드에는
+`emptyDir` 볼륨이 사용되었고, 이 컨테이너는 해당 볼륨을
+`/usr/share/nginx/html` 경로에 마운트하였다.
+
+접근한 셸 환경에서 `/usr/share/nginx/html` 디렉터리에 `index.html` 파일을
+생성해 보아라.
+
+```shell
+# Run this inside the container
+echo 'Hello shell demo' > /usr/share/nginx/html/index.html
+```
+
+셸 환경에서 nginx 서버에 GET 요청을 시도해보면 다음과 같다.
+
+```shell
+# Run this in the shell inside your container
+apt-get update
+apt-get install curl
+curl http://localhost/
+```
+
+출력 결과는 여러분이 `index.html` 파일에 작성한 텍스트를 출력할 것이다.
+
+```
+Hello shell demo
+```
+
+셸 사용이 모두 끝났다면 `exit`을 입력해 종료하라.
+
+```shell
+exit # To quit the shell in the container
+```
+
+## 컨테이너에서 개별 명령어 실행하기
+
+셸이 아닌 일반적인 커맨드 환경에서 다음처럼 동작중인 컨테이너의
+환경 변수를 출력할 수 있다.
+
+```shell
+kubectl exec shell-demo env
+```
+
+다른 명령어도 한번 실행해 보아라. 다음은 실행해 볼 명령의 예시이다.
+
+```shell
+kubectl exec shell-demo -- ps aux
+kubectl exec shell-demo -- ls /
+kubectl exec shell-demo -- cat /proc/1/mounts
+```
+
+
+
+<!-- discussion -->
+
+## 파드에 한 개 이상의 컨테이너가 있을 경우 셸에 접근하기
+
+만일 파드에 한 개 이상의 컨테이너가 있을 경우, `kubectl exec` 명령어에
+`--container` 혹은 `-c` 옵션을 사용해서 컨테이너를 지정하라. 예를 들어,
+여러분이 my-pod라는 이름의 파드가 있다고 가정해 보자. 이 파드에는 _main-app_ 과 
+_helper-app_ 이라는 이름의 두 컨테이너가 있다. 다음 명령어는 _main-app_ 
+컨테이너에 대한 셸에 접근할 것이다.
+
+```shell
+kubectl exec -i -t my-pod --container main-app -- /bin/bash
+```
+
+{{< note >}}
+축약형 옵션인 `-i` 와 `-t` 는 각각 `--stdin` 와 `--tty` 옵션에 대응된다.
+{{< /note >}}
+
+
+## {{% heading "whatsnext" %}}
+
+
+* [kubectl exec](/docs/reference/generated/kubectl/kubectl-commands/#exec)를 참고한다.
diff --git a/content/ko/docs/tasks/debug/debug-cluster/_index.md b/content/ko/docs/tasks/debug/debug-cluster/_index.md
new file mode 100644
index 0000000000..05a5b645e4
--- /dev/null
+++ b/content/ko/docs/tasks/debug/debug-cluster/_index.md
@@ -0,0 +1,316 @@
+---
+
+
+title: 클러스터 트러블슈팅
+description: 일반적인 클러스터 이슈를 디버깅한다.
+weight: 20
+no_list: true
+---
+
+<!-- overview -->
+
+이 문서는 클러스터 트러블슈팅에 대해 설명한다. 사용자가 겪고 있는 문제의 근본 원인으로서 사용자의 애플리케이션을 
+이미 배제했다고 가정한다.
+애플리케이션 디버깅에 대한 팁은 [애플리케이션 트러블슈팅 가이드](/ko/docs/tasks/debug/debug-application/)를 참조한다.
+자세한 내용은 [트러블슈팅 문서](/ko/docs/tasks/debug/)를 참조한다.
+
+<!-- body -->
+
+## 클러스터 나열하기
+
+클러스터에서 가장 먼저 디버그해야 할 것은 노드가 모두 올바르게 등록되었는지 여부이다.
+
+다음을 실행한다.
+
+```shell
+kubectl get nodes
+```
+
+그리고 보일 것으로 예상되는 모든 노드가 존재하고 모두 `Ready` 상태인지 확인한다.
+
+클러스터의 전반적인 상태에 대한 자세한 정보를 얻으려면 다음을 실행할 수 있다.
+
+```shell
+kubectl cluster-info dump
+```
+
+### 예제: 다운(down) 상태이거나 통신이 닿지 않는(unreachable) 노드 디버깅하기
+
+때때로 디버깅할 때 노드의 상태를 확인하는 것이 유용할 수 있다(예를 들어, 어떤 노드에서 실행되는 파드가 이상하게 행동하는 것을 발견했거나, 특정 노드에 파드가 스케줄링되지 않는 이유를 알아보기 위해). 파드의 경우와 마찬가지로, `kubectl describe node` 및 `kubectl get node -o yaml` 명령을 사용하여 노드에 대한 상세 정보를 볼 수 있다. 예를 들어, 노드가 다운 상태(네트워크 연결이 끊어졌거나, kubelet이 종료된 후 재시작되지 못했거나 등)라면 아래와 같은 출력이 나올 것이다. 노드가 NotReady 상태라는 것을 나타내는 이벤트(event)와, 더 이상 실행 중이 아닌 파드(NotReady 상태 이후 5분 뒤에 축출되었음)에 주목한다.
+
+```shell
+kubectl get nodes
+```
+
+```none
+NAME                     STATUS       ROLES     AGE     VERSION
+kube-worker-1            NotReady     <none>    1h      v1.23.3
+kubernetes-node-bols     Ready        <none>    1h      v1.23.3
+kubernetes-node-st6x     Ready        <none>    1h      v1.23.3
+kubernetes-node-unaj     Ready        <none>    1h      v1.23.3
+```
+
+```shell
+kubectl describe node kube-worker-1
+```
+
+```none
+Name:               kube-worker-1
+Roles:              <none>
+Labels:             beta.kubernetes.io/arch=amd64
+                    beta.kubernetes.io/os=linux
+                    kubernetes.io/arch=amd64
+                    kubernetes.io/hostname=kube-worker-1
+                    kubernetes.io/os=linux
+Annotations:        kubeadm.alpha.kubernetes.io/cri-socket: /run/containerd/containerd.sock
+                    node.alpha.kubernetes.io/ttl: 0
+                    volumes.kubernetes.io/controller-managed-attach-detach: true
+CreationTimestamp:  Thu, 17 Feb 2022 16:46:30 -0500
+Taints:             node.kubernetes.io/unreachable:NoExecute
+                    node.kubernetes.io/unreachable:NoSchedule
+Unschedulable:      false
+Lease:
+  HolderIdentity:  kube-worker-1
+  AcquireTime:     <unset>
+  RenewTime:       Thu, 17 Feb 2022 17:13:09 -0500
+Conditions:
+  Type                 Status    LastHeartbeatTime                 LastTransitionTime                Reason              Message
+  ----                 ------    -----------------                 ------------------                ------              -------
+  NetworkUnavailable   False     Thu, 17 Feb 2022 17:09:13 -0500   Thu, 17 Feb 2022 17:09:13 -0500   WeaveIsUp           Weave pod has set this
+  MemoryPressure       Unknown   Thu, 17 Feb 2022 17:12:40 -0500   Thu, 17 Feb 2022 17:13:52 -0500   NodeStatusUnknown   Kubelet stopped posting node status.
+  DiskPressure         Unknown   Thu, 17 Feb 2022 17:12:40 -0500   Thu, 17 Feb 2022 17:13:52 -0500   NodeStatusUnknown   Kubelet stopped posting node status.
+  PIDPressure          Unknown   Thu, 17 Feb 2022 17:12:40 -0500   Thu, 17 Feb 2022 17:13:52 -0500   NodeStatusUnknown   Kubelet stopped posting node status.
+  Ready                Unknown   Thu, 17 Feb 2022 17:12:40 -0500   Thu, 17 Feb 2022 17:13:52 -0500   NodeStatusUnknown   Kubelet stopped posting node status.
+Addresses:
+  InternalIP:  192.168.0.113
+  Hostname:    kube-worker-1
+Capacity:
+  cpu:                2
+  ephemeral-storage:  15372232Ki
+  hugepages-2Mi:      0
+  memory:             2025188Ki
+  pods:               110
+Allocatable:
+  cpu:                2
+  ephemeral-storage:  14167048988
+  hugepages-2Mi:      0
+  memory:             1922788Ki
+  pods:               110
+System Info:
+  Machine ID:                 9384e2927f544209b5d7b67474bbf92b
+  System UUID:                aa829ca9-73d7-064d-9019-df07404ad448
+  Boot ID:                    5a295a03-aaca-4340-af20-1327fa5dab5c
+  Kernel Version:             5.13.0-28-generic
+  OS Image:                   Ubuntu 21.10
+  Operating System:           linux
+  Architecture:               amd64
+  Container Runtime Version:  containerd://1.5.9
+  Kubelet Version:            v1.23.3
+  Kube-Proxy Version:         v1.23.3
+Non-terminated Pods:          (4 in total)
+  Namespace                   Name                                 CPU Requests  CPU Limits  Memory Requests  Memory Limits  Age
+  ---------                   ----                                 ------------  ----------  ---------------  -------------  ---
+  default                     nginx-deployment-67d4bdd6f5-cx2nz    500m (25%)    500m (25%)  128Mi (6%)       128Mi (6%)     23m
+  default                     nginx-deployment-67d4bdd6f5-w6kd7    500m (25%)    500m (25%)  128Mi (6%)       128Mi (6%)     23m
+  kube-system                 kube-proxy-dnxbz                     0 (0%)        0 (0%)      0 (0%)           0 (0%)         28m
+  kube-system                 weave-net-gjxxp                      100m (5%)     0 (0%)      200Mi (10%)      0 (0%)         28m
+Allocated resources:
+  (Total limits may be over 100 percent, i.e., overcommitted.)
+  Resource           Requests     Limits
+  --------           --------     ------
+  cpu                1100m (55%)  1 (50%)
+  memory             456Mi (24%)  256Mi (13%)
+  ephemeral-storage  0 (0%)       0 (0%)
+  hugepages-2Mi      0 (0%)       0 (0%)
+Events:
+...
+```
+
+```shell
+kubectl get node kube-worker-1 -o yaml
+```
+
+```yaml
+apiVersion: v1
+kind: Node
+metadata:
+  annotations:
+    kubeadm.alpha.kubernetes.io/cri-socket: /run/containerd/containerd.sock
+    node.alpha.kubernetes.io/ttl: "0"
+    volumes.kubernetes.io/controller-managed-attach-detach: "true"
+  creationTimestamp: "2022-02-17T21:46:30Z"
+  labels:
+    beta.kubernetes.io/arch: amd64
+    beta.kubernetes.io/os: linux
+    kubernetes.io/arch: amd64
+    kubernetes.io/hostname: kube-worker-1
+    kubernetes.io/os: linux
+  name: kube-worker-1
+  resourceVersion: "4026"
+  uid: 98efe7cb-2978-4a0b-842a-1a7bf12c05f8
+spec: {}
+status:
+  addresses:
+  - address: 192.168.0.113
+    type: InternalIP
+  - address: kube-worker-1
+    type: Hostname
+  allocatable:
+    cpu: "2"
+    ephemeral-storage: "14167048988"
+    hugepages-2Mi: "0"
+    memory: 1922788Ki
+    pods: "110"
+  capacity:
+    cpu: "2"
+    ephemeral-storage: 15372232Ki
+    hugepages-2Mi: "0"
+    memory: 2025188Ki
+    pods: "110"
+  conditions:
+  - lastHeartbeatTime: "2022-02-17T22:20:32Z"
+    lastTransitionTime: "2022-02-17T22:20:32Z"
+    message: Weave pod has set this
+    reason: WeaveIsUp
+    status: "False"
+    type: NetworkUnavailable
+  - lastHeartbeatTime: "2022-02-17T22:20:15Z"
+    lastTransitionTime: "2022-02-17T22:13:25Z"
+    message: kubelet has sufficient memory available
+    reason: KubeletHasSufficientMemory
+    status: "False"
+    type: MemoryPressure
+  - lastHeartbeatTime: "2022-02-17T22:20:15Z"
+    lastTransitionTime: "2022-02-17T22:13:25Z"
+    message: kubelet has no disk pressure
+    reason: KubeletHasNoDiskPressure
+    status: "False"
+    type: DiskPressure
+  - lastHeartbeatTime: "2022-02-17T22:20:15Z"
+    lastTransitionTime: "2022-02-17T22:13:25Z"
+    message: kubelet has sufficient PID available
+    reason: KubeletHasSufficientPID
+    status: "False"
+    type: PIDPressure
+  - lastHeartbeatTime: "2022-02-17T22:20:15Z"
+    lastTransitionTime: "2022-02-17T22:15:15Z"
+    message: kubelet is posting ready status. AppArmor enabled
+    reason: KubeletReady
+    status: "True"
+    type: Ready
+  daemonEndpoints:
+    kubeletEndpoint:
+      Port: 10250
+  nodeInfo:
+    architecture: amd64
+    bootID: 22333234-7a6b-44d4-9ce1-67e31dc7e369
+    containerRuntimeVersion: containerd://1.5.9
+    kernelVersion: 5.13.0-28-generic
+    kubeProxyVersion: v1.23.3
+    kubeletVersion: v1.23.3
+    machineID: 9384e2927f544209b5d7b67474bbf92b
+    operatingSystem: linux
+    osImage: Ubuntu 21.10
+    systemUUID: aa829ca9-73d7-064d-9019-df07404ad448
+```
+
+
+## 로그 보기
+
+현재로서는 클러스터를 더 깊이 파고들려면 관련 머신에서 로그 확인이 필요하다. 관련 로그 파일 
+위치는 다음과 같다. (systemd 기반 시스템에서는 `journalctl`을 대신 사용해야 할 수도 있다.)
+
+### 컨트롤 플레인 노드
+
+   * `/var/log/kube-apiserver.log` - API 서버, API 제공을 담당
+   * `/var/log/kube-scheduler.log` - 스케줄러, 스케줄 결정을 담당
+   * `/var/log/kube-controller-manager.log` - 레플리케이션 컨트롤러를 담당하는 컨트롤러
+
+### 워커 노드
+
+   * `/var/log/kubelet.log` - Kubelet, 노드에서 컨테이너 실행을 담당
+   * `/var/log/kube-proxy.log` - Kube Proxy, 서비스 로드밸런싱을 담당
+
+## 클러스터 장애 모드
+
+아래에 일부 오류 상황 예시 및 문제를 완화하기 위해 클러스터 설정을 조정하는 방법을 나열한다.
+
+### 근본 원인
+
+  - VM(들) 종료
+  - 클러스터 내 또는 클러스터와 사용자 간의 네트워크 분할
+  - 쿠버네티스 소프트웨어의 충돌
+  - 데이터 손실 또는 퍼시스턴트 스토리지 사용 불가 (e.g. GCE PD 또는 AWS EBS 볼륨)
+  - 운영자 오류, 예를 들면 잘못 구성된 쿠버네티스 소프트웨어 또는 애플리케이션 소프트웨어
+
+### 특정 시나리오
+
+  - API 서버 VM 종료 또는 API 서버 충돌
+    - 다음의 현상을 유발함
+      - 새로운 파드, 서비스, 레플리케이션 컨트롤러를 중지, 업데이트 또는 시작할 수 없다.
+      -  쿠버네티스 API에 의존하지 않는 기존 파드 및 서비스는 계속 정상적으로 작동할 것이다.
+  - API 서버 백업 스토리지 손실
+    - 다음의 현상을 유발함
+      - API 서버가 구동되지 않을 것이다.
+      - kubelet에 도달할 수 없게 되지만, kubelet이 여전히 동일한 파드를 계속 실행하고 동일한 서비스 프록시를 제공할 것이다.
+      - API 서버를 재시작하기 전에, 수동으로 복구하거나 API서버 상태를 재생성해야 한다.
+  - 지원 서비스 (노드 컨트롤러, 레플리케이션 컨트롤러 매니저, 스케쥴러 등) VM 종료 또는 충돌
+    - 현재 그것들은 API 서버와 같은 위치에 있기 때문에 API 서버와 비슷한 상황을 겪을 것이다.
+    - 미래에는 이들도 복제본을 가질 것이며 API서버와 별도로 배치될 수도 있다.
+    - 지원 서비스들은 상태(persistent state)를 자체적으로 유지하지는 않는다.
+  - 개별 노드 (VM 또는 물리적 머신) 종료
+    - 다음의 현상을 유발함
+      - 해당 노드의 파드가 실행을 중지
+  - 네트워크 분할
+    - 다음의 현상을 유발함
+      - 파티션 A는 파티션 B의 노드가 다운되었다고 생각한다. 파티션 B는 API 서버가 다운되었다고 생각한다. (마스터 VM이 파티션 A에 있다고 가정)
+  - Kubelet 소프트웨어 오류
+    - 다음의 현상을 유발함
+      - 충돌한 kubelet은 노드에서 새 파드를 시작할 수 없다.
+      - kubelet이 파드를 삭제할 수도 있고 삭제하지 않을 수도 있다.
+      - 노드는 비정상으로 표시된다.
+      - 레플리케이션 컨트롤러는 다른 곳에서 새 파드를 시작한다.
+  - 클러스터 운영자 오류
+    - 다음의 현상을 유발함
+      - 파드, 서비스 등의 손실
+      - API 서버 백업 저장소 분실
+      - API를 읽을 수 없는 사용자
+      - 기타
+
+### 완화
+
+- 조치: IaaS VM을 위한 IaaS 공급자의 자동 VM 다시 시작 기능을 사용한다.
+  - 다음을 완화할 수 있음: API 서버 VM 종료 또는 API 서버 충돌
+  - 다음을 완화할 수 있음: 지원 서비스 VM 종료 또는 충돌
+
+- 조치: API 서버+etcd가 있는 VM에 IaaS 제공자의 안정적인 스토리지(예: GCE PD 또는 AWS EBS 볼륨)를 사용한다.
+  - 다음을 완화할 수 있음: API 서버 백업 스토리지 손실
+
+- 조치: [고가용성](/docs/setup/production-environment/tools/kubeadm/high-availability/) 구성을 사용한다.
+  - 다음을 완화할 수 있음: 컨트롤 플레인 노드 종료 또는 컨트롤 플레인 구성 요소(스케줄러, API 서버, 컨트롤러 매니저) 충돌
+    - 동시에 발생하는 하나 이상의 노드 또는 구성 요소 오류를 허용한다.
+  - 다음을 완화할 수 있음: API 서버 백업 스토리지(i.e., etcd의 데이터 디렉터리) 손실
+    - 고가용성 etcd 구성을 사용하고 있다고 가정
+
+- 조치: API 서버 PD/EBS 볼륨의 주기적인 스냅샷
+  - 다음을 완화할 수 있음: API 서버 백업 스토리지 손실
+  - 다음을 완화할 수 있음: 일부 운영자 오류 사례
+  - 다음을 완화할 수 있음: 일부 쿠버네티스 소프트웨어 오류 사례
+
+- 조치: 파드 앞에 레플리케이션 컨트롤러와 서비스 사용
+  - 다음을 완화할 수 있음: 노드 종료
+  - 다음을 완화할 수 있음: Kubelet 소프트웨어 오류
+
+- 조치: 예기치 않은 재시작을 허용하도록 설계된 애플리케이션(컨테이너)
+  - 다음을 완화할 수 있음: 노드 종료
+  - 다음을 완화할 수 있음: Kubelet 소프트웨어 오류
+
+
+## {{% heading "whatsnext" %}}
+
+* [리소스 메트릭 파이프라인](/ko/docs/tasks/debug/debug-cluster/resource-metrics-pipeline/)에서 사용할 수 있는 메트릭에 대해 알아 본다.
+* [리소스 사용량 모니터링](/ko/docs/tasks/debug/debug-cluster/resource-usage-monitoring/)을 위한 추가 도구에 대해 알아 본다.
+* Node Problem Detector를 사용하여 [노드 헬스(health)를 모니터링](/docs/tasks/debug/debug-cluster/monitor-node-health/)한다.
+* `crictl`을 사용하여 [쿠버네티스 노드를 디버깅](/docs/tasks/debug/debug-cluster/crictl/)한다.
+* [쿠버네티스 감사(auditing)](/docs/tasks/debug/debug-cluster/audit/)에 대한 더 자세한 정보를 본다.
+* `telepresence`를 사용하여 [서비스를 로컬에서 개발 및 디버깅](/docs/tasks/debug/debug-cluster/local-debugging/)한다.
diff --git a/content/ko/docs/tasks/debug/debug-cluster/monitor-node-health.md b/content/ko/docs/tasks/debug/debug-cluster/monitor-node-health.md
new file mode 100644
index 0000000000..30f5b98b2a
--- /dev/null
+++ b/content/ko/docs/tasks/debug/debug-cluster/monitor-node-health.md
@@ -0,0 +1,163 @@
+---
+title: 노드 헬스 모니터링하기
+content_type: task
+
+
+
+weight: 20
+---
+
+<!-- overview -->
+
+*노드 문제 감지기(Node Problem Detector)* 는 노드의 헬스에 대해 모니터링 및 보고하는 데몬이다.
+노드 문제 감지기를 `데몬셋(DaemonSet)` 혹은 스탠드얼론 데몬(standalone daemon)으로 실행할 수 있다.
+노드 문제 감지기는 다양한 데몬으로부터 노드의 문제에 관한 정보를 다양한 데몬으로부터 수집하고,
+이러한 컨디션들을 [노드컨디션(NodeCondition)](/docs/concepts/architecture/nodes/#condition) 및
+[이벤트(Event)](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#event-v1-core)형태로 API 서버에 보고한다.
+
+노드 문제 감지기 설치 및 사용 방법을 보려면,
+[노드 문제 감지기 프로젝트 문서](https://github.com/kubernetes/node-problem-detector)를 참조하자.
+
+## {{% heading "prerequisites" %}}
+
+{{< include "task-tutorial-prereqs.md" >}}
+
+<!-- steps -->
+
+## 제약 사항
+
+* 노드 문제 감지기는 파일 기반의 커널 로그만 지원한다.
+  `journald` 와 같은 로그 도구는 지원하지 않는다.
+
+* 노드 문제 감지기는 커널 로그 형식을 사용하여 커널 이슈를 보고한다.
+  커널 로그 형식을 확장하는 방법을 배우려면 [기타 로그 형식 지원 추가](#support-other-log-format)를 살펴보자.
+
+## 노드 문제 감지기 활성화하기
+
+일부 클라우드 사업자는 노드 문제 감지기를 {{< glossary_tooltip text="애드온" term_id="addons" >}} 으로서 제공한다.
+또한, `kubectl`을 이용하거나 애드온 파드를 생성하여 노드 문제 감지기를 활성화할 수도 있다.
+
+### kubectl를 이용하여 노드 문제 감지기 활성화하기 {#using-kubectl}
+
+`kubectl`은 노드 문제 감지기를 관리하는 가장 유연한 방법이다.
+현재 환경에 맞게 조정하거나 사용자 정의 노드 문제를 탐지하기 위해
+기본 설정값을 덮어쓸 수 있다. 예를 들면 아래와 같다.
+
+1. `node-problem-detector.yaml`와 유사하게 노드 문제 감지기 구성을 생성한다:
+
+   {{< codenew file="debug/node-problem-detector.yaml" >}}
+
+   {{< note >}}
+   현재 운영 체제 배포판의 시스템 로그 디렉토리와 일치하도록 기재했는지 확인해야 한다.
+   {{< /note >}}
+
+1. `kubectl`을 이용하여 노드 문제 감지기를 시작한다.
+
+   ```shell
+   kubectl apply -f https://k8s.io/examples/debug/node-problem-detector.yaml
+   ```
+
+### 애드온 파드를 이용하여 노드 문제 감지기 활성화하기 {#using-addon-pod}
+
+만약 커스텀 클러스터 부트스트랩 솔루션을 사용중이고
+기본 설정값을 덮어쓸 필요가 없다면,
+디플로이먼트를 추가로 자동화하기 위해 애드온 파드를 활용할 수 있다.
+
+`node-problem-detector.yaml`를 생성하고,
+컨트롤 플레인 노드의 애드온 파드의 디렉토리 `/etc/kubernetes/addons/node-problem-detector`에 설정을 저장한다.
+
+## 설정 덮어쓰기
+
+노드 문제 감지기를 빌드할 때,
+[기본 설정](https://github.com/kubernetes/node-problem-detector/tree/v0.1/config)이 포함되어 있다.
+
+하지만 [`컨피그맵(ConfigMap)`](/docs/tasks/configure-pod-container/configure-pod-configmap/)을 이용해
+설정을 덮어쓸 수 있다.
+
+1. `config/` 내의 설정 파일을 변경한다.
+1. `node-problem-detector-config` `컨피그맵(ConfigMap)`을 생성한다.
+
+   ```shell
+   kubectl create configmap node-problem-detector-config --from-file=config/
+   ```
+
+1. `컨피그맵(ConfigMap)`을 사용하도록 `node-problem-detector.yaml`을 변경한다.
+
+   {{< codenew file="debug/node-problem-detector-configmap.yaml" >}}
+
+4. 새로운 설정 파일을 사용하여 노드 문제 감지기를 재생성한다.
+
+   ```shell
+   # 만약 노드 문제 감지기가 동작하고 있다면, 재생성 전 삭제한다
+   kubectl delete -f https://k8s.io/examples/debug/node-problem-detector.yaml
+   kubectl apply -f https://k8s.io/examples/debug/node-problem-detector-configmap.yaml
+   ```
+
+{{< note >}}
+이 접근법은 노드 문제 감지기를 `kubectl`로 시작했을 때에만 적용된다.
+{{< /note >}}
+
+만약 노드 문제 감지기가 클러스터 애드온으로 실행된 경우, 설정 덮어쓰기가 지원되지 않는다.
+애드온 매니저는 `컨피그맵(ConfigMap)`을 지원하지 않는다.
+
+## 커널 모니터
+
+*커널 모니터*는 노드 문제 감지기에서 지원하는 시스템 로그 모니터링 데몬이다.
+커널 모니터는 커널 로그를 감시하며, 미리 설정된 규칙에 따라 알려진 커널 이슈를 감지한다.
+
+커널 모니터는 [`config/kernel-monitor.json`](https://github.com/kubernetes/node-problem-detector/blob/v0.1/config/kernel-monitor.json)에
+미리 설정된 규칙 모음과 커널 이슈를 매칭한다.
+규칙 리스트는 확장 가능하다. 설정을 덮어쓰기 해 규칙 리스트를 확장할 수 있다.
+
+### 신규 노드컨디션(NodeConditions) 추가하기
+
+신규 `NodeCondition`를 지원하려면, `config/kernel-monitor.json`의 `conditions`필드 내 조건 정의를 생성해야한다.
+예를 들면 아래와 같다.
+
+```json
+{
+  "type": "NodeConditionType",
+  "reason": "CamelCaseDefaultNodeConditionReason",
+  "message": "arbitrary default node condition message"
+}
+```
+
+### 신규 문제 감지하기
+
+신규 문제를 감지하려면 `config/kernel-monitor.json`의 `rules`필드를
+신규 규칙 정의로 확장하면 된다.
+
+```json
+{
+  "type": "temporary/permanent",
+  "condition": "NodeConditionOfPermanentIssue",
+  "reason": "CamelCaseShortReason",
+  "message": "regexp matching the issue in the kernel log"
+}
+```
+
+### 커널 로그 장치를 위한 경로 설정하기 {#kernel-log-device-path}
+
+운영 체제 (OS) 배포판의 커널 로그 경로를 확인한다.
+리눅스 커널 [로그 장치(log device)](https://www.kernel.org/doc/Documentation/ABI/testing/dev-kmsg)는 보통 `/dev/kmsg`와 같이 표시된다. 하지만, 로그 경로 장소는 OS 배포판마다 상이하다.
+`config/kernel-monitor.json` 의 `log` 필드는 컨테이너 내부의 로그 경로를 나타낸다.
+`log` 필드를 노드 문제 감지기가 감시하는 장치 경로와 일치하도록 구성하면 된다.
+
+### 기타 로그 포맷 지원 추가하기 {#support-other-log-format}
+
+커널 모니터는 커널 로그의 내부 데이터 구조를 해석하기 위해
+[`Translator`](https://github.com/kubernetes/node-problem-detector/blob/v0.1/pkg/kernelmonitor/translator/translator.go) 플러그인을 사용한다.
+신규 로그 포맷을 사용하기 위해 신규 해석기를 구현할 수 있다.
+
+<!-- discussion -->
+
+## 권장 사항 및 제약 사항
+
+노드 헬스를 모니터링하기 위해 클러스터에 노드 문제 탐지기를 실행할 것을 권장한다.
+노드 문제 감지기를 실행할 때, 각 노드에 추가 리소스 오버헤드가 발생할 수 있다.
+다음과 같은 이유 때문에 일반적으로는 문제가 없다.
+
+* 커널 로그는 비교적 천천히 늘어난다.
+* 노드 문제 감지기에는 리소스 제한이 설정되어 있다.
+* 높은 부하가 걸리더라도, 리소스 사용량은 허용 가능한 수준이다. 추가 정보를 위해 노드 문제 감지기의
+[벤치마크 결과](https://github.com/kubernetes/node-problem-detector/issues/2#issuecomment-220255629)를 살펴보자.
diff --git a/content/ko/docs/tasks/debug/debug-cluster/resource-metrics-pipeline.md b/content/ko/docs/tasks/debug/debug-cluster/resource-metrics-pipeline.md
new file mode 100644
index 0000000000..1a7c6716ef
--- /dev/null
+++ b/content/ko/docs/tasks/debug/debug-cluster/resource-metrics-pipeline.md
@@ -0,0 +1,268 @@
+---
+
+
+
+title: 리소스 메트릭 파이프라인
+content_type: concept
+weight: 15
+---
+
+<!-- overview -->
+
+쿠버네티스에서, _메트릭 API(Metrics API)_ 는 자동 스케일링 및 비슷한 사용 사례를 지원하기 위한 기본적인 메트릭 집합을 제공한다. 
+이 API는 노드와 파드의 리소스 사용량 정보를 제공하며, 
+여기에는 CPU 및 메모리 메트릭이 포함된다. 
+메트릭 API를 클러스터에 배포하면, 쿠버네티스 API의 클라이언트는 이 정보에 대해 질의할 수 있으며, 
+질의 권한을 관리하기 위해 쿠버네티스의 접근 제어 메커니즘을 이용할 수 있다.
+
+[HorizontalPodAutoscaler](/ko/docs/tasks/run-application/horizontal-pod-autoscale/)(HPA) 및 
+[VerticalPodAutoscaler](https://github.com/kubernetes/autoscaler/tree/master/vertical-pod-autoscaler#readme)(VPA)는 
+사용자의 요구 사항을 만족할 수 있도록 워크로드 레플리카와 리소스를 조정하는 데에 메트릭 API의 데이터를 이용한다.
+
+[`kubectl top`](/docs/reference/generated/kubectl/kubectl-commands#top) 
+명령을 이용하여 
+리소스 메트릭을 볼 수도 있다.
+
+{{< note >}}
+메트릭 API 및 이것이 제공하는 메트릭 파이프라인은 
+HPA / VPA 에 의한 자동 스케일링이 동작하는 데 필요한 
+최소한의 CPU 및 메모리 메트릭만을 제공한다. 
+더 많은 메트릭 집합을 제공하려면, _커스텀 메트릭 API_ 를 사용하는 
+추가 [메트릭 파이프라인](/ko/docs/tasks/debug/debug-cluster/resource-usage-monitoring/#full-metrics-pipeline)을 배포하여 
+기본 메트릭 API를 보충할 수 있다.
+{{< /note >}}
+
+
+그림 1은 리소스 메트릭 파이프라인의 아키텍처를 나타낸다.
+
+{{< mermaid >}}
+flowchart RL
+subgraph cluster[클러스터]
+direction RL
+S[ <br><br> ]
+A[Metrics-<br>Server]
+subgraph B[노드]
+direction TB
+D[cAdvisor] --> C[kubelet]
+E[컨테이너<br>런타임] --> D
+E1[컨테이너<br>런타임] --> D
+P[파드 데이터] -.- C
+end
+L[API<br>서버]
+W[HPA]
+C ---->|요약<br>API| A -->|메트릭<br>API| L --> W
+end
+L ---> K[kubectl<br>top]
+classDef box fill:#fff,stroke:#000,stroke-width:1px,color:#000;
+class W,B,P,K,cluster,D,E,E1 box
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class S spacewhite
+classDef k8s fill:#326ce5,stroke:#fff,stroke-width:1px,color:#fff;
+class A,L,C k8s
+{{< /mermaid >}}
+
+그림 1. 리소스 메트릭 파이프라인
+
+그림의 오른쪽에서 왼쪽 순으로, 아키텍처 구성 요소는 다음과 같다.
+
+* [cAdvisor](https://github.com/google/cadvisor): kubelet에 포함된 컨테이너 메트릭을 
+  수집, 집계, 노출하는 데몬
+* [kubelet](/ko/docs/concepts/overview/components/#kubelet): 컨테이너 리소스 관리를 위한 노드 에이전트. 
+  리소스 메트릭은 kubelet API 엔드포인트 `/metrics/resource` 및 
+  `/stats` 를 사용하여 접근 가능하다.
+* [요약 API](#summary-api-source): `/stats` 엔드포인트를 통해 사용할 수 있는 
+  노드 별 요약된 정보를 탐색 및 수집할 수 있도록 kubelet이 제공하는 API
+* [metrics-server](#metrics-server): 각 kubelet으로부터 수집한 리소스 메트릭을 수집 및 집계하는 클러스터 애드온 구성 요소. 
+  API 서버는 HPA, VPA 및 `kubectl top` 명령어가 사용할 수 있도록 메트릭 API를 제공한다. 
+  metrics-server는 메트릭 API에 대한 기준 구현(reference implementation) 중 하나이다.
+* [메트릭 API](#metrics-api): 워크로드 오토스케일링에 사용되는 CPU 및 메모리 정보로의 접근을 지원하는 쿠버네티스 API. 
+  이를 클러스터에서 사용하려면, 
+  메트릭 API를 제공하는 API 확장(extension) 서버가 필요하다.
+
+  {{< note >}}
+  cAdvisor는 cgroups으로부터 메트릭을 가져오는 것을 지원하며, 리눅스의 일반적인 컨테이너 런타임은 이를 지원한다.
+  만약 다른 리소스 격리 메커니즘(예: 가상화)을 사용하는 컨테이너 런타임을 사용한다면, 
+  kubelet이 메트릭을 사용할 수 있기 위해서는 
+  해당 컨테이너 런타임이 
+  [CRI 컨테이너 메트릭](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-node/cri-container-stats.md)을 지원해야 한다.
+  {{< /note >}}
+
+<!-- body -->
+
+## 메트릭 API {#metrics-api}
+{{< feature-state for_k8s_version="1.8" state="beta" >}}
+
+metrics-server는 메트릭 API에 대한 구현이다. 
+이 API는 클러스터 내 노드와 파드의 CPU 및 메모리 사용 정보에 접근할 수 있게 해 준다. 
+이것의 주 역할은 리소스 사용 메트릭을 쿠버네티스 오토스케일러 구성 요소에 제공하는 것이다.
+
+다음은 `minikube` 노드에 대한 메트릭 API 요청 예시이며 
+가독성 향상을 위해 `jq`를 활용한다.
+
+```shell
+kubectl get --raw "/apis/metrics.k8s.io/v1beta1/nodes/minikube" | jq '.'
+```
+
+다음은 `curl`을 이용하여 동일한 API 호출을 하는 명령어다.
+
+```shell
+curl http://localhost:8080/apis/metrics.k8s.io/v1beta1/nodes/minikube
+```
+
+응답 예시는 다음과 같다.
+
+```json
+{
+  "kind": "NodeMetrics",
+  "apiVersion": "metrics.k8s.io/v1beta1",
+  "metadata": {
+    "name": "minikube",
+    "selfLink": "/apis/metrics.k8s.io/v1beta1/nodes/minikube",
+    "creationTimestamp": "2022-01-27T18:48:43Z"
+  },
+  "timestamp": "2022-01-27T18:48:33Z",
+  "window": "30s",
+  "usage": {
+    "cpu": "487558164n",
+    "memory": "732212Ki"
+  }
+}
+```
+
+다음은 `kube-system` 네임스페이스 내의 `kube-scheduler-minikube` 파드에 대한 
+메트릭 API 요청 예시이며 가독성 향상을 위해 `jq`를 활용한다.
+
+```shell
+kubectl get --raw "/apis/metrics.k8s.io/v1beta1/namespaces/kube-system/pods/kube-scheduler-minikube" | jq '.'
+```
+
+다음은 `curl`을 이용하여 동일한 API 호출을 하는 명령어다.
+
+```shell
+curl http://localhost:8080/apis/metrics.k8s.io/v1beta1/namespaces/kube-system/pods/kube-scheduler-minikube
+```
+
+응답 예시는 다음과 같다.
+
+```json
+{
+  "kind": "PodMetrics",
+  "apiVersion": "metrics.k8s.io/v1beta1",
+  "metadata": {
+    "name": "kube-scheduler-minikube",
+    "namespace": "kube-system",
+    "selfLink": "/apis/metrics.k8s.io/v1beta1/namespaces/kube-system/pods/kube-scheduler-minikube",
+    "creationTimestamp": "2022-01-27T19:25:00Z"
+  },
+  "timestamp": "2022-01-27T19:24:31Z",
+  "window": "30s",
+  "containers": [
+    {
+      "name": "kube-scheduler",
+      "usage": {
+        "cpu": "9559630n",
+        "memory": "22244Ki"
+      }
+    }
+  ]
+}
+```
+
+메트릭 API는 [k8s.io/metrics](https://github.com/kubernetes/metrics) 저장소에 정의되어 있다. 
+`metrics.k8s.io` API를 사용하기 위해서는 
+[API 집계(aggregation) 계층](/docs/tasks/extend-kubernetes/configure-aggregation-layer/)을 활성화하고 
+[APIService](/docs/reference/kubernetes-api/cluster-resources/api-service-v1/)를 등록해야 한다.
+
+메트릭 API에 대해 더 알아보려면, [리소스 메트릭 API 디자인](https://github.com/kubernetes/design-proposals-archive/blob/main/instrumentation/resource-metrics-api.md),
+[metrics-server 저장소](https://github.com/kubernetes-sigs/metrics-server) 및 
+[리소스 메트릭 API](https://github.com/kubernetes/metrics#resource-metrics-api)를 참고한다.
+
+
+{{< note >}}
+메트릭 API에 접근하려면 먼저 메트릭 API를 제공하는 
+metrics-server 또는 대체 어댑터를 배포해야 한다.
+{{< /note >}}
+
+## 리소스 사용량 측정 {#measuring-resource-usage}
+
+### CPU
+
+CPU는 `cpu` 단위로 측정된 평균 코어 사용량 형태로 보고된다. 쿠버네티스에서 1 cpu는 
+클라우드 제공자의 경우 1 vCPU/코어에 해당하고, 베어메탈 인텔 프로세서의 경우 1 하이퍼-스레드에 해당한다.
+
+이 값은 커널(Linux 및 Windows 커널 모두)에서 제공하는 누적 CPU 카운터에 대한 
+비율을 취하여 얻어진다. 
+CPU 값 계산에 사용된 타임 윈도우는 메트릭 API의 `window` 필드에 표시된다.
+
+쿠버네티스가 어떻게 CPU 리소스를 할당하고 측정하는지 더 알아보려면, 
+[CPU의 의미](/ko/docs/concepts/configuration/manage-resources-containers/#meaning-of-cpu)를 참고한다.
+
+### 메모리
+
+메모리는 메트릭을 수집하는 순간에 바이트 단위로 측정된 워킹 셋(working set) 형태로 보고된다.
+
+이상적인 환경에서, "워킹 셋"은 메모리가 부족한 상태더라도 해제할 수 없는 사용 중인 메모리의 양이다. 
+그러나 워킹 셋의 계산 방법은 호스트 OS에 따라 다르며 
+일반적으로 추정치를 추출하기 위해 휴리스틱을 많이 사용한다.
+
+컨테이너의 워킹 셋에 대한 쿠버네티스 모델은 컨테이너 런타임이 해당 컨테이너와 연결된 익명(anonymous) 메모리를 계산할 것으로 예상한다. 
+호스트 OS가 항상 페이지를 회수할 수는 없기 때문에, 
+워킹 셋 메트릭에는 일반적으로 일부 캐시된 (파일 기반) 메모리도 포함된다.
+
+쿠버네티스가 어떻게 메모리 리소스를 할당하고 측정하는지 더 알아보려면, 
+[메모리의 의미](/ko/docs/concepts/configuration/manage-resources-containers/#meaning-of-memory)를 참고한다.
+
+## metrics-server {#metrics-server}
+
+metrics-server는 kubelet으로부터 리소스 메트릭을 수집하고, 
+이를 HPA(Horizontal Pod Autoscaler) 및 VPA(Vertical Pod Autoscaler)가 활용할 수 있도록 쿠버네티스 API 서버 내에서 메트릭 API(Metrics API)를 통해 노출한다. 
+`kubectl top` 명령을 사용하여 이 메트릭을 확인해볼 수도 있다.
+
+metrics-server는 쿠버네티스 API를 사용하여 클러스터의 노드와 파드를 추적한다. 
+metrics-server는 각 노드에 HTTP를 통해 질의하여 메트릭을 수집한다. 
+metrics-server는 또한 파드 메타데이터의 내부적 뷰를 작성하고, 파드 헬스(health)에 대한 캐시를 유지한다. 
+이렇게 캐시된 파드 헬스 정보는 metrics-server가 제공하는 확장 API(extension API)를 통해 이용할 수 있다.
+
+HPA 질의에 대한 예시에서, 예를 들어 HPA 질의에 대한 경우, 
+metrics-server는 디플로이먼트의 어떤 파드가 레이블 셀렉터 조건을 만족하는지 판별해야 한다.
+
+metrics-server는 각 노드로부터 메트릭을 수집하기 위해 [kubelet](/docs/reference/command-line-tools-reference/kubelet/) API를 호출한다. 
+사용 중인 metrics-server 버전에 따라, 다음의 엔드포인트를 사용한다.
+
+* v0.6.0 이상: 메트릭 리소스 엔드포인트 `/metrics/resource`
+* 이전 버전: 요약 API 엔드포인트 `/stats/summary`
+
+metrics-server에 대한 더 많은 정보는 
+[metrics-server 저장소](https://github.com/kubernetes-sigs/metrics-server)를 확인한다.
+
+또한 다음을 참고할 수도 있다.
+
+* [metrics-server 디자인](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/instrumentation/metrics-server.md)
+* [metrics-server 자주 묻는 질문](https://github.com/kubernetes-sigs/metrics-server/blob/master/FAQ.md)
+* [metrics-server 알려진 이슈](https://github.com/kubernetes-sigs/metrics-server/blob/master/KNOWN_ISSUES.md)
+* [metrics-server 릴리스](https://github.com/kubernetes-sigs/metrics-server/releases)
+* [Horizontal Pod Autoscaling](/ko/docs/tasks/run-application/horizontal-pod-autoscale/)
+
+### 요약 API(Summary API) 소스 {#summary-api-source}
+
+[Kubelet](/docs/reference/command-line-tools-reference/kubelet/)은 
+노드, 볼륨, 파드, 컨테이너 수준의 통계를 수집하며, 
+소비자(consumer)가 읽을 수 있도록 이 통계를 
+[요약 API](https://github.com/kubernetes/kubernetes/blob/7d309e0104fedb57280b261e5677d919cb2a0e2d/staging/src/k8s.io/kubelet/pkg/apis/stats/v1alpha1/types.go)에 기록한다.
+
+다음은 `minikube` 노드에 대한 요약 API 요청 예시이다.
+
+```shell
+kubectl get --raw "/api/v1/nodes/minikube/proxy/stats/summary"
+```
+
+다음은 `curl`을 이용하여 동일한 API 호출을 하는 명령어다.
+
+```shell
+curl http://localhost:8080/api/v1/nodes/minikube/proxy/stats/summary
+```
+
+{{< note >}}
+metrics-server 0.6.x 버전부터, 
+요약 API `/stats/summary` 엔드포인트가 `/metrics/resource` 엔드포인트로 대체될 것이다.
+{{< /note >}}
diff --git a/content/ko/docs/tasks/debug-application-cluster/resource-usage-monitoring.md b/content/ko/docs/tasks/debug/debug-cluster/resource-usage-monitoring.md
similarity index 59%
rename from content/ko/docs/tasks/debug-application-cluster/resource-usage-monitoring.md
rename to content/ko/docs/tasks/debug/debug-cluster/resource-usage-monitoring.md
index 21c5c3decf..396538b395 100644
--- a/content/ko/docs/tasks/debug-application-cluster/resource-usage-monitoring.md
+++ b/content/ko/docs/tasks/debug/debug-cluster/resource-usage-monitoring.md
@@ -1,6 +1,9 @@
 ---
+
+
 content_type: concept
 title: 리소스 모니터링 도구
+weight: 15
 ---
 
 <!-- overview -->
@@ -31,16 +34,18 @@ title: 리소스 모니터링 도구
 [metrics-server](https://github.com/kubernetes-sigs/metrics-server)에
 의해서 수집되며 `metrics.k8s.io` API를 통해 노출된다.
 
-metrics-server는 클러스터 상의 모든 노드를 발견하고 각 노드의
-[Kubelet](/docs/reference/command-line-tools-reference/kubelet/)에 CPU와 메모리 
-사용량을 질의한다. Kubelet은 쿠버네티스 마스터와 노드 간의 다리 역할을 해서
-머신에서 구동되는 파드와 컨테이너를 관리한다. Kubelet은 각각의 파드를 해당하는
-컨테이너로 변환하고 컨테이너 런타임 인터페이스를 통해서 컨테이너 런타임에서
-개별 컨테이너의 사용량 통계를 가져온다. Kubelet은 이 정보를 레거시 도커와의
-통합을 위해 kubelet에 통합된 cAdvisor를 통해 가져온다. 그 다음으로 취합된 파드
-리소스 사용량 통계를 metric-server 리소스 메트릭 API를 통해 노출한다. 이 API는
-kubelet의 인증이 필요한 읽기 전용 포트 상의 `/metrics/resource/v1beta1`에서
-제공된다.
+metrics-server는 클러스터 상의 모든 노드를 발견하고 
+각 노드의 [kubelet](/docs/reference/command-line-tools-reference/kubelet/)에 
+CPU와 메모리 사용량을 질의한다. 
+Kubelet은 쿠버네티스 마스터와 노드 간의 다리 역할을 하면서 
+머신에서 구동되는 파드와 컨테이너를 관리한다. 
+Kubelet은 각각의 파드를 해당하는 컨테이너에 매치시키고 
+컨테이너 런타임 인터페이스를 통해 
+컨테이너 런타임에서 개별 컨테이너의 사용량 통계를 가져온다. 
+Kubelet은 이 정보를 레거시 도커와의 통합을 위해 kubelet에 통합된 cAdvisor를 통해 가져온다. 
+그 다음으로 취합된 파드 리소스 사용량 통계를 metric-server 리소스 메트릭 API를 통해 노출한다. 
+이 API는 kubelet의 인증이 필요한 읽기 전용 포트 상의 
+`/metrics/resource/v1beta1`에서 제공된다.
 
 ## 완전한 메트릭 파이프라인
 
@@ -51,5 +56,17 @@ kubelet의 인증이 필요한 읽기 전용 포트 상의 `/metrics/resource/v1
 `custom.metrics.k8s.io`와 `external.metrics.k8s.io` API를 구현한 어댑터를 통해
 노출한다.
 
-CNCF 프로젝트인, [프로메테우스](https://prometheus.io)는 기본적으로 쿠버네티스, 노드, 프로메테우스 자체를 모니터링할 수 있다.
+CNCF 프로젝트인 [프로메테우스](https://prometheus.io)는 기본적으로 쿠버네티스, 노드, 프로메테우스 자체를 모니터링할 수 있다.
 CNCF 프로젝트가 아닌 완전한 메트릭 파이프라인 프로젝트는 쿠버네티스 문서의 범위가 아니다.
+
+## {{% heading "whatsnext" %}}
+
+
+다음과 같은 추가 디버깅 도구에 대해 더 알아본다.
+
+* [로깅](/ko/docs/concepts/cluster-administration/logging/)
+* [모니터링](/ko/docs/tasks/debug/debug-cluster/resource-usage-monitoring/)
+* [`exec`를 통해 컨테이너에 접속하기](/ko/docs/tasks/debug/debug-application/get-shell-running-container/)
+* [프록시를 통해 컨테이너에 연결하기](/docs/tasks/extend-kubernetes/http-proxy-access-api/)
+* [포트 포워딩을 사용해서 클러스터 내 애플리케이션에 접근하기](/ko/docs/tasks/access-application-cluster/port-forward-access-application-cluster/)
+* [crictl을 사용하여 쿠버네티스 노드 조사하기](/docs/tasks/debug/debug-cluster/crictl/)
diff --git a/content/ko/docs/tasks/extend-kubernetes/setup-konnectivity.md b/content/ko/docs/tasks/extend-kubernetes/setup-konnectivity.md
new file mode 100644
index 0000000000..5bc131af19
--- /dev/null
+++ b/content/ko/docs/tasks/extend-kubernetes/setup-konnectivity.md
@@ -0,0 +1,85 @@
+---
+title: Konnectivity 서비스 설정
+content_type: task
+weight: 70
+---
+
+<!-- overview -->
+
+Konnectivity 서비스는 컨트롤 플레인에 클러스터 통신을 위한 TCP 수준 프록시를 
+제공한다.
+
+## {{% heading "prerequisites" %}}
+
+쿠버네티스 클러스터가 있어야 하며, kubectl 명령줄 도구가 
+클러스터와 통신하도록 설정되어 있어야 한다. 컨트롤 플레인 호스트가 아닌 
+두 개 이상의 노드로 구성된 클러스터에서 이 튜토리얼을 수행하는 것을 권장한다. 
+클러스터가 없다면, [minikube](https://minikube.sigs.k8s.io/docs/tutorials/multi_node/)를 
+이용하여 생성할 수 있다.
+
+<!-- steps -->
+
+## Konnectivity 서비스 설정
+
+다음 단계에는 송신(egress) 설정이 필요하다. 예를 들면 다음과 같다.
+
+{{< codenew file="admin/konnectivity/egress-selector-configuration.yaml" >}}
+
+Konnectivity 서비스를 사용하고 네트워크 트래픽을 클러스터 노드로 보내도록 
+API 서버를 구성해야 한다.
+
+1. [Service Account Token Volume Projection](/docs/tasks/configure-pod-container/configure-service-account/#service-account-token-volume-projection) 
+기능이 활성화되어 있는지 확인한다. 
+쿠버네티스 v1.20부터는 기본적으로 활성화되어 있다.
+1. `admin/konnectivity/egress-selector-configuration.yaml`과 같은 송신 구성 파일을 생성한다.
+1. API 서버의 `--egress-selector-config-file` 플래그를 
+API 서버 송신 구성 파일의 경로로 설정한다.
+1. UDS 연결을 사용하는 경우 kube-apiserver에 볼륨 구성을 추가한다.
+   ```yaml
+   spec:
+     containers:
+       volumeMounts:
+       - name: konnectivity-uds
+         mountPath: /etc/kubernetes/konnectivity-server
+         readOnly: false
+     volumes:
+     - name: konnectivity-uds
+       hostPath:
+         path: /etc/kubernetes/konnectivity-server
+         type: DirectoryOrCreate
+   ```
+
+konnectivity-server에 대한 인증서 및 kubeconfig를 생성하거나 얻는다.
+예를 들어 OpenSSL 커맨드라인 툴을 사용하여 컨트롤 플레인 호스트에서 
+클러스터 CA 인증서 `/etc/kubernetes/pki/ca.crt`를 사용하여 X.509 인증서를 발급할 수 있다.
+
+```bash
+openssl req -subj "/CN=system:konnectivity-server" -new -newkey rsa:2048 -nodes -out konnectivity.csr -keyout konnectivity.key -out konnectivity.csr
+openssl x509 -req -in konnectivity.csr -CA /etc/kubernetes/pki/ca.crt -CAkey /etc/kubernetes/pki/ca.key -CAcreateserial -out konnectivity.crt -days 375 -sha256
+SERVER=$(kubectl config view -o jsonpath='{.clusters..server}')
+kubectl --kubeconfig /etc/kubernetes/konnectivity-server.conf config set-credentials system:konnectivity-server --client-certificate konnectivity.crt --client-key konnectivity.key --embed-certs=true
+kubectl --kubeconfig /etc/kubernetes/konnectivity-server.conf config set-cluster kubernetes --server "$SERVER" --certificate-authority /etc/kubernetes/pki/ca.crt --embed-certs=true
+kubectl --kubeconfig /etc/kubernetes/konnectivity-server.conf config set-context system:konnectivity-server@kubernetes --cluster kubernetes --user system:konnectivity-server
+kubectl --kubeconfig /etc/kubernetes/konnectivity-server.conf config use-context system:konnectivity-server@kubernetes
+rm -f konnectivity.crt konnectivity.key konnectivity.csr
+```
+
+다음으로 Konnectivity 서버와 에이전트를 배포해야 한다.
+[kubernetes-sigs/apiserver-network-proxy](https://github.com/kubernetes-sigs/apiserver-network-proxy)에서 
+구현을 참조할 수 있다.
+
+컨트롤 플레인 노드에 Konnectivity 서버를 배포한다. 제공된 
+`konnectivity-server.yaml` 매니페스트는 
+쿠버네티스 구성 요소가 클러스터에 {{< glossary_tooltip text="스태틱 파드(static Pod)"
+term_id="static-pod" >}}로 배포되었다고 가정한다. 그렇지 않은 경우에는 Konnectivity 
+서버를 데몬셋(DaemonSet)으로 배포할 수 있다.
+
+{{< codenew file="admin/konnectivity/konnectivity-server.yaml" >}}
+
+그런 다음 클러스터에 Konnectivity 에이전트를 배포한다.
+
+{{< codenew file="admin/konnectivity/konnectivity-agent.yaml" >}}
+
+마지막으로 클러스터에서 RBAC가 활성화된 경우 관련 RBAC 규칙을 생성한다.
+
+{{< codenew file="admin/konnectivity/konnectivity-rbac.yaml" >}}
diff --git a/content/ko/docs/tasks/inject-data-application/define-command-argument-container.md b/content/ko/docs/tasks/inject-data-application/define-command-argument-container.md
index aae34dc3b9..e785dcf39b 100644
--- a/content/ko/docs/tasks/inject-data-application/define-command-argument-container.md
+++ b/content/ko/docs/tasks/inject-data-application/define-command-argument-container.md
@@ -37,7 +37,6 @@ weight: 10
 
 {{< note >}}
 `command` 필드는 일부 컨테이너 런타임에서 `entrypoint`에 해당된다.
-아래의 [참고사항](#참고사항)을 확인하자.
 {{< /note >}}
 
 이 예제에서는 한 개의 컨테이너를 실행하는 파드를 생성한다. 파드를 위한 구성
@@ -111,46 +110,9 @@ command: ["/bin/sh"]
 args: ["-c", "while true; do echo hello; sleep 10;done"]
 ```
 
-## 참고사항
-
-이 테이블은 도커와 쿠버네티스에서 사용되는 필드 이름들을 정리한 것이다.
-
-|                   설명                  |       도커 필드 이름      |    쿠버네티스 필드 이름    |
-|----------------------------------------|------------------------|-----------------------|
-|  컨테이너에서 실행되는 커맨드                 |  Entrypoint            |      command          |
-|  커맨드에 전달되는 인자들                    |  Cmd                   |      arg              |
-
-기본 Entrypoint와 Cmd 값을 덮어쓰려고 한다면, 아래의 규칙들이 적용된다.
-
-* 만약 컨테이너를 위한 `command` 값이나 `args` 값을 제공하지 않는다면, 도커 이미지 안에
-제공되는 기본 값들이 사용된다.
-
-* 만약 컨테이너를 위한 `command` 값을 제공하고, `args` 값을 제공하지 않는다면,
-제공된 `command` 값만이 사용된다. 도커 이미지 안에 정의된 기본 EntryPoint 값과 기본
-Cmd 값은 덮어쓰여진다.
-
-* 만약 컨테이너를 위한 `args` 값만 제공한다면, 도커 이미지 안에 정의된 기본 EntryPoint
-값이 정의한 `args` 값들과 함께 실행된다.
-
-* `command` 값과 `args` 값을 동시에 정의한다면, 도커 이미지 안에 정의된 기본
-EntryPoint 값과 기본 Cmd 값이 덮어쓰여진다. `command`가 `args` 값과 함께
-실행된다.
-
-여기 몇 가지 예시들이 있다.
-
-| 이미지 Entrypoint    |    이미지 Cmd      | 컨테이너 command      |  컨테이너 args      |    실행되는 커맨드   |
-|--------------------|------------------|---------------------|--------------------|------------------|
-|     `[/ep-1]`      |   `[foo bar]`    | &lt;설정되지 않음&gt;  | &lt;설정되지 않음&gt; | `[ep-1 foo bar]` |
-|     `[/ep-1]`      |   `[foo bar]`    |      `[/ep-2]`      | &lt;설정되지 않음&gt; |     `[ep-2]`     |
-|     `[/ep-1]`      |   `[foo bar]`    | &lt;설정되지 않음&gt;  |     `[zoo boo]`    | `[ep-1 zoo boo]` |
-|     `[/ep-1]`      |   `[foo bar]`    |   `[/ep-2]`         |     `[zoo boo]`    | `[ep-2 zoo boo]` |
-
-
-
-
 ## {{% heading "whatsnext" %}}
 
 
 * [파드와 컨테이너를 구성하는 방법](/ko/docs/tasks/)에 대해 더 알아본다.
-* [컨테이너 안에서 커맨드를 실행하는 방법](/docs/tasks/debug-application-cluster/get-shell-running-container/)에 대해 더 알아본다.
+* [컨테이너 안에서 커맨드를 실행하는 방법](/ko/docs/tasks/debug/debug-application/get-shell-running-container/)에 대해 더 알아본다.
 * [컨테이너](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core)를 확인한다.
diff --git a/content/ko/docs/tasks/inject-data-application/define-environment-variable-container.md b/content/ko/docs/tasks/inject-data-application/define-environment-variable-container.md
index 5e23ba831e..40272c3060 100644
--- a/content/ko/docs/tasks/inject-data-application/define-environment-variable-container.md
+++ b/content/ko/docs/tasks/inject-data-application/define-environment-variable-container.md
@@ -110,6 +110,6 @@ spec:
 
 ## {{% heading "whatsnext" %}}
 
-* [환경 변수](/docs/tasks/inject-data-application/environment-variable-expose-pod-information/)에 대해 알아본다.
+* [환경 변수](/ko/docs/tasks/inject-data-application/environment-variable-expose-pod-information/)에 대해 알아본다.
 * [시크릿을 환경 변수로 사용하기](/ko/docs/concepts/configuration/secret/#시크릿을-환경-변수로-사용하기)에 대해 알아본다.
 * [EnvVarSource](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#envvarsource-v1-core)를 확인한다.
diff --git a/content/ko/docs/tasks/inject-data-application/define-interdependent-environment-variables.md b/content/ko/docs/tasks/inject-data-application/define-interdependent-environment-variables.md
new file mode 100644
index 0000000000..54e809cf00
--- /dev/null
+++ b/content/ko/docs/tasks/inject-data-application/define-interdependent-environment-variables.md
@@ -0,0 +1,77 @@
+---
+title: 종속 환경 변수 정의하기
+content_type: task
+weight: 20
+---
+
+<!-- overview -->
+
+본 페이지는 쿠버네티스 파드의 컨테이너를 위한 종속 환경 변수를 
+정의하는 방법에 대해 설명한다.
+
+
+## {{% heading "prerequisites" %}}
+
+
+{{< include "task-tutorial-prereqs.md" >}}
+
+
+<!-- steps -->
+
+## 컨테이너를 위한 종속 환경 변수 정의하기
+
+파드를 생성할 때, 파드 안에서 동작하는 컨테이너를 위한 종속 환경 변수를 설정할 수 있다. 
+종속 환경 변수를 설정하려면, 구성 파일에서 `env`의 `value`에 $(VAR_NAME)을 사용한다.
+
+이 예제에서, 한 개의 컨테이너를 실행하는 파드를 생성한다. 파드를 위한 구성 파일은 일반적인 방식으로 정의된 종속 환경 변수를 정의한다. 다음은 파드를 위한 구성 매니페스트 예시이다.
+
+{{< codenew file="pods/inject/dependent-envars.yaml" >}}
+
+1. YAML 구성 파일을 활용해 파드를 생성한다.
+
+    ```shell
+    kubectl apply -f https://k8s.io/examples/pods/inject/dependent-envars.yaml
+    ```
+    ```
+    pod/dependent-envars-demo created
+    ```
+
+2. 실행 중인 파드의 목록을 조회한다.
+
+    ```shell
+    kubectl get pods dependent-envars-demo
+    ```
+    ```
+    NAME                      READY     STATUS    RESTARTS   AGE
+    dependent-envars-demo     1/1       Running   0          9s
+    ```
+
+3. 파드 안에서 동작 중인 컨테이너의 로그를 확인한다.
+
+    ```shell
+    kubectl logs pod/dependent-envars-demo
+    ```
+    ```
+
+    UNCHANGED_REFERENCE=$(PROTOCOL)://172.17.0.1:80
+    SERVICE_ADDRESS=https://172.17.0.1:80
+    ESCAPED_REFERENCE=$(PROTOCOL)://172.17.0.1:80
+    ```
+
+위에서 보듯이, `SERVICE_ADDRESS`는 올바른 종속성 참조, `UNCHANGED_REFERENCE`는 잘못된 종속성 참조를 정의했으며 `ESCAPED_REFERENCE`는 종속성 참조를 건너뛴다.
+
+환경 변수가 참조될 때 해당 환경 변수가 미리 정의되어 있으면 `SERVICE_ADDRESS`의 경우와 같이 참조를 올바르게 해석할 수 있다.
+
+환경 변수가 정의되지 않았거나 일부 변수만 포함된 경우, 정의되지 않은 환경 변수는 `UNCHANGED_REFERENCE`의 경우와 같이 일반 문자열로 처리된다. 
+일반적으로 환경 변수 해석에 실패하더라도 컨테이너의 시작을 막지는 않는다.
+
+`$(VAR_NAME)` 구문은 이중 $로 이스케이프될 수 있다. (예: `$$(VAR_NAME)`)
+이스케이프된 참조는 참조된 변수가 정의되었는지 여부에 관계없이 해석을 수행하지 않는다. 
+이는 위의 `ESCAPED_REFERENCE`를 통해 확인할 수 있다.
+
+## {{% heading "whatsnext" %}}
+
+
+* [환경 변수](/ko/docs/tasks/inject-data-application/environment-variable-expose-pod-information/)에 대해 알아본다.
+* [EnvVarSource](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#envvarsource-v1-core)를 확인한다.
+
diff --git a/content/ko/docs/tasks/inject-data-application/distribute-credentials-secure.md b/content/ko/docs/tasks/inject-data-application/distribute-credentials-secure.md
new file mode 100644
index 0000000000..0ff081f99a
--- /dev/null
+++ b/content/ko/docs/tasks/inject-data-application/distribute-credentials-secure.md
@@ -0,0 +1,256 @@
+---
+title: 시크릿(Secret)을 사용하여 안전하게 자격증명 배포하기
+content_type: task
+weight: 50
+min-kubernetes-server-version: v1.6
+---
+
+<!-- overview -->
+본 페이지는 암호 및 암호화 키와 같은 민감한 데이터를 파드에 안전하게 
+주입하는 방법을 설명한다.
+
+## {{% heading "prerequisites" %}}
+
+
+{{< include "task-tutorial-prereqs.md" >}}
+
+### 시크릿 데이터를 base-64 표현으로 변환하기
+
+사용자 이름 `my-app`과 비밀번호 `39528$vdg7Jb`의 두 가지 시크릿 데이터가 필요하다고 가정한다.
+먼저 base64 인코딩 도구를 사용하여 사용자 이름과 암호를 base64 표현으로 변환한다. 다음은 일반적으로  사용 가능한 base64 프로그램을 사용하는 예제이다.
+
+```shell
+echo -n 'my-app' | base64
+echo -n '39528$vdg7Jb' | base64
+```
+
+사용자 이름의 base-64 표현이 `bXktYXBw`이고 암호의 base-64 표현이 `Mzk1MjgkdmRnN0pi`임을 
+출력을 통해 확인할 수 있다.
+
+{{< caution >}}
+사용자의 OS가 신뢰하는 로컬 툴을 사용하여 외부 툴의 보안 위험을 줄이자.
+{{< /caution >}}
+
+<!-- steps -->
+
+## 시크릿 생성하기
+
+다음은 사용자 이름과 암호가 들어 있는 시크릿을 생성하는 데 사용할 수 있는 
+구성 파일이다.
+
+{{< codenew file="pods/inject/secret.yaml" >}}
+
+1. 시크릿을 생성한다.
+
+    ```shell
+    kubectl apply -f https://k8s.io/examples/pods/inject/secret.yaml
+    ```
+
+2. 시크릿에 대한 정보를 확인한다.
+
+    ```shell
+    kubectl get secret test-secret
+    ```
+
+    Output:
+
+    ```
+    NAME          TYPE      DATA      AGE
+    test-secret   Opaque    2         1m
+    ```
+
+3. 시크릿에 대한 자세한 정보를 확인한다.
+
+    ```shell
+    kubectl describe secret test-secret
+    ```
+
+    Output:
+
+    ```
+    Name:       test-secret
+    Namespace:  default
+    Labels:     <none>
+    Annotations:    <none>
+
+    Type:   Opaque
+
+    Data
+    ====
+    password:   13 bytes
+    username:   7 bytes
+    ```
+
+### kubectl로 직접 시크릿 생성하기
+
+Base64 인코딩 단계를 건너뛰려면 `kubectl create secret` 명령을 사용하여 
+동일한 Secret을 생성할 수 있다. 다음은 예시이다.
+
+```shell
+kubectl create secret generic test-secret --from-literal='username=my-app' --from-literal='password=39528$vdg7Jb'
+```
+
+이와 같이 더 편리하게 사용할 수 있다. 앞에서 설명한 자세한 접근 방식은 각 단계를 
+명시적으로 실행하여 현재 상황을 확인할 수 있다.
+
+
+## 볼륨을 통해 시크릿 데이터에 접근할 수 있는 파드 생성하기
+
+다음은 파드를 생성하는 데 사용할 수 있는 구성 파일이다.
+
+{{< codenew file="pods/inject/secret-pod.yaml" >}}
+
+1. 파드를 생성한다.
+
+   ```shell
+   kubectl apply -f https://k8s.io/examples/pods/inject/secret-pod.yaml
+   ```
+
+2. 파드가 실행중인지 확인한다.
+
+   ```shell
+   kubectl get pod secret-test-pod
+   ```
+
+   Output:
+   ```
+   NAME              READY     STATUS    RESTARTS   AGE
+   secret-test-pod   1/1       Running   0          42m
+   ```
+
+3. 파드에서 실행 중인 컨테이너의 셸을 가져오자.
+   ```shell
+   kubectl exec -i -t secret-test-pod -- /bin/bash
+   ```
+
+4. 시크릿 데이터는 `/etc/secret-volume`에 마운트된 볼륨을 통해 
+컨테이너에 노출된다.
+
+   셸에서 `/etc/secret-volume` 디렉터리의 파일을 나열한다.
+   ```shell
+   # 컨테이너 내부의 셸에서 실행하자
+   ls /etc/secret-volume
+   ```
+   두 개의 파일과 각 파일의 시크릿 데이터 조각을 확인할 수 있다.
+   ```
+   password username
+   ```
+
+5. 셸에서 `username` 및 `password` 파일의 내용을 출력한다.
+   ```shell
+   # 컨테이너 내부의 셸에서 실행하자
+   echo "$( cat /etc/secret-volume/username )"
+   echo "$( cat /etc/secret-volume/password )"
+   ```
+   사용자 이름과 비밀번호가 출력된다.
+   ```
+   my-app
+   39528$vdg7Jb
+   ```
+
+## 시크릿 데이터를 사용하여 컨테이너 환경 변수 정의하기
+
+### 단일 시크릿 데이터로 컨테이너 환경 변수 정의하기
+
+*  환경 변수를 시크릿의 키-값 쌍으로 정의한다.
+
+   ```shell
+   kubectl create secret generic backend-user --from-literal=backend-username='backend-admin'
+   ```
+
+*  시크릿에 정의된 `backend-username` 값을 파드 명세의 `SECRET_USERNAME` 환경 변수에 할당한다.
+
+   {{< codenew file="pods/inject/pod-single-secret-env-variable.yaml" >}}
+
+*  파드를 생성한다.
+
+   ```shell
+   kubectl create -f https://k8s.io/examples/pods/inject/pod-single-secret-env-variable.yaml
+   ```
+
+*  셸에서 `SECRET_USERNAME` 컨테이너 환경 변수의 내용을 출력한다.
+
+   ```shell
+   kubectl exec -i -t env-single-secret -- /bin/sh -c 'echo $SECRET_USERNAME'
+   ```
+
+   출력은 다음과 같다.
+   ```
+   backend-admin
+   ```
+
+### 여러 시크릿 데이터로 컨테이너 환경 변수 정의하기
+
+*  이전 예제와 마찬가지로 시크릿을 먼저 생성한다.
+
+   ```shell
+   kubectl create secret generic backend-user --from-literal=backend-username='backend-admin'
+   kubectl create secret generic db-user --from-literal=db-username='db-admin'
+   ```
+
+*  파드 명세에 환경 변수를 정의한다.
+
+   {{< codenew file="pods/inject/pod-multiple-secret-env-variable.yaml" >}}
+
+*  파드를 생성한다.
+
+   ```shell
+   kubectl create -f https://k8s.io/examples/pods/inject/pod-multiple-secret-env-variable.yaml
+   ```
+
+*  셸에서 컨테이너 환경 변수를 출력한다.
+
+   ```shell
+   kubectl exec -i -t envvars-multiple-secrets -- /bin/sh -c 'env | grep _USERNAME'
+   ```
+   출력은 다음과 같다.
+   ```
+   DB_USERNAME=db-admin
+   BACKEND_USERNAME=backend-admin
+   ```
+
+
+## 시크릿의 모든 키-값 쌍을 컨테이너 환경 변수로 구성하기
+
+{{< note >}}
+이 기능은 쿠버네티스 v1.6 이상에서 사용할 수 있다.
+{{< /note >}}
+
+*  여러 키-값 쌍을 포함하는 시크릿을 생성한다.
+
+   ```shell
+   kubectl create secret generic test-secret --from-literal=username='my-app' --from-literal=password='39528$vdg7Jb'
+   ```
+
+*  envFrom을 사용하여 시크릿의 모든 데이터를 컨테이너 환경 변수로 정의한다. 시크릿의 키는 파드에서 환경 변수의 이름이 된다.
+
+    {{< codenew file="pods/inject/pod-secret-envFrom.yaml" >}}
+
+*  파드를 생성한다.
+
+   ```shell
+   kubectl create -f https://k8s.io/examples/pods/inject/pod-secret-envFrom.yaml
+   ```
+
+*  `username` 및 `password` 컨테이너 환경 변수를 셸에서 출력한다.
+
+  ```shell
+  kubectl exec -i -t envfrom-secret -- /bin/sh -c 'echo "username: $username\npassword: $password\n"'
+  ```
+
+  출력은 다음과 같다.
+  ```
+  username: my-app
+  password: 39528$vdg7Jb
+  ```
+
+### 참고
+
+* [시크릿](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#secret-v1-core)
+* [볼륨](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#volume-v1-core)
+* [파드](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#pod-v1-core)
+
+## {{% heading "whatsnext" %}}
+
+* [시크릿](/ko/docs/concepts/configuration/secret/)에 대해 더 배워 보기.
+* [볼륨](/ko/docs/concepts/storage/volumes/)에 대해 더 배워 보기.
diff --git a/content/ko/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information.md b/content/ko/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information.md
new file mode 100644
index 0000000000..7ed28d0dd3
--- /dev/null
+++ b/content/ko/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information.md
@@ -0,0 +1,273 @@
+---
+title: 파일로 컨테이너에 파드 정보 노출하기
+content_type: task
+weight: 40
+---
+
+<!-- overview -->
+
+본 페이지는 파드가 
+[`DownwardAPIVolumeFile`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#downwardapivolumefile-v1-core)을 사용하여 
+파드에서 실행되는 컨테이너에 자신에 대한 정보를 노출하는 방법에 대해 설명한다. 
+`DownwardAPIVolumeFile`은 파드 필드와 컨테이너 필드를 노출할 수 있다.
+
+## {{% heading "prerequisites" %}}
+
+{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+
+<!-- steps -->
+
+## 다운워드(Downward) API
+
+실행 중인 컨테이너에 파드 및 컨테이너 필드를 노출하는 방법에는 두 가지가 있다.
+
+* [환경 변수](/ko/docs/tasks/inject-data-application/environment-variable-expose-pod-information/#다운워드-downward-api)
+* 볼륨 파일
+
+파드 및 컨테이너 필드를 노출하는 이 두 가지 방법을 
+"다운워드 API"라고 한다.
+
+## 파드 필드 저장
+
+이 연습에서는 하나의 컨테이너를 가진 파드를 생성한다.
+다음은 파드에 대한 구성 파일이다.
+
+{{< codenew file="pods/inject/dapi-volume.yaml" >}}
+
+구성 파일에서 파드에 `downwardAPI` 볼륨이 있고 컨테이너가 `/etc/podinfo`에 볼륨을 마운트하는
+것을 확인할 수 있다.
+
+`downwardAPI` 아래의 배열을 살펴보자. 배열의 각 요소는 
+[DownwardAPIVolumeFile](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#downwardapivolumefile-v1-core)이다.
+첫 번째 요소는 파드의 `metadata.labels` 필드 값이 
+`labels`라는 파일에 저장되어야 함을 지정한다.
+두 번째 요소는 파드의 `annotations` 필드 값이 
+`annotations`라는 파일에 저장되어야 함을 지정한다.
+
+{{< note >}}
+이 예제의 필드는 파드에 있는 컨테이너의 필드가 아니라 
+파드 필드이다. 
+{{< /note >}}
+
+파드를 생성한다.
+
+```shell
+kubectl apply -f https://k8s.io/examples/pods/inject/dapi-volume.yaml
+```
+
+파드의 컨테이너가 실행 중인지 확인한다.
+
+```shell
+kubectl get pods
+```
+
+컨테이너의 로그를 본다.
+
+```shell
+kubectl logs kubernetes-downwardapi-volume-example
+```
+
+출력은 `labels` 파일과 `annotations` 파일의 내용을 보여준다.
+
+```shell
+cluster="test-cluster1"
+rack="rack-22"
+zone="us-est-coast"
+
+build="two"
+builder="john-doe"
+```
+
+파드에서 실행 중인 컨테이너의 셸을 가져온다.
+
+```shell
+kubectl exec -it kubernetes-downwardapi-volume-example -- sh
+```
+
+셸에서 `labels` 파일을 보자.
+
+```shell
+/# cat /etc/podinfo/labels
+```
+
+출력을 통해 모든 파드의 레이블이 
+`labels` 파일에 기록되었음을 확인할 수 있다.
+
+```shell
+cluster="test-cluster1"
+rack="rack-22"
+zone="us-est-coast"
+```
+
+마찬가지로 `annotations` 파일을 확인하자.
+
+```shell
+/# cat /etc/podinfo/annotations
+```
+
+`etc/podinfo` 디렉터리에 파일을 확인하자.
+
+```shell
+/# ls -laR /etc/podinfo
+```
+
+출력에서 `labels` 및 `annotations` 파일이 
+임시 하위 디렉터리에 있음을 알 수 있다. 이 예제에서는 
+`..2982_06_02_21_47_53.299460680`이다. `/etc/podinfo` 디렉터리에서 `..data`는 
+임시 하위 디렉토리에 대한 심볼릭 링크이다. `/etc/podinfo` 디렉토리에서 
+`labels`와 `annotations` 또한 심볼릭 링크이다.
+
+```
+drwxr-xr-x  ... Feb 6 21:47 ..2982_06_02_21_47_53.299460680
+lrwxrwxrwx  ... Feb 6 21:47 ..data -> ..2982_06_02_21_47_53.299460680
+lrwxrwxrwx  ... Feb 6 21:47 annotations -> ..data/annotations
+lrwxrwxrwx  ... Feb 6 21:47 labels -> ..data/labels
+
+/etc/..2982_06_02_21_47_53.299460680:
+total 8
+-rw-r--r--  ... Feb  6 21:47 annotations
+-rw-r--r--  ... Feb  6 21:47 labels
+```
+
+심볼릭 링크를 사용하면 메타데이터의 동적(dynamic) 원자적(atomic) 갱신이 가능하다.
+업데이트는 새 임시 디렉터리에 기록되고, `..data` 심볼릭 링크는 
+[rename(2)](http://man7.org/linux/man-pages/man2/rename.2.html)을 사용하여 원자적(atomic)으로 갱신한다.
+
+{{< note >}}
+다운워드 API를 [subPath](/ko/docs/concepts/storage/volumes/#using-subpath) 
+볼륨 마운트로 사용하는 컨테이너는 
+다운워드 API 업데이트를 수신하지 않는다.
+{{< /note >}}
+
+셸을 종료한다.
+
+```shell
+/# exit
+```
+
+## 컨테이너 필드 저장
+
+이전 연습에서는 파드 필드를 
+[`DownwardAPIVolumeFile`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#downwardapivolumefile-v1-core)에 저장하였다.
+이 다음 연습에서는 컨테이너 필드를 저장한다. 
+다음은 하나의 컨테이너를 가진 파드의 구성 파일이다.
+
+{{< codenew file="pods/inject/dapi-volume-resources.yaml" >}}
+
+구성 파일에서 파드에 [`downwardAPI` 볼륨](/ko/docs/concepts/storage/volumes/#downwardapi)이 있고 
+컨테이너는 `/etc/podinfo`에 
+볼륨을 마운트하는 것을 확인할 수 있다.
+
+`downwardAPI` 아래의 `items` 배열을 살펴보자. 배열의 각 요소는 
+[`DownwardAPIVolumeFile`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#downwardapivolumefile-v1-core)이다.
+
+첫 번째 요소는 `client-container`라는 컨테이너에서 
+`1m`으로 지정된 형식의 `limits.cpu` 필드 값이 
+`cpu_limit`이라는 파일에 저장되어야 함을 지정한다. `divisor` 필드는 선택 사항이며 
+기본값인 `1`은 CPU에 대한 코어 및 메모리에 대한 바이트를 의미한다.
+
+파드를 생성한다.
+
+```shell
+kubectl apply -f https://k8s.io/examples/pods/inject/dapi-volume-resources.yaml
+```
+
+파드에서 실행 중인 컨테이너의 셸을 가져온다.
+
+```shell
+kubectl exec -it kubernetes-downwardapi-volume-example-2 -- sh
+```
+
+셸에서 `cpu_limit` 파일을 확인한다.
+
+```shell
+/# cat /etc/podinfo/cpu_limit
+```
+
+비슷한 명령을 통해 `cpu_request`, `mem_limit` 및 
+`mem_request` 파일을 확인할 수 있다.
+
+<!-- discussion -->
+
+<!-- TODO: This section should be extracted out of the task page. -->
+## 다운워드 API의 기능
+
+다음 정보는 환경 변수 및 `downwardAPI` 볼륨을 통해 
+컨테이너에서 사용할 수 있다.
+
+* `fieldRef`를 통해 다음 정보를 사용할 수 있다.
+
+  * `metadata.name` - 파드의 이름
+  * `metadata.namespace` - 파드의 네임스페이스(Namespace)
+  * `metadata.uid` - 파드의 UID
+  * `metadata.labels['<KEY>']` - 파드의 레이블 `<KEY>` 값 
+    (예를 들어, `metadata.labels['mylabel']`)
+  * `metadata.annotations['<KEY>']` - 파드의 어노테이션 `<KEY>` 값 
+    (예를 들어, `metadata.annotations['myannotation']`)
+
+* `resourceFieldRef`를 통해 다음 정보를 사용할 수 있다.
+
+  * 컨테이너의 CPU 한도(limit)
+  * 컨테이너의 CPU 요청(request)
+  * 컨테이너의 메모리 한도(limit)
+  * 컨테이너의 메모리 요청(request)
+  * 컨테이너의 hugepages 한도(limit) (`DownwardAPIHugePages` 
+    [기능 게이트(feature gate)](/ko/docs/reference/command-line-tools-reference/feature-gates/)가 활성화된 경우)
+  * 컨테이너의 hugepages 요청(request) (`DownwardAPIHugePages` 
+    [기능 게이트(feature gate)](/ko/docs/reference/command-line-tools-reference/feature-gates/)가 활성화된 경우)
+  * 컨테이너의 임시-스토리지 한도(limit)
+  * 컨테이너의 임시-스토리지 요청(request)
+
+`downwardAPI` 볼륨 `fieldRef`를 통해 
+다음 정보를 사용할 수 있다.
+
+* `metadata.labels` - 한 줄에 하나의 레이블이 있는 
+  `label-key="escaped-label-value"` 형식의 모든 파드 레이블
+* `metadata.annotations` - 한 줄에 하나의 어노테이션이 있는 
+  `annotation-key="escaped-annotation-value"` 형식의 모든 파드 어노테이션
+
+환경 변수를 통해 다음 정보를 사용할 수 있다.
+
+* `status.podIP` - 파드의 IP 주소
+* `spec.serviceAccountName` - 파드의 서비스 계정 이름
+* `spec.nodeName` - 스케줄러가 항상 파드를 스케줄링하려고 시도할 
+  노드의 이름
+* `status.hostIP` - 파드가 할당될 노드의 IP 주소
+
+{{< note >}}
+컨테이너에 대해 CPU 및 메모리 한도(limit)가 지정되지 않은 경우 다운워드 API는 기본적으로 
+CPU 및 메모리에 대해 할당 가능한 노드 값으로 설정한다.
+{{< /note >}}
+
+## 특정 경로 및 파일 권한에 대한 프로젝트 키
+
+키(key)를 파드 안의 특정 경로에, 특정 권한으로, 파일 단위로 투영(project)할 수 있다.
+자세한 내용은 
+[시크릿(Secrets)](/ko/docs/concepts/configuration/secret/)을 참조한다.
+
+## 다운워드 API에 대한 동기
+
+컨테이너가 쿠버네티스에 과도하게 결합되지 않고 
+자체에 대한 정보를 갖는 것이 때때로 유용하다. 
+다운워드 API를 사용하면 컨테이너가 쿠버네티스 클라이언트 또는 API 서버를 사용하지 않고 
+자체 또는 클러스터에 대한 정보를 사용할 수 있다.
+
+예를 들어 잘 알려진 특정 환경 변수에 고유 식별자가 있다고 가정하는 
+기존 애플리케이션이 있다. 한 가지 가능성은 애플리케이션을 래핑하는 것이지만 
+이는 지루하고 오류가 발생하기 쉬우며 낮은 결합 목표를 위반한다. 
+더 나은 옵션은 파드의 이름을 식별자로 사용하고 
+파드의 이름을 잘 알려진 환경 변수에 삽입하는 것이다.
+
+## {{% heading "whatsnext" %}}
+
+* 파드의 목표 상태(desired state)를 정의하는 
+  [`PodSpec`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core) API 정의를 확인한다.
+* 컨테이너가 접근할 파드 내의 일반 볼륨을 정의하는 
+  [`Volume`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#volume-v1-core) API 정의를 확인한다.
+* 다운워드 API 정보를 포함하는 볼륨을 정의하는 
+  [`DownwardAPIVolumeSource`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#downwardapivolumesource-v1-core) API 정의를 확인한다.
+* 다운워드 API 볼륨 내 파일을 채우기 위한 
+  오브젝트 또는 리소스 필드로의 레퍼런스를 포함하는 
+  [`DownwardAPIVolumeFile`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#downwardapivolumefile-v1-core) API 정의를 확인한다.
+* 컨테이너 리소스 및 이들의 출력 형식을 지정하는 
+  [`ResourceFieldSelector`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#resourcefieldselector-v1-core) API 정의를 확인한다.
diff --git a/content/ko/docs/tasks/inject-data-application/environment-variable-expose-pod-information.md b/content/ko/docs/tasks/inject-data-application/environment-variable-expose-pod-information.md
new file mode 100644
index 0000000000..951fb716f3
--- /dev/null
+++ b/content/ko/docs/tasks/inject-data-application/environment-variable-expose-pod-information.md
@@ -0,0 +1,157 @@
+---
+title: 환경 변수로 컨테이너에 파드 정보 노출하기
+content_type: task
+weight: 30
+---
+
+<!-- overview -->
+
+본 페이지는 파드에서 실행 중인 컨테이너에게 파드가 환경 변수를 사용해서 자신의 정보를 노출하는 방법에 
+대해 설명한다. 환경 변수는 파드 필드와 컨테이너 필드를 노출할 수 있다.
+
+
+
+
+## {{% heading "prerequisites" %}}
+
+
+{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+
+
+
+
+<!-- steps -->
+
+## 다운워드(Downward) API
+
+파드 및 컨테이너 필드를 실행 중인 컨테이너에 노출하는 두 가지 방법이 있다.
+
+* 환경 변수
+* [볼륨 파일](/ko/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/#다운워드-downward-api)
+
+파드 및 컨테이너 필드를 노출하는 이 두 가지 방법을 *다운워드 API*라고 한다.
+
+
+## 파드 필드를 환경 변수의 값으로 사용하자
+
+이 연습에서는 하나의 컨테이너를 가진 파드를 생성한다. 다음은 파드에 대한 구성 파일이다.
+
+{{< codenew file="pods/inject/dapi-envars-pod.yaml" >}}
+
+구성 파일에서 5개의 환경 변수를 확인할 수 있다. `env` 필드는 
+[EnvVars](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#envvar-v1-core)의 배열이다. 배열의 첫 번째 요소는 `MY_NODE_NAME` 환경 변수가 파드의 `spec.nodeName` 필드에서 값을 가져오도록 지정한다. 마찬가지로 다른 환경 변수도 파드 필드에서 이름을 가져온다.
+
+{{< note >}}
+이 예제의 필드는 파드에 있는 컨테이너의 필드가 아니라 파드 필드이다.
+{{< /note >}}
+
+파드를 생성한다.
+
+```shell
+kubectl apply -f https://k8s.io/examples/pods/inject/dapi-envars-pod.yaml
+```
+
+파드의 컨테이너가 실행중인지 확인한다.
+
+```shell
+kubectl get pods
+```
+
+컨테이너의 로그를 본다.
+
+```shell
+kubectl logs dapi-envars-fieldref
+```
+
+출력은 선택된 환경 변수의 값을 보여준다.
+
+```
+minikube
+dapi-envars-fieldref
+default
+172.17.0.4
+default
+```
+
+이러한 값이 로그에 출력된 이유를 보려면 구성 파일의 `command` 및 `args` 필드를 확인하자.
+컨테이너가 시작되면 5개의 환경 변수 값을 stdout에 쓰며 10초마다 이를 반복한다.
+
+다음으로 파드에서 실행 중인 컨테이너의 셸을 가져오자.
+
+```shell
+kubectl exec -it dapi-envars-fieldref -- sh
+```
+
+셸에서 환경 변수를 보자.
+
+```shell
+/# printenv
+```
+
+출력은 특정 환경 변수에 파드 필드 값이 할당되었음을 보여준다.
+
+```
+MY_POD_SERVICE_ACCOUNT=default
+...
+MY_POD_NAMESPACE=default
+MY_POD_IP=172.17.0.4
+...
+MY_NODE_NAME=minikube
+...
+MY_POD_NAME=dapi-envars-fieldref
+```
+
+## 컨테이너 필드를 환경 변수의 값으로 사용하기
+
+이전 연습에서는 파드 필드를 환경 변수의 값으로 사용했다. 이 다음 연습에서는 컨테이너 필드를 
+환경 변수의 값으로 사용한다. 다음은 하나의 컨테이너가 있는 파드의 구성 파일이다.
+
+{{< codenew file="pods/inject/dapi-envars-container.yaml" >}}
+
+구성 파일에서 4개의 환경 변수를 확인할 수 있다. `env` 필드는 
+[EnvVars](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#envvar-v1-core)의 배열이다. 배열의 첫 번째 요소는 `MY_CPU_REQUEST` 환경 변수가 `test-container`라는 컨테이너의 
+`requests.cpu` 필드에서 값을 가져오도록 지정한다. 마찬가지로 다른 환경 변수도 컨테이너 필드에서 
+값을 가져온다.
+
+파드를 생성한다.
+
+```shell
+kubectl apply -f https://k8s.io/examples/pods/inject/dapi-envars-container.yaml
+```
+
+파드의 컨테이너가 실행중인지 확인한다.
+
+```shell
+kubectl get pods
+```
+
+컨테이너의 로그를 본다.
+
+```shell
+kubectl logs dapi-envars-resourcefieldref
+```
+
+출력은 선택된 환경 변수의 값을 보여준다.
+
+```
+1
+1
+33554432
+67108864
+```
+
+
+
+## {{% heading "whatsnext" %}}
+
+
+* [컨테이너를 위한 환경 변수 정의하기](/ko/docs/tasks/inject-data-application/define-environment-variable-container/)
+* [PodSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core)
+* [컨테이너](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core)
+* [EnvVar](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#envvar-v1-core)
+* [EnvVarSource](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#envvarsource-v1-core)
+* [ObjectFieldSelector](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#objectfieldselector-v1-core)
+* [ResourceFieldSelector](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#resourcefieldselector-v1-core)
+
+
+
diff --git a/content/ko/docs/tasks/job/automated-tasks-with-cron-jobs.md b/content/ko/docs/tasks/job/automated-tasks-with-cron-jobs.md
index 26353959ef..9c17a984cd 100644
--- a/content/ko/docs/tasks/job/automated-tasks-with-cron-jobs.md
+++ b/content/ko/docs/tasks/job/automated-tasks-with-cron-jobs.md
@@ -127,12 +127,12 @@ kubectl delete cronjob hello
 ```
 
 크론 잡을 삭제하면 생성된 모든 잡과 파드가 제거되고 추가 잡 생성이 중지된다.
-[가비지(garbage) 수집](/ko/docs/concepts/workloads/controllers/garbage-collection/)에서 잡 제거에 대해 상세한 내용을 읽을 수 있다.
+[가비지(garbage) 수집](/ko/docs/concepts/architecture/garbage-collection/)에서 잡 제거에 대해 상세한 내용을 읽을 수 있다.
 
 ## 크론 잡 명세 작성
 
 다른 모든 쿠버네티스 구성과 마찬가지로, 크론 잡은 `apiVersion`, `kind` 그리고 `metadata` 필드가 필요하다. 구성 파일
-작업에 대한 일반적인 정보는 [애플리케이션 배포](/docs/tasks/run-application/run-stateless-application-deployment/)와
+작업에 대한 일반적인 정보는 [애플리케이션 배포](/ko/docs/tasks/run-application/run-stateless-application-deployment/)와
 [kubectl을 사용하여 리소스 관리하기](/ko/docs/concepts/overview/working-with-objects/object-management/) 문서를 참고한다.
 
 크론 잡 구성에는 [`.spec` 섹션](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status)도 필요하다.
diff --git a/content/ko/docs/tasks/job/parallel-processing-expansion.md b/content/ko/docs/tasks/job/parallel-processing-expansion.md
index fbf105024d..ddf1bd0b88 100644
--- a/content/ko/docs/tasks/job/parallel-processing-expansion.md
+++ b/content/ko/docs/tasks/job/parallel-processing-expansion.md
@@ -178,13 +178,13 @@ kubectl delete job -l jobgroup=jobexample
 
 
 ```liquid
-{%- set params = [{ "name": "apple", "url": "http://dbpedia.org/resource/Apple", },
+{% set params = [{ "name": "apple", "url": "http://dbpedia.org/resource/Apple", },
                   { "name": "banana", "url": "http://dbpedia.org/resource/Banana", },
                   { "name": "cherry", "url": "http://dbpedia.org/resource/Cherry" }]
 %}
-{%- for p in params %}
-{%- set name = p["name"] %}
-{%- set url = p["url"] %}
+{% for p in params %}
+{% set name = p["name"] %}
+{% set url = p["url"] %}
 ---
 apiVersion: batch/v1
 kind: Job
@@ -201,10 +201,10 @@ spec:
     spec:
       containers:
       - name: c
-        image: busybox
+        image: busybox:1.28
         command: ["sh", "-c", "echo Processing URL {{ url }} && sleep 5"]
       restartPolicy: Never
-{%- endfor %}
+{% endfor %}
 ```
 
 위의 템플릿은 파이썬 딕셔너리(dicts)로 구성된 항목(1-4행)을 사용하여 각 잡 오브젝트에 대해
diff --git a/content/ko/docs/tasks/manage-daemon/update-daemon-set.md b/content/ko/docs/tasks/manage-daemon/update-daemon-set.md
index 50a3a6ad2b..d8c7aa935b 100644
--- a/content/ko/docs/tasks/manage-daemon/update-daemon-set.md
+++ b/content/ko/docs/tasks/manage-daemon/update-daemon-set.md
@@ -11,6 +11,8 @@ weight: 10
 
 ## {{% heading "prerequisites" %}}
 
+{{< include "task-tutorial-prereqs.md" >}}
+
 <!-- steps -->
 
 ## 데몬셋 업데이트 전략
@@ -32,10 +34,12 @@ weight: 10
 데몬셋의 롤링 업데이트 기능을 사용하려면,
 `.spec.updateStrategy.type` 에 `RollingUpdate` 를 설정해야 한다.
 
-[`.spec.updateStrategy.rollingUpdate.maxUnavailable`](/ko/docs/concepts/workloads/controllers/deployment/#최대-불가max-unavailable)
-(기본값은 1)과
-[`.spec.minReadySeconds`](/ko/docs/concepts/workloads/controllers/deployment/#최소-대기-시간초)
-(기본값은 0)으로 
+[`.spec.updateStrategy.rollingUpdate.maxUnavailable`](/docs/reference/kubernetes-api/workload-resources/daemon-set-v1/#DaemonSetSpec)
+(기본값은 1),
+[`.spec.minReadySeconds`](/docs/reference/kubernetes-api/workload-resources/daemon-set-v1/#DaemonSetSpec)
+(기본값은 0),
+[`.spec.updateStrategy.rollingUpdate.maxSurge`](/docs/reference/kubernetes-api/workload-resources/daemon-set-v1/#DaemonSetSpec)
+(베타 기능, 기본값은 0)를 
 설정할 수도 있다.
 
 ### `RollingUpdate` 업데이트 전략으로 데몬셋 생성
@@ -143,7 +147,7 @@ daemonset "fluentd-elasticsearch" successfully rolled out
 #### 일부 노드에 리소스가 부족하다
 
 적어도 하나의 노드에서 새 데몬셋 파드를 스케줄링할 수 없어서 롤아웃이
-중단되었다. 노드에 [리소스가 부족](/docs/concepts/scheduling-eviction/node-pressure-eviction/)할 때
+중단되었다. 노드에 [리소스가 부족](/ko/docs/concepts/scheduling-eviction/node-pressure-eviction/)할 때
 발생할 수 있다.
 
 이 경우, `kubectl get nodes` 의 출력 결과와 다음의 출력 결과를 비교하여
diff --git a/content/ko/docs/tasks/manage-hugepages/scheduling-hugepages.md b/content/ko/docs/tasks/manage-hugepages/scheduling-hugepages.md
index 981efb6719..40ca1a8726 100644
--- a/content/ko/docs/tasks/manage-hugepages/scheduling-hugepages.md
+++ b/content/ko/docs/tasks/manage-hugepages/scheduling-hugepages.md
@@ -113,9 +113,3 @@ spec:
 - 네임스페이스에서의 huge page 사용은 `hugepages-<size>` 토큰을 사용하는 `cpu` 또는 `memory` 와 같은
   다른 컴퓨트 리소스와 비슷한 리소스쿼터(ResourceQuota)를 통해 제어할 수
   있다.
-- 다양한 크기의 huge page 지원이 기능 게이트로 제공된다.
-  {{<glossary_tooltip text="kubelet" term_id="kubelet" >}} 및
-  {{<glossary_tooltip text="kube-apiserver" term_id="kube-apiserver" >}}
-  (`--feature-gates=HugePageStorageMediumSize=true`)의 `HugePageStorageMediumSize`
-  [기능 게이트](/ko/docs/reference/command-line-tools-reference/feature-gates/)를
-  사용하여 비활성화할 수 있다.
diff --git a/content/ko/docs/tasks/manage-kubernetes-objects/kustomization.md b/content/ko/docs/tasks/manage-kubernetes-objects/kustomization.md
index 9484882f30..224dd63902 100644
--- a/content/ko/docs/tasks/manage-kubernetes-objects/kustomization.md
+++ b/content/ko/docs/tasks/manage-kubernetes-objects/kustomization.md
@@ -86,12 +86,20 @@ metadata:
   name: example-configmap-1-8mbdf7882g
 ```
 
-env 파일에서 컨피그맵을 생성하려면, `configMapGenerator`의 `envs` 리스트에 항목을 추가한다. 다음은 `.env` 파일의 데이터 항목으로 컨피그맵을 생성하는 예시를 보여준다.
+env 파일에서 컨피그맵을 생성하려면, `configMapGenerator`의 `envs` 리스트에 항목을 추가한다. `=` 및 값을 생략하여 로컬 환경 변수로부터 값을 설정할 수도 있다.
+
+{{< note >}}
+로컬 환경 변수 채우기 기능은 꼭 필요한 경우에만 사용하는 것이 좋은데, 이는 패치를 할 수 있는 오버레이가 있는 편이 유지 관리에 더 유리하기 때문이다. 로컬 환경 변수 채우기 기능은 git SHA와 같이 그 값을 쉽게 예측할 수 없는 경우에 유용할 수 있다.
+{{< /note >}}
+
+다음은 `.env` 파일의 데이터 항목으로 컨피그맵을 생성하는 예시를 보여준다.
 
 ```shell
 # .env 파일 생성
+# BAZ 에는 로컬 환경 변수 $BAZ 의 값이 입력될 것이다
 cat <<EOF >.env
 FOO=Bar
+BAZ
 EOF
 
 cat <<EOF >./kustomization.yaml
@@ -105,7 +113,7 @@ EOF
 생성된 컨피그맵은 다음 명령어로 검사할 수 있다.
 
 ```shell
-kubectl kustomize ./
+BAZ=Qux kubectl kustomize ./
 ```
 
 생성된 컨피그맵은 다음과 같다.
@@ -113,10 +121,11 @@ kubectl kustomize ./
 ```yaml
 apiVersion: v1
 data:
-    FOO=Bar
+  BAZ: Qux
+  FOO: Bar
 kind: ConfigMap
 metadata:
-  name: example-configmap-1-8mbdf7882g
+  name: example-configmap-1-892ghb99c8
 ```
 
 {{< note >}}
@@ -748,8 +757,8 @@ spec:
 커맨드 인수 내에 서비스 네임을 하드 코딩하는 것을 권장하지 않는다. 이 용도에서 Kustomize는 `vars`를 통해 containers에 서비스 네임을 삽입할 수 있다.
 
 ```shell
-# deployment.yaml 파일 생성
-cat <<EOF > deployment.yaml
+# deployment.yaml 파일 생성(문서 구분 기호를 따옴표로 감쌈)
+cat <<'EOF' > deployment.yaml
 apiVersion: apps/v1
 kind: Deployment
 metadata:
diff --git a/content/ko/docs/tasks/network/customize-hosts-file-for-pods.md b/content/ko/docs/tasks/network/customize-hosts-file-for-pods.md
index 1901f16726..76cd5c4681 100644
--- a/content/ko/docs/tasks/network/customize-hosts-file-for-pods.md
+++ b/content/ko/docs/tasks/network/customize-hosts-file-for-pods.md
@@ -1,4 +1,7 @@
 ---
+
+
+
 title: HostAliases로 파드의 /etc/hosts 항목 추가하기
 content_type: task
 weight: 60
@@ -114,10 +117,15 @@ fe00::2	ip6-allrouters
 
 ## 왜 Kubelet이 호스트 파일을 관리하는가? {#why-does-kubelet-manage-the-hosts-file}
 
-컨테이너가 이미 시작되고 난 후 도커가 파일을
-[수정](https://github.com/moby/moby/issues/17190)하는 것을 방지하기 위해
-Kubelet은 파드의 각 컨테이너의 `hosts` 파일을
-[관리](https://github.com/kubernetes/kubernetes/issues/14633)한다.
+컨테이너가 이미 시작되고 난 뒤에 
+컨테이너 런타임이 `hosts` 파일을 수정하는 것을 방지하기 위해, 
+Kubelet이 파드의 각 컨테이너의 `hosts` 파일을 관리한다. 
+역사적으로, 쿠버네티스는 컨테이너 런타임으로 계속 도커 엔진을 사용해 왔으며, 
+각 컨테이너가 시작된 뒤에 도커 엔진이 `/etc/hosts` 파일을 수정할 수 있었다.
+
+현재 쿠버네티스는 다양한 컨테이너 런타임을 사용할 수 있으며, 
+kubelet이 각 컨테이너 내의 `hosts` 파일을 관리하므로 
+어떤 컨테이너 런타임을 사용하는지에 상관없이 동일한 결과를 얻을 수 있다.
 
 {{< caution >}}
 컨테이너 내부의 호스트 파일을 수동으로 변경하면 안된다.
diff --git a/content/ko/docs/tasks/network/validate-dual-stack.md b/content/ko/docs/tasks/network/validate-dual-stack.md
index 5a3fdc477e..36730ac66b 100644
--- a/content/ko/docs/tasks/network/validate-dual-stack.md
+++ b/content/ko/docs/tasks/network/validate-dual-stack.md
@@ -3,7 +3,7 @@
 
 
 
-min-kubernetes-server-version: v1.20
+min-kubernetes-server-version: v1.23
 title: IPv4/IPv6 이중 스택 검증
 content_type: task
 ---
@@ -16,11 +16,14 @@ content_type: task
 
 
 * 이중 스택 네트워킹을 위한 제공자 지원 (클라우드 제공자 또는 기타 제공자들은 라우팅 가능한 IPv4/IPv6 네트워크 인터페이스를 제공하는 쿠버네티스 노드들을 제공해야 한다.)
-* 이중 스택을 지원하는 [네트워크 플러그인](/ko/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)  (예. Kubenet 또는 Calico)
+* 이중 스택 네트워킹을 지원하는 [네트워크 플러그인](/ko/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)
 * [이중 스택 활성화](/ko/docs/concepts/services-networking/dual-stack/) 클러스터
 
 {{< version-check >}}
 
+{{< note >}}
+v1.23 이전 버전에서도 검증을 수행할 수 있지만 GA 기능으로만 제공되며, v1.23부터 공식적으로 지원된다.
+{{< /note >}}
 
 
 <!-- steps -->
diff --git a/content/ko/docs/tasks/run-application/access-api-from-pod.md b/content/ko/docs/tasks/run-application/access-api-from-pod.md
index d12f3b2f00..b9a0a8c55e 100644
--- a/content/ko/docs/tasks/run-application/access-api-from-pod.md
+++ b/content/ko/docs/tasks/run-application/access-api-from-pod.md
@@ -47,10 +47,11 @@ weight: 120
 호스트 이름을 사용하여 API 서버를 쿼리할 수 있다. 공식 클라이언트 라이브러리는
 이를 자동으로 수행한다.
 
-API 서버를 인증하는 권장 방법은 [서비스 어카운트](/docs/tasks/configure-pod-container/configure-service-account/)
-자격 증명을 사용하는 것이다. 기본적으로, 파드는
-서비스 어카운트와 연결되어 있으며, 해당 서비스 어카운트에 대한 자격 증명(토큰)은
-해당 파드에 있는 각 컨테이너의 파일시스템 트리의
+API 서버를 인증하는 권장 방법은 
+[서비스 어카운트](/docs/tasks/configure-pod-container/configure-service-account/) 자격 증명을 사용하는 것이다. 
+기본적으로, 파드는 서비스 어카운트와 연결되어 있으며, 
+해당 서비스 어카운트에 대한 자격 증명(토큰)은 
+해당 파드에 있는 각 컨테이너의 파일시스템 트리의 
 `/var/run/secrets/kubernetes.io/serviceaccount/token` 에 있다.
 
 사용 가능한 경우, 인증서 번들은 각 컨테이너의
diff --git a/content/ko/docs/tasks/run-application/delete-stateful-set.md b/content/ko/docs/tasks/run-application/delete-stateful-set.md
index 7c2b1ed783..8aeb8aa67b 100644
--- a/content/ko/docs/tasks/run-application/delete-stateful-set.md
+++ b/content/ko/docs/tasks/run-application/delete-stateful-set.md
@@ -80,11 +80,11 @@ kubectl delete pvc -l app=myapp
 
 ### 스테이트풀셋 파드의 강제 삭제
 
-스테이트풀셋의 일부 파드가 오랫동안 'Terminating' 또는 'Unknown' 상태에 있는 경우, apiserver에 수동적으로 개입하여 파드를 강제 삭제할 수도 있다. 이것은 잠재적으로 위험한 작업이다. 자세한 설명은 [스테이트풀셋 파드 강제 삭제하기](/docs/tasks/run-application/force-delete-stateful-set-pod/)를 참고한다.
+스테이트풀셋의 일부 파드가 오랫동안 'Terminating' 또는 'Unknown' 상태에 있는 경우, apiserver에 수동적으로 개입하여 파드를 강제 삭제할 수도 있다. 이것은 잠재적으로 위험한 작업이다. 자세한 설명은 [스테이트풀셋 파드 강제 삭제하기](/ko/docs/tasks/run-application/force-delete-stateful-set-pod/)를 참고한다.
 
 
 
 ## {{% heading "whatsnext" %}}
 
 
-[스테이트풀셋 파드 강제 삭제하기](/docs/tasks/run-application/force-delete-stateful-set-pod/)에 대해 더 알아보기.
+[스테이트풀셋 파드 강제 삭제하기](/ko/docs/tasks/run-application/force-delete-stateful-set-pod/)에 대해 더 알아보기.
diff --git a/content/ko/docs/tasks/run-application/force-delete-stateful-set-pod.md b/content/ko/docs/tasks/run-application/force-delete-stateful-set-pod.md
new file mode 100644
index 0000000000..c532b1b9a1
--- /dev/null
+++ b/content/ko/docs/tasks/run-application/force-delete-stateful-set-pod.md
@@ -0,0 +1,96 @@
+---
+
+
+
+
+
+title: 스테이트풀셋(StatefulSet) 파드 강제 삭제하기
+content_type: task
+weight: 70
+---
+
+<!-- overview -->
+
+이 페이지에서는 {{< glossary_tooltip text="스테이트풀셋" term_id="StatefulSet" >}}의 일부인 파드를 삭제하는 방법을 보여주고 
+이 과정에서 고려해야 할 사항을 설명한다.
+
+
+## {{% heading "prerequisites" %}}
+
+
+* 이것은 상당히 고급 태스크이며 스테이트풀셋 고유의 속성 중 일부를 위반할 가능성이 있다.
+* 계속하기 전에 아래 나열된 고려 사항을 숙지하도록 한다.
+
+
+
+<!-- steps -->
+
+## 스테이트풀셋 고려 사항
+
+정상적인 스테이트풀셋의 작동에서는 스테이트풀셋 파드를 강제로 삭제할 필요가 **절대** 없다. [스테이트풀셋 컨트롤러](/ko/docs/concepts/workloads/controllers/statefulset/)는 스테이트풀셋의 멤버 생성, 스케일링, 삭제를 담당한다. 서수 0부터 N-1까지 지정된 수의 파드가 활성 상태이고 준비되었는지 확인한다. 스테이트풀셋은 언제든지 클러스터에서 실행 중인 지정된 신원을 가진 최대 하나의 파드가 있는지 확인한다. 이를 스테이트풀셋에서 제공하는 *최대 하나* 의미론이라고 한다.
+
+수동 강제 삭제는 스테이트풀셋 고유의 최대 하나 의미론을 위반할 가능성이 있으므로 주의해서 수행해야 한다. 스테이트풀셋은 안정적인 네트워크 신원과 안정적인 스토리지가 필요한 분산 클러스터 애플리케이션을 실행하는 데 사용할 수 있다. 이러한 애플리케이션은 종종 고정된 신원을 가진 고정된 수의 구성원 앙상블에 의존하는 구성을 가진다. 여러 구성원이 동일한 신원을 갖는 것은 재앙이 될 수 있으며 데이터 손실로 이어질 수 있다(예: 쿼럼 기반 시스템의 스플릿 브레인(split-brain) 시나리오).
+
+## 파드 삭제
+
+다음 명령을 사용하여 파드를 단계적으로 삭제할 수 있다.
+
+```shell
+kubectl delete pods <pod>
+```
+
+위의 내용이 단계적인 종료로 이어지려면 파드가 
+`pod.Spec.TerminationGracePeriodSeconds`를 0으로 지정하지 **않아야 한다**.
+`pod.Spec.TerminationGracePeriodSeconds`를 0초로 설정하는 관행은 안전하지 않으며
+스테이트풀셋 파드에서 강력히 권장하지 않는다. 단계적 삭제는 안전하며 kubelet이 apiserver에서 이름을 삭제하기 전에 파드가
+[정상적으로 종료](/ko/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)되도록 한다.
+
+노드에 연결할 수 없는 경우 파드는 자동으로 삭제되지 않는다.
+연결할 수 없는 노드에서 실행 중인 파드는 [타임아웃](/ko/docs/concepts/architecture/nodes/#condition) 후에
+'Terminating'이나 'Unknown' 상태가 된다.
+
+사용자가 연결할 수 없는 노드에서 파드를 단계적으로 삭제하려고 하면 파드가 이러한 상태에 들어갈 수도 있다.
+이러한 상태의 파드를 apiserver에서 제거할 수 있는 유일한 방법은 다음과 같다.
+
+* 노드 오브젝트가 삭제된다(사용자 또는 [노드 컨트롤러](/ko/docs/concepts/architecture/nodes/)에 의해).
+* 응답하지 않는 노드의 kubelet이 응답을 시작하고 파드를 종료하여 apiserver에서 항목을 제거한다.
+* 사용자가 파드를 강제로 삭제한다.
+
+권장되는 모범 사례는 첫 번째 또는 두 번째 방법을 사용하는 것이다. 노드가 죽은 것으로 확인되면(예: 네트워크에서 영구적으로 연결이 끊기거나 전원이 꺼진 경우 등) 노드 오브젝트를 삭제한다. 노드에 네트워크 파티션이 있는 경우 이를 해결하거나 해결될 때까지 기다린다. 파티션이 복구되면 kubelet은 파드 삭제를 완료하고 apiserver에서 해당 이름을 해제한다.
+
+일반적으로 시스템은 파드가 노드에서 더 이상 실행되지 않거나 노드가 관리자에 의해 삭제되면 삭제를 완료한다. 파드를 강제로 삭제하여 이를 재정의할 수 있다.
+
+### 강제 삭제
+
+강제 삭제는 파드가 종료되었다는 kubelet의 확인을 기다리지 **않는다**. 강제 삭제가 파드를 죽이는 데 성공했는지 여부와 관계없이 즉시 apiserver에서 이름을 해제한다. 이렇게 하면 스테이트풀셋 컨트롤러가 동일한 신원으로 대체 파드를 생성할 수 있다. 이것은 여전히 실행 중인 파드와 중복될 수 있으며, 해당 파드가 여전히 스테이트풀셋의 다른 멤버와 통신할 수 있다면 스테이트풀셋이 보장하도록 설계된 최대 하나 의미론을 위반할 것이다.
+
+스테이트풀셋 파드를 강제로 삭제하는 것은 문제의 파드가 스테이트풀셋의 다른 파드와 다시는 접촉하지 않으며 대체 생성을 위해 해당 이름을 안전하게 해제할 수 있다고 주장하는 것이다.
+
+kubectl 버전 >= 1.5를 사용하여 파드를 강제로 삭제하려면, 다음을 수행한다.
+
+```shell
+kubectl delete pods <pod> --grace-period=0 --force
+```
+
+kubectl <= 1.4 버전을 사용하는 경우, `--force` 옵션을 생략하고 다음을 사용해야 한다.
+
+```shell
+kubectl delete pods <pod> --grace-period=0
+```
+
+이러한 명령 후에도 파드가 `Unknown` 상태에서 멈추면, 다음 명령을 사용하여 클러스터에서 파드를 제거한다.
+
+```shell
+kubectl patch pod <pod> -p '{"metadata":{"finalizers":null}}'
+```
+
+항상 관련된 위험에 대해 완전히 이해한 상태에서 주의 깊게 스테이트풀셋 파드의 강제 삭제를 수행한다.
+
+
+
+## {{% heading "whatsnext" %}}
+
+
+[스테이트풀셋 디버깅하기](/ko/docs/tasks/debug/debug-application/debug-statefulset/)에 대해 더 알아보기.
+
+
diff --git a/content/ko/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough.md b/content/ko/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough.md
index 61f1dbc758..659da85079 100644
--- a/content/ko/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough.md
+++ b/content/ko/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough.md
@@ -1,40 +1,62 @@
 ---
-title: Horizontal Pod Autoscaler 연습
+
+
+
+
+
+title: HorizontalPodAutoscaler 연습
 content_type: task
 weight: 100
+min-kubernetes-server-version: 1.23
 ---
 
 <!-- overview -->
 
-Horizontal Pod Autoscaler는
-CPU 사용량(또는 베타 지원의 다른 애플리케이션 지원 메트릭)을 관찰하여
-레플리케이션 컨트롤러, 디플로이먼트, 레플리카셋(ReplicaSet) 또는 스테이트풀셋(StatefulSet)의 파드 개수를 자동으로 스케일한다.
+[HorizontalPodAutoscaler](/ko/docs/tasks/run-application/horizontal-pod-autoscale/)(약어: HPA)는 
+워크로드 리소스(예: {{< glossary_tooltip text="디플로이먼트" term_id="deployment" >}} 또는 
+{{< glossary_tooltip text="스테이트풀셋" term_id="statefulset" >}})를 
+자동으로 업데이트하며, 
+워크로드의 크기를 수요에 맞게 
+자동으로 스케일링하는 것을 목표로 한다.
 
-이 문서는 php-apache 서버를 대상으로 Horizontal Pod Autoscaler를 동작해보는 예제이다.
-Horizontal Pod Autoscaler 동작과 관련된 더 많은 정보를 위해서는
-[Horizontal Pod Autoscaler 사용자 가이드](/ko/docs/tasks/run-application/horizontal-pod-autoscale/)를 참고하기 바란다.
+수평 스케일링은 부하 증가에 대해 
+{{< glossary_tooltip text="파드" term_id="pod" >}}를 더 배치하는 것을 뜻한다. 
+이는 _수직_ 스케일링(쿠버네티스에서는, 
+해당 워크로드를 위해 이미 실행 중인 파드에 
+더 많은 자원(예: 메모리 또는 CPU)를 할당하는 것)과는 다르다.
+
+부하량이 줄어들고, 파드의 수가 최소 설정값 이상인 경우, 
+HorizontalPodAutoscaler는 워크로드 리소스(디플로이먼트, 스테이트풀셋, 
+또는 다른 비슷한 리소스)에게 스케일 다운을 지시한다.
+
+이 문서는 예제 웹 앱의 크기를 자동으로 조절하도록 
+HorizontalPodAutoscaler를 설정하는 예시를 다룬다. 
+이 예시 워크로드는 PHP 코드를 실행하는 아파치 httpd이다.
 
 ## {{% heading "prerequisites" %}}
 
-이 예제는 버전 1.2 또는 이상의 쿠버네티스 클러스터와 kubectl을 필요로 한다.
-[메트릭 서버](https://github.com/kubernetes-sigs/metrics-server) 모니터링을 클러스터에 배포하여
-[메트릭 API](https://github.com/kubernetes/metrics)를 통해 메트릭을 제공해야 한다.
-Horizontal Pod Autoscaler가 메트릭을 수집할때 해당 API를 사용한다. 메트릭-서버를 배포하는 방법에 대해 배우려면,
-[메트릭-서버 문서](https://github.com/kubernetes-sigs/metrics-server#deployment)를 참고한다.
+{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}} 이전 버전의 
+쿠버네티스를 사용하고 있다면, 해당 버전의 문서를 
+참고한다([사용 가능한 문서의 버전](/ko/docs/home/supported-doc-versions/) 참고).
 
-Horizontal Pod Autoscaler에 다양한 자원 메트릭을 적용하고자 하는 경우,
-버전 1.6 또는 이상의 쿠버네티스 클러스터와 kubectl를 사용해야 한다. 사용자 정의 메트릭을 사용하기 위해서는, 클러스터가
-사용자 정의 메트릭 API를 제공하는 API 서버와 통신할 수 있어야 한다.
-마지막으로 쿠버네티스 오브젝트와 관련이 없는 메트릭을 사용하는 경우,
-버전 1.10 또는 이상의 쿠버네티스 클러스터와 kubectl을 사용해야 하며, 외부
-메트릭 API와 통신이 가능해야 한다.
-자세한 사항은 [Horizontal Pod Autoscaler 사용자 가이드](/ko/docs/tasks/run-application/horizontal-pod-autoscale/#사용자-정의-메트릭을-위한-지원)를 참고하길 바란다.
+이 예제를 실행하기 위해, 클러스터에 [Metrics Server](https://github.com/kubernetes-sigs/metrics-server#readme)가 
+배포 및 구성되어 있어야 한다. 쿠버네티스 Metrics Server는 클러스터의 
+{{<glossary_tooltip term_id="kubelet" text="kubelet">}}으로부터 
+리소스 메트릭을 수집하고, 수집한 메트릭을 
+[쿠버네티스 API](/ko/docs/concepts/overview/kubernetes-api/)를 통해 노출시키며, 
+메트릭 수치를 나타내는 새로운 종류의 리소스를 추가하기 위해 
+[APIService](/ko/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)를 사용할 수 있다.
+
+Metrics Server를 실행하는 방법을 보려면 
+[metrics-server 문서](https://github.com/kubernetes-sigs/metrics-server#deployment)를 참고한다.
 
 <!-- steps -->
 
 ## php-apache 서버 구동 및 노출
 
-Horizontal Pod Autoscaler 시연을 위해 php-apache 이미지를 맞춤 제작한 Docker 이미지를 사용한다. Dockerfile은 다음과 같다.
+HorizontalPodAutoscaler 예시에서, 
+먼저 도커 허브의 `php-apache` 이미지를 베이스로 하는 커스텀 컨테이너 이미지를 만들어 시작점으로 삼을 것이다. 
+`Dockerfile`은 미리 준비되어 있으며, 내용은 다음과 같다.
 
 ```dockerfile
 FROM php:5-apache
@@ -42,7 +64,8 @@ COPY index.php /var/www/html/index.php
 RUN chmod a+rx index.php
 ```
 
-index.php는 CPU 과부하 연산을 수행한다.
+아래의 코드는 CPU 과부하 연산을 수행하는 간단한 `index.php` 페이지를 정의하며,
+이를 이용해 클러스터에 부하를 시뮬레이트한다.
 
 ```php
 <?php
@@ -54,12 +77,13 @@ index.php는 CPU 과부하 연산을 수행한다.
 ?>
 ```
 
-첫 번째 단계로, 다음 구성을 사용해서 실행 중인 이미지의 디플로이먼트를
-시작하고 서비스로 노출시킨다.
+컨테이너 이미지를 만들었다면, 
+방금 만든 이미지로부터 컨테이너를 실행하는 디플로이먼트를 시작하고, 다음의 매니페스트를 사용하여 디플로이먼트를 
+{{< glossary_tooltip term_id="service" text="서비스">}}로 노출한다.
 
 {{< codenew file="application/php-apache.yaml" >}}
 
-다음의 명령어를 실행한다.
+이를 위해, 다음의 명령어를 실행한다.
 
 ```shell
 kubectl apply -f https://k8s.io/examples/application/php-apache.yaml
@@ -70,16 +94,27 @@ deployment.apps/php-apache created
 service/php-apache created
 ```
 
-## Horizontal Pod Autoscaler 생성
+## HorizontalPodAutoscaler 생성 {#create-horizontal-pod-autoscaler}
 
-이제 서비스가 동작중이므로,
-[kubectl autoscale](/docs/reference/generated/kubectl/kubectl-commands#autoscale)를 사용하여 오토스케일러를 생성한다.
-다음 명령어는 첫 번째 단계에서 만든 php-apache 디플로이먼트 파드의 개수를
-1부터 10 사이로 유지하는 Horizontal Pod Autoscaler를 생성한다.
-간단히 얘기하면, HPA는 (디플로이먼트를 통한) 평균 CPU 사용량을 50%로 유지하기 위하여 레플리카의 개수를 늘리고 줄인다.
-(kubectl run으로 각 파드는 200 밀리코어까지 요청할 수 있고,
-따라서 여기서 말하는 평균 CPU 사용은 100 밀리코어를 말한다).
-이에 대한 자세한 알고리즘은 [여기](/ko/docs/tasks/run-application/horizontal-pod-autoscale/#알고리즘-세부-정보)를 참고하기 바란다.
+이제 서비스가 동작중이므로, 
+`kubectl`을 사용하여 오토스케일러를 생성한다. 이를 위해 
+[kubectl autoscale](/docs/reference/generated/kubectl/kubectl-commands#autoscale) 서브커맨드를 사용할 수 있다.
+
+아래에서는 첫 번째 단계에서 만든 php-apache 
+디플로이먼트 파드의 개수를 1부터 10 사이로 유지하는 
+Horizontal Pod Autoscaler를 생성하는 명령어를 실행할 것이다.
+
+간단히 이야기하면, HPA {{<glossary_tooltip text="컨트롤러" term_id="controller">}}는 
+평균 CPU 사용량을 50%로 유지하기 위해 (디플로이먼트를 업데이트하여) 레플리카의 개수를 늘리고 줄인다.
+그러면 디플로이먼트는 레플리카셋을 업데이트하며(이는 모든 쿠버네티스 디플로이먼트의 동작 방식 중 일부이다), 
+레플리카셋은 자신의 `.spec` 필드의 변경 사항에 따라 파드를 추가하거나 제거한다.
+
+`kubectl run`으로 각 파드는 200 밀리코어를 요청하므로, 평균 CPU 사용은 100 밀리코어이다.
+알고리즘에 대한 세부 사항은 
+[알고리즘 세부 정보](/ko/docs/tasks/run-application/horizontal-pod-autoscale/#알고리즘-세부-정보)를 참고한다.
+
+
+HorizontalPodAutoscaler를 생성한다.
 
 ```shell
 kubectl autoscale deployment php-apache --cpu-percent=50 --min=1 --max=10
@@ -89,46 +124,64 @@ kubectl autoscale deployment php-apache --cpu-percent=50 --min=1 --max=10
 horizontalpodautoscaler.autoscaling/php-apache autoscaled
 ```
 
-실행 중인 오토스케일러의 현재 상태를 확인해본다.
+다음을 실행하여, 새로 만들어진 HorizontalPodAutoscaler의 현재 상태를 확인할 수 있다.
 
 ```shell
+# "hpa" 또는 "horizontalpodautoscaler" 둘 다 사용 가능하다.
 kubectl get hpa
 ```
 
+출력은 다음과 같다.
 ```
 NAME         REFERENCE                     TARGET    MINPODS   MAXPODS   REPLICAS   AGE
 php-apache   Deployment/php-apache/scale   0% / 50%  1         10        1          18s
 ```
 
-아직 서버로 어떠한 요청도 하지 않았기 때문에, 현재 CPU 소비는 0%임을 확인할 수 있다 (``TARGET``은 디플로이먼트에 의해 제어되는 파드들의 평균을 나타낸다).
+(HorizontalPodAutoscalers 이름이 다르다면, 이미 기존에 존재하고 있었다는 뜻이며, 
+보통은 문제가 되지 않는다.)
 
-## 부하 증가
+아직 서버로 요청을 보내는 클라이언트가 없기 때문에, 현재 CPU 사용량이 0%임을 확인할 수 있다. 
+(``TARGET`` 열은 디플로이먼트에 의해 제어되는 파드들의 평균을 나타낸다)
 
-이번에는 부하가 증가함에 따라 오토스케일러가 어떻게 반응하는지를 살펴볼 것이다. 먼저 컨테이너를 하나 실행하고, php-apache 서비스에 무한루프의 쿼리를 전송한다(다른 터미널을 열어 수행하기 바란다).
+## 부하 증가시키기 {#increase-load}
 
+다음으로, 부하가 증가함에 따라 오토스케일러가 어떻게 반응하는지를 살펴볼 것이다. 
+이를 위해, 클라이언트 역할을 하는 다른 파드를 실행할 것이다. 
+클라이언트 파드 안의 컨테이너가 php-apache 서비스에 쿼리를 보내는 무한 루프를 실행한다.
 
 ```shell
-kubectl run -i --tty load-generator --rm --image=busybox --restart=Never -- /bin/sh -c "while sleep 0.01; do wget -q -O- http://php-apache; done"
+# 부하 생성을 유지하면서 나머지 스텝을 수행할 수 있도록,
+# 다음의 명령을 별도의 터미널에서 실행한다.
+kubectl run -i --tty load-generator --rm --image=busybox:1.28 --restart=Never -- /bin/sh -c "while sleep 0.01; do wget -q -O- http://php-apache; done"
 ```
 
-실행 후, 약 1분 정도 후에 CPU 부하가 올라가는 것을 볼 수 있다.
-
+이제 아래 명령을 실행한다.
 ```shell
+# 준비가 되면, 관찰을 마치기 위해 Ctrl+C를 누른다.
 kubectl get hpa
 ```
 
+1분 쯤 지나면, 다음과 같이 CPU 부하가 올라간 것을 볼 수 있다.
+
 ```
 NAME         REFERENCE                     TARGET      MINPODS   MAXPODS   REPLICAS   AGE
 php-apache   Deployment/php-apache/scale   305% / 50%  1         10        1          3m
 ```
 
-CPU 소비가 305%까지 증가하였다.
-결과적으로, 디플로이먼트의 레플리카 개수는 7개까지 증가하였다.
+그리고 다음과 같이 레플리카의 수가 증가한 것도 볼 수 있다.
+```
+NAME         REFERENCE                     TARGET      MINPODS   MAXPODS   REPLICAS   AGE
+php-apache   Deployment/php-apache/scale   305% / 50%  1         10        7          3m
+```
+
+CPU 사용률이 305%까지 증가하였다.
+결과적으로, 디플로이먼트의 레플리카 개수가 7개까지 증가하였다.
 
 ```shell
 kubectl get deployment php-apache
 ```
 
+HorizontalPodAutoscaler를 조회했을 때와 동일한 레플리카 수를 확인할 수 있다.
 ```
 NAME         READY   UP-TO-DATE   AVAILABLE   AGE
 php-apache   7/7      7           7           19m
@@ -140,24 +193,27 @@ php-apache   7/7      7           7           19m
 최종 레플리카의 개수는 본 예제와 다를 수 있다.
 {{< /note >}}
 
-## 부하 중지
+## 부하 발생 중지하기 {#stop-load}
 
 본 예제를 마무리하기 위해 부하를 중단시킨다.
 
-`busybox` 컨테이너를 띄운 터미널에서,
+`busybox` 파드를 띄운 터미널에서,
 `<Ctrl> + C`로 부하 발생을 중단시킨다.
 
 그런 다음 (몇 분 후에) 결과를 확인한다.
 
 ```shell
-kubectl get hpa
+# 준비가 되면, 관찰을 마치기 위해 Ctrl+C를 누른다.
+kubectl get hpa php-apache --watch
 ```
 
+출력은 다음과 같다.
 ```
 NAME         REFERENCE                     TARGET       MINPODS   MAXPODS   REPLICAS   AGE
 php-apache   Deployment/php-apache/scale   0% / 50%     1         10        1          11m
 ```
 
+디플로이먼트도 스케일 다운 했음을 볼 수 있다.
 ```shell
 kubectl get deployment php-apache
 ```
@@ -167,7 +223,7 @@ NAME         READY   UP-TO-DATE   AVAILABLE   AGE
 php-apache   1/1     1            1           27m
 ```
 
-CPU 사용량은 0으로 떨어졌고, HPA는 레플리카의 개수를 1로 낮췄다.
+CPU 사용량이 0으로 떨어져서, HPA가 자동으로 레플리카의 개수를 1로 줄였다.
 
 {{< note >}}
 레플리카 오토스케일링은 몇 분 정도 소요된다.
@@ -178,18 +234,18 @@ CPU 사용량은 0으로 떨어졌고, HPA는 레플리카의 개수를 1로 낮
 ## 다양한 메트릭 및 사용자 정의 메트릭을 기초로한 오토스케일링
 
 `php-apache` 디플로이먼트를 오토스케일링할 때,
-`autoscaling/v2beta2` API 버전을 사용하여 추가적인 메트릭을 제공할 수 있다.
+`autoscaling/v2` API 버전을 사용하여 추가적인 메트릭을 제공할 수 있다.
 
-첫 번째로, `autoscaling/v2beta2` 형식으로 HorizontalPodAutoscaler YAML 파일을 생성한다.
+첫 번째로, `autoscaling/v2` 형식으로 HorizontalPodAutoscaler YAML 파일을 생성한다.
 
 ```shell
-kubectl get hpa.v2beta2.autoscaling -o yaml > /tmp/hpa-v2.yaml
+kubectl get hpa php-apache -o yaml > /tmp/hpa-v2.yaml
 ```
 
 에디터로 `/tmp/hpa-v2.yaml` 파일을 열면, 다음과 같은 YAML을 확인할 수 있다.
 
 ```yaml
-apiVersion: autoscaling/v2beta2
+apiVersion: autoscaling/v2
 kind: HorizontalPodAutoscaler
 metadata:
   name: php-apache
@@ -236,15 +292,11 @@ CPU 외에 다른 메트릭을 지정할 수 있는데, 기본적으로 지원
 더 고급화된 클러스터 모니터링 설정이 필요하다.
 
 이러한 대체 메트릭 타입중 첫 번째는 *파드 메트릭* 이다.
-이 메트릭은 파드들을 설명하고, 파드들간의 평균을 내며,
-대상 값과 비교하여 레플리카 개수를 결정한다.
-
-이것들은 `AverageValue`의 `target`만을 지원한다는 것을 제외하면,
-자원 메트릭과 매우 유사하게 동작한다.
+이 메트릭은 파드들을 설명하고, 파드들 간의 평균을 내며, 대상 값과 비교하여 레플리카 개수를 결정한다.
+이것들은 `AverageValue`의 `target`만을 지원한다는 것을 제외하면, 자원 메트릭과 매우 유사하게 동작한다.
 
 파드 메트릭은 이처럼 메트릭 블록을 사용하여 정의된다.
 
-
 ```yaml
 type: Pods
 pods:
@@ -269,7 +321,7 @@ object:
   metric:
     name: requests-per-second
   describedObject:
-    apiVersion: networking.k8s.io/v1beta1
+    apiVersion: networking.k8s.io/v1
     kind: Ingress
     name: main-route
   target:
@@ -285,7 +337,7 @@ HorizontalPodAutoscaler는 각 메트릭에 대해 제안된 레플리카 개수
 `kubectl edit` 명령어를 이용하여 다음과 같이 정의를 업데이트 할 수 있다.
 
 ```yaml
-apiVersion: autoscaling/v2beta2
+apiVersion: autoscaling/v2
 kind: HorizontalPodAutoscaler
 metadata:
   name: php-apache
@@ -315,7 +367,7 @@ spec:
       metric:
         name: requests-per-second
       describedObject:
-        apiVersion: networking.k8s.io/v1beta1
+        apiVersion: networking.k8s.io/v1
         kind: Ingress
         name: main-route
       target:
@@ -338,7 +390,7 @@ status:
       metric:
         name: requests-per-second
       describedObject:
-        apiVersion: networking.k8s.io/v1beta1
+        apiVersion: networking.k8s.io/v1
         kind: Ingress
         name: main-route
       current:
@@ -395,7 +447,9 @@ object:
   external:
     metric:
       name: queue_messages_ready
-      selector: "queue=worker_tasks"
+      selector:
+        matchLabels:
+          queue: "worker_tasks"
     target:
       type: AverageValue
       averageValue: 30
@@ -407,7 +461,7 @@ object:
 
 ## 부록: Horizontal Pod Autoscaler 상태 조건
 
-HorizontalPodAutoscaler의 `autoscaling/v2beta2` 형식을 사용하면,
+HorizontalPodAutoscaler의 `autoscaling/v2` 형식을 사용하면,
 HorizontalPodAutoscaler에서 쿠버네티스가 설정한 *상태 조건* 을 확인할 수 있다.
 이 상태 조건들은 HorizontalPodAutoscaler가 스케일을 할 수 있는지,
 어떤 방식으로든 제한되어 있는지 여부를 나타낸다.
@@ -443,14 +497,14 @@ Events:
 이 HorizontalPodAutoscaler 경우, 건강 상태의 여러 조건들을 볼 수 있다.
 첫 번째 `AbleToScale`는 HPA가 스케일을 가져오고 업데이트할 수 있는지,
 백 오프 관련 조건으로 스케일링이 방지되는지 여부를 나타낸다.
-두 번째 `ScalingActive`는 HPA가 활성화되어있는지(즉 대상 레플리카 개수가 0이 아닌지),
+두 번째 `ScalingActive`는 HPA가 활성화되어 있는지(즉 대상 레플리카 개수가 0이 아닌지),
 원하는 스케일을 계산할 수 있는지 여부를 나타낸다. 만약 `False` 인 경우,
-일반적으로 메트릭을 가져오는데 문제가 있다.
+일반적으로 메트릭을 가져오는 데 문제가 있다.
 마지막으로, 마지막 조건인 `ScalingLimited`는
 원하는 스케일 한도가 HorizontalPodAutoscaler의 최대/최소값으로 제한돼있음을 나타낸다.
 이는 HorizontalPodAutoscaler에서 레플리카의 개수 제한을 최대/최소값으로 올리거나 낮추려는 것이다.
 
-## 부록: 수량
+## 수량
 
 HorizontalPodAutoscaler와 메트릭 API에서 모든 메트릭은
 쿠버네티스에서 사용하는
@@ -460,16 +514,16 @@ HorizontalPodAutoscaler와 메트릭 API에서 모든 메트릭은
 일반적으로 수량을 밀리단위로 반환한다.
 10진수로 표현했을때, `1`과 `1500m` 또는 `1`과 `1.5` 로 메트릭 값을 나타낼 수 있다.
 
-## 부록: 다른 가능한 시나리오
+## 다른 가능한 시나리오
 
 ### 명시적으로 오토스케일러 만들기
 
 HorizontalPodAutoscaler를 생성하기 위해 `kubectl autoscale` 명령어를 사용하지 않고,
-명시적으로 다음 파일을 사용하여 만들 수 있다.
+명시적으로 다음 매니페스트를 사용하여 만들 수 있다.
 
 {{< codenew file="application/hpa/php-apache.yaml" >}}
 
-다음 명령어를 실행하여 오토스케일러를 생성할 것이다.
+다음으로, 아래의 명령어를 실행하여 오토스케일러를 생성한다.
 
 ```shell
 kubectl create -f https://k8s.io/examples/application/hpa/php-apache.yaml
diff --git a/content/ko/docs/tasks/run-application/horizontal-pod-autoscale.md b/content/ko/docs/tasks/run-application/horizontal-pod-autoscale.md
index 90d151e768..e5c1a1ddb2 100644
--- a/content/ko/docs/tasks/run-application/horizontal-pod-autoscale.md
+++ b/content/ko/docs/tasks/run-application/horizontal-pod-autoscale.md
@@ -1,51 +1,71 @@
 ---
-title: Horizontal Pod Autoscaler
+
+
+
+
+title: Horizontal Pod Autoscaling
 feature:
   title: Horizontal 스케일링
   description: >
     간단한 명령어나 UI를 통해서 또는 CPU 사용량에 따라 자동으로 애플리케이션의 스케일을 업 또는 다운한다.
-
 content_type: concept
 weight: 90
 ---
 
-
-
-
-
 <!-- overview -->
 
-Horizontal Pod Autoscaler는 CPU 사용량
-(또는 [사용자 정의 메트릭](https://git.k8s.io/community/contributors/design-proposals/instrumentation/custom-metrics-api.md),
-아니면 다른 애플리케이션 지원 메트릭)을 관찰하여 레플리케이션
-컨트롤러(ReplicationController), 디플로이먼트(Deployment), 레플리카셋(ReplicaSet) 또는 스테이트풀셋(StatefulSet)의 파드 개수를 자동으로 스케일한다. Horizontal
-Pod Autoscaler는 크기를 조정할 수 없는 오브젝트(예: 데몬셋(DaemonSet))에는 적용되지 않는다.
+쿠버네티스에서, _HorizontalPodAutoscaler_ 는 워크로드 리소스(예: 
+{{< glossary_tooltip text="디플로이먼트" term_id="deployment" >}} 또는 
+{{< glossary_tooltip text="스테이트풀셋" term_id="statefulset" >}})를 자동으로 업데이트하며, 
+워크로드의 크기를 수요에 맞게 자동으로 스케일링하는 것을 목표로 한다.
 
-Horizontal Pod Autoscaler는 쿠버네티스 API 리소스 및 컨트롤러로 구현된다.
-리소스는 컨트롤러의 동작을 결정한다.
-컨트롤러는 평균 CPU 사용률, 평균 메모리 사용률 또는 다른 커스텀 메트릭과 같은 관찰 대상 메트릭이 사용자가 지정한 목표값과 일치하도록 레플리케이션 컨트롤러 또는 디플로이먼트에서 레플리카 개수를 주기적으로 조정한다.
+수평 스케일링은 부하 증가에 대해 
+{{< glossary_tooltip text="파드" term_id="pod" >}}를 더 배치하는 것을 뜻한다. 
+이는 _수직_ 스케일링(쿠버네티스에서는, 
+해당 워크로드를 위해 이미 실행 중인 파드에 
+더 많은 자원(예: 메모리 또는 CPU)를 할당하는 것)과는 다르다.
 
+부하량이 줄어들고, 파드의 수가 최소 설정값 이상인 경우, 
+HorizontalPodAutoscaler는 워크로드 리소스(디플로이먼트, 스테이트풀셋, 
+또는 다른 비슷한 리소스)에게 스케일 다운을 지시한다.
 
+Horizontal Pod Autoscaling은 크기 조절이 불가능한 오브젝트(예: 
+{{< glossary_tooltip text="데몬셋" term_id="daemonset" >}})에는 적용할 수 없다.
+
+HorizontalPodAutoscaler는 쿠버네티스 API 자원 및 
+{{< glossary_tooltip text="컨트롤러" term_id="controller" >}} 형태로 구현되어 있다. 
+HorizontalPodAutoscaler API 자원은 컨트롤러의 행동을 결정한다. 
+쿠버네티스 {{< glossary_tooltip text="컨트롤 플레인" term_id="control-plane" >}} 
+내에서 실행되는 HPA 컨트롤러는 평균 CPU 사용률, 평균 메모리 사용률, 
+또는 다른 커스텀 메트릭 등의 관측된 메트릭을 목표에 맞추기 위해 
+목표물(예: 디플로이먼트)의 적정 크기를 주기적으로 조정한다.
+
+Horizontal Pod Autoscaling을 활용하는 
+[연습 예제](/ko/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/)가 존재한다.
 
 <!-- body -->
 
-## Horizontal Pod Autoscaler는 어떻게 작동하는가?
+## HorizontalPodAutoscaler는 어떻게 작동하는가?
 
-![Horizontal Pod Autoscaler 다이어그램](/images/docs/horizontal-pod-autoscaler.svg)
+{{< figure src="/images/docs/horizontal-pod-autoscaler.svg" caption="HorizontalPodAutoscaler는 디플로이먼트 및 디플로이먼트의 레플리카셋의 크기를 조정한다" class="diagram-medium">}}
 
-Horizontal Pod Autoscaler는 컨트롤러
-관리자의 `--horizontal-pod-autoscaler-sync-period` 플래그(기본값은
-15초)에 의해 제어되는 주기를 가진 컨트롤 루프로 구현된다.
+쿠버네티스는 Horizontal Pod Autoscaling을 
+간헐적으로(intermittently) 실행되는 
+컨트롤 루프 형태로 구현했다(지속적인 프로세스가 아니다). 
+실행 주기는 [`kube-controller-manager`](/docs/reference/command-line-tools-reference/kube-controller-manager/)의 
+`--horizontal-pod-autoscaler-sync-period` 파라미터에 의해 설정된다(기본 주기는 15초이다).
 
-각 주기 동안 컨트롤러 관리자는 각 HorizontalPodAutoscaler 정의에
-지정된 메트릭에 대해 리소스 사용률을 질의한다. 컨트롤러 관리자는 리소스
-메트릭 API(파드 단위 리소스 메트릭 용)
-또는 사용자 지정 메트릭 API(다른 모든 메트릭 용)에서 메트릭을 가져온다.
+각 주기마다, 컨트롤러 매니저는 각 HorizontalPodAutoscaler 정의에 지정된 메트릭에 대해 리소스 사용률을 질의한다. 
+컨트롤러 매니저는 `scaleTargetRef`에 의해 정의된 타겟 리소스를 찾고 나서, 
+타겟 리소스의 `.spec.selector` 레이블을 보고 파드를 선택하며, 
+리소스 메트릭 API(파드 단위 리소스 메트릭 용) 또는 
+커스텀 메트릭 API(그 외 모든 메트릭 용)로부터 메트릭을 수집한다.
 
 * 파드 단위 리소스 메트릭(예 : CPU)의 경우 컨트롤러는 HorizontalPodAutoscaler가
   대상으로하는 각 파드에 대한 리소스 메트릭 API에서 메트릭을 가져온다.
   그런 다음, 목표 사용률 값이 설정되면, 컨트롤러는 각 파드의
-  컨테이너에 대한 동등한 자원 요청을 퍼센트 단위로 하여 사용률 값을
+  컨테이너에 대한 동등한 [자원 요청](/ko/docs/concepts/configuration/manage-resources-containers/#요청-및-제한)을 
+  퍼센트 단위로 하여 사용률 값을
   계산한다. 대상 원시 값이 설정된 경우 원시 메트릭 값이 직접 사용된다.
   그리고, 컨트롤러는 모든 대상 파드에서 사용된 사용률의 평균 또는 원시 값(지정된
   대상 유형에 따라 다름)을 가져와서 원하는 레플리카의 개수를 스케일하는데
@@ -54,39 +74,36 @@ Horizontal Pod Autoscaler는 컨트롤러
   파드의 컨테이너 중 일부에 적절한 리소스 요청이 설정되지 않은 경우,
   파드의 CPU 사용률은 정의되지 않으며, 따라서 오토스케일러는
   해당 메트릭에 대해 아무런 조치도 취하지 않는다. 오토스케일링
-  알고리즘의 작동 방식에 대한 자세한 내용은 아래 [알고리즘 세부 정보](#알고리즘-세부-정보)
-  섹션을 참조하기 바란다.
+  알고리즘의 작동 방식에 대한 자세한 내용은 아래 [알고리즘 세부 정보](#알고리즘-세부-정보) 섹션을 참조하기 바란다.
 
 * 파드 단위 사용자 정의 메트릭의 경우, 컨트롤러는 사용률 값이 아닌 원시 값을 사용한다는 점을
   제외하고는 파드 단위 리소스 메트릭과 유사하게 작동한다.
 
 * 오브젝트 메트릭 및 외부 메트릭의 경우, 문제의 오브젝트를 표현하는
   단일 메트릭을 가져온다. 이 메트릭은 목표 값과
-  비교되어 위와 같은 비율을 생성한다. `autoscaling/v2beta2` API
+  비교되어 위와 같은 비율을 생성한다. `autoscaling/v2` API
   버전에서는, 비교가 이루어지기 전에 해당 값을 파드의 개수로
   선택적으로 나눌 수 있다.
 
-HorizontalPodAutoscaler는 보통 일련의 API 집합(`metrics.k8s.io`,
-`custom.metrics.k8s.io`, `external.metrics.k8s.io`)에서 메트릭을 가져온다. `metrics.k8s.io` API는 대개 별도로
-시작해야 하는 메트릭-서버에 의해 제공된다. 가이드는
-[메트릭-서버](/ko/docs/tasks/debug-application-cluster/resource-metrics-pipeline/#메트릭-서버)를
-참조한다. HorizontalPodAutoscaler는 힙스터(Heapster)에서 직접 메트릭을 가져올 수도 있다.
+HorizontalPodAutoscaler를 사용하는 일반적인 방법은 
+{{< glossary_tooltip text="집약된 API" term_id="aggregation-layer" >}}(`metrics.k8s.io`, 
+`custom.metrics.k8s.io`, 또는 `external.metrics.k8s.io`)로부터 메트릭을 가져오도록 설정하는 것이다. 
+`metrics.k8s.io` API는 보통 메트릭 서버(Metrics Server)라는 애드온에 의해 제공되며, 
+Metrics Server는 별도로 실행해야 한다. 자원 메트릭에 대한 추가 정보는 
+[Metrics Server](/ko/docs/tasks/debug/debug-cluster/resource-metrics-pipeline/#metrics-server)를 참고한다.
 
-{{< note >}}
-{{< feature-state state="deprecated" for_k8s_version="v1.11" >}}
-힙스터에서 메트릭 가져오기는 Kubernetes 1.11에서 사용 중단(deprecated)됨.
-{{< /note >}}
+[메트릭 API를 위한 지원](#메트릭-api를-위한-지원)에서 위의 API들에 대한 안정성 보장 및 지원 상태를 
+확인할 수 있다.
 
-자세한 사항은 [메트릭 API를 위한 지원](#메트릭-api를-위한-지원)을 참조한다.
-
-오토스케일러는 스케일 하위 리소스를 사용하여 상응하는 확장 가능 컨트롤러(예: 레플리케이션 컨트롤러, 디플로이먼트, 레플리케이션 셋)에 접근한다.
-스케일은 레플리카의 개수를 동적으로 설정하고 각 현재 상태를 검사 할 수 있게 해주는 인터페이스이다.
-하위 리소스 스케일에 대한 자세한 내용은
-[여기](https://git.k8s.io/community/contributors/design-proposals/autoscaling/horizontal-pod-autoscaler.md#scale-subresource)에서 확인할 수 있다.
+HorizontalPodAutoscaler 컨트롤러는 스케일링을 지원하는 상응하는 
+워크로드 리소스(예: 디플로이먼트 및 스테이트풀셋)에 접근한다. 
+이들 리소스 각각은 `scale`이라는 하위 리소스를 갖고 있으며, 
+이 하위 리소스는 레플리카의 수를 동적으로 설정하고 각각의 현재 상태를 확인할 수 있도록 하는 인터페이스이다. 
+쿠버네티스 API의 하위 리소스에 대한 일반적인 정보는 [쿠버네티스 API 개념](/docs/reference/using-api/api-concepts/)에서 확인할 수 있다.
 
 ### 알고리즘 세부 정보
 
-가장 기본적인 관점에서, Horizontal Pod Autoscaler 컨트롤러는
+가장 기본적인 관점에서, HorizontalPodAutoscaler 컨트롤러는
 원하는(desired) 메트릭 값과 현재(current) 메트릭 값 사이의 비율로
 작동한다.
 
@@ -97,28 +114,30 @@ HorizontalPodAutoscaler는 보통 일련의 API 집합(`metrics.k8s.io`,
 예를 들어 현재 메트릭 값이 `200m`이고 원하는 값이
 `100m`인 경우 `200.0 / 100.0 == 2.0`이므로 복제본 수가 두 배가
 된다. 만약 현재 값이 `50m` 이면, `50.0 / 100.0 == 0.5` 이므로
-복제본 수를 반으로 줄일 것이다. 비율이 1.0(0.1을 기본값으로 사용하는
+복제본 수를 반으로 줄일 것이다. 컨트롤 플레인은 비율이 1.0(기본값이 0.1인
 `-horizontal-pod-autoscaler-tolerance` 플래그를 사용하여
 전역적으로 구성 가능한 허용 오차 내)에 충분히 가깝다면 스케일링을 건너 뛸 것이다.
 
 `targetAverageValue` 또는 `targetAverageUtilization`가 지정되면,
 `currentMetricValue`는 HorizontalPodAutoscaler의 스케일 목표
 안에 있는 모든 파드에서 주어진 메트릭의 평균을 취하여 계산된다.
-허용치를 확인하고 최종 값을 결정하기 전에, 파드
-준비 상태와 누락된 메트릭을 고려한다.
 
-삭제 타임 스탬프가 설정된 모든 파드(즉, 종료
-중인 파드) 및 실패한 파드는 모두 폐기된다.
+허용치를 확인하고 최종 값을 결정하기 전에, 
+컨트롤 플레인은 누락된 메트릭이 있는지, 
+그리고 몇 개의 파드가 [`Ready`](/ko/docs/concepts/workloads/pods/pod-lifecycle/#파드의-조건)인지도 고려한다.
+삭제 타임스탬프가 설정된 모든 파드(파드에 삭제 타임스탬프가 있으면 
+셧다운/삭제 중임을 뜻한다)는 무시되며, 모든 실패한 파드는 
+버려진다.
 
 특정 파드에 메트릭이 누락된 경우, 나중을 위해 처리를 미뤄두는데, 이와
 같이 누락된 메트릭이 있는 모든 파드는 최종 스케일 량을 조정하는데 사용된다.
 
-CPU를 스케일할 때, 어떤 파드라도 아직 준비가 안되었거나 (즉, 여전히
-초기화 중인 경우) * 또는 * 파드의 최신 메트릭 포인트가 준비되기
+CPU를 스케일할 때, 파드가 아직 Ready되지 않았거나(여전히
+초기화중이거나, unhealthy하여서) *또는* 파드의 최신 메트릭 포인트가 준비되기
 전이라면, 마찬가지로 해당 파드는 나중에 처리된다.
 
 기술적 제약으로 인해, HorizontalPodAutoscaler 컨트롤러는
- 특정 CPU 메트릭을 나중에 사용할지 말지 결정할 때, 파드가 준비되는
+특정 CPU 메트릭을 나중에 사용할지 말지 결정할 때, 파드가 준비되는
 시작 시간을 정확하게 알 수 없다. 대신, 파드가 아직 준비되지
 않았고 시작 이후 짧은 시간 내에 파드가 준비되지 않은 상태로
 전환된다면, 해당 파드를 "아직 준비되지 않음(not yet ready)"으로 간주한다.
@@ -131,20 +150,21 @@ CPU를 스케일할 때, 어떤 파드라도 아직 준비가 안되었거나 (
 `현재 메트릭 값 / 원하는 메트릭 값` 기본 스케일 비율은 나중에
 사용하기로 되어 있거나 위에서 폐기되지 않은 남아있는 파드를 사용하여 계산된다.
 
-누락된 메트릭이 있는 경우, 파드가 스케일 다운의 경우
+누락된 메트릭이 있는 경우, 컨트롤 플레인은 파드가 스케일 다운의 경우
 원하는 값의 100%를 소비하고 스케일 업의 경우 0%를 소비한다고
 가정하여 평균을 보다 보수적으로 재계산한다. 이것은 잠재적인
 스케일의 크기를 약화시킨다.
 
-또한 아직-준비되지-않은 파드가 있는 경우 누락된 메트릭이나
-아직-준비되지-않은 파드를 고려하지 않고 스케일 업했을 경우,
-아직-준비되지-않은 파드가 원하는 메트릭의 0%를 소비한다고
+또한, 아직-준비되지-않은 파드가 있고, 누락된 메트릭이나 
+아직-준비되지-않은 파드가 고려되지 않고 워크로드가 스케일업 된 경우, 
+컨트롤러는 아직-준비되지-않은 파드가 원하는 메트릭의 0%를 소비한다고 
 보수적으로 가정하고 스케일 확장의 크기를 약화시킨다.
 
-아직-준비되지-않은 파드나 누락된 메트릭을 고려한 후에 사용
-비율을 다시 계산한다. 새 비율이 스케일 방향을
-바꾸거나, 허용 오차 내에 있으면 스케일링을 건너뛴다. 그렇지 않으면, 새
-비율을 사용하여 스케일한다.
+아직-준비되지-않은 파드나 누락된 메트릭을 고려한 후에, 
+컨트롤러가 사용률을 다시 계산한다. 
+새로 계산한 사용률이 스케일 방향을 바꾸거나, 허용 오차 내에 있으면, 
+컨트롤러가 스케일링을 건너뛴다. 
+그렇지 않으면, 새로 계산한 사용률를 이용하여 파드 수 변경 결정을 내린다.
 
 평균 사용량에 대한 *원래* 값은 새로운 사용 비율이 사용되는
 경우에도 아직-준비되지-않은 파드 또는 누락된 메트릭에 대한
@@ -168,69 +188,40 @@ HPA가 여전히 확장할 수 있음을 의미한다.
 
 ## API 오브젝트
 
-Horizontal Pod Autoscaler는 쿠버네티스 `autoscaling` API 그룹의 API 리소스이다.
-CPU에 대한 오토스케일링 지원만 포함하는 안정된 버전은
-`autoscaling/v1` API 버전에서 찾을 수 있다.
-
-메모리 및 사용자 정의 메트릭에 대한 스케일링 지원을 포함하는 베타 버전은
-`autoscaling/v2beta2`에서 확인할 수 있다. `autoscaling/v2beta2`에서 소개된
-새로운 필드는 `autoscaling/v1`로 작업할 때 어노테이션으로 보존된다.
+Horizontal Pod Autoscaler는 
+쿠버네티스 `autoscaling` API 그룹의 API 리소스이다. 
+현재의 안정 버전은 `autoscaling/v2` API 버전이며, 
+메모리와 커스텀 메트릭에 대한 스케일링을 지원한다. 
+`autoscaling/v2`에서 추가된 새로운 필드는 `autoscaling/v1`를 이용할 때에는 
+어노테이션으로 보존된다.
 
 HorizontalPodAutoscaler API 오브젝트 생성시 지정된 이름이 유효한
 [DNS 서브도메인 이름](/ko/docs/concepts/overview/working-with-objects/names/#dns-서브도메인-이름)인지 확인해야 한다.
 API 오브젝트에 대한 자세한 내용은
-[HorizontalPodAutoscaler 오브젝트](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#horizontalpodautoscaler-v1-autoscaling)에서 찾을 수 있다.
+[HorizontalPodAutoscaler 오브젝트](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#horizontalpodautoscaler-v2-autoscaling)에서 찾을 수 있다.
 
-## kubectl에서 Horizontal Pod Autoscaler 지원
+## 워크로드 스케일링의 안정성 {#flapping}
 
-Horizontal Pod Autoscaler는 모든 API 리소스와 마찬가지로 `kubectl`에 의해 표준 방식으로 지원된다.
-`kubectl create` 커맨드를 사용하여 새로운 오토스케일러를 만들 수 있다.
-`kubectl get hpa`로 오토스케일러 목록을 조회할 수 있고, `kubectl describe hpa`로 세부 사항을 확인할 수 있다.
-마지막으로 `kubectl delete hpa`를 사용하여 오토스케일러를 삭제할 수 있다.
+HorizontalPodAutoscaler를 사용하여 레플리카 그룹의 크기를 관리할 때, 
+측정하는 메트릭의 동적 특성 때문에 레플리카 수가 계속 자주 요동칠 수 있다. 
+이는 종종 *thrashing* 또는 *flapping*이라고 불린다. 
+이는 사이버네틱스 분야의 *이력 현상(hysteresis)* 개념과 비슷하다.
 
-또한 Horizontal Pod Autoscaler를 생성할 수 있는 `kubectl autoscale`이라는 특별한 명령이 있다.
-예를 들어 `kubectl autoscale rs foo --min=2 --max=5 --cpu-percent=80`을
-실행하면 레플리케이션 셋 *foo* 에 대한 오토스케일러가 생성되고, 목표 CPU 사용률은 `80 %`,
-그리고 2와 5 사이의 레플리카 개수로 설정된다.
-`kubectl autoscale`에 대한 자세한 문서는 [여기](/docs/reference/generated/kubectl/kubectl-commands/#autoscale)에서 찾을 수 있다.
 
 
 ## 롤링 업데이트 중 오토스케일링
 
-현재 쿠버네티스에서는 기본 레플리카셋를 관리하는 디플로이먼트 오브젝트를 사용하여 롤링 업데이트를 수행할 수 있다.
-Horizontal Pod Autoscaler는 후자의 방법을 지원한다. Horizontal Pod Autoscaler는 디플로이먼트 오브젝트에 바인딩되고,
-디플로이먼트 오브젝트를 위한 크기를 설정하며, 디플로이먼트는 기본 레플리카셋의 크기를 결정한다.
+쿠버네티스는 디플로이먼트에 대한 롤링 업데이트를 지원한다. 
+이 경우, 디플로이먼트가 기저 레플리카셋을 알아서 관리한다. 
+디플로이먼트에 오토스케일링을 설정하려면, 
+각 디플로이먼트에 대한 HorizontalPodAutoscaler를 생성한다. 
+HorizontalPodAutoscaler는 디플로이먼트의 `replicas` 필드를 관리한다. 
+디플로이먼트 컨트롤러는 기저 레플리카셋에 `replicas` 값을 적용하여 
+롤아웃 과정 중/이후에 적절한 숫자까지 늘어나도록 한다.
 
-Horizontal Pod Autoscaler는 레플리케이션 컨트롤러를 직접 조작하는 롤링 업데이트에서 작동하지 않는다.
-즉, Horizontal Pod Autoscaler를 레플리케이션 컨트롤러에 바인딩하고 롤링 업데이트를 수행할 수 없다. (예 : `kubectl rolling-update`)
-작동하지 않는 이유는 롤링 업데이트에서 새 레플리케이션 컨트롤러를 만들 때,
-Horizontal Pod Autoscaler가 새 레플리케이션 컨트롤러에 바인딩되지 않기 때문이다.
-
-## 쿨-다운 / 지연에 대한 지원
-
-Horizontal Pod Autoscaler를 사용하여 레플리카 그룹의 스케일을 관리할 때,
-평가된 메트릭의 동적인 특징 때문에 레플리카 수가
-자주 변동할 수 있다. 이것은 때로는 *스래싱 (thrashing)* 이라고도 한다.
-
-v1.6 부터 클러스터 운영자는 `kube-controller-manager` 컴포넌트의 플래그로
-노출된 글로벌 HPA 설정을 튜닝하여 이 문제를 완화할 수 있다.
-
-v1.12부터는 새로운 알고리즘 업데이트가 업스케일 지연에 대한
-필요성을 제거하였다.
-
-- `--horizontal-pod-autoscaler-downscale-delay` : 다운스케일이
-  안정화되기까지의 시간 간격을 지정한다.
-  Horizontal Pod Autoscaler는 이전의 권장하는 크기를 기억하고,
-  이 시간 간격에서의 가장 큰 크기에서만 작동한다.
-  기본값은 5분(`5m0s`)이다.
-
-{{< note >}}
-이러한 파라미터 값을 조정할 때 클러스터 운영자는 가능한 결과를 알아야
-한다. 지연(쿨-다운) 값이 너무 길면, Horizontal Pod Autoscaler가
-워크로드 변경에 반응하지 않는다는 불만이 있을 수 있다. 그러나 지연 값을
-너무 짧게 설정하면, 레플리카셋의 크기가 평소와 같이 계속 스래싱될 수
-있다.
-{{< /note >}}
+오토스케일된 레플리카가 있는 스테이트풀셋의 롤링 업데이트를 수행하면, 
+스테이트풀셋이 직접 파드의 숫자를 관리한다(즉, 
+레플리카셋과 같은 중간 리소스가 없다).
 
 ## 리소스 메트릭 지원
 
@@ -264,7 +255,7 @@ resource:
 
 {{< feature-state for_k8s_version="v1.20" state="alpha" >}}
 
-`HorizontalPodAutoscaler` 는 대상 리소스를 스케일링하기 위해 HPA가 파드 집합에서 개별 컨테이너의
+HorizontalPodAutoscaler API는 대상 리소스를 스케일링하기 위해 HPA가 파드 집합에서 개별 컨테이너의
 리소스 사용량을 추적할 수 있는 컨테이너 메트릭 소스도 지원한다.
 이를 통해 특정 파드에서 가장 중요한 컨테이너의 스케일링 임계값을 구성할 수 있다.
 예를 들어 웹 애플리케이션 프로그램과 로깅 사이드카가 있는 경우 사이드카 컨테이너와 해당 리소스 사용을 무시하고
@@ -276,6 +267,7 @@ resource:
 해당 파드는 무시되고 권장 사항이 다시 계산된다. 계산에 대한 자세한 내용은 [알고리즘](#알고리즘-세부-정보)을
 을 참조한다. 컨테이너 리소스를 오토스케일링에 사용하려면 다음과 같이
 메트릭 소스를 정의한다.
+
 ```yaml
 type: ContainerResource
 containerResource:
@@ -301,27 +293,31 @@ HorizontalPodAutoscaler가 추적하는 컨테이너의 이름을 변경하는 
 이전 컨테이너 이름을 제거하여 정리한다.
 {{< /note >}}
 
-## 멀티 메트릭을 위한 지원
 
-Kubernetes 1.6은 멀티 메트릭을 기반으로 스케일링을 지원한다. `autoscaling/v2beta2` API
-버전을 사용하여 Horizontal Pod Autoscaler가 스케일을 조정할 멀티 메트릭을 지정할 수 있다. 그런 다음 Horizontal Pod
-Autoscaler 컨트롤러가 각 메트릭을 평가하고, 해당 메트릭을 기반으로 새 스케일을 제안한다.
-제안된 스케일 중 가장 큰 것이 새로운 스케일로 사용된다.
+## 사용자 정의 메트릭을 이용하는 스케일링
 
-## 사용자 정의 메트릭을 위한 지원
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
 
-{{< note >}}
-쿠버네티스 1.2는 특수 어노테이션을 사용하여 애플리케이션 관련 메트릭을 기반으로 하는 스케일의 알파 지원을 추가했다.
-쿠버네티스 1.6에서는 이러한 어노테이션 지원이 제거되고 새로운 오토스케일링 API가 추가되었다. 이전 사용자 정의
-메트릭 수집 방법을 계속 사용할 수는 있지만, Horizontal Pod Autoscaler에서는 이 메트릭을 사용할 수 없다. 그리고
-Horizontal Pod Autoscaler 컨트롤러에서는 더 이상 스케일 할 사용자 정의 메트릭을 지정하는 이전 어노테이션을 사용할 수 없다.
-{{< /note >}}
+(이전에는 `autoscaling/v2beta2` API 버전이 이 기능을 베타 기능으로 제공했었다.)
 
-쿠버네티스 1.6에서는 Horizontal Pod Autoscaler에서 사용자 정의 메트릭을 사용할 수 있도록 지원한다.
-`autoscaling/v2beta2` API에서 사용할 Horizontal Pod Autoscaler에 대한 사용자 정의 메트릭을 추가 할 수 있다.
-그리고 쿠버네티스는 새 사용자 정의 메트릭 API에 질의하여 적절한 사용자 정의 메트릭의 값을 가져온다.
+`autoscaling/v2beta2` API 버전을 사용하는 경우, 
+(쿠버네티스 또는 어느 쿠버네티스 구성 요소에도 포함되어 있지 않은) 
+커스텀 메트릭을 기반으로 스케일링을 수행하도록 HorizontalPodAutoscaler를 구성할 수 있다. 
+이 경우 HorizontalPodAutoscaler 컨트롤러가 이러한 커스텀 메트릭을 쿠버네티스 API로부터 조회한다.
 
-요구 사항은 [메트릭을 위한 지원](#메트릭-API를-위한-지원)을 참조한다.
+요구 사항에 대한 정보는 [메트릭 API를 위한 지원](#메트릭-API를-위한-지원)을 참조한다.
+
+## 복수의 메트릭을 이용하는 스케일링
+
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
+
+(이전에는 `autoscaling/v2beta2` API 버전이 이 기능을 베타 기능으로 제공했었다.)
+
+`autoscaling/v2beta2` API 버전을 사용하는 경우, 
+HorizontalPodAutoscaler가 스케일링에 사용할 복수의 메트릭을 설정할 수 있다. 
+이 경우 HorizontalPodAutoscaler 컨트롤러가 각 메트릭을 확인하고 해당 단일 메트릭에 대한 새로운 스케일링 크기를 제안한다. 
+HorizontalPodAutoscaler는 새롭게 제안된 스케일링 크기 중 가장 큰 값을 선택하여 워크로드 사이즈를 
+조정한다(이 값이 이전에 설정한 '총 최대값(overall maximum)'보다는 크지 않을 때에만).
 
 ## 메트릭 API를 위한 지원
 
@@ -333,34 +329,36 @@ API에 접속하려면 클러스터 관리자는 다음을 확인해야 한다.
 * 해당 API 등록:
 
    * 리소스 메트릭의 경우, 일반적으로 이것은 [메트릭-서버](https://github.com/kubernetes-sigs/metrics-server)가 제공하는 `metrics.k8s.io` API이다.
-     클러스터 애드온으로 시작할 수 있다.
+     클러스터 애드온으로 실행할 수 있다.
 
    * 사용자 정의 메트릭의 경우, 이것은 `custom.metrics.k8s.io` API이다. 메트릭 솔루션 공급 업체에서 제공하는 "어댑터" API 서버에서 제공한다.
-     메트릭 파이프라인 또는 [알려진 솔루션 목록](https://github.com/kubernetes/metrics/blob/master/IMPLEMENTATIONS.md#custom-metrics-api)으로 확인한다.
-     직접 작성하고 싶다면 [샘플](https://github.com/kubernetes-sigs/custom-metrics-apiserver)을 확인한다.
+     사용 가능한 쿠버네티스 메트릭 어댑터가 있는지 확인하려면 사용하고자 하는 메트릭 파이프라인을 확인한다.
 
    * 외부 메트릭의 경우, 이것은 `external.metrics.k8s.io` API이다. 위에 제공된 사용자 정의 메트릭 어댑터에서 제공될 수 있다.
 
-* `--horizontal-pod-autoscaler-use-rest-clients`는 `true`이거나 설정되지 않음. 이것을 false로 설정하면 더 이상 사용되지 않는 힙스터 기반 오토스케일링으로 전환된다.
-
 이런 다양한 메트릭 경로와 각각의 다른 점에 대한 상세 내용은 관련 디자인 제안서인
-[HPA V2](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/autoscaling/hpa-v2.md),
-[custom.metrics.k8s.io](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/instrumentation/custom-metrics-api.md),
-[external.metrics.k8s.io](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/instrumentation/external-metrics-api.md)를 참조한다.
+[HPA V2](https://github.com/kubernetes/design-proposals-archive/blob/main/autoscaling/hpa-v2.md),
+[custom.metrics.k8s.io](https://github.com/kubernetes/design-proposals-archive/blob/main/instrumentation/custom-metrics-api.md),
+[external.metrics.k8s.io](https://github.com/kubernetes/design-proposals-archive/blob/main/instrumentation/external-metrics-api.md)를 참조한다.
 
 어떻게 사용하는지에 대한 예시는 [커스텀 메트릭 사용하는 작업 과정](/ko/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/#다양한-메트릭-및-사용자-정의-메트릭을-기초로한-오토스케일링)과
 [외부 메트릭스 사용하는 작업 과정](/ko/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/#쿠버네티스-오브젝트와-관련이-없는-메트릭을-기초로한-오토스케일링)을 참조한다.
 
-## 구성가능한 스케일링 동작 지원
+## 구성가능한 스케일링 동작
 
-[v1.18](https://github.com/kubernetes/enhancements/blob/master/keps/sig-autoscaling/853-configurable-hpa-scale-velocity/README.md)
-부터 `v2beta2` API는 HPA `behavior` 필드를 통해
-스케일링 동작을 구성할 수 있다.
-동작은 `behavior` 필드 아래의 `scaleUp` 또는 `scaleDown`
-섹션에서 스케일링 업과 다운을 위해 별도로 지정된다. 안정화 윈도우는
-스케일링 대상에서 레플리카 수의 플래핑(flapping)을 방지하는
-양방향에 대해 지정할 수 있다. 마찬가지로 스케일링 정책을 지정하면
-스케일링 중 레플리카 변경 속도를 제어할 수 있다.
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
+
+(이전에는 `autoscaling/v2beta2` API 버전이 이 기능을 베타 기능으로 제공했었다.)
+
+`v2` 버전의 HorizontalPodAutoscaler API를 사용한다면, 
+`behavior` 필드([API 레퍼런스](/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v2/#HorizontalPodAutoscalerSpec) 참고)를 
+사용하여 스케일업 동작과 스케일다운 동작을 별도로 구성할 수 있다.
+각 방향에 대한 동작은 `behavior` 필드 아래의 
+`scaleUp` / `scaleDown`를 설정하여 지정할 수 있다.
+
+_안정화 윈도우_ 를 명시하여 스케일링 목적물의 
+레플리카 수 [흔들림](#flapping)을 방지할 수 있다. 스케일링 정책을 이용하여 스케일링 시 
+레플리카 수 변화 속도를 조절할 수도 있다.
 
 ### 스케일링 정책
 
@@ -397,23 +395,29 @@ behavior:
 확장 방향에 대해 `selectPolicy` 필드를 확인하여 폴리시 선택을 변경할 수 있다.
 레플리카의 수를 최소로 변경할 수 있는 폴리시를 선택하는 `최소(Min)`로 값을 설정한다.
 값을 `Disabled` 로 설정하면 해당 방향으로 스케일링이 완전히
-비활성화 된다.
+비활성화된다.
 
 ### 안정화 윈도우
 
-안정화 윈도우는 스케일링에 사용되는 메트릭이 계속 변동할 때 레플리카의 플래핑을
-다시 제한하기 위해 사용된다. 안정화 윈도우는 스케일링을 방지하기 위해 과거부터
-계산된 의도한 상태를 고려하는 오토스케일링 알고리즘에 의해 사용된다.
-다음의 예시에서 `scaleDown` 에 대해 안정화 윈도우가 지정되어있다.
+안정화 윈도우는 스케일링에 사용되는 메트릭이 계속 변동할 때 
+레플리카 수의 [흔들림](#flapping)을 제한하기 위해 사용된다. 
+오토스케일링 알고리즘은 이전의 목표 상태를 추론하고 
+워크로드 수의 원치 않는 변화를 방지하기 위해 이 안정화 윈도우를 활용한다.
+
+예를 들어, 다음 예제 스니펫에서, `scaleDown`에 대해 안정화 윈도우가 설정되었다.
 
 ```yaml
-scaleDown:
-  stabilizationWindowSeconds: 300
+behavior:
+  scaleDown:
+    stabilizationWindowSeconds: 300
 ```
 
-메트릭이 대상을 축소해야하는 것을 나타내는 경우 알고리즘은
-이전에 계산된 의도한 상태를 살펴보고 지정된 간격의 최고 값을 사용한다.
-위의 예시에서 지난 5분 동안 모든 의도한 상태가 고려된다.
+메트릭 관측 결과 스케일링 목적물이 스케일 다운 되어야 하는 경우, 
+알고리즘은 이전에 계산된 목표 상태를 확인하고, 해당 구간에서 계산된 값 중 가장 높은 값을 사용한다. 
+위의 예시에서, 이전 5분 동안의 모든 목표 상태가 고려 대상이 된다.
+
+이를 통해 동적 최대값(rolling maximum)을 근사화하여, 
+스케일링 알고리즘이 빠른 시간 간격으로 파드를 제거하고 바로 다시 동일한 파드를 재생성하는 현상을 방지할 수 있다.
 
 ### 기본 동작
 
@@ -459,7 +463,7 @@ behavior:
     stabilizationWindowSeconds: 60
 ```
 
-### 예시: 스케일 다운 비율 제한
+### 예시: 스케일 다운 속도 제한
 
 HPA에 의해 파드가 제거되는 속도를 분당 10%로 제한하기 위해
 다음 동작이 HPA에 추가된다.
@@ -473,9 +477,7 @@ behavior:
       periodSeconds: 60
 ```
 
-마지막으로 5개의 파드를 드롭하기 위해 다른 폴리시를 추가하고, 최소 선택
-전략을 추가할 수 있다.
-분당 5개 이하의 파드가 제거되지 않도록, 고정 크기가 5인 두 번째 축소
+분당 제거되는 파드 수가 5를 넘지 않도록 하기 위해, 크기가 5로 고정된 두 번째 축소
 정책을 추가하고, `selectPolicy` 를 최소로 설정하면 된다. `selectPolicy` 를 `Min` 으로 설정하면
 자동 스케일러가 가장 적은 수의 파드에 영향을 주는 정책을 선택함을 의미한다.
 
@@ -503,6 +505,18 @@ behavior:
     selectPolicy: Disabled
 ```
 
+## kubectl의 HorizontalPodAutoscaler 지원
+
+Horizontal Pod Autoscaler는 모든 API 리소스와 마찬가지로 `kubectl`에 의해 표준 방식으로 지원된다.
+`kubectl create` 커맨드를 사용하여 새로운 오토스케일러를 만들 수 있다.
+`kubectl get hpa`로 오토스케일러 목록을 조회할 수 있고, `kubectl describe hpa`로 세부 사항을 확인할 수 있다.
+마지막으로 `kubectl delete hpa`를 사용하여 오토스케일러를 삭제할 수 있다.
+
+또한 Horizontal Pod Autoscaler를 생성할 수 있는 `kubectl autoscale`이라는 특별한 명령이 있다.
+예를 들어 `kubectl autoscale rs foo --min=2 --max=5 --cpu-percent=80`을
+실행하면 레플리카셋 *foo* 에 대한 오토스케일러가 생성되고, 목표 CPU 사용률은 `80 %`,
+그리고 2와 5 사이의 레플리카 개수로 설정된다.
+
 ## 암시적 유지 관리 모드 비활성화
 
 HPA 구성 자체를 변경할 필요없이 대상에 대한
@@ -512,9 +526,54 @@ HPA를 암시적으로 비활성화할 수 있다. 대상의 의도한
 다시 활성화할 때까지 HPA는 대상 조정을
 중지한다(그리고 `ScalingActive` 조건 자체를 `false`로 설정).
 
+### 디플로이먼트와 스테이트풀셋을 horizontal autoscaling으로 전환하기
+
+HPA가 활성화되어 있으면, 디플로이먼트, 스테이트풀셋 모두 또는 둘 중 하나의
+{{< glossary_tooltip text="매니페스트" term_id="manifest" >}}에서 
+`spec.replicas`의 값을 삭제하는 것이 바람직하다. 
+이렇게 적용하지 않으면, (예를 들어 `kubectl apply -f deployment.yaml` 명령으로) 
+오브젝트에 변경이 생길 때마다 쿠버네티스가 파드의 수를 
+`spec.replicas`에 기재된 값으로 조정할 것이다. 
+이는 바람직하지 않으며 HPA가 활성화된 경우에 문제가 될 수 있다.
+
+`spec.replicas` 값을 제거하면 1회성으로 파드 숫자가 줄어들 수 있는데, 
+이는 이 키의 기본값이 1이기 때문이다(레퍼런스: 
+[디플로이먼트 레플리카](/ko/docs/concepts/workloads/controllers/deployment#레플리카)). 
+값을 업데이트하면, 파드 1개를 제외하고 나머지 파드가 종료 절차에 들어간다. 
+이후의 디플로이먼트 애플리케이션은 정상적으로 작동하며 롤링 업데이트 구성도 의도한 대로 동작한다.
+이러한 1회성 저하를 방지하는 방법이 존재하며, 
+디플로이먼트 수정 방법에 따라 다음 중 한 가지 방법을 선택한다.
+
+{{< tabs name="fix_replicas_instructions" >}}
+{{% tab name="클라이언트 쪽에 적용하기 (기본값))" %}}
+
+1. `kubectl apply edit-last-applied deployment/<디플로이먼트_이름>`
+2. 에디터에서 `spec.replicas`를 삭제한다. 저장하고 에디터를 종료하면, `kubectl`이 
+    업데이트 사항을 적용한다. 이 단계에서 파드 숫자가 변경되지는 않는다.
+3. 이제 매니페스트에서 `spec.replicas`를 삭제할 수 있다. 
+    소스 코드 관리 도구를 사용하고 있다면, 변경 사항을 추적할 수 있도록 
+    변경 사항을 커밋하고 추가 필요 단계를 수행한다.
+4. 이제 `kubectl apply -f deployment.yaml`를 실행할 수 있다.
+
+{{% /tab %}}
+{{% tab name="서버 쪽에 적용하기" %}}
+
+[서버 쪽에 적용하기](/docs/reference/using-api/server-side-apply/)를 수행하려면, 
+정확히 이러한 사용 사례를 다루고 있는 [소유권 이전하기](/docs/reference/using-api/server-side-apply/#transferring-ownership) 
+가이드라인을 참조한다.
+
+{{% /tab %}}
+{{< /tabs >}}
+
 ## {{% heading "whatsnext" %}}
 
+클러스터에 오토스케일링을 구성한다면, [Cluster Autoscaler](https://github.com/kubernetes/autoscaler/tree/master/cluster-autoscaler)와 같은 
+클러스터 수준의 오토스케일러 사용을 고려해 볼 수 있다.
 
-* 디자인 문서: [Horizontal Pod Autoscaling](https://git.k8s.io/community/contributors/design-proposals/autoscaling/horizontal-pod-autoscaler.md).
-* kubectl 오토스케일 커맨드: [kubectl autoscale](/docs/reference/generated/kubectl/kubectl-commands/#autoscale).
-* [Horizontal Pod Autoscaler](/ko/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/)의 사용 예제.
+HorizontalPodAutoscaler에 대한 더 많은 정보는 아래를 참고한다.
+
+* horizontal pod autoscaling에 대한 [연습 예제](/ko/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/)를 확인한다.
+* [`kubectl autoscale`](/docs/reference/generated/kubectl/kubectl-commands/#autoscale) 문서를 확인한다.
+* 커스텀 메트릭 어댑터를 직접 작성하고 싶다면, 
+  [샘플](https://github.com/kubernetes-sigs/custom-metrics-apiserver)을 확인한다.
+* HorizontalPodAutoscaler [API 레퍼런스](/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v2/)를 확인한다.
diff --git a/content/ko/docs/tasks/run-application/run-single-instance-stateful-application.md b/content/ko/docs/tasks/run-application/run-single-instance-stateful-application.md
index cf6c3188b7..a26c0a459f 100644
--- a/content/ko/docs/tasks/run-application/run-single-instance-stateful-application.md
+++ b/content/ko/docs/tasks/run-application/run-single-instance-stateful-application.md
@@ -196,7 +196,7 @@ kubectl delete pv mysql-pv-volume
 
 * [디플로이먼트 오브젝트](/ko/docs/concepts/workloads/controllers/deployment/)에 대해 더 배워 보기
 
-* [애플리케이션 배포하기](/docs/tasks/run-application/run-stateless-application-deployment/)에 대해 더 배워보기
+* [애플리케이션 배포하기](/ko/docs/tasks/run-application/run-stateless-application-deployment/)에 대해 더 배워보기
 
 * [kubectl run 문서](/docs/reference/generated/kubectl/kubectl-commands/#run)
 
diff --git a/content/ko/docs/tasks/run-application/run-stateless-application-deployment.md b/content/ko/docs/tasks/run-application/run-stateless-application-deployment.md
new file mode 100644
index 0000000000..ea5bfd76af
--- /dev/null
+++ b/content/ko/docs/tasks/run-application/run-stateless-application-deployment.md
@@ -0,0 +1,160 @@
+---
+title: 디플로이먼트(Deployment)로 스테이트리스 애플리케이션 실행하기
+min-kubernetes-server-version: v1.9
+content_type: tutorial
+weight: 10
+---
+
+<!-- overview -->
+
+이 페이지에서는 쿠버네티스 디플로이먼트 오브젝트를 사용하여 애플리케이션을 실행하는 방법을 설명한다.
+
+
+
+
+## {{% heading "objectives" %}}
+
+
+* nginx 디플로이먼트 생성하기
+* kubectl을 사용하여 디플로이먼트 정보 나열하기
+* 디플로이먼트 업데이트하기
+
+
+
+
+## {{% heading "prerequisites" %}}
+
+
+{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+
+
+
+
+<!-- lessoncontent -->
+
+## nginx 디플로이먼트 생성하고 탐색하기
+
+쿠버네티스 디플로이먼트 오브젝트를 생성하여 애플리케이션을 실행할 수 있으며,
+디플로이먼트에 대한 명세를 YAML 파일에 기술할 수 있다. 예를 들어 이 YAML 파일은 
+nginx:1.14.2 도커 이미지를 실행하는 디플로이먼트에 대한 명세를 담고 있다.
+
+{{< codenew file="application/deployment.yaml" >}}
+
+
+1. YAML 파일을 기반으로 디플로이먼트를 생성한다.
+
+        kubectl apply -f https://k8s.io/examples/application/deployment.yaml
+
+1. 디플로이먼트에 대한 정보를 살펴본다.
+
+        kubectl describe deployment nginx-deployment
+
+    출력은 다음과 유사하다.
+
+        Name:     nginx-deployment
+        Namespace:    default
+        CreationTimestamp:  Tue, 30 Aug 2016 18:11:37 -0700
+        Labels:     app=nginx
+        Annotations:    deployment.kubernetes.io/revision=1
+        Selector:   app=nginx
+        Replicas:   2 desired | 2 updated | 2 total | 2 available | 0 unavailable
+        StrategyType:   RollingUpdate
+        MinReadySeconds:  0
+        RollingUpdateStrategy:  1 max unavailable, 1 max surge
+        Pod Template:
+          Labels:       app=nginx
+          Containers:
+           nginx:
+            Image:              nginx:1.14.2
+            Port:               80/TCP
+            Environment:        <none>
+            Mounts:             <none>
+          Volumes:              <none>
+        Conditions:
+          Type          Status  Reason
+          ----          ------  ------
+          Available     True    MinimumReplicasAvailable
+          Progressing   True    NewReplicaSetAvailable
+        OldReplicaSets:   <none>
+        NewReplicaSet:    nginx-deployment-1771418926 (2/2 replicas created)
+        No events.
+
+1. 디플로이먼트에 의해 생성된 파드를 나열한다.
+
+        kubectl get pods -l app=nginx
+
+    출력은 다음과 유사하다.
+
+        NAME                                READY     STATUS    RESTARTS   AGE
+        nginx-deployment-1771418926-7o5ns   1/1       Running   0          16h
+        nginx-deployment-1771418926-r18az   1/1       Running   0          16h
+
+1. 파드에 대한 정보를 살펴본다.
+
+        kubectl describe pod <pod-name>
+
+    `<pod-name>`은 파드 중 하나의 이름이다.
+
+## 디플로이먼트 업데이트하기
+
+새 YAML 파일을 적용하여 디플로이먼트를 업데이트할 수 있다. 이 YAML 파일은 
+nginx 1.16.1을 사용하도록 디플로이먼트를 업데이트해야 함을 명시하고 있다.
+
+{{< codenew file="application/deployment-update.yaml" >}}
+
+1. 새 YAML 파일을 적용한다.
+
+         kubectl apply -f https://k8s.io/examples/application/deployment-update.yaml
+
+1. 디플로이먼트가 새 이름으로 파드를 생성하고 이전 파드를 삭제하는 것을 확인한다.
+
+         kubectl get pods -l app=nginx
+
+## 레플리카 수를 늘려 애플리케이션 확장하기
+
+새 YAML 파일을 적용하여 디플로이먼트의 파드 수를 늘릴 수 있다. 
+이 YAML 파일은 `replicas`를 4로 설정하여 디플로이먼트에 
+4개의 파드가 있어야 함을 명시하고 있다.
+
+{{< codenew file="application/deployment-scale.yaml" >}}
+
+1. 새 YAML 파일을 적용한다.
+
+        kubectl apply -f https://k8s.io/examples/application/deployment-scale.yaml
+
+1. 디플로이먼트에 4개의 파드가 있는지 확인한다.
+
+        kubectl get pods -l app=nginx
+
+    출력은 다음과 유사하다.
+
+        NAME                               READY     STATUS    RESTARTS   AGE
+        nginx-deployment-148880595-4zdqq   1/1       Running   0          25s
+        nginx-deployment-148880595-6zgi1   1/1       Running   0          25s
+        nginx-deployment-148880595-fxcez   1/1       Running   0          2m
+        nginx-deployment-148880595-rwovn   1/1       Running   0          2m
+
+## 디플로이먼트 삭제하기
+
+이름으로 디플로이먼트를 삭제한다.
+
+    kubectl delete deployment nginx-deployment
+
+## ReplicationControllers -- 예전 방식
+
+애플리케이션을 복제하여 생성하는 기본적인 방법은 내부적으로 레플리카셋(ReplicaSet)을 활용하는 디플로이먼트를
+사용하는 것이다. 쿠버네티스에 디플로이먼트 및 레플리카셋이 도입되기 전에는
+[레플리케이션컨트롤러(ReplicationController)](/ko/docs/concepts/workloads/controllers/replicationcontroller/)를 사용하여 복제 애플리케이션을
+구성했었다.
+
+
+
+
+## {{% heading "whatsnext" %}}
+
+
+* [디플로이먼트 오브젝트](/ko/docs/concepts/workloads/controllers/deployment/)에 대해 더 배워보기
+
+
+
+
diff --git a/content/ko/docs/tasks/run-application/scale-stateful-set.md b/content/ko/docs/tasks/run-application/scale-stateful-set.md
new file mode 100644
index 0000000000..52fe7ac593
--- /dev/null
+++ b/content/ko/docs/tasks/run-application/scale-stateful-set.md
@@ -0,0 +1,100 @@
+---
+
+
+
+
+
+
+
+
+title: 스테이트풀셋(StatefulSet) 확장하기
+content_type: task
+weight: 50
+---
+
+<!-- overview -->
+이 작업은 스테이트풀셋을 확장하는 방법을 보여준다. 스테이트풀셋 확장은 레플리카 수를 늘리거나 줄이는 것을 의미한다.
+
+
+## {{% heading "prerequisites" %}}
+
+
+* 스테이트풀셋은 쿠버네티스 버전 1.5 이상에서만 사용할 수 있다.
+   쿠버네티스 버전을 확인하려면 `kubectl version`을 실행한다.
+
+* 모든 스테이트풀 애플리케이션이 제대로 확장되는 것은 아니다. 스테이트풀셋을 확장할지 여부가 확실하지 않은 경우에 자세한 내용은 [스테이트풀셋](/ko/docs/concepts/workloads/controllers/statefulset/) 또는 [스테이트풀셋 튜토리얼](/ko/docs/tutorials/stateful-application/basic-stateful-set/)을 참조한다.
+
+* 스테이트풀 애플리케이션 클러스터가 완전히 정상이라고 확신할 때만 
+  확장을 수행해야 한다.
+
+
+
+<!-- steps -->
+
+## 스테이트풀셋 확장하기
+
+### kubectl을 사용하여 스테이트풀셋 확장
+
+먼저 확장하려는 스테이트풀셋을 찾는다.
+
+```shell
+kubectl get statefulsets <stateful-set-name>
+```
+
+스테이트풀셋의 레플리카 수를 변경한다.
+
+```shell
+kubectl scale statefulsets <stateful-set-name> --replicas=<new-replicas>
+```
+
+### 스테이트풀셋 인플레이스(in-place) 업데이트
+
+대안으로 스테이트풀셋에 [인플레이스 업데이트](/ko/docs/concepts/cluster-administration/manage-deployment/#in-place-updates-of-resources)를 수행할 수 있다.
+
+스테이트풀셋이 처음에 `kubectl apply`로 생성된 경우,
+스테이트풀셋 매니페스트의 `.spec.replicas`를 업데이트한 다음 `kubectl apply`를 수행한다.
+
+```shell
+kubectl apply -f <stateful-set-file-updated>
+```
+
+그렇지 않으면 `kubectl edit`로 해당 필드를 편집한다.
+
+```shell
+kubectl edit statefulsets <stateful-set-name>
+```
+
+또는 `kubectl patch`를 사용한다.
+
+```shell
+kubectl patch statefulsets <stateful-set-name> -p '{"spec":{"replicas":<new-replicas>}}'
+```
+
+## 트러블슈팅
+
+### 축소가 제대로 작동하지 않음
+
+스테이트풀셋에서 관리하는 스테이트풀 파드가 비정상인 경우에는 스테이트풀셋을 축소할 수 없다. 축소는 
+스테이트풀 파드가 실행되고 준비된 후에만 발생한다.
+
+spec.replicas > 1인 경우 쿠버네티스는 비정상 파드의 원인을 결정할 수 없다. 영구적인 오류 또는 일시적인 오류의 결과일 수 있다. 일시적인 오류는 업그레이드 또는 유지 관리에 필요한 재시작으로 인해 발생할 수 있다.
+
+영구적인 오류로 인해 파드가 비정상인 경우 
+오류를 수정하지 않고 확장하면 스테이트풀셋 멤버십이 올바르게 작동하는 데 필요한 
+특정 최소 레플리카 수 아래로 떨어지는 상태로 이어질 수 있다. 
+이로 인해 스테이트풀셋을 사용할 수 없게 될 수 있다.
+
+일시적인 오류로 인해 파드가 비정상 상태이고 파드를 다시 사용할 수 있게 되면 
+일시적인 오류가 확장 또는 축소 작업을 방해할 수 있다. 일부 분산 
+데이터베이스에는 노드가 동시에 가입 및 탈퇴할 때 문제가 있다. 이러한 경우 
+애플리케이션 수준에서 확장 작업에 대해 추론하고 스테이트풀 애플리케이션 클러스터가 
+완전히 정상이라고 확신할 때만 확장을 수행하는 것이 좋다.
+
+
+
+## {{% heading "whatsnext" %}}
+
+
+* [스테이트풀셋 삭제하기](/ko/docs/tasks/run-application/delete-stateful-set/)에 대해 더 배워보기
+
+
diff --git a/content/ko/docs/tasks/service-catalog/_index.md b/content/ko/docs/tasks/service-catalog/_index.md
new file mode 100644
index 0000000000..bc8920240f
--- /dev/null
+++ b/content/ko/docs/tasks/service-catalog/_index.md
@@ -0,0 +1,5 @@
+---
+title: "서비스 카탈로그"
+description: 서비스 카탈로그 익스텐션(extension) API를 설치한다.
+weight: 150
+---
diff --git a/content/ko/docs/tasks/service-catalog/install-service-catalog-using-sc.md b/content/ko/docs/tasks/service-catalog/install-service-catalog-using-sc.md
new file mode 100644
index 0000000000..e7af324ddf
--- /dev/null
+++ b/content/ko/docs/tasks/service-catalog/install-service-catalog-using-sc.md
@@ -0,0 +1,78 @@
+---
+title: SC로 서비스 카탈로그 설치하기
+content_type: task
+---
+
+<!-- overview -->
+{{< glossary_definition term_id="service-catalog" length="all" prepend="서비스 카탈로그는" >}}
+
+GCP [서비스 카탈로그 설치 프로그램](https://github.com/GoogleCloudPlatform/k8s-service-catalog#installation)
+도구로 쿠버네티스 클러스터에 서비스 카탈로그를 쉽게 설치하거나 제거하여 
+Google Cloud 프로젝트에 연결할 수 있다.
+
+서비스 카탈로그는 Google Cloud뿐 아니라 모든 종류의 관리형 서비스와 함께 작동할 수 있다.
+
+## {{% heading "prerequisites" %}}
+
+* [서비스 카탈로그](/ko/docs/concepts/extend-kubernetes/service-catalog/)의 핵심 개념을 이해한다.
+* [Go 1.6+](https://golang.org/dl/)를 설치하고 `GOPATH`를 설정한다.
+* SSL 아티팩트 생성에 필요한 [cfssl](https://github.com/cloudflare/cfssl) 도구를 설치한다.
+* 서비스 카탈로그에는 Kubernetes 버전 1.7 이상이 필요하다.
+* [kubectl 설치 및 설정](/ko/docs/tasks/tools/)을 사용하여 Kubernetes 버전 1.7 이상의 클러스터에 연결하도록 구성한다.
+* kubectl 사용자는 서비스 카탈로그를 설치하기 위해 *cluster-admin* 역할에 바인딩되어야 한다. 이것이 사실인지 확인하려면 다음 명령을 실행한다.
+
+        kubectl create clusterrolebinding cluster-admin-binding --clusterrole=cluster-admin --user=<user-name>
+
+
+
+
+<!-- steps -->
+## 로컬 환경에 `sc` 설치하기
+
+설치 프로그램은 로컬 컴퓨터에서 `sc`라는 CLI 도구로 실행된다.
+
+`go get`을 사용하여 설치한다.
+
+```shell
+go get github.com/GoogleCloudPlatform/k8s-service-catalog/installer/cmd/sc
+```
+
+`sc`는 이제 `GOPATH/bin` 디렉토리에 설치되어야 한다.
+
+## 쿠버네티스 클러스터에 서비스 카탈로그 설치하기
+
+먼저 명령을 실행하여 모든 종속성이 설치되었는지 확인한다.
+
+```shell
+sc check
+```
+
+확인에 성공하면 다음을 반환해야 한다.
+
+```
+Dependency check passed. You are good to go.
+```
+
+그런 다음 설치 명령을 실행하고 백업에 사용할 `storageclass`를 지정한다.
+
+```shell
+sc install --etcd-backup-storageclass "standard"
+```
+
+## 서비스 카탈로그 제거하기
+
+`sc` 도구를 사용하여 쿠버네티스 클러스터에서 서비스 카탈로그를 제거하려면 다음을 실행한다.
+
+```shell
+sc uninstall
+```
+
+
+
+
+## {{% heading "whatsnext" %}}
+
+* [샘플 서비스 브로커](https://github.com/openservicebrokerapi/servicebroker/blob/master/gettingStarted.md#sample-service-brokers) 살펴보기
+* [kubernetes-sigs/service-catalog](https://github.com/kubernetes-sigs/service-catalog) 프로젝트 탐색
+
+
diff --git a/content/ko/docs/tasks/tls/managing-tls-in-a-cluster.md b/content/ko/docs/tasks/tls/managing-tls-in-a-cluster.md
index d6f29e780d..8a67143f54 100644
--- a/content/ko/docs/tasks/tls/managing-tls-in-a-cluster.md
+++ b/content/ko/docs/tasks/tls/managing-tls-in-a-cluster.md
@@ -1,11 +1,15 @@
 ---
 title: 클러스터에서 TLS 인증서 관리
 content_type: task
+
+
+
+
 ---
 
 <!-- overview -->
 
-쿠버네티스는 사용자가 제어하는 ​​인증 기관 (CA)에서 서명한 TLS 인증서를 
+쿠버네티스는 사용자가 제어하는 인증 기관 (CA)에서 서명한 TLS 인증서를 
 프로비저닝 할 수 있는 `certificates.k8s.io` API를 제공한다.
 이러한 CA 및 인증서는 워크로드 간의 신뢰 관계를 구성하는 용도로 사용할 수 있다.
 
@@ -13,7 +17,7 @@ content_type: task
 유사한 프로토콜을 사용한다.
 
 {{< note >}}
-`certificates.k8s.io` API를 사용하여 생성된 인증서는 전용 CA로 서명된다. 
+`certificates.k8s.io` API를 사용하여 생성된 인증서는 [전용 CA](#a-note-to-cluster-administrators)로 서명된다. 
 이러한 목적을 위해 클러스터 루트 CA를 사용하도록 클러스터를 
 구성할 수 있지만, 절대 이에 의존해서는 안된다. 
 해당 인증서가 클러스터 루트 CA에 대해 유효성을 검사한다고 가정하면 안된다.
@@ -25,24 +29,38 @@ content_type: task
 ## {{% heading "prerequisites" %}}
 
 
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+{{< include "task-tutorial-prereqs.md" >}}
 
+`cfssl` 도구가 필요하다. 
+[https://github.com/cloudflare/cfssl/releases](https://github.com/cloudflare/cfssl/releases)에서 `cfssl`을 다운로드할 수 있다.
 
+이 페이지의 일부 단계에서 `jq` 도구를 사용한다. 
+`jq`가 없다면, 사용 중인 운영 체제의 소프트웨어 소스를 통해 설치하거나, 
+[https://stedolan.github.io/jq/](https://stedolan.github.io/jq/)에서 받을 수 있다.
 
 <!-- steps -->
 
 ## 클러스터에서 TLS 신뢰
 
-파드로 실행되는 애플리케이션에서 사용자 정의 CA를 신뢰하려면 
+파드로 실행되는 애플리케이션에서 [사용자 정의 CA](#a-note-to-cluster-administrators)를 신뢰하려면 
 일반적으로 몇 가지 추가 애플리케이션 구성이 필요하다.
 TLS 클라이언트 또는 서버가 신뢰하는 CA 인증서 목록에 
 CA 인증서 번들을 추가해야 한다.
-예를 들어 인증서 체인을 파싱하고, 파싱된 인증서를 [`tls.Config`](https://godoc.org/crypto/tls#Config) 구조체의 
+예를 들어 인증서 체인을 파싱하고, 파싱된 인증서를 [`tls.Config`](https://pkg.go.dev/crypto/tls#Config) 구조체의 
 `RootCAs` 필드에 추가하여, golang TLS 구성으로 이를 수행할 수 있다.
 
-CA 인증서를 파드에서 사용할 수 있는 
-[ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap)으로 
-배포할 수 있다.
+{{< note >}}
+사용자 정의 CA 인증서가 
+파일시스템(`kube-root-ca.crt` 컨피그맵 내)에 포함될 수 있더라도, 
+이 인증서 권한을 내부 쿠버네티스 엔드포인트 검증 용도 외에는 사용하지 말아야 한다. 
+내부 쿠버네티스 엔드포인트에 대한 하나의 예시는 
+기본 네임스페이스에 있는 `kubernetes`라는 서비스이다.
+
+당신의 워크로드를 위한 사용자 정의 인증서 권한을 사용하고 싶다면, 
+이 CA를 별도로 생성하고, 파드가 읽을 수 있는 
+[컨피그맵](/docs/tasks/configure-pod-container/configure-pod-configmap/) 형태로 
+해당 CA 인증서를 배포해야 한다.
+{{< /note >}}
 
 ## 인증서 요청
 
@@ -53,11 +71,6 @@ TLS 인증서를 생성하는 방법을 보여준다.
 이 튜토리얼에서는 CFSSL을 사용한다. [여기를 클릭](https://blog.cloudflare.com/introducing-cfssl/)하여 Cloudflare의 PKI 및 TLS 툴킷을 자세히 알아본다.
 {{< /note >}}
 
-## CFSSL 다운로드 및 설치
-
-이 예제에 사용된 cfssl 도구는 
-[https://github.com/cloudflare/cfssl/releases](https://github.com/cloudflare/cfssl/releases)에서 다운로드 할 수 있다.
-
 ## 인증서 서명 요청 (CSR) 생성
 
 다음 명령을 실행하여 개인 키 및 인증서 서명 요청(또는 CSR)을 
@@ -72,16 +85,11 @@ cat <<EOF | cfssl genkey - | cfssljson -bare server
     "192.0.2.24",
     "10.0.34.2"
   ],
-  "CN": "system:node:my-pod.my-namespace.pod.cluster.local",
+  "CN": "my-pod.my-namespace.pod.cluster.local",
   "key": {
     "algo": "ecdsa",
     "size": 256
-  },
-  "names": [
-    {
-      "O": "system:nodes"
-    }
-  ]
+  }
 }
 EOF
 ```
@@ -89,24 +97,24 @@ EOF
 여기서 `192.0.2.24`는 서비스의 클러스터 IP, 
 `my-svc.my-namespace.svc.cluster.local`은 서비스의 DNS 이름, 
 `10.0.34.2`는 파드의 IP,`my-pod.my-namespace.pod.cluster.local`은 
-파드의 DNS 이름이다. 다음 출력이 표시되어야 한다.
+파드의 DNS 이름이다. 다음과 비슷한 출력이 표시되어야 한다.
 
 ```
-2017/03/21 06:48:17 [INFO] generate received request
-2017/03/21 06:48:17 [INFO] received CSR
-2017/03/21 06:48:17 [INFO] generating key: ecdsa-256
-2017/03/21 06:48:17 [INFO] encoded CSR
+2022/02/01 11:45:32 [INFO] generate received request
+2022/02/01 11:45:32 [INFO] received CSR
+2022/02/01 11:45:32 [INFO] generating key: ecdsa-256
+2022/02/01 11:45:32 [INFO] encoded CSR
 ```
 
 이 명령은 두 개의 파일을 생성한다. PEM으로 
-인코딩된 [pkcs#10](https://tools.ietf.org/html/rfc2986) 
+인코딩된 [PKCS#10](https://tools.ietf.org/html/rfc2986) 
 인증 요청이 포함된 `server.csr`과 생성할 인증서 키를 PEM 인코딩한 값이
 포함된 `server-key.pem`을 생성한다.
 
 ## 쿠버네티스 API로 보낼 인증서 서명 요청 객체 만들기
 
-CSR yaml blob을 생성하고 다음 명령을 실행하여 
-apiserver로 보낸다.
+CSR 매니페스트(YAML 형태)를 생성하고, API 서버로 전송한다. 
+다음 명령어를 실행하여 수행할 수 있다.
 
 ```shell
 cat <<EOF | kubectl apply -f -
@@ -116,7 +124,7 @@ metadata:
   name: my-svc.my-namespace
 spec:
   request: $(cat server.csr | base64 | tr -d '\n')
-  signerName: kubernetes.io/kubelet-serving
+  signerName: example.com/serving
   usages:
   - digital signature
   - key encipherment
@@ -126,7 +134,7 @@ EOF
 
 1단계에서 만든 `server.csr` 파일은 base64로 인코딩되고 
 `.spec.request` 필드에 숨겨져 있다.
-또한 `kubernetes.io/kubelet-serving` 서명자가 서명한 
+또한 예시 `example.com/serving` 서명자가 서명한 
 "digitalSignature", "keyEnciperment" 및 "serverAuth" 키 사용(keyUsage)이 있는 인증서를 요청한다.
 특정 `signerName`을 요청해야 한다.
 자세한 내용은 [지원되는 서명자 이름](/docs/reference/access-authn-authz/certificate-signing-requests/#signers) 
@@ -143,58 +151,192 @@ kubectl describe csr my-svc.my-namespace
 Name:                   my-svc.my-namespace
 Labels:                 <none>
 Annotations:            <none>
-CreationTimestamp:      Tue, 21 Mar 2017 07:03:51 -0700
+CreationTimestamp:      Tue, 01 Feb 2022 11:49:15 -0500
 Requesting User:        yourname@example.com
+Signer:                 example.com/serving
 Status:                 Pending
 Subject:
-        Common Name:    my-svc.my-namespace.svc.cluster.local
+        Common Name:    my-pod.my-namespace.pod.cluster.local
         Serial Number:
 Subject Alternative Names:
-        DNS Names:      my-svc.my-namespace.svc.cluster.local
+        DNS Names:      my-pod.my-namespace.pod.cluster.local
+                        my-svc.my-namespace.svc.cluster.local
         IP Addresses:   192.0.2.24
                         10.0.34.2
 Events: <none>
 ```
 
-## 인증서 서명 요청 승인 받기
+## 인증서 서명 요청 승인 받기 {#get-the-certificate-signing-request-approved}
 
-인증서 서명 요청을 승인하는 것은 자동화된 승인 프로세스나
-클러스터 관리자에 의해 일회성으로 수행한다. 여기에 
-관련된 내용에 대한 자세한 내용은 아래에서 설명한다.
+[인증서 서명 요청](/docs/reference/access-authn-authz/certificate-signing-requests/) 승인은 
+자동화된 승인 프로세스 또는 클러스터 관리자의 일회성 승인으로 수행된다. 
+인증서 요청 승인 권한을 갖고 있다면, 
+`kubectl`을 이용하여 다음과 같이 수동으로 승인할 수 있다.
 
-## 인증서 다운로드 및 사용
+```shell
+kubectl certificate approve my-svc.my-namespace
+```
 
-CSR이 서명되고 승인되면 다음이 표시된다.
+```none
+certificatesigningrequest.certificates.k8s.io/my-svc.my-namespace approved
+```
+
+출력은 다음과 같을 것이다.
 
 ```shell
 kubectl get csr
 ```
 
 ```none
-NAME                  AGE       REQUESTOR               CONDITION
-my-svc.my-namespace   10m       yourname@example.com    Approved,Issued
+NAME                  AGE   SIGNERNAME            REQUESTOR              REQUESTEDDURATION   CONDITION
+my-svc.my-namespace   10m   example.com/serving   yourname@example.com   <none>              Approved
 ```
 
-다음을 실행하여 발급된 인증서를 다운로드하고 `server.crt` 파일에 
-저장할 수 있다.
+이는 즉 인증서 요청이 승인되었으며 
+요청받은 서명자의 서명을 기다리고 있음을 나타낸다.
+
+## 인증서 서명 요청에 서명하기 {#sign-the-certificate-signing-request}
+
+다음으로, 인증서 서명자로서, 인증서를 발급하고, 이를 API에 업로드할 것이다.
+
+서명자는 일반적으로 인증서 서명 요청 API를 조회하여 오브젝트의 `signerName`을 확인하고, 
+요청이 승인되었는지 체크하고, 해당 요청에 대해 인증서에 서명하고, 
+발급된 인증서로 API 오브젝트 상태를 업데이트한다.
+
+### 인증 기관 생성하기
+
+새 인증서의 디지털 서명에 제공할 인증 기관이 필요하다.
+
+먼저, 다음을 실행하여 서명 인증서를 생성한다.
+
+```shell
+cat <<EOF | cfssl gencert -initca - | cfssljson -bare ca
+{
+  "CN": "My Example Signer",
+  "key": {
+    "algo": "rsa",
+    "size": 2048
+  }
+}
+EOF
+```
+
+출력은 다음과 같을 것이다.
+
+```none
+2022/02/01 11:50:39 [INFO] generating a new CA key and certificate from CSR
+2022/02/01 11:50:39 [INFO] generate received request
+2022/02/01 11:50:39 [INFO] received CSR
+2022/02/01 11:50:39 [INFO] generating key: rsa-2048
+2022/02/01 11:50:39 [INFO] encoded CSR
+2022/02/01 11:50:39 [INFO] signed certificate with serial number 263983151013686720899716354349605500797834580472
+```
+
+이제 인증 기관 키 파일(`ca-key.pem`)과 인증서(`ca.pem`)가 생성되었다.
+
+### 인증서 발급하기
+
+{{< codenew file="tls/server-signing-config.json" >}}
+
+`server-signing-config.json` 서명 구성 파일, 인증 기관 키 파일 및 인증서를 사용하여 
+인증서 요청에 서명한다.
+
+```shell
+kubectl get csr my-svc.my-namespace -o jsonpath='{.spec.request}' | \
+  base64 --decode | \
+  cfssl sign -ca ca.pem -ca-key ca-key.pem -config server-signing-config.json - | \
+  cfssljson -bare ca-signed-server
+```
+
+출력은 다음과 같을 것이다.
+
+```
+2022/02/01 11:52:26 [INFO] signed certificate with serial number 576048928624926584381415936700914530534472870337
+```
+
+이제 서명된 제공(serving) 인증서 파일 `ca-signed-server.pem`이 생성되었다.
+
+### 서명된 인증서 업로드하기
+
+마지막으로, 서명된 인증서를 API 오브젝트의 상태에 기재한다.
+
+```shell
+kubectl get csr my-svc.my-namespace -o json | \
+  jq '.status.certificate = "'$(base64 ca-signed-server.pem | tr -d '\n')'"' | \
+  kubectl replace --raw /apis/certificates.k8s.io/v1/certificatesigningrequests/my-svc.my-namespace/status -f -
+```
+
+{{< note >}}
+위의 명령에서 `.status.certificate` 필드에 base64로 인코딩된 내용을 채우기 위해 
+[`jq`](https://stedolan.github.io/jq/) 명령줄 도구를 사용하였다.
+`jq`가 없다면, JSON 출력을 파일에 저장하고, 
+해당 필드를 수동으로 채우고, 그 결과 파일을 업로드할 수도 있다.
+{{< /note >}}
+
+인증서 서명 요청이 승인되고 서명된 인증서가 업로드되면 다음을 실행한다.
+
+```shell
+kubectl get csr
+```
+
+출력은 다음과 같을 것이다.
+```none
+NAME                  AGE   SIGNERNAME            REQUESTOR              REQUESTEDDURATION   CONDITION
+my-svc.my-namespace   20m   example.com/serving   yourname@example.com   <none>              Approved,Issued
+```
+
+## 인증서 다운로드 및 사용
+
+이제, 요청하는 사용자로서, 다음 명령을 실행하여 
+발급된 인증서를 다운로드하고 `server.crt` 파일에 저장할 수 있다.
 
 ```shell
 kubectl get csr my-svc.my-namespace -o jsonpath='{.status.certificate}' \
     | base64 --decode > server.crt
 ```
 
-이제 `server.crt` 및 `server-key.pem`을 키페어(keypair)로 사용하여 
-HTTPS 서버를 시작할 수 있다.
+이제 `server.crt` 및 `server-key.pem`의 내용으로 
+{{< glossary_tooltip text="시크릿" term_id="secret" >}}을 생성할 수 있으며, 
+이 시크릿은 추후 파드에 마운트할 수 있다(예를 들어, 
+HTTPS를 제공하는 웹서버에 사용).
 
-## 인증서 서명 요청 승인
+```shell
+kubectl create secret tls server --cert server.crt --key server-key.pem
+```
+
+```none
+secret/server created
+```
+
+마지막으로, `ca.pem`의 내용으로 {{< glossary_tooltip text="컨피그맵" term_id="configmap" >}}을 생성하여 
+제공(serving) 인증서 검증에 필요한 신뢰 루트로 사용할 수 있다.
+
+```shell
+kubectl create configmap example-serving-ca --from-file ca.crt=ca.pem
+```
+
+```none
+configmap/example-serving-ca created
+```
+
+## CertificateSigningRequest 승인 {#approving-certificate-signing-requests}
 
 (적절한 권한이 있는) 쿠버네티스 관리자는 
 `kubectl certificate approve` 과 `kubectl certificate deny` 
-명령을 사용하여 인증서 서명 요청을 수동으로 승인 (또는 거부) 할 수 있다. 
+명령을 사용하여 CertificateSigningRequest을 수동으로 승인 (또는 거부) 할 수 있다. 
 그러나 이 API를 많이 사용한다면,
 자동화된 인증서 컨트롤러 작성을 고려할 수 있다.
 
-위와 같이 kubectl을 사용하는 시스템이든 사람이든, 승인자의 역할은 
+{{< caution >}}
+CSR을 승인할 수 있는 권한이 있다는 것은 당신의 환경에서 누가 누구를 신뢰할 수 있는지를 결정할 수 있다는 것이다. 
+CSR을 승인할 수 있는 권한은 넓게/가볍게 부여되지 않아야 한다.
+
+`approve` 권한을 부여하기 전에, 
+승인자에게 할당되는 검증 요구 사항 **및** 특정 인증서 발급에 따른 영향을 
+모두 확실히 이해하고 있는지 확인해야 한다.
+{{< /caution >}}
+
+위와 같이 kubectl을 사용하는 시스템이든 사람이든, _승인자_ 의 역할은 
 CSR이 다음 두 가지 요구 사항을 충족하는지 확인하는 것이다.
 
 1. CSR은 CSR에 서명하는 데 사용되는 개인 키를 제어하는 것이다. 이는 
@@ -209,17 +351,13 @@ CSR이 다음 두 가지 요구 사항을 충족하는지 확인하는 것이다
 이 두 가지 요구 사항이 충족되는 경우에만, 승인자가 CSR을 승인하고 
 그렇지 않으면 CSR을 거부해야 한다.
 
-## 승인 허가에 대한 경고문
+인증서 승인 및 접근 제어에 대한 추가 정보를 보려면, 
+[인증서 서명 요청](/docs/reference/access-authn-authz/certificate-signing-requests/) 레퍼런스 페이지를 
+참조한다.
 
-CSR을 승인하는 능력은 환경 내에서 누구를 신뢰하는지 결정한다. CSR 승인
-능력은 광범위하거나 가볍게 부여해서는 안된다. 이 권한을 
-부여하기 전에 이전 섹션에서 언급한 
-요청의 요구 사항과 특정 인증서 발급의 영향을 
-완전히 이해해야 한다.
+## 서명을 제공하도록 클러스터 구성하기 {#a-note-to-cluster-administrators}
 
-## 클러스터 관리자를 위한 참고 사항
-
-이 가이드에서는 서명자가 인증서 API를 제공하도록 설정되었다고 가정한다. 쿠버네티스 
+이 페이지에서는 서명자가 인증서 API를 제공하도록 설정되었다고 가정한다. 쿠버네티스 
 컨트롤러 관리자는 서명자의 기본 구현을 제공한다. 이를 
 활성화하려면 인증 기관(CA)의 키 쌍에 대한 경로와 함께 `--cluster-signing-cert-file` 와 
 `--cluster-signing-key-file` 매개 변수를 
diff --git a/content/ko/docs/tasks/tools/included/optional-kubectl-configs-bash-linux.md b/content/ko/docs/tasks/tools/included/optional-kubectl-configs-bash-linux.md
index b9597857bb..e7ce12f559 100644
--- a/content/ko/docs/tasks/tools/included/optional-kubectl-configs-bash-linux.md
+++ b/content/ko/docs/tasks/tools/included/optional-kubectl-configs-bash-linux.md
@@ -26,19 +26,18 @@ source /usr/share/bash-completion/bash_completion
 
 ### kubectl 자동 완성 활성화
 
+#### Bash
+
 이제 kubectl 자동 완성 스크립트가 모든 셸 세션에서 제공되도록 해야 한다. 이를 수행할 수 있는 두 가지 방법이 있다.
 
-- `~/.bashrc` 파일에서 자동 완성 스크립트를 소싱한다.
-
-   ```bash
-   echo 'source <(kubectl completion bash)' >>~/.bashrc
-   ```
-
-- 자동 완성 스크립트를 `/etc/bash_completion.d` 디렉터리에 추가한다.
-
-   ```bash
-   kubectl completion bash >/etc/bash_completion.d/kubectl
-   ```
+{{< tabs name="kubectl_bash_autocompletion" >}}
+{{{< tab name="현재 사용자에만 적용" codelang="bash" >}}
+echo 'source <(kubectl completion bash)' >>~/.bashrc
+{{< /tab >}}
+{{< tab name="시스템 전체에 적용" codelang="bash" >}}
+kubectl completion bash | sudo tee /etc/bash_completion.d/kubectl > /dev/null
+{{< /tab >}}}
+{{< /tabs >}}
 
 kubectl에 대한 앨리어스(alias)가 있는 경우, 해당 앨리어스로 작업하도록 셸 자동 완성을 확장할 수 있다.
 
diff --git a/content/ko/docs/tasks/tools/included/optional-kubectl-configs-fish.md b/content/ko/docs/tasks/tools/included/optional-kubectl-configs-fish.md
new file mode 100644
index 0000000000..bfdb53bec0
--- /dev/null
+++ b/content/ko/docs/tasks/tools/included/optional-kubectl-configs-fish.md
@@ -0,0 +1,15 @@
+---
+title: "fish auto-completion"
+description: "fish 자동 완성을 활성화하기 위한 선택적 구성"
+headless: true
+---
+
+Fish용 kubectl 자동 완성 스크립트는 `kubectl completion fish` 명령으로 생성할 수 있다. 셸에서 자동 완성 스크립트를 소싱하면 kubectl 자동 완성 기능이 활성화된다.
+
+모든 셸 세션에서 사용하려면, `~/.config/fish/config.fish` 파일에 다음을 추가한다.
+
+```shell
+kubectl completion fish | source
+```
+
+셸을 다시 로드하면, kubectl 자동 완성 기능이 작동할 것이다.
diff --git a/content/ko/docs/tasks/tools/included/optional-kubectl-configs-pwsh.md b/content/ko/docs/tasks/tools/included/optional-kubectl-configs-pwsh.md
new file mode 100644
index 0000000000..5e6d3d2ecc
--- /dev/null
+++ b/content/ko/docs/tasks/tools/included/optional-kubectl-configs-pwsh.md
@@ -0,0 +1,23 @@
+---
+title: "PowerShell 자동 완성"
+description: "PowerShell 자동 완성을 위한 몇 가지 선택적 구성에 대해 설명한다."
+headless: true
+---
+
+PowerShell용 kubectl 자동 완성 스크립트는 `kubectl completion powershell` 명령으로 생성할 수 있다.
+
+모든 셸 세션에서 사용하려면, `$PROFILE` 파일에 다음을 추가한다.
+
+```powershell
+kubectl completion powershell | Out-String | Invoke-Expression
+```
+
+이 명령은 PowerShell을 실행할 때마다 자동 완성 스크립트를 재생성한다. 아니면, 생성된 스크립트를 `$PROFILE` 파일에 직접 추가할 수도 있다.
+
+생성된 스크립트를 `$PROFILE` 파일에 직접 추가하려면, PowerShell 프롬프트에서 다음 명령줄을 실행한다.
+
+```powershell
+kubectl completion powershell >> $PROFILE
+```
+
+셸을 다시 불러오면, kubectl 자동 완성이 동작할 것이다.
diff --git a/content/ko/docs/tasks/tools/included/optional-kubectl-configs-zsh.md b/content/ko/docs/tasks/tools/included/optional-kubectl-configs-zsh.md
index e81403300b..5c857fd2bb 100644
--- a/content/ko/docs/tasks/tools/included/optional-kubectl-configs-zsh.md
+++ b/content/ko/docs/tasks/tools/included/optional-kubectl-configs-zsh.md
@@ -12,16 +12,11 @@ Zsh용 kubectl 자동 완성 스크립트는 `kubectl completion zsh` 명령으
 source <(kubectl completion zsh)
 ```
 
-kubectl에 대한 앨리어스가 있는 경우, 해당 앨리어스로 작업하도록 셸 자동 완성을 확장할 수 있다.
-
-```zsh
-echo 'alias k=kubectl' >>~/.zshrc
-echo 'complete -F __start_kubectl k' >>~/.zshrc
-```
+kubectl에 대한 앨리어스가 있는 경우, kubectl 자동완성이 자동으로 동작할 것이다.
 
 셸을 다시 로드하면, kubectl 자동 완성 기능이 작동할 것이다.
 
-`complete:13: command not found: compdef` 와 같은 오류가 발생하면, `~/.zshrc` 파일의 시작 부분에 다음을 추가한다.
+`2: command not found: compdef` 와 같은 오류가 발생하면, `~/.zshrc` 파일의 시작 부분에 다음을 추가한다.
 
 ```zsh
 autoload -Uz compinit
diff --git a/content/ko/docs/tasks/tools/install-kubectl-linux.md b/content/ko/docs/tasks/tools/install-kubectl-linux.md
index 77717372d1..df5165c090 100644
--- a/content/ko/docs/tasks/tools/install-kubectl-linux.md
+++ b/content/ko/docs/tasks/tools/install-kubectl-linux.md
@@ -12,8 +12,8 @@ card:
 
 ## {{% heading "prerequisites" %}}
 
-클러스터의 마이너(minor) 버전 차이 내에 있는 kubectl 버전을 사용해야 한다. 예를 들어, v{{< skew latestVersion >}} 클라이언트는 v{{< skew prevMinorVersion >}}, v{{< skew latestVersion >}}, v{{< skew nextMinorVersion >}}의 컨트롤 플레인과 연동될 수 있다.
-최신 버전의 kubectl을 사용하면 예기치 않은 문제를 피할 수 있다.
+클러스터의 마이너(minor) 버전 차이 내에 있는 kubectl 버전을 사용해야 한다. 예를 들어, v{{< skew currentVersion >}} 클라이언트는 v{{< skew currentVersionAddMinor -1 >}}, v{{< skew currentVersion >}}, v{{< skew currentVersionAddMinor 1 >}}의 컨트롤 플레인과 연동될 수 있다.
+호환되는 최신 버전의 kubectl을 사용하면 예기치 않은 문제를 피할 수 있다.
 
 ## 리눅스에 kubectl 설치
 
@@ -52,7 +52,7 @@ card:
    kubectl 바이너리를 체크섬 파일을 통해 검증한다.
 
    ```bash
-   echo "$(<kubectl.sha256) kubectl" | sha256sum --check
+   echo "$(cat kubectl.sha256)  kubectl" | sha256sum --check
    ```
 
    검증이 성공한다면, 출력은 다음과 같다.
@@ -83,9 +83,9 @@ card:
 
    ```bash
    chmod +x kubectl
-   mkdir -p ~/.local/bin/kubectl
+   mkdir -p ~/.local/bin
    mv ./kubectl ~/.local/bin/kubectl
-   # 그리고 ~/.local/bin/kubectl을 $PATH에 추가
+   # 그리고 ~/.local/bin 을 $PATH의 앞부분 또는 뒷부분에 추가
    ```
 
    {{< /note >}}
@@ -95,6 +95,11 @@ card:
    ```bash
    kubectl version --client
    ```
+   또는 다음을 실행하여 버전에 대한 더 자세한 정보를 본다.
+
+   ```cmd
+   kubectl version --client --output=yaml    
+   ```
 
 ### 기본 패키지 관리 도구를 사용하여 설치 {#install-using-native-package-management}
 
@@ -130,7 +135,7 @@ card:
 {{% /tab %}}
 
 {{< tab name="레드햇 기반의 배포판" codelang="bash" >}}
-cat <<EOF > /etc/yum.repos.d/kubernetes.repo
+cat <<EOF | sudo tee /etc/yum.repos.d/kubernetes.repo
 [kubernetes]
 name=Kubernetes
 baseurl=https://packages.cloud.google.com/yum/repos/kubernetes-el7-x86_64
@@ -139,7 +144,7 @@ gpgcheck=1
 repo_gpgcheck=1
 gpgkey=https://packages.cloud.google.com/yum/doc/yum-key.gpg https://packages.cloud.google.com/yum/doc/rpm-package-key.gpg
 EOF
-yum install -y kubectl
+sudo yum install -y kubectl
 {{< /tab >}}
 {{< /tabs >}}
 
@@ -176,12 +181,13 @@ kubectl version --client
 
 ### 셸 자동 완성 활성화
 
-kubectl은 Bash 및 Zsh에 대한 자동 완성 지원을 제공하므로 입력을 위한 타이핑을 많이 절약할 수 있다.
+kubectl은 Bash, Zsh, Fish, 및 PowerShell에 대한 자동 완성 지원을 제공하므로 입력을 위한 타이핑을 많이 절약할 수 있다.
 
-다음은 Bash 및 Zsh에 대한 자동 완성을 설정하는 절차이다.
+다음은 Bash, Fish, 및 Zsh에 대한 자동 완성을 설정하는 절차이다.
 
 {{< tabs name="kubectl_autocompletion" >}}
 {{< tab name="Bash" include="included/optional-kubectl-configs-bash-linux.md" />}}
+{{< tab name="Fish" include="included/optional-kubectl-configs-fish.md" />}}
 {{< tab name="Zsh" include="included/optional-kubectl-configs-zsh.md" />}}
 {{< /tabs >}}
 
@@ -192,7 +198,7 @@ kubectl은 Bash 및 Zsh에 대한 자동 완성 지원을 제공하므로 입력
 1. 다음 명령으로 최신 릴리스를 다운로드한다.
 
    ```bash
-   curl -LO https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl-convert
+   curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl-convert"
    ```
 
 1. 바이너리를 검증한다. (선택 사항)
@@ -206,7 +212,7 @@ kubectl은 Bash 및 Zsh에 대한 자동 완성 지원을 제공하므로 입력
    kubectl-convert 바이너리를 체크섬 파일을 통해 검증한다.
 
    ```bash
-   echo "$(<kubectl-convert.sha256) kubectl-convert" | sha256sum --check
+   echo "$(cat kubectl-convert.sha256) kubectl-convert" | sha256sum --check
    ```
 
    검증이 성공한다면, 출력은 다음과 같다.
diff --git a/content/ko/docs/tasks/tools/install-kubectl-macos.md b/content/ko/docs/tasks/tools/install-kubectl-macos.md
index 90fefb0c3a..81a5cb1039 100644
--- a/content/ko/docs/tasks/tools/install-kubectl-macos.md
+++ b/content/ko/docs/tasks/tools/install-kubectl-macos.md
@@ -12,8 +12,8 @@ card:
 
 ## {{% heading "prerequisites" %}}
 
-클러스터의 마이너(minor) 버전 차이 내에 있는 kubectl 버전을 사용해야 한다. 예를 들어, v{{< skew latestVersion >}} 클라이언트는 v{{< skew prevMinorVersion >}}, v{{< skew latestVersion >}}, v{{< skew nextMinorVersion >}}의 컨트롤 플레인과 연동될 수 있다.
-최신 버전의 kubectl을 사용하면 예기치 않은 문제를 피할 수 있다.
+클러스터의 마이너(minor) 버전 차이 내에 있는 kubectl 버전을 사용해야 한다. 예를 들어, v{{< skew currentVersion >}} 클라이언트는 v{{< skew currentVersionAddMinor -1 >}}, v{{< skew currentVersion >}}, v{{< skew currentVersionAddMinor 1 >}}의 컨트롤 플레인과 연동될 수 있다.
+호환되는 최신 버전의 kubectl을 사용하면 예기치 않은 문제를 피할 수 있다.
 
 ## macOS에 kubectl 설치
 
@@ -69,7 +69,7 @@ card:
    kubectl 바이너리를 체크섬 파일을 통해 검증한다.
 
    ```bash
-   echo "$(<kubectl.sha256)  kubectl" | shasum -a 256 --check
+   echo "$(cat kubectl.sha256)  kubectl" | shasum -a 256 --check
    ```
 
    검증이 성공한다면, 출력은 다음과 같다.
@@ -111,6 +111,11 @@ card:
    ```bash
    kubectl version --client
    ```
+   또는 다음을 실행하여 버전에 대한 더 자세한 정보를 본다.
+
+   ```cmd
+   kubectl version --client --output=yaml    
+   ```
 
 ### macOS에서 Homebrew를 사용하여 설치 {#install-with-homebrew-on-macos}
 
@@ -159,12 +164,13 @@ macOS에서 [Macports](https://macports.org/) 패키지 관리자를 사용하
 
 ### 셸 자동 완성 활성화
 
-kubectl은 Bash 및 Zsh에 대한 자동 완성 지원을 제공하므로 입력을 위한 타이핑을 많이 절약할 수 있다.
+kubectl은 Bash, Zsh, Fish, 및 PowerShell에 대한 자동 완성 지원을 제공하므로 입력을 위한 타이핑을 많이 절약할 수 있다.
 
-다음은 Bash 및 Zsh에 대한 자동 완성을 설정하는 절차이다.
+다음은 Bash, Fish, 및 Zsh에 대한 자동 완성을 설정하는 절차이다.
 
 {{< tabs name="kubectl_autocompletion" >}}
 {{< tab name="Bash" include="included/optional-kubectl-configs-bash-mac.md" />}}
+{{< tab name="Fish" include="included/optional-kubectl-configs-fish.md" />}}
 {{< tab name="Zsh" include="included/optional-kubectl-configs-zsh.md" />}}
 {{< /tabs >}}
 
@@ -199,7 +205,7 @@ kubectl은 Bash 및 Zsh에 대한 자동 완성 지원을 제공하므로 입력
    kubectl-convert 바이너리를 체크섬 파일을 통해 검증한다.
 
    ```bash
-   echo "$(<kubectl-convert.sha256)  kubectl-convert" | shasum -a 256 --check
+   echo "$(cat kubectl-convert.sha256)  kubectl-convert" | shasum -a 256 --check
    ```
 
    검증이 성공한다면, 출력은 다음과 같다.
@@ -228,7 +234,7 @@ kubectl은 Bash 및 Zsh에 대한 자동 완성 지원을 제공하므로 입력
 1. kubectl-convert 바이너리를 시스템 `PATH` 의 파일 위치로 옮긴다.
 
    ```bash
-   sudo mv ./kubectl /usr/local/bin/kubectl-convert
+   sudo mv ./kubectl-convert /usr/local/bin/kubectl-convert
    sudo chown root: /usr/local/bin/kubectl-convert
    ```
 
diff --git a/content/ko/docs/tasks/tools/install-kubectl-windows.md b/content/ko/docs/tasks/tools/install-kubectl-windows.md
index ab5e7ca05d..c1bba068a2 100644
--- a/content/ko/docs/tasks/tools/install-kubectl-windows.md
+++ b/content/ko/docs/tasks/tools/install-kubectl-windows.md
@@ -12,8 +12,8 @@ card:
 
 ## {{% heading "prerequisites" %}}
 
-클러스터의 마이너(minor) 버전 차이 내에 있는 kubectl 버전을 사용해야 한다. 예를 들어, v{{< skew latestVersion >}} 클라이언트는 v{{< skew prevMinorVersion >}}, v{{< skew latestVersion >}}, v{{< skew nextMinorVersion >}}의 컨트롤 플레인과 연동될 수 있다.
-최신 버전의 kubectl을 사용하면 예기치 않은 문제를 피할 수 있다.
+클러스터의 마이너(minor) 버전 차이 내에 있는 kubectl 버전을 사용해야 한다. 예를 들어, v{{< skew currentVersion >}} 클라이언트는 v{{< skew currentVersionAddMinor -1 >}}, v{{< skew currentVersion >}}, v{{< skew currentVersionAddMinor 1 >}}의 컨트롤 플레인과 연동될 수 있다.
+호환되는 최신 버전의 kubectl을 사용하면 예기치 않은 문제를 피할 수 있다.
 
 ## 윈도우에 kubectl 설치
 
@@ -22,7 +22,6 @@ card:
 - [윈도우에서 curl을 사용하여 kubectl 바이너리 설치](#install-kubectl-binary-with-curl-on-windows)
 - [Chocolatey 또는 Scoop을 사용하여 윈도우에 설치](#install-on-windows-using-chocolatey-or-scoop)
 
-
 ### 윈도우에서 curl을 사용하여 kubectl 바이너리 설치 {#install-kubectl-binary-with-curl-on-windows}
 
 1. [최신 릴리스 {{< param "fullversion" >}}](https://dl.k8s.io/release/{{< param "fullversion" >}}/bin/windows/amd64/kubectl.exe)를 다운로드한다.
@@ -39,34 +38,39 @@ card:
 
 1. 바이너리를 검증한다. (선택 사항)
 
-   kubectl 체크섬 파일을 다운로드한다.
+   `kubectl` 체크섬 파일을 다운로드한다.
 
    ```powershell
    curl -LO "https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kubectl.exe.sha256"
    ```
 
-   kubectl 바이너리를 체크섬 파일을 통해 검증한다.
+   `kubectl` 바이너리를 체크섬 파일을 통해 검증한다.
 
-   - 수동으로 `CertUtil` 의 출력과 다운로드한 체크섬 파일을 비교하기 위해서 커맨드 프롬프트를 사용한다.
+   - 커맨드 프롬프트를 사용하는 경우, `CertUtil` 의 출력과 다운로드한 체크섬 파일을 수동으로 비교한다.
 
      ```cmd
      CertUtil -hashfile kubectl.exe SHA256
      type kubectl.exe.sha256
      ```
 
-   - `-eq` 연산자를 통해 `True` 또는 `False` 결과를 얻는 자동 검증을 위해서 PowerShell을 사용한다.
+   - PowerShell을 사용하는 경우, `-eq` 연산자를 통해 `True` 또는 `False` 결과가 출력되는 자동 검증을 수행한다.
 
      ```powershell
      $($(CertUtil -hashfile .\kubectl.exe SHA256)[1] -replace " ", "") -eq $(type .\kubectl.exe.sha256)
      ```
 
-1. 바이너리를 `PATH` 가 설정된 디렉터리에 추가한다.
+1. `kubectl` 바이너리가 있는 폴더를 `PATH` 환경 변수의 앞부분 또는 뒷부분에 추가
 
 1. `kubectl` 의 버전이 다운로드한 버전과 같은지 확인한다.
 
    ```cmd
    kubectl version --client
    ```
+   또는 다음을 실행하여 버전에 대한 더 자세한 정보를 본다.
+
+   ```cmd
+   kubectl version --client --output=yaml    
+   ```
 
 {{< note >}}
 [윈도우용 도커 데스크톱](https://docs.docker.com/docker-for-windows/#kubernetes)은 자체 버전의 `kubectl` 을 `PATH` 에 추가한다.
@@ -134,11 +138,11 @@ card:
 
 ### 셸 자동 완성 활성화
 
-kubectl은 Bash 및 Zsh에 대한 자동 완성 지원을 제공하므로 입력을 위한 타이핑을 많이 절약할 수 있다.
+kubectl은 Bash, Zsh, Fish, 및 PowerShell에 대한 자동 완성 지원을 제공하므로 입력을 위한 타이핑을 많이 절약할 수 있다.
 
-다음은 Zsh에 대한 자동 완성을 설정하는 절차이다.
+다음은 PowerShell에 대한 자동 완성을 설정하는 절차이다.
 
-{{< include "included/optional-kubectl-configs-zsh.md" >}}
+{{< include "included/optional-kubectl-configs-pwsh.md" >}}
 
 ### `kubectl convert` 플러그인 설치
 
@@ -152,28 +156,28 @@ kubectl은 Bash 및 Zsh에 대한 자동 완성 지원을 제공하므로 입력
 
 1. 바이너리를 검증한다. (선택 사항)
 
-   kubectl-convert 체크섬(checksum) 파일을 다운로드한다.
+   `kubectl-convert` 체크섬(checksum) 파일을 다운로드한다.
 
    ```powershell
    curl -LO "https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kubectl-convert.exe.sha256"
    ```
 
-   kubectl-convert 바이너리를 체크섬 파일을 통해 검증한다.
+   `kubectl-convert` 바이너리를 체크섬 파일을 통해 검증한다.
 
-   - 수동으로 `CertUtil` 의 출력과 다운로드한 체크섬 파일을 비교하기 위해서 커맨드 프롬프트를 사용한다.
+   - 커맨드 프롬프트를 사용하는 경우, `CertUtil` 의 출력과 다운로드한 체크섬 파일을 수동으로 비교한다.
 
      ```cmd
      CertUtil -hashfile kubectl-convert.exe SHA256
      type kubectl-convert.exe.sha256
      ```
 
-   - `-eq` 연산자를 통해 `True` 또는 `False` 결과를 얻는 자동 검증을 위해서 PowerShell을 사용한다.
+   - PowerShell을 사용하는 경우, `-eq` 연산자를 통해 `True` 또는 `False` 결과가 출력되는 자동 검증을 수행한다.
 
      ```powershell
      $($(CertUtil -hashfile .\kubectl-convert.exe SHA256)[1] -replace " ", "") -eq $(type .\kubectl-convert.exe.sha256)
      ```
 
-1. 바이너리를 `PATH` 가 설정된 디렉터리에 추가한다.
+1. `kubectl-convert` 바이너리가 있는 폴더를 `PATH` 환경 변수의 앞부분 또는 뒷부분에 추가
 
 1. 플러그인이 정상적으로 설치되었는지 확인한다.
 
diff --git a/content/ko/docs/tutorials/_index.md b/content/ko/docs/tutorials/_index.md
index 093208f22d..4b708f68fe 100644
--- a/content/ko/docs/tutorials/_index.md
+++ b/content/ko/docs/tutorials/_index.md
@@ -47,14 +47,16 @@ content_type: concept
 
 * [분산 시스템 코디네이터 ZooKeeper 실행하기](/ko/docs/tutorials/stateful-application/zookeeper/)
 
-## 클러스터
-
-* [AppArmor](/ko/docs/tutorials/clusters/apparmor/)
-
 ## 서비스
 
 * [소스 IP 주소 이용하기](/ko/docs/tutorials/services/source-ip/)
 
+## 보안
+
+* [파드 보안 표준을 클러스터 수준으로 적용하기](/ko/docs/tutorials/security/cluster-level-pss/)
+* [파드 보안 표준을 네임스페이스 수준으로 적용하기](/ko/docs/tutorials/security/ns-level-pss/)
+* [AppArmor](/ko/docs/tutorials/security/apparmor/)
+* [seccomp](/docs/tutorials/security/seccomp/)
 ## {{% heading "whatsnext" %}}
 
 튜토리얼을 작성하고 싶다면, 튜토리얼 페이지 유형에 대한 정보가 있는
diff --git a/content/ko/docs/tutorials/clusters/_index.md b/content/ko/docs/tutorials/clusters/_index.md
deleted file mode 100644
index 70df366b86..0000000000
--- a/content/ko/docs/tutorials/clusters/_index.md
+++ /dev/null
@@ -1,5 +0,0 @@
----
-title: "클러스터"
-weight: 60
----
-
diff --git a/content/ko/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice.md b/content/ko/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice.md
index 5cb55ec401..485253b6fa 100644
--- a/content/ko/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice.md
+++ b/content/ko/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice.md
@@ -24,7 +24,7 @@ weight: 10
 
 CDI는 느슨하게 결합된 협업 빈(beans)을 통해 애플리케이션을 어셈블할 수 있는 표준 종속성 주입(standard dependency injection) 기능을 제공한다. MicroProfile Config는 애플리케이션, 런타임 및 환경을 포함한 다양한 소스에서 구성 속성을 가져오는 표준 방법을 앱과 마이크로서비스에 제공한다. 소스의 정의된 우선순위에 따라 속성은 애플리케이션이 API를 통해 접근할 수 있는 단일 속성 집합으로 자동 결합된다. 대화형 튜토리얼에서는 CDI와 MicroProfile을 함께 사용하여 쿠버네티스 컨피그맵 및 시크릿을 통한 외부 제공 속성을 검색하고 애플리케이션 코드에 삽입한다.
 
-많은 오픈 소스 프레임워크와 런타임이 MicroProfile Config를 구현하고 지원한다. 대화형 튜토리얼을 통해 클라우드 네이티브 앱과 마이크로서비스를 빌드하고 실행하기 위한 유연한 오픈 소스 Java 런타임인 ​​Open Liberty를 사용하게 될 것이다. 그러나, 모든 MicroProfile 호환 런타임을 대신 사용할 수 있다.
+많은 오픈 소스 프레임워크와 런타임이 MicroProfile Config를 구현하고 지원한다. 대화형 튜토리얼을 통해 클라우드 네이티브 앱과 마이크로서비스를 빌드하고 실행하기 위한 유연한 오픈 소스 Java 런타임인 Open Liberty를 사용하게 될 것이다. 그러나, 모든 MicroProfile 호환 런타임을 대신 사용할 수 있다.
 
 
 ## {{% heading "objectives" %}}
diff --git a/content/ko/docs/tutorials/hello-minikube.md b/content/ko/docs/tutorials/hello-minikube.md
index 091a1c684f..ce93967a59 100644
--- a/content/ko/docs/tutorials/hello-minikube.md
+++ b/content/ko/docs/tutorials/hello-minikube.md
@@ -24,8 +24,6 @@ Katacode는 무료로 브라우저에서 쿠버네티스 환경을 제공한다.
 설치 안내는 [minikube 시작](https://minikube.sigs.k8s.io/docs/start/)을 참고한다.
 {{< /note >}}
 
-
-
 ## {{% heading "objectives" %}}
 
 * 샘플 애플리케이션을 minikube에 배포한다.
@@ -62,16 +60,22 @@ Katacode는 무료로 브라우저에서 쿠버네티스 환경을 제공한다.
 4. Katacoda 환경에서는: 30000 을 입력하고 **Display Port** 를 클릭.
 
 {{< note >}}
-`minikube dashboard` 명령을 내리면 대시보드 애드온과 프록시가 활성화되고 해당 프록시로 접속하는 기본 웹 브라우저 창이 열린다. 대시보드에서 디플로이먼트나 서비스와 같은 쿠버네티스 자원을 생성할 수 있다.
+`minikube dashboard` 명령을 내리면 대시보드 애드온과 프록시가 활성화되고 해당 프록시로 접속하는 기본 웹 브라우저 창이 열린다.
+대시보드에서 디플로이먼트나 서비스와 같은 쿠버네티스 자원을 생성할 수 있다.
 
 root 환경에서 명령어를 실행하고 있다면, [URL을 이용하여 대시보드 접속하기](#open-dashboard-with-url)를 참고한다.
 
+기본적으로 대시보드는 쿠버네티스 내부 가상 네트워크 안에서만 접근할 수 있다.
+`dashboard` 명령은 쿠버네티스 가상 네트워크 외부에서 대시보드에 접근할 수 있도록 임시 프록시를 만든다.
+
 `Ctrl+C` 를 눌러 프록시를 종료할 수 있다. 대시보드는 종료되지 않고 실행 상태로 남아 있다.
+명령이 종료된 후 대시보드는 쿠버네티스 클러스터에서 계속 실행된다.
+`dashboard` 명령을 다시 실행하여 대시보드에 접근하기 위한 다른 프록시를 생성할 수 있다.
 {{< /note >}}
 
 ## URL을 이용하여 대시보드 접속하기 {#open-dashboard-with-url}
 
-자동으로 웹 브라우저가 열리는 것을 원치 않는다면, 다음과 같은 명령어를 실행하여 대시보드 접속 URL을 출력할 수 있다:
+자동으로 웹 브라우저가 열리는 것을 원치 않는다면, `--url` 플래그와 함께 다음과 같은 명령어를 실행하여 대시보드 접속 URL을 출력할 수 있다.
 
 ```shell
 minikube dashboard --url
@@ -132,7 +136,7 @@ minikube dashboard --url
     ```
 
 {{< note >}}
-`kubectl` 명령어에 관해 자세히 알기 원하면 [kubectl 개요](/ko/docs/reference/kubectl/overview/)을 살펴보자.
+`kubectl` 명령어에 관해 자세히 알기 원하면 [kubectl 개요](/ko/docs/reference/kubectl/)을 살펴보자.
 {{< /note >}}
 
 ## 서비스 만들기
@@ -297,5 +301,5 @@ minikube delete
 
 
 * [디플로이먼트 오브젝트](/ko/docs/concepts/workloads/controllers/deployment/)에 대해서 더 배워 본다.
-* [애플리케이션 배포](/docs/tasks/run-application/run-stateless-application-deployment/)에 대해서 더 배워 본다.
+* [애플리케이션 배포](/ko/docs/tasks/run-application/run-stateless-application-deployment/)에 대해서 더 배워 본다.
 * [서비스 오브젝트](/ko/docs/concepts/services-networking/service/)에 대해서 더 배워 본다.
diff --git a/content/ko/docs/tutorials/kubernetes-basics/create-cluster/_index.md b/content/ko/docs/tutorials/kubernetes-basics/create-cluster/_index.md
index 3f5c525b0b..9428c38770 100644
--- a/content/ko/docs/tutorials/kubernetes-basics/create-cluster/_index.md
+++ b/content/ko/docs/tutorials/kubernetes-basics/create-cluster/_index.md
@@ -2,3 +2,5 @@
 title: 클러스터 생성하기
 weight: 10
 ---
+
+쿠버네티스 {{< glossary_tooltip text="클러스터" term_id="cluster" length="all" >}}에 대한 내용을 확인하고 Minikube를 사용하여 간단한 클러스터를 생성해 본다.
diff --git a/content/ko/docs/tutorials/kubernetes-basics/create-cluster/cluster-interactive.html b/content/ko/docs/tutorials/kubernetes-basics/create-cluster/cluster-interactive.html
index fcad9b42b3..7c66225037 100644
--- a/content/ko/docs/tutorials/kubernetes-basics/create-cluster/cluster-interactive.html
+++ b/content/ko/docs/tutorials/kubernetes-basics/create-cluster/cluster-interactive.html
@@ -26,7 +26,7 @@ weight: 20
         <div class="row">
             <div class="col-md-12">
               <a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/" role="button">홈으로 이동<span class=""></span></a>
-                <a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro/" role="button">모듈 2로 진행하기 &gt<span class=""></span></a>
+                <a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro/" role="button">모듈 2로 진행하기 &gt;<span class=""></span></a>
             </div>
         </div>
 
diff --git a/content/ko/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro.html b/content/ko/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro.html
index da8cce3e17..415b79362b 100644
--- a/content/ko/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro.html
+++ b/content/ko/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro.html
@@ -72,7 +72,7 @@ weight: 10
         <div class="row">
             <div class="col-md-8">
                 <p><b>컨트롤 플레인은 클러스터 관리를 담당한다.</b> 컨트롤 플레인은 애플리케이션을 스케줄링하거나, 애플리케이션의 항상성을 유지하거나, 애플리케이션을 스케일링하고, 새로운 변경사항을 순서대로 반영(rolling out)하는 일과 같은 클러스터 내 모든 활동을 조율한다.</p>
-                <p><b>노드는 쿠버네티스 클러스터 내 워커 머신으로 동작하는 VM 또는 물리적인 컴퓨터다.</b> 각 노드는 노드를 관리하고 쿠버네티스 컨트롤 플레인과 통신하는 Kubelet이라는 에이전트를 갖는다. 노드는 컨테이너 운영을 담당하는 containerd 또는 도커와 같은 툴도 갖는다. 운영 트래픽을 처리하는 쿠버네티스 클러스터는 최소 세 대의 노드를 가져야 한다.</p>
+                <p><b>노드는 쿠버네티스 클러스터 내 워커 머신으로 동작하는 VM 또는 물리적인 컴퓨터다.</b> 각 노드는 노드를 관리하고 쿠버네티스 컨트롤 플레인과 통신하는 Kubelet이라는 에이전트를 갖는다. 노드는 컨테이너 운영을 담당하는 containerd 또는 도커와 같은 툴도 갖는다. 운영 트래픽을 처리하는 쿠버네티스 클러스터는 최소 세 대의 노드를 가져야 하는데, 이는 한 노드가 다운되면 etcd 멤버와 컨트롤 플레인 인스턴스가 사라져 중복성(redundancy)을 잃기 때문이다. 컨트롤 플레인 노드를 추가하여 이러한 위험을 줄일 수 있다.</p>
 
             </div>
             <div class="col-md-4">
diff --git a/content/ko/docs/tutorials/kubernetes-basics/deploy-app/deploy-interactive.html b/content/ko/docs/tutorials/kubernetes-basics/deploy-app/deploy-interactive.html
index ce5be2cfc0..d5aca028e7 100644
--- a/content/ko/docs/tutorials/kubernetes-basics/deploy-app/deploy-interactive.html
+++ b/content/ko/docs/tutorials/kubernetes-basics/deploy-app/deploy-interactive.html
@@ -37,9 +37,9 @@ weight: 20
         </div>
         <div class="row">
             <div class="col-md-12">
-            	<a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro/" role="button"> &lt 모듈 1로 돌아가기<span class=""></span></a>
+            	<a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro/" role="button"> &lt; 모듈 1로 돌아가기<span class=""></span></a>
             	<a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/" role="button">홈으로 이동<span class=""></span></a>
-                <a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/explore/explore-intro/" role="button">모듈 3으로 진행하기 &gt<span class=""></span></a>
+                <a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/explore/explore-intro/" role="button">모듈 3으로 진행하기 &gt;<span class=""></span></a>
             </div>
         </div>
 
diff --git a/content/ko/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro.html b/content/ko/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro.html
index 4c250c1272..162121de29 100644
--- a/content/ko/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro.html
+++ b/content/ko/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro.html
@@ -103,7 +103,7 @@ weight: 10
         <div class="row">
             <div class="col-md-8">
                 <p>
-                  첫 번째 디플로이먼트로, NGINX를 사용해 모든 요청을 에코(echo)하는 도커 컨테이너로 패키지한 hello-node 애플리케이션을 사용해보자. (아직 hello-node 애플리케이션을 작성하고 컨테이너를 활용해서 배포해보지 않았다면, <a href="/docs/tutorials/hello-minikube/">Hello Minikube 튜토리얼</a>의 지시를 따른다.)
+                  첫 번째 디플로이먼트로, NGINX를 사용해 모든 요청을 에코(echo)하는 도커 컨테이너로 패키지한 hello-node 애플리케이션을 사용해보자. (아직 hello-node 애플리케이션을 작성하고 컨테이너를 활용해서 배포해보지 않았다면, <a href="/ko/docs/tutorials/hello-minikube/">Hello Minikube 튜토리얼</a>의 지시를 따른다.)
                 <p>
 
                  <p>이제 디플로이먼트를 이해했으니, 온라인 튜토리얼을 통해 우리의 첫 번째 애플리케이션을 배포해보자!</p>
diff --git a/content/ko/docs/tutorials/kubernetes-basics/explore/explore-interactive.html b/content/ko/docs/tutorials/kubernetes-basics/explore/explore-interactive.html
index e3b67a1dae..d467fc9b2c 100644
--- a/content/ko/docs/tutorials/kubernetes-basics/explore/explore-interactive.html
+++ b/content/ko/docs/tutorials/kubernetes-basics/explore/explore-interactive.html
@@ -29,9 +29,9 @@ weight: 20
         </div>
         <div class="row">
             <div class="col-md-12">
-            	<a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro/" role="button">&lt 모듈 2로 돌아가기<span class="btn"></span></a>
+            	<a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro/" role="button">&lt; 모듈 2로 돌아가기<span class="btn"></span></a>
             	<a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/" role="button">홈으로 이동<span class=""></span></a>
-                <a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/expose/expose-intro/" role="button">모듈 4로 진행하기 &gt<span class="btn"></span></a>
+                <a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/expose/expose-intro/" role="button">모듈 4로 진행하기 &gt;<span class="btn"></span></a>
             </div>
         </div>
 
diff --git a/content/ko/docs/tutorials/kubernetes-basics/explore/explore-intro.html b/content/ko/docs/tutorials/kubernetes-basics/explore/explore-intro.html
index e218222010..c09d8c014e 100644
--- a/content/ko/docs/tutorials/kubernetes-basics/explore/explore-intro.html
+++ b/content/ko/docs/tutorials/kubernetes-basics/explore/explore-intro.html
@@ -74,7 +74,7 @@ weight: 10
         <div class="row">
             <div class="col-md-8">
                 <h2>노드</h2>
-                <p>파드는 언제나 <b>노드</b> 상에서 동작한다. 노드는 쿠버네티스에서 워커 머신을 말하며 클러스터에 따라 가상 또는 물리 머신일 수 있다. 각 노드는 컨트롤 플레인에 의해 관리된다. 하나의 노드는 여러 개의 파드를 가질 수 있고, 쿠버네티스 컨트롤 플레인은 클러스터 내 노드를 통해서 파드에 대한 스케쥴링을 자동으로 처리한다. 컨트롤 플레인의 자동 스케줄링은 각 노드의 사용 가능한 리소스를 모두 고려합니다.</p>
+                <p>파드는 언제나 <b>노드</b> 상에서 동작한다. 노드는 쿠버네티스에서 워커 머신을 말하며 클러스터에 따라 가상 또는 물리 머신일 수 있다. 각 노드는 컨트롤 플레인에 의해 관리된다. 하나의 노드는 여러 개의 파드를 가질 수 있고, 쿠버네티스 컨트롤 플레인은 클러스터 내 노드를 통해서 파드에 대한 스케쥴링을 자동으로 처리한다. 컨트롤 플레인의 자동 스케줄링은 각 노드의 사용 가능한 리소스를 모두 고려한다.</p>
 
                 <p>모든 쿠버네티스 노드는 최소한 다음과 같이 동작한다.</p>
                 <ul>
@@ -85,7 +85,7 @@ weight: 10
             </div>
             <div class="col-md-4">
                 <div class="content__box content__box_fill">
-                    <p><i> 만약 컨테이너들이 밀접하고 결합되어 있고 디스크와 같은 자원을 공유해야 한다면 오직 하나의 단일 파드에 함께 스케쥴되어져야 한다. </i></p>
+                    <p><i> 만약 컨테이너들이 밀접하게 결합되어 있고 디스크와 같은 자원을 공유해야 한다면 오직 하나의 단일 파드에 함께 스케쥴되어져야 한다. </i></p>
                 </div>
             </div>
         </div>
diff --git a/content/ko/docs/tutorials/kubernetes-basics/expose/expose-interactive.html b/content/ko/docs/tutorials/kubernetes-basics/expose/expose-interactive.html
index 09dde78cb8..fa68a4c40e 100644
--- a/content/ko/docs/tutorials/kubernetes-basics/expose/expose-interactive.html
+++ b/content/ko/docs/tutorials/kubernetes-basics/expose/expose-interactive.html
@@ -26,9 +26,9 @@ weight: 20
         </div>
         <div class="row">
             <div class="col-md-12">
-            	<a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/explore/explore-intro/" role="button">&lt 모듈 3으로 돌아가기<span class=""></span></a>
+            	<a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/explore/explore-intro/" role="button">&lt; 모듈 3으로 돌아가기<span class=""></span></a>
             	<a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/" role="button">홈으로 이동<span class=""></span></a>
-                <a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/scale/scale-intro/" role="button">모듈 5로 진행하기 &gt<span class=""></span></a>
+                <a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/scale/scale-intro/" role="button">모듈 5로 진행하기 &gt;<span class=""></span></a>
             </div>
         </div>
 
diff --git a/content/ko/docs/tutorials/kubernetes-basics/expose/expose-intro.html b/content/ko/docs/tutorials/kubernetes-basics/expose/expose-intro.html
index aac6298a7a..8f56b5ef70 100644
--- a/content/ko/docs/tutorials/kubernetes-basics/expose/expose-intro.html
+++ b/content/ko/docs/tutorials/kubernetes-basics/expose/expose-intro.html
@@ -37,9 +37,9 @@ weight: 10
 				<li><i>ClusterIP</i> (기본값) - 클러스터 내에서 내부 IP 에 대해 서비스를 노출해준다. 이 방식은 오직 클러스터 내에서만 서비스가 접근될 수 있도록 해준다.</li>
 				<li><i>NodePort</i> - NAT가 이용되는 클러스터 내에서 각각 선택된 노드들의 동일한 포트에 서비스를 노출시켜준다. <code>&lt;NodeIP&gt;:&lt;NodePort&gt;</code>를 이용하여 클러스터 외부로부터 서비스가 접근할 수 있도록 해준다. ClusterIP의 상위 집합이다.</li>
 				<li><i>LoadBalancer</i> - (지원 가능한 경우) 기존 클라우드에서 외부용 로드밸런서를 생성하고 서비스에 고정된 공인 IP를 할당해준다. NodePort의 상위 집합이다. </li>
-				<li><i>ExternalName</i> - <code>CNAME</code> 레코드 및 값을 반환함으로써 서비스를 <code>externalName</code> 필드의 내용(예를 들면, `foo.bar.example.com`)에 매핑한다. 어떠한 종류의 프록시도 설정되지 않는다. 이 방식은 <code>kube-dns</code> v1.7 이상 또는 CoreDNS 버전 0.0.8 이상을 필요로 한다.</li>
+				<li><i>ExternalName</i> - <code>CNAME</code> 레코드 및 값을 반환함으로써 서비스를 <code>externalName</code> 필드의 내용(예를 들면, <code>foo.bar.example.com</code>)에 매핑한다. 어떠한 종류의 프록시도 설정되지 않는다. 이 방식은 <code>kube-dns</code> v1.7 이상 또는 CoreDNS 버전 0.0.8 이상을 필요로 한다.</li>
 			</ul>
-			<p>다른 서비스 타입들에 대한 추가 정보는 <a href="/ko/docs/tutorials/services/source-ip/">소스 IP 이용하기</a>  튜토리얼에서 확인 가능하다. 또한 <a href="/docs/concepts/services-networking/connect-applications-service">서비스들로 애플리케이션에 접속하기</a>도 참고해 보자.</p>
+			<p>다른 서비스 타입들에 대한 추가 정보는 <a href="/ko/docs/tutorials/services/source-ip/">소스 IP 이용하기</a>  튜토리얼에서 확인 가능하다. 또한 <a href="/ko/docs/concepts/services-networking/connect-applications-service/">서비스들로 애플리케이션에 접속하기</a>도 참고해 보자.</p>
 			<p>부가적으로, spec에 <code>selector</code>를 정의하지 않고 말아넣은 서비스들의 몇 가지 유즈케이스들이 있음을 주의하자. <code>selector</code> 없이 생성된 서비스는 상응하는 엔드포인트 오브젝트들 또한 생성하지 않는다. 이로써 사용자들로 하여금 하나의 서비스를 특정한 엔드포인트에 매핑 시킬수 있도록 해준다. selector를 생략하게 되는 또 다른 가능성은 여러분이 <code>type: ExternalName</code>을 이용하겠다고 확고하게 의도하는 경우이다.</p>
 			</div>
 			<div class="col-md-4">
diff --git a/content/ko/docs/tutorials/kubernetes-basics/scale/scale-interactive.html b/content/ko/docs/tutorials/kubernetes-basics/scale/scale-interactive.html
index 22b5d41342..18a371fff2 100644
--- a/content/ko/docs/tutorials/kubernetes-basics/scale/scale-interactive.html
+++ b/content/ko/docs/tutorials/kubernetes-basics/scale/scale-interactive.html
@@ -26,9 +26,9 @@ weight: 20
         </div>
         <div class="row">
             <div class="col-md-12">
-            	<a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/expose/expose-interactive/" role="button">&lt 모듈 4로 돌아가기<span class=""></span></a>
+            	<a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/expose/expose-interactive/" role="button">&lt; 모듈 4로 돌아가기<span class=""></span></a>
             	<a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/" role="button">홈으로 이동<span class=""></span></a>
-                <a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/update/update-intro/" role="button">모듈 6으로 진행하기 &gt<span class=""></span></a>
+                <a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/update/update-intro/" role="button">모듈 6으로 진행하기 &gt;<span class=""></span></a>
             </div>
         </div>
 
diff --git a/content/ko/docs/tutorials/kubernetes-basics/scale/scale-intro.html b/content/ko/docs/tutorials/kubernetes-basics/scale/scale-intro.html
index 9790c1f31e..b494b175dd 100644
--- a/content/ko/docs/tutorials/kubernetes-basics/scale/scale-intro.html
+++ b/content/ko/docs/tutorials/kubernetes-basics/scale/scale-intro.html
@@ -28,7 +28,7 @@ weight: 10
                 <h3>애플리케이션을 스케일하기</h3>
                 
                 <p>지난 모듈에서 <a href="/ko/docs/concepts/workloads/controllers/deployment/"> 디플로이먼트</a>를 만들고,
-                    <a href="/docs/concepts/services-networking/service/">서비스</a>를
+                    <a href="/ko/docs/concepts/services-networking/service/">서비스</a>를
                     통해서 디플로이먼트를 외부에 노출시켜 봤다. 해당 디플로이먼트는 애플리케이션을 구동하기 위해 단
                     하나의 파드만을 생성했었다. 트래픽이 증가하면, 사용자 요청에 맞추어 애플리케이션의 규모를
                     조정할 필요가 있다.</p>
diff --git a/content/ko/docs/tutorials/kubernetes-basics/update/update-interactive.html b/content/ko/docs/tutorials/kubernetes-basics/update/update-interactive.html
index 4038e3b358..0f25073ca3 100644
--- a/content/ko/docs/tutorials/kubernetes-basics/update/update-interactive.html
+++ b/content/ko/docs/tutorials/kubernetes-basics/update/update-interactive.html
@@ -26,7 +26,7 @@ weight: 20
         </div>
         <div class="row">
             <div class="col-md-12">
-              <a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/scale/scale-interactive/" role="button">&lt 모듈 5로 돌아가기<span class=""></span></a>
+              <a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/scale/scale-interactive/" role="button">&lt; 모듈 5로 돌아가기<span class=""></span></a>
               <a class="btn btn-lg btn-success" href="/ko/docs/tutorials/kubernetes-basics/" role="button">쿠버네티스 기초로 돌아가기<span class=""></span></a>
             </div>
         </div>
diff --git a/content/ko/docs/tutorials/security/_index.md b/content/ko/docs/tutorials/security/_index.md
new file mode 100644
index 0000000000..0934b4b3e7
--- /dev/null
+++ b/content/ko/docs/tutorials/security/_index.md
@@ -0,0 +1,5 @@
+---
+title: "보안"
+weight: 40
+---
+
diff --git a/content/ko/docs/tutorials/clusters/apparmor.md b/content/ko/docs/tutorials/security/apparmor.md
similarity index 87%
rename from content/ko/docs/tutorials/clusters/apparmor.md
rename to content/ko/docs/tutorials/security/apparmor.md
index 43b07e293b..3b205705e2 100644
--- a/content/ko/docs/tutorials/clusters/apparmor.md
+++ b/content/ko/docs/tutorials/security/apparmor.md
@@ -233,7 +233,7 @@ kubectl get events | grep hello-apparmor
 proc attr을 확인하여 컨테이너가 실제로 해당 프로파일로 실행 중인지 확인할 수 있다.
 
 ```shell
-kubectl exec hello-apparmor cat /proc/1/attr/current
+kubectl exec hello-apparmor -- cat /proc/1/attr/current
 ```
 ```
 k8s-apparmor-example-deny-write (enforce)
@@ -242,7 +242,7 @@ k8s-apparmor-example-deny-write (enforce)
 마지막으로 파일 쓰기를 통해 프로파일을 위반하면 어떻게 되는지 확인할 수 있다.
 
 ```shell
-kubectl exec hello-apparmor touch /tmp/test
+kubectl exec hello-apparmor -- touch /tmp/test
 ```
 ```
 touch: /tmp/test: Permission denied
@@ -264,7 +264,7 @@ metadata:
 spec:
   containers:
   - name: hello
-    image: busybox
+    image: busybox:1.28
     command: [ "sh", "-c", "echo 'Hello AppArmor!' && sleep 1h" ]
 EOF
 pod/hello-apparmor-2 created
@@ -346,16 +346,21 @@ Events:
 [노드 셀렉터](/ko/docs/concepts/scheduling-eviction/assign-pod-node/)를 이용하여
 파드가 필요한 프로파일이 있는 노드에서 실행되도록 한다.
 
-### PodSecurityPolicy로 프로파일 제한하기 {#restricting-profiles-with-the-podsecuritypolicy}
+### 파드시큐리티폴리시(PodSecurityPolicy)로 프로파일 제한하기 {#restricting-profiles-with-the-podsecuritypolicy}
 
-만약 PodSecurityPolicy 확장을 사용하면, 클러스터 단위로 AppArmor 제한을 적용할 수 있다.
-PodSecurityPolicy를 사용하려면 위해 다음의 플래그를 반드시 `apiserver`에 설정해야 한다.
+{{< note >}}
+파드시큐리티폴리시는 쿠버네티스 v1.21에서 사용 중단되었으며, v1.25에서 제거될 예정이다. 
+더 자세한 내용은 [파드시큐리티폴리시](/ko/docs/concepts/security/pod-security-policy/) 문서를 참고한다.
+{{< /note >}}
+
+만약 파드시큐리티폴리시 확장을 사용하면, 클러스터 단위로 AppArmor 제한을 적용할 수 있다.
+파드시큐리티폴리시를 사용하려면 위해 다음의 플래그를 반드시 `apiserver`에 설정해야 한다.
 
 ```
 --enable-admission-plugins=PodSecurityPolicy[,others...]
 ```
 
-AppArmor 옵션은 PodSecurityPolicy의 어노테이션으로 지정할 수 있다.
+AppArmor 옵션은 파드시큐리티폴리시의 어노테이션으로 지정할 수 있다.
 
 ```yaml
 apparmor.security.beta.kubernetes.io/defaultProfileName: <profile_ref>
@@ -376,28 +381,14 @@ apparmor.security.beta.kubernetes.io/allowedProfileNames: <profile_ref>[,others.
 --feature-gates=AppArmor=false
 ```
 
-비활성화되면 AppArmor 프로파일을 포함한 파드는 "Forbidden" 오류로 검증 실패한다.
-기본적으로 도커는 항상 비특권 파드에 "docker-default" 프로파일을 활성화하고(AppArmor 커널모듈이 활성화되었다면),
-기능 게이트가 비활성화된 것처럼 진행한다.
-AppArmor를 비활성화하는 이 옵션은
-AppArmor가 일반 사용자 버전이 되면 제거된다.
+비활성화되면, AppArmor 프로파일을 포함한 파드는 
+"Forbidden" 오류로 검증 실패한다.
 
-### AppArmor와 함께 쿠버네티스 1.4로 업그레이드 하기 {#upgrading-to-kubernetes-v1.4-with-apparmor}
-
-클러스터 버전을 v1.4로 업그레이드하기 위해 AppArmor쪽 작업은 없다.
-그러나 AppArmor 어노테이션을 가진 파드는 유효성 검사(혹은 PodSecurityPolicy 승인)을 거치지 않는다.
-그 노드에 허용 프로파일이 로드되면, 악의적인 사용자가 허가 프로필을 미리 적용하여
-파드의 권한을 docker-default 보다 높일 수 있다.
-이것이 염려된다면 `apparmor.security.beta.kubernetes.io` 어노테이션이 포함된
-모든 파드의 클러스터를 제거하는 것이 좋다.
-
-### 일반 사용자 버전으로 업그레이드 방법 {#upgrade-path-to-general-availability}
-
-AppArmor는 일반 사용자 버전(general available)으로 준비되면 현재 어노테이션으로 지정되는 옵션은 필드로 변경될 것이다.
-모든 업그레이드와 다운그레이드 방법은 전환을 통해 지원하기에는 매우 미묘하니
-전환이 필요할 때에 상세히 설명할 것이다.
-최소 두 번의 릴리스에 대해서는 필드와 어노테이션 모두를 지원할 것이고,
-그 이후부터는 어노테이션은 명확히 거부된다.
+{{<note>}}
+쿠버네티스 기능이 비활성화되어 있어도, 런타임이 계속 기본 프로파일을 강제할 수도 있다. 
+AppArmor가 general availability (GA) 상태로 바뀌면 
+AppArmor 기능을 비활성화하는 옵션은 제거될 것이다.
+{{</note>}}
 
 ## 프로파일 제작 {#authoring-profiles}
 
@@ -410,10 +401,6 @@ AppArmor 프로파일을 만들고 올바르게 지정하는 것은 매우 까
 * [bane](https://github.com/jfrazelle/bane)은 단순화된 프로파일 언어를 이용하는 도커를 위한
   AppArmor 프로파일 생성기이다.
 
-개발 장비의 도커를 통해 애플리케이션을 실행하여
-프로파일을 생성하는 것을 권장하지만,
-파드가 실행 중인 쿠버네티스 노드에서 도구 실행을 금하지는 않는다.
-
 AppArmor 문제를 디버깅하기 위해서 거부된 것으로 보이는 시스템 로그를 확인할 수 있다.
 AppArmor 로그는 `dmesg`에서 보이며, 오류는 보통 시스템 로그나
 `journalctl`에서 볼 수 있다. 더 많은 정보는
@@ -434,11 +421,10 @@ AppArmor 로그는 `dmesg`에서 보이며, 오류는 보통 시스템 로그나
 ### 프로파일 참조 {#profile-reference}
 
 - `runtime/default`: 기본 런타임 프로파일을 참조한다.
-  - (기본 PodSecurityPolicy 없이) 프로파일을 지정하지 않고
+  - (기본 파드시큐리티폴리시 없이) 프로파일을 지정하지 않고
     AppArmor를 사용하는 것과 동등하다.
-  - 도커에서는 권한 없는 컨테이너의 경우는
-    [`docker-default`](https://docs.docker.com/engine/security/apparmor/) 프로파일로,
-    권한이 있는 컨테이너의 경우 unconfined(프로파일 없음)으로 해석한다.
+  - 실제로는, 많은 컨테이너 런타임은 동일한 OCI 기본 프로파일을 사용하며, 이는 
+    https://github.com/containers/common/blob/main/pkg/apparmor/apparmor_linux_template.go 에 정의되어 있다.
 - `localhost/<profile_name>`: 노드(localhost)에 적재된 프로파일을 이름으로 참조한다.
    - 가용한 프로파일 이름의 상세 내용은
      [핵심 정책 참조](https://gitlab.com/apparmor/apparmor/wikis/AppArmor_Core_Policy_Reference#profile-names-and-attachment-specifications)에 설명되어 있다.
@@ -446,7 +432,7 @@ AppArmor 로그는 `dmesg`에서 보이며, 오류는 보통 시스템 로그나
 
 다른 어떤 프로파일 참조 형식도 유효하지 않다.
 
-### PodSecurityPolicy 어노테이션 {#podsecuritypolicy-annotations}
+### 파드시큐리티폴리시 어노테이션 {#podsecuritypolicy-annotations}
 
 아무 프로파일도 제공하지 않을 때에 컨테이너에 적용할 기본 프로파일을 지정하기
 
diff --git a/content/ko/docs/tutorials/security/cluster-level-pss.md b/content/ko/docs/tutorials/security/cluster-level-pss.md
new file mode 100644
index 0000000000..baa0a6ec05
--- /dev/null
+++ b/content/ko/docs/tutorials/security/cluster-level-pss.md
@@ -0,0 +1,324 @@
+---
+title: 파드 시큐리티 스탠다드를 클러스터 수준에 적용하기
+content_type: tutorial
+weight: 10
+---
+
+{{% alert title="Note" %}}
+이 튜토리얼은 새로운 클러스터에만 적용할 수 있다.
+{{% /alert %}}
+
+파드 시큐리티 어드미션(PSA, Pod Security Admission)은 
+[베타로 변경](/blog/2021/12/09/pod-security-admission-beta/)되어 v1.23 이상에서 기본적으로 활성화되어 있다. 
+파드 시큐리티 어드미션은 파드가 생성될 때 
+[파드 시큐리티 스탠다드(Pod Security Standards)](/docs/concepts/security/pod-security-standards/)를 
+적용하는 어드미션 컨트롤러이다. 
+이 튜토리얼은 
+`baseline` 파드 시큐리티 스탠다드를 클러스터 수준(level)에 적용하여 
+표준 구성을 클러스터의 모든 네임스페이스에 적용하는 방법을 보여 준다.
+
+파드 시큐리티 스탠다드를 특정 네임스페이스에 적용하려면, [파드 시큐리티 스탠다드를 네임스페이스 수준에 적용하기](/ko/docs/tutorials/security/ns-level-pss/)를 참고한다.
+
+## {{% heading "prerequisites" %}}
+
+워크스테이션에 다음을 설치한다.
+
+- [KinD](https://kind.sigs.k8s.io/docs/user/quick-start/#installation)
+- [kubectl](/ko/docs/tasks/tools/)
+
+## 적용할 알맞은 파드 시큐리티 스탠다드 선택하기
+
+[파드 시큐리티 어드미션](/docs/concepts/security/pod-security-admission/)을 이용하여 
+`enforce`, `audit`, 또는 `warn` 모드 중 하나로 
+내장 [파드 시큐리티 스탠다드](/docs/concepts/security/pod-security-standards/)를 적용할 수 있다.
+
+현재 구성에 가장 적합한 파드 시큐리티 스탠다드를 고르는 데 
+도움이 되는 정보를 수집하려면, 다음을 수행한다.
+
+1. 파드 시큐리티 스탠다드가 적용되지 않은 클러스터를 생성한다.
+
+    ```shell
+    kind create cluster --name psa-wo-cluster-pss --image kindest/node:v1.23.0
+    ```
+   다음과 비슷하게 출력될 것이다.
+    ```
+    Creating cluster "psa-wo-cluster-pss" ...
+    ✓ Ensuring node image (kindest/node:v1.23.0) 🖼
+    ✓ Preparing nodes 📦  
+    ✓ Writing configuration 📜
+    ✓ Starting control-plane 🕹️
+    ✓ Installing CNI 🔌
+    ✓ Installing StorageClass 💾
+    Set kubectl context to "kind-psa-wo-cluster-pss"
+    You can now use your cluster with:
+    
+    kubectl cluster-info --context kind-psa-wo-cluster-pss
+    
+    Thanks for using kind! 😊
+    
+    ```
+
+1. kubectl context를 새로 생성한 클러스터로 설정한다.
+
+    ```shell
+    kubectl cluster-info --context kind-psa-wo-cluster-pss
+    ```
+   다음과 비슷하게 출력될 것이다.
+
+    ```
+     Kubernetes control plane is running at https://127.0.0.1:61350
+
+    CoreDNS is running at https://127.0.0.1:61350/api/v1/namespaces/kube-system/services/kube-dns:dns/proxy
+    
+    To further debug and diagnose cluster problems, use 'kubectl cluster-info dump'.
+    ```
+
+1. 클러스터의 네임스페이스 목록을 조회한다.
+
+    ```shell
+    kubectl get ns
+    ```
+    다음과 비슷하게 출력될 것이다.
+    ```      
+    NAME                 STATUS   AGE
+    default              Active   9m30s
+    kube-node-lease      Active   9m32s
+    kube-public          Active   9m32s
+    kube-system          Active   9m32s
+    local-path-storage   Active   9m26s
+    ```
+
+1. `--dry-run=server`를 사용하여 다른 파드 시큐리티 스탠다드가 적용되었을 때 
+   어떤 것이 변경되는지 확인한다.
+
+   1. Privileged
+      ```shell
+      kubectl label --dry-run=server --overwrite ns --all \
+      pod-security.kubernetes.io/enforce=privileged
+      ```
+     다음과 비슷하게 출력될 것이다.
+      ```      
+      namespace/default labeled
+      namespace/kube-node-lease labeled
+      namespace/kube-public labeled
+      namespace/kube-system labeled
+      namespace/local-path-storage labeled
+      ```
+   2. Baseline
+      ```shell    
+      kubectl label --dry-run=server --overwrite ns --all \
+      pod-security.kubernetes.io/enforce=baseline
+      ```
+     다음과 비슷하게 출력될 것이다.
+      ```   
+      namespace/default labeled
+      namespace/kube-node-lease labeled
+      namespace/kube-public labeled
+      Warning: existing pods in namespace "kube-system" violate the new PodSecurity enforce level "baseline:latest"
+      Warning: etcd-psa-wo-cluster-pss-control-plane (and 3 other pods): host namespaces, hostPath volumes
+      Warning: kindnet-vzj42: non-default capabilities, host namespaces, hostPath volumes
+      Warning: kube-proxy-m6hwf: host namespaces, hostPath volumes, privileged
+      namespace/kube-system labeled
+      namespace/local-path-storage labeled
+      ```   
+
+   3. Restricted
+     ```shell
+      kubectl label --dry-run=server --overwrite ns --all \
+      pod-security.kubernetes.io/enforce=restricted
+      ```
+     다음과 비슷하게 출력될 것이다.
+      ```   
+      namespace/default labeled
+      namespace/kube-node-lease labeled
+      namespace/kube-public labeled
+      Warning: existing pods in namespace "kube-system" violate the new PodSecurity enforce level "restricted:latest"
+      Warning: coredns-7bb9c7b568-hsptc (and 1 other pod): unrestricted capabilities, runAsNonRoot != true, seccompProfile
+      Warning: etcd-psa-wo-cluster-pss-control-plane (and 3 other pods): host namespaces, hostPath volumes, allowPrivilegeEscalation != false, unrestricted capabilities, restricted volume types, runAsNonRoot != true
+      Warning: kindnet-vzj42: non-default capabilities, host namespaces, hostPath volumes, allowPrivilegeEscalation != false, unrestricted capabilities, restricted volume types, runAsNonRoot != true, seccompProfile
+      Warning: kube-proxy-m6hwf: host namespaces, hostPath volumes, privileged, allowPrivilegeEscalation != false, unrestricted capabilities, restricted volume types, runAsNonRoot != true, seccompProfile
+      namespace/kube-system labeled
+      Warning: existing pods in namespace "local-path-storage" violate the new PodSecurity enforce level "restricted:latest"
+      Warning: local-path-provisioner-d6d9f7ffc-lw9lh: allowPrivilegeEscalation != false, unrestricted capabilities, runAsNonRoot != true, seccompProfile
+      namespace/local-path-storage labeled
+      ```
+
+위의 출력에서, `privileged` 파드 시큐리티 스탠다드를 적용하면 모든 네임스페이스에서 경고가 발생하지 않는 것을 볼 수 있다. 
+그러나 `baseline` 및 `restricted` 파드 시큐리티 스탠다드에 대해서는 
+`kube-system` 네임스페이스에서 경고가 발생한다.
+
+## 모드, 버전, 및 파드 시큐리티 스탠다드 설정
+
+이 섹션에서는, 다음의 파드 시큐리티 스탠다드를 `latest` 버전에 적용한다.
+
+* `baseline` 파드 시큐리티 스탠다드는 `enforce` 모드로 적용
+* `restricted` 파드 시큐리티 스탠다드는 `warn` 및 `audit` 모드로 적용
+
+`baseline` 파드 시큐리티 스탠다드는 
+예외 목록을 간결하게 유지하고 알려진 권한 상승(privilege escalations)을 방지할 수 있는 
+편리한 절충안을 제공한다.
+
+추가적으로, `kube-system` 내의 파드가 실패하는 것을 방지하기 위해, 
+해당 네임스페이스는 파드 시큐리티 스탠다드가 적용되지 않도록 제외할 것이다.
+
+사용 중인 환경에 파드 시큐리티 어드미션을 적용할 때에는 
+다음의 사항을 고려한다.
+
+1. 클러스터에 적용된 위험 상태에 따라, 
+   `restricted`와 같은 더 엄격한 파드 시큐리티 스탠다드가 더 좋을 수도 있다.
+1. `kube-system` 네임스페이스를 적용 대상에서 제외하면 
+   이 네임스페이스의 파드가 `privileged`로 실행될 수 있다. 
+   실제 사용 환경에서는, 
+   최소 권한 원칙을 준수하도록, 
+   접근을 `kube-system` 네임스페이스로 제한하는 
+   엄격한 RBAC 정책을 적용할 것을 강력히 권장한다.
+1. 파드 시큐리티 어드미션 컨트롤러가 이러한 파드 시큐리티 스탠다드를 구현하는 데 사용할 수 있는 
+   구성 파일을 생성한다.
+
+    ```
+    mkdir -p /tmp/pss
+    cat <<EOF > /tmp/pss/cluster-level-pss.yaml 
+    apiVersion: apiserver.config.k8s.io/v1
+    kind: AdmissionConfiguration
+    plugins:
+    - name: PodSecurity
+      configuration:
+        apiVersion: pod-security.admission.config.k8s.io/v1beta1
+        kind: PodSecurityConfiguration
+        defaults:
+          enforce: "baseline"
+          enforce-version: "latest"
+          audit: "restricted"
+          audit-version: "latest"
+          warn: "restricted"
+          warn-version: "latest"
+        exemptions:
+          usernames: []
+          runtimeClasses: []
+          namespaces: [kube-system]
+    EOF
+    ```
+
+1. API 서버가 클러스터 생성 과정에서 이 파일을 처리할 수 있도록 구성한다.
+
+    ```
+    cat <<EOF > /tmp/pss/cluster-config.yaml 
+    kind: Cluster
+    apiVersion: kind.x-k8s.io/v1alpha4
+    nodes:
+    - role: control-plane
+      kubeadmConfigPatches:
+      - |
+        kind: ClusterConfiguration
+        apiServer:
+            extraArgs:
+              admission-control-config-file: /etc/config/cluster-level-pss.yaml
+            extraVolumes:
+              - name: accf
+                hostPath: /etc/config
+                mountPath: /etc/config
+                readOnly: false
+                pathType: "DirectoryOrCreate"
+      extraMounts:
+      - hostPath: /tmp/pss
+        containerPath: /etc/config
+        # optional: if set, the mount is read-only.
+        # default false
+        readOnly: false
+        # optional: if set, the mount needs SELinux relabeling.
+        # default false
+        selinuxRelabel: false
+        # optional: set propagation mode (None, HostToContainer or Bidirectional)
+        # see https://kubernetes.io/ko/docs/concepts/storage/volumes/#마운트-전파-propagation
+        # default None
+        propagation: None
+    EOF
+    ```
+
+   {{<note>}}
+   macOS에서 Docker Desktop과 KinD를 사용하고 있다면, 
+   **Preferences > Resources > File Sharing** 메뉴에서 
+   `/tmp`를 Shared Directory로 추가할 수 있다.
+   {{</note>}}
+
+1. 이러한 파드 시큐리티 스탠다드를 적용하기 위해 
+   파드 시큐리티 어드미션을 사용하는 클러스터를 생성한다.
+
+   ```shell
+    kind create cluster --name psa-with-cluster-pss --image kindest/node:v1.23.0 --config /tmp/pss/cluster-config.yaml
+   ```
+   다음과 비슷하게 출력될 것이다.
+   ```
+    Creating cluster "psa-with-cluster-pss" ...
+     ✓ Ensuring node image (kindest/node:v1.23.0) 🖼 
+     ✓ Preparing nodes 📦  
+     ✓ Writing configuration 📜 
+     ✓ Starting control-plane 🕹️ 
+     ✓ Installing CNI 🔌 
+     ✓ Installing StorageClass 💾 
+    Set kubectl context to "kind-psa-with-cluster-pss"
+    You can now use your cluster with:
+    
+    kubectl cluster-info --context kind-psa-with-cluster-pss
+    
+    Have a question, bug, or feature request? Let us know! https://kind.sigs.k8s.io/#community 🙂
+    ```
+
+1. kubectl context를 새로 생성한 클러스터로 설정한다.
+   ```shell
+    kubectl cluster-info --context kind-psa-with-cluster-pss
+    ```
+   다음과 비슷하게 출력될 것이다.
+    ```
+     Kubernetes control plane is running at https://127.0.0.1:63855
+     CoreDNS is running at https://127.0.0.1:63855/api/v1/namespaces/kube-system/services/kube-dns:dns/proxy
+  
+     To further debug and diagnose cluster problems, use 'kubectl cluster-info dump'.
+    ```
+1. 기본 네임스페이스에 생성할 최소한의 구성에 대한 파드 명세를 다음과 같이 생성한다.
+
+    ```
+    cat <<EOF > /tmp/pss/nginx-pod.yaml
+    apiVersion: v1
+    kind: Pod
+    metadata:
+      name: nginx
+    spec:
+      containers:
+        - image: nginx
+          name: nginx
+          ports:
+            - containerPort: 80
+    EOF
+    ```
+1. 클러스터에 해당 파드를 생성한다.
+
+   ```shell
+    kubectl apply -f /tmp/pss/nginx-pod.yaml
+   ```
+   다음과 비슷하게 출력될 것이다.
+   ```
+    Warning: would violate PodSecurity "restricted:latest": allowPrivilegeEscalation != false (container "nginx" must set securityContext.allowPrivilegeEscalation=false), unrestricted capabilities (container "nginx" must set securityContext.capabilities.drop=["ALL"]), runAsNonRoot != true (pod or container "nginx" must set securityContext.runAsNonRoot=true), seccompProfile (pod or container "nginx" must set securityContext.seccompProfile.type to "RuntimeDefault" or "Localhost")
+    pod/nginx created
+   ```
+
+## 정리하기
+
+`kind delete cluster --name psa-with-cluster-pss` 및
+`kind delete cluster --name psa-wo-cluster-pss` 명령을 실행하여 
+생성했던 클러스터를 삭제한다.
+
+## {{% heading "whatsnext" %}}
+
+- 다음의 모든 단계를 한 번에 수행하려면 
+  [셸 스크립트](/examples/security/kind-with-cluster-level-baseline-pod-security.sh)를 
+  실행한다.
+  1. 파드 시큐리티 스탠다드 기반의 클러스터 수준 구성(configuration)을 생성
+  2. API 서버가 이 구성을 사용할 수 있도록 파일을 생성
+  3. 이 구성을 사용하는 API 서버를 포함하는 클러스터를 생성
+  4. kubectl context를 새로 생성한 클러스터에 설정
+  5. 최소한의 파드 구성을 위한 yaml 파일을 생성
+  6. 해당 파일을 적용하여 새 클러스터에 파드를 생성
+- [파드 시큐리티 어드미션](/docs/concepts/security/pod-security-admission/)
+- [파드 시큐리티 스탠다드](/docs/concepts/security/pod-security-standards/)
+- [파드 시큐리티 스탠다드를 네임스페이스 수준에 적용하기](/ko/docs/tutorials/security/ns-level-pss/)
diff --git a/content/ko/docs/tutorials/security/ns-level-pss.md b/content/ko/docs/tutorials/security/ns-level-pss.md
new file mode 100644
index 0000000000..06b566d218
--- /dev/null
+++ b/content/ko/docs/tutorials/security/ns-level-pss.md
@@ -0,0 +1,174 @@
+---
+title: 파드 시큐리티 스탠다드를 네임스페이스 수준에 적용하기
+content_type: tutorial
+weight: 10
+---
+
+{{% alert title="Note" %}}
+이 튜토리얼은 새로운 클러스터에만 적용할 수 있다.
+{{% /alert %}}
+
+파드 시큐리티 어드미션(PSA, Pod Security Admission)은 
+[베타로 변경](/blog/2021/12/09/pod-security-admission-beta/)되어 v1.23 이상에서 기본적으로 활성화되어 있다. 
+파드 시큐리티 어드미션은 파드가 생성될 때 
+[파드 시큐리티 스탠다드(Pod Security Standards)](/docs/concepts/security/pod-security-standards/)를 적용하는 어드미션 컨트롤러이다. 
+이 튜토리얼에서는, 
+각 네임스페이스별로 `baseline` 파드 시큐리티 스탠다드를 강제(enforce)할 것이다.
+
+파드 시큐리티 스탠다드를 클러스터 수준에서 여러 네임스페이스에 한 번에 적용할 수도 있다. 
+이에 대한 안내는 
+[파드 시큐리티 스탠다드를 클러스터 수준에 적용하기](/ko/docs/tutorials/security/cluster-level-pss/)를 참고한다.
+
+## {{% heading "prerequisites" %}}
+
+워크스테이션에 다음을 설치한다.
+
+- [KinD](https://kind.sigs.k8s.io/docs/user/quick-start/#installation)
+- [kubectl](/ko/docs/tasks/tools/)
+
+## 클러스터 생성하기
+
+1. 다음과 같이 `KinD` 클러스터를 생성한다.
+
+   ```shell
+   kind create cluster --name psa-ns-level --image kindest/node:v1.23.0
+   ```
+
+   다음과 비슷하게 출력될 것이다.
+
+   ```
+   Creating cluster "psa-ns-level" ...
+    ✓ Ensuring node image (kindest/node:v1.23.0) 🖼 
+    ✓ Preparing nodes 📦  
+    ✓ Writing configuration 📜 
+    ✓ Starting control-plane 🕹️ 
+    ✓ Installing CNI 🔌 
+    ✓ Installing StorageClass 💾 
+   Set kubectl context to "kind-psa-ns-level"
+   You can now use your cluster with:
+    
+   kubectl cluster-info --context kind-psa-ns-level
+    
+   Not sure what to do next? 😅  Check out https://kind.sigs.k8s.io/docs/user/quick-start/
+   ```
+
+1. kubectl context를 새로 생성한 클러스터로 설정한다.
+
+   ```shell
+   kubectl cluster-info --context kind-psa-ns-level
+   ```
+   다음과 비슷하게 출력될 것이다.
+
+   ```
+   Kubernetes control plane is running at https://127.0.0.1:50996
+   CoreDNS is running at https://127.0.0.1:50996/api/v1/namespaces/kube-system/services/kube-dns:dns/proxy
+    
+   To further debug and diagnose cluster problems, use 'kubectl cluster-info dump'.
+   ```
+
+## 네임스페이스 생성하기
+
+`example`이라는 네임스페이스를 생성한다.
+
+```shell
+kubectl create ns example
+```
+
+다음과 비슷하게 출력될 것이다.
+
+```
+namespace/example created
+```
+
+## 파드 시큐리티 스탠다드 적용하기
+
+1. 내장 파드 시큐리티 어드미션이 지원하는 레이블을 사용하여 
+   이 네임스페이스에 파드 시큐리티 스탠다드를 활성화한다. 
+   이 단계에서는 `latest` 버전(기본값)에 따라 `baseline(기준)` 파드 시큐리티 스탠다드에 대해 경고를 설정한다.
+
+   ```shell
+   kubectl label --overwrite ns example \
+      pod-security.kubernetes.io/warn=baseline \
+      pod-security.kubernetes.io/warn-version=latest
+   ```
+
+2. 어떠한 네임스페이스에도 복수 개의 파드 시큐리티 스탠다드를 활성화할 수 있으며, 
+   이는 레이블을 이용하여 가능하다. 
+   다음 명령어는 최신 버전(기본값)에 따라, `baseline(기준)` 파드 시큐리티 스탠다드는 `enforce(강제)`하지만 
+   `restricted(제한된)` 파드 시큐리티 스탠다드에 대해서는 `warn(경고)` 및 `audit(감사)`하도록 설정한다.
+
+   ```shell
+   kubectl label --overwrite ns example \
+     pod-security.kubernetes.io/enforce=baseline \
+     pod-security.kubernetes.io/enforce-version=latest \
+     pod-security.kubernetes.io/warn=restricted \
+     pod-security.kubernetes.io/warn-version=latest \
+     pod-security.kubernetes.io/audit=restricted \
+     pod-security.kubernetes.io/audit-version=latest
+   ```
+
+## 파드 시큐리티 스탠다드 검증하기
+
+1. `example` 네임스페이스에 최소한의 파드를 생성한다.
+
+   ```shell
+   cat <<EOF > /tmp/pss/nginx-pod.yaml
+   apiVersion: v1
+   kind: Pod
+   metadata:
+     name: nginx
+   spec:
+     containers:
+       - image: nginx
+         name: nginx
+         ports:
+           - containerPort: 80
+   EOF
+   ```
+
+1. 클러스터의 `example` 네임스페이스에 해당 파드 스펙을 적용한다.
+
+   ```shell
+   kubectl apply -n example -f /tmp/pss/nginx-pod.yaml
+   ```
+   다음과 비슷하게 출력될 것이다.
+
+   ```
+   Warning: would violate PodSecurity "restricted:latest": allowPrivilegeEscalation != false (container "nginx" must set securityContext.allowPrivilegeEscalation=false), unrestricted capabilities (container "nginx" must set securityContext.capabilities.drop=["ALL"]), runAsNonRoot != true (pod or container "nginx" must set securityContext.runAsNonRoot=true), seccompProfile (pod or container "nginx" must set securityContext.seccompProfile.type to "RuntimeDefault" or "Localhost")
+   pod/nginx created
+   ```
+
+1. 클러스터의 `default` 네임스페이스에 해당 파드 스펙을 적용한다.
+
+   ```shell
+   kubectl apply -n default -f /tmp/pss/nginx-pod.yaml
+   ```
+   다음과 비슷하게 출력될 것이다.
+
+   ```
+   pod/nginx created
+   ```
+
+파드 시큐리티 스탠다드는 `example` 네임스페이스에만 적용되었다. 
+동일한 파드를 `default` 네임스페이스에 생성하더라도 
+경고가 발생하지 않는다.
+
+## 정리하기
+
+`kind delete cluster -name psa-ns-level` 명령을 실행하여 생성했던 클러스터를 삭제한다.
+
+## {{% heading "whatsnext" %}}
+
+- 다음의 모든 단계를 한 번에 수행하려면 
+  [셸 스크립트](/examples/security/kind-with-namespace-level-baseline-pod-security.sh)를 
+  실행한다.
+
+  1. KinD 클러스터를 생성
+  2. 새로운 네임스페이스를 생성
+  3. `baseline` 파드 시큐리티 스탠다드는 `enforce` 모드로 적용하고 
+     `restricted` 파드 시큐리티 스탠다드는 `warn` 및 `audit` 모드로 적용
+  4. 해당 파드 시큐리티 스탠다드가 적용된 상태에서 새로운 파드를 생성
+
+- [파드 시큐리티 어드미션](/docs/concepts/security/pod-security-admission/)
+- [파드 시큐리티 스탠다드](/docs/concepts/security/pod-security-standards/)
+- [파드 시큐리티 스탠다드를 클러스터 수준에 적용하기](/ko/docs/tutorials/security/cluster-level-pss/)
diff --git a/content/ko/docs/tutorials/services/source-ip.md b/content/ko/docs/tutorials/services/source-ip.md
index 7300b06615..56489347d6 100644
--- a/content/ko/docs/tutorials/services/source-ip.md
+++ b/content/ko/docs/tutorials/services/source-ip.md
@@ -119,7 +119,7 @@ clusterip    ClusterIP   10.0.170.92   <none>        80/TCP    51s
 그리고 동일한 클러스터의 파드에서 `클러스터IP`를 치면:
 
 ```shell
-kubectl run busybox -it --image=busybox --restart=Never --rm
+kubectl run busybox -it --image=busybox:1.28 --restart=Never --rm
 ```
 출력은 다음과 같다.
 ```
@@ -163,7 +163,7 @@ command=GET
 
 ## `Type=NodePort` 인 서비스에서 소스 IP
 
-[`Type=NodePort`](/ko/docs/concepts/services-networking/service/#nodeport)인
+[`Type=NodePort`](/ko/docs/concepts/services-networking/service/#type-nodeport)인
 서비스로 보내진 패킷은
 소스 NAT가 기본으로 적용된다. `NodePort` 서비스를 생성하여 이것을 테스트할 수 있다.
 
diff --git a/content/ko/docs/tutorials/stateful-application/basic-stateful-set.md b/content/ko/docs/tutorials/stateful-application/basic-stateful-set.md
index ee7cccb70d..c2e16a86f1 100644
--- a/content/ko/docs/tutorials/stateful-application/basic-stateful-set.md
+++ b/content/ko/docs/tutorials/stateful-application/basic-stateful-set.md
@@ -1,5 +1,11 @@
 ---
-reviewers:
+
+
+
+
+
+
+
 title: 스테이트풀셋 기본
 content_type: tutorial
 weight: 10
@@ -20,7 +26,7 @@ weight: 10
 * [클러스터 DNS(Cluster DNS)](/ko/docs/concepts/services-networking/dns-pod-service/)
 * [헤드리스 서비스(Headless Services)](/ko/docs/concepts/services-networking/service/#헤드리스-headless-서비스)
 * [퍼시스턴트볼륨(PersistentVolumes)](/ko/docs/concepts/storage/persistent-volumes/)
-* [퍼시턴트볼륨 프로비저닝](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/persistent-volume-provisioning/)
+* [퍼시턴트볼륨 프로비저닝](https://github.com/kubernetes/examples/tree/master/staging/persistent-volume-provisioning/)
 * [스테이트풀셋](/ko/docs/concepts/workloads/controllers/statefulset/)
 * [kubectl](/ko/docs/reference/kubectl/kubectl/) 커맨드 라인 도구
 
@@ -121,8 +127,8 @@ web-1     0/1       ContainerCreating   0         0s
 web-1     1/1       Running   0         18s
 ```
 
-참고로 `web-1` 파드는 `web-0` 파드가 _Running_ ([파드의 단계](/ko/docs/concepts/workloads/pods/pod-lifecycle/#파드의-단계-phase) 참고)
-및 _Ready_ ([파드의 조건](/ko/docs/concepts/workloads/pods/pod-lifecycle/#파드의-조건-condition)에서 `type` 참고) 상태가 되기 전에 시작하지 않음을 주의하자.
+참고로 `web-1` 파드는 `web-0` 파드가 _Running_ ([파드의 단계](/ko/docs/concepts/workloads/pods/pod-lifecycle/#파드의-단계) 참고)
+및 _Ready_ ([파드의 컨디션](/ko/docs/concepts/workloads/pods/pod-lifecycle/#파드의-컨디션)에서 `type` 참고) 상태가 되기 전에 시작하지 않음을 주의하자.
 
 ## 스테이트풀셋 안에 파드
 
diff --git a/content/ko/docs/tutorials/stateful-application/cassandra.md b/content/ko/docs/tutorials/stateful-application/cassandra.md
index 3ebb7ec387..e9da1d1829 100644
--- a/content/ko/docs/tutorials/stateful-application/cassandra.md
+++ b/content/ko/docs/tutorials/stateful-application/cassandra.md
@@ -50,7 +50,7 @@ weight: 30
 ### 추가적인 Minikube 설정 요령
 
 {{< caution >}}
-[Minikube](https://minikube.sigs.k8s.io/docs/)는 1024MiB 메모리와 1개 CPU가 기본 설정이다.
+[Minikube](https://minikube.sigs.k8s.io/docs/)는 2048MB 메모리와 2개 CPU가 기본 설정이다.
 이 튜토리얼에서 Minikube를 기본 리소스 설정으로 실행하면 리소스 부족 오류가
 발생한다. 이런 오류를 피하려면 Minikube를 다음 설정으로 실행하자.
 
@@ -93,7 +93,7 @@ cassandra   ClusterIP   None         <none>        9042/TCP   45s
 ```
 
 `cassandra` 서비스가 보이지 않는다면, 이와 다른 응답이라면 서비스 생성에 실패한 것이다. 일반적인 문제에 대한
-[서비스 디버깅하기](/docs/tasks/debug-application-cluster/debug-service/)를
+[서비스 디버깅하기](/docs/tasks/debug/debug-application/debug-service/)를
 읽어보자.
 
 ## 카산드라 링을 생성하는 스테이트풀셋 이용하기
@@ -283,6 +283,6 @@ kubectl apply -f cassandra-statefulset.yaml
 ## {{% heading "whatsnext" %}}
 
 
-* 어떻게 [스테이트풀셋 스케일](/docs/tasks/run-application/scale-stateful-set/)하는지 살펴본다.
+* 어떻게 [스테이트풀셋 스케일](/ko/docs/tasks/run-application/scale-stateful-set/)하는지 살펴본다.
 * [*쿠버네티스시드제공자*](https://github.com/kubernetes/examples/blob/master/cassandra/java/src/main/java/io/k8s/cassandra/KubernetesSeedProvider.java)에 대해 더 살펴본다.
 * 커스텀 [시드 제공자 설정](https://git.k8s.io/examples/cassandra/java/README.md)를 살펴본다.
diff --git a/content/ko/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume.md b/content/ko/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume.md
index 4c5f690d70..b8887d9358 100644
--- a/content/ko/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume.md
+++ b/content/ko/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume.md
@@ -236,7 +236,7 @@ kubectl apply -k ./
 ## {{% heading "whatsnext" %}}
 
 
-* [인트로스펙션과 디버깅](/docs/tasks/debug-application-cluster/debug-application-introspection/)를 알아보자.
+* [인트로스펙션과 디버깅](/ko/docs/tasks/debug/debug-application/debug-running-pod/)을 알아보자.
 * [잡](/ko/docs/concepts/workloads/controllers/job/)를 알아보자.
 * [포트 포워딩](/ko/docs/tasks/access-application-cluster/port-forward-access-application-cluster/)를 알아보자.
-* 어떻게 [컨테이너에서 셸을 사용하는지](/docs/tasks/debug-application-cluster/get-shell-running-container/)를 알아보자.
+* 어떻게 [컨테이너에서 셸을 사용하는지](/ko/docs/tasks/debug/debug-application/get-shell-running-container/)를 알아보자.
diff --git a/content/ko/docs/tutorials/stateful-application/zookeeper.md b/content/ko/docs/tutorials/stateful-application/zookeeper.md
index 3fca0a6749..b9cf603032 100644
--- a/content/ko/docs/tutorials/stateful-application/zookeeper.md
+++ b/content/ko/docs/tutorials/stateful-application/zookeeper.md
@@ -1,4 +1,12 @@
 ---
+
+
+
+
+
+
+
+
 title: 분산 시스템 코디네이터 ZooKeeper 실행하기
 content_type: tutorial
 weight: 40
@@ -19,7 +27,7 @@ weight: 40
 - [클러스터 DNS](/ko/docs/concepts/services-networking/dns-pod-service/)
 - [헤드리스 서비스](/ko/docs/concepts/services-networking/service/#헤드리스-headless-서비스)
 - [퍼시스턴트볼륨](/ko/docs/concepts/storage/persistent-volumes/)
-- [퍼시스턴트볼륨 프로비저닝](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/persistent-volume-provisioning/)
+- [퍼시스턴트볼륨 프로비저닝](https://github.com/kubernetes/examples/tree/master/staging/persistent-volume-provisioning/)
 - [스테이트풀셋](/ko/docs/concepts/workloads/controllers/statefulset/)
 - [PodDisruptionBudget](/ko/docs/concepts/workloads/pods/disruptions/#파드-disruption-budgets)
 - [파드안티어피니티](/ko/docs/concepts/scheduling-eviction/assign-pod-node/#어피니티-affinity-와-안티-어피니티-anti-affinity)
@@ -32,7 +40,6 @@ weight: 40
 튜토리얼을 시작하기 전에 수동으로 3개의 20 GiB 볼륨을
 프로비저닝해야 한다.
 
-
 ## {{% heading "objectives" %}}
 
 이 튜토리얼을 마치면 다음에 대해 알게 된다.
@@ -42,7 +49,6 @@ weight: 40
 - 어떻게 ZooKeeper 서버 디플로이먼트를 앙상블 안에서 퍼뜨리는가.
 - 어떻게 PodDisruptionBudget을 이용하여 계획된 점검 기간 동안 서비스 가용성을 보장하는가.
 
-
 <!-- lessoncontent -->
 
 ### ZooKeeper
@@ -254,13 +260,15 @@ server.3=zk-2.zk-hs.default.svc.cluster.local:2888:3888
 
 ### 앙상블 무결성 테스트
 
-가장 기본적인 테스트는 한 ZooKeeper 서버에 데이터를 쓰고 다른 ZooKeeper 서버에서 데이터를 읽는 것이다.
+가장 기본적인 테스트는 한 ZooKeeper 서버에 데이터를 쓰고 
+다른 ZooKeeper 서버에서 데이터를 읽는 것이다.
 
 아래 명령어는 앙상블 내에 `zk-0` 파드에서 `/hello` 경로로 `world`를 쓰는 스크립트인 `zkCli.sh`를 실행한다.
 
 ```shell
-kubectl exec zk-0 zkCli.sh create /hello world
+kubectl exec zk-0 -- zkCli.sh create /hello world
 ```
+
 ```
 WATCHER::
 
@@ -271,7 +279,7 @@ Created /hello
 `zk-1` 파드에서 데이터를 읽기 위해 다음 명령어를 이용하자.
 
 ```shell
-kubectl exec zk-1 zkCli.sh get /hello
+kubectl exec zk-1 -- zkCli.sh get /hello
 ```
 
 `zk-0`에서 생성한 그 데이터는 앙상블 내에 모든 서버에서
@@ -401,7 +409,6 @@ numChildren = 0
 
 `zk` 스테이트풀셋의 `spec`에 `volumeClaimTemplates` 필드는 각 파드에 프로비전될 퍼시스턴트볼륨을 지정한다.
 
-
 ```yaml
 volumeClaimTemplates:
   - metadata:
@@ -435,8 +442,7 @@ datadir-zk-2   Bound     pvc-bee0817e-bcb1-11e6-994f-42010a800002   20Gi       R
 
 `스테이트풀셋`의 컨테이너 `template`의 `volumeMounts` 부분이 ZooKeeper 서버의 데이터 디렉터리에 퍼시스턴트볼륨 마운트하는 내용이다.
 
-
-```shell
+```yaml
 volumeMounts:
 - name: datadir
   mountPath: /var/lib/zookeeper
@@ -583,6 +589,7 @@ kubectl exec zk-0 -- ps -elf
 
 `securityContext` 오브젝트의 `runAsUser` 필드 값이 1000 이므로
 루트 사용자로 실행하는 대신 ZooKeeper 프로세스는 ZooKeeper 사용자로 실행된다.
+
 ```
 F S UID        PID  PPID  C PRI  NI ADDR SZ WCHAN  STIME TTY          TIME CMD
 4 S zookeep+     1     0  0  80   0 -  1127 -      20:46 ?        00:00:00 sh -c zkGenConfig.sh && zkServer.sh start-foreground
@@ -654,6 +661,8 @@ statefulset rolling update complete 3 pods at revision zk-5db4499664...
 kubectl rollout history sts/zk
 ```
 
+출력은 다음과 비슷할 것이다.
+
 ```
 statefulsets "zk"
 REVISION
@@ -667,6 +676,8 @@ REVISION
 kubectl rollout undo sts/zk
 ```
 
+출력은 다음과 비슷할 것이다.
+
 ```
 statefulset.apps/zk rolled back
 ```
@@ -687,6 +698,7 @@ kubectl exec zk-0 -- ps -ef
 
 컨테이너의 엔트리 포인트로 PID 1 인 명령이 사용되었으며
 ZooKeeper 프로세스는 엔트리 포인트의 자식 프로세스로 PID 27 이다.
+
 ```
 UID        PID  PPID  C STIME TTY          TIME CMD
 zookeep+     1     0  0 15:03 ?        00:00:00 sh -c zkGenConfig.sh && zkServer.sh start-foreground
@@ -734,14 +746,14 @@ zk-0      1/1       Running   1         29m
 `zk` `스테이트풀셋`에 파드 `template`에 활성도 검사를 명시한다.
 
 ```yaml
- livenessProbe:
-          exec:
-            command:
-            - sh
-            - -c
-            - "zookeeper-ready 2181"
-          initialDelaySeconds: 15
-          timeoutSeconds: 5
+  livenessProbe:
+    exec:
+      command:
+      - sh
+      - -c
+      - "zookeeper-ready 2181"
+    initialDelaySeconds: 15
+    timeoutSeconds: 5
 ```
 
 검사는 ZooKeeper의 `ruok` 4 글자 단어를 이용해서 서버의 건강을 테스트하는
@@ -765,7 +777,7 @@ kubectl get pod -w -l app=zk
 다른 창에서 `zk-0` 파드의 파일시스템에서 `zookeeper-ready` 스크립트를 삭제하기 위해 다음 명령어를 이용하자.
 
 ```shell
-kubectl exec zk-0 -- rm /usr/bin/zookeeper-ready
+kubectl exec zk-0 -- rm /opt/zookeeper/bin/zookeeper-ready
 ```
 
 ZooKeeper의 활성도 검사에 실패하면,
@@ -852,16 +864,16 @@ kubernetes-node-2g2d
 이는 `zk` `스테이트풀셋`의 파드에 `파드안티어피니티(PodAntiAffinity)`를 지정했기 때문이다.
 
 ```yaml
-      affinity:
-        podAntiAffinity:
-          requiredDuringSchedulingIgnoredDuringExecution:
-            - labelSelector:
-                matchExpressions:
-                  - key: "app"
-                    operator: In
-                    values:
-                    - zk
-              topologyKey: "kubernetes.io/hostname"
+affinity:
+  podAntiAffinity:
+    requiredDuringSchedulingIgnoredDuringExecution:
+      - labelSelector:
+          matchExpressions:
+            - key: "app"
+              operator: In
+              values:
+                - zk
+        topologyKey: "kubernetes.io/hostname"
 ```
 
 `requiredDuringSchedulingIgnoredDuringExecution` 필드는
@@ -886,8 +898,7 @@ kubernetes-node-2g2d
 kubectl get nodes
 ```
 
-[`kubectl cordon`](/docs/reference/generated/kubectl/kubectl-commands/#cordon)을 이용하여
-클러스터 내에 4개 노드를 제외하고 다른 모든 노드를 통제해보자.
+이 튜토리얼에서는 클러스터가 최소 4개의 노드로 구성되었다고 가정한다. 클러스터의 노드가 4개보다 많다면, [`kubectl cordon`](/docs/reference/generated/kubectl/kubectl-commands/#cordon) 명령을 이용하여 4개 노드를 제외하고 다른 모든 노드를 통제(cordon)한다. 이렇게 4개 노드만 사용하도록 제한하여, 다음의 유지보수 시뮬레이션 예시에서 주키퍼 파드를 스케줄링할 때 어피니티와 PodDisruptionBudget 제약이 발생하도록 할 수 있다.
 
 ```shell
 kubectl cordon <노드-이름>
@@ -919,6 +930,8 @@ kubectl get pods -w -l app=zk
 for i in 0 1 2; do kubectl get pod zk-$i --template {{.spec.nodeName}}; echo ""; done
 ```
 
+출력은 다음과 비슷할 것이다.
+
 ```
 kubernetes-node-pb41
 kubernetes-node-ixsl
@@ -929,9 +942,11 @@ kubernetes-node-i4c4
 [`kubectl drain`](/docs/reference/generated/kubectl/kubectl-commands/#drain)를 이용하자.
 
 ```shell
-kubectl drain $(kubectl get pod zk-0 --template {{.spec.nodeName}}) --ignore-daemonsets --force --delete-local-data
+kubectl drain $(kubectl get pod zk-0 --template {{.spec.nodeName}}) --ignore-daemonsets --force --delete-emptydir-data
 ```
 
+출력은 다음과 비슷할 것이다.
+
 ```
 node "kubernetes-node-group-pb41" cordoned
 
@@ -964,15 +979,19 @@ zk-0      1/1       Running   0         1m
 `zk-1` 이 스케줄된 노드를 비워보자.
 
 ```shell
-kubectl drain $(kubectl get pod zk-1 --template {{.spec.nodeName}}) --ignore-daemonsets --force --delete-local-data "kubernetes-node-ixsl" cordoned
+kubectl drain $(kubectl get pod zk-1 --template {{.spec.nodeName}}) --ignore-daemonsets --force --delete-emptydir-data
 ```
 
+출력은 다음과 비슷할 것이다.
+
 ```
+"kubernetes-node-ixsl" cordoned
 WARNING: Deleting pods not managed by ReplicationController, ReplicaSet, Job, or DaemonSet: fluentd-cloud-logging-kubernetes-node-ixsl, kube-proxy-kubernetes-node-ixsl; Ignoring DaemonSet-managed pods: node-problem-detector-v0.1-voc74
 pod "zk-1" deleted
 node "kubernetes-node-ixsl" drained
 ```
 
+
 `zk-1` 파드는 스케줄되지 않는데 이는 `zk` `StatefulSet`이 오직 2개 노드가 스케줄되도록 파드를 위치시키는 것을 금하는
 `PodAntiAffinity` 규칙을 포함하였기 때문이고 그 파드는 Pending 상태로 남을 것이다.
 
@@ -980,6 +999,8 @@ node "kubernetes-node-ixsl" drained
 kubectl get pods -w -l app=zk
 ```
 
+출력은 다음과 비슷할 것이다.
+
 ```
 NAME      READY     STATUS    RESTARTS   AGE
 zk-0      1/1       Running   2          1h
@@ -1007,9 +1028,11 @@ zk-1      0/1       Pending   0         0s
 `zk-2`가 스케줄된 노드를 비워보자.
 
 ```shell
-kubectl drain $(kubectl get pod zk-2 --template {{.spec.nodeName}}) --ignore-daemonsets --force --delete-local-data
+kubectl drain $(kubectl get pod zk-2 --template {{.spec.nodeName}}) --ignore-daemonsets --force --delete-emptydir-data
 ```
 
+출력은 다음과 비슷할 것이다.
+
 ```
 node "kubernetes-node-i4c4" cordoned
 
@@ -1025,7 +1048,6 @@ kubectl 을 종료하기 위해 `CTRL-C`를 이용하자.
 
 `zk-0`에서 온전성 테스트 때에 입력한 값을 가져오는 `zkCli.sh`를 이용하자.
 
-
 ```shell
 kubectl exec zk-0 zkCli.sh get /hello
 ```
@@ -1054,6 +1076,8 @@ numChildren = 0
 kubectl uncordon kubernetes-node-pb41
 ```
 
+출력은 다음과 비슷할 것이다.
+
 ```
 node "kubernetes-node-pb41" uncordoned
 ```
@@ -1064,6 +1088,8 @@ node "kubernetes-node-pb41" uncordoned
 kubectl get pods -w -l app=zk
 ```
 
+출력은 다음과 비슷할 것이다.
+
 ```
 NAME      READY     STATUS    RESTARTS   AGE
 zk-0      1/1       Running   2          1h
@@ -1094,10 +1120,10 @@ zk-1      1/1       Running   0         13m
 `zk-2`가 스케줄된 노드를 비워보자.
 
 ```shell
-kubectl drain $(kubectl get pod zk-2 --template {{.spec.nodeName}}) --ignore-daemonsets --force --delete-local-data
+kubectl drain $(kubectl get pod zk-2 --template {{.spec.nodeName}}) --ignore-daemonsets --force --delete-emptydir-data
 ```
 
-출력은
+출력은 다음과 비슷할 것이다.
 
 ```
 node "kubernetes-node-i4c4" already cordoned
@@ -1115,6 +1141,8 @@ node "kubernetes-node-i4c4" drained
 kubectl uncordon kubernetes-node-ixsl
 ```
 
+출력은 다음과 비슷할 것이다.
+
 ```
 node "kubernetes-node-ixsl" uncordoned
 ```
@@ -1124,10 +1152,8 @@ drain으로 노드를 통제하고 유지보수를 위해 노드를 오프라인
 서비스는 혼란 예산을 표기한 서비스는 그 예산이 존중은 존중될 것이다.
 파드가 즉각적으로 재스케줄 할 수 있도록 항상 중요 서비스를 위한 추가 용량을 할당해야 한다.
 
-
 ## {{% heading "cleanup" %}}
 
-
 - `kubectl uncordon`은 클러스터 내에 모든 노드를 통제 해제한다.
 - 반드시 이 튜토리얼에서 사용한 퍼시스턴트 볼륨을 위한 퍼시스턴트 스토리지 미디어를 삭제하자.
   귀하의 환경과 스토리지 구성과 프로비저닝 방법에서 필요한 절차를 따라서
diff --git a/content/ko/docs/tutorials/stateless-application/guestbook.md b/content/ko/docs/tutorials/stateless-application/guestbook.md
index 1a5e4a6079..9f6481396e 100644
--- a/content/ko/docs/tutorials/stateless-application/guestbook.md
+++ b/content/ko/docs/tutorials/stateless-application/guestbook.md
@@ -19,7 +19,7 @@ _(운영 수준이 아닌)_ 멀티 티어 웹 애플리케이션을 빌드하고
 이 예제는 다음과 같은 구성으로
 이루어져 있다.
 
-* 방명록 항목을 저장하기 위한 단일 인스턴스 [Redis](https://www.redis.com/)
+* 방명록 항목을 저장하기 위한 단일 인스턴스 [Redis](https://www.redis.io/)
 * 여러 개의 웹 프론트엔드 인스턴스
 
 ## {{% heading "objectives" %}}
diff --git a/content/ko/examples/admin/konnectivity/egress-selector-configuration.yaml b/content/ko/examples/admin/konnectivity/egress-selector-configuration.yaml
new file mode 100644
index 0000000000..fee3016e8c
--- /dev/null
+++ b/content/ko/examples/admin/konnectivity/egress-selector-configuration.yaml
@@ -0,0 +1,20 @@
+apiVersion: apiserver.k8s.io/v1beta1
+kind: EgressSelectorConfiguration
+egressSelections:
+# 클러스터에 대한 송신(egress) 트래픽을 제어하기 위해 
+# "cluster"를 name으로 사용한다. 기타 지원되는 값은 "etcd" 및 "controlplane"이다.
+- name: cluster
+  connection:
+    # API 서버와 Konnectivity 서버 간의 프로토콜을
+    # 제어한다. 지원되는 값은 "GRPC" 및 "HTTPConnect"이다. 두 모드 간에
+    # 최종 사용자가 볼 수 있는 차이점은 없다. 동일한 모드에서 작동하도록
+    # Konnectivity 서버를 설정해야 한다.
+    proxyProtocol: GRPC
+    transport:
+      # API 서버가 Konnectivity 서버와 통신하는 데 사용하는 
+      # transport를 제어한다. Konnectivity 서버가 API 서버와 동일한 시스템에 
+      # 있는 경우 UDS를 사용하는 것이 좋다. 동일한 UDS 소켓에서 
+      # 수신 대기하도록 Konnectivity 서버를 구성해야 한다. 
+      # 지원되는 다른 전송은 "tcp"이다. TCP 전송을 보호하려면 TLS 구성을 설정해야 한다.
+      uds:
+        udsName: /etc/kubernetes/konnectivity-server/konnectivity-server.socket
diff --git a/content/ko/examples/admin/konnectivity/konnectivity-agent.yaml b/content/ko/examples/admin/konnectivity/konnectivity-agent.yaml
new file mode 100644
index 0000000000..19430460f5
--- /dev/null
+++ b/content/ko/examples/admin/konnectivity/konnectivity-agent.yaml
@@ -0,0 +1,55 @@
+apiVersion: apps/v1
+# 에이전트를 Deployment(디플로이먼트)로 배포할 수도 있다. 각 노드에 에이전트가
+# 있을 필요는 없다.
+kind: DaemonSet
+metadata:
+  labels:
+    addonmanager.kubernetes.io/mode: Reconcile
+    k8s-app: konnectivity-agent
+  namespace: kube-system
+  name: konnectivity-agent
+spec:
+  selector:
+    matchLabels:
+      k8s-app: konnectivity-agent
+  template:
+    metadata:
+      labels:
+        k8s-app: konnectivity-agent
+    spec:
+      priorityClassName: system-cluster-critical
+      tolerations:
+        - key: "CriticalAddonsOnly"
+          operator: "Exists"
+      containers:
+        - image: us.gcr.io/k8s-artifacts-prod/kas-network-proxy/proxy-agent:v0.0.16
+          name: konnectivity-agent
+          command: ["/proxy-agent"]
+          args: [
+                  "--logtostderr=true",
+                  "--ca-cert=/var/run/secrets/kubernetes.io/serviceaccount/ca.crt",
+                  # konnectivity 서버는 hostNetwork=true로 실행되기 때문에,
+                  # 이것은 마스터 머신의 IP 주소이다.
+                  "--proxy-server-host=35.225.206.7",
+                  "--proxy-server-port=8132",
+                  "--admin-server-port=8133",
+                  "--health-server-port=8134",
+                  "--service-account-token-path=/var/run/secrets/tokens/konnectivity-agent-token"
+                  ]
+          volumeMounts:
+            - mountPath: /var/run/secrets/tokens
+              name: konnectivity-agent-token
+          livenessProbe:
+            httpGet:
+              port: 8134
+              path: /healthz
+            initialDelaySeconds: 15
+            timeoutSeconds: 15
+      serviceAccountName: konnectivity-agent
+      volumes:
+        - name: konnectivity-agent-token
+          projected:
+            sources:
+              - serviceAccountToken:
+                  path: konnectivity-agent-token
+                  audience: system:konnectivity-server
diff --git a/content/zh/examples/admin/konnectivity/konnectivity-rbac.yaml b/content/ko/examples/admin/konnectivity/konnectivity-rbac.yaml
similarity index 100%
rename from content/zh/examples/admin/konnectivity/konnectivity-rbac.yaml
rename to content/ko/examples/admin/konnectivity/konnectivity-rbac.yaml
diff --git a/content/zh/examples/admin/konnectivity/konnectivity-server.yaml b/content/ko/examples/admin/konnectivity/konnectivity-server.yaml
similarity index 83%
rename from content/zh/examples/admin/konnectivity/konnectivity-server.yaml
rename to content/ko/examples/admin/konnectivity/konnectivity-server.yaml
index f1f378431a..8d8ef56195 100644
--- a/content/zh/examples/admin/konnectivity/konnectivity-server.yaml
+++ b/content/ko/examples/admin/konnectivity/konnectivity-server.yaml
@@ -12,14 +12,14 @@ spec:
     command: ["/proxy-server"]
     args: [
             "--logtostderr=true",
-            # This needs to be consistent with the value set in egressSelectorConfiguration.
+            # 이것은 egressSelectorConfiguration에 설정된 값과 일치해야 한다.
             "--uds-name=/etc/kubernetes/konnectivity-server/konnectivity-server.socket",
-            # The following two lines assume the Konnectivity server is
-            # deployed on the same machine as the apiserver, and the certs and
-            # key of the API Server are at the specified location.
+            # 다음 두 줄은 Konnectivity 서버가 apiserver와 
+            # 동일한 시스템에 배포되고 API 서버의 인증서와 
+            # 키가 지정된 위치에 있다고 가정한다.
             "--cluster-cert=/etc/kubernetes/pki/apiserver.crt",
             "--cluster-key=/etc/kubernetes/pki/apiserver.key",
-            # This needs to be consistent with the value set in egressSelectorConfiguration.
+            # 이것은 egressSelectorConfiguration에 설정된 값과 일치해야 한다.
             "--mode=grpc",
             "--server-port=0",
             "--agent-port=8132",
diff --git a/content/ko/examples/admin/logging/two-files-counter-pod-agent-sidecar.yaml b/content/ko/examples/admin/logging/two-files-counter-pod-agent-sidecar.yaml
index b37b616e6f..ddfb8104cb 100644
--- a/content/ko/examples/admin/logging/two-files-counter-pod-agent-sidecar.yaml
+++ b/content/ko/examples/admin/logging/two-files-counter-pod-agent-sidecar.yaml
@@ -5,7 +5,7 @@ metadata:
 spec:
   containers:
   - name: count
-    image: busybox
+    image: busybox:1.28
     args:
     - /bin/sh
     - -c
diff --git a/content/ko/examples/admin/logging/two-files-counter-pod-streaming-sidecar.yaml b/content/ko/examples/admin/logging/two-files-counter-pod-streaming-sidecar.yaml
index 87bd198cfd..ac19efe4a2 100644
--- a/content/ko/examples/admin/logging/two-files-counter-pod-streaming-sidecar.yaml
+++ b/content/ko/examples/admin/logging/two-files-counter-pod-streaming-sidecar.yaml
@@ -5,7 +5,7 @@ metadata:
 spec:
   containers:
   - name: count
-    image: busybox
+    image: busybox:1.28
     args:
     - /bin/sh
     - -c
@@ -22,14 +22,14 @@ spec:
     - name: varlog
       mountPath: /var/log
   - name: count-log-1
-    image: busybox
-    args: [/bin/sh, -c, 'tail -n+1 -f /var/log/1.log']
+    image: busybox:1.28
+    args: [/bin/sh, -c, 'tail -n+1 -F /var/log/1.log']
     volumeMounts:
     - name: varlog
       mountPath: /var/log
   - name: count-log-2
-    image: busybox
-    args: [/bin/sh, -c, 'tail -n+1 -f /var/log/2.log']
+    image: busybox:1.28
+    args: [/bin/sh, -c, 'tail -n+1 -F /var/log/2.log']
     volumeMounts:
     - name: varlog
       mountPath: /var/log
diff --git a/content/ko/examples/admin/logging/two-files-counter-pod.yaml b/content/ko/examples/admin/logging/two-files-counter-pod.yaml
index 6ebeb717a1..31bbed3cf8 100644
--- a/content/ko/examples/admin/logging/two-files-counter-pod.yaml
+++ b/content/ko/examples/admin/logging/two-files-counter-pod.yaml
@@ -5,7 +5,7 @@ metadata:
 spec:
   containers:
   - name: count
-    image: busybox
+    image: busybox:1.28
     args:
     - /bin/sh
     - -c
diff --git a/content/ko/examples/admin/resource/limit-range-pod-1.yaml b/content/ko/examples/admin/resource/limit-range-pod-1.yaml
index 0457792af9..b9bd20d06a 100644
--- a/content/ko/examples/admin/resource/limit-range-pod-1.yaml
+++ b/content/ko/examples/admin/resource/limit-range-pod-1.yaml
@@ -5,7 +5,7 @@ metadata:
 spec:
   containers:
   - name: busybox-cnt01
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt01; sleep 10;done"]
     resources:
@@ -16,7 +16,7 @@ spec:
         memory: "200Mi"
         cpu: "500m"
   - name: busybox-cnt02
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt02; sleep 10;done"]
     resources:
@@ -24,7 +24,7 @@ spec:
         memory: "100Mi"
         cpu: "100m"
   - name: busybox-cnt03
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt03; sleep 10;done"]
     resources:
@@ -32,6 +32,6 @@ spec:
         memory: "200Mi"
         cpu: "500m"
   - name: busybox-cnt04
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt04; sleep 10;done"]
diff --git a/content/ko/examples/admin/resource/limit-range-pod-2.yaml b/content/ko/examples/admin/resource/limit-range-pod-2.yaml
index efac440269..40da19c1ae 100644
--- a/content/ko/examples/admin/resource/limit-range-pod-2.yaml
+++ b/content/ko/examples/admin/resource/limit-range-pod-2.yaml
@@ -5,7 +5,7 @@ metadata:
 spec:
   containers:
   - name: busybox-cnt01
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt01; sleep 10;done"]
     resources:
@@ -16,7 +16,7 @@ spec:
         memory: "200Mi"
         cpu: "500m"
   - name: busybox-cnt02
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt02; sleep 10;done"]
     resources:
@@ -24,7 +24,7 @@ spec:
         memory: "100Mi"
         cpu: "100m"
   - name: busybox-cnt03
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt03; sleep 10;done"]
     resources:
@@ -32,6 +32,6 @@ spec:
         memory: "200Mi"
         cpu: "500m"
   - name: busybox-cnt04
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt04; sleep 10;done"]
diff --git a/content/ko/examples/admin/resource/limit-range-pod-3.yaml b/content/ko/examples/admin/resource/limit-range-pod-3.yaml
index 8afdb6379c..503200a966 100644
--- a/content/ko/examples/admin/resource/limit-range-pod-3.yaml
+++ b/content/ko/examples/admin/resource/limit-range-pod-3.yaml
@@ -5,7 +5,7 @@ metadata:
 spec:
   containers:
   - name: busybox-cnt01
-    image: busybox
+    image: busybox:1.28
     resources:
       limits:
         memory: "300Mi"
diff --git a/content/zh/examples/application/deployment-scale.yaml b/content/ko/examples/application/deployment-scale.yaml
similarity index 100%
rename from content/zh/examples/application/deployment-scale.yaml
rename to content/ko/examples/application/deployment-scale.yaml
diff --git a/content/zh/examples/application/deployment-update.yaml b/content/ko/examples/application/deployment-update.yaml
similarity index 100%
rename from content/zh/examples/application/deployment-update.yaml
rename to content/ko/examples/application/deployment-update.yaml
diff --git a/content/ko/examples/application/job/cronjob.yaml b/content/ko/examples/application/job/cronjob.yaml
index da905a9048..78d0e2d314 100644
--- a/content/ko/examples/application/job/cronjob.yaml
+++ b/content/ko/examples/application/job/cronjob.yaml
@@ -3,14 +3,14 @@ kind: CronJob
 metadata:
   name: hello
 spec:
-  schedule: "*/1 * * * *"
+  schedule: "* * * * *"
   jobTemplate:
     spec:
       template:
         spec:
           containers:
           - name: hello
-            image: busybox
+            image: busybox:1.28
             imagePullPolicy: IfNotPresent
             command:
             - /bin/sh
diff --git a/content/ko/examples/application/job/job-tmpl.yaml b/content/ko/examples/application/job/job-tmpl.yaml
index 790025b38b..d7dbbafd62 100644
--- a/content/ko/examples/application/job/job-tmpl.yaml
+++ b/content/ko/examples/application/job/job-tmpl.yaml
@@ -13,6 +13,6 @@ spec:
     spec:
       containers:
       - name: c
-        image: busybox
+        image: busybox:1.28
         command: ["sh", "-c", "echo Processing item $ITEM && sleep 5"]
       restartPolicy: Never
diff --git a/content/ko/examples/application/mysql/mysql-configmap.yaml b/content/ko/examples/application/mysql/mysql-configmap.yaml
index 6dd50665a2..538f9f3324 100644
--- a/content/ko/examples/application/mysql/mysql-configmap.yaml
+++ b/content/ko/examples/application/mysql/mysql-configmap.yaml
@@ -9,8 +9,10 @@ data:
     # Primary에만 이 구성을 적용한다.
     [mysqld]
     log-bin
+    datadir=/var/lib/mysql/mysql
   replica.cnf: |
     # 레플리카에만 이 구성을 적용한다.
     [mysqld]
     super-read-only
+    datadir=/var/lib/mysql/mysql
 
diff --git a/content/ko/examples/application/mysql/mysql-services.yaml b/content/ko/examples/application/mysql/mysql-services.yaml
index 17279dd7f9..c5cfa4936b 100644
--- a/content/ko/examples/application/mysql/mysql-services.yaml
+++ b/content/ko/examples/application/mysql/mysql-services.yaml
@@ -27,4 +27,3 @@ spec:
     port: 3306
   selector:
     app: mysql
-
diff --git a/content/zh/examples/application/nginx-with-request.yaml b/content/ko/examples/application/nginx-with-request.yaml
similarity index 100%
rename from content/zh/examples/application/nginx-with-request.yaml
rename to content/ko/examples/application/nginx-with-request.yaml
diff --git a/content/zh/examples/application/shell-demo.yaml b/content/ko/examples/application/shell-demo.yaml
similarity index 100%
rename from content/zh/examples/application/shell-demo.yaml
rename to content/ko/examples/application/shell-demo.yaml
diff --git a/content/ko/examples/controllers/daemonset.yaml b/content/ko/examples/controllers/daemonset.yaml
index 685a137244..c17ebfe5c5 100644
--- a/content/ko/examples/controllers/daemonset.yaml
+++ b/content/ko/examples/controllers/daemonset.yaml
@@ -15,8 +15,11 @@ spec:
         name: fluentd-elasticsearch
     spec:
       tolerations:
-      # this toleration is to have the daemonset runnable on master nodes
-      # remove it if your masters can't run pods
+      # 이 톨러레이션(toleration)은 데몬셋이 컨트롤 플레인 노드에서 실행될 수 있도록 만든다.
+      # 컨트롤 플레인 노드가 이 파드를 실행해서는 안 되는 경우, 이 톨러레이션을 제거한다.
+      - key: node-role.kubernetes.io/control-plane
+        operator: Exists
+        effect: NoSchedule
       - key: node-role.kubernetes.io/master
         operator: Exists
         effect: NoSchedule
diff --git a/content/ko/examples/controllers/fluentd-daemonset-update.yaml b/content/ko/examples/controllers/fluentd-daemonset-update.yaml
index 48adc99ce9..fc8c7f984e 100644
--- a/content/ko/examples/controllers/fluentd-daemonset-update.yaml
+++ b/content/ko/examples/controllers/fluentd-daemonset-update.yaml
@@ -19,9 +19,13 @@ spec:
         name: fluentd-elasticsearch
     spec:
       tolerations:
-      # 이 톨러레이션(toleration)은 마스터 노드에서 실행 가능한 데몬셋이
-      # 마스터에서 파드를 실행할 수 없는 경우 이를 제거하는 것이다
+      # 이 톨러레이션(toleration)은 데몬셋이 컨트롤 플레인 노드에서 실행될 수 있도록 만든다.
+      # 컨트롤 플레인 노드가 이 파드를 실행해서는 안 되는 경우, 이 톨러레이션을 제거한다.
+      - key: node-role.kubernetes.io/control-plane
+        operator: Exists
+        effect: NoSchedule
       - key: node-role.kubernetes.io/master
+        operator: Exists
         effect: NoSchedule
       containers:
       - name: fluentd-elasticsearch
diff --git a/content/ko/examples/controllers/fluentd-daemonset.yaml b/content/ko/examples/controllers/fluentd-daemonset.yaml
index 2ff2e66014..02b0eb2b1d 100644
--- a/content/ko/examples/controllers/fluentd-daemonset.yaml
+++ b/content/ko/examples/controllers/fluentd-daemonset.yaml
@@ -19,9 +19,13 @@ spec:
         name: fluentd-elasticsearch
     spec:
       tolerations:
-      # 이 톨러레이션(toleration)은 마스터 노드에서 실행 가능한 데몬셋이
-      # 마스터에서 파드를 실행할 수 없는 경우 이를 제거하는 것이다
+      # 이 톨러레이션(toleration)은 데몬셋이 컨트롤 플레인 노드에서 실행될 수 있도록 만든다.
+      # 컨트롤 플레인 노드가 이 파드를 실행해서는 안 되는 경우, 이 톨러레이션을 제거한다.
+      - key: node-role.kubernetes.io/control-plane
+        operator: Exists
+        effect: NoSchedule
       - key: node-role.kubernetes.io/master
+        operator: Exists
         effect: NoSchedule
       containers:
       - name: fluentd-elasticsearch
diff --git a/content/ko/examples/debug/counter-pod.yaml b/content/ko/examples/debug/counter-pod.yaml
index f997886386..a91b2f8915 100644
--- a/content/ko/examples/debug/counter-pod.yaml
+++ b/content/ko/examples/debug/counter-pod.yaml
@@ -5,6 +5,6 @@ metadata:
 spec:
   containers:
   - name: count
-    image: busybox
+    image: busybox:1.28
     args: [/bin/sh, -c,
             'i=0; while true; do echo "$i: $(date)"; i=$((i+1)); sleep 1; done']
diff --git a/content/ko/examples/debug/node-problem-detector-configmap.yaml b/content/ko/examples/debug/node-problem-detector-configmap.yaml
new file mode 100644
index 0000000000..168714f753
--- /dev/null
+++ b/content/ko/examples/debug/node-problem-detector-configmap.yaml
@@ -0,0 +1,49 @@
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  name: node-problem-detector-v0.1
+  namespace: kube-system
+  labels:
+    k8s-app: node-problem-detector
+    version: v0.1
+    kubernetes.io/cluster-service: "true"
+spec:
+  selector:
+    matchLabels:
+      k8s-app: node-problem-detector  
+      version: v0.1
+      kubernetes.io/cluster-service: "true"
+  template:
+    metadata:
+      labels:
+        k8s-app: node-problem-detector
+        version: v0.1
+        kubernetes.io/cluster-service: "true"
+    spec:
+      hostNetwork: true
+      containers:
+      - name: node-problem-detector
+        image: k8s.gcr.io/node-problem-detector:v0.1
+        securityContext:
+          privileged: true
+        resources:
+          limits:
+            cpu: "200m"
+            memory: "100Mi"
+          requests:
+            cpu: "20m"
+            memory: "20Mi"
+        volumeMounts:
+        - name: log
+          mountPath: /log
+          readOnly: true
+        - name: config # config/ 디렉토리를 컨피그맵 볼륨(ConfigMap volume)으로 덮어쓴다
+          mountPath: /config
+          readOnly: true
+      volumes:
+      - name: log
+        hostPath:
+          path: /var/log/
+      - name: config # 컨피그맵 볼륨(ConfigMap volume)을 정의한다
+        configMap:
+          name: node-problem-detector-config
\ No newline at end of file
diff --git a/content/zh/examples/debug/node-problem-detector.yaml b/content/ko/examples/debug/node-problem-detector.yaml
similarity index 100%
rename from content/zh/examples/debug/node-problem-detector.yaml
rename to content/ko/examples/debug/node-problem-detector.yaml
diff --git a/content/ko/examples/pods/init-containers.yaml b/content/ko/examples/pods/init-containers.yaml
index e83beec9af..b99775c24a 100644
--- a/content/ko/examples/pods/init-containers.yaml
+++ b/content/ko/examples/pods/init-containers.yaml
@@ -14,7 +14,7 @@ spec:
   # 이 컨테이너들은 파드 초기화 중에 실행된다.
   initContainers:
   - name: install
-    image: busybox
+    image: busybox:1.28
     command:
     - wget
     - "-O"
diff --git a/content/zh/examples/pods/inject/dapi-envars-container.yaml b/content/ko/examples/pods/inject/dapi-envars-container.yaml
similarity index 100%
rename from content/zh/examples/pods/inject/dapi-envars-container.yaml
rename to content/ko/examples/pods/inject/dapi-envars-container.yaml
diff --git a/content/zh/examples/pods/inject/dapi-envars-pod.yaml b/content/ko/examples/pods/inject/dapi-envars-pod.yaml
similarity index 100%
rename from content/zh/examples/pods/inject/dapi-envars-pod.yaml
rename to content/ko/examples/pods/inject/dapi-envars-pod.yaml
diff --git a/content/zh/examples/pods/inject/dapi-volume-resources.yaml b/content/ko/examples/pods/inject/dapi-volume-resources.yaml
similarity index 100%
rename from content/zh/examples/pods/inject/dapi-volume-resources.yaml
rename to content/ko/examples/pods/inject/dapi-volume-resources.yaml
diff --git a/content/zh/examples/pods/inject/dapi-volume.yaml b/content/ko/examples/pods/inject/dapi-volume.yaml
similarity index 100%
rename from content/zh/examples/pods/inject/dapi-volume.yaml
rename to content/ko/examples/pods/inject/dapi-volume.yaml
diff --git a/content/zh/examples/pods/inject/dependent-envars.yaml b/content/ko/examples/pods/inject/dependent-envars.yaml
similarity index 96%
rename from content/zh/examples/pods/inject/dependent-envars.yaml
rename to content/ko/examples/pods/inject/dependent-envars.yaml
index 2509c6f47b..67d07098ba 100644
--- a/content/zh/examples/pods/inject/dependent-envars.yaml
+++ b/content/ko/examples/pods/inject/dependent-envars.yaml
@@ -10,7 +10,7 @@ spec:
       command:
         - sh
         - -c
-      image: busybox
+      image: busybox:1.28
       env:
         - name: SERVICE_PORT
           value: "80"
diff --git a/content/ko/examples/pods/inject/pod-multiple-secret-env-variable.yaml b/content/ko/examples/pods/inject/pod-multiple-secret-env-variable.yaml
new file mode 100644
index 0000000000..f285e41932
--- /dev/null
+++ b/content/ko/examples/pods/inject/pod-multiple-secret-env-variable.yaml
@@ -0,0 +1,19 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: envvars-multiple-secrets
+spec:
+  containers:
+  - name: envars-test-container
+    image: nginx
+    env:
+    - name: BACKEND_USERNAME
+      valueFrom:
+        secretKeyRef:
+          name: backend-user
+          key: backend-username
+    - name: DB_USERNAME
+      valueFrom:
+        secretKeyRef:
+          name: db-user
+          key: db-username
diff --git a/content/ko/examples/pods/inject/pod-secret-envFrom.yaml b/content/ko/examples/pods/inject/pod-secret-envFrom.yaml
new file mode 100644
index 0000000000..eb1d3213ef
--- /dev/null
+++ b/content/ko/examples/pods/inject/pod-secret-envFrom.yaml
@@ -0,0 +1,11 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: envfrom-secret
+spec:
+  containers:
+  - name: envars-test-container
+    image: nginx
+    envFrom:
+    - secretRef:
+        name: test-secret
diff --git a/content/ko/examples/pods/inject/pod-single-secret-env-variable.yaml b/content/ko/examples/pods/inject/pod-single-secret-env-variable.yaml
new file mode 100644
index 0000000000..af4cf8732f
--- /dev/null
+++ b/content/ko/examples/pods/inject/pod-single-secret-env-variable.yaml
@@ -0,0 +1,14 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: env-single-secret
+spec:
+  containers:
+  - name: envars-test-container
+    image: nginx
+    env:
+    - name: SECRET_USERNAME
+      valueFrom:
+        secretKeyRef:
+          name: backend-user
+          key: backend-username
diff --git a/content/zh/examples/pods/inject/secret-pod.yaml b/content/ko/examples/pods/inject/secret-pod.yaml
similarity index 100%
rename from content/zh/examples/pods/inject/secret-pod.yaml
rename to content/ko/examples/pods/inject/secret-pod.yaml
diff --git a/content/zh/examples/pods/inject/secret.yaml b/content/ko/examples/pods/inject/secret.yaml
similarity index 100%
rename from content/zh/examples/pods/inject/secret.yaml
rename to content/ko/examples/pods/inject/secret.yaml
diff --git a/content/ko/examples/pods/pod-with-affinity-anti-affinity.yaml b/content/ko/examples/pods/pod-with-affinity-anti-affinity.yaml
new file mode 100644
index 0000000000..5dcc7693b6
--- /dev/null
+++ b/content/ko/examples/pods/pod-with-affinity-anti-affinity.yaml
@@ -0,0 +1,33 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: with-affinity-anti-affinity
+spec:
+  affinity:
+    nodeAffinity:
+      requiredDuringSchedulingIgnoredDuringExecution:
+        nodeSelectorTerms:
+        - matchExpressions:
+          - key: topology.kubernetes.io/zone
+            operator: In
+            values:
+            - antarctica-east1
+            - antarctica-west1
+      preferredDuringSchedulingIgnoredDuringExecution:
+      - weight: 1
+        preference:
+          matchExpressions:
+          - key: label-1
+            operator: In
+            values:
+            - key-1
+      - weight: 50
+        preference:
+          matchExpressions:
+          - key: label-2
+            operator: In
+            values:
+            - key-2
+  containers:
+  - name: with-node-affinity
+    image: k8s.gcr.io/pause:2.0
diff --git a/content/ko/examples/pods/pod-with-node-affinity.yaml b/content/ko/examples/pods/pod-with-node-affinity.yaml
index 253d2b21ea..e077f79883 100644
--- a/content/ko/examples/pods/pod-with-node-affinity.yaml
+++ b/content/ko/examples/pods/pod-with-node-affinity.yaml
@@ -8,11 +8,10 @@ spec:
       requiredDuringSchedulingIgnoredDuringExecution:
         nodeSelectorTerms:
         - matchExpressions:
-          - key: kubernetes.io/e2e-az-name
+          - key: kubernetes.io/os
             operator: In
             values:
-            - e2e-az1
-            - e2e-az2
+            - linux
       preferredDuringSchedulingIgnoredDuringExecution:
       - weight: 1
         preference:
diff --git a/content/ko/examples/pods/resource/memory-request-limit-3.yaml b/content/ko/examples/pods/resource/memory-request-limit-3.yaml
index 9f089c4a7a..d816393986 100644
--- a/content/ko/examples/pods/resource/memory-request-limit-3.yaml
+++ b/content/ko/examples/pods/resource/memory-request-limit-3.yaml
@@ -8,9 +8,9 @@ spec:
   - name: memory-demo-3-ctr
     image: polinux/stress
     resources:
-      limits:
-        memory: "1000Gi"
       requests:
         memory: "1000Gi"
+      limits:
+        memory: "1000Gi"
     command: ["stress"]
     args: ["--vm", "1", "--vm-bytes", "150M", "--vm-hang", "1"]
diff --git a/content/ko/examples/pods/resource/memory-request-limit.yaml b/content/ko/examples/pods/resource/memory-request-limit.yaml
index 985b1308d9..07ce3e7d3c 100644
--- a/content/ko/examples/pods/resource/memory-request-limit.yaml
+++ b/content/ko/examples/pods/resource/memory-request-limit.yaml
@@ -8,9 +8,9 @@ spec:
   - name: memory-demo-ctr
     image: polinux/stress
     resources:
-      limits:
-        memory: "200Mi"
       requests:
         memory: "100Mi"
+      limits:
+        memory: "200Mi"
     command: ["stress"]
     args: ["--vm", "1", "--vm-bytes", "150M", "--vm-hang", "1"]
diff --git a/content/ko/examples/pods/security/hello-apparmor.yaml b/content/ko/examples/pods/security/hello-apparmor.yaml
index 2aca197e76..e988073856 100644
--- a/content/ko/examples/pods/security/hello-apparmor.yaml
+++ b/content/ko/examples/pods/security/hello-apparmor.yaml
@@ -9,5 +9,5 @@ metadata:
 spec:
   containers:
   - name: hello
-    image: busybox
-    command: [ "sh", "-c", "echo 'Hello AppArmor!' && sleep 1h" ]
\ No newline at end of file
+    image: busybox:1.28
+    command: [ "sh", "-c", "echo 'Hello AppArmor!' && sleep 1h" ]
diff --git a/content/zh/examples/pods/simple-pod.yaml b/content/ko/examples/pods/simple-pod.yaml
similarity index 100%
rename from content/zh/examples/pods/simple-pod.yaml
rename to content/ko/examples/pods/simple-pod.yaml
diff --git a/content/ko/examples/pods/storage/pv-duplicate.yaml b/content/ko/examples/pods/storage/pv-duplicate.yaml
new file mode 100644
index 0000000000..e5a0e6ff69
--- /dev/null
+++ b/content/ko/examples/pods/storage/pv-duplicate.yaml
@@ -0,0 +1,22 @@
+
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test
+spec:
+  containers:
+    - name: test
+      image: nginx
+      volumeMounts:
+        # a mount for site-data
+        - name: config
+          mountPath: /usr/share/nginx/html
+          subPath: html
+        # another mount for nginx config
+        - name: config
+          mountPath: /etc/nginx/nginx.conf
+          subPath: nginx.conf
+  volumes:
+    - name: config
+      persistentVolumeClaim:
+        claimName: test-nfs-claim
diff --git a/content/ko/examples/policy/restricted-psp.yaml b/content/ko/examples/policy/restricted-psp.yaml
index 4cdc12639a..9d5f6ed21a 100644
--- a/content/ko/examples/policy/restricted-psp.yaml
+++ b/content/ko/examples/policy/restricted-psp.yaml
@@ -3,6 +3,7 @@ kind: PodSecurityPolicy
 metadata:
   name: restricted
   annotations:
+    # docker/default 는 seccomp를 위한 프로파일을 나타내지만, 특별히 도커 런타임에 묶여 있는 것은 아니다.
     seccomp.security.alpha.kubernetes.io/allowedProfileNames: 'docker/default,runtime/default'
     apparmor.security.beta.kubernetes.io/allowedProfileNames: 'runtime/default'
     apparmor.security.beta.kubernetes.io/defaultProfileName:  'runtime/default'
diff --git a/content/ko/examples/service/networking/default-ingressclass.yaml b/content/ko/examples/service/networking/default-ingressclass.yaml
new file mode 100644
index 0000000000..0602ad8c9d
--- /dev/null
+++ b/content/ko/examples/service/networking/default-ingressclass.yaml
@@ -0,0 +1,10 @@
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+  name: nginx-example
+  annotations:
+    ingressclass.kubernetes.io/is-default-class: "true"
+spec:
+  controller: k8s.io/ingress-nginx
diff --git a/content/zh/examples/service/networking/example-ingress.yaml b/content/ko/examples/service/networking/example-ingress.yaml
similarity index 100%
rename from content/zh/examples/service/networking/example-ingress.yaml
rename to content/ko/examples/service/networking/example-ingress.yaml
diff --git a/content/ko/examples/service/networking/hostaliases-pod.yaml b/content/ko/examples/service/networking/hostaliases-pod.yaml
index 643813b34a..268bffbbf5 100644
--- a/content/ko/examples/service/networking/hostaliases-pod.yaml
+++ b/content/ko/examples/service/networking/hostaliases-pod.yaml
@@ -15,7 +15,7 @@ spec:
     - "bar.remote"
   containers:
   - name: cat-hosts
-    image: busybox
+    image: busybox:1.28
     command:
     - cat
     args:
diff --git a/content/ko/examples/service/networking/minimal-ingress.yaml b/content/ko/examples/service/networking/minimal-ingress.yaml
index 76640b9447..55a5837510 100644
--- a/content/ko/examples/service/networking/minimal-ingress.yaml
+++ b/content/ko/examples/service/networking/minimal-ingress.yaml
@@ -5,6 +5,7 @@ metadata:
   annotations:
     nginx.ingress.kubernetes.io/rewrite-target: /
 spec:
+  ingressClassName: nginx-example
   rules:
   - http:
       paths:
diff --git a/content/ko/examples/service/networking/networkpolicy.yaml b/content/ko/examples/service/networking/networkpolicy.yaml
new file mode 100644
index 0000000000..e91eed2f67
--- /dev/null
+++ b/content/ko/examples/service/networking/networkpolicy.yaml
@@ -0,0 +1,35 @@
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: test-network-policy
+  namespace: default
+spec:
+  podSelector:
+    matchLabels:
+      role: db
+  policyTypes:
+    - Ingress
+    - Egress
+  ingress:
+    - from:
+        - ipBlock:
+            cidr: 172.17.0.0/16
+            except:
+              - 172.17.1.0/24
+        - namespaceSelector:
+            matchLabels:
+              project: myproject
+        - podSelector:
+            matchLabels:
+              role: frontend
+      ports:
+        - protocol: TCP
+          port: 6379
+  egress:
+    - to:
+        - ipBlock:
+            cidr: 10.0.0.0/24
+      ports:
+        - protocol: TCP
+          port: 5978
+
diff --git a/content/ko/examples/tls/server-signing-config.json b/content/ko/examples/tls/server-signing-config.json
new file mode 100644
index 0000000000..86860d7369
--- /dev/null
+++ b/content/ko/examples/tls/server-signing-config.json
@@ -0,0 +1,15 @@
+{
+    "signing": {
+        "default": {
+            "usages": [
+                "digital signature",
+                "key encipherment",
+                "server auth"
+            ],
+            "expiry": "876000h",
+            "ca_constraint": {
+                "is_ca": false
+            }
+        }
+    }
+}
\ No newline at end of file
diff --git a/content/ko/includes/default-storage-class-prereqs.md b/content/ko/includes/default-storage-class-prereqs.md
index 217ac92922..32731d1d2d 100644
--- a/content/ko/includes/default-storage-class-prereqs.md
+++ b/content/ko/includes/default-storage-class-prereqs.md
@@ -1,5 +1,5 @@
-여기에서 사용된 [퍼시스턴트볼륨클레임](/docs/user-guide/persistent-volumes/#persistentvolumeclaims)을 만족하기 위하여, 
-기본 [스토리지클래스](/ko/docs/concepts/storage/storage-classes/)나 
-[정적으로(statically) 프로비저닝 된 퍼시스턴트볼륨](/docs/user-guide/persistent-volumes/#provisioning)을 
-갖는 퍼시스턴트 볼륨 프로비저너가 
+여기에서 사용된 [퍼시스턴트볼륨클레임](/ko/docs/concepts/storage/persistent-volumes/#퍼시스턴트볼륨클레임)을 만족하기 위하여, 
+기본 [스토리지클래스](/ko/docs/concepts/storage/storage-classes/)가 설정되어 있는 상태의 
+[동적 퍼시스턴트볼륨 프로비저너](/ko/docs/concepts/storage/dynamic-provisioning/), 또는 
+[정적으로(statically) 프로비저닝된 퍼시스턴트볼륨](/ko/docs/concepts/storage/persistent-volumes/#정적-프로비저닝)이 
 필요하다.
diff --git a/content/ko/includes/task-tutorial-prereqs.md b/content/ko/includes/task-tutorial-prereqs.md
index e27f4b99e4..9109e34433 100644
--- a/content/ko/includes/task-tutorial-prereqs.md
+++ b/content/ko/includes/task-tutorial-prereqs.md
@@ -4,5 +4,5 @@
 [minikube](/ko/docs/tasks/tools/#minikube)를 사용해서 생성하거나
 다음의 쿠버네티스 플레이그라운드 중 하나를 사용할 수 있다.
 
-* [Katacoda](https://www.katacoda.com/courses/kubernetes/playground)
+* [Killercoda](https://killercoda.com/playgrounds/scenario/kubernetes)
 * [Play with Kubernetes](https://labs.play-with-k8s.com/)
diff --git a/content/ko/releases/_index.md b/content/ko/releases/_index.md
index aa6a306f8a..0bc57340a3 100644
--- a/content/ko/releases/_index.md
+++ b/content/ko/releases/_index.md
@@ -7,7 +7,7 @@ type: docs
 
 <!-- overview -->
 
-쿠버네티스 프로젝트는 가장 최신의 3개 마이너(minor) 릴리스({{< skew latestVersion >}}, {{< skew prevMinorVersion >}}, {{< skew oldestMinorVersion >}})에 대해서 릴리스 브랜치를 관리한다. 쿠버네티스 1.19 및 이후 신규 버전은 약 1년간 패치 지원을 받을 수 있다. 쿠버네티스 1.18 및 이전 버전은 약 9개월간의 패치 지원을 받을 수 있다.
+쿠버네티스 프로젝트는 가장 최신의 3개 마이너(minor) 릴리스({{< skew latestVersion >}}, {{< skew prevMinorVersion >}}, {{< skew oldestMinorVersion >}})에 대해서 릴리스 브랜치를 관리한다. 쿠버네티스 1.19 및 이후 신규 버전은 [약 1년간 패치 지원](/releases/patch-releases/#support-period)을 받을 수 있다. 쿠버네티스 1.18 및 이전 버전은 약 9개월간의 패치 지원을 받을 수 있다.
 
 쿠버네티스 버전은 **x.y.z** 의 형태로 표현되는데,
 **x** 는 메이저(major) 버전, **y** 는 마이너(minor), **z** 는 패치(patch) 버전을 의미하며, 이는 [시맨틱 버전](https://semver.org/)의 용어를 따른 것이다.
diff --git a/content/ko/releases/notes.md b/content/ko/releases/notes.md
index b509ae0d65..45f3f0a28a 100644
--- a/content/ko/releases/notes.md
+++ b/content/ko/releases/notes.md
@@ -8,6 +8,6 @@ sitemap:
   priority: 0.5
 ---
 
-릴리스 노트는 사용자의 쿠버네티스 버전에 해당하는 [변경로그(Changelog)](https://github.com/kubernetes/kubernetes/tree/master/CHANGELOG)를 통해서 확인할 수 있다. {{< skew latestVersion >}} 의 변경로그는 [깃허브](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-{{< skew latestVersion >}}.md)에 있다.
+릴리스 노트는 사용자의 쿠버네티스 버전에 해당하는 [변경로그(Changelog)](https://github.com/kubernetes/kubernetes/tree/master/CHANGELOG)를 통해서 확인할 수 있다. {{< skew currentVersionAddMinor 0 >}} 의 변경로그는 [깃허브](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-{{< skew currentVersionAddMinor 0 >}}.md)에 있다.
 
-대안으로, 릴리스 노트는 [relnotes.k8s.io](https://relnotes.k8s.io)에서 온라인으로 검색 및 필터링이 가능하다. {{< skew latestVersion >}}로 필터링된 릴리스 노트는 [relnotes.k8s.io](https://relnotes.k8s.io/?releaseVersions={{< skew latestVersion >}}.0)에서 확인한다.
+대안으로, 릴리스 노트는 [relnotes.k8s.io](https://relnotes.k8s.io)에서 온라인으로 검색 및 필터링이 가능하다. {{< skew currentVersionAddMinor 0 >}}로 필터링된 릴리스 노트는 [relnotes.k8s.io](https://relnotes.k8s.io/?releaseVersions={{< skew currentVersionAddMinor 0 >}}.0)에서 확인한다.
diff --git a/content/ko/releases/version-skew-policy.md b/content/ko/releases/version-skew-policy.md
index dba98dcdf8..ef68b0b341 100644
--- a/content/ko/releases/version-skew-policy.md
+++ b/content/ko/releases/version-skew-policy.md
@@ -28,9 +28,9 @@ description: >
 보안 수정사항을 포함한 해당 수정사항은 심각도와 타당성에 따라 세 개의 릴리스 브랜치로 백포트(backport) 될 수 있다.
 패치 릴리스는 각 브랜치별로 [정기적인 주기](https://git.k8s.io/sig-release/releases/patch-releases.md#cadence)로 제공하며, 필요한 경우 추가 긴급 릴리스도 추가한다.
 
-[릴리스 관리자](https://git.k8s.io/sig-release/release-managers.md) 그룹이 이러한 결정 권한을 가진다.
+[릴리스 관리자](/releases/release-managers/) 그룹이 이러한 결정 권한을 가진다.
 
-자세한 내용은 쿠버네티스 [패치 릴리스](https://git.k8s.io/sig-release/releases/patch-releases.md) 페이지를 참조한다.
+자세한 내용은 쿠버네티스 [패치 릴리스](/releases/patch-releases/) 페이지를 참조한다.
 
 ## 지원되는 버전 차이
 
diff --git a/content/ko/training/_index.html b/content/ko/training/_index.html
index ff24428664..ac028b6005 100644
--- a/content/ko/training/_index.html
+++ b/content/ko/training/_index.html
@@ -14,6 +14,9 @@ class: training
         <h2>클라우드 네이티브 커리어를 구축하세요</h2>
         <p>쿠버네티스는 클라우드 네이티브 무브먼트의 핵심입니다. 리눅스 재단이 제공하는 교육과 인증 프로그램을 통해 커리어에 투자하고, 쿠버네티스를 배우며, 클라우드 네이티브 프로젝트를 성공적으로 수행하세요.</p>
       </div>
+      <div class="logo-certification cta-image" id="logo-kcnf">
+        <img src="/images/training/kubernetes-kcnf-white.svg" />
+      </div>
       <div class="logo-certification cta-image" id="logo-cka">
         <img src="/images/training/kubernetes-cka-white.svg"/>
       </div>
@@ -81,6 +84,15 @@ class: training
   <div class="main-section padded">
     <h2>쿠버네티스 공인 자격 획득하기</h2>
     <div class="col-container">
+      <div class="col-nav">
+        <h5>
+          <b>쿠버네티스 및 클라우드 네이티브 전문가(Kubernetes and Cloud Native Associate, KCNA)</b>
+        </h5>
+        <p>쿠버네티스 및 클라우드 네이티브 전문가 시험은 사용자의 쿠버네티스와 더 넓은 클라우드 네이티브 생태계에 대한 핵심 지식과 기술을 보여줍니다.</p>
+        <p>인증된 KCNA는 전체적인 클라우드 네이티브 생태계, 특히 쿠버네티스에 대한 개념적 지식을 확인시켜 줄 것입니다.</p>
+        <br>
+        <a href="https://training.linuxfoundation.org/certification/kubernetes-cloud-native-associate/" target="_blank" class="button">Go to Certification</a>
+      </div>
       <div class="col-nav">
           <h5>
             <b>공인 쿠버네티스 애플리케이션 개발자(Certified Kubernetes Application Developer, CKAD)</b>
diff --git a/content/no/docs/contribute/_index.md b/content/no/docs/contribute/_index.md
old mode 100755
new mode 100644
diff --git a/content/no/docs/reference/glossary/container.md b/content/no/docs/reference/glossary/container.md
old mode 100755
new mode 100644
diff --git a/content/pl/_index.html b/content/pl/_index.html
index 03ec4a4c44..93df2863a9 100644
--- a/content/pl/_index.html
+++ b/content/pl/_index.html
@@ -44,12 +44,12 @@ Kubernetes jako projekt open-source daje Ci wolność wyboru ⏤ skorzystaj z pr
         <button id="desktopShowVideoButton" onclick="kub.showVideo()">Obejrzyj wideo</button>
         <br>
         <br>
-        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccncna21" button id="desktopKCButton">Weź udział w KubeCon North America 11-15.10.2021</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/" button id="desktopKCButton">Weź udział w KubeCon North America 24-28.10.2022</a>
         <br>
         <br>
         <br>
         <br>
-        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe-2022/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccnceu22" button id="desktopKCButton">Weź udział w wirtualnym KubeCon Europe 17-20.5.2022</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/" button id="desktopKCButton">Weź udział w KubeCon Europe 17-21.04.2023</a>
 
 </div>
 <div id="videoPlayer">
diff --git a/content/pl/docs/concepts/overview/components.md b/content/pl/docs/concepts/overview/components.md
index b6843e04db..3f2b8a8135 100644
--- a/content/pl/docs/concepts/overview/components.md
+++ b/content/pl/docs/concepts/overview/components.md
@@ -15,15 +15,12 @@ W wyniku instalacji Kubernetesa otrzymujesz klaster.
 
 {{< glossary_definition term_id="cluster" length="all" prepend="Klaster Kubernetes to">}}
 
-W tym dokumencie opisujemy składniki niezbędne do zbudowania kompletnego, poprawnie działającego klastra Kubernetes.
-
-Poniższy rysunek przedstawia klaster Kubernetes i powiązania pomiędzy jego różnymi częściami składowymi.
-
-![Składniki Kubernetes](/images/docs/components-of-kubernetes.svg)
+W tym dokumencie opisujemy składniki niezbędne do zbudowania kompletnego, poprawnie działającego klastra Kubernetesa.
 
+{{< figure src="/images/docs/components-of-kubernetes.svg" alt="Składniki Kubernetesa" caption="Części składowe klastra Kubernetes" class="diagram-large" >}}
 
 <!-- body -->
-## Częsci składowe warstwy sterowania
+## Części składowe warstwy sterowania
 
 Komponenty warstwy sterowania podejmują ogólne decyzje dotyczące klastra (np. zlecanie zadań), a także wykrywają i reagują na zdarzenia w klastrze (przykładowo, start nowego {{< glossary_tooltip text="poda" term_id="pod">}}, kiedy wartość `replicas` dla deploymentu nie zgadza się z faktyczną liczbą replik).
 
@@ -113,11 +110,9 @@ Kontenery uruchomione przez Kubernetes automatycznie przeszukują ten serwer DNS
 
 Mechanizm [logowania na poziomie klastra](/docs/concepts/cluster-administration/logging/) odpowiada za zapisywanie logów pochodzących z poszczególnych kontenerów do wspólnego magazynu, który posiada interfejs do przeglądania i przeszukiwania.
 
-
 ## {{% heading "whatsnext" %}}
 
 * Więcej o [Węzłach](/docs/concepts/architecture/nodes/)
 * Więcej o [Kontrolerach](/docs/concepts/architecture/controller/)
 * Więcej o [kube-scheduler](/docs/concepts/scheduling-eviction/kube-scheduler/)
 * Oficjalna [dokumentacja](https://etcd.io/docs/) etcd
-
diff --git a/content/pl/docs/concepts/overview/kubernetes-api.md b/content/pl/docs/concepts/overview/kubernetes-api.md
index 731b22cacc..3725e35925 100644
--- a/content/pl/docs/concepts/overview/kubernetes-api.md
+++ b/content/pl/docs/concepts/overview/kubernetes-api.md
@@ -35,8 +35,9 @@ warto rozważyć użycie jednej z [bibliotek klienckich](/docs/reference/using-a
 
 Pełną specyfikację API udokumentowano za pomocą [OpenAPI](https://www.openapis.org/).
 
-Serwer API Kubernetes API udostępnia specyfikację OpenAPI poprzez ścieżkę `/openapi/v2`.
-Aby wybrać format odpowiedzi, użyj nagłówków żądania zgodnie z tabelą:
+Serwer API Kubernetesa udostępnia specyfikację OpenAPI poprzez
+ścieżkę `/openapi/v2`. Aby wybrać format odpowiedzi,
+użyj nagłówków żądania zgodnie z tabelą:
 
 <table>
 <caption style="display:none">Dopuszczalne wartości nagłówka żądania dla zapytań OpenAPI v2</caption>
@@ -75,6 +76,55 @@ Więcej szczegółów znajduje się w dokumencie [Kubernetes Protobuf serializat
 oraz w plikach *Interface Definition Language* (IDL) dla każdego ze schematów
 zamieszczonych w pakietach Go, które definiują obiekty API.
 
+### OpenAPI V3
+
+{{< feature-state state="alpha"  for_k8s_version="v1.23" >}}
+
+Kubernetes v1.23 umożliwia (na razie w we wczesnej wersji roboczej) publikowanie swojego API jako OpenAPI v3.
+Ta funkcjonalność jest w wersji _alfa_ i jest domyślnie wyłączona.
+Funkcjonalności w wersji _alfa_ można włączać poprzez
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/) o nazwie `OpenAPIV3`
+składnika kube-apiserver.
+
+Po włączeniu tej funkcjonalności, serwer API Kubernetesa udostępnia
+zagregowaną specyfikację OpenAPI v3 dla odpowiednich grup i wersji poprzez ścieżkę
+`/openapi/v3/apis/<group>/<version>`. Tabela poniżej podaje dopuszczalne wartości
+nagłówków żądania.
+
+<table>
+  <caption style="display:none">Dopuszczalne wartości nagłówka żądania dla zapytań OpenAPI v3</caption>
+  <thead>
+     <tr>
+        <th>Nagłówek</th>
+        <th style="min-width: 50%;">Dopuszczalne wartości</th>
+        <th>Uwagi</th>
+     </tr>
+  </thead>
+  <tbody>
+     <tr>
+        <td><code>Accept-Encoding</code></td>
+        <td><code>gzip</code></td>
+        <td><em>pominięcie tego nagłówka jest dozwolone</em></td>
+     </tr>
+     <tr>
+        <td rowspan="3"><code>Accept</code></td>
+        <td><code>application/com.github.proto-openapi.spec.v3@v1.0+protobuf</code></td>
+        <td><em>głównie do celu komunikacji wewnątrz klastra</em></td>
+     </tr>
+     <tr>
+        <td><code>application/json</code></td>
+        <td><em>domyślne</em></td>
+     </tr>
+     <tr>
+        <td><code>*</code></td>
+        <td><em>udostępnia </em><code>application/json</code></td>
+     </tr>
+  </tbody>
+</table>
+
+Poprzez ścieżkę `/openapi/v3` można wyświetlić pełną listę
+dostępnych grup i wersji. Formatem odpowiedzi jest tylko JSON.
+
 ## Przechowywanie stanu
 
 Kubernetes przechowuje serializowany stan swoich obiektów w
diff --git a/content/pl/docs/contribute/_index.md b/content/pl/docs/contribute/_index.md
index c107ec357d..88d396cd44 100644
--- a/content/pl/docs/contribute/_index.md
+++ b/content/pl/docs/contribute/_index.md
@@ -12,7 +12,7 @@ card:
 
 <!-- overview -->
 
-Kubernetes zaprasza do współpracy wszystkich - zarówno nowicjuszy, jak i doświadczonych!
+*Kubernetes zaprasza do współpracy wszystkich - zarówno nowicjuszy, jak i doświadczonych!*
 
 {{< note >}}
 Aby dowiedzieć się więcej ogólnych informacji o współpracy przy tworzeniu Kubernetesa, zajrzyj
@@ -43,17 +43,94 @@ wymagana jest pewna biegłość w korzystaniu z
 Aby zaangażować się w prace nad dokumentacją należy:
 
 1. Podpisać [Contributor License Agreement](https://github.com/kubernetes/community/blob/master/CLA.md) CNCF.
-1. Zapoznać się z [repozytorium dokumentacji](https://github.com/kubernetes/website)
+2. Zapoznać się z [repozytorium dokumentacji](https://github.com/kubernetes/website)
    i z [generatorem statycznej strony](https://gohugo.io) www.
-1. Zrozumieć podstawowe procesy [otwierania *pull request*](/docs/contribute/new-content/new-content/) oraz
+3. Zrozumieć podstawowe procesy [otwierania *pull request*](/docs/contribute/new-content/new-content/) oraz
    [recenzowania zmian](/docs/contribute/review/reviewing-prs/).
 
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
+
+{{< mermaid >}}
+flowchart TB
+subgraph third[Otwórz PR]
+direction TB
+U[ ] -.-
+Q[Ulepsz zawartość] --- N[Dodaj nową]
+N --- O[Przetłumacz dokumentację]
+O --- P[Zarządzaj dokumentacją<br>przy kolejnych<br>wydaniach K8s]
+
+end
+
+subgraph second[Recenzuj]
+direction TB
+   T[ ] -.-
+   D[Przejrzyj<br>repozytorium<br>K8s/website] --- E[Pobierz generator<br>stron statycznych<br>Hugo]
+   E --- F[Zrozum podstawowe<br>polecenia GitHub-a]
+   F --- G[Zrecenzuj otwarty PR<br>i zmień procesy<br>recenzji]
+end
+
+subgraph first[Zapisz się]
+    direction TB
+    S[ ] -.-
+    B[Podpisz CNCF<br>Contributor<br>License Agreement] --- C[Dołącz do Slack-a<br>sig-docs]
+    C --- V[Zapisz się na listę<br>kubernetes-sig-docs]
+    V --- M[Weź udział w cotygodniowych<br>spotkaniach sig-docs]
+end
+
+A([fa:fa-user Nowy<br>uczestnik]) --> first
+A --> second
+A --> third
+A --> H[Zapytaj!!!]
+
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class A,B,C,D,E,F,G,H,M,Q,N,O,P,V grey
+class S,T,U spacewhite
+class first,second,third white
+{{</ mermaid >}}
+***Schemat - Jak zacząć współpracę***
+
+To jest schemat postępowania dla osób, które chcą zacząć współtworzyć Kubernetesa. Przejdź część lub wszystkie kroki opisane w częściach `Zapisz się` i `Recenzuj`. Teraz już możesz tworzyć nowe PR, zgodnie z sugestiami w `Otwórz PR`. I jak zawsze, pytania mile widziane!
+
 Do realizacji niektórych zadań potrzeba wyższego poziomu zaufania i odpowiednich uprawnień w organizacji Kubernetes.
 Zajrzyj do [Participating in SIG Docs](/docs/contribute/participate/) po więcej szczegółów dotyczących
 ról i uprawnień.
 
 ## Pierwsze kroki
 
+Zapoznaj się z krokami opisanymi poniżej, aby się lepiej przygotować.
+
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
+
+{{< mermaid >}}
+flowchart LR
+    subgraph second[Pierwszy wkład]
+    direction TB
+    S[ ] -.-
+    G[Obejrzyj PRy<br>innych uczestników K8s] -->
+    A[Przejrzyj listę zgłoszonych spraw<br>na K8s/website<br>po pomysł na nowy PR] --> B[Otwórz PR!!]
+    end
+    subgraph first[Sugerowane przygotowanie]
+    direction TB
+       T[ ] -.-
+       D[Przeczytaj wprowadzenie<br>dla współtwórców] -->E[Przeczytaj K8s content<br>and style guides]
+       E --> F[Poczytaj o typach zawartości<br>stron i skrótach Hugo]
+    end
+
+    first ----> second
+
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class A,B,D,E,F,G grey
+class S,T spacewhite
+class first,second white
+{{</ mermaid >}}
+***Schemat - Jak się przygotować***
+
 - Przeczytaj [Contribution overview](/docs/contribute/new-content/overview/),
   aby dowiedzieć się o różnych sposobach współpracy.
 - Zajrzyj do [Contribute to kubernetes/website](https://github.com/kubernetes/website/contribute),
@@ -89,10 +166,12 @@ Aby włączyć się w komunikację w ramach SIG Docs, możesz:
   się przedstawić!
 - [Zapisać się na listę `kubernetes-sig-docs`](https://groups.google.com/forum/#!forum/kubernetes-sig-docs),
   na której prowadzone są dyskusje o szerszym zasięgu i zapisywane oficjalne decyzje.
-- Dołączyć do [cotygodniowego spotkania wideo SIG Docs](https://github.com/kubernetes/community/tree/master/sig-docs). Spotkania są zawsze zapowiadane na `#sig-docs` i dodawane do [kalendarza spotkań społeczności Kubernetes](https://calendar.google.com/calendar/embed?src=cgnt364vd8s86hr2phapfjc6uk%40group.calendar.google.com&ctz=America/Los_Angeles). Będziesz potrzebował komunikatora [Zoom](https://zoom.us/download) lub telefonu, aby się wdzwonić.
+- Dołączyć do [spotkania wideo SIG Docs](https://github.com/kubernetes/community/tree/master/sig-docs) odbywającego się co dwa tygodnie. Spotkania są zawsze zapowiadane na `#sig-docs` i dodawane do [kalendarza spotkań społeczności Kubernetesa](https://calendar.google.com/calendar/embed?src=cgnt364vd8s86hr2phapfjc6uk%40group.calendar.google.com&ctz=Europe/Warsaw). Będziesz potrzebował komunikatora [Zoom](https://zoom.us/download) lub telefonu, aby się wdzwonić.
+- Dołączyć do spotkania SIG Docs na Slacku organizowanego w tych tygodniach, kiedy nie ma spotkania na Zoomie. Informacja o spotkaniu zawsze ogłaszana jest na  `#sig-docs`. W rozmowach prowadzonych w różnych wątkach na tym kanale można brać udział do 24 godzin od chwili ogłoszenia.
 
 ## Inne sposoby współpracy
 
-- Odwiedź [stronę społeczności Kubernetes](/community/). Korzystaj z Twittera i Stack Overflow, dowiedz się o spotkaniach lokalnych grup Kubernetes, różnych wydarzeniach i nie tylko.
-- Przeczytaj [ściągawkę dla współtwórców](https://github.com/kubernetes/community/tree/master/contributors/guide/contributor-cheatsheet), aby zaangażować się w dalszy rozwój Kubernetesa.
+- Odwiedź [stronę społeczności Kubernetesa](/community/). Korzystaj z Twittera i Stack Overflow, dowiedz się o spotkaniach lokalnych grup Kubernetesa, różnych wydarzeniach i nie tylko.
+- Przeczytaj [ściągawkę dla współtwórców](https://www.kubernetes.dev/docs/contributor-cheatsheet/contributor-cheatsheet/), aby zaangażować się w dalszy rozwój Kubernetesa.
+- Odwiedź stronę [Kubernetes Contributors](https://www.kubernetes.dev/) i zajrzyj do [dodatkowych zasobów](https://www.kubernetes.dev/resources/).
 - Przygotuj [wpis na blogu lub *case study*](/docs/contribute/new-content/blogs-case-studies/).
diff --git a/content/pl/docs/reference/_index.md b/content/pl/docs/reference/_index.md
index fd4ab2bff3..92dc512a58 100644
--- a/content/pl/docs/reference/_index.md
+++ b/content/pl/docs/reference/_index.md
@@ -14,36 +14,72 @@ Tutaj znajdziesz dokumentację źródłową Kubernetesa.
 
 ## Dokumentacja API
 
+* [Glossary](/docs/reference/glossary/) -  Pełna, zestandaryzowana lista terminologii Kubernetesa
+
 * [Kubernetes API Reference](/docs/reference/kubernetes-api/)
 * [One-page API Reference for Kubernetes {{< param "version" >}}](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)
-* [Using The Kubernetes API](/docs/reference/using-api/) - ogólne informacje na temat API Kubernetesa.
+* [Using The Kubernetes API](/docs/reference/using-api/) - ogólne informacje na temat API Kubernetesa
+* [API access control](/docs/reference/access-authn-authz/) - szczegóły dotyczące kontroli dostępu do API Kubernetesa
+* [Well-Known Labels, Annotations and Taints](/docs/reference/labels-annotations-taints/)
 
-## Biblioteki klientów API
+## Oficjalnie wspierane biblioteki klienckie
 
 Aby wywołać Kubernetes API z wybranego języka programowania, możesz skorzystać z
 [bibliotek klienckich](/docs/reference/using-api/client-libraries/). Oficjalnie wspierane
 biblioteki to:
 
-* [Kubernetes Go client library](https://github.com/kubernetes/client-go/)
 * [Kubernetes Python client library](https://github.com/kubernetes-client/python)
 * [Kubernetes Java client library](https://github.com/kubernetes-client/java)
 * [Kubernetes JavaScript client library](https://github.com/kubernetes-client/javascript)
+* [Kubernetes C# client library](https://github.com/kubernetes-client/csharp)
+* [Kubernetes Haskell client library](https://github.com/kubernetes-client/haskell)
 
-## Dokumentacja poleceń tekstowych *(CLI)*
+## Polecenia tekstowe *(CLI)*
 
 * [kubectl](/docs/reference/kubectl/overview/) - Główne narzędzie tekstowe (linii poleceń) do zarządzania klastrem Kubernetes.
   * [JSONPath](/docs/reference/kubectl/jsonpath/) - Podręcznik składni [wyrażeń JSONPath](https://goessner.net/articles/JsonPath/) dla kubectl.
 * [kubeadm](/docs/reference/setup-tools/kubeadm/) - Narzędzie tekstowe do łatwego budowania klastra Kubernetes spełniającego niezbędne wymogi bezpieczeństwa.
 
-## Dokumentacja komponentów
+## Komponenty
 
-* [kubelet](/docs/reference/command-line-tools-reference/kubelet/) - Główny agent działający na każdym węźle. Kubelet pobiera zestaw definicji PodSpecs i gwarantuje, że opisane przez nie kontenery poprawnie działają.
-* [kube-apiserver](/docs/reference/command-line-tools-reference/kube-apiserver/) - REST API, które sprawdza poprawność i konfiguruje obiekty API, takie jak pody, serwisy czy kontrolery replikacji.
+* [kubelet](/docs/reference/command-line-tools-reference/kubelet/) - Główny
+  agent działający na każdym węźle. Kubelet pobiera zestaw definicji PodSpecs
+  i gwarantuje, że opisane przez nie kontenery poprawnie działają.
+* [kube-apiserver](/docs/reference/command-line-tools-reference/kube-apiserver/) -
+  REST API, które sprawdza poprawność i konfiguruje obiekty API, takie jak pody, serwisy czy kontrolery replikacji.
 * [kube-controller-manager](/docs/reference/command-line-tools-reference/kube-controller-manager/) - Proces wykonujący główne pętle sterowania Kubernetes.
-* [kube-proxy](/docs/reference/command-line-tools-reference/kube-proxy/) - Przekazuje bezpośrednio dane przepływające w transmisji TCP/UDP lub dystrybuuje ruch TCP/UDP zgodnie ze schematem *round-robin* pomiędzy usługi back-endu.
+* [kube-proxy](/docs/reference/command-line-tools-reference/kube-proxy/) - Przekazuje
+  bezpośrednio dane przepływające w transmisji TCP/UDP lub dystrybuuje ruch TCP/UDP
+  zgodnie ze schematem *round-robin* pomiędzy usługi back-endu.
 * [kube-scheduler](/docs/reference/command-line-tools-reference/kube-scheduler/) - Scheduler odpowiada za dostępność, wydajność i zasoby.
-* [kube-scheduler Policies](/docs/reference/scheduling/policies)
-* [kube-scheduler Profiles](/docs/reference/scheduling/config#profiles)
+* [Scheduler Policies](/docs/reference/scheduling/policies)
+* [Scheduler Profiles](/docs/reference/scheduling/config#profiles)
+
+* Spis [portów i protokołów](/docs/reference/ports-and-protocols/), które
+  muszą być otwarte dla warstwy sterowania i na węzłach roboczych.
+
+## API konfiguracji
+
+W tej części zebrano "niepublikowane" API, które służą do konfiguracji komponentów
+Kubernetesa lub innych narzędzi. Choć większość tych API nie jest udostępniane przez
+serwer API w trybie RESTful, są one niezbędne dla użytkowników i administratorów
+w korzystaniu i zarządzaniu klastrem.
+
+* [kube-apiserver configuration (v1)](/docs/reference/config-api/apiserver-config.v1/)
+* [kubelet configuration (v1alpha1)](/docs/reference/config-api/kubelet-config.v1alpha1/) i
+  [kubelet configuration (v1beta1)](/docs/reference/config-api/kubelet-config.v1beta1/)
+* [kube-scheduler configuration (v1beta2)](/docs/reference/config-api/kube-scheduler-config.v1beta2/) i
+  [kube-scheduler configuration (v1beta3)](/docs/reference/config-api/kube-scheduler-config.v1beta3/)
+* [kube-proxy configuration (v1alpha1)](/docs/reference/config-api/kube-proxy-config.v1alpha1/)
+* [`audit.k8s.io/v1` API](/docs/reference/config-api/apiserver-audit.v1/)
+* [Client authentication API (v1beta1)](/docs/reference/config-api/client-authentication.v1beta1/) i
+  [Client authentication API (v1)](/docs/reference/config-api/client-authentication.v1/)
+* [WebhookAdmission configuration (v1)](/docs/reference/config-api/apiserver-webhookadmission.v1/)
+
+## API konfiguracji dla kubeadm
+
+* [v1beta2](/docs/reference/config-api/kubeadm-config.v1beta2/)
+* [v1beta3](/docs/reference/config-api/kubeadm-config.v1beta3/)
 
 ## Dokumentacja projektowa
 
diff --git a/content/pl/docs/reference/glossary/container-runtime.md b/content/pl/docs/reference/glossary/container-runtime.md
index f86c1c1d2c..58dc243e87 100644
--- a/content/pl/docs/reference/glossary/container-runtime.md
+++ b/content/pl/docs/reference/glossary/container-runtime.md
@@ -15,7 +15,7 @@ tags:
 
 <!--more-->
 
-Kubernetes obsługuje różne *container runtimes*: {{< glossary_tooltip term_id="docker">}},
+Kubernetes obsługuje różne *container runtimes*:
 {{< glossary_tooltip term_id="containerd" >}}, {{< glossary_tooltip term_id="cri-o" >}}
 oraz każdą implementację zgodną z [Kubernetes CRI (Container Runtime
 Interface)](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-node/container-runtime-interface.md).
diff --git a/content/pl/docs/reference/glossary/index.md b/content/pl/docs/reference/glossary/index.md
index 1cdf5a1a3e..642bdbdfb2 100644
--- a/content/pl/docs/reference/glossary/index.md
+++ b/content/pl/docs/reference/glossary/index.md
@@ -1,5 +1,5 @@
 ---
-title: Ujednolicony słownik
+title: Słownik
 layout: glossary
 noedit: true
 default_active_tag: fundamental
diff --git a/content/pl/docs/reference/glossary/kube-scheduler.md b/content/pl/docs/reference/glossary/kube-scheduler.md
index 4bbcc99a0f..f3f5e02d10 100644
--- a/content/pl/docs/reference/glossary/kube-scheduler.md
+++ b/content/pl/docs/reference/glossary/kube-scheduler.md
@@ -2,7 +2,7 @@
 title: kube-scheduler
 id: kube-scheduler
 date: 2018-04-12
-full_link: /docs/reference/generated/kube-scheduler/
+full_link: /docs/reference/command-line-tools-reference/kube-scheduler/
 short_description: >
   Składnik warstwy sterowania, który śledzi tworzenie nowych podów i przypisuje im węzły, na których powinny zostać uruchomione.
 
diff --git a/content/pl/docs/tutorials/_index.md b/content/pl/docs/tutorials/_index.md
index c55fd9c3ff..ea951644a5 100644
--- a/content/pl/docs/tutorials/_index.md
+++ b/content/pl/docs/tutorials/_index.md
@@ -26,13 +26,15 @@ Przed zapoznaniem się z samouczkami warto stworzyć zakładkę do
 
 ## Konfiguracja
 
-[Konfiguracja  serwera Redis z użyciem ConfigMap](/docs/tutorials/configuration/configure-redis-using-configmap/)
+* [Configuring a Java Microservice](/docs/tutorials/configuration/configure-java-microservice/)
+
+* [Configuring Redis Using a ConfigMap](/docs/tutorials/configuration/configure-redis-using-configmap/)
 
 ## Aplikacje bezstanowe *(Stateless Applications)*
 
 * [Exposing an External IP Address to Access an Application in a Cluster](/docs/tutorials/stateless-application/expose-external-ip-address/)
 
-* [Example: Deploying PHP Guestbook application with MongoDB](/docs/tutorials/stateless-application/guestbook/)
+* [Example: Deploying PHP Guestbook application with Redis](/docs/tutorials/stateless-application/guestbook/)
 
 ## Aplikacje stanowe *(Stateful Applications)*
 
@@ -44,14 +46,17 @@ Przed zapoznaniem się z samouczkami warto stworzyć zakładkę do
 
 * [Running ZooKeeper, A CP Distributed System](/docs/tutorials/stateful-application/zookeeper/)
 
-## Klastry
-
-* [AppArmor](/docs/tutorials/clusters/apparmor/)
-
 ## Serwisy
 
 * [Using Source IP](/docs/tutorials/services/source-ip/)
 
+## Bezpieczeństwo
+
+* [Apply Pod Security Standards at Cluster level](/docs/tutorials/security/cluster-level-pss/)
+* [Apply Pod Security Standards at Namespace level](/docs/tutorials/security/ns-level-pss/)
+* [AppArmor](/docs/tutorials/security/apparmor/)
+* [seccomp](/docs/tutorials/security/seccomp/)
+
 ## {{% heading "whatsnext" %}}
 
 Jeśli chciałbyś napisać nowy samouczek, odwiedź
diff --git a/content/pl/docs/tutorials/hello-minikube.md b/content/pl/docs/tutorials/hello-minikube.md
index 2c68bc3b5f..b1a9a2f8e1 100644
--- a/content/pl/docs/tutorials/hello-minikube.md
+++ b/content/pl/docs/tutorials/hello-minikube.md
@@ -43,10 +43,10 @@ W tym samouczku wykorzystamy obraz kontenera, który korzysta z NGINX, aby wyśw
     {{< kat-button >}}
 
     {{< note >}}
-    Jeśli masz minikube zainstalowane lokalnie, uruchom `minikube start`.
+    Jeśli masz minikube zainstalowane lokalnie, uruchom `minikube start`. Przed uruchomieniem `minikube dashboard`, otwórz okno nowego terminala, uruchom w nim `minikube dashboard` i przełącz się z powrotem do okna głównego terminala.
     {{< /note >}}
 
-2. Otwórz panel Kubernetes w przeglądarce:
+2. Otwórz panel Kubernetesa w przeglądarce:
 
     ```shell
     minikube dashboard
@@ -56,13 +56,35 @@ W tym samouczku wykorzystamy obraz kontenera, który korzysta z NGINX, aby wyśw
 
 4. Tylko w Katacoda: Wpisz `30000`i kliknij **Display Port**.
 
+{{< note >}}
+Polecenie `dashboard` uruchamia dodatek panelu i otwiera proxy w domyślnej przeglądarce.
+W panelu można tworzyć różne obiekty Kubernetesa, takie jak _Deployment_ czy _Serwis_.
+
+Jeśli pracujesz z uprawnieniami roota, skorzystaj z: [Otwieranie panelu poprzez URL](#otwieranie-panelu-poprzez-url).
+
+Panel jest domyślnie dostępny jedynie z wewnętrznej sieci Kubernetesa.
+Polecenie `dashboard` tworzy tymczasowe proxy, które udostępnia panel także poza tą wewnętrzną sieć.
+
+Aby zatrzymać proxy, wciśnij `Ctrl+C` i zakończ proces.
+Panel ciągle działa na klastrze Kubernetesa, nawet po przerwaniu działania proxy.
+Aby dostać się ponownie do panelu, trzeba stworzyć kolejne proxy poleceniem `dashboard`.
+{{< /note >}}
+
+## Otwieranie panelu poprzez URL
+
+Jeśli nie chcesz otwierać przeglądarki, uruchom panel z opcją `--url`, aby wyświetlić URL:
+
+```shell
+minikube dashboard --url
+```
+
 ## Stwórz Deployment
 
-[*Pod*](/docs/concepts/workloads/pods/) w Kubernetes to grupa jednego lub wielu kontenerów
-połączonych ze sobą na potrzeby administrowania i dostępu sieci. W tym samouczku Pod 
+[*Pod*](/docs/concepts/workloads/pods/) w Kubernetesie to grupa jednego lub wielu kontenerów
+połączonych ze sobą na potrzeby administrowania i dostępu sieci. W tym samouczku Pod
 zawiera tylko jeden kontener. [*Deployment*](/docs/concepts/workloads/controllers/deployment/)
-w Kubernetes monitoruje stan twojego Poda
-i restartuje należący do niego kontener, jeśli ten z jakichś powodów przestanie działać.
+w Kubernetesie monitoruje stan twojego Poda
+i restartuje należące do niego kontenery, jeśli z jakichś powodów przestaną działać.
 Użycie Deploymentu to rekomendowana metoda zarządzania tworzeniem i skalowaniem Podów.
 
 1. Użyj polecenia `kubectl create` do stworzenia Deploymentu, który będzie zarządzał Podem. Pod uruchamia kontener
@@ -118,7 +140,7 @@ wykorzystując podany obraz Dockera.
 
 Domyślnie Pod jest dostępny tylko poprzez swój wewnętrzny adres IP
 wewnątrz klastra Kubernetes. Aby kontener `hello-node` był osiągalny spoza
-wirtualnej sieci Kubernetes, musisz najpierw udostępnić Pod
+wirtualnej sieci Kubernetesa, musisz najpierw udostępnić Pod
 jako [*Serwis*](/docs/concepts/services-networking/service/) Kubernetes.
 
 1. Udostępnij Pod w Internecie przy pomocy polecenia `kubectl expose`:
@@ -205,10 +227,10 @@ Narzędzie minikube dysponuje zestawem wbudowanych {{< glossary_tooltip text="do
     Wynik powinien wyglądać podobnie do:
 
     ```
-    metrics-server was successfully enabled
+    The 'metrics-server' addon is enabled
     ```
 
-3. Sprawdź Pod i Serwis, który właśnie stworzyłeś:
+3. Sprawdź Pody i Serwisy, który właśnie stworzyłeś:
 
     ```shell
     kubectl get pod,svc -n kube-system
diff --git a/content/pl/docs/tutorials/kubernetes-basics/create-cluster/_index.md b/content/pl/docs/tutorials/kubernetes-basics/create-cluster/_index.md
index 39a9c3537a..01183f744a 100644
--- a/content/pl/docs/tutorials/kubernetes-basics/create-cluster/_index.md
+++ b/content/pl/docs/tutorials/kubernetes-basics/create-cluster/_index.md
@@ -2,3 +2,5 @@
 title: Tworzenie klastra
 weight: 10
 ---
+
+Poznaj {{< glossary_tooltip text="klaster" term_id="cluster" length="all" >}} Kubernetesa i naucz się, jak stworzyć jego prostą wersję przy pomocy Minikube.
diff --git a/content/pl/docs/tutorials/kubernetes-basics/create-cluster/cluster-interactive.html b/content/pl/docs/tutorials/kubernetes-basics/create-cluster/cluster-interactive.html
index 72409e9238..43997fa589 100644
--- a/content/pl/docs/tutorials/kubernetes-basics/create-cluster/cluster-interactive.html
+++ b/content/pl/docs/tutorials/kubernetes-basics/create-cluster/cluster-interactive.html
@@ -25,7 +25,8 @@ weight: 20
         </div>
         <div class="row">
             <div class="col-md-12">
-                <a class="btn btn-lg btn-success" href="/pl/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro/" role="button">Przejdź do modułu 2<span class="btn__next">›</span></a>
+                <a class="btn btn-lg btn-success" href="/pl/docs/tutorials/kubernetes-basics/" role="button">Początek<span class=""></span></a>
+                <a class="btn btn-lg btn-success" href="/pl/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro/" role="button">Przejdź do modułu 2 &gt;<span class=""></span></a>
             </div>
         </div>
 
diff --git a/content/pl/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro.html b/content/pl/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro.html
index c5eddaf5f9..5c2ad0ebdb 100644
--- a/content/pl/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro.html
+++ b/content/pl/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro.html
@@ -29,11 +29,11 @@ weight: 10
             <div class="col-md-8">
                 <h3>Klaster Kubernetes</h3>
                 <p>
-                <b>Zadaniem Kubernetes jest koordynacja wysoko dostępnego klastra komputerów działającego jako jedna całość.</b> Obiekty abstrakcyjne Kubernetes pozwalają instalować (uruchamiać) aplikacje w kontenerach bez przypisywania ich do konkretnej maszyny. Aby móc korzystać z tego nowego modelu instalacji, aplikacje muszą być przygotowane w taki sposób, aby były niezależne od konkretnego serwera: muszą być skonteneryzowane. Aplikacje w kontenerach są bardziej elastyczne przy instalacji, niż to miało miejsce w poprzednich modelach, kiedy aplikacje były instalowane bezpośrednio na konkretne maszyny jako pakiety ściśle powiązane z konkretną maszyną. <b>Kubernetes automatyzuje dystrybucję i zlecanie uruchamiania aplikacji na klastrze w bardziej efektywny sposób.</b> Kubernetes jest platformą otwartego oprogramowania, gotowym do pracy w środowiskach produkcyjnych.
+                <b>Zadaniem Kubernetesa jest zarządzanie klastrem komputerów o wysokiej dostępności, działającego jako jedna całość.</b> Kubernetes, poprzez swój system obiektów abstrakcyjnych, umożliwia uruchamianie aplikacji w kontenerach bez przypisywania ich do konkretnej maszyny. Aby móc korzystać z tego nowego modelu instalacji, aplikacje muszą być przygotowane w taki sposób, aby były niezależne od konkretnego serwera: muszą być skonteneryzowane. Aplikacje w kontenerach są bardziej elastyczne przy instalacji, niż to miało miejsce w poprzednich modelach, kiedy aplikacje były instalowane bezpośrednio na konkretne maszyny jako pakiety ściśle powiązane z tą maszyną. <b>Kubernetes automatyzuje dystrybucję i zlecanie uruchamiania aplikacji na klastrze w bardziej efektywny sposób.</b> Kubernetes jest platformą otwartego oprogramowania, gotowym do pracy w środowiskach produkcyjnych.
                 </p>
                 <p>Klaster Kubernetes składa się z dwóch rodzajów zasobów:
                     <ul>
-                        <li><b>Master</b> koordynuje działanie klastra</li>
+                        <li><b>Warstwa sterowania</b> koordynuje działanie klastra</li>
                         <li>Na <b>węzłach <i>(nodes)</i></b> uruchamiane są aplikacje</li>
                     </ul>
                 </p>
@@ -71,22 +71,22 @@ weight: 10
 
         <div class="row">
             <div class="col-md-8">
-                <p><b>Master odpowiada za zarządzanie klastrem.</b> Master koordynuje wszystkie działania klastra, takie jak zlecanie uruchomienia aplikacji, utrzymywanie pożądanego stanu aplikacji, skalowanie aplikacji i instalowanie nowych wersji.</p>
-                <p><b>Węzeł to maszyna wirtualna (VM) lub fizyczny serwer, który jest maszyną roboczą w klastrze Kubernetes.</b> Na każdym węźle działa Kubelet, agent zarządzający tym węzłem i komunikujący się z masterem Kubernetes. Węzeł zawiera także narzędzia do obsługi kontenerów, takie jak containerd lub Docker. Klaster Kubernetes w środowisku produkcyjnym powinien składać się minimum z trzech węzłów.</p>
+                <p><b>Warstwa sterowania odpowiada za zarządzanie klastrem.</b> Warstwa sterowania koordynuje wszystkie działania klastra, takie jak zlecanie uruchomienia aplikacji, utrzymywanie pożądanego stanu aplikacji, skalowanie aplikacji i instalowanie nowych wersji.</p>
+                <p><b>Węzeł to maszyna wirtualna (VM) lub fizyczny serwer, który jest maszyną roboczą w klastrze Kubernetes.</b> Na każdym węźle działa Kubelet, agent zarządzający tym węzłem i komunikujący się z warstwą sterowania Kubernetesa. Węzeł zawiera także narzędzia do obsługi kontenerów, takie jak containerd lub Docker. Klaster Kubernetes w środowisku produkcyjnym powinien składać się minimum z trzech węzłów, ponieważ w przypadku awarii jednego węzła traci się zarówno element etcd, jak i warstwy sterowania i w ten sposób minimalną nadmiarowość (<em>redundancy</em>). Dodanie kolejnych węzłów warstwy sterowania może temu zapobiec.</p></p>
 
             </div>
             <div class="col-md-4">
                 <div class="content__box content__box_fill">
-                    <p><i>Węzły typu master zarządzają klastrem i węzłami wykorzystywanymi do uruchamiania aplikacji. </i></p>
+                    <p><i>Warstwa sterowania zarządza klastrem i węzłami wykorzystywanymi do uruchamiania aplikacji.</i></p>
                 </div>
             </div>
         </div>
 
         <div class="row">
             <div class="col-md-8">
-                <p>Kiedy instalujesz aplikację na Kubernetes, polecasz masterowi uruchomienie kontenera z aplikacją. Master zleca uruchomienie kontenera na węzłach klastra. <b>Węzły komunikują się z masterem przy użyciu <a href="/docs/concepts/overview/kubernetes-api/">Kubernetes API</a></b>, wystawianego przez mastera. Użytkownicy końcowi mogą korzystać bezpośrednio z Kubernetes API do komunikacji z klastrem.</p>
+                <p>Kiedy instalujesz aplikację na Kubernetesie, zlecasz warstwie sterowania uruchomienie kontenera z aplikacją. Warstwa sterowania zleca uruchomienie kontenera na węzłach klastra. <b>Węzły komunikują się z warstwą sterowania przy użyciu <a href="/docs/concepts/overview/kubernetes-api/">API Kubernetesa</a></b>, udostępnianego poprzez warstwę sterowania. Użytkownicy końcowi mogą korzystać bezpośrednio z API Kubernetesa do komunikacji z klastrem.</p>
 
-                <p>Klaster Kubernetes może być zainstalowany zarówno na fizycznych, jak i na maszynach wirtualnych. Aby wypróbować Kubernetes, można też wykorzystać  Minikube.  Minikube to "lekka" implementacja Kubernetes, która tworzy VM na maszynie lokalnej i instaluje prosty klaster składający się tylko z jednego węzła. Minikube jest dostępne na systemy Linux, macOS i  Windows. Narzędzie linii poleceń Minikube obsługuje podstawowe operacje na klastrze, takie jak start, stop, informacje o stanie i usunięcie klastra. Na potrzeby tego samouczka wykorzystamy jednak terminal online z zainstalowanym już wcześniej Minikube.</p>
+                <p>Klaster Kubernetes może być zainstalowany zarówno na fizycznych, jak i na maszynach wirtualnych. Aby wypróbować Kubernetesa, można też wykorzystać Minikube. Minikube to "lekka" implementacja Kubernetesa, która tworzy VM na maszynie lokalnej i instaluje prosty klaster składający się tylko z jednego węzła. Minikube jest dostępny na systemy Linux, macOS i  Windows. Narzędzie linii poleceń Minikube obsługuje podstawowe operacje na klastrze, takie jak start, stop, prezentacja informacji jego stanie i usunięcie klastra. Na potrzeby tego samouczka wykorzystamy jednak terminal online z zainstalowanym już wcześniej Minikube.</p>
 
                 <p>Teraz, kiedy już wiesz, co to jest Kubernetes, przejdźmy do samouczka online i stwórzmy nasz pierwszy klaster!</p>
 
diff --git a/content/pl/docs/tutorials/kubernetes-basics/deploy-app/deploy-interactive.html b/content/pl/docs/tutorials/kubernetes-basics/deploy-app/deploy-interactive.html
index 954bad22b3..39403ee0e9 100644
--- a/content/pl/docs/tutorials/kubernetes-basics/deploy-app/deploy-interactive.html
+++ b/content/pl/docs/tutorials/kubernetes-basics/deploy-app/deploy-interactive.html
@@ -38,7 +38,9 @@ weight: 20
         </div>
         <div class="row">
             <div class="col-md-12">
-                <a class="btn btn-lg btn-success" href="/pl/docs/tutorials/kubernetes-basics/explore/explore-intro/" role="button">Przejdź do modułu 3<span class="btn__next">›</span></a>
+                <a class="btn btn-lg btn-success" href="/pl/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro/" role="button"> &lt; Powrót do modułu 1<span class=""></span></a>
+                <a class="btn btn-lg btn-success" href="/pl/docs/tutorials/kubernetes-basics/" role="button">Początek<span class=""></span></a>
+                <a class="btn btn-lg btn-success" href="/pl/docs/tutorials/kubernetes-basics/explore/explore-intro/" role="button">Przejdź do modułu 3 &gt;<span class=""></span></a>
             </div>
         </div>
 
diff --git a/content/pl/docs/tutorials/kubernetes-basics/explore/explore-interactive.html b/content/pl/docs/tutorials/kubernetes-basics/explore/explore-interactive.html
index 14afae5a3d..35cfb12da8 100644
--- a/content/pl/docs/tutorials/kubernetes-basics/explore/explore-interactive.html
+++ b/content/pl/docs/tutorials/kubernetes-basics/explore/explore-interactive.html
@@ -29,7 +29,9 @@ weight: 20
         </div>
         <div class="row">
             <div class="col-md-12">
-                <a class="btn btn-lg btn-success" href="/pl/docs/tutorials/kubernetes-basics/expose/expose-intro/" role="button">Przejdź do modułu 4<span class="btn__next">›</span></a>
+                <a class="btn btn-lg btn-success" href="/pl/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro/" role="button">&lt; Powrót do modułu 2<span class="btn"></span></a>
+                <a class="btn btn-lg btn-success" href="/pl/docs/tutorials/kubernetes-basics/" role="button">Początek<span class=""></span></a>
+                <a class="btn btn-lg btn-success" href="/pl/docs/tutorials/kubernetes-basics/expose/expose-intro/" role="button">Przejdź do modułu 4 &gt;<span class="btn"></span></a>
             </div>
         </div>
 
diff --git a/content/pl/docs/tutorials/kubernetes-basics/explore/explore-intro.html b/content/pl/docs/tutorials/kubernetes-basics/explore/explore-intro.html
index f62563e1cd..5dfb79a328 100644
--- a/content/pl/docs/tutorials/kubernetes-basics/explore/explore-intro.html
+++ b/content/pl/docs/tutorials/kubernetes-basics/explore/explore-intro.html
@@ -74,11 +74,11 @@ weight: 10
         <div class="row">
             <div class="col-md-8">
                 <h2>Węzły</h2>
-                <p>Pod jest uruchamiany na <b>węźle <em>(Node)</em></b>. Węzeł jest maszyną roboczą, fizyczną lub wirtualną, w zależności od klastra. Każdy z węzłów jest zarządzany przez węzeł główny <em>(Master)</em>. Węzeł może zawierać wiele podów. Kubernetes master automatycznie zleca uruchomienie podów na różnych węzłach w ramach klastra. Automatyczne zlecanie uruchomienia bierze pod uwagę zasoby dostępne na każdym z węzłów.</p>
+                <p>Pod jest uruchamiany na <b>węźle <em>(Node)</em></b>. Węzeł jest maszyną roboczą, fizyczną lub wirtualną, w zależności od klastra. Każdy z węzłów jest zarządzany przez warstwę sterowania <em>(Control Plane)</em>. Węzeł może zawierać wiele podów. Warstwa sterowania Kubernetesa automatycznie zleca uruchomienie podów na różnych węzłach w ramach klastra. Automatyczne zlecanie uruchomienia bierze pod uwagę zasoby dostępne na każdym z węzłów.</p>
 
                 <p>Na każdym węźle Kubernetes działają co najmniej:</p>
                 <ul>
-                    <li>Kubelet, proces odpowiedzialny za komunikację pomiędzy Kubernetes Master i węzłami; zarządza podami i kontenerami działającymi na maszynie.</li>
+                    <li>Kubelet, proces odpowiedzialny za komunikację pomiędzy warstwą sterowania Kubernetesa i węzłami; zarządza podami i kontenerami działającymi na maszynie.</li>
                     <li>Proces wykonawczy kontenera (np. Docker), który zajmuje się pobraniem obrazu dla kontenera z repozytorium, rozpakowaniem kontenera i uruchomieniem aplikacji.</li>
                 </ul>
 
diff --git a/content/pl/docs/tutorials/kubernetes-basics/expose/expose-interactive.html b/content/pl/docs/tutorials/kubernetes-basics/expose/expose-interactive.html
index 1aefa3e793..278fca5f89 100644
--- a/content/pl/docs/tutorials/kubernetes-basics/expose/expose-interactive.html
+++ b/content/pl/docs/tutorials/kubernetes-basics/expose/expose-interactive.html
@@ -26,7 +26,9 @@ weight: 20
         </div>
         <div class="row">
             <div class="col-md-12">
-                <a class="btn btn-lg btn-success" href="/pl/docs/tutorials/kubernetes-basics/scale/scale-intro/" role="button">Przejdź do modułu 5<span class="btn__next">›</span></a>
+                <a class="btn btn-lg btn-success" href="/pl/docs/tutorials/kubernetes-basics/explore/explore-intro/" role="button">&lt; Powrót do modułu 3<span class=""></span></a>
+                <a class="btn btn-lg btn-success" href="/pl/docs/tutorials/kubernetes-basics/" role="button">Początek<span class=""></span></a>
+                <a class="btn btn-lg btn-success" href="/pl/docs/tutorials/kubernetes-basics/scale/scale-intro/" role="button">Przejdź do modułu 5 &gt;<span class=""></span></a>
             </div>
         </div>
 
diff --git a/content/pl/docs/tutorials/kubernetes-basics/expose/expose-intro.html b/content/pl/docs/tutorials/kubernetes-basics/expose/expose-intro.html
index 199ab9dfe7..8142e84d3e 100644
--- a/content/pl/docs/tutorials/kubernetes-basics/expose/expose-intro.html
+++ b/content/pl/docs/tutorials/kubernetes-basics/expose/expose-intro.html
@@ -19,7 +19,7 @@ weight: 10
 			<div class="col-md-8">
     		<h3>Cele</h3>
 				<ul>
-					<li>Poznać Serwis w Kubernetes</li>
+					<li>Poznać Serwis w Kubernetesie</li>
 					<li>Zrozumieć, jak obiekty Label i LabelSelector są powiązane z Serwisem</li>
 					<li>Udostępnić aplikację na zewnątrz klastra Kubernetes korzystając z Serwisu</li>
 				</ul>
@@ -37,7 +37,7 @@ weight: 10
 				<li><i>ClusterIP</i> (domyślnie) - Wystawia serwis poprzez wewnętrzny adres IP w klastrze. W ten sposób serwis jest dostępny tylko wewnątrz klastra.</li>
 				<li><i>NodePort</i> - Wystawia serwis na tym samym porcie na każdym z wybranych węzłów klastra przy pomocy NAT. W ten sposób serwis jest dostępny z zewnątrz klastra poprzez <code>&lt;NodeIP&gt;:&lt;NodePort&gt;</code>. Nadzbiór ClusterIP.</li>
 				<li><i>LoadBalancer</i> - Tworzy zewnętrzny load balancer u bieżącego dostawcy usług chmurowych (o ile jest taka możliwość) i przypisuje serwisowi stały, zewnętrzny adres IP. Nadzbiór NodePort.</li>
-				<li><i>ExternalName</i> - Wystawia Service przy pomocy wybranej nazwy (wyspecyfikowanej jako <code>externalName</code>) poprzez zwracanie wartości rekordu CNAME przypisanego w usłudze DNS. W tym przypadku nie jest wykorzystywany proces przekierowania ruchu metodą proxy. Ten typ wymaga wersji v1.7 lub wyższej usługi <code>kube-dns</code>.</li>
+				<li><i>ExternalName</i> - Przypisuje Service do <code>externalName</code> (np. <code>foo.bar.example.com</code>), zwracając rekord <code>CNAME</code> wraz z zawartością. W tym przypadku nie jest wykorzystywany proces przekierowania ruchu metodą proxy. Ta metoda wymaga <code>kube-dns</code> w wersji v1.7 lub wyższej lub CoreDNS w wersji 0.0.8 lub wyższej.</li>
 			</ul>
 			<p>Więcej informacji na temat różnych typów serwisów znajduje się w  samouczku <a href="/docs/tutorials/services/source-ip/">Używanie adresu źródłowego (Source IP)</a>. Warto też zapoznać się z <a href="/docs/concepts/services-networking/connect-applications-service">Łączeniem Aplikacji z Serwisami</a>.</p>
 			<p>W pewnych przypadkach w serwisie nie specyfikuje się <code>selector</code>. Serwis, który został stworzony bez pola <code>selector</code>, nie utworzy odpowiedniego obiektu Endpoints. W ten sposób użytkownik ma możliwość ręcznego przyporządkowania serwisu do konkretnych endpoints. Inny przypadek, kiedy nie używa się selektora, ma miejsce, kiedy stosujemy <code>type: ExternalName</code>.</p>
@@ -52,7 +52,7 @@ weight: 10
 					</ul>
 				</div>
 				<div class="content__box content__box_fill">
-						<p><i>Serwis Kubernetes to warstwa abstrakcji, która definiuje logiczny zbiór Podów i umożliwia kierowanie ruchu przychodzącego do Podów, jego równoważenie oraz service discovery.</i></p>
+						<p><i>Serwis Kubernetesa to warstwa abstrakcji, która definiuje logiczny zbiór Podów i umożliwia kierowanie ruchu przychodzącego do Podów, jego równoważenie oraz service discovery.</i></p>
 				</div>
 			</div>
 		</div>
diff --git a/content/pl/docs/tutorials/kubernetes-basics/scale/scale-interactive.html b/content/pl/docs/tutorials/kubernetes-basics/scale/scale-interactive.html
index 7990fbd1a6..028457a303 100644
--- a/content/pl/docs/tutorials/kubernetes-basics/scale/scale-interactive.html
+++ b/content/pl/docs/tutorials/kubernetes-basics/scale/scale-interactive.html
@@ -26,7 +26,9 @@ weight: 20
         </div>
         <div class="row">
             <div class="col-md-12">
-                <a class="btn btn-lg btn-success" href="/pl/docs/tutorials/kubernetes-basics/update/update-intro/" role="button">Przejdź do modułu 6<span class="btn__next">›</span></a>
+                <a class="btn btn-lg btn-success" href="/pl/docs/tutorials/kubernetes-basics/expose/expose-interactive/" role="button">&lt; Powrót do modułu 4<span class=""></span></a>
+                <a class="btn btn-lg btn-success" href="/pl/docs/tutorials/kubernetes-basics/" role="button">Początek<span class=""></span></a>
+                <a class="btn btn-lg btn-success" href="/pl/docs/tutorials/kubernetes-basics/update/update-intro/" role="button">Przejdź do modułu 6 &gt;<span class=""></span></a>
             </div>
         </div>
 
diff --git a/content/pl/docs/tutorials/kubernetes-basics/update/update-interactive.html b/content/pl/docs/tutorials/kubernetes-basics/update/update-interactive.html
index 5664abc0e6..00e329ee0c 100644
--- a/content/pl/docs/tutorials/kubernetes-basics/update/update-interactive.html
+++ b/content/pl/docs/tutorials/kubernetes-basics/update/update-interactive.html
@@ -26,7 +26,8 @@ weight: 20
         </div>
         <div class="row">
             <div class="col-md-12">
-                <a class="btn btn-lg btn-success" href="/pl/docs/tutorials/kubernetes-basics/" role="button">Z powrotem do Podstaw Kubernetes<span class="btn__next">›</span></a>
+                <a class="btn btn-lg btn-success" href="/pl/docs/tutorials/kubernetes-basics/scale/scale-interactive/" role="button">&lt; Powrót do modułu 5<span class=""></span></a>
+                <a class="btn btn-lg btn-success" href="/pl/docs/tutorials/kubernetes-basics/" role="button">Z powrotem do Podstaw Kubernetesa<span class=""></span></a>
             </div>
         </div>
     </main>
diff --git a/content/pl/releases/_index.md b/content/pl/releases/_index.md
index 46c2a7659f..a5cb3fdc52 100644
--- a/content/pl/releases/_index.md
+++ b/content/pl/releases/_index.md
@@ -7,7 +7,7 @@ type: docs
 
 <!-- overview -->
 
-Projekt Kubernetes zapewnia wsparcie dla trzech ostatnich wydań _minor_ ({{< skew latestVersion >}}, {{< skew prevMinorVersion >}}, {{< skew oldestMinorVersion >}}). Poprawki do wydania 1.19 i nowszych będą publikowane przez około rok. Kuberetes w wersji 1.18 i wcześniejszych będzie otrzymywał poprawki przez 9 miesięcy.
+Projekt Kubernetes zapewnia wsparcie dla trzech ostatnich wydań _minor_ ({{< skew latestVersion >}}, {{< skew prevMinorVersion >}}, {{< skew oldestMinorVersion >}}). Poprawki do wydania 1.19 i nowszych będą publikowane przez około rok. Kubernetes w wersji 1.18 i wcześniejszych będzie otrzymywał poprawki przez 9 miesięcy.
 
 Wersje Kubernetesa oznaczane są jako **x.y.z**,
 gdzie **x** jest oznaczeniem wersji głównej (_major_), **y** — podwersji (_minor_), a **z** — numer poprawki (_patch_), zgodnie z terminologią [Semantic Versioning](https://semver.org/).
diff --git a/content/pl/training/_index.html b/content/pl/training/_index.html
index 0fd093af3d..e8baf9555e 100644
--- a/content/pl/training/_index.html
+++ b/content/pl/training/_index.html
@@ -14,6 +14,9 @@ class: training
         <h2>Kariera <em>Cloud Native</em></h2>
         <p>Kubernetes stanowi serce całego ruchu <em>cloud native</em>. Korzystając ze szkoleń i certyfikacji oferowanych przez Linux Foundation i naszych partnerów zainwestujesz w swoją karierę, nauczysz się korzystać z Kubernetesa i sprawisz, że Twoje projekty <em>cloud native</em> osiągną sukces.</p>
       </div>
+      <div class="logo-certification cta-image" id="logo-kcnf">
+        <img src="/images/training/kubernetes-kcnf-white.svg" />
+      </div>
       <div class="logo-certification cta-image" id="logo-cka">
         <img src="/images/training/kubernetes-cka-white.svg"/>
       </div>
@@ -81,6 +84,15 @@ class: training
   <div class="main-section padded">
     <h2>Uzyskaj certyfikat Kubernetes</h2>
     <div class="col-container">
+      <div class="col-nav">
+          <h5>
+            <b>Kubernetes and Cloud Native Associate (KCNA)</b>
+          </h5>
+          <p>Egzamin Kubernetes and Cloud Native Associate (KCNA) potwierdza podstawowe umiejętności korzystania z Kubernetesa i ogólnie - ze środowiska <em>cloud native</em>.</p>
+          <p>Posiadacz KCNA rozumie pojęcia dotyczące całego ekosystemu <em>cloud native</em>, ze szczególnym uwzględnieniem Kubernetesa.</p>
+          <br>
+          <a href="https://training.linuxfoundation.org/certification/kubernetes-cloud-native-associate/" target="_blank" class="button">Przejdź do certyfikacji</a>
+      </div>
       <div class="col-nav">
           <h5>
             <b>Certified Kubernetes Application Developer (CKAD)</b>
diff --git a/content/pt-br/_index.html b/content/pt-br/_index.html
index 628047e85c..15782b8423 100644
--- a/content/pt-br/_index.html
+++ b/content/pt-br/_index.html
@@ -42,12 +42,12 @@ O Kubernetes é Open Source, o que te oferece a liberdade de utilizá-lo em seu
         <button id="desktopShowVideoButton" onclick="kub.showVideo()">Assista Video</button>
         <br>
         <br>
-        <a href="https://events.linuxfoundation.org/events/kubecon-cloudnativecon-europe-2019" button id="desktopKCButton">KubeCon em Barcelona on Maio 20-23, 2019</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccnceu22" id="desktopKCButton">KubeCon na Europa de 16 a 20 de maio de 2022</a>
         <br>
         <br>
         <br>
         <br>
-        <a href="https://www.lfasiallc.com/events/kubecon-cloudnativecon-china-2019" button id="desktopKCButton">KubeCon em Shanghai em Junho, 24-26 de 2019</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccncna22" button id="desktopKCButton">KubeCon na América do Norte de 24 a 28 de outubro de 2022</a>
 </div>
 <div id="videoPlayer">
     <iframe data-url="https://www.youtube.com/embed/H06qrNmGqyE?autoplay=1" frameborder="0" allowfullscreen></iframe>
diff --git a/content/pt-br/blog/_posts/2022-02-17-updated-dockershim-faq.md b/content/pt-br/blog/_posts/2022-02-17-updated-dockershim-faq.md
new file mode 100644
index 0000000000..77e1ce0e6f
--- /dev/null
+++ b/content/pt-br/blog/_posts/2022-02-17-updated-dockershim-faq.md
@@ -0,0 +1,207 @@
+---
+layout: blog
+title: "Atualizado: Perguntas frequentes (FAQ) sobre a remoção do Dockershim"
+date: 2022-02-17
+slug: dockershim-faq
+---
+
+**Esta é uma atualização do artigo original [FAQ sobre a depreciação do Dockershim](/blog/2020/12/02/dockershim-faq/),
+publicado no final de 2020.**
+
+Este documento aborda algumas perguntas frequentes sobre a
+descontinuação e remoção do _dockershim_, que foi
+[anunciado](/blog/2020/12/08/kubernetes-1-20-release-announcement/)
+como parte do lançamento do Kubernetes v1.20. Para obter mais detalhes sobre
+o que isso significa, confira a postagem do blog
+[Não entre em pânico: Kubernetes e Docker](/pt-br/blog/2020/12/02/dont-panic-kubernetes-and-docker/).
+
+Além disso, você pode ler [verifique se a remoção do dockershim afeta você](/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you/)
+para determinar qual impacto a remoção do _dockershim_ teria para você
+ou para sua organização.
+
+Como o lançamento do Kubernetes 1.24 se tornou iminente, estamos trabalhando bastante para tentar fazer uma transição suave.
+
+- Escrevemos uma postagem no blog detalhando nosso [compromisso e os próximos passos](/blog/2022/01/07/kubernetes-is-moving-on-from-dockershim/).
+- Acreditamos que não há grandes obstáculos para a migração para [outros agentes de execução de contêiner](/docs/setup/production-environment/container-runtimes/#container-runtimes).
+- Há também um guia [Migrando do dockershim](/docs/tasks/administer-cluster/migrating-from-dockershim/) disponível.
+- Também criamos uma página para listar
+  [artigos sobre a remoção do dockershim e sobre o uso de agentes de execução compatíveis com CRI](/docs/reference/node/topics-on-dockershim-and-cri-compatible-runtimes/). Essa lista inclui alguns dos documentos já mencionados e também 
+  abrange fontes externas selecionadas (incluindo guias de fornecedores).
+
+### Por que o _dockershim_ está sendo removido do Kubernetes?
+
+As primeiras versões do Kubernetes funcionavam apenas com um ambiente de execução de contêiner específico:
+Docker Engine. Mais tarde, o Kubernetes adicionou suporte para trabalhar com outros agentes de execução de contêiner.
+O padrão CRI (_Container Runtime Interface_ ou Interface de Agente de Execução de Containers) foi [criado](/blog/2016/12/container-runtime-interface-cri-in-kubernetes/) para
+habilitar a interoperabilidade entre orquestradores (como Kubernetes) e diferentes agentes
+de execução de contêiner.
+O Docker Engine não implementa essa interface (CRI), então o projeto Kubernetes criou um
+código especial para ajudar na transição, e tornou esse código _dockershim_ parte do projeto 
+Kubernetes.
+
+O código _dockershim_ sempre foi destinado a ser uma solução temporária (daí o nome: _shim_).
+Você pode ler mais sobre a discussão e o planejamento da comunidade na
+[Proposta de remoção do Dockershim para aprimoramento do Kubernetes][drkep].
+Na verdade, manter o _dockershim_ se tornou um fardo pesado para os mantenedores do Kubernetes.
+
+Além disso, recursos que são amplamente incompatíveis com o _dockershim_, como
+_cgroups v2_ e _namespaces_ de usuário estão sendo implementados nos agentes de execução de CRI
+mais recentes. A remoção do suporte para o _dockershim_ permitirá um maior
+desenvolvimento nessas áreas.
+
+[drkep]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2221-remove-dockershim
+
+### Ainda posso usar o Docker Engine no Kubernetes 1.23?
+
+Sim, a única coisa que mudou na versão 1.20 é a presença de um aviso no log de inicialização
+do [kubelet] se estiver usando o Docker Engine como agente de execução de contêiner.
+Você verá este aviso em todas as versões até 1.23. A remoção do _dockershim_ ocorre no Kubernetes 1.24.
+
+[kubelet]: /docs/reference/command-line-tools-reference/kubelet/
+
+### Quando o _dockershim_ será removido?
+
+Dado o impacto dessa mudança, estamos definindo um cronograma de depreciação mais longo.
+A remoção do _dockershim_ está agendada para o Kubernetes v1.24, consulte a
+[Proposta de remoção do Dockershim para aprimoramento do Kubernetes][drkep].
+O projeto Kubernetes trabalhará em estreita colaboração com fornecedores e outros ecossistemas para garantir
+uma transição suave e avaliará os acontecimentos à medida que a situação for evoluindo.
+
+### Ainda posso usar o Docker Engine como meu agente de execução do contêiner?
+
+Primeiro, se você usa o Docker em seu próprio PC para desenvolver ou testar contêineres: nada muda.
+Você ainda pode usar o Docker localmente, independentemente dos agentes de execução de contêiner que
+você usa em seus Clusters Kubernetes. Os contêineres tornam esse tipo de interoperabilidade possível.
+
+Mirantis e Docker [comprometeram-se][mirantis] a manter um adaptador substituto para o
+Docker Engine, e a manter este adaptador mesmo após o _dockershim_ ser removido
+do Kubernetes. O adaptador substituto é chamado [`cri-dockerd`](https://github.com/Mirantis/cri-dockerd).
+
+[mirantis]: https://www.mirantis.com/blog/mirantis-to-take-over-support-of-kubernetes-dockershim-2/
+
+### Minhas imagens de contêiner existentes ainda funcionarão?
+
+Sim, as imagens produzidas a partir do `docker build` funcionarão com todas as implementações do CRI.
+Todas as suas imagens existentes ainda funcionarão exatamente da mesma forma.
+
+#### E as imagens privadas?
+
+Sim. Todos os agentes de execução de CRI são compatíveis com as mesmas configurações de segredos usadas no
+Kubernetes, seja por meio do PodSpec ou ServiceAccount.
+
+### Docker e contêineres são a mesma coisa?
+
+Docker popularizou o padrão de contêineres Linux e tem sido fundamental no 
+desenvolvimento desta tecnologia. No entanto, os contêineres já existiam
+no Linux há muito tempo. O ecossistema de contêineres cresceu para ser muito
+mais abrangente do que apenas Docker. Padrões como o OCI e o CRI ajudaram muitas
+ferramentas a crescer e prosperar no nosso ecossistema, alguns substituindo
+aspectos do Docker, enquanto outros aprimoram funcionalidades já existentes.
+
+### Existem exemplos de pessoas que usam outros agentes de execução de contêineres em produção hoje?
+
+Todos os artefatos produzidos pelo projeto Kubernetes (binários Kubernetes) são validados
+a cada lançamento de versão.
+
+Além disso, o projeto [kind] vem usando containerd há algum tempo e tem
+visto uma melhoria na estabilidade para seu caso de uso. Kind e containerd são executados
+várias vezes todos os dias para validar quaisquer alterações na base de código do Kubernetes.
+Outros projetos relacionados seguem um padrão semelhante, demonstrando a estabilidade e
+usabilidade de outros agentes de execução de contêiner. Como exemplo, o OpenShift 4.x utiliza
+o agente de execução [CRI-O] em produção desde junho de 2019.
+
+Para outros exemplos e referências, dê uma olhada em projetos adeptos do containerd e
+CRI-O, dois agentes de execução de contêineres sob o controle da _Cloud Native Computing Foundation_
+([CNCF]).
+
+- [containerd](https://github.com/containerd/containerd/blob/master/ADOPTERS.md)
+- [CRI-O](https://github.com/cri-o/cri-o/blob/master/ADOPTERS.md)
+
+[CRI-O]: https://cri-o.io/
+[kind]: https://kind.sigs.k8s.io/
+[CNCF]: https://cncf.io
+
+### As pessoas continuam referenciando OCI, o que é isso?
+
+OCI significa _[Open Container Initiative]_ (ou Iniciativa Open Source de Contêineres), que padronizou muitas das
+interfaces entre ferramentas e tecnologias de contêiner. Eles mantêm uma
+especificação padrão para imagens de contêiner (OCI image-spec) e para 
+contêineres em execução (OCI runtime-spec). Eles também mantêm uma implementação real
+da especificação do agente de execução na forma de [runc], que é o agente de execução padrão 
+para ambos [containerd] e [CRI-O]. O CRI baseia-se nessas especificações de baixo nível para
+fornecer um padrão de ponta a ponta para gerenciar contêineres.
+
+[Open Container Initiative]: https://opencontainers.org/about/overview/
+[runc]: https://github.com/opencontainers/runc
+[containerd]: https://containerd.io/
+
+### Qual implementação de CRI devo usar?
+
+Essa é uma pergunta complexa e depende de muitos fatores. Se você estiver
+trabalhando com Docker, mudar para containerd deve ser uma troca relativamente fácil e
+terá um desempenho estritamente melhor e menos sobrecarga. No entanto, nós encorajamos você a
+explorar todas as opções do [cenário CNCF], pois outro agente de execução de contêiner
+pode funcionar ainda melhor para o seu ambiente.
+
+[cenário CNCF]: https://landscape.cncf.io/card-mode?category=container-runtime&grouping=category
+
+### O que devo ficar atento ao mudar a minha implementação de CRI utilizada?
+
+Embora o código de conteinerização base seja o mesmo entre o Docker e a maioria dos
+CRIs (incluindo containerd), existem algumas poucas diferenças. Alguns
+pontos a se considerar ao migrar são:
+
+- Configuração de _log_
+- Limitações de recursos de agentes de execução
+- Scripts de provisionamento que chamam o docker ou usam o docker por meio de seu soquete de controle
+- Plugins kubectl que exigem CLI do docker ou o soquete de controle
+- Ferramentas do projeto Kubernetes que requerem acesso direto ao Docker Engine
+  (por exemplo: a ferramenta depreciada `kube-imagepuller`)
+- Configuração de funcionalidades como `registry-mirrors` e _registries_ inseguros
+- Outros scripts de suporte ou _daemons_ que esperam que o Docker Engine esteja disponível e seja executado
+  fora do Kubernetes (por exemplo, agentes de monitoramento ou segurança)
+- GPUs ou hardware especial e como eles se integram ao seu agente de execução e ao Kubernetes
+
+Se você usa solicitações ou limites de recursos do Kubernetes ou usa DaemonSets para coleta de logs
+em arquivos, eles continuarão a funcionar da mesma forma. Mas se você personalizou
+sua configuração `dockerd`, você precisará adaptá-la para seu novo agente de execução de
+contêiner assim que possível.
+
+Outro aspecto a ser observado é que ferramentas para manutenção do sistema ou execuções dentro de um
+contêiner no momento da criação de imagens podem não funcionar mais. Para o primeiro, a ferramenta 
+[`crictl`][cr] pode ser utilizada como um substituto natural (veja 
+[migrando do docker cli para o crictl](https://kubernetes.io/docs/tasks/debug/debug-cluster/crictl/#mapping-from-docker-cli-to-crictl))
+e para o último, você pode usar novas opções de construções de contêiner, como [img], [buildah],
+[kaniko], ou [buildkit-cli-for-kubectl] que não requerem Docker.
+
+[cr]: https://github.com/kubernetes-sigs/cri-tools
+[img]: https://github.com/genuinetools/img
+[buildah]: https://github.com/containers/buildah
+[kaniko]: https://github.com/GoogleContainerTools/kaniko
+[buildkit-cli-for-kubectl]: https://github.com/vmware-tanzu/buildkit-cli-for-kubectl
+
+Para containerd, você pode começar com sua [documentação] para ver quais opções de configuração
+estão disponíveis à medida que você vá realizando a migração.
+
+[documentação]: https://github.com/containerd/cri/blob/master/docs/registry.md
+
+Para obter instruções sobre como usar containerd e CRI-O com Kubernetes, consulte o
+documentação do Kubernetes em [Agentes de execução de contêineres]
+
+[Agentes de execução de contêineres]: /docs/setup/production-environment/container-runtimes/
+
+### E se eu tiver mais perguntas?
+
+Se você usa uma distribuição do Kubernetes com suporte do fornecedor, pode perguntar a eles sobre
+planos de atualização para seus produtos. Para perguntas de usuário final, poste-as
+no nosso fórum da comunidade de usuários: https://discuss.kubernetes.io/.
+
+Você também pode conferir a excelente postagem do blog
+[Espere, o Docker está depreciado no Kubernetes agora?][dep], uma discussão técnica mais aprofundada
+sobre as mudanças.
+
+[dep]: https://dev.to/inductor/wait-docker-is-deprecated-in-kubernetes-now-what-do-i-do-e4m
+
+### Posso ganhar um abraço?
+
+Sim, ainda estamos dando abraços se solicitado. 🤗🤗🤗
diff --git a/content/pt-br/community/_index.html b/content/pt-br/community/_index.html
index 87fb5385d9..c281581df8 100644
--- a/content/pt-br/community/_index.html
+++ b/content/pt-br/community/_index.html
@@ -8,7 +8,7 @@ cid: community
     <main>
         <div class="content">
             <h3>Garantir que o Kubernetes funcione bem em todos os lugares e para todos.</h3>
-            <p>Conecte-se à comunidade do Kubernetes no nosso canal <a href="http://slack.k8s.io/">canal do Slack</a>, <a href="https://discuss.kubernetes.io/"> no fórum de discussão</a>, ou participe do grupo <a href="https://groups.google.com/forum/#!forum/kubernetes-dev">Kubernetes-dev Google group</a>. 
+            <p>Conecte-se à comunidade do Kubernetes no nosso canal <a href="http://slack.k8s.io/">canal do Slack</a>, <a href="https://discuss.kubernetes.io/"> no fórum de discussão</a>, ou participe do grupo <a href="https://groups.google.com/a/kubernetes.io/g/dev/">dev@kubernetes Google group</a>. 
                 Uma reunião semanal da comunidade é realizada por meio de videoconferência para discutir o estado das coisas. Veja essas 
 		<a href="https://github.com/kubernetes/community/blob/master/events/community-meeting.md">instruções </a> para obter informações sobre como participar.</p>
             <p>Você também pode participar do Kubernetes em todo o mundo através de nossa
diff --git a/content/pt-br/docs/concepts/architecture/nodes.md b/content/pt-br/docs/concepts/architecture/nodes.md
new file mode 100644
index 0000000000..b28544f40b
--- /dev/null
+++ b/content/pt-br/docs/concepts/architecture/nodes.md
@@ -0,0 +1,385 @@
+---
+title: Nós
+content_type: conceito
+weight: 10
+---
+
+<!-- overview -->
+
+O Kubernetes executa sua carga de trabalho colocando contêineres em Pods para serem executados em _Nós_. Um nó pode ser uma máquina virtual ou física, dependendo do cluster. Cada nó é gerenciado pela {{< glossary_tooltip text="camada de gerenciamento" term_id="control-plane" >}} e contém os serviços necessários para executar {{< glossary_tooltip text="Pods" term_id="pod" >}}.
+
+Normalmente, você tem vários nós em um cluster; em um ambiente de aprendizado ou limitado por recursos, você pode ter apenas um nó.
+
+Os [componentes](/docs/concepts/overview/components/#node-components) em um nó incluem o {{< glossary_tooltip text="kubelet" term_id="kubelet" >}}, um {{< glossary_tooltip text="agente de execução de contêiner" term_id="container-runtime" >}}, e o {{< glossary_tooltip text="kube-proxy" term_id="kube-proxy" >}}.
+
+<!-- body -->
+
+## Administração
+
+Existem duas maneiras principais de adicionar Nós ao {{< glossary_tooltip text="Servidor da API" term_id="kube-apiserver" >}}:
+
+1. O kubelet em um nó se registra automaticamente na camada de gerenciamento
+2. Você (ou outro usuário humano) adiciona manualmente um objeto Nó
+
+Depois de criar um {{< glossary_tooltip text="objeto" term_id="object" >}} Nó, ou o kubelet em um nó se registra automaticamente, a camada de gerenciamento verifica se o novo objeto Nó é válido. Por exemplo, se você tentar criar um nó a partir do seguinte manifesto JSON:
+
+```json
+{
+  "kind": "Node",
+  "apiVersion": "v1",
+  "metadata": {
+    "name": "10.240.79.157",
+    "labels": {
+      "name": "my-first-k8s-node"
+    }
+  }
+}
+```
+
+O Kubernetes cria um objeto nó internamente (a representação). O Kubernetes verifica se um kubelet se registrou no servidor da API que corresponde ao campo `metadata.name` do Nó. Se o nó estiver íntegro (ou seja, todos os serviços necessários estiverem em execução), ele será elegível para executar um Pod. Caso contrário, esse nó é ignorado para qualquer atividade de cluster até que se torne íntegro.
+
+{{< note >}}
+O Kubernetes mantém o objeto nó inválido e continua verificando se ele se torna íntegro.
+
+Você, ou um {{< glossary_tooltip term_id="controller" text="controlador">}}, deve excluir explicitamente o objeto Nó para interromper essa verificação de integridade.
+{{< /note >}}
+
+O nome de um objeto nó deve ser um nome de [subdomínio válido de DNS](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
+
+### Singularidade de nome do nó
+
+O [nome](/docs/concepts/overview/working-with-objects/names#names) identifica um nó. Dois nós não podem ter o mesmo nome ao mesmo tempo. O Kubernetes também assume que um recurso com o mesmo nome é o mesmo objeto. No caso de um nó, assume-se implicitamente que uma instância usando o mesmo nome terá o mesmo estado (por exemplo, configurações de rede, conteúdo do disco raiz) e atributos como label de nó. Isso pode levar a inconsistências se uma instância for modificada sem alterar seu nome. Se o nó precisar ser substituído ou atualizado significativamente, o objeto Nó existente precisa ser removido do servidor da API primeiro e adicionado novamente após a atualização.
+
+### Auto-registro de Nós
+
+Quando a opção `--register-node` do kubelet for verdadeira (padrão), o kubelet tentará se registrar no servidor da API. Este é o padrão preferido, usado pela maioria das distribuições.
+
+Para auto-registro, o kubelet é iniciado com as seguintes opções:
+
+- `--kubeconfig` - O caminho das credenciais para se autenticar no servidor da API.
+- `--cloud-provider` - Como comunicar com um {{< glossary_tooltip text="provedor de nuvem" term_id="cloud-provider" >}}
+ para ler metadados sobre si mesmo.
+- `--register-node` - Registrar automaticamente no servidor da API.
+- `--register-with-taints` - Registra o nó com a lista fornecida de {{< glossary_tooltip text="taints" term_id="taint" >}} (separadas por vírgula `<key>=<value>:<effect>`).
+
+Não funciona se o `register-node` for falso.
+
+- `--node-ip` - endereço IP do nó.
+- `--node-labels` - {{< glossary_tooltip text="Labels" term_id="label" >}} a serem adicionados ao registrar o nó
+ no cluster (consulte as restrições de label impostas pelo [plug-in de admissão NodeRestriction](/docs/reference/access-authn-authz/admission-controllers/#noderestriction)).
+- `--node-status-update-frequency` - Especifica com que frequência o kubelet publica o status do nó no servidor da API.
+
+Quando o [modo de autorização do nó](/docs/reference/access-authn-authz/node/) e o [plug-in de admissão NodeRestriction](/docs/reference/access-authn-authz/admission-controllers/#noderestriction) estão ativados, os kubelets somente estarão autorizados a criar/modificar seu próprio recurso do nó.
+
+
+{{< note >}}
+Como mencionado na seção de [singularidade do nome do nó](#singularidade-de-nome-do-no), quando a configuração do nó precisa ser atualizada, é uma boa prática registrar novamente o nó no servidor da API. Por exemplo, se o kubelet estiver sendo reiniciado com o novo conjunto de `--node-labels`, mas o mesmo nome de nó for usado, a alteração não entrará em vigor, pois os labels estão sendo definidos no registro do Nó.
+
+Pods já agendados no Nó podem ter um comportamento anormal ou causar problemas se a configuração do Nó for alterada na reinicialização do kubelet. Por exemplo, o Pod já em execução pode estar marcado diferente dos labels atribuídos ao Nó, enquanto outros Pods, que são incompatíveis com esse Pod, serão agendados com base nesse novo label. O novo registro do nó garante que todos os Pods sejam drenados e devidamente reiniciados.
+{{< /note >}}
+
+### Administração manual de nós
+
+Você pode criar e modificar objetos Nó usando o {{< glossary_tooltip text="kubectl" term_id="kubectl" >}}.
+
+Quando você quiser manualmente criar objetos Nó, defina a opção do kubelet `--register-node=false`.
+
+Você pode modificar os objetos Nó, independentemente da configuração de `--register-node`. Por exemplo, você pode definir labels em um nó existente ou marcá-lo como não disponível.
+
+Você pode usar labels nos Nós em conjunto com seletores de nós nos Pods para controlar a disponibilidade. Por exemplo, você pode restringir um Pod a ser elegível apenas para ser executado em um subconjunto dos nós disponíveis.
+
+Marcar um nó como não disponível impede que o escalonador coloque novos pods nesse nó, mas não afeta os Pods existentes no nó. Isso é útil como uma etapa preparatória antes da reinicialização de um nó ou outra manutenção.
+
+Para marcar um nó como não disponível, execute:
+
+```shell
+kubectl cordon $NODENAME
+```
+
+Consulte [Drenar um nó com segurança](/docs/tasks/administer-cluster/safely-drain-node/) para obter mais detalhes.
+
+{{< note >}}
+Os Pods que fazem parte de um {{< glossary_tooltip term_id="daemonset" >}} toleram ser executados em um nó não disponível. Os DaemonSets geralmente fornecem serviços locais de nós que devem ser executados em um Nó, mesmo que ele esteja sendo drenado de aplicativos de carga de trabalho.
+{{< /note >}}
+
+## Status do Nó
+
+O status de um nó contém as seguintes informações:
+
+* [Endereços](#addresses)
+* [Condições](#condition)
+* [Capacidade](#capacity)
+* [Informação](#info)
+
+Você pode usar o `kubectl` para visualizar o status de um nó e outros detalhes:
+
+```shell
+kubectl describe node <insira-nome-do-nó-aqui>
+```
+
+Cada seção da saída está descrita abaixo.
+
+### Endereços
+
+O uso desses campos pode mudar dependendo do seu provedor de nuvem ou configuração dedicada.
+
+* HostName: O nome do host relatado pelo `kernel` do nó. Pode ser substituído através do parâmetro kubelet `--hostname-override`.
+* ExternalIP: Geralmente, o endereço IP do nó que é roteável externamente (disponível fora do `cluster`).
+* InternalIP: Geralmente, o endereço IP do nó que é roteável somente dentro do `cluster`.
+
+### Condições {#conditions}
+
+O campo `conditions` descreve o status de todos os nós em execução. Exemplos de condições incluem:
+
+{{< table caption = "Condições do nó e uma descrição de quando cada condição se aplica." >}}
+| Condições do nó      | Descrição |
+|----------------------|-------------|
+| `Ready`              | `True` Se o nó estiver íntegro e pronto para aceitar pods, `False` se o nó não estiver íntegro e não estiver aceitando pods, e desconhecido `Unknown` se o controlador do nó tiver sem notícias do nó no último `node-monitor-grace-period` (o padrão é de 40 segundos) |
+| `DiskPressure`       | `True` Se houver pressão sobre o tamanho do disco, ou seja, se a capacidade do disco for baixa; caso contrário `False` |
+| `MemoryPressure`     | `True` Se houver pressão na memória do nó, ou seja, se a memória do nó estiver baixa; caso contrário `False` |
+| `PIDPressure`        | `True` Se houver pressão sobre os processos, ou seja, se houver muitos processos no nó; caso contrário `False` |
+| `NetworkUnavailable` | `True` Se a rede do nó não estiver configurada corretamente, caso contrário `False` |
+{{< /table >}}
+
+{{< note >}}
+Se você usar as ferramentas de linha de comando para mostrar os detalhes de um nó isolado, a `Condition` inclui `SchedulingDisabled`. `SchedulingDisabled` não é uma condição na API do Kubernetes; em vez disso, os nós isolados são marcados como `Unschedulable` em suas especificações.
+{{< /note >}}
+
+Na API do Kubernetes, a condição de um nó é representada como parte do `.status` do recurso do nó. Por exemplo, a seguinte estrutura JSON descreve um nó íntegro:
+
+```json
+"conditions": [
+  {
+    "type": "Ready",
+    "status": "True",
+    "reason": "KubeletReady",
+    "message": "kubelet is posting ready status",
+    "lastHeartbeatTime": "2019-06-05T18:38:35Z",
+    "lastTransitionTime": "2019-06-05T11:41:27Z"
+  }
+]
+```
+
+Se o status da condição `Ready` permanecer desconhecido (`Unknown`) ou falso (`False`) por mais tempo do que o limite da remoção do pod (`pod-eviction-timeout`) (um argumento passado para o {{< glossary_tooltip text="kube-controller-manager" term_id="kube-controller-manager">}}), o [controlador de nó](#node-controller) acionará o {{< glossary_tooltip text="remoção iniciado pela API" term_id="api-eviction" >}} para todos os Pods atribuídos a esse nó. A duração padrão do tempo limite da remoção é de **cinco minutos**. Em alguns casos, quando o nó está inacessível, o servidor da API não consegue se comunicar com o kubelet no nó. A decisão de excluir os pods não pode ser comunicada ao kubelet até que a comunicação com o servidor da API seja restabelecida. Enquanto isso, os pods agendados para exclusão podem continuar a ser executados no nó particionado.
+
+O controlador de nós não força a exclusão dos pods até que seja confirmado que eles pararam de ser executados no cluster. Você pode ver os pods que podem estar sendo executados em um nó inacessível como estando no estado de terminando (`Terminating`) ou desconhecido (`Unknown`). Nos casos em que o Kubernetes não retirar da infraestrutura subjacente se um nó tiver deixado permanentemente um cluster, o administrador do cluster pode precisar excluir o objeto do nó manualmente. Excluir o objeto do nó do Kubernetes faz com que todos os objetos Pod em execução no nó sejam excluídos do servidor da API e libera seus nomes.
+
+Quando ocorrem problemas nos nós, a camada de gerenciamento do Kubernetes cria automaticamente [`taints`](/docs/concepts/scheduling-eviction/taint-and-toleration/) que correspondem às condições que afetam o nó. O escalonador leva em consideração as `taints` do Nó ao atribuir um Pod a um Nó. Os Pods também podem ter {{< glossary_tooltip text="tolerations" term_id="toleration" >}} que os permitem funcionar em um nó, mesmo que tenha uma `taint` específica.
+
+Consulte [Nó Taint por Condição](/pt-br/docs/concepts/scheduling-eviction/taint-and-toleration/#taints-por-condições-de-nó)
+para mais detalhes.
+
+### Capacidade e Alocável {#capacity}
+
+Descreve os recursos disponíveis no nó: CPU, memória e o número máximo de pods que podem ser agendados no nó.
+
+Os campos no bloco de capacidade indicam a quantidade total de recursos que um nó possui. O bloco alocado indica a quantidade de recursos em um nó que está disponível para ser consumido por Pods normais.
+
+Você pode ler mais sobre capacidade e recursos alocados enquanto aprende a [reservar recursos de computação](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable) em um nó.
+
+### Info
+
+Descreve informações gerais sobre o nó, como a versão do kernel, a versão do Kubernetes (versão do kubelet e kube-proxy), detalhes do tempo de execução do contêiner e qual sistema operacional o nó usa. O kubelet coleta essas informações do nó e as publica na API do Kubernetes.
+
+## Heartbeats
+
+Os `Heartbeats`, enviados pelos nós do Kubernetes, ajudam seu cluster a determinar a disponibilidade de cada nó e a agir quando as falhas forem detectadas.
+
+Para nós, existem duas formas de `heartbeats`:
+
+* atualizações para o `.status` de um Nó
+* Objetos [Lease](/docs/reference/kubernetes-api/cluster-resources/lease-v1/) dentro do {{< glossary_tooltip term_id="namespace" text="namespace">}} `kube-node-lease`. Cada nó tem um objeto de `Lease` associado.
+
+Em comparação com as atualizações no `.status` de um nó, um Lease é um recurso mais leve. O uso de Leases para `heartbeats` reduz o impacto no desempenho dessas atualizações para grandes clusters.
+
+O kubelet é responsável por criar e atualizar o `.status` dos Nós e por atualizar suas Leases relacionadas.
+
+- O kubelet atualiza o .status do nó quando há mudança de status ou se não houve atualização para um intervalo configurado. O intervalo padrão para atualizações .status para Nós é de 5 minutos, o que é muito maior do que o tempo limite padrão de 40 segundos para nós inacessíveis.
+- O kubelet cria e atualiza seu objeto `Lease` a cada 10 segundos (o intervalo de atualização padrão). As atualizações de Lease ocorrem independentemente das atualizações no `.status` do Nó. Se a atualização do `Lease` falhar, o kubelet voltará a tentativas, usando um recuo exponencial que começa em 200 milissegundos e limitado a 7 segundos.
+
+## Controlador de Nós
+
+O {{< glossary_tooltip text="controlador" term_id="controller" >}} de nós é um componente da camada de gerenciamento do Kubernetes que gerencia vários aspectos dos nós.
+
+O controlador de nó tem várias funções na vida útil de um nó. O primeiro é atribuir um bloco CIDR ao nó quando ele é registrado (se a atribuição CIDR estiver ativada).
+
+O segundo é manter a lista interna de nós do controlador de nós atualizada com a lista de máquinas disponíveis do provedor de nuvem. Ao ser executado em um ambiente de nuvem e sempre que um nó não é íntegro, o controlador de nó pergunta ao provedor de nuvem se a VM desse nó ainda está disponível. Caso contrário, o controlador de nós exclui o nó de sua lista de nós.
+
+O terceiro é monitorar a saúde dos nós. O controlador do nó é responsável por:
+
+- No caso de um nó se tornar inacessível, atualizar a condição NodeReady dentro do campo `.status` do nó. Nesse caso, o controlador do nó define a condição de pronto (`NodeReady`) como condição desconhecida (`ConditionUnknown`).
+- Se um nó permanecer inacessível: será iniciado a [remoção pela API](/docs/concepts/scheduling-eviction/api-eviction/) para todos os Pods no nó inacessível. Por padrão, o controlador do nó espera 5 minutos entre marcar o nó como condição desconhecida (`ConditionUnknown`) e enviar a primeira solicitação de remoção.
+
+O controlador de nó verifica o estado de cada nó a cada `--node-monitor-period` segundos.
+
+### Limites de taxa de remoção
+
+Na maioria dos casos, o controlador de nós limita a taxa de remoção a `--node-eviction-rate` (0,1 por padrão) por segundo, o que significa que ele não removerá pods de mais de 1 nó por 10 segundos.
+
+O comportamento de remoção do nó muda quando um nó em uma determinada zona de disponibilidade se torna não íntegro. O controlador de nós verifica qual porcentagem de nós na zona não são íntegras (a condição `NodeReady` é desconhecida `ConditionUnknown` ou falsa `ConditionFalse`) ao mesmo tempo:
+
+- Se a fração de nós não íntegros for ao menos `--unhealthy-zone-threshold` (padrão 0,55), então a taxa de remoção será reduzida.
+- Se o cluster for pequeno (ou seja, tiver número de nós menor ou igual ao valor da opção `--large-cluster-size-threshold` - padrão 50), então as remoções serão interrompidas.
+- Caso contrário, a taxa de remoção é reduzida para `--secondary-node-eviction-rate` de nós secundários (padrão 0,01) por segundo.
+
+A razão pela qual essas políticas são implementadas por zona de disponibilidade é porque a camada de gerenciamento pode perder conexão com uma zona de disponibilidade, enquanto as outras permanecem conectadas. Se o seu cluster não abranger várias zonas de disponibilidade de provedores de nuvem, o mecanismo de remoção não levará em conta a indisponibilidade por zona.
+
+Uma das principais razões para espalhar seus nós pelas zonas de disponibilidade é para que a carga de trabalho possa ser transferida para zonas íntegras quando uma zona inteira cair. Portanto, se todos os nós em uma zona não estiverem íntegros, o controlador do nó removerá na taxa normal de `--node-eviction-rate`. O caso especial é quando todas as zonas estiverem completamente insalubres (nenhum dos nós do cluster será íntegro). Nesse caso, o controlador do nó assume que há algum problema com a conectividade entre a camada de gerenciamento e os nós e não realizará nenhuma remoção. (Se houver uma interrupção e alguns nós reaparecerem, o controlador do nó expulsará os pods dos nós restantes que estiverem insalubres ou inacessíveis).
+
+O controlador de nós também é responsável por remover pods em execução nos nós com `NoExecute` taints, a menos que esses pods tolerem essa taint. O controlador de nó também adiciona as {{< glossary_tooltip text="taints" term_id="taint" >}} correspondentes aos problemas de nó, como nó inacessível ou não pronto. Isso significa que o escalonador não colocará Pods em nós não íntegros.
+
+## Rastreamento de capacidade de recursos {#node-capacity}
+
+Os objetos do nó rastreiam informações sobre a capacidade de recursos do nó: por exemplo, a quantidade de memória disponível e o número de CPUs. Os nós que se [auto-registram](#self-registration-of-nodes) relatam sua capacidade durante o registro. Se você adicionar [manualmente](#manual-node-administration) um nó, precisará definir as informações de capacidade do nó ao adicioná-lo.
+
+O {{< glossary_tooltip text="escalonador" term_id="kube-scheduler" >}} do Kubernetes garante que haja recursos suficientes para todos os Pods em um nó. O escalonador verifica se a soma das solicitações de contêineres no nó não é maior do que a capacidade do nó. Essa soma de solicitações inclui todos os contêineres gerenciados pelo kubelet, mas exclui quaisquer contêineres iniciados diretamente pelo agente de execução de contêiner e também exclui quaisquer processos executados fora do controle do kubelet.
+
+{{< note >}}
+Se você quiser reservar explicitamente recursos para processos que não sejam do Pod, consulte [reserva de recursos para daemons do sistema](/docs/tasks/administer-cluster/reserve-compute-resources/#system-reserved).
+{{< /note >}}
+
+## Topologia do Nó
+
+{{< feature-state state="alpha" for_k8s_version="v1.16" >}}
+
+Se você ativou os [recursos]](/docs/reference/command-line-tools-reference/feature-gates/) de `TopologyManager`, o kubelet pode usar dicas da topologia ao tomar decisões de atribuição de recursos. Consulte [Controle das Políticas de Gerenciamento de Topologia em um Nó](/docs/tasks/administer-cluster/topology-manager/) para obter mais informações.
+
+## Desligamento gracioso do nó {#graceful-node-shutdown}
+
+{{< feature-state state="beta" for_k8s_version="v1.21" >}}
+
+O kubelet tenta detectar o desligamento do sistema do nó e encerra os pods em execução no nó.
+
+O Kubelet garante que os pods sigam o processo normal de [término do pod](/docs/concepts/workloads/pods/)pod-lifecycle/#pod-termination) durante o desligamento do nó.
+
+O recurso de desligamento gradual do nó depende do systemd, pois aproveita os [bloqueios do inibidor do systemd](https://www.freedesktop.org/wiki/Software/systemd/inhibit/) para atrasar o desligamento do nó com uma determinada duração.
+
+O desligamento gradual do nó é controlado com [recursos](/docs/reference/command-line-tools-reference/feature-gates/) `GracefulNodeShutdown`, que é ativado por padrão na versão 1.21.
+
+Observe que, por padrão, ambas as opções de configuração descritas abaixo, `shutdownGracePeriod` and `shutdownGracePeriodCriticalPods` estão definidas como zero, não ativando assim a funcionalidade de desligamento gradual do nó. Para ativar o recurso, as duas configurações do kubelet devem ser configuradas adequadamente e definidas como valores diferentes de zero.
+
+Durante um desligamento gradual, o kubelet encerra os pods em duas fases:
+
+1. Encerra os pods regulares em execução no nó.
+2. Encerra os [pods críticos](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical) em execução no nó.
+
+O recurso de desligamento gradual do nó é configurado com duas opções [`KubeletConfiguration`](/docs/tasks/administer-cluster/kubelet-config-file/):
+
+* `shutdownGracePeriod`:
+  * Especifica a duração total pela qual o nó deve atrasar o desligamento. Este é o período de carência total para o término dos pods regulares e os [críticos](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical).
+
+* `shutdownGracePeriodCriticalPods`:
+  * Especifica a duração utlizada para encerrar [pods críticos](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical) durante um desligamento de nó. Este valor deve ser menor que `shutdownGracePeriod`.
+
+Por exemplo, se `shutdownGracePeriod=30s` e `shutdownGracePeriodCriticalPods=10s`, o kubelet atrasará o desligamento do nó em 30 segundos. Durante o desligamento, os primeiros 20 (30-10) segundos seriam reservados para encerrar gradualmente os pods normais, e os últimos 10 segundos seriam reservados para encerrar [pods críticos](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical).
+
+{{< note >}}
+Quando os pods forem removidos durante o desligamento gradual do nó, eles serão marcados como desligados. Executar o `kubectl get pods` para mostrar o status dos pods removidos como `Terminated`. E o `kubectl describe pod` indica que o pod foi removido por causa do desligamento do nó:
+
+```
+Reason:         Terminated
+Message:        Pod was terminated in response to imminent node shutdown.
+```
+{{< /note >}}
+
+### Desligamento gradual do nó baseado em prioridade do Pod {#pod-priority-graceful-node-shutdown}
+
+{{< feature-state state="alpha" for_k8s_version="v1.23" >}}
+
+Para fornecer mais flexibilidade durante o desligamento gradual do nó em torno da ordem de pods durante o desligamento, o desligamento gradual do nó respeita a PriorityClass dos Pods, desde que você tenha ativado esse recurso em seu cluster. O recurso permite que o cluster defina explicitamente a ordem dos pods durante o desligamento gradual do nó com base em [classes de prioridade](/docs/concepts/scheduling-eviction/pod-priority-preemption/#priorityclass).
+
+O recurso [Desligamento Gradual do Nó](#graceful-node-shutdown), conforme descrito acima, desliga pods em duas fases, pods não críticos, seguidos por pods críticos. Se for necessária flexibilidade adicional para definir explicitamente a ordem dos pods durante o desligamento de uma maneira mais granular, o desligamento gradual baseado na prioridade do pod pode ser usado.
+
+Quando o desligamento gradual do nó respeita as prioridades do pod, isso torna possível fazer o desligamento gradual do nó em várias fases, cada fase encerrando uma classe de prioridade específica de pods. O kubelet pode ser configurado com as fases exatas e o tempo de desligamento por fase.
+
+Assumindo as seguintes classes de prioridade de pod personalizadas em um cluster,
+
+|Nome das classes de prioridade|Valor das classes de prioridade|
+|-------------------------|------------------------|
+|`custom-class-a`         | 100000                 |
+|`custom-class-b`         | 10000                  |
+|`custom-class-c`         | 1000                   |
+|`regular/unset`          | 0                      |
+
+Na [configuração do kubelet](/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration), as configurações para `shutdownGracePeriodByPodPriority` são semelhantes a:
+
+|Valor das classes de prioridade|Tempo de desligamento|
+|------------------------|---------------|
+| 100000                 |10 segundos     |
+| 10000                  |180 segundos    |
+| 1000                   |120 segundos    |
+| 0                      |60 segundos     |
+
+A configuração correspondente do YAML do kubelet seria:
+
+```yaml
+shutdownGracePeriodByPodPriority:
+  - priority: 100000
+    shutdownGracePeriodSeconds: 10
+  - priority: 10000
+    shutdownGracePeriodSeconds: 180
+  - priority: 1000
+    shutdownGracePeriodSeconds: 120
+  - priority: 0
+    shutdownGracePeriodSeconds: 60
+```
+
+A tabela acima implica que qualquer pod com valor `priority` >= 100000 terá apenas 10 segundos para parar qualquer pod com valor >= 10000 e < 100000 e terá 180 segundos para parar, qualquer pod com valor >= 1000 e < 10000 terá 120 segundos para parar. Finalmente, todos os outros pods terão 60 segundos para parar.
+
+Não é preciso especificar valores correspondentes para todas as classes. Por exemplo, você pode usar estas configurações:
+
+
+|Valor das classes de prioridade|Tempo de desligamento|
+|------------------------|---------------|
+| 100000                 |300 segundos    |
+| 1000                   |120 segundos    |
+| 0                      |60 segundos     |
+
+
+No caso acima, os pods com `custom-class-b` irão para o mesmo bucket que `custom-class-c` para desligamento.
+
+Se não houver pods em um intervalo específico, o kubelet não irá espera por pods nesse intervalo de prioridades. Em vez disso, o kubelet pula imediatamente para o próximo intervalo de valores da classe de prioridade.
+
+Se esse recurso estiver ativado e nenhuma configuração for fornecida, nenhuma ação de pedido será tomada.
+
+O uso desse recurso requer ativar  os recursos `GracefulNodeShutdownBasedOnPodPriority` e definir o `ShutdownGracePeriodByPodPriority` da configuração do kubelet para a configuração desejada, contendo os valores da classe de prioridade do pod e seus respectivos períodos de desligamento.
+
+## Gerenciamento da memória swap {#swap-memory}
+
+{{< feature-state state="alpha" for_k8s_version="v1.22" >}}
+
+Antes do Kubernetes 1.22, os nós não suportavam o uso de memória swap, e um kubelet, por padrão, não iniciaria se a troca fosse detectada em um nó. A partir de 1.22, o suporte a memória swap pode ser ativado por nó.
+
+Para ativar a troca em um nó, o recursos `NodeSwap` deve estar ativado no kubelet, e a [configuração](/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration) de comando de linha `--fail-swap-on` ou `failSwapOn` deve ser definida como falsa.
+
+{{< warning >}}
+Quando o recurso de memória swap está ativado, os dados do Kubernetes, como o conteúdo de objetos `Secret` que foram gravados no `tmpfs`, agora podem ser trocados para o disco.
+{{< /warning >}}
+
+Opcionalmente, um usuário também pode configurar `memorySwap.swapBehavior` para especificar como um nó usará memória swap. Por exemplo,
+
+```yaml
+memorySwap:
+  swapBehavior: LimitedSwap
+```
+
+As opções de configuração disponíveis para `swapBehavior` são:
+
+- `LimitedSwap`: As cargas de trabalho do Kubernetes são limitadas na quantidade de troca que podem usar. Cargas de trabalho no nó não gerenciadas pelo Kubernetes ainda podem ser trocadas.
+- `UnlimitedSwap`: As cargas de trabalho do Kubernetes podem usar tanta memória de swap quanto solicitarem, até o limite do sistema.
+
+Se a configuração do `memorySwap` não for especificada e o recurso estiver ativado, por padrão, o kubelet aplicará o mesmo comportamento que a configuração `LimitedSwap`.
+
+O comportamento da configuração `LimitedSwap` depende se o nó estiver sendo executado com v1 ou v2 de grupos de controle (também conhecidos como "cgroups"):
+
+- **cgroupsv1**: As cargas de trabalho do Kubernetes podem usar qualquer combinação de memória e swap, até o limite de memória do pod, se definido.
+- **cgroupsv2**: As cargas de trabalho do Kubernetes não podem usar memória swap.
+
+Para obter mais informações e para ajudar nos testes e fornecer feedback, consulte [KEP-2400](https://github.com/kubernetes/enhancements/issues/2400) e sua [proposta de design](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/2400-node-swap/README.md).
+
+## {{% heading "whatsnext" %}}
+
+* Saiba mais sobre [componentes](/docs/concepts/overview/components/#node-components) que compõem um nó.
+* Leia a [definição da API para um Nó](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#node-v1-core).
+* Leia a seção [Nó](https://git.k8s.io/community/contributors/design-proposals/architecture/architecture.md#the-kubernetes-node) do documento de design de arquitetura.
+* Leia sobre [taints e tolerâncias](/docs/concepts/scheduling-eviction/taint-and-toleration/).
diff --git a/content/pt-br/docs/concepts/cluster-administration/addons.md b/content/pt-br/docs/concepts/cluster-administration/addons.md
index 79b62bf832..73551e9e65 100644
--- a/content/pt-br/docs/concepts/cluster-administration/addons.md
+++ b/content/pt-br/docs/concepts/cluster-administration/addons.md
@@ -21,16 +21,16 @@ Esta página lista alguns dos complementos disponíveis e links com suas respect
 * [Canal](https://github.com/tigera/canal/tree/master/k8s-install) une Flannel e Calico, fornecendo rede e política de rede.
 * [Cilium](https://github.com/cilium/cilium) é um plug-in de rede de camada 3 e de políticas de rede que pode aplicar políticas HTTP/API/camada 7 de forma transparente. Tanto o modo de roteamento quanto o de sobreposição/encapsulamento são suportados. Este plug-in também consegue operar no topo de outros plug-ins CNI.
 * [CNI-Genie](https://github.com/Huawei-PaaS/CNI-Genie) permite que o Kubernetes se conecte facilmente a uma variedade de plug-ins CNI, como Calico, Canal, Flannel, Romana ou Weave.
-* [Contiv](http://contiv.github.io) oferece serviços de rede configuráveis para diferentes casos de uso (camada 3 nativa usando BGP, _overlay_ (sobreposição) usando vxlan, camada 2 clássica e Cisco-SDN/ACI) e também um _framework_ rico de políticas de rede. O projeto Contiv é totalmente [open source](http://github.com/contiv). O [instalador](http://github.com/contiv/install) fornece opções de instalação com ou sem kubeadm.
+* [Contiv](https://contivpp.io/) oferece serviços de rede configuráveis para diferentes casos de uso (camada 3 nativa usando BGP, _overlay_ (sobreposição) usando vxlan, camada 2 clássica e Cisco-SDN/ACI) e também um _framework_ rico de políticas de rede. O projeto Contiv é totalmente [open source](http://github.com/contiv). O [instalador](http://github.com/contiv/install) fornece opções de instalação com ou sem kubeadm.
 * [Contrail](http://www.juniper.net/us/en/products-services/sdn/contrail/contrail-networking/) é uma plataforma open source baseada no [Tungsten Fabric](https://tungsten.io) que oferece virtualização de rede multi-nuvem e gerenciamento de políticas de rede. O Contrail e o Tungsten Fabric são integrados a sistemas de orquestração de contêineres, como Kubernetes, OpenShift, OpenStack e Mesos, e fornecem modos de isolamento para cargas de trabalho executando em máquinas virtuais, contêineres/pods e servidores físicos.
 * [Flannel](https://github.com/flannel-io/flannel#deploying-flannel-manually) é um provedor de redes _overlay_ (sobrepostas) que pode ser usado com o Kubernetes.
 * [Knitter](https://github.com/ZTE/Knitter/) é um plug-in para suporte de múltiplas interfaces de rede em Pods do Kubernetes.
-* [Multus](https://github.com/Intel-Corp/multus-cni) é um plugin para suporte a várias interfaces de rede em Pods no Kubernetes. Este plug-in pode agir como um "meta-plug-in", ou um plug-in CNI que se comunica com múltiplos outros plug-ins CNI (por exemplo, Calico, Cilium, Contiv, Flannel), além das cargas de trabalho baseadas em SRIOV, DPDK, OVS-DPDK e VPP no Kubernetes.
+* Multus é um plugin para suporte a várias interfaces de rede em Pods no Kubernetes. Este plug-in pode agir como um "meta-plug-in", ou um plug-in CNI que se comunica com múltiplos outros plug-ins CNI (por exemplo, Calico, Cilium, Contiv, Flannel), além das cargas de trabalho baseadas em SRIOV, DPDK, OVS-DPDK e VPP no Kubernetes.
 * [NSX-T](https://docs.vmware.com/en/VMware-NSX-T/2.0/nsxt_20_ncp_kubernetes.pdf) Container Plug-in (NCP) fornece integração entre o VMware NSX-T e sistemas de orquestração de contêineres como o Kubernetes. Além disso, oferece também integração entre o NSX-T e as plataformas CaaS/PaaS baseadas em contêiner, como o Pivotal Container Service (PKS) e o OpenShift.
 * [Nuage](https://github.com/nuagenetworks/nuage-kubernetes/blob/v5.1.1-1/docs/kubernetes-1-installation.rst) é uma plataforma de rede definida por software que fornece serviços de rede baseados em políticas entre os Pods do Kubernetes e os ambientes não-Kubernetes, com visibilidade e monitoramento de segurança.
 * [OVN-Kubernetes](https://github.com/ovn-org/ovn-kubernetes/) é um provedor de rede para o Kubernetes baseado no [OVN (Open Virtual Network)](https://github.com/ovn-org/ovn/), uma implementação de redes virtuais que surgiu através do projeto Open vSwitch (OVS). O OVN-Kubernetes fornece uma implementação de rede baseada em _overlay_ (sobreposição) para o Kubernetes, incluindo uma implementação baseada em OVS para serviços de balanceamento de carga e políticas de rede.
 * [OVN4NFV-K8S-Plugin](https://github.com/opnfv/ovn4nfv-k8s-plugin) é um plug-in controlador CNI baseado no OVN (Open Virtual Network) que fornece serviços de rede _cloud native_, como _Service Function Chaining_ (SFC), redes _overlay_ (sobrepostas) OVN múltiplas, criação dinâmica de subredes, criação dinâmica de redes virtuais, provedor de rede VLAN e provedor de rede direto, e é plugável a outros plug-ins multi-rede. Ideal para cargas de trabalho que utilizam computação de borda _cloud native_ em redes multi-cluster.
-* [Romana](http://romana.io) é uma solução de rede de camada 3 para redes de pods que também suporta a [API NetworkPolicy](/docs/concepts/services-networking/network-policies/). Detalhes da instalação do complemento Kubeadm disponíveis [aqui](https://github.com/romana/romana/tree/master/containerize).
+* [Romana](https://github.com/romana/romana) é uma solução de rede de camada 3 para redes de pods que também suporta a [API NetworkPolicy](/pt-br/docs/concepts/services-networking/network-policies/). Detalhes da instalação do complemento Kubeadm disponíveis [aqui](https://github.com/romana/romana/tree/master/containerize).
 * [Weave Net](https://www.weave.works/docs/net/latest/kube-addon/) fornece rede e política de rede, funciona em ambos os lados de uma partição de rede e não requer um banco de dados externo.
 
 ## Descoberta de Serviço
diff --git a/content/pt-br/docs/concepts/cluster-administration/certificates.md b/content/pt-br/docs/concepts/cluster-administration/certificates.md
index c75051304c..660471eb3d 100644
--- a/content/pt-br/docs/concepts/cluster-administration/certificates.md
+++ b/content/pt-br/docs/concepts/cluster-administration/certificates.md
@@ -164,7 +164,7 @@ Por fim, adicione os mesmos parâmetros nos parâmetros iniciais do Servidor de
             "OU": "<organization unit>"
           }]
         }
-1.  Gere a chave CA (`ca-key.pem`) e o certificado (` ca.pem`):
+1.  Gere a chave CA (`ca-key.pem`) e o certificado (`ca.pem`):
 
         ../cfssl gencert -initca ca-csr.json | ../cfssljson -bare ca
 1.  Crie um arquivo de configuração JSON para gerar chaves e certificados para o Servidor de API, por exemplo, `server-csr.json`. Certifique-se de substituir os valores entre colchetes angulares por valores reais que você deseja usar. O `MASTER_CLUSTER_IP` é o IP do serviço do cluster para o servidor da API, conforme descrito na subseção anterior. O exemplo abaixo também assume que você está usando `cluster.local` como DNS de domínio padrão
diff --git a/content/pt-br/docs/concepts/cluster-administration/logging.md b/content/pt-br/docs/concepts/cluster-administration/logging.md
index 333e568a47..52914a90bc 100644
--- a/content/pt-br/docs/concepts/cluster-administration/logging.md
+++ b/content/pt-br/docs/concepts/cluster-administration/logging.md
@@ -78,7 +78,7 @@ Quando você executa [`kubectl logs`](/docs/reference/generated/kubectl/kubectl-
 Atualmente, se algum sistema externo executou a rotação, apenas o conteúdo do arquivo de log mais recente estará disponível através de `kubectl logs`. Por exemplo, se houver um arquivo de 10MB, o `logrotate` executa a rotação e existem dois arquivos, um com 10MB de tamanho e um vazio, o `kubectl logs` retornará uma resposta vazia.
 {{< /note >}}
 
-[cosConfigureHelper]: https://github.com/kubernetes/kubernetes/blob/{{< param "githubbranch" >}}/cluster/gce/gci/configure-helper.sh
+[cosConfigureHelper]: https://github.com/kubernetes/kubernetes/blob/master/cluster/gce/gci/configure-helper.sh
 
 ### Logs de componentes do sistema
 
diff --git a/content/pt-br/docs/concepts/cluster-administration/networking.md b/content/pt-br/docs/concepts/cluster-administration/networking.md
index 74abf0ac29..559488d0f6 100644
--- a/content/pt-br/docs/concepts/cluster-administration/networking.md
+++ b/content/pt-br/docs/concepts/cluster-administration/networking.md
@@ -222,7 +222,7 @@ Lars Kellogg-Stedman.
 
 ### Multus (Plugin multi redes) {#multus}
 
-[Multus](https://github.com/Intel-Corp/multus-cni) é um plugin Multi CNI para
+Multus é um plugin Multi CNI para
 suportar a funcionalidade multi redes do Kubernetes usando objetos baseados em {{< glossary_tooltip text="CRDs" term_id="CustomResourceDefinition" >}}. 
 
 Multus suporta todos os  [plugins referência](https://github.com/containernetworking/plugins) (ex. [Flannel](https://github.com/containernetworking/plugins/tree/master/plugins/meta/flannel), 
@@ -247,4 +247,4 @@ documentação em [ovn-kubernetes](https://github.com/openvswitch/ovn-kubernetes
 
 Design inicial do modelo de conectividade do Kubernetes e alguns planos futuros 
 estão descritos com maiores detalhes no 
-[documento de design de redes](https://git.k8s.io/community/contributors/design-proposals/network/networking.md).
+[documento de design de redes](https://git.k8s.io/design-proposals-archive/network/networking.md).
diff --git a/content/pt-br/docs/concepts/cluster-administration/proxies.md b/content/pt-br/docs/concepts/cluster-administration/proxies.md
new file mode 100644
index 0000000000..d169710f40
--- /dev/null
+++ b/content/pt-br/docs/concepts/cluster-administration/proxies.md
@@ -0,0 +1,66 @@
+---
+title: Proxies no Kubernetes
+content_type: concept
+weight: 90
+---
+
+<!-- overview -->
+Esta página descreve o uso de proxies com Kubernetes. 
+
+
+<!-- body -->
+
+## Proxies
+Existem vários tipos diferentes de proxies que você pode encontrar usando Kubernetes:
+
+
+1.  O [kubectl proxy](/docs/tasks/access-application-cluster/access-cluster/#directly-accessing-the-rest-api):
+
+  Quando o kubectl proxy é utilizado ocorre o seguinte: 
+    - executa na máquina do usuário ou em um pod
+    - redireciona/encapsula conexões direcionadas ao localhost para o servidor de API
+    - a comunicação entre o cliente e o o proxy usa HTTP 
+    - a comunicação entre o proxy e o servidor de API usa HTTPS 
+    - o proxy localiza o servidor de API do cluster
+    - o proxy adiciona os cabeçalhos de comunicação.
+
+1.  O [apiserver proxy](/docs/tasks/access-application-cluster/access-cluster/#discovering-builtin-services):
+
+    - é um bastion server, construído no servidor de API
+    - conecta um usuário fora do cluster com os IPs do cluster que não podem ser acessados de outra forma
+    - executa dentro do processo do servidor de API
+    - cliente para proxy usa HTTPS (ou HTTP se o servidor de API for configurado)
+    - proxy para o destino pode usar HTTP ou HTTPS conforme escolhido pelo proxy usando as informações disponíveis
+    - pode ser usado para acessar um Nó, Pod ou serviço
+    - faz balanceamento de carga quando usado para acessar um Service.
+
+1.  O [kube proxy](/docs/concepts/services-networking/service/#ips-and-vips):
+
+    - executa em todos os Nós 
+    - atua como proxy para UDP, TCP e SCTP
+    - não aceita HTTP
+    - provém balanceamento de carga
+    - apenas é usado para acessar serviços.
+
+1.  Um Proxy/Balanceador de carga na frente de servidores de API(s):
+
+    - a existência e a implementação de tal elemento varia de cluster para cluster, por exemplo nginx
+    - fica entre todos os clientes e um ou mais serviços
+    - atua como balanceador de carga se existe mais de um servidor de API. 
+
+
+1.  Balanceadores de carga da nuvem em serviços externos: 
+    - são fornecidos por algum provedor de nuvem (e.x AWS ELB, Google Cloud Load Balancer)
+    - são criados automaticamente quando o serviço de Kubernetes tem o tipo `LoadBalancer`
+    - geralmente suportam apenas UDP/TCP 
+    - O suporte ao SCTP fica por conta da implementação do balanceador de carga da provedora de nuvem
+    - a implementação varia de acordo com o provedor de cloud.
+
+Os usuários de Kubernetes geralmente não precisam se preocupar com outras coisas além dos dois primeiros tipos. O 
+administrador do cluster tipicamente garante que os últimos tipos serão configurados corretamente. 
+
+
+
+## Redirecionamento de requisições
+
+Os proxies substituíram as capacidades de redirecionamento. O redirecionamento foi depreciado.
\ No newline at end of file
diff --git a/content/pt-br/docs/concepts/cluster-administration/system-metrics.md b/content/pt-br/docs/concepts/cluster-administration/system-metrics.md
new file mode 100644
index 0000000000..701c157651
--- /dev/null
+++ b/content/pt-br/docs/concepts/cluster-administration/system-metrics.md
@@ -0,0 +1,169 @@
+---
+title: Métricas para componentes do sistema Kubernetes
+content_type: concept
+weight: 60
+---
+
+<!-- overview -->
+
+Métricas dos componentes do sistema podem dar uma visão melhor do que acontece internamente. Métricas são particularmente úteis para construir _dashboards_ e alertas.
+
+Componentes do Kubernetes emitem métricas no [formato Prometheus](https://prometheus.io/docs/instrumenting/exposition_formats/). Esse formato é um texto simples estruturado, projetado para que pessoas e máquinas possam lê-lo.
+
+<!-- body -->
+
+## Métricas no Kubernetes
+
+Na maioria dos casos, as métricas estão disponíveis no _endpoint_ `/metrics` do servidor HTTP. Para componentes que não expõem o _endpoint_ por padrão, ele pode ser ativado usando a _flag_ `--bind-address`.
+
+Exemplos desses componentes:
+
+- {{< glossary_tooltip term_id="kube-controller-manager" text="kube-controller-manager" >}}
+- {{< glossary_tooltip term_id="kube-proxy" text="kube-proxy" >}}
+- {{< glossary_tooltip term_id="kube-apiserver" text="kube-apiserver" >}}
+- {{< glossary_tooltip term_id="kube-scheduler" text="kube-scheduler" >}}
+- {{< glossary_tooltip term_id="kubelet" text="kubelet" >}}
+
+Em um ambiente de produção, você pode querer configurar o [Servidor Prometheus](https://prometheus.io/) ou algum outro coletor de métricas e disponibilizá-las em algum tipo de banco de dados temporais.
+
+Observe que o {{< glossary_tooltip term_id="kubelet" text="kubelet" >}} também expõe métricas nos _endpoints_ `/metrics/cadvisor`, `/metrics/resource` e `/metrics/probes`. Essas métricas não possuem o mesmo ciclo de vida.
+
+Se o seu _cluster_ usa {{< glossary_tooltip term_id="rbac" text="RBAC" >}}, ler as métricas requer autorização por meio de um usuário, grupo ou _ServiceAccount_ com um _ClusterRole_ que conceda o acesso ao `/metrics`.
+
+Por exemplo:
+
+```yaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: prometheus
+rules:
+  - nonResourceURLs:
+      - "/metrics"
+    verbs:
+      - get
+```
+
+## Ciclo de vida da métrica
+
+Métrica alfa → Métrica estável → Métrica ultrapassada → Métrica oculta → Métrica excluída
+
+A métrica alfa não tem garantias de estabilidade. Essas métricas podem ser modificadas ou deletadas a qualquer momento.
+
+Métricas estáveis possuem a garantia de que não serão alteradas. Isso significa:
+
+- Uma métrica estável sem uma assinatura ultrapassada não será deletada ou renomeada
+- O tipo de uma métrica estável não será modificado
+
+As métricas ultrapassadas estão programadas para exclusão, mas ainda estão disponíveis para uso.
+Essas métricas incluem uma anotação sobre a versão em que se tornarão ultrapassadas.
+
+Por exemplo:
+
+- Antes de se tornar ultrapassado
+
+  ```
+  # HELP some_counter isso conta coisas
+  # TYPE some_counter contador
+  some_counter 0
+  ```
+
+- Depois de se tornar ultrapassado
+
+  ```
+  # HELP some_counter (obsoleto desde 1.15.0) isso conta coisas
+  # TYPE some_counter contador
+  some_counter 0
+  ```
+
+Métricas ocultas não são mais publicadas para extração, mas ainda estão disponíveis para uso. Para usar uma métrica oculta, por favor consulte a seção [mostrar métricas ocultas](#mostrar-métricas-ocultas).
+
+Métricas excluídas não estão mais disponíveis e não podem mais ser usadas.
+
+## Mostrar métricas ocultas
+
+Como descrito anteriormente, administradores podem habilitar métricas ocultas por meio de uma _flag_ de linha de comando em um binário específico. Isso pode ser usado como uma saída de emergência para os administradores caso percam a migração das métricas ultrapassadas na última versão.
+
+A _flag_ `show-hidden-metrics-for-version` usa uma versão para a qual você deseja mostrar métricas ultrapassadas nessa versão. A versão é expressada como x.y, onde x é a versão principal e y a versão secundária. A versão de _patch_ não é necessária mesmo que uma métrica possa ser descontinuada em uma versão de _patch_, o motivo é que a política de descontinuação de métricas é executada na versão secundária.
+
+A _flag_ só pode usar a versão secundária anterior como seu valor. Todas as métricas ocultas no anterior serão emitidas se os administradores definirem a versão anterior como `show-hidden-metrics-for-version`. A versão muito antiga não é permitida porque viola a política de métricas ultrapassadas.
+
+Utilize a métrica `A` como exemplo, assumindo que `A` está obsoleto em 1.n. De acordo com a política de métricas ultrapassadas, podemos chegar à seguinte conclusão:
+
+- Na versão `1.n`, a métrica está ultrapassada, e pode ser emitida por padrão.
+- Na versão `1.n+1`, a métrica está oculta por padrão e pode ser emitida via linha de comando `show-hidden-metrics-for-version=1.n`.
+- Na versão `1.n+2`, a métrica deve ser removida do código fonte. Não há mais _escape hatch_.
+
+Se você está atualizando da versão `1.12` para `1.13`, mas ainda depende da métrica `A` ultrapassada em `1.12`, você deve definir métricas ocultas via linha de comando: `--show-hidden-metrics=1.12` e lembre-se de remover essa dependência de métrica antes de atualizar para `1.14`.
+
+## Desativar métricas do _accelerator_
+
+O kubelet coleta métricas do _accelerator_ por meio do cAdvisor. Para coletar essas métricas, para _accelerator_ como as GPUs NVIDIA, o kubelet mantinha uma alça aberta no driver. Isso significava que, para realizar alterações na infraestrutura (por exemplo, atualizar o _driver_), um administrador do _cluster_ precisa interromper o agente kubelet.
+
+A responsabilidade de colear métricas do _accelerator_ agora pertence ao fornecedor, e não ao kubelet. Os fornecedores devem providenciar um contêiner que colete métricas e as exponha ao serviço de métricas (por exemplo, Prometheus).
+
+O [`DisableAcceleratorUsageMetrics` _feature gate_](/docs/reference/command-line-tools-reference/feature-gates/) desabilita as métricas coletadas pelo kubelet, com uma [_timeline_ para habilitar esse recurso por padrão](https://github.com/kubernetes/enhancements/tree/411e51027db842355bd489691af897afc1a41a5e/keps/sig-node/1867-disable-accelerator-usage-metrics#graduation-criteria).
+
+## Métricas de componentes
+
+### Métricas do _kube-controller-manager_
+
+As métricas do _controller manager_ fornecem informações importantes sobre o desempenho e a integridade do _controller manager_.
+Essas métricas incluem métricas comuns do agente de execução da linguagem Go, tais como a quantidade de _go_routine_ e métricas específicas do _controller_, como latência de requisições etcd ou latência da _API_ dos provedores de serviços de nuvem (AWS, GCE, OpenStack), que podem ser usadas para medir a integridade de um _cluster_.
+
+A partir do Kubernetes 1.7, métricas detalhadas de provedores de serviços de nuvem estão disponíveis para operações de armazenamento para o GCE, AWS, Vsphere e OpenStack.
+Essas métricas podem ser usadas para monitorar a integridade das operações de volumes persistentes.
+
+Por exemplo, para o GCE as seguintes métricas são chamadas:
+
+```
+cloudprovider_gce_api_request_duration_seconds { request = "instance_list"}
+cloudprovider_gce_api_request_duration_seconds { request = "disk_insert"}
+cloudprovider_gce_api_request_duration_seconds { request = "disk_delete"}
+cloudprovider_gce_api_request_duration_seconds { request = "attach_disk"}
+cloudprovider_gce_api_request_duration_seconds { request = "detach_disk"}
+cloudprovider_gce_api_request_duration_seconds { request = "list_disk"}
+```
+
+### Métricas do _kube-scheduler_
+
+{{< feature-state for_k8s_version="v1.21" state="beta" >}}
+
+O _scheduler_ expõe métricas opcionais que relatam os recursos solicitados e os limites desejados de todos os _pods_ em execução. Essas métricas podem ser usadas para criar _dashboards_ de planejamento de capacidade, avaliar os limites de agendamentos atuais ou históricos, identificar rapidamente cargas de trabalho que não podem ser agendadas devido à falta de recursos e comparar o uso atual com a solicitação do _pod_.
+
+O _kube-scheduler_ identifica as requisições de [recursos e limites](/docs/concepts/configuration/manage-resources-containers/) configurado para cada _Pod_; quando uma requisição ou limite é diferente de zero o _kube-scheduler_ relata uma _timeseries_ de métricas. Essa _timeseries_ é etiquetada por:
+
+- _namespace_
+- nome do _pod_
+- o nó onde o _pod_ está programado ou uma _string_ vazia caso ainda não esteja programado
+- prioridade
+- o _scheduler_ atribuído para esse _pod_
+- o nome do recurso (por exemplo, `cpu`)
+- a unidade do recurso, se conhecida (por exemplo, `cores`)
+
+Uma vez que o _pod_ alcança um estado de conclusão (sua `restartPolicy` está como `Never` ou `onFailure` e está na fase de `Succeeded` ou `Failed`, ou foi deletado e todos os contêineres tem um estado de terminado), a série não é mais relatada já que o _scheduler_ agora está livre para agendar a execução de outros _pods_. As duas métricas são chamadas de `kube_pod_resource_request` e `kube_pod_resource_limit`.
+
+As métricas são expostas no _endpoint_ HTTP `/metrics/resources` e requerem a mesma autorização que o _endpoint_ `/metrics` no _scheduler_. Você deve usar a _flag_ `--show-hidden-metrics-for-version=1.20` para expor essas métricas de estabilidade alfa.
+
+## Desativando métricas
+
+Você pode desativar explicitamente as métricas via linha de comando utilizando a _flag_ `--disabled-metrics`. Isso pode ser desejado se, por exemplo, uma métrica estiver causando um problema de desempenho. A entrada é uma lista de métricas desabilitadas (ou seja, `--disabled-metrics=metric1,metric2`).
+
+## Aplicação de cardinalidade de métrica
+
+As métricas com dimensões sem limites podem causar problemas de memória nos componentes que elas instrumentam. Para limitar a utilização de recursos você pode usar a opção de linha de comando `--allow-label-value` para dinamicamente configurar uma lista de permissões de valores de _label_ para uma métrica.
+
+No estágio alfa, a _flag_ pode receber apenas uma série de mapeamentos como lista de permissões de _labels_ para uma métrica.
+Cada mapeamento tem o formato `<metric_name>,<label_name>=<allowed_labels>` onde `<allowed_labels>` é uma lista separada por vírgulas de nomes aceitáveis para a _label_.
+
+O formato geral se parece com:
+`--allow-label-value <metric_name>,<label_name>='<allow_value1>, <allow_value2>...', <metric_name2>,<label_name>='<allow_value1>, <allow_value2>...', ...`.
+
+Por exemplo:
+`--allow-label-value number_count_metric,odd_number='1,3,5', number_count_metric,even_number='2,4,6', date_gauge_metric,weekend='Saturday,Sunday'`
+
+## {{% heading "whatsnext" %}}
+
+- Leia sobre o [formato de texto do Prometheus](https://github.com/prometheus/docs/blob/master/content/docs/instrumenting/exposition_formats.md#text-based-format) para métricas
+- Veja a lista de [métricas estáveis ​​do Kubernetes](https://github.com/kubernetes/kubernetes/blob/master/test/instrumentation/testdata/stable-metrics-list.yaml)
+- Leia sobre a [Política de suspensão de uso do Kubernetes](/docs/reference/using-api/deprecation-policy/#deprecating-a-feature-or-behavior)
diff --git a/content/pt-br/docs/concepts/configuration/configmap.md b/content/pt-br/docs/concepts/configuration/configmap.md
new file mode 100644
index 0000000000..3fe111a078
--- /dev/null
+++ b/content/pt-br/docs/concepts/configuration/configmap.md
@@ -0,0 +1,280 @@
+---
+title: ConfigMaps
+content_type: concept
+weight: 20
+---
+
+<!-- overview -->
+
+{{< glossary_definition term_id="configmap" prepend="Um ConfigMap é" length="all" >}}
+
+{{< caution >}}
+O ConfigMap não oferece confidencialidade ou encriptação.
+Se os dados que você deseja armazenar são confidenciais, utilize
+{{< glossary_tooltip term_id="secret" >}} ao invés de um ConfigMap,
+ou utilize ferramentas adicionais (de terceiros) para manter seus dados privados.
+{{< /caution >}}
+
+
+<!-- body -->
+## Motivação
+
+Utilize um ConfigMap para manter a configuração separada do código da aplicação.
+
+Por exemplo, imagine que você esteja desenvolvendo uma aplicação que pode ser executada
+no seu computador local (para desenvolvimento) e na nuvem (para manipular tráfego real).
+Você escreve código para ler a variável de ambiente chamada `DATABASE_HOST`.
+No seu ambiente local, você configura essa variável com o valor `localhost`. Na nuvem, você
+configura essa variável para referenciar um {{< glossary_tooltip text="serviço" term_id="service" >}}
+do Kubernetes que expõe o componente do banco de dados ao seu cluster.
+Isto permite que você baixe uma imagem de contêiner que roda na nuvem e depure exatamente
+o mesmo código localmente se necessário.
+
+Um ConfigMap não foi planejado para conter grandes quantidades de dados. Os dados armazenados
+em um ConfigMap não podem exceder 1 MiB. Se você precisa armazenar configurações que são maiores
+que este limite, considere montar um volume ou utilizar um serviço separado de banco de dados
+ou de arquivamento de dados.
+
+## Objeto ConfigMap
+
+Um ConfigMap é um [objeto](/docs/concepts/overview/working-with-objects/kubernetes-objects/)
+da API que permite o armazenamento de configurações para consumo por outros objetos. Diferentemente
+de outros objetos do Kubernetes que contém um campo `spec`, o ConfigMap contém os campos `data` e
+`binaryData`. Estes campos aceitam pares chave-valor como valores. Ambos os campos `data` e `binaryData`
+são opcionais. O campo `data` foi pensado para conter sequências de bytes UTF-8, enquanto o campo `binaryData`
+foi planejado para conter dados binários em forma de strings codificadas em base64.
+
+É obrigatório que o nome de um ConfigMap seja um
+[subdomínio DNS válido](/pt-br/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
+
+Cada chave sob as seções `data` ou `binaryData` pode conter quaisquer caracteres alfanuméricos,
+`-`, `_` e `.`. As chaves armazenadas na seção `data` não podem colidir com as chaves armazenadas
+na seção `binaryData`.
+
+A partir da versão v1.19 do Kubernetes, é possível adicionar o campo `immutable` a uma definição de ConfigMap
+para criar um [ConfigMap imutável](#configmap-immutable).
+
+## ConfigMaps e Pods
+
+Você pode escrever uma `spec` para um Pod que se refere a um ConfigMap e configurar o(s) contêiner(es)
+neste Pod baseados em dados do ConfigMap. O Pod e o ConfigMap devem estar no mesmo
+{{< glossary_tooltip text="namespace" term_id="namespace" >}}.
+
+{{< note >}}
+A `spec` de um {{< glossary_tooltip text="Pod estático" term_id="static-pod" >}} não pode se referir a um
+ConfigMap ou a quaisquer outros objetos da API.
+{{< /note >}}
+
+Exemplo de um ConfigMap que contém algumas chaves com valores avulsos e outras chaves com valores semelhantes
+a fragmentos de arquivos de configuração:
+```yaml
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: game-demo
+data:
+  # chaves com valores de propriedades; cada chave mapeia para um valor avulso
+  player_initial_lives: "3"
+  ui_properties_file_name: "user-interface.properties"
+
+  # chaves semelhantes a fragmentos de arquivos
+  game.properties: |
+    enemy.types=aliens,monsters
+    player.maximum-lives=5
+  user-interface.properties: |
+    color.good=purple
+    color.bad=yellow
+    allow.textmode=true
+```
+
+Existem quatro formas diferentes para consumo de um ConfigMap na configuração de um
+contêiner dentro de um Pod:
+
+1. Dentro de um comando de contêiner e seus argumentos.
+1. Variáveis de ambiente para um contêiner.
+1. Criando um arquivo em um volume somente leitura, para consumo pela aplicação.
+1. Escrevendo código para execução dentro do Pod que utilize a API do Kubernetes para ler um ConfigMap.
+
+Os diferentes métodos de consumo oferecem diferentes formas de modelar os dados sendo consumidos.
+Para os três primeiros métodos, o {{< glossary_tooltip text="kubelet" term_id="kubelet" >}} utiliza
+os dados de um ConfigMap quando o(s) contêiner(es) do Pod são inicializados.
+
+O quarto método envolve escrita de código para leitura do ConfigMap e dos seus dados. No entanto,
+como a API do Kubernetes está sendo utilizada diretamente, a aplicação pode solicitar atualizações
+sempre que o ConfigMap for alterado e reagir quando isso ocorre. Acessar a API do Kubernetes
+diretamente também permite ler ConfigMaps em outros namespaces.
+
+Exemplo de um Pod que utiliza valores do ConfigMap `game-demo` para configurar um Pod:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: configmap-demo-pod
+spec:
+  containers:
+    - name: demo
+      image: alpine
+      command: ["sleep", "3600"]
+      env:
+        # Define as variáveis de ambiente
+        - name: PLAYER_INITIAL_LIVES # Note que aqui a variável está definida em caixa alta,
+                                     # diferente da chave no ConfigMap.
+          valueFrom:
+            configMapKeyRef:
+              name: game-demo           # O ConfigMap de onde esse valor vem.
+              key: player_initial_lives # A chave que deve ser buscada.
+        - name: UI_PROPERTIES_FILE_NAME
+          valueFrom:
+            configMapKeyRef:
+              name: game-demo
+              key: ui_properties_file_name
+      volumeMounts:
+      - name: config
+        mountPath: "/config"
+        readOnly: true
+  volumes:
+    # Volumes são definidos no escopo do Pod, e os pontos de montagem são definidos
+    # nos contêineres dentro dos pods.
+    - name: config
+      configMap:
+        # Informe o nome do ConfigMap que deseja montar.
+        name: game-demo
+        # Uma lista de chaves do ConfigMap para serem criadas como arquivos.
+        items:
+        - key: "game.properties"
+          path: "game.properties"
+        - key: "user-interface.properties"
+          path: "user-interface.properties"
+```
+
+ConfigMaps não diferenciam entre propriedades com valores simples ou valores complexos,
+que ocupam várias linhas. O importante é a forma que Pods e outros objetos consomem tais valores.
+
+Neste exemplo, definir um volume e montar ele dentro do contêiner `demo` no caminho `/config`
+cria dois arquivos: `/config/game.properties` e `/config/user-interface.properties`, embora existam
+quatro chaves distintas no ConfigMap. Isso se deve ao fato de que a definição do Pod contém uma lista
+`items` na seção `volumes`.
+Se a lista `items` for omitida, cada chave do ConfigMap torna-se um arquivo cujo nome é a sua chave
+correspondente, e quatro arquivos serão criados.
+
+## Usando ConfigMaps
+
+ConfigMaps podem ser montados como volumes de dados. ConfigMaps também podem ser utilizados
+por outras partes do sistema sem serem diretamente expostos ao Pod. Por exemplo, ConfigMaps
+podem conter dados que outras partes do sistema devem usar para configuração.
+
+A forma mais comum de utilização de ConfigMaps é a configuração de contêineres executando em
+Pods no mesmo namespace. Você também pode utilizar um ConfigMap separadamente.
+
+Por exemplo, existem {{< glossary_tooltip text="complementos" term_id="addons" >}} ou
+{{< glossary_tooltip text="operadores" term_id="operator-pattern" >}} que adaptam seus comportamentos
+de acordo com dados de um ConfigMap.
+
+### Utilizando ConfigMaps como arquivos em um Pod
+
+Para consumir um ConfigMap em um volume em um Pod:
+1. Crie um ConfigMap ou utilize um ConfigMap existente. Múltiplos Pods
+   podem referenciar o mesmo ConfigMap.
+1. Modifique sua definição de Pod para adicionar um volume em
+   `.spec.volumes[]`. Escolha um nome qualquer para o seu volume, e
+   referencie o seu objeto ConfigMap no campo
+   `.spec.volumes[].configMap.name`.
+1. Adicione um campo `.spec.containers[].volumeMounts[]` a cada um dos
+   contêineres que precisam do ConfigMap. Especifique
+   `.spec.containers[].volumeMounts[].readOnly = true` e informe no campo
+   `.spec.containers[].volumeMounts[].mountPath` um caminho de um diretório
+   não utilizado onde você deseja que este ConfigMap apareça.
+1. Modifique sua imagem ou linha de comando de modo que o programa procure
+   por arquivos no diretório especificado no passo anterior. Cada chave no
+   campo `data` do ConfigMap será transformado em um nome de arquivo no
+   diretório especificado por `mountPath`.
+
+Exemplo de um Pod que monta um ConfigMap em um volume:
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: mypod
+spec:
+  containers:
+  - name: mypod
+    image: redis
+    volumeMounts:
+    - name: foo
+      mountPath: "/etc/foo"
+      readOnly: true
+  volumes:
+  - name: foo
+    configMap:
+      name: myconfigmap
+```
+
+Cada ConfigMap que você deseja utilizar precisa ser referenciado em
+`.spec.volumes`.
+
+Se houver múltiplos contêineres no Pod, cada contêiner deve ter seu
+próprio bloco `volumeMounts`, mas somente uma instância de `.spec.volumes`
+é necessária por ConfigMap.
+
+### ConfigMaps montados são atualizados automaticamente
+
+Quando um ConfigMap que está sendo consumido em um volume é atualizado, as chaves projetadas são
+eventualmente atualizadas também. O Kubelet checa se o ConfigMap montado está atualizado em cada
+sincronização periódica.
+No entanto, o kubelet utiliza o cache local para buscar o valor atual do ConfigMap.
+O tipo de cache é configurável utilizando o campo `ConfigMapAndSecretChangeDetectionStrategy` na
+[configuração do Kubelet (KubeletConfiguration)](/docs/reference/config-api/kubelet-config.v1beta1/).
+Um ConfigMap pode ter sua propagação baseada em um _watch_ (comportamento padrão), que é o sistema
+de propagação de mudanças incrementais em objetos do Kubernetes; baseado em TTL (_time to live_,
+ou tempo de expiração); ou redirecionando todas as requisições diretamente para o servidor da API.
+Como resultado, o tempo decorrido total entre o momento em que o ConfigMap foi atualizado até o momento
+quando as novas chaves são projetadas nos Pods pode ser tão longo quanto o tempo de sincronização
+do kubelet somado ao tempo de propagação do cache, onde o tempo de propagação do cache depende do
+tipo de cache escolhido: o tempo de propagação pode ser igual ao tempo de propagação do _watch_,
+TTL do cache, ou zero, de acordo com cada um dos tipos de cache.
+
+ConfigMaps que são consumidos como variáveis de ambiente não atualizam automaticamente e requerem uma
+reinicialização do pod.
+
+## ConfigMaps imutáveis {#configmap-immutable}
+
+{{< feature-state for_k8s_version="v1.21" state="stable">}}
+
+A funcionalidade _Secrets e ConfigMaps imutáveis_ do Kubernetes fornece uma opção
+para marcar Secrets e ConfigMaps individuais como imutáveis. Para clusters que utilizam
+ConfigMaps extensivamente (ao menos centenas de milhares de mapeamentos únicos de
+ConfigMaps para Pods), prevenir alterações dos seus dados traz as seguintes vantagens:
+
+- protege de atualizações acidentais ou indesejadas que podem causar disrupção na execução
+  de aplicações
+- melhora o desempenho do cluster através do fechamento de _watches_ de ConfigMaps marcados
+  como imutáveis, diminuindo significativamente a carga no kube-apiserver
+
+Essa funcionalidade é controlada pelo [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+`ImmutableEphemeralVolumes`. É possível criar um ConfigMap imutável adicionando o campo
+`immutable` e marcando seu valor com `true`.
+Por exemplo:
+
+```yaml
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  ...
+data:
+  ...
+immutable: true
+```
+
+Após um ConfigMap ser marcado como imutável, _não_ é possível reverter a alteração, nem
+alterar o conteúdo dos campos `data` ou `binaryData`. É possível apenas apagar e recriar
+o ConfigMap. Como Pods existentes que consomem o ConfigMap em questão mantém um ponto de
+montagem que continuará referenciando este objeto após a remoção, é recomendado recriar
+estes pods.
+
+## {{% heading "whatsnext" %}}
+
+* Leia sobre [Secrets](/docs/concepts/configuration/secret/) (em inglês).
+* Leia [Configure a Pod to Use a ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/) (em inglês).
+* Leia [The Twelve-Factor App](https://12factor.net/) (em inglês) para entender a motivação da separação de código
+e configuração.
diff --git a/content/pt-br/docs/concepts/configuration/manage-resources-containers.md b/content/pt-br/docs/concepts/configuration/manage-resources-containers.md
new file mode 100644
index 0000000000..7526880477
--- /dev/null
+++ b/content/pt-br/docs/concepts/configuration/manage-resources-containers.md
@@ -0,0 +1,872 @@
+---
+title: Gerenciamento de recursos em Pods e contêineres
+content_type: concept
+weight: 40
+feature:
+  title: Empacotamento automático
+  description: >
+    Distribui contêineres automaticamente com base em requerimentos de recursos
+    e em outras restrições, evitando sacrificar disponibilidade.
+    Combina cargas de trabalho críticas com cargas de trabalho de prioridades
+    mais baixas para melhorar a utilização e reduzir o desperdício de recursos.
+---
+
+<!-- overview -->
+
+Ao criar a especificação de um {{< glossary_tooltip term_id="pod" >}}, você pode
+opcionalmente especificar quanto de cada recurso um {{< glossary_tooltip text="contêiner" term_id="container" >}}
+precisa. Os recursos mais comuns a serem especificados são CPU e memória (RAM);
+há outros recursos que podem ser especificados.
+
+Quando você especifica o _requerimento_ de recursos em um Pod, o
+{{< glossary_tooltip text="kube-scheduler" term_id="kube-scheduler" >}} utiliza
+esta informação para decidir a qual nó o Pod será atribuído. Quando você
+especifica um _limite_ de recurso para um contêiner, o kubelet garante o
+cumprimento de tais limites, de modo que o contêiner em execução não consiga
+utilizar uma quantidade de tal recurso além do limite especificado. O kubelet
+também reserva pelo menos o _requerimento_ daquele recurso de sistema
+especificamente para que este contêiner utilize.
+
+<!-- body -->
+
+## Requerimentos e limites
+
+Se o nó em que um Pod está rodando tem o suficiente de um recurso específico
+disponível, é possível (e permitido) a um contêiner utilizar mais do que o seu
+`request` para aquele recurso especifica. No entanto, não é permitido a um
+contêiner consumir mais do que o seu `limit` para um recurso.
+
+Por exemplo, se você especificar um requerimento de `memory` de 256 MiB para um
+contêiner, e aquele contêiner está em um Pod atribuído a um nó com 8GiB de
+memória, sem outros Pods, então este contêiner pode tentar consumir mais memória
+RAM.
+
+Se você especificar um limite de `memory` de 4GiB para aquele contêiner, o
+kubelet (e o
+{{< glossary_tooltip text="agente de execução de contêiner" term_id="container-runtime" >}})
+vão garantir o cumprimento do limite. O agente de execução impede que o contêiner
+utilize mais de um recurso do que seu limite configurado. Por exemplo, quando
+um processo no contêiner tenta consumir mais que o limite permitido de memória,
+o núcleo do sistema encerra o processo que tentou efetuar a alocação de memória
+com um erro de memória esgotada (_out of memory (OOM) error_).
+
+Limites podem ser implementados de forma reativa (o sistema intervém quando
+uma violação ocorre) ou por garantia (o sistema previne o contêiner de exceder
+o limite). Diferentes agentes de execução implementam as mesmas restrições de
+maneiras diferentes.
+
+{{< note >}}
+Se um contêiner especifica seu próprio limite de memória, mas não especifica seu
+requerimento de memória, o Kubernetes automaticamente cria um requerimento de
+memória com o mesmo valor do limite. A mesma regra vale para o limite de CPU:
+quando não há requerimento de CPU, o Kubernetes automaticamente cria um
+requerimento de CPU idêntico ao limite.
+{{< /note >}}
+
+## Tipos de recursos
+
+_CPU_ e _memória_ são _tipos de recursos_. Um tipo de recurso possui uma unidade
+básica. CPU representa processamento computacional e é especificada em unidades
+de [CPU do Kubernetes](#meaning-of-cpu).
+Memória é especificada em bytes. Em cargas de trabalho Linux, você pode
+especificar o recurso _huge pages_. _Huge pages_ são uma funcionalidade
+específica do Linux que permite ao núcleo do sistema operacional alocar
+blocos de memória muito maiores que o tamanho de página de memória padrão.
+
+Por exemplo, em um sistema onde o tamanho da página de memória padrão é de 4 KiB,
+você pode especificar um limite `hugepages-2Mi: 80Mi`. Se o contêiner tentar
+alocar mais de 40 _huge pages_ de 2 MiB cada, ou um total de 80 MiB, essa
+alocação irá falhar.
+
+{{< note >}}
+Você não pode superdimensionar (ou solicitar acima do limite físico) recursos do
+tipo `hugepages-*`.
+O recurso `hugepages-*` difere dos recursos `memory` e `cpu` neste aspecto.
+{{< /note >}}
+
+CPU e memória são chamados coletivamente de _recursos computacionais_, ou apenas
+_recursos_. Recursos computacionais são quantidades mensuráveis que podem ser
+requisitadas, alocadas, e consumidas. Estes recursos diferem dos
+[recursos de API](/docs/concepts/overview/kubernetes-api/). Recursos de API,
+como Pods e [Services](/docs/concepts/services-networking/service/) são objetos
+que podem ser lidos e modificados através do servidor da API do Kubernetes.
+
+## Requerimentos de recursos e limites de Pod e contêiner
+
+Para cada contêiner, você pode especificar limites e requerimentos de recursos,
+incluindo os seguintes recursos:
+
+* `spec.containers[].resources.limits.cpu`
+* `spec.containers[].resources.limits.memory`
+* `spec.containers[].resources.limits.hugepages-<size>`
+* `spec.containers[].resources.requests.cpu`
+* `spec.containers[].resources.requests.memory`
+* `spec.containers[].resources.requests.hugepages-<size>`
+
+Embora você possa especificar apenas requerimentos e limites para contêineres
+individuais, é útil também pensar sobre os requerimentos e limites gerais de um
+Pod.
+Para um recurso em particular, um _requerimento ou limite de recurso de um Pod_
+é a soma de todos os valores dos requerimentos ou limites de um recurso daquele
+tipo, especificados em cada um dos contêineres daquele Pod.
+
+## Unidades de recursos no Kubernetes
+
+### Unidades de recurso de CPU {#meaning-of-cpu}
+
+Limites e requerimentos de recursos de CPU são mensurados em unidades de _cpu_.
+No Kubernetes, uma unidade de CPU é equivalente a **um núcleo físico de CPU**,
+ou **um núcleo virtual**, dependendo se o nó é uma máquina física ou uma máquina
+virtual rodando em uma máquina física.
+
+Requerimentos fracionários são permitidos. Quando você define um contêiner cujo
+valor do campo `spec.containers[].resources.requests.cpu` é `0.5`, você está
+solicitando metade da quantidade de CPU que teria sido solicitada caso o valor
+fosse `1.0`.
+No caso de unidades de recurso de CPU, a expressão de
+[quantidade](/docs/reference/kubernetes-api/common-definitions/quantity/) `0.1`
+é equivalente à expressão `100m`, que pode ser lida como "cem milicpus", ou
+"cem milinúcleos". "Milicpu" ou "milinúcleo" equivalem à milésima parte de um
+núcleo ou CPU, de modo que "100m" equivalem a 10% do tempo computacional de um
+processador.
+
+Recursos de CPU são sempre especificados como uma quantidade absoluta de recurso,
+nunca como uma quantidade relativa. Por exemplo, `500m` de CPU representam
+grosseiramente a mesma quantidade de poder computacional, independentemente do
+contêiner rodar em uma máquina com processador de núcleo único, de dois núcleos
+ou de 48 núcleos.
+
+{{< note >}}
+O Kubernetes não permite que você especifique recursos de CPU com uma precisão
+maior que `1m`. Devido a isso, é útil especificar unidades de CPU menores do que
+`1.0` ou `1000m` utilizando a notação de milicpu. Por exemplo, `5m` ao invés de
+`0.005`.
+{{< /note >}}
+
+### Unidades de recurso de memória {#meaning-of-memory}
+
+Limites e requerimentos de `memory` são medidos em bytes. Você pode expressar
+memória como um número inteiro ou como um número de ponto fixo, utilizando um
+destes sufixos de
+[quantidade](/docs/reference/kubernetes-api/common-definitions/quantity/):
+E, P, T, G, M, k. Você também pode utilizar os equivalentes de potência de dois:
+Ei, Pi, Ti, Gi, Mi, Ki. Por exemplo, as quantidades abaixo representam, a grosso
+modo, o mesmo valor:
+
+```shell
+128974848, 129e6, 129M, 128974848000m, 123Mi
+```
+
+Tome cuidado com os sufixos. Se você solicitar `400m` de memória, esta
+quantidade estará de fato requerendo o equivalente a 0,4 byte de memória. A
+intenção da pessoa que fez esta requisição provavelmente era solictar 400
+mebibytes (`400Mi`) ou 400 megabytes (`400M`).
+
+## Exemplo de recursos de contêiner {#example-1}
+
+O Pod seguinte tem dois contêineres. Ambos os contêineres têm um requerimento de
+0,25 CPU e 64 MiB (ou 2<sup>26</sup> bytes) de memória. Cada contêiner tem um
+limite de 0,5 CPU e 128 MiB de memória. Você pode dizer que o Pod tem um
+requerimento de 0,5 CPU e 128 MiB de memória, e um limite de 1 CPU e 256 MiB de
+memória.
+
+```yaml
+---
+apiVersion: v1
+kind: Pod
+metadata:
+  name: frontend
+spec:
+  containers:
+  - name: app
+    image: images.my-company.example/app:v4
+    resources:
+      requests:
+        memory: "64Mi"
+        cpu: "250m"
+      limits:
+        memory: "128Mi"
+        cpu: "500m"
+  - name: log-aggregator
+    image: images.my-company.example/log-aggregator:v6
+    resources:
+      requests:
+        memory: "64Mi"
+        cpu: "250m"
+      limits:
+        memory: "128Mi"
+        cpu: "500m"
+```
+
+## Como Pods com requerimentos de recursos são agendados
+
+Quando você cria um Pod, o escalonador do Kubernetes seleciona um nó para que o
+Pod rode. Cada nó possui uma capacidade máxima para cada um dos tipos de recurso:
+a quantidade de CPU e memória que o nó pode fornecer aos Pods. O escalonador
+garante que, para cada tipo de recurso, a soma dos requerimentos de recursos dos
+contêineres agendados seja menor que a capacidade do nó.
+Note que, embora o consumo de memória ou CPU real nos nós seja muito baixo, o
+escalonador ainda irá se recusar a agendar um Pod em um nó se a verificação de
+capacidade falhar. Isso protege contra a falta de um recurso em um nó quando o
+consumo de recursos aumenta com o passar do tempo, como por exemplo durante o
+pico diário de requisições a um serviço.
+
+## Como o Kubernetes aplica requisições e limites de recursos {#how-pods-with-resource-limits-are-run}
+
+Quando o kubelet inicia um contêiner como parte de um Pod, o kubelet envia as
+requisições e limites de memória e de CPU ao agente de execução de contêiner.
+
+No Linux, o agente de execução de contêiner normalmente configura os
+{{< glossary_tooltip text="cgroups" term_id="cgroup" >}} que aplicam e garantem
+os limites que você definiu.
+
+- O limite de CPU determina um teto de quanto tempo de CPU o contêiner pode
+  utilizar. A cada intervalo de agendamento, o núcleo do sistema operacional do
+  Linux verifica se este limite foi excedido; se este for o caso, o núcleo
+  aguarda antes de permitir que aquele cgroup continue sua execução.
+- O requerimento de CPU normalmente define um método de balanceamento. Se vários
+  contêineres diferentes (cgroups) querem rodar em um sistema disputado, cargas
+  de trabalho com requerimentos maiores de CPU têm mais tempo de CPU alocado
+  para si do que cargas de trabalho com pequenos requerimentos.
+- O requerimento de memória é usado principalmente durante o agendamento de um
+  Pod. Em um nó que utiliza cgroups v2, o agente de execução de contêiner pode
+  utilizar o requerimento de memória como uma dica para definir valores para
+  `memory.min` e `memory.low`.
+- O limite de memória define um limite de memória para aquele cgroup. Se o
+  contêiner tenta alocar mais memória que aquele limite, o subsistema
+  _out-of-memory_ do núcleo do sistema operacional Linux é ativado e,
+  normalmente, intervém encerrando um dos processos do contêiner que tentou
+  alocar mais memória. Se o processo em questão for o PID 1 do contêiner, e o
+  contêiner estiver marcado como reinicializável, então o Kubernetes irá
+  reiniciar o contêiner.
+- O limite de memória para um Pod ou contêiner é também aplicado a páginas em
+  volumes armazenados em memória, como um `emptyDir`. O kubelet considera
+  sistemas de arquivos `tmpfs` em volumes do tipo `emptyDir` como uso de memória
+  em um contêiner, ao invés de armazenamento efêmero local.
+
+Se um contêiner exceder seu requerimento de memória e o nó em que esse contêiner
+está rodando ficar com pouca memória no total, é provável que o Pod a que este
+contêiner pertence seja {{< glossary_tooltip text="removido" term_id="eviction" >}}.
+
+A um contêiner pode ou não ser permitido exceder seu limite de CPU por períodos
+de tempo estendidos. No entanto, agentes de execução de contêiner não encerram
+Pods por uso excessivo de CPU.
+
+A fim de determinar se um contêiner não pode ser agendado ou está sendo
+encerrado devido a limites de recursos, consulte a seção de
+[solução de problemas](#troubleshooting).
+
+### Monitorando utilização de recursos computacionais e de memória
+
+O kubelet relata a utilização de recursos de um Pod como parte do
+[`status`](/docs/concepts/overview/working-with-objects/kubernetes-objects/#object-spec-and-status)
+do Pod.
+
+Se ferramentas opcionais para
+[monitoramento de recursos](/docs/tasks/debug-application-cluster/resource-usage-monitoring/)
+estiverem disponíveis em seu cluster, a utilização de recursos de um Pod pode
+ser verificada diretamente através de
+[API de métricas](/docs/tasks/debug-application-cluster/resource-metrics-pipeline/#the-metrics-api)
+ou através das suas ferramentas de monitoramento
+
+## Armazenamento efêmero local
+
+<!-- feature gate LocalStorageCapacityIsolation -->
+{{< feature-state for_k8s_version="v1.10" state="beta" >}}
+
+Nós possuem armazenamento efêmero local, através de dispositivos de escrita
+conectados localmente ou através de RAM. "Efêmero" significa que não há garantia
+de longo termo com relação a durabilidade.
+
+Pods utilizam armazenamento local efêmero para dados temporários, cache e logs.
+O kubelet pode fornecer armazenamento temporário a Pods que utilizam
+armazenamento local efêmero para montar {{< glossary_tooltip term_id="volume" text="volumes" >}}
+do tipo [`emptyDir`](/docs/concepts/storage/volumes/#emptydir) em contêineres.
+
+O kubelet também utiliza este tipo de armazenamento para
+[logs de contêineres a nível de nó](/pt-br/docs/concepts/cluster-administration/logging/#logs-no-nível-do-nó),
+imagens de contêiner e camadas graváveis de contêineres em execução.
+
+{{< caution >}}
+Se um nó falhar, os dados em seu armazenamento efêmero podem ser perdidos.
+Suas aplicações não devem ter expectativas de cumprimento de SLAs de desempenho
+(como quantidade de operações de entrada e saída de disco por segundo (IOPS),
+por exemplo) pelo armazenamento local efêmero.
+{{< /caution >}}
+
+Com esta funcionalidade em fase beta, o Kubernetes permite que você rastreie,
+reserve e limite quanto armazenamento local efêmero um Pod pode consumir.
+
+### Configurações para armazenamento local efêmero {#configurations-for-local-ephemeral-storage}
+
+O Kubernetes suporta duas formas de configuração para o armazenamento local
+efêmero em um nó:
+
+{{< tabs name="local_storage_configurations" >}}
+{{% tab name="Sistema de arquivos único" %}}
+Nesta configuração, você armazena todos os tipos diferentes de dados locais
+efêmeros (volumes do tipo `emptyDir`, camadas graváveis, imagens de contêiner,
+logs) em um sistema de arquivos único. A forma mais efetiva de configurar o
+kubelet é dedicar este sistema de arquivos aos dados do Kubernetes (kubelet).
+
+O kubelet também escreve
+[logs de contêiner a nível de nó](/pt-br/docs/concepts/cluster-administration/logging/#logs-no-nível-do-nó)
+e trata estes logs de maneira semelhante ao armazenamento efêmero local.
+
+O kubelet escreve logs em arquivos dentro do seu diretório de log configurado
+(`/var/log` por padrão) e possui um diretório base para outros dados armazenados
+localmente (`/var/lib/kubelet` por padrão).
+
+Normalmente, ambos os diretórios `/var/lib/kubelet` e `/var/log` encontram-se no
+sistema de arquivos raiz, e o kubelet é projetado com este desenho em mente.
+
+Seu nó pode ter tantos outros sistemas de arquivos não utilizados pelo Kubernetes
+quantos você desejar.
+{{% /tab %}}
+
+{{% tab name="Dois sistemas de arquivos" %}}
+Você tem um sistema de arquivos no nó que você utiliza para dados efêmeros que
+vêm de Pods em execução: logs e volumes do tipo `emptyDir`. Você pode utilizar
+este sistema de arquivos para outros dados (por exemplo, logs de sistema não
+relacionados ao Kubernetes); este sistema de arquivos pode até mesmo ser o
+sistema de arquivos raiz.
+
+O kubelet também escreve
+[logs de contêiner a nível de nó](/pt-br/docs/concepts/cluster-administration/logging/#logs-no-nível-do-nó)
+no primeiro sistema de arquivos e os trata de forma semelhante ao armazenamento
+local efêmero.
+
+Você também tem um segundo sistema de arquivos, separado, conectado a um
+dispositivo lógico de armazenamento distinto. Nesta configuração, o diretório
+que você configurou o kubelet para armazenar as camadas de imagens de contêiner
+e as camadas graváveis de contêineres em execução estará neste segundo sistema
+de arquivos.
+
+O primeiro sistema de arquivos não armazena nenhuma camada de imagens de
+contêiner ou camada gravável.
+
+Seu nó pode ter tantos outros sistemas de arquivos não utilizados pelo Kubernetes
+quantos você desejar.
+{{% /tab %}}
+{{< /tabs >}}
+
+
+O kubelet consegue medir quanto armazenamento local está sendo utilizado. O
+kubelet faz isso desde que:
+
+- o [_feature gate_](/docs/reference/command-line-tools-reference/feature-gates/)
+  `LocalStorageCapacityIsolation` esteja habilitado (a funcionalidade está
+  ligada por padrão), e
+- você tenha configurado o nó utilizando uma das configurações suportadas para
+  o armazenamento local efêmero.
+
+Se você tiver uma configuração diferente, o kubelet não irá aplicar limites de
+recursos para o armazenamento local efêmero.
+
+{{< note >}}
+O kubelet rastreia volumes `emptyDir` que utilizem o sistema de arquivos `tmpfs`
+como uso de memória de contêiner, ao invés de consumo de armazenamento local
+efêmero.
+{{< /note >}}
+
+### Configurando requerimentos e limites para armazenamento local efêmero
+
+Você pode especificar o recurso `ephemeral-storage` para gerenciar o
+armazenamento local efêmero. Cada contêiner de um Pod pode especificar um dos
+valores abaixo, ou ambos:
+
+* `spec.containers[].resources.limits.ephemeral-storage`
+* `spec.containers[].resources.requests.ephemeral-storage`
+
+Limites e requerimentos de `ephemeral-storage` são medidos em quantidades de
+bytes. Você pode expressar armazenamento como um inteiro ou como um valor de
+ponto fixo utilizando um dos seguintes sufixos: E, P, T, G, M, k. Você pode
+também utilizar os equivalentes de potência de dois: Ei, Pi, Ti, Gi, Mi, Ki.
+Por exemplo, as quantidades abaixo representam grosseiramente o mesmo valor:
+
+- `128974848`
+- `129e6`
+- `129M`
+- `123Mi`
+
+No exemplo a seguir, o Pod tem dois contêineres. Cada contêiner tem um
+requerimento de 2GiB de armazenamento efêmero local. Cada contêiner tem um
+limite de 4GiB de armazenamento efêmero local. Portanto, o Pod tem um
+requerimento de 4GiB e um limite de 8GiB de armazenamento efêmero local.
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: frontend
+spec:
+  containers:
+  - name: app
+    image: images.my-company.example/app:v4
+    resources:
+      requests:
+        ephemeral-storage: "2Gi"
+      limits:
+        ephemeral-storage: "4Gi"
+    volumeMounts:
+    - name: ephemeral
+      mountPath: "/tmp"
+  - name: log-aggregator
+    image: images.my-company.example/log-aggregator:v6
+    resources:
+      requests:
+        ephemeral-storage: "2Gi"
+      limits:
+        ephemeral-storage: "4Gi"
+    volumeMounts:
+    - name: ephemeral
+      mountPath: "/tmp"
+  volumes:
+    - name: ephemeral
+      emptyDir: {}
+```
+
+### Como Pods com requerimentos de `ephemeral-storage` são agendados
+
+Quando você cria um Pod, o Kubernetes seleciona um nó para o Pod rodar. Cada nó
+tem uma quantidade máxima de armazenamento efêmero local que pode ser fornecida
+aos Pods. Para mais informações, consulte
+[_Node Allocatable_](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable).
+
+O escalonador garante que a soma dos requerimentos de recursos dos contêineres
+agendados é menor que a capacidade do nó.
+
+### Gerenciamento do consumo do armazenamento efêmero {#resource-emphemeralstorage-consumption}
+
+Se o kubelet estiver gerenciando armazenamento local efêmero como um recurso,
+o kubelet irá medir o consumo de armazenamento em:
+
+- volumes `emptyDir`, com exceção dos volumes do tipo `tmpfs`
+- diretórios que armazenem logs a nível de nó
+- camadas de contêiner graváveis
+
+Se um Pod estiver utilizando mais armazenamento efêmero do que o permitido, o
+kubelet irá gerar um sinal de remoção para aquele Pod.
+
+Para isolamento a nível de contêiner, se o consumo de armazenamento de um
+contêiner em camadas graváveis e logs exceder seu limite de armazenamento, o
+kubelet irá marcar o Pod para remoção.
+
+Para isolamento a nível de Pod, o kubelet calcula um limite de armazenamento
+total para um Pod somando os limites de cada contêiner naquele Pod. Neste caso,
+se a soma do consumo de armazenamento efêmero local de todas os contêineres e
+também dos volumes `emptyDir` de um Pod exceder o limite de armazenamento total
+do Pod, então o kubelet marca o Pod para remoção.
+
+{{< caution >}}
+Se o kubelet não estiver medindo armazenamento efêmero local, um Pod que exeder
+seu limite de armazenamento local não será removido por exceder os limites de
+recurso de armazenamento local.
+
+No entanto, se o espaço de um sistema de arquivos para camadas de contêiner
+graváveis, logs a nível de nó, ou volumes `emptyDir` ficar reduzido, o nó irá
+marcar a si próprio com um {{< glossary_tooltip text="_taint_" term_id="taint" >}}
+indicando que está com armazenamento local reduzido, e esse _taint_ dispara a
+remoção de Pods que não toleram o _taint_ em questão.
+
+Veja as [configurações](#configurations-for-local-ephemeral-storage) suportadas
+para armazenamento efêmero local.
+{{< /caution >}}
+
+O kubelet suporta formas diferentes de medir o uso de armazenamento dos Pods:
+
+{{< tabs name="resource-emphemeralstorage-measurement" >}}
+{{% tab name="Varredura periódica" %}}
+O kubelet executa verificações agendadas, em intervalos regulares, que varrem
+cada volume do tipo `emptyDir`, diretório de log de contêiner, e camada gravável
+de contêiner.
+
+A varredura mede quanto espaço está sendo utilizado.
+
+{{< note >}}
+Neste modo, o kubelet não rastreia descritores de arquivos abertos para arquivos
+removidos.
+
+Se você (ou um contêiner) criar um arquivo dentro de um volume `emptyDir`, um
+processo ou usuário abrir tal arquivo, e você apagar o arquivo enquanto ele
+ainda estiver aberto, o nó de índice para o arquivo apagado será mantido até que
+o arquivo seja fechado novamente. O kubelet, no entanto, não computa este espaço
+como espaço em uso.
+{{< /note >}}
+
+{{% /tab %}}
+{{% tab name="Quota de projeto do sistema de arquivos" %}}
+
+Quotas de projeto são uma funcionalidade a nível de sistema operacional para
+gerenciamento de uso do armazenamento em sistemas de arquivos. Com o Kubernetes,
+você pode habilitar quotas de projeto para o monitoramento de armazenamento em
+uso. Tenha certeza que o sistema de arquivos do nó que esteja sendo utilizado em
+volumes do tipo `emptyDir` possui suporte a quotas de projeto. Por exemplo,
+os sistemas de arquivos XFS e ext4fs oferecem suporte a quotas de projeto.
+
+{{< note >}}
+Quotas de projeto permitem o monitoramento do uso de armazenamento, mas não
+garantem limites.
+{{< /note >}}
+
+O Kubernetes utiliza IDs de projeto iniciando em `1048576`. Os IDs em uso estão
+registrados nos diretórios `/etc/projects` e `/etc/projid`. Se os IDs de projeto
+nestes intervalos forem utilizados para outros propósitos no sistema, estes IDs
+de projeto deverão estar registrados nos diretórios especificados acima para que
+o Kubernetes não os tente utilizar.
+
+Quotas fornecem melhor desempenho e mais precisão do que varredura de diretórios.
+Quando um diretório é atribuído a um projeto, todos os arquivos criados no
+diretório são também criados no projeto, e o núcleo do sistema pode simplesmente
+manter controle de quantos blocos estão em uso por arquivos daquele projeto. Se
+um arquivo é criado e apagado, mas possui um descritor de arquivo aberto, ele
+continua a consumir espaço. O rastreio de quotas registra este espaço de forma
+precisa, enquanto varreduras de diretório ignoram o uso de espaço de
+armazenamento por arquivos apagados.
+
+Se você deseja utilizar quotas de projeto, você deve:
+
+* Habilitar o [_feature gate_](/docs/reference/command-line-tools-reference/feature-gates/)
+  `LocalStorageCapacityIsolationFSQuotaMonitoring=true` utilizando o campo
+  `featureGates` na [configuração do kubelet](/docs/reference/config-api/kubelet-config.v1beta1/)
+  ou a opção de linha de comando `--feature-gates`.
+
+* Garantir que o sistema de arquivos raiz (ou o sistema de arquivos opcional de
+  tempo de execução) tem quotas de projeto habilitadas. Todos os sistemas de
+  arquivos XFS suportam quotas de projeto. Em sistemas de arquivos ext4, você
+  precisa habilitar a funcionalidade de rastreio de quotas de projeto enquanto
+  o sistema de arquivos ainda não está montado.
+
+  ```bash
+  # Para sistema de arquivos ext4, com o volume /dev/block-device não montado
+  sudo tune2fs -O project -Q prjquota /dev/block-device
+  ```
+
+* Garanta que o sistema de arquivos raiz (ou sistema de arquivos opcional de
+  tempo de execução) esteja montado com quotas de projeto habilitadas. Em ambos
+  os sistemas XFS e ext4fs, a opção de montagem é chamada `prjquota`.
+
+{{% /tab %}}
+{{< /tabs >}}
+
+## Recursos estendidos
+
+Recursos estendidos são nomes de recursos absolutos fora do domínio
+`kubernetes.io`. Estes recursos permitem a operadores de cluster anunciar e a
+usuários consumir recursos que não são embutidos pelo Kubernetes.
+
+Dois passos são necessários para a utilização de recursos estendidos.
+Primeiramente, o operador do cluster deve anunciar um recurso estendido. Em
+segundo lugar, os usuários devem solicitar o recurso estendido em Pods.
+
+### Gerenciando recursos estendidos
+
+#### Recursos estendidos a nível de nó
+
+Recursos estendidos a nível de nó são recursos ligados ao nó.
+
+##### Recursos gerenciados por dispositivos conectados
+
+Veja [Device Plugin](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)
+para mais informações sobre como anunciar recursos gerenciados por dispositivos
+conectados em cada nó.
+
+##### Outros recursos
+
+A fim de anunciar um novo recurso estendido a nível de nó, o operador do cluster
+pode enviar uma requisição HTTP com o método `PATCH` para o servidor da API do
+Kubernetes para especificar a quantidade disponível em um nó no cluster, através
+do campo `status.capacity`. Após a realização desta operação, o campo
+`status.capacity` do nó irá conter um novo recurso. O campo `status.allocatable`
+é atualizado automaticamente pelo kubelet, de forma assíncrona, com o novo
+recurso.
+
+Como o escalonador utiliza o valor do campo `status.allocatable` do nó ao
+verificar a saúde do Pod, o escalonador somente considerará o novo valor do
+campo após esta atualização assíncrona. Pode haver um pequeno atraso entre a
+atualização da capacidade do nó com um novo recurso e o momento em que o
+primeiro Pod que requer o recurso poderá ser agendado naquele nó.
+
+**Exemplo**:
+
+Este exemplo demonstra como utilizar a ferramenta `curl` para criar uma
+requisição HTTP que anuncia cinco recursos "example.com/foo" no nó `k8s-node-1`,
+cujo nó da camada de gerenciamento é `k8s-master`.
+
+```shell
+curl --header "Content-Type: application/json-patch+json" \
+  --request PATCH \
+  --data '[{"op": "add", "path": "/status/capacity/example.com~1foo", "value": "5"}]' \
+  http://k8s-master:8080/api/v1/nodes/k8s-node-1/status
+```
+
+{{< note >}}
+Na requisição anterior, a notação `~1` é a codificação do caractere `/` no campo
+`path` para a operação de atualização. O valor do campo `path` em JSON-Patch é
+interpretado como um JSON-Pointer. Para maiores detalhes, veja
+[a seção 3 da IETF RFC 6901](https://tools.ietf.org/html/rfc6901#section-3).
+{{< /note >}}
+
+#### Recursos estendidos a nível de cluster
+
+Recursos estendidos a nível de cluster não são vinculados aos nós. Estes
+recursos são normalmente gerenciados por extensões do escalonador, que manipulam
+o consumo e as quotas de recursos.
+
+Você pode especificar os recursos estendidos que são manipulados por extensões
+do escalonador nas [configurações do kube-scheduler](/docs/reference/config-api/kube-scheduler-config.v1beta3/).
+
+**Exemplo**:
+
+A configuração abaixo para uma política do escalonador indica que o recurso
+estendido a nível de cluster "example.com/foo" é manipulado pelas extensões do
+escalonador.
+
+- O escalonador envia um Pod para a extensão do escalonador somente se o Pod
+    solicitar "example.com/foo".
+- O campo `ignoredByScheduler` especifica que o escalonador não verifica o
+    recurso "example.com/foo" em seu predicado `PodFitsResources`.
+
+```json
+{
+  "kind": "Policy",
+  "apiVersion": "v1",
+  "extenders": [
+    {
+      "urlPrefix":"<extender-endpoint>",
+      "bindVerb": "bind",
+      "managedResources": [
+        {
+          "name": "example.com/foo",
+          "ignoredByScheduler": true
+        }
+      ]
+    }
+  ]
+}
+```
+
+### Consumindo recursos estendidos
+
+Usuários podem consumir recursos estendidos em especificações de Pods como CPU
+e memória. O escalonador controla a contagem de recursos de modo que a
+quantidade alocada simultaneamente a Pods não seja maior que a quantidade
+disponível.
+
+O servidor da API limita as quantidades de recursos estendidos a números inteiros.
+Exemplos de quantidades _válidas_ são `3`, `3000m` e `3Ki`. Exemplos de
+quantidades _inválidas_ são `0.5` e `1500m`.
+
+{{< note >}}
+Recursos estendidos substituem os Recursos Inteiros Opacos.
+Usuários podem escolher qualquer prefixo de nome de domínio, com exceção do
+domínio `kubernetes.io`, que é reservado.
+{{< /note >}}
+
+Para consumir um recurso estendido em um Pod, inclua o nome do recurso como uma
+chave no mapa `spec.containers[].resources.limits` na especificação do contêiner.
+
+{{< note >}}
+Recursos estendidos não podem ser superdimensionados. Portanto, `request` e
+`limit` devem ser iguais se ambos estiverem presentes na especificação de um
+contêiner.
+{{< /note >}}
+
+Um Pod só é agendado se todos os seus requerimentos de recursos forem
+satisfeitos, incluindo CPU, memória e quaisquer recursos estendidos. O Pod
+permanece no estado `PENDING` enquanto seus requerimentos de recursos não puderem
+ser satisfeitos.
+
+**Exemplo**:
+
+O Pod abaixo requisita duas CPUs e um "example.com/foo" (um recurso estendido).
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: my-pod
+spec:
+  containers:
+  - name: my-container
+    image: myimage
+    resources:
+      requests:
+        cpu: 2
+        example.com/foo: 1
+      limits:
+        example.com/foo: 1
+```
+
+## Limitação de PID
+
+Limites de ID de processo (PID) permitem à configuração de um kubelet limitar o
+número de PIDs que um dado Pod pode consumir. Consulte
+[PID Limiting](/docs/concepts/policy/pid-limiting/) para mais informações.
+
+## Solução de problemas {#troubleshooting}
+
+### Meus pods estão pendentes com um evento `FailedScheduling`
+
+Se o escalonador não conseguir encontrar nenhum nó que atenda aos requisitos de
+recursos do Pod, este Pod permanecerá não-agendado até que um local destino
+possa ser encontrado. Um [Evento](/docs/reference/kubernetes-api/cluster-resources/event-v1/)
+é produzido cada vez que o escalonador falhar em encontrar um local para agendar
+o Pod. Você pode utilizar o utilitário `kubectl` para ver os eventos de um Pod.
+Por exemplo:
+
+```shell
+kubectl describe pod frontend | grep -A 9999999999 Events
+```
+```
+Events:
+  Type     Reason            Age   From               Message
+  ----     ------            ----  ----               -------
+  Warning  FailedScheduling  23s   default-scheduler  0/42 nodes available: insufficient cpu
+```
+
+No exemplo acima, o Pod de nome "frontend" não pôde ser agendado devido à nenhum
+nó possuir CPU suficiente para suprir seu requerimento de CPU. Mensagens de erro
+semelhantes a essa podem sugerir falha devido a falta de memória
+(`PodExceedsFreeMemory`). De maneira geral, se um Pod estiver pendente com uma
+mensagem deste tipo, há diversas possibilidades de solução a serem tentadas:
+
+- Adicione mais nós ao cluster.
+- Encerre Pods desnecessários para liberar espaço para Pods pendentes.
+- Verifique se o Pod não é maior que todos os nós. Por exemplo, se todos os nós
+  têm uma capacidade de `cpu: 1`, um Pod que requisita `cpu: 1.1` nunca será
+  agendado.
+- Verifique se os nós não possuem _taints_. Se a maioria dos seus nós possuem
+  _taints_, e o novo Pod não tolera tal _taint_, o escalonador somente considera
+  agendar o Pod nos nós que não possuem aquele _taint_.
+
+Você pode verificar capacidades de nós e quantidades alocadas com o comando
+`kubectl describe nodes`. Por exemplo:
+
+```shell
+kubectl describe nodes e2e-test-node-pool-4lw4
+```
+```
+Name:            e2e-test-node-pool-4lw4
+[ ... linhas abreviadas para simplificação ...]
+Capacity:
+ cpu:                               2
+ memory:                            7679792Ki
+ pods:                              110
+Allocatable:
+ cpu:                               1800m
+ memory:                            7474992Ki
+ pods:                              110
+[ ... linhas abreviadas para simplificação ...]
+Non-terminated Pods:        (5 in total)
+  Namespace    Name                                  CPU Requests  CPU Limits  Memory Requests  Memory Limits
+  ---------    ----                                  ------------  ----------  ---------------  -------------
+  kube-system  fluentd-gcp-v1.38-28bv1               100m (5%)     0 (0%)      200Mi (2%)       200Mi (2%)
+  kube-system  kube-dns-3297075139-61lj3             260m (13%)    0 (0%)      100Mi (1%)       170Mi (2%)
+  kube-system  kube-proxy-e2e-test-...               100m (5%)     0 (0%)      0 (0%)           0 (0%)
+  kube-system  monitoring-influxdb-grafana-v4-z1m12  200m (10%)    200m (10%)  600Mi (8%)       600Mi (8%)
+  kube-system  node-problem-detector-v0.1-fj7m3      20m (1%)      200m (10%)  20Mi (0%)        100Mi (1%)
+Allocated resources:
+  (Total limits may be over 100 percent, i.e., overcommitted.)
+  CPU Requests    CPU Limits    Memory Requests    Memory Limits
+  ------------    ----------    ---------------    -------------
+  680m (34%)      400m (20%)    920Mi (11%)        1070Mi (13%)
+```
+
+No exemplo anterior, você pode verificar que se um Pod requisitar mais que 1,120
+CPUs ou mais que 6,23Gi de memória, tal Pod não caberá neste nó.
+
+Ao verificar a seção "Pods", você pode observar quais Pods estão consumindo
+espaço neste nó.
+
+A quantidade de recursos disponível aos Pods é menor que a capacidade do nó, pois
+daemons do sistema utilizam uma parcela dos recursos disponíveis. Dentro da API
+do Kubernetes, cada nó tem um campo `.status.allocatable`
+(consulte [NodeStatus](/docs/reference/kubernetes-api/cluster-resources/node-v1/#NodeStatus)
+para mais detalhes).
+
+O campo `.status.allocatable` descreve a quantidade de recursos que está
+disponível a Pods naquele nó (por exemplo: 15 CPUs virtuais e 7538 MiB de
+memória). Para mais informações sobre recursos alocáveis do nó no Kubernetes,
+veja [Reserve Compute Resources for System Daemons](/docs/tasks/administer-cluster/reserve-compute-resources/).
+
+Você pode configurar [quotas de recursos](/docs/concepts/policy/resource-quotas/)
+para limitar a quantidade total de recursos que um namespace pode consumir.
+O Kubernetes garante quotas para objetos em um namespace específico quando há
+uma `ResourceQuota` naquele namespace. Por exemplo, se você atribuir namespaces
+específicos a times diferentes, você pode adicionar `ResourceQuota`s nestes
+namespaces. Criar quotas de recursos ajuda a evitar que um time utilize tanto de
+um recurso que chegue a afetar outros times utilizando o mesmo cluster.
+
+Você deve também considerar o nível de acesso fornecido aos usuários de qualquer
+namespace: acesso **completo** para escrita permite a alguém com este acesso
+remover **qualquer** recurso, incluindo uma configuração de `ResourceQuota`.
+
+### Meu contêiner foi terminado
+
+Seu contêiner pode ser terminado se faltar recursos para que este rode. Para
+verificar se um contêiner está sendo terminado por chegar no limite de algum
+recurso, utilize o comando `kubectl describe pod` no Pod em questão:
+
+```shell
+kubectl describe pod simmemleak-hra99
+```
+
+A saída será semelhante a:
+```
+Name:                           simmemleak-hra99
+Namespace:                      default
+Image(s):                       saadali/simmemleak
+Node:                           kubernetes-node-tf0f/10.240.216.66
+Labels:                         name=simmemleak
+Status:                         Running
+Reason:
+Message:
+IP:                             10.244.2.75
+Containers:
+  simmemleak:
+    Image:  saadali/simmemleak:latest
+    Limits:
+      cpu:          100m
+      memory:       50Mi
+    State:          Running
+      Started:      Tue, 07 Jul 2019 12:54:41 -0700
+    Last State:     Terminated
+      Reason:       OOMKilled
+      Exit Code:    137
+      Started:      Fri, 07 Jul 2019 12:54:30 -0700
+      Finished:     Fri, 07 Jul 2019 12:54:33 -0700
+    Ready:          False
+    Restart Count:  5
+Conditions:
+  Type      Status
+  Ready     False
+Events:
+  Type    Reason     Age   From               Message
+  ----    ------     ----  ----               -------
+  Normal  Scheduled  42s   default-scheduler  Successfully assigned simmemleak-hra99 to kubernetes-node-tf0f
+  Normal  Pulled     41s   kubelet            Container image "saadali/simmemleak:latest" already present on machine
+  Normal  Created    41s   kubelet            Created container simmemleak
+  Normal  Started    40s   kubelet            Started container simmemleak
+  Normal  Killing    32s   kubelet            Killing container with id ead3fb35-5cf5-44ed-9ae1-488115be66c6: Need to kill Pod
+```
+
+No exemplo acima, o campo `Restart Count:  5` indica que o contêiner `simmemleak`
+deste Pod foi terminado e reiniciado cinco vezes até o momento. A razão
+`OOMKilled` demonstra que o contêiner tentou consumir mais memória do que o seu
+limite.
+
+O próximo passo neste cenário seria vasculhar e depurar o código da aplicação,
+procurando por vazamentos de memória. Se você determinar que a aplicação está se
+comportando conforme o esperado, considere aumentar o limite (e possivelmente
+o requerimento) de memória para aquele contêiner.
+
+## {{% heading "whatsnext" %}}
+
+* Pratique [a criação de requerimentos de recursos de memória em contêineres e Pods](/docs/tasks/configure-pod-container/assign-memory-resource/).
+* Pratique [a criação de requerimentos de CPU em contêineres and Pods](/docs/tasks/configure-pod-container/assign-cpu-resource/).
+* Leia como a referência da API define um [contêiner](/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container)
+  e seus [requerimentos de recursos](/docs/reference/kubernetes-api/workload-resources/pod-v1/#resources).
+* Leia sobre [quotas de projeto](https://xfs.org/index.php/XFS_FAQ#Q:_Quota:_Do_quotas_work_on_XFS.3F) no XFS.
+* Leia mais sobre a [referência de configuração do kube-scheduler (v1beta3)](/docs/reference/config-api/kube-scheduler-config.v1beta3/).
+
diff --git a/content/pt-br/docs/concepts/configuration/overview.md b/content/pt-br/docs/concepts/configuration/overview.md
index 66f369c03b..cf79b447e8 100644
--- a/content/pt-br/docs/concepts/configuration/overview.md
+++ b/content/pt-br/docs/concepts/configuration/overview.md
@@ -23,7 +23,7 @@ Isso permite que você reverta rapidamente uma alteração de configuração, ca
 - Escreva seus arquivos de configuração usando YAML ao invés de JSON. Embora esses formatos possam ser usados alternadamente em quase todos os cenários, YAML tende a ser mais amigável.
 
 - Agrupe objetos relacionados em um único arquivo sempre que fizer sentido. Geralmente, um arquivo é mais fácil de
-gerenciar do que vários. Veja o [guestbook-all-in-one.yaml](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/guestbook/all-in-one/guestbook-all-in-one.yaml) como exemplo dessa sintaxe.
+gerenciar do que vários. Veja o [guestbook-all-in-one.yaml](https://github.com/kubernetes/examples/tree/master/guestbook/all-in-one/guestbook-all-in-one.yaml) como exemplo dessa sintaxe.
 
 - Observe também que vários comandos `kubectl` podem ser chamados em um diretório. Por exemplo, você pode chamar
 `kubectl apply` em um diretório de arquivos de configuração.
@@ -70,7 +70,7 @@ combinação de <`hostIP`, `hostPort`, `protocol`> deve ser única. Se você nã
 ## Usando Labels
 
 - Defina e use [labels](/docs/concepts/overview/working-with-objects/labels/) que identifiquem _atributos semânticos_ da sua aplicação ou Deployment, como `{ app: myapp, tier: frontend, phase: test, deployment: v3 }`. Você pode usar essas labels para selecionar os Pods apropriados para outros recursos; por exemplo, um Service que seleciona todos os Pods `tier: frontend`, ou todos
-os componentes de `app: myapp`. Veja o app [guestbook](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/guestbook/) para exemplos dessa abordagem.
+os componentes de `app: myapp`. Veja o app [guestbook](https://github.com/kubernetes/examples/tree/master/guestbook/) para exemplos dessa abordagem.
 
 Um Service pode ser feito para abranger vários Deployments, omitindo labels específicas de lançamento de seu seletor. Quando você
 precisar atualizar um serviço em execução sem _downtime_, use um [Deployment](/docs/concepts/workloads/controllers/deployment/).
diff --git a/content/pt-br/docs/concepts/configuration/secret.md b/content/pt-br/docs/concepts/configuration/secret.md
new file mode 100644
index 0000000000..cd71622361
--- /dev/null
+++ b/content/pt-br/docs/concepts/configuration/secret.md
@@ -0,0 +1,1420 @@
+---
+title: Secrets
+content_type: concept
+feature:
+  title: Secrets e gerenciamento de configuração
+  description: >
+    Crie e atualize Secrets e configurações da aplicação sem reconstruir sua imagem
+    de contêiner e sem expor credenciais na configuração da sua aplicação.
+weight: 30
+---
+
+<!-- overview -->
+
+Um Secret é um objeto que contém uma pequena quantidade de informação sensível,
+como senhas, tokens ou chaves. Este tipo de informação poderia, em outras
+circunstâncias, ser colocada diretamente em uma configuração de
+{{< glossary_tooltip term_id="pod" >}} ou em uma
+{{< glossary_tooltip text="imagem de contêiner" term_id="image" >}}. O uso de
+Secrets evita que você tenha de incluir dados confidenciais no seu código.
+
+Secrets podem ser criados de forma independente dos Pods que os consomem. Isto
+reduz o risco de que o Secret e seus dados sejam expostos durante o processo de
+criação, visualização e edição ou atualização de Pods. O Kubernetes e as
+aplicações que rodam no seu cluster podem também tomar outras precauções com
+Secrets, como por exemplo evitar a escrita de dados confidenciais em local de
+armazenamento persistente (não-volátil).
+
+Secrets são semelhantes a
+{{< glossary_tooltip text="ConfigMaps" term_id="configmap" >}}, mas foram
+especificamente projetados para conter dados confidenciais.
+
+{{< caution >}}
+Os Secrets do Kubernetes são, por padrão, gravados não-encriptados no sistema
+de armazenamento de dados utilizado pelo servidor da API (etcd). Qualquer pessoa
+com acesso à API ou ao etcd consegue obter ou modificar um Secret.
+Além disso, qualquer pessoa que possui autorização para criar Pods em um namespace
+consegue utilizar este privilégio para ler qualquer Secret naquele namespace. Isso
+inclui acesso indireto, como por exemplo a permissão para criar Deployments.
+
+Para utilizar Secrets de forma segura, siga pelo menos as instruções abaixo:
+1. [Habilite encriptação em disco](/docs/tasks/administer-cluster/encrypt-data/) para Secrets.
+1. Habilite ou configure [regras de RBAC](/docs/reference/access-authn-authz/authorization/)
+que restrinjam o acesso de leitura a Secrets (incluindo acesso indireto).
+1. Quando apropriado, utilize mecanismos como RBAC para limitar quais perfis e
+usuários possuem permissão para criar novos Secrets ou substituir Secrets
+existentes.
+
+{{< /caution >}}
+
+Consulte [Segurança da informação para Secrets](#information-security-for-secrets)
+para mais detalhes.
+
+<!-- body -->
+
+## Usos para Secrets
+
+Existem três formas principais para um Pod utilizar um Secret:
+- Como [arquivos](#using-secrets-as-files-from-a-pod) em um
+{{< glossary_tooltip text="volume" term_id="volume" >}} montado em um ou mais de
+seus contêineres.
+- Como uma [variável de ambiente](#using-secrets-as-environment-variables) de um
+contêiner.
+- Pelo [kubelet ao baixar imagens de contêiner](#using-imagepullsecrets) para o
+Pod.
+
+A camada de gerenciamento do Kubernetes também utiliza Secrets. Por exemplo,
+os [Secrets de tokens de autoinicialização](#bootstrap-token-secrets) são um
+mecanismo que auxilia a automação do registro de nós.
+
+### Alternativas a Secrets
+
+Ao invés de utilizar um Secret para proteger dados confidenciais, você pode
+escolher uma maneira alternativa. Algumas das opções são:
+
+- se o seu componente cloud native precisa autenticar-se a outra aplicação que
+está rodando no mesmo cluster Kubernetes, você pode utilizar uma
+[ServiceAccount](/pt-br/docs/reference/access-authn-authz/authentication/#tokens-de-contas-de-serviço)
+e seus tokens para identificar seu cliente.
+- existem ferramentas fornecidas por terceiros que você pode rodar, no seu
+cluster ou externamente, que providenciam gerenciamento de Secrets. Por exemplo,
+um serviço que Pods accessam via HTTPS, que revelam um Secret se o cliente
+autenticar-se corretamente (por exemplo, utilizando um token de ServiceAccount).
+- para autenticação, você pode implementar um serviço de assinatura de
+certificados X.509 personalizado, e utilizar
+[CertificateSigningRequests](/docs/reference/access-authn-authz/certificate-signing-requests/)
+para permitir ao serviço personalizado emitir certificados a pods que os
+necessitam.
+- você pode utilizar um [plugin de dispositivo](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)
+para expor a um Pod específico um hardware de encriptação conectado a um nó. Por
+exemplo, você pode agendar Pods confiáveis em nós que oferecem um _Trusted
+Platform Module_, configurado em um fluxo de dados independente.
+
+Você pode também combinar duas ou mais destas opções, incluindo a opção de
+utilizar objetos do tipo Secret.
+
+Por exemplo: implemente (ou instale) um
+{{< glossary_tooltip text="operador" term_id="operator-pattern" >}}
+que solicite tokens de sessão de curta duração a um serviço externo, e crie
+Secrets baseado nestes tokens. Pods rodando no seu cluster podem fazer uso de
+tokens de sessão, e o operador garante que estes permanecem válidos. Esta
+separação significa que você pode rodar Pods que não precisam ter conhecimento
+do mecanismo exato para geração e atualização de tais tokens de sessão.
+
+## Trabalhando com Secrets
+
+### Criando um Secret
+
+Existem diversas formas de criar um Secret:
+
+- [crie um Secret utilizando o comando `kubectl`](/pt-br/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
+- [crie um Secret a partir de um arquivo de configuração](/pt-br/docs/tasks/configmap-secret/managing-secret-using-config-file/)
+- [crie um Secret utilizando a ferramenta kustomize](/pt-br/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
+
+#### Restrições de nomes de Secret e dados {#restriction-names-data}
+
+O nome de um Secret deve ser um [subdomínio DNS válido](/pt-br/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
+
+Você pode especificar o campo `data` e/ou o campo `stringData` na criação de um
+arquivo de configuração de um Secret. Ambos os campos `data` e `stringData` são
+opcionais. Os valores das chaves no campo `data` devem ser strings codificadas
+no formato base64. Se a conversão para base64 não for desejável, você pode
+optar por informar os dados no campo `stringData`, que aceita strings arbitrárias
+como valores.
+
+As chaves dos campos `data` e `stringData` devem consistir de caracteres
+alfanuméricos, `-`, `_`, ou `.`. Todos os pares chave-valor no campo `stringData`
+são internamente combinados com os dados do campo `data`. Se uma chave aparece
+em ambos os campos, o valor informado no campo `stringData` tem a precedência.
+
+#### Limite de tamanho {#restriction-data-size}
+
+Secrets individuais são limitados a 1MiB em tamanho. Esta limitação tem por
+objetivo desencorajar a criação de Secrets muito grandes que possam exaurir a
+memória do servidor da API e do kubelet. No entanto, a criação de vários Secrets
+pequenos também pode exaurir a memória. Você pode utilizar uma
+[cota de recurso](/pt-br/docs/concepts/policy/resource-quotas/) a fim de limitar
+o número de Secrets (ou outros recursos) em um namespace.
+
+### Editando um Secret
+
+Você pode editar um Secret existente utilizando kubectl:
+
+```shell
+kubectl edit secrets mysecret
+```
+
+Este comando abre o seu editor padrão configurado e permite a modificação dos
+valores do Secret codificados em base64 no campo `data`. Por exemplo:
+
+```yaml
+# Please edit the object below. Lines beginning with a '#' will be ignored,
+# and an empty file will abort the edit. If an error occurs while saving this file, it will be
+# reopened with the relevant failures.
+#
+apiVersion: v1
+data:
+  username: YWRtaW4=
+  password: MWYyZDFlMmU2N2Rm
+kind: Secret
+metadata:
+  annotations:
+    kubectl.kubernetes.io/last-applied-configuration: { ... }
+  creationTimestamp: 2016-01-22T18:41:56Z
+  name: mysecret
+  namespace: default
+  resourceVersion: "164619"
+  uid: cfee02d6-c137-11e5-8d73-42010af00002
+type: Opaque
+```
+
+Este manifesto de exemplo define um Secret com duas chaves no campo `data`:
+`username` and `password`.
+Os valores são strings codificadas em formato base64. No entanto, quando um
+Secret é utilizado em um Pod, o kubelet fornece os dados _decodificados_ ao Pod
+e seus contêineres.
+
+Você pode especificar muitas chaves e valores em um Secret só, ou utilizar
+muitos Secrets. Escolha a opção que for mais conveniente para o caso de uso.
+
+### Utilizando Secrets
+
+Secrets podem ser montados como volumes de dados ou expostos como
+{{< glossary_tooltip text="variáveis de ambiente" term_id="container-env-variables" >}}
+para serem utilizados num container de um Pod. Secrets também podem ser
+utilizados por outras partes do sistema, sem serem diretamente expostos ao Pod.
+Por exemplo, Secrets podem conter credenciais que outras partes do sistema devem
+utilizar para interagir com sistemas externos no lugar do usuário.
+
+Secrets montados como volumes são verificados para garantir que o nome
+referenciado realmente é um objeto do tipo Secret. Portanto, um Secret deve ser
+criado antes de quaisquer Pods que dependem deste Secret.
+
+Se um Secret não puder ser encontrado (porque não existe, ou devido a um problema
+de conectividade com o servidor da API) o kubelet tenta periodicamente reiniciar
+aquele Pod. O kubelet também relata um evento para aquele Pod, incluindo detalhes
+do problema ao buscar o Secret.
+
+#### Secrets Opcionais {#restriction-secret-must-exist}
+
+Quando você define uma variável de ambiente em um contêiner baseada em um Secret,
+você pode especificar que o Secret em questão será _opcional_. O padrão é o
+Secret ser requerido.
+
+Nenhum dos contêineres de um Pod irão inicializar até que todos os Secrets
+requeridos estejam disponíveis.
+
+Se um Pod referencia uma chave específica em um Secret e o Secret existe, mas
+não possui a chave com o nome referenciado, o Pod falha durante a inicialização.
+
+### Utilizando Secrets como arquivos em um Pod {#using-secrets-as-files-from-a-pod}
+
+Se você deseja acessar dados de um Secret em um Pod, uma das formas de consumir
+esta informação é fazer com que o Kubernetes deixe o valor daquele Secret
+disponível como um arquivo dentro do sistema de arquivos de um ou mais dos
+contêineres daquele Pod.
+
+Para configurar isso:
+
+1. Crie um Secret ou utilize um previamente existente. Múltiplos Pods podem
+referenciar o mesmo secret.
+1. Modifique sua definição de Pod para adicionar um volume na lista
+`.spec.volumes[]`. Escolha um nome qualquer para o seu volume e adicione um
+campo `.spec.volumes[].secret.secretName` com o mesmo valor do seu objeto
+Secret.
+1. Adicione um ponto de montagem de volume à lista
+`.spec.containers[].volumeMounts[]` de cada contêiner que requer o Secret.
+Especifique `.spec.containers[].volumeMounts[].readOnly = true` e especifique o
+valor do campo `.spec.containers[].volumeMounts[].mountPath` com o nome de um
+diretório não utilizado onde você deseja que os Secrets apareçam.
+1. Modifique sua imagem ou linha de comando de modo que o programa procure por
+arquivos naquele diretório. Cada chave no campo `data` se torna um nome de
+arquivo no diretório especificado em `mountPath`.
+
+Este é um exemplo de Pod que monta um Secret de nome `mysecret` em um volume:
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: mypod
+spec:
+  containers:
+  - name: mypod
+    image: redis
+    volumeMounts:
+    - name: foo
+      mountPath: "/etc/foo"
+      readOnly: true
+  volumes:
+  - name: foo
+    secret:
+      secretName: mysecret # configuração padrão; "mysecret" precisa existir
+```
+
+Cada Secret que você deseja utilizar deve ser referenciado na lista
+`.spec.volumes`.
+
+Se existirem múltiplos contêineres em um Pod, cada um dos contêineres
+necessitará seu próprio bloco `volumeMounts`, mas somente um volume na lista
+`.spec.volumes` é necessário por Secret.
+
+{{< note >}}
+Versões do Kubernetes anteriores a v1.22 criavam automaticamente credenciais
+para acesso à API do Kubernetes. Este mecanismo antigo era baseado na criação de
+Secrets com tokens que podiam então ser montados em Pods em execução.
+Em versões mais recentes, incluindo o Kubernetes v{{< skew currentVersion >}},
+credenciais para acesso à API são obtidas diretamente através da API
+[TokenRequest](/docs/reference/kubernetes-api/authentication-resources/token-request-v1/)
+e são montadas em Pods utilizando um
+[volume projetado](/docs/reference/access-authn-authz/service-accounts-admin/#bound-service-account-token-volume).
+Os tokens obtidos através deste método possuem tempo de vida limitado e são
+automaticamente invalidados quando o Pod em que estão montados é removido.
+
+Você ainda pode
+[criar manualmente](/docs/tasks/configure-pod-container/configure-service-account/#manually-create-a-service-account-api-token)
+um Secret de token de service account se você precisa de um token que não expire,
+por exemplo. No entanto, o uso do subrecurso
+[TokenRequest](/docs/reference/kubernetes-api/authentication-resources/token-request-v1/)
+é recomendado para obtenção de um token para acesso à API ao invés do uso de
+Secrets de token de service account.
+{{< /note >}}
+
+#### Projeção de chaves de Secrets em caminhos específicos
+
+Você pode também controlar os caminhos dentro do volume onde as chaves do Secret
+são projetadas. Você pode utilizar o campo `.spec.volumes[].secret.items` para
+mudar o caminho de destino de cada chave:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: mypod
+spec:
+  containers:
+  - name: mypod
+    image: redis
+    volumeMounts:
+    - name: foo
+      mountPath: "/etc/foo"
+      readOnly: true
+  volumes:
+  - name: foo
+    secret:
+      secretName: mysecret
+      items:
+      - key: username
+        path: my-group/my-username
+```
+
+Neste caso:
+
+* O valor da chave `username` é armazenado no arquivo
+  `/etc/foo/my-group/my-username` ao invés de `/etc/foo/username`.
+* O valor da chave `password` não é projetado no sistema de arquivos.
+
+Se `.spec.volumes[].secret.items` for utilizado, somente chaves especificadas
+na lista `items` são projetadas. Para consumir todas as chaves do Secret, deve
+haver um item para cada chave no campo `items`.
+
+Se você listar as chaves explicitamente, então todas as chaves listadas precisam
+existir no Secret correspondente. Caso contrário, o volume não é criado.
+
+#### Permissões de arquivos de Secret
+
+Você pode trocar os bits de permissão POSIX de uma chave avulsa de Secret.
+Se nenhuma permissão for especificada, `0644` é utilizado por padrão.
+Você pode também especificar uma permissão padrão para o volume inteiro de
+Secret e sobrescrever esta permissão por chave, se necessário.
+
+Por exemplo, você pode especificar uma permissão padrão da seguinte maneira:
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: mypod
+spec:
+  containers:
+  - name: mypod
+    image: redis
+    volumeMounts:
+    - name: foo
+      mountPath: "/etc/foo"
+  volumes:
+  - name: foo
+    secret:
+      secretName: mysecret
+      defaultMode: 0400
+```
+
+Dessa forma, o Secret será montado em `/etc/foo` e todos os arquivos criados
+no volume terão a permissão `0400`.
+
+{{< note >}}
+Se você estiver definindo um Pod ou um template de Pod utilizando JSON, observe
+que a especificação JSON não suporta a notação octal. Você pode utilizar o valor
+decimal para o campo `defaultMode` (por exemplo, 0400 em base octal equivale a
+256 na base decimal).  
+Se você estiver escrevendo YAML, você pode escrever o valor para `defaultMode`
+em octal.
+{{< /note >}}
+
+#### Consumindo valores de Secrets em volumes
+
+Dentro do contêiner que monta um volume de Secret, as chaves deste Secret
+aparecem como arquivos e os valores dos Secrets são decodificados do formato
+base64 e armazenados dentro destes arquivos.
+
+Ao executar comandos dentro do contêiner do exemplo anterior, obteremos os
+seguintes resultados:
+
+```shell
+ls /etc/foo
+```
+
+O resultado é semelhante a:
+
+```
+username
+password
+```
+
+```shell
+cat /etc/foo/username
+```
+
+O resultado é semelhante a:
+
+```
+admin
+```
+
+```shell
+cat /etc/foo/password
+```
+
+O resultado é semelhante a:
+
+```
+1f2d1e2e67df
+```
+
+A aplicação rodando dentro do contêiner é responsável pela leitura dos Secrets
+dentro dos arquivos.
+
+#### Secrets montados são atualizados automaticamente
+
+Quando um volume contém dados de um Secret, e o Secret referenciado é atualizado,
+o Kubernetes rastreia a atualização e atualiza os dados no volume, utilizando
+uma abordagem de consistência eventual.
+
+{{< note >}}
+Um contêiner que utiliza Secrets através de um volume montado com a propriedade
+[`subPath`](/docs/concepts/storage/volumes#using-subpath) não recebe
+atualizações automatizadas para este Secret.
+{{< /note >}}
+
+O kubelet mantém um cache das chaves e valores atuais dos Secrets que são
+utilizados em volumes de Pods daquele nó. Você pode configurar a forma que o
+kubelet detecta diferenças dos valores armazenados em cache. O campo
+`configMapAndSecretDetectionStrategy` na
+[configuração do kubelet](/docs/reference/config-api/kubelet-config.v1beta1/)
+controla qual estratégia o kubelet usa. A estratégia padrão é `Watch`.
+
+Atualizações em Secrets podem ser propagadas por um mecanismo de observação da
+API (estratégia padrão), baseado em cache com um tempo de expiração definido
+(_time-to-live_), ou solicitado diretamente ao servidor da API do cluster a cada
+iteração do ciclo de sincronização do kubelet.
+
+Como resultado, o atraso total entre o momento em que o Secret foi atualizado
+até o momento em que as novas chaves são projetadas no Pod pode ser tão longo
+quanto a soma do tempo de sincronização do kubelet somado ao tempo de atraso de
+propagação do cache, onde o atraso de propagação do cache depende do tipo de
+cache escolhido. Seguindo a mesma ordem listada no parágrafo anterior, estes
+valores são: atraso de propagação via _watch_, tempo de expiração configurado no
+cache (_time-to-live_, ou TTL), ou zero para solicitação direta ao servidor da
+API.
+
+### Utilizando Secrets como variáveis de ambiente {#using-secrets-as-environment-variables}
+
+Para utilizar um secret em uma {{< glossary_tooltip text="variável de ambiente" term_id="container-env-variables" >}}
+em um Pod:
+
+1. Crie um Secret ou utilize um já existente. Múltiplos Pods podem referenciar o
+   mesmo Secret.
+1. Modifique a definição de cada contêiner do Pod em que desejar consumir o
+   Secret, adicionando uma variável de ambiente para cada uma das chaves que
+   deseja consumir.
+   A variável de ambiente que consumir o valor da chave em questão deverá
+   popular o nome do Secret e a sua chave correspondente no campo
+   `env[].valueFrom.secretKeyRef`.
+1. Modifique sua imagem de contêiner ou linha de comando de forma que o programa
+   busque os valores nas variáveis de ambiente especificadas.
+
+Este é um exemplo de um Pod que utiliza Secrets em variáveis de ambiente:
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: secret-env-pod
+spec:
+  containers:
+  - name: mycontainer
+    image: redis
+    env:
+    - name: SECRET_USERNAME
+      valueFrom:
+        secretKeyRef:
+          name: mysecret
+          key: username
+          optional: false # valor padrão; "mysecret" deve existir
+                          # e incluir uma chave com o nome "username"
+    - name: SECRET_PASSWORD
+      valueFrom:
+        secretKeyRef:
+          name: mysecret
+          key: password
+          optional: false # valor padrão; "mysecret" deve existir
+                          # e incluir uma chave com o nome "password"
+  restartPolicy: Never
+```
+
+#### Variáveis de ambiente inválidas {#restriction-env-from-invalid}
+
+Secrets utilizados para popular variáveis de ambiente através do campo `envFrom`
+que possuem chaves consideradas inválidas para nomes de variáveis de ambiente
+têm tais chaves ignoradas. O Pod irá iniciar normalmente.
+
+Se você definir um Pod contendo um nome de variável de ambiente inválido, os
+eventos de inicialização do Pod incluirão um evento com a razão
+`InvalidVariableNames` e uma mensagem que lista as chaves inválidas ignoradas.
+O exemplo abaixo demonstra um Pod que referencia um Secret chamado `mysecret`,
+onde `mysecret` contém duas chaves inválidas: `1badkey` and `2alsobad`.
+
+```shell
+kubectl get events
+```
+
+O resultado é semelhante a:
+
+```
+LASTSEEN   FIRSTSEEN   COUNT     NAME            KIND      SUBOBJECT                         TYPE      REASON
+0s         0s          1         dapi-test-pod   Pod                                         Warning   InvalidEnvironmentVariableNames   kubelet, 127.0.0.1      Keys [1badkey, 2alsobad] from the EnvFrom secret default/mysecret were skipped since they are considered invalid environment variable names.
+```
+
+#### Consumindo valores de Secret em variáveis de ambiente
+
+Dentro de um contêiner que consome um Secret em variáveis de ambiente, as chaves
+do Secret aparecem como variáveis de ambiente comuns, contendo os dados do
+Secret decodificados do formato base64. Ao executar comandos no contêiner do
+exemplo anterior, obteremos os resultados abaixo:
+
+```shell
+echo $SECRET_USERNAME
+```
+
+O resultado é semelhante a:
+
+```
+admin
+```
+
+```shell
+echo $SECRET_PASSWORD
+```
+
+O resultado é semelhante a:
+
+```
+1f2d1e2e67df
+```
+
+{{< note >}}
+Se um contêiner já consome um Secret em uma variável de ambiente, uma
+atualização do Secret não será detectada pelo contêiner a menos que este seja
+reiniciado. Há soluções de terceiros que fornecem a funcionalidade de
+reinicialização automática de Pods quando o valor dos Secrets mudam.
+{{< /note >}}
+
+### Secrets para obtenção de imagens de contêiner {#using-imagepullsecrets}
+
+Se você deseja obter imagens de contêiner de um repositório privado, você
+precisa fornecer ao kubelet uma maneira de se autenticar a este repositório.
+Você pode configurar o campo `imagePullSecrets` para esta finalidade. Estes
+Secrets são configurados a nível de Pod.
+
+O campo `imagePullSecrets` de um Pod é uma lista de referências a Secrets
+no mesmo namespace que o Pod.
+Você pode utilizar `imagePullSecrets` para enviar credenciais para acesso a um
+registro de contêineres ao kubelet. O kubelet utiliza essa informação para
+baixar uma imagem privada no lugar do seu Pod.
+Veja o campo `PodSpec` na
+[referência da API de Pods](/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodSpec)
+para maiores detalhes sobre o campo `imagePullSecrets`.
+
+#### Usando `imagePullSecrets`
+
+O campo `imagePullSecrets` é uma lista de referências a Secrets no mesmo
+namespace.
+Você pode utilizar o campo `imagePullSecrets` para enviar um Secret que contém
+uma senha para um registro de imagens de contêiner do Docker (ou outro registro
+de imagens de contêiner). O kubelet utiliza essa informação para baixar uma
+imagem privada no lugar do seu Pod.
+Veja a [API `PodSpec`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core)
+para mais informações sobre o campo `imagePullSecrets`.
+
+##### Especificando `imagePullSecrets` manualmente
+
+Você pode ler sobre como especificar `imagePullSecrets` em um Pod na
+[documentação de imagens de contêiner](/pt-br/docs/concepts/containers/images/#especificando-imagepullsecrets-em-um-pod).
+
+##### Configurando `imagePullSecrets` para serem adicionados automaticamente
+
+Você pode criar manualmente `imagePullSecrets` e referenciá-los em uma
+ServiceAccount. Quaisquer Pods criados com esta ServiceAccount, especificada
+explicitamente ou por padrão, têm o campo `imagePullSecrets` populado com os
+mesmos valores existentes na service account.
+Veja [adicionando `imagePullSecrets` a uma service account](/docs/tasks/configure-pod-container/configure-service-account/#add-imagepullsecrets-to-a-service-account)
+para uma explicação detalhada do processo.
+
+### Utilizando Secrets com pods estáticos {#restriction-static-pod}
+
+Você não pode utilizar ConfigMaps ou Secrets em
+{{< glossary_tooltip text="Pods estáticos" term_id="static-pod" >}}.
+
+## Casos de uso
+
+### Caso de uso: Como variáveis de ambiente em um contêiner
+
+Crie um manifesto de Secret
+
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: mysecret
+type: Opaque
+data:
+  USER_NAME: YWRtaW4=
+  PASSWORD: MWYyZDFlMmU2N2Rm
+```
+
+Crie o Secret no seu cluster:
+
+```shell
+kubectl apply -f mysecret.yaml
+```
+
+Utilize `envFrom` para definir todos os dados do Secret como variáveis de
+ambiente do contêiner. Cada chave do Secret se torna o nome de uma variável de
+ambiente no Pod.
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: secret-test-pod
+spec:
+  containers:
+    - name: test-container
+      image: k8s.gcr.io/busybox
+      command: [ "/bin/sh", "-c", "env" ]
+      envFrom:
+      - secretRef:
+          name: mysecret
+  restartPolicy: Never
+```
+
+### Caso de uso: Pod com chaves SSH
+
+Crie um Secret contendo chaves SSH:
+
+```shell
+kubectl create secret generic ssh-key-secret --from-file=ssh-privatekey=/path/to/.ssh/id_rsa --from-file=ssh-publickey=/path/to/.ssh/id_rsa.pub
+```
+
+O resultado é semelhante a:
+
+```
+secret "ssh-key-secret" created
+```
+
+Você também pode criar um manifesto `kustomization.yaml` com um campo
+`secretGenerator` contendo chaves SSH.
+
+{{< caution >}}
+Analise cuidadosamente antes de enviar suas próprias chaves SSH: outros usuários
+do cluster podem ter acesso a este Secret.
+
+Como alternativa, você pode criar uma chave SSH privada representando a
+identidade de um serviço que você deseja que seja acessível a todos os usuários
+com os quais você compartilha o cluster do Kubernetes em questão. Desse modo,
+você pode revogar esta credencial em caso de comprometimento.
+{{< /caution >}}
+
+Agora você pode criar um Pod que referencia o Secret com a chave SSH e consome-o
+em um volume:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: secret-test-pod
+  labels:
+    name: secret-test
+spec:
+  volumes:
+  - name: secret-volume
+    secret:
+      secretName: ssh-key-secret
+  containers:
+  - name: ssh-test-container
+    image: mySshImage
+    volumeMounts:
+    - name: secret-volume
+      readOnly: true
+      mountPath: "/etc/secret-volume"
+```
+
+Ao rodar o comando do contêiner, as partes da chave estarão disponíveis em:
+
+```
+/etc/secret-volume/ssh-publickey
+/etc/secret-volume/ssh-privatekey
+```
+
+O contêiner então pode utilizar os dados do secret para estabelecer uma conexão
+SSH.
+
+### Caso de uso: Pods com credenciais de ambientes de produção ou testes
+
+Este exemplo ilustra um Pod que consome um Secret contendo credenciais de um
+ambiente de produção e outro Pod que consome um Secret contendo credenciais de
+um ambiente de testes.
+
+Você pode criar um manifesto `kustomization.yaml` com um `secretGenerator` ou
+rodar `kubectl create secret`.
+
+```shell
+kubectl create secret generic prod-db-secret --from-literal=username=produser --from-literal=password=Y4nys7f11
+```
+
+O resultado é semelhante a:
+
+```
+secret "prod-db-secret" created
+```
+
+Você pode também criar um Secret com credenciais para o ambiente de testes.
+
+```shell
+kubectl create secret generic test-db-secret --from-literal=username=testuser --from-literal=password=iluvtests
+```
+
+O resultado é semelhante a:
+
+```
+secret "test-db-secret" created
+```
+
+{{< note >}}
+Caracteres especiais como `$`, `\`, `*`, `+` e `!` serão interpretados pelo seu
+[shell](https://pt.wikipedia.org/wiki/Shell_(computa%C3%A7%C3%A3o)) e precisam
+de sequências de escape.
+
+Na maioria dos shells, a forma mais fácil de gerar sequências de escape para
+suas senhas é escrevê-las entre aspas simples (`'`). Por exemplo, se a sua senha
+for `S!B\*d$zDsb=`, você deve executar o comando da seguinte forma:
+
+```shell
+kubectl create secret generic dev-db-secret --from-literal=username=devuser --from-literal=password='S!B\*d$zDsb='
+```
+
+Não é necessário gerar sequências de escape para caracteres especiais em arquivos
+(utilizados com a opção `--from-file`).
+{{< /note >}}
+
+Agora, crie os Pods:
+
+```shell
+cat <<EOF > pod.yaml
+apiVersion: v1
+kind: List
+items:
+- kind: Pod
+  apiVersion: v1
+  metadata:
+    name: prod-db-client-pod
+    labels:
+      name: prod-db-client
+  spec:
+    volumes:
+    - name: secret-volume
+      secret:
+        secretName: prod-db-secret
+    containers:
+    - name: db-client-container
+      image: myClientImage
+      volumeMounts:
+      - name: secret-volume
+        readOnly: true
+        mountPath: "/etc/secret-volume"
+- kind: Pod
+  apiVersion: v1
+  metadata:
+    name: test-db-client-pod
+    labels:
+      name: test-db-client
+  spec:
+    volumes:
+    - name: secret-volume
+      secret:
+        secretName: test-db-secret
+    containers:
+    - name: db-client-container
+      image: myClientImage
+      volumeMounts:
+      - name: secret-volume
+        readOnly: true
+        mountPath: "/etc/secret-volume"
+EOF
+```
+
+Adicione os Pods a um manifesto `kustomization.yaml`:
+
+```shell
+cat <<EOF >> kustomization.yaml
+resources:
+- pod.yaml
+EOF
+```
+
+Crie todos estes objetos no servidor da API rodando o comando:
+
+```shell
+kubectl apply -k .
+```
+
+Ambos os contêineres terão os seguintes arquivos presentes nos seus sistemas de
+arquivos, com valores para cada um dos ambientes dos contêineres:
+
+```
+/etc/secret-volume/username
+/etc/secret-volume/password
+```
+
+Observe como as `spec`s para cada um dos Pods diverge somente em um campo. Isso
+facilita a criação de Pods com capacidades diferentes a partir de um template
+mais genérico.
+
+Você pode simplificar ainda mais a definição básica do Pod através da utilização
+de duas service accounts diferentes:
+
+1. `prod-user` com o Secret `prod-db-secret`
+1. `test-user` com o Secret `test-db-secret`
+
+A especificação do Pod é reduzida para:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: prod-db-client-pod
+  labels:
+    name: prod-db-client
+spec:
+  serviceAccount: prod-db-client
+  containers:
+  - name: db-client-container
+    image: myClientImage
+```
+
+### Caso de uso: _dotfiles_ em um volume de Secret
+
+Você pode fazer com que seus dados fiquem "ocultos" definindo uma chave que se
+inicia com um ponto (`.`). Este tipo de chave representa um _dotfile_, ou
+arquivo "oculto". Por exemplo, quando o Secret abaixo é montado em um volume,
+`secret-volume`:
+
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: dotfile-secret
+data:
+  .secret-file: dmFsdWUtMg0KDQo=
+---
+apiVersion: v1
+kind: Pod
+metadata:
+  name: secret-dotfiles-pod
+spec:
+  volumes:
+  - name: secret-volume
+    secret:
+      secretName: dotfile-secret
+  containers:
+  - name: dotfile-test-container
+    image: k8s.gcr.io/busybox
+    command:
+    - ls
+    - "-l"
+    - "/etc/secret-volume"
+    volumeMounts:
+    - name: secret-volume
+      readOnly: true
+      mountPath: "/etc/secret-volume"
+```
+
+Este volume irá conter um único arquivo, chamado `.secret-file`, e o contêiner
+`dotfile-test-container` terá este arquivo presente no caminho
+`/etc/secret-volume/.secret-file`.
+
+{{< note >}}
+Arquivos com nomes iniciados por um caractere de ponto são ocultados do
+resultado do comando `ls -l`. Você precisa utilizar `ls -la` para vê-los ao
+listar o conteúdo de um diretório.
+{{< /note >}}
+
+### Caso de uso: Secret visível somente em um dos contêineres de um pod {#use-case-secret-visible-to-one-container-in-a-pod}
+
+Suponha que um programa necessita manipular requisições HTTP, executar regras
+de negócio complexas e então assinar mensagens com HMAC. Devido à natureza
+complexa da aplicação, pode haver um _exploit_ despercebido que lê arquivos
+remotos no servidor e que poderia expor a chave privada para um invasor.
+
+Esta aplicação poderia ser dividida em dois processos, separados em dois
+contêineres distintos: um contêiner de _front-end_, que manipula as interações
+com o usuário e a lógica de negócio, mas não consegue ver a chave privada; e
+um contêiner assinador, que vê a chave privada e responde a requisições simples
+de assinatura do _front-end_ (por exemplo, através de rede local).
+
+Com essa abordagem particionada, um invasor agora precisa forçar o servidor de
+aplicação a rodar comandos arbitrários, o que é mais difícil de ser feito do que
+apenas ler um arquivo presente no disco.
+
+## Tipos de Secrets {#secret-types}
+
+Ao criar um Secret, você pode especificar o seu tipo utilizando o campo `type`
+do objeto Secret, ou algumas opções de linha de comando equivalentes no comando
+`kubectl`, quando disponíveis. O campo `type` de um Secret é utilizado para
+facilitar a manipulação programática de diferentes tipos de dados confidenciais.
+
+O Kubernetes oferece vários tipos embutidos de Secret para casos de uso comuns.
+Estes tipos variam em termos de validações efetuadas e limitações que o
+Kubernetes impõe neles.
+
+| Tipo embutido                          | Caso de uso                                        |
+|----------------------------------------|----------------------------------------------------|
+| `Opaque`                               | dados arbitrários definidos pelo usuário           |
+| `kubernetes.io/service-account-token`  | token de service account (conta de serviço)        |
+| `kubernetes.io/dockercfg`              | arquivo `~/.dockercfg` serializado                 |
+| `kubernetes.io/dockerconfigjson`       | arquivo `~/.docker/config.json` serializado        |
+| `kubernetes.io/basic-auth`             | credenciais para autenticação básica (basic auth)  |
+| `kubernetes.io/ssh-auth`               | credenciais para autenticação SSH                  |
+| `kubernetes.io/tls`                    | dados para um cliente ou servidor TLS              |
+| `bootstrap.kubernetes.io/token`        | dados de token de autoinicialização                |
+
+Você pode definir e utilizar seu próprio tipo de Secret definindo o valor do
+campo `type` como uma string não-nula em um objeto Secret (uma string em branco
+é tratada como o tipo `Opaque`).
+
+O Kubernetes não restringe nomes de tipos. No entanto, quando tipos embutidos
+são utilizados, você precisa atender a todos os requisitos daquele tipo.
+
+Se você estiver definindo um tipo de Secret que seja para uso público, siga a
+convenção e estruture o tipo de Secret para conter o seu domínio antes do nome,
+separado por uma barra (`/`).
+Por exemplo: `cloud-hosting.example.net/cloud-api-credentials`.
+
+Para melhor desempenho em uma requisição `get` repetitiva, clientes podem criar
+objetos que referenciam o Secret e então utilizar a requisição `watch` neste
+novo objeto, requisitando o Secret novamente quando a referência mudar.
+Além disso, uma [API de "observação em lotes"](https://git.k8s.io/design-proposals-archive/api-machinery/bulk_watch.md)
+para permitir a clientes observar recursos individuais também foi proposta e
+provavelmente estará disponível em versões futuras do Kubernetes.
+
+`Opaque` é o tipo predefinido de Secret quando o campo `type` é omitido em um
+arquivo de configuração de Secret. Quando um Secret é criado usando o comando
+`kubectl`, você deve usar o subcomando `generic` para indicar que um Secret é
+do tipo `Opaque`. Por exemplo, o comando a seguir cria um Secret vazio do tipo
+`Opaque`:
+```shell
+kubectl create secret generic empty-secret
+kubectl get secret empty-secret
+```
+
+O resultado será semelhante ao abaixo:
+
+```
+NAME           TYPE     DATA   AGE
+empty-secret   Opaque   0      2m6s
+```
+
+A coluna `DATA` demonstra a quantidade de dados armazenados no Secret. Neste
+caso, `0` significa que este objeto Secret está vazio.
+
+### Secrets de token de service account (conta de serviço)
+
+Secrets do tipo `kubernetes.io/service-account-token` são utilizados para
+armazenar um token que identifica uma service account (conta de serviço). Ao
+utilizar este tipo de Secret, você deve garantir que a anotação
+`kubernetes.io/service-account.name` contém um nome de uma service account
+existente. Um controlador do Kubernetes preenche outros campos, como por exemplo
+a anotação `kubernetes.io/service-account.uid` e a chave `token` no campo `data`
+com o conteúdo do token.
+
+O exemplo de configuração abaixo declara um Secret de token de service account:
+
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: secret-sa-sample
+  annotations:
+    kubernetes.io/service-account-name: "sa-name"
+type: kubernetes.io/service-account-token
+data:
+  # Você pode incluir pares chave-valor adicionais, da mesma forma que faria com
+  # Secrets do tipo Opaque
+  extra: YmFyCg==
+```
+
+Ao criar um {{< glossary_tooltip text="Pod" term_id="pod" >}}, o Kubernetes
+automaticamente cria um Secret de service account e automaticamente atualiza o
+seu Pod para utilizar este Secret. O Secret de token de service account contém
+credenciais para acessar a API.
+
+A criação automática e o uso de credenciais de API podem ser desativados ou
+substituídos se desejado. Porém, se tudo que você necessita é poder acessar o
+servidor da API de forma segura, este é o processo recomendado.
+
+Veja a documentação de
+[ServiceAccount](/docs/tasks/configure-pod-container/configure-service-account/)
+para mais informações sobre o funcionamento de service accounts. Você pode
+verificar também os campos `automountServiceAccountToken` e `serviceAccountName`
+do [`Pod`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#pod-v1-core)
+para mais informações sobre como referenciar service accounts em Pods.
+
+### Secrets de configuração do Docker
+
+Você pode utilizar um dos tipos abaixo para criar um Secret que armazena
+credenciais para accesso a um registro de contêineres para busca de imagens:
+
+- `kubernetes.io/dockercfg`
+- `kubernetes.io/dockerconfigjson`
+
+O tipo `kubernetes.io/dockercfg` é reservado para armazenamento de um arquivo
+`~/.dockercfg` serializado. Este arquivo é o formato legado para configuração
+do utilitário de linha de comando do Docker. Ao utilizar este tipo de Secret,
+é preciso garantir que o campo `data` contém uma chave `.dockercfg` cujo valor
+é o conteúdo do arquivo `~/.dockercfg` codificado no formato base64.
+
+O tipo `kubernetes.io/dockerconfigjson` foi projetado para armazenamento de um
+conteúdo JSON serializado que obedece às mesmas regras de formato que o arquivo
+`~/.docker/config.json`. Este arquivo é um formato mais moderno para o conteúdo
+do arquivo `~/.dockercfg`. Ao utilizar este tipo de Secret, o conteúdo do campo
+`data` deve conter uma chave `.dockerconfigjson` em que o conteúdo do arquivo
+`~/.docker/config.json` é fornecido codificado no formato base64.
+
+Um exemplo de um Secret do tipo `kubernetes.io/dockercfg`:
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: secret-dockercfg
+type: kubernetes.io/dockercfg
+data:
+  .dockercfg: |
+    "<base64 encoded ~/.dockercfg file>"
+```
+
+{{< note >}}
+Se você não desejar fazer a codificação em formato base64, você pode utilizar o
+campo `stringData` como alternativa.
+{{< /note >}}
+
+Ao criar estes tipos de Secret utilizando um manifesto (arquivo YAML), o
+servidor da API verifica se a chave esperada existe no campo `data` e se o valor
+fornecido pode ser interpretado como um conteúdo JSON válido. O servidor da API
+não verifica se o conteúdo informado é realmente um arquivo de configuração do
+Docker.
+
+Quando você não tem um arquivo de configuração do Docker, ou quer utilizar o
+comando `kubectl` para criar um Secret de registro de contêineres, você pode
+rodar o comando:
+
+```shell
+kubectl create secret docker-registry secret-tiger-docker \
+  --docker-email=tiger@acme.example \
+  --docker-username=tiger \
+  --docker-password=pass1234 \
+  --docker-server=my-registry.example:5000
+```
+
+Esse comando cria um secret do tipo `kubernetes.io/dockerconfigjson`. Se você
+obtiver o conteúdo do campo `.data.dockerconfigjson` deste novo Secret e
+decodificá-lo do formato base64:
+
+```shell
+kubectl get secret secret-tiger-docker -o jsonpath='{.data.*}' | base64 -d
+```
+
+o resultado será equivalente a este documento JSON (que também é um arquivo de
+configuração válido do Docker):
+
+```json
+{
+  "auths": {
+    "my-registry.example:5000": {
+      "username": "tiger",
+      "password": "pass1234",
+      "email": "tiger@acme.example",
+      "auth": "dGlnZXI6cGFzczEyMzQ="
+    }
+  }
+}
+```
+
+{{< note >}}
+O valor do campo `auth` no exemplo acima é codificado em base64; ele está
+ofuscado mas não criptografado. Qualquer pessoa com acesso a este Secret pode
+ler o conteúdo do token _bearer_.
+{{< /note >}}
+
+### Secret de autenticação básica
+
+O tipo `kubernetes.io/basic-auth` é fornecido para armazenar credenciais
+necessárias para autenticação básica. Ao utilizar este tipo de Secret, o campo
+`data` do Secret deve conter as duas chaves abaixo:
+
+- `username`: o usuário utilizado para autenticação;
+- `password`: a senha ou token para autenticação.
+
+Ambos os valores para estas duas chaves são textos codificados em formato base64.
+Você pode fornecer os valores como texto simples utilizando o campo `stringData`
+na criação do Secret.
+
+O arquivo YAML abaixo é um exemplo de configuração para um Secret de autenticação
+básica:
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: secret-basic-auth
+type: kubernetes.io/basic-auth
+stringData:
+  username: admin      # required field for kubernetes.io/basic-auth
+  password: t0p-Secret # required field for kubernetes.io/basic-auth
+```
+
+O tipo de autenticação básica é fornecido unicamente por conveniência. Você pode
+criar um Secret do tipo `Opaque` utilizado para autenticação básica. No entanto,
+utilizar o tipo embutido e público de Secret (`kubernetes.io/basic-auth`)
+auxilia outras pessoas a compreenderem o propósito do seu Secret, e define uma
+convenção de expectativa de nomes de chaves
+O tipo embutido também fornece verificação dos campos requeridos pelo servidor
+da API.
+
+### Secret de autenticação SSH
+
+O tipo embutido `kubernetes.io/ssh-auth` é fornecido para armazenamento de dados
+utilizados em autenticação SSH. Ao utilizar este tipo de Secret, você deve
+especificar um par de chave-valor `ssh-privatekey` no campo `data` (ou no campo
+`stringData`) com a credencial SSH a ser utilizada.
+
+O manifesto abaixo é um exemplo de configuração para um Secret de autenticação
+SSH com um par de chaves pública/privada:
+
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: secret-ssh-auth
+type: kubernetes.io/ssh-auth
+data:
+  # os dados estão abreviados neste exemplo
+  ssh-privatekey: |
+     MIIEpQIBAAKCAQEAulqb/Y ...
+```
+
+O Secret de autenticação SSH é fornecido apenas para a conveniência do usuário.
+Você pode criar um Secret do tipo `Opaque` para credentials utilizadas para
+autenticação SSH. No entanto, a utilização do tipo embutido e público de Secret
+(`kubernetes.io/ssh-auth`) auxilia outras pessoas a compreenderem o propósito do
+seu Secret, e define uma convenção de quais chaves podem ser esperadas.
+O tipo embutido também fornece verificação dos campos requeridos em uma
+configuração de Secret.
+
+{{< caution >}}
+Chaves privadas SSH não estabelecem, por si só, uma comunicação confiável
+entre um cliente SSH e um servidor. Uma forma secundária de estabelecer
+confiança é necessária para mitigar ataques _man-in-the-middle_ (MITM), como por
+exemplo um arquivo `known_hosts` adicionado a um ConfigMap.
+{{< /caution >}}
+
+### Secrets TLS
+
+O Kubernetes fornece o tipo embutido de Secret `kubernetes.io/tls` para
+armazenamento de um certificado e sua chave associada que são tipicamente
+utilizados para TLS.
+
+Uma utilização comum de Secrets TLS é a configuração de encriptação em trânsito
+para um recurso [Ingress](/docs/concepts/services-networking/ingress/), mas
+este tipo de secret pode também ser utilizado com outros recursos ou diretamente
+por uma carga de trabalho.
+
+Ao utilizar este tipo de Secret, as chaves `tls.key` e `tls.crt` devem ser
+informadas no campo `data` (ou `stringData`) da configuração do Secret, embora o
+servidor da API não valide o conteúdo de cada uma destas chaves.
+
+O YAML a seguir tem um exemplo de configuração para um Secret TLS:
+
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: secret-tls
+type: kubernetes.io/tls
+data:
+  # os dados estão abreviados neste exemplo
+  tls.crt: |
+    MIIC2DCCAcCgAwIBAgIBATANBgkqh ...
+  tls.key: |
+    MIIEpgIBAAKCAQEA7yn3bRHQ5FHMQ ...
+```
+
+O tipo TLS é fornecido para a conveniência do usuário. Você pode criar um
+Secret do tipo `Opaque` para credenciais utilizadas para o servidor e/ou
+cliente TLS. No entanto, a utilização do tipo embutido auxilia a manter a
+consistência dos formatos de Secret no seu projeto; o servidor da API
+valida se os campos requeridos estão presentes na configuração do Secret.
+
+Ao criar um Secret TLS utilizando a ferramenta de linha de comando `kubectl`,
+você pode utilizar o subcomando `tls` conforme demonstrado no exemplo abaixo:
+```shell
+kubectl create secret tls my-tls-secret \
+  --cert=path/to/cert/file  \
+  --key=path/to/key/file
+```
+
+O par de chaves pública/privada deve ser criado previamente. O certificado
+de chave pública a ser utilizado no argumento `--cert` deve ser codificado em
+formato DER conforme especificado na
+[seção 5.1 da RFC 7468](https://datatracker.ietf.org/doc/html/rfc7468#section-5.1)
+e deve corresponder à chave privada fornecida no argumento `--key`
+(PKCS #8 no formato DER;
+[seção 11 da RFC 7468](https://datatracker.ietf.org/doc/html/rfc7468#section-11)).
+
+{{< note >}}
+Um Secret kubernetes.io/tls armazena o conteúdo de chaves e certificados em
+formato DER codificado em base64. Se você tem familiaridade com o formato PEM
+para chaves privadas e certificados, o conteúdo é o mesmo do formato PEM,
+excluindo-se a primeira e a última linhas.
+
+Por exemplo, para um certificado, você **não** inclui as linhas
+`--------BEGIN CERTIFICATE-----` e `-------END CERTIFICATE----`.
+{{< /note >}}
+
+### Secret de token de autoinicialização {#bootstrap-token-secrets}
+
+Um Secret de token de autoinicialização pode ser criado especificando o tipo de
+um Secret explicitamente com o valor `bootstrap.kubernetes.io/token`. Este tipo
+de Secret é projetado para tokens utilizados durante o processo de inicialização
+de nós. Este tipo de Secret armazena tokens utilizados para assinar ConfigMaps
+conhecidos.
+
+Um Secret de token de autoinicialização é normalmente criado no namespace
+`kube-system` e nomeado na forma `bootstrap-token-<id-do-token>`, onde
+`<id-do-token>` é um texto com 6 caracteres contendo a identificação do token.
+
+No formato de manifesto do Kubernetes, um Secret de token de autoinicialização
+se assemelha ao exemplo abaixo:
+
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: bootstrap-token-5emitj
+  namespace: kube-system
+type: bootstrap.kubernetes.io/token
+data:
+  auth-extra-groups: c3lzdGVtOmJvb3RzdHJhcHBlcnM6a3ViZWFkbTpkZWZhdWx0LW5vZGUtdG9rZW4=
+  expiration: MjAyMC0wOS0xM1QwNDozOToxMFo=
+  token-id: NWVtaXRq
+  token-secret: a3E0Z2lodnN6emduMXAwcg==
+  usage-bootstrap-authentication: dHJ1ZQ==
+  usage-bootstrap-signing: dHJ1ZQ==
+```
+
+Um Secret do tipo token de autoinicialização possui as seguintes chaves no campo
+`data`:
+
+- `token-id`: Uma string com 6 caracteres aleatórios como identificador do
+  token. Requerido.
+- `token-secret`: Uma string de 16 caracteres aleatórios como o conteúdo secreto
+  do token. Requerido.
+- `description`: Uma string contendo uma descrição do propósito para o qual este
+  token é utilizado. Opcional.
+- `expiration`: Um horário absoluto UTC no formato RFC3339 especificando quando
+  o token deve expirar. Opcional.
+- `usage-bootstrap-<usage>`: Um conjunto de flags booleanas indicando outros
+  usos para este token de autoinicialização.
+- `auth-extra-groups`: Uma lista separada por vírgulas de nomes de grupos que
+  serão autenticados adicionalmente, além do grupo `system:bootstrappers`.
+
+O YAML acima pode parecer confuso, já que os valores estão todos codificados em
+formato base64. Você pode criar o mesmo Secret utilizando este YAML:
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  # Observe como o Secret é nomeado
+  name: bootstrap-token-5emitj
+  # Um Secret de token de inicialização geralmente fica armazenado no namespace
+  # kube-system
+  namespace: kube-system
+type: bootstrap.kubernetes.io/token
+stringData:
+  auth-extra-groups: "system:bootstrappers:kubeadm:default-node-token"
+  expiration: "2020-09-13T04:39:10Z"
+  # Esta identificação de token é utilizada no nome
+  token-id: "5emitj"
+  token-secret: "kq4gihvszzgn1p0r"
+  # Este token pode ser utilizado para autenticação
+  usage-bootstrap-authentication: "true"
+  # e pode ser utilizado para assinaturas
+  usage-bootstrap-signing: "true"
+```
+
+## Secrets imutáveis {#secret-immutable}
+
+{{< feature-state for_k8s_version="v1.21" state="stable" >}}
+
+O Kubernetes permite que você marque Secrets (e ConfigMaps) específicos como
+_imutáveis_. Prevenir mudanças nos dados de um Secret existente tem os seguintes
+benefícios:
+
+- protege você de alterações acidentais (ou indesejadas) que poderiam provocar
+  disrupções em aplicações.
+- em clusters com uso extensivo de Secrets (pelo menos dezenas de milhares de
+  montagens únicas de Secrets a Pods), utilizar Secrets imutáveis melhora o
+  desempenho do seu cluster através da redução significativa de carga no
+  kube-apiserver. O kubelet não precisa manter um _watch_ em Secrets que são
+  marcados como imutáveis.
+
+### Marcando um Secret como imutável {#secret-immutable-create}
+
+Você pode criar um Secret imutável adicionando o campo `immutable` com o valor
+`true` ao manifesto do Secret. Por exemplo:
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  ...
+data:
+  ...
+immutable: true
+```
+
+Você pode também atualizar qualquer Secret mutável existente para torná-lo
+imutável.
+
+{{< note >}}
+Uma vez que um Secret ou ConfigMap seja marcado como imutável, _não_ é mais
+possível reverter esta mudança, nem alterar os conteúdos do campo `data`. Você
+pode somente apagar e recriar o Secret. Pods existentes mantém um ponto de
+montagem referenciando o Secret removido - é recomendado recriar tais Pods.
+{{< /note >}}
+
+## Informações de segurança sobre Secrets {#information-security-for-secrets}
+
+Embora ConfigMaps e Secrets funcionem de formas similares, o Kubernetes aplica
+proteções extras aos objetos Secret.
+
+Secrets frequentemente contém valores dentro de um espectro de importância,
+muitos dos quais podem provocar escalações de privilégios dentro do Kubernetes
+(por exemplo, um token de service account) e em sistemas externos. Mesmo que uma
+aplicação individual possa avaliar o poder dos Secrets com os quais espera
+interagir, outras aplicações dentro do mesmo namespace podem tornar tais
+suposições inválidas.
+
+Um Secret só é enviado a um nó se um Pod naquele nó precisa do Secret em questão.
+Para montar Secrets em Pods, o kubelet armazena uma cópia dos dados dentro de um
+sistema de arquivos `tmpfs`, de modo que os dados confidenciais não sejam
+escritos em armazenamento durável. Uma vez que o Pod que dependia do Secret seja
+removido, o kubelet apaga sua cópia local dos dados confidenciais do Secret.
+
+Um Pod pode possuir vários contêineres. Por padrão, contêineres que você define
+têm acesso somente à ServiceAccount padrão e seu Secret relacionado. Você deve
+explicitamente definir variáveis de ambiente ou mapear um volume dentro de um
+contêiner para ter acesso a qualquer outro Secret.
+
+Podem haver Secrets para vários Pods no mesmo nó. No entanto, somente os Secrets
+que um Pod requisitou estão potencialmente visíveis dentro de seus contêineres.
+Portanto, um Pod não tem acesso aos Secrets de outro Pod.
+
+{{< warning >}}
+Quaisquer contêineres privilegiados em um nó são passíveis de acesso a todos os
+Secrets naquele nó.
+{{< /warning >}}
+
+### Recomendações de segurança para desenvolvedores
+
+- Aplicações ainda devem proteger o valor da informação confidencial após lê-la
+  de uma variável de ambiente ou volume. Por exemplo, sua aplicação deve evitar
+  imprimir os dados do Secret sem encriptação ou transmitir esta informação para
+  aplicações terceiras de confiabilidade não-estabelecida.
+- Se você estiver definindo múltiplos contêineres em um Pod, e somente um destes
+  contêineres necessita acesso a um Secret, defina o volume ou variável de
+  ambiente de maneira que os demais contêineres não tenham acesso àquele Secret.
+- Se você configurar um Secret através de um {{< glossary_tooltip text="manifesto" term_id="manifest" >}},
+  com os dados codificados em formato base64, compartilhar este arquivo ou
+  salvá-lo em um sistema de controle de versão de código-fonte significa que o
+  Secret está disponível para qualquer pessoa que pode ler o manifesto. O formato
+  base64 _não é_ um método de encriptação e não fornece nenhuma confidencialidade
+  adicional em comparação com texto puro.
+- Ao instalar aplicações que interagem com a API de Secrets, você deve limitar
+  o acesso utilizando
+  [políticas de autorização](/docs/reference/access-authn-authz/authorization/),
+  como por exemplo [RBAC](/docs/reference/access-authn-authz/rbac/).
+- Na API do Kubernetes, requisições `watch` e `list` em Secrets dentro de um
+  namespace são extremamente poderosas. Evite fornecer este acesso quando
+  possível, já que listar Secrets permite aos clientes inspecionar os valores de
+  todos os Secrets naquele namespace.
+
+### Recomendações de segurança para administradores de cluster
+
+{{< caution >}}
+Um usuário que pode criar um Pod que utiliza um Secret pode também ver o valor
+daquele Secret. Mesmo que as permissões do cluster não permitam ao usuário ler
+o Secret diretamente, o mesmo usuário poderia ter acesso a criar um Pod que
+então expõe o Secret.
+{{< /caution >}}
+
+- Restrinja a habilidade de usar as requisições `watch` e `list` para listar todos
+  os Secrets em um cluster (utilizando a API do Kubernetes) de modo que somente
+  os componentes mais privilegiados e de nível de sistema possam realizar esta
+  ação.
+- Ao instalar aplicações que interajam com a API de Secrets, você deve limitar o
+  acesso utilizando
+  [políticas de autorização](/docs/reference/access-authn-authz/authorization/),
+  como por exemplo [RBAC](/docs/reference/access-authn-authz/rbac/).
+- No servidor da API, objetos (incluindo Secrets) são persistidos no
+  {{< glossary_tooltip term_id="etcd" >}}; portanto:
+  - somente permita a administradores do sistema o acesso ao etcd (incluindo
+    acesso somente-leitura);
+  - habilite [encriptação em disco](/docs/tasks/administer-cluster/encrypt-data/)
+    para objetos Secret, de modo que os dados de tais Secrets não sejam
+    armazenados em texto plano no {{< glossary_tooltip term_id="etcd" >}};
+  - considere a destruição do armazenamento durável previamente utilizado pelo
+    etcd quando não estiver mais em uso;
+  - se houverem múltiplas instâncias do etcd em uso, garanta que o etcd esteja
+    configurado para utilizar SSL/TLS para comunicação entre instâncias.
+
+## {{% heading "whatsnext" %}}
+
+- Aprenda a [gerenciar Secrets utilizando `kubectl`](/pt-br/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
+- Aprenda a [gerenciar Secrets utilizando arquivos de configuração](/pt-br/docs/tasks/configmap-secret/managing-secret-using-config-file/)
+- Aprenda a [gerenciar Secrets utilizando kustomize](/pt-br/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
+- Leia a [documentação de referência da API](/docs/reference/kubernetes-api/config-and-storage-resources/secret-v1/) de Secrets
diff --git a/content/pt-br/docs/concepts/containers/container-environment.md b/content/pt-br/docs/concepts/containers/container-environment.md
index af28e2dd3f..a3e8a54759 100644
--- a/content/pt-br/docs/concepts/containers/container-environment.md
+++ b/content/pt-br/docs/concepts/containers/container-environment.md
@@ -42,7 +42,7 @@ FOO_SERVICE_PORT=<a porta em que o serviço está executando>
 ```
 
 Serviços possuem endereço IP dedicado e são disponibilizados para o contêiner via DNS,
-se possuírem [DNS addon](https://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/dns/) habilitado.
+se possuírem [DNS addon](https://releases.k8s.io/{{< param "fullversion" >}}/cluster/addons/dns/) habilitado.
 
 
 
diff --git a/content/pt-br/docs/concepts/containers/images.md b/content/pt-br/docs/concepts/containers/images.md
index 6f8b81dd7c..605f1dd982 100644
--- a/content/pt-br/docs/concepts/containers/images.md
+++ b/content/pt-br/docs/concepts/containers/images.md
@@ -88,7 +88,7 @@ Essa abordagem é adequada se você puder controlar a configuração do nó.
 
 {{< note >}}
 O Kubernetes padrão é compatível apenas com as seções `auths` e` HttpHeaders` na configuração do Docker.
-Auxiliares de credencial do Docker (`credHelpers` ou` credsStore`) não são suportados.
+Auxiliares de credencial do Docker (`credHelpers` ou `credsStore`) não são suportados.
 {{< /note >}}
 
 Docker armazena chaves de registros privados no arquivo `$HOME/.dockercfg` ou `$HOME/.docker/config.json`. Se você colocar o mesmo arquivo na lista de caminhos de pesquisa abaixo, o kubelet o usa como provedor de credenciais ao obter imagens.
diff --git a/content/pt-br/docs/concepts/containers/runtime-class.md b/content/pt-br/docs/concepts/containers/runtime-class.md
index 70e42a78f0..37ee330c26 100644
--- a/content/pt-br/docs/concepts/containers/runtime-class.md
+++ b/content/pt-br/docs/concepts/containers/runtime-class.md
@@ -66,7 +66,7 @@ handler: myconfiguration  # Nome da configuração CRI correspondente
 ```
 
 O nome de um objeto RuntimeClass deve ser um 
-[nome de subdomínio DNS](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names) válido.
+[nome de subdomínio DNS](/pt-br/docs/concepts/overview/working-with-objects/names#dns-subdomain-names) válido.
 
 {{< note >}}
 É recomendado que operações de escrita no objeto RuntimeClass (criar/atualizar/patch/apagar)
@@ -112,7 +112,7 @@ Agentes de execução são configurados através da configuração do containerd
 `/etc/containerd/config.toml`. Agentes válidos são configurados sob a seção de `runtimes`:
 
 ```
-[plugins.cri.containerd.runtimes.${HANDLER_NAME}]
+[plugins."io.containerd.grpc.v1.cri".containerd.runtimes.${HANDLER_NAME}]
 ```
 
 Veja a documentação de configuração do containerd para maiores detalhes:
@@ -176,4 +176,4 @@ Pods utilizando-se desse Runtimeclass e assim contabilizar esses recursos para o
 - [RuntimeClass Design](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/585-runtime-class/README.md)
 - [RuntimeClass Scheduling Design](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/585-runtime-class/README.md#runtimeclass-scheduling)
 - Leia mais sobre [Sobrecarga de Pods](/docs/concepts/scheduling-eviction/pod-overhead/)
-- [PodOverhead Feature Design](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/20190226-pod-overhead.md)
+- [PodOverhead Feature Design](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/688-pod-overhead)
diff --git a/content/pt-br/docs/concepts/extend-kubernetes/operator.md b/content/pt-br/docs/concepts/extend-kubernetes/operator.md
index 627bcbfbb8..f92b86b607 100644
--- a/content/pt-br/docs/concepts/extend-kubernetes/operator.md
+++ b/content/pt-br/docs/concepts/extend-kubernetes/operator.md
@@ -130,7 +130,7 @@ que pode atuar como um [cliente da API do Kubernetes](/docs/reference/using-api/
   * usando [kubebuilder](https://book.kubebuilder.io/)
   * usando [Metacontroller](https://metacontroller.github.io/metacontroller/intro.html) juntamente com WebHooks que
     implementa você mesmo
-  * usando o [Operator Framework](https://github.com/operator-framework/getting-started)
+  * usando o [Operator Framework](https://operatorframework.io/)
 * [Publique](https://operatorhub.io/) o seu operador para que outras pessoas o possam usar
 * Leia o [artigo original da CoreOS](https://coreos.com/blog/introducing-operators.html) que introduz o padrão Operador
 * Leia um [artigo](https://cloud.google.com/blog/products/containers-kubernetes/best-practices-for-building-kubernetes-operators-and-stateful-apps) da Google Cloud sobre as melhores práticas para contruir Operadores
diff --git a/content/pt-br/docs/concepts/overview/components.md b/content/pt-br/docs/concepts/overview/components.md
index b03946c4ae..892be1a922 100644
--- a/content/pt-br/docs/concepts/overview/components.md
+++ b/content/pt-br/docs/concepts/overview/components.md
@@ -59,7 +59,7 @@ O cloud-controller-manager executa apenas controladores que são específicos pa
 Se você estiver executando o Kubernetes em suas próprias instalações ou em um ambiente de aprendizagem dentro de seu
 próprio PC, o cluster não possui um gerenciador de controlador de nuvem.
 
-Tal como acontece com o kube-controller-manager, o cloud-controller-manager combina vários ciclos de controle logicamente independentes em um binário único que você executa como um processo único. Você pode escalar horizontalmente (exectuar mais de uma cópia) para melhorar o desempenho ou para auxiliar na tolerância a falhas.
+Tal como acontece com o kube-controller-manager, o cloud-controller-manager combina vários ciclos de controle logicamente independentes em um binário único que você executa como um processo único. Você pode escalar horizontalmente (executar mais de uma cópia) para melhorar o desempenho ou para auxiliar na tolerância a falhas.
 
 Os seguintes controladores podem ter dependências de provedor de nuvem:
 
diff --git a/content/pt-br/docs/concepts/overview/working-with-objects/field-selectors.md b/content/pt-br/docs/concepts/overview/working-with-objects/field-selectors.md
new file mode 100644
index 0000000000..d049cc0acf
--- /dev/null
+++ b/content/pt-br/docs/concepts/overview/working-with-objects/field-selectors.md
@@ -0,0 +1,56 @@
+---
+title: Seletores de Campos
+weight: 60
+---
+
+
+Os _Seletores de Campos_ permitem que você [selecione recursos do Kubernetes](/docs/concepts/overview/working-with-objects/kubernetes-objects) baseado no valor de um ou mais campos de um recurso. Seguem alguns exemplos de buscas utilizando seletores de campos:
+
+* `metadata.name=my-service`
+* `metadata.namespace!=default`
+* `status.phase=Pending`
+
+O comando `kubectl`, mostrado a seguir, seleciona todos os Pods nos quais o valor do campo [`status.phase`](/docs/concepts/workloads/pods/pod-lifecycle/#pod-phase) é `Running`:
+
+```shell
+kubectl get pods --field-selector status.phase=Running
+```
+
+{{< note >}}
+Seletores de campos são essencialmente *filtros* de recursos. Por padrão, nenhum seletor/filtro é aplicado, de forma que todos os recursos do tipo especificado são selecionados. Isso faz com que as seguintes pesquisas utilizando `kubectl` sejam equivalentes: `kubectl get pods` e `kubectl get pods --field-selector ""`
+{{< /note >}}
+
+## Campos suportados
+
+Os campos de seleção suportados variam dependendo do tipo de recurso Kubernetes. Todos os tipos de recursos suportam os campos `metadata.name` e `metadata.namespace`. Utilizar campos não suportados produz um erro. Como por exemplo:
+
+```shell
+kubectl get ingress --field-selector foo.bar=baz
+```
+```
+Error from server (BadRequest): Unable to find "ingresses" that match label selector "", field selector "foo.bar=baz": "foo.bar" is not a known field selector: only "metadata.name", "metadata.namespace"
+```
+
+## Operadores suportados
+
+Você pode utilizar os operadores `=`, `==` e `!=` com seletores de campos (`=` e `==` significam a mesma coisa). Por exemplo, o comando `kubectl` a seguir seleciona todos os Kubernetes Services que não estão no namespace `default`: 
+
+```shell
+kubectl get services  --all-namespaces --field-selector metadata.namespace!=default
+```
+
+## Seletores em cadeia
+
+Assim como [label](/docs/concepts/overview/working-with-objects/labels) e outros tipos de seletores, podem ser utilizados em cadeia através de uma lista separada por vírgula. O comando `kubectl` a seguir seleciona todos os Pods nos quais `status.phase` não é igual a `Running` e `spec.restartPolicy` é igual a `Always`
+
+```shell
+kubectl get pods --field-selector=status.phase!=Running,spec.restartPolicy=Always
+```
+
+## Múltiplos tipos de recursos
+
+Você pode utilizar seletores de campos através de múltiplos tipos de recursos. Por exemplo, o comando `kubectl` a seguir seleciona todos Statefulsets e Services que não estão presentes no namespace `default`.
+
+```shell
+kubectl get statefulsets,services --all-namespaces --field-selector metadata.namespace!=default
+```
diff --git a/content/pt-br/docs/concepts/overview/working-with-objects/names.md b/content/pt-br/docs/concepts/overview/working-with-objects/names.md
index 16556d127a..14d5948564 100644
--- a/content/pt-br/docs/concepts/overview/working-with-objects/names.md
+++ b/content/pt-br/docs/concepts/overview/working-with-objects/names.md
@@ -1,30 +1,83 @@
 ---
-title: Nomes
+title: Nomes de objetos e IDs
 content_type: concept
 weight: 20
 ---
 
 <!-- overview -->
 
-Cada objeto em um cluster possui um Nome que é único para aquele tipo de recurso.
-Todo objeto do Kubernetes também possui um UID que é único para todo o cluster.
-
-Por exemplo, você pode ter apenas um Pod chamado "myapp-1234", porém você pode ter um Pod
-e um Deployment ambos com o nome "myapp-1234".
-
-Para atributos não únicos providenciados por usuário, Kubernetes providencia [labels](/docs/concepts/overview/working-with-objects/labels/) e [annotations](/docs/concepts/overview/working-with-objects/annotations/).
+Cada objeto em seu cluster possui um [_Nome_](#names) que é único para aquele
+tipo de recurso.
+Todo objeto do Kubernetes também possui um [_UID_](#uids) que é único para todo
+o cluster.
 
+Por exemplo, você pode ter apenas um Pod chamado `myapp-1234` dentro de um
+[namespace](/pt-br/docs/concepts/overview/working-with-objects/namespaces/), porém
+você pode ter um Pod e um Deployment ambos com o nome `myapp-1234`.
 
+Para atributos não-únicos definidos pelo usuário, o Kubernetes fornece
+[labels](/docs/concepts/overview/working-with-objects/labels/) e
+[annotations](/docs/concepts/overview/working-with-objects/annotations/).
 
 
 <!-- body -->
 
-## Nomes
+## Nomes {#names}
 
+{{< glossary_definition term_id="name" length="all" >}}
 
-Recursos Kubernetes podem ter nomes com até 253 caracteres. Os caracteres permitidos em nomes são: dígitos (0-9), letras minúsculas (a-z), `-`, e `.`.
+{{< note >}}
+Em casos em que objetos representam uma entidade física, como no caso de um Nó
+representando um host físico, caso o host seja recriado com o mesmo nome mas o
+objeto Nó não seja recriado, o Kubernetes trata o novo host como o host antigo,
+o que pode causar inconsistências.
+{{< /note >}}
 
-A seguir, um exemplo para um Pod chamado `nginx-demo`.
+Abaixo estão descritos quatro tipos de restrições de nomes comumente utilizadas
+para recursos.
+
+### Nomes de subdomínio DNS {#dns-subdomain-names}
+
+A maior parte dos recursos do Kubernetes requerem um nome que possa ser
+utilizado como um nome de subdomínio DNS, conforme definido na
+[RFC 1123](https://tools.ietf.org/html/rfc1123).
+Isso significa que o nome deve:
+
+- conter no máximo 253 caracteres
+- conter somente caracteres alfanuméricos em caixa baixa, traço ('-') ou ponto
+  ('.').
+- iniciar com um caractere alfanumérico
+- terminar com um caractere alfanumérico
+
+### Nomes de rótulos da RFC 1123 {#dns-label-names}
+
+Alguns tipos de recurso requerem que seus nomes sigam o padrão de rótulos DNS
+definido na [RFC 1123](https://tools.ietf.org/html/rfc1123).
+Isso significa que o nome deve:
+
+- conter no máximo 63 caracteres
+- conter somente caracteres alfanuméricos em caixa baixa ou traço ('-')
+- iniciar com um caractere alfanumérico
+- terminar com um caractere alfanumérico
+
+### Nomes de rótulo da RFC 1035
+
+Alguns tipos de recurso requerem que seus nomes sigam o padrão de rótulos DNS
+definido na [RFC 1035](https://tools.ietf.org/html/rfc1035).
+Isso significa que o nome deve:
+
+- conter no máximo 63 caracteres
+- conter somente caracteres alfanuméricos em caixa baixa ou traço ('-')
+- iniciar com um caractere alfanumérico
+- terminar com um caractere alfanumérico
+
+### Nomes de segmentos de caminhos
+
+Alguns tipos de recurso requerem que seus nomes possam ser seguramente
+codificados como um segmento de caminho, ou seja, o nome não pode ser "." ou
+".." e não pode conter "/" ou "%".
+
+Exemplo de um manifesto para um Pod chamado `nginx-demo`.
 
 ```yaml
 apiVersion: v1
@@ -45,13 +98,15 @@ Alguns tipos de recursos possuem restrições adicionais em seus nomes.
 
 ## UIDs
 
+{{< glossary_definition term_id="uid" length="all" >}}
 
-Kubernetes UIDs são identificadores únicos universais (também chamados de UUIDs).
-UUIDs utilizam padrões ISO/IEC 9834-8 e ITU-T X.667.
+UIDs no Kubernetes são identificadores únicos universais (também conhecidos como
+UUIDs).
+UUIDs seguem os padrões ISO/IEC 9834-8 e ITU-T X.667.
 
 
 ## {{% heading "whatsnext" %}}
 
-* Leia sobre [labels](/docs/concepts/overview/working-with-objects/labels/) em Kubernetes.
-* Consulte o documento de design [Identificadores e Nomes em Kubernetes](https://git.k8s.io/community/contributors/design-proposals/architecture/identifiers.md).
+* Leia sobre [labels](/docs/concepts/overview/working-with-objects/labels/) no Kubernetes.
+* Consulte o documento de design [Identifiers and Names in Kubernetes](https://git.k8s.io/design-proposals-archive/architecture/identifiers.md).
 
diff --git a/content/pt-br/docs/concepts/overview/working-with-objects/namespaces.md b/content/pt-br/docs/concepts/overview/working-with-objects/namespaces.md
new file mode 100644
index 0000000000..40167e9986
--- /dev/null
+++ b/content/pt-br/docs/concepts/overview/working-with-objects/namespaces.md
@@ -0,0 +1,106 @@
+---
+title: Namespaces
+content_type: concept
+weight: 30
+---
+
+<!-- overview -->
+
+No Kubernetes, _namespaces_ disponibilizam um mecanismo para isolar grupos de recursos dentro de um único cluster. Nomes de recursos precisam ser únicos dentro de um namespace, porém podem se repetir em diferentes namespaces. Escopos baseados em namespaces são aplicáveis apenas para objetos com namespace _(como: Deployments, Services, etc)_ e não em objetos que abrangem todo o cluster _(como: StorageClass, Nodes, PersistentVolumes, etc)_.
+
+<!-- body -->
+
+## Quando Utilizar Múltiplos Namespaces
+
+Namespaces devem ser utilizados em ambientes com múltiplos usuários espalhados por diversos times ou projetos. Para clusters com poucos ou até algumas dezenas de usuários, você não deveria precisar criar ou pensar a respeito de namespaces. Comece a utilizar namespaces quando você precisar das funcionalidades que eles oferecem.
+
+Namespaces oferecem escopo para nomes. Nomes de recursos precisam ser únicos dentro de um namespace, porém não em diferentes namespaces. Namespaces não podem ser aninhados dentro de outros namespaces e cada recurso Kubernetes pode pertencer à apenas um namespace.
+
+Namespaces nos permitem dividir os recursos do cluster entre diferentes usuários (via [resource quota](/docs/concepts/policy/resource-quotas/)).
+
+Não é necessário utilizar múltiplos namespaces para separar recursos levemente diferentes, como diferentes versões de um mesmo software: use {{< glossary_tooltip text="labels" term_id="label" >}} para distinguir recursos dentro de um mesmo namespace.
+
+## Trabalhando com Namespaces
+
+Criação e eliminação de namespaces estão descritas na 
+[documentação de namespaces do guia de administradores](/docs/tasks/administer-cluster/namespaces).
+
+{{< note >}}
+    Evite criar namespaces com o prefixo `kube-`, já que este prefixo é reservado para namespaces do sistema Kubernetes.
+{{< /note >}}
+
+### Visualizando namespaces
+
+Você pode obter uma lista dos namespaces atuais dentro de um cluster com:
+
+```shell
+kubectl get namespace
+```
+```
+NAME              STATUS   AGE
+default           Active   1d
+kube-node-lease   Active   1d
+kube-public       Active   1d
+kube-system       Active   1d
+```
+
+O Kubernetes é inicializado com quatro namespaces:
+
+   * `default` O namespace padrão para objetos sem namespace
+   * `kube-system` O namespace para objetos criados pelo sistema Kubernetes
+   * `kube-public` Este namespace é criado automaticamente e é legível por todos os usuários (incluindo usuários não autenticados). Este namespace é reservado principalmente para uso do cluster, no caso de alguns recursos que precisem ser visíveis e legíveis publicamente por todo o cluster. O aspecto público deste namespace é apenas uma convenção, não um requisito.
+   * `kube-node-lease` Este namespace contém os objetos de [Lease](/docs/reference/kubernetes-api/cluster-resources/lease-v1/) associados com cada node. Node leases permitem que o kubelet envie [heartbeats](/docs/concepts/architecture/nodes/#heartbeats) para que a camada de gerenciamento detecte falhas nos nodes.
+
+### Preparando o namespace para uma requisição
+
+Para preparar o namespace para a requisição atual, utilize o parâmetro `--namespace`. Por exemplo:
+
+```shell
+kubectl run nginx --image=nginx --namespace=<insert-namespace-name-here>
+kubectl get pods --namespace=<insert-namespace-name-here>
+```
+
+### Configurando a preferência de namespaces
+
+Você pode salvar permanentemente o namespace para todos os comandos `kubectl` subsequentes no mesmo contexto:
+
+```shell
+kubectl config set-context --current --namespace=<insert-namespace-name-here>
+# Validando
+kubectl config view --minify | grep namespace:
+```
+
+## Namespaces e DNS
+
+Quando você cria um [Serviço](/docs/concepts/services-networking/service/), ele cria uma
+[entrada DNS](/docs/concepts/services-networking/dns-pod-service/) correspondente.
+Esta entrada possui o formato: `<service-name>.<namespace-name>.svc.cluster.local`, de forma que se um contêiner utilizar apenas `<service-name>` ele será resolvido para um serviço que é local ao namespace.
+Isso é útil para utilizar a mesma configuração em vários namespaces, por exemplo em Desenvolvimento, `Staging` e Produção. Se você quiser acessar múltiplos namespaces, precisará utilizar um _Fully Qualified Domain Name_ (FQDN).
+
+## Nem todos os objetos pertencem a algum Namespace
+
+A maior parte dos recursos Kubernetes (como Pods, Services, controladores de replicação e outros) pertencem a algum namespace. Entretanto, recursos de namespaces não pertencem a nenhum namespace. Além deles, recursos de baixo nível, como [nodes](/docs/concepts/architecture/nodes/) e persistentVolumes, também não pertencem a nenhum namespace.
+
+Para visualizar quais recursos Kubernetes pertencem ou não a algum namespace, utilize:
+
+```shell
+# Em um namespace
+kubectl api-resources --namespaced=true
+
+# Sem namespace
+kubectl api-resources --namespaced=false
+```
+
+## Rotulamento Automático
+
+{{< feature-state state="beta" for_k8s_version="1.21" >}}
+
+A camada de gerenciamento Kubernetes configura um {{< glossary_tooltip text="label" term_id="label" >}} imutável `kubernetes.io/metadata.name` em todos os namespaces se a 
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+`NamespaceDefaultLabelName` estiver habilitada. O valor do label é o nome do namespace.
+
+## {{% heading "whatsnext" %}}
+
+* Leia sobre [a criação de um novo namespace](/docs/tasks/administer-cluster/namespaces/#creating-a-new-namespace).
+* Leia sobre [a eliminação de um namespace](/docs/tasks/administer-cluster/namespaces/#deleting-a-namespace).
+
diff --git a/content/pt-br/docs/concepts/policy/_index.md b/content/pt-br/docs/concepts/policy/_index.md
new file mode 100644
index 0000000000..1b5e70aa9b
--- /dev/null
+++ b/content/pt-br/docs/concepts/policy/_index.md
@@ -0,0 +1,6 @@
+---
+title: "Políticas"
+weight: 90
+description: >
+  Políticas que você pode configurar e que afetam grupos de recursos.
+---
diff --git a/content/pt-br/docs/concepts/policy/limit-range.md b/content/pt-br/docs/concepts/policy/limit-range.md
new file mode 100644
index 0000000000..33db813a60
--- /dev/null
+++ b/content/pt-br/docs/concepts/policy/limit-range.md
@@ -0,0 +1,58 @@
+---
+title: Intervalos de limite
+content_type: concept
+weight: 10
+---
+
+<!-- overview -->
+
+Por padrão, os cointêineres são executados com [recursos computacionais](/docs/concepts/configuration/manage-resources-containers/) ilimitados em um cluster Kubernetes. Com cotas de recursos, os administradores de cluster podem restringir o consumo e a criação de recursos baseado no {{< glossary_tooltip text="namespace" term_id="namespace" >}}. Dentro de um _namespace_, pod ou contêiner pode haver o consumo de quantidade de CPU e memória definidos de acordo com a cota de recursos do _namespace_. Existe a preocupação de que um Pod ou contêiner possa monopolizar todos os recursos disponíveis, justamente por conta disso existe o conceito de _Limit Range_, ou intervalos de limite, que pode ser definido como uma política utilizada para a restrição de alocação de recursos (para pods ou contêineres) em um _namespace_.
+
+<!-- body -->
+
+Um _LimitRange_ fornece restrições que podem:
+
+- Aplicar o uso mínimo e máximo de recursos computacionais por pod ou contêiner em um _namespace_.
+- Impor a solicitação de armazenamento mínimo e máximo por _PersistentVolumeClaim_ em um _namespace_.
+- Impor a proporção entre solicitação e limite para um recurso em um _namespace_.
+- Definir a solicitação/limite padrão para recursos computacionais em um _namespace_ e utilizá-los automaticamente nos contêineres em tempo de execução.
+
+## Ativando o LimitRange
+
+O suporte ao _LimitRange_ foi ativado por padrão desde o Kubernetes 1.10.
+
+Um _LimitRange_ é aplicado em um _namespace_ específico quando há um objeto _LimitRange_ nesse _namespace_.
+
+O nome de um objeto _LimitRange_ deve ser um [nome de subdomínio DNS](/pt-br/docs/concepts/overview/working-with-objects/names#dns-subdomain-names) válido.
+
+### Visão geral do Limit Range
+
+- O administrador cria um _LimitRange_ em um _namespace_.
+- Os usuários criam recursos como pods, contêineres e _PersistentVolumeClaims_ no _namespace_.
+- O controlador de admissão `LimitRanger` impõe padrões e limites para todos os pods e contêineres que não definem os requisitos de recursos computacionais e rastreia o uso para garantir que não exceda o mínimo, o máximo e a proporção de recursos definidos em qualquer _LimitRange_ presente no _namespace_.
+- Se estiver criando ou atualizando um recurso (Pod, Container, _PersistentVolumeClaim_) que viola uma restrição _LimitRange_, a solicitação ao servidor da API falhará com um código de status HTTP `403 FORBIDDEN` e uma mensagem explicando a restrição violada.
+- Se um _LimitRange_ for ativado em um _namespace_ para recursos computacionais como `cpu` e `memória`, os usuários deverão especificar solicitações ou limites para esses valores. Caso contrário, o sistema pode rejeitar a criação do pod.
+- As validações de _LimitRange_ ocorrem apenas no estágio de Admissão de Pod, não em Pods em Execução.
+
+Alguns exemplos de políticas que podem ser criadas utilizando os intervalos de limite são:
+
+- Em um cluster de 2 nós com capacidade de 8 GiB de RAM e 16 núcleos, restrinja os Pods em um namespace para solicitar 100m de CPU com um limite máximo de 500m para CPU e solicitar 200Mi para memória com um limite máximo de 600Mi para memória.
+- Defina o limite e a solicitação de CPU padrão para 150m e a solicitação padrão de memória para 300Mi para contêineres iniciados sem solicitações de CPU e memória em suas especificações.
+
+Caso os limites totais do namespace sejam menores que a soma dos limites dos Pods/Contêineres, pode haver contenção por recursos. Nesse caso, os contêineres ou Pods não serão criados.
+
+Nem a contenção nem as alterações em um _LimitRange_ afetarão os recursos já criados.
+
+## {{% heading "whatsnext" %}}
+
+Consulte o [documento de design LimitRanger](https://git.k8s.io/community/contributors/design-proposals/resource-management/admission_control_limit_range.md) para obter mais informações.
+
+Para exemplos de uso de limites, leia:
+
+- [Como configurar restrições mínimas e máximas de CPU por _namespace_](/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/).
+- [Como configurar restrições de memória mínima e máxima por _namespace_](/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/).
+- [como configurar solicitações e limites de CPU padrão por _namespace_](/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/).
+- [como configurar solicitações e limites de memória padrão por _namespace_](/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/).
+- [como configurar o consumo mínimo e máximo de armazenamento por _namespace_](/docs/tasks/administer-cluster/limit-storage-consumption/#limitrange-to-limit-requests-for-storage).
+- Um [exemplo detalhado de configuração de cota por _namespace_](/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/).
+
diff --git a/content/pt-br/docs/concepts/policy/resource-quotas.md b/content/pt-br/docs/concepts/policy/resource-quotas.md
new file mode 100644
index 0000000000..6468858348
--- /dev/null
+++ b/content/pt-br/docs/concepts/policy/resource-quotas.md
@@ -0,0 +1,649 @@
+---
+title: Cotas de Recursos
+content_type: concept
+weight: 20
+---
+
+<!-- overview -->
+
+Quando vários usuários ou equipes compartilham um cluster com um número fixo de nós,
+há uma preocupação de que uma equipe possa usar mais do que é justo durante o compartilhamento de recursos.
+
+As cotas de recursos são uma ferramenta para os administradores resolverem essa preocupação.
+
+<!-- body -->
+
+Uma cota de recurso, definida por um objeto `ResourceQuota`, fornece restrições que limitam
+consumo de recursos agregados por _namespace_. Pode limitar a quantidade de objetos que podem
+ser criado em um _namespace_ por tipo, bem como a quantidade total de recursos computacionais que podem
+ser consumidos por recursos nesse _namespace_.
+
+As cotas de recursos funcionam assim: 
+
+- Diferentes equipes trabalham em diferentes _namespaces_. Atualmente, isso é voluntário, mas o suporte para tornar isso obrigatório por meio de ACLs está planejado.
+
+- O administrador cria uma `ResourceQuota` para cada _namespace_.
+
+- Os usuários criam recursos (pods, serviços, etc.) no _namespace_ e o sistema de cotas rastreia o uso para garantir que ele não exceda os limites de recursos definidos em um `ResourceQuota`.
+
+
+- Se a criação ou atualização de um recurso violar uma restrição de cota, a solicitação falhará com código de status HTTP `403 FORBIDDEN` acompanhado de uma mensagem explicando a restrição que foi violada. 
+
+- Se a cota estiver habilitada em um _namespace_ para recursos computacionais como `cpu` e `memória`, os usuários devem especificar solicitações ou limites para esses valores; caso contrário, o sistema de cotas poderá rejeitar a criação de pods. Dica: use o controlador de admissão `LimitRanger` para forçar padrões para pods que não exigem recursos computacionais.
+
+  Veja o [passo a passo](/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
+  para um exemplo de como evitar este problema. 
+
+O nome de um objeto `ResourceQuota` deve ser um [nome do subdomínio DNS](/pt-br/docs/concepts/overview/working-with-objects/names#dns-subdomain-names) válido.
+
+Exemplos de políticas que podem ser criadas usando _namespaces_ e cotas são:
+
+- Em um cluster com capacidade de 32 GiB de RAM e 16 núcleos, deixe a equipe A usar 20 GiB e 10 núcleos, deixe B usar 10GiB e 4 núcleos e mantenha 2GiB e 2 núcleos em reserva para alocação futura.
+- Limite o _namespace_ "testing" para usar 1 núcleo e 1GiB de RAM. Deixe o namespace "produção" usar qualquer quantia.
+
+Caso a capacidade total do cluster seja menor que a soma das cotas dos _namespaces_, pode haver contenção de recursos. Isso é tratado por ordem de chegada.
+
+Nem a contenção nem as alterações na cota afetarão os recursos já criados.
+
+## Ativando a cota de recursos
+
+O suporte à cota de recursos é ativado por padrão para muitas distribuições do Kubernetes. Isto é
+ativado quando a flag {{< glossary_tooltip text="API server" term_id="kube-apiserver" >}} `--enable-admission-plugins=` tem `ResourceQuota` como
+um de seus argumentos.
+
+Uma cota de recurso é aplicada em um _namespace_ específico quando há um `ResourceQuota` nesse _namespace_.
+
+## Cota de recursos computacionais
+
+Você pode limitar a soma total de [recursos computacionais](/docs/concepts/configuration/manage-resources-containers/) que pode ser solicitado em um determinado _namespace_.
+
+Os seguintes tipos de recursos são suportados:
+
+| Nome do Recurso | Descrição |
+| --------------------- | ----------------------------------------------------------- |
+| `limits.cpu` | Em todos os pods em um estado não terminal, a soma dos limites de CPU não pode exceder esse valor. |
+| `limits.memory` | Em todos os pods em um estado não terminal, a soma dos limites de memória não pode exceder esse valor.|
+| `requests.cpu` | Em todos os pods em um estado não terminal, a soma das solicitações da CPU não pode exceder esse valor. |
+| `requests.memory` | Em todos os pods em um estado não terminal, a soma das solicitações de memória não pode exceder esse valor. |
+| `hugepages-<size>` | Em todos os pods em um estado não terminal, o número de solicitações de grandes páginas do tamanho especificado não pode exceder esse valor. |
+| `cpu` | O mesmo que `requests.cpu` |
+| `memory` | O mesmo que `requests.memory` |
+
+### Cota de recursos para recursos estendidos
+
+Além dos recursos mencionados acima, na versão 1.10, suporte a cotas para [recursos estendidos](/docs/concepts/configuration/manage-resources-containers/#extended-resources) foi adicionado.
+
+Como o `overcommit` não é permitido para recursos estendidos, não faz sentido especificar tanto `requests` e `limits` para o mesmo recurso estendido em uma cota. Portanto, para recursos estendidos, apenas itens de cota com prefixo `requests.` é permitido por enquanto.
+
+Tome o recurso GPU como exemplo, se o nome do recurso for `nvidia.com/gpu` e você quiser limitar o número total de GPUs solicitadas em um _namespace_ para 4, você pode definir uma cota da seguinte maneira:
+
+* `requests.nvidia.com/gpu: 4`
+
+Veja [como visualizar e definir cotas](#viewing-and-setting-quotas) para mais informações.
+
+
+## Cota de recursos de armazenamento
+
+Você pode limitar a soma total de [recursos de armazenamento](/docs/concepts/storage/persistent-volumes/) que podem ser solicitados em um determinado _namespace_.
+
+Além disso, você pode limitar o consumo de recursos de armazenamento com base na classe de armazenamento associada.
+
+| Nome do recurso | Descrição |
+| --------------------- | ----------------------------------------------------------- |
+| `requests.storage` | Em todas as solicitações de volume persistentes, a soma das solicitações de armazenamento não pode exceder esse valor.|
+| `persistentvolumeclaims` | O número total de [PersistentVolumeClaims](/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims) que podem existir no namespace. |
+| `<storage-class-name>.storageclass.storage.k8s.io/requests.storage` | Em todas as solicitações de volume persistentes associadas ao `<storage-class-name>`, a soma das solicitações de armazenamento não pode exceder esse valor. |
+| `<storage-class-name>.storageclass.storage.k8s.io/persistentvolumeclaims` | Em todas as declarações de volume persistentes associadas ao storage-class-name, o número total de [declarações de volume persistente](/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims) que podem existir no namespace. |
+
+Por exemplo, se um operador deseja cotar armazenamento com classe de armazenamento `gold` separada da classe de armazenamento `bronze`, o operador pode definir uma cota da seguinte forma:
+
+* `gold.storageclass.storage.k8s.io/requests.storage: 500Gi`
+* `bronze.storageclass.storage.k8s.io/requests.storage: 100Gi`
+
+Na versão 1.8, o suporte de cota para armazenamento temporário local foi adicionado como um recurso alfa:
+
+| Nome do Recurso | Descrição |
+| ------------------------------- |----------------------------------------------------------- |
+| `requests.ephemeral-storage` | Em todos os pods no _namespace_, a soma das solicitações de armazenamento local efêmero não pode exceder esse valor.|
+| `limits.ephemeral-storage` | Em todos os pods no _namespace_, a soma dos limites de armazenamento temporário local não pode exceder esse valor. |
+| `ephemeral-storage` | O mesmo que `requests.ephemeral-storage`. |
+
+{{< note >}}
+Ao usar um tempo de execução do contêiner CRI, os logs do contêiner serão contabilizados na cota de armazenamento efêmero. Isso pode resultar no despejo inesperado de pods que esgotaram suas cotas de armazenamento. Consulte [Arquitetura de registro](/docs/concepts/cluster-administration/logging/) para mais detalhes.
+{{< /note >}}
+
+## Cota de contagem de objetos
+
+Você pode definir cotas para o número total de determinados recursos de todos os padrões, tipos de recursos com _namespace_ usando a seguinte sintaxe:
+
+* `count/<resource>.<group>` para recursos de grupos não principais
+* `count/<resource>` para recursos do grupo principal
+
+Exemplo de conjunto de recursos que os usuários podem querer colocar na cota de contagem de objetos:
+
+* `count/persistentvolumeclaims`
+* `count/services`
+* `count/secrets`
+* `count/configmaps`
+* `count/replicationcontrollers`
+* `count/deployments.apps`
+* `count/replicasets.apps`
+* `count/statefulsets.apps`
+* `count/jobs.batch`
+* `count/cronjobs.batch`
+
+A mesma sintaxe pode ser usada para recursos personalizados. Por exemplo, para criar uma cota em um recurso personalizado `widgets` no grupo de API `example.com`, use `count/widgets.example.com`.
+
+Ao usar a cota de recurso `count/*`, um objeto é cobrado na cota se existir no armazenamento do servidor. Esses tipos de cotas são úteis para proteger contra o esgotamento dos recursos de armazenamento. Por exemplo, você pode desejar limitar o número de segredos em um servidor devido ao seu grande tamanho. Muitos segredos em um cluster podem
+na verdade, impedir que servidores e controladores sejam iniciados. Você pode definir uma cota para projetos para proteger contra um `CronJob` mal configurado. `CronJobs` que criam muitos `Jobs` em um _namespace_ podem levar a uma negação de serviço.
+
+Também é possível fazer uma cota de contagem de objetos genéricos em um conjunto limitado de recursos.
+Os seguintes tipos são suportados:
+
+| Nome do Recurso | Descrição |
+| ------------------------------- | ------------------------------------------------- |
+| `configmaps` | O número total de `ConfigMaps` que podem existir no namespace. |
+| `persistentvolumeclaims` | O número total de [PersistentVolumeClaims](/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims) que podem existir no namespace. |
+| `pods` | O número total de pods em um estado não terminal que pode existir no namespace. Um pod está em um estado terminal se `.status.phase in (Failed, Succeeded)` for verdadeiro.  |
+| `replicationcontrollers` | O número total de `ReplicationControllers` que podem existir no _namespace_. |
+| `resourcequotas` | O número total de `ResourceQuotas` que podem existir no _namespace_. |
+| `services` | O número total de Serviços que podem existir no _namespace_. |
+| `services.loadbalancers` | O número total de serviços do tipo `LoadBalancer` que podem existir no _namespace_. |
+| `services.nodeports` | O número total de serviços do tipo `NodePort` que podem existir no _namespace_. |
+| `secrets` | O número total de segredos que podem existir no _namespace_. |
+
+Por exemplo, a cota de `pods` conta e impõe um número máximo de `pods` criados em um único _namespace_ que não é terminal. Você pode querer definir uma cota `pods`em um _namespace_ para evitar o caso em que um usuário cria muitos `pods` pequenos e esgota o fornecimento de IPs de pod do cluster.
+
+## Escopos de cota
+
+Cada cota pode ter um conjunto associado de `scopes`. Uma cota só medirá o uso de um recurso se corresponder
+a interseção de escopos enumerados.
+
+Quando um escopo é adicionado à cota, ele limita o número de recursos aos quais ele dá suporte a aqueles que pertencem ao escopo. Os recursos especificados na cota fora do conjunto permitido resultam em um erro de validação.
+
+| Escopo | Descrição |
+| ----- | ----------- |
+| `Terminating` | Pods correspondentes onde `.spec.activeDeadlineSeconds >= 0` |
+| `NotTerminating` | Pods correspondentes onde `.spec.activeDeadlineSeconds is nil` |
+| `BestEffort` | Pods correspondentes que tenham a qualidade de serviço de melhor esforço. |
+| `NotBestEffort` | Pods correspondentes que não têm qualidade de serviço de melhor esforço. |
+| `PriorityClass` | Corresponde aos pods que fazem referência à [classe de prioridade](/docs/concepts/scheduling-eviction/pod-priority-preemption) especificada. |
+| `CrossNamespacePodAffinity` | Corresponde a pods que tenham [termos de (anti)afinidade](/docs/concepts/scheduling-eviction/assign-pod-node) de _namespace_ cruzado. |
+
+O escopo `BestEffort` restringe uma cota ao rastreamento do seguinte recurso:
+
+* `pods`
+
+Os escopos `Termination`, `NotTerminate`, `NotBestEffort` e `PriorityClass`restringem uma cota para rastrear os seguintes recursos:
+
+* `pods`
+* `cpu`
+* `memory`
+* `requests.cpu`
+* `requests.memory`
+* `limits.cpu`
+* `limits.memory`
+
+Observe que você não pode especificar os escopos `Terminate` e o `NotTerminate`na mesma cota, e você também não pode especificar o `BestEffort` e`NotBestEffort` na mesma cota.
+
+O `scopeSelector` suporta os seguintes valores no campo `operator`:
+
+* `In`
+* `NotIn`
+* `Exists`
+* `DoesNotExist`
+
+Ao usar um dos seguintes valores como o `scopeName` ao definir o`scopeSelector`, o `operator` deve ser `Exists`. 
+
+* `Terminating`
+* `NotTerminating`
+* `BestEffort`
+* `NotBestEffort`
+
+Se o `operator` for `In` ou `NotIn`, o campo `values` deve ter pelo menos um valor. Por exemplo:
+
+```yaml
+  scopeSelector:
+    matchExpressions:
+      - scopeName: PriorityClass
+        operator: In
+        values:
+          - middle
+```
+
+Se o `operator` for `Exists` ou `DoesNotExist`, o campo `values` *NÃO* deve ser especificado.
+
+### Cota de recursos por classe de prioridade
+
+{{< feature-state for_k8s_version="v1.17" state="stable" >}}
+
+Os pods podem ser criados em uma [prioridade](/docs/concepts/scheduling-eviction/pod-priority-preemption/#pod-priority) específica. Você pode controlar o consumo de recursos do sistema de um pod com base na prioridade de um pod, usando o `scopeSelector`
+campo na especificação de cota.
+
+Uma cota é correspondida e consumida apenas se `scopeSelector` na especificação de cota selecionar o pod.
+
+Quando a cota está no escopo da classe de prioridade usando o campo `scopeSelector`, objeto de cota
+está restrito a rastrear apenas os seguintes recursos:
+
+* `pods`
+* `cpu`
+* `memory`
+* `ephemeral-storage`
+* `limits.cpu`
+* `limits.memory`
+* `limits.ephemeral-storage`
+* `requests.cpu`
+* `requests.memory`
+* `requests.ephemeral-storage`
+
+Este exemplo cria um objeto de cota e o corresponde a pods em prioridades específicas. O exemplo
+funciona da seguinte forma:
+
+- Os pods no cluster têm uma das três classes de prioridade, "baixa", "média", "alta".
+- Um objeto de cota é criado para cada prioridade.
+
+Salve o seguinte YAML em um arquivo `quota.yml`.
+
+```yaml
+apiVersion: v1
+kind: List
+items:
+- apiVersion: v1
+  kind: ResourceQuota
+  metadata:
+    name: pods-high
+  spec:
+    hard:
+      cpu: "1000"
+      memory: 200Gi
+      pods: "10"
+    scopeSelector:
+      matchExpressions:
+      - operator : In
+        scopeName: PriorityClass
+        values: ["high"]
+- apiVersion: v1
+  kind: ResourceQuota
+  metadata:
+    name: pods-medium
+  spec:
+    hard:
+      cpu: "10"
+      memory: 20Gi
+      pods: "10"
+    scopeSelector:
+      matchExpressions:
+      - operator : In
+        scopeName: PriorityClass
+        values: ["medium"]
+- apiVersion: v1
+  kind: ResourceQuota
+  metadata:
+    name: pods-low
+  spec:
+    hard:
+      cpu: "5"
+      memory: 10Gi
+      pods: "10"
+    scopeSelector:
+      matchExpressions:
+      - operator : In
+        scopeName: PriorityClass
+        values: ["low"]
+```
+
+Aplique o YAML usando `kubectl create`.
+
+```shell
+kubectl create -f ./quota.yml
+```
+
+```
+resourcequota/pods-high created
+resourcequota/pods-medium created
+resourcequota/pods-low created
+```
+
+Verifique se a cota `Used` é `0` usando `kubectl describe quota`.
+
+```shell
+kubectl describe quota
+```
+
+```
+Name:       pods-high
+Namespace:  default
+Resource    Used  Hard
+--------    ----  ----
+cpu         0     1k
+memory      0     200Gi
+pods        0     10
+
+
+Name:       pods-low
+Namespace:  default
+Resource    Used  Hard
+--------    ----  ----
+cpu         0     5
+memory      0     10Gi
+pods        0     10
+
+
+Name:       pods-medium
+Namespace:  default
+Resource    Used  Hard
+--------    ----  ----
+cpu         0     10
+memory      0     20Gi
+pods        0     10
+```
+
+Crie um pod com prioridade "high". Salve o seguinte YAML em um arquivo `high-priority-pod.yml`.
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: high-priority
+spec:
+  containers:
+  - name: high-priority
+    image: ubuntu
+    command: ["/bin/sh"]
+    args: ["-c", "while true; do echo hello; sleep 10;done"]
+    resources:
+      requests:
+        memory: "10Gi"
+        cpu: "500m"
+      limits:
+        memory: "10Gi"
+        cpu: "500m"
+  priorityClassName: high
+```
+
+Applique com `kubectl create`.
+
+```shell
+kubectl create -f ./high-priority-pod.yml
+```
+
+Verifique se as estatísticas "Used" para a cota de prioridade "high", `pods-high` foram alteradas e se
+as outras duas cotas permanecem inalteradas.
+
+```shell
+kubectl describe quota
+```
+
+```
+Name:       pods-high
+Namespace:  default
+Resource    Used  Hard
+--------    ----  ----
+cpu         500m  1k
+memory      10Gi  200Gi
+pods        1     10
+
+
+Name:       pods-low
+Namespace:  default
+Resource    Used  Hard
+--------    ----  ----
+cpu         0     5
+memory      0     10Gi
+pods        0     10
+
+
+Name:       pods-medium
+Namespace:  default
+Resource    Used  Hard
+--------    ----  ----
+cpu         0     10
+memory      0     20Gi
+pods        0     10
+```
+
+### Cota de afinidade de pod entre _namespaces_
+
+{{< feature-state for_k8s_version="v1.22" state="beta" >}}
+
+Os operadores podem usar o escopo de cota `CrossNamespacePodAffinity` para limitar quais _namespaces_ têm permissão para ter pods com termos de afinidade que cruzam _namespaces_. Especificamente, ele controla quais pods são permitidos para definir os campos `namespaces` ou `namespaceSelector` em termos de afinidade de pod.
+
+Impedir que os usuários usem termos de afinidade entre _namespaces_ pode ser desejável, pois um pod
+com restrições antiafinidade pode bloquear pods de todos os outros _namespaces_ de ser agendado em um domínio de falha.
+
+O uso desses operadores de escopo pode impedir certos _namespaces_ (`foo-ns` no exemplo abaixo) de ter pods que usam afinidade de pod entre _namespaces_ criando um objeto de cota de recurso nesse _namespace_ com escopo `CrossNamespaceAffinity` e limite rígido de 0:
+
+```yaml
+apiVersion: v1
+kind: ResourceQuota
+metadata:
+  name: disable-cross-namespace-affinity
+  namespace: foo-ns
+spec:
+  hard:
+    pods: "0"
+  scopeSelector:
+    matchExpressions:
+    - scopeName: CrossNamespaceAffinity
+```
+
+Se os operadores quiserem proibir o uso de `namespaces` e `namespaceSelector` por padrão, e
+permitir apenas para _namespaces_ específicos, eles podem configurar `CrossNamespaceAffinity`como um recurso limitado definindo o sinalizador kube-apiserver --admission-control-config-file
+para o caminho do seguinte arquivo de configuração:
+
+```yaml
+apiVersion: apiserver.config.k8s.io/v1
+kind: AdmissionConfiguration
+plugins:
+- name: "ResourceQuota"
+  configuration:
+    apiVersion: apiserver.config.k8s.io/v1
+    kind: ResourceQuotaConfiguration
+    limitedResources:
+    - resource: pods
+      matchScopes:
+      - scopeName: CrossNamespaceAffinity
+```
+
+Com a configuração acima, os pods podem usar `namespaces` e `namespaceSelector` apenas na afinidade do pod se o _namespace_ em que foram criados tiver um objeto de cota de recurso com escopo `CrossNamespaceAffinity` e um limite rígido maior ou igual ao número de pods usando esses campos.
+
+Esse recurso é beta e ativado por padrão. Você pode desativá-lo usando o [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) `PodAffinityNamespaceSelector` no kube-apiserver e no kube-scheduler.
+
+## Solicitações comparadas aos limites {#requests-vs-limits}
+
+Ao alocar recursos computacionais, cada contêiner pode especificar uma solicitação e um valor limite para CPU ou memória. A cota pode ser configurada para cotar qualquer valor.
+
+Se a cota tiver um valor especificado para `requests.cpu` ou `requests.memory`, ela exigirá que cada container faça uma solicitação explícita para esses recursos. Se a cota tiver um valor especificado para `limits.cpu` ou `limits.memory`, em seguida exige que cada contêiner de entrada especifique um limite explícito para esses recursos.
+
+## Como visualizar e definir cotas
+
+O Kubectl é compatível com a criação, atualização e visualização de cotas:
+
+```shell
+kubectl create namespace myspace
+```
+
+```shell
+cat <<EOF > compute-resources.yaml
+apiVersion: v1
+kind: ResourceQuota
+metadata:
+  name: compute-resources
+spec:
+  hard:
+    requests.cpu: "1"
+    requests.memory: 1Gi
+    limits.cpu: "2"
+    limits.memory: 2Gi
+    requests.nvidia.com/gpu: 4
+EOF
+```
+
+```shell
+kubectl create -f ./compute-resources.yaml --namespace=myspace
+```
+
+```shell
+cat <<EOF > object-counts.yaml
+apiVersion: v1
+kind: ResourceQuota
+metadata:
+  name: object-counts
+spec:
+  hard:
+    configmaps: "10"
+    persistentvolumeclaims: "4"
+    pods: "4"
+    replicationcontrollers: "20"
+    secrets: "10"
+    services: "10"
+    services.loadbalancers: "2"
+EOF
+```
+
+```shell
+kubectl create -f ./object-counts.yaml --namespace=myspace
+```
+
+```shell
+kubectl get quota --namespace=myspace
+```
+
+```none
+NAME                    AGE
+compute-resources       30s
+object-counts           32s
+```
+
+```shell
+kubectl describe quota compute-resources --namespace=myspace
+```
+
+```none
+Name:                    compute-resources
+Namespace:               myspace
+Resource                 Used  Hard
+--------                 ----  ----
+limits.cpu               0     2
+limits.memory            0     2Gi
+requests.cpu             0     1
+requests.memory          0     1Gi
+requests.nvidia.com/gpu  0     4
+```
+
+```shell
+kubectl describe quota object-counts --namespace=myspace
+```
+
+```none
+Name:                   object-counts
+Namespace:              myspace
+Resource                Used    Hard
+--------                ----    ----
+configmaps              0       10
+persistentvolumeclaims  0       4
+pods                    0       4
+replicationcontrollers  0       20
+secrets                 1       10
+services                0       10
+services.loadbalancers  0       2
+```
+
+Kubectl also supports object count quota for all standard namespaced resources
+using the syntax `count/<resource>.<group>`:
+
+```shell
+kubectl create namespace myspace
+```
+
+```shell
+kubectl create quota test --hard=count/deployments.apps=2,count/replicasets.apps=4,count/pods=3,count/secrets=4 --namespace=myspace
+```
+
+```shell
+kubectl create deployment nginx --image=nginx --namespace=myspace --replicas=2
+```
+
+```shell
+kubectl describe quota --namespace=myspace
+```
+
+```
+Name:                         test
+Namespace:                    myspace
+Resource                      Used  Hard
+--------                      ----  ----
+count/deployments.apps        1     2
+count/pods                    2     3
+count/replicasets.apps        1     4
+count/secrets                 1     4
+```
+
+## Capacidade e cota de Cluster
+
+`ResourceQuotas` são independentes da capacidade do cluster. Eles estão expresso em unidades absolutas. Portanto, se você adicionar nós ao cluster, isso *não*
+dá automaticamente a cada _namespace_ a capacidade de consumir mais recursos.
+
+Às vezes, políticas mais complexas podem ser necessárias, como:
+
+- Divida proporcionalmente os recursos totais do cluster entre várias equipes.
+- Permita que cada locatário aumente o uso de recursos conforme necessário, mas tenha um generoso limite para evitar o esgotamento acidental de recursos.
+- Detecte a demanda de um _namespace_, adicione nós e aumente a cota.
+
+Tais políticas podem ser implementadas usando `ResourceQuotas` como blocos de construção, por
+escrevendo um "controlador" que observa o uso da cota e ajusta os limites rígidos da cota de cada _namespace_ de acordo com outros sinais.
+
+Observe que a cota de recursos divide os recursos agregados do cluster, mas não cria restrições em torno dos nós: pods de vários _namespaces_ podem ser executados no mesmo nó.
+
+## Limite de consumo de classe de prioridade por padrão
+
+Pode ser desejado que os pods com uma prioridade particular, por exemplo. "cluster-services",
+deve ser permitido em um _namespace_, se, e somente se, existir um objeto de cota correspondente.
+
+Com este mecanismo, os operadores podem restringir o uso de certas classes de prioridade para um número limitado de _namespaces_ , e nem todos poderão consumir essas classes de prioridade por padrão.
+
+Para impor isso, a flag `kube-apiserver` `--admission-control-config-file` deve ser
+usada para passar o caminho para o seguinte arquivo de configuração:
+
+```yaml
+apiVersion: apiserver.config.k8s.io/v1
+kind: AdmissionConfiguration
+plugins:
+- name: "ResourceQuota"
+  configuration:
+    apiVersion: apiserver.config.k8s.io/v1
+    kind: ResourceQuotaConfiguration
+    limitedResources:
+    - resource: pods
+      matchScopes:
+      - scopeName: PriorityClass
+        operator: In
+        values: ["cluster-services"]
+```
+
+Em seguida, crie um objeto de cota de recurso no _namespace_ `kube-system`:
+
+{{< codenew file="policy/priority-class-resourcequota.yaml" >}}
+
+```shell
+kubectl apply -f https://k8s.io/examples/policy/priority-class-resourcequota.yaml -n kube-system
+```
+
+```none
+resourcequota/pods-cluster-services created
+```
+
+Nesse caso, a criação de um pod será permitida se:
+
+1. O `priorityClassName` do pod não foi especificado.
+1. O `priorityClassName` do pod é especificado com um valor diferente de `cluster-services`.
+1. O `priorityClassName` do pod está definido como `cluster-services`, ele deve ser criado no namespace `kube-system` e passou na verificação de cota de recursos.
+
+Uma solicitação de criação de pod é rejeitada caso seu `priorityClassName` estiver definido como `cluster-services` e deve ser criado em um _namespace_ diferente de `kube-system`.
+
+## {{% heading "whatsnext" %}}
+
+- Veja o [documento de design de cota de recursos](https://git.k8s.io/community/contributors/design-proposals/resource-management/admission_control_resource_quota.md) para mais informações.
+- Veja um [exemplo detalhado de como usar a cota de recursos](/docs/tasks/administer-cluster/quota-api-object/).
+- Leia o [documento de design de suporte de cota para prioridade de classe](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/scheduling/pod-priority-resourcequota.md).
+- Veja [recursos limitados](https://github.com/kubernetes/kubernetes/pull/36765)
diff --git a/content/pt-br/docs/concepts/scheduling-eviction/pod-overhead.md b/content/pt-br/docs/concepts/scheduling-eviction/pod-overhead.md
index c3788b22fa..603c82d4f2 100644
--- a/content/pt-br/docs/concepts/scheduling-eviction/pod-overhead.md
+++ b/content/pt-br/docs/concepts/scheduling-eviction/pod-overhead.md
@@ -188,6 +188,6 @@ mas é esperado em uma próxima versão. Os usuários necessitarão entretanto c
 
 
 * [RuntimeClass](/docs/concepts/containers/runtime-class/)
-* [PodOverhead Design](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/20190226-pod-overhead.md)
+* [PodOverhead Design](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/688-pod-overhead)
 
 
diff --git a/content/pt-br/docs/concepts/scheduling-eviction/taint-and-toleration.md b/content/pt-br/docs/concepts/scheduling-eviction/taint-and-toleration.md
new file mode 100644
index 0000000000..dc4e362f7d
--- /dev/null
+++ b/content/pt-br/docs/concepts/scheduling-eviction/taint-and-toleration.md
@@ -0,0 +1,210 @@
+---
+title: Taints e Tolerâncias
+content_type: concept
+weight: 40
+---
+
+
+<!-- overview -->
+[_Afinidade de nó_](/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity)
+é uma propriedade dos {{< glossary_tooltip text="Pods" term_id="pod" >}} que os *associa* a um conjunto de {{< glossary_tooltip text="nós" term_id="node" >}} (seja como uma preferência ou uma exigência). _Taints_ são o oposto -- eles permitem que um nó repudie um conjunto de pods.
+
+_Tolerâncias_ são aplicadas em pods e permitem, mas não exigem, que os pods sejam alocados em nós com _taints_ correspondentes.
+
+Taints e tolerâncias trabalham juntos para garantir que pods não sejam alocados em nós inapropriados. Um ou mais taints são aplicados em um nó; isso define que o nó não deve aceitar nenhum pod que não tolera essas taints.
+
+
+<!-- body -->
+
+## Conceitos
+
+Você adiciona um taint a um nó utilizando [kubectl taint](/docs/reference/generated/kubectl/kubectl-commands#taint).
+Por exemplo,
+
+```shell
+kubectl taint nodes node1 key1=value1:NoSchedule
+```
+
+define um taint no nó `node1`. O taint tem a chave `key1`, valor `value1` e o efeito `NoSchedule`.
+Isso significa que nenhum pod conseguirá ser executado no nó `node1` a menos que possua uma tolerância correspondente.
+
+Para remover o taint adicionado pelo comando acima, você pode executar:
+```shell
+kubectl taint nodes node1 key1=value1:NoSchedule-
+```
+
+Você especifica uma tolerância para um pod na [especificação do Pod](/docs/reference/kubernetes-api/workload-resources/pod-v1#PodSpec). Ambas as seguintes tolerâncias "correspondem" ao taint criado pelo `kubectl taint` acima, e assim um pod com qualquer uma delas poderia ser executado no `node1`:
+
+```yaml
+tolerations:
+- key: "key1"
+  operator: "Equal"
+  value: "value1"
+  effect: "NoSchedule"
+```
+
+```yaml
+tolerations:
+- key: "key1"
+  operator: "Exists"
+  effect: "NoSchedule"
+```
+
+Aqui está um exemplo de um pod que utiliza tolerâncias:
+
+{{< codenew file="pods/pod-with-toleration.yaml" >}}
+
+O valor padrão de `operator` é `Equal`.
+
+Uma tolerância "casa" um taint se as chaves e efeitos são os mesmos, e:
+
+* o valor de `operator` é `Exists` (no caso nenhum `value` deve ser especificado), ou
+* o valor de `operator` é `Equal` e os valores de `value` são iguais.
+
+{{< note >}}
+
+Existem dois casos especiais:
+
+Uma `key` vazia com o operador `Exists` "casa" todas as chaves, valores e efeitos, o que significa que o pod irá tolerar tudo.
+
+Um `effect` vazio "casa" todos os efeitos com a chave `key1`.
+
+{{< /note >}}
+
+O exemplo acima usou `effect` de `NoSchedule`. De forma alternativa, você pode usar `effect` de `PreferNoSchedule`.
+Nesse efeito, o sistema *tentará* evitar que o pod seja alocado ao nó caso ele não tolere os taints definidos, contudo a alocação não será evitada de forma obrigatória. Pode-se dizer que o `PreferNoSchedule` é uma versão permissiva do `NoSchedule`. O terceiro tipo de `effect` é o `NoExecute` que será descrito posteriormente.
+
+Você pode colocar múltiplos taints no mesmo nó e múltiplas tolerâncias no mesmo pod.
+O jeito que o Kubernetes processa múltiplos taints e tolerâncias é como um filtro: começa com todos os taints de um nó, em seguida ignora aqueles para os quais o pod tem uma tolerância relacionada; os taints restantes que não foram ignorados indicam o efeito no pod. Mais especificamente,
+
+* se existe pelo menos um taint não tolerado com o efeito `NoSchedule`, o Kubernetes não alocará o pod naquele nó
+* se existe um taint não tolerado com o efeito `NoSchedule`, mas existe pelo menos um taint não tolerado com o efeito `PreferNoSchedule`, o Kubernetes *tentará* não alocar o pod no nó
+* se existe pelo menos um taint não tolerado com o efeito `NoExecute`, o pod será expulso do nó (caso já esteja em execução) e não será alocado ao nó (caso ainda não esteja em execução).
+
+Por exemplo, imagine que você tem um nó com os seguintes taints
+
+```shell
+kubectl taint nodes node1 key1=value1:NoSchedule
+kubectl taint nodes node1 key1=value1:NoExecute
+kubectl taint nodes node1 key2=value2:NoSchedule
+```
+
+E um pod com duas tolerâncias:
+
+```yaml
+tolerations:
+- key: "key1"
+  operator: "Equal"
+  value: "value1"
+  effect: "NoSchedule"
+- key: "key1"
+  operator: "Equal"
+  value: "value1"
+  effect: "NoExecute"
+```
+
+Nesse caso, o pod não será alocado ao nó porque não possui uma tolerância para o terceiro taint. Porém, se ele já estiver rodando no nó quando o taint foi adicionado, não será afetado e continuará rodando, tendo em vista que o terceiro taint é o único não tolerado pelo pod. 
+
+Normalmente, se um taint com o efeito `NoExecute` é adicionado a um nó, qualquer pod que não o tolere será expulso imediatamente e pods que o toleram nunca serão expulsos. Contudo, uma tolerância com efeito `NoExecute` pode especificar de forma opcional o campo `tolerationSeconds`, que determina quanto tempo o pod continuará alocado ao nó depois que o taint é adicionado. Por exemplo,
+
+```yaml
+tolerations:
+- key: "key1"
+  operator: "Equal"
+  value: "value1"
+  effect: "NoExecute"
+  tolerationSeconds: 3600
+```
+
+significa que se esse pod está sendo executado e um taint correspondente é adicionado ao nó, o pod irá continuar rodando neste nó por 3600 segundos e depois será expulso. Se o taint for removido antes desse tempo acabar, o pod não será expulso.
+
+## Exemplos de Casos de Uso
+
+Taints e tolerâncias são um modo flexível de conduzir pods para *fora* dos nós ou expulsar pods que não deveriam estar sendo executados. Alguns casos de uso são
+
+* **Nós Dedicados**: Se você quiser dedicar um conjunto de nós para uso exclusivo de um conjunto específico de usuários, poderá adicionar um taint nesses nós. (digamos, `kubectl taint nodes nodename dedicated=groupName:NoSchedule`) e em seguida adicionar uma tolerância correspondente para seus pods (isso seria feito mais facilmente com a escrita de um [controlador de admissão](/docs/reference/access-authn-authz/admission-controllers/) customizado).
+Os pods com tolerância terão sua execução permitida nos nós com taints (dedicados), assim como em qualquer outro nó no cluster. Se você quiser dedicar nós a esses pods *e garantir* que eles usem *apenas* os nós dedicados, precisará adicionar uma label similar ao taint para o mesmo conjunto de nós (por exemplo, `dedicated=groupName`), e o controle de admissão deverá adicionar uma afinidade de nó para exigir que os pods podem ser executados apenas nos nós definidos com a label `dedicated=groupName`.
+
+* **Nós com hardware especial**: Em um cluster no qual um pequeno grupo de nós possui hardware especializado (por exemplo, GPUs), é desejável manter pods que não necessitem desse tipo de hardware fora desses nós, dessa forma o recurso estará disponível para pods que precisem do hardware especializado.  Isso pode ser feito aplicando taints nos nós com o hardware especializado (por exemplo, `kubectl taint nodes nodename special=true:NoSchedule` or `kubectl taint nodes nodename special=true:PreferNoSchedule`) e aplicando uma tolerância correspondente nos pods que usam o hardware especial. Assim como no caso de uso de nós dedicados, é provavelmente mais fácil aplicar as tolerâncias utilizando um [controlador de admissão](/docs/reference/access-authn-authz/admission-controllers/).
+Por exemplo, é recomendado usar [Extended Resources](/docs/concepts/configuration/manage-resources-containers/#extended-resources) para representar hardware especial, adicione um taint ao seus nós de hardware especializado com o nome do recurso estendido e execute o controle de admissão [ExtendedResourceToleration](/docs/reference/access-authn-authz/admission-controllers/#extendedresourcetoleration). Agora, tendo em vista que os nós estão marcados com um taint, nenhum pod sem a tolerância será executado neles. Porém, quando você submete um pod que requisita o recurso estendido, o controlador de admissão `ExtendedResourceToleration` irá adicionar automaticamente as tolerâncias necessárias ao pod que irá, por sua vez, ser alocado no nó com hardware especial. Isso garantirá que esses nós de hardware especial serão dedicados para os pods que requisitarem tal recurso e você não precisará adicionar manualmente as tolerâncias aos seus pods.
+
+* **Expulsões baseadas em Taint**: Um comportamento de expulsão configurada por pod quando problemas existem em um nó, o qual será descrito na próxima seção.
+
+## Expulsões baseadas em Taint
+
+{{< feature-state for_k8s_version="v1.18" state="stable" >}}
+
+O efeito de taint `NoExecute`, mencionado acima, afeta pods que já estão rodando no nó da seguinte forma
+
+ * pods que não toleram o taint são expulsos imediatamente
+ * pods que toleram o taint sem especificar `tolerationSeconds` em sua especificação de tolerância, ficam alocados para sempre
+ * pods que toleram o taint com um `tolerationSeconds` especificado, permanecem alocados pela quantidade de tempo definida
+
+O controlador de nó automaticamente adiciona um taint ao Nó quando certas condições se tornam verdadeiras. Os seguintes taints são embutidos:
+
+ * `node.kubernetes.io/not-ready`: Nó não está pronto. Isso corresponde ao NodeCondition `Ready` com o valor "`False`".
+ * `node.kubernetes.io/unreachable`: Nó é inalcançável a partir do controlador de nó. Isso corresponde ao NodeCondition `Ready` com o valor "`Unknown`".
+ * `node.kubernetes.io/memory-pressure`: Nó possui pressão de memória.
+ * `node.kubernetes.io/disk-pressure`: Nó possui pressão de disco.
+ * `node.kubernetes.io/pid-pressure`: Nó possui pressão de PID.
+ * `node.kubernetes.io/network-unavailable`: A rede do nó está indisponível.
+ * `node.kubernetes.io/unschedulable`: Nó não é alocável.
+ * `node.cloudprovider.kubernetes.io/uninitialized`: Quando o kubelet é iniciado com um provedor de nuvem "externo", esse taint é adicionado ao nó para que ele seja marcado como não utilizável. Após o controlador do cloud-controller-manager inicializar o nó, o kubelet remove esse taint.
+
+No caso de um nó estar prestes a ser expulso, o controlador de nó ou kubelet adicionam os taints relevantes com o efeito `NoExecute`. Se a condição de falha retorna ao normal, o kubelet ou controlador de nó podem remover esses taints.
+
+{{< note >}}
+A camada de gerenciamento limita a taxa de adição de novos taints aos nós. Esse limite gerencia o número de expulsões que são disparadas quando muitos nós se tornam inalcançáveis ao mesmo tempo (por exemplo: se ocorre uma falha na rede).
+{{< /note >}}
+
+Você pode especificar `tolerationSeconds` em um Pod para definir quanto tempo ele ficará alocado em um nó que está falhando ou está sem resposta.
+
+Por exemplo, você talvez queira manter uma aplicação com vários estados salvos localmente alocado em um nó por um longo período na ocorrência de uma divisão na rede, esperando que essa divisão se recuperará e assim a expulsão do pod pode ser evitada.
+A tolerância que você define para esse Pod poderia ficar assim:
+
+```yaml
+tolerations:
+- key: "node.kubernetes.io/unreachable"
+  operator: "Exists"
+  effect: "NoExecute"
+  tolerationSeconds: 6000
+```
+
+{{< note >}}
+O Kubernetes automaticamente adiciona uma tolerância para `node.kubernetes.io/not-ready` e `node.kubernetes.io/unreachable` com `tolerationSeconds=300`, a menos que você, ou um controlador, defina essas tolerâncias explicitamente.
+
+Essas tolerâncias adicionadas automaticamente significam que Pods podem continuar alocados aos Nós por 5 minutos após um desses problemas ser detectado.
+{{< /note >}}
+
+Pods do tipo [DaemonSet](/docs/concepts/workloads/controllers/daemonset/) são criados com tolerâncias `NoExecute` sem a propriedade `tolerationSeconds` para os seguintes taints:
+
+  * `node.kubernetes.io/unreachable`
+  * `node.kubernetes.io/not-ready`
+
+Isso garante que esses pods do DaemonSet nunca sejam expulsos por conta desses problemas.
+
+## Taints por condições de nó
+
+A camada de gerenciamento, usando o {{<glossary_tooltip text="controlador" term_id="controller">}} do nó, cria taints automaticamente com o efeito `NoSchedule` para [condições de nó](/docs/concepts/scheduling-eviction/node-pressure-eviction/#node-conditions).
+
+O agendador verifica taints, não condições de nó, quando realiza suas decisões de agendamento. Isso garante que as condições de nó não afetem diretamente o agendamento.
+Por exemplo, se a condição de nó `DiskPressure` está ativa, a camada de gerenciamento adiciona o taint `node.kubernetes.io/disk-pressure` e não aloca novos pods no nó afetado. Se a condição `MemoryPressure` está ativa, a camada de gerenciamento adiciona o taint `node.kubernetes.io/memory-pressure`. 
+
+Você pode ignorar condições de nó para pods recém-criados adicionando tolerâncias correspondentes. A camada de controle também adiciona a tolerância `node.kubernetes.io/memory-pressure` em pods que possuem uma {{< glossary_tooltip text="classe de QoS" term_id="qos-class" >}}  diferente de `BestEffort`. Isso ocorre porque o Kubernetes trata pods nas classes de QoS `Guaranteed` ou `Burstable` (até mesmo pods sem requisitos de memória definidos) como se fossem capazes de lidar com pressão de memória, enquanto novos pods com `BestEffort` não são alocados no nó afetado.
+
+O controlador DaemonSet adiciona automaticamente as seguintes tolerâncias de `NoSchedule` para todos os daemons, prevenindo que DaemonSets quebrem.
+
+  * `node.kubernetes.io/memory-pressure`
+  * `node.kubernetes.io/disk-pressure`
+  * `node.kubernetes.io/pid-pressure` (1.14 ou superior)
+  * `node.kubernetes.io/unschedulable` (1.10 ou superior)
+  * `node.kubernetes.io/network-unavailable` (*somente rede do host*)
+
+Adicionando essas tolerâncias garante retro compatibilidade. Você também pode adicionar tolerâncias de forma arbitrária aos DaemonSets.
+
+## {{% heading "whatsnext" %}}
+
+* Leia sobre [Node-pressure Eviction](/docs/concepts/scheduling-eviction/node-pressure-eviction/) e como você pode configurá-la
+* Leia sobre [Pod Priority](/docs/concepts/scheduling-eviction/pod-priority-preemption/)
+
+
diff --git a/content/pt-br/docs/concepts/security/overview.md b/content/pt-br/docs/concepts/security/overview.md
index 1f75e051ae..0cbbbf2961 100644
--- a/content/pt-br/docs/concepts/security/overview.md
+++ b/content/pt-br/docs/concepts/security/overview.md
@@ -55,6 +55,7 @@ Amazon Web Services | https://aws.amazon.com/security/ |
 Google Cloud Platform | https://cloud.google.com/security/ |
 IBM Cloud | https://www.ibm.com/cloud/security |
 Microsoft Azure | https://docs.microsoft.com/en-us/azure/security/azure-security |
+Oracle Cloud Infrastructure | https://www.oracle.com/security/ |
 VMWare VSphere | https://www.vmware.com/security/hardening-guides.html |
 
 {{< /table >}}
@@ -102,7 +103,7 @@ vulnerável a um ataque de exaustão de recursos e, por consequência, o risco d
 Autorização RBAC (acesso à API Kubernetes) | https://kubernetes.io/docs/reference/access-authn-authz/rbac/
 Autenticação | https://kubernetes.io/docs/concepts/security/controlling-access/
 Gerenciamento de segredos na aplicação (e encriptando-os no etcd em repouso) | https://kubernetes.io/docs/concepts/configuration/secret/ <br> https://kubernetes.io/docs/tasks/administer-cluster/encrypt-data/
-Políticas de segurança do Pod | https://kubernetes.io/docs/concepts/policy/pod-security-policy/
+Garantir que os Pods atendem aos padrões de segurança do Pod | https://kubernetes.io/docs/concepts/security/pod-security-standards/#policy-instantiation
 Qualidade de serviço (e gerenciamento de recursos de cluster) | https://kubernetes.io/docs/tasks/configure-pod-container/quality-service-pod/
 Políticas de Rede | https://kubernetes.io/docs/concepts/services-networking/network-policies/
 TLS para Kubernetes Ingress | https://kubernetes.io/docs/concepts/services-networking/ingress/#tls
diff --git a/content/pt-br/docs/concepts/storage/_index.md b/content/pt-br/docs/concepts/storage/_index.md
new file mode 100644
index 0000000000..41cfbb3507
--- /dev/null
+++ b/content/pt-br/docs/concepts/storage/_index.md
@@ -0,0 +1,8 @@
+---
+title: "Armazenamento"
+weight: 70
+description: >
+  Formas de fornecer armazenamento temporário e de longa duração a Pods em seu
+  cluster.
+---
+
diff --git a/content/pt-br/docs/concepts/storage/persistent-volumes.md b/content/pt-br/docs/concepts/storage/persistent-volumes.md
index 65396a3c37..01d092e673 100644
--- a/content/pt-br/docs/concepts/storage/persistent-volumes.md
+++ b/content/pt-br/docs/concepts/storage/persistent-volumes.md
@@ -1,15 +1,9 @@
 ---
-reviewers:
-- jsafrane
-- saad-ali
-- thockin
-- msau42
-- xing-yang
 title: Volumes Persistentes
 feature:
   title: Orquestração de Armazenamento
   description: >
-    Montar automaticamente o armazenamento de sua escolha, seja de um armazenamento local, de um provedor de cloud pública, como <a href="https://cloud.google.com/storage/">GCP</a> ou <a href="https://aws.amazon.com/products/storage/">AWS</a>, ou um armazenameto de rede, como NFS, iSCSI, Gluster, Ceph, Cinder ou Flocker.
+    Monte automaticamente o armazenamento de sua escolha, seja de um armazenamento local, de um provedor de cloud pública, como <a href="https://cloud.google.com/storage/">GCP</a> ou <a href="https://aws.amazon.com/products/storage/">AWS</a>, ou um armazenamento de rede, como NFS, iSCSI, Gluster, Ceph, Cinder ou Flocker.
 
 content_type: conceito
 weight: 20
@@ -28,7 +22,7 @@ O gerenciamento de armazenamento é uma questão bem diferente do gerenciamento
 
 Um _PersistentVolume_ (PV) é uma parte do armazenamento dentro do cluster que tenha sido provisionada por um administrador, ou dinamicamente utilizando [Classes de Armazenamento](/docs/concepts/storage/storage-classes/). Isso é um recurso dentro do cluster da mesma forma que um nó também é. PVs são plugins de volume da mesma forma que Volumes, porém eles têm um ciclo de vida independente de qualquer Pod que utilize um PV. Essa API tem por objetivo mostrar os detalhes da implementação do armazenamento, seja ele NFS, iSCSI, ou um armazenamento específico de um provedor de cloud pública.
 
-Uma_PersistentVolumeClaim_ (PVC) é uma requisição para armazenamento por um usuário. É similar a um Pod. Pods utilizam recursos do nó e PVCs utilizam recursos do PV. Pods podem solicitar níveis específicos de recursos (CPU e Memória). Claims podem solicitar tamanho e modos de acesso específicos (exemplo: montagem como ReadWriteOnce, ReadOnlyMany ou ReadWriteMany, veja [Modos de Acesso](#modos-de-acesso)).
+Uma _PersistentVolumeClaim_ (PVC) é uma requisição para armazenamento por um usuário. É similar a um Pod. Pods utilizam recursos do nó e PVCs utilizam recursos do PV. Pods podem solicitar níveis específicos de recursos (CPU e Memória). Claims podem solicitar tamanho e modos de acesso específicos (exemplo: montagem como ReadWriteOnce, ReadOnlyMany ou ReadWriteMany, veja [Modos de Acesso](#modos-de-acesso)).
 
 Enquanto as PersistentVolumeClaims permitem que um usuário utilize recursos de armazenamento de forma limitada, é comum que usuários precisem de PersistentVolumes com diversas propriedades, como desempenho, para problemas diversos. Os administradores de cluster precisam estar aptos a oferecer uma variedade de PersistentVolumes que difiram em tamanho e modo de acesso, sem expor os usuários a detalhes de como esses volumes são implementados. Para necessidades como essas, temos o recurso de _StorageClass_.
 
@@ -314,7 +308,7 @@ Tipos de PersistentVolume são implementados como plugins. Atualmente o Kubernet
 
 ## Volumes Persistentes
 
-Cada PV contém uma `spec` e um status, que é a especificação e o status do volume. O nome do PersistentVolume deve ser um [DNS](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names) válido.
+Cada PV contém uma `spec` e um status, que é a especificação e o status do volume. O nome do PersistentVolume deve ser um [DNS](/pt-br/docs/concepts/overview/working-with-objects/names#dns-subdomain-names) válido.
 
 ```yaml
 apiVersion: v1
@@ -468,7 +462,7 @@ A CLI mostrará o nome do PV que foi atrelado à PVC
 
 ## PersistentVolumeClaims
 
-Cada PVC contém uma `spec` e um status, que é a especificação e estado de uma requisição. O nome de um objeto PersistentVolumeClaim precisa ser um [DNS](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names) válido.
+Cada PVC contém uma `spec` e um status, que é a especificação e estado de uma requisição. O nome de um objeto PersistentVolumeClaim precisa ser um [DNS](/pt-br/docs/concepts/overview/working-with-objects/names#dns-subdomain-names) válido.
 
 ```yaml
 apiVersion: v1
@@ -729,7 +723,7 @@ Se você está criando templates ou exemplos que rodam numa grande quantidade de
 
 * Saiba mais sobre [Criando um PersistentVolume](/docs/tasks/configure-pod-container/configure-persistent-volume-storage/#create-a-persistentvolume).
 * Saiba mais sobre [Criando um PersistentVolumeClaim](/docs/tasks/configure-pod-container/configure-persistent-volume-storage/#create-a-persistentvolumeclaim).
-* Leia a [documentação sobre planejamento de Armazenamento Persistente](https://git.k8s.io/community/contributors/design-proposals/storage/persistent-storage.md).
+* Leia a [documentação sobre planejamento de Armazenamento Persistente](https://git.k8s.io/design-proposals-archive/storage/persistent-storage.md).
 
 ### Referência
 
diff --git a/content/pt-br/docs/concepts/storage/volumes.md b/content/pt-br/docs/concepts/storage/volumes.md
new file mode 100644
index 0000000000..d2c42b832e
--- /dev/null
+++ b/content/pt-br/docs/concepts/storage/volumes.md
@@ -0,0 +1,978 @@
+---
+reviewers:
+- jsafrane
+- saad-ali
+- thockin
+- msau42
+title: Volumes
+content_type: conceito
+weight: 10
+---
+
+<!-- Visão Geral -->
+
+Os arquivos em disco em um contêiner são efêmeros, o que apresenta alguns problemas para 
+aplicações não triviais quando executadas em contêineres. Um problema é a perda de arquivos 
+quando um contêiner quebra. O kubelet reinicia o contêiner, mas em um estado limpo. Um segundo 
+problema ocorre ao compartilhar arquivos entre contêineres que são executados juntos em 
+um `Pod`. A abstração de {{< glossary_tooltip text="volume" term_id="volume" >}} 
+do Kubernetes resolve ambos os problemas. Sugere-se familiaridade com [Pods](/docs/concepts/workloads/pods/) .
+
+<!-- body -->
+## Contexto
+
+Docker tem um conceito de [volumes](https://docs.docker.com/storage/), embora seja um pouco mais 
+simples e menos gerenciado. Um volume Docker é um diretório em disco ou em outro contêiner. 
+O Docker oferece drivers de volume, mas a funcionalidade é um pouco limitada.
+
+O Kubernetes suporta muitos tipos de volumes. Um {{< glossary_tooltip term_id="pod" text="Pod" >}} é capaz de utilizar qualquer quantidade de tipos de volumes simultaneamente. Os tipos de volume efêmeros têm a mesma vida útil do pod, mas os volumes persistentes existem além da vida útil de um pod. Quando um pod deixa de existir, o Kubernetes destrói volumes efêmeros; no entanto, o Kubernetes não destrói volumes persistentes. Para qualquer tipo de volume em um determinado pod, os dados são preservados entre as reinicializações do contêiner.
+
+Em sua essência, um volume é um diretório, eventualmente com alguns dados dentro dele, que é acessível aos contêineres de um Pod. Como esse diretório vem a ser, o meio que o suporta e o conteúdo do mesmo são determinados pelo tipo particular de volume utilizado.
+
+Para utilizar um volume, especifique os volumes que serão disponibilizados para o Pod em `.spec.volumes` e declare onde montar esses volumes dentro dos contêineres em `.spec.containers[*].volumeMounts`. Um processo em um contêiner enxerga uma visualização do sistema de arquivos composta pelo do conteúdo inicial da {{< glossary_tooltip text="imagem do contêiner" term_id="image" >}} mais os volumes (se definidos) montados dentro do contêiner. O processo enxerga um sistema de arquivos raiz que inicialmente corresponde ao conteúdo da imagem do contêiner. Qualquer gravação dentro dessa hierarquia do sistema de arquivos, se permitida, afetará o que esse processo enxerga quando ele executa um acesso subsequente ao sistema de arquivos. Os volumes são montados nos [caminhos especificados](#using-subpath) dentro da imagem. Para cada contêiner definido em um Pod, você deve especificar independentemente onde montar cada volume utilizado pelo contêiner.
+
+Volumes não podem ser montados dentro de outros volumes (mas você pode consultar [Utilizando subPath](#using-subpath) para um mecanismo relacionado). Além disso, um volume não pode conter um link físico para qualquer outro dado em um volume diferente.
+
+## Tipos de Volumes {#volume-types}
+
+Kubernetes suporta vários tipos de volumes.
+
+### awsElasticBlockStore {#awselasticblockstore}
+
+Um volume `awsElasticBlockStore` monta um [volume EBS](https://aws.amazon.com/ebs/) da Amazon Web Services (AWS) em seu pod. Ao contrário do `emptyDir`que é apagado quando um pod é removido, o conteúdo de um volume EBS é preservado e o volume é desmontado. Isto significa que um volume EBS pode ser previamente populado com dados e que os dados podem ser compartilhados entre Pods.
+
+{{< note >}}
+Você precisa criar um volume EBS usando `aws ec2 create-volume` ou pela API da AWS antes que você consiga utilizá-lo. 
+{{< /note >}}
+
+Existem algumas restrições ao utilizar um volume `awsElasticBlockStore`:
+
+* Os nós nos quais os Pods estão sendo executados devem ser instâncias AWS EC2
+* Estas instâncias devem estar na mesma região e na mesma zona de disponibilidade que o volume EBS
+* O EBS suporta montar um volume em apenas uma única instância EC2
+
+#### Criando um volume AWS EBS
+
+Antes de poder utilizar um volume EBS com um pod, precisa criá-lo.
+
+```shell
+aws ec2 create-volume --availability-zone=eu-west-1a --size=10 --volume-type=gp2
+```
+
+Certifique-se de que a zona corresponde à mesma zona em que criou o cluster. Verifique se o tamanho e o tipo de volume EBS são adequados para a sua utilização.
+
+#### Exemplo de configuração do AWS EBS
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-ebs
+spec:
+  containers:
+  - image: k8s.gcr.io/test-webserver
+    name: test-container
+    volumeMounts:
+    - mountPath: /test-ebs
+      name: test-volume
+  volumes:
+  - name: test-volume
+    # Esse volume AWS EBS já deve existir.
+    awsElasticBlockStore:
+      volumeID: "<volume id>"
+      fsType: ext4
+```
+
+Se o volume EBS estiver particionado, é possível informar o campo opcional `partition: "<partition em umber>"` para especificar em que partição deve ser montado.
+
+#### Migração de CSI do AWS EBS
+
+{{< feature-state for_k8s_version="v1.17" state="beta" >}}
+
+Quando o recurso `CSIMigration` para `awsElasticBlockStore` está habilitado, todas as operações de plugin do tipo in-tree são redirecionadas para o driver Cointainer Storage Interface (CSI) `ebs.csi.aws.com`. Para usar esse recurso, o [driver CSI AWS EBS](https://github.com/kubernetes-sigs/aws-ebs-csi-driver) deve estar instalado no cluster e os recursos beta `CSIMigration` e `CSIMigrationAWS` devem estar ativados.
+
+#### Migração CSI AWS EBS concluída
+
+{{< feature-state for_k8s_version="v1.17" state="alpha" >}}
+
+Para desabilitar o carregamento do plugin de armazenamento `awsElasticBlockStore` pelo gerenciador de controladores e pelo kubelet, defina a flag `InTreePluginAWSUnregister` como `true`.
+
+### azureDisk {#azuredisk}
+
+O tipo de volume `azureDisk` monta um [Disco de Dados](https://docs.microsoft.com/en-us/azure/aks/csi-storage-drivers) Microsoft Azure em um pod.
+
+Para obter mais detalhes, consulte [plugin de volume `azureDisk`](https://github.com/kubernetes/examples/tree/master/staging/volumes/azure_disk/README.md).
+
+#### Migração de CSI do azureDisk
+
+{{< feature-state for_k8s_version="v1.19" state="beta" >}}
+
+Quando o recurso `CSIMigration` para `azureDisk` está habilitado, todas as operações de plugin do tipo in-tree são redirecionadas para o Driver de Cointêiner Storage Interface (CSI) `disk.csi.azure.com`. Para utilizar este recurso, o [Driver CSI Azure Disk](https://github.com/kubernetes-sigs/azuredisk-csi-driver) deve estar instalado no cluster e os recursos `CSIMigration` e `CSIMigrationAzureDisk` devem estar ativados.
+
+#### Migração CSI azureDisk concluída
+
+{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+
+Para desabilitar o carregamento do plugin de armazenamento `azureDisk` pelo gerenciador de controladores e pelo kubelet, defina a flag `InTreePluginAzureDiskUnregister` como `true`.
+
+### azureFile {#azurefile}
+
+O tipo de volume `azureFile` monta um volume de arquivo Microsoft Azure (SMB 2.1 e 3.0) em um pod.
+
+Para obter mais detalhes, consulte [plugin de volume `azureFile`](https://github.com/kubernetes/examples/tree/master/staging/volumes/azure_file/README.md).
+
+#### Migração de CSI azureFile
+
+{{< feature-state for_k8s_version="v1.21" state="beta" >}}
+
+Quando o recurso `CSIMigration` para `azureFile` está habilitado, todas as operações de plugin do tipo in-tree são redirecionadas para o Driver de Cointainer Storage Interface (CSI) `file.csi.azure.com`. Para utilizar este recurso, o [Driver CSI do Azure Disk](https://github.com/kubernetes-sigs/azurefile-csi-driver) deve estar instalado no cluster e as [feature gates](/docs/reference/command-line-tools-reference/feature-gates/) `CSIMigration` e `CSIMigrationAzureFile` devem estar habilitadas.
+
+O driver de CSI do Azure File não oferece suporte ao uso do mesmo volume por fsgroups diferentes, se a migração de CSI Azurefile estiver habilitada, o uso do mesmo volume por fsgroups diferentes não será suportado.
+
+#### Migração do CSI azureFile concluída
+
+{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+
+Para desabilitar o carregamento do plugin de armazenamento `azureFile` pelo gerenciador de controladores e pelo kubelet, defina a flag `InTreePluginAzureFileUnregister` como `true`.
+
+### cephfs
+
+Um volume `cephfs` permite que um volume CephFS existente seja montado no seu Pod. Ao contrário do `emptyDir` que é apagado quando um pod é removido, o conteúdo de um volume `cephfs` é preservado e o volume é simplesmente desmontado. Isto significa que um volume `cephfs` pode ser previamente populado com dados e que os dados podem ser compartilhados entre os Pods. O volume `cephfs` pode ser montado por vários gravadores simultaneamente.
+
+{{< note >}} Você deve ter seu próprio servidor Ceph funcionando com o compartilhamento acessível antes de poder utilizá-lo. {{< /note >}}
+
+Consulte o [ exemplo CephFS](https://github.com/kubernetes/examples/tree/master/volumes/cephfs/) para mais detalhes.
+
+### cinder
+
+{{< note >}} O Kubernetes deve ser configurado com o provedor de nuvem OpenStack. {{< /note >}}
+
+O tipo de volume `cinder` é utilizado para montar o volume do OpenStack Cinder no seu pod.
+
+#### Exemplo de configuração de volume Cinder
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-cinder
+spec:
+  containers:
+  - image: k8s.gcr.io/test-webserver
+    name: test-cinder-container
+    volumeMounts:
+    - mountPath: /test-cinder
+      name: test-volume
+  volumes:
+  - name: test-volume
+    # Esse volume OpenStack já deve existir.
+    cinder:
+      volumeID: "<volume id>"
+      fsType: ext4
+```
+
+#### Migração de CSI OpenStack
+
+{{< feature-state for_k8s_version="v1.21" state="beta" >}}
+
+O recurso `CSIMigration` para o Cinder é ativado por padrão no Kubernetes 1.21. Ele redireciona todas as operações de plugin do tipo in-tree para o Driver de Cointainer Storage Interface (CSI) `cinder.csi.openstack.org`. O [Driver CSI OpenStack Cinder](https://github.com/kubernetes/cloud-provider-openstack/blob/master/docs/cinder-csi-plugin/using-cinder-csi-plugin.md) tem de estar instalado no cluster. Você pode desativar a migração Cinder CSI para o seu cluster definindo a [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) `CSIMigrationOpenStack` como `false`. Se você desativar o recurso `CSIMigrationOpenStack`, o plugin de volume in-tree do Cinder assume a responsabilidade por todos os aspectos do gerenciamento de armazenamento de volume do Cinder.
+
+### configMap
+
+Um [ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/) oferece uma forma de injetar dados de configuração em Pods. Os dados armazenados em um ConfigMap podem ser referenciados em um volume de tipo `configMap` e depois consumidos por aplicações conteinerizadas executadas em um pod.
+
+Ao referenciar um ConfigMap, você informa o nome do ConfigMap no volume. Pode personalizar o caminho utilizado para uma entrada específica no ConfigMap. A seguinte configuração mostra como montar o `log-config` do ConfigMap em um Pod chamado `configmap-pod`:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: configmap-pod
+spec:
+  containers:
+    - name: test
+      image: busybox:1.28
+      volumeMounts:
+        - name: config-vol
+          mountPath: /etc/config
+  volumes:
+    - name: config-vol
+      configMap:
+        name: log-config
+        items:
+          - key: log_level
+            path: log_level
+```
+
+O ConfigMap `log-config` é montado como um volume e todos os conteúdos armazenados em sua entrada `log_level` são montados no Pod através do caminho `/etc/config/log_level`. Observe que esse caminho é derivado do volume `mountPath`e do `path` configurado com `log_level`.
+
+{{< note >}}
+
+* É preciso criar um [ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/) antes de usá-lo.
+
+* Um contêiner que utiliza ConfigMap através de um ponto de montagem com a propriedade [`subPath`](#using-subpath) não receberá atualizações deste ConfigMap.
+
+* Os dados de texto são expostos como arquivos utilizando a codificação de caracteres UTF-8. Para outras codificações de caracteres, use `binaryData`. {{< /note >}}
+
+### downwardAPI {#downwardapi}
+
+Um volume `downwardAPI` disponibiliza dados da downward API para as aplicações. Ele monta um diretório e grava os dados solicitados em arquivos de texto sem formatação.
+
+{{< note >}} Um contêiner que utiliza downward API através de um ponto de montagem com a propriedade [`subPath`](#using-subpath) não receberá atualizações desta downward API. {{< /note >}}
+
+Consulte [o exemplo de downward API](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/) para obter mais detalhes.
+
+### emptyDir {#emptydir}
+
+Um volume `emptyDir` é criado pela primeira vez quando um Pod é atribuído a um nó e existe enquanto esse Pod estiver sendo executado nesse nó. Como o nome diz, o volume `emptyDir` está inicialmente vazio. Todos os contêineres no Pod podem ler e gravar os mesmos arquivos no volume `emptyDir`, embora esse volume possa ser montado no mesmo caminho ou em caminhos diferentes em cada contêiner. Quando um Pod é removido de um nó por qualquer motivo, os dados no `emptyDir` são eliminados permanentemente.
+
+{{< note >}} A falha de um contêiner *não* remove um Pod de um nó. Os dados em um volume `emptyDir` são mantidos em caso de falha do contêiner. {{< /note >}}
+
+Alguns usos para um `emptyDir` são:
+
+* espaço temporário, como para uma merge sort baseado em disco
+* ponto de verificação de um processamento longo para recuperação de falhas
+* manter arquivos que um contêiner gerenciador de conteúdo busca enquanto um contêiner de webserver entrega os dados
+
+Dependendo do seu ambiente, os volumes `emptyDir` são armazenados em qualquer mídia que componha o nó, como disco ou SSD, ou armazenamento de rede. No entanto, se você definir o campo `emptyDir.medium` como `"Memory"`, o Kubernetes monta um tmpfs (sistema de arquivos com suporte de RAM) para você. Embora o tmpfs seja muito rápido, tenha em atenção que, ao contrário dos discos, o tmpfs é limpo na reinicialização do nó e quaisquer arquivos que grave consomem o limite de memória do seu contêiner.
+
+{{< note >}} Se a [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) `SizeMemoryBackedVolumes` estiver habilitada, é possível especificar um tamanho para volumes mantidos em memória.  Se nenhum tamanho for especificado, os volumes mantidos em memória são dimensionados para 50% da memória em um host Linux. {{< /note>}}
+
+#### Exemplo de configuração emptyDir
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-pd
+spec:
+  containers:
+  - image: k8s.gcr.io/test-webserver
+    name: test-container
+    volumeMounts:
+    - mountPath: /cache
+      name: cache-volume
+  volumes:
+  - name: cache-volume
+    emptyDir: {}
+```
+
+### fc (fibre channel) {#fc}
+
+Um tipo de volume `fc` permite que um volume de armazenamento de fibre channel existente seja montado em um Pod. Você pode especificar um ou vários WWNs usando o parâmetro `targetWWNs` em sua configuração de volume. Se forem especificados vários WWNs, o targetWWNs espera que esses WWNs sejam de conexões multipath.
+
+{{< note >}} Para que os hosts Kubernetes possam acessá-los, é necessário configurar o zoneamento FC SAN para alocar e mascarar essas LUNs (volumes) para os WWNs de destino. {{< /note >}}
+
+Consulte [o exemplo de fibre channel](https://github.com/kubernetes/examples/tree/master/staging/volumes/fibre_channel) para obter mais detalhes.
+
+### flocker (descontinuado) {#flocker}
+
+[Flocker](https://github.com/ClusterHQ/flocker) é um gerenciador de volumes de dados de contêineres em cluster de código aberto. O Flocker oferece gerenciamento e orquestração de volumes de dados suportados por uma variedade de backends de armazenamento.
+
+Um volume `flocker` permite que um conjunto de dados Flocker seja montado em um Pod. Se o conjunto de dados ainda não existir no Flocker, ele precisará ser criado primeiro com o CLI do Flocker ou usando a API do Flocker. Se o conjunto de dados já existir, ele será anexado pelo Flocker ao nó que o pod está escalonado. Isto significa que os dados podem ser compartilhados entre os Pods, conforme necessário.
+
+{{< note >}} Antes de poder utilizá-lo, é necessário ter a sua própria instalação do Flocker em execução. {{< /note >}}
+
+Consulte [exemplo do Flocker](https://github.com/kubernetes/examples/tree/master/staging/volumes/flocker) para obter mais detalhes.
+
+### gcePersistentDisk
+
+Um volume `gcePersistentDisk` monta um [disco persistente](https://cloud.google.com/compute/docs/disks) (PD) do Google Compute Engine (GCE) no seu Pod. Ao contrário do `emptyDir` que é apagado quando um pod é removido, o conteúdo de um PD é preservado e o volume é simplesmente desmontado. Isto significa que um PD pode ser previamente populado com dados e que os dados podem ser compartilhados entre os Pods.
+
+{{< note >}} Você dever criar um PD utilizando `gcloud`, ou via GCE API ou via UI antes de poder utilizá-lo. {{< /note >}}
+
+Existem algumas restrições ao utilizar um `gcePersistentDisk`:
+
+* Os nós nos quais os Pods estão sendo executados devem ser VMs GCE
+* Essas VMs precisam estar no mesmo projeto e zona GCE que o disco persistente
+
+Uma característica do disco persistente GCE é o acesso simultâneo somente leitura a um disco persistente. Um volume `gcePersistentDisk` permite que vários consumidores montem simultaneamente um disco persistente como somente leitura. Isto significa que é possível alimentar previamente um PD com o seu conjunto de dados e, em seguida, disponibilizá-lo em paralelo a quantos Pods necessitar. Infelizmente, os PDs só podem ser montados por um único consumidor no modo de leitura e escrita. Não são permitidos gravadores simultâneos.
+
+O uso de um disco persistente GCE com um Pod controlado por um ReplicaSet falhará, a menos que o PD seja somente leitura ou a contagem de réplica seja 0 ou 1.
+
+#### Criando um disco persistente GCE {#gce-create-persistent-disk}
+
+Antes de poder utilizar um disco persistente GCE com um Pod, é necessário criá-lo.
+
+```shell
+gcloud compute disks create --size=500GB --zone=us-central1-a my-data-disk
+```
+
+#### Exemplo de configuração de disco persistente GCE
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-pd
+spec:
+  containers:
+  - image: k8s.gcr.io/test-webserver
+    name: test-container
+    volumeMounts:
+    - mountPath: /test-pd
+      name: test-volume
+  volumes:
+  - name: test-volume
+    # Esse Disco Persistente (PD) GCE já deve existir.
+    gcePersistentDisk:
+      pdName: my-data-disk
+      fsType: ext4
+```
+
+#### Discos persistentes regionais
+
+O recurso de [Discos persistentes regionais](https://cloud.google.com/compute/docs/disks/#repds) permite a criação de discos persistentes que estão disponíveis em duas zonas dentro da mesma região. Para usar esse recurso, o volume deve ser provisionado como PersistentVolume; referenciar o volume diretamente a partir de um pod não é uma configuração suportada.
+
+#### Provisionar manualmente um PersistentVolume PD Regional
+
+O provisionamento dinâmico é possível usando [uma StorageClass para GCE PD](/docs/concepts/storage/storage-classes/#gce). Antes de criar um PersistentVolume, você deve criar o disco persistente:
+
+```shell
+gcloud compute disks create --size=500GB my-data-disk
+  --region us-central1
+  --replica-zones us-central1-a,us-central1-b
+```
+
+#### Exemplo de configuração de disco persistente regional
+
+```yaml
+apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: test-volume
+spec:
+  capacity:
+    storage: 400Gi
+  accessModes:
+  - ReadWriteOnce
+  gcePersistentDisk:
+    pdName: my-data-disk
+    fsType: ext4
+  nodeAffinity:
+    required:
+      nodeSelectorTerms:
+      - matchExpressions:
+        # failure-domain.beta.kubernetes.io/zone deve ser usado para versões anteriores à 1.21
+        - key: topology.kubernetes.io/zone
+          operator: In
+          values:
+          - us-central1-a
+          - us-central1-b
+```
+
+#### Migração do CSI GCE
+
+{{< feature-state for_k8s_version="v1.17" state="beta" >}}
+
+Quando o recurso `CSIMigration` para o GCE PD é habilitado, todas as operações de plugin do plugin in-tree existente são redirecionadas para o Driver de Cointainer Storage Interface (CSI) `pd.csi.storage.gke.io`. Para utilizar este recurso, o [Driver CSI GCE PD](https://github.com/kubernetes-sigs/gcp-compute-persistent-disk-csi-driver) deve ser instalado no cluster e os recursos beta `CSIMigration` e `CSIMigrationGCE` devem estar habilitados.
+
+#### Migração de CSI GCE concluída
+
+{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+
+Para desabilitar o carregamento do plugin de armazenamento `gcePersistentDisk` pelo gerenciador de controladores e pelo kubelet, defina a flag `InTreePluginGCEUnregister` como `true`.
+
+### gitRepo (descontinuado) {#gitrepo}
+
+{{< warning >}}O tipo de volume `gitRepo` foi descontinuado. Para provisionar um contêiner com um repositório git , monte um [EmptyDir](#emptydir) em um InitContainer que clone o repositório usando git, depois monte [o EmptyDir](#emptydir) no contêiner do Pod. {{< /warning >}}
+
+Um volume `gitRepo` é um exemplo de um plugin de volume. Este plugin monta um diretório vazio e clona um repositório git neste diretório para que seu Pod utilize.
+
+Aqui está um exemplo de um volume `gitRepo`:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: server
+spec:
+  containers:
+  - image: nginx
+    name: nginx
+    volumeMounts:
+    - mountPath: /mypath
+      name: git-volume
+  volumes:
+  - name: git-volume
+    gitRepo:
+      repository: "git@somewhere:me/my-git-repository.git"
+      revision: "22f1d8406d464b0c0874075539c1f2e96c253775"
+```
+
+### glusterfs
+
+Um volume `glusterfs` permite que um volume [Glusterfs](https://www.gluster.org) (um sistema de arquivos em rede de código aberto) seja montado no seu Pod. Ao contrário do `emptyDir` que é apagado quando um Pod é removido, o conteúdo de um volume `glusterfs` é preservado e o volume é simplesmente desmontado. Isto significa que um volume glusterfs pode ser previamente populado com dados e que os dados podem ser compartilhados entre Pods. O GlusterFS pode ser montado para escrita por vários pods simultaneamente.
+
+{{< note >}} Para poder utilizá-lo, é necessário ter a sua própria instalação do GlusterFS em execução. {{< /note >}}
+
+Consulte o [exemplo do GlusterFS](https://github.com/kubernetes/examples/tree/master/volumes/glusterfs) para obter mais detalhes.
+
+### hostPath {#hostpath}
+
+{{< warning >}} Os volumes HostPath apresentam muitos riscos de segurança e é uma prática recomendada evitar o uso de HostPaths quando possível. Quando um volume HostPath precisa ser usado, ele deve ser definido com escopo apenas para o arquivo ou diretório necessário e montado como ReadOnly.
+
+Se você restringir o acesso do HostPath a diretórios específicos através da AdmissionPolicy, a propriedade `volumeMounts` DEVE obrigatoriamente usar pontos de montagem `readOnly` para que a política seja eficaz. {{< /warning >}}
+
+Um volume `hostPath` monta um arquivo ou diretório do sistema de arquivos do nó do host em seu Pod. Isto não é algo de que a maioria dos Pods irá precisar, mas oferece uma poderosa alternativa de escape para algumas aplicações.
+
+Por exemplo, alguns usos para um `hostPath` são:
+
+* Executar um contêiner que necessita de acesso aos documentos internos do Docker; utilizar um `hostPath` apontando para `/var/lib/docker`
+* Executando o cAdvisor em um contêiner; use um `hostPath` apontando para `/sys`
+* Permitir que um Pod especifique se um dado `hostPath` deve existir antes de o Pod ser executado, se deve ser criado e como deve existir
+
+Além da propriedade obrigatória `path` , você pode opcionalmente definir um `type` para um volume `hostPath`.
+
+Os valores suportados para o campo `type` são:
+
+| Valor| Comportamento|
+|:----------|:----------|
+| | A string vazia (padrão) é para compatibilidade com versões anteriores, o que significa que nenhuma verificação será executada antes de montar o volume hostPath.|
+| `DirectoryOrCreate`| Se nada existir no caminho indicado, um diretório vazio será criado lá, conforme necessário, com permissão definida para 0755, tendo o mesmo grupo e propriedade com a Kubelet.|
+| `Directory`| Um diretório deve existir no caminho indicado|
+| `FileOrCreate`| Se não houver nada no caminho indicado, um arquivo vazio será criado lá, conforme necessário, com permissão definida para 0644, tendo o mesmo grupo e propriedade com Kubelet.|
+| `File`| Um arquivo deve existir no caminho indicado|
+| `Socket`| Um socket UNIX deve existir no caminho indicado|
+| `CharDevice`| Deve existir um dispositivo de caracteres no caminho indicado|
+| `BlockDevice`| Deve existir um dispositivo de bloco no caminho indicado|
+
+Tenha cuidado ao utilizar este tipo de volume, porque:
+
+* Os HostPaths podem expor as credenciais privilegiadas do sistema (como para o Kubelet) ou APIs privilegiadas (como o container runtime socket), que podem ser usadas para o explorar vulnerabilidades de escape do contêiner ou para atacar outras partes do cluster.
+* Os Pods com configuração idêntica (como criado a partir de um PodTemplate) podem se comportar de forma diferente em nós diferentes devido a arquivos diferentes nos nós
+* Os arquivos ou diretórios criados nos hosts subjacentes são graváveis apenas pelo root. Você precisa executar seu processo como root em um [contêiner privilegiado](/docs/tasks/configure-pod-container/security-context/) ou modificar as permissões de arquivo no host para poder gravar em um volume `hostPath`
+
+#### Exemplo de configuração do hostPath
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-pd
+spec:
+  containers:
+  - image: k8s.gcr.io/test-webserver
+    name: test-container
+    volumeMounts:
+    - mountPath: /test-pd
+      name: test-volume
+  volumes:
+  - name: test-volume
+    hostPath:
+      # localização do diretório no host
+      path: /data
+      # este campo é opcional
+      type: Directory
+```
+
+{{< caution >}} O modo `FileOrCreate` não cria o diretório onde ficará arquivo. Se o caminho de diretório do arquivo montado não existir, o pod não será iniciado. Para garantir que esse modo funcione, você pode tentar montar diretórios e arquivos separadamente, como mostrado em [configuração `FileOrCreate`](#hostpath-fileorcreate-example). {{< /caution >}}
+
+#### Exemplo de configuração FileOrCreate do hostPath {#hostpath-fileorcreate-example}
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-webserver
+spec:
+  containers:
+  - name: test-webserver
+    image: k8s.gcr.io/test-webserver:latest
+    volumeMounts:
+    - mountPath: /var/local/aaa
+      name: mydir
+    - mountPath: /var/local/aaa/1.txt
+      name: myfile
+  volumes:
+  - name: mydir
+    hostPath:
+      # Certifique-se de que o diretório foi criado.
+      path: /var/local/aaa
+      type: DirectoryOrCreate
+  - name: myfile
+    hostPath:
+      path: /var/local/aaa/1.txt
+      type: FileOrCreate
+```
+
+### iscsi
+
+Um volume `iscsi` permite que um volume iSCSI (SCSI sobre IP) existente seja montado no seu Pod. Ao contrário do `emptyDir` que é apagado quando um Pod é removido, o conteúdo de um volume `iscsi` é preservado e o volume é simplesmente desmontado. Isto significa que um volume iscsi pode ser previamente populado com dados e que os dados podem ser compartilhados entre os Pods.
+
+{{< note >}} Você deve ter seu próprio servidor iSCSI rodando com o volume criado antes de poder utilizá-lo. {{< /note >}}
+
+Uma característica do iSCSI é que ele pode ser montado como somente leitura por vários consumidores simultaneamente. Isto significa que um volume pode ser previamente populado com seu conjunto de dados e, em seguida, ser disponibilizado em paralelo para tantos Pods quanto necessitar. Infelizmente, os volumes iSCSI só podem ser montados por um único consumidor no modo de leitura-escrita. Não são permitidos gravadores simultâneos.
+
+Consulte o [exemplo iSCSI](https://github.com/kubernetes/examples/tree/master/volumes/iscsi) para obter mais detalhes.
+
+### local
+
+Um volume `local` representa um dispositivo de armazenamento local montado, como um disco, partição ou diretório.
+
+Os volumes locais só podem ser usados como um PersistentVolume criado estaticamente. O provisionamento dinâmico não é suportado.
+
+Em comparação com volumes `hostPath`, os volumes `local` são usados de forma durável e portátil, sem escalonamento manual dos Pods para os nós. O sistema está ciente das restrições de nós do volume, observando a afinidade do nó com o PersistentVolume.
+
+No entanto, os volumes `local` estão sujeitos à disponibilidade do nó que o comporta e não são adequados para todas as aplicações. Se um nó não está íntegro, então o volume `local` torna-se inacessível pelo pod. O pod que utiliza este volume não consegue ser executado. Os aplicativos que usam volumes `local` devem ser capazes de tolerar essa disponibilidade reduzida, bem como uma possível perda de dados, dependendo das caraterísticas de durabilidade do disco subjacente.
+
+O exemplo a seguir mostra um PersistentVolume usando um volume `local` e `nodeAffinity`:
+
+```yaml
+apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: example-pv
+spec:
+  capacity:
+    storage: 100Gi
+  volumeMode: Filesystem
+  accessModes:
+  - ReadWriteOnce
+  persistentVolumeReclaimPolicy: Delete
+  storageClassName: local-storage
+  local:
+    path: /mnt/disks/ssd1
+  nodeAffinity:
+    required:
+      nodeSelectorTerms:
+      - matchExpressions:
+        - key: kubernetes.io/hostname
+          operator: In
+          values:
+          - example-node
+```
+
+É preciso definir a propriedade `nodeAffinity` do PersistentVolume ao utilizar volumes `local`. O escalonador do Kubernetes usa o PersistentVolume `nodeAffinity` para escalonar esses pods para o nó correto.
+
+A propriedade `volumeMode` do PersistentVolume pode ser definida como "Block" (ao invés do valor padrão "Filesystem") para expor o volume local como um dispositivo de bloco bruto.
+
+Ao usar volumes locais, é recomendável criar uma StorageClass com a propriedade `volumeBindingMode` definida como `WaitForFirstConsumer`. Para obter mais detalhes, consulte o exemplo local [StorageClass](/docs/concepts/storage/storage-classes/#local). A postergação da vinculação do volume garante que a decisão de vinculação da PersistentVolumeClaim também será avaliada com quaisquer outras restrições de nós que o Pod possa ter, tais como requisitos de recursos de nós, seletores de nós, afinidade do Pod e anti afinidade do Pod.
+
+Um provisionador estático externo pode ser executado separadamente para uma melhor gestão do ciclo de vida do volume local. Observe que este provisionador ainda não suporta o provisionamento dinâmico. Para um exemplo sobre como executar um provisionador local externo, veja o [manual do usuário do provisionador local do volume](https://github.com/kubernetes-sigs/sig-storage-local-static-provisioner).
+
+{{< note >}} O PersistentVolume local exige que o usuário faça limpeza e remoção manual se o provisionador estático externo não for utilizado para gerenciar o ciclo de vida do volume. {{< /note >}}
+
+### nfs
+
+Um volume `nfs` permite que um compartilhamento NFS (Network File System) existente seja montado em um Pod. Ao contrário do `emptyDir` que é apagado quando um Pod é removido, o conteúdo de um volume `nfs` é preservado e o volume é simplesmente desmontado. Isto significa que um volume NFS pode ser previamente populado com dados e que os dados podem ser compartilhados entre os Pods. O NFS pode ser montado por vários gravadores simultaneamente.
+
+{{< note >}} Você deve ter seu próprio servidor NFS rodando com o compartilhamento acessível antes de poder utilizá-lo. {{< /note >}}
+
+Consulte o [exemplo NFS](https://github.com/kubernetes/examples/tree/master/staging/volumes/nfs) para obter mais detalhes.
+
+### persistentVolumeClaim {#persistentvolumeclaim}
+
+Um volume `persistentVolumeClaim` é usado para montar um [PersistentVolume](/pt-br/docs/concepts/storage/persistent-volumes/) em um Pod. PersistentVolumeClaims são uma forma de os usuários "solicitarem" armazenamento durável (como um GCE PersistentDisk ou um volume iSCSI) sem conhecerem os detalhes do ambiente de nuvem em particular.
+
+Consulte as informações sobre [PersistentVolumes](/pt-br/docs/concepts/storage/persistent-volumes/) para obter mais detalhes.
+
+### portworxVolume {#portworxvolume}
+
+Um `portworxVolume` é uma camada de armazenamento em bloco extensível que funciona hiperconvergente com Kubernetes. O [Portworx](https://portworx.com/use-case/kubernetes-storage/) tira as impressões digitais de um armazenamento em um servidor, organiza com base nas capacidades e agrega capacidade em múltiplos servidores. Portworx funciona em máquinas virtuais ou em nós Linux bare-metal.
+
+Um `portworxVolume` pode ser criado dinamicamente através do Kubernetes ou também pode ser previamente provisionado e referenciado dentro de um Pod. Aqui está um exemplo de um Pod referenciando um volume Portworx pré-provisionado:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-portworx-volume-pod
+spec:
+  containers:
+  - image: k8s.gcr.io/test-webserver
+    name: test-container
+    volumeMounts:
+    - mountPath: /mnt
+      name: pxvol
+  volumes:
+  - name: pxvol
+    # Este volume Portworx já deve existir.
+    portworxVolume:
+      volumeID: "pxvol"
+      fsType: "<fs-type>"
+```
+
+{{< note >}} Certifique-se de ter um PortworxVolume com o nome `pxvol` antes de usá-lo no Pod. {{< /note >}}
+
+Para obter mais detalhes, consulte os exemplos de [volume Portworx](https://github.com/kubernetes/examples/tree/master/staging/volumes/portworx/README.md) .
+
+### projetado
+
+Um volume projetado mapeia várias fontes de volume existentes dentro do mesmo diretório. Para obter mais detalhes, consulte [Volumes projetados](/docs/concepts/storage/projected-volumes/).
+
+### quobyte (descontinuado) {#quobyte}
+
+Um Volume `quobyte` permite que um volume [Quobyte](https://www.quobyte.com) existente seja montado no seu Pod.
+
+{{< note >}} Você deve ter seu próprio Quobyte configurado e funcionando com os volumes criados antes de poder utilizá-lo. {{< /note >}}
+
+Quobyte oferece suporte para o {{< glossary_tooltip text="Container Storage Interface" term_id="csi" >}}. CSI é o plugin recomendado para usar volumes Quobyte dentro de Kubernetes. O projeto GitHub da Quobyte tem [instruções](https://github.com/quobyte/quobyte-csi#quobyte-csi) para implantar o Quobyte usando o CSI, acompanhado de exemplos.
+
+### rbd
+
+Um volume `rbd` permite que um volume [Rados Block Device](https://docs.ceph.com/en/latest/rbd/) (RBD) seja montado em seu Pod. Ao contrário do `emptyDir` que é apagado quando um pod é removido, o conteúdo de um volume `rbd` é preservado e o volume é desmontado. Isto significa que um volume RBD pode ser previamente populado com dados e que os dados podem ser compartilhados entre os Pods.
+
+{{< note >}} Você deve ter uma instalação Ceph em funcionamento antes de poder usar o RBD. {{< /note >}}
+
+Uma caraterística do RBD é que ele pode ser montado como somente leitura por vários consumidores simultaneamente. Isto significa que um volume pode ser previamente populado com seu conjunto de dados e, em seguida, ser disponibilizado em paralelo para tantos pods quanto necessitar. Infelizmente, os volumes RBD só podem ser montados por um único consumidor no modo de leitura-escrita. Não são permitidos gravadores simultâneos.
+
+Consulte o [exemplo RBD](https://github.com/kubernetes/examples/tree/master/volumes/rbd) para obter mais detalhes.
+
+#### Migração de CSI RBD {#rbd-csi-migration}
+
+{{< feature-state for_k8s_version="v1.23" state="alpha" >}}
+
+Quando o recurso `CSIMigration` do `RBD` está ativado, redireciona todas as operações do plugin in-tree existente para o driver {{< glossary_tooltip text="CSI" term_id="csi" >}} `rbd.csi.ceph.com`. Para utilizar este recurso, o [driver Ceph CSI](https://github.com/ceph/ceph-csi) deve estar instalado no cluster e as [feature gates](/docs/reference/command-line-tools-reference/feature-gates/) `CSIMigration` e `csiMigrationRBD` devem estar habilitadas.
+
+{{< note >}}
+
+Como operador do cluster Kubernetes que administra o armazenamento, aqui estão os pré-requisitos que você deve atender antes de tentar a migração para o driver CSI RBD:
+
+* Você deve instalar o driver Ceph CSI (`rbd.csi.ceph.com`), v3.5.0 ou superior, no cluster Kubernetes.
+* Considerando que o campo `clusterID` é um parâmetro necessário para o driver CSI e sua operação , mas o campo in-tree StorageClass tem o parâmetro obrigatório `monitors`, um administrador de armazenamento Kubernetes precisa criar um clusterID baseado no hash dos monitores (ex.:`#echo -n '<monitors_string>' | md5sum`) no mapa de configuração do CSI e manter os monitores sob esta configuração de clusterID.
+* Além disso, se o valor de `adminId` no Storageclass in-tree for diferente de `admin`, o `adminSecretName` mencionado no Storageclass in-tree tem que ser corrigido com o valor base64 do valor do parâmetro `adminId`, caso contrário esta etapa pode ser ignorada. {{< /note >}}
+
+### secret
+
+Um volume `secret` é usado para passar informações sensíveis, tais como senhas, para Pods. Você pode armazenar segredos na API Kubernetes e montá-los como arquivos para serem usados por pods sem necessidade de vinculação direta ao Kubernetes. Volumes `secret` são mantidos pelo tmpfs (um sistema de arquivos com baseado em memória RAM) para que nunca sejam gravados em armazenamento não volátil.
+
+{{< note >}}Você deve criar um Secret na API Kubernetes antes de poder utilizá-lo. {{< /note >}}
+
+{{< note >}} Um contêiner que utiliza um Secret como ponto de montagem para a propriedade [`subPath`](#using-subpath) não receberá atualizações deste Secret. {{< /note >}}
+
+Para obter mais detalhes, consulte [Configurando Secrets](/pt-br/docs/concepts/configuration/secret/).
+
+### storageOS (descontinuado) {#storageos}
+
+Um volume `storageos` permite que um volume [StorageOS](https://www.storageos.com) existente seja montado em seu Pod.
+
+O StorageOS funciona como um contêiner dentro de seu ambiente Kubernetes, tornando o armazenamento local ou anexado acessível a partir de qualquer nó dentro do cluster Kubernetes. Os dados podem ser replicados para a proteção contra falhas do nó. O provisionamento e a compressão podem melhorar a utilização e reduzir os custos.
+
+Em sua essência, o StorageOS fornece armazenamento em bloco para containers, acessível a partir de um sistema de arquivo.
+
+O Conteiner StorageOS requer Linux de 64 bits e não possui dependências adicionais. Uma licença para desenvolvedores está disponível gratuitamente.
+
+{{< caution >}} Você deve executar o container StorageOS em cada nó que deseja acessar os volumes do StorageOS ou que contribuirá com a capacidade de armazenamento para o pool. Para obter instruções de instalação, consulte a [documentação do StorageOS](https://docs.storageos.com). {{< /caution >}}
+
+O exemplo a seguir é uma configuração do Pod com StorageOS:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  labels:
+    name: redis
+    role: master
+  name: test-storageos-redis
+spec:
+  containers:
+    - name: master
+      image: kubernetes/redis:v1
+      env:
+        - name: MASTER
+          value: "true"
+      ports:
+        - containerPort: 6379
+      volumeMounts:
+        - mountPath: /redis-master-data
+          name: redis-data
+  volumes:
+    - name: redis-data
+      storageos:
+        # O volume `redis-vol01` já deve existir dentro do StorageOS no namespace `default`.
+        volumeName: redis-vol01
+        fsType: ext4
+```
+
+Para obter mais informações sobre StorageOS, provisionamento dinâmico e PersistentVolumeClaims, consulte os [exemplos do StorageOS](https://github.com/kubernetes/examples/blob/master/volumes/storageos).
+
+### vsphereVolume {#vspherevolume}
+
+{{< note >}} Você deve configurar o Kubernetes vSphere Cloud Provider. Para obter informações sobre a configuração do cloudprovider, consulte o [Guia Introdutório do vSphere](https://vmware.github.io/vsphere-storage-for-kubernetes/documentation/). {{< /note >}}
+
+Um `vsphereVolume` é usado para montar um volume VMDK do vSphere em seu Pod. O conteúdo de um volume é preservado quando é desmontado. Ele suporta sistemas de armazenamento de dados tanto do tipo VMFS quanto do tipo VSAN.
+
+{{< note >}} Você deve criar o volume do VMDK vSphere usando um dos métodos a seguir antes de usar com um Pod. {{< /note >}}
+
+#### Criar um volume VMDK {#creating-vmdk-volume}
+
+Escolha um dos seguintes métodos para criar um VMDK.
+
+{{< tabs name="tabs_volumes" >}}
+{{% tab name="Criar usando vmkfstools" %}} 
+Primeiro acesse o ESX via ssh, depois use o seguinte comando para criar um VMDK:
+
+```shell
+vmkfstools -c 2G /vmfs/volumes/DatastoreName/volumes/myDisk.vmdk
+```
+
+{{% /tab %}}
+{{% tab name="Criar usando vmware-vdiskmanager" %}}
+Utilize o seguinte comando para criar um VMDK:
+
+```shell
+vmware-vdiskmanager -c -t 0 -s 40GB -a lsilogic myDisk.vmdk
+```
+
+{{% /tab %}}
+
+{{< /tabs >}}
+
+#### Exemplo de configuração do VMDK no vSphere {#vsphere-vmdk-configuration}
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-vmdk
+spec:
+  containers:
+  - image: k8s.gcr.io/test-webserver
+    name: test-container
+    volumeMounts:
+    - mountPath: /test-vmdk
+      name: test-volume
+  volumes:
+  - name: test-volume
+    # This VMDK volume must already exist.
+    vsphereVolume:
+      volumePath: "[DatastoreName] volumes/myDisk"
+      fsType: ext4
+```
+
+Para obter mais informações, consulte os exemplos de [volume do vSphere](https://github.com/kubernetes/examples/tree/master/staging/volumes/vsphere) .
+
+#### Migração de CSI vSphere {#vsphere-csi-migration}
+
+{{< feature-state for_k8s_version="v1.19" state="beta" >}}
+
+Quando o recurso `CSIMigration` do `vsphereVolume` está ativado, redireciona todas as operações do plugin in-tree existente para o driver {{< glossary_tooltip text="CSI" term_id="csi" >}} `csi.vsphere.vmware.com`. Para usar esse recurso, o [driver CSI do vSphere](https://github.com/kubernetes-sigs/vsphere-csi-driver) deve estar instalado no cluster e as [feature gates](/docs/reference/command-line-tools-reference/feature-gates/) `CSIMigration` e `CSIMigrationvSphere` devem estar habilitadas.
+
+Isso também requer que a versão mínima do vSphere vCenter/ESXi seja 7.0u1 e a versão mínima do hardware seja a VM versão 15.
+
+{{< note >}} Os seguintes parâmetros da StorageClass do plugin integrado `vsphereVolume` não são suportados pelo driver CSI do vSphere:
+
+* `diskformat`
+* `hostfailurestotolerate`
+* `forceprovisioning`
+* `cachereservation`
+* `diskstripes`
+* `objectspacereservation`
+* `iopslimit`
+
+Os volumes existentes criados usando esses parâmetros serão migrados para o driver CSI do vSphere, mas novos volumes criados pelo driver de CSI do vSphere não estarão respeitando esses parâmetros. {{< /note >}}
+
+#### Migração do CSI do vSphere foi concluída {#vsphere-csi-migration-complete}
+
+{{< feature-state for_k8s_version="v1.19" state="beta" >}}
+
+Para desativar o carregamento do plugin de armazenamento `vsphereVolume` pelo gerenciador de controladores e pelo kubelet, defina a flag `InTreePluginvSphereUnregister` como `true`. Você precisa instalar o driver `csi.vsphere.vmware.com` {{< glossary_tooltip text="CSI" term_id="csi" >}} em todos os nós de processamento.
+
+#### Migração de driver CSI do Portworx
+
+{{< feature-state for_k8s_version="v1.23" state="alpha" >}}
+
+O recurso `CSIMigration` para Portworx foi adicionado, mas desativado por padrão no Kubernetes 1.23 visto que está no estado alfa. Ele redireciona todas as operações de plugin do tipo in-tree para o Driver de Cointainer Storage Interface (CSI) `pxd.portworx.com`. [O driver CSI Portworx](https://docs.portworx.com/portworx-install-with-kubernetes/storage-operations/csi/) deve ser instalado no cluster. Para ativar o recurso, defina `CSIMigrationPortworx=true` no kube-controller-manager e no kubelet.
+
+## Utilizando subPath {#using-subpath}
+
+Às vezes, é útil compartilhar um volume para múltiplos usos em um único pod. A propriedade `volumeMounts.subPath` especifica um sub caminho dentro do volume referenciado em vez de sua raiz.
+
+O exemplo a seguir mostra como configurar um Pod com um ambiente LAMP (Linux, Apache, MySQL e PHP) usando um único volume compartilhado. Esta exemplo de configuração `subPath` não é recomendada para uso em produção.
+
+O código e os ativos da aplicação PHP mapeiam para a pasta do volume `html` e o banco de dados MySQL é armazenado na pasta do volume `mysql` . Por exemplo:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: my-lamp-site
+spec:
+    containers:
+    - name: mysql
+      image: mysql
+      env:
+      - name: MYSQL_ROOT_PASSWORD
+        value: "rootpasswd"
+      volumeMounts:
+      - mountPath: /var/lib/mysql
+        name: site-data
+        subPath: mysql
+    - name: php
+      image: php:7.0-apache
+      volumeMounts:
+      - mountPath: /var/www/html
+        name: site-data
+        subPath: html
+    volumes:
+    - name: site-data
+      persistentVolumeClaim:
+        claimName: my-lamp-site-data
+```
+
+### Usando subPath com variáveis de ambiente expandidas {#using-subpath-expanded-environment}
+
+{{< feature-state for_k8s_version="v1.17" state="stable" >}}
+
+Use o campo `subPathExpr` para construir nomes de diretório `subPath` a partir de variáveis de ambiente da downward API. As propriedades `subPath` e `subPathExpr` são mutuamente exclusivas.
+
+Neste exemplo, um `Pod` usa `subPathExpr` para criar um diretório `pod1` dentro do volume `hostPath` `/var/log/pods`. O volume `hostPath`recebe o nome `Pod` do `downwardAPI`. O diretório `/var/log/pods/pod1` do host é montado em `/logs` no contêiner.
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: pod1
+spec:
+  containers:
+  - name: container1
+    env:
+    - name: POD_NAME
+      valueFrom:
+        fieldRef:
+          apiVersion: v1
+          fieldPath: metadata.name
+    image: busybox:1.28
+    command: [ "sh", "-c", "while [ true ]; do echo 'Hello'; sleep 10; done | tee -a /logs/hello.txt" ]
+    volumeMounts:
+    - name: workdir1
+      mountPath: /logs
+      # A expansão de variáveis usa parênteses (não chaves).
+      subPathExpr: $(POD_NAME)
+  restartPolicy: Never
+  volumes:
+  - name: workdir1
+    hostPath:
+      path: /var/log/pods
+```
+
+## Recursos
+
+A mídia de armazenamento(como Disco ou SSD) de um volume `emptyDir` é determinada por meio do sistema de arquivos que mantém o diretório raiz do kubelet (normalmente `/var/lib/kubelet`). Não há limite para quanto espaço um volume `emptyDir` ou `hostPath` podem consumir, e não há isolamento entre contêineres ou entre pods.
+
+Para saber mais sobre como solicitar espaço usando uma especificação de recursos, consulte [como gerenciar recursos](/pt-br/docs/concepts/configuration/manage-resources-containers/).
+
+## Plugins de volume out-of-tree
+
+Os plugins de volume out-of-tree incluem o {{< glossary_tooltip text="Container Storage Interface" term_id="csi" >}} (CSI) e também o FlexVolume (que foi descontinuado). Esses plugins permitem que os fornecedores de armazenamento criem plugins de armazenamento personalizados sem adicionar seu código-fonte do plugin ao repositório Kubernetes.
+
+Anteriormente, todos os plugins de volume eram "in-tree". Os plugins "in-tree" eram construídos, vinculados, compilados e distribuídos com o código principal dos binários do Kubernetes. Isto significava que a adição de um novo sistema de armazenamento ao Kubernetes (um plugin de volume) exigia uma validação do código no repositório central de código Kubernetes.
+
+Tanto o CSI quanto o FlexVolume permitem que os plugins de volume sejam desenvolvidos independentemente da base de código Kubernetes e implantados (instalados) nos clusters Kubernetes como extensões.
+
+Para fornecedores de armazenamento que procuram criar um plugin de volume out-of-tree, consulte as [Perguntas mais frequentes sobre plugins de volume](https://github.com/kubernetes/community/blob/master/sig-storage/volume-plugin-faq.md).
+
+### csi
+
+O [Cointainer Storage Interface](https://github.com/container-storage-interface/spec/blob/master/spec.md) (CSI) define uma interface padrão para sistemas de orquestração de contêineres (como Kubernetes) para expor sistemas de armazenamento arbitrários a suas cargas de trabalho de contêiner.
+
+Leia a [proposta de design CSI](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/storage/container-storage-interface.md) para obter mais informações.
+
+{{< note >}} O suporte para as versões 0.2 e 0.3 da especificação CSI foi descontinuado no Kubernetes v1.13 e será removido em uma versão futura. {{< /note >}}
+
+{{< note >}} Os controladores CSI podem não ser compatíveis em todas as versões do Kubernetes. Consulte a documentação específica do driver CSI para ver as etapas de implantação suportadas para cada versão do Kubernetes e uma matriz de compatibilidade. {{< /note >}}
+
+Uma vez que um driver de volume compatível com CSI seja implantado em um cluster Kubernetes, os usuários podem usar o tipo de volume `csi` para anexar ou montar os volumes expostos pelo driver CSI.
+
+Um volume `csi` pode ser utilizado em um Pod de três formas diferentes:
+
+* Através de uma referência a [PersistentVolumeClaim](#persistentvolumeclaim)
+* com um [volume efêmero genérico](/docs/concepts/storage/ephemeral-volumes/#generic-ephemeral-volume) (recurso alfa)
+* com [volume efêmero de CSI](/docs/concepts/storage/ephemeral-volumes/#csi-ephemeral-volume) se o driver suportar esse (recurso beta)
+
+Os seguintes campos estão disponíveis para administradores de armazenamento configurarem um volume persistente de CSI:
+
+* `driver`: Um valor do tipo string que especifica o nome do driver de volume a ser usado. Este valor deve corresponder ao valor retornado no `GetPluginInfoResponse` pelo driver CSI, conforme definido na [especificação CSI](https://github.com/container-storage-interface/spec/blob/master/spec.md#getplugininfo). Ele é usado pelo Kubernetes para identificar qual driver CSI chamar, e pelos componentes do driver CSI para identificar quais objetos PV pertencem ao driver CSI.
+* `volumeHandle`: Um valor do tipo string que identifica exclusivamente o volume. Este valor deve corresponder ao valor retornado no campo `volume.id` em `CreateVolumeResponse` pelo driver CSI, conforme definido na [especificação CSI](https://github.com/container-storage-interface/spec/blob/master/spec.md#createvolume). O valor é passado como `volume_id` em todas as chamadas para o driver de volume CSI quando se faz referência ao volume.
+* `readOnly`: Um valor booleano opcional que indica se o volume deve ser "ControllerPublished" (anexado) como somente leitura. O valor padrão é false. Este valor é passado para o driver CSI através do campo `readonly` em `ControllerPublishVolumeRequest`.
+* `fsType`: Se o `VolumeMode` do PV for `Filesystem` então este campo pode ser usado para especificar o sistema de arquivos que deve ser usado para montar o volume. Se o volume não tiver sido formatado e a formatação for suportada, este valor será utilizado para formatar o volume. Este valor é passado para o driver CSI através do campo `VolumeCapability` nas propriedades `ControllerPublishVolumeRequest`, `NodeStageVolumeRequest` e `NodePublishVolumeRequest`.
+* `volumeAttributes`: Um mapa de valores do tipo string para string que especifica propriedades estáticas de um volume. Este mapa deve corresponder ao mapa retornado no campo `volume.attributes` do `CreateVolumeResponse` pelo driver CSI, conforme definido na [especificação CSI](https://github.com/container-storage-interface/spec/blob/master/spec.md#createvolume). O mapa é passado para o driver CSI através do campo `volume_context` nas propriedades `ControllerPublishVolumeRequest`, `NodeStageVolumeRequest`, e `NodePublishVolumeRequest`.
+* `controllerPublishSecretRef`: Uma referência ao objeto Secret que contém informações confidenciais para passar ao driver CSI para completar as chamadas CSI `ControllerPublishVolume` e `ControllerUnpublishVolume`. Este campo é opcional e pode estar vazio se não for necessário nenhum segredo. Se o Secret contiver mais de um segredo, todos os segredos serão passados.
+* `nodeStageSecretRef`: Uma referência ao objeto Secret que contém informações confidenciais para passar ao driver de CSI para completar a chamada de CSI do `NodeStageVolume`. Este campo é opcional e pode estar vazio se não for necessário nenhum segredo. Se o Secret contiver mais de um segredo, todos os segredos serão passados.
+* `nodePublishSecretRef`: Uma referência ao objeto Secret que contém informações confidenciais para passar ao driver de CSI para completar a chamada de CSI do `NodePublishVolume`. Este campo é opcional e pode estar vazio se não for necessário nenhum segredo. Se o objeto Secret contiver mais de um segredo, todos os segredos serão passados.
+
+#### Suporte CSI para volume de bloco bruto
+
+{{< feature-state for_k8s_version="v1.18" state="stable" >}}
+
+Os fornecedores com drivers CSI externos podem implementar o suporte de volume de blocos brutos nas cargas de trabalho Kubernetes.
+
+Você pode configurar o [PersistentVolume/PersistentVolumeClaim com suporte de volume de bloco bruto](/pt-br/docs/concepts/storage/persistent-volumes/#suporte-a-volume-de-bloco-bruto) , como habitualmente, sem quaisquer alterações específicas de CSI.
+
+#### Volumes efêmeros de CSI
+
+{{< feature-state for_k8s_version="v1.16" state="beta" >}}
+
+É possível configurar diretamente volumes CSI dentro da especificação do Pod. Os volumes especificados desta forma são efêmeros e não persistem nas reinicializações do pod. Consulte [Volumes efêmeros](/docs/concepts/storage/ephemeral-volumes/#csi-ephemeral-volume) para obter mais informações.
+
+Para obter mais informações sobre como desenvolver um driver CSI, consulte a [documentação kubernetes-csi](https://kubernetes-csi.github.io/docs/)
+
+#### Migrando para drivers CSI a partir de plugins in-tree
+
+{{< feature-state for_k8s_version="v1.17" state="beta" >}}
+
+Quando o recurso `CSIMigration` está habilitado, direciona operações relacionadas a plugins in-tree existentes para plugins CSI correspondentes (que devem ser instalados e configurados). Como resultado, os operadores não precisam fazer nenhuma alteração de configuração para Storage Classes, PersistentVolumes ou PersistentVolumeClaims existentes (referindo-se aos plugins in-tree) quando a transição para um driver CSI que substitui um plugin in-tree.
+
+As operações e características que são suportadas incluem: provisionamento/exclusão, anexação/remoção, montargem/desmontagem e redimensionamento de volumes.
+
+Plugins in-tree que suportam `CSIMigration` e têm um driver CSI correspondente implementado são listados [em tipos de volumes](#volume-types).
+
+### flexVolume
+
+{{< feature-state for_k8s_version="v1.23" state="deprecated" >}}
+
+O FlexVolume é uma interface de plugin out-of-tree que usa um modelo baseado em execução para fazer interface com drivers de armazenamento. Os binários do driver FlexVolume devem ser instalados em um caminho de plugin de volume predefinido em cada nó e, em alguns casos, também nos nós da camada de gerenciamento.
+
+Os Pods interagem com os drivers do FlexVolume através do plugin de volume in-tree `flexVolume`. Para obter mais detalhes, consulte o documento [README](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-storage/flexvolume.md#readme) do FlexVolume.
+
+{{< note >}} O FlexVolume foi descontinuado. Usar um driver CSI out-of-tree é a maneira recomendada de integrar o armazenamento externo com Kubernetes.
+
+Os mantenedores do driver FlexVolume devem implementar um driver CSI e ajudar a migrar usuários de drivers FlexVolume para CSI. Os usuários do FlexVolume devem mover suas cargas de trabalho para usar o driver CSI equivalente. {{< /note >}}
+
+## Propagação de montagem
+
+A propagação de montagem permite compartilhar volumes montados por um contêiner para outros contêineres no mesmo pod, ou mesmo para outros pods no mesmo nó.
+
+A propagação de montagem de um volume é controlada pelo campo `mountPropagation` na propriedade `Container.volumeMounts`. Os seus valores são:
+
+* `None` - Este volume de montagem não receberá do host nenhuma montagem posterior que seja montada para este volume ou qualquer um de seus subdiretórios. De forma semelhante, nenhum ponto de montagem criado pelo contêiner será visível no host. Este é o modo padrão.
+  
+  Este modo é igual à propagação de montagem `private` conforme descrito na [documentação do kernel Linux](https://www.kernel.org/doc/Documentation/filesystems/sharedsubtree.txt)
+
+* `HostToContainer` - Este volume de montagem receberá todas as montagens posteriores que forem montadas para este volume ou qualquer um de seus subdiretórios.
+  
+  Em outras palavras, se o host montar qualquer coisa dentro do volume de montagem, o container o visualizará montado ali.
+  
+  Da mesma forma, se qualquer Pod com propagação de montagem `Bidirectional` para o mesmo volume montar qualquer coisa lá, o contêiner com propagação de montagem `HostToContainer` o reconhecerá.
+  
+  Este modo é igual à propagação de montagem `rslave` conforme descrito na [documentação do kernel Linux](https://www.kernel.org/doc/Documentation/filesystems/sharedsubtree.txt)
+
+* `Bidirectional` - Esta montagem de volume se comporta da mesma forma que a montagem de volume `HostToContainer`. Além disso, todas as montagens de volume criadas pelo contêiner serão propagadas de volta ao host e a todos os contêineres de todas os pods que utilizam o mesmo volume.
+  
+  Um caso de uso típico para este modo é um Pod com um driver FlexVolume ou CSI ou um Pod que precisa montar algo no host utilizando um volume `hostPath`.
+  
+  Este modo é igual à propagação de montagem `rshared` conforme descrito na [documentação do kernel Linux](https://www.kernel.org/doc/Documentation/filesystems/sharedsubtree.txt)
+  
+  {{< warning >}} A propagação de montagem `Bidirectional` pode ser perigosa. Ela pode danificar o sistema operacional do host e, portanto, ela só é permitida em contêineres privilegiados. A familiaridade com o comportamento do kernel Linux é fortemente recomendada. Além disso, quaisquer montagens de volume criadas por contêineres em pods devem ser destruídas ( desmontadas) pelos contêineres ao final. {{< /warning >}}
+
+### Configuração
+
+Antes que a propagação da montagem possa funcionar corretamente em algumas distribuições (CoreOS, RedHat/Centos, Ubuntu), o compartilhamento de montagem deve ser configurado corretamente no Docker como mostrado abaixo.
+
+Edite seu arquivo de serviços `systemd` do Docker. Configure a propriedade `MountFlags` da seguinte forma:
+
+```shell
+MountFlags=shared
+```
+
+Ou, se a propriedade `MountFlags=slave`existir, remova-a. Em seguida, reinicie o daemon Docker:
+
+```shell
+sudo systemctl daemon-reload
+sudo systemctl restart docker
+```
+
+## {{% heading "whatsnext" %}}
+
+Siga um exemplo de [implantação do WordPress e MySQL com volumes persistentes](/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume/).
diff --git a/content/pt-br/docs/concepts/workloads/controllers/cron-jobs.md b/content/pt-br/docs/concepts/workloads/controllers/cron-jobs.md
index 19c7cd8604..564b626162 100644
--- a/content/pt-br/docs/concepts/workloads/controllers/cron-jobs.md
+++ b/content/pt-br/docs/concepts/workloads/controllers/cron-jobs.md
@@ -20,7 +20,7 @@ Se a camada de gerenciamento do cluster executa o kube-controller-manager em Pod
 
 {{< /caution >}}
 
-Ao criar o manifesto para um objeto CronJob, verifique se o nome que você forneceu é um [nome de subdomínio DNS](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names) válido.
+Ao criar o manifesto para um objeto CronJob, verifique se o nome que você forneceu é um [nome de subdomínio DNS](/pt-br/docs/concepts/overview/working-with-objects/names#dns-subdomain-names) válido.
 O nome não pode ter mais que 52 caracteres. Esta limitação existe porque o controlador do CronJob adicionará automaticamente 11 caracteres ao final do nome escolhido para a tarefa, e o tamanho máximo de um nome de tarefa não pode ultrapassar 63 caracteres.
 
 <!-- body -->
diff --git a/content/pt-br/docs/reference/access-authn-authz/bootstrap-tokens.md b/content/pt-br/docs/reference/access-authn-authz/bootstrap-tokens.md
index 67f23e2bb6..e3d6327256 100644
--- a/content/pt-br/docs/reference/access-authn-authz/bootstrap-tokens.md
+++ b/content/pt-br/docs/reference/access-authn-authz/bootstrap-tokens.md
@@ -57,7 +57,7 @@ do gerenciador de controle - kube-controller-manager.
 ## Formato do _secret_ dos tokens de inicialização
  
 Cada token válido possui um _secret_ no namespace `kube-system`. Você pode
-encontrar a documentação completa [aqui](https://github.com/kubernetes/community/blob/{{< param "githubbranch" >}}/contributors/design-proposals/cluster-lifecycle/bootstrap-discovery.md).
+encontrar a documentação completa [aqui](https://github.com/kubernetes/design-proposals-archive/blob/main/cluster-lifecycle/bootstrap-discovery.md).
  
 Um _secret_ de token se parece com o exemplo abaixo:
  
diff --git a/content/pt-br/docs/reference/glossary/addons.md b/content/pt-br/docs/reference/glossary/addons.md
new file mode 100644
index 0000000000..c3659ed738
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/addons.md
@@ -0,0 +1,17 @@
+---
+title: Complementos
+id: addons
+date: 2019-12-15
+full_link: /pt-br/docs/concepts/cluster-administration/addons/
+short_description: >
+  Recursos que estendem a funcionalidade do Kubernetes.
+
+aka:
+tags:
+- tool
+---
+  Recursos que estendem a funcionalidade do Kubernetes.
+
+<!--more-->
+[Instalando Complementos](/pt-br/docs/concepts/cluster-administration/addons/) explica mais sobre a utilização de complementos em seu cluster e lista
+alguns complementos populares.
diff --git a/content/pt-br/docs/reference/glossary/annotation.md b/content/pt-br/docs/reference/glossary/annotation.md
new file mode 100644
index 0000000000..5e3ca07b31
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/annotation.md
@@ -0,0 +1,18 @@
+---
+title: Anotação
+id: annotation
+date: 2018-04-12
+full_link: /docs/concepts/overview/working-with-objects/annotations
+short_description: >
+  Um par de chave-valor (key-value) é usado para anexar metadados arbitrários não identificáveis a objetos.
+
+aka: 
+tags:
+- fundamental
+---
+ Um par de chave-valor (key-value) é usado para anexar metadados arbitrários não identificáveis a objetos.
+
+<!--more--> 
+
+Os metadados em uma anotação podem ser pequenos ou grandes, estruturados ou não estruturados, e podem incluir caracteres não permitidos pelos {{< glossary_tooltip text="rótulos" term_id="label" >}}. Clientes como ferramentas e bibliotecas podem recuperar esses metadados.
+
diff --git a/content/pt-br/docs/reference/glossary/api-group.md b/content/pt-br/docs/reference/glossary/api-group.md
new file mode 100644
index 0000000000..14529f0fca
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/api-group.md
@@ -0,0 +1,19 @@
+---
+title: Grupo de APIs
+id: api-group
+date: 2019-09-02
+full_link: /docs/concepts/overview/kubernetes-api/#api-groups-and-versioning
+short_description: >
+  Um conjunto de caminhos relacionados da API Kubernetes.
+
+aka:
+tags:
+- fundamental
+- architecture
+---
+Um conjunto de caminhos relacionados da API Kubernetes.
+
+<!--more-->
+Você pode ativar ou desativar cada grupo de APIs alterando a configuração do seu servidor de API. Você também pode desativar ou ativar caminhos para recursos específicos. O grupo de APIs facilita a extensão da API do Kubernetes. O grupo de APIs é especificado em um caminho REST e no campo `apiVersion` de um objeto serializado.
+
+* Leia o [Grupo de API](/docs/concepts/overview/kubernetes-api/#api-groups-and-versioning) para obter mais informações.
\ No newline at end of file
diff --git a/content/pt-br/docs/reference/glossary/application-developer.md b/content/pt-br/docs/reference/glossary/application-developer.md
new file mode 100644
index 0000000000..037a9413ad
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/application-developer.md
@@ -0,0 +1,17 @@
+---
+title: Desenvolvedor de Aplicativos
+id: application-developer
+date: 2018-04-12
+full_link: 
+short_description: >
+  Uma pessoa que escreve um aplicativo que é executado em um cluster Kubernetes.
+
+aka: 
+tags:
+- user-type
+---
+ Uma pessoa que escreve um aplicativo que é executado em um cluster Kubernetes.
+
+<!--more--> 
+
+Um desenvolvedor de aplicativos se concentra em uma parte da aplicação. O seu foco pode variar significativamente em tamanho.
diff --git a/content/pt-br/docs/reference/glossary/applications.md b/content/pt-br/docs/reference/glossary/applications.md
new file mode 100644
index 0000000000..a00ca0ec6c
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/applications.md
@@ -0,0 +1,12 @@
+---
+title: Aplicações
+id: applications
+date: 2019-05-12
+full_link:
+short_description: >
+  A camada onde vários aplicativos em contêiner são executados.
+aka:
+tags:
+- fundamental
+---
+ A camada onde vários aplicativos em contêiner são executados.
diff --git a/content/pt-br/docs/reference/glossary/certificate.md b/content/pt-br/docs/reference/glossary/certificate.md
new file mode 100644
index 0000000000..d43ead1f32
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/certificate.md
@@ -0,0 +1,17 @@
+---
+title: Certificado
+id: certificate
+date: 2018-04-12
+full_link: /docs/tasks/tls/managing-tls-in-a-cluster/
+short_description: >
+  Um arquivo criptograficamente seguro usado para validar o acesso ao cluster Kubernetes.
+
+aka: 
+tags:
+- security
+---
+ Um arquivo criptograficamente seguro usado para validar o acesso ao cluster Kubernetes.
+
+<!--more--> 
+
+Os certificados permitem que aplicativos dentro de um cluster Kubernetes acessem a API do Kubernetes com segurança. Os certificados validam que os clientes têm permissão para acessar a API.
\ No newline at end of file
diff --git a/content/pt-br/docs/reference/glossary/cgroup.md b/content/pt-br/docs/reference/glossary/cgroup.md
new file mode 100644
index 0000000000..ab46553c79
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/cgroup.md
@@ -0,0 +1,19 @@
+---
+title: cgroup (control group)
+id: cgroup
+date: 2019-06-25
+full_link:
+short_description: >
+  Um grupo de processos do Linux com isolamento de recursos opcional, contagem e limites.
+
+aka:
+tags:
+- fundamental
+---
+Um grupo de processos do Linux com isolamento de recursos opcional, contagem e limites.
+
+<!--more--> 
+
+cgroup é uma funcionalidade do núcleo de sistema do Linux que limita, conta e
+isola o uso de recursos (CPU, memória, entrada e saída de disco, rede) para um
+conjunto de processos.
diff --git a/content/pt-br/docs/reference/glossary/cidr.md b/content/pt-br/docs/reference/glossary/cidr.md
new file mode 100644
index 0000000000..3073e6560c
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/cidr.md
@@ -0,0 +1,17 @@
+---
+title: CIDR
+id: cidr
+date: 2019-11-12
+full_link: 
+short_description: >
+  CIDR é uma notação para descrever blocos de endereços IP e é muito usada em várias configurações de rede.
+
+aka:
+tags:
+- networking
+---
+CIDR (em inglês - Classless Inter-Domain Routing) é uma notação para descrever blocos de endereços IP e é muito usada em várias configurações de rede.
+
+<!--more-->
+
+No contexto do Kubernetes, cada {{< glossary_tooltip text="Nó" term_id="node" >}} recebe um intervalo de endereços IP através do endereço inicial e uma máscara de sub-rede usando CIDR. Isso permite que os Nodes atribuam a cada {{< glossary_tooltip text="Pod" term_id="pod" >}} um endereço IP exclusivo. Embora originalmente seja um conceito para IPv4, o CIDR também foi expandido para incluir IPv6.
\ No newline at end of file
diff --git a/content/pt-br/docs/reference/glossary/cla.md b/content/pt-br/docs/reference/glossary/cla.md
new file mode 100644
index 0000000000..5a282a9606
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/cla.md
@@ -0,0 +1,17 @@
+---
+title: CLA (Contrato de Licença de Colaborador)
+id: cla
+date: 2018-04-12
+full_link: https://github.com/kubernetes/community/blob/master/CLA.md
+short_description: >
+  Termos sob os quais um colaborador concede uma licença a um projeto de código aberto por suas contribuições.
+
+aka: 
+tags:
+- community
+---
+ Termos sob os quais um {{< glossary_tooltip text="colaborador" term_id="contributor" >}} concede uma licença a um projeto de código aberto por suas contribuições.
+
+<!--more--> 
+
+Os CLAs ajudam a resolver disputas legais envolvendo material contribuído e propriedade intelectual.
diff --git a/content/pt-br/docs/reference/glossary/cluster-architect.md b/content/pt-br/docs/reference/glossary/cluster-architect.md
new file mode 100644
index 0000000000..3aeb95e084
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/cluster-architect.md
@@ -0,0 +1,17 @@
+---
+title: Arquiteto de Cluster
+id: cluster-architect
+date: 2018-04-12
+full_link: 
+short_description: >
+  Uma pessoa que projeta infraestrutura que envolve um ou mais clusters Kubernetes.
+
+aka: 
+tags:
+- user-type
+---
+ Uma pessoa que projeta infraestrutura que envolve um ou mais clusters Kubernetes.
+
+<!--more--> 
+
+Os arquitetos de clusters estão preocupados com as melhores práticas para sistemas distribuídos, por exemplo&#58; alta disponibilidade e segurança.
\ No newline at end of file
diff --git a/content/pt-br/docs/reference/glossary/cluster-infrastructure.md b/content/pt-br/docs/reference/glossary/cluster-infrastructure.md
new file mode 100644
index 0000000000..a65f04a346
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/cluster-infrastructure.md
@@ -0,0 +1,13 @@
+---
+title: Infraestrutura de Cluster
+id: cluster-infrastructure
+date: 2019-05-12
+full_link:
+short_description: >
+ A camada de infraestrutura fornece e mantém máquinas virtuais, redes, grupos de segurança e outros.
+
+aka:
+tags:
+- operation
+---
+ A camada de infraestrutura fornece e mantém máquinas virtuais, redes, grupos de segurança e outros.
diff --git a/content/pt-br/docs/reference/glossary/configmap.md b/content/pt-br/docs/reference/glossary/configmap.md
new file mode 100644
index 0000000000..4840cdb4ac
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/configmap.md
@@ -0,0 +1,18 @@
+---
+title: ConfigMap
+id: configmap
+date: 2021-08-24
+full_link: /pt-br/docs/concepts/configuration/configmap
+short_description: >
+  Um objeto da API usado para armazenar dados não-confidenciais em pares chave-valor. Pode ser consumido como variáveis de ambiente, argumentos de linha de comando, ou arquivos de configuração em um volume.
+
+aka:
+tags:
+- core-object
+---
+Um objeto da API usado para armazenar dados não-confidenciais em pares chave-valor.
+{{< glossary_tooltip text="Pods" term_id="pod" >}} podem consumir ConfigMaps como variáveis de ambiente, argumentos de linha de comando ou como arquivos de configuração em um {{< glossary_tooltip text="volume" term_id="volume" >}}.
+
+<!--more-->
+
+Um ConfigMap ajuda a desacoplar configurações vinculadas ao ambiente das {{< glossary_tooltip text="imagens de contêiner" term_id="image" >}}, de modo a tornar aplicações mais facilmente portáveis.
\ No newline at end of file
diff --git a/content/pt-br/docs/reference/glossary/container-env-variables.md b/content/pt-br/docs/reference/glossary/container-env-variables.md
new file mode 100644
index 0000000000..620dee723c
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/container-env-variables.md
@@ -0,0 +1,17 @@
+---
+title: Variáveis de Ambiente de Contêineres
+id: container-env-variables
+date: 2021-11-20
+full_link: /pt-br/docs/concepts/containers/container-environment/
+short_description: >
+  Variáveis de ambiente de contêineres são pares nome=valor que trazem informações úteis para os contêineres rodando dentro de um Pod.
+
+aka: 
+tags:
+- fundamental
+---
+ Variáveis de ambiente de contêineres são pares nome=valor que trazem informações úteis para os contêineres rodando dentro de um {{< glossary_tooltip text="pod" term_id="Pod" >}}
+
+<!--more-->
+
+Variáveis de ambiente de contêineres fornecem informações requeridas pela aplicação conteinerizada, junto com informações sobre recursos importantes para o {{< glossary_tooltip text="contêiner" term_id="container" >}}. Por exemplo, detalhes do sistema de arquivos, informações sobre o contêiner, e outros recursos do cluster, como endpoints de serviços.
diff --git a/content/pt-br/docs/reference/glossary/container.md b/content/pt-br/docs/reference/glossary/container.md
new file mode 100644
index 0000000000..7e24fa5ad7
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/container.md
@@ -0,0 +1,19 @@
+---
+title: Contêiner
+id: container
+date: 2018-04-12
+full_link: /docs/concepts/containers/
+short_description: >
+  Uma imagem executável leve e portável que contém software e todas as suas dependências.
+
+aka: 
+tags:
+- fundamental
+- workload
+---
+ Uma imagem executável leve e portável que contém software e todas as suas dependências.
+
+<!--more--> 
+
+Contêineres desacoplam aplicações da infraestrutura da máquina em que estas rodam para tornar a instalação mais fácil em diferentes ambientes de nuvem e de
+sistemas operacionais, e para facilitar o escalonamento das aplicações.
diff --git a/content/pt-br/docs/reference/glossary/data-plane.md b/content/pt-br/docs/reference/glossary/data-plane.md
new file mode 100644
index 0000000000..2e7c9946f9
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/data-plane.md
@@ -0,0 +1,13 @@
+---
+title: Plano de Dados
+id: data-plane
+date: 2019-05-12
+full_link:
+short_description: >
+  A camada que fornece capacidade, tais como CPU, memória, rede e armazenamento, para que os contêineres possam ser executados e conectados a uma rede.
+
+aka:
+tags:
+- fundamental
+---
+ A camada que fornece capacidade, tais como CPU, memória, rede e armazenamento, para que os contêineres possam ser executados e conectados a uma rede.
diff --git a/content/pt-br/docs/reference/glossary/eviction.md b/content/pt-br/docs/reference/glossary/eviction.md
new file mode 100644
index 0000000000..a20f281216
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/eviction.md
@@ -0,0 +1,18 @@
+---
+title: Evicção
+id: eviction
+date: 2022-03-05
+full_link: /pt-br/docs/concepts/scheduling-eviction/
+short_description: >
+    Processo de encerramento de um ou mais Pods em Nós
+aka:
+tags:
+- operation
+---
+
+Evicção é o processo de encerramento de um ou mais Pods em Nós.
+
+<!--more-->
+Existem dois tipos de evicção:
+* [Evicção por pressão no nó](/docs/concepts/scheduling-eviction/node-pressure-eviction/)
+* [Evicção iniciada pela API](/docs/concepts/scheduling-eviction/api-eviction/)
diff --git a/content/pt-br/docs/reference/glossary/image.md b/content/pt-br/docs/reference/glossary/image.md
new file mode 100644
index 0000000000..d521557500
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/image.md
@@ -0,0 +1,17 @@
+---
+title: Imagem
+id: image
+date: 2021-08-24
+full_link: 
+short_description: >
+  Instância armazenada de um contêiner que contém o conjunto de softwares necessários para rodar uma aplicação.
+
+aka: 
+tags:
+- fundamental
+---
+  Instância armazenada de um {{< glossary_tooltip text="contêiner" term_id="container" >}} que contém o conjunto de softwares necessários para rodar uma aplicação.
+
+<!--more-->
+
+É uma forma de empacotamento de software que permite que este seja armazenado em um _container registry_, copiado para um sistema local e executado como uma aplicação. Metadados são incluídos na imagem para indicar qual programa deve ser executado, quem produziu a imagem, além de outras informações.
diff --git a/content/pt-br/docs/reference/glossary/index.md b/content/pt-br/docs/reference/glossary/index.md
new file mode 100644
index 0000000000..89cea39e44
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/index.md
@@ -0,0 +1,11 @@
+---
+title: Glossário
+layout: glossary
+noedit: true
+default_active_tag: fundamental
+weight: 5
+card:
+  name: reference
+  weight: 10
+  title: Glossário
+---
diff --git a/content/pt-br/docs/reference/glossary/ingress.md b/content/pt-br/docs/reference/glossary/ingress.md
new file mode 100644
index 0000000000..889b62a244
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/ingress.md
@@ -0,0 +1,20 @@
+---
+title: Ingress
+id: ingress
+date: 2018-04-12
+full_link: /docs/concepts/services-networking/ingress/
+short_description: >
+  Um objeto da API que gerencia o acesso externo aos serviços em um cluster, normalmente HTTP.
+
+aka: 
+tags:
+- networking
+- architecture
+- extension
+---
+ Um objeto da API (do inglês "Application Programming Interface") que gerencia o acesso externo aos serviços em um cluster, normalmente HTTP.
+
+<!--more--> 
+
+Um Ingress pode fornecer as capacidades de um proxy reverso para as aplicações.
+
diff --git a/content/pt-br/docs/reference/glossary/kubectl.md b/content/pt-br/docs/reference/glossary/kubectl.md
new file mode 100644
index 0000000000..d0a5e1970f
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/kubectl.md
@@ -0,0 +1,18 @@
+---
+title: Kubectl
+id: kubectl
+date: 2018-04-12
+full_link: /pt-br/docs/user-guide/kubectl-overview/
+short_description: >
+  Uma ferramenta de linha de comando para se comunicar com um cluster Kubernetes.
+
+aka:
+- kubectl
+tags:
+- tool
+- fundamental
+---
+Ferramenta de linha de comando para se comunicar com a {{< glossary_tooltip text="camada de gerenciamento" term_id="control-plane" >}} de um cluster Kubernetes usando a API do Kubernetes.
+
+<!--more--> 
+Você pode usar `kubectl` para criar, inspecionar, atualizar e excluir objetos Kubernetes.
diff --git a/content/pt-br/docs/reference/glossary/kubelet.md b/content/pt-br/docs/reference/glossary/kubelet.md
index 16b55527fb..6a0d0ac415 100644
--- a/content/pt-br/docs/reference/glossary/kubelet.md
+++ b/content/pt-br/docs/reference/glossary/kubelet.md
@@ -2,7 +2,7 @@
 title: Kubelet
 id: kubelet
 date: 2020-04-19
-full_link: /docs/reference/generated/kubelet
+full_link: /docs/reference/command-line-tools-reference/kubelet
 short_description: >
   Um agente que é executado em cada node no cluster. Ele garante que os contêineres estejam sendo executados em um pod.
 
diff --git a/content/pt-br/docs/reference/glossary/name.md b/content/pt-br/docs/reference/glossary/name.md
new file mode 100644
index 0000000000..292f1de3e6
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/name.md
@@ -0,0 +1,20 @@
+---
+title: Nome
+id: name
+date: 2018-04-12
+full_link: /pt-br/docs/concepts/overview/working-with-objects/names
+short_description: >
+  Uma string fornecida pelo cliente que referencia um objeto em uma URL de
+  recurso, como por exemplo `/api/v1/pods/qualquer-nome`.
+
+aka: 
+tags:
+- fundamental
+---
+ Uma string fornecida pelo cliente que referencia um objeto em uma URL de
+ recurso, como por exemplo `/api/v1/pods/qualquer-nome`.
+
+<!--more--> 
+
+Somente um objeto de um dado tipo pode ter um certo nome por vez. No entanto,
+se você remover o objeto, você poderá criar um novo objeto com o mesmo nome.
diff --git a/content/pt-br/docs/reference/glossary/namespace.md b/content/pt-br/docs/reference/glossary/namespace.md
new file mode 100644
index 0000000000..e20031277d
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/namespace.md
@@ -0,0 +1,18 @@
+---
+title: Namespace
+id: namespace
+date: 2021-09-17
+full_link: /docs/concepts/overview/working-with-objects/namespaces
+short_description: >
+  Uma abstração utilizada pelo Kubernetes para suportar múltiplos clusters virtuais no mesmo cluster físico.
+
+aka: 
+tags:
+- fundamental
+---
+ Uma abstração utilizada pelo Kubernetes para suportar múltiplos clusters virtuais no mesmo {{< glossary_tooltip text="cluster" term_id="cluster" >}} físico.
+
+<!--more--> 
+
+Namespaces são utilizados para organizar objetos em um cluster e oferecer uma forma de separar os recursos do cluster. Os nomes dos recursos precisam ser únicos dentro de um namespace,
+mas não entre todos os namespaces existentes.
diff --git a/content/pt-br/docs/reference/glossary/operator-pattern.md b/content/pt-br/docs/reference/glossary/operator-pattern.md
new file mode 100644
index 0000000000..001207f5cf
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/operator-pattern.md
@@ -0,0 +1,24 @@
+---
+title: Padrão Operador
+id: operator-pattern
+date: 2021-09-17
+full_link: /pt-br/docs/concepts/extend-kubernetes/operator/
+short_description: >
+  Um controlador especializado que gerencia um recurso personalizado.
+
+aka:
+tags:
+- architecture
+---
+ O [padrão Operador](/docs/concepts/extend-kubernetes/operator/) é um design de
+sistema que vincula um {{< glossary_tooltip text="controlador" term_id="controller" >}}
+a um ou mais recursos personalizados.
+
+<!--more-->
+
+Você pode estender a funcionalidade do Kubernetes adicionando controladores ao seu cluster,
+além dos controladores que são distribuídos como parte do Kubernetes.
+
+Se uma aplicação em execução age como um controlador e tem acesso à API para desempenhar 
+tarefas em um recurso personalizado que está definido na camada de gerenciamento, este é
+um exemplo do padrão Operador.
diff --git a/content/pt-br/docs/reference/glossary/pod.md b/content/pt-br/docs/reference/glossary/pod.md
index 9f6e21d6b3..2414223e43 100644
--- a/content/pt-br/docs/reference/glossary/pod.md
+++ b/content/pt-br/docs/reference/glossary/pod.md
@@ -2,7 +2,7 @@
 title: Pod
 id: pod
 date: 2020-04-19
-full_link: /docs/concepts/workloads/pods/pod-overview/
+full_link: /docs/concepts/workloads/pods/
 short_description: >
   O menor e mais simples objeto Kubernetes. Um Pod representa um conjunto de contêineres em execução no seu cluster.
 aka: 
diff --git a/content/pt-br/docs/reference/glossary/rbac.md b/content/pt-br/docs/reference/glossary/rbac.md
new file mode 100644
index 0000000000..b868363fde
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/rbac.md
@@ -0,0 +1,20 @@
+---
+title: RBAC (Controle de Acesso Baseado em Funções)
+id: rbac
+date: 2018-04-12
+full_link: /docs/reference/access-authn-authz/rbac/
+short_description: >
+  Gerencia decisões de autorização, permitindo que os administradores configurem dinamicamente políticas de acesso por meio da API do Kubernetes.
+
+aka:
+ - Role Based Access Control
+ - Controle de Acesso Baseado em Funções
+tags:
+- security
+- fundamental
+---
+ Gerencia decisões de autorização, permitindo que os administradores configurem dinamicamente políticas de acesso por meio da {{< glossary_tooltip text="API do Kubernetes" term_id="kubernetes-api" >}}.
+ 
+<!--more--> 
+
+O RBAC (do inglês - Role-Based Access Control) utiliza *funções*, que contêm regras de permissão, e *atribuição das funções*, que concedem as permissões definidas em uma função a um conjunto de usuários.
\ No newline at end of file
diff --git a/content/pt-br/docs/reference/glossary/reviewer.md b/content/pt-br/docs/reference/glossary/reviewer.md
new file mode 100644
index 0000000000..ff367087ee
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/reviewer.md
@@ -0,0 +1,17 @@
+---
+title: Revisor
+id: reviewer
+date: 2018-04-12
+full_link: 
+short_description: >
+  Uma pessoa que revisa o código quanto à qualidade e correção em alguma parte do projeto.
+
+aka: 
+tags:
+- community
+---
+ Uma pessoa que revisa o código quanto à qualidade e correção em alguma parte do projeto.
+
+<!--more--> 
+
+Os revisores têm conhecimento sobre o código base e os princípios de engenharia de software. O estado do revisor é atribuído a uma parte do código.
\ No newline at end of file
diff --git a/content/pt-br/docs/reference/glossary/secret.md b/content/pt-br/docs/reference/glossary/secret.md
new file mode 100644
index 0000000000..b293f7acc4
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/secret.md
@@ -0,0 +1,18 @@
+---
+title: Secret
+id: secret
+date: 2021-08-24
+full_link: /pt-br/docs/concepts/configuration/secret/
+short_description: >
+  Armazena dados sensíveis, como senhas, tokens OAuth e chaves SSH.
+
+aka: 
+tags:
+- core-object
+- security
+---
+ Armazena dados sensíveis, como senhas, tokens OAuth e chaves SSH.
+
+<!--more--> 
+
+Permite mais controle com relação a como as informações sensíveis são armazenadas e reduz o risco de exposição acidental. Os valores dos Secrets são codificados como strings no formato base64, mas não encriptados por padrão. É possível configurar o cluster para realizar a [encriptação em disco](/docs/tasks/administer-cluster/encrypt-data/#ensure-all-secrets-are-encrypted) de Secrets. Um {{< glossary_tooltip text="Pod" term_id="pod" >}} pode referenciar o Secret como um arquivo em um volume montado, ou o kubelet pode usar este dado quando baixa imagens para um pod. Secrets são úteis para dados confidenciais, enquanto [ConfigMaps](/docs/tasks/configure-pod-container/configure-pod-configmap/) são úteis para dados não-confidenciais.
diff --git a/content/pt-br/docs/reference/glossary/selector.md b/content/pt-br/docs/reference/glossary/selector.md
new file mode 100644
index 0000000000..4fd72b58a0
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/selector.md
@@ -0,0 +1,17 @@
+---
+title: Seletor
+id: selector
+date: 2021-09-17
+full_link: /docs/concepts/overview/working-with-objects/labels/
+short_description: >
+  Permite ao usuário filtrar uma lista de recursos com base em rótulos (labels).
+
+aka: 
+tags:
+- fundamental
+---
+ Permite ao usuário filtrar uma lista de recursos com base em {{< glossary_tooltip text="labels" term_id="label" >}} (rótulos).
+
+<!--more--> 
+
+Seletores são aplicados quando um usuário faz uma pesquisa por listas de recursos para filtrá-los por labels (rótulos).
diff --git a/content/pt-br/docs/reference/glossary/service.md b/content/pt-br/docs/reference/glossary/service.md
new file mode 100644
index 0000000000..cc6d976dc4
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/service.md
@@ -0,0 +1,20 @@
+---
+title: Service
+id: service
+date: 2021-09-17
+full_link: /docs/concepts/services-networking/service/
+short_description: >
+  Uma forma abstrata de expor uma aplicação que está executando em um conjunto de Pods como um serviço de rede.
+
+aka:
+tags:
+- fundamental
+- core-object
+---
+Uma forma abstrata de expor uma aplicação que está executando em um conjunto de {{< glossary_tooltip text="Pods" term_id="pod" >}} como um serviço de rede.
+
+<!--more-->
+
+ O conjunto de Pods referenciado por um Service é (geralmente) determinado por um {{< glossary_tooltip text="seletor" term_id="selector" >}}. Se mais Pods são
+ adicionados ou removidos, o conjunto de Pods que atende ao critério do seletor será alterado. O Service garante que o tráfego de rede pode ser direcionado ao
+ conjunto atual de Pods para a carga de trabalho.
diff --git a/content/pt-br/docs/reference/glossary/sig.md b/content/pt-br/docs/reference/glossary/sig.md
new file mode 100644
index 0000000000..0a5911c0bf
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/sig.md
@@ -0,0 +1,19 @@
+---
+title: SIG (grupo de interesse especial)
+id: sig
+date: 2018-04-12
+full_link: https://github.com/kubernetes/community/blob/master/sig-list.md#master-sig-list
+short_description: >
+  Membros da comunidade que gerenciam coletivamente e continuamente uma parte ou projeto maior do código aberto do Kubernetes.
+
+aka: 
+tags:
+- community
+---
+  {{< glossary_tooltip text="Membros da comunidade" term_id="member" >}} que gerenciam coletivamente e continuamente uma parte ou projeto maior do código aberto do Kubernetes.
+
+<!--more--> 
+
+Os membros dentro de um grupo de interesse especial (do inglês - Special Interest Group, SIG) têm um interesse comum em contribuir em uma área específica, como arquitetura, API ou documentação. Os SIGs devem seguir as [diretrizes de governança](https://github.com/kubernetes/community/blob/master/committee-steering/governance/sig-governance.md) do SIG, mas podem ter sua própria política de contribuição e canais de comunicação.
+
+Para mais informações, consulte o repositório [kubernetes/community](https://github.com/kubernetes/community) e a lista atual de [SIGs e Grupos de Trabalho](https://github.com/kubernetes/community/blob/master/sig-list.md).
diff --git a/content/pt-br/docs/reference/glossary/static-pod.md b/content/pt-br/docs/reference/glossary/static-pod.md
new file mode 100644
index 0000000000..55ba56bb53
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/static-pod.md
@@ -0,0 +1,19 @@
+---
+title: Pod estático
+id: static-pod
+date: 2021-09-17
+full_link: /docs/tasks/configure-pod-container/static-pod/
+short_description: >
+  Um pod gerenciado diretamente pelo daemon do kubelet em um nó específico.
+
+aka: 
+tags:
+- fundamental
+---
+
+Um {{< glossary_tooltip text="pod" term_id="pod" >}} gerenciado diretamente pelo
+ daemon do kubelet em um nó específico,
+
+<!--more-->
+
+que não é observado pelo servidor de API.
\ No newline at end of file
diff --git a/content/pt-br/docs/reference/glossary/sysctl.md b/content/pt-br/docs/reference/glossary/sysctl.md
new file mode 100644
index 0000000000..715d01f7c2
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/sysctl.md
@@ -0,0 +1,19 @@
+---
+title: sysctl
+id: sysctl
+date: 2019-02-12
+full_link: /docs/tasks/administer-cluster/sysctl-cluster/
+short_description: >
+  Uma interface para obter e definir parâmetros do kernel Unix.
+
+aka:
+tags:
+- tool
+---
+ `sysctl` é uma interface semi-padronizada para ler ou alterar os atributos do kernel Unix em execução.
+
+<!--more-->
+
+Em sistemas do tipo Unix, `sysctl` é tanto o nome da ferramenta que os administradores usam para visualizar e modificar essas configurações, quanto a chamada do sistema que a ferramenta usa.
+
+Os {{< glossary_tooltip text="contêineres" term_id="container" >}} em execução e os plugins de rede podem depender dos valores definidos do `sysctl`.
\ No newline at end of file
diff --git a/content/pt-br/docs/reference/glossary/uid.md b/content/pt-br/docs/reference/glossary/uid.md
index c5e34fd185..25d1032572 100644
--- a/content/pt-br/docs/reference/glossary/uid.md
+++ b/content/pt-br/docs/reference/glossary/uid.md
@@ -2,12 +2,20 @@
 title: UID
 id: uid
 date: 2021-03-16
-full_link: 
+full_link: /pt-br/docs/concepts/overview/working-with-objects/names
 short_description: >
-   Um identificador exclusivo (UID) é uma sequência numérica ou alfanumérica associada a uma única entidade em um determinado sistema.
+   Uma string gerada pelos sistemas do Kubernetes para identificar objetos de
+   forma única.
    
 aka: 
 tags:
-- authentication
+- fundamental
 ---
-Um identificador exclusivo (UID) é uma sequência numérica ou alfanumérica associada a uma única entidade em um determinado sistema. Os UIDs tornam possível endereçar essa entidade para que ela possa ser acessada e interagida. Cada usuário é identificado no sistema por seu UID e os nomes de usuário geralmente são usados apenas como uma interface para humanos.
\ No newline at end of file
+   Uma string gerada pelos sistemas do Kubernetes para identificar objetos de
+   forma única.
+
+<!-- more -->
+
+Cada objeto criado durante todo o ciclo de vida do cluster do Kubernetes possui
+um UID distinto. O objetivo deste identificador é distinguir ocorrências
+históricas de entidades semelhantes.
diff --git a/content/pt-br/docs/reference/glossary/userns.md b/content/pt-br/docs/reference/glossary/userns.md
new file mode 100644
index 0000000000..f8599f0743
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/userns.md
@@ -0,0 +1,24 @@
+---
+title: Namespace do usuário
+id: userns
+date: 2021-07-13
+full_link: https://man7.org/linux/man-pages/man7/user_namespaces.7.html
+short_description: >
+  Um recurso do kernel Linux para emular privilégios de superusuário para usuários sem privilégios.
+
+aka:
+tags:
+- security
+---
+
+Um recurso do kernel para emular o root. Usado para "contêineres sem root".
+
+<!--more-->
+
+Os namespaces do usuário são um recurso do kernel Linux que permite que um usuário não root emule privilégios de superusuário ("root"), por exemplo, para executar contêineres sem ser um superusuário fora do contêiner.
+
+O namespace do usuário é eficaz para mitigar os danos de um potencial ataque em que o adversário escapa dos limites do contêiner.
+
+No contexto de namespaces de usuário, o namespace é um recurso do kernel Linux, e não um {{< glossary_tooltip text="namespace" term_id="namespace" >}} no sentido do termo Kubernetes.
+
+<!-- TODO: https://kinvolk.io/blog/2020/12/improving-kubernetes-and-container-security-with-user-namespaces/ -->
diff --git a/content/pt-br/docs/reference/glossary/volume-plugin.md b/content/pt-br/docs/reference/glossary/volume-plugin.md
new file mode 100644
index 0000000000..1936fdf3f2
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/volume-plugin.md
@@ -0,0 +1,18 @@
+---
+title: Plugin de Volume
+id: volumeplugin
+date: 2018-04-12
+full_link: 
+short_description: >
+  Um plugin de volume permite a integração do armazenamento dentro de um Pod.
+
+aka: 
+tags:
+- core-object
+- storage
+---
+ Um plugin de volume permite a integração do armazenamento dentro de um {{< glossary_tooltip text="Pod" term_id="pod" >}}.
+
+<!--more--> 
+
+Um plugin de volume permite anexar e montar volumes de armazenamento para uso por um {{< glossary_tooltip text="Pod" term_id="pod" >}}. Os plugins de volume podem estar _dentro_ ou _fora da árvore_. _Na árvore_, os plugins fazem parte do repositório de código Kubernetes e seguem seu ciclo de lançamento. Os plugins _fora da árvore_ são desenvolvidos de forma independente.
\ No newline at end of file
diff --git a/content/pt-br/docs/reference/glossary/volume.md b/content/pt-br/docs/reference/glossary/volume.md
new file mode 100644
index 0000000000..502d2db6f1
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/volume.md
@@ -0,0 +1,20 @@
+---
+title: Volume
+id: volume
+date: 2021-08-24
+full_link: /docs/concepts/storage/volumes/
+short_description: >
+  Um diretório contendo dados, accessível aos contêineres em um pod.
+
+aka:
+tags:
+- core-object
+- fundamental
+---
+ Um diretório contendo dados, accessível aos {{< glossary_tooltip text="contêineres" term_id="container" >}} em um {{< glossary_tooltip term_id="pod" >}}.
+
+<!--more-->
+
+Um volume do Kubernetes existe enquanto o Pod que utiliza ele existir também. Consequentemente, um volume dura mais tempo que qualquer contêiner que rodar em um Pod, e os dados no volume são preservados entre reinicializações do contêiner.
+
+Veja [armazenamento](/docs/concepts/storage/) para mais detalhes.
diff --git a/content/pt-br/docs/reference/glossary/wg.md b/content/pt-br/docs/reference/glossary/wg.md
new file mode 100644
index 0000000000..56fb60dfe4
--- /dev/null
+++ b/content/pt-br/docs/reference/glossary/wg.md
@@ -0,0 +1,19 @@
+---
+title: WG (Grupo de Trabalho)
+id: wg
+date: 2018-04-12
+full_link: https://github.com/kubernetes/community/blob/master/sig-list.md#master-working-group-list
+short_description: >
+  Facilita a discussão e/ou implementação de um projeto de curta duração, pontual ou dissociado para um comitê, envolvendo um ou mais SIG (grupos de interesse especial).
+
+aka: 
+tags:
+- community
+---
+ Facilita a discussão e/ou implementação de um projeto de curta duração, pontual ou dissociado para um comitê, envolvendo um ou mais {{< glossary_tooltip text="SIG" term_id="sig" >}} (grupos de interesse especial).
+
+<!--more-->
+
+Grupos de trabalho (do inglês - Working Group, WG) são uma maneira de organizar as pessoas para realizar uma tarefa.
+
+Para mais informações, consulte o repositório [kubernetes/community](https://github.com/kubernetes/community) e a lista atual de [SIGs e grupos de trabalho](https://github.com/kubernetes/community/blob/master/sig-list.md).
diff --git a/content/pt-br/docs/reference/ports-and-protocols.md b/content/pt-br/docs/reference/ports-and-protocols.md
new file mode 100644
index 0000000000..dddf895a8e
--- /dev/null
+++ b/content/pt-br/docs/reference/ports-and-protocols.md
@@ -0,0 +1,38 @@
+---
+title: Portas e protocolos
+content_type: reference
+weight: 50
+---
+
+Quando o Kubernetes está sendo executado em um ambiente com uma rede mais restritiva, 
+como por exemplo um data center on-premises com firewalls de rede físicos ou redes virtuais em nuvens públicas,
+é útil saber quais portas e protocolos são utilizados pelos componentes do Kubernetes. 
+
+## Camada de gerenciamento
+
+| Protocolo | Direção | Intervalo de Portas | Propósito                 | Utilizado por                   |
+|----------|-----------|------------|-------------------------|---------------------------|
+| TCP      | Entrada   | 6443       | Servidor da API do Kubernetes | Todos                       |
+| TCP      | Entrada   | 2379-2380  | API servidor-cliente do etcd  | kube-apiserver, etcd      |
+| TCP      | Entrada   | 10250      | API do kubelet             | kubeadm, Camada de gerenciamento       |
+| TCP      | Entrada   | 10259      | kube-scheduler          | kubeadm                      |
+| TCP      | Entrada   | 10257      | kube-controller-manager | kubeadm                      |
+
+Embora as portas do etcd estejam inclusas na seção da Camada de gerenciamento, você também 
+pode hospedar o seu próprio cluster etcd externamente ou em portas customizadas. 
+
+## Nós de processamento {#node}
+
+| Protocolo | Direção | Intervalo de Portas | Propósito                 | Utilizado por                   |
+|----------|-----------|-------------|-----------------------|-------------------------|
+| TCP      | Entrada   | 10250       | API do Kubelet        | O próprio, Camada de gerenciamento     |
+| TCP      | Entrada   | 30000-32767 | Serviços NodePort†    | Todos                     |
+
+† Intervalo padrão de portas para os [serviços NodePort](/docs/concepts/services-networking/service/).
+
+Todas as portas padrão podem ser sobrescritas. Quando portas customizadas são utilizadas, essas portas
+precisam estar abertas, ao invés das mencionadas aqui.
+
+Um exemplo comum é a porta do servidor da API, que as vezes é trocado para a porta 433.
+Com isso, a porta padrão é mantida e o servidor da API é colocado atrás de um balanceador de carga
+que escuta na porta 433 e faz o roteamento das requisições para o servidor da API na porta padrão.
diff --git a/content/pt-br/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_create.md b/content/pt-br/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_create.md
new file mode 100644
index 0000000000..0f93f417c8
--- /dev/null
+++ b/content/pt-br/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_create.md
@@ -0,0 +1,126 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+Crie tokens de inicialização no servidor
+
+### Sinopse
+
+Este comando criará um token de inicialização. Você pode especificar os usos para este token, o "tempo de vida" e uma descrição amigável, que é opcional.
+
+O [token] é o token real para gravar. Este deve ser um token aleatório gerado com segurança da forma "[a-z0-9]{6}.[a-z0-9]{16}". Se nenhum [token] for fornecido, o kubeadm gerará um token aleatório.
+
+```
+kubeadm token create [token]
+```
+
+### Opções
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--certificate-key string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Quando usado em conjunto com '--print-join-command', exibe a flag completa 'kubeadm join' necessária para se unir ao cluster como um nó de camada de gerenciamento. Para criar uma nova chave de certificado, você deve usar 'kubeadm init phase upload-certs --upload-certs'.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--config string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Caminho para o arquivo de configuração kubeadm.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--description string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Uma descrição amigável de como esse token é usado.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--groups strings&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Padrão: "system:bootstrappers:kubeadm:default-node-token"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Grupos extras que este token autenticará quando usado para autenticação. Deve corresponder &quot;\Asystem:bootstrappers:[a-z0-9:-]{0,255}[a-z0-9]\z&quot;</p></td>
+</tr>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>ajuda para create</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--print-join-command</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Em vez de exibir apenas o token, exibe a flag completa 'kubeadm join' necessária para se associar ao cluster usando o token.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--ttl duração&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Padrão: 24h0m0s</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>A duração antes do token ser excluído automaticamente (por exemplo, 1s, 2m, 3h). Se definido como '0', o token nunca expirará</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--usages strings&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Padrão: "signing,authentication"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Descreve as maneiras pelas quais esse token pode ser usado. Você pode passar --usages várias vezes ou fornecer uma lista de opções separada por vírgulas. Opções válidas: [signing,authentication]</p></td>
+</tr>
+
+</tbody>
+</table>
+
+
+
+### Opções herdadas dos comandos superiores
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--dry-run</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Ativar ou não o modo de execução dry-run</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Padrão: "/etc/kubernetes/admin.conf"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>O arquivo kubeconfig a ser usado para se comunicar com o cluster. Se a flag não estiver definida, um conjunto de locais predefinidos pode ser pesquisado por um arquivo kubeconfig existente.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>[EXPERIMENTAL] O caminho para o 'real' sistema de arquivos raiz do host.</p></td>
+</tr>
+
+</tbody>
+</table>
diff --git a/content/pt-br/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_delete.md b/content/pt-br/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_delete.md
new file mode 100644
index 0000000000..755e35a72a
--- /dev/null
+++ b/content/pt-br/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_delete.md
@@ -0,0 +1,80 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+Excluir tokens de inicialização no servidor
+
+### Sinopse
+
+Este comando excluirá uma lista de tokens de inicialização para você.
+
+O [token-value] é um Token completo na forma "[a-z0-9]{6}.[a-z0-9]{16}" ou o ID do Token na forma "[a-z0-9]{6}" a ser excluído.
+
+```
+kubeadm token delete [token-value] ...
+```
+
+### Opções
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>ajuda para delete</p></td>
+</tr>
+
+</tbody>
+</table>
+
+
+
+### Opções herdadas dos comandos superiores
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--dry-run</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Ativar ou não o modo de execução dry-run</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Padrão: "/etc/kubernetes/admin.conf"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>O arquivo kubeconfig a ser usado para se comunicar com o cluster. Se a flag não estiver definida, um conjunto de locais predefinidos pode ser pesquisado por um arquivo kubeconfig existente.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>[EXPERIMENTAL] O caminho para o 'real' sistema de arquivos raiz do host.</p></td>
+</tr>
+
+</tbody>
+</table>
+
+
+
diff --git a/content/pt-br/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_generate.md b/content/pt-br/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_generate.md
new file mode 100644
index 0000000000..4c51e831e3
--- /dev/null
+++ b/content/pt-br/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_generate.md
@@ -0,0 +1,82 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+Gere e exiba um token de inicialização, mas não o crie no servidor
+
+### Sinopse
+
+Este comando exibirá um token de inicialização gerado aleatoriamente que pode ser usado com os comandos "init" e "join".
+
+Você não precisa usar este comando para gerar um token. Você pode fazer isso sozinho, desde que esteja no formato "[a-z0-9]{6}.[a-z0-9]{16}". Este comando é fornecido por conveniência para gerar tokens no formato fornecido.
+
+Você também pode usar "kubeadm init" sem especificar um token e ele gerará e exibirá um para você.
+
+```
+kubeadm token generate [flags]
+```
+
+### Opções
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>ajuda para generate</p></td>
+</tr>
+
+</tbody>
+</table>
+
+
+
+### Opções herdadas dos comandos superiores
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--dry-run</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Ativar ou não o modo de execução dry-run</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Padrão: "/etc/kubernetes/admin.conf"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>O arquivo kubeconfig a ser usado para se comunicar com o cluster. Se a flag não estiver definida, um conjunto de locais predefinidos pode ser pesquisado por um arquivo kubeconfig existente.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>[EXPERIMENTAL] O caminho para o 'real' sistema de arquivos raiz do host.</p></td>
+</tr>
+
+</tbody>
+</table>
+
+
+
diff --git a/content/pt-br/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_list.md b/content/pt-br/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_list.md
new file mode 100644
index 0000000000..2a598ed38a
--- /dev/null
+++ b/content/pt-br/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_list.md
@@ -0,0 +1,99 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+Liste tokens de inicialização no servidor
+
+### Sinopse
+
+Este comando listará todos os tokens de inicialização para você
+
+```
+kubeadm token list [flags]
+```
+
+### Opções
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--allow-missing-template-keys&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Padrão: true</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Se verdadeiro (true), ignora quaisquer erros nos modelos quando um campo ou chave de mapa estiver faltando no modelo. Aplica-se apenas aos formatos de saída golang e jsonpath.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">-o, --experimental-output string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Padrão: "text"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Formato de saída. Valores válidos: text|json|yaml|go-template|go-template-file|template|templatefile|jsonpath|jsonpath-as-json|jsonpath-file.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>ajuda para list</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--show-managed-fields</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Se verdadeiro (true), mantém os managedFields ao exibir os objetos no formato JSON ou YAML.</p></td>
+</tr>
+
+</tbody>
+</table>
+
+
+
+### Opções herdadas dos comandos superiores
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--dry-run</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Ativar ou não o modo de execução dry-run</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Padrão: "/etc/kubernetes/admin.conf"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>O arquivo kubeconfig a ser usado para se comunicar com o cluster. Se a flag não estiver definida, um conjunto de locais predefinidos pode ser pesquisado por um arquivo kubeconfig existente.</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>[EXPERIMENTAL] O caminho para o 'real' sistema de arquivos raiz do host.</p></td>
+</tr>
+
+</tbody>
+</table>
+
+
+
diff --git a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_update-cluster-status.md b/content/pt-br/docs/reference/setup-tools/kubeadm/generated/kubeadm_version.md
similarity index 71%
rename from content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_update-cluster-status.md
rename to content/pt-br/docs/reference/setup-tools/kubeadm/generated/kubeadm_version.md
index 9d4b7af77f..b248ffcd05 100644
--- a/content/en/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_update-cluster-status.md
+++ b/content/pt-br/docs/reference/setup-tools/kubeadm/generated/kubeadm_version.md
@@ -10,18 +10,18 @@ guide. You can file document formatting bugs against the
 -->
 
 
-Remove this node from the ClusterStatus object (DEPRECATED).
+Exibe a versão do kubeadm
 
-### Synopsis
+### Sinopse
 
 
-Remove this node from the ClusterStatus object (DEPRECATED).
+Exibe a versão do kubeadm
 
 ```
-kubeadm reset phase update-cluster-status [flags]
+kubeadm version [flags]
 ```
 
-### Options
+### Opções
 
    <table style="width: 100%; table-layout: fixed;">
 <colgroup>
@@ -34,7 +34,14 @@ kubeadm reset phase update-cluster-status [flags]
 <td colspan="2">-h, --help</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>help for update-cluster-status</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>ajuda para version</p></td>
+</tr>
+
+<tr>
+<td colspan="2">-o, --output string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Formato de saída; as opções disponíveis são 'yaml', 'json' e 'short'</p></td>
 </tr>
 
 </tbody>
@@ -42,7 +49,7 @@ kubeadm reset phase update-cluster-status [flags]
 
 
 
-### Options inherited from parent commands
+### Opção herdada do comando superior
 
    <table style="width: 100%; table-layout: fixed;">
 <colgroup>
@@ -55,7 +62,7 @@ kubeadm reset phase update-cluster-status [flags]
 <td colspan="2">--rootfs string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p></td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>[EXPERIMENTAL] O caminho para o 'real' sistema de arquivos raiz do host.</p></td>
 </tr>
 
 </tbody>
diff --git a/content/pt-br/docs/reference/setup-tools/kubeadm/kubeadm-token.md b/content/pt-br/docs/reference/setup-tools/kubeadm/kubeadm-token.md
new file mode 100644
index 0000000000..99fcedc04f
--- /dev/null
+++ b/content/pt-br/docs/reference/setup-tools/kubeadm/kubeadm-token.md
@@ -0,0 +1,27 @@
+---
+title: kubeadm token
+content_type: concept
+weight: 70
+---
+<!-- overview -->
+
+Os Bootstrap tokens são usados para estabelecer uma relação de confiança bidirecional entre um nó que se junta ao cluster e um nó do plano de controle, conforme descrito na [autenticação com tokens de inicialização](/docs/reference/access-authn-authz/bootstrap-tokens/).
+
+O `kubeadm init` cria um token inicial com um TTL de 24 horas. Os comandos a seguir permitem que você gerencie esse token e também crie e gerencie os novos.
+
+<!-- body -->
+## kubeadm token create {#cmd-token-create}
+{{< include "generated/kubeadm_token_create.md" >}}
+
+## kubeadm token delete {#cmd-token-delete}
+{{< include "generated/kubeadm_token_delete.md" >}}
+
+## kubeadm token generate {#cmd-token-generate}
+{{< include "generated/kubeadm_token_generate.md" >}}
+
+## kubeadm token list {#cmd-token-list}
+{{< include "generated/kubeadm_token_list.md" >}}
+
+## {{% heading "whatsnext" %}}
+
+* [kubeadm join](/docs/reference/setup-tools/kubeadm/kubeadm-join) para inicializar um nó de carga de trabalho do Kubernetes e associá-lo ao cluster
diff --git a/content/pt-br/docs/reference/setup-tools/kubeadm/kubeadm-version.md b/content/pt-br/docs/reference/setup-tools/kubeadm/kubeadm-version.md
new file mode 100644
index 0000000000..ca2a6a84ce
--- /dev/null
+++ b/content/pt-br/docs/reference/setup-tools/kubeadm/kubeadm-version.md
@@ -0,0 +1,10 @@
+---
+title: kubeadm version
+content_type: concept
+weight: 80
+---
+<!-- overview -->
+Este comando exibe a versão do kubeadm.
+
+<!-- body -->
+{{< include "generated/kubeadm_version.md" >}}
diff --git a/content/pt-br/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md b/content/pt-br/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md
new file mode 100644
index 0000000000..85c0bff925
--- /dev/null
+++ b/content/pt-br/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md
@@ -0,0 +1,270 @@
+---
+title: Instalando a ferramenta kubeadm
+content_type: task
+weight: 10
+---
+
+<!-- overview -->
+
+<img src="https://raw.githubusercontent.com/kubernetes/kubeadm/master/logos/stacked/color/kubeadm-stacked-color.png" align="right" width="150px">Essa página mostra o processo de instalação do conjunto de ferramentas `kubeadm`. 
+Para mais informações sobre como criar um cluster com o kubeadm após efetuar a instalação, veja a página [Utilizando kubeadm para criar um cluster](/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/).
+
+
+## {{% heading "prerequisites" %}}
+
+* Uma máquina com sistema operacional Linux compatível. O projeto Kubernetes provê instruções para distribuições Linux baseadas em Debian e Red Hat, bem como para distribuições sem um gerenciador de pacotes.
+* 2 GB ou mais de RAM por máquina (menos que isso deixará pouca memória para as suas aplicações).
+* 2 CPUs ou mais.
+* Conexão de rede entre todas as máquinas no cluster. Seja essa pública ou privada.
+* Nome da máquina na rede, endereço MAC e producy_uuid únicos para cada nó. Mais detalhes podem ser lidos [aqui](#veficiar-endereco-mac).
+* Portas específicas abertas nas suas máquinas. Você poderá ler quais são [aqui](#verificar-portas-necessarias).
+* Swap desabilitado. Você *precisa* desabilitar a funcionalidade de swap para que o kubelet funcione de forma correta.
+
+<!-- steps -->
+
+## Verificando se o endereço MAC e o product_uiid são únicos para cada nó {#veficiar-endereco-mac}
+
+* Você pode verificar o endereço MAC da interface de rede utilizando o comando `ip link` ou o comando `ipconfig -a`.
+* O product_uuid pode ser verificado utilizando o comando `sudo cat /sys/class/dmi/id/product_uuid`.
+
+É provável que dispositivos físicos possuam endereços únicos. No entanto, é possível que algumas máquinas virtuais possuam endereços iguais. O Kubernetes utiliza esses valores para identificar unicamente os nós em um cluster. Se esses valores não forem únicos para cada nó, o processo de instalação pode [falhar](https://github.com/kubernetes/kubeadm/issues/31).
+
+## Verificando os adaptadores de rede
+
+Se você possuir mais de um adaptador de rede, e seus componentes Kubernetes não forem acessíveis através da rota padrão, recomendamos adicionar o IP das rotas para que os endereços do cluster Kubernetes passem pelo adaptador correto.
+
+## Fazendo com que o iptables enxergue o tráfego agregado
+
+Assegure-se de que o módulo `br_netfilter` está carregado. Isso pode ser feito executando o comando `lsmod | grep br_netfilter`. Para carrega-lo explicitamente execute `sudo modprobe br_netfilter`.
+
+Como um requisito para que seus nós Linux enxerguem corretamente o tráfego agregado de rede, você deve garantir que a configuração `net.bridge.bridge-nf-call-iptables` do seu `sysctl` está configurada com valor 1. Como no exemplo abaixo:
+
+```bash
+cat <<EOF | sudo tee /etc/modules-load.d/k8s.conf
+br_netfilter
+EOF
+
+cat <<EOF | sudo tee /etc/sysctl.d/k8s.conf
+net.bridge.bridge-nf-call-ip6tables = 1
+net.bridge.bridge-nf-call-iptables = 1
+EOF
+sudo sysctl --system
+```
+
+Para mais detalhes veja a página [Requisitos do plugin de rede](/pt-br/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/#network-plugin-requirements).
+
+## Verificando as portas necessárias
+
+As portas listadas [aqui](https://kubernetes.io/docs/reference/ports-and-protocols/) precisam estar abertas para que os componentes do Kubernetes se comuniquem uns com os outros.
+
+O plugin de rede dos pods que você utiliza também pode requer que algumas portas estejam abertas. Dito que essas portas podem diferir dependendo do plugin, por favor leia a documentação dos plugins sobre quais portas serão necessárias abrir.
+
+## Instalando o agente de execução de contêineres {#instalando-agente-de-execucao}
+
+Para executar os contêineres nos Pods, o Kubernetes utiliza um 
+{{< glossary_tooltip term_id="container-runtime" text="agente de execução" >}}.
+
+{{< tabs name="container_runtime" >}}
+{{% tab name="Nós Linux" %}}
+
+Por padrão, o Kubernetes utiliza a {{< glossary_tooltip term_id="cri" text="interface do agente de execução">}} (CRI) para interagir com o seu agente de execução de contêiner escolhido.
+
+Se você não especificar nenhum agente de execução, o kubeadm irá tentar identifica-lo automaticamente através de uma lista dos sockets Unix mais utilizados. A tabela a seguir lista os agentes de execução e os caminhos dos sockets a eles associados.
+
+{{< table caption = "Agentes de execução e seus caminhos de socket" >}}
+| Agente de execução    | Caminho do socket Unix        |
+|------------|-----------------------------------|
+| Docker     | `/var/run/dockershim.sock`        |
+| containerd | `/run/containerd/containerd.sock` |
+| CRI-O      | `/var/run/crio/crio.sock`         |
+{{< /table >}}
+
+<br />
+Se tanto o Docker quanto o containerd forem detectados no sistema, o Docker terá precedência. Isso acontece porque o Docker, desde a versão 18.09, já incluí o containerd e ambos são detectaveis mesmo que você só tenha instalado o Docker. Se outros dois ou mais agentes de execução forem detectados, o kubeadm é encerrado com um erro.
+
+O kubelet se integra com o Docker através da implementação CRI `dockershim` já inclusa.
+
+Veja a página dos [agentes de execução](/docs/setup/production-environment/container-runtimes/)
+para mais detalhes.
+{{% /tab %}}
+{{% tab name="Outros sistemas operacionais" %}}
+Por padrão, o kubeadm utiliza o {{< glossary_tooltip term_id="docker" >}} como agente de execução.
+O kubelet se integra com o Docker através da implementação CRI `dockershim` já inclusa.
+
+Veja a página dos [agentes de execução](/docs/setup/production-environment/container-runtimes/)
+para mais detalhes.
+{{% /tab %}}
+{{< /tabs >}}
+
+
+## Instalando o kubeadm, kubelet e o kubectl
+
+Você instalará esses pacotes em todas as suas máquinas:
+
+* `kubeadm`: o comando para criar o cluster.
+
+* `kubelet`: o componente que executa em todas as máquinas no seu cluster e cuida de tarefas como a inicialização de pods e contêineres. 
+
+* `kubectl`: a ferramenta de linha de comando para interação com o cluster.
+
+O kubeadm **não irá** instalar ou gerenciar o `kubelet` ou o `kubectl` para você, então você
+precisará garantir que as versões deles são as mesmas da versão da camada de gerenciamento do Kubernetes 
+que você quer que o kubeadm instale. Caso isso não seja feito, surge o risco de que uma diferença nas versões 
+leve a bugs e comportamentos inesperados. Dito isso, _uma_ diferença de menor grandeza nas versões entre o kubelet e a 
+camada de gerenciamento é suportada, mas a versão do kubelet nunca poderá ser superior à versão do servidor da API.
+Por exemplo, um kubelet com a versão 1.7.0 será totalmente compatível com a versão 1.8.0 do servidor da API, mas o contrário não será verdadeiro.
+
+Para mais informações acerca da instalação do `kubectl`, veja [Instale e configure o kubectl](/docs/tasks/tools/).
+
+{{< warning >}}
+Essas instruções removem todos os pacotes Kubernetes de quaisquer atualizações de sistema.
+Isso ocorre porque o kubeadm e o Kubernetes requerem alguns [cuidados especiais para serem atualizados](/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/).
+{{</ warning >}}
+
+Para mais detalhes sobre compatibilidade entre as versões, veja:
+
+* [Políticas de versão e compatibilidade entre versões](/docs/setup/release/version-skew-policy/) do Kubernetes.
+* [Compatibilidade entre versões](/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/#version-skew-policy) do Kubeadm.
+
+{{< tabs name="k8s_install" >}}
+{{% tab name="Distribuições Debian" %}}
+
+1. Atualize o índice de pacotes `apt` e instale os pacotes necessários para utilizar o repositório `apt` do Kubernetes:
+
+   ```shell
+   sudo apt-get update
+   sudo apt-get install -y apt-transport-https ca-certificates curl
+   ```
+
+2. Faça o download da chave de assinatura pública da Google Cloud:
+
+   ```shell
+   sudo curl -fsSLo /usr/share/keyrings/kubernetes-archive-keyring.gpg https://packages.cloud.google.com/apt/doc/apt-key.gpg
+   ```
+
+3. Adicione o repositório `apt` do Kubernetes:
+
+   ```shell
+   echo "deb [signed-by=/usr/share/keyrings/kubernetes-archive-keyring.gpg] https://apt.kubernetes.io/ kubernetes-xenial main" | sudo tee /etc/apt/sources.list.d/kubernetes.list
+   ```
+
+4. Atualize o índice de pacotes `apt`, instale o kubelet, o kubeadm e o kubectl, e fixe suas versões:
+
+   ```shell
+   sudo apt-get update
+   sudo apt-get install -y kubelet kubeadm kubectl
+   sudo apt-mark hold kubelet kubeadm kubectl
+   ```
+
+{{% /tab %}}
+{{% tab name="Distribuições Red Hat" %}}
+```bash
+cat <<EOF | sudo tee /etc/yum.repos.d/kubernetes.repo
+[kubernetes]
+name=Kubernetes
+baseurl=https://packages.cloud.google.com/yum/repos/kubernetes-el7-\$basearch
+enabled=1
+gpgcheck=1
+repo_gpgcheck=1
+gpgkey=https://packages.cloud.google.com/yum/doc/yum-key.gpg https://packages.cloud.google.com/yum/doc/rpm-package-key.gpg
+exclude=kubelet kubeadm kubectl
+EOF
+
+# Set SELinux in permissive mode (effectively disabling it)
+sudo setenforce 0
+sudo sed -i 's/^SELINUX=enforcing$/SELINUX=permissive/' /etc/selinux/config
+
+sudo yum install -y kubelet kubeadm kubectl --disableexcludes=kubernetes
+
+sudo systemctl enable --now kubelet
+```
+
+  **Avisos:**
+
+  - Colocar o SELinux em modo permissivo ao executar `setenforce 0` e `sed ...` efetivamente o desabilita.
+  Isso é necessário para permitir que os contêineres acessem o sistema de arquivos do hospedeiro, que é utilizado pelas redes dos pods por exemplo.
+  Você precisará disso até que o suporte ao SELinux seja melhorado no kubelet.
+
+  - Você pode deixar o SELinux habilitado se você souber como configura-lo, mas isso pode exegir configurações que não são suportadas pelo kubeadm.
+
+{{% /tab %}}
+{{% tab name="Sem um gerenciador de pacotes" %}}
+Instale os plugins CNI (utilizados por grande parte das redes de pods):
+
+```bash
+CNI_VERSION="v0.8.2"
+ARCH="amd64"
+sudo mkdir -p /opt/cni/bin
+curl -L "https://github.com/containernetworking/plugins/releases/download/${CNI_VERSION}/cni-plugins-linux-${ARCH}-${CNI_VERSION}.tgz" | sudo tar -C /opt/cni/bin -xz
+```
+
+Escolha o diretório para baixar os arquivos de comandos.
+
+{{< note >}}
+A variável `DOWNLOAD_DIR` precisa estar configurada para um diretório que permita escrita.
+Se você estiver utilizando o Flatcar Container Linux, configure a váriavel de ambiente `DOWNLOAD_DIR=/opt/bin`.
+{{< /note >}}
+
+```bash
+DOWNLOAD_DIR=/usr/local/bin
+sudo mkdir -p $DOWNLOAD_DIR
+```
+
+Instale o crictl (utilizado pelo kubeadm e pela Interface do Agente de execução do Kubelet (CRI))
+
+```bash
+CRICTL_VERSION="v1.22.0"
+ARCH="amd64"
+curl -L "https://github.com/kubernetes-sigs/cri-tools/releases/download/${CRICTL_VERSION}/crictl-${CRICTL_VERSION}-linux-${ARCH}.tar.gz" | sudo tar -C $DOWNLOAD_DIR -xz
+```
+
+Instale o `kubeadm`, o `kubelet`, e o `kubectl` e adicione o serviço systemd `kubelet`:
+
+```bash
+RELEASE="$(curl -sSL https://dl.k8s.io/release/stable.txt)"
+ARCH="amd64"
+cd $DOWNLOAD_DIR
+sudo curl -L --remote-name-all https://storage.googleapis.com/kubernetes-release/release/${RELEASE}/bin/linux/${ARCH}/{kubeadm,kubelet,kubectl}
+sudo chmod +x {kubeadm,kubelet,kubectl}
+
+RELEASE_VERSION="v0.4.0"
+curl -sSL "https://raw.githubusercontent.com/kubernetes/release/${RELEASE_VERSION}/cmd/kubepkg/templates/latest/deb/kubelet/lib/systemd/system/kubelet.service" | sed "s:/usr/bin:${DOWNLOAD_DIR}:g" | sudo tee /etc/systemd/system/kubelet.service
+sudo mkdir -p /etc/systemd/system/kubelet.service.d
+curl -sSL "https://raw.githubusercontent.com/kubernetes/release/${RELEASE_VERSION}/cmd/kubepkg/templates/latest/deb/kubeadm/10-kubeadm.conf" | sed "s:/usr/bin:${DOWNLOAD_DIR}:g" | sudo tee /etc/systemd/system/kubelet.service.d/10-kubeadm.conf
+```
+
+Habilite e inicie o `kubelet`:
+
+```bash
+systemctl enable --now kubelet
+```
+
+{{< note >}}
+A distribuição Flatcar Container Linux instala o diretório `/usr` como um sistema de arquivos apenas para leitura.
+Antes de inicializar o seu cluster, você precisa de alguns passos adicionais para configurar um diretório com escrita.
+Veja o [Guia de solução de problemas do Kubeadm](/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm/#usr-mounted-read-only/) para aprender como configurar um diretório com escrita.
+{{< /note >}}
+{{% /tab %}}
+{{< /tabs >}}
+
+O kubelet agora ficará reiniciando de alguns em alguns segundos, enquanto espera por instruções vindas do kubeadm. 
+
+## Configurando um driver cgroup
+
+Tanto o agente de execução quanto o kubelet possuem uma propriedade chamada
+["driver cgroup"](/docs/setup/production-environment/container-runtimes/), que é importante
+para o gerenciamento dos cgroups em máquinas Linux.
+
+{{< warning >}}
+A compatibilidade entre os drivers cgroup e o agente de execução é necessária. Sem ela o processo do kubelet irá falhar.
+
+Veja [configurando um driver cgroup](/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver/) para mais detalhes.
+{{< /warning >}}
+
+## Solucionando problemas
+
+Se você encontrar problemas com o kubeadm, por favor consulte a nossa [documentação de solução de problemas](/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm/).
+
+## {{% heading "whatsnext" %}}
+
+* [Utilizando o kubeadm para criar um cluster](/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/).
diff --git a/content/pt-br/docs/setup/production-environment/turnkey-solutions.md b/content/pt-br/docs/setup/production-environment/turnkey-solutions.md
new file mode 100644
index 0000000000..d60a54a754
--- /dev/null
+++ b/content/pt-br/docs/setup/production-environment/turnkey-solutions.md
@@ -0,0 +1,12 @@
+---
+title: Soluções de Nuvem Prontas para uso
+content_type: concept
+weight: 30
+---
+<!-- overview -->
+
+Essa página fornece uma lista de provedores de soluções certificadas do Kubernetes. Na página de cada provedor, você pode aprender como instalar e configurar clusters prontos para produção.
+
+<!-- body -->
+
+{{< cncf-landscape helpers=true category="certified-kubernetes-hosted" >}}
diff --git a/content/pt-br/docs/tasks/configmap-secret/managing-secret-using-config-file.md b/content/pt-br/docs/tasks/configmap-secret/managing-secret-using-config-file.md
index 0bac8410fa..cefd548383 100644
--- a/content/pt-br/docs/tasks/configmap-secret/managing-secret-using-config-file.md
+++ b/content/pt-br/docs/tasks/configmap-secret/managing-secret-using-config-file.md
@@ -59,7 +59,7 @@ data:
 ```
 
 Perceba que o nome do objeto Secret precisa ser um 
-[nome de subdomínio DNS](/docs/concepts/overview/working-with-objects/names#dns-subdomain-name) válido.
+[nome de subdomínio DNS](/pt-br/docs/concepts/overview/working-with-objects/names#dns-subdomain-names) válido.
 
 {{< note >}}
 Os valores serializados dos dados JSON e YAML de um Secret são codificados em strings
diff --git a/content/pt-br/docs/tasks/configmap-secret/managing-secret-using-kubectl.md b/content/pt-br/docs/tasks/configmap-secret/managing-secret-using-kubectl.md
index 7e6ca6dc7c..575bc13253 100644
--- a/content/pt-br/docs/tasks/configmap-secret/managing-secret-using-kubectl.md
+++ b/content/pt-br/docs/tasks/configmap-secret/managing-secret-using-kubectl.md
@@ -64,7 +64,7 @@ Na maioria dos shells, a forma mais fácil de escapar as senhas é usar aspas si
 Por exemplo, se sua senha atual é `S!B\*d$zDsb=`, você precisa executar o comando dessa forma:
 
 ```shell
-kubectl create secret generic dev-db-secret \
+kubectl create secret generic db-user-pass \
   --from-literal=username=devuser \
   --from-literal=password='S!B\*d$zDsb='
 ```
diff --git a/content/pt-br/docs/tutorials/_index.md b/content/pt-br/docs/tutorials/_index.md
index bc39fd817a..637ed4e6e8 100644
--- a/content/pt-br/docs/tutorials/_index.md
+++ b/content/pt-br/docs/tutorials/_index.md
@@ -47,6 +47,8 @@ Antes de iniciar um tutorial, é interessante que vocẽ salve a página de [Glo
 
 * [AppArmor](/docs/tutorials/clusters/apparmor/)
 
+* [seccomp](/docs/tutorials/clusters/seccomp/)
+
 ## Serviços / "Services"
 
 * [Usando IP de origem](/docs/tutorials/services/source-ip/)
diff --git a/content/pt-br/docs/tutorials/kubernetes-basics/scale/scale-intro.html b/content/pt-br/docs/tutorials/kubernetes-basics/scale/scale-intro.html
index 351f4e01fe..ee6b9d3241 100644
--- a/content/pt-br/docs/tutorials/kubernetes-basics/scale/scale-intro.html
+++ b/content/pt-br/docs/tutorials/kubernetes-basics/scale/scale-intro.html
@@ -102,7 +102,7 @@ weight: 10
 
         <div class="row">
             <div class="col-md-8">
-                <p>No momento em que tiver múltiplas instâncias de uma aplicação em execução, será capaz de fazer atualizações graduais sem indisponibilidade. Nós cobriremos isso no próximo módulo. Agora, vamos ao terminal online e escalar nossa aplicação.</p>
+                <p>No momento em que múltiplas instâncias de uma aplicação estiverem em execução será possível realizar atualizações graduais no cluster sem que ocorra indisponibilidade. Nós cobriremos isso no próximo módulo. Agora, vamos ao terminal online e escalar nossa aplicação.</p>
             </div>
         </div>
         <br>
diff --git a/content/pt-br/examples/application/job/cronjob.yaml b/content/pt-br/examples/application/job/cronjob.yaml
index da905a9048..9f06ca7bd6 100644
--- a/content/pt-br/examples/application/job/cronjob.yaml
+++ b/content/pt-br/examples/application/job/cronjob.yaml
@@ -3,7 +3,7 @@ kind: CronJob
 metadata:
   name: hello
 spec:
-  schedule: "*/1 * * * *"
+  schedule: "* * * * *"
   jobTemplate:
     spec:
       template:
diff --git a/content/zh/examples/pods/pod-with-toleration.yaml b/content/pt-br/examples/pods/pod-with-toleration.yaml
similarity index 100%
rename from content/zh/examples/pods/pod-with-toleration.yaml
rename to content/pt-br/examples/pods/pod-with-toleration.yaml
diff --git a/content/zh/examples/policy/priority-class-resourcequota.yaml b/content/pt-br/examples/policy/priority-class-resourcequota.yaml
similarity index 100%
rename from content/zh/examples/policy/priority-class-resourcequota.yaml
rename to content/pt-br/examples/policy/priority-class-resourcequota.yaml
diff --git a/content/pt-br/includes/task-tutorial-prereqs.md b/content/pt-br/includes/task-tutorial-prereqs.md
index eb4177b4fd..66b20b849f 100644
--- a/content/pt-br/includes/task-tutorial-prereqs.md
+++ b/content/pt-br/includes/task-tutorial-prereqs.md
@@ -2,5 +2,5 @@ Você precisa de um cluster Kubernetes e a ferramenta de linha de comando kubect
 precisa estar configurada para acessar o seu cluster. Se você ainda não tem um
 cluster, pode criar um usando o [minikube](/docs/tasks/tools/#minikube)
 ou você pode usar um dos seguintes ambientes:
-* [Katacoda](https://www.katacoda.com/courses/kubernetes/playground)
+* [Killercoda](https://killercoda.com/playgrounds/scenario/kubernetes)
 * [Play with Kubernetes](http://labs.play-with-k8s.com/)
diff --git a/content/ru/_index.html b/content/ru/_index.html
index a460376f12..bcac4a6c6e 100644
--- a/content/ru/_index.html
+++ b/content/ru/_index.html
@@ -41,12 +41,12 @@ Kubernetes — это проект с открытым исходным кодо
         <button id="desktopShowVideoButton" onclick="kub.showVideo()">Смотреть видео</button>
         <br>
         <br>
-        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccncna21" button id="desktopKCButton">Посетите KubeCon в Северной Америке, 11-15 октября 2021 года</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe-2022/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccnceu22" button id="desktopKCButton">Посетите KubeCon в Европе, 17-20 мая 2022 года</a>
         <br>
         <br>
         <br>
         <br>
-        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe-2022/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccnceu22" button id="desktopKCButton" button id="desktopKCButton">Посетите KubeCon в Европе, 17-20 мая 2022 года</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccncna21" button id="desktopKCButton">Посетите KubeCon в Северной Америке, 24-28 октября 2022 года</a>
 </div>
 <div id="videoPlayer">
     <iframe data-url="https://www.youtube.com/embed/H06qrNmGqyE?autoplay=1" frameborder="0" allowfullscreen></iframe>
diff --git a/content/ru/community/static/README.md b/content/ru/community/static/README.md
index d26a4e4598..5706ff2cc5 100644
--- a/content/ru/community/static/README.md
+++ b/content/ru/community/static/README.md
@@ -1,2 +1,2 @@
-Файлы в этой диркетории были импортированы из других источников.
-Не редактируйте их напрямую, вместо этого заменяйте их более новыми версиями.
+Файлы в этой директории были импортированы из других источников.
+Не редактируйте их напрямую, вместо этого заменяйте их более новыми версиями.
\ No newline at end of file
diff --git a/content/ru/community/static/community-values.md b/content/ru/community/static/community-values.md
index c9c0f00ac5..712635feb0 100644
--- a/content/ru/community/static/community-values.md
+++ b/content/ru/community/static/community-values.md
@@ -25,4 +25,4 @@
 
 Открытость новым идеям и изученная технологическая эволюция делают Kubernetes более сильным проектом. Постоянное совершенствование, лидерство слуг, наставничество и уважение-вот основы культуры проекта Kubernetes. Лидеры сообщества Kubernetes обязаны находить, спонсировать и продвигать новых членов сообщества. Лидеры должны ожидать, что они отойдут в сторону. Члены сообщества должны ожидать, что они сделают шаг вперед.
 
-**"Culture eats strategy for breakfast."   --Peter Drucker**
+**"Культура съедает стратегию на завтрак" — Питер Друкер**
\ No newline at end of file
diff --git a/content/ru/docs/concepts/architecture/_index.md b/content/ru/docs/concepts/architecture/_index.md
old mode 100755
new mode 100644
index 05b3535491..1a4ac050ce
--- a/content/ru/docs/concepts/architecture/_index.md
+++ b/content/ru/docs/concepts/architecture/_index.md
@@ -2,6 +2,5 @@
 title: "Кластерная Архитектура"
 weight: 30
 description: >
-  The architectural concepts behind Kubernetes.
----
-
+  Архитектурные концепции, лежащие в основе Kubernetes.
+---
\ No newline at end of file
diff --git a/content/ru/docs/concepts/architecture/cloud-controller.md b/content/ru/docs/concepts/architecture/cloud-controller.md
index 5bb9c3d4fa..8c51bbcb0a 100644
--- a/content/ru/docs/concepts/architecture/cloud-controller.md
+++ b/content/ru/docs/concepts/architecture/cloud-controller.md
@@ -8,7 +8,7 @@ weight: 40
 
 {{< feature-state state="beta" for_k8s_version="v1.11" >}}
 
-Технологии облачной инфраструктуры позволяет запускать Kubernetes в общедоступных, частных и гибридных облаках. Kubernetes верит в автоматизированную, управляемую API инфраструктуру без жесткой связи между компонентами.
+Технологии облачной инфраструктуры позволяют запускать Kubernetes в общедоступных, частных и гибридных облаках. Kubernetes верит в автоматизированную, управляемую API инфраструктуру без жесткой связи между компонентами.
 
 {{< glossary_definition term_id="cloud-controller-manager" length="all" prepend="Диспетчер облачных контроллеров">}} 
 
@@ -33,7 +33,7 @@ weight: 40
 
 Контроллеры внутри диспетчера облачных контроллеров включают в себя:
 
-### Контролер узла
+### Контроллер узла
 
 Контроллер узла отвечает за создание объектов {{< glossary_tooltip text="узла" term_id="node" >}} при создании новых серверов в вашей облачной инфраструктуре. Контроллер узла получает информацию о работающих хостах внутри вашей арендуемой инфраструктуры облачного провайдера.
 Контроллер узла выполняет следующие функции:
@@ -41,13 +41,13 @@ weight: 40
 1. Инициализация объектов узла для каждого сервера, которые контроллер получает через API облачного провайдера.
 2. Аннотирование и маркировка объектов узла специфичной для облака информацией, такой как регион узла и доступные ему ресурсы (процессор, память и т.д.).
 3. Получение имени хоста и сетевых адресов.
-4. Проверка работоспособности узла. В случае, если узел перестает отвечать на запросы, этот контроллер проверяет с помощью API вашего облачного провайдера, был ли сервер деактивирован / удален / прекращен. Если узел был удален из облака, контроллер удлаяет объект узла из вашего Kubernetes кластера.
+4. Проверка работоспособности узла. В случае, если узел перестает отвечать на запросы, этот контроллер проверяет с помощью API вашего облачного провайдера, был ли сервер деактивирован / удален / прекращен. Если узел был удален из облака, контроллер удаляет объект узла из вашего Kubernetes кластера.
 
 Некоторые облачные провайдеры реализуют его разделение на контроллер узла и отдельный контроллер жизненного цикла узла.
 
-### Контролер маршрута
+### Контроллер маршрута
 
-Контролер маршрута отвечает за соответствующую настройку маршрутов в облаке, чтобы контейнеры на разных узлах кластера Kubernetes могли взаимодействовать друг с другом.
+Контроллер маршрута отвечает за соответствующую настройку маршрутов в облаке, чтобы контейнеры на разных узлах кластера Kubernetes могли взаимодействовать друг с другом.
 
 В зависимости от облачного провайдера, контроллер маршрута способен также выделять блоки IP-адресов для сети Pod-ов.
 
@@ -61,7 +61,7 @@ weight: 40
 
 ### Контроллер узла {#authorization-node-controller}
 
-Контроллер узла работает только с объектом узла. Он требует полного доступа для и изменения объектов узла.
+Контроллер узла работает только с объектом узла. Он требует полного доступа на чтение и изменение объектов узла.
 
 `v1/Node`:
 
@@ -73,9 +73,9 @@ weight: 40
 - Watch
 - Delete
 
-### Контролер маршрута {#authorization-route-controller}
+### Контроллер маршрута {#authorization-route-controller}
 
-Контролер маршрута прослушивает создание объектов узла и соответствующим образом настраивает маршруты. Для этого требуется получить доступ к объектам узла.
+Контроллер маршрута прослушивает создание объектов узла и соответствующим образом настраивает маршруты. Для этого требуется получить доступ к объектам узла.
 
 `v1/Node`:
 
@@ -99,7 +99,7 @@ weight: 40
 
 ### Другие {#authorization-miscellaneous}
 
-Реализация ядра диспетчера облачных контроллеров требует доступ для создания создания объектов событий, а для обеспечения безопасной работы требуется доступ к созданию сервисных учетных записей (ServiceAccounts).
+Реализация ядра диспетчера облачных контроллеров требует доступ для создания объектов событий, а для обеспечения безопасной работы требуется доступ к созданию сервисных учетных записей (ServiceAccounts).
 
 `v1/Event`:
 
@@ -111,7 +111,7 @@ weight: 40
 
 - Create
 
-The {{< glossary_tooltip term_id="rbac" text="RBAC" >}} ClusterRole для диспетчера облачных контроллеров выглядит так:
+{{< glossary_tooltip term_id="rbac" text="RBAC" >}} ClusterRole для диспетчера облачных контроллеров выглядит так:
 
 ```yaml
 apiVersion: rbac.authorization.k8s.io/v1
@@ -179,7 +179,7 @@ rules:
 ## {{% heading "whatsnext" %}}
 
 [Администрирование диспетчера облачных контроллеров](/docs/tasks/administer-cluster/running-cloud-controller/#cloud-controller-manager)
-содержит инструкции по запуску и управлению диспетером облачных контроллеров.
+содержит инструкции по запуску и управлению диспетчером облачных контроллеров.
 
 Хотите знать, как реализовать свой собственный диспетчер облачных контроллеров или расширить проект?
 
diff --git a/content/ru/docs/concepts/architecture/control-plane-node-communication.md b/content/ru/docs/concepts/architecture/control-plane-node-communication.md
index ea5cc33921..fa0db524af 100644
--- a/content/ru/docs/concepts/architecture/control-plane-node-communication.md
+++ b/content/ru/docs/concepts/architecture/control-plane-node-communication.md
@@ -11,21 +11,21 @@ aliases:
 
 <!-- overview -->
 
-Этот документ каталог связь между плоскостью управления (apiserver) и кластером Kubernetes. Цель состоит в том, чтобы позволить пользователям настраивать свою установку для усиления сетевой конфигурации, чтобы кластер мог работать в ненадежной сети (или на полностью общедоступных IP-адресах облачного провайдера).
+Этот документ описывает связь между плоскостью управления (apiserver) и кластером Kubernetes. Цель состоит в том, чтобы позволить пользователям настраивать свою установку для усиления сетевой конфигурации, чтобы кластер мог работать в ненадежной сети (или на полностью общедоступных IP-адресах облачного провайдера).
 
 
 
 <!-- body -->
 
 ## Связь между плоскостью управления и узлом
-В Kubernetes имеется API шаблон "hub-and-spoke". Все используемые API из узлов (или которые запускают pod-ы) завершает apiserver. Ни один из других компонентов плоскости управления не предназначен для предоставления удаленных сервисов. Apiserver настроен на прослушивание удаленных подключений через безопасный порт HTTPS. (обычно 443) с одной или несколькими включенными формами [идентификации](/docs/reference/access-authn-authz/authentication/) клиена.
+В Kubernetes имеется API шаблон «ступица и спица» (hub-and-spoke). Все используемые API из узлов (или которые запускают pod-ы) завершает apiserver. Ни один из других компонентов плоскости управления не предназначен для предоставления удаленных сервисов. Apiserver настроен на прослушивание удаленных подключений через безопасный порт HTTPS (обычно 443) с одной или несколькими включенными формами [аутентификации](/docs/reference/access-authn-authz/authentication/) клиента.
 
-Должна быть включена одна или несколько форм [идентификации](/docs/reference/access-authn-authz/authorization/), особенно если разрешены  [анонимные запросы](/docs/reference/access-authn-authz/authentication/#anonymous-requests) или [service account tokens](/docs/reference/access-authn-authz/authentication/#service-account-tokens).
+Должна быть включена одна или несколько форм [авторизации](/docs/reference/access-authn-authz/authorization/), особенно, если разрешены [анонимные запросы](/docs/reference/access-authn-authz/authentication/#anonymous-requests) или [ServiceAccount токены](/docs/reference/access-authn-authz/authentication/#service-account-tokens).
 
-Узлы должны быть снабжены общедоступным корневым сертификатом для кластера, чтобы они могли безопасно подключаться к apiserver-у вместе с действительными учетными данными клиента. Хороший подход заключается в том, что учетные данные клиента, предоставляемые kubelet, имеют форму клиентского сертификата. См. Информацию о загрузке Kubelet TLS [kubelet TLS bootstrapping](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/) для автоматической подготовки клиентских сертификатов kubelet.
+Узлы должны быть снабжены публичным корневым сертификатом для кластера, чтобы они могли безопасно подключаться к apiserver-у вместе с действительными учетными данными клиента. Хороший подход заключается в том, чтобы учетные данные клиента, предоставляемые kubelet-у, имели форму клиентского сертификата. См. Информацию о загрузке kubelet TLS [kubelet TLS bootstrapping](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/) для автоматической подготовки клиентских сертификатов kubelet.
 
-pod-ы, которые хотят подключиться к apiserver, могут сделать это безопасно, используя учетную запись службы, чтобы Kubernetes автоматически вводил общедоступный корневой сертификат и действительный токен-носитель в pod при его создании.
-Служба `kubernetes` (в пространстве имен `default`) is настроен с виртуальным IP-адресом, который перенаправляет (через kube-proxy) к endpoint HTTPS apiserver-а.
+Pod-ы, которые хотят подключиться к apiserver, могут сделать это безопасно, используя ServiceAccount, чтобы Kubernetes автоматически вводил общедоступный корневой сертификат и действительный токен-носитель в pod при его создании.
+Служба `kubernetes` (в пространстве имен `default`) настроена с виртуальным IP-адресом, который перенаправляет (через kube-proxy) на HTTPS эндпоинт apiserver-а.
 
 Компоненты уровня управления также взаимодействуют с кластером apiserver-а через защищенный порт.
 
@@ -33,7 +33,7 @@ pod-ы, которые хотят подключиться к apiserver, мог
 
 ## Узел к плоскости управления
 
-Существуют две пути взаимодействия от плоскости управления (apiserver) к узлам. Первый - от apiserver-а до kubelet процесса, который выполняется на каждом узле кластера. Второй - от apiserver к любому узлу, pod-у или службе через промежуточную функциональность apiserver-а.
+Существуют два пути связи плоскости управления (apiserver) с узлами. Первый - от apiserver-а до kubelet процесса, который выполняется на каждом узле кластера. Второй - от apiserver к любому узлу, pod-у или службе через промежуточную функциональность apiserver-а.
 
 ### apiserver в kubelet
 
@@ -43,21 +43,21 @@ pod-ы, которые хотят подключиться к apiserver, мог
 * Прикрепление (через kubectl) к запущенным pod-ам.
 * Обеспечение функциональности переадресации портов kubelet.
 
-Эти соединения заверщаются в kubelet в endpoint HTTPS. По умолчанию apiserver не проверяет сертификат обслуживания kubelet-ов, что делает соединение подверженным к атаке человек по середине (man-in-the-middle) и **unsafe** запущенных в ненадежных или общедоступных сетях.
+Эти соединения завершаются на HTTPS эндпоинте kubelet-a. По умолчанию apiserver не проверяет сертификат обслуживания kubelet-ов, что делает соединение подверженным к атаке «человек посередине» (man-in-the-middle) и **небезопасным** к запуску в ненадежных и/или общедоступных сетях.
 
-Для проверки этого соединения, используется флаг `--kubelet-certificate-authority` чтобы предоставить apiserver-у набор корневых (root) сертификатов для проверки сертификата обслуживания kubelet-ов.
+Для проверки этого соединения используется флаг `--kubelet-certificate-authority` чтобы предоставить apiserver-у набор корневых (root) сертификатов для проверки сертификата обслуживания kubelet-ов.
 
-Если это не возможно, используйте [SSH-тунелирование](#ssh-tunnels) между apiserver-ом и kubelet, если это необходимо во избежании подключения по ненадежной или общедоступной сети.
+Если это не возможно, используйте [SSH-тунелирование](#ssh-tunnels) между apiserver-ом и kubelet, если это необходимо, чтобы избежать подключения по ненадежной или общедоступной сети.
 
-Наконец, Должны быть включены [пудентификация или авторизация Kubelet](/docs/reference/command-line-tools-reference/kubelet-authentication-authorization/) для защиты kubelet API.
+Наконец, должны быть включены [аутентификация или авторизация kubelet](/docs/reference/command-line-tools-reference/kubelet-authentication-authorization/) для защиты kubelet API.
 
 ### apiserver для узлов, pod-ов, и служб
 
-Соединение с apiserver-ом к узлу, pod-у или службе по умолчанию осушествяляется по обычному HTTP-соединению и поэтому не проходят проверку подлиности и не шифрование. Они могут быть запущены по защищенному HTTPS-соединению, добавив префикс `https:` к имени узла, pod-а или службы в URL-адресе API, но они не будут проверять сертификат предоставленный HTTPS endpoint, также не будут предоставлять учетные данные клиента. Таким образом, хотя соединение будет зашифровано, оно не обеспечит никаких гарантий целостности. Эти соединения **are not currently safe** запущенных в ненадежных или общедоступных сетях.
+Соединения с apiserver к узлу, поду или сервису по умолчанию осуществляются по-обычному HTTP-соединению и поэтому не аутентифицируются, и не шифруются. Они могут быть запущены по защищенному HTTPS-соединению, после добавления префикса `https:` к имени узла, пода или сервиса в URL-адресе API, но они не будут проверять сертификат предоставленный HTTPS эндпоинтом, как и не будут предоставлять учетные данные клиента. Таким образом, хотя соединение будет зашифровано, оно не обеспечит никаких гарантий целостности. Эти соединения **в настоящее время небезопасны** для запуска в ненадежных или общедоступных сетях.
 
-### SSH-тунели
+### SSH-туннели
 
-Kubernetes поддерживает SSH-туннели для защиты плоскости управления узлов от путей связи. В этой конфигурации apiserver инициирует SSH-туннель для каждого узла в кластере (подключается к ssh-серверу, прослушивая порт 22) и передает весь трафикпредназначенный для kubelet, узлу, pod-у или службе через тунель. Этот тунель гарантирует, что трафик не выводиться за пределы сети, в которой работает узел.
+Kubernetes поддерживает SSH-туннели для защиты плоскости управления узлов от путей связи. В этой конфигурации apiserver инициирует SSH-туннель для каждого узла в кластере (подключается к ssh-серверу, прослушивая порт 22) и передает весь трафик предназначенный для kubelet, узлу, pod-у или службе через туннель. Этот туннель гарантирует, что трафик не выводится за пределы сети, в которой работает узел.
 
 SSH-туннели в настоящее время устарели, поэтому вы не должны использовать их, если не знаете, что делаете. Служба подключения является заменой этого канала связи.
 
@@ -65,6 +65,6 @@ SSH-туннели в настоящее время устарели, поэто
 
 {{< feature-state for_k8s_version="v1.18" state="beta" >}}
 
-В качестве замены SSH-туннелям, служба подключения обеспечивает уровень полномочие TCP для плоскости управления кластерной связи. Служба подключения состоит из двух частей: сервер подключения в сети плоскости управления и агентов подключения в сети узлов. Агенты службы подключения инициируют подключения к серверу подключения и поддерживают сетевое подключение. После включения службы подключения, весь трафик с плоскости управления на узлы проходит через эти соединения.
+В качестве замены SSH-туннелям, служба подключения обеспечивает уровень полномочия TCP для плоскости управления кластерной связи. Служба подключения состоит из двух частей: сервер подключения к сети плоскости управления и агентов подключения в сети узлов. Агенты службы подключения инициируют подключения к серверу подключения и поддерживают сетевое подключение. После включения службы подключения, весь трафик с плоскости управления на узлы проходит через эти соединения.
 
-Следуйте инструкциям [Задача службы подключения](/docs/tasks/extend-kubernetes/setup-konnectivity/) чтобы настроить службу подключения в кластере.
+Следуйте инструкциям [Задача службы подключения,](/docs/tasks/extend-kubernetes/setup-konnectivity/) чтобы настроить службу подключения в кластере.
diff --git a/content/ru/docs/concepts/architecture/controller.md b/content/ru/docs/concepts/architecture/controller.md
index c47fcaed95..e46fbb022b 100644
--- a/content/ru/docs/concepts/architecture/controller.md
+++ b/content/ru/docs/concepts/architecture/controller.md
@@ -10,8 +10,8 @@ weight: 30
 
 Вот один из примеров контура управления: термостат в помещении.
 
-Когда вы устанавливаете температуру, это говорит термостату о вашем  *желаемом состоянии*. Фактическая температура в помещении - это 
-*текущее состояние*. Термостат действует так, чтобы приблизить текущее состояние к елаемому состоянию, путем включения или выключения оборудования.
+Когда вы устанавливаете температуру, это говорит термостату о вашем *желаемом состоянии*. Фактическая температура в помещении - это 
+*текущее состояние*. Термостат действует так, чтобы приблизить текущее состояние к желаемому состоянию, путем включения или выключения оборудования.
 
 {{< glossary_definition term_id="controller" length="short">}}
 
@@ -27,7 +27,7 @@ weight: 30
 имеют поле спецификации, которое представляет желаемое состояние. Контроллер (ы) для этого ресурса несут ответственность за приближение текущего состояния к желаемому состоянию
 
 Контроллер может выполнить это действие сам; чаще всего в Kubernetes,
-контроллер будет отправляет сообщения на 
+контроллер отправляет сообщения на 
 {{< glossary_tooltip text="сервер API" term_id="kube-apiserver" >}} которые имеют
 полезные побочные эффекты. Пример этого вы можете увидеть ниже.
 
@@ -40,19 +40,19 @@ weight: 30
 Контроллер {{< glossary_tooltip term_id="job" >}} является примером встроенного контроллера Kubernetes. Встроенные контроллеры управляют состоянием, взаимодействуя с кластером сервера API.
 
 Задание - это ресурс Kubernetes, который запускает
-{{< glossary_tooltip term_id="pod" >}}, или возможно несколько Pod-ов, которые выполняют задание и затем останавливаются.
+{{< glossary_tooltip term_id="pod" >}}, или возможно несколько Pod-ов, выполняющих задачу и затем останавливающихся.
 
 (После [планирования](/docs/concepts/scheduling-eviction/), Pod объекты становятся частью желаемого состояния для kubelet).
 
-Когда контроллер задания видить новую задачу, он убеждается что где-то в вашем кластере kubelet-ы на множестве узлов запускают нужное количество Pod-ов для выполнения работы.
-Контроллер задания сам по себе не запускает никакие Pod-ы или контейнеры. Вместо этого контроллер задания Iсообщает серверу API о создании или удалении Pod-ов.
+Когда контроллер задания видит новую задачу, он убеждается что где-то в вашем кластере kubelet-ы на множестве узлов запускают нужное количество Pod-ов для выполнения работы.
+Контроллер задания сам по себе не запускает никакие Pod-ы или контейнеры. Вместо этого контроллер задания сообщает серверу API о создании или удалении Pod-ов.
 Другие компоненты в 
 {{< glossary_tooltip text="плоскости управления" term_id="control-plane" >}}
-действуют на основе информации (имеются ли новые заплонированные Pod-ы для запуска), и в итоге работка заверщается.
+действуют на основе информации (имеются ли новые запланированные Pod-ы для запуска), и в итоге работа завершается.
 
-После того, как вы создадите новое задание, желаемое состояние для этого задания будет завершено. Контроллер задания приближает текущее состояние этого задания к желаемому состоянию: создает Pod-ы, которые выполняют работу, которую вы хотели для этого задания, чтобы задание было ближе к завершению.
+После того как вы создадите новое задание, желаемое состояние для этого задания будет завершено. Контроллер задания приближает текущее состояние этой задачи к желаемому состоянию: создает Pod-ы, выполняющие работу, которую вы хотели для этой задачи, чтобы задание было ближе к завершению.
 
-Контроллеры  также обровляют объекты которые их настраивают.
+Контроллеры также обновляют объекты которые их настраивают.
 Например: как только работа выполнена для задания, контроллер задания обновляет этот объект задание, чтобы пометить его как `Завершенный`.
 
 (Это немного похоже на то, как некоторые термостаты выключают свет, чтобы указать, что теперь ваша комната имеет установленную вами температуру).
@@ -62,25 +62,24 @@ weight: 30
 В отличие от Задания, некоторым контроллерам нужно вносить изменения в вещи за пределами вашего кластера.
 
 Например, если вы используете контур управления, чтобы убедиться, что в вашем кластере достаточно {{< glossary_tooltip text="Узлов" term_id="node" >}},
-тогда этому контроллеру нужно что-то вне текущего кластера, чтобы при необъодимости установить новые узлы.
+тогда этому контроллеру нужно что-то вне текущего кластера, чтобы при необходимости запустить новые узлы.
 
 Контроллеры, которые взаимодействуют с внешним состоянием, находят свое желаемое состояние с сервера API, а затем напрямую взаимодействуют с внешней системой, чтобы приблизить текущее состояние.
 
-(На самом деле существует [контроллер](https://github.com/kubernetes/autoscaler/)
-, который горизонтально маштабирует узла в вашем кластере.)
+(На самом деле существует [контроллер](https://github.com/kubernetes/autoscaler/), который горизонтально масштабирует узлы в вашем кластере.)
 
 Важным моментом здесь является то, что контроллер вносит некоторые изменения, чтобы вызвать желаемое состояние, а затем сообщает текущее состояние обратно на сервер API вашего кластера. Другие контуры управления могут наблюдать за этими отчетными данными и предпринимать собственные действия.
 
-В примере с термостатом, если в помещении очень холодно, тогда другой контроллер может также включить обогреватель для защиты от замерзания. В кластерах  Kubernetes, плоскость управления косвенно работает с инструментами управления IP-адресами,службами хранения данных, API облочных провайдеров и другими службами для релизации
+В примере с термостатом, если в помещении очень холодно, тогда другой контроллер может также включить обогреватель для защиты от замерзания. В кластерах Kubernetes, плоскость управления косвенно работает с инструментами управления IP-адресами, службами хранения данных, API облачных провайдеров и другими службами для реализации
 [расширения Kubernetes](/docs/concepts/extend-kubernetes/).
 
 ## Желаемое против текущего состояния {#desired-vs-current}
 
-Kubernetes использует систему вида cloud-native и способен справлятся с постоянными изменениями.
+Kubernetes использует систему вида cloud-native и способен справляться с постоянными изменениями.
 
-Ваш кластер может изменяться в любой по мере выполнения работы и контуры управления автоматически устранают сбой. Это означает, что потенциально Ваш кластер никогда не достигнет стабильного состояния.
+Ваш кластер может изменяться в любой по мере выполнения работы и контуры управления автоматически устраняют сбой. Это означает, что потенциально Ваш кластер никогда не достигнет стабильного состояния.
 
-Пока контроллеры вашего кластера работают и могут вносить полезные изменения, не имеет  значения, является ли общее состояние стабильным или нет.
+Пока контроллеры вашего кластера работают и могут вносить полезные изменения, не имеет значения, является ли общее состояние стабильным или нет.
 
 ## Дизайн
 
@@ -91,7 +90,7 @@ Kubernetes использует систему вида cloud-native и спос
 {{< note >}}
 Существует несколько контроллеров, которые создают или обновляют один и тот же тип объекта. За кулисами контроллеры Kubernetes следят за тем, чтобы обращать внимание только на ресурсы, связанные с их контролирующим ресурсом.
 
-Например, у вас могут быть развертывания и задания; они оба создают Pod-ы. Контроллер заданий не удаляет Pod-ы созданные вашим развертиыванием, потому что имеется информационные ({{< glossary_tooltip term_id="label" text="метки" >}})
+Например, у вас могут быть развертывания и задания; они оба создают Pod-ы. Контроллер заданий не удаляет Pod-ы созданные вашим развертыванием, потому что имеется информационные ({{< glossary_tooltip term_id="label" text="метки" >}})
 которые могут быть использованы контроллерами тем самым показывая отличие Pod-ов.
 {{< /note >}}
 
@@ -103,7 +102,7 @@ Kubernetes поставляется с набором встроенных ко
 Kubernetes позволяет вам запускать устойчивую плоскость управления, так что в случае отказа одного из встроенных контроллеров работу берет на себя другая часть плоскости управления.
 
 Вы можете найти контроллеры, которые работают вне плоскости управления, чтобы расширить Kubernetes.
-Или, если вы хотите, можете написать новый контроллер самостоятельно. Вы можете запустить свой собственный контроллер виде наборов Pod-ов,
+Или, если вы хотите, можете написать новый контроллер самостоятельно. Вы можете запустить свой собственный контроллер в виде наборов Pod-ов,
 или внешнее в Kubernetes. Что подойдет лучше всего, будет зависеть от того, что делает этот конкретный контроллер.
 
 
diff --git a/content/ru/docs/concepts/architecture/garbage-collection.md b/content/ru/docs/concepts/architecture/garbage-collection.md
index f7ded8b44e..5c7a83c392 100644
--- a/content/ru/docs/concepts/architecture/garbage-collection.md
+++ b/content/ru/docs/concepts/architecture/garbage-collection.md
@@ -12,7 +12,7 @@ weight: 50
   * [Объекты без ссылок на владельца Objects](#owners-dependents)
   * [Не используемые контейнеры и образы контейнеров](#containers-images)
   * [Dynamically provisioned PersistentVolumes with a StorageClass reclaim policy of Delete](/docs/concepts/storage/persistent-volumes/#delete)
-  * [Устаревшие или просроченные запросы подписания сертификатов (CSR)](/reference/access-authn-authz/certificate-signing-requests/#request-signing-process)
+  * [Устаревшие или просроченные запросы подписания сертификатов (CSR)](/docs/reference/access-authn-authz/certificate-signing-requests/#request-signing-process)
   * {{<glossary_tooltip text="Nodes" term_id="node">}} удалено в следующих сценариях:
     * В облаке, когда кластер использует [диспетчер облачных контроллеров](/docs/concepts/architecture/cloud-controller/)
     * Локально когда кластер использует дополнение, аналогичное диспетчер облачных контроллеров
@@ -23,7 +23,7 @@ weight: 50
 Многие объекты в Kubernetes ссылаются друг на друга через [*ссылки владельцев*](/docs/concepts/overview/working-with-objects/owners-dependents/). 
 Ссылки владельцев сообщают плоскости управления какие объекты зависят от других.
 Kubernetes использует ссылки владельцев, чтобы предоставить плоскости управления и другим API
-клиентам, возможность очистить связанные ресурсы передудалением объекта. В большинстве случаев, Kubernetes автоматический управляет ссылками владельцев.
+клиентам, возможность очистить связанные ресурсы перед удалением объекта. В большинстве случаев, Kubernetes автоматический управляет ссылками владельцев.
 
 Владелец отличается от [меток и селекторов](/docs/concepts/overview/working-with-objects/labels/)
 которые также используют некоторые ресурсы. Например, рассмотрим
@@ -36,15 +36,15 @@ Kubernetes использует ссылки владельцев, чтобы п
 {{< note >}}
 Ссылки на владельцев перекрестных пространств имен запрещены по дизайну.
 Зависимости пространства имен могут указывать на область действия кластера или владельцев пространства имен.
-Владелец пространства имен **должен** быть в том же пространстве имен что и зависимости.
-Если это не возможно, cсылка владельца считается отсутствующей и зависимый объект подлежит удалению, как только будет проверено отсутствие всех владельцев.
+Владелец пространства имен **должен** быть в том же пространстве имен, что и зависимости.
+Если это не возможно, ссылка владельца считается отсутствующей и зависимый объект подлежит удалению, как только будет проверено отсутствие всех владельцев.
 
 Зависимости области действия кластер может указывать только владельцев области действия кластера.
 В версии v1.20+, если зависимость с областью действия кластера указывает на пространство имен как владелец, 
 тогда он рассматривается как имеющий неразрешимую ссылку на владельца и не может быть обработан сборщиком мусора.
 
 В версии v1.20+, если сборщик мусора обнаружит недопустимое перекрестное пространство имен `ownerReference`,
-или зависящие от облости действия кластера `ownerReference` ссылка на тип пространства имен, предупреждающее событие с причиной `OwnerRefInvalidNamespace` и `involvedObject` сообщающеся о не действительной зависимости.
+или зависящие от области действия кластера `ownerReference` ссылка на тип пространства имен, предупреждающее событие с причиной `OwnerRefInvalidNamespace` и `involvedObject` сообщающее о недействительной зависимости.
 Вы можете проверить наличие такого рода событий, выполнив `kubectl get events -A --field-selector=reason=OwnerRefInvalidNamespace`.
 {{< /note >}}
 
@@ -52,22 +52,22 @@ Kubernetes использует ссылки владельцев, чтобы п
 
 Kubernetes проверяет и удаляет объекты, на которые больше нет ссылок владельцев, так же как и pod-ов, оставленных после удаления ReplicaSet. Когда Вы удаляете объект, вы можете контролировать автоматический ли Kubernetes удаляет зависимые объекты автоматически в процессе вызова *каскадного удаления*. Существует два типа каскадного удаления, а именно: 
 
-  * Каскадное удалени Foreground
+  * Каскадное удаление Foreground
   * Каскадное удаление Background
 
 Вы так же можете управлять как и когда сборщик мусора удаляет ресурсы, на которые ссылаются владельцы с помощью Kubernetes {{<glossary_tooltip text="finalizers" term_id="finalizer">}}. 
 
-### Каскадное удалени Foreground {#foreground-deletion}
+### Каскадное удаление Foreground {#foreground-deletion}
 
-В Каскадном удалени Foreground, объект владельца, который вы удаляете, сначало переходить в состояние *в процессе удаления*. В этом состоянии с объектом-владельцем происходить следующее: 
+В Каскадном удалении Foreground, объект владельца, который вы удаляете, сначала переходить в состояние *в процессе удаления*. В этом состоянии с объектом-владельцем происходить следующее: 
 
   * Сервер Kubernetes API устанавливает полю объекта `metadata.deletionTimestamp`
     время, когда объект был помечен для удаления.
   * Сервер Kubernetes API так же устанавливает метку  `metadata.finalizers`для поля
     `foregroundDeletion`. 
-  * Объект остается видимым блогодоря Kubernetes API пока процесс удаления не завершиться
+  * Объект остается видимым благодаря Kubernetes API пока процесс удаления не завершиться
 
-После того, как владелец объекта переходит в состояние прогресса удаления, контроллер удаляет зависимые объекты. После удаления всех зависимых объектов, контроллер удаляет объект владельца. На этом этапе, объект больше не отображается в Kubernetes API. 
+После того как владелец объекта переходит в состояние прогресса удаления, контроллер удаляет зависимые объекты. После удаления всех зависимых объектов, контроллер удаляет объект владельца. На этом этапе, объект больше не отображается в Kubernetes API. 
 
 Во время каскадного удаления foreground, единственным зависимым, которые блокируют удаления владельца, являются те, у кого имеется поле `ownerReference.blockOwnerDeletion=true`.
 Чтобы узнать больше. Смотрите [Использование каскадного удаления foreground](/docs/tasks/administer-cluster/use-cascading-deletion/#use-foreground-cascading-deletion).
@@ -80,16 +80,16 @@ Kubernetes проверяет и удаляет объекты, на котор
 
 ### Осиротевшие зависимости
 
-Когда Kubernetes удаляет владельца объекта, оставшиеся зависимости называются *осиротевшыми* объектами. По умолчанию, Kubernetes удаляет зависимые объекты. Чтобы узнать, как переопределить это повидение смотрите [Удаление объектов владельца и осиротевших зависимостей](/docs/tasks/administer-cluster/use-cascading-deletion/#set-orphan-deletion-policy).
+Когда Kubernetes удаляет владельца объекта, оставшиеся зависимости называются *осиротевшими* объектами. По умолчанию, Kubernetes удаляет зависимые объекты. Чтобы узнать, как переопределить это поведение смотрите [Удаление объектов владельца и осиротевших зависимостей](/docs/tasks/administer-cluster/use-cascading-deletion/#set-orphan-deletion-policy).
 
-## Сбор мусора из неиспользуемых контейнеров и изобробразов {#containers-images}
+## Сбор мусора из неиспользуемых контейнеров и изображений {#containers-images}
 
 {{<glossary_tooltip text="kubelet" term_id="kubelet">}} выполняет сбор мусора для неиспользуемых образов каждые пять минут и для неиспользуемых контейнеров каждую минуту. Вам следует избегать использования внешних инструментов для сборки мусора, так как они могут
 нарушить поведение kubelet и удалить контейнеры, которые должны существовать. 
 
-Чтобы настроить параметры для сборшика мусора для неиспользуемого контейнера и сборки мусора образа, подстройте 
+Чтобы настроить параметры для сборщика мусора для неиспользуемого контейнера и сборки мусора образа, подстройте 
 kubelet использую [конфигурационный файл](/docs/tasks/administer-cluster/kubelet-config-file/)
-и измените параметры, связанные со сборшиком мусора используя тип ресурса
+и измените параметры, связанные со сборщиком мусора используя тип ресурса
 [`KubeletConfiguration`](/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration).
 
 ### Жизненный цикл контейнерных образов Container image lifecycle
@@ -99,19 +99,19 @@ Kubernetes управляет жизненным циклом всех обра
   * `HighThresholdPercent`
   * `LowThresholdPercent`
 
-Использование диска выше настроенного значения `HighThresholdPercent` запускает сборку мусора, которая удаляет образы в порядке основанном на последнем использовании, начиная с самого старого. kubelet удлаяет образы до тех пор, пока использование диска не достигнет значения  `LowThresholdPercent`.
+Использование диска выше настроенного значения `HighThresholdPercent` запускает сборку мусора, которая удаляет образы в порядке основанном на последнем использовании, начиная с самого старого. Kubelet удаляет образы до тех пор, пока использование диска не достигнет значения  `LowThresholdPercent`.
 
 ### Сборщик мусора контейнерных образов {#container-image-garbage-collection}
 
-kubelet собирает не используемые контейнеры на основе следующих переменных, которые вы можете определить: 
+Kubelet собирает не используемые контейнеры на основе следующих переменных, которые вы можете определить: 
 
   * `MinAge`: минимальный возраст, при котором kubelet может начать собирать мусор контейнеров. Отключить, установив значение `0`.
-  * `MaxPerPodContainer`: максимальное количество некативныз контейнеров, которое может быть у каджой пары Pod-ов. Отключить, установив значение меньше чем `0`.
+  * `MaxPerPodContainer`: максимальное количество неактивных контейнеров, которое может быть у каждой пары Pod-ов. Отключить, установив значение меньше чем `0`.
   * `MaxContainers`: максимальное количество не используемых контейнеров, которые могут быть в кластере. Отключить, установив значение меньше чем `0`. 
 
 В дополнение к этим переменным, kubelet собирает неопознанные и удаленные контейнеры, обычно начиная с самого старого. 
 
-`MaxPerPodContainer` и `MaxContainer` могут потенциально конфликтовать друг с другом в ситуациях, когда требуется максимальное количество контейнеров в Pod-е (`MaxPerPodContainer`) выйдет за пределы допустимого общего количества глобальных не используемых контейнеров (`MaxContainers`). В этой ситуации kubelet регулирует `MaxPodPerContainer` для устранения конфликта. наихудшим сценарием было бы понизить `MaxPerPodContainer` да `1` и изгнать самые старые контейнеры.
+`MaxPerPodContainer` и `MaxContainer` могут потенциально конфликтовать друг с другом в ситуациях, когда требуется максимальное количество контейнеров в Pod-е (`MaxPerPodContainer`) выйдет за пределы допустимого общего количества глобальных не используемых контейнеров (`MaxContainers`). В этой ситуации kubelet регулирует `MaxPodPerContainer` для устранения конфликта. Наихудшим сценарием было бы понизить `MaxPerPodContainer` да `1` и изгнать самые старые контейнеры.
 Кроме того, владельцы контейнеров в pod-е могут быть удалены, как только они становятся старше чем `MinAge`.
 
 {{<note>}}
@@ -120,7 +120,7 @@ Kubelet собирает мусор только у контейнеров, ко
 
 ## Настройка сборщик мусора {#configuring-gc}
 
-Вы можете настроить сборку мусора ресурсов, настроив параметры, специфичные для контроллеров, управляющих этими ресурсами. В последующих страницах показанно, как настроить сборку мусора:
+Вы можете настроить сборку мусора ресурсов, настроив параметры, специфичные для контроллеров, управляющих этими ресурсами. В последующих страницах показано, как настроить сборку мусора:
 
   * [Настройка каскадного удаления объектов Kubernetes](/docs/tasks/administer-cluster/use-cascading-deletion/)
   * [Настройка очистки завершенных заданий](/docs/concepts/workloads/controllers/ttlafterfinished/)
diff --git a/content/ru/docs/concepts/architecture/nodes.md b/content/ru/docs/concepts/architecture/nodes.md
index 075c3140f5..613155f012 100644
--- a/content/ru/docs/concepts/architecture/nodes.md
+++ b/content/ru/docs/concepts/architecture/nodes.md
@@ -32,7 +32,7 @@ Kubernetes запускает ваши приложения, помещая ко
 1. Kubelet на узле саморегистрируется в плоскости управления
 2. Вы или другой пользователь вручную добавляете объект Узла
 
-После того, как вы создадите объект Узла или kubelet на узле самозарегистируется,
+После того как вы создадите объект Узла или kubelet на узле самозарегистируется,
 плоскость управления проверяет, является ли новый объект Узла валидным (правильным). Например, если вы
 попробуете создать Узел при помощи следующего JSON манифеста:
 
@@ -50,9 +50,9 @@ Kubernetes запускает ваши приложения, помещая ко
 ```
 
 Kubernetes создает внутри себя объект Узла (представление). Kubernetes проверяет,
-что kubelet зарегистрировался на API сервере, который совпадает с значением поля `metadata.name` Узла.
+что kubelet зарегистрировался на API сервере, который совпадает со значением поля `metadata.name` Узла.
 Если узел здоров (если все необходимые сервисы запущены),
-он имеет право на запуск Пода. В противном случае, этот узел игнорируется для любой активности кластера
+он имеет право на запуск Пода. В противном случае этот узел игнорируется для любой активности кластера
 до тех пор, пока он не станет здоровым.
 
 {{< note >}}
@@ -62,13 +62,13 @@ Kubernetes сохраняет объект для невалидного Узл
 остановить проверку доступности узла.
 {{< /note >}}
 
-Имя объекта Узла дожно быть валидным
+Имя объекта Узла должно быть валидным
 [именем поддомена DNS](/ru/docs/concepts/overview/working-with-objects/names#имена-поддоменов-dns).
 
 ### Саморегистрация Узлов
 
 Когда kubelet флаг `--register-node` имеет значение _true_ (по умолчанию), то kubelet будет пытаться
-зарегистрировать себя на API сервере. Это наиболее предпочтительная модель, используемая большиством дистрибутивов.
+зарегистрировать себя на API сервере. Это наиболее предпочтительная модель, используемая большинством дистрибутивов.
 
 Для саморегистрации kubelet запускается со следующими опциями:
 
@@ -94,16 +94,16 @@ kubelet'ы имеют право только создавать/изменят
 Когда вы хотите создать объекты Узла вручную, установите kubelet флаг `--register-node=false`.
 
 Вы можете изменять объекты Узла независимо от настройки  `--register-node`.
-Например, вы можете установить метки на существующем Узле или пометить его неназначаемым.
+Например, вы можете установить метки на существующем Узле или пометить его не назначаемым.
 
 Вы можете использовать метки на Узлах в сочетании с селекторами узла на Подах для управления планированием.
-Например, вы можете ограничить Под иметь право на запуск только на группе доступных узлов.
+Например, вы можете ограничить Под, иметь право на запуск только на группе доступных узлов.
 
-Маркировка узла как неназначаемого предотвращает размещение планировщиком новых подов на этом Узле,
+Маркировка узла как не назначаемого предотвращает размещение планировщиком новых подов на этом Узле,
 но не влияет на существующие Поды на Узле. Это полезно в качестве
 подготовительного шага перед перезагрузкой узла или другим обслуживанием.
 
-Чтобы отметить Узел неназначемым, выполните:
+Чтобы отметить Узел не назначаемым, выполните:
 
 ```shell
 kubectl cordon $NODENAME
@@ -111,7 +111,7 @@ kubectl cordon $NODENAME
 
 {{< note >}}
 Поды, являющиеся частью {{< glossary_tooltip term_id="daemonset" >}} допускают
-запуск на неназначаемом Узле. DaemonSets обычно обеспечивает локальные сервисы узла,
+запуск на не назначаемом Узле. DaemonSets обычно обеспечивает локальные сервисы узла,
 которые должны запускаться на Узле, даже если узел вытесняется для запуска приложений.
 {{< /note >}}
 
@@ -157,7 +157,7 @@ kubectl describe node <insert-node-name-here>
 {{< note >}}
 Если вы используете инструменты командной строки для вывода сведений об блокированном узле,
 то Условие включает `SchedulingDisabled`. `SchedulingDisabled` не является Условием в Kubernetes API;
-вместо этого блокированные узлы помечены как Неназначемые в их спецификации.
+вместо этого блокированные узлы помечены как Не назначаемые в их спецификации.
 {{< /note >}}
 
 Состояние узла представлено в виде JSON объекта. Например, следующая структура описывает здоровый узел:
@@ -203,8 +203,8 @@ kubectl describe node <insert-node-name-here>
 Описывает ресурсы, доступные на узле: CPU, память и максимальное количество подов,
 которые могут быть запланированы на узле.
 
-Поля в блоке capasity указывают общее количество ресурсов, которые есть на Узле.
-Блок allocatable указывает количество ресурсовна Узле,
+Поля в блоке capacity указывают общее количество ресурсов, которые есть на Узле.
+Блок allocatable указывает количество ресурсов на Узле,
 которые доступны для использования обычными Подами.
 
 Вы можете прочитать больше о емкости и выделяемых ресурсах, изучая, как [зарезервировать вычислительные ресурсы](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable) на Узле.
@@ -212,7 +212,7 @@ kubectl describe node <insert-node-name-here>
 ### Информация (Info)
 
 Описывает общую информацию об узле, такую как версия ядра, версия Kubernetes (версии kubelet и kube-proxy), версия Docker (если используется) и название ОС.
-Эта информация соберается Kubelet'ом на узле.
+Эта информация собирается Kubelet'ом на узле.
 
 ### Контроллер узла
 
@@ -247,16 +247,16 @@ ConditionUnknown, когда узел становится недоступны
 [Lease объект](/docs/reference/generated/kubernetes-api/{{< latest-version >}}/#lease-v1-coordination-k8s-io).
 Каждый узел имеет связанный с ним Lease объект в `kube-node-lease`
 {{< glossary_tooltip term_id="namespace" text="namespace">}}.
-Lease - это легковестный ресурс, который улучшает производительность
+Lease - это легковесный ресурс, который улучшает производительность
 сердцебиений узла при масштабировании кластера.
 
-Kubelet отвечает за создание и обновление `NodeStatus` и  Lease объекта.
+Kubelet отвечает за создание и обновление `NodeStatus` и Lease объекта.
 
 - Kubelet обновляет `NodeStatus` либо когда происходит изменение статуса,
-  либо если в течение настронного интервала обновления не было. По умолчанию
+  либо если в течение настроенного интервала обновления не было. По умолчанию
   интервал для обновлений `NodeStatus` составляет 5 минут (намного больше,
   чем 40-секундный стандартный таймаут для недоступных узлов).
-- Kubelet созадет и затем обновляет свой Lease объект каждый 10 секунд
+- Kubelet создает и затем обновляет свой Lease объект каждый 10 секунд
   (интервал обновления по умолчанию). Lease обновления происходят независимо от
   `NodeStatus` обновлений. Если обновление Lease завершается неудачно,
   kubelet повторяет попытку с экспоненциальным откатом, начинающимся с 200 миллисекунд и ограниченным 7 секундами.
@@ -265,7 +265,7 @@ Kubelet отвечает за создание и обновление `NodeStat
 
 В большинстве случаев контроллер узла ограничивает скорость выселения
 до `--node-eviction-rate` (по умолчанию 0,1) в секунду, что означает,
-что он не выселяет поды с узлов быстрее чем c 1 узела в 10 секунд.
+что он не выселяет поды с узлов быстрее чем с одного узла в 10 секунд.
 
 Поведение выселения узла изменяется, когда узел в текущей зоне доступности
 становится нездоровым. Контроллер узла проверяет, какой процент узлов в зоне
@@ -288,26 +288,26 @@ Kubelet отвечает за создание и обновление `NodeStat
 выселяет поды с нормальной скоростью `--node-eviction-rate`. Крайний случай - когда все зоны
 полностью нездоровы (т.е. в кластере нет здоровых узлов).  В таком случае
 контроллер узла предполагает, что существует некоторая проблема с подключением к мастеру,
-и останавеливает все выселения, пока какое-нибудь подключение не будет восстановлено.
+и останавливает все выселения, пока какое-нибудь подключение не будет восстановлено.
 
 Контроллер узла также отвечает за выселение подов, запущенных на узлах с
 `NoExecute` ограничениями, за исключением тех подов, которые сопротивляются этим ограничениям.
 Контроллер узла так же добавляет {{< glossary_tooltip text="ограничения" term_id="taint" >}}
-соотвествующие проблемам узла, таким как узел недоступен или не готов. Это означает,
+соответствующие проблемам узла, таким как узел недоступен или не готов. Это означает,
 что планировщик не будет размещать поды на нездоровых узлах.
 
 {{< caution >}}
-`kubectl cordon` помечает узел как 'неназначемый', что имеет побочный эфект от контроллера сервисов,
+`kubectl cordon` помечает узел как 'не назначаемый', что имеет побочный эффект от контроллера сервисов,
 удаляющего узел из любых списков целей LoadBalancer узла, на которые он ранее имел право,
-эффектино убирая входящий трафик балансировщика нагрузки с блокированного узла(ов).
+эффективно убирая входящий трафик балансировщика нагрузки с блокированного узла(ов).
 {{< /caution >}}
 
 ### Емкость узла
 
 Объекты узла отслеживают информацию о емкости ресурсов узла (например,
 объем доступной памяти и количество CPU).
-Узлы, которые [самостоятельно зарегистировались](#саморегистрация-узлов) сообщают
-о свое емкости во время регистрации. Если вы [вручную](#ручное-администрирование-узла)
+Узлы, которые [самостоятельно зарегистрировались](#саморегистрация-узлов), сообщают
+о своей емкости во время регистрации. Если вы [вручную](#ручное-администрирование-узла)
 добавляете узел, то вам нужно задать информацию о емкости узла при его добавлении.
 
 {{< glossary_tooltip text="Планировщик" term_id="kube-scheduler" >}} Kubernetes гарантирует,
@@ -318,7 +318,7 @@ Kubelet отвечает за создание и обновление `NodeStat
 а также исключает любые процессы, запущенные вне контроля kubelet.
 
 {{< note >}}
-Если вы явно хотите зарезервировать ресурсы для процессов, не связанныз с Подами, смотрите раздел
+Если вы явно хотите зарезервировать ресурсы для процессов, не связанных с Подами, смотрите раздел
 [зарезервировать ресурсы для системных демонов](/docs/tasks/administer-cluster/reserve-compute-resources/#system-reserved).
 {{< /note >}}
 
@@ -339,4 +339,4 @@ Kubelet отвечает за создание и обновление `NodeStat
 * Подробнее про [Узлы](https://git.k8s.io/community/contributors/design-proposals/architecture/architecture.md#the-kubernetes-node)
  of the architecture design document.
 * Подробнее про [ограничения и допуски](/docs/concepts/configuration/taint-and-toleration/).
-* Подробнее про [автомаштабирование кластера](/docs/tasks/administer-cluster/cluster-management/#cluster-autoscaling).
+* Подробнее про [авто масштабирование кластера](/docs/tasks/administer-cluster/cluster-management/#cluster-autoscaling).
diff --git a/content/ru/docs/concepts/cluster-administration/_index.md b/content/ru/docs/concepts/cluster-administration/_index.md
index b596e111f3..77f610bf18 100644
--- a/content/ru/docs/concepts/cluster-administration/_index.md
+++ b/content/ru/docs/concepts/cluster-administration/_index.md
@@ -11,7 +11,7 @@ no_list: true
 ---
 
 <!-- overview -->
-Обзор администрирования кластера предназначен для всех, кто создает или администрирует кластер Kubernetes. Это предполагает некоторое знакомство с основными [концепциями] (/docs/concepts/) Kubernetes. 
+Обзор администрирования кластера предназначен для всех, кто создает или администрирует кластер Kubernetes. Это предполагает некоторое знакомство с основными [концепциями](/docs/concepts/) Kubernetes. 
 
 
 <!-- body -->
@@ -19,19 +19,19 @@ no_list: true
 
 См. Руководства в разделе [настройка](/docs/setup/) для получения примеров того, как планировать, устанавливать и настраивать кластеры Kubernetes. Решения, перечисленные в этой статье, называются *distros*.
 
-   {{< note  >}}
+   {{< note >}}
    не все дистрибутивы активно поддерживаются. Выбирайте дистрибутивы, протестированные с последней версией Kubernetes.
    {{< /note >}}
 
 Прежде чем выбрать руководство, вот некоторые соображения:
 
- - Вы хотите опробовать Kubernetes на вашем компьюторе или собрать многоузловой кластер высокой доступности? Выбирайте дистрибутивы, наиболее подходящие для ваших нужд.
- - будете ли вы использовать **размещенный кластер Kubernetes**, такой как [Google Kubernetes Engine](https://cloud.google.com/kubernetes-engine/) или **разместите собственный кластер**?
- - Будет ли ваш кластер **в помещений** или **в облаке (IaaS)**? Kubernetes не поддерживает напрямую гибридные кластеры. Вместо этого вы можете настроить несколько кластеров.
- - **Если вы будете настроаивать Kubernetes в помещений (локально)**, подумайте, какая [сетевая модель](/docs/concepts/cluster-administration/networking/) подходит лучше всего.
- - Будете ли вы запускать Kubernetes на **оборудований "bare metal"** или на **вирутальных машинах (VMs)**?
- - Вы хотите **запустить кластер** или планируете **активно разворачивать код проекта Kubernetes**? В последнем случае выберите активно разрабатываемый дистрибутив. Некоторые дистрибутивы используют только двоичные выпуски, но предлагают болле широкий выбор.
- - Ознакомьтесь с [компонентами](/docs/concepts/overview/components/) необходивые для запуска кластера.
+ - Вы хотите опробовать Kubernetes на вашем компьютере или собрать много узловой кластер высокой доступности? Выбирайте дистрибутивы, наиболее подходящие для ваших нужд.
+ - Будете ли вы использовать **размещенный кластер Kubernetes**, такой, как [Google Kubernetes Engine](https://cloud.google.com/kubernetes-engine/) или **разместите собственный кластер**?
+ - Будет ли ваш кластер **в помещении** или **в облаке (IaaS)**? Kubernetes не поддерживает напрямую гибридные кластеры. Вместо этого вы можете настроить несколько кластеров.
+ - **Если вы будете настраивать Kubernetes в помещении (локально)**, подумайте, какая [сетевая модель](/docs/concepts/cluster-administration/networking/) подходит лучше всего.
+ - Будете ли вы запускать Kubernetes на **оборудований "bare metal"** или на **виртуальных машинах (VMs)**?
+ - Вы хотите **запустить кластер** или планируете **активно разворачивать код проекта Kubernetes**? В последнем случае выберите активно разрабатываемый дистрибутив. Некоторые дистрибутивы используют только двоичные выпуски, но предлагают более широкий выбор.
+ - Ознакомьтесь с [компонентами](/docs/concepts/overview/components/) необходимые для запуска кластера.
 
 
 ## Управление кластером
@@ -54,7 +54,7 @@ no_list: true
 
 * [Использование контроллеров допуска](/docs/reference/access-authn-authz/admission-controllers/) explains plug-ins which intercepts requests to the Kubernetes API server after authentication and authorization.
 
-* [Использование Sysctls в кластере Kubernetes](/docs/tasks/administer-cluster/sysctl-cluster/) описывает администратору, как использовать sysctlинструмент командной строки для установки параметров ядра.
+* [Использование Sysctls в кластере Kubernetes](/docs/tasks/administer-cluster/sysctl-cluster/) описывает администратору, как использовать sysctl инструмент командной строки для установки параметров ядра.
 
 * [Аудит](/docs/tasks/debug-application-cluster/audit/) описывает, как взаимодействовать с журналами аудита Kubernetes.
 
diff --git a/content/ru/docs/concepts/cluster-administration/addons.md b/content/ru/docs/concepts/cluster-administration/addons.md
index 82c8ab1695..5c6d6446b6 100644
--- a/content/ru/docs/concepts/cluster-administration/addons.md
+++ b/content/ru/docs/concepts/cluster-administration/addons.md
@@ -13,34 +13,33 @@ content_type: concept
 
 <!-- body -->
 
-## Сеть и сетевыя политика
+## Сеть и сетевая политика
 
 * [ACI](https://www.github.com/noironetworks/aci-containers) обеспечивает интегрированную сеть контейнеров и сетевую безопасность с помощью Cisco ACI.
 * [Antrea](https://antrea.io/) работает на уровне 3, обеспечивая сетевые службы и службы безопасности для Kubernetes, используя Open vSwitch в качестве уровня сетевых данных.
 * [Calico](https://docs.projectcalico.org/latest/introduction/) Calico поддерживает гибкий набор сетевых опций, поэтому вы можете выбрать наиболее эффективный вариант для вашей ситуации, включая сети без оверлея и оверлейные сети, с или без BGP. Calico использует тот же механизм для обеспечения соблюдения сетевой политики для хостов, модулей и (при использовании Istio и Envoy) приложений на уровне сервисной сети (mesh layer).
-* [Canal](https://github.com/tigera/canal/tree/master/k8s-install) объединяет Flannel и Calico, обеспечивая сеть и сетевую политик.
+* [Canal](https://github.com/tigera/canal/tree/master/k8s-install) объединяет Flannel и Calico, обеспечивая сеть и сетевую политику.
 * [Cilium](https://github.com/cilium/cilium) - это плагин сети L3 и сетевой политики, который может прозрачно применять политики HTTP/API/L7. Поддерживаются как режим маршрутизации, так и режим наложения/инкапсуляции, и он может работать поверх других подключаемых модулей CNI.
 * [CNI-Genie](https://github.com/Huawei-PaaS/CNI-Genie) позволяет Kubernetes легко подключаться к выбору плагинов CNI, таких как Calico, Canal, Flannel, Romana или Weave.
-* [Contiv](https://contiv.github.io) предоставляет настраиваемую сеть (собственный L3 с использованием BGP, слоя с использованием vxlan, классический L2 и Cisco-SDN/ACI) для различных вариантов использования и обширную структуру политик. Проект Contiv имеет полностью [открытый исходный код](https://github.com/contiv). [Установка](https://github.com/contiv/install) обеспечивает варианты на основе как kubeadm так и без kubeadm.
-* [Contrail](https://www.juniper.net/us/en/products-services/sdn/contrail/contrail-networking/), основан на [Tungsten Fabric](https://tungsten.io), представляет собой платформу для виртуализации мультиоблачных сетей с открытым исходным кодом и управления политиками. Contrail и Tungsten Fabric are интегрированы с системами оркестровки, такими как Kubernetes, OpenShift, OpenStack и Mesos, и обеспечивают режимы изоляции для виртуальных машин, контейнеров/pod-ов и рабочих нагрузок без операционной системы.
+* [Contrail](https://www.juniper.net/us/en/products-services/sdn/contrail/contrail-networking/), основан на [Tungsten Fabric](https://tungsten.io), представляет собой платформу для виртуализации мультиоблачных сетей с открытым исходным кодом и управления политиками. Contrail и Tungsten Fabric интегрированы с системами оркестрации, такими как Kubernetes, OpenShift, OpenStack и Mesos, и обеспечивают режимы изоляции для виртуальных машин, контейнеров/подов и рабочих нагрузок без операционной системы.
 * [Flannel](https://github.com/flannel-io/flannel#deploying-flannel-manually) - это поставщик оверлейной сети, который можно использовать с Kubernetes.
-* [Knitter](https://github.com/ZTE/Knitter/) - это плагин для поддержки нескольких сетевых интерфейсов Kubernetes pod-ов.
-* [Multus](https://github.com/Intel-Corp/multus-cni) - это плагин Multi для поддержки нексольких сетейв Kubernetes для поддержки всех CNI плагинов (наприме: Calico, Cilium, Contiv, Flannel), в дополнение к рабочим нагрузкам основанных на SRIOV, DPDK, OVS-DPDK и VPP в Kubernetes.
-* [OVN-Kubernetes](https://github.com/ovn-org/ovn-kubernetes/) - это сетевой провайдер для Kubernetes основанный на [OVN (Open Virtual Network)](https://github.com/ovn-org/ovn/), реализация виртуалной сети a появившейся в результате проекта Open vSwitch (OVS). OVN-Kubernetes обеспечивает сетевую реализацию на основе наложения для Kubernetes, включая реализацию балансировки нагрузки и сетевой политики на основе OVS.
-* [OVN4NFV-K8S-Plugin](https://github.com/opnfv/ovn4nfv-k8s-plugin) - это подключаемый модуль контроллера CNI на основе OVN для обеспечения облачной цепочки сервисных функций (SFC), несколько наложеных сетей OVN, динамического создания подсети, динамического создания виртуальных сетей, сети поставщика VLAN, сети прямого поставщика и подключаемого к другим Multi Сетевые плагины, идеально подходящие для облачных рабочих нагрузок на периферии в сети с несколькими кластерами.
+* [Knitter](https://github.com/ZTE/Knitter/) - это плагин для поддержки нескольких сетевых интерфейсов Kubernetes подов.
+* [Multus](https://github.com/k8snetworkplumbingwg/multus-cni) - это плагин Multi для работы с несколькими сетями в Kubernetes, который поддерживает большинство самых популярных [CNI](https://github.com/containernetworking/cni) (например: Calico, Cilium, Contiv, Flannel), в дополнение к рабочим нагрузкам основанных на SRIOV, DPDK, OVS-DPDK и VPP в Kubernetes.
+* [OVN-Kubernetes](https://github.com/ovn-org/ovn-kubernetes/) - это сетевой провайдер для Kubernetes основанный на [OVN (Open Virtual Network)](https://github.com/ovn-org/ovn/), реализация виртуальной сети, появившийся в результате проекта Open vSwitch (OVS). OVN-Kubernetes обеспечивает сетевую реализацию на основе наложения для Kubernetes, включая реализацию балансировки нагрузки и сетевой политики на основе OVS.
+* [OVN4NFV-K8S-Plugin](https://github.com/opnfv/ovn4nfv-k8s-plugin) - это подключаемый модуль контроллера CNI на основе OVN для обеспечения облачной цепочки сервисных функций (SFC), несколько наложенных сетей OVN, динамического создания подсети, динамического создания виртуальных сетей, сети поставщика VLAN, сети прямого поставщика и подключаемого к другим Multi Сетевые плагины, идеально подходящие для облачных рабочих нагрузок на периферии в сети с несколькими кластерами.
 * [NSX-T](https://docs.vmware.com/en/VMware-NSX-T/2.0/nsxt_20_ncp_kubernetes.pdf) плагин для контейнера (NCP) обеспечивающий интеграцию между VMware NSX-T и контейнерами оркестраторов, таких как Kubernetes, а так же интеграцию между NSX-T и контейнеров на основе платформы CaaS/PaaS, таких как Pivotal Container Service (PKS) и OpenShift.
-* [Nuage](https://github.com/nuagenetworks/nuage-kubernetes/blob/v5.1.1-1/docs/kubernetes-1-installation.rst) - эта платформа SDN, которая обеспечивает сетевое взаимодействие на основе политик между Kubernetes Pod-ами и не Kubernetes окружением с отображением и мониторингом безопасности.
-* [Romana](https://romana.io) - это сетевое решение уровня 3 для pod сетей, которое также поддерживает  [NetworkPolicy API](/docs/concepts/services-networking/network-policies/). Подробности установки Kubeadm доступны [здесь](https://github.com/romana/romana/tree/master/containerize).
-* [Weave Net](https://www.weave.works/docs/net/latest/kubernetes/kube-addon/) обеспечивает сетевуюи политику сетей, будет работать в сетевого раздела и не требует внешней базы данных.
+* [Nuage](https://github.com/nuagenetworks/nuage-kubernetes/blob/v5.1.1-1/docs/kubernetes-1-installation.rst) - эта платформа SDN, которая обеспечивает сетевое взаимодействие на основе политик между Kubernetes подами и не Kubernetes окружением, с отображением и мониторингом безопасности.
+* [Romana](https://github.com/romana/romana) - это сетевое решение уровня 3 для сетей подов, которое также поддерживает [NetworkPolicy API](/docs/concepts/services-networking/network-policies/). Подробности установки Kubeadm доступны [здесь](https://github.com/romana/romana/tree/master/containerize).
+* [Weave Net](https://www.weave.works/docs/net/latest/kubernetes/kube-addon/) предоставляет сеть и обеспечивает сетевую политику, будет работать на обеих сторонах сетевого раздела и не требует внешней базы данных.
 
 ## Обнаружение служб
 
-* [CoreDNS](https://coredns.io) - это гибкий, расширяемый DNS-сервер, который может быть [установлен](https://github.com/coredns/deployment/tree/master/kubernetes) в качестве внутрикластерного DNS для pod-ов.
+* [CoreDNS](https://coredns.io) - это гибкий, расширяемый DNS-сервер, который может быть [установлен](https://github.com/coredns/deployment/tree/master/kubernetes) в качестве внутрикластерного DNS для подов.
 
 ## Визуализация и контроль
 
 * [Dashboard](https://github.com/kubernetes/dashboard#kubernetes-dashboard) - это веб-интерфейс панели инструментов для Kubernetes.
-* [Weave Scope](https://www.weave.works/documentation/scope-latest-installing/#k8s) - это инструмент для графической визуализации ваших контейнеров, pod-ов, сервисов и т.д. Используйте его вместе с [учетной записью Weave Cloud](https://cloud.weave.works/) или разместите пользовательский интерфейс самостоятельно.
+* [Weave Scope](https://www.weave.works/documentation/scope-latest-installing/#k8s) - это инструмент для графической визуализации ваших контейнеров, подов, сервисов и т.д. Используйте его вместе с [учетной записью Weave Cloud](https://cloud.weave.works/) или разместите пользовательский интерфейс самостоятельно.
 
 ## Инфраструктура
 
@@ -50,4 +49,4 @@ content_type: concept
 
 В устаревшем каталоге [cluster/addons](https://git.k8s.io/kubernetes/cluster/addons) задокументировано несколько других дополнений.
 
-Ссылки на те, в хорошем состоянии, должны быть здесь. PR приветствуются!
+Ссылки на те, в хорошем состоянии, должны быть здесь. Пул реквесты приветствуются!
diff --git a/content/ru/docs/concepts/overview/kubernetes-api.md b/content/ru/docs/concepts/overview/kubernetes-api.md
index c669cb973a..e9a3debbc3 100644
--- a/content/ru/docs/concepts/overview/kubernetes-api.md
+++ b/content/ru/docs/concepts/overview/kubernetes-api.md
@@ -36,7 +36,7 @@ Kubernetes как таковой состоит из множества комп
 Все детали API документируется с использованием [OpenAPI](https://www.openapis.org/).
 
 Начиная с Kubernetes 1.10, API-сервер Kubernetes основывается на спецификации OpenAPI через конечную точку `/openapi/v2`.
-Нужный формат устанавливается через HTTP-заголовоки:
+Нужный формат устанавливается через HTTP-заголовки:
 
 Заголовок | Возможные значения
 ------ | ---------------
@@ -61,11 +61,11 @@ GET /swagger-2.0.0.pb-v1.gz | GET /openapi/v2 **Accept**: application/com.github
 
 Чтобы упростить удаления полей или изменение ресурсов, Kubernetes поддерживает несколько версий API, каждая из которых доступна по собственному пути, например, `/api/v1` или `/apis/extensions/v1beta1`.
 
-Мы выбрали версионирование API, а не конкретных ресурсов или полей, чтобы API отражал четкое и согласованное представление о системных ресурсах и их поведении, а также, чтобы разграничивать API, которые уже не поддерживаются   и/или находятся в экспериментальной стадии. Схемы сериализации JSON и Protobuf следуют одним и тем же правилам по внесению изменений в схему, поэтому описание ниже охватывают оба эти формата.
+Мы выбрали версионирование API, а не конкретных ресурсов или полей, чтобы API отражал четкое и согласованное представление о системных ресурсах и их поведении, а также, чтобы разграничивать API, которые уже не поддерживаются и/или находятся в экспериментальной стадии. Схемы сериализации JSON и Protobuf следуют одним и тем же правилам по внесению изменений в схему, поэтому описание ниже охватывают оба эти формата.
 
-Обратите внимание, что версиоирование API и программное обеспечение косвенно связаны друг с другом. [Предложение по версионированию API и новых выпусков](https://git.k8s.io/community/contributors/design-proposals/release/versioning.md) описывает, как связаны между собой версии API с версиями программного обеспечения.
+Обратите внимание, что версионирование API и программное обеспечение косвенно связаны друг с другом. [Предложение по версионированию API и новых выпусков](https://git.k8s.io/community/contributors/design-proposals/release/versioning.md) описывает, как связаны между собой версии API с версиями программного обеспечения.
 
-Разные версии API имеют характеризуются разной уровнем стабильностью и поддержкой. Критерии каждого уровня более подробно описаны в [документации изменений API](https://git.k8s.io/community/contributors/devel/sig-architecture/api_changes.md#alpha-beta-and-stable-versions). Ниже приводится краткое изложение:
+Разные версии API характеризуются разными уровнями стабильности и поддержки. Критерии каждого уровня более подробно описаны в [документации изменений API](https://git.k8s.io/community/contributors/devel/sig-architecture/api_changes.md#alpha-beta-and-stable-versions). Ниже приводится краткое изложение:
 
 - Альфа-версии:
   - Названия версий включают надпись `alpha` (например, `v1alpha1`).
@@ -77,9 +77,9 @@ GET /swagger-2.0.0.pb-v1.gz | GET /openapi/v2 **Accept**: application/com.github
   - Названия версий включают надпись `beta` (например, `v2beta3`).
   - Код хорошо протестирован. Активация этой функциональности — безопасно. Поэтому она включена по умолчанию.
   - Поддержка функциональности в целом не будет прекращена, хотя кое-что может измениться.
-  - Схема и/или семантика объектов может стать несовместимой с более поздними бета-версиями или стабильными выпусками. Когда это случится, мы даим инструкции по миграции на следующую версию. Это обновление может включать удаление, редактирование и повторного создание API-объектов. Этот процесс может потребовать тщательного анализа. Кроме этого, это может привести к простою приложений, которые используют данную функциональность.
+  - Схема и/или семантика объектов может стать несовместимой с более поздними бета-версиями или стабильными выпусками. Когда это случится, мы даем инструкции по миграции на следующую версию. Это обновление может включать удаление, редактирование и повторного создание API-объектов. Этот процесс может потребовать тщательного анализа. Кроме этого, это может привести к простою приложений, которые используют данную функциональность.
   - Рекомендуется только для неосновного производственного использования из-за риска возникновения возможных несовместимых изменений с будущими версиями. Если у вас есть несколько кластеров, которые возможно обновить независимо, вы можете снять это ограничение.
-  - **Пожалуйста, попробуйте в действии бета-версии функциональности и поделитесь своими впечатлениями! После того, как функциональность выйдет из бета-версии, нам может быть нецелесообразно что-то дальше изменять.**
+  - **Пожалуйста, попробуйте в действии бета-версии функциональности и поделитесь своими впечатлениями! После того как функциональность выйдет из бета-версии, нам может быть нецелесообразно что-то дальше изменять.**
 - Стабильные версии:
   - Имя версии `vX`, где `vX` — целое число.
   - Стабильные версии функциональностей появятся в новых версиях.
@@ -113,5 +113,3 @@ DaemonSets, Deployments, StatefulSet, NetworkPolicies, PodSecurityPolicies и Re
 Например: чтобы включить deployments и daemonsets, используйте флаг `--runtime-config=extensions/v1beta1/deployments=true,extensions/v1beta1/daemonsets=true`.
 
 {{< note >}}Включение/отключение отдельных ресурсов поддерживается только в API-группе `extensions/v1beta1` по историческим причинам.{{< /note >}}
-
-
diff --git a/content/ru/docs/concepts/overview/what-is-kubernetes.md b/content/ru/docs/concepts/overview/what-is-kubernetes.md
index 51abd33f44..1f9f463269 100644
--- a/content/ru/docs/concepts/overview/what-is-kubernetes.md
+++ b/content/ru/docs/concepts/overview/what-is-kubernetes.md
@@ -17,7 +17,7 @@ card:
 <!-- body -->
 Kubernetes — это портативная расширяемая платформа с открытым исходным кодом для управления контейнеризованными рабочими нагрузками и сервисами, которая облегчает как декларативную настройку, так и автоматизацию. У платформы есть большая, быстро растущая экосистема. Сервисы, поддержка и инструменты Kubernetes широко доступны.
 
-Название Kubernetes происходит от греческого, что означает рулевой или штурман. Google открыл исходный код Kubernetes в 2014 году. Kubernetes основывается на [десятилетнем опыте работе Google с масштабными рабочими нагрузками](https://research.google/pubs/pub43438), в сочетании с лучшими в своем классе идеями и практиками сообщества.
+Название Kubernetes происходит от греческого, что означает рулевой или штурман. Google открыл исходный код Kubernetes в 2014 году. Kubernetes основывается на [десятилетнем опыте работы Google с масштабными рабочими нагрузками](https://research.google/pubs/pub43438), в сочетании с лучшими в своем классе идеями и практиками сообщества.
 
 ## История
 Давайте вернемся назад и посмотрим, почему Kubernetes так полезен.
diff --git a/content/ru/docs/concepts/overview/working-with-objects/_index.md b/content/ru/docs/concepts/overview/working-with-objects/_index.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/contribute/advanced.md b/content/ru/docs/contribute/advanced.md
index dfe68fa685..7ee4af13cf 100644
--- a/content/ru/docs/contribute/advanced.md
+++ b/content/ru/docs/contribute/advanced.md
@@ -1,5 +1,5 @@
 ---
-title: Участие для опытных
+title: Существенный вклад
 slug: advanced
 content_type: concept
 weight: 30
@@ -22,20 +22,20 @@ weight: 30
 - Ежедневно проверять [открытые пулреквесты](https://github.com/kubernetes/website/pulls) для контроля качества и соблюдения рекомендаций по [оформлению](/docs/contribute/style/style-guide/) и [содержимому](/docs/contribute/style/content-guide/).
     - В первую очередь просматривайте самые маленькие пулреквесты (`size/XS`), и только потом беритесь за самые большие (`size/XXL`).
     - Проверяйте столько пулреквестов, сколько сможете.
-- Проследить, что CLA подписан каждым участником.
+- Проследите, что CLA подписан каждым участником.
     - Помогайте новым участникам подписать [CLA](https://github.com/kubernetes/community/blob/master/CLA.md).
-    - Используйте [этот](https://github.com/zparnold/k8s-docs-pr-botherer) скрипт, чтобы автоматически напомнить участникам, не подписавшим CLA, чтобы они подписали CLA.
+    - Используйте [этот](https://github.com/zparnold/k8s-docs-pr-botherer) скрипт, чтобы автоматически напомнить участникам, не подписавшим CLA, подписать его.
 - Оставить свое мнение о предложенных изменениях и поспособствовать в проведении технического обзора от членов других SIG-групп.
     - Предложить исправления для измененного контента в PR.
     - Если вы хотите убедиться в правильности контента, прокомментируйте PR и задайте уточняющие вопросы.
-    - Добавьте нужны метки с `sig/`.
-    - Если нужно, то назначьте рецензентов из секции `reviewers:` в фронтальной части файла.
+    - Добавьте нужные метки с `sig/`.
+    - Если нужно, то назначьте рецензентов из секции `reviewers:` в верхней части файла.
     - Добавьте метки `Docs Review` и `Tech Review` для установки статуса проверки PR.
     - Добавьте метку `Needs Doc Review` или `Needs Tech Review` для пулреквестов, которые ещё не были проверены.
     - Добавьте метку `Doc Review: Open Issues` или `Tech Review: Open Issues` для пулреквестов, которые были проверены и требуют дополнительную информацию и выполнение действия перед слиянием.
     - Добавьте метки `/lgtm` и `/approve` для пулреквестов, которые могут быть приняты.
 - Объедините пулреквесты, если они готовы, либо закройте те, которые не могут быть приняты.
-- Ежедневно отсортируйте и пометьте новые заявки. Обратитесь к странице [Участие для опытных](/ru/docs/contribute/intermediate/) для получения информации по использование метаданных SIG Docs.
+- Ежедневно отсортируйте и пометьте новые заявки. Обратитесь к странице [Участие для опытных](/ru/docs/contribute/intermediate/) для получения информации по использованию метаданных SIG Docs.
 
 ### Полезные ссылки на GitHub для дежурных
 
@@ -43,9 +43,9 @@ weight: 30
 
 - [Нет CLA, нет права на слияние](https://github.com/kubernetes/website/pulls?q=is%3Aopen+is%3Apr+label%3A%22cncf-cla%3A+no%22+-label%3Ado-not-merge+label%3Alanguage%2Fen): напомните участнику подписать CLA. Если об этом уже напомнил и бот, и человек, то закройте PR и напишите автору, что он может открыть свой PR после подписания CLA.
 **Не проверяйте PR, если их авторы не подписали CLA!**
-- [Требуется LGTM](https://github.com/kubernetes/website/pulls?utf8=%E2%9C%93&q=is%3Aopen+is%3Apr+-label%3Ado-not-merge+label%3Alanguage%2Fen+-label%3Algtm+): если нужен проверка с технической точки зрения, попросите её провести одного из рецензентов, который предложил бот. Если требуется просмотр пулреквест со стороны группы документации или вычитка, то предложите изменения, либо сами измените PR, чтобы ускорить процесс принятия пулреквеста.
-- [Имеет LGTM, нужно одобрение со стороны группы документации](https://github.com/kubernetes/website/pulls?q=is%3Aopen+is%3Apr+-label%3Ado-not-merge+label%3Alanguage%2Fen+label%3Algtm): выясните, нужно ли внести какие-либо дополнительные изменения или обновления, чтобы принять PR. Если по вашему мнению PR готов к слияния, оставьте комментарий с текстом `/approve`.
-- [Быстрые результаты](https://github.com/kubernetes/website/pulls?utf8=%E2%9C%93&q=is%3Apr+is%3Aopen+base%3Amaster+-label%3A%22do-not-merge%2Fwork-in-progress%22+-label%3A%22do-not-merge%2Fhold%22+label%3A%22cncf-cla%3A+yes%22+label%3A%22size%2FXS%22+label%3A%22language%2Fen%22+): если маленький PR направлен в основную ветку и не имеет условий для объединения. (поменяйте "XS" в метке с размером при работе с другими пулреквестами [XS, S, M, L, XL, XXL]).
+- [Требуется LGTM](https://github.com/kubernetes/website/pulls?utf8=%E2%9C%93&q=is%3Aopen+is%3Apr+-label%3Ado-not-merge+label%3Alanguage%2Fen+-label%3Algtm+): если нужна проверка с технической точки зрения, попросите её провести одного из рецензентов, которого предложил бот. Если требуется просмотр пулреквеста со стороны группы документации или вычитка, то предложите изменения, либо сами измените PR, чтобы ускорить процесс принятия пулреквеста.
+- [Имеет LGTM, нужно одобрение со стороны группы документации](https://github.com/kubernetes/website/pulls?q=is%3Aopen+is%3Apr+-label%3Ado-not-merge+label%3Alanguage%2Fen+label%3Algtm): выясните, нужно ли внести какие-либо дополнительные изменения или обновления, чтобы принять PR. Если по вашему мнению PR готов к слиянию, оставьте комментарий с текстом `/approve`.
+- [Быстрые результаты](https://github.com/kubernetes/website/pulls?utf8=%E2%9C%93&q=is%3Apr+is%3Aopen+base%3Amaster+-label%3A%22do-not-merge%2Fwork-in-progress%22+-label%3A%22do-not-merge%2Fhold%22+label%3A%22cncf-cla%3A+yes%22+label%3A%22size%2FXS%22+label%3A%22language%2Fen%22+): если маленький PR направлен в основную ветку и не имеет условий для объединения (поменяйте "XS" в метке с размером при работе с другими пулреквестами [XS, S, M, L, XL, XXL]).
 - [Вне основной ветки](https://github.com/kubernetes/website/pulls?utf8=%E2%9C%93&q=is%3Aopen+is%3Apr+-label%3Ado-not-merge+label%3Alanguage%2Fen+-base%3Amaster): если PR отправлен в ветку `dev-`, значит он предназначается для будущего выпуска. Убедитесь, что [release meister](https://github.com/kubernetes/sig-release/tree/master/release-team) знает об этом, добавив комментарий с `/assign @<meister's_github-username>`. Если он направлен в старую ветку, помогите автору PR изменить на более подходящую ветку.
 
 ### Когда закрывать пулреквесты
@@ -57,13 +57,13 @@ weight: 30
 
 - Закройте любой PR, если автор не отреагировал на комментарии или проверки в течение 2 или более недель.
 
-Не бойтесь закрывать пулреквесты. Участники с лёгкостью открыть и возобновить незаконченную работу. Зачастую уведомление о закрытии стимулировать автора возобновить и закончить свой вклад.
+Не бойтесь закрывать пулреквесты. Участники с лёгкостью могут открыть и возобновить незаконченную работу. Зачастую уведомление о закрытии стимулирует автора возобновить и завершить свою работу до конца.
 
 Чтобы закрыть пулреквест, оставьте комментарий `/close` в PR.
 
 {{< note >}}
 
-Бот [`fejta-bot`](https://github.com/fejta-bot) автоматически помечает заявки как устаревшие после 90 дней отсутствия активности, а затем закрывает их после ещё 30 дней простоя, когда они становятся тухлыми. Дежурные по PR должны закрывать заявки после 14-30 дней бездействия.
+Бот [`k8s-ci-robot`](https://github.com/k8s-ci-robot) автоматически помечает заявки как устаревшие после 90 дней отсутствия активности, а затем закрывает их после ещё 30 дней простоя, когда они становятся тухлыми. Дежурные по PR должны закрывать заявки после 14-30 дней бездействия.
 
 {{< /note >}}
 
@@ -71,8 +71,8 @@ weight: 30
 
 [Члены](/ru/docs/contribute/participating/#члены) SIG Docs могут предлагать улучшения.
 
-После того, как вы давно начали работать над документацией Kubernetes, у наверняка появились какие-нибудь идеи по улучшению [руководства по оформлению](/docs/contribute/style/style-guide/), [руководства по оформлению](/docs/contribute/style/content-guide/), набору инструментов, который используется для создания документации, стилизации сайта, процессов проверки и объединения пулреквестов. Для максимальной открытости подобные типы предложений по улучшению должны обсуждаться на встречи SIG Docs или в [списке рассылки kubernetes-sig-docs](https://groups.google.com/forum/#!forum/kubernetes-sig-docs).
-Помимо этого, это поможет разъяснить, как всё устроено в данный момент, и объяснить, почему так было принято, прежде чем предлагать радикальные изменения. Самый быстрый способ узнать ответы на вопросы о том, как в настоящее время работает документация, это задать их на канале `#sig-docs` Slack на [kubernetes.slack.com](https://kubernetes.slack.com).
+Если вы давно начали работать над документацией Kubernetes, у вас наверняка появились какие-нибудь идеи по улучшению [руководства по оформлению](/docs/contribute/style/style-guide/), [руководства по содержанию](/docs/contribute/style/content-guide/), набору инструментов, который используется для создания документации, стилизации сайта, процессов проверки и объединения пулреквестов. Для максимальной открытости подобные типы предложений по улучшению должны обсуждаться на встречи SIG Docs или в [списке рассылки kubernetes-sig-docs](https://groups.google.com/forum/#!forum/kubernetes-sig-docs).
+Помимо этого, это поможет разъяснить, как всё устроено в данный момент, и объяснить, почему так было принято, прежде чем предлагать радикальные изменения. Самый быстрый способ узнать ответы на вопросы о том, как в настоящее время работает документация, это задать их в канале `#sig-docs` в [официальном Slack](https://kubernetes.slack.com).
 
 Когда обсуждение состоялось, а SIG-группа согласилась с желаемым результатом, вы можете работать над предлагаемыми изменениями наиболее приемлемым способом. Например, обновление руководства по оформлению или функциональности сайта может включать открытие пулреквеста, а изменение, связанное с тестированием документации, может предполагать взаимодействие с sig-testing.
 
@@ -84,11 +84,11 @@ weight: 30
 
 Представитель SIG Docs для данного выпуска координирует следующие задачи:
 
-- Мониторинг электронной таблицы с отслеживанием функциональности на наличие новых или измененных возможностей, затрагивают документацию. Если документация для определенной функциональности не будет готова к выпуску, возможно, она не попадет в выпуск.
-- Регулярное посещение встречи sig-release и обновлять информацию о статусе документации в выпуске.
+- Мониторинг электронной таблицы с отслеживанием функциональности на наличие новых или измененных возможностей, затрагивающих документацию. Если документация для определенной функциональности не будет готова к выпуску, возможно, она не попадет в выпуск.
+- Регулярное посещение встречи sig-release и обновление информации о статусе документации к выпуску.
 - Проверка и вычитка документации по функциональности, подготовленной SIG-группой, ответственной за реализацию этой функциональности.
 - Объединение связанных с выпуском пулреквестов и поддержка Git-ветки выпуска.
-- Консультируйте других участников SIG Docs, которые хотят научиться выполнять эту роль в будущем. Это называется сопровождение (shadowing).
+- Консультирование других участников SIG Docs, которые хотят научиться выполнять эту роль в будущем. Это называется сопровождение (shadowing).
 - Публикация изменений в документации, связанные с выпуском при размещении артефактов.
 
 Координация выпуска обычно занимает 3-4 месяца, а обязанности распределяются между утверждающими SIG Docs.
@@ -101,10 +101,10 @@ weight: 30
 
 Обязанности амбассадоров новых участников включают в себя:
 
-- Отвечать на вопросы новых участников на [Slack-канале Kubernetes #sig-docs](https://kubernetes.slack.com).
+- Отвечать на вопросы новых участников в [Slack-канале Kubernetes #sig-docs](https://kubernetes.slack.com).
 - Совместно работать с дежурным по PR, чтобы определять заявки, которые подойдут для решения новыми участниками.
 - Консультировать новых участников в их PR.
-- Помогать новых участникам в создании более сложных PR, чтобы они могли стать членами Kubernetes.
+- Помогать новым участникам в создании более сложных PR, чтобы они могли стать членами Kubernetes.
 - [Оказывать содействие участникам](/ru/docs/contribute/advanced/#поддержка-нового-участника) на их пути становления членом в Kubernetes.
 
 Текущие амбассадоры новых участников объявляются на каждом собрании SIG Docs и на канале [#sig-docs в Kubernetes](https://kubernetes.slack.com).
@@ -115,7 +115,7 @@ weight: 30
 
 Если участник сделал 5 значительных пулреквестов в один или несколько репозиториев Kubernetes, он имеет право на [членство](/ru/docs/contribute/participating#члены) в организации Kubernetes. Членство участника должно быть поддержано двумя спонсорами, которые уже являются рецензентами.
 
-Новые участники документации могут найти спонсоров в канале #sig-docs в [в Slack Kubernetes](https://kubernetes.slack.com) или в [списке рассылки SIG Docs](https://groups.google.com/forum/#!forum/kubernetes-sig-docs). Если вы осознали полезность работы автора заявки на членство, вы добровольно можете поддержать (спонсировать) его. Когда они подадут заявку на членство, отреагируйте на заявку "+1" и напишите подробный комментарий о том, почему вы считаете, что кандидат отлично вписывается в члены организации Kubernetes.
+Новые участники документации могут найти спонсоров в канале #sig-docs [в Slack Kubernetes](https://kubernetes.slack.com) или в [списке рассылки SIG Docs](https://groups.google.com/forum/#!forum/kubernetes-sig-docs). Если вы осознали полезность работы автора заявки на членство, вы добровольно можете поддержать (спонсировать) его. Когда они подадут заявку на членство, отреагируйте на заявку "+1" и напишите подробный комментарий о том, почему вы считаете, что кандидат отлично вписывается в члены организации Kubernetes.
 
 ## Сопредседатель SIG
 
@@ -125,9 +125,9 @@ weight: 30
 
 Сопредседатели должны соответствовать следующим требованиям:
 
-- Быть утверждающим SIG Docs не меньше 6 месяцев
-- [Руководить выпуском документации Kubernetes](/docs/contribute/advanced/#coordinate-docs-for-a-kubernetes-release) или сопровождать два выпуска
-- Понимание рабочих процессов и инструментов SIG Docs: git, Hugo, локализация, блог
+- Быть утверждающими SIG Docs не меньше 6 месяцев.
+- [Руководить выпуском документации Kubernetes](/docs/contribute/advanced/#coordinate-docs-for-a-kubernetes-release) или сопроводить два выпуска.
+- Понимать рабочие процессы и инструменты SIG Docs: git, Hugo, локализация, блог.
 - Понимать, как другие SIG-группы и репозитории Kubernetes влияют на рабочий процесс SIG Docs, включая: [команды в k/org](https://github.com/kubernetes/org/blob/master/config/kubernetes/sig-docs/teams.yaml), [процессы в k/community](https://github.com/kubernetes/community/tree/master/sig-docs), плагины в [k/test-infra](https://github.com/kubernetes/test-infra/) и роль [SIG Architecture](https://github.com/kubernetes/community/tree/master/sig-architecture).
 - Уделять не менее 5 часов в неделю (но зачастую больше) в течение как минимум 6 месяцев для выполнения обязанностей.
 
@@ -137,13 +137,13 @@ weight: 30
 
 Обязанности включают в себя:
 
-- Сосредоточить группу SIG Docs на достижении максимального счастья для разработчиков через отличную документацию
-- Быть примером соблюдения [норм поведения сообщества]https://github.com/cncf/foundation/blob/master/code-of-conduct.md) и контролировать их выполнение членами SIG
-- Изучение и внедрение передовых практик для SIG-группы, обновляя рекомендации по участию
-- Планирование и проведение встреч SIG: еженедельные обновления информации, ежеквартальные ретроспективные/плановые совещания и многое другое
-- Планирование и проведение спринтов по документации на мероприятиях KubeCon и других конференциях
+- Сосредоточить группу SIG Docs на достижении максимального счастья для разработчиков через отличную документацию.
+- Быть примером соблюдения [норм поведения сообщества](https://github.com/cncf/foundation/blob/master/code-of-conduct.md) и контролировать их выполнение членами SIG.
+- Изучать и внедрять передовые практики для SIG-группы, обновляя рекомендации по участию.
+- Планировать и проверять встречи SIG: еженедельные обновления информации, ежеквартальные ретроспективные/плановые совещания и многое другое.
+- Планирование и проведение спринтов по документации на мероприятиях KubeCon и других конференциях.
 - Набирать персонал и выступать в поддержку {{< glossary_tooltip text="CNCF" term_id="cncf" >}} и его платиновых партнеров, включая Google, Oracle, Azure, IBM и Huawei.
-- Поддерживать нормальную работу SIG
+- Поддерживать нормальную работу SIG.
 
 ### Проведение продуктивных встреч
 
@@ -155,33 +155,33 @@ weight: 30
 
 **Сформулируйте четкую повестку дня**:
 
-- Определите конкретную цель встречи
-- Опубликуйте программу дня заранее
+- Определите конкретную цель встречи.
+- Опубликуйте программу дня заранее.
 
 Для еженедельных встреч скопируйте примечания из предыдущей недели в раздел "Past meetings".
 
 **Работайте вместе для создания точных примечания**:
 
-- Запишите обсуждение встречи
-- Подумайте над тем, чтобы делегировать роль стенографист кому-нибудь другому
+- Запишите обсуждение встречи.
+- Подумайте над тем, чтобы делегировать роль стенографиста кому-нибудь другому.
 
 **Определяйте решения по пунктам повестки четко и точно**:
 
-- Записывайте решения по пунктам, кто будет ими заниматься и ожидаемую дату завершения
+- Записывайте решения по пунктам, кто будет ими заниматься и ожидаемую дату завершения.
 
 **Руководите обсуждением, когда это необходимо**:
 
-- Если обсуждение выходит за пределы повестки дня, снова обратите внимание участников на обсуждаемую тему
-- Найдите место для различных стилей ведения обсуждения, не отвлекаясь от темы обсуждения и уважая время людей
+- Если обсуждение выходит за пределы повестки дня, снова обратите внимание участников на обсуждаемую тему.
+- Найдите место для различных стилей ведения обсуждения, не отвлекаясь от темы обсуждения и уважая время людей.
 
 **Уважайте время людей**:
 
-- Начинайте и заканчивайте встречи своевременно
+- Начинайте и заканчивайте встречи своевременно.
 
 **Используйте Zoom эффективно**:
 
-- Ознакомьтесь с [рекомендациями Zoom для Kubernetes](https://github.com/kubernetes/community/blob/master/communication/zoom-guidelines.md)
-- Попробуйте попроситься быть ведущим в самом начале встречи, введя ключ ведущего
+- Ознакомьтесь с [рекомендациями Zoom для Kubernetes](https://github.com/kubernetes/community/blob/master/communication/zoom-guidelines.md).
+- Попробуйте попроситься быть ведущим в самом начале встречи, введя ключ ведущего.
 
 <img src="/images/docs/contribute/claim-host.png" width="75%" alt="Исполнение роли ведущего в Zoom" />
 
@@ -192,5 +192,3 @@ weight: 30
 Если нужно остановить запись, нажмите на кнопку Stop.
 
 Запись автоматически загрузится на YouTube.
-
-
diff --git a/content/ru/docs/contribute/generate-ref-docs/contribute-upstream.md b/content/ru/docs/contribute/generate-ref-docs/contribute-upstream.md
index 0834caa522..ba529883ef 100644
--- a/content/ru/docs/contribute/generate-ref-docs/contribute-upstream.md
+++ b/content/ru/docs/contribute/generate-ref-docs/contribute-upstream.md
@@ -25,6 +25,8 @@ weight: 20
   - [Golang](https://golang.org/doc/install) версии 1.13+
   - [Docker](https://docs.docker.com/engine/installation/)
   - [etcd](https://github.com/coreos/etcd/)
+  - [make](https://www.gnu.org/software/make/)
+  - [gcc compiler/linker](https://gcc.gnu.org/)
 
 - Созданная переменная окружения `GOPATH`, а путь к `etcd` должен быть прописан в переменной окружения `PATH`.
 
@@ -121,8 +123,9 @@ hack/update-generated-protobuf.sh
 On branch master
 ...
     modified:   api/openapi-spec/swagger.json
+    modified:   api/openapi-spec/v3/apis__apps__v1_openapi.json
+    modified:   pkg/generated/openapi/zz_generated.openapi.go
     modified:   staging/src/k8s.io/api/apps/v1/generated.proto
-    modified:   staging/src/k8s.io/api/apps/v1/types.go
     modified:   staging/src/k8s.io/api/apps/v1/types_swagger_doc_generated.go
 ```
 
diff --git a/content/ru/docs/contribute/generate-ref-docs/quickstart.md b/content/ru/docs/contribute/generate-ref-docs/quickstart.md
index 7e6e17f28c..d1c3c3ddb1 100644
--- a/content/ru/docs/contribute/generate-ref-docs/quickstart.md
+++ b/content/ru/docs/contribute/generate-ref-docs/quickstart.md
@@ -142,7 +142,7 @@ cd <web-base>/update-imported-docs
 ## Исправление ссылок
 
 Конфигурационный файл `release.yml` содержит инструкции по исправлению относительных ссылок
-Для исправления относительных ссылок в импортированных файлах, установите для свойство `gen-absolute-links` в значение `true`. В качестве примера можете посмотреть файл [`release.yml`](https://github.com/kubernetes/website/blob/master/update-imported-docs/release.yml).
+Для исправления относительных ссылок в импортированных файлах, установите для свойство `gen-absolute-links` в значение `true`. В качестве примера можете посмотреть файл [`release.yml`](https://github.com/kubernetes/website/blob/main/update-imported-docs/release.yml).
 
 ## Внесение изменений в kubernetes/website
 
@@ -218,5 +218,3 @@ static/docs/reference/generated/kubernetes-api/v1.17/fonts/fontawesome-webfont.w
 * [Генерация справочной документации для компонентов и инструментов Kubernetes](/ru/docs/contribute/generate-ref-docs/kubernetes-components/)
 * [Генерация справочной документации для команд kubectl](/ru/docs/contribute/generate-ref-docs/kubectl/)
 * [Генерация справочной документации для API Kubernetes](/ru/docs/contribute/generate-ref-docs/kubernetes-api/)
-
-
diff --git a/content/ru/docs/contribute/intermediate.md b/content/ru/docs/contribute/intermediate.md
index 303a0877e5..d072153f0c 100644
--- a/content/ru/docs/contribute/intermediate.md
+++ b/content/ru/docs/contribute/intermediate.md
@@ -82,7 +82,7 @@ PR можно проверять только, если он соответст
 
     {{< note >}}Не добавляйте `/lgtm`, если вы не уверены в технической точности документации, измененной или добавленной в PR.{{< /note >}}
 
-- Утверждающий проверяет содержание запроса на предмет качества и соответствия рекомендациям SIG Docs, приведенным в руководствах по содержанию и оформлению. Только люди, указанные в качестве утверждающих в файле [`OWNERS`](https://github.com/kubernetes/website/blob/master/OWNERS), могут одобрить PR. Чтобы одобрить PR, оставьте комментарий `/approve` к PR.
+- Утверждающий проверяет содержание запроса на предмет качества и соответствия рекомендациям SIG Docs, приведенным в руководствах по содержанию и оформлению. Только люди, указанные в качестве утверждающих в файле [`OWNERS`](https://github.com/kubernetes/website/blob/main/OWNERS), могут одобрить PR. Чтобы одобрить PR, оставьте комментарий `/approve` к PR.
 
 PR объединяется, когда у него есть комментарий  `/lgtm` от кого-либо из организации Kubernetes и комментарий `/approve` от утверждающего в группе `sig-docs-maintainers`, если он не удерживается, а автор PR подписал CLA.
 
@@ -603,5 +603,3 @@ If this is a documentation issue, please re-open this issue.
 
 
 Если вы хорошо осознали все задачи, затронутые в этом разделе, и хотите более тесно работать с командой документации Kubernetes, переходите к изучению [руководства для опытного участника](/ru/docs/contribute/advanced/).
-
-
diff --git a/content/ru/docs/contribute/localization.md b/content/ru/docs/contribute/localization.md
index 3e0c977e57..de5ee8af4d 100644
--- a/content/ru/docs/contribute/localization.md
+++ b/content/ru/docs/contribute/localization.md
@@ -209,7 +209,7 @@ To ensure accuracy in grammar and meaning, members of your localization team sho
 
 ### Сообщения на сайте в i18n/
 
-Локализации должны включать содержимое файла [`i18n/en.toml`](https://github.com/kubernetes/website/blob/master/i18n/en.toml) в новый языковой файл. В качестве примера рассмотрим немецкую локализацию: `i18n/de.toml`.
+Локализации должны включать содержимое файла [`i18n/en.toml`](https://github.com/kubernetes/website/blob/main/i18n/en.toml) в новый языковой файл. В качестве примера рассмотрим немецкую локализацию: `i18n/de.toml`.
 
 Добавьте новый файл локализации в `i18n/`. Например, для немецкой локализации (`de`):
 
@@ -283,5 +283,3 @@ SIG Docs приветствует [участие и дополнения](/ru/d
 
 - Добавит язык на сайт
 - Сообщит о новой локализации на каналах [Cloud Native Computing Foundation](https://www.cncf.io/about/) (CNCF), включая [блог Kubernetes](https://kubernetes.io/blog/).
-
-
diff --git a/content/ru/docs/contribute/participating.md b/content/ru/docs/contribute/participating.md
index 2d098aa93b..055649e187 100644
--- a/content/ru/docs/contribute/participating.md
+++ b/content/ru/docs/contribute/participating.md
@@ -100,7 +100,7 @@ SIG Docs активно принимает правки и дополнения
 
 Если вы соответствуете [требованием](https://github.com/kubernetes/community/blob/master/community-membership.md#reviewer), то можете стать рецензентом SIG Docs. Рецензенты в других SIG-группах должны подать новую заявку для получения статуса рецензента в SIG Docs.
 
-Для отправки заявки откройте пулреквест с добавлением самого себя в секцию `reviewers` [корневого файла OWNERS](https://github.com/kubernetes/website/blob/master/OWNERS) в репозитории `kubernetes/website`. Запросите проверку вашего пулреквеста одному или нескольким текущим утверждающим в группе SIG Docs.
+Для отправки заявки откройте пулреквест с добавлением самого себя в секцию `reviewers` [корневого файла OWNERS](https://github.com/kubernetes/website/blob/main/OWNERS) в репозитории `kubernetes/website`. Запросите проверку вашего пулреквеста одному или нескольким текущим утверждающим в группе SIG Docs.
 
 Если ваш пулреквест одобрен, вы становитесь рецензентом SIG Docs. Теперь бот [K8s-ci-robot](https://github.com/kubernetes/test-infra/tree/master/prow#bots-home) будет назначать и предлагать вас в качестве рецензента для проверки новых пулреквестов.
 
@@ -126,7 +126,7 @@ SIG Docs активно принимает правки и дополнения
 
 Если вы соответствуете [требованием](https://github.com/kubernetes/community/blob/master/community-membership.md#approver), вы можете стать утверждающим SIG Docs. Утверждающие в других SIG-группах должны подать новую заявку для получения статуса утверждающего в SIG Docs.
 
-Для отправки заявки откройте пулреквест с добавлением самого себя в секцию `approvers` [корневого файла OWNERS](https://github.com/kubernetes/website/blob/master/OWNERS) в репозитории `kubernetes/website`. Запросите проверку вашего пулреквеста одному или нескольким текущим утверждающим в группе SIG Docs.
+Для отправки заявки откройте пулреквест с добавлением самого себя в секцию `approvers` [корневого файла OWNERS](https://github.com/kubernetes/website/blob/main/OWNERS) в репозитории `kubernetes/website`. Запросите проверку вашего пулреквеста одному или нескольким текущим утверждающим в группе SIG Docs.
 
 Если ваш пулреквест одобрен, вы становитесь утверждающим SIG Docs. Теперь бот [K8s-ci-robot](https://github.com/kubernetes/test-infra/tree/master/prow#bots-home) будет назначать и предлагать вас в качестве рецензента для проверки новых пулреквестов.
 
@@ -179,7 +179,7 @@ SIG Docs активно принимает правки и дополнения
 - blunderbuss
 - approve
 
-Все эти плагины используют файлы [OWNERS](https://github.com/kubernetes/website/blob/master/OWNERS) и [OWNERS_ALIASES](https://github.com/kubernetes/website/blob/master/OWNERS_ALIASES) в корневой директории GitHub-репозитория `kubernetes/website`, чтобы контролировать работу prow по всему репозиторию.
+Все эти плагины используют файлы [OWNERS](https://github.com/kubernetes/website/blob/main/OWNERS) и [OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS_ALIASES) в корневой директории GitHub-репозитория `kubernetes/website`, чтобы контролировать работу prow по всему репозиторию.
 
 Файл OWNERS содержит список людей, которые являются рецензентами и утверждающими в SIG Docs. Файлы OWNERS также может быть в поддиректориях и могут переопределять тех, кто может выступать в качестве рецензента или утверждающего в изменениях файлов этой директории и её поддиректорий. Для получения дополнительной информации о файлах OWNERS в целом, перейдите в [OWNERS](https://github.com/kubernetes/community/blob/master/contributors/guide/owners.md).
 
@@ -205,5 +205,3 @@ SIG Docs активно принимает правки и дополнения
 
 - [Участие для начинающих](/ru/docs/contribute/start/)
 - [Правила оформления документации](/ru/docs/contribute/style/)
-
-
diff --git a/content/ru/docs/contribute/style/content-guide.md b/content/ru/docs/contribute/style/content-guide.md
index bfb0073357..58cbc6af7c 100644
--- a/content/ru/docs/contribute/style/content-guide.md
+++ b/content/ru/docs/contribute/style/content-guide.md
@@ -25,72 +25,72 @@ card:
 
 ### Контент, полученный из двух источников
 
-Документация Kubernetes не содержит дублированный контент, полученный из разных мест (так называемый **контент из двумя источниками**). Контент из двух источников требует дублирования работы со стороны мейнтейнеров проекта и к тому же быстро теряет актуальность.
+Документация Kubernetes не содержит дублированный контент, полученный из разных мест (так называемый **контент из двух источников**). Контент из двух источников требует дублирования работы со стороны мейнтейнеров проекта и к тому же быстро теряет актуальность.
 Перед добавлением контента, задайте себе вопрос:
 
-- Новая информация относится к действующему проекту CNCF ИЛИ проекту в организациях на GitHub kubernetes или kubernetes-sigs?
+- Новая информация относится к действующему проекту CNCF или проекту в организациях на GitHub kubernetes или kubernetes-sigs?
     - Если да, то:
         - У этого проекта есть собственная документация?
-            - если да, то укажите ссылку на документацию проекта в документации Kubernetes
-            - если нет, добавьте информацию в репозиторий проекта (если это возможно), а затем укажите ссылку на неё в документации Kubernetes
+            - если да, то укажите ссылку на документацию проекта в документации Kubernetes.
+            - если нет, добавьте информацию в репозиторий проекта (если это возможно), а затем укажите ссылку на неё в документации Kubernetes.
     - Если нет, то:
         - Остановитесь!
-            - Добавление информации по продуктам от других разработчиков не допускается
+            - Добавление информации о продуктах от других разработчиков не допускается.
             - Не разрешено ссылаться на документацию и сайты сторонних разработчиков.
 
 ### Разрешенная и запрещённая информация
 
 Есть несколько условий, когда в документации Kubernetes может быть информация, относящиеся не к проектам Kubernetes.
-Ниже перечислены основные категории по содержанию проектов, не касающихся к Kubernetes, а также приведены рекомендации о том, что разрешено, а что нет:
+Ниже перечислены основные категории по содержанию проектов, не касающихся Kubernetes, а также приведены рекомендации о том, что разрешено, а что нет:
 
-1. Инструкции по установке или эксплуатации Kubernetes, которые не связаны с проектами Kubernetes
+1. Инструкции по установке или эксплуатации Kubernetes, которые не связаны с проектами Kubernetes.
     - Разрешено:
-        - Ссылаться на документацию на CNCF-проекта или на проект в GitHub-организациях kubernetes или kubernetes-sigs
-            - Пример: для установки Kubernetes в процессе обучения нужно обязательно установить и настроить minikube, а также сослаться на соответствующую документацию minikube
-        - Добавление инструкций для проектов в организации kubernetes или kubernetes-sigs, если по ним нет инструкций
-            - Пример: добавление инструкций по установке и решению неполадок [kubadm](https://github.com/kubernetes/kubeadm)
+        - Ссылаться на документацию CNCF-проекта или на проект в GitHub-организациях kubernetes или kubernetes-sigs.
+            - Пример: для установки Kubernetes в процессе обучения нужно обязательно установить и настроить minikube, а также сослаться на соответствующую документацию minikube.
+        - Добавление инструкций для проектов в организации kubernetes или kubernetes-sigs, если по ним нет инструкций.
+            - Пример: добавление инструкций по установке и решению неполадок [kubeadm](https://github.com/kubernetes/kubeadm).
     - Запрещено:
-        - Добавление информацию, которая повторяет документацию в другом репозитории
+        - Добавление информации, которая дублирует документацию в другом репозитории.
             - Примеры:
-                - Добавление инструкций по установке и настройке minikube; Minikube имеет собственную [документацию](https://minikube.sigs.k8s.io/docs/), которая включают эти инструкции
-                - Добавление инструкций по установке Docker, CRI-O, containerd и других окружений для выполнения контейнеров в разных операционных системах
+                - Добавление инструкций по установке и настройке minikube; Minikube имеет собственную [документацию](https://minikube.sigs.k8s.io/docs/), которая включают эти инструкции.
+                - Добавление инструкций по установке Docker, CRI-O, containerd и других окружений для выполнения контейнеров в разных операционных системах.
                 - Добавление инструкций по установке Kubernetes в промышленных окружениях, используя разные проекты:
-                     -Kubernetes Rebar Integrated Bootstrap (KRIB) — это проект стороннего разработчика, поэтому все содержимое находится репозитории разработчика.
+                    - Kubernetes Rebar Integrated Bootstrap (KRIB) — это проект стороннего разработчика, поэтому всё содержимое находится в репозитории разработчика.
                     - У проекта [Kubernetes Operations (kops)](https://github.com/kubernetes/kops) есть инструкции по установке и руководства в GitHub-репозитории.
-                    - У проекта [Kubespray](https://kubespray.io) есть собственная документация
-        - Добавление руководства, в котором объясняется, как выполнить задачу с использованием продукта определенного разработчика или проекта с открытым исходным кодом, не являющиеся CNCF-проектом или проектом в GitHub-организациях kubernetes или kubnetes-sigs.
-        - Добавление руководства по использованию CNCF-проекта или проекта в GitHub-организациях kubernetes или kubnetes-sigs, если у проекта есть собственная документация
-1. Подробное описание технических аспектов по использованию стороннего проекта (не Kubernetes) или как этот проект разработан
+                    - У проекта [Kubespray](https://kubespray.io) есть собственная документация.
+        - Добавление руководства, в котором объясняется, как выполнить задачу с использованием продукта определенного разработчика или проекта с открытым исходным кодом, не являющиеся CNCF-проектами или проектом в GitHub-организациях kubernetes, или kubernetes-sigs.
+        - Добавление руководства по использованию CNCF-проекта или проекта в GitHub-организациях kubernetes или kubernetes-sigs, если у проекта есть собственная документация.
+1. Подробное описание технических аспектов по использованию стороннего проекта (не Kubernetes) или как этот проект разработан.
 
     Добавление такого типа информации в документацию Kubernetes не допускается.
-1. Информация стороннему проекту
+1. Информация стороннему проекту.
     - Разрешено:
-        - Добавление краткого введения о CNCF-проекте или проекте в GitHub-организациях kubernetes или kubernetes-sigs; этот абзац может содержать ссылки на проект
+        - Добавление краткого введения о CNCF-проекте или проекте в GitHub-организациях kubernetes или kubernetes-sigs; этот абзац может содержать ссылки на проект.
     - Запрещено:
-        - Добавление информации по продукту определённого разработчика
-        - Добавление информации по проекту с открытым исходным кодом, который не является CNCF-проектом или проектом в GitHub-организациях kubernetes или kubnetes-sigs
-        - Добавление информации, дублирующего документацию из другого проекта, независимо от оригинального репозитория
-            - Пример: добавление документации для проекта [Kubernetes in Docker (KinD)](https://kind.sigs.k8s.io) в документацию Kubernetes
-1. Только ссылки на сторонний проект
+        - Добавление информации по продукту определённого разработчика.
+        - Добавление информации по проекту с открытым исходным кодом, который не является CNCF-проектом или проектом в GitHub-организациях kubernetes или kubernetes-sigs.
+        - Добавление информации, дублирующего документацию из другого проекта, независимо от оригинального репозитория.
+            - Пример: добавление документации для проекта [Kubernetes in Docker (KinD)](https://kind.sigs.k8s.io) в документацию Kubernetes.
+1. Только ссылки на сторонний проект.
     - Разрешено:
-        - Ссылаться на проекты в GitHub-организациях kubernetes и kubernetes-sigs
-            - Пример: добавление ссылок на [документацию](https://kind.sigs.k8s.io/docs/user/quick-start) проекта Kubernetes in Docker (KinD), который находится в GitHub-организации kubernetes-sigs
-        - Добавление ссылок на действующие CNCF-проекты
-            - Пример: добавление ссылок на [документацию](https://prometheus.io/docs/introduction/overview/) проекта Prometheus; Prometheus — это действующий проект CNCF
+        - Ссылаться на проекты в GitHub-организациях kubernetes и kubernetes-sigs.
+            - Пример: добавление ссылок на [документацию](https://kind.sigs.k8s.io/docs/user/quick-start) проекта Kubernetes in Docker (KinD), который находится в GitHub-организации kubernetes-sigs.
+        - Добавление ссылок на действующие CNCF-проекты.
+            - Пример: добавление ссылок на [документацию](https://prometheus.io/docs/introduction/overview/) проекта Prometheus; Prometheus — это действующий проект CNCF.
     - Запрещено:
-        - Ссылаться на продукты стороннего разработчика
-        - Ссылаться на архивированные проекты CNCF
-        - Ссылаться на недействующие проекты в организациях GitHub в kubernetes и kubernetes-sigs
-        - Ссылаться на проекты с открытым исходным кодом, которые не являются проектами CNCF или не находятся в организациях GitHub kubernetes или kubernetes-sigs.
-1. Содержание учебных курсов
+        - Ссылаться на продукты стороннего разработчика.
+        - Ссылаться на прекращенные проекты CNCF.
+        - Ссылаться на недействующие проекты в организациях GitHub в kubernetes и kubernetes-sigs.
+        - Ссылаться на проекты с открытым исходным кодом, которые не являются проектами CNCF или не находятся в организациях GitHub kubernetes, или kubernetes-sigs.
+1. Содержание учебных курсов.
     - Разрешено:
-        - Ссылаться на независимые от разработчиков учебные курсы Kubernetes, предлагаемыми [CNCF](https://www.cncf.io/), [Linux Foundation](https://www.linuxfoundation.org/) и [Linux Academy](https://linuxacademy.com/) (партнер Linux Foundation)
-            - Пример: добавление ссылок на курсы Linux Academy, такие как [Kubernetes Quick Start](https://linuxacademy.com/course/kubernetes-quick-start/) в [Kubernetes Security](https://linuxacademy.com/course/kubernetes-security/)
+        - Ссылаться на независимые от разработчиков учебные курсы Kubernetes, предлагаемыми [CNCF](https://www.cncf.io/), [Linux Foundation](https://www.linuxfoundation.org/) и [Linux Academy](https://linuxacademy.com/) (партнер Linux Foundation).
+            - Пример: добавление ссылок на курсы Linux Academy, такие как [Kubernetes Quick Start](https://linuxacademy.com/course/kubernetes-quick-start/) и [Kubernetes Security](https://linuxacademy.com/course/kubernetes-security/).
     - Запрещено:
-        - Ссылаться на учебныЕе онлайн-курсы, вне CNCF, Linux Foundation или Linux Academy; документация Kubernetes не содержит ссылок на сторонний контент
+        - Ссылаться на учебные онлайн-курсы, не относящиеся к CNCF, Linux Foundation или Linux Academy; документация Kubernetes не содержит ссылок на сторонний контент.
             - Пример: добавление ссылок на учебные руководства или курсы Kubernetes на Medium, KodeKloud, Udacity, Coursera, learnk8s и т.д.
-        - Ссылаться на руководства определённых разработчиков вне зависимости от обучающей организации
-            - Пример: добавление ссылок на такие курсы Linux Academy, как [Google Kubernetes Engine Deep Dive](https://linuxacademy.com/google-cloud-platform/training/course/name/google-kubernetes-engine-deep-dive) and [Amazon EKS Deep Dive](https://linuxacademy.com/course/amazon-eks-deep-dive/)
+        - Ссылаться на руководства определённых разработчиков вне зависимости от обучающей организации.
+            - Пример: добавление ссылок на такие курсы Linux Academy, как [Google Kubernetes Engine Deep Dive](https://linuxacademy.com/google-cloud-platform/training/course/name/google-kubernetes-engine-deep-dive) и [Amazon EKS Deep Dive](https://linuxacademy.com/course/amazon-eks-deep-dive/)
 
 Если у вас есть вопросы по поводу допустимого контента, присоединяйтесь к каналу #sig-docs в [Slack Kubernetes](http://slack.k8s.io/)!
 
diff --git a/content/ru/docs/contribute/style/style-guide.md b/content/ru/docs/contribute/style/style-guide.md
index 327cd0d87c..b574180418 100644
--- a/content/ru/docs/contribute/style/style-guide.md
+++ b/content/ru/docs/contribute/style/style-guide.md
@@ -24,7 +24,7 @@ card:
 
 ## Язык
 
-Документация Kubernetes была переведена на несколько языков (см. [README-файлы локализаций](https://github.com/kubernetes/website/blob/master/README.md#localization-readmemds)).
+Документация Kubernetes была переведена на несколько языков (см. [README-файлы локализаций](https://github.com/kubernetes/website/blob/main/README.md#localization-readmemds)).
 
 Процесс локализации документации на другие языки описан в [соответствующей странице по локализации](/ru/docs/contribute/localization/).
 
@@ -567,5 +567,3 @@ Create a new cluster. | Turn up a new cluster.
 * Подробнее про [написание новой темы](/ru/docs/contribute/style/write-new-topic/).
 * Подробнее про [использование шаблонов страниц](/ru/docs/contribute/style/page-templates/).
 * Подробнее про [создание пулреквеста](/ru/docs/contribute/start/#отправка-пулреквеста)).
-
-
diff --git a/content/ru/docs/reference/_index.md b/content/ru/docs/reference/_index.md
index 2ba82f7d87..9fa7a001b2 100644
--- a/content/ru/docs/reference/_index.md
+++ b/content/ru/docs/reference/_index.md
@@ -32,22 +32,22 @@ content_type: concept
 Для вызова API Kubernetes из языка программирования вы можете использовать
 [клиентские библиотеки](/docs/reference/using-api/client-libraries/). Официально поддерживаемые клиентские библиотеки:
 
-- [Клиентская библиотека для Go](https://github.com/kubernetes/client-go/)
-- [Клиентская библиотека для Python](https://github.com/kubernetes-client/python)
-- [Клиентская библиотека для Java](https://github.com/kubernetes-client/java)
-- [Клиентская библиотека для JavaScript](https://github.com/kubernetes-client/javascript)
+- [Клиентская библиотека Go](https://github.com/kubernetes/client-go/)
+- [Клиентская библиотека Python](https://github.com/kubernetes-client/python)
+- [Клиентская библиотека Java](https://github.com/kubernetes-client/java)
+- [Клиентская библиотека JavaScript](https://github.com/kubernetes-client/javascript)
 
 ## Ссылки CLI
 
 * [kubectl](/docs/user-guide/kubectl-overview) - Основной инструмент CLI для запуска команд и управления кластерами Kubernetes.
-    * [JSONPath](/docs/user-guide/jsonpath/) - Документация по синтаксису использования [выражений JSONPath](http://goessner.net/articles/JsonPath/) с kubectl.
+* [JSONPath](/docs/user-guide/jsonpath/) - Документация по синтаксису использования [выражений JSONPath](http://goessner.net/articles/JsonPath/) с kubectl.
 * [kubeadm](/docs/admin/kubeadm/) - Инструмент CLI для легкого разворачивания защищенного кластера Kubernetes.
 * [kubefed](/docs/admin/kubefed/) - Инструмент CLI для помощи в администрировании федеративных кластеров.
 
 ## Ссылки на конфигурации
 
 * [kubelet](/docs/admin/kubelet/) - Основной *агент ноды*, который работает на каждой ноде. Kubelet принимает набор PodSpecs и гарантирует, что описанные контейнеры работают исправно.
-* [kube-apiserver](/docs/admin/kube-apiserver/) - REST API, который проверяет и настраивает данные для объектов API, таких как модули, службы, контроллеры и репликации.
+* [kube-apiserver](/docs/admin/kube-apiserver/) - REST API, который проверяет и настраивает данные для объектов API, таких, как модули, службы, контроллеры и репликации.
 * [kube-controller-manager](/docs/admin/kube-controller-manager/) - Демон, который встраивает основные контрольные циклы, поставляемые с Kubernetes.
 * [kube-proxy](/docs/admin/kube-proxy/) - Может выполнять простую пересылку запросов TCP/UDP или циклическую переадресацию TCP/UDP через набор бекендов.
 * [kube-scheduler](/docs/admin/kube-scheduler/) - Планировщик, который управляет доступностью, производительностью и хранилищем.
@@ -56,6 +56,6 @@ content_type: concept
 
 ## Дизайн документация
 
-Архив документации по дизайну для функциональности Kubernetes. Начните с [Архитектура Kubernetes](https://git.k8s.io/community/contributors/design-proposals/architecture/architecture.md) и [Обзор дизайна Kubernetes](https://git.k8s.io/community/contributors/design-proposals).
+Архив документации по дизайну для функциональности Kubernetes. Начните с [Архитектуры Kubernetes](https://git.k8s.io/community/contributors/design-proposals/architecture/architecture.md) и [Обзора дизайна Kubernetes](https://git.k8s.io/community/contributors/design-proposals).
 
 
diff --git a/content/ru/docs/reference/glossary/cloud-provider.md b/content/ru/docs/reference/glossary/cloud-provider.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/reference/glossary/container.md b/content/ru/docs/reference/glossary/container.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/reference/glossary/controller.md b/content/ru/docs/reference/glossary/controller.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/reference/glossary/daemonset.md b/content/ru/docs/reference/glossary/daemonset.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/reference/glossary/deployment.md b/content/ru/docs/reference/glossary/deployment.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/reference/glossary/docker.md b/content/ru/docs/reference/glossary/docker.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/reference/glossary/etcd.md b/content/ru/docs/reference/glossary/etcd.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/reference/glossary/kube-apiserver.md b/content/ru/docs/reference/glossary/kube-apiserver.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/reference/glossary/kube-controller-manager.md b/content/ru/docs/reference/glossary/kube-controller-manager.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/reference/glossary/kube-proxy.md b/content/ru/docs/reference/glossary/kube-proxy.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/reference/glossary/kube-scheduler.md b/content/ru/docs/reference/glossary/kube-scheduler.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/reference/glossary/kubelet.md b/content/ru/docs/reference/glossary/kubelet.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/reference/glossary/label.md b/content/ru/docs/reference/glossary/label.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/reference/glossary/name.md b/content/ru/docs/reference/glossary/name.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/reference/glossary/node.md b/content/ru/docs/reference/glossary/node.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/reference/glossary/pod.md b/content/ru/docs/reference/glossary/pod.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/reference/glossary/selector.md b/content/ru/docs/reference/glossary/selector.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/reference/glossary/service.md b/content/ru/docs/reference/glossary/service.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/reference/glossary/uid.md b/content/ru/docs/reference/glossary/uid.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/reference/kubectl/_index.md b/content/ru/docs/reference/kubectl/_index.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/reference/kubectl/cheatsheet.md b/content/ru/docs/reference/kubectl/cheatsheet.md
index 02a8a9bc4a..8c4721b4fc 100644
--- a/content/ru/docs/reference/kubectl/cheatsheet.md
+++ b/content/ru/docs/reference/kubectl/cheatsheet.md
@@ -235,7 +235,7 @@ kubectl get pod mypod -o yaml | sed 's/\(image: myimage\):.*$/\1:v4/' | kubectl
 
 kubectl label pods my-pod new-label=awesome                      # Добавить метку
 kubectl annotate pods my-pod icon-url=http://goo.gl/XXBTWq       # Добавить аннотацию
-kubectl autoscale deployment foo --min=2 --max=10                # Автоматически промасштабировать развёртывание "foo"
+kubectl autoscale deployment foo --min=2 --max=10                # Автоматически масштабировать развёртывание "foo" в диапазоне от 2 до 10 подов
 ```
 
 ## Обновление ресурсов
@@ -269,10 +269,10 @@ KUBE_EDITOR="nano" kubectl edit svc/docker-registry   # Использовать
 ## Масштабирование ресурсов
 
 ```bash
-kubectl scale --replicas=3 rs/foo                                 # Промасштабировать набор реплик (replicaset) 'foo' до 3
-kubectl scale --replicas=3 -f foo.yaml                            # Промасштабировать ресурс в "foo.yaml" до 3
-kubectl scale --current-replicas=2 --replicas=3 deployment/mysql  # Если количество реплик в развёртывании mysql равен 2, промасштабировать его до 3
-kubectl scale --replicas=5 rc/foo rc/bar rc/baz                   # Промасштабировать несколько контроллеров репликации
+kubectl scale --replicas=3 rs/foo                                 # Масштабирование набора реплик (replicaset) 'foo' до 3
+kubectl scale --replicas=3 -f foo.yaml                            # Масштабирование ресурса в "foo.yaml" до 3
+kubectl scale --current-replicas=2 --replicas=3 deployment/mysql  # Если количество реплик в развёртывании mysql равен 2, масштабировать его до 3
+kubectl scale --replicas=5 rc/foo rc/bar rc/baz                   # Масштабирование нескольких контроллеров репликации до 5
 ```
 
 ## Удаление ресурсов
@@ -362,7 +362,7 @@ kubectl api-resources --api-group=extensions # Все ресурсы в API-гр
 
 ### Уровни детальности вывода и отладки в Kubectl
 
-Уровни детальности вывода Kubectl регулируются с помощью флагов `-v` или `--v`, за которыми следует целое число, представляющее уровни логирования. Общие соглашения по логированиия Kubernetes и связанные с ними уровни описаны [здесь](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-instrumentation/logging.md).
+Уровни детальности вывода Kubectl регулируются с помощью флагов `-v` или `--v`, за которыми следует целое число, представляющее уровни логирования. Общие соглашения по логированию Kubernetes и связанные с ними уровни описаны [здесь](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-instrumentation/logging.md).
 
 
 Уровень детальности | Описание
diff --git a/content/ru/docs/reference/kubectl/docker-cli-to-kubectl.md b/content/ru/docs/reference/kubectl/docker-cli-to-kubectl.md
index 4d834098c6..c742e1fba4 100644
--- a/content/ru/docs/reference/kubectl/docker-cli-to-kubectl.md
+++ b/content/ru/docs/reference/kubectl/docker-cli-to-kubectl.md
@@ -70,7 +70,7 @@ kubectl run [-i] [--tty] --attach <name> --image=<image>
 ```
 
 В отличие от `docker run ...`, если вы укажете `--attach`, то присоедините `stdin`, `stdout` and `stderr`. Нельзя проконтролировать, какие потоки прикрепляются (`docker -a ...`).
-Чтобы отсоединиться от контейнера воспользуетесь комбинацией клавиш Ctrl+P, а затем Ctrl+Q.
+Чтобы отсоединиться от контейнера, воспользуетесь комбинацией клавиш Ctrl+P, а затем Ctrl+Q.
 
 Так как команда kubectl run запускает развёртывание для контейнера, то оно начнет перезапускаться, если завершить прикрепленный процесс по нажатию Ctrl+C, в отличие от команды `docker run -it`.
 Для удаления объекта Deployment вместе с подами, необходимо выполнить команду `kubectl delete deployment <name>`.
diff --git a/content/ru/docs/reference/kubectl/jsonpath.md b/content/ru/docs/reference/kubectl/jsonpath.md
index d6bd9b5c48..231d3a0dc9 100644
--- a/content/ru/docs/reference/kubectl/jsonpath.md
+++ b/content/ru/docs/reference/kubectl/jsonpath.md
@@ -90,7 +90,7 @@ kubectl get pods -o=jsonpath='{range .items[*]}{.metadata.name}{"\t"}{.status.st
 ```
 
 {{< note >}}
-В Windows нужно заключить в _двойные_ кавычки JSONPath-шаблон, который содержит пробелы (не в одинарные, как в примерах выше для bash). Таким образом, любые литералы в таких шаблонов нужно оборачивать в одинарные кавычки или экранированные двойные кавычки. Например:
+В Windows нужно заключить в _двойные_ кавычки JSONPath-шаблон, который содержит пробелы (не в одинарные, как в примерах выше для bash). Таким образом, любые литералы в таких шаблонах нужно оборачивать в одинарные кавычки или экранированные двойные кавычки. Например:
 
 ```cmd
 kubectl get pods -o=jsonpath="{range .items[*]}{.metadata.name}{'\t'}{.status.startTime}{'\n'}{end}"
diff --git a/content/ru/docs/reference/kubectl/kubectl.md b/content/ru/docs/reference/kubectl/kubectl.md
index ce01d0b8ab..405522525d 100644
--- a/content/ru/docs/reference/kubectl/kubectl.md
+++ b/content/ru/docs/reference/kubectl/kubectl.md
@@ -158,14 +158,14 @@ kubectl [flags]
 <td colspan="2">--default-not-ready-toleration-seconds int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;По умолчанию: 300</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Указывает tolerationSeconds для допущения notReady:NoExecute, которое по умолчанию добавляется к каждому поду, у которого нет установлено такое допущение.</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Указывает tolerationSeconds для допущения notReady:NoExecute, которое по умолчанию добавляется к каждому поду, у которого не установлено такое допущение.</td>
 </tr>
 
 <tr>
 <td colspan="2">--default-unreachable-toleration-seconds int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;По умолчанию: 300</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Указывает tolerationSeconds для допущения unreachable:NoExecute, которое по умолчанию добавляется к каждому поду, у которого нет установлено такое допущение.</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Указывает tolerationSeconds для допущения unreachable:NoExecute, которое по умолчанию добавляется к каждому поду, у которого не установлено такое допущение.</td>
 </tr>
 
 <tr>
@@ -221,7 +221,7 @@ kubectl [flags]
 <td colspan="2">--docker-tls-cert string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;По умолчанию: "cert.pem"</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">путь к клиентскому сертификату</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Путь к клиентскому сертификату</td>
 </tr>
 
 <tr>
@@ -277,7 +277,7 @@ kubectl [flags]
 <td colspan="2">--insecure-skip-tls-verify</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Если true, значит сертификат сервера не будет проверятся на достоверность. Это сделает подключения через HTTPS небезопасными.</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Если true, значит сертификат сервера не будет проверяться на достоверность. Это сделает подключения через HTTPS небезопасными.</td>
 </tr>
 
 <tr>
@@ -333,7 +333,7 @@ kubectl [flags]
 <td colspan="2">--logtostderr&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;По умолчанию: true</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Логировать в стандартный поток ошибок вместо сохранения логов в файлы</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">Вывод логов в стандартный поток ошибок вместо сохранения их в файлы</td>
 </tr>
 
 <tr>
@@ -521,48 +521,48 @@ kubectl [flags]
 ## {{% heading "seealso" %}}
 
 
-* [kubectl annotate](/docs/reference/generated/kubectl/kubectl-commands#annotate)	 - Обновить аннотации ресурса
-* [kubectl api-resources](/docs/reference/generated/kubectl/kubectl-commands#api-resources)	 - Вывести доступные API-ресурсы на сервере
-* [kubectl api-versions](/docs/reference/generated/kubectl/kubectl-commands#api-versions)	 - Вывести доступные API-версии на сервере в виде "group/version".
-* [kubectl apply](/docs/reference/generated/kubectl/kubectl-commands#apply)	 - Внести изменения в конфигурацию ресурса из файла или потока stdin.
-* [kubectl attach](/docs/reference/generated/kubectl/kubectl-commands#attach)	 - Присоединиться к запущенному контейнеру
-* [kubectl auth](/docs/reference/generated/kubectl/kubectl-commands#auth)	 - Проверить разрешение на выполнение определённых действий
-* [kubectl autoscale](/docs/reference/generated/kubectl/kubectl-commands#autoscale)	 - Автоматически промасштабировать Deployment, ReplicaSet или ReplicationController
-* [kubectl certificate](/docs/reference/generated/kubectl/kubectl-commands#certificate)	 - Изменить сертификаты ресурсов.
-* [kubectl cluster-info](/docs/reference/generated/kubectl/kubectl-commands#cluster-info)	 - Показать информацию по кластеру
-* [kubectl completion](/docs/reference/generated/kubectl/kubectl-commands#completion)	 - Вывод кода автодополнения указанной командной оболочки (bash или zsh)
-* [kubectl config](/docs/reference/generated/kubectl/kubectl-commands#config)	 - Изменить файлы kubeconfig
-* [kubectl convert](/docs/reference/generated/kubectl/kubectl-commands#convert)	 - Конвертировать конфигурационные файлы в различные API-версии
-* [kubectl cordon](/docs/reference/generated/kubectl/kubectl-commands#cordon)	 - Отметить узел как неназначаемый
-* [kubectl cp](/docs/reference/generated/kubectl/kubectl-commands#cp)	 - Копировать файлы и директории в/из контейнеров.
-* [kubectl create](/docs/reference/generated/kubectl/kubectl-commands#create)	 - Создать ресурс из файла или потока stdin.
-* [kubectl delete](/docs/reference/generated/kubectl/kubectl-commands#delete)	 - Удалить ресурсы из файла, потока stdin, либо с помощью селекторов меток, имен, селекторов ресурсов или ресурсов
-* [kubectl describe](/docs/reference/generated/kubectl/kubectl-commands#describe)	 - Показать подробную информацию о конкретном ресурсе или группе ресурсов
-* [kubectl diff](/docs/reference/generated/kubectl/kubectl-commands#diff)	 - Сравнить действующую версию с новой (применяемой)
-* [kubectl drain](/docs/reference/generated/kubectl/kubectl-commands#drain)	 - Вытеснить узел для подготовки к эксплуатации
-* [kubectl edit](/docs/reference/generated/kubectl/kubectl-commands#edit)	 - Отредактировать ресурс на сервере
-* [kubectl exec](/docs/reference/generated/kubectl/kubectl-commands#exec)	 - Выполнить команду в контейнере
-* [kubectl explain](/docs/reference/generated/kubectl/kubectl-commands#explain)	 - Получить документацию ресурсов
-* [kubectl expose](/docs/reference/generated/kubectl/kubectl-commands#expose)	 - Создать новый сервис Kubernetes из контроллера репликации, сервиса, развёртывания или пода
-* [kubectl get](/docs/reference/generated/kubectl/kubectl-commands#get)	 - Вывести один или несколько ресурсов
-* [kubectl kustomize](/docs/reference/generated/kubectl/kubectl-commands#kustomize)	 - Собрать ресурсы kustomization из директории или URL-адреса.
-* [kubectl label](/docs/reference/generated/kubectl/kubectl-commands#label)	 - Обновить метки ресурса
-* [kubectl logs](/docs/reference/generated/kubectl/kubectl-commands#logs)	 - Вывести логи контейнера в поде
-* [kubectl options](/docs/reference/generated/kubectl/kubectl-commands#options)	 - Вывести список флагов, применяемых ко всем командам
-* [kubectl patch](/docs/reference/generated/kubectl/kubectl-commands#patch)	 - Обновить один или несколько полей ресурса, используя стратегию слияния патча
-* [kubectl plugin](/docs/reference/generated/kubectl/kubectl-commands#plugin)	 - Команда для работы с плагинами.
-* [kubectl port-forward](/docs/reference/generated/kubectl/kubectl-commands#port-forward)	 - Переадресовать один или несколько локальных портов в под
-* [kubectl proxy](/docs/reference/generated/kubectl/kubectl-commands#proxy)	 - Запустить прокси на API-сервер Kubernetes
-* [kubectl replace](/docs/reference/generated/kubectl/kubectl-commands#replace)	 - Заменить ресурс из определения в файле или потоке stdin.
-* [kubectl rollout](/docs/reference/generated/kubectl/kubectl-commands#rollout)	 - Управление плавающим обновлением ресурса
-* [kubectl run](/docs/reference/generated/kubectl/kubectl-commands#run)	 -  Запустить указанный образ в кластере
-* [kubectl scale](/docs/reference/generated/kubectl/kubectl-commands#scale)	 - Задать новый размер для Deployment, ReplicaSet или Replication Controller.
-* [kubectl set](/docs/reference/generated/kubectl/kubectl-commands#set)	 - Конфигурировать ресурсы в объектах
-* [kubectl taint](/docs/reference/generated/kubectl/kubectl-commands#taint)	 - Обновить ограничения для одного или нескольких узлов
-* [kubectl top](/docs/reference/generated/kubectl/kubectl-commands#top)	 - Показать информацию по использованию системных ресурсов (процессор, память, диск)
-* [kubectl uncordon](/docs/reference/generated/kubectl/kubectl-commands#uncordon)	 - Отметить узел как назначаемый
-* [kubectl version](/docs/reference/generated/kubectl/kubectl-commands#version)	 - Вывести информацию о версии клиента и сервера
-* [kubectl wait](/docs/reference/generated/kubectl/kubectl-commands#wait)	 - Экспериментально: ожидать выполнения определенного условия в одном или нескольких ресурсах.
+* [kubectl annotate](/docs/reference/generated/kubectl/kubectl-commands#annotate)	- Обновить аннотации ресурса.
+* [kubectl api-resources](/docs/reference/generated/kubectl/kubectl-commands#api-resources) - Вывести доступные API-ресурсы на сервере.
+* [kubectl api-versions](/docs/reference/generated/kubectl/kubectl-commands#api-versions)	- Вывести доступные API-версии на сервере в виде "group/version".
+* [kubectl apply](/docs/reference/generated/kubectl/kubectl-commands#apply)	- Внести изменения в конфигурацию ресурса из файла или потока stdin.
+* [kubectl attach](/docs/reference/generated/kubectl/kubectl-commands#attach)	- Присоединиться к запущенному контейнеру.
+* [kubectl auth](/docs/reference/generated/kubectl/kubectl-commands#auth)	- Проверить разрешение на выполнение определённых действий.
+* [kubectl autoscale](/docs/reference/generated/kubectl/kubectl-commands#autoscale)	- Автоматически масштабировать Deployment, ReplicaSet или ReplicationController.
+* [kubectl certificate](/docs/reference/generated/kubectl/kubectl-commands#certificate)	- Изменить сертификаты ресурсов.
+* [kubectl cluster-info](/docs/reference/generated/kubectl/kubectl-commands#cluster-info)	- Показать информацию по кластеру.
+* [kubectl completion](/docs/reference/generated/kubectl/kubectl-commands#completion)	- Вывод кода автодополнения указанной командной оболочки (bash или zsh).
+* [kubectl config](/docs/reference/generated/kubectl/kubectl-commands#config)	- Изменить файлы kubeconfig.
+* [kubectl convert](/docs/reference/generated/kubectl/kubectl-commands#convert)	- Конвертировать конфигурационные файлы в различные API-версии.
+* [kubectl cordon](/docs/reference/generated/kubectl/kubectl-commands#cordon)	- Отметить узел как неназначаемый.
+* [kubectl cp](/docs/reference/generated/kubectl/kubectl-commands#cp)	- Копировать файлы и директории в/из контейнеров.
+* [kubectl create](/docs/reference/generated/kubectl/kubectl-commands#create)	- Создать ресурс из файла или потока stdin.
+* [kubectl delete](/docs/reference/generated/kubectl/kubectl-commands#delete)	- Удалить ресурсы из файла, потока stdin, либо с помощью селекторов меток, имен, селекторов ресурсов или ресурсов.
+* [kubectl describe](/docs/reference/generated/kubectl/kubectl-commands#describe)	- Показать подробную информацию о конкретном ресурсе или группе ресурсов.
+* [kubectl diff](/docs/reference/generated/kubectl/kubectl-commands#diff)	- Сравнить действующую версию с новой (применяемой).
+* [kubectl drain](/docs/reference/generated/kubectl/kubectl-commands#drain)	- Вытеснить узел для подготовки к эксплуатации.
+* [kubectl edit](/docs/reference/generated/kubectl/kubectl-commands#edit)	- Отредактировать ресурс на сервере.
+* [kubectl exec](/docs/reference/generated/kubectl/kubectl-commands#exec)	- Выполнить команду в контейнере.
+* [kubectl explain](/docs/reference/generated/kubectl/kubectl-commands#explain)	- Получить документацию ресурсов.
+* [kubectl expose](/docs/reference/generated/kubectl/kubectl-commands#expose)	- Создать новый сервис Kubernetes из контроллера репликации, сервиса, развёртывания или пода.
+* [kubectl get](/docs/reference/generated/kubectl/kubectl-commands#get)	- Вывести один или несколько ресурсов.
+* [kubectl kustomize](/docs/reference/generated/kubectl/kubectl-commands#kustomize)	- Собрать ресурсы kustomization из директории или URL-адреса.
+* [kubectl label](/docs/reference/generated/kubectl/kubectl-commands#label)	- Обновить метки ресурса.
+* [kubectl logs](/docs/reference/generated/kubectl/kubectl-commands#logs)	- Вывести логи контейнера в поде.
+* [kubectl options](/docs/reference/generated/kubectl/kubectl-commands#options)	- Вывести список флагов, применяемых ко всем командам.
+* [kubectl patch](/docs/reference/generated/kubectl/kubectl-commands#patch)	- Обновить один или несколько полей ресурса, используя стратегию слияния патча.
+* [kubectl plugin](/docs/reference/generated/kubectl/kubectl-commands#plugin)	- Команда для работы с плагинами.
+* [kubectl port-forward](/docs/reference/generated/kubectl/kubectl-commands#port-forward)	- Переадресовать один или несколько локальных портов в под.
+* [kubectl proxy](/docs/reference/generated/kubectl/kubectl-commands#proxy)	- Запустить прокси на API-сервер Kubernetes.
+* [kubectl replace](/docs/reference/generated/kubectl/kubectl-commands#replace)	- Заменить ресурс из определения в файле или потоке stdin.
+* [kubectl rollout](/docs/reference/generated/kubectl/kubectl-commands#rollout)	- Управление плавающим обновлением ресурса.
+* [kubectl run](/docs/reference/generated/kubectl/kubectl-commands#run)	- Запустить указанный образ в кластере.
+* [kubectl scale](/docs/reference/generated/kubectl/kubectl-commands#scale)	- Задать новый размер для Deployment, ReplicaSet или Replication Controller.
+* [kubectl set](/docs/reference/generated/kubectl/kubectl-commands#set)	- Конфигурировать ресурсы в объектах.
+* [kubectl taint](/docs/reference/generated/kubectl/kubectl-commands#taint)	- Обновить ограничения для одного или нескольких узлов.
+* [kubectl top](/docs/reference/generated/kubectl/kubectl-commands#top)	- Показать информацию по использованию системных ресурсов (процессор, память, диск).
+* [kubectl uncordon](/docs/reference/generated/kubectl/kubectl-commands#uncordon)	- Отметить узел как назначаемый.
+* [kubectl version](/docs/reference/generated/kubectl/kubectl-commands#version) - Вывести информацию о версии клиента и сервера.
+* [kubectl wait](/docs/reference/generated/kubectl/kubectl-commands#wait) - Экспериментально: ожидать выполнения определенного условия в одном или нескольких ресурсах.
 
 
 
diff --git a/content/ru/docs/reference/kubectl/overview.md b/content/ru/docs/reference/kubectl/overview.md
index 58305f2d95..15a0a3e611 100644
--- a/content/ru/docs/reference/kubectl/overview.md
+++ b/content/ru/docs/reference/kubectl/overview.md
@@ -52,7 +52,7 @@ kubectl [command] [TYPE] [NAME] [flags]
 
    * Выбор ресурсов по одному или нескольким файлов:  `-f file1 -f file2 -f file<#>`
 
-      * [Используйте YAML вместо JSON](/docs/concepts/configuration/overview/#general-configuration-tips), так так YAML удобнее для пользователей, особенно в конфигурационных файлов.<br/>
+      * [Используйте YAML вместо JSON](/docs/concepts/configuration/overview/#general-configuration-tips), так как YAML удобнее для пользователей, особенно в конфигурационных файлах.<br/>
      Пример: `kubectl get pod -f ./pod.yaml`
 
 * `flags`: определяет дополнительные флаги. Например, вы можете использовать флаги `-s` или `--server`, чтобы указать адрес и порт API-сервера Kubernetes.<br/>
@@ -162,7 +162,7 @@ kubectl [command] [TYPE] [NAME] [flags]
 
 ### Форматирование вывода
 
-Стандартный формат вывода всех команд `kubectl` представлен в человекочитаемом текстовом формате. Чтобы вывести подробности в определенном формате можно добавить флаги `-o` или `--output` к команде `kubectl`.
+Стандартный формат вывода всех команд `kubectl` представлен в понятном для человека текстовом формате. Чтобы вывести подробности в определенном формате можно добавить флаги `-o` или `--output` к команде `kubectl`.
 
 #### Синтаксис
 
@@ -229,7 +229,7 @@ submit-queue   610995
 
 `kubectl` может получать информацию об объектах с сервера.
 Это означает, что для любого указанного ресурса сервер вернет столбцы и строки по этому ресурсу, которые отобразит клиент.
-Благодаря тому, что сервер инкапсулирует реализацию вывода, гарантируется единообразный и человекочитаемый вывод на всех клиентах, использующих один и тот же кластер.
+Благодаря тому, что сервер инкапсулирует реализацию вывода, гарантируется единообразный и понятный для человека вывод на всех клиентах, использующих один и тот же кластер.
 
 Эта функциональность включена по умолчанию, начиная с `kubectl` 1.11 и выше. Чтобы отключить ее, добавьте флаг `--server-print=false` в команду `kubectl get`.
 
@@ -340,7 +340,7 @@ kubectl delete pods,services -l name=<label-name>
 kubectl delete pods --all
 ```
 
-`kubectl exec` - Выполнить команду в контейнера пода.
+`kubectl exec` - Выполнить команду в контейнере пода.
 
 ```shell
 # Получить вывод от запущенной команды 'date' в поде <pod-name>. По умолчанию отображается вывод из первого контейнера.
diff --git a/content/ru/docs/setup/learning-environment/minikube.md b/content/ru/docs/setup/learning-environment/minikube.md
index 500d171abe..fea7e14252 100644
--- a/content/ru/docs/setup/learning-environment/minikube.md
+++ b/content/ru/docs/setup/learning-environment/minikube.md
@@ -525,6 +525,4 @@ Minikube использует [libmachine](https://github.com/docker/machine/tre
 
 ## Сообщество
 
-Помощь, вопросы и комментарии приветствуются и поощряются! Разработчики Minikube проводят время на [Slack](https://kubernetes.slack.com) в канале #minikube (получить приглашение можно [здесь](http://slack.kubernetes.io/)). У нас также есть [список рассылки kubernetes-dev на Google Groups](https://groups.google.com/forum/#!forum/kubernetes-dev). Если вы отправляете сообщение в список, пожалуйста, начните вашу тему с "minikube: ".
-
-
+Помощь, вопросы и комментарии приветствуются и поощряются! Разработчики Minikube проводят время на [Slack](https://kubernetes.slack.com) в канале #minikube (получить приглашение можно [здесь](http://slack.kubernetes.io/)). У нас также есть [список рассылки dev@kubernetes на Google Groups](https://groups.google.com/a/kubernetes.io/g/dev/). Если вы отправляете сообщение в список, пожалуйста, начните вашу тему с "minikube: ".
diff --git a/content/ru/docs/tasks/configure-pod-container/_index.md b/content/ru/docs/tasks/configure-pod-container/_index.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/tasks/configure-pod-container/assign-cpu-resource.md b/content/ru/docs/tasks/configure-pod-container/assign-cpu-resource.md
index f82d690af5..d91ea012c7 100644
--- a/content/ru/docs/tasks/configure-pod-container/assign-cpu-resource.md
+++ b/content/ru/docs/tasks/configure-pod-container/assign-cpu-resource.md
@@ -158,7 +158,7 @@ CPU всегда запрашивается в абсолютных величи
 
 В этом упражнении мы создадим Pod с запросом CPU, превышающим мощности любой ноды в вашем кластере.
 Ниже представлен конфигурационный файл для Pod'а с одним контейнером. Контейнер запрашивает 100 CPU,
-что почти наверняка превышет имеющиеся мощности любой ноды в кластере.
+что почти наверняка превышает имеющиеся мощности любой ноды в кластере.
 
 {{< codenew file="pods/resource/cpu-request-limit-2.yaml" >}}
 
diff --git a/content/ru/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md b/content/ru/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md
index 62b03f55a4..fd99c78cd6 100644
--- a/content/ru/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md
+++ b/content/ru/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md
@@ -59,7 +59,7 @@ kubelet исполняет команду `cat /tmp/healthy` в целевом 
 Когда контейнер запускается, он исполняет команду
 
 ```shell
-/bin/sh -c "touch /tmp/healthy; sleep 30; rm -rf /tmp/healthy; sleep 600"
+/bin/sh -c "touch /tmp/healthy; sleep 30; rm -f /tmp/healthy; sleep 600"
 ```
 
 Для первых 30 секунд жизни контейнера существует файл `/tmp/healthy`.
@@ -137,7 +137,7 @@ kubelet отправляет запрос HTTP GET на сервер, котор
 Любой код, больший или равный 200 и меньший 400, означает успех. Любой другой код интерпретируется как ошибка.
 
 Вы можете посмотреть исходные коды сервера в
-[server.go](https://github.com/kubernetes/kubernetes/blob/{{< param "githubbranch" >}}/test/images/agnhost/liveness/server.go).
+[server.go](https://github.com/kubernetes/kubernetes/blob/master/test/images/agnhost/liveness/server.go).
 
 В течение первых 10 секунд жизни контейнера обработчик `/healthz`
 возвращает статус 200. После обработчик возвращает статус 500.
diff --git a/content/ru/docs/tasks/tools/_index.md b/content/ru/docs/tasks/tools/_index.md
old mode 100755
new mode 100644
diff --git a/content/ru/docs/tasks/tools/install-kubectl.md b/content/ru/docs/tasks/tools/install-kubectl.md
index b86ecb9b72..a5ab438012 100644
--- a/content/ru/docs/tasks/tools/install-kubectl.md
+++ b/content/ru/docs/tasks/tools/install-kubectl.md
@@ -65,7 +65,7 @@ echo "deb https://apt.kubernetes.io/ kubernetes-xenial main" | sudo tee -a /etc/
 sudo apt-get update
 sudo apt-get install -y kubectl
 {{< /tab >}}
-{{< tab name="CentOS, RHEL или Fedora" codelang="bash" >}}cat <<EOF > /etc/yum.repos.d/kubernetes.repo
+{{< tab name="CentOS, RHEL или Fedora" codelang="bash" >}}sudo cat <<EOF > /etc/yum.repos.d/kubernetes.repo
 [kubernetes]
 name=Kubernetes
 baseurl=https://packages.cloud.google.com/yum/repos/kubernetes-el7-x86_64
@@ -74,7 +74,7 @@ gpgcheck=1
 repo_gpgcheck=1
 gpgkey=https://packages.cloud.google.com/yum/doc/yum-key.gpg https://packages.cloud.google.com/yum/doc/rpm-package-key.gpg
 EOF
-yum install -y kubectl
+sudo yum install -y kubectl
 {{< /tab >}}
 {{< /tabs >}}
 
@@ -461,7 +461,7 @@ source <(kubectl completion zsh)
 
 ```shell
 echo 'alias k=kubectl' >>~/.zshrc
-echo 'complete -F __start_kubectl k' >>~/.zshrc
+echo 'compdef __start_kubectl k' >>~/.zshrc
 ```
 
 После перезагрузки командной оболочки должны появляться дополнения ввода kubectl.
diff --git a/content/ru/docs/templates/feature-state-beta.txt b/content/ru/docs/templates/feature-state-beta.txt
index 7e4f0d91b6..2d3786020d 100644
--- a/content/ru/docs/templates/feature-state-beta.txt
+++ b/content/ru/docs/templates/feature-state-beta.txt
@@ -3,6 +3,6 @@
 * Названия версий включают надпись "beta" (например, v2beta3).
 * Код хорошо протестирован. Активация этой функциональности — безопасно. Поэтому она включена по умолчанию.
 * Поддержка функциональности в целом не будет прекращена, хотя детали могут измениться.
-* Схема и/или семантика объектов может стать несовместимой с более поздними бета-версиями или стабильными выпусками. Когда это случится, мы даим инструкции по миграции на следующую версию. Это обновление может включать удаление, редактирование и повторного создание API-объектов. Этот процесс может потребовать тщательного анализа. Кроме этого, он может привести к простою приложений, которые используют данную функциональность.
+* Схема и/или семантика объектов может стать несовместимой с более поздними бета-версиями или стабильными выпусками. Когда это случится, мы даем инструкции по миграции на следующую версию. Это обновление может включать удаление, редактирование и повторного создание API-объектов. Этот процесс может потребовать тщательного анализа. Кроме этого, он может привести к простою приложений, которые используют данную функциональность.
 * Рекомендуется только для неосновного производственного использования из-за риска возникновения возможных несовместимых изменений с будущими версиями. Если у вас есть несколько кластеров, которые возможно обновить независимо, вы можете снять это ограничение.
 * **Пожалуйста, попробуйте в действии бета-версии функциональности и поделитесь своими впечатлениями! После того, как функциональность выйдет из бета-версии, нам может быть нецелесообразно что-то дальше изменять.**
diff --git a/content/ru/docs/tutorials/_index.md b/content/ru/docs/tutorials/_index.md
index e251975329..6cbe48cbe4 100644
--- a/content/ru/docs/tutorials/_index.md
+++ b/content/ru/docs/tutorials/_index.md
@@ -47,6 +47,8 @@ content_type: concept
 
 * [AppArmor](/docs/tutorials/clusters/apparmor/)
 
+* [seccomp](/docs/tutorials/clusters/seccomp/)
+
 ## Сервисы
 
 * [Использование IP](/docs/tutorials/services/source-ip/)
diff --git a/content/ru/docs/tutorials/kubernetes-basics/_index.html b/content/ru/docs/tutorials/kubernetes-basics/_index.html
index e6548931c3..ccdaefe8b8 100644
--- a/content/ru/docs/tutorials/kubernetes-basics/_index.html
+++ b/content/ru/docs/tutorials/kubernetes-basics/_index.html
@@ -99,7 +99,7 @@ card:
               <div class="thumbnail">
                 <a href="/ru/docs/tutorials/kubernetes-basics/update/update-intro/"><img src="/docs/tutorials/kubernetes-basics/public/images/module_06.svg?v=1469803628347" alt=""></a>
                 <div class="caption">
-                  <a href="/ru/docs/tutorials/kubernetes-basics/update/update-intro/"><h5>6. Обновление приложение</h5></a>
+                  <a href="/ru/docs/tutorials/kubernetes-basics/update/update-intro/"><h5>6. Обновление приложения</h5></a>
                 </div>
               </div>
             </div>
diff --git a/content/ru/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro.html b/content/ru/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro.html
index 502beb23bd..738d2b0bc6 100644
--- a/content/ru/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro.html
+++ b/content/ru/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro.html
@@ -28,7 +28,7 @@ weight: 10
             <div class="col-md-8">
                 <h3>Развёртывания Kubernetes</h3>
 
-                <p>Как только вы запустили кластер Kubernetes, вы можете развернуть свои контейнеризированные приложения в него. Для этого вам нужно создать конфигурацию <b>развёртывания (Deployment)</b> в Kubernetes. Развёртывание сообщает Kubernetes, как создавать и обновлять экземпляры вашего приложения. После создания развёртывания ведущий узел Kubernetes планирует запустить экземпляры приложения на отдельных узлах в кластере.</p>
+                <p>Как только вы запустили кластер Kubernetes, вы можете развернуть на нём свои контейнеризированные приложения. Для этого вам нужно создать конфигурацию <b>развёртывания (Deployment)</b> в Kubernetes. Развёртывание сообщает Kubernetes, как создавать и обновлять экземпляры вашего приложения. После создания развёртывания ведущий узел Kubernetes планирует запустить экземпляры приложения на отдельных узлах в кластере.</p>
 
                 <p>Когда экземпляры приложения были созданы, контроллер развёртывания Kubernetes непрерывно отслеживает их. Если узел, на котором размещен экземпляр, вышёл из строя или был удалён, контроллер развёртывания вместо этого экземпляра использует экземпляр на другом узле в кластере. <b>Этот процесс представляет собой механизм самовосстановления, обеспечивающий работу кластера в случае возникновения аппаратных неисправностей либо технических работ.</b>
 
diff --git a/content/ru/docs/tutorials/kubernetes-basics/expose/expose-intro.html b/content/ru/docs/tutorials/kubernetes-basics/expose/expose-intro.html
index 3ef66070ff..1a59057eb8 100644
--- a/content/ru/docs/tutorials/kubernetes-basics/expose/expose-intro.html
+++ b/content/ru/docs/tutorials/kubernetes-basics/expose/expose-intro.html
@@ -29,9 +29,9 @@ weight: 10
 			<h3>Обзор сервисов Kubernetes</h3>
 			<p><a href="/docs/concepts/workloads/pods/pod-overview/">Под</a> — это расходный материал в Kubernetes. У подов есть <a href="/docs/concepts/workloads/pods/pod-lifecycle/">жизненный цикл</a>. Когда рабочий узел завершается, запущенные поды в узле также уничтожаются. После этого <a href="/docs/concepts/workloads/controllers/replicaset/">ReplicaSet</a> попытается автоматически вернуть кластер обратно в требуемое состояние, создавая новые поды, чтобы поддержать работоспособность приложения. Другой пример — бэкенд для обработки изображений с 3 репликами. Поскольку это взаимозаменяемые реплики, то они не влияют на фронтенд-часть, даже если под был уничтожен и пересоздан. Тем не менее, каждый под в кластере Kubernetes имеет уникальный IP-адрес, даже под на одном и том же узле, поэтому должен быть способ автоматической координации изменений между подами, чтобы приложения продолжали функционировать.</p>
 
-			<p>Сервис в Kubernetes — это абстрактный объект, который определяет логический набор подов и политику доступа к ним. Сервисы создают слабую связь между подами, которые от них зависят. Сервис создаётся в формате YAML <a href="/docs/concepts/configuration/overview/#general-configuration-tips">(рекомендуемый формат)</a> или JSON, как и все остальные объекты в Kubernetes. Как правило, набор подов для сервиса определяется <i>LabelSelector</i> (ниже описано, в каких случаях понадобиться сервис без указания <code>selector</code> в спецификации).</p>
+			<p>Сервис в Kubernetes — это абстрактный объект, который определяет логический набор подов и политику доступа к ним. Сервисы создают слабую связь между подами, которые от них зависят. Сервис создаётся в формате YAML <a href="/docs/concepts/configuration/overview/#general-configuration-tips">(рекомендуемый формат)</a> или JSON, как и все остальные объекты в Kubernetes. Как правило, набор подов для сервиса определяется <i>LabelSelector</i> (ниже описано, в каких случаях понадобится сервис без указания <code>selector</code> в спецификации).</p>
 
-			<p>Хотя у каждого пода есть уникальный IP-адрес, эти IP-адреса не доступны за пределами кластера без использования сервиса. Сервисы позволяют приложениям принимать трафик. Сервисы могут по-разному открыты, в зависимости от указанного поля <code>type</code> в ServiceSpec:</p>
+			<p>Хотя у каждого пода есть уникальный IP-адрес, эти IP-адреса не доступны за пределами кластера без использования сервиса. Сервисы позволяют приложениям принимать трафик. Сервисы могут быть по-разному открыты, в зависимости от указанного поля <code>type</code> в ServiceSpec:</p>
 			<ul>
 				<li><i>ClusterIP</i> (по умолчанию) - открывает доступ к сервису по внутреннему IP-адресу в кластере. Этот тип делает сервис доступным только внутри кластера.</li>
 				<li><i>NodePort</i> - открывает сервис на одном и том же порту каждого выбранного узла в кластере с помощью NAT. Делает сервис доступным вне кластера, используя <code>&lt;NodeIP&gt;:&lt;NodePort&gt;</code>. Является надмножеством ClusterIP.</li>
diff --git a/content/ru/examples/pods/probe/exec-liveness.yaml b/content/ru/examples/pods/probe/exec-liveness.yaml
index 07bf75f85c..6a9c9b3213 100644
--- a/content/ru/examples/pods/probe/exec-liveness.yaml
+++ b/content/ru/examples/pods/probe/exec-liveness.yaml
@@ -11,7 +11,7 @@ spec:
     args:
     - /bin/sh
     - -c
-    - touch /tmp/healthy; sleep 30; rm -rf /tmp/healthy; sleep 600
+    - touch /tmp/healthy; sleep 30; rm -f /tmp/healthy; sleep 600
     livenessProbe:
       exec:
         command:
diff --git a/content/ru/includes/task-tutorial-prereqs.md b/content/ru/includes/task-tutorial-prereqs.md
index 0190567b09..4467c1d417 100644
--- a/content/ru/includes/task-tutorial-prereqs.md
+++ b/content/ru/includes/task-tutorial-prereqs.md
@@ -4,5 +4,5 @@
 [Minikube](/docs/setup/learning-environment/minikube/),
 или вы можете использовать одну из песочниц Kubernetes:
 
-* [Katacoda](https://www.katacoda.com/courses/kubernetes/playground)
+* [Killercoda](https://killercoda.com/playgrounds/scenario/kubernetes)
 * [Play with Kubernetes](http://labs.play-with-k8s.com/)
diff --git a/content/uk/_index.html b/content/uk/_index.html
index ebf3f6ea18..3128e08da5 100644
--- a/content/uk/_index.html
+++ b/content/uk/_index.html
@@ -62,12 +62,12 @@ Kubernetes - проект з відкритим вихідним кодом. В
         <button id="desktopShowVideoButton" onclick="kub.showVideo()">Переглянути відео</button>
         <br>
         <br>
-        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccncna21" button id="desktopKCButton">Відвідайте KubeCon у Північній Америці, 11-15 жовтня 2021 року</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/" button id="desktopKCButton">Відвідайте KubeCon у Північній Америці, 24-28 жовтня 2022 року</a>
         <br>
         <br>
         <br>
         <br>
-        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe-2022/?utm_source=kubernetes.io&utm_medium=nav&utm_campaign=kccnceu22" button id="desktopKCButton">Відвідайте KubeCon в Європі, 17-20 травня 2022 року</a>
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/" button id="desktopKCButton">Відвідайте KubeCon в Європі, 17-21 квітня 2023 року</a>
 
 </div>
 <div id="videoPlayer">
diff --git a/content/uk/docs/concepts/overview/what-is-kubernetes.md b/content/uk/docs/concepts/overview/what-is-kubernetes.md
index 4bc2cb6a00..0b720f4aca 100644
--- a/content/uk/docs/concepts/overview/what-is-kubernetes.md
+++ b/content/uk/docs/concepts/overview/what-is-kubernetes.md
@@ -60,7 +60,7 @@ Each VM is a full machine running all the components, including its own operatin
 <!--
 **Container deployment era:** Containers are similar to VMs, but they have relaxed isolation properties to share the Operating System (OS) among the applications. Therefore, containers are considered lightweight. Similar to a VM, a container has its own filesystem, CPU, memory, process space, and more. As they are decoupled from the underlying infrastructure, they are portable across clouds and OS distributions.
 -->
-**Ера розгортання контейнерів:** Контейнери схожі на VM, але мають спрощений варіант ізоляції і використовують спільну операційну систему для усіх застосунків. Саму тому контейнери вважаються легковісними. Подібно до VM, контейнер має власну файлову систему, ЦПУ, пам'ять, простір процесів тощо. Оскільки контейнери вивільнені від підпорядкованої інфраструктури, їх можна легко переміщати між хмарними провайдерами чи дистрибутивами операційних систем.
+**Ера розгортання контейнерів:** Контейнери схожі на VM, але мають спрощений варіант ізоляції і використовують спільну операційну систему для усіх застосунків. Саме тому контейнери вважаються "легкими", в порівнянні з віртуалками. Подібно до VM, контейнер має власну файлову систему, ЦПУ, пам'ять, простір процесів тощо. Оскільки контейнери вивільнені від підпорядкованої інфраструктури, їх можна легко переміщати між хмарними провайдерами чи дистрибутивами операційних систем.
 <!--
 Containers have become popular because they provide extra benefits, such as:
 -->
@@ -93,7 +93,7 @@ Containers have become popular because they provide extra benefits, such as:
 <!--
 ## Why you need Kubernetes and what can it do
 -->
-## Чому вам потрібен Kebernetes і що він може робити
+## Чому вам потрібен Kubernetes і що він може робити
 
 <!--
 Containers are a good way to bundle and run your applications. In a production environment, you need to manage the containers that run the applications and ensure that there is no downtime. For example, if a container goes down, another container needs to start. Wouldn't it be easier if this behavior was handled by a system?
diff --git a/content/uk/docs/tasks/tools/install-minikube.md b/content/uk/docs/tasks/tools/install-minikube.md
index 3ddc95faa0..497f6e6aa6 100644
--- a/content/uk/docs/tasks/tools/install-minikube.md
+++ b/content/uk/docs/tasks/tools/install-minikube.md
@@ -13,15 +13,15 @@ card:
 a tool that runs a single-node Kubernetes cluster in a virtual machine on your personal computer.
 -->
 
-Ця сторінка описує як встановити [Minikube](/docs/tutorials/hello-minikube), інструмент який дозволяє
-запустити  Kubernetes кластер з однієї ноди у віртуальній машині на вашому персональному комп'ютері.
+Ця сторінка описує, як встановити [Minikube](/docs/tutorials/hello-minikube) - інструмент, який дозволяє
+запустити Kubernetes кластер з однієї ноди у віртуальній машині на вашому персональному комп'ютері.
 
 
 ## {{% heading "prerequisites" %}}
 
 {{< tabs name="minikube_before_you_begin" >}}
 {{% tab name="Linux" %}}
-Для перевірки, чи підтримується віртуалізація на Linux, запустіть наступну команду і впевніться що вивід команди не пустий:
+Для перевірки, чи підтримується віртуалізація на Linux, запустіть наступну команду і впевніться що її вивід не пустий:
 ```
 grep -E --color 'vmx|svm' /proc/cpuinfo
 ```
@@ -69,7 +69,7 @@ Hyper-V Requirements:     A hypervisor has been detected. Features required for
 
 ### Встановлення kubectl
 
-Впевніться що kubectl встановлен. Ви можете встановити kubectl згідно інструкції [Установка та налаштування kubectl](/docs/tasks/tools/install-kubectl/#install-kubectl-on-linux).
+Впевніться що kubectl встановлений. Ви можете встановити kubectl згідно інструкції [Встановлення та налаштування kubectl](/docs/tasks/tools/install-kubectl/#install-kubectl-on-linux).
 
 ### Встановлення Hypervisor
 
@@ -196,7 +196,7 @@ choco install minikube
 
 ### Встановлення Minikube за допомогою програми встановлення
 
-Для установкі Minikube вручну на Windows за допомогою [Windows Installer](https://docs.microsoft.com/en-us/windows/desktop/msi/windows-installer-portal), скачайте [`minikube-installer.exe`](https://github.com/kubernetes/minikube/releases/latest/download/minikube-installer.exe) та виконайте програму.
+Для встановлення Minikube вручну на Windows за допомогою [Windows Installer](https://docs.microsoft.com/en-us/windows/desktop/msi/windows-installer-portal), скачайте [`minikube-installer.exe`](https://github.com/kubernetes/minikube/releases/latest/download/minikube-installer.exe) та виконайте програму.
 
 ### Встановлення Minikube за допомогою прямого завантаження
 
@@ -226,7 +226,7 @@ choco install minikube
 minikube start --driver=<driver_name>
 ```
 
-Як тількі `minikube start` закінчився, запустіть команду нижче, щоб перевірити стан кластера:
+Після того як `minikube start` закінчився, запустіть команду нижче, щоб перевірити стан кластера:
 
 ```shell
 minikube status
diff --git a/content/uk/docs/tutorials/_index.md b/content/uk/docs/tutorials/_index.md
index c87a5155a0..a249e4814c 100644
--- a/content/uk/docs/tutorials/_index.md
+++ b/content/uk/docs/tutorials/_index.md
@@ -63,6 +63,8 @@ Before walking through each tutorial, you may want to bookmark the
 
 * [AppArmor](/docs/tutorials/clusters/apparmor/)
 
+* [seccomp](/docs/tutorials/clusters/seccomp/)
+
 ## Сервіси
 
 * [Використання Source IP](/docs/tutorials/services/source-ip/)
diff --git a/content/uk/docs/tutorials/kubernetes-basics/expose/expose-intro.html b/content/uk/docs/tutorials/kubernetes-basics/expose/expose-intro.html
index d439553731..0b230ec82b 100644
--- a/content/uk/docs/tutorials/kubernetes-basics/expose/expose-intro.html
+++ b/content/uk/docs/tutorials/kubernetes-basics/expose/expose-intro.html
@@ -113,7 +113,7 @@ weight: 10
 
 		<div class="row">
 			<div class="col-md-8">
-                <!--<p>A Service routes traffic across a set of Pods. Services are the abstraction that allow pods to die and replicate in Kubernetes without impacting your application. Discovery and routing among dependent Pods (such as the frontend and backend components in an application) is handled by Kubernetes Services.</p>
+                <!--<p>A Service routes traffic across a set of Pods. Services are the abstraction that allows pods to die and replicate in Kubernetes without impacting your application. Discovery and routing among dependent Pods (such as the frontend and backend components in an application) is handled by Kubernetes Services.</p>
                 -->
                 <p>Service маршрутизує трафік між Pod'ами, що входять до його складу. Service - це абстракція, завдяки якій Pod'и в Kubernetes "вмирають" і відтворюються, не впливаючи на роботу вашого застосунку. Services в Kubernetes здійснюють виявлення і маршрутизацію між залежними Pod'ами (як наприклад, фронтенд- і бекенд-компоненти  застосунку).</p>
                 <!--<p>Services match a set of Pods using <a href="/docs/concepts/overview/working-with-objects/labels">labels and selectors</a>, a grouping primitive that allows logical operation on objects in Kubernetes. Labels are key/value pairs attached to objects and can be used in any number of ways:</p>
diff --git a/content/vi/docs/concepts/architecture/_index.md b/content/vi/docs/concepts/architecture/_index.md
old mode 100755
new mode 100644
diff --git a/content/vi/docs/tasks/tools/install-kubectl.md b/content/vi/docs/tasks/tools/install-kubectl.md
index fe964d0b59..ae51a8b485 100644
--- a/content/vi/docs/tasks/tools/install-kubectl.md
+++ b/content/vi/docs/tasks/tools/install-kubectl.md
@@ -450,7 +450,7 @@ Nếu bạn có alias cho kubectl, bạn có thể mở rộng shell completion
 
 ```shell
 echo 'alias k=kubectl' >>~/.zshrc
-echo 'complete -F __start_kubectl k' >>~/.zshrc
+echo 'compdef __start_kubectl k' >>~/.zshrc
 ```
     
 Sau khi tải lại shell, kubectl autocompletion sẽ hoạt động.
diff --git a/content/vi/partners/_index.html b/content/vi/partners/_index.html
index f5b44d5e94..3ea37f2242 100644
--- a/content/vi/partners/_index.html
+++ b/content/vi/partners/_index.html
@@ -7,85 +7,48 @@ cid: partners
 ---
 
 <section id="users">
-    <main class="main-section">
-        <h5>Kubernetes phối hợp làm việc với các đối tác để tạo ra một codebase mạnh mẽ hỗ trợ một loạt các nền tảng bổ sung.</h5>
-        <div class="col-container">
-          <div class="col-nav">
-            <center>
-              <h5>
-                <b>Các nhà cung cấp dịch vụ được chứng nhận bởi Kubernetes (KCSP)</b>
-              </h5>
-              <br>Các nhà cung cấp dịch vụ được chứng nhận với bề dày kinh nghiệm sẽ trợ giúp các tổ chức kinh doanh, các công ty ứng dụng Kubernetes nhanh chóng.
-              <br><br><br>
-              <button id="kcsp" class="button" onClick="updateSrc(this.id)">Xem các đối tác KCSP</button>
-              <br><br>Bạn muốn trở thành một <a href="https://www.cncf.io/certification/kcsp/">KCSP</a>?
-            </center>
-          </div>
-          <div class="col-nav">
-            <center>
-              <h5>
-                <b>Các nhà phân phối Kubernetes, dịch vụ hosting, dịch vụ cài đặt</b>
-              </h5>Tiêu chuẩn tương thích về phần mềm bảo đảm rằng các phiên bản Kubernetes từ các nhà cung cấp sẽ hỗ trợ các bộ API được yêu cầu bởi khách hàng.
-              <br><br><br>
-              <button id="conformance" class="button" onClick="updateSrc(this.id)">Xem các đối tác Conformance</button>
-              <br><br>Bạn muốn trở thành một <a href="https://www.cncf.io/certification/software-conformance/">Kubernetes Certified</a>?
-            </center>
-          </div>
-          <div class="col-nav">
-            <center>
-              <h5><b>Các đối tác đào tạo Kubernetes (KTP)</b></h5>
-              <br>Các đối tác đào tạo được chứng nhận đã và đang sở hữu bề dày kinh nghiệm trong lĩnh vực đám mây.
-              <br><br><br><br>
-              <button id="ktp" class="button" onClick="updateSrc(this.id)">Xem các đối tác KTP</button>
-              <br><br>Bạn muốn trở thành một <a href="https://www.cncf.io/certification/training/">KTP</a>?
-            </center>
-          </div>
-        </div>
-<script src="https://code.jquery.com/jquery-3.3.1.min.js" integrity="sha256-FgpCb/KJQlLNfOu91ta32o/NMZxltwRo8QtmkMRdAu8=" crossorigin="anonymous"></script>
-<script type="text/javascript">
-
-			var defaultLink = "https://landscape.cncf.io/category=kubernetes-certified-service-provider&format=card-mode&grouping=category&embed=yes";
-			var firstLink = "https://landscape.cncf.io/category=certified-kubernetes-distribution,certified-kubernetes-hosted,certified-kubernetes-installer&format=card-mode&grouping=category&embed=yes";
-      var secondLink = "https://landscape.cncf.io/category=kubernetes-training-partner&format=card-mode&grouping=category&embed=yes";
-
-      function updateSrc(buttonId) {
-      	if (buttonId == "kcsp") {
-        		$("#landscape").attr("src",defaultLink);
-            window.location.hash = "#kcsp";
-        }
-        if (buttonId == "conformance") {
-         		$("#landscape").attr("src",firstLink);
-            window.location.hash = "#conformance";
-        }
-        if (buttonId == "ktp") {
-        		$("#landscape").attr("src",secondLink);
-            window.location.hash = "#ktp";
-        }
-      }
-
-      // Automatically load the correct iframe based on the URL fragment
-      document.addEventListener('DOMContentLoaded', function() {
-        var showContent = "kcsp";
-        if (window.location.hash) {
-          console.log('hash is:', window.location.hash.substring(1));
-          showContent = window.location.hash.substring(1);
-        }
-        updateSrc(showContent);
-      });
-</script>
-<body>
-    <div id="frameHolder">
-      <iframe id="landscape" title="CNCF Landscape" frameBorder="0" scrolling="no" style="width: 1px; min-width: 100%" src=""></iframe>
-      <script src="https://landscape.cncf.io/iframeResizer.js"></script>
+    <h5>Kubernetes phối hợp làm việc với các đối tác để tạo ra một codebase mạnh mẽ hỗ trợ một loạt các nền tảng bổ sung.</h5>
+    <div class="col-container">
+      <div class="col-nav">
+        <center>
+          <h5>
+            <b>Các nhà cung cấp dịch vụ được chứng nhận bởi Kubernetes (KCSP)</b>
+          </h5>
+          <br>Các nhà cung cấp dịch vụ được chứng nhận với bề dày kinh nghiệm sẽ trợ giúp các tổ chức kinh doanh, các công ty ứng dụng Kubernetes nhanh chóng.
+          <br><br><br>
+          <button class="button landscape-trigger landscape-default" data-landscape-types="kubernetes-certified-service-provider" id="kcsp">Xem các đối tác KCSP</button>
+          <br><br>Bạn muốn trở thành một 
+          <a href="https://www.cncf.io/certification/kcsp/">KCSP</a>?
+        </center>
+      </div>
+      <div class="col-nav">
+        <center>
+          <h5>
+            <b>Các nhà phân phối Kubernetes, dịch vụ hosting, dịch vụ cài đặt</b>
+          </h5>Tiêu chuẩn tương thích về phần mềm bảo đảm rằng các phiên bản Kubernetes từ các nhà cung cấp sẽ hỗ trợ các bộ API được yêu cầu bởi khách hàng.
+          <br><br><br>
+          <button class="button landscape-trigger" data-landscape-types="certified-kubernetes-distribution,certified-kubernetes-hosted,certified-kubernetes-installer" id="conformance">Xem các đối tác Conformance</button>
+          <br><br>Bạn muốn trở thành một 
+          <a href="https://www.cncf.io/certification/software-conformance/">Kubernetes Certified</a>?
+        </center>
+      </div>
+      <div class="col-nav">
+        <center>
+          <h5>
+            <b>Các đối tác đào tạo Kubernetes (KTP)</b>
+          </h5>
+          <br>Các đối tác đào tạo được chứng nhận đã và đang sở hữu bề dày kinh nghiệm trong lĩnh vực đám mây.
+          <br><br><br>
+          <button class="button landscape-trigger" data-landscape-types="kubernetes-training-partner" id="ktp">Xem các đối tác KTP</button>
+          <br><br>Bạn muốn trở thành một 
+          <a href="https://www.cncf.io/certification/training/">KTP</a>?
+        </center>
+      </div>
     </div>
-</body>
-    </main>
+    {{< cncf-landscape helpers=true >}}
 </section>
 
 <style>
     {{< include "partner-style.css" >}}
 </style>
 
-<script>
-    {{< include "partner-script.js" >}}
-</script>
diff --git a/content/zh/OWNERS b/content/zh-cn/OWNERS
similarity index 100%
rename from content/zh/OWNERS
rename to content/zh-cn/OWNERS
diff --git a/content/zh/_common-resources/images/blocks.svg b/content/zh-cn/_common-resources/images/blocks.svg
similarity index 100%
rename from content/zh/_common-resources/images/blocks.svg
rename to content/zh-cn/_common-resources/images/blocks.svg
diff --git a/content/zh/_common-resources/images/flower.svg b/content/zh-cn/_common-resources/images/flower.svg
similarity index 100%
rename from content/zh/_common-resources/images/flower.svg
rename to content/zh-cn/_common-resources/images/flower.svg
diff --git a/content/zh/_common-resources/images/kub_video_banner_homepage.jpg b/content/zh-cn/_common-resources/images/kub_video_banner_homepage.jpg
similarity index 100%
rename from content/zh/_common-resources/images/kub_video_banner_homepage.jpg
rename to content/zh-cn/_common-resources/images/kub_video_banner_homepage.jpg
diff --git a/content/zh/_common-resources/images/scalable.svg b/content/zh-cn/_common-resources/images/scalable.svg
similarity index 100%
rename from content/zh/_common-resources/images/scalable.svg
rename to content/zh-cn/_common-resources/images/scalable.svg
diff --git a/content/zh/_common-resources/images/suitcase.svg b/content/zh-cn/_common-resources/images/suitcase.svg
similarity index 100%
rename from content/zh/_common-resources/images/suitcase.svg
rename to content/zh-cn/_common-resources/images/suitcase.svg
diff --git a/content/zh/_common-resources/index.md b/content/zh-cn/_common-resources/index.md
similarity index 100%
rename from content/zh/_common-resources/index.md
rename to content/zh-cn/_common-resources/index.md
diff --git a/content/zh/_index.html b/content/zh-cn/_index.html
similarity index 69%
rename from content/zh/_index.html
rename to content/zh-cn/_index.html
index 71688a2e67..3594f0900d 100644
--- a/content/zh/_index.html
+++ b/content/zh-cn/_index.html
@@ -60,21 +60,21 @@ Kubernetes 是开源系统，可以自由地部署在企业内部，私有云、
 {{< blocks/section id="video" background-image="kub_video_banner_homepage" >}}
 
 <div class="light-text">
-    <!-- <h2>The Challenges of Migrating 150+ Microservices to Kubernetes</h2> -->
-    <h2>将 150+ 微服务迁移到 Kubernetes 上的挑战</h2>
-    <!-- <p>By Sarah Wells, Technical Director for Operations and Reliability, Financial Times</p> -->
-    <p>Sarah Wells, 运营和可靠性技术总监, 金融时报</p>
-    <button id="desktopShowVideoButton" onclick="kub.showVideo()">Watch Video</button>
-    <br>
-    <br>
-    <!-- <a href="https://www.lfasiallc.com/events/kubecon-cloudnativecon-china-2018/" button id="desktopKCButton">Attend KubeCon in Shanghai on Nov. 13-15, 2018</a> -->
-    <a href="https://www.lfasiallc.com/events/kubecon-cloudnativecon-china-2018/" button id="desktopKCButton">参加11月13日到15日的上海 KubeCon</a>
-    <br>
-    <br>
-    <br>
-    <br>
-    <!-- <a href="https://events.linuxfoundation.org/events/kubecon-cloudnativecon-north-america-2018/" button id="desktopKCButton">Attend KubeCon in Seattle on Dec. 11-13, 2018</a> -->
-    <a href="https://events.linuxfoundation.org/events/kubecon-cloudnativecon-north-america-2018/" button id="desktopKCButton">参加12月11日到13日的西雅图 KubeCon</a>
+<!-- <h2>The Challenges of Migrating 150+ Microservices to Kubernetes</h2> -->
+<h2>将 150+ 微服务迁移到 Kubernetes 上的挑战</h2>
+        <!-- <p>By Sarah Wells, Technical Director for Operations and Reliability, Financial Times</p> -->
+        <p>Sarah Wells, 运营和可靠性技术总监, 金融时报</p>
+        <button id="desktopShowVideoButton" onclick="kub.showVideo()">观看视频</button>
+        <br>
+        <br>
+        <!-- <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/" button id="desktopKCButton">Attend KubeCon North America on October 24-28, 2022</a> -->
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/" button id="desktopKCButton">参加 2022 年 10 月 24-28 日的北美 KubeCon</a>
+        <br>
+        <br>
+        <br>
+        <br>
+        <!-- <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe-2023/" button id="desktopKCButton">Attend KubeCon Europe on April 17-21, 2023</a> -->
+        <a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe-2023/" button id="desktopKCButton">参加 2023 年 4 月 17-21 日的欧洲 KubeCon</a>
 </div>
 <div id="videoPlayer">
     <iframe data-url="https://www.youtube.com/embed/H06qrNmGqyE?autoplay=1" frameborder="0" allowfullscreen></iframe>
@@ -84,4 +84,4 @@ Kubernetes 是开源系统，可以自由地部署在企业内部，私有云、
 
 {{< blocks/kubernetes-features >}}
 
-{{< blocks/case-studies >}}
\ No newline at end of file
+{{< blocks/case-studies >}}
diff --git a/content/zh-cn/blog/_index.md b/content/zh-cn/blog/_index.md
new file mode 100644
index 0000000000..ddd878254a
--- /dev/null
+++ b/content/zh-cn/blog/_index.md
@@ -0,0 +1,20 @@
+---
+title: Kubernetes 博客
+linkTitle: 博客
+menu:
+  main:
+    title: "博客"
+    weight: 40
+    post: >
+       <p>阅读关于 kubernetes 和容器规范的最新信息,以及获取最新的技术。</p>
+---
+
+{{< comment >}}
+
+<!-- For information about contributing to the blog, see
+https://kubernetes.io/docs/contribute/new-content/blogs-case-studies/#write-a-blog-post -->
+
+有关为博客提供内容的信息，请参见
+https://kubernetes.io/zh-cn/docs/contribute/new-content/blogs-case-studies/#write-a-blog-post
+
+{{< /comment >}}
\ No newline at end of file
diff --git a/content/zh/blog/_posts/2015-03-00-Kubernetes-Gathering-Videos.md b/content/zh-cn/blog/_posts/2015-03-00-Kubernetes-Gathering-Videos.md
similarity index 98%
rename from content/zh/blog/_posts/2015-03-00-Kubernetes-Gathering-Videos.md
rename to content/zh-cn/blog/_posts/2015-03-00-Kubernetes-Gathering-Videos.md
index c53ea68585..f085117d1c 100644
--- a/content/zh/blog/_posts/2015-03-00-Kubernetes-Gathering-Videos.md
+++ b/content/zh-cn/blog/_posts/2015-03-00-Kubernetes-Gathering-Videos.md
@@ -1,18 +1,13 @@
 ---
-
 title: " Kubernetes 采集视频 "
 date: 2015-03-23
 slug: kubernetes-gathering-videos
 ---
-
 <!--
----
-
 title: " Kubernetes Gathering Videos "
 date: 2015-03-23
 slug: kubernetes-gathering-videos
 url: /blog/2015/03/Kubernetes-Gathering-Videos
----
 -->
 
 <!--
diff --git a/content/zh/blog/_posts/2015-03-00-Weekly-Kubernetes-Community-Hangout.md b/content/zh-cn/blog/_posts/2015-03-00-Weekly-Kubernetes-Community-Hangout.md
similarity index 98%
rename from content/zh/blog/_posts/2015-03-00-Weekly-Kubernetes-Community-Hangout.md
rename to content/zh-cn/blog/_posts/2015-03-00-Weekly-Kubernetes-Community-Hangout.md
index a2eee74a47..48cc33910f 100644
--- a/content/zh/blog/_posts/2015-03-00-Weekly-Kubernetes-Community-Hangout.md
+++ b/content/zh-cn/blog/_posts/2015-03-00-Weekly-Kubernetes-Community-Hangout.md
@@ -1,16 +1,13 @@
 ---
-title: " Kubernetes 社区每周聚会笔记 - 2015年3月27日 "
+title: "Kubernetes 社区每周聚会笔记 - 2015 年 3 月 27 日"
 date: 2015-03-28
 slug: weekly-kubernetes-community-hangout
 ---
-
 <!--
----
 title: " Weekly Kubernetes Community Hangout Notes - March 27 2015 "
 date: 2015-03-28
 slug: weekly-kubernetes-community-hangout
 url: /blog/2015/03/Weekly-Kubernetes-Community-Hangout
----
 -->
 
 <!--
diff --git a/content/zh/blog/_posts/2015-03-00-Welcome-To-Kubernetes-Blog.md b/content/zh-cn/blog/_posts/2015-03-00-Welcome-To-Kubernetes-Blog.md
similarity index 98%
rename from content/zh/blog/_posts/2015-03-00-Welcome-To-Kubernetes-Blog.md
rename to content/zh-cn/blog/_posts/2015-03-00-Welcome-To-Kubernetes-Blog.md
index 6f05ad7e4b..c157b326ba 100644
--- a/content/zh/blog/_posts/2015-03-00-Welcome-To-Kubernetes-Blog.md
+++ b/content/zh-cn/blog/_posts/2015-03-00-Welcome-To-Kubernetes-Blog.md
@@ -3,14 +3,11 @@ title: 欢迎来到 Kubernetes 博客!
 date: 2015-03-20
 slug: welcome-to-kubernetes-blog
 ---
-
 <!--
----
 title: Welcome to the Kubernetes Blog!
 date: 2015-03-20
 slug: welcome-to-kubernetes-blog
 url: /blog/2015/03/Welcome-To-Kubernetes-Blog
----
 -->
 
 <!--
@@ -41,7 +38,7 @@ To start things off, here's a roundup of recent Kubernetes posts from other site
 -->
 
 - [使用 Vitess 和 Kubernetes 在云中扩展 MySQL](http://googlecloudplatform.blogspot.com/2015/03/scaling-MySQL-in-the-cloud-with-Vitess-and-Kubernetes.html)
-- [虚拟机上的容器群集](http://googlecloudplatform.blogspot.com/2015/02/container-clusters-on-vms.html)
+- [虚拟机上的容器集群](http://googlecloudplatform.blogspot.com/2015/02/container-clusters-on-vms.html)
 - [想知道的关于 kubernetes 的一切，却又不敢问](http://googlecloudplatform.blogspot.com/2015/01/everything-you-wanted-to-know-about-Kubernetes-but-were-afraid-to-ask.html)
 - [什么构成容器集群？](http://googlecloudplatform.blogspot.com/2015/01/what-makes-a-container-cluster.html)
 - [将 OpenStack 和 Kubernetes 与 Murano 集成](https://www.mirantis.com/blog/integrating-openstack-and-kubernetes-with-murano/)
diff --git a/content/zh/blog/_posts/2015-04-00-Borg-Predecessor-To-Kubernetes.md b/content/zh-cn/blog/_posts/2015-04-00-Borg-Predecessor-To-Kubernetes.md
similarity index 98%
rename from content/zh/blog/_posts/2015-04-00-Borg-Predecessor-To-Kubernetes.md
rename to content/zh-cn/blog/_posts/2015-04-00-Borg-Predecessor-To-Kubernetes.md
index 5b8f06a76e..9f766237f3 100644
--- a/content/zh/blog/_posts/2015-04-00-Borg-Predecessor-To-Kubernetes.md
+++ b/content/zh-cn/blog/_posts/2015-04-00-Borg-Predecessor-To-Kubernetes.md
@@ -2,16 +2,14 @@
 title: "Borg: Kubernetes 的前身"
 date: 2015-04-23
 slug: borg-predecessor-to-kubernetes
-url: /zh/blog/2015/04/Borg-Predecessor-To-Kubernetes
 ---
 <!--
----
 title: " Borg: The Predecessor to Kubernetes "
 date: 2015-04-23
 slug: borg-predecessor-to-kubernetes
 url: /blog/2015/04/Borg-Predecessor-To-Kubernetes
----
 -->
+
 <!--
 Google has been running containerized workloads in production for more than a decade. Whether it's service jobs like web front-ends and stateful servers, infrastructure systems like [Bigtable](http://research.google.com/archive/bigtable.html) and [Spanner](http://research.google.com/archive/spanner.html), or batch frameworks like [MapReduce](http://research.google.com/archive/mapreduce.html) and [Millwheel](http://research.google.com/pubs/pub41378.html), virtually everything at Google runs as a container. Today, we took the wraps off of Borg, Google’s long-rumored internal container-oriented cluster-management system, publishing details at the academic computer systems conference [Eurosys](http://eurosys2015.labri.fr/). You can find the paper [here](https://research.google.com/pubs/pub43438.html).
 -->
@@ -114,6 +112,6 @@ Thanks to the advent of software-defined overlay networks such as [flannel](http
 With the growing popularity of container-based microservice architectures, the lessons Google has learned from running such systems internally have become of increasing interest to the external DevOps community. By revealing some of the inner workings of our cluster manager Borg, and building our next-generation cluster manager as both an open-source project (Kubernetes) and a publicly available hosted service ([Google Container Engine](http://cloud.google.com/container-engine)), we hope these lessons can benefit the broader community outside of Google and advance the state-of-the-art in container scheduling and cluster management. 
 -->
 随着基于容器的微服务架构的日益普及，Google 从内部运行此类系统所汲取的经验教训已引起外部 DevOps 社区越来越多的兴趣。
-通过揭示集群管理器 Borg 的一些内部工作原理，并将下一代集群管理器构建为一个开源项目（Kubernetes）和一个公开可用的托管服务（[Google Container Engine]（http://cloud.google.com/container-engine)) ，我们希望这些课程可以使 Google 之外的广大社区受益，并推动容器调度和集群管理方面的最新技术发展。
+通过揭示集群管理器 Borg 的一些内部工作原理，并将下一代集群管理器构建为一个开源项目（Kubernetes）和一个公开可用的托管服务（[Google Container Engine](http://cloud.google.com/container-engine)），我们希望这些课程可以使 Google 之外的广大社区受益，并推动容器调度和集群管理方面的最新技术发展。
 
 
diff --git a/content/zh/blog/_posts/2015-04-00-Kubernetes-Release-0150.md b/content/zh-cn/blog/_posts/2015-04-00-Kubernetes-Release-0150.md
similarity index 100%
rename from content/zh/blog/_posts/2015-04-00-Kubernetes-Release-0150.md
rename to content/zh-cn/blog/_posts/2015-04-00-Kubernetes-Release-0150.md
diff --git a/content/zh/blog/_posts/2015-04-00-Weekly-Kubernetes-Community-Hangout.md b/content/zh-cn/blog/_posts/2015-04-00-Weekly-Kubernetes-Community-Hangout.md
similarity index 98%
rename from content/zh/blog/_posts/2015-04-00-Weekly-Kubernetes-Community-Hangout.md
rename to content/zh-cn/blog/_posts/2015-04-00-Weekly-Kubernetes-Community-Hangout.md
index 83e9a5b609..323cdad934 100644
--- a/content/zh/blog/_posts/2015-04-00-Weekly-Kubernetes-Community-Hangout.md
+++ b/content/zh-cn/blog/_posts/2015-04-00-Weekly-Kubernetes-Community-Hangout.md
@@ -1,17 +1,15 @@
 ---
-title: " 每周 Kubernetes 社区例会笔记 - 2015年4月3日 "
+title: " 每周 Kubernetes 社区例会笔记 - 2015 年 4 月 3 日 "
 date: 2015-04-04
 slug: weekly-kubernetes-community-hangout
-url: /blog/2015/04/Weekly-Kubernetes-Community-Hangout
 ---
 <!--
----
 title: " Weekly Kubernetes Community Hangout Notes - April 3 2015 "
 date: 2015-04-04
 slug: weekly-kubernetes-community-hangout
 url: /blog/2015/04/Weekly-Kubernetes-Community-Hangout
----
 -->
+
 <!--
 # Kubernetes: Weekly Kubernetes Community Hangout Notes
 -->
diff --git a/content/zh/blog/_posts/2015-04-00-Weekly-Kubernetes-Community-Hangout_17.md b/content/zh-cn/blog/_posts/2015-04-00-Weekly-Kubernetes-Community-Hangout_17.md
similarity index 99%
rename from content/zh/blog/_posts/2015-04-00-Weekly-Kubernetes-Community-Hangout_17.md
rename to content/zh-cn/blog/_posts/2015-04-00-Weekly-Kubernetes-Community-Hangout_17.md
index 30ee18e858..e2f66cc576 100644
--- a/content/zh/blog/_posts/2015-04-00-Weekly-Kubernetes-Community-Hangout_17.md
+++ b/content/zh-cn/blog/_posts/2015-04-00-Weekly-Kubernetes-Community-Hangout_17.md
@@ -9,7 +9,7 @@ slug: weekly-kubernetes-community-hangout_17
 title: " Weekly Kubernetes Community Hangout Notes - April 17 2015 "
 date: 2015-04-17
 slug: weekly-kubernetes-community-hangout_17
-url: /blog/2015/04/Weekly-Kubernetes-Community-Hangout_17
+url: /zh/blog/2015/04/Weekly-Kubernetes-Community-Hangout_17
 ---
 -->
 
diff --git a/content/zh/blog/_posts/2015-04-00-Weekly-Kubernetes-Community-Hangout_29.md b/content/zh-cn/blog/_posts/2015-04-00-Weekly-Kubernetes-Community-Hangout_29.md
similarity index 98%
rename from content/zh/blog/_posts/2015-04-00-Weekly-Kubernetes-Community-Hangout_29.md
rename to content/zh-cn/blog/_posts/2015-04-00-Weekly-Kubernetes-Community-Hangout_29.md
index 399d926792..2ad1d054bb 100644
--- a/content/zh/blog/_posts/2015-04-00-Weekly-Kubernetes-Community-Hangout_29.md
+++ b/content/zh-cn/blog/_posts/2015-04-00-Weekly-Kubernetes-Community-Hangout_29.md
@@ -9,7 +9,7 @@ slug: weekly-kubernetes-community-hangout_29
 title: " Weekly Kubernetes Community Hangout Notes - April 24 2015 "
 date: 2015-04-30
 slug: weekly-kubernetes-community-hangout_29
-url: /blog/2015/04/Weekly-Kubernetes-Community-Hangout_29
+url: /zh/blog/2015/04/Weekly-Kubernetes-Community-Hangout_29
 ---
 
 -->
diff --git a/content/zh/blog/_posts/2015-05-00-Appc-Support-For-Kubernetes-Through-Rkt.md b/content/zh-cn/blog/_posts/2015-05-00-Appc-Support-For-Kubernetes-Through-Rkt.md
similarity index 98%
rename from content/zh/blog/_posts/2015-05-00-Appc-Support-For-Kubernetes-Through-Rkt.md
rename to content/zh-cn/blog/_posts/2015-05-00-Appc-Support-For-Kubernetes-Through-Rkt.md
index bf9aad4214..c715afe8b2 100644
--- a/content/zh/blog/_posts/2015-05-00-Appc-Support-For-Kubernetes-Through-Rkt.md
+++ b/content/zh-cn/blog/_posts/2015-05-00-Appc-Support-For-Kubernetes-Through-Rkt.md
@@ -1,17 +1,15 @@
-<!--
----
-title: " AppC Support for Kubernetes through RKT "
-date: 2015-05-04
-slug: appc-support-for-kubernetes-through-rkt
-url: /blog/2015/05/Appc-Support-For-Kubernetes-Through-Rkt
----
--->
 ---
 title: " 通过 RKT 对 Kubernetes 的 AppC 支持 "
 date: 2015-05-04
 slug: appc-support-for-kubernetes-through-rkt
-url: /blog/2015/05/Appc-Support-For-Kubernetes-Through-Rkt
 ---
+<!--
+title: " AppC Support for Kubernetes through RKT "
+date: 2015-05-04
+slug: appc-support-for-kubernetes-through-rkt
+url: /blog/2015/05/Appc-Support-For-Kubernetes-Through-Rkt
+-->
+
 <!--
 We very recently accepted a pull request to the Kubernetes project to add appc support for the Kubernetes community. &nbsp;Appc is a new open container specification that was initiated by CoreOS, and is supported through CoreOS rkt container runtime.
 -->
diff --git a/content/zh/blog/_posts/2015-05-00-Kubernetes-On-Openstack.md b/content/zh-cn/blog/_posts/2015-05-00-Kubernetes-On-Openstack.md
similarity index 99%
rename from content/zh/blog/_posts/2015-05-00-Kubernetes-On-Openstack.md
rename to content/zh-cn/blog/_posts/2015-05-00-Kubernetes-On-Openstack.md
index 940f192c9e..0ac0f14276 100644
--- a/content/zh/blog/_posts/2015-05-00-Kubernetes-On-Openstack.md
+++ b/content/zh-cn/blog/_posts/2015-05-00-Kubernetes-On-Openstack.md
@@ -3,14 +3,11 @@ title: " OpenStack 上的 Kubernetes "
 date: 2015-05-19
 slug: kubernetes-on-openstack
 ---
-
 <!--
----
 title: " Kubernetes on OpenStack "
 date: 2015-05-19
 slug: kubernetes-on-openstack
 url: /blog/2015/05/Kubernetes-On-Openstack
----
 -->
 
 [![](https://3.bp.blogspot.com/-EOrCHChZJZE/VVZzq43g6CI/AAAAAAAAF-E/JUilRHk369E/s400/Untitled%2Bdrawing.jpg)](https://3.bp.blogspot.com/-EOrCHChZJZE/VVZzq43g6CI/AAAAAAAAF-E/JUilRHk369E/s1600/Untitled%2Bdrawing.jpg)
diff --git a/content/zh/blog/_posts/2015-05-00-Weekly-Kubernetes-Community-Hangout.md b/content/zh-cn/blog/_posts/2015-05-00-Weekly-Kubernetes-Community-Hangout.md
similarity index 98%
rename from content/zh/blog/_posts/2015-05-00-Weekly-Kubernetes-Community-Hangout.md
rename to content/zh-cn/blog/_posts/2015-05-00-Weekly-Kubernetes-Community-Hangout.md
index 0e3b3dec22..39f88f204c 100644
--- a/content/zh/blog/_posts/2015-05-00-Weekly-Kubernetes-Community-Hangout.md
+++ b/content/zh-cn/blog/_posts/2015-05-00-Weekly-Kubernetes-Community-Hangout.md
@@ -3,14 +3,11 @@ title: " Kubernetes 社区每周聚会笔记- 2015年5月1日 "
 date: 2015-05-11
 slug: weekly-kubernetes-community-hangout
 ---
-
 <!--
----
 title: " Weekly Kubernetes Community Hangout Notes - May 1 2015 "
 date: 2015-05-11
 slug: weekly-kubernetes-community-hangout
 url: /blog/2015/05/Weekly-Kubernetes-Community-Hangout
----
 -->
 
 <!--
@@ -104,7 +101,7 @@ Every week the Kubernetes contributing community meet virtually over Google Hang
 
     *     * 可以使用 ServiceAccountToken 创建新的 service account。控制器将为它创建令牌。
 
-    * 可以创建一个带有 service account 的 pod, pod 将在 /var/run/secrets/kubernets.io/…
+    * 可以创建一个带有 service account 的 pod, pod 将在 /var/run/secrets/kubernetes.io/…
 
 <!--
 
diff --git a/content/zh/blog/_posts/2015-06-00-Slides-Cluster-Management-With.md b/content/zh-cn/blog/_posts/2015-06-00-Slides-Cluster-Management-With.md
similarity index 99%
rename from content/zh/blog/_posts/2015-06-00-Slides-Cluster-Management-With.md
rename to content/zh-cn/blog/_posts/2015-06-00-Slides-Cluster-Management-With.md
index e2937cd16e..5a77ecdde8 100644
--- a/content/zh/blog/_posts/2015-06-00-Slides-Cluster-Management-With.md
+++ b/content/zh-cn/blog/_posts/2015-06-00-Slides-Cluster-Management-With.md
@@ -3,14 +3,11 @@ title: "幻灯片：Kubernetes 集群管理，爱丁堡大学演讲"
 date: 2015-06-26
 slug: slides-cluster-management-with
 ---
-
 <!--
----
 title: " Slides: Cluster Management with Kubernetes, talk given at the University of Edinburgh "
 date: 2015-06-26
 slug: slides-cluster-management-with
 url: /blog/2015/06/Slides-Cluster-Management-With
----
 -->
 
 <!--
diff --git a/content/zh/blog/_posts/2015-07-00-Announcing-First-Kubernetes-Enterprise.md b/content/zh-cn/blog/_posts/2015-07-00-Announcing-First-Kubernetes-Enterprise.md
similarity index 99%
rename from content/zh/blog/_posts/2015-07-00-Announcing-First-Kubernetes-Enterprise.md
rename to content/zh-cn/blog/_posts/2015-07-00-Announcing-First-Kubernetes-Enterprise.md
index 0a464805f2..298ef84175 100644
--- a/content/zh/blog/_posts/2015-07-00-Announcing-First-Kubernetes-Enterprise.md
+++ b/content/zh-cn/blog/_posts/2015-07-00-Announcing-First-Kubernetes-Enterprise.md
@@ -3,12 +3,12 @@ title: "宣布首个Kubernetes企业培训课程 "
 date: 2015-07-08
 slug: announcing-first-kubernetes-enterprise
 ---
-<!-- ---
+<!--
 title: " Announcing the First Kubernetes Enterprise Training Course "
 date: 2015-07-08
 slug: announcing-first-kubernetes-enterprise
 url: /blog/2015/07/Announcing-First-Kubernetes-Enterprise
---- -->
+-->
 
 <!-- At Google we rely on Linux application containers to run our core infrastructure. Everything from Search to Gmail runs in containers. &nbsp;In fact, we like containers so much that even our Google Compute Engine VMs run in containers! &nbsp;Because containers are critical to our business, we have been working with the community on many of the basic container technologies (from cgroups to Docker’s LibContainer) and even decided to build the next generation of Google’s container scheduling technology, Kubernetes, in the open. -->
 在谷歌，我们依赖 Linux 容器应用程序去运行我们的核心基础架构。所有服务，从搜索引擎到Gmail服务，都运行在容器中。事实上，我们非常喜欢容器，甚至我们的谷歌云计算引擎虚拟机也运行在容器上！由于容器对于我们的业务至关重要，我们已经与社区合作开发许多基本的容器技术（从 cgroups 到 Docker 的 LibContainer）,甚至决定去构建谷歌的下一代开源容器调度技术，Kubernetes。
diff --git a/content/zh/blog/_posts/2015-08-00-Weekly-Kubernetes-Community-Hangout.md b/content/zh-cn/blog/_posts/2015-08-00-Weekly-Kubernetes-Community-Hangout.md
similarity index 96%
rename from content/zh/blog/_posts/2015-08-00-Weekly-Kubernetes-Community-Hangout.md
rename to content/zh-cn/blog/_posts/2015-08-00-Weekly-Kubernetes-Community-Hangout.md
index 02c0930bdd..54f648fd5c 100644
--- a/content/zh/blog/_posts/2015-08-00-Weekly-Kubernetes-Community-Hangout.md
+++ b/content/zh-cn/blog/_posts/2015-08-00-Weekly-Kubernetes-Community-Hangout.md
@@ -1,19 +1,15 @@
-<!--
 ---
+title: " Kubernetes 社区每周环聊笔记——2015 年 7 月 31 日 "
+date: 2015-08-04
+slug: weekly-kubernetes-community-hangout
+---
+<!--
 title: " Weekly Kubernetes Community Hangout Notes - July 31 2015 "
 date: 2015-08-04
 slug: weekly-kubernetes-community-hangout
 url: /blog/2015/08/Weekly-Kubernetes-Community-Hangout
----
 -->
 
----
-title: " Kubernetes社区每周环聊笔记-2015年7月31日 "
-date: 2015-08-04
-slug: weekly-kubernetes-community-hangout
-url: /blog/2015/08/Weekly-Kubernetes-Community-Hangout
----
-
 <!--
 Every week the Kubernetes contributing community meet virtually over Google Hangouts. We want anyone who's interested to know what's discussed in this forum.  
 
diff --git a/content/zh/blog/_posts/2015-11-00-Kubernetes-1-1-Performance-Upgrades-Improved-Tooling-And-A-Growing-Community.md b/content/zh-cn/blog/_posts/2015-11-00-Kubernetes-1-1-Performance-Upgrades-Improved-Tooling-And-A-Growing-Community.md
similarity index 98%
rename from content/zh/blog/_posts/2015-11-00-Kubernetes-1-1-Performance-Upgrades-Improved-Tooling-And-A-Growing-Community.md
rename to content/zh-cn/blog/_posts/2015-11-00-Kubernetes-1-1-Performance-Upgrades-Improved-Tooling-And-A-Growing-Community.md
index 5ce36abee0..045f36966c 100644
--- a/content/zh/blog/_posts/2015-11-00-Kubernetes-1-1-Performance-Upgrades-Improved-Tooling-And-A-Growing-Community.md
+++ b/content/zh-cn/blog/_posts/2015-11-00-Kubernetes-1-1-Performance-Upgrades-Improved-Tooling-And-A-Growing-Community.md
@@ -2,18 +2,16 @@
 title: " Kubernetes 1.1 性能升级，工具改进和社区不断壮大  "
 date: 2015-11-09
 slug: kubernetes-1-1-performance-upgrades-improved-tooling-and-a-growing-community
-url: /blog/2015/11/Kubernetes-1-1-Performance-Upgrades-Improved-Tooling-And-A-Growing-Community
 ---
 <!--
----
 title: " Kubernetes 1.1 Performance upgrades, improved tooling and a growing community  "
 date: 2015-11-09
 slug: kubernetes-1-1-performance-upgrades-improved-tooling-and-a-growing-community
 url: /blog/2015/11/Kubernetes-1-1-Performance-Upgrades-Improved-Tooling-And-A-Growing-Community
----
 -->
+
 <!--
-Since the Kubernetes 1.0 release in July, we’ve seen tremendous adoption by companies building distributed systems to manage their container clusters. We’re also been humbled by the rapid growth of the community who help make Kubernetes better everyday. We have seen commercial offerings such as Tectonic by CoreOS and RedHat Atomic Host emerge to deliver deployment and support of Kubernetes. And a growing ecosystem has added Kubernetes support including tool vendors such as Sysdig and Project Calico. 
+Since the Kubernetes 1.0 release in July, we’ve seen tremendous adoption by companies building distributed systems to manage their container clusters. We’re also been humbled by the rapid growth of the community who help make Kubernetes better everyday. We have seen commercial offerings such as Tectonic by CoreOS and RedHat Atomic Host emerge to deliver deployment and support of Kubernetes. And a growing ecosystem has added Kubernetes support including tool vendors such as Sysdig and Project Calico.  
 -->
 自从 Kubernetes 1.0 在七月发布以来，我们已经看到大量公司采用建立分布式系统来管理其容器集群。
 我们也对帮助 Kubernetes 社区变得更好，迅速发展的人感到钦佩。
@@ -90,7 +88,7 @@ Today, we’re also proud to mark the inaugural Kubernetes conference, [KubeCon]
 <!--
 We’d love to highlight just a few of the many partners making Kubernetes better:  
 -->
-我们想强调几个使 Kuberbetes 变得更好的众多合作伙伴中的几位：
+我们想强调几个使 Kubernetes 变得更好的众多合作伙伴中的几位：
 
 <!--
 > “We are betting our major product, Tectonic – which enables any company to deploy, manage and secure its containers anywhere – on Kubernetes because we believe it is the future of the data center. The release of Kubernetes 1.1 is another major milestone that will create more widespread adoption of distributed systems and containers, and puts us on a path that will inevitably lead to a whole new generation of products and services.” – Alex Polvi, CEO, CoreOS.
diff --git a/content/zh/blog/_posts/2015-12-00-Managing-Kubernetes-Pods-Services-And-Replication-Controllers-With-Puppet.md b/content/zh-cn/blog/_posts/2015-12-00-Managing-Kubernetes-Pods-Services-And-Replication-Controllers-With-Puppet.md
similarity index 98%
rename from content/zh/blog/_posts/2015-12-00-Managing-Kubernetes-Pods-Services-And-Replication-Controllers-With-Puppet.md
rename to content/zh-cn/blog/_posts/2015-12-00-Managing-Kubernetes-Pods-Services-And-Replication-Controllers-With-Puppet.md
index 4df4232463..1eecaafae6 100644
--- a/content/zh/blog/_posts/2015-12-00-Managing-Kubernetes-Pods-Services-And-Replication-Controllers-With-Puppet.md
+++ b/content/zh-cn/blog/_posts/2015-12-00-Managing-Kubernetes-Pods-Services-And-Replication-Controllers-With-Puppet.md
@@ -1,16 +1,13 @@
 ---
-title: " 使用 Puppet 管理 Kubernetes Pods，Services 和 Replication Controllers "
+title: "使用 Puppet 管理 Kubernetes Pod、Service 和 Replication Controller"
 date: 2015-12-17
 slug: managing-kubernetes-pods-services-and-replication-controllers-with-puppet
 ---
-
 <!--
----
 title: " Managing Kubernetes Pods, Services and Replication Controllers with Puppet "
 date: 2015-12-17
 slug: managing-kubernetes-pods-services-and-replication-controllers-with-puppet
 url: /blog/2015/12/Managing-Kubernetes-Pods-Services-And-Replication-Controllers-With-Puppet
----
 -->
 
 <!--
diff --git a/content/zh/blog/_posts/2016-01-00-Kubernetes-Community-Meeting-Notes.md b/content/zh-cn/blog/_posts/2016-01-00-Kubernetes-Community-Meeting-Notes.md
similarity index 98%
rename from content/zh/blog/_posts/2016-01-00-Kubernetes-Community-Meeting-Notes.md
rename to content/zh-cn/blog/_posts/2016-01-00-Kubernetes-Community-Meeting-Notes.md
index 5ed529347c..793e037541 100644
--- a/content/zh/blog/_posts/2016-01-00-Kubernetes-Community-Meeting-Notes.md
+++ b/content/zh-cn/blog/_posts/2016-01-00-Kubernetes-Community-Meeting-Notes.md
@@ -2,14 +2,13 @@
 title: " Kubernetes 社区会议记录 - 20160114 "
 date: 2016-01-28
 slug: kubernetes-community-meeting-notes
-url: /blog/2016/01/Kubernetes-Community-Meeting-Notes
 ---
 <!--
 ---
 title: " Kubernetes Community Meeting Notes - 20160114 "
 date: 2016-01-28
 slug: kubernetes-community-meeting-notes
-url: /blog/2016/01/Kubernetes-Community-Meeting-Notes
+url: /zh/blog/2016/01/Kubernetes-Community-Meeting-Notes
 ---
 -->
 <!--
diff --git a/content/zh/blog/_posts/2016-01-00-Simple-Leader-Election-With-Kubernetes.md b/content/zh-cn/blog/_posts/2016-01-00-Simple-Leader-Election-With-Kubernetes.md
similarity index 99%
rename from content/zh/blog/_posts/2016-01-00-Simple-Leader-Election-With-Kubernetes.md
rename to content/zh-cn/blog/_posts/2016-01-00-Simple-Leader-Election-With-Kubernetes.md
index a1c9bb3c3b..897c2828d7 100644
--- a/content/zh/blog/_posts/2016-01-00-Simple-Leader-Election-With-Kubernetes.md
+++ b/content/zh-cn/blog/_posts/2016-01-00-Simple-Leader-Election-With-Kubernetes.md
@@ -1,21 +1,20 @@
-<!--
 ---
-title: " Simple leader election with Kubernetes and Docker "
-date: 2016-01-11
-slug: simple-leader-election-with-kubernetes
----
-
-####  Overview
--->
-
 title: "Kubernetes 和 Docker 简单的 leader election"
 date: 2016-01-11
 slug: simple-leader-election-with-kubernetes
-url: /blog/2016/01/Simple-Leader-Election-With-Kubernetes
+---
+<!--
+title: " Simple leader election with Kubernetes and Docker "
+date: 2016-01-11
+slug: simple-leader-election-with-kubernetes
+-->
 
 <!--
+####  Overview
+
 Kubernetes simplifies the deployment and operational management of services running on clusters. However, it also simplifies the development of these services. In this post we'll see how you can use Kubernetes to easily perform leader election in your distributed application. Distributed applications usually replicate the tasks of a service for reliability and scalability, but often it is necessary to designate one of the replicas as the leader who is responsible for coordination among all of the replicas.
 -->
+#### 概述
 
 Kubernetes 简化了集群上运行的服务的部署和操作管理。但是，它也简化了这些服务的发展。在本文中，我们将看到如何使用 Kubernetes 在分布式应用程序中轻松地执行 leader election。分布式应用程序通常为了可靠性和可伸缩性而复制服务的任务，但通常需要指定其中一个副本作为负责所有副本之间协调的负责人。
 
diff --git a/content/zh/blog/_posts/2016-01-00-Why-Kubernetes-Doesnt-Use-Libnetwork.md b/content/zh-cn/blog/_posts/2016-01-00-Why-Kubernetes-Doesnt-Use-Libnetwork.md
similarity index 99%
rename from content/zh/blog/_posts/2016-01-00-Why-Kubernetes-Doesnt-Use-Libnetwork.md
rename to content/zh-cn/blog/_posts/2016-01-00-Why-Kubernetes-Doesnt-Use-Libnetwork.md
index ed0c960fda..649ff90059 100644
--- a/content/zh/blog/_posts/2016-01-00-Why-Kubernetes-Doesnt-Use-Libnetwork.md
+++ b/content/zh-cn/blog/_posts/2016-01-00-Why-Kubernetes-Doesnt-Use-Libnetwork.md
@@ -4,12 +4,12 @@ date: 2016-01-14
 slug: why-kubernetes-doesnt-use-libnetwork
 ---
 
-<!-- ---
+<!--
 title: " Why Kubernetes doesn’t use libnetwork "
 date: 2016-01-14
 slug: why-kubernetes-doesnt-use-libnetwork
 url: /blog/2016/01/Why-Kubernetes-Doesnt-Use-Libnetwork
---- -->
+-->
 
 <!-- Kubernetes has had a very basic form of network plugins since before version 1.0 was released — around the same time as Docker's [libnetwork](https://github.com/docker/libnetwork) and Container Network Model ([CNM](https://github.com/docker/libnetwork/blob/master/docs/design.md)) was introduced. Unlike libnetwork, the Kubernetes plugin system still retains its "alpha" designation. Now that Docker's network plugin support is released and supported, an obvious question we get is why Kubernetes has not adopted it yet. After all, vendors will almost certainly be writing plugins for Docker — we would all be better off using the same drivers, right?   -->
 
diff --git a/content/zh/blog/_posts/2016-02-00-Kubecon-Eu-2016-Kubernetes-Community-In.md b/content/zh-cn/blog/_posts/2016-02-00-Kubecon-Eu-2016-Kubernetes-Community-In.md
similarity index 94%
rename from content/zh/blog/_posts/2016-02-00-Kubecon-Eu-2016-Kubernetes-Community-In.md
rename to content/zh-cn/blog/_posts/2016-02-00-Kubecon-Eu-2016-Kubernetes-Community-In.md
index 0ac1e9cfed..95677cb777 100644
--- a/content/zh/blog/_posts/2016-02-00-Kubecon-Eu-2016-Kubernetes-Community-In.md
+++ b/content/zh-cn/blog/_posts/2016-02-00-Kubecon-Eu-2016-Kubernetes-Community-In.md
@@ -5,12 +5,10 @@ slug: kubecon-eu-2016-kubernetes-community-in
 ---
 
 <!--
----
 title: " KubeCon EU 2016: Kubernetes Community in London "
 date: 2016-02-24
 slug: kubecon-eu-2016-kubernetes-community-in
 url: /blog/2016/02/Kubecon-Eu-2016-Kubernetes-Community-In
----
 -->
 
 <!--
@@ -29,13 +27,13 @@ Don’t miss these great speaker sessions at the conference:
 不要错过这些优质的演讲：
 
 <!--
-* “Kubernetes Hardware Hacks: Exploring the Kubernetes API Through Knobs, Faders, and Sliders” by Ian Lewis and Brian Dorsey, Developer Advocate, Google -* [http://sched.co/6Bl3](http://sched.co/6Bl3)
+* “Kubernetes Hardware Hacks: Exploring the Kubernetes API Through Knobs, Faders, and Sliders” by Ian Lewis and Brian Dorsey, Developer Advocate, Google -* [http://sched.co/6Bl3](http://sched.co/6Bl3)  
 
 * “rktnetes: what's new with container runtimes and Kubernetes” by Jonathan Boulle, Developer and Team Lead at CoreOS -* [http://sched.co/6BY7](http://sched.co/6BY7)
 
 * “Kubernetes Documentation: Contributing, fixing issues, collecting bounties” by John Mulhausen, Lead Technical Writer, Google -* [http://sched.co/6BUP](http://sched.co/6BUP)&nbsp;
 * “[What is OpenStack's role in a Kubernetes world?](https://kubeconeurope2016.sched.org/event/6BYC/what-is-openstacks-role-in-a-kubernetes-world?iframe=yes&w=i:0;&sidebar=yes&bg=no#?iframe=yes&w=i:100;&sidebar=yes&bg=no)” By Thierry Carrez, Director of Engineering, OpenStack Foundation -* http://sched.co/6BYC
-* “A Practical Guide to Container Scheduling” by Mandy Waite, Developer Advocate, Google -* [http://sched.co/6BZa](http://sched.co/6BZa)
+* “A Practical Guide to Container Scheduling” by Mandy Waite, Developer Advocate, Google -* [http://sched.co/6BZa](http://sched.co/6BZa)  
 
 * “[Kubernetes in Production in The New York Times newsroom](https://kubeconeurope2016.sched.org/event/67f2/kubernetes-in-production-in-the-new-york-times-newsroom?iframe=yes&w=i:0;&sidebar=yes&bg=no#?iframe=yes&w=i:100;&sidebar=yes&bg=no)” Eric Lewis, Web Developer, New York Times -* [http://sched.co/67f2](http://sched.co/67f2)
 * “[Creating an Advanced Load Balancing Solution for Kubernetes with NGINX](https://kubeconeurope2016.sched.org/event/6Bc9/creating-an-advanced-load-balancing-solution-for-kubernetes-with-nginx?iframe=yes&w=i:0;&sidebar=yes&bg=no#?iframe=yes&w=i:100;&sidebar=yes&bg=no)” by Andrew Hutchings, Technical Product Manager, NGINX -* http://sched.co/6Bc9
@@ -60,15 +58,15 @@ Get your KubeCon EU [tickets here](https://ti.to/kubecon/kubecon-eu-2016).
 [在这里](https://ti.to/kubecon/kubecon-eu-2016)获取您的 KubeCon EU 门票。
 
 <!--
-Venue Location: CodeNode * 10 South Pl, London, United Kingdom
-Accommodations: [hotels](https://skillsmatter.com/contact-us#hotels)
-Website: [kubecon.io](https://www.kubecon.io/)
+Venue Location: CodeNode * 10 South Pl, London, United Kingdom  
+Accommodations: [hotels](https://skillsmatter.com/contact-us#hotels)   
+Website: [kubecon.io](https://www.kubecon.io/)   
 Twitter: [@KubeConio](https://twitter.com/kubeconio) #KubeCon
-Google is a proud Diamond sponsor of KubeCon EU 2016. Come to London next month, March 10th & 11th, and visit booth #13 to learn all about Kubernetes, Google Container Engine (GKE) and Google Cloud Platform!
+Google is a proud Diamond sponsor of KubeCon EU 2016. Come to London next month, March 10th & 11th, and visit booth #13 to learn all about Kubernetes, Google Container Engine (GKE) and Google Cloud Platform!  
 -->
-会场地址：CodeNode * 英国伦敦南广场 10 号
-酒店住宿：[酒店](https://skillsmatter.com/contact-us)
-网站：[kubecon.io] (https://www.kubecon.io/)
+会场地址：CodeNode * 英国伦敦南广场 10 号  
+酒店住宿：[酒店](https://skillsmatter.com/contact-us)  
+网站：[kubecon.io] (https://www.kubecon.io/)  
 推特：[@KubeConio] (https://twitter.com/kubeconio)
 谷歌是 KubeCon EU 2016 的钻石赞助商。下个月 3 月 10 - 11 号来伦敦，参观 13 号展位，了解 Kubernetes，Google Container Engine（GKE），Google Cloud Platform 的所有信息!
 
@@ -78,6 +76,6 @@ _KubeCon is organized by KubeAcademy, LLC, a community-driven group of developer
 -* Sarah Novotny, Kubernetes Community Manager, Google
 -->
 
-_KubeCon 是由 KubeAcademy、LLC 组织的，这是一个由社区驱动的开发者团体，专注于开发人员的教育和 kubernet.com 的推广
+_KubeCon 是由 KubeAcademy、LLC 组织的，这是一个由社区驱动的开发者团体，专注于开发人员的教育和 kubernetes 的推广
 -* Sarah Novotny, 谷歌的 Kubernetes 社区经理
 
diff --git a/content/zh/blog/_posts/2016-02-00-Kubernetes-Community-Meeting-Notes.md b/content/zh-cn/blog/_posts/2016-02-00-Kubernetes-Community-Meeting-Notes.md
similarity index 87%
rename from content/zh/blog/_posts/2016-02-00-Kubernetes-Community-Meeting-Notes.md
rename to content/zh-cn/blog/_posts/2016-02-00-Kubernetes-Community-Meeting-Notes.md
index 608a5bbd33..8f5a80679f 100644
--- a/content/zh/blog/_posts/2016-02-00-Kubernetes-Community-Meeting-Notes.md
+++ b/content/zh-cn/blog/_posts/2016-02-00-Kubernetes-Community-Meeting-Notes.md
@@ -4,17 +4,16 @@ date: 2016-02-09
 slug: kubernetes-community-meeting-notes
 ---
 <!--
----
 title: " Kubernetes community meeting notes - 20160204 "
 date: 2016-02-09
 slug: kubernetes-community-meeting-notes
 url: /blog/2016/02/Kubernetes-Community-Meeting-Notes
----
 -->
+
 <!--
 ####  February 4th - rkt demo (congratulations on the 1.0, CoreOS!), eBay puts k8s on Openstack and considers Openstack on k8s, SIGs, and flaky test surge makes progress.
 -->
-####  2月4日 - rkt演示（祝贺 1.0 版本， CoreOS！）， eBay 将 k8s 放在 Openstack 上并认为 Openstack 在 k8s， SIG 和片状测试激增方面取得了进展。
+####  2 月 4 日 - rkt 演示（祝贺 1.0 版本，CoreOS！），eBay 将 k8s 放在 Openstack 上并认为 Openstack 在 k8s，SIG 和片状测试激增方面取得了进展。
 
 <!--
 The Kubernetes contributing community meets most Thursdays at 10:00PT to discuss the project's status via a videoconference. Here are the notes from the latest meeting.
@@ -35,13 +34,13 @@ Kubernetes 贡献社区在每周四 10:00 PT 开会,通过视频会议讨论项
             * But need more work on e2e test suites
 -->
 * 书记员：Rob Hirschfeld
-* 演示视频（20分钟）：CoreOS rkt + Kubernetes[Shaya Potter]
-    * 期待在未来几个月内看到与rkt和k8s的整合（“rkt-netes”）。 还没有集成到 v1.2版本中。
+* 演示视频（20 分钟）：CoreOS rkt + Kubernetes [Shaya Potter]
+    * 期待在未来几个月内看到与rkt和k8s的整合（“rkt-netes”）。 还没有集成到 v1.2 版本中。
     * Shaya 做了一个演示（8分钟的会议视频参考）
-        * rkt的CLI显示了旋转容器
+        * rkt 的 CLI 显示了旋转容器
         * [注意：音频在点数上是乱码]
         * 关于 k8s&rkt 整合的讨论
-        * 下周 rkt 社区同步：https://groups.google.com/forum/#!topic/rkt-dev/FlwZVIEJGbY
+        * 下周 rkt 社区同步： https://groups.google.com/forum/#!topic/rkt-dev/FlwZVIEJGbY
         * Dawn Chen:
             * 将 rkt 与 kubernetes 集成的其余问题：1）cadivsor 2） DNS 3）与日志记录相关的错误
             * 但是需要在 e2e 测试套件上做更多的工作
@@ -103,13 +102,16 @@ Kubernetes 贡献社区在每周四 10:00 PT 开会,通过视频会议讨论项
 <!--
 To get involved in the Kubernetes community consider joining our [Slack channel][2], taking a look at the [Kubernetes project][3] on GitHub, or join the [Kubernetes-dev Google group][4]. If you're really excited, you can do all of the above and join us for the next community conversation -- February 11th, 2016. Please add yourself or a topic you want to know about to the [agenda][5] and get a calendar invitation by joining [this group][6].
 -->
-要参与 Kubernetes 社区，请考虑加入我们的[Slack 频道][2]，查看 GitHub上的 [Kubernetes 项目][3]，或加入[Kubernetes-dev Google 小组][4]。如果你真的很兴奋，你可以完成上述所有工作并加入我们的下一次社区对话-2016年2月11日。请将您自己或您想要了解的主题添加到[议程][5]并通过加入[此组][6]来获取日历邀请。
+要参与 Kubernetes 社区，请考虑加入我们的 [Slack 频道][2]，查看 GitHub 上的
+[Kubernetes 项目][3]，或加入 [Kubernetes-dev Google 小组][4]。
+如果你真的很兴奋，你可以完成上述所有工作并加入我们的下一次社区对话 - 2016 年 2 月 11 日。
+请将你自己或你想要了解的主题添加到[议程][5]并通过加入[此组][6]来获取日历邀请。
 
  "https://youtu.be/IScpP8Cj0hw?list=PL69nYSiGNLP1pkHsbPjzAewvMgGUpkCnJ"
 
 
 [1]: https://github.com/kubernetes/kubernetes/pull/19714
-[2]: http://slack.k8s.io/
+[2]: https://slack.k8s.io/
 [3]: https://github.com/kubernetes/
 [4]: https://groups.google.com/forum/#!forum/kubernetes-dev
 [5]: https://docs.google.com/document/d/1VQDIAB0OqiSjIHI8AWMvSdceWhnz56jNpZrLs6o7NJY/edit#
diff --git a/content/zh/blog/_posts/2016-02-00-State-Of-Container-World-January-2016.md b/content/zh-cn/blog/_posts/2016-02-00-State-Of-Container-World-January-2016.md
similarity index 98%
rename from content/zh/blog/_posts/2016-02-00-State-Of-Container-World-January-2016.md
rename to content/zh-cn/blog/_posts/2016-02-00-State-Of-Container-World-January-2016.md
index a6983a9a8a..ce29a5681e 100644
--- a/content/zh/blog/_posts/2016-02-00-State-Of-Container-World-January-2016.md
+++ b/content/zh-cn/blog/_posts/2016-02-00-State-Of-Container-World-January-2016.md
@@ -1,17 +1,15 @@
 ---
-title: " 容器世界现状，2016年1月 "
+title: " 容器世界现状，2016 年 1 月 "
 date: 2016-02-01
 slug: state-of-container-world-january-2016
-url: /blog/2016/02/State-Of-Container-World-January-2016
 ---
 <!--
----
 title: " State of the Container World, January 2016 "
 date: 2016-02-01
 slug: state-of-container-world-january-2016
 url: /blog/2016/02/State-Of-Container-World-January-2016
----
 -->
+
 <!--
 At the start of the new year, we sent out a survey to gauge the state of the container world. We’re ready to send the [February edition](https://docs.google.com/forms/d/13yxxBqb5igUhwrrnDExLzZPjREiCnSs-AH-y4SSZ-5c/viewform), but before we do, let’s take a look at the January data from the 119 responses (thank you for participating!).  
 -->
diff --git a/content/zh/blog/_posts/2016-02-00-kubernetes-community-meeting-notes_23.md b/content/zh-cn/blog/_posts/2016-02-00-kubernetes-community-meeting-notes_23.md
similarity index 97%
rename from content/zh/blog/_posts/2016-02-00-kubernetes-community-meeting-notes_23.md
rename to content/zh-cn/blog/_posts/2016-02-00-kubernetes-community-meeting-notes_23.md
index 2c73751c6b..983495f152 100644
--- a/content/zh/blog/_posts/2016-02-00-kubernetes-community-meeting-notes_23.md
+++ b/content/zh-cn/blog/_posts/2016-02-00-kubernetes-community-meeting-notes_23.md
@@ -2,7 +2,6 @@
 title: "Kubernetes 社区会议记录 - 20160218"
 date: 2016-02-23
 slug: kubernetes-community-meeting-notes_23
-url: /blog/2016/02/kubernetes-community-meeting-notes_23
 ---
 
 <!--
@@ -10,8 +9,7 @@ url: /blog/2016/02/kubernetes-community-meeting-notes_23
 title: " Kubernetes Community Meeting Notes - 20160218 "
 date: 2016-02-23
 slug: kubernetes-community-meeting-notes_23
-url: /blog/2016/02/kubernetes-community-meeting-notes_23
-url: /blog/2016/02/kubernetes-community-meeting-notes_23
+url: /blog/2016/02/Kubernetes-community-meeting-notes-20160128
 ---
 -->
 
diff --git a/content/zh/blog/_posts/2016-04-00-Adding-Support-For-Kubernetes-In-Rancher.md b/content/zh-cn/blog/_posts/2016-04-00-Adding-Support-For-Kubernetes-In-Rancher.md
similarity index 99%
rename from content/zh/blog/_posts/2016-04-00-Adding-Support-For-Kubernetes-In-Rancher.md
rename to content/zh-cn/blog/_posts/2016-04-00-Adding-Support-For-Kubernetes-In-Rancher.md
index b46fd0fb3f..00548b1585 100644
--- a/content/zh/blog/_posts/2016-04-00-Adding-Support-For-Kubernetes-In-Rancher.md
+++ b/content/zh-cn/blog/_posts/2016-04-00-Adding-Support-For-Kubernetes-In-Rancher.md
@@ -2,15 +2,12 @@
 title: " 在 Rancher 中添加对 Kuernetes 的支持 "
 date: 2016-04-08
 slug: adding-support-for-kubernetes-in-rancher
-url: /blog/2016/04/Adding-Support-For-Kubernetes-In-Rancher
 ---
 <!--
----
 title: " Adding Support for Kubernetes in Rancher "
 date: 2016-04-08
 slug: adding-support-for-kubernetes-in-rancher
 url: /blog/2016/04/Adding-Support-For-Kubernetes-In-Rancher
----
 -->
 <!--
 _Today’s guest post is written by Darren Shepherd, Chief Architect at Rancher Labs, an open-source software platform for managing containers._ -->
diff --git a/content/zh/blog/_posts/2016-04-00-Kubernetes-Network-Policy-APIs.md b/content/zh-cn/blog/_posts/2016-04-00-Kubernetes-Network-Policy-APIs.md
similarity index 99%
rename from content/zh/blog/_posts/2016-04-00-Kubernetes-Network-Policy-APIs.md
rename to content/zh-cn/blog/_posts/2016-04-00-Kubernetes-Network-Policy-APIs.md
index 8d2cc7e3a1..83a6c5e4b9 100644
--- a/content/zh/blog/_posts/2016-04-00-Kubernetes-Network-Policy-APIs.md
+++ b/content/zh-cn/blog/_posts/2016-04-00-Kubernetes-Network-Policy-APIs.md
@@ -2,16 +2,14 @@
 title: “SIG-Networking：1.3 版本引入 Kubernetes 网络策略 API”
 date: 2016-04-18
 slug: kubernetes-network-policy-apis
-url: /zh/blog/2016/04/Kubernetes-Network-Policy-APIs
 ---
 <!--
----
 title: " SIG-Networking: Kubernetes Network Policy APIs Coming in 1.3 "
 date: 2016-04-18
 slug: kubernetes-network-policy-apis
 url: /blog/2016/04/Kubernetes-Network-Policy-APIs
----
 -->
+
 <!--
 _Editor’s note: This week we’re featuring [Kubernetes Special Interest Groups](https://github.com/kubernetes/kubernetes/wiki/Special-Interest-Groups-(SIGs)); Today’s post is by the Network-SIG team describing network policy APIs coming in 1.3 - policies for security, isolation and multi-tenancy._  
 -->
diff --git a/content/zh/blog/_posts/2016-04-00-Sig-Clusterops-Promote-Operability-And-Interoperability-Of-K8S-Clusters.md b/content/zh-cn/blog/_posts/2016-04-00-Sig-Clusterops-Promote-Operability-And-Interoperability-Of-K8S-Clusters.md
similarity index 98%
rename from content/zh/blog/_posts/2016-04-00-Sig-Clusterops-Promote-Operability-And-Interoperability-Of-K8S-Clusters.md
rename to content/zh-cn/blog/_posts/2016-04-00-Sig-Clusterops-Promote-Operability-And-Interoperability-Of-K8S-Clusters.md
index e9d09cb84c..c2b7969abc 100644
--- a/content/zh/blog/_posts/2016-04-00-Sig-Clusterops-Promote-Operability-And-Interoperability-Of-K8S-Clusters.md
+++ b/content/zh-cn/blog/_posts/2016-04-00-Sig-Clusterops-Promote-Operability-And-Interoperability-Of-K8S-Clusters.md
@@ -2,16 +2,14 @@
 title: " SIG-ClusterOps: 提升 Kubernetes 集群的可操作性和互操作性 "
 date: 2016-04-19
 slug: sig-clusterops-promote-operability-and-interoperability-of-k8s-clusters
-url: /blog/2016/04/Sig-Clusterops-Promote-Operability-And-Interoperability-Of-K8S-Clusters
 ---
 <!--
----
 title: " SIG-ClusterOps: Promote operability and interoperability of Kubernetes clusters "
 date: 2016-04-19
 slug: sig-clusterops-promote-operability-and-interoperability-of-k8s-clusters
 url: /blog/2016/04/Sig-Clusterops-Promote-Operability-And-Interoperability-Of-K8S-Clusters
----
 -->
+
 <!--
 _Editor’s note: This week we’re featuring [Kubernetes Special Interest Groups](https://github.com/kubernetes/kubernetes/wiki/Special-Interest-Groups-(SIGs)); Today’s post is by the SIG-ClusterOps team whose mission is to promote operability and interoperability of Kubernetes clusters -- to listen, help & escalate._ 
 -->
diff --git a/content/zh/blog/_posts/2016-05-00-Coreosfest2016-Kubernetes-Community.md b/content/zh-cn/blog/_posts/2016-05-00-Coreosfest2016-Kubernetes-Community.md
similarity index 99%
rename from content/zh/blog/_posts/2016-05-00-Coreosfest2016-Kubernetes-Community.md
rename to content/zh-cn/blog/_posts/2016-05-00-Coreosfest2016-Kubernetes-Community.md
index 891ac55431..55a3f40613 100644
--- a/content/zh/blog/_posts/2016-05-00-Coreosfest2016-Kubernetes-Community.md
+++ b/content/zh-cn/blog/_posts/2016-05-00-Coreosfest2016-Kubernetes-Community.md
@@ -2,16 +2,14 @@
 title: " CoreOS Fest 2016: CoreOS 和 Kubernetes 在柏林（和旧金山）社区见面会 "
 date: 2016-05-03
 slug: coreosfest2016-kubernetes-community
-url: /blog/2016/05/Coreosfest2016-Kubernetes-Community
 ---
 <!--
----
 title: " CoreOS Fest 2016: CoreOS and Kubernetes Community meet in Berlin (& San Francisco) "
 date: 2016-05-03
 slug: coreosfest2016-kubernetes-community
 url: /blog/2016/05/Coreosfest2016-Kubernetes-Community
----
 -->
+
 <!--
 [CoreOS Fest 2016](https://coreos.com/fest/) will bring together the container and open source distributed systems community, including many thought leaders in the Kubernetes space. It is the second annual CoreOS community conference, held for the first time in Berlin on May 9th and 10th. CoreOS believes Kubernetes is the container orchestration component to deliver GIFEE (Google’s Infrastructure for Everyone Else).  
 -->
diff --git a/content/zh/blog/_posts/2016-07-00-Bringing-End-To-End-Kubernetes-Testing-To-Azure-2.md b/content/zh-cn/blog/_posts/2016-07-00-Bringing-End-To-End-Kubernetes-Testing-To-Azure-2.md
similarity index 98%
rename from content/zh/blog/_posts/2016-07-00-Bringing-End-To-End-Kubernetes-Testing-To-Azure-2.md
rename to content/zh-cn/blog/_posts/2016-07-00-Bringing-End-To-End-Kubernetes-Testing-To-Azure-2.md
index e69ce47c33..411640e700 100644
--- a/content/zh/blog/_posts/2016-07-00-Bringing-End-To-End-Kubernetes-Testing-To-Azure-2.md
+++ b/content/zh-cn/blog/_posts/2016-07-00-Bringing-End-To-End-Kubernetes-Testing-To-Azure-2.md
@@ -1,16 +1,13 @@
 ---
-题目: " 将端到端的 Kubernetes 测试引入 Azure （第二部分） "
-日期: 2016-07-18
+title: " 将端到端的 Kubernetes 测试引入 Azure （第二部分） "
+date: 2016-07-18
 slug: bringing-end-to-end-kubernetes-testing-to-azure-2
-url: /blog/2016/07/Bringing-End-To-End-Kubernetes-Testing-To-Azure-2
 ---
 <!--
----
 title: " Bringing End-to-End Kubernetes Testing to Azure (Part 2) "
 date: 2016-07-18
 slug: bringing-end-to-end-kubernetes-testing-to-azure-2
 url: /blog/2016/07/Bringing-End-To-End-Kubernetes-Testing-To-Azure-2
----
 -->
 
 <!--
diff --git a/content/zh/blog/_posts/2016-07-00-Citrix-Netscaler-And-Kubernetes.md b/content/zh-cn/blog/_posts/2016-07-00-Citrix-Netscaler-And-Kubernetes.md
similarity index 99%
rename from content/zh/blog/_posts/2016-07-00-Citrix-Netscaler-And-Kubernetes.md
rename to content/zh-cn/blog/_posts/2016-07-00-Citrix-Netscaler-And-Kubernetes.md
index 45ab59e3af..d805cc7cd0 100644
--- a/content/zh/blog/_posts/2016-07-00-Citrix-Netscaler-And-Kubernetes.md
+++ b/content/zh-cn/blog/_posts/2016-07-00-Citrix-Netscaler-And-Kubernetes.md
@@ -5,12 +5,10 @@ slug: citrix-netscaler-and-kubernetes
 ---
 
 <!--
----
 title: " Citrix + Kubernetes = A Home Run "
 date: 2016-07-14
 slug: citrix-netscaler-and-kubernetes
 url: /blog/2016/07/Citrix-Netscaler-And-Kubernetes
----
 -->
 
 <!--
diff --git a/content/zh/blog/_posts/2016-07-00-Dashboard-Web-Interface-For-Kubernetes.md b/content/zh-cn/blog/_posts/2016-07-00-Dashboard-Web-Interface-For-Kubernetes.md
similarity index 98%
rename from content/zh/blog/_posts/2016-07-00-Dashboard-Web-Interface-For-Kubernetes.md
rename to content/zh-cn/blog/_posts/2016-07-00-Dashboard-Web-Interface-For-Kubernetes.md
index dd0533def3..0e9dcc2d37 100644
--- a/content/zh/blog/_posts/2016-07-00-Dashboard-Web-Interface-For-Kubernetes.md
+++ b/content/zh-cn/blog/_posts/2016-07-00-Dashboard-Web-Interface-For-Kubernetes.md
@@ -5,12 +5,10 @@ slug: dashboard-web-interface-for-kubernetes
 ---
 
 <!--
----
 title: " Dashboard - Full Featured Web Interface for Kubernetes "
 date: 2016-07-15
 slug: dashboard-web-interface-for-kubernetes
 url: /blog/2016/07/Dashboard-Web-Interface-For-Kubernetes
----
 -->
 
 <!--
@@ -41,7 +39,7 @@ The Dashboard UI now handles all workload resources. This means that no matter w
  [![](https://lh3.googleusercontent.com/p9bMGxPx4jE6_Z2KB-MktmyuAxyFst-bEk29M_Bn0Bj5ul7uzinH6u5WjHsMmqhGvBwlABZt06dwQ5qkBZiLq_EM1oddCmpwChvXDNXZypaS5l8uzkKuZj3PBUmzTQT4dgDxSXgz) ](https://lh3.googleusercontent.com/p9bMGxPx4jE6_Z2KB-MktmyuAxyFst-bEk29M_Bn0Bj5ul7uzinH6u5WjHsMmqhGvBwlABZt06dwQ5qkBZiLq_EM1oddCmpwChvXDNXZypaS5l8uzkKuZj3PBUmzTQT4dgDxSXgz)
 -->
 
-Dashboard UI 现在处理所有工作负载资源。这意味着无论您运行什么工作负载类型，它都在 web 界面中可见，并且您可以对其进行操作更改。例如，可以使用[Pet Sets](/docs/user-guide/petset/)修改有状态的 mysql 安装，使用部署对 web 服务器进行滚动更新，或使用守护程序安装群集监视。
+Dashboard UI 现在处理所有工作负载资源。这意味着无论您运行什么工作负载类型，它都在 web 界面中可见，并且您可以对其进行操作更改。例如，可以使用[Pet Sets](/docs/user-guide/petset/)修改有状态的 mysql 安装，使用部署对 web 服务器进行滚动更新，或使用守护程序安装集群监视。
 
 
 
@@ -105,9 +103,9 @@ Here is a list of our focus areas for the following months:
 
 以下是我们接下来几个月的重点领域：
 
-- [Handle more Kubernetes resources](https://github.com/kubernetes/dashboard/issues/961) - 显示群集用户可能与之交互的所有资源。一旦完成，dashboard 就可以完全替代cli。
+- [Handle more Kubernetes resources](https://github.com/kubernetes/dashboard/issues/961) - 显示集群用户可能与之交互的所有资源。一旦完成，dashboard 就可以完全替代cli。
 - [Monitoring and troubleshooting](https://github.com/kubernetes/dashboard/issues/962) - 将资源使用统计信息/图表添加到 Dashboard 中显示的对象。这个重点领域将允许对云应用程序进行可操作的调试和故障排除。
-- [Security, auth and logging in](https://github.com/kubernetes/dashboard/issues/964) - 使仪表板可从群集外部的网络访问，并使用自定义身份验证系统。
+- [Security, auth and logging in](https://github.com/kubernetes/dashboard/issues/964) - 使仪表板可从集群外部的网络访问，并使用自定义身份验证系统。
 
 <!--
 **Connect With Us**
diff --git a/content/zh/blog/_posts/2016-07-00-Oh-The-Places-You-Will-Go.md b/content/zh-cn/blog/_posts/2016-07-00-Oh-The-Places-You-Will-Go.md
similarity index 99%
rename from content/zh/blog/_posts/2016-07-00-Oh-The-Places-You-Will-Go.md
rename to content/zh-cn/blog/_posts/2016-07-00-Oh-The-Places-You-Will-Go.md
index 791be64329..198d7d3cd2 100644
--- a/content/zh/blog/_posts/2016-07-00-Oh-The-Places-You-Will-Go.md
+++ b/content/zh-cn/blog/_posts/2016-07-00-Oh-The-Places-You-Will-Go.md
@@ -5,12 +5,10 @@ slug: oh-the-places-you-will-go
 ---
 
 <!--
----
 title: " Happy Birthday Kubernetes. Oh, the places you’ll go! "
 date: 2016-07-21
 slug: oh-the-places-you-will-go
 url: /blog/2016/07/Oh-The-Places-You-Will-Go
----
 -->
 
 <!--
diff --git a/content/zh/blog/_posts/2016-07-00-stateful-applications-in-containers-kubernetes.md b/content/zh-cn/blog/_posts/2016-07-00-stateful-applications-in-containers-kubernetes.md
similarity index 89%
rename from content/zh/blog/_posts/2016-07-00-stateful-applications-in-containers-kubernetes.md
rename to content/zh-cn/blog/_posts/2016-07-00-stateful-applications-in-containers-kubernetes.md
index 027a7c8701..f5bc9d4c31 100644
--- a/content/zh/blog/_posts/2016-07-00-stateful-applications-in-containers-kubernetes.md
+++ b/content/zh-cn/blog/_posts/2016-07-00-stateful-applications-in-containers-kubernetes.md
@@ -2,15 +2,12 @@
 title: "容器中运行有状态的应用！？ Kubernetes 1.3 说 “是！” "
 date: 2016-07-13
 slug: stateful-applications-in-containers-kubernetes
-url: /blog/2016/07/stateful-applications-in-containers-kubernetes
 ---
 <!--
----
 title: " Stateful Applications in Containers!? Kubernetes 1.3 Says “Yes!” "
 date: 2016-07-13
 slug: stateful-applications-in-containers-kubernetes
 url: /blog/2016/07/stateful-applications-in-containers-kubernetes
----
 -->
 
 <!--
@@ -19,9 +16,11 @@ _Editor's note: today’s guest post is from Mark Balch, VP of Products at Diama
 _编者注： 今天的来宾帖子来自 Diamanti 产品副总裁 Mark Balch，他将分享有关他们对 Kubernetes 所做的贡献的更多信息。_ 
 
 <!--
-Congratulations to the Kubernetes community on another [value-packed release](https://kubernetes.io/blog/2016/07/kubernetes-1.3-bridging-cloud-native-and-enterprise-workloads). A focus on stateful applications and federated clusters are two reasons why I’m so excited about 1.3. Kubernetes support for stateful apps such as Cassandra, Kafka, and MongoDB is critical. Important services rely on databases, key value stores, message queues, and more. Additionally, relying on one data center or container cluster simply won’t work as apps grow to serve millions of users around the world. Cluster federation allows users to deploy apps across multiple clusters and data centers for scale and resiliency.  
+
+Congratulations to the Kubernetes community on another [value-packed release](https://kubernetes.io/blog/2016/07/kubernetes-1-3-bridging-cloud-native-and-enterprise-workloads/). A focus on stateful applications and federated clusters are two reasons why I’m so excited about 1.3. Kubernetes support for stateful apps such as Cassandra, Kafka, and MongoDB is critical. Important services rely on databases, key value stores, message queues, and more. Additionally, relying on one data center or container cluster simply won’t work as apps grow to serve millions of users around the world. Cluster federation allows users to deploy apps across multiple clusters and data centers for scale and resiliency.
+
 -->
-祝贺 Kubernetes 社区发布了另一个[有价值的版本](https://kubernetes.io/blog/2016/07/kubernetes-1.3-bridging-cloud-native-and-enterprise-workloads)。
+祝贺 Kubernetes 社区发布了另一个[有价值的版本](https://kubernetes.io/blog/2016/07/kubernetes-1-3-bridging-cloud-native-and-enterprise-workloads/)。
 专注于有状态应用程序和联邦集群是我对 1.3 如此兴奋的两个原因。
 Kubernetes 对有状态应用程序（例如 Cassandra、Kafka 和 MongoDB）的支持至关重要。
 重要服务依赖于数据库、键值存储、消息队列等。
@@ -40,7 +39,7 @@ Diamanti 正在加速在生产中使用有状态应用程序的容器-在这方
 **应用程序不仅仅需要牛**  
 
 <!--
-Beyond stateless containers like web servers (so-called “cattle” because they are interchangeable), users are increasingly deploying stateful workloads with containers to benefit from “build once, run anywhere” and to improve bare metal efficiency/utilization. These “pets” (so-called because each requires special handling) bring new requirements including longer life cycle, configuration dependencies, stateful failover, and performance sensitivity. Container orchestration must address these needs to successfully deploy and scale apps. 
+Beyond stateless containers like web servers (so-called “cattle” because they are interchangeable), users are increasingly deploying stateful workloads with containers to benefit from “build once, run anywhere” and to improve bare metal efficiency/utilization. These “pets” (so-called because each requires special handling) bring new requirements including longer life cycle, configuration dependencies, stateful failover, and performance sensitivity. Container orchestration must address these needs to successfully deploy and scale apps.  
 -->
 除了诸如Web服务器之类的无状态容器（因为它们是可互换的，因此被称为“牛”）之外，用户越来越多地使用容器来部署有状态工作负载，以从“一次构建，随处运行”中受益并提高裸机效率/利用率。
 这些“宠物”（之所以称为“宠物”，是因为每个宠物都需要特殊的处理）带来了新的要求，包括更长的生命周期，配置依赖项，有状态故障转移以及性能敏感性。
@@ -56,10 +55,10 @@ Pet Set 还利用普遍存在的 DNS SRV 记录简化了服务发现，DNS SRV 
 <!--
 Diamanti’s [FlexVolume contribution](https://github.com/kubernetes/kubernetes/pull/13840) to Kubernetes enables stateful workloads by providing persistent volumes with low-latency storage and guaranteed performance, including enforced quality-of-service from container to media.  
 -->
-Diamanti 对 Kubernete s的 [FlexVolume 贡献](https://github.com/kubernetes/kubernetes/pull/13840) 通过为持久卷提供低延迟存储并保证性能来实现有状态工作负载，包括从容器到媒体的强制服务质量。
+Diamanti 对 Kubernetes 的 [FlexVolume 贡献](https://github.com/kubernetes/kubernetes/pull/13840) 通过为持久卷提供低延迟存储并保证性能来实现有状态工作负载，包括从容器到媒体的强制服务质量。
 
 <!--
-**A Federalist** 
+**A Federalist**  
 -->
 **联邦主义者** 
 
@@ -83,7 +82,7 @@ It’s easy to imagine powerful multi-cluster use cases with cross-cluster feder
 很容易想象在将来的版本中具有跨集群联邦服务的强大多集群用例。
 一个示例是根据治理，安全性和性能要求调度容器。
 Diamanti 的调度程序扩展是在考虑了这一概念的基础上开发的。
-我们的[第一个实现](https://github.com/kubernetes/kubernetes/pull/13580)使 Kubernetes 调度程序意识到每个群集节点本地的网络和存储资源。
+我们的[第一个实现](https://github.com/kubernetes/kubernetes/pull/13580)使 Kubernetes 调度程序意识到每个集群节点本地的网络和存储资源。
 将来，类似的概念可以应用于跨集群联邦服务的更广泛的放置控件。
 
 <!--
diff --git a/content/zh-cn/blog/_posts/2016-08-00-Sig-Apps-Running-Apps-In-Kubernetes.md b/content/zh-cn/blog/_posts/2016-08-00-Sig-Apps-Running-Apps-In-Kubernetes.md
new file mode 100644
index 0000000000..1a18cbe98a
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2016-08-00-Sig-Apps-Running-Apps-In-Kubernetes.md
@@ -0,0 +1,103 @@
+---
+layout: blog
+title: 'SIG Apps: 为 Kubernetes 构建应用并在 Kubernetes 中进行运维'
+date: 2016-08-16
+slug: sig-apps-running-apps-in-kubernetes
+---
+<!--
+title: " SIG Apps: build apps for and operate them in Kubernetes "
+date: 2016-08-16
+slug: sig-apps-running-apps-in-kubernetes
+canonicalUrl: https://kubernetes.io/blog/2016/08/sig-apps-running-apps-in-kubernetes/
+url: /blog/2016/08/Sig-Apps-Running-Apps-In-Kubernetes
+-->
+
+<!--
+_Editor’s note: This post is by the Kubernetes SIG-Apps team sharing how they focus on the developer and devops experience of running applications in Kubernetes._  
+
+Kubernetes is an incredible manager for containerized applications. Because of this, [numerous](https://kubernetes.io/blog/2016/02/sharethis-kubernetes-in-production) [companies](https://blog.box.com/blog/kubernetes-box-microservices-maximum-velocity/) [have](http://techblog.yahoo.co.jp/infrastructure/os_n_k8s/) [started](http://www.nextplatform.com/2015/11/12/inside-ebays-shift-to-kubernetes-and-containers-atop-openstack/) to run their applications in Kubernetes.  
+
+Kubernetes Special Interest Groups ([SIGs](https://github.com/kubernetes/community/blob/master/README.md#special-interest-groups-sig)) have been around to support the community of developers and operators since around the 1.0 release. People organized around networking, storage, scaling and other operational areas.  
+
+As Kubernetes took off, so did the need for tools, best practices, and discussions around building and operating cloud native applications. To fill that need the Kubernetes [SIG Apps](https://github.com/kubernetes/community/tree/master/sig-apps) came into existence.  
+
+SIG Apps is a place where companies and individuals can:
+-->  
+
+**编者注**：这篇文章由 Kubernetes SIG-Apps 团队撰写，分享他们如何关注在 Kubernetes
+中运行应用的开发者和 devops 经验。
+
+Kubernetes 是容器化应用程序的出色管理者。因此，[众多](https://kubernetes.io/blog/2016/02/sharethis-kubernetes-in-production)
+[公司](https://blog.box.com/blog/kubernetes-box-microservices-maximum-velocity/)
+[已经](http://techblog.yahoo.co.jp/infrastructure/os_n_k8s/)
+[开始](http://www.nextplatform.com/2015/11/12/inside-ebays-shift-to-kubernetes-and-containers-atop-openstack/) 在 Kubernetes 中运行应用程序。
+
+Kubernetes 特殊兴趣小组 ([SIGs](https://github.com/kubernetes/community/blob/master/README.md#special-interest-groups-sig))
+自 1.0 版本开始就一直致力于支持开发者和运营商社区。围绕网络、存储、扩展和其他运营领域组织的人员。
+
+随着 Kubernetes 的兴起，对工具、最佳实践以及围绕构建和运营云原生应用程序的讨论的需求也随之增加。为了满足这一需求，
+Kubernetes [SIG Apps](https://github.com/kubernetes/community/tree/master/sig-apps) 应运而生。
+
+SIG Apps 为公司和个人提供以下支持：
+
+<!--
+- see and share demos of the tools being built to enable app operators
+- learn about and discuss needs of app operators
+- organize around efforts to improve the experience
+- -->
+
+- 查看和分享正在构建的、为应用操作人员赋能的工具的演示
+- 了解和讨论应用运营人员的需求
+- 组织各方努力改善体验
+
+<!--
+Since the inception of SIG Apps we’ve had demos of projects like [KubeFuse](https://github.com/opencredo/kubefuse), [KPM](https://github.com/kubespray/kpm), and [StackSmith](https://stacksmith.bitnami.com/). We’ve also executed on a survey of those operating apps in Kubernetes.  
+
+From the survey results we’ve learned a number of things including:
+-->  
+
+自从 SIG Apps 成立以来，我们已经进行了项目演示，例如 [KubeFuse](https://github.com/opencredo/kubefuse)、
+[KPM](https://github.com/kubespray/kpm)，和 [StackSmith](https://stacksmith.bitnami.com/)。 
+我们还对那些负责 Kubernetes 中应用运维的人进行了调查。
+
+从调查结果中，我们学到了很多东西，包括：
+
+<!--
+- That 81% of respondents want some form of autoscaling
+- To store secret information 47% of respondents use built-in secrets. At reset these are not currently encrypted. (If you want to help add encryption there is an [issue](https://github.com/kubernetes/kubernetes/issues/10439) for that.)&nbsp;
+- The most responded questions had to do with 3rd party tools and debugging
+- For 3rd party tools to manage applications there were no clear winners. There are a wide variety of practices
+- An overall complaint about a lack of useful documentation. (Help contribute to the docs [here](https://github.com/kubernetes/kubernetes.github.io).)
+- There’s a lot of data. Many of the responses were optional so we were surprised that 935 of all questions across all candidates were filled in. If you want to look at the data yourself it’s [available online](https://docs.google.com/spreadsheets/d/15SUL7QTpR4Flrp5eJ5TR8A5ZAFwbchfX2QL4MEoJFQ8/edit?usp=sharing).
+-->
+
+- 81% 的受访者希望采用某种形式的自动扩缩
+- 为了存储秘密信息，47% 的受访者使用内置 Secret。目前这些资料并未实现静态加密。 
+  （如果你需要关于加密的帮助，请参见[问题](https://github.com/kubernetes/kubernetes/issues/10439)。)
+- 响应最多的问题与第三方工具和调试有关
+- 对于管理应用程序的第三方工具，没有明确的赢家。有各种各样的做法
+- 总体上对缺乏有用文件有较多抱怨。（请在[此处](https://github.com/kubernetes/kubernetes.github.io)帮助提交文档。）
+- 数据量很大。很多回答是可选的，所以我们很惊讶所有候选人的所有问题中有 935 个都被填写了。
+  如果你想亲自查看数据，可以[在线](https://docs.google.com/spreadsheets/d/15SUL7QTpR4Flrp5eJ5TR8A5ZAFwbchfX2QL4MEoJFQ8/edit?usp=sharing)查看。
+
+<!--
+When it comes to application operation there’s still a lot to be figured out and shared. If you've got opinions about running apps, tooling to make the experience better, or just want to lurk and learn about what's going please come join us.
+-->  
+
+就应用运维而言，仍然有很多东西需要解决和共享。如果你对运行应用程序有看法或者有改善体验的工具，
+或者只是想潜伏并了解状况，请加入我们。
+
+<!--
+- Chat with us on SIG-Apps [Slack channel](https://kubernetes.slack.com/messages/sig-apps)
+- Email as at SIG-Apps [mailing list](https://groups.google.com/forum/#!forum/kubernetes-sig-apps)
+- Join our open meetings: weekly at 9AM PT on Wednesdays, [full details here](https://github.com/kubernetes/community/blob/master/sig-apps/README.md#meeting).
+-->
+
+- 在 SIG-Apps [Slack 频道](https://kubernetes.slack.com/messages/sig-apps)与我们聊天
+- 发送邮件到 SIG-Apps [邮件列表](https://groups.google.com/forum/#!forum/kubernetes-sig-apps)
+- 参加我们的公开会议：太平洋时间每周三上午 9 点，[详情点击此处](https://github.com/kubernetes/community/blob/master/sig-apps/README.md#meeting)
+
+<!--
+_--Matt Farina, Principal Engineer, Hewlett Packard Enterprise_
+-->  
+_--Matt Farina ，Hewlett Packard Enterprise 首席工程师_ 
\ No newline at end of file
diff --git a/content/zh/blog/_posts/2016-08-00-Stateful-Applications-Using-Kubernetes-Datera.md b/content/zh-cn/blog/_posts/2016-08-00-Stateful-Applications-Using-Kubernetes-Datera.md
similarity index 99%
rename from content/zh/blog/_posts/2016-08-00-Stateful-Applications-Using-Kubernetes-Datera.md
rename to content/zh-cn/blog/_posts/2016-08-00-Stateful-Applications-Using-Kubernetes-Datera.md
index 8941ce5a54..49c4facdeb 100644
--- a/content/zh/blog/_posts/2016-08-00-Stateful-Applications-Using-Kubernetes-Datera.md
+++ b/content/zh-cn/blog/_posts/2016-08-00-Stateful-Applications-Using-Kubernetes-Datera.md
@@ -2,15 +2,12 @@
 title: " 使用 Kubernetes Pet Sets 和 Datera Elastic Data Fabric 的 FlexVolume 扩展有状态的应用程序 "
 date: 2016-08-29
 slug: stateful-applications-using-kubernetes-datera
-url: /zh/blog/2016/08/Stateful-Applications-Using-Kubernetes-Datera
 ---
 <!--
----
 title: " Scaling Stateful Applications using Kubernetes Pet Sets and FlexVolumes with Datera Elastic Data Fabric "
 date: 2016-08-29
 slug: stateful-applications-using-kubernetes-datera
 url: /blog/2016/08/Stateful-Applications-Using-Kubernetes-Datera
----
 --->
 
 <!--
diff --git a/content/zh/blog/_posts/2017-10-00-Five-Days-Of-Kubernetes-18.md b/content/zh-cn/blog/_posts/2017-10-00-Five-Days-Of-Kubernetes-18.md
similarity index 99%
rename from content/zh/blog/_posts/2017-10-00-Five-Days-Of-Kubernetes-18.md
rename to content/zh-cn/blog/_posts/2017-10-00-Five-Days-Of-Kubernetes-18.md
index eee16d7a49..6418a161f4 100644
--- a/content/zh/blog/_posts/2017-10-00-Five-Days-Of-Kubernetes-18.md
+++ b/content/zh-cn/blog/_posts/2017-10-00-Five-Days-Of-Kubernetes-18.md
@@ -3,14 +3,11 @@ title: " Kubernetes 1.8 的五天 "
 date: 2017-10-24
 slug: five-days-of-kubernetes-18
 ---
-
 <!--
----
 title: " Five Days of Kubernetes 1.8 "
 date: 2017-10-24
 slug: five-days-of-kubernetes-18
 url: /blog/2017/10/Five-Days-Of-Kubernetes-18
----
 -->
 
 <!--
diff --git a/content/zh/blog/_posts/2017-10-00-Kubernetes-Community-Steering-Committee-Election-Results.md b/content/zh-cn/blog/_posts/2017-10-00-Kubernetes-Community-Steering-Committee-Election-Results.md
similarity index 98%
rename from content/zh/blog/_posts/2017-10-00-Kubernetes-Community-Steering-Committee-Election-Results.md
rename to content/zh-cn/blog/_posts/2017-10-00-Kubernetes-Community-Steering-Committee-Election-Results.md
index 0411d844fe..6fb9a7ad24 100644
--- a/content/zh/blog/_posts/2017-10-00-Kubernetes-Community-Steering-Committee-Election-Results.md
+++ b/content/zh-cn/blog/_posts/2017-10-00-Kubernetes-Community-Steering-Committee-Election-Results.md
@@ -2,16 +2,14 @@
 title: " Kubernetes 社区指导委员会选举结果 "
 date: 2017-10-05
 slug: kubernetes-community-steering-committee-election-results
-url: /blog/2017/10/Kubernetes-Community-Steering-Committee-Election-Results
 ---
 <!--
----
 title: " Kubernetes Community Steering Committee Election Results "
 date: 2017-10-05
 slug: kubernetes-community-steering-committee-election-results
 url: /blog/2017/10/Kubernetes-Community-Steering-Committee-Election-Results
----
 -->
+
 <!--
 Beginning with the announcement of Kubernetes 1.0 at OSCON in 2015, there has been a concerted effort to share the power and burden of leadership across the Kubernetes community.  
 -->
diff --git a/content/zh/blog/_posts/2017-11-00-Autoscaling-In-Kubernetes.md b/content/zh-cn/blog/_posts/2017-11-00-Autoscaling-In-Kubernetes.md
similarity index 99%
rename from content/zh/blog/_posts/2017-11-00-Autoscaling-In-Kubernetes.md
rename to content/zh-cn/blog/_posts/2017-11-00-Autoscaling-In-Kubernetes.md
index d598d30d83..c30f22aa35 100644
--- a/content/zh/blog/_posts/2017-11-00-Autoscaling-In-Kubernetes.md
+++ b/content/zh-cn/blog/_posts/2017-11-00-Autoscaling-In-Kubernetes.md
@@ -3,14 +3,11 @@ title: " Kubernetes 中自动缩放 "
 date: 2017-11-17
 slug: autoscaling-in-kubernetes
 ---
-
 <!--
----
 title: " Autoscaling in Kubernetes "
 date: 2017-11-17
 slug: autoscaling-in-kubernetes
 url: /blog/2017/11/Autoscaling-In-Kubernetes
----
 -->
 
 <!--
diff --git a/content/zh/blog/_posts/2018-01-00-Kubernetes-V19-Beta-Windows-Support.md b/content/zh-cn/blog/_posts/2018-01-00-Kubernetes-V19-Beta-Windows-Support.md
similarity index 99%
rename from content/zh/blog/_posts/2018-01-00-Kubernetes-V19-Beta-Windows-Support.md
rename to content/zh-cn/blog/_posts/2018-01-00-Kubernetes-V19-Beta-Windows-Support.md
index 3567bb17f2..dee07c933a 100644
--- a/content/zh/blog/_posts/2018-01-00-Kubernetes-V19-Beta-Windows-Support.md
+++ b/content/zh-cn/blog/_posts/2018-01-00-Kubernetes-V19-Beta-Windows-Support.md
@@ -2,15 +2,12 @@
 title: Kubernetes 1.9 对 Windows Server 容器提供 Beta 版本支持
 date: 2018-01-09
 slug: kubernetes-v19-beta-windows-support
-url: /blog/2018/01/Kubernetes-V19-Beta-Windows-Support
 ---
 <!--
----
 title: Kubernetes v1.9 releases beta support for Windows Server Containers
 date: 2018-01-09
 slug: kubernetes-v19-beta-windows-support
 url: /blog/2018/01/Kubernetes-V19-Beta-Windows-Support
----
 --->
 
 <!--
diff --git a/content/zh/blog/_posts/2018-03-00-Principles-Of-Container-App-Design.md b/content/zh-cn/blog/_posts/2018-03-00-Principles-Of-Container-App-Design.md
similarity index 98%
rename from content/zh/blog/_posts/2018-03-00-Principles-Of-Container-App-Design.md
rename to content/zh-cn/blog/_posts/2018-03-00-Principles-Of-Container-App-Design.md
index 779fa7111c..8aca089b4a 100644
--- a/content/zh/blog/_posts/2018-03-00-Principles-Of-Container-App-Design.md
+++ b/content/zh-cn/blog/_posts/2018-03-00-Principles-Of-Container-App-Design.md
@@ -2,15 +2,12 @@
 title: “基于容器的应用程序设计原理”
 date: 2018-03-15
 slug: principles-of-container-app-design
-url: /zh/blog/2018/03/Principles-Of-Container-App-Design
 ---
 <!--
----
 title: "Principles of Container-based Application Design"
 date: 2018-03-15
 slug: principles-of-container-app-design
 url: /blog/2018/03/Principles-Of-Container-App-Design
----
 -->
 
 <!--
@@ -102,11 +99,11 @@ To read more about designing cloud-native applications for Kubernetes, check out
 — [Bilgin Ibryam][4]，首席架构师，Red Hat
 
 <!--
-Twitter: 
  
+Twitter:   
 Blog: [http://www.ofbizian.com][5]  
 Linkedin:
 -->
-推特： 
  
+推特：   
 博客： [http://www.ofbizian.com][5]  
 领英：
 
diff --git a/content/zh/blog/_posts/2018-04-25-open-source-charts-2017.md b/content/zh-cn/blog/_posts/2018-04-25-open-source-charts-2017.md
similarity index 100%
rename from content/zh/blog/_posts/2018-04-25-open-source-charts-2017.md
rename to content/zh-cn/blog/_posts/2018-04-25-open-source-charts-2017.md
diff --git a/content/zh/blog/_posts/2018-05-01-developing-on-kubernetes.md b/content/zh-cn/blog/_posts/2018-05-01-developing-on-kubernetes.md
similarity index 97%
rename from content/zh/blog/_posts/2018-05-01-developing-on-kubernetes.md
rename to content/zh-cn/blog/_posts/2018-05-01-developing-on-kubernetes.md
index 5d31031ec7..0e94e5ffbf 100644
--- a/content/zh/blog/_posts/2018-05-01-developing-on-kubernetes.md
+++ b/content/zh-cn/blog/_posts/2018-05-01-developing-on-kubernetes.md
@@ -12,20 +12,22 @@ slug: developing-on-kubernetes
 ---
 -->
 
-<!--**Authors**:-->
+<!--
+**Authors**: [Michael Hausenblas](https://twitter.com/mhausenblas) (Red Hat), [Ilya Dmitrichenko](https://twitter.com/errordeveloper) (Weaveworks)
+-->
 **作者**： [Michael Hausenblas](https://twitter.com/mhausenblas) (Red Hat), [Ilya Dmitrichenko](https://twitter.com/errordeveloper) (Weaveworks)
 
 <!-- 
-How do you develop a Kubernetes app? That is, how do you write and test an app that is supposed to run on Kubernetes? This article focuses on the challenges, tools and methods you might want to be aware of to successfully write Kubernetes apps alone or in a team setting. 
+How do you develop a Kubernetes app? That is, how do you write and test an app that is supposed to run on Kubernetes? This article focuses on the challenges, tools and methods you might want to be aware of to successfully write Kubernetes apps alone or in a team setting.
 -->
 
-您将如何开发一个 Kubernates 应用？也就是说，您如何编写并测试一个要在 Kubernates 上运行的应用程序？本文将重点介绍在独自开发或者团队协作中，您可能希望了解到的为了成功编写 Kubernetes 应用程序而需面临的挑战，工具和方法。
+您将如何开发一个 Kubernetes 应用？也就是说，您如何编写并测试一个要在 Kubernetes 上运行的应用程序？本文将重点介绍在独自开发或者团队协作中，您可能希望了解到的为了成功编写 Kubernetes 应用程序而需面临的挑战，工具和方法。
 
 <!--
 We’re assuming you are a developer, you have a favorite programming language, editor/IDE, and a testing framework available. The overarching goal is to introduce minimal changes to your current workflow when developing the app for Kubernetes. For example, if you’re a Node.js developer and are used to a hot-reload setup—that is, on save in your editor the running app gets automagically updated—then dealing with containers and container images, with container registries, Kubernetes deployments, triggers, and more can not only be overwhelming but really take all the fun out if it.
 -->
 
-我们假定您是一位开发人员，有您钟爱的编程语言，编辑器/IDE（集成开发环境），以及可用的测试框架。在针对 Kubernates 开发应用时，最重要的目标是减少对当前工作流程的影响，改变越少越好，尽量做到最小。举个例子，如果您是 Node.js 开发人员，习惯于那种热重载的环境 - 也就是说您在编辑器里一做保存，正在运行的程序就会自动更新 - 那么跟容器、容器镜像或者镜像仓库打交道，又或是跟 Kubernetes 部署、triggers 以及更多头疼东西打交道，不仅会让人难以招架也真的会让开发过程完全失去乐趣。
+我们假定您是一位开发人员，有您钟爱的编程语言，编辑器/IDE（集成开发环境），以及可用的测试框架。在针对 Kubernetes 开发应用时，最重要的目标是减少对当前工作流程的影响，改变越少越好，尽量做到最小。举个例子，如果您是 Node.js 开发人员，习惯于那种热重载的环境 - 也就是说您在编辑器里一做保存，正在运行的程序就会自动更新 - 那么跟容器、容器镜像或者镜像仓库打交道，又或是跟 Kubernetes 部署、triggers 以及更多头疼东西打交道，不仅会让人难以招架也真的会让开发过程完全失去乐趣。
 
 <!--
 In the following, we’ll first discuss the overall development setup, then review tools of the trade, and last but not least do a hands-on walkthrough of three exemplary tools that allow for iterative, local app development against Kubernetes.
@@ -48,10 +50,10 @@ As a developer you want to think about where the Kubernetes cluster you’re dev
 ![Dev Modes](/images/blog/2018-05-01-developing-on-kubernetes/dok-devmodes_preview.png)
 
 <!--
-A number of tools support pure offline development including Minikube, Docker for Mac/Windows, Minishift, and the ones we discuss in detail below. Sometimes, for example, in a microservices setup where certain microservices already run in the cluster, a proxied setup (forwarding traffic into and from the cluster) is preferable and Telepresence is an example tool in this category. The live mode essentially means you’re building and/or deploying against a remote cluster and, finally, the pure online mode means both your development environment and the cluster are remote, as this is the case with, for example, [Eclipse Che](https://www.eclipse.org/che/docs/kubernetes-single-user.html) or [Cloud 9](https://github.com/errordeveloper/k9c). Let’s now have a closer look at the basics of offline development: running Kubernetes locally.
+A number of tools support pure offline development including Minikube, Docker for Mac/Windows, Minishift, and the ones we discuss in detail below. Sometimes, for example, in a microservices setup where certain microservices already run in the cluster, a proxied setup (forwarding traffic into and from the cluster) is preferable and Telepresence is an example tool in this category. The live mode essentially means you’re building and/or deploying against a remote cluster and, finally, the pure online mode means both your development environment and the cluster are remote, as this is the case with, for example, [Eclipse Che](https://www.eclipse.org/che/docs/che-7/introduction-to-eclipse-che/) or [Cloud 9](https://github.com/errordeveloper/k9c). Let’s now have a closer look at the basics of offline development: running Kubernetes locally.
 -->
 
-许多工具支持纯 offline 开发，包括 Minikube、Docker（Mac 版/Windows 版）、Minishift 以及下文中我们将详细讨论的几种。有时，比如说在一个微服务系统中，已经有若干微服务在运行，proxied 模式（通过转发把数据流传进传出集群）就非常合适，Telepresence 就是此类工具的一个实例。live 模式，本质上是您基于一个远程集群进行构建和部署。最后，纯 online 模式意味着您的开发环境和运行集群都是远程的，典型的例子是 [Eclipse Che](https://www.eclipse.org/che/docs/kubernetes-single-user.html) 或者 [Cloud 9](https://github.com/errordeveloper/k9c)。现在让我们仔细看看离线开发的基础：在本地运行 Kubernetes。
+许多工具支持纯 offline 开发，包括 Minikube、Docker（Mac 版/Windows 版）、Minishift 以及下文中我们将详细讨论的几种。有时，比如说在一个微服务系统中，已经有若干微服务在运行，proxied 模式（通过转发把数据流传进传出集群）就非常合适，Telepresence 就是此类工具的一个实例。live 模式，本质上是您基于一个远程集群进行构建和部署。最后，纯 online 模式意味着您的开发环境和运行集群都是远程的，典型的例子是 [Eclipse Che](https://www.eclipse.org/che/docs/che-7/introduction-to-eclipse-che/) 或者 [Cloud 9](https://github.com/errordeveloper/k9c)。现在让我们仔细看看离线开发的基础：在本地运行 Kubernetes。
 
 <!--
 [Minikube](/docs/getting-started-guides/minikube/) is a popular choice for those who prefer to run Kubernetes in a local VM. More recently Docker for [Mac](https://docs.docker.com/docker-for-mac/kubernetes/) and [Windows](https://docs.docker.com/docker-for-windows/kubernetes/) started shipping Kubernetes as an experimental package (in the “edge” channel). Some reasons why you may want to prefer using Minikube over the Docker desktop option are:
@@ -157,7 +159,7 @@ Implications:
 * Deploying to production is up to the user, Draft authors recommend their other project – Brigade
 * Can be used instead of Skaffold, and along the side of Squash
 -->
-* 它允许开发人员使用本地或者远程的 Kubernates 集群
+* 它允许开发人员使用本地或者远程的 Kubernetes 集群
 * 如何部署到生产环境取决于用户， Draft 的作者推荐了他们的另一个项目 - Brigade
 * 可以代替 Skaffold， 并且可以和 Squash 一起使用
 
@@ -255,7 +257,7 @@ More info:
 更多信息：
 
 * [Squash: A Debugger for Kubernetes Apps](https://www.youtube.com/watch?v=5TrV3qzXlgI)
-* [Getting Started Guide](https://github.com/solo-io/squash/blob/master/docs/getting-started.md)
+* [Getting Started Guide](https://squash.solo.io/overview/)
 
 ### Telepresence
 
@@ -397,10 +399,10 @@ Note that for the target Kubernetes cluster we’ve been using Minikube locally,
 请注意，我们一直使用 Minikube 的本地 Kubernetes 集群，但是您也可以使用 ksync 和 Skaffold 的远程集群跟随练习。
 
 <!--
-### Walkthrough: ksync
+## Walkthrough: ksync
 -->
 
-### 实践演练：ksync
+## 实践演练：ksync
 
 <!--
 As a preparation, install [ksync](https://vapor-ware.github.io/ksync/#installation) and then carry out the following steps to prepare the development setup:
@@ -502,11 +504,11 @@ $ kubectl -n=dok apply -f stock-gen/app.yaml
 $ kubectl -n=dok apply -f stock-con/app.yaml
 ```
 <!--
-Once both deployments are created and the pods are running, we forward the `stock-con` service for local consumption (in a separate terminal session):
+Once both deployments are created and the pods are running, we forward the `stock-con` service for local consumption (in a separate terminal session) and check the response of the `healthz` endpoint:
 -->
 
 
-一旦两个部署建好并且 pod 开始运行，我们转发 `stock-con` 服务以供本地读取（另开一个终端窗口）：
+一旦两个部署建好并且 pod 开始运行，我们转发 `stock-con` 服务以供本地读取（另开一个终端窗口）并检查 `healthz` 端点的响应：
 
 ```
 $ kubectl get -n dok po --selector=app=stock-con  \
diff --git a/content/zh/blog/_posts/2018-05-30-say-hello-to-discuss-kubernetes.md b/content/zh-cn/blog/_posts/2018-05-30-say-hello-to-discuss-kubernetes.md
similarity index 97%
rename from content/zh/blog/_posts/2018-05-30-say-hello-to-discuss-kubernetes.md
rename to content/zh-cn/blog/_posts/2018-05-30-say-hello-to-discuss-kubernetes.md
index eb1aba85d2..2003493013 100644
--- a/content/zh/blog/_posts/2018-05-30-say-hello-to-discuss-kubernetes.md
+++ b/content/zh-cn/blog/_posts/2018-05-30-say-hello-to-discuss-kubernetes.md
@@ -1,17 +1,13 @@
 ---
-title: 'Kubernetes 1 11：向 discuss kubernetes 问好'
 layout: blog
+title: 向 Discuss Kubernetes 问好
 date: 2018-05-30
+slug: say-hello-to-discuss-kubernetes
 ---
-
 <!--
----
-title: ' Kubernetes 1 11：say-hello-to-discuss-kubernetes '
-cn-approvers:
-- congfairy
 layout: blog
+title: Say Hello to Discuss Kubernetes
 date: 2018-05-30
----
 -->
 
 <!--   
diff --git a/content/zh-cn/blog/_posts/2018-06-06-4-years-of-k8s.md b/content/zh-cn/blog/_posts/2018-06-06-4-years-of-k8s.md
new file mode 100644
index 0000000000..ef96399496
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2018-06-06-4-years-of-k8s.md
@@ -0,0 +1,56 @@
+---
+title: Kubernetes 这四年
+layout: blog
+date: 2018-06-06
+slug: 4-years-of-k8s
+---
+<!-- 
+layout: blog
+title: 4 Years of K8s
+date: 2018-06-06
+-->
+
+<!--
+**Author**: Joe Beda (CTO and Founder, Heptio)
+
+On June 6, 2014 I checked in the [first commit](https://github.com/kubernetes/kubernetes/commit/2c4b3a562ce34cddc3f8218a2c4d11c7310e6d56) of what would become the public repository for Kubernetes. Many would assume that is where the story starts. It is the beginning of history, right? But that really doesn’t tell the whole story.
+-->
+**作者**：Joe Beda（Heptio 首席技术官兼创始人）
+
+2014 年 6 月 6 日，我检查了 Kubernetes 公共代码库的[第一次 commit](https://github.com/kubernetes/kubernetes/commit/2c4b3a562ce34cddc3f8218a2c4d11c7310e6d56) 。许多人会认为这是故事开始的地方。这难道不是一切开始的地方吗？但这的确不能把整个过程说清楚。
+
+![k8s_first_commit](/images/blog/2018-06-06-4-years-of-k8s/k8s-first-commit.png)
+ 
+<!--
+The cast leading up to that commit was large and the success for Kubernetes since then is owed to an ever larger cast.
+
+Kubernetes was built on ideas that had been proven out at Google over the previous ten years with Borg. And Borg, itself, owed its existence to even earlier efforts at Google and beyond.
+
+Concretely, Kubernetes started as some prototypes from Brendan Burns combined with ongoing work from me and Craig McLuckie to better align the internal Google experience with the Google Cloud experience. Brendan, Craig, and I really wanted people to use this, so we made the case to build out this prototype as an open source project that would bring the best ideas from Borg out into the open.
+
+After we got the nod, it was time to actually build the system.  We took Brendan’s prototype (in Java), rewrote it in Go, and built just enough to get the core ideas across.  By this time the team had grown to include Ville Aikas, Tim Hockin, Brian Grant, Dawn Chen and Daniel Smith.  Once we had something working, someone had to sign up to clean things up to get it ready for public launch.  That ended up being me. Not knowing the significance at the time, I created a new repo, moved things over, and checked it in.  So while I have the first public commit to the repo, there was work underway well before that.
+
+The version of Kubernetes at that point was really just a shadow of what it was to become.  The core concepts were there but it was very raw.  For example, Pods were called Tasks.  That was changed a day before we went public.  All of this led up to the public announcement of Kubernetes on June 10th, 2014 in a keynote from Eric Brewer at the first DockerCon.  You can watch that video here:
+-->
+
+第一次 commit 涉及的人员众多，自那以后 Kubernetes 的成功归功于更大的开发者阵容。
+
+Kubernetes 建立在过去十年曾经在 Google 的 Borg 集群管理系统中验证过的思路之上。而 Borg 本身也是 Google 和其他公司早期努力的结果。
+
+具体而言，Kubernetes 最初是从 Brendan Burns 的一些原型开始，结合我和 Craig McLuckie 正在进行的工作，以更好地将 Google 内部实践与 Google Cloud 的经验相结合。 Brendan，Craig 和我真的希望人们使用它，所以我们建议将这个原型构建为一个开源项目，将 Borg 的最佳创意带给大家。
+
+在我们所有人同意后，就开始着手构建这个系统了。我们采用了 Brendan 的原型（Java 语言），用 Go 语言重写了它，并且以上述核心思想去构建该系统。到这个时候，团队已经成长为包括 Ville Aikas，Tim Hockin，Brian Grant，Dawn Chen 和 Daniel Smith。一旦我们有了一些工作需求，有人必须承担一些脱敏的工作，以便为公开发布做好准备。这个角色最终由我承担。当时，我不知道这件事情的重要性，我创建了一个新的仓库，把代码搬过来，然后进行了检查。所以在我第一次提交 public commit 之前，就有工作已经启动了。
+
+那时 Kubernetes 的版本只是现在版本的简单雏形。核心概念已经有了，但非常原始。例如，Pods 被称为 Tasks，这在我们推广前一天就被替换。2014年6月10日 Eric Brewe 在第一届 DockerCon 上的演讲中正式发布了 Kubernetes。你可以在此处观看该视频：
+
+<center><iframe width="560" height="315" src="https://www.youtube.com/embed/YrxnVKZeqK8" frameborder="0" allow="autoplay; encrypted-media" allowfullscreen></iframe></center>  
+
+<!--
+But, however raw, that modest start was enough to pique the interest of a community that started strong and has only gotten stronger.  Over the past four years Kubernetes has exceeded the expectations of all of us that were there early on. We owe the Kubernetes community a huge debt.  The success the project has seen is based not just on code and technology but also the way that an amazing group of people have come together to create something special.  The best expression of this is the [set of Kubernetes values](https://git.k8s.io/community/values.md) that Sarah Novotny helped curate.
+
+Here is to another 4 years and beyond! 🎉🎉🎉
+-->
+
+但是，无论多么原始，这小小的一步足以激起一个开始强大而且变得更强大的社区的兴趣。在过去的四年里，Kubernetes 已经超出了我们所有人的期望。我们对 Kubernetes 社区的所有人员表示感谢。该项目所取得的成功不仅基于代码和技术，还基于一群出色的人聚集在一起所做的有意义的事情。Sarah Novotny 策划的一套 [Kubernetes 价值观](https://github.com/kubernetes/steering/blob/master/values.md)是以上最好的表现形式。
+
+让我们一起期待下一个 4 年！🎉🎉🎉
diff --git a/content/zh/blog/_posts/2018-06-07-dynamic-ingress-kubernetes.md b/content/zh-cn/blog/_posts/2018-06-07-dynamic-ingress-kubernetes.md
similarity index 98%
rename from content/zh/blog/_posts/2018-06-07-dynamic-ingress-kubernetes.md
rename to content/zh-cn/blog/_posts/2018-06-07-dynamic-ingress-kubernetes.md
index bb8d7d848c..02f8851c73 100644
--- a/content/zh/blog/_posts/2018-06-07-dynamic-ingress-kubernetes.md
+++ b/content/zh-cn/blog/_posts/2018-06-07-dynamic-ingress-kubernetes.md
@@ -1,16 +1,16 @@
 ---
-title: 'Kubernetes 内的动态 Ingress'
+title: 'Kubernetes 的动态 Ingress'
+date: 2018-06-07
 layout: blog
+Author: Richard Li (Datawire)
+slug: dynamic-ingress-in-kubernetes
 ---
-
 <!--
 title: Dynamic Ingress in Kubernetes
 date:  2018-06-07
 Author: Richard Li (Datawire)
 -->
 
-作者: Richard Li (Datawire)
-
 <!--
 Kubernetes makes it easy to deploy applications that consist of many microservices, but one of the key challenges with this type of architecture is dynamically routing ingress traffic to each of these services.  One approach is Ambassador, a Kubernetes-native open source API Gateway built on the Envoy Proxy. Ambassador is designed for dynamic environment where services may come and go frequently.
 Ambassador is configured using Kubernetes annotations. Annotations are used to configure specific mappings from a given Kubernetes service to a particular URL. A mapping can include a number of annotations for configuring a route. Examples include rate limiting, protocol, cross-origin request sharing, traffic shadowing, and routing rules.
diff --git a/content/zh-cn/blog/_posts/2018-06-28-Airflow-Kubernetes-Operator.md b/content/zh-cn/blog/_posts/2018-06-28-Airflow-Kubernetes-Operator.md
new file mode 100644
index 0000000000..22e67d30e7
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2018-06-28-Airflow-Kubernetes-Operator.md
@@ -0,0 +1,380 @@
+---
+layout: blog
+date:   2018-06-28
+title: 'Airflow 在 Kubernetes 中的使用（第一部分）：一种不同的操作器'
+slug: airflow-on-kubernetes-part-1-a-different-kind-of-operator
+---
+<!-- 
+layout: blog
+title:  'Airflow on Kubernetes (Part 1): A Different Kind of Operator'
+date:   2018-06-28
+-->
+
+<!--
+Author: Daniel Imberman (Bloomberg LP)
+-->
+作者: Daniel Imberman (Bloomberg LP)
+
+<!--
+## Introduction
+
+As part of Bloomberg's [continued commitment to developing the Kubernetes ecosystem](https://www.techatbloomberg.com/blog/bloomberg-awarded-first-cncf-end-user-award-contributions-kubernetes/), we are excited to announce the Kubernetes Airflow Operator; a mechanism for [Apache Airflow](https://airflow.apache.org/), a popular workflow orchestration framework to natively launch arbitrary Kubernetes Pods using the Kubernetes API.
+-->
+## 介绍
+
+作为 Bloomberg [持续致力于开发 Kubernetes 生态系统](https://www.techatbloomberg.com/blog/bloomberg-awarded-first-cncf-end-user-award-contributions-kubernetes/)的一部分，
+我们很高兴能够宣布 Kubernetes Airflow Operator 的发布;
+[Apache Airflow](https://airflow.apache.org/)的一种机制，一种流行的工作流程编排框架，
+使用 Kubernetes API 可以在本机启动任意的 Kubernetes Pod。
+
+<!--
+## What Is Airflow?
+
+Apache Airflow is one realization of the DevOps philosophy of "Configuration As Code." Airflow allows users to launch multi-step pipelines using a simple Python object DAG (Directed Acyclic Graph). You can define dependencies, programmatically construct complex workflows, and monitor scheduled jobs in an easy to read UI.
+-->
+## 什么是 Airflow?
+
+Apache Airflow 是“配置即代码”的 DevOps 理念的一种实现。
+Airflow 允许用户使用简单的 Python 对象 DAG（有向无环图）启动多步骤流水线。
+你可以在易于阅读的 UI 中定义依赖关系，以编程方式构建复杂的工作流，并监视调度的作业。
+
+<img src="/images/blog/2018-05-25-Airflow-Kubernetes-Operator/2018-05-25-airflow_dags.png" width="85%" alt="Airflow DAGs" />
+<img src="/images/blog/2018-05-25-Airflow-Kubernetes-Operator/2018-05-25-airflow.png" width="85%" alt="Airflow UI" />
+
+<!--
+## Why Airflow on Kubernetes?
+
+Since its inception, Airflow's greatest strength has been its flexibility. Airflow offers a wide range of integrations for services ranging from Spark and HBase, to services on various cloud providers. Airflow also offers easy extensibility through its plug-in framework. However, one limitation of the project is that Airflow users are confined to the frameworks and clients that exist on the Airflow worker at the moment of execution. A single organization can have varied Airflow workflows ranging from data science pipelines to application deployments. This difference in use-case creates issues in dependency management as both teams might use vastly different libraries for their workflows.
+
+To address this issue, we've utilized Kubernetes to allow users to launch arbitrary Kubernetes pods and configurations. Airflow users can now have full power over their run-time environments, resources, and secrets, basically turning Airflow into an "any job you want" workflow orchestrator.
+-->
+## 为什么在 Kubernetes 上使用 Airflow？
+
+自成立以来，Airflow 的最大优势在于其灵活性。
+Airflow 提供广泛的服务集成，包括Spark和HBase，以及各种云提供商的服务。
+Airflow 还通过其插件框架提供轻松的可扩展性。
+但是，该项目的一个限制是 Airflow 用户仅限于执行时 Airflow 站点上存在的框架和客户端。
+单个组织可以拥有各种 Airflow 工作流程，范围从数据科学流到应用程序部署。
+用例中的这种差异会在依赖关系管理中产生问题，因为两个团队可能会在其工作流程使用截然不同的库。
+
+为了解决这个问题，我们使 Kubernetes 允许用户启动任意 Kubernetes Pod 和配置。
+Airflow 用户现在可以在其运行时环境，资源和机密上拥有全部权限，基本上将 Airflow 转变为“你想要的任何工作”工作流程协调器。
+
+<!--
+## The Kubernetes Operator
+
+Before we move any further, we should clarify that an Operator in Airflow is a task definition. When a user creates a DAG, they would use an operator like the "SparkSubmitOperator" or the "PythonOperator" to submit/monitor a Spark job or a Python function respectively. Airflow comes with built-in operators for frameworks like Apache Spark, BigQuery, Hive, and EMR. It also offers a Plugins entrypoint that allows DevOps engineers to develop their own connectors.
+
+Airflow users are always looking for ways to make deployments and ETL pipelines simpler to manage. Any opportunity to decouple pipeline steps, while increasing monitoring, can reduce future outages and fire-fights. The following is a list of benefits provided by the Airflow Kubernetes Operator:
+-->
+## Kubernetes Operator
+
+在进一步讨论之前，我们应该澄清 Airflow 中的 [Operator](https://airflow.apache.org/concepts.html#operators) 是一个任务定义。
+当用户创建 DAG 时，他们将使用像 “SparkSubmitOperator” 或 “PythonOperator” 这样的 Operator 分别提交/监视 Spark 作业或 Python 函数。
+Airflow 附带了 Apache Spark，BigQuery，Hive 和 EMR 等框架的内置运算符。
+它还提供了一个插件入口点，允许DevOps工程师开发自己的连接器。
+
+Airflow 用户一直在寻找更易于管理部署和 ETL 流的方法。
+在增加监控的同时，任何解耦流程的机会都可以减少未来的停机等问题。
+以下是 Airflow Kubernetes Operator 提供的好处：
+
+<!--
+ * **Increased flexibility for deployments:**  
+Airflow's plugin API has always offered a significant boon to engineers wishing to test new functionalities within their DAGs. On the downside, whenever a developer wanted to create a new operator, they had to develop an entirely new plugin. Now, any task that can be run within a Docker container is accessible through the exact same operator, with no extra Airflow code to maintain.
+-->
+ * **提高部署灵活性：**
+Airflow 的插件 API一直为希望在其 DAG 中测试新功能的工程师提供了重要的福利。
+不利的一面是，每当开发人员想要创建一个新的 Operator 时，他们就必须开发一个全新的插件。
+现在，任何可以在 Docker 容器中运行的任务都可以通过完全相同的运算符访问，而无需维护额外的 Airflow 代码。
+
+<!--
+ * **Flexibility of configurations and dependencies:**
+For operators that are run within static Airflow workers, dependency management can become quite difficult. If a developer wants to run one task that requires [SciPy](https://www.scipy.org) and another that requires [NumPy](http://www.numpy.org), the developer would have to either maintain both dependencies within all Airflow workers or offload the task to an external machine (which can cause bugs if that external machine changes in an untracked manner). Custom Docker images allow users to ensure that the tasks environment, configuration, and dependencies are completely idempotent.  
+-->
+ * **配置和依赖的灵活性：**
+
+对于在静态 Airflow 工作程序中运行的 Operator，依赖关系管理可能变得非常困难。
+如果开发人员想要运行一个需要 [SciPy](https://www.scipy.org) 的任务和另一个需要 [NumPy](http://www.numpy.org) 的任务，
+开发人员必须维护所有 Airflow 节点中的依赖关系或将任务卸载到其他计算机（如果外部计算机以未跟踪的方式更改，则可能导致错误）。
+自定义 Docker 镜像允许用户确保任务环境，配置和依赖关系完全是幂等的。
+
+<!--
+ * **Usage of kubernetes secrets for added security:**
+Handling sensitive data is a core responsibility of any DevOps engineer. At every opportunity, Airflow users want to isolate any API keys, database passwords, and login credentials on a strict need-to-know basis. With the Kubernetes operator, users can utilize the Kubernetes Vault technology to store all sensitive data. This means that the Airflow workers will never have access to this information, and can simply request that pods be built with only the secrets they need.
+-->
+ * **使用kubernetes Secret以增加安全性：**
+处理敏感数据是任何开发工程师的核心职责。Airflow 用户总有机会在严格条款的基础上隔离任何API密钥，数据库密码和登录凭据。
+使用 Kubernetes 运算符，用户可以利用 Kubernetes Vault 技术存储所有敏感数据。
+这意味着 Airflow 工作人员将永远无法访问此信息，并且可以容易地请求仅使用他们需要的密码信息构建 Pod。
+
+<!--
+# Architecture
+
+The Kubernetes Operator uses the [Kubernetes Python Client](https://github.com/kubernetes-client/Python) to generate a request that is processed by the APIServer (1). Kubernetes will then launch your pod with whatever specs you've defined (2). Images will be loaded with all the necessary environment variables, secrets and dependencies, enacting a single command. Once the job is launched, the operator only needs to monitor the health of track logs (3). Users will have the choice of gathering logs locally to the scheduler or to any distributed logging service currently in their Kubernetes cluster.
+-->
+# 架构
+
+<img src="/images/blog/2018-05-25-Airflow-Kubernetes-Operator/2018-05-25-airflow-architecture.png" width="85%" alt="Airflow Architecture" />
+
+Kubernetes Operator 使用 [Kubernetes Python客户端](https://github.com/kubernetes-client/Python)生成由 APIServer 处理的请求（1）。
+然后，Kubernetes将使用你定义的需求启动你的 Pod（2）。
+镜像文件中将加载环境变量，Secret 和依赖项，执行单个命令。
+一旦启动作业，Operator 只需要监视跟踪日志的状况（3）。
+用户可以选择将日志本地收集到调度程序或当前位于其 Kubernetes 集群中的任何分布式日志记录服务。
+
+<!--
+# Using the Kubernetes Operator
+
+## A Basic Example
+
+The following DAG is probably the simplest example we could write to show how the Kubernetes Operator works. This DAG creates two pods on Kubernetes: a Linux distro with Python and a base Ubuntu distro without it. The Python pod will run the Python request correctly, while the one without Python will report a failure to the user. If the Operator is working correctly, the `passing-task` pod should complete, while the `failing-task` pod returns a failure to the Airflow webserver.
+-->
+# 使用 Kubernetes Operator
+## 一个基本的例子
+
+以下 DAG 可能是我们可以编写的最简单的示例，以显示 Kubernetes Operator 的工作原理。
+这个 DAG 在 Kubernetes 上创建了两个 Pod：一个带有 Python 的 Linux 发行版和一个没有它的基本 Ubuntu 发行版。
+Python Pod 将正确运行 Python 请求，而没有 Python 的那个将向用户报告失败。
+如果 Operator 正常工作，则应该完成 “passing-task” Pod，而“ falling-task” Pod 则向 Airflow 网络服务器返回失败。
+
+```Python
+from airflow import DAG
+from datetime import datetime, timedelta
+from airflow.contrib.operators.kubernetes_pod_operator import KubernetesPodOperator
+from airflow.operators.dummy_operator import DummyOperator
+
+
+default_args = {
+    'owner': 'airflow',
+    'depends_on_past': False,
+    'start_date': datetime.utcnow(),
+    'email': ['airflow@example.com'],
+    'email_on_failure': False,
+    'email_on_retry': False,
+    'retries': 1,
+    'retry_delay': timedelta(minutes=5)
+}
+
+dag = DAG(
+    'kubernetes_sample', default_args=default_args, schedule_interval=timedelta(minutes=10))
+
+
+start = DummyOperator(task_id='run_this_first', dag=dag)
+
+passing = KubernetesPodOperator(namespace='default',
+                          image="Python:3.6",
+                          cmds=["Python","-c"],
+                          arguments=["print('hello world')"],
+                          labels={"foo": "bar"},
+                          name="passing-test",
+                          task_id="passing-task",
+                          get_logs=True,
+                          dag=dag
+                          )
+
+failing = KubernetesPodOperator(namespace='default',
+                          image="ubuntu:1604",
+                          cmds=["Python","-c"],
+                          arguments=["print('hello world')"],
+                          labels={"foo": "bar"},
+                          name="fail",
+                          task_id="failing-task",
+                          get_logs=True,
+                          dag=dag
+                          )
+
+passing.set_upstream(start)
+failing.set_upstream(start)
+```
+<img src="/images/blog/2018-05-25-Airflow-Kubernetes-Operator/2018-05-25-basic-dag-run.png" width="85%" alt="Basic DAG Run" />
+
+<!--
+## But how does this relate to my workflow?
+
+While this example only uses basic images, the magic of Docker is that this same DAG will work for any image/command pairing you want. The following is a recommended CI/CD pipeline to run production-ready code on an Airflow DAG.
+
+### 1: PR in github
+
+Use Travis or Jenkins to run unit and integration tests, bribe your favorite team-mate into PR'ing your code, and merge to the master branch to trigger an automated CI build.
+
+### 2: CI/CD via Jenkins -> Docker Image
+
+[Generate your Docker images and bump release version within your Jenkins build](https://getintodevops.com/blog/building-your-first-docker-image-with-jenkins-2-guide-for-developers).
+
+### 3: Airflow launches task
+
+Finally, update your DAGs to reflect the new release version and you should be ready to go!
+-->
+## 但这与我的工作流程有什么关系？
+
+虽然这个例子只使用基本映像，但 Docker 的神奇之处在于，这个相同的 DAG 可以用于你想要的任何图像/命令配对。
+以下是推荐的 CI/CD 管道，用于在 Airflow DAG 上运行生产就绪代码。
+
+### 1：github 中的 PR
+
+使用Travis或Jenkins运行单元和集成测试，请你的朋友PR你的代码，并合并到主分支以触发自动CI构建。
+
+### 2：CI/CD 构建 Jenkins - > Docker 镜像
+
+[在 Jenkins 构建中生成 Docker 镜像和更新版本](https://getintodevops.com/blog/building-your-first-Docker-image-with-jenkins-2-guide-for-developers)。
+
+### 3：Airflow 启动任务
+
+最后，更新你的 DAG 以反映新版本，你应该准备好了！
+
+```Python
+production_task = KubernetesPodOperator(namespace='default',
+                          # image="my-production-job:release-1.0.1", <-- old release
+                          image="my-production-job:release-1.0.2",
+                          cmds=["Python","-c"],
+                          arguments=["print('hello world')"],
+                          name="fail",
+                          task_id="failing-task",
+                          get_logs=True,
+                          dag=dag
+                          )
+```
+
+<!--
+# Launching a test deployment
+
+Since the Kubernetes Operator is not yet released, we haven't released an official [helm](https://helm.sh/) chart or operator (however both are currently in progress). However, we are including instructions for a basic deployment below and are actively looking for foolhardy beta testers to try this new feature. To try this system out please follow these steps:
+
+## Step 1: Set your kubeconfig to point to a kubernetes cluster
+
+## Step 2: Clone the Airflow Repo:
+
+Run `git clone https://github.com/apache/incubator-airflow.git` to clone the official Airflow repo.
+
+## Step 3: Run
+
+To run this basic deployment, we are co-opting the integration testing script that we currently use for the Kubernetes Executor (which will be explained in the next article of this series). To launch this deployment, run these three commands:
+-->
+# 启动测试部署
+
+由于 Kubernetes Operator 尚未发布，我们尚未发布官方
+[helm](https://helm.sh/) 图表或 Operator（但两者目前都在进行中）。
+但是，我们在下面列出了基本部署的说明，并且正在积极寻找测试人员来尝试这一新功能。
+要试用此系统，请按以下步骤操作：
+
+## 步骤1：将 kubeconfig 设置为指向 kubernetes 集群
+
+## 步骤2：克隆 Airflow 仓库：
+
+运行 `git clone https://github.com/apache/incubator-airflow.git` 来克隆官方 Airflow 仓库。
+
+## 步骤3：运行
+
+为了运行这个基本 Deployment，我们正在选择我们目前用于 Kubernetes Executor 的集成测试脚本（将在本系列的下一篇文章中对此进行解释）。
+要启动此部署，请运行以下三个命令：
+
+```
+sed -ie "s/KubernetesExecutor/LocalExecutor/g" scripts/ci/kubernetes/kube/configmaps.yaml
+./scripts/ci/kubernetes/Docker/build.sh
+./scripts/ci/kubernetes/kube/deploy.sh
+```
+
+<!--
+Before we move on, let's discuss what these commands are doing:
+
+### sed -ie "s/KubernetesExecutor/LocalExecutor/g" scripts/ci/kubernetes/kube/configmaps.yaml
+
+The Kubernetes Executor is another Airflow feature that allows for dynamic allocation of tasks as idempotent pods. The reason we are switching this to the LocalExecutor is simply to introduce one feature at a time. You are more then welcome to skip this step if you would like to try the Kubernetes Executor, however we will go into more detail in a future article.
+
+### ./scripts/ci/kubernetes/Docker/build.sh
+
+This script will tar the Airflow master source code build a Docker container based on the Airflow distribution
+
+### ./scripts/ci/kubernetes/kube/deploy.sh
+
+Finally, we create a full Airflow deployment on your cluster. This includes Airflow configs, a postgres backend, the webserver + scheduler, and all necessary services between. One thing to note is that the role binding supplied is a cluster-admin, so if you do not have that level of permission on the cluster, you can modify this at scripts/ci/kubernetes/kube/airflow.yaml
+
+## Step 4: Log into your webserver
+
+Now that your Airflow instance is running let's take a look at the UI! The UI lives in port 8080 of the Airflow pod, so simply run
+-->
+在我们继续之前，让我们讨论这些命令正在做什么：
+
+### sed -ie "s/KubernetesExecutor/LocalExecutor/g" scripts/ci/kubernetes/kube/configmaps.yaml
+
+Kubernetes Executor 是另一种 Airflow 功能，允许动态分配任务已解决幂等 Pod 的问题。
+我们将其切换到 LocalExecutor 的原因只是一次引入一个功能。
+如果你想尝试 Kubernetes Executor，欢迎你跳过此步骤，但我们将在以后的文章中详细介绍。
+
+### ./scripts/ci/kubernetes/Docker/build.sh
+
+此脚本将对Airflow主分支代码进行打包，以根据Airflow的发行文件构建Docker容器
+
+### ./scripts/ci/kubernetes/kube/deploy.sh
+
+最后，我们在你的集群上创建完整的Airflow部署。这包括 Airflow 配置，postgres 后端，web 服务器和调度程序以及之间的所有必要服务。
+需要注意的一点是，提供的角色绑定是集群管理员，因此如果你没有该集群的权限级别，可以在 scripts/ci/kubernetes/kube/airflow.yaml 中进行修改。
+
+## 步骤4：登录你的网络服务器
+
+现在你的 Airflow 实例正在运行，让我们来看看 UI！
+用户界面位于 Airflow Pod的 8080 端口，因此只需运行即可：
+
+```
+WEB=$(kubectl get pods -o go-template --template '{{range .items}}{{.metadata.name}}{{"\n"}}{{end}}' | grep "airflow" | head -1)
+kubectl port-forward $WEB 8080:8080
+```
+
+<!--
+ Now the Airflow UI will exist on http://localhost:8080. To log in simply enter `airflow`/`airflow` and you should have full access to the Airflow web UI.
+
+## Step 5: Upload a test document
+
+To modify/add your own DAGs, you can use `kubectl cp` to upload local files into the DAG folder of the Airflow scheduler. Airflow will then read the new DAG and automatically upload it to its system. The following command will upload any local file into the correct directory:
+-->
+现在，Airflow UI 将存在于 http://localhost:8080上。
+要登录，只需输入`airflow`/`airflow`，你就可以完全访问 Airflow Web UI。
+
+## 步骤5：上传测试文档
+
+要修改/添加自己的 DAG，可以使用 `kubectl cp` 将本地文件上传到 Airflow 调度程序的 DAG 文件夹中。
+然后，Airflow 将读取新的 DAG 并自动将其上传到其系统。以下命令将任何本地文件上载到正确的目录中：
+
+`kubectl cp <local file> <namespace>/<pod>:/root/airflow/dags -c scheduler`
+
+<!--
+## Step 6: Enjoy!
+
+# So when will I be able to use this?
+
+ While this feature is still in the early stages, we hope to see it released for wide release in the next few months.
+
+# Get Involved
+
+This feature is just the beginning of multiple major efforts to improves Apache Airflow integration into Kubernetes. The Kubernetes Operator has been merged into the [1.10 release branch of Airflow](https://github.com/apache/incubator-airflow/tree/v1-10-test) (the executor in experimental mode), along with a fully k8s native scheduler called the Kubernetes Executor (article to come). These features are still in a stage where early adopters/contributers can have a huge influence on the future of these features.
+
+For those interested in joining these efforts, I'd recommend checkint out these steps:
+
+ * Join the airflow-dev mailing list at dev@airflow.apache.org.
+ * File an issue in [Apache Airflow JIRA](https://issues.apache.org/jira/projects/AIRFLOW/issues/)
+ * Join our SIG-BigData meetings on Wednesdays at 10am PST.
+ * Reach us on slack at #sig-big-data on kubernetes.slack.com
+
+Special thanks to the Apache Airflow and Kubernetes communities, particularly Grant Nicholas, Ben Goldberg, Anirudh Ramanathan, Fokko Dreisprong, and Bolke de Bruin, for your awesome help on these features as well as our future efforts.
+-->
+## 步骤6：使用它！
+# 那么我什么时候可以使用它？
+
+虽然此功能仍处于早期阶段，但我们希望在未来几个月内发布该功能以进行广泛发布。
+
+# 参与其中
+
+此功能只是将 Apache Airflow 集成到 Kubernetes 中的多项主要工作的开始。
+Kubernetes Operator 已合并到 [Airflow 的 1.10 发布分支](https://github.com/apache/incubator-airflow/tree/v1-10-test)（实验模式中的执行模块），
+以及完整的 k8s 本地调度程序称为 Kubernetes Executor（即将发布文章）。
+这些功能仍处于早期采用者/贡献者可能对这些功能的未来产生巨大影响的阶段。
+
+对于有兴趣加入这些工作的人，我建议按照以下步骤：
+
+ * 加入 airflow-dev 邮件列表 dev@airflow.apache.org。
+ * 在 [Apache Airflow JIRA](https://issues.apache.org/jira/projects/AIRFLOW/issues/)中提出问题
+ * 周三上午 10点 太平洋标准时间加入我们的 SIG-BigData 会议。
+ * 在 kubernetes.slack.com 上的 #sig-big-data 找到我们。
+
+特别感谢 Apache Airflow 和 Kubernetes 社区，特别是 Grant Nicholas，Ben Goldberg，Anirudh Ramanathan，Fokko Dreisprong 和 Bolke de Bruin，
+感谢你对这些功能的巨大帮助以及我们未来的努力。
diff --git a/content/zh/blog/_posts/2018-07-09-IPVS-In-Cluster-Load-Balancing.md b/content/zh-cn/blog/_posts/2018-07-09-IPVS-In-Cluster-Load-Balancing.md
similarity index 99%
rename from content/zh/blog/_posts/2018-07-09-IPVS-In-Cluster-Load-Balancing.md
rename to content/zh-cn/blog/_posts/2018-07-09-IPVS-In-Cluster-Load-Balancing.md
index 1d6ed8025e..7484f6a372 100644
--- a/content/zh/blog/_posts/2018-07-09-IPVS-In-Cluster-Load-Balancing.md
+++ b/content/zh-cn/blog/_posts/2018-07-09-IPVS-In-Cluster-Load-Balancing.md
@@ -1,11 +1,14 @@
 ---
-title: 基于IPVS的集群内部负载均衡
-cn-approvers:
-- congfairy
+layout: blog
+title: '基于 IPVS 的集群内部负载均衡'
+date:   2018-07-09
+slug: ipvs-based-in-cluster-load-balancing-deep-dive
+---
+<!-- 
 layout: blog
 title:  'IPVS-Based In-Cluster Load Balancing Deep Dive'
 date:   2018-07-09
----
+-->
 
 <!--
 
diff --git a/content/zh/blog/_posts/2018-07-10-coredns-ga.md b/content/zh-cn/blog/_posts/2018-07-10-coredns-ga.md
similarity index 99%
rename from content/zh/blog/_posts/2018-07-10-coredns-ga.md
rename to content/zh-cn/blog/_posts/2018-07-10-coredns-ga.md
index 1fc8aa5249..6523284507 100644
--- a/content/zh/blog/_posts/2018-07-10-coredns-ga.md
+++ b/content/zh-cn/blog/_posts/2018-07-10-coredns-ga.md
@@ -2,13 +2,12 @@
 layout: blog
 title: "用于 Kubernetes 集群 DNS 的 CoreDNS GA 正式发布"
 date: 2018-07-10
+slug: coredns-ga-for-kubernetes-cluster-dns
 ---
 <!--
----
 layout: blog
 title: "CoreDNS GA for Kubernetes Cluster DNS"
 date: 2018-07-10
----
 --->
 
 <!--
@@ -88,7 +87,7 @@ customized Corefile for you, including all of the configuration for stub domains
 在 CoreDNS 中，您可以类似地修改 CoreDNS [Corefile](https://coredns.io/2017/07/23/corefile-explained/) 的 ConfigMap，以更改服务发现的工作方式。这种 Corefile 配置提供了比 kube-dns 中更多的选项，因为它是 CoreDNS 用于配置所有功能的主要配置文件，即使与 Kubernetes 不相关的功能也可以操作。
 
 使用 `kubeadm` 将 kube-dns 升级到 CoreDNS 时，现有的 ConfigMap 将被用来为您生成自定义的 Corefile，包括存根域、联盟和上游名称服务器的所有配置。更多详细信息，请参见
-[使用 CoreDNS 进行服务发现](/zh/docs/tasks/administer-cluster/coredns/)。
+[使用 CoreDNS 进行服务发现](/zh-cn/docs/tasks/administer-cluster/coredns/)。
 
 <!--
 ## Bug fixes and enhancements
@@ -143,7 +142,7 @@ can do beyond that specification.
 --->
 ## 一些特殊功能
 
-标准的 CoreDNS Kubernetes 配置旨在与以前的 kube-dns 在行为上向后兼容。但是，通过进行一些配置更改，CoreDNS 允许您修改 DNS 服务发现在群集中的工作方式。这些功能中的许多功能仍要符合 [Kubernetes DNS规范](https://github.com/kubernetes/dns/blob/master/docs/specification.md)；它们在增强了功能的同时保持向后兼容。由于 CoreDNS 并非 *仅* 用于 Kubernetes，而是通用的 DNS 服务器，因此您可以做很多超出该规范的事情。
+标准的 CoreDNS Kubernetes 配置旨在与以前的 kube-dns 在行为上向后兼容。但是，通过进行一些配置更改，CoreDNS 允许您修改 DNS 服务发现在集群中的工作方式。这些功能中的许多功能仍要符合 [Kubernetes DNS规范](https://github.com/kubernetes/dns/blob/master/docs/specification.md)；它们在增强了功能的同时保持向后兼容。由于 CoreDNS 并非 *仅* 用于 Kubernetes，而是通用的 DNS 服务器，因此您可以做很多超出该规范的事情。
 
 <!--
 ### Pods verified mode
diff --git a/content/zh/blog/_posts/2018-07-11-dynamic-kubelet-configuration.md b/content/zh-cn/blog/_posts/2018-07-11-dynamic-kubelet-configuration.md
similarity index 95%
rename from content/zh/blog/_posts/2018-07-11-dynamic-kubelet-configuration.md
rename to content/zh-cn/blog/_posts/2018-07-11-dynamic-kubelet-configuration.md
index f8dbcbfb45..b36f28351e 100644
--- a/content/zh/blog/_posts/2018-07-11-dynamic-kubelet-configuration.md
+++ b/content/zh-cn/blog/_posts/2018-07-11-dynamic-kubelet-configuration.md
@@ -2,13 +2,12 @@
 layout: blog
 title: '动态 Kubelet 配置'
 date: 2018-07-11
+slug: dynamic-kubelet-configuration
 ---
 <!--
----
 layout: blog
 title: 'Dynamic Kubelet Configuration'
 date: 2018-07-11
----
 -->
 
 <!--
@@ -16,6 +15,11 @@ date: 2018-07-11
 -->
 **作者**: Michael Taufen (Google)
 
+<!--
+**Editor’s note: The feature has been removed in the version 1.24 after deprecation in 1.22.**
+-->
+**编者注：在 1.22 版本弃用后，该功能已在 1.24 版本中删除。**
+
 <!--
 **Editor’s note: this post is part of a [series of in-depth articles](https://kubernetes.io/blog/2018/06/27/kubernetes-1.11-release-announcement/) on what’s new in Kubernetes 1.11**
 -->
@@ -54,7 +58,7 @@ Dynamic Kubelet configuration gives cluster administrators and service providers
 <!--
 Kubernetes v1.10 made it possible to configure the Kubelet via a beta [config file](/docs/tasks/administer-cluster/kubelet-config-file/) API. Kubernetes already provides the ConfigMap abstraction for storing arbitrary file data in the API server.
 -->
-Kubernetes v1.10 使得可以通过 Beta 版本的[配置文件](/zh/docs/tasks/administer-cluster/kubelet-config-file/)
+Kubernetes v1.10 使得可以通过 Beta 版本的[配置文件](/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/)
 API 配置 kubelet。
 Kubernetes 已经提供了用于在 API 服务器中存储任意文件数据的 ConfigMap 抽象。
 
@@ -88,7 +92,7 @@ Dynamic Kubelet configuration provides the following core features:
 <!--
 To use the dynamic Kubelet configuration feature, a cluster administrator or service provider will first post a ConfigMap containing the desired configuration, then set each Node.Spec.ConfigSource.ConfigMap reference to refer to the new ConfigMap. Operators can update these references at their preferred rate, giving them the ability to perform controlled rollouts of new configurations.
 -->
-要使用动态 Kubelet 配置功能，群集管理员或服务提供商将首先发布包含所需配置的 ConfigMap，
+要使用动态 Kubelet 配置功能，集群管理员或服务提供商将首先发布包含所需配置的 ConfigMap，
 然后设置每个 Node.Spec.ConfigSource.ConfigMap 引用以指向新的 ConfigMap。
 运营商可以以他们喜欢的速率更新这些参考，从而使他们能够执行新配置的受控部署。
 
diff --git a/content/zh/blog/_posts/2018-08-02-dynamically-expand-volume-csi.md b/content/zh-cn/blog/_posts/2018-08-02-dynamically-expand-volume-csi.md
similarity index 98%
rename from content/zh/blog/_posts/2018-08-02-dynamically-expand-volume-csi.md
rename to content/zh-cn/blog/_posts/2018-08-02-dynamically-expand-volume-csi.md
index 755239e9eb..51217af127 100644
--- a/content/zh/blog/_posts/2018-08-02-dynamically-expand-volume-csi.md
+++ b/content/zh-cn/blog/_posts/2018-08-02-dynamically-expand-volume-csi.md
@@ -2,14 +2,12 @@
 layout: blog
 title:  '使用 CSI 和 Kubernetes 实现卷的动态扩容'
 date:   2018-08-02
+slug: dynamically-expand-volume-with-csi-and-kubernetes
 ---
-
 <!--
----
 layout: blog
 title:  'Dynamically Expand Volume with CSI and Kubernetes'
 date:   2018-08-02
----
 -->
 
 <!--
@@ -126,7 +124,7 @@ This diagram depicts a kind of high-level Kubernetes archetypes integrated with
 For more details, please visit: https://github.com/container-storage-interface/spec/blob/master/spec.md
 -->
 
-更多详细信息，请访问：https://github.com/container-storage-interface/spec/blob/master/spec.md
+更多详细信息，请访问： https://github.com/container-storage-interface/spec/blob/master/spec.md
 
 <!--
 ## Extend CSI and Kubernetes
diff --git a/content/zh/blog/_posts/2018-08-29-kubernetes-testing-ci-automating-contributor-experience.md b/content/zh-cn/blog/_posts/2018-08-29-kubernetes-testing-ci-automating-contributor-experience.md
similarity index 99%
rename from content/zh/blog/_posts/2018-08-29-kubernetes-testing-ci-automating-contributor-experience.md
rename to content/zh-cn/blog/_posts/2018-08-29-kubernetes-testing-ci-automating-contributor-experience.md
index 492c6917eb..e7384b78b2 100644
--- a/content/zh/blog/_posts/2018-08-29-kubernetes-testing-ci-automating-contributor-experience.md
+++ b/content/zh-cn/blog/_posts/2018-08-29-kubernetes-testing-ci-automating-contributor-experience.md
@@ -1,16 +1,15 @@
-<!--
----
-layout: blog
-title:  'The Machines Can Do the Work, a Story of Kubernetes Testing, CI, and Automating the Contributor Experience'
-date:   2018-08-29
----
--->
-
 ---
 layout: blog
 title: '机器可以完成这项工作，一个关于 kubernetes 测试、CI 和自动化贡献者体验的故事'
 date: 2019-08-29
+slug: the-machines-can-do-the-work-a-story-of-kubernetes-testing-ci-and-automating-the-contributor-experience
 ---
+<!--
+layout: blog
+title:  'The Machines Can Do the Work, a Story of Kubernetes Testing, CI, and Automating the Contributor Experience'
+date:   2018-08-29
+-->
+
 
 <!--
 **Author**: Aaron Crickenberger (Google) and Benjamin Elder (Google)
diff --git a/content/zh/blog/_posts/2018-10-01-health-checking-grpc.md b/content/zh-cn/blog/_posts/2018-10-01-health-checking-grpc.md
similarity index 92%
rename from content/zh/blog/_posts/2018-10-01-health-checking-grpc.md
rename to content/zh-cn/blog/_posts/2018-10-01-health-checking-grpc.md
index f80633cf8a..0b98ea5baf 100644
--- a/content/zh/blog/_posts/2018-10-01-health-checking-grpc.md
+++ b/content/zh-cn/blog/_posts/2018-10-01-health-checking-grpc.md
@@ -2,13 +2,12 @@
 layout: blog
 title:  '在 Kubernetes 上对 gRPC 服务器进行健康检查'
 date: 2018-10-01
+slug: health-checking-grpc-servers-on-kubernetes
 ---
 <!--
----
 layout: blog
 title:  'Health checking gRPC servers on Kubernetes'
 date: 2018-10-01
----
 --->
 
 <!--
@@ -16,6 +15,15 @@ date: 2018-10-01
 --->
 **作者**： [Ahmet Alp Balkan](https://twitter.com/ahmetb) (Google)
 
+<!-- 
+**Update (December 2021):** _Kubernetes now has built-in gRPC health probes starting in v1.23.
+To learn more, see [Configure Liveness, Readiness and Startup Probes](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#define-a-grpc-liveness-probe).
+This article was originally written about an external tool to achieve the same task._
+-->
+**更新（2021 年 12 月）：** “Kubernetes 从 v1.23 开始具有内置 gRPC 健康探测。
+了解更多信息，请参阅[配置存活探针、就绪探针和启动探针](/zh-cn/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#define-a-grpc-liveness-probe)。
+本文最初是为有关实现相同任务的外部工具所写。”
+
 <!--
 [gRPC](https://grpc.io) is on its way to becoming the lingua franca for
 communication between cloud-native microservices. If you are deploying gRPC
diff --git a/content/zh/blog/_posts/2018-10-03-kubedirector.md b/content/zh-cn/blog/_posts/2018-10-03-kubedirector.md
similarity index 99%
rename from content/zh/blog/_posts/2018-10-03-kubedirector.md
rename to content/zh-cn/blog/_posts/2018-10-03-kubedirector.md
index e07f1bb35f..21448cd1a8 100644
--- a/content/zh/blog/_posts/2018-10-03-kubedirector.md
+++ b/content/zh-cn/blog/_posts/2018-10-03-kubedirector.md
@@ -2,8 +2,8 @@
 layout: blog
 title: 'KubeDirector：在 Kubernetes 上运行复杂状态应用程序的简单方法'
 date: 2018-10-03
+slug: kubedirector-the-easy-way-to-run-complex-stateful-applications-on-kubernetes
 ---
-
 <!--
 layout: blog
 title: 'KubeDirector: The easy way to run complex stateful applications on Kubernetes'
diff --git a/content/zh/blog/_posts/2018-10-10-runtimeclass.md b/content/zh-cn/blog/_posts/2018-10-10-runtimeclass.md
similarity index 80%
rename from content/zh/blog/_posts/2018-10-10-runtimeclass.md
rename to content/zh-cn/blog/_posts/2018-10-10-runtimeclass.md
index 35e8649442..20185edbb3 100644
--- a/content/zh/blog/_posts/2018-10-10-runtimeclass.md
+++ b/content/zh-cn/blog/_posts/2018-10-10-runtimeclass.md
@@ -2,13 +2,12 @@
 layout: blog
 title: 'Kubernetes v1.12: RuntimeClass 简介'
 date: 2018-10-10
+slug: kubernetes-v1.12-introducing-runtimeclass
 ---
 <!--
----
 layout: blog
 title: 'Kubernetes v1.12: Introducing RuntimeClass'
 date: 2018-10-10
----
 -->
 
 <!--
@@ -20,11 +19,11 @@ date: 2018-10-10
 Kubernetes originally launched with support for Docker containers running native applications on a Linux host. Starting with [rkt](https://kubernetes.io/blog/2016/07/rktnetes-brings-rkt-container-engine-to-kubernetes/) in Kubernetes 1.3 more runtimes were coming, which lead to the development of the [Container Runtime Interface](https://kubernetes.io/blog/2016/12/container-runtime-interface-cri-in-kubernetes/) (CRI). Since then, the set of alternative runtimes has only expanded: projects like [Kata Containers](https://katacontainers.io/) and [gVisor](https://github.com/google/gvisor) were announced for stronger workload isolation, and Kubernetes' Windows support has been [steadily progressing](https://kubernetes.io/blog/2018/01/kubernetes-v19-beta-windows-support/).
 -->
 Kubernetes 最初是为了支持在 Linux 主机上运行本机应用程序的 Docker 容器而创建的。
-从 Kubernetes 1.3中的 [rkt](https://kubernetes.io/blog/2016/07/rktnetes-brings-rkt-container-engine-to-kubernetes/) 开始，更多的运行时间开始涌现，
+从 Kubernetes 1.3 中的 [rkt](https://kubernetes.io/blog/2016/07/rktnetes-brings-rkt-container-engine-to-kubernetes/) 开始，更多的运行时间开始涌现，
 这导致了[容器运行时接口（Container Runtime Interface）](https://kubernetes.io/blog/2016/12/container-runtime-interface-cri-in-kubernetes/)（CRI）的开发。
 从那时起，备用运行时集合越来越大：
 为了加强工作负载隔离，[Kata Containers](https://katacontainers.io/) 和 [gVisor](https://github.com/google/gvisor) 等项目被发起，
-并且 Kubernetes 对 Windows 的支持正在 [稳步发展](https://kubernetes.io/blog/2018/01/kubernetes-v19-beta-windows-support/) 。
+并且 Kubernetes 对 Windows 的支持正在[稳步发展](https://kubernetes.io/blog/2018/01/kubernetes-v19-beta-windows-support/)。
 
 <!--
 With runtimes targeting so many different use cases, a clear need for mixed runtimes in a cluster arose. But all these different ways of running containers have brought a new set of problems to deal with:
@@ -57,7 +56,7 @@ With runtimes targeting so many different use cases, a clear need for mixed runt
 RuntimeClass was recently introduced as an alpha feature in Kubernetes 1.12. The initial implementation focuses on providing a runtime selection API, and paves the way to address the other open problems.
 -->
 最近，RuntimeClass 在 Kubernetes 1.12 中作为 alpha 功能引入。
-最初的实现侧重于提供运行时选择 API ，并为解决其他未解决的问题铺平道路。
+最初的实现侧重于提供运行时选择 API，并为解决其他未解决的问题铺平道路。
 
 <!--
 The RuntimeClass resource represents a container runtime supported in a Kubernetes cluster. The cluster provisioner sets up, configures, and defines the concrete runtimes backing the RuntimeClass. In its current form, a RuntimeClassSpec holds a single field, the **RuntimeHandler**. The RuntimeHandler is interpreted by the CRI implementation running on a node, and mapped to the actual runtime configuration. Meanwhile the PodSpec has been expanded with a new field, **RuntimeClassName**, which names the RuntimeClass that should be used to run the pod.
@@ -82,14 +81,14 @@ Kubernetes 资源模型期望 Pod 中的容器之间可以共享某些资源。
 ## 下一步是什么？
 
 <!--
-The RuntimeClass resource is an important foundation for surfacing runtime properties to the control plane. For example, to implement scheduler support for clusters with heterogeneous nodes supporting different runtimes, we might add [NodeAffinity](/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity) terms to the RuntimeClass definition. Another area to address is managing the variable resource requirements to run pods of different runtimes. The [Pod Overhead proposal](https://docs.google.com/document/d/1EJKT4gyl58-kzt2bnwkv08MIUZ6lkDpXcxkHqCvvAp4/preview) was an early take on this that aligns nicely with the RuntimeClass design, and may be pursued further.
+The RuntimeClass resource is an important foundation for surfacing runtime properties to the control plane. For example, to implement scheduler support for clusters with heterogeneous nodes supporting different runtimes, we might add [NodeAffinity](/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity) terms to the RuntimeClass definition. Another area to address is managing the variable resource requirements to run pods of different runtimes. The [Pod Overhead proposal](https://docs.google.com/document/d/1EJKT4gyl58-kzt2bnwkv08MIUZ6lkDpXcxkHqCvvAp4/preview) was an early take on this that aligns nicely with the RuntimeClass design, and may be pursued further.
 -->
 RuntimeClass 资源是将运行时属性显示到控制平面的重要基础。
-例如，要对具有支持不同运行时间的异构节点的群集实施调度程序支持，我们可以在 RuntimeClass 定义中添加
-[NodeAffinity](/zh/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity)条件。
+例如，要对具有支持不同运行时间的异构节点的集群实施调度程序支持，我们可以在 RuntimeClass 定义中添加
+[NodeAffinity](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity) 条件。
 另一个需要解决的领域是管理可变资源需求以运行不同运行时的 Pod。
-[Pod Overhead 提案](https://docs.google.com/document/d/1EJKT4gyl58-kzt2bnwkv08MIUZ6lkDpXcxkHqCvvAp4/preview)
-是一项较早的尝试，与 RuntimeClass 设计非常吻合，并且可能会进一步推广。
+[Pod Overhead 提案](https://docs.google.com/document/d/1EJKT4gyl58-kzt2bnwkv08MIUZ6lkDpXcxkHqCvvAp4/preview)是一项较早的尝试，与
+RuntimeClass 设计非常吻合，并且可能会进一步推广。
 
 <!--
 Many other RuntimeClass extensions have also been proposed, and will be revisited as the feature continues to develop and mature. A few more extensions that are being considered include:
@@ -107,14 +106,14 @@ Many other RuntimeClass extensions have also been proposed, and will be revisite
 - 提供运行时支持的可选功能，并更好地查看由不兼容功能导致的错误。
 - 自动运行时或功能发现，支持无需手动配置的调度决策。
 - 标准化或一致的 RuntimeClass 名称，用于定义一组具有相同名称的 RuntimeClass 的集群应支持的属性。
-- 动态注册附加的运行时，因此用户可以在不停机的情况下在现有群集上安装新的运行时。
-- 根据 Pod 的要求“匹配”  RuntimeClass。
+- 动态注册附加的运行时，因此用户可以在不停机的情况下在现有集群上安装新的运行时。
+- 根据 Pod 的要求“匹配” RuntimeClass。
   例如，指定运行时属性并使系统与适当的 RuntimeClass 匹配，而不是通过名称显式分配 RuntimeClass。
 
 <!--
 RuntimeClass will be under active development at least through 2019, and we’re excited to see the feature take shape, starting with the RuntimeClass alpha in Kubernetes 1.12.
 -->
-至少要到2019年，RuntimeClass 才会得到积极的开发，我们很高兴看到从 Kubernetes 1.12 中的 RuntimeClass alpha 开始，此功能得以形成。
+至少要到 2019 年，RuntimeClass 才会得到积极的开发，我们很高兴看到从 Kubernetes 1.12 中的 RuntimeClass alpha 开始，此功能得以形成。
 
 <!--
 ## Learn More
@@ -128,10 +127,9 @@ RuntimeClass will be under active development at least through 2019, and we’re
 - Join the discussions and help shape the future of RuntimeClass with the [SIG-Node community](https://github.com/kubernetes/community/tree/master/sig-node)
 -->
 
-- 试试吧！ 作为Alpha功能，还有一些其他设置步骤可以使用RuntimeClass。
-  有关如何使其运行，请参考 [RuntimeClass文档](/zh/docs/concepts/containers/runtime-class/#runtime-class) 。
-- 查看 [RuntimeClass Kubernetes 增强建议](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/runtime-class.md) 以获取更多细节设计细节。
-- [沙盒隔离级别决策](https://docs.google.com/document/d/1fe7lQUjYKR0cijRmSbH_y0_l3CYPkwtQa5ViywuNo8Q/preview) 
-  记录了最初使 RuntimeClass 成为 Pod 级别选项的思考过程。
-- 加入讨论，并通过 [SIG-Node社区](https://github.com/kubernetes/community/tree/master/sig-node) 帮助塑造 RuntimeClass 的未来。
-
+- 试试吧！作为 Alpha 功能，还有一些其他设置步骤可以使用 RuntimeClass。
+  有关如何使其运行，请参考 [RuntimeClass 文档](/zh-cn/docs/concepts/containers/runtime-class/#runtime-class)。
+- 查看 [RuntimeClass Kubernetes 增强建议](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/runtime-class.md)以获取更多细节设计细节。
+- [沙盒隔离级别决策](https://docs.google.com/document/d/1fe7lQUjYKR0cijRmSbH_y0_l3CYPkwtQa5ViywuNo8Q/preview)记录了最初使
+  RuntimeClass 成为 Pod 级别选项的思考过程。
+- 加入讨论，并通过 [SIG-Node 社区](https://github.com/kubernetes/community/tree/master/sig-node)帮助塑造 RuntimeClass 的未来。
diff --git a/content/zh/blog/_posts/2018-10-11-topology-aware-volume-provisioning.md b/content/zh-cn/blog/_posts/2018-10-11-topology-aware-volume-provisioning.md
similarity index 82%
rename from content/zh/blog/_posts/2018-10-11-topology-aware-volume-provisioning.md
rename to content/zh-cn/blog/_posts/2018-10-11-topology-aware-volume-provisioning.md
index 3aefd018ab..940996da20 100644
--- a/content/zh/blog/_posts/2018-10-11-topology-aware-volume-provisioning.md
+++ b/content/zh-cn/blog/_posts/2018-10-11-topology-aware-volume-provisioning.md
@@ -2,13 +2,12 @@
 layout: blog
 title: 'Kubernetes 中的拓扑感知数据卷供应'
 date: 2018-10-11
+slug: topology-aware-volume-provisioning-in-kubernetes
 ---
 <!--
----
 layout: blog
 title: 'Topology-Aware Volume Provisioning in Kubernetes'
 date: 2018-10-11
----
 -->
 
 <!--
@@ -19,7 +18,10 @@ date: 2018-10-11
 <!--
 The multi-zone cluster experience with persistent volumes is improving in Kubernetes 1.12 with the topology-aware dynamic provisioning beta feature. This feature allows Kubernetes to make intelligent decisions when dynamically provisioning volumes by getting scheduler input on the best place to provision a volume for a pod.  In multi-zone clusters, this means that volumes will get provisioned in an appropriate zone that can run your pod, allowing you to easily deploy and scale your stateful workloads across failure domains to provide high availability and fault tolerance.
 -->
-通过提供拓扑感知动态卷供应功能，具有持久卷的多区域集群体验在 Kubernetes 1.12 中得到了改进。此功能使得 Kubernetes 在动态供应卷时能做出明智的决策，方法是从调度器获得为 Pod 提供数据卷的最佳位置。在多区域集群环境，这意味着数据卷能够在满足你的 Pod 运行需要的合适的区域被供应，从而允许您跨故障域轻松部署和扩展有状态工作负载，从而提供高可用性和容错能力。
+通过提供拓扑感知动态卷供应功能，具有持久卷的多区域集群体验在 Kubernetes 1.12
+中得到了改进。此功能使得 Kubernetes 在动态供应卷时能做出明智的决策，方法是从调度器获得为
+Pod 提供数据卷的最佳位置。在多区域集群环境，这意味着数据卷能够在满足你的 Pod
+运行需要的合适的区域被供应，从而允许你跨故障域轻松部署和扩展有状态工作负载，从而提供高可用性和容错能力。
 
 <!--
 ## Previous challenges
@@ -29,7 +31,10 @@ The multi-zone cluster experience with persistent volumes is improving in Kubern
 <!--
 Before this feature, running stateful workloads with zonal persistent disks (such as AWS ElasticBlockStore, Azure Disk, GCE PersistentDisk) in multi-zone clusters had many challenges. Dynamic provisioning was handled independently from pod scheduling, which meant that as soon as you created a PersistentVolumeClaim (PVC), a volume would get provisioned. This meant that the provisioner had no knowledge of what pods were using the volume, and any pod constraints it had that could impact scheduling.
 -->
-在此功能被提供之前，在多区域集群中使用区域化的持久磁盘（例如 AWS ElasticBlockStore，Azure Disk，GCE PersistentDisk）运行有状态工作负载存在许多挑战。动态供应独立于 Pod 调度处理，这意味着只要您创建了一个 PersistentVolumeClaim（PVC），一个卷就会被供应。这也意味着供应者不知道哪些 Pod 正在使用该卷，也不清楚任何可能影响调度的 Pod 约束。
+在此功能被提供之前，在多区域集群中使用区域化的持久磁盘（例如 AWS ElasticBlockStore、
+Azure Disk、GCE PersistentDisk）运行有状态工作负载存在许多挑战。动态供应独立于 Pod
+调度处理，这意味着只要你创建了一个 PersistentVolumeClaim（PVC），一个卷就会被供应。
+这也意味着供应者不知道哪些 Pod 正在使用该卷，也不清楚任何可能影响调度的 Pod 约束。
 
 <!--
 This resulted in unschedulable pods because volumes were provisioned in zones that:
@@ -78,7 +83,7 @@ In 1.12, the following drivers support topology-aware dynamic provisioning:
 -->
 * AWS EBS
 * Azure Disk
-* GCE PD （包括 Regional PD）
+* GCE PD（包括 Regional PD）
 * CSI（alpha） - 目前只有 GCE PD CSI 驱动实现了拓扑支持
 
 <!--
@@ -91,13 +96,13 @@ While the initial set of supported plugins are all zonal-based, we designed this
 -->
 虽然最初支持的插件集都是基于区域的，但我们设计此功能时遵循 Kubernetes 跨环境可移植性的原则。
 拓扑规范是通用的，并使用类似于基于标签的规范，如 Pod nodeSelectors 和 nodeAffinity。
-该机制允许您定义自己的拓扑边界，例如内部部署集群中的机架，而无需修改调度程序以了解这些自定义拓扑。
+该机制允许你定义自己的拓扑边界，例如内部部署集群中的机架，而无需修改调度程序以了解这些自定义拓扑。
 
 <!--
 In addition, the topology information is abstracted away from the pod specification, so a pod does not need knowledge of the underlying storage system’s topology characteristics. This means that you can use the same pod specification across multiple clusters, environments, and storage systems.
 -->
 此外，拓扑信息是从 Pod 规范中抽象出来的，因此 Pod 不需要了解底层存储系统的拓扑特征。
-这意味着您可以在多个集群、环境和存储系统中使用相同的 Pod 规范。
+这意味着你可以在多个集群、环境和存储系统中使用相同的 Pod 规范。
 
 <!--
 ## Getting Started
@@ -107,7 +112,7 @@ In addition, the topology information is abstracted away from the pod specificat
 <!--
 To enable this feature, all you need to do is to create a StorageClass with `volumeBindingMode` set to `WaitForFirstConsumer`:
 -->
-要启用此功能，您需要做的就是创建一个将 `volumeBindingMode` 设置为 `WaitForFirstConsumer` 的 StorageClass：
+要启用此功能，你需要做的就是创建一个将 `volumeBindingMode` 设置为 `WaitForFirstConsumer` 的 StorageClass：
 
 ```
 kind: StorageClass
@@ -210,7 +215,7 @@ spec:
 <!--
 Afterwards, you can see that the volumes were provisioned in zones according to the policies set by the pod:
 -->
-之后，您可以看到根据 Pod 设置的策略在区域中配置卷：
+之后，你可以看到根据 Pod 设置的策略在区域中配置卷：
 
 ```
 $ kubectl get pv -o=jsonpath='{range .items[*]}{.spec.claimRef.name}{"\t"}{.metadata.labels.failure\-domain\.beta\.kubernetes\.io/zone}{"\n"}{end}'
@@ -228,12 +233,13 @@ logs-web-1      us-central1-a
 <!--
 Official documentation on the topology-aware dynamic provisioning feature is available here:https://kubernetes.io/docs/concepts/storage/storage-classes/#volume-binding-mode
 -->
-有关拓扑感知动态供应功能的官方文档可在此处获取：https://kubernetes.io/docs/concepts/storage/storage-classes/#volume-binding-mode
+有关拓扑感知动态供应功能的官方文档可在此处获取：
+https://kubernetes.io/docs/concepts/storage/storage-classes/#volume-binding-mode
 
 <!--
 Documentation for CSI drivers is available at https://kubernetes-csi.github.io/docs/
 -->
-有关 CSI 驱动程序的文档，请访问：https://kubernetes-csi.github.io/docs/
+有关 CSI 驱动程序的文档，请访问： https://kubernetes-csi.github.io/docs/
 
 <!--
 ## What’s next?
@@ -260,9 +266,16 @@ We are actively working on improving this feature to support:
 <!--
 If you have feedback for this feature or are interested in getting involved with the design and development, join the [Kubernetes Storage Special-Interest-Group](https://github.com/kubernetes/community/tree/master/sig-storage) (SIG). We’re rapidly growing and always welcome new contributors.
 -->
-如果您对此功能有反馈意见或有兴趣参与设计和开发，请加入 [Kubernetes 存储特别兴趣小组](https://github.com/kubernetes/community/tree/master/sig-storage)（SIG）。我们正在快速成长，并始终欢迎新的贡献者。
+如果你对此功能有反馈意见或有兴趣参与设计和开发，请加入
+[Kubernetes 存储特别兴趣小组](https://github.com/kubernetes/community/tree/master/sig-storage)（SIG）。
+我们正在快速成长，并始终欢迎新的贡献者。
 
 <!--
 Special thanks to all the contributors that helped bring this feature to beta, including Cheng Xing ([verult](https://github.com/verult)), Chuqiang Li ([lichuqiang](https://github.com/lichuqiang)), David Zhu ([davidz627](https://github.com/davidz627)), Deep Debroy ([ddebroy](https://github.com/ddebroy)), Jan Šafránek ([jsafrane](https://github.com/jsafrane)), Jordan Liggitt ([liggitt](https://github.com/liggitt)), Michelle Au ([msau42](https://github.com/msau42)), Pengfei Ni ([feiskyer](https://github.com/feiskyer)), Saad Ali ([saad-ali](https://github.com/saad-ali)), Tim Hockin ([thockin](https://github.com/thockin)), and Yecheng Fu ([cofyc](https://github.com/cofyc)).
 -->
-特别感谢帮助推出此功能的所有贡献者，包括 Cheng Xing ([verult](https://github.com/verult))、Chuqiang Li ([lichuqiang](https://github.com/lichuqiang))、David Zhu ([davidz627](https://github.com/davidz627))、Deep Debroy ([ddebroy](https://github.com/ddebroy))、Jan Šafránek ([jsafrane](https://github.com/jsafrane))、Jordan Liggitt ([liggitt](https://github.com/liggitt))、Michelle Au ([msau42](https://github.com/msau42))、Pengfei Ni ([feiskyer](https://github.com/feiskyer))、Saad Ali ([saad-ali](https://github.com/saad-ali))、Tim Hockin ([thockin](https://github.com/thockin))，以及 Yecheng Fu ([cofyc](https://github.com/cofyc))。
+特别感谢帮助推出此功能的所有贡献者，包括 Cheng Xing ([verult](https://github.com/verult))、
+Chuqiang Li ([lichuqiang](https://github.com/lichuqiang))、David Zhu ([davidz627](https://github.com/davidz627))、
+Deep Debroy ([ddebroy](https://github.com/ddebroy))、Jan Šafránek ([jsafrane](https://github.com/jsafrane))、
+Jordan Liggitt ([liggitt](https://github.com/liggitt))、Michelle Au ([msau42](https://github.com/msau42))、
+Pengfei Ni ([feiskyer](https://github.com/feiskyer))、Saad Ali ([saad-ali](https://github.com/saad-ali))、
+Tim Hockin ([thockin](https://github.com/thockin))，以及 Yecheng Fu ([cofyc](https://github.com/cofyc))。
diff --git a/content/zh/blog/_posts/2018-10-15-steering-election-results.md b/content/zh-cn/blog/_posts/2018-10-15-steering-election-results.md
similarity index 98%
rename from content/zh/blog/_posts/2018-10-15-steering-election-results.md
rename to content/zh-cn/blog/_posts/2018-10-15-steering-election-results.md
index 8e7d5edf7e..73d2845fe5 100644
--- a/content/zh/blog/_posts/2018-10-15-steering-election-results.md
+++ b/content/zh-cn/blog/_posts/2018-10-15-steering-election-results.md
@@ -2,13 +2,12 @@
 layout: blog
 title: '2018 年督导委员会选举结果'
 date: 2018-10-15
+slug: 2018-steering-committee-election-results
 ---
 <!--
----
 layout: blog
 title: '2018 Steering Committee Election Results'
 date: 2018-10-15
----
 -->
 
 <!-- **Authors**: Jorge Castro (Heptio), Ihor Dvoretskyi (CNCF), Paris Pittman (Google) -->
diff --git a/content/zh/blog/_posts/2018-10-16-kubernetes-2018-north-american-contributor-summit.md b/content/zh-cn/blog/_posts/2018-10-16-kubernetes-2018-north-american-contributor-summit.md
similarity index 98%
rename from content/zh/blog/_posts/2018-10-16-kubernetes-2018-north-american-contributor-summit.md
rename to content/zh-cn/blog/_posts/2018-10-16-kubernetes-2018-north-american-contributor-summit.md
index b504a5c6b6..af6b93d768 100644
--- a/content/zh/blog/_posts/2018-10-16-kubernetes-2018-north-american-contributor-summit.md
+++ b/content/zh-cn/blog/_posts/2018-10-16-kubernetes-2018-north-american-contributor-summit.md
@@ -2,14 +2,14 @@
 layout: "Blog"
 title: "Kubernetes 2018 年北美贡献者峰会"
 date: 2018-10-16    
+slug: kubernetes-2018-north-american-contributor-summit
 ---
 <!--
----
 layout: "Blog"
 title: "Kubernetes 2018 North American Contributor Summit"
 date: 2018-10-16    
----
 -->
+
 <!--
 **Authors:**
 -->
diff --git a/content/zh/blog/_posts/2018-11-08-kubernetes-docs-update-i18n.md b/content/zh-cn/blog/_posts/2018-11-08-kubernetes-docs-update-i18n.md
similarity index 97%
rename from content/zh/blog/_posts/2018-11-08-kubernetes-docs-update-i18n.md
rename to content/zh-cn/blog/_posts/2018-11-08-kubernetes-docs-update-i18n.md
index cf6d5e58cb..2f6895968a 100644
--- a/content/zh/blog/_posts/2018-11-08-kubernetes-docs-update-i18n.md
+++ b/content/zh-cn/blog/_posts/2018-11-08-kubernetes-docs-update-i18n.md
@@ -2,13 +2,12 @@
 layout: blog
 title: 'Kubernetes 文档更新，国际版'
 date: 2018-11-08
+slug: kubernetes-docs-updates-international-edition
 ---
 <!--
----
 layout: blog
 title: 'Kubernetes Docs Updates, International Edition'
 date: 2018-11-08
----
 -->
 
 <!-- **Author**: Zach Corleissen (Linux Foundation) -->
@@ -64,8 +63,8 @@ Prow 根据文件路径自动添加语言标签。感谢 SIG Docs 贡献者 [Jun
 <!-- ### Team review  -->
 ### 团队审核
 
-<!-- L10n teams can now review and approve their own PRs. For example, review and approval permissions for English are [assigned in an OWNERS file](https://github.com/kubernetes/website/blob/master/content/en/OWNERS) in the top subfolder for English content.  -->
-L10n 团队现在可以审查和批准他们自己的 PR。例如，英语的审核和批准权限在位于用于显示英语内容的顶级子文件夹中的 [OWNERS 文件中指定](https://github.com/kubernetes/website/blob/master/content/en/OWNERS)。
+<!-- L10n teams can now review and approve their own PRs. For example, review and approval permissions for English are [assigned in an OWNERS file](https://github.com/kubernetes/website/blob/main/content/en/OWNERS) in the top subfolder for English content.  -->
+L10n 团队现在可以审查和批准他们自己的 PR。例如，英语的审核和批准权限在位于用于显示英语内容的顶级子文件夹中的 [OWNERS 文件中指定](https://github.com/kubernetes/website/blob/main/content/en/OWNERS)。
 
 <!-- Adding `OWNERS` files to subdirectories lets localization teams review and approve changes without requiring a rubber stamp approval from reviewers who may lack fluency. -->
 将 `OWNERS` 文件添加到子目录可以让本地化团队审查和批准更改，而无需由可能并不擅长该门语言的审阅者进行批准。
diff --git a/content/zh/blog/_posts/2018-12-05-new-contributor-shanghai.md b/content/zh-cn/blog/_posts/2018-12-05-new-contributor-shanghai.md
similarity index 99%
rename from content/zh/blog/_posts/2018-12-05-new-contributor-shanghai.md
rename to content/zh-cn/blog/_posts/2018-12-05-new-contributor-shanghai.md
index c3c74e4298..5b8ddff2de 100644
--- a/content/zh/blog/_posts/2018-12-05-new-contributor-shanghai.md
+++ b/content/zh-cn/blog/_posts/2018-12-05-new-contributor-shanghai.md
@@ -2,14 +2,12 @@
 layout: blog
 title: '新贡献者工作坊上海站'
 date: 2018-12-05
+slug: new-contributor-workshop-shanghai
 ---
- 
 <!-- 
----
 layout: blog
 title: 'New Contributor Workshop Shanghai'
 date: 2018-12-05
----
  -->
 
 <!--
diff --git a/content/zh/blog/_posts/2019-03-07-raw-block-volume-support-to-beta.md b/content/zh-cn/blog/_posts/2019-03-07-raw-block-volume-support-to-beta.md
similarity index 99%
rename from content/zh/blog/_posts/2019-03-07-raw-block-volume-support-to-beta.md
rename to content/zh-cn/blog/_posts/2019-03-07-raw-block-volume-support-to-beta.md
index 3ac5bc89c4..a14274d331 100644
--- a/content/zh/blog/_posts/2019-03-07-raw-block-volume-support-to-beta.md
+++ b/content/zh-cn/blog/_posts/2019-03-07-raw-block-volume-support-to-beta.md
@@ -1,12 +1,12 @@
 ---
+layout: blog
 title: Raw Block Volume 支持进入 Beta
 date: 2019-03-07
+slug: raw-block-volume-support-to-beta
 ---
 <!--
----
 title: Raw Block Volume support to Beta
 date: 2019-03-07
----
 --->
 
 <!--
diff --git a/content/zh/blog/_posts/2019-03-28-PID-Limiting.md b/content/zh-cn/blog/_posts/2019-03-28-PID-Limiting.md
similarity index 98%
rename from content/zh/blog/_posts/2019-03-28-PID-Limiting.md
rename to content/zh-cn/blog/_posts/2019-03-28-PID-Limiting.md
index cb56c0a97d..afada164a3 100644
--- a/content/zh/blog/_posts/2019-03-28-PID-Limiting.md
+++ b/content/zh-cn/blog/_posts/2019-03-28-PID-Limiting.md
@@ -1,12 +1,12 @@
 ---
+layout: blog
 title: 'Kubernetes 1.14 稳定性改进中的进程ID限制'
 date: 2019-04-15
+slug: process-id-limiting-for-stability-improvements-in-kubernetes-1.14
 ---
 <!--
----
 title: 'Process ID Limiting for Stability Improvements in Kubernetes 1.14'
 date: 2019-04-15
----
 -->
 
 <!--
@@ -34,7 +34,7 @@ In such a scenario, it’s possible for something akin to a fork bomb taking pla
 
 在这里，我们谈论的是某些容器的贪婪性。 在理想情况之外，失控进程有时会发生，特别是在测试集群中。 因此，在这些集群中会发生一些混乱的非生产环境准备就绪的事情。
 
-在这种情况下，可能会在节点内部发生类似于 fork 炸弹耗尽 PID 的攻击。随着资源的缓慢腐蚀，被一些不断产生子进程的僵尸般的进程所接管，其他正常的工作负载会因为这些像气球般不断膨胀的浪费的处理能力而开始受到冲击。这可能导致同一 Pod 上的其他进程缺少所需的 PID。这也可能导致有趣的副作用，因为节点可能会发生故障，并且该Pod的副本将安排到新的机器上，至此，该过程将在整个群集中重复进行。
+在这种情况下，可能会在节点内部发生类似于 fork 炸弹耗尽 PID 的攻击。随着资源的缓慢腐蚀，被一些不断产生子进程的僵尸般的进程所接管，其他正常的工作负载会因为这些像气球般不断膨胀的浪费的处理能力而开始受到冲击。这可能导致同一 Pod 上的其他进程缺少所需的 PID。这也可能导致有趣的副作用，因为节点可能会发生故障，并且该Pod的副本将安排到新的机器上，至此，该过程将在整个集群中重复进行。
 
 <!--
 ## Fixing the Problem
diff --git a/content/zh-cn/blog/_posts/2019-04-26-latest-on-localization.md b/content/zh-cn/blog/_posts/2019-04-26-latest-on-localization.md
new file mode 100644
index 0000000000..d0a2240423
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2019-04-26-latest-on-localization.md
@@ -0,0 +1,113 @@
+---
+layout: blog
+title: '如何参与 Kubernetes 文档的本地化工作'
+date: 2019-04-26
+slug: how-you-can-help-localize-kubernetes-docs
+---
+<!-- 
+layout: blog
+title: 'How You Can Help Localize Kubernetes Docs'
+date: 2019-04-26
+-->
+
+<!-- 
+**Author: Zach Corleissen (Linux Foundation)**
+
+Last year we optimized the Kubernetes website for [hosting multilingual content](/blog/2018/11/08/kubernetes-docs-updates-international-edition/). Contributors responded by adding multiple new localizations: as of April 2019, Kubernetes docs are partially available in nine different languages, with six added in 2019 alone. You can see a list of available languages in the language selector at the top of each page.
+
+By _partially available_, I mean that localizations are ongoing projects. They range from mostly complete ([Chinese docs for 1.12](https://v1-12.docs.kubernetes.io/zh/)) to brand new (1.14 docs in [Portuguese](https://kubernetes.io/pt/)). If you're interested in helping an existing localization, read on!
+-->
+**作者: Zach Corleissen（Linux 基金会）**
+
+去年我们对 Kubernetes 网站进行了优化，加入了[多语言内容的支持](https://kubernetes.io/blog/2018/11/08/kubernetes-docs-updates-international-edition/)。贡献者们踊跃响应，加入了多种新的本地化内容：截至 2019 年 4 月，Kubernetes 文档有了 9 个不同语言的未完成版本，其中有 6 个是 2019 年加入的。在每个 Kubernetes 文档页面的上方，读者都可以看到一个语言选择器，其中列出了所有可用语言。
+
+不论是完成度最高的[中文版 v1.12](https://v1-12.docs.kubernetes.io/zh-cn/)，还是最新加入的[葡萄牙文版 v1.14](https://kubernetes.io/pt/)，各语言的本地化内容还未完成，这是一个进行中的项目。如果读者有兴趣对现有本地化工作提供支持，请继续阅读。
+
+<!-- 
+## What is a localization?
+
+Translation is about words and meaning. Localization is about words, meaning, process, and design.
+
+A localization is like a translation, but more thorough. Instead of just translating words, a localization optimizes the framework for writing and publishing words. For example, most site navigation features (button text) on kubernetes.io are strings contained in a [single file](https://github.com/kubernetes/website/tree/master/i18n). Part of creating a new localization involves adding a language-specific version of that file and translating the strings it contains.
+
+Localization matters because it reduces barriers to adoption and support. When we can read Kubernetes docs in our own language, it's easier to get started using Kubernetes and contributing to its development.
+-->
+## 什么是本地化
+
+翻译是以词表意的问题。而本地化在此基础之上，还包含了过程和设计方面的工作。
+
+本地化和翻译很像，但是包含更多内容。除了进行翻译之外，本地化还要为编写和发布过程的框架进行优化。例如，Kubernetes.io 多数的站点浏览功能（按钮文字）都保存在[单独的文件](https://github.com/kubernetes/website/tree/master/i18n)之中。所以启动新本地化的过程中，需要包含加入对特定文件中字符串进行翻译的工作。
+
+本地化很重要，能够有效的降低 Kubernetes 的采纳和支持门槛。如果能用母语阅读 Kubernetes 文档，就能更轻松的开始使用 Kubernetes，并对其发展作出贡献。
+
+<!-- 
+## How do localizations happen?
+
+The availability of docs in different languages is a feature&mdash;and like all Kubernetes features, contributors develop localized docs in a SIG, share them for review, and add them to the project. 
+
+Contributors work in teams to localize content. Because folks can't approve their own PRs, localization teams have a minimum size of two&mdash;for example, the Italian localization has two contributors. Teams can also be quite large: the Chinese team has several dozen contributors. 
+
+Each team has its own workflow. Some teams localize all content manually; others use editors with translation plugins and review machine output for accuracy. SIG Docs focuses on standards of output; this leaves teams free to adopt the workflow that works best for them. That said, teams frequently collaborate with each other on best practices, and sharing abounds in the best spirit of the Kubernetes community.
+-->
+## 如何启动本地化工作
+
+不同语言的本地化工作都是单独的功能——和其它 Kubernetes 功能一致，贡献者们在一个 SIG 中进行本地化工作，分享出来进行评审，并加入项目。
+
+贡献者们在团队中进行内容的本地化工作。因为自己不能批准自己的 PR，所以一个本地化团队至少应该有两个人——例如意大利文的本地化团队有两个人。这个团队规模可能很大：中文团队有几十个成员。
+
+每个团队都有自己的工作流。有些团队手工完成所有的内容翻译；有些会使用带有翻译插件的编译器，并使用评审机来提供正确性的保障。SIG Docs 专注于输出的标准；这就给了本地化团队采用适合自己工作情况的工作流。这样一来，团队可以根据最佳实践进行协作，并以 Kubernetes 的社区精神进行分享。
+
+<!-- 
+## Helping with localizations
+
+If you're interested in starting a new localization for Kubernetes docs, the [Kubernetes contribution guide](https://kubernetes.io/docs/contribute/localization/) shows you how.
+
+Existing localizations also need help. If you'd like to contribute to an existing project, join the localization team's Slack channel and introduce yourself. Folks on that team can help you get started. 
+
+Localization | Slack channel
+---|---
+Chinese (中文) | [#kubernetes-docs-zh](https://kubernetes.slack.com/messages/CE3LNFYJ1/)
+English | [#sig-docs](https://kubernetes.slack.com/messages/C1J0BPD2M/)
+French (Français) | [#kubernetes-docs-fr](https://kubernetes.slack.com/messages/CG838BFT9/)
+German (Deutsch) | [#kubernetes-docs-de](https://kubernetes.slack.com/messages/CH4UJ2BAL/)
+Hindi | [#kubernetes-docs-hi](https://kubernetes.slack.com/messages/CJ14B9BDJ/)
+Indonesian | [#kubernetes-docs-id](https://kubernetes.slack.com/messages/CJ1LUCUHM/)
+Italian | [#kubernetes-docs-it](https://kubernetes.slack.com/messages/CGB1MCK7X/)
+Japanese (日本語) | [#kubernetes-docs-ja](https://kubernetes.slack.com/messages/CAG2M83S8/)
+Korean (한국어) | [#kubernetes-docs-ko](https://kubernetes.slack.com/messages/CA1MMR86S/)
+Portuguese (Português) | [#kubernetes-docs-pt](https://kubernetes.slack.com/messages/CJ21AS0NA/)
+Spanish (Español) | [#kubernetes-docs-es](https://kubernetes.slack.com/messages/CH7GB2E3B/)
+-->
+## 为本地化工作添砖加瓦
+
+如果你有兴趣为 Kubernetes 文档加入新语种的本地化内容，[Kubernetes contribution guide](https://kubernetes.io/docs/contribute/localization/) 中包含了这方面的相关内容。
+
+已经启动的的本地化工作同样需要支持。如果有兴趣为现存项目做出贡献，可以加入本地化团队的 Slack 频道，去做个自我介绍。各团队的成员会帮助你开始工作。
+
+|语种|Slack 频道|
+|---|---|
+|中文|[#kubernetes-docs-zh](https://kubernetes.slack.com/messages/CE3LNFYJ1/)|
+|英文|[#sig-docs](https://kubernetes.slack.com/messages/C1J0BPD2M/)|
+|法文|[#kubernetes-docs-fr](https://kubernetes.slack.com/messages/CG838BFT9/)|
+|德文|[#kubernetes-docs-de](https://kubernetes.slack.com/messages/CH4UJ2BAL/)|
+|印地|[#kubernetes-docs-hi](https://kubernetes.slack.com/messages/CJ14B9BDJ/)|
+|印度尼西亚文|[#kubernetes-docs-id](https://kubernetes.slack.com/messages/CJ1LUCUHM/)|
+|意大利文|[#kubernetes-docs-it](https://kubernetes.slack.com/messages/CGB1MCK7X/)|
+|日文|[#kubernetes-docs-ja](https://kubernetes.slack.com/messages/CAG2M83S8/)|
+|韩文|[#kubernetes-docs-ko](https://kubernetes.slack.com/messages/CA1MMR86S/)|
+|葡萄牙文|[#kubernetes-docs-pt](https://kubernetes.slack.com/messages/CJ21AS0NA/)|
+|西班牙文|[#kubernetes-docs-es](https://kubernetes.slack.com/messages/CH7GB2E3B/)|
+
+
+<!-- 
+## What's next?
+
+There's a new [Hindi localization](https://kubernetes.slack.com/messages/CJ14B9BDJ/) beginning. Why not add your language, too?
+
+As a chair of SIG Docs, I'd love to see localization spread beyond the docs and into Kubernetes components. Is there a Kubernetes component you'd like to see supported in a different language? Consider making a [Kubernetes Enhancement Proposal](https://github.com/kubernetes/enhancements/tree/master/keps) to support the change.
+-->
+## 下一步？
+
+最新的[印地文本地化](https://kubernetes.slack.com/messages/CJ14B9BDJ/)工作正在启动。为什么不加入你的语言？
+
+身为 SIG Docs 的主席，我甚至希望本地化工作跳出文档范畴，直接为 Kubernetes 组件提供本地化支持。有什么组件是你希望支持不同语言的么？可以提交一个 [Kubernetes Enhancement Proposal](https://github.com/kubernetes/enhancements/tree/master/keps) 来促成这一进步。
\ No newline at end of file
diff --git a/content/zh/blog/_posts/2019-05-14-expanding-our-contributor-workshops.md b/content/zh-cn/blog/_posts/2019-05-14-expanding-our-contributor-workshops.md
similarity index 100%
rename from content/zh/blog/_posts/2019-05-14-expanding-our-contributor-workshops.md
rename to content/zh-cn/blog/_posts/2019-05-14-expanding-our-contributor-workshops.md
diff --git a/content/zh/blog/_posts/2019-06-12-contributor-summit-shanghai.md b/content/zh-cn/blog/_posts/2019-06-12-contributor-summit-shanghai.md
similarity index 99%
rename from content/zh/blog/_posts/2019-06-12-contributor-summit-shanghai.md
rename to content/zh-cn/blog/_posts/2019-06-12-contributor-summit-shanghai.md
index 1d136352bd..ae932956ae 100644
--- a/content/zh/blog/_posts/2019-06-12-contributor-summit-shanghai.md
+++ b/content/zh-cn/blog/_posts/2019-06-12-contributor-summit-shanghai.md
@@ -2,6 +2,7 @@
 layout: blog
 title: '欢迎参加在上海举行的贡献者峰会'
 date: 2019-06-11
+slug: join-us-at-the-contributor-summit-in-shanghai
 ---
 
 <!-- ---
diff --git a/content/zh/blog/_posts/2019-08-06-OPA-Gatekeeper-Policy-and-Governance-for-Kubernetes.md b/content/zh-cn/blog/_posts/2019-08-06-OPA-Gatekeeper-Policy-and-Governance-for-Kubernetes.md
similarity index 99%
rename from content/zh/blog/_posts/2019-08-06-OPA-Gatekeeper-Policy-and-Governance-for-Kubernetes.md
rename to content/zh-cn/blog/_posts/2019-08-06-OPA-Gatekeeper-Policy-and-Governance-for-Kubernetes.md
index 58ee778b84..df46cab3c6 100644
--- a/content/zh/blog/_posts/2019-08-06-OPA-Gatekeeper-Policy-and-Governance-for-Kubernetes.md
+++ b/content/zh-cn/blog/_posts/2019-08-06-OPA-Gatekeeper-Policy-and-Governance-for-Kubernetes.md
@@ -61,7 +61,7 @@ For example, you can enforce policies like:
 <!--
 Kubernetes allows decoupling policy decisions from the API server by means of [admission controller webhooks](https://kubernetes.io/docs/reference/access-authn-authz/extensible-admission-controllers/) to intercept admission requests before they are persisted as objects in Kubernetes. [Gatekeeper](https://github.com/open-policy-agent/gatekeeper) was created to enable users to customize admission control via configuration, not code and to bring awareness of the cluster’s state, not just the single object under evaluation at admission time. Gatekeeper is a customizable admission webhook for Kubernetes that enforces policies executed by the [Open Policy Agent (OPA)](https://www.openpolicyagent.org), a policy engine for Cloud Native environments hosted by CNCF.
 --->
-在接收请求被持久化为 Kubernetes 中的对象之前，Kubernetes 允许通过 [admission controller webhooks](https://kubernetes.io/docs/reference/access-authn-authz/extensible-admission-controllers/) 将策略决策与 API 服务器分离，从而拦截这些请求。[Gatekeeper](https://github.com/open-policy-agent/gatekeeper) 创建的目的是使用户能够通过配置（而不是代码）自定义控制许可，并使用户了解群集的状态，而不仅仅是针对评估状态的单个对象，在这些对象准许加入的时候。Gatekeeper 是 Kubernetes 的一个可定制的许可 webhook ，它由 [Open Policy Agent (OPA)](https://www.openpolicyagent.org) 强制执行， OPA 是 Cloud Native 环境下的策略引擎，由 CNCF 主办。
+在接收请求被持久化为 Kubernetes 中的对象之前，Kubernetes 允许通过 [admission controller webhooks](https://kubernetes.io/docs/reference/access-authn-authz/extensible-admission-controllers/) 将策略决策与 API 服务器分离，从而拦截这些请求。[Gatekeeper](https://github.com/open-policy-agent/gatekeeper) 创建的目的是使用户能够通过配置（而不是代码）自定义控制许可，并使用户了解集群的状态，而不仅仅是针对评估状态的单个对象，在这些对象准许加入的时候。Gatekeeper 是 Kubernetes 的一个可定制的许可 webhook ，它由 [Open Policy Agent (OPA)](https://www.openpolicyagent.org) 强制执行， OPA 是 Cloud Native 环境下的策略引擎，由 CNCF 主办。
 
 <!--
 ## Evolution 
@@ -206,7 +206,7 @@ As you can see, with the Constraint framework, we can reliably share Regos via t
 The audit functionality enables periodic evaluations of replicated resources against the Constraints enforced in the cluster to detect pre-existing misconfigurations. Gatekeeper stores audit results as `violations` listed in the `status` field of the relevant Constraint.  --->
 ### 审核 
 
-根据群集中强制执行的 Constraint，审核功能可定期评估复制的资源，并检测先前存在的错误配置。Gatekeeper 将审核结果存储为 `violations`，在相关 Constraint 的 `status` 字段中列出。
+根据集群中强制执行的 Constraint，审核功能可定期评估复制的资源，并检测先前存在的错误配置。Gatekeeper 将审核结果存储为 `violations`，在相关 Constraint 的 `status` 字段中列出。
 
 ```yaml
 apiVersion: constraints.gatekeeper.sh/v1beta1
diff --git a/content/zh/blog/_posts/2019-09-24-san-diego-contributor-summit.md b/content/zh-cn/blog/_posts/2019-09-24-san-diego-contributor-summit.md
similarity index 100%
rename from content/zh/blog/_posts/2019-09-24-san-diego-contributor-summit.md
rename to content/zh-cn/blog/_posts/2019-09-24-san-diego-contributor-summit.md
diff --git a/content/zh/blog/_posts/2019-10-03-2019-Steering-Committee-Election-Results.md b/content/zh-cn/blog/_posts/2019-10-03-2019-Steering-Committee-Election-Results.md
similarity index 100%
rename from content/zh/blog/_posts/2019-10-03-2019-Steering-Committee-Election-Results.md
rename to content/zh-cn/blog/_posts/2019-10-03-2019-Steering-Committee-Election-Results.md
diff --git a/content/zh/blog/_posts/2019-10-10-contributor-summit-san-diego-schedule.md b/content/zh-cn/blog/_posts/2019-10-10-contributor-summit-san-diego-schedule.md
similarity index 100%
rename from content/zh/blog/_posts/2019-10-10-contributor-summit-san-diego-schedule.md
rename to content/zh-cn/blog/_posts/2019-10-10-contributor-summit-san-diego-schedule.md
diff --git a/content/zh/blog/_posts/2019-10-29-2019-sig-docs-survey.md b/content/zh-cn/blog/_posts/2019-10-29-2019-sig-docs-survey.md
similarity index 100%
rename from content/zh/blog/_posts/2019-10-29-2019-sig-docs-survey.md
rename to content/zh-cn/blog/_posts/2019-10-29-2019-sig-docs-survey.md
diff --git a/content/zh/blog/_posts/2019-11-05-kubernetes-with-microk8s.md b/content/zh-cn/blog/_posts/2019-11-05-kubernetes-with-microk8s.md
similarity index 99%
rename from content/zh/blog/_posts/2019-11-05-kubernetes-with-microk8s.md
rename to content/zh-cn/blog/_posts/2019-11-05-kubernetes-with-microk8s.md
index 2e789dbcac..c01a3af556 100644
--- a/content/zh/blog/_posts/2019-11-05-kubernetes-with-microk8s.md
+++ b/content/zh-cn/blog/_posts/2019-11-05-kubernetes-with-microk8s.md
@@ -1,14 +1,14 @@
 ---
+layout: blog
 title: '使用 Microk8s 在 Linux 上本地运行 Kubernetes'
-
 date: 2019-11-26
+slug: running-kubernetes-locally-on-linux-with-microk8s
 ---
 <!--
----                                           
 title: 'Running Kubernetes locally on Linux with Microk8s'                                                           
 date: 2019-11-26
----
 -->
+
 <!--
 **Authors**: [Ihor Dvoretskyi](https://twitter.com/idvoretskyi), Developer Advocate, Cloud Native Computing Foundation; [Carmine Rimi](https://twitter.com/carminerimi)
 -->
diff --git a/content/zh/blog/_posts/2019-11-26-cloud-native-java-controller-sdk.md b/content/zh-cn/blog/_posts/2019-11-26-cloud-native-java-controller-sdk.md
similarity index 95%
rename from content/zh/blog/_posts/2019-11-26-cloud-native-java-controller-sdk.md
rename to content/zh-cn/blog/_posts/2019-11-26-cloud-native-java-controller-sdk.md
index 097c9ca826..9712ddf447 100644
--- a/content/zh/blog/_posts/2019-11-26-cloud-native-java-controller-sdk.md
+++ b/content/zh-cn/blog/_posts/2019-11-26-cloud-native-java-controller-sdk.md
@@ -84,9 +84,11 @@ Take maven project as example, adding the following dependencies into your depen
 <!--
 Then we can make use of the provided builder libraries to write your own controller.
 For example, the following one is a simple controller prints out node information
-on watch notification, see complete example [here](https://github.com/kubernetes-client/java/blob/master/examples/src/main/java/io/kubernetes/client/examples/ControllerExample.java):
+on watch notification, see complete example [here](https://github.com/kubernetes-client/java/blob/master/examples/examples-release-13/src/main/java/io/kubernetes/client/examples/ControllerExample.java):
 -->
-然后我们可以使用提供的生成器库来编写自己的控制器。例如，下面是一个简单的控制，它打印出关于监视通知的节点信息，请看完整的例子：
+然后我们可以使用提供的生成器库来编写自己的控制器。例如，下面是一个简单的控制，它打印出关于监视通知的节点信息，
+在[此处](https://github.com/kubernetes-client/java/blob/master/examples/examples-release-13/src/main/java/io/kubernetes/client/examples/ControllerExample.java)
+查看完整的例子：
 ```java
 ...
     Reconciler reconciler = new Reconciler() {
diff --git a/content/zh/blog/_posts/2019-12-09-kubernetes-1.17-release-announcement.md b/content/zh-cn/blog/_posts/2019-12-09-kubernetes-1.17-release-announcement.md
similarity index 92%
rename from content/zh/blog/_posts/2019-12-09-kubernetes-1.17-release-announcement.md
rename to content/zh-cn/blog/_posts/2019-12-09-kubernetes-1.17-release-announcement.md
index 0fddf3dea4..31554dbe91 100644
--- a/content/zh/blog/_posts/2019-12-09-kubernetes-1.17-release-announcement.md
+++ b/content/zh-cn/blog/_posts/2019-12-09-kubernetes-1.17-release-announcement.md
@@ -3,6 +3,7 @@ layout: blog
 title: "Kubernetes 1.17：稳定"
 date: 2019-12-09T13：00：00-08：00
 slug: kubernetes-1-17-release-announcement
+evergreen: true
 ---
 
 <!-- ---
@@ -10,6 +11,7 @@ layout: blog
 title: "Kubernetes 1.17: Stability"
 date: 2019-12-09T13:00:00-08:00
 slug: kubernetes-1-17-release-announcement
+evergreen: true
 --- -->
 **作者:** [Kubernetes 1.17发布团队](https://github.com/kubernetes/sig-release/blob/master/releases/release-1.17/release_team.md)
 
@@ -67,14 +69,14 @@ Standard labels are used by Kubernetes components to support some features. For
 The labels are reaching general availability in this release. Kubernetes components have been updated to populate the GA and beta labels and to react to both. However, if you are using the beta labels in your pod specs for features such as node affinity, or in your custom controllers, we recommend that you start migrating them to the new GA labels. You can find the documentation for the new labels here:
 -->
 
-- [实例类型](https://kubernetes.io/docs/reference/kubernetes-api/labels-annotations-taints/#nodekubernetesioinstance-type)
-- [地区](https://kubernetes.io/docs/reference/kubernetes-api/labels-annotations-taints/#topologykubernetesioregion)
-- [区域](https://kubernetes.io/docs/reference/kubernetes-api/labels-annotations-taints/#topologykubernetesiozone)
+- [实例类型](/zh-cn/docs/reference/labels-annotations-taints/#nodekubernetesioinstance-type)
+- [地区](/zh-cn/docs/reference/labels-annotations-taints/#topologykubernetesioregion)
+- [区域](/zh-cn/docs/reference/labels-annotations-taints/#topologykubernetesiozone)
 
 <!--
-- [node.kubernetes.io/instance-type](https://kubernetes.io/docs/reference/kubernetes-api/labels-annotations-taints/#nodekubernetesioinstance-type)
-- [topology.kubernetes.io/region](https://kubernetes.io/docs/reference/kubernetes-api/labels-annotations-taints/#topologykubernetesioregion)
-- [topology.kubernetes.io/zone](https://kubernetes.io/docs/reference/kubernetes-api/labels-annotations-taints/#topologykubernetesiozone)
+- [node.kubernetes.io/instance-type](/docs/reference/labels-annotations-taints/#nodekubernetesioinstance-type)
+- [topology.kubernetes.io/region](/docs/reference/labels-annotations-taints/#topologykubernetesioregion)
+- [topology.kubernetes.io/zone](/docs/reference/labels-annotations-taints/#topologykubernetesiozone)
 -->
 ## 卷快照进入公开测试版
 <!--
@@ -85,7 +87,9 @@ The labels are reaching general availability in this release. Kubernetes compone
 The Kubernetes Volume Snapshot feature is now beta in Kubernetes v1.17. It was introduced as alpha in Kubernetes v1.12, with a second alpha with breaking changes in Kubernetes v1.13.  This post summarizes the changes in the beta release.
 -->
 ### 卷快照是什么？
-<!-- ### What is a Volume Snapshot? -->
+<!--
+### What is a Volume Snapshot?
+-->
 许多的存储系统(如谷歌云持久化磁盘，亚马逊弹性块存储和许多的内部存储系统)支持为持久卷创建快照。快照代表卷在一个时间点的复制。它可用于配置新卷(使用快照数据提前填充)或恢复卷到一个之前的状态(用快照表示)。
 <!--
 Many storage systems (like Google Cloud Persistent Disks, Amazon Elastic Block Storage, and many on-premise storage systems) provide the ability to create a “snapshot” of a persistent volume. A snapshot represents a point-in-time copy of a volume. A snapshot can be used either to provision a new volume (pre-populated with the snapshot data) or to restore an existing volume to a previous state (represented by the snapshot).
@@ -99,7 +103,7 @@ Kubernetes卷插件系统已经提供了功能强大的抽象用于自动配置
 The Kubernetes volume plugin system already provides a powerful abstraction that automates the provisioning, attaching, and mounting of block and file storage.
 -->
 
-支持所有这些特性是Kubernets负载可移植的目标：Kubernetes旨在分布式系统应用和底层集群之间创建一个抽象层,使得应用可以不感知其运行集群的具体信息并且部署也不需特定集群的知识。
+支持所有这些特性是Kubernetes负载可移植的目标：Kubernetes旨在分布式系统应用和底层集群之间创建一个抽象层,使得应用可以不感知其运行集群的具体信息并且部署也不需特定集群的知识。
 <!--
 Underpinning all these features is the Kubernetes goal of workload portability: Kubernetes aims to create an abstraction layer between distributed systems applications and underlying clusters so that applications can be agnostic to the specifics of the cluster they run on and application deployment requires no “cluster specific” knowledge.
 -->
@@ -143,7 +147,8 @@ Prior to CSI, Kubernetes provided a powerful volume plugin system. These volume
 
 随着更多容器存储接口驱动变成生产环境可用，我们希望所有的Kubernetes用户从容器存储接口模型中获益。然而，我们不希望强制用户以破坏现有基本可用的存储接口的方式去改变负载和配置。道路很明确，我们将不得不用CSI替换树内插件接口。什么是容器存储接口迁移？
 <!--
- As more CSI Drivers were created and became production ready, we wanted all Kubernetes users to reap the benefits of the CSI model. However, we did not want to force users into making workload/configuration changes by breaking the existing generally available storage APIs. The way forward was clear - we would have to replace the backend of the “in-tree plugin” APIs with CSI.What is CSI migration?
+As more CSI Drivers were created and became production ready, we wanted all Kubernetes users to reap the benefits of the CSI model. However, we did not want to force users into making workload/configuration changes by breaking the existing generally available storage APIs. The way forward was clear - we would have to replace the backend of the “in-tree plugin” APIs with CSI.
+What is CSI migration?
 -->
 
 在容器存储接口迁移上所做的努力使得替换现有的树内存储插件，如`kubernetes.io/gce-pd`或`kubernetes.io/aws-ebs`，为相应的容器存储接口驱动成为可能。如果容器存储接口迁移正常工作，Kubernetes终端用户不会注意到任何差别。迁移过后，Kubernetes用户可以继续使用现有接口来依赖树内存储插件的功能。
@@ -163,7 +168,8 @@ The Kubernetes team has worked hard to ensure the stability of storage APIs and
 
 你可以在这篇博客中阅读更多关于[容器存储接口迁移成为公开测试版](https://kubernetes.io/blog/2019/12/09/kubernetes-1-17-feature-csi-migration-beta/).
 <!--
-You can read more in the blog entry about [CSI migration going to beta](https://kubernetes.io/blog/2019/12/09/kubernetes-1-17-feature-csi-migration-beta/). -->
+You can read more in the blog entry about [CSI migration going to beta](https://kubernetes.io/blog/2019/12/09/kubernetes-1-17-feature-csi-migration-beta/).
+-->
 ## 其它更新
 <!--
 ## Other Updates
@@ -223,12 +229,11 @@ You can read more in the blog entry about [CSI migration going to beta](https://
 -->
 ### 可用性
 <!--
- ### Availability
+### Availability
 -->
 Kubernetes 1.17 可以[在GitHub下载](https://github.com/kubernetes/kubernetes/releases/tag/v1.17.0)。开始使用Kubernetes，看看这些[交互教学](https://kubernetes.io/docs/tutorials/)。你可以非常容易使用[kubeadm](https://kubernetes.io/docs/setup/independent/create-cluster-kubeadm/)安装1.17。
 <!--
-Kubernetes 1.17 is available for [download on GitHub](https://github.com/kubernetes/kubernetes/releases/tag/v1.17.0). To get started with Kubernetes, check out these [interactive tutorials](https://kubernetes.io/docs/tutorials/). You can also easily install 1.17 using
- [kubeadm](https://kubernetes.io/docs/setup/independent/create-cluster-kubeadm/).
+Kubernetes 1.17 is available for [download on GitHub](https://github.com/kubernetes/kubernetes/releases/tag/v1.17.0). To get started with Kubernetes, check out these [interactive tutorials](https://kubernetes.io/docs/tutorials/). You can also easily install 1.17 using [kubeadm](https://kubernetes.io/docs/setup/independent/create-cluster-kubeadm/).
  -->
 ### 发布团队
 <!--
diff --git a/content/zh/blog/_posts/2020-01-15-Kubernetes-on-MIPS.md b/content/zh-cn/blog/_posts/2020-01-15-Kubernetes-on-MIPS.md
similarity index 100%
rename from content/zh/blog/_posts/2020-01-15-Kubernetes-on-MIPS.md
rename to content/zh-cn/blog/_posts/2020-01-15-Kubernetes-on-MIPS.md
diff --git a/content/zh/blog/_posts/2020-03-25-kubernetes-1.18-release-announcement.md b/content/zh-cn/blog/_posts/2020-03-25-kubernetes-1.18-release-announcement.md
similarity index 70%
rename from content/zh/blog/_posts/2020-03-25-kubernetes-1.18-release-announcement.md
rename to content/zh-cn/blog/_posts/2020-03-25-kubernetes-1.18-release-announcement.md
index 78b3aa3312..b263469049 100644
--- a/content/zh/blog/_posts/2020-03-25-kubernetes-1.18-release-announcement.md
+++ b/content/zh-cn/blog/_posts/2020-03-25-kubernetes-1.18-release-announcement.md
@@ -3,6 +3,7 @@ layout: blog
 title: 'Kubernetes 1.18: Fit & Finish'
 date: 2020-03-25
 slug: kubernetes-1-18-release-announcement
+evergreen: true
 ---
 
 <!--
@@ -13,16 +14,21 @@ slug: kubernetes-1-18-release-announcement
 <!--
 We're pleased to announce the delivery of Kubernetes 1.18, our first release of 2020! Kubernetes 1.18 consists of 38 enhancements: 15 enhancements are moving to stable, 11 enhancements in beta, and 12 enhancements in alpha.
 -->
-我们很高兴宣布 Kubernetes 1.18 版本的交付，这是我们 2020 年的第一版！ Kubernetes 1.18 包含 38 个增强功能：15 项增强功能已转为稳定版，11 项增强功能处于 beta 阶段，12 项增强功能处于 alpha 阶段。
+我们很高兴宣布 Kubernetes 1.18 版本的交付，这是我们 2020 年的第一版！Kubernetes
+1.18 包含 38 个增强功能：15 项增强功能已转为稳定版，11 项增强功能处于 beta
+阶段，12 项增强功能处于 alpha 阶段。
 
 <!--
 Kubernetes 1.18 is a "fit and finish" release. Significant work has gone into improving beta and stable features to ensure users have a better experience. An equal effort has gone into adding new developments and exciting new features that promise to enhance the user experience even more.
 -->
-Kubernetes 1.18 是一个近乎 “完美” 的版本。 为了改善 beta 和稳定的特性，已进行了大量工作，以确保用户获得更好的体验。 我们在增强现有功能的同时也增加了令人兴奋的新特性，这些有望进一步增强用户体验。
+Kubernetes 1.18 是一个近乎 “完美” 的版本。为了改善 beta 和稳定的特性，已进行了大量工作，
+以确保用户获得更好的体验。我们在增强现有功能的同时也增加了令人兴奋的新特性，这些有望进一步增强用户体验。
+
 <!--
 Having almost as many enhancements in alpha, beta, and stable is a great achievement. It shows the tremendous effort made by the community on improving the reliability of Kubernetes as well as continuing to expand its existing functionality.
 -->
-对 alpha，beta 和稳定版进行几乎同等程度的增强是一项伟大的成就。 它展现了社区在提高 Kubernetes 的可靠性以及继续扩展其现有功能方面所做的巨大努力。
+对 alpha、beta 和稳定版进行几乎同等程度的增强是一项伟大的成就。它展现了社区在提高
+Kubernetes 的可靠性以及继续扩展其现有功能方面所做的巨大努力。
 
 
 <!--
@@ -38,17 +44,21 @@ Having almost as many enhancements in alpha, beta, and stable is a great achieve
 <!--
 A beta feature of Kubernetes in release 1.18,  the [Topology Manager feature](https://github.com/nolancon/website/blob/f4200307260ea3234540ef13ed80de325e1a7267/content/en/docs/tasks/administer-cluster/topology-manager.md) enables NUMA alignment of CPU and devices (such as SR-IOV VFs) that will allow your workload to run in an environment optimized for low-latency. Prior to the introduction of the Topology Manager, the CPU and Device Manager would make resource allocation decisions independent of each other. This could result in undesirable allocations on multi-socket systems, causing degraded performance on latency critical applications.
 -->
-Kubernetes 在 1.18 版中的 Beta 阶段功能 [拓扑管理器特性](https://github.com/nolancon/website/blob/f4200307260ea3234540ef13ed80de325e1a7267/content/en/docs/tasks/administer-cluster/topology-manager.md) 启用 CPU 和设备（例如 SR-IOV VF）的 NUMA 对齐，这将使您的工作负载在针对低延迟而优化的环境中运行。在引入拓扑管理器之前，CPU 和设备管理器将做出彼此独立的资源分配决策。 这可能会导致在多处理器系统上非预期的资源分配结果，从而导致对延迟敏感的应用程序的性能下降。
+Kubernetes 在 1.18 版中的 Beta 阶段功能[拓扑管理器特性](https://github.com/nolancon/website/blob/f4200307260ea3234540ef13ed80de325e1a7267/content/en/docs/tasks/administer-cluster/topology-manager.md)启用
+CPU 和设备（例如 SR-IOV VF）的 NUMA 对齐，这将使你的工作负载在针对低延迟而优化的环境中运行。
+在引入拓扑管理器之前，CPU 和设备管理器将做出彼此独立的资源分配决策。
+这可能会导致在多处理器系统上非预期的资源分配结果，从而导致对延迟敏感的应用程序的性能下降。
 
 <!--
 ### Serverside Apply Introduces Beta 2
 -->
-### Serverside Apply 推出Beta 2
+### Serverside Apply 推出 Beta 2
 
 <!--
 Server-side Apply was promoted to Beta in 1.16, but is now introducing a second Beta in 1.18. This new version will track and manage changes to fields of all new Kubernetes objects, allowing you to know what changed your resources and when.
 -->
-Serverside Apply 在1.16 中进入 Beta 阶段，但现在在 1.18 中进入了第二个 Beta 阶段。 这个新版本将跟踪和管理所有新 Kubernetes 对象的字段更改，从而使您知道什么更改了资源以及何时发生了更改。
+Serverside Apply 在1.16 中进入 Beta 阶段，但现在在 1.18 中进入了第二个 Beta 阶段。
+这个新版本将跟踪和管理所有新 Kubernetes 对象的字段更改，从而使你知道什么更改了资源以及何时发生了更改。
 
 
 <!--
@@ -59,12 +69,16 @@ Serverside Apply 在1.16 中进入 Beta 阶段，但现在在 1.18 中进入了
 <!--
 In Kubernetes 1.18, there are two significant additions to Ingress: A new `pathType` field and a new `IngressClass` resource. The `pathType` field allows specifying how paths should be matched. In addition to the default `ImplementationSpecific` type, there are new `Exact` and `Prefix` path types. 
 -->
-在 Kubernetes 1.18 中，Ingress 有两个重要的补充：一个新的 `pathType` 字段和一个新的 `IngressClass` 资源。`pathType` 字段允许指定路径的匹配方式。 除了默认的`ImplementationSpecific`类型外，还有新的 `Exact`和`Prefix` 路径类型。
+在 Kubernetes 1.18 中，Ingress 有两个重要的补充：一个新的 `pathType` 字段和一个新的
+`IngressClass` 资源。`pathType` 字段允许指定路径的匹配方式。除了默认的
+`ImplementationSpecific` 类型外，还有新的 `Exact` 和 `Prefix` 路径类型。
 
 <!--
 The `IngressClass` resource is used to describe a type of Ingress within a Kubernetes cluster. Ingresses can specify the class they are associated with by using a new `ingressClassName` field on Ingresses. This new resource and field replace the deprecated `kubernetes.io/ingress.class` annotation.
 -->
-`IngressClass` 资源用于描述 Kubernetes 集群中 Ingress 的类型。  Ingress 对象可以通过在Ingress 资源类型上使用新的`ingressClassName` 字段来指定与它们关联的类。 这个新的资源和字段替换了不再建议使用的 `kubernetes.io/ingress.class` 注解。
+`IngressClass` 资源用于描述 Kubernetes 集群中 Ingress 的类型。Ingress 对象可以通过在
+Ingress 资源类型上使用新的 `ingressClassName` 字段来指定与它们关联的类。
+这个新的资源和字段替换了不再建议使用的 `kubernetes.io/ingress.class` 注解。
 
 <!--
 ### SIG-CLI introduces kubectl alpha debug
@@ -74,7 +88,12 @@ The `IngressClass` resource is used to describe a type of Ingress within a Kuber
 <!--
 SIG-CLI was debating the need for a debug utility for quite some time already. With the development of [ephemeral containers](https://kubernetes.io/docs/concepts/workloads/pods/ephemeral-containers/), it became more obvious how we can support developers with tooling built on top of `kubectl exec`. The addition of the [`kubectl alpha debug` command](https://github.com/kubernetes/enhancements/blob/master/keps/sig-cli/20190805-kubectl-debug.md) (it is alpha but your feedback is more than welcome), allows developers to easily debug their Pods inside the cluster. We think this addition is invaluable.  This command allows one to create a temporary container which runs next to the Pod one is trying to examine, but also attaches to the console for interactive troubleshooting.
 -->
-SIG-CLI 一直在争论着调试工具的必要性。随着 [临时容器](https://kubernetes.io/docs/concepts/workloads/pods/ephemeral-containers/) 的发展，我们如何使用基于 `kubectl exec` 的工具来支持开发人员的必要性变得越来越明显。 [`kubectl alpha debug` 命令](https://github.com/kubernetes/enhancements/blob/master/keps/sig-cli/20190805-kubectl-debug.md) 的增加，（由于是 alpha 阶段，非常欢迎您反馈意见），使开发人员可以轻松地在集群中调试 Pod。我们认为这个功能的价值非常高。 此命令允许创建一个临时容器，该容器在要尝试检查的 Pod 旁边运行，并且还附加到控制台以进行交互式故障排除。
+SIG-CLI 一直在争论着调试工具的必要性。随着[临时容器](https://kubernetes.io/docs/concepts/workloads/pods/ephemeral-containers/)的发展，
+我们如何使用基于 `kubectl exec` 的工具来支持开发人员的必要性变得越来越明显。
+[`kubectl alpha debug` 命令](https://github.com/kubernetes/enhancements/blob/master/keps/sig-cli/20190805-kubectl-debug.md)的增加，
+（由于是 alpha 阶段，非常欢迎你反馈意见），使开发人员可以轻松地在集群中调试 Pod。
+我们认为这个功能的价值非常高。此命令允许创建一个临时容器，该容器在要尝试检查的
+Pod 旁边运行，并且还附加到控制台以进行交互式故障排除。
 
 <!--
 ### Introducing Windows CSI support alpha for Kubernetes
@@ -84,7 +103,8 @@ SIG-CLI 一直在争论着调试工具的必要性。随着 [临时容器](https
 <!--
 The alpha version of CSI Proxy for Windows is being released with Kubernetes 1.18. CSI proxy enables CSI Drivers on Windows by allowing containers in Windows to perform privileged storage operations.
 -->
-用于 Windows 的 CSI 代理的 Alpha 版本随 Kubernetes 1.18 一起发布。 CSI 代理通过允许Windows 中的容器执行特权存储操作来启用 Windows 上的 CSI 驱动程序。
+用于 Windows 的 CSI 代理的 Alpha 版本随 Kubernetes 1.18 一起发布。CSI 代理通过允许
+Windows 中的容器执行特权存储操作来启用 Windows 上的 CSI 驱动程序。
 
 <!--
 ## Other Updates
@@ -157,7 +177,8 @@ The alpha version of CSI Proxy for Windows is being released with Kubernetes 1.1
 <!--
 Check out the full details of the Kubernetes 1.18 release in our [release notes](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.18.md).
 -->
-在我们的 [发布文档](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.18.md)中查看 Kubernetes 1.18 发行版的完整详细信息。
+在我们的[发布文档](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.18.md)中查看
+Kubernetes 1.18 发行版的完整详细信息。
 
 
 <!--
@@ -168,7 +189,10 @@ Check out the full details of the Kubernetes 1.18 release in our [release notes]
 <!--
 Kubernetes 1.18 is available for download on [GitHub](https://github.com/kubernetes/kubernetes/releases/tag/v1.18.0). To get started with Kubernetes, check out these [interactive tutorials](https://kubernetes.io/docs/tutorials/) or run local Kubernetes clusters using Docker container “nodes” with [kind](https://kind.sigs.k8s.io/). You can also easily install 1.18 using [kubeadm](https://kubernetes.io/docs/setup/independent/create-cluster-kubeadm/). 
 -->
-Kubernetes 1.18 可以在 [GitHub](https://github.com/kubernetes/kubernetes/releases/tag/v1.18.0) 上下载。 要开始使用Kubernetes，请查看这些 [交互教程](https://kubernetes.io/docs/tutorials/) 或通过[kind](https://kind.sigs.k8s.io/) 使用 Docker 容器运行本地 kubernetes 集群。您还可以使用[kubeadm](https://kubernetes.io/docs/setup/independent/create-cluster-kubeadm/)轻松安装 1.18。
+Kubernetes 1.18 可以在 [GitHub](https://github.com/kubernetes/kubernetes/releases/tag/v1.18.0)
+上下载。要开始使用 Kubernetes，请查看这些[交互教程](https://kubernetes.io/docs/tutorials/)或通过
+[kind](https://kind.sigs.k8s.io/) 使用 Docker 容器运行本地 kubernetes 集群。你还可以使用
+[kubeadm](https://kubernetes.io/docs/setup/independent/create-cluster-kubeadm/) 轻松安装 1.18。
 
 <!--
 ### Release Team
@@ -178,12 +202,18 @@ Kubernetes 1.18 可以在 [GitHub](https://github.com/kubernetes/kubernetes/rele
 <!--
 This release is made possible through the efforts of hundreds of individuals who contributed both technical and non-technical content. Special thanks to the [release team](https://github.com/kubernetes/sig-release/blob/master/releases/release-1.18/release_team.md) led by Jorge Alarcon Ochoa, Site Reliability Engineer at Searchable AI. The 34 release team members coordinated many aspects of the release, from documentation to testing, validation, and feature completeness. 
 -->
-通过数百位贡献了技术和非技术内容的个人的努力，使本次发行成为可能。 特别感谢由 Searchable AI 的网站可靠性工程师 Jorge Alarcon Ochoa 领导的[发布团队](https://github.com/kubernetes/sig-release/blob/master/releases/release-1.18/release_team.md)。 34 位发布团队成员协调了发布的各个方面，从文档到测试、验证和功能完整性。
+通过数百位贡献了技术和非技术内容的个人的努力，使本次发行成为可能。
+特别感谢由 Searchable AI 的网站可靠性工程师 Jorge Alarcon Ochoa
+领导的[发布团队](https://github.com/kubernetes/sig-release/blob/master/releases/release-1.18/release_team.md)。
+34 位发布团队成员协调了发布的各个方面，从文档到测试、验证和功能完整性。
 
 <!--
 As the Kubernetes community has grown, our release process represents an amazing demonstration of collaboration in open source software development. Kubernetes continues to gain new users at a rapid pace. This growth creates a positive feedback cycle where more contributors commit code creating a more vibrant ecosystem. Kubernetes has had over [40,000 individual contributors](https://k8s.devstats.cncf.io/d/24/overall-project-statistics?orgId=1) to date and an active community of more than 3,000 people.
 -->
-随着 Kubernetes 社区的发展壮大，我们的发布过程很好地展示了开源软件开发中的协作。 Kubernetes 继续快速获取新用户。 这种增长创造了一个积极的反馈回路，其中有更多的贡献者提交了代码，从而创建了更加活跃的生态系统。 迄今为止，Kubernetes 已有 [40,000 独立贡献者](https://k8s.devstats.cncf.io/d/24/overall-project-statistics?orgId=1) 和一个超过3000人的活跃社区。
+随着 Kubernetes 社区的发展壮大，我们的发布过程很好地展示了开源软件开发中的协作。
+Kubernetes 继续快速获取新用户。这种增长创造了一个积极的反馈回路，
+其中有更多的贡献者提交了代码，从而创建了更加活跃的生态系统。迄今为止，Kubernetes 已有
+[40,000 独立贡献者](https://k8s.devstats.cncf.io/d/24/overall-project-statistics?orgId=1)和一个超过 3000 人的活跃社区。
 
 <!--
 ### Release Logo
@@ -203,7 +233,10 @@ As the Kubernetes community has grown, our release process represents an amazing
 <!--
 The LHC is the world’s largest and most powerful particle accelerator.  It is the result of the collaboration of thousands of scientists from around the world, all for the advancement of science. In a similar manner, Kubernetes has been a project that has united thousands of contributors from hundreds of organizations – all to work towards the same goal of improving cloud computing in all aspects! "A Bit Quarky" as the release name is meant to remind us that unconventional ideas can bring about great change and keeping an open mind to diversity will lead help us innovate.
 -->
-LHC 是世界上最大，功能最强大的粒子加速器。它是由来自世界各地成千上万科学家合作的结果，所有这些合作都是为了促进科学的发展。以类似的方式，Kubernetes 已经成为一个聚集了来自数百个组织的数千名贡献者–所有人都朝着在各个方面改善云计算的相同目标努力的项目！ 发布名称“ A  Bit Quarky” 的意思是提醒我们，非常规的想法可以带来巨大的变化，对开放性保持开放态度将有助于我们进行创新。
+LHC 是世界上最大，功能最强大的粒子加速器。它是由来自世界各地成千上万科学家合作的结果，
+所有这些合作都是为了促进科学的发展。以类似的方式，Kubernetes
+已经成为一个聚集了来自数百个组织的数千名贡献者–所有人都朝着在各个方面改善云计算的相同目标努力的项目！
+发布名称 “A Bit Quarky” 的意思是提醒我们，非常规的想法可以带来巨大的变化，对开放性保持开放态度将有助于我们进行创新。
 
 
 <!--
@@ -214,7 +247,9 @@ LHC 是世界上最大，功能最强大的粒子加速器。它是由来自世
 <!--
 Maru Lango is a designer currently based in Mexico City. While her area of expertise is Product Design, she also enjoys branding, illustration and visual experiments using CSS + JS and contributing to diversity efforts within the tech and design communities. You may find her in most social media as @marulango or check her website: https://marulango.com
 -->
-Maru Lango 是目前居住在墨西哥城的设计师。她的专长是产品设计，她还喜欢使用 CSS + JS 进行品牌、插图和视觉实验，为技术和设计社区的多样性做贡献。您可能会在大多数社交媒体上以 @marulango 的身份找到她，或查看她的网站： https://marulango.com
+Maru Lango 是目前居住在墨西哥城的设计师。她的专长是产品设计，她还喜欢使用 CSS + JS
+进行品牌、插图和视觉实验，为技术和设计社区的多样性做贡献。你可能会在大多数社交媒体上以
+@marulango 的身份找到她，或查看她的网站： https://marulango.com
 
 <!--
 ### User Highlights
@@ -226,9 +261,12 @@ Maru Lango 是目前居住在墨西哥城的设计师。她的专长是产品设
 - Zendesk is using Kubernetes to [run around 70% of its existing applications](https://www.cncf.io/case-study/zendesk/). It’s also building all new applications to also run on Kubernetes, which has brought time savings, greater flexibility, and increased velocity  to its application development.
 - LifeMiles has [reduced infrastructure spending by 50%](https://www.cncf.io/case-study/lifemiles/) because of its move to Kubernetes. It has also allowed them to double its available resource capacity.
 -->
-- 爱立信正在使用 Kubernetes 和其他云原生技术来交付[高标准的 5G 网络](https://www.cncf.io/case-study/ericsson/)，这可以在 CI/CD 上节省多达 90％ 的支出。
-- Zendesk 正在使用 Kubernetes [运行其现有应用程序的约 70％](https://www.cncf.io/case-study/zendesk/)。它还正在使所构建的所有新应用都可以在 Kubernetes 上运行，从而节省时间、提高灵活性并加快其应用程序开发的速度。
-- LifeMiles 因迁移到 Kubernetes 而[降低了 50% 的基础设施开支](https://www.cncf.io/case-study/lifemiles/)。Kubernetes 还使他们可以将其可用资源容量增加一倍。
+- 爱立信正在使用 Kubernetes 和其他云原生技术来交付[高标准的 5G 网络](https://www.cncf.io/case-study/ericsson/)，
+  这可以在 CI/CD 上节省多达 90％ 的支出。
+- Zendesk 正在使用 Kubernetes [运行其现有应用程序的约 70％](https://www.cncf.io/case-study/zendesk/)。
+  它还正在使所构建的所有新应用都可以在 Kubernetes 上运行，从而节省时间、提高灵活性并加快其应用程序开发的速度。
+- LifeMiles 因迁移到 Kubernetes 而[降低了 50% 的基础设施开支](https://www.cncf.io/case-study/lifemiles/)。
+  Kubernetes 还使他们可以将其可用资源容量增加一倍。
 
 <!--
 ### Ecosystem Updates
@@ -239,8 +277,9 @@ Maru Lango 是目前居住在墨西哥城的设计师。她的专长是产品设
 - The CNCF published the results of its [annual survey](https://www.cncf.io/blog/2020/03/04/2019-cncf-survey-results-are-here-deployments-are-growing-in-size-and-speed-as-cloud-native-adoption-becomes-mainstream/) showing that Kubernetes usage in production is skyrocketing. The survey found that 78% of respondents are using Kubernetes in production compared to 58% last year.
 - The “Introduction to Kubernetes” course hosted by the CNCF [surpassed 100,000 registrations](https://www.cncf.io/announcement/2020/01/28/cloud-native-computing-foundation-announces-introduction-to-kubernetes-course-surpasses-100000-registrations/).
 -->
-- CNCF发布了[年度调查](https://www.cncf.io/blog/2020/03/04/2019-cncf-survey-results-are-here-deployments-are-growing-in-size-and-speed-as-cloud-native-adoption-becomes-mainstream/) 的结果，表明 Kubernetes 在生产中的使用正在飞速增长。调查发现，有78％的受访者在生产中使用Kubernetes，而去年这一比例为 58％。
-- CNCF 举办的 “Kubernetes入门” 课程有[超过 100,000 人注册](https://www.cncf.io/announcement/2020/01/28/cloud-native-computing-foundation-announces-introduction-to-kubernetes-course-surpasses-100000-registrations/)。
+- CNCF 发布了[年度调查](https://www.cncf.io/blog/2020/03/04/2019-cncf-survey-results-are-here-deployments-are-growing-in-size-and-speed-as-cloud-native-adoption-becomes-mainstream/)的结果，
+  表明 Kubernetes 在生产中的使用正在飞速增长。调查发现，有 78％ 的受访者在生产中使用 Kubernetes，而去年这一比例为 58％。
+- CNCF 举办的 “Kubernetes 入门” 课程有[超过 100,000 人注册](https://www.cncf.io/announcement/2020/01/28/cloud-native-computing-foundation-announces-introduction-to-kubernetes-course-surpasses-100000-registrations/)。
 
 <!--
 ### Project Velocity
@@ -250,12 +289,16 @@ Maru Lango 是目前居住在墨西哥城的设计师。她的专长是产品设
 <!--
 The CNCF has continued refining DevStats, an ambitious project to visualize the myriad contributions that go into the project. [K8s DevStats](https://k8s.devstats.cncf.io/d/12/dashboards?orgId=1) illustrates the breakdown of contributions from major company contributors, as well as an impressive set of preconfigured reports on everything from individual contributors to pull request lifecycle times. 
 -->
-CNCF 继续完善 DevStats。这是一个雄心勃勃的项目，旨在对项目中的无数贡献数据进行可视化展示。[K8s DevStats](https://k8s.devstats.cncf.io/d/12/dashboards?orgId=1) 展示了主要公司贡献者的贡献细目，以及一系列令人印象深刻的预定义的报告，涉及从贡献者个人的各方面到 PR 生命周期的各个方面。
+CNCF 继续完善 DevStats。这是一个雄心勃勃的项目，旨在对项目中的无数贡献数据进行可视化展示。
+[K8s DevStats](https://k8s.devstats.cncf.io/d/12/dashboards?orgId=1) 展示了主要公司贡献者的贡献细目，
+以及一系列令人印象深刻的预定义的报告，涉及从贡献者个人的各方面到 PR 生命周期的各个方面。
 
 <!--
 This past quarter, 641 different companies and over 6,409 individuals contributed to Kubernetes. [Check out DevStats](https://k8s.devstats.cncf.io/d/11/companies-contributing-in-repository-groups?orgId=1&var-period=m&var-repogroup_name=All) to learn more about the overall velocity of the Kubernetes project and community.
 -->
-在过去的一个季度中，641 家不同的公司和超过 6,409 个个人为 Kubernetes 作出贡献。 [查看 DevStats](https://k8s.devstats.cncf.io/d/11/companies-contributing-in-repository-groups?orgId=1&var-period=m&var-repogroup_name=All) 以了解有关 Kubernetes 项目和社区发展速度的信息。
+在过去的一个季度中，641 家不同的公司和超过 6,409 个个人为 Kubernetes 作出贡献。
+[查看 DevStats](https://k8s.devstats.cncf.io/d/11/companies-contributing-in-repository-groups?orgId=1&var-period=m&var-repogroup_name=All)
+以了解有关 Kubernetes 项目和社区发展速度的信息。
 
 <!--
 ### Event Update
@@ -265,7 +308,8 @@ This past quarter, 641 different companies and over 6,409 individuals contribute
 <!--
 Kubecon + CloudNativeCon EU 2020 is being pushed back –  for the more most up-to-date information, please check the [Novel Coronavirus Update page](https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/attend/novel-coronavirus-update/).
 -->
-Kubecon + CloudNativeCon EU 2020 已经推迟 - 有关最新信息，请查看[新型肺炎发布页面](https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/attend/novel-coronavirus-update/)。
+Kubecon + CloudNativeCon EU 2020 已经推迟 - 有关最新信息，
+请查看[新型肺炎发布页面](https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/attend/novel-coronavirus-update/)。
 
 <!--
 ### Upcoming Release Webinar
@@ -275,7 +319,9 @@ Kubecon + CloudNativeCon EU 2020 已经推迟 - 有关最新信息，请查看[
 <!--
 Join members of the Kubernetes 1.18 release team on April 23rd, 2020 to learn about the major features in this release including kubectl debug, Topography Manager, Ingress to V1 graduation, and client-go. Register here: https://www.cncf.io/webinars/kubernetes-1-18/.
 -->
-在 2020 年 4 月 23 日，和 Kubernetes 1.18 版本团队一起了解此版本的主要功能，包括 kubectl debug、拓扑管理器、Ingress 毕业为 V1 版本以及 client-go。 在此处注册：https://www.cncf.io/webinars/kubernetes-1-18/ 。
+在 2020 年 4 月 23 日，和 Kubernetes 1.18 版本团队一起了解此版本的主要功能，
+包括 kubectl debug、拓扑管理器、Ingress 毕业为 V1 版本以及 client-go。
+在此处注册： https://www.cncf.io/webinars/kubernetes-1-18/ 。
 
 <!--
 ### Get Involved
@@ -285,7 +331,9 @@ Join members of the Kubernetes 1.18 release team on April 23rd, 2020 to learn ab
 <!--
 The simplest way to get involved with Kubernetes is by joining one of the many [Special Interest Groups](https://github.com/kubernetes/community/blob/master/sig-list.md) (SIGs) that align with your interests. Have something you’d like to broadcast to the Kubernetes community? Share your voice at our weekly [community meeting](https://github.com/kubernetes/community/tree/master/communication), and through the channels below. Thank you for your continued feedback and support.
 -->
-参与 Kubernetes 的最简单方法是加入众多与您的兴趣相关的 [特别兴趣小组](https://github.com/kubernetes/community/blob/master/sig-list.md) (SIGs) 之一。 您有什么想向 Kubernetes 社区发布的内容吗？ 参与我们的每周 [社区会议](https://github.com/kubernetes/community/tree/master/communication)，并通过以下渠道分享您的声音。 感谢您一直以来的反馈和支持。
+参与 Kubernetes 的最简单方法是加入众多与你的兴趣相关的[特别兴趣小组](https://github.com/kubernetes/community/blob/master/sig-list.md)（SIGs）之一。
+你有什么想向 Kubernetes 社区发布的内容吗？参与我们的每周[社区会议](https://github.com/kubernetes/community/tree/master/communication)，
+并通过以下渠道分享你的声音。感谢你一直以来的反馈和支持。
 
 <!--
 - Follow us on Twitter [@Kubernetesio](https://twitter.com/kubernetesio) for latest updates
@@ -299,7 +347,7 @@ The simplest way to get involved with Kubernetes is by joining one of the many [
 - 在 Twitter 上关注我们 [@Kubernetesio](https://twitter.com/kubernetesio)，了解最新动态
 - 在 [Discuss](https://discuss.kubernetes.io/) 上参与社区讨论 
 - 加入 [Slack](http://slack.k8s.io/) 上的社区
--  在[Stack Overflow](http://stackoverflow.com/questions/tagged/kubernetes)提问（或回答）
-- 分享您的 Kubernetes [故事](https://docs.google.com/a/linuxfoundation.org/forms/d/e/1FAIpQLScuI7Ye3VQHQTwBASrgkjQDSS5TP0g3AXfFhwSM9YpHgxRKFA/viewform)
-- 通过 [blog](https://kubernetes.io/blog/)了解更多关于 Kubernetes 的新鲜事
-- 了解更多关于 [Kubernetes 发布团队](https://github.com/kubernetes/sig-release/tree/master/release-team) 的信息
+- 在 [Stack Overflow](http://stackoverflow.com/questions/tagged/kubernetes) 提问（或回答）
+- 分享你的 Kubernetes [故事](https://docs.google.com/a/linuxfoundation.org/forms/d/e/1FAIpQLScuI7Ye3VQHQTwBASrgkjQDSS5TP0g3AXfFhwSM9YpHgxRKFA/viewform)
+- 通过 [blog](https://kubernetes.io/blog/) 了解更多关于 Kubernetes 的新鲜事
+- 了解更多关于 [Kubernetes 发布团队](https://github.com/kubernetes/sig-release/tree/master/release-team)的信息
diff --git a/content/zh/blog/_posts/2020-09-04-introducing-structured-logs.md b/content/zh-cn/blog/_posts/2020-09-04-introducing-structured-logs.md
similarity index 96%
rename from content/zh/blog/_posts/2020-09-04-introducing-structured-logs.md
rename to content/zh-cn/blog/_posts/2020-09-04-introducing-structured-logs.md
index 27026deebf..b483dedaeb 100644
--- a/content/zh/blog/_posts/2020-09-04-introducing-structured-logs.md
+++ b/content/zh-cn/blog/_posts/2020-09-04-introducing-structured-logs.md
@@ -92,4 +92,4 @@ Finally, structured logs can help reduce storage costs for logs because most sto
 <!--
 While we have updated over 99% of the log entries by log volume in a typical deployment, there are still thousands of logs to be updated. Pick a file or directory that you would like to improve and [migrate existing log calls to use structured logs](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-instrumentation/migration-to-structured-logging.md). It's a great and easy way to make your first contribution to Kubernetes!
 -->
-虽然在典型部署中，我们已按日志量更新了99％以上的日志条目，但仍有数千个日志需要更新。 选择一个您要改进的文件或目录，然后[迁移现有的日志调用以使用结构化日志]（https://github.com/kubernetes/community/blob/master/contributors/devel/sig-instrumentation/migration-to-structured-logging.md）。这是对Kubernetes做出第一笔贡献的好方法!
+虽然在典型部署中，我们已按日志量更新了99％以上的日志条目，但仍有数千个日志需要更新。 选择一个您要改进的文件或目录，然后[迁移现有的日志调用以使用结构化日志](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-instrumentation/migration-to-structured-logging.md)。这是对Kubernetes做出第一笔贡献的好方法!
diff --git a/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/image01.png b/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/image01.png
new file mode 100644
index 0000000000..91e8856139
Binary files /dev/null and b/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/image01.png differ
diff --git a/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/image02.png b/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/image02.png
new file mode 100644
index 0000000000..dfd14d7cdc
Binary files /dev/null and b/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/image02.png differ
diff --git a/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/image03.png b/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/image03.png
new file mode 100644
index 0000000000..443a6f2d67
Binary files /dev/null and b/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/image03.png differ
diff --git a/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/image04.png b/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/image04.png
new file mode 100644
index 0000000000..e107adc88b
Binary files /dev/null and b/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/image04.png differ
diff --git a/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/image05.png b/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/image05.png
new file mode 100644
index 0000000000..6d80447d09
Binary files /dev/null and b/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/image05.png differ
diff --git a/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/image06.png b/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/image06.png
new file mode 100644
index 0000000000..d40b2eb0b6
Binary files /dev/null and b/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/image06.png differ
diff --git a/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/image07.png b/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/image07.png
new file mode 100644
index 0000000000..fc3976040f
Binary files /dev/null and b/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/image07.png differ
diff --git a/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/index.md b/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/index.md
new file mode 100644
index 0000000000..c9e6f768f7
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2020-09-30-writing-crl-scheduler/index.md
@@ -0,0 +1,254 @@
+---
+layout: blog
+title: "一个编排高可用应用的 Kubernetes 自定义调度器"
+date: 2020-12-21
+slug: writing-crl-scheduler
+---
+<!--
+---
+layout: blog
+title: "A Custom Kubernetes Scheduler to Orchestrate Highly Available Applications"
+date: 2020-12-21
+slug: writing-crl-scheduler
+---
+-->
+**作者**: Chris Seto (Cockroach Labs)
+<!--
+**Author**: Chris Seto (Cockroach Labs)
+-->
+
+<!--
+As long as you're willing to follow the rules, deploying on Kubernetes and air travel can be quite pleasant. More often than not, things will "just work". However, if one is interested in travelling with an alligator that must remain alive or scaling a database that must remain available, the situation is likely to become a bit more complicated. It may even be easier to build one's own plane or database for that matter. Travelling with reptiles aside, scaling a highly available stateful system is no trivial task.
+-->
+只要你愿意遵守规则，那么在 Kubernetes 上的部署和探索可以是相当愉快的。更多时候，事情会 "顺利进行"。
+然而，如果一个人对与必须保持存活的鳄鱼一起旅行或者是对必须保持可用的数据库进行扩展有兴趣，
+情况可能会变得更复杂一点。
+相较于这个问题，建立自己的飞机或数据库甚至还可能更容易一些。撇开与鳄鱼的旅行不谈，扩展一个高可用的有状态系统也不是一件小事。
+
+<!--
+Scaling any system has two main components:
+1. Adding or removing infrastructure that the system will run on, and
+2. Ensuring that the system knows how to handle additional instances of itself being added and removed.
+-->
+任何系统的扩展都有两个主要组成部分。
+1. 增加或删除系统将运行的基础架构，以及
+2. 确保系统知道如何处理自身额外实例的添加和删除。
+
+<!--
+Most stateless systems, web servers for example, are created without the need to be aware of peers. Stateful systems, which includes databases like CockroachDB, have to coordinate with their peer instances and shuffle around data. As luck would have it, CockroachDB handles data redistribution and replication. The tricky part is being able to tolerate failures during these operations by ensuring that data and instances are distributed across many failure domains (availability zones).
+-->
+大多数无状态系统，例如网络服务器，在创建时不需要意识到对等实例。而有状态的系统，包括像 CockroachDB 这样的数据库，
+必须与它们的对等实例协调，并对数据进行 shuffle。运气好的话，CockroachDB 可以处理数据的再分布和复制。
+棘手的部分是在确保数据和实例分布在许多故障域（可用性区域）的操作过程中能够容忍故障的发生。
+
+<!--
+One of Kubernetes' responsibilities is to place "resources" (e.g, a disk or container) into the cluster and satisfy the constraints they request. For example: "I must be in availability zone _A_" (see [Running in multiple zones](/docs/setup/best-practices/multiple-zones/#nodes-are-labeled)), or "I can't be placed onto the same node as this other Pod" (see [Affinity and anti-affinity](/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity)).
+-->
+Kubernetes 的职责之一是将 "资源"（如磁盘或容器）放入集群中，并满足其请求的约束。
+例如。"我必须在可用性区域 _A_"（见[在多个区域运行](/zh-cn/docs/setup/best-practices/multiple-zones/#nodes-are-labeled)），
+或者 "我不能被放置到与某个 Pod 相同的节点上"
+（见[亲和与反亲和](/zh-cn/docs/setup/best-practices/multiple-zones/#nodes-are-labeled)）。
+
+<!--
+As an addition to those constraints, Kubernetes offers [Statefulsets](/docs/concepts/workloads/controllers/statefulset/) that provide identity to Pods as well as persistent storage that "follows" these identified pods. Identity in a StatefulSet is handled by an increasing integer at the end of a pod's name. It's important to note that this integer must always be contiguous: in a StatefulSet, if pods 1 and 3 exist then pod 2 must also exist.
+-->
+作为对这些约束的补充，Kubernetes 提供了 [StatefulSets](/zh-cn/docs/concepts/workloads/controllers/statefulset/)，
+为 Pod 提供身份，以及 "跟随" 这些指定 Pod 的持久化存储。
+在 StatefulSet 中，身份是由 Pod 名称末尾一个呈增序的整数处理的。
+值得注意的是，这个整数必须始终是连续的：在一个 StatefulSet 中，
+如果 Pod 1 和 3 存在，那么 Pod 2 也必须存在。
+
+<!--
+Under the hood, CockroachCloud deploys each region of CockroachDB as a StatefulSet in its own Kubernetes cluster - see [Orchestrate CockroachDB in a Single Kubernetes Cluster](https://www.cockroachlabs.com/docs/stable/orchestrate-cockroachdb-with-kubernetes.html).
+In this article, I'll be looking at an individual region, one StatefulSet and one Kubernetes cluster which is distributed across at least three availability zones.
+-->
+在架构上，CockroachCloud 将 CockroachDB 的每个区域作为 StatefulSet 部署在自己的 Kubernetes 集群中 -- 
+参见 [Orchestrate CockroachDB in a Single Kubernetes Cluster](https://www.cockroachlabs.com/docs/stable/orchestrate-cockroachdb-with-kubernetes.html)。
+在这篇文章中，我将着眼于一个单独的区域，一个 StatefulSet 和一个至少分布有三个可用区的 Kubernetes 集群。
+
+<!--
+A three-node CockroachCloud cluster would look something like this:
+-->
+一个三节点的 CockroachCloud 集群如下所示：
+
+<!--
+![3-node, multi-zone cockroachdb cluster](image01.png)
+-->
+![3-node, multi-zone cockroachdb cluster](image01.png)
+
+<!--
+When adding additional resources to the cluster we also distribute them across zones. For the speediest user experience, we add all Kubernetes nodes at the same time and then scale up the StatefulSet.
+-->
+在向集群增加额外的资源时，我们也会将它们分布在各个区域。
+为了获得最快的用户体验，我们同时添加所有 Kubernetes 节点，然后扩大 StatefulSet 的规模。
+
+<!--
+![illustration of phases: adding Kubernetes nodes to the multi-zone cockroachdb cluster](image02.png)
+-->
+![illustration of phases: adding Kubernetes nodes to the multi-zone cockroachdb cluster](image02.png)
+
+<!--
+Note that anti-affinities are satisfied no matter the order in which pods are assigned to Kubernetes nodes. In the example, pods 0, 1 and 2 were assigned to zones A, B, and C respectively, but pods 3 and 4 were assigned in a different order, to zones B and A respectively. The anti-affinity is still satisfied because the pods are still placed in different zones.
+-->
+请注意，无论 Pod 被分配到 Kubernetes 节点的顺序如何，都会满足反亲和性。
+在这个例子中，Pod 0、1、2 分别被分配到 A、B、C 区，但 Pod 3 和 4 以不同的顺序被分配到 B 和 A 区。
+反亲和性仍然得到满足，因为 Pod 仍然被放置在不同的区域。
+
+<!--
+To remove resources from a cluster, we perform these operations in reverse order.
+-->
+要从集群中移除资源，我们以相反的顺序执行这些操作。
+
+<!--
+We first scale down the StatefulSet and then remove from the cluster any nodes lacking a CockroachDB pod.
+-->
+我们首先缩小 StatefulSet 的规模，然后从集群中移除任何缺少 CockroachDB Pod 的节点。
+
+<!--
+![illustration of phases: scaling down pods in a multi-zone cockroachdb cluster in Kubernetes](image03.png)
+-->
+![illustration of phases: scaling down pods in a multi-zone cockroachdb cluster in Kubernetes](image03.png)
+
+<!--
+Now, remember that pods in a StatefulSet of size _n_ must have ids in the range `[0,n)`. When scaling down a StatefulSet by _m_, Kubernetes removes _m_ pods, starting from the highest ordinals and moving towards the lowest, [the reverse in which they were added](/docs/concepts/workloads/controllers/statefulset/#deployment-and-scaling-guarantees).
+Consider the cluster topology below:
+-->
+现在，请记住，规模为 _n_ 的 StatefulSet 中的 Pods 一定具有 `[0,n)` 范围内的 id。
+当把一个 StatefulSet 规模缩减了 _m_ 时，Kubernetes 会移除 _m_ 个 Pod，从最高的序号开始，向最低的序号移动，
+[与它们被添加的顺序相反](/zh-cn/docs/concepts/workloads/controllers/statefulset/#deployment-and-scaling-guarantees)。
+考虑一下下面的集群拓扑结构。
+
+<!--
+![illustration: cockroachdb cluster: 6 nodes distributed across 3 availability zones](image04.png)
+-->
+![illustration: cockroachdb cluster: 6 nodes distributed across 3 availability zones](image04.png)
+
+<!--
+As ordinals 5 through 3 are removed from this cluster, the statefulset continues to have a presence across all 3 availability zones.
+-->
+当从这个集群中移除 5 号到 3 号 Pod 时，这个 StatefulSet 仍然横跨三个可用区。
+
+<!--
+![illustration: removing 3 nodes from a 6-node, 3-zone cockroachdb cluster](image05.png)
+-->
+![illustration: removing 3 nodes from a 6-node, 3-zone cockroachdb cluster](image05.png)
+
+<!--
+However, Kubernetes' scheduler doesn't _guarantee_ the placement above as we expected at first.
+-->
+然而，Kubernetes 的调度器并不像我们一开始预期的那样 _保证_ 上面的分布。
+
+<!--
+Our combined knowledge of the following is what lead to this misconception.
+* Kubernetes' ability to [automatically spread Pods across zone](/docs/setup/best-practices/multiple-zones/#pods-are-spread-across-zones)
+* The behavior that a StatefulSet with _n_ replicas, when Pods are being deployed, they are created sequentially, in order from `{0..n-1}`. See [StatefulSet](https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#deployment-and-scaling-guarantees) for more details.
+-->
+我们对以下内容的综合认识是导致这种误解的原因。
+* Kubernetes [自动跨区分配 Pod](/zh-cn/docs/setup/best-practices/multiple-zones/#pods-are-spread-across-zones) 的能力
+* 一个有 _n_ 个副本的 StatefulSet，当 Pod 被部署时，它们会按照 `{0...n-1}` 的顺序依次创建。
+更多细节见 [StatefulSet](/zh-cn/docs/concepts/workloads/controllers/statefulset/#deployment-and-scaling-guarantees)。
+
+<!--
+Consider the following topology:
+-->
+考虑以下拓扑结构：
+
+<!--
+![illustration: 6-node cockroachdb cluster distributed across 3 availability zones](image06.png)
+-->
+![illustration: 6-node cockroachdb cluster distributed across 3 availability zones](image06.png)
+
+<!--
+These pods were created in order and they are spread across all availability zones in the cluster. When ordinals 5 through 3 are terminated, this cluster will lose its presence in zone C!
+-->
+这些 Pod 是按顺序创建的，它们分布在集群里所有可用区。当序号 5 到 3 的 Pod 被终止时，
+这个集群将从 C 区消失!
+
+<!--
+![illustration: terminating 3 nodes in 6-node cluster spread across 3 availability zones, where 2/2 nodes in the same availability zone are terminated, knocking out that AZ](image07.png)
+-->
+![illustration: terminating 3 nodes in 6-node cluster spread across 3 availability zones, where 2/2 nodes in the same availability zone are terminated, knocking out that AZ](image07.png)
+
+<!--
+Worse yet, our automation, at the time, would remove Nodes A-2, B-2, and C-2. Leaving CRDB-1 in an unscheduled state as persistent volumes are only available in the zone they are initially created in.
+-->
+更糟糕的是，在这个时候，我们的自动化机制将删除节点 A-2，B-2，和 C-2。
+并让 CRDB-1 处于未调度状态，因为持久性卷只在其创建时所处的区域内可用。
+
+<!--
+To correct the latter issue, we now employ a "hunt and peck" approach to removing machines from a cluster. Rather than blindly removing Kubernetes nodes from the cluster, only nodes without a CockroachDB pod would be removed. The much more daunting task was to wrangle the Kubernetes scheduler.
+-->
+为了纠正后一个问题，我们现在采用了一种“狩猎和啄食”的方法来从集群中移除机器。
+与其盲目地从集群中移除 Kubernetes 节点，不如只移除没有 CockroachDB Pod 的节点。
+更为艰巨的任务是管理 Kubernetes 的调度器。
+
+<!--
+## A session of brainstorming left us with 3 options:
+
+### 1. Upgrade to kubernetes 1.18 and make use of Pod Topology Spread Constraints
+
+While this seems like it could have been the perfect solution, at the time of writing Kubernetes 1.18 was unavailable on the two most common managed Kubernetes services in public cloud, EKS and GKE.
+Furthermore, [pod topology spread constraints](/docs/concepts/scheduling-eviction/topology-spread-constraints/) were still a beta feature in 1.18 which meant that it [wasn't guaranteed to be available in managed clusters](https://cloud.google.com/kubernetes-engine/docs/concepts/types-of-clusters#kubernetes_feature_choices) even when v1.18 became available.
+The entire endeavour was concerningly reminiscent of checking [caniuse.com](https://caniuse.com/) when Internet Explorer 8 was still around.
+-->
+## 一场头脑风暴后我们有了 3 个选择。
+
+### 1. 升级到 kubernetes 1.18 并利用 Pod 拓扑分布约束
+
+虽然这似乎是一个完美的解决方案，但在写这篇文章的时候，Kubernetes 1.18 在公有云中两个最常见的
+托管 Kubernetes 服务（ EKS 和 GKE ）上是不可用的。
+此外，[Pod 拓扑分布约束](/zh-cn/docs/concepts/scheduling-eviction/topology-spread-constraints/)在 1.18 中仍是测试版功能，
+这意味着即使在 v1.18 可用时，它[也不能保证在托管集群中可用](https://cloud.google.com/kubernetes-engine/docs/concepts/types-of-clusters#kubernetes_feature_choices)。
+整个努力让人联想到在 Internet Explorer 8 还存在的时候访问 [caniuse.com](https://caniuse.com/)。
+
+<!--
+### 2. Deploy a statefulset _per zone_.
+
+Rather than having one StatefulSet distributed across all availability zones, a single StatefulSet with node affinities per zone would allow manual control over our zonal topology.
+Our team had considered this as an option in the past which made it particularly appealing.
+Ultimately, we decided to forego this option as it would have required a massive overhaul to our codebase and performing the migration on existing customer clusters would have been an equally large undertaking.
+-->
+### 2. 在每个区部署一个 StatefulSet。
+
+与跨所有可用区部署一个 StatefulSet 相比，在每个区部署一个带有节点亲和性的 StatefulSet 可以实现手动控制分区拓扑结构。
+我们的团队过去曾考虑过这个选项，我们也倾向此选项。
+但最终，我们决定放弃这个方案，因为这需要对我们的代码库进行大规模的修改，而且在现有的客户集群上进行迁移也是一个同样大的工程。
+
+<!--
+### 3. Write a custom Kubernetes scheduler.
+
+Thanks to an example from [Kelsey Hightower](https://github.com/kelseyhightower/scheduler) and a blog post from [Banzai Cloud](https://banzaicloud.com/blog/k8s-custom-scheduler/), we decided to dive in head first and write our own [custom Kubernetes scheduler](/docs/tasks/extend-kubernetes/configure-multiple-schedulers/).
+Once our proof-of-concept was deployed and running, we quickly discovered that the Kubernetes' scheduler is also responsible for mapping persistent volumes to the Pods that it schedules.
+The output of [`kubectl get events`](/docs/tasks/extend-kubernetes/configure-multiple-schedulers/#verifying-that-the-pods-were-scheduled-using-the-desired-schedulers) had led us to believe there was another system at play.
+In our journey to find the component responsible for storage claim mapping, we discovered the [kube-scheduler plugin system](/docs/concepts/scheduling-eviction/scheduling-framework/). Our next POC was a `Filter` plugin that determined the appropriate availability zone by pod ordinal, and it worked flawlessly!
+
+Our [custom scheduler plugin](https://github.com/cockroachlabs/crl-scheduler) is open source and runs in all of our CockroachCloud clusters.
+Having control over how our StatefulSet pods are being scheduled has let us scale out with confidence.
+We may look into retiring our plugin once pod topology spread constraints are available in GKE and EKS, but the maintenance overhead has been surprisingly low.
+Better still: the plugin's implementation is orthogonal to our business logic. Deploying it, or retiring it for that matter, is as simple as changing the `schedulerName` field in our StatefulSet definitions.
+
+---
+
+_[Chris Seto](https://twitter.com/_ostriches) is a software engineer at Cockroach Labs and works on their Kubernetes automation for [CockroachCloud](https://cockroachlabs.cloud), CockroachDB._
+-->
+
+### 3. 编写一个自定义的 Kubernetes 调度器
+
+感谢 [Kelsey Hightower](https://github.com/kelseyhightower/scheduler) 的例子和 
+[Banzai Cloud](https://banzaicloud.com/blog/k8s-custom-scheduler/) 的博文，我们决定投入进去，编写自己的[自定义 Kubernetes 调度器](/zh-cn/docs/tasks/extend-kubernetes/configure-multiple-schedulers/)。
+一旦我们的概念验证被部署和运行，我们很快就发现，Kubernetes 的调度器也负责将持久化卷映射到它所调度的 Pod 上。
+[`kubectl get events`](/zh-cn/docs/tasks/extend-kubernetes/configure-multiple-schedulers/#verifying-that-the-pods-wer-scheduled-using-the-desired-schedulers)
+的输出让我们相信有另一个系统在发挥作用。
+在我们寻找负责存储声明映射的组件的过程中，我们发现了 
+[kube-scheduler 插件系统](/zh-cn/docs/concepts/scheduling-eviction/scheduling-framework/)。
+我们的下一个 POC 是一个"过滤器"插件，它通过 Pod 的序号来确定适当的可用区域，并且工作得非常完美。
+
+我们的[自定义调度器插件](https://github.com/cockroachlabs/crl-scheduler)是开源的，并在我们所有的 CockroachCloud 集群中运行。
+对 StatefulSet Pod 的调度方式有掌控力，让我们有信心扩大规模。
+一旦 GKE 和 EKS 中的 Pod 拓扑分布约束可用，我们可能会考虑让我们的插件退役，但其维护的开销出乎意料地低。
+更好的是：该插件的实现与我们的业务逻辑是横向的。部署它，或取消它，就像改变 StatefulSet 定义中的 "schedulerName" 字段一样简单。
+
+---
+
+[Chris Seto](https://twitter.com/_ostriches) 是 Cockroach 实验室的一名软件工程师，负责 
+[CockroachCloud](https://cockroachlabs.cloud) CockroachDB 的 Kubernetes 自动化。
diff --git a/content/zh/blog/_posts/2020-10-01-contributing-to-the-development-guide/index.md b/content/zh-cn/blog/_posts/2020-10-01-contributing-to-the-development-guide/index.md
similarity index 100%
rename from content/zh/blog/_posts/2020-10-01-contributing-to-the-development-guide/index.md
rename to content/zh-cn/blog/_posts/2020-10-01-contributing-to-the-development-guide/index.md
diff --git a/content/zh/blog/_posts/2020-10-01-contributing-to-the-development-guide/jorge-castro-code-of-conduct.jpg b/content/zh-cn/blog/_posts/2020-10-01-contributing-to-the-development-guide/jorge-castro-code-of-conduct.jpg
similarity index 100%
rename from content/zh/blog/_posts/2020-10-01-contributing-to-the-development-guide/jorge-castro-code-of-conduct.jpg
rename to content/zh-cn/blog/_posts/2020-10-01-contributing-to-the-development-guide/jorge-castro-code-of-conduct.jpg
diff --git a/content/zh/blog/_posts/2020-12-02-dockershim-faq.md b/content/zh-cn/blog/_posts/2020-12-02-dockershim-faq.md
similarity index 85%
rename from content/zh/blog/_posts/2020-12-02-dockershim-faq.md
rename to content/zh-cn/blog/_posts/2020-12-02-dockershim-faq.md
index 65292d90ac..a384d8544c 100644
--- a/content/zh/blog/_posts/2020-12-02-dockershim-faq.md
+++ b/content/zh-cn/blog/_posts/2020-12-02-dockershim-faq.md
@@ -9,20 +9,28 @@ layout: blog
 title: "Dockershim Deprecation FAQ"
 date: 2020-12-02
 slug: dockershim-faq
-aliases: [ '/dockershim' ]
 -->
 
+<!--
+_**Update**: There is a [newer version](/blog/2022/02/17/dockershim-faq/) of this article available._
+-->
+_**更新**：本文有[较新版本](/zh-cn/blog/2022/02/17/dockershim-faq/)。_
+
 <!-- 
 This document goes over some frequently asked questions regarding the Dockershim
 deprecation announced as a part of the Kubernetes v1.20 release. For more detail
 on the deprecation of Docker as a container runtime for Kubernetes kubelets, and
 what that means, check out the blog post
 [Don't Panic: Kubernetes and Docker](/blog/2020/12/02/dont-panic-kubernetes-and-docker/).
+
+Also, you can read [check whether Dockershim removal affects you](/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you/) to check whether it does.
 -->
 本文回顾了自 Kubernetes v1.20 版宣布弃用 Dockershim 以来所引发的一些常见问题。
 关于 Kubernetes kubelets 从容器运行时的角度弃用 Docker 的细节以及这些细节背后的含义，请参考博文
 [别慌: Kubernetes 和 Docker](/blog/2020/12/02/dont-panic-kubernetes-and-docker/)。
 
+此外，你可以阅读[检查 Dockershim 移除是否影响你](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you/)以检查它是否会影响你。
+
 <!-- 
 ### Why is dockershim being deprecated?
 -->
@@ -45,7 +53,7 @@ You can read more about the community discussion and planning in the
 -->
 Dockershim 向来都是一个临时解决方案（因此得名：shim）。
 你可以进一步阅读
-[移除 Kubernetes 增强方案 Dockershim](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/1985-remove-dockershim)
+[移除 Dockershim 这一 Kubernetes 增强方案][drkep]
 以了解相关的社区讨论和计划。
 
 <!-- 
@@ -57,6 +65,7 @@ those areas.
 此外，与 dockershim 不兼容的一些特性，例如：控制组（cgoups）v2 和用户名字空间（user namespace），已经在新的 CRI 运行时中被实现。
 移除对 dockershim 的支持将加速这些领域的发展。
 
+[drkep]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2221-remove-dockershim
 <!-- 
 ### Can I still use Docker in Kubernetes 1.20?
 -->
@@ -67,7 +76,7 @@ Yes, the only thing changing in 1.20 is a single warning log printed at [kubelet
 startup if using Docker as the runtime.
 -->
 当然可以，在 1.20 版本中仅有的改变就是：如果使用 Docker 运行时，启动 
-[kubelet](/zh/docs/reference/command-line-tools-reference/kubelet/) 
+[kubelet](/zh-cn/docs/reference/command-line-tools-reference/kubelet/) 
 的过程中将打印一条警告日志。
 
 <!-- 
@@ -78,14 +87,35 @@ startup if using Docker as the runtime.
 <!-- 
 Given the impact of this change, we are using an extended deprecation timeline.
 It will not be removed before Kubernetes 1.22, meaning the earliest release without
-dockershim would be 1.23 in late 2021. We will be working closely with vendors
-and other ecosystem groups to ensure a smooth transition and will evaluate things
-as the situation evolves.
+dockershim would be 1.23 in late 2021. 
+_Update_: removal of dockershim is scheduled for Kubernetes v1.24, see 
+[Dockershim Removal Kubernetes Enhancement Proposal][drkep].
+We will be working closely with vendors and other ecosystem groups to ensure a smooth transition and will evaluate 
+things as the situation evolves.
 -->
 考虑到此改变带来的影响，我们使用了一个加长的废弃时间表。
 在 Kubernetes 1.22 版之前，它不会被彻底移除；换句话说，dockershim 被移除的最早版本会是 2021 年底发布的 1.23 版。
+_更新_：dockershim 计划在 Kubernetes 1.24 版被移除，
+请参阅[移除 Dockershim 这一 Kubernetes 增强方案][drkep]。
 我们将与供应商以及其他生态团队紧密合作，确保顺利过渡，并将依据事态的发展评估后续事项。
 
+
+<!--
+### Can I still use dockershim after it is removed from Kubernetes?
+-->
+### 从 Kubernetes 中移除后我还能使用 dockershim 吗？ {#can-i-still-use-dockershim-after-it-is-removed-from-kubernetes}
+
+<!--
+Update:
+Mirantis and Docker have [committed][mirantis] to maintaining the dockershim after
+it is removed from Kubernetes.
+-->
+更新：Mirantis 和 Docker [已承诺][mirantis]在 dockershim 从 Kubernetes
+中删除后对其进行维护。
+
+[mirantis]: https://www.mirantis.com/blog/mirantis-to-take-over-support-of-kubernetes-dockershim-2/
+
+
 <!-- 
 ### Will my existing Docker images still work?
 -->
@@ -148,11 +178,11 @@ related projects follow a similar pattern as well, demonstrating the stability a
 usability of other container runtimes. As an example, OpenShift 4.x has been
 using the [CRI-O] runtime in production since June 2019.
 -->
-此外，[kind](https://kind.sigs.k8s.io/) 项目使用 containerd 已经有年头了，
+此外，[kind] 项目使用 containerd 已经有年头了，
 并且在这个场景中，稳定性还明显得到提升。
 Kind 和 containerd 每天都会做多次协调，以验证对 Kubernetes 代码库的所有更改。
 其他相关项目也遵循同样的模式，从而展示了其他容器运行时的稳定性和可用性。
-例如，OpenShift 4.x 从 2019 年 6 月以来，就一直在生产环境中使用 [CRI-O](https://cri-o.io/) 运行时。
+例如，OpenShift 4.x 从 2019 年 6 月以来，就一直在生产环境中使用 [CRI-O] 运行时。
 
 <!-- 
 For other examples and references you can look at the adopters of containerd and
@@ -166,6 +196,11 @@ CRI-O, two container runtimes under the Cloud Native Computing Foundation ([CNCF
 - [containerd](https://github.com/containerd/containerd/blob/master/ADOPTERS.md)
 - [CRI-O](https://github.com/cri-o/cri-o/blob/master/ADOPTERS.md)
 
+[CRI-O]: https://cri-o.io/
+[kind]: https://kind.sigs.k8s.io/
+[CNCF]: https://cncf.io
+
+
 <!-- 
 ### People keep referencing OCI, what is that?
 -->
@@ -251,14 +286,15 @@ runtime where possible.
 <!-- 
 Another thing to look out for is anything expecting to run for system maintenance
 or nested inside a container when building images will no longer work. For the
-former, you can use the [`crictl`][cr] tool as a drop-in replacement (see [mapping from docker cli to crictl](https://kubernetes.io/docs/tasks/debug-application-cluster/crictl/#mapping-from-docker-cli-to-crictl)) and for the
+former, you can use the [`crictl`][cr] tool as a drop-in replacement (see [mapping from dockercli to crictl](/docs/reference/tools/map-crictl-dockercli/)) and for the
 latter you can use newer container build options like [img], [buildah],
 [kaniko], or [buildkit-cli-for-kubectl] that don’t require Docker.
 -->
 另外还有一个需要关注的点，那就是当创建镜像时，系统维护或嵌入容器方面的任务将无法工作。
 对于前者，可以用 [`crictl`](https://github.com/kubernetes-sigs/cri-tools) 工具作为临时替代方案
-(参见 [从 docker 命令映射到 crictl](https://kubernetes.io/zh/docs/tasks/debug-application-cluster/crictl/#mapping-from-docker-cli-to-crictl))；
+(参见[从 docker 命令映射到 crictl](/zh-cn/docs/reference/tools/map-crictl-dockercli/))；
 对于后者，可以用新的容器创建选项，比如
+[cr](https://github.com/kubernetes-sigs/cri-tools)、
 [img](https://github.com/genuinetools/img)、
 [buildah](https://github.com/containers/buildah)、
 [kaniko](https://github.com/GoogleContainerTools/kaniko)、或 
@@ -279,12 +315,12 @@ For instructions on how to use containerd and CRI-O with Kubernetes, see the
 Kubernetes documentation on [Container Runtimes]
 -->
 对于如何协同 Kubernetes 使用 containerd 和 CRI-O 的说明，参见 Kubernetes 文档中这部分：
-[容器运行时](/zh/docs/setup/production-environment/container-runtimes)。
+[容器运行时](/zh-cn/docs/setup/production-environment/container-runtimes)。
 
 <!-- 
 ### What if I have more questions?
 -->
-### 我还有问题怎么办？{#what-if-I-have-more-question}
+### 我还有问题怎么办？{#what-if-I-have-more-questions}
 
 <!-- 
 If you use a vendor-supported Kubernetes distribution, you can ask them about
@@ -292,7 +328,7 @@ upgrade plans for their products. For end-user questions, please post them
 to our end user community forum: https://discuss.kubernetes.io/. 
 -->
 如果你使用了一个有供应商支持的 Kubernetes 发行版，你可以咨询供应商他们产品的升级计划。
-对于最终用户的问题，请把问题发到我们的最终用户社区的论坛：https://discuss.kubernetes.io/。
+对于最终用户的问题，请把问题发到我们的最终用户社区的[论坛](https://discuss.kubernetes.io/)。
 
 <!-- 
 You can also check out the excellent blog post
diff --git a/content/zh/blog/_posts/2020-12-02-dont-panic-kubernetes-and-docker.md b/content/zh-cn/blog/_posts/2020-12-02-dont-panic-kubernetes-and-docker.md
similarity index 90%
rename from content/zh/blog/_posts/2020-12-02-dont-panic-kubernetes-and-docker.md
rename to content/zh-cn/blog/_posts/2020-12-02-dont-panic-kubernetes-and-docker.md
index e14f7cc846..b49ce99167 100644
--- a/content/zh/blog/_posts/2020-12-02-dont-panic-kubernetes-and-docker.md
+++ b/content/zh-cn/blog/_posts/2020-12-02-dont-panic-kubernetes-and-docker.md
@@ -3,16 +3,27 @@ layout: blog
 title: "别慌: Kubernetes 和 Docker"
 date: 2020-12-02
 slug: dont-panic-kubernetes-and-docker
+evergreen: true
 ---
 <!-- 
 layout: blog
 title: "Don't Panic: Kubernetes and Docker"
 date: 2020-12-02
 slug: dont-panic-kubernetes-and-docker
+evergreen: true
 -->
 
 **作者：** Jorge Castro, Duffie Cooley, Kat Cosgrove, Justin Garrison, Noah Kantrowitz, Bob Killen, Rey Lejano, Dan “POP” Papandrea, Jeffrey Sica, Davanum “Dims” Srinivas
 
+<!--
+**Update:** _Kubernetes support for Docker via `dockershim` is now removed.
+For more information, read the [removal FAQ](/dockershim).
+You can also discuss the deprecation via a dedicated [GitHub issue](https://github.com/kubernetes/kubernetes/issues/106917)._
+-->
+**更新**：Kubernetes 通过 `dockershim` 对 Docker 的支持现已移除。
+有关更多信息，请阅读[移除 FAQ](/zh-cn/dockershim)。
+你还可以通过专门的 [GitHub issue](https://github.com/kubernetes/kubernetes/issues/106917) 讨论弃用。
+
 <!-- 
 Kubernetes is [deprecating
 Docker](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.20.md#deprecation)
@@ -49,16 +60,15 @@ build` can still run in your Kubernetes cluster.
 Docker 仍然是构建容器的利器，使用命令 `docker build` 构建的镜像在 Kubernetes 集群中仍然可以运行。
 
 <!-- 
-If you’re using a managed Kubernetes service like GKE, EKS, or AKS (which [defaults to containerd](https://github.com/Azure/AKS/releases/tag/2020-11-16)) you will need to
+If you’re using a managed Kubernetes service like AKS, EkS or GKE, you will need to
 make sure your worker nodes are using a supported container runtime before
 Docker support is removed in a future version of Kubernetes. If you have node
 customizations you may need to update them based on your environment and runtime
 requirements. Please work with your service provider to ensure proper upgrade
 testing and planning. 
 -->
-如果你正在使用 GKE、EKS、或 AKS 
-([默认使用 containerd](https://github.com/Azure/AKS/releases/tag/2020-11-16))  
-这类托管 Kubernetes 服务，你需要在 Kubernetes 后续版本移除对 Docker 支持之前，
+如果你正在使用 GKE、EKS、或 AKS 这类托管 Kubernetes 服务，
+你需要在 Kubernetes 后续版本移除对 Docker 支持之前，
 确认工作节点使用了被支持的容器运行时。
 如果你的节点被定制过，你可能需要根据你自己的环境和运行时需求更新它们。
 请与你的服务供应商协作，确保做出适当的升级测试和计划。
@@ -66,15 +76,15 @@ testing and planning.
 <!-- 
 If you’re rolling your own clusters, you will also need to make changes to avoid
 your clusters breaking. At v1.20, you will get a deprecation warning for Docker.
-When Docker runtime support is removed in a future release (currently planned
-for the 1.22 release in late 2021) of Kubernetes it will no longer be supported
+When Docker runtime support is removed in a future release (<del>currently planned
+for the 1.22 release in late 2021</del>) of Kubernetes it will no longer be supported
 and you will need to switch to one of the other compliant container runtimes,
 like containerd or CRI-O. Just make sure that the runtime you choose supports
 the docker daemon configurations you currently use (e.g. logging).
 -->
 如果你正在运营你自己的集群，那还应该做些工作，以避免集群中断。
 在 v1.20 版中，你仅会得到一个 Docker 的弃用警告。
-当对 Docker 运行时的支持在 Kubernetes 某个后续发行版（目前的计划是 2021 年晚些时候的 1.22 版）中被移除时，
+当对 Docker 运行时的支持在 Kubernetes 某个后续发行版（<del>目前的计划是 2021 年晚些时候的 1.22 版</del>）中被移除时，
 你需要切换到 containerd 或 CRI-O 等兼容的容器运行时。
 只要确保你选择的运行时支持你当前使用的 Docker 守护进程配置（例如 logging）。
 
@@ -204,7 +214,7 @@ Kubernetes 有很多变化中的功能，没有人是100%的专家。
 我们希望这已经回答了你的大部分问题，并缓解了一些焦虑！❤️
 
 <!-- 
-Looking for more answers? Check out our accompanying [Dockershim Deprecation FAQ](/blog/2020/12/02/dockershim-faq/).
+Looking for more answers? Check out our accompanying [Dockershim Removal FAQ](/blog/2022/02/17/dockershim-faq/) _(updated February 2022)_.
 -->
 还在寻求更多答案吗？请参考我们附带的
-[弃用 Dockershim 的常见问题](/zh/blog/2020/12/02/dockershim-faq/)。
+[移除 Dockershim 的常见问题](/zh-cn/blog/2020/12/02/dockershim-faq/) _(2022年2月更新)_。
diff --git a/content/zh/blog/_posts/2020-12-08-kubernetes-release-1.20.md b/content/zh-cn/blog/_posts/2020-12-08-kubernetes-release-1.20.md
similarity index 98%
rename from content/zh/blog/_posts/2020-12-08-kubernetes-release-1.20.md
rename to content/zh-cn/blog/_posts/2020-12-08-kubernetes-release-1.20.md
index b8ab648317..ccc01f3b33 100644
--- a/content/zh/blog/_posts/2020-12-08-kubernetes-release-1.20.md
+++ b/content/zh-cn/blog/_posts/2020-12-08-kubernetes-release-1.20.md
@@ -3,6 +3,7 @@ layout: blog
 title: 'Kubernetes 1.20: 最新版本'
 date: 2020-12-08
 slug: kubernetes-1-20-release-announcement
+evergreen: true
 ---
 
 <!-- ---
@@ -10,6 +11,7 @@ layout: blog
 title: 'Kubernetes 1.20: The Raddest Release'
 date: 2020-12-08
 slug: kubernetes-1-20-release-announcement
+evergreen: true
 --- -->
 
 **作者:** [Kubernetes 1.20 发布团队](https://github.com/kubernetes/sig-release/blob/master/releases/release-1.20/release_team.md)
@@ -53,8 +55,8 @@ slug: kubernetes-1-20-release-announcement
 <!-- Note that as a new built-in command, `kubectl debug` takes priority over any kubectl plugin named “debug”. You must rename the affected plugin. -->
 请注意，作为新的内置命令，`kubectl debug` 优先于任何名为 “debug” 的 kubectl 插件。你必须重命名受影响的插件。
 
-<!-- Invocations using `kubectl alpha debug` are now deprecated and will be removed in a subsequent release. Update your scripts to use `kubectl debug`. For more information about `kubectl debug`, see [Debugging Running Pods](https://kubernetes.io/docs/tasks/debug-application-cluster/debug-running-pod/). -->
-`kubectl alpha debug` 现在不推荐使用，并将在后续版本中删除。更新你的脚本以使用 `kubectl debug`。 有关更多信息 `kubectl debug`，请参阅[调试正在运行的 Pod]((https://kubernetes.io/zh/docs/tasks/debug-application-cluster/debug-running-pod/)。
+<!-- Invocations using `kubectl alpha debug` are now deprecated and will be removed in a subsequent release. Update your scripts to use `kubectl debug`. For more information about `kubectl debug`, see [Debugging Running Pods](https://kubernetes.io/docs/tasks/debug/debug-application/debug-running-pod/). -->
+`kubectl alpha debug` 现在不推荐使用，并将在后续版本中删除。更新你的脚本以使用 `kubectl debug`。 有关更多信息 `kubectl debug`，请参阅[调试正在运行的 Pod]((https://kubernetes.io/zh-cn/docs/tasks/debug/debug-application/debug-running-pod/)。
 
 <!-- ### Beta: API Priority and Fairness -->
 ### 测试版：API 优先级和公平性 {#beta-api-priority-and-fairness)
@@ -108,7 +110,7 @@ Kubernetes 社区写了一篇关于弃用的详细[博客文章](https://blog.k8
 新引入的 `ExecProbeTimeout` 特性门控所提供的修复使集群操作员能够恢复到以前的行为，但这种行为将在后续版本中锁定并删除。为了恢复到以前的行为，集群运营商应该将此特性门控设置为 `false`。
 
 <!-- Please review the updated documentation regarding [configuring probes](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes) for more details. -->
-有关更多详细信息，请查看有关配置探针的[更新文档](/zh/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes)。
+有关更多详细信息，请查看有关配置探针的[更新文档](/zh-cn/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes)。
 
 <!-- ## Other Updates -->
 ## 其他更新 {#other-updates}
diff --git a/content/zh/blog/_posts/2020-12-10-Pod-Impersonation-and-Short-lived-Volumes-in-CSI-Drivers.md b/content/zh-cn/blog/_posts/2020-12-10-Pod-Impersonation-and-Short-lived-Volumes-in-CSI-Drivers.md
similarity index 100%
rename from content/zh/blog/_posts/2020-12-10-Pod-Impersonation-and-Short-lived-Volumes-in-CSI-Drivers.md
rename to content/zh-cn/blog/_posts/2020-12-10-Pod-Impersonation-and-Short-lived-Volumes-in-CSI-Drivers.md
diff --git a/content/zh-cn/blog/_posts/2021-04-16-volume-health-monitoring-alpha.md b/content/zh-cn/blog/_posts/2021-04-16-volume-health-monitoring-alpha.md
new file mode 100644
index 0000000000..ba17bc2a6e
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2021-04-16-volume-health-monitoring-alpha.md
@@ -0,0 +1,270 @@
+---
+layout: blog
+title: "卷健康监控的 Alpha 更新"
+date: 2021-04-16
+slug: volume-health-monitoring-alpha-update
+---
+<!--
+layout: blog
+title: "Volume Health Monitoring Alpha Update"
+date: 2021-04-16
+slug: volume-health-monitoring-alpha-update
+-->
+
+<!--
+**Author:** Xing Yang (VMware)
+-->
+**作者：** Xing Yang (VMware)
+
+<!--
+The CSI Volume Health Monitoring feature, originally introduced in 1.19 has undergone a large update for the 1.21 release.
+-->
+最初在 1.19 中引入的 CSI 卷健康监控功能在 1.21 版本中进行了大规模更新。
+
+<!--
+## Why add Volume Health Monitoring to Kubernetes?
+-->
+## 为什么要向 Kubernetes 添加卷健康监控？
+
+<!--
+Without Volume Health Monitoring, Kubernetes has no knowledge of the state of the underlying volumes of a storage system after a PVC is provisioned and used by a Pod. Many things could happen to the underlying storage system after a volume is provisioned in Kubernetes. For example, the volume could be deleted by accident outside of Kubernetes, the disk that the volume resides on could fail, it could be out of capacity, the disk may be degraded which affects its performance, and so on. Even when the volume is mounted on a pod and used by an application, there could be problems later on such as read/write I/O errors, file system corruption, accidental unmounting of the volume outside of Kubernetes, etc. It is very hard to debug and detect root causes when something happened like this.
+-->
+如果没有卷健康监控，在 PVC 被 Pod 配置和使用后，Kubernetes 将不知道存储系统的底层卷的状态。
+在 Kubernetes 中配置卷后，底层存储系统可能会发生很多事情。
+例如，卷可能在 Kubernetes 之外被意外删除、卷所在的磁盘可能发生故障、容量不足、磁盘可能被降级而影响其性能等等。
+即使卷被挂载到 Pod 上并被应用程序使用，以后也可能会出现诸如读/写 I/O 错误、文件系统损坏、在 Kubernetes 之外被意外卸载卷等问题。
+当发生这样的事情时，调试和检测根本原因是非常困难的。
+
+<!--
+Volume health monitoring can be very beneficial to Kubernetes users. It can communicate with the CSI driver to retrieve errors detected by the underlying storage system. PVC events can be reported up to the user to take action. For example, if the volume is out of capacity, they could request a volume expansion to get more space.
+-->
+卷健康监控对 Kubernetes 用户非常有益。
+它可以与 CSI 驱动程序通信以检索到底层存储系统检测到的错误。
+用户可以收到报告上来的 PVC 事件继而采取行动。
+例如，如果卷容量不足，他们可以请求卷扩展以获得更多空间。
+
+<!--
+## What is Volume Health Monitoring?
+-->
+## 什么是卷健康监控？
+
+<!--
+CSI Volume Health Monitoring allows CSI Drivers to detect abnormal volume conditions from the underlying storage systems and report them as events on PVCs or Pods.
+-->
+CSI 卷健康监控允许 CSI 驱动程序检测来自底层存储系统的异常卷状况，并将其作为 PVC 或 Pod 上的事件报送。
+
+<!--
+The Kubernetes components that monitor the volumes and report events with volume health information include the following:
+-->
+监控卷和使用卷健康信息报送事件的 Kubernetes 组件包括：
+
+<!--
+* Kubelet, in addition to gathering the existing volume stats will watch the volume health of the PVCs on that node. If a PVC has an abnormal health condition, an event will be reported on the pod object using the PVC. If multiple pods are using the same PVC, events will be reported on all pods using that PVC.
+-->
+* Kubelet 除了收集现有的卷统计信息外，还将观察该节点上 PVC 的卷健康状况。
+  如果 PVC 的健康状况异常，则会在使用 PVC 的 Pod 对象上报送事件。
+  如果多个 Pod 使用相同的 PVC，则将在使用该 PVC 的所有 Pod 上报送事件。 
+<!--
+* An [External Volume Health Monitor Controller](https://github.com/kubernetes-csi/external-health-monitor) watches volume health of the PVCs and reports events on the PVCs.
+-->
+* 一个[外部卷健康监视控制器](https://github.com/kubernetes-csi/external-health-monitor)监视 PVC 的卷健康并报告 PVC 上的事件。
+
+<!--
+Note that the node side volume health monitoring logic was an external agent when this feature was first introduced in the Kubernetes 1.19 release. In Kubernetes 1.21, the node side volume health monitoring logic was moved from the external agent into the Kubelet, to avoid making duplicate CSI function calls. With this change in 1.21, a new alpha [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) `CSIVolumeHealth` was introduced for the volume health monitoring logic in Kubelet.
+-->
+请注意，在 Kubernetes 1.19 版本中首次引入此功能时，节点侧卷健康监控逻辑是一个外部代理。
+在 Kubernetes 1.21 中，节点侧卷健康监控逻辑从外部代理移至 Kubelet，以避免 CSI 函数重复调用。
+随着 1.21 中的这一变化，为 Kubelet 中的卷健康监控逻辑引入了一个新的 alpha [特性门](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/) `CSIVolumeHealth`。 
+
+<!--
+Currently the Volume Health Monitoring feature is informational only as it only reports abnormal volume health events on PVCs or Pods. Users will need to check these events and manually fix the problems. This feature serves as a stepping stone towards programmatic detection and resolution of volume health issues by Kubernetes in the future.
+-->
+目前，卷健康监控功能仅供参考，因为它只报送 PVC 或 Pod 上的异常卷健康事件。
+用户将需要检查这些事件并手动修复问题。
+此功能可作为 Kubernetes 未来以编程方式检测和解决卷健康问题的基石。
+
+<!--
+## How do I use Volume Health on my Kubernetes Cluster?
+-->
+## 如何在 Kubernetes 集群上使用卷健康？
+
+<!--
+To use the Volume Health feature, first make sure the CSI driver you are using supports this feature. Refer to this [CSI drivers doc](https://kubernetes-csi.github.io/docs/drivers.html) to find out which CSI drivers support this feature.
+-->
+要使用卷健康功能，首先确保你使用的 CSI 驱动程序支持此功能。
+请参阅此 [CSI 驱动程序文档](https://kubernetes-csi.github.io/docs/drivers.html)以了解哪些 CSI 驱动程序支持此功能。
+
+<!--
+To enable Volume Health Monitoring from the node side, the alpha feature gate `CSIVolumeHealth` needs to be enabled.
+-->
+要从节点侧启用卷健康监控，需要启用 alpha 特性门 `CSIVolumeHealth`。
+
+<!--
+If a CSI driver supports the Volume Health Monitoring feature from the controller side, events regarding abnormal volume conditions will be recorded on PVCs.
+-->
+如果 CSI 驱动程序支持控制器端的卷健康监控功能，则有关异常卷条件的事件将记录在 PVC 上。
+
+<!--
+If a CSI driver supports the Volume Health Monitoring feature from the controller side, user can also get events regarding node failures if the `enable-node-watcher` flag is set to true when deploying the External Health Monitor Controller. When a node failure event is detected, an event will be reported on the PVC to indicate that pods using this PVC are on a failed node.
+-->
+如果 CSI 驱动程序支持控制器端的卷健康监控功能，
+当部署外部健康监控控制器时 `enable-node-watcher` 标志设置为 true，用户还可以获得有关节点故障的事件。
+当检测到节点故障事件时，会在 PVC 上报送一个事件，指示使用该 PVC 的 Pod 在故障节点上。
+
+<!--
+If a CSI driver supports the Volume Health Monitoring feature from the node side, events regarding abnormal volume conditions will be recorded on pods using the PVCs.
+-->
+如果 CSI 驱动程序支持节点端的卷健康监控功能，则有关异常卷条件的事件将使用 PVC 记录在 Pod 上。
+
+<!--
+## As a storage vendor, how do I add support for volume health to my CSI driver?
+-->
+## 作为存储供应商，如何向 CSI 驱动程序添加对卷健康的支持？
+
+<!--
+Volume Health Monitoring includes two parts:
+* An External Volume Health Monitoring Controller monitors volume health from the controller side.
+* Kubelet monitors volume health from the node side.
+-->
+卷健康监控包括两个部分：
+* 外部卷健康监控控制器从控制器端监控卷健康。
+* Kubelet 从节点端监控卷的健康状况。
+
+<!--
+For details, see the [CSI spec](https://github.com/container-storage-interface/spec/blob/master/spec.md) and the [Kubernetes-CSI Driver Developer Guide](https://kubernetes-csi.github.io/docs/volume-health-monitor.html).
+-->
+有关详细信息，请参阅 [CSI 规约](https://github.com/container-storage-interface/spec/blob/master/spec.md)
+和 [Kubernetes-CSI 驱动开发者指南](https://kubernetes-csi.github.io/docs/volume-health-monitor.html)。
+
+<!--
+There is a sample implementation for volume health in [CSI host path driver](https://github.com/kubernetes-csi/csi-driver-host-path).
+-->
+[CSI 主机路径驱动程序](https://github.com/kubernetes-csi/csi-driver-host-path)中有一个卷健康的示例实现。
+
+<!--
+### Controller Side Volume Health Monitoring
+-->
+### 控制器端卷健康监控
+
+<!--
+To learn how to deploy the External Volume Health Monitoring controller, see [CSI external-health-monitor-controller](https://kubernetes-csi.github.io/docs/external-health-monitor-controller.html) in the CSI documentation.
+-->
+要了解如何部署外部卷健康监控控制器，
+请参阅 CSI 文档中的 [CSI external-health-monitor-controller](https://kubernetes-csi.github.io/docs/external-health-monitor-controller.html)。
+
+<!--
+The External Health Monitor Controller calls either `ListVolumes` or `ControllerGetVolume` CSI RPC and reports VolumeConditionAbnormal events with messages on PVCs if abnormal volume conditions are detected. Only CSI drivers with `LIST_VOLUMES` and `VOLUME_CONDITION` controller capability or `GET_VOLUME` and `VOLUME_CONDITION` controller capability support Volume Health Monitoring in the external controller.
+-->
+如果检测到异常卷条件，
+外部健康监视器控制器调用 `ListVolumes` 或者 `ControllerGetVolume` CSI RPC 并报送 VolumeConditionAbnormal 事件以及 PVC 上的消息。
+只有具有 `LIST_VOLUMES` 和 `VOLUME_CONDITION` 控制器能力、
+或者具有 `GET_VOLUME` 和 `VOLUME_CONDITION` 能力的 CSI 驱动程序才支持外部控制器中的卷健康监控。
+
+<!--
+To implement the volume health feature from the controller side, a CSI driver **must** add support for the new controller capabilities.
+-->
+要从控制器端实现卷健康功能，CSI 驱动程序**必须**添加对新控制器功能的支持。
+
+<!--
+If a CSI driver supports `LIST_VOLUMES` and `VOLUME_CONDITION` controller capabilities, it **must** implement controller RPC `ListVolumes` and report the volume condition in the response.
+-->
+如果 CSI 驱动程序支持 `LIST_VOLUMES` 和 `VOLUME_CONDITION` 控制器功能，它**必须**实现控制器 RPC `ListVolumes` 并在响应中报送卷状况。
+
+<!--
+If a CSI driver supports `GET_VOLUME` and `VOLUME_CONDITION` controller capability, it **must** implement controller PRC `ControllerGetVolume` and report the volume condition in the response.
+-->
+如果 CSI 驱动程序支持 `GET_VOLUME` 和 `VOLUME_CONDITION` 控制器功能，它**必须**实现控制器 PRC `ControllerGetVolume` 并在响应中报送卷状况。
+
+<!--
+If a CSI driver supports `LIST_VOLUMES`, `GET_VOLUME`, and `VOLUME_CONDITION` controller capabilities, only `ListVolumes` CSI RPC will be invoked by the External Health Monitor Controller.
+-->
+如果 CSI 驱动程序支持 `LIST_VOLUMES`、`GET_VOLUME` 和 `VOLUME_CONDITION` 控制器功能，则外部健康监视控制器将仅调用 `ListVolumes` CSI RPC。
+
+<!--
+### Node Side Volume Health Monitoring
+-->
+### 节点侧卷健康监控
+
+<!--
+Kubelet calls `NodeGetVolumeStats` CSI RPC and reports VolumeConditionAbnormal events with messages on Pods if abnormal volume conditions are detected. Only CSI drivers with `VOLUME_CONDITION` node capability support Volume Health Monitoring in Kubelet.
+-->
+如果检测到异常的卷条件，
+Kubelet 会调用 `NodeGetVolumeStats` CSI RPC 并报送 VolumeConditionAbnormal 事件以及 Pod 上的信息。
+只有具有 `VOLUME_CONDITION` 节点功能的 CSI 驱动程序才支持 Kubelet 中的卷健康监控。
+
+<!--
+To implement the volume health feature from the node side, a CSI driver **must** add support for the new node capabilities.
+-->
+要从节点端实现卷健康功能，CSI 驱动程序**必须**添加对新节点功能的支持。
+
+<!--
+If a CSI driver supports `VOLUME_CONDITION` node capability, it **must** report the volume condition in node RPC `NodeGetVoumeStats`.
+-->
+如果 CSI 驱动程序支持 `VOLUME_CONDITION` 节点能力，它**必须**在节点 RPC `NodeGetVoumeStats` 中报送卷状况。
+
+<!--
+## What’s next?
+-->
+## 下一步是什么？
+
+<!--
+Depending on feedback and adoption, the Kubernetes team plans to push the CSI volume health implementation to beta in either 1.22 or 1.23.
+-->
+根据反馈和采纳情况，Kubernetes 团队计划在 1.22 或 1.23 中将 CSI 卷健康实施推向 beta。
+
+<!--
+We are also exploring how to use volume health information for programmatic detection and automatic reconcile in Kubernetes.
+-->
+我们还在探索如何在 Kubernetes 中使用卷健康信息进行编程检测和自动协调。
+
+<!--
+## How can I learn more?
+-->
+## 如何了解更多？
+
+<!--
+To learn the design details for Volume Health Monitoring, read the [Volume Health Monitor](https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/1432-volume-health-monitor) enhancement proposal.
+-->
+要了解卷健康监控的设计细节，请阅读[卷健康监控](https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/1432-volume-health-monitor)增强提案。
+
+<!--
+The Volume Health Monitor controller source code is at [https://github.com/kubernetes-csi/external-health-monitor](https://github.com/kubernetes-csi/external-health-monitor).
+-->
+卷健康检测控制器源代码位于：
+[https://github.com/kubernetes-csi/external-health-monitor](https://github.com/kubernetes-csi/external-health-monitor)。
+
+<!--
+There are also more details about volume health checks in the [Container Storage Interface Documentation](https://kubernetes-csi.github.io/docs/).
+-->
+[容器存储接口文档](https://kubernetes-csi.github.io/docs/)中还有关于卷健康检查的更多详细信息。
+
+<!--
+## How do I get involved?
+-->
+## 如何参与？
+
+<!--
+The [Kubernetes Slack channel #csi](https://kubernetes.slack.com/messages/csi) and any of the [standard SIG Storage communication channels](https://github.com/kubernetes/community/blob/master/sig-storage/README.md#contact) are great mediums to reach out to the SIG Storage and the CSI team.
+-->
+[Kubernetes Slack 频道 #csi](https://kubernetes.slack.com/messages/csi)
+和任何[标准 SIG Storage 通信频道](https://github.com/kubernetes/community/blob/master/sig-storage/README.md#contact)都是联系 SIG Storage 和 CSI 团队的绝佳媒介。
+
+<!--
+We offer a huge thank you to the contributors who helped release this feature in 1.21. We want to thank Yuquan Ren ([NickrenREN](https://github.com/nickrenren)) who implemented the initial volume health monitor controller and agent in the external health monitor repo, thank Ran Xu ([fengzixu](https://github.com/fengzixu)) who moved the volume health monitoring logic from the external agent to Kubelet in 1.21, and we offer special thanks to the following people for their insightful reviews: David Ashpole ([dashpole](https://github.com/dashpole)), Michelle Au ([msau42](https://github.com/msau42)), David Eads ([deads2k](https://github.com/deads2k)), Elana Hashman ([ehashman](https://github.com/ehashman)), Seth Jennings ([sjenning](https://github.com/sjenning)), and Jiawei Wang ([Jiawei0227](https://github.com/Jiawei0227)).
+--> 
+我们非常感谢在 1.21 中帮助发布此功能的贡献者。
+我们要感谢 Yuquan Ren ([NickrenREN](https://github.com/nickrenren)) 在外部健康监控仓库中实现了初始卷健康监控控制器和代理，
+感谢 Ran Xu ([fengzixu](https://github.com/fengzixu)) 在 1.21 中将卷健康监控逻辑从外部代理转移到 Kubelet，
+我们特别感谢以下人员的深刻评论：
+David Ashpole ([dashpole](https://github.com/dashpole))、
+Michelle Au ([msau42](https://github.com/msau42))、
+David Eads ([deads2k](https://github.com/deads2k))、
+Elana Hashman ([ehashman](https://github.com/ehashman))、
+Seth Jennings ([sjenning](https://github.com/sjenning)) 和 Jiawei Wang ([Jiawei0227](https://github.com/Jiawei0227))
+
+<!--
+Those interested in getting involved with the design and development of CSI or any part of the Kubernetes Storage system, join the [Kubernetes Storage Special Interest Group](https://github.com/kubernetes/community/tree/master/sig-storage) (SIG). We’re rapidly growing and always welcome new contributors.
+-->
+那些有兴趣参与 CSI 或 Kubernetes 存储系统任何部分的设计和开发的人，
+请加入 [Kubernetes Storage 特殊兴趣小组](https://github.com/kubernetes/community/tree/master/sig-storage)（SIG）。
+我们正在迅速发展，并且欢迎新的贡献者。
diff --git a/content/zh-cn/blog/_posts/2021-09-27-SIG-Node-Spotlight/index.md b/content/zh-cn/blog/_posts/2021-09-27-SIG-Node-Spotlight/index.md
new file mode 100644
index 0000000000..1909f2cd33
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2021-09-27-SIG-Node-Spotlight/index.md
@@ -0,0 +1,181 @@
+---
+layout: blog
+title: "关注 SIG Node"
+date: 2021-09-27
+slug: sig-node-spotlight-2021
+---
+<!--
+---
+layout: blog
+title: "Spotlight on SIG Node"
+date: 2021-09-27
+slug: sig-node-spotlight-2021
+--- 
+-->
+**Author:** Dewan Ahmed, Red Hat
+<!--
+**Author:** Dewan Ahmed, Red Hat
+-->
+
+<!--
+## Introduction
+
+In Kubernetes, a _Node_ is a representation of a single machine in your cluster. [SIG Node](https://github.com/kubernetes/community/tree/master/sig-node) owns that very important Node component and supports various subprojects such as Kubelet, Container Runtime Interface (CRI) and more to support how the pods and host resources interact. In this blog, we have summarized our conversation with [Elana Hashman (EH)](https://twitter.com/ehashdn) & [Sergey Kanzhelev (SK)](https://twitter.com/SergeyKanzhelev), who walk us through the various aspects of being a part of the SIG and share some insights about how others can get involved.
+-->
+
+## 介绍
+
+在 Kubernetes 中，一个 _Node_ 是你集群中的某台机器。
+[SIG Node](https://github.com/kubernetes/community/tree/master/sig-node) 负责这一非常重要的 Node 组件并支持各种子项目，
+如 Kubelet, Container Runtime Interface (CRI) 以及其他支持 Pod 和主机资源间交互的子项目。
+在这篇文章中，我们总结了和 [Elana Hashman (EH)](https://twitter.com/ehashdn) & [Sergey Kanzhelev (SK)](https://twitter.com/SergeyKanzhelev) 的对话，是他们带领我们了解作为此 SIG 一份子的各个方面，并分享一些关于其他人如何参与的见解。
+
+<!--
+## A summary of our conversation
+
+### Could you tell us a little about what SIG Node does?
+
+SK: SIG Node is a vertical SIG responsible for the components that support the controlled interactions between the pods and host resources. We manage the lifecycle of pods that are scheduled to a node. This SIG's focus is to enable a broad set of workload types, including workloads with hardware specific or performance sensitive requirements. All while maintaining isolation boundaries between pods on a node, as well as the pod and the host. This SIG maintains quite a few components and has many external dependencies (like container runtimes or operating system features), which makes the complexity we deal with huge. We tame the complexity and aim to continuously improve node reliability.
+-->
+## 我们的对话总结
+
+### 你能告诉我们一些关于 SIG Node 的工作吗？
+
+SK：SIG Node 是一个垂直 SIG，负责支持 Pod 和主机资源之间受控互动的组件。我们管理被调度到节点上的 Pod 的生命周期。
+这个 SIG 的重点是支持广泛的工作负载类型，包括具有硬件特性或性能敏感要求的工作负载。同时保持节点上 Pod 之间的隔离边界，以及 Pod 和主机的隔离边界。
+这个 SIG 维护了相当多的组件，并有许多外部依赖（如容器运行时间或操作系统功能），这使得我们处理起来十分复杂。但我们战胜了这种复杂度，旨在不断提高节点的可靠性。
+
+<!--
+### "SIG Node is a vertical SIG" could you explain a bit more?
+
+EH: There are two kinds of SIGs: horizontal and vertical. Horizontal SIGs are concerned with a particular function of every component in Kubernetes: for example, SIG Security considers security aspects of every component in Kubernetes, or SIG Instrumentation looks at the logs, metrics, traces and events of every component in Kubernetes. Such SIGs don't tend to own a lot of code.
+
+Vertical SIGs, on the other hand, own a single component, and are responsible for approving and merging patches to that code base. SIG Node owns the "Node" vertical, pertaining to the kubelet and its lifecycle. This includes the code for the kubelet itself, as well as the node controller, the container runtime interface, and related subprojects like the node problem detector. 
+-->
+### 你能再解释一下 “SIG Node 是一种垂直 SIG” 的含义吗？
+
+EH：有两种 SIG：横向和垂直。横向 SIG 关注 Kubernetes 中每个组件的特定功能：例如，SIG Security 考虑 Kubernetes 中每个组件的安全方面，或者 SIG Instrumentation 关注 Kubernetes 中每个组件的日志、度量、跟踪和事件。
+这样的 SIG 并不太会拥有大量的代码。
+
+相反，垂直 SIG 拥有一个单一的组件，并负责批准和合并该代码库的补丁。
+SIG Node 拥有 "Node" 的垂直性，与 kubelet 和它的生命周期有关。这包括 kubelet 本身的代码，以及节点控制器、容器运行时接口和相关的子项目，比如节点问题检测器。
+
+<!--
+### How did the CI subproject start? Is this specific to SIG Node and how does it help the SIG?
+
+SK: The subproject started as a follow up after one of the releases was blocked by numerous test failures of critical tests. These tests haven’t started falling all at once, rather continuous lack of attention led to slow degradation of tests quality. SIG Node was always prioritizing quality and reliability, and forming of the subproject was a way to highlight this priority.
+-->
+### CI 子项目是如何开始的？这是专门针对 SIG Node 的吗？它对 SIG 有什么帮助？
+
+SK：该子项目是在其中一个版本因关键测试的大量测试失败而受阻后开始跟进的。
+这些测试并不是一下子就开始下降的，而是持续的缺乏关注导致了测试质量的缓慢下降。
+SIG Node 一直将质量和可靠性放在首位，组建这个子项目是强调这一优先事项的一种方式。
+
+<!--
+### As the 3rd largest SIG in terms of number of issues and PRs, how does your SIG juggle so much work?
+
+EH: It helps to be organized. When I increased my contributions to the SIG in January of 2021, I found myself overwhelmed by the volume of pull requests and issues and wasn't sure where to start. We were already tracking test-related issues and pull requests on the CI subproject board, but that was missing a lot of our bugfixes and feature work. So I began putting together a triage board for the rest of our pull requests, which allowed me to sort each one by status and what actions to take, and documented its use for other contributors. We closed or merged over 500 issues and pull requests tracked by our two boards in each of the past two releases. The Kubernetes devstats showed that we have significantly increased our velocity as a result.
+
+In June, we ran our first bug scrub event to work through the backlog of issues filed against SIG Node, ensuring they were properly categorized. We closed over 130 issues over the course of this 48 hour global event, but as of writing we still have 333 open issues. 
+-->
+### 作为 issue 和 PR 数量第三大的 SIG，你们 SIG 是如何兼顾这么多工作的？
+
+EH：这归功于有组织性。当我在 2021 年 1 月增加对 SIG 的贡献时，我发现自己被大量的 PR 和 issue 淹没了，不知道该从哪里开始。
+我们已经在 CI 子项目板上跟踪与测试有关的 issue 和 PR 请求，但这缺少了很多 bug 修复和功能工作。
+因此，我开始为我们剩余的 PR 建立一个分流板，这使我能够根据状态和采取的行动对其进行分类，并为其他贡献者记录它的用途。
+在过去的两个版本中，我们关闭或合并了超过 500 个 issue 和 PR。Kubernetes devstats 显示，我们的速度因此而大大提升。
+
+6月，我们进行了第一次 bug 清除活动，以解决针对 SIG Node 的积压问题，确保它们被正确归类。
+在这次 48 小时的全球活动中，我们关闭了 130 多个问题，但截至发稿时，我们仍有 333 个问题没有解决。
+<!--
+### Why should new and existing contributors consider joining SIG Node?
+
+SK: Being a SIG Node contributor gives you skills and recognition that are rewarding and useful. Understanding under the hood of a kubelet helps architecting better apps, tune and optimize those apps, and gives leg up in issues troubleshooting. If you are a new contributor, SIG Node gives you the foundational knowledge that is key to understanding why other Kubernetes components are designed the way they are. Existing contributors may benefit as many features will require SIG Node changes one way or another. So being a SIG Node contributor helps building features in other SIGs faster.
+
+SIG Node maintains numerous components, many of which have dependency on external projects or OS features. This makes the onboarding process quite lengthy and demanding. But if you are up for a challenge, there is always a place for you, and a group of people to support. 
+-->
+### 为什么新的和现有的贡献者应该考虑加入 Node 兴趣小组呢？
+
+SK：作为 SIG Node 的贡献者会带给你有意义且有用的技能和认可度。
+了解 Kubelet 的内部结构有助于构建更好的应用程序，调整和优化这些应用程序，并在 issue 排查上获得优势。
+如果你是一个新手贡献者，SIG Node 为你提供了基础知识，这是理解其他 Kubernetes 组件的设计方式的关键。
+现在的贡献者可能会受益于许多功能都需要 SIG Node 的这种或那种变化。所以成为 SIG Node 的贡献者有助于更快地建立其他 SIG 的功能。
+
+SIG Node 维护着许多组件，其中许多组件都依赖于外部项目或操作系统功能。这使得入职过程相当冗长和苛刻。
+但如果你愿意接受挑战，总有一个地方适合你，也有一群人支持你。
+<!--
+### What do you do to help new contributors get started?
+
+EH: Getting started in SIG Node can be intimidating, since there is so much work to be done, our SIG meetings are very large, and it can be hard to find a place to start.
+
+I always encourage new contributors to work on things that they have some investment in already. In SIG Node, that might mean volunteering to help fix a bug that you have personally been affected by, or helping to triage bugs you care about by priority.
+
+To come up to speed on any open source code base, there are two strategies you can take: start by exploring a particular issue deeply, and follow that to expand the edges of your knowledge as needed, or briefly review as many issues and change requests as you possibly can to get a higher level picture of how the component works. Ultimately, you will need to do both if you want to become a Node reviewer or approver.
+
+[Davanum Srinivas](https://twitter.com/dims) and I each ran a cohort of group mentoring to help teach new contributors the skills to become Node reviewers, and if there's interest we can work to find a mentor to run another session. I also encourage new contributors to attend our Node CI Subproject meeting: it's a smaller audience and we don't record the triage sessions, so it can be a less intimidating way to get started with the SIG. 
+-->
+###  你是如何帮助新手贡献者开始工作的？
+
+EH：在 SIG Node 的起步工作可能是令人生畏的，因为有太多的工作要做，我们的 SIG 会议非常大，而且很难找到一个开始的地方。
+
+我总是鼓励新手贡献者在他们已经有一些投入的方向上更进一步。
+在 SIG Node 中，这可能意味着自愿帮助修复一个只影响到你个人的 bug，或者按优先级去分流你关心的 bug。
+
+为了尽快了解任何开源代码库，你可以采取两种策略：从深入探索一个特定的问题开始，然后根据需要扩展你的知识边缘，或者单纯地尽可能多的审查 issues 和变更请求，以了解更高层次的组件工作方式。
+最终，如果你想成为一名 Node reviewer 或 approver，两件事是不可避免的。
+
+[Davanum Srinivas](https://twitter.com/dims) 和我各自举办了一次小组辅导，以帮助教导新手贡献者成为 Node reviewer 的技能，如果有兴趣，我们可以努力寻找一个导师来举办另一次会议。
+我也鼓励新手贡献者参加我们的 Node CI 子项目会议：它的听众较少，而且我们不记录分流会议，所以它可以是一个比较温和的方式来开始 SIG 之旅。
+<!--
+### Are there any particular skills you’d like to recruit for? What skills are contributors to SIG Usability likely to learn?
+
+SK: SIG Node works on many workstreams in very different areas. All of these areas are on system level. For the typical code contributions you need to have a passion for building and utilizing low level APIs and writing performant and reliable components. Being a contributor you will learn how to debug and troubleshoot, profile, and monitor these components, as well as user workload that is run by these components. Often, with the limited to no access to Nodes, as they are running production workloads.
+
+The other way of contribution is to help document SIG node features. This type of contribution requires a deep understanding of features, and ability to explain them in simple terms.
+
+Finally, we are always looking for feedback on how best to run your workload. Come and  explain specifics of it, and what features in SIG Node components may help to run it better. 
+-->
+### 有什么特别的技能者是你想招募的吗？对 SIG 可用性的贡献者可能会学到什么技能？
+
+SK：SIG Node 在大相径庭的领域从事许多工作流。所有这些领域都是系统级的。
+对于典型的代码贡献，你需要对建立和善用低级别的 API 以及编写高性能和可靠的组件有热情。
+作为一个贡献者，你将学习如何调试和排除故障，剖析和监控这些组件，以及由这些组件运行的用户工作负载。
+通常情况下，由于节点正在运行生产工作负载，所以对节点的访问是有限的，甚至是没有的。
+
+另一种贡献方式是帮助记录 SIG Node 的功能。这种类型的贡献需要对功能有深刻的理解，并有能力用简单的术语解释它们。
+
+最后，我们一直在寻找关于如何最好地运行你的工作负载的反馈。来解释一下它的具体情况，以及 SIG Node 组件中的哪些功能可能有助于更好地运行它。
+<!--
+### What are you getting positive feedback on, and what’s coming up next for SIG Node?
+
+EH: Over the past year SIG Node has adopted some new processes to help manage our feature development and Kubernetes enhancement proposals, and other SIGs have looked to us for inspiration in managing large workloads. I hope that this is an area we can continue to provide leadership in and further iterate on.
+
+We have a great balance of new features and deprecations in flight right now. Deprecations of unused or difficult to maintain features help us keep technical debt and maintenance load under control, and examples include the dockershim and DynamicKubeletConfiguration deprecations. New features will unlock additional functionality in end users' clusters, and include exciting features like support for cgroups v2, swap memory, graceful node shutdowns, and device management policies.
+-->
+### 你在哪些方面得到了积极的反馈，以及 SIG Node 的下一步计划是什么？
+
+EH：在过去的一年里，SIG Node 采用了一些新的流程来帮助管理我们的功能开发和 Kubernetes 增强提议，其他 SIG 也向我们寻求在管理大型工作负载方面的灵感。
+我希望这是一个我们可以继续领导并进一步迭代的领域。
+
+现在，我们在新功能和废弃功能之间保持了很好的平衡。
+废弃未使用或难以维护的功能有助于我们控制技术债务和维护负荷，例子包括 dockershim 和 DynamicKubeletConfiguration 的废弃。
+新功能将在终端用户的集群中释放更多的功能，包括令人兴奋的功能，如支持 cgroups v2、交换内存、优雅的节点关闭和设备管理策略。
+<!--
+### Any closing thoughts/resources you’d like to share?
+
+SK/EH: It takes time and effort to get to any open source community. SIG Node may overwhelm you at first with the number of participants, volume of work, and project scope. But it is totally worth it. Join our welcoming community! [SIG Node GitHub Repo](https://github.com/kubernetes/community/tree/master/sig-node) contains many useful resources including Slack, mailing list and other contact info. 
+-->
+### 最后你有什么想法/资源要分享吗？
+
+SK/EH：进入任何开源社区都需要时间和努力。一开始 SIG Node 可能会因为参与者的数量、工作量和项目范围而让你不知所措。但这是完全值得的。
+请加入我们这个热情的社区! [SIG Node GitHub Repo](https://github.com/kubernetes/community/tree/master/sig-node)
+包含许多有用的资源，包括 Slack、邮件列表和其他联系信息。
+<!--
+## Wrap Up
+
+SIG Node hosted a [KubeCon + CloudNativeCon Europe 2021 talk](https://www.youtube.com/watch?v=z5aY4e2RENA) with an intro and deep dive to their awesome SIG. Join the SIG's meetings to find out about the most recent research results, what the plans are for the forthcoming year, and how to get involved in the upstream Node team as a contributor!
+-->
+## 总结
+
+SIG Node 举办了一场 [KubeCon + CloudNativeCon Europe 2021 talk](https://www.youtube.com/watch?v=z5aY4e2RENA)，对他们强大的 SIG 进行了介绍和深入探讨。
+加入 SIG 的会议，了解最新的研究成果，未来一年的计划是什么，以及如何作为贡献者参与到上游的 Node 团队中!
\ No newline at end of file
diff --git a/content/zh-cn/blog/_posts/2021-11-08-steering-committee-results-2021.md b/content/zh-cn/blog/_posts/2021-11-08-steering-committee-results-2021.md
new file mode 100644
index 0000000000..292d8923f6
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2021-11-08-steering-committee-results-2021.md
@@ -0,0 +1,133 @@
+---
+layout: blog
+title: "公布 2021 年指导委员会选举结果"
+date: 2021-11-08
+slug: steering-committee-results-2021
+---
+
+<!--
+layout: blog
+title: "Announcing the 2021 Steering Committee Election Results"
+date: 2021-11-08
+slug: steering-committee-results-2021
+-->
+
+<!--
+**Author**: Kaslin Fields
+-->
+**作者**：Kaslin Fields
+
+<!--
+The [2021 Steering Committee Election](https://github.com/kubernetes/community/tree/master/events/elections/2021) is now complete. The Kubernetes Steering Committee consists of 7 seats, 4 of which were up for election in 2021. Incoming committee members serve a term of 2 years, and all members are elected by the Kubernetes Community.
+-->
+[2021 年指导委员会选举](https://github.com/kubernetes/community/tree/master/events/elections/2021)现已完成。
+Kubernetes 指导委员会由 7 个席位组成，其中 4 个席位将在 2021 年进行选举。
+新任委员会成员任期 2 年，所有成员均由 Kubernetes 社区选举产生。
+
+<!--
+This community body is significant since it oversees the governance of the entire Kubernetes project. With that great power comes great responsibility. You can learn more about the steering committee’s role in their [charter](https://github.com/kubernetes/steering/blob/master/charter.md).
+-->
+这个社区机构非常重要，因为它监督整个 Kubernetes 项目的治理。
+你可以在其[章程](https://github.com/kubernetes/steering/blob/master/charter.md)中了解更多关于指导委员会的角色。
+
+<!--
+## Results
+-->
+## 选举结果
+
+<!--
+Congratulations to the elected committee members whose two year terms begin immediately (listed in alphabetical order by GitHub handle):
+-->
+
+祝贺当选的委员会成员，他们的两年任期即刻生效（按 GitHub handle 字母排序）:
+<!--
+* **Christoph Blecker ([@cblecker](https://github.com/cblecker)), Red Hat**
+* **Stephen Augustus ([@justaugustus](https://github.com/justaugustus)), Cisco**
+* **Paris Pittman ([@parispittman](https://github.com/parispittman)), Apple**
+* **Tim Pepper ([@tpepper](https://github.com/tpepper)), VMware**
+-->
+* **Christoph Blecker（[@cblecker](https://github.com/cblecker)）， 红帽**
+* **Stephen Augustus（[@justaugustus](https://github.com/justaugustus)）， 思科**
+* **Paris Pittman（[@parispittman](https://github.com/parispittman))， 苹果**
+* **Tim Pepper（[@tpepper](https://github.com/tpepper)）， VMware**
+
+<!--
+They join continuing members:
+-->
+他们加入永久成员：
+
+<!--
+* **Davanum Srinivas ([@dims](https://github.com/dims)), VMware**
+* **Jordan Liggitt ([@liggitt](https://github.com/liggitt)), Google**
+* **Bob Killen ([@mrbobbytables](https://github.com/mrbobbytables)), Google**
+-->
+* **Davanum Srinivas（[@dims](https://github.com/dims)）， VMware**
+* **Jordan Liggitt （[@liggitt](https://github.com/liggitt)）， 谷歌**
+* **Bob Killen （[@mrbobbytables](https://github.com/mrbobbytables)）， 谷歌**
+
+<!--
+Paris Pittman and Christoph Blecker are returning Steering Committee Members.
+-->
+Paris Pittman 和 Christoph Blecker 将回到指导委员会。
+
+<!--
+## Big Thanks
+-->
+## 非常感谢
+
+<!--
+Thank you and congratulations on a successful election to this round’s election officers:
+-->
+感谢并祝贺完成本轮成功选举的选举官们:
+
+* Alison Dowdney, ([@alisondy](https://github.com/alisondy))
+* Noah Kantrowitz ([@coderanger](https://github.com/coderanger))
+* Josh Berkus ([@jberkus](https://github.com/jberkus))
+
+<!--
+Special thanks to Arnaud Meukam ([@ameukam](https://github.com/ameukam)), k8s-infra liaison, who enabled our voting software on community-owned infrastructure.
+-->
+特别感谢 k8s-infra 联络员 Arnaud Meukam（[@ameukam](https://github.com/ameukam)），
+他在社区的基础设施上启动了我们的投票软件。
+
+<!--
+Thanks to the Emeritus Steering Committee Members. Your prior service is appreciated by the community:
+-->
+感谢荣誉退休的指导委员会成员。对你们之前对社区的贡献表示感谢:
+
+* Derek Carr ([@derekwaynecarr](https://github.com/derekwaynecarr))
+* Nikhita Raghunath ([@nikhita](https://github.com/nikhita))
+
+<!--
+And thank you to all the candidates who came forward to run for election.
+-->
+感谢所有前来参加竞选的候选人。
+
+<!--
+## Get Involved with the Steering Committee
+-->
+## 参与指导委员会
+
+<!--
+This governing body, like all of Kubernetes, is open to all. You can follow along with Steering Committee [backlog items](https://github.com/kubernetes/steering/projects/1) and weigh in by filing an issue or creating a PR against their [repo](https://github.com/kubernetes/steering). They have an open meeting on [the first Monday at 9:30am PT of every month](https://github.com/kubernetes/steering) and regularly attend Meet Our Contributors. They can also be contacted at their public mailing list steering@kubernetes.io.
+-->
+与所有 Kubernetes 一样，这个管理机构对所有人开放。
+你可以查看指导委员会的[待办事项](https://github.com/kubernetes/steering/projects/1)，
+通过在他们的 [repo](https://github.com/kubernetes/steering)
+中提交一个 issue 或创建一个 PR 来参与讨论。
+他们在[每月的第一个星期一上午 9:30](https://github.com/kubernetes/steering) 举行公开会议，
+并定期参加会见我们的贡献者活动。也可以通过他们的公共邮件列表 steering@kubernetes.io 联系他们。
+
+<!--
+You can see what the Steering Committee meetings are all about by watching past meetings on the [YouTube Playlist](https://www.youtube.com/playlist?list=PL69nYSiGNLP1yP1B_nd9-drjoxp0Q14qM).
+-->
+你可以在 [YouTube 播放列表](https://www.youtube.com/playlist?list=PL69nYSiGNLP1yP1B_nd9-drjoxp0Q14qM)
+上观看之前的会议视频，了解指导委员会的会议讨论内容。
+
+---
+
+<!--
+_This post was written by the [Upstream Marketing Working Group](https://github.com/kubernetes/community/tree/master/communication/marketing-team#contributor-marketing). If you want to write stories about the Kubernetes community, learn more about us._
+-->
+_本文是由[上游营销工作组](https://github.com/kubernetes/community/tree/master/communication/marketing-team#contributor-marketing)撰写的。
+如果你想撰写有关 Kubernetes 社区的故事，请了解更多关于我们的信息。_
\ No newline at end of file
diff --git a/content/zh-cn/blog/_posts/2021-12-08-dual-stack-networking-ga.md b/content/zh-cn/blog/_posts/2021-12-08-dual-stack-networking-ga.md
new file mode 100644
index 0000000000..c3bab78e89
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2021-12-08-dual-stack-networking-ga.md
@@ -0,0 +1,154 @@
+---
+layout: blog
+title: 'Kubernetes 1.23：IPv4/IPv6 双协议栈网络达到 GA'
+date: 2021-12-08
+slug: dual-stack-networking-ga
+---
+<!--
+layout: blog
+title: 'Kubernetes 1.23: Dual-stack IPv4/IPv6 Networking Reaches GA'
+date: 2021-12-08
+slug: dual-stack-networking-ga
+-->
+
+<!--
+**Author:** Bridget Kromhout (Microsoft)
+-->
+**作者:** Bridget Kromhout (微软)
+
+<!--
+"When will Kubernetes have IPv6?" This question has been asked with increasing frequency ever since alpha support for IPv6 was first added in k8s v1.9. While Kubernetes has supported IPv6-only clusters since v1.18, migration from IPv4 to IPv6 was not yet possible at that point. At long last, [dual-stack IPv4/IPv6 networking](https://github.com/kubernetes/enhancements/tree/master/keps/sig-network/563-dual-stack/) has reached general availability (GA) in Kubernetes v1.23.
+
+What does dual-stack networking mean for you? Let’s take a look…
+-->
+“Kubernetes 何时支持 IPv6？” 自从 k8s v1.9 版本中首次添加对 IPv6 的 alpha 支持以来，这个问题的讨论越来越频繁。
+虽然 Kubernetes 从 v1.18 版本开始就支持纯 IPv6 集群，但当时还无法支持 IPv4 迁移到 IPv6。
+[IPv4/IPv6 双协议栈网络](https://github.com/kubernetes/enhancements/tree/master/keps/sig-network/563-dual-stack/)
+在 Kubernetes v1.23 版本中进入正式发布（GA）阶段。
+
+让我们来看看双协议栈网络对你来说意味着什么？
+
+<!--
+## Service API updates
+-->
+## 更新 Service API
+
+<!--
+[Services](/docs/concepts/services-networking/service/) were single-stack before 1.20, so using both IP families meant creating one Service per IP family. The user experience was simplified in 1.20, when Services were re-implemented to allow both IP families, meaning a single Service can handle both IPv4 and IPv6 workloads. Dual-stack load balancing is possible between services running any combination of IPv4 and IPv6.
+-->
+[Services](/zh-cn/docs/concepts/services-networking/service/) 在 1.20 版本之前是单协议栈的，
+因此，使用两个 IP 协议族意味着需为每个 IP 协议族创建一个 Service。在 1.20 版本中对用户体验进行简化，
+重新实现了 Service 以支持两个 IP 协议族，这意味着一个 Service 就可以处理 IPv4 和 IPv6 协议。
+对于 Service 而言，任意的 IPv4 和 IPv6 协议组合都可以实现负载均衡。
+
+<!--
+The Service API now has new fields to support dual-stack, replacing the single ipFamily field.
+* You can select your choice of IP family by setting `ipFamilyPolicy` to one of three options: SingleStack, PreferDualStack, or RequireDualStack. A service can be changed between single-stack and dual-stack (within some limits).
+* Setting `ipFamilies` to a list of families assigned allows you to set the order of families used.
+* `clusterIPs` is inclusive of the previous `clusterIP` but allows for multiple entries, so it’s no longer necessary to run duplicate services, one in each of the two IP families. Instead, you can assign cluster IP addresses in both IP families.
+-->
+Service API 现在有了支持双协议栈的新字段，取代了单一的 ipFamily 字段。
+* 你可以通过将 `ipFamilyPolicy` 字段设置为 `SingleStack`、`PreferDualStack` 或
+`RequireDualStack` 来设置 IP 协议族。Service 可以在单协议栈和双协议栈之间进行转换(在某些限制内)。
+* 设置 `ipFamilies` 为指定的协议族列表，可用来设置使用协议族的顺序。
+* 'clusterIPs' 的能力在涵盖了之前的 'clusterIP'的情况下，还允许设置多个 IP 地址。
+所以不再需要运行重复的 Service，在两个 IP 协议族中各运行一个。你可以在两个 IP 协议族中分配集群 IP 地址。
+
+<!--
+Note that Pods are also dual-stack. For a given pod, there is no possibility of setting multiple IP addresses in the same family.
+-->
+请注意，Pods 也是双协议栈的。对于一个给定的 Pod，不可能在同一协议族中设置多个 IP 地址。
+
+<!--
+## Default behavior remains single-stack
+-->
+## 默认行为仍然是单协议栈
+
+<!--
+Starting in 1.20 with the re-implementation of dual-stack services as alpha, the underlying networking for Kubernetes has included dual-stack whether or not a cluster was configured with the feature flag to enable dual-stack.
+-->
+从 1.20 版本开始，重新实现的双协议栈服务处于 Alpha 阶段，无论集群是否配置了启用双协议栈的特性标志，
+Kubernetes 的底层网络都已经包括了双协议栈。
+
+<!--
+Kubernetes 1.23 removed that feature flag as part of graduating the feature to stable. Dual-stack networking is always available if you want to configure it. You can set your cluster network to operate as single-stack IPv4, as single-stack IPv6, or as dual-stack IPv4/IPv6.
+-->
+Kubernetes 1.23 删除了这个特性标志，说明该特性已经稳定。
+如果你想要配置双协议栈网络，这一能力总是存在的。
+你可以将集群网络设置为 IPv4 单协议栈 、IPv6 单协议栈或 IPV4/IPV6 双协议栈 。
+
+<!--
+While Services are set according to what you configure, Pods default to whatever the CNI plugin sets. If your CNI plugin assigns single-stack IPs, you will have single-stack unless `ipFamilyPolicy` specifies PreferDualStack or RequireDualStack. If your CNI plugin assigns dual-stack IPs, `pod.status.PodIPs` defaults to dual-stack.
+-->
+虽然 Service 是根据你的配置设置的，但 Pod 默认是由 CNI 插件设置的。
+如果你的 CNI 插件分配单协议栈 IP，那么就是单协议栈，除非 `ipFamilyPolicy` 设置为 `PreferDualStack` 或 `RequireDualStack`。
+如果你的 CNI 插件分配双协议栈 IP，则 `pod.status.PodIPs` 默认为双协议栈。
+
+<!--
+Even though dual-stack is possible, it is not mandatory to use it. Examples in the documentation show the variety possible in [dual-stack service configurations](/docs/concepts/services-networking/dual-stack/#dual-stack-service-configuration-scenarios).
+-->
+尽管双协议栈是可用的，但并不强制你使用它。
+在[双协议栈服务配置](/zh-cn/docs/concepts/services-networking/dual-stack/#dual-stack-service-configuration-scenarios)
+文档中的示例列出了可能出现的各种场景.
+
+<!--
+## Try dual-stack right now
+-->
+## 现在尝试双协议栈
+
+<!--
+While upstream Kubernetes now supports [dual-stack networking](/docs/concepts/services-networking/dual-stack/) as a GA or stable feature, each provider’s support of dual-stack Kubernetes may vary. Nodes need to be provisioned with routable IPv4/IPv6 network interfaces. Pods need to be dual-stack. The [network plugin](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/) is what assigns the IP addresses to the Pods, so it's the network plugin being used for the cluster that needs to support dual-stack. Some Container Network Interface (CNI) plugins support dual-stack, as does kubenet.
+-->
+虽然现在上游 Kubernetes 支持[双协议栈网络](/zh-cn/docs/concepts/services-networking/dual-stack/)
+作为 GA 或稳定特性，但每个提供商对双协议栈 Kubernetes 的支持可能会有所不同。节点需要提供可路由的 IPv4/IPv6 网络接口。
+Pod 需要是双协议栈的。[网络插件](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)
+是用来为 Pod 分配 IP 地址的，所以集群需要支持双协议栈的网络插件。一些容器网络接口（CNI）插件支持双协议栈，例如 kubenet。
+
+<!--
+Ecosystem support of dual-stack is increasing; you can create [dual-stack clusters with kubeadm](/docs/setup/production-environment/tools/kubeadm/dual-stack-support/), try a [dual-stack cluster locally with KIND](https://kind.sigs.k8s.io/docs/user/configuration/#ip-family), and deploy dual-stack clusters in cloud providers (after checking docs for CNI or kubenet availability).
+-->
+支持双协议栈的生态系统在不断壮大；你可以使用
+[kubeadm 创建双协议栈集群](/zh-cn/docs/setup/production-environment/tools/kubeadm/dual-stack-support/),
+在本地尝试用 [KIND 创建双协议栈集群](https://kind.sigs.k8s.io/docs/user/configuration/#ip-family)，
+还可以将双协议栈集群部署到云上（在查阅 CNI 或 kubenet 可用性的文档之后）
+
+<!--
+## Get involved with SIG Network
+-->
+## 加入 Network SIG
+
+<!--
+SIG-Network wants to learn from community experiences with dual-stack networking to find out more about evolving needs and your use cases. The [SIG-network update video from KubeCon NA 2021](https://www.youtube.com/watch?v=uZ0WLxpmBbY&list=PLj6h78yzYM2Nd1U4RMhv7v88fdiFqeYAP&index=4) summarizes the SIG’s recent updates, including dual-stack going to stable in 1.23.
+-->
+SIG-Network 希望从双协议栈网络的社区体验中学习，以了解更多不断变化的需求和你的用例信息。
+[SIG-network 更新了来自 KubeCon 2021 北美大会的视频](https://www.youtube.com/watch?v=uZ0WLxpmBbY&list=PLj6h78yzYM2Nd1U4RMhv7v88fdiFqeYAP&index=4)
+总结了 SIG 最近的更新，包括双协议栈将在 1.23 版本中稳定。
+
+<!--
+The current SIG-Network [KEPs](https://github.com/orgs/kubernetes/projects/10) and [issues](https://github.com/kubernetes/kubernetes/issues?q=is%3Aopen+is%3Aissue+label%3Asig%2Fnetwork) on GitHub illustrate the SIG’s areas of emphasis. The [dual-stack API server](https://github.com/kubernetes/enhancements/issues/2438) is one place to consider contributing.
+-->
+当前 SIG-Network 在 GitHub 上的 [KEPs](https://github.com/orgs/kubernetes/projects/10) 和
+[issues](https://github.com/kubernetes/kubernetes/issues?q=is%3Aopen+is%3Aissue+label%3Asig%2Fnetwork)
+说明了该 SIG 的重点领域。[双协议栈 API 服务器](https://github.com/kubernetes/enhancements/issues/2438)
+是一个考虑贡献的方向。
+
+<!--
+[SIG-Network meetings](https://github.com/kubernetes/community/tree/master/sig-network#meetings) are a friendly, welcoming venue for you to connect with the community and share your ideas. Looking forward to hearing from you!
+-->
+[SIG-Network 会议](https://github.com/kubernetes/community/tree/master/sig-network#meetings)
+是一个友好、热情的场所，你可以与社区联系并分享你的想法。期待你的加入！
+
+<!--
+## Acknowledgments
+-->
+## 致谢
+
+<!--
+The dual-stack networking feature represents the work of many Kubernetes contributors. Thanks to all who contributed code, experience reports, documentation, code reviews, and everything in between. Bridget Kromhout details this community effort in [Dual-Stack Networking in Kubernetes](https://containerjournal.com/features/dual-stack-networking-in-kubernetes/). KubeCon keynotes by Tim Hockin & Khaled (Kal) Henidak in 2019 ([The Long Road to IPv4/IPv6 Dual-stack Kubernetes](https://www.youtube.com/watch?v=o-oMegdZcg4)) and by Lachlan Evenson in 2021 ([And Here We Go: Dual-stack Networking in Kubernetes](https://www.youtube.com/watch?v=lVrt8F2B9CM)) talk about the dual-stack journey, spanning five years and a great many lines of code.
+-->
+许多 Kubernetes 贡献者为双协议栈网络做出了贡献。感谢所有贡献了代码、经验报告、文档、代码审查以及其他工作的人。
+Bridget Kromhout 在 [Kubernetes的双协议栈网络](https://containerjournal.com/features/dual-stack-networking-in-kubernetes/)
+中详细介绍了这项社区工作。Tim Hockin 和 Khaled (Kal) Henidak 在 2019 年的 KubeCon 大会演讲
+（[Kubernetes 通往 IPv4/IPv6 双协议栈的漫漫长路](https://www.youtube.com/watch?v=o-oMegdZcg4)）
+和 Lachlan Evenson 在 2021 年演讲（[我们来啦，Kubernetes 双协议栈网络](https://www.youtube.com/watch?v=o-oMegdZcg4)）
+中讨论了双协议栈的发展旅程，耗时 5 年和海量代码。
diff --git a/content/zh-cn/blog/_posts/2021-12-10-csi-migration-status.md b/content/zh-cn/blog/_posts/2021-12-10-csi-migration-status.md
new file mode 100644
index 0000000000..f133bac6bf
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2021-12-10-csi-migration-status.md
@@ -0,0 +1,294 @@
+---
+layout: blog
+title: "Kubernetes 1.23：树内存储向 CSI 卷迁移工作的进展更新"
+date: 2021-12-10
+slug: storage-in-tree-to-csi-migration-status-update
+---
+<!---
+layout: blog
+title: "Kubernetes 1.23: Kubernetes In-Tree to CSI Volume Migration Status Update"
+date: 2021-12-10
+slug: storage-in-tree-to-csi-migration-status-update
+-->
+
+<!---
+**Author:** Jiawei Wang (Google)
+-->
+**作者**: Jiawei Wang（谷歌）
+
+<!---
+The Kubernetes in-tree storage plugin to [Container Storage Interface (CSI)](/blog/2019/01/15/container-storage-interface-ga/) migration infrastructure has already been [beta](/blog/2019/12/09/kubernetes-1-17-feature-csi-migration-beta/) since v1.17. CSI migration was introduced as alpha in Kubernetes v1.14.
+-->
+自 Kubernetes v1.14 引入容器存储接口（[Container Storage Interface, CSI](/blog/2019/01/15/container-storage-interface-ga/)）的工作达到 alpha 阶段后，自 v1.17 起，Kubernetes 树内存储插件（in-tree storage plugin）向 CSI 的迁移基础设施已步入 [beta 阶段](/blog/2019/12/09/kubernetes-1-17-feature-csi-migration-beta/)。
+
+<!---
+Since then, SIG Storage and other Kubernetes special interest groups are working to ensure feature stability and compatibility in preparation for GA.
+This article is intended to give a status update to the feature as well as changes between Kubernetes 1.17 and 1.23. In addition, I will also cover the future roadmap for the CSI migration feature GA for each storage plugin.
+-->
+自那时起，Kubernetes 存储特别兴趣组（special interest groups, SIG）及其他 Kubernetes 特别兴趣组就在努力确保这一功能的稳定性和兼容性，为正式发布做准备。
+本文旨在介绍该功能的最新开发进展，以及 Kubernetes v1.17 到 v1.23 之间的变化。此外，我还将介绍每个存储插件的 CSI 迁移功能达到正式发布阶段的未来路线图。
+
+<!---
+## Quick recap: What is CSI Migration, and why migrate?
+
+The Container Storage Interface (CSI) was designed to help Kubernetes replace its existing, in-tree storage driver mechanisms - especially vendor specific plugins.
+Kubernetes support for the [Container Storage Interface](https://github.com/container-storage-interface/spec/blob/master/spec.md#README) has been 
+[generally available](/blog/2019/01/15/container-storage-interface-ga/) since Kubernetes v1.13.
+Support for using CSI drivers was introduced to make it easier to add and maintain new integrations between Kubernetes and storage backend technologies. Using CSI drivers allows for for better maintainability (driver authors can define their own release cycle and support lifecycle) and reduce the opportunity for vulnerabilities (with less in-tree code, the risks of a mistake are reduced, and cluster operators can select only the storage drivers that their cluster requires).
+-->
+## 快速回顾：CSI 迁移功能是什么？为什么要迁移？  {#quick-recap-what-is-csi-migration-and-why-migrate}
+
+容器存储接口旨在帮助 Kubernetes 取代其现有的树内存储驱动机制──特别是供应商的特定插件。自 v1.13 起，Kubernetes 对[容器存储接口](https://github.com/container-storage-interface/spec/blob/master/spec.md#README)的支持工作已达到[正式发布阶段](/blog/2019/01/15/container-storage-interface-ga/)。引入对 CSI 驱动的支持，将使得 Kubernetes 和存储后端技术之间的集成工作更易建立和维护。使用 CSI 驱动可以实现更好的可维护性（驱动作者可以决定自己的发布周期和支持生命周期）、减少出现漏洞的机会（得益于更少的树内代码，出现错误的风险会降低。另外，集群操作员可以只选择集群需要的存储驱动）。
+
+<!---
+As more CSI Drivers were created and became production ready, SIG Storage group wanted all Kubernetes users to benefit from the CSI model. However, we cannot break API compatibility with the existing storage API types. The solution we came up with was CSI migration: a feature that translates in-tree APIs to equivalent CSI APIs and delegates operations to a replacement CSI driver.
+-->
+随着更多的 CSI 驱动诞生并进入生产就绪阶段，Kubernetes 存储特别兴趣组希望所有 Kubernetes 用户都能从 CSI 模型中受益──然而，我们不应破坏与现有存储 API 类型的 API 兼容性。对此，我们给出的解决方案是 CSI 迁移：该功能实现将树内存储 API 翻译成等效的 CSI API，并把操作委托给一个替换的 CSI 驱动来完成。
+
+<!---
+The CSI migration effort enables the replacement of existing in-tree storage plugins such as `kubernetes.io/gce-pd` or `kubernetes.io/aws-ebs` with a corresponding [CSI driver](https://kubernetes-csi.github.io/docs/introduction.html) from the storage backend.
+If CSI Migration is working properly, Kubernetes end users shouldn’t notice a difference. Existing `StorageClass`, `PersistentVolume` and `PersistentVolumeClaim` objects should continue to work.
+When a Kubernetes cluster administrator updates a cluster to enable CSI migration, existing workloads that utilize PVCs which are backed by in-tree storage plugins will continue to function as they always have. 
+However, behind the scenes, Kubernetes hands control of all storage management operations (previously targeting in-tree drivers) to CSI drivers.
+-->
+CSI 迁移工作使存储后端现有的树内存储插件（如 `kubernetes.io/gce-pd` 或 `kubernetes.io/aws-ebs`）能够被相应的 [CSI 驱动](https://kubernetes-csi.github.io/docs/introduction.html) 所取代。如果 CSI 迁移功能正确发挥作用，Kubernetes 终端用户应该不会注意到有什么变化。现有的 `StorageClass`、`PersistentVolume` 和 `PersistentVolumeClaim` 对象应继续工作。当 Kubernetes 集群管理员更新集群以启用 CSI 迁移功能时，利用到 PVCs[^1]（由树内存储插件支持）的现有工作负载将继续像以前一样运作──不过在幕后，Kubernetes 将所有存储管理操作（以前面向树内存储驱动的）交给 CSI 驱动控制。
+
+<!---
+For example, suppose you are a `kubernetes.io/gce-pd` user, after CSI migration, you can still use `kubernetes.io/gce-pd` to provision new volumes, mount existing GCE-PD volumes or delete existing volumes. All existing API/Interface will still function correctly. However, the underlying function calls are all going through the [GCE PD CSI driver](https://github.com/kubernetes-sigs/gcp-compute-persistent-disk-csi-driver) instead of the in-tree Kubernetes function.
+-->
+举个例子。假设你是 `kubernetes.io/gce-pd` 用户，在启用 CSI 迁移功能后，你仍然可以使用 `kubernetes.io/gce-pd` 来配置新卷、挂载现有的 GCE-PD 卷或删除现有卷。所有现有的 API/接口 仍将正常工作──只不过，底层功能调用都将通向 [GCE PD CSI 驱动](https://github.com/kubernetes-sigs/gcp-compute-persistent-disk-csi-driver)，而不是 Kubernetes 的树内存储功能。
+
+<!---
+This enables a smooth transition for end users. Additionally as storage plugin developers, we can reduce the burden of maintaining the in-tree storage plugins and eventually remove them from the core Kubernetes binary.
+-->
+这使得 Kubernetes 终端用户可以顺利过渡。另外，对于存储插件的开发者，我们可以减少他们维护树内存储插件的负担，并最终将这些插件从 Kubernetes 核心的二进制中移除。
+
+<!---
+## What has been changed, and what's new?
+
+Building on the work done in Kubernetes v1.17 and earlier, the releases since then have
+made a series of changes:
+-->
+## 改进与更新  {#what-has-been-changed-and-what-s-new}
+在 Kubernetes v1.17 及更早的工作基础上，此后的发布有了以下一系列改变：
+
+<!---
+### New feature gates
+
+The Kubernetes v1.21 release deprecated the `CSIMigration{provider}Complete` feature flags, and stopped honoring them. In their place came new feature flags named `InTreePlugin{vendor}Unregister`, that replace the old feature flag and retain all the functionality that `CSIMigration{provider}Complete` provided.
+-->
+### 新的特性门控（feature gate）  {#new-feature-gates}
+Kubernetes v1.21 弃用了 `CSIMigration{provider}Complete` 特性参数（feature flag），它们不再生效。取而代之的是名为 `InTreePlugin{vendor}Unregister` 的新特性参数，它们保留了 `CSIMigration{provider}Complete` 提供的所有功能。
+
+<!---
+`CSIMigration{provider}Complete` was introduced before as a supplementary feature gate once CSI migration is enabled on all of the nodes. This flag unregisters the in-tree storage plugin you specify with the `{provider}` part of the flag name.
+-->
+`CSIMigration{provider}Complete` 是作为 CSI 迁移功能在所有节点上启用后的补充特性门控于之前引入的。这个参数可注销参数名称中 `{provider}` 部分所指定的树内存储插件。
+
+<!---
+When you enable that feature gate, then instead of using the in-tree driver code, your cluster directly selects and uses the relevant CSI driver. This happens without any check for whether CSI migration is enabled on the node, or whether you have in fact deployed that CSI driver.
+-->
+当你启用该特性门控时，你的集群不再使用树内驱动代码，而是直接选择并使用相应的 CSI 驱动。同时，集群并不检查节点上 CSI 迁移功能是否启用，以及 CSI 驱动是否实际部署。
+
+<!---
+While this feature gate is a great helper, SIG Storage (and, I'm sure, lots of cluster operators) also wanted a feature gate that lets you disable an in-tree storage plugin, even without also enabling CSI migration. For example, you might want to disable the EBS storage plugin on a GCE cluster, because EBS volumes are specific to a different vendor's cloud (AWS).
+-->
+虽然这一特性门控是一个很好的帮手，但 Kubernetes 存储特别兴趣组（以及，我相信还有很多集群操作员）同样希望有一个特性门控可以让你即使在不启用 CSI 迁移功能时，也能禁用树内存储插件。例如，你可能希望在一个 GCE 集群上禁用 EBS 存储插件，因为 EBS 卷是其他供应商的云（AWS）所专有的。
+
+<!---
+To make this possible, Kubernetes v1.21 introduced a new feature flag set: `InTreePlugin{vendor}Unregister`.
+
+`InTreePlugin{vendor}Unregister` is a standalone feature gate that can be enabled and disabled independently from CSI Migration. When enabled, the component will not register the specific in-tree storage plugin to the supported list. If the cluster operator only enables this flag, end users will get an error from PVC saying it cannot find the plugin when the plugin is used. The cluster operator may want to enable this regardless of CSI Migration if they do not want to support the legacy in-tree APIs and only support CSI moving forward.
+-->
+为了使这成为可能，Kubernetes v1.21 引入了一个新的特性参数集合：`InTreePlugin{vendor}Unregister`。
+
+`InTreePlugin{vendor}Unregister` 是一种特性门控，可以独立于 CSI 迁移功能来启用或禁用。当启用此种特性门控时，组件将不会把相应的树内存储插件注册到支持的列表中。如果集群操作员只启用了这种参数，终端用户将在使用该插件的 PVC[^1] 处遇到错误，提示其找不到插件。如果集群操作员不想支持过时的树内存储 API，只支持 CSI，那么他们可能希望启用这种特性门控而不考虑 CSI 迁移功能。
+
+<!---
+
+### Observability
+
+Kubernetes v1.21 introduced [metrics](https://github.com/kubernetes/kubernetes/issues/98279) for tracking CSI migration.
+You can use these metrics to observe how your cluster is using storage services and whether access to that storage is using the legacy in-tree driver or its CSI-based replacement.
+-->
+
+### 可观察性  {#observability}
+
+Kubernetes v1.21 引入了跟踪 CSI 迁移功能的[指标](https://github.com/kubernetes/kubernetes/issues/98279)。你可以使用这些指标来观察你的集群是如何使用存储服务的，以及对该存储的访问使用的是传统的树内驱动还是基于 CSI 的替代。
+
+<!---
+| Components                                   | Metrics                            | Notes                                                                                                                                                                                  |
+| -------------------------------------------- | ---------------------------------- | -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
+| Kube-Controller-Manager                      | storage_operation_duration_seconds | A new label `migrated` is added to the metric to indicate whether this storage operation is a CSI migration operation(string value `true` for enabled and `false` for not enabled).    |
+| Kubelet                                      | csi_operations_seconds             | The new metric exposes labels including `driver_name`, `method_name`, `grpc_status_code` and `migrated`. The meaning of these labels is identical to `csi_sidecar_operations_seconds`. |
+| CSI Sidecars(provisioner, attacher, resizer) | csi_sidecar_operations_seconds     | A new label `migrated` is added to the metric to indicate whether this storage operation is a CSI migration operation(string value `true` for enabled and `false` for not enabled).    |
+-->
+| 组件 | 指标 | 注释 |
+| ---- | ---- | ---- |
+| Kube-Controller-Manager | storage_operation_duration_seconds | 一个新的标签 `migrated` 被添加到指标中，以表明该存储操作是否由 CSI 迁移功能操作（字符串值为 `true` 表示启用，`false` 表示未启用）。 |
+| Kubelet | csi_operations_seconds | 新的指标提供的标签包括 `driver_name`、`method_name`、`grpc_status_code` 和 `migrated`。这些标签的含义与 `csi_sidecar_operations_seconds` 相同。 |
+| CSI Sidecars(provisioner, attacher, resizer) | csi_sidecar_operations_seconds | 一个新的标签 `migrated` 被添加到指标中，以表明该存储操作是否由 CSI 迁移功能操作（字符串值为 `true` 表示启用，`false` 表示未启用）。 |
+
+<!---
+### Bug fixes and feature improvement
+
+We have fixed numerous bugs like dangling attachment, garbage collection, incorrect topology label through the help of our beta testers.
+-->
+### 错误修复和功能改进  {#bug-fixes-and-feature-improvement}
+
+籍由 beta 测试人员的帮助，我们修复了许多错误──如悬空附件、垃圾收集、拓扑标签错误等。
+
+<!---
+### Cloud Provider && Cluster Lifecycle Collaboration
+
+SIG Storage has been working closely with SIG Cloud Provider and SIG Cluster Lifecycle on the rollout of CSI migration.
+
+If you are a user of a managed Kubernetes service, check with your provider if anything needs to be done. In many cases, the provider will manage the migration and no additional work is required.
+-->
+### 与 Kubernetes 云提供商特别兴趣组、集群生命周期特别兴趣组的合作  {#cloud-provider-cluster-lifecycle-collaboration}
+
+Kubernetes 存储特别兴趣组与云提供商特别兴趣组和集群生命周期特别兴趣组，正为了 CSI 迁移功能上线而密切合作。
+
+如果你采用托管 Kubernetes 服务，请询问你的供应商是否有什么工作需要完成。在许多情况下，供应商将管理迁移，你不需要做额外的工作。
+
+<!---
+If you use a distribution of Kubernetes, check its official documentation for information about support for this feature. For the CSI Migration feature graduation to GA, SIG Storage and SIG Cluster Lifecycle are collaborating towards making the migration mechanisms available in tooling (such as kubeadm) as soon as they're available in Kubernetes itself.
+-->
+如果你使用的是 Kubernetes 的发行版，请查看其官方文档，了解对该功能的支持情况。对于已进入正式发布阶段的 CSI 迁移功能，Kubernetes 存储特别兴趣组正与Kubernetes 集群生命周期特别兴趣组合作，以便在这些功能于 Kubernetes 中可用时，使迁移机制也进入到周边工具（如 kubeadm）中。
+
+<!---
+## What is the timeline / status? {#timeline-and-status}
+
+The current and targeted releases for each individual driver is shown in the table below:
+-->
+## 时间计划及当前状态  {#timeline-and-status}
+
+各驱动的当前发布及目标发布如下表所示：
+
+<!---
+| Driver           | Alpha | Beta (in-tree deprecated) | Beta (on-by-default) | GA            | Target "in-tree plugin" removal |
+| ---------------- | ----- | ------------------------- | -------------------- | ------------- | ------------------------------- |
+| AWS EBS          | 1.14  | 1.17                      | 1.23                 | 1.24 (Target) | 1.26 (Target)                   |
+| GCE PD           | 1.14  | 1.17                      | 1.23                 | 1.24 (Target) | 1.26 (Target)                   |
+| OpenStack Cinder | 1.14  | 1.18                      | 1.21                 | 1.24 (Target) | 1.26 (Target)                   |
+| Azure Disk       | 1.15  | 1.19                      | 1.23                 | 1.24 (Target) | 1.26 (Target)                   |
+| Azure File       | 1.15  | 1.21                      | 1.24 (Target)        | 1.25 (Target) | 1.27 (Target)                   |
+| vSphere          | 1.18  | 1.19                      | 1.24 (Target)        | 1.25 (Target) | 1.27 (Target)                   |
+| Ceph RBD         | 1.23  |
+| Portworx         | 1.23  |
+-->
+| 驱动 | Alpha | Beta（启用树内插件） | Beta（默认启用） | 正式发布 | 目标：移除“树内存储插件” |
+| ---------------- | ----- | ------------------------- | -------------------- | ------------- | ------------------------------- |
+| AWS EBS          | 1.14  | 1.17                      | 1.23                 | 1.24 (Target) | 1.26 (Target)                   |
+| GCE PD           | 1.14  | 1.17                      | 1.23                 | 1.24 (Target) | 1.26 (Target)                   |
+| OpenStack Cinder | 1.14  | 1.18                      | 1.21                 | 1.24 (Target) | 1.26 (Target)                   |
+| Azure Disk       | 1.15  | 1.19                      | 1.23                 | 1.24 (Target) | 1.26 (Target)                   |
+| Azure File       | 1.15  | 1.21                      | 1.24 (Target)        | 1.25 (Target) | 1.27 (Target)                   |
+| vSphere          | 1.18  | 1.19                      | 1.24 (Target)        | 1.25 (Target) | 1.27 (Target)                   |
+| Ceph RBD         | 1.23  |
+| Portworx         | 1.23  |
+
+<!---
+The following storage drivers will not have CSI migration support. The ScaleIO driver was already removed; the others are deprecated and will be removed from core Kubernetes.
+-->
+以下存储驱动将不会支持 CSI 迁移功能。其中 ScaleIO 驱动已经被移除；其他驱动都被弃用，并将从 Kubernetes 核心中删除。
+
+<!---
+| Driver    | Deprecated | Code Removal  |
+| --------- | ---------- | ------------- |
+| ScaleIO   | 1.16       | 1.22          |
+| Flocker   | 1.22       | 1.25 (Target) |
+| Quobyte   | 1.22       | 1.25 (Target) |
+| StorageOS | 1.22       | 1.25 (Target) |
+-->
+| 驱动 | 被弃用 | 代码移除 |
+| ---- | ---- | ---- |
+| ScaleIO   | 1.16 | 1.22          |
+| Flocker   | 1.22 | 1.25 (Target) |
+| Quobyte   | 1.22 | 1.25 (Target) |
+| StorageOS | 1.22 | 1.25 (Target) |
+
+<!---
+## What's next?
+
+With more CSI drivers graduating to GA, we hope to soon mark the overall CSI Migration feature as GA. We are expecting cloud provider in-tree storage plugins code removal to happen by Kubernetes v1.26 and v1.27.
+-->
+## 下一步的计划  {#what-s-next}
+
+随着更多的 CSI 驱动进入正式发布阶段，我们希望尽快将整个 CSI 迁移功能标记为正式发布状态。我们计划在 Kubernetes v1.26 和 v1.27 之前移除云提供商树内存储插件的代码。
+
+<!---
+## What should I do as a user?
+
+Note that all new features for the Kubernetes storage system (such as volume snapshotting) will only be added to the CSI interface. Therefore, if you are starting up a new cluster, creating stateful applications for the first time, or require these new features we recommend using CSI drivers natively (instead of the in-tree volume plugin API). Follow the [updated user guides for CSI drivers](https://kubernetes-csi.github.io/docs/drivers.html) and use the new CSI APIs.
+-->
+## 作为用户，我应该做什么？  {#what-should-i-do-as-a-user}
+
+请注意，Kubernetes 存储系统的所有新功能（如卷快照）将只被添加到 CSI 接口。因此，如果你正在启动一个新的集群、首次创建有状态的应用程序，或者需要这些新功能，我们建议你在本地使用 CSI 驱动（而不是树内卷插件 API）。遵循[最新的 CSI 驱动用户指南](https://kubernetes-csi.github.io/docs/drivers.html)并使用新的 CSI API。
+
+<!---
+However, if you choose to roll a cluster forward or continue using specifications with the legacy volume APIs, CSI Migration will ensure we continue to support those deployments with the new CSI drivers. However, if you want to leverage new features like snapshot, it will require a manual migration to re-import an existing intree PV as a CSI PV.
+-->
+然而，如果您选择沿用现有集群或继续使用传统卷 API 的规约，CSI 迁移功能将确保我们通过新 CSI 驱动继续支持这些部署。但是，如果您想利用快照等新功能，则需要进行手动迁移，将现有的树内持久卷重新导入为 CSI 持久卷。
+
+<!---
+## How do I get involved?
+
+The Kubernetes Slack channel [#csi-migration](https://kubernetes.slack.com/messages/csi-migration) along with any of the standard [SIG Storage communication channels](https://github.com/kubernetes/community/blob/master/sig-storage/README.md#contact) are great mediums to reach out to the SIG Storage and migration working group teams.
+-->
+## 我如何参与其中？  {#how-do-i-get-involved}
+Kubernetes Slack 频道 [#csi-migration](https://kubernetes.slack.com/messages/csi-migration) 以及任何一个标准的 [SIG Storage 通信频道](https://github.com/kubernetes/community/blob/master/sig-storage/README.md#contact)都是与 Kubernetes 存储特别兴趣组和迁移工作组团队联系的绝佳媒介。
+
+<!---
+This project, like all of Kubernetes, is the result of hard work by many contributors from diverse backgrounds working together. We offer a huge thank you to the contributors who stepped up these last quarters to help move the project forward:
+
+* Michelle Au (msau42)
+* Jan Šafránek (jsafrane)
+* Hemant Kumar (gnufied)
+-->
+该项目，和其他所有 Kubernetes 项目一样，是许多来自不同背景的贡献者共同努力的结果。我们非常感谢在过去几个季度里挺身而出帮助推动项目发展的贡献者们：
+
+* Michelle Au (msau42)
+* Jan Šafránek (jsafrane)
+* Hemant Kumar (gnufied)
+
+<!---
+Special thanks to the following people for the insightful reviews, thorough consideration and valuable contribution to the CSI migration feature:
+
+* Andy Zhang (andyzhangz)
+* Divyen Patel (divyenpatel)
+* Deep Debroy (ddebroy)
+* Humble Devassy Chirammal (humblec)
+* Jing Xu (jingxu97)
+* Jordan Liggitt (liggitt)
+* Matthew Cary (mattcary)
+* Matthew Wong (wongma7)
+* Neha Arora (nearora-msft)
+* Oksana Naumov (trierra)
+* Saad Ali (saad-ali)
+* Tim Bannister (sftim)
+* Xing Yang (xing-yang)
+-->
+特别感谢以下人士对 CSI 迁移功能的精辟评论、全面考虑和宝贵贡献：
+
+* Andy Zhang (andyzhangz)
+* Divyen Patel (divyenpatel)
+* Deep Debroy (ddebroy)
+* Humble Devassy Chirammal (humblec)
+* Jing Xu (jingxu97)
+* Jordan Liggitt (liggitt)
+* Matthew Cary (mattcary)
+* Matthew Wong (wongma7)
+* Neha Arora (nearora-msft)
+* Oksana Naumov (trierra)
+* Saad Ali (saad-ali)
+* Tim Bannister (sftim)
+* Xing Yang (xing-yang)
+
+<!---
+Those interested in getting involved with the design and development of CSI or any part of the Kubernetes Storage system, join the [Kubernetes Storage Special Interest Group (SIG)](https://github.com/kubernetes/community/tree/master/sig-storage). We’re rapidly growing and always welcome new contributors.
+-->
+有兴趣参与 CSI 或 Kubernetes 存储系统任何部分的设计和开发的人，请加入 [Kubernetes 存储特别兴趣组](https://github.com/kubernetes/community/tree/master/sig-storage)。我们正在迅速成长，并一直欢迎新的贡献者。
+
+
+[^1]: 持久卷申领（PersistentVolumeClaim，PVC）
\ No newline at end of file
diff --git a/content/zh-cn/blog/_posts/2021-12-16-StatefulSet-PVC-Auto-Deletion.md b/content/zh-cn/blog/_posts/2021-12-16-StatefulSet-PVC-Auto-Deletion.md
new file mode 100644
index 0000000000..2f19fcae56
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2021-12-16-StatefulSet-PVC-Auto-Deletion.md
@@ -0,0 +1,208 @@
+---
+layout: blog
+title: 'Kubernetes 1.23: StatefulSet PVC 自动删除 (alpha)'
+date: 2021-12-16
+slug: kubernetes-1-23-statefulset-pvc-auto-deletion
+---
+<!--
+layout: blog
+title: 'Kubernetes 1.23: StatefulSet PVC Auto-Deletion (alpha)'
+date: 2021-12-16
+slug: kubernetes-1-23-statefulset-pvc-auto-deletion
+-->
+
+<!--
+**Author:** Matthew Cary (Google)
+-->
+**作者:** Matthew Cary (谷歌)
+
+<!--
+Kubernetes v1.23 introduced a new, alpha-level policy for
+[StatefulSets](/docs/concepts/workloads/controllers/statefulset/) that controls the lifetime of
+[PersistentVolumeClaims](/docs/concepts/storage/persistent-volumes/) (PVCs) generated from the
+StatefulSet spec template for cases when they should be deleted automatically when the StatefulSet
+is deleted or pods in the StatefulSet are scaled down.
+-->
+Kubernetes v1.23 为 [StatefulSets](/zh-cn/docs/concepts/workloads/controllers/statefulset/)
+引入了一个新的 alpha 级策略，用来控制由 StatefulSet 规约模板生成的
+[PersistentVolumeClaims](/zh-cn/docs/concepts/storage/persistent-volumes/) (PVCs) 的生命周期，
+用于当删除 StatefulSet 或减少 StatefulSet 中的 Pods 数量时 PVCs 应该被自动删除的场景。
+
+<!--
+## What problem does this solve?
+-->
+## 它解决了什么问题？
+
+<!--
+A StatefulSet spec can include Pod and PVC templates. When a replica is first created, the
+Kubernetes control plane creates a PVC for that replica if one does not already exist. The behavior
+before Kubernetes v1.23 was that the control plane never cleaned up the PVCs created for
+StatefulSets - this was left up to the cluster administrator, or to some add-on automation that
+you’d have to find, check suitability, and deploy. The common pattern for managing PVCs, either
+manually or through tools such as Helm, is that the PVCs are tracked by the tool that manages them,
+with explicit lifecycle. Workflows that use StatefulSets must determine on their own what PVCs are
+created by a StatefulSet and what their lifecycle should be.
+-->
+StatefulSet 规约中可以包含 Pod 和 PVC 的模板。当副本先被创建时，如果 PVC 还不存在，
+Kubernetes 控制面会为该副本自动创建一个 PVC。在 Kubernetes 1.23 版本之前，
+控制面不会删除 StatefulSet 创建的 PVCs——这依赖集群管理员或你需要部署一些额外的适用的自动化工具来处理。
+管理 PVC 的常见模式是通过手动或使用 Helm 等工具，PVC 的具体生命周期由管理它的工具跟踪。
+使用 StatefulSet 时必须自行确定 StatefulSet 创建哪些 PVC，以及它们的生命周期应该是什么。
+
+<!--
+Before this new feature, when a StatefulSet-managed replica disappears, either because the
+StatefulSet is reducing its replica count, or because its StatefulSet is deleted, the PVC and its
+backing volume remains and must be manually deleted. While this behavior is appropriate when the
+data is critical, in many cases the persistent data in these PVCs is either temporary, or can be
+reconstructed from another source. In those cases, PVCs and their backing volumes remaining after
+their StatefulSet or replicas have been deleted are not necessary, incur cost, and require manual
+cleanup.
+-->
+在这个新特性之前，当一个 StatefulSet 管理的副本消失时，无论是因为 StatefulSet 减少了它的副本数，
+还是因为它的 StatefulSet 被删除了，PVC 及其下层的卷仍然存在，需要手动删除。
+当存储数据比较重要时，这样做是合理的，但在许多情况下，这些 PVC 中的持久化数据要么是临时的，
+要么可以从另一个源端重建。在这些情况下，删除 StatefulSet 或减少副本后留下的 PVC 及其下层的卷是不必要的，
+还会产生成本，需要手动清理。
+
+<!--
+## The new StatefulSet PVC retention policy
+-->
+## 新的 StatefulSet PVC 保留策略
+
+<!--
+If you enable the alpha feature, a StatefulSet spec includes a PersistentVolumeClaim retention
+policy.  This is used to control if and when PVCs created from a StatefulSet’s `volumeClaimTemplate`
+are deleted.  This first iteration of the retention policy contains two situations where PVCs may be
+deleted.
+-->
+如果你启用这个新 alpha 特性，StatefulSet 规约中就可以包含 PersistentVolumeClaim 的保留策略。
+该策略用于控制是否以及何时删除基于 StatefulSet 的 `volumeClaimTemplate` 属性所创建的 PVCs。
+保留策略的首次迭代包含两种可能删除 PVC 的情况。
+
+<!--
+The first situation is when the StatefulSet resource is deleted (which implies that all replicas are
+also deleted). This is controlled by the `whenDeleted` policy. The second situation, controlled by
+`whenScaled` is when the StatefulSet is scaled down, which removes some but not all of the replicas
+in a StatefulSet. In both cases the policy can either be `Retain`, where the corresponding PVCs are
+not touched, or `Delete`, which means that PVCs are deleted. The deletion is done with a normal
+[object deletion](/docs/concepts/architecture/garbage-collection/), so that, for example, all
+retention policies for the underlying PV are respected.
+-->
+第一种情况是 StatefulSet 资源被删除时（这意味着所有副本也被删除），这由 `whenDeleted` 策略控制的。
+第二种情况是 StatefulSet 缩小时，即删除 StatefulSet 部分副本，这由 `whenScaled` 策略控制。
+在这两种情况下，策略即可以是 `Retain` 不涉及相应 PVCs 的改变，也可以是 `Delete` 即删除对应的 PVCs。
+删除是通过普通的[对象删除](/zh-cn/docs/concepts/architecture/garbage-collection/)完成的，
+因此，的所有保留策略都会被遵照执行。
+
+<!--
+This policy forms a matrix with four cases. I’ll walk through and give an example for each one.
+-->
+该策略形成包含四种情况的矩阵。我将逐一介绍，并为每一种情况给出一个例子。
+
+<!--
+  * **`whenDeleted` and `whenScaled` are both `Retain`.** This matches the existing behavior for
+    StatefulSets, where no PVCs are deleted. This is also the default retention policy. It’s
+    appropriate to use when data on StatefulSet volumes may be irreplaceable and should only be
+    deleted manually.
+-->
+  * **`whenDeleted` 和 `whenScaled` 都是 `Retain`。** 这与 StatefulSets 的现有行为一致，
+    即不删除 PVCs。 这也是默认的保留策略。它适用于 StatefulSet
+    卷上的数据是不可替代的且只能手动删除的情况。
+ 
+<!--
+  * **`whenDeleted` is `Delete` and `whenScaled` is `Retain`.** In this case, PVCs are deleted only when
+    the entire StatefulSet is deleted. If the StatefulSet is scaled down, PVCs are not touched,
+    meaning they are available to be reattached if a scale-up occurs with any data from the previous
+    replica. This might be used for a temporary StatefulSet, such as in a CI instance or ETL
+    pipeline, where the data on the StatefulSet is needed only during the lifetime of the
+    StatefulSet lifetime, but while the task is running the data is not easily reconstructible. Any
+    retained state is needed for any replicas that scale down and then up.
+-->
+  * **`whenDeleted` 是 `Delete` 但 `whenScaled` 是 `Retain`。** 在这种情况下，
+    只有当整个 StatefulSet 被删除时，PVCs 才会被删除。
+    如果减少 StatefulSet 副本，PVCs 不会删除，这意味着如果增加副本时，可以从前一个副本重新连接所有数据。
+    这可能用于临时的 StatefulSet，例如在 CI 实例或 ETL 管道中，
+    StatefulSet 上的数据仅在 StatefulSet 生命周期内才需要，但在任务运行时数据不易重构。
+    任何保留状态对于所有先缩小后扩大的副本都是必需的。
+
+<!--
+  * **`whenDeleted` and `whenScaled` are both `Delete`.** PVCs are deleted immediately when their
+    replica is no longer needed. Note this does not include when a Pod is deleted and a new version
+    rescheduled, for example when a node is drained and Pods need to migrate elsewhere. The PVC is
+    deleted only when the replica is no longer needed as signified by a scale-down or StatefulSet
+    deletion. This use case is for when data does not need to live beyond the life of its
+    replica. Perhaps the data is easily reconstructable and the cost savings of deleting unused PVCs
+    is more important than quick scale-up, or perhaps that when a new replica is created, any data
+    from a previous replica is not usable and must be reconstructed anyway.
+-->
+  * **`whenDeleted` 和 `whenScaled` 都是 `Delete`。** 当其副本不再被需要时，PVCs 会立即被删除。
+    注意，这并不包括 Pod 被删除且有新版本被调度的情况，例如当节点被腾空而 Pod 需要迁移到别处时。
+    只有当副本不再被需要时，如按比例缩小或删除 StatefulSet 时，才会删除 PVC。
+    此策略适用于数据生命周期短于副本生命周期的情况。即数据很容易重构，
+    且删除未使用的 PVC 所节省的成本比快速增加副本更重要，或者当创建一个新的副本时，
+    来自以前副本的任何数据都不可用，必须重新构建。
+
+<!--
+  * **`whenDeleted` is `Retain` and `whenScaled` is `Delete`.** This is similar to the previous case,
+    when there is little benefit to keeping PVCs for fast reuse during scale-up. An example of a
+    situation where you might use this is an Elasticsearch cluster. Typically you would scale that
+    workload up and down to match demand, whilst ensuring a minimum number of replicas (for example:
+    3). When scaling down, data is migrated away from removed replicas and there is no benefit to
+    retaining those PVCs. However, it can be useful to bring the entire Elasticsearch cluster down
+    temporarily for maintenance. If you need to take the Elasticsearch system offline, you can do
+    this by temporarily deleting the StatefulSet, and then bringing the Elasticsearch cluster back
+    by recreating the StatefulSet. The PVCs holding the Elasticsearch data will still exist and the
+    new replicas will automatically use them.
+-->
+  * **`whenDeleted` 是 `Retain` 但 `whenScaled` 是 `Delete`。** 这与前一种情况类似，
+    在增加副本时用保留的 PVCs 快速重构几乎没有什么益处。例如 Elasticsearch 集群就是使用的这种方式。
+    通常，你需要增大或缩小工作负载来满足业务诉求，同时确保最小数量的副本（例如：3）。
+    当减少副本时，数据将从已删除的副本迁移出去，保留这些 PVCs 没有任何用处。
+    但是，这对临时关闭整个 Elasticsearch 集群进行维护时是很有用的。
+    如果需要使 Elasticsearch 系统脱机，可以通过临时删除 StatefulSet 来实现，
+    然后通过重新创建 StatefulSet 来恢复 Elasticsearch 集群。
+    保存 Elasticsearch 数据的 PVCs 不会被删除，新的副本将自动使用它们。
+  
+<!--
+  Visit the
+[documentation](/docs/concepts/workloads/controllers/statefulset/#persistentvolumeclaim-policies) to
+see all the details.
+-->
+查阅[文档](/zh-cn/docs/concepts/workloads/controllers/statefulset/#persistentvolumeclaim-policies)
+获取更多详细信息。
+
+<!--
+## What’s next?
+-->
+## 下一步是什么？
+
+<!--
+Enable the feature and try it out! Enable the `StatefulSetAutoDeletePVC` feature gate on a cluster,
+then create a StatefulSet using the new policy. Test it out and tell us what you think!
+-->
+启用该功能并尝试一下！在集群上启用 `StatefulSetAutoDeletePVC` 功能，然后使用新策略创建 StatefulSet。
+测试一下，告诉我们你的体验！
+
+<!--
+I'm very curious to see if this owner reference mechanism works well in practice. For example, we
+realized there is no mechanism in Kubernetes for knowing who set a reference, so it’s possible that
+the StatefulSet controller may fight with custom controllers that set their own
+references. Fortunately, maintaining the existing retention behavior does not involve any new owner
+references, so default behavior will be compatible.
+-->
+我很好奇这个属主引用机制在实践中是否有效。例如，我们意识到 Kubernetes 中没有可以知道谁设置了引用的机制，
+因此 StatefulSet 控制器可能会与设置自己的引用的自定义控制器发生冲突。
+幸运的是，维护现有的保留行为不涉及任何新属主引用，因此默认行为是兼容的。
+
+<!--
+Please tag any issues you report with the label `sig/apps` and assign them to Matthew Cary
+([@mattcary](https://github.com/mattcary) at GitHub).
+-->
+请用标签 `sig/apps` 标记你报告的任何问题，并将它们分配给 Matthew Cary
+(在 GitHub上 [@mattcary](https://github.com/mattcary))。
+
+<!--
+Enjoy!
+-->
+尽情体验吧！
+
diff --git a/content/zh-cn/blog/_posts/2022-01-07-kubernetes-is-moving-on-from-dockershim.md b/content/zh-cn/blog/_posts/2022-01-07-kubernetes-is-moving-on-from-dockershim.md
new file mode 100644
index 0000000000..8d6a62c89c
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2022-01-07-kubernetes-is-moving-on-from-dockershim.md
@@ -0,0 +1,199 @@
+---
+layout: blog
+title: "Kubernetes 即将移除 Dockershim：承诺和下一步"
+date: 2022-01-07
+slug: kubernetes-is-moving-on-from-dockershim
+---
+<!--
+layout: blog
+title: "Kubernetes is Moving on From Dockershim: Commitments and Next Steps"
+date: 2022-01-07
+slug: kubernetes-is-moving-on-from-dockershim
+-->
+
+<!--
+**Authors:** Sergey Kanzhelev (Google), Jim Angel (Google), Davanum Srinivas (VMware), Shannon Kularathna (Google), Chris Short (AWS), Dawn Chen (Google)
+-->
+**作者：** Sergey Kanzhelev (Google), Jim Angel (Google), Davanum Srinivas (VMware), Shannon Kularathna (Google), Chris Short (AWS), Dawn Chen (Google)
+
+<!--
+Kubernetes is removing dockershim in the upcoming v1.24 release. We're excited
+to reaffirm our community values by supporting open source container runtimes,
+enabling a smaller kubelet, and increasing engineering velocity for teams using
+Kubernetes. If you [use Docker Engine as a container runtime](/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use/)
+for your Kubernetes cluster, get ready to migrate in 1.24! To check if you're
+affected, refer to [Check whether dockershim removal affects you](/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you/).
+-->
+Kubernetes 将在即将发布的 1.24 版本中移除 dockershim。我们很高兴能够通过支持开源容器运行时、支持更小的
+kubelet 以及为使用 Kubernetes 的团队提高工程速度来重申我们的社区价值。
+如果你[使用 Docker Engine 作为 Kubernetes 集群的容器运行时](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use/)，
+请准备好在 1.24 中迁移！要检查你是否受到影响，
+请参考[检查移除 Dockershim 对你的影响](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you/)。
+
+<!--
+## Why we’re moving away from dockershim
+
+Docker was the first container runtime used by Kubernetes. This is one of the
+reasons why Docker is so familiar to many Kubernetes users and enthusiasts.
+Docker support was hardcoded into Kubernetes – a component the project refers to
+as dockershim.
+-->
+## 为什么我们要离开 dockershim  {#why-we-re-moving-away-from-dockershim}
+
+Docker 是 Kubernetes 使用的第一个容器运行时。
+这也是许多 Kubernetes 用户和爱好者如此熟悉 Docker 的原因之一。
+对 Docker 的支持被硬编码到 Kubernetes 中——一个被项目称为 dockershim 的组件。
+<!--
+As containerization became an industry standard, the Kubernetes project added support
+for additional runtimes. This culminated in the implementation of the
+container runtime interface (CRI), letting system components (like the kubelet)
+talk to container runtimes in a standardized way. As a result, dockershim became
+an anomaly in the Kubernetes project.
+-->
+随着容器化成为行业标准，Kubernetes 项目增加了对其他运行时的支持。
+最终实现了容器运行时接口（CRI），让系统组件（如 kubelet）以标准化的方式与容器运行时通信。
+因此，dockershim 成为了 Kubernetes 项目中的一个异常现象。
+<!--
+Dependencies on Docker and dockershim have crept into various tools
+and projects in the CNCF ecosystem ecosystem, resulting in fragile code.
+
+By removing the
+dockershim CRI, we're embracing the first value of CNCF: "[Fast is better than
+slow](https://github.com/cncf/foundation/blob/master/charter.md#3-values)".
+Stay tuned for future communications on the topic!
+-->
+对 Docker 和 dockershim 的依赖已经渗透到 CNCF 生态系统中的各种工具和项目中，这导致了代码脆弱。
+
+通过删除 dockershim CRI，我们拥抱了 CNCF 的第一个价值：
+“[快比慢好](https://github.com/cncf/foundation/blob/master/charter.md#3-values)”。
+请继续关注未来关于这个话题的交流!
+
+<!--
+## Deprecation timeline
+
+We [formally announced](/blog/2020/12/08/kubernetes-1-20-release-announcement/) the dockershim deprecation in December 2020. Full removal is targeted
+in Kubernetes 1.24, in April 2022. This timeline
+aligns with our [deprecation policy](/docs/reference/using-api/deprecation-policy/#deprecating-a-feature-or-behavior),
+which states that deprecated behaviors must function for at least 1 year
+after their announced deprecation.
+-->
+## 弃用时间线  {#deprecation-timeline}
+
+我们[正式宣布](/zh-cn/blog/2020/12/08/kubernetes-1-20-release-announcement/)于
+2020 年 12 月弃用 dockershim。目标是在 2022 年 4 月，
+Kubernetes 1.24 中完全移除 dockershim。
+此时间线与我们的[弃用策略](/zh-cn/docs/reference/using-api/deprecation-policy/#deprecating-a-feature-or-behavior)一致，
+即规定已弃用的行为必须在其宣布弃用后至少运行 1 年。
+
+<!--
+We'll support Kubernetes version 1.23, which includes
+dockershim, for another year in the Kubernetes project. For managed
+Kubernetes providers, vendor support is likely to last even longer, but this is
+dependent on the companies themselves. Regardless, we're confident all cluster operations will have
+time to migrate. If you have more questions about the dockershim removal, refer
+to the [Dockershim Deprecation FAQ](/dockershim).
+-->
+包括 dockershim 的 Kubernetes 1.23 版本，在 Kubernetes 项目中将再支持一年。
+对于托管 Kubernetes 的供应商，供应商支持可能会持续更长时间，但这取决于公司本身。
+无论如何，我们相信所有集群操作都有时间进行迁移。如果你有更多关于 dockershim 移除的问题，
+请参考[弃用 Dockershim 的常见问题](/zh-cn/blog/2020/12/02/dockershim-faq/)。
+
+<!--
+We asked you whether you feel prepared for the migration from dockershim in this
+survey: [Are you ready for Dockershim removal](/blog/2021/11/12/are-you-ready-for-dockershim-removal/).
+We had over 600 responses. To everybody who took time filling out the survey,
+thank you.
+-->
+在这个[你是否为 dockershim 的删除做好了准备](/blog/2021/11/12/are-you-ready-for-dockershim-removal/)的调查中，
+我们询问你是否为 dockershim 的迁移做好了准备。我们收到了 600 多个回复。
+感谢所有花时间填写调查问卷的人。
+
+<!--
+The results show that we still have a lot of ground to cover to help you to
+migrate smoothly. Other container runtimes exist, and have been promoted
+extensively. However, many users told us they still rely on dockershim,
+and sometimes have dependencies that need to be re-worked. Some of these
+dependencies are outside of your control. Based on your feedback, here are some
+of the steps we are taking to help.
+-->
+结果表明，在帮助你顺利迁移方面，我们还有很多工作要做。
+存在其他容器运行时，并且已被广泛推广。但是，许多用户告诉我们他们仍然依赖 dockershim，
+并且有时需要重新处理依赖项。其中一些依赖项超出控制范围。
+根据收集到的反馈，我们采取了一些措施提供帮助。
+
+<!--
+## Our next steps
+
+Based on the feedback you provided:
+
+- CNCF and the 1.24 release team are committed to delivering documentation in
+  time for the 1.24 release. This includes more informative blog posts like this
+  one, updating existing code samples, tutorials, and tasks, and producing a
+  migration guide for cluster operators.
+- We are reaching out to the rest of the CNCF community to help prepare them for
+  this change.
+-->
+## 我们的下一个步骤 {#our-next-steps}
+
+根据提供的反馈：
+
+- CNCF 和 1.24 版本团队致力于及时交付 1.24 版本的文档。这包括像本文这样的包含更多信息的博客文章，
+  更新现有的代码示例、教程和任务，并为集群操作人员生成迁移指南。
+- 我们正在联系 CNCF 社区的其他成员，帮助他们为这一变化做好准备。
+
+<!--
+If you're part of a project with dependencies on dockershim, or if you're
+interested in helping with the migration effort, please join us! There's always
+room for more contributors, whether to our transition tools or to our
+documentation. To get started, say hello in the
+[#sig-node](https://kubernetes.slack.com/archives/C0BP8PW9G)
+channel on [Kubernetes Slack](https://slack.kubernetes.io/)!
+-->
+如果你是依赖 dockershim 的项目的一部分，或者如果你有兴趣帮助参与迁移工作，请加入我们！
+无论是我们的迁移工具还是我们的文档，总是有更多贡献者的空间。
+作为起步，请在 [Kubernetes Slack](https://slack.kubernetes.io/) 上的
+[#sig-node](https://kubernetes.slack.com/archives/C0BP8PW9G) 频道打个招呼！
+
+<!--
+## Final thoughts
+
+As a project, we've already seen cluster operators increasingly adopt other
+container runtimes through 2021. 
+We believe there are no major blockers to migration. The steps we're taking to
+improve the migration experience will light the path more clearly for you.
+-->
+## 最终想法  {#final-thoughts}
+
+作为一个项目，我们已经看到集群运营商在 2021 年之前越来越多地采用其他容器运行时。
+我们相信迁移没有主要障碍。我们为改善迁移体验而采取的步骤将为你指明更清晰的道路。
+
+<!--
+We understand that migration from dockershim is yet another action you may need to
+do to keep your Kubernetes infrastructure up to date. For most of you, this step
+will be straightforward and transparent. In some cases, you will encounter
+hiccups or issues. The community has discussed at length whether postponing the
+dockershim removal would be helpful. For example, we recently talked about it in
+the [SIG Node discussion on November 11th](https://docs.google.com/document/d/1Ne57gvidMEWXR70OxxnRkYquAoMpt56o75oZtg-OeBg/edit#bookmark=id.r77y11bgzid)
+and in the [Kubernetes Steering committee meeting held on December 6th](https://docs.google.com/document/d/1qazwMIHGeF3iUh5xMJIJ6PDr-S3bNkT8tNLRkSiOkOU/edit#bookmark=id.m0ir406av7jx).
+We already [postponed](https://github.com/kubernetes/enhancements/pull/2481/) it
+once in 2021 because the adoption rate of other
+runtimes was lower than we wanted, which also gave us more time to identify
+potential blocking issues.
+-->
+我们知道，从 dockershim 迁移是你可能需要执行的另一项操作，以保证你的 Kubernetes 基础架构保持最新。
+对于你们中的大多数人来说，这一步将是简单明了的。在某些情况下，你会遇到问题。
+社区已经详细讨论了推迟 dockershim 删除是否会有所帮助。
+例如，我们最近在 [11 月 11 日的 SIG Node 讨论](https://docs.google.com/document/d/1Ne57gvidMEWXR70OxxnRkYquAoMpt56o75oZtg-OeBg/edit#bookmark=id.r77y11bgzid)和
+[12 月 6 日 Kubernetes Steering 举行的委员会会议](https://docs.google.com/document/d/1qazwMIHGeF3iUh5xMJIJ6PDr-S3bNkT8tNLRkSiOkOU/edit#bookmark=id.m0ir406av7jx)谈到了它。
+我们已经在 2021 年[推迟](https://github.com/kubernetes/enhancements/pull/2481/)它一次，
+因为其他运行时的采用率低于我们的预期，这也给了我们更多的时间来识别潜在的阻塞问题。
+
+<!--
+At this point, we believe that the value that you (and Kubernetes) gain from
+dockershim removal makes up for the migration effort you'll have. Start planning
+now to avoid surprises. We'll have more updates and guides before Kubernetes
+1.24 is released.
+-->
+在这一点上，我们相信你（和 Kubernetes）从移除 dockershim 中获得的价值可以弥补你将要进行的迁移工作。
+现在就开始计划以避免出现意外。在 Kubernetes 1.24 发布之前，我们将提供更多更新信息和指南。
+
diff --git a/content/zh-cn/blog/_posts/2022-01-10-meet-our-contributors-APAC-India-region-01.md b/content/zh-cn/blog/_posts/2022-01-10-meet-our-contributors-APAC-India-region-01.md
new file mode 100644
index 0000000000..e7bd427565
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2022-01-10-meet-our-contributors-APAC-India-region-01.md
@@ -0,0 +1,224 @@
+---
+layout: blog
+title: "认识我们的贡献者 - 亚太地区（印度地区）"
+date: 2022-01-10
+slug: meet-our-contributors-india-ep-01
+canonicalUrl: https://www.kubernetes.dev/blog/2022/01/10/meet-our-contributors-india-ep-01/
+---
+<!--
+layout: blog
+title: "Meet Our Contributors - APAC (India region)"
+date: 2022-01-10
+slug: meet-our-contributors-india-ep-01
+canonicalUrl: https://www.kubernetes.dev/blog/2022/01/10/meet-our-contributors-india-ep-01/
+-->
+
+<!--
+**Authors & Interviewers:** [Anubhav Vardhan](https://github.com/anubha-v-ardhan), [Atharva Shinde](https://github.com/Atharva-Shinde), [Avinesh Tripathi](https://github.com/AvineshTripathi), [Debabrata Panigrahi](https://github.com/Debanitrkl), [Kunal Verma](https://github.com/verma-kunal), [Pranshu Srivastava](https://github.com/PranshuSrivastava), [Pritish Samal](https://github.com/CIPHERTron), [Purneswar Prasad](https://github.com/PurneswarPrasad), [Vedant Kakde](https://github.com/vedant-kakde)
+-->
+**作者和采访者：** [Anubhav Vardhan](https://github.com/anubha-v-ardhan)、
+[Atharva Shinde](https://github.com/Atharva-Shinde)、
+[Avinesh Tripathi](https://github.com/AvineshTripathi)、
+[Debabrata Panigrahi](https://github.com/Debanitrkl)、
+[Kunal Verma](https://github.com/verma-kunal)、
+[Pranshu Srivastava](https://github.com/PranshuSrivastava)、
+[Pritish Samal](https://github.com/CIPHERTron)、
+[Purneswar Prasad](https://github.com/PurneswarPrasad)、
+[Vedant Kakde](https://github.com/vedant-kakde)
+
+<!--
+**Editor:** [Priyanka Saggu](https://psaggu.com)
+-->
+**编辑：** [Priyanka Saggu](https://psaggu.com)
+
+---
+
+<!--
+Good day, everyone 👋
+-->
+大家好 👋
+
+<!--
+Welcome to the first episode of the APAC edition of the "Meet Our Contributors" blog post series.
+-->
+欢迎来到亚太地区的“认识我们的贡献者”博文系列第一期。
+
+
+<!--
+In this post, we'll introduce you to five amazing folks from the India region who have been actively contributing to the upstream Kubernetes projects in a variety of ways, as well as being the leaders or maintainers of numerous community initiatives.
+-->
+在这篇文章中，我们将向你介绍来自印度地区的五位优秀贡献者，他们一直在以各种方式积极地为上游 Kubernetes 项目做贡献，同时也是众多社区倡议的领导者和维护者。
+
+<!--
+💫 *Let's get started, so without further ado…*
+-->
+💫 *闲话少说，我们开始吧。*
+
+
+## [Arsh Sharma](https://github.com/RinkiyaKeDad)
+
+<!--
+Arsh is currently employed with Okteto as a Developer Experience engineer. As a new contributor, he realised that 1:1 mentorship opportunities were quite beneficial in getting him started with the upstream project.
+-->
+Arsh 目前在 Okteto 公司中担任开发者体验工程师职务。作为一名新的贡献者，他意识到一对一的指导机会让他在开始上游项目中受益匪浅。
+
+<!--
+He is presently a CI Signal shadow on the Kubernetes 1.23 release team. He is also contributing to the SIG Testing and SIG Docs projects, as well as to the [cert-manager](https://github.com/cert-manager/infrastructure) tools development work that is being done under the aegis of SIG Architecture.
+-->
+他目前是 Kubernetes 1.23 版本团队的 CI Signal 经理。他还致力于为 SIG Testing 和 SIG Docs 项目提供贡献，并且在 SIG Architecture 项目中负责 [证书管理器](https://github.com/cert-manager/infrastructure) 工具的开发工作。
+
+<!--
+To the newcomers, Arsh helps plan their early contributions sustainably.
+-->
+对于新人来说，Arsh 帮助他们可持续地计划早期贡献。
+
+<!--
+> _I would encourage folks to contribute in a way that's sustainable. What I mean by that
+> is that it's easy to be very enthusiastic early on and take up more stuff than one can
+> actually handle. This can often lead to burnout in later stages. It's much more sustainable
+> to work on things iteratively._
+-->
+> 我鼓励大家以可持续的方式为社区做贡献。
+> 我的意思是，一个人很容易在早期的时候非常有热情，并且承担了很多超出个人实际能力的事情。
+> 这通常会导致后期的倦怠。迭代地处理事情会让大家对社区的贡献变得可持续。
+
+## [Kunal Kushwaha](https://github.com/kunal-kushwaha)
+
+<!--
+Kunal Kushwaha is a core member of the Kubernetes marketing council. He is also a CNCF ambassador and one of the founders of the [CNCF Students Program](https://community.cncf.io/cloud-native-students/).. He also served as a Communications role shadow during the 1.22 release cycle.
+-->
+Kunal Kushwaha 是 Kubernetes 营销委员会的核心成员。他同时也是 [CNCF 学生计划](https://community.cncf.io/cloud-native-students/) 的创始人之一。他还在 1.22 版本周期中担任通信经理一职。
+
+<!--
+At the end of his first year, Kunal began contributing to the [fabric8io kubernetes-client](https://github.com/fabric8io/kubernetes-client) project. He was then selected to work on the same project as part of Google Summer of Code. Kunal mentored people on the same project, first through Google Summer of Code then through Google Code-in.
+-->
+在他的第一年结束时，Kunal 开始为 [fabric8io kubernetes-client](https://github.com/fabric8io/kubernetes-client) 项目做贡献。然后，他被推选从事同一项目，此项目是 Google Summer of Code 的一部分。Kunal 在 Google Summer of Code、Google Code-in 等项目中指导过很多人。
+
+<!--
+As an open-source enthusiast, he believes that diverse participation in the community is beneficial since it introduces new perspectives and opinions and respect for one's peers. He has worked on various open-source projects, and his participation in communities has considerably assisted his development as a developer.
+-->
+作为一名开源爱好者，他坚信，社区的多元化参与是非常有益的，因为他引入了新的观念和观点，并尊重自己的伙伴。它曾参与过各种开源项目，他在这些社区中的参与对他作为开发者的发展有很大帮助。
+
+
+<!--
+> _I believe if you find yourself in a place where you do not know much about the
+> project, that's a good thing because now you can learn while contributing and the
+> community is there to help you. It has helped me a lot in gaining skills, meeting
+> people from around the world and also helping them. You can learn on the go,
+> you don't have to be an expert. Make sure to also check out no code contributions
+> because being a beginner is a skill and you can bring new perspectives to the
+> organisation._
+-->
+> 我相信，如果你发现自己在一个了解不多的项目当中，那是件好事，
+> 因为现在你可以一边贡献一边学习，社区也会帮助你。
+> 它帮助我获得了很多技能，认识了来自世界各地的人，也帮助了他们。
+> 你可以在这个过程中学习，自己不一定必须是专家。
+> 请重视非代码贡献，因为作为初学者这是一项技能，你可以为组织带来新的视角。
+
+## [Madhav Jivarajani](https://github.com/MadhavJivrajani)
+
+
+<!--
+Madhav Jivarajani works on the VMware Upstream Kubernetes stability team. He began contributing to the Kubernetes project in January 2021 and has since made significant contributions to several areas of work under SIG Architecture, SIG API Machinery, and SIG ContribEx (contributor experience).
+-->
+Madhav Jivarajani 在 VMware 上游 Kubernetes 稳定性团队工作。他于 2021 年 1 月开始为 Kubernetes 项目做贡献，此后在 SIG Architecture、SIG API Machinery 和 SIG ContribEx（贡献者经验）等项目的几个工作领域做出了重大贡献。
+
+<!--
+Among several significant contributions are his recent efforts toward the Archival of [design proposals](https://github.com/kubernetes/community/issues/6055), refactoring the ["groups" codebase](https://github.com/kubernetes/k8s.io/pull/2713) under k8s-infra repository to make it mockable and testable, and improving the functionality of the [GitHub k8s bot](https://github.com/kubernetes/test-infra/issues/23129).
+-->
+在这几个重要项目中，他最近致力于[设计方案](https://github.com/kubernetes/community/issues/6055)的存档工作，
+重构 k8s-infra 存储库下的 ["组"代码库](https://github.com/kubernetes/k8s.io/pull/2713)，
+使其具有可模拟性和可测试性，以及改进 [GitHub k8s 机器人](https://github.com/kubernetes/test-infra/issues/23129)的功能。
+
+<!--
+In addition to his technical efforts, Madhav oversees many projects aimed at assisting new contributors. He organises bi-weekly "KEP reading club" sessions to help newcomers understand the process of adding new features, deprecating old ones, and making other key changes to the upstream project. He has also worked on developing [Katacoda scenarios](https://github.com/kubernetes-sigs/contributor-katacoda) to assist new contributors to become acquainted with the process of contributing to k/k. In addition to his current efforts to meet with community members every week, he has organised several [new contributors workshops (NCW)](https://www.youtube.com/watch?v=FgsXbHBRYIc).
+-->
+除了在技术方面的贡献，Madhav 还监督许多旨在帮助新贡献者的项目。
+他每两周组织一次的 “KEP 阅读俱乐部” 会议，帮助新人了解添加新功能、
+摒弃旧功能以及对上游项目进行其他关键更改的过程。他还致力于开发
+[Katacoda 场景](https://github.com/kubernetes-sigs/contributor-katacoda)，
+以帮助新的贡献者在为 k/k 做贡献的过程更加熟练。目前除了每周与社区成员会面外，
+他还组织了几个[新贡献者讲习班（NCW）](https://www.youtube.com/watch?v=FgsXbHBRYIc)。
+
+<!--
+> _I initially did not know much about Kubernetes. I joined because the community was
+> super friendly. But what made me stay was not just the people, but the project itself.
+> My solution to not feeling overwhelmed in the community was to gain as much context
+> and knowledge into the topics that I was interested in and were being discussed. And
+> as a result I continued to dig deeper into Kubernetes and the design of it.
+> I am a systems nut & thus Kubernetes was an absolute goldmine for me._
+-->
+> 一开始我对 Kubernetes 了解并不多。我加入社区是因为社区超级友好。
+> 但让我留下来的不仅仅是人，还有项目本身。我在社区中不会感到不知所措，
+> 这是因为我能够在感兴趣的和正在讨论的主题中获得尽可能多的背景和知识。
+> 因此，我将继续深入探讨 Kubernetes 及其设计。
+> 我是一个系统迷，kubernetes 对我来说绝对是一个金矿。
+
+
+## [Rajas Kakodkar](https://github.com/rajaskakodkar)
+
+<!--
+Rajas Kakodkar currently works at VMware as a Member of Technical Staff. He has been engaged in many aspects of the upstream Kubernetes project since 2019.
+-->
+Rajas Kakodkar 目前在 VMware 担任技术人员。自 2019 年以来，他一直多方面地从事上游 kubernetes 项目。
+
+<!--
+He is now a key contributor to the Testing special interest group. He is also active in the SIG Network community. Lately, Rajas has contributed significantly to the [NetworkPolicy++](https://docs.google.com/document/d/1AtWQy2fNa4qXRag9cCp5_HsefD7bxKe3ea2RPn8jnSs/) and [`kpng`](https://github.com/kubernetes-sigs/kpng) sub-projects.
+-->
+他现在是 Testing 特别兴趣小组的关键贡献者。他还活跃在 SIG Network 社区。最近，Rajas 为 [NetworkPolicy++](https://docs.google.com/document/d/1AtWQy2fNa4qXRag9cCp5_HsefD7bxKe3ea2RPn8jnSs/) 和 [`kpng`](https://github.com/kubernetes-sigs/kpng) 子项目做出了重大贡献。
+
+<!--
+One of the first challenges he ran across was that he was in a different time zone than the upstream project's regular meeting hours. However, async interactions on community forums progressively corrected that problem.
+-->
+他遇到的第一个挑战是，他所处的时区与上游项目的日常会议时间不同。不过，社区论坛上的异步交互逐渐解决了这个问题。
+
+<!--
+> _I enjoy contributing to Kubernetes not just because I get to work on
+> cutting edge tech but more importantly because I get to work with
+> awesome people and help in solving real world problems._
+-->
+> 我喜欢为 kubernetes 做出贡献，不仅因为我可以从事尖端技术工作，
+> 更重要的是，我可以和优秀的人一起工作，并帮助解决现实问题。
+
+## [Rajula Vineet Reddy](https://github.com/rajula96reddy)
+
+<!--
+Rajula Vineet Reddy, a Junior Engineer at CERN, is a member of the Marketing Council team under SIG ContribEx . He also served as a release shadow for SIG Release during the 1.22 and 1.23 Kubernetes release cycles.
+-->
+Rajula Vineet Reddy，CERN 的初级工程师，是 SIG ContribEx 项目下营销委员会的成员。在 Kubernetes 1.22 和 1.23 版本周期中，他还担任 SIG Release 的版本经理。
+
+<!--
+He started looking at the Kubernetes project as part of a university project with the help of one of his professors. Over time, he spent a significant amount of time reading the project's documentation, Slack discussions, GitHub issues, and blogs, which helped him better grasp the Kubernetes project and piqued his interest in contributing upstream. One of his key contributions was his assistance with automation in the SIG ContribEx Upstream Marketing subproject.
+-->
+在他的一位教授的帮助下，他开始将 kubernetes 项目作为大学项目的一部分。慢慢地，他花费了大量的时间阅读项目的文档、Slack 讨论、GitHub issues 和博客，这有助于他更好地掌握 kubernetes 项目，并激发了他对上游项目做贡献的兴趣。他的主要贡献之一是他在SIG ContribEx上游营销子项目中协助实现了自动化。
+
+<!--
+According to Rajula, attending project meetings and shadowing various project roles are vital for learning about the community.
+-->
+Rajas 说，参与项目会议和跟踪各种项目角色对于了解社区至关重要。
+
+<!--
+> _I find the community very helpful and it's always_
+> “you get back as much as you contribute”.
+> _The more involved you are, the more you will understand, get to learn and
+> contribute new things._
+> 
+> _The first step to_ “come forward and start” _is hard. But it's all gonna be
+> smooth after that. Just take that jump._
+-->
+> 我发现社区非常有帮助，而且总是“你得到的回报和你贡献的一样多”。
+> 你参与得越多，你就越会了解、学习和贡献新东西。
+>
+> “挺身而出”的第一步是艰难的。但在那之后一切都会顺利的。勇敢地参与进来吧。
+
+---
+
+<!--
+If you have any recommendations/suggestions for who we should interview next, please let us know in #sig-contribex. We're thrilled to have other folks assisting us in reaching out to even more wonderful individuals of the community. Your suggestions would be much appreciated.
+-->
+如果你对我们下一步应该采访谁有任何意见/建议，请在 #sig-contribex 中告知我们。我们很高兴有其他人帮助我们接触社区中更优秀的人。我们将不胜感激。
+
+<!--
+We'll see you all in the next one. Everyone, till then, have a happy contributing! 👋
+-->
+我们下期见。最后，祝大家都能快乐地为社区做贡献！👋
diff --git a/content/zh-cn/blog/_posts/2022-01-19-Securing-Admission-Controllers.md b/content/zh-cn/blog/_posts/2022-01-19-Securing-Admission-Controllers.md
new file mode 100644
index 0000000000..caf4c05423
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2022-01-19-Securing-Admission-Controllers.md
@@ -0,0 +1,156 @@
+---
+layout: blog
+title: "确保准入控制器的安全"
+date: 2022-01-19
+slug: secure-your-admission-controllers-and-webhooks
+---
+
+<!--
+layout: blog
+title: "Securing Admission Controllers"
+date: 2022-01-19
+slug: secure-your-admission-controllers-and-webhooks
+-->
+
+<!--
+**Author:** Rory McCune (Aqua Security)
+-->
+
+**作者:** Rory McCune (Aqua Security)
+
+
+<!--
+[Admission control](/docs/reference/access-authn-authz/admission-controllers/) is a key part of Kubernetes security, alongside authentication and authorization. 
+Webhook admission controllers are extensively used to help improve the security of Kubernetes clusters in a variety of ways including restricting the privileges of workloads and ensuring that images deployed to the cluster meet organization’s security requirements.
+-->
+[准入控制](/zh-cn/docs/reference/access-authn-authz/admission-controllers/)和认证、授权都是 Kubernetes 安全性的关键部分。
+Webhook 准入控制器被广泛用于以多种方式帮助提高 Kubernetes 集群的安全性，
+包括限制工作负载权限和确保部署到集群的镜像满足组织安全要求。
+
+<!--
+However, as with any additional component added to a cluster, security risks can present themselves.
+A security risk example is if the deployment and management of the admission controller are not handled correctly. To help admission controller users and designers manage these risks appropriately, 
+the [security documentation](https://github.com/kubernetes/community/tree/master/sig-security#security-docs) subgroup of SIG Security has spent some time developing a [threat model for admission controllers](https://github.com/kubernetes/sig-security/tree/main/sig-security-docs/papers/admission-control). 
+This threat model looks at likely risks which may arise from the incorrect use of admission controllers, which could allow security policies to be bypassed, or even allow an attacker to get unauthorised access to the cluster.
+-->
+然而，与添加到集群中的任何其他组件一样，安全风险也会随之出现。
+一个安全风险示例是没有正确处理准入控制器的部署和管理。
+为了帮助准入控制器用户和设计人员适当地管理这些风险，
+SIG Security 的[安全文档](https://github.com/kubernetes/community/tree/master/sig-security#security-docs)小组
+花费了一些时间来开发一个[准入控制器威胁模型](https://github.com/kubernetes/sig-security/tree/main/sig-security-docs/papers/admission-control)。
+这种威胁模型着眼于由于不正确使用准入控制器而产生的可能的风险，可能允许绕过安全策略，甚至允许攻击者未经授权访问集群。
+
+<!--
+From the threat model, we developed a set of security best practices that should be adopted to ensure that cluster operators can get the security benefits of admission controllers whilst avoiding any risks from using them.
+-->
+基于这个威胁模型，我们开发了一套安全最佳实践。
+你应该采用这些实践来确保集群操作员可以获得准入控制器带来的安全优势，同时避免使用它们带来的任何风险。
+
+<!--
+## Admission controllers and good practices for security
+-->
+## 准入控制器和安全的良好做法
+
+<!--
+From the threat model, a couple of themes emerged around how to ensure the security of admission controllers.
+-->
+基于这个威胁模型，围绕着如何确保准入控制器的安全性出现了几个主题。
+
+<!--
+### Secure webhook configuration
+-->
+### 安全的 webhook 配置
+
+<!--
+It’s important to ensure that any security component in a cluster is well configured and admission controllers are no different here. There are a couple of security best practices to consider when using admission controllers
+-->
+确保集群中的任何安全组件都配置良好是很重要的，在这里准入控制器也并不例外。
+使用准入控制器时需要考虑几个安全最佳实践：
+
+<!--
+* **Correctly configured TLS for all webhook traffic**. Communications between the API server and the admission controller webhook should be authenticated and encrypted to ensure that attackers who may be in a network position to view or modify this traffic cannot do so. To achieve this access the API server and webhook must be using certificates from a trusted certificate authority so that they can validate their mutual identities
+-->
+* **为所有 webhook 流量正确配置了 TLS**。
+  API 服务器和准入控制器 webhook 之间的通信应该经过身份验证和加密，以确保处于网络中查看或修改此流量的攻击者无法查看或修改。
+  要实现此访问，API 服务器和 webhook 必须使用来自受信任的证书颁发机构的证书，以便它们可以验证相互的身份。
+<!--
+* **Only authenticated access allowed**. If an attacker can send an admission controller large numbers of requests, they may be able to overwhelm the service causing it to fail. Ensuring all access requires strong authentication should mitigate that risk.
+-->
+* **只允许经过身份验证的访问**。
+  如果攻击者可以向准入控制器发送大量请求，他们可能会压垮服务导致其失败。
+  确保所有访问都需要强身份验证可以降低这种风险。
+<!--
+* **Admission controller fails closed**. This is a security practice that has a tradeoff, so whether a cluster operator wants to configure it will depend on the cluster’s threat model. If an admission controller fails closed, when the API server can’t get a response from it, all deployments will fail. This stops attackers bypassing the admission controller by disabling it, but, can disrupt the cluster’s operation. As clusters can have multiple webhooks, one approach to hit a middle ground might be to have critical controls on a fail closed setups and less critical controls allowed to fail open.
+-->
+* **准入控制器关闭失败**。
+  这是一种需要权衡的安全实践，集群操作员是否要对其进行配置取决于集群的威胁模型。
+  如果一个准入控制器关闭失败，当 API 服务器无法从它得到响应时，所有的部署都会失败。
+  这可以阻止攻击者通过禁用准入控制器绕过准入控制器，但可能会破坏集群的运行。
+  由于集群可以有多个 webhook，因此一种折中的方法是对关键控制允许故障关闭，
+  并允许不太关键的控制进行故障打开。
+<!--
+* **Regular reviews of webhook configuration**. Configuration mistakes can lead to security issues, so it’s important that the admission controller webhook configuration is checked to make sure the settings are correct. This kind of review could be done automatically by an Infrastructure As Code scanner or manually by an administrator.
+-->
+* **定期审查 webhook 配置**。
+  配置错误可能导致安全问题，因此检查准入控制器 webhook 配置以确保设置正确非常重要。
+  这种审查可以由基础设施即代码扫描程序自动完成，也可以由管理员手动完成。
+
+<!--
+### Secure cluster configuration for admission control
+-->
+### 为准入控制保护集群配置
+
+<!--
+In most cases, the admission controller webhook used by a cluster will be installed as a workload in the cluster. As a result, it’s important to ensure that Kubernetes' security features that could impact its operation are well configured.
+-->
+在大多数情况下，集群使用的准入控制器 webhook 将作为工作负载安装在集群中。
+因此，确保正确配置了可能影响其操作的 Kubernetes 安全特性非常重要。
+
+<!--
+* **Restrict [RBAC](/docs/reference/access-authn-authz/rbac/) rights**. Any user who has rights which would allow them to modify the configuration of the webhook objects or the workload that the admission controller uses could disrupt its operation. So it’s important to make sure that only cluster administrators have those rights.
+-->
+* **限制 [RBAC](/zh-cn/docs/reference/access-authn-authz/rbac/) 权限**。
+  任何有权修改 webhook 对象的配置或准入控制器使用的工作负载的用户都可以破坏其运行。
+  因此，确保只有集群管理员拥有这些权限非常重要。
+<!--
+* **Prevent privileged workloads**. One of the realities of container systems is that if a workload is given certain privileges, it will be possible to break out to the underlying cluster node and impact other containers on that node. Where admission controller services run in the cluster they’re protecting, it’s important to ensure that any requirement for privileged workloads is carefully reviewed and restricted as much as possible.
+-->  
+* **防止特权工作负载**。
+  容器系统的一个现实是，如果工作负载被赋予某些特权，
+  则有可能逃逸到下层的集群节点并影响该节点上的其他容器。
+  如果准入控制器服务在它们所保护的集群上运行，
+  一定要确保对特权工作负载的所有请求都要经过仔细审查并尽可能地加以限制。
+<!--
+* **Strictly control external system access**. As a security service in a cluster admission controller systems will have access to sensitive information like credentials. To reduce the risk of this information being sent outside the cluster, [network policies](/docs/concepts/services-networking/network-policies/) should be used to restrict the admission controller services access to external networks.
+-->  
+* **严格控制外部系统访问**。
+  作为集群中的安全服务，准入控制器系统将有权访问敏感信息，如凭证。
+  为了降低此信息被发送到集群外的风险，
+  应使用[网络策略](/zh-cn/docs/concepts/services-networking/network-policies/) 
+  来限制准入控制器服务对外部网络的访问。
+<!--
+* **Each cluster has a dedicated webhook**. Whilst it may be possible to have admission controller webhooks that serve multiple clusters, there is a risk when using that model that an attack on the webhook service would have a larger impact where it’s shared. Also where multiple clusters use an admission controller there will be increased complexity and access requirements, making it harder to secure.
+-->  
+* **每个集群都有一个专用的 webhook**。
+  虽然可能让准入控制器 webhook 服务于多个集群的，
+  但在使用该模型时存在对 webhook 服务的攻击会对共享它的地方产生更大影响的风险。
+  此外，在多个集群使用准入控制器的情况下，复杂性和访问要求也会增加，从而更难保护其安全。
+
+<!--
+### Admission controller rules
+-->
+### 准入控制器规则
+
+<!--
+A key element of any admission controller used for Kubernetes security is the rulebase it uses. The rules need to be able to accurately meet their goals avoiding false positive and false negative results. 
+-->
+对于用于 Kubernetes 安全的所有准入控制器而言，一个关键元素是它使用的规则库。
+规则需要能够准确地满足其目标，避免假阳性和假阴性结果。
+
+<!--
+* **Regularly test and review rules**. Admission controller rules need to be tested to ensure their accuracy. They also need to be regularly reviewed as the Kubernetes API will change with each new version, and rules need to be assessed with each Kubernetes release to understand any changes that may be required to keep them up to date.
+-->
+* **定期测试和审查规则**。
+  需要测试准入控制器规则以确保其准确性。
+  还需要定期审查，因为 Kubernetes API 会随着每个新版本而改变，
+  并且需要在每个 Kubernetes 版本中评估规则，以了解使他们保持最新版本所需要做的任何改变。
\ No newline at end of file
diff --git a/content/zh-cn/blog/_posts/2022-02-16-sig-node-ci-subproject-celebrates/index.md b/content/zh-cn/blog/_posts/2022-02-16-sig-node-ci-subproject-celebrates/index.md
new file mode 100644
index 0000000000..d08b985c80
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2022-02-16-sig-node-ci-subproject-celebrates/index.md
@@ -0,0 +1,299 @@
+---
+layout: blog
+title: 'SIG Node CI 子项目庆祝测试改进两周年'
+date: 2022-02-16
+slug: sig-node-ci-subproject-celebrates
+canonicalUrl: https://www.kubernetes.dev/blog/2022/02/16/sig-node-ci-subproject-celebrates-two-years-of-test-improvements/
+---
+<!--
+---
+layout: blog
+title: 'SIG Node CI Subproject Celebrates Two Years of Test Improvements'
+date: 2022-02-16
+slug: sig-node-ci-subproject-celebrates
+canonicalUrl: https://www.kubernetes.dev/blog/2022/02/16/sig-node-ci-subproject-celebrates-two-years-of-test-improvements/
+url: /zh-cn/blog/2022/02/sig-node-ci-subproject-celebrates
+---
+-->
+
+**作者：** Sergey Kanzhelev (Google), Elana Hashman (Red Hat)
+<!--**Authors:** Sergey Kanzhelev (Google), Elana Hashman (Red Hat)-->
+
+<!--Ensuring the reliability of SIG Node upstream code is a continuous effort
+that takes a lot of behind-the-scenes effort from many contributors.
+There are frequent releases of Kubernetes, base operating systems,
+container runtimes, and test infrastructure that result in a complex matrix that
+requires attention and steady investment to "keep the lights on."
+In May 2020, the Kubernetes node special interest group ("SIG Node") organized a new
+subproject for continuous integration (CI) for node-related code and tests. Since its
+inauguration, the SIG Node CI subproject has run a weekly meeting, and even the full hour
+is often not enough to complete triage of all bugs, test-related PRs and issues, and discuss all
+related ongoing work within the subgroup.-->
+保证 SIG 节点上游代码的可靠性是一项持续的工作，需要许多贡献者在幕后付出大量努力。
+Kubernetes、基础操作系统、容器运行时和测试基础架构的频繁发布，导致了一个复杂的矩阵，
+需要关注和稳定的投资来“保持灯火通明”。2020 年 5 月，Kubernetes Node 特殊兴趣小组
+（“SIG Node”）为节点相关代码和测试组织了一个新的持续集成（CI）子项目。自成立以来，SIG Node CI
+子项目每周举行一次会议，即使一整个小时通常也不足以完成对所有缺陷、测试相关的 PR 和问题的分类，
+并讨论组内所有相关的正在进行的工作。
+
+<!--Over the past two years, we've fixed merge-blocking and release-blocking tests, reducing time to merge Kubernetes contributors' pull requests thanks to reduced test flakes. When we started, Node test jobs only passed 42% of the time, and through our efforts, we now ensure a consistent >90% job pass rate. We've closed 144 test failure issues and merged 176 pull requests just in kubernetes/kubernetes. And we've helped subproject participants ascend the Kubernetes contributor ladder, with 3 new org members, 6 new reviewers, and 2 new approvers.-->
+在过去两年中，我们修复了阻塞合并和阻塞发布的测试，由于减少了测试缺陷，缩短了合并 Kubernetes 
+贡献者的拉取请求的时间。通过我们的努力，任务通过率由开始时 42% 提高至稳定大于 90% 。我们已经解决了 144 个测试失败问题，
+并在 kubernetes/kubernetes 中合并了 176 个拉取请求。
+我们还帮助子项目参与者提升了 Kubernetes 贡献者的等级，新增了 3 名组织成员、6 名评审员和 2 名审批员。
+
+
+<!--The Node CI subproject is an approachable first stop to help new contributors
+get started with SIG Node. There is a low barrier to entry for new contributors
+to address high-impact bugs and test fixes, although there is a long
+road before contributors can climb the entire contributor ladder:
+it took over a year to establish two new approvers for the group.
+The complexity of all the different components that power Kubernetes nodes
+and its test infrastructure requires a sustained investment over a long period
+for developers to deeply understand the entire system,
+both at high and low levels of detail.-->
+Node CI 子项目是一个可入门的第一站，帮助新参与者开始使用 SIG Node。对于新贡献者来说，
+解决影响较大的缺陷和测试修复的门槛很低，尽管贡献者要攀登整个贡献者阶梯还有很长的路要走：
+为该团队培养了两个新的审批人花了一年多的时间。为 Kubernetes 节点及其测试基础设施提供动力的所有
+不同组件的复杂性要求开发人员在很长一段时间内进行持续投资，
+以深入了解整个系统，从宏观到微观。
+
+<!--We have several regular contributors at our meetings, however; our reviewers
+and approvers pool is still small. It is our goal to continue to grow
+contributors to ensure a sustainable distribution of work
+that does not just fall to a few key approvers.-->
+虽然在我们的会议上有几个比较固定的贡献者；但是我们的评审员和审批员仍然很少。
+我们的目标是继续增加贡献者，以确保工作的可持续分配，而不仅仅是少数关键批准者。
+
+<!--It's not always obvious how subprojects within SIGs are formed, operate,
+and work. Each is unique to its sponsoring SIG and tailored to the projects
+that the group is intended to support. As a group that has welcomed many
+first-time SIG Node contributors, we'd like to share some of the details and
+accomplishments over the past two years,
+helping to demystify our inner workings and celebrate the hard work
+of all our dedicated contributors!-->
+SIG 中的子项目如何形成、运行和工作并不总是显而易见的。每一个都是其背后的 SIG 所独有的，
+并根据该小组打算支持的项目量身定制。作为一个欢迎了许多第一次 SIG Node 贡献者的团队，
+我们想分享过去两年的一些细节和成就，帮助揭开我们内部工作的神秘面纱，并庆祝我们所有专注贡献者的辛勤工作！
+
+<!--## Timeline-->
+## 时间线
+
+<!--***May 2020.*** SIG Node CI group was formed on May 11, 2020, with more than
+[30 volunteers](https://docs.google.com/document/d/1fb-ugvgdSVIkkuJ388_nhp2pBTy_4HEVg5848Xy7n5U/edit#bookmark=id.vsb8pqnf4gib)
+signed up, to improve SIG Node CI signal and overall observability.
+Victor Pickard focused on getting
+[testgrid jobs](https://testgrid.k8s.io/sig-node) passing
+when Ning Liao suggested forming a group around this effort and came up with
+the [original group charter document](https://docs.google.com/document/d/1yS-XoUl6GjZdjrwxInEZVHhxxLXlTIX2CeWOARmD8tY/edit#heading=h.te6sgum6s8uf).
+The SIG Node chairs sponsored group creation with Victor as a subproject lead.
+Sergey Kanzhelev joined Victor shortly after as a co-lead.-->
+***2020 年 5 月*** SIG Node CI 组于 2020 年 5 月 11 日成立，超过
+[30 名志愿者](https://docs.google.com/document/d/1fb-ugvgdSVIkkuJ388_nhp2pBTy_4HEVg5848Xy7n5U/edit#bookmark=id.vsb8pqnf4gib)
+注册，以改进 SIG Node CI 信号和整体可观测性。
+Victor Pickard 专注于让 [testgrid 可以运行](https://testgrid.k8s.io/sig-node) ，
+当时 Ning Liao 建议围绕这项工作组建一个小组，并提出 
+[最初的小组章程文件](https://docs.google.com/document/d/1yS-XoUl6GjZdjrwxInEZVHhxxLXlTIX2CeWOARmD8tY/edit#heading=h.te6sgum6s8uf) 。
+SIG Node 赞助成立以 Victor 作为子项目负责人的小组。Sergey Kanzhelev 不久后就加入 Victor，担任联合领导人。
+
+<!--At the kick-off meeting, we discussed which tests to concentrate on fixing first
+and discussed merge-blocking and release-blocking tests, many of which were failing due
+to infrastructure issues or buggy test code.-->
+在启动会议上，我们讨论了应该首先集中精力修复哪些测试，并讨论了阻塞合并和阻塞发布的测试，
+其中许多测试由于基础设施问题或错误的测试代码而失败。
+
+<!--The subproject launched weekly hour-long meetings to discuss ongoing work
+discussion and triage.-->
+该子项目每周召开一小时的会议，讨论正在进行的工作会谈和分类。
+
+<!--***June 2020.*** Morgan Bauer, Karan Goel, and Jorge Alarcon Ochoa were
+recognized as reviewers for the SIG Node CI group for their contributions,
+helping significantly with the early stages of the subproject.
+David Porter and Roy Yang also joined the SIG test failures GitHub team.-->
+***2020 年 6 月*** Morgan Bauer 、 Karan Goel 和 Jorge Alarcon Ochoa 
+因其贡献而被公认为 SIG Node CI 小组的评审员，为该子项目的早期阶段提供了重要帮助。
+David Porter 和 Roy Yang 也加入了 SIG 检测失败的 GitHub 测试团队。
+
+<!--***August 2020.*** All merge-blocking and release-blocking tests were passing,
+with some flakes. However, only 42% of all SIG Node test jobs were green, as there
+were many flakes and failing tests.-->
+***2020 年 8 月*** 所有的阻塞合并和阻塞发布的测试都通过了，伴有一些逻辑问题。
+然而，只有 42% 的 SIG Node 测试作业是绿色的，
+因为有许多逻辑错误和失败的测试。
+
+<!--***October 2020.*** Amim Knabben becomes a Kubernetes org member for his
+contributions to the subproject.-->
+***2020 年 10 月*** Amim Knabben 因对子项目的贡献成为 Kubernetes 组织成员。
+
+<!--***January 2021.*** With healthy presubmit and critical periodic jobs passing,
+the subproject discussed its goal for cleaning up the rest of periodic tests
+and ensuring they passed without flakes.-->
+***2021 年 1 月*** 随着健全的预提交和关键定期工作的通过，子项目讨论了清理其余定期测试并确保其顺利通过的目标。
+
+<!--Elana Hashman joined the subproject, stepping up to help lead it after
+Victor's departure.-->
+Elana Hashman 加入了这个子项目，在 Victor 离开后帮助领导该项目。
+
+<!--***February 2021.*** Artyom Lukianov becomes a Kubernetes org member for his
+contributions to the subproject.-->
+***2021 年 2 月*** Artyom Lukianov 因其对子项目的贡献成为 Kubernetes 组织成员。
+
+<!--***August 2021.*** After SIG Node successfully ran a [bug scrub](https://groups.google.com/g/kubernetes-dev/c/w2ghO4ihje0/m/VeEql1LJBAAJ)
+to clean up its bug backlog, the scope of the meeting was extended to
+include bug triage to increase overall reliability, anticipating issues
+before they affect the CI signal.-->
+***2021 年 8 月*** 在 SIG Node 成功运行 [bug scrub](https://groups.google.com/g/kubernetes-dev/c/w2ghO4ihje0/m/VeEql1LJBAAJ)
+以清理其累积的缺陷之后，会议的范围扩大到包括缺陷分类以提高整体可靠性，
+在问题影响 CI 信号之前预测问题。
+
+<!--Subproject leads Elana Hashman and Sergey Kanzhelev are both recognized as
+approvers on all node test code, supported by SIG Node and SIG Testing.-->
+子项目负责人 Elana Hashman 和 Sergey Kanzhelev 都被认为是所有节点测试代码的审批人，由 SIG node 和 SIG Testing 支持。
+
+<!--***September 2021.*** After significant deflaking progress with serial tests in
+the 1.22 release spearheaded by Francesco Romani, the subproject set a goal
+for getting the serial job fully passing by the 1.23 release date.-->
+***2021 年 9 月*** 在 Francesco Romani 牵头的 1.22 版本系列测试取得重大进展后，
+该子项目设定了一个目标，即在 1.23 发布日期之前让串行任务完全通过。
+
+<!--Mike Miranda becomes a Kubernetes org member for his contributions
+to the subproject.-->
+Mike Miranda 因其对子项目的贡献成为 Kubernetes 组织成员。
+
+<!--***November 2021.*** Throughout 2021, SIG Node had no merge or
+release-blocking test failures. Many flaky tests from past releases are removed
+from release-blocking dashboards as they had been fully cleaned up.-->
+***2021 年 11 月*** 在整个 2021 年， SIG Node 没有合并或发布的测试失败。
+过去版本中的许多古怪测试都已从阻止发布的仪表板中删除，因为它们已被完全清理。
+
+<!--Danielle Lancashire was recognized as a reviewer for SIG Node's subgroup, test code.-->
+Danielle Lancashire 被公认为 SIG Node 子组测试代码的评审员。
+
+<!--The final node serial tests were completely fixed. The serial tests consist of
+many disruptive and slow tests which tend to be flakey and are hard
+to troubleshoot. By the 1.23 release freeze, the last serial tests were
+fixed and the job was passing without flakes.-->
+最终节点系列测试已完全修复。系列测试由许多中断性和缓慢的测试组成，这些测试往往是碎片化的，很难排除故障。
+到 1.23 版本冻结时，最后一次系列测试已修复，作业顺利通过。
+
+<!--[![Slack announcement that Serial tests are green](serial-tests-green.png)](https://kubernetes.slack.com/archives/C0BP8PW9G/p1638211041322900)-->
+[![宣布系列测试为绿色](serial-tests-green.png)](https://kubernetes.slack.com/archives/C0BP8PW9G/p1638211041322900)
+
+<!--The 1.23 release got a special shout out for the tests quality and CI signal.
+The SIG Node CI subproject was proud to have helped contribute to such
+a high-quality release, in part due to our efforts in identifying
+and fixing flakes in Node and beyond.-->
+1.23 版本在测试质量和 CI 信号方面得到了特别的关注。SIG Node CI 子项目很自豪能够为这样一个高质量的发布做出贡献，
+部分原因是我们在识别和修复节点内外的碎片方面所做的努力。
+
+<!--[![Slack shoutout that release was mostly green](release-mostly-green.png)](https://kubernetes.slack.com/archives/C92G08FGD/p1637175755023200)-->
+[![Slack 大声宣布发布的版本大多是绿色的](release-mostly-green.png)](https://kubernetes.slack.com/archives/C92G08FGD/p1637175755023200)
+
+<!--***December 2021.*** An estimated 90% of test jobs were passing at the time of
+the 1.23 release (up from 42% in August 2020).-->
+***2021 年 12 月*** 在 1.23 版本发布时，估计有 90% 的测试工作通过了测试（2020 年 8 月为 42%）。
+
+<!--Dockershim code was removed from Kubernetes. This affected nearly half of SIG Node's
+test jobs and the SIG Node CI subproject reacted quickly and retargeted all the
+tests. SIG Node was the first SIG to complete test migrations off dockershim,
+providing examples for other affected SIGs. The vast majority of new jobs passed
+at the time of introduction without further fixes required. The [effort of
+removing dockershim](https://k8s.io/dockershim)) from Kubernetes is ongoing.
+There are still some wrinkles from the dockershim removal as we uncover more
+dependencies on dockershim, but we plan to stabilize all test jobs
+by the 1.24 release.-->
+Dockershim 代码已从 Kubernetes 中删除。这影响了 SIG Node 近一半的测试作业，
+SIG Node CI 子项目反应迅速，并重新确定了所有测试的目标。
+SIG Node 是第一个完成 dockershim 外测试迁移的 SIG ，为其他受影响的 SIG 提供了示例。
+绝大多数新工作在引入时都已通过，无需进一步修复。
+从 Kubernetes 中[将 dockershim 除名的工作](https://k8s.io/dockershim) 正在进行中。
+随着我们发现 dockershim 对 dockershim 的依赖性越来越大，dockershim 的删除仍然存在一些问题，
+但我们计划在 1.24 版本之前确保所有测试任务稳定。
+
+<!--## Statistics-->
+## 统计数据
+
+<!--Our regular meeting attendees and subproject participants for the past few months:-->
+我们过去几个月的定期会议与会者和子项目参与者：
+
+- Aditi Sharma
+- Artyom Lukianov
+- Arnaud Meukam
+- Danielle Lancashire
+- David Porter
+- Davanum Srinivas
+- Elana Hashman
+- Francesco Romani
+- Matthias Bertschy
+- Mike Miranda
+- Paco Xu
+- Peter Hunt
+- Ruiwen Zhao
+- Ryan Phillips
+- Sergey Kanzhelev
+- Skyler Clark
+- Swati Sehgal
+- Wenjun Wu
+
+<!--The [kubernetes/test-infra](https://github.com/kubernetes/test-infra/) source code repository contains test definitions. The number of
+Node PRs just in that repository:
+- 2020 PRs (since May): [183](https://github.com/kubernetes/test-infra/pulls?q=is%3Apr+is%3Aclosed+label%3Asig%2Fnode+created%3A2020-05-01..2020-12-31+-author%3Ak8s-infra-ci-robot+)
+- 2021 PRs: [264](https://github.com/kubernetes/test-infra/pulls?q=is%3Apr+is%3Aclosed+label%3Asig%2Fnode+created%3A2021-01-01..2021-12-31+-author%3Ak8s-infra-ci-robot+)-->
+[kubernetes/test-infra](https://github.com/kubernetes/test-infra/) 源代码存储库包含测试定义。该存储库中的节点 PR 数：
+- 2020 年 PR（自 5 月起）：[183](https://github.com/kubernetes/test-infra/pulls?q=is%3Apr+is%3Aclosed+label%3Asig%2Fnode+created%3A2020-05-01..2020-12-31+-author%3Ak8s-infra-ci-robot+)
+- 2021 年 PR：[264](https://github.com/kubernetes/test-infra/pulls?q=is%3Apr+is%3Aclosed+label%3Asig%2Fnode+created%3A2021-01-01..2021-12-31+-author%3Ak8s-infra-ci-robot+)
+
+<!--Triaged issues and PRs on CI board (including triaging away from the subgroup scope):
+
+- 2020 (since May)：[132](https://github.com/issues?q=project%3Akubernetes%2F43+created%3A2020-05-01..2020-12-31)
+- 2021: [532](https：//github.com/issues?q=project%3Akubernetes%2F43+created%3A2021-01-01..2021-12-31+)-->
+
+CI 委员会上的问题和 PRs 分类（包括子组范围之外的分类）：
+
+- 2020 年（自 5 月起）：[132](https://github.com/issues?q=project%3Akubernetes%2F43+created%3A2020-05-01..2020-12-31)
+- 2021 年：[532](https://github.com/issues?q=project%3Akubernetes%2F43+created%3A2021-01-01..2021-12-31+)
+
+<!--## Future-->
+## 未来
+
+<!--Just "keeping the lights on" is a bold task and we are committed to improving this experience.
+We are working to simplify the triage and review processes for SIG Node.
+
+Specifically, we are working on better test organization, naming,
+and tracking:-->
+
+只是“保持灯亮”是一项大胆的任务，我们致力于改善这种体验。
+我们正在努力简化 SIG Node 的分类和审查流程。
+
+具体来说，我们正在致力于更好的测试组织、命名和跟踪：
+
+<!-- - https://github.com/kubernetes/enhancements/pull/3042
+- https://github.com/kubernetes/test-infra/issues/24641
+- [Kubernetes SIG-Node CI Testgrid Tracker](https://docs.google.com/spreadsheets/d/1IwONkeXSc2SG_EQMYGRSkfiSWNk8yWLpVhPm-LOTbGM/edit#gid=0)-->
+
+- https://github.com/kubernetes/enhancements/pull/3042
+- https://github.com/kubernetes/test-infra/issues/24641
+- [Kubernetes SIG Node CI 测试网格跟踪器](https://docs.google.com/spreadsheets/d/1IwONkeXSc2SG_EQMYGRSkfiSWNk8yWLpVhPm-LOTbGM/edit#gid=0)
+
+<!--We are also constantly making progress on improved tests debuggability and de-flaking.
+
+If any of this interests you, we'd love for you to join us!
+There's plenty to learn in debugging test failures, and it will help you gain
+familiarity with the code that SIG Node maintains.-->
+我们还在改进测试的可调试性和去剥落方面不断取得进展。
+
+如果你对此感兴趣，我们很乐意您能加入我们！
+在调试测试失败中有很多东西需要学习，它将帮助你熟悉 SIG Node 维护的代码。
+
+<!--You can always find information about the group on the
+[SIG Node](https://github.com/kubernetes/community/tree/master/sig-node) page.
+We give group updates at our maintainer track sessions, such as
+[KubeCon + CloudNativeCon Europe 2021](https://kccnceu2021.sched.com/event/iE8E/kubernetes-sig-node-intro-and-deep-dive-elana-hashman-red-hat-sergey-kanzhelev-google) 和
+[KubeCon + CloudNative North America 2021](https://kccncna2021.sched.com/event/lV9D/kubenetes-sig-node-intro-and-deep-dive-elana-hashman-derek-carr-red-hat-sergey-kanzhelev-dawn-chen-google?iframe=no&w=100%&sidebar=yes&bg=no)。
+Join us in our mission to keep the kubelet and other SIG Node components reliable and ensure smooth and uneventful releases!-->
+
+你可以在 [SIG Node](https://github.com/kubernetes/community/tree/master/sig-node) 页面上找到有关该组的信息。
+我们在我们的维护者轨道会议上提供组更新，例如：
+[KubeCon + CloudNativeCon Europe 2021](https://kccnceu2021.sched.com/event/iE8E/kubernetes-sig-node-intro-and-deep-dive-elana-hashman-red-hat-sergey-kanzhelev-google) 和
+[KubeCon + CloudNative North America 2021](https://kccncna2021.sched.com/event/lV9D/kubenetes-sig-node-intro-and-deep-dive-elana-hashman-derek-carr-red-hat-sergey-kanzhelev-dawn-chen-google?iframe=no&w=100%&sidebar=yes&bg=no)。
+加入我们的使命，保持 kubelet 和其他 SIG Node 组件的可靠性，确保顺顺利利发布！
diff --git a/content/zh-cn/blog/_posts/2022-02-16-sig-node-ci-subproject-celebrates/release-mostly-green.png b/content/zh-cn/blog/_posts/2022-02-16-sig-node-ci-subproject-celebrates/release-mostly-green.png
new file mode 100644
index 0000000000..c88eb3b37e
Binary files /dev/null and b/content/zh-cn/blog/_posts/2022-02-16-sig-node-ci-subproject-celebrates/release-mostly-green.png differ
diff --git a/content/zh-cn/blog/_posts/2022-02-16-sig-node-ci-subproject-celebrates/serial-tests-green.png b/content/zh-cn/blog/_posts/2022-02-16-sig-node-ci-subproject-celebrates/serial-tests-green.png
new file mode 100644
index 0000000000..4ea64fedb7
Binary files /dev/null and b/content/zh-cn/blog/_posts/2022-02-16-sig-node-ci-subproject-celebrates/serial-tests-green.png differ
diff --git a/content/zh-cn/blog/_posts/2022-02-17-updated-dockershim-faq.md b/content/zh-cn/blog/_posts/2022-02-17-updated-dockershim-faq.md
new file mode 100644
index 0000000000..aa3ee8ee5e
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2022-02-17-updated-dockershim-faq.md
@@ -0,0 +1,420 @@
+---
+layout: blog
+title: "更新：移除 Dockershim 的常见问题"
+linkTitle: "移除 Dockershim 的常见问题"
+date: 2022-02-17
+slug: dockershim-faq
+aliases: [ '/zh-cn/dockershim' ]
+---
+<!-- 
+layout: blog
+title: "Updated: Dockershim Removal FAQ"
+linkTitle: "Dockershim Removal FAQ"
+date: 2022-02-17
+slug: dockershim-faq
+aliases: [ '/dockershim' ]
+-->
+
+<!--
+**This supersedes the original
+[Dockershim Deprecation FAQ](/blog/2020/12/02/dockershim-faq/) article,
+published in late 2020. The article includes updates from the v1.24
+release of Kubernetes.**
+-->
+**本文是针对 2020 年末发布的[弃用 Dockershim 的常见问题](/zh-cn/blog/2020/12/02/dockershim-faq/)的博客更新。
+本文包括 Kubernetes v1.24 版本的更新。**
+
+---
+
+<!--
+This document goes over some frequently asked questions regarding the
+removal of _dockershim_ from Kubernetes. The removal was originally
+[announced](/blog/2020/12/08/kubernetes-1-20-release-announcement/)
+as a part of the Kubernetes v1.20 release. The Kubernetes
+[v1.24 release](/releases/#release-v1-24) actually removed the dockershim
+from Kubernetes.
+-->
+本文介绍了一些关于从 Kubernetes 中移除 _dockershim_ 的常见问题。
+该移除最初是作为 Kubernetes v1.20
+版本的一部分[宣布](/zh-cn/blog/2020/12/08/kubernetes-1-20-release-announcement/)的。
+Kubernetes 在 [v1.24 版](/releases/#release-v1-24)移除了 dockershim。
+
+<!--
+For more on what that means, check out the blog post
+[Don't Panic: Kubernetes and Docker](/blog/2020/12/02/dont-panic-kubernetes-and-docker/).
+-->
+关于细节请参考博文
+[别慌: Kubernetes 和 Docker](/zh-cn/blog/2020/12/02/dont-panic-kubernetes-and-docker/)。
+
+<!--
+To determine the impact that the removal of dockershim would have for you or your organization,
+you can read [Check whether dockershim removal affects you](/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you/).
+-->
+要确定移除 dockershim 是否会对你或你的组织的影响，可以查阅：
+[检查弃用 Dockershim 对你的影响](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you/)
+这篇文章。
+
+<!--
+In the months and days leading up to the Kubernetes 1.24 release, Kubernetes contributors worked hard to try to make this a smooth transition.
+-->
+在 Kubernetes 1.24 发布之前的几个月和几天里，Kubernetes
+贡献者努力试图让这个过渡顺利进行。
+
+<!--
+- A blog post detailing our [commitment and next steps](/blog/2022/01/07/kubernetes-is-moving-on-from-dockershim/).
+- Checking if there were major blockers to migration to [other container runtimes](/docs/setup/production-environment/container-runtimes/#container-runtimes).
+- Adding a [migrating from dockershim](/docs/tasks/administer-cluster/migrating-from-dockershim/) guide.
+- Creating a list of
+  [articles on dockershim removal and on using CRI-compatible runtimes](/docs/reference/node/topics-on-dockershim-and-cri-compatible-runtimes/).
+  That list includes some of the already mentioned docs, and also covers selected external sources
+  (including vendor guides).
+-->
+- 一篇详细说明[承诺和后续操作](/blog/2022/01/07/kubernetes-is-moving-on-from-dockershim/)的博文。
+- 检查是否存在迁移到其他 [容器运行时](/zh-cn/docs/setup/production-environment/container-runtimes/#container-runtimes) 的主要障碍。
+- 添加 [从 dockershim 迁移](/docs/tasks/administer-cluster/migrating-from-dockershim/)的指南。
+- 创建了一个[有关 dockershim 移除和使用 CRI 兼容运行时的列表](/zh-cn/docs/reference/node/topics-on-dockershim-and-cri-compatible-runtimes/)。
+  该列表包括一些已经提到的文档，还涵盖了选定的外部资源（包括供应商指南）。
+
+<!--
+### Why was the dockershim removed from Kubernetes?
+-->
+### 为什么会从 Kubernetes 中移除 dockershim ？ {#why-was-the-dockershim-removed-from-kubernetes}
+
+<!--
+Early versions of Kubernetes only worked with a specific container runtime:
+Docker Engine. Later, Kubernetes added support for working with other container runtimes.
+The CRI standard was [created](/blog/2016/12/container-runtime-interface-cri-in-kubernetes/) to
+enable interoperability between orchestrators (like Kubernetes) and many different container
+runtimes.
+Docker Engine doesn't implement that interface (CRI), so the Kubernetes project created
+special code to help with the transition, and made that _dockershim_ code part of Kubernetes
+itself.
+-->
+Kubernetes 的早期版本仅适用于特定的容器运行时：Docker Engine。
+后来，Kubernetes 增加了对使用其他容器运行时的支持。[创建](/blog/2016/12/container-runtime-interface-cri-in-kubernetes/) CRI
+标准是为了实现编排器（如 Kubernetes）和许多不同的容器运行时之间交互操作。
+Docker Engine 没有实现（CRI）接口，因此 Kubernetes 项目创建了特殊代码来帮助过渡，
+并使 dockershim 代码成为 Kubernetes 的一部分。
+
+<!--
+The dockershim code was always intended to be a temporary solution (hence the name: shim).
+You can read more about the community discussion and planning in the
+[Dockershim Removal Kubernetes Enhancement Proposal][drkep].
+In fact, maintaining dockershim had become a heavy burden on the Kubernetes maintainers.
+-->
+dockershim 代码一直是一个临时解决方案（因此得名：shim）。
+你可以阅读 [Kubernetes 移除 Dockershim 增强方案](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2221-remove-dockershim)
+以了解相关的社区讨论和计划。
+事实上，维护 dockershim 已经成为 Kubernetes 维护者的沉重负担。
+
+<!--
+Additionally, features that were largely incompatible with the dockershim, such
+as cgroups v2 and user namespaces are being implemented in these newer CRI
+runtimes. Removing the dockershim from Kubernetes allows further development in those areas.
+-->
+此外，在较新的 CRI 运行时中实现了与 dockershim 不兼容的功能，例如 cgroups v2 和用户命名空间。
+从 Kubernetes 中移除 dockershim 允许在这些领域进行进一步的开发。
+
+<!--
+### Are Docker and containers the same thing?
+-->
+### Docker 和容器一样吗？ {#are-docker-and-containers-the-same-thing}
+
+<!--
+Docker popularized the Linux containers pattern and has been instrumental in
+developing the underlying technology, however containers in Linux have existed
+for a long time. The container ecosystem has grown to be much broader than just
+Docker. Standards like OCI and CRI have helped many tools grow and thrive in our
+ecosystem, some replacing aspects of Docker while others enhance existing
+functionality.
+-->
+Docker 普及了 Linux 容器模式，并在开发底层技术方面发挥了重要作用，但是 Linux
+中的容器已经存在了很长时间，容器生态系统已经发展到比 Docker 广泛得多。
+OCI 和 CRI 等标准帮助许多工具在我们的生态系统中发展壮大，其中一些替代了 Docker
+的某些方面，而另一些则增强了现有功能。
+
+<!--
+### Will my existing container images still work?
+-->
+### 我现有的容器镜像是否仍然有效？ {#will-my-existing-container-images-still-work}
+
+<!--
+Yes, the images produced from `docker build` will work with all CRI implementations.
+All your existing images will still work exactly the same.
+-->
+是的，从 `docker build` 生成的镜像将适用于所有 CRI 实现，
+现有的所有镜像仍将完全相同。
+
+<!--
+#### What about private images?
+-->
+#### 私有镜像呢？ {#what-about-private-images}
+
+<!--
+Yes. All CRI runtimes support the same pull secrets configuration used in
+Kubernetes, either via the PodSpec or ServiceAccount.
+-->
+当然可以，所有 CRI 运行时都支持在 Kubernetes 中使用的相同的 pull secrets
+配置，无论是通过 PodSpec 还是 ServiceAccount。
+
+<!--
+### Can I still use Docker Engine in Kubernetes 1.23?
+-->
+### 在 Kubernetes 1.23 版本中还可以使用 Docker Engine 吗？ {#can-i-still-use-docker-engine-in-kubernetes-1-23}
+
+<!--
+Yes, the only thing changed in 1.20 is a single warning log printed at [kubelet]
+startup if using Docker Engine as the runtime. You'll see this warning in all versions up to 1.23. The dockershim removal occurred
+in Kubernetes 1.24.
+-->
+可以使用，在 1.20 版本中唯一的改动是，如果使用 Docker Engine，
+在 [kubelet](/zh-cn/docs/reference/command-line-tools-reference/kubelet/)
+启动时会打印一个警告日志。
+你将在 1.23 版本及以前版本看到此警告，dockershim 已在 Kubernetes 1.24 版本中移除 。
+
+<!--
+If you're running Kubernetes v1.24 or later, see [Can I still use Docker Engine as my container runtime?](#can-i-still-use-docker-engine-as-my-container-runtime).
+(Remember, you can switch away from the dockershim if you're using any supported Kubernetes release; from release v1.24, you
+**must** switch as Kubernetes no longer includes the dockershim).
+-->
+如果你运行的是 Kubernetes v1.24 或更高版本，请参阅
+[我仍然可以使用 Docker Engine 作为我的容器运行时吗？](#can-i-still-use-docker-engine-as-my-container-runtime)
+（如果你使用任何支持 dockershim 的版本，可以随时切换离开；从版本 v1.24
+开始，因为 Kubernetes 不再包含 dockershim，你**必须**切换）。
+
+<!--
+### Which CRI implementation should I use?
+-->
+### 我应该用哪个 CRI 实现？ {#which-cri-implementation-should-i-use}
+
+<!--
+That’s a complex question and it depends on a lot of factors. If Docker Engine is
+working for you, moving to containerd should be a relatively easy swap and
+will have strictly better performance and less overhead. However, we encourage you
+to explore all the options from the [CNCF landscape] in case another would be an
+even better fit for your environment.
+-->
+这是一个复杂的问题，依赖于许多因素。
+如果你正在使用 Docker Engine，迁移到 containerd
+应该是一个相对容易地转换，并将获得更好的性能和更少的开销。
+然而，我们鼓励你探索 [CNCF landscape] 提供的所有选项，做出更适合你的选择。
+
+[CNCF landscape]: https://landscape.cncf.io/card-mode?category=container-runtime&grouping=category
+
+<!--
+#### Can I still use Docker Engine as my container runtime?
+-->
+#### 我还可以使用 Docker Engine 作为我的容器运行时吗？ {#can-i-still-use-docker-engine-as-my-container-runtime}
+
+<!--
+First off, if you use Docker on your own PC to develop or test containers: nothing changes.
+You can still use Docker locally no matter what container runtime(s) you use for your
+Kubernetes clusters. Containers make this kind of interoperability possible.
+-->
+首先，如果你在自己的电脑上使用 Docker 用来做开发或测试容器：它将与之前没有任何变化。
+无论你为 Kubernetes 集群使用什么容器运行时，你都可以在本地使用 Docker。容器使这种交互成为可能。
+
+<!--
+Mirantis and Docker have [committed][mirantis] to maintaining a replacement adapter for
+Docker Engine, and to maintain that adapter even after the in-tree dockershim is removed
+from Kubernetes. The replacement adapter is named [`cri-dockerd`](https://github.com/Mirantis/cri-dockerd).
+-->
+Mirantis 和 Docker 已[承诺](https://www.mirantis.com/blog/mirantis-to-take-over-support-of-kubernetes-dockershim-2/)
+为 Docker Engine 维护一个替代适配器，
+并在 dockershim 从 Kubernetes 移除后维护该适配器。
+替代适配器名为 [`cri-dockerd`](https://github.com/Mirantis/cri-dockerd)。
+
+<!--
+You can install `cri-dockerd` and use it to connect the kubelet to Docker Engine. Read [Migrate Docker Engine nodes from dockershim to cri-dockerd](/docs/tasks/administer-cluster/migrating-from-dockershim/migrate-dockershim-dockerd/) to learn more.
+-->
+你可以安装 `cri-dockerd` 并使用它将 kubelet 连接到 Docker Engine。
+阅读[将 Docker Engine 节点从 dockershim 迁移到 cri-dockerd](/docs/tasks/administer-cluster/migrating-from-dockershim/migrate-dockershim-dockerd/)
+以了解更多信息。
+
+
+<!--
+### Are there examples of folks using other runtimes in production today?
+-->
+### 现在是否有在生产系统中使用其他运行时的例子？ {#are-there-examples-of-folks-using-other-runtimes-in-production-today}
+
+<!--
+All Kubernetes project produced artifacts (Kubernetes binaries) are validated
+with each release.
+-->
+Kubernetes 所有项目在所有版本中出产的工件（Kubernetes 二进制文件）都经过了验证。
+
+<!--
+Additionally, the [kind] project has been using containerd for some time and has
+seen an improvement in stability for its use case. Kind and containerd are leveraged
+multiple times every day to validate any changes to the Kubernetes codebase. Other
+related projects follow a similar pattern as well, demonstrating the stability and
+usability of other container runtimes. As an example, OpenShift 4.x has been
+using the [CRI-O] runtime in production since June 2019.
+-->
+此外，[kind](https://kind.sigs.k8s.io/) 项目使用 containerd 已经有一段时间了，并且提高了其用例的稳定性。
+Kind 和 containerd 每天都会被多次使用来验证对 Kubernetes 代码库的任何更改。
+其他相关项目也遵循同样的模式，从而展示了其他容器运行时的稳定性和可用性。
+例如，OpenShift 4.x 从 2019 年 6 月以来，就一直在生产环境中使用 [CRI-O](https://cri-o.io/) 运行时。
+
+<!--
+For other examples and references you can look at the adopters of containerd and
+CRI-O, two container runtimes under the Cloud Native Computing Foundation ([CNCF]).
+-->
+至于其他示例和参考资料，你可以查看 containerd 和 CRI-O 的使用者列表，
+这两个容器运行时是云原生基金会（[CNCF](https://cncf.io)）下的项目。
+
+- [containerd](https://github.com/containerd/containerd/blob/master/ADOPTERS.md)
+- [CRI-O](https://github.com/cri-o/cri-o/blob/master/ADOPTERS.md)
+
+<!--
+### People keep referencing OCI, what is that?
+-->
+### 人们总在谈论 OCI，它是什么？ {#people-keep-referencing-oci-what-is-that}
+
+<!--
+OCI stands for the [Open Container Initiative], which standardized many of the
+interfaces between container tools and technologies. They maintain a standard
+specification for packaging container images (OCI image-spec) and running containers
+(OCI runtime-spec). They also maintain an actual implementation of the runtime-spec
+in the form of [runc], which is the underlying default runtime for both
+[containerd] and [CRI-O]. The CRI builds on these low-level specifications to
+provide an end-to-end standard for managing containers.
+-->
+OCI 是 [Open Container Initiative](https://opencontainers.org/about/overview/) 的缩写，
+它标准化了容器工具和底层实现之间的大量接口。
+它们维护了打包容器镜像（OCI image）和运行时（OCI runtime）的标准规范。
+它们还以 [runc](https://github.com/opencontainers/runc) 的形式维护了一个 runtime-spec 的真实实现，
+这也是 [containerd](https://containerd.io/) 和 [CRI-O](https://cri-o.io/) 依赖的默认运行时。
+CRI 建立在这些底层规范之上，为管理容器提供端到端的标准。
+
+
+<!--
+### What should I look out for when changing CRI implementations?
+-->
+### 当切换 CRI 实现时，应该注意什么？ {#what-should-i-look-out-for-when-changing-cri-implementations}
+
+<!--
+While the underlying containerization code is the same between Docker and most
+CRIs (including containerd), there are a few differences around the edges. Some
+common things to consider when migrating are:
+-->
+虽然 Docker 和大多数 CRI（包括 containerd）之间的底层容器化代码是相同的，
+但其周边部分却存在差异。迁移时要考虑如下常见事项：
+
+<!--
+- Logging configuration
+- Runtime resource limitations
+- Node provisioning scripts that call docker or use Docker Engine via its control socket
+- Plugins for `kubectl` that require the `docker` CLI or the Docker Engine control socket
+- Tools from the Kubernetes project that require direct access to Docker Engine
+  (for example: the deprecated `kube-imagepuller` tool)
+- Configuration of functionality like `registry-mirrors` and insecure registries
+- Other support scripts or daemons that expect Docker Engine to be available and are run
+  outside of Kubernetes (for example, monitoring or security agents)
+- GPUs or special hardware and how they integrate with your runtime and Kubernetes
+-->
+- 日志配置
+- 运行时的资源限制
+- 调用 docker 或通过其控制套接字使用 Docker Engine 的节点配置脚本
+- 需要 `docker` 命令或 Docker Engine 控制套接字的 `kubectl` 插件
+- 需要直接访问 Docker Engine 的 Kubernetes 工具（例如：已弃用的 'kube-imagepuller' 工具）
+- `registry-mirrors` 和不安全注册表等功能的配置
+- 保障 Docker Engine 可用、且运行在 Kubernetes 之外的脚本或守护进程（例如：监视或安全代理）
+- GPU 或特殊硬件，以及它们如何与你的运行时和 Kubernetes 集成
+
+<!--
+If you use Kubernetes resource requests/limits or file-based log collection
+DaemonSets then they will continue to work the same, but if you've customized
+your `dockerd` configuration, you’ll need to adapt that for your new container
+runtime where possible.
+-->
+如果你只是用了 Kubernetes 资源请求/限制或基于文件的日志收集 DaemonSet，它们将继续稳定工作，
+但是如果你用了自定义了 dockerd 配置，则可能需要为新的容器运行时做一些适配工作。
+
+<!--
+Another thing to look out for is anything expecting to run for system maintenance
+or nested inside a container when building images will no longer work. For the
+former, you can use the [`crictl`][cr] tool as a drop-in replacement (see
+[mapping from docker cli to crictl](https://kubernetes.io/docs/tasks/debug/debug-cluster/crictl/#mapping-from-docker-cli-to-crictl))
+and for the latter you can use newer container build options like [img], [buildah],
+[kaniko], or [buildkit-cli-for-kubectl] that don’t require Docker.
+-->
+另外还有一个需要关注的点，那就是当创建镜像时，系统维护或嵌入容器方面的任务将无法工作。
+对于前者，可以用 [`crictl`](https://github.com/kubernetes-sigs/cri-tools) 工具作为临时替代方案
+(参阅[从 docker cli 到 crictl 的映射](/zh-cn/docs/tasks/debug/debug-cluster/crictl/#mapping-from-docker-cli-to-crictl))。
+对于后者，可以用新的容器创建选项，例如
+[img](https://github.com/genuinetools/img)、
+[buildah](https://github.com/containers/buildah)、
+[kaniko](https://github.com/GoogleContainerTools/kaniko) 或
+[buildkit-cli-for-kubectl](https://github.com/vmware-tanzu/buildkit-cli-for-kubectl)，
+他们都不需要 Docker。
+
+<!-- 
+For containerd, you can start with their [documentation] to see what configuration
+options are available as you migrate things over.
+-->
+对于 containerd，你可查阅有关它的[文档](https://github.com/containerd/cri/blob/master/docs/registry.md)，
+获取迁移时可用的配置选项。
+
+<!--
+For instructions on how to use containerd and CRI-O with Kubernetes, see the
+Kubernetes documentation on [Container Runtimes].
+-->
+有关如何在 Kubernetes 中使用 containerd 和 CRI-O 的说明，
+请参阅 [Kubernetes 相关文档](/docs/setup/production-environment/container-runtimes/)。
+
+<!--
+### What if I have more questions?
+-->
+### 我还有其他问题怎么办？ {#what-if-i-have-more-questions}
+
+<!--
+If you use a vendor-supported Kubernetes distribution, you can ask them about
+upgrade plans for their products. For end-user questions, please post them
+to our end user community forum: https://discuss.kubernetes.io/.
+-->
+如果你使用了供应商支持的 Kubernetes 发行版，你可以咨询供应商他们产品的升级计划。
+对于最终用户的问题，请把问题发到我们的最终用户社区的[论坛](https://discuss.kubernetes.io/)。
+
+<!--
+You can discuss the decision to remove dockershim via a dedicated
+[GitHub issue](https://github.com/kubernetes/kubernetes/issues/106917).
+-->
+你可以通过专用 [GitHub 问题](https://github.com/kubernetes/kubernetes/issues/106917) 
+讨论删除 dockershim 的决定。
+
+<!--
+You can also check out the excellent blog post
+[Wait, Docker is deprecated in Kubernetes now?][dep] a more in-depth technical
+discussion of the changes.
+-->
+你也可以看看这篇优秀的博客文章：[等等，Docker 被 Kubernetes 弃用了?](https://dev.to/inductor/wait-docker-is-deprecated-in-kubernetes-now-what-do-i-do-e4m)
+对这些变化进行更深入的技术讨论。
+
+<!--
+### Is there any tooling that can help me find dockershim in use?
+-->
+### 是否有任何工具可以帮助我找到正在使用的 dockershim？ {#is-there-any-tooling-that-can-help-me-find-dockershim-in-use}
+
+<!--
+Yes! The [Detector for Docker Socket (DDS)][dds] is a kubectl plugin that you can
+install and then use to check your cluster. DDS can detect if active Kubernetes workloads
+are mounting the Docker Engine socket (`docker.sock`) as a volume.
+Find more details and usage patterns in the DDS project's [README][dds].
+-->
+是的！ [Docker Socket 检测器 (DDS)][dds] 是一个 kubectl 插件，
+你可以安装它用于检查你的集群。 DDS 可以检测运行中的 Kubernetes
+工作负载是否将 Docker Engine 套接字 (`docker.sock`) 作为卷挂载。
+在 DDS 项目的 [README][dds] 中查找更多详细信息和使用方法。
+
+[dds]: https://github.com/aws-containers/kubectl-detector-for-docker-socket
+
+<!--
+### Can I have a hug?
+-->
+### 我可以加入吗？ {#can-i-have-a-hug}
+
+<!--
+Yes, we're still giving hugs as requested. 🤗🤗🤗
+-->
+当然，只要你愿意，随时随地欢迎。🤗🤗🤗
\ No newline at end of file
diff --git a/content/zh-cn/blog/_posts/2022-03-15-meet-our-contributors-APAC-AU-NZ-region-02.md b/content/zh-cn/blog/_posts/2022-03-15-meet-our-contributors-APAC-AU-NZ-region-02.md
new file mode 100644
index 0000000000..6b01e42be9
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2022-03-15-meet-our-contributors-APAC-AU-NZ-region-02.md
@@ -0,0 +1,180 @@
+---
+layout: blog
+title: "认识我们的贡献者 - 亚太地区（澳大利亚-新西兰地区）"
+date: 2022-03-16
+slug: meet-our-contributors-au-nz-ep-02
+canonicalUrl: https://www.kubernetes.dev/blog/2022/03/14/meet-our-contributors-au-nz-ep-02/
+---
+<!--
+layout: blog
+title: "Meet Our Contributors - APAC (Aus-NZ region)"
+date: 2022-03-16
+slug: meet-our-contributors-au-nz-ep-02
+canonicalUrl: https://www.kubernetes.dev/blog/2022/03/14/meet-our-contributors-au-nz-ep-02/
+-->
+
+<!--
+**Authors & Interviewers:** [Anubhav Vardhan](https://github.com/anubha-v-ardhan), [Atharva Shinde](https://github.com/Atharva-Shinde), [Avinesh Tripathi](https://github.com/AvineshTripathi), [Brad McCoy](https://github.com/bradmccoydev), [Debabrata Panigrahi](https://github.com/Debanitrkl), [Jayesh Srivastava](https://github.com/jayesh-srivastava), [Kunal Verma](https://github.com/verma-kunal), [Pranshu Srivastava](https://github.com/PranshuSrivastava), [Priyanka Saggu](github.com/Priyankasaggu11929/), [Purneswar Prasad](https://github.com/PurneswarPrasad), [Vedant Kakde](https://github.com/vedant-kakde)
+-->
+**作者和采访者：**
+[Anubhav Vardhan](https://github.com/anubha-v-ardhan)、
+[Atharva Shinde](https://github.com/Atharva-Shinde)、
+[Avinesh Tripathi](https://github.com/AvineshTripathi)、
+[Brad McCoy](https://github.com/bradmccoydev)、
+[Debabrata Panigrahi](https://github.com/Debanitrkl)、
+[Jayesh Srivastava](https://github.com/jayesh-srivastava)、
+[Kunal Verma](https://github.com/verma-kunal)、
+[Pranshu Srivastava](https://github.com/PranshuSrivastava)、
+[Priyanka Saggu](github.com/Priyankasaggu11929/)、
+[Purneswar Prasad](https://github.com/PurneswarPrasad)、
+[Vedant Kakde](https://github.com/vedant-kakde)
+
+---
+
+<!--
+Good day, everyone 👋
+-->
+大家好👋
+
+<!--
+Welcome back to the second episode of the "Meet Our Contributors" blog post series for APAC.
+-->
+欢迎来到亚太地区的”认识我们的贡献者”博文系列第二期。
+
+<!--
+This post will feature four outstanding contributors from the Australia and New Zealand regions, who have played diverse leadership and community roles in the Upstream Kubernetes project.
+-->
+这篇文章将介绍来自澳大利亚和新西兰地区的四位杰出贡献者，
+他们在上游 Kubernetes 项目中承担着不同子项目的领导者和社区贡献者的角色。
+
+<!--
+So, without further ado, let's get straight to the blog.
+-->
+闲话少说，让我们直接进入主题。
+
+## [Caleb Woodbine](https://github.com/BobyMCbobs)
+
+<!--
+Caleb Woodbine is currently a member of the ii.nz organisation.
+-->
+Caleb Woodbine 目前是 ii.nz 组织的成员。
+
+<!--
+He began contributing to the Kubernetes project in 2018 as a member of the Kubernetes Conformance working group. His experience was positive, and he benefited from early guidance from [Hippie Hacker](https://github.com/hh), a fellow contributor from New Zealand.
+-->
+他于 2018 年作为 Kubernetes Conformance 工作组的成员开始为 Kubernetes 项目做贡献。
+他积极向上，他从一位来自新西兰的贡献者 [Hippie Hacker](https://github.com/hh) 的早期指导中受益匪浅。
+
+<!--
+He has made major contributions to Kubernetes project since then through `SIG k8s-infra` and `k8s-conformance` working group.
+-->
+他在 `SIG k8s-infra` 和 `k8s-conformance` 工作组为 Kubernetes 项目做出了重大贡献。
+
+<!--
+Caleb is also a co-organizer of the [CloudNative NZ](https://www.meetup.com/cloudnative-nz/) community events, which aim to expand the reach of Kubernetes project throughout New Zealand in order to encourage technical education and improved employment opportunities.
+-->
+Caleb 也是 [CloudNative NZ](https://www.meetup.com/cloudnative-nz/)
+社区活动的联合组织者，该活动旨在扩大 Kubernetes 项目在整个新西兰的影响力，以鼓励科技教育和改善就业机会。
+
+<!--
+> _There need to be more outreach in APAC and the educators and universities must pick up Kubernetes, as they are very slow and about 8+ years out of date. NZ tends to rather pay overseas than educate locals on the latest cloud tech Locally._
+-->
+> 亚太地区需要更多的外联活动，教育工作者和大学必须学习 Kubernetes，因为他们非常缓慢，
+> 而且已经落后了8年多。新西兰倾向于在海外付费，而不是教育当地人最新的云技术。
+
+## [Dylan Graham](https://github.com/DylanGraham)
+
+<!--
+Dylan Graham is a cloud engineer from Adeliade, Australia. He has been contributing to the upstream Kubernetes project since 2018.
+-->
+Dylan Graham 是来自澳大利亚 Adeliade 的云计算工程师。自 2018 年以来，他一直在为上游 Kubernetes 项目做出贡献。
+
+<!--
+He stated that being a part of such a large-scale project was initially overwhelming, but that the community's friendliness and openness assisted him in getting through it.
+-->
+他表示，成为如此大项目的一份子，最初压力是比较大的，但社区的友好和开放帮助他度过了难关。
+
+<!--
+He began by contributing to the project documentation and is now mostly focused on the community support for the APAC region.
+-->
+开始在项目文档方面做贡献，现在主要致力于为亚太地区提供社区支持。
+
+<!--
+He believes that consistent attendance at community/project meetings, taking on project tasks, and seeking community guidance as needed can help new aspiring developers become effective contributors.
+-->
+他相信，持续参加社区/项目会议，承担项目任务，并在需要时寻求社区指导，可以帮助有抱负的新开发人员成为有效的贡献者。
+
+<!--
+> _The feeling of being a part of a large community is really special. I've met some amazing people, even some before the pandemic in real life :)_
+-->
+> 成为大社区的一份子感觉真的很特别。我遇到了一些了不起的人，甚至是在现实生活中疫情发生之前。
+
+## [Hippie Hacker](https://github.com/hh)
+
+<!--
+Hippie has worked for the CNCF.io as a Strategic Initiatives contractor from New Zealand for almost 5+ years. He is an active contributor to k8s-infra, API conformance testing, Cloud provider conformance submissions, and apisnoop.cncf.io domains of the upstream Kubernetes & CNCF projects.
+-->
+Hippie 来自新西兰，曾在 CNCF.io 作为战略计划承包商工作 5 年多。他是 k8s-infra、
+API 一致性测试、云提供商一致性提交以及上游 Kubernetes 和 CNCF 项目 apisnoop.cncf.io 域的积极贡献者。
+
+<!--
+He recounts their early involvement with the Kubernetes project, which began roughly 5 years ago when their firm, ii.nz, demonstrated [network booting from a Raspberry Pi using PXE and running Gitlab in-cluster to install Kubernetes on servers](https://ii.nz/post/bringing-the-cloud-to-your-community/).
+-->
+他讲述了他们早期参与 Kubernetes 项目的情况，该项目始于大约 5 年前，当时他们的公司 ii.nz
+演示了[使用 PXE 从 Raspberry Pi 启动网络，并在集群中运行Gitlab，以便在服务器上安装 Kubernetes ](https://ii.nz/post/bringing-the-cloud-to-your-community/)
+
+<!--
+He describes their own contributing experience as someone who, at first, tried to do all of the hard lifting on their own, but eventually saw the benefit of group contributions which reduced burnout and task division which allowed folks to keep moving forward on their own momentum.
+-->
+他描述了自己的贡献经历：一开始，他试图独自完成所有艰巨的任务，但最终看到了团队协作贡献的好处，
+分工合作减少了过度疲劳，这让人们能够凭借自己的动力继续前进。
+
+<!--
+He recommends that new contributors use pair programming.
+-->
+他建议新的贡献者结对编程。
+
+<!--
+> _The cross pollination of approaches and two pairs of eyes on the same work can often yield a much more amplified effect than a PR comment / approval alone can afford._
+-->
+> 针对一个项目，多人关注和交叉交流往往比单独的评审、批准 PR 能产生更大的效果。
+
+## [Nick Young](https://github.com/youngnick)
+
+<!--
+Nick Young works at VMware as a technical lead for Contour, a CNCF ingress controller. He was active with the upstream Kubernetes project from the beginning, and eventually became the chair of the LTS working group, where he advocated user concerns. He is currently the SIG Network Gateway API subproject's maintainer.
+-->
+Nick Young 在 VMware 工作，是 CNCF 入口控制器 Contour 的技术负责人。
+他从一开始就积极参与上游 Kubernetes 项目，最终成为 LTS 工作组的主席，
+他提倡关注用户。他目前是 SIG Network Gateway API 子项目的维护者。
+
+<!--
+His contribution path was notable in that he began working on major areas of the Kubernetes project early on, skewing his trajectory.
+-->
+他的贡献之路是引人注目的，因为他很早就在 Kubernetes 项目的主要领域工作，这改变了他的轨迹。
+
+<!--
+He asserts the best thing a new contributor can do is to "start contributing". Naturally, if it is relevant to their employment, that is excellent; however, investing non-work time in contributing can pay off in the long run in terms of work. He believes that new contributors, particularly those who are currently Kubernetes users, should be encouraged to participate in higher-level project discussions.
+-->
+他断言，一个新贡献者能做的最好的事情就是“开始贡献”。当然，如果与他的工作息息相关，那好极了;
+然而，把非工作时间投入到贡献中去，从长远来看可以在工作上获得回报。
+他认为，应该鼓励新的贡献者，特别是那些目前是 Kubernetes 用户的人，参与到更高层次的项目讨论中来。
+
+<!--
+> _Just being active and contributing will get you a long way. Once you've been active for a while, you'll find that you're able to answer questions, which will mean you're asked questions, and before you know it you are an expert._
+-->
+> 只要积极主动，做出贡献，你就可以走很远。一旦你活跃了一段时间，你会发现你能够解答别人的问题，
+> 这意味着会有人请教你或和你讨论，在你意识到这一点之前，你就已经是专家了。
+
+---
+
+<!--
+If you have any recommendations/suggestions for who we should interview next, please let us know in #sig-contribex. Your suggestions would be much appreciated. We're thrilled to have additional folks assisting us in reaching out to even more wonderful individuals of the community.
+-->
+如果你对我们接下来应该采访的人有任何意见/建议，请在 #sig-contribex 中告知我们。
+非常感谢你的建议。我们很高兴有更多的人帮助我们接触到社区中更优秀的人。
+
+<!--
+We'll see you all in the next one. Everyone, till then, have a happy contributing! 👋
+-->
+我们下期再见。祝你有个愉快的贡献之旅!👋
diff --git a/content/zh-cn/blog/_posts/2022-03-31-ready-for-dockershim-removal.md b/content/zh-cn/blog/_posts/2022-03-31-ready-for-dockershim-removal.md
new file mode 100644
index 0000000000..99de335164
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2022-03-31-ready-for-dockershim-removal.md
@@ -0,0 +1,111 @@
+---
+layout: blog
+title: "你的集群准备好使用 v1.24 版本了吗？"
+date: 2022-03-31
+slug: ready-for-dockershim-removal
+---
+<!--
+layout: blog
+title: "Is Your Cluster Ready for v1.24?"
+date: 2022-03-31
+slug: ready-for-dockershim-removal
+-->
+
+<!--
+**Author:** Kat Cosgrove
+-->
+**作者:** Kat Cosgrove
+
+
+<!--
+Way back in December of 2020, Kubernetes announced the [deprecation of Dockershim](/blog/2020/12/02/dont-panic-kubernetes-and-docker/). In Kubernetes, dockershim is a software shim that allows you to use the entire Docker engine as your container runtime within Kubernetes. In the upcoming v1.24 release, we are removing Dockershim - the delay between deprecation and removal in line with the [project’s policy](https://kubernetes.io/docs/reference/using-api/deprecation-policy/) of supporting features for at least one year after deprecation. If you are a cluster operator, this guide includes the practical realities of what you need to know going into this release. Also, what do you need to do to ensure your cluster doesn’t fall over!
+-->
+早在 2020 年 12 月，Kubernetes 就宣布[弃用 Dockershim](/zh-cn/blog/2020/12/02/dont-panic-kubernetes-and-docker/)。
+在 Kubernetes 中，dockershim 是一个软件 shim，
+它允许你将整个 Docker 引擎用作 Kubernetes 中的容器运行时。
+在即将发布的 v1.24 版本中，我们将移除 Dockershim - 
+在宣布弃用之后到彻底移除这段时间内，我们至少预留了一年的时间继续支持此功能，
+这符合相关的[项目策略](/zh-cn/docs/reference/using-api/deprecation-policy/)。 
+如果你是集群操作员，则该指南包含你在此版本中需要了解的实际情况。
+另外还包括你需要做些什么来确保你的集群不会崩溃！
+
+<!--
+## First, does this even affect you?
+-->
+## 首先，这对你有影响吗？
+
+<!--
+If you are rolling your own cluster or are otherwise unsure whether or not this removal affects you, stay on the safe side and [check to see if you have any dependencies on Docker Engine](/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you/). Please note that using Docker Desktop to build your application containers is not a Docker dependency for your cluster. Container images created by Docker are compliant with the [Open Container Initiative (OCI)](https://opencontainers.org/), a Linux Foundation governance structure that defines industry standards around container formats and runtimes. They will work just fine on any container runtime supported by Kubernetes.
+-->
+如果你正在管理自己的集群或不确定此删除是否会影响到你，
+请保持安全状态并[检查你对 Docker Engine 是否有依赖](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you/)。 
+请注意，使用 Docker Desktop 构建应用程序容器并不算是集群对 Docker 有依赖。
+Docker 创建的容器镜像符合 [Open Container Initiative (OCI)](https://opencontainers.org/) 规范，
+而 OCI 是 Linux 基金会的一种治理架构，负责围绕容器格式和运行时定义行业标准。 
+这些镜像可以在 Kubernetes 支持的任何容器运行时上正常工作。
+
+<!--
+If you are using a managed Kubernetes service from a cloud provider, and you haven’t explicitly changed the container runtime, there may be nothing else for you to do. Amazon EKS, Azure AKS, and Google GKE all default to containerd now, though you should make sure they do not need updating if you have any node customizations. To check the runtime of your nodes, follow [Find Out What Container Runtime is Used on a Node](/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use/).
+-->
+如果你使用的是云服务提供商管理的 Kubernetes 服务，
+并且你确定没有更改过容器运行时，那么你可能不需要做任何事情。 
+Amazon EKS、Azure AKS 和 Google GKE 现在都默认使用 containerd，
+但如果你的集群中有任何自定义的节点，你要确保它们不需要被更新。
+要检查节点的运行时，请参考[查明节点上所使用的容器运行时](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use/)。
+
+<!--
+Regardless of whether you are rolling your own cluster or using a managed Kubernetes service from a cloud provider, you may need to [migrate telemetry or security agents that rely on Docker Engine](/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents/). 
+-->
+无论你是在管理自己的集群还是使用云服务提供商管理的 Kubernetes 服务，
+你可能都需要[迁移依赖 Docker Engine 的遥测或安全代理](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents/)。
+
+<!--
+## I have a Docker dependency. What now?
+-->
+## 我对 Docker 有依赖。现在该怎么办？
+
+<!--
+If your Kubernetes cluster depends on Docker Engine and you intend to upgrade to Kubernetes v1.24 (which you should eventually do for security and similar reasons), you will need to change your container runtime from Docker Engine to something else or use [cri-dockerd](https://github.com/Mirantis/cri-dockerd). Since [containerd](https://containerd.io/) is a graduated CNCF project and the runtime within Docker itself, it’s a safe bet as an alternative container runtime. Fortunately, the Kubernetes project has already documented the process of [changing a node’s container runtime](/docs/tasks/administer-cluster/migrating-from-dockershim/change-runtime-containerd/), using containerd as an example. Instructions are similar for switching to one of the other supported runtimes.
+-->
+如果你的 Kubernetes 集群对 Docker Engine 有依赖，
+并且你打算升级到 Kubernetes v1.24 版本（出于安全和类似原因，你最终应该这样做），
+你需要将容器运行时从 Docker Engine 更改为其他方式或使用 [cri-dockerd](https://github.com/Mirantis/cri-dockerd)。 
+由于 [containerd](https://containerd.io/) 是一个已经毕业的 CNCF 项目，
+并且是 Docker 本身的运行时，因此用它作为容器运行时的替代方式是一个安全的选择。
+幸运的是，Kubernetes 项目已经以 containerd 为例，
+提供了[更改节点容器运行时](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/change-runtime-containerd/)的过程文档。
+切换到其它支持的运行时的操作指令与此类似。
+
+<!--
+## I want to upgrade Kubernetes, and I need to maintain compatibility with Docker as a runtime. What are my options?
+-->
+## 我想升级 Kubernetes，并且我需要保持与 Docker 作为运行时的兼容性。我有哪些选择？
+
+<!--
+Fear not, you aren’t being left out in the cold and you don’t have to take the security risk of staying on an old version of Kubernetes. Mirantis and Docker have jointly released, and are maintaining, a replacement for dockershim. That replacement is called [cri-dockerd](https://github.com/Mirantis/cri-dockerd). If you do need to maintain compatibility with Docker as a runtime, install cri-dockerd following the instructions in the project’s documentation.
+-->
+别担心，你不会被冷落，也不必冒着安全风险继续使用旧版本的 Kubernetes。 
+Mirantis 和 Docker 已经联合发布并正在维护 dockershim 的替代品。 
+这种替代品称为 [cri-dockerd](https://github.com/Mirantis/cri-dockerd)。 
+如果你确实需要保持与 Docker 作为运行时的兼容性，请按照项目文档中的说明安装 cri-dockerd。
+
+<!--
+## Is that it?
+-->
+## 这样就可以了吗？
+
+
+<!--
+Yes. As long as you go into this release aware of the changes being made and the details of your own clusters, and you make sure to communicate clearly with your development teams, it will be minimally dramatic. You may have some changes to make to your cluster, application code, or scripts, but all of these requirements are documented. Switching from using Docker Engine as your runtime to using [one of the other supported container runtimes](/docs/setup/production-environment/container-runtimes/) effectively means removing the middleman, since the purpose of dockershim is to access the container runtime used by Docker itself. From a practical perspective, this removal is better both for you and for Kubernetes maintainers in the long-run.
+-->
+是的。只要你深入了解此版本所做的变更和你自己集群的详细信息，
+并确保与你的开发团队进行清晰的沟通，它的不确定性就会降到最低。 
+你可能需要对集群、应用程序代码或脚本进行一些更改，但所有这些要求都已经有说明指导。 
+从使用 Docker Engine 作为运行时，切换到使用[其他任何一种支持的容器运行时](/zh-cn/docs/setup/production-environment/container-runtimes/)，
+这意味着移除了中间层的组件，因为 dockershim 的作用是访问 Docker 本身使用的容器运行时。 
+从实际角度长远来看，这种移除对你和 Kubernetes 维护者都更有好处。
+
+<!--
+If you still have questions, please first check the [Dockershim Removal FAQ](/blog/2022/02/17/dockershim-faq/).
+-->
+如果你仍有疑问，请先查看[弃用 Dockershim 的常见问题](/zh-cn/blog/2022/02/17/dockershim-faq/)。
diff --git a/content/zh-cn/blog/_posts/2022-04-07-Kubernetes-1-24-removals-and-deprecations.md b/content/zh-cn/blog/_posts/2022-04-07-Kubernetes-1-24-removals-and-deprecations.md
new file mode 100644
index 0000000000..2f1b9ae905
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2022-04-07-Kubernetes-1-24-removals-and-deprecations.md
@@ -0,0 +1,301 @@
+---
+layout: blog
+title: "Kubernetes 1.24 的删除和弃用"
+date: 2022-04-07
+slug: upcoming-changes-in-kubernetes-1-24
+---
+
+<!--
+layout: blog
+title: "Kubernetes Removals and Deprecations In 1.24"
+date: 2022-04-07
+slug: upcoming-changes-in-kubernetes-1-24
+-->
+
+<!--
+**Author**: Mickey Boxell (Oracle)
+
+As Kubernetes evolves, features and APIs are regularly revisited and removed. New features may offer
+an alternative or improved approach to solving existing problems, motivating the team to remove the
+old approach. 
+-->
+**作者**： Mickey Boxell (Oracle)
+
+随着 Kubernetes 的发展，特性和 API 会定期被重新访问和删除。 
+新特性可能会提供替代或改进的方法，来解决现有的问题，从而激励团队移除旧的方法。
+
+<!--
+We want to make sure you are aware of the changes coming in the Kubernetes 1.24 release. The release will 
+**deprecate** several (beta) APIs in favor of stable versions of the same APIs. The major change coming 
+in the Kubernetes 1.24 release is the 
+[removal of Dockershim](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2221-remove-dockershim). 
+This is discussed below and will be explored in more depth at release time. For an early look at the 
+changes coming in Kubernetes 1.24, take a look at the in-progress 
+[CHANGELOG](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.24.md).
+-->
+我们希望确保你了解 Kubernetes 1.24 版本的变化。 该版本将 **弃用** 一些（测试版/beta）API，
+转而支持相同 API 的稳定版本。 Kubernetes 1.24 版本的主要变化是
+[移除 Dockershim](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2221-remove-dockershim)。
+这将在下面讨论，并将在发布时更深入地探讨。
+要提前了解 Kubernetes 1.24 中的更改，请查看正在更新中的
+[CHANGELOG](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.24.md)。
+
+<!--
+## A note about Dockershim
+
+It's safe to say that the removal receiving the most attention with the release of Kubernetes 1.24 
+is Dockershim. Dockershim was deprecated in v1.20. As noted in the [Kubernetes 1.20 changelog](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.20.md#deprecation): 
+"Docker support in the kubelet is now deprecated and will be removed in a future release. The kubelet 
+uses a module called "dockershim" which implements CRI support for Docker and it has seen maintenance 
+issues in the Kubernetes community." With the upcoming release of Kubernetes 1.24, the Dockershim will 
+finally be removed. 
+-->
+## 关于 Dockershim  {#a-note-about-dockershim}
+
+可以肯定地说，随着 Kubernetes 1.24 的发布，最受关注的删除是 Dockershim。
+Dockershim 在 1.20 版本中已被弃用。 如
+[Kubernetes 1.20 变更日志](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.20.md#deprecation)中所述：
+"Docker support in the kubelet is now deprecated and will be removed in a future release. The kubelet
+uses a module called "dockershim" which implements CRI support for Docker and it has seen maintenance
+issues in the Kubernetes community."
+随着即将发布的 Kubernetes 1.24，Dockershim 将最终被删除。
+
+<!--
+In the article [Don't Panic: Kubernetes and Docker](/blog/2020/12/02/dont-panic-kubernetes-and-docker/),
+the authors succinctly captured the change's impact and encouraged users to remain calm: 
+> Docker as an underlying runtime is being deprecated in favor of runtimes that use the
+> Container Runtime Interface (CRI) created for Kubernetes. Docker-produced images
+> will continue to work in your cluster with all runtimes, as they always have.
+-->
+在文章[别慌: Kubernetes 和 Docker](/zh-cn/blog/2020/12/02/dont-panic-kubernetes-and-docker/) 中，
+作者简洁地记述了变化的影响，并鼓励用户保持冷静：
+>弃用 Docker 这个底层运行时，转而支持符合为 Kubernetes 创建的容器运行接口
+>Container Runtime Interface (CRI) 的运行时。
+>Docker 构建的镜像，将在你的集群的所有运行时中继续工作，一如既往。
+
+<!--
+Several guides have been created with helpful information about migrating from dockershim
+to container runtimes that are directly compatible with Kubernetes. You can find them on the
+[Migrating from dockershim](/docs/tasks/administer-cluster/migrating-from-dockershim/)
+page in the Kubernetes documentation.
+-->
+已经有一些文档指南，提供了关于从 dockershim 迁移到与 Kubernetes 直接兼容的容器运行时的有用信息。
+你可以在 Kubernetes 文档中的[从 dockershim 迁移](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/)
+页面上找到它们。
+
+<!--
+For more information about why Kubernetes is moving away from dockershim, check out the aptly 
+named: [Kubernetes is Moving on From Dockershim](/blog/2022/01/07/kubernetes-is-moving-on-from-dockershim/) 
+and the [updated dockershim removal FAQ](/blog/2022/02/17/dockershim-faq/).
+
+Take a look at the [Is Your Cluster Ready for v1.24?](/blog/2022/03/31/ready-for-dockershim-removal/) post to learn about how to ensure your cluster continues to work after upgrading from v1.23 to v1.24. 
+-->
+有关 Kubernetes 为何不再使用 dockershim 的更多信息，
+请参见：[Kubernetes 正在离开 Dockershim](/blog/2022/01/07/kubernetes-is-moving-on-from-dockershim/)
+和[最新的弃用 Dockershim 的常见问题](/zh-cn/blog/2022/02/17/dockershim-faq/)。
+
+查看[你的集群准备好使用 v1.24 了吗？](/blog/2022/03/31/ready-for-dockershim-removal/) 一文，
+了解如何确保你的集群在从 1.23 版本升级到 1.24 版本后继续工作。
+
+<!--
+## The Kubernetes API removal and deprecation process
+
+Kubernetes contains a large number of components that evolve over time. In some cases, this 
+evolution results in APIs, flags, or entire features, being removed. To prevent users from facing 
+breaking changes, Kubernetes contributors adopted a feature [deprecation policy](/docs/reference/using-api/deprecation-policy/). 
+This policy ensures that stable APIs may only be deprecated when a newer stable version of that 
+same API is available and that APIs have a minimum lifetime as indicated by the following stability levels: 
+
+* Generally available (GA) or stable API versions may be marked as deprecated but must not be removed within a major version of Kubernetes. 
+* Beta or pre-release API versions must be supported for 3 releases after deprecation. 
+* Alpha or experimental API versions may be removed in any release without prior deprecation notice. 
+-->
+## Kubernetes API 删除和弃用流程  {#the-Kubernetes-api-removal-and-deprecation-process}
+
+Kubernetes 包含大量随时间演变的组件。在某些情况下，这种演变会导致 API、标志或整个特性被删除。
+为了防止用户面对重大变化，Kubernetes 贡献者采用了一项特性[弃用策略](/zh-cn/docs/reference/using-api/deprecation-policy/)。
+此策略确保仅当同一 API 的较新稳定版本可用并且 
+API 具有以下稳定性级别所指示的最短生命周期时，才可能弃用稳定版本 API：
+
+* 正式发布 (GA) 或稳定的 API 版本可能被标记为已弃用，但不得在 Kubernetes 的主版本中删除。
+* 测试版（beta）或预发布 API 版本在弃用后必须支持 3 个版本。
+* Alpha 或实验性 API 版本可能会在任何版本中被删除，恕不另行通知。
+
+<!--
+Removals follow the same deprecation policy regardless of whether an API is removed due to a beta feature 
+graduating to stable or because that API was not proven to be successful. Kubernetes will continue to make 
+sure migration options are documented whenever APIs are removed. 
+-->
+删除遵循相同的弃用政策，无论 API 是由于 测试版（beta）功能逐渐稳定还是因为该
+API 未被证明是成功的而被删除。
+Kubernetes 将继续确保在删除 API 时提供用来迁移的文档。
+
+<!--
+**Deprecated** APIs are those that have been marked for removal in a future Kubernetes release. **Removed** 
+APIs are those that are no longer available for use in current, supported Kubernetes versions after having 
+been deprecated. These removals have been superseded by newer, stable/generally available (GA) APIs. 
+-->
+**弃用的** API 是指那些已标记为在未来 Kubernetes 版本中被删除的 API。
+**删除的** API 是指那些在被弃用后不再可用于当前受支持的 Kubernetes 版本的 API。 
+这些删除已被更新的、稳定的/普遍可用的 (GA) API 所取代。
+
+<!--
+## API removals, deprecations, and other changes for Kubernetes 1.24
+
+* [Dynamic kubelet configuration](https://github.com/kubernetes/enhancements/issues/281): `DynamicKubeletConfig` is used to enable the dynamic configuration of the kubelet. The `DynamicKubeletConfig` flag was deprecated in Kubernetes 1.22. In v1.24, this feature gate will be removed from the kubelet. See [Reconfigure kubelet](/docs/tasks/administer-cluster/reconfigure-kubelet/). Refer to the ["Dynamic kubelet config is removed" KEP](https://github.com/kubernetes/enhancements/issues/281) for more information.
+-->
+## Kubernetes 1.24 的 API 删除、弃用和其他更改  {#api-removals-deprecations-and-other-changes-for-kubernetes-1.24}
+
+* [动态 kubelet 配置](https://github.com/kubernetes/enhancements/issues/281): `DynamicKubeletConfig`
+  用于启用 kubelet 的动态配置。Kubernetes 1.22 中弃用 `DynamicKubeletConfig` 标志。
+  在 1.24 版本中，此特性门控将从 kubelet 中移除。请参阅[重新配置 kubelet](/docs/tasks/administer-cluster/reconfigure-kubelet/)。
+  更多详细信息，请参阅[“删除动态 kubelet 配置” 的 KEP](https://github.com/kubernetes/enhancements/issues/281)。
+<!--
+* [Dynamic log sanitization](https://github.com/kubernetes/kubernetes/pull/107207): The experimental dynamic log sanitization feature is deprecated and will be removed in v1.24. This feature introduced a logging filter that could be applied to all Kubernetes system components logs to prevent various types of sensitive information from leaking via logs. Refer to [KEP-1753: Kubernetes system components logs sanitization](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/1753-logs-sanitization#deprecation) for more information and an [alternative approach](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/1753-logs-sanitization#alternatives=).
+-->
+* [动态日志清洗](https://github.com/kubernetes/kubernetes/pull/107207)：实验性的动态日志清洗功能已被弃用，
+  将在 1.24 版本中被删除。该功能引入了一个日志过滤器，可以应用于所有 Kubernetes 系统组件的日志，
+  以防止各种类型的敏感信息通过日志泄漏。有关更多信息和替代方法，请参阅
+  [KEP-1753: Kubernetes 系统组件日志清洗](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/1753-logs-sanitization#deprecation)。
+<!--
+* In-tree provisioner to CSI driver migration: This applies to a number of in-tree plugins, including [Portworx](https://github.com/kubernetes/enhancements/issues/2589). Refer to the [In-tree Storage Plugin to CSI Migration Design Doc](https://github.com/kubernetes/design-proposals-archive/blob/main/storage/csi-migration.md#background-and-motivations) for more information.
+-->
+* 树内驱动（In-tree provisioner）向 CSI 卷迁移：这适用于许多树内插件， 
+  包括 [Portworx](https://github.com/kubernetes/enhancements/issues/2589)。
+  参见[树内存储插件向 CSI 卷迁移的设计文档](https://github.com/kubernetes/design-proposals-archive/blob/main/storage/csi-migration.md#background-and-motivations) 
+  了解更多信息。
+<!--
+* [Removing Dockershim from kubelet](https://github.com/kubernetes/enhancements/issues/2221): the Container Runtime Interface (CRI) for Docker (i.e. Dockershim) is currently a built-in container runtime in the kubelet code base. It was deprecated in v1.20. As of v1.24, the kubelet will no longer have dockershim. Check out this blog on [what you need to do be ready for v1.24](/blog/2022/03/31/ready-for-dockershim-removal/). 
+-->
+* [从 kubelet 中移除 Dockershim](https://github.com/kubernetes/enhancements/issues/2221)：Docker
+  的容器运行时接口(CRI)（即 Dockershim）目前是 kubelet 代码中内置的容器运行时。 它在 1.20 版本中已被弃用。 
+  从 1.24 版本开始，kubelet 已经移除 dockershim。 查看这篇博客，
+  [了解你需要为 1.24 版本做些什么](/blog/2022/03/31/ready-for-dockershim-removal/)。
+<!--
+* [Storage capacity tracking for pod scheduling](https://github.com/kubernetes/enhancements/issues/1472): The CSIStorageCapacity API supports exposing currently available storage capacity via CSIStorageCapacity objects and enhances scheduling of pods that use CSI volumes with late binding. In v1.24, the CSIStorageCapacity API will be stable. The API graduating to stable initates the deprecation of the v1beta1 CSIStorageCapacity API. Refer to the [Storage Capacity Constraints for Pod Scheduling KEP](https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/1472-storage-capacity-tracking) for more information.
+-->
+* [pod 调度的存储容量追踪](https://github.com/kubernetes/enhancements/issues/1472)：CSIStorageCapacity API
+  支持通过 CSIStorageCapacity 对象暴露当前可用的存储容量，并增强了使用带有延迟绑定的 CSI 卷的 Pod 的调度。 
+  CSIStorageCapacity API 自 1.24 版本起提供稳定版本。升级到稳定版的 API 将弃用 v1beta1 CSIStorageCapacity API。 
+  更多信息请参见 [Pod 调度存储容量约束 KEP](https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/1472-storage-capacity-tracking)。
+<!--
+* [The `master` label is no longer present on kubeadm control plane nodes](https://github.com/kubernetes/kubernetes/pull/107533). For new clusters, the label 'node-role.kubernetes.io/master' will no longer be added to control plane nodes, only the label 'node-role.kubernetes.io/control-plane' will be added. For more information, refer to [KEP-2067: Rename the kubeadm "master" label and taint](https://github.com/kubernetes/enhancements/tree/master/keps/sig-cluster-lifecycle/kubeadm/2067-rename-master-label-taint).
+-->
+* [kubeadm 控制面节点上不再存在 `master` 标签](https://github.com/kubernetes/kubernetes/pull/107533)。 
+  对于新集群，控制平面节点将不再添加 'node-role.kubernetes.io/master' 标签，
+  只会添加 'node-role.kubernetes.io/control-plane' 标签。更多信息请参考
+  [KEP-2067：重命名 kubeadm “master” 标签和污点](https://github.com/kubernetes/enhancements/tree/master/keps/sig-cluster-lifecycle/kubeadm/2067)。
+<!--
+* [VolumeSnapshot v1beta1 CRD will be removed](https://github.com/kubernetes/enhancements/issues/177). Volume snapshot and restore functionality for Kubernetes and the [Container Storage Interface](https://github.com/container-storage-interface/spec/blob/master/spec.md) (CSI), which provides standardized APIs design (CRDs) and adds PV snapshot/restore support for CSI volume drivers, entered beta in v1.20. VolumeSnapshot v1beta1 was deprecated in v1.21 and is now unsupported. Refer to [KEP-177: CSI Snapshot](https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/177-volume-snapshot#kep-177-csi-snapshot) and [kubernetes-csi/external-snapshotter](https://github.com/kubernetes-csi/external-snapshotter/releases/tag/v4.1.0) for more information.
+-->
+* [VolumeSnapshot v1beta1 CRD 在 1.24 版本中将被移除](https://github.com/kubernetes/enhancements/issues/177)。 
+  Kubernetes 和 [Container Storage Interface](https://github.com/container-storage-interface/spec/blob/master/spec.md) (CSI)
+  的卷快照和恢复功能，在 1.20 版本中进入测试版。该功能提供标准化 API 设计 (CRD ) 并为 CSI 卷驱动程序添加了 PV 快照/恢复支持，
+  VolumeSnapshot v1beta1 在 1.21 版本中已被弃用，现在不受支持。更多信息请参考
+  [KEP-177：CSI 快照](https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/177-volume-snapshot#kep-177-csi-snapshot)和
+  [kubernetes-csi/external-snapshotter](https://github.com/kubernetes-csi/external-snapshotter/releases/tag/v4.1.0)。
+<!--
+## What to do
+
+### Dockershim removal
+
+As stated earlier, there are several guides about 
+[Migrating from dockershim](/docs/tasks/administer-cluster/migrating-from-dockershim/). 
+You can start with [Finding what container runtime are on your nodes](/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use/).
+If your nodes are using dockershim, there are other possible Docker Engine dependencies such as 
+Pods or third-party tools executing Docker commands or private registries in the Docker configuration file. You can follow the 
+[Check whether Dockershim deprecation affects you](/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you/) guide to review possible 
+Docker Engine dependencies. Before upgrading to v1.24, you decide to either remain using Docker Engine and 
+[Migrate Docker Engine nodes from dockershim to cri-dockerd](/docs/tasks/administer-cluster/migrating-from-dockershim/migrate-dockershim-dockerd/) or migrate to a CRI-compatible runtime. Here's a guide to 
+[change the container runtime on a node from Docker Engine to containerd](/docs/tasks/administer-cluster/migrating-from-dockershim/change-runtime-containerd/).
+-->
+## 需要做什么  {#what-to-do}
+
+### 删除 Dockershim  {#dockershim-removal}
+如前所述，有一些关于从 [dockershim 迁移](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/)的指南。
+你可以[从查明节点上所使用的容器运行时](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use/)开始。
+如果你的节点使用 dockershim，则还有其他可能的 Docker Engine 依赖项，
+例如 Pod 或执行 Docker 命令的第三方工具或 Docker 配置文件中的私有注册表。
+你可以按照[检查弃用 Dockershim 对你的影响](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you/)
+的指南来查看可能的 Docker 引擎依赖项。在升级到 1.24 版本之前， 你决定要么继续使用 Docker Engine 并
+[将 Docker Engine 节点从 dockershim 迁移到 cri-dockerd](/docs/tasks/administer-cluster/migrating-from-dockershim/migrate-dockershim-dockerd/)，
+要么迁移到与 CRI 兼容的运行时。这是[将节点上的容器运行时从 Docker Engine 更改为 containerd](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/change-runtime-containerd/) 的指南。
+
+<!--
+### `kubectl convert`
+
+The [`kubectl convert`](/docs/tasks/tools/included/kubectl-convert-overview/) plugin for `kubectl` 
+can be helpful to address migrating off deprecated APIs. The plugin facilitates the conversion of 
+manifests between different API versions, for example, from a deprecated to a non-deprecated API 
+version. More general information about the API migration process can be found in the [Deprecated API Migration Guide](/docs/reference/using-api/deprecation-guide/). 
+Follow the [install `kubectl convert` plugin](https://kubernetes.io/docs/tasks/tools/install-kubectl-linux/#install-kubectl-convert-plugin) 
+documentation to download and install the `kubectl-convert` binary. 
+-->
+### `kubectl convert`  {#kubectl-convert}
+
+kubectl 的 [`kubectl convert`](/zh-cn/docs/tasks/tools/included/kubectl-convert-overview/)
+插件有助于解决弃用 API 的迁移问题。该插件方便了不同 API 版本之间清单的转换，
+例如，从弃用的 API 版本到非弃用的 API 版本。关于 API 迁移过程的更多信息可以在
+[已弃用 API 的迁移指南](/docs/reference/using-api/deprecation-guide/)中找到。按照
+[安装 `kubectl convert` 插件](https://kubernetes.io/docs/tasks/tools/install-kubectl-linux/#install-kubectl-convert-plugin)
+文档下载并安装 `kubectl-convert` 二进制文件。
+
+<!--
+### Looking ahead
+
+The Kubernetes 1.25 and 1.26 releases planned for later this year will stop serving beta versions 
+of several currently stable Kubernetes APIs. The v1.25 release will also remove PodSecurityPolicy, 
+which was deprecated with Kubernetes 1.21 and will not graduate to stable. See [PodSecurityPolicy 
+Deprecation: Past, Present, and Future](/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/) for more information.
+-->  
+### 展望未来  {#looking-ahead}
+
+计划在今年晚些时候发布的 Kubernetes 1.25 和 1.26 版本，将停止提供一些
+Kubernetes API 的 beta 版本，这些 API 当前为稳定版。1.25 版本还将删除 PodSecurityPolicy，
+它已在 Kubernetes 1.21 版本中被弃用，并且不会升级到稳定版。有关详细信息，请参阅
+[PodSecurityPolicy 弃用：过去、现在和未来](/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/)。
+
+<!--
+The official [list of API removals planned for Kubernetes 1.25](/docs/reference/using-api/deprecation-guide/#v1-25) is:
+-->
+[Kubernetes 1.25 计划移除的 API 的官方列表](/zh-cn/docs/reference/using-api/deprecation-guide/#v1-25)是：
+
+* The beta CronJob API (batch/v1beta1)
+* The beta EndpointSlice API (discovery.k8s.io/v1beta1)
+* The beta Event API (events.k8s.io/v1beta1)
+* The beta HorizontalPodAutoscaler API (autoscaling/v2beta1)
+* The beta PodDisruptionBudget API (policy/v1beta1)
+* The beta PodSecurityPolicy API (policy/v1beta1)
+* The beta RuntimeClass API (node.k8s.io/v1beta1)
+
+<!--
+The official [list of API removals planned for Kubernetes 1.26](/docs/reference/using-api/deprecation-guide/#v1-26) is:
+
+* The beta FlowSchema and PriorityLevelConfiguration APIs (flowcontrol.apiserver.k8s.io/v1beta1)
+* The beta HorizontalPodAutoscaler API (autoscaling/v2beta2)
+-->
+[Kubernetes 1.25 计划移除的 API 的官方列表](/zh-cn/docs/reference/using-api/deprecation-guide/#v1-25)是：
+
+* The beta FlowSchema 和 PriorityLevelConfiguration API (flowcontrol.apiserver.k8s.io/v1beta1)
+* The beta HorizontalPodAutoscaler API (autoscaling/v2beta2)
+
+<!--
+### Want to know more?
+Deprecations are announced in the Kubernetes release notes. You can see the announcements of pending deprecations in the release notes for:
+* [Kubernetes 1.21](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.21.md#deprecation)
+* [Kubernetes 1.22](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.22.md#deprecation)
+* [Kubernetes 1.23](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.23.md#deprecation)
+* We will formally announce the deprecations that come with [Kubernetes 1.24](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.24.md#deprecation) as part of the CHANGELOG for that release.
+
+For information on the process of deprecation and removal, check out the official Kubernetes [deprecation policy](/docs/reference/using-api/deprecation-policy/#deprecating-parts-of-the-api) document.
+-->    
+### 了解更多 {#want-to-know-more}
+Kubernetes 发行说明中宣告了弃用信息。你可以在以下版本的发行说明中看到待弃用的公告：
+* [Kubernetes 1.21](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.21.md#deprecation)
+* [Kubernetes 1.22](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.22.md#deprecation)
+* [Kubernetes 1.23](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.23.md#deprecation)
+* 我们将正式宣布 [Kubernetes 1.24](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.24.md#deprecation) 的弃用信息，
+  作为该版本 CHANGELOG 的一部分。
+
+有关弃用和删除过程的信息，请查看 Kubernetes 官方[弃用策略](/zh-cn/docs/reference/using-api/deprecation-policy/#deprecating-parts-of-the-api) 文档。
+
diff --git a/content/zh-cn/blog/_posts/2022-04-28-Increasing-the-security-bar-in-Ingress-NGINX/index.md b/content/zh-cn/blog/_posts/2022-04-28-Increasing-the-security-bar-in-Ingress-NGINX/index.md
new file mode 100644
index 0000000000..4e2082cde6
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2022-04-28-Increasing-the-security-bar-in-Ingress-NGINX/index.md
@@ -0,0 +1,286 @@
+---
+layout: blog
+title: '在 Ingress-NGINX v1.2.0 中提高安全标准'
+date: 2022-04-28
+slug: ingress-nginx-1-2-0
+---
+
+<!--
+layout: blog
+title: 'Increasing the security bar in Ingress-NGINX v1.2.0'
+date: 2022-04-28
+slug: ingress-nginx-1-2-0
+-->
+
+<!--
+**Authors:** Ricardo Katz (VMware), James Strong (Chainguard)
+-->
+**作者：** Ricardo Katz (VMware), James Strong (Chainguard)
+
+<!--
+The [Ingress](/docs/concepts/services-networking/ingress/) may be one of the most targeted components
+of Kubernetes. An Ingress typically defines an HTTP reverse proxy, exposed to the Internet, containing
+multiple websites, and with some privileged access to Kubernetes API (such as to read Secrets relating to
+TLS certificates and their private keys).
+-->
+[Ingress](/zh-cn/docs/concepts/services-networking/ingress/) 可能是 Kubernetes 最容易受攻击的组件之一。
+Ingress 通常定义一个 HTTP 反向代理，暴露在互联网上，包含多个网站，并具有对 Kubernetes API
+的一些特权访问（例如读取与 TLS 证书及其私钥相关的 Secret）。
+
+<!--
+While it is a risky component in your architecture, it is still the most popular way to properly expose your services.
+-->
+虽然它是架构中的一个风险组件，但它仍然是正常公开服务的最流行方式。
+
+<!--
+Ingress-NGINX has been part of security assessments that figured out we have a big problem: we don't
+do all proper sanitization before turning the configuration into an `nginx.conf` file, which may lead to information
+disclosure risks.
+-->
+Ingress-NGINX 一直是安全评估的重头戏，这类评估会发现我们有着很大的问题：
+在将配置转换为 `nginx.conf` 文件之前，我们没有进行所有适当的清理，这可能会导致信息泄露风险。
+
+<!--
+While we understand this risk and the real need to fix this, it's not an easy process to do, so we took another approach to reduce (but not remove!) this risk in the current (v1.2.0) release.
+-->
+虽然我们了解此风险以及解决此问题的真正需求，但这并不是一个容易的过程，
+因此我们在当前(v1.2.0)版本中采取了另一种方法来减少（但不是消除！）这种风险。
+
+<!--
+## Meet Ingress NGINX v1.2.0 and the chrooted NGINX process
+-->
+## 了解 Ingress NGINX v1.2.0 和 chrooted NGINX 进程
+
+<!--
+One of the main challenges is that Ingress-NGINX runs the web proxy server (NGINX) alongside the Ingress
+controller (the component that has access to Kubernetes API that and that creates the `nginx.conf` file).
+-->
+主要挑战之一是 Ingress-NGINX 运行着 Web 代理服务器（NGINX），并与 Ingress 控制器一起运行
+（后者是一个可以访问 Kubernetes API 并创建 `nginx.conf` 的组件）。
+
+<!--
+So, NGINX does have the same access to the filesystem of the controller (and Kubernetes service account token, and other configurations from the container). While splitting those components is our end goal, the project needed a fast response; that lead us to the idea of using `chroot()`.
+-->
+因此，NGINX 对控制器的文件系统（和 Kubernetes 服务帐户令牌，以及容器中的其他配置）具有相同的访问权限。 
+虽然拆分这些组件是我们的最终目标，但该项目需要快速响应；这让我们想到了使用 `chroot()`。
+
+<!--
+Let's take a look into what an Ingress-NGINX container looked like before this change:
+-->
+让我们看一下 Ingress-NGINX 容器在此更改之前的样子：
+
+![Ingress NGINX pre chroot](ingress-pre-chroot.png)
+
+<!--
+As we can see, the same container (not the Pod, the container!) that provides HTTP Proxy is the one that watches Ingress objects and writes the Container Volume
+-->
+正如我们所见，用来提供 HTTP Proxy 的容器（不是 Pod，是容器！）也是是监视 Ingress
+对象并将数据写入容器卷的容器。
+
+<!--
+Now, meet the new architecture:
+-->
+现在，见识一下新架构：
+
+![Ingress NGINX post chroot](ingress-post-chroot.png)
+
+<!--
+What does all of this mean? A basic summary is: that we are isolating the NGINX service as a container inside the
+controller container.
+-->
+这一切意味着什么？一个基本的总结是：我们将 NGINX 服务隔离为控制器容器内的容器。
+
+<!--
+While this is not strictly true, to understand what was done here, it's good to understand how
+Linux containers (and underlying mechanisms such as kernel namespaces) work.
+You can read about cgroups in the Kubernetes glossary: [`cgroup`](https://kubernetes.io/docs/reference/glossary/?fundamental=true#term-cgroup) and learn more about cgroups interact with namespaces in the NGINX project article
+[What Are Namespaces and cgroups, and How Do They Work?](https://www.nginx.com/blog/what-are-namespaces-cgroups-how-do-they-work/).
+(As you read that, bear in mind that Linux kernel namespaces are a different thing from
+[Kubernetes namespaces](/docs/concepts/overview/working-with-objects/namespaces/)).
+-->
+虽然这并不完全正确，但要了解这里所做的事情，最好了解 Linux 容器（以及内核命名空间等底层机制）是如何工作的。
+你可以在 Kubernetes 词汇表中阅读有关 cgroup 的信息：[`cgroup`](/zh-cn/docs/reference/glossary/?fundamental=true#term-cgroup)，
+并在 NGINX 项目文章[什么是命名空间和 cgroup，以及它们如何工作？](https://www.nginx.com/blog/what-are-namespaces-cgroups-how-do-they-work/)
+中了解有关 cgroup 与命名空间交互的更多信息。（当你阅读时，请记住 Linux 内核命名空间与 
+[Kubernetes 命名空间](/zh-cn/docs/concepts/overview/working-with-objects/namespaces/)不同）。
+
+<!--
+## Skip the talk, what do I need to use this new approach?
+-->
+## 跳过谈话，我需要什么才能使用这种新方法？
+
+<!--
+While this increases the security, we made this feature an opt-in in this release so you can have
+time to make the right adjustments in your environment(s). This new feature is only available from
+release v1.2.0 of the Ingress-NGINX controller.
+-->
+虽然这增加了安全性，但我们在这个版本中把这个功能作为一个选项，这样你就可以有时间在你的环境中做出正确的调整。
+此新功能仅在 Ingress-NGINX 控制器的 v1.2.0 版本中可用。
+
+<!--
+There are two required changes in your deployments to use this feature:
+* Append the suffix "-chroot" to the container image name. For example: `gcr.io/k8s-staging-ingress-nginx/controller-chroot:v1.2.0`
+* In your Pod template for the Ingress controller, find where you add the capability `NET_BIND_SERVICE` and add the capability `SYS_CHROOT`. After you edit the manifest, you'll see a snippet like:
+-->
+要使用这个功能，在你的部署中有两个必要的改变：
+* 将后缀 "-chroot" 添加到容器镜像名称中。例如：`gcr.io/k8s-staging-ingress-nginx/controller-chroot:v1.2.0`
+* 在你的 Ingress 控制器的 Pod 模板中，找到添加 `NET_BIND_SERVICE` 权能的位置并添加 `SYS_CHROOT` 权能。
+  编辑清单后，你将看到如下代码段：
+
+```yaml
+capabilities:
+  drop:
+  - ALL
+  add:
+  - NET_BIND_SERVICE
+  - SYS_CHROOT
+```
+<!--
+If you deploy the controller using the official Helm chart then change the following setting in
+`values.yaml`:
+-->
+如果你使用官方 Helm Chart 部署控制器，则在 `values.yaml` 中更改以下设置：
+
+```yaml
+controller:
+  image:
+    chroot: true
+```
+<!--
+Ingress controllers are normally set up cluster-wide (the IngressClass API is cluster scoped). If you manage the
+Ingress-NGINX controller but you're not the overall cluster operator, then check with your cluster admin about
+whether you can use the `SYS_CHROOT` capability, **before** you enable it in your deployment.
+-->
+Ingress 控制器通常部署在集群作用域（IngressClass API 是集群作用域的）。
+如果你管理 Ingress-NGINX 控制器但你不是整个集群的操作员，
+请在部署中启用它**之前**与集群管理员确认你是否可以使用 `SYS_CHROOT` 功能。
+
+<!--
+## OK, but how does this increase the security of my Ingress controller?
+
+Take the following configuration snippet and imagine, for some reason it was added to your `nginx.conf`:
+-->
+## 好吧，但这如何能提高我的 Ingress 控制器的安全性呢？
+
+以下面的配置片段为例，想象一下，由于某种原因，它被添加到你的 `nginx.conf` 中：
+
+```
+location /randomthing/ {
+      alias /;
+      autoindex on;
+}
+```
+<!--
+If you deploy this configuration, someone can call `http://website.example/randomthing` and get some listing (and access) to the whole filesystem of the Ingress controller.
+
+Now, can you spot the difference between chrooted and non chrooted Nginx on the listings below?
+-->
+如果你部署了这种配置，有人可以调用 `http://website.example/randomthing` 并获取对 Ingress 控制器的整个文件系统的一些列表（和访问权限）。
+
+现在，你能在下面的列表中发现 chroot 处理过和未经 chroot 处理过的 Nginx 之间的区别吗？
+
+| 不额外调用 `chroot()`             | 额外调用 `chroot()` |
+|----------------------------|--------|
+| `bin`                      | `bin`  |
+| `dev`                      | `dev`  |
+| `etc`                      | `etc`  |
+| `home`                     |        |
+| `lib`                      | `lib`  |
+| `media`                    |        |
+| `mnt`                      |        |
+| `opt`                      | `opt`  |
+| `proc`                     | `proc` |
+| `root`                     |        |
+| `run`                      | `run`  |
+| `sbin`                     |        |
+| `srv`                      |        |
+| `sys`                      |        |
+| `tmp`                      | `tmp`  |
+| `usr`                      | `usr`  |
+| `var`                      | `var`  |
+| `dbg`                      |        |
+| `nginx-ingress-controller` |        |
+| `wait-shutdown`            |        |
+
+<!--
+The one in left side is not chrooted. So NGINX has full access to the filesystem. The one in right side is chrooted, so a new filesystem with only the required files to make NGINX work is created.
+-->
+左侧的那个没有 chroot 处理。所以 NGINX 可以完全访问文件系统。右侧的那个经过 chroot 处理，
+因此创建了一个新文件系统，其中只有使 NGINX 工作所需的文件。
+
+<!--
+## What about other security improvements in this release?
+-->
+## 此版本中的其他安全改进如何？
+
+<!--
+We know that the new `chroot()` mechanism helps address some portion of the risk, but still, someone
+can try to inject commands to read, for example, the `nginx.conf` file and extract sensitive information.
+-->
+我们知道新的 `chroot()` 机制有助于解决部分风险，但仍然有人可以尝试注入命令来读取，例如 `nginx.conf` 文件并提取敏感信息。
+
+<!--
+So, another change in this release (this is opt-out!) is the _deep inspector_.
+We know that some directives or regular expressions may be dangerous to NGINX, so the deep inspector
+checks all fields from an Ingress object (during its reconciliation, and also with a
+[validating admission webhook](/docs/reference/access-authn-authz/admission-controllers/#validatingadmissionwebhook))
+to verify if any fields contains these dangerous directives.
+-->
+所以，这个版本的另一个变化（可选择取消）是 **深度探测（Deep Inspector）**。
+我们知道某些指令或正则表达式可能对 NGINX 造成危险，因此深度探测器会检查 Ingress 对象中的所有字段
+（在其协调期间，并且还使用[验证准入 webhook](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#validatingadmissionwebhook))
+验证是否有任何字段包含这些危险指令。
+
+<!--
+The ingress controller already does this for annotations, and our goal is to move this existing validation to happen inside
+deep inspection as part of a future release.
+-->
+Ingress 控制器已经通过注解做了这个工作，我们的目标是把现有的验证转移到深度探测中，作为未来版本的一部分。
+
+<!--
+You can take a look into the existing rules in [https://github.com/kubernetes/ingress-nginx/blob/main/internal/ingress/inspector/rules.go](https://github.com/kubernetes/ingress-nginx/blob/main/internal/ingress/inspector/rules.go).
+-->
+你可以在 [https://github.com/kubernetes/ingress-nginx/blob/main/internal/ingress/inspector/rules.go](https://github.com/kubernetes/ingress-nginx/blob/main/internal/ingress/inspector/rules.go) 中查看现有规则。
+
+<!--
+Due to the nature of inspecting and matching all strings within relevant Ingress objects, this new feature may consume a bit more CPU. You can disable it by running the ingress controller with the command line argument `--deep-inspect=false`.
+-->
+由于检查和匹配相关 Ingress 对象中的所有字符串的性质，此新功能可能会消耗更多 CPU。
+你可以通过使用命令行参数 `--deep-inspect=false` 运行 Ingress 控制器来禁用它。
+
+<!--
+## What's next?
+
+This is not our final goal. Our final goal is to split the control plane and the data plane processes.
+In fact, doing so will help us also achieve a [Gateway](https://gateway-api.sigs.k8s.io/) API implementation,
+as we may have a different controller as soon as it "knows" what to provide to the data plane
+(we need some help here!!)
+-->
+## 下一步是什么?
+
+这不是我们的最终目标。我们的最终目标是拆分控制平面和数据平面进程。
+事实上，这样做也将帮助我们实现 [Gateway](https://gateway-api.sigs.k8s.io/) API 实现，
+因为一旦它“知道”要提供什么，我们可能会有不同的控制器 数据平面（我们需要一些帮助！！）
+
+<!--
+Some other projects in Kubernetes already take this approach
+(like [KPNG](https://github.com/kubernetes-sigs/kpng), the proposed replacement for `kube-proxy`),
+and we plan to align with them and get the same experience for Ingress-NGINX.
+-->
+Kubernetes 中的其他一些项目已经采用了这种方法（如 [KPNG](https://github.com/kubernetes-sigs/kpng)，
+建议替换 `kube-proxy`），我们计划与他们保持一致，并为 Ingress-NGINX 获得相同的体验。
+
+<!--
+## Further reading
+
+If you want to take a look into how chrooting was done in Ingress NGINX, take a look 
+into [https://github.com/kubernetes/ingress-nginx/pull/8337](https://github.com/kubernetes/ingress-nginx/pull/8337)
+The release v1.2.0 containing all the changes can be found at 
+[https://github.com/kubernetes/ingress-nginx/releases/tag/controller-v1.2.0](https://github.com/kubernetes/ingress-nginx/releases/tag/controller-v1.2.0)
+-->
+## 延伸阅读
+
+如果你想了解如何在 Ingress NGINX 中完成 chrooting，请查看
+[https://github.com/kubernetes/ingress-nginx/pull/8337](https://github.com/kubernetes/ingress-nginx/pull/8337)。
+包含所有更改的版本 v1.2.0 可以在以下位置找到
+[https://github.com/kubernetes/ingress-nginx/releases/tag/controller-v1.2.0](https://github.com/kubernetes/ingress-nginx/releases/tag/controller-v1.2.0)
diff --git a/content/zh-cn/blog/_posts/2022-04-28-Increasing-the-security-bar-in-Ingress-NGINX/ingress-post-chroot.png b/content/zh-cn/blog/_posts/2022-04-28-Increasing-the-security-bar-in-Ingress-NGINX/ingress-post-chroot.png
new file mode 100644
index 0000000000..d5d588a3bb
Binary files /dev/null and b/content/zh-cn/blog/_posts/2022-04-28-Increasing-the-security-bar-in-Ingress-NGINX/ingress-post-chroot.png differ
diff --git a/content/zh-cn/blog/_posts/2022-04-28-Increasing-the-security-bar-in-Ingress-NGINX/ingress-pre-chroot.png b/content/zh-cn/blog/_posts/2022-04-28-Increasing-the-security-bar-in-Ingress-NGINX/ingress-pre-chroot.png
new file mode 100644
index 0000000000..38c7d54a55
Binary files /dev/null and b/content/zh-cn/blog/_posts/2022-04-28-Increasing-the-security-bar-in-Ingress-NGINX/ingress-pre-chroot.png differ
diff --git a/content/zh-cn/blog/_posts/2022-05-03-dockershim-historical-context.md b/content/zh-cn/blog/_posts/2022-05-03-dockershim-historical-context.md
new file mode 100644
index 0000000000..1243b46d77
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2022-05-03-dockershim-historical-context.md
@@ -0,0 +1,91 @@
+---
+layout: blog
+title: "Dockershim：历史背景"
+date: 2022-05-03
+slug: dockershim-historical-context
+---
+
+<!--
+layout: blog
+title: "Dockershim: The Historical Context"
+date: 2022-05-03
+slug: dockershim-historical-context
+-->
+
+<!--
+**Author:** Kat Cosgrove
+
+Dockershim has been removed as of Kubernetes v1.24, and this is a positive move for the project. However, context is important for fully understanding something, be it socially or in software development, and this deserves a more in-depth review. Alongside the dockershim removal in Kubernetes v1.24, we’ve seen some confusion (sometimes at a panic level) and dissatisfaction with this decision in the community, largely due to a lack of context around this removal. The decision to deprecate and eventually remove dockershim from Kubernetes was not made quickly or lightly. Still, it’s been in the works for so long that many of today’s users are newer than that decision, and certainly newer than the choices that led to the dockershim being necessary in the first place.
+
+So what is the dockershim, and why is it going away?
+-->
+**作者：** Kat Cosgrove
+
+自 Kubernetes v1.24 起，Dockershim 已被删除，这对项目来说是一个积极的举措。
+然而，背景对于充分理解某事很重要，无论是社交还是软件开发，这值得更深入的审查。
+除了 Kubernetes v1.24 中的 dockershim 移除之外，
+我们在社区中看到了一些混乱（有时处于恐慌级别）和对这一决定的不满，
+主要是由于缺乏有关此删除背景的了解。弃用并最终从 Kubernetes 中删除
+dockershim 的决定并不是迅速或轻率地做出的。
+尽管如此，它已经工作了很长时间，以至于今天的许多用户都比这个决定更新，
+更不用提当初为何引入 dockershim 了。
+
+那么 dockershim 是什么，为什么它会消失呢？
+
+<!--
+In the early days of Kubernetes, we only supported one container runtime. That runtime was Docker Engine. Back then, there weren’t really a lot of other options out there and Docker was the dominant tool for working with containers, so this was not a controversial choice. Eventually, we started adding more container runtimes, like rkt and hypernetes, and it became clear that Kubernetes users want a choice of runtimes working best for them. So Kubernetes needed a way to allow cluster operators the flexibility to use whatever runtime they choose.
+-->
+在 Kubernetes 的早期，我们只支持一个容器运行时，那个运行时就是 Docker Engine。
+那时，并没有太多其他选择，而 Docker 是使用容器的主要工具，所以这不是一个有争议的选择。
+最终，我们开始添加更多的容器运行时，比如 rkt 和 hypernetes，很明显 Kubernetes
+用户希望选择最适合他们的运行时。因此，Kubernetes 需要一种方法来允许集群操作员灵活地使用他们选择的任何运行时。
+
+<!--
+The [Container Runtime Interface](/blog/2016/12/container-runtime-interface-cri-in-kubernetes/) (CRI) was released to allow that flexibility. The introduction of CRI was great for the project and users alike, but it did introduce a problem: Docker Engine’s use as a container runtime predates CRI, and Docker Engine is not CRI-compatible. To solve this issue, a small software shim (dockershim) was introduced as part of the kubelet component specifically to fill in the gaps between Docker Engine and CRI, allowing cluster operators to continue using Docker Engine as their container runtime largely uninterrupted.
+-->
+[容器运行时接口](/blog/2016/12/container-runtime-interface-cri-in-kubernetes/) (CRI) 
+已发布以支持这种灵活性。 CRI 的引入对项目和用户来说都很棒，但它确实引入了一个问题：Docker Engine
+作为容器运行时的使用早于 CRI，并且 Docker Engine 不兼容 CRI。 为了解决这个问题，在 kubelet
+组件中引入了一个小型软件 shim (dockershim)，专门用于填补 Docker Engine 和 CRI 之间的空白，
+允许集群操作员继续使用 Docker Engine 作为他们的容器运行时基本上不间断。
+
+<!--
+However, this little software shim was never intended to be a permanent solution. Over the course of years, its existence has introduced a lot of unnecessary complexity to the kubelet itself. Some integrations are inconsistently implemented for Docker because of this shim, resulting in an increased burden on maintainers, and maintaining vendor-specific code is not in line with our open source philosophy. To reduce this maintenance burden and move towards a more collaborative community in support of open standards, [KEP-2221 was introduced](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2221-remove-dockershim), proposing the removal of the dockershim. With the release of Kubernetes v1.20, the deprecation was official.
+-->
+然而，这个小软件 shim 从来没有打算成为一个永久的解决方案。 多年来，它的存在给
+kubelet 本身带来了许多不必要的复杂性。由于这个 shim，Docker
+的一些集成实现不一致，导致维护人员的负担增加，并且维护特定于供应商的代码不符合我们的开源理念。
+为了减少这种维护负担并朝着支持开放标准的更具协作性的社区迈进，
+[引入了 KEP-2221](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2221-remove-dockershim)，
+建议移除 dockershim。随着 Kubernetes v1.20 的发布，正式弃用。
+
+<!--
+We didn’t do a great job communicating this, and unfortunately, the deprecation announcement led to some panic within the community. Confusion around what this meant for Docker as a company, if container images built by Docker would still run, and what Docker Engine actually is led to a conflagration on social media. This was our fault; we should have more clearly communicated what was happening and why at the time. To combat this, we released [a blog](/blog/2020/12/02/dont-panic-kubernetes-and-docker/) and [accompanying FAQ](/blog/2020/12/02/dockershim-faq/) to allay the community’s fears and correct some misconceptions about what Docker is and how containers work within Kubernetes. As a result of the community’s concerns, Docker and Mirantis jointly agreed to continue supporting the dockershim code in the form of [cri-dockerd](https://www.mirantis.com/blog/the-future-of-dockershim-is-cri-dockerd/), allowing you to continue using Docker Engine as your container runtime if need be. For the interest of users who want to try other runtimes, like containerd or cri-o, [migration documentation was written](/docs/tasks/administer-cluster/migrating-from-dockershim/change-runtime-containerd/).
+-->
+我们没有很好地传达这一点，不幸的是，弃用公告在社区内引起了一些恐慌。关于这对
+Docker作为一家公司意味着什么，Docker 构建的容器镜像是否仍然可以运行，以及
+Docker Engine 究竟是什么导致了社交媒体上的一场大火，人们感到困惑。
+这是我们的错；我们应该更清楚地传达当时发生的事情和原因。为了解决这个问题，
+我们发布了[一篇博客](/zh-cn/blog/2020/12/02/dont-panic-kubernetes-and-docker/)和[相应的 FAQ](/zh-cn/blog/2020/12/02/dockershim-faq/)
+以减轻社区的恐惧并纠正对 Docker 是什么以及容器如何在 Kubernetes 中工作的一些误解。
+由于社区的关注，Docker 和 Mirantis 共同决定继续以
+[cri-dockerd](https://www.mirantis.com/blog/the-future-of-dockershim-is-cri-dockerd/)
+的形式支持 dockershim 代码，允许你在需要时继续使用 Docker Engine 作为容器运行时。
+对于想要尝试其他运行时（如 containerd 或 cri-o）的用户，
+[已编写迁移文档](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/change-runtime-containerd/)。
+
+<!--
+We later [surveyed the community](https://kubernetes.io/blog/2021/11/12/are-you-ready-for-dockershim-removal/) and [discovered that there are still many users with questions and concerns](/blog/2022/01/07/kubernetes-is-moving-on-from-dockershim). In response, Kubernetes maintainers and the CNCF committed to addressing these concerns by extending documentation and other programs. In fact, this blog post is a part of this program. With so many end users successfully migrated to other runtimes, and improved documentation, we believe that everyone has a paved way to migration now.
+-->
+我们后来[调查了社区](https://kubernetes.io/blog/2021/11/12/are-you-ready-for-dockershim-removal/)[发现还有很多用户有疑问和顾虑](/zh-cn/blog/2022/01/07/kubernetes-is-moving-on-from-dockershim)。 
+作为回应，Kubernetes 维护人员和 CNCF 承诺通过扩展文档和其他程序来解决这些问题。
+事实上，这篇博文是这个计划的一部分。随着如此多的最终用户成功迁移到其他运行时，以及改进的文档，
+我们相信每个人现在都为迁移铺平了道路。
+
+<!--
+Docker is not going away, either as a tool or as a company. It’s an important part of the cloud native community and the history of the Kubernetes project. We wouldn’t be where we are without them. That said, removing dockershim from kubelet is ultimately good for the community, the ecosystem, the project, and open source at large. This is an opportunity for all of us to come together to support open standards, and we’re glad to be doing so with the help of Docker and the community.
+-->
+Docker 不会消失，无论是作为一种工具还是作为一家公司。它是云原生社区的重要组成部分，
+也是 Kubernetes 项目的历史。没有他们，我们就不会是现在的样子。也就是说，从 kubelet
+中删除 dockershim 最终对社区、生态系统、项目和整个开源都有好处。
+这是我们所有人齐心协力支持开放标准的机会，我们很高兴在 Docker 和社区的帮助下这样做。
diff --git a/content/zh-cn/blog/_posts/2022-05-03-kubernetes-release-1.24.md b/content/zh-cn/blog/_posts/2022-05-03-kubernetes-release-1.24.md
new file mode 100644
index 0000000000..78d2489495
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2022-05-03-kubernetes-release-1.24.md
@@ -0,0 +1,523 @@
+---
+layout: blog
+title: "Kubernetes 1.24: 观星者"
+date: 2022-05-03
+slug: kubernetes-1-24-release-announcement
+---
+
+<!--
+layout: blog
+title: "Kubernetes 1.24: Stargazer"
+date: 2022-05-03
+slug: kubernetes-1-24-release-announcement
+-->
+
+<!--
+**Authors**: [Kubernetes 1.24 Release Team](https://git.k8s.io/sig-release/releases/release-1.24/release-team.md)
+
+We are excited to announce the release of Kubernetes 1.24, the first release of 2022!
+
+This release consists of 46 enhancements: fourteen enhancements have graduated to stable,
+fifteen enhancements are moving to beta, and thirteen enhancements are entering alpha.
+Also, two features have been deprecated, and two features have been removed.
+-->
+**作者**: [Kubernetes 1.24 发布团队](https://git.k8s.io/sig-release/releases/release-1.24/release-team.md)
+
+我们很高兴地宣布 Kubernetes 1.24 的发布，这是 2022 年的第一个版本！
+
+这个版本包括 46 个增强功能：14 个增强功能已经升级到稳定版，15 个增强功能正在进入 Beta 版，
+13 个增强功能正在进入 Alpha 阶段。另外，有两个功能被废弃了，还有两个功能被删除了。
+
+<!--
+## Major Themes
+
+### Dockershim Removed from kubelet
+
+After its deprecation in v1.20, the dockershim component has been removed from the kubelet in Kubernetes v1.24.
+From v1.24 onwards, you will need to either use one of the other [supported runtimes](/docs/setup/production-environment/container-runtimes/) (such as containerd or CRI-O)
+or use cri-dockerd if you are relying on Docker Engine as your container runtime.
+For more information about ensuring your cluster is ready for this removal, please
+see [this guide](/blog/2022/03/31/ready-for-dockershim-removal/).
+-->
+## 主要议题
+
+### 从 kubelet 中删除 Dockershim
+
+在 v1.20 版本中被废弃后，dockershim 组件已被从 Kubernetes v1.24 版本的 kubelet 中移除。
+从 v1.24 开始，如果你依赖 Docker Engine 作为容器运行时，
+则需要使用其他[受支持的运行时](/zh-cn/docs/setup/production-environment/container-runtimes/)之一
+（如 containerd 或 CRI-O）或使用 CRI dockerd。
+有关确保集群已准备好进行此删除的更多信息，请参阅[本指南](/zh-cn/blog/2022/03/31/ready-for-dockershim-removal/)。
+
+<!--
+### Beta APIs Off by Default
+
+[New beta APIs will not be enabled in clusters by default](https://github.com/kubernetes/enhancements/issues/3136).
+Existing beta APIs and new versions of existing beta APIs will continue to be enabled by default.
+-->
+### 默认情况下关闭 Beta API
+
+[新的 beta API 默认不会在集群中启用](https://github.com/kubernetes/enhancements/issues/3136)。
+默认情况下，现有 Beta API 和及其更新版本将继续被启用。
+
+<!--
+### Signing Release Artifacts
+
+Release artifacts are [signed](https://github.com/kubernetes/enhancements/issues/3031) using [cosign](https://github.com/sigstore/cosign)
+signatures,
+and there is experimental support for [verifying image signatures](/docs/tasks/administer-cluster/verify-signed-images/).
+Signing and verification of release artifacts is part of [increasing software supply chain security for the Kubernetes release process](https://github.com/kubernetes/enhancements/issues/3027).
+-->
+### 签署发布工件
+
+发布工件使用 [cosign](https://github.com/sigstore/cosign) 签名进行[签名](https://github.com/kubernetes/enhancements/issues/3031)，
+并且有[验证图像签名](/zh-cn/docs/tasks/administer-cluster/verify-signed-images/)的实验性支持。
+发布工件的签名和验证是[提高 Kubernetes 发布过程的软件供应链安全性](https://github.com/kubernetes/enhancements/issues/3027)
+的一部分。
+
+<!--
+### OpenAPI v3
+
+Kubernetes 1.24 offers beta support for publishing its APIs in the [OpenAPI v3 format](https://github.com/kubernetes/enhancements/issues/2896).
+-->
+### OpenAPI v3
+
+Kubernetes 1.24 提供了以 [OpenAPI v3 格式](https://github.com/kubernetes/enhancements/issues/2896)发布其 API 的 Beta 支持。
+
+<!--
+### Storage Capacity and Volume Expansion Are Generally Available
+
+[Storage capacity tracking](https://github.com/kubernetes/enhancements/issues/1472)
+supports exposing currently available storage capacity via [CSIStorageCapacity objects](/docs/concepts/storage/storage-capacity/#api)
+and enhances scheduling of pods that use CSI volumes with late binding.
+
+[Volume expansion](https://github.com/kubernetes/enhancements/issues/284) adds support 
+for resizing existing persistent volumes. 
+-->
+### 存储容量和卷扩展普遍可用
+
+[存储容量跟踪](https://github.com/kubernetes/enhancements/issues/1472)支持通过
+[CSIStorageCapacity 对象](/zh-cn/docs/concepts/storage/storage-capacity/#api)公开当前可用的存储容量，
+并增强使用具有后期绑定的 CSI 卷的 Pod 的调度。
+
+[卷的扩展](https://github.com/kubernetes/enhancements/issues/284)增加了对调整现有持久性卷大小的支持。
+
+<!--
+### NonPreemptingPriority to Stable
+
+This feature adds [a new option to PriorityClasses](https://github.com/kubernetes/enhancements/issues/902),
+which can enable or disable pod preemption.
+-->
+### NonPreemptingPriority 到稳定
+
+此功能[为 PriorityClasses 添加了一个新选项](https://github.com/kubernetes/enhancements/issues/902)，可以启用或禁用 Pod 抢占。
+
+<!--
+### Storage Plugin Migration
+
+Work is underway to [migrate the internals of in-tree storage plugins](https://github.com/kubernetes/enhancements/issues/625) to call out to CSI Plugins
+while maintaining the original API.
+The [Azure Disk](https://github.com/kubernetes/enhancements/issues/1490)
+and [OpenStack Cinder](https://github.com/kubernetes/enhancements/issues/1489) plugins
+have both been migrated.
+-->
+### 存储插件迁移
+
+目前正在进行[迁移树内存储插件的内部组件](https://github.com/kubernetes/enhancements/issues/625)工作，
+以便在保持原有 API 的同时调用 CSI 插件。[Azure Disk](https://github.com/kubernetes/enhancements/issues/1490)
+和 [OpenStack Cinder](https://github.com/kubernetes/enhancements/issues/1489) 插件都已迁移。
+
+<!--
+### gRPC Probes Graduate to Beta
+
+With Kubernetes 1.24, the [gRPC probes functionality](https://github.com/kubernetes/enhancements/issues/2727)
+has entered beta and is available by default. You can now [configure startup, liveness, and readiness probes](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes) for your gRPC app
+natively within Kubernetes without exposing an HTTP endpoint or
+using an extra executable.
+-->
+### gRPC 探针升级到 Beta
+
+在 Kubernetes 1.24 中，[gRPC 探测功能](https://github.com/kubernetes/enhancements/issues/2727)
+已进入测试版，默认可用。现在，你可以在 Kubernetes 中为你的 gRPC
+应用程序原生地[配置启动、存活和就绪性探测](/zh-cn/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes)，
+而无需暴露 HTTP 端点或使用额外的可执行文件。
+
+<!--
+### Kubelet Credential Provider Graduates to Beta
+
+Originally released as Alpha in Kubernetes 1.20, the kubelet's support for
+[image credential providers](/docs/tasks/kubelet-credential-provider/kubelet-credential-provider/)
+has now graduated to Beta.
+This allows the kubelet to dynamically retrieve credentials for a container image registry
+using exec plugins rather than storing credentials on the node's filesystem.
+-->
+### Kubelet 凭证提供者毕业至 Beta
+
+kubelet 最初在 Kubernetes 1.20 中作为 Alpha 发布，现在它对[镜像凭证提供者](/zh-cn/docs/tasks/kubelet-credential-provider/kubelet-credential-provider/)
+的支持已升级到 Beta。这允许 kubelet 使用 exec 插件动态检索容器映像注册表的凭据，而不是将凭据存储在节点的文件系统上。
+
+<!--
+### Contextual Logging in Alpha
+
+Kubernetes 1.24 has introduced [contextual logging](https://github.com/kubernetes/enhancements/issues/3077)
+that enables the caller of a function to control all aspects of logging (output formatting, verbosity, additional values, and names).
+-->
+### Alpha 中的上下文日志记录
+
+Kubernetes 1.24 引入了[上下文日志](https://github.com/kubernetes/enhancements/issues/3077)
+这使函数的调用者能够控制日志记录的所有方面（输出格式、详细程度、附加值和名称）。
+
+<!--
+### Avoiding Collisions in IP allocation to Services
+
+Kubernetes 1.24 introduces a new opt-in feature that allows you to
+[soft-reserve a range for static IP address assignments](/docs/concepts/services-networking/service/#service-ip-static-sub-range)
+to Services.
+With the manual enablement of this feature, the cluster will prefer automatic assignment from
+the pool of  Service IP addresses, thereby reducing the risk of collision.
+-->
+### 避免 IP 分配给服务的冲突
+
+Kubernetes 1.24 引入了一项新的选择加入功能，
+允许你[为服务的静态 IP 地址分配软保留范围](/zh-cn/docs/concepts/services-networking/service/#service-ip-static-sub-range)。
+通过手动启用此功能，集群将更喜欢从服务 IP 地址池中自动分配，从而降低冲突风险。
+
+<!--
+A Service `ClusterIP` can be assigned:
+
+* dynamically, which means the cluster will automatically pick a free IP within the configured Service IP range.
+* statically, which means the user will set one IP within the configured Service IP range.
+
+Service `ClusterIP` are unique; hence, trying to create a Service with a `ClusterIP` that has already been allocated will return an error.
+-->
+服务的 `ClusterIP` 可以按照以下两种方式分配：
+
+* 动态，这意味着集群将自动在配置的服务 IP 范围内选择一个空闲 IP。
+* 静态，这意味着用户将在配置的服务 IP 范围内设置一个 IP。
+
+服务 `ClusterIP` 是唯一的；因此，尝试使用已分配的 `ClusterIP` 创建服务将返回错误。
+
+<!--
+### Dynamic Kubelet Configuration is Removed from the Kubelet
+
+After being deprecated in Kubernetes 1.22, Dynamic Kubelet Configuration has been removed from the kubelet. The feature will be removed from the API server in Kubernetes 1.26.
+-->
+### 从 Kubelet 中移除动态 Kubelet 配置
+
+在 Kubernetes 1.22 中被弃用后，动态 Kubelet 配置已从 kubelet 中移除。
+该功能将从 Kubernetes 1.26 的 API 服务器中移除。
+
+<!--
+## CNI Version-Related Breaking Change
+
+Before you upgrade to Kubernetes 1.24, please verify that you are using/upgrading to a container
+runtime that has been tested to work correctly with this release.
+
+For example, the following container runtimes are being prepared, or have already been prepared, for Kubernetes:
+
+* containerd v1.6.4 and later, v1.5.11 and later
+* CRI-O 1.24 and later
+-->
+## CNI 版本相关的重大更改
+
+在升级到 Kubernetes 1.24 之前，请确认你正在使用/升级到经过测试可以在此版本中正常工作的容器运行时。
+
+例如，以下容器运行时正在为 Kubernetes 准备，或者已经准备好了。
+
+* containerd v1.6.4 及更高版本，v1.5.11 及更高版本
+* CRI-O 1.24 及更高版本
+
+<!--
+Service issues exist for pod CNI network setup and tear down in containerd
+v1.6.0–v1.6.3 when the CNI plugins have not been upgraded and/or the CNI config
+version is not declared in the CNI config files. The containerd team reports, "these issues are resolved in containerd v1.6.4."
+
+With containerd v1.6.0–v1.6.3, if you do not upgrade the CNI plugins and/or
+declare the CNI config version, you might encounter the following "Incompatible
+CNI versions" or "Failed to destroy network for sandbox" error conditions.
+-->
+当 CNI 插件尚未升级和/或 CNI 配置版本未在 CNI 配置文件中声明时，在 containerd v1.6.0–v1.6.3
+中存在 Pod CNI 网络设置和拆除的服务问题。containerd 团队报告说，“这些问题在 containerd v1.6.4 中得到解决。”
+
+在 containerd v1.6.0-v1.6.3 版本中，如果你不升级 CNI 插件和/或声明 CNI 配置版本，
+你可能会遇到以下 “Incompatible CNI versions” 或 “Failed to destroy network for sandbox” 的错误情况。
+
+<!--
+## CSI Snapshot
+
+_This information was added after initial publication._
+
+[VolumeSnapshot v1beta1 CRD has been removed](https://github.com/kubernetes/enhancements/issues/177). 
+Volume snapshot and restore functionality for Kubernetes and the Container Storage Interface (CSI), which provides standardized APIs design (CRDs) and adds PV snapshot/restore support for CSI volume drivers, moved to GA in v1.20. VolumeSnapshot v1beta1 was deprecated in v1.20 and is now unsupported. Refer to [KEP-177: CSI Snapshot](https://git.k8s.io/enhancements/keps/sig-storage/177-volume-snapshot#kep-177-csi-snapshot) and [Volume Snapshot GA blog](/blog/2020/12/10/kubernetes-1.20-volume-snapshot-moves-to-ga/) for more information.
+-->
+## CSI 快照
+
+**此信息是在首次发布后添加的。**
+
+[VolumeSnapshot v1beta1 CRD 已被移除](https://github.com/kubernetes/enhancements/issues/177)。
+Kubernetes 和容器存储接口 (CSI) 的卷快照和恢复功能，提供标准化的 API 设计 (CRD) 并添加了对 CSI 卷驱动程序的
+PV 快照/恢复支持，在 v1.20 中升级至 GA。VolumeSnapshot v1beta1 在 v1.20 中被弃用，现在不受支持。
+有关详细信息，请参阅 [KEP-177: CSI 快照](https://git.k8s.io/enhancements/keps/sig-storage/177-volume-snapshot#kep-177-csi-snapshot)
+和[卷快照 GA 博客](/blog/2020/12/10/kubernetes-1.20-volume-snapshot-moves-to-ga/)。
+
+<!--
+## Other Updates
+
+### Graduations to Stable
+
+This release saw fourteen enhancements promoted to stable:
+-->
+## 其他更新
+
+### 毕业到稳定版
+
+在此版本中，有 14 项增强功能升级为稳定版：
+
+<!--
+* [Container Storage Interface (CSI) Volume Expansion](https://github.com/kubernetes/enhancements/issues/284)
+* [Pod Overhead](https://github.com/kubernetes/enhancements/issues/688): Account for resources tied to the pod sandbox but not specific containers.
+* [Add non-preempting option to PriorityClasses](https://github.com/kubernetes/enhancements/issues/902)
+* [Storage Capacity Tracking](https://github.com/kubernetes/enhancements/issues/1472)
+* [OpenStack Cinder In-Tree to CSI Driver Migration](https://github.com/kubernetes/enhancements/issues/1489)
+* [Azure Disk In-Tree to CSI Driver Migration](https://github.com/kubernetes/enhancements/issues/1490)
+* [Efficient Watch Resumption](https://github.com/kubernetes/enhancements/issues/1904): Watch can be efficiently resumed after kube-apiserver reboot.
+* [Service Type=LoadBalancer Class Field](https://github.com/kubernetes/enhancements/issues/1959): Introduce a new Service annotation `service.kubernetes.io/load-balancer-class` that allows multiple implementations of `type: LoadBalancer` Services in the same cluster.
+* [Indexed Job](https://github.com/kubernetes/enhancements/issues/2214): Add a completion index to Pods of Jobs with a fixed completion count.
+* [Add Suspend Field to Jobs API](https://github.com/kubernetes/enhancements/issues/2232): Add a suspend field to the Jobs API to allow orchestrators to create jobs with more control over when pods are created.
+* [Pod Affinity NamespaceSelector](https://github.com/kubernetes/enhancements/issues/2249): Add a `namespaceSelector` field for to pod affinity/anti-affinity spec.
+* [Leader Migration for Controller Managers](https://github.com/kubernetes/enhancements/issues/2436): kube-controller-manager and cloud-controller-manager can apply new controller-to-controller-manager assignment in HA control plane without downtime.
+* [CSR Duration](https://github.com/kubernetes/enhancements/issues/2784): Extend the CertificateSigningRequest API with a mechanism to allow clients to request a specific duration for the issued certificate.
+-->
+* [容器存储接口（CSI）卷扩展](https://github.com/kubernetes/enhancements/issues/284)
+* [Pod 开销](https://github.com/kubernetes/enhancements/issues/688): 核算与 Pod 沙箱绑定的资源，但不包括特定的容器。
+* [向 PriorityClass 添加非抢占选项](https://github.com/kubernetes/enhancements/issues/902)
+* [存储容量跟踪](https://github.com/kubernetes/enhancements/issues/1472)
+* [OpenStack Cinder In-Tree 到 CSI 驱动程序迁移](https://github.com/kubernetes/enhancements/issues/1489)
+* [Azure 磁盘树到 CSI 驱动程序迁移](https://github.com/kubernetes/enhancements/issues/1490)
+* [高效的监视恢复](https://github.com/kubernetes/enhancements/issues/1904)：
+  kube-apiserver 重新启动后，可以高效地恢复监视。
+* [Service Type=LoadBalancer 类字段](https://github.com/kubernetes/enhancements/issues/1959)：
+  引入新的服务注解 `service.kubernetes.io/load-balancer-class`，
+  允许在同一个集群中提供 `type: LoadBalancer` 服务的多个实现。
+* [带索引的 Job](https://github.com/kubernetes/enhancements/issues/2214)：为带有固定完成计数的 Job 的 Pod 添加完成索引。
+* [在 Job API 中增加 suspend 字段](https://github.com/kubernetes/enhancements/issues/2232)：
+  在 Job API 中增加一个 suspend 字段，允许协调者在创建作业时对 Pod 的创建进行更多控制。
+* [Pod 亲和性 NamespaceSelector](https://github.com/kubernetes/enhancements/issues/2249)：
+  为 Pod 亲和性/反亲和性规约添加一个 `namespaceSelector` 字段。
+* [控制器管理器的领导者迁移](https://github.com/kubernetes/enhancements/issues/2436)：
+  kube-controller-manager 和 cloud-controller-manager 可以在 HA 控制平面中重新分配新的控制器到控制器管理器，而无需停机。
+* [CSR 期限](https://github.com/kubernetes/enhancements/issues/2784)：
+  用一种机制来扩展证书签名请求 API，允许客户为签发的证书请求一个特定的期限。
+
+<!--
+### Major Changes
+
+This release saw two major changes:
+
+* [Dockershim Removal](https://github.com/kubernetes/enhancements/issues/2221)
+* [Beta APIs are off by Default](https://github.com/kubernetes/enhancements/issues/3136)
+-->
+### 主要变更
+
+此版本有两个主要变更：
+
+* [移除 Dockershim](https://github.com/kubernetes/enhancements/issues/2221)
+* [默认关闭 Beta API](https://github.com/kubernetes/enhancements/issues/3136)
+
+<!--
+### Release Notes
+
+Check out the full details of the Kubernetes 1.24 release in our [release notes](https://git.k8s.io/kubernetes/CHANGELOG/CHANGELOG-1.24.md).
+-->
+### 发行说明
+
+在我们的[发行说明](https://git.k8s.io/kubernetes/CHANGELOG/CHANGELOG-1.24.md) 中查看 Kubernetes 1.24 版本的完整详细信息。
+
+<!--
+### Availability
+
+Kubernetes 1.24 is available for download on [GitHub](https://github.com/kubernetes/kubernetes/releases/tag/v1.24.0).
+To get started with Kubernetes, check out these [interactive tutorials](/docs/tutorials/) or run local
+Kubernetes clusters using containers as “nodes”, with [kind](https://kind.sigs.k8s.io/).
+You can also easily install 1.24 using [kubeadm](/docs/setup/independent/create-cluster-kubeadm/).
+-->
+### 可用性
+
+Kubernetes 1.24 可在 [GitHub](https://github.com/kubernetes/kubernetes/releases/tag/v1.24.0) 上下载。
+要开始使用 Kubernetes，请查看这些[交互式教程](/zh-cn/docs/tutorials/)或在本地运行。
+使用 [kind](https://kind.sigs.k8s.io/)，可以将容器作为 Kubernetes 集群的 “节点”。
+你还可以使用 [kubeadm](/zh-cn/docs/setup/independent/create-cluster-kubeadm/) 轻松安装 1.24。
+
+<!--
+### Release Team
+
+This release would not have been possible without the combined efforts of committed individuals
+comprising the Kubernetes 1.24 release team. This team came together to deliver all of the components
+that go into each Kubernetes release, including code, documentation, release notes, and more.
+
+Special thanks to James Laverack, our release lead, for guiding us through a successful release cycle,
+and to all of the release team members for the time and effort they put in to deliver the v1.24
+release for the Kubernetes community.
+-->
+### 发布团队
+
+如果没有 Kubernetes 1.24 发布团队每个人做出的共同努力，这个版本是不可能实现的。
+该团队齐心协力交付每个 Kubernetes 版本中的所有组件，包括代码、文档、发行说明等。
+
+特别感谢我们的发布负责人 James Laverack 指导我们完成了一个成功的发布周期，
+并感谢所有发布团队成员投入时间和精力为 Kubernetes 社区提供 v1.24 版本。
+
+<!--
+### Release Theme and Logo
+
+**Kubernetes 1.24: Stargazer**
+
+{{< figure src="/images/blog/2022-05-03-kubernetes-release-1.24/kubernetes-1.24.png" alt="" class="release-logo" >}}
+
+The theme for Kubernetes 1.24 is _Stargazer_.
+-->
+### 发布主题和徽标
+
+**Kubernetes 1.24: 观星者**
+
+{{< figure src="/images/blog/2022-05-03-kubernetes-release-1.24/kubernetes-1.24.png" alt="" class="release-logo" >}}
+
+Kubernetes 1.24 的主题是**观星者（Stargazer）**。
+
+<!--
+Generations of people have looked to the stars in awe and wonder, from ancient astronomers to the
+scientists who built the James Webb Space Telescope. The stars have inspired us, set our imagination
+alight, and guided us through long nights on difficult seas.
+
+With this release we gaze upwards, to what is possible when our community comes together. Kubernetes
+is the work of hundreds of contributors across the globe and thousands of end-users supporting
+applications that serve millions. Every one is a star in our sky, helping us chart our course.
+-->
+古代天文学家到建造 James Webb 太空望远镜的科学家，几代人都怀着敬畏和惊奇的心情仰望星空。
+是这些星辰启发了我们，点燃了我们的想象力，引导我们在艰难的海上度过了漫长的夜晚。
+
+通过此版本，我们向上凝视，当我们的社区聚集在一起时可能发生的事情。
+Kubernetes 是全球数百名贡献者和数千名最终用户支持的成果，
+是一款为数百万人服务的应用程序。每个人都是我们天空中的一颗星星，帮助我们规划路线。
+<!--
+The release logo is made by [Britnee Laverack](https://www.instagram.com/artsyfie/), and depicts a telescope set upon starry skies and the
+[Pleiades](https://en.wikipedia.org/wiki/Pleiades), often known in mythology as the “Seven Sisters”. The number seven is especially auspicious
+for the Kubernetes project, and is a reference back to our original “Project Seven” name.
+
+This release of Kubernetes is named for those that would look towards the night sky and wonder — for
+all the stargazers out there. ✨
+-->
+发布标志由 [Britnee Laverack](https://www.instagram.com/artsyfie/) 制作，
+描绘了一架位于星空和[昴星团](https://en.wikipedia.org/wiki/Pleiades)的望远镜，在神话中通常被称为“七姐妹”。
+数字 7 对于 Kubernetes 项目特别吉祥，是对我们最初的“项目七”名称的引用。
+
+这个版本的 Kubernetes 为那些仰望夜空的人命名——为所有的观星者命名。 ✨
+
+<!--
+### User Highlights
+
+* Check out how leading retail e-commerce company [La Redoute used Kubernetes, alongside other CNCF projects, to transform and streamline its software delivery lifecycle](https://www.cncf.io/case-studies/la-redoute/) - from development to operations.
+* Trying to ensure no change to an API call would cause any breaks, [Salt Security built its microservices entirely on Kubernetes, and it communicates via gRPC while Linkerd ensures messages are encrypted](https://www.cncf.io/case-studies/salt-security/).
+* In their effort to migrate from private to public cloud, [Allainz Direct engineers redesigned its CI/CD pipeline in just three months while managing to condense 200 workflows down to 10-15](https://www.cncf.io/case-studies/allianz/).
+* Check out how [Bink, a UK based fintech company, updated its in-house Kubernetes distribution with Linkerd to build a cloud-agnostic platform that scales as needed whilst allowing them to keep a close eye on performance and stability](https://www.cncf.io/case-studies/bink/).
+* Using Kubernetes, the Dutch organization [Stichting Open Nederland](http://www.stichtingopennederland.nl/) created a testing portal in just one-and-a-half months to help safely reopen events in the Netherlands. The [Testing for Entry (Testen voor Toegang)](https://www.testenvoortoegang.org/) platform [leveraged the performance and scalability of Kubernetes to help individuals book over 400,000 COVID-19 testing appointments per day. ](https://www.cncf.io/case-studies/true/)
+* Working alongside SparkFabrik and utilizing Backstage, [Santagostino created the developer platform Samaritan to centralize services and documentation, manage the entire lifecycle of services, and simplify the work of Santagostino developers](https://www.cncf.io/case-studies/santagostino/).
+-->
+### 用户亮点
+
+* 了解领先的零售电子商务公司
+  [La Redoute 如何使用 Kubernetes 以及其他 CNCF 项目来转变和简化](https://www.cncf.io/case-studies/la-redoute/)
+  其从开发到运营的软件交付生命周期。
+* 为了确保对 API 调用的更改不会导致任何中断，[Salt Security 完全在 Kubernetes 上构建了它的微服务，
+  它通过 gRPC 进行通信，而 Linkerd 确保消息是加密的](https://www.cncf.io/case-studies/salt-security/)。
+* 为了从私有云迁移到公共云，[Alllainz Direct 工程师在短短三个月内重新设计了其 CI/CD 管道，
+  同时设法将 200 个工作流压缩到 10-15 个](https://www.cncf.io/case-studies/allianz/)。
+* 看看[英国金融科技公司 Bink 是如何用 Linkerd 更新其内部的 Kubernetes 分布，以建立一个云端的平台，
+  根据需要进行扩展，同时允许他们密切关注性能和稳定性](https://www.cncf.io/case-studies/bink/)。
+* 利用Kubernetes，荷兰组织 [Stichting Open Nederland](http://www.stichtingopennederland.nl/)
+  在短短一个半月内创建了一个测试门户网站，以帮助安全地重新开放荷兰的活动。
+  [入门测试 (Testen voor Toegang)](https://www.testenvoortoegang.org/)
+  平台[利用 Kubernetes 的性能和可扩展性来帮助个人每天预订超过 400,000 个 COVID-19 测试预约](https://www.cncf.io/case-studies/true/)。
+* 与 SparkFabrik 合作并利用 Backstage，[Santagostino 创建了开发人员平台 Samaritan 来集中服务和文档，
+  管理服务的整个生命周期，并简化 Santagostino 开发人员的工作](https://www.cncf.io/case-studies/santagostino/)。
+
+<!--
+### Ecosystem Updates
+
+* KubeCon + CloudNativeCon Europe 2022 will take place in Valencia, Spain, from 16 – 20 May 2022! You can find more information about the conference and registration on the [event site](https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/).
+* In the [2021 Cloud Native Survey](https://www.cncf.io/announcements/2022/02/10/cncf-sees-record-kubernetes-and-container-adoption-in-2021-cloud-native-survey/), the CNCF saw record Kubernetes and container adoption. Take a look at the [results of the survey](https://www.cncf.io/reports/cncf-annual-survey-2021/).
+* The [Linux Foundation](https://www.linuxfoundation.org/) and [The Cloud Native Computing Foundation](https://www.cncf.io/) (CNCF) announced the availability of a new [Cloud Native Developer Bootcamp](https://training.linuxfoundation.org/training/cloudnativedev-bootcamp/?utm_source=lftraining&utm_medium=pr&utm_campaign=clouddevbc0322) to provide participants with the knowledge and skills to design, build, and deploy cloud native applications. Check out the [announcement](https://www.cncf.io/announcements/2022/03/15/new-cloud-native-developer-bootcamp-provides-a-clear-path-to-cloud-native-careers/) to learn more.
+-->
+### 生态系统更新
+
+* KubeCon + CloudNativeCon Europe 2022 于 2022 年 5 月 16 日至 20 日在西班牙巴伦西亚举行！
+  你可以在[活动网站](https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/)上找到有关会议和注册的更多信息。
+* 在 [2021 年云原生调查](https://www.cncf.io/announcements/2022/02/10/cncf-sees-record-kubernetes-and-container-adoption-in-2021-cloud-native-survey/)
+  中，CNCF 看到了创纪录的 Kubernetes 和容器采用。参阅[调查结果](https://www.cncf.io/reports/cncf-annual-survey-2021/)。
+* [Linux 基金会](https://www.linuxfoundation.org/)和[云原生计算基金会](https://www.cncf.io/) (CNCF)
+  宣布推出新的 [云原生开发者训练营](https://training.linuxfoundation.org/training/cloudnativedev-bootcamp/?utm_source=lftraining&utm_medium=pr&utm_campaign=clouddevbc0322)
+  为参与者提供设计、构建和部署云原生应用程序的知识和技能。查看[公告](https://www.cncf.io/announcements/2022/03/15/new-cloud-native-developer-bootcamp-provides-a-clear-path-to-cloud-native-careers/)以了解更多信息。
+
+<!--
+### Project Velocity
+
+The [CNCF K8s DevStats](https://k8s.devstats.cncf.io/d/12/dashboards?orgId=1&refresh=15m) project
+aggregates a number of interesting data points related to the velocity of Kubernetes and various
+sub-projects. This includes everything from individual contributions to the number of companies that
+are contributing, and is an illustration of the depth and breadth of effort that goes into evolving this ecosystem.
+
+In the v1.24 release cycle, which [ran for 17 weeks](https://github.com/kubernetes/sig-release/tree/master/releases/release-1.24) (January 10 to May 3), we saw contributions from [1029 companies](https://k8s.devstats.cncf.io/d/9/companies-table?orgId=1&var-period_name=v1.23.0%20-%20v1.24.0&var-metric=contributions) and [1179 individuals](https://k8s.devstats.cncf.io/d/66/developer-activity-counts-by-companies?orgId=1&var-period_name=v1.23.0%20-%20v1.24.0&var-metric=contributions&var-repogroup_name=Kubernetes&var-country_name=All&var-companies=All&var-repo_name=kubernetes%2Fkubernetes).
+-->
+### 项目速度
+
+The [CNCF K8s DevStats](https://k8s.devstats.cncf.io/d/12/dashboards?orgId=1&refresh=15m) 项目
+汇总了许多与 Kubernetes 和各种子项目的速度相关的有趣数据点。这包括从个人贡献到做出贡献的公司数量的所有内容，
+并且说明了为发展这个生态系统而付出的努力的深度和广度。
+
+在[运行 17 周](https://github.com/kubernetes/sig-release/tree/master/releases/release-1.24)
+（ 1 月 10 日至 5 月 3 日）的 v1.24 发布周期中，我们看到 [1029 家公司](https://k8s.devstats.cncf.io/d/9/companies-table?orgId=1&var-period_name=v1.23.0%20-%20v1.24.0&var-metric=contributions)
+和 [1179 人](https://k8s.devstats.cncf.io/d/66/developer-activity-counts-by-companies?orgId=1&var-period_name=v1.23.0%20-%20v1.24.0&var-metric=contributions&var-repogroup_name=Kubernetes&var-country_name=All&var-companies=All&var-repo_name=kubernetes%2Fkubernetes) 的贡献。
+
+<!--
+## Upcoming Release Webinar
+
+Join members of the Kubernetes 1.24 release team on Tue May 24, 2022 9:45am – 11am PT to learn about
+the major features of this release, as well as deprecations and removals to help plan for upgrades.
+For more information and registration, visit the [event page](https://community.cncf.io/e/mck3kd/)
+on the CNCF Online Programs site.
+-->
+## 即将发布的网络研讨会
+
+在太平洋时间 2022 年 5 月 24 日星期二上午 9:45 至上午 11 点加入 Kubernetes 1.24 发布团队的成员，
+了解此版本的主要功能以及弃用和删除，以帮助规划升级。有关更多信息和注册，
+请访问 CNCF 在线计划网站上的[活动页面](https://community.cncf.io/e/mck3kd/)。
+
+<!--
+## Get Involved
+
+The simplest way to get involved with Kubernetes is by joining one of the many [Special Interest Groups](https://git.k8s.io/community/sig-list.md) (SIGs) that align with your interests. 
+Have something you’d like to broadcast to the Kubernetes community? Share your voice at our weekly [community meeting](https://git.k8s.io/community/communication), and through the channels below:
+
+* Find out more about contributing to Kubernetes at the [Kubernetes Contributors](https://www.kubernetes.dev/) website
+* Follow us on Twitter [@Kubernetesio](https://twitter.com/kubernetesio) for the latest updates
+* Join the community discussion on [Discuss](https://discuss.kubernetes.io/)
+* Join the community on [Slack](http://slack.k8s.io/)
+* Post questions (or answer questions) on [Server Fault](https://serverfault.com/questions/tagged/kubernetes).
+* Share your Kubernetes [story](https://docs.google.com/a/linuxfoundation.org/forms/d/e/1FAIpQLScuI7Ye3VQHQTwBASrgkjQDSS5TP0g3AXfFhwSM9YpHgxRKFA/viewform)
+* Read more about what’s happening with Kubernetes on the [blog](https://kubernetes.io/blog/)
+* Learn more about the [Kubernetes Release Team](https://git.k8s.io/sig-release/release-team)
+-->
+## 参与进来
+
+参与 Kubernetes 的最简单方法是加入符合你兴趣的众多[特别兴趣组](https://git.k8s.io/community/sig-list.md)（SIG）之一。
+你有什么想向 Kubernetes 社区广播的内容吗？
+在我们的每周的[社区会议](https://git.k8s.io/community/communication)上分享你的声音，并通过以下渠道：
+
+* 在 [Kubernetes Contributors](https://www.kubernetes.dev/) 网站上了解有关为 Kubernetes 做出贡献的更多信息
+* 在 Twitter 上关注我们 [@Kubernetesio](https://twitter.com/kubernetesio) 以获取最新更新
+* 加入社区讨论 [Discuss](https://discuss.kubernetes.io/)
+* 加入 [Slack](http://slack.k8s.io/) 社区
+* 在 [Server Fault](https://serverfault.com/questions/tagged/kubernetes) 上发布问题（或回答问题）。
+* 分享你的 Kubernetes [故事](https://docs.google.com/a/linuxfoundation.org/forms/d/e/1FAIpQLScuI7Ye3VQHQTwBASrgkjQDSS5TP0g3AXfFhwSM9YpHgxRKFA/viewform)
+* 在[博客](/zh-cn/blog/)上阅读有关 Kubernetes 正在发生的事情的更多信息
+* 详细了解 [Kubernetes 发布团队](https://git.k8s.io/sig-release/release-team)
diff --git a/content/zh-cn/blog/_posts/2022-05-05-volume-expansion-ga.md b/content/zh-cn/blog/_posts/2022-05-05-volume-expansion-ga.md
new file mode 100644
index 0000000000..3a5ae01872
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2022-05-05-volume-expansion-ga.md
@@ -0,0 +1,207 @@
+---
+layout: blog
+title: "Kubernetes 1.24：卷扩充现在成为稳定功能"
+date: 2022-05-05
+slug: volume-expansion-ga
+---
+
+<!-- 
+---
+layout: blog
+title: "Kubernetes 1.24: Volume Expansion Now A Stable Feature"
+date: 2022-05-05
+slug: volume-expansion-ga
+---
+-->
+
+<!-- 
+**Author:** Hemant Kumar (Red Hat)
+
+Volume expansion was introduced as a alpha feature in Kubernetes 1.8 and it went beta in 1.11 and with Kubernetes 1.24 we are excited to announce general availability(GA)
+of volume expansion.
+
+This feature allows Kubernetes users to simply edit their `PersistentVolumeClaim` objects and specify new size in PVC Spec and Kubernetes will automatically expand the volume
+using storage backend and also expand the underlying file system in-use by the Pod without requiring any downtime at all if possible.
+-->
+**作者：** Hemant Kumar (Red Hat)
+
+卷扩充在 Kubernetes 1.8 作为 Alpha 功能引入，
+在 Kubernetes 1.11 进入了 Beta 阶段。
+在 Kubernetes 1.24 中，我们很高兴地宣布卷扩充正式发布（GA）。
+
+此功能允许 Kubernetes 用户简单地编辑其 `PersistentVolumeClaim` 对象，
+并在 PVC Spec 中指定新的大小，Kubernetes 将使用存储后端自动扩充卷，
+同时也会扩充 Pod 使用的底层文件系统，使得无需任何停机时间成为可能。
+<!--
+### How to use volume expansion
+
+You can trigger expansion for a PersistentVolume by editing the `spec` field of a PVC, specifying a different
+(and larger) storage request. For example, given following PVC:
+
+```yaml
+kind: PersistentVolumeClaim
+apiVersion: v1
+metadata:
+  name: myclaim
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 1Gi # specify new size here
+```
+-->
+### 如何使用卷扩充
+
+通过编辑 PVC 的 `spec` 字段，指定不同的（和更大的）存储请求，
+可以触发 PersistentVolume 的扩充。
+例如，给定以下 PVC：
+
+```yaml
+kind: PersistentVolumeClaim
+apiVersion: v1
+metadata:
+  name: myclaim
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 1Gi # 在此处指定新的大小
+```
+<!--
+You can request expansion of the underlying PersistentVolume by specifying a new value instead of old `1Gi` size.
+Once you've changed the requested size, watch the `status.conditions` field of the PVC to see if the
+resize has completed.
+
+When Kubernetes starts expanding the volume - it will add `Resizing` condition to the PVC, which will be removed once expansion completes. More information about progress of
+expansion operation can also be obtained by monitoring events associated with the PVC:
+
+```bash
+kubectl describe pvc <pvc>
+```
+-->
+你可以指定新的值来替代旧的 `1Gi` 大小来请求扩充下层 PersistentVolume。
+一旦你更改了请求的大小，可以查看 PVC 的 `status.conditions` 字段，
+确认卷大小的调整是否已完成。
+
+当 Kubernetes 开始扩充卷时，它会给 PVC 添加 `Resizing` 状况。
+一旦扩充结束，这个状况会被移除。通过监控与 PVC 关联的事件，
+还可以获得更多关于扩充操作进度的信息：
+
+```bash
+kubectl describe pvc <pvc>
+```
+<!--
+### Storage driver support
+
+Not every volume type however is expandable by default. Some volume types such as - intree hostpath volumes are not expandable at all. For CSI volumes - the CSI driver
+must have capability `EXPAND_VOLUME` in controller or node service (or both if appropriate). Please refer to documentation of your CSI driver, to find out
+if it supports volume expansion.
+
+Please refer to volume expansion documentation for intree volume types which support volume expansion - [Expanding Persistent Volumes](/docs/concepts/storage/persistent-volumes/#expanding-persistent-volumes-claims).
+-->
+### 存储驱动支持
+
+然而，并不是每种卷类型都默认支持扩充。
+某些卷类型（如树内 hostpath 卷）不支持扩充。
+对于 CSI 卷，
+CSI 驱动必须在控制器或节点服务（如果合适，二者兼备）
+中具有 `EXPAND_VOLUME` 能力。
+请参阅 CSI 驱动的文档，了解其是否支持卷扩充。
+
+有关支持卷扩充的树内（intree）卷类型，
+请参阅卷扩充文档：[扩充 PVC 申领](/zh-cn/docs/concepts/storage/persistent-volumes/#expanding-persistent-volumes-claims)。
+
+<!-- 
+In general to provide some degree of control over volumes that can be expanded, only dynamically provisioned PVCs whose storage class has `allowVolumeExpansion` parameter set to `true` are expandable.
+
+A Kubernetes cluster administrator must edit the appropriate StorageClass object and set
+the `allowVolumeExpansion` field to `true`. For example:
+-->
+通常，为了对可扩充的卷提供某种程度的控制，
+只有在存储类将 `allowVolumeExpansion` 参数设置为 `true` 时，
+动态供应的 PVC 才是可扩充的。
+
+Kubernetes 集群管理员必须编辑相应的 StorageClass 对象，
+并将 `allowVolumeExpansion` 字段设置为 `true`。例如：
+
+```yaml
+apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: gp2-default
+provisioner: kubernetes.io/aws-ebs
+parameters:
+  secretNamespace: ""
+  secretName: ""
+allowVolumeExpansion: true
+```
+<!--
+### Online expansion compared to offline expansion
+
+By default, Kubernetes attempts to expand volumes immediately after user requests a resize.
+If one or more Pods are using the volume, Kubernetes tries to expands the volume using an online resize;
+as a result volume expansion usually requires no application downtime.
+Filesystem expansion on the node is also performed online and hence does not require shutting
+down any Pod that was using the PVC.
+
+If you expand a PersistentVolume that is not in use, Kubernetes does an offline resize (and,
+because the volume isn't in use, there is again no workload disruption).
+-->
+### 在线扩充与离线扩充比较
+
+默认情况下，Kubernetes 会在用户请求调整大小后立即尝试扩充卷。
+如果一个或多个 Pod 正在使用该卷，
+Kubernetes 会尝试通过在线调整大小来扩充该卷；
+因此，卷扩充通常不需要应用停机。
+节点上的文件系统也可以在线扩充，因此不需要关闭任何正在使用 PVC 的 Pod。
+
+如果要扩充的 PersistentVolume 未被使用，Kubernetes 会用离线方式调整卷大小
+（而且，由于该卷未使用，所以也不会造成工作负载中断）。
+<!-- 
+In some cases though - if underlying Storage Driver can only support offline expansion, users of the PVC must take down their Pod before expansion can succeed. Please refer to documentation of your storage
+provider to find out - what mode of volume expansion it supports.
+
+When volume expansion was introduced as an alpha feature, Kubernetes only supported offline filesystem
+expansion on the node and hence required users to restart their pods for file system resizing to finish. 
+His behaviour has been changed and Kubernetes tries its best to fulfil any resize request regardless
+of whether the underlying PersistentVolume volume is online or offline. If your storage provider supports
+online expansion then no Pod restart should be necessary for volume expansion to finish.
+-->
+但在某些情况下，如果底层存储驱动只能支持离线扩充，
+则 PVC 用户必须先停止 Pod，才能让扩充成功。
+请参阅存储提供商的文档，了解其支持哪种模式的卷扩充。
+
+当卷扩充作为 Alpha 功能引入时，
+Kubernetes 仅支持在节点上进行离线的文件系统扩充，
+因此需要用户重新启动 Pod，才能完成文件系统的大小调整。
+今天，用户的行为已经被改变，无论底层 PersistentVolume 是在线还是离线，
+Kubernetes 都会尽最大努力满足任何调整大小的请求。
+如果你的存储提供商支持在线扩充，则无需重启 Pod 即可完成卷扩充。
+<!-- 
+## Next steps
+
+Although volume expansion is now stable as part of the recent v1.24 release,
+SIG Storage are working to make it even simpler for users of Kubernetes to expand their persistent storage.
+Kubernetes 1.23 introduced features for triggering recovery from failed volume expansion, allowing users
+to attempt self-service healing after a failed resize.
+See [Recovering from volume expansion failure](/docs/concepts/storage/persistent-volumes/#recovering-from-failure-when-expanding-volumes) for more details.
+-->
+## 下一步
+
+尽管卷扩充在最近的 v1.24 发行版中成为了稳定版本，
+但 SIG Storage 团队仍然在努力让 Kubernetes 用户扩充其持久性存储变得更简单。
+Kubernetes 1.23 引入了卷扩充失败后触发恢复机制的功能特性，
+允许用户在大小调整失败后尝试自助修复。
+更多详细信息，请参阅[处理扩充卷过程中的失败](/zh-cn/docs/concepts/storage/persistent-volumes/#recovering-from-failure-when-expanding-volumes)。
+<!--
+The Kubernetes contributor community is also discussing the potential for StatefulSet-driven storage expansion. This proposed
+feature would let you trigger expansion for all underlying PVs that are providing storage to a StatefulSet,
+by directly editing the StatefulSet object.
+See the [Support Volume Expansion Through StatefulSets](https://github.com/kubernetes/enhancements/issues/661) enhancement proposal for more details.
+-->
+Kubernetes 贡献者社区也在讨论有状态（StatefulSet）驱动的存储扩充的潜力。
+这个提议的功能特性将允许用户通过直接编辑 StatefulSet 对象，
+触发为 StatefulSet 提供存储的所有底层 PV 的扩充。
+更多详细信息，请参阅[通过 StatefulSet 支持卷扩充](https://github.com/kubernetes/enhancements/issues/661)的改善提议。
diff --git a/content/zh-cn/blog/_posts/2022-05-06-storage-capacity-GA/index.md b/content/zh-cn/blog/_posts/2022-05-06-storage-capacity-GA/index.md
new file mode 100644
index 0000000000..7311d7a255
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2022-05-06-storage-capacity-GA/index.md
@@ -0,0 +1,149 @@
+---
+layout: blog
+title: "Kubernetes 1.24 版本中存储容量跟踪特性进入 GA 阶段"
+date: 2022-05-06
+slug: storage-capacity-ga
+---
+<!--
+layout: blog
+title: "Storage Capacity Tracking reaches GA in Kubernetes 1.24"
+date: 2022-05-06
+slug: storage-capacity-ga
+-->
+
+<!--
+ **Authors:** Patrick Ohly (Intel)
+-->
+ **作者:** Patrick Ohly（Intel）
+
+<!--
+The v1.24 release of Kubernetes brings [storage capacity](/docs/concepts/storage/storage-capacity/)
+tracking as a generally available feature.
+-->
+在 Kubernetes v1.24 版本中，[存储容量](/zh-cn/docs/concepts/storage/storage-capacity/)跟踪已经成为一项正式发布的功能。
+
+<!--
+## Problems we have solved
+-->
+## 已经解决的问题
+
+<!--
+As explained in more detail in the [previous blog post about this
+feature](/blog/2021/04/14/local-storage-features-go-beta/), storage capacity
+tracking allows a CSI driver to publish information about remaining
+capacity. The kube-scheduler then uses that information to pick suitable nodes
+for a Pod when that Pod has volumes that still need to be provisioned.
+-->
+如[上一篇关于此功能的博文](/blog/2021/04/14/local-storage-features-go-beta/)中所详细介绍的，
+存储容量跟踪允许 CSI 驱动程序发布有关剩余容量的信息。当 Pod 仍然有需要配置的卷时，
+kube-scheduler 使用该信息为 Pod 选择合适的节点。
+
+<!--
+Without this information, a Pod may get stuck without ever being scheduled onto
+a suitable node because kube-scheduler has to choose blindly and always ends up
+picking a node for which the volume cannot be provisioned because the
+underlying storage system managed by the CSI driver does not have sufficient
+capacity left.
+-->
+如果没有这些信息，Pod 可能会被卡住，而不会被调度到合适节点，这是因为 kube-scheduler
+只能盲目地选择节点。由于 CSI 驱动程序管理的下层存储系统没有足够的容量，
+kube-scheduler 常常会选择一个无法为其配置卷的节点。
+
+<!--
+Because CSI drivers publish storage capacity information that gets used at a
+later time when it might not be up-to-date anymore, it can still happen that a
+node is picked that doesn't work out after all. Volume provisioning recovers
+from that by informing the scheduler that it needs to try again with a
+different node.
+-->
+因为 CSI 驱动程序发布的这些存储容量信息在被使用的时候可能已经不是最新的信息了，
+所以最终选择的节点无法正常工作的情况仍然可能会发生。
+卷配置通过通知调度程序需要在其他节点上重试来恢复。
+
+<!--
+[Load
+tests](https://github.com/kubernetes-csi/csi-driver-host-path/blob/master/docs/storage-capacity-tracking.md)
+that were done again for promotion to GA confirmed that all storage in a
+cluster can be consumed by Pods with storage capacity tracking whereas Pods got
+stuck without it.
+-->
+升级到 GA 版本后重新进行的[负载测试](https://github.com/kubernetes-csi/csi-driver-host-path/blob/master/docs/storage-capacity-tracking.md)证实，
+集群中部署了存储容量跟踪功能的 Pod 可以使用所有的存储，而没有部署此功能的 Pod 就会被卡住。
+
+<!--
+## Problems we have *not* solved
+-->
+## *尚未*解决的问题
+
+<!--
+Recovery from a failed volume provisioning attempt has one known limitation: if a Pod
+uses two volumes and only one of them could be provisioned, then all future
+scheduling decisions are limited by the already provisioned volume. If that
+volume is local to a node and the other volume cannot be provisioned there, the
+Pod is stuck. This problem pre-dates storage capacity tracking and while the
+additional information makes it less likely to occur, it cannot be avoided in
+all cases, except of course by only using one volume per Pod.
+-->
+如果尝试恢复一个制备失败的卷，存在一个已知的限制：
+如果 Pod 使用两个卷并且只能制备其中一个，那么所有将来的调度决策都受到已经制备的卷的限制。
+如果该卷是节点的本地卷，并且另一个卷无法被制备，则 Pod 会卡住。
+此问题早在存储容量跟踪功能之前就存在，虽然苛刻的附加条件使这种情况不太可能发生，
+但是无法完全避免，当然每个 Pod 仅使用一个卷的情况除外。
+
+<!--
+An idea for solving this was proposed in a [KEP
+draft](https://github.com/kubernetes/enhancements/pull/1703): volumes that were
+provisioned and haven't been used yet cannot have any valuable data and
+therefore could be freed and provisioned again elsewhere. SIG Storage is
+looking for interested developers who want to continue working on this.
+-->
+[KEP 草案](https://github.com/kubernetes/enhancements/pull/1703)中提出了一个解决此问题的想法：
+已制备但尚未被使用的卷不能包含任何有价值的数据，因此可以在其他地方释放并且再次被制备。
+SIG Storage 正在寻找对此感兴趣并且愿意继续从事此工作的开发人员。
+
+<!--
+Also not solved is support in Cluster Autoscaler for Pods with volumes. For CSI
+drivers with storage capacity tracking, a prototype was developed and discussed
+in [a PR](https://github.com/kubernetes/autoscaler/pull/3887). It was meant to
+work with arbitrary CSI drivers, but that flexibility made it hard to configure
+and slowed down scale up operations: because autoscaler was unable to simulate
+volume provisioning, it only scaled the cluster by one node at a time, which
+was seen as insufficient.
+-->
+另一个没有解决的问题是 Cluster Autoscaler 对包含卷的 Pod 的支持。
+对于具有存储容量跟踪功能的 CSI 驱动程序，我们开发了一个原型并在此
+[PR](https://github.com/kubernetes/autoscaler/pull/3887) 中进行了讨论。
+此原型旨在与任意 CSI 驱动程序协同工作，但这种灵活性使其难以配置并减慢了扩展操作：
+因为自动扩展程序无法模拟卷制备操作，它一次只能将集群扩展一个节点，这是此方案的不足之处。
+
+<!--
+Therefore that PR was not merged and a different approach with tighter coupling
+between autoscaler and CSI driver will be needed. For this a better
+understanding is needed about which local storage CSI drivers are used in
+combination with cluster autoscaling. Should this lead to a new KEP, then users
+will have to try out an implementation in practice before it can move to beta
+or GA. So please reach out to SIG Storage if you have an interest in this
+topic.
+-->
+因此，这个 PR 没有被合入，需要另一种不同的方法，在自动缩放器和 CSI 驱动程序之间实现更紧密的耦合。
+为此，需要更好地了解哪些本地存储 CSI 驱动程序与集群自动缩放结合使用。如果这会引出新的 KEP，
+那么用户将不得不在实践中尝试实现，然后才能迁移到 beta 版本或 GA 版本中。
+如果你对此主题感兴趣，请联系 SIG Storage。
+
+<!--
+## Acknowledgements
+-->
+## 致谢
+
+<!--
+Thanks a lot to the members of the community who have contributed to this
+feature or given feedback including members of [SIG
+Scheduling](https://github.com/kubernetes/community/tree/master/sig-scheduling),
+[SIG
+Autoscaling](https://github.com/kubernetes/community/tree/master/sig-autoscaling),
+and of course [SIG
+Storage](https://github.com/kubernetes/community/tree/master/sig-storage)!
+-->
+非常感谢为此功能做出贡献或提供反馈的 [SIG Scheduling](https://github.com/kubernetes/community/tree/master/sig-scheduling)、
+[SIG Autoscaling](https://github.com/kubernetes/community/tree/master/sig-autoscaling) 
+和 [SIG Storage](https://github.com/kubernetes/community/tree/master/sig-storage) 成员！
diff --git a/content/zh-cn/blog/_posts/2022-05-13-grpc-probes-in-beta.md b/content/zh-cn/blog/_posts/2022-05-13-grpc-probes-in-beta.md
new file mode 100644
index 0000000000..657f768e31
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2022-05-13-grpc-probes-in-beta.md
@@ -0,0 +1,343 @@
+---
+layout: blog
+title: "Kubernetes 1.24：gRPC 容器探针功能进入 Beta 阶段"
+date: 2022-05-13
+slug: grpc-probes-now-in-beta
+---
+<!--
+layout: blog
+title: "Kubernetes 1.24: gRPC container probes in beta"
+date: 2022-05-13
+slug: grpc-probes-now-in-beta
+-->
+
+<!--
+**Author**: Sergey Kanzhelev (Google)
+-->
+**作者**：Sergey Kanzhelev (Google)
+
+<!--
+With Kubernetes 1.24 the gRPC probes functionality entered beta and is available by default.
+Now you can configure startup, liveness, and readiness probes for your gRPC app
+without exposing any HTTP endpoint, nor do you need an executable. Kubernetes can natively connect to your your workload via gRPC and query its status.
+-->
+在 Kubernetes 1.24 中，gRPC 探针（probe）功能进入了 beta 阶段，默认情况下可用。
+现在，你可以为 gRPC 应用程序配置启动、活跃和就绪探测，而无需公开任何 HTTP 端点，
+也不需要可执行文件。Kubernetes 可以通过 gRPC 直接连接到你的工作负载并查询其状态。
+
+<!--
+## Some history
+
+It's useful to let the system managing your workload check that the app is
+healthy, has started OK, and whether the app considers itself good to accept
+traffic. Before the gRPC support was added, Kubernetes already allowed you to
+check for health based on running an executable from inside the container image,
+by making an HTTP request, or by checking whether a TCP connection succeeded.
+-->
+## 一些历史
+
+让管理你的工作负载的系统检查应用程序是否健康、启动是否正常，以及应用程序是否认为自己可以接收流量，是很有用的。
+在添加 gRPC 探针支持之前，Kubernetes 已经允许你通过从容器镜像内部运行可执行文件、发出 HTTP
+请求或检查 TCP 连接是否成功来检查健康状况。
+
+<!--
+For most apps, those checks are enough. If your app provides a gRPC endpoint
+for a health (or readiness) check, it is easy
+to repurpose the `exec` probe to use it for gRPC health checking.
+In the blog article [Health checking gRPC servers on Kubernetes](/blog/2018/10/01/health-checking-grpc-servers-on-kubernetes/),
+Ahmet Alp Balkan described how you can do that — a mechanism that still works today.
+-->
+对于大多数应用程序来说，这些检查就足够了。如果你的应用程序提供了用于运行状况（或准备就绪）检查的
+gRPC 端点，则很容易重新调整 `exec` 探针的用途，将其用于 gRPC 运行状况检查。
+在博文[在 Kubernetes 上对 gRPC 服务器进行健康检查](/zh-cn/blog/2018/10/01/health-checking-grpc-servers-on-kubernetes/)中，
+Ahmet Alp Balkan 描述了如何做到这一点 —— 这种机制至今仍在工作。
+
+<!--
+There is a commonly used tool to enable this that was [created](https://github.com/grpc-ecosystem/grpc-health-probe/commit/2df4478982e95c9a57d5fe3f555667f4365c025d)
+on August 21, 2018, and with
+the first release at [Sep 19, 2018](https://github.com/grpc-ecosystem/grpc-health-probe/releases/tag/v0.1.0-alpha.1).
+-->
+2018 年 8 月 21 日所[创建](https://github.com/grpc-ecosystem/grpc-health-probe/commit/2df4478982e95c9a57d5fe3f555667f4365c025d)的一种常用工具可以启用此功能，
+工具于 [2018 年 9 月 19 日](https://github.com/grpc-ecosystem/grpc-health-probe/releases/tag/v0.1.0-alpha.1)首次发布。
+
+<!--
+This approach for gRPC apps health checking is very popular. There are [3,626 Dockerfiles](https://github.com/search?l=Dockerfile&q=grpc_health_probe&type=code)
+with the `grpc_health_probe` and [6,621 yaml](https://github.com/search?l=YAML&q=grpc_health_probe&type=Code) files that are discovered with the
+basic search on GitHub (at the moment of writing). This is good indication of the tool popularity
+and the need to support this natively.
+-->
+这种 gRPC 应用健康检查的方法非常受欢迎。使用 GitHub 上的基本搜索，发现了带有 `grpc_health_probe`
+的 [3,626 个 Dockerfile 文件](https://github.com/search?l=Dockerfile&q=grpc_health_probe&type=code)和
+[6,621 个 yaml 文件](https://github.com/search?l=YAML&q=grpc_health_probe&type=Code)（在撰写本文时）。
+这很好地表明了该工具的受欢迎程度，以及对其本地支持的需求。
+
+<!--
+Kubernetes v1.23 introduced an alpha-quality implementation of native support for
+querying a workload status using gRPC. Because it was an alpha feature,
+this was disabled by default for the v1.23 release.
+-->
+Kubernetes v1.23 引入了一个 alpha 质量的实现，原生支持使用 gRPC 查询工作负载状态。
+因为这是一个 alpha 特性，所以在 1.23 版中默认是禁用的。
+
+<!--
+## Using the feature
+
+We built gRPC health checking in similar way with other probes and believe
+it will be [easy to use](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#define-a-grpc-liveness-probe)
+if you are familiar with other probe types in Kubernetes.
+The natively supported health probe has many benefits over the workaround involving `grpc_health_probe` executable.
+-->
+## 使用该功能
+
+我们用与其他探针类似的方式构建了 gRPC 健康检查，相信如果你熟悉 Kubernetes 中的其他探针类型，
+它会[很容易使用](/zh-cn/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#define-a-grpc-liveness-probe)。
+与涉及 `grpc_health_probe` 可执行文件的解决办法相比，原生支持的健康探针有许多好处。
+
+<!--
+With the native gRPC support you don't need to download and carry `10MB` of an additional executable with your image.
+Exec probes are generally slower than a gRPC call as they require instantiating a new process to run an executable.
+It also makes the checks less sensible for edge cases when the pod is running at maximum resources and has troubles
+instantiating new processes.
+-->
+有了原生 gRPC 支持，你不需要在镜像中下载和携带 `10MB` 的额外可执行文件。
+Exec 探针通常比 gRPC 调用慢，因为它们需要实例化一个新进程来运行可执行文件。
+当 Pod 在最大资源下运行并且在实例化新进程时遇到困难时，它还使得对边界情况的检查变得不那么智能。
+
+<!--
+There are a few limitations though. Since configuring a client certificate for probes is hard,
+services that require client authentication are not supported. The built-in probes are also
+not checking the server certificates and ignore related problems.
+-->
+不过有一些限制。由于为探针配置客户端证书很难，因此不支持依赖客户端身份验证的服务。
+内置探针也不检查服务器证书，并忽略相关问题。
+
+<!--
+Built-in checks also cannot be configured to ignore certain types of errors
+(`grpc_health_probe` returns different exit codes for different errors),
+and cannot be "chained" to run the health check on multiple services in a single probe.
+-->
+内置检查也不能配置为忽略某些类型的错误（`grpc_health_probe` 针对不同的错误返回不同的退出代码），
+并且不能“串接”以在单个探测中对多个服务运行健康检查。
+
+<!--
+But all these limitations are quite standard for gRPC and there are easy workarounds
+for those.
+-->
+但是所有这些限制对于 gRPC 来说都是相当标准的，并且有简单的解决方法。
+
+<!--
+## Try it for yourself
+
+### Cluster-level setup
+
+You can try this feature today. To try native gRPC probes, you can spin up a Kubernetes cluster
+yourself with the `GRPCContainerProbe` feature gate enabled, there are many [tools available](/docs/tasks/tools/).
+-->
+## 自己试试
+
+### 集群级设置
+
+你现在可以尝试这个功能。要尝试原生 gRPC 探针，你可以自己启动一个启用了
+`GRPCContainerProbe` 特性门控的 Kubernetes 集群，可用的[工具](/zh-cn/docs/tasks/tools/)有很多。
+
+<!--
+Since the feature gate `GRPCContainerProbe` is enabled by default in 1.24,
+many vendors will have this functionality working out of the box.
+So you may just create an 1.24 cluster on platform of your choice. Some vendors
+allow to enable alpha features on 1.23 clusters.
+-->
+由于特性门控 `GRPCContainerProbe` 在 1.24 版本中是默认启用的，因此许多供应商支持此功能开箱即用。
+因此，你可以在自己选择的平台上创建 1.24 版本集群。一些供应商允许在 1.23 版本集群上启用 alpha 特性。
+
+<!--
+For example, at the moment of writing, you can spin up the test cluster on GKE for a quick test.
+Other vendors may also have similar capabilities, especially if you
+are reading this blog post long after the Kubernetes 1.24 release.
+-->
+例如，在编写本文时，你可以在 GKE 上运行测试集群来进行快速测试。
+其他供应商可能也有类似的功能，尤其是当你在 Kubernetes 1.24 版本发布很久后才阅读这篇博客时。
+
+<!--
+On GKE use the following command (note, version is `1.23` and `enable-kubernetes-alpha` are specified).
+-->
+在 GKE 上使用以下命令（注意，版本是 `1.23`，并且指定了 `enable-kubernetes-alpha`）。
+
+```shell
+gcloud container clusters create test-grpc \
+    --enable-kubernetes-alpha \
+    --no-enable-autorepair \
+    --no-enable-autoupgrade \
+    --release-channel=rapid \
+    --cluster-version=1.23
+```
+
+<!--
+You will also need to configure `kubectl` to access the cluster:
+-->
+你还需要配置 kubectl 来访问集群：
+
+```shell
+gcloud container clusters get-credentials test-grpc
+```
+
+<!--
+### Trying the feature out
+
+Let's create the pod to test how gRPC probes work. For this test we will use the `agnhost` image.
+This is a k8s maintained image with that can be used for all sorts of workload testing.
+For example, it has a useful [grpc-health-checking](https://github.com/kubernetes/kubernetes/blob/b2c5bd2a278288b5ef19e25bf7413ecb872577a4/test/images/agnhost/README.md#grpc-health-checking) module
+that exposes two ports - one is serving health checking service,
+another - http port to react on commands `make-serving` and `make-not-serving`.
+-->
+### 试用该功能
+
+让我们创建 Pod 来测试 gRPC 探针是如何工作的。对于这个测试，我们将使用 `agnhost` 镜像。
+这是一个 k8s 维护的镜像，可用于各种工作负载测试。例如，它有一个有用的
+[grpc-health-checking](https://github.com/kubernetes/kubernetes/blob/b2c5bd2a278288b5ef19e25bf7413ecb872577a4/test/images/agnhost/README.md#grpc-health-checking)
+模块，该模块暴露了两个端口：一个是提供健康检查服务的端口，另一个是对 `make-serving` 和
+`make-not-serving` 命令做出反应的 http 端口。
+
+<!--
+Here is an example pod definition. It starts the `grpc-health-checking` module,
+exposes ports `5000` and `8080`, and configures gRPC readiness probe:
+-->
+下面是一个 Pod 定义示例。它启用 `grpc-health-checking` 模块，暴露 5000 和 8080 端口，并配置 gRPC 就绪探针：
+
+``` yaml
+---
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-grpc
+spec:
+  containers:
+  - name: agnhost
+    image: k8s.gcr.io/e2e-test-images/agnhost:2.35
+    command: ["/agnhost", "grpc-health-checking"]
+    ports:
+    - containerPort: 5000
+    - containerPort: 8080
+    readinessProbe:
+      grpc:
+        port: 5000
+```
+
+<!--
+If the file called `test.yaml`, you can create the pod and check it's status.
+The pod will be in ready state as indicated by the snippet of the output.
+-->
+如果文件名为 `test.yaml`，你可以用以下命令创建 Pod，并检查它的状态。如输出片段所示，Pod 将处于就绪状态。
+
+```shell
+kubectl apply -f test.yaml
+kubectl describe test-grpc
+```
+
+<!--
+The output will contain something like this:
+-->
+输出将包含如下内容：
+
+```
+Conditions:
+  Type              Status
+  Initialized       True
+  Ready             True
+  ContainersReady   True
+  PodScheduled      True
+```
+
+<!--
+Now let's change the health checking endpoint status to NOT_SERVING.
+In order to call the http port of the Pod, let's create a port forward:
+-->
+现在让我们将健康检查端点状态更改为 `NOT_SERVING`。为了调用 Pod 的 http 端口，让我们创建一个端口转发：
+
+```shell
+kubectl port-forward test-grpc 8080:8080
+```
+
+<!--
+You can `curl` to call the command...
+-->
+你可以用 `curl` 来调用这个命令。
+
+```shell
+curl http://localhost:8080/make-not-serving
+```
+
+<!--
+... and in a few seconds the port status will switch to not ready.
+-->
+几秒钟后，端口状态将切换到未就绪。
+
+```shell
+kubectl describe pod test-grpc
+```
+
+<!--
+The output now will have:
+-->
+现在的输出将显示：
+
+```
+Conditions:
+  Type              Status
+  Initialized       True
+  Ready             False
+  ContainersReady   False
+  PodScheduled      True
+
+...
+
+  Warning  Unhealthy  2s (x6 over 42s)  kubelet            Readiness probe failed: service unhealthy (responded with "NOT_SERVING")
+```
+
+<!--
+Once it is switched back, in about one second the Pod will get back to ready status:
+-->
+一旦切换回来，Pod 将在大约一秒钟后恢复到就绪状态：
+
+``` bsh
+curl http://localhost:8080/make-serving
+kubectl describe test-grpc
+```
+
+<!--
+The output indicates that the Pod went back to being `Ready`:
+-->
+输出表明 Pod 恢复为 `Ready`：
+
+```
+Conditions:
+  Type              Status
+  Initialized       True
+  Ready             True
+  ContainersReady   True
+  PodScheduled      True
+```
+
+<!--
+This new built-in gRPC health probing on Kubernetes makes implementing a health-check via gRPC
+much easier than the older approach that relied on using a separate `exec` probe. Read through
+the official
+[documentation](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#define-a-grpc-liveness-probe)
+to learn more and provide feedback before the feature will be promoted to GA.
+-->
+Kubernetes 上这种新的内置 gRPC 健康探测，使得通过 gRPC 实现健康检查比依赖使用额外的 `exec`
+探测的旧方法更容易。请阅读官方
+[文档](/zh-cn/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#define-a-grpc-liveness-probe)
+了解更多信息并在该功能正式发布（GA）之前提供反馈。
+
+<!--
+## Summary
+
+Kubernetes is a popular workload orchestration platform and we add features based on feedback and demand.
+Features like gRPC probes support is a minor improvement that will make life of many app developers
+easier and apps more resilient. Try it today and give feedback, before the feature went into GA.
+-->
+## 总结
+
+Kubernetes 是一个流行的工作负载编排平台，我们根据反馈和需求添加功能。
+像 gRPC 探针支持这样的特性是一个小的改进，它将使许多应用程序开发人员的生活更容易，应用程序更有弹性。
+在该功能 GA（正式发布）之前，现在就试试，并给出反馈。
diff --git a/content/zh-cn/blog/_posts/2022-05-16-volume-populators-beta.md b/content/zh-cn/blog/_posts/2022-05-16-volume-populators-beta.md
new file mode 100644
index 0000000000..cb867f9837
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2022-05-16-volume-populators-beta.md
@@ -0,0 +1,256 @@
+---
+layout: blog
+title: "Kubernetes 1.24: 卷填充器功能进入 Beta 阶段"
+date: 2022-05-16
+slug: volume-populators-beta
+---
+<!--
+layout: blog
+title: "Kubernetes 1.24: Volume Populators Graduate to Beta"
+date: 2022-05-16
+slug: volume-populators-beta
+-->
+
+<!--
+**Author:**
+Ben Swartzlander (NetApp)
+-->
+**作者：**
+Ben Swartzlander (NetApp)
+
+<!--
+The volume populators feature is now two releases old and entering beta! The `AnyVolumeDataSource` feature
+gate defaults to enabled in Kubernetes v1.24, which means that users can specify any custom resource
+as the data source of a PVC.
+-->
+卷填充器功能现在已经经历两个发行版本并进入 Beta 阶段！
+在 Kubernetes v1.24 中 `AnyVolumeDataSource` 特性门控默认被启用。
+这意味着用户可以指定任何自定义资源作为 PVC 的数据源。
+
+<!--
+An [earlier blog article](/blog/2021/08/30/volume-populators-redesigned/) detailed how the
+volume populators feature works. In short, a cluster administrator can install a CRD and
+associated populator controller in the cluster, and any user who can create instances of 
+the CR can create pre-populated volumes by taking advantage of the populator.
+-->
+[之前的一篇博客](/blog/2021/08/30/volume-populators-redesigned/)详细介绍了卷填充器功能的工作原理。
+简而言之，集群管理员可以在集群中安装 CRD 和相关的填充器控制器，
+任何可以创建 CR 实例的用户都可以利用填充器创建预填充卷。
+
+<!--
+Multiple populators can be installed side by side for different purposes. The SIG storage
+community is already seeing some implementations in public, and more prototypes should
+appear soon.
+-->
+出于不同的目的，可以一起安装多个填充器。存储 SIG 社区已经有了一些公开的实现，更多原型应该很快就会出现。
+
+<!--
+Cluster administrations are **strongly encouraged** to install the
+volume-data-source-validator controller and associated `VolumePopulator` CRD before installing
+any populators so that users can get feedback about invalid PVC data sources.
+-->
+**强烈建议**集群管理人员在安装任何填充器之前安装 volume-data-source-validator 控制器和相关的
+`VolumePopulator` CRD，以便用户可以获得有关无效 PVC 数据源的反馈。
+
+<!--
+## New Features
+-->
+## 新功能
+
+<!--
+The [lib-volume-populator](https://github.com/kubernetes-csi/lib-volume-populator) library
+on which populators are built now includes metrics to help operators monitor and detect
+problems. This library is now beta and latest release is v1.0.1.
+-->
+构建填充器的 [lib-volume-populator](https://github.com/kubernetes-csi/lib-volume-populator)
+库现在包含可帮助操作员监控和检测问题的指标。这个库现在是 beta 阶段，最新版本是 v1.0.1。
+
+<!--
+The [volume data source validator](https://github.com/kubernetes-csi/volume-data-source-validator)
+controller also has metrics support added, and is in beta. The `VolumePopulator` CRD is
+beta and the latest release is v1.0.1.
+-->
+[卷数据源校验器](https://github.com/kubernetes-csi/volume-data-source-validator)控制器也添加了指标支持，
+处于 beta 阶段。`VolumePopulator` CRD 是 beta 阶段，最新版本是 v1.0.1。
+
+<!--
+## Trying it out
+-->
+## 尝试一下
+
+<!--
+To see how this works, you can install the sample "hello" populator and try it
+out.
+-->
+要查看它是如何工作的，你可以安装 “hello” 示例填充器并尝试一下。
+
+<!--
+First install the volume-data-source-validator controller.
+-->
+首先安装 volume-data-source-validator 控制器。
+
+```shell
+kubectl apply -f https://raw.githubusercontent.com/kubernetes-csi/volume-data-source-validator/v1.0.1/client/config/crd/populator.storage.k8s.io_volumepopulators.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes-csi/volume-data-source-validator/v1.0.1/deploy/kubernetes/rbac-data-source-validator.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes-csi/volume-data-source-validator/v1.0.1/deploy/kubernetes/setup-data-source-validator.yaml
+```
+<!--
+Next install the example populator.
+-->
+接下来安装 hello 示例填充器。
+
+```shell
+kubectl apply -f https://raw.githubusercontent.com/kubernetes-csi/lib-volume-populator/v1.0.1/example/hello-populator/crd.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes-csi/lib-volume-populator/87a47467b86052819e9ad13d15036d65b9a32fbb/example/hello-populator/deploy.yaml
+```
+<!--
+Your cluster now has a new CustomResourceDefinition that provides a test API named Hello.
+Create an instance of the `Hello` custom resource, with some text:
+-->
+你的集群现在有一个新的 CustomResourceDefinition，它提供了一个名为 Hello 的测试 API。
+创建一个 `Hello` 自定义资源的实例，内容如下：
+
+```yaml
+apiVersion: hello.example.com/v1alpha1
+kind: Hello
+metadata:
+  name: example-hello
+spec:
+  fileName: example.txt
+  fileContents: Hello, world!
+```
+<!--
+Create a PVC that refers to that CR as its data source.
+-->
+创建一个将该 CR 引用为其数据源的 PVC。
+
+```yaml
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: example-pvc
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Mi
+  dataSourceRef:
+    apiGroup: hello.example.com
+    kind: Hello
+    name: example-hello
+  volumeMode: Filesystem
+```
+<!--
+Next, run a Job that reads the file in the PVC.
+-->
+接下来，运行一个读取 PVC 中文件的 Job。
+
+```yaml
+apiVersion: batch/v1
+kind: Job
+metadata:
+  name: example-job
+spec:
+  template:
+    spec:
+      containers:
+        - name: example-container
+          image: busybox:latest
+          command:
+            - cat
+            - /mnt/example.txt
+          volumeMounts:
+            - name: vol
+              mountPath: /mnt
+      restartPolicy: Never
+      volumes:
+        - name: vol
+          persistentVolumeClaim:
+            claimName: example-pvc
+```
+<!--
+Wait for the job to complete (including all of its dependencies).
+-->
+等待 Job 完成（包括其所有依赖项）。
+
+```shell
+kubectl wait --for=condition=Complete job/example-job
+```
+
+<!--
+And last examine the log from the job.
+-->
+最后检查 Job 中的日志。
+
+```shell
+kubectl logs job/example-job
+```
+<!--
+The output should be:
+-->
+输出应该是：
+
+```terminal
+Hello, world!
+```
+<!--
+Note that the volume already contained a text file with the string contents from
+the CR. This is only the simplest example. Actual populators can set up the volume
+to contain arbitrary contents.
+-->
+请注意，该卷已包含一个文本文件，其中包含来自 CR 的字符串内容。这只是最简单的例子。
+实际填充器可以将卷设置为包含任意内容。
+
+<!--
+## How to write your own volume populator
+-->
+## 如何编写自己的卷填充器
+
+<!--
+Developers interested in writing new poplators are encouraged to use the
+[lib-volume-populator](https://github.com/kubernetes-csi/lib-volume-populator) library
+and to only supply a small controller wrapper around the library, and a pod image
+capable of attaching to volumes and writing the appropriate data to the volume.
+-->
+鼓励有兴趣编写新的填充器的开发人员使用
+[lib-volume-populator](https://github.com/kubernetes-csi/lib-volume-populator) 库，
+只提供一个小型控制器，以及一个能够连接到卷并向卷写入适当数据的 Pod 镜像。
+
+<!--
+Individual populators can be extremely generic such that they work with every type
+of PVC, or they can do vendor specific things to rapidly fill a volume with data
+if the volume was provisioned by a specific CSI driver from the same vendor, for
+example, by communicating directly with the storage for that volume.
+-->
+单个填充器非常通用，它们可以与所有类型的 PVC 一起使用，
+或者如果卷是来自同一供应商的特定 CSI 驱动程序供应的，
+它们可以执行供应商特定的的操作以快速用数据填充卷，例如，通过通信直接使用该卷的存储。
+
+<!--
+## How can I learn more?
+-->
+## 我怎样才能了解更多？
+
+<!--
+The enhancement proposal,
+[Volume Populators](https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/1495-volume-populators), includes lots of detail about the history and technical implementation
+of this feature.
+-->
+增强提案，
+[卷填充器](https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/1495-volume-populators)，
+包含有关此功能的历史和技术实现的许多详细信息。
+
+<!--
+[Volume populators and data sources](/docs/concepts/storage/persistent-volumes/#volume-populators-and-data-sources), within the documentation topic about persistent volumes,
+explains how to use this feature in your cluster.
+-->
+[卷填充器与数据源](/zh-cn/docs/concepts/storage/persistent-volumes/#volume-populators-and-data-sources),
+在有关持久卷的文档主题中，解释了如何在集群中使用此功能。
+
+<!--
+Please get involved by joining the Kubernetes storage SIG to help us enhance this
+feature. There are a lot of good ideas already and we'd be thrilled to have more!
+-->
+请加入 Kubernetes 的存储 SIG，帮助我们增强这一功能。这里已经有很多好的主意了，我们很高兴能有更多！
+
diff --git a/content/zh-cn/blog/_posts/2022-05-18-prevent-unauthorised-volume-mode-conversion.md b/content/zh-cn/blog/_posts/2022-05-18-prevent-unauthorised-volume-mode-conversion.md
new file mode 100644
index 0000000000..b4645b030d
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2022-05-18-prevent-unauthorised-volume-mode-conversion.md
@@ -0,0 +1,203 @@
+---
+layout: blog
+title: 'Kubernetes 1.24: 防止未经授权的卷模式转换'
+date: 2022-05-18
+slug: prevent-unauthorised-volume-mode-conversion-alpha
+---
+
+<!--
+layout: blog
+title: 'Kubernetes 1.24: Prevent unauthorised volume mode conversion'
+date: 2022-05-18
+slug: prevent-unauthorised-volume-mode-conversion-alpha
+-->
+
+<!--
+**Author:** Raunak Pradip Shah (Mirantis)
+-->
+**作者：** Raunak Pradip Shah (Mirantis)
+
+<!--
+Kubernetes v1.24 introduces a new alpha-level feature that prevents unauthorised users 
+from modifying the volume mode of a [`PersistentVolumeClaim`](/docs/concepts/storage/persistent-volumes/) created from an 
+existing [`VolumeSnapshot`](/docs/concepts/storage/volume-snapshots/) in the Kubernetes cluster.  
+-->
+Kubernetes v1.24 引入了一个新的 alpha 级特性，可以防止未经授权的用户修改基于 Kubernetes
+集群中已有的 [`VolumeSnapshot`](/zh-cn/docs/concepts/storage/volume-snapshots/)
+创建的 [`PersistentVolumeClaim`](/zh-cn/docs/concepts/storage/persistent-volumes/) 的卷模式。
+
+<!--
+### The problem
+-->
+### 问题
+
+<!--
+The [Volume Mode](/docs/concepts/storage/persistent-volumes/#volume-mode) determines whether a volume 
+is formatted into a filesystem or presented as a raw block device.   
+-->
+[卷模式](/zh-cn/docs/concepts/storage/persistent-volumes/#volume-mode)确定卷是格式化为文件系统还是显示为原始块设备。
+
+<!--
+Users can leverage the `VolumeSnapshot` feature, which has been stable since Kubernetes v1.20, 
+to create a `PersistentVolumeClaim` (shortened as PVC) from an existing `VolumeSnapshot` in
+the Kubernetes cluster. The PVC spec includes a `dataSource` field, which can point to an 
+existing `VolumeSnapshot` instance.
+Visit [Create a PersistentVolumeClaim from a Volume Snapshot](/docs/concepts/storage/persistent-volumes/#create-persistent-volume-claim-from-volume-snapshot) for more details.
+-->
+用户可以使用自 Kubernetes v1.20 以来就稳定的 `VolumeSnapshot` 功能，
+基于 Kubernetes 集群中的已有的 `VolumeSnapshot` 创建一个 `PersistentVolumeClaim` (简称 PVC )。
+PVC 规约包括一个 `dataSource` 字段，它可以指向一个已有的 `VolumeSnapshot` 实例。
+查阅[基于卷快照创建 PVC](/zh-cn/docs/concepts/storage/persistent-volumes/#create-persistent-volume-claim-from-volume-snapshot)
+获取更多详细信息。
+
+<!--
+When leveraging the above capability, there is no logic that validates whether the mode of the
+original volume, whose snapshot was taken, matches the mode of the newly created volume.
+-->
+当使用上述功能时，没有逻辑来验证快照所在的原始卷的模式是否与新创建的卷的模式匹配。
+
+<!--
+This presents a security gap that allows malicious users to potentially exploit an 
+as-yet-unknown vulnerability in the host operating system.
+-->
+这引起了一个安全漏洞，允许恶意用户潜在地利用主机操作系统中的未知漏洞。
+
+<!--
+Many popular storage backup vendors convert the volume mode during the course of a 
+backup operation, for efficiency purposes, which prevents Kubernetes from blocking
+the operation completely and presents a challenge in distinguishing trusted
+users from malicious ones.
+-->
+为了提高效率，许多流行的存储备份供应商在备份操作过程中转换卷模式，
+这使得 Kubernetes 无法完全阻止该操作，并在区分受信任用户和恶意用户方面带来挑战。
+
+<!--
+### Preventing unauthorised users from converting the volume mode
+-->
+### 防止未经授权的用户转换卷模式
+
+<!--
+In this context, an authorised user is one who has access rights to perform `Update` 
+or `Patch` operations on `VolumeSnapshotContents`, which is a cluster-level resource.  
+It is upto the cluster administrator to provide these rights only to trusted users
+or applications, like backup vendors.
+-->
+在这种情况下，授权用户是指有权对 `VolumeSnapshotContents`（集群级资源）执行 `Update`
+或 `Patch` 操作的用户。集群管理员只能向受信任的用户或应用程序（如备份供应商）提供这些权限。
+
+<!--
+If the alpha feature is [enabled](https://kubernetes-csi.github.io/docs/) in 
+`snapshot-controller`, `snapshot-validation-webhook` and `external-provisioner`,
+then unauthorised users will not be allowed to modify the volume mode of a PVC
+when it is being created from a `VolumeSnapshot`.
+-->
+如果在 `snapshot-controller`、`snapshot-validation-webhook` 和
+`external-provisioner` 中[启用](https://kubernetes-csi.github.io/docs/)了这个 alpha
+特性，则基于 `VolumeSnapshot` 创建 PVC 时，将不允许未经授权的用户修改其卷模式。
+
+<!--
+To convert the volume mode, an authorised user must do the following:
+-->
+如要转换卷模式，授权用户必须执行以下操作：
+
+<!--
+1. Identify the `VolumeSnapshot` that is to be used as the data source for a newly 
+created PVC in the given namespace. 
+2. Identify the `VolumeSnapshotContent` bound to the above `VolumeSnapshot`.
+-->
+1. 确定要用作给定命名空间中新创建 PVC 的数据源的 `VolumeSnapshot`。
+2. 确定绑定到上面 `VolumeSnapshot` 的 `VolumeSnapshotContent`。
+
+   ```
+      kubectl get volumesnapshot -n <namespace>
+   ```
+<!--
+3. Add the annotation [`snapshot.storage.kubernetes.io/allowVolumeModeChange`](/docs/reference/labels-annotations-taints/#snapshot-storage-kubernetes-io-allowvolumemodechange)
+to the `VolumeSnapshotContent`. 
+-->
+3. 给 `VolumeSnapshotContent` 添加
+   [`snapshot.storage.kubernetes.io/allowVolumeModeChange`](/zh-cn/docs/reference/labels-annotations-taints/#snapshot-storage-kubernetes-io-allowvolumemodechange)
+   注解。
+
+<!--
+4.This annotation can be added either via software or manually by the authorised 
+user. The `VolumeSnapshotContent` annotation must look like following manifest fragment:
+-->
+4. 此注解可通过软件添加或由授权用户手动添加。`VolumeSnapshotContent` 注解必须类似于以下清单片段：
+
+    ```yaml
+       kind: VolumeSnapshotContent
+       metadata:
+         annotations:
+           - snapshot.storage.kubernetes.io/allowVolumeModeChange: "true"
+       ...
+    ```
+<!--
+**Note**: For pre-provisioned `VolumeSnapshotContents`, you must take an extra
+step of setting `spec.sourceVolumeMode` field to either `Filesystem` or `Block`,
+depending on the mode of the volume from which this snapshot was taken.
+-->
+**注意**：对于预先制备的 `VolumeSnapshotContents`，你必须采取额外的步骤设置 `spec.sourceVolumeMode`
+字段为 `Filesystem` 或 `Block`，这取决于快照所在卷的模式。
+
+<!--
+An example is shown below:
+-->
+如下为一个示例：
+
+```yaml
+   apiVersion: snapshot.storage.k8s.io/v1
+   kind: VolumeSnapshotContent
+   metadata:
+     annotations:
+     - snapshot.storage.kubernetes.io/allowVolumeModeChange: "true"
+     name: new-snapshot-content-test
+   spec:
+     deletionPolicy: Delete
+     driver: hostpath.csi.k8s.io
+     source:
+       snapshotHandle: 7bdd0de3-aaeb-11e8-9aae-0242ac110002
+     sourceVolumeMode: Filesystem
+     volumeSnapshotRef:
+       name: new-snapshot-test
+       namespace: default
+```
+
+<!--
+Repeat steps 1 to 3 for all `VolumeSnapshotContents` whose volume mode needs to be 
+converted during a backup or restore operation.
+-->
+对于在备份或恢复操作期间需要转换卷模式的所有 `VolumeSnapshotContents`，重复步骤 1 到 3。
+
+<!--
+If the annotation shown in step 4 above is present on a `VolumeSnapshotContent`
+object, Kubernetes will not prevent the volume mode from being converted.
+Users should keep this in mind before they attempt to add the annotation 
+to any `VolumeSnapshotContent`. 
+-->
+如果 `VolumeSnapshotContent` 对象上存在上面步骤 4 中显示的注解，Kubernetes 将不会阻止转换卷模式。
+用户在尝试将注解添加到任何 `VolumeSnapshotContent` 之前，应该记住这一点。
+
+<!--
+### What's next
+-->
+### 接下来
+
+<!--
+[Enable this feature](https://kubernetes-csi.github.io/docs/) and let us know 
+what you think!
+-->
+[启用此特性](https://kubernetes-csi.github.io/docs/)并让我们知道你的想法!
+
+<!--
+We hope this feature causes no disruption to existing workflows while preventing
+malicious users from exploiting security vulnerabilities in their clusters. 
+-->
+我们希望此功能不会中断现有工作流程，同时防止恶意用户利用集群中的安全漏洞。
+
+<!--
+For any issues, create a thread in the #sig-storage slack channel or an issue
+in the CSI external-snapshotter [repository](https://github.com/kubernetes-csi/external-snapshotter).
+-->
+若有任何问题，请在 #sig-storage slack 频道中创建一个会话，
+或在 CSI 外部快照存储[仓库](https://github.com/kubernetes-csi/external-snapshotter)中报告一个 issue。
\ No newline at end of file
diff --git a/content/zh-cn/blog/_posts/2022-05-23-service-ip-dynamic-and-static-allocation.md b/content/zh-cn/blog/_posts/2022-05-23-service-ip-dynamic-and-static-allocation.md
new file mode 100644
index 0000000000..851e0d04b1
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2022-05-23-service-ip-dynamic-and-static-allocation.md
@@ -0,0 +1,268 @@
+---
+layout: blog
+title: "Kubernetes 1.24: 避免为 Services 分配 IP 地址时发生冲突"
+date: 2022-05-23
+slug: service-ip-dynamic-and-static-allocation
+---
+<!--
+layout: blog
+title: "Kubernetes 1.24: Avoid Collisions Assigning IP Addresses to Services"
+date: 2022-05-23
+slug: service-ip-dynamic-and-static-allocation
+-->
+
+<!--
+**Author:** Antonio Ojea (Red Hat)
+-->
+**作者：** Antonio Ojea (Red Hat)
+
+<!--
+In Kubernetes, [Services](/docs/concepts/services-networking/service/) are an abstract way to expose
+an application running on a set of Pods. Services
+can have a cluster-scoped virtual IP address (using a Service of `type: ClusterIP`).
+Clients can connect using that virtual IP address, and Kubernetes then load-balances traffic to that
+Service across the different backing Pods.
+-->
+在 Kubernetes 中，[Services](/zh-cn/docs/concepts/services-networking/service/)
+是一种抽象，用来暴露运行在一组 Pod 上的应用。
+Service 可以有一个集群范围的虚拟 IP 地址（使用 `type: ClusterIP` 的 Service）。
+客户端可以使用该虚拟 IP 地址进行连接， Kubernetes 为对该 Service 的访问流量提供负载均衡，以访问不同的后端 Pod。
+
+<!--
+## How Service ClusterIPs are allocated?
+-->
+## Service ClusterIP 是如何分配的？
+
+<!--
+A Service `ClusterIP` can be assigned:
+-->
+Service `ClusterIP` 有如下分配方式：
+
+<!--
+_dynamically_
+: the cluster's control plane automatically picks a free IP address from within the configured IP range for `type: ClusterIP` Services.
+-->
+**动态**
+：群集的控制平面会自动从配置的 IP 范围内为 `type:ClusterIP` 的 Service 选择一个空闲 IP 地址。
+
+<!--
+_statically_
+: you specify an IP address of your choice, from within the configured IP range for Services.
+-->
+**静态**
+：你可以指定一个来自 Service 配置的 IP 范围内的 IP 地址。
+
+<!--
+Across your whole cluster, every Service `ClusterIP` must be unique.
+Trying to create a Service with a specific `ClusterIP` that has already
+been allocated will return an error.
+-->
+在整个集群中，每个 Service 的 `ClusterIP` 必须是唯一的。
+尝试创建一个已经被分配了的 `ClusterIP` 的 Service 将会返回错误。
+
+<!--
+## Why do you need to reserve Service Cluster IPs?
+-->
+## 为什么需要预留 Service Cluster IP？
+
+<!--
+Sometimes you may want to have Services running in well-known IP addresses, so other components and
+users in the cluster can use them.
+-->
+有时，你可能希望让 Service 运行在众所周知的 IP 地址上，以便集群中的其他组件和用户可以使用它们。
+
+<!--
+The best example is the DNS Service for the cluster. Some Kubernetes installers assign the 10th address from
+the Service IP range to the DNS service. Assuming you configured your cluster with Service IP range
+10.96.0.0/16 and you want your DNS Service IP to be 10.96.0.10, you'd have to create a Service like
+this:
+-->
+最好的例子是集群的 DNS Service。一些 Kubernetes 安装程序将 Service IP 范围中的第 10 个地址分配给 DNS Service。
+假设你配置集群 Service IP 范围是 10.96.0.0/16，并且希望 DNS Service IP 为 10.96.0.10，
+那么你必须创建一个如下所示的 Service：
+
+```yaml
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    k8s-app: kube-dns
+    kubernetes.io/cluster-service: "true"
+    kubernetes.io/name: CoreDNS
+  name: kube-dns
+  namespace: kube-system
+spec:
+  clusterIP: 10.96.0.10
+  ports:
+  - name: dns
+    port: 53
+    protocol: UDP
+    targetPort: 53
+  - name: dns-tcp
+    port: 53
+    protocol: TCP
+    targetPort: 53
+  selector:
+    k8s-app: kube-dns
+  type: ClusterIP
+```
+
+<!--
+but as I explained before, the IP address 10.96.0.10 has not been reserved; if other Services are created
+before or in parallel with dynamic allocation, there is a chance they can allocate this IP, hence,
+you will not be able to create the DNS Service because it will fail with a conflict error.
+-->
+但正如我之前解释的，IP 地址 10.96.0.10 没有被保留；
+如果其他 Service 在动态分配之前创建或与动态分配并行创建，则它们有可能分配此 IP 地址，
+因此，你将无法创建 DNS Service，因为它将因冲突错误而失败。
+
+<!--
+## How can you avoid Service ClusterIP conflicts? {#avoid-ClusterIP-conflict}
+-->
+## 如何避免 Service ClusterIP 冲突？ {#avoid-ClusterIP-conflict}
+
+<!--
+In Kubernetes 1.24, you can enable a new feature gate `ServiceIPStaticSubrange`.
+Turning this on allows you to use a different IP
+allocation strategy for Services, reducing the risk of collision.
+-->
+在 Kubernetes 1.24 中，你可以启用一个新的特性门控 `ServiceIPStaticSubrange`。
+启用此特性允许你为 Service 使用不同的 IP 分配策略，减少冲突的风险。
+
+<!--
+The `ClusterIP` range will be divided, based on the formula `min(max(16, cidrSize / 16), 256)`,
+described as _never less than 16 or more than 256 with a graduated step between them_.
+-->
+`ClusterIP` 范围将根据公式 `min(max(16, cidrSize / 16), 256)` 进行划分，
+该公式可描述为 “在不小于 16 且不大于 256 之间有一个步进量（Graduated Step）”。
+
+<!--
+Dynamic IP assignment will use the upper band by default, once this has been exhausted it will
+use the lower range. This will allow users to use static allocations on the lower band with a low
+risk of collision.
+-->
+分配默认使用上半段地址，当上半段地址耗尽后，将使用下半段地址范围。
+这将允许用户使用下半段地址中静态分配的地址并且降低冲突的风险。
+
+<!--
+Examples:
+-->
+举例：
+
+<!--
+#### Service IP CIDR block: 10.96.0.0/24
+-->
+#### Service IP CIDR 地址段： 10.96.0.0/24
+
+<!--
+Range Size: 2<sup>8</sup> - 2 = 254  
+Band Offset: `min(max(16, 256/16), 256)` = `min(16, 256)` = 16  
+Static band start: 10.96.0.1  
+Static band end: 10.96.0.16  
+Range end: 10.96.0.254   
+-->
+地址段大小：2<sup>8</sup> - 2 = 254  
+地址段偏移：`min(max(16, 256/16), 256)` = `min(16, 256)` = 16  
+静态地址段起点：10.96.0.1  
+静态地址段终点：10.96.0.16  
+地址范围终点：10.96.0.254
+
+<!--
+{{< mermaid >}}
+pie showData
+    title 10.96.0.0/24
+    "Static" : 16
+    "Dynamic" : 238
+{{< /mermaid >}}
+-->
+{{< mermaid >}}
+pie showData
+title 10.96.0.0/24
+"静态" : 16
+"动态" : 238
+{{< /mermaid >}}
+
+<!--
+#### Service IP CIDR block: 10.96.0.0/20
+-->
+#### Service IP CIDR 地址段： 10.96.0.0/20
+
+<!--
+Range Size: 2<sup>12</sup> - 2 = 4094  
+Band Offset: `min(max(16, 4096/16), 256)` = `min(256, 256)` = 256  
+Static band start: 10.96.0.1  
+Static band end: 10.96.1.0  
+Range end: 10.96.15.254  
+-->
+地址段大小：2<sup>12</sup> - 2 = 4094  
+地址段偏移：`min(max(16, 4096/16), 256)` = `min(256, 256)` = 256  
+静态地址段起点：10.96.0.1  
+静态地址段终点：10.96.1.0  
+地址范围终点：10.96.15.254
+
+<!--
+{{< mermaid >}}
+pie showData
+    title 10.96.0.0/20
+    "Static" : 256
+    "Dynamic" : 3838
+{{< /mermaid >}}
+-->
+{{< mermaid >}}
+pie showData
+title 10.96.0.0/20
+"静态" : 256
+"动态" : 3838
+{{< /mermaid >}}
+
+<!--
+#### Service IP CIDR block: 10.96.0.0/16
+-->
+#### Service IP CIDR 地址段： 10.96.0.0/16
+
+<!--
+Range Size: 2<sup>16</sup> - 2 = 65534  
+Band Offset: `min(max(16, 65536/16), 256)` = `min(4096, 256)` = 256  
+Static band start: 10.96.0.1  
+Static band ends: 10.96.1.0  
+Range end: 10.96.255.254  
+-->
+地址段大小：2<sup>16</sup> - 2 = 65534  
+地址段偏移：`min(max(16, 65536/16), 256)` = `min(4096, 256)` = 256  
+静态地址段起点：10.96.0.1  
+静态地址段终点：10.96.1.0  
+地址范围终点：10.96.255.254
+
+<!--
+{{< mermaid >}}
+pie showData
+    title 10.96.0.0/16
+    "Static" : 256
+    "Dynamic" : 65278
+{{< /mermaid >}}
+-->
+{{< mermaid >}}
+pie showData
+title 10.96.0.0/16
+"静态" : 256
+"动态" : 65278
+{{< /mermaid >}}
+
+<!--
+## Get involved with SIG Network
+-->
+## 加入 SIG Network
+
+<!--
+The current SIG-Network [KEPs](https://github.com/orgs/kubernetes/projects/10) and [issues](https://github.com/kubernetes/kubernetes/issues?q=is%3Aopen+is%3Aissue+label%3Asig%2Fnetwork) on GitHub illustrate the SIG’s areas of emphasis.
+-->
+当前 SIG-Network 在 GitHub 上的 [KEPs](https://github.com/orgs/kubernetes/projects/10) 和
+[issues](https://github.com/kubernetes/kubernetes/issues?q=is%3Aopen+is%3Aissue+label%3Asig%2Fnetwork)
+表明了该 SIG 的重点领域。
+
+<!--
+[SIG Network meetings](https://github.com/kubernetes/community/tree/master/sig-network) are a friendly, welcoming venue for you to connect with the community and share your ideas.
+Looking forward to hearing from you!
+-->
+[SIG Network 会议](https://github.com/kubernetes/community/tree/master/sig-network)是一个友好、热情的场所，
+你可以与社区联系并分享你的想法。期待你的回音！
diff --git a/content/zh-cn/blog/_posts/2022-05-25-contextual-logging/index.md b/content/zh-cn/blog/_posts/2022-05-25-contextual-logging/index.md
new file mode 100644
index 0000000000..c44b35fda5
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2022-05-25-contextual-logging/index.md
@@ -0,0 +1,445 @@
+---
+layout: blog
+title: "Kubernetes 1.24 中的上下文日志记录"
+date: 2022-05-25
+slug: contextual-logging
+---
+<!--
+layout: blog
+title: "Contextual Logging in Kubernetes 1.24"
+date: 2022-05-25
+slug: contextual-logging
+canonicalUrl: https://kubernetes.dev/blog/2022/05/25/contextual-logging/
+-->
+
+<!--
+ **Authors:** Patrick Ohly (Intel)
+-->
+**作者:** Patrick Ohly (Intel)
+
+<!--
+The [Structured Logging Working
+Group](https://github.com/kubernetes/community/blob/master/wg-structured-logging/README.md)
+has added new capabilities to the logging infrastructure in Kubernetes
+1.24. This blog post explains how developers can take advantage of those to
+make log output more useful and how they can get involved with improving Kubernetes.
+-->
+[结构化日志工作组](https://github.com/kubernetes/community/blob/master/wg-structured-logging/README.md)
+在 Kubernetes 1.24 中为日志基础设施添加了新功能。这篇博文解释了开发者如何利用这些功能使日志输出更有用，
+以及他们如何参与改进 Kubernetes。
+
+<!--
+## Structured logging
+-->
+## 结构化日志记录
+
+<!--
+The goal of [structured
+logging](https://github.com/kubernetes/enhancements/blob/master/keps/sig-instrumentation/1602-structured-logging/README.md)
+is to replace C-style formatting and the resulting opaque log strings with log
+entries that have a well-defined syntax for storing message and parameters
+separately, for example as a JSON struct.
+-->
+[结构化日志](https://github.com/kubernetes/enhancements/blob/master/keps/sig-instrumentation/1602-structured-logging/README.md)
+记录的目标是用具有明确定义的语法的日志条目来取代 C 风格的格式化和由此产生的不透明的日志字符串，用于分别存储消息和参数，例如，作为一个 JSON 结构。
+
+<!--
+When using the traditional klog text output format for structured log calls,
+strings were originally printed with `\n` escape sequences, except when
+embedded inside a struct. For structs, log entries could still span multiple
+lines, with no clean way to split the log stream into individual entries:
+-->
+当使用传统的 klog 文本输出格式进行结构化日志调用时，字符串最初使用 `\n` 转义序列打印，除非嵌入到结构中。
+对于结构体，日志条目仍然可以跨越多行，没有干净的方法将日志流拆分为单独的条目：
+
+```
+I1112 14:06:35.783529  328441 structured_logging.go:51] "using InfoS" longData={Name:long Data:Multiple
+lines
+with quite a bit
+of text. internal:0}
+I1112 14:06:35.783549  328441 structured_logging.go:52] "using InfoS with\nthe message across multiple lines" int=1 stringData="long: Multiple\nlines\nwith quite a bit\nof text." str="another value"
+```
+
+<!--
+Now, the `<` and `>` markers along with indentation are used to ensure that splitting at a
+klog header at the start of a line is reliable and the resulting output is human-readable:
+-->
+现在，`<` 和 `>` 标记以及缩进用于确保在行首的 klog 标头处拆分是可靠的，并且生成的输出是人类可读的：
+
+```
+I1126 10:31:50.378204  121736 structured_logging.go:59] "using InfoS" longData=<
+	{Name:long Data:Multiple
+	lines
+	with quite a bit
+	of text. internal:0}
+ >
+I1126 10:31:50.378228  121736 structured_logging.go:60] "using InfoS with\nthe message across multiple lines" int=1 stringData=<
+	long: Multiple
+	lines
+	with quite a bit
+	of text.
+ > str="another value"
+```
+
+<!--
+Note that the log message itself is printed with quoting. It is meant to be a
+fixed string that identifies a log entry, so newlines should be avoided there.
+-->
+请注意，日志消息本身带有引号。它是一个用于标识日志条目的固定字符串，因此应避免使用换行符。
+
+<!--
+Before Kubernetes 1.24, some log calls in kube-scheduler still used `klog.Info`
+for multi-line strings to avoid the unreadable output. Now all log calls have
+been updated to support structured logging.
+-->
+在 Kubernetes 1.24 之前，kube-scheduler 中的一些日志调用仍然使用 `klog.Info` 处理多行字符串，
+以避免不可读的输出。现在所有日志调用都已更新以支持结构化日志记录。
+
+<!--
+## Contextual logging
+-->
+## 上下文日志记录
+
+<!--
+[Contextual logging](https://github.com/kubernetes/enhancements/blob/master/keps/sig-instrumentation/3077-contextual-logging/README.md)
+is based on the [go-logr API](https://github.com/go-logr/logr#a-minimal-logging-api-for-go). The key
+idea is that libraries are passed a logger instance by their caller and use
+that for logging instead of accessing a global logger. The binary decides about
+the logging implementation, not the libraries. The go-logr API is designed
+around structured logging and supports attaching additional information to a
+logger.
+-->
+[上下文日志](https://github.com/kubernetes/enhancements/blob/master/keps/sig-instrumentation/3077-contextual-logging/README.md)
+基于 [go-logr API](https://github.com/go-logr/logr#a-minimal-logging-api-for-go)。
+关键的想法是，库被其调用者传递给一个记录器实例，并使用它来记录，而不是访问一个全局记录器。
+二进制文件决定了日志的实现，而不是库。go-logr API 是围绕着结构化的日志记录而设计的，并支持将额外的信息附加到一个记录器上。
+
+
+<!--
+This enables additional use cases:
+-->
+这使得以下用例成为可能：
+
+<!--
+- The caller can attach additional information to a logger:
+  - [`WithName`](https://pkg.go.dev/github.com/go-logr/logr#Logger.WithName) adds a prefix
+  - [`WithValues`](https://pkg.go.dev/github.com/go-logr/logr#Logger.WithValues) adds key/value pairs
+-->
+- 调用者可以将附加信息附加到记录器：
+  - [`WithName`](https://pkg.go.dev/github.com/go-logr/logr#Logger.WithName) 添加前缀
+  - [`WithValues`](https://pkg.go.dev/github.com/go-logr/logr#Logger.WithValues) 添加键/值对
+  
+  <!--
+  When passing this extended logger into a function and a function uses it
+  instead of the global logger, the additional information is
+  then included in all log entries, without having to modify the code that
+  generates the log entries. This is useful in highly parallel applications
+  where it can become hard to identify all log entries for a certain operation
+  because the output from different operations gets interleaved.
+  -->
+  当将此扩展记录器传递给函数并且函数使用它而不是全局记录器时，附加信息随后将包含在所有日志条目中，而无需修改生成日志条目的代码。
+  这在高度并行的应用程序中很有用，在这些应用程序中，由于不同操作的输出会交错，因此很难识别某个操作的所有日志条目。
+
+<!--
+- When running unit tests, log output can be associated with the current test.
+  Then when a test fails, only the log output of the failed test gets shown
+  by `go test`. That output can also be more verbose by default because it
+  will not get shown for successful tests. Tests can be run in parallel
+  without interleaving their output.
+-->
+- 运行单元测试时，可以将日志输出与当前测试关联起来。当测试失败时，`go test` 只显示失败测试的日志输出。
+默认情况下，该输出也可以更详细，因为它不会显示成功的测试。这些测试可以在不交错输出的情况下并行运行。
+
+<!--
+One of the design decisions for contextual logging was to allow attaching a
+logger as value to a `context.Context`. Since the logger encapsulates all
+aspects of the intended logging for the call, it is *part* of the context and
+not just *using* it. A practical advantage is that many APIs already have a
+`ctx` parameter or adding one has additional advantages, like being able to get
+rid of `context.TODO()` calls inside the functions.
+-->
+上下文日志记录的设计决策之一是允许将记录器作为值附加到 `context.Context`。
+由于记录器封装了调用的预期记录的所有方面，它是上下文的**部分**，而不仅仅是**使用**它。 
+一个实际的优势是许多 API 已经有一个 `ctx` 参数，或者添加一个具有其他优势，例如能够摆脱函数内部的 `context.TODO()` 调用。
+
+<!--
+Another decision was to not break compatibility with klog v2:
+-->
+另一个决定是不破坏与 klog v2 的兼容性：
+
+<!--
+- Libraries that use the traditional klog logging calls in a binary that has
+  set up contextual logging will work and log through the logging backend
+  chosen by the binary. However, such log output will not include the
+  additional information and will not work well in unit tests, so libraries
+  should be modified to support contextual logging. The [migration guide](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-instrumentation/migration-to-structured-logging.md)
+  for structured logging has been extended to also cover contextual logging.
+-->
+- 在已设置上下文日志记录的二进制文件中使用传统 klog 日志记录调用的库将通过二进制文件选择的日志记录后端工作和记录。
+  但是，这样的日志输出不会包含额外的信息，并且在单元测试中不能很好地工作，因此应该修改库以支持上下文日志记录。 
+  结构化日志记录的[迁移指南](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-instrumentation/migration-to-structured-logging.md)
+  已扩展为也涵盖上下文日志记录。
+
+<!--
+- When a library supports contextual logging and retrieves a logger from its
+  context, it will still work in a binary that does not initialize contextual
+  logging because it will get a logger that logs through klog.
+-->
+- 当一个库支持上下文日志并从其上下文中检索一个记录器时，它仍将在不初始化上下文日志的二进制文件中工作，
+  因为它将获得一个通过 klog 记录的记录器。
+
+<!--
+In Kubernetes 1.24, contextual logging is a new alpha feature with
+`ContextualLogging` as feature gate. When disabled (the default), the new klog
+API calls for contextual logging (see below) become no-ops to avoid performance
+or functional regressions.
+-->
+在 Kubernetes 1.24 中，上下文日志是一个新的 Alpha 特性，以 `ContextualLogging` 作为特性门控。
+禁用时（默认），用于上下文日志记录的新 klog API 调用（见下文）变为无操作，以避免性能或功能回归。
+
+<!--
+No Kubernetes component has been converted yet. An [example program](https://github.com/kubernetes/kubernetes/blob/v1.24.0-beta.0/staging/src/k8s.io/component-base/logs/example/cmd/logger.go)
+in the Kubernetes repository demonstrates how to enable contextual logging in a
+binary and how the output depends on the binary's parameters:
+-->
+尚未转换任何 Kubernetes 组件。 Kubernetes 存储库中的[示例程序](https://github.com/kubernetes/kubernetes/blob/v1.24.0-beta.0/staging/src/k8s.io/component-base/logs/example/cmd/logger.go)
+演示了如何在一个二进制文件中启用上下文日志记录，以及输出如何取决于该二进制文件的参数：
+
+```console
+$ cd $GOPATH/src/k8s.io/kubernetes/staging/src/k8s.io/component-base/logs/example/cmd/
+$ go run . --help
+...
+      --feature-gates mapStringBool  A set of key=value pairs that describe feature gates for alpha/experimental features. Options are:
+                                     AllAlpha=true|false (ALPHA - default=false)
+                                     AllBeta=true|false (BETA - default=false)
+                                     ContextualLogging=true|false (ALPHA - default=false)
+$ go run . --feature-gates ContextualLogging=true
+...
+I0404 18:00:02.916429  451895 logger.go:94] "example/myname: runtime" foo="bar" duration="1m0s"
+I0404 18:00:02.916447  451895 logger.go:95] "example: another runtime" foo="bar" duration="1m0s"
+```
+
+<!--
+The `example` prefix and `foo="bar"` were added by the caller of the function
+which logs the `runtime` message and `duration="1m0s"` value.
+-->
+`example` 前缀和 `foo="bar"` 是由记录 `runtime` 消息和 `duration="1m0s"` 值的函数的调用者添加的。
+
+<!--
+The sample code for klog includes an
+[example](https://github.com/kubernetes/klog/blob/v2.60.1/ktesting/example/example_test.go)
+for a unit test with per-test output.
+-->
+针对 klog 的示例代码包括一个单元测试[示例](https://github.com/kubernetes/klog/blob/v2.60.1/ktesting/example/example_test.go)
+以及每个测试的输出。
+<!--
+## klog enhancements
+
+### Contextual logging API
+
+The following calls manage the lookup of a logger:
+-->
+## klog 增强功能
+
+### 上下文日志 API
+
+以下调用管理记录器的查找：
+
+<!--
+[`FromContext`](https://pkg.go.dev/k8s.io/klog/v2#FromContext)
+: from a `context` parameter, with fallback to the global logger
+-->
+[`FromContext`](https://pkg.go.dev/k8s.io/klog/v2#FromContext)
+：来自 `context` 参数，回退到全局记录器
+
+<!--
+[`Background`](https://pkg.go.dev/k8s.io/klog/v2#Background)
+: the global fallback, with no intention to support contextual logging
+
+[`TODO`](https://pkg.go.dev/k8s.io/klog/v2#TODO)
+: the global fallback, but only as a temporary solution until the function gets extended to accept
+  a logger through its parameters
+-->
+[`Background`](https://pkg.go.dev/k8s.io/klog/v2#Background)
+：全局后备，无意支持上下文日志记录
+
+[`TODO`](https://pkg.go.dev/k8s.io/klog/v2#TODO)
+：全局回退，但仅作为一个临时解决方案，直到该函数得到扩展能够通过其参数接受一个记录器
+
+<!--
+[`SetLoggerWithOptions`](https://pkg.go.dev/k8s.io/klog/v2#SetLoggerWithOptions)
+: changes the fallback logger; when called with [`ContextualLogger(true)`](https://pkg.go.dev/k8s.io/klog/v2#ContextualLogger),
+  the logger is ready to be called directly, in which case logging will be done
+  without going through klog
+-->
+[`SetLoggerWithOptions`](https://pkg.go.dev/k8s.io/klog/v2#SetLoggerWithOptions)
+：更改后备记录器；当使用[`ContextualLogger(true)`](https://pkg.go.dev/k8s.io/klog/v2#ContextualLogger) 调用时,
+记录器已准备好被直接调用，在这种情况下，记录将无需执行通过 klog
+
+<!--
+To support the feature gate mechanism in Kubernetes, klog has wrapper calls for
+the corresponding go-logr calls and a global boolean controlling their behavior:
+-->
+为了支持 Kubernetes 中的特性门控机制，klog 对相应的 go-logr 调用进行了包装调用，并使用了一个全局布尔值来控制它们的行为：
+
+- [`LoggerWithName`](https://pkg.go.dev/k8s.io/klog/v2#LoggerWithName)
+- [`LoggerWithValues`](https://pkg.go.dev/k8s.io/klog/v2#LoggerWithValues)
+- [`NewContext`](https://pkg.go.dev/k8s.io/klog/v2#NewContext)
+- [`EnableContextualLogging`](https://pkg.go.dev/k8s.io/klog/v2#EnableContextualLogging)
+
+<!--
+Usage of those functions in Kubernetes code is enforced with a linter
+check. The klog default for contextual logging is to enable the functionality
+because it is considered stable in klog. It is only in Kubernetes binaries
+where that default gets overridden and (in some binaries) controlled via the
+`--feature-gate` parameter.
+-->
+在 Kubernetes 代码中使用这些函数是通过 linter 检查强制执行的。 
+上下文日志的 klog 默认是启用该功能，因为它在 klog 中被认为是稳定的。
+只有在 Kubernetes 二进制文件中，该默认值才会被覆盖，并且（在某些二进制文件中）通过 `--feature-gate` 参数进行控制。
+
+<!--
+### ktesting logger
+
+The new [ktesting](https://pkg.go.dev/k8s.io/klog/v2@v2.60.1/ktesting) package
+implements logging through `testing.T` using klog's text output format. It has
+a [single API call](https://pkg.go.dev/k8s.io/klog/v2@v2.60.1/ktesting#NewTestContext) for
+instrumenting a test case and [support for command line flags](https://pkg.go.dev/k8s.io/klog/v2@v2.60.1/ktesting/init).
+-->
+### ktesting 记录器
+
+新的 [ktesting](https://pkg.go.dev/k8s.io/klog/v2@v2.60.1/ktesting)
+包使用 klog 的文本输出格式通过 `testing.T` 实现日志记录。它有一个 [single API call](https://pkg.go.dev/k8s.io/klog/v2@v2.60.1/ktesting#NewTestContext)
+用于检测测试用例和[支持命令行标志](https://pkg.go.dev/k8s.io/klog/v2@v2.60.1/ktesting/init)。
+
+<!--
+### klogr
+
+[`klog/klogr`](https://pkg.go.dev/k8s.io/klog/v2@v2.60.1/klogr) continues to be
+supported and it's default behavior is unchanged: it formats structured log
+entries using its own, custom format and prints the result via klog.
+-->
+### klogr
+
+[`klog/klogr`](https://pkg.go.dev/k8s.io/klog/v2@v2.60.1/klogr) 继续受支持，默认行为不变：
+它使用其格式化结构化日志条目拥有自己的自定义格式并通过 klog 打印结果。
+
+<!--
+However, this usage is discouraged because that format is neither
+machine-readable (in contrast to real JSON output as produced by zapr, the
+go-logr implementation used by Kubernetes) nor human-friendly (in contrast to
+the klog text format).
+-->
+但是，不鼓励这种用法，因为这种格式既不是机器可读的（与 zapr 生成的真实 JSON 输出相比，Kubernetes 使用的 go-logr 实现）也不是人类友好的（与 klog 文本格式相比）。
+
+<!--
+Instead, a klogr instance should be created with
+[`WithFormat(FormatKlog)`](https://pkg.go.dev/k8s.io/klog/v2@v2.60.1/klogr#WithFormat)
+which chooses the klog text format. A simpler construction method with the same
+result is the new
+[`klog.NewKlogr`](https://pkg.go.dev/k8s.io/klog/v2#NewKlogr). That is the
+logger that klog returns as fallback when nothing else is configured.
+-->
+相反，应该使用选择 klog 文本格式的 [`WithFormat(FormatKlog)`](https://pkg.go.dev/k8s.io/klog/v2@v2.60.1/klogr#WithFormat)
+创建一个 klogr 实例。 一个更简单但结果相同的构造方法是新的 [`klog.NewKlogr`](https://pkg.go.dev/k8s.io/klog/v2#NewKlogr)。 
+这是 klog 在未配置任何其他内容时作为后备返回的记录器。
+
+
+<!--
+### Reusable output test
+-->
+### 可重用输出测试
+
+<!--
+A lot of go-logr implementations have very similar unit tests where they check
+the result of certain log calls. If a developer didn't know about certain
+caveats like for example a `String` function that panics when called, then it
+is likely that both the handling of such caveats and the unit test are missing.
+-->
+许多 go-logr 实现都有非常相似的单元测试，它们检查某些日志调用的结果。
+如果开发人员不知道某些警告，例如调用时会出现恐慌的 `String` 函数，那么很可能缺少对此类警告的处理和单元测试。
+
+<!--
+[`klog.test`](https://pkg.go.dev/k8s.io/klog/v2@v2.60.1/test) is a reusable set
+of test cases that can be applied to a go-logr implementation.
+-->
+[`klog.test`](https://pkg.go.dev/k8s.io/klog/v2@v2.60.1/test) 是一组可重用的测试用例，可应用于 go-logr 实现。
+
+<!--
+### Output flushing
+
+klog used to start a goroutine unconditionally during `init` which flushed
+buffered data at a hard-coded interval. Now that goroutine is only started on
+demand (i.e. when writing to files with buffering) and can be controlled with
+[`StopFlushDaemon`](https://pkg.go.dev/k8s.io/klog/v2#StopFlushDaemon) and
+[`StartFlushDaemon`](https://pkg.go.dev/k8s.io/klog/v2#StartFlushDaemon).
+-->
+### 输出刷新
+
+klog 用于在 `init` 期间无条件地启动一个 goroutine，它以硬编码的时间间隔刷新缓冲数据。
+现在 goroutine 仅按需启动（即当写入具有缓冲的文件时）并且可以使用 [`StopFlushDaemon`](https://pkg.go.dev/k8s.io/klog/v2#StopFlushDaemon) 
+和 [`StartFlushDaemon`](https://pkg.go.dev/k8s.io/klog/v2#StartFlushDaemon)。
+
+<!--
+When a go-logr implementation buffers data, flushing that data can be
+integrated into [`klog.Flush`](https://pkg.go.dev/k8s.io/klog/v2#Flush) by
+registering the logger with the
+[`FlushLogger`](https://pkg.go.dev/k8s.io/klog/v2#FlushLogger) option.
+-->
+当 go-logr 实现缓冲数据时，可以通过使用 [`FlushLogger`](https://pkg.go.dev/k8s.io/klog/v2#FlushLogger) 
+选项注册记录器来将刷新该数据集成到 [`klog.Flush`](https://pkg.go.dev/k8s.io/klog/v2#Flush) 中。
+
+<!--
+### Various other changes
+
+For a description of all other enhancements see in the [release notes](https://github.com/kubernetes/klog/releases).
+-->
+### 其他各种变化
+
+有关所有其他增强功能的描述，请参见 [发行说明](https://github.com/kubernetes/klog/releases)。
+
+<!--
+## logcheck
+-->
+## 日志检查
+
+<!--
+Originally designed as a linter for structured log calls, the
+ [`logcheck`](https://github.com/kubernetes/klog/tree/788efcdee1e9be0bfbe5b076343d447314f2377e/hack/tools/logcheck)
+tool has been enhanced to support also contextual logging and traditional klog
+log calls. These enhanced checks already found bugs in Kubernetes, like calling
+`klog.Info` instead of `klog.Infof` with a format string and parameters.
+-->
+最初设计为结构化日志调用的 linter，[`logcheck`] 工具已得到增强，还支持上下文日志记录和传统的 klog 日志调用。 
+这些增强检查已经在 Kubernetes 中发现了错误，例如使用格式字符串和参数调用 `klog.Info` 而不是 `klog.Infof`。
+
+<!--
+It can be included as a plugin in a `golangci-lint` invocation, which is how
+[Kubernetes uses it now](https://github.com/kubernetes/kubernetes/commit/17e3c555c5115f8c9176bae10ba45baa04d23a7b),
+or get invoked stand-alone.
+-->
+它可以作为插件包含在 `golangci-lint` 调用中，这就是 
+[Kubernetes 现在使用它的方式](https://github.com/kubernetes/kubernetes/commit/17e3c555c5115f8c9176bae10ba45baa04d23a7b)，或者单独调用。
+
+<!--
+We are in the process of [moving the tool](https://github.com/kubernetes/klog/issues/312) into a new repository because it isn't
+really related to klog and its releases should be tracked and tagged properly.
+-->
+我们正在 [移动工具](https://github.com/kubernetes/klog/issues/312)
+到一个新的存储库中，因为它与 klog 没有真正的关系，并且应该正确跟踪和标记它的发布。
+
+<!--
+## Next steps
+
+The [Structured Logging WG](https://github.com/kubernetes/community/tree/master/wg-structured-logging)
+is always looking for new contributors. The migration
+away from C-style logging is now going to target structured, contextual logging
+in one step to reduce the overall code churn and number of PRs. Changing log
+calls is good first contribution to Kubernetes and an opportunity to get to
+know code in various different areas.
+-->
+## 下一步
+
+[Structured Logging WG](https://github.com/kubernetes/community/tree/master/wg-structured-logging)
+一直在寻找新的贡献者。 从 C 风格的日志记录迁移现在将一步一步地针对结构化的上下文日志记录，
+以减少整体代码流失和 PR 数量。 更改日志调用是对 Kubernetes 的良好贡献，也是了解各个不同领域代码的机会。
\ No newline at end of file
diff --git a/content/zh-cn/blog/_posts/2022-05-27-maxunavailable-for-statefulset.md b/content/zh-cn/blog/_posts/2022-05-27-maxunavailable-for-statefulset.md
new file mode 100644
index 0000000000..a0565b93f8
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2022-05-27-maxunavailable-for-statefulset.md
@@ -0,0 +1,239 @@
+---
+layout: blog
+title: 'Kubernetes 1.24: StatefulSet 的最大不可用副本数'
+date: 2022-05-27
+slug: maxunavailable-for-statefulset
+---
+<!--
+layout: blog
+title: 'Kubernetes 1.24: Maximum Unavailable Replicas for StatefulSet'
+date: 2022-05-27
+slug: maxunavailable-for-statefulset
+
+**Author:** Mayank Kumar (Salesforce)
+-->
+**作者：** Mayank Kumar (Salesforce)
+
+<!--
+Kubernetes [StatefulSets](/docs/concepts/workloads/controllers/statefulset/), since their introduction in 
+1.5 and becoming stable in 1.9, have been widely used to run stateful applications. They provide stable pod identity, persistent
+per pod storage and ordered graceful deployment, scaling and rolling updates. You can think of StatefulSet as the atomic building
+block for running complex stateful applications. As the use of Kubernetes has grown, so has the number of scenarios requiring
+StatefulSets. Many of these scenarios, require faster rolling updates than the currently supported one-pod-at-a-time updates, in the 
+case where you're using the `OrderedReady` Pod management policy for a StatefulSet.
+-->
+Kubernetes [StatefulSet](/zh-cn/docs/concepts/workloads/controllers/statefulset/)，
+自 1.5 版本中引入并在 1.9 版本中变得稳定以来，已被广泛用于运行有状态应用。它提供固定的 Pod 身份标识、
+每个 Pod 的持久存储以及 Pod 的有序部署、扩缩容和滚动更新功能。你可以将 StatefulSet
+视为运行复杂有状态应用程序的原子构建块。随着 Kubernetes 的使用增多，需要 StatefulSet 的场景也越来越多。
+当 StatefulSet 的 Pod 管理策略为 `OrderedReady` 时，其中许多场景需要比当前所支持的一次一个 Pod
+的更新更快的滚动更新。
+
+<!--
+Here are some examples:
+
+-  I am using a StatefulSet to orchestrate a multi-instance, cache based application where the size of the cache is large. The cache 
+   starts cold and requires some siginificant amount of time before the container can start. There could be more initial startup tasks
+   that are required. A RollingUpdate on this StatefulSet would take a lot of time before the application is fully updated. If the 
+   StatefulSet supported updating more than one pod at a time, it would result in a much faster update.
+-->
+这里有些例子：
+
+- 我使用 StatefulSet 来编排一个基于缓存的多实例应用程序，其中缓存的规格很大。
+  缓存冷启动，需要相当长的时间才能启动容器。所需要的初始启动任务有很多。在应用程序完全更新之前，
+  此 StatefulSet 上的 RollingUpdate 将花费大量时间。如果 StatefulSet 支持一次更新多个 Pod，
+  那么更新速度会快得多。
+
+<!--
+- My stateful application is composed of leaders and followers or one writer and multiple readers. I have multiple readers or 
+   followers and my application can tolerate multiple pods going down at the same time. I want to update this application more than
+   one pod at a time so that i get the new updates rolled out quickly, especially if the number of instances of my application are
+   large. Note that my application still requires unique identity per pod.
+-->
+- 我的有状态应用程序由 leader 和 follower 或者一个 writer 和多个 reader 组成。
+  我有多个 reader 或 follower，并且我的应用程序可以容忍多个 Pod 同时出现故障。
+  我想一次更新这个应用程序的多个 Pod，特别是当我的应用程序实例数量很多时，这样我就能快速推出新的更新。
+  注意，我的应用程序仍然需要每个 Pod 具有唯一标识。
+
+<!--
+In order to support such scenarios, Kubernetes 1.24 includes a new alpha feature to help. Before you can use the new feature you must
+enable the `MaxUnavailableStatefulSet` feature flag. Once you enable that, you can specify a new field called `maxUnavailable`, part 
+of the `spec` for a StatefulSet. For example: 
+-->
+为了支持这样的场景，Kubernetes 1.24 提供了一个新的 alpha 特性。在使用新特性之前，必须启用
+`MaxUnavailableStatefulSet` 特性标志。一旦启用，就可以指定一个名为 `maxUnavailable` 的新字段，
+这是 StatefulSet `spec` 的一部分。例如：
+
+```
+apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: web
+  namespace: default
+spec:
+  podManagementPolicy: OrderedReady  # 你必须设为 OrderedReady
+  replicas: 5
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      - image: k8s.gcr.io/nginx-slim:0.8
+        imagePullPolicy: IfNotPresent
+        name: nginx
+  updateStrategy:
+    rollingUpdate:
+      maxUnavailable: 2 # 这是 alpha 特性的字段，默认值是 1
+      partition: 0
+    type: RollingUpdate
+```
+
+<!--
+If you enable the new feature and you don't specify a value for `maxUnavailable` in a StatefulSet, Kubernetes applies a default
+`maxUnavailable: 1`. This matches the behavior you would see if you don't enable the new feature.
+-->
+如果你启用了新特性，但没有在 StatefulSet 中指定 `maxUnavailable` 的值，Kubernetes
+会默认设置 `maxUnavailable: 1`。这与你不启用新特性时看到的行为是一致的。
+
+<!--
+I'll run through a scenario based on that example manifest to demonstrate how this feature works. I will deploy a StatefulSet that
+has 5 replicas, with `maxUnavailable` set to 2 and `partition` set to 0.
+-->
+我将基于该示例清单做场景演练，以演示此特性是如何工作的。我将部署一个有 5 个副本的 StatefulSet，
+`maxUnavailable` 设置为 2 并将 `partition` 设置为 0。
+
+<!--
+I can trigger a rolling update by changing the image to `k8s.gcr.io/nginx-slim:0.9`. Once I initiate the rolling update, I can 
+watch the pods update 2 at a time as the current value of maxUnavailable is 2. The below output shows a span of time and is not 
+complete.  The maxUnavailable can be an absolute number (for example, 2) or a percentage of desired Pods (for example, 10%). The 
+absolute number is calculated from percentage by rounding down. 
+-->
+我可以通过将镜像更改为 `k8s.gcr.io/nginx-slim:0.9` 来触发滚动更新。一旦开始滚动更新，
+就可以看到一次更新 2 个 Pod，因为 `maxUnavailable` 的当前值是 2。
+下面的输出显示了一个时间段内的结果，但并不是完整过程。`maxUnavailable` 可以是绝对数值（例如 2）或所需 Pod
+的百分比（例如 10%），绝对数是通过百分比计算结果进行四舍五入得出的。
+
+```
+kubectl get pods --watch 
+```
+
+```
+NAME    READY   STATUS    RESTARTS   AGE
+web-0   1/1     Running   0          85s
+web-1   1/1     Running   0          2m6s
+web-2   1/1     Running   0          106s
+web-3   1/1     Running   0          2m47s
+web-4   1/1     Running   0          2m27s
+web-4   1/1     Terminating   0          5m43s ----> start terminating 4
+web-3   1/1     Terminating   0          6m3s  ----> start terminating 3
+web-3   0/1     Terminating   0          6m7s
+web-3   0/1     Pending       0          0s
+web-3   0/1     Pending       0          0s
+web-4   0/1     Terminating   0          5m48s
+web-4   0/1     Terminating   0          5m48s
+web-3   0/1     ContainerCreating   0          2s
+web-3   1/1     Running             0          2s
+web-4   0/1     Pending             0          0s
+web-4   0/1     Pending             0          0s
+web-4   0/1     ContainerCreating   0          0s
+web-4   1/1     Running             0          1s
+web-2   1/1     Terminating         0          5m46s ----> start terminating 2 (only after both 4 and 3 are running)
+web-1   1/1     Terminating         0          6m6s  ----> start terminating 1
+web-2   0/1     Terminating         0          5m47s
+web-1   0/1     Terminating         0          6m7s
+web-1   0/1     Pending             0          0s
+web-1   0/1     Pending             0          0s
+web-1   0/1     ContainerCreating   0          1s
+web-1   1/1     Running             0          2s
+web-2   0/1     Pending             0          0s
+web-2   0/1     Pending             0          0s
+web-2   0/1     ContainerCreating   0          0s
+web-2   1/1     Running             0          1s
+web-0   1/1     Terminating         0          6m6s ----> start terminating 0 (only after 2 and 1 are running)
+web-0   0/1     Terminating         0          6m7s
+web-0   0/1     Pending             0          0s
+web-0   0/1     Pending             0          0s
+web-0   0/1     ContainerCreating   0          0s
+web-0   1/1     Running             0          1s
+```
+<!--
+Note that as soon as the rolling update starts, both 4 and 3 (the two highest ordinal pods) start terminating at the same time. Pods 
+with ordinal 4 and 3 may become ready at their own pace. As soon as both pods 4 and 3 are ready, pods 2 and 1 start terminating at the
+same time. When pods 2 and 1 are both running and ready, pod 0 starts terminating. 
+-->
+注意，滚动更新一开始，4 和 3（两个最高序号的 Pod）同时开始进入 `Terminating` 状态。
+Pod 4 和 3 会按照自身节奏进行更新。一旦 Pod 4 和 3 更新完毕后，Pod 2 和 1 会同时进入
+`Terminating` 状态。当 Pod 2 和 1 都准备完毕处于 `Running` 状态时，Pod 0 开始进入 `Terminating` 状态
+
+<!--
+In Kubernetes, updates to StatefulSets follow a strict ordering when updating Pods. In this example, the update starts at replica 4, then
+replica 3, then replica 2, and so on, one pod at a time. When going one pod at a time, its not possible for 3 to be running and ready 
+before 4. When `maxUnavailable` is more than 1 (in the example scenario I set `maxUnavailable` to 2), it is possible that replica 3 becomes 
+ready and running before replica 4 is ready&mdash;and that is ok. If you're a developer and you set `maxUnavailable` to more than 1, you should 
+know that this outcome is possible and you must ensure that your application is able to handle such ordering issues that occur
+if any. When you set `maxUnavailable` greater than 1, the ordering is guaranteed in between each batch of pods being updated. That guarantee
+means that pods in update batch 2 (replicas 2 and 1) cannot start updating until the pods from batch 0 (replicas 4 and 3) are ready.
+-->
+在 Kubernetes 中，StatefulSet 更新 Pod 时遵循严格的顺序。在此示例中，更新从副本 4 开始，
+然后是副本 3，然后是副本 2，以此类推，一次更新一个 Pod。当一次只更新一个 Pod 时，
+副本 3 不可能在副本 4 之前准备好进入 `Running` 状态。当 `maxUnavailable` 值
+大于 1 时（在示例场景中我设置 `maxUnavailable` 值为 2），副本 3 可能在副本 4 之前准备好并运行，
+这是没问题的。如果你是开发人员并且设置 `maxUnavailable` 值大于 1，你应该知道可能出现这种情况，
+并且如果有这种情况的话，你必须确保你的应用程序能够处理发生的此类顺序问题。当你设置 `maxUnavailable`
+值大于 1 时，更新 Pod 的批次之间会保证顺序。该保证意味着在批次 0（副本 4 和 3）中的 Pod
+准备好之前，更新批次 2（副本 2 和 1）中的 Pod 无法开始更新。
+
+<!--
+Although Kubernetes refers to these as _replicas_, your stateful application may have a different view and each pod of the StatefulSet may
+be holding completely different data than other pods. The important thing here is that updates to StatefulSets happen in batches, and you can
+now have a batch size larger than 1 (as an alpha feature).
+-->
+尽管 Kubernetes 将这些称为**副本**，但你的有状态应用程序可能不这样理解，StatefulSet 的每个
+Pod 可能持有与其他 Pod 完全不同的数据。重要的是，StatefulSet 的更新是分批进行的，
+你现在让批次大小大于 1（作为 alpha 特性）。
+
+<!--
+Also note, that the above behavior is with `podManagementPolicy: OrderedReady`. If you defined a StatefulSet as `podManagementPolicy: Parallel`,
+not only `maxUnavailable` number of replicas are terminated at the same time; `maxUnavailable` number of replicas start in `ContainerCreating`
+phase at the same time as well. This is called bursting.
+-->
+还要注意，上面的行为采用的 Pod 管理策略是 `podManagementPolicy: OrderedReady`。
+如果你的 StatefulSet 的 Pod 管理策略是 `podManagementPolicy: Parallel`，
+那么不仅是 `maxUnavailable` 数量的副本同时被终止，还会导致 `maxUnavailable` 数量的副本同时在
+`ContainerCreating` 阶段。这就是所谓的突发（Bursting）。
+
+<!--
+So, now you may have a lot of questions about:-
+- What is the behavior when you set `podManagementPolicy: Parallel`?
+- What is the behavior when `partition` to a value other than `0`?
+-->
+因此，现在你可能有很多关于以下方面的问题：
+- 当设置 `podManagementPolicy:Parallel` 时，会产生什么行为？
+- 将 `partition` 设置为非 `0` 值时会发生什么？
+
+<!--
+It might be better to try and see it for yourself. This is an alpha feature, and the Kubernetes contributors are looking for feedback on this feature. Did
+this help you achieve your stateful scenarios Did you find a bug or do you think the behavior as implemented is not intuitive or can
+break applications or catch them by surprise? Please [open an issue](https://github.com/kubernetes/kubernetes/issues) to let us know.
+-->
+自己试试看可能会更好。这是一个 alpha 特性，Kubernetes 贡献者正在寻找有关此特性的反馈。
+这是否有助于你实现有状态的场景？你是否发现了一个 bug，或者你认为实现的行为不直观易懂，
+或者它可能会破坏应用程序或让他们感到吃惊？请[登记一个 issue](https://github.com/kubernetes/kubernetes/issues)
+告知我们。
+
+<!--
+## Further reading and next steps {#next-steps}
+- [Maximum unavailable Pods](/docs/concepts/workloads/controllers/statefulset/#maximum-unavailable-pods)
+- [KEP for MaxUnavailable for StatefulSet](https://github.com/kubernetes/enhancements/tree/master/keps/sig-apps/961-maxunavailable-for-statefulset)
+- [Implementation](https://github.com/kubernetes/kubernetes/pull/82162/files)
+- [Enhancement Tracking Issue](https://github.com/kubernetes/enhancements/issues/961)
+-->
+## 进一步阅读和后续步骤 {#next-steps}
+- [最多不可用 Pod 数](/zh-cn/docs/concepts/workloads/controllers/statefulset/#maximum-unavailable-pods)
+- [KEP for MaxUnavailable for StatefulSet](https://github.com/kubernetes/enhancements/tree/master/keps/sig-apps/961-maxunavailable-for-statefulset)
+- [代码实现](https://github.com/kubernetes/kubernetes/pull/82162/files)
+- [增强跟踪 Issue](https://github.com/kubernetes/enhancements/issues/961)
\ No newline at end of file
diff --git a/content/zh-cn/blog/_posts/2022-06-01-annual-report-2021.md b/content/zh-cn/blog/_posts/2022-06-01-annual-report-2021.md
new file mode 100644
index 0000000000..412fabe2fe
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2022-06-01-annual-report-2021.md
@@ -0,0 +1,51 @@
+---
+layout: blog
+title: "2021 年度总结报告"
+date: 2022-06-01
+slug: annual-report-summary-2021
+---
+<!--
+layout: blog
+title: "Annual Report Summary 2021"
+date: 2022-06-01
+slug: annual-report-summary-2021
+-->
+
+<!--
+**Author:** Paris Pittman (Steering Committee)
+-->
+**作者：** Paris Pittman（指导委员会）
+
+<!--
+Last year, we published our first [Annual Report Summary](/blog/2021/06/28/announcing-kubernetes-community-group-annual-reports/) for 2020 and it's already time for our second edition!
+
+[2021 Annual Report Summary](https://www.cncf.io/reports/kubernetes-annual-report-2021/)
+-->
+去年，我们发布了第一期
+[2020 年度总结报告](/blog/2021/06/28/announcing-kubernetes-community-group-annual-reports/)，
+现在已经是时候发布第二期了！
+
+[2021 年度总结报告](https://www.cncf.io/reports/kubernetes-annual-report-2021/)
+
+<!--
+This summary reflects the work that has been done in 2021 and the initiatives on deck for the rest of 2022. Please forward to organizations and indidviduals participating in upstream activities, planning cloud native strategies, and/or those looking to help out. To find a specific community group's complete report, go to the [kubernetes/community repo](https://github.com/kubernetes/community) under the groups folder. Example: [sig-api-machinery/annual-report-2021.md](https://github.com/kubernetes/community/blob/master/sig-api-machinery/annual-report-2021.md)
+-->
+这份总结反映了 2021 年已完成的工作以及 2022 下半年置于台面上的倡议。
+请将这份总结转发给正参与上游活动、计划云原生战略和寻求帮助的那些组织和个人。
+若要查阅特定社区小组的完整报告，请访问
+[kubernetes/community 仓库](https://github.com/kubernetes/community)查找各小组的文件夹。例如：
+[sig-api-machinery/annual-report-2021.md](https://github.com/kubernetes/community/blob/master/sig-api-machinery/annual-report-2021.md)
+
+<!--
+You’ll see that this report summary is a growth area in itself. It takes us roughly 6 months to prepare and execute, which isn’t helpful or valuable to anyone as a fast moving project with short and long term needs. How can we make this better? Provide your feedback here: https://github.com/kubernetes/steering/issues/242
+
+Reference:
+[Annual Report Documentation](https://github.com/kubernetes/community/blob/master/committee-steering/governance/annual-reports.md)
+-->
+你将看到这份总结报告本身涵盖的领域在增长。我们准备和制作这份报告大约用了 6 个月的时间。
+作为一个随着长短期需求而快速发展的项目，这么长的制作周期对任何人来说可能帮助都不大，
+报告的价值也有所缩水。我等苦思无良策，请诸君不吝赐教：
+https://github.com/kubernetes/steering/issues/242
+
+参考：
+[年度报告文献](https://github.com/kubernetes/community/blob/master/committee-steering/governance/annual-reports.md)
diff --git a/content/zh-cn/blog/_posts/2022-07-13-gateway-api-in-beta.md b/content/zh-cn/blog/_posts/2022-07-13-gateway-api-in-beta.md
new file mode 100644
index 0000000000..570b55f301
--- /dev/null
+++ b/content/zh-cn/blog/_posts/2022-07-13-gateway-api-in-beta.md
@@ -0,0 +1,334 @@
+---
+layout: blog
+title: Kubernetes Gateway API 进入 Beta 阶段
+date: 2022-07-13
+slug: gateway-api-graduates-to-beta
+---
+<!-- 
+layout: blog
+title: Kubernetes Gateway API Graduates to Beta
+date: 2022-07-13
+slug: gateway-api-graduates-to-beta
+canonicalUrl: https://gateway-api.sigs.k8s.io/blog/2022/graduating-to-beta/ 
+-->
+
+<!-- 
+**Authors:** Shane Utt (Kong), Rob Scott (Google), Nick Young (VMware), Jeff Apple (HashiCorp) 
+-->
+**作者：** Shane Utt (Kong)、Rob Scott (Google)、Nick Young (VMware)、Jeff Apple (HashiCorp)
+
+<!-- 
+We are excited to announce the v0.5.0 release of Gateway API. For the first
+time, several of our most important Gateway API resources are graduating to
+beta. Additionally, we are starting a new initiative to explore how Gateway API
+can be used for mesh and introducing new experimental concepts such as URL
+rewrites. We'll cover all of this and more below. 
+-->
+我们很高兴地宣布 Gateway API 的 v0.5.0 版本发布。
+我们最重要的几个 Gateway API 资源首次进入 Beta 阶段。
+此外，我们正在启动一项新的倡议，探索如何将 Gateway API 用于网格，还引入了 URL 重写等新的实验性概念。
+下文涵盖了这部分内容和更多说明。
+
+<!-- 
+## What is Gateway API? 
+-->
+## 什么是 Gateway API？
+
+<!-- 
+Gateway API is a collection of resources centered around [Gateway][gw] resources
+(which represent the underlying network gateways / proxy servers) to enable
+robust Kubernetes service networking through expressive, extensible and
+role-oriented interfaces that are implemented by many vendors and have broad
+industry support. 
+-->
+Gateway API 是以 [Gateway][gw] 资源（代表底层网络网关/代理服务器）为中心的资源集合，
+Kubernetes 服务网络的健壮性得益于众多供应商实现、得到广泛行业支持且极具表达力、可扩展和面向角色的各个接口。
+
+<!-- 
+Originally conceived as a successor to the well known [Ingress][ing] API, the
+benefits of Gateway API include (but are not limited to) explicit support for
+many commonly used networking protocols (e.g. `HTTP`, `TLS`, `TCP`, `UDP`) as
+well as tightly integrated support for Transport Layer Security (TLS). The
+`Gateway` resource in particular enables implementations to manage the lifecycle
+of network gateways as a Kubernetes API. 
+-->
+Gateway API 最初被认为是知名 [Ingress][ing] API 的继任者，
+Gateway API 的好处包括（但不限于）对许多常用网络协议的显式支持
+（例如 `HTTP`、`TLS`、`TCP `、`UDP`) 以及对传输层安全 (TLS) 的紧密集成支持。
+特别是 `Gateway` 资源能够实现作为 Kubernetes API 来管理网络网关的生命周期。
+
+<!-- 
+If you're an end-user interested in some of the benefits of Gateway API we
+invite you to jump in and find an implementation that suits you. At the time of
+this release there are over a dozen [implementations][impl] for popular API
+gateways and service meshes and guides are available to start exploring quickly. 
+-->
+如果你是对 Gateway API 的某些优势感兴趣的终端用户，我们邀请你加入并找到适合你的实现方式。
+值此版本发布之时，对于流行的 API 网关和服务网格有十多种[实现][impl]，还提供了操作指南便于快速开始探索。
+
+<!-- 
+[gw]:https://gateway-api.sigs.k8s.io/api-types/gateway/
+[ing]:https://kubernetes.io/docs/reference/kubernetes-api/service-resources/ingress-v1/
+[impl]:https://gateway-api.sigs.k8s.io/implementations/ 
+-->
+[gw]:https://gateway-api.sigs.k8s.io/api-types/gateway/
+[ing]:/zh-cn/docs/reference/kubernetes-api/service-resources/ingress-v1/
+[impl]:https://gateway-api.sigs.k8s.io/implementations/
+
+<!-- 
+### Getting started 
+-->
+### 入门
+
+<!-- 
+Gateway API is an official Kubernetes API like
+[Ingress](https://kubernetes.io/docs/concepts/services-networking/ingress/).
+Gateway API represents a superset of Ingress functionality, enabling more
+advanced concepts. Similar to Ingress, there is no default implementation of
+Gateway API built into Kubernetes. Instead, there are many different
+[implementations][impl] available, providing significant choice in terms of underlying
+technologies while providing a consistent and portable experience. 
+-->
+Gateway API 是一个类似 [Ingress](/zh-cn/docs/concepts/services-networking/ingress/)
+的正式 Kubernetes API。Gateway API 代表了 Ingress 功能的一个父集，使得一些更高级的概念成为可能。
+与 Ingress 类似，Kubernetes 中没有内置 Gateway API 的默认实现。
+相反，有许多不同的[实现][impl]可用，在提供一致且可移植体验的同时，还在底层技术方面提供了重要的选择。
+
+<!-- 
+Take a look at the [API concepts documentation][concepts] and check out some of
+the [Guides][guides] to start familiarizing yourself with the APIs and how they
+work. When you're ready for a practical application open the [implementations
+page][impl] and select an implementation that belongs to an existing technology
+you may already be familiar with or the one your cluster provider uses as a
+default (if applicable). Gateway API is a [Custom Resource Definition
+(CRD)][crd] based API so you'll need to [install the CRDs][install-crds] onto a
+cluster to use the API. 
+-->
+查看 [API 概念文档][concepts] 并查阅一些[指南][guides]以开始熟悉这些 API 及其工作方式。
+当你准备好一个实用的应用程序时，
+请打开[实现页面][impl]并选择属于你可能已经熟悉的现有技术或集群提供商默认使用的技术（如果适用）的实现。
+Gateway API 是一个基于 [CRD][crd] 的 API，因此你将需要[安装 CRD][install-crds] 到集群上才能使用该 API。
+
+<!-- 
+If you're specifically interested in helping to contribute to Gateway API, we
+would love to have you! Please feel free to [open a new issue][issue] on the
+repository, or join in the [discussions][disc]. Also check out the [community
+page][community] which includes links to the Slack channel and community meetings. 
+-->
+如果你对 Gateway API 做贡献特别有兴趣，我们非常欢迎你的加入！
+你可以随时在仓库上[提一个新的 issue][issue]，或[加入讨论][disc]。
+另请查阅[社区页面][community]以了解 Slack 频道和社区会议的链接。
+
+<!-- 
+[crd]:https://kubernetes.io/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/
+[concepts]:https://gateway-api.sigs.k8s.io/concepts/api-overview/
+[guides]:https://gateway-api.sigs.k8s.io/guides/getting-started/
+[impl]:https://gateway-api.sigs.k8s.io/implementations/
+[install-crds]:https://gateway-api.sigs.k8s.io/guides/getting-started/#install-the-crds
+[issue]:https://github.com/kubernetes-sigs/gateway-api/issues/new/choose
+[disc]:https://github.com/kubernetes-sigs/gateway-api/discussions
+[community]:https://gateway-api.sigs.k8s.io/contributing/community/ 
+-->
+[crd]:/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/
+[concepts]:https://gateway-api.sigs.k8s.io/concepts/api-overview/
+[guides]:https://gateway-api.sigs.k8s.io/guides/getting-started/
+[impl]:https://gateway-api.sigs.k8s.io/implementations/
+[install-crds]:https://gateway-api.sigs.k8s.io/guides/getting-started/#install-the-crds
+[issue]:https://github.com/kubernetes-sigs/gateway-api/issues/new/choose
+[disc]:https://github.com/kubernetes-sigs/gateway-api/discussions
+[community]:https://gateway-api.sigs.k8s.io/contributing/community/
+
+<!-- 
+## Release highlights
+
+### Graduation to beta 
+-->
+## 发布亮点
+
+### 进入 Beta 阶段
+
+<!-- 
+The `v0.5.0` release is particularly historic because it marks the growth in
+maturity to a beta API version (`v1beta1`) release for some of the key APIs: 
+-->
+`v0.5.0` 版本特别具有历史意义，因为它标志着一些关键 API 成长至 Beta API 版本（`v1beta1`）：
+
+- [GatewayClass](https://gateway-api.sigs.k8s.io/api-types/gatewayclass/)
+- [Gateway](https://gateway-api.sigs.k8s.io/api-types/gateway/)
+- [HTTPRoute](https://gateway-api.sigs.k8s.io/api-types/httproute/)
+
+<!-- 
+This achievement was marked by the completion of several graduation criteria:
+
+- API has been [widely implemented][impl].
+- Conformance tests provide basic coverage for all resources and have multiple implementations passing tests.
+- Most of the API surface is actively being used.
+- Kubernetes SIG Network API reviewers have approved graduation to beta. 
+-->
+这一成就的标志是达到了以下几个进入标准：
+
+- API 已[广泛实现][impl]。
+- 合规性测试基本覆盖了所有资源且可以让多种实现通过测试。
+- 大多数 API 接口正被积极地使用。
+- Kubernetes SIG Network API 评审团队已批准其进入 Beta 阶段。
+
+<!-- 
+For more information on Gateway API versioning, refer to the [official
+documentation](https://gateway-api.sigs.k8s.io/concepts/versioning/). To see
+what's in store for future releases check out the [next steps](#next-steps)
+section. 
+-->
+有关 Gateway API 版本控制的更多信息，请参阅[官方文档](https://gateway-api.sigs.k8s.io/concepts/versioning/)。
+要查看未来版本的计划，请查看[下一步](#next-steps)。
+
+[impl]:https://gateway-api.sigs.k8s.io/implementations/
+
+<!-- 
+### Release channels
+
+This release introduces the `experimental` and `standard` [release channels][ch]
+which enable a better balance of maintaining stability while still enabling
+experimentation and iterative development. 
+-->
+### 发布渠道
+
+此版本引入了 `experimental` 和 `standard` [发布渠道][ch]，
+这样能够更好地保持平衡，在确保稳定性的同时，还能支持实验和迭代开发。
+
+<!-- 
+The `standard` release channel includes:
+
+- resources that have graduated to beta
+- fields that have graduated to standard (no longer considered experimental) 
+-->
+`standard` 发布渠道包括：
+
+- 已进入 Beta 阶段的资源
+- 已进入 standard 的字段（不再被视为 experimental）
+
+<!-- 
+The `experimental` release channel includes everything in the `standard` release
+channel, plus:
+
+- `alpha` API resources
+- fields that are considered experimental and have not graduated to `standard` channel 
+-->
+`experimental` 发布渠道包括 `standard` 发布渠道的所有内容，另外还有：
+
+- `alpha` API 资源
+- 视为 experimental 且还未进入 `standard` 渠道的字段
+
+<!-- 
+Release channels are used internally to enable iterative development with
+quick turnaround, and externally to indicate feature stability to implementors
+and end-users. 
+-->
+使用发布渠道能让内部实现快速流转的迭代开发，且能让外部实现者和最终用户标示功能稳定性。
+
+<!-- 
+For this release we've added the following experimental features:
+
+- [Routes can attach to Gateways by specifying port numbers](https://gateway-api.sigs.k8s.io/geps/gep-957/)
+- [URL rewrites and path redirects](https://gateway-api.sigs.k8s.io/geps/gep-726/) 
+-->
+本次发布新增了以下实验性的功能特性：
+
+- [路由通过指定端口号可以挂接到 Gateway](https://gateway-api.sigs.k8s.io/geps/gep-957/)
+- [URL 重写和路径重定向](https://gateway-api.sigs.k8s.io/geps/gep-726/)
+
+[ch]:https://gateway-api.sigs.k8s.io/concepts/versioning/#release-channels-eg-experimental-standard
+
+<!-- 
+### Other improvements
+
+For an exhaustive list of changes included in the `v0.5.0` release, please see
+the [v0.5.0 release notes](https://github.com/kubernetes-sigs/gateway-api/releases/tag/v0.5.0). 
+-->
+### 其他改进
+
+有关 `v0.5.0` 版本中包括的完整变更清单，请参阅
+[v0.5.0 发布说明](https://github.com/kubernetes-sigs/gateway-api/releases/tag/v0.5.0)。
+
+<!-- 
+## Gateway API for service mesh: the GAMMA Initiative
+Some service mesh projects have [already implemented support for the Gateway
+API](https://gateway-api.sigs.k8s.io/implementations/). Significant overlap
+between the Service Mesh Interface (SMI) APIs and the Gateway API has [inspired
+discussion in the SMI
+community](https://github.com/servicemeshinterface/smi-spec/issues/249) about
+possible integration. 
+-->
+## 适用于服务网格的 Gateway API：GAMMA 倡议
+
+某些服务网格项目[已实现对 Gateway API 的支持](https://gateway-api.sigs.k8s.io/implementations/)。
+服务网格接口 (Service Mesh Interface，SMI) API 和 Gateway API 之间的显著重叠
+[已激发了 SMI 社区讨论](https://github.com/servicemeshinterface/smi-spec/issues/249)可能的集成方式。
+
+<!-- 
+We are pleased to announce that the service mesh community, including
+representatives from Cilium Service Mesh, Consul, Istio, Kuma, Linkerd, NGINX
+Service Mesh and Open Service Mesh, is coming together to form the [GAMMA
+Initiative](https://gateway-api.sigs.k8s.io/contributing/gamma/), a dedicated
+workstream within the Gateway API subproject focused on Gateway API for Mesh
+Management and Administration. 
+-->
+我们很高兴地宣布，来自 Cilium Service Mesh、Consul、Istio、Kuma、Linkerd、NGINX Service Mesh
+和 Open Service Mesh 等服务网格社区的代表汇聚一堂组成
+[GAMMA 倡议小组](https://gateway-api.sigs.k8s.io/contributing/gamma/)，
+这是 Gateway API 子项目内一个专门的工作流，专注于网格管理所用的 Gateway API。
+
+<!-- 
+This group will deliver [enhancement
+proposals](https://gateway-api.sigs.k8s.io/v1beta1/contributing/gep/) consisting
+of resources, additions, and modifications to the Gateway API specification for
+mesh and mesh-adjacent use-cases.
+
+This work has begun with [an exploration of using Gateway API for
+service-to-service
+traffic](https://docs.google.com/document/d/1T_DtMQoq2tccLAtJTpo3c0ohjm25vRS35MsestSL9QU/edit#heading=h.jt37re3yi6k5)
+and will continue with enhancement in areas such as authentication and
+authorization policy. 
+-->
+这个小组将交付[增强提案](https://gateway-api.sigs.k8s.io/v1beta1/contributing/gep/)，
+包括对网格和网格相关用例适用的 Gateway API 规约的资源、添加和修改。
+
+这项工作已从
+[探索针对服务间流量使用 Gateway API](https://docs.google.com/document/d/1T_DtMQoq2tccLAtJTpo3c0ohjm25vRS35MsestSL9QU/edit#heading=h.jt37re3yi6k5)
+开始，并将继续增强身份验证和鉴权策略等领域。
+
+<!-- 
+## Next steps
+
+As we continue to mature the API for production use cases, here are some of the highlights of what we'll be working on for the next Gateway API releases:
+
+- [GRPCRoute][gep1016] for [gRPC][grpc] traffic routing
+- [Route delegation][pr1085]
+- Layer 4 API maturity: Graduating [TCPRoute][tcpr], [UDPRoute][udpr] and
+  [TLSRoute][tlsr] to beta
+- [GAMMA Initiative](https://gateway-api.sigs.k8s.io/contributing/gamma/) - Gateway API for Service Mesh 
+-->
+## 下一步
+
+随着我们不断完善用于生产用例的 API，以下是我们将为下一个 Gateway API 版本所做的一些重点工作：
+
+- 针对 [gRPC][grpc] 流量路由的 [GRPCRoute][gep1016]
+- [路由代理][pr1085]
+- 4 层 API 成熟度：[TCPRoute][tcpr]、[UDPRoute][udpr] 和 [TLSRoute][tlsr] 正进入 Beta 阶段
+- [GAMMA 倡议](https://gateway-api.sigs.k8s.io/contributing/gamma/) - 针对服务网格的 Gateway API
+
+<!-- 
+If there's something on this list you want to get involved in, or there's
+something not on this list that you want to advocate for to get on the roadmap
+please join us in the #sig-network-gateway-api channel on Kubernetes Slack or our weekly [community calls](https://gateway-api.sigs.k8s.io/contributing/community/#meetings). 
+-->
+如果你想参与此列表中的某些工作，或者你想倡导加入路线图的内容不在此列表中，
+请通过 Kubernetes Slack 的 #sig-network-gateway-api 频道或我们每周的
+[社区电话会议](https://gateway-api.sigs.k8s.io/contributing/community/#meetings)加入我们。
+
+[gep1016]:https://github.com/kubernetes-sigs/gateway-api/blob/master/site-src/geps/gep-1016.md
+[grpc]:https://grpc.io/
+[pr1085]:https://github.com/kubernetes-sigs/gateway-api/pull/1085
+[tcpr]:https://github.com/kubernetes-sigs/gateway-api/blob/main/apis/v1alpha2/tcproute_types.go
+[udpr]:https://github.com/kubernetes-sigs/gateway-api/blob/main/apis/v1alpha2/udproute_types.go
+[tlsr]:https://github.com/kubernetes-sigs/gateway-api/blob/main/apis/v1alpha2/tlsroute_types.go
+[community]:https://gateway-api.sigs.k8s.io/contributing/community/
diff --git a/content/zh/case-studies/_index.html b/content/zh-cn/case-studies/_index.html
similarity index 100%
rename from content/zh/case-studies/_index.html
rename to content/zh-cn/case-studies/_index.html
diff --git a/content/zh/case-studies/adform/adform_featured_logo.png b/content/zh-cn/case-studies/adform/adform_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/adform/adform_featured_logo.png
rename to content/zh-cn/case-studies/adform/adform_featured_logo.png
diff --git a/content/zh/case-studies/adform/index.html b/content/zh-cn/case-studies/adform/index.html
similarity index 100%
rename from content/zh/case-studies/adform/index.html
rename to content/zh-cn/case-studies/adform/index.html
diff --git a/content/zh-cn/case-studies/adidas/adidas-featured.svg b/content/zh-cn/case-studies/adidas/adidas-featured.svg
new file mode 100644
index 0000000000..a53d467552
--- /dev/null
+++ b/content/zh-cn/case-studies/adidas/adidas-featured.svg
@@ -0,0 +1 @@
+<svg id="Layer_1" data-name="Layer 1" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 215 127"><defs><style>.cls-1{fill:transparent;}.cls-2{fill:#040606;}</style></defs><title>kubernetes.io-54664</title><rect class="cls-1" x="-4.55738" y="-4.48481" width="223.25536" height="134.51136"/><path class="cls-2" d="M169.05853,71.307c.23549,6.07483,5.42615,10.38072,14.09569,10.38072,7.0783,0,12.91766-3.06693,12.91766-9.85009,0-4.71846-2.65436-7.49024-8.78885-8.66954l-4.77685-.94382c-3.06756-.59028-5.19066-1.17992-5.19066-3.0079,0-2.00568,2.06471-2.89047,4.65943-2.89047,3.77525,0,5.3081,1.887,5.42678,4.1288H194.951c-.41258-5.89838-5.1304-9.8501-12.73994-9.8501-7.845,0-12.50382,4.30588-12.50382,9.90912,0,6.84157,5.54483,7.96247,10.3217,8.84662l3.95171.70834c2.83082.53062,4.06977,1.35638,4.06977,3.0079,0,1.47444-1.41541,2.94887-4.77748,2.94887-4.89553,0-6.488-2.53631-6.54705-4.71845Zm-27.4259-5.13164a8.58413,8.58413,0,0,1,8.557-8.61113q.02706-.00009.05409,0a8.58415,8.58415,0,0,1,8.61115,8.557q.00009.02706,0,.0541a8.58413,8.58413,0,0,1-8.55641,8.61177q-.02738.00009-.05473,0a8.58413,8.58413,0,0,1-8.61113-8.557q-.00009-.02738,0-.05473M158.79589,81.098h7.49149V50.95811h-7.49149v2.41825a15.58033,15.58033,0,1,0-9.01133,28.37034q.05285.00018.10567,0a15.47693,15.47693,0,0,0,8.90566-2.77179ZM106.59844,66.17532a8.58413,8.58413,0,0,1,8.557-8.61113q.02706-.00009.05409,0a8.58414,8.58414,0,0,1,8.61114,8.557q.00009.02706,0,.05409a8.58413,8.58413,0,0,1-8.55641,8.61177q-.02738.00009-.05473,0a8.58413,8.58413,0,0,1-8.61113-8.557q-.00009-.02738,0-.05473m17.16387-25.47987V53.37636a15.58048,15.58048,0,1,0-9.01195,28.37034q.05251.00018.105,0a15.48233,15.48233,0,0,0,8.90691-2.77179V81.098h7.49023V40.69545ZM96.21772,50.95811H88.72811V81.098h7.49023Zm0-10.26266H88.72811v7.49023h7.49023ZM60.41805,66.17532a8.58414,8.58414,0,0,1,8.557-8.61113q.02673-.00009.05346,0a8.58414,8.58414,0,0,1,8.61114,8.557q.00009.02706,0,.05409a8.58414,8.58414,0,0,1-8.55642,8.61177q-.02736.00009-.05472,0a8.58412,8.58412,0,0,1-8.61113-8.557q-.00009-.02738,0-.05473M77.58067,40.69545V53.37636A15.58033,15.58033,0,1,0,68.56935,81.7467q.05283.00018.10567,0a15.4769,15.4769,0,0,0,8.90565-2.77179V81.098h7.4915V40.69545ZM25.38259,66.176a8.58414,8.58414,0,0,1,8.557-8.61114q.02736-.00009.05472,0a8.58414,8.58414,0,0,1,8.61114,8.557q.00009.027,0,.05409a8.58414,8.58414,0,0,1-8.55642,8.61176q-.02736.00009-.05472,0a8.58413,8.58413,0,0,1-8.61177-8.55641q-.00009-.02768,0-.05535m17.16388,14.9227H50.038V50.95872H42.54647V53.377a15.58048,15.58048,0,1,0-9.01069,28.37035q.0522.00016.10441,0a15.48032,15.48032,0,0,0,8.90628-2.77179Z"/></svg>
\ No newline at end of file
diff --git a/content/zh-cn/case-studies/adidas/index.html b/content/zh-cn/case-studies/adidas/index.html
new file mode 100644
index 0000000000..3a95a5aa1b
--- /dev/null
+++ b/content/zh-cn/case-studies/adidas/index.html
@@ -0,0 +1,78 @@
+---
+title: adidas Case Study
+linkTitle: adidas
+case_study_styles: true
+cid: caseStudies
+featured: false
+
+new_case_study_styles: true
+heading_background: /images/case-studies/adidas/banner1.png
+heading_title_text: adidas
+use_gradient_overlay: true
+subheading: >
+  Staying True to Its Culture, adidas Got 40% of Its Most Impactful Systems Running on Kubernetes in a Year
+case_study_details:
+  - Company: adidas
+  - Location: Herzogenaurach, Germany
+  - Industry: Fashion
+---
+
+<h2>Challenge</h2>
+
+<p>In recent years, the adidas team was happy with its software choices from a technology perspective—but accessing all of the tools was a problem. For instance, "just to get a developer VM, you had to send a request form, give the purpose, give the title of the project, who's responsible, give the internal cost center a call so that they can do recharges," says Daniel Eichten, Senior Director of Platform Engineering. "The best case is you got your machine in half an hour. Worst case is half a week or sometimes even a week."</p>
+
+<h2>Solution</h2>
+
+<p>To improve the process, "we started from the developer point of view," and looked for ways to shorten the time it took to get a project up and running and into the adidas infrastructure, says Senior Director of Platform Engineering Fernando Cornago. They found the solution with containerization, agile development, continuous delivery, and a cloud native platform that includes Kubernetes and Prometheus.</p>
+
+<h2>Impact</h2>
+
+<p>Just six months after the project began, 100% of the adidas e-commerce site was running on Kubernetes. Load time for the e-commerce site was reduced by half. Releases went from every 4-6 weeks to 3-4 times a day. With 4,000 pods, 200 nodes, and 80,000 builds per month, adidas is now running 40% of its most critical, impactful systems on its cloud native platform.</p>
+
+{{< case-studies/quote 
+  image="/images/case-studies/adidas/banner2.png"
+  author="FERNANDO CORNAGO, SENIOR DIRECTOR OF PLATFORM ENGINEERING AT ADIDAS"
+>}}
+"For me, Kubernetes is a platform made by engineers for engineers. It's relieving the development team from tasks that they don't want to do, but at the same time giving the visibility of what is behind the curtain, so they can also control it."
+{{< /case-studies/quote >}}
+
+{{< case-studies/lead >}}
+In recent years, the adidas team was happy with its software choices from a technology perspective—but accessing all of the tools was a problem.
+{{< /case-studies/lead >}}
+
+<p>For engineers at adidas, says Daniel Eichten, Senior Director of Platform Engineering, "it felt like being an artist with your hands tied behind your back, and you're supposed to paint something."</p>
+
+<p>For instance, "just to get a developer VM, you had to send a request form, give the purpose, give the title of the project, who's responsible, give the internal cost center a call so that they can do recharges," says Eichten. "Eventually, after a ton of approvals, then the provisioning of the machine happened within minutes, and then the best case is you got your machine in half an hour. Worst case is half a week or sometimes even a week."</p>
+
+<p>To improve the process, "we started from the developer point of view," and looked for ways to shorten the time it took to get a project up and running and into the adidas infrastructure, says Senior Director of Platform Engineering Fernando Cornago.</p>
+
+{{< case-studies/quote author="DANIEL EICHTEN, SENIOR DIRECTOR OF PLATFORM ENGINEERING AT ADIDAS" >}}
+"I call our cloud native platform the field of dreams. We built it, and we never anticipated that people would come and just love it."
+{{< /case-studies/quote >}}
+
+<p>"We were engineers before," adds Eichten. "We know what a typical engineer needs, is craving for, what he or she doesn't want to take care of. For us it was pretty clear. We filled the gaps that no one wants to take care of, and we make the stuff that is usually painful as painless as possible." The goals: to improve speed, operability, and observability.</p>
+
+<p>Cornago and Eichten found the solution with containerization, agile development, continuous delivery, and a cloud native platform that includes Kubernetes and Prometheus. "Choosing Kubernetes was pretty clear," says Eichten. "Day zero, deciding, easy. Day one, installing, configuring, easy. Day two, keeping it up and running even with small workloads, if something goes wrong, you don't know how these things work in detail, you're lost. For day two problems, we needed a partner who's helping us."</p>
+
+<p>In early 2017, adidas chose Giant Swarm to consult, install, configure, and run all of its Kubernetes clusters in AWS and on premise. "There is no competitive edge over our competitors like Puma or Nike in running and operating a Kubernetes cluster," says Eichten. "Our competitive edge is that we teach our internal engineers how to build cool e-comm stores that are fast, that are resilient, that are running perfectly."</p>
+
+{{< case-studies/quote 
+  image="/images/case-studies/adidas/banner3.png"
+  author="DANIEL EICHTEN, SENIOR DIRECTOR OF PLATFORM ENGINEERING AT ADIDAS"
+>}}
+"There is no competitive edge over our competitors like Puma or Nike in running and operating a Kubernetes cluster. Our competitive edge is that we teach our internal engineers how to build cool e-comm stores that are fast, that are resilient, that are running perfectly."
+{{< /case-studies/quote >}}
+
+<p>Adds Cornago: "For me, our Kubernetes platform is made by engineers for engineers. It's relieving the development team from tasks that they don't want to do, but at the same time giving the visibility of what is behind the curtain, so they can also control it."</p>
+
+<p>Case in point: For Cyber Week, the team has to create a lot of custom metrics. In November 2017, "because we used the same Prometheus that we use for monitoring the cluster, we really filled the Prometheus database, and we were not able to reduce the retention period [enough]," says Cornago. So during the freeze period before the peak shopping week, five engineers from the platform team worked with five engineers from the e-comm team to figure out a federated solution that was implemented in two days.</p>
+
+<p>In addition to being ready for Cyber Week—100% of the adidas e-commerce site was running on Kubernetes then, just six months after the project began—the cloud native stack has had other impressive results. Load time for the e-commerce site was reduced by half. Releases went from every 4-6 weeks to 3-4 times a day. With 4,000 pods, 200 nodes, and 80,000 builds per month, adidas is now running 40% of its most critical, impactful systems on its cloud native platform.</p>
+
+<p>And adoption has spread quickly among adidas's 300-strong engineering corps. "I call our cloud native platform the field of dreams," says Eichten. "We built it, and we never anticipated that people would come and just love it."</p>
+
+<p>For one thing, "everybody who can touch a line of code" has spent one full week onboarding and learning the platform with members of the 35-person platform engineering team, says Cornago. "We try to spend 50% of our time sitting with the teams, because this is the only way to understand how our platform is being used. And this is how the teams will feel safe that there is someone on the other side of the wall, also feeling the pain."</p>
+
+<p>Additionally, Cornago and Eichten took advantage of the fact that as a fashion athletic wear brand, adidas has sports and competition in its DNA. "Top-down mandates don't work at adidas, but gamification works," says Cornago. "So this year we had a DevOps Cup competition. Every team created new technical capabilities and had a hypothesis of how this affected business value. We announced the winner at a big internal tech summit with more than 600 people. It's been really, really useful for the teams."</p>
+
+<p>So if they had any advice for other companies looking to start a cloud native journey, it would be this: "There is no one-size-fits-all for all companies," says Cornago. "Apply your company's culture to everything that you do."</p>
diff --git a/content/zh/case-studies/amadeus/amadeus_featured.png b/content/zh-cn/case-studies/amadeus/amadeus_featured.png
similarity index 100%
rename from content/zh/case-studies/amadeus/amadeus_featured.png
rename to content/zh-cn/case-studies/amadeus/amadeus_featured.png
diff --git a/content/zh/case-studies/amadeus/amadeus_logo.png b/content/zh-cn/case-studies/amadeus/amadeus_logo.png
similarity index 100%
rename from content/zh/case-studies/amadeus/amadeus_logo.png
rename to content/zh-cn/case-studies/amadeus/amadeus_logo.png
diff --git a/content/zh/case-studies/amadeus/index.html b/content/zh-cn/case-studies/amadeus/index.html
similarity index 100%
rename from content/zh/case-studies/amadeus/index.html
rename to content/zh-cn/case-studies/amadeus/index.html
diff --git a/content/zh/case-studies/ancestry/ancestry_featured.png b/content/zh-cn/case-studies/ancestry/ancestry_featured.png
similarity index 100%
rename from content/zh/case-studies/ancestry/ancestry_featured.png
rename to content/zh-cn/case-studies/ancestry/ancestry_featured.png
diff --git a/content/zh/case-studies/ancestry/ancestry_logo.png b/content/zh-cn/case-studies/ancestry/ancestry_logo.png
similarity index 100%
rename from content/zh/case-studies/ancestry/ancestry_logo.png
rename to content/zh-cn/case-studies/ancestry/ancestry_logo.png
diff --git a/content/zh/case-studies/ancestry/index.html b/content/zh-cn/case-studies/ancestry/index.html
similarity index 100%
rename from content/zh/case-studies/ancestry/index.html
rename to content/zh-cn/case-studies/ancestry/index.html
diff --git a/content/zh/case-studies/ant-financial/ant-financial_featured_logo.png b/content/zh-cn/case-studies/ant-financial/ant-financial_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/ant-financial/ant-financial_featured_logo.png
rename to content/zh-cn/case-studies/ant-financial/ant-financial_featured_logo.png
diff --git a/content/zh/case-studies/ant-financial/index.html b/content/zh-cn/case-studies/ant-financial/index.html
similarity index 100%
rename from content/zh/case-studies/ant-financial/index.html
rename to content/zh-cn/case-studies/ant-financial/index.html
diff --git a/content/zh/case-studies/appdirect/appdirect_featured_logo.png b/content/zh-cn/case-studies/appdirect/appdirect_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/appdirect/appdirect_featured_logo.png
rename to content/zh-cn/case-studies/appdirect/appdirect_featured_logo.png
diff --git a/content/zh/case-studies/appdirect/index.html b/content/zh-cn/case-studies/appdirect/index.html
similarity index 100%
rename from content/zh/case-studies/appdirect/index.html
rename to content/zh-cn/case-studies/appdirect/index.html
diff --git a/content/zh-cn/case-studies/babylon/babylon_featured_logo.png b/content/zh-cn/case-studies/babylon/babylon_featured_logo.png
new file mode 100644
index 0000000000..8b158b5ed3
Binary files /dev/null and b/content/zh-cn/case-studies/babylon/babylon_featured_logo.png differ
diff --git a/content/zh-cn/case-studies/babylon/babylon_featured_logo.svg b/content/zh-cn/case-studies/babylon/babylon_featured_logo.svg
new file mode 100644
index 0000000000..e84da19268
--- /dev/null
+++ b/content/zh-cn/case-studies/babylon/babylon_featured_logo.svg
@@ -0,0 +1 @@
+<svg id="Layer_1" data-name="Layer 1" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 215 127"><defs><style>.cls-1{fill:transparent;}.cls-2{fill:#400198;}.cls-3{fill:#ed1cb0;}.cls-4{fill:#e422b2;}.cls-5{fill:#e91fb1;}.cls-6{fill:#df26b3;}.cls-7{fill:#1eb6cf;}.cls-8{fill:#1db4d6;}.cls-9{fill:#ca35b8;}.cls-10{fill:#d42eb6;}.cls-11{fill:#cf32b7;}.cls-12{fill:#26b0ce;}.cls-13{fill:#d72cb5;}.cls-14{fill:#c538b8;}.cls-15{fill:#bb40bb;}.cls-16{fill:#da29b4;}.cls-17{fill:#c13cb9;}.cls-18{fill:#b544bc;}.cls-19{fill:#2aaad5;}.cls-20{fill:#af49be;}.cls-21{fill:#8964c5;}.cls-22{fill:#a94dbe;}.cls-23{fill:#826ac7;}.cls-24{fill:#a54fbf;}.cls-25{fill:#e026b1;}.cls-26{fill:#905fc3;}.cls-27{fill:#7b6fc8;}.cls-28{fill:#965ac2;}.cls-29{fill:#2aadcd;}.cls-30{fill:#9b58c2;}.cls-31{fill:#d034af;}.cls-32{fill:#d331b0;}.cls-33{fill:#d72db0;}.cls-34{fill:#db2ab0;}.cls-35{fill:#7077cb;}.cls-36{fill:#7573c9;}.cls-37{fill:#24b0d1;}.cls-38{fill:#35a2d4;}.cls-39{fill:#af49bb;}.cls-40{fill:#4a92d2;}.cls-41{fill:#4f8fce;}.cls-42{fill:#6b7bcb;}.cls-43{fill:#cb36b4;}.cls-44{fill:#5d85ce;}.cls-45{fill:#6380cd;}.cls-46{fill:#b743bb;}.cls-47{fill:#2eaacd;}.cls-48{fill:#38a3c9;}.cls-49{fill:#c43ab5;}.cls-50{fill:#667fc9;}.cls-51{fill:#4595d2;}.cls-52{fill:#a84ebc;}.cls-53{fill:#528cd0;}.cls-54{fill:#5887cf;}.cls-55{fill:#2ea7d5;}.cls-56{fill:#3a9ed3;}.cls-57{fill:#bb41ba;}.cls-58{fill:#9a58c2;}.cls-59{fill:#7475c3;}.cls-60{fill:#8f60c4;}.cls-61{fill:#32a7cb;}.cls-62{fill:#687fc3;}.cls-63{fill:#4099d4;}.cls-64{fill:#a450bf;}.cls-65{fill:#4698c9;}.cls-66{fill:#588bc5;}.cls-67{fill:#fcfcfc;}.cls-68{fill:#409dc8;}.cls-69{fill:#9f54c1;}.cls-70{fill:#955cc3;}.cls-71{fill:#5091c6;}.cls-72{fill:#d031b4;}.cls-73{fill:#8866c6;}.cls-74{fill:#c03cba;}.cls-75{fill:#6185c5;}.cls-76{fill:#7b6ec9;}.cls-77{fill:#6f79c6;}.cls-78{fill:#fefefe;}.cls-79{fill:#24b3cc;}.cls-80{fill:#da2ab2;}.cls-81{fill:#20b5ca;}.cls-82{fill:#25b1cb;}.cls-83{fill:#cc34b4;}.cls-84{fill:#d131b3;}.cls-85{fill:#29aecc;}.cls-86{fill:#26b2c7;}.cls-87{fill:#cb37af;}.cls-88{fill:#c53bb4;}.cls-89{fill:#bb42b6;}.cls-90{fill:#bf3eb5;}.cls-91{fill:#b546b6;}.cls-92{fill:#b04ab8;}.cls-93{fill:#2ea9d1;}.cls-94{fill:#aa4db9;}.cls-95{fill:#8d64bc;}.cls-96{fill:#8966be;}.cls-97{fill:#8568c2;}.cls-98{fill:#7e6dc4;}.cls-99{fill:#a155ba;}.cls-100{fill:#945ebb;}.cls-101{fill:#7673c4;}.cls-102{fill:#9a5aba;}.cls-103{fill:#2eaec3;}.cls-104{fill:#28b2c4;}.cls-105{fill:#7078c5;}.cls-106{fill:#6a7cc7;}.cls-107{fill:#32a6d1;}.cls-108{fill:#37a1d0;}.cls-109{fill:#b249b4;}.cls-110{fill:#ab4db9;}.cls-111{fill:#4d92ca;}.cls-112{fill:#4498ce;}.cls-113{fill:#4796ca;}.cls-114{fill:#528fc9;}.cls-115{fill:#5b87c9;}.cls-116{fill:#6182c9;}.cls-117{fill:#b944b3;}.cls-118{fill:#33a8c6;}.cls-119{fill:#38a6c2;}.cls-120{fill:#3da1c4;}.cls-121{fill:#c33daf;}.cls-122{fill:#bf3fb5;}.cls-123{fill:#6383c4;}.cls-124{fill:#409bd0;}.cls-125{fill:#a254bb;}.cls-126{fill:#a652b6;}.cls-127{fill:#568acc;}.cls-128{fill:#3ba0cd;}.cls-129{fill:#9a5abb;}.cls-130{fill:#9e57b9;}.cls-131{fill:#7e6fc0;}.cls-132{fill:#6d7ebd;}.cls-133{fill:#7a74ba;}.cls-134{fill:#747aba;}.cls-135{fill:#9160bc;}.cls-136{fill:#8b65bf;}.cls-137{fill:#6684bb;}.cls-138{fill:#4a97c1;}.cls-139{fill:#449cc1;}.cls-140{fill:#6088bb;}.cls-141{fill:#5491bf;}.cls-142{fill:#5b8bbf;}.cls-143{fill:#8469c1;}.cls-144{fill:#21b7c5;}.cls-145{fill:#24b5c5;}.cls-146{fill:#2dadc5;}.cls-147{fill:#25b6c1;}.cls-148{fill:#2faebe;}.cls-149{fill:#c63bb0;}.cls-150{fill:#c13fb0;}.cls-151{fill:#bd41b3;}.cls-152{fill:#b945b3;}.cls-153{fill:#b549ae;}.cls-154{fill:#ad4eb3;}.cls-155{fill:#a651b7;}.cls-156{fill:#8f64b6;}.cls-157{fill:#816ebe;}.cls-158{fill:#8869ba;}.cls-159{fill:#7973bf;}.cls-160{fill:#a357b0;}.cls-161{fill:#9e5ab3;}.cls-162{fill:#965fb5;}.cls-163{fill:#32aeb8;}.cls-164{fill:#2bb2ba;}.cls-165{fill:#33abbe;}.cls-166{fill:#27b5be;}.cls-167{fill:#6e7bc1;}.cls-168{fill:#7477bd;}.cls-169{fill:#6a7ec0;}.cls-170{fill:#37a4c8;}.cls-171{fill:#31a9c9;}.cls-172{fill:#b14dad;}.cls-173{fill:#ac4eb3;}.cls-174{fill:#4e94c3;}.cls-175{fill:#4b95c6;}.cls-176{fill:#429bca;}.cls-177{fill:#4599c6;}.cls-178{fill:#548fc3;}.cls-179{fill:#578bc6;}.cls-180{fill:#5b8ac2;}.cls-181{fill:#bd43ae;}.cls-182{fill:#bf40b0;}.cls-183{fill:#3aa7bb;}.cls-184{fill:#40a1bd;}.cls-185{fill:#6385c0;}.cls-186{fill:#a257b2;}.cls-187{fill:#a853af;}.cls-188{fill:#3e9fc7;}.cls-189{fill:#945fb9;}.cls-190{fill:#9c5bb4;}.cls-191{fill:#846cb8;}.cls-192{fill:#806fb9;}.cls-193{fill:#6b83b3;}.cls-194{fill:#6f7eb7;}.cls-195{fill:#7b76b3;}.cls-196{fill:#7778b6;}.cls-197{fill:#737db1;}.cls-198{fill:#8a68b8;}.cls-199{fill:#8e65b5;}.cls-200{fill:#6487b5;}.cls-201{fill:#469dbb;}.cls-202{fill:#4d97bb;}.cls-203{fill:#5b8db7;}.cls-204{fill:#5492b9;}.cls-205{fill:#21bac0;}.cls-206{fill:#34a9c5;}.cls-207{fill:#20bbba;}.cls-208{fill:#25b8b9;}.cls-209{fill:#2bb2bb;}.cls-210{fill:#39abb2;}.cls-211{fill:#30b0b5;}.cls-212{fill:#39a7bb;}.cls-213{fill:#a754af;}.cls-214{fill:#9265af;}.cls-215{fill:#8a69b4;}.cls-216{fill:#7e73b8;}.cls-217{fill:#856cb7;}.cls-218{fill:#7778b8;}.cls-219{fill:#9e5cac;}.cls-220{fill:#a458ab;}.cls-221{fill:#9b5eb0;}.cls-222{fill:#39a9b3;}.cls-223{fill:#2eb3b2;}.cls-224{fill:#34b0ad;}.cls-225{fill:#27b8b6;}.cls-226{fill:#707db9;}.cls-227{fill:#6b82b8;}.cls-228{fill:#aa53ab;}.cls-229{fill:#4a99bd;}.cls-230{fill:#5194b9;}.cls-231{fill:#439ebf;}.cls-232{fill:#598eba;}.cls-233{fill:#6189ba;}.cls-234{fill:#43a1b8;}.cls-235{fill:#41a4b2;}.cls-236{fill:#995fb1;}.cls-237{fill:#8071b5;}.cls-238{fill:#896ab2;}.cls-239{fill:#6d82b0;}.cls-240{fill:#6687af;}.cls-241{fill:#6c85a7;}.cls-242{fill:#7979ad;}.cls-243{fill:#7280a8;}.cls-244{fill:#8e69ab;}.cls-245{fill:#9364ae;}.cls-246{fill:#618dad;}.cls-247{fill:#5e8db1;}.cls-248{fill:#4a9bb6;}.cls-249{fill:#4f99b4;}.cls-250{fill:#5895ab;}.cls-251{fill:#5495b1;}.cls-252{fill:#21bcb5;}.cls-253{fill:#26bab2;}.cls-254{fill:#2cb5b2;}.cls-255{fill:#3daca6;}.cls-256{fill:#32b3a9;}.cls-257{fill:#40a3b8;}.cls-258{fill:#32b1af;}.cls-259{fill:#40a7ae;}.cls-260{fill:#9a60aa;}.cls-261{fill:#9465a9;}.cls-262{fill:#866eaf;}.cls-263{fill:#7e74b2;}.cls-264{fill:#767bb2;}.cls-265{fill:#3fa8ac;}.cls-266{fill:#39adab;}.cls-267{fill:#28b9ad;}.cls-268{fill:#30b4aa;}.cls-269{fill:#35b2a6;}.cls-270{fill:#22beb0;}.cls-271{fill:#6d82b1;}.cls-272{fill:#6588b4;}.cls-273{fill:#4a9cb6;}.cls-274{fill:#5099b0;}.cls-275{fill:#5793b2;}.cls-276{fill:#5f8db1;}.cls-277{fill:#47a0b0;}.cls-278{fill:#45a5a8;}.cls-279{fill:#8373a9;}.cls-280{fill:#856fae;}.cls-281{fill:#6789a6;}.cls-282{fill:#6887ac;}.cls-283{fill:#7e77a9;}.cls-284{fill:#777ca8;}.cls-285{fill:#886fa9;}.cls-286{fill:#5d91ab;}.cls-287{fill:#618fa5;}.cls-288{fill:#4f9bad;}.cls-289{fill:#5598a5;}.cls-290{fill:#5299a8;}.cls-291{fill:#5b93a5;}.cls-292{fill:#26bcab;}.cls-293{fill:#2cb7ac;}.cls-294{fill:#39afa2;}.cls-295{fill:#41a9a3;}.cls-296{fill:#44a4a9;}.cls-297{fill:#33b4a1;}.cls-298{fill:#2db8a6;}.cls-299{fill:#23bfa9;}.cls-300{fill:#2abaa6;}.cls-301{fill:#509da5;}.cls-302{fill:#5b92ab;}.cls-303{fill:#638caa;}.cls-304{fill:#49a1a6;}.cls-305{fill:#45a5a3;}.cls-306{fill:#4e9da7;}.cls-307{fill:#24c0a3;}.cls-308{fill:#2eb9a1;}</style></defs><title>babylon_featured_logo</title><rect class="cls-1" x="-3.37342" y="-3.34411" width="223.25536" height="134.51135"/><g id="lZQzip.tif"><path class="cls-2" d="M105.41242,102.38161l-.00032,1.63174c-.0627.13341.00024.28369-.05621.41793a11.38311,11.38311,0,0,1-2.01033,5.06153,11.067,11.067,0,0,1-3.3906,3.02011,10.84647,10.84647,0,0,1-4.08857,1.32846c-.1868.06553-.38843-.017-.57433.05755l-1.089-.00025c-.20941-.07879-.43384.01163-.64415-.05713a10.19579,10.19579,0,0,1-3.70134-1.065c-.48065-.24244-.92492-.557-1.38588-.83845-.06063-.037-.09079-.14074-.18466-.10308-.11421.04582-.06434.15491-.06525.2351-.00276.24289.00733.48591.01241.72888-.04373.09358-.13.06517-.20175.06525q-2.00022.00226-4.00042.00105a.2189.2189,0,0,1-.17784-.05013q.00179-12.68058.00359-25.36114c.00007-.49836.00007-.49838.51672-.49839,1.14195,0,2.28413.01292,3.42569-.00811.33035-.00608.43083.06512.428.416-.01821,2.2576-.00931,4.51543-.00931,6.77318v.49616a11.05883,11.05883,0,0,1,5.10888-2.07265c.13193-.05882.28125.00852.4123-.0568l.5892-.02108a2.452,2.452,0,0,1,.76686.00027l.58451.02113c.13295.06326.28351-.00195.417.05717a11.59144,11.59144,0,0,1,3.62542,1.17991,10.5452,10.5452,0,0,1,5.46726,7.37007c.05888.28588.11169.573.16732.85955C105.4121,102.10265,105.3474,102.25077,105.41242,102.38161Z"/><path class="cls-2" d="M34.63653,86.95277l4.29235-.00054c.09161.12769.04478.27327.045.40941.00339,2.27909.00048,4.5582.00786,6.83726.00039.12039-.097.284.08547.36982A10.467,10.467,0,0,1,43.578,92.65287c.17488-.0308.34953-.0629.52429-.09438.12944-.05756.27686.01345.40456-.05657l.59672-.02a2.09239,2.09239,0,0,1,.68969-.00017l.59843.01974c.12693.0712.27387-.00048.4028.05643a11.00511,11.00511,0,0,1,4.67914,1.79236,10.4814,10.4814,0,0,1,4.49119,6.91367c.05776.31192.11043.6248.16546.93723.06769.21176-.0209.43721.05681.64808a2.5436,2.5436,0,0,0,.00035.69962c-.07312.18609.00488.38662-.0549.574a10.76306,10.76306,0,0,1-2.32311,5.73583,10.60091,10.60091,0,0,1-6.22918,3.81747,13.59407,13.59407,0,0,1-2.67368.22263c-.18573-.07349-.38628.00608-.57316-.05551a10.43588,10.43588,0,0,1-5.25691-2.01274c-.22287.18028-.09238.42551-.08856.63086.00576.31021-.07424.41724-.40251.41178-1.18-.01964-2.36055-.00755-3.54089-.00779-.45637-.00009-.45687-.00053-.45688-.45163q-.00017-11.04411-.00007-22.08823c0-1.0005-.00178-2.001.00227-3.00152C34.59038,87.2003,34.54594,87.06672,34.63653,86.95277Z"/><path class="cls-2" d="M70.59875,92.56a11.608,11.608,0,0,1,3.789,1.26288c.427.24032.83354.51681,1.28941.80181a3.2784,3.2784,0,0,0,.01372-1.00883c.02837-.10709.118-.07834.18769-.07842q2.02682-.00267,4.05362-.00136a.21665.21665,0,0,1,.14177.04475l-.00015,19.23937c-1.44837.09646-2.898.03169-4.347.03046-.0119,0-.02376-.04231-.03565-.06486.03551-.3164.15843-.77168-.03968-.91009-.21749-.15194-.50493.23574-.75607.39269a10.241,10.241,0,0,1-3.92419,1.482c-.176.02672-.35093.05994-.52637.09015-.18449.06812-.38468-.01774-.5684.05795l-1.17047,0c-.21022-.07641-.43394.0082-.64534-.05409a9.69788,9.69788,0,0,1-3.54018-.98888,10.61343,10.61343,0,0,1-3.67078-2.958,11.10393,11.10393,0,0,1-2.09314-4.33279c-.093-.37677-.13-.75531-.18841-1.13379-.05411-.13074.01294-.2778-.05476-.40671l.00085-1.71014c.06237-.13445-.00032-.28595.05741-.421a9.69545,9.69545,0,0,1,1.34064-4.07919,10.37686,10.37686,0,0,1,5.04614-4.46406,13.59363,13.59363,0,0,1,2.94821-.79295c.13132-.05309.27845.01255.40795-.05428l.59309-.02042a2.07215,2.07215,0,0,1,.68971,0l.58835.02142C70.31706,92.5682,70.46642,92.50184,70.59875,92.56Z"/><path class="cls-2" d="M136.22286,101.739a10.55646,10.55646,0,0,1,2.44338-5.48159,10.26677,10.26677,0,0,1,6.4419-3.61265c.12549-.01986.2484-.05608.37252-.08468.13471-.057.28572.00589.41964-.057l.659-.02133a1.60255,1.60255,0,0,1,.61285.001l.58664.02047c.13217.06357.28091.00119.41442.05453a11.17161,11.17161,0,0,1,4.92871,1.94918c.12262-.01494.18515.05812.23.157a11.48323,11.48323,0,0,1,2.37081,2.52474,10.21138,10.21138,0,0,1,1.71935,4.44978c.01946.13779.05893.27275.08909.409.05146.13548-.00713.28517.05419.41937l.00014,1.46681c-.06137.13448-.00271.28456-.05466.42026a11.2611,11.2611,0,0,1-1.86152,4.91853,11.06171,11.06171,0,0,1-4.001,3.49915,10.90974,10.90974,0,0,1-3.62934,1.0724c-.21173.06282-.43585-.02183-.64644.05434l-1.01887.00044c-.23463-.08194-.48355.01422-.719-.05762a10.64855,10.64855,0,0,1-9.41034-9.17862c-.06328-.12961.01014-.279-.05913-.40779l-.02026-.43963a6.29627,6.29627,0,0,1-.00059-1.2288l.01948-.44508C136.23691,102.015,136.161,101.8669,136.22286,101.739Z"/><path class="cls-3" d="M108.10551,24.18116A19.04342,19.04342,0,0,1,109.618,19.0384a20.56281,20.56281,0,0,1,3.31319-5.17462c.058-.0676.128-.12492.19239-.187a.58705.58705,0,0,1,.30652-.35745,18.23673,18.23673,0,0,1,1.928-1.783.609.609,0,0,1,.28754-.21982l.63689-.47672c.06835-.11283.201-.138.29477-.21626a19.95434,19.95434,0,0,1,5.77059-2.78765.43228.43228,0,0,0,.09747-.06037c.09611-.08387.20175-.03963.30525-.02284a5.07713,5.07713,0,0,1,.36456,1.6745c.151,1.37575.37846,2.73751.65136,4.09323.06239.30994.12178.61909.19791.96579.2284-.13609.22764-.356.33537-.50349.09127-.125.17341-.26722.36041-.23759.18012.02855.24682.16669.28139.32576a8.05405,8.05405,0,0,1,.20257,3.34968,2.66144,2.66144,0,0,0-.01076.91779,6.59283,6.59283,0,0,1-.13906,1.71245,21.01406,21.01406,0,0,1-.59418,3.3667c-.15548.54323-.2648.61154-.82409.68574a21.8299,21.8299,0,0,0-3.85755.58227,23.657,23.657,0,0,1-2.935.77053c-1.03225.19041-2.07612.31678-3.11833.41641-1.19354.11409-2.38765.20907-3.57118.40622a3.20552,3.20552,0,0,0-1.11469.40294c-.39873.23506-.60487.14073-.71986-.31493-.11921-.47236-.16719-.96034-.30723-1.42885A1.117,1.117,0,0,1,108.10551,24.18116Z"/><path class="cls-2" d="M170.976,92.48275l.58774.02046c.13173.064.28022.001.41332.05454a11.1725,11.1725,0,0,1,4.92872,1.94918c.12263-.01494.18515.05812.23.157a11.48038,11.48038,0,0,1,2.3709,2.52482,10.21276,10.21276,0,0,1,1.71959,4.44975,1.54145,1.54145,0,0,0,.08058.25287.22939.22939,0,0,1,.05237.16618.73794.73794,0,0,0,.00993.40828q.002,5.17333.00394,10.34666c-.11124.09873-.2459.05-.36866.05044-1.116.00426-2.23216-.009-3.34783.00986-.31466.00533-.408-.0757-.40676-.3992.01219-3.15484.00781-6.30975.00589-9.46463a1.19973,1.19973,0,0,0-.03-.45689,6.52161,6.52161,0,0,0-3.58673-5.22192,6.08072,6.08072,0,0,0-2.17483-.68356c-.15521-.07359-.32837.006-.48484-.0568l-.61966-.00051c-.155.06482-.32791-.01827-.48157.058a4.26881,4.26881,0,0,0-1.75677.42321,6.52565,6.52565,0,0,0-3.73969,3.95482,1.25874,1.25874,0,0,0-.03719.22353,1.01223,1.01223,0,0,0-.03018.41834q-.00264,5.38994-.00155,10.77989c0,.41716-.00091.418-.4118.41816-1.20657.00043-2.41328-.00941-3.61963.00708-.29077.004-.36373-.079-.36335-.36573q.01226-9.29764-.00054-18.59531c-.00044-.30609.08376-.38661.38565-.38242q1.82877.02544,3.658-.0003c.2999-.00433.38945.09348.35491.37275a2.0816,2.0816,0,0,0,.00108.42292c.00653.07974.03607.155.14608.11113a12.10607,12.10607,0,0,1,1.51035-.93027.21345.21345,0,0,1,.22648-.09535c.08646-.08622.24858.00183.31277-.13571a.20878.20878,0,0,1,.22666-.09361l1.54193-.45154a.20231.20231,0,0,1,.2437-.04837l.75951-.121c.13151-.05807.28029.0096.4107-.05644l.59077-.02112A2.04541,2.04541,0,0,1,170.976,92.48275Z"/><path class="cls-2" d="M110.80912,119.22141q1.101-2.6006,2.202-5.20118c.20717-.48933.41254-.97944.62317-1.46727a.44549.44549,0,0,0-.01-.40023c-.5558-1.17222-1.0978-2.351-1.65525-3.52245-.54807-1.15167-1.1181-2.293-1.66239-3.4464-.53858-1.14134-1.04855-2.29617-1.58682-3.43768-.5224-1.10784-1.10178-2.19026-1.58832-3.31322-.51253-1.183-1.112-2.3238-1.6277-3.50481-.2036-.46627-.45856-.91047-.63115-1.40686,1.52426,0,3.02608.00276,4.52787-.00345a.3571.3571,0,0,1,.38162.23425q2.01563,4.32179,4.04609,8.63667c.67916,1.44332,1.37116,2.88058,2.05344,4.32246a.34623.34623,0,0,0,.135.181c.398-.93367.79593-1.86114,1.18884-2.79074.46761-1.10636.9283-2.21566,1.39686-3.32163.38072-.89869.77272-1.79262,1.1523-2.69179.46721-1.10675.92695-2.21666,1.38944-3.3254.1476-.35384.30266-.705.43619-1.06407a.25849.25849,0,0,1,.29272-.17794c1.42488.00128,2.84979.00606,4.2746-.00277.388-.00241.18142.225.13284.34162-.58851,1.41215-1.18988,2.81893-1.78593,4.22794q-1.64718,3.89383-3.29287,7.78828c-.96233,2.27075-1.93428,4.53744-2.89327,6.80959-.93871,2.22409-1.86642,4.45281-2.799,6.67951-.07529.07089-.16938.04616-.25636.04625-1.38334.00146-2.76668.00417-4.15-.005C110.99384,119.40531,110.74847,119.52949,110.80912,119.22141Z"/><path class="cls-4" d="M104.40436,15.7113a9.72922,9.72922,0,0,1,1.07941,1.77089c.37952,2.434.8474,4.8511,1.38458,7.2551.23236,1.03988.52955,2.06343.77838,3.0983a1.06754,1.06754,0,0,0,1.00368.90079c1.0857.12054,2.14446.39755,3.22979.51729.867.09565,1.73753.13786,2.60645.19994,1.11068.07934,2.22544.00787,3.33963.05847a11.36973,11.36973,0,0,0,2.14325-.17673c1.22033-.179,2.45-.2313,3.67574-.3382.75336-.0657,1.5106-.09005,2.25855-.217a1.32551,1.32551,0,0,0,.65474-.30225,7.85559,7.85559,0,0,0,2.17918-2.99069,8.74582,8.74582,0,0,0,.2993-1.73971,8.56519,8.56519,0,0,0-.20349-3.05462c-.54855-3.39645-1.29737-6.75407-1.98865-10.12282a3.84919,3.84919,0,0,0-.618-1.75573,1.91816,1.91816,0,0,1-.24025-1.03876.7167.7167,0,0,0-.38049-.61708c.08346-.097.21035-.04319.30857-.0889.12731-.0632.27536.0134.40122-.05951l.29225-.01824c.31089-.07614.633.02978.94318-.05835l1.49352.00081c.31346.0851.63795-.01643.95214.05632l-.00682.02572a.62359.62359,0,0,1,.1485.34794c.54487,2.27087,1.001,4.5644,1.616,6.81618.31761,1.163.601,2.33124.86147,3.50572a5.991,5.991,0,0,1,.19829,2.43576.67474.67474,0,0,0,.0383.3791,2.07008,2.07008,0,0,1,.07913,1.1021,20.78858,20.78858,0,0,0-.13777,2.16187,9.80274,9.80274,0,0,1-2.78369,6.72779,10.86767,10.86767,0,0,1-1.92378,1.646,2.58061,2.58061,0,0,1-.94221.30048,10.54388,10.54388,0,0,0-1.78057.14844.16694.16694,0,0,1-.0762.0084c-1.00624-.136-2.008.21928-3.01777.02143a1.76573,1.76573,0,0,0-.83694.06885,3.38971,3.38971,0,0,1-1.29915.03958,1.25374,1.25374,0,0,0-.79279-.01767.47864.47864,0,0,1-.34034-.00558,2.832,2.832,0,0,0-1.29419-.07036,9.74052,9.74052,0,0,1-3.95844-.27935c-1.28946-.42113-2.648-.47565-3.92582-.91149a5.72982,5.72982,0,0,1-2.86508-1.91321,1.444,1.444,0,0,1-.24188-.43406,43.99708,43.99708,0,0,1-2.02107-8.83215c-.141-1.40228-.29239-2.80366-.4259-4.20676C104.25612,15.92726,104.20252,15.76342,104.40436,15.7113Z"/><path class="cls-5" d="M125.60614,7.15852c.334-.04964.44222.10351.46852.42956a2.73972,2.73972,0,0,0,.533,1.63842c.32663.39387.26146.948.36642,1.429.39118,1.79269.75765,3.591,1.11329,5.39114.36267,1.83589.67805,3.68076,1.009,5.52239a9.689,9.689,0,0,1-.15082,3.56582,5.94459,5.94459,0,0,1-1.47962,2.61c-.082.09806-.19606.1715-.26862.275a2.7822,2.7822,0,0,1-2.32588,1.01306c-1.67713.12281-3.35476.2187-5.02712.4294a10.09409,10.09409,0,0,1-2.58783.12679c-.726-.09453-1.4719.02294-2.21141-.013a28.35478,28.35478,0,0,1-4.97651-.51966c-.60516-.13825-1.23554-.137-1.8369-.32228a.8218.8218,0,0,1-.61118-.609c-.50159-1.75511-.92218-3.52925-1.27681-5.31937-.22026-1.1118-.44565-2.22266-.65441-3.33663-.10541-.56253-.18158-1.13065-.26442-1.6972a.30353.30353,0,0,1,.0589-.28981,27.37527,27.37527,0,0,1,1.3355,2.69419c.03969.10518.16076.17715.12746.31212a32.58288,32.58288,0,0,1,.948,3.76744c.15772.20248.05231.459.13885.67607a6.49762,6.49762,0,0,1,.31029,1.37543c.09965.445.20245.49741.59626.27425a5.34532,5.34532,0,0,1,1.75183-.50721,14.50255,14.50255,0,0,1,1.60607-.17717,5.27,5.27,0,0,1,1.29524-.13348,1.817,1.817,0,0,0,.97131-.13538,2.02351,2.02351,0,0,1,.7164-.08442,14.13442,14.13442,0,0,0,3.63991-.71728,19.1927,19.1927,0,0,1,2.241-.57,9.82731,9.82731,0,0,1,1.05-.11654,2.6934,2.6934,0,0,0,1.16143-.146c.01119-.00627.02429-.01878.034-.01669.91757.19757.891-.55369,1.02257-1.07177a11.68384,11.68384,0,0,0,.36774-2.10232,12.89731,12.89731,0,0,1,.17056-1.56984c.15435-.79639-.04244-1.5773.136-2.37582a7.18116,7.18116,0,0,0-.27341-2.862.23041.23041,0,0,0-.177-.18067c-.11082-.03782-.1466.05865-.21013.1212-.15509.15269-.11749.39058-.26066.54584-.06535.07086-.08659.22694-.20915.181a.33072.33072,0,0,1-.16927-.23691c-.07681-.84944-.3084-1.67088-.44584-2.50925-.09208-.56173-.13436-1.1322-.24168-1.686a9.44422,9.44422,0,0,0-.3478-2.02733,1.38587,1.38587,0,0,1-.02829-.45785l.01093-.04942c.7478-.16168,1.49455-.32854,2.24412-.48156A5.36662,5.36662,0,0,1,125.60614,7.15852Z"/><path class="cls-6" d="M120.1343,32.65112a6.38178,6.38178,0,0,0,1.51764-.12865c.52566-.15559,1.08742.09262,1.639.05314a1.22157,1.22157,0,0,0,.66694-.11847.56742.56742,0,0,1,.37383-.02619,2.20881,2.20881,0,0,0,1.38392-.07044.746.746,0,0,1,.41369.0198.74566.74566,0,0,0,.625-.058c.18866-.1304.38213.05149.59393.0033a4.068,4.068,0,0,0,1.74195-1.06385,12.58324,12.58324,0,0,0,2.67706-3.41047,7.4936,7.4936,0,0,0,.69578-2.33112,7.57262,7.57262,0,0,0,.19148-1.57514,6.34588,6.34588,0,0,0,.05565-1.83495c-.078-.24927.19046-.509.14126-.807a2.23962,2.23962,0,0,0-.13041-.81843c-.12336-.22556.01836-.49877.044-.75126a5.74362,5.74362,0,0,0-.16118-1.56459,19.44289,19.44289,0,0,0-.61712-2.83256c-.28438-.85129-.48483-1.71675-.69585-2.58192-.44076-1.80708-.85644-3.62029-1.27906-5.43176a1.881,1.881,0,0,1-.0215-.30615A15.98507,15.98507,0,0,1,132.845,7.479a.50148.50148,0,0,1,.13081.23158,49.688,49.688,0,0,1,2.01791,8.4048,18.21828,18.21828,0,0,1,.27926,2.63092.76591.76591,0,0,0,.10263.36755.50529.50529,0,0,1,.05306.40814,2.02686,2.02686,0,0,0-.08194.91352,9.35413,9.35413,0,0,0,.10765,2.02284.241.241,0,0,1,.00743.11458,33.91307,33.91307,0,0,1-1.62343,7.27583,9.70686,9.70686,0,0,1-1.38024,2.07526,9.48749,9.48749,0,0,1-2.71467,2.467,4.50315,4.50315,0,0,1-1.35042.53045,3.08355,3.08355,0,0,1-1.276.07831,1.11311,1.11311,0,0,0-.74571.13083.56453.56453,0,0,1-.41165.03573,3.51367,3.51367,0,0,0-1.73081.059,3.571,3.571,0,0,1-2.00817-.04747,4.346,4.346,0,0,0-1.90189-.05094.879.879,0,0,1-.59233-.04171.75263.75263,0,0,0-.40915-.09023c-1.2409.05239-2.46072-.201-3.69449-.25138a2.50064,2.50064,0,0,0-.30847-.05935,19.87577,19.87577,0,0,1-5.66911-1.2823,1.31418,1.31418,0,0,1-.3671-.20423.56291.56291,0,0,0-.3023-.17487,6.69961,6.69961,0,0,1-3.33281-4.03482c-.38037-1.32939-.76285-2.65991-1.0232-4.016-.18022-.93879-.2569-1.89952-.38408-2.84985-.09-.67233-.13218-1.349-.20538-2.02275a.45857.45857,0,0,1,.07613-.39964c.2335.01019.24471.19.25938.35439.10708,1.2.2803,2.39105.45046,3.58347a26.43026,26.43026,0,0,0,1.07152,4.44272,7.53319,7.53319,0,0,0,1.2159,2.51222,6.109,6.109,0,0,0,3.85119,2.11473.40553.40553,0,0,0,.19119-.00021,6.8954,6.8954,0,0,1,2.77067.03242,44.72289,44.72289,0,0,0,5.25789.1827.97314.97314,0,0,0,.54036-.17747C119.84031,32.65729,119.96677,32.5574,120.1343,32.65112Z"/><path class="cls-7" d="M103.34009,72.70127c-.83063-.32459-1.63712-.70182-2.44339-1.0828A33.43745,33.43745,0,0,1,97.641,69.97632a8.83717,8.83717,0,0,1-.46461-2.73078,8.47071,8.47071,0,0,0-.08149-1.56152,5.15678,5.15678,0,0,1,.06829-1.14823.67531.67531,0,0,0-.376-.65364,14.08384,14.08384,0,0,1-2.37946-1.68747,3.94162,3.94162,0,0,0-.9147-.56584,20.74024,20.74024,0,0,0-2.05258-.95975,3.20772,3.20772,0,0,1-.75-.3885c-.16453-.11534-.29447-.14228-.38073.0943-.07678.21052-.23739.20568-.40857.1135A4.54453,4.54453,0,0,1,89.438,60.213a33.71361,33.71361,0,0,0-4.58-2.52155c-.54052-.26638-1.07543-.54568-1.60021-.84342a.63617.63617,0,0,1-.36347-.46453.82455.82455,0,0,0-.39825-.54009,14.46986,14.46986,0,0,1-2.0368-1.44187.2658.2658,0,0,0-.37837-.01093c-.44554.28888-.62066.24055-.91818-.22906-.04451-.15711-.01573-.33414-.11628-.4753a.46367.46367,0,0,1,.10826-.67732,1.29208,1.29208,0,0,0,.50413-.96574.65162.65162,0,0,1,.0479-.14416c.14958-.2654.17024-.62573.53679-.73228a2.58723,2.58723,0,0,1,1.397.66306c.34593.28579.71493.54391,1.07586.81143a1.16594,1.16594,0,0,0,.70164.2767,1.23,1.23,0,0,1,.63253.26328A20.46455,20.46455,0,0,0,88.174,55.156c.59193.21194,1.1727.45456,1.76515.66583a.53615.53615,0,0,1,.29389.17513,2.24633,2.24633,0,0,0,1.54488.84813c.89211.21477,1.71631.60142,2.57578.89628,1.5427.52925,3.01121,1.23918,4.51994,1.85118a8.569,8.569,0,0,0,2.52622.45256,3.6449,3.6449,0,0,1,.82979.15793c.18193.06023.36873.12644.43906.33752-.13873.2345-.34989.10311-.5124.07185a2.45059,2.45059,0,0,0-1.10328.04482,1.205,1.205,0,0,0-.80807,1.33007.50453.50453,0,0,0,.2601.31769c.46964.28853.88546.65331,1.35906.93847.45356.27309.51725.56049.21856.99355a4.22715,4.22715,0,0,0-.72292,2.42157,7.94336,7.94336,0,0,1-.25423,1.66848,1.28623,1.28623,0,0,0,.42541,1.38309,4.81378,4.81378,0,0,1,.59991.69914,1.615,1.615,0,0,1,.388,1.09893.50924.50924,0,0,0,.05627.33414.84151.84151,0,0,0,.46643.2233,1.0586,1.0586,0,0,1,.58077.32266C103.696,72.71666,103.66373,72.75239,103.34009,72.70127Z"/><path class="cls-2" d="M128.7694,86.95128l4.294.002c.09292.11323.048.24722.048.37065q.00359,12.56722.002,25.13443c0,.40628-.00109.40683-.42258.40694-1.19347.0003-2.387-.00829-3.58031.00619-.288.0035-.39377-.05181-.39339-.37336q.01462-12.60569.00933-25.2114C128.72653,87.17467,128.69189,87.05481,128.7694,86.95128Z"/><path class="cls-8" d="M79.22829,54.13966c.35955.44678.4117.45726.86273.09658a.2307.2307,0,0,1,.365.01476,12.19076,12.19076,0,0,0,2.11086,1.5163c.17055.12085.37583.24107.38569.45216.02046.438.3492.5399.64969.70063a58.52889,58.52889,0,0,1,6.28747,3.4531c.20324.14307.34382.19342.35951-.14292.01249-.2677.17974-.25488.34171-.13515a15.89082,15.89082,0,0,0,1.89472.90954,10.26468,10.26468,0,0,1,2.37251,1.44961,9.00619,9.00619,0,0,0,1.726,1.19833c.69444.412.81447.59681.64272,1.38551a1.94865,1.94865,0,0,0,.00633.871,2.45465,2.45465,0,0,1,.03857,1.09691,2.17314,2.17314,0,0,0,.07959,1.10055c.16848.53806.03545,1.13771.33748,1.65174.02765.047-.02993.14416-.04794.218-.76852-.38787-1.53152-.78491-2.283-1.20629-1.67951-.94172-3.30679-1.9678-4.93093-2.99949-1.45911-.92685-2.865-1.93088-4.25461-2.95791-1.2152-.89816-2.41793-1.81541-3.55793-2.80577-1.2359-1.07366-2.44176-2.182-3.6354-3.30493a24.86359,24.86359,0,0,1-3.06066-3.57054c.05134-.20435.08335-.2423.23629-.15312a4.828,4.828,0,0,0,1.43812.511.52668.52668,0,0,1,.23813.12122,1.60359,1.60359,0,0,0,1.19108.43817A.29762.29762,0,0,1,79.22829,54.13966Z"/><path class="cls-9" d="M142.40007,12.61785a13.48494,13.48494,0,0,1,1.614,1.7162,3.12216,3.12216,0,0,1,.6203.826.83243.83243,0,0,1,.10336.40486,29.93735,29.93735,0,0,1-1.018,9.32673,35.60688,35.60688,0,0,1-2.89424,7.23567,28.89817,28.89817,0,0,1-3.46014,5.16935,15.18468,15.18468,0,0,1-4.90338,3.95859,7.14585,7.14585,0,0,1-2.633.66228c-1.485.11313-2.97374.0919-4.46119.07893-1.64028-.0143-3.27788-.10843-4.91429-.21955-.15389-.01045-.30791-.0098-.46183-.0077a1.39138,1.39138,0,0,1-.92223-.19241.46476.46476,0,0,0-.21986-.06594,5.42163,5.42163,0,0,1-1.53577-.45045,7.89493,7.89493,0,0,0-1.96512-.51987,23.65433,23.65433,0,0,1-5.86638-1.81751,11.52866,11.52866,0,0,1-1.30791-.73542c-.15028-.0924-.31543-.1872-.30243-.407.22846-.127.4242-.00546.61067.097a23.4676,23.4676,0,0,0,3.85491,1.62176,3.38848,3.38848,0,0,0,1.09277.18276,15.30779,15.30779,0,0,1,1.92664.33265,2.34707,2.34707,0,0,0,1.34955-.14457,2.16867,2.16867,0,0,1,.8951-.19275c.64091.01848,1.27227.13354,1.91353.16926,1.38226.077,2.76328.13827,4.14817.1429.89634.003,1.79334.13281,2.68912.06411,1.11215-.08529,2.23-.01911,3.33935-.15465A7.78215,7.78215,0,0,0,133.002,38.427a15.81364,15.81364,0,0,0,4.35407-4.18769,29.11489,29.11489,0,0,0,5.03734-12.19864,23.78845,23.78845,0,0,0,.35491-4.89843,38.02859,38.02859,0,0,0-.4891-3.92815C142.22722,12.99725,142.18344,12.77648,142.40007,12.61785Z"/><path class="cls-10" d="M136.69742,8.77316a14.21436,14.21436,0,0,1,2.6957,1.46552.45578.45578,0,0,1,.08343.17234c.32548,1.92136,1.0284,3.76048,1.21959,5.71318a27.30971,27.30971,0,0,1,.24759,3.79337A23.71647,23.71647,0,0,1,140.062,25.414a23.80923,23.80923,0,0,1-4.3702,8.75267,12.24255,12.24255,0,0,1-4.75074,3.64252,7.18317,7.18317,0,0,1-2.47409.50461c-1.58774.07127-3.17507.15184-4.76461.13975-.69139-.00525-1.38075-.0874-2.07394-.08812a1.84631,1.84631,0,0,1-.74621-.172,2.064,2.064,0,0,0-.97192-.18471,14.85159,14.85159,0,0,1-2.817-.35447c-.36107-.0828-.73942-.0556-1.107-.11906a35.14306,35.14306,0,0,1-5.67583-1.34769c-.67579-.23653-1.21766-.70464-1.86969-.97131-.51207-.44135-1.11846-.76242-1.59875-1.24557a7.96692,7.96692,0,0,1-1.15038-1.32454.44662.44662,0,0,1-.09218-.395c.0743-.14146.18785-.116.29474-.05686a5.07379,5.07379,0,0,1,1.2102.797,7.99059,7.99059,0,0,0,3.52791,2.01639,1.39959,1.39959,0,0,0,.45393.06736.25708.25708,0,0,1,.1095.05665,3.42377,3.42377,0,0,0,1.26833.41414,44.22112,44.22112,0,0,0,5.62021.89464c1.5407.14345,3.0661.40147,4.623.45061a47.21536,47.21536,0,0,0,6.10616-.183,6.87517,6.87517,0,0,0,3.20539-1.32462,14.68648,14.68648,0,0,0,5.08011-6.533,17.30226,17.30226,0,0,0,1.344-5.89343c.05562-.88241.16533-1.76392.14232-2.64783a35.49512,35.49512,0,0,0-.75113-6.64016c-.31414-1.44484-.75379-2.85254-1.1487-4.27388C136.62934,9.1933,136.52481,8.97667,136.69742,8.77316Z"/><path class="cls-11" d="M120.90466,38.11948a4.59279,4.59279,0,0,0,1.21038.15815c.86994-.01815,1.73663.13085,2.6078.07151,1.04812-.07139,2.09746-.06515,3.147-.08059a8.4591,8.4591,0,0,0,5.07176-1.69475,15.41812,15.41812,0,0,0,4.1368-4.52523,27.46938,27.46938,0,0,0,2.57869-5.64,23.77878,23.77878,0,0,0,.983-4.4755,16.45488,16.45488,0,0,0,.204-2.39583,34.55309,34.55309,0,0,0-.55742-5.23756c-.19506-1.046-.58713-2.0343-.77952-3.07542a3.55363,3.55363,0,0,1-.11395-.98561,16.19331,16.19331,0,0,1,3.00695,2.37917,3.2753,3.2753,0,0,0,.11807,1.54061,21.12739,21.12739,0,0,1,.33107,4.806,28.53027,28.53027,0,0,1-1.53383,7.8049,29.71264,29.71264,0,0,1-3.00979,6.24523,18.248,18.248,0,0,1-3.00861,3.76365,11.13691,11.13691,0,0,1-4.89267,2.90377,6.29249,6.29249,0,0,1-1.43458.19727c-1.37172-.01-2.74177.18135-4.1098.077-1.115-.085-2.23-.00474-3.34068-.07709-1.30966-.08531-2.62432-.11695-3.92712-.2964a.82473.82473,0,0,0-.59637-.30008,44.4847,44.4847,0,0,1-4.97073-1.103,2.00012,2.00012,0,0,1-.60752-.23107c-.15143-.09259-.27477-.2048-.13612-.40094a.72165.72165,0,0,1,.56059-.00062c.9515.21,1.90057.43047,2.85812.61341.36816.07033.74035.06535,1.1088.113a.29419.29419,0,0,0,.189-.02085c.61733-.38027,1.27194-.14593,1.91247-.11665a20.67854,20.67854,0,0,0,2.34471-.00586A3.37271,3.37271,0,0,1,120.90466,38.11948Z"/><path class="cls-12" d="M103.57168,72.393c-.32184-.24194-.76469-.20157-1.07856-.46212-.0928-.59992-.00825-.6786.56354-.52367.08664.02348.17391.04445.26081.06683.1864.048.2846-.00283.31137-.21294.111-.87076.53558-1.65205.72824-2.50077a.28672.28672,0,0,1,.29772-.25254c.19583.0164.2235.1819.24019.34056.00538.05105-.00194.103.00309.1536.014.1408-.10938.33042.09433.40678a.49906.49906,0,0,0,.57477-.09782,1.24,1.24,0,0,1,.88792-.389,1.00218,1.00218,0,0,0,.50867-.24574c.6278-.50684,1.28668-.97346,1.93005-1.45964.74578-.56358,1.49655-1.122,2.22744-1.7054a8.60687,8.60687,0,0,1,1.05635-.767c.38111-.21947.39572-.46259.03886-.74032-.40479-.315-.80951-.62924-1.19027-.97358a.5836.5836,0,0,1-.25881-.408c.03-.15775.155-.22481.27891-.29315a.74582.74582,0,0,1,.71764.16675,16.38552,16.38552,0,0,1,1.61072,1.23028.40822.40822,0,0,0,.15181.11346c.87366.28791,1.66947.75,2.50706,1.1184a6.22362,6.22362,0,0,0,1.81591.56985.46712.46712,0,0,1,.43017.62711c-.02656.11375-.10114.20642-.13451.31685a.61968.61968,0,0,1-.16442.25674,17.28919,17.28919,0,0,1-1.85563,1.54729c-1.22158.73238-2.33765,1.61933-3.50552,2.4303a14.362,14.362,0,0,1-3.41307,1.97371,3.62208,3.62208,0,0,0-1.65361,1.26619.5305.5305,0,0,1-.50961.275,15.80776,15.80776,0,0,1-2.1755-.81795,6.0907,6.0907,0,0,1-1.28914-.57558C103.59822,72.68233,103.7507,72.535,103.57168,72.393Z"/><path class="cls-13" d="M136.69742,8.77316a7.82984,7.82984,0,0,0,.50587,1.99784,34.88882,34.88882,0,0,1,1.08788,4.72767c.12928.879.21759,1.7678.28267,2.65907a20.88063,20.88063,0,0,1,.11719,2.71373,27.25263,27.25263,0,0,1-.69478,5.83083,18.77469,18.77469,0,0,1-1.66285,3.9533,13.56122,13.56122,0,0,1-1.4845,2.27488,14.27748,14.27748,0,0,1-2.69851,2.48827,7.72612,7.72612,0,0,1-4.23116,1.48914c-1.50756.0591-3.01363.16174-4.52264.12776a15.98027,15.98027,0,0,1-3.01449-.18016c-1.5243-.33169-3.08218-.30792-4.61-.61778-1.11509-.22615-2.25578-.38308-3.38242-.586-.33682-.06068-.65058-.21584-.99617-.25858a.2807.2807,0,0,1-.27235-.27737c.06083-.21.22161-.11914.34211-.10144q2.546.37405,5.10281.6636c.40593.04655.81782.03961,1.22667.07736a1.92914,1.92914,0,0,0,.93-.19767c.09868.02591.15051.14128.26822.1349.62743-.03405,1.25255.09338,1.8796.03347a3.83828,3.83828,0,0,1,.80679-.01844,24.918,24.918,0,0,0,3.38405.05673c.83054-.01609,1.66271-.09366,2.49366-.14318a6.80616,6.80616,0,0,0,1.55634-.20228,8.78292,8.78292,0,0,0,3.43676-2.05583c.42479-.3897.82317-.80927,1.21988-1.2293A6.70621,6.70621,0,0,0,135.2198,29.452a28.81233,28.81233,0,0,0,1.29992-6.51405,33.26675,33.26675,0,0,0-.05988-4.83817,38.233,38.233,0,0,0-1.93276-9.24093c-.10169-.3107-.32829-.62677-.14153-.98813A18.36523,18.36523,0,0,1,136.69742,8.77316Z"/><path class="cls-14" d="M107.88567,37.58044a4.88922,4.88922,0,0,0,1.70638,1.07067,21.11875,21.11875,0,0,0,4.04608,1.4196c.94379.21238,1.9021.36589,2.8363.61243a3.24543,3.24543,0,0,1,1.2041.43323c.37215.27847.87317.15874,1.28652.31677a10.83015,10.83015,0,0,0,3.06813.31228,59.5159,59.5159,0,0,0,6.25651.13492,11.93408,11.93408,0,0,0,3.07535-.31255,7.78777,7.78777,0,0,0,2.04512-.92869,16.12508,16.12508,0,0,0,2.97282-2.40721,25.57575,25.57575,0,0,0,2.14975-2.59223,27.33583,27.33583,0,0,0,1.81613-2.83937,36.16541,36.16541,0,0,0,1.68174-3.40353,29.99814,29.99814,0,0,0,1.40915-3.87671,30.41675,30.41675,0,0,0,1.04545-5.16361,24.07754,24.07754,0,0,0,.14838-2.48292c-.00775-.90442-.0001-1.809.00084-2.71345a11.5173,11.5173,0,0,1,.91542,1.25159.20678.20678,0,0,1,.07913.16825,17.0005,17.0005,0,0,1-.086,2.83832,31.19139,31.19139,0,0,1-.41736,3.27895,37.32673,37.32673,0,0,1-1.68239,6.03414A36.19168,36.19168,0,0,1,140.97,34.024a28.53852,28.53852,0,0,1-3.618,5.10692,14.29922,14.29922,0,0,1-4.445,3.49744,6.95075,6.95075,0,0,1-2.85246.6972c-1.03784.027-2.07672.09239-3.11343.05245-1.57375-.06064-3.14811-.10794-4.71817-.27085-1.22315-.12691-2.45235-.20024-3.66373-.42056-.65494-.11912-1.29957-.29214-1.94416-.46013a.577.577,0,0,1-.29162-.17829.497.497,0,0,0-.40532-.255,9.837,9.837,0,0,1-1.71025-.43629,21.07741,21.07741,0,0,1-6.67215-3.13787,20.58954,20.58954,0,0,1-2.763-2.76113.62885.62885,0,0,1-.23213-.544c.26974-.13867.39625.09383.5317.232a22.55314,22.55314,0,0,0,2.0488,1.8916,2.14474,2.14474,0,0,0,.38423.24814A1.00664,1.00664,0,0,1,107.88567,37.58044Z"/><path class="cls-15" d="M146.40217,18.02018l.35708.6233c.12143.0401.09686.13789.09035.22855l.403,1.06605a4.20541,4.20541,0,0,1-.07476,1.44719A35.69489,35.69489,0,0,1,143.34637,33.502c-.55665,1.06619-1.14052,2.1221-1.79854,3.13453a32.45482,32.45482,0,0,1-3.65764,4.69265,13.18608,13.18608,0,0,1-5.71823,3.88944,7.66226,7.66226,0,0,1-2.04954.3098c-1.32031.02436-2.63926.08715-3.96028.1023a46.41328,46.41328,0,0,1-6.96116-.56232,10.33953,10.33953,0,0,1-1.98439-.40584.94674.94674,0,0,1-.50427-.25532.77586.77586,0,0,0-.66629-.49471c-.27141-.05715-.60233-.09659-.60945-.49984a4.28146,4.28146,0,0,1,1.00356-.26032c.94346.1892,1.8853.39468,2.84218.50043q1.87179.20685,3.74752.38043a16.58352,16.58352,0,0,0,1.76319.10077,27.56619,27.56619,0,0,0,3.37586-.01085,9.19709,9.19709,0,0,1,1.57684-.02,7.95344,7.95344,0,0,0,5.14872-1.83418,24.26924,24.26924,0,0,0,5.56139-6.222,35.8574,35.8574,0,0,0,3.81839-7.74542,34.26946,34.26946,0,0,0,1.79874-7.74236,15.46379,15.46379,0,0,0,.15263-2.1076C146.2216,18.29007,146.2084,18.10825,146.40217,18.02018Z"/><path class="cls-16" d="M134.38555,7.87075a17.10437,17.10437,0,0,0,.6488,2.20209,42.39188,42.39188,0,0,1,1.2854,5.70263,37.27131,37.27131,0,0,1,.37471,6.14779,25.43922,25.43922,0,0,1-.56921,4.54341,26.38461,26.38461,0,0,1-1.27153,4.29165,4.907,4.907,0,0,1-1.00191,1.43776,11.65417,11.65417,0,0,1-3.52481,2.8643,7.23923,7.23923,0,0,1-2.89689.69248c-1.6493.07855-3.29791.18278-4.947.12089-1.14556-.043-2.29053-.03577-3.43549-.06307-.166-.004-.31936-.00084-.3-.23283a.3586.3586,0,0,1,.2412-.10419c-1.0197-.129-2.01157-.13571-2.99473-.24575-.22887-.02561-.456-.06269-.685-.08692-.12533-.01325-.26238-.02359-.299-.1864a.23531.23531,0,0,1,.17622-.21013c.12526-.06836.28414.01015.40282-.09084a19.76312,19.76312,0,0,1,2.51409.18613,9.71547,9.71547,0,0,0,1.21073.04455c.03828.00285.082-.01146.1147.0023.78444.32984,1.59014-.04531,2.38151.07132.13865.02043.294-.00905.405.08717a.83527.83527,0,0,0,.61654.14842c.23086-.00337.4619.00312.69271-.00169a2.843,2.843,0,0,0,.95113-.16487,2.28811,2.28811,0,0,1,1.43194.01338c.123.03807.24276.11954.36436.0379a1.51783,1.51783,0,0,1,1.39357-.09046.27369.27369,0,0,0,.14543.01189,7.68861,7.68861,0,0,0,2.64236-1.20681,12.47917,12.47917,0,0,0,3.14478-3.70567,10.02531,10.02531,0,0,0,.92631-2.83265c.26474-1.076.40945-2.17446.58978-3.26642.07284-.44115-.11924-.95669.2544-1.35152.06555-.06927.00218-.19824-.0514-.2889a.71217.71217,0,0,1-.08266-.44632,11.94481,11.94481,0,0,0-.00578-1.55951c-.01569-.524.01749-1.04063-.03434-1.57546A45.38392,45.38392,0,0,0,134.1761,12.307c-.37363-1.52253-.85675-3.01818-1.288-4.52668A2.16709,2.16709,0,0,1,132.845,7.479,9.28381,9.28381,0,0,1,134.38555,7.87075Z"/><path class="cls-17" d="M146.40217,18.02017a.83957.83957,0,0,0-.07545.48653,24.43214,24.43214,0,0,1-.36172,3.57166,30.34962,30.34962,0,0,1-.82279,3.84972,30.41932,30.41932,0,0,1-1.12158,3.33812c-.43008,1.07616-.86055,2.15237-1.37821,3.18829a38.30493,38.30493,0,0,1-2.73659,4.59542,25.51091,25.51091,0,0,1-3.87119,4.44641,12.94028,12.94028,0,0,1-2.62947,1.83244,7.40629,7.40629,0,0,1-3.86923.87207c-.924-.03728-1.84.11383-2.7634.0822-1.72872-.05921-3.45522-.09123-5.18022-.2883-1.55726-.1779-3.11788-.30817-4.65312-.63837a1.17762,1.17762,0,0,1-.5026-.15339c.04939-.23758-.13689-.23728-.27986-.26875a26.8308,26.8308,0,0,1-3.135-.9114,22.52186,22.52186,0,0,1-4.70418-2.246c-.13126-.08408-.31288-.14481-.27879-.36274.19881-.09.34881.03527.49432.12831a13.42536,13.42536,0,0,0,3.86889,1.75183c1.09646.28053,2.19254.60163,3.31449.79786.25125.04394.41494-.16671.6431-.12167a2.68655,2.68655,0,0,0,1.15236.36711,27.04228,27.04228,0,0,0,4.6463.64792c1.24785.10165,2.49529.1673,3.74419.238,1.026.05811,2.051.07791,3.07134.03737a10.64265,10.64265,0,0,0,2.326-.159,9.4743,9.4743,0,0,0,2.56019-1.10276,14.8314,14.8314,0,0,0,3.13769-2.62639,28.28851,28.28851,0,0,0,2.79982-3.63554,38.61212,38.61212,0,0,0,2.59542-4.72434,30.88875,30.88875,0,0,0,1.47885-3.85522,36.85593,36.85593,0,0,0,1.10168-4.21907,30.99759,30.99759,0,0,0,.444-3.33018c.08044-1.02067.15412-2.03811.14146-3.06155.09716-.02738.11878.04239.14189.11026Z"/><path class="cls-18" d="M116.74475,44.358a5.1833,5.1833,0,0,0,1.737.52215c.7304.04074,1.43451.22642,2.15995.28081.8883.06662,1.76484.26653,2.65892.27123a7.257,7.257,0,0,1,1.52068.14476c.22517.04927.423-.07709.64424-.06883.46142.0172.92409.01255,1.386.00372,1.13913-.02178,2.27979-.02076,3.4168-.08387a9.224,9.224,0,0,0,5.25782-2.08835c.54263-.42526,1.05222-.88882,1.59355-1.31634A12.65237,12.65237,0,0,0,138.658,40.3167c.7976-.91026,1.53132-1.87873,2.25554-2.84981a12.84585,12.84585,0,0,0,.70629-1.131c.7495-1.26163,1.49117-2.52986,2.131-3.85233a37.12655,37.12655,0,0,0,2.88092-8.43209,29.2205,29.2205,0,0,0,.54422-3.66192c.01281-.15157.05048-.301.07663-.45149a7.86825,7.86825,0,0,1,.61288,1.931,7.13353,7.13353,0,0,1-.18453,1.5628,37.2579,37.2579,0,0,1-2.05,6.92862,41.37794,41.37794,0,0,1-3.3565,6.568,29.046,29.046,0,0,1-4.64327,5.82247,15.8524,15.8524,0,0,1-3.25338,2.50978,9.61266,9.61266,0,0,1-4.40463,1.21746c-1.5741.05856-3.15.10062-4.723.20241a8.07208,8.07208,0,0,1-1.60468-.09262c-.60716-.082-1.23518-.08586-1.854-.12354a15.4016,15.4016,0,0,1-2.40393-.28528,14.04761,14.04761,0,0,1-2.06986-.31742,7.76694,7.76694,0,0,1-1.81892-.43235,23.17278,23.17278,0,0,1-3.13076-1.01841c-.15282-.06474-.3681-.08589-.34864-.33718.174-.1304.3437-.02395.50758.02054.6167.16743,1.21384.40207,1.838.5443a7.48162,7.48162,0,0,0,1.28562.16063c.01455-.11975-.09661-.17079-.08155-.26521A1.08042,1.08042,0,0,1,116.74475,44.358Z"/><path class="cls-19" d="M107.04324,74.221a1.16486,1.16486,0,0,0,.4876-.402,3.66645,3.66645,0,0,1,1.77182-1.286,12.2819,12.2819,0,0,0,3.03944-1.74819C113.745,69.81005,115.13,68.81,116.545,67.85164a6.59833,6.59833,0,0,0,1.50939-1.38909,8.54066,8.54066,0,0,1,.92914-.89265c.07356-.053.15321-.12853.11768-.22-.17008-.438.13347-.48922.43342-.55026.04939-.01005.09734-.02752.14753-.03819a2.1906,2.1906,0,0,1,1.12757.10089,3.22648,3.22648,0,0,0,2.04985.08594,1.3074,1.3074,0,0,1,.30165-.04055,2.908,2.908,0,0,1,.63671.13584,1.11393,1.11393,0,0,0,.78747-.01481.509.509,0,0,1,.33949-.02526c.15064.03876.21194.15176.07786.23942-.51247.335-.63118.95113-1.01508,1.37434-1.67021,1.05792-3.37093,2.06336-5.12186,2.98287-.5821.30569-1.16052.6184-1.74063.92789a9.56661,9.56661,0,0,1-1.38995.70674c-.58892.26689-1.18253.52395-1.76591.80245-1.91187.91272-3.86955,1.715-5.856,2.449a.6926.6926,0,0,1-.378.00127A2.12354,2.12354,0,0,1,107.04324,74.221Z"/><path class="cls-20" d="M117.36081,45.74476a2.37123,2.37123,0,0,0,1.52856.12722c.11486-.04632.11408.17394.277.19009.82263.08153,1.63983.2302,2.46356.28261.36381.02314.73909.22524,1.12089-.00208.0829-.04935.22982.21176.35914.15974.56872-.22878,1.08319.14806,1.64744.107,1.43945-.10479,2.88794-.08445,4.32769-.18648a20.4284,20.4284,0,0,0,2.47363-.21231,8.97054,8.97054,0,0,0,1.85458-.59473,13.92409,13.92409,0,0,0,3.59124-2.443,27.76573,27.76573,0,0,0,4.95592-5.91555,42.37251,42.37251,0,0,0,2.34388-4.171,39.69047,39.69047,0,0,0,2.89611-7.89769,23.01548,23.01548,0,0,0,.59278-3.15074.635.635,0,0,1,.07223-.16867,5.8063,5.8063,0,0,1,.37392,1.77335,28.64387,28.64387,0,0,1-.99262,3.83407,36.172,36.172,0,0,1-2.33752,5.89743,38.876,38.876,0,0,1-5.0879,7.82153,21.50176,21.50176,0,0,1-5.30465,4.64015,7.956,7.956,0,0,1-3.70236,1.19581c-1.98083.093-3.95484.32428-5.943.28413a30.06792,30.06792,0,0,1-3.52744-.22894c-1.25382-.17361-2.50744-.35015-3.76433-.50349a21.02157,21.02157,0,0,1-2.33428-.6002c-.14683-.0416-.34725-.037-.3778-.2607a.21673.21673,0,0,1,.24606-.13817,5.32863,5.32863,0,0,1,1.31919.07982A1.39052,1.39052,0,0,0,117.36081,45.74476Z"/><path class="cls-21" d="M148.2477,32.57313a10.80361,10.80361,0,0,1-.23985,1.77607,20.3438,20.3438,0,0,1-1.64358,3.03818,42.84148,42.84148,0,0,1-4.68447,6.32727,31.25654,31.25654,0,0,1-5.39619,4.90135,11.66564,11.66564,0,0,1-5.764,2.16729c-.98176.086-1.95133.29277-2.93218.40249q-1.183.13233-2.3719.19793a8.57713,8.57713,0,0,1-1.84045.05628c-.63793-.0492-1.27334-.12809-1.90935-.179-1.38047-.11058-2.75033-.31323-4.12947-.42973-.24419-.105-.50621-.15649-.75516-.24687-.15179-.0551-.32366-.09922-.33165-.31175.08531-.18554.25088-.15905.39788-.13056.29007.05622.58961.01455.87622.09741a.4298.4298,0,0,0,.32987-.06641,7.04169,7.04169,0,0,1,1.56353.12508,6.12282,6.12282,0,0,0,.87759.04789c.96026-.02789,1.91519.10886,2.8738.10632a11.07486,11.07486,0,0,1,1.8787.03485.54316.54316,0,0,0,.32966-.0901.97973.97973,0,0,1,.55666-.12562,8.27806,8.27806,0,0,0,2.16119-.14523,33.32937,33.32937,0,0,0,4.5927-.705,4.039,4.039,0,0,0,1.883-.79983,3.16155,3.16155,0,0,1,1.07142-.57884,3.33652,3.33652,0,0,0,1.21459-.90491,14.96337,14.96337,0,0,1,1.26465-.98311c.05712-.0501.15008-.0732.18353-.13673.41855-.79467,1.29254-1.10587,1.85225-1.75046a2.92808,2.92808,0,0,0,.43486-.58222c.181-.356.55619-.54186.77534-.88154.37791-.58576.99718-.9876,1.328-1.61118.32356-.60992.87237-1.03549,1.238-1.60858.32919-.516.7021-1.01789.993-1.542.33987-.61242.73875-1.19,1.07631-1.804.34093-.62009.68064-1.24637,1.04458-1.85678.27231-.45675.44132-.9802.69821-1.45287C147.84653,32.74112,147.93168,32.47908,148.2477,32.57313Z"/><path class="cls-22" d="M117.59213,46.51457c.88566.02016,1.74834.23406,2.62565.31462.94634.08689,1.87787.27184,2.83264.323a30.27866,30.27866,0,0,0,3.0705.03964,34.19161,34.19161,0,0,0,3.91921-.27145c.465-.07629.954.02631,1.43506-.06046a10.00722,10.00722,0,0,0,4.159-1.86976,21.742,21.742,0,0,0,3.38043-3.04795,36.68708,36.68708,0,0,0,3.11655-3.97461,40.08348,40.08348,0,0,0,2.624-4.50677,41.52752,41.52752,0,0,0,2.89124-7.70721c.17332-.64084.34025-1.28138.45722-1.9347a.25108.25108,0,0,1,.13579-.17645,7.34615,7.34615,0,0,1,.1654,1.08033,1.50077,1.50077,0,0,1-.02256.82923,44.22622,44.22622,0,0,1-2.58363,7.08036,39.25853,39.25853,0,0,1-4.01591,6.82338,33.01778,33.01778,0,0,1-3.999,4.61605,13.15388,13.15388,0,0,1-5.7015,3.37679,14.66635,14.66635,0,0,1-2.29183.24407c-1.54424.14569-3.09564.18811-4.64236.29974a14.40709,14.40709,0,0,1-2.2657-.092c-1.08522-.0925-2.16963-.19414-3.2552-.28309-.86953-.07124-1.72928-.22584-2.59562-.32578a.38667.38667,0,0,1-.236-.11966c-.2359-.50293-.21136-.55887.3132-.638A.96506.96506,0,0,1,117.59213,46.51457Z"/><path class="cls-23" d="M123.44683,51.36678a40.07889,40.07889,0,0,0,4.76459-.38072c1.22184-.17662,2.448-.32589,3.66633-.52352a10.25257,10.25257,0,0,0,3.73867-1.53287,24.63415,24.63415,0,0,0,3.123-2.40369c.69-.5981,1.32317-1.25064,1.9578-1.90132a39.69824,39.69824,0,0,0,3.96531-4.81784,41.99537,41.99537,0,0,0,3.10991-5.10987,3.33646,3.33646,0,0,1,.2354-.34776,13.2907,13.2907,0,0,1-.45,2.3048c-.97638,1.54833-1.93538,3.10774-3.03461,4.57516-.81455,1.08738-1.70826,2.106-2.61813,3.11314-.69567.77006-1.42163,1.50945-2.1686,2.22792a22.36163,22.36163,0,0,1-4.63882,3.51939,8.26011,8.26011,0,0,1-2.48339.99468c-.731.11648-1.45835.25031-2.19365.33841-.944.11311-1.88266.26781-2.82241.41269a3.21121,3.21121,0,0,1-.68818.04218,7.7503,7.7503,0,0,0-1.30939.15166.77886.77886,0,0,1-.26658-.01033,3.38045,3.38045,0,0,0-1.26009-.06851,6.24526,6.24526,0,0,1-1.74969-.10888c-.2287-.03238-.45711-.0528-.6878-.0629-.14621-.00641-.3199.01527-.37811-.18427.09257-.27058.33176-.262.54243-.25608C122.34951,51.35357,122.89926,51.304,123.44683,51.36678Z"/><path class="cls-24" d="M116.82178,47.13073a12.30022,12.30022,0,0,0,1.54371.22842c1.19127.22439,2.40548.24782,3.608.363a16.1517,16.1517,0,0,0,2.97965.17388c1.44678-.12956,2.90162-.11371,4.34711-.28721.71854-.08624,1.44936-.08366,2.17277-.16325a7.10224,7.10224,0,0,0,2.19331-.65366,14.144,14.144,0,0,0,3.50555-2.31625,30.82014,30.82014,0,0,0,3.16683-3.33153,37.89455,37.89455,0,0,0,3.49007-4.97607,41.20671,41.20671,0,0,0,2.52666-5.03909,42.33039,42.33039,0,0,0,2.00324-5.9126,2.17753,2.17753,0,0,0,.0461-.49359c.11531.10774.051.25964.09469.385.05368.12759-.01716.2724.055.39743l.02082.44944a.64976.64976,0,0,1,.01249.30106,21.18542,21.18542,0,0,1-.98329,3.11462,43.13881,43.13881,0,0,1-4.24813,8.48519,34.05981,34.05981,0,0,1-3.68938,4.82382,18.42115,18.42115,0,0,1-6.55781,4.93168,8.95581,8.95581,0,0,1-2.62535.554c-1.02142.08232-2.04225.17665-3.063.26933a13.602,13.602,0,0,1-1.41778.09459c-.80611-.0119-1.60671.0745-2.41723.03137-1.51283-.08051-3.01073-.2809-4.51354-.44225a2.4891,2.4891,0,0,1-.79681-.10286.65089.65089,0,0,0-.43622-.2197,5.25869,5.25869,0,0,1-1.254-.35945c-.14776-.04472-.37194-.084-.2704-.34748A.44962.44962,0,0,1,116.82178,47.13073Z"/><path class="cls-25" d="M120.1343,32.65112c-.051.00423-.12522-.01192-.14942.01572-.40368.46126-.94536.36587-1.46161.3687-.55147.003-1.10365.01851-1.65431-.0028-1.42546-.05518-2.84479-.17766-4.264-.33219a2.56123,2.56123,0,0,0-1.37314.09729c-.36572.16312-.80414-.046-1.17968-.16926a6.83821,6.83821,0,0,1-2.29375-1.20591,5.66318,5.66318,0,0,1-1.57275-2.26738,24.20071,24.20071,0,0,1-1.33-4.66094c-.193-.97127-.30294-1.95959-.43373-2.94244-.07043-.52935-.10808-1.06313-.15607-1.59532a.26887.26887,0,0,0-.15466-.2447.96612.96612,0,0,1-.18688-.60855c-.144-1.22913-.13816-2.46772-.2266-3.70051-.01242-.17313-.06563-.39147.18916-.46995a3.44666,3.44666,0,0,1,.51756.77842c-.14011.17313.0045.3409.00637.511.01029.9329.1731,1.852.25171,2.77853.09024,1.06348.27264,2.11907.41206,3.17848a36.37318,36.37318,0,0,0,1.21962,5.20748,13.61022,13.61022,0,0,0,.57091,1.78048,3.57339,3.57339,0,0,0,1.46766,1.47429,9.9056,9.9056,0,0,0,3.65679,1.17055,4.46966,4.46966,0,0,1,1.57571.40077,1.0574,1.0574,0,0,0,.82494.14939,1.38873,1.38873,0,0,1,.63866.10051,10.20224,10.20224,0,0,0,2.64251.05678,2.39956,2.39956,0,0,1,1.38566.10446.28873.28873,0,0,0,.25629-.00451C119.60252,32.40426,119.86483,32.55542,120.1343,32.65112Z"/><path class="cls-26" d="M148.2477,32.57313a.47992.47992,0,0,0-.372.302c-.201.39841-.394.80154-.56981,1.21155-.09115.21263-.23361.39807-.32607.59583a4.40163,4.40163,0,0,0-.52474,1.07639c-.03849.22206-.291.27392-.38484.49287a3.24934,3.24934,0,0,1-.69655,1.15472.58586.58586,0,0,0-.19562.36726.71736.71736,0,0,1-.2318.47409,11.60433,11.60433,0,0,0-1.088,1.62136,6.85465,6.85465,0,0,0-1.063,1.36284c-.21565.47456-.72048.71628-.94815,1.14048-.1715.31956-.56882.448-.6114.83655a.0507.0507,0,0,1-.017.03382c-.66924.43469-.93557,1.25468-1.59987,1.68506-.26329.17057-.59721.26444-.75364.54742a2.76389,2.76389,0,0,1-1.17849,1.09835c-.39231.203-.56629.62869-.98175.77312-.12945.045-.09981.23749-.23493.32956a7.38783,7.38783,0,0,1-1.6006.85995c-.32477.1192-.46926.44472-.81072.54954a17.27,17.27,0,0,1-2.05127.60827c-.57027.1-1.16129.14229-1.72189.25514-.30637.06168-.73092-.16848-.958.2342a.89924.89924,0,0,0-.76623-.05155c-.47283.1204-.97092.10718-1.43681.19231a11.61484,11.61484,0,0,1-1.26888.04137c-.05109.004-.11886-.01437-.151.01182-.44906.36561-.95762.10124-1.4357.14907a22.843,22.843,0,0,1-2.322.00638c-.47945-.00079-.98353-.10322-1.47643-.08376a18.75811,18.75811,0,0,1-2.57016-.23767.61116.61116,0,0,1-.46889.02662,7.66734,7.66734,0,0,1-1.033-.22274c-.14814-.04322-.37571-.0435-.344-.30752.20133-.20982.44914-.12552.68882-.11492.727.03212,1.45429.05667,2.18144.0167.74163.01489,1.47628.13829,2.21866.15379.10127.00211.20268.03835.30524.03406,1.03928-.0435,2.07373.1348,3.11194.07767,1.12433-.06186,2.24743-.13288,3.36834-.26025,1.10707-.1258,2.21541-.24583,3.3219-.37663a10.11311,10.11311,0,0,0,4.742-1.98046,32.51407,32.51407,0,0,0,7.86674-8.40788,49.94772,49.94772,0,0,0,3.10735-5.263c.40692-.79852.79173-1.61058,1.13407-2.44114a1.15619,1.15619,0,0,1,.33754-.58959.08513.08513,0,0,1,.08839.06922.2057.2057,0,0,1-.033.177A16.83549,16.83549,0,0,1,148.2477,32.57313Z"/><path class="cls-27" d="M132.69108,50.98169a2.85122,2.85122,0,0,0,.97-.323,16.38384,16.38384,0,0,0,3.281-1.86653,26.65153,26.65153,0,0,0,3.08651-2.62642c.5762-.54839,1.12758-1.14166,1.67348-1.73043.64976-.70076,1.24055-1.44918,1.88-2.1569a21.266,21.266,0,0,0,1.76044-2.35926c.59459-.87625,1.15305-1.77693,1.73357-2.66282.14079-.21485.18579-.51047.48185-.60238a10.9656,10.9656,0,0,1-.46328,1.92339,40.71771,40.71771,0,0,1-3.39635,4.65641c-.66335.8172-1.35737,1.6108-2.09229,2.3597a24.76406,24.76406,0,0,1-1.905,1.79123c-1.06881.88057-2.10177,1.80189-3.25372,2.58273a12.81455,12.81455,0,0,1-5.5705,2.186c-1.10576.147-2.2035.3755-3.31092.49669a14.68121,14.68121,0,0,1-2.29174.20934c-.49885.01525-.99533.00854-1.49458.06765a11.5058,11.5058,0,0,1-2.02516-.166.18578.18578,0,0,1-.17149-.13344c.10047-.15869.26669-.138.41512-.13724.6913.00359,1.38013-.09613,2.07248-.04651a1.2164,1.2164,0,0,0,.27891-.00575c-.23486.01216-.47854.009-.722.00226-.12274-.00337-.24689-.041-.252-.18162-.00539-.14762.11145-.22.24437-.25554a.22394.22394,0,0,1,.11464-.00351,5.84678,5.84678,0,0,0,2.20455-.0283c.99771-.10544,1.99822-.18284,2.99041-.35449.91457-.15823,1.83818-.27156,2.75842-.40013A7.25026,7.25026,0,0,0,132.69108,50.98169Z"/><path class="cls-28" d="M148.47678,30.57166c-.41239.90673-.79564,1.82816-1.24413,2.71668-.63971,1.26731-1.32165,2.51253-2.06372,3.72555a43.19359,43.19359,0,0,1-3.67137,5.18324,31.52858,31.52858,0,0,1-3.88275,3.92249,18.32131,18.32131,0,0,1-3.031,2.13776,10.8828,10.8828,0,0,1-4.3576,1.206,25.19828,25.19828,0,0,0-2.84085.3423c-.38677.0776-.78631.0337-1.18278.0836a30.95328,30.95328,0,0,1-4.90538-.005,14.04221,14.04221,0,0,1-2.31845-.21193,3.86454,3.86454,0,0,1-1.53393-.18732c-.38815-.125-.76993-.26942-1.16034-.3898-.163-.05029-.40747-.08143-.31024-.37091a.41067.41067,0,0,1,.32712-.05719,5.06347,5.06347,0,0,0,1.47081.053c.6191.00989,1.20711.225,1.82217.27291,1.27633.09948,2.54574.275,3.82485.34834a31.75671,31.75671,0,0,0,4.5568-.2123c1.11086-.09587,2.22035-.21081,3.32734-.333a9.34072,9.34072,0,0,0,4.15041-1.63673,24.7394,24.7394,0,0,0,3.6461-3.06539,36.80168,36.80168,0,0,0,5.32948-6.79224,48.10432,48.10432,0,0,0,3.84461-7.65833c.05846-.14682.05172-.37572.30292-.38221a.48555.48555,0,0,1-.00286.305l-.02021.60118C148.47245,30.29149,148.57675,30.451,148.47678,30.57166Z"/><path class="cls-29" d="M73.06682,48.74368a21.82411,21.82411,0,0,1-1.61407-3.16934c-.09946-.22694-.01608-.29037.20212-.21886a.59486.59486,0,0,1,.22424.14611c.45813.45041,1.01478.77568,1.502,1.19257a2.025,2.025,0,0,0,1.97928.54614,7.24792,7.24792,0,0,1,1.208-.20551c.609.16277,1.24073.20351,1.85364.345a.33249.33249,0,0,1,.16409.2043,2.02222,2.02222,0,0,0,.4481.83532.2748.2748,0,0,1,.063.25191c-.20706.2749-.55933.2829-.83062.44369-.20611.12215-.276.19607-.19328.4671a6.39866,6.39866,0,0,0,.30361,1.24294.40046.40046,0,0,1-.048.46318.22952.22952,0,0,1-.25448-.01671,1.00549,1.00549,0,0,0-.80554-.14336.52942.52942,0,0,1-.42577-.142,8.27,8.27,0,0,0-2.02095-.91354,2.90189,2.90189,0,0,1-.97338-.59672A6.12912,6.12912,0,0,0,73.06682,48.74368Z"/><path class="cls-30" d="M148.55512,29.26227c-.6266,1.455-1.21663,2.92621-1.93327,4.34115a44.71082,44.71082,0,0,1-4.09737,6.7004,33.07006,33.07006,0,0,1-2.49771,3.00024A26.83065,26.83065,0,0,1,135.5079,47.252a9.70184,9.70184,0,0,1-4.19817,1.65274c-1.07146.12951-2.15693.15623-3.22237.319-1.21548.18569-2.44275.13322-3.65964.276a8.02556,8.02556,0,0,1-1.64013-.0887c-.56985-.05231-1.13584-.17382-1.70581-.19146a18.25738,18.25738,0,0,1-2.84129-.34994,2.47733,2.47733,0,0,0-.41725-.04447.09128.09128,0,0,1-.00651-.11068.90216.90216,0,0,1,.80426-.082,7.06508,7.06508,0,0,0,2.16225.13151,8.15274,8.15274,0,0,1,1.6.11805,3.82927,3.82927,0,0,0,1.92864.02232.67962.67962,0,0,1,.26731-.024,38.62478,38.62478,0,0,0,3.96332-.28986c.803-.0757,1.60556-.15951,2.40905-.22713a9.45445,9.45445,0,0,0,3.86159-1.32088c.90169-.50659,1.647-1.22232,2.52438-1.75435a.29627.29627,0,0,0,.08713-.07529c.49464-.68493,1.26638-1.079,1.80393-1.71846.40211-.47838.79028-.97516,1.23086-1.41247a15.07293,15.07293,0,0,0,1.51132-1.83623c.87089-1.18925,1.65913-2.43258,2.43653-3.68474.3293-.5304.67268-1.05956.97626-1.59977a21.669,21.669,0,0,0,1.44614-2.96879,14.88158,14.88158,0,0,1,1.047-2.34539,1.18982,1.18982,0,0,0,.14755-.47311,2.24323,2.24323,0,0,1,.32929-1.01532,1.00283,1.00283,0,0,0,.10773-.5562,3.0553,3.0553,0,0,1,.07535-1.02752q.05463-.05295.09316.0125l.00284,2.43058C148.56877,29.0873,148.63377,29.19755,148.55512,29.26227Z"/><path class="cls-31" d="M94.79179,8.17326A16.61389,16.61389,0,0,1,98.688,10.01711a1.17548,1.17548,0,0,0,.16865.0733.33067.33067,0,0,1,.17534.163c.21456.3628.60557.54466.87072.86058A10.36609,10.36609,0,0,1,102.137,16.5091c.19769,1.41144.14359,2.8366.24177,4.25269.092,1.327.1554,2.6556.26636,3.982a22.36482,22.36482,0,0,0,.86228,4.36423,11.77584,11.77584,0,0,0,.78748,1.95854,2.51923,2.51923,0,0,1,.19023.46043,1.86679,1.86679,0,0,0,.22136.48492.46959.46959,0,0,1,.04915.47158c-.24862.08442-.30631-.13095-.39048-.269a16.51989,16.51989,0,0,1-.97687-1.95936,12.13351,12.13351,0,0,0-.8058-1.2379,8.35835,8.35835,0,0,1-.48822-2.40215c-.071-.97184-.2265-1.93354-.28609-2.90631-.03284-.536-.07721-1.07486-.09837-1.60952-.04454-1.12558-.06217-2.254-.10694-3.37917a12.29371,12.29371,0,0,0-1.364-5.51533,8.5525,8.5525,0,0,0-4.37375-3.7619c-.50818-.21651-1.034-.38246-1.55189-.57118a8.73952,8.73952,0,0,0-1.2541-.29784.653.653,0,0,1-.52421-.32729c.04946-.25011.24079-.22215.41985-.20973a12.0891,12.0891,0,0,1,1.212.2046A.71474.71474,0,0,0,94.79179,8.17326Z"/><path class="cls-32" d="M104.41907,31.57285a18.45677,18.45677,0,0,1-1.92132-7.29483c-.10884-1.51407-.20855-3.0285-.25683-4.547-.01573-.49506-.03322-.99409-.05587-1.491a13.05622,13.05622,0,0,0-1.13327-5.15422,7.06852,7.06852,0,0,0-1.91307-2.55321c-.07911-.06281-.28137-.11488-.15856-.30462a.55645.55645,0,0,1,.43176.30211l.92786.63147c.1175.06036.2624.08732.29957.24561a11.35333,11.35333,0,0,1,.85555.82481,9.3291,9.3291,0,0,1,1.09757,3.45809,27.00512,27.00512,0,0,1,.26116,3.17516c.0416.96792.11235,1.93928.18539,2.90783.09355,1.24048.20543,2.47532.411,3.70158a20.81678,20.81678,0,0,0,1.5252,5.186,3.91758,3.91758,0,0,0,.56906.95525.56119.56119,0,0,1,.10737.65015,1.26374,1.26374,0,0,0,.41879.75215,8.79961,8.79961,0,0,0,2.04707,1.82033.67.67,0,0,1,.30741.27723c-.23973.15437-.41407-.02774-.58864-.13172a7.56852,7.56852,0,0,1-2.13265-2.00544,1.43788,1.43788,0,0,0-.49414-.4686A1.7617,1.7617,0,0,1,104.41907,31.57285Z"/><path class="cls-33" d="M105.65164,32.266c.03953-.40179-.26736-.64113-.44557-.93887a12.11781,12.11781,0,0,1-.928-2.099,19.66518,19.66518,0,0,1-.88735-3.47992c-.15485-.91638-.29186-1.83351-.37111-2.7622-.06817-.79894-.13883-1.60177-.18559-2.3991-.0415-.70765-.11683-1.41746-.11506-2.13067a16.48652,16.48652,0,0,0-.78934-5.07975,11.87874,11.87874,0,0,1-.43473-1.14455,8.36766,8.36766,0,0,1,1.38656,1.464,4.83522,4.83522,0,0,1,.41037,2.05656c.19307,2.65747.30547,5.32159.6403,7.967a27.99021,27.99021,0,0,0,.82314,3.99165c.04817.173.102.34443.13331.521a9.23193,9.23193,0,0,0,1.52766,3.53072A7.24876,7.24876,0,0,0,108.68,33.91351a14.19971,14.19971,0,0,0,1.99675.89186c.15221.05622.37724.05173.3674.31019-.19074.162-.37057.00288-.53351-.04517a8.04279,8.04279,0,0,1-3.58276-2.11373,6.7875,6.7875,0,0,0-1.18589-.74183C105.72955,32.20627,105.68252,32.24783,105.65164,32.266Z"/><path class="cls-34" d="M104.80425,28.338a34.12914,34.12914,0,0,1-.986-4.50682c-.12585-.84095-.15167-1.69635-.25046-2.542-.14173-1.21332-.12683-2.43818-.29513-3.6498-.0735-.52918-.01121-1.06664-.06328-1.60467-.0761-.7863-.20336-1.56142-.32788-2.33879a6.87847,6.87847,0,0,1,1.00535,1.2369.507.507,0,0,0-.07332.50888,11.278,11.278,0,0,1,.06922,1.56888c.0667.90112.15131,1.80091.22841,2.70125.08427,1.08941.17845,2.17761.3536,3.25729.126.77658.16156,1.56453.331,2.33708.27284,1.24425.60919,2.471.962,3.69356a6.11756,6.11756,0,0,0,2.618,3.51192c.22358.1465.44376.29818.66551.44746.06865.06391.17145.07662.2311.154a15.99893,15.99893,0,0,0,4.27325,1.23154c.60272.08737,1.20829.15514,1.81255.23183.05757.10476-.01837.165-.077.23106l-.23111.0772a3.15389,3.15389,0,0,1-1.134.02051,19.52773,19.52773,0,0,1-4.25142-1.16469,14.49944,14.49944,0,0,1-2.326-1.14871,5.01068,5.01068,0,0,1-1.60015-2.02789C105.39212,29.83643,105.13971,29.06992,104.80425,28.338Z"/><path class="cls-35" d="M146.71142,39.89043a5.62425,5.62425,0,0,1-.39789,1.23567,17.12,17.12,0,0,1-1.91484,2.54432,39.62619,39.62619,0,0,1-3.11974,3.44832,17.31867,17.31867,0,0,1-1.86945,1.5957c-.75335.55355-1.45456,1.17413-2.21214,1.72654a15.55454,15.55454,0,0,1-7.331,2.87819c-1.11816.14288-2.23274.3243-3.34217.53385a22.11521,22.11521,0,0,1-2.31921.23237,1.41975,1.41975,0,0,1-.60679-.032c-.12589-.24912-.05988-.39248.23-.45628.16925-.03725.3517-.02792.47222-.185.83931-.17726,1.69609-.23553,2.54226-.36864,1.64625-.259,3.29263-.512,4.92977-.82969a13.60078,13.60078,0,0,0,5.50948-2.60931,36.83694,36.83694,0,0,0,5.06454-4.53631,44.52769,44.52769,0,0,0,3.94646-4.91287c.10151-.146.1616-.36451.41324-.33072.00522.0007.011.01817.01146.02807A.17125.17125,0,0,1,146.71142,39.89043Z"/><path class="cls-36" d="M146.71142,39.89043c-.18891-.06421-.193.11189-.25548.20266-.72443,1.05256-1.48348,2.08223-2.29812,3.06373a44.01132,44.01132,0,0,1-3.2085,3.46409,37.719,37.719,0,0,1-4.27118,3.54794,13.89874,13.89874,0,0,1-3.36086,1.75054,16.50294,16.50294,0,0,1-3.04993.67883c-1.59613.25752-3.19195.51717-4.79022.76075-.38968.05939-.78837.0598-1.18291.08733a1.78043,1.78043,0,0,1-1.07323.16621c-.9369-.12685-1.8812-.13657-2.82156-.20658-.30724-.02288-.64415.0014-.80879-.3552a1.052,1.052,0,0,1,.78139-.08607,6.04642,6.04642,0,0,0,1.607-.00331,6.6506,6.6506,0,0,1,.99777-.01689,12.97032,12.97032,0,0,0,2.39592-.19133,30.24977,30.24977,0,0,0,3.05332-.32095c1.32039-.20644,2.64177-.40646,3.95347-.66983a9.86574,9.86574,0,0,0,2.52968-.98306,17.435,17.435,0,0,0,3.46411-2.38915c.859-.7442,1.73367-1.47169,2.54793-2.27147a46.53757,46.53757,0,0,0,5.26562-6.31247,5.98462,5.98462,0,0,1,.90778-1.22881A5.6038,5.6038,0,0,1,146.71142,39.89043Z"/><path class="cls-37" d="M73.06682,48.74368c.12777-.05487.129-.05615.24925.06265A3.766,3.766,0,0,0,74.70423,49.932c.56419.17616,1.08088.45455,1.63674.63843a1.34977,1.34977,0,0,1,.46082.266A.60482.60482,0,0,0,77.46216,51c.33852-.11991.5586.19626.84189.28974a1.02782,1.02782,0,0,1,.39369.22921.91308.91308,0,0,0,.73878.24089.3063.3063,0,0,1,.33132.14624c-.03541.20028-.086.39938-.10179.60119a.44518.44518,0,0,1-.24954.3909.49976.49976,0,0,0-.23236.78826,1.10956,1.10956,0,0,1,.04414.4532,1.7619,1.7619,0,0,1-1.4494-.44078c-.29142-.279-.76047-.1647-1.115-.364a2.52819,2.52819,0,0,1-.46767-.23529c-.066-.05618-.21608-.22265-.27788.03177-.91231-1.17223-1.68885-2.43627-2.4861-3.686C73.291,49.22393,73.18767,48.97821,73.06682,48.74368Z"/><path class="cls-38" d="M133.0008,60.07318a22.18137,22.18137,0,0,1-1.84216,1.54044c-.80875.634-1.64837,1.22859-2.47468,1.84017a2.47794,2.47794,0,0,0-1.65044.05836,1.47462,1.47462,0,0,1-.90652.01113c-.21637-.145-.02982-.44891-.23933-.60956-.04163-.03192.04051-.14807.11689-.16817.31782-.08363.43965-.37944.6381-.58749.21533-.22575.15478-.37542-.162-.44146-.1873-.03906-.37688-.0718-.56806-.0931-.09621-.01072-.21273-.00164-.24678-.13464a3.02321,3.02321,0,0,1,1.40876-.42224c.356-.047.70578-.122,1.05815-.18582a1.1234,1.1234,0,0,0,.61687-.28547c.21412-.21081.52-.1992.77194-.319a6.65855,6.65855,0,0,1,2.84139-.5332C132.60138,59.75169,132.92676,59.69987,133.0008,60.07318Z"/><path class="cls-39" d="M76.84062,9.95466A7.32113,7.32113,0,0,1,78.45584,9.076c.32112.55329.88748.45965,1.38938.51a2.798,2.798,0,0,1,.86.16609c.16724.07281.33106.16238.35718.36606.02442.19044.12661.22815.29272.19315a.64622.64622,0,0,1,.45065.02154,2.98093,2.98093,0,0,0,1.37788.26788,24.24153,24.24153,0,0,1,2.64759.41875.16754.16754,0,0,1,.11465.09417.46414.46414,0,0,1-.5294.43478.63386.63386,0,0,0-.36349.10758.62224.62224,0,0,1-.3357.05594,17.78213,17.78213,0,0,0-3.66207.09591,8.46876,8.46876,0,0,1-2.86041-.18685.7767.7767,0,0,1-.47135-.24455c-.28869-.30936-.56779-.62768-.84413-.948C76.75989,10.29,76.66251,10.12778,76.84062,9.95466Z"/><path class="cls-40" d="M141.07493,51.675a14.6887,14.6887,0,0,1-1.21722,1.69933,17.97155,17.97155,0,0,1-4.84748,2.76691,19.321,19.321,0,0,1-3.50809.97452,23.71784,23.71784,0,0,0-3.33849.87583c-.9746.14521-1.94854.29333-2.934.34425a3.75043,3.75043,0,0,0-.79123.04561,1.98722,1.98722,0,0,1-1.37565-.2951c.00829-.234.20512-.18908.33677-.21053.84584-.1379,1.67719-.358,2.53124-.44674a27.5192,27.5192,0,0,0,3.62773-.67071q1.06575-.26166,2.14782-.44093a15.01447,15.01447,0,0,0,4.78224-1.84444c1.441-.79541,2.76937-1.7586,4.14877-2.64567C140.76722,51.74378,140.87633,51.5722,141.07493,51.675Z"/><path class="cls-41" d="M141.07493,51.675c-.63763.421-1.28635.82631-1.91033,1.26665-.97214.686-2.01444,1.25129-3.04466,1.83991a13.37105,13.37105,0,0,1-3.60738,1.47512c-1.05434.24432-2.13166.38881-3.18154.65844-.96429.24764-1.944.40839-2.92465.56923a2.90923,2.90923,0,0,1-.41738.044,2.90134,2.90134,0,0,0-.90241-.01459c-.5548.10944-1.09671-.07036-1.64414-.00456a.36131.36131,0,0,1-.31066-.12389c-.01023-.146.10439-.16312.20129-.17874,1.31285-.21159,2.62942-.398,3.9468-.57554,1.71825-.41676,3.47156-.66414,5.19532-1.0502a14.52909,14.52909,0,0,0,4.44409-1.97872,21.16168,21.16168,0,0,0,2.86284-2.07226c.64067-.56436,1.436-.93638,2.06969-1.52368.13652-.12652.15555-.106.31751-.02C141.83541,50.56908,141.465,51.12841,141.07493,51.675Z"/><path class="cls-42" d="M126.60528,53.7546c.757-.17373,1.52644-.27337,2.29379-.38534a17.11263,17.11263,0,0,0,6.50111-1.901,31.98047,31.98047,0,0,0,3.53466-2.49569,30.93388,30.93388,0,0,0,3.17644-2.83051c.95035-1.00054,1.83791-2.05649,2.698-3.13542q.75056-.94151,1.50423-1.88053a10.71143,10.71143,0,0,1-.60427,1.68955,40.27266,40.27266,0,0,1-4.31059,4.79408,25.00917,25.00917,0,0,1-2.29128,1.92462,31.55283,31.55283,0,0,1-3.58429,2.52044,11.79782,11.79782,0,0,1-3.62138,1.363c-1.62684.29967-3.2553.59215-4.90392.75109a.58594.58594,0,0,1-.22937-.00574A.43289.43289,0,0,1,126.60528,53.7546Z"/><path class="cls-43" d="M92.55579,8.23593c.3514.30749.81362.26251,1.22516.37434a4.14415,4.14415,0,0,1,.54648.16493,1.13547,1.13547,0,0,0,.67417.467,4.10576,4.10576,0,0,1,.8014.35541c.14833.0787.30155.16292.28168.36625a.37414.37414,0,0,1-.32439.3288.70788.70788,0,0,1-.36647-.09755,9.82322,9.82322,0,0,0-3.44416-.871,12.22285,12.22285,0,0,1-4.23395-.85951A5.34745,5.34745,0,0,1,85.86011,7.405c-.17144-.17764-.25932-.3247.04027-.44982a6.13431,6.13431,0,0,0,1.13208-.0215,4.40877,4.40877,0,0,1,1.136.0828,2.05081,2.05081,0,0,1,.80356.17186,18.73535,18.73535,0,0,0,2.87532.79517A1.2075,1.2075,0,0,1,92.55579,8.23593Z"/><path class="cls-44" d="M144.7068,45.20157a12.03765,12.03765,0,0,1-.69357,1.46238,22.80941,22.80941,0,0,1-3.54025,3.39856,29.149,29.149,0,0,1-5.34378,3.61825,11.91127,11.91127,0,0,1-3.23372,1.09683c-.68341.11486-1.35514.29058-2.03882.40549a.97418.97418,0,0,1-.3824.01524,8.955,8.955,0,0,0-2.12634.13872c-.25086.02749-.50246.08453-.75478.11734-.1449.01884-.314.0502-.39-.14285a.29268.29268,0,0,1,.2415-.1675c.97748-.11679,1.89892-.50074,2.8789-.60213,1.11659-.28738,2.27178-.38867,3.3824-.71362a13.98577,13.98577,0,0,0,3.05319-1.33767c1.19112-.6858,2.25446-1.5579,3.38862-2.32155a32.03228,32.03228,0,0,0,3.33022-2.8215,19.66387,19.66387,0,0,0,1.746-1.88388c.12724-.14783.229-.34748.47563-.3271.00528.00044.0122.01746.013.02716A.16015.16015,0,0,1,144.7068,45.20157Z"/><path class="cls-45" d="M144.7068,45.20157c-.20664-.03007-.27951.15451-.364.267a21.02991,21.02991,0,0,1-1.70328,1.86308,19.08609,19.08609,0,0,1-2.07168,1.86875c-.00993.00769-.02463.00952-.034.01769a39.94234,39.94234,0,0,1-3.20127,2.389,18.34558,18.34558,0,0,1-3.29555,1.85242,16.49658,16.49658,0,0,1-3.83693.98333,2.3663,2.3663,0,0,1-.82156.15878c-1.05723.08336-2.09572.31145-3.15129.40764a.905.905,0,0,1-.37966-.02643c-.0963-.19153-.05769-.28658.19754-.30146a8.4733,8.4733,0,0,0,1.3596-.25841c1.3897-.31148,2.78973-.57042,4.19151-.81833a12.17778,12.17778,0,0,0,3.18-1.13142,20.47787,20.47787,0,0,0,3.62179-2.32363,37.13751,37.13751,0,0,0,4.1256-3.56256q1.34126-1.40472,2.5856-2.89973c.09388-.11328.16049-.275.35462-.25048A16.013,16.013,0,0,1,144.7068,45.20157Z"/><path class="cls-46" d="M85.93075,11.16261a18.72282,18.72282,0,0,0-2.88592-.45961,2.36436,2.36436,0,0,1-1.28918-.289c-.17518-.11107-.34005.01148-.51042.03645-.15641.02292-.38161.08615-.27681-.222.06227-.18306-.041-.25548-.177-.32573a1.95167,1.95167,0,0,0-.81022-.20524c-.35648-.01855-.71294-.04413-1.0681-.07981-.31912-.032-.39168-.28752-.45725-.54169a8.19984,8.19984,0,0,1,1.85644-.81651,8.04727,8.04727,0,0,1,2.60071.90068,2.91058,2.91058,0,0,0,.94894.29773,1.76954,1.76954,0,0,1,.88622.34571.97662.97662,0,0,0,.41472.19432,15.54676,15.54676,0,0,1,1.58863.569,2.038,2.038,0,0,0,.73813.44825c.1.04153.34255.08015.128.28823-.47049-.00175-.9399-.03307-1.41013-.03428A.34772.34772,0,0,1,85.93075,11.16261Z"/><path class="cls-47" d="M76.53205,47.13073c-.49932.09393-.99609.20579-1.49858.2775a2.34143,2.34143,0,0,1-1.79976-.689c-.527-.41573-1.04917-.83761-1.57027-1.26073-.17933-.14561-.21545-.059-.21069.11581a15.47856,15.47856,0,0,1-1.08064-2.534.14208.14208,0,0,1-.00594-.20483c.07372-.06332.15028-.00037.19439.059a10.83823,10.83823,0,0,0,2.741,2.16462,1.584,1.584,0,0,0,1.59372.22146c.47136-.07154.92776.1396,1.40014.07278a.2044.2044,0,0,1,.18891.11168,2.9577,2.9577,0,0,0,.22439,1.07129A.43626.43626,0,0,1,76.53205,47.13073Z"/><path class="cls-48" d="M69.62251,41.11829c-.29757-.90836-.58652-1.81909-.82277-2.74612-.02885-.11323-.02216-.22421-.04657-.33392-.077-.11688-.01922-.16609.09447-.169a.498.498,0,0,1,.35673.11974c.55676.53132,1.27206.85366,1.82331,1.39091a5.30539,5.30539,0,0,0,1.66264,1.83154.703.703,0,0,1,.20188.2252c.27327.52009.50674,1.06.79606,1.57232.07654.13552.19529.2856.06.458-.2391.10473-.46677-.01817-.69978-.03419a12.79536,12.79536,0,0,1-3.2716-2.20422A.59511.59511,0,0,0,69.62251,41.11829Z"/><path class="cls-49" d="M85.8535,7.01828c-.194.11714-.05906.20144.03173.28353a5.88283,5.88283,0,0,0,2.20553,1.16977,11.61449,11.61449,0,0,0,1.90991.54607c.66723.096,1.34218.16524,2.01.20055a9.8531,9.8531,0,0,1,3.3912.86379c.12843.0551.25931.1045.389.15654a7.77668,7.77668,0,0,1,.8994.49167c.12322.07693.27772.14516.27082.33482a.23229.23229,0,0,1-.31054.06715,12.43885,12.43885,0,0,0-2.61211-.729,16.22877,16.22877,0,0,1-1.696-.27034,8.3362,8.3362,0,0,1-.98108-.16494A23.497,23.497,0,0,1,87.54108,9.214a8.72176,8.72176,0,0,1-.97631-.33323c-.29665-.14827-.59382-.29628-.90345-.41739a.73018.73018,0,0,1-.30641-.15247,2.61655,2.61655,0,0,0-1.405-.70734c-.13539-.04069-.30738-.07784-.32587-.275l.30364-.09581a.17959.17959,0,0,1,.23094-.01089l1.61811-.228A.05009.05009,0,0,1,85.8535,7.01828Z"/><path class="cls-50" d="M145.46387,43.43678q-.82291.932-1.64623,1.8636a23.66334,23.66334,0,0,1-2.122,2.21027c-.57785.50217-1.0939,1.08007-1.71642,1.53063-1.2882.93235-2.47142,2.00467-3.85412,2.81291a22.02235,22.02235,0,0,1-3.25867,1.53236,12.9026,12.9026,0,0,1-2.3098.51434c-1.31516.24191-2.63163.4782-3.926.81525-.28992.07549-.63167-.08607-.87275.19315a.32521.32521,0,0,1-.23948.1062,24.0001,24.0001,0,0,1-3.25875.0623c-.57227-.10007-1.1603-.06523-1.729-.19968-.1572-.03717-.336-.02541-.41435-.21314.058-.17506.21458-.16832.34981-.173a6.34718,6.34718,0,0,0,1.71708-.14978,1.14859,1.14859,0,0,1,.46-.00718,14.79479,14.79479,0,0,0,3.67221-.23417c.15125-.02046.30433-.0705.444.03862.5277-.077,1.05622-.14891,1.583-.232a21.09637,21.09637,0,0,0,6.47675-1.57662,20.47848,20.47848,0,0,0,3.06779-1.95888,37.5806,37.5806,0,0,0,5.08925-4.4764q1.33371-1.45449,2.574-2.99022c.04005-.04961.045-.16884.15916-.0897Z"/><path class="cls-51" d="M128.223,57.91323a.27923.27923,0,0,1,.20482-.15375c.97626-.24707,1.94-.567,2.92982-.73064a21.82817,21.82817,0,0,0,2.998-.76231,17.84664,17.84664,0,0,0,3.69676-1.7509,16.03384,16.03384,0,0,0,1.52132-1.03026c.06929-.05254.14191-.20344.284-.11107a14.006,14.006,0,0,1-2.23464,2.46314,18.92335,18.92335,0,0,1-2.61966,1.27625,12.91124,12.91124,0,0,1-2.58585.72908,8.66635,8.66635,0,0,0-2.82568.3551,2.33616,2.33616,0,0,1-.78408.13664C128.64611,58.14863,128.31793,58.19258,128.223,57.91323Z"/><path class="cls-52" d="M76.84062,9.95466c-.00578.07387-.04623.18209-.01215.21645.52192.52629.80344,1.33772,1.70438,1.41809.46843.04179.93167.14189,1.4001.18379a3.11634,3.11634,0,0,0,1.06734-.07093,1.26809,1.26809,0,0,0,.69464.18669,11.968,11.968,0,0,1,2.74294.25893,2.1025,2.1025,0,0,1,1.21477.47241c-.046.19111-.20029.15736-.33763.16573-.59515.03624-1.193.026-1.78583.10327a23.1,23.1,0,0,0-2.46856.20258,1.44,1.44,0,0,0-.53292-.05205,4.7112,4.7112,0,0,1-2.10174-.34625,1.3957,1.3957,0,0,0-.56188-.11292.79459.79459,0,0,1-.80516-.40913,1.49917,1.49917,0,0,0-.50093-.469,2.04639,2.04639,0,0,1-.6763-.91559.19036.19036,0,0,1,.03477-.21495Z"/><path class="cls-53" d="M142.16932,49.98612c-.27818-.0201-.4137.20765-.57193.3618-.45439.44267-1.05407.67657-1.52588,1.08192a24.3938,24.3938,0,0,1-2.89542,2.12738,15.74783,15.74783,0,0,1-6.34216,2.45218,23.74453,23.74453,0,0,0-3.24567.66308c-.06611.01856-.1393.08235-.21263.00863-.14929-.07423-.383-.0353-.39471-.29425a.27274.27274,0,0,1,.19279-.11276c1.14616-.18777,2.22435-.64955,3.37073-.83467a3.19761,3.19761,0,0,0,.48037-.12268,16.32107,16.32107,0,0,0,2.78836-.70458,20.02321,20.02321,0,0,0,4.32856-2.39047,45.74269,45.74269,0,0,0,4.24651-3.48188,3.421,3.421,0,0,1,.45585-.35232c.077-.0494.20494-.16739.24491.04895A12.65224,12.65224,0,0,1,142.16932,49.98612Z"/><path class="cls-54" d="M143.089,48.43645c-.06662-.08769-.128-.04877-.19134.006-.56908.492-1.14169.97988-1.70742,1.47565a30.68639,30.68639,0,0,1-5.12458,3.73353,14.64976,14.64976,0,0,1-3.41784,1.43478,9.08739,9.08739,0,0,1-1.57449.2854c-.89241.19554-1.81121.17949-2.70869.33628a.51225.51225,0,0,1-.33264-.05711c-.13981-.24544.0862-.2754.21489-.32715a2.85272,2.85272,0,0,1,1.28574-.18308,28.75483,28.75483,0,0,0,4.34561-1.01719,19.65521,19.65521,0,0,0,4.51447-2.57777,38.35238,38.35238,0,0,0,5.21469-4.49528c.12662-.13228.17188-.36431.40583-.38653A15.04484,15.04484,0,0,1,143.089,48.43645Z"/><path class="cls-55" d="M126.066,63.45861a4.14282,4.14282,0,0,0,1.3084-.16339,1.23058,1.23058,0,0,1,1.30953.15857c-1.51566,1.12835-3.08655,2.17476-4.69633,3.16344a2.77072,2.77072,0,0,1,.88825-1.371.18958.18958,0,0,0,.12559-.20533,2.41863,2.41863,0,0,1-1.78575-.0417,4.06841,4.06841,0,0,1,1.23648-1.70644c.08371-.06255.18856-.14282.27775-.11135C125.164,63.33458,125.63673,63.29205,126.066,63.45861Z"/><path class="cls-56" d="M133.0008,60.07318a1.537,1.537,0,0,0-1.33909-.21262,6.84642,6.84642,0,0,0-2.12908.51747,11.46608,11.46608,0,0,1-1.646.25037,2.07649,2.07649,0,0,1-1.08631-.11323c-.08906-.28041-.03135-.392.33705-.456a.779.779,0,0,0,.6687-.49072.9781.9781,0,0,1,.60051-.21184,6.6471,6.6471,0,0,0,1.55531-.36873,13.06129,13.06129,0,0,1,1.41676-.30239,9.73651,9.73651,0,0,0,3.55343-.71005c.12366-.05024.29549-.13849.37479.08534A19.3589,19.3589,0,0,1,133.0008,60.07318Z"/><path class="cls-57" d="M86.70108,10.62358a11.43744,11.43744,0,0,1-2.21427-.87118.78.78,0,0,0-.31818-.12567,7.48264,7.48264,0,0,1-2.34912-.88094,6.228,6.228,0,0,0-1.24873-.34763c-.10307-.02558-.2002-.03959-.2585-.13866a6.48677,6.48677,0,0,1,1.83979-.57109.21574.21574,0,0,1,.07384.018,14.4358,14.4358,0,0,0,3.01022,1.05571.81445.81445,0,0,1,.20439.10211,1.72093,1.72093,0,0,0,1.14668.63246c.83474.20353,1.61643.57557,2.45914.75119.12734.02654.29195.04781.289.24568a.40237.40237,0,0,1-.411.22512C88.18318,10.68994,87.44165,10.66765,86.70108,10.62358Z"/><path class="cls-58" d="M73.29507,12.77577a4.25045,4.25045,0,0,1,.92627-.84184.45963.45963,0,0,1,.22237.29691,2.27059,2.27059,0,0,0,1.67275,1.66008,1.311,1.311,0,0,1,.40961.20267.65248.65248,0,0,0,.47165.12134c.415-.07469.84089-.0079,1.25269-.10888a4.8266,4.8266,0,0,1,.71719.07554.876.876,0,0,1,.324.27249c.15742.26849.03855.42976-.227.46751-.79619.11317-1.57823.30664-2.37605.40672a1.179,1.179,0,0,0-.54371.16146c-.28257.18981-.59455.06921-.89577.055a.72822.72822,0,0,1-.52224-.408.82848.82848,0,0,0-.18378-.243A10.59352,10.59352,0,0,1,73.32124,13.057C73.26367,12.97324,73.21605,12.8775,73.29507,12.77577Z"/><path class="cls-59" d="M67.76878,23.25483A8.85088,8.85088,0,0,1,68.28347,21.25c.32532-.145.62136-.41194,1.02179-.246a1.38354,1.38354,0,0,1,.64159.7806c.06509.24787.28463.38721.473.54044.16011.13027.33016.25107.33474.48731a5.069,5.069,0,0,0-.24709.95839,3.319,3.319,0,0,1-.43115.68805c-.3033.22616-.66432.15239-1.00364.19324a.99763.99763,0,0,1-.659-.51533C68.226,23.82726,67.97967,23.55223,67.76878,23.25483Z"/><path class="cls-60" d="M71.061,15.47131A11.35678,11.35678,0,0,1,72.446,13.697c.03789.00713.08457.01418.1027.04459a9.719,9.719,0,0,1,1.29892,2.26854,1.44679,1.44679,0,0,0,.17974.648c.08595.17275.10738.33913-.09271.45715a1.33143,1.33143,0,0,0-1.43423.41976c-.10335.09006-.219.18851-.38.12223a15.495,15.495,0,0,1-1.05793-1.82778A.30317.30317,0,0,1,71.061,15.47131Z"/><path class="cls-61" d="M69.62251,41.11829c.077-.0509.13289-.02427.20035.03252.44525.37487.89567.74361,1.34319,1.11579a10.934,10.934,0,0,0,1.25.72159,2.88841,2.88841,0,0,1,.57257.3686c.22945.0996.30522.33344.44077.513.1994.26415.38734.537.5837.80374a1.06271,1.06271,0,0,0,.60731.49112.27369.27369,0,0,1,.21726.195,1.29847,1.29847,0,0,1-1.43721-.12357,20.03056,20.03056,0,0,1-2.45186-1.73,1.35316,1.35316,0,0,1-.42726-.53187c-.01852-.04646-.044-.14255-.12735-.07774-.02779.0216-.01572.09445-.02186.14387a3.54168,3.54168,0,0,1-.37091-.88245A10.46189,10.46189,0,0,1,69.62251,41.11829Z"/><path class="cls-62" d="M67.3514,26.87892l.0205-.908c.07905-.17914-.00849-.37519.05645-.55576l.02644-.46538a.66219.66219,0,0,1,.65677.20617,1.1139,1.1139,0,0,0,.58305.26477c.87917.37166,1.05494,1.159,1.17134,1.98183a1.25693,1.25693,0,0,1-.84445.60742,6.78435,6.78435,0,0,1-1.43737.07753c-.09564-.0135-.2098.02255-.255-.1083A9.68465,9.68465,0,0,1,67.3514,26.87892Z"/><path class="cls-63" d="M135.30686,58.06082c-.13563-.15016-.27191-.02087-.383.02375a9.72665,9.72665,0,0,1-2.19435.61408,12.58469,12.58469,0,0,1-1.348.062.96005.96005,0,0,1-.08319-.4087c-.0278-.25815.09827-.39038.34334-.47158.26963-.08934.56011.01021.81834-.121a16.94853,16.94853,0,0,0,2.48847-.73624,14.72051,14.72051,0,0,0,2.40988-1.1681c.071-.04892.16845-.1487.26475-.0176A20.80478,20.80478,0,0,1,135.30686,58.06082Z"/><path class="cls-64" d="M75.91646,10.57176A1.81222,1.81222,0,0,0,76.72,11.67819c.27183.13271.37913.40572.56323.61243.06842.07683.11461.18861.23038.17419a4.05174,4.05174,0,0,1,1.44429.29761,3.96385,3.96385,0,0,0,1.68417.177.3414.3414,0,0,1,.35821.07175.35091.35091,0,0,1-.28537.16744,27.69242,27.69242,0,0,1-3.368.33022,3.31468,3.31468,0,0,1-.34244-.01575.56436.56436,0,0,1-.3163-.124,8.44389,8.44389,0,0,1-1.59781-1.62379c-.09079-.14424-.23532-.28819-.09841-.48338A5.11209,5.11209,0,0,1,75.91646,10.57176Z"/><path class="cls-65" d="M68.3117,36.34338l-.4514-2.46718c.033-.11586.13494-.15017.20744-.0886.4184.35533.99491.41207,1.41453.76069a2.60322,2.60322,0,0,1,.34975.84c.1653.53468.60371.90469.7818,1.42247a1.01492,1.01492,0,0,1-.041.73373.86537.86537,0,0,1-.90823-.20032C69.23692,36.97468,68.77048,36.66609,68.3117,36.34338Z"/><path class="cls-66" d="M67.52542,31.324l-.01965-.37093a1.71537,1.71537,0,0,1-.024-.43734A2.05062,2.05062,0,0,1,67.573,29.654c.08827-.17765.17809-.28411.40656-.24315a3.17643,3.17643,0,0,1,.93314.152,1.26254,1.26254,0,0,1,.4527.64721,2.46593,2.46593,0,0,0,.10606,1.32028c.10474.34436-.0014.71007.10707,1.05556a.15053.15053,0,0,1-.08157.15988,2.61511,2.61511,0,0,1-1.91017-1.14914C67.53573,31.51267,67.58246,31.40669,67.52542,31.324Z"/><path class="cls-67" d="M128.7694,86.95128c-.00928.14011-.02668.28023-.0267.42034q-.002,12.51152-.011,25.023c-.0006.38327.10488.45875.46557.4513,1.18032-.0244,2.36154-.01658,3.54221-.00335.25644.00288.34767-.04581.3474-.32848q-.01219-12.66547-.00735-25.331c0-.0766-.01056-.15319-.01619-.22979.14675.10314.0877.25794.08775.39032q.00417,12.57035.00993,25.14067c.00038.34179-.09261.43486-.43145.42909q-1.79012-.03052-3.581.00061c-.36751.007-.47339-.09245-.47242-.46659q.01876-7.238.00828-14.47609,0-5.29378.003-10.58757C128.68762,87.23863,128.6228,87.07222,128.7694,86.95128Z"/><path class="cls-68" d="M68.3117,36.34338c.27408-.0402.43228.17691.6096.30975a8.71552,8.71552,0,0,1,.83673.65369c.17865.171.505.18774.76526.27343a.15064.15064,0,0,1,.17552.03153c.38727.348.749.72351,1.14673,1.0605a.19812.19812,0,0,1,.07043.239,1.74465,1.74465,0,0,0-.1118.15408c-.23018.42963-.33583.47654-.81851.3636-.55913-.48185-1.24075-.79879-1.77165-1.32345-.0954-.09428-.27337-.29549-.46084-.0673A12.50431,12.50431,0,0,1,68.3117,36.34338Z"/><path class="cls-69" d="M74.992,11.26191A2.80759,2.80759,0,0,0,76.13715,12.745c.2767.20389.42261.558.78027.65137.08316.05784.185.09918.21772.20649.06041.19813.21056.232.39034.2341a.85577.85577,0,0,1,.70154.33009c-.6531.08321-1.31764.36843-1.93911-.1126a.29249.29249,0,0,0-.14235-.05085,2.35345,2.35345,0,0,1-1.55337-1.12737c-.21966-.27658-.20642-.64429-.37085-.94231A3.28557,3.28557,0,0,1,74.992,11.26191Z"/><path class="cls-70" d="M73.759,16.015c-.14564-.70105-.70022-1.17622-.99459-1.7959A5.62028,5.62028,0,0,0,72.446,13.697a5.926,5.926,0,0,1,.84905-.92122,9.51589,9.51589,0,0,0,1.32929,2.05847c.20734.20741.26382.555.59864.64164a.435.435,0,0,1,.09767.45765,5.22844,5.22844,0,0,0-.67944.19388C74.357,16.24844,74.06007,16.02343,73.759,16.015Z"/><path class="cls-71" d="M67.60117,31.57294c.01265.00147.032-.00185.037.00511a3.84853,3.84853,0,0,0,1.807,1.14984c.21464.10589.22583.33.28685.5176a4.18853,4.18853,0,0,1,.241.92345c-.08858.24893-.22019.44283-.52821.40812-.45836-.26716-1.0229-.32993-1.41082-.73592-.04873-.051-.119.00366-.17372.03507-.118-.71422-.22132-1.43033-.27658-2.15261A.1116.1116,0,0,1,67.60117,31.57294Z"/><path class="cls-72" d="M92.55579,8.23593a18.867,18.867,0,0,1-3.95548-1.097c-.14323-.0621-.31167-.00312-.43185-.12247l.16082-.04246a3.78373,3.78373,0,0,1,.75609.01592l.3746.01852c.12347.07653.26983-.00106.39578.05874.97491.155,1.95709.26575,2.92221.4803.09573.0552.24293-.05721.30893.09482a15.14264,15.14264,0,0,1,1.70489.531c-.07123.388-.374.21746-.55717.18827-.4485-.07147-.89177-.17635-1.34375-.23743A.33717.33717,0,0,0,92.55579,8.23593Z"/><path class="cls-73" d="M71.061,15.47131a1.20379,1.20379,0,0,0,.2398.5949c.28591.51889.561,1.04374.8404,1.56623.1925.262.35529.5277.10808.84574-.45551-.06694-.88708-.25231-1.35192-.27683a3.08271,3.08271,0,0,1-.71293-.941.50568.50568,0,0,1,.03-.47772A8.37128,8.37128,0,0,1,71.061,15.47131Z"/><path class="cls-67" d="M164.46326,94.43542c-.04432.05941-.11112.092-.147.01611a.59628.59628,0,0,1-.01482-.22767c-.01434-.66011-.0142-.66012-.6613-.66012-1.12887,0-2.25781.00685-3.38656-.00554-.23583-.00258-.29944.0585-.29917.29765q.01035,9.34962-.00065,18.69925c-.00032.25522.09144.28774.31.28613,1.23143-.009,2.46315-.01608,3.69433.004.307.005.34953-.10016.34888-.37093q-.01282-5.38663-.0036-10.77331a.84848.84848,0,0,1,.04124-.452q.00438,5.677.01279,11.35421c.00054.23991-.08691.30733-.31545.306-1.28322-.00773-2.56664-.01357-3.8497.0026-.35885.00453-.30783-.21143-.30782-.42784q.00027-4.73425-.00013-9.46851c0-3.02788.00675-6.05578-.00823-9.08358-.00181-.36487.111-.449.45594-.44346q1.80894.0292,3.61858.00051c.321-.00468.43339.08949.411.41093C164.3493,94.076,164.26863,94.28905,164.46326,94.43542Z"/><path class="cls-74" d="M85.39131,8.92912a9.46466,9.46466,0,0,0-1.60971-.46668,4.19062,4.19062,0,0,1-1.62953-.774A5.82331,5.82331,0,0,1,83.624,7.32859a.88789.88789,0,0,0,.2637.149c1.02037.16108,1.71262.98981,2.65915,1.29751-.03457.3169-.26716.2455-.45287.21125A1.40021,1.40021,0,0,0,85.39131,8.92912Z"/><path class="cls-75" d="M68.90592,29.64728c-.32724-.166-.70285-.02548-1.03538-.16412-.13285-.05539-.14441.06965-.17891.14219a1.81476,1.81476,0,0,0-.18362.89067.04856.04856,0,0,1-.05992-.03733l-.01951-.45c-.0652-.18083.02207-.37712-.05645-.55659l-.0205-.90669a.93226.93226,0,0,1,.01871-.53561c.56286-.03042,1.1239-.10075,1.68923-.0769a.46509.46509,0,0,1,.16022.47274A3.49691,3.49691,0,0,1,68.90592,29.64728Z"/><path class="cls-76" d="M69.29082,21.09765a.4402.4402,0,0,0-.5016.01883.75968.75968,0,0,1-.50575.13351,14.60789,14.60789,0,0,1,.79053-2.21337c.0772-.186.15648-.37106.23481-.55656.1732-.10042.26454.038.34924.13741a5.26256,5.26256,0,0,1,.76116,1.27061c-.05633.36962-.37928.44735-.64875.51637-.28767.07369-.42.19184-.39068.48766A.24574.24574,0,0,1,69.29082,21.09765Z"/><path class="cls-23" d="M70.36945,19.86586c-.23146-.3602-.46141-.72138-.69514-1.0801a.54869.54869,0,0,0-.36552-.3057,17.32791,17.32791,0,0,1,.90564-1.6974c-.0787.43334.24147.69649.435,1.01265.0794.12969.17251.251.25938.37613.00916.48039.14334.95.12435,1.433A.80118.80118,0,0,1,70.36945,19.86586Z"/><path class="cls-67" d="M34.63653,86.95277c-.00687.14054-.01973.28109-.01975.42164q-.00144,12.50859-.01034,25.01718c-.00055.37548.0918.46315.4598.45488,1.16713-.02627,2.3355-.02395,3.50275-.00071.3342.00665.41439-.09655.39121-.407a1.2725,1.2725,0,0,1,.04269-.672.04674.04674,0,0,1,.03562.00652.37674.37674,0,0,1,.038.05725,1.63217,1.63217,0,0,0-.05443.75391c-.00359.21661-.04738.32712-.29792.32531-1.29548-.00938-2.59107-.00758-3.88657-.00117-.21348.00106-.31232-.06961-.2911-.2882.00739-.07622.001-.15378.001-.23073q0-12.48455.00352-24.96912C34.55111,87.26433,34.47637,87.08386,34.63653,86.95277Z"/><path class="cls-77" d="M68.67462,25.48821a.5946.5946,0,0,1-.57647-.22418,1.4173,1.4173,0,0,0-.64337-.31429c.17693-.55158.17005-1.13721.314-1.69491.39349.13231.5242.52965.71969.81871a1.22841,1.22841,0,0,0,.57152.49075l.02128.02922C68.89316,24.868,68.85718,25.21151,68.67462,25.48821Z"/><path class="cls-67" d="M177.22583,102.5521a1.79587,1.79587,0,0,1,.06058.72045c.00315,3.04846.00956,6.09694-.00762,9.1453-.00207.36752.11249.43365.44558.42644,1.21592-.02631,2.43248-.02357,3.64879-.03177-.07453.12847-.20111.09144-.311.09163-1.16753.00215-2.33509-.003-3.50257.005-.23243.00159-.348-.04219-.34715-.31354Q177.228,107.57389,177.22583,102.5521Z"/><path class="cls-67" d="M39.0672,94.56872c-.10942.11769-.11257.01719-.11348-.05939-.00323-.26857-.00145-.53718-.00145-.80579q0-3.14653-.001-6.29306c-.00011-.15276-.01458-.3055-.02237-.45825.15108.11868.08429.28588.08457.43047q.00663,3.38709.00493,6.7742A.66221.66221,0,0,0,39.0672,94.56872Z"/><path class="cls-67" d="M110.80912,119.22141c-.02047.14383.06162.16559.18093.16491q2.25971-.0131,4.51942-.0215c-.07912.1212-.204.08593-.31417.08607-1.38145.00189-2.76291.00348-4.14433-.00248C110.92411,119.44786,110.66086,119.53811,110.80912,119.22141Z"/><path class="cls-67" d="M83.85417,112.81517c1.46011.02565,2.92025.05633,4.38-.01616-.062.14254-.19115.10494-.30007.10512q-1.9029.00318-3.80578.00071C84.0286,112.90477,83.91883,112.92636,83.85417,112.81517Z"/><path class="cls-67" d="M75.69107,112.78575a.73742.73742,0,0,0,.18212.0474q2.10029-.00345,4.20058-.013c-.08116.11919-.20614.08393-.31684.0841q-1.868.003-3.736-.00073C75.90187,112.90322,75.75452,112.95374,75.69107,112.78575Z"/><path class="cls-67" d="M80.07392,93.58078q-2.10051-.00788-4.201-.01359a.72057.72057,0,0,0-.18194.04848c.04132-.13017.15081-.11919.25267-.11922q1.96436-.00063,3.92869-.00005A.21032.21032,0,0,1,80.07392,93.58078Z"/><path class="cls-67" d="M115.73519,71.23472l1.38995-.70672A3.1534,3.1534,0,0,1,115.73519,71.23472Z"/><path class="cls-67" d="M67.37034,28.02985l-.0187.53562a4.58512,4.58512,0,0,1-.00024-1.68656Z"/><path class="cls-78" d="M85.8535,7.01828l-.07681-.02435c.01324-.08648.05893-.15975.15008-.12893a4.99557,4.99557,0,0,0,1.10552.06864A9.78464,9.78464,0,0,1,85.8535,7.01828Z"/><path class="cls-78" d="M99.41191,10.53007l-.43182-.3021-.12341-.13757A.44587.44587,0,0,1,99.41191,10.53007Z"/><path class="cls-78" d="M108.03358,24.932a1.5484,1.5484,0,0,1-.13885-.67607l.21078-.07478Z"/><path class="cls-67" d="M136.14438,102.58635l.00059,1.2288A2.48882,2.48882,0,0,1,136.14438,102.58635Z"/><path class="cls-67" d="M127.55136,6.93352a3.19851,3.19851,0,0,1-.94319.05835A2.61183,2.61183,0,0,1,127.55136,6.93352Z"/><path class="cls-67" d="M129.997,6.99065a3.18526,3.18526,0,0,1-.952-.05633A2.63447,2.63447,0,0,1,129.997,6.99065Z"/><path class="cls-79" d="M103.57168,72.393c.26022.14072.12576.28773.00692.43446l-.23851-.12623C103.58485,72.72437,103.64182,72.60644,103.57168,72.393Z"/><path class="cls-78" d="M89.08537,6.98991q-.37809-.00792-.75614-.01587A1.10273,1.10273,0,0,1,89.08537,6.98991Z"/><path class="cls-78" d="M113.43006,13.3193a.80042.80042,0,0,1-.30652.35746C113.10711,13.45594,113.16417,13.29812,113.43006,13.3193Z"/><path class="cls-67" d="M95.0961,92.48258l-.76687-.00027A.98154.98154,0,0,1,95.0961,92.48258Z"/><path class="cls-67" d="M69.59728,92.48205l-.68972,0A.826.826,0,0,1,69.59728,92.48205Z"/><path class="cls-67" d="M145.6347,113.84119a2.29485,2.29485,0,0,1,.71885.05762C146.11363,113.88453,145.86559,113.96979,145.6347,113.84119Z"/><path class="cls-67" d="M45.79328,92.48174l-.6897.00016A.82888.82888,0,0,1,45.79328,92.48174Z"/><path class="cls-67" d="M170.976,92.48275l-.68992-.0007A.82278.82278,0,0,1,170.976,92.48275Z"/><path class="cls-67" d="M147.37256,113.89837a1.81826,1.81826,0,0,1,.64644-.05434C147.81257,113.96978,147.5885,113.88582,147.37256,113.89837Z"/><path class="cls-67" d="M148.62978,26.58731a.4945.4945,0,0,0-.06057-.03968.25033.25033,0,0,1-.01159-.28822l.01768-.30478C148.69974,26.15638,148.616,26.376,148.62978,26.58731Z"/><path class="cls-67" d="M93.5589,113.84155a2.07483,2.07483,0,0,1,.644.05712C93.98787,113.88489,93.76374,113.97187,93.5589,113.84155Z"/><path class="cls-67" d="M68.06055,113.84437a1.81789,1.81789,0,0,1,.64516.05407C68.49031,113.88594,68.26669,113.96943,68.06055,113.84437Z"/><path class="cls-78" d="M106.94673,20.4885a.60286.60286,0,0,1-.12747-.31212C106.91882,20.25713,107.15882,20.28054,106.94673,20.4885Z"/><path class="cls-67" d="M56.18711,102.84925a1.90021,1.90021,0,0,1-.05681-.64808C56.26027,102.40747,56.17332,102.63277,56.18711,102.84925Z"/><path class="cls-67" d="M147.17211,92.48275l-.61285-.001A.65221.65221,0,0,1,147.17211,92.48275Z"/><path class="cls-67" d="M148.55511,29.26227l.07753-.2443c-.01694.183.06457.37651-.05864.54817Z"/><path class="cls-67" d="M67.37213,29.47215a1.142,1.142,0,0,1,.05646.55659C67.30524,29.8538,67.38535,29.65824,67.37213,29.47215Z"/><path class="cls-67" d="M67.42835,25.41513a1.13391,1.13391,0,0,1-.05647.55562C67.38536,25.78509,67.30543,25.58981,67.42835,25.41513Z"/><path class="cls-67" d="M95.29206,113.89893a1.531,1.531,0,0,1,.57433-.05755C95.68576,113.96848,95.484,113.885,95.29206,113.89893Z"/><path class="cls-78" d="M116.5773,10.62354a.41966.41966,0,0,1-.29477.21626C116.29923,10.6566,116.42141,10.61711,116.5773,10.62354Z"/><path class="cls-67" d="M69.87636,113.89849a1.5555,1.5555,0,0,1,.5684-.05795C70.26635,113.96824,70.06653,113.8861,69.87636,113.89849Z"/><path class="cls-67" d="M44.33343,113.84327a1.5841,1.5841,0,0,1,.57293.05545C44.715,113.88594,44.5143,113.9669,44.33343,113.84327Z"/><path class="cls-78" d="M100.63934,11.40715l-.29957-.24561C100.51254,11.15453,100.67566,11.15926,100.63934,11.40715Z"/><path class="cls-67" d="M56.13256,104.12285a1.47371,1.47371,0,0,1,.05483-.57375C56.17435,103.74069,56.25487,103.94147,56.13256,104.12285Z"/><path class="cls-78" d="M145.70077,16.657l-.14189-.11026-.009-.13512C145.86351,16.33153,145.65194,16.57433,145.70077,16.657Z"/><path class="cls-78" d="M177.13585,94.664l-.23-.157C177.15084,94.31281,177.12909,94.50926,177.13585,94.664Z"/><path class="cls-78" d="M153.3319,94.664l-.23-.157C153.34688,94.31281,153.32513,94.50926,153.3319,94.664Z"/><path class="cls-78" d="M93.08689,7.64229c-.10336-.03035-.22221-.01023-.30892-.09483C92.90517,7.50015,93.06036,7.36172,93.08689,7.64229Z"/><path class="cls-78" d="M168.52515,92.68056c-.07028.07127-.15917.0488-.2437.04838C168.3283,92.53969,168.41,92.52569,168.52515,92.68056Z"/><path class="cls-67" d="M148.47678,30.57166c.0488-.13029-.0137-.2818.07705-.40422l.00841.40518c.035.07238-.003.08233-.0629.07349Z"/><path class="cls-78" d="M84.15858,7.22189l-.23094.01089c.01033-.0765.02934-.147.12844-.13953C84.13368,7.09912,84.147,7.161,84.15858,7.22189Z"/><path class="cls-78" d="M146.8496,18.872c-.08761-.05349-.05432-.15468-.09029-.22856C146.951,18.65581,146.99407,18.72686,146.8496,18.872Z"/><path class="cls-78" d="M122.75194,7.69635a.17449.17449,0,0,0-.01092.04944l-.29566.02973C122.485,7.50715,122.65249,7.73336,122.75194,7.69635Z"/><path class="cls-67" d="M67.44809,30.47869l.06.03725-.00228.43713C67.38812,30.8069,67.45957,30.63776,67.44809,30.47869Z"/><path class="cls-67" d="M170.97943,96.58982a.97509.97509,0,0,1,.48476.05681C171.30151,96.63748,171.12939,96.70816,170.97943,96.58982Z"/><path class="cls-78" d="M115.64564,11.31652a.44344.44344,0,0,1-.28754.21983C115.37228,11.3563,115.4891,11.31043,115.64564,11.31652Z"/><path class="cls-67" d="M169.8782,96.64735a.95321.95321,0,0,1,.48157-.058C170.21127,96.70841,170.03982,96.63716,169.8782,96.64735Z"/><path class="cls-67" d="M67.60117,31.57294l-.01749.15066c-.11141-.11971-.05081-.26452-.05828-.3995Z"/><path class="cls-67" d="M107.73534,74.48749l.378-.00127A.2889.2889,0,0,1,107.73534,74.48749Z"/><path class="cls-78" d="M89.85575,7.06717a.6531.6531,0,0,1-.3957-.05876C89.59326,7.01881,89.73715,6.95783,89.85575,7.06717Z"/><path class="cls-78" d="M166.73952,93.18048c-.07411.03471-.1316.10962-.22666.09361C166.53274,93.10816,166.60268,93.06335,166.73952,93.18048Z"/><path class="cls-67" d="M136.22286,101.739a.73958.73958,0,0,1-.059.40222C136.17074,102.00531,136.11111,101.85959,136.22286,101.739Z"/><path class="cls-67" d="M58.57154,101.893a.7577.7577,0,0,1-.05736.42086C58.52094,102.172,58.457,102.02032,58.57154,101.893Z"/><path class="cls-78" d="M181.3152,102.04668l-.00828-.15528c.162.03346.19188.10877.07318.23109A.11621.11621,0,0,1,181.3152,102.04668Z"/><path class="cls-67" d="M105.41242,102.38161a.78319.78319,0,0,1-.05479-.4112C105.46656,102.0954,105.40791,102.24271,105.41242,102.38161Z"/><path class="cls-67" d="M157.56534,102.46688a.79407.79407,0,0,1-.05419-.41937C157.62058,102.1755,157.5595,102.32551,157.56534,102.46688Z"/><path class="cls-67" d="M181.3152,102.04668l.06488.07581-.01089.34318A.79228.79228,0,0,1,181.3152,102.04668Z"/><path class="cls-67" d="M169.69536,92.50317a.73628.73628,0,0,1-.4107.05643C169.40886,92.44834,169.55655,92.508,169.69536,92.50317Z"/><path class="cls-78" d="M148.49933,30.64611l.06288-.07351c.11869.11874.09154.194-.06841.22982Z"/><path class="cls-67" d="M148.17317,92.55775a.86279.86279,0,0,1-.41425-.05452C147.89865,92.508,148.047,92.44853,148.17317,92.55775Z"/><path class="cls-67" d="M157.51082,104.354a.78474.78474,0,0,1,.0546-.42006C157.55914,104.07532,157.62092,104.22581,157.51082,104.354Z"/><path class="cls-67" d="M58.51328,104.02416a.78392.78392,0,0,1,.05476.40671C58.46078,104.30727,58.51821,104.16152,58.51328,104.02416Z"/><path class="cls-67" d="M105.35589,104.43128a.77055.77055,0,0,1,.05618-.41775C105.40653,104.15444,105.4684,104.30457,105.35589,104.43128Z"/><path class="cls-67" d="M136.16523,104.25478a.74668.74668,0,0,1,.05913.40779C136.11021,104.54033,136.17078,104.39276,136.16523,104.25478Z"/><path class="cls-67" d="M126.31593,7.01011a.67723.67723,0,0,1-.40122.05951C126.03457,6.95625,126.1804,7.01787,126.31593,7.01011Z"/><path class="cls-67" d="M171.97711,92.55775a.856.856,0,0,1-.41317-.05454C171.70334,92.50788,171.85133,92.4487,171.97711,92.55775Z"/><path class="cls-67" d="M46.79451,92.55791a.72668.72668,0,0,1-.40275-.05644C46.52775,92.50765,46.67279,92.44962,46.79451,92.55791Z"/><path class="cls-67" d="M145.9003,92.5031a.82161.82161,0,0,1-.41964.057C145.6077,92.44659,145.75871,92.50953,145.9003,92.5031Z"/><path class="cls-67" d="M44.50687,92.50191a.7261.7261,0,0,1-.40456.05658C44.22449,92.44908,44.37021,92.50785,44.50687,92.50191Z"/><path class="cls-67" d="M96.09763,92.56088a.73186.73186,0,0,1-.41686-.05716C95.8215,92.50906,95.97166,92.44679,96.09763,92.56088Z"/><path class="cls-67" d="M148.55448,25.5052a.65338.65338,0,0,1-.055-.39744C148.60536,25.22813,148.54706,25.37121,148.55448,25.5052Z"/><path class="cls-67" d="M93.74,92.50339a.734.734,0,0,1-.41231.0568C93.45229,92.44781,93.60066,92.50825,93.74,92.50339Z"/><path class="cls-67" d="M70.59875,92.56a.73207.73207,0,0,1-.413-.05648C70.32525,92.50828,70.47381,92.4478,70.59875,92.56Z"/><path class="cls-78" d="M166.20009,93.4098c-.07332.03694-.13047.11228-.22648.09535C165.99277,93.33963,166.063,93.29538,166.20009,93.4098Z"/><path class="cls-67" d="M68.31448,92.5025a.87433.87433,0,0,1-.40795.05428C68.03067,92.44974,68.17673,92.5073,68.31448,92.5025Z"/><path class="cls-78" d="M88.19546,102.93568c-.30886-3.22483,2.68818-5.7422,5.19528-6.2551a6.69059,6.69059,0,0,1,7.87565,5.582A6.62838,6.62838,0,0,1,88.262,104.754,15.06279,15.06279,0,0,1,88.19546,102.93568Z"/><path class="cls-78" d="M45.44046,96.56916A6.62622,6.62622,0,0,1,46.56915,109.729a6.54828,6.54828,0,0,1-7.53825-5.02078c-.70494-3.98962,1.20424-7.08688,5.18448-8.02618A4.79038,4.79038,0,0,1,45.44046,96.56916Z"/><path class="cls-78" d="M75.724,103.1979c.32487,3.37788-2.5467,6.07615-5.37,6.52935a6.62965,6.62965,0,1,1,5.27949-8.25142A9.738,9.738,0,0,1,75.724,103.1979Z"/><path class="cls-78" d="M140.22787,103.2052a6.62809,6.62809,0,1,1,6.60744,6.61506A6.605,6.605,0,0,1,140.22787,103.2052Z"/><path class="cls-4" d="M127.64944,20.49762a.36642.36642,0,0,1-.0085-.339A.36642.36642,0,0,1,127.64944,20.49762Z"/><path class="cls-80" d="M115.28107,34.80766l.077-.23106.23111.077C115.608,34.94785,115.34875,34.68625,115.28107,34.80766Z"/><path class="cls-80" d="M109.2723,33.11323a.2326.2326,0,0,1-.2311-.154C109.15331,32.95794,109.26523,32.957,109.2723,33.11323Z"/><path class="cls-79" d="M110.81264,62.61159a5.14418,5.14418,0,0,0,1.13217,1.06258c.14042.12791.31519.21754.45971.34162a.43277.43277,0,0,1-.06156.75676c-1.02975.6414-1.94556,1.43484-2.90376,2.17218-.70619.54343-1.4564,1.03175-2.14217,1.59882a1.98579,1.98579,0,0,1-1.28743.54442.32064.32064,0,0,0-.265.19868.4644.4644,0,0,1-.22055.2032.95766.95766,0,0,1-.60409.03844c-.34866-.07437-.08543-.33042-.11459-.50192a1.49819,1.49819,0,0,1-.002-.19184c-.00437-.11608-.00177-.25751-.15759-.258a.22724.22724,0,0,0-.21645.23111,8.37813,8.37813,0,0,1-.28926.98762c-.09036.56337-.49176,1.04671-.42108,1.6545.0187.16079-.11527.18646-.23722.16639a3.81142,3.81142,0,0,1-.44537-.10861c-.54111-.15779-.54072-.15914-.54337.4234-.02416-.0432-.07393-.08977-.06874-.1291a2.40675,2.40675,0,0,0-1.02794-2.07307,1.336,1.336,0,0,1-.39207-1.38891,17.65093,17.65093,0,0,0,.33857-2.6837,2.96015,2.96015,0,0,1,.56487-1.32078c.378-.59108.3537-.759-.24547-1.10936-.48175-.28168-.92758-.62533-1.3851-.94753a.3725.3725,0,0,1-.17012-.36338c.13152-1.19084.69191-1.535,1.92084-1.423.206.01877.40656.12556.61929.04.60574.16018,1.1457.48479,1.73227.69546a.75036.75036,0,0,0,.61525-.01923,9.27991,9.27991,0,0,0,1.23314-.61986c.44822-.2792.47176-.4158.1147-.79984-.27163-.29214-.49246-.62271-.74658-.92766-.097-.11641-.19681-.24466-.11485-.41643a.87423.87423,0,0,1,.80245.24627,3.76621,3.76621,0,0,1,.49574.53338c.26786.318.48725.69989.95868.77316a.42918.42918,0,0,1,.24465.17789c.42841.52907.94151.97631,1.41511,1.46164A2.52952,2.52952,0,0,0,110.81264,62.61159Z"/><path class="cls-81" d="M105.49757,58.45255a3.71917,3.71917,0,0,0,.83212,1.16791c.5622.6528.53769.67223-.19689,1.13939-.40042.25465-.85555.388-1.26285.62275-.07739.04461-.16235.09566-.25267.05043a14.58081,14.58081,0,0,1-1.97-.901,2.28094,2.28094,0,0,0-1.26123-.38546,8.20584,8.20584,0,0,1-2.511-.44969c-.56383-.24151-1.14414-.44743-1.69621-.7127a18.11658,18.11658,0,0,0-1.73617-.71807c-.98341-.35287-1.94235-.77371-2.92448-1.1305a14.75411,14.75411,0,0,1-1.50083-.43854,1.66367,1.66367,0,0,1-.81427-.58461c-.19293-.30721-.62839-.30513-.95632-.4358a34.161,34.161,0,0,1-4.02688-1.70007c-.38-.211-.754-.43288-1.13153-.64834a1.344,1.344,0,0,0-.87054-.3095c-.2355.0269-.453-.21023-.65754-.36394-.35708-.26832-.73194-.51753-1.062-.816a3.97283,3.97283,0,0,0-1.26831-.62612.24035.24035,0,0,1-.07084-.2472c.11286-.344.07985-.71074.17515-1.0567a1.03684,1.03684,0,0,1,1.3013-.08118,2.05142,2.05142,0,0,1,.69881.79915.4927.4927,0,0,0,.20972.221,1.79638,1.79638,0,0,1,.87019.98312.46894.46894,0,0,0,.242.23944c.95208.55871,1.92946,1.06958,2.92568,1.54473a.36088.36088,0,0,0,.1439.05242,10.18569,10.18569,0,0,1,2.90529.81684,1.00022,1.00022,0,0,0,.815.00412.76847.76847,0,0,1,.52756.01337c.71544.14462,1.398.40886,2.12956.51113.7473.10445,1.48294-.03164,2.22283.016a.30515.30515,0,0,0,.31278-.23769.52524.52524,0,0,1,.64175-.35914,16.24625,16.24625,0,0,0,2.26689.06291,4.34521,4.34521,0,0,1,1.10607.11165,1.23046,1.23046,0,0,0,.75864-.02782,1.00574,1.00574,0,0,1,1.05844.1435c-.041-.44062-.00643-.48163.49742-.61932a.625.625,0,0,1,.41642.31474c.83356,1.16852,1.86025,2.1824,2.68319,3.35876A3.00284,3.00284,0,0,1,105.49757,58.45255Z"/><path class="cls-82" d="M80.38439,49.90345a4.82756,4.82756,0,0,1-.15445,1.3093c-.27457.15081-.261.49361-.4621.69336-.42907-.06363-.89022-.01217-1.23178-.37832-.07463-.08-.18133-.1317-.232-.238.16243-.34512-.10392-.63272-.19693-.90733-.11009-.325.048-.69953-.231-.98714-.1061-.10937.03839-.227.16345-.28118.34436-.14905.68982-.29552,1.03485-.443.28842-.15866.47413.08748.69989.17664A4.532,4.532,0,0,1,80.38439,49.90345Z"/><path class="cls-83" d="M102.64725,29.03122c.03722.00786.10175.00683.10764.02489.13027.40006.5055.63973.664,1.01992a19.336,19.336,0,0,0,1.07193,2.18063.55212.55212,0,0,0,.23636.24042c.14024.04022.18516.16885.24995.27584a10.23179,10.23179,0,0,0,5.0529,4.17554c.31912.1315.6399.25907.96373.37928.11938.04432.29074.055.28143.25266-.01854.29048.22811.31711.407.37583.88481.29043,1.80826.437,2.70135.68906a16.53567,16.53567,0,0,0,2.87668.55315.3312.3312,0,0,1,.3319.38441,1.16781,1.16781,0,0,0-.75216.14618,2.41072,2.41072,0,0,1-1.67474.15976c-.78777-.14729-1.59648-.21315-2.36976-.383a16.7331,16.7331,0,0,1-4.33757-1.7281,3.29828,3.29828,0,0,0-.57223-.19724.70765.70765,0,0,1-.38518-.23124,9.24839,9.24839,0,0,1-2.0468-1.94635,17.92431,17.92431,0,0,1-2.59848-5.13885A3.10335,3.10335,0,0,1,102.64725,29.03122Z"/><path class="cls-84" d="M111.27522,37.5804c-.59464-.25852-1.19543-.50393-1.78255-.77855a11.14581,11.14581,0,0,1-2.64452-1.66567,9.95154,9.95154,0,0,1-2.12094-2.6391c.07061-.36584-.303-.58364-.30814-.92423a2.90965,2.90965,0,0,0,1.05926.99121c.27487.16053.42237.53062.64414.79216a7.022,7.022,0,0,0,1.93982,1.65524.61045.61045,0,0,0,.36262.10427c.7619.26014,1.37875.80079,2.15422,1.05737,1.12912.37359,2.28715.60328,3.438.87844a16.09879,16.09879,0,0,0,2.23833.39849,33.76317,33.76317,0,0,0,3.66874.453,1.37861,1.37861,0,0,1,.98047.21643,2.3304,2.3304,0,0,1-.88782.14906,19.2957,19.2957,0,0,1-3.3243-.14295.25082.25082,0,0,0-.15147.00416c-.9598.574-1.89437.05546-2.83708-.063C112.88286,37.96362,112.10541,37.64,111.27522,37.5804Z"/><path class="cls-80" d="M104.80425,28.338a3.80185,3.80185,0,0,1,.68549,1.435,6.74169,6.74169,0,0,0,1.51765,2.4138,4.03126,4.03126,0,0,0,1.51724.88893c.45414.143.85466.45045,1.30848.63223a24.48073,24.48073,0,0,0,3.494.97422c.58014.13787,1.16266.03673,1.72281.20267.212.299.55662.18314.82451.21291,1.07127.11907,2.14994.1713,3.22572.25038.081.006.21145-.03819.2179.08621.007.134-.123.13848-.22555.1418-.11486.00371-.22991.00139-.34488.00169-.30426.391-.74817.3223-1.13971.28462-.683-.06571-1.36922-.12964-2.05117-.18509-.71453-.05809-1.40653-.2278-2.11633-.29353-.77473-.07175-1.54633-.1773-2.3193-.26812l-.077-.00017c-.08243-.18221-.27161-.17635-.42155-.22735a9.16877,9.16877,0,0,1-3.22461-1.78475,8.919,8.919,0,0,1-1.04677-1.26113A9.28838,9.28838,0,0,1,104.80425,28.338Z"/><path class="cls-85" d="M119.59505,64.84514c-.08038.11624-.21628.04618-.31413.09314-.12943.06211-.2703.13624-.09909.30272.08286.08056.13436.18544.02169.25621-.42869.26921-.67841.74889-1.14918.96534-.00427-.11289.09008-.18045.12594-.27345.11927-.30935-.02548-.567-.3424-.569a3.68853,3.68853,0,0,1-1.58407-.46539c-.80188-.39162-1.62429-.74157-2.42386-1.13956a17.01924,17.01924,0,0,1-1.75963-1.19271c-.31921-.21067-.60129-.48537-1.0262-.44192a30.20019,30.20019,0,0,1-2.73937-2.57077c-.31534-.31636-.52035-.71637-.80432-1.06193-1.0406-1.26636-2.2616-2.36824-3.278-3.65248-.28551-.36074-.5694-.723-.85618-1.083-.079-.0991-.16343-.20238-.11046-.34633.21257-.09237.29814.07812.39816.20075a18.13988,18.13988,0,0,0,1.75515,1.74335,4.75563,4.75563,0,0,1,.6604.69454,25.68717,25.68717,0,0,0,7.9502,5.5791,2.87581,2.87581,0,0,1,1.03351.65364.2609.2609,0,0,0,.09068.07063c.86191.33951,1.63136.86158,2.46919,1.2484a.36006.36006,0,0,0,.18369.05208,2.32657,2.32657,0,0,1,1.38018.39486C119.42825,64.3976,119.67784,64.49365,119.59505,64.84514Z"/><path class="cls-86" d="M103.26354,53.67736a10.00561,10.00561,0,0,0,1.12035,1.4513c1.16684,1.33877,2.44269,2.589,3.5335,3.985.6044.77354,1.31178,1.42329,1.96628,2.13395a9.87627,9.87627,0,0,0,.89817.77376c.11591.0987.2539.18174.26228.35913l-.23148.23106a1.0539,1.0539,0,0,1-.98021-.40014c-.63536-.68445-1.363-1.28007-1.94507-2.01646a.2722.2722,0,0,0-.15184-.10975c-.57727-.05411-.80156-.535-1.10722-.91172a1.7525,1.7525,0,0,0-1.13073-.721,11.43557,11.43557,0,0,1-.934-1.20161q-.89905-1.09157-1.79692-2.1841c-.24978-.30546-.49087-.618-.73591-.92736-.21436-.07335-.29066-.27691-.40733-.4394q-.71349-.99367-1.38989-2.01316c-.09689-.14647-.22054-.28832-.16511-.4884a1.71656,1.71656,0,0,0-.28914-1.56466c-.10061-.18191-.31567-.31519-.2376-.57128.21207-.12427.29583.052.38347.17788a4.60249,4.60249,0,0,0,.60678.76821c.78269,1.15729,1.69081,2.21826,2.55157,3.3157C103.16549,53.42886,103.31348,53.504,103.26354,53.67736Z"/><path class="cls-87" d="M102.64725,29.03122a19.29163,19.29163,0,0,0,.65037,2.23841,26.312,26.312,0,0,0,1.2426,2.50022c.42964.71876.8928,1.40344,1.38909,2.07365a8.77941,8.77941,0,0,0,1.19952,1.12284,1.87046,1.87046,0,0,1,.37166.38286.77273.77273,0,0,1-.40136-.20553,21.74617,21.74617,0,0,1-2.1227-1.973,1.16161,1.16161,0,0,0-.4031-.28579c-.129.03945-.19-.05347-.24212-.13776-.4757-.76965-.93758-1.54732-1.339-2.35972a23.77022,23.77022,0,0,1-1.2735-3.86448,34.23876,34.23876,0,0,1-.68445-3.97577,14.153,14.153,0,0,1-.19288-2.60013,2.89712,2.89712,0,0,0-.06579-.80076,13.33422,13.33422,0,0,0-.22315-3.66223,9.92653,9.92653,0,0,0-2.409-5.02522,9.1848,9.1848,0,0,0-1.01185-1.04934.53028.53028,0,0,1-.18517-.40059c-.34179-.32184-.85562-.38573-1.15554-.77036.3373-.3008.32492-.3663-.07693-.57989a5.74349,5.74349,0,0,0-.98236-.40543c-.23827-.07469-.40736-.202-.40419-.478a13.009,13.009,0,0,1,3.5316,1.63325,8.66,8.66,0,0,1,3.47038,5.4176,15.05439,15.05439,0,0,1,.39683,3.25761c.00994,1.03163.00618,2.0662.0848,3.09363q.14706,1.9218.34417,3.8415A26.60036,26.60036,0,0,0,102.64725,29.03122Z"/><path class="cls-88" d="M103.10947,32.42006a19.21964,19.21964,0,0,0,1.46386,2.46483,2.60093,2.60093,0,0,0,.81354,1.13934,14.56487,14.56487,0,0,0,3.14495,2.78041,17.06018,17.06018,0,0,0,3.54767,1.72112,35.233,35.233,0,0,0,3.39469,1.08257c.211.04646.42237.09337.63576.12562.14642.02213.24106.07863.24962.23649a.69347.69347,0,0,1-.78726.192c-.82189-.17633-1.61678-.49362-2.43876-.61346a11.72724,11.72724,0,0,1-2.47332-.80044,14.00665,14.00665,0,0,1-2.07416-1.0568,1.69571,1.69571,0,0,0-.54632-.2629c-.3471.04715-.45511-.28164-.67815-.4301a4.64282,4.64282,0,0,0-.9657-.86872,12.09344,12.09344,0,0,1-2.37324-2.66244,18.86892,18.86892,0,0,1-2.23343-4.70817c-.03953-.12224-.09458-.24338.00656-.36262.31608-.063.38853.18654.46687.39059a12.6471,12.6471,0,0,0,.53571,1.25862A.96543.96543,0,0,0,103.10947,32.42006Z"/><path class="cls-89" d="M116.74475,44.358a3.528,3.528,0,0,0-1.15554.15423,2.65074,2.65074,0,0,1-1.15609-.19358,22.35364,22.35364,0,0,1-4.0636-1.61624,17.73923,17.73923,0,0,1-3.2828-2.12182,14.31458,14.31458,0,0,0-1.16832-1.10492,16.75888,16.75888,0,0,1-1.80177-2.03472c-.08-.09762-.1786-.19423-.09064-.33866a.24447.24447,0,0,1,.32775.1188,5.18528,5.18528,0,0,0,1.49114,1.35049c.54589.36431,1.01642.85688,1.54657,1.257a11.24313,11.24313,0,0,0,2.46794,1.46475,21.35126,21.35126,0,0,0,5.00981,1.92128,1.1779,1.1779,0,0,1,.56594.21929.89678.89678,0,0,0,.80944.42509A.49158.49158,0,0,1,116.74475,44.358Z"/><path class="cls-90" d="M115.43514,43.4339a14.41738,14.41738,0,0,1-2.38941-.63624,20.67328,20.67328,0,0,1-2.73736-1.157c-.16893-.08916-.33138-.1906-.49682-.28638a14.80842,14.80842,0,0,1-3.66336-2.56961,12.65126,12.65126,0,0,1-1.84819-2.056c-.0726-.11428-.20266-.21045-.13055-.37574.13773-.06822.21442.03916.29757.11023.98158.83892,1.9185,1.73048,2.95606,2.50334.23581.11373.35405.38425.61666.46226a8.85834,8.85834,0,0,0,1.87955,1.15889A26.12916,26.12916,0,0,0,116.2061,42.835c.139.02991.32807.03265.39619.18592.03552.07988-.08813.13822-.16569.1821A2.53,2.53,0,0,1,115.43514,43.4339Z"/><path class="cls-91" d="M107.11531,40.50708a21.8878,21.8878,0,0,0,6.78573,3.54577c.558.18071,1.14546.235,1.68817.45941.04746.16844.29968.15041.32505.377a11.74626,11.74626,0,0,1-3.86868-.83908.81387.81387,0,0,1-.7713-.0949,28.55056,28.55056,0,0,1-2.71993-1.51c-.36966-.26174-.84134-.30614-1.18546-.62193-.35838-.32888-.76067-.61117-1.116-.94273-.51548-.48095-1.094-.88637-1.60205-1.37421a17.44945,17.44945,0,0,1-1.8655-2.24491c-.17565-.23659-.31411-.4998-.51047-.72217-.22928-.33816-.433-.69234-.64958-1.03847a.49213.49213,0,0,1-.09282-.46953c.32989-.33664.4598.0606.66571.18055.44508.58866.80928,1.23148,1.29425,1.79826a14.19458,14.19458,0,0,0,1.63486,1.70757c.62175.52179,1.19127,1.11283,1.80639,1.64917A2.0178,2.0178,0,0,0,107.11531,40.50708Z"/><path class="cls-92" d="M102.3393,36.502c.42779.45665.72563,1.0095,1.116,1.49691a13.80188,13.80188,0,0,0,2.33989,2.34166c.60177.46443,1.15863.99645,1.74509,1.488.36962.30979.85863.34985,1.24184.64889a25.53168,25.53168,0,0,0,2.26589,1.26673,2.15424,2.15424,0,0,0,.99757.306c.003.12766.0997.17049.19563.208a26.56889,26.56889,0,0,0,3.49243,1.114,5.53236,5.53236,0,0,0,1.62718.37259c-.38769.2047-.76464.001-1.14291-.03978a7.1041,7.1041,0,0,0-1.322.03941.31643.31643,0,0,1-.36267.02483c-.82464-.32873-1.722-.43357-2.53448-.77986a18.85522,18.85522,0,0,1-5.43253-3.07053,16.91478,16.91478,0,0,1-1.53388-1.14942c-.29883-.33429-.60292-.66357-.88748-1.01051a4.68307,4.68307,0,0,0-.7147-.989c-.42719-.61827-.74025-1.30691-1.18222-1.91742C102.17167,36.74713,102.1,36.56351,102.3393,36.502Z"/><path class="cls-93" d="M119.59505,64.84514a.56326.56326,0,0,0-.46221-.46211c-.25421-.18462-.08279-.385.04848-.47478a8.31656,8.31656,0,0,0,1.285-1.3115,2.88351,2.88351,0,0,1,1.3623.11106c.735.18387,1.483.30259,2.21794.48293.14842.03642.30947.03966.40173.19123-.25594.35785-.66448.59309-.84273,1.00787-.09841.229-.1472.47731-.38984.60934-.35129.105-.72183.07027-1.07942.2018a1.61772,1.61772,0,0,1-1.03923-.15216A3.80322,3.80322,0,0,0,119.59505,64.84514Z"/><path class="cls-94" d="M104.188,39.73679a8.10424,8.10424,0,0,1,.97124,1.02746c.49432.514,1.15492.78011,1.68251,1.2463a17.59011,17.59011,0,0,0,4.426,2.56268,24.49831,24.49831,0,0,0,2.60583.86606,3.826,3.826,0,0,0,1.02239.30509,17.04312,17.04312,0,0,0,2.52954.693.69112.69112,0,0,1,.1667.07715,2.946,2.946,0,0,1-.85426.15383l.08391.46233-.53925.00019c-.19649.16947-.41238.06665-.62163.04236a5.90669,5.90669,0,0,1-.85834-.18693A19.38764,19.38764,0,0,1,110.81,45.38972a24.83688,24.83688,0,0,1-5.12777-3.58044c-.67549-.63439-1.26825-1.33793-1.8993-2.00922a.64972.64972,0,0,1-.23991-.57956C103.93475,39.17168,103.9978,39.53361,104.188,39.73679Z"/><path class="cls-95" d="M116.05142,49.74938a5.22327,5.22327,0,0,0,1.84885.46212c-.09923.19457-.26346.15476-.43291.1301-.33838-.04924-.67838-.0876-1.01806-.12758a.17656.17656,0,0,0-.16677.0745c-.184.15507-.38893.08471-.58825.051a15.86658,15.86658,0,0,1-5.207-1.9169,33.46586,33.46586,0,0,1-3.7352-2.43035,18.7315,18.7315,0,0,1-3.08239-2.769,3.17933,3.17933,0,0,1-.65667-.92658c.22406-.14659.35844.04549.49248.1533.28916.23255.53338.51554.79809.77575a1.15183,1.15183,0,0,0,.3953.29763c.59694.46295,1.13616.99413,1.73815,1.45251a30.24018,30.24018,0,0,0,5.10324,3.19792,25.92753,25.92753,0,0,0,2.9957,1.19736c.33319.11334.6794.12452,1.012.21608C115.71791,49.634,115.9093,49.61609,116.05142,49.74938Z"/><path class="cls-96" d="M103.03262,42.27852a12.98047,12.98047,0,0,0,2.21187,2.37448,34.7846,34.7846,0,0,0,3.07266,2.32413c1.04806.68327,2.12709,1.3072,3.2264,1.89794a13.03931,13.03931,0,0,0,3.64439,1.25789,3.92274,3.92274,0,0,0,1.09459.15556c.14818.23128.41725.21088.634.29305.12793.04849.27309.0492.36749.16906a.57712.57712,0,0,1-.46376.11266,14.57069,14.57069,0,0,1-1.69214-.1572,10.88228,10.88228,0,0,1-2.70693-.82659,27.16411,27.16411,0,0,1-3.47006-1.80118,1.60635,1.60635,0,0,1-.24646-.18175q-.97491-.772-1.94877-1.5459A14.43452,14.43452,0,0,1,104.336,44.184c-.4256-.532-.974-.93844-1.3664-1.49475a2.36218,2.36218,0,0,0-.42047-.58709c-.08232-.06413-.06332-.18794.00167-.283A.45517.45517,0,0,1,103.03262,42.27852Z"/><path class="cls-97" d="M115.05,50.597a15.72194,15.72194,0,0,0,2.234.15362c1.15087.06313,2.29136.23065,3.43653.33972a18.49094,18.49094,0,0,0,2.24129.2.82085.82085,0,0,1,.485.07642.1763.1763,0,0,1-.20259.07231c-.52913-.188-1.05426.07457-1.582.00753a.40547.40547,0,0,0-.37237.15122c-.32895.20782-.67925.047-1.00785.02466-1.15935-.07878-2.32149-.14473-3.47205-.322a9.44389,9.44389,0,0,0-1.39316-.39869C115.25571,50.86731,115.04524,50.84977,115.05,50.597Z"/><path class="cls-98" d="M116.74474,51.21275c1.08465.0992,2.16905.2012,3.25406.29621.42964.03762.86065.05972,1.291.08888.3703.16441.77448.04089,1.15784.147a8.51531,8.51531,0,0,0,2.23215.08291,3.00438,3.00438,0,0,1,.56712.06449,1.90942,1.90942,0,0,0,1.02547-.10673c.28556-.10238.57124.02376.8652-.02188.595-.09239,1.19577-.20143,1.78766-.247.51177-.03935.99475-.19805,1.5072-.22232a7.54978,7.54978,0,0,0,1.9147-.30227,1.26286,1.26286,0,0,1,.34391-.01042,2.99632,2.99632,0,0,1-1.42073.37549c-1.3267.23436-2.66374.41519-3.99819.59131-.66255.08744-1.34106.14366-2.01439.19077a3.06629,3.06629,0,0,1-1.54788-.05334c-.153-.0683-.21365.08687-.32673.24114a5.6982,5.6982,0,0,0,1.30707.03694,15.89358,15.89358,0,0,1-3.09226.23509.582.582,0,0,1-.50525.1107c-1.08957-.1072-2.188-.08193-3.27518-.22222a1.83966,1.83966,0,0,1-.48356-.10372,11.45869,11.45869,0,0,0-1.34332-.4094c-.18053-.06607-.41515-.05189-.49331-.29331.23384-.19142.48379.0138.7195-.03054-.33635-.21222-.76694-.21868-1.09939-.4912A3.87768,3.87768,0,0,1,116.74474,51.21275Z"/><path class="cls-69" d="M148.55762,26.25941l.01154.2883c-.00289.15373-.0041.3076-.00909.46135a2.42513,2.42513,0,0,1-.24347,1.46081,1.35422,1.35422,0,0,0-.19633.803.74459.74459,0,0,1-.16415.45773,5.2388,5.2388,0,0,0-.68073,1.38676,18.69578,18.69578,0,0,1-1.1476,2.57084c-.25431.41-.35947.89708-.62191,1.31335-.55516.88057-1.10875,1.76193-1.63924,2.65882-.52836.8933-1.19611,1.703-1.76059,2.57662a14.70086,14.70086,0,0,1-1.04835,1.362,10.91082,10.91082,0,0,1-1.05055,1.13016c-.33576.30583-.55431.72652-.90174,1.03574-.93764.83454-1.84141,1.70395-2.86025,2.44852a16.13436,16.13436,0,0,1-2.96824,1.719,7.46953,7.46953,0,0,1-2.06983.51169c-.9908.13125-1.98946.18265-2.98181.30362a10.35671,10.35671,0,0,1-1.11416.10427,5.09152,5.09152,0,0,0-1.64285.16519c-.19512.06863-.35253-.01921-.52413-.04131a5.497,5.497,0,0,0-1.16623.15058c-.63618.04975-1.25455-.21108-1.8845-.17671-.46684.02547-.91382-.28924-1.40859-.00328-.18487.10684-.51955-.08169-.78079-.06316-.55911.03965-1.07553-.20626-1.62634-.202a.632.632,0,0,0-.25445.06685,4.44389,4.44389,0,0,1-1.64123-.3324c-.09872-.02955-.23785-.05415-.20792-.22012a.5426.5426,0,0,1,.47373-.0549c.4032.07211.81157.00983,1.21539.05336.07279.00785.09415-.00563.1191-.08689.09224-.30044.293-.2484.50314-.12924,1.2072.07749,2.40939.20261,3.60793.36673a5.90721,5.90721,0,0,0,1.0275.08762c.68723-.02753,1.36845.05735,2.05971.02881,1.49251-.06161,2.97764-.18038,4.46341-.32054a17.93,17.93,0,0,0,2.61447-.31371,10.96573,10.96573,0,0,0,3.67612-1.76863,22.15609,22.15609,0,0,0,3.05627-2.60906,34.50924,34.50924,0,0,0,3.98745-4.92792,43.26384,43.26384,0,0,0,3.24224-5.653,42.36023,42.36023,0,0,0,2.47212-6.51691A.34868.34868,0,0,1,148.55762,26.25941Z"/><path class="cls-99" d="M118.28545,47.97794a1.35672,1.35672,0,0,0-.15364.00107c-.09614.011-.21832-.04328-.27764.07232-.07994.15577.15985.13233.17017.28293l-2.04995-.12513c-.158.14325-.33745.08335-.51119.04962a17.47507,17.47507,0,0,1-4.931-1.78356,24.47971,24.47971,0,0,1-5.74458-4.20255c-.43442-.43068-.86348-.87223-1.25621-1.34469-.27719-.4316-.588-.84054-.89763-1.24776a19.84407,19.84407,0,0,1-1.54917-2.42788c-.06138-.111-.14187-.21936-.07534-.35789.2627-.064.30707.1731.41581.31078.16331.20679.22576.494.49628.61474a3.30225,3.30225,0,0,1,.81288.96226,21.82918,21.82918,0,0,0,5.30249,5.24571,19.27,19.27,0,0,0,2.57919,1.36231,22.746,22.746,0,0,0,4.12592,1.50945,12.394,12.394,0,0,0,1.54071.23125,3.42084,3.42084,0,0,0,1.42628.53689C117.9336,47.717,118.20843,47.65926,118.28545,47.97794Z"/><path class="cls-34" d="M103.9912,15.76834a.36618.36618,0,0,1,.00851.339A.36618.36618,0,0,1,103.9912,15.76834Z"/><path class="cls-100" d="M116.05142,49.74938a9.04608,9.04608,0,0,1-1.60607-.30927,24.82036,24.82036,0,0,1-6.2407-3.08084,32.69528,32.69528,0,0,1-3.55447-2.77152c-.59419-.54027-1.11406-1.15082-1.65888-1.73833-.3913-.422-.64613-.94271-1.0407-1.36135a.49466.49466,0,0,1-.169-.51663c.19936-.06005.26687.10536.35429.21839a22.45843,22.45843,0,0,0,2.6744,2.77081.50126.50126,0,0,0,.22488.13966.69671.69671,0,0,1,.32959.19,15.20824,15.20824,0,0,0,3.31756,2.48578,20.89584,20.89584,0,0,0,7.08818,2.878.2989.2989,0,0,1,.20385.0946c.06436.26076.31134.23641.49073.29647a10.08826,10.08826,0,0,0,2.51365.62719c-.0432.02416-.08833.07226-.1293.06894-.73193-.05937-1.468.06634-2.19912-.05507A.86267.86267,0,0,0,116.05142,49.74938Z"/><path class="cls-101" d="M117.284,52.291c1.4294.223,2.87469.22357,4.314.30808a7.45441,7.45441,0,0,0,1.15328.15137,19.94371,19.94371,0,0,0,2.62146.00267c-.20049.23675-.50134.16619-.75056.21239a8.67985,8.67985,0,0,1-1.29058.09316,17.32487,17.32487,0,0,0-1.79255.07164c-.64666.0885-1.29274-.11316-1.94378-.0687a.6576.6576,0,0,1-.54789.10765,19.09292,19.09292,0,0,1-2.13054-.27882,1.33547,1.33547,0,0,0-.72659-.31323,1.44753,1.44753,0,0,1-.33605-.07979c-.12009-.04575-.28218-.09806-.25692-.24226.028-.16.20195-.12624.32183-.107A6.08538,6.08538,0,0,1,117.284,52.291Z"/><path class="cls-102" d="M115.97439,48.7487a6.61089,6.61089,0,0,1-1.79314-.36266,24.25482,24.25482,0,0,1-3.03227-1.18546,26.04683,26.04683,0,0,1-5.05172-3.08789,7.00689,7.00689,0,0,1-.72254-.68117c-.11916-.1184-.22086-.25513-.4164-.22905A8.45292,8.45292,0,0,0,103.786,41.992a27.85578,27.85578,0,0,1-2.23175-2.93572c-.1703-.23986-.30342-.50512-.47248-.74788-.09891-.142-.22463-.29021-.14863-.49139.15841-.07041.24866.04634.31406.14421a24.5847,24.5847,0,0,0,2.32465,2.93091c.41991.3695.777.80039,1.16857,1.1966A23.22635,23.22635,0,0,0,108.763,45.311a20.1061,20.1061,0,0,0,4.9384,2.40532,8.89788,8.89788,0,0,0,2.273.49284,6.18975,6.18975,0,0,0,1.64316.46074c.07691.01008.15442.00617.20569.07826v.077A6.7637,6.7637,0,0,1,115.97439,48.7487Z"/><path class="cls-103" d="M76.53205,47.13073a.67985.67985,0,0,0,.05348-.67741c-.09813-.3008-.32672-.59488-.13028-.94.03777-.388-.04941-.77367-.022-1.16168a.34373.34373,0,0,1,.23632-.10811,2.9581,2.9581,0,0,0,1.57493-.66083.25416.25416,0,0,1,.18106-.03869c.199.103.30742.304.47681.43969a.53043.53043,0,0,1,.10908.31866,2.96067,2.96067,0,0,0,.26058,1.21143c-.02812.16872-.15877.20981-.29866.25078-.4654.13636-.56629.33077-.43005.82576.08126.2952.19306.59074-.08521.84867A10.04146,10.04146,0,0,1,76.53205,47.13073Z"/><path class="cls-104" d="M78.45812,47.439a1.18761,1.18761,0,0,0-.02451-.84554c-.21443-.51363-.00367-.83849.55466-.9245a.28034.28034,0,0,0,.24059-.15544c.2125-.05962.348.089.50326.18492a.92893.92893,0,0,1,.33322.62053c.03255.32656.34787.52716.4421.83579-.30052.483-.079,1.14647-.54487,1.57484-.064.05882-.09862.14955-.19484.17259-.24948-.02191-.42843-.25538-.69332-.23107A2.7363,2.7363,0,0,1,78.45812,47.439Z"/><path class="cls-105" d="M116.89881,52.83a17.37,17.37,0,0,1,1.85531.20526c.28053.014.56114.009.84112.02639a2.09262,2.09262,0,0,0,1.012.24076,20.6139,20.6139,0,0,1,2.62214.21012c.36133.074.70655-.09858,1.06486-.06619.06853.27093-.1584.22881-.27743.22243a.42488.42488,0,0,0-.49293.31671.53364.53364,0,0,1-.43024.11793c-1.59569-.02474-3.18952-.10007-4.78259-.18025a9.56748,9.56748,0,0,0-2.03386-.52353,19.99246,19.99246,0,0,1-3.98214-1.25751,24.58873,24.58873,0,0,1-3.12776-1.63554c-.11564-.07268-.26578-.11058-.29762-.27483.16433-.17569.32438-.0701.47627.01579.37461.21184.75763.4078,1.13648.61158a1.3061,1.3061,0,0,0,.75365.21593,9.62624,9.62624,0,0,1,1.56257.63739,14.05587,14.05587,0,0,0,3.55494.94772A1.2,1.2,0,0,1,116.89881,52.83Z"/><path class="cls-106" d="M118.20841,53.83123c1.09849-.03665,2.19357.07338,3.2905.10011.6735.01641,1.35.03131,2.025.0541a16.4266,16.4266,0,0,0,2.66007-.22057,1.99491,1.99491,0,0,1,.42135-.01027c.06969.12095.1861.22322.15407.38488a27.88555,27.88555,0,0,1-3.09228.37723,4.18622,4.18622,0,0,1-.72118-.03266,24.06236,24.06236,0,0,0-2.81159.19437.38655.38655,0,0,1-.35366.10644c-1.136-.1592-2.29656-.06617-3.42161-.3341a.91655.91655,0,0,1-.35755-.126c-.06832-.2096.08713-.34.17629-.49453A9.42514,9.42514,0,0,1,118.20841,53.83123Z"/><path class="cls-107" d="M124.44829,63.382c-1.255-.23049-2.48523-.584-3.75249-.75459a.46839.46839,0,0,0-.25336.06141,9.4734,9.4734,0,0,1-3.63219-.37224,1.56741,1.56741,0,0,1-.87083-.35078.86807.86807,0,0,1,.26982-.72782.62067.62067,0,0,1,.47882-.06317,22.06993,22.06993,0,0,0,2.95958.34985.75646.75646,0,0,0,.34058-.02551,3.3359,3.3359,0,0,1,1.3951-.15547,11.75309,11.75309,0,0,1,2.44621.04691c.46019.02469.92.04317,1.3807.039.1646-.00151.33586-.03086.47062.1038a4.31449,4.31449,0,0,1,.86625.08318.36735.36735,0,0,1,.34156.26129c.05646.15392-.045.25089-.14533.32011-.28819.19888-.33468.68454-.84993.66391.40028.14069.21063.38431.17263.5968a2.236,2.236,0,0,1-1.19508-.17232C124.69978,63.18535,124.58646,63.33815,124.44829,63.382Z"/><path class="cls-108" d="M125.68085,61.53332a25.09434,25.09434,0,0,1-3.072-.09823,10.52167,10.52167,0,0,0-1.242.02121.72321.72321,0,0,1,.18915-.66947.83759.83759,0,0,1,.41418-.06027,21.09871,21.09871,0,0,0,4.20118-.3429.67408.67408,0,0,1,.588.0712,12.83539,12.83539,0,0,0,2.77328-.07683,7.58847,7.58847,0,0,1-2.09293.76072A5.09844,5.09844,0,0,0,125.68085,61.53332Z"/><path class="cls-109" d="M85.93075,11.16261a9.97044,9.97044,0,0,1,1.77163.07693c.1403-.13439.30772-.08818.47259-.07493.85644.06885,1.69843.23359,2.54327.3779a25.74877,25.74877,0,0,1,2.69026,1.34888c.33979.22284.37115.31509.226.68368a.80144.80144,0,0,1-.58826-.10173,5.86873,5.86873,0,0,0-1.5115-.40262,1.837,1.837,0,0,0-.8882-.19466,7.67235,7.67235,0,0,1-1.39322-.25808,10.31743,10.31743,0,0,0-1.60515-.117,20.79374,20.79374,0,0,1-2.37481-.713c-.10953-.0273-.21893-.08747-.19023-.24007.04938-.03633.10983-.11278.14641-.10268A.65046.65046,0,0,0,85.93075,11.16261Z"/><path class="cls-110" d="M85.08317,11.54785c.139.23507.405.19969.61166.25649a12.29917,12.29917,0,0,0,1.93046.59085,2.26167,2.26167,0,0,1-.20947.53136.38131.38131,0,0,1-.36106.05766,5.60577,5.60577,0,0,1-1.43234-.35811,8.31711,8.31711,0,0,0-2.43045-.54691,9.94053,9.94053,0,0,0-1.62336-.08263.57762.57762,0,0,1-.56832-.2945,23.83645,23.83645,0,0,1,3.265-.16128C84.538,11.54024,84.81055,11.73672,85.08317,11.54785Z"/><path class="cls-111" d="M123.13868,57.37428a13.4008,13.4008,0,0,0,1.92694.01431,1.756,1.756,0,0,1,.92337.13973c-.95636.09149-1.87688.39746-2.83574.47553-.032.00261-.06113.04145-.0916.06342-.07232.15784-.21271.16751-.356.15489-.8383-.07389-1.67818-.02247-2.51723-.03278a6.78787,6.78787,0,0,1-.9495-.07573,8.801,8.801,0,0,1-1.42089-.2495.53946.53946,0,0,1-.06668-.59553.86121.86121,0,0,1,.55867-.05,14.53737,14.53737,0,0,0,1.75593.01932c.954-.06319,1.91344.0267,2.87082.03952A.26356.26356,0,0,1,123.13868,57.37428Z"/><path class="cls-112" d="M128.223,57.91323c.11755.06392.21259.1704.368.15845.15987-.0123.17278.10624.17126.22646a.5714.5714,0,0,1-.41674.24573,24.57588,24.57588,0,0,1-5.27359.6326c-.46834-.06446-.94087-.03706-1.4098-.06345a2.79261,2.79261,0,0,1-1.39209-.29857c.05405-.23313.24882-.24709.42334-.23892a25.58976,25.58976,0,0,0,3.624-.24083c.30081-.02861.60256-.06181.90124-.11321.82161-.00985,1.62606-.18052,2.4392-.26913C127.84694,57.93175,128.03452,57.92424,128.223,57.91323Z"/><path class="cls-113" d="M125.21864,58.22149c-.54453.1026-1.08624.225-1.63422.30346a16.179,16.179,0,0,1-2.97463.15855.29046.29046,0,0,0-.32142.15377,1.47233,1.47233,0,0,1-.95828.08683c-.64261-.14626-1.30043-.21163-1.94338-.35932-.19967-.04587-.40558-.06076-.5213-.26437-.0007-.34688.241-.32707.47476-.30787a14.41435,14.41435,0,0,1,1.65823.0675.2813.2813,0,0,0,.21148-.0696,21.68134,21.68134,0,0,0,3.06845.06666c.26073.0014.52223.19012.78332.01017.42782.02309.80783.32341,1.2532.22772A3.6659,3.6659,0,0,1,125.21864,58.22149Z"/><path class="cls-114" d="M123.13868,57.37428c-1.79693-.065-3.59693.08479-5.39248-.07684a.33118.33118,0,0,1-.28661.06949,16.13033,16.13033,0,0,1-2.36894-.59294.58078.58078,0,0,1-.22527-.14144.33353.33353,0,0,1-.06013-.42117c.11131-.16057.27291-.09486.42-.05552a2.01514,2.01514,0,0,0,.79164.10344c.80524.04874,1.59946.19465,2.40217.2704a6.9666,6.9666,0,0,0,1.41635.00226,9.47631,9.47631,0,0,1,1.76335-.01364,15.0547,15.0547,0,0,0,2.4538.00731c.9316-.06493,1.86755-.03705,2.79793-.13023a.20215.20215,0,0,1,.14.05465c.12183.08794.31765.0526.38517.23106a12.76153,12.76153,0,0,1-1.80316.30323C124.75521,57.08087,123.9471,57.22674,123.13868,57.37428Z"/><path class="cls-115" d="M129.53263,55.14072a10.0376,10.0376,0,0,0-1.26468.28162c-.106.04361-.227.05386-.276.1805-.11288.17617-.30173.174-.477.202a29.12646,29.12646,0,0,1-5.16482.45448,7.14344,7.14344,0,0,1-.88091.05769c-.82509-.00028-1.64062-.13735-2.47455-.09654a6.02955,6.02955,0,0,1-1.92391-.22507,1.84636,1.84636,0,0,0-.84033-.301c-.32384-.06157-.40747-.17721-.36643-.4502a.844.844,0,0,1,.49043-.01817,20.537,20.537,0,0,0,2.3702.17255,3.67919,3.67919,0,0,1,1.41244.043,7.03336,7.03336,0,0,0,1.38066-.00388,9.47431,9.47431,0,0,1,1.65351-.0199,19.77184,19.77184,0,0,0,2.377-.14058c.22327-.01474.45212-.1312.67191.01776.38074.1665.73614-.04593,1.10409-.07156A6.62416,6.62416,0,0,1,129.53263,55.14072Z"/><path class="cls-116" d="M126.2201,55.295c-.83557.17525-1.69283.15786-2.53485.28255a5.78792,5.78792,0,0,1-.68052-.04761,14.8899,14.8899,0,0,0-1.7585.05914,6.69873,6.69873,0,0,1-1.825-.11145,1.07719,1.07719,0,0,0-.67359.04786c-.09518-.12555-.37526-.11636-.3201-.32806.0561-.2153.29428-.14808.46422-.17283,1.01757-.14824,2.04392.067,3.06213-.07273a.34275.34275,0,0,1,.26035.03487c1.18292.05267,2.36188-.07612,3.54363-.07739a14.21488,14.21488,0,0,0,2.255-.258c.45813-.07276.91133-.02082,1.36568-.04976q-1.35383.30794-2.7079.6148C126.5221,55.2498,126.37036,55.26912,126.2201,55.295Z"/><path class="cls-117" d="M90.7838,11.625c-.65286.02107-1.26571-.23923-1.91288-.26913-.39047-.018-.77909-.0762-1.16854-.11633-.17687-.20337-.47009-.16095-.67058-.31864-.11724-.09221-.26724-.14581-.33072-.29733.29036-.191.59424-.064.899-.06877.57162-.009,1.163.21317,1.72005-.08529.12774-.12347.28053-.083.431-.0685.55444.05351,1.0997.17716,1.65582.21484.707.31757,1.4139.63716,2.14791.89223.18534.21342.42657.39713.39224.72907a.52421.52421,0,0,1-.6131.02593,9.40185,9.40185,0,0,0-1.74439-.42521A5.12161,5.12161,0,0,1,90.7838,11.625Z"/><path class="cls-118" d="M76.4552,44.35823a1.48392,1.48392,0,0,1,.00005,1.15509c-.04277-.02413-.0907-.07533-.12752-.0683a10.96527,10.96527,0,0,1-1.49008-.08536c-.89144-.22478-1.14588-1.07462-1.64689-1.68178a2.85976,2.85976,0,0,1-.20215-.32109c.264-.04644.50984.0886.77035.07683.15983-.10717.26472.02346.37055.09817a.90816.90816,0,0,0,.96278.13093,1.5418,1.5418,0,0,1,.708-.12407A2.42132,2.42132,0,0,1,76.4552,44.35823Z"/><path class="cls-119" d="M75.83892,43.58794c-.35248.09954-.71494.14907-1.064.27912-.27015.10064-.49564-.144-.72548-.26925-.09712-.05291-.15973-.16765-.29045-.16419-.19462-.59916-.58736-1.10247-.81829-1.68528a.67941.67941,0,0,1-.10613-.317c.27824-.14481.46508-.32138.39124-.68808-.05339-.26511.17245-.36948.386-.44764a.469.469,0,0,1,.2995.02266,1.88035,1.88035,0,0,0,.8815.18955.34259.34259,0,0,1,.23836.10766,1.92018,1.92018,0,0,1,.56963,1.20987c.00814.343.24937.606.33757.92306C75.98042,43.03715,76.12693,43.3385,75.83892,43.58794Z"/><path class="cls-120" d="M73.60489,40.35313c-.22284.14185-.38183.28051-.25894.60371.10078.265-.12214.4448-.51141.47447a9.51753,9.51753,0,0,1-1.15215-.92568,4.53532,4.53532,0,0,1-.69673-1.07664.52651.52651,0,0,1,.24968-.04152c.21441.00722.4448-.01274.44462-.32133-.0001-.16164.10667-.17871.23015-.17656a.60374.60374,0,0,1,.54745-.07432.58279.58279,0,0,1,.278.24906,7.37975,7.37975,0,0,0,.7371.92009A.32669.32669,0,0,1,73.60489,40.35313Z"/><path class="cls-121" d="M96.94645,11.00889c.07634.19751.25213.30205.3963.44041a10.77855,10.77855,0,0,1,3.28481,5.7857,21.89474,21.89474,0,0,1,.31663,2.76075,8.23181,8.23181,0,0,1-.06875,1.10253,3.19065,3.19065,0,0,0-.02993,1.09527c.04882,1.23581.09342,2.47278.22712,3.70342.08268.76106.23517,1.51353.29044,2.27816.01332.18431.11427.37585-.03419.55042-.22122.00845-.21957-.17486-.2587-.31236a21.32067,21.32067,0,0,1-.6968-4.62259c-.02978-.50977-.04636-1.0228-.1183-1.53084a14.50825,14.50825,0,0,1,.05745-1.64784,11.27551,11.27551,0,0,0-1.82182-6.37145,6.98664,6.98664,0,0,0-2.05228-1.94234,5.75763,5.75763,0,0,0-.55767-.33859,12.17131,12.17131,0,0,0-2.6499-1.34316,3.08933,3.08933,0,0,1-.60928-.27114c-.09224-.06838-.24185-.09416-.22-.26074a.283.283,0,0,1,.10249-.02473c.98157.16281,1.96725.306,2.94171.50417a5.85108,5.85108,0,0,1,1.12846.43163C96.70745,11.05356,96.816,11.14553,96.94645,11.00889Z"/><path class="cls-122" d="M92.40154,10.0845a3.91252,3.91252,0,0,0,.84739.46209c-.02917.21065-.20336.18066-.32376.159a1.58036,1.58036,0,0,0-1.11842.03992.38748.38748,0,0,1-.32963-.04474c-.73053.03045-1.43226-.20769-2.157-.23124-.89261-.2817-1.78842-.55382-2.67653-.849-.45645-.15173-.996-.17058-1.25228-.69135.16061-.266.37457-.1312.57782-.07692s.41723.189.57772-.07707a16.072,16.072,0,0,0,4.11061.94118A11.04484,11.04484,0,0,1,92.40154,10.0845Z"/><path class="cls-123" d="M122.21426,54.98669a3.71864,3.71864,0,0,0-1.13346.125,1.66174,1.66174,0,0,1-.8351-.00155,12.336,12.336,0,0,0-1.82836.03217c.13519.18532.35252.187.33032.38318-.98146-.00488-1.95223-.14532-2.92734-.23069a2.93279,2.93279,0,0,1-1.29309-.24859,24.0785,24.0785,0,0,1-6.52229-3.313,22.52266,22.52266,0,0,1-3.18279-2.7161c-.11391-.11828-.25693-.21793-.28662-.39771.08568-.22456.20132-.074.28944-.01215a9.694,9.694,0,0,1,.9427.78917,17.80193,17.80193,0,0,0,2.48592,1.86735c.84068.53217,1.67774,1.06678,2.56633,1.51559.05352.00859.02721-.07915.02267-.028-.00184.02061-.014.02817-.03386.01782a12.55141,12.55141,0,0,1-3.03619-1.99325c-.07666-.0741-.196-.14526-.095-.284.17513-.0507.28654.07628.41586.15044.69875.40069,1.35552.87247,2.06567,1.252a21.86418,21.86418,0,0,0,5.46435,2.189c.122.02753.25784.02643.351.1332a3.76769,3.76769,0,0,0,1.40728.28656c.923.01034,1.83225.17228,2.75263.17537a8.92557,8.92557,0,0,0,1.6075.23427C121.90006,54.91712,122.07517,54.84841,122.21426,54.98669Z"/><path class="cls-124" d="M123.06165,59.0687a20.52446,20.52446,0,0,0,3.19693-.27309c.67143-.08712,1.32992-.2265,1.99532-.33548.18289-.03.32545-.15329.50837-.162a15.727,15.727,0,0,1,2.71806-.55179,3.01193,3.01193,0,0,1,.97964.013c-.01365.135-.10717.16341-.218.1523a3.39913,3.39913,0,0,0-.56287.07173c-.2968.01815-.3409.1897-.27218.41574a.41.41,0,0,1-.02544.36148,1.94561,1.94561,0,0,1-.61779.155c-.97528.23079-1.93789.51508-2.92584.69241a.49635.49635,0,0,1-.38358.15048,8.7551,8.7551,0,0,0-1.98592.13729c-.855.09549-1.71548-.00467-2.56648.13048a4.2281,4.2281,0,0,1-.99336-.07042c-.54843-.043-1.096-.08624-1.64709-.08528a1.587,1.587,0,0,1-.70942-.14224c-.08478-.28551.13454-.27346.2964-.28043.99384-.0428,1.96674-.30308,2.96651-.28258A.42788.42788,0,0,0,123.06165,59.0687Z"/><path class="cls-125" d="M78.227,14.16705a1.8593,1.8593,0,0,0-.97814-.23746c-.12913.02254-.183-.07447-.17482-.193.01-.14491-.10247-.228-.15664-.34019.62471-.00873,1.24681-.06873,1.86755-.10927.74871-.04889,1.47027-.24823,2.21532-.27595a14.70159,14.70159,0,0,1,2.54217-.23095c.59285.069,1.11293.40551,1.71295.46024.17083.01559.41944.04543.32235.349a15.5069,15.5069,0,0,1-2.41548.06968,6.04938,6.04938,0,0,0-1.63247.20286,22.30777,22.30777,0,0,1-2.26751.40507.53733.53733,0,0,1-.26494-.02344A2.13132,2.13132,0,0,1,78.227,14.16705Z"/><path class="cls-126" d="M85.62261,13.55a.362.362,0,0,0-.33807-.21712c-.58856.042-1.049-.38044-1.61123-.42479-.04669-.00368-.08737-.08344-.13085-.12785a11.6074,11.6074,0,0,1,1.87426-.07909.20518.20518,0,0,0,.2057-.075,15.21682,15.21682,0,0,1,1.53273.27239c.09.00665.17206.05056.23965-.04118a5.30563,5.30563,0,0,1,1.8887.35177,2.10033,2.10033,0,0,1,.66187.27046c.03908.16491.05467.33675.22024.446.08217.0542.15563.14229.01255.22591a6.38465,6.38465,0,0,1-1.71311-.17235,4.64876,4.64876,0,0,0-1.33938-.06467,2.08746,2.08746,0,0,1-.94524-.08354C85.98685,13.75286,85.76066,13.73856,85.62261,13.55Z"/><path class="cls-127" d="M121.4439,56.21938a40.81437,40.81437,0,0,0,5.42083-.45068c.37126-.07688.75122-.11167,1.12719-.16586.74569-.0727,1.49087-.15152,2.23734-.215.2798-.02378.56263-.01178.84407-.0161a3.99352,3.99352,0,0,1-1.34923.34551c-.65045.12888-1.247.41855-1.89359.5456a2.55292,2.55292,0,0,0-.84005.18716,3.38119,3.38119,0,0,1-1.234.13583c-1.31786.01657-2.63282.15239-3.95188.09534a.24214.24214,0,0,1-.20661-.07713C121.46252,56.50952,121.33469,56.41189,121.4439,56.21938Z"/><path class="cls-128" d="M119.51877,59.68505c.95944.11689,1.93072.05908,2.88936.21626a14.28581,14.28581,0,0,0,1.75486-.06939,14.52464,14.52464,0,0,0,2.61953-.21353,7.99256,7.99256,0,0,0,1.05533-.01036c-.004.41265-.28963.49954-.61956.5369-.20627.02336-.41673.04275-.45894.30993a12.3114,12.3114,0,0,0-2.0816.25287,20.84851,20.84851,0,0,1-2.84916.13207c-.10248.00287-.20509.00085-.30765.0011a.37166.37166,0,0,1-.32711.06824,1.55144,1.55144,0,0,0-.8325.07023.76175.76175,0,0,1-.41829.02823c-.84072-.17638-1.70561-.20619-2.53989-.42113a.8116.8116,0,0,1-.452-.19091c-.10513-.58545.16787-.90354.73133-.84752a16.22878,16.22878,0,0,1,1.64339.10842A.78524.78524,0,0,1,119.51877,59.68505Z"/><path class="cls-129" d="M75.29962,15.93791a1.37171,1.37171,0,0,1-.07661-.462c.51642.14195.95246-.20867,1.44-.23491.3805-.02047.73169-.18122,1.09578-.23117.41541-.057.83219-.13,1.2526-.16186.23984-.01818.36424-.12127.217-.37317a.809.809,0,0,1,.69893-.08465,2.22517,2.22517,0,0,0,.91149-.049,7.08118,7.08118,0,0,1,2.4303-.27232c.55868.05647,1.11338.15159,1.677.15455a4.18994,4.18994,0,0,1,1.40915.63054c.07151.06953.19628.05132.28754.09326.10277.04724.27232.05761.19431.25073a.60389.60389,0,0,1-.48361.034,10.35961,10.35961,0,0,0-5.80369.56027,16.86327,16.86327,0,0,1-3.91728,1.06251C75.85166,16.95213,75.42019,16.65506,75.29962,15.93791Z"/><path class="cls-130" d="M85.006,14.32051a11.5939,11.5939,0,0,1-1.66771-.13127,4.7051,4.7051,0,0,0-2.10992.20177,6.41311,6.41311,0,0,1-1.99984.08376.48417.48417,0,0,1-.23112-.23112c.6507-.23468,1.35874-.178,2.01223-.38646a11.63945,11.63945,0,0,1,3.71422-.30108c.29994.00265.59915-.15884.8988-.00615l.53906.15462a2.94958,2.94958,0,0,0,1.01242.43073c.10953.04168.26143-.006.31.15624-.026.04622-.06286.09262-.113.09473a4.70771,4.70771,0,0,1-1.95877.00618A.69194.69194,0,0,0,85.006,14.32051Z"/><path class="cls-131" d="M70.36945,19.86586a1.414,1.414,0,0,1,.61618-.23094.51892.51892,0,0,1,.41518.142,2.05349,2.05349,0,0,0,.81834.43734,2.13243,2.13243,0,0,1,.58435.82824c-.03776.17558-.14744.322-.19981.4923a.22788.22788,0,0,1-.22359.1786c-.53447-.03143-.7842.34-1.036.71283-.24.08907-.37944.362-.6662.36643-.01406-.18825-.16177-.27269-.28821-.37572a1.249,1.249,0,0,1-.59139-.78188c-.03654-.23094-.30154-.38934-.5075-.53736,0-.11467-.00277-.22942.0007-.344.00642-.21251-.08533-.42476.32854-.40342A.74106.74106,0,0,0,70.36945,19.86586Z"/><path class="cls-132" d="M68.67462,25.48821c.005-.01159.01588-.024.01432-.03465a1.02571,1.02571,0,0,1,.371-.88927,3.63165,3.63165,0,0,0,1.00127-.15422,1.70323,1.70323,0,0,1,1.064,1.08381c-.10466.59643.042.86277.62681,1.10948.1427.06019.3014.08762.31578.2847a1.21213,1.21213,0,0,1-.50739.81725,3.03818,3.03818,0,0,1-1.73034-.29168,12.45671,12.45671,0,0,0-.41229-1.30134C69.3238,25.78783,68.90458,25.72309,68.67462,25.48821Z"/><path class="cls-133" d="M70.67792,22.79262c.20927-.1222.33855-.37224.61609-.38532.11895-.08783.21754-.00852.32023.03875a6.24089,6.24089,0,0,0,1.77016.48329.76874.76874,0,0,0,.688-.1318.19643.19643,0,0,1,.218-.02684c.089.09736.04381.189-.011.28056a1.92469,1.92469,0,0,1-1.09005.7075c-.38026.09048-.69568.36374-1.09007.43243a3.6154,3.6154,0,0,1-1.65278-.39739A1.94226,1.94226,0,0,1,70.67792,22.79262Z"/><path class="cls-134" d="M70.44644,23.7938a12.25887,12.25887,0,0,0,1.69478.30828,4.64569,4.64569,0,0,1,1.01823.4373c.14867.10327.29793.21213.26788.43a.46216.46216,0,0,1-.325.28368,14.99121,14.99121,0,0,0-1.681.28775.35364.35364,0,0,1-.35867-.0524,2.856,2.856,0,0,0-1.00146-1.07836C70.19493,24.20794,70.22075,23.93844,70.44644,23.7938Z"/><path class="cls-135" d="M75.29962,15.93791c.12116.26612.38376.43386.48741.716.06139.16709.22888.12783.365.13052.15236.003.30482.00065.45724.00062a1.43989,1.43989,0,0,1,1.03941.12339,1.12717,1.12717,0,0,0,.81812.01084c.88143-.27044,1.75143-.57255,2.62151-.87656a9.73823,9.73823,0,0,1,2.83516-.44126.71685.71685,0,0,1,.44723.07409c.01053.313-.26029.303-.43856.33543-.80331.14617-1.56859.43-2.35851.62254a4.006,4.006,0,0,0-.91164.37925A14.216,14.216,0,0,1,76.99864,18.468a8.39357,8.39357,0,0,0-1.22334.32913,1.00475,1.00475,0,0,1-.74961.03751c-.1281-.10081-.04571-.26407-.11585-.38575a1.746,1.746,0,0,0-.5718-.72886c-.209-.1269-.504-.27152-.42519-.62682a.29768.29768,0,0,0,.03291-.40308.98148.98148,0,0,1-.1868-.67515Z"/><path class="cls-136" d="M73.91285,17.09325a.72834.72834,0,0,0,.44519.53009c.38091.15209.44809.51128.65572.77485.10325.13107.04184.26261-.02223.38932a.6866.6866,0,0,0-.22372.73057.30624.30624,0,0,1-.09269.30879,7.73889,7.73889,0,0,1-1.68485.0677,1.45467,1.45467,0,0,1-.7722-1.41518c.188-.30169-.06786-.56313-.07684-.84695a1.34323,1.34323,0,0,0,.6573-.429C73.16245,16.7754,73.5226,16.92236,73.91285,17.09325Z"/><path class="cls-137" d="M69.83015,27.41363a10.3291,10.3291,0,0,0,1.77182.231c.09534-.0641.15126-.02555.18529.07082a9.66333,9.66333,0,0,1-.38909,1.39885,1.69681,1.69681,0,0,1-2.261-.69921,1.389,1.389,0,0,0-.07764-.46219C69.38744,27.87459,69.54109,27.54741,69.83015,27.41363Z"/><path class="cls-138" d="M69.44479,34.57706a.89927.89927,0,0,0,.4624-.38565c.01953-.01637.04418-.04384.06229-.039.50975.13677,1.07878.13871,1.43773.62331a2.78493,2.78493,0,0,0,1.05418,1.881.328.328,0,0,1,.10074.16154c-.03917.22157.15442.48082-.1068.66718a.31824.31824,0,0,1-.22291.01483,11.90535,11.90535,0,0,1-1.70876-.6902,3.97793,3.97793,0,0,0-.54053-.82454c-.1845-.221-.17829-.54563-.336-.8005A2.67873,2.67873,0,0,1,69.44479,34.57706Z"/><path class="cls-139" d="M70.52366,36.81006a8.1717,8.1717,0,0,1,1.52424.536.90461.90461,0,0,0,.40146.08046c.16816.29523.38618.55857.54867.85745.07316.13457.15918.26849.00611.40645a2.631,2.631,0,0,1-.47793.19927l-.6161-.00009-1.38682-1.30933C70.492,37.32351,70.65,37.06685,70.52366,36.81006Z"/><path class="cls-140" d="M69.13721,28.41514c.2062.16753.41854.32812.6172.50415a1.0914,1.0914,0,0,0,1.08934.24518,1.9777,1.9777,0,0,1,.52711-.05633c.23669-.10734.32333.08034.40326.22737a1.73813,1.73813,0,0,1,.241,1.05508,1.05531,1.05531,0,0,0-.729.45984.37083.37083,0,0,1-.37417.15443,6.90629,6.90629,0,0,0-1.365-.59885.42318.42318,0,0,1-.25581-.21941c-.17707-.145-.18946-.40761-.38517-.53932A9.638,9.638,0,0,1,69.13721,28.41514Z"/><path class="cls-141" d="M71.37086,34.80766a3.89661,3.89661,0,0,0-1.46367-.61625l-.462-1.46352a6.961,6.961,0,0,0-.07723-1.155c.11189-.09062.22345-.0362.3221.01624.28527.15167.61438.17636.9013.32058.199.29856.617.40518.70583.80118a1.80527,1.80527,0,0,0,.44777,1.79709.17341.17341,0,0,1,.028.14581A.54634.54634,0,0,1,71.37086,34.80766Z"/><path class="cls-142" d="M70.60051,31.958a4.82858,4.82858,0,0,1-1.23257-.38519,2.1396,2.1396,0,0,1-.07685-1.38625,5.79434,5.79434,0,0,1,1.61794.77019C70.87408,31.31145,70.9232,31.692,70.60051,31.958Z"/><path class="cls-143" d="M72.21807,18.47939c.16053.49322.24221,1.03281.77054,1.30975.03492.183-.09473.25465-.22715.297a2.66194,2.66194,0,0,1-.54339.16507,1.00245,1.00245,0,0,1-.81772-.37536c-.09727-.13478-.31726-.08825-.41472-.24094-.0336-.4874-.28587-.96334-.07679-1.46348A1.85149,1.85149,0,0,1,72.21807,18.47939Z"/><path class="cls-144" d="M100.10509,51.21275a4.98266,4.98266,0,0,0,.72812,1.20217c.37854.58814.79643,1.151,1.19757,1.72456-.50371.249-.50371.249-.34674.7912-.04735.053-.098.02748-.13193-.00836a.94587.94587,0,0,0-1.18206-.21984.81882.81882,0,0,1-.56668.042,9.15052,9.15052,0,0,0-2.32974-.14268,5.92572,5.92572,0,0,1-1.14665-.06675c-.29734-.06987-.57225-.01442-.61449.37728-.02863.26556-.23411.21392-.409.22976a11.26842,11.26842,0,0,1-4.47769-.5614c-.08328-.02656-.20151-.07492-.2562-.03972-.65758.42334-1.18559-.09726-1.75671-.24284a10.13328,10.13328,0,0,0-1.49222-.48264c-1.47344-.12828-2.53353-1.1225-3.79438-1.68909a.48716.48716,0,0,1-.272-.35672,1.03539,1.03539,0,0,0-.52759-.6637,1.13787,1.13787,0,0,1-.6104-.69487c-.05191-.23085-.40007-.26674-.49973-.5077a.35379.35379,0,0,1-.00307-.26082,1.01653,1.01653,0,0,0-.09507-1.06331A.65742.65742,0,0,1,81.921,47.663a.80954.80954,0,0,1,.83549.36132,4.57442,4.57442,0,0,0,1.4204.89808A23.07867,23.07867,0,0,0,88.442,50.66466a2.60935,2.60935,0,0,0,2.10325-.17611.83141.83141,0,0,1,.41216-.07145,12.00146,12.00146,0,0,0,1.68886-.06774,1.03888,1.03888,0,0,1,.778.13946.22891.22891,0,0,0,.14283.05232A4.946,4.946,0,0,0,95.84,50.11726a12.36668,12.36668,0,0,0,1.89609-1.23368.50978.50978,0,0,1,.3907-.13406.24987.24987,0,0,1,.17169.07361A16.27471,16.27471,0,0,1,100.10509,51.21275Z"/><path class="cls-145" d="M81.92453,47.74688c-.26091.0619-.528.66281-.32626.8288.42511.34981.24093.70347.11046,1.07762-.02926.08388-.06136.16677-.09215.25012a1.28872,1.28872,0,0,0-1.2322,0,3.17914,3.17914,0,0,1-.61665-1.00127,2.35618,2.35618,0,0,1,.31661-.52354c.07263-.08.16165-.22983.13212-.30373-.15419-.386.10372-.64655.24459-.94418a.35738.35738,0,0,1,.55621-.14148,4.28957,4.28957,0,0,0,.696.52916C81.8,47.57334,81.94637,47.58671,81.92453,47.74688Z"/><path class="cls-47" d="M115.97439,61.91841a11.06617,11.06617,0,0,0,2.3839.61783,8.48555,8.48555,0,0,0,1.63858.07419.82912.82912,0,0,1,.44557.07836,3.5031,3.5031,0,0,1-1.08,1.16659c-.17192.10065-.36243.26187-.22956.52765a2.89727,2.89727,0,0,0-1.36558-.39452,2.05221,2.05221,0,0,1-1.03642-.47209,13.55661,13.55661,0,0,0-1.53858-.76812c-.28516-.13652-.46114-.432-.76-.56375-.39778-.17532-.78555-.37331-1.183-.54944a21.96656,21.96656,0,0,1-4.65882-2.93614,17.10949,17.10949,0,0,1-2.90691-2.71212,2.69424,2.69424,0,0,0-.34-.307,3.1238,3.1238,0,0,0-.52624-.8379.39546.39546,0,0,1-.12062-.4523c.1894-.0974.27241.06948.37645.16166a3.55281,3.55281,0,0,1,.39885.41105,31.07431,31.07431,0,0,0,5.35635,4.51423,21.91871,21.91871,0,0,0,2.99908,1.62931,14.47057,14.47057,0,0,0,1.90513.706A.48452.48452,0,0,1,115.97439,61.91841Z"/><path class="cls-146" d="M104.7274,54.37053a.732.732,0,0,0,.28856.56028.96309.96309,0,0,1,.32754.749,15.10068,15.10068,0,0,1-1.80342-1.82613.34356.34356,0,0,0-.27654-.17637c-.854-1.022-1.67-2.07408-2.48286-3.12881a3.69371,3.69371,0,0,1-.29061-.4909,1.358,1.358,0,0,0-.34955-.67117c-.16578-.22956-.33882-.47429-.07451-.75345.26223-.06715.36792.13543.48123.29718.63841.91129,1.31151,1.79682,2.007,2.66433.61528.76746,1.24286,1.5257,1.89928,2.25934C104.585,54.00079,104.76182,54.13211,104.7274,54.37053Z"/><path class="cls-147" d="M100.10509,51.21275a5.68051,5.68051,0,0,1-.90864-1.16963A10.79138,10.79138,0,0,1,98.17892,48.825a1.05136,1.05136,0,0,1-.45972-.59193,1.28384,1.28384,0,0,0-.27659-.49995,15.0151,15.0151,0,0,1-1.31507-1.54588c-.06787-.23957-.10312-.48568-.147-.7301a2.51917,2.51917,0,0,0,.33105-1.02076c.25885-.05276.32856.16887.41535.3188.45568.78723,1.00525,1.51126,1.50415,2.269.38831.51016.79652,1.00515,1.17556,1.522.105.14319.28081.28676.15944.5102a.50037.50037,0,0,0,.156.341c.43729.38889.41907.9636.60072,1.45518C100.38534,51.02188,100.24705,51.13358,100.10509,51.21275Z"/><path class="cls-148" d="M99.56612,49.0564a5.28542,5.28542,0,0,0-.94163-1.36251c-.14494-.21576-.29677-.4269-.44548-.64014a19.50347,19.50347,0,0,0-1.44784-3.11088.952.952,0,0,1-.113-.28312,7.77129,7.77129,0,0,0-.24572-.87524.58052.58052,0,0,1-.00645-.47779c.252-.11649.29407.11617.4018.2404.53991.71528.92071,1.53028,1.4204,2.271a2.0609,2.0609,0,0,1,.28539.5401,2.68963,2.68963,0,0,0,.29075.62424.7056.7056,0,0,1,.13052.233c.10729.806.74629,1.31179,1.10508,1.97487.08046.14871.25011.28128.10513.48059-.22049.34759.04261.56244.22171.79812.13356.17575.35169.32483.16327.58861a2.3225,2.3225,0,0,1-.627-.74489C99.78391,49.20517,99.744,49.0503,99.56612,49.0564Z"/><path class="cls-149" d="M101.26062,28.72314c.15986-.12858.01118-.26117-.00215-.38731a43.448,43.448,0,0,1-.4752-5.73687c.01-.37322-.061-.759-.0624-1.14135-.00052-.14341-.00688-.28673.15457-.35933.00179.20456.09.394.081.60472a21.265,21.265,0,0,0,.31808,3.76392,27.71887,27.71887,0,0,0,.75415,3.81531,25.51912,25.51912,0,0,0,1.08076,3.13783c-.20517.02849-.28611-.10579-.36529-.2619a9.393,9.393,0,0,1-.56178-1.32248c-.06345-.19362-.13411-.38925-.38216-.41821a.25658.25658,0,0,1-.21793-.134A3.12,3.12,0,0,1,101.26062,28.72314Z"/><path class="cls-150" d="M101.26062,28.72314q.12164.54068.2434,1.08133a1.06425,1.06425,0,0,0,.29622.613,17.661,17.661,0,0,0,.85642,2.33428,14.88147,14.88147,0,0,0,1.02441,1.97389,12.918,12.918,0,0,0,3.11417,3.60388c.22673.17545.55038.298.62784.637-.50916-.10373-.79692-.52666-1.16347-.82752-.70538-.579-1.3827-1.19209-2.07165-1.791a.35728.35728,0,0,1-.20209-.16663,23.6376,23.6376,0,0,1-1.8428-3.00233c-.41545-.80942-.70368-1.66765-1.09124-2.48657a9.877,9.877,0,0,1-.57418-2.25864c-.02052-.1002-.04231-.19986-.068-.29916a45.591,45.591,0,0,1-.52229-4.92912c-.03771-.75925.102-1.5.0374-2.25348A13.97517,13.97517,0,0,0,98.86848,16.133,7.65612,7.65612,0,0,0,97.664,14.3102a1.48206,1.48206,0,0,1-.30113-.44205c-.02642-.05718-.03081-.13418-.07381-.17333-.47456-.43208-.71443-1.05353-1.19808-1.47779-.10946-.096-.26583-.16867-.22286-.36107A7.32692,7.32692,0,0,1,98.0605,13.5547a8.86827,8.86827,0,0,1,2.085,4.478,11.14262,11.14262,0,0,1,.20032,3.68444,6.748,6.748,0,0,0,.08673,1.48676c.062.73339.11446,1.47.19032,2.20332a13.58749,13.58749,0,0,0,.4401,2.46364C101.14526,28.1501,101.19565,28.43876,101.26062,28.72314Z"/><path class="cls-151" d="M100.49026,28.18391c.10771.44123.24089.87806.31783,1.32459a12.983,12.983,0,0,0,.9628,2.60282,17.62735,17.62735,0,0,0,2.21771,3.9106c.07553.102.13333.21707.19936.32607a4.31788,4.31788,0,0,0,.83719,1.17079,16.68366,16.68366,0,0,0,3.65157,3.13243,6.78227,6.78227,0,0,1,1.13483.70308,4.13863,4.13863,0,0,1-1.28306-.65351,14.23841,14.23841,0,0,1-2.66756-2.03461,2.79517,2.79517,0,0,0-.49951-.27079,3.61411,3.61411,0,0,1-1.00977-1.0326c-.08336-.11793-.15441-.23708-.31776-.24455a1.96222,1.96222,0,0,1-.69341-.72895,21.65015,21.65015,0,0,1-1.78423-3.255,1.13623,1.13623,0,0,1-.0955-.36982c-.06667-.31476-.26118-.58765-.31978-.89921-.21437-1.13974-.59449-2.241-.77525-3.38757C100.34823,28.36669,100.28336,28.21076,100.49026,28.18391Z"/><path class="cls-152" d="M101.56876,32.80506a.81993.81993,0,0,0,.03922.22274,19.489,19.489,0,0,0,2.1083,3.70083c.10421.13114.31594.17708.31761.3896a7.6069,7.6069,0,0,0,.844,1.10886,17.30827,17.30827,0,0,0,1.96089,1.96693c.09861.09786.18464.20839.27649.31306a3.29766,3.29766,0,0,1-.94965-.692c-.50943-.43975-.96233-.9396-1.50316-1.35082a12.59356,12.59356,0,0,1-1.512-1.72851,9.34923,9.34923,0,0,1-.96548-1.46609,4.68342,4.68342,0,0,1-.86152-1.52969,19.512,19.512,0,0,1-1.2481-3.792c-.02741-.14933-.09182-.29863.00681-.44577.20467-.03.20571.14581.24482.26108.07761.22874.12344.46741.183.70183a.72925.72925,0,0,0,.09234.28925A12.84074,12.84074,0,0,1,101.56876,32.80506Z"/><path class="cls-153" d="M100.10652,29.49368a14.97194,14.97194,0,0,0,.84808,3.05317,23.0404,23.0404,0,0,0,1.23044,2.72283.2548.2548,0,0,1-.23539-.16061c-.09509-.189-.23416-.15286-.3807-.07036-.29742-.05915-.36626-.329-.46649-.54568-.16515-.357-.29836-.72909-.47866-1.08047a32.534,32.534,0,0,1-1.11739-3.55191,41.22811,41.22811,0,0,1-.71808-5.01551c-.04535-.54345-.04311-1.0956-.0377-1.64631a10.6171,10.6171,0,0,0-2.27969-7.20427,11.752,11.752,0,0,0-2.502-2.14428c-.12459-.08452-.28213-.13445-.3348-.3a.52662.52662,0,0,0-.32035-.607,12.774,12.774,0,0,0-1.80592-.90866,3.02878,3.02878,0,0,1-.724-.40957,12.5179,12.5179,0,0,1,2.48618.49225c.23494.07836.43439.201.67227.04718a.208.208,0,0,1,.1838.02318c2.10925,1.2313,3.95136,2.71364,4.80969,5.11986a8.8222,8.8222,0,0,1,.60349,2.7228,14.08481,14.08481,0,0,0,.118,1.91415,6.71133,6.71133,0,0,1-.06535,1.10949,30.54062,30.54062,0,0,0,.50652,5.84273C100.1364,29.0906,100.22423,29.29354,100.10652,29.49368Z"/><path class="cls-154" d="M100.72137,33.42118c.3386.50981.39472,1.16757.84758,1.61753a1.07836,1.07836,0,0,0,.23959.58961c.17916.28984.35406.58231.53076.87367-.13727.13092-.0735.25152.01922.37044a20.01592,20.01592,0,0,0,1.634,2.42364.50389.50389,0,0,1,.19541.44072l-.61583-.53894a2.054,2.054,0,0,1-.70358-.73765,20.12785,20.12785,0,0,1-2.76914-4.89433,18.05126,18.05126,0,0,1-.89768-2.65252.5774.5774,0,0,1-.02106-.41274c.21-.0957.27073.05775.32051.20349.074.21651.14395.43459.213.65281a1.659,1.659,0,0,0,.38207.69074,2.62906,2.62906,0,0,1,.38517.902A1.85154,1.85154,0,0,0,100.72137,33.42118Z"/><path class="cls-155" d="M100.18212,33.57544a22.53537,22.53537,0,0,0,2.2789,4.17267c.35207.49623.73969.96723,1.11111,1.44974.11575.55441.58173.86189.91744,1.24947a20.67708,20.67708,0,0,0,5.42126,4.33327,16.94068,16.94068,0,0,0,4.34035,1.921,1.03137,1.03137,0,0,1,.49064.19809,10.14386,10.14386,0,0,1-1.65693-.44128,16.416,16.416,0,0,1-3.18314-1.29667,13.39793,13.39793,0,0,1-3.71765-2.46464c-.24154-.22765-.49577-.44177-.74064-.666a23.40167,23.40167,0,0,1-3.24736-3.81852,1.01093,1.01093,0,0,0-.319-.32419,17.20707,17.20707,0,0,1-1.75331-3.34878,1.04946,1.04946,0,0,1-.10729-.51927A.77949.77949,0,0,1,100.18212,33.57544Z"/><path class="cls-156" d="M101.80005,39.968a1.17328,1.17328,0,0,0,.27255.54195c.48714.57207.8881,1.2119,1.41106,1.75744.40606.4236.77891.879,1.16652,1.32032-.415-.1679-.63068-.5624-.95008-.83916a1.67411,1.67411,0,0,0-.66748-.47007,1.67155,1.67155,0,0,0-.4624-.46212,3.61646,3.61646,0,0,1-.77946-.81978,26.08007,26.08007,0,0,1-1.78526-2.82529,3.16931,3.16931,0,0,1-.48909-1.11533.61119.61119,0,0,1,.20112-.33883c.12937-.006.17013.09474.21372.18484a22.90586,22.90586,0,0,0,1.74708,2.76671C101.73971,39.75978,101.84793,39.83235,101.80005,39.968Z"/><path class="cls-157" d="M116.74474,51.21275a9.63628,9.63628,0,0,1-1.53348-.04933,10.50278,10.50278,0,0,1,1.17739.43076c.06743.0304.16981.0362.14413.13715-.02432.09554-.10946.06884-.19.056-.27586-.04384-.55359-.07593-.83061-.11251-.14822.13651-.31108.07454-.47163.03374a21.87417,21.87417,0,0,1-5.10378-2.09381,20.27968,20.27968,0,0,1-3.75281-2.453,12.22682,12.22682,0,0,1-1.66-1.52868,7.24028,7.24028,0,0,0-.82364-.90293c-.68966-.83256-1.37484-1.669-2.03206-2.52764-.08128-.1062-.18853-.2199-.11878-.38038.16162-.07268.27513.06429.41355.09393a6.80131,6.80131,0,0,1,1.20546,1.28187,21.82971,21.82971,0,0,0,2.456,2.37912c.98848.81129,2.0494,1.52944,3.10853,2.24679a21.04338,21.04338,0,0,0,6.164,2.75979,1.04783,1.04783,0,0,0,.15288.01331c.10908.192.31071.18895.49.22969A3.625,3.625,0,0,1,116.74474,51.21275Z"/><path class="cls-158" d="M108.73305,47.8239a9.77984,9.77984,0,0,1-1.76558-1.12318,20.17726,20.17726,0,0,1-3.54554-3.07676c-.50837-.533-.97981-1.10118-1.468-1.65342a21.70644,21.70644,0,0,1-1.60361-2.426c-.05946-.1107-.14964-.21218-.1027-.35367.24917-.10151.30685.109.38813.25245a9.01009,9.01009,0,0,0,1.24095,1.52585l.69351.84721c-.01454.3458.315.4952.448.76425.18871.38164.60516.60642.872.93a10.93529,10.93529,0,0,0,1.32005,1.43018c.54175.45877,1.08962.91418,1.63653,1.36681a5.73277,5.73277,0,0,1,1.14776.92735C108.18288,47.49425,108.55624,47.53915,108.73305,47.8239Z"/><path class="cls-159" d="M104.57314,45.59034c.57724.59647,1.22586,1.113,1.85486,1.65122a24.51107,24.51107,0,0,0,4.83039,2.95352A18.61123,18.61123,0,0,0,115.169,51.649a1.89494,1.89494,0,0,0,.34313.02589,6.35246,6.35246,0,0,0,1.49041.45642c.11737.028.22662.03625.28141.15973a8.78622,8.78622,0,0,1-1.6261-.05771c.219.25549.53522.22074.81059.27931a.50818.50818,0,0,1,.43033.31735,13.76889,13.76889,0,0,1-4.052-.98877c-.55248-.22808-1.09925-.47-1.64861-.70565a14.87842,14.87842,0,0,1-2.695-1.53995,34.34456,34.34456,0,0,1-5.002-4.2883c-.42339-.44582-.80175-.92978-1.20866-1.38954a9.34161,9.34161,0,0,0-.75608-1.06162c-.07786-.12537-.21029-.23693-.14275-.41437.25622-.06246.36061.154.48178.2926C102.73828,43.72114,103.68575,44.62734,104.57314,45.59034Z"/><path class="cls-160" d="M100.10509,34.03756a3.815,3.815,0,0,0,.51142,1.384,11.06448,11.06448,0,0,0,1.17137,2.141.4543.4543,0,0,1,.08921.32583c-.25225-.022-.28238-.26131-.39379-.41483-.14545-.20042-.22328-.45156-.45379-.58641-.20083-.04455-.286-.20958-.36468-.36923a28.97375,28.97375,0,0,1-1.42472-3.02837,6.043,6.043,0,0,0-.37657-.625A19.90608,19.90608,0,0,1,98.009,30.049a12.99634,12.99634,0,0,1-.39572-1.90942,18.93417,18.93417,0,0,1-.24229-2.519.92191.92191,0,0,1,.07543-.48725c.31537-.08193.25678.17834.29892.33532.12755.47524.13364.97368.27193,1.44692a16.69761,16.69761,0,0,1,.4072,2.18756,21.95423,21.95423,0,0,0,1.49452,4.47379C99.98719,33.7287,100.02264,33.89244,100.10509,34.03756Z"/><path class="cls-161" d="M98.94988,32.88208a3.07944,3.07944,0,0,1,.65927,1.26919c.36456.81367.78908,1.59632,1.17886,2.39662a2.45075,2.45075,0,0,0,.2415.33929,13.23978,13.23978,0,0,0,1.24742,2.13365c.41276.54791.8159,1.10314,1.21838,1.65868a.81245.81245,0,0,1,.07656.21266,12.161,12.161,0,0,1-2.00871-2.30606c-.19966-.26009-.29618-.60469-.61009-.77463-.23767-.07149-.27059-.30915-.38933-.47764a12.38022,12.38022,0,0,1-1.236-2.67087c-.15643-.42749-.286-.87139-.41908-1.31044A.43387.43387,0,0,1,98.94988,32.88208Z"/><path class="cls-162" d="M100.64448,37.3492l.30859.46228a7.74791,7.74791,0,0,0,1.06342,1.76085,18.89517,18.89517,0,0,0,1.30266,1.74622,12.19219,12.19219,0,0,0,1.34522,1.40653.6848.6848,0,0,1,.29395.47739c-.54209-.517-1.09831-1.01829-1.63193-1.54551-.54418-.53765-.98315-1.15848-1.52635-1.68892a22.84119,22.84119,0,0,1-2.08013-3.2349,1.71972,1.71972,0,0,1-.48942-1.14132c.21373-.081.32643.08277.38.218A9.64945,9.64945,0,0,0,100.64448,37.3492Z"/><path class="cls-163" d="M78.84311,43.97313c-.23786-.01886-.29524-.21859-.38593-.38494-.37479-.429-.751-.8568-1.13462-1.27805a.63415.63415,0,0,1-.17468-.28963c-.09282-.47795.333-.7158.4972-1.07518a1.63653,1.63653,0,0,0,.93469-.7178.48984.48984,0,0,1,.4959-.294.27227.27227,0,0,1,.12645.12261,1.28639,1.28639,0,0,0,.55643,1.03713c.42624.3293.40406.82752.44636,1.297a3.00209,3.00209,0,0,1-.82528.994C79.14729,43.53286,79.08678,43.836,78.84311,43.97313Z"/><path class="cls-164" d="M78.84311,43.97313a1.61123,1.61123,0,0,1,.67121-.803c.29432-.17378.31364-.58822.6384-.73743a1.20631,1.20631,0,0,1,.62422.661c.01208.3155.26214.60257.11367.93747a1.0692,1.0692,0,0,0-.53278.735,1.373,1.373,0,0,1-.66714.978l-.46184-.23076a1.29486,1.29486,0,0,1-.304-.94267A2.26283,2.26283,0,0,0,78.84311,43.97313Z"/><path class="cls-165" d="M77.22556,42.04746c.31427.35271.625.70865.94452,1.05657a.83637.83637,0,0,1,.28711.48415,1.78306,1.78306,0,0,0-.67081.40255,2.65305,2.65305,0,0,1-1.33118.3675,2.17132,2.17132,0,0,1-.61628-.77029,1.361,1.361,0,0,0,.00019-.84749,2.41172,2.41172,0,0,0,1.185-.67624A.137.137,0,0,1,77.22556,42.04746Z"/><path class="cls-166" d="M79.69069,45.74427a2.66277,2.66277,0,0,0,.64856-1.28033.44391.44391,0,0,1,.507-.414,1.49509,1.49509,0,0,1,.83516.61191.404.404,0,0,1-.01066.22336.56356.56356,0,0,0-.06044.638.86554.86554,0,0,1-.27963.949c-.14426.09087-.15331.16051-.09459.306.08584.21274.00473.322-.23577.27543-.20491-.15041-.36687-.00027-.53924.077-.19234-.30046-.54252-.50817-.49343-.95009C79.98708,46.00551,79.77458,45.89777,79.69069,45.74427Z"/><path class="cls-167" d="M118.20841,53.83123l-2.07958.07719a21.43971,21.43971,0,0,1-9.80543-5.08971,3.50989,3.50989,0,0,1-.75037-.652c-.06886-.10466-.18308-.18481-.17038-.331.13484-.12091.24309-.019.33575.05661a23.15163,23.15163,0,0,0,2.99227,2.11311.29012.29012,0,0,1,.15646.20611,23.26752,23.26752,0,0,0,5.74114,2.6786c.58768.17538,1.19024.27325,1.78247.41695.51773.12563,1.036.24734,1.55728.35681A.29536.29536,0,0,1,118.20841,53.83123Z"/><path class="cls-168" d="M108.88713,50.2115A25.38448,25.38448,0,0,1,106.27,48.44541a2.78975,2.78975,0,0,0-.84949-.62151.22451.22451,0,0,1-.1964-.084,1.52978,1.52978,0,0,0-.49571-.57882,15.62826,15.62826,0,0,1-2.0097-2.16295c-.50108-.54515-.88632-1.19221-1.39978-1.73354-.11189-.118-.23049-.25109-.1538-.44275.17505-.06949.25437.07706.352.165a7.06194,7.06194,0,0,1,.822.909,10.06659,10.06659,0,0,1,1.02018,1.13332,38.47546,38.47546,0,0,0,3.56418,3.25439,23.058,23.058,0,0,0,4.0794,2.678.35775.35775,0,0,1,.19532.17393c-.20048.12162-.3738.00157-.53672-.08041-.46585-.23443-.92812-.47732-1.37981-.73769A.68561.68561,0,0,0,108.88713,50.2115Z"/><path class="cls-169" d="M105.26665,47.74617a.16041.16041,0,0,1,.15388.07773,12.26179,12.26179,0,0,0,2.07966,1.83588c.452.36928.94206.69524,1.40875,1.05038a15.58254,15.58254,0,0,0,2.92818,1.62164,24.746,24.746,0,0,0,3.77081,1.37526c.169.04742.44022-.09073.5209.20136.10066.17893.05889.28649-.15444.30807a9.81511,9.81511,0,0,1-2.53338-.69278,28.29827,28.29827,0,0,1-5.581-2.91463,1.29086,1.29086,0,0,0-.20547-.08951,3.9207,3.9207,0,0,1-1.03254-.71588,23.28415,23.28415,0,0,1-2.34989-2.14094,13.99846,13.99846,0,0,1-1.99022-2.22493,1.87552,1.87552,0,0,0-.463-.69309c-.22712-.293-.432-.60144-.63254-.91271-.07463-.11587-.168-.2322-.10206-.3875.21039-.07462.29731.09834.39641.21461.75218.88245,1.537,1.73605,2.3081,2.60152.35493.39835.78286.72875,1.168,1.10041A1.629,1.629,0,0,1,105.26665,47.74617Z"/><path class="cls-170" d="M116.97585,60.37765c.99806.273,2.03558.32283,3.0443.53628a.36372.36372,0,0,0,.2278-.0076,1.91248,1.91248,0,0,1,1.273-.06544,1.30328,1.30328,0,0,1-.15407.61541,6.60568,6.60568,0,0,0-1.38317.14062,4.88645,4.88645,0,0,1-1.83716-.09435,12.83936,12.83936,0,0,1-1.64775-.25937c-.08393-.02559-.19486.03728-.2933.05925a32.85015,32.85015,0,0,1-5.2825-2.41462c-.67548-.43881-1.34992-.8781-1.99039-1.36735a28.1494,28.1494,0,0,1-2.55173-2.25018.918.918,0,0,1-.32462-.54359c-.02105-.19786-.182-.32967-.30441-.47648-.10486-.12576-.238-.25024-.1006-.43448.35257.06572.55285.35654.79081.57141a27.67191,27.67191,0,0,0,5.86707,4.12129,25.09582,25.09582,0,0,0,3.64033,1.44947A8.54368,8.54368,0,0,1,116.97585,60.37765Z"/><path class="cls-171" d="M108.96416,57.4513a25.49534,25.49534,0,0,0,4.1366,2.49352,24.55979,24.55979,0,0,0,2.4332.93933,1.38248,1.38248,0,0,1,.67153.4183l-.2311.616a4.00675,4.00675,0,0,1-1.62364-.51864,22.596,22.596,0,0,1-6.25225-3.83142c-.91665-.75691-1.69676-1.65182-2.60566-2.4116-.04209-.03519-.049-.11242-.07231-.17006a1.35261,1.35261,0,0,1,1.07324.38967c.67616.61607,1.33385,1.25181,2.05081,1.82282A2.85631,2.85631,0,0,0,108.96416,57.4513Z"/><path class="cls-172" d="M100.72137,33.42118c-.06633-.05807-.17514-.1056-.19255-.17578-.22067-.88993-.95846-1.54672-1.10734-2.46552-.02455-.15155-.05671-.277-.24044-.2853l-.045-.04312a26.83823,26.83823,0,0,1-.68032-3.6567c-.06464-.63725-.12707-1.27443-.15718-1.91447-.03305-.70224.00474-1.40441-.06228-2.10831a10.98467,10.98467,0,0,0-2.20422-5.89068,9.81962,9.81962,0,0,0-2.63124-2.14272,3.55114,3.55114,0,0,1-.6578-.463,12.09515,12.09515,0,0,1-1.04552-.90667c-.10179-.10058-.26388-.16639-.20781-.35794.00174-.006.01863-.01069.02825-.01032a.14836.14836,0,0,1,.0362.01048,4.24349,4.24349,0,0,1,1.64556.40372c.14531.04341.28963.09016.4344.13538A10.17462,10.17462,0,0,1,97.19088,16.801a10.76909,10.76909,0,0,1,1.62046,5.04694c.08259.94335-.02994,1.88272.063,2.82.06779.68374.16324,1.3648.22687,2.04887a24.38862,24.38862,0,0,0,.705,3.90467C100.05388,31.56966,100.41228,32.489,100.72137,33.42118Z"/><path class="cls-173" d="M91.55415,13.01117c-.08427.0975.01874.15054.06631.17493.40539.20791.56657.713,1.03588.84314a.20632.20632,0,0,1,.13057.21409.39422.39422,0,0,1-.46949.01151,10.92987,10.92987,0,0,0-2.21565-.61463.293.293,0,0,1-.16536-.09007,10.13376,10.13376,0,0,0-2.326-.61869,1.18131,1.18131,0,0,1-.21563-.07414.43534.43534,0,0,1,.23051-.46212,8.3843,8.3843,0,0,1,2.70743.34609.96785.96785,0,0,0,.4146.03265A.93451.93451,0,0,1,91.55415,13.01117Z"/><path class="cls-174" d="M114.89589,56.6039a16.31456,16.31456,0,0,0,2.85031.69354,1.44011,1.44011,0,0,1,.077.53877,4.45242,4.45242,0,0,1-1.51142-.197c-1.17892-.3974-2.39686-.67442-3.54315-1.17418a21.35082,21.35082,0,0,1-3.06146-1.61415c-1.1427-.73754-2.26377-1.50786-3.34754-2.33079a7.14411,7.14411,0,0,0-.86524-.70149c-.31277-.26535-.58858-.56912-.87921-.85755a13.99873,13.99873,0,0,1-1.65877-1.73361,1.59434,1.59434,0,0,1-.15223-.22071c-.27233-.38486-.53633-.77863-.8441-1.13364a20.1804,20.1804,0,0,1-1.373-1.93749c-.08371-.12315-.19264-.24836-.11525-.41981.22161-.07617.31237.095.4348.221.21946.22592.30354.56913.619.71031.55.68982,1.08094,1.39612,1.66023,2.06183a29.49384,29.49384,0,0,0,2.825,2.87657,28.98836,28.98836,0,0,0,3.44731,2.57455,23.204,23.204,0,0,0,4.46836,2.216A2.34933,2.34933,0,0,1,114.89589,56.6039Z"/><path class="cls-175" d="M105.49757,51.75188c.46033.122.69623.54259,1.057.79985a46.70514,46.70514,0,0,0,4.5637,3.01389,25.71434,25.71434,0,0,0,4.738,1.835c.65157.20555,1.33528.1901,1.967.43557l1.38664.15423c-.07258.16216-.21716.16505-.35991.1526a4.15369,4.15369,0,0,0-1.21213-.00574,1.25181,1.25181,0,0,1-.37348-.05965c-.17787-.02375-.34258-.01632-.36555.22067a.24906.24906,0,0,1-.25412.02441,23.26357,23.26357,0,0,1-9.06767-4.4433c-.60591-.49353-1.1309-1.07575-1.77145-1.52977C105.63047,52.22555,105.40571,52.04962,105.49757,51.75188Z"/><path class="cls-176" d="M119.51877,59.68505l-.07779.07664a.69747.69747,0,0,0-.44109-.09522,30.553,30.553,0,0,1-3.15647-.84044c-.14753-.02556-.38266-.05158-.316-.325a.92555.92555,0,0,1,.74109.01719,24.40638,24.40638,0,0,0,3.01845.31944l1.00146-.00038c.33785.04908.679.08207,1.01264.1515a8.45886,8.45886,0,0,0,1.12731.02152,6.17767,6.17767,0,0,0,.63333.05841.40177.40177,0,0,1-.40272.23335,9.3667,9.3667,0,0,0-2.44765.293.61962.61962,0,0,1-.29764-.04682C119.75923,59.51426,119.60331,59.50459,119.51877,59.68505Z"/><path class="cls-177" d="M119.28691,58.83765a1.13843,1.13843,0,0,1-.711.0576,13.45358,13.45358,0,0,0-1.46383-.08177,4.355,4.355,0,0,1-1.072-.228,2.0237,2.0237,0,0,0-.52793-.05531c-.23836.1199-.44948-.01684-.65989-.08442a22.9398,22.9398,0,0,1-7.50126-4.11556c-.80482-.65407-1.526-1.40411-2.37143-2.00836a.97883.97883,0,0,1-.23007-.25645c-.06872-.1087-.15608-.2034-.23421-.30513a17.13829,17.13829,0,0,0-1.15412-1.32978,22.42306,22.42306,0,0,1-1.96393-2.6372.31416.31416,0,0,1-.07656-.353c.24373-.05148.31658.16244.44609.28784.4019.3892.71251.85953,1.11158,1.25129a7.07817,7.07817,0,0,0,1.05072,1.245,16.92634,16.92634,0,0,1,1.56849,1.52755.96228.96228,0,0,0,.35482.53052c1.05238.84906,2.02392,1.79864,3.15316,2.55212a21.9599,21.9599,0,0,0,7.20383,3.2359c.23473.05492.45985.151.68943.2279a8.70273,8.70273,0,0,0,1.6971.37955A2.6949,2.6949,0,0,1,119.28691,58.83765Z"/><path class="cls-178" d="M114.89589,56.6039A26.65089,26.65089,0,0,1,101.4921,46.51457c-.34954-.35084-.57133-.79849-.88862-1.17422a.247.247,0,0,1-.05645-.28076.15762.15762,0,0,1,.22858.062,6.14327,6.14327,0,0,0,.84142.814,44.95065,44.95065,0,0,0,3.74737,4.00281,29.7785,29.7785,0,0,0,4.30436,3.26823c.40111.25.81617.47864,1.20948.7428a5.10977,5.10977,0,0,0,1.283.7577c.76583.28439,1.4138.81409,2.21511,1.04012.43.1213.86332.23532,1.2915.365.13931.04219.31995.03812.30654.26073a2.18,2.18,0,0,1-.73963-.10392c-.117-.02662-.23816-.13848-.35153-.04849C114.73611,56.33743,114.90746,56.474,114.89589,56.6039Z"/><path class="cls-179" d="M115.97439,56.373c-.21065-.24517-.53154-.20472-.799-.29126a7.69652,7.69652,0,0,1-2.25-.90729,4.86,4.86,0,0,0-1.07639-.49272,3.58089,3.58089,0,0,1-1.036-.69632c.14453-.10092.27135-.01313.39324.04638a20.12171,20.12171,0,0,0,5.59609,1.79135.53625.53625,0,0,1,.25054.08775,11.758,11.758,0,0,0,2.33187.17159,5.66067,5.66067,0,0,1,1.475.09827c.199.03231.40394-.1276.58418.03859l.15407.38472c-1.02-.07355-2.035.15589-3.05318.06431C117.68607,56.59116,116.83105,56.47305,115.97439,56.373Z"/><path class="cls-180" d="M117.05288,55.91092a11.43331,11.43331,0,0,1-3.15415-.692,23.39552,23.39552,0,0,1-3.08572-1.23347,31.6403,31.6403,0,0,1-2.8109-1.7696,29.44615,29.44615,0,0,1-4.47017-3.95035,21.72806,21.72806,0,0,1-1.96318-2.28986,8.01355,8.01355,0,0,1-.97895-1.41438c-.07069-.13217-.19-.24929-.12293-.42126.14872-.084.20271.04979.27608.12549a8.75172,8.75172,0,0,1,.95968,1.1439,2.16687,2.16687,0,0,0,.59387.59095c.71311.80519,1.372,1.65947,2.16225,2.39537a.55415.55415,0,0,1,.11438.19831,16.892,16.892,0,0,0,2.30881,2.17622,24.65,24.65,0,0,0,4.8101,3.03613,19.45863,19.45863,0,0,0,4.12827,1.4884.62044.62044,0,0,0,.52139.322C116.593,55.643,116.88769,55.64334,117.05288,55.91092Z"/><path class="cls-181" d="M100.10652,29.49368a30.14923,30.14923,0,0,1-.48572-3.4016A28.004,28.004,0,0,1,99.50005,23.07c.047-.69045-.01217-1.37369-.01015-2.06013A9.37748,9.37748,0,0,0,98.02314,15.733a7.84317,7.84317,0,0,0-1.6996-1.90317c-.76458-.60432-1.60782-1.08239-2.38129-1.66536a2.78723,2.78723,0,0,1-.38518-.61643.99413.99413,0,0,1,.72446.187c.58142.32488,1.19475.58571,1.76736.931a5.48079,5.48079,0,0,1,1.35995,1.11485c.227.41691.60144.71786.86515,1.10763a9.68184,9.68184,0,0,1,1.60365,4.68545c.05263.60753.13942,1.2121.2109,1.818.03539.3-.16719.554-.14311.86122a43.16917,43.16917,0,0,0,.376,4.49083c.08743.47426.11424.95968.16878,1.44-.12906.33331.06346.63814.11336.94786.08841.54876.33347,1.07363.40893,1.6228a13.19244,13.19244,0,0,0,.55621,2.05049,2.46338,2.46338,0,0,1-.52194-1.07723,1.72555,1.72555,0,0,0-.3525-.6156c-.31291-.31632-.286-.773-.42025-1.16388A1.2,1.2,0,0,0,100.10652,29.49368Z"/><path class="cls-182" d="M97.40884,13.7808c-.05838-.02138-.13324-.02652-.17275-.06653a10.97811,10.97811,0,0,0-3.679-2.16627,7.51828,7.51828,0,0,1-1.7354-.62687,1.9514,1.9514,0,0,1-.34455-.22037.66976.66976,0,0,0,.50184-.12867c.23352-.19571.48779-.06125.73018-.01018.1842.0388.36339.13374.53979-.01532A9.44763,9.44763,0,0,1,95.86814,11.856a1.11258,1.11258,0,0,0,.31989.31912c.21614.1684.46452.317.46256.65314-.00081.13808.13922.1957.23993.275A1.10108,1.10108,0,0,1,97.40884,13.7808Z"/><path class="cls-183" d="M77.22556,42.04746c-.2133.06608-.32267.2664-.48843.39413a1.14265,1.14265,0,0,1-.898.29886,3.72707,3.72707,0,0,1-.4112-1.33209c-.03243-.263-.28378-.49892-.43642-.74705-.26268-.26252-.12022-.53924-.02709-.81318a1.29848,1.29848,0,0,1,.183-.37424c.28159-.19551.67737-.16911.90782-.46592a.35259.35259,0,0,1,.3681.12171c.3321.6742.90632,1.18279,1.26449,1.8397a1.03083,1.03083,0,0,1-.30034.51042A.6031.6031,0,0,0,77.22556,42.04746Z"/><path class="cls-184" d="M75.22264,39.50592c-.15.37053-.40109.72087-.23115,1.15539a8.09283,8.09283,0,0,1-1.3866-.30818c-.2221-.43445-.65274-.70888-.87655-1.143-.05766-.11183-.13424-.21391-.20213-.32048a.49012.49012,0,0,1,.46252-.23127.2682.2682,0,0,1,.21308-.06824c.39214.11942.81191.07131,1.201.203A2.86255,2.86255,0,0,1,75.22264,39.50592Z"/><path class="cls-185" d="M104.57314,48.594a12.51863,12.51863,0,0,1-1.61251-1.68362q-.34878-.42936-.69855-.85793c-.567-.70518-1.05756-1.46423-1.56046-2.21451-.06278-.09366-.13585-.19027-.07888-.31634.12144-.07607.19768.01249.25829.08787a22.80785,22.80785,0,0,1,1.45808,1.82664c.70726.82049,1.46057,1.59574,2.22276,2.36626.96962.98023,2.03735,1.83954,3.09269,2.71719a9.34413,9.34413,0,0,0,2.0878,1.59516,3.89926,3.89926,0,0,1,1.168.74763,12.77687,12.77687,0,0,1-1.90066-1.027,24.22035,24.22035,0,0,1-4.25687-3.17446C104.70559,48.61929,104.67229,48.50853,104.57314,48.594Z"/><path class="cls-186" d="M87.47109,14.24382c-.47429.11054-.81575-.27071-1.243-.33984-.07817-.01265-.06174-.12556-.06638-.1994a1.66313,1.66313,0,0,0,.99595.08579,7.84682,7.84682,0,0,1,1.99611.17924q.54546.05951,1.09082.11986c.10216-.08891.19726-.0275.28092.02543.575.3638,1.19209.65462,1.7654,1.02065.12629.08063.27624.15046.29275.33257a.63529.63529,0,0,1-.4347.45808,4.0129,4.0129,0,0,1-1.20416-.3473,4.78288,4.78288,0,0,0-.72471-.23362c-.78838-.30375-1.61369-.502-2.39194-.83476C87.68769,14.45047,87.534,14.40775,87.47109,14.24382Z"/><path class="cls-187" d="M92.55561,15.4756a7.04062,7.04062,0,0,0-1.51576-.94271,3.37191,3.37191,0,0,0-.7953-.44342c-.10549-.17819-.56589-.15369-.30814-.53933a7.27367,7.27367,0,0,1,2.16147.50558,1.5615,1.5615,0,0,0,.689.18761l.61609.38539a7.238,7.238,0,0,0,.90074,1.13511c.26921.2326.2313.60129.28108.92391a.11421.11421,0,0,1-.17058.00653C93.85329,16.19821,93.13638,15.94062,92.55561,15.4756Z"/><path class="cls-188" d="M104.80331,51.9834A8.55327,8.55327,0,0,0,106.06,53.09977a26.2133,26.2133,0,0,0,3.69346,2.853,20.90189,20.90189,0,0,0,5.75871,2.57736c.18433.26572.49622.225.754.29842a15.83339,15.83339,0,0,1,1.96256.64751,3.05066,3.05066,0,0,0,.89373.12812c.13211.013.2558.01611.31849.15751-.63556-.04537-1.272-.0813-1.90625-.14072a.42084.42084,0,0,0-.46667.30882,2.45053,2.45053,0,0,0-.09221.44787,4.73093,4.73093,0,0,1-1.36694-.43482,19.84418,19.84418,0,0,1-2.88621-1.12722,24.72176,24.72176,0,0,1-4.10712-2.514c-1.01771-.789-1.99017-1.62981-2.96394-2.47019-.07365-.03722-.12074-.08551-.0726-.1736.17167-.09947.28524.02419.414.10365.28112.17349.47.46736.78616.5968-.6003-.64262-1.19515-1.28846-1.8234-1.90241a.91.91,0,0,1-.24176-.29458C104.68309,52.083,104.643,51.97642,104.80331,51.9834Z"/><path class="cls-189" d="M84.38985,15.70694a10.7322,10.7322,0,0,0-4.4584.86678c-.56946.24456-1.189.37135-1.78247.56212a.46825.46825,0,0,1-.327-.04945,2.92226,2.92226,0,0,0-1.21272-.30135c.55715-.23435,1.17493-.18954,1.74228-.38043.77495-.26072,1.55878-.49629,2.32775-.77331a9.69286,9.69286,0,0,1,4.77167-.62419c.46563.0691.93576.10784,1.40383.16051.088-.05958.14424-.03622.17074.06522-.2603.23164-.45289.52445-.6964.77237A5.6494,5.6494,0,0,1,84.38985,15.70694Z"/><path class="cls-190" d="M87.00906,15.2445a.15972.15972,0,0,0-.15426-.07687.87346.87346,0,0,0-.15066-.1084c-.56512-.24839-1.13188-.493-1.69819-.73872.16476-.15869.33053-.04561.49533-.00092a5.22784,5.22784,0,0,0,1.96981-.07578c.88913.43161,1.85361.65454,2.77346,1.001a.30687.30687,0,0,1-.22166.362,19.15317,19.15317,0,0,1-2.55122-.21023A.70717.70717,0,0,1,87.00906,15.2445Z"/><path class="cls-191" d="M72.21807,20.25122c.08116-.1797.2654-.1873.41576-.21789a.45838.45838,0,0,0,.35478-.2442.40992.40992,0,0,0,.36239.06915c.4387-.2175.89037-.02515,1.33239-.06955a.42881.42881,0,0,1,.35951-.1,6.69346,6.69346,0,0,0,3.57078-.85622c.59915-.26807,1.11017-.68259,1.71142-.94495a10.26509,10.26509,0,0,1,2.01683-.73263,4.5834,4.5834,0,0,1,1.96213.07455c.141.05147.3047.05019.40327.18988-.06427.22862-.27113.21041-.43468.22477a10.22176,10.22176,0,0,0-4.29543,1.44333,16.25284,16.25284,0,0,1-2.97535,1.57887,3.65374,3.65374,0,0,1-.81025.23368,6.48027,6.48027,0,0,1-2.237.15483,3.04119,3.04119,0,0,0-.76364.05427.462.462,0,0,1-.43312-.08787C72.60379,20.74644,72.32108,20.56179,72.21807,20.25122Z"/><path class="cls-192" d="M72.75788,21.02123c1.1476-.1941,2.32849.1111,3.46622-.231.00787.30861-.263.33656-.45247.43384-.22317.11457-.481.16973-.64581.42614a.70923.70923,0,0,0,.43454.02093c.1978-.01117.29347.06069.24328.26954a4.34229,4.34229,0,0,1-1.50543.852c-.51093.46208-1.09239.25008-1.632.1198a4.22256,4.22256,0,0,1-1.37219-.50515c.203-.45161.45828-.831,1.0414-.773a.14936.14936,0,0,0,.1864-.14247A1.115,1.115,0,0,1,72.75788,21.02123Z"/><path class="cls-193" d="M71.756,27.72189a.15918.15918,0,0,0-.15407-.0772c.0501-.29589.41064-.43648.38537-.77007.04938-.07462.10033-.18857.18688-.17749.48028.06148.8249-.309,1.2611-.37928a1.05451,1.05451,0,0,0,.69115-.18085.70747.70747,0,0,1,.51293-.12307,1.787,1.787,0,0,0,1.574-.60915c.56751-.57426,1.28483-.959,1.90346-1.47294.75478-.62708,1.54884-1.20778,2.32546-1.809a7.83582,7.83582,0,0,1,1.52376-.87871,2.81978,2.81978,0,0,1,1.09324-.42046,1.65131,1.65131,0,0,1,1.10464.19616c.23355.09778.3834.23932.27035.51755a.25416.25416,0,0,1-.31254.07655,2.7585,2.7585,0,0,0-2.45919.46508c-1.00711.5994-1.85223,1.405-2.79832,2.07716-.67606.48031-1.257,1.0704-1.90178,1.58373a16.12428,16.12428,0,0,0-1.77306,1.50748,1.56489,1.56489,0,0,1-1.12786.58961.35808.35808,0,0,0-.38831.07546.92774.92774,0,0,1-.98936.19593A1.67471,1.67471,0,0,1,71.756,27.72189Z"/><path class="cls-194" d="M73.45078,26.41256a.48076.48076,0,0,0-.29109.07028c-.26365.16481-.50625.37247-.865.26045-.08089-.02526-.20382.084-.30739.13133-.1033-.2576-.39761-.1837-.58293-.34452-.48073-.41715-.53084-.46209-.34169-1.04167.51025-.06149.99786-.24121,1.51684-.27205.18631-.01107.37522-.02545.56312-.03612.2691.26232.57434.06174.86064.05589.16523-.00338.3255-.06367.45869.08279A1.75161,1.75161,0,0,1,73.45078,26.41256Z"/><path class="cls-195" d="M74.29821,22.79266c.45388-.3412.98587-.54756,1.46367-.84749a.708.708,0,0,1,.42371-.1611,2.84811,2.84811,0,0,0,.72133-.24289c1.47531-.58615,2.64848-1.687,4.06537-2.36827a4.47383,4.47383,0,0,1,4.05777-.25842.30319.30319,0,0,1,.147.1174,1.28441,1.28441,0,0,1-1.3687.44948,2.96782,2.96782,0,0,0-2.29731.32151A12.2813,12.2813,0,0,0,78.60072,21.653a2.77913,2.77913,0,0,1-.79053.46487,11.37483,11.37483,0,0,1-2.46935.93762,1.78023,1.78023,0,0,1-1.11966-.03184Z"/><path class="cls-196" d="M74.22118,23.02368a6.77263,6.77263,0,0,0,2.76778-.62659,22.82958,22.82958,0,0,0,3.19947-1.9989,7.883,7.883,0,0,1,2.70135-1.125,1.3,1.3,0,0,1,.88379.13054.30669.30669,0,0,1-.18041.13861,7.46432,7.46432,0,0,0-3.64009,1.5272c-.98161.62707-1.95615,1.272-2.91856,1.92042-.9482.63882-2.02283.98534-2.96893,1.59407-.21651.1393-.38447.39124-.69161.36517-.086-.33152-.37776-.43828-.64515-.52131a1.55271,1.55271,0,0,1-.5876-.32585,12.23849,12.23849,0,0,1,1.42032-.56646C73.85205,23.4755,73.97507,23.16229,74.22118,23.02368Z"/><path class="cls-197" d="M73.374,24.94924a22.80236,22.80236,0,0,1,2.33315-1.28349,40.63625,40.63625,0,0,0,3.52608-2.2059,10.28515,10.28515,0,0,1,3.62591-1.92293,4.626,4.626,0,0,1,.76039-.05614.95883.95883,0,0,1,.68588.1784,7.12591,7.12591,0,0,0,.9259.3609c.13942.07029.33807.0875.32454.31726a.92433.92433,0,0,1-.44871.15608c-.46266-.00094-.91252-.1247-1.37075-.15452a4.02208,4.02208,0,0,0-2.13684.65814,28.35288,28.35288,0,0,0-3.47823,2.39641,22.41405,22.41405,0,0,1-3.37723,1.89982.3077.3077,0,0,1-.29178.04112,2.10652,2.10652,0,0,0-.98752.08631c-.27588.07075-.32128-.01681-.32208-.24044Z"/><path class="cls-198" d="M82.3099,17.24728a9.70826,9.70826,0,0,0-2.5767,1.07549c-.635.39389-1.31968.66027-1.98169.98558a4.68719,4.68719,0,0,1-2.37548.48247c-.23023-.01257-.46173-.002-.69264-.00209a1.16025,1.16025,0,0,0-.01711-.37243c-.13724-.34787-.04242-.55306.32525-.62879.5622.09533,1.0319-.25093,1.55933-.32626a15.62168,15.62168,0,0,0,3.59925-1.25675,3.86144,3.86144,0,0,0,.465-.26534,7.68886,7.68886,0,0,1,3.39067-.49746c.25184.01374.51881-.00835.70584.2191-.05.18663-.21256.195-.35939.22076C83.67107,17.0013,82.99879,17.17078,82.3099,17.24728Z"/><path class="cls-199" d="M84.698,16.7081a1.17732,1.17732,0,0,0-.57619-.154,9.38544,9.38544,0,0,0-3.17023.33321,2.202,2.202,0,0,1-.33646.0518,2.6117,2.6117,0,0,1,.8628-.38322c.8385-.20681,1.64717-.52631,2.50688-.655a.57317.57317,0,0,0,.405-.194c.67437.01774,1.32553.23659,2.00259.231a2.02394,2.02394,0,0,1,.88964.258c.15768.152.3548.25289.51861.39528.14725.128.29907.26972.098.47648a1.16577,1.16577,0,0,1-.58013.03876c-.76946-.1652-1.55489-.21715-2.33225-.32646C84.88742,16.76611,84.78131,16.78352,84.698,16.7081Z"/><path class="cls-200" d="M71.756,27.72189a10.055,10.055,0,0,0,1.12146.32719.73394.73394,0,0,0,.74435-.227c.138-.14379.28245-.29685.44525-.02314.11595.16871-.01467.28579-.0929.40669-.3627.56046-.32641.66734.30823.86878.10507.3284-.19189.51807-.27027.78364a3.70953,3.70953,0,0,0-.73868.581,1.51953,1.51953,0,0,1-1.28633-.02169,6.27573,6.27573,0,0,0-.24029-.93418c-.08972-.16508-.14533-.355-.376-.37505A4.40724,4.40724,0,0,1,71.756,27.72189Z"/><path class="cls-201" d="M74.45209,38.88967l-1.46337-.23127c.06864-.346-.2329-.52289-.35785-.78033-.07114-.14657-.27583-.23854-.18151-.45158.17342-.18688-.12449-.4328.07721-.61615a.47769.47769,0,0,1,.41434-.09033,3.42118,3.42118,0,0,1,1.23457.55443,1.7053,1.7053,0,0,0,.59361.21792.16673.16673,0,0,1-.00381.21356A1.62135,1.62135,0,0,0,74.45209,38.88967Z"/><path class="cls-202" d="M72.98861,36.81016l-.462.00018a5.82618,5.82618,0,0,1-.88808-.88077,2.58542,2.58542,0,0,1-.26762-1.12191.44494.44494,0,0,1,.385-.15418,1.37678,1.37678,0,0,1,.78659.16323c.36546.31564.85176.52678.94245,1.08212C73.27917,36.18044,73.28909,36.57987,72.98861,36.81016Z"/><path class="cls-203" d="M71.98715,30.41737c.43427-.06418.88705.18747,1.3096-.07673.112.122.05456.26379.04444.39891-.03585.47921-.005.51341.4547.60417a1.59,1.59,0,0,1,.58924.12866.36109.36109,0,0,1,.04923.35934,14.58816,14.58816,0,0,1-1.87614,1.272,11.69984,11.69984,0,0,0-1.34124-.37556c-.0217-.20286-.1778-.29292-.32447-.3948-.13484-.09366-.27767-.18585-.292-.3753.189-.30719.09709-.70094.30851-1.00125a.535.535,0,0,0,.42527-.27828C71.45856,30.29876,71.69381,30.31308,71.98715,30.41737Z"/><path class="cls-204" d="M71.217,32.72814a2.41031,2.41031,0,0,1,1.38664.3085,1.69185,1.69185,0,0,1,.553.9365c.10426.52106-.3228.675-.63045.91154-.24581-.11361-.53353-.08763-.77035-.2312q-.17065-.22626-.34133-.45248A1.58,1.58,0,0,1,71.217,32.72814Z"/><path class="cls-205" d="M81.00029,47.05371c.11838-.06268.34414-.08257.13168-.28856-.18549-.17986-.10715-.27615.0897-.3559a.746.746,0,0,0,.28272-.89481.3962.3962,0,0,1,.11238-.61727c.2785.12933.34171.41616.47646.65073a2.84073,2.84073,0,0,0,1.434,1.365,13.71014,13.71014,0,0,1,1.32088.62331,8.59006,8.59006,0,0,0,3.049.86331c.75122.07686,1.49846.20076,2.24749.30356a5.9934,5.9934,0,0,0,1.148-.07043c.62528-.03321,1.25307-.06774,1.87458-.1592a.65692.65692,0,0,0,.223-.05642,20.07214,20.07214,0,0,0,2.282-1.26534.86012.86012,0,0,0,.407-.70315.29958.29958,0,0,1,.09727-.242c.25426.01481.27417.27753.42181.40709.10089.08854.13085.26062.23422.34311A6.28939,6.28939,0,0,1,98.17892,48.825c-.3971-.0072-.5785.345-.8646.52216a5.37644,5.37644,0,0,1-3.16992,1.26354c-.34558-.02081-.69884.13469-1.00472-.15521-.04177-.03959-.15-.02011-.22555-.01135a17.53143,17.53143,0,0,1-2.14556.07764.34369.34369,0,0,0-.18482.03623,2.438,2.438,0,0,1-2.16164.20331A22.4232,22.4232,0,0,1,82.94054,48.332c-.07591-.04692-.18725-.07829-.21978-.14657a.66473.66473,0,0,0-.79623-.43859A2.78,2.78,0,0,1,81.00029,47.05371Z"/><path class="cls-206" d="M105.57416,53.67775l.07748.15365a.41164.41164,0,0,0,.14217.33872c.18537.19918.42623.37037.37168.70546-.00829.05091.07971.12316.1317.17735a23.2704,23.2704,0,0,0,2.54008,2.26,1.08717,1.08717,0,0,1,.12689.13837.55431.55431,0,0,1-.39055-.11439c-.7262-.56786-1.37611-1.22052-2.05456-1.8406a3.2672,3.2672,0,0,0-1.09852-.50962l-.69313-.61616c-.4524-.68236-1.04365-1.25092-1.55743-1.8834-.87542-1.07767-1.73906-2.16155-2.5445-3.293-.138-.19388-.21451-.48312-.52038-.52323a5.44,5.44,0,0,0-.93606-1.50385c-.13-.18534-.29378-.31528-.25745-.59323.02442-.18687-.12484-.37389-.23338-.5506a1.22518,1.22518,0,0,1-.26789-.66377c.20331-.03316.24225.14931.33075.2592a7.20822,7.20822,0,0,0,1.03768,1.24754,1.90635,1.90635,0,0,1,.48605.53529,52.52339,52.52339,0,0,0,4.11868,4.93979A8.51142,8.51142,0,0,1,105.57416,53.67775Z"/><path class="cls-207" d="M96.17647,46.2065a1.12327,1.12327,0,0,1-.70348,1.23026c-.61747.35815-1.25553.68067-1.88178,1.02392a2.53328,2.53328,0,0,1-1.04557.1931c-.69713.0608-1.39745.14482-2.09413.153a13.893,13.893,0,0,1-1.93062-.21479c-.63014-.082-1.26175-.15867-1.88727-.26865a11.04069,11.04069,0,0,1-2.23613-.88438c-.40038-.1648-.80038-.34431-1.18305-.53519a2.81852,2.81852,0,0,1-1.14095-1.14487,7.46813,7.46813,0,0,1-.45672-.86177l.00018-.23068c.30318-.08439.47877-.40278.80791-.44078,1.59576.383,3.15737.89221,4.75256,1.2772a15.07276,15.07276,0,0,0,2.401.286c.22962.01766.4596.01874.68914.05265a2.22741,2.22741,0,0,0,1.24289-.14427c.47026-.20407.94843-.39132,1.42827-.57246a2.28514,2.28514,0,0,0,1.10736-.72862.48077.48077,0,0,1,.39811-.20141,6.17752,6.17752,0,0,0,1.342.8581.60152.60152,0,0,1,.23606.38342A1.34234,1.34234,0,0,1,96.17647,46.2065Z"/><path class="cls-208" d="M96.02221,45.43631c-.13661-.06043-.19568-.18928-.27751-.30156-.09738-.13363-.21341-.2674-.40417-.23517a.51973.51973,0,0,1-.6216-.4151c-.043-.12293-.10422-.19838-.23743-.20346a1.52508,1.52508,0,0,0-.05365-.95388,1.46388,1.46388,0,0,1-.0282-.71053.95388.95388,0,0,1,.37479-.52433c.37193-.02162.42686.3427.63521.52095a17.30994,17.30994,0,0,0,.88931,1.50961.22871.22871,0,0,1,.03172.31258A.95467.95467,0,0,1,96.02221,45.43631Z"/><path class="cls-209" d="M96.33068,44.43542l-1.0016-1.77171c.03823-.13644-.03832-.31176.13607-.40219a.26035.26035,0,0,1,.28815.1395c.27208.45933.6639.82595.96223,1.264.33342.65409.67753,1.303.99657,1.96406a3.49474,3.49474,0,0,1,.46691,1.42462,18.34748,18.34748,0,0,1-1.312-1.89613A2.067,2.067,0,0,0,96.33068,44.43542Z"/><path class="cls-210" d="M96.71553,42.587c-.11268-.0928-.156-.2549-.30815-.30826a16.20978,16.20978,0,0,1-1.21585-1.99552,7.16513,7.16513,0,0,0-.38764-.66321c-.58166-1.06339-1.1218-2.15-1.77-3.17633a2.27432,2.27432,0,0,0-.50463-.6672,2.23136,2.23136,0,0,1-.58921-.98545c.44834-.03045.75589.28822,1.12359.45669a1.25676,1.25676,0,0,1,.23814.18422,2.85865,2.85865,0,0,1,.54015.83214,16.40306,16.40306,0,0,1,.95216,1.92014,1.39413,1.39413,0,0,0,.52405.64831,11.64726,11.64726,0,0,1,1.00964,1.93,2.39038,2.39038,0,0,1,.41241,1.02205C96.7042,42.05129,96.863,42.324,96.71553,42.587Z"/><path class="cls-211" d="M94.86649,39.58275c.54066.88321,1.07138,1.7721,1.54089,2.696-.02359.49019.26992.90992.30815,1.38637a3.34382,3.34382,0,0,1-.89791-1.02887.90324.90324,0,0,0-.335-.3574c-.10283.02209-.12525-.0594-.16156-.12434-.39273-.70251-.65011-1.4683-1.01963-2.18187-.05643-.109-.12911-.22782-.03659-.3578A.47922.47922,0,0,1,94.86649,39.58275Z"/><path class="cls-212" d="M96.71553,42.587a2.97943,2.97943,0,0,1-.07685-.84749c.2095-.097.27289.0871.34515.20126q.92334,1.45884,1.80653,2.94279a9.9561,9.9561,0,0,0,.789,1.5352c.07459.14811.25806.27387.1407.48125-.29894-.04725-.35716-.34412-.52111-.52448-.2875-.31631-.52831-.67506-.78868-1.016-.56171-.77981-.92672-1.68225-1.52326-2.44143A.51231.51231,0,0,1,96.71553,42.587Z"/><path class="cls-213" d="M100.10509,34.03756c-.14671-.06262-.18342-.20823-.24069-.33285a19.98871,19.98871,0,0,1-1.69-5.4434c-.06448-.43815-.15034-.87316-.22636-1.30961a11.85229,11.85229,0,0,1-.14341-1.89478,10.85156,10.85156,0,0,0-.16745-1.9457.89762.89762,0,0,1,.04409-.599c.2142-.09079.19649.1047.22313.20171a3.11409,3.11409,0,0,1,.15.86856,17.65964,17.65964,0,0,0,.2142,2.21326,35.33137,35.33137,0,0,0,.912,4.69856l.00037.00027c.29572,1.03929.60647,2.0737,1.00109,3.08086A1.38044,1.38044,0,0,1,100.10509,34.03756Z"/><path class="cls-214" d="M99.25805,35.57793c.03048.43441.38035.74119.46186,1.15521a.42218.42218,0,0,1-.15407.30807c-.272.01772-.33117-.20844-.40626-.384-.3518-.82239-.8-1.59907-1.14246-2.42588a29.20645,29.20645,0,0,1-1.42375-5.45413,5.50592,5.50592,0,0,1-.11327-1.71568c.05794-.1502-.00764-.29926-.00464-.44878.00667-.33139.16257-.53456.42912-.562a3.814,3.814,0,0,1,.13229.9793c.08459.55469.17037,1.108.29871,1.65422a25.70611,25.70611,0,0,0,1.11668,4.72384,18.39214,18.39214,0,0,0,.73675,1.80739C99.2423,35.32886,99.31611,35.44183,99.25805,35.57793Z"/><path class="cls-215" d="M98.10216,34.26825q.54233,1.11019,1.08387,2.22077c.099.204.15336.43664.37981.55219a13.09018,13.09018,0,0,0,1.17984,2.215c.351.58657.75213,1.14315,1.131,1.713a4.41014,4.41014,0,0,1-1.29713-1.43883c-.08683-.13187-.10437-.32633-.32024-.33261a3.06253,3.06253,0,0,1-.68777-1.0367c-.34163-.62476-.714-1.23517-1.00471-1.88777-.19626-.527-.39073-1.05468-.62135-1.56807a.42379.42379,0,0,1-.042-.333A.19474.19474,0,0,1,98.10216,34.26825Z"/><path class="cls-216" d="M104.57314,45.59034c-.25216-.01556-.29027-.26759-.43124-.4031-.62857-.60425-1.2396-1.22679-1.8548-1.84487a5.97848,5.97848,0,0,0-.87241-.90981c-.11.04-.17015-.03422-.21874-.10753-.71937-1.08526-1.446-2.16588-2.11349-3.28451a.622.622,0,0,1-.05529-.14274c-.01742-.1808-.19062-.43446.01341-.52289.217-.09408.27219.20872.37439.353.31626.44652.64012.88748.95986,1.33111.41245.44053.67839.99121,1.08141,1.43989a.40731.40731,0,0,1,.11252.3176,12.9363,12.9363,0,0,0,1.25889,1.6991,15.51757,15.51757,0,0,0,1.70205,1.93182C104.56007,45.48046,104.55937,45.54205,104.57314,45.59034Z"/><path class="cls-217" d="M101.56876,41.8165,100.336,40.12189a19.35055,19.35055,0,0,1-1.96175-3.55716c-.05244-.1267-.14488-.251-.04152-.39519.13868-.0745.23389-.01726.30883.10148l1.61774,2.92673a18.49294,18.49294,0,0,0,1.45549,2.27161c.11367.14492.26206.28569.23911.50118C101.79219,42.00256,101.68992,41.88592,101.56876,41.8165Z"/><path class="cls-218" d="M99.10362,38.88958c.62623.9901,1.19241,2.01966,1.91338,2.94735.1481.19056.16641.46408.39769.59563a2.43642,2.43642,0,0,0,.5167.78769,1.44433,1.44433,0,0,1,.40772.67567c-.35834-.14964-.49265-.53379-.78712-.752-.13129-.0973-.24611-.21684-.36841-.32628-.07483.02609-.1188-.02-.15959-.07a17.8073,17.8073,0,0,1-2.087-3.23638c-.134-.31578-.27033-.63045-.40408-.94612-.07772-.18345-.18369-.37074-.07629-.58175.3177-.018.34577.27438.46114.45513A3.802,3.802,0,0,1,99.10362,38.88958Z"/><path class="cls-219" d="M90.09048,15.55281c-.01118-.13393.1107-.20131.15407-.30795.65871.15309,1.25442.503,1.92588.61622A6.70168,6.70168,0,0,1,93.624,16.92577,10.99332,10.99332,0,0,1,97.45175,23.714c.05884.38172.02609.767.11268,1.143a.25278.25278,0,0,1-.07855.24625,20.01716,20.01716,0,0,0,.23092,3.08086c-.30675-.02235-.29762-.27995-.31734-.47519a4.273,4.273,0,0,0-.20455-.96c-.17249-1.08428-.231-2.18668-.49822-3.2563a10.2795,10.2795,0,0,0-1.7901-3.832,10.84018,10.84018,0,0,0-2.52112-2.3393,7.3441,7.3441,0,0,0-2.17255-1.63171A.2082.2082,0,0,1,90.09048,15.55281Z"/><path class="cls-220" d="M97.48588,25.10324a10.94175,10.94175,0,0,0-1.94169-5.93882,12.98393,12.98393,0,0,0-3.13278-3.06457.6517.6517,0,0,1-.241-.23878c.19433-.06263.20858-.30512.38518-.38546a8.167,8.167,0,0,1,1.76793,1.03689c.08076.062.15678.13008.235.19535.18791-.04449.27516.1063.38017.20669a9.85994,9.85994,0,0,1,2.77106,5.15256.84013.84013,0,0,1,.00723.41745c.0268.74758.13372,1.48736.2163,2.22953a.78642.78642,0,0,1,.0113.26611,10.07378,10.07378,0,0,0,.0035,1.97151,9.4651,9.4651,0,0,1-.30244-1.495C97.612,25.32388,97.64591,25.17436,97.48588,25.10324Z"/><path class="cls-221" d="M97.25477,26.72064a1.76866,1.76866,0,0,1,.2314.85855c.01409.22514.01343.45679.23063.60491a32.69788,32.69788,0,0,0,1.00354,4.01425c.06951.23.15268.45593.22954.68373a.97735.97735,0,0,0,.0955.59849,13.29179,13.29179,0,0,1,.575,1.65518,14.754,14.754,0,0,0,.98555,2.06643.57756.57756,0,0,1,.03856.147,3.75139,3.75139,0,0,1-1.04172-1.3826.70453.70453,0,0,0-.34472-.38867,18.93087,18.93087,0,0,1-1.41011-3.83213c-.2106-.81285-.32132-1.64624-.56293-2.45112a2.3749,2.3749,0,0,1-.03009-.57173c.10552-.3212-.05408-.62134-.07341-.93251A1.74334,1.74334,0,0,1,97.25477,26.72064Z"/><path class="cls-222" d="M77.68777,40.96938a.21036.21036,0,0,1-.19556-.09868c-.29769-.60691-.87-1.03072-1.11385-1.67292a2.0976,2.0976,0,0,1,.67582-1.065,6.51326,6.51326,0,0,0,.61227-.56258c.22446-.03543.3362.12951.39534.28447.11575.30322.286.38713.575.24126a.17792.17792,0,0,1,.14761.0116,5.66514,5.66514,0,0,1,.43458.59953,3.78506,3.78506,0,0,1-.14507,1.2612.75494.75494,0,0,0-.53188.44435A.95627.95627,0,0,1,77.68777,40.96938Z"/><path class="cls-223" d="M80.69234,43.04853l-.53962-.61583a2.5832,2.5832,0,0,1-.074-.36919,1.19664,1.19664,0,0,0-.49783-1.00628.95276.95276,0,0,1-.42909-1.01173,5.67521,5.67521,0,0,0,.96837-1.04535.341.341,0,0,1,.25743-.14327c.29875.08822.47709.34946.72834.50669.165.63764.30989,1.28.45367,1.92284-.48316.36429-.434.97166-.6635,1.45177C80.84252,42.85034,80.89618,43.0346,80.69234,43.04853Z"/><path class="cls-224" d="M80.384,38.88977a2.11264,2.11264,0,0,0-.58065.65466,1.30851,1.30851,0,0,1-.65154.50106l-.07788-.07719c-.10822-.44444.10972-.86964.07732-1.30961-.01706-.01991-.04195-.04863-.03355-.06485A8.94679,8.94679,0,0,1,80.24562,36.506a.15858.15858,0,0,1,.06915-.03125.44625.44625,0,0,1,.38067.37184.48506.48506,0,0,1-.00691.228,3.27406,3.27406,0,0,0-.206,1.53681A.29874.29874,0,0,1,80.384,38.88977Z"/><path class="cls-225" d="M80.69234,43.04853c.127-.40314.284-.79993.371-1.21152a.66033.66033,0,0,1,.47619-.55985,5.385,5.385,0,0,1,.95772.438.19.19,0,0,1,.04878.21864.57948.57948,0,0,0-.12049.39061,16.817,16.817,0,0,1-.03846,1.95658c-.255.132-.39556.49243-.77017.38554l-.77073-.61657C80.92923,43.69549,80.63677,43.39874,80.69234,43.04853Z"/><path class="cls-226" d="M99.02659,39.50583a16.91547,16.91547,0,0,0,1.92307,2.9682,3.3199,3.3199,0,0,1,.23392.34359.51039.51039,0,0,0,.13163.31361c1.04045,1.1723,1.93044,2.47233,3.04,3.58529.24277.24351.50912.46364.7665.69242a.376.376,0,0,1,.14491.33724,29.76731,29.76731,0,0,1-3.11459-3.20178c-.31709-.39543-.69538-.7418-1.0457-1.11059-.07785.02432-.11725-.02754-.15415-.08007q-1.46991-2.09267-2.74208-4.31107a.65912.65912,0,0,1-.05334-.144c-.18159-.459-.39685-.904-.56424-1.36853-.05475-.15193-.14373-.30257-.057-.47274.189-.081.20754.09694.26924.18838a14.46363,14.46363,0,0,1,1.00639,1.897A2.03893,2.03893,0,0,0,99.02659,39.50583Z"/><path class="cls-227" d="M98.25623,38.88967a22.7982,22.7982,0,0,0,1.27951,2.1619c.51508.79953,1.04638,1.58861,1.57062,2.38224a5.39228,5.39228,0,0,0,.97783,1.47236.76284.76284,0,0,1,.25492.52995,13.31381,13.31381,0,0,1-1.07116-1.22056,5.862,5.862,0,0,0-.62362-.70491.3493.3493,0,0,1-.23167-.18391,26.29251,26.29251,0,0,1-1.60484-2.50194c-.34341-.68688-.66718-1.38371-1.04839-2.05128a.36156.36156,0,0,1-.07038-.32458C98.053,38.37073,98.07271,38.73556,98.25623,38.88967Z"/><path class="cls-228" d="M97.717,22.48455a21.40869,21.40869,0,0,0-.60072-2.07473,9.0579,9.0579,0,0,0-2.55774-3.702c-.05709-.20157-.19544-.37537-.16139-.60953.02486-.171-.119-.28458-.2485-.35474-.36735-.199-.44329-.61871-.705-.89612-.04278-.04534-.02852-.14448-.04062-.21875a8.57844,8.57844,0,0,1,2.1783,1.54849A9.87326,9.87326,0,0,1,97.56749,19.318a13.61158,13.61158,0,0,1,.79117,3.72516c.04669.63593-.00443,1.26564.04182,1.89876a29.92182,29.92182,0,0,0,.5015,4.01383,7.86653,7.86653,0,0,1,.27868,1.53857,14.88475,14.88475,0,0,1-.61312-2.27159,32.39087,32.39087,0,0,1-.60057-3.94529,12.47715,12.47715,0,0,0-.17492-1.62595A1.01407,1.01407,0,0,0,97.717,22.48455Z"/><path class="cls-229" d="M102.87836,48.97938c-.19052-.01511-.28076-.16023-.3778-.29426a10.77921,10.77921,0,0,0-1.16291-1.24631.29473.29473,0,0,1-.25282-.14893A46.16,46.16,0,0,1,98.3954,43.4164a.78967.78967,0,0,1-.08534-.21315,3.97494,3.97494,0,0,0-.278-.8525.381.381,0,0,1-.03976-.35759c.20822-.09679.27655.08518.338.20067.51758.97289,1.22974,1.8181,1.79435,2.75879.11546.19238.33915.313.36563.56071a9.30619,9.30619,0,0,0,1.12073,1.76459c.37434.52745.80078,1.01783,1.20044,1.52755A.6386.6386,0,0,1,102.87836,48.97938Z"/><path class="cls-230" d="M100.49026,45.51333a4.781,4.781,0,0,1-.91956-1.24987,13.3173,13.3173,0,0,1-1.26425-1.94178.64411.64411,0,0,0-.28132-.35124,3.01027,3.01027,0,0,1-.62341-1.09633c-.01275-.214-.141-.42152-.03752-.64215.24113-.13184.27609.0953.34485.21691a13.80487,13.80487,0,0,0,.82746,1.31995c.60972,1.07777,1.311,2.09819,1.97654,3.14109a.32217.32217,0,0,1,.05387.1413,9.28026,9.28026,0,0,0,.81174,1.23016c.04646.07555.11366.13647.11343.2332-.373-.08248-.41276-.47464-.63635-.69837A1.1299,1.1299,0,0,0,100.49026,45.51333Z"/><path class="cls-120" d="M99.7201,46.9q-.34682-.63571-.6939-1.27129a1.62749,1.62749,0,0,1-.30775-.73171c.20689-.04063.2869.12973.39179.24582.19627.21721.32639.48376.51114.7103a7.16273,7.16273,0,0,1,.65821.84967c.59362.86832,1.33325,1.61541,1.98887,2.4314.72953.908,1.51871,1.76082,2.30468,2.61771a.47559.47559,0,0,1,.23018.23151c-.15193.16832.03927.229.11257.296.58366.53342,1.06617,1.166,1.66676,1.68353a4.24121,4.24121,0,0,1,.452.56162.95926.95926,0,0,1-.68179-.33892c-.23912-.2008-.43209-.472-.77875-.50788a13.53247,13.53247,0,0,1-1.67192-1.73211c-.50853-.56807-1.03126-1.1247-1.52371-1.7097-.76278-.90612-1.48829-1.83783-2.194-2.78722C100.04189,47.25679,99.87554,47.08244,99.7201,46.9Z"/><path class="cls-231" d="M104.57314,51.75188a18.41091,18.41091,0,0,1-2.14435-2.28427c-.51687-.59384-1.02349-1.19627-1.54835-1.7837-.3974-.44478-.71447-.96133-1.06731-1.44592l-.24729-.33938c-.48925-.86487-1.03385-1.69829-1.47475-2.59051-.07176-.1452-.17858-.28772-.09895-.4671.30241-.06806.26194.26048.41817.36166a19.0241,19.0241,0,0,0,1.6451,2.52566c.416.57839.854,1.14089,1.28224,1.71049.29974.55985.67331,1.07235,1.02223,1.6009a24.53793,24.53793,0,0,0,2.06973,2.45158C104.49715,51.56927,104.57558,51.63716,104.57314,51.75188Z"/><path class="cls-232" d="M100.56692,45.05121c-.29073-.17671-.38437-.50036-.55788-.762a23.18628,23.18628,0,0,1-1.52189-2.47288c-.17583-.39056-.47726-.73777-.418-1.20971.06758-.07976.14131-.042.21478-.01173a1.47224,1.47224,0,0,1,.35682.48825,26.24915,26.24915,0,0,0,1.63183,2.53214.76765.76765,0,0,1,.21767.51168,6.70529,6.70529,0,0,0,.75809,1.298,1.36223,1.36223,0,0,1,.32041.55064A4.936,4.936,0,0,1,100.56692,45.05121Z"/><path class="cls-233" d="M100.49026,44.127c-.67733-.94156-1.29736-1.92-1.88486-2.91961-.10945-.18622-.23243-.3645-.34917-.54644-.13377-.32845-.48591-.5635-.41868-.978.14319-.10342.21614.01679.26438.10666.20512.38208.5347.66843.77078,1.02558l1.77162,2.6955a16.59666,16.59666,0,0,0,1.267,1.92235,1.434,1.434,0,0,1,.35074.61946c-.46413-.18381-.65323-.63466-.93241-.98952C101.06868,44.73121,100.74791,44.45829,100.49026,44.127Z"/><path class="cls-234" d="M74.45209,38.88967a1.03542,1.03542,0,0,1,.11274-1.06942c.0659-.105.19717-.16887.19578-.31642.02863-.2791.22943-.35091.46245-.38468a1.80274,1.80274,0,0,1,.82683.65751,2.54442,2.54442,0,0,0,.08508,1.019.24028.24028,0,0,1-.06476.24822c-.15333.39091-.544.34659-.84757.462C74.88172,39.40558,74.73665,39.06046,74.45209,38.88967Z"/><path class="cls-235" d="M76.07021,39.0439a2.35527,2.35527,0,0,1-.07722-1.30959c-.00186-.30525.25935-.41779.44163-.57818a1.449,1.449,0,0,0,.46529-.54578.53206.53206,0,0,1,.44084-.325.30458.30458,0,0,1,.31892.14824c.06656.38072.27327.75835.02829,1.1469a.56149.56149,0,0,1-.27651.4308c-.55539.22368-.67826.80237-1.03309,1.18647A.42133.42133,0,0,0,76.07021,39.0439Z"/><path class="cls-236" d="M90.09048,15.55281a5.89116,5.89116,0,0,1,2.31106,1.69442.60411.60411,0,0,1-.639.02231,1.4824,1.4824,0,0,0-.69346-.12626c-.6249-.18518-1.2614-.32693-1.88994-.49824a5.023,5.023,0,0,0-1.31833-.22346,1.20543,1.20543,0,0,1-.62041-.17555,4.301,4.301,0,0,1-.8479-.308.862.862,0,0,1,.61661-.69349Z"/><path class="cls-237" d="M85.1601,19.01886c-.40777.00775-.72966-.26806-1.12689-.32513a4.83843,4.83843,0,0,0-3.01663.58147,10.62779,10.62779,0,0,0-1.90165,1.13638,15.31055,15.31055,0,0,1-2.3871,1.34156,2.46537,2.46537,0,0,1-.96595.192c-.00668-.11691.01056-.2419-.18673-.1832a1.50581,1.50581,0,0,1-.62035.00957c.10233-.37089.39284-.47825.67576-.59165a.99224.99224,0,0,0,.59354-.38968,9.95124,9.95124,0,0,0,2.96679-1.35868,9.34374,9.34374,0,0,1,2.22561-1.17565c.46659-.16265.94039-.30469,1.40654-.46852a11.29013,11.29013,0,0,1,1.875-.309,2.5895,2.5895,0,0,1,1.51727.21245.55728.55728,0,0,1,.20675.78649c-.14019.15781-.22174.30869-.018.49026.07466.06654.17636.19244-.02734.25745A6.11324,6.11324,0,0,1,85.1601,19.01886Z"/><path class="cls-238" d="M86.2387,17.78653a7.50048,7.50048,0,0,0-1.5407-.30819,3.23773,3.23773,0,0,0-1.81463-.2449,2.32144,2.32144,0,0,1-.57347.01384c.64691-.154,1.29343-.30976,1.941-.46085.14711-.03433.298-.05264.44707-.07833a6.32732,6.32732,0,0,1,1.54127.104,5.58539,5.58539,0,0,1,1.07793.20417c.53586.36424,1.16279.57583,1.667.9925.11407.09426.33709.1558.13861.371a1.07791,1.07791,0,0,1-.71064-.05882,8.89424,8.89424,0,0,0-1.76051-.35154A.84335.84335,0,0,1,86.2387,17.78653Z"/><path class="cls-239" d="M74.45228,25.33439c.16053-.08.318-.16688.48205-.23887a24.386,24.386,0,0,0,4.91288-3.09943,12.25283,12.25283,0,0,1,2.75109-1.58033,3.833,3.833,0,0,1,2.068-.05356,3.5921,3.5921,0,0,0,.41686.04291c.36265.23561.6782.53714,1.05787.75021.07944.04458.19094.125.041.23067a1.61682,1.61682,0,0,1-.78694-.08318,7.98913,7.98913,0,0,0-1.31343-.20462,1.1993,1.1993,0,0,0-1.06216-.14107,6.41313,6.41313,0,0,0-2.29614,1.08213,5.85365,5.85365,0,0,0-1.0298.80994c-.30412.29776-.72314.50436-1.05585.79657-.36914.32421-.76605.61786-1.15736.90656-.58033.42816-1.12563.8923-1.68774,1.33706a1.13719,1.13719,0,0,1-.99731.23023.66128.66128,0,0,0-.62555.09657.93548.93548,0,0,1-.719.19638A4.93429,4.93429,0,0,0,74.45228,25.33439Z"/><path class="cls-240" d="M74.29821,29.10824c-.13649-.012-.29243.04821-.40635-.03947-.21688-.16694-.38295-.34808-.17836-.659.12793-.19441.34315-.34663.3536-.61087a2.55581,2.55581,0,0,0,1.24633-.86456c.1694-.255.52439-.38544.79176-.57748a1.33778,1.33778,0,0,0,.321-.26921c.36686-.51076.97419-.7172,1.41152-1.13632.03636-.03485.10074-.04928.12246-.08928.30609-.56361.89646-.80673,1.36374-1.18009a14.07221,14.07221,0,0,1,1.64236-1.27865,10.77887,10.77887,0,0,1,1.82831-.99494,1.88541,1.88541,0,0,1,1.22909.07123.92893.92893,0,0,0,.366.08074.114.114,0,0,1,.09292.12569c-.14206.17563-.35787.14647-.54559.19028-.13228.03087-.27342.02965-.3608.15854a.27745.27745,0,0,1-.17672.06756c-1.0495-.05085-1.71483.69946-2.49929,1.1991-.0955.06082-.16337.16492-.26346.22286A13.95392,13.95392,0,0,0,77.91057,25.82a18.89028,18.89028,0,0,1-1.582,1.51457,1.37589,1.37589,0,0,0-.323.37944c-.34882.57984-.96847.8678-1.42594,1.33028A.23712.23712,0,0,1,74.29821,29.10824Z"/><path class="cls-241" d="M84.467,21.63756l-.0773-.07721a.34985.34985,0,0,0-.308-.46216c.3792-.19881.74138.0071,1.10769.05475a6.7961,6.7961,0,0,0,1.04949.1764,1.19164,1.19164,0,0,1,.74085.11615,10.34661,10.34661,0,0,1,3.15461,1.79333A14.08641,14.08641,0,0,1,94.33683,28.303q.291.60627.52427,1.23772c.05326.1431.16122.31343-.04995.43531-.15023-.04134-.15512-.18357-.21112-.29449a13.553,13.553,0,0,0-1.40573-2.22242,1.759,1.759,0,0,0-.39393-.36079,11.65669,11.65669,0,0,0-1.80471-1.98251,12.7678,12.7678,0,0,0-2.6969-2.08324,8.67484,8.67484,0,0,0-1.41355-.57189c-.74445-.2306-1.502-.42426-2.23723-.68632A.36474.36474,0,0,1,84.467,21.63756Z"/><path class="cls-242" d="M85.1601,19.01886a3.50652,3.50652,0,0,1,1.30957.15356c.15946-.13067.32026-.0393.46906.01274a8.69883,8.69883,0,0,1,1.85062.78522c-.01321.42146.34356.62612.54316.92309.06549.09744.24842.16256.08745.322-.54612-.08877-1.0962-.14364-1.64529-.20663-.68558-.129-1.34468-.35953-2.01977-.52907a.31364.31364,0,0,1-.20951-.15182.28414.28414,0,0,0-.16446-.14915q-.8816-.34674-1.76143-.698a.1591.1591,0,0,1,.15407-.077A1.74365,1.74365,0,0,0,85.1601,19.01886Z"/><path class="cls-243" d="M85.54539,20.328l2.234.61622a2.48873,2.48873,0,0,1,.9082.3985,18.48189,18.48189,0,0,1,3.60485,2.866,11.10923,11.10923,0,0,1,2.79221,4.76167c.3694,1.359.56084,2.764,1.05641,4.0907a.348.348,0,0,1,.00834.2272.11788.11788,0,0,1-.08277.07559c-.17377-.03259-.19274-.18425-.24155-.31347a7.57646,7.57646,0,0,0-.55566-1.26153,13.35947,13.35947,0,0,0-.44534-1.54c-.031-.096-.08482-.18826-.03408-.29329.12977-.34229-.10948-.60382-.22007-.87915a12.88253,12.88253,0,0,0-3.32365-4.771,14.40106,14.40106,0,0,0-3.14156-2.30063,8.26638,8.26638,0,0,0-1.86585-.67545c-.39477-.29617-.8844-.47375-1.15572-.92423A1.38678,1.38678,0,0,1,85.54539,20.328Z"/><path class="cls-244" d="M89.16624,18.32512a3.65813,3.65813,0,0,0-1.33779-.88592.91878.91878,0,0,1-.51125-.42288l.61647-.00052c.28134-.18775.54934-.02932.80509.05427a10.79829,10.79829,0,0,1,2.51772,1.11725,20.9102,20.9102,0,0,1,3.1929,3.08889,11.14,11.14,0,0,1,2.03689,4.75926c.05619.32868.01867.66454.07518.99325a13.64594,13.64594,0,0,0,.56419,3.798,18.01848,18.01848,0,0,0,.96293,3.2897.47381.47381,0,0,1,.01359.15184.159.159,0,0,1-.15407.07749c-.20554-.01573-.20567-.2-.25721-.3299a37.5739,37.5739,0,0,1-1.22414-3.94245c-.03714-.13525-.07884-.26881-.12044-.40242a12.69628,12.69628,0,0,1-.27486-2.05276,9.64193,9.64193,0,0,0-.37022-1.76526,9.0422,9.0422,0,0,0-1.89884-3.8619,11.54532,11.54532,0,0,0-4.4609-3.43734A.34337.34337,0,0,1,89.16624,18.32512Z"/><path class="cls-245" d="M91.246,18.24862a16.17309,16.17309,0,0,0-2.13324-.938,4.207,4.207,0,0,0-1.1791-.29478.406.406,0,0,0-.23651-.392c-.16323-.10991-.36448-.18029-.45681-.37781a13.30705,13.30705,0,0,1,3.85155.84718,5.54842,5.54842,0,0,1,1.05214.7474.23645.23645,0,0,1,.10634.29811A.77066.77066,0,0,1,91.246,18.24862Z"/><path class="cls-246" d="M74.29821,29.10824a7.39706,7.39706,0,0,0,1.49536-1.29289,7.08112,7.08112,0,0,1,.90715-.92707c.90526-.87,1.76349-1.78865,2.708-2.6182a3.94157,3.94157,0,0,1,.33269-.25767c.90716-.639,1.78916-1.31466,2.74541-1.882.33534-.199.70377-.07174,1.0556-.108.10926-.088.21887-.031.326.00259,1.02189.32016,2.05715.59818,3.06309.96847.13738.05057.31078.066.3259.26868a.358.358,0,0,1-.35578.16482,5.21788,5.21788,0,0,1-1.30563.00334,1.91169,1.91169,0,0,1-.6188-.20021,4.00291,4.00291,0,0,0-2.12963-.34163.92174.92174,0,0,0-.42881.15278,17.54069,17.54069,0,0,0-2.81478,2.135,11.95043,11.95043,0,0,0-1.66845,1.74468,7.02224,7.02224,0,0,1-1.43771,1.48942,6.0644,6.0644,0,0,0-.76075,1.0091c-.05658.06817-.09187.15636-.18892.182-.25165.04276-.469.18932-.71727.24006a1.057,1.057,0,0,1-.841-.03989C74.01616,29.53647,74.215,29.34806,74.29821,29.10824Z"/><path class="cls-247" d="M73.98993,29.8016a2.28242,2.28242,0,0,0,1.42907-.30933c.08943-.05758.1033.01053.11178.078.12138.18664-.00921.34347-.06807.50348-.06635.18041-.1198.36421-.17621.54739-.24249.355-.44837.74884-.91078.87556a4.14885,4.14885,0,0,1-.8656-.08455.28738.28738,0,0,1-.29571-.32021,4.71856,4.71856,0,0,1,.08234-.75131A1.26637,1.26637,0,0,1,73.98993,29.8016Z"/><path class="cls-248" d="M75.22264,37.19488a.64963.64963,0,0,0-.462.309.36522.36522,0,0,1-.42642-.00112,4.46865,4.46865,0,0,0-1.34558-.69255c.172-.29907.16076-.68978.46221-.92414.54127-.51375,1.09373-.21645,1.64529-.02314A1.238,1.238,0,0,1,75.22264,37.19488Z"/><path class="cls-249" d="M75.06838,35.886c-.122-.02475-.24677-.04014-.3654-.07593a1.62694,1.62694,0,0,0-1.25216.07593c-.16942-.46188-.61119-.67238-.92461-1.00134a.30259.30259,0,0,1,.21062-.29084c.33352-.10451.35543-.352.329-.6333.38012-.19472.58464-.15877.95132.16721.43266.38464.43342.38583.93366.0696a.52841.52841,0,0,1,.384-.13464c.42142.05682.509.35854.52479.71344A1.3239,1.3239,0,0,1,75.06838,35.886Z"/><path class="cls-250" d="M74.37573,31.49671a6.69368,6.69368,0,0,0,.84691-.84817c.41789-.48353.87721-.92788,1.2961-1.41231a44.24661,44.24661,0,0,1,3.46244-3.90795c.69213-.63214,1.44707-1.184,2.18345-1.76021a1.90023,1.90023,0,0,1,1.05737-.30271,3.45,3.45,0,0,1,1.74727.32681,2.26686,2.26686,0,0,0,1.0631.70793,2.26118,2.26118,0,0,1,.60374.32067c.0857.07175.24295.13878.1045.2981a1.21652,1.21652,0,0,1-.87789-.14936,4.46178,4.46178,0,0,0-1.87853-.41506,5.56485,5.56485,0,0,0-.71727-.11882,1.874,1.874,0,0,0-1.26153.55454c-.65554.62723-1.40662,1.14878-2.03426,1.814A8.30531,8.30531,0,0,0,78.69182,28.278c-.02477.045.01679-.00106-.01934.03259a13.09967,13.09967,0,0,0-1.47081,2.36735c-.07426.1054-.13568.21865-.26645.26527a2.63516,2.63516,0,0,0-1.51735.94035,2.42675,2.42675,0,0,1-.36.39546.36369.36369,0,0,1-.46207.01674c-.13969-.09348-.331-.17984-.22071-.41474Z"/><path class="cls-251" d="M74.37506,31.881c.22.48486.478.54478.79636.15724a2.32272,2.32272,0,0,1,.5923-.63839c.36978-.19654.6683-.57694,1.1537-.52019.11239.1642-.00533.28926-.08455.40728a5.21654,5.21654,0,0,0-.35878.61576,3.44891,3.44891,0,0,0-1.07117,1.85849c-.02192.1221.00536.2571-.10344.35327-.11394-.00256-.17951.07955-.26071.14078-.5494.41437-.59469.41888-1.0733-.05589a.89068.89068,0,0,0-.89964-.23883c-.06535-.35233-.342-.599-.46221-.92391q.67413-.50091,1.34816-1.002A.62294.62294,0,0,1,74.37506,31.881Z"/><path class="cls-252" d="M82.38712,44.281c-.2776-.3469-.039-.73011-.05421-1.0928a6.16031,6.16031,0,0,0-.00671-.74375c-.03017-.19143-.1415-.482.2148-.551a2.36253,2.36253,0,0,1,.94333.28141,15.40568,15.40568,0,0,0,3.63485.92654,2.61986,2.61986,0,0,1,.37683.07135c1.40908.46109,2.69637-.05117,3.98358-.511.40363-.14419.63614-.54583.98116-.789a4.00672,4.00672,0,0,1,.43092-.31821c.24745-.10828.40487.0742.58066.18589a7.10112,7.10112,0,0,1,1.009.84622,3.43427,3.43427,0,0,0,.17222,1.25773.38546.38546,0,0,1-.172.43669.30632.30632,0,0,0-.30764.11938c-.3928.63593-1.0953.755-1.70493,1.02593-.32651.14511-.66677.259-.99551.39946a1.71144,1.71144,0,0,1-.74357.15173,21.47431,21.47431,0,0,1-5.64168-.90463,14.08386,14.08386,0,0,0-2.43535-.64822A.85145.85145,0,0,1,82.38712,44.281Z"/><path class="cls-253" d="M94.48131,42.5866c-.48907-.16295-.74491-.64925-1.19991-.86581-.11244-.05352-.20136-.15126-.34061-.13535a.5785.5785,0,0,1-.1852-.33,5.1235,5.1235,0,0,0-.63976-1.43534.44171.44171,0,0,1-.082-.29112c.1184-.2663.39982-.34922.59566-.52909.39535-.06432.52424.28015.74484.48473.3157.76758.93172,1.34709,1.30414,2.07873.08828.17342.26205.33725.11135.56106Z"/><path class="cls-254" d="M94.78983,42.12439a4.24758,4.24758,0,0,0-.79595-1.447,3.13724,3.13724,0,0,1-.66791-1.17149c-.20487-.33274-.02549-.68242-.04559-1.02318.17176-.16211.2417.01723.31158.10953a10.9313,10.9313,0,0,1,.65811,1.06813l1.23255,2.6184c-.09665.11018-.03121.285-.15354.38491C95.13891,42.49435,95.07526,42.19854,94.78983,42.12439Z"/><path class="cls-255" d="M93.24912,35.50075a4.67475,4.67475,0,0,0-1.30923-.69319,3.809,3.809,0,0,1-.82528-1.07669,4.08033,4.08033,0,0,0-1.10027-1.64537c-.46567-.52684-.94815-1.04281-1.43663-1.55156a8.94938,8.94938,0,0,0-2.61722-1.65011c-.39957-.19989-.83338-.33142-1.25089-.495a2.97658,2.97658,0,0,0-1.32254-.16727.64836.64836,0,0,0-.386.15873,4.23272,4.23272,0,0,0-.98618,1.17085A16.66987,16.66987,0,0,0,80.71949,33.158c-.15845.62046-.32595,1.24-.43709,1.87248a3.25618,3.25618,0,0,1-.57128.61386.29679.29679,0,0,1-.34245.10426.4655.4655,0,0,1-.17162-.44142,6.05163,6.05163,0,0,1,.02294-.953c.21231-.50778.40394-1.02644.65906-1.515a19.30453,19.30453,0,0,0,.84646-2.101,5.64371,5.64371,0,0,1,1.08525-2.01494,2.482,2.482,0,0,0,.37084-.4906,1.52636,1.52636,0,0,1,1.72259-.69281,4.90583,4.90583,0,0,1,1.70627.6743c.72683.38435,1.48181.7055,2.21378,1.07635a10.165,10.165,0,0,1,2.15765,1.78164,26.6289,26.6289,0,0,1,2.14468,2.20553,3.27367,3.27367,0,0,1,.41912.60535,7.69792,7.69792,0,0,0,.62291,1.1736C93.24934,35.19134,93.38783,35.3231,93.24912,35.50075Z"/><path class="cls-256" d="M91.16916,33.72938l.77072,1.07819.61734.92479a.76212.76212,0,0,1,.33312.65716c-.0022.39952.1962.79163.043,1.19573-.16578.02544-.216-.12177-.28725-.213a9.79,9.79,0,0,0-1.28949-1.31521A11.85372,11.85372,0,0,0,89.44445,33.407a1.08441,1.08441,0,0,1-.29817-.39435,1.14653,1.14653,0,0,1,.04018-.94817.24547.24547,0,0,1,.37655.01126A15.526,15.526,0,0,1,91.176,33.65709C91.18984,33.67483,91.18059,33.70439,91.16916,33.72938Z"/><path class="cls-257" d="M98.02515,42.81737a5.76906,5.76906,0,0,0,.76126,1.56255,9.96136,9.96136,0,0,1,.77943,1.51869c-.31572-.30576-.45113-.764-.84739-1.00163-.59018-.94908-1.17824-1.89949-1.77312-2.84563-.077-.12246-.12418-.28757-.30665-.31187a.52078.52078,0,0,0-.07091-.2947c-.47284-.83413-.77186-1.75777-1.31611-2.55518a1.74005,1.74005,0,0,1-.35109-1.19762c.24335-.12333.27094.11937.35084.228.47886.65078.80383,1.3932,1.21934,2.08218a19.7116,19.7116,0,0,0,1.45737,2.46624C98.00017,42.56787,98.08689,42.67521,98.02515,42.81737Z"/><path class="cls-258" d="M92.86394,37.58025c.2138-.23911-.02635-.4748-.0321-.70974a1.54794,1.54794,0,0,0-.27464-1.13816c.15873-.00338.206.1239.276.22956a35.02421,35.02421,0,0,1,2.0333,3.62084,1.59811,1.59811,0,0,0-.61642.07764c-.32713-.16333-.37088-.53542-.57878-.78714-.1195-.14468-.17264-.34118-.34514-.4455A1.61619,1.61619,0,0,1,92.86394,37.58025Z"/><path class="cls-259" d="M94.94368,37.65812a6.55177,6.55177,0,0,0,.308,1.23148,2.24606,2.24606,0,0,1-.6562-.95,14.18463,14.18463,0,0,0-1.34634-2.43885c-.04225-.38227-.344-.63289-.49728-.96087a3.21485,3.21485,0,0,1-.2736-.656c.33459.02836.49981.31489.72977.495a3.91465,3.91465,0,0,1,.81671.94528A6.50455,6.50455,0,0,1,94.94368,37.65812Z"/><path class="cls-260" d="M92.24747,18.09444a4.39361,4.39361,0,0,0-.92094-.76363.76515.76515,0,0,1-.23463-.2376c.18133-.17209.37248-.05725.53166.01651a1.5564,1.5564,0,0,0,.778.13751,10.94346,10.94346,0,0,1,2.167,1.867,9.53934,9.53934,0,0,1,1.81665,3.04321,10.26737,10.26737,0,0,1,.71678,3.27457,7.38061,7.38061,0,0,1,.15278,1.28859,5.64532,5.64532,0,0,0,.13735,1.61236.29319.29319,0,0,1-.13721.39,9.76466,9.76466,0,0,1-.3855-2.69532c-.22246-.11781-.197-.35069-.22549-.5408a11.89249,11.89249,0,0,0-.86846-3.01494,9.16129,9.16129,0,0,0-1.77364-2.67233,15.04972,15.04972,0,0,0-1.50191-1.42613C92.40218,18.29569,92.28332,18.2308,92.24747,18.09444Z"/><path class="cls-261" d="M92.24747,18.09444a2.387,2.387,0,0,1,.72882.55284,10.62212,10.62212,0,0,1,3.744,6.75094,6.45721,6.45721,0,0,0,.1491.6294.68728.68728,0,0,0-.25607.80025.15237.15237,0,0,1-.05189.20085c-.103-.55754-.17918-1.12166-.314-1.6714a11.01735,11.01735,0,0,0-2.26632-4.50324,28.17214,28.17214,0,0,0-2.565-2.40026,2.02851,2.02851,0,0,1-.17007-.2052A1.333,1.333,0,0,0,92.24747,18.09444Z"/><path class="cls-262" d="M96.40738,29.64728c.32129.73663.44142,1.53369.68871,2.29293a21.13659,21.13659,0,0,0,.852,2.40553c.14212.60753.48446,1.14121.64314,1.74264.01611.06106.03355.12177.05037.18264a.51879.51879,0,0,0-.30814-.077,9.5899,9.5899,0,0,1-.82268-1.6314c-.36449-.84566-.61579-1.73276-.97874-2.57817a3.45834,3.45834,0,0,1-.23786-1.11308C96.24477,30.45519,96.1167,30.03175,96.40738,29.64728Z"/><path class="cls-263" d="M96.6383,31.958a.91537.91537,0,0,1,.08783.16271,28.432,28.432,0,0,0,1.55246,3.89192,1.23521,1.23521,0,0,1,.05487.18133,20.32555,20.32555,0,0,0,1.6099,3.19421,2.14674,2.14674,0,0,1,.39268.73368,13.67272,13.67272,0,0,1-1.11053-1.528c-.04444-.07071-.05642-.1719-.16679-.18959-.08966.17652.08072.32115.0449.48526a8.52112,8.52112,0,0,0-.61628-.92414c-.145-.03051-.19722-.14782-.253-.26505q-1.07305-2.25423-1.91953-4.60313c-.19442-.64609-.33411-1.30655-.52309-1.95411a.87978.87978,0,0,1-.0345-.704c.19809-.07187.26058.09869.28217.21007.11443.59043.422,1.11493.552,1.61429A.28583.28583,0,0,1,96.6383,31.958Z"/><path class="cls-264" d="M96.4072,33.11318c.36026.9142.70225,1.83618,1.0866,2.74015.30421.71549.66042,1.4089.99354,2.11211a3.65183,3.65183,0,0,0,.40115,1.18611c.038.12062.09163.23632.1381.35428a6.40689,6.40689,0,0,1-.88107-1.49484c-.183-.33178-.40209-.63853-.5826-.96952-.16061.01414-.17764-.12534-.22166-.22094A19.28365,19.28365,0,0,1,96.156,33.86477c-.04634-.16966-.13686-.33614-.05677-.52026l.00019-.00031C96.20764,33.27468,96.22344,33.0821,96.4072,33.11318Z"/><path class="cls-265" d="M79.30551,34.26853c0,.36886.00113.73773-.00054,1.10658-.00064.1429-.00538.28479.15462.35687a.46285.46285,0,0,1-.02717.40666,7.27628,7.27628,0,0,0-.54479,1.74859.34653.34653,0,0,1-.12136.23235,1.36918,1.36918,0,0,0-.31168.133c-.21069.15938-.3113.02355-.36726-.14a.90822.90822,0,0,0-.39937-.53206c.05521-.39053-.09974-.767-.07723-1.15536a.71069.71069,0,0,1,.157-.81488,11.92236,11.92236,0,0,0,1.04913-1.9035c.17221-.28278.29066-.59721.45634-.88491.07919-.13752.15563-.306.37353-.243a.54129.54129,0,0,1,.08247.60128C79.59172,33.54437,79.43738,33.90208,79.30551,34.26853Z"/><path class="cls-266" d="M78.76627,38.11958a5.62311,5.62311,0,0,1,.50226-1.85458c.07859-.17082.12817-.355.19106-.533l.77054-.69336c.11234-.02651.17446.03448.21976.12551a1.77072,1.77072,0,0,1-.14273,1.3379c-.49092.6623-.725,1.46221-1.1559,2.15666A.74551.74551,0,0,1,78.76627,38.11958Z"/><path class="cls-267" d="M82.46379,41.73929a1.96825,1.96825,0,0,1-.92422-.46213,11.25081,11.25081,0,0,1-.51386-1.78475c-.01378-.03459.03279-.09319.05128-.14062a1.5716,1.5716,0,0,1,.22363-1.11065c.64051-.463.8616-.37131,1.5258.443-.06509.34337.13984.66364.08813,1.00649a8.72339,8.72339,0,0,0-.2754,1.60509A.54.54,0,0,1,82.46379,41.73929Z"/><path class="cls-268" d="M81.38547,38.27343c-.24.32022-.16819.72962-.30848,1.07836-.33967.00892-.44744-.32983-.693-.462a5.4246,5.4246,0,0,1,.23111-2.07968,12.10138,12.10138,0,0,1,.723-1.72086c.04351-.1194.14826-.23686.27217-.04286a20.03326,20.03326,0,0,1-.075,2.21542A2.024,2.024,0,0,1,81.38547,38.27343Z"/><path class="cls-269" d="M81.54,34.96257q-.30256.61191-.60479,1.224c-.103.20979-.10561.47091-.32011.62351a.79177.79177,0,0,0-.308-.30806,6.07493,6.07493,0,0,0,.07685-1.3863,4.5744,4.5744,0,0,1,.394-1.14781,6.04688,6.04688,0,0,0,.48808-1.27521c.0283-.14176.036-.37572.30323-.33236a.42552.42552,0,0,1,.03525.36891,4.94864,4.94864,0,0,0,.06493,2.00158C81.67438,34.83481,81.70037,34.95109,81.54,34.96257Z"/><path class="cls-270" d="M82.46379,41.73929a8.64365,8.64365,0,0,1,.38554-2.07952c.14475-.10235.27225-.01418.394.04626a1.62408,1.62408,0,0,0,.62148.19018,9.15906,9.15906,0,0,1,1.76946.34781,4.27679,4.27679,0,0,0,1.56043-.08681c.40735-.041.811-.1185,1.219-.16108a2.6639,2.6639,0,0,0,1.61279-.63735,3.30839,3.30839,0,0,1,.80474-.52082,1.11648,1.11648,0,0,1,1.26193.668c.102.3968.42441.68257.53886,1.074.09838.33648.20547.67042.30872,1.00548a5.89129,5.89129,0,0,1-3.40016,1.78827,4.97139,4.97139,0,0,1-2.02487-.09088,19.52056,19.52056,0,0,1-3.41707-.76923,9.46729,9.46729,0,0,1-1.55769-.62018Z"/><path class="cls-271" d="M96.09924,33.34451a20.87443,20.87443,0,0,0,1.46368,3.697,6.84558,6.84558,0,0,0,.52225,1.42606c.05564.14126.114.28146.17106.42215l-.53906-.4622a.28245.28245,0,0,1-.17436-.18761c-.25444-.59413-.58705-1.151-.83428-1.74884a15.76069,15.76069,0,0,1-.90774-2.36891c-.18044-.62769-.33828-1.26183-.53744-1.88463a.40064.40064,0,0,1,.06573-.43357,3.58279,3.58279,0,0,1,.60878,1.29956C95.97844,33.20029,95.99413,33.29742,96.09924,33.34451Z"/><path class="cls-272" d="M96.79275,36.5018c.32125.63559.66454,1.26062.92442,1.92567.3224.64465.64664,1.2884.96578,1.93466.07235.14651.127.30179.18976.453a4.8547,4.8547,0,0,1-1.00165-1.15538.32007.32007,0,0,1-.20253-.21218c-.37-.83541-.79379-1.64669-1.12473-2.49955a.73226.73226,0,0,1-.10027-.40009C96.54182,36.39751,96.67346,36.49625,96.79275,36.5018Z"/><path class="cls-273" d="M98.02515,42.81737a21.72746,21.72746,0,0,1-1.61777-2.77222c-.279-.5682-.45512-1.1784-.71712-1.75371a.88361.88361,0,0,1-.15951-.60975c.26959-.08456.33254.157.397.30068.45149,1.007,1.14768,1.88208,1.558,2.90978l.53944,1.07829c.0738.4278.34161.795.38518,1.23222C98.23335,43.12277,98.15505,42.94428,98.02515,42.81737Z"/><path class="cls-274" d="M97.48569,40.89215a8.718,8.718,0,0,1-.68647-1.141c-.44173-.59884-.67888-1.31233-1.0828-1.93216a1.15614,1.15614,0,0,0-.15624-.1617c-.12776-.04-.157-.15832-.20875-.25984a12.70141,12.70141,0,0,1-.96388-2.1751c-.12343-.42226-.41787-.76451-.54976-1.18275a4.11333,4.11333,0,0,0-.30017-1.10421.4485.4485,0,0,1-.02138-.40793c.253-.12826.315.10148.386.23631.233.44217.51272.85706.74193,1.30078a3.55187,3.55187,0,0,1,.33535.85634,19.03479,19.03479,0,0,0,1.46866,3.12118c.293.59788.598,1.19.87569,1.79523.05129.1118.13637.22271.08476.36158Z"/><path class="cls-275" d="M97.40866,40.19886c-.37668-.75286-.747-1.509-1.132-2.2576-.33908-.65941-.72168-1.29781-1.03345-1.96944-.21881-.47135-.34966-.98336-.52261-1.47623a.86893.86893,0,0,0-.16192-.38113,5.40146,5.40146,0,0,0-.35382-1.03176.80805.80805,0,0,1-.08845-.40245c.185-.27592.2507-.01677.30372.08653a11.99616,11.99616,0,0,1,.53712,1.18835,3.06779,3.06779,0,0,0,.42725.81191,3.81038,3.81038,0,0,1,.25706.68138c.495,1.16944,1.10227,2.28343,1.69043,3.406.24981.47682.46738.96961.73155,1.439a.285.285,0,0,1,.03871.29079c.04242.43752.31144.8043.38486,1.23214a6.62615,6.62615,0,0,1-.80372-1.22259C97.59726,40.4584,97.57723,40.27693,97.40866,40.19886Z"/><path class="cls-276" d="M98.10229,40.58422c-.60375-1.18148-1.20394-2.36479-1.81258-3.54375a10.45394,10.45394,0,0,1-.96082-2.23272,2.17,2.17,0,0,1-.35435-1.42705c.0943-.10773.1503-.02248.19537.04738a2.37221,2.37221,0,0,0,.21846.3384,13.797,13.797,0,0,1,.85456,1.95694c.11321.24528.32472.46923.24168.77865a20.87839,20.87839,0,0,0,.88634,2.0784c.16151.36208.33308.71968.50011,1.0793-.02542.23883.15358.38968.24838.57675a.76351.76351,0,0,1,.13679.42441Z"/><path class="cls-277" d="M75.06838,35.886a.245.245,0,0,1,.16041-.2331,1.00068,1.00068,0,0,0,.53328-.84517c.34925-.25417.6984-.50734,1.03177-.78373a.69943.69943,0,0,1,.67734-.15545.26644.26644,0,0,1,.05751.10312.45845.45845,0,0,1-.069.40015.85782.85782,0,0,0-.11453.86484,1.9254,1.9254,0,0,1-.04257,1.11131.63939.63939,0,0,0-.36515.4c-.08042.27224-.35548.3881-.555.56474a5.38946,5.38946,0,0,0-.38948.42163c-.32669-.08-.43856-.46671-.77035-.53944A2.4042,2.4042,0,0,0,75.06838,35.886Z"/><path class="cls-278" d="M77.30259,36.348c-.05633-.04146-.09805-.10816-.07233-.16527.21473-.47678-.02385-.92735-.07364-1.388A.35777.35777,0,0,1,77.275,34.487a.64067.64067,0,0,0,.18189-.52648,5.14681,5.14681,0,0,0,1.267-1.75519,22.45872,22.45872,0,0,0,1.16475-2.58559,2.94636,2.94636,0,0,1,.3108-.57123c.066-.09338.12208-.25091.29271-.13344a3.69719,3.69719,0,0,1-.19454,1.18919,2.7785,2.7785,0,0,0-.16258,1.00481,10.11912,10.11912,0,0,1-.52172,1.46529.49052.49052,0,0,0-.236.24342c-.34934.754-.79455,1.46155-1.089,2.24222a.8309.8309,0,0,1-.236.34573,1.45449,1.45449,0,0,0-.44148,1.0194A.516.516,0,0,0,77.30259,36.348Z"/><path class="cls-279" d="M88.78087,20.02016a12.543,12.543,0,0,0-2.3112-.84774,1.01573,1.01573,0,0,0-.16781-.20052c-.33268-.23589-.14937-.36736.09092-.49227A3.5919,3.5919,0,0,1,88.043,18.883c.693.2965,1.40815.51219,2.11512.75889a12.55162,12.55162,0,0,1,3.2662,2.81,16.85853,16.85853,0,0,1,1.3965,2.1083,11.0896,11.0896,0,0,1,1.22163,4.01249,2.68882,2.68882,0,0,1,.00769,1.06037c-.27179.02914-.2664-.20375-.28466-.35059a12.67686,12.67686,0,0,0-.78807-2.93722,6.61515,6.61515,0,0,0-.55024-1.09131A14.75251,14.75251,0,0,0,92.828,23.05574a10.7847,10.7847,0,0,0-3.64851-2.75823C89.02721,20.2303,88.86244,20.18652,88.78087,20.02016Z"/><path class="cls-280" d="M90.167,19.71185a8.26141,8.26141,0,0,1-1.16641-.3306,18.45416,18.45416,0,0,0-2.60785-.90162c-.01826-.05726-.06965-.1459-.04968-.167.21867-.23093-.00255-.36544-.1044-.52612.99737.06262,1.93758.43576,2.92754.53859a.26866.26866,0,0,1,.15407.15437,7.36,7.36,0,0,0,.80616.89915A.21316.21316,0,0,1,90.167,19.71185Z"/><path class="cls-281" d="M87.24017,23.25474a6.40624,6.40624,0,0,0-1.30464-.49439c-.79419-.25682-1.595-.49313-2.39307-.738-.01578-.18343.07985-.23306.24892-.234a1.54384,1.54384,0,0,0,.67559-.15082c.76971.26531,1.56322.453,2.33829.70463a15.76928,15.76928,0,0,1,1.58272.628,8.70981,8.70981,0,0,1,1.8531,1.34317,16.79761,16.79761,0,0,1,2.28862,2.2594c.12235.14614.1387.36678.334.456a10.03991,10.03991,0,0,1,1.46632,2.65348.27925.27925,0,0,1,.02281.25637c-.28632.06075-.34141-.1919-.41163-.35116a13.41754,13.41754,0,0,0-2.0375-2.72846,1.13789,1.13789,0,0,0-.29666-.24276,26.01539,26.01539,0,0,0-2.24377-2.0182,8.81254,8.81254,0,0,0-1.93525-1.218A.3866.3866,0,0,1,87.24017,23.25474Z"/><path class="cls-282" d="M94.32724,29.95556A13.457,13.457,0,0,0,92.93093,27.203a.66729.66729,0,0,1-.06718-.17429,5.588,5.588,0,0,1,1.31158,1.71142,3.50483,3.50483,0,0,1,.61468,1.2154,5.41156,5.41156,0,0,1,.53907,1.84837,5.52537,5.52537,0,0,0,.39776,1.59032,11.61256,11.61256,0,0,0,.92031,2.67286,3.27231,3.27231,0,0,1,.1456.43471c-.10259.14076-.2054.039-.30814.00027L95.32889,33.8063c-.44037-1.1717-.66347-2.40587-1.03393-3.59772A.243.243,0,0,1,94.32724,29.95556Z"/><path class="cls-283" d="M88.78087,20.02016a10.64342,10.64342,0,0,1,3.84306,2.65638,13.26417,13.26417,0,0,1,1.56557,1.96295,11.56445,11.56445,0,0,1,1.42989,3.31956c.10735.39071.12682.80479.20928,1.20346.03468.16766.02626.36511.19354.48486.22732.11421.18185.34691.22129.53585a1.86158,1.86158,0,0,0,.1637.69657c.08916.35682.00421.75094.2311,1.07825v.53147a7.74276,7.74276,0,0,1-.64515-1.71509.52763.52763,0,0,0-.20243-.357c-.13244.02189-.1438-.08587-.163-.16625-.04764-.19956-.12143-.392-.158-.5943a11.66832,11.66832,0,0,0-2.59793-5.4544,17.22283,17.22283,0,0,0-3.03778-2.69713c-.1306-.09775-.30067-.15422-.35986-.33033-.27955-.21262-.40031-.57208-.71177-.75841C88.54087,20.2841,88.81527,20.15508,88.78087,20.02016Z"/><path class="cls-284" d="M89.47419,21.17505A11.98563,11.98563,0,0,1,91.29492,22.507a12.01112,12.01112,0,0,1,2.52875,2.80891A11.38946,11.38946,0,0,1,95.567,29.65749a6.72715,6.72715,0,0,0,.22374.76,10.69914,10.69914,0,0,0,.41686,1.886c.0442.27121.17.53008.19961.80974-.10373.0755-.13544.24689-.30777.231-.13-.72037-.4642-1.38342-.61-2.09543-.17133-.83672-.33823-1.67174-.56489-2.497a10.4245,10.4245,0,0,0-1.77119-3.38219,15.99624,15.99624,0,0,0-4.18675-3.73026c-.385-.25664-.82136-.41368-1.18718-.6952.09257-.04253.18253-.1.29074-.04671a1.62777,1.62777,0,0,0,.90257.11768C89.17482,20.99485,89.29589,21.16074,89.47419,21.17505Z"/><path class="cls-285" d="M96.4072,30.87979c-.2667-.26065-.18341-.635-.30516-.94309a2.6823,2.6823,0,0,1-.07983-.28933,11.35494,11.35494,0,0,0-1.2935-5.05066,18.76832,18.76832,0,0,0-1.32029-2.00987,14.55844,14.55844,0,0,0-3.24138-2.875.34343.34343,0,0,0-.175-.35161,1.69931,1.69931,0,0,1-.67168-.88075,7.40494,7.40494,0,0,1,2.59881,1.5056,10.56505,10.56505,0,0,1,3.19285,3.8747,11.54786,11.54786,0,0,1,1.072,4.12431c.03091.55681.14645,1.10892.22343,1.66318A2.69957,2.69957,0,0,0,96.4072,30.87979Z"/><path class="cls-286" d="M84.9291,23.63987a3.99873,3.99873,0,0,0-2.24662-.21162,3.43647,3.43647,0,0,0-1.18359.75993A18.39541,18.39541,0,0,0,78.97275,26.481c-.62764.68788-1.17905,1.44356-1.79542,2.13848a9.80387,9.80387,0,0,1-1.95469,2.02905c-.02486-.39586.25287-.70528.30814-1.07826a6.43989,6.43989,0,0,1,1.1497-1.44405,5.919,5.919,0,0,0,1.28944-1.4094,11.42389,11.42389,0,0,1,.92538-.95813A15.62982,15.62982,0,0,1,81.325,23.67087a9.04037,9.04037,0,0,1,1.17748-.787,1.52829,1.52829,0,0,1,.95846-.12461,4.742,4.742,0,0,1,1.8292.49574,1.07857,1.07857,0,0,0,.25524.07679c.13311.0948.30606.09955.43915.19582.10971.07935.24361.14124.19355.31724A4.22538,4.22538,0,0,1,84.9291,23.63987Z"/><path class="cls-287" d="M86.16167,23.794c-.13037-.2541-.48588-.20809-.61628-.46215a6.09749,6.09749,0,0,0,1.69478-.07706,3.35457,3.35457,0,0,1,1.361.6602,19.18626,19.18626,0,0,1,2.9156,2.50029,1.67187,1.67187,0,0,1,.11443.15128,6.32744,6.32744,0,0,1,1.54091,2.16c.16022.37559.43322.69309.59905,1.06725.09595.21647.24225.43055.12259.68816-.19414.081-.26293-.07971-.34767-.19031a3.45849,3.45849,0,0,0-.41133-.53012,18.04779,18.04779,0,0,0-3.96055-4.3117A8.07486,8.07486,0,0,0,86.6729,24.05,1.272,1.272,0,0,1,86.16167,23.794Z"/><path class="cls-288" d="M77.45648,33.88361a1.90491,1.90491,0,0,0-1.12879.64131,1.20957,1.20957,0,0,1-.56562.28283.59633.59633,0,0,0-.46259-.69327,1.93105,1.93105,0,0,1,.48567-1.46732A.79211.79211,0,0,0,76,32.25255a.4205.4205,0,0,1,.45519-.37162c.17325-.19393.34927-.31828.51935-.00009.075.1403.14317.08674.23259.016.08119-.06417.16136-.1769.2884-.06928a1.18093,1.18093,0,0,0,.40947.75557A2.05872,2.05872,0,0,1,77.45648,33.88361Z"/><path class="cls-289" d="M94.17335,32.651c.09285.49718.46962.91963.38537,1.46343-.25049-.44843-.50327-.89561-.74989-1.34616a.58866.58866,0,0,0-.25192-.2716c-.21723-.05983-.2725-.259-.35359-.42732a12.73846,12.73846,0,0,0-2.23515-3.14423,27.14363,27.14363,0,0,0-2.64506-2.39709,4.66825,4.66825,0,0,0-1.0499-.55521c-.7913-.36618-1.62806-.61875-2.42423-.97279a5.1958,5.1958,0,0,0-.7525-.52488c-.0833-.043-.19849-.08069-.16884-.21915a4.21907,4.21907,0,0,1,2.03509.44194,1.85955,1.85955,0,0,0,.81522.17421,3.63465,3.63465,0,0,1,1.66059.73249A20.07434,20.07434,0,0,1,92.43529,29.466c.17873.21941.39263.40532.561.63262a20.53878,20.53878,0,0,1,1.05868,2.07815A1.5619,1.5619,0,0,1,94.17335,32.651Z"/><path class="cls-290" d="M83.92764,24.256c.29635.24673.71535.32992.92443.693-.21873.1044-.47593-.03066-.68873.11126a2.02813,2.02813,0,0,0-2.35257.65867c-.6455.63473-1.34008,1.22984-1.921,1.92393a13.561,13.561,0,0,0-1.26612,1.963c-.41527.719-.77606,1.46666-1.16774,2.198l-.42425.3556c-.11891-.25654-.23792-.52355-.57646-.27858-.05972-.25035.13867-.38992.24722-.5662a.98007.98007,0,0,0,.215-.43505,6.03249,6.03249,0,0,0,.92026-1.57676,1.63354,1.63354,0,0,1,.40871-.63921c.47513-.42182.66972-1.04547,1.09757-1.5096a15.51924,15.51924,0,0,1,1.86965-1.8123,4.43293,4.43293,0,0,0,.67546-.56095A1.78223,1.78223,0,0,1,83.92764,24.256Z"/><path class="cls-291" d="M92.9406,30.10958a8.85134,8.85134,0,0,1-1.30087-1.44374q-.82153-.91447-1.71722-1.7482a9.13407,9.13407,0,0,0-1.93158-1.48549c-.3937-.20687-.808-.37459-1.213-.56-.32262-.39449-.82535-.46942-1.24459-.69046a1.23859,1.23859,0,0,1-.60426-.54185,3.67852,3.67852,0,0,1,1.23257.15408,8.11872,8.11872,0,0,1,2.803,1.36856,21.42287,21.42287,0,0,1,2.65,2.44373,8.4772,8.4772,0,0,1,1.55724,2.11793A.64361.64361,0,0,1,92.9406,30.10958Z"/><path class="cls-292" d="M92.09321,39.50593a1.56537,1.56537,0,0,0-1.23258-.616c-.21089-.015-.19451-.19706-.23239-.32989-.038-.13321-.02818-.30061-.15735-.37454a1.34022,1.34022,0,0,1-.56157-.91171,5.31673,5.31673,0,0,0-.38389-.90751.17716.17716,0,0,1,.0878-.1922.64011.64011,0,0,0,.336-.58254c.148-.22089.26558-.044.36039.04521a5.39524,5.39524,0,0,1,.77565.82835,11.70052,11.70052,0,0,1,1.48613,2.0496c.095.16483.216.33262.06122.529C92.52771,39.28513,92.266,39.34369,92.09321,39.50593Z"/><path class="cls-293" d="M92.63265,39.04371a.84994.84994,0,0,0-.14876-.5016,14.43747,14.43747,0,0,0-1.46918-2.03992,1.17093,1.17093,0,0,1,.38556-.462,4.68237,4.68237,0,0,1,1.46367,1.5401,2.92611,2.92611,0,0,1,.46221.84749c.15407.35942-.06928.71878-.00018,1.07818C93.06789,39.39229,92.98138,39.02141,92.63265,39.04371Z"/><path class="cls-294" d="M81.53954,32.343a.37329.37329,0,0,0-.14949.25793c-.12671.85569-.69718,1.548-.877,2.38426-.01084.05042-.08458.08732-.12906.1305l-.15388-.07711a10.15539,10.15539,0,0,1,.44054-2.08775,12.6096,12.6096,0,0,1,.6331-2.04111,6.06861,6.06861,0,0,1,1.526-2.524,1.098,1.098,0,0,1,.68784-.28033,5.74941,5.74941,0,0,1,2.09091.5234,14.92549,14.92549,0,0,1,2.18035,1.11485,6.07489,6.07489,0,0,1,1.51252,1.40486,18.23646,18.23646,0,0,1,1.63525,1.92028.90861.90861,0,0,1,.23248.66061c-.53735-.52184-1.07268-1.0458-1.61423-1.56325a.48423.48423,0,0,0-.31177-.13107.18551.18551,0,0,1-.101-.05164c-1.1898-1.44969-2.90957-2.05121-4.53237-2.79013a1.72639,1.72639,0,0,0-2.2123,1.00987,11.80449,11.80449,0,0,1-.50991,1.20061,1.61671,1.61671,0,0,0-.17441.58535C81.69945,32.12633,81.70635,32.27874,81.53954,32.343Z"/><path class="cls-295" d="M79.61328,32.57438a4.65459,4.65459,0,0,1,.46259-1.46364,4.747,4.747,0,0,1,.48815-1.47426,11.82112,11.82112,0,0,1,1.63709-2.25659,1.6612,1.6612,0,0,1,1.63323-.55055A13.26141,13.26141,0,0,1,86.525,27.83126a8.08238,8.08238,0,0,1,3.11459,2.18434c.43615.48522.93971.90731,1.36258,1.40673a7.75852,7.75852,0,0,1,1.0026,1.46844c.07054.13724.20158.27527.08839.45352Q90.99,32.222,89.88623,31.10013a9.46881,9.46881,0,0,0-3.52576-2.38706,10.448,10.448,0,0,1-1.43259-.72547,2.81374,2.81374,0,0,0-1.79314-.34752,1.05158,1.05158,0,0,0-.73266.43317A11.36656,11.36656,0,0,0,80.939,30.39339a4.01851,4.01851,0,0,0-.17081.50691,22.12465,22.12465,0,0,1-1.46264,3.36823,2.10173,2.10173,0,0,1,.22129-.75239A1.05685,1.05685,0,0,0,79.61328,32.57438Z"/><path class="cls-296" d="M92.09321,33.34429a6.2045,6.2045,0,0,0-1.15534-1.84855.31655.31655,0,0,1,.13286-.41036c.1991-.07134.30791.074.42605.18466a7.56645,7.56645,0,0,1,1.30536,1.54549c.22061.35891.4982.67944.701,1.05024a7.621,7.621,0,0,1,.386.79243c.079.21872.21965.44572.05309.68859a6.61418,6.61418,0,0,0-1.464-1.463Z"/><path class="cls-297" d="M81.53954,32.343a8.08981,8.08981,0,0,1,.77952-2.18,2.08177,2.08177,0,0,1,1.50745-1.24222,1.72028,1.72028,0,0,1,1.12513.28885,19.70692,19.70692,0,0,1,3.3603,1.82485,3.18164,3.18164,0,0,1,.93122,1.00052,1.70129,1.70129,0,0,0-.00007,1.00116c-.235-.00447-.39259-.18435-.59585-.262a2.43549,2.43549,0,0,0-.86892-.79836c-.88021-.57681-1.83727-1.01524-2.76456-1.507a2.0667,2.0667,0,0,0-1.08125-.22483,1.19844,1.19844,0,0,0-.93279.70817A8.68858,8.68858,0,0,0,82.04227,33.89c-.17509.26323-.13926.63364-.42569.8405-.19434-.20265-.10186-.46821-.15409-.702A4.61423,4.61423,0,0,1,81.53954,32.343Z"/><path class="cls-298" d="M88.70384,32.80506c.26592-.12389.35793.15775.53925.23116.34936.3878.69646.77768,1.049,1.16258a13.23818,13.23818,0,0,1,1.10818,1.84135c-.03684.23049-.22128.33785-.38556.462-.322-.32084-.56109-.73157-1.00141-.92433-.14273.01711-.13594-.10154-.169-.1844A1.28075,1.28075,0,0,0,89.543,34.822c-.36078-.51219-.77651-.98038-1.17321-1.46409A1.41819,1.41819,0,0,1,88.70384,32.80506Z"/><path class="cls-277" d="M93.94225,35.34679a3.54723,3.54723,0,0,0-.539-1.46329.27461.27461,0,0,1,.21774-.0823c.1642.001.24026.12209.32127.23645.50762.84407.69531,1.82866,1.1821,2.68342.16978.29812.29193.62335.43583.9362.24222.63872.47922,1.2795.73041,1.91467a.97557.97557,0,0,1,.11679.47321c-.457-.66884-.75372-1.43257-1.23586-2.08647-.0746-.10118-.15183-.20043-.22784-.30057-.24487-.61814-.48474-1.23834-.738-1.853A3.88446,3.88446,0,0,0,93.94225,35.34679Z"/><path class="cls-299" d="M89.55123,36.348a2.27705,2.27705,0,0,1,.52538,1.11651c.08922.2471.15219.4781.42015.59364a.36117.36117,0,0,1,.21285.37363.6644.6644,0,0,0,.151.4581c-.62161.3614-1.08023.997-1.84632,1.11367-.96839.14755-1.93736.2927-2.90878.41788a1.382,1.382,0,0,1-.5639-.08586,9.25625,9.25625,0,0,0-1.83519-.35723c-.322-.03295-.5491-.27544-.85712-.31861.00181-.33587-.25133-.65209-.07722-1.00125a.23607.23607,0,0,1-.03263-.21654,12.48112,12.48112,0,0,0,.29392-1.60278c.02046-.13361.02036-.2835.16453-.36441.69282.01569,1.361.21927,2.05024.27025.34367.02542.68747.06125,1.03052.10226a1.73106,1.73106,0,0,0,1.22174-.37783,1.86915,1.86915,0,0,1,1.49639-.40092A.75989.75989,0,0,1,89.55123,36.348Z"/><path class="cls-300" d="M83.23413,36.50208a14.88446,14.88446,0,0,0-.29385,1.619,2.96607,2.96607,0,0,0-.16817.53747c-.14167-.12792-.29191-.24767-.42331-.38538-.32522-.34085-.64257-.158-.96333.00029L81.54,34.96256c.08954-.05622.0744-.147.07656-.232.1583-.26883.12435-.625.38524-.84725.25561-.06757.422.14379.6664.21209.018-.16237.05384-.32419.0552-.48028a5.89861,5.89861,0,0,1,.87785-2.34743.40246.40246,0,0,1,.442-.24094,3.01711,3.01711,0,0,1,1.188.27933c.922.52892,1.867,1.0185,2.75811,1.60017.16911.11038.35414.21523.40634.43816a6.7559,6.7559,0,0,1,1.54052,2.0025,1.642,1.642,0,0,1-.87384-.57435,17.54537,17.54537,0,0,0-2.86125-1.98234c-.31814-.21219-.65848-.396-.99411-.58359a.66374.66374,0,0,0-.61328-.00033c-1.00077.36922-1.06769,1.22767-1.191,2.09332-.09586.673-.04028,1.34909-.11905,2.01954A.38367.38367,0,0,1,83.23413,36.50208Z"/><path class="cls-301" d="M93.94225,34.03765c-.10665-.04364-.174-.16536-.308-.15479-.30216-.51843-.638-1.02047-.91859-1.547a7.22577,7.22577,0,0,0-1.3833-1.87737c-.87326-.8287-1.75522-1.65032-2.68147-2.42036A9.20463,9.20463,0,0,0,86.377,26.7631a15.85339,15.85339,0,0,0-2.36362-1.0138c-.09805-.02493-.19639-.07409-.19407-.20576.25557-.28036.56438-.14907.85162-.0929a4.51232,4.51232,0,0,1,.60625.23231,8.54289,8.54289,0,0,1-.83271-.36913c-.1221-.06786-.25308-.12971-.28576-.28762.20032-.30222.45639-.10368.69332-.07716.73281.225,1.43209.54076,2.152.79855a9.44807,9.44807,0,0,1,3.15895,2.252,14.07379,14.07379,0,0,1,1.71545,1.81118,9.628,9.628,0,0,1,1.3445,2.08238,5.51644,5.51644,0,0,0,.33392.60359,1.23121,1.23121,0,0,0,.05557.33536A4.37234,4.37234,0,0,1,93.94225,34.03765Z"/><path class="cls-302" d="M92.9406,30.10958a.47869.47869,0,0,1,.23129-.38541c.23868.06571.28231.30762.41451.468.088.10672.14172.24148.27881.3025.23146.1353.26514.39431.37285.60505.30771.602.47584,1.2606.74784,1.87772a.40762.40762,0,0,1,.03485.36675,5.64419,5.64419,0,0,0,.30814,1.46355,3.37165,3.37165,0,0,1-.60666-1.164c-.1514-.31987-.28524-.648-.43067-.97078-.02228-.04944-.06757-.07533-.11821-.0219Z"/><path class="cls-303" d="M95.02075,33.3442c-.37346-.9546-.71444-1.92235-1.15554-2.84952a1.71875,1.71875,0,0,0-.38143-1.0229,9.99693,9.99693,0,0,1-.70835-1.302,5.57814,5.57814,0,0,0-.9635-1.313,1.65511,1.65511,0,0,1-.18074-.29033c.4268.13283.58611.5472.86233.83518.29841.31111.55126.66572.82608.99964a3.68756,3.68756,0,0,1,.693,1.13412.7553.7553,0,0,0,.31459.42011c.32624,1.16984.65423,2.33921.9758,3.51033a1.74364,1.74364,0,0,1,.02585.34041C95.12052,33.72269,95.1571,33.47581,95.02075,33.3442Z"/><path class="cls-304" d="M83.85061,25.56526c1.16963.41118,2.26753.984,3.39089,1.49987a10.6697,10.6697,0,0,1,2.4004,1.69337c.5472.46472,1.0366.98705,1.57523,1.46a6.0493,6.0493,0,0,1,1.5766,2.0875,4.07494,4.07494,0,0,0,.41612.63893,2.65575,2.65575,0,0,1,.42445.93791l-.23106.00063a12.29769,12.29769,0,0,0-2.05206-2.63056c-.0771-.06772-.14523-.14456-.25905-.1422a16.69429,16.69429,0,0,0-3.06657-3.15593,5.63716,5.63716,0,0,0-1.72744-.82337,7.99974,7.99974,0,0,1-1.034-.41161,4.25133,4.25133,0,0,0-1.65342-.46777,1.7396,1.7396,0,0,0-1.27241.53673c-.42631.39-.78712.84093-1.18252,1.25936a2.73376,2.73376,0,0,0-.64953.80224l-.04523.02679a4.21843,4.21843,0,0,0-.802,1.54763,18.33611,18.33611,0,0,1-1.60189,3.09559.84709.84709,0,0,1-.60036.44014l-.00037-.07693a.47723.47723,0,0,1,.07307-.3644,1.6355,1.6355,0,0,0,.31249-.94508,1.73761,1.73761,0,0,1,.11177-.36241,38.13723,38.13723,0,0,1,2.08915-4.058,10.55437,10.55437,0,0,1,1.76345-1.91154,2.94456,2.94456,0,0,1,1.37118-.87409C83.44107,25.31749,83.68915,25.284,83.85061,25.56526Z"/><path class="cls-305" d="M81.07733,28.03a9.26763,9.26763,0,0,1,1.30243-1.406,1.9932,1.9932,0,0,1,1.99545-.34067c.4438.13573.85184.34568,1.28041.51054.61973.23841,1.2432.46373,1.84733.74413a4.54722,4.54722,0,0,1,1.32321.9672c.6921.70279,1.4357,1.356,2.05908,2.1259a.699.699,0,0,1,.20689.47967l-.15426.385c-1.18126-1.161-2.17133-2.55431-3.74551-3.24708a15.94074,15.94074,0,0,0-3.41342-1.33778,1.76132,1.76132,0,0,0-1.5963.62507c-.22469.39828-.59574.6658-.8411,1.03933a6.72152,6.72152,0,0,0-1.09838,2.11885,1.20927,1.20927,0,0,1-.16729.41661c-.12483-.11872-.07034-.25232-.03846-.38875.14357-.61439.28282-1.22978.42364-1.84481A8.58716,8.58716,0,0,1,81.07733,28.03Z"/><path class="cls-306" d="M83.85061,25.56526a1.49417,1.49417,0,0,0-1.5087.3067,20.24352,20.24352,0,0,0-2.01469,2.04585,6.00647,6.00647,0,0,0-.79845,1.29986c-.50588.99174-.98,1.99965-1.47059,2.99923-.06109.12445-.14358.23841-.21614.35723-.38983-.1259-.41808-.433-.38612-.77022a6.64912,6.64912,0,0,1,.89293-1.89733,13.095,13.095,0,0,1,1.27551-2.08516,9.92942,9.92942,0,0,1,1.97681-2.02117,4.2134,4.2134,0,0,0,.48347-.43534,1.56021,1.56021,0,0,1,2.07411-.33871L85.391,25.705a1.494,1.494,0,0,1-.6609-.14337A1.201,1.201,0,0,0,83.85061,25.56526Z"/><path class="cls-307" d="M83.23413,36.50208a.51187.51187,0,0,1-.06357-.17836,20.28912,20.28912,0,0,1,.29038-2.9961,1.32493,1.32493,0,0,1,.70381-.98809,3.97033,3.97033,0,0,0,.46429-.268.43847.43847,0,0,1,.53222.00058c.83715.51175,1.66614,1.0454,2.5104,1.53413.84587.48965,1.462,1.22657,2.26456,1.74064.00293.08458-.01341.17559.07708.231.11932.42065-.19881.579-.46207.77018-.33192-.25006-.74518-.09233-1.10377-.2191-.141-.04983-.25679.03426-.38217.11572a2.79811,2.79811,0,0,1-1.45873.7006A13.56359,13.56359,0,0,1,83.23413,36.50208Z"/><path class="cls-308" d="M88.3957,33.34439a25.267,25.267,0,0,0-3.33725-2.01065,3.32323,3.32323,0,0,0-1.0774-.21974.21212.21212,0,0,0-.26.11874c-.171.60552-.69374,1.05162-.78132,1.68554a7.42694,7.42694,0,0,0-.17355,1.35626l-.76439-.39125a5.85552,5.85552,0,0,1,.60666-2.33715,2.41861,2.41861,0,0,0,.21674-.40467A1.30362,1.30362,0,0,1,84.683,30.256a17.316,17.316,0,0,1,2.36618,1.17411,6.92509,6.92509,0,0,1,1.22556.7802c.18488.16375.44089.28551.4291.59473A.83488.83488,0,0,1,88.3957,33.34439Z"/><path class="cls-278" d="M81.07733,28.03a2.13447,2.13447,0,0,1-.61628.84721A1.37911,1.37911,0,0,1,81.07733,28.03Z"/></g></svg>
\ No newline at end of file
diff --git a/content/zh-cn/case-studies/babylon/index.html b/content/zh-cn/case-studies/babylon/index.html
new file mode 100644
index 0000000000..6b86096b02
--- /dev/null
+++ b/content/zh-cn/case-studies/babylon/index.html
@@ -0,0 +1,84 @@
+---
+title: Babylon Case Study
+linkTitle: Babylon
+case_study_styles: true
+cid: caseStudies
+logo: babylon_featured_logo.svg
+featured: true
+weight: 1
+quote: >
+   Kubernetes is a great platform for machine learning because it comes with all the scheduling and scalability that you need.
+
+new_case_study_styles: true
+heading_background: /images/case-studies/babylon/banner4.jpg
+heading_title_text: Babylon
+use_gradient_overlay: true
+subheading: >
+  AppDirect: How Cloud Native Is Enabling Babylon's Medical AI Innovations
+case_study_details:
+  - Company: Babylon
+  - Location: United Kingdom
+  - Industry: AI, Healthcare
+---
+
+<h2>Challenge</h2>
+
+<p>A large number of Babylon's products leverage machine learning and artificial intelligence, and in 2019, there wasn't enough computing power in-house to run a particular experiment. The company was also growing (from 100 to 1,600 in three years) and planning expansion into other countries.</p>
+
+<h2>Solution</h2>
+
+<p>Babylon had migrated its user-facing applications to a Kubernetes platform in 2018, so the infrastructure team turned to Kubeflow, a toolkit for machine learning on Kubernetes. "We tried to create a Kubernetes core server, we deployed Kubeflow, and we orchestrated the whole experiment, which ended up being a really good success," says AI Infrastructure Lead Jérémie Vallée. The team began building a self-service AI training platform on top of Kubernetes.</p>
+
+<h2>Impact</h2>
+
+<p>Instead of waiting hours or days to be able to compute, teams can get access instantaneously. Clinical validations used to take 10 hours; now they are done in under 20 minutes. The portability of the cloud native platform has also enabled Babylon to expand into other countries.</p>
+
+{{< case-studies/quote
+  image="/images/case-studies/babylon/banner1.jpg"
+  author="JÉRÉMIE VALLÉE, AI INFRASTRUCTURE LEAD AT BABYLON"
+>}}
+"Kubernetes is a great platform for machine learning because it comes with all the scheduling and scalability that you need."
+{{< /case-studies/quote >}}
+
+{{< case-studies/lead >}}
+Babylon's mission is to put accessible and affordable healthcare services in the hands of every person on earth.
+{{< /case-studies/lead >}}
+
+<p>Since its launch in the U.K. in 2013, the startup has facilitated millions of digital consultations around the world. In the U.K., patients were typically waiting a week or two for a doctor's appointment. Through Babylon's NHS service, GP at Hand—which has more than 75,000 registered patients—39% get an appointment through their phone within 30 minutes, and 89% within 6 hours.</p>
+
+<p>That's just the start. "We try to combine different types of technology with the medical expertise that we have in-house to build products that will help patients manage and understand their health, and also help doctors be more efficient at what they do," says Jérémie Vallée, AI Infrastructure Lead at Babylon. </p>
+
+<p>A large number of these products leverage machine learning and artificial intelligence, and in 2019, researchers hit a pain point. "We have some servers in-house where our researchers were doing a lot of AI experiments and some training of models, and we came to a point where we didn't have enough compute in-house to run a particular experiment," says Vallée. </p>
+
+<p>Babylon had migrated its user-facing applications to a Kubernetes platform in 2018, "and we had a lot of Kubernetes knowledge thanks to the migration," he adds. To optimize some of the models that had been created, the team turned to Kubeflow, a toolkit for machine learning on Kubernetes. "We tried to create a Kubernetes core server, we deployed Kubeflow, and we orchestrated the whole experiment, which ended up being a really good success," he says.</p>
+
+<p>Based on that experience, Vallée's team was tasked with building a self-service platform to help Babylon's AI teams become more efficient, and by extension help get products to market faster. The main requirements: (1) the ability to give researchers and engineers access to the compute they needed, regardless of the size of the experiments they may need to run; (2) a way to provide teams with the best tools that they needed to do their work, on demand and in a centralized way; and (3) the training platform had to be close to the data that was being managed, because of the company's expansion into different countries.</p>
+
+{{< case-studies/quote author="CAROLINE HARGROVE, CHIEF TECHNOLOGY OFFICER AT BABYLON" >}}
+"Delivering a self-service platform where users are empowered to run their own workload has enabled our data scientist community to do hyper parameter tuning and general algorithm development without any cloud skill and without the help of platform engineers, thus accelerating our innovation."
+{{< /case-studies/quote >}}
+
+<p>Kubernetes was an enabler on every count. "Kubernetes is a great platform for machine learning because it comes with all the scheduling and scalability that you need," says Vallée. The need to keep data in every country in which Babylon operates requires a multi-region, multi-cloud strategy, and some countries might not even have a public cloud provider at all. "We wanted to make this platform portable so that we can run training jobs anywhere," he says. "Kubernetes offered a base layer that allows you to deploy the platform outside of the cloud provider, and then deploy whatever tooling you need. That was a very good selling point for us."</p>
+
+<p>Once the team decided to build the Babylon AI Research platform on top of Kubernetes, they referred to the Cloud Native Landscape to build out the stack: Prometheus and Grafana for monitoring; an Istio service mesh to control the network on the training platform and control what access all of the workflows would have; Helm to deploy the stack; and Flux to manage the GitOps part of the pipeline.</p>
+
+<p>The cloud native AI platform has had a huge impact at Babylon. The first research projects run on the platform mostly involved machine learning and natural language processing. These experiments required a huge amount of compute—1600 CPU, 3.2 TB RAM—which was much more than Babylon had in-house. Plus, access to compute used to take hours, or sometimes even days, depending on how busy the platform team was. "Now, with Kubernetes and the self-service platform that we provide, it's pretty much instantaneous," says Vallée.</p>
+
+<p>Another important type of work that's done on the platform is clinical validation for new applications such as Babylon's Symptom Checker, which calculates the probability of a disease given the evidence input by the user. "Being in healthcare, we want all of our models to be safe before they're going to hit production," says Vallée. Using Argo for GitOps "enabled us to scale the process massively."</p>
+
+{{< case-studies/quote 
+  image="/images/case-studies/babylon/banner2.jpg"
+  author="JEAN MARIE FERDEGUE, DIRECTOR OF PLATFORM OPERATIONS AT BABYLON"
+>}}
+"Giving a Kubernetes-based platform to our data scientists has meant increased security, increased innovation through empowerment, and a more affordable health service as our cloud engineers are building an experience that is used by hundreds on a daily basis, rather than supporting specific bespoke use cases."
+{{< /case-studies/quote >}}
+
+<p>Researchers used to have to wait up to 10 hours to get results on new versions of their models. With Kubernetes, that time is now down to under 20 minutes. Plus, previously they could only run one clinical validation at a time, now they can run many parallel ones if they need to—a huge benefit considering that in the past three years, Babylon has grown from 100 to 1,600 employees.</p>
+
+<p>"Delivering a self-service platform where users are empowered to run their own workload has enabled our data scientist community to do hyper parameter tuning and general algorithm development without any cloud skill and without the help of platform engineers, thus accelerating our innovation," says Chief Technology Officer Caroline Hargrove.</p>
+
+<p>Adds Director of Platform Operations Jean Marie Ferdegue: "Giving a Kubernetes-based platform to our data scientists has meant increased security, increased innovation through empowerment, and a more affordable health service as our cloud engineers are building an experience that is used by hundreds on a daily basis, rather than supporting specific bespoke use cases."</p>
+
+<p>Plus, as Babylon continues to expand, "it will be very easy to onboard new countries," says Vallée. "Fifteen months ago when we deployed this platform, we had one big environment in the U.K., but now we have one in Canada, we have one in Asia, and we have one coming in the U.S. This is one of the things that Kubernetes and the other cloud native projects have enabled for us."</p>
+
+<p>Babylon's road map for cloud native involves onboarding all of the company's AI efforts to the platform. Increasingly, that includes AI services of care. "I think this is going to be an interesting field where AI and healthcare meet," Vallée says. "It's kind of a complex problem and there's a lot of issues around this. So with our platform, we want to say, 'What can we do to make this less painful for our developers and machine learning engineers?'"</p>
diff --git a/content/zh/case-studies/blablacar/blablacar_featured.png b/content/zh-cn/case-studies/blablacar/blablacar_featured.png
similarity index 100%
rename from content/zh/case-studies/blablacar/blablacar_featured.png
rename to content/zh-cn/case-studies/blablacar/blablacar_featured.png
diff --git a/content/zh/case-studies/blablacar/blablacar_logo.png b/content/zh-cn/case-studies/blablacar/blablacar_logo.png
similarity index 100%
rename from content/zh/case-studies/blablacar/blablacar_logo.png
rename to content/zh-cn/case-studies/blablacar/blablacar_logo.png
diff --git a/content/zh/case-studies/blablacar/index.html b/content/zh-cn/case-studies/blablacar/index.html
similarity index 100%
rename from content/zh/case-studies/blablacar/index.html
rename to content/zh-cn/case-studies/blablacar/index.html
diff --git a/content/zh/case-studies/blackrock/blackrock_featured.png b/content/zh-cn/case-studies/blackrock/blackrock_featured.png
similarity index 100%
rename from content/zh/case-studies/blackrock/blackrock_featured.png
rename to content/zh-cn/case-studies/blackrock/blackrock_featured.png
diff --git a/content/zh/case-studies/blackrock/blackrock_logo.png b/content/zh-cn/case-studies/blackrock/blackrock_logo.png
similarity index 100%
rename from content/zh/case-studies/blackrock/blackrock_logo.png
rename to content/zh-cn/case-studies/blackrock/blackrock_logo.png
diff --git a/content/zh/case-studies/blackrock/index.html b/content/zh-cn/case-studies/blackrock/index.html
similarity index 100%
rename from content/zh/case-studies/blackrock/index.html
rename to content/zh-cn/case-studies/blackrock/index.html
diff --git a/content/zh-cn/case-studies/booking-com/booking.com_featured_logo.png b/content/zh-cn/case-studies/booking-com/booking.com_featured_logo.png
new file mode 100644
index 0000000000..623ca67345
Binary files /dev/null and b/content/zh-cn/case-studies/booking-com/booking.com_featured_logo.png differ
diff --git a/content/zh-cn/case-studies/booking-com/booking.com_featured_logo.svg b/content/zh-cn/case-studies/booking-com/booking.com_featured_logo.svg
new file mode 100644
index 0000000000..0b245c2700
--- /dev/null
+++ b/content/zh-cn/case-studies/booking-com/booking.com_featured_logo.svg
@@ -0,0 +1 @@
+<svg id="Layer_1" data-name="Layer 1" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 215 127"><defs><style>.cls-1{fill:transparent;}.cls-2{fill:#01adee;}.cls-3{fill:#1f3e79;}</style></defs><title>booking.com_featured_logo</title><rect class="cls-1" x="-3.37342" y="-3.21858" width="223.25536" height="134.51135"/><path class="cls-2" d="M127.77738,74.4058a10.7609,10.7609,0,0,1,3.68118-2.87628,9.23363,9.23363,0,0,1,8.78854.39836,7.15709,7.15709,0,0,1,2.38378,2.61946c.34616.56737.34324.55711.75843.07174a10.51431,10.51431,0,0,1,11.19732-3.60461c3.03777.73869,4.70183,2.88042,5.4235,5.83718a16.54378,16.54378,0,0,1,.44132,3.88865c.01522,5.44857-.00045,10.89725.01789,16.3458.00167.49834-.14164.59658-.61525.57295a33.70923,33.70923,0,0,1-3.80223-.08626,3.0809,3.0809,0,0,1-2.96457-3.44718c-.02364-3.86934-.00511-7.73892-.0081-11.6084a14.17722,14.17722,0,0,0-.19326-2.75762c-.37433-1.89368-1.61029-2.55555-3.50163-2.25654a5.64551,5.64551,0,0,0-4.2141,3.50195,10.11617,10.11617,0,0,0-1.003,4.463c-.0041,3.85062-.01048,7.70126.0099,11.55179.00261.49376-.10141.66411-.62871.65623-2.07887-.031-4.15866-.02716-6.23767-.00117-.44407.00555-.53331-.12471-.532-.546.01519-4.89025.00966-9.78054.00976-14.67083a10.67307,10.67307,0,0,0-.18762-2.23745,3.236,3.236,0,0,0-5.101-2.27318,7.23361,7.23361,0,0,0-3.14723,4.45758,15.60462,15.60462,0,0,0-.57311,4.61952q-.01713,5.05387.00676,10.1078c.00235.42763-.09823.54752-.53605.5422q-3.08965-.03767-6.17994.00056c-.4514.00586-.53449-.13848-.53393-.55372q.01705-12.64926-.00159-25.29853c-.00078-.47441.1186-.637.60512-.61125,1.17016.062,2.34394-.07935,3.5156.09919a3.13012,3.13012,0,0,1,2.912,2.46C127.61072,73.95258,127.68426,74.12724,127.77738,74.4058Z"/><path class="cls-3" d="M37.48154,46.19185c.28333.16511.47969.28349.67964.39546,3.45942,1.93722,4.83641,5.03874,4.623,8.82672-.28648,5.08551-3.456,8.5543-8.53612,9.66008a18.29386,18.29386,0,0,1-3.949.41709q-6.15137-.014-12.30274.006c-.43736.00169-.57954-.08954-.57889-.56067q.02227-16.086.01287-32.172a3.77063,3.77063,0,0,1,3.75784-3.73481c3.15751-.00435,6.31583-.045,9.47232.01186A11.70967,11.70967,0,0,1,38.4075,31.7a8.64228,8.64228,0,0,1,2.97605,7.36671A9.01256,9.01256,0,0,1,37.48154,46.19185ZM24.53945,55.227c0,1.13514.01792,2.2707-.00914,3.40519-.01029.43143.08248.592.55826.58482,1.94318-.02918,3.887-.01386,5.83066-.011a4.787,4.787,0,0,0,1.42092-.19879c1.971-.60332,3.06606-2.192,3.15764-4.58844a4.477,4.477,0,0,0-3.437-4.76347,19.68847,19.68847,0,0,0-5.80263-.13816,1.80613,1.80613,0,0,0-1.66118,1.79241A27.47114,27.47114,0,0,0,24.53945,55.227Zm0-15.05421c0,1.09987.029,2.04346-.01211,2.984-.02085.47686.15089.56213.58144.55552,1.55684-.02388,3.116-.05549,4.67109.00143a4.01674,4.01674,0,0,0,4.36157-3.74652,3.98538,3.98538,0,0,0-3.76532-4.8284A32.75577,32.75577,0,0,0,26.573,35.1377a1.91629,1.91629,0,0,0-1.98817,1.97059A18.4794,18.4794,0,0,0,24.53945,40.1728Z"/><path class="cls-3" d="M189.36223,63.12754c-4.46864,3.49221-13.69049,2.73324-16.97189-4.98065a15.92141,15.92141,0,0,1-.127-12.63122c1.87031-4.584,5.46354-6.8355,10.36906-7.02632a10.61047,10.61047,0,0,1,7.27228,2.25966c.21492.17138.32375.20091.47593-.05762a3.26326,3.26326,0,0,1,3.00192-1.60778c1.11629-.01268,2.233.00564,3.34909-.01489.2918-.00536.38172.093.35484.36025-.00959.09531-.00137.19241-.00137.28869q0,11.785-.00522,23.57a12.52785,12.52785,0,0,1-1.85268,6.92379,11.86528,11.86528,0,0,1-7.21819,5.01878,19.73,19.73,0,0,1-14.32566-1.6353c-.293-.14553-.43054-.26731-.26835-.64917.51745-1.21821.91224-2.48724,1.50593-3.67525a2.06076,2.06076,0,0,1,2.69032-1.23324,25.86826,25.86826,0,0,0,3.92017.91709,9.90338,9.90338,0,0,0,4.88041-.51538A4.89745,4.89745,0,0,0,189.36223,63.12754ZM189.534,51.152c-.01861-.30678-.02095-.61554-.05834-.92-.38675-3.149-1.82389-4.69227-4.624-4.97411-2.19636-.22106-4.18325.46238-5.09184,2.4511a8.44255,8.44255,0,0,0,.57819,8.701,4.74613,4.74613,0,0,0,4.76733,1.946A4.45745,4.45745,0,0,0,188.96,55.39473,10.06388,10.06388,0,0,0,189.534,51.152Z"/><path class="cls-3" d="M129.47525,39.13475c-.99878,1.49173-1.92454,2.88-2.85612,4.26443q-2.06079,3.06246-4.12758,6.12091a13.38005,13.38005,0,0,1-1.17312,1.49668c-.11625.12865-.28744.22754-.08277.46461a26.0382,26.0382,0,0,1,2.85293,4.923c1.598,2.96015,3.40825,5.79362,5.125,8.68289.09612.16176.19036.32466.33008.56318-1.90942,0-3.74455.00344-5.57964-.00226-.49989-.00155-1.00142-.00969-1.4992-.051a3.7165,3.7165,0,0,1-3.14926-2.029q-2.14173-3.98157-4.27032-7.97022a2.0729,2.0729,0,0,0-2.323-.93359c-.28556.08756-.17346.31218-.174.4781-.00759,2.48369-.00363,4.9674-.00614,7.45111-.00089.88536-.02682,1.771-.01041,2.65591.0061.32971-.09566.41634-.41911.4145-2.2911-.01306-4.58249-.02219-6.87334.005-.50107.006-.44033-.26271-.44026-.57531q.00329-14.9889.00181-29.97779c0-1.8676-.0028-3.73521.00406-5.60278.00074-.19953-.12094-.49036.282-.48654,1.53985.01458,3.08647-.06743,4.618.0503a2.8182,2.8182,0,0,1,2.8102,3.05025c.04554,1.59665.02766,3.19528.02667,4.793-.00217,3.50384-.004,7.00772-.02712,10.51145-.00285.43366.08062.63477.55615.57265.34138-.0446.6931-.00353,1.03775-.03123a1.87533,1.87533,0,0,0,1.51625-.91013c1.58549-2.47609,3.19742-4.93525,4.77972-7.41336a1.00053,1.00053,0,0,1,.972-.52616c2.48348.024,4.96731.01138,7.451.01138Z"/><path class="cls-3" d="M150.96748,42.08974a10.19024,10.19024,0,0,1,5.60221-3.28927,11.754,11.754,0,0,1,6.97095.53773c2.86307,1.19173,4.23263,3.531,4.793,6.45868a20.06551,20.06551,0,0,1,.22672,3.73848q.02235,7.42167.0148,14.84338c-.00044.39765.24063.89262-.03753,1.16852-.26788.26571-.76828.07656-1.16534.0884a23.74287,23.74287,0,0,1-3.46-.07489,3.15682,3.15682,0,0,1-2.96861-3.00281,12.47859,12.47859,0,0,1-.06517-1.26728q-.00726-5.71885-.00518-11.43773a7.9267,7.9267,0,0,0-.141-1.6638,2.72292,2.72292,0,0,0-2.9991-2.50249,6.29519,6.29519,0,0,0-6.26032,5.03661,9.72642,9.72642,0,0,0-.29628,2.3973c.00361,3.98585-.00817,7.97176.01409,11.95748.00278.49618-.14252.59577-.61022.59033-2.19483-.02551-4.3902-.02127-6.58515-.00214-.39116.0034-.51594-.07742-.51529-.4961q.02005-12.76635.01589-25.53271c.00016-.18956-.15052-.501.26111-.50251,1.05618-.00391,2.11306-.041,3.16834-.01364C148.89167,39.17216,150.49845,39.77566,150.96748,42.08974Z"/><path class="cls-3" d="M58.72153,38.60667c4.36138.08424,8.15613,1.47245,10.95457,4.96547a13.67511,13.67511,0,0,1,2.91063,9.76768A13.13665,13.13665,0,0,1,61.40211,65.81656a14.363,14.363,0,0,1-10.80676-2.15148,12.83589,12.83589,0,0,1-5.7207-10.36384c-.46694-7.45962,4.21606-13.6857,11.9403-14.58289A17.35191,17.35191,0,0,1,58.72153,38.60667ZM58.767,59.56276a5.907,5.907,0,0,0,5.41026-3.28243,8.38183,8.38183,0,0,0,.09509-7.66666,5.79684,5.79684,0,0,0-5.35185-3.49128,5.70853,5.70853,0,0,0-5.61412,3.23609,8.26179,8.26179,0,0,0-.13652,7.6681A5.956,5.956,0,0,0,58.767,59.56276Z"/><path class="cls-3" d="M74.44514,52.83345a13.947,13.947,0,0,1,2.87332-9.18339,12.971,12.971,0,0,1,9.07826-4.91834A14.41,14.41,0,0,1,96.5673,41.04809a12.69109,12.69109,0,0,1,5.439,8.69715,14.24172,14.24172,0,0,1-1.46513,9.44823,12.78866,12.78866,0,0,1-9.55609,6.62137,14.19413,14.19413,0,0,1-11.63967-2.77862,12.887,12.887,0,0,1-4.71868-8.3301c-.05094-.303-.08728-.60911-.11547-.91515C74.47777,53.42729,74.46042,53.06212,74.44514,52.83345Zm20.28779-.4646a8.7726,8.7726,0,0,0-.67052-3.41542,5.92642,5.92642,0,0,0-5.3718-3.82843,5.74969,5.74969,0,0,0-5.83613,3.351,8.24457,8.24457,0,0,0,.124,7.92152,6.15989,6.15989,0,0,0,9.91549,1.195A7.65565,7.65565,0,0,0,94.73293,52.36885Z"/><path class="cls-2" d="M117.97294,84.225c.0009,7.67808-5.28,13.316-12.80686,13.80242a14.1081,14.1081,0,0,1-10.36233-3.201,12.72657,12.72657,0,0,1-4.39914-7.94978,14.20636,14.20636,0,0,1,1.69548-9.796,12.55048,12.55048,0,0,1,8.24773-6.00937,14.72042,14.72042,0,0,1,11.44707,1.66063,12.83961,12.83961,0,0,1,6.0402,9.503A11.95515,11.95515,0,0,1,117.97294,84.225ZM97.69346,83.9863A8.764,8.764,0,0,0,98.20411,87.33a5.98,5.98,0,0,0,5.1079,4.18274,5.73868,5.73868,0,0,0,6.02911-2.88852,8.16484,8.16484,0,0,0-.12606-8.71394,6.12621,6.12621,0,0,0-8.80271-1.60614A7.13425,7.13425,0,0,0,97.69346,83.9863Z"/><path class="cls-2" d="M85.82208,80.33152c-.53888.00008-1.07854-.01831-1.61653.00381A2.34479,2.34479,0,0,1,81.73974,78.709a2.45192,2.45192,0,0,0-2.187-1.60365,6.77653,6.77653,0,0,0-7.931,5.63735A7.51883,7.51883,0,0,0,72.8532,88.894a7.25481,7.25481,0,0,0,7.08949,2.70508,10.52041,10.52041,0,0,0,6.15124-3.26553c.31435-.31186.456-.38837.71839.06749.86294,1.49926,1.767,2.97522,2.67731,4.44651a.51152.51152,0,0,1-.08526.74135A15.68016,15.68016,0,0,1,70.52,96.193a12.65446,12.65446,0,0,1-6.23878-9.24976,13.68473,13.68473,0,0,1,2.92407-11.41334,13.52842,13.52842,0,0,1,8.4-4.64534A14.94034,14.94034,0,0,1,84.733,72.00076,5.50225,5.50225,0,0,1,88.10838,75.835a15.23875,15.23875,0,0,1,.10378,3.33841c-.00708,1.14874-.00167,1.14971-1.12,1.15757C86.66883,80.33394,86.24544,80.33145,85.82208,80.33152Z"/><path class="cls-3" d="M131.56972,52.37616c0-4.21481.00756-8.42966-.01056-12.64438-.002-.47043.10856-.62763.59776-.60758a24.27674,24.27674,0,0,1,4.42719.17955,3.16386,3.16386,0,0,1,2.62451,3.19223c.02069,7.58354.01714,15.16716.0321,22.75072.00065.32718-.09316.41907-.41836.41719-2.252-.01306-4.50421-.02091-6.756.00474-.461.00525-.42675-.22947-.42635-.53294q.00591-4.533.00241-9.06592V52.37619Z"/><path class="cls-2" d="M54.05716,93.46868a4.44619,4.44619,0,0,1,4.45521-4.42294,4.47318,4.47318,0,1,1-4.45521,4.42294Z"/><path class="cls-3" d="M135.064,27.82742a4.46313,4.46313,0,1,1-4.39666,4.56246A4.48079,4.48079,0,0,1,135.064,27.82742Z"/></svg>
\ No newline at end of file
diff --git a/content/zh-cn/case-studies/booking-com/index.html b/content/zh-cn/case-studies/booking-com/index.html
new file mode 100644
index 0000000000..74d5b282b1
--- /dev/null
+++ b/content/zh-cn/case-studies/booking-com/index.html
@@ -0,0 +1,86 @@
+---
+title: Booking.com Case Study
+linkTitle: Booking.com
+case_study_styles: true
+cid: caseStudies
+logo: booking.com_featured_logo.png
+featured: true
+weight: 3
+quote: >
+  We realized that we needed to learn Kubernetes better in order to fully use the potential of it. At that point, we made the shift to build our own Kubernetes platform.
+
+new_case_study_styles: true
+heading_background: /images/case-studies/booking/banner1.jpg
+heading_title_text: Booking.com
+use_gradient_overlay: true
+subheading: >
+  After Learning the Ropes with a Kubernetes Distribution, Booking.com Built a Platform of Its Own
+case_study_details:
+  - Company: Booking.com
+  - Location: Netherlands
+  - Industry: Travel
+---
+
+<h2>Challenge</h2>
+
+<p>In 2016, Booking.com migrated to an OpenShift platform, which gave product developers faster access to infrastructure. But because Kubernetes was abstracted away from the developers, the infrastructure team became a "knowledge bottleneck" when challenges arose. Trying to scale that support wasn't sustainable.</p>
+
+<h2>Solution</h2>
+
+<p>After a year operating OpenShift, the platform team decided to build its own vanilla Kubernetes platform—and ask developers to learn some Kubernetes in order to use it. "This is not a magical platform," says Ben Tyler, Principal Developer, B Platform Track. "We're not claiming that you can just use it with your eyes closed. Developers need to do some learning, and we're going to do everything we can to make sure they have access to that knowledge."</p>
+
+<h2>Impact</h2>
+
+<p>Despite the learning curve, there's been a great uptick in adoption of the new Kubernetes platform. Before containers, creating a new service could take a couple of days if the developers understood Puppet, or weeks if they didn't. On the new platform, it can take as few as 10 minutes. About 500 new services were built on the platform in the first 8 months.</p>
+
+{{< case-studies/quote
+  image="/images/case-studies/booking/banner2.jpg"
+  author="BEN TYLER, PRINCIPAL DEVELOPER, B PLATFORM TRACK AT BOOKING.COM"
+>}}
+"As our users learn Kubernetes and become more sophisticated Kubernetes users, they put pressure on us to provide a better, more native Kubernetes experience, which is great. It's a super healthy dynamic."
+{{< /case-studies/quote >}}
+
+​{{< case-studies/lead >}}
+Booking.com has a long history with Kubernetes: In 2015, a team at the travel platform prototyped a container platform based on Mesos and Marathon.
+{{< /case-studies/lead >}}
+
+<p>Impressed by what the technology offered, but in need of enterprise features at its scale—the site handles more than 1.5 million room-night reservations a day on average—the team decided to adopt an OpenShift platform.</p>
+
+<p>This platform, which was wrapped in a Heroku-style, high-level CLI interface, "was definitely popular with our product developers," says Ben Tyler, Principal Developer, B Platform Track. "We gave them faster access to infrastructure."</p>
+
+<p>But, he adds, "anytime something went slightly off the rails, developers didn't have any of the knowledge required to support themselves."</p>
+
+<p>And after a year of operating this platform, the infrastructure team found that it had become "a knowledge bottleneck," he says. "Most of the developers who used it did not know it was Kubernetes underneath. An application failure and a platform failure both looked like failures of that Heroku-style tool."</p>
+
+<p>Scaling the necessary support did not seem feasible or sustainable, so the platform team needed a new solution. The understanding of Kubernetes that they had gained operating the OpenShift platform gave them confidence to build a vanilla Kubernetes platform of their own and customize it to suit the company's needs.</p>
+
+{{< case-studies/quote author="EDUARD IACOBOAIA, SENIOR SYSTEM ADMINISTRATOR, B PLATFORM TRACK AT BOOKING.COM" >}}
+"For entering the landscape, OpenShift was definitely very helpful. It shows you what the technology can do, and it makes it easy for you to use it. After we spent some time on it, we realized that we needed to learn Kubernetes better in order to fully use the potential of it. At that point, we made the shift to build our own Kubernetes platform. We definitely benefit in the long term for taking that step and investing the time in gaining that knowledge."
+{{< /case-studies/quote >}}
+
+<p>"For entering the landscape, OpenShift was definitely very helpful," says Eduard Iacoboaia, Senior System Administrator, B Platform Track. "It shows you what the technology can do, and it makes it easy for you to use it. After we spent some time on it, we realized that we needed to learn Kubernetes better in order to fully use the potential of it. At that point, we made the shift to build our own Kubernetes platform. We definitely benefit in the long term for taking that step and investing the time in gaining that knowledge."</p>
+
+<p>Iacoboaia's team had customized a lot of OpenShift tools to make them work at Booking.com, and "those integrations points were kind of fragile," he says. "We spent much more time understanding all the components of Kubernetes, how they work, how they interact with each other." That research led the team to switch from OpenShift's built-in Ansible playbooks to Puppet deployments, which are used for the rest of Booking's infrastructure. The control plane was also moved from inside the cluster onto bare metal, as the company runs tens of thousands of bare-metal servers and a large infrastructure for running applications on bare metal. (Booking runs Kubernetes in multiple clusters in multiple data centers across the various regions where it has compute.) "We decided to keep it as simple as possible and to also use the tools that we know best," says Iacoboaia.</p>
+
+<p>The other big change was that product engineers would have to learn Kubernetes in order to onboard. "This is not a magical platform," says Tyler. "We're not claiming that you can just use it with your eyes closed. Developers need to do some learning, and we're going to do everything we can to make sure they have access to that knowledge." That includes trainings, blog posts, videos, and Udemy courses.</p>
+
+<p>Despite the learning curve, there's been a great uptick in adoption of the new Kubernetes platform. "I think the reason we've been able to strike this bargain successfully is that we're not asking them to learn a proprietary app system," says Tyler. "We're asking them to learn something that's open source, where the knowledge is transferable. They're investing in their own careers by learning Kubernetes."</p>
+
+<p>One clear sign that this strategy has been a success is that in the support channel, when users have questions, other product engineers are jumping in to respond. "I haven't seen that kind of community engagement around a particular platform product internally before," says Tyler. "It helps a lot that it's visibly an ecosystem standard outside of the company, so people feel value in investing in that knowledge and sharing it with others, which is really, really powerful."</p>
+
+{{< case-studies/quote
+  image="/images/case-studies/booking/banner3.jpg"
+  author="BEN TYLER, PRINCIPAL DEVELOPER, B PLATFORM TRACK AT BOOKING.COM"
+>}}
+"We have a tutorial. You follow the tutorial. Your code is running. Then, it's business-logic time. The time to gain access to resources is decreased enormously."
+{{< /case-studies/quote >}}
+
+<p>There's other quantifiable evidence too: Before containers, creating a new service could take a couple of days if the developers understood Puppet, or weeks if they didn't. On the new platform, it takes 10 minutes. "We have a tutorial. You follow the tutorial. Your code is running. Then, it's business-logic time," says Tyler. "The time to gain access to resources is decreased enormously." About 500 new services were built in the first 8 months on the platform, with hundreds of releases per day.</p>
+
+<p>The platform offers different "layers of contracts, so to speak," says Tyler. "At the very base, it's just Kubernetes. If you're a pro Kubernetes user, here's a Kubernetes API, just like you get from GKE or AKS. We're trying to be a provider on that same level. But our whole job inside the company is to be a bigger value add than just vanilla infrastructure, so we provide a set of base images for our main stacks, Perl and Java."</p>
+
+<p>And "as our users learn Kubernetes and become more sophisticated Kubernetes users, they put pressure on us to provide a better more native Kubernetes experience, which is great," says Tyler. "It's a super healthy dynamic."</p>
+
+<p>The platform also includes other CNCF technologies, such as Envoy, Helm, and Prometheus. Most of the critical service traffic for Booking.com is routed through Envoy, and Prometheus is used primarily to monitor infrastructure components. Helm is consumed as a packaging standard. The team also developed and open sourced Shipper, an extension for Kubernetes to add more complex rollout strategies and multi-cluster orchestration.</p>
+
+<p>To be sure, there have been internal discussions about the wisdom of building a Kubernetes platform from the ground up. "This is not really our core competency—Kubernetes and travel, they're kind of far apart, right?" says Tyler. "But we've made a couple of bets on CNCF components that have worked out really well for us. Envoy and Kubernetes, in particular, have been really beneficial to our organization. We were able to customize them, either because we could look at the source code or because they had extension points, and we were able to get value out of them very quickly without having to change any paradigms internally."</p>
diff --git a/content/zh-cn/case-studies/booz-allen/booz-allen-featured-logo.svg b/content/zh-cn/case-studies/booz-allen/booz-allen-featured-logo.svg
new file mode 100644
index 0000000000..3ce58c68f7
--- /dev/null
+++ b/content/zh-cn/case-studies/booz-allen/booz-allen-featured-logo.svg
@@ -0,0 +1 @@
+<svg id="Layer_1" data-name="Layer 1" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 215 127"><defs><style>.cls-1{fill:transparent;}</style></defs><title>booz-allen-featured</title><rect class="cls-1" x="-3.84547" y="-2.87787" width="223.25536" height="134.51136"/><path d="M17.60286,61.11939a3.71056,3.71056,0,0,1,2.5882,2.38564,3.95958,3.95958,0,0,1-3.29637,5.44135c-2.01368.1603-4.03478.03547-6.05223.06918-.3726.00623-.35776-.22838-.3574-.50139q.00463-3.55729.00171-7.11461c0-2.26124.00315-4.52249-.00367-6.7837-.00089-.29478.02147-.4768.3777-.47273,1.91453.02186,3.831-.03171,5.74353.03934a3.53381,3.53381,0,0,1,3.28526,4.48932A3.21084,3.21084,0,0,1,17.60286,61.11939ZM12.21047,64.713c0,.80868.00148,1.61736-.001,2.426-.00065.21243-.01061.40111.28252.39a33.573,33.573,0,0,0,4.08014-.09365,2.40209,2.40209,0,0,0,2.09821-2.71722,2.64506,2.64506,0,0,0-2.22908-2.728c-1.306-.16626-2.61874-.04126-3.92779-.08164-.272-.00839-.30653.14661-.30495.37847C12.21405,63.09557,12.21067,63.90428,12.21047,64.713Zm0-6.73284c0,.71584.00316,1.43172-.00188,2.14753-.00157.22336.01281.3973.29254.39063,1.2389-.02954,2.48177.08272,3.7166-.065a2.39478,2.39478,0,0,0,2.06737-2.57715A2.21907,2.21907,0,0,0,16.034,55.593c-1.1532-.03253-2.30794.00078-3.46167-.01761-.31134-.005-.37328.12989-.36667.42247C12.2206,56.65827,12.21036,57.31932,12.21046,57.98011Z"/><path d="M154.6706,59.74265c1.37924-2.56728,4.82436-2.93355,6.06119.25059a3.84871,3.84871,0,0,1,2.02583-2.03738c2.12411-.86523,4.22083.54908,4.31581,3.0281.09782,2.55289.03429,5.11273.04794,7.66949.00137.25541-.0793.34276-.3245.36322-1.26334.10546-1.26277.11319-1.26277-1.238q0-2.84219-.00237-5.68436c-.00071-.29326-.02335-.5875-.05221-.87945a2.115,2.115,0,0,0-1.44315-2.01169,2.04056,2.04056,0,0,0-2.2275.79595,3.10653,3.10653,0,0,0-.81563,2.08975c-.01624,2.11528-.02781,4.23083-.01083,6.346.00371.46151-.12175.59533-.55082.58729-1.07861-.0202-1.07895.00091-1.07895-1.17234q0-2.89737-.00044-5.79475a5.31558,5.31558,0,0,0-.12169-1.31313,1.93733,1.93733,0,0,0-2.85957-1.35535,3.20386,3.20386,0,0,0-1.54573,3.078c-.00284,1.96837-.01431,3.93692.0086,5.905.00566.48739-.099.67315-.59355.6552-1.01618-.03688-1.01716-.00658-1.01716-1.11514,0-3.10891.01-6.2179-.01058-9.32665-.00316-.47557.09593-.63624.56356-.61685.89339.03707.89451.00654.89452.96919Z"/><path d="M129.93171,61.50767c0-2.28134.01-4.56276-.009-6.84392-.00347-.41681.108-.52751.49405-.52369,1.20218.0119,1.20229-.00573,1.20234,1.25222.00006,1.527.00668,3.0541-.00473,4.581-.00255.34169.07321.48228.43217.47849q2.77062-.02925,5.54164-.00065c.36465.00357.47028-.11645.46674-.49847-.016-1.72923.00635-3.45891-.01568-5.188-.00583-.45664.07292-.64484.5577-.62831,1.10164.03758,1.10256.00746,1.10256,1.19632,0,4.34189-.00948,8.68384.01187,13.02561.00266.54229-.14358.68377-.63722.66589-1.02516-.03714-1.02607-.00857-1.02609-1.121,0-1.83978-.01189-3.67972.00876-5.51924.00473-.4209-.1193-.52288-.4998-.51862-1.81253.02033-3.62558.0245-5.438-.00221-.42945-.00633-.51086.15432-.50742.56655.01662,1.98681-.00449,3.974.01629,5.96072.00479.45883-.078.6476-.56064.63462-1.135-.03053-1.13561-.00244-1.13561-1.22525Q129.93169,64.65371,129.93171,61.50767Z"/><path d="M74.37542,54.15021c.96477,0,.96761-.001,1.2732.99819q2.042,6.67683,4.089,13.35191c.13548.43878.04225.523-.36392.52037-1.18658-.00765-1.1837.00741-1.576-1.21225-.29049-.90319-.6017-1.799-.87884-2.70675-.09293-.30438-.20724-.44481-.537-.44-1.44987.02131-2.90027.0187-4.35023.00152-.30161-.00357-.42264.11541-.50287.40713-.30528,1.11-.65843,2.20589-.93594,3.32333-.11823.4761-.29983.6496-.76808.63014-.91775-.03814-.91461-.00787-.62423-.96279q1.96777-6.47122,3.93109-12.944C73.425,54.15069,73.42354,54.15021,74.37542,54.15021Zm-.02624,2.256-.12747-.00461q-.99335,3.25788-1.98766,6.51542c-.07695.25168.01574.32514.24428.32406q1.78366-.00841,3.56737.00072c.2494.00139.33311-.05017.24354-.34537C75.63373,60.73607,74.99394,58.57029,74.34918,56.40622Z"/><path d="M148.95068,67.04177a3.64,3.64,0,0,1-2.45008,2.05867,4.62158,4.62158,0,0,1-2.3537-.0662,3.06343,3.06343,0,0,1-2.219-2.61922,3.42817,3.42817,0,0,1,1.66077-3.50157,7.34762,7.34762,0,0,1,3.51845-.73754q.75028-.0199,1.50137.00064c.2692.00721.34583-.10459.35655-.38761.06434-1.70254-.5904-2.526-2.1811-2.72006a3.778,3.778,0,0,0-1.73427.20632,2.12664,2.12664,0,0,0-1.22235,1.12283c-.09578.19522-.031.5717-.30705.56256a5.67052,5.67052,0,0,1-1.26648-.23626c-.15314-.04125-.04917-.22552-.0257-.34073a2.74933,2.74933,0,0,1,1.35681-1.9204,5.80644,5.80644,0,0,1,5.05923-.40091,2.95825,2.95825,0,0,1,1.78043,2.8573c.11562,1.67047.02783,3.34558.0479,5.01852a16.23229,16.23229,0,0,0,.14519,2.69276c.016.08894.04175.24471.00839.2644-.39845.23509-.83414.07757-1.25373.10854-.27844.02056-.27113-.21786-.28857-.42021C149.04434,68.12666,149.00488,67.66974,148.95068,67.04177Zm-3.32268.83158c2.00992.04292,3.46567-1.79659,3.33068-4.159-.0162-.28367-.19332-.2561-.36425-.25666-.50016-.00164-1.0022-.02883-1.50007.00739a5.35674,5.35674,0,0,0-2.55023.593,2.18276,2.18276,0,0,0-.95346,2.36383,1.72455,1.72455,0,0,0,1.53889,1.4038A4.93707,4.93707,0,0,0,145.628,67.87335Z"/><path d="M95.41414,63.64065c-1.105.00011-2.21028.01766-3.31467-.00908-.40483-.0098-.50056.12506-.45258.53959a7.52275,7.52275,0,0,0,.22166,1.40766,3.02635,3.02635,0,0,0,2.69582,2.21456,2.69971,2.69971,0,0,0,2.81507-1.72449c.16563-.36737.3664-.35095.65473-.29806,1.15775.21235,1.19445.27248.51565,1.31464a4.4702,4.4702,0,0,1-4.55359,2.08673,4.13343,4.13343,0,0,1-3.52824-2.77,7.17965,7.17965,0,0,1,.277-6.31307A4.24142,4.24142,0,0,1,95.20221,57.736a4.19193,4.19193,0,0,1,3.68561,3.2938,9.92154,9.92154,0,0,1,.344,2.1688c.02748.32747-.07158.45435-.39934.44907C97.69328,63.62928,96.55364,63.64054,95.41414,63.64065Zm-.80764-1.28487c.844,0,1.68827-.0107,2.532.00577.29785.00582.39228-.09453.36047-.413a3.24272,3.24272,0,0,0-1-2.22222,2.50936,2.50936,0,0,0-2.90289-.4394,3.34343,3.34343,0,0,0-1.838,2.7381c-.04507.30236.09251.3349.31624.33323C92.91838,62.352,93.76245,62.35577,94.6065,62.35578Z"/><path d="M185.219,63.50033a6.58346,6.58346,0,0,1,.763-3.44154,4.24956,4.24956,0,0,1,4.21063-2.34018,4.09652,4.09652,0,0,1,3.72025,2.78938,7.50378,7.50378,0,0,1,.1069,5.57983,4.46166,4.46166,0,0,1-4.7928,3.1057c-1.79284-.11517-3.23682-1.52025-3.77371-3.68082A7.00273,7.00273,0,0,1,185.219,63.50033Zm1.72563-.11651a7.85628,7.85628,0,0,0,.39318,2.56713,2.59208,2.59208,0,0,0,2.33435,1.878A2.39885,2.39885,0,0,0,192.1798,66.25a7.00084,7.00084,0,0,0-.02331-5.65336,2.41374,2.41374,0,0,0-2.34665-1.512,2.49885,2.49885,0,0,0-2.3274,1.54724A6.5726,6.5726,0,0,0,186.94461,63.38382Z"/><path d="M31.23452,63.39354a6.83045,6.83045,0,0,1-1.05161,3.83931,4.30281,4.30281,0,0,1-4.45146,1.92846,4.01152,4.01152,0,0,1-3.26924-2.85762,7.73529,7.73529,0,0,1-.0881-5.43538,4.40108,4.40108,0,0,1,8.501.18648A8.165,8.165,0,0,1,31.23452,63.39354Zm-1.75541.01335A7.51417,7.51417,0,0,0,29.11078,61,2.74961,2.74961,0,0,0,26.578,59.07665a2.61427,2.61427,0,0,0-2.502,1.94471,7.71831,7.71831,0,0,0,.04191,4.96805,2.56556,2.56556,0,0,0,4.82511.27475A6.55872,6.55872,0,0,0,29.47911,63.40689Z"/><path d="M37.5312,69.2124a4.17473,4.17473,0,0,1-4.2753-2.92585,7.85155,7.85155,0,0,1-.18412-5.12628,4.49506,4.49506,0,0,1,4.41748-3.45912,4.33854,4.33854,0,0,1,4.20258,3.42332,7.40136,7.40136,0,0,1-.2937,5.36561A4.23246,4.23246,0,0,1,37.5312,69.2124Zm-3.01943-5.47565a7.01226,7.01226,0,0,0,.36316,2.14845A2.57447,2.57447,0,0,0,37.2152,67.826a2.44,2.44,0,0,0,2.56393-1.66047,7.0418,7.0418,0,0,0-.00928-5.45467,2.45331,2.45331,0,0,0-2.48921-1.6246,2.54742,2.54742,0,0,0-2.34638,1.776A7.36849,7.36849,0,0,0,34.51177,63.73675Z"/><path d="M198.07687,59.65646a3.85241,3.85241,0,0,1,3.01387-1.941,3.30148,3.30148,0,0,1,3.59395,3.31887c.16429,2.53293.0523,5.07382.06874,7.61117.00091.13935.02674.33521-.1668.34348a8.13477,8.13477,0,0,1-1.29081-.00717c-.26666-.0313-.15057-.33026-.15127-.50745-.00843-2.11521-.00547-4.23047-.00549-6.34571,0-.12875.00078-.25751-.00018-.38626-.01024-1.36511-.39047-2.06054-1.3244-2.423a2.53511,2.53511,0,0,0-2.79791.90734,3.93625,3.93625,0,0,0-.8299,2.4397q-.03818,2.89626-.0145,5.79322c.00344.43391-.11267.5665-.52125.56194-1.10753-.01237-1.1077.00664-1.1077-1.1961,0-3.09009.00894-6.18025-.00962-9.27022-.00276-.46146.12154-.59661.55055-.587.99216.02223.99262,0,.99273,1.08306Q198.07689,59.35393,198.07687,59.65646Z"/><path d="M102.99354,59.62359a4.17158,4.17158,0,0,1,2.52185-1.83122,3.32055,3.32055,0,0,1,4.09176,3.26177c.125,2.0386.02554,4.08218.04925,6.12337q.00607.52424,0,1.0486c-.00878.88025.08642.7787-.75913.78457-.84148.00584-.84152.00164-.84153-.90235,0-2.11562-.00465-4.23127.002-6.34687a2.27047,2.27047,0,0,0-1.20875-2.39621,2.45044,2.45044,0,0,0-2.7907.733,4.27473,4.27473,0,0,0-.97585,2.99467c-.0073,1.78445-.01808,3.56923.00875,5.35325.007.46817-.12255.5864-.54831.57653-1.06329-.02465-1.06375-.00245-1.06375-1.13459,0-3.09065.00979-6.18137-.00987-9.27188-.00315-.49569.11193-.66929.59832-.64986.9249.03693.926.00675.926.99622Q102.99357,59.29309,102.99354,59.62359Z"/><path d="M45.06857,67.65528c1.68608,0,3.34155.02957,4.99518-.01629.56661-.01572.54618.27794.5528.69931.00692.44022-.01935.69727-.56227.68835-2.19034-.036-4.38158-.02425-6.57231-.00611-.38114.00316-.48955-.10182-.49955-.51946a2.46472,2.46472,0,0,1,.44471-1.52186c1.57519-2.34525,3.11862-4.71472,4.67248-7.07623.097-.14741.18744-.29971.28194-.45134-.14119-.16648-.30536-.09316-.44671-.09385-1.3628-.00671-2.72573-.01358-4.08838.00293-.32219.00391-.45589-.06749-.44149-.44784.04224-1.11511-.14257-.92386.87041-.93071q2.79453-.01889,5.58922.00353c.23881.00165.59753-.16146.69762.14264a1.24957,1.24957,0,0,1-.12793,1.10378c-.69761,1.04909-1.37755,2.11152-2.06395,3.16907q-1.559,2.4019-3.11592,4.80531A.68626.68626,0,0,0,45.06857,67.65528Z"/><path d="M60.91717,62.44406c0,3.6048-.00785,7.20964.00971,10.81434.00225.46285-.0759.64926-.55614.62318-.915-.04969-.77762.05448-.77805-.82966q-.00518-10.704.00344-21.40807c.00019-.219-.13026-.57417.11861-.63547a2.6989,2.6989,0,0,1,1.12418.00676c.15751.03.07474.32916.075.50419Q60.92044,56.98169,60.91717,62.44406Z"/><path d="M120.06987,62.3898c0,3.62318-.00794,7.24641.00982,10.8695.00227.46453-.07852.648-.55712.6222-.914-.04932-.77678.05429-.7772-.83051q-.0052-10.704.00348-21.40807c.0002-.21876-.13074-.57363.11937-.63485a2.70229,2.70229,0,0,1,1.124.00777c.15676.03.07417.32931.07437.50441Q120.07314,56.955,120.06987,62.3898Z"/><path d="M179.95051,62.94509c0-1.08548-.01181-2.17118.00693-3.25629.00592-.3425-.09452-.45636-.412-.4334-.36086.0261-.7252-.00677-1.08709.00955-.26636.012-.3514-.09081-.36166-.3791-.03493-.98252-.04635-.98206.82862-.98212,1.02529-.00007,1.02529-.00007,1.02529-1.09071v-.44155c0-1.32559.0002-1.31449,1.25388-1.34085.28845-.00606.35345.10228.34959.37449-.00965.68056.01227,1.36188-.00778,2.04191-.01066.36146.10507.48334.44552.464.49923-.02842,1.00149.008,1.5014-.01261.3001-.01238.3848.1108.3783.41658-.02495,1.17241.10931.91081-.8597.94783-.46271.01767-1.06472-.20712-1.35163.08766-.31638.32508-.10143.97917-.10239,1.48783-.00347,1.82071-.01169,3.64241.04,5.46186.03106,1.09339.53556,1.53955,1.56076,1.53785.13749-.00023.27489-.0263.41242-.02746.2684-.00226.63152-.21092.78152.01876.188.288.05279.71071.0587,1.07513.003.18461-.14084.19086-.25473.20228a6.56583,6.56583,0,0,1-2.2641-.00324,2.43637,2.43637,0,0,1-1.84153-2.19238,3.64888,3.64888,0,0,1-.08182-.59972c-.00791-1.122-.00382-2.24415-.00382-3.36625Z"/><path d="M81.48535,61.50453c.00009-2.27942.00917-4.55893-.00828-6.8382-.00314-.41063.10386-.53142.49284-.52639,1.09893.01421,1.09915-.00505,1.09915,1.19182,0,4.35664-.00717,8.71332.01014,13.06989.00191.4791-.10682.63577-.57091.62208-1.02231-.03014-1.023-.00364-1.023-1.067Q81.48525,64.73066,81.48535,61.50453Z"/><path d="M86.21467,61.50734c0-2.27943.00922-4.55894-.00851-6.83821-.00317-.40723.09389-.53478.48777-.52954,1.10428.0147,1.10451-.00525,1.10451,1.18936q0,6.47984-.00018,12.95965c-.00006.72173-.001.72173-.66178.72323-.92182.00211-.92182.00211-.92183-.9971Q86.21464,64.761,86.21467,61.50734Z"/><path d="M174.85767,61.5636c0-2.29864.009-4.59737-.0085-6.89586-.00308-.40361.087-.53476.48351-.52849,1.09256.01728,1.09285-.00359,1.09285,1.13356,0,4.37662-.00674,8.75328.0098,13.12983.00177.46606-.08172.63921-.55785.62239-1.0189-.036-1.01983-.006-1.01983-1.11715Q174.85765,64.73574,174.85767,61.5636Z"/><path d="M171.60667,63.48963c-.00007,1.65349-.01071,3.30711.0074,4.96038.00453.41335-.08384.579-.51.57288-1.08089-.0156-1.08117.007-1.08117-1.16786,0-3.08652.00908-6.17311-.00965-9.2595-.00285-.46786.08915-.64385.56359-.62937,1.02907.0314,1.02986.00332,1.02988,1.11415Q171.60679,61.285,171.60667,63.48963Z"/><path d="M169.91931,55.0938c0-.94361,0-.94361.90522-.94359.85243,0,.85243,0,.85243.93851,0,.97111,0,.97111-.92511.97107C169.91931,56.05976,169.91931,56.05976,169.91931,55.0938Z"/></svg>
\ No newline at end of file
diff --git a/content/zh-cn/case-studies/booz-allen/booz-allen_featured_logo.png b/content/zh-cn/case-studies/booz-allen/booz-allen_featured_logo.png
new file mode 100644
index 0000000000..f9bc64ba3b
Binary files /dev/null and b/content/zh-cn/case-studies/booz-allen/booz-allen_featured_logo.png differ
diff --git a/content/zh-cn/case-studies/booz-allen/index.html b/content/zh-cn/case-studies/booz-allen/index.html
new file mode 100644
index 0000000000..7b53dc01ae
--- /dev/null
+++ b/content/zh-cn/case-studies/booz-allen/index.html
@@ -0,0 +1,80 @@
+---
+title: Booz Allen Case Study
+linkTitle: Booz Allen Hamilton
+case_study_styles: true
+cid: caseStudies
+logo: booz-allen-featured-logo.svg
+featured: true
+weight: 2
+quote: >
+  Kubernetes is a great solution for us. It allows us to rapidly iterate on our clients' demands.
+
+new_case_study_styles: true
+heading_background: /images/case-studies/booz-allen/banner4.jpg
+heading_title_text: Booz Allen Hamilton
+use_gradient_overlay: true
+subheading: >
+  How Booz Allen Hamilton Is Helping Modernize the Federal Government with Kubernetes
+case_study_details:
+  - Company: Booz Allen Hamilton
+  - Location: United States
+  - Industry: Government
+---
+
+<h2>Challenge</h2>
+
+<p>In 2017, Booz Allen Hamilton's Strategic Innovation Group worked with the federal government to relaunch the decade-old recreation.gov website, which provides information and real-time booking for more than 100,000 campsites and facilities on federal lands across the country. The infrastructure needed to be agile, reliable, and scalable—as well as repeatable for the other federal agencies that are among Booz Allen Hamilton's customers.</p>
+
+<h2>Solution</h2>
+
+<p>"The only way that we thought we could be successful with this problem across all the different agencies is to create a microservice architecture and containers, so that we could be very dynamic and very agile to any given agency for whatever requirements that they may have," says Booz Allen Hamilton Senior Lead Technologist Martin Folkoff. To meet those requirements, Folkoff's team looked to Kubernetes for orchestration.</p>
+
+<h2>Impact</h2>
+
+<p>With the recreation.gov Kubernetes platform, changes can be implemented in about 30 minutes, compared to the multiple hours or even days legacy government applications require to review the code, get approval, and deploy the fix. Recreation.gov deploys to production on average 10 times a day. With monitoring, security, and logging built in, developers can create and publish new services to production within a week. Additionally, Folkoff says, "supporting the large, existing monoliths in the government is extremely expensive," and migrating into a more modern platform has resulted in perhaps 50% cost savings.</p>
+
+{{< case-studies/quote
+  image="/images/case-studies/booz-allen/banner2.jpg"
+  author="JOSH BOYD, CHIEF TECHNOLOGIST AT BOOZ ALLEN HAMILTON"
+>}}
+"When there's a regulatory change in an agency, or a legislative change in Congress, or an executive order that changes the way you do business, how do I deploy that and get that out to the people who need it rapidly? At the end of the day, that's the problem we're trying to help the government solve with tools like Kubernetes."
+{{< /case-studies/quote >}}
+​
+​{{< case-studies/lead >}}
+The White House launched an IT modernization effort in 2017, and in addition to improving cybersecurity and shifting to the public cloud and a consolidated IT model, "the federal government is looking to provide a better experience to citizens in every way that we interact with the government through every channel," says Booz Allen Hamilton Senior Lead Technologist Martin Folkoff.
+{{< /case-studies/lead >}}
+
+<p>To that end, Folkoff's Strategic Innovation Group worked with the federal government last year to relaunch the decade-old recreation.gov website, which provides information and real-time booking for more than 100,000 campsites and facilities on federal lands across the country.</p>
+
+<p>The infrastructure needed to be agile, reliable, and scalable—as well as repeatable for the other federal agencies that are among Booz Allen Hamilton's customers. "The only way that we thought we could be successful with this problem across all the different agencies is to create a microservice architecture, so that we could be very dynamic and very agile to any given agency for whatever requirements that they may have," says Folkoff.</p>
+
+{{< case-studies/quote author="MARTIN FOLKOFF, SENIOR LEAD TECHNOLOGIST AT BOOZ ALLEN HAMILTON" >}}
+"With CNCF, there's a lot of focus on scale, and so there's a lot of comfort knowing that as the project grows, we're going to be comfortable using that tool set."
+{{< /case-studies/quote >}}
+
+<p>Booz Allen Hamilton, which has provided consulting services to the federal government for more than a century, introduced microservices, Docker containers, and AWS to its federal agency clients about five years ago. The next logical step was Kubernetes for orchestration. "Knowing that we had to be really agile and really reliable and scalable, we felt that the only technology that we know that can enable those kinds of things are the ones the CNCF provides," Folkoff says. "One of the things that is always important for the government is to make sure that the things that we build really endure. Using technology that is supported across multiple different companies and has strong governance gives people a lot of confidence."</p>
+
+<p>Kubernetes was also aligned with the government's open source and IT modernization initiatives, so there has been an uptick in its usage at federal agencies over the past two years. "Now that Kubernetes is becoming offered as a service by the cloud providers like AWS and Microsoft, we're starting to see even more interest," says Chief Technologist Josh Boyd. Adds Folkoff: "With CNCF, there's a lot of focus on scale, and so there's a lot of comfort knowing that as the project grows, we're going to be comfortable using that tool set."</p>
+
+<p>The greenfield recreation.gov project allowed the team to build a new Kubernetes-enabled site running on AWS, and the migration lasted only a week, when the old site didn't take bookings. "For the actual transition, we just swapped a DNS server, and it only took about 35 seconds between the old site being down and our new site being up and available," Folkoff adds. </p>
+​
+{{< case-studies/quote
+  image="/images/case-studies/booz-allen/banner1.png"
+  author="MARTIN FOLKOFF, SENIOR LEAD TECHNOLOGIST AT BOOZ ALLEN HAMILTON"
+>}}
+"Kubernetes alone enables a dramatic reduction in cost as resources are prioritized to the day's event"
+{{< /case-studies/quote >}}
+
+<p>In addition to its work with the Department of Interior for recreation.gov, Booz Allen Hamilton has brought Kubernetes to various Defense, Intelligence, and civilian agencies. Says Boyd: "When there's a regulatory change in an agency, or a legislative change in Congress, or an executive order that changes the way you do business, how do I deploy that and get that out to the people who need it rapidly? At the end of the day, that's the problem we're trying to help the government solve with tools like Kubernetes."</p>
+
+<p>For recreation.gov, the impact was clear and immediate. With the Kubernetes platform, Folkoff says, "if a new requirement for a permit comes out, we have the ability to design and develop and implement that completely independently of reserving a campsite. It provides a much better experience to users." Today, changes can be implemented in about 30 minutes, compared to the multiple hours or even days legacy government applications require to review the code, get approval, and deploy the fix. Recreation.gov deploys to production on average 10 times a day.</p>
+
+<p>Developer velocity has been improved. "When I want to do monitoring or security or logging, I don't have to do anything to my services or my application to enable that anymore," says Boyd. "I get all of this magic just by being on the Kubernetes platform." With all of those things built in, developers can create and publish new services to production within one week. </p>
+
+<p>Additionally, Folkoff says, "supporting the large, existing monoliths in the government is extremely expensive," and migrating into a more modern platform has resulted in perhaps 50% cost savings. "Kubernetes alone enables a dramatic reduction in cost as resources are prioritized to the day's event," he says. "For example, during a popular campsite release, camping-related services are scaled out while permit services are scaled down."</p>
+
+<p>So far, "Kubernetes is a great solution for us," says Folkoff. "It allows us to rapidly iterate on our clients' demands." Looking ahead, the team sees further adoption of the Kubernetes platform across federal agencies. Says Boyd: "You get the ability for the rapid delivery of business value for your customers. You now have observability into everything that you're doing. You don't have these onesies and twosies unicorn servers anymore. Now everything that you deploy is deployed in the same way, it's all instrumented the same way, and it's all built and deployed the same way through our CI/CD processes."</p>
+
+<p>They also see a push toward re-platforming. "There's still a lot of legacy workloads out there," says Boyd. "We've got the new challenges of greenfield development and integration with legacy systems, but also that brown field of 'Hey, how do I take this legacy monolith and get it onto a platform where now it's instrumented with all the magic of the Kubernetes platform without having to do a whole lot to my application?' I think re-platforming is a pretty big use case for the government right now."</p>
+
+<p>And given the success that they've had with Kubernetes so far, Boyd says, "I think at this point that technology is becoming pretty easy to sell." Adds Folkoff: "People are really excited about being able to deploy, scale, be reliable, and do cheaper maintenance of all of this."</p>
diff --git a/content/zh/case-studies/bose/bose_featured_logo.png b/content/zh-cn/case-studies/bose/bose_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/bose/bose_featured_logo.png
rename to content/zh-cn/case-studies/bose/bose_featured_logo.png
diff --git a/content/zh/case-studies/bose/index.html b/content/zh-cn/case-studies/bose/index.html
similarity index 100%
rename from content/zh/case-studies/bose/index.html
rename to content/zh-cn/case-studies/bose/index.html
diff --git a/content/zh/case-studies/box/box_featured.png b/content/zh-cn/case-studies/box/box_featured.png
similarity index 100%
rename from content/zh/case-studies/box/box_featured.png
rename to content/zh-cn/case-studies/box/box_featured.png
diff --git a/content/zh/case-studies/box/box_logo.png b/content/zh-cn/case-studies/box/box_logo.png
similarity index 100%
rename from content/zh/case-studies/box/box_logo.png
rename to content/zh-cn/case-studies/box/box_logo.png
diff --git a/content/zh/case-studies/box/box_small.png b/content/zh-cn/case-studies/box/box_small.png
similarity index 100%
rename from content/zh/case-studies/box/box_small.png
rename to content/zh-cn/case-studies/box/box_small.png
diff --git a/content/zh/case-studies/box/index.html b/content/zh-cn/case-studies/box/index.html
similarity index 100%
rename from content/zh/case-studies/box/index.html
rename to content/zh-cn/case-studies/box/index.html
diff --git a/content/zh/case-studies/box/video.png b/content/zh-cn/case-studies/box/video.png
similarity index 100%
rename from content/zh/case-studies/box/video.png
rename to content/zh-cn/case-studies/box/video.png
diff --git a/content/zh/case-studies/buffer/buffer_featured.png b/content/zh-cn/case-studies/buffer/buffer_featured.png
similarity index 100%
rename from content/zh/case-studies/buffer/buffer_featured.png
rename to content/zh-cn/case-studies/buffer/buffer_featured.png
diff --git a/content/zh/case-studies/buffer/buffer_logo.png b/content/zh-cn/case-studies/buffer/buffer_logo.png
similarity index 100%
rename from content/zh/case-studies/buffer/buffer_logo.png
rename to content/zh-cn/case-studies/buffer/buffer_logo.png
diff --git a/content/zh/case-studies/buffer/index.html b/content/zh-cn/case-studies/buffer/index.html
similarity index 100%
rename from content/zh/case-studies/buffer/index.html
rename to content/zh-cn/case-studies/buffer/index.html
diff --git a/content/zh/case-studies/capital-one/capitalone_featured_logo.png b/content/zh-cn/case-studies/capital-one/capitalone_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/capital-one/capitalone_featured_logo.png
rename to content/zh-cn/case-studies/capital-one/capitalone_featured_logo.png
diff --git a/content/zh/case-studies/capital-one/index.html b/content/zh-cn/case-studies/capital-one/index.html
similarity index 100%
rename from content/zh/case-studies/capital-one/index.html
rename to content/zh-cn/case-studies/capital-one/index.html
diff --git a/content/zh/case-studies/cern/cern_featured_logo.png b/content/zh-cn/case-studies/cern/cern_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/cern/cern_featured_logo.png
rename to content/zh-cn/case-studies/cern/cern_featured_logo.png
diff --git a/content/zh/case-studies/cern/index.html b/content/zh-cn/case-studies/cern/index.html
similarity index 100%
rename from content/zh/case-studies/cern/index.html
rename to content/zh-cn/case-studies/cern/index.html
diff --git a/content/zh/case-studies/chinaunicom/chinaunicom_featured_logo.png b/content/zh-cn/case-studies/chinaunicom/chinaunicom_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/chinaunicom/chinaunicom_featured_logo.png
rename to content/zh-cn/case-studies/chinaunicom/chinaunicom_featured_logo.png
diff --git a/content/zh/case-studies/chinaunicom/index.html b/content/zh-cn/case-studies/chinaunicom/index.html
similarity index 100%
rename from content/zh/case-studies/chinaunicom/index.html
rename to content/zh-cn/case-studies/chinaunicom/index.html
diff --git a/content/zh/case-studies/city-of-montreal/city-of-montreal_featured_logo.png b/content/zh-cn/case-studies/city-of-montreal/city-of-montreal_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/city-of-montreal/city-of-montreal_featured_logo.png
rename to content/zh-cn/case-studies/city-of-montreal/city-of-montreal_featured_logo.png
diff --git a/content/zh/case-studies/city-of-montreal/index.html b/content/zh-cn/case-studies/city-of-montreal/index.html
similarity index 100%
rename from content/zh/case-studies/city-of-montreal/index.html
rename to content/zh-cn/case-studies/city-of-montreal/index.html
diff --git a/content/zh/case-studies/crowdfire/crowdfire_featured_logo.png b/content/zh-cn/case-studies/crowdfire/crowdfire_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/crowdfire/crowdfire_featured_logo.png
rename to content/zh-cn/case-studies/crowdfire/crowdfire_featured_logo.png
diff --git a/content/zh/case-studies/crowdfire/index.html b/content/zh-cn/case-studies/crowdfire/index.html
similarity index 100%
rename from content/zh/case-studies/crowdfire/index.html
rename to content/zh-cn/case-studies/crowdfire/index.html
diff --git a/content/zh-cn/case-studies/denso/denso_featured_logo.svg b/content/zh-cn/case-studies/denso/denso_featured_logo.svg
new file mode 100644
index 0000000000..e2b26b2c8c
--- /dev/null
+++ b/content/zh-cn/case-studies/denso/denso_featured_logo.svg
@@ -0,0 +1 @@
+<svg id="Layer_1" data-name="Layer 1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" viewBox="0 0 215 127"><defs><style>.cls-1{fill:none;}.cls-2{fill:transparent;}.cls-3{clip-path:url(#clip-path);}.cls-4{fill:#ee3248;fill-rule:evenodd;}</style><clipPath id="clip-path"><rect class="cls-1" x="4.70501" y="-8.81268" width="206.90403" height="145.3255"/></clipPath></defs><rect class="cls-2" x="-3.37342" y="-3.34411" width="223.25536" height="134.51135"/><g class="cls-3"><g class="cls-3"><path class="cls-4" d="M28.02166,50.76936l7.69058-.0617c6.9525.12305,7.75228,4.1837,4.61435,13.41275-2.64567,7.87531-6.76768,12.67414-14.58165,12.61279h-6.091ZM169.22325,61.044c4.55274-11.01316,10.52065-15.19686,22.76431-15.50454,10.9518-.24609,15.81224,4.79908,11.813,17.41187C199.49376,76.67151,191.67987,82.209,179.86693,82.209c-12.98175.06134-16.24263-7.87514-10.64368-21.165m8.429.73843c2.83006-7.01411,6.95215-11.87463,13.04345-11.93633,5.47555-.06125,6.46007,3.938,3.99905,12.36706-3.13794,10.82842-7.69068,15.5659-13.90466,15.44286-6.89106-.06135-6.768-6.82946-3.13784-15.87359m-15.07382-8.67536,2.09172-6.02932a34.76316,34.76316,0,0,0-10.95146-1.66134c-7.62924-.0616-13.35114,2.33806-15.6892,7.69066-3.69162,8.183,1.4766,10.70564,7.69084,13.59749,9.10583,4.245,3.876,11.56684-4.86069,10.82842-3.50688-.3077-6.58311-1.90724-9.65961-3.38384l-1.96859,6.15264A33.79646,33.79646,0,0,0,142.64393,82.209c9.0444-.55369,14.64308-4.184,16.91972-9.90595,2.584-6.52159-1.41525-10.52064-7.38324-12.42789-12.42831-3.99939-4.98338-15.75088,10.398-6.76811M95.57659,46.15492a19.153,19.153,0,0,1,2.215,3.62993L87.76306,81.47059H93.854l8.36766-26.45618,9.59791,26.45618h8.61375l-.36939-.98451,10.89012-34.33116h-6.15273l-7.99827,25.34837-9.22879-25.34837c-3.999,0-7.99836.06135-11.99767,0m-34.39259,0a14.395,14.395,0,0,1,2.21468,3.62993L53.43173,81.47059H79.826L81.05656,77.533H63.21437L67.152,65.16635H78.96492l1.23051-3.87627H68.3825L71.95081,49.9695H89.17822L90.347,46.15492c-9.72121,0-19.44208.06135-29.163,0m-42.26817,0a16.4482,16.4482,0,0,1,2.21468,3.62993L11.102,81.47059h8.61366l5.04517-.06135c14.766,0,21.77988-7.32179,24.73333-16.85828,4.245-13.5973-.92316-18.33469-13.47418-18.33469Z"/></g></g></svg>
\ No newline at end of file
diff --git a/content/zh-cn/case-studies/denso/index.html b/content/zh-cn/case-studies/denso/index.html
new file mode 100644
index 0000000000..31fb1279b9
--- /dev/null
+++ b/content/zh-cn/case-studies/denso/index.html
@@ -0,0 +1,82 @@
+---
+title: Denso Case Study
+linkTitle: Denso
+case_study_styles: true
+cid: caseStudies
+logo: denso_featured_logo.svg
+featured: true
+weight: 4
+quote: >
+  We got Kubernetes experts involved on our team, and it dramatically accelerated development speed.
+
+new_case_study_styles: true
+heading_background: /images/case-studies/denso/banner2.jpg
+heading_title_text: Denso
+use_gradient_overlay: true
+subheading: >
+  How DENSO Is Fueling Development on the Vehicle Edge with Kubernetes
+case_study_details:
+  - Company: Denso
+  - Location: Japan
+  - Industry: Automotive, Edge
+---
+
+<h2>Challenge</h2>
+
+<p>DENSO Corporation is one of the biggest automotive components suppliers in the world. With the advent of connected cars, the company launched a Digital Innovation Department to expand into software, working on vehicle edge and vehicle cloud products. But there were several technical challenges to creating an integrated vehicle edge/cloud platform: "the amount of computing resources, the occasional lack of mobile signal, and an enormous number of distributed vehicles," says R&D Product Manager Seiichi Koizumi.</p>
+
+<h2>Solution</h2>
+
+<p>Koizumi's team realized that because mobility services evolve every day, they needed the flexibility of the cloud native ecosystem for their platform. After considering other orchestrators, DENSO went with Kubernetes for orchestration and added Prometheus, Fluentd, Envoy, Istio, and Helm to the platform. Today, DENSO is using a vehicle edge computer, a private Kubernetes cloud, and managed Kubernetes (GKE, EKS, AKS).</p>
+
+<h2>Impact</h2>
+
+<p>Critical layer features can take 2-3 years to implement in the traditional, waterfall model of development at DENSO. With the Kubernetes platform and agile methods, there's a 2-month development cycle for non-critical software. Now, ten new applications are released a year, and a new prototype is introduced every week. "By utilizing Kubernetes managed services, such as GKE/EKS/AKS, we can unify the environment and simplify our maintenance operation," says Koizumi.</p>
+
+{{< case-studies/quote
+  image="/images/case-studies/denso/banner1.png"
+  author="SEIICHI KOIZUMI, R&D PRODUCT MANAGER, DIGITAL INNOVATION DEPARTMENT AT DENSO"
+>}}
+"Another disruptive innovation is coming, so to survive in this situation, we need to change our culture."
+{{< /case-studies/quote >}}
+
+{{< case-studies/lead >}}
+Spun off from Toyota in 1949, DENSO Corporation is one of the top automotive suppliers in the world today, with consolidated net revenue of $48.3 billion.
+{{< /case-studies/lead >}}
+
+<p>The company's mission is "contributing to a better world by creating value together with a vision for the future"—and part of that vision in recent years has been development on the vehicle edge and vehicle cloud.</p>
+
+<p>With the advent of connected cars, DENSO established a Digital Innovation Department to expand its business beyond the critical layer of the engine, braking systems, and other automotive parts into the non-critical analytics and entertainment layer. Comparing connected cars to smartphones, R&D Product Manager Seiichi Koizumi says DENSO wants the ability to quickly and easily develop and install apps for the "blank slate" of the car, and iterate them based on the driver's preferences. Thus "we need a flexible application platform," he says.</p>
+
+<p>But working on vehicle edge and vehicle cloud products meant there were several technical challenges: "the amount of computing resources, the occasional lack of mobile signal, and an enormous number of distributed vehicles," says Koizumi. "We are tackling these challenges to create an integrated vehicle edge/cloud platform."</p>
+
+{{< case-studies/quote author="SEIICHI KOIZUMI, R&D PRODUCT MANAGER, DIGITAL INNOVATION DEPARTMENT AT DENSO" >}}
+"We got Kubernetes experts involved on our team, and it dramatically accelerated development speed."
+{{< /case-studies/quote >}}
+
+<p>Koizumi's team realized that because mobility services evolve every day, they needed the flexibility of the cloud native ecosystem for their platform. As they evaluated technologies, they were led by these criteria: Because their service-enabler business needed to support multiple cloud and on-premise environments, the solution needed to be cloud agnostic, with no vendor lock-in and open governance. It also had to support an edge-cloud integrated environment.</p>
+
+<p>After considering other orchestrators, DENSO went with Kubernetes for orchestration and added Prometheus, Fluentd, Envoy, Istio, and Helm to the platform. During implementation, the team used "design thinking to clarify use cases and their value proposition," says Koizumi. Next, an agile development team worked on a POC, then an MVP, in DevOps style. "Even in the development phase, we are keeping a channel to end users," he adds.</p>
+
+<p>One lesson learned during this process was the value of bringing in experts. "We tried to learn Kubernetes and cloud native technologies from scratch, but it took more time than expected," says Koizumi. "We got Kubernetes experts involved on our team, and it dramatically accelerated development speed."</p>
+
+{{< case-studies/quote
+  image="/images/case-studies/denso/banner4.jpg"
+  author="SEIICHI KOIZUMI, R&D PRODUCT MANAGER, DIGITAL INNOVATION DEPARTMENT AT DENSO"
+>}}
+"By utilizing Kubernetes managed services, such as GKE/EKS/AKS, we can unify the environment and simplify our maintenance operation."
+{{< /case-studies/quote >}}
+
+<p>Today, DENSO is using a vehicle edge computer, a private Kubernetes cloud, and managed Kubernetes on GKE, EKS, and AKS. "We are developing a vehicle edge/cloud integrated platform based on a microservice and service mesh architecture," says Koizumi. "We extend cloud into multiple vehicle edges and manage it as a unified platform."</p>
+
+<p>Cloud native has enabled DENSO to deliver applications via its new dash cam, which has a secure connection that collects data to the cloud. "It's like a smartphone," he says. "We are installing new applications and getting the data through the cloud, and we can keep updating new applications all through the dash cam."</p>
+
+<p>The unified cloud native platform, combined with agile development, has had a positive impact on productivity. Critical layer features—those involving engines or braking systems, for example—can take 2-3 years to implement at DENSO, because of the time needed to test safety, but also because of the traditional, waterfall model of development. With the Kubernetes platform and agile methods, there's a 2-month development cycle for non-critical software. Now, ten new applications are released a year, and with the department's scrum-style development, a new prototype is introduced every week.</p>
+
+<p>Application portability has also led to greater developer efficiency. "There's no need to care about differences in the multi-cloud platform anymore," says Koizumi. Now, "we are also trying to have the same portability between vehicle edge and cloud platform."</p>
+
+<p>Another improvement: Automotive Tier-1 suppliers like DENSO always have multiple Tier-2 suppliers. "To provide automotive-grade high-availability services, we tried to do the same thing on a multi-cloud platform," says Koizumi. Before Kubernetes, maintaining two different systems simultaneously was difficult. "By utilizing Kubernetes managed services, such as GKE/EKS/AKS, we can unify the environment and simplify our maintenance operation," he says.</p>
+
+<p>Cloud native has also profoundly changed the culture at DENSO. The Digital Innovation Department is known as "Noah's Ark," and it has grown from 2 members to 70—with plans to more than double in the next year. The way they operate is completely different from the traditional Japanese automotive culture. But just as the company embraced change brought by hybrid cars in the past decade, Koizumi says, they're doing it again now, as technology companies have moved into the connected car space. "Another disruptive innovation is coming," he says, "so to survive in this situation, we need to change our culture."</p>
+
+<p>Looking ahead, Koizumi and his team are expecting serverless and zero-trust security architecture to be important enhancements of Kubernetes. They are glad DENSO has come along for the ride. "Mobility service businesses require agility and flexibility," he says. "DENSO is trying to bring cloud native flexibility into the vehicle infrastructure."</p>
diff --git a/content/zh/case-studies/golfnow/golfnow_featured.png b/content/zh-cn/case-studies/golfnow/golfnow_featured.png
similarity index 100%
rename from content/zh/case-studies/golfnow/golfnow_featured.png
rename to content/zh-cn/case-studies/golfnow/golfnow_featured.png
diff --git a/content/zh/case-studies/golfnow/golfnow_logo.png b/content/zh-cn/case-studies/golfnow/golfnow_logo.png
similarity index 100%
rename from content/zh/case-studies/golfnow/golfnow_logo.png
rename to content/zh-cn/case-studies/golfnow/golfnow_logo.png
diff --git a/content/zh/case-studies/golfnow/index.html b/content/zh-cn/case-studies/golfnow/index.html
similarity index 100%
rename from content/zh/case-studies/golfnow/index.html
rename to content/zh-cn/case-studies/golfnow/index.html
diff --git a/content/zh/case-studies/haufegroup/haufegroup_featured.png b/content/zh-cn/case-studies/haufegroup/haufegroup_featured.png
similarity index 100%
rename from content/zh/case-studies/haufegroup/haufegroup_featured.png
rename to content/zh-cn/case-studies/haufegroup/haufegroup_featured.png
diff --git a/content/zh/case-studies/haufegroup/haufegroup_logo.png b/content/zh-cn/case-studies/haufegroup/haufegroup_logo.png
similarity index 100%
rename from content/zh/case-studies/haufegroup/haufegroup_logo.png
rename to content/zh-cn/case-studies/haufegroup/haufegroup_logo.png
diff --git a/content/zh/case-studies/haufegroup/index.html b/content/zh-cn/case-studies/haufegroup/index.html
similarity index 100%
rename from content/zh/case-studies/haufegroup/index.html
rename to content/zh-cn/case-studies/haufegroup/index.html
diff --git a/content/zh/case-studies/huawei/huawei_featured.png b/content/zh-cn/case-studies/huawei/huawei_featured.png
similarity index 100%
rename from content/zh/case-studies/huawei/huawei_featured.png
rename to content/zh-cn/case-studies/huawei/huawei_featured.png
diff --git a/content/zh/case-studies/huawei/huawei_logo.png b/content/zh-cn/case-studies/huawei/huawei_logo.png
similarity index 100%
rename from content/zh/case-studies/huawei/huawei_logo.png
rename to content/zh-cn/case-studies/huawei/huawei_logo.png
diff --git a/content/zh/case-studies/huawei/index.html b/content/zh-cn/case-studies/huawei/index.html
similarity index 100%
rename from content/zh/case-studies/huawei/index.html
rename to content/zh-cn/case-studies/huawei/index.html
diff --git a/content/zh/case-studies/ibm/ibm_featured_logo.png b/content/zh-cn/case-studies/ibm/ibm_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/ibm/ibm_featured_logo.png
rename to content/zh-cn/case-studies/ibm/ibm_featured_logo.png
diff --git a/content/zh-cn/case-studies/ibm/ibm_featured_logo.svg b/content/zh-cn/case-studies/ibm/ibm_featured_logo.svg
new file mode 100644
index 0000000000..f79fd7847b
--- /dev/null
+++ b/content/zh-cn/case-studies/ibm/ibm_featured_logo.svg
@@ -0,0 +1 @@
+<svg id="Layer_1" data-name="Layer 1" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 215.9892 128.40633"><defs><style>.cls-1{fill:transparent;}.cls-2{fill:#4c81c2;}</style></defs><title>ibm_featured_logo</title><rect class="cls-1" x="-5.9997" y="-8.99955" width="229.48853" height="143.9928"/><polygon class="cls-2" points="190.441 33.693 162.454 33.693 164.178 28.868 190.441 28.868 190.441 33.693"/><path class="cls-2" d="M115.83346,28.867l25.98433-.003,1.7014,4.83715c.01251-.00687-27.677.00593-27.677,0C115.84224,33.69422,115.82554,28.867,115.83346,28.867Z"/><path class="cls-2" d="M95.19668,28.86593A18.6894,18.6894,0,0,1,106.37358,33.7s-47.10052.00489-47.10052,0V28.86488Z"/><rect class="cls-2" x="22.31176" y="28.86593" width="32.72063" height="4.82558"/><path class="cls-2" d="M190.44115,42.74673h-31.194s1.70142-4.79994,1.691-4.80193h29.50305Z"/><polygon class="cls-2" points="146.734 42.753 115.832 42.753 115.832 37.944 145.041 37.944 146.734 42.753"/><path class="cls-2" d="M110.04127,37.94271a12.47,12.47,0,0,1,1.35553,4.80214H59.28193V37.94271Z"/><rect class="cls-2" x="22.31176" y="37.94271" width="32.72063" height="4.80214"/><polygon class="cls-2" points="156.056 51.823 157.768 46.998 181.191 47.005 181.191 51.812 156.056 51.823"/><polygon class="cls-2" points="148.237 46.997 149.944 51.823 125.046 51.823 125.046 46.997 148.237 46.997"/><path class="cls-2" d="M111.81,46.99627a15.748,15.748,0,0,1-.68923,4.82641H96.85137V46.99627Z"/><rect class="cls-2" x="31.43162" y="47.01973" width="14.06406" height="4.8019"/><rect class="cls-2" x="68.7486" y="46.99627" width="14.03976" height="4.82537"/><path class="cls-2" d="M138.87572,57.03292s.004,3.65225.001,3.65913H125.04558V55.89h26.35583l1.637,4.4773c.00773.00292,1.57841-4.48815,1.58153-4.47835h26.56223V60.692h-13.763c-.00124-.00687-.00771-3.65819-.00771-3.65819l-1.273,3.65819-25.99183-.00687Z"/><path class="cls-2" d="M68.7486,55.889h40.30365v-.00188a18.13723,18.13723,0,0,1-3.99812,4.80494s-36.30647.00668-36.30647,0Z"/><rect class="cls-2" x="31.43162" y="55.88794" width="14.06406" height="4.80316"/><rect class="cls-2" x="167.41912" y="64.94348" width="13.76302" height="4.80212"/><path class="cls-2" d="M138.87572,64.94348H125.04558V69.7456c-.00688-.0025,13.83411.00167,13.83411,0C138.87969,69.7431,138.89532,64.94348,138.87572,64.94348Z"/><path class="cls-2" d="M164.63927,64.94348c-.06255-.007-1.61218,4.79962-1.67723,4.80212l-19.60378.00835c-.01543-.00751-1.72371-4.81745-1.725-4.81047Z"/><path class="cls-2" d="M68.74672,64.94233H104.985a23.7047,23.7047,0,0,1,4.32076,4.80327c.06609-.0025-40.5581.00167-40.5581,0Z"/><path class="cls-2" d="M45.49359,69.74436v-4.802H31.45487V69.7431Z"/><rect class="cls-2" x="167.41912" y="73.99693" width="13.76198" height="4.80295"/><rect class="cls-2" x="125.04474" y="73.99693" width="13.83097" height="4.80212"/><path class="cls-2" d="M159.74351,78.8224c.00376-.02169,1.69745-4.82964,1.72373-4.82547H144.80219c-.029-.00209,1.70848,4.80378,1.70848,4.80378S159.7404,78.84241,159.74351,78.8224Z"/><path class="cls-2" d="M68.74766,78.79905c0,.01919-.00094-4.80212,0-4.803H82.9958s.01272,4.80462,0,4.80462C82.98224,78.80072,68.74766,78.79489,68.74766,78.79905Z"/><path class="cls-2" d="M111.30529,73.9961a13.94783,13.94783,0,0,1,.89542,4.825H97.10364v-4.825Z"/><rect class="cls-2" x="31.45487" y="73.9961" width="14.03872" height="4.80171"/><rect class="cls-2" x="167.41912" y="82.86525" width="23.0212" height="4.80421"/><rect class="cls-2" x="115.83139" y="82.86525" width="23.04432" height="4.80421"/><polygon class="cls-2" points="156.647 87.669 149.618 87.669 147.931 82.865 158.272 82.865 156.647 87.669"/><path class="cls-2" d="M22.3099,82.86525v4.80212H55.008c.01366.00751-.01469-4.79919,0-4.79919Z"/><path class="cls-2" d="M111.60237,82.86525c-.3442,1.58445-.65962,3.5158-1.81732,4.80421l-.43175-.00209H59.28005V82.86525Z"/><polygon class="cls-2" points="153.461 96.733 152.814 96.733 151.171 91.92 155.147 91.92 153.461 96.733"/><rect class="cls-2" x="167.41788" y="91.91953" width="23.02244" height="4.82547"/><path class="cls-2" d="M59.27307,96.73333V91.92745s47.24073.00585,47.37623.00585A17.945,17.945,0,0,1,94.43864,96.745l-35.15859-.00959"/><rect class="cls-2" x="115.83139" y="91.91953" width="23.04432" height="4.82547"/><path class="cls-2" d="M55.008,91.94079s-.01469,4.79253,0,4.79253c.01366,0-32.6885.0196-32.69809.00961-.00888-.00961.00875-4.81548,0-4.81548S54.9933,91.95664,55.008,91.94079Z"/></svg>
\ No newline at end of file
diff --git a/content/zh/case-studies/ibm/index.html b/content/zh-cn/case-studies/ibm/index.html
similarity index 100%
rename from content/zh/case-studies/ibm/index.html
rename to content/zh-cn/case-studies/ibm/index.html
diff --git a/content/zh-cn/case-studies/ing/index.html b/content/zh-cn/case-studies/ing/index.html
new file mode 100644
index 0000000000..037ba9775d
--- /dev/null
+++ b/content/zh-cn/case-studies/ing/index.html
@@ -0,0 +1,78 @@
+---
+title: ING Case Study
+linkTitle: ING
+case_study_styles: true
+cid: caseStudies
+weight: 50
+featured: true
+quote: >
+  The big cloud native promise to our business is the ability to go from idea to production within 48 hours. We are some years away from this, but that's quite feasible to us.
+
+new_case_study_styles: true
+heading_background: /images/case-studies/ing/banner1.jpg
+heading_title_logo: /images/ing_logo.png
+subheading: >
+  Driving Banking Innovation with Cloud Native
+case_study_details:
+  - Company: ING
+  - Location: Amsterdam, Netherlands
+  - Industry: Finance
+---
+
+<h2>Challenge</h2>
+
+<p>After undergoing an agile transformation, <a href="https://www.ing.com/">ING</a> realized it needed a standardized platform to support the work their developers were doing. "Our DevOps teams got empowered to be autonomous," says Infrastructure Architect Thijs Ebbers. "It has benefits; you get all kinds of ideas. But a lot of teams are going to devise the same wheel. Teams started tinkering with <a href="https://www.docker.com/">Docker</a>, Docker Swarm, <a href="https://kubernetes.io/">Kubernetes</a>, <a href="https://mesosphere.com/">Mesos</a>. Well, it's not really useful for a company to have one hundred wheels, instead of one good wheel.</p>
+
+<h2>Solution</h2>
+
+<p>Using Kubernetes for container orchestration and Docker for containerization, the ING team began building an internal public cloud for its CI/CD pipeline and green-field applications. The pipeline, which has been built on Mesos Marathon, will be migrated onto Kubernetes. The bank-account management app <a href="https://www.yolt.com/">Yolt</a> in the U.K. (and soon France and Italy) market already is live hosted on a Kubernetes framework. At least two greenfield projects currently on the Kubernetes framework will be going into production later this year. By the end of 2018, the company plans to have converted a number of APIs used in the banking customer experience to cloud native APIs and host these on the Kubernetes-based platform.</p>
+
+<h2>Impact</h2>
+
+<p>"Cloud native technologies are helping our speed, from getting an application to test to acceptance to production," says Infrastructure Architect Onno Van der Voort. "If you walk around ING now, you see all these DevOps teams, doing stand-ups, demoing. They try to get new functionality out there really fast. We held a hackathon for one of our existing components and basically converted it to cloud native within 2.5 days, though of course the tail takes more time before code is fully production ready."</p>
+
+{{< case-studies/quote author="Thijs Ebbers, Infrastructure Architect, ING">}}
+"The big cloud native promise to our business is the ability to go from idea to production within 48 hours. We are some years away from this, but that's quite feasible to us."
+{{< /case-studies/quote >}}
+
+{{< case-studies/lead >}}
+ING has long embraced innovation in banking, launching the internet-based ING Direct in 1997.
+{{< /case-studies/lead >}}
+
+<p>In that same spirit, the company underwent an agile transformation a few years ago. "Our DevOps teams got empowered to be autonomous," says Infrastructure Architect Thijs Ebbers. "It has benefits; you get all kinds of ideas. But a lot of teams are going to devise the same wheel. Teams started tinkering with Docker, Docker Swarm, Kubernetes, Mesos. Well, it's not really useful for a company to have one hundred wheels, instead of one good wheel."</p>
+
+<p>Looking to standardize the deployment process within the company's strict security guidelines, the team looked at several solutions and found that in the past year, "Kubernetes won the container management framework wars," says Ebbers. "We decided to standardize ING on a Kubernetes framework." Everything is run on premise due to banking regulations, he adds, but "we will be building an internal public cloud. We are trying to get on par with what public clouds are doing. That's one of the reasons we got Kubernetes."</p>
+
+<p>They also embraced Docker to address a major pain point in ING's CI/CD pipeline. Before containerization, "Every development team had to order a VM, and it was quite a heavy delivery model for them," says Infrastructure Architect Onno Van der Voort. "Another use case for containerization is when the application travels through the pipeline, they fire up Docker containers to do test work against the applications and after they've done the work, the containers get killed again."</p>
+
+{{< case-studies/quote
+  image="/images/case-studies/ing/banner3.jpg"
+  author="Thijs Ebbers, Infrastructure Architect, ING"
+>}}
+"We decided to standardize ING on a Kubernetes framework." Everything is run on premise due to banking regulations, he adds, but "we will be building an internal public cloud. We are trying to get on par with what public clouds are doing. That's one of the reasons we got Kubernetes."
+{{< /case-studies/quote >}}
+
+<p>Because of industry regulations, applications are only allowed to go through the pipeline, where compliance is enforced, rather than be deployed directly into a container. "We have to run the complete platform of services we need, many routing from different places," says Van der Voort. "We need this Kubernetes framework for deploying the containers, with all those components, monitoring, logging. It's complex." For that reason, ING has chosen to start on the <a href="https://www.openshift.org/">OpenShift Origin</a> Kubernetes distribution.</p>
+
+<p>Already, "cloud native technologies are helping our speed, from getting an application to test to acceptance to production," says Van der Voort. "If you walk around ING now, you see all these DevOps teams, doing stand-ups, demoing. They try to get new functionality out there really fast. We held a hackathon for one of our existing components and basically converted it to cloud native within 2.5 days, though of course the tail takes more time before code is fully production ready."</p>
+
+<p>The pipeline, which has been built on Mesos Marathon, will be migrated onto Kubernetes. Some legacy applications are also being rewritten as cloud native in order to run on the framework. At least two smaller greenfield projects built on Kubernetes will go into production this year. By the end of 2018, the company plans to have converted a number of APIs used in the banking customer experience to cloud native APIs and host these on the Kubernetes-based platform.</p>
+
+{{< case-studies/quote
+  image="/images/case-studies/ing/banner4.jpg"
+  author="Onno Van der Voort,  Infrastructure Architect, ING"
+>}}
+"We have to run the complete platform of services we need, many routing from different places. We need this Kubernetes framework for deploying the containers, with all those components, monitoring, logging. It's complex."
+{{< /case-studies/quote >}}
+
+<p>The team, however, doesn't see the bank's back-end systems going onto the Kubernetes platform. "Our philosophy is it only makes sense to move things to cloud if they are cloud native," says Van der Voort. "If you have traditional architecture, build traditional patterns, it doesn't hold any value to go to the cloud." Adds Cloud Platform Architect Alfonso Fernandez-Barandiaran: "ING has a strategy about where we will go, in order to improve our agility. So it's not about how cool this technology is, it's about finding the right technology and the right approach."</p>
+
+<p>The Kubernetes framework will be hosting some greenfield projects that are high priority for ING: applications the company is developing in response to <a href="https://ec.europa.eu/info/law/payment-services-psd-2-directive-eu-2015-2366_en">PSD2</a>, the European Commission directive requiring more innovative online and mobile payments that went into effect at the beginning of 2018. For example, a bank-account management app called <a href="https://www.yolt.com/">Yolt</a>, serving the U.K. market (and soon France and Italy), was built on a Kubernetes platform and has gone into production. ING is also developing blockchain-enabled applications that will live on the Kubernetes platform. "We've been contacted by a lot of development teams that have ideas with what they want to do with containers," says Ebbers.</p>
+
+{{< case-studies/quote author="Alfonso Fernandez-Barandiaran, Cloud Platform Architect, ING" >}}
+Even with the particular requirements that come in banking, ING has managed to take a lead in technology and innovation. "Every time we have constraints, we look for maybe a better way that we can use this technology."
+{{< /case-studies/quote >}}
+
+<p>Even with the particular requirements that come in banking, ING has managed to take a lead in technology and innovation. "Every time we have constraints, we look for maybe a better way that we can use this technology," says Fernandez-Barandiaran.</p>
+
+<p>The results, after all, are worth the effort. "The big cloud native promise to our business is the ability to go from idea to production within 48 hours," says Ebbers. "That would require all these projects to be mature. We are some years away from this, but that's quite feasible to us."</p>
diff --git a/content/zh/case-studies/ing/ing_featured_logo.png b/content/zh-cn/case-studies/ing/ing_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/ing/ing_featured_logo.png
rename to content/zh-cn/case-studies/ing/ing_featured_logo.png
diff --git a/content/zh-cn/case-studies/ing/ing_featured_logo.svg b/content/zh-cn/case-studies/ing/ing_featured_logo.svg
new file mode 100644
index 0000000000..5a2df497c7
--- /dev/null
+++ b/content/zh-cn/case-studies/ing/ing_featured_logo.svg
@@ -0,0 +1 @@
+<svg id="Layer_1" data-name="Layer 1" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 215 127"><defs><style>.cls-1{fill:transparent;}.cls-2{fill:#091c5a;}.cls-2,.cls-3,.cls-4{fill-rule:evenodd;}.cls-3{fill:#fff;}.cls-4{fill:#f60;}</style></defs><title>kubernetes.io-logos</title><rect class="cls-1" x="-3.55202" y="-3.16104" width="223.25536" height="134.51136"/><g id="Layer_1-2" data-name="Layer 1"><g id="g9"><g id="g11"><path id="path13" class="cls-2" d="M16.12,50.174a4.0335,4.0335,0,0,1,2.95108.89221c.671.6703.97142,1.7775.97142,3.5895V77.28841c0,3.13191-.6572,4.52885-4.536,4.52885h-.53175v1.38889H32.40618v-1.382l-.526-.0069c-3.84194-.046-4.48994-1.43489-4.48994-4.52885V54.65451c0-1.80625.29926-2.90885.97027-3.578a4.09567,4.09567,0,0,1,3.00288-.9037H32.405V48.76436H14.97474V50.1728H16.12Z"/><path id="path15" class="cls-2" d="M71.87064,71.6604a19.39223,19.39223,0,0,1-.34644-2.20406V59.119c-.06791-6.02811.755-9.02895-4.521-9.00595v-1.3544h12.137V50.113c-5.43373-.02185-4.75,2.979-4.78112,9.00595V83.25674l-1.72761-.0184L46.42269,55.8399a19.991,19.991,0,0,1,.33839,2.20291V74.97052c-.14848,6.17529.61691,6.92147,4.59927,6.849V83.2303H38.70774V81.81956c3.98811.0046,4.77192-.52543,4.76732-7.35262V58.19228l-.03223-2.64786c.14848-3.42739-1.11874-5.4153-4.98715-5.38311V48.80576h11.649Z"/><path id="path17" class="cls-2" d="M115.80547,48.101H114.468l-.06216.4576c-.09093.68295-.36025,1.82695-1.13945,1.82695a4.00888,4.00888,0,0,1-1.39959-.38977,24.64235,24.64235,0,0,0-9.17553-1.89478,20.48871,20.48871,0,0,0-14.69558,5.797,18.33213,18.33213,0,0,0-5.26915,13.16459A15.46005,15.46005,0,0,0,88.5551,79.24068c3.92826,3.35725,8.32957,4.78869,14.72551,4.78869a23.797,23.797,0,0,0,13.0589-3.27448l.81949-.4438V71.27984c0-3.84935.4719-4.44837,3.60715-4.57484l.50988-.01955V65.3437H105.95892v1.34175l.50988.01955c3.492.13567,4.15155.76113,4.15155,3.94363v8.369a11.54506,11.54506,0,0,1-6.84827,2.35583,12.59683,12.59683,0,0,1-9.042-3.75277c-2.81182-2.81112-4.18378-6.90537-4.18378-11.53195,0-4.98414,1.32822-9.2359,4.06522-11.9677a11.60427,11.60427,0,0,1,8.37331-3.38485,15.00838,15.00838,0,0,1,8.72321,3.125,10.23544,10.23544,0,0,1,3.64972,5.57282l.11395.37826h1.3075Z"/></g><g id="g19"><path id="path21" class="cls-3" d="M182.89436,83.113a4.21534,4.21534,0,0,0,2.43431-.73239,11.18164,11.18164,0,0,0,8.05563-1.85224,16.83129,16.83129,0,0,0,3.1341-3.29172,11.8419,11.8419,0,0,0,1.75752-3.271,15.19659,15.19659,0,0,0,.69519-2.30179,21.86771,21.86771,0,0,0-.8264-11.448,20.30835,20.30835,0,0,0-.75274-1.90513c-1.517-3.13191-3.58182-6.511-6.76079-8.492a13.57171,13.57171,0,0,1-4.45081-4.62773c-.55016-.49439-1.07731-1.14974-1.7886-1.26817a2.74406,2.74406,0,0,1,.46154,1.00948l-.04143.05289a2.62023,2.62023,0,0,1-1.86343-.86l.56973-.51624a3.05131,3.05131,0,0,0-.69979-.2058c-2.1742-.2472-3.96279.75538-5.89182,1.23827l-.02993.10693c1.18436.52659,1.43181,1.8304,2.12124,2.71225.17034-.20465.46154-.05519.69979-.07358.34414.01954.66757.26789,1.00134.18051a3.16388,3.16388,0,0,0-.20372-.77378,1.44144,1.44144,0,0,1,.67906,0c.62384.36447,1.624-.06439,2.013.77378a11.7115,11.7115,0,0,0-2.04642.35642c.04373.269.31307.48289.2912.75308a6.757,6.757,0,0,0-1.81047-.46105l-.03223.09543a6.23063,6.23063,0,0,0,3.04892,1.8396c1.62747.376,3.05929-.39781,4.63035-.12877a18.02291,18.02291,0,0,1,8.58624,9.63257c.07022.184.13811.37021.20143.55992a18.61636,18.61636,0,0,1,.22558,11.448,14.0279,14.0279,0,0,1-2.47343,4.18393,8.56677,8.56677,0,0,1-1.41225,1.38889,6.34321,6.34321,0,0,1-5.66623,1.24978c-.12891-.08853-.38788-.11038-.34413-.33458.07135-.30009.13811-.60362.19682-.9152a22.67024,22.67024,0,0,0,.40629-5.42795l-.00691-.2357a20.75277,20.75277,0,0,0-1.62861-7.38137,25.6873,25.6873,0,0,0-2.3215-4.0678,9.63728,9.63728,0,0,0-4.315-3.54926,3.23412,3.23412,0,0,0-3.28488.568,2.213,2.213,0,0,0-.75388,1.98216,6.78122,6.78122,0,0,1-3.10187.99913,8.50841,8.50841,0,0,1-.85057.123,4.7694,4.7694,0,0,1-.80337-.031,7.96716,7.96716,0,0,1-3.79245-1.743c-.02186-.55992-.05409-1.08651-.07595-1.67862a2.02344,2.02344,0,0,1-1.14061-1.6039l.053-.05289a4.569,4.569,0,0,1,.95875.46105,7.11353,7.11353,0,0,0-.72052-2.39952c-.389-.16211-.77691-.29089-1.14176-.48519a1.835,1.835,0,0,1-.75275-1.24633c.37637.36562,1.03243.23685,1.32361.62317-.50757-1.49582-.51563-3.20665-1.34663-4.57369-.42011-1.01063-1.51929-1.474-2.27317-2.21556-.29121-.35643-.40859-.85082-.93575-.906-.43161-.10693-.46384-.58982-.53865-.9037.26817.03219.49376.215.71935.25754-.62383-1.65449-1.174-3.49638-2.86362-4.55069l-.29.18395a18.30869,18.30869,0,0,1-2.0142.16212,2.77577,2.77577,0,0,1,1.21658-.80942,2.89527,2.89527,0,0,0-1.45713-.53578,3.02238,3.02238,0,0,1-1.40879.61281l-.05525-.04369c-.0115-.38746-.099-.86.48457-.95774a3.37957,3.37957,0,0,0-2.06024,0c-.16.41966-.62268.79678-.5893,1.29347a8.8185,8.8185,0,0,1-.91617,1.05431,9.93175,9.93175,0,0,1,.49377-2.29144c-.48456.18281-.97717.4415-1.45253.66685a19.90355,19.90355,0,0,0-2.38711-1.21643c-.07366-.03219-.2371-.06324-.20487.07588.70094.50474.42931,1.45328.50413,2.17187l-.442-.36447c-.21522-.54842-.83675-.94624-.94379-1.5487a8.2112,8.2112,0,0,0-1.88069.62431l-.09323.054a1.51447,1.51447,0,0,1,1.1832.79677,13.90309,13.90309,0,0,1-2.1972-.33573c-.07482-.07358-.14042-.16211-.259-.15061a4.08844,4.08844,0,0,0-1.03242.66685,7.23207,7.23207,0,0,0-1.85306,2.50875,1.62555,1.62555,0,0,1,.74353.18166c-.4086.24719-.76425.668-1.16248.9037a9.91065,9.91065,0,0,0-.15194,1.80855,7.96249,7.96249,0,0,0-.93574,1.42223,21.07216,21.07216,0,0,0-.74353,7.01345c-.21639.20581-.49722.33573-.69979.49669l.02186,2.19372h.05294c.09669-.461.64685-.71859.98063-1.03132h.10819c-.05409.49439-.11854.98993-.12891,1.49582l-.62382.51623c-.62613.54958-.09783,1.3774-.15078,2.06724.04374.18051.07367.45071.20373.4944a2.93668,2.93668,0,0,1,.46384-.7002c.26818-.06323.50528-.28054.75273-.31043a11.63258,11.63258,0,0,1-.53865,1.5809,1.82648,1.82648,0,0,0-.328.269.78186.78186,0,0,0-.22214.39781,48.97679,48.97679,0,0,0,2.12009,7.46645c-.59045,1.00143-.92653,2.17992-1.41915,3.21354-.07136.14372-.13466.292-.19336.4415-.49492,1.25093-.64569,2.65017-1.26147,3.85165a4.53928,4.53928,0,0,0-.79647-.41966,3.24358,3.24358,0,0,0-3.36083.75423,2.87922,2.87922,0,0,0-2.12354.38747,2.8125,2.8125,0,0,0-.9415,1.14975,2.33057,2.33057,0,0,0-.168,1.02442,2.47566,2.47566,0,0,0-.90352,1.3659,4.24846,4.24846,0,0,0,.85057,3.26527h53.6893Z"/><path id="path23" class="cls-3" d="M175.76409,58.91892c-.0115.27939-.21522.59327-.03222.829.259-.29089.69058-.28054,1.03472-.40816a8.4945,8.4945,0,0,1,2.76694.43115c-.22445-.35642-.37636-.75193-.62383-1.07616-.49723-.12877-1.25.215-1.33513-.51624-.30271-.25869-.77805-.07358-1.08768-.05518a2.442,2.442,0,0,0-.72281.79562Z"/><path id="path25" class="cls-3" d="M142.84405,49.629a.04228.04228,0,0,0-.01611-.01034l.0023.01034Z"/><path id="path27" class="cls-3" d="M146.75965,59.19256l.64684-.62316a.14234.14234,0,0,1,.12891.05519l-.05409,1.19343a1.68138,1.68138,0,0,0,1.10838.40931c.03338-.32308.28084-.54843.42125-.829.11855-.22535.04374-.55993.27968-.72205l.07367.07589a3.54473,3.54473,0,0,0,.2394,1.06466c.02187.17132.05294.38747.07367.53808a2.68832,2.68832,0,0,0,1.27066-.27938,4.897,4.897,0,0,1,.18185-1.11986c.099-.12992-.11854-.36562.15194-.35412.15077.32193.4201.65536.57088.99913a4.21056,4.21056,0,0,0,1.03357-2.32249c-.18185-.24949-.46269-.24949-.67907-.40931a8.10663,8.10663,0,0,0-5.94706.20351A2.76264,2.76264,0,0,0,146.75965,59.19256Z"/><path id="path29" class="cls-3" d="M129.64243,79.38439a16.69073,16.69073,0,0,0,.05179,2.42482,1.24434,1.24434,0,0,0,.79648.60362l.0564-.54958c.12776-.76573-.28084-1.57745.15077-2.22246a5.29213,5.29213,0,0,1,.86208.38747,1.88411,1.88411,0,0,0-.73317-1.96837Z"/><path id="path31" class="cls-3" d="M132.30117,78.2243a6.31616,6.31616,0,0,0-.22444,4.13564,4.69785,4.69785,0,0,0,.84827-.645,4.47782,4.47782,0,0,1,.40974-2.933,1.90626,1.90626,0,0,1,1.08767,1.16354,1.99076,1.99076,0,0,0,.33493-1.68093c.02187-.47139-.51908-.36332-.7769-.55877.08747-.39782.07481-.85887.49606-1.08422l-1.29254.12878A6.117,6.117,0,0,0,132.30117,78.2243Z"/><path id="path33" class="cls-3" d="M134.96221,81.93913c.05524.09888,0,.269.10819.29088.16229-.90255.89431-1.48892,1.29369-2.28454.19222-.269.1807-.64616.49377-.85082.42125,0,.72281.30239,1.13256.33458.1289.09658-.06676.18166-.076.28859a10.64931,10.64931,0,0,0-.31192,2.09253h.07367a10.88639,10.88639,0,0,0,1.37886-1.94192l.07366-.61166c.09668-.73239-.69979-1.20494-1.21657-1.50617l.46269-.59212-.64569-.2265a2.94409,2.94409,0,0,0-1.96126.98074,8.76291,8.76291,0,0,0-.80567,4.0264Z"/><path id="path35" class="cls-3" d="M137.86036,75.55344c.24745.07589.47305-.12877.71935-.0207A6.50642,6.50642,0,0,1,141.349,77.1033l.88394,2.24775.442-1.38659-.29119-.75423c-.24745-.53808-.92653-.4944-1.39037-.51624-.19221-.215.01151-.46335.07711-.66686.22444-.76343-.71245-.722-1.08881-1.03132.023-.46334-.53866-.30238-.85172-.34607l-.107-.12877a.22109.22109,0,0,0-.31192-.02185c-.023-.031-.06445-.05289-.04144-.10807l-.2394.05518a1.52256,1.52256,0,0,0-.56973,1.10721Z"/><path id="path37" class="cls-3" d="M138.48418,73.08034a.68248.68248,0,0,0,.22559.36447c.48571-.12877.94725-.46105,1.50777-.25869a8.54791,8.54791,0,0,0,2.35028,1.64758l.31076-.05518c.19451.06668.4086.07588.53866.29088.11969.29088-.1807.46335-.27969.699.48571.35527.2912.99108.5939,1.41993l.77576-1.03247c-.18185-.453.01036-1.22678-.70094-1.26932a.68071.68071,0,0,1-.38788-.62546c-.46154-.41966-1.03242-.60131-1.49741-1.03132-.37637-.30238-.602-.76573-1.08767-.87265a4.0232,4.0232,0,0,0-1.08536-.36447C139.02284,71.88576,138.95954,72.74462,138.48418,73.08034Z"/><path id="path39" class="cls-3" d="M139.51775,70.96021l.13006.20465c.5375-.03334,1.02436-.269,1.55265-.25869.3545.21615.81834.2058,1.1832.38746a4.16613,4.16613,0,0,0,1.03243,1.11986c.87474.12762,1.35814,1.06466,1.6597,1.75221v-.33343a2.29774,2.29774,0,0,0-.18416-1.41879c-.21523-.21615-.52715-.35757-.75274-.55073a.4412.4412,0,0,1,.03223-.33342,7.06473,7.06473,0,0,0-1.23844-.82782c-.57088-.829-1.67005-.60247-2.54249-.829l-.87244,1.08766Z"/><path id="path41" class="cls-3" d="M139.50048,63.06605c.09554.33458.21293.75424.27624,1.10836.30155-.66685.8966-.96579,1.42374-1.51537a2.71574,2.71574,0,0,0-1.0117-.36677v-.01954C139.95166,62.50843,139.58565,62.74527,139.50048,63.06605Z"/><path id="path43" class="cls-3" d="M141.45714,66.60612l.48455-.49439a3.05352,3.05352,0,0,0,.95876-1.70047,1.38095,1.38095,0,0,0-1.13025.05288,13.542,13.542,0,0,0-.31307,2.142Z"/><path id="path45" class="cls-3" d="M141.81164,68.12378a3.14312,3.14312,0,0,0,2.06944-.2242l.602-1.93847a1.4573,1.4573,0,0,0-.56974-.03219A4.70661,4.70661,0,0,1,141.81164,68.12378Z"/><path id="path47" class="cls-3" d="M142.03032,61.25865a4.30737,4.30737,0,0,0,2.12239,1.73152c-.09668-.90255-.87128-1.528-1.27066-2.30179l-.023-.2587a4.02318,4.02318,0,0,0-1.01285-.668,5.06389,5.06389,0,0,0,.18416,1.497Z"/><path id="path49" class="cls-3" d="M144.65683,68.21a3.766,3.766,0,0,0,1.7115-.16326c.76654-.18051,1.18664-1.021,1.44446-1.67633H146.854l-1.03472,1.01063a8.134,8.134,0,0,0-1.16248.829Z"/><path id="path51" class="cls-3" d="M144.54059,60.28022a6.26631,6.26631,0,0,0,1.0025,2.32478l.1289-1.60389Z"/><path id="path53" class="cls-3" d="M148.07177,64.46529a7.99875,7.99875,0,0,0-.22214-1.70967c-.32457-.21615-.77806-.19431-1.11068-.40816A3.15534,3.15534,0,0,0,148.07177,64.46529Z"/><path id="path55" class="cls-3" d="M147.09113,69.93348a10.67122,10.67122,0,0,0,1.959-.79792c.39823-.568,1.0025-1.08766,1.08766-1.75336-.49491.13912-.92653-.0207-1.38807.2058a3.54546,3.54546,0,0,1-.991,1.44064C147.67353,69.3931,147.27414,69.6426,147.09113,69.93348Z"/><path id="path57" class="cls-3" d="M148.14542,71.25684l.808,1.05317A1.63775,1.63775,0,0,0,150.3,72.15939l-.29119-.95774A3.748,3.748,0,0,1,148.14542,71.25684Z"/><path id="path59" class="cls-3" d="M149.49321,63.63633l.31191,1.42108a2.86382,2.86382,0,0,0,.8874-2.45356,3.36646,3.36646,0,0,1-1.19931,1.03248Z"/><path id="path61" class="cls-3" d="M151.61445,66.14507a1.03182,1.03182,0,0,0,.18416.55993c.83905.30008.92538,1.3222,1.70228,1.70967a1.93037,1.93037,0,0,0,1.5285-.25869c-.33378-.376-.71246-.637-1.03357-1.03363-.22675-.09657-.45348-.23684-.442-.51623l-1.93939-.46105Z"/><path id="path63" class="cls-3" d="M152.282,71.2235a2.50207,2.50207,0,0,0,1.37886.75193c-.08518-.11842.05525,0,.076-.07473l-.648-1.41764c-.32227.00805-.656.07359-.95761.05289a2.932,2.932,0,0,0,.15077.68755Z"/><path id="path65" class="cls-3" d="M153.42492,64.59407a8.29551,8.29551,0,0,1-.51449-2.32249c-.32342.38631-.6572.63466-.95876,1.03132C151.81125,64.09967,152.94956,64.29513,153.42492,64.59407Z"/><path id="path67" class="cls-3" d="M154.73818,63.864c.38789.50473,1.23845.33227,1.715.18166-.22789-.38747-.95761-.61282-1.08652-1.03247a9.2708,9.2708,0,0,0-.46384-2.14083C154.52526,61.78639,154.07062,62.87405,154.73818,63.864Z"/><path id="path69" class="cls-3" d="M155.41609,66.14507c1.07846.78643,2.13275,1.69933,3.64051,1.3659.10819-.07588.29121-.06554.31307-.20465-.44312-.28054-.915-.49555-1.3685-.75194l-.51563-.75423h-.23709a9.44988,9.44988,0,0,1-1.83234.34492Z"/><path id="path71" class="cls-3" d="M155.43912,74.87164h.07365a5.817,5.817,0,0,1,2.1765-.90485c.206.07474.076.30124.259.38862.46384-.19431,1.02436-.15062,1.49741-.31273a3.25554,3.25554,0,0,1,1.4974.28054c.36486.48289,1.05545.43115,1.5308.75193l-.076-.75193c-1.00134-1.17389-2.56436-1.26013-4.00537-1.23713l-.03339-.15177a2.56766,2.56766,0,0,0-1.05429.22766,5.4674,5.4674,0,0,0-1.34779.38631A12.10932,12.10932,0,0,0,155.43912,74.87164Z"/><path id="path73" class="cls-3" d="M156.3035,61.64727a1.82108,1.82108,0,0,0,1.75523.829,2.04259,2.04259,0,0,1-.808-1.23827c.10818-.95774-.94725-1.03248-1.464-1.52917A6.46965,6.46965,0,0,0,156.3035,61.64727Z"/><path id="path75" class="cls-3" d="M156.19416,76.77677h.12545c.572-.35757,1.40188-.08738,1.9624-.46449.31191-.16212.33264.269.55016.38746.52714.32308.59161,1.29,1.33513,1.06582.89316.46219.66757,1.551.6998,2.34663l.82984-.51624c-.076-.41966.16-.92784-.10935-1.29232-.20372-.461-.76308-.50473-1.03242-.88185.32343-.54958-.40859-.806-.56052-1.20493l.04373-.05519,1.13946.15062a1.70681,1.70681,0,0,1,.648,1.06581c.89429.15062,1.10954,1.16124,1.42259,1.8074.183-.4415.25781-.9152.442-1.344.01036-.35643-.46384-.35643-.69979-.51624a1.93012,1.93012,0,0,0-.79647-1.39924,11.86661,11.86661,0,0,0-2.95109-.79678l-.90581.28054c-.49607.11843-1.02322-.03219-1.39959.31043-.56282.04254-.60541.65766-.74352,1.05662Z"/><path id="path77" class="cls-3" d="M156.76274,72.3422l.206.09658c.43967-.20581.88279-.4415,1.34663-.614.72052-.20465,1.281.614,1.88529.09773.22559-.16211.41781.07473.59161.20466.259.47369.86207.4415,1.3144.57027-.22559-.61282-.50527-1.45328-1.29254-1.55216a7.51723,7.51723,0,0,1-.98063-.31043c-.8287-.91405-1.36736.75193-2.27317.34377A2.52534,2.52534,0,0,0,156.76274,72.3422Z"/><path id="path79" class="cls-3" d="M156.96877,77.58275c.34413.28858.69863.78527,1.23615.71974.671.31273.39018,1.19343.75618,1.65678l.38672-.34493-.03222-.02069.05525-.054.023.03219a2.0546,2.0546,0,0,0-.22789-1.27047c-.24745-.17016-.53865.0115-.7746-.15062a1.09008,1.09008,0,0,0-.49607-.73124c-.17264-.12877-.39939.04369-.59275.0322l-.33377.13107Z"/><path id="path81" class="cls-3" d="M158.3154,64.46529a5.55242,5.55242,0,0,0,1.59409,1.36705,2.56212,2.56212,0,0,0,1.52963.15062,9.81419,9.81419,0,0,1-1.27067-1.26013c-.15078-.215-.18416-.48289-.38789-.6772a3.03893,3.03893,0,0,0-1.46518.41966Z"/><path id="path83" class="cls-3" d="M158.90929,60.61479c.49723.61167,1.26146.36562,1.96125.38632v-.07358l-1.07732-.906a2.89313,2.89313,0,0,0-.88395.59327Z"/><path id="path85" class="cls-3" d="M139.08038,50.46714l.62383,1.93732c-.01151-1.098.49492-2.01206.38787-3.13076l.46384-.68985-.98177.30124A3.65173,3.65173,0,0,0,139.08038,50.46714Z"/><path id="path87" class="cls-3" d="M139.50048,47.10988l.84942-.49554v-1.259a4.48161,4.48161,0,0,0-.8287.87265Z"/><path id="path89" class="cls-3" d="M156.97107,49.06905a1.19894,1.19894,0,0,1-.77461.38746,3.67584,3.67584,0,0,0,.31077-2.91805,4.1337,4.1337,0,0,0,.72281-.25755l-.023-.02069.59391-.51854c.78611-.53808.48456-1.559.77575-2.32248-.38789-.60362-.50527-1.33486-1.067-1.8419l.03338-.01954c-.44312-.55993-1.23959-.49669-1.845-.77608-.79647-.269-1.41.27939-1.98081.64731-.24746.04139-.09668.36447-.366.35412a10.975,10.975,0,0,0-.442,1.26932,4.31213,4.31213,0,0,0-3.06963.57027,4.528,4.528,0,0,0-1.5308-.54843c-.38672-.07473-.8287.06554-1.10723-.15176-.4086-.46105-.49722-1.30152-1.19816-1.41879-.2463-.08623-.29925-.35412-.29925-.59212-.46384-.07473-.87474-.28858-1.32707-.38746-.68713-.31273-1.23614.184-1.75408.51623a5.25766,5.25766,0,0,0-.69864.25985,9.84935,9.84935,0,0,0-1.0025,1.881,3.90855,3.90855,0,0,0,.5939,1.49582,3.04313,3.04313,0,0,0,1.67926,1.52916,6.33505,6.33505,0,0,0,0,3.4113l-.01841.01034-.03453.0299a.58263.58263,0,0,1-.2981-.0299h-.01382a4.69041,4.69041,0,0,0,1.418,2.69846c.28084.09888.21639.43115.33609.6473a.50681.50681,0,0,1,.05179.38632,8.45573,8.45573,0,0,0-4.52332,1.129c-.34414.17246-.19221.64731-.22443.97958a8.29853,8.29853,0,0,1,3.10071-1.29,4.68319,4.68319,0,0,1,1.49741-.02185l.0541.92555c-1.281.66685-2.68177,1.05432-3.78094,2.15232a4.33246,4.33246,0,0,0,.05524,1.00143l.98062-.79792a11.6634,11.6634,0,0,1,3.0259-1.73152,3.77848,3.77848,0,0,0,.98177.9244,7.31094,7.31094,0,0,1,2.12124-.9244c.39939-.23685,1.03243-.02184,1.29139-.49439l.18416-.97958c-.03337-.02185-.05294-.06324-.10819-.05174a1.48293,1.48293,0,0,1-.79647-1.38889,1.44813,1.44813,0,0,1-.57089.15061c-.17264-.04369-.33263-.08508-.40859-.25869-.01152-.21615-.1197-.53808.09553-.699a4.16086,4.16086,0,0,1,2.48955-.38631c.656.08508,1.6056.05174,1.83.829-.02992.22535-.01036.47255-.236.62317-.2371.12877-.50528-.0115-.7228-.10693a1.77678,1.77678,0,0,1-1.05544,1.29l.07711.62547c.07367.28053.09553.74158.53866.645a9.44458,9.44458,0,0,1,2.821,1.3452,6.71664,6.71664,0,0,0,.75275-.95774,14.0769,14.0769,0,0,1,4.28737,2.83987l.05525-.9037a14.74542,14.74542,0,0,0-4.08365-2.50759,5.4797,5.4797,0,0,0,.12891-.88186,10.55747,10.55747,0,0,1,4.75121,1.45328l-.023-.77493a10.5652,10.5652,0,0,0-4.89047-1.3452.54213.54213,0,0,1-.07365-.33458,2.39866,2.39866,0,0,0,1.68156-1.80855c.43968-.50474,1.07731-1.05432.92652-1.80625.01957-.06094.04143-.12762.0633-.192A.89683.89683,0,0,0,156.97107,49.06905Z"/><path id="path91" class="cls-3" d="M158.46962,51.83419l.88279-.28054.09552-.49439c.24976-.72089-.27738-1.259-.53866-1.8304l-.43967,2.60532Z"/><path id="path93" class="cls-3" d="M160.69676,55.24548c.42011.46105.82984,1.20494,1.57452.97729a4.70035,4.70035,0,0,0-.33493-.84852c-.19567-.22765-.259-.87266-.64684-.645-.29121-.1943-.36486-.51853-.55016-.77607A7.70054,7.70054,0,0,0,160.69676,55.24548Z"/><path id="path95" class="cls-3" d="M160.84867,58.39579c.1623.22764.206.51853.36486.722a1.73913,1.73913,0,0,0,1.07731.12877c.32343-.07474.5283.27938.82985.07358-.37522-.2357-.60081-.66685-.95875-.97728C161.74068,58.00947,161.29065,58.30035,160.84867,58.39579Z"/><path id="path97" class="cls-3" d="M161.41956,63.40063a4.15073,4.15073,0,0,0,2.67946.722c.107-.05519.2912-.04369.31191-.17361a16.4528,16.4528,0,0,0-1.90256-.95774c-.35679-.54843-.81949.14027-1.27181.09658C161.24692,63.21782,161.37583,63.31555,161.41956,63.40063Z"/><path id="path99" class="cls-3" d="M163.6582,72.901l.1623.34607c.16229,1.11985.87128,2.15117.4834,3.37795.32343.22535.42125.60132.625.90255h.05409a7.20248,7.20248,0,0,0-.05409-2.841C165.02556,73.83687,164.16349,73.34133,163.6582,72.901Z"/><path id="path101" class="cls-3" d="M163.8435,61.883a2.41114,2.41114,0,0,0,2.09938.25869,6.52278,6.52278,0,0,1-1.19586-.77493Z"/><path id="path103" class="cls-3" d="M166.5011,65.18733a1.16819,1.16819,0,0,0,.57088,1.05432,2.43338,2.43338,0,0,0,.33263-.79562,1.96665,1.96665,0,0,0-.7746-1.19344A2.63554,2.63554,0,0,0,166.5011,65.18733Z"/><path id="path105" class="cls-3" d="M166.53447,70.09215c-.076.50474.4834.57142.72051.85081.19452.2357-.12891.39781-.12891.62316a2.917,2.917,0,0,1,.6457,1.8304,17.75417,17.75417,0,0,0,.49837-1.95917c-.04373-.47254-.79647-.376-.67907-.90255a2.32852,2.32852,0,0,0-.18415-1.54871c-.04374-.077-.14042-.22765-.22445-.184C166.9845,69.24364,166.5011,69.55407,166.53447,70.09215Z"/><path id="path107" class="cls-3" d="M168.01,67.53166l.55936,1.08651c.24861-.02989.40745-.269.602-.4392.15193-.453-.24745-.74388-.36486-1.1095-.099-.2587,0-.60247-.18416-.829-.13927-.08508-.3027-.22535-.46384-.184L168.01,67.53166Z"/><path id="path109" class="cls-3" d="M168.73052,64.6711a3.12267,3.12267,0,0,1,1.1832,1.1279c.37866,1.098.98177,2.08794,1.42259,3.1526.1623.74274.2912,1.405.49607,2.13738.076.19086.03223.568.33493.53693.08518-.81747.24746-1.60274.25782-2.45356a3.27005,3.27005,0,0,0-.95875-.722v-.07358c.04373-.184.19452-.399.42125-.36447.09552-.11037.38672-.21615.259-.40931-.56053-.55878-.5283-1.52341-1.42375-1.697a.81076.81076,0,0,1-.41781-.75194A2.57346,2.57346,0,0,0,168.73052,64.6711Z"/><path id="path111" class="cls-3" d="M169.24616,70.50261c.55016.50359.35795,1.236.31306,1.91433-.08517.40931.43162.17246.59391.38746a2.35091,2.35091,0,0,1,.01957,1.75452,10.4958,10.4958,0,0,0,.85172-1.313c-.0115-.184.22445-.269.21639-.49439.09552-.31273-.26932-.17247-.42011-.207-.12891-.03219-.26932-.11842-.22789-.28973a2.61957,2.61957,0,0,0-.08518-1.72117c-.12891-.44265.05525-1.03247-.15077-1.41994-.34414.4737-1.3685.58177-1.11069,1.3889Z"/><path id="path113" class="cls-3" d="M170.24865,62.8614c.95991.96923,1.6597,1.94192,2.69327,2.879a10.94378,10.94378,0,0,0-.05409-1.21643,2.88166,2.88166,0,0,0-.66871-.71974C171.456,63.72831,171.05665,62.70043,170.24865,62.8614Z"/><path id="path115" class="cls-3" d="M172.75892,67.99041a1.67306,1.67306,0,0,0,.107.27939,14.09906,14.09906,0,0,1,1.11068,2.14083c-.08632-.79448.45348-1.78671-.259-2.39837-.09668-.2587-.42011-.17246-.625-.15177Z"/><path id="path117" class="cls-3" d="M175.344,75.85123c.30271.13682.68943-.11038.98063-.28054a.87836.87836,0,0,1,.70094.22535c.08517.17131,0,.33228.02992.49439a6.57991,6.57991,0,0,1,1.85421.79563l.1807-.18167a1.26335,1.26335,0,0,0-.66641-1.05316c-.22559-.13223-.56168-.05519-.72052-.261a1.11879,1.11879,0,0,0,.09553-.62316,1.55743,1.55743,0,0,1-.87359-.28054c-.1807-.05289-.34414-.2035-.49491,0-.5375.36677-.56973.9037-1.08652,1.1647Z"/><path id="path119" class="cls-3" d="M176.099,62.30952a1.93532,1.93532,0,0,0,.77574-.34377c.71936-.65651,1.76559-.21616,2.60465-.22651a5.80718,5.80718,0,0,0-.59161-.829,2.48076,2.48076,0,0,0-.92652-.2587c-.73316-.42885-1.22693.29089-1.78861.645A1.2039,1.2039,0,0,0,176.099,62.30952Z"/><path id="path121" class="cls-3" d="M176.11975,64.52393c0-.02989,0-.06439.03223-.07358.09668.08623-.01151.28973.15077.33227a6.17547,6.17547,0,0,0,.79647-.51393c.72282,0,1.15327-.69905,1.86227-.69905a10.68366,10.68366,0,0,1,3.393,1.03132,2.33031,2.33031,0,0,0-1.29024-1.64758.892.892,0,0,0-.86322.25869c-.72282.45415-.34414-.65536-.85057-.67835a5.32056,5.32056,0,0,1-2.06715.36792c-.43161.15981-.73432.55647-1.21772.51508a2.69774,2.69774,0,0,0,.05409,1.10721Z"/><path id="path123" class="cls-3" d="M176.61582,66.92575c.22444.2357.60081.192.92652.2357l.93574-.36447c.01151-.17246-.27968-.2173-.21638-.40816.259-.29089.61577-.08738.93688-.20695.45464-.06324.91732-.51509,1.36736-.18167-.01037.05289.023.12993-.01957.18167-.14271.33457.09668.53808.3545.66685.52829.09888,1.02322.58292,1.55151.36562a9.51228,9.51228,0,0,0-.28084-1.26932c-.44081-.07588-.75274-.44151-1.16247-.59327a.88421.88421,0,0,1-.64684.28054c-.82984-.19316-1.82084-.7094-2.6599-.18166-.3027.36446-.84136.25754-1.24995.41735A4.76723,4.76723,0,0,0,176.61582,66.92575Z"/><path id="path125" class="cls-3" d="M176.97031,73.32064c-.06561.18281-.24745.48519.08518.57027.69059.023,1.57338-.33228,2.11318.20465.18186.14142.09552.43.08518.614l.90351.75423a7.79436,7.79436,0,0,0,.259-1.3475,1.50589,1.50589,0,0,0-.54786-.9037c-.59391,0-.93918-.6933-1.57452-.60477-.33263-.077-.62268.21845-.95875.21845a5.46294,5.46294,0,0,0-.36486.49439Z"/><path id="path127" class="cls-3" d="M177.22929,68.24911c.13927.28858.3027.76343.57088.79562a3.06363,3.06363,0,0,1,2.27318-.15062c.23709.04254.23709.31158.18416.4852.36485.215.808.38516,1.1947.62316l-.10705-.645c-.023-.70019-.90581-.76573-.95991-1.45558a4.26533,4.26533,0,0,0-2.29387-.12762c-.24976.2265-.60312.19431-.90582.25984C177.166,68.11918,177.21779,68.17207,177.22929,68.24911Z"/><path id="path129" class="cls-3" d="M177.41345,71.73514c.42011-.11843.68713-.58178,1.14061-.62317a2.09987,2.09987,0,0,1,1.73335.88186c.26128.17131.206.614.53866.614a10.63492,10.63492,0,0,1,.05525-1.551c-.45464-.75193-1.57108-.17246-1.99233-1.05431l-.79647.05289c-.57089.14026-.41895.80827-.49723,1.26012-.06445.14027-.19336.24719-.18186.41966Z"/><path id="path131" class="cls-3" d="M181.36357,76.44105c.33493.66685,1.06925,1.17389,1.14291,1.93847a3.636,3.636,0,0,0,.40975-.66685c-.01151-.21616-.26012-.21616-.358-.38747-.09668-.27939.05525-.52659.09784-.77608a2.0831,2.0831,0,0,0-.85057-1.01063Z"/><path id="path133" class="cls-3" d="M182.6918,74.74172l.7746,1.05432a2.77878,2.77878,0,0,0,.20373-1.93847c-.07366-.11843-.21523-.31158-.40859-.22535-.29235.30238-.33378.76343-.56973,1.1095Z"/><path id="path135" class="cls-3" d="M179.53353,45.28868a2.24177,2.24177,0,0,0,.88279.28974,1.13981,1.13981,0,0,1,.79878-.12877c.39822.25869.88279-.054,1.34433-.0322a4.97122,4.97122,0,0,0-1.34433-.84851C180.61084,44.69656,180.12742,45.12542,179.53353,45.28868Z"/><path id="path137" class="cls-3" d="M183.74723,46.30046c.56858.05289.97833.55762,1.36619.98073a1.90839,1.90839,0,0,1,1.14177.77378l-.183-.57142a3.64422,3.64422,0,0,0-.84942-1.46248A4.16621,4.16621,0,0,0,183.74723,46.30046Z"/><path id="path139" class="cls-4" d="M143.54845,41.57845l.31192.0322c.84136.41965,2.19836.63466,2.27316,1.84994a6.65645,6.65645,0,0,0-2.34567,1.474c-.51679-.52773-1.563-.23685-1.73451-1.16124.16228-.87151.47305-1.96722,1.49511-2.19487Z"/><path id="path141" class="cls-4" d="M144.35873,47.03515c.97832-.08508,1.92673.05174,2.94073-.0322a1.28566,1.28566,0,0,1,.62382.57028c-.03222,1.16124-.38787,2.27075-.442,3.46418a1.593,1.593,0,0,0-.97947,1.03362,8.56608,8.56608,0,0,0-1.14291.53694,1.13061,1.13061,0,0,1,.16343-1.21414c.41895-.59326,1.50777-.453,1.41915-1.38889.28084-.453.01151-1.03362.023-1.50732-.1082-.35412-.21523.11843-.38788.10693a1.407,1.407,0,0,1-1.0002-.07358c-.22788-.23915-.50758-.43116-.572-.75424a1.76066,1.76066,0,0,1-.80682-.70019Z"/><path id="path143" class="cls-4" d="M145.54308,54.0509c.46039.06323.94724-.14027,1.34548.08508a.76951.76951,0,0,1-.49492.25869l-.72165.33458C145.40266,54.66256,145.55344,54.23256,145.54308,54.0509Z"/><path id="path145" class="cls-4" d="M147.42837,45.06448c.46154-.15061.95876-.46105,1.45367-.31043a6.94972,6.94972,0,0,0-.90351,1.24632l-1.47554-.031A2.07707,2.07707,0,0,1,147.42837,45.06448Z"/><path id="path147" class="cls-4" d="M151.748,44.71036c.61231-.10693.58008.6887,1.1406.722.09784.12877.23826.246.183.4392a9.36874,9.36874,0,0,1-1.16478.15062c-.48455-.269-.17035-1.10835-.93689-1.05432-.04144-.06323-.12891-.19315-.02072-.23684a1.84978,1.84978,0,0,1,.79878-.0207Z"/><path id="path149" class="cls-4" d="M151.36008,47.59507a1.47446,1.47446,0,0,1,1.0658-.48519l2.79.054c.11854.10692-.107.2035-.107.33342-.17264.161-.42126.20466-.572.35643-.36486.01149-.33493.4392-.59275.62316-.39939.39781-.97947.21615-1.44331.15061a1.23609,1.23609,0,0,1-.4201-.46334l-.12891.12877c.16228.60362.11854,1.27162.23595,1.88328l.66756.44265c.0115.98994,1.17513.72089,1.68156,1.27047a3.01238,3.01238,0,0,1-.61231.95774,3.60154,3.60154,0,0,0-1.36851-.829c-.04259-.58178-.67792-.9244-1.03472-1.21644-.09669-1.05431-.11855-2.13047-.2889-3.1526Z"/><path id="path151" class="cls-4" d="M152.37179,54.23256h1.29368l-.16229.67835-1.29369-.54958c-.02993-.10693.08632-.13912.16228-.12877Z"/><path id="path153" class="cls-4" d="M154.6979,42.043l.95875-.30238a9.8012,9.8012,0,0,1,1.57222.94624,3.79291,3.79291,0,0,1,.15077,2.53864c-.2912.32422-.92652,0-1.16247.51623h-.04373A4.73417,4.73417,0,0,0,153.868,43.364a1.99415,1.99415,0,0,1,.82984-1.32106Z"/><path id="path155" class="cls-3" d="M177.16368,83.03714h5.74678a4.19586,4.19586,0,0,0,2.43315-.73354,11.18837,11.18837,0,0,0,8.05679-1.84879,16.85025,16.85025,0,0,0,3.13294-3.29172,11.86918,11.86918,0,0,0,1.75869-3.27218,15.34137,15.34137,0,0,0,.694-2.30294,21.89843,21.89843,0,0,0-.82294-11.44917q-.33838-.98822-.755-1.90283c-1.517-3.13191-3.57952-6.50986-6.76079-8.492a13.59174,13.59174,0,0,1-4.45081-4.62773c-.55016-.49669-1.07846-1.152-1.78861-1.27047a2.80076,2.80076,0,0,1,.46384,1.01063l-.04373.054a2.61325,2.61325,0,0,1-1.86342-.86231l.572-.51509a3.03215,3.03215,0,0,0-.70093-.20351c-2.17649-.24719-3.96394.75194-5.89066,1.23713l-.03223.10693c1.1832.52658,1.43065,1.82809,2.12124,2.71225.17264-.20581.46384-.05519.69979-.077.34414.02184.66757.269,1.0002.18281a2.93834,2.93834,0,0,0-.20372-.77263,1.41244,1.41244,0,0,1,.67906,0c.62384.36447,1.62632-.06669,2.0142.77263a11.71047,11.71047,0,0,0-2.04642.35527c.04259.269.31191.48519.2912.75423a6.76,6.76,0,0,0-1.81047-.46335l-.02993.09543a6.23676,6.23676,0,0,0,3.04662,1.8419c1.62632.376,3.05813-.39782,4.62921-.12878a18.02506,18.02506,0,0,1,8.58738,9.63257q.10533.27594.20143.55763a18.62885,18.62885,0,0,1,.22558,11.44917,14.03917,14.03917,0,0,1-2.47343,4.18622,8.75984,8.75984,0,0,1-1.41339,1.3889,6.33518,6.33518,0,0,1-5.66393,1.24632c-.12775-.08393-.389-.10692-.34644-.33228.07252-.29893.13927-.60476.198-.914a22.6888,22.6888,0,0,0,.40745-5.428c-.00461-.07934-.00576-.15867-.00921-.23685a20.6976,20.6976,0,0,0-1.62861-7.38022,25.55947,25.55947,0,0,0-2.32036-4.069,9.62886,9.62886,0,0,0-4.315-3.55156,3.23207,3.23207,0,0,0-3.28488.57142,2.20463,2.20463,0,0,0-.755,1.97871,6.74322,6.74322,0,0,1-3.10187,1.00143c-.27738.02415-.56282.12417-.84943.123a4.61755,4.61755,0,0,1-.80223-.03334,7.92788,7.92788,0,0,1-3.79474-1.743c-.02187-.55648-.05525-1.08651-.076-1.67633a2.03111,2.03111,0,0,1-1.14061-1.6039l.05525-.054a4.50416,4.50416,0,0,1,.95645.46335,7.05416,7.05416,0,0,0-.72051-2.39952c-.38789-.16211-.77805-.28974-1.14291-.48519a1.83812,1.83812,0,0,1-.75159-1.24863c.37522.36792,1.03243.238,1.32361.62547-.50527-1.49582-.51679-3.20665-1.34663-4.57369-.42011-1.01178-1.51929-1.474-2.27317-2.21786-.29121-.35412-.40859-.84851-.93689-.9037-.43045-.10693-.46384-.59212-.53865-.90255.26932.031.4949.215.72281.25754-.62613-1.65793-1.17513-3.49638-2.86592-4.55069l-.2912.18166a17.72235,17.72235,0,0,1-2.0142.16211,2.76692,2.76692,0,0,1,1.21773-.80827,2.91273,2.91273,0,0,0-1.45828-.53808,2.98388,2.98388,0,0,1-1.40765.61281l-.05295-.04139c-.0115-.38631-.10128-.86231.48111-.95774a3.35505,3.35505,0,0,0-2.05794,0c-.16228.41966-.62152.79563-.5916,1.29a8.63919,8.63919,0,0,1-.915,1.05546,9.91874,9.91874,0,0,1,.49377-2.29144c-.48456.18166-.97717.4392-1.45022.66685a19.83278,19.83278,0,0,0-2.38826-1.21528c-.076-.03334-.23826-.06553-.206.07359.69979.50588.42931,1.45212.50413,2.17416l-.442-.36446c-.21523-.54958-.83791-.94739-.9438-1.551a8.21409,8.21409,0,0,0-1.88069.62546l-.09434.05289a1.52225,1.52225,0,0,1,1.18434.79562,13.99584,13.99584,0,0,1-2.196-.33227c-.076-.07589-.13927-.16212-.26012-.15062a4.14032,4.14032,0,0,0-1.03357.668,7.23513,7.23513,0,0,0-1.85192,2.50645,1.65587,1.65587,0,0,1,.74353.184c-.40743.24719-.76424.66685-1.16363.9037a9.89383,9.89383,0,0,0-.15077,1.80855,8.11181,8.11181,0,0,0-.93689,1.41878,21.09215,21.09215,0,0,0-.74238,7.01575c-.21638.20351-.49721.33573-.69979.49554l.02187,2.19487h.05294c.099-.46335.648-.72089.98062-1.03247h.1082c-.053.49439-.11855.98878-.12891,1.49582l-.625.51623c-.62267.54843-.09553,1.3751-.15077,2.0638.04489.184.07481.453.20717.49668a2.87074,2.87074,0,0,1,.46039-.699c.26933-.06669.50528-.28054.75274-.31273a11.22631,11.22631,0,0,1-.53866,1.5809,1.97587,1.97587,0,0,0-.328.269.77591.77591,0,0,0-.21754.40011,48.28943,48.28943,0,0,0,2.11894,7.46645c-.5939.99913-.92883,2.17877-1.4226,3.21239-.0702.14487-.13351.29089-.19336.4415-.49492,1.25207-.64569,2.649-1.26146,3.8528a4.23881,4.23881,0,0,0-.79532-.42081,3.24968,3.24968,0,0,0-3.36084.75308,2.88821,2.88821,0,0,0-2.12469.38632,2.83353,2.83353,0,0,0-.94034,1.15319,2.33367,2.33367,0,0,0-.16689,1.02212,2.47136,2.47136,0,0,0-.90466,1.3659,4.23953,4.23953,0,0,0,.84941,3.26528h47.94481Z"/><path id="path157" class="cls-4" d="M198.16314,60.14q-.33839-.9882-.75505-1.90283c-1.517-3.13191-3.57951-6.50986-6.76079-8.492a13.59171,13.59171,0,0,1-4.4508-4.62773c-.55016-.49669-1.07846-1.152-1.78861-1.27047a2.80076,2.80076,0,0,1,.46384,1.01063l-.04373.054a2.61329,2.61329,0,0,1-1.86343-.86231l.572-.51509a3.03178,3.03178,0,0,0-.70093-.2035c-2.1765-.2472-3.96394.75193-5.89066,1.23712l-.03223.10693c1.1832.52658,1.43065,1.8281,2.12124,2.71225.17264-.2058.46384-.05519.69979-.077.34414.02184.66757.269,1.0002.18281a2.938,2.938,0,0,0-.20373-.77263,1.41248,1.41248,0,0,1,.67907,0c.62384.36447,1.62632-.06669,2.0142.77263a11.7103,11.7103,0,0,0-2.04642.35527c.04258.269.3119.48519.2912.75423a6.76018,6.76018,0,0,0-1.81048-.46335l-.02992.09543a6.23667,6.23667,0,0,0,3.04662,1.8419c1.62631.376,3.05812-.39782,4.6292-.12878A18.02507,18.02507,0,0,1,195.89114,59.58q.10532.27594.20142.55763a18.62885,18.62885,0,0,1,.22559,11.44917,14.03938,14.03938,0,0,1-2.47343,4.18622,8.76024,8.76024,0,0,1-1.41339,1.3889,6.33518,6.33518,0,0,1-5.66393,1.24632c-.12775-.08393-.389-.10692-.34644-.33228.07252-.29893.13927-.60476.198-.914a22.68829,22.68829,0,0,0,.40744-5.42795c-.0046-.07934-.00576-.15867-.0092-.23685a20.6976,20.6976,0,0,0-1.62861-7.38022,25.55877,25.55877,0,0,0-2.32037-4.06895,9.62889,9.62889,0,0,0-4.315-3.55157,3.23208,3.23208,0,0,0-3.28487.57143,2.20461,2.20461,0,0,0-.755,1.97871,6.74322,6.74322,0,0,1-3.10187,1.00143c-.27738.02414-.56283.12417-.84943.123a4.61751,4.61751,0,0,1-.80223-.03334,7.92787,7.92787,0,0,1-3.79475-1.743c-.02186-.55648-.05525-1.08651-.076-1.67633a2.03111,2.03111,0,0,1-1.14061-1.6039l.05525-.054a4.50416,4.50416,0,0,1,.95645.46335,7.05411,7.05411,0,0,0-.72052-2.39952c-.38788-.16211-.77805-.28974-1.14291-.48519a1.83807,1.83807,0,0,1-.75158-1.24863c.37522.36792,1.03243.238,1.32361.62546-.50527-1.49581-.51679-3.20664-1.34663-4.57368-.42011-1.01178-1.51929-1.474-2.27318-2.21786-.2912-.35412-.40859-.84852-.93688-.9037-.43045-.10693-.46384-.59212-.53866-.90255.26932.031.49491.215.72282.25754-.62614-1.65793-1.17514-3.49638-2.86592-4.5507l-.2912.18166a17.72026,17.72026,0,0,1-2.0142.16212,2.76672,2.76672,0,0,1,1.21772-.80827,2.91266,2.91266,0,0,0-1.45827-.53808,2.98388,2.98388,0,0,1-1.40765.61281l-.053-.04139c-.0115-.38631-.10128-.86231.48111-.95774a3.35505,3.35505,0,0,0-2.05794,0c-.16229.41966-.62153.79563-.5916,1.29a8.63919,8.63919,0,0,1-.915,1.05546,9.91874,9.91874,0,0,1,.49377-2.29144c-.48456.18166-.97717.4392-1.45023.66685a19.83129,19.83129,0,0,0-2.38826-1.21528c-.076-.03334-.23825-.06553-.206.07358.69979.50589.42931,1.45213.50413,2.17417l-.442-.36446c-.21523-.54958-.8379-.9474-.94379-1.551a8.21409,8.21409,0,0,0-1.88069.62546l-.09437.05289a1.52225,1.52225,0,0,1,1.18434.79562,13.99584,13.99584,0,0,1-2.196-.33227c-.076-.07589-.13927-.16212-.26012-.15062a4.14032,4.14032,0,0,0-1.03357.668,7.23513,7.23513,0,0,0-1.85192,2.50645,1.65587,1.65587,0,0,1,.74353.184c-.40743.24719-.76424.66685-1.16363.9037a9.89383,9.89383,0,0,0-.15077,1.80855,8.11181,8.11181,0,0,0-.93689,1.41878,21.09212,21.09212,0,0,0-.74238,7.01575c-.21638.20351-.49721.33573-.69979.49554l.02187,2.19487h.05294c.099-.46335.648-.72089.98062-1.03247h.1082c-.053.49439-.11855.98878-.12891,1.49582l-.625.51623c-.62267.54843-.09553,1.3751-.15077,2.06379.04489.184.07481.453.20717.49669a2.87074,2.87074,0,0,1,.46039-.699c.26933-.06669.50528-.28054.75274-.31273a11.22631,11.22631,0,0,1-.53866,1.5809,1.97587,1.97587,0,0,0-.328.269.77591.77591,0,0,0-.21754.40011,48.28943,48.28943,0,0,0,2.11894,7.46645c-.5939.99913-.92883,2.17877-1.4226,3.21239-.0702.14487-.13351.29088-.19336.4415-.49492,1.25207-.64569,2.649-1.26146,3.8528a4.23881,4.23881,0,0,0-.79532-.42081,3.24966,3.24966,0,0,0-3.36084.75308,2.88821,2.88821,0,0,0-2.12469.38632,2.83353,2.83353,0,0,0-.94034,1.15319,2.33367,2.33367,0,0,0-.16689,1.02212,2.47133,2.47133,0,0,0-.90466,1.3659,4.23953,4.23953,0,0,0,.84941,3.26528h19.0336a6.1998,6.1998,0,0,1-.73432-1.19343c-.40744-.61512-.12776-1.48548-.1715-2.196.38787-.78183.78151-1.56825,1.22463-2.33283.08978-.15407.17955-.30468.27163-.45415l.87359-.33343c.46269,0,.85172-.33343,1.29254-.21615.59275.59327.59275-.591,1.16479-.645,1.33513-.17246,2.65989-.04369,3.41262,1.08651,0,.15062.23939.15062.18416.29088-.17264.05174-.33494-.05518-.51679-.05518-.81834-.20351-1.77825-.722-2.58509-.2587-.03107.19316-.07251.38977-.11164.58293a5.92083,5.92083,0,0,0-.09438.60016,3.26005,3.26005,0,0,1,1.36736.93589,2.18365,2.18365,0,0,1,1.34663-.93589,3.12879,3.12879,0,0,1,1.29368.38747c.67907.62546.34414,1.69013.28084,2.48575.61232.34377,1.29138.53923,1.91522.8715a3.02285,3.02285,0,0,1-1.03243.49669l-1.03356-.2058c-.11855-.08508-.32457-.08508-.36716-.2357a5.40593,5.40593,0,0,0-.97947,1.32221h14.75542a7.78958,7.78958,0,0,0-.68943-1.19344,6.13143,6.13143,0,0,1-.21522-2.21786l1.37886-2.09828a12.7526,12.7526,0,0,1,2.42278-.15062.89919.89919,0,0,0,.11855-.06324c.33953-.23454.44312-.77953.9484-.71169a2.78554,2.78554,0,0,1,2.27318.57143,1.067,1.067,0,0,1-.06906.14027c-.28428.45415-.816-.05289-1.20392.08393-.16229.17246.076.376.107.57143.14041.192-.14041.17016-.236.2035a.73919.73919,0,0,1-.64684-.2035c-.04259-.05519-.01036-.11843-.09552-.12878a3.32243,3.32243,0,0,0-.55016.97844,2.678,2.678,0,0,1,.69979.77608c.24746.35527-.19452.62316-.27968.93589a.09313.09313,0,0,1-.16229,0c-.22789-.12877-.42012-.453-.66871-.36792-.21639.95889.07481,1.91663-.05409,2.87437a8.10353,8.10353,0,0,0,1.36735,0l.18416-2.02355a6.6221,6.6221,0,0,1,1.88529-3.41245c.98868-.6749,1.62632.65881,2.35719,1.121.11971.02185.07712.15062.12891.22535-.01036.21615-.236.30124-.38672.36677-.45348.15981-.78727-.33458-1.067-.62546-.26818.29088-.38789.6772-.6998.90485l.107.031a2.3539,2.3539,0,0,1,.77805,1.20609,1.35665,1.35665,0,0,1-.648,1.06581,10.655,10.655,0,0,1-.71936-1.551c.01036.023-.01266.03219-.03339.05519-.5939.15981-.75158.82667-.85056,1.3659.03223.52773-.366.74273-.26012,1.26932h7.68157a4.19588,4.19588,0,0,0,2.43315-.73354,11.18837,11.18837,0,0,0,8.05679-1.84879,16.8506,16.8506,0,0,0,3.13294-3.29173,11.86868,11.86868,0,0,0,1.75868-3.27217,15.339,15.339,0,0,0,.694-2.30294A21.895,21.895,0,0,0,198.16314,60.14Z"/><path id="path159" class="cls-4" d="M148.73357,80.111c.4201-.269,1.09918-.33457,1.19471-.95774a1.47548,1.47548,0,0,0-.51678-.33457l-.442.12877a5.28667,5.28667,0,0,1,.26127-.82782l1.4203-.4622a11.48493,11.48493,0,0,0-.33494,2.19487,7.88493,7.88493,0,0,0,.85172,3.18479h-1.53079c-.1715-1.01062-1.22924-1.74416-.90352-2.9261Z"/><path id="path161" class="cls-4" d="M152.04146,78.81872h.08517l1.03241.937.15078-.03219c-.084,1.098-.13927,2.17416-.15078,3.31356H152.0403a13.56532,13.56532,0,0,1-.56052-3.33426,4.99585,4.99585,0,0,1,.56167-.88416Z"/><path id="path163" class="cls-4" d="M154.34454,79.85349c.206-.26789.2912-.722.69979-.77378a1.1012,1.1012,0,0,1,.77805.25754c.37636.47255.00806,1.07732-.12891,1.54986a18.16283,18.16283,0,0,1-.648,2.15117H153.9578l.38672-3.18479Z"/><path id="path165" class="cls-4" d="M170.68487,79.51891c.23709.30239.31191.71055.66756.97959a2.026,2.026,0,0,0,.2371-1.64644l-.31191-.31273c.39938-.09542.81834-.12877,1.21772-.2035a4.4808,4.4808,0,0,0-.442,1.75337c.01036.96923.17149,1.93847.25781,2.94794h-1.18435a6.52127,6.52127,0,0,1-.82984-2.94794,2.59333,2.59333,0,0,1,.38788-.57028Z"/><path id="path167" class="cls-3" d="M175.78021,58.84534c-.0115.27938-.21522.58982-.03338.829.26127-.29088.69059-.28053,1.03586-.40931a8.48974,8.48974,0,0,1,2.76694.43116c-.22558-.35642-.37636-.75424-.625-1.07616-.49607-.12993-1.24995.215-1.33513-.51854-.30155-.25754-.77461-.07358-1.08768-.05289a2.40781,2.40781,0,0,0-.72165.79678Z"/><path id="path169" class="cls-3" d="M142.859,49.55309l-.01611-.0115.0023.0115Z"/><path id="path171" class="cls-3" d="M146.77577,59.119l.64684-.62316a.14435.14435,0,0,1,.1289.05174l-.05294,1.19459a1.68226,1.68226,0,0,0,1.10723.40931c.03338-.32193.28084-.54958.42126-.829.11854-.22535.04373-.55878.27968-.71859l.076.07358a3.38674,3.38674,0,0,0,.2371,1.06467c.02187.17246.0518.38631.07252.53808a2.67058,2.67058,0,0,0,1.27183-.28054,4.84565,4.84565,0,0,1,.18185-1.1164c.099-.12993-.11855-.36792.15077-.35642.15193.32308.4201.65535.572,1.00143a4.18475,4.18475,0,0,0,1.03243-2.32479c-.18185-.246-.46154-.246-.67907-.40816A8.10915,8.10915,0,0,0,146.27855,57,2.73811,2.73811,0,0,0,146.77577,59.119Z"/><path id="path173" class="cls-3" d="M129.65625,79.31081a16.53493,16.53493,0,0,0,.05294,2.42482,1.22915,1.22915,0,0,0,.79877.60131l.05294-.54958c.12891-.76343-.27968-1.574.15194-2.22016a5.202,5.202,0,0,1,.86207.38632,1.88581,1.88581,0,0,0-.73432-1.97067Z"/><path id="path175" class="cls-3" d="M132.31728,78.14727a6.33747,6.33747,0,0,0-.22558,4.13793,4.88988,4.88988,0,0,0,.84941-.64616,4.46571,4.46571,0,0,1,.40975-2.933,1.90653,1.90653,0,0,1,1.08651,1.16125,1.98112,1.98112,0,0,0,.33609-1.67633c.02186-.47485-.51679-.36562-.77576-.55993.08517-.399.07366-.85886.49492-1.08651l-1.29139.12877A6.12846,6.12846,0,0,0,132.31728,78.14727Z"/><path id="path177" class="cls-3" d="M134.97832,81.86555c.0541.09543,0,.269.10935.29088.16-.90485.892-1.49007,1.29254-2.288.19221-.26559.183-.645.49491-.84851.419,0,.72166.30124,1.13141.33343.12891.09773-.06675.184-.07712.29088a10.70922,10.70922,0,0,0-.31191,2.09254h.07481a11.01166,11.01166,0,0,0,1.37886-1.94192l.07367-.61167c.099-.73238-.69749-1.20493-1.21773-1.50731l.46384-.59327-.64684-.22535a2.93892,2.93892,0,0,0-1.9601.98073,8.73222,8.73222,0,0,0-.80568,4.02756Z"/><path id="path179" class="cls-3" d="M137.87647,75.47986c.24631.07358.47305-.12877.71936-.023a6.54938,6.54938,0,0,1,2.76923,1.57056l.88394,2.25.442-1.39-.2912-.75079c-.24861-.53808-.92653-.49439-1.39037-.51623-.19336-.21616.01036-.46335.076-.66686.22559-.76458-.7113-.722-1.08767-1.03362.02187-.46105-.53865-.30238-.85171-.34377l-.107-.12877a.21956.21956,0,0,0-.31306-.023c-.01957-.03219-.06331-.054-.04144-.10692l-.236.05289a1.51378,1.51378,0,0,0-.572,1.1095Z"/><path id="path181" class="cls-3" d="M138.49915,73.00445a.70588.70588,0,0,0,.22559.36562c.4857-.12877.95069-.46449,1.50891-.25869a8.50231,8.50231,0,0,0,2.34913,1.64529l.31307-.05289c.19221.06324.40744.07358.53636.29088.11969.29089-.18185.46105-.27738.6979.4834.35642.29119.98993.5916,1.41993l.77459-1.03132c-.1807-.453.01152-1.22678-.69749-1.27047a.67444.67444,0,0,1-.39017-.62316c-.46154-.41966-1.03243-.60246-1.49512-1.03362-.37982-.30008-.60426-.76228-1.08766-.87035a3.96155,3.96155,0,0,0-1.08767-.36448C139.039,71.80872,138.9745,72.66988,138.49915,73.00445Z"/><path id="path183" class="cls-3" d="M139.535,70.88432l.12891.207c.53866-.03334,1.02206-.269,1.55036-.25984.35449.215.81834.2035,1.18434.38746a4.12313,4.12313,0,0,0,1.03243,1.11755c.87359.12877,1.357,1.06812,1.65855,1.75451v-.33227a2.33094,2.33094,0,0,0-.1807-1.42224c-.21639-.215-.5306-.35412-.755-.54613a.4431.4431,0,0,1,.03223-.33457,7.1713,7.1713,0,0,0-1.2396-.83012c-.57088-.829-1.66775-.60017-2.54134-.829l-.87013,1.08766Z"/><path id="path185" class="cls-3" d="M139.5166,62.99132c.09553.33458.21177.75308.27738,1.1095.3004-.66685.89545-.96923,1.4226-1.51651a2.72042,2.72042,0,0,0-1.0117-.36562v-.02185C139.96663,62.43139,139.60062,62.66939,139.5166,62.99132Z"/><path id="path187" class="cls-3" d="M141.47325,66.53254l.48341-.4944a3.05413,3.05413,0,0,0,.95876-1.70162,1.38289,1.38289,0,0,0-1.12911.05519,13.52666,13.52666,0,0,0-.31307,2.14083Z"/><path id="path189" class="cls-3" d="M141.82775,68.0502a3.13625,3.13625,0,0,0,2.06944-.22765l.60426-1.93617c-.19566-.0115-.39017-.09888-.572-.03219A4.71936,4.71936,0,0,1,141.82775,68.0502Z"/><path id="path191" class="cls-3" d="M142.04644,61.18507a4.34558,4.34558,0,0,0,2.12124,1.73152c-.09553-.90485-.87129-1.52916-1.27067-2.3018l-.02186-.25869a3.95548,3.95548,0,0,0-1.01285-.66685,5.07956,5.07956,0,0,0,.18415,1.49582Z"/><path id="path193" class="cls-3" d="M144.6718,68.13528a3.81885,3.81885,0,0,0,1.71264-.16211c.76425-.184,1.1855-1.02213,1.44331-1.67748H146.869l-1.03243,1.01063a7.84181,7.84181,0,0,0-1.16478.829Z"/><path id="path195" class="cls-3" d="M144.55555,60.20548a6.29052,6.29052,0,0,0,1.00365,2.32479l.12776-1.6039Z"/><path id="path197" class="cls-3" d="M148.08672,64.39056a7.839,7.839,0,0,0-.22329-1.70967c-.32342-.21615-.7746-.19546-1.10953-.40816A3.16459,3.16459,0,0,0,148.08672,64.39056Z"/><path id="path199" class="cls-3" d="M147.10725,69.85645a10.78421,10.78421,0,0,0,1.96125-.79562c.39824-.57143,1.0002-1.08651,1.08767-1.75336-.49837.13912-.92653-.023-1.39037.20465a3.549,3.549,0,0,1-.991,1.44178C147.68849,69.31722,147.29026,69.56557,147.10725,69.85645Z"/><path id="path201" class="cls-3" d="M148.16154,71.17981l.808,1.05432a1.64194,1.64194,0,0,0,1.34663-.14947l-.28889-.95659A3.7721,3.7721,0,0,1,148.16154,71.17981Z"/><path id="path203" class="cls-3" d="M149.50817,63.56274l.31192,1.41879a2.84394,2.84394,0,0,0,.8874-2.45126,3.33978,3.33978,0,0,1-1.19931,1.03247Z"/><path id="path205" class="cls-3" d="M151.63171,66.068a1.01937,1.01937,0,0,0,.1807.55992c.84021.30239.92653,1.32221,1.70343,1.70968a1.90776,1.90776,0,0,0,1.52733-.2587c-.33263-.376-.709-.63466-1.03242-1.03132-.22559-.09658-.45464-.23685-.442-.51623l-1.93708-.46335Z"/><path id="path207" class="cls-3" d="M152.29927,71.14877a2.49355,2.49355,0,0,0,1.37656.75078c-.08517-.11727.05526,0,.076-.07358l-.64684-1.42109c-.32342.0115-.65835.077-.95876.05519A2.96467,2.96467,0,0,0,152.29927,71.14877Z"/><path id="path209" class="cls-3" d="M153.441,64.52048a8.4368,8.4368,0,0,1-.51563-2.32364c-.32112.38747-.656.63581-.95876,1.03133C151.82623,64.02379,152.96684,64.2181,153.441,64.52048Z"/><path id="path211" class="cls-3" d="M154.75315,63.78694c.39018.50819,1.23959.33573,1.71379.184-.22675-.38746-.95645-.61511-1.08536-1.03132a9.15929,9.15929,0,0,0-.46384-2.14083C154.54138,61.71165,154.08558,62.79931,154.75315,63.78694Z"/><path id="path213" class="cls-3" d="M155.43222,66.068c1.07731.78528,2.1339,1.70047,3.63937,1.3659.10818-.07359.29234-.06554.31306-.20351-.442-.27939-.915-.49669-1.36735-.75423l-.51564-.75193h-.23709a9.3318,9.3318,0,0,1-1.83234.34377Z"/><path id="path215" class="cls-3" d="M155.45408,74.79461h.07712a5.75149,5.75149,0,0,1,2.17419-.9037c.206.07588.076.30238.26011.38747.46269-.192,1.02323-.15062,1.49627-.31159a3.23156,3.23156,0,0,1,1.49741.27824c.36831.4852,1.05544.43,1.53079.75423l-.07712-.75423c-1.0002-1.17274-2.56206-1.25782-4.00537-1.236l-.03223-.15062a2.57021,2.57021,0,0,0-1.05544.22535,5.56019,5.56019,0,0,0-1.34664.38631A12.4153,12.4153,0,0,0,155.45408,74.79461Z"/><path id="path217" class="cls-3" d="M156.31961,61.57138a1.81879,1.81879,0,0,0,1.75522.83012c-.36486-.35757-.78727-.73354-.808-1.23828.10819-.95774-.94724-1.03477-1.464-1.52916A6.49646,6.49646,0,0,0,156.31961,61.57138Z"/><path id="path219" class="cls-3" d="M156.20912,76.69859h.12891c.56973-.35412,1.39958-.08393,1.96011-.46105.31191-.16211.33377.269.549.38747.52829.32077.5939,1.29,1.33627,1.06466.892.4622.66756,1.54871.69979,2.34433l.82984-.51509c-.076-.41965.16229-.92554-.10819-1.29116-.20486-.4622-.76538-.50474-1.03472-.8807.32457-.54958-.40859-.80942-.56052-1.20724l.04489-.05289,1.14177.15062a1.70414,1.70414,0,0,1,.64684,1.06581c.892.15062,1.10724,1.16124,1.42029,1.80625.18416-.44035.259-.9152.442-1.3452.0115-.35527-.46268-.35527-.69979-.51624a1.90869,1.90869,0,0,0-.79647-1.39694,11.6983,11.6983,0,0,0-2.94994-.79677l-.90466.27824c-.49723.11957-1.02436-.031-1.40188.31158C156.391,75.688,156.34953,76.30192,156.20912,76.69859Z"/><path id="path221" class="cls-3" d="M156.77885,72.26632l.206.09773c.442-.20466.88279-.4415,1.34664-.614.71935-.2035,1.27987.614,1.88528.09658.22445-.15981.42012.07589.59045.20581.26242.47254.86323.44035,1.31671.568-.22675-.61167-.50757-1.451-1.29368-1.54871a7.62835,7.62835,0,0,1-.97948-.31158c-.82984-.914-1.36735.75423-2.27547.34608A2.50171,2.50171,0,0,0,156.77885,72.26632Z"/><path id="path223" class="cls-3" d="M156.98487,77.50686c.34414.29088.69979.78643,1.23959.72089.66641.31158.38673,1.19459.75159,1.65793l.38788-.34492-.03223-.023.05409-.05289.023.02989a2.04957,2.04957,0,0,0-.22789-1.26932c-.24631-.17131-.53636.0115-.77461-.15062a1.07486,1.07486,0,0,0-.49491-.73008c-.17264-.13107-.39938.04139-.59391.02989Z"/><path id="path225" class="cls-3" d="M158.33151,64.39056a5.56876,5.56876,0,0,0,1.59408,1.3659,2.5546,2.5546,0,0,0,1.52964.14946,9.8703,9.8703,0,0,1-1.27068-1.25782c-.15193-.21615-.18416-.48634-.38788-.67835a3.01852,3.01852,0,0,0-1.46518.42081Z"/><path id="path227" class="cls-3" d="M158.92541,60.54006c.49491.61282,1.26032.36562,1.96011.38746v-.07588l-1.07731-.9037A2.84368,2.84368,0,0,0,158.92541,60.54006Z"/><path id="path229" class="cls-3" d="M139.0965,50.3924l.62382,1.93732c-.01151-1.098.49722-2.01435.389-3.1319l.46154-.68985-.98063.30238A3.63165,3.63165,0,0,0,139.0965,50.3924Z"/><path id="path231" class="cls-3" d="M139.5166,47.03515l.85056-.49439V45.28063a4.54179,4.54179,0,0,0-.82985.87036Z"/><path id="path233" class="cls-3" d="M156.98717,48.99316a1.18942,1.18942,0,0,1-.77575.38632,3.66467,3.66467,0,0,0,.31307-2.91576,4.382,4.382,0,0,0,.72052-.25754l-.02187-.023.59275-.51623c.78611-.53808.48341-1.55906.77461-2.32364-.38673-.60132-.50527-1.3337-1.06579-1.83959l.03222-.02185c-.442-.55992-1.23845-.49439-1.84156-.77378-.79877-.269-1.41224.27939-1.98427.645-.24745.04369-.09552.36562-.36486.35412a11.06065,11.06065,0,0,0-.44311,1.27047,4.30918,4.30918,0,0,0-3.06849.57028,4.48169,4.48169,0,0,0-1.52964-.54843c-.38788-.077-.8287.06323-1.10838-.15177-.4086-.46105-.49722-1.30151-1.19816-1.41879-.24746-.08738-.29926-.35642-.29926-.59326-.46384-.077-.87474-.29089-1.32477-.38747-.68943-.31273-1.23844.184-1.75523.51624a5.21969,5.21969,0,0,0-.70094.25754,10.171,10.171,0,0,0-1.0025,1.88328,3.96035,3.96035,0,0,0,.5939,1.49582,3.051,3.051,0,0,0,1.67927,1.52917,6.32644,6.32644,0,0,0,0,3.409l-.01727.0115-.03452.03219a.57186.57186,0,0,1-.29811-.03219h-.01381a4.72,4.72,0,0,0,1.4203,2.70075c.28084.09658.21522.43116.33263.645a.50262.50262,0,0,1,.05524.38746,8.467,8.467,0,0,0-4.52561,1.1302c-.34415.17247-.19336.645-.22559.97959a8.30813,8.30813,0,0,1,3.10186-1.29232,4.74967,4.74967,0,0,1,1.49742-.02184l.05294.92784c-1.27988.668-2.68176,1.05432-3.77863,2.15233a4.2546,4.2546,0,0,0,.05294.99912l.98177-.79562a11.61928,11.61928,0,0,1,3.02475-1.73267,3.82065,3.82065,0,0,0,.98178.92555,7.25871,7.25871,0,0,1,2.12239-.92555c.39823-.23684,1.03472-.02184,1.29254-.49439l.18185-.97958c-.02993-.02184-.05294-.06553-.10705-.05519a1.47981,1.47981,0,0,1-.79647-1.38659,1.41312,1.41312,0,0,1-.57088.14831c-.17035-.04139-.33378-.08508-.4086-.25869-.01036-.21385-.1197-.53693.09783-.69674a4.17121,4.17121,0,0,1,2.48725-.38862c.656.08738,1.60445.054,1.83235.829-.03223.2265-.01151.47484-.23825.62431-.2371.12877-.50528-.0115-.72166-.10923a1.78654,1.78654,0,0,1-1.05429,1.29232l.07367.62316c.07366.28054.09668.74274.53865.645a9.522,9.522,0,0,1,2.82218,1.3452,6.39327,6.39327,0,0,0,.75274-.95774,14.15437,14.15437,0,0,1,4.28967,2.84332l.05179-.90485a14.66469,14.66469,0,0,0-4.08249-2.50644,5.73606,5.73606,0,0,0,.13121-.88416,10.60957,10.60957,0,0,1,4.74775,1.45213l-.02186-.77378a10.53515,10.53515,0,0,0-4.88816-1.34405.52435.52435,0,0,1-.076-.33343,2.39186,2.39186,0,0,0,1.68042-1.80855c.44312-.50474,1.07846-1.05431.92768-1.80625.01843-.06323.04029-.12877.0633-.1943a.90942.90942,0,0,0,.04259-.55763Z"/><path id="path235" class="cls-3" d="M158.48344,51.75945l.88279-.28054.099-.49324c.24746-.722-.28084-1.26012-.5398-1.83039Z"/><path id="path237" class="cls-3" d="M160.71286,55.16845c.42011.46335.82984,1.20493,1.57338.97958a4.70516,4.70516,0,0,0-.33377-.85081c-.19336-.22535-.26012-.87151-.64684-.645-.2912-.19315-.36486-.51623-.55016-.77493a7.695,7.695,0,0,0-.04259,1.29117Z"/><path id="path239" class="cls-3" d="M160.86364,58.32105c.16229.22535.20716.51739.366.722a1.7606,1.7606,0,0,0,1.07961.12877c.32113-.07588.52714.27824.82754.07474-.37636-.23685-.60195-.66686-.95645-.98074C161.75909,57.93474,161.30675,58.22562,160.86364,58.32105Z"/><path id="path241" class="cls-3" d="M161.43568,63.3259a4.15694,4.15694,0,0,0,2.67946.72089c.107-.05289.2912-.04254.31191-.17132a16.55923,16.55923,0,0,0-1.90371-.95773c-.35566-.54843-.8195.14026-1.27182.09657C161.26188,63.14194,161.39079,63.23851,161.43568,63.3259Z"/><path id="path243" class="cls-3" d="M163.672,72.82625l.16229.34377c.16344,1.11985.87129,2.15117.48456,3.378.32343.22765.42011.60362.62614.90485h.053a7.22369,7.22369,0,0,0-.053-2.841c.09668-.84966-.76655-1.344-1.273-1.78556Z"/><path id="path245" class="cls-3" d="M163.85847,61.80823a2.4139,2.4139,0,0,0,2.09937.25869A6.604,6.604,0,0,1,164.762,61.292Z"/><path id="path247" class="cls-3" d="M166.5172,65.1103a1.17908,1.17908,0,0,0,.57089,1.05662,2.4645,2.4645,0,0,0,.33263-.79678,1.98505,1.98505,0,0,0-.77575-1.19573,2.67934,2.67934,0,0,0-.12775.93589Z"/><path id="path249" class="cls-3" d="M166.54943,70.01856c-.07712.50474.48341.57028.71936.84967.19452.23684-.12891.399-.12891.62431a2.90348,2.90348,0,0,1,.648,1.82809,17.96074,17.96074,0,0,0,.49491-1.95686c-.04373-.47485-.79648-.376-.67907-.9037a2.32343,2.32343,0,0,0-.183-1.551c-.04143-.07358-.14041-.22535-.22445-.18051C167.00061,69.16775,166.5172,69.48048,166.54943,70.01856Z"/><path id="path251" class="cls-3" d="M168.025,67.45693l.55936,1.08651c.24746-.03219.40859-.269.602-.4415.15077-.45185-.24862-.74274-.36486-1.10951-.09784-.25869,0-.60131-.18416-.82666-.14041-.08738-.30041-.22765-.46154-.184l-.15078,1.47512Z"/><path id="path253" class="cls-3" d="M168.74433,64.59407a3.1378,3.1378,0,0,1,1.18665,1.1302c.37637,1.098.97948,2.08563,1.42029,3.15145.1623.74273.29121,1.40614.49491,2.13623.07712.1943.03339.57027.33609.53808.084-.81747.24632-1.6039.25782-2.45356a3.18812,3.18812,0,0,0-.95875-.71974v-.07589c.04373-.18166.19566-.399.42011-.36446.09552-.10808.38788-.215.259-.40931-.56052-.55878-.5283-1.52112-1.42029-1.69473a.815.815,0,0,1-.42011-.75193,2.56556,2.56556,0,0,0-1.57568-.48634Z"/><path id="path255" class="cls-3" d="M169.26458,70.42673c.54786.50473.35566,1.23712.31191,1.91547-.08518.40931.43045.17016.59275.38747a2.34774,2.34774,0,0,1,.023,1.75336,10.4525,10.4525,0,0,0,.84942-1.31416c-.0092-.18166.22675-.269.21639-.49554.09552-.31158-.26932-.17131-.42125-.2035-.12891-.0322-.26818-.11843-.22445-.29089a2.643,2.643,0,0,0-.08748-1.72117c-.12891-.4415.05525-1.03362-.15193-1.42108C170.02767,69.51268,169.0033,69.61961,169.26458,70.42673Z"/><path id="path257" class="cls-3" d="M170.26476,62.78781c.95991.96924,1.6597,1.94192,2.69326,2.879a11.484,11.484,0,0,0-.053-1.21643,2.85347,2.85347,0,0,0-.66986-.72205c-.76425-.07358-1.16248-1.1026-1.97047-.94049Z"/><path id="path259" class="cls-3" d="M172.77272,67.91453a1.47013,1.47013,0,0,0,.11049.27939,14.16,14.16,0,0,1,1.10954,2.142c-.08748-.79678.45118-1.78556-.26128-2.39952-.09552-.25985-.41665-.17247-.62383-.15177l-.33493.12992Z"/><path id="path261" class="cls-3" d="M175.359,75.77419c.30155.14027.68943-.10692.98064-.27939a.88874.88874,0,0,1,.70093.2265c.08518.17131,0,.33343.03223.49554a6.541,6.541,0,0,1,1.85076.79563l.18186-.18281a1.26724,1.26724,0,0,0-.66757-1.05547c-.22445-.12877-.56052-.05289-.72051-.25754a1.11827,1.11827,0,0,0,.09668-.62431,1.5639,1.5639,0,0,1-.87129-.27939c-.18416-.054-.34644-.2058-.49723,0-.5375.36447-.56972.9037-1.08651,1.16124Z"/><path id="path263" class="cls-3" d="M176.11515,62.23479a1.95125,1.95125,0,0,0,.77461-.34608c.72281-.6565,1.76674-.215,2.6081-.22535a5.87275,5.87275,0,0,0-.59391-.829,2.48545,2.48545,0,0,0-.92652-.25755c-.73316-.43115-1.22693.29089-1.78861.645a1.19073,1.19073,0,0,0-.07365,1.01293Z"/><path id="path265" class="cls-3" d="M176.13355,64.45035c0-.03334,0-.06669.03223-.07474.099.08508-.01036.292.15193.33343a6.32029,6.32029,0,0,0,.79648-.51623c.72165,0,1.15327-.7002,1.86226-.7002a10.78573,10.78573,0,0,1,3.39306,1.03247,2.32812,2.32812,0,0,0-1.29138-1.64528.884.884,0,0,0-.86207.25869c-.72052.453-.34414-.6565-.84943-.67835a5.32944,5.32944,0,0,1-2.06944.36447c-.43046.16326-.73316.55993-1.21773.51623A2.80992,2.80992,0,0,0,176.13355,64.45035Z"/><path id="path267" class="cls-3" d="M176.63078,66.84872c.22559.23914.602.19545.92652.23914l.93689-.36792c.01036-.169-.27968-.215-.21523-.40815.259-.29089.61231-.08509.93688-.20351.45118-.06553.915-.51509,1.36736-.184-.0138.05519.01956.12877-.023.184-.13927.33343.09668.53808.35565.66685.5283.09658,1.02206.58177,1.55036.36447a9.69051,9.69051,0,0,0-.27854-1.26932c-.442-.07473-.755-.44035-1.16363-.59212a.881.881,0,0,1-.64684.27939c-.82985-.19431-1.822-.71054-2.661-.18281-.30155.36677-.84021.2587-1.24995.41966A4.88336,4.88336,0,0,0,176.63078,66.84872Z"/><path id="path269" class="cls-3" d="M176.98644,73.2459c-.06446.18281-.24746.48289.08747.57027.68829.0207,1.57223-.33457,2.11088.20351.183.14027.09553.43115.084.614l.90466.75308a7.9382,7.9382,0,0,0,.26127-1.34635,1.50887,1.50887,0,0,0-.55016-.90255c-.5939,0-.93688-.6933-1.57452-.60822-.33263-.07358-.62383.2219-.95875.2219a5.581,5.581,0,0,0-.36486.4944Z"/><path id="path271" class="cls-3" d="M177.24425,68.17207c.13927.29089.30271.76459.57089.79563a3.07537,3.07537,0,0,1,2.27317-.14832c.236.04139.236.31043.18416.48289.36486.215.80683.38747,1.1947.62317l-.10819-.64616c-.02186-.699-.90351-.76228-.95875-1.45213a4.25429,4.25429,0,0,0-2.29387-.12877c-.24746.22535-.60426.19545-.90352.25869-.02186.08623.02993.14142.04143.215Z"/><path id="path273" class="cls-3" d="M177.42725,71.65925c.42011-.11957.69059-.58062,1.14291-.62431a2.10988,2.10988,0,0,1,1.73452.8853c.25781.169.20372.61052.53865.61052a10.476,10.476,0,0,1,.0518-1.54986c-.45-.75193-1.57108-.17016-1.99118-1.05432l-.79647.054c-.572.14142-.42011.80827-.49491,1.26127-.06561.138-.19452.246-.1853.41736Z"/><path id="path275" class="cls-3" d="M181.382,76.36631c.33263.66686,1.06695,1.17274,1.14061,1.93617a3.51648,3.51648,0,0,0,.40859-.66685c-.0115-.215-.259-.215-.3545-.38747-.099-.27939.05179-.52658.09552-.77493a2.11347,2.11347,0,0,0-.85056-1.01178l-.43968.90485Z"/><path id="path277" class="cls-3" d="M182.70676,74.66584l.77461,1.05546a2.77637,2.77637,0,0,0,.20372-1.93732c-.07366-.11957-.21523-.31273-.40745-.22535C182.98644,73.85872,182.94271,74.32206,182.70676,74.66584Z"/><path id="path279" class="cls-3" d="M179.54963,45.21395a2.24788,2.24788,0,0,0,.8851.29089,1.11275,1.11275,0,0,1,.79647-.12878c.39823.2587.88279-.054,1.34663-.03219a4.9986,4.9986,0,0,0-1.34663-.85081C180.627,44.62068,180.14353,45.05184,179.54963,45.21395Z"/><path id="path281" class="cls-3" d="M183.76105,46.22343c.57088.054.98177.55992,1.36735.97958a1.919,1.919,0,0,1,1.14061.77378l-.1807-.56912a3.67323,3.67323,0,0,0-.85172-1.46478A4.24977,4.24977,0,0,0,183.76105,46.22343Z"/><path id="path283" class="cls-4" d="M143.56572,41.50487l.31306.03334c.83791.41966,2.1949.63466,2.27317,1.84994a6.61163,6.61163,0,0,0-2.35028,1.474c-.51563-.52659-1.56072-.23685-1.73452-1.16125C142.23059,42.82708,142.54135,41.72907,143.56572,41.50487Z"/><path id="path285" class="cls-4" d="M144.37484,46.96156c.98063-.08738,1.92788.05174,2.94073-.03334a1.28789,1.28789,0,0,1,.62383.56912c-.03338,1.1624-.38788,2.2719-.44083,3.46534a1.58962,1.58962,0,0,0-.98177,1.03247,8.48941,8.48941,0,0,0-1.14291.53693,1.14421,1.14421,0,0,1,.16344-1.21643c.4201-.591,1.50891-.453,1.42259-1.38889.27969-.4507.01152-1.03247.01957-1.505-.107-.35642-.21523.11842-.38672.10693a1.39918,1.39918,0,0,1-1.00135-.077c-.22674-.23684-.50413-.43115-.57089-.75193a1.76127,1.76127,0,0,1-.808-.699l.16228-.03909Z"/><path id="path287" class="cls-4" d="M145.55919,53.97386c.46039.06669.94725-.14027,1.34548.08738-.084.15177-.31191.215-.49491.2587l-.72281.33227C145.41877,54.589,145.56955,54.15782,145.55919,53.97386Z"/><path id="path289" class="cls-4" d="M147.44333,44.9909c.46154-.15062.95876-.46105,1.45368-.31273a7.03991,7.03991,0,0,0-.90352,1.24862L146.518,45.8946A2.09157,2.09157,0,0,1,147.44333,44.9909Z"/><path id="path291" class="cls-4" d="M151.76292,44.63678c.61346-.10693.58008.68869,1.14061.71859.099.12877.23939.24719.18416.4415a9.22374,9.22374,0,0,1-1.16364.15062c-.4857-.269-.17149-1.10836-.93689-1.05432-.04259-.06554-.12776-.19431-.02186-.23685A1.811,1.811,0,0,1,151.76292,44.63678Z"/><path id="path293" class="cls-4" d="M151.375,47.518a1.47014,1.47014,0,0,1,1.067-.48289l2.79.05173c.11855.10923-.10818.20581-.10818.33458-.1715.16212-.42011.20581-.57089.35527-.366.01035-.33377.4415-.5916.62546-.39939.39782-.98178.21386-1.44447.15062a1.26783,1.26783,0,0,1-.42125-.46335l-.12891.12877c.16229.60362.1197,1.27047.2394,1.88329l.66757.4415c.01036.98878,1.174.71974,1.67926,1.26932a2.959,2.959,0,0,1-.61347.95774,3.656,3.656,0,0,0-1.36736-.829c-.04374-.57832-.67906-.92439-1.03242-1.21413-.099-1.05547-.1197-2.13163-.29119-3.15375Z"/><path id="path295" class="cls-4" d="M152.3879,54.15782h1.29369l-.16229.6772-1.29484-.54843c-.02993-.10692.08747-.13912.16343-.12877Z"/><path id="path297" class="cls-4" d="M154.714,41.96822l.95875-.30124a9.68718,9.68718,0,0,1,1.57222.94624,3.785,3.785,0,0,1,.15077,2.53864c-.2912.32193-.92652,0-1.16247.51624h-.04489a4.70742,4.70742,0,0,0-2.30424-2.37653,1.991,1.991,0,0,1,.82984-1.32335Z"/></g></g></g></svg>
\ No newline at end of file
diff --git a/content/zh-cn/case-studies/jd-com/index.html b/content/zh-cn/case-studies/jd-com/index.html
new file mode 100644
index 0000000000..ae3360216b
--- /dev/null
+++ b/content/zh-cn/case-studies/jd-com/index.html
@@ -0,0 +1,79 @@
+---
+title: JD.com Case Study
+linkTitle: jd-com
+case_study_styles: true
+cid: caseStudies
+featured: false
+
+new_case_study_styles: true
+heading_background: /images/case-studies/jdcom/banner1.jpg
+heading_title_logo: /images/jdcom_logo.png
+subheading: >
+  JD.com: How JD.com Pioneered Kubernetes for E-Commerce at Hyperscale
+case_study_details:
+  - Company: JD.com
+  - Location: Beijing, China
+  - Industry: eCommerce
+---
+
+<h2>Challenge</h2>
+
+<p>With more than 300 million active users and total 2017 revenue of more than $55 billion, <a href="https://corporate.JD.com/home">JD.com</a> is China's largest retailer, and its operations are the epitome of hyperscale. For example, there are more than a trillion images in JD.com's product databases—with 100 million being added daily—and this enormous amount of data needs to be instantly accessible. In 2014, JD.com moved its applications to containers running on bare metal machines using OpenStack and Docker to "speed up the delivery of our computing resources and make the operations much simpler," says Haifeng Liu, JD.com's Chief Architect. But by the end of 2015, with tens of thousands of nodes running in multiple data centers, "we encountered a lot of problems because our platform was not strong enough, and we suffered from bottlenecks and scalability issues," says Liu. "We needed infrastructure for the next five years of development, now."</p>
+
+<h2>Solution</h2>
+
+<p>JD.com turned to Kubernetes to accommodate its clusters. At the beginning of 2016, the company began to transition from OpenStack to Kubernetes, and today, JD.com runs the world's largest Kubernetes cluster. "Kubernetes has provided a strong foundation on top of which we have customized the solution to suit our needs as China's largest retailer."</p>
+
+<h2>Impact</h2>
+
+<p>"We have greater data center efficiency, better managed resources, and smarter deployment with the Kubernetes platform," says Liu. Deployment time went from several hours to tens of seconds. Efficiency has improved by 20-30%, measured in IT costs. With the further optimizations the team is working on, Liu believes there is the potential to save hundreds of millions of dollars a year. But perhaps the best indication of success was the annual Singles Day shopping event, which ran on the Kubernetes platform for the first time in 2018. Over 11 days, transaction volume on JD.com was $23 billion, and "our e-commerce platforms did great," says Liu. "Infrastructure led the way to prep for 11.11. We took the approach of predicting volume, emulating the behavior of customers to prepare beforehand, and drilled for malfunctions. Because of Kubernetes's scalability, we were able to handle an extremely high level of demand."</p>
+
+{{< case-studies/quote author="HAIFENG LIU, CHIEF ARCHITECT, JD.com" >}}
+"Kubernetes helped us reduce the complexity of operations to make distributed systems stable and scalable. Most importantly, we can leverage Kubernetes for scheduling resources to reduce hardware costs. That's the big win."
+{{< /case-studies/quote >}}
+
+{{< case-studies/lead >}}
+With more than 300 million active users and $55.7 billion in annual revenues last year, JD.com is China's largest retailer, and its operations are the epitome of hyperscale.
+{{< /case-studies/lead >}}
+
+<p>For example, there are more than a trillion images in JD.com's product databases for customers, with 100 million being added daily. And this enormous amount of data needs to be instantly accessible to enable a smooth online customer experience.</p>
+
+<p>In 2014, JD.com moved its applications to containers running on bare metal machines using OpenStack and Docker to "speed up the delivery of our computing resources and make the operations much simpler," says Haifeng Liu, JD.com's Chief Architect. But by the end of 2015, with hundreds of thousands of nodes in multiple data centers, "we encountered a lot of problems because our platform was not strong enough, and we suffered from bottlenecks and scalability issues," Liu adds. "We needed infrastructure for the next five years of development, now."</p>
+
+<p>After considering a number of orchestration technologies, JD.com decided to adopt Kubernetes to accommodate its ever-growing clusters. "The main reason is because Kubernetes can give us more efficient, scalable and much simpler application deployments, plus we can leverage it to do flexible platform scheduling," says Liu.</p>
+
+{{< case-studies/quote
+  image="/images/case-studies/jdcom/banner3.jpg"
+  author="HAIFENG LIU, CHIEF ARCHITECT, JD.com"
+>}}
+"We customized Kubernetes and built a modern system on top of it. This entire ecosystem of Kubernetes plus our own optimizations have helped us save costs and time."
+{{< /case-studies/quote >}}
+
+<p>The fact that Kubernetes is based on Google's Borg also gave the company confidence. The team liked that Kubernetes has a clear and simple architecture, and that it's developed mostly in Go, which is a popular language within JD.com.  Though he felt that at the time Kubernetes "was not mature enough," Liu says, "we adopted it anyway."</p>
+
+<p>The team spent a year developing the new container engine platform based on Kubernetes, and at the end of 2016, began promoting it within the company. "We wanted the cluster to be the default way for creating services, so scalability is easier," says Liu. "We talked to developers, interest grew, and we solved problems together." Some of these problems included networking performance and etcd scalability. "But during the past two years, Kubernetes has become more mature and very stable," he adds.</p>
+
+<p>Today, the company runs the world's largest Kubernetes cluster. "We customized Kubernetes and built a modern system on top of it," says Liu. "This entire ecosystem of Kubernetes plus our own optimizations have helped us save costs and time. We have greater data center efficiency, better managed resources, and smarter deployment with the Kubernetes platform."</p>
+
+{{< case-studies/quote
+  image="/images/case-studies/jdcom/banner4.jpg"
+  author="HAIFENG LIU, CHIEF ARCHITECT, JD.com"
+>}}
+"My advice is first you need to combine this technology with your own businesses, and the second is you need clear goals. You cannot just use the technology because others are using it. You need to consider your own objectives."
+{{< /case-studies/quote >}}
+
+<p>The results are clear: Deployment time went from several hours to tens of seconds. Efficiency has improved by 20-30%, measured in IT costs. But perhaps the best indication of success was the annual <a href="https://JD.comcorporateblog.com/shoppers-snap-up-quality-and-imported-products-on-JD.com-com-for-record-breaking-singles-day-festival/">Singles Day</a> shopping event, which ran on the Kubernetes platform for the first time in 2018. Over 11 days, transaction volume on JD.com was $23 billion, and "our e-commerce platforms did great," says Liu. "Infrastructure led the way to prep for 11.11. We took the approach of predicting volume, emulating the behavior of customers to prepare beforehand, and drilled for malfunctions. Because of Kubernetes's scalability, we were able to handle an extremely high level of demand."</p>
+
+<p>JD.com is now in its second stage with Kubernetes: The platform is already stable, scalable, and flexible, so the focus is on how to run things much more efficiently to further reduce costs. With the optimizations the team is working on with resource management, Liu believes there is the potential to save hundreds of millions of dollars a year.</p>
+
+<p>"We run Kubernetes and container clusters on roughly tens of thousands of physical bare metal nodes," he says. "Using Kubernetes and leveraging our own machine learning pipeline to predict how many resources we need for each application we use, and our own intelligent scaling algorithm, we can improve our resource usage. If we boost the resource usage, for example, by several percent, that means we can reduce huge hardware costs. Then we don't need that many servers to get that same amount of workload. That can save us a lot of resources."</p>
+
+{{< case-studies/quote author="HAIFENG LIU, CHIEF ARCHITECT, JD.com" >}}
+"We can share our successful experience with the community, and we also receive good feedback from others. So it's mutually beneficial."
+{{< /case-studies/quote >}}
+
+<p>JD.com, which won CNCF's 2018 End User Award, is also using <a href="https://helm.sh/">Helm</a>, <a href="https://github.com/containernetworking">CNI</a>, <a href="https://goharbor.io/">Harbor</a>, and <a href="https://vitess.io/">Vitess</a> on its platform. JD.com developers have made considerable contributions to Vitess, the CNCF project for scalable MySQL cluster management, and the company hopes to donate its own project to CNCF in the near future. Community participation is a priority for JD.com. "We have a good partnership with this community," says Liu. "We can share our successful experience with the community, and we also receive good feedback from others. So it's mutually beneficial."</p>
+
+<p>To that end, Liu offers this advice for other companies considering adopting cloud native technology. "First you need to combine this technology with your own businesses, and the second is you need clear goals," he says. "You cannot just use the technology because others are using it. You need to consider your own objectives."</p>
+
+<p>For JD.com's objectives, these cloud native technologies have been an ideal fit with the company's own homegrown innovation. "Kubernetes helped us reduce the complexity of operations to make distributed systems stable and scalable," says Liu. "Most importantly, we can leverage Kubernetes for scheduling resources to reduce hardware costs. That's the big win."</p>
diff --git a/content/zh/case-studies/jd-com/jd-com_featured_logo.png b/content/zh-cn/case-studies/jd-com/jd-com_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/jd-com/jd-com_featured_logo.png
rename to content/zh-cn/case-studies/jd-com/jd-com_featured_logo.png
diff --git a/content/zh-cn/case-studies/jd-com/jd.com_featured_logo.svg b/content/zh-cn/case-studies/jd-com/jd.com_featured_logo.svg
new file mode 100644
index 0000000000..d13de0240a
--- /dev/null
+++ b/content/zh-cn/case-studies/jd-com/jd.com_featured_logo.svg
@@ -0,0 +1 @@
+<svg id="Layer_1" data-name="Layer 1" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 215 127"><defs><style>.cls-1{fill:#d6d6d6;}.cls-2{fill:#d2d3d2;}.cls-3{fill:#eeeded;}.cls-4{fill:#f7f7f8;}.cls-5{fill:#fafbfc;}.cls-6{fill:#f5f4f4;}.cls-7{fill:#d7d5d5;}.cls-8{fill:#e9e8e8;}.cls-9{fill:#d9d9d9;}.cls-10{fill:#edebeb;}.cls-11{fill:#e4e3e3;}.cls-12{fill:#ededeb;}.cls-13{fill:#f1f1f0;}.cls-14{fill:#eaeae9;}.cls-15{fill:#d9d8d8;}.cls-16{fill:#f2f2f4;}.cls-17{fill:#f3f3f6;}.cls-18{fill:#f6f7fa;}.cls-19{fill:#dddbdb;}.cls-20{fill:#e8e6e6;}.cls-21{fill:#e2e0de;}.cls-22{fill:#edeced;}.cls-23{fill:#c7c8c7;}.cls-24{fill:#b4b4b3;}.cls-25{fill:#d2d2d2;}.cls-26{fill:#f0f0f0;}.cls-27{fill:#c0bfbf;}.cls-28{fill:#d7d8d8;}.cls-29{fill:#972725;}.cls-30{fill:#e5e5e4;}.cls-31{fill:#e4e4e3;}.cls-32{fill:#e4e3e2;}.cls-33{fill:#dadbda;}.cls-34{fill:#222220;}.cls-35{fill:#cccdcd;}.cls-36{fill:#dededf;}.cls-37{fill:#d3d3d3;}.cls-38{fill:#932626;}.cls-39{fill:#e8e8e7;}.cls-40{fill:#b9b6b6;}.cls-41{fill:#dcdcdc;}.cls-42{fill:#f5f5f5;}.cls-43{fill:#e6e7e4;}.cls-44{fill:#e0e0df;}.cls-45{fill:#c8c9c8;}.cls-46{fill:#cbcaca;}.cls-47{fill:#c4c2c2;}.cls-48{fill:#dadada;}.cls-49{fill:#e9ebe9;}.cls-50{fill:#c6c6c6;}.cls-51{fill:#c2c1c1;}.cls-52{fill:#bfbebd;}.cls-53{fill:#cccccb;}.cls-54{fill:#bebaba;}.cls-55{fill:#d3d3d2;}.cls-56{fill:#e2e3e3;}.cls-57{fill:#d1d2d2;}.cls-58{fill:#dddcdd;}.cls-59{fill:#bebcbb;}.cls-60{fill:#625e5d;}.cls-61{fill:#858584;}.cls-62{fill:#eae9e9;}.cls-63{fill:#e31d1a;}.cls-64{fill:#222221;}.cls-65{fill:#cecdcd;}.cls-66{fill:#d3d2d1;}.cls-67{fill:#1e1d1b;}.cls-68{fill:#d1d2d0;}.cls-69{fill:#f2f1f0;}.cls-70{fill:#efefef;}.cls-71{fill:#303030;}.cls-72{fill:#181717;}.cls-73{fill:#212020;}.cls-74{fill:#292929;}.cls-75{fill:#323331;}.cls-76{fill:#2c2e2a;}.cls-77{fill:#3e3d3c;}.cls-78{fill:#282826;}.cls-79{fill:#3b3b39;}.cls-80{fill:#ebeaea;}.cls-81{fill:#e8e7e6;}.cls-82{fill:#e7e7e7;}.cls-83{fill:#e2e2e2;}.cls-84{fill:#e1e0e0;}.cls-85{fill:#262626;}.cls-86{fill:#5c5957;}.cls-87{fill:#373737;}.cls-88{fill:#3d3d3d;}.cls-89{fill:#4b4b49;}.cls-90{fill:#e3e3e0;}.cls-91{fill:#c5c5c3;}.cls-92{fill:#c4c4c3;}.cls-93{fill:#b9b8b8;}.cls-94{fill:#afaeae;}.cls-95{fill:#bcbbbb;}.cls-96{fill:#dfdede;}.cls-97{fill:#c2c1bf;}.cls-98{fill:#e7e4e3;}.cls-99{fill:#d8d9d9;}.cls-100{fill:#e1e0df;}.cls-101{fill:#cac8c9;}.cls-102{fill:#dedddd;}.cls-103{fill:#dfdddc;}.cls-104{fill:#e2e0df;}.cls-105{fill:#d8d8d8;}.cls-106{fill:#d1d0cf;}.cls-107{fill:#e3e2e1;}.cls-108{fill:#dbdada;}.cls-109{fill:#d4d5d5;}.cls-110{fill:#d4d4d5;}.cls-111{fill:#d1d1d2;}.cls-112{fill:#444443;}.cls-113{fill:#111010;}.cls-114{fill:#e7e5e5;}.cls-115{fill:#e6e5e4;}.cls-116{fill:#cecfce;}</style></defs><title>kubernetes.io-logos</title><path class="cls-1" d="M34.10742,69.62029a4.75374,4.75374,0,0,1-1.2609-.28911,10.74763,10.74763,0,0,0-1.6376-1.02089c-2.38029-1.0636-4.7318-2.19011-7.08187-3.317-1.49465-.71682-2.93119-1.5577-4.356-2.41094a3.2841,3.2841,0,0,0-.42146-.2339.38513.38513,0,0,1-.25322-.126q-.68357-.68484-1.36826-1.36855a.41184.41184,0,0,1-.12668-.254c.44354.04039.68427.43294,1.055.61236.44746.21647.88432.461,1.36419.69967a5.56009,5.56009,0,0,0-.84452-.84495c-.98152-1.00927-1.66986-2.25185-2.62508-3.2819-.265-.28576-.18335-.51865.16111-.67381a.69753.69753,0,0,0,.15458-.29c.066-.15342.01918-.36335.224-.44688a.95935.95935,0,0,1,.60727.26746,5.29657,5.29657,0,0,0,1.90216.81415,44.75359,44.75359,0,0,0,6.32423.882c2.0595.14151,4.12365.19323,6.18054.3648a11.19974,11.19974,0,0,0,4.43441-.84466,1.45943,1.45943,0,0,1,1.22457.69314.36027.36027,0,0,1-.00523.156,10.19035,10.19035,0,0,1-3.30471,2.54387,2.79986,2.79986,0,0,1-1.4791.14092c-1.3668-.12233-2.73361-.25279-4.09692-.40868a17.28339,17.28339,0,0,0-2.08188-.05593c-1.164.00756-2.32565-.02324-3.48674-.10024a1.98977,1.98977,0,0,0-.99256.18087c-.39473.18625-.46635.41478-.20746.76709a10.41738,10.41738,0,0,0,5.30377,4.11145c1.09629.33908,2.20173.65187,3.28582,1.02815a8.5995,8.5995,0,0,1,3.2649,2.36488.35563.35563,0,0,1,.14368.34054Z"/><path class="cls-2" d="M34.10742,69.62029c-.20775-.22359-.41013-.45284-.62529-.66916-.31788-.31962-.70854-.55963-1.00549-.90336-.43715-.21066-.777-.57212-1.22124-.77522a10.67725,10.67725,0,0,0-1.36709-.47361c-.94026-.28461-1.88807-.554-2.80508-.90234A21.63948,21.63948,0,0,1,24.94091,64.883a2.89181,2.89181,0,0,1-.69023-.52025,6.27613,6.27613,0,0,1-.95987-1.02031,1.95716,1.95716,0,0,0-.33051-.35259,11.667,11.667,0,0,1-1.08554-1.29257.42988.42988,0,0,1,.0231-.57444.6993.6993,0,0,1,.25976-.20964,2.50326,2.50326,0,0,1,.98268-.222,5.26758,5.26758,0,0,1,1.24956.09095,1.32785,1.32785,0,0,0,.386.00973q1.72115.00043,3.44229.00073a1.70153,1.70153,0,0,1,.6218.06683,1.04649,1.04649,0,0,0,.33531.02862,1.366,1.366,0,0,1,.52476.06625.3968.3968,0,0,0,.18959.028,5.03007,5.03007,0,0,1,1.43857.12058c.494.09182.992.04431,1.4852.15051a5.743,5.743,0,0,0,1.20816.01918.77522.77522,0,0,0,.36029-.13322c.58-.31555,1.1563-.63735,1.712-.99547a3.088,3.088,0,0,0,.798-.76708,1.37662,1.37662,0,0,1,.68558-.5759c.05041-.01554.08136-.09428.12146-.14382a.14356.14356,0,0,1,.13569-.0587.29072.29072,0,0,1,.0969.03865c.02892.01932.05623.041.08325.06276.01453.00944.02833.02.043.02949.03095.01613.061.03356.092.05012.03239.01453.06334.03153.09443.04867.03269.01453.06436.031.09617.04707.03313.01453.0648.03138.09618.04853.03269.01452.0645.03094.09632.04707.03225.01409.06334.03094.09414.04779.03138.0141.062.03008.09269.04562.0308.01366.06044.03008.08978.04649.02993.01424.05913.02993.08863.045a.97984.97984,0,0,1,.0892.04475c.045.02309.09007.04605.136.06828a.68042.68042,0,0,1,.09269.05172c.032.01888.06276.03922.09458.059.01787.00872.03428.01816.052.02673a.42286.42286,0,0,1,.20412.14064.27051.27051,0,0,1-.03254.13438,9.70551,9.70551,0,0,1-1.95941,2.44014,1.75379,1.75379,0,0,1-1.15629.5403,2.40027,2.40027,0,0,0-.6141.12523,7.32427,7.32427,0,0,1-2.77109.2172c-1.35315-.07221-2.68479-.37483-4.04462-.33618-.25366.00726-.50384-.034-.68733.23739-.12813.18944-.32543.08324-.49032-.00756.81285.34374,1.58661.773,2.429,1.05329a3.05092,3.05092,0,0,1,1.36274.8018,11.75468,11.75468,0,0,1,1.32351,1.78376,14.74888,14.74888,0,0,0,1.99325,2.4214,4.35852,4.35852,0,0,0,.52606.47042c.13759.11274.32761.22809.18771.46345l-.05535.03806c-.308-.13235-.65-.09937-.96569-.20005a5.08938,5.08938,0,0,0-.50456-.10954Z"/><path class="cls-3" d="M20.91039,49.63283q.04794-.00131.09588-.00145c.03182-.033.06741-.062.09836-.09589l.00014-.00029c.14369-.076.224-.043.186.12756a.58137.58137,0,0,1-.23927.29637,5.46013,5.46013,0,0,0-.62893.60292c-.30218.34432-.25482.506.19265.6449a11.23336,11.23336,0,0,0,1.27614.2817c.9991.18654,2.00009.36408,2.98088.6404a10.08537,10.08537,0,0,0,4.6054.0555c.4434-.08063.89479-.11347,1.33368-.22112,1.6087-.33851,3.24863-.4758,4.86575-.75241a19.99413,19.99413,0,0,0,4.75868-1.26656,23.06068,23.06068,0,0,1,5.521-1.75921,3.78873,3.78873,0,0,1,1.00941-.07976,3.228,3.228,0,0,0,1.83345-.496,1.99942,1.99942,0,0,1,.9558.06117,7.53656,7.53656,0,0,0,2.07055-.024,8.06936,8.06936,0,0,0,2.12778-.22257c.11347-.032.23274-.03894.3462-.0725.04156-.01511.08427-.0276.127-.03952a1.56451,1.56451,0,0,0,.48015-.2092c.16185-.05041.31773-.2971.49105-.01714a1.16,1.16,0,0,0,.12814.60582A7.2136,7.2136,0,0,1,56.274,50.8622c.02237.56282.08688,1.12215.10925,1.68613a8.88338,8.88338,0,0,1-.46809,3.13865,10.47073,10.47073,0,0,0-.4235,2.02827.82537.82537,0,0,1-.03007.15908.46465.46465,0,0,1-.07293.14484.32021.32021,0,0,1-.13555.08892l-.08194-.00581a.34772.34772,0,0,1-.11666-.11332,2.16564,2.16564,0,0,1,.02325-1.37262,11.045,11.045,0,0,0,.71579-3.39391,11.548,11.548,0,0,0-.45371-3.44315.85641.85641,0,0,0-.56049-.56122,5.92937,5.92937,0,0,0-4.57417-.05666c-.52941.19758-1.05183.41477-1.57528.62848a.88175.88175,0,0,1-.75023.02906,5.59242,5.59242,0,0,0-2.98916-.324,9.8847,9.8847,0,0,0-2.8215.97164A25.56981,25.56981,0,0,1,37.22733,52.149a19.685,19.685,0,0,1-3.64031.48132c-2.002-.02353-3.921.54655-5.89985.61672a14.28064,14.28064,0,0,1-3.9701-.52679,1.92722,1.92722,0,0,0-.85207-.06814,3.57862,3.57862,0,0,1-1.292-.15588c-.60524-.10809-1.20046-.26122-1.79684-.40911a1.24217,1.24217,0,0,1-.99924-.99867,12.148,12.148,0,0,1,1.309-.97294.944.944,0,0,1,.43468-.19323c.03225-.03268.068-.06174.0985-.09617.03226-.032.06741-.06116.0972-.09589.032-.00072.06406-.0013.09617-.00145.03051-.03429.0693-.05985.09792-.09588Z"/><path class="cls-4" d="M34.982,44.10082l.29071-.00014c.14978.26223-.04213.429-.185.59057a2.235,2.235,0,0,1-1.12592.634c-.60771.16635-1.20351.37744-1.81863.51357a12.93318,12.93318,0,0,0-2.357.87459,1.40821,1.40821,0,0,0-.76185.89421,7.49009,7.49009,0,0,0-.30161.86921c-.06377.29042.0616.45938.36292.39371a25.12577,25.12577,0,0,0,3.6743-1.06258.69925.69925,0,0,0,.40126-.461.99291.99291,0,0,1,.7665-.6664c1.82008-.44572,3.63188-.92544,5.47346-1.27993a1.16857,1.16857,0,0,1,.93213.13976,1.2663,1.2663,0,0,0,1.37145.04417,1.53769,1.53769,0,0,1,.59478-.1954,11.30519,11.30519,0,0,1,3.43967-.16112,3.2382,3.2382,0,0,1,1.33731.08586c.09748.27894-.15662.25323-.28722.31294a13.8313,13.8313,0,0,1-1.90144.559q-.88231.25886-1.74976.56485a3.48382,3.48382,0,0,1-1.60434.2278,5.311,5.311,0,0,0-1.93616.37541c-1.15353.30756-2.32072.56485-3.45711.93619a2.10491,2.10491,0,0,1-.52039.10591,2.70208,2.70208,0,0,0-1.18782.01859,1.90731,1.90731,0,0,0-.39792.15981c-.03167.02281-.06422.04446-.0956.0677-.02876.02746-.05855.05332-.08775.08078-.01409.01482-.02905.02818-.04329.04315a1.11842,1.11842,0,0,1-.094.08586,2.01545,2.01545,0,0,1-.22155.1553,4.67152,4.67152,0,0,1-2.40077,1.05939c-.81749.19192-1.63383.38964-2.45118.58243a1.82581,1.82581,0,0,1-1.65867-.41957c-.95537-.75168-.95653-.77841-.443-1.86642A3.57884,3.57884,0,0,1,28.234,46.70324a23.64169,23.64169,0,0,1,4.5008-1.77054,5.04034,5.04034,0,0,0,1.76153-.63836c.10213-.1415.25424-.0831.38819-.0969.03008-.03487.06886-.06044.09734-.09676Z"/><path class="cls-5" d="M42.26,45.4592a7.41582,7.41582,0,0,1-.97846.41115.785.785,0,0,1-.81445-.11783.56477.56477,0,0,0-.11913-.08222c-.29376-.1264-.58229-.298-.91759-.12713-.729.11725-1.44744.282-2.16353.46243-1.12.28214-2.24459.5451-3.36848.81183a.684.684,0,0,0-.6.547.8275.8275,0,0,1-.64461.63734c-1.155.40418-2.33539.71537-3.521,1.00971-.03124.00784-.06146.02063-.093.02615-.36684.06232-.557-.12306-.46534-.4989a5.25319,5.25319,0,0,1,.61817-1.56307,1.299,1.299,0,0,1,.6266-.43265,6.90132,6.90132,0,0,0,1.18418-.53391.35156.35156,0,0,1,.13235-.054c.92109-.15734,1.79161-.50413,2.69845-.718a2.271,2.271,0,0,0,1.14365-.59682.90758.90758,0,0,0,.29492-.53957.831.831,0,0,1,.26776-.088,2.881,2.881,0,0,0,.60582-.106,2.00058,2.00058,0,0,0,1.78608.20077,5.40652,5.40652,0,0,1,1.51892-.20368,24.32251,24.32251,0,0,1,5.01306-.03574c.06421.00755-.01468-.009.04794.00639.31671.07773.77391.0433.79192.47086.01628.38238-.414.46577-.713.53071C43.80739,45.04617,43.02505,45.21644,42.26,45.4592Z"/><path class="cls-6" d="M34.49633,44.29434a.07863.07863,0,0,1,.01628.12291,1.09787,1.09787,0,0,1-.59057.3093c-.64694.19613-1.28675.42378-1.9443.57444a18.57813,18.57813,0,0,0-2.037.73861,13.998,13.998,0,0,0-1.70545.80863,7.37588,7.37588,0,0,0-.855.5451,1.94891,1.94891,0,0,0-.53972.67657c-.18959.33778-.34678.69357-.5249,1.038a.31065.31065,0,0,0,.04678.39589,6.12927,6.12927,0,0,0,1.23925.99721.91425.91425,0,0,0,.70577.07729c.7389-.15211,1.48332-.28678,2.20973-.48582.65071-.17841,1.31435-.31177,1.95156-.54233a1.33194,1.33194,0,0,0,.56834-.35057.945.945,0,0,1,.522-.33124.273.273,0,0,1,.03094.19352,1.52748,1.52748,0,0,0-.0722.75589,1.27317,1.27317,0,0,0,.057.2403c.0186.03893.03443.07845.05056.1184a.47293.47293,0,0,1,.04112.33415.3951.3951,0,0,1-.08892.12058,13.95308,13.95308,0,0,1-2.13141.584c-1.06.27386-2.1365.48175-3.21885.65231a4.73537,4.73537,0,0,1-2.37941-.17637,2.45588,2.45588,0,0,1-1.01784-.6202,1.30277,1.30277,0,0,1-.21865-1.91074,10.81693,10.81693,0,0,0-1.25493.2586c-.1572.03545-.31512.069-.47449.09109-.17478.02426-.37294.06829-.4617-.144-.08093-.19351.05288-.333.17186-.46824.20659-.23507.53086-.30262.74355-.52795a2.9396,2.9396,0,0,1,.79992-.43933c.3924-.18538.798-.34286,1.19813-.51212.97788-.41376,1.95286-.83318,2.95036-1.201,1.01232-.37338,2.02144-.7543,3.0525-1.07218.737-.22736,1.4807-.43293,2.22193-.64693.16969-.04911.34577-.08078.51022-.14281a1.172,1.172,0,0,1,.42756-.061Z"/><path class="cls-7" d="M41.77462,69.62029a.39942.39942,0,0,0-.20892.214,14.701,14.701,0,0,1-1.51993.23332.69586.69586,0,0,1-.13772-.0029,1.09885,1.09885,0,0,0-.59812.03167.61317.61317,0,0,1-.3542-.01453c-.27516-.26645.02557-.36872.16083-.47594.50557-.40083,1.01057-.80645,1.52893-1.18695a7.66168,7.66168,0,0,0,2.15713-3.10523,7.97073,7.97073,0,0,0,.53652-1.55306,16.56407,16.56407,0,0,1,1.10254-2.03451c.05375-.13293.15807-.24523.215-.37846a.7609.7609,0,0,1,.80413-.49729,8.82985,8.82985,0,0,1,1.935.14383c.09515.04794.187.14237.06348.20789a2.58921,2.58921,0,0,0-1.073,1.60347,34.26224,34.26224,0,0,1-1.61218,3.61822,2.9773,2.9773,0,0,1-.58984.81895c-.81008.78539-1.57862,1.6132-2.40963,2.37752Z"/><path class="cls-8" d="M17.03124,52.73763l.09516-.09705c.03211-.03225.0648-.06392.09647-.09675l.00029-.00029c.03269-.032.06494-.06407.09675-.09676l.0003-.00029c.03268-.03182.06494-.06393.09675-.0969h.00029a.206.206,0,0,1,.161-.01991,8.6293,8.6293,0,0,0,4.7042,1.11474c1.48986-.04939,2.90969.31628,4.374.35986.97193.02891,1.934-.03719,2.89618-.09094,1.01333-.05666,2.02521-.19555,3.03782-.2663.68529-.048,1.379.03152,2.07461-.04257a21.8338,21.8338,0,0,0,5.80325-1.47533c1.00535-.40126,2.01272-.79512,2.998-1.24622a5.03851,5.03851,0,0,1,2.62856-.16911,6.211,6.211,0,0,0,3.49836-.41579,7.46723,7.46723,0,0,1,2.22324-.66292,2.70258,2.70258,0,0,1,3.2325,2.32159,7.4153,7.4153,0,0,1-.09225,1.73364c-.11608,1.413-.32776,2.81366-.51967,4.21722a1.92854,1.92854,0,0,0,.06319.769c-.04561.191-.195.18073-.34141.17666-.40068-.17463-.36712-.54873-.34461-.86994a5.64632,5.64632,0,0,1,.1463-1.09949,3.78432,3.78432,0,0,0,.07235-1.539,5.13272,5.13272,0,0,1,.15065-1.8657c.09371-.40867.13163-.82476.18509-1.24012a2.0701,2.0701,0,0,0-2.26624-2.01809,12.85511,12.85511,0,0,0-2.95763.88258,4.05706,4.05706,0,0,1-1.64864.32078c-.8544-.0215-1.7088-.00291-2.56131-.09908a3.2248,3.2248,0,0,0-1.67581.37206,31.37266,31.37266,0,0,1-6.42244,2.27132.98449.98449,0,0,1-.14615.03923c-.38238.06973-.76795.11913-1.154.16184a1.061,1.061,0,0,1-.13409.02935,2.41662,2.41662,0,0,0-.3847.062c-.07918.02223-.16039.035-.24117.05013-.03836.01118-.07744.02033-.11623.0305a.83119.83119,0,0,1-.11709.0295.59085.59085,0,0,1-.24073-.01569.49082.49082,0,0,0-.35972.0414.60867.60867,0,0,1-.294.04591,11.94273,11.94273,0,0,0-3.07617.07206c-1.25552.07046-2.51177.15981-3.77121.11012a1.2838,1.2838,0,0,1-.33385-.03414,6.00777,6.00777,0,0,0-1.10792-.08862,1.03679,1.03679,0,0,1-.15748-.03211c-.73817-.06189-1.47112-.16213-2.20057-.28867a.31939.31939,0,0,0-.1431-.0154c-1.11038.34214-2.16178-.10315-3.22916-.26456a7.63977,7.63977,0,0,1-1.6841-.43773,2.34562,2.34562,0,0,1-.91382-.52606Z"/><path class="cls-9" d="M32.74948,75.34785c.40969-.71275.814-1.42884,1.23053-2.13752.39225-.667.79468-1.32787,1.19914-1.98744a.54894.54894,0,0,0,.09182-.31773.25341.25341,0,0,1,.08862-.215,8.10681,8.10681,0,0,0,2.6678.44383c.4601.02092.9205-.02,1.38031.01119a.41755.41755,0,0,1,.23492.10983c-.03385.30727-.28213.214-.46214.24843q-.31986.00822-.63981-.00072c-.35492-.048-.52084.14412-.63256.4556-.31482.87808-.78059,1.69354-1.05009,2.594-.14818.495-.41114.932-1.07842.76272-.188-.04765-.33516.08514-.45662.22185a2.77109,2.77109,0,0,0-.42364.64417.862.862,0,0,1-.68761.54364c-.22693.02688-.3603.20311-.54727.29a.7374.7374,0,0,0-.67774.51269,7.3556,7.3556,0,0,1-.531.90917c-.0847.14034-.15937.369-.418.29289a.49325.49325,0,0,1,.06218-.50413c.255-.48669.38761-1.02539.67933-1.4993a.77816.77816,0,0,0-.13947-1.05474.0965.0965,0,0,1,.011-.13162q.00192-.04722.008-.09414c.02949-.03327.05956-.06582.09065-.09763Z"/><path class="cls-10" d="M18.09557,51.67156l.19351-.10112c.06494.00959.14122.02252.17405.07482.51429.81939,1.402.77435,2.19156.931.52127.10315,1.0591.11783,1.58691.19381a.32934.32934,0,0,0,.14412.01,4.63085,4.63085,0,0,1,2.5119.2172,13.83276,13.83276,0,0,0,4.33562.07961c1.07188-.13671,2.13563-.353,3.20868-.44281.72538-.06073,1.46094-.04693,2.19446-.10126a23.44775,23.44775,0,0,0,7.87946-2.22455,7.56289,7.56289,0,0,1,2.52934-.76374,5.40325,5.40325,0,0,1,2.337.25686,1.68574,1.68574,0,0,0,1.3485-.04649,10.79359,10.79359,0,0,1,3.17526-.99169,4.54218,4.54218,0,0,1,2.62435.4912,1.84356,1.84356,0,0,1,.956,1.27963,9.84852,9.84852,0,0,1-.27836,5.80049,2.67516,2.67516,0,0,0-.13046,1.83664c0,.15443-.11332.16969-.22707.18494-.31439-.03458-.37483-.26514-.39444-.52069a3.0436,3.0436,0,0,1,.11651-1.19842,12.1721,12.1721,0,0,0,.55818-4.44327,5.11146,5.11146,0,0,0-.14238-1.05271,2.35086,2.35086,0,0,0-2.30227-1.85872,6.1874,6.1874,0,0,0-2.50987.44165,15.10219,15.10219,0,0,0-1.48288.598,2.03791,2.03791,0,0,1-1.41243.13889,6.89755,6.89755,0,0,0-2.58672-.22257,4.799,4.799,0,0,0-1.38322.39066A25.28571,25.28571,0,0,1,34.732,53.23115a6.90107,6.90107,0,0,1-1.82764.00509,6.42747,6.42747,0,0,0-1.77271.1678c-1.18753.12886-2.37636.26295-3.56694.32455a15.69569,15.69569,0,0,1-3.654-.37671,1.6451,1.6451,0,0,0-1.2654.05143.76658.76658,0,0,1-.4771.0247c-.99692-.10751-1.98163-.28911-2.962-.49454a2.30769,2.30769,0,0,1-1.44046-.815.19905.19905,0,0,1,.03937-.1569l.00029-.00043c.03269-.03168.0648-.06393.09661-.09633l.00058-.00058c.03255-.03181.06451-.06392.09647-.09617L18,51.76716q.04794-.04773.0956-.0956Z"/><path class="cls-11" d="M16.44634,53.51372l.09443-.09879a.46062.46062,0,0,1,.37381.03443,14.40271,14.40271,0,0,0,5.72291.9821c1.05125-.017,2.08928.14528,3.13312.22039,1.56076.11245,3.11962.188,4.68415.1726q1.52371-.01526,3.04742.00131c.41783.01961.42436.42247.61279.65739a1.16335,1.16335,0,0,1,.07264.14732.6909.6909,0,0,1,.04736.16169c-.02673.46839-.40344.507-.72916.54684a9.90775,9.90775,0,0,1-1.93485.019c-1.85059-.138-3.68694-.42-5.53274-.59812-1.42738-.13772-2.85695-.29608-4.29087-.34606a18.87,18.87,0,0,1-4.88493-.90364.53819.53819,0,0,1-.34184-.50849c-.01061-.03922-.02136-.07932-.03516-.11768-.01816-.03457-.0353-.07031-.054-.10489a.36972.36972,0,0,1-.042-.10794.25.25,0,0,1,.057-.15749Z"/><path class="cls-12" d="M55.07538,58.17709c-.10141-.02048-.19-.06145-.19163-.18043a3.51174,3.51174,0,0,1,.13439-1.3841,12.25914,12.25914,0,0,0,.60189-2.183,2.09572,2.09572,0,0,0,.03066-.38426c.00334-.51691.00145-1.03411.00145-1.55117a1.25323,1.25323,0,0,0-.06-.4771.64714.64714,0,0,1-.03457-.23739,5.99739,5.99739,0,0,0-.2464-1.37145,1.64763,1.64763,0,0,0-1.03048-1.14365,4.453,4.453,0,0,0-2.01751-.40389c-.3189.01686-.63445.08906-.95232.13061a8.13757,8.13757,0,0,0-1.87747.59958q-.56226.22026-1.11779.4572a.80925.80925,0,0,1-.6558.00217c-.19322-.08019-.39168-.14789-.58737-.22242a1.36941,1.36941,0,0,0-.567-.101.68764.68764,0,0,1-.28722-.02383,1.4134,1.4134,0,0,0-.66916-.06654c-.38282.03168-.76374.08979-1.14511.13846-.11128.01423-.22111.04068-.33254.05026a1.56693,1.56693,0,0,0-.64215.19759,19.232,19.232,0,0,1-2.34207,1.01871c-.61164.24755-1.22908.48088-1.83926.73148a2.78273,2.78273,0,0,1-.41739.1155c-.59318.14252-1.183.29986-1.77867.431-.29667.06538-.60815.06422-.90365.13293-.37715.08775-.77014.04606-1.14162.16315a.64524.64524,0,0,1-.19148.02281,7.25068,7.25068,0,0,0-1.38133.17783.47785.47785,0,0,1-.41667-.06247A.34029.34029,0,0,0,32.70459,52.7c-.53522.10257-1.07755.16533-1.61509.25032a4.54134,4.54134,0,0,0-.94912.15255.8696.8696,0,0,1-.2881.02179,1.67658,1.67658,0,0,0-.573.06973,1.15829,1.15829,0,0,1-.33546.02761,1.5624,1.5624,0,0,0-.29.00842,8.088,8.088,0,0,1-2.31418.07017,9.8726,9.8726,0,0,1-2.04512-.289c-.34112-.09007-.68515-.16969-1.0283-.2525a.35634.35634,0,0,0-.324.0462.88713.88713,0,0,1-.78917.09545c-.19177-.0385-.38209-.04387-.57168-.07119-.42785-.0613-.86181-.07351-1.2853-.1752a4.67262,4.67262,0,0,0-.711-.1232,1.20009,1.20009,0,0,1-1.00883-.57459,4.13457,4.13457,0,0,0-.28722-.38616,1.56228,1.56228,0,0,1,.48786-.482c.154.05884.19961.20528.26223.33371a.87074.87074,0,0,0,.61933.49425c.62645.14281,1.25189.29056,1.87877.43148.23492.05288.4758.08049.70839.14151a1.39223,1.39223,0,0,0,.80922-.00131.64157.64157,0,0,1,.42291.02223,15.42985,15.42985,0,0,0,1.9735.43729c.38005.06988.7649.09531,1.14438.152a3.21457,3.21457,0,0,0,1.34631-.03778.58868.58868,0,0,1,.14194-.0276,3.27838,3.27838,0,0,0,1.00607-.1,17.68256,17.68256,0,0,0,2.715-.37438c.20542-.03531.41216-.0632.61788-.09938a1.14228,1.14228,0,0,1,.62238.03632.95108.95108,0,0,0,.52635.0385c.3019-.05724.60757-.06639.9083-.1107.47623-.07032.95159-.138,1.4316-.17724.15893-.01293.31424-.06509.47245-.09095a19.04159,19.04159,0,0,0,2.30677-.49468c.41536-.12233.81241-.30727,1.21658-.46693q.87665-.34536,1.75064-.69735c.43323-.17492.864-.3558,1.295-.5358a.67855.67855,0,0,0,.17027-.09153,2.85686,2.85686,0,0,1,1.35431-.44441c.42814-.08688.86733-.03458,1.28952-.16039a1.16919,1.16919,0,0,1,.4816-.01308c.38107.0539.762.11681,1.13683.20311a1.453,1.453,0,0,1,.482.22068.62309.62309,0,0,0,.64011.02964c.52243-.21211,1.05125-.4097,1.56612-.63924a7.15169,7.15169,0,0,1,1.53708-.39807c.14063-.02848.284-.04475.42611-.07438a1.60067,1.60067,0,0,1,.76751.011,1.63215,1.63215,0,0,0,.38064.05782,3.03572,3.03572,0,0,1,1.12273.24218c.23477.105.48161.18335.72422.27008a.64729.64729,0,0,1,.41057.44514,9.08686,9.08686,0,0,1,.30552,1.36274c.05855.3799.12262.75952.16664,1.14132a4.05345,4.05345,0,0,1-.014,1.253,2.06538,2.06538,0,0,0-.0523.52635,3.50674,3.50674,0,0,1-.13918,1.04879,17.247,17.247,0,0,1-.52737,1.75761.89473.89473,0,0,0-.06073.70388.17739.17739,0,0,1,.00262.139c-.10635.18479.028.34359.04475.51429a.14329.14329,0,0,1-.045.09008Z"/><path class="cls-13" d="M23.33571,48.36976c.07206.06276.03748.12276-.02368.15022a2.03518,2.03518,0,0,0-.68936.51575c-.13017.14615-.17855.26906-.11666.333.093.09589.2031.05913.31468.03458.40548-.08964.813-.17071,1.21818-.26223a1.77465,1.77465,0,0,0,.31526-.11478.5777.5777,0,0,1,.27719-.06624c.09691.00682.1819.1229.13555.20629-.06973.1264-.15065.2464-.22751.36858a.85941.85941,0,0,0,.00669.98864,4.52734,4.52734,0,0,0,.7158.77841.5365.5365,0,0,0,.20731.11928,4.64309,4.64309,0,0,0,1.3931.34911.98151.98151,0,0,1,.28112.05579.55853.55853,0,0,0,.37918.01452,1.77556,1.77556,0,0,1,.66612-.07365,1.4946,1.4946,0,0,1,.95377.16445A1.4949,1.4949,0,0,0,30.081,51.98c.24756-.03472.50413-.12189.72786.07816-.02368.02121-.04475.0568-.07148.06174-.25119.04664-.50209.09923-.75546.12872q-.95319.11042-1.89882.2756c-.17274.03051-.35739-.00581-.52969.02572a1.98967,1.98967,0,0,1-.75372.00348,2.972,2.972,0,0,1-.76084-.09283,13.23516,13.23516,0,0,1-2.5337-.55134c-.29172-.07845-.60146-.08688-.89958-.14441q-.96648-.188-1.92962-.3927a2.5565,2.5565,0,0,1-.41361-.13017.347.347,0,0,1-.18015-.5124.6486.6486,0,0,1,.12349-.1479,5.35246,5.35246,0,0,1,.92863-.8403.20574.20574,0,0,0,.06756-.06843c.07467-.11942-.01453-.12683-.097-.13773a4.778,4.778,0,0,1,.8727-.48567c.03008-.03443.06887-.06015.09749-.09618q.04815-.00087.09632-.001c.03036-.03428.0693-.05985.09777-.09617.032-.00058.06422-.00087.09632-.00087.03037-.03429.06945-.05986.09778-.09632l.09617-.00088c.03051-.03414.06959-.05971.09792-.09632q.04794-.00064.09618-.00072c.03051-.03414.06959-.05971.09792-.09618.032-.00058.06407-.00073.09617-.00087a1.27143,1.27143,0,0,0,.09778-.09618q.04837-.00065.09647-.00072c.03254-.03211.06828-.06088.09777-.09618l.09618-.00116Z"/><path class="cls-14" d="M41.48464,70.69174q.00043,2.18052.00145,4.361a1.99212,1.99212,0,0,0,.06741.67033,1.20664,1.20664,0,0,1,.0247.38427q.00261,1.52631.00073,3.05264a.99265.99265,0,0,1-.00945.2894,3.979,3.979,0,0,0-.08223,1.20133c-.00552.79134-.00145,1.58283-.00145,2.37432,0,.113.00247.22635-.00451.33909-.01075.17216-.06014.22127-.24349.22853-.17724.00726-.35521.00116-.53289.00087a.22142.22142,0,0,1-.00407-.1524,8.16456,8.16456,0,0,0-.05985-1.65693,2.98,2.98,0,0,0-.30437-1.29256,1.42443,1.42443,0,0,1-.0523-.41042q-.003-.25977-.00276-.51953c.18175-1.84666.04562-3.69783.07468-5.54653a16.57774,16.57774,0,0,0,.01482-2.217.9291.9291,0,0,1,.16939-.6882,1.03808,1.03808,0,0,1,.94419-.41826Z"/><path class="cls-15" d="M41.77462,69.62029c-.001-.18625.1415-.28228.25351-.39473.68457-.68717,1.36564-1.3777,2.0595-2.05529a2.8453,2.8453,0,0,0,.58883-.81851c.26543-.55352.54437-1.10065.82-1.64923a8.23564,8.23564,0,0,0,.49569-1.25465,4.55592,4.55592,0,0,1,.58505-1.32074,4.08117,4.08117,0,0,0,.33414-.64462c.08732-.18683.18626-.34.429-.30915a.18191.18191,0,0,0,.15981-.093,3.37854,3.37854,0,0,1,1.82618-.18742c.2403.13047.112.27095-.04271.26485-.5974-.02382-.69561.42-.90045.8265a21.61872,21.61872,0,0,1-2.0165,4.00249A18.50408,18.50408,0,0,1,43.329,69.14115l.001-.001c-.0552.05274-.1444.03356-.19613.09341a.652.652,0,0,1-.09225.00393c-.05521.05477-.14674.03167-.19889.093a3.647,3.647,0,0,1-1.0681.28984Z"/><path class="cls-16" d="M58.07848,47.8851a1.57173,1.57173,0,0,1,.19511.779,1.96675,1.96675,0,0,0,.07337.76606.36128.36128,0,0,1-.02078.28388.98676.98676,0,0,0-.05157.47769,7.77412,7.77412,0,0,1-.22911,2.00778,20.79344,20.79344,0,0,1-.9882,3.179c-.21037.57531-.43192,1.14583-.67222,1.70879-.057.13366-.00726.29739-.12871.40723-.09357-.02877-.13425.04721-.18959.09632a.18254.18254,0,0,1-.25062-.01947,1.61864,1.61864,0,0,1,.1463-1.30521,17.48613,17.48613,0,0,0,.81067-5.13132c.03937-.726.18741-1.43566.26325-2.156a1.3049,1.3049,0,0,0-.51139-1.43247,1.64236,1.64236,0,0,1-.80515-1.10006,2.25622,2.25622,0,0,1,.04272-.70258c.14891-.23812.27545-.04678.38572.03457A8.4926,8.4926,0,0,1,58.07848,47.8851Z"/><path class="cls-17" d="M58.07848,47.8851a2.04822,2.04822,0,0,1-.52475-.49308c-.18523-.2201-.34286-.46316-.52272-.68791a1.37231,1.37231,0,0,0-.30872-.30378,9.76029,9.76029,0,0,1-.876-.74718c-.328-.06189-.45284-.43584-.77638-.50412a1.97718,1.97718,0,0,0-.40025-.177q-.15171-.05292-.30654-.09617-.0665-.01656-.13133-.03894c-.09226-.03051-.18683-.05085-.27981-.07845a10.0526,10.0526,0,0,0-4.33983-.00581.57511.57511,0,0,1-.16359.02179.32616.32616,0,0,1-.22374-.09138,1.484,1.484,0,0,0-1.09716-.62384,20.59348,20.59348,0,0,0-5.72857-.3738c-1.75107.10169-3.49909.24116-5.24319.43279-.20877.02281-.5448.122-.524-.30829.36684-.04111.73658-.06567,1.09978-.12785.41144-.07017.82447-.12261,1.23678-.18043a7.55684,7.55684,0,0,0,1.24084-.15444A1.074,1.074,0,0,1,40.498,43.325a3.56187,3.56187,0,0,0,1.05663-.08673,1.25155,1.25155,0,0,1,.33778-.01133,3.71415,3.71415,0,0,0,1.10559-.08368,1.0936,1.0936,0,0,1,.33748-.01264q1.94059-.00087,3.88089-.00015a1.31252,1.31252,0,0,1,.52577.062.41843.41843,0,0,0,.18945.03007,10.89406,10.89406,0,0,1,1.54.104c.25642.01468.50993.07119.76185.11085.58548.09182,1.172.1816,1.75165.32064.6744.162,1.33906.35,1.99238.57778a8.255,8.255,0,0,1,2.00169.95726,6.67167,6.67167,0,0,1,1.30709,1.06825,4.58977,4.58977,0,0,1,.78481,1.37915.46538.46538,0,0,1,.00726.14455Z"/><path class="cls-18" d="M36.63182,43.81c.01365.0831.0417.17158.13366.17768a1.82967,1.82967,0,0,0,.52955-.00508,7.92855,7.92855,0,0,1,1.04529-.09836c.34955-.03545.70345-.05056,1.05111-.10605A4.22866,4.22866,0,0,1,40.6731,43.706a4.1687,4.1687,0,0,0,.85512-.122c.06262-.00378.13061-.06073.18437-.04708a8.29153,8.29153,0,0,0,1.52806-.03138c.31265.0218.63241-.0167.95159.0077.30509.02339.61309.00509.92007.00523a.39313.39313,0,0,1,.14426.00436,2.97268,2.97268,0,0,0,.94287.07845c.68849.06582,1.35925.22679,2.04193.319a1.45139,1.45139,0,0,1,.35521.14717,1.84238,1.84238,0,0,0,.62819.24015.18848.18848,0,0,1,.17565.14339c.0276.1046-.07889.1264-.12422.186l-.0292.03865a.219.219,0,0,1-.10692.16184c-.27545.12451-.56064.22664-.83827.34679-.03778.02092-.07671.03908-.11564.05738-.07918.03894-.15327.08673-.22838.13351a.78283.78283,0,0,1-.34025.10664.6216.6216,0,0,1-.50544-.11957c-.94737,0-1.89489.00146-2.84242-.00174a.634.634,0,0,1-.45937-.08644c-.11187-.093-.2512-.01714-.36858.00828-.31163.06726-.61832.15836-.926.24305a.20547.20547,0,0,1-.2557-.0661,2.71113,2.71113,0,0,1,1.10051-.46955c.371-.09559.75459-.14295,1.13261-.21211a2.196,2.196,0,0,0,.70054-.315.15565.15565,0,0,0-.01046-.24857,1.14676,1.14676,0,0,0-.541-.19439,10.4464,10.4464,0,0,0-1.39034-.11826c-.59406.04-1.19189-.034-1.787.04083a2.697,2.697,0,0,1-.28533-.032,2.16255,2.16255,0,0,0-.86035.07467.30463.30463,0,0,1-.14325.0154,6.118,6.118,0,0,0-1.24535.105,2.50675,2.50675,0,0,1-.90364.05956.32436.32436,0,0,0-.25192.11768c-.17579.21022-.36494.17579-.60538.12858a2.96316,2.96316,0,0,1-.90728-.3064.23359.23359,0,0,1-.11594-.19817c.1739.02848.3186-.08949.48539-.09661Z"/><path class="cls-19" d="M43.329,69.14116a2.35954,2.35954,0,0,1,.40083-.47275,10.73532,10.73532,0,0,0,1.233-1.29154,5.38132,5.38132,0,0,1,.7097-.72583,5.75367,5.75367,0,0,0,1.10326-1.51571,12.61967,12.61967,0,0,0,.95014-2.06009,2.83019,2.83019,0,0,1,.21022-.43541,11.99915,11.99915,0,0,0,.61715-1.364.2629.2629,0,0,1,.29042-.19162c.129.00218.25816-.00087.38731-.00218a.252.252,0,0,0,.21022-.09734.81372.81372,0,0,1,.89261-.17332c.13889.06959.12262.18523.06043.28621-.85541,1.38845-1.35518,2.96968-2.332,4.2929a5.08209,5.08209,0,0,1-.771.79658c-.81358.71187-1.58938,1.46574-2.3951,2.18677a3.76185,3.76185,0,0,1-.50006.378l.00058-.00058c-.05433.054-.14484.03428-.19569.09545a2.18792,2.18792,0,0,1-.872.29448Z"/><path class="cls-20" d="M33.63293,54.86353a.26444.26444,0,0,1-.20891.10286c-.11289.00218-.22577.0029-.33865.0029q-2.4684.00023-4.93694,0a2.48222,2.48222,0,0,1-.62078-.06581,2.87758,2.87758,0,0,0-.62515-.03066,3.16866,3.16866,0,0,1-1.00578-.08557.96937.96937,0,0,0-.28867-.01176,3.05656,3.05656,0,0,1-.95769-.08209,1.14775,1.14775,0,0,0-.33662-.015,2.0273,2.0273,0,0,1-.669-.06944,1.17477,1.17477,0,0,0-.38339-.02674c-.53231-.00232-1.06491,0-1.59722-.00145a1.89228,1.89228,0,0,1-.7636-.07918.33795.33795,0,0,0-.14354-.01511,8.86554,8.86554,0,0,1-1.99107-.3138c-.31483-.057-.62674-.13424-.93663-.215a6.08149,6.08149,0,0,1-1.28835-.54277q.002-.04794.00538-.09618.04685-.04772.09443-.09486l.00087-.001c.03211-.03225.0648-.06422.09574-.09763l-.00029.00029c.03371-.03138.06639-.06363.097-.09806l-.00073.00014a.414.414,0,0,1,.49468.07119,5.83079,5.83079,0,0,0,3.231.8464,14.20937,14.20937,0,0,1,1.44468.10867c.40969.07468.76316-.20586,1.18244-.11215a16.01332,16.01332,0,0,0,2.09117.25133c.37933.13715.78452-.03414,1.16443.09705H26.733a12.86169,12.86169,0,0,0,2.78634-.01976,12.79412,12.79412,0,0,1,1.44511-.05491,8.84493,8.84493,0,0,1,2.6399-.00581c.111.03385.18088.09719.15691.22518a1.00606,1.00606,0,0,0-.11812.367l-.01017.06175Z"/><path class="cls-21" d="M44.39607,68.7518a3.42175,3.42175,0,0,1,.77086-.79672,7.54116,7.54116,0,0,0,.6818-.61279A20.86365,20.86365,0,0,1,47.51,65.87059a3.18446,3.18446,0,0,0,.51749-.63517,6.79671,6.79671,0,0,0,.71986-1.14278c.21865-.46707.45619-.9266.65348-1.40268a5.14167,5.14167,0,0,1,.26964-.50921c.24058-.43715.49133-.86878.738-1.30245.3019-.36756.713-.26673,1.10268-.25831.2034.11841.153.301.10489.47042a8.01008,8.01008,0,0,1-3.40073,5.03341,4.41,4.41,0,0,0-1.0129.81575c-.556.43076-1.05474.93328-1.643,1.325-.30974.15255-.61774.309-.93082.4543a.80958.80958,0,0,1-.2326.033Z"/><path class="cls-22" d="M9.847,53.80385c-.00029-.032,0-.06393.00058-.09589a.1636.1636,0,0,1,.13889-.00683c.57532.24887.57285.248.85179-.29419.09574-.186.21312-.3417.43613-.13264a6.2931,6.2931,0,0,1-.21473,2.2934,1.42442,1.42442,0,0,1-.04242.15051,2.29641,2.29641,0,0,0-.0709.21923,17.65878,17.65878,0,0,1-.82693,2.35312c-.19294.41986-.46839.4925-.83363.20964a1.59632,1.59632,0,0,1-.60219-1.00709,1.47167,1.47167,0,0,1,.045-.18639,31.13123,31.13123,0,0,0,1.02351-3.40481C9.78724,53.87271,9.8131,53.83436,9.847,53.80385Z"/><path class="cls-23" d="M8.39269,66.51375l-.18872.00843a1.78713,1.78713,0,0,0-.79323-.09647.30473.30473,0,0,1-.08819-.011.47723.47723,0,0,0-.10983-.08615.27248.27248,0,0,1-.08455-.01221c-.03313-.03051-.06785-.05956-.10359-.08717l-.18741-.10692q-.0486-.04359-.09472-.08993L6.742,66.032a1.37308,1.37308,0,0,0-.09923-.09589l.00131.00145a.89416.89416,0,0,0-.09792-.09864l.00044.001c-.03487-.43526.334-.36465.51168-.3109.36669.11085.443-.07.53-.34213.06392-.19991.09937-.40853.17928-.6019.06392-.15429.10431-.359.35681-.294.10634.21618-.03153.40853-.06175.61062-.07758.51908.126.76185.63706.68369a7.78758,7.78758,0,0,0,3.8097-1.6809,1.5835,1.5835,0,0,0,.44892-.56646,12.68347,12.68347,0,0,0,1.3854-3.74534,8.497,8.497,0,0,1,.07264-1.01275,5.70493,5.70493,0,0,1,.48073-1.47388.265.265,0,0,1,.09981-.10983c.15008.1771.07293.39066.09443.58839.03778.62631-.15559,1.22908-.17738,1.85393a11.71212,11.71212,0,0,1-.50021,2.93758,4.30484,4.30484,0,0,1-1.4775,2.03437,10.82081,10.82081,0,0,1-3.24413,1.59257,5.94288,5.94288,0,0,0-1.06215.41231c-.06435.06813-.17244.03138-.23724.0985Z"/><path class="cls-24" d="M14.90491,56.43038a.52733.52733,0,0,1-.00756.08543.10218.10218,0,0,1,.00872.1354c-.15719.23564-.42858.33051-.63473.50848a3.95024,3.95024,0,0,0-.84568.97237,1.89655,1.89655,0,0,1-2.48823.65623.44013.44013,0,0,1-.29434-.45066,1.92011,1.92011,0,0,1,.07134-.28185,1.14858,1.14858,0,0,1,.04852-.135,4.82665,4.82665,0,0,0,.43032-1.27571,9.05316,9.05316,0,0,0,.48829-2.06735c.04707-.44078.23056-.50485.5974-.267a.31465.31465,0,0,1,.05114.13947,9.81792,9.81792,0,0,1-.26732,1.61582.94183.94183,0,0,0-.015.5249.58181.58181,0,0,0,.85949.39749,5.03718,5.03718,0,0,1,1.80584-.62849.41533.41533,0,0,1,.13845.02383l.05332.04649Z"/><path class="cls-25" d="M16.83468,57.20168a.53752.53752,0,0,1-.11376.08339c-.07249.02876-.17477-.00291-.22024.075-.05768.0985.02353.18291.06479.26529a.52216.52216,0,0,0,.119.15094,9.80787,9.80787,0,0,1,1.00171,1.23329,10.60845,10.60845,0,0,1,.84321,1.17242,2.17587,2.17587,0,0,0,.29434.31889,2.91222,2.91222,0,0,1,.47725.54321c.03559.06421.12072.10082.18276.15051a6.265,6.265,0,0,1,.78888.78045.10534.10534,0,0,1,.01249.08993.08368.08368,0,0,1-.1073.04991l-.00951-.00415q-.713-.35739-1.4223-.72248c-.07118-.03647-.1322-.09356-.20441-.127a2.18122,2.18122,0,0,1-.78059-.55642.67124.67124,0,0,0-.15952-.1049,2.0995,2.0995,0,0,1-.284-.25845,9.48532,9.48532,0,0,1-1.22182-1.90464,4.35787,4.35787,0,0,1-.4354-1.62017,2.48093,2.48093,0,0,1,1.17445.385Z"/><path class="cls-8" d="M10.91477,55.74553v-.09676a.0893.0893,0,0,1,.13075.01569c.10054.17652.01424.343-.02993.51081a22.584,22.584,0,0,1-1.15237,3.10727c-.04038.08179-.08745.16024-.13177.23986-.0398.07525-.08193.14963-.12494.22315a1.28872,1.28872,0,0,0-.18116.44891,1.90969,1.90969,0,0,1-.10649.23521.81042.81042,0,0,1-.16127.22359.64382.64382,0,0,1-.12087.084,3.00646,3.00646,0,0,1-.78234.23783.68988.68988,0,0,1-.74049-.22838c-.1848-.24771-.06247-.49251.06174-.72176a1.52938,1.52938,0,0,0,.33008-.78612.59521.59521,0,0,1,.028-.14034q.37242-.80391.74965-1.60535a.33849.33849,0,0,1,.19831.25569,1.53619,1.53619,0,0,0,.54465.722.3858.3858,0,0,0,.31672.08528.198.198,0,0,0,.18944-.12058,22.97559,22.97559,0,0,0,.87779-2.448.58129.58129,0,0,0,.00756-.1447c.03559-.02905.06421-.06508.09675-.09734Z"/><path class="cls-26" d="M11.20591,53.22258a.27089.27089,0,0,0-.2862.2615.93236.93236,0,0,1-.05855.32616.39469.39469,0,0,1-.58926.20122,4.99643,4.99643,0,0,1-.42437-.3035,1.794,1.794,0,0,1,.18655-.66495c.0382-.10053.07031-.20339.10518-.30509a1.73546,1.73546,0,0,0,1.25334-.54407,1.77954,1.77954,0,0,1,1.45106-.12219c.3943.0802.77638.21909,1.17707.27691a1.15413,1.15413,0,0,1,.48785.20107c.57285.3263,1.14017.66248,1.71.99459.0417.02426.08615.04359.12944.06523.05928.00625.06378.06741.09836.09836.0324.03225.06131.068.09676.09734a.97194.97194,0,0,1-1.18332.3555c-1.00563-.49832-2.00153-1.01552-2.97651-1.57238a.56646.56646,0,0,0-.8974.26528C11.4141,52.99231,11.38853,53.16737,11.20591,53.22258Z"/><path class="cls-27" d="M14.88791,56.61867l.0093-.10286c.13671.13874.08412.31671.09952.48044l-.00916.10751a5.18687,5.18687,0,0,0-.5971,1.58124,10.63374,10.63374,0,0,1-1.65373,3.67967,4.89393,4.89393,0,0,1-1.62236,1.3517.59667.59667,0,0,1-.82664-.14964c-.26485-.32616-.55934-.623-.84554-.9285a1.19163,1.19163,0,0,1-.106-1.43842,1.17743,1.17743,0,0,1,.05128-.13366A.58951.58951,0,0,1,9.5808,60.776a.1235.1235,0,0,1,.12262.045c.16053.75328.85628,1.14714,1.20263,1.78085.14427.264.39241.11521.58606-.02063a4.51913,4.51913,0,0,0,1.6825-2.12473A15.4038,15.4038,0,0,0,14.304,57.59321c.05012-.29637.30669-.48568.45473-.7328.04823-.07787.07946-.16475.1293-.24175Z"/><path class="cls-28" d="M19.34963,62.34855a.96324.96324,0,0,1,.66713.24334,10.99445,10.99445,0,0,0,1.30143.73541q.744.39789,1.4701.8281c.65231.38558,1.32961.72234,2.01,1.05329.56427.27444,1.12128.57328,1.70807.78946.69677.25671,1.36085.5801,2.02725.89711.5942.28272,1.15571.633,1.7348.94752a1.47577,1.47577,0,0,0,.62616.23434,1.81421,1.81421,0,0,1,.74907.31875,2.90985,2.90985,0,0,1,1.20292.93517A3.73325,3.73325,0,0,1,31.779,69.04a24.11672,24.11672,0,0,0-2.21917-1.15687c-.73062-.33357-1.41707-.76505-2.16178-1.05213a40.12955,40.12955,0,0,1-7.26666-3.8049l.00131.00058a.56385.56385,0,0,0-.09938-.09734l.00146.002c-.08572-.08135-.19657-.12639-.28853-.1986l-.00044-.00014c-.032-.033-.06377-.0661-.0985-.096l.00087.00073a.74477.74477,0,0,0-.09937-.09691l.00146.00145a.4476.4476,0,0,0-.10315-.09748l-.09749-.09589Z"/><path class="cls-29" d="M37.99339,71.25819a7.68292,7.68292,0,0,1-1.38162-.10576c-.34867-.027-.69313-.10664-1.03876-.16635-.1755-.03037-.17491-.03385-.21341-.29594l.21821-.7604.00276.01017a.47.47,0,0,1,.43962-.13976c.985.11608,1.97742.13511,2.9646.22417a.7257.7257,0,0,0,.36553-.01918c.18494-.0876.3847-.011.57386-.05172a.32049.32049,0,0,0,.01118.05216c-.07322.27748-.25191.50586-.35245.77492-.12436.33226-.46969.36539-.77739.38689a3.89144,3.89144,0,0,0-.81212.09065Z"/><path class="cls-30" d="M7.90571,59.23881a.28253.28253,0,0,1,.04387.38862c-.06421.12727-.15065.24306-.22445.36568-.03284.05448-.05986.11273-.08717.17041-.0818.17216-.20238.3542-.0433.53115a.5775.5775,0,0,0,.61323.17274,4.35166,4.35166,0,0,0,.86326-.26935.21959.21959,0,0,1,.053.20484,1.5896,1.5896,0,0,1-.82185,1.01566,2.02488,2.02488,0,0,0-.52766.48757,2.55817,2.55817,0,0,1-.84336.6202c-.57836.25468-.66989.848-.83551,1.37218a3.45683,3.45683,0,0,0-.02383.47914.30062.30062,0,0,1-.10779.18944c-.02979-.05491-.08223-.10823-.086-.16489a4.48779,4.48779,0,0,1,.16649-1.66681,18.13169,18.13169,0,0,1,.67657-1.75223c.316-.727.75982-1.3777,1.115-2.079.01351-.02673.0459-.04388.06944-.06538Z"/><path class="cls-31" d="M28.97319,83.50828c-.05637.02789-.11187.07772-.169.07976q-.36312.01105-.72641.00058c-.12363-.00291-.17622-.08921-.119-.19468.09981-.18392.20833-.36305.31439-.54335.4325-.73585.86238-1.47315,1.29895-2.20638q.60431-1.01759,1.22559-2.02492a.59933.59933,0,0,0,.10925-.36044,3.98812,3.98812,0,0,1,.38093-.6606c.03429-.04939.071-.09762.10518-.14746.04213-.06624.08717-.13075.13308-.19467.03225-.05143.06363-.10344.09618-.15531a.41523.41523,0,0,1,.0876-.09487.20338.20338,0,0,1,.12683-.03181l.05855.0353c.04286.05085.0892.11565.07279.17405-.17972.64011-.08122,1.35038-.53914,1.92236a37.67655,37.67655,0,0,0-2.51089,3.854c-.07439.12044-.18829.22707-.16635.38761a.53361.53361,0,0,0,.092.05913.23646.23646,0,0,1,.1293.1017Z"/><path class="cls-32" d="M45.55948,68.26453a1.63569,1.63569,0,0,1,.17986-.2249,11.92692,11.92692,0,0,1,1.3729-1.13377c.91876-.62543,1.85843-1.22312,2.73346-1.90841A7.41152,7.41152,0,0,0,52.26885,61.58a.809.809,0,0,0-.07221-.65348c-.13613-.276-.02644-.4248.24553-.49686.13772-.04169.27995-.06537.41942-.10184a.367.367,0,0,1,.2833.05027.94645.94645,0,0,1-.097,1.00883A12.35129,12.35129,0,0,1,51.133,64.2786c-.29071.276-.46664.66117-.81706.88433a1.37886,1.37886,0,0,1-.39284.41928q-.75955.58732-1.53693,1.15106a9.07876,9.07876,0,0,1-.77289.48655c-.62515.36175-1.25494.71609-1.91263,1.01725a.60832.60832,0,0,1-.14121.02746Z"/><path class="cls-33" d="M20.13139,63.02614a5.75223,5.75223,0,0,1,1.23968.62659c.8268.50079,1.64749,1.0113,2.51482,1.44119.62049.30756,1.22936.64069,1.86061.92428.60146.27022,1.225.49105,1.839.73323.1046.04126.24189.05215.30857.12668a2.87333,2.87333,0,0,0,1.08874.60408,4.80041,4.80041,0,0,1,.935.478.98759.98759,0,0,0,.26659.111,4.10577,4.10577,0,0,1,1.371.78888c.07235.06247.14892.12014.22374.18015a5.74128,5.74128,0,0,1-1.26177-.38979,13.995,13.995,0,0,0-2.71123-1.2378,24.28457,24.28457,0,0,1-3.87929-1.844c-.83275-.46-1.59954-1.02394-2.43462-1.47678a2.87361,2.87361,0,0,1-.76607-.54059c-.197-.17579-.47172-.26688-.59478-.525Z"/><path class="cls-34" d="M54.88608,58.27327a.193.193,0,0,0,.1893-.09618l-.002.001c.04765-.0632.14005-.04373.19-.10286l.0013-.00072c.03632-.03327.06611-.07787.12451-.07439l-.00509.00465a.38652.38652,0,0,1,.165-.1954.69473.69473,0,0,1,.428-.16315c.06639.02934.12146.06436.0741.14978-.21851.44311-.44166.884-.653,1.33034a1.98808,1.98808,0,0,1-.32848.40577c-.31381.418-.82708.45618-1.25348.66016a1.13768,1.13768,0,0,1-.55788.08993,1.04648,1.04648,0,0,0-.65376-.07933c-.17551.041-.38209.016-.443-.19061-.05753-.19482.12814-.27312.26412-.352.22243-.12887.46737-.21821.6805-.36248.12349-.08353.31584-.11593.30349-.32877-.02543-.16576.10838-.19308.21313-.24625a.8246.8246,0,0,1,.10866-.0401c.0908-.02353.18059-.05288.27284-.07191a.43082.43082,0,0,0,.21531-.04155.308.308,0,0,0,.26267-.10795c.01118-.01627.02237-.03254.03327-.04939a.4181.4181,0,0,1,.15109-.0892.37223.37223,0,0,0,.21937-.0494Z"/><path class="cls-35" d="M36.92383,79.0377c-.04344.08644-.08121.17637-.13119.2586a11.122,11.122,0,0,0-1.15353,2.85651c-.11549.4187-.24494.83347-.36814,1.25-.07119.11157-.16068.17651-.29928.11636a.26871.26871,0,0,1-.068-.1293,17.18226,17.18226,0,0,1,.88-3.11017,12.34784,12.34784,0,0,1,1.07508-2.2719,3.479,3.479,0,0,1,.88316-.95537,1.17563,1.17563,0,0,1,1.84361.52243,1.09627,1.09627,0,0,1,.068.13249,15.27465,15.27465,0,0,1,.63269,2.26552c.05579.16707-.00029.35114.07976.51487a.70966.70966,0,0,1,.04853.14906,16.09377,16.09377,0,0,1,.31787,2.53632.42546.42546,0,0,1-.0645.27821.14356.14356,0,0,1-.12335.08252c-.25526-.14455-.24349-.39894-.25191-.63837a19.01413,19.01413,0,0,0-.91774-4.78032,1.63754,1.63754,0,0,0-.14354-.35884.77585.77585,0,0,0-1.2237-.28374,3.66632,3.66632,0,0,0-1.0838,1.56512Z"/><path class="cls-30" d="M34.98332,83.59312c-.27357,0-.54713.00523-.82055-.00174-.186-.00479-.239-.05375-.24306-.2249q-.00944-.38592.00582-.77187c.00217-.05666.05346-.11128.08208-.16707.092.13191.03341.28126.04968.40664.02136-.91077.14877-1.83.15894-2.7583.0061-.56762-.10663-1.11649-.14615-1.67538A2.8409,2.8409,0,0,0,33.964,77.592c-.02615-.14892-.0398-.29521.11478-.38325.13743-.07816.25119.00668.34794.08818a1.42815,1.42815,0,0,1,.64592,1.4255,28.92744,28.92744,0,0,0-.3417,3.7327c-.00174.28562-.16475.563-.03617.84989a.44438.44438,0,0,0,.11869.07279.64906.64906,0,0,1,.16853.122l-.00058.00087c.03181.0199.04256.04024.03254.061-.01017.02092-.02034.03138-.03065.03138Z"/><path class="cls-9" d="M31.58563,77.28967l-.09734.1941c-.03676.02775-.06218.06683-.09617.09734-.14136.24029-.19933.54044-.4851.67773h-.00073c-.05186-.061-.14324-.03777-.19772-.09312q-.04692-.00045-.09371-.00436c-.05186-.05927-.14121-.0401-.19584-.09342l.00029.0003a3.38531,3.38531,0,0,1-1.65-1.45717l.00029.00029c-.05448-.0539-.03487-.14368-.09414-.19526a3.17641,3.17641,0,0,1,.02963-1.763.32256.32256,0,0,1,.15676.29419,2.10173,2.10173,0,0,0,.07947.37686,1.9206,1.9206,0,0,0,.62107,1.06912.521.521,0,0,1,.08223.11855c.05027.05956.14034.04257.19206.09937v.00087a1.33313,1.33313,0,0,0,.34926.50747c.17361.1354.48364.16518.51706.04445.11419-.41288.45574-.25642.6879-.35869a.728.728,0,0,1,.38165-.10519c.26151.09371.15516.19555.00669.29841-.033.03153-.06349.06538-.09647.09719l-.00073.09662c-.03646.02818-.06188.06726-.09646.09733Z"/><path class="cls-27" d="M12.27358,54.38715c-.02789-.01555-.05666-.02978-.08368-.04678-.23274-.14644-.3555-.11012-.38122.15255-.02629.26993-.07206.53521-.11085.80253a3.29766,3.29766,0,0,1-.23579.92093,4.09758,4.09758,0,0,0-.15894.50006.09306.09306,0,0,1-.12145.00334.316.316,0,0,1-.04431-.25932c.0247-.10315.06247-.203.09516-.30393a1.64205,1.64205,0,0,0,.07336-.29245.78891.78891,0,0,1,.03022-.11855,2.47511,2.47511,0,0,0,.08746-.29841c.00828-.04359.01961-.086.032-.12843a5.43459,5.43459,0,0,0,.12727-1.10239.96633.96633,0,0,1,.0276-.14238c.01613-.06247.03342-.12436.048-.18741.12726-.5573.25554-.63124.81124-.474.15575.044.30074.11579.452.17a.77108.77108,0,0,1,.126.05535c.09356.05637.17971.12494.27473.17986a1.10037,1.10037,0,0,1,.10678.06959,4.16812,4.16812,0,0,0,.47463.30944c.03923.01918.07628.04112.11347.06364.36407.21966.72466.44412,1.07043.6927a1.583,1.583,0,0,1,.87633,1.3068c.00421.27487-.04605.49061-.393.4588h.0013c-.04866-.0632-.14193-.04039-.19249-.09981-.16286-.05143-.29361-.18364-.47493-.18843l-.01845-.0061c-.04823-.05841-.11956-.0385-.18087-.05274a6.54918,6.54918,0,0,1-1.02467-.72161,1.60287,1.60287,0,0,1-.13569-.14862.22642.22642,0,0,1-.04707-.191c.17129-.231.34054-.09588.50049.01075a2.53084,2.53084,0,0,0,.63938.33952.23192.23192,0,0,0,.29725-.093c.07554-.12784.00654-.22228-.09632-.28446-.64955-.39167-1.25015-.86079-1.91989-1.22021a.27746.27746,0,0,0-.31976-.01c-.06872.23753.333.39371.11331.65623a.27407.27407,0,0,1-.25569-.05346.51549.51549,0,0,1-.09516-.09371c-.011-.019-.0215-.03879-.03225-.05811a.2359.2359,0,0,0-.05579-.11666Z"/><path class="cls-36" d="M21.49224,64.09177a1.121,1.121,0,0,1,.70505.27981,6.41153,6.41153,0,0,0,1.35489.82142,6.94559,6.94559,0,0,1,1.078.63619,3.18625,3.18625,0,0,0,.60161.3032,2.85773,2.85773,0,0,1,.43889.199,1.12651,1.12651,0,0,0,.4803.2063.59768.59768,0,0,1,.26151.11855,6.0122,6.0122,0,0,0,1.99761.81691,1.4259,1.4259,0,0,1,.48858.19236.83374.83374,0,0,0,.21255.10605,4.05348,4.05348,0,0,1,1.40617.879,13.08777,13.08777,0,0,1-1.63252-.57778c-.78074-.29725-1.53925-.64767-2.303-.9866a30.97345,30.97345,0,0,1-3.19037-1.694c-.59551-.3526-1.15281-.76069-1.73727-1.12854a.92892.92892,0,0,1-.162-.17187Z"/><path class="cls-37" d="M12.8563,64.38306a3.93467,3.93467,0,0,0,1.47606-2.25432c.1091-.469.232-.93489.33879-1.40444a2.06179,2.06179,0,0,0,.02761-.3847,1.673,1.673,0,0,1,.06392-.57386.64249.64249,0,0,0,.0308-.28577,5.5459,5.5459,0,0,1,.11259-1.2468,4.28516,4.28516,0,0,1,.18524-.64868.32539.32539,0,0,1,.09065.26427,4.98155,4.98155,0,0,0,.0125.72379,8.04551,8.04551,0,0,1,.00828,1.72085,6.90589,6.90589,0,0,1-.4649,2.05486,3.56661,3.56661,0,0,1-.52548.863,8.4338,8.4338,0,0,1-1.215,1.23649c-.03269.02906-.09007.02993-.13613.04373-.03152-.02266-.04285-.0462-.03385-.0709.00916-.025.01889-.03748.02891-.03748Z"/><path class="cls-38" d="M37.99339,71.25819a.94309.94309,0,0,1,.58069-.17579,2.35379,2.35379,0,0,0,.60844-.10649.37762.37762,0,0,0,.3539-.38645.60842.60842,0,0,1,.39894-.584,8.98637,8.98637,0,0,1,.92312-.17477c.14876-.04708.3077-.06117.46141-.09327a.2292.2292,0,0,1,.246.0969,2.707,2.707,0,0,1-.08136.85745l-.786.35855c-.074.11623-.19831.12349-.31512.14717a1.48747,1.48747,0,0,0-.34141.05085.84306.84306,0,0,1-.20223.02935c-.13061.00537-.25395-.10635-.3895-.02368a6.986,6.986,0,0,1-1.45687.00406Z"/><path class="cls-39" d="M25.27724,54.19306a9.19816,9.19816,0,0,1-1.9626-.17536,1.34254,1.34254,0,0,0-.57546.011,2.46924,2.46924,0,0,1-.66974.06669q-.654.003-1.308-.00015a1.87022,1.87022,0,0,1-.71725-.07337.7195.7195,0,0,0-.28765-.02135,4.4648,4.4648,0,0,1-1.55771-.27284,5.57621,5.57621,0,0,1-.92776-.50994,1.11982,1.11982,0,0,0-.43773-.19l.19787-.29013a.44568.44568,0,0,1,.28039.05521,4.16794,4.16794,0,0,0,1.52109.593c.40243.10853.81024.20136,1.22036.27546.5204.09414,1.04559.161,1.56831.24262.11071.01714.21821.0552.32892.07046a.826.826,0,0,0,.695-.09734.295.295,0,0,1,.275-.05855c.47943.14426.98355.13874,1.46879.25177a2.92654,2.92654,0,0,0,.57938.02543c.11274.0029.229-.00872.30887.09734Z"/><path class="cls-40" d="M39.741,81.56064a.21982.21982,0,0,1-.0077-.09007c-.09792-.11637.01772-.2849-.09691-.39734-.06363-.19729-.13264-.39313-.18988-.59231a6.68674,6.68674,0,0,0-.60364-1.50947,1.29372,1.29372,0,0,0-.75793-.62137c-.09676-.08978-.32194.02252-.33022-.19845-.00611-.16635.12857-.24407.24552-.32892a.74565.74565,0,0,1,.96786.0722,1.967,1.967,0,0,1,.477.53246.63106.63106,0,0,1,.07322.13119c.02644.09777.07075.1893.101.28635a1.37138,1.37138,0,0,1,.02354.1556c.23274,1.20292.43061,2.41137.63212,3.61923a1.69579,1.69579,0,0,1-.00829.85861.0976.0976,0,0,1-.14324.02543.27748.27748,0,0,1-.00218-.09168c-.09385-.11739.00959-.27835-.08717-.39516l-.01278-.18117c-.09008-.12087.01656-.28577-.09008-.40286a.18586.18586,0,0,1-.00581-.085c-.093-.11913.01714-.28533-.09269-.40069a.17157.17157,0,0,1-.00537-.08223c-.07322-.08891-.00175-.21865-.0863-.30436Z"/><path class="cls-41" d="M32.65316,75.63986a2.00169,2.00169,0,0,0,.21995.09487.2108.2108,0,0,1,.16649.20412,1.45022,1.45022,0,0,1-.24712,1.0482,1.61357,1.61357,0,0,0-.27022.55614,3.58756,3.58756,0,0,1-.29972.70505.87143.87143,0,0,0-.15225.49686c.06872.1723-.06364.27472-.14862.38093-.91992,1.14946-1.63877,2.434-2.45743,3.65134a1.1621,1.1621,0,0,1-.07671.1155c-.17637.137-.19511.52374-.56369.358-.03051-.39109.25875-.6433.43381-.93314.7065-1.16965,1.46109-2.30851,2.25-3.42572a8.8249,8.8249,0,0,0,.856-1.7778,1.34223,1.34223,0,0,0,.04751-.71667.84265.84265,0,0,1,.04794-.56268l.00044-.00072a.98826.98826,0,0,0,.0937-.10344.672.672,0,0,1,.00538-.09037.05588.05588,0,0,1,.09443-.00043Z"/><path class="cls-42" d="M14.02073,52.34857a.52052.52052,0,0,1-.50732.043c-.11681-.05288-.24494-.0799-.36582-.12494a3.92633,3.92633,0,0,0-1.42767-.11158.46464.46464,0,0,0-.33749.16374c-.14775.1492-.29986.29433-.44529.44586a.29353.29353,0,0,1-.38252.09487,2.50022,2.50022,0,0,0-.41551-.1216,2.4236,2.4236,0,0,0,.12582-.26049,1.57941,1.57941,0,0,1,.81285-.8451,1.241,1.241,0,0,1,.8849-.138,8.09506,8.09506,0,0,1,1.81209.63633A.44479.44479,0,0,1,14.02073,52.34857Z"/><path class="cls-43" d="M53.23743,60.21858l.5679-.11361c.215.25541.08557.5111.00436.7697a7.03783,7.03783,0,0,1-1.59664,2.43041,2.61455,2.61455,0,0,0-.3446.4001,19.04937,19.04937,0,0,1-1.33456,1.37131.33367.33367,0,0,1-.21792.08629,9.89228,9.89228,0,0,1,1.1884-1.44423,3.18053,3.18053,0,0,0,.4912-.76752c.26877-.41638.51487-.84743.77245-1.27107a2.03871,2.03871,0,0,0,.36146-1.27556.24836.24836,0,0,1,.023-.11158l.03385-.04692.05113-.02732Z"/><path class="cls-44" d="M32.45906,75.83483a1.593,1.593,0,0,0,.03036.33429,1.73179,1.73179,0,0,1-.1476,1.35111,12.84382,12.84382,0,0,1-1.00041,1.75325c-.60655.82389-1.1666,1.68439-1.693,2.5645-.20557.34389-.4309.67585-.645,1.01465a.71255.71255,0,0,0-.13541.45371l-.009.04765a.23125.23125,0,0,1-.06073.07424l-.04257.02237a.13611.13611,0,0,0-.08092.04867c-.06363-.00654-.14761-.01657-.12654-.09763a1.0532,1.0532,0,0,1,.138-.30727c.652-.99517,1.20917-2.04962,1.8933-3.02431.29521-.42059.58882-.84219.89493-1.25479a.95588.95588,0,0,0,.20789-.67439,1.18531,1.18531,0,0,1,.13541-.65246.39173.39173,0,0,0-.0385-.48989c.03225-.10024.15167-.20223-.00669-.29826a1.22111,1.22111,0,0,0,.50558-.5971.48357.48357,0,0,1,.18088-.26834Z"/><path class="cls-45" d="M30.90252,81.45938a2.76,2.76,0,0,1-.4665.524c-.135.15225-.275.3-.41274.44979a.50881.50881,0,0,1-.09007.08934l-.00509.00538a.5971.5971,0,0,1-.09153.09312l-.00407.00421a.825.825,0,0,1-.09268.09444l-.00291.0029a1.23384,1.23384,0,0,1-.09371.09545l-.00189.002q-.046.04945-.09472.09646l-.00087.001c-.03065.0337-.06683.062-.09545.09763-.16736.00261-.16184-.08078-.09676-.19381.64069-.86776,1.33005-1.71,1.8904-2.62363.56718-.925,1.22036-1.77823,1.85073-2.65225.14848-.206.30872-.42349.60829-.429a.30735.30735,0,0,1,.13061.05652.24074.24074,0,0,1,.02862.20426,5.8892,5.8892,0,0,1-.59652.75866,6.11792,6.11792,0,0,0-1.01058,1.583c-.22576.584-.80311.91585-1.14946,1.42157-.07148.10446-.19424.17463-.20325.3189Z"/><path class="cls-46" d="M8.10039,64.28558c-.2188.086-.21647.30785-.26674.48015a1.45042,1.45042,0,0,1-.171.5355c-.05883.07787-.03617.21444-.05956.32238-.03734.17274-.18523.24-.31235.11913-.23245-.22155-.464-.101-.69779-.0324-.02586.00756-.03138.0847-.04649.12959a.33936.33936,0,0,1-.19191-.19714c-.11855-.37657.21821-.48219.41957-.59042a3.11167,3.11167,0,0,0,1.32845-1.85756c.32949-.71014.7264-1.38686,1.03469-2.10788.05578-.13047.10184-.32209.32543-.28011a.2253.2253,0,0,1-.00393.27633V61.083c-.27312.47914-.30189,1.04893-.56659,1.53126a1.43036,1.43036,0,0,0-.21967.45139.86776.86776,0,0,1-.04721.114,1.162,1.162,0,0,0-.1357.39546.78272.78272,0,0,1-.0308.11564q-.04149.111-.077.224a.60342.60342,0,0,1-.04591.1094.73861.73861,0,0,1-.23536.2615Z"/><path class="cls-47" d="M36.92383,79.0377c-.05942-.03981-.0953-.1-.06145-.16272.197-.367.38528-.73977.60611-1.09207a1.67435,1.67435,0,0,1,.66306-.55091c.50776-.27008.8897-.01,1.18927.4a.60238.60238,0,0,1,.08615.17259,10.36176,10.36176,0,0,1,.43527,1.52734c.04867.316.15908.62209.21981.93677a6.87749,6.87749,0,0,1,.25831,1.61,4.55425,4.55425,0,0,1,.10126,1.19726,2.56256,2.56256,0,0,0,.09007.42219.14877.14877,0,0,1-.223-.01191,26.76172,26.76172,0,0,0-.6465-4.13063,1.38067,1.38067,0,0,0-.09951-.51328c-.08514-.07947-.00581-.21356-.09676-.29114h-.00015a3.26709,3.26709,0,0,0-.3664-.6157.65165.65165,0,0,0-1.06549-.1033,1.70739,1.70739,0,0,0-.50528.62369,2.116,2.116,0,0,0-.40475.387.43572.43572,0,0,1-.0863.09008l-.00407.00436q-.04442.05073-.09022.10024Z"/><path class="cls-48" d="M5.96418,64.96709l.00188-.19584a1.64679,1.64679,0,0,1,.70171-1.14118,6.16031,6.16031,0,0,0,1.8686-1.86933.21181.21181,0,0,1,.24669-.11158c.04431.47609-.30974.7976-.47216,1.19276-.05811.14194-.1678.26644-.21691.4187a.53056.53056,0,0,1-.05666.12465,2.5555,2.5555,0,0,1-.67744.74674A3.82951,3.82951,0,0,0,6.1574,65.35819.55859.55859,0,0,1,5.96418,64.96709Z"/><path class="cls-49" d="M51.86845,63.70518c-.00494-.145.09356-.23071.17869-.32921a11.66833,11.66833,0,0,0,1.22617-1.60768,7.1558,7.1558,0,0,0,.51415-1.18258,1.528,1.528,0,0,0,.01787-.48088l1.26438-.5727a.7366.7366,0,0,1-.16475.3956c-.44863.64578-.87314,1.31087-1.36012,1.92672a13.45994,13.45994,0,0,1-1.41736,1.637C52.045,63.567,51.955,63.63414,51.86845,63.70518Z"/><path class="cls-50" d="M15.57088,56.71862c.3064-.18988.33124-.23536.26949-.51793-.01336-.0616-.06145-.12174-.05724-.17986a.81845.81845,0,0,0-.45429-.729.90911.90911,0,0,1-.33836-.32224.15449.15449,0,0,1,.14383-.05622.30972.30972,0,0,1,.10039.04111c.03109.01947.061.04039.09182.061.01714.00814.03312.01758.05012.02571.07395.03109.15153.052.224.08746a3.37662,3.37662,0,0,1,1.23939,1.34792c.07555.12843.19512.26165.092.434a.65782.65782,0,0,1-.09734.29115,1.52685,1.52685,0,0,1-.73948-.17855c-.14645-.06552-.29-.13744-.43483-.20659l-.08949-.09792Z"/><path class="cls-51" d="M30.90252,81.45938c-.06189-.0401-.09472-.10576-.0494-.161.22345-.27255.454-.53943.68457-.80631.10489-.1216.21937-.23507.32223-.35826a2.47527,2.47527,0,0,0,.44238-.79062,2.23046,2.23046,0,0,1,.471-.77362c.20282-.22591.38267-.47289.56573-.7158a1.70674,1.70674,0,0,1,.47913-.468l.0555.0385a.35791.35791,0,0,1,.084.18247.24439.24439,0,0,1-.045.12538c-.36669.59028-.94869,1.05082-1.07537,1.78594q-.46024.44412-.92108.88767c-.10257.0982-.21022.19089-.31541.28605a.22838.22838,0,0,0-.106.10795l-.11652.17928a.32656.32656,0,0,1-.08644.08368l-.009.00929a.36534.36534,0,0,1-.08775.09022l-.00682.00712a.49636.49636,0,0,1-.09008.09211l-.00494.00523a.68592.68592,0,0,1-.09167.09327l-.00378.00407a1.14462,1.14462,0,0,1-.093.09487l-.00233.00044Z"/><path class="cls-52" d="M32.83723,79.51814c-.08136-.01264-.19192-.043-.14049-.136a4.64331,4.64331,0,0,0,.21865-.4755.50261.50261,0,0,1,.095-.16563,3.38022,3.38022,0,0,0,.63052-.89972.29087.29087,0,0,1,.27371-.16359.25257.25257,0,0,1,.07744.10068,2.40469,2.40469,0,0,0,.10024.30814,1.863,1.863,0,0,1,.06291.33517c-.00494.20688.06973.45168-.24407.51052a4.03155,4.03155,0,0,0-.67512.29855.86723.86723,0,0,1-.09487.08237.22139.22139,0,0,1-.084.01961.37485.37485,0,0,0-.11273.09342l.00116-.00087c-.03254.0305-.066.06-.10039.08818l-.008.00465Z"/><path class="cls-41" d="M33.91114,78.93222c.23681-.13322.19177-.36248.196-.57488.03254-.0446.06537-.04678.09806-.00029a2.71074,2.71074,0,0,0,.08136.90713.85927.85927,0,0,1,.01525.28737c.001.56325-.01147,1.12694.00538,1.68962a5.74826,5.74826,0,0,1-.11855.855c-.043.3632-.08586.7264-.11187,1.09483a2.47271,2.47271,0,0,1-.06915-.7633c.00145-.28911.0016-.57822.00479-.86733a1.8004,1.8004,0,0,1,.07-.66626.53729.53729,0,0,0,.02-.19046c.00189-.514.001-1.02787.0029-1.54187A.20709.20709,0,0,0,33.91114,78.93222Z"/><path class="cls-53" d="M12.8563,64.38306c.00146.036.0032.0722.00494.10838a.79835.79835,0,0,1-.27618.2663,12.16424,12.16424,0,0,1-3.41613,1.5625c-.01163-.34606.29753-.28853.48422-.385a1.40444,1.40444,0,0,1,.73526-.30015.20622.20622,0,0,0,.0924-.024,15.37291,15.37291,0,0,0,1.62541-.71158c.25584-.16272.50034-.34374.75008-.51648Z"/><path class="cls-25" d="M8.19758,63.2182a.54206.54206,0,0,1-.11463.40969,2.265,2.265,0,0,0-.31322.59173,1.7618,1.7618,0,0,1-.77711.81939,6.43607,6.43607,0,0,0-.54916.3876.27179.27179,0,0,0-.08891.21618.18766.18766,0,0,1-.10374-.17971c-.08586-.17187-.024-.29041.10708-.42131a4.47746,4.47746,0,0,1,.76708-.65609,2.88848,2.88848,0,0,0,.87851-1.07058C8.058,63.26251,8.08557,63.156,8.19758,63.2182Z"/><path class="cls-54" d="M37.50859,78.45584c-.07744-.01336-.19265-.029-.10083-.13366.19134-.21806.40156-.42015.61033-.62223a.66462.66462,0,0,1,1.01566.00392,1.24617,1.24617,0,0,1,.412.84728.32973.32973,0,0,1-.17477-.15879,1.40358,1.40358,0,0,0-.594-.547.44951.44951,0,0,0-.50021-.00145q-.12417.07418-.24174.15865c-.14354.10184-.13308.1662.03617.26368a1.21434,1.21434,0,0,1,.11376.084A2.12085,2.12085,0,0,0,37.50859,78.45584Z"/><path class="cls-44" d="M31.391,76.80531c-.1261.17288-.33429.04213-.4832.12639-.00015.04359.023.0571.058.07191.09036.0385.13133.10751.03762.17507a1.54938,1.54938,0,0,1-.54044.198.25.25,0,0,1-.18538-.02819,1.62413,1.62413,0,0,1-.50224-.51139c-.04271-.07554.03836-.14978.06146-.22518a3.61609,3.61609,0,0,0,1.55421.19336Z"/><path class="cls-55" d="M8.00334,63.3151a2.39922,2.39922,0,0,1-.525.95639.523.523,0,0,1-.21705.1845c-.39952.139-.60538.51778-.93822.738-.08717.05739-.06247.17463-.07206.26892L6.1574,65.358a1.339,1.339,0,0,1,.57386-.90176,5.07521,5.07521,0,0,1,.50165-.36683,2.09278,2.09278,0,0,0,.57081-.57531.466.466,0,0,1,.19976-.199Z"/><path class="cls-56" d="M28.76936,76.61107a.85446.85446,0,0,1,.34751.31874,2.36238,2.36238,0,0,0,1.06317.9205.39421.39421,0,0,1,.23927.21792.66453.66453,0,0,1-.19162-.01961,2.565,2.565,0,0,1-1.43029-1.29591.61343.61343,0,0,1-.028-.14165Z"/><path class="cls-46" d="M7.41088,66.42571a.21725.21725,0,0,1,.04751-.00726c.17027.01176.16649-.27923.33211-.2156a1.38794,1.38794,0,0,1,.33008.27167A.49791.49791,0,0,0,8.204,66.522c-.0555.02644-.11448.08078-.16562.07409a1.32931,1.32931,0,0,1-.62761-.17041Zm2.24227-.49032c-.03443.02862-.06523.0754-.10388.0831a.53385.53385,0,0,0-.38034.30175l-.04446.007h-.045c-.05666.052-.14571.03051-.20048.08731l-.18437.01148a.06983.06983,0,0,1-.10954-.00654c.00727-.01394.01119-.0321.02252-.041A1.7903,1.7903,0,0,1,9.65315,65.93539Z"/><path class="cls-57" d="M29.35353,82.82139a.19952.19952,0,0,0,.09661.19381,1.7603,1.7603,0,0,1-.4771.49308l-.20034-.00988a.05782.05782,0,0,1-.02325-.06291c.007-.02135.01424-.032.0218-.032H28.7711a.98679.98679,0,0,0,.09676-.09734.61552.61552,0,0,0,.29085-.29259.37794.37794,0,0,1,.19468-.19221Z"/><path class="cls-58" d="M40.31919,83.50043l.19265-.00232.09777.00189.05-.03661.04881.03806c-.00058.03065-.00159.06145-.00348.09211-.126.00145-.25192.00363-.37773.00436a.2259.2259,0,0,1-.20383-.09415l.09864-.00407c.03269-.04736.06509-.04939.0972.00073Zm-5.33587.09269q-.0016-.04617-.00189-.09239a.63862.63862,0,0,0,.28969-.09792C35.21766,83.58615,35.21766,83.58615,34.98332,83.59312Z"/><path class="cls-59" d="M39.63637,81.07322c.14717.10446.08921.2589.09691.39735C39.61313,81.35957,39.64291,81.212,39.63637,81.07322Z"/><path class="cls-33" d="M19.74625,62.73281a.28435.28435,0,0,1,.28853.1986A.30713.30713,0,0,1,19.74625,62.73281Z"/><path class="cls-59" d="M40.034,83.01708c.13584.10795.08034.25832.08717.39488C40.00321,83.30009,40.03227,83.15553,40.034,83.01708Z"/><path class="cls-60" d="M56.05123,57.796l-.122-.11913c-.02238-.023-.02819-.04358-.01744-.06232.01017-.01744.01976-.0263.02877-.0263l.19525-.10925a.10452.10452,0,0,1,.02165.13685A.20975.20975,0,0,1,56.05123,57.796Z"/><path class="cls-59" d="M39.83265,81.94723c.14513.10708.08746.26122.09283.40069C39.80635,82.23489,39.83628,82.08714,39.83265,81.94723Zm.09835.48568c.14383.10866.0863.26252.09022.40272-.11709-.11478-.08775-.26224-.09007-.40272Zm-.19-.87227c.11361.07729.09138.19322.08629.30422A.33216.33216,0,0,1,39.741,81.56064Z"/><path class="cls-53" d="M8.585,66.41946l.1094.0064a.31969.31969,0,0,1-.30189.088.20391.20391,0,0,1,.19249-.09444Zm.29391-.00494a.20041.20041,0,0,1,.20048-.08746A.2082.2082,0,0,1,8.879,66.41452Z"/><path class="cls-21" d="M44.201,68.84667a.19672.19672,0,0,1,.19569-.09545A.20239.20239,0,0,1,44.201,68.84667Z"/><path class="cls-19" d="M43.13372,69.23356a.19645.19645,0,0,1,.19628-.09342.20141.20141,0,0,1-.19613.09342Zm-.291.09675a.19873.19873,0,0,1,.19888-.09283.20931.20931,0,0,1-.19888.093Z"/><path class="cls-44" d="M29.83674,76.61121a.19694.19694,0,0,1-.19206-.09937A.20182.20182,0,0,1,29.83674,76.61121Z"/><path class="cls-56" d="M28.67536,76.4161a.19878.19878,0,0,1,.09443.19526A.19753.19753,0,0,1,28.67536,76.4161ZM30.419,78.06794a.19666.19666,0,0,1,.19584.09357A.199.199,0,0,1,30.419,78.06794Z"/><path class="cls-31" d="M30.70857,78.16572a.19676.19676,0,0,1,.19758.09312A.20636.20636,0,0,1,30.70857,78.16572Z"/><path class="cls-61" d="M56.15743,57.61587l-.02179-.1367c.05579-.11536.088-.04809.12073.0154Z"/><path class="cls-62" d="M16.44634,53.70782l-.09836-.09836.09836-.09574Z"/><path class="cls-50" d="M15.37969,56.61881a.19331.19331,0,0,1,.19249.09995A.20631.20631,0,0,1,15.37969,56.61881Z"/><path class="cls-44" d="M32.5532,75.73066l-.09371.10344Z"/><path class="cls-6" d="M23.23953,48.37092l-.09777.09618Z"/><path class="cls-57" d="M29.93335,82.52255l.09007-.08935Zm-.09676.0985.09153-.093Z"/><path class="cls-35" d="M36.92325,79.03755l.09022-.1001Z"/><path class="cls-57" d="M29.73984,82.71969l.09268-.09443Zm-.09662.09851.09386-.0956-.09386.09545Zm-.09661.09835.09473-.09646Z"/><path class="cls-51" d="M32.84522,79.51349l.10024-.08818Zm.09922-.08732.11259-.09356Z"/><path class="cls-45" d="M31.49454,80.79981a.13556.13556,0,0,1,.106-.10809Zm-.20281.263.08658-.08368Zm-.09676.09951.08789-.09007Q31.23863,81.11711,31.195,81.16228Zm-.09676.09923.09008-.09211Q31.143,81.21539,31.09821,81.26151Zm-.0969.0985.09182-.09327-.09167.09327Zm-.09647.09894.09284-.09487-.093.09487Z"/><path class="cls-39" d="M16.8341,53.02747l-.097.09806Z"/><path class="cls-12" d="M17.31991,52.44678l-.09675.09676Z"/><path class="cls-5" d="M34.982,44.10082l-.09734.09662.09734-.09676Z"/><path class="cls-12" d="M17.417,52.34959l-.09675.0969Zm.0969-.00015h-.09661l.09647-.09734.02513.04867Zm-.00014-.09734.097-.097.01162.06363a.08418.08418,0,0,1-.10751.03429Z"/><path class="cls-12" d="M17.61077,52.1552l.09719-.09705.01424.06393a.09035.09035,0,0,1-.11056.03385l-.00087-.00087Z"/><path class="cls-12" d="M17.80515,51.96154l-.00029.09676a.05376.05376,0,0,1-.096.001l-.00087-.00116.09734-.09661Z"/><path class="cls-26" d="M9.847,53.80385l-.09486.09806Z"/><path class="cls-39" d="M16.64058,53.22389l-.09443.09486Zm.09676-.09865-.09589.09763Z"/><path class="cls-13" d="M20.91039,49.63283l-.09792.09589Z"/><path class="cls-46" d="M6.54617,65.83892l.09792.0985Zm.09661.09734L6.742,66.032l-.09923-.09589Zm.09952.09617.09487.08979-.09472-.08993Zm.28228.19657.10373.08746Zm.18814.09952.11.08615Z"/><path class="cls-13" d="M21.10463,49.53535l-.09836.09617Z"/><path class="cls-6" d="M22.26906,48.85616l-.09778.09618Zm.19409-.09719-.09777.09632Zm.38819-.1941-.09792.09618Z"/><path class="cls-44" d="M32.65316,75.63986l-.09473.00044.0924-.10068.00218.10025Z"/><path class="cls-12" d="M17.90205,51.86464l-.09661.09646.09661-.09632Z"/><path class="cls-33" d="M19.44712,62.44443l.10315.09734Zm.20019.19221.09851.09588Zm.386.29259.09937.09734Z"/><path class="cls-13" d="M20.6191,49.82606l-.09836.09632Zm.09719-.09574-.09719.09574.09719-.09589Z"/><path class="cls-63" d="M179.50342,82.46807c0,.12944-.00291.259.00378.388.00741.14572.05739.19264.21327.20049.129.00683.25861.00378.38791.00393q1.64944.00021,3.29876-.00015c.69154-.00073.61033.05579.61061-.63444q.00219-8.95047.00087-17.90065c0-.1617-.00349-.32368.00334-.48509.00218-.05317-.02616-.136.10169-.14862l10.35722,18.69547c1.755-3.16523,3.47367-6.27381,5.19351-9.382,1.71956-3.10756,3.441-6.2141,5.20454-9.3988a1.5259,1.5259,0,0,1,.0619.61628q.00282,8.99885.00173,17.99769,0,.21815.0035.43643a.174.174,0,0,0,.16649.19642c.1126.00886.22606.00726.33922.00726q1.74643.00044,3.49285.00043c.56935.0003.51357.02093.51357-.5339q.00066-13.80162.00014-27.60309c0-.1293-.00145-.2586-.00551-.3879a.14376.14376,0,0,0-.1511-.1508c-.11288-.00581-.22606-.00552-.33923-.00552-1.26133-.00029-2.52266-.00291-3.78384.001-.53028.00159-.43076-.0709-.69532.42146-.01525.02847-.032.05622-.04707.08469q-4.83481,9.06771-9.67092,18.13455a1.41962,1.41962,0,0,1-.30276.47173c-.10547-.18669-.21008-.36306-.30654-.54364q-4.83633-9.06663-9.67165-18.134c-.05316-.09995-.10795-.19889-.16083-.29884a.24211.24211,0,0,0-.23637-.13613c-.113.0016-.22634-.001-.33952-.001q-1.84339,0-3.68679.00044c-.63168.001-.55672-.06175-.55672.58243q-.00176,13.753-.00073,27.50589Zm-3.85982-13.9336a15.00145,15.00145,0,1,0-15.01741,15.03439A15.05368,15.05368,0,0,0,175.6436,68.53447ZM160.62591,79.05208a10.51029,10.51029,0,1,1,.00014,0ZM105.71537,62.45024A11.76464,11.76464,0,0,0,99.713,55.6495a16.00528,16.00528,0,0,0-2.74944-1.07029,23.26407,23.26407,0,0,0-6.26843-.87444c-2.16629-.01962-4.33286-.00828-6.49944-.00814-.62441,0-.55744-.06479-.55759.58156q-.002,7.15435-.00072,14.30857,0,7.17834.00029,14.357c0,.14542.00043.29114.00842.43627a.15283.15283,0,0,0,.15749.14964c.12886.00785.2586.00668.38789.00668q2.81294.00045,5.6263.0003a28.7533,28.7533,0,0,0,4.58957-.3202,18.98172,18.98172,0,0,0,4.5117-1.26453,11.9097,11.9097,0,0,0,6.87731-7.3948,17.81909,17.81909,0,0,0,.88839-5.13917,21.96138,21.96138,0,0,0-.06741-2.66459,17.118,17.118,0,0,0-.90191-4.30322Zm-3.78689,7.23645a12.50908,12.50908,0,0,1-.84583,4.01077,7.78449,7.78449,0,0,1-4.02413,4.26443,12.2439,12.2439,0,0,1-3.1369.96844,20.52021,20.52021,0,0,1-3.10393.27777c-.92006,0-1.56656.00233-2.21306-.00116-.22489-.00131-.25221-.03211-.26005-.247-.00407-.11288-.00116-.2262-.00116-.33923q0-9.98908.00131-19.978c.00014-.67-.0911-.58156.59623-.58185.95363-.00029,1.90841-.016,2.86044.02557a14.47522,14.47522,0,0,1,4.17886.76113c.25874.09051.51545.18887.76752.29652a7.83553,7.83553,0,0,1,4.50763,4.8518,12.98581,12.98581,0,0,1,.60742,2.78591,17.28365,17.28365,0,0,1,.06567,2.90489ZM138.16,58.49744a10.24368,10.24368,0,0,1,3.80738,2.06444,3.59433,3.59433,0,0,0,.46868.39052l3.17483-3.12645a.68146.68146,0,0,0-.08223-.11477,14.71388,14.71388,0,0,0-12.77586-3.93029,14.27378,14.27378,0,0,0-7.88963,3.95891,14.98882,14.98882,0,0,0,8.964,25.73753,14.25333,14.25333,0,0,0,3.914-.155,14.87818,14.87818,0,0,0,7.72924-3.8758.266.266,0,0,0,.12712-.22563l-3.111-3.1122c-.21923.18363-.41216.35216-.61207.512a10.18083,10.18083,0,0,1-9.28781,2.07751A10.479,10.479,0,1,1,138.16,58.49744ZM79.80553,53.92385c-.00712-.18523-.03545-.21066-.23724-.21821-.11288-.00436-.2262-.00145-.33938-.0016-1.21251,0-2.42488-.00436-3.63739.00145-.74253.00364-.64258-.10576-.64287.63561q-.00414,8.7539.00058,17.5078c.00044.777-.046,1.55131-.10286,2.32464a8.87432,8.87432,0,0,1-.17942,1.19712,3.77924,3.77924,0,0,1-1.6299,2.43171A7.33552,7.33552,0,0,1,70.60112,78.844a16.75828,16.75828,0,0,1-3.46321.37046c-.1293.00334-.2586.00189-.38761.00654a.13927.13927,0,0,0-.1447.15356c-.00232.06451-.00392.1293-.00407.19381q-.00021,1.79436.00029,3.58887c0,.08063.00175.1617.0093.242a.12218.12218,0,0,0,.1248.11942c.16126.0077.32281.01613.48422.01526a24.8382,24.8382,0,0,0,3.4805-.21981,15.25186,15.25186,0,0,0,3.50926-.90264,8.6918,8.6918,0,0,0,2.81627-1.76574,8.45319,8.45319,0,0,0,2.202-3.60035,13.14777,13.14777,0,0,0,.57836-4.01339q.00523-4.53473.00116-9.06916V54.31175c0-.1293.00276-.25875-.00218-.3879Z"/><path class="cls-63" d="M113.52306,76.795a2.86831,2.86831,0,1,1-.00014,0Z"/><path class="cls-48" d="M36.64518,57.86866a.39356.39356,0,0,1-.2522.20732,11.17863,11.17863,0,0,1-1.43756.39952,6.60361,6.60361,0,0,0-1.01871.28969,1.70614,1.70614,0,0,1-.56863.08717c-.371-.00436-.74238-.00087-1.11343-.00131a1.6473,1.6473,0,0,1-.52519-.05956,1.28354,1.28354,0,0,0-.38209-.03589c-.37119-.00407-.74239,0-1.11358-.002a1.93609,1.93609,0,0,1-.66916-.06886,1.31851,1.31851,0,0,0-.38354-.02732A7.68529,7.68529,0,0,1,27.6905,58.574a3.8583,3.8583,0,0,0-.82054-.01438,1.558,1.558,0,0,1-.57314-.06175,1.54543,1.54543,0,0,0-.528-.03443,2.51382,2.51382,0,0,1-.90844-.084.20191.20191,0,0,0-.0956-.00988,6.57916,6.57916,0,0,1-1.39048-.11288c-.66829-.06349-1.33106-.18829-1.994-.30059-.45734-.07743-.90946-.18639-1.36666-.26586a5.73019,5.73019,0,0,1-2.48459-.99242.92616.92616,0,0,0-.50035-.27284.27677.27677,0,0,1-.08775-.12145,1.57064,1.57064,0,0,0-.25075-.70316c-.0677-.09094-.15705-.22722.045-.29783a48.03861,48.03861,0,0,0,5.51879,1.00012.889.889,0,0,1,.28156.06828,16.76181,16.76181,0,0,0,5.54566.985c1.62424.109,3.24412.282,4.87476.28983a6.04452,6.04452,0,0,0,2.48285-.555c.43933-.14368.64534.21109.91556.42916.03966.04562.07671.09443.11782.1386.0279.02411.05463.05041.08136.07627a.4715.4715,0,0,1,.07191.08266Z"/><path class="cls-64" d="M36.35172,57.65234a3.81494,3.81494,0,0,0-.777-.573c-.26877-.03821-.38746-.26-.54044-.4402-.02368-.033-.04548-.068-.06712-.10257-.01177-.016-.02252-.03327-.03458-.04939-.02586-.03022-.0507-.0616-.07671-.09226-.01424-.01452-.02717-.02978-.0414-.04431a1.12975,1.12975,0,0,1-.08383-.09211c-.01308-.01714-.0247-.03457-.03748-.05186a.27722.27722,0,0,1-.0385-.1232l.01365-.06465a.80617.80617,0,0,0,.20194-.84118.22571.22571,0,0,1,.09269-.29724c.122-.06974.21589.01206.30306.08208.1508.12088.2756.27168.43657.38035.05128.03269.10184.06683.15371.09835a1.13639,1.13639,0,0,1,.23448.17c.04344.03778.08455.07816.126.11841.07162.06871.1447.13554.22228.198a3.618,3.618,0,0,1,.49541.40418,1.34674,1.34674,0,0,0,.26949.22634,1.16873,1.16873,0,0,1,.13555.10461c.04344.03574.08571.07264.13046.10692q.07083.04663.14179.093c.0494.03051.09647.06393.14412.09705.06741.04344.13671.08339.205.12552.18713.15894.47318.21444.53406.50674a2.37336,2.37336,0,0,1,.07554,1.38191.17737.17737,0,0,1-.19133-.02469l-.00233-.00117c-.0491-.06-.14281-.03922-.18915-.10431l.00348.00218c-.05608-.05143-.15283-.03123-.19351-.11l.00973.008c-.04794-.01191-.07525-.05491-.11622-.07772l-.00916-.00465c-.0385-.07192-.14019-.03835-.18014-.1078a7.04028,7.04028,0,0,0-1.05663-.685l.00145.00349a.52835.52835,0,0,1-.11259-.08528l-.003-.002c-.04577-.06319-.15473-.04067-.17928-.13249Z"/><path class="cls-65" d="M17.02848,56.3281l.00029.09691c-.02324.16373.062.349-.09676.48553a.42863.42863,0,0,0-.08048-.22374c-.14819-.2108-.29812-.42117-.43352-.64025a1.75691,1.75691,0,0,0-.59812-.61933,3.439,3.439,0,0,1-.344-.26369c-.05026-.06116-.1415-.04068-.194-.09705q-.04731-.04984-.09733-.097c-.4572-.15807-.804-.52156-1.26148-.67934a4.14273,4.14273,0,0,0-.58258-.3879h.00015c-.09036-.07467-.19758-.12392-.291-.19424-.43773-.144-.81575-.50688-1.33251-.36262a.15689.15689,0,0,1-.07817-.10881c.03836-.283.23536-.3173.46345-.28693a1.27671,1.27671,0,0,1,.45226.16605,38.01551,38.01551,0,0,1,4.0131,2.41922A1.0434,1.0434,0,0,1,17.02848,56.3281Z"/><path class="cls-66" d="M37.70181,58.55366a.20489.20489,0,0,1,.18015.108l-.18305-.00451.0029-.10344Zm1.283,11.47066a5.53367,5.53367,0,0,1-1.62991.03341,13.12985,13.12985,0,0,1-1.48782-.12988,1.21587,1.21587,0,0,0-.28649.01192c.01452-.1049.06537-.21386-.04853-.30015-.08673-.066-.16271-.14775-.25424-.20543a1.1158,1.1158,0,0,1-.39313-.39342c.27967-.2111.54916-.02034.82.02644a5.72131,5.72131,0,0,1,.60785.121,1.43355,1.43355,0,0,0,1.67073-.52083,1.27791,1.27791,0,0,1,.60292-.385,3.39823,3.39823,0,0,0,.567-.26557c.80587-.51473.74079-.88.39662-1.42143a3.9401,3.9401,0,0,1-.41682-.7604,4.26044,4.26044,0,0,0-1.92192-1.94967,7.15378,7.15378,0,0,0-2.5844-.50761c-1.17823-.14136-2.37346-.1678-3.56084-.2541a.35835.35835,0,0,0-.2554.04591c.23231.378.45618.74471.66205,1.12113.09617.17579.25322.35071.11274.57721a4.809,4.809,0,0,0-1.73117-.92414,8.00576,8.00576,0,0,1-1.70633-.7864,2.88462,2.88462,0,0,0-.35477-.14891,2.37008,2.37008,0,0,1-.2926-.16446.09938.09938,0,0,1-.03632-.12785.123.123,0,0,1,.113-.07264c.131-.00857.26136-.02092.32281.139a.27386.27386,0,0,0,.08514.11071c.08528.06624.25715.016.26063-.09371a.223.223,0,0,1,.199-.23027,1.46707,1.46707,0,0,1,.3356-.02906c.2583-.00392.5172.006.77521-.0029a7.77292,7.77292,0,0,1,1.38439.15937,1.72406,1.72406,0,0,0,.18959.0324,2.83865,2.83865,0,0,1,.95667.09777c.83828-.02644,1.6671.1665,2.50755.10315a1.54354,1.54354,0,0,0,.4726-.08164,7.33347,7.33347,0,0,0,.969-.283.62885.62885,0,0,1,.28591-.02542,1.47223,1.47223,0,0,0,1.15658-.50558c.31976-.36175.6972-.66568.98791-1.0607a5.93888,5.93888,0,0,0,.55178-.66059.92065.92065,0,0,0,.13845-.25133.89154.89154,0,0,1,.38732-.53028c.17768-.12639.34432-.02658.50108.03952A18.71786,18.71786,0,0,0,44.90761,60.75c.18014.024.40257-.02383.48581.22155-.08048.00639-.161.01351-.2416.01918a.31506.31506,0,0,0-.26586.18218c-.148.268-.31.52882-.44892.80151a5.21232,5.21232,0,0,1-.666,1.11838,1.50238,1.50238,0,0,0-.324.69589,9.05851,9.05851,0,0,1-1.16834,2.79477c-.16563.276-.28272.57807-.46577.84786a3.70312,3.70312,0,0,1-.76781.79905,4.68771,4.68771,0,0,0-.36989.30857,7.5046,7.5046,0,0,1-.9388.75517q-.37381.26538-.74006.54117c-.06553.04954-.11725.11957-.01163.189Z"/><path class="cls-67" d="M45.39342,60.97157a4.15752,4.15752,0,0,0-.99968-.15356,17.34667,17.34667,0,0,1-4.66628-1.23736,1.25078,1.25078,0,0,0-.18422-.04939l-.00218-.00087c-.06668-.09836-.22634.00813-.27676-.12582l.0125.00974c-.05477.00407-.08136-.04257-.12029-.067l-.023-.02687-.0353.00305a.26847.26847,0,0,1-.13541-.07308l-.0228-.02687-.03516.0029a.265.265,0,0,1-.139-.0786l-.00668-.00305c-.045-.06537-.135-.04416-.18669-.09646l-.00435-.002-.03662-.02876.0263-.0385c-.04242-.16809-.12494-.33153-.0369-.51139a.41274.41274,0,0,0-.07889-.48713.7438.7438,0,0,1-.11288-.21065c-.05521-.13788.04358-.1617.14412-.18015l.04576.00712a.32309.32309,0,0,1,.07947.04707l.0385.02571a1.0147,1.0147,0,0,0,.12872.05957c.03269.01089.06407.02266.09647.0337.07264.019.147.025.22068.03952.3154.09705.59347.27545.89551.4017a5.70518,5.70518,0,0,0,.80108.2971A19.69091,19.69091,0,0,0,45.276,59.50468a4.5817,4.5817,0,0,0,1.01638.09051,1.58519,1.58519,0,0,1,.315.03777,1.13928,1.13928,0,0,0,.31308.04387,7.01906,7.01906,0,0,0,1.54986-.05186c.4062-.08789.82665.02789,1.23067-.08775.233-.057.478-.02557.709-.09836.35375-.036.703-.11114,1.05837-.13249a1.32224,1.32224,0,0,0,.3372-.02964,1.052,1.052,0,0,1,.12334-.02717,1.99954,1.99954,0,0,0,.35507-.05433.99668.99668,0,0,1,.1123-.03284,2.20377,2.20377,0,0,0,.28155-.0645,1.149,1.149,0,0,1,.111-.036q.1122-.03177.222-.07133a.7206.7206,0,0,1,.11245-.03138q.11349-.022.22867-.03342c.01917.00087.03835.00233.05753.00378.04765.00726.09516.01453.14281.0215.08281.01206.12146.06523.06218.126a2.3519,2.3519,0,0,1-.63124.43032c-.22853.1171-.45953.22954-.68573.35085a.15474.15474,0,0,0-.07293.11288.14119.14119,0,0,0,.12494.12451.50678.50678,0,0,0,.33138-.01162.43379.43379,0,0,1,.55643.13467v-.00014a.6502.6502,0,0,1-.2785.11549c-.03807.0125-.07672.02339-.11565.033-.09254.0372-.1954.032-.28809.0693l-.11419.03153a1.49615,1.49615,0,0,0-.28475.08281.47425.47425,0,0,1-.11332.04257,1.54332,1.54332,0,0,0-.29492.05579.37539.37539,0,0,1-.1755.03588,4.90037,4.90037,0,0,0-1.1637.19351,3.11408,3.11408,0,0,0-.96743.1062c-.64853.00073-1.295.04243-1.941.09589l-2.10687-.109Z"/><path class="cls-68" d="M31.5852,64.86786a.78949.78949,0,0,0-.04853-.18552q-.29943-.553-.61265-1.09832a1.367,1.367,0,0,0-.3215-.35623.15737.15737,0,0,1,.07453-.26659.42254.42254,0,0,1,.23492-.01075,1.94466,1.94466,0,0,0,.71812.07336,1.27052,1.27052,0,0,1,.47739.05986,1.36877,1.36877,0,0,0,.48045.03734,4.75371,4.75371,0,0,1,1.20292.08339,1.732,1.732,0,0,0,.53115.0122,2.34618,2.34618,0,0,1,.85977.10025,2.11436,2.11436,0,0,0,.81183.09443,1.2751,1.2751,0,0,1,.79047.172,1.45645,1.45645,0,0,0,.31294.12654,2.7278,2.7278,0,0,1,1.34632.965,2.41065,2.41065,0,0,0,.3709.38252,1.19265,1.19265,0,0,1,.43744.781c-.14891.05376-.24741-.04227-.34112-.12625a3.84629,3.84629,0,0,0-2.4782-1.04529c-.41594-.01657-.82607-.14267-1.24535-.154-.93793-.02528-1.35939.49424-1.28007,1.42346a3.754,3.754,0,0,0,1.83562,2.95661c.20252.13264.601.02586.59783.439-.40475-.09486-.80907-.1922-1.21484-.28257a1.28726,1.28726,0,0,0-.24087-.00857,4.25235,4.25235,0,0,1-.90394-.92588c-.15313-.22576-.37192-.394-.52679-.62529-.1508-.22518-.31279-.44557-.46592-.67119q-.5125-.75678-1.03817-1.50453c-.11027-.15662-.24248-.29783-.36466-.446Z"/><path class="cls-66" d="M39.26431,59.40472a.38263.38263,0,0,1,.27676.12567c-.10852-.006-.23289.02266-.27676-.12582Zm-.69183-.35638a.20069.20069,0,0,1,.18669.09647A.20069.20069,0,0,1,38.57248,59.04834Zm-.01467-.06929a.40421.40421,0,0,0,.01017.06726.19576.19576,0,0,1-.18887-.09734Zm-.37018-.13541a.21366.21366,0,0,1,.18916.10432A.18429.18429,0,0,1,38.18763,58.84364Z"/><path class="cls-66" d="M37.99761,58.73585a.22322.22322,0,0,1,.19351.11C38.10468,58.84786,38.02768,58.83318,37.99761,58.73585Z"/><path class="cls-66" d="M37.89126,58.66611a.10908.10908,0,0,1,.11608.07773l-.11623-.07773Zm.87459.48175a.14217.14217,0,0,1,.139.0786A.165.165,0,0,1,38.76585,59.14786Zm.19686.10257a.13135.13135,0,0,1,.1354.07308.15835.15835,0,0,1-.13526-.07308Zm.1938.0969a.10316.10316,0,0,1,.12029.06712A.12614.12614,0,0,1,39.15651,59.34733Z"/><path class="cls-69" d="M30.80867,52.05815a3.30813,3.30813,0,0,0-.8037.0741,1.97986,1.97986,0,0,1-.66567.01307.74111.74111,0,0,1-.47507-.19322.37813.37813,0,0,0-.47071-.10824.16216.16216,0,0,1-.20485-.07685c.256-.16344.57488-.04678.8358-.18785a8.52557,8.52557,0,0,0,1.31291-.25773,17.00239,17.00239,0,0,0,2.3675-.59057.449.449,0,0,1,.18842-.0276,1.188,1.188,0,0,0,.72932-.199l.04387-.04024.05957.0048a.43977.43977,0,0,1,.103.06043c.0154.01279.03022.0263.04591.03894.03094.02542.06029.05273.08978.07976.01569.0122.03051.02557.04635.03763a.8031.8031,0,0,0,.20528.11186,1.10937,1.10937,0,0,1,.10489.04329,1.43491,1.43491,0,0,0,.20674.07265,1.04,1.04,0,0,1,.1046.03486.8029.8029,0,0,0,.16678.03269.92574.92574,0,0,0,.29695-.03487,1.13476,1.13476,0,0,1,.11637-.03239c.07511-.01671.152-.02572.22664-.04359.03371-.01162.06843-.0215.10257-.032a.97586.97586,0,0,0,.14194-.0648c.0276-.02135.05593-.04169.08354-.06319.02673-.02441.05491-.04649.084-.06887.03065-.02542.06218-.04794.09414-.07147a.47042.47042,0,0,0,.19017-.32253,1.26829,1.26829,0,0,1,.05666-.197c.14877-.22112.05114-.53.25962-.7296a.85174.85174,0,0,0,.87909.17579c3.00441-.83086,5.99575-1.69862,8.92766-2.76615a1.9476,1.9476,0,0,0,.82839-.70984c.20848.15211.11942.39124.17289.58839a1.73884,1.73884,0,0,1,.04155.1816.81942.81942,0,0,0,.05288.15777.79843.79843,0,0,0,.09691.12407,1.42191,1.42191,0,0,0,.1213.09981c.04577.028.09168.05521.13874.08078q.09807.05012.19657.09835c.0677.032.13511.0648.20412.09356.08935.03589.18189.062.27371.09037a2.54527,2.54527,0,0,1,.34373.10257l.04359.04271a.45219.45219,0,0,1-.333.25976c-.33138.07351-.59027.35143-.95042.3308a2.82124,2.82124,0,0,1-.28432-.04707c-.06276-.01017-.1354-.04358-.187-.02353a2.40977,2.40977,0,0,1-.815.07438.47261.47261,0,0,0-.14412.01337c-.56151.20717-1.165.23506-1.73436.409a3.46,3.46,0,0,1-.5172.11042,5.26764,5.26764,0,0,0-1.31334.47754c-.63779.27414-1.30433.4678-1.9427.73744a13.48684,13.48684,0,0,1-1.48128.58926,13.06818,13.06818,0,0,1-2.15858.48626,9.94143,9.94143,0,0,0-1.03557.22417,1.11736,1.11736,0,0,1-.23463.05142,8.913,8.913,0,0,0-1.57441.20006,2.54711,2.54711,0,0,0-.37337.09239,1.54079,1.54079,0,0,1-.75692.06611,2.22247,2.22247,0,0,0-.80253.093,5.469,5.469,0,0,1-1.32569.233Z"/><path class="cls-70" d="M55.94053,57.58827a.51685.51685,0,0,0-.01148.08862c-.12727.05637-.21008.18843-.35768.21037a.1626.1626,0,0,1-.21037-.00654,1.53873,1.53873,0,0,1,.07685-.66582.18563.18563,0,0,0,.01482-.09487,3.43545,3.43545,0,0,1,.275-1.261c.18218-.66437.33661-1.33629.49468-2.00676a1.50637,1.50637,0,0,0,.01162-.33735c.001-.41913.00334-.83827-.00058-1.25711A2.66827,2.66827,0,0,0,56.155,51.349a.89205.89205,0,0,1-.01628-.33589,8.09518,8.09518,0,0,0-.32209-2.27728,2.93686,2.93686,0,0,0-.4107-.97048c-.04489-.06639-.07163-.14484-.11623-.21138a.33586.33586,0,0,1,.02731-.47652c.02035-.02034.02252-.05913.033-.08935a.12566.12566,0,0,1-.0061-.10983.80453.80453,0,0,1,.14121-.17652c.0369-.04.07555-.07845.11158-.11913a1.77041,1.77041,0,0,1,.1322-.17143.11914.11914,0,0,1,.10373-.01032.60341.60341,0,0,0,.20732.4697,1.93731,1.93731,0,0,1,.41332.47042.93981.93981,0,0,0,.41783.31816.59916.59916,0,0,1,.33662.634,2.7089,2.7089,0,0,1-.08136.86108.46658.46658,0,0,0-.01685.19148,5.0101,5.0101,0,0,1-.16214,1.18912,3.36327,3.36327,0,0,0-.03341.52912,3.51367,3.51367,0,0,1-.09037,1.14989c.06131.33517-.14586.66-.03777.99692a4.7792,4.7792,0,0,0-.08267.66757,12.90535,12.90535,0,0,1-.61221,2.37273,4.84042,4.84042,0,0,0-.23492.93241.3776.3776,0,0,0,.08455.40475Z"/><path class="cls-71" d="M55.35984,46.91128a.29939.29939,0,0,0-.00988.07686c-.172.04387-.28068.21792-.46882.22882a2.36247,2.36247,0,0,1-1.43973-.263,5.72544,5.72544,0,0,0-1.97975-.38137c-.8913-.11724-1.79349-.14339-2.681-.30073-.03152-.00566-.06421-.00508-.096-.01017-.77725-.12494-.925-.446-.50369-1.09411a2.3736,2.3736,0,0,1,.95551-.394c.08834-.07482.22-.00087.30451-.08862a.04409.04409,0,0,1,.06683-.01424c.21095-.06639.29536-.00726.17942.20238-.08571.155-.24305.25758-.33458.41231-.21095.35651-.14238.53042.263.61279a14.93806,14.93806,0,0,0,1.53474.19555,20.95978,20.95978,0,0,1,2.30038.27313,2.75238,2.75238,0,0,1,.8695.27414,1.49164,1.49164,0,0,0,.89639.129c.08383.01032.15342.0356.14325.14121Z"/><path class="cls-72" d="M47.21321,46.90518c-.00581-.04968-.01133-.09951-.01685-.1492-.07-.6295.08382-.73846.68718-.55294a15.89782,15.89782,0,0,0,2.32217.37875,4.90218,4.90218,0,0,1,2.29166.786c.09065.06755.2079.12087.17245.25787-.03894.15037-.17666.10083-.2817.11245-.173.01932-.35361-.04475-.5201.04692a8.44462,8.44462,0,0,1-2.66809-.06348c-.13976-.027-.28446-.028-.42683-.04112l.00087.00058a.07976.07976,0,0,1,.01032-.12625.74831.74831,0,0,1,.56122-.04344,2.69532,2.69532,0,0,0,.67091.04446c.12422-.00843.27981.00174.29724-.17274.01511-.15211-.1075-.22257-.22794-.276a1.97139,1.97139,0,0,0-.36945-.10722c-.59566-.1354-1.20147-.20891-1.80337-.30654a.59249.59249,0,0,0-.56137.19627.13089.13089,0,0,1-.13845.01569Z"/><path class="cls-73" d="M51.868,47.785a.2577.2577,0,0,1,.21182-.09341c.11259-.001.22519-.00116.33778-.00509.062-.00232.13613.00247.162-.06988.03269-.09167-.052-.10068-.10664-.12218-.08935-.03545-.18247-.06189-.27182-.09748a1.2221,1.2221,0,0,1-.17012-.08528c-.12393-.07351-.147-.26151-.30989-.28679-.14266-.02237-.28213-.05811-.42233-.08542a5.03209,5.03209,0,0,0-1.27339-.22838,4.02182,4.02182,0,0,1-.56543-.09763c-.46011-.042-.91644-.12451-1.37509-.18509a.68726.68726,0,0,1-.26441-.10576.53659.53659,0,0,0-.2214-.08049c-.32616-.02368-.39444.02034-.39052.32122.00088.06407-.00784.12842-.0122.19249a.35206.35206,0,0,1-.08775-.29768c.00072-.13772.01336-.2753.02092-.41289a.22256.22256,0,0,1,.25337-.25395,12.28033,12.28033,0,0,0,3.84137.738,3.86967,3.86967,0,0,1,1.92962.512c.2557.19381.59348.10257.89014.16388.143.02949.34359-.04693.35769.20528l-.00088-.00087c-.08934.06712-.21545.00072-.30073.08266a5.7091,5.7091,0,0,1-1.51078.28083c-.238.02659-.48087.0093-.72146.01191Z"/><path class="cls-74" d="M54.40171,47.41047a.29228.29228,0,0,0-.25628-.10649c-.24189,0-.48393-.00262-.72582-.00044a.42729.42729,0,0,1-.35449-.11884,1.87654,1.87654,0,0,0-1.18331-.46243c-.42335-.086-.85672-.0998-1.28413-.1675-.32979-.05231-.66655-.08616-1.00085-.12451-.3661-.04213-.731-.08862-1.0989-.12a2.63736,2.63736,0,0,1-1.20046-.46635c-.02092-.30117.21546-.37309.42088-.4726l.27517-.10417c.045-.06421.13874-.03705.18523-.0985l.002-.001c.0571.01308.15676.01482.11536.09662a1.671,1.671,0,0,1-.21792.25453.26428.26428,0,0,0,.05055.41724.91493.91493,0,0,0,.53566.19308c.32049.01932.636.08528.95057.12785.35216.04736.71187.01627,1.05024.0908.41012.09037.82824.05477,1.23779.15487a6.42909,6.42909,0,0,0,.8544.10751,2.03005,2.03005,0,0,1,.95.31482,1.10521,1.10521,0,0,0,.7267.18524,1.19683,1.19683,0,0,1,.28867.01089.5381.5381,0,0,1,.15836.09589.746.746,0,0,1-.47943.19351Z"/><path class="cls-74" d="M54.1,47.49226c.077-.11215.18945-.09559.30088-.08281a.32531.32531,0,0,1-.30073.08281Z"/><path class="cls-10" d="M55.26323,58.0754a.20177.20177,0,0,1-.18989.10271l.09516-.111c.03153.00392.0632.00653.09487.00813Zm.09777-.19468.21037.00654a.21676.21676,0,0,1-.18742.11739Z"/><path class="cls-10" d="M55.38918,58.00014a.11374.11374,0,0,1-.1245.07439A.12564.12564,0,0,1,55.38918,58.00014Z"/><path class="cls-6" d="M47.71835,45.37131c-.11041.18421-.35594.248-.42088.4726l-.16794.20135c-.12494.06436-.12131.18335-.11347.29463a.31369.31369,0,0,1-.25874.35391c-.60641.16315-1.17533.42742-1.76284.64083-.55657.20238-1.12593.37149-1.69311.54321-.90611.27429-1.816.53667-2.72285.80878-.2926.08775-.58127.18872-.87067.28678a10.85966,10.85966,0,0,1-1.43726.39182c-.39241.07555-.77319.21139-1.16022.316a1.35962,1.35962,0,0,1-.28373.045c-.19468.00973-.22112-.01032-.2926-.22664A.30873.30873,0,0,0,36.435,49.341a13.40905,13.40905,0,0,1-.90656-1.04907c.2496-.05957.50413-.10373.74791-.1816q.94017-.3,1.90332-.51909c.43774-.09981.8666-.23739,1.30143-.35027.54335-.14107,1.08525-.29,1.63441-.4033a1.41028,1.41028,0,0,1,.765.03268.73514.73514,0,0,0,.51749-.01888c.53028-.18887,1.07276-.34112,1.5962-.55207.22083-.08906.47187-.10039.69706-.18131.455-.16344.92835-.25308,1.39107-.38209a7.46069,7.46069,0,0,0,1.02975-.37381l.60626.00916Z"/><path class="cls-75" d="M36.25874,50.15773l-.01845.146c-.08325.109-.13381.26441-.32108.22562a.8241.8241,0,0,1-.429-.55221,1.50744,1.50744,0,0,0-.99372-1.01944,1.12708,1.12708,0,0,1-.58258-.39415.46987.46987,0,0,1,.35812-.20528C35.621,48.11232,36.2968,48.92691,36.25874,50.15773Z"/><path class="cls-76" d="M33.9139,48.56356a2.07751,2.07751,0,0,1,.22112.08311c.08528.04314.16213.137.24669.14208.37235.02223.57458.32441.85657.4925a.59227.59227,0,0,1,.29608.42277,1.36655,1.36655,0,0,0,.3911.75314.37219.37219,0,0,1,.04286.08571.20815.20815,0,0,1-.11129.15676l-.00218.00145a.26235.26235,0,0,1-.11753.08165l.01061-.00843c-.04039.07889-.10751.06814-.17609.0526a4.92255,4.92255,0,0,1-.81313-.88389,2.47109,2.47109,0,0,0-1.23489-.89406l.0353-.18073.15211-.113a.30162.30162,0,0,0,.10053-.10344l-.00464.00436a.33434.33434,0,0,0,.10605-.092l.00073-.00059Z"/><path class="cls-77" d="M36.25874,50.15773a.5839.5839,0,0,0-.13032-.401c-.11768-.112.0231-.283-.10083-.401-.10489-.09995-.1075-.25874-.18508-.38427a.85307.85307,0,0,0-.63139-.45066,5.56493,5.56493,0,0,0-.9391-.16257,1.24317,1.24317,0,0,1,.87837-.13743c.12654.02005.25206.04707.378.071.01032.01191.01845.02906.03153.03516a1.66141,1.66141,0,0,1,.875,1.01406C36.41157,49.62092,36.47244,49.91889,36.25874,50.15773Z"/><path class="cls-75" d="M33.81177,48.65175a.14019.14019,0,0,1-.10054.10344A.11089.11089,0,0,1,33.81177,48.65175Z"/><path class="cls-75" d="M33.91318,48.56415l-.10606.09181A.10484.10484,0,0,1,33.91318,48.56415Z"/><path class="cls-78" d="M33.52382,49.04909c.17042-.0953.33081-.14266.44325.08238a.12639.12639,0,0,0,.07047.06334c.30654.06872.47361.32005.683.51575a1.24676,1.24676,0,0,1,.31831.42131.61266.61266,0,0,0,.45037.3972c.16.03545.12277.15952.07628.2708.033.02833.04038.04911.02266.06248a.07407.07407,0,0,1-.04562.01394l.01221-.00581c-.09807.1447-.2772.0109-.38761.11288l.00494-.00247c-.13526.11027-.2942.03444-.44079.05594a.13511.13511,0,0,1-.13031-.06131l.00581.00436c-.08862-.07017-.22-.00029-.3019-.09226l.00407.00146-.09894-.0847a3.02765,3.02765,0,0,1-.691-.68355l.00145.00334c-.04576-.05927-.03225-.14252-.08092-.20077a.90284.90284,0,0,1,.08426-.87445Z"/><path class="cls-79" d="M33.519,50.12083c.22751.177.45778.35056.6805.53347a.52759.52759,0,0,1,.09181.165c-.16024.05521-.26513-.041-.37075-.1354l.00915.008a.3435.3435,0,0,1-.11129-.09182l.00116.001c-.034-.0308-.06566-.06392-.09937-.09516l-.00044-.00058a.42205.42205,0,0,1-.09428-.10315c-.01148-.103-.12291-.16794-.10649-.28141Z"/><path class="cls-79" d="M33.43956,49.92339a.18159.18159,0,0,1,.08092.20078A.179.179,0,0,1,33.43956,49.92339Z"/><path class="cls-13" d="M33.62552,50.40209a.11479.11479,0,0,1,.09443.1033l-.09734-.00116Z"/><path class="cls-66" d="M39.92432,69.95342a1.25514,1.25514,0,0,1-.574.05172c.1787-.15632.37686-.09821.57386-.05172Z"/><path class="cls-80" d="M17.70883,52.05931q.04794-.00108.096-.001c.2217.15923.43584.3308.66771.47347a1.94111,1.94111,0,0,0,.53435.21748c.57618.14964,1.17764.1742,1.74395.36582.35841-.03225.69444.13715,1.05445.1139a2.85837,2.85837,0,0,1,.37628.07264c.2522.02034.52054.092.6972-.19221.05608-.09007.16765-.08281.26644-.0629.58171.11782,1.15905.27472,1.74657.341a6.97312,6.97312,0,0,0,1.24651.12785,1.76421,1.76421,0,0,1,.42974.05085,4.01392,4.01392,0,0,0,1.29968.00552,1.11927,1.11927,0,0,1,.23463-.051c.56776.04983,1.12172-.10519,1.68584-.10635a1.08766,1.08766,0,0,0,.3327-.04736,1.40552,1.40552,0,0,1,.43105-.04722,1.402,1.402,0,0,0,.47855-.05433.74261.74261,0,0,1,.285-.03981,3.96328,3.96328,0,0,0,1.28719-.16707.642.642,0,0,1,.51459.05811.57394.57394,0,0,0,.55541.04431.49785.49785,0,0,1,.23724-.03254,5.68831,5.68831,0,0,0,1.44162-.111,17.75632,17.75632,0,0,0,1.89534-.33574c.57052-.16388,1.15338-.28461,1.72841-.43352.15458-.0401.29942-.11622.45022-.17187q1.85844-.68845,3.67634-1.47968a1.54779,1.54779,0,0,0,.20891-.11724,2.28,2.28,0,0,1,1.28312-.36292,1.45585,1.45585,0,0,0,.52635-.05884.77638.77638,0,0,1,.334-.03385c.39836.04243.79716.087,1.192.15386.31628.05346.62457.155.94084.20847a1.42141,1.42141,0,0,0,.8499-.09762q.90339-.40736,1.83446-.74864c.40679-.14891.83333-.24552,1.2532-.35724a1.401,1.401,0,0,1,.33516-.03429c.291-.00436.58214.00044.87328-.002a2.11629,2.11629,0,0,1,.93154.22228,3.74986,3.74986,0,0,1,.67672.37279,2.15842,2.15842,0,0,1,.73468,1.166,4.75682,4.75682,0,0,1,.19032,1.57514,7.57841,7.57841,0,0,0,.00073.87314,7.93608,7.93608,0,0,1-.23826,2.10294c-.09153.46054-.25221.89784-.37134,1.3485A4.69347,4.69347,0,0,0,54.5945,58.01c-.00131.17492.129.24742.29158.26325a.20515.20515,0,0,1-.19817.0956c-.05608.0539-.14674.032-.20049.09065l-.00508.00174c-.08354-.01452-.17492-.04707-.17492-.13743a5.57723,5.57723,0,0,1,.057-1.396c.12537-.49729.21661-1.00432.30146-1.51063a2.50757,2.50757,0,0,0,.01206-.62877,5.22756,5.22756,0,0,1,.13264-1.29388,4.2473,4.2473,0,0,0,.06537-.62107,1.89859,1.89859,0,0,1,.07555-.7174.43919.43919,0,0,0,.01118-.239,3.35782,3.35782,0,0,0-.66-1.53867,2.22581,2.22581,0,0,0-.94229-.65478,3.37857,3.37857,0,0,0-2.08681-.04126,14.18134,14.18134,0,0,0-2.05617.70113,5.53728,5.53728,0,0,1-1.33324.39516.59033.59033,0,0,1-.28664-.00465,2.15,2.15,0,0,0-.76636-.07409,2.46117,2.46117,0,0,1-.81458-.07947,1.0483,1.0483,0,0,0-.33706-.01743c-.43642-.00145-.87328.01075-1.30927-.0048a1.69015,1.69015,0,0,0-.751.15545c-.32368.14253-.63531.31265-.95914.455-.368.16184-.7418.31133-1.11663.45719-.63023.24553-1.257.50268-1.89693.7206a12.07974,12.07974,0,0,1-2.21961.65885,5.61674,5.61674,0,0,0-.60553.162c-.498.12742-1.01972.13294-1.51194.29551a1.01184,1.01184,0,0,1-.2894.01075.98411.98411,0,0,0-.28954.00653,7.02734,7.02734,0,0,1-1.34472.11448.45121.45121,0,0,1-.18916.00073,2.73973,2.73973,0,0,0-1.4175.05361,1.74235,1.74235,0,0,1-.33793.01831,2.50725,2.50725,0,0,0-.86238.08281.75308.75308,0,0,1-.24073.01452,2.56023,2.56023,0,0,0-.81474.078,1.39419,1.39419,0,0,1-.38528.01947,8.152,8.152,0,0,0-1.54216.08165,1.51031,1.51031,0,0,1-.81445-.04461,1.33014,1.33014,0,0,0-.38281-.03588,2.46261,2.46261,0,0,1-.8621-.08368.54026.54026,0,0,0-.19235-.01366A7.66337,7.66337,0,0,1,24.05716,53.64c-.23724-.04024-.47695-.05811-.71333-.11477a.77086.77086,0,0,0-.47739.01162,1.2723,1.2723,0,0,1-.7912.07991,2.51963,2.51963,0,0,1-.76389-.08383,15.81689,15.81689,0,0,1-2.27161-.41783,3.28279,3.28279,0,0,1-1.44336-.648.5149.5149,0,0,1-.08252-.11768q0-.04838.00087-.09647l.0969-.097.09719-.09662Z"/><path class="cls-81" d="M54.21968,58.56921A.2293.2293,0,0,1,54,58.65681c-.07554.08964-.215.00116-.2862.10257l.00232-.00073a.09716.09716,0,0,1-.14238-.01917,1.81072,1.81072,0,0,1-.03864-1.14191,3.941,3.941,0,0,0-.24857-2.73143.89161.89161,0,0,1,.02266-.70723,10.90263,10.90263,0,0,0,.49875-1.71954c.18393-1.11663.00058-1.25813-.85861-1.894a.9537.9537,0,0,0-.69851-.12785,11.51353,11.51353,0,0,0-2.98364.815,5.2746,5.2746,0,0,1-2.031.38136c-.95305-.01031-1.90652.00146-2.85986-.00494a1.93286,1.93286,0,0,0-.83667.19366,31.97119,31.97119,0,0,1-7.00443,2.50712c-.523.10387-1.04893.18494-1.57586.26339a.4478.4478,0,0,1-.41435-.33037.19286.19286,0,0,1,.04853-.14673,1.33023,1.33023,0,0,0,.097-.09705h.29114c.11143-.10431.27807.0125.38819-.097H35.467a6.72261,6.72261,0,0,0,1.26162-.19409,21.11137,21.11137,0,0,0,4.58971-1.44c.79861-.30523,1.58472-.63749,2.35617-1.0065a2.88252,2.88252,0,0,1,1.52254-.1588c.89813.0741,1.79684,0,2.6938.04344a4.15145,4.15145,0,0,0,1.7069-.48189,11.27077,11.27077,0,0,1,2.69874-.71261,2.2415,2.2415,0,0,1,2.08682,1.68933,6.20192,6.20192,0,0,1-.08979,1.58182,3.34232,3.34232,0,0,1-.14426.94781,1.0652,1.0652,0,0,0,.00334.615,1.0578,1.0578,0,0,1,.04358.3818c.001.22576-.00407.45153.00146.67715a2.58465,2.58465,0,0,1-.10214.90568,1.6874,1.6874,0,0,0-.09472.66423.27728.27728,0,0,1-.01177.14324c-.16867.30626.016.59667.03923.893.00682.08615.11143.10358.19148.11869Z"/><path class="cls-39" d="M54.29348,53.22258c0-.45241-.01758-.90554.0045-1.35693a1.49782,1.49782,0,0,0-.63691-1.23619c-.09661-.08427-.20848-.15109-.30277-.23739a.91485.91485,0,0,0-.32688-.19526,1.2607,1.2607,0,0,0-1.02539-.08688,6.42569,6.42569,0,0,0-1.87093.44151c-.412.13773-.81619.29928-1.22021.45967a1.89941,1.89941,0,0,1-.79454.17724,1.18755,1.18755,0,0,0-.33168.04882.54129.54129,0,0,1-.2371.01656,4.7731,4.7731,0,0,0-1.82051.0109.768.768,0,0,1-.38282-.0093,3.77476,3.77476,0,0,0-1.10559-.06727,1.19641,1.19641,0,0,0-.50964.14034c-.56384.238-1.11895.49686-1.68308.73411-.44485.18712-.89682.35841-1.3485.529-.63255.239-1.26452.48-1.90274.703a9.67072,9.67072,0,0,1-1.6347.40243,3.05753,3.05753,0,0,1-.43541.01089c.03806-.02833.07293-.07482.11477-.08252a16.44206,16.44206,0,0,0,3.31924-.99953c.47594-.19656.95536-.3863,1.44075-.55788a13.18691,13.18691,0,0,0,1.77315-.76563,2.5579,2.5579,0,0,1,1.34661-.3125,3.20283,3.20283,0,0,1,.95929.07991,1.05116,1.05116,0,0,0,.33676.01743c.54916.00131,1.09934-.01888,1.64749.00654a3.03787,3.03787,0,0,0,1.31377-.264,17.18635,17.18635,0,0,1,1.99529-.72015,3.81444,3.81444,0,0,1,.99067-.18712.44329.44329,0,0,0,.14427-.0093,1.43151,1.43151,0,0,1,.97919.09385,2.0344,2.0344,0,0,1,.96.70926,4.23037,4.23037,0,0,1,.25918.40737,1.39949,1.39949,0,0,1,.18668.68892,9.61283,9.61283,0,0,1-.12145,1.29445c-.00393.04068-.05274.07729-.08078.11565ZM33.74407,54.29911a4.8867,4.8867,0,0,1-.815-.08049,1.78156,1.78156,0,0,0-.86573.00262,2.913,2.913,0,0,1-.71841.06814c-.404.00276-.8082-.00044-1.21222.0013a1.67948,1.67948,0,0,0-.66931.07293.63908.63908,0,0,1-.23942.02238q-1.11532.00218-2.2305.00072a.29307.29307,0,0,1-.26049-.09661c.62805,0,1.2561.0016,1.88429-.00072a3.192,3.192,0,0,0,.86036-.07381,2.66727,2.66727,0,0,1,.6247-.02266,3.16146,3.16146,0,0,0,.81271-.07119,2.562,2.562,0,0,1,.62427-.02571,3.24756,3.24756,0,0,0,.71623-.06727,1.95872,1.95872,0,0,1,.71958-.02092,3.14442,3.14442,0,0,1,.84059.18117l.01918.05477A.09679.09679,0,0,1,33.74407,54.29911Zm2.98451-.59129a1.45155,1.45155,0,0,1-.72888.19337c-.17753.00305-.35521.00072-.53274.00072.02368-.02121.04561-.05811.07147-.06131C35.93491,53.79382,36.33167,53.7514,36.72858,53.70782Zm-10.28677.58228q-.45414-.00021-.90815-.00043a.2876.2876,0,0,1-.25627-.09661q.45391.00021.90815.00043A.288.288,0,0,1,26.44181,54.2901Zm8.9281-.38819c-.102.14209-.25424.08339-.38819.097C35.0837,53.85688,35.236,53.91571,35.36991,53.90191Z"/><path class="cls-20" d="M34.00078,54.08569a.19384.19384,0,0,1,.31381-.00363l-.04911.05492a.24843.24843,0,0,1-.21356.002Zm.59275.01046-.01366.13366c-.13337.04286-.25787.06683-.27981-.13017l.01453-.01758.27894.014Z"/><path class="cls-20" d="M33.81569,54.18913a.227.227,0,0,1,.18524-.10344l.01743.01991c-.00451.13482-.08034.14513-.18451.10547l-.01816-.02208Z"/><path class="cls-39" d="M34.69058,53.999l-.097.09705Z"/><path class="cls-58" d="M33.816,77.195q-.04758-.00126-.09516-.0032a.33721.33721,0,0,1-.06261-.06436.21247.21247,0,0,1-.03458-.08368l-.00044-.04547a.70241.70241,0,0,1,.61164-.39952.56682.56682,0,0,0,.5111-.38456,3.19045,3.19045,0,0,1,.51763-.81023.5521.5521,0,0,1,.68282-.203.2802.2802,0,0,0,.045.01743.399.399,0,0,0,.52258-.22606,3.25489,3.25489,0,0,0,.385-.88345,4.826,4.826,0,0,1,.38688-1.03513,6.38037,6.38037,0,0,0,.5297-1.24171c.011-.04606.04358-.08659.05927-.13221a.40914.40914,0,0,1,.50747-.32688.6468.6468,0,0,0,.09661.00581.25519.25519,0,0,1,.07264.22315,20.8395,20.8395,0,0,0-.20485,2.50319,8.35817,8.35817,0,0,0,.1001,1.88066c.01394.29725.26906.41812.506.53463a1.79508,1.79508,0,0,1,1.03237,1.57587c-.12175.16939-.21443.059-.26281-.04983a1.61592,1.61592,0,0,0-.17914-.36887l-.00014-.00015a1.34725,1.34725,0,0,0-2.36881-.33879c-.50369.62878-1.078,1.19624-1.56264,1.84187a1.06228,1.06228,0,0,0-.21284.57168A16.36488,16.36488,0,0,1,34.894,83.236a.57912.57912,0,0,1-.10605.26383h-.097c-.22606-.36785-.04882-.75924-.03269-1.12941.04881-1.11983.24553-2.228.34751-3.34524.03574-.39139.32049-.72917.37076-1.139.0754-.61483-.07-.79265-.685-.71071-.29448.03922-.591-.22868-.87546.01946Z"/><path class="cls-82" d="M40.353,71.0901l.34548-.03981a1.59321,1.59321,0,0,0-.14121,1.2532,1.00432,1.00432,0,0,1-.00872.5647,1.28738,1.28738,0,0,0-.03443.479q-.00218,2.48954-.0016,4.97922a2.79769,2.79769,0,0,1-.08426.95594,1.13217,1.13217,0,0,0-.01206.33633c-.26223-.02165-.19976-.26819-.28678-.41216a.87148.87148,0,0,1-.03051-.16185,3.87528,3.87528,0,0,0-.63851-2.37447,3.58749,3.58749,0,0,1-.43875-2.09858c.04286-.85179.01031-1.70037-.00567-2.55056a.8306.8306,0,0,1,.14194-.64141c.16156-.03022.34505.04881.48335-.09734.06175-.0754.15865-.06247.23768-.09429l.15066-.0183c.09705-.07.22344-.02078.32325-.07962Z"/><path class="cls-83" d="M39.158,71.37964c-.00116.43425.01482.86936-.00958,1.30216-.01511.26528.11738.50005.10271.75967a4.25966,4.25966,0,0,0-.10082.71144,6.25585,6.25585,0,0,1,.00435.6266,5.042,5.042,0,0,0,.24553,1.45949,3.46283,3.46283,0,0,0,.353.67992,3.9778,3.9778,0,0,1,.412,1.01624,1.757,1.757,0,0,1,.057.42639q-.00043.38573,0,.77188l-.05347.03821a.15888.15888,0,0,1-.10067-.07395c-.05812-.11651-.01671-.25148-.06829-.3693a.50485.50485,0,0,1-.04649-.112c-.01729-.11768-.04213-.2339-.06741-.35042a.11638.11638,0,0,1,.04489-.10286,2.8898,2.8898,0,0,0-.32978-.90365,1.22382,1.22382,0,0,0-.71159-.62383,1.55,1.55,0,0,1-.37962-.20369.442.442,0,0,1-.22112-.40693c.04809-.53608-.14092-1.05357-.10634-1.58734a2.08875,2.08875,0,0,1,.07119-.62136,1.03183,1.03183,0,0,0,.02673-.33546c.00334-.22605.00479-.4524.00029-.67846a2.60457,2.60457,0,0,1,.17535-1.23271.59722.59722,0,0,0,.023-.1909l.67919.00088Z"/><path class="cls-57" d="M33.7201,77.09558l.00072.09617c-.25714.0202-.386.22417-.52126.394-.418.525-.82985,1.05619-1.21993,1.60186a3.21892,3.21892,0,0,0-.4787.82956,1.871,1.871,0,0,1-.31889.53187c-.27051.35666-.55556.70243-.82912,1.05677-.27342.35405-.53768.71522-.81212,1.06855a.95434.95434,0,0,1-.18741.14687,1.10458,1.10458,0,0,1,.3048-.53754,2.86257,2.86257,0,0,0,.41972-.69778,1.75414,1.75414,0,0,1,.299-.4941,6.1596,6.1596,0,0,0,.52839-.7498c.34984-.56122.77042-1.06927,1.165-1.59708a6.53272,6.53272,0,0,0,.88636-1.44685,1.31443,1.31443,0,0,1,.16315-.231.33445.33445,0,0,1,.50339-.06886.78579.78579,0,0,0,.09691.09734Z"/><path class="cls-29" d="M39.879,71.188l-.23768.09429-.191-.02833C39.57754,71.13049,39.73284,71.1886,39.879,71.188Z"/><path class="cls-84" d="M16.73763,54.3873a.72455.72455,0,0,1,.28707.02063,3.99857,3.99857,0,0,0,1.01871.2862,11.40854,11.40854,0,0,0,1.44889.34664,11.38873,11.38873,0,0,0,2.44653.22083.50037.50037,0,0,1,.19308.00363c.41.12668.84379.02557,1.24607.11012.41318.08688.83421.03443,1.24361.15211a2.94536,2.94536,0,0,0,.72364.02455,4.37618,4.37618,0,0,1,.81546.06974c.39037.08208.7976.08179,1.19654.12581q.431.04707.85861.11986a8.61173,8.61173,0,0,0,1.52893.17,1.2317,1.2317,0,0,1,.52549.06174.31616.31616,0,0,0,.14121.02891c.61454-.03922,1.215.15037,1.83112.10649a7.8777,7.8777,0,0,1,.8727-.00087,2.36007,2.36007,0,0,0,.71435-.09995c.29594-.07947.32717-.13308.28069-.48742.15472-.03923.2185.0709.28736.17375a1.98805,1.98805,0,0,0,.31483.45764c.10518.11564.1537.23405.02092.36407a3.54238,3.54238,0,0,1-1.79539.50994c-1.84274.0568-3.67444-.1617-5.51283-.20586a2.592,2.592,0,0,1-.75139-.18233A23.87389,23.87389,0,0,0,22.358,55.9004c-1.11576-.155-2.25215-.157-3.35555-.413a17.30662,17.30662,0,0,1-2.11108-.52969.5005.5005,0,0,1-.21356-.34388.24929.24929,0,0,1,.05985-.22664Z"/><path class="cls-62" d="M16.73763,54.3873v.19395c.08412.32906-.16126.23332-.3003.21094a5.17108,5.17108,0,0,1-1.1637-.4184,6.622,6.622,0,0,0-.61032-.26848A24.78263,24.78263,0,0,1,12.46172,52.915c-.65129-.36611-.83638-.28185-.94578.4402a14.31951,14.31951,0,0,1-.27269,1.90289c-.0446.15313-.04649.324-.23158.39052h-.0969a11.76554,11.76554,0,0,0,.21109-1.27644,11.03721,11.03721,0,0,0,.08-1.14961q.14295-.33125.28577-.66248a.33762.33762,0,0,1,.34562-.21095c.25715.00058.512-.02659.70825.20935.138.16606.37439.17056.55729.2724.41551.23143.82142.48074,1.2532.68442.40344.19046.7941.4078,1.19028.61367.08848.04591.19686.09414.27168.0228.20659-.197.5002-.19758.725-.34678a.21165.21165,0,0,1,.095.19337A.72177.72177,0,0,0,16.73763,54.3873Z"/><path class="cls-85" d="M34.2989,55.85478a.34948.34948,0,0,0-.18858-.20848l.00058.00087a.4273.4273,0,0,1-.09327-.11332l-.38485-.67032.00175.00537a.30653.30653,0,0,1,0-.38136.28384.28384,0,0,0,.10954-.18843.09368.09368,0,0,0,.08978-.088.25736.25736,0,0,0,.18451-.10547l.2817-.00581a.59057.59057,0,0,0,.27981.12988l.28446.26266c.051.02412.10445.04257.15559.06683a.499.499,0,0,1,.09443.06567c.01468.01279.02848.02615.0433.03894.03036.02557.0584.05317.087.08077.015.01366.02877.02819.04373.0417.143.15022.30059.28547.4341.44485a.29545.29545,0,0,1,.061.18262l-.03748.05448a.63053.63053,0,0,1-.35347-.23274q-.15437-.15049-.31657-.2926a.09562.09562,0,0,0-.08659.00247c-.02324.01366-.05143.05332-.04649.07468a3.37249,3.37249,0,0,0,.10054.36727.39255.39255,0,0,1-.09443.4402c-.10025.10271-.19032.21559-.28475.324-.19759-.00566-.24669-.19409-.36539-.29666Z"/><path class="cls-62" d="M16.5431,53.805l-.09676-.09719.09676.09734Z"/><path class="cls-84" d="M34.01763,55.53385a.12453.12453,0,0,1,.09327.11332Z"/><path class="cls-58" d="M40.41682,80.49137a.80888.80888,0,0,1,.26529.599,8.05747,8.05747,0,0,1,.12668,1.18767,1.77316,1.77316,0,0,0,.07337.75865.76111.76111,0,0,1,.0032.33226c-.0109.092-.095.1184-.17695.13249l-.00131-.00131c-.13323-.97556-.14223-1.96536-.3324-2.93453l.04213-.07409Z"/><path class="cls-83" d="M40.22229,79.23019a.22111.22111,0,0,1,.0969.19439.22012.22012,0,0,0,.09705.19409l-.00014.48524a.08745.08745,0,0,1-.11434.015.65364.65364,0,0,1-.0462-.12232,1.52048,1.52048,0,0,0-.09443-.314.51005.51005,0,0,1-.032-.20049.28449.28449,0,0,1,.09312-.25191Z"/><path class="cls-58" d="M40.31919,80.10376l.09691.00015.00072.38746-.00116.00117c-.0324.04242-.06465.04445-.097-.00015h.00014a.38609.38609,0,0,1,.00044-.38863Z"/><path class="cls-86" d="M55.83273,46.40091a.8599.8599,0,0,0-.08107.03385,2.07432,2.07432,0,0,0-.63735-1.0774.22535.22535,0,0,1-.03879-.3064,1.48188,1.48188,0,0,1,.77072.60219,2.34806,2.34806,0,0,1-.01366.74776Z"/><path class="cls-87" d="M55.264,46.81787a1.05251,1.05251,0,0,1-.87589.0308,2.454,2.454,0,0,0-1.264-.4126,3.38379,3.38379,0,0,0-.95522-.10751c-.2573.01715-.49687-.12087-.76273-.09806a1.65779,1.65779,0,0,1-.717-.07061,1.27642,1.27642,0,0,0-.38427-.02135,5.09024,5.09024,0,0,1-.99357-.16592c-.24727-.05665-.32253-.19612-.23565-.42669a1.06532,1.06532,0,0,1,.49454-.68834c.05113-.02382.12857-.06334.06871-.13947-.0244-.03094-.08629-.03239-.13119-.04736a1.14016,1.14016,0,0,1,.54771-.15065,10.04915,10.04915,0,0,1,3.76946.07961,2.72244,2.72244,0,0,1,.27139.09356c-.09051.28984-.32907.215-.51662.18058a6.90143,6.90143,0,0,0-1.448-.04358,2.27291,2.27291,0,0,0-1.10341.3279c-.17143.1017-.33356.24451-.311.45618.02542.23972.26441.19758.426.2278.88811.16577,1.7935.199,2.68538.34359a2.84685,2.84685,0,0,1,1.43537.632Z"/><path class="cls-88" d="M55.264,46.81787a.59039.59039,0,0,1-.55788-.21589.52715.52715,0,0,0-.3802-.17884c-.238-.02717-.47158-.09153-.70751-.13656a2.19753,2.19753,0,0,0-.33226-.04853,1.60269,1.60269,0,0,1-.52359-.07264.8079.8079,0,0,0-.28708-.02557,8.07625,8.07625,0,0,1-1.33412-.16242c-.14266-.0215-.28823-.02368-.43206-.03836a.18946.18946,0,0,1-.19642-.22271.7857.7857,0,0,1,.48175-.72379,2.87568,2.87568,0,0,1,1.39746-.31265c.2246.01686.45182.002.67774.0032a1.57978,1.57978,0,0,1,.4771.05477.54219.54219,0,0,0,.54945-.0446.23251.23251,0,0,1,.22911.06712c-.023.06044-.06058-.01889-.02383.03385.02978.04286.06218.01017.08891-.01467a.34919.34919,0,0,1,.29071.09908.09366.09366,0,0,1-.018.13366.869.869,0,0,1-.61221.05564,2.29672,2.29672,0,0,0-1.09353.14078.38753.38753,0,0,0-.30219.39385c.02151.2156.22635.19526.37817.22345.44441.08252.898.1046,1.34138.19307A1.60544,1.60544,0,0,1,55.556,46.722a.28294.28294,0,0,1-.19613.1893l-.09588-.09341Z"/><path class="cls-89" d="M54.67978,44.97324c.00015-.03153.00073-.06306.00145-.09458a.62116.62116,0,0,1,.39429.1723.66155.66155,0,0,0,.28955.41158.6969.6969,0,0,1,.38413.78408,1.21685,1.21685,0,0,0,.00246.18814.19163.19163,0,0,1-.10358.17434,2.36456,2.36456,0,0,0-1.51427-.66873c-.19322-.01961-.4046-.09734-.43221-.324-.0247-.20412.16926-.29086.31337-.394A2.30048,2.30048,0,0,1,54.67978,44.97324Z"/><path class="cls-87" d="M49.441,44.68485c-.07671.11478-.19221.09647-.30465.08877l.1107-.09806.194.00944Zm4.94957.09473a.34767.34767,0,0,1-.05753.06537c-.03094.02151-.067.00858-.06712-.02615,0-.01961.03851-.03893.05957-.0584A.044.044,0,0,1,54.39052,44.77958Z"/><path class="cls-71" d="M48.17875,45.16864a.18313.18313,0,0,1-.18524.0985A.19881.19881,0,0,1,48.17875,45.16864Z"/><path class="cls-11" d="M33.63453,54.48754v.38136C33.49055,54.69108,33.49055,54.66551,33.63453,54.48754Z"/><path class="cls-90" d="M51.57236,60.68479l.10054-.08412c.12349-.10242.2894-.00624.41695-.0892a.04578.04578,0,0,0,.0693-.01366.33013.33013,0,0,1,.25714-.03515l.04431.05055-.25278.15429c.0539.11884.10184.23681.16039.34955a.6656.6656,0,0,1,.03051.56035,8.28345,8.28345,0,0,1-.82041,1.68962,4.635,4.635,0,0,1-.81894,1.01086.18129.18129,0,0,0-.034.03443,5.36159,5.36159,0,0,1-1.57165,1.32816c-.45865.32688-.92689.6404-1.39179.95856a1.66331,1.66331,0,0,1-.6497.30684,2.41581,2.41581,0,0,1,.65624-.6295c.46519-.31483.93561-.627,1.36913-.98269a4.19382,4.19382,0,0,0,1.0819-1.28428c.26979-.51284.55163-1.01944.80922-1.539a6.75513,6.75513,0,0,0,.54364-1.7855Z"/><path class="cls-62" d="M10.91477,55.74553l-.0969.09734.09675-.09734Z"/><path class="cls-91" d="M8.10039,64.28558a.2945.2945,0,0,1,.19409-.29144,1.01988,1.01988,0,0,0,1.247.93794,4.0232,4.0232,0,0,0,3.34625-2.15467c.28127-.4678.53478-.95536.80878-1.42956a1.93851,1.93851,0,0,0,.30291-1.00767,1.12314,1.12314,0,0,1,.03661-.21036,1.8344,1.8344,0,0,0,.069-.349.70291.70291,0,0,1,.0664-.21167,1.96527,1.96527,0,0,0,.14673-.64738c.01177-.13612-.05622-.337.18741-.36174a6.22942,6.22942,0,0,1-.21821,2.00778,3.61311,3.61311,0,0,1-.49817,1.25,1.64471,1.64471,0,0,0-.249.57154,5.70446,5.70446,0,0,1-.478,1.04966,1.55878,1.55878,0,0,1-.49294.59114,5.67306,5.67306,0,0,1-1.55843.95305c-.35187.11317-.66481.32615-1.02016.44339a9.79409,9.79409,0,0,1-1.26656.30044c-.616.11608-.92835-.22373-.803-.84016C7.96266,64.68277,8.03966,64.48592,8.10039,64.28558Z"/><path class="cls-92" d="M14.50539,58.56005c-.15836.14209-.08833.33052-.09371.49977a.67835.67835,0,0,1-.19729.56776c-.11811-.33851.08426-.64505.0969-.97048a4.41544,4.41544,0,0,1,.45894-1.30724.50831.50831,0,0,1,.21734-.246.61221.61221,0,0,1-.02992.23173,2.7054,2.7054,0,0,0-.37091,1.11241C14.58239,58.48785,14.53357,58.52286,14.50539,58.56005Z"/><path class="cls-93" d="M14.88791,56.61867l.00552.29143a1.98678,1.98678,0,0,0-.69662,1.00534,4.8918,4.8918,0,0,1-1.86337,2.57264.833.833,0,0,1-.98559.03864,5.4848,5.4848,0,0,0-.84059-.36974c-.45285-.20848-.524-.37177-.3542-.8358.061-.16664.11521-.3356.17724-.50136.07381-.16272.14325-.328.22475-.48786a.23938.23938,0,0,1,.102-.08019l.06392.01729a.36722.36722,0,0,0,.29856.43352c.34083.09007.68645.163,1.03149.23724a.39077.39077,0,0,0,.27618-.07017,7.00081,7.00081,0,0,0,.62122-.37221,1.31619,1.31619,0,0,0,.45909-.55265,1.22951,1.22951,0,0,1,.58141-.68573.34841.34841,0,0,0,.11129-.09225A2.10938,2.10938,0,0,1,14.88791,56.61867Z"/><path class="cls-94" d="M13.7293,55.55114l1.06708.777c.0247.02151.03313.043.02485.06465s-.01642.0324-.0247.0324c-.02339.02063-.0555.06393-.069.05869-.2217-.08513-.39008.0603-.58345.11579a8.81665,8.81665,0,0,0-1.44714.632.22038.22038,0,0,1-.26543-.02062,1.27684,1.27684,0,0,0-.11695-.08427.80016.80016,0,0,1-.40577-.98123A10.76445,10.76445,0,0,0,12.193,54.5981c.00668-.04155.05317-.07657.08121-.11463a.05887.05887,0,0,1,.09647.00044v.00014c.03022.03429.06581.063.0969.09632l.19323.09879a2.293,2.293,0,0,1,.873.67977l.09792.09589a.92491.92491,0,0,0,.09763.09632Z"/><path class="cls-93" d="M11.20577,56.71615l.09733.00029a3.10032,3.10032,0,0,1-.48494,1.26176.27044.27044,0,0,1-.0924-.19235.591.591,0,0,1,.03109-.215C10.92988,57.29858,10.87932,56.90807,11.20577,56.71615Z"/><path class="cls-59" d="M10.81772,57.78353c0,.06494.00029.12973.00044.19467l-.00044.09662-.04649.04009a.14672.14672,0,0,1-.09908-.06508.31319.31319,0,0,1-.02208-.18262.246.246,0,0,1,.061-.10634A.08383.08383,0,0,1,10.81772,57.78353Z"/><path class="cls-93" d="M10.72111,58.07525l.09661-.00043a.20038.20038,0,0,1-.0969.19424l-.00029-.00029A.13245.13245,0,0,1,10.72111,58.07525Z"/><path class="cls-95" d="M12.37048,54.48391H12.3224l-.04824-.00029-.00072-.09647.09719.09676Z"/><path class="cls-93" d="M14.79667,56.425l-.00029-.09691.09008.09618c-.03007.00058-.06.00073-.08993.00087Z"/><path class="cls-96" d="M11.01167,55.64863a3.46036,3.46036,0,0,0,.18785-.79324,3.81059,3.81059,0,0,0,.111-.95507c-.00029-.28693.10635-.566.109-.85905a.63137.63137,0,0,1,.14194-.30219.35829.35829,0,0,1,.46-.16474,1.92637,1.92637,0,0,1,.40141.16126c.74225.45051,1.49756.8788,2.27656,1.26365.33342.21443.69778.37076,1.045.559.13584.07351.35943.08935.30756.34083a.31192.31192,0,0,1-.21065.05434,27.16765,27.16765,0,0,1-2.44654-1.34531q-.56359-.32612-1.15149-.60727c-.35144-.1678-.65885-.03458-.632.29608a14.66,14.66,0,0,1-.19236,2.061,28.64953,28.64953,0,0,1-1.2776,3.73517,1.418,1.418,0,0,1-.258.43366.12831.12831,0,0,1-.13336.00015.13446.13446,0,0,1,0-.191,7.40206,7.40206,0,0,1,.48814-1.257c.28577-.75212.55541-1.50874.76636-2.28541A.67306.67306,0,0,0,11.01167,55.64863Z"/><path class="cls-44" d="M9.36172,60.20957c.00174-.187-.0311-.38775.19424-.48523l.04009.0398a.26462.26462,0,0,1,.01991.10969.52835.52835,0,0,1-.02688.10867c-.01714.05346-.03559.10635-.05637.15865a.25194.25194,0,0,1-.067.08949l-.05594.009-.04794-.03008Zm-.19381.38819a.20041.20041,0,0,1,.0969-.19409l.0401.04358a.2165.2165,0,0,1,.00494.11623l-.03312.0491-.05739.01439-.05143-.02906Z"/><path class="cls-44" d="M9.071,60.79215v-.19409q.0486-.00007.09719,0a.163.163,0,0,1,.05593.10053.19264.19264,0,0,1-.04358.1078l-.05768.01453L9.071,60.792Zm.485-1.06781a.20078.20078,0,0,1,.097-.1941l.04388.04344a.22536.22536,0,0,1,.00145.12145l-.03574.05056a.08107.08107,0,0,1-.1062-.02092L9.556,59.72448Z"/><path class="cls-44" d="M9.74991,59.33586l.00029.19467-.04838.0369-.04853-.03675L9.653,59.53024a.20176.20176,0,0,1,.09691-.19439Zm-.4851,1.06781a.201.201,0,0,1,.097-.19409l.00029.00029a.14936.14936,0,0,1,.0446.16533l-.03574.05012a.081.081,0,0,1-.10576-.02121Z"/><path class="cls-59" d="M10.43011,58.75444a1.756,1.756,0,0,1-.19961.69125c-.127.30363-.075.43337.22591.56369a4.14779,4.14779,0,0,0,.40213.16547,2.27136,2.27136,0,0,1,.69474.33313.38044.38044,0,0,0,.45255.02543,3.15262,3.15262,0,0,0,1.32089-1.16763c.174-.32731.35783-.6494.53435-.97527a2.929,2.929,0,0,0,.31482-.69676,1.35858,1.35858,0,0,1,.49526-.70142.37277.37277,0,0,1,.22228-.08223,2.51927,2.51927,0,0,0-.67425,1.41155c-.01612.07874-.04256.15618-.05084.2355a1.86521,1.86521,0,0,1-.28185.6574q-.29067.55533-.54,1.13087a8.07014,8.07014,0,0,1-.69008,1.32932,1.39474,1.39474,0,0,1-.14819.19017,8.01782,8.01782,0,0,1-1.11155.92471c-.24784.17812-.39138.15313-.57589-.06639a.8959.8959,0,0,1-.16765-.23608,2.00505,2.00505,0,0,0-.59711-.75285,1.15257,1.15257,0,0,1-.40272-.94229.28548.28548,0,0,1-.092-.18422,7.6479,7.6479,0,0,1,.574-1.50889.80157.80157,0,0,1,.02687-.12218,1.53643,1.53643,0,0,1,.08368-.16.30174.30174,0,0,1,.078-.08543l.05739-.00784.04881.03094Z"/><path class="cls-97" d="M14.31144,58.6571a1.80664,1.80664,0,0,1-.07845.69227.87866.87866,0,0,0-.0186.27821v.194c-.09327.07685-.009.21269-.097.29129v.194a8.48429,8.48429,0,0,1-2.57728,3.869,4.00325,4.00325,0,0,1-.72408.38746A1.686,1.686,0,0,1,8.60553,63.3661a.40652.40652,0,0,1,.03327-.23536,3.97637,3.97637,0,0,1,.14092-.49483c.13308-.35492.26151-.71158.401-1.06389a1.17213,1.17213,0,0,1,.27821-.489.85767.85767,0,0,1-.10664.41521.9197.9197,0,0,0,.21357,1.1021,6.34322,6.34322,0,0,1,.77652.85629.52846.52846,0,0,0,.80326.12639,4.962,4.962,0,0,0,.46461-.34272c.26092-.21312.506-.44688.77624-.64708a1.10941,1.10941,0,0,0,.31627-.35739,23.16172,23.16172,0,0,0,1.14743-2.22934,5.44121,5.44121,0,0,0,.39909-1.27847c.00392-.02615.04068-.04736.062-.0709Z"/><path class="cls-97" d="M9.45876,61.08315l.00044-.291.02862-.02833h.04024l.02833.02847c-.00363.10664.01685.22141-.09763.29086Z"/><path class="cls-97" d="M9.65315,60.59791v.1941q-.04853-.0001-.097,0C9.49436,60.68014,9.48927,60.59675,9.65315,60.59791Z"/><path class="cls-44" d="M8.77986,61.66544a.4571.4571,0,0,0-.21908.24436,2.82185,2.82185,0,0,1-.93357,1.0774,8.29021,8.29021,0,0,0-.80384.684c-.04853.04213-.08514.10474-.14.13148a1.25654,1.25654,0,0,0-.653.89958c-.00683.02673-.04213.04619-.06422.069,0-.161.00509-.32208-.00174-.48262a.61093.61093,0,0,1,.17782-.52606,1.02255,1.02255,0,0,0,.20485-.48146.59522.59522,0,0,1,.41362-.43468A2.00355,2.00355,0,0,0,7.82639,62.068a1.54365,1.54365,0,0,1,.51545-.42.9703.9703,0,0,0,.52461-.53608A.64133.64133,0,0,1,9.071,60.792v.00029a.32139.32139,0,0,1,.09007.19729C9.08,61.24063,9.04108,61.5158,8.77986,61.66544Z"/><path class="cls-41" d="M28.77125,83.40353c0,.03167.00058.06335.00145.09487l-.09792.00088.09647-.09574Z"/><path class="cls-44" d="M31.39212,77.581l.09617-.09719-.09617.09734Zm.19351-.29129.09647-.09733Zm.09719-.19409.09647-.0972-.09647.09734Z"/><path class="cls-90" d="M52.48749,60.41776a.03534.03534,0,0,0,.05913-.01322c.07715-.06959.16853-.0446.25715-.03893l.045.05056c-.1075.11956-.25714.071-.38819.097l-.01641-.01888C52.4195,60.44667,52.43591,60.42227,52.48749,60.41776Zm.38557-.09777a.03864.03864,0,0,0,.06219-.01482.27436.27436,0,0,1,.28344-.01482l-.08921.11405-.28068.01162-.01627-.01845q-.03923-.07.04068-.07744Z"/><path class="cls-98" d="M53.61545,58.74078l.10068.01787-.30669.17085.0032-.00029c-.07714.10809-.19221.05042-.29056.0664-.27792.05375-.39705-.077-.37424-.34214.02179-.25642.08542-.50848.114-.76374a2.31891,2.31891,0,0,0-.95638-2.53893.66421.66421,0,0,1-.29434-.79207A5.1524,5.1524,0,0,1,52.81,52.41918c.40678.316.44964.81313.62151,1.24651a1.08956,1.08956,0,0,1-.05957.3786,1.40284,1.40284,0,0,0,.08,1.05968,3.95016,3.95016,0,0,1,.16809,2.369A1.86092,1.86092,0,0,0,53.61545,58.74078Z"/><path class="cls-98" d="M53.71381,58.75938c.06465-.12.17928-.10024.2862-.10257A.34041.34041,0,0,1,53.71381,58.75938Z"/><path class="cls-8" d="M54.48743,58.45952a.20157.20157,0,0,1,.20048-.09065A.207.207,0,0,1,54.48743,58.45952Z"/><path class="cls-99" d="M34.78791,83.49985a2.08721,2.08721,0,0,1,.11434-.80529,2.962,2.962,0,0,0,.17535-.98922c-.00784-.27545.12567-.52853.10374-.80979a2.26662,2.26662,0,0,1,.06857-.81227,2.13684,2.13684,0,0,0,.02223-.57676.35564.35564,0,0,1,.18276-.36422.87216.87216,0,0,0,.37235-.42945,1.01006,1.01006,0,0,1,.19294-.27342,10.01452,10.01452,0,0,0,1.19406-1.38409.5613.5613,0,0,1,.49076-.25686c.27095.00465.52781-.12044.80922-.09443a1.11672,1.11672,0,0,1,1.02888.97338.44387.44387,0,0,1-.16388-.23245.82327.82327,0,0,0-.40592-.39371,1.06653,1.06653,0,0,0-1.27629.18567,5.2845,5.2845,0,0,0-1.1576,1.58356,15.95914,15.95914,0,0,0-.719,1.73364c-.06741.18015-.15981.353-.21022.53768-.21792.8005-.477,1.59025-.62805,2.408h-.19424Zm5.5307-3.0076.09705.00029a3.67163,3.67163,0,0,0,.145.85062,2.62832,2.62832,0,0,1,.04954.477,4.37055,4.37055,0,0,0,.06857.71623,6.12577,6.12577,0,0,1,.02833.9638h-.09733a2.3195,2.3195,0,0,0-.07032-.76491.99738.99738,0,0,1-.024-.383,5.73677,5.73677,0,0,0-.165-1.42811,3.32406,3.32406,0,0,1-.03181-.43177Zm-.09661-.97062.00044.1938c.06683.07206.04329.15923.04024.24291l-.04111.04911a.51813.51813,0,0,1-.16911-.38645,10.30627,10.30627,0,0,0-.50384-1.89563.25872.25872,0,0,1-.00552-.04779.30825.30825,0,0,1,.19381.24276.30739.30739,0,0,0,.1938.24262l.00029.097c.104.11143-.0122.27807.09705.38819.11361.14543-.02208.34083.0972.48524v-.00015c.10649.111-.0141.27851.09675.38834Z"/><path class="cls-99" d="M40.31919,80.10376l-.00043.38849c-.15836-.13627-.075-.32107-.09734-.48481l.001-.001c.0324-.04257.06465-.0446.09646.00058Z"/><path class="cls-100" d="M33.816,77.195c.04678-.267.12393-.33226.32122-.27022a.29515.29515,0,0,1,.08818.03879.59322.59322,0,0,0,.63808.02862,1.04236,1.04236,0,0,1,.13627-.04867.29165.29165,0,0,1,.37657.12247.87857.87857,0,0,1,.17114.68384,2.491,2.491,0,0,1-.36146,1.08394.62076.62076,0,0,0-.10693.46112,5.68878,5.68878,0,0,1-.14368,1.19029,1.80723,1.80723,0,0,0-.04678.33153c.0263.40577-.14673.79106-.11259,1.1961a2.39077,2.39077,0,0,0-.08485.90684c-.0029.19352-.00043.38688-.00029.5804-.08281-.01308-.17027-.03923-.17811-.13221a.963.963,0,0,1,.01424-.38209,1.79175,1.79175,0,0,0,.06683-.57255,3.17908,3.17908,0,0,1,.08353-1.00651,1.13651,1.13651,0,0,0,.01308-.337,1.237,1.237,0,0,1,.06363-.52388.116.116,0,0,0,.01482-.04577c.00116-.43468.07889-.86267.10954-1.2943a2.57988,2.57988,0,0,1,.11652-.85454.32166.32166,0,0,0-.06175-.36044c-.23027-.248-.4739-.48364-.71609-.72016a.09186.09186,0,0,0-.12871.01264c-.02136.0215-.04722.05724-.0433.08223a2.09028,2.09028,0,0,0,.0863.421,1.48032,1.48032,0,0,1,.0738.57066l-.09807.0003-.09574-.29144c-.08731-.08048-.00682-.215-.09486-.29535a.84338.84338,0,0,0-.00189-.093q.00158-.04845-.00087-.09691c-.059-.05157-.03444-.14441-.09589-.19467h.00029l-.00218-.191Z"/><path class="cls-95" d="M13.53375,55.35893c-.03109-.00493-.071.00088-.092-.01641a3.64618,3.64618,0,0,1-.78088-.66335c.08906-.07613.02615-.15153-.01351-.21241-.07017-.1075-.16141-.20092-.23347-.30712a.19845.19845,0,0,1,.00349-.22824.16836.16836,0,0,1,.20412-.08847c.19119.07235.4049.06407.57095.23448.152.15618.40417.17841.55585.36756.14092.17579.39531.19032.56514.35594a3.04749,3.04749,0,0,0,.57095.359c.02761.01671.05783.02949.08441.04736.17361.117.19875.23754.09734.46083a.28822.28822,0,0,1-.40824.14238,2.52774,2.52774,0,0,1-.79381-.45546C13.76169,55.25375,13.64213,55.21816,13.53375,55.35893Z"/><path class="cls-65" d="M10.04076,59.1422a1.93814,1.93814,0,0,1,.25133-.77362,22.39017,22.39017,0,0,0,.83072-2.41675c.049-.20093.20674-.3696.18015-.5942.16329-.07-.12378-.41318.22489-.37076a.77145.77145,0,0,1-.0308.46781c-.0921.07728-.00973.2124-.09661.29158l-.00072.09646c-.05957.05114-.04286.12785-.06422.19177a.60482.60482,0,0,0-.07584.13453,1.21757,1.21757,0,0,1-.02.15386.71037.71037,0,0,0-.07628.13409c-.00842.051-.00653.10315-.018.15371-.01845.04823-.03531.0969-.05114.146a1.1531,1.1531,0,0,0-.04576.14746q-.02838.07182-.05187.14543a1.23748,1.23748,0,0,0-.04605.148q-.02881.07278-.05245.14746c-.01961.0494-.0324.10083-.05.15066a.46623.46623,0,0,0-.07583.14034.19954.19954,0,0,1-.05129.14789v-.00014a.195.195,0,0,0-.05157.14528c-.01046.05128-.03371.09879-.04489.14993a.68373.68373,0,0,1-.03516.15007.75956.75956,0,0,1-.04606.09022c-.01176.03109-.02469.06175-.03748.09255a.879.879,0,0,1-.04286.088.73519.73519,0,0,0-.04939.13613.24532.24532,0,0,1-.08092.11826v-.00015c-.05928.05143-.04184.14092-.09676.19453l.00014-.00029C10.15088,58.993,10.2273,59.2,10.04076,59.1422Z"/><path class="cls-101" d="M11.69159,53.32006c.052-.03486.10561-.06755.15545-.10518.06566-.0494.13453-.08906.2153-.04475a5.51159,5.51159,0,0,1,.98733.53783.6124.6124,0,0,1-.36669-.08818,3.05044,3.05044,0,0,0-.59245-.17841c-.10548-.03995-.17492.034-.22766.12494a.61747.61747,0,0,0-.07554.32209.24.24,0,0,1-.09589.20776.75224.75224,0,0,1,0-.7761Zm2.23151.97a.52344.52344,0,0,1,.31875.06567,6.25633,6.25633,0,0,1,.94287.61367h-.19424c-.03138-.00451-.07119.00145-.09283-.01555C14.58892,54.709,14.21337,54.56192,13.9231,54.2901Zm-2.91143,2.62014.00073-.19394c.0353-.02935.06392-.06524.09632-.09734l.00072-.19366.04838-.03719.04824.037-.00029.291c-.06349.17288-.13076.34446-.189.51923a.64933.64933,0,0,1-.1986.35449l-.04039-.04838.03951-.0491.00088-.19381c.0353-.0292.06392-.06523.09646-.09734l.00058-.1938c.03531-.02935.06393-.06523.09647-.09734Zm.48538-1.45571v-.48524a.10746.10746,0,0,1-.0305-.11768,1.85827,1.85827,0,0,0,.035-.46606.35349.35349,0,0,1,.0661-.19424.09257.09257,0,0,1,.12334.00175,4.2088,4.2088,0,0,1-.11244,1.14626C11.57158,55.38116,11.52509,55.41632,11.49705,55.45453Z"/><path class="cls-101" d="M13.34067,53.9022a.74471.74471,0,0,1,.58258.3879A.98087.98087,0,0,1,13.34067,53.9022Z"/><path class="cls-65" d="M11.691,54.19306h-.0969c-.02135-.2971-.183-.60975.0969-.87343l.00059.00043-.00029.77624Z"/><path class="cls-101" d="M13.04967,53.708a.29181.29181,0,0,1,.291.19424A.29319.29319,0,0,1,13.04967,53.708Zm-1.747,2.32886a.2013.2013,0,0,1,.097-.1941c-.00291.10693.01685.22126-.09647.29143l-.04024-.04852Zm.09777-.29057c.00291-.10692-.01743-.22155.09647-.29157C11.494,55.56146,11.51391,55.67594,11.40044,55.74625Zm-.19467.58171.00058-.19381a.06285.06285,0,0,1,.09646-.00043l.00044.00043c-.00349.10664.01627.22112-.09719.291l-.00029-.00029c-.0247-.0215-.03284-.043-.0247-.06465S11.19749,56.328,11.20577,56.328Z"/><path class="cls-95" d="M12.46753,54.58037l-.09676-.09632Zm1.26177.97077-.09763-.09632Z"/><path class="cls-29" d="M40.353,71.0901a.38407.38407,0,0,1-.32339.07961c.08571-.11578.20746-.086.32325-.07961Z"/><path class="cls-59" d="M40.31919,83.50043l-.09733-.00072a3.69515,3.69515,0,0,0-.0863-.95813c-.12843-.479-.13685-.98166-.273-1.465-.07177-.25541-.06552-.53885-.12073-.80718-.05172-.25105-.05463-.51488-.12828-.75808a2.38708,2.38708,0,0,1-.0709-.669.75036.75036,0,0,1,.17027.48771c.13453.773.33473,1.53184.47943,2.30168a7.89225,7.89225,0,0,1,.12683,1.86875Zm-.87328-4.94928c.11376.06988.09371.18436.09676.29114C39.42877,78.77241,39.44882,78.65779,39.44591,78.55115Z"/><path class="cls-34" d="M53.21869,60.29035l-.28344.01482c.07583-.11492.19031-.09589.30189-.08673Q53.22683,60.25411,53.21869,60.29035Z"/><path class="cls-41" d="M28.86786,83.30634l-.09676.09734Z"/><path class="cls-92" d="M8.68282,63.12115a1.08769,1.08769,0,0,0,.40286.84219c.11.09443.20485.20616.30989.3064a1.251,1.251,0,0,0,1.30186.22083,7.2395,7.2395,0,0,0,1.24941-.73019,1.16176,1.16176,0,0,0,.30117-.3093c.32514-.49817.64853-.99822.95159-1.51.31831-.53739.6128-1.08888.9176-1.63426a2.28444,2.28444,0,0,1-.44747,1.34966,10.90529,10.90529,0,0,0-.56006,1.00476,3.75775,3.75775,0,0,1-.86282,1.145,1.002,1.002,0,0,0-.26035.27908.54736.54736,0,0,1-.28678.24466c-.36015.17913-.711.37991-1.08133.53463a2.83749,2.83749,0,0,1-1.51034.1787,1.75105,1.75105,0,0,1-.77042-.38238.34981.34981,0,0,1-.12247-.39008c.02324-.093.05259-.18451.07932-.27662v-.09661c.06262-.04969.03777-.1431.097-.19439v-.09675c.08833-.1524.114-.32979.19409-.48524a.05906.05906,0,0,1,.09734,0Z"/><path class="cls-55" d="M8.77986,61.66544a2.85939,2.85939,0,0,0,.29144-.67861c.06349-.04925.03312-.14543.09734-.19424H9.16835c.0616-.05027.034-.145.09733-.1941H9.26554c.06145-.05027.03385-.145.0969-.19438.06175-.05.03414-.14456.09661-.19439.09139-.07729.01148-.21182.09763-.29085l-.00014.00014c.0616-.05012.03414-.1447.0969-.19424.0616-.05012.03487-.14426.09676-.19424h.097c.1665.27734-.10053.46723-.152.69967a4.13976,4.13976,0,0,1-.23608.56181.78718.78718,0,0,0-.22722.36451c-.2294.51211-.46011,1.02306-.73788,1.5115-.10286.18116-.19788.36669-.29638.55018l-.19438.097a.758.758,0,0,1,.16417-.39706,9.28767,9.28767,0,0,0,.5849-1.1111A.51728.51728,0,0,0,8.77986,61.66544Z"/><path class="cls-91" d="M8.68282,63.12115h-.0972a.55753.55753,0,0,1,.1941-.48524C8.75749,62.79964,8.84248,62.98487,8.68282,63.12115Z"/><path class="cls-91" d="M8.58562,63.121a.55556.55556,0,0,1-.194.48524A.557.557,0,0,1,8.58562,63.121Zm-.19409.58215a.20019.20019,0,0,1-.0969.19438A.20056.20056,0,0,1,8.39153,63.70315Z"/><path class="cls-101" d="M15.28191,55.06648a.19991.19991,0,0,1,.194.09705A.19991.19991,0,0,1,15.28191,55.06648Zm-.09733-.097.09733.0969Z"/><path class="cls-45" d="M33.81787,77.38585a.2457.2457,0,1,1,0,.00015Z"/><path class="cls-51" d="M33.91652,77.77055c.10954.07337.09385.18712.09487.29536-.11507-.07163-.09444-.18683-.09487-.29536Z"/><path class="cls-102" d="M15.86391,54.87239l.19453-.00015a.15881.15881,0,0,1,.13279-.03733.87748.87748,0,0,1,.20818.07932,1.24417,1.24417,0,0,1,.13366.07889c.524.16489,1.08147.10954,1.60972.26325a28.8431,28.8431,0,0,0,4.80516.73773,10.18328,10.18328,0,0,1,1.65083.37512,16.48444,16.48444,0,0,0,3.85474.62558c1.57775.07293,3.1526.18015,4.7334.169a5.69728,5.69728,0,0,0,1.37145-.276.29042.29042,0,0,0,.22925-.36553,1.61531,1.61531,0,0,0-.3385-.38558.433.433,0,0,1-.15022-.28184l.36523.29666.00146-.002a.13044.13044,0,0,1,.10663.10663l-.00959-.00944a.12653.12653,0,0,1,.10722.10576l-.00944-.00929a.13446.13446,0,0,1,.10867.104l-.00945-.00988a.163.163,0,0,1,.11013.10969l.505.53245a.48745.48745,0,0,1-.36669.2894q-.76574.21411-1.53823.40286a1.45444,1.45444,0,0,1-.33822.01163q-.67882.00152-1.35765,0a2.02445,2.02445,0,0,1-.67-.07047,1.54228,1.54228,0,0,0-.43279-.02586,4.347,4.347,0,0,1-1.20148-.08586,1.44288,1.44288,0,0,0-.386-.01162,2.49259,2.49259,0,0,1-.815-.07525,1.28843,1.28843,0,0,0-.3847-.02136,3.0162,3.0162,0,0,1-1.00694-.08543.31821.31821,0,0,0-.14412-.01,10.79539,10.79539,0,0,1-1.4422-.10635,2.81675,2.81675,0,0,1-.472-.09022,11.39929,11.39929,0,0,1-1.96565-.46954,1.46555,1.46555,0,0,1-.22722-.08093,2.28345,2.28345,0,0,0-.96975-.239,17.55756,17.55756,0,0,1-2.09074-.31962c-.45386-.10446-.9051-.22083-1.35925-.32354-.203-.046-.41187-.05332-.61817-.0953a4.77269,4.77269,0,0,1-1.14757-.31526c-.3571-.00436-.67309-.07453-.77638-.48524Z"/><path class="cls-1" d="M15.86391,54.87239a.42508.42508,0,0,0,.23477.21371c.18218.087.36132.18073.54161.27167a.53054.53054,0,0,0,.07627.11841.93781.93781,0,0,1,.31192.85192c-.15792-.1136-.05622-.3494-.22257-.46344-.14528-.09981-.27531-.22257-.42219-.31962a17.785,17.785,0,0,0-1.58022-1.01551c-.48465-.251-.94752-.54466-1.41649-.8252a9.69383,9.69383,0,0,0-1.24229-.63546c-.24509-.102-.34-.03951-.45371.25076a.28486.28486,0,0,0-.09618.255q.00021.30924-.00073.61847l-.00029.1938c-.11913.14455.01744.34-.09632.48553l-.00058.0969a.22127.22127,0,0,0-.09676.19424.22075.22075,0,0,1-.097.1941,5.3958,5.3958,0,0,1,.12683-1.04879c.02731-.25395.06319-.50717.06755-.764a1.395,1.395,0,0,1,.0122-.28911c.09022-.39153.33677-.56848.76128-.34562.58228.30567,1.16137.62108,1.72506.96554.49221.30073,1.02322.53986,1.51107.85425A1.9551,1.9551,0,0,0,15.86391,54.87239Zm20.48781,2.77995a.24365.24365,0,0,1,.17927.1325C36.44237,57.77961,36.36842,57.75476,36.35172,57.65234Zm.18232.13453a.11112.11112,0,0,1,.1126.08528Z"/><path class="cls-103" d="M51.95155,59.33077l-.04547-.0077-.04025.02237c-.09966.06393-.22416.02078-.326.07555a2.576,2.576,0,0,0-.5698.07671c-.17259.02949-.34969.034-.52475.04939-.35783-.04256-.17114-.2846-.13133-.42683.2416-.863.24233-.85382-.45066-1.41664a16.99662,16.99662,0,0,0-3.18456-2.10788,4.55339,4.55339,0,0,0-2.30648-.47507c-1.206.07991-2.41515.10548-3.62.28868a11.51412,11.51412,0,0,0-3.07894.98064,1.88982,1.88982,0,0,1-.403.1649.52718.52718,0,0,1-.34823-.129,2.00479,2.00479,0,0,1-.57575-.48742c1.09658-.27516,2.12953-.74965,3.21477-1.05024,1.36768-.37874,2.74044-.76461,4.13644-1.00926a19.24439,19.24439,0,0,1,2.06358-.20136,4.19213,4.19213,0,0,1,3.49647,1.64559,11.66721,11.66721,0,0,0,1.66928,1.317c.24218.18755.503.3523.73933.548a.9439.9439,0,0,1,.33647,1.2776c-.0892.24116-.22489.478-.03181.73076a.099.099,0,0,1-.01933.13424Z"/><path class="cls-104" d="M51.99484,59.25508a.80754.80754,0,0,1-.14368-.02078c-.14281-.04678-.198-.11942-.16562-.243.04067-.15516.09588-.307.15022-.45836.03821-.10606.08455-.20892.12871-.31265a.65244.65244,0,0,0-.16678-.74732,4.784,4.784,0,0,0-.71812-.56761c-.55715-.40955-1.11344-.82055-1.67713-1.2208a.8259.8259,0,0,1-.25293-.28635,2.64885,2.64885,0,0,0-.95987-.85919c-.09254-.06392-.19569-.11317-.28591-.18a2.974,2.974,0,0,0-1.85974-.55846,7.76888,7.76888,0,0,0-1.52778.17463.66633.66633,0,0,1-.33487.01307,1.26611,1.26611,0,0,0-.7527.058c-.532.12421-1.05953.2615-1.584.418-.55149.1646-1.12172.26877-1.6873.38238a8.65211,8.65211,0,0,0-1.42753.44921c-.6019.23434-1.224.40562-1.82414.64a.79736.79736,0,0,1-.55934.00291.33285.33285,0,0,1-.205-.1864l.02978-.07395a3.21623,3.21623,0,0,1,1.017-.43192c1.937-.67541,3.879-1.33513,5.8448-1.9241a7.11487,7.11487,0,0,1,2.14246-.33836A28.21678,28.21678,0,0,0,48.262,52.7372c1.07246-.10606,1.45324.0799,1.849,1.10268a3.616,3.616,0,0,0,1.58153,2.06168,1.87813,1.87813,0,0,1,.91033,2.24227,9.37067,9.37067,0,0,0-.18625.9513.30775.30775,0,0,1-.06828.14034l.00188-.00029a.36764.36764,0,0,1-.35536.0199Z"/><path class="cls-105" d="M49.75127,59.63717a3.96177,3.96177,0,0,1-1.24012.09806,5.51717,5.51717,0,0,1-.91353.03792c-.34955.02935-.41783-.14949-.35681-.44645.05317-.25845.3263-.4877.15662-.77144a1.91926,1.91926,0,0,0-.81881-.73483,5.01851,5.01851,0,0,0-2.79651-.59158c-1.5962.2-3.20112.33414-4.78889.60161-.07773-.00625-.165.02222-.22039-.06247l.007.00464c-.061-.04358-.16068-.02135-.19322-.11331l.01031.00871c-.05521-.00232-.08368-.04649-.121-.077l-.00261-.00145-.60481-.45618.01787-.07627A5.8341,5.8341,0,0,1,39.24223,55.977a.6296.6296,0,0,1,.46868-.07075,17.10126,17.10126,0,0,0,4.20181-.05709,2.45443,2.45443,0,0,1,.67512.00406c.6988.127,1.36187.39386,2.07069.49439a2.44692,2.44692,0,0,1,.993.58708c.51255.36873.9481.83,1.44874,1.21354a.64433.64433,0,0,1,.2015.8281c-.17709.39008-.08019.55962.33778.574.04678.0016.08093.04925.11187.08688ZM36.92209,56.42588a.63208.63208,0,0,1,.29172.096.1.1,0,0,1,.02543.09371l-.04606.024a.46338.46338,0,0,1-.27109-.21357Z"/><path class="cls-105" d="M37.86845,57.13325a.21632.21632,0,0,1-.17332-.12189l.04823-.0401c.09182-.00944.17056-.00247.15386.12349l-.02877.0385Zm-.28562-.20339a.21171.21171,0,0,1-.17114-.12117l.04794-.03486a.14573.14573,0,0,1,.15545.057.08036.08036,0,0,1-.03225.09908Z"/><path class="cls-85" d="M34.96893,56.44709a.12736.12736,0,0,1-.10852-.104.11783.11783,0,0,1,.10867.104Z"/><path class="cls-85" d="M35.06976,56.5469a.13654.13654,0,0,1-.11012-.10969A.13166.13166,0,0,1,35.06976,56.5469Zm-.19991-.19453a.12685.12685,0,0,1-.10722-.10591.1155.1155,0,0,1,.10722.10605Z"/><path class="cls-105" d="M37.30331,56.72443a.11862.11862,0,0,1-.11013-.085l.02819-.02586a.09526.09526,0,0,1,.1046.05012Z"/><path class="cls-85" d="M34.77222,56.25605a.12829.12829,0,0,1-.10663-.10664A.1149.1149,0,0,1,34.77222,56.25605Z"/><path class="cls-105" d="M37.41169,56.80869a.10892.10892,0,0,1-.10838-.08426l.01249-.01307c.077-.01628.10809.01656.0985.09269l-.00262.00464Zm.28344.20267a.1148.1148,0,0,1-.1123-.0815l.02324-.02426c.07773-.01671.10867.01641.09909.093l-.01.01278Z"/><path class="cls-104" d="M36.14135,55.75221a.11142.11142,0,0,1-.10213-.09371l.05579-.02615a.09807.09807,0,0,1,.05869.09589Zm-.10213-.09371a.11156.11156,0,0,1-.10025-.09268l.06073-.02979a.097.097,0,0,1,.05433.1078l-.01482.01453Zm-.10025-.09268q-.04692-.0045-.09341-.0125a.08748.08748,0,0,1,.00377-.11564c.07889-.00581.12393.0215.10693.10954l-.01743.0186Z"/><path class="cls-85" d="M35.83248,55.46412c.00509.02964.00959.05942.01308.0892l-.09952-.08513.00974-.01032C35.78411,55.42518,35.81,55.42533,35.83248,55.46412Z"/><path class="cls-106" d="M36.34038,69.33191a.35841.35841,0,0,0-.25482-.199,2.71323,2.71323,0,0,1-1.343-.94359c-.0584-.07657-.13409-.13991-.19482-.215a3.07243,3.07243,0,0,1-.73221-1.80221,2.05491,2.05491,0,0,0-.048-.33269,1.01831,1.01831,0,0,1,.43933-1.17518,1.74676,1.74676,0,0,1,1.42623-.24291,8.54493,8.54493,0,0,0,1.28806.15647.76918.76918,0,0,1,.38049.04765,4.65376,4.65376,0,0,1,1.79422,1.10123.67879.67879,0,0,0,.15574.11187c.18988.33472.37163.67439.57212,1.00273a.63606.63606,0,0,1-.00291.71855,2.04627,2.04627,0,0,1-1.01319.77435c-.13046.06073-.26949.10272-.40185.15981a.814.814,0,0,0-.42756.37076.86357.86357,0,0,1-.60756.43294c-.12451.02949-.25119.05331-.37221.09341a.55674.55674,0,0,1-.37584-.011,1.61169,1.61169,0,0,0-.28228-.04794Z"/><path class="cls-2" d="M29.02869,62.92676a.1903.1903,0,0,1-.14935.17187.34947.34947,0,0,1-.3356-.12087.09193.09193,0,0,1-.01656-.08427.37735.37735,0,0,1,.37192-.131A.17425.17425,0,0,1,29.02869,62.92676Zm.62587-.0677a.36151.36151,0,0,1,.09007.02615c.06465.03908.15487.057.15255.1601a.20339.20339,0,0,1-.20543.16155.20813.20813,0,0,1-.20775-.16228A.17318.17318,0,0,1,29.65456,62.85906Z"/><path class="cls-107" d="M35.83248,55.46412a.27054.27054,0,0,1-.0767-.00625l-.12248-.187a.641.641,0,0,1,.41972-.21646,47.79322,47.79322,0,0,0,7.21959-2.53414,1.85731,1.85731,0,0,1,.74413-.2015c1.29358.00319,2.579-.13846,3.86883-.20122a3.167,3.167,0,0,0,1.04167-.20049,12.19243,12.19243,0,0,1,3.21986-.661c.30814-.03487.64243-.03444.81473.28969a.78509.78509,0,0,1-.12392.90059.81061.81061,0,0,0-.24494.40824,1.9413,1.9413,0,0,1-.45473.728.96285.96285,0,0,0-.27953.54815c-.03428.20455-.10561.40272-.15937.60408a.33549.33549,0,0,0,.14543.41768c.16243.10271.31642.21937.46911.33633a1.49065,1.49065,0,0,1,.55135.76839,3.393,3.393,0,0,1,.09065,1.80308,2.65815,2.65815,0,0,1-.09153.56906.20888.20888,0,0,0,.041.26616.63963.63963,0,0,0,.2281.05521q.04053.07452-.044.08034l-.03341-.00843-.02441.02426c-.084.08238-.21342.01119-.299.08833l.00436-.002a.34667.34667,0,0,1-.35.02673.19873.19873,0,0,1-.10737-.24218c.07264-.31236.14063-.62587.21836-.93706a2.03106,2.03106,0,0,0-.26034-1.48332.56031.56031,0,0,0-.17085-.16417c-.36291-.26586-.7283-.528-1.093-.79164a1.42721,1.42721,0,0,1-.57735-.75023,5.07423,5.07423,0,0,0-.30422-.65754,1.3065,1.3065,0,0,1-.16329-.401,1.18058,1.18058,0,0,0-.35623-.6157.76487.76487,0,0,0-.64084-.28287,1.91947,1.91947,0,0,0-.71739.06858.29651.29651,0,0,1-.14194.02368c-.56659-.054-1.12.10605-1.68322.10271a.58343.58343,0,0,0-.1925.01017,3.03854,3.03854,0,0,1-1.19959.07889,4.95938,4.95938,0,0,0-1.66114.24988c-.72437.21022-1.44424.4386-2.16337.66423-1.04094.32673-2.08667.64751-3.09405,1.07725-.33822.14427-.70491.221-1.05736.3327-.29027.09225-.5785.19046-.86761.28591l-.09952-.08441-.09778-.09661-.12392-.0831Z"/><path class="cls-108" d="M37.70515,56.99843l-.09893-.09283a.23025.23025,0,0,0-.19192-.1017l-.0985-.09269-.09443-.09763a.87864.87864,0,0,1-.00755-.09152.54246.54246,0,0,1,.27647-.18567c.55744-.24989,1.1066-.52548,1.681-.7283a3.64558,3.64558,0,0,1,1.21993-.25656,3.83162,3.83162,0,0,0,.616-.09138c.34722-.05666.69356-.11754,1.04122-.17085a2.36827,2.36827,0,0,1,.33676-.0218c.32253-.0029.645.00044.96772-.00145a3.09358,3.09358,0,0,0,.62122-.05971,2.41421,2.41421,0,0,1,.76854-.0279A11.39723,11.39723,0,0,1,46.018,55.208a2.66781,2.66781,0,0,1,1.04921.46955,1.577,1.577,0,0,0,.55367.28475,2.85353,2.85353,0,0,1,.81706.503c.32892.22954.64737.47449.96641.71812.38209.292.76287.58549,1.13813.88622.18785.15065.21255.33763.09443.61381a3.55335,3.55335,0,0,0-.26.62253.32941.32941,0,0,0-.02426.13845c.011.03981.06015.06886.09269.10272a1.52787,1.52787,0,0,1-.69386.09007h-.67105c-.03967-.34475-.041-.34548.06145-.57139a.92845.92845,0,0,0,.10693-.36829.48911.48911,0,0,0-.21415-.44805,9.99382,9.99382,0,0,1-.96176-.806,6.63716,6.63716,0,0,0-1.28733-.93271,1.3226,1.3226,0,0,0-.6988-.13351.80411.80411,0,0,1-.36611-.06363,5.559,5.559,0,0,0-1.25-.35551.99361.99361,0,0,0-.479.01032,2.2501,2.2501,0,0,1-.67032.06828,2.018,2.018,0,0,0-.66975.07337,1.199,1.199,0,0,1-.38456.02324q-.7516.00284-1.50307.00044a3.04838,3.04838,0,0,1-1.05329-.09836.52114.52114,0,0,0-.53216.11841c-.41943.32354-.85324.62848-1.28138.941a.24133.24133,0,0,0-.19177-.09632Z"/><path class="cls-109" d="M38.94266,57.79181a4.71982,4.71982,0,0,1,1.02016-.26238.605.605,0,0,1,.14092-.03007,6.00206,6.00206,0,0,0,1.29431-.12363,8.80054,8.80054,0,0,0,1.2407-.14732,6.45074,6.45074,0,0,1,.95348-.122,1.05178,1.05178,0,0,0,.33182-.05565.35906.35906,0,0,1,.2833-.02179c.18567.07729.39226.03094.56848.08746a8.63381,8.63381,0,0,1,1.25523.31889.4.4,0,0,0,.08906.03777,2.50089,2.50089,0,0,1,1.23721.79847c.418.4248.36393.29652.127.81038a3.23073,3.23073,0,0,0-.1649.40039.17924.17924,0,0,0,.1739.23318c.33909.01133.67832.0138,1.0177.01975a1.771,1.771,0,0,1-.711.06378,3.856,3.856,0,0,1-1.003-.04445c-.07322.03472-.13991-.00407-.20877-.0186a.31787.31787,0,0,1-.25235-.01148c-.198-.26412-.04315-.49192.08571-.71187.2557-.43716.24654-.4742-.21472-.69052a5.46005,5.46005,0,0,0-2.88862-.37251c-1.13392.10272-2.25563.33212-3.4.32543a2.19239,2.19239,0,0,1-.5634-.22881,1.39915,1.39915,0,0,0-.385-.16955c-.02992-.01133-.04373-.0276-.04184-.049C38.93,57.80387,38.935,57.79181,38.94266,57.79181Z"/><path class="cls-110" d="M39.91822,58.27516c.13918-.06363.2493-.20717.44122-.11506a.48281.48281,0,0,0,.28664.00334,2.28609,2.28609,0,0,1,.55584-.14092,1.45518,1.45518,0,0,0,.51546-.03051,1.35133,1.35133,0,0,1,.33734-.01424,1.02384,1.02384,0,0,0,.38209-.04213.80281.80281,0,0,1,.56282-.06276.166.166,0,0,0,.09588-.00233,4.08551,4.08551,0,0,1,1.39281-.08048,3.65611,3.65611,0,0,1,1.50046.301,2.25285,2.25285,0,0,1,.68544.34635c.03458.033.0799.05491.11375.08847a.18051.18051,0,0,1-.009.2897.99725.99725,0,0,0-.4431.90887,3.07429,3.07429,0,0,1-1.06869-.10227c-.34-.09836-.33516-.33677-.16925-.555.265-.34853.0815-.45909-.22374-.57894a3.14185,3.14185,0,0,0-1.62162-.14674c-.68718.09734-1.38118.13729-2.06473.26253a1.12854,1.12854,0,0,1-.52737-.03022,1.85131,1.85131,0,0,1-.74239-.2987Z"/><path class="cls-111" d="M40.66046,58.57371c.17288-.03559.34446-.07845.51865-.10533.31657-.04881.63982-.07235.95188-.12291.3632-.05869.73106-.0831,1.09426-.14295a3.18951,3.18951,0,0,1,2.14812.36277c.014.008.0279.016.04156.02469.1245.07991.1383.17158.02542.2634a1.0383,1.0383,0,0,0-.26354.27836c-.12727.21995-.12218.26034.09037.49047a2.82923,2.82923,0,0,1-.80777-.09022,19.49171,19.49171,0,0,1-3.363-.77246,1.14014,1.14014,0,0,1-.43584-.18567Z"/><path class="cls-34" d="M51.99484,59.25508l.35536-.0199c-.1046.15022-.25918.09109-.39865.09559a.4948.4948,0,0,0,.0433-.07569Zm.095,1.25639a.56837.56837,0,0,1-.417.0892C51.78651,60.45248,51.94414,60.51016,52.08986,60.51147Z"/><path class="cls-34" d="M52.387,59.15992l.35013-.02673c-.09763.156-.25206.09545-.38877.10228A.425.425,0,0,0,52.387,59.15992ZM52.87306,60.32a.54777.54777,0,0,1-.04053.07758l-.28591.007c.08455-.122.20746-.09559.32645-.08441Zm-1.33324-.899a.3989.3989,0,0,1,.326-.07555C51.77764,59.45876,51.65662,59.43116,51.53982,59.421Zm1.54957-.38993a.48775.48775,0,0,1,.044-.0802l.27923-.02179C53.34043,59.076,53.21069,59.03977,53.08939,59.03106Zm-.6019,1.3867a.59342.59342,0,0,1-.0433.07657l-.28519.00348c.087-.11913.20964-.09167.32848-.08Z"/><path class="cls-34" d="M52.73258,59.13522a.34155.34155,0,0,1,.299-.08833C52.957,59.16137,52.84328,59.14278,52.73258,59.13522Z"/><path class="cls-64" d="M38.94266,57.79181c.00842.02847.01743.05666.027.08484-.087.00276-.16417-.01249-.19686-.10852l.17.02368Z"/><path class="cls-64" d="M38.58672,57.65917a.2214.2214,0,0,1,.19308.11346c-.09109.00756-.17-.00566-.19323-.11332Z"/><path class="cls-110" d="M46.58821,59.736l.20877.0186A.18424.18424,0,0,1,46.58821,59.736Z"/><path class="cls-64" d="M38.47587,57.591a.11224.11224,0,0,1,.121.07714.12651.12651,0,0,1-.121-.077Z"/><path class="cls-3" d="M35.857,50.69948l.11129-.15661.272-.23913a.39255.39255,0,0,1-.38326.39589Zm-1.16631.28955.48132-.00814a.21352.21352,0,0,1-.19759.105l-.284.00175a.06246.06246,0,0,1-.0215-.06582C34.67619,50.99992,34.68346,50.989,34.69072,50.989Z"/><path class="cls-13" d="M33.92059,50.68394c.13511.014.22649.147.37075.1354.00538.02339.01119.04664.01758.06974C34.13676,50.90143,33.98059,50.88356,33.92059,50.68394Z"/><path class="cls-3" d="M35.1671,50.98336a.738.738,0,0,1,.38761-.11273C35.46652,51.049,35.3054,50.97683,35.1671,50.98336Zm13.57142-3.377.03544.07482c-.14324.0077-.29143.04358-.41347-.07177l.04678-.0571a.24556.24556,0,0,1,.33124.05405Z"/><path class="cls-13" d="M34.305,50.88762a.398.398,0,0,1,.3016.09226c-.11215.00726-.22983.03254-.30175-.09226Z"/><path class="cls-3" d="M48.36049,47.60936c-.102-.01743-.21385-.00654-.28983-.09966l.04939-.05332c.12393-.03037.24829-.06131.25817.13162Z"/><path class="cls-3" d="M48.07066,47.5097a.30056.30056,0,0,1-.19584-.09415L47.919,47.367c.09807-.01932.17521-.008.17245.119Zm-.19584-.09415a.30738.30738,0,0,1-.19409-.097l.04692-.04882c.09836-.01278.18494-.01075.162.12887Z"/><path class="cls-3" d="M47.68073,47.31851a.26167.26167,0,0,1-.18873-.10722l.04475-.044a.1749.1749,0,0,1,.17623.02688.08152.08152,0,0,1-.01787.10809l-.01438.01627ZM35.5425,50.87629a.24709.24709,0,0,1,.023-.07642l.18247-.02557C35.715,50.87992,35.63461,50.89009,35.5425,50.87629Zm11.67071-3.97111a.61655.61655,0,0,0,.08586.01715l.034.03065-.00073.04576-.03733.02644-.08194-.12Z"/><path class="cls-3" d="M47.39336,47.12092l-.09836-.09574.00916-.01118.052-.04054.05927.02906.01526.06407Z"/><path class="cls-3" d="M47.49215,47.21129l-.09879-.09037.00973-.01162.06465-.0308.05506.04562-.01162.07061-.01917.01656Z"/><path class="cls-13" d="M34.69072,50.989l-.00029.09865-.08949-.112Z"/><path class="cls-3" d="M35.73747,50.78273a.115.115,0,0,1,.11739-.08165.13458.13458,0,0,1-.11754.08165Z"/><path class="cls-13" d="M33.81845,50.60011a.122.122,0,0,1,.11114.09182Z"/><path class="cls-13" d="M33.72024,50.506a.1189.1189,0,0,1,.09938.09516Z"/><path class="cls-112" d="M54.67978,44.97324c.0324.02731.03661.07554.00348.0799a2.13555,2.13555,0,0,0-.84422.43221.12939.12939,0,0,0,.01278.2339.62727.62727,0,0,0,.36088.12407,2.39686,2.39686,0,0,1,.61556.1094,1.02017,1.02017,0,0,1,.81982.65638.12532.12532,0,0,1-.09211.11288,2.69387,2.69387,0,0,1-.547-.35027,1.016,1.016,0,0,0-.52882-.21138,4.47006,4.47006,0,0,0-.661-.10373c-.35753.00145-.69415-.12015-1.04951-.11928a.28613.28613,0,0,1-.28954-.42291.60449.60449,0,0,1,.452-.4556,2.43611,2.43611,0,0,1,1.21949-.10083,1.93362,1.93362,0,0,0,.52824.01526Z"/><path class="cls-113" d="M47.69511,47.30224a.28047.28047,0,0,1-.0109-.06771c-.02877-.09239-.13584-.06494-.18741-.12261l.001.00072a.44134.44134,0,0,0-.10911-.092l.0064.00581a.31959.31959,0,0,0-.09792-.10678l.00189.00262c.06654-.35957.13874-.442.46141-.38878a22.81194,22.81194,0,0,1,2.31766.4158c.341.093.44311.23492.42364.54422a.176.176,0,0,1-.17753.18916,3.27956,3.27956,0,0,1-.916-.02674,1.93891,1.93891,0,0,0-.66975-.04968l-.3603-.01831a.35261.35261,0,0,0-.28678-.102.21068.21068,0,0,0-.20194-.08746.21692.21692,0,0,0-.19439-.09632Z"/><path class="cls-114" d="M53.61545,58.74078c-.08629-.00247-.17056-.02891-.18058-.12174a1.63048,1.63048,0,0,1,.01453-.67076,5.60137,5.60137,0,0,0,.15893-1.90754,2.56751,2.56751,0,0,0-.26543-1.01668,1.50563,1.50563,0,0,1-.07525-.9866,2.01922,2.01922,0,0,0,.05535-.42669c-.02077-.48742.14005-.95537.15487-1.439a1.05194,1.05194,0,0,0-1.188-1.23241,8.33558,8.33558,0,0,0-3.196.7155,2.67884,2.67884,0,0,1-1.124.2435c-1.11431-.02034-2.22861.05724-3.34248.00159a2.70735,2.70735,0,0,0-1.30172.30059,29.64263,29.64263,0,0,1-7.49431,2.572,1.71776,1.71776,0,0,1-.67338.02354l.00523.00247a.133.133,0,0,0-.10634-.10809l.01089.01017a.15426.15426,0,0,0-.11085-.11041.10941.10941,0,0,1-.09254-.09792,9.20174,9.20174,0,0,1,1.18244-.21546c.36451-.03443.71943-.16082,1.08162-.23172.48742-.09545.96466-.23477,1.4422-.36335a13.51266,13.51266,0,0,0,1.3992-.52955c.839-.32949,1.67989-.65478,2.51424-.9959.35768-.14615.70606-.31773,1.04907-.49613a1.60631,1.60631,0,0,1,.78655-.1893c1.0177.01249,2.03568-.001,3.05352.00712a4.55791,4.55791,0,0,0,1.82705-.36422,14.08131,14.08131,0,0,1,2.58164-.78336,4.07026,4.07026,0,0,1,.71348-.08571,1.01269,1.01269,0,0,1,.70243.283q.22921.21382.47216.41217a.91956.91956,0,0,1,.34127.71216,5.08113,5.08113,0,0,1-.28548,1.65562c-.102.33953-.20107.68137-.33182,1.01029a.56561.56561,0,0,0,.05317.59347,1.69162,1.69162,0,0,1,.25715.76679c.027.14093.04939.28417.07162.426a2.53823,2.53823,0,0,1-.01743,1.00781,4.06263,4.06263,0,0,0-.14543,1.24114c.00843.12871.002.2583.00247.3876Z"/><path class="cls-9" d="M33.7201,77.09558l-.09676-.09734Z"/><path class="cls-58" d="M40.222,79.52163c-.14165-.10214-.08339-.25425-.09676-.38834h.09691l.00014.0969-.00029.29144Z"/><path class="cls-58" d="M40.12524,79.13344c-.15981-.13628-.07467-.32151-.09733-.48524C40.18772,78.78447,40.10272,78.96971,40.12524,79.13344Zm-.09719-.48524c-.14209-.102-.08354-.2541-.09705-.38819C40.07294,78.362,40.01439,78.51425,40.02805,78.6482Z"/><path class="cls-96" d="M34.78762,56.5222c.118.06058.259.14238.24742.27168-.01526.17-.19613.18247-.33647.21356a2.66,2.66,0,0,0-.51473.12247,2.84273,2.84273,0,0,1-1.23445.16969c-.58156-.00436-1.16327.00145-1.74483-.00218a4.022,4.022,0,0,1-.91193-.07177,3.98778,3.98778,0,0,0-.8204-.02441,2.48825,2.48825,0,0,1-.81444-.07612,1.20617,1.20617,0,0,0-.38485-.02005,7.19068,7.19068,0,0,1-1.53882-.09836c-.35942-.079-.72495-.13017-1.08757-.19584a1.36386,1.36386,0,0,1-.18582-.05157,27.87787,27.87787,0,0,0-2.80043-.70563.30694.30694,0,0,0-.09589-.01221,9.10113,9.10113,0,0,1-1.48956-.1075,8.8112,8.8112,0,0,1-1.04632-.14586q-.592-.107-1.17823-.24277c-.20339-.04649-.39763-.138-.60218-.17477-.39372-.071-.79178-.11913-1.1884-.1726a.39127.39127,0,0,0-.14063.02209.49625.49625,0,0,1-.5698-.25061c.13584-.1617.344.03777.48524-.097a1.69848,1.69848,0,0,1,.33516.03123c.8775.25948,1.77664.4264,2.66707.63023a.75777.75777,0,0,0,.14412.0154,6.79841,6.79841,0,0,1,.9099.07962,8.64943,8.64943,0,0,0,1.05038.104,23.48951,23.48951,0,0,1,2.89763.43235c.3786.06393.75255.15531,1.132.21357a5.3762,5.3762,0,0,1,.86529.29579,2.54818,2.54818,0,0,0,.85047.1431,4.85911,4.85911,0,0,1,1.15252.07337,4.58314,4.58314,0,0,0,.91672.01976,2.26078,2.26078,0,0,1,.76563.0738,1.17917,1.17917,0,0,0,.384.02194c.66175.00159,1.32365-.0109,1.985.00465a3.47676,3.47676,0,0,0,1.40516-.29144C34.45929,56.65324,34.6236,56.588,34.78762,56.5222Z"/><path class="cls-11" d="M16.83468,54.87239c-.00058.03138.00029.06276-.002.09385-.0061.0831-.02368.17608-.13133.10141a.53942.53942,0,0,0-.352-.09821c-.04968-.06247-.14295-.03749-.19409-.09691l-.09676-.00029c-.34286-.20339-.68544-.40765-1.029-.60974-.12291-.07235-.27168-.11056-.33008-.26325a1.51812,1.51812,0,0,1,.48916.19555c.34141.14034.68107.28475,1.026.41594a2.02979,2.02979,0,0,0,.41957.1001c.079.01191.09574-.06422.10359-.12959C16.85153,54.65113,16.831,54.76575,16.83468,54.87239Z"/><path class="cls-115" d="M35.15794,54.79612a.83172.83172,0,0,1,.31425-.11768,15.45218,15.45218,0,0,0,2.58527-.5634c.34155-.093.68544-.18378,1.017-.30611.57371-.21182,1.13871-.44717,1.70705-.67352.06-.024.11535-.06131.17651-.07976a16.76552,16.76552,0,0,0,2.70586-1.16806.96287.96287,0,0,1,.51066-.12145,4.54783,4.54783,0,0,1,1.01189.05084.21773.21773,0,0,0,.09457.01235,17.9961,17.9961,0,0,1,2.36808-.061,4.99824,4.99824,0,0,0,.96031-.06117c.07453-.01714.16373.0077.21908-.06043a.97911.97911,0,0,1,.46751-.238,11.35066,11.35066,0,0,1,1.76633-.48394,5.39015,5.39015,0,0,1,1.48709-.1306.63969.63969,0,0,1,.35972.11535c.16852.12422.35259.22693.5233.34809a.40452.40452,0,0,1,.18087.32689,5.51706,5.51706,0,0,1-.25511,1.99354c-.00451.01322-.0231.02179-.03516.03269l-.48524-1.16443a1.71841,1.71841,0,0,1,.07308-.47361c.09152-.37323-.0863-.58345-.47841-.59188a2.39721,2.39721,0,0,0-.62181.05768c-.30973.07453-.63444.07046-.95231.12392a8.85237,8.85237,0,0,0-1.90609.496,2.36275,2.36275,0,0,1-.93662.19584,3.80565,3.80565,0,0,0-.95915.07526,3.65487,3.65487,0,0,1-.77187.02,2.21321,2.21321,0,0,0-.71769.07119,1.38608,1.38608,0,0,1-.43221.0247c-.30654.00276-.614.01235-.91992-.00232a1.80585,1.80585,0,0,0-.88592.19714,20.84917,20.84917,0,0,1-2.41239.98355c-.85251.28664-1.68991.61846-2.54242.90568-.624.21023-1.25959.38747-1.89417.56515-.27691.07743-.56413.11855-.84655.17622a1.596,1.596,0,0,1-.47536-.47477Zm-.20107-.206a.1366.1366,0,0,1,.11085.11041A.1393.1393,0,0,1,34.95687,54.59011Z"/><path class="cls-115" d="M35.05683,54.6905a.124.124,0,0,1,.10634.10809A.1289.1289,0,0,1,35.05683,54.6905Z"/><path class="cls-58" d="M40.3189,80.007l-.09646-.00058v-.291C40.3359,79.78575,40.316,79.90023,40.3189,80.007Z"/><path class="cls-92" d="M14.11734,60.11282c.0032-.10678-.01714-.22141.0969-.29129C14.2109,59.92831,14.23139,60.04294,14.11734,60.11282Z"/><path class="cls-59" d="M10.62421,58.26935a.56165.56165,0,0,1-.1941.48524l-.00087-.00073c-.05463-.04867-.04475-.1139-.04547-.17637a.17825.17825,0,0,1,.04649-.11419v.00029c.05811-.052.04067-.14151.09661-.19468v.00029l.04867-.037.04852.03719Z"/><path class="cls-59" d="M10.72111,58.07525l-.00058.19352-.09647.00058-.00087-.00087a.142.142,0,0,1-.01787-.18117.08512.08512,0,0,1,.11477-.01307Z"/><path class="cls-101" d="M10.721,57.784v-.19424a.06314.06314,0,0,1,.09618-.00072l.001.001-.00044.19351Zm-.00087.29028-.09632.00072-.04-.04852.03951-.04882a.20014.20014,0,0,1,.09763-.1938Z"/><path class="cls-46" d="M9.45905,60.79215c-.00653-.31729.20194-.56311.28664-.85076a1.08437,1.08437,0,0,0,.1017-.411.53447.53447,0,0,1,.19322-.38819l.19555-.19366a2.78923,2.78923,0,0,1-.28577.84989c-.08208.27168-.19671.53347-.2971.79963a.20039.20039,0,0,0-.097.19409h-.0972Z"/><path class="cls-96" d="M9.55668,59.91887c-.00363.10663.01613.22112-.09763.29085C9.46254,60.10308,9.44191,59.98831,9.55668,59.91887Z"/><path class="cls-96" d="M9.65344,59.72477a.20114.20114,0,0,1-.0969.19424l-.00015-.19424Zm-.19439.48495a.20074.20074,0,0,1-.09675.19439v-.19425h.09675Zm-.09661.19453a.20119.20119,0,0,1-.0969.1941l-.00029-.19424h.09734Zm-.09676.19424a.20155.20155,0,0,1-.09733.194L9.1682,60.5982l.09734.00029Zm-.09719.1941a.202.202,0,0,1-.09719.19424l-.00015-.19468.09734.00044Zm.58171-1.26206a.20052.20052,0,0,1-.09676.19424v-.19409Z"/><path class="cls-101" d="M10.42953,58.56005l-.00029.19381-.09661.00043.00014-.19409a.06336.06336,0,0,1,.09676,0Z"/><path class="cls-46" d="M10.23587,58.94854a.19947.19947,0,0,1,.09661-.19439.20109.20109,0,0,1-.09661.19453Z"/><path class="cls-101" d="M10.52687,58.26906a.201.201,0,0,1-.09661.19438A.19821.19821,0,0,1,10.52687,58.26906Zm.0969-.1941-.00058.19352-.09632.00072V58.075a.063.063,0,0,1,.09632-.00058Z"/><path class="cls-46" d="M10.62319,58.07438l-.09632.00058.09647-.09734C10.62348,58.00988,10.62334,58.04213,10.62319,58.07438Zm-.19366.48568h-.09676c.03255-.03211.06494-.06451.09734-.09676C10.43011,58.49555,10.43011,58.5278,10.42953,58.56006Zm.77624-2.2321v.0969l-.09633.00044Zm-.097.29114-.09632.0972.09632-.09734Zm-.097.29114-.09647.0972.09647-.09734Zm-.19453.67876-.09618.00072.09647-.09733Zm.48553-1.45528-.09632.00043.09632-.09733Z"/><path class="cls-65" d="M11.49734,54.87239c.0218-.16388-.062-.34868.09647-.48553-.02179.16388.06276.349-.09632.48553Z"/><path class="cls-96" d="M16.1552,54.87253a.20027.20027,0,0,1,.19409.09691A.20027.20027,0,0,1,16.1552,54.87253Z"/><path class="cls-116" d="M36.40721,68.84464a1.54443,1.54443,0,0,1-1.16515-.4665c-.16678-.15066-.32964-.30393-.50427-.44717a1.4095,1.4095,0,0,1-.42451-.79513,4.78281,4.78281,0,0,1-.114-1.147,1.31954,1.31954,0,0,1,.5852-1.054.31925.31925,0,0,1,.32194-.04286,4.96331,4.96331,0,0,1,.66713.27836,3.751,3.751,0,0,1,1.50293,1.25043,1.55614,1.55614,0,0,0,.19671.21269,1.88817,1.88817,0,0,1,.38529.9221.34431.34431,0,0,1-.04548.182A2.40624,2.40624,0,0,1,36.79381,68.8c-.12945.08251-.28374.03632-.38674.0446Z"/><path class="cls-72" d="M47.4968,47.11192c.08964-.00058.165.02063.18741.12261l-.17288-.0398Q47.50326,47.15331,47.4968,47.11192Zm-.19962-.19221a.13229.13229,0,0,1,.09792.10693.49191.49191,0,0,1-.09094-.01264.50716.50716,0,0,1-.007-.09443Z"/><path class="cls-72" d="M47.38871,47.02068a.13341.13341,0,0,1,.10911.092.72207.72207,0,0,1-.09473-.00348.49325.49325,0,0,1-.01453-.08862Z"/></svg>
\ No newline at end of file
diff --git a/content/zh/case-studies/naic/naic_featured_logo.png b/content/zh-cn/case-studies/naic/naic_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/naic/naic_featured_logo.png
rename to content/zh-cn/case-studies/naic/naic_featured_logo.png
diff --git a/content/zh/case-studies/nav/nav_featured_logo.png b/content/zh-cn/case-studies/nav/nav_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/nav/nav_featured_logo.png
rename to content/zh-cn/case-studies/nav/nav_featured_logo.png
diff --git a/content/zh/case-studies/nerdalize/nerdalize_featured_logo.png b/content/zh-cn/case-studies/nerdalize/nerdalize_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/nerdalize/nerdalize_featured_logo.png
rename to content/zh-cn/case-studies/nerdalize/nerdalize_featured_logo.png
diff --git a/content/zh-cn/case-studies/netease/index.html b/content/zh-cn/case-studies/netease/index.html
new file mode 100644
index 0000000000..bceeacbd10
--- /dev/null
+++ b/content/zh-cn/case-studies/netease/index.html
@@ -0,0 +1,174 @@
+---
+title: 案例研究：NetEase
+linkTitle: NetEase
+case_study_styles: true
+cid: caseStudies
+logo: netease_featured_logo.png
+featured: false
+
+new_case_study_styles: true
+heading_background: /images/case-studies/netease/banner1.jpg
+heading_title_logo: /images/netease_logo.png
+subheading: >
+  NetEase 如何利用 Kubernetes 支持在全球的互联网业务
+case_study_details:
+  - 公司: NetEase
+  - 位置: Hangzhou， China
+  - 行业: 互联网科技
+---
+
+<!-- 
+title: NetEase Case Study
+linkTitle: NetEase
+case_study_styles: true
+cid: caseStudies
+logo: netease_featured_logo.png
+featured: false
+
+new_case_study_styles: true
+heading_background: /images/case-studies/netease/banner1.jpg
+heading_title_logo: /images/netease_logo.png
+subheading: >
+  How NetEase Leverages Kubernetes to Support Internet Business Worldwide
+case_study_details:
+  - Company: NetEase
+  - Location: Hangzhou, China
+  - Industry: Internet technology
+-->
+
+<!-- 
+<h2>Challenge</h2>
+-->
+<h2>挑战</h2>
+
+<!-- 
+<p>Its gaming business is one of the largest in the world, but that's not all that <a href="https://netease-na.com/">NetEase</a> provides to Chinese consumers. The company also operates e-commerce, advertising, music streaming, online education, and email platforms; the last of which serves almost a billion users with free email services through sites like <a href="https://www.163.com/">163.com</a>. In 2015, the NetEase Cloud team providing the infrastructure for all of these systems realized that their R&D process was slowing down developers. "Our users needed to prepare all of the infrastructure by themselves," says Feng Changjian, Architect for NetEase Cloud and Container Service. "We were eager to provide the infrastructure and tools for our users automatically via serverless container service."</p>
+-->
+<p>其游戏业务是世界上最大的游戏业务之一，但这不是 <a href="https://netease-na.com/">NetEase</a> 为中国消费者提供的所有。公司还经营电子商务、广告、音乐流媒体、在线教育和电子邮件平台；其中最后一个服务有近10亿用户通过网站使用免费的电子邮件服务，如 <a href="https://www.163.com/">163.com</a>。在2015 年，为所有这些系统提供基础设施的 NetEase Cloud 团队意识到，他们的研发流程正在减缓开发人员的速度。NetEase Cloud 和容器服务架构师 Feng Changjian 表示：“我们的用户需要自己准备所有基础设施。”“我们希望通过无服务器容器服务自动为用户提供基础设施和工具。”</p>
+
+<!-- 
+<h2>Solution</h2>
+-->
+<h2>解决方案</h2>
+
+<!-- 
+<p>After considering building its own orchestration solution, NetEase decided to base its private cloud platform on <a href="https://kubernetes.io/">Kubernetes</a>. The fact that the technology came out of Google gave the team confidence that it could keep up with NetEase's scale. "After our 2-to-3-month evaluation, we believed it could satisfy our needs," says Feng. The team started working with Kubernetes in 2015, before it was even 1.0. Today, the NetEase internal cloud platform—which also leverages the CNCF projects <a href="https://prometheus.io/">Prometheus</a>, <a href="https://www.envoyproxy.io/">Envoy</a>, <a href="https://goharbor.io/">Harbor</a>, <a href="https://grpc.io/">gRPC</a>, and <a href="https://helm.sh/">Helm</a>—runs 10,000 nodes in a production cluster and can support up to 30,000 nodes in a cluster. Based on its learnings from its internal platform, the company introduced a Kubernetes-based cloud and microservices-oriented PaaS product, <a href="https://landscape.cncf.io/selected=netease-qingzhou-microservice">NetEase Qingzhou Microservice</a>, to outside customers.</p>
+-->
+<p>在考虑构建自己的业务流程解决方案后，NetEase 决定将其私有云平台建立在 <a href="https://kubernetes.io/">Kubernetes</a> 的基础上。这项技术来自 Google，这一事实让团队有信心，它能够跟上 NetEase 的规模。“经过2到3个月的评估，我们相信它能满足我们的需求，”Feng Changjian 说。该团队于 2015 年开始与 Kubernetes 合作，那会它甚至还不是 1.0 版本。如今，NetEase 内部云平台还使用了 CNCF 项目 <a href="https://prometheus.io/">Prometheus</a>、<a href="https://www.envoyproxy.io/">Envoy</a>、<a href="https://goharbor.io/">Harbor</a>、<a href="https://grpc.io/">gRPC</a> 和 <a href="https://helm.sh/">Helm</a>， 在生产集群中运行 10000 个节点，并可支持集群多达 30000 个节点。基于对内部平台的学习，公司向外部客户推出了基于 Kubernetes 的云和微服务型 PaaS 产品，NetEase 轻舟微服务。</p>
+
+<!-- 
+<h2>Impact</h2>
+-->
+<h2>影响</h2>
+
+<!-- 
+<p>The NetEase team reports that Kubernetes has increased R&D efficiency by more than 100%. Deployment efficiency has improved by 280%. "In the past, if we wanted to do upgrades, we needed to work with other teams, even in other departments," says Feng. "We needed special staff to prepare everything, so it took about half an hour. Now we can do it in only 5 minutes." The new platform also allows for mixed deployments using GPU and CPU resources. "Before, if we put all the resources toward the GPU, we won't have spare resources for the CPU. But now we have improvements thanks to the mixed deployments," he says. Those improvements have also brought an increase in resource utilization.</p>
+-->
+<p>NetEase 团队报告说，Kubernetes 已经提高了研发效率一倍多，部署效率提高了 2.8 倍。“过去，如果我们想要进行升级，我们需要与其他团队合作，甚至加入其他部门，”Feng Changjian 说。“我们需要专人来准备一切，需要花费约半个小时。现在我们只需 5 分钟即可完成。”新平台还允许使用 GPU 和 CPU 资源进行混合部署。“以前，如果我们将所有资源都用于 GPU，则 CPU 的备用资源将没有。但是现在，由于混合部署，我们有了很大的改进，”他说。这些改进也提高了资源的利用率。</p>
+
+<!-- 
+{{< case-studies/quote author="Zeng Yuxing, Architect, NetEase" >}}
+"The system can support 30,000 nodes in a single cluster. In production, we have gotten the data of 10,000 nodes in a single cluster. The whole internal system is using this system for development, test, and production."
+{{< /case-studies/quote >}}
+-->
+{{< case-studies/quote author="Zeng Yuxing，NetEase 架构师" >}}
+“系统可以在单个集群中支持 30000 个节点。在生产中，我们在单个集群中获取到了 10000 个节点的数据。整个内部系统都在使用该系统进行开发、测试和生产。”
+{{< /case-studies/quote >}}
+
+<!-- 
+{{< case-studies/lead >}}
+Its gaming business is the <a href="https://newzoo.com/insights/rankings/top-25-companies-game-revenues/">fifth-largest</a> in the world, but that's not all that <a href="https://netease-na.com/">NetEase</a> provides consumers.
+{{< /case-studies/lead >}}
+-->
+{{< case-studies/lead >}}
+其游戏业务是世界<a href="https://newzoo.com/insights/rankings/top-25-companies-game-revenues/">第五大</a>游戏业务，但这不是 <a href="https://netease-na.com/">NetEase</a> 为消费者提供的所有业务。
+{{< /case-studies/lead >}}
+
+<!-- 
+<p>The company also operates e-commerce, advertising, music streaming, online education, and email platforms in China; the last of which serves almost a billion users with free email services through popular sites like <a href="https://www.163.com/">163.com</a> and <a href="https://www.126.com/">126.com</a>. With that kind of scale, the NetEase Cloud team providing the infrastructure for all of these systems realized in 2015 that their R&D process was making it hard for developers to keep up with demand. "Our users needed to prepare all of the infrastructure by themselves," says Feng Changjian, Architect for NetEase Cloud and Container Service. "We were eager to provide the infrastructure and tools for our users automatically via serverless container service."</p>
+-->
+<p>公司还在中国经营电子商务、广告、音乐流媒体、在线教育和电子邮件平台；其中最后一个服务是有近 10 亿用户使用的网站，如 <a href="https://www.163.com/">163.com</a> 和 <a href="https://www.126.com/">126.com</a> 免费电子邮件服务。有了这样的规模，为所有这些系统提供基础设施的 NetEase Cloud 团队在 2015 年就意识到，他们的研发流程使得开发人员难以跟上需求。NetEase Cloud 和容器服务架构师 Feng Changjian 表示：“我们的用户需要自己准备所有基础设施。”“我们渴望通过无服务器容器服务自动为用户提供基础设施和工具。”</p>
+
+<!-- 
+<p>After considering building its own orchestration solution, NetEase decided to base its private cloud platform on <a href="https://kubernetes.io/">Kubernetes</a>. The fact that the technology came out of Google gave the team confidence that it could keep up with NetEase's scale. "After our 2-to-3-month evaluation, we believed it could satisfy our needs," says Feng.</p>
+-->
+<p>在考虑构建自己的业务流程解决方案后，NetEase 决定将其私有云平台建立在 <a href="https://kubernetes.io/">Kubernetes</a> 的基础上。这项技术来自 Google，这一事实让团队有信心，它能够跟上 NetEase 的规模。“经过 2 到 3 个月的评估，我们相信它能满足我们的需求，”Feng Changjian 说。</p>
+
+<!-- 
+{{< case-studies/quote
+  image="/images/case-studies/netease/banner3.jpg"
+  author="Feng Changjian, Architect for NetEase Cloud and Container Service, NetEase"
+>}}
+"We leveraged the programmability of Kubernetes so that we can build a platform to satisfy the needs of our internal customers for upgrades and deployment."
+{{< /case-studies/quote >}}
+-->
+{{< case-studies/quote
+  image="/images/case-studies/netease/banner3.jpg"
+  author="Feng Changjian，NetEase Cloud 和容器托管平台架构师"
+>}}
+“我们利用 Kubernetes 的可编程性，构建一个平台，以满足内部客户对升级和部署的需求。”
+{{< /case-studies/quote >}}
+
+<!-- 
+<p>The team started adopting Kubernetes in 2015, before it was even 1.0, because it was relatively easy to use and enabled DevOps at the company. "We abandoned some of the concepts of Kubernetes; we only wanted to use the standardized framework," says Feng. "We leveraged the programmability of Kubernetes so that we can build a platform to satisfy the needs of our internal customers for upgrades and deployment."</p>
+-->
+<p>该团队于 2015 年开始采用 Kubernetes，那会它甚至还不是 1.0 版本，因为它相对易于使用，并且使 DevOps 在公司中得以实现。“我们放弃了 Kubernetes 的一些概念；我们只想使用标准化框架，”Feng Changjian 说。“我们利用 Kubernetes 的可编程性，构建一个平台，以满足内部客户对升级和部署的需求。”</p>
+
+<!-- 
+<p>The team first focused on building the container platform to manage resources better, and then turned their attention to improving its support of microservices by adding internal systems such as monitoring. That has meant integrating the CNCF projects <a href="https://prometheus.io/">Prometheus</a>, <a href="https://www.envoyproxy.io/">Envoy</a>, <a href="https://goharbor.io/">Harbor</a>, <a href="https://grpc.io/">gRPC</a>, and <a href="https://helm.sh/">Helm</a>. "We are trying to provide a simplified and standardized process, so our users and customers can leverage our best practices," says Feng.</p>
+-->
+<p>团队首先专注于构建容器平台以更好地管理资源，然后通过添加内部系统（如监视）来改进对微服务的支持。这意味着整合了 CNCF 项目 <a href="https://prometheus.io/">Prometheus</a>，<a href="https://www.envoyproxy.io/">Envoy</a>，<a href="https://goharbor.io/">Harbor</a>，<a href="https://grpc.io/">gRPC</a> 和 <a href="https://helm.sh/">Helm</a>。“我们正在努力提供简化和标准化的流程，以便我们的用户和客户能够利用我们的最佳实践，”Feng Changjian 说。</p>
+
+<!-- 
+<p>And the team is continuing to make improvements. For example, the e-commerce part of the business needs to leverage mixed deployments, which in the past required using two separate platforms: the infrastructure-as-a-service platform and the Kubernetes platform. More recently, NetEase has created a cross-platform application that enables using both with one-command deployment.</p>
+-->
+<p>团队正在继续改进。例如，企业的电子商务部分需要利用混合部署，过去需要使用两个单独的平台：基础架构即服务平台和 Kubernetes 平台。最近，NetEase 创建了一个跨平台应用程序，支持将两者同时使用单命令部署。</p>
+
+<!-- 
+{{< case-studies/quote
+  image="/images/case-studies/netease/banner4.jpg"
+  author="Li Lanqing, Kubernetes Developer, NetEase"
+>}}
+"As long as a company has a mature team and enough developers, I think Kubernetes is a very good technology that can help them."
+{{< /case-studies/quote >}}
+-->
+{{< case-studies/quote
+  image="/images/case-studies/netease/banner4.jpg"
+  author="Li Lanqing，NetEase Kubernetes 开发人员"
+>}}
+“只要公司拥有成熟的团队和足够的开发人员，我认为 Kubernetes 是一个很好的有所助力的技术。”
+{{< /case-studies/quote >}}
+
+<!-- 
+<p>Today, the NetEase internal cloud platform "can support 30,000 nodes in a single cluster," says Architect Zeng Yuxing. "In production, we have gotten the data of 10,000 nodes in a single cluster. The whole internal system is using this system for development, test, and production."</p>
+-->
+<p>“如今，系统可以在单个集群中支持 30000 个节点，“架构师 Zeng Yuxing 说。“在生产中，我们在单个集群中获取到了 10000 个节点的数据。整个内部系统都在使用该系统进行开发、测试和生产。”</p>
+
+<!-- 
+<p>The NetEase team reports that Kubernetes has increased R&D efficiency by more than 100%. Deployment efficiency has improved by 280%. "In the past, if we wanted to do upgrades, we needed to work with other teams, even in other departments," says Feng. "We needed special staff to prepare everything, so it took about half an hour. Now we can do it in only 5 minutes." The new platform also allows for mixed deployments using GPU and CPU resources. "Before, if we put all the resources toward the GPU, we won't have spare resources for the CPU. But now we have improvements thanks to the mixed deployments." Those improvements have also brought an increase in resource utilization.</p>
+-->
+<p>NetEase 团队报告说，Kubernetes 已经提高了研发效率一倍多。部署效率提高了 2.8 倍。“过去，如果我们想要进行升级，我们需要与其他团队合作，甚至加入其他部门，”Feng Changjian 说。“我们需要专人来准备一切，需要花费约半个小时。现在我们只需 5 分钟即可完成。”新平台还允许使用 GPU 和 CPU 资源进行混合部署。“以前，如果我们将所有资源都用于 GPU，则 CPU 的备用资源将没有。但是现在，由于混合部署，我们有了很大的改进，”他说。这些改进也提高了资源的利用率。</p>
+
+<!-- 
+{{< case-studies/quote author="Li Lanqing, Kubernetes Developer, NetEase">}}
+"By engaging with this community, we can gain some experience from it and we can also benefit from it. We can see what are the concerns and the challenges faced by the community, so we can get involved."
+{{< /case-studies/quote >}}
+-->
+{{< case-studies/quote author="Li Lanqing，NetEase Kubernetes 开发人员">}}
+“通过与这个社区接触，我们可以从中获得一些经验，我们也可以从中获益。我们可以看到社区所关心的问题和挑战，以便我们参与其中。”
+{{< /case-studies/quote >}}
+
+<!-- 
+<p>Based on the results and learnings from using its internal platform, the company introduced a Kubernetes-based cloud and microservices-oriented PaaS product, <a href="https://landscape.cncf.io/selected=netease-qingzhou-microservice">NetEase Qingzhou Microservice</a>, to outside customers. "The idea is that we can find the problems encountered by our game and e-commerce and cloud music providers, so we can integrate their experiences and provide a platform to satisfy the needs of our users," says Zeng.</p>
+-->
+<p>基于使用内部平台的成果和学习，公司向外部客户推出了基于 Kubernetes 的云和微服务型 PaaS 产品，<a href="https://landscape.cncf.io/selected=netease-qingzhou-microservice">NetEase 轻舟微服务</a>。“我们的想法是，我们可以找到我们的游戏和电子商务以及云音乐提供商遇到的问题，所以我们可以整合他们的体验，并提供一个平台，以满足所有用户的需求，”Zeng Yuxing 说。</p>
+
+<!-- 
+<p>With or without the use of the NetEase product, the team encourages other companies to try Kubernetes. "As long as a company has a mature team and enough developers, I think Kubernetes is a very good technology that can help them," says Kubernetes developer Li Lanqing.</p>
+-->
+<p>无论是否使用 NetEase 产品，该团队鼓励其他公司尝试 Kubernetes。Kubernetes 开发者 Li Lanqing 表示：“只要公司拥有成熟的团队和足够的开发人员，我认为 Kubernetes 是一个很好的技术，可以帮助他们。”</p>
+
+<!-- 
+<p>As an end user as well as a vendor, NetEase has become more involved in the community, learning from other companies and sharing what they've done. The team has been contributing to the Harbor and Envoy projects, providing feedback as the technologies are being tested at NetEase scale. "We are a team focusing on addressing the challenges of microservices architecture," says Feng. "By engaging with this community, we can gain some experience from it and we can also benefit from it. We can see what are the concerns and the challenges faced by the community, so we can get involved."</p>
+-->
+<p>作为最终用户和供应商，NetEase 已经更多地参与社区，向其他公司学习，分享他们所做的工作。该团队一直在为 Harbor 和 Envoy 项目做出贡献，在 NetEase 进行规模测试技术时提供反馈。“我们是一个团队，专注于应对微服务架构的挑战，”Feng Changjian 说。“通过与这个社区接触，我们可以从中获得一些经验，我们也可以从中获益。我们可以看到社区所关心的问题和挑战，以便我们参与其中。”</p>
diff --git a/content/zh/case-studies/netease/netease_featured_logo.png b/content/zh-cn/case-studies/netease/netease_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/netease/netease_featured_logo.png
rename to content/zh-cn/case-studies/netease/netease_featured_logo.png
diff --git a/content/zh-cn/case-studies/netease/netease_featured_logo.svg b/content/zh-cn/case-studies/netease/netease_featured_logo.svg
new file mode 100644
index 0000000000..0ea176812d
--- /dev/null
+++ b/content/zh-cn/case-studies/netease/netease_featured_logo.svg
@@ -0,0 +1 @@
+<svg id="Layer_1" data-name="Layer 1" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 215 127"><defs><style>.cls-1{fill:transparent;}.cls-2{fill:#be3038;}</style></defs><title>kubernetes.io-logos</title><rect class="cls-1" x="-4.60453" y="-5.55447" width="223.25536" height="134.51136"/><path id="red" class="cls-2" d="M46.87693,47.72179a3.02022,3.02022,0,0,0,.37341-.42008v-.51344a6.1816,6.1816,0,0,1,.09335-1.40027,9.9391,9.9391,0,0,0,.09335-1.867,3.48615,3.48615,0,0,0-.93352-1.96038c-1.3536-1.1669-2.47382-1.587-3.36066-1.30692a4.01592,4.01592,0,0,1-1.96038-.04668,4.55825,4.55825,0,0,0-3.03393.32673,3.0861,3.0861,0,0,1-1.02687.28005,1.32812,1.32812,0,0,0-.60679,0c-.09335.04668-.14.04668-.1867.09335a8.01461,8.01461,0,0,0-1.727.88685c-.04667.04667-.04667.14-.09335.23338a3.64593,3.64593,0,0,0-.56011,1.727c.09335.79349.1867,1.3536.23338,1.63365a3.10835,3.10835,0,0,0,.3734,1.82036v.09335l.09336.04668c.42008.37341.84016.65346,1.12022.88684l.09335.09335a1.856,1.856,0,0,1,.84016-.09335,2.267,2.267,0,0,0,1.12022,0,2.1395,2.1395,0,0,1,.93352-.04667,1.22109,1.22109,0,0,0,.93352-.18671,3.42953,3.42953,0,0,1,1.30692-.09335h.04668a2.93666,2.93666,0,0,0,.51343-.37341,1.58442,1.58442,0,0,1,.28-.28005.59162.59162,0,0,1,.18671-.42008,4.25726,4.25726,0,0,0,.28-.74682c0-.23338-.04667-.51343-.09335-.93351a1.75092,1.75092,0,0,1,0-.70014,4.1829,4.1829,0,0,0,.32673-1.12022,1.51327,1.51327,0,0,1,.65346-1.30693c.46676-.37341.88685-.56011,1.1669-.46676.28006.04668.46676.28006.65346.56011A3.41022,3.41022,0,0,1,45.29,43.521a4.03657,4.03657,0,0,1-.28006,1.07354,2.91786,2.91786,0,0,1-.60678.93352A2.09055,2.09055,0,0,0,43.983,46.9283c-.04667.14-.04667.28005-.09335.42008a1.48024,1.48024,0,0,1,.23338.28005c.04668,0,.04668.04668.09335.09335a3.54869,3.54869,0,0,1,1.1669.09335,11.38709,11.38709,0,0,0,1.21357.04668c.04667,0,.09335,0,.09335.04667.04667-.09335.09335-.09335.09335-.09335s0-.04666.09336-.09334Zm-7.65484,5.181a.42076.42076,0,0,1,.04668-.23338,1.3307,1.3307,0,0,0-.09335-.74681v-.88685a.59516.59516,0,0,0-.28006-.1867,3.25934,3.25934,0,0,0-.93351-.37341h-.04668a3.31629,3.31629,0,0,1-.98019.37341,5.19706,5.19706,0,0,1-.79349.09335c-.14.04668-.18671.09335-.23338.09335a1.52181,1.52181,0,0,0-.56011.51343,1.10222,1.10222,0,0,0-.28006.42009,5.51448,5.51448,0,0,1-.1867,1.16689,2.5942,2.5942,0,0,0-.1867,1.07355,2.2403,2.2403,0,0,1,1.12022-.65346,2.7251,2.7251,0,0,1,.93351-.18671,1.29529,1.29529,0,0,0,.84017,0,1.02873,1.02873,0,0,1,.74681,0h.09335a2.09384,2.09384,0,0,0,.79349-.46675ZM50.65767,63.45155a3.28957,3.28957,0,0,1,.04668,1.49362,2.80326,2.80326,0,0,0-.23338.65346,1.51966,1.51966,0,0,1-.28006.56011,1.84,1.84,0,0,1-1.26024.46676,1.35888,1.35888,0,0,1-1.07355-.60679,1.99565,1.99565,0,0,1-.42008-1.26024,1.27594,1.27594,0,0,0-.09335-.74682.69238.69238,0,0,1,0-.60679,1.29526,1.29526,0,0,0,0-.84016A3.792,3.792,0,0,1,47.157,60.931a10.56587,10.56587,0,0,0-.09335-3.22063,2.2617,2.2617,0,0,1,0-.79349,5.11939,5.11939,0,0,0,0-1.21357,3.63682,3.63682,0,0,1,.09335-1.49363,4.16354,4.16354,0,0,0,.09336-1.5403,3.64224,3.64224,0,0,1-.14-1.12022,2.72021,2.72021,0,0,0-.60679-.51344,6.15278,6.15278,0,0,0-.65346-.60678c-.04668-.04668-.09335-.04668-.18671-.04668a4.23964,4.23964,0,0,0-2.28711-.09335,2.8799,2.8799,0,0,1-.84017.09335,1.09777,1.09777,0,0,0-.56011.18671,1.0163,1.0163,0,0,0-.37341.23337.14457.14457,0,0,1,.04668.09336,5.95225,5.95225,0,0,0,.04667.88684,1.184,1.184,0,0,1-.09335.56011.17147.17147,0,0,0-.04667.14,2.66339,2.66339,0,0,0,.65346.60679c0,.04668.04667.04668.09335.09335a3.20552,3.20552,0,0,1,1.12022.09335,5.67074,5.67074,0,0,0,1.26025,0,2.074,2.074,0,0,1,1.12022.42009,1.29035,1.29035,0,0,1,.60679,1.16689,1.05192,1.05192,0,0,1-.74681,1.02687,2.97758,2.97758,0,0,1-2.00707-.04668A4.05023,4.05023,0,0,0,41.976,55.75a2.31675,2.31675,0,0,1-1.26024.04668H40.669a10.37668,10.37668,0,0,0-2.05374.88684l.04668.04668a2.70821,2.70821,0,0,1-.23338,1.49362,3.813,3.813,0,0,0-.04668.65346v.74682a1.77736,1.77736,0,0,0,.14.74681.93826.93826,0,0,0,.1867.37341c.32674.1867.37341.46676.23338.84017a1.23518,1.23518,0,0,1-.70013.74681.95452.95452,0,0,1-.51344,0c-.14-.04667-.32673-.09335-.56011-.1867A1.7979,1.7979,0,0,1,36.04813,60.791a7.89782,7.89782,0,0,1-.1867-2.42715,5.19805,5.19805,0,0,0,.09335-.79348v-.28006a.87951.87951,0,0,0-.18671-.42008,1.97581,1.97581,0,0,0-.23337-.32673,2.46564,2.46564,0,0,1-.60679-.04668c-.23338-.14-.42008-.23338-.56011-.32673a.3529.3529,0,0,0,.04667.18671,6.01671,6.01671,0,0,1-.14,1.16689,2.301,2.301,0,0,0-.23338,1.02687,3.15208,3.15208,0,0,1-.09335.65346,1.28106,1.28106,0,0,0-.09336.60679,1.87293,1.87293,0,0,1-.14.70014,1.83065,1.83065,0,0,0-.18671.84016,2.8631,2.8631,0,0,1-.14.74682,11.08241,11.08241,0,0,0-.70014,2.14709,2.602,2.602,0,0,1-.60679,1.02687,2.4084,2.4084,0,0,1-1.21357.65346,2.17689,2.17689,0,0,1-1.02687-.23338,1.51123,1.51123,0,0,1-.60678-.84017,3.33448,3.33448,0,0,1-.09336-.93352,8.81463,8.81463,0,0,1,.28006-.84016,4.04864,4.04864,0,0,0,.60678-.88684,1.96333,1.96333,0,0,0,.60679-1.21358,1.05245,1.05245,0,0,1,.23338-.5601,8.83791,8.83791,0,0,0,.46676-1.49363,2.29884,2.29884,0,0,0,.23338-.84017,7.5469,7.5469,0,0,1,.56011-2.84722,2.4785,2.4785,0,0,0,.09335-1.63366c.04667-.42008.09335-.70013.09335-.88684a2.32729,2.32729,0,0,0,.14-1.12022,6.86942,6.86942,0,0,1-.04668-1.68033,21.02226,21.02226,0,0,0-.09335-2.7072A3.64958,3.64958,0,0,0,31.754,45.388a4.38273,4.38273,0,0,1-.70014-2.42714,5.00874,5.00874,0,0,1,.46676-2.75388,3.44,3.44,0,0,1,1.1669-1.727,1.3294,1.3294,0,0,1,1.49363.04667c-.04668-.04667-.04668-.04667,0-.04667a.92082.92082,0,0,1,.51343,0,3.81294,3.81294,0,0,0,.65346-.04668,3.30653,3.30653,0,0,1,1.63366-.14,2.18694,2.18694,0,0,0,.93351.04667,2.117,2.117,0,0,1,1.12022-.28005.8793.8793,0,0,0,.56011-.09335,2.28887,2.28887,0,0,1,1.54031-.14,2.84876,2.84876,0,0,0,1.40027.04667,5.61328,5.61328,0,0,1,1.96039-.04667,5.66436,5.66436,0,0,0,.84016.04667,1.01183,1.01183,0,0,1,.65347.23338,1.44005,1.44005,0,0,0,.84016.23338,3.1813,3.1813,0,0,1,.98019.09335,1.38743,1.38743,0,0,1,.60679.51343,1.311,1.311,0,0,0,.74681.65347,2.66966,2.66966,0,0,1,1.26025,1.63365,3.08244,3.08244,0,0,1,0,1.30693,1.02429,1.02429,0,0,1-.37341.70013.92158.92158,0,0,0-.28005.65347,1.18585,1.18585,0,0,1-.14.56011,1.106,1.106,0,0,0-.09335.74681,1.15092,1.15092,0,0,1,0,.79349,9.67753,9.67753,0,0,0-.09335,2.61384,3.41009,3.41009,0,0,1-.28006,1.49363,1.63819,1.63819,0,0,0,.04668.93351,2.52434,2.52434,0,0,1-.04668,1.1669,2.27549,2.27549,0,0,0,0,1.12022,7.02806,7.02806,0,0,1,.09335,2.38047,5.20426,5.20426,0,0,0,.14,2.5205,13.6216,13.6216,0,0,1,.74682,3.454,11.85095,11.85095,0,0,1,.51343,1.77369Zm-8.775-3.50069a4.08562,4.08562,0,0,1,.93351-.09335,2.84355,2.84355,0,0,0,.88685-.1867,1.71632,1.71632,0,0,1,1.49362.1867,1.49339,1.49339,0,0,1,.74681,1.12022A1.14139,1.14139,0,0,1,45.43,62.14462a3.1311,3.1311,0,0,1-1.96039.28006,2.05177,2.05177,0,0,0-.42008-.04668,1.58775,1.58775,0,0,1-.46676.04668,1.67814,1.67814,0,0,0-.51343.09335,2.8098,2.8098,0,0,1-1.63366-.04668,1.238,1.238,0,0,1-.56011-.93351,2.42392,2.42392,0,0,1,.28006-.88684,1.51983,1.51983,0,0,1,.98019-.56011,2.655,2.655,0,0,0,.74682-.14Zm-4.94764-16.85a.62748.62748,0,0,0,.28-.32673c.04668-.1867.28006-.28.79349-.28a1.17512,1.17512,0,0,1,.93352.42008,2.87541,2.87541,0,0,1,.46676,1.12022,1.39765,1.39765,0,0,0,.1867.46676.6477.6477,0,0,1,0,.42008c.09335.32673.09335.60679.14.74682a1.72108,1.72108,0,0,1-.09336.79348,1.28326,1.28326,0,0,1-.60678.74682c-.23338.09335-.51343-.04668-.88684-.42009a1.86772,1.86772,0,0,1-.88684-1.07354,7.50592,7.50592,0,0,1-.42009-1.1669c0-.14-.04667-.42008-.09335-.79349,0-.42008.04668-.65346.18671-.65346ZM25.03264,48.42193c-.04668,0-.04668.04667,0,0a1.70291,1.70291,0,0,1-.93352.32673.7457.7457,0,0,0-.65346.56011,2.27483,2.27483,0,0,1-.9802,1.12022.94.94,0,0,0-.51343.74681,1.58536,1.58536,0,0,1-.42008.98019,1.11538,1.11538,0,0,0-.46676.79349,2.8621,2.8621,0,0,0,.70014,1.26025,1.90186,1.90186,0,0,0,.84016.23338,2.46638,2.46638,0,0,1,.79349.1867.60872.60872,0,0,0,.60679.09335,1.14753,1.14753,0,0,1,.74681-.09335,1.93292,1.93292,0,0,0,1.07355-.1867,3.3671,3.3671,0,0,0,1.12022-.88685v-.09335a3.01672,3.01672,0,0,1,.14-1.02686,2.30424,2.30424,0,0,0,.14-1.1669,1.57172,1.57172,0,0,0-.32673-.93352c-.04668-.09335-.09335-.23338-.1867-.42008a1.32785,1.32785,0,0,0-.42009-.65346.97657.97657,0,0,1-.1867-.28006c-.04668-.09335-.09335-.14-.14-.23338-.28-.09334-.60678-.1867-.93351-.32672Zm-6.44127,5.83448a2.19855,2.19855,0,0,0-.09335-.93352,1.6634,1.6634,0,0,1,.28-1.26024c.37341-.84017.74682-1.3536,1.12022-1.49363a.92753.92753,0,0,0,.42009-.74681,2.34762,2.34762,0,0,1,.51343-1.21357,1.57326,1.57326,0,0,0,.04668-1.21358,1.06154,1.06154,0,0,0-.28006-.5601.82794.82794,0,0,0-.46676-.37341,1.22344,1.22344,0,0,1-.79349-.60679.72577.72577,0,0,0-.3734-.28.38517.38517,0,0,1-.23338-.46676.4659.4659,0,0,0-.23338-.46676.82167.82167,0,0,1-.28006-.60679c-.04667-.70014.04668-1.12022.18671-1.21357a.568.568,0,0,0,.23338-.46676,4.63139,4.63139,0,0,1,.56011-1.49362,8.9326,8.9326,0,0,1,.93351-1.54031.99793.99793,0,0,0,.28006-.46676,1.4591,1.4591,0,0,1,.42008-.51343.67972.67972,0,0,0,.28006-.42008.64161.64161,0,0,1,.3734-.46676c.14-.04668.28006-.23338.46676-.51343.37341-.70014.70014-1.07355.93352-1.02687a.99542.99542,0,0,0,.56011-.14,1.22855,1.22855,0,0,1,.93352-.09335,1.20649,1.20649,0,0,0,.65346.09335,1.928,1.928,0,0,1,1.3536.28005,1.84213,1.84213,0,0,1,.93351,1.30693c.04668.46676-.04667.70014-.23338.79349-.42008.32673-.70013.46675-.98019.42008a.64232.64232,0,0,0-.56011.09335,1.07161,1.07161,0,0,1-.65346.1867.70789.70789,0,0,0-.60679.14.558.558,0,0,1-.3734.18671c-.14-.04668-.28006.04667-.42009.23338a1.11848,1.11848,0,0,0-.32673.60678.68339.68339,0,0,1-.28005.51344,1.32784,1.32784,0,0,0-.42008.65346c-.14.32673-.23338.51343-.32674.51343a1.66148,1.66148,0,0,0-.42008,1.07355,1.84959,1.84959,0,0,0-.28,1.447,3.3376,3.3376,0,0,0,.65346.79349c.1867.04667.28.14.28.23338a.54862.54862,0,0,0,.56011.32673,1.808,1.808,0,0,1,.51344.14.63628.63628,0,0,0,.84016-.09336.88976.88976,0,0,1,.56011-.32672.63976.63976,0,0,0,.56011-.51344,1.29261,1.29261,0,0,1,.23338-.37341,1.25414,1.25414,0,0,0,.51344-.79348,1.51983,1.51983,0,0,1,.28-.56011.45742.45742,0,0,0,.14-.56011c0-.18671-.28-.42008-.74681-.65346-.18671-.14-.18671-.37341-.04668-.79349a.6937.6937,0,0,1,.65346-.37341,1.39786,1.39786,0,0,0,.46676-.1867.56627.56627,0,0,1,.60679-.04668,1.10314,1.10314,0,0,0,.60678.09335,2.21566,2.21566,0,0,1,1.68033.93352c.28006.37341.37341.60679.23338.79349s-.09335.46675.04668.79348a1.43923,1.43923,0,0,1,0,.88685c-.18671.42008-.42009.70013-.65347.70013a3.34979,3.34979,0,0,0-1.40027.79349,1.08329,1.08329,0,0,0-.37341.60679,1.48355,1.48355,0,0,0-.14.42008c0,.09335,0,.14.04667.14a4.81421,4.81421,0,0,1,.09335.93352l.09336.09335a.478.478,0,0,0,.23338.28.86077.86077,0,0,1,.51343.60679,1.42136,1.42136,0,0,0,.42008.60679,1.01665,1.01665,0,0,1,.42009.60678,4.33616,4.33616,0,0,1,.32673,1.3536,4.13734,4.13734,0,0,0,.23338,1.12023,1.59813,1.59813,0,0,1,.14.88684,2.61415,2.61415,0,0,1-.46675,1.3536,2.37321,2.37321,0,0,1-.60679.42008c-.14.14-.32673.28-.56011.46676a4.9816,4.9816,0,0,0-1.1669,1.02687,2.65457,2.65457,0,0,1-2.00706.93351,3.55325,3.55325,0,0,0-.98019.14,1.47248,1.47248,0,0,1-1.1669-.1867,2.74622,2.74622,0,0,0-1.40027-.37341,2.81758,2.81758,0,0,1-2.05374-.74681,2.74121,2.74121,0,0,1-1.02687-1.867Zm8.58836,4.15415a.7259.7259,0,0,0,.28-.37341c.04668-.18671.32673-.28006.88684-.28006a1.23357,1.23357,0,0,1,.98019.46676,3.00747,3.00747,0,0,1,.51344,1.12022c.04667.1867.09335.37341.14.51344a.79553.79553,0,0,1,0,.46676,3.14886,3.14886,0,0,1,.14.79349,1.66731,1.66731,0,0,1-.09335.79348c-.23338.42008-.46676.70014-.70014.74682q-.35007.14-.98019-.42008a2.16954,2.16954,0,0,1-.88684-1.1669,3.62818,3.62818,0,0,1-.42008-1.21357,3.83026,3.83026,0,0,0-.14-.84017c.09335-.3734.1867-.60678.28006-.60678ZM23.259,59.4841a1.01637,1.01637,0,0,0,.37341-.23338c.09335-.1867.37341-.1867.88684,0a1.29517,1.29517,0,0,1,.74682.65346,2.79093,2.79093,0,0,1,.14,1.21358,5.4564,5.4564,0,0,0,.18671,1.77368,3.01511,3.01511,0,0,1-.28006,1.5403c-.04668.32673-.04668.60679-.09335.79349a1.587,1.587,0,0,1-.32673.70014,1.39973,1.39973,0,0,1-.84017.51344c-.23338.04668-.46676-.1867-.74681-.65346a2.12638,2.12638,0,0,1-.46676-1.30693,10.17176,10.17176,0,0,1-.1867-2.66052,15.2179,15.2179,0,0,0,.23338-1.77368c.14-.37342.28005-.56012.3734-.56012Zm-4.4342.28006c.1867-.70014.46676-1.12022.88684-1.26025a.87962.87962,0,0,1,1.07354.42009,1.56326,1.56326,0,0,1,0,1.447,12.67383,12.67383,0,0,0-.04667,1.35359,1.65973,1.65973,0,0,1-.09335,1.26025A4.54517,4.54517,0,0,1,19.945,64.105a7.90411,7.90411,0,0,0-.46676,1.26024,1.43107,1.43107,0,0,1-.60678.93352,1.45465,1.45465,0,0,1-1.12023.14,1.0596,1.0596,0,0,1-.74681-.84017,2.7233,2.7233,0,0,1,.04668-1.49362,4.9767,4.9767,0,0,0,.42008-1.40028,3.17853,3.17853,0,0,1,.79349-2.10041,2.92927,2.92927,0,0,0,.56011-.84016Zm49.56974,2.10041a2.64684,2.64684,0,0,1,.9802-.70014,3.73778,3.73778,0,0,0,.98019-.70013,7.409,7.409,0,0,1,1.26024-.79349c.56011-.32673,1.26025-.79349,2.10042-1.30693a11.24352,11.24352,0,0,1,1.447-.98019,2.50017,2.50017,0,0,1,.70014-.70014A11.80326,11.80326,0,0,0,77.823,55.2366a1.72413,1.72413,0,0,1,1.30693-.3734c.56011.14.84016.46675.79349.98019a1.93758,1.93758,0,0,1-.93352,1.21357,2.835,2.835,0,0,0-.74682.74681q-.84016.70014-1.5403,1.26025a2.50949,2.50949,0,0,0-.9802.88684,4.87512,4.87512,0,0,1-1.5403,1.12022,2.2384,2.2384,0,0,0-.23338.79349c-.09335.42008-.14.65345-.1867.65345a1.33239,1.33239,0,0,0-.60679,0c-.1867.04668-.42008.04668-.74681.09335-.09335,0-.14,0-.18671.04668-.04667,0-.04667,0-.09335.04668a3.60574,3.60574,0,0,0-.88684.79349,3.54578,3.54578,0,0,1-1.30692.74682,4.56775,4.56775,0,0,0-1.12022.79348,8.34787,8.34787,0,0,1-1.63366.84017,5.59546,5.59546,0,0,1-2.10041.74682,2.17784,2.17784,0,0,0-1.12022.51343,3.21966,3.21966,0,0,1-1.68033.60679,2.34641,2.34641,0,0,1-1.587-.23338,2.08571,2.08571,0,0,1-.93352-1.30692c-.09335-.42008.14-.84017.60679-1.3536a2.49967,2.49967,0,0,1,1.63365-.70014,5.881,5.881,0,0,0,2.3338-.65346,3.57131,3.57131,0,0,1,1.30692-.42008,8.72135,8.72135,0,0,0,2.75388-1.21358Zm9.89528,5.64778a2.41284,2.41284,0,0,1-1.40027.23337,3.566,3.566,0,0,0-.9802-.23337c-.51344-.09335-.84017-.23338-.9802-.46676a2.50756,2.50756,0,0,0-.46675-.74682,1.05136,1.05136,0,0,1-.37341-.65346,1.57742,1.57742,0,0,0-.28006-.56011A1.8621,1.8621,0,0,1,73.3888,63.965a.88224.88224,0,0,1,.28005-.84017,1.13712,1.13712,0,0,1,1.30693.09335,6.01443,6.01443,0,0,1,.84016.60679,1.06393,1.06393,0,0,0,.51344.14,4.06671,4.06671,0,0,0,2.05373-.14,5.52359,5.52359,0,0,0,2.24045-.79349.574.574,0,0,1,.51343-.32673,4.69163,4.69163,0,0,0,1.68034-1.49363,5.86834,5.86834,0,0,1,.60678-.74681,5.67266,5.67266,0,0,0,1.12022-2.14709,3.64076,3.64076,0,0,0-.04668-2.19376A4.88091,4.88091,0,0,0,83.0507,54.023a.62051.62051,0,0,0-.32673-.14c-.32673,0-.60679.04668-.74682.04668a3.76983,3.76983,0,0,1-.88684.14,3.21256,3.21256,0,0,1-.60678.09335c-.14,0-.28006-.28006-.37341-.74681a9.20761,9.20761,0,0,0-.46676-1.26025c-.09335-.14-.14-.28006-.1867-.32673a1.36279,1.36279,0,0,0-.42008-.09335,2.50076,2.50076,0,0,0-1.30692-.04668,2.29776,2.29776,0,0,1-1.07355.09335h-.09335a1.95429,1.95429,0,0,1-.88684.9802,2.72789,2.72789,0,0,0-.65346.60678c-.51344.42009-.98019.79349-1.447,1.12023a2.86391,2.86391,0,0,0-.88684.79348,12.73455,12.73455,0,0,1-1.40028,1.02687,3.89589,3.89589,0,0,0-.74681.56011,6.2056,6.2056,0,0,1-1.12022.88684,2.2813,2.2813,0,0,0-.84017.65346,2.3289,2.3289,0,0,1-1.1669.65346,3.87953,3.87953,0,0,0-.98019.74682c-.32673.1867-.84016.42008-1.49362.74681a5.23871,5.23871,0,0,1-1.91371.60679c-.18671-.04668-.51344.14-.98019.42008a3.4451,3.4451,0,0,1-1.54031.56011,2.17387,2.17387,0,0,1-1.447-.28006,1.72106,1.72106,0,0,1-.79349-1.21357c-.09335-.32673.09335-.74682.56011-1.1669a2.248,2.248,0,0,1,1.49363-.60679,5.231,5.231,0,0,0,2.14709-.51343,3.78815,3.78815,0,0,1,1.16689-.37341,7.89709,7.89709,0,0,0,2.42714-1.12022,2.93708,2.93708,0,0,1,.93352-.60679,4.23037,4.23037,0,0,0,.88684-.60678,6.92819,6.92819,0,0,1,1.1669-.70014c.56011-.32673,1.21357-.70014,1.96038-1.1669.60679-.42008,1.02687-.70013,1.26025-.88684A4.03079,4.03079,0,0,1,72.922,52.296a8.25324,8.25324,0,0,0,1.49363-.98019l-.04668-.04667a1.18855,1.18855,0,0,1-.51344-1.12022,1.30772,1.30772,0,0,1,.84017-1.12022,4.32487,4.32487,0,0,1,1.49362-.23338c.46676.04667.9802.09335,1.49363.1867a2.26986,2.26986,0,0,0,1.30692.14,1.81989,1.81989,0,0,1,.74682-.09335,2.37434,2.37434,0,0,0,1.02687.1867,1.285,1.285,0,0,1,.84016.23338,7.56735,7.56735,0,0,0,1.68034.93352,2.118,2.118,0,0,1,1.02686.79349,8.20618,8.20618,0,0,0,1.447,1.26024.9424.9424,0,0,1,.42008.84017l.56011,1.12022a1.36663,1.36663,0,0,1,.32673,1.02687,2.3776,2.3776,0,0,0,.32673.79349.57393.57393,0,0,1,.04667.60678,1.38156,1.38156,0,0,0-.09335.98019c.18671.28006.09335.84017-.23337,1.63366a3.24775,3.24775,0,0,0-.09335.74682,3.66052,3.66052,0,0,1-.70014,1.727q-.91018,1.12023-1.26025,1.12022a1.47562,1.47562,0,0,0-.46676.65346,6.71157,6.71157,0,0,1-1.68033,1.447,10.88337,10.88337,0,0,1-3.08061,1.68034,5.989,5.989,0,0,1-1.54029.70014Zm-11.949-29.87254c-.70014-.18671-1.07355-.56011-1.07355-1.12023a1.41362,1.41362,0,0,1,.56011-1.26024,2.67629,2.67629,0,0,1,1.727-.60679c.42008-.04667.84016-.09335,1.30692-.1867a6.349,6.349,0,0,1,2.19377-.37341,16.61818,16.61818,0,0,1,2.38046.09335,6.69908,6.69908,0,0,0,2.38047.14,5.71471,5.71471,0,0,1,3.36066.42008,1.75021,1.75021,0,0,0,1.07354.23338,3.1465,3.1465,0,0,1,1.587.70014c.60679.37341.93352.70014.93352.98019a1.21729,1.21729,0,0,0,.42008.79349,2.51975,2.51975,0,0,1,.42008,1.867,5.38489,5.38489,0,0,0,.32673,1.12022,3.14285,3.14285,0,0,1,.28005,1.49363v2.19376a3.28914,3.28914,0,0,1-.74681,2.24044,3.48678,3.48678,0,0,1-1.77369,1.30693,3.9842,3.9842,0,0,1-2.33379.37341,4.80546,4.80546,0,0,0-1.68033.09335,2.36812,2.36812,0,0,1-1.49363.09335,1.92557,1.92557,0,0,0-1.35359-.09335,1.70364,1.70364,0,0,1-1.49363.09335,1.7936,1.7936,0,0,0-1.12022-.09335,7.15369,7.15369,0,0,1-.51343,1.26024,4.852,4.852,0,0,1-.98019.9802,3.73058,3.73058,0,0,0-.60679.60678,1.2758,1.2758,0,0,1-.70014.70014,2.87083,2.87083,0,0,0-.88684.56011,3.68456,3.68456,0,0,1-1.447.93352,10.02491,10.02491,0,0,0-1.21357.65346,2.336,2.336,0,0,1-1.54031.42008,3.15572,3.15572,0,0,0-1.5403.46676,1.9,1.9,0,0,1-1.07355.28005,1.65663,1.65663,0,0,0-.70014.04668,3.00033,3.00033,0,0,1-1.82035.09335c-.46676-.14-.74682-.32673-.74682-.46676-.04667-.1867-.09335-.32673-.1867-.32673a.87745.87745,0,0,1-.1867-.46676,1.33626,1.33626,0,0,1,.28-1.02686,2.46442,2.46442,0,0,1,.98019-.56011,2.84892,2.84892,0,0,1,1.40028-.04668,4.3713,4.3713,0,0,0,1.16689.09335,2.88451,2.88451,0,0,0,1.26025-.42008,2.09578,2.09578,0,0,1,1.26025-.46676,2.64721,2.64721,0,0,0,1.26024-.60679,2.46537,2.46537,0,0,1,1.12022-.51343,4.01268,4.01268,0,0,0,1.40028-1.07355,2.61592,2.61592,0,0,1,.46676-.70013,2.42632,2.42632,0,0,0-1.727.09335,3.0767,3.0767,0,0,1-1.77368-.14c-.84017-.23338-1.3536-.51344-1.54031-.93352a1.85429,1.85429,0,0,0-.79348-1.07354c-.37341-.23338-.51344-.70014-.42009-1.49363-.04667-1.1669-.09335-2.10041-.1867-2.84723a2.48792,2.48792,0,0,1-.04668-1.30692,5.95057,5.95057,0,0,0,.04668-.93352A3.65641,3.65641,0,0,1,62.56,38.15323a1.86833,1.86833,0,0,1,.60679-.79349,1.121,1.121,0,0,1,.70013-.28005,2.81775,2.81775,0,0,1,.74682.23338,1.47743,1.47743,0,0,1,.46675.84016,4.93869,4.93869,0,0,1,.09335,2.14709,8.89533,8.89533,0,0,0-.09335,2.66052,3.40758,3.40758,0,0,0,.60679,1.63366,2.18631,2.18631,0,0,0,1.3536,1.02686,5.057,5.057,0,0,0,2.98726-.09335,7.87031,7.87031,0,0,1,4.15414-.14,3.763,3.763,0,0,0,2.28712-.09335,6.75411,6.75411,0,0,1,2.24044-.23338,1.67876,1.67876,0,0,0,1.63365-.5601,2.47956,2.47956,0,0,0,.79349-1.3536,3.64151,3.64151,0,0,0-.1867-1.91371,3.87806,3.87806,0,0,1-.28006-1.30693,5.42769,5.42769,0,0,0-.1867-.84016c-.28006-.37341-.46676-.60679-.46676-.74682a1.0166,1.0166,0,0,0-.42008-.60678,2.18327,2.18327,0,0,1-.65345-.37341c-.23338-.32673-1.3536-.51344-3.36066-.60679a25.12078,25.12078,0,0,1-3.40734-.09335,5.28334,5.28334,0,0,0-3.40734.42008,3.07187,3.07187,0,0,1-2.42712.56013ZM71.195,40.02028a6.84281,6.84281,0,0,1,2.75388-.04668,3.71036,3.71036,0,0,0,1.867.09335,2.12625,2.12625,0,0,1,1.63365.09335,1.74983,1.74983,0,0,1,.70014,1.30693,1.49339,1.49339,0,0,1-.60679,1.02686,1.68473,1.68473,0,0,1-1.26024.04668,3.69183,3.69183,0,0,0-2.00706-.04668,2.7178,2.7178,0,0,1-2.00707.04668,5.82614,5.82614,0,0,0-2.47382.14,2.8189,2.8189,0,0,1-1.96038,0,1.47982,1.47982,0,0,1-.56011-1.1669,1.62726,1.62726,0,0,1,.56011-1.12022,1.26068,1.26068,0,0,1,1.30692-.23338,4.03373,4.03373,0,0,0,2.05374-.14Z"/><path id="black" d="M17.00439,71.43312H197.12647v1.49363H17.00439ZM116.0972,52.90281H126.926v2.80055h-6.768v2.10041h6.25456V60.4643H120.158v2.56717h6.95471v2.98725H116.05053V52.90281Zm12.27575,0h12.32243v3.22063h-4.15415v9.89528h-4.01412V56.12344H128.373V52.90281Zm38.97434,13.11591h4.2475l-4.901-13.11591h-4.43421l-4.901,13.11591h4.15414l.65346-2.14709h4.57423l.60681,2.14709Zm-4.34086-4.99431,1.447-4.71426,1.44695,4.71426Zm9.19514.65345,3.82743-.23337a3.25977,3.25977,0,0,0,.51343,1.40027,2.20093,2.20093,0,0,0,1.77368.79349,2.04183,2.04183,0,0,0,1.3536-.42008,1.21251,1.21251,0,0,0,.46676-.93352,1.14953,1.14953,0,0,0-.42008-.88684,4.803,4.803,0,0,0-2.05374-.74681,9.04382,9.04382,0,0,1-3.78074-1.587,3.23751,3.23751,0,0,1-1.1669-2.52049,3.49894,3.49894,0,0,1,2.33379-3.314,8.59394,8.59394,0,0,1,3.22063-.51343,6.709,6.709,0,0,1,3.82743.93351,4.0997,4.0997,0,0,1,1.587,2.98726l-3.82742.23338a1.82035,1.82035,0,0,0-.65346-1.26025,2.04191,2.04191,0,0,0-1.3536-.42008,1.73394,1.73394,0,0,0-1.07354.28005.97441.97441,0,0,0-.3734.74682.66049.66049,0,0,0,.32674.5601,3.07967,3.07967,0,0,0,1.3536.46676,14.58494,14.58494,0,0,1,3.78074,1.1669,4.31591,4.31591,0,0,1,1.68034,1.447,3.83059,3.83059,0,0,1,.51343,1.96038,4.15237,4.15237,0,0,1-.70013,2.3338,4.51913,4.51913,0,0,1-1.9604,1.63365,7.73487,7.73487,0,0,1-3.17395.56011c-2.24043,0-3.78074-.42008-4.6209-1.30693a5.45937,5.45937,0,0,1-1.40031-3.36066Zm13.9094-8.775h10.8288v2.80055h-6.768v2.10041h6.25456V60.4643h-6.25456v2.56717h6.9547v2.98725H186.111Zm-87.23715-3.454h4.0608l5.27437,9.19514V49.4488h4.0608V65.972H108.209l-5.27437-9.14846V65.972h-4.0608Zm44.48207,0H154.9315v3.54736h-7.23476V55.61h6.72132v3.36065h-6.72132V62.238h7.42147V65.972h-11.809V49.4488ZM93.13269,75.26054V89.02991h-3.594V80.02147a10.4962,10.4962,0,0,1-1.68033,1.12022,15.3795,15.3795,0,0,1-2.05374.84017V78.90125a8.65911,8.65911,0,0,0,2.80056-1.49363,6.59709,6.59709,0,0,0,1.587-2.14709h2.94058ZM111.803,76.75416a4.30978,4.30978,0,0,0-1.447-1.12021,6.69326,6.69326,0,0,0-2.38047-.37341,4.84533,4.84533,0,0,0-4.01412,1.727c-.9802,1.12022-1.447,2.94058-1.447,5.36772a9.53167,9.53167,0,0,0,.70014,4.01413,4.751,4.751,0,0,0,1.867,2.24044,5.72448,5.72448,0,0,0,3.03393.70014,5.61936,5.61936,0,0,0,2.66053-.56011,3.79408,3.79408,0,0,0,1.63365-1.68033,5.38444,5.38444,0,0,0,.60679-2.47382,4.601,4.601,0,0,0-1.1669-3.26731,3.67417,3.67417,0,0,0-2.8939-1.30693,3.38187,3.38187,0,0,0-1.5403.32673,4.36634,4.36634,0,0,0-1.30693,1.02687,8.21707,8.21707,0,0,1,.51344-2.84723,1.489,1.489,0,0,1,1.3536-.93352.9615.9615,0,0,1,.79348.32673,2.08436,2.08436,0,0,1,.46676,1.12022l3.50069-.46676a5.54922,5.54922,0,0,0-.9335-1.82035Zm-5.13435,6.16121a1.59824,1.59824,0,0,1,1.26025-.56011,1.48062,1.48062,0,0,1,1.21358.60679,2.71433,2.71433,0,0,1,.46675,1.727,2.49068,2.49068,0,0,1-.46675,1.68033,1.47982,1.47982,0,0,1-1.1669.56011,1.64049,1.64049,0,0,1-1.26025-.60679,2.71831,2.71831,0,0,1-.51343-1.727,2.65909,2.65909,0,0,1,.46675-1.68034Zm17.69015-3.50068-3.36066-.65346a4.54383,4.54383,0,0,1,1.587-2.61385,5.43221,5.43221,0,0,1,3.36066-.88684,5.338,5.338,0,0,1,3.594.98019,3.16871,3.16871,0,0,1,1.12022,2.47382,2.64946,2.64946,0,0,1-.46676,1.587,3.95391,3.95391,0,0,1-1.3536,1.26025,3.21292,3.21292,0,0,1,1.12022.46676,3.07553,3.07553,0,0,1,.98019,1.07354,3.52207,3.52207,0,0,1,.32673,1.63366,5.0136,5.0136,0,0,1-.56011,2.28711,3.66346,3.66346,0,0,1-1.68033,1.68033,6.3476,6.3476,0,0,1-2.8939.60679,7.42149,7.42149,0,0,1-2.75387-.42008,3.96355,3.96355,0,0,1-1.63366-1.26025,6.26078,6.26078,0,0,1-.98019-2.10041l3.54737-.51344a2.8017,2.8017,0,0,0,.65345,1.587,1.514,1.514,0,0,0,1.12022.42008,1.41611,1.41611,0,0,0,1.1669-.56011,2.12587,2.12587,0,0,0,.46676-1.49363,2.00354,2.00354,0,0,0-.46676-1.447,1.58091,1.58091,0,0,0-1.26025-.51344,5.04,5.04,0,0,0-1.16689.23338l.1867-2.7072a1.93315,1.93315,0,0,0,.46675.04668,1.54818,1.54818,0,0,0,1.1669-.46676,1.517,1.517,0,0,0,.46676-1.12021,1.33712,1.33712,0,0,0-.37341-.9802,1.30326,1.30326,0,0,0-.93352-.37341,1.53779,1.53779,0,0,0-1.02686.37341,2.92051,2.92051,0,0,0-.42008,1.40028ZM17.00439,79.228h2.75388l.98019,5.181,1.447-5.181h2.7072l1.44695,5.181.98019-5.181H30.027l-2.05373,9.28849H25.17266L23.539,82.682l-1.63365,5.83448H19.1048Zm19.04375,0h2.70719l.9802,5.181,1.447-5.181h2.7072l1.447,5.181,1.02686-5.181h2.7072L47.017,88.51647H44.21641L42.58275,82.682,40.9491,88.51647H38.14855Zm18.99706,0h2.7072l.9802,5.181,1.447-5.181h2.7072l1.44695,5.181.98019-5.181h2.7072l-2.05374,9.28849H63.1668L61.53315,82.682l-1.63366,5.83448H57.09894Zm20.63073,3.314H78.4298v2.56717H75.67593Zm63.9459,0h2.75387v2.56717h-2.75387Zm18.11023,2.14709,2.52049.74681a4.77292,4.77292,0,0,1-.79349,1.77369,3.385,3.385,0,0,1-1.3536,1.07354,5.04617,5.04617,0,0,1-2.05373.37341,6.20559,6.20559,0,0,1-2.47382-.42008,3.75958,3.75958,0,0,1-1.68033-1.5403,5.2519,5.2519,0,0,1-.70014-2.84723,4.94788,4.94788,0,0,1,1.21358-3.54737,4.54826,4.54826,0,0,1,3.454-1.26025,4.71253,4.71253,0,0,1,2.75387.70014,4.28624,4.28624,0,0,1,1.49363,2.19377l-2.56717.5601a1.84966,1.84966,0,0,0-.28006-.60678,1.62521,1.62521,0,0,0-.60678-.51344,1.53412,1.53412,0,0,0-.79349-.1867,1.68478,1.68478,0,0,0-1.49363.79349,3.11739,3.11739,0,0,0-.37341,1.82035,3.312,3.312,0,0,0,.46676,2.10041,1.62856,1.62856,0,0,0,1.30692.56011,1.55778,1.55778,0,0,0,1.26025-.46676,1.99783,1.99783,0,0,0,.70014-1.30691Zm10.87547,1.867a3.92544,3.92544,0,0,0,1.68033,1.587,6.05571,6.05571,0,0,0,2.61385.51343,5.22838,5.22838,0,0,0,2.56717-.56011,3.829,3.829,0,0,0,1.587-1.63365,5.61946,5.61946,0,0,0,.56011-2.66052,4.73147,4.73147,0,0,0-1.26025-3.50069,4.83915,4.83915,0,0,0-8.40167,3.54737,5.6477,5.6477,0,0,0,.65348,2.70719Zm2.80055-4.71426a1.71217,1.71217,0,0,1,1.40027-.60679,1.80663,1.80663,0,0,1,1.447.60679,3.02523,3.02523,0,0,1,.51343,1.91371,3.42785,3.42785,0,0,1-.51343,2.14709,1.68744,1.68744,0,0,1-1.447.60679,1.65306,1.65306,0,0,1-1.40027-.60679,3.23735,3.23735,0,0,1-.51344-2.00706,2.78873,2.78873,0,0,1,.51344-2.05374Zm21.70427-2.80055a2.33912,2.33912,0,0,0-1.867,1.02686,2.18746,2.18746,0,0,0-1.96039-1.02686,2.1187,2.1187,0,0,0-1.63365.70013v-.46675h-2.42715v8.82173h2.52049V82.822c0-1.26025.56011-1.26025.79349-1.26025.65346,0,.74682.37341.74682,1.30692v5.2277h2.52049v-5.2277c0-1.30692.65346-1.30692.88684-1.30692.42008,0,.65346.42008.65346,1.26025v5.27437h2.52049V82.12188c0-1.867-1.07352-3.0806-2.75385-3.0806Z"/></svg>
\ No newline at end of file
diff --git a/content/zh/case-studies/newyorktimes/newyorktimes_featured.png b/content/zh-cn/case-studies/newyorktimes/newyorktimes_featured.png
similarity index 100%
rename from content/zh/case-studies/newyorktimes/newyorktimes_featured.png
rename to content/zh-cn/case-studies/newyorktimes/newyorktimes_featured.png
diff --git a/content/zh/case-studies/newyorktimes/newyorktimes_logo.png b/content/zh-cn/case-studies/newyorktimes/newyorktimes_logo.png
similarity index 100%
rename from content/zh/case-studies/newyorktimes/newyorktimes_logo.png
rename to content/zh-cn/case-studies/newyorktimes/newyorktimes_logo.png
diff --git a/content/zh/case-studies/nokia/nokia_featured_logo.png b/content/zh-cn/case-studies/nokia/nokia_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/nokia/nokia_featured_logo.png
rename to content/zh-cn/case-studies/nokia/nokia_featured_logo.png
diff --git a/content/zh-cn/case-studies/nordstrom/index.html b/content/zh-cn/case-studies/nordstrom/index.html
new file mode 100644
index 0000000000..c76be9019e
--- /dev/null
+++ b/content/zh-cn/case-studies/nordstrom/index.html
@@ -0,0 +1,157 @@
+---
+title: 案例研究：Nordstrom
+case_study_styles: true
+cid: caseStudies
+
+new_case_study_styles: true
+heading_background: /images/case-studies/nordstrom/banner1.jpg
+heading_title_logo: /images/nordstrom_logo.png
+subheading: >
+  在艰难的零售环境下寻找数百万的潜在成本节约
+case_study_details:
+  - 公司: Nordstrom
+  - 地点: Seattle, Washington
+  - 行业: 零售
+---
+<!-- 
+<h2>Challenge</h2>
+-->
+<h2>挑战</h2>
+
+<!--
+<p>Nordstrom wanted to increase the efficiency and speed of its technology operations, which includes the Nordstrom.com e-commerce site. At the same time, Nordstrom Technology was looking for ways to tighten its technology operational costs.</p>
+-->
+<p>Nordstrom 希望提高其技术运营的效率和速度，其中包括 Nordstrom.com 电子商务网站。与此同时，Nordstrom 技术公司正在寻找压缩技术运营成本的方法。</p>
+
+<!-- 
+<h2>Solution</h2>
+-->
+<h2>解决方案</h2>
+
+<!-- 
+<p>After embracing a DevOps transformation and launching a continuous integration/continuous deployment (CI/CD) project four years ago, the company reduced its deployment time from three months to 30 minutes. But they wanted to go even faster across environments, so they began their cloud native journey, adopting Docker containers orchestrated with <a href="http://kubernetes.io/">Kubernetes</a>.</p>
+-->
+<p>在四年前采用 DevOps 转型并启动持续集成/部署 (CI/CD)项目后，该公司将部署时间从 3 个月缩短到 30 分钟。但是他们想在部署环境上走得更快，所以他们开始他们的云原生之旅，采用与 <a href="http://kubernetes.io/">Kubernetes</a> 协调的 Docker 容器。</p>
+
+<!--
+<h2>Impact</h2>
+-->
+<h2>影响</h2>
+
+<!-- 
+<p>Nordstrom Technology developers using Kubernetes now deploy faster and can "just focus on writing applications," says Dhawal Patel, a senior engineer on the team building a Kubernetes enterprise platform for Nordstrom. Furthermore, the team has increased Ops efficiency, improving CPU utilization from 5x to 12x depending on the workload. "We run thousands of virtual machines (VMs), but aren't effectively using all those resources," says Patel. "With Kubernetes, without even trying to make our cluster efficient, we are currently at a 10x increase."</p>
+-->
+<p>为 Nordstrom 构建 Kubernetes 企业平台的团队高级工程师 Dhawal Patel 说，“使用 Kubernetes 的 Nordstrom 技术开发人员现在项目部署得更快，并且能够只专注于编写应用程序。”此外，该团队还提高了运营效率，根据工作负载将 CPU 利用率从 5 倍提高到 12 倍。Patel 说：“我们运行了数千台虚拟机（VM），但无法有效地使用所有这些资源。借助 Kubernetes，我们甚至不需要尝试去提高集群的效率，就能使运营效率增长 10 倍。”</p>
+
+<!-- 
+{{< case-studies/quote author="Dhawal Patel, senior engineer at Nordstrom" >}}
+"We are always looking for ways to optimize and provide more value through technology. With Kubernetes we are showcasing two types of efficiency that we can bring: Dev efficiency and Ops efficiency. It's a win-win."
+{{< /case-studies/quote >}}
+-->
+{{< case-studies/quote author="Dhawal Patel， Nordstrom 高级工程师" >}}
+“我们一直在寻找通过技术进行优化和提供更多价值的方法。通过 Kubernetes，我们在开发效率和运营效率这两方面取得了示范性的提升。这是一个双赢。”
+{{< /case-studies/quote >}}
+
+<!-- 
+<p>When Dhawal Patel joined <a href="http://shop.nordstrom.com/">Nordstrom</a> five years ago as an application developer for the retailer's website, he realized there was an opportunity to help speed up development cycles.</p> -->
+<p>当 Dhawal Patel 五年前加入 <a href="http://shop.nordstrom.com/">Nordstrom</a>，担任该零售商网站的应用程序开发人员时，他意识到有机会帮助加快开发周期。</p>
+
+<!-- 
+<p>In those early DevOps days, Nordstrom Technology still followed a traditional model of silo teams and functions. "As a developer, I was spending more time fixing environments than writing code and adding value to business," Patel says. "I was passionate about that—so I was given the opportunity to help fix it."</p>
+-->
+<p>在早期的 DevOps 时代，Nordstrom 技术仍然遵循传统的孤岛团队和功能模型。Patel 说：“作为开发人员，我花在维护环境上的时间比编写代码和为业务增加价值的时间要多。我对此充满热情，因此我有机会参与帮助修复它。”</p>
+
+<!-- 
+<p>The company was eager to move faster, too, and in 2013 launched the first continuous integration/continuous deployment (CI/CD) project. That project was the first step in Nordstrom's cloud native journey.</p>
+-->
+<p>公司也渴望加快步伐，并在 2013 年启动了首个持续集成/部署（CI/CD）项目。该项目是 Nordstrom 云原生之旅的第一步。</p>
+
+<!-- 
+<p>Dev and Ops team members built a CI/CD pipeline, working with the company's servers on premise. The team chose <a href="https://www.chef.io/chef/">Chef</a>, and wrote cookbooks that automated virtual IP creation, servers, and load balancing. "After we completed the project, deployment went from three months to 30 minutes," says Patel. "We still had multiple environments—dev, test, staging, then production—so with each environment running the Chef cookbooks, it took 30 minutes. It was a huge achievement at that point."</p>
+-->
+<p>开发人员和运营团队成员构建了一个 CI/CD 管道，在内部使用公司的服务器。团队选择了 <a href="https://www.chef.io/chef/">Chef</a>，并编写了自动虚拟 IP 创建、服务器和负载均衡的指导手册。Patel 说：“项目完成后，部署时间从 3 个月减少到 30 分钟。我们仍有开发、测试、暂存、然后生产等多个环境需要重新部署。之后，每个运行 Chef 说明书的环境部署都只花 30 分钟。在那个时候，这是一个巨大的成就。”</p>
+
+<!-- 
+<p>But new environments still took too long to turn up, so the next step was working in the cloud. Today, Nordstrom Technology has built an enterprise platform that allows the company's 1,500 developers to deploy applications running as Docker containers in the cloud, orchestrated with Kubernetes.</p> -->
+<p>但是，新环境仍然需要很长时间才能出现，因此下一步是在云中工作。如今，Nordstrom  Technology 已经构建了一个企业平台，允许公司的 1500 名开发人员在云中部署以 Docker 容器身份运行的应用程序，这些应用程序由 Kubernetes 进行编排。</p>
+
+<!-- 
+{{< case-studies/quote image="/images/case-studies/nordstrom/banner3.jpg" >}}
+"We made a bet that Kubernetes was going to take off, informed by early indicators of community support and project velocity, so we rebuilt our system with Kubernetes at the core,"
+{{< /case-studies/quote >}}
+-->
+{{< case-studies/quote image="/images/case-studies/nordstrom/banner3.jpg" >}}
+“了解到早期的社区支持和项目迭代指标，我们肯定 Kubernetes 一定会成功的，因此我们以 Kubernetes 为核心重建了我们的系统。”
+{{< /case-studies/quote >}}
+
+<!-- 
+<p>"The cloud provided faster access to resources, because it took weeks for us to get a virtual machine (VM) on premises," says Patel. "But now we can do the same thing in only five minutes."</p>
+-->
+<p>Patel 说：“云提供了对资源的更快访问，因为我们在内部需要花数周时间才能部署一个虚拟机（VM）来提供服务。但现在我们可以做同样的事情，只需五分钟。”</p>
+
+<!-- 
+<p>Nordstrom's first foray into scheduling containers on a cluster was a homegrown system based on CoreOS fleet. They began doing a few proofs of concept projects with that system until Kubernetes 1.0 was released when they made the switch. "We made a bet that Kubernetes was going to take off, informed by early indicators of community support and project velocity, so we rebuilt our system with Kubernetes at the core," says Marius Grigoriu, Sr. Manager of the Kubernetes team at Nordstrom.</p>
+-->
+<p>Nordstrom 首次尝试在集群上调度容器，是基于 CoreOS fleet 的原生系统。他们开始使用该系统做一些概念验证项目，直到 Kubernetes 1.0 发布时才将正式项目迁移到里面。Nordstrom 的 Kubernetes 团队经理 Marius Grigoriu 表示：“了解到早期的社区支持和项目迭代指标，我们肯定 Kubernetes 一定会成功的，因此我们以 Kubernetes 为核心重建了我们的系统。”</p>
+
+<!-- 
+<p>While Kubernetes is often thought as a platform for microservices, the first application to launch on Kubernetes in a critical production role at Nordstrom was Jira. "It was not the ideal microservice we were hoping to get as our first application," Patel admits, "but the team that was working on it was really passionate about Docker and Kubernetes, and they wanted to try it out. They had their application running on premises, and wanted to move it to Kubernetes."</p>
+-->
+<p>虽然 Kubernetes 通常被视为微服务的平台，但在 Nordstrom 担任关键生产角色的 Kubernetes 上推出的第一个应用程序是 Jira。Patel 承认：“这不是我们希望作为第一个应用程序获得的理想微服务，但致力于此应用程序的团队对 Docker 和 Kubernetes 非常热情，他们希望尝试一下。他们的应用程序部署在内部运行，并希望将其移动到 Kubernetes。</p>
+
+<!-- 
+<p>The benefits were immediate for the teams that came on board. "Teams running on our Kubernetes cluster loved the fact that they had fewer issues to worry about. They didn't need to manage infrastructure or operating systems," says Grigoriu. "Early adopters loved the declarative nature of Kubernetes. They loved the reduced surface area they had to deal with."</p> -->
+<p>对于加入的团队来说，这些好处是立竿见影的。Grigoriu 说：“在我们的 Kubernetes 集群中运行的团队喜欢这样一个事实，即他们担心的问题更少，他们不需要管理基础设施或操作系统。早期使用者喜欢 Kubernetes 的声明特性，让他们不得不处理的面积减少。</p>
+
+<!-- 
+{{< case-studies/quote image="/images/case-studies/nordstrom/banner4.jpg">}}
+"Teams running on our Kubernetes cluster loved the fact that they had fewer issues to worry about. They didn't need to manage infrastructure or operating systems," says Grigoriu. "Early adopters loved the declarative nature of Kubernetes. They loved the reduced surface area they had to deal with."
+{{< /case-studies/quote >}}
+-->
+{{< case-studies/quote image="/images/case-studies/nordstrom/banner4.jpg">}}
+Grigoriu 说：“在我们的 Kubernetes 集群中运行的团队喜欢这样一个事实，即他们担心的问题更少，他们不需要管理基础设施或操作系统。早期使用者喜欢 Kubernetes 的声明特性，让他们不得不处理的面积减少。”
+{{< /case-studies/quote >}}
+
+<!-- 
+<p>To support these early adopters, Patel's team began growing the cluster and building production-grade services. "We integrated with <a href="https://prometheus.io/">Prometheus</a> for monitoring, with a <a href="https://grafana.com/">Grafana</a> front end; we used <a href="http://www.fluentd.org/">Fluentd</a> to push logs to <a href="https://www.elastic.co/">Elasticsearch</a>, so that gives us log aggregation," says Patel. The team also added dozens of open-source components, including CNCF projects and has made contributions to Kubernetes, Terraform, and kube2iam.</p>
+-->
+<p>为了支持这些早期使用者，Patel 的团队开始发展集群并构建生产级服务。“我们与 <a href="https://prometheus.io/">Prometheus</a> 集成了监控功能，并配有 <a href="https://grafana.com/">Grafana</a> 前端；我们使用 <a href="http://www.fluentd.org/">Fluentd</a> 将日志推送到 <a href="https://www.elastic.co/">Elasticsearch</a>，从而提供日志聚合”Patel 说。该团队还增加了数十个开源组件，包括 CNCF 项目，而且把这些成果都贡献给了 Kubernetes、Terraform 和 kube2iam。</p>
+
+<!-- 
+<p>There are now more than 60 development teams running Kubernetes in Nordstrom Technology, and as success stories have popped up, more teams have gotten on board. "Our initial customer base, the ones who were willing to try this out, are now going and evangelizing to the next set of users," says Patel. "One early adopter had Docker containers and he was not sure how to run it in production. We sat with him and within 15 minutes we deployed it in production. He thought it was amazing, and more people in his org started coming in."</p>
+-->
+<p>现在有 60 多个开发团队在 Nordstrom 上运行 Kubernetes，随着成功案例的涌现，更多的团队加入进来。Patel 说：“我们最初的客户群，那些愿意尝试这些的客户群，现在已经开始向后续用户宣传。一个早期使用者拥有 Docker 容器，他不知道如何在生产中运行它。我们和他一起协作，在 15 分钟内，我们将其部署到生产中。他认为这是惊人的，他所在的组织更多的人开始加入进来。”</p>
+
+<!-- 
+<p>For Nordstrom Technology, going cloud-native has vastly improved development and operational efficiency. The developers using Kubernetes now deploy faster and can focus on building value in their applications.  One such team started with a 25-minute merge to deploy by launching virtual machines in the cloud. Switching to Kubernetes was a 5x speedup in their process, improving their merge to deploy time to 5 minutes.</p>
+-->
+<p>对于 Nordstrom 而言，云原生极大地提高了开发和运营效率。现在，使用 Kubernetes 的开发人员部署速度更快，可以专注于在其应用程序中构建价值。一个团队从 25 分钟的合并开始，通过在云中启动虚拟机来进行部署。切换到 Kubernetes 的过程速度是原来 5 倍，将合并时间缩短为 5 分钟。</p>
+
+<!-- 
+{{< case-studies/quote >}}
+"With Kubernetes, without even trying to make our cluster efficient, we are currently at 40 percent CPU utilization—a 10x increase. we are running 2600+ customer pods that would have been 2600+ VMs if they had gone directly to the cloud. We are running them on 40 VMs now, so that's a huge reduction in operational overhead."
+{{< /case-studies/quote >}}
+-->
+{{< case-studies/quote >}}
+“借助 Kubernetes，我们甚至不需要尝试去提高集群的效率，目前 CPU 利用率为 40%，较之前增长了 10 倍。我们正在运行 2600 多个客户 Pod，如果它们直接进入云，这些 Pod 将是 2600 多个 VM。我们现在在 40 台 VM 上运行它们，因此这大大降低了运营开销。
+{{< /case-studies/quote >}}
+
+<!-- 
+<p>Speed is great, and easily demonstrated, but perhaps the bigger impact lies in the operational efficiency. "We run thousands of VMs on AWS, and their overall average CPU utilization is about four percent," says Patel. "With Kubernetes, without even trying to make our cluster efficient, we are currently at 40 percent CPU utilization—a 10x increase. We are running 2600+ customer pods that would have been 2600+ VMs if they had gone directly to the cloud. We are running them on 40 VMs now, so that's a huge reduction in operational overhead."</p>
+-->
+<p>速度很重要，并且很容易证明，但也许更大的影响在于运营效率。Patel 说：“我们在 AWS 上运行了数千个 VM，它们的总体平均 CPU 利用率约为 4%。借助 Kubernetes，我们甚至不需要尝试去提高集群的效率，目前 CPU 利用率为 40%，较之前增长了 10 倍。我们正在运行 2600 多个客户 Pod，如果它们直接上云，这些 Pod 将是 2600 多个 VM。我们现在在 40 台 VM 上运行它们，因此这大大降低了运营开销。</p>
+
+<!-- 
+<p>Nordstrom Technology is also exploring running Kubernetes on bare metal on premises. "If we can build an on-premises Kubernetes cluster," says Patel, "we could bring the power of cloud to provision resources fast on-premises. Then for the developer, their interface is Kubernetes; they might not even realize or care that their services are now deployed on premises because they're only working with Kubernetes."</p>
+-->
+<p>Patel 说：“如果我们能构建一个本地 Kubernetes 集群，我们就能将云的力量带到本地快速调配资源。之后对于开发人员来说，他们面向的接口是 Kubernetes；他们甚至可能没有意识到或不关心他们的服务现在部署在内部，因为他们只与 Kubernetes 一起工作。</p>
+
+<!-- 
+<p>For that reason, Patel is eagerly following Kubernetes' development of multi-cluster capabilities. "With cluster federation, we can have our on-premise as the primary cluster and the cloud as a secondary burstable cluster," he says. "So, when there is an anniversary sale or Black Friday sale, and we need more containers - we can go to the cloud."</p>
+-->
+<p>因此，Patel 热切关注 Kubernetes 多集群能力的发展。他说：“有了集群联合，我们可以将内部部署作为主集群，将云作为辅助可突发集群。因此，当有周年销售或黑色星期五销售并且我们需要更多的容器时，我们可以上云。”</p>
+
+<!-- 
+<p>That kind of possibility—as well as the impact that Grigoriu and Patel's team has already delivered using Kubernetes—is what led Nordstrom on its cloud native journey in the first place. "The way the retail environment is today, we are trying to build responsiveness and flexibility where we can," says Grigoriu.  "Kubernetes makes it easy to: bring efficiency to both the Dev and Ops side of the equation. It's a win-win."</p>
+-->
+<p>这种可能性以及 Grigoriu 和 Patel 的团队已经使用Kubernetes所提供的影响，是 Nordstrom 最初在云原生之旅中所起的作用。Grigoriu 说：“在当下的零售模式下，我们正在努力在力所能及的地方建立响应能力和灵活性。Kubernetes 使得为开发端和运维端同时带来效率的提升，这是一个双赢。”</p>
diff --git a/content/zh/case-studies/nordstrom/nordstrom_featured_logo.png b/content/zh-cn/case-studies/nordstrom/nordstrom_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/nordstrom/nordstrom_featured_logo.png
rename to content/zh-cn/case-studies/nordstrom/nordstrom_featured_logo.png
diff --git a/content/zh/case-studies/northwestern-mutual/northwestern_featured_logo.png b/content/zh-cn/case-studies/northwestern-mutual/northwestern_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/northwestern-mutual/northwestern_featured_logo.png
rename to content/zh-cn/case-studies/northwestern-mutual/northwestern_featured_logo.png
diff --git a/content/zh/case-studies/ocado/ocado_featured_logo.png b/content/zh-cn/case-studies/ocado/ocado_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/ocado/ocado_featured_logo.png
rename to content/zh-cn/case-studies/ocado/ocado_featured_logo.png
diff --git a/content/zh/case-studies/openAI/openai_featured.png b/content/zh-cn/case-studies/openAI/openai_featured.png
similarity index 100%
rename from content/zh/case-studies/openAI/openai_featured.png
rename to content/zh-cn/case-studies/openAI/openai_featured.png
diff --git a/content/zh/case-studies/openAI/openai_logo.png b/content/zh-cn/case-studies/openAI/openai_logo.png
similarity index 100%
rename from content/zh/case-studies/openAI/openai_logo.png
rename to content/zh-cn/case-studies/openAI/openai_logo.png
diff --git a/content/zh/case-studies/peardeck/peardeck_featured.png b/content/zh-cn/case-studies/peardeck/peardeck_featured.png
similarity index 100%
rename from content/zh/case-studies/peardeck/peardeck_featured.png
rename to content/zh-cn/case-studies/peardeck/peardeck_featured.png
diff --git a/content/zh/case-studies/peardeck/peardeck_logo.png b/content/zh-cn/case-studies/peardeck/peardeck_logo.png
similarity index 100%
rename from content/zh/case-studies/peardeck/peardeck_logo.png
rename to content/zh-cn/case-studies/peardeck/peardeck_logo.png
diff --git a/content/zh/case-studies/pearson/pearson_featured.png b/content/zh-cn/case-studies/pearson/pearson_featured.png
similarity index 100%
rename from content/zh/case-studies/pearson/pearson_featured.png
rename to content/zh-cn/case-studies/pearson/pearson_featured.png
diff --git a/content/zh/case-studies/pearson/pearson_logo.png b/content/zh-cn/case-studies/pearson/pearson_logo.png
similarity index 100%
rename from content/zh/case-studies/pearson/pearson_logo.png
rename to content/zh-cn/case-studies/pearson/pearson_logo.png
diff --git a/content/zh/case-studies/pingcap/pingcap_featured_logo.png b/content/zh-cn/case-studies/pingcap/pingcap_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/pingcap/pingcap_featured_logo.png
rename to content/zh-cn/case-studies/pingcap/pingcap_featured_logo.png
diff --git a/content/zh/case-studies/pinterest/pinterest_feature.png b/content/zh-cn/case-studies/pinterest/pinterest_feature.png
similarity index 100%
rename from content/zh/case-studies/pinterest/pinterest_feature.png
rename to content/zh-cn/case-studies/pinterest/pinterest_feature.png
diff --git a/content/zh/case-studies/pinterest/pinterest_logo.png b/content/zh-cn/case-studies/pinterest/pinterest_logo.png
similarity index 100%
rename from content/zh/case-studies/pinterest/pinterest_logo.png
rename to content/zh-cn/case-studies/pinterest/pinterest_logo.png
diff --git a/content/zh/case-studies/prowise/prowise_featured_logo.png b/content/zh-cn/case-studies/prowise/prowise_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/prowise/prowise_featured_logo.png
rename to content/zh-cn/case-studies/prowise/prowise_featured_logo.png
diff --git a/content/zh/case-studies/ricardo-ch/ricardo-ch_featured_logo.png b/content/zh-cn/case-studies/ricardo-ch/ricardo-ch_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/ricardo-ch/ricardo-ch_featured_logo.png
rename to content/zh-cn/case-studies/ricardo-ch/ricardo-ch_featured_logo.png
diff --git a/content/zh/case-studies/slamtec/slamtec_featured_logo.png b/content/zh-cn/case-studies/slamtec/slamtec_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/slamtec/slamtec_featured_logo.png
rename to content/zh-cn/case-studies/slamtec/slamtec_featured_logo.png
diff --git a/content/zh/case-studies/slingtv/slingtv_featured_logo.png b/content/zh-cn/case-studies/slingtv/slingtv_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/slingtv/slingtv_featured_logo.png
rename to content/zh-cn/case-studies/slingtv/slingtv_featured_logo.png
diff --git a/content/zh/case-studies/sos/sos_featured_logo.png b/content/zh-cn/case-studies/sos/sos_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/sos/sos_featured_logo.png
rename to content/zh-cn/case-studies/sos/sos_featured_logo.png
diff --git a/content/zh/case-studies/spotify/spotify_featured_logo.png b/content/zh-cn/case-studies/spotify/spotify_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/spotify/spotify_featured_logo.png
rename to content/zh-cn/case-studies/spotify/spotify_featured_logo.png
diff --git a/content/zh/case-studies/squarespace/index.html b/content/zh-cn/case-studies/squarespace/index.html
similarity index 100%
rename from content/zh/case-studies/squarespace/index.html
rename to content/zh-cn/case-studies/squarespace/index.html
diff --git a/content/zh/case-studies/squarespace/squarespace_featured_logo.png b/content/zh-cn/case-studies/squarespace/squarespace_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/squarespace/squarespace_featured_logo.png
rename to content/zh-cn/case-studies/squarespace/squarespace_featured_logo.png
diff --git a/content/zh-cn/case-studies/squarespace/squarespace_featured_logo.svg b/content/zh-cn/case-studies/squarespace/squarespace_featured_logo.svg
new file mode 100644
index 0000000000..a69d7ea5c8
--- /dev/null
+++ b/content/zh-cn/case-studies/squarespace/squarespace_featured_logo.svg
@@ -0,0 +1 @@
+<svg id="Layer_1" data-name="Layer 1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" viewBox="0 0 215 127"><defs><style>.cls-1{fill:none;}.cls-2{fill:transparent;}.cls-3{clip-path:url(#clip-path);}.cls-4{opacity:0;}.cls-5{fill:#fff;}</style><clipPath id="clip-path"><rect class="cls-1" x="-22.24825" y="-20.68295" width="259.58299" height="168.36589"/></clipPath></defs><title>kubernetes.io-logos2</title><rect class="cls-2" x="-3.35417" y="-4.36563" width="223.25536" height="134.51136"/><g class="cls-3"><g class="cls-3"><g class="cls-3"><g class="cls-4"><g class="cls-3"><rect class="cls-5" x="-22.24825" y="-20.68295" width="259.58299" height="168.36589"/></g></g><path d="M83.75577,45.77057,109.38051,20.1463a9.23932,9.23932,0,0,1,13.0504-.00228l1.99724,1.99725,3.99268-3.99359L126.424,16.15043a14.89159,14.89159,0,0,0-21.03666.00227L79.76264,41.77744Z"/><path d="M117.96109,28.6071,113.968,24.614,88.34321,50.23827A9.22787,9.22787,0,1,1,75.29327,37.18786L97.4032,15.07794l-3.99312-3.9936L71.29968,33.19428A14.87565,14.87565,0,0,0,92.3368,54.23185Z"/><path d="M143.46831,33.19446a14.89214,14.89214,0,0,0-21.03712.00227L96.8069,58.821,100.8,62.8146l25.62384-25.62474a9.22835,9.22835,0,0,1,13.05085,13.05086L117.36432,72.35065l3.99268,3.99313,22.11131-22.10993a14.89462,14.89462,0,0,0,0-21.03939"/><path d="M131.01227,41.65786,105.38752,67.28215a9.23971,9.23971,0,0,1-13.05085.00228l-1.99634-1.99771-3.99357,3.994,1.99679,1.99634a14.891,14.891,0,0,0,21.0371-.00136L135.0054,45.65145Z"/><path d="M21.34317,109.82072a3.04721,3.04721,0,0,0,1.16,1.90286,3.88127,3.88127,0,0,0,2.39887.68753,3.40793,3.40793,0,0,0,2.26364-.67573,2.21582,2.21582,0,0,0,.79962-1.77942,1.80379,1.80379,0,0,0-.21375-.91217,1.91386,1.91386,0,0,0-.59722-.63126,3.71742,3.71742,0,0,0-.94575-.43838q-.56364-.1804-1.26161-.383l-1.21623-.33765a10.90917,10.90917,0,0,1-1.93689-.71022,5.996,5.996,0,0,1-1.464-.97933,3.79909,3.79909,0,0,1-.92352-1.29519,4.26571,4.26571,0,0,1-.3154-1.70046,4.3187,4.3187,0,0,1,.40526-1.87017,4.196,4.196,0,0,1,1.14861-1.46356,5.57223,5.57223,0,0,1,1.8021-.95755,7.62622,7.62622,0,0,1,2.38753-.34853,6.13228,6.13228,0,0,1,3.96409,1.18173,4.64821,4.64821,0,0,1,1.71225,3.16537l-2.70293.2251a2.71177,2.71177,0,0,0-.99114-1.57656,3.36313,3.36313,0,0,0-2.07212-.56364,2.96359,2.96359,0,0,0-1.93735.575,1.82479,1.82479,0,0,0-.69842,1.47536,1.70253,1.70253,0,0,0,.20286.86679,1.86732,1.86732,0,0,0,.58587.60811,4.2783,4.2783,0,0,0,.93441.46108q.55207.20286,1.25027.42886l1.14906.36033a20.28489,20.28489,0,0,1,1.94778.70931,5.73449,5.73449,0,0,1,1.47536.88994,3.51279,3.51279,0,0,1,.93486,1.23892,4.30414,4.30414,0,0,1,.32674,1.77941,4.68,4.68,0,0,1-.45063,2.06078,4.54928,4.54928,0,0,1-1.26116,1.5879,5.93675,5.93675,0,0,1-1.926,1.01337,8.005,8.005,0,0,1-2.466.36079,7.07205,7.07205,0,0,1-4.16739-1.1713,5.09034,5.09034,0,0,1-2.04944-3.53659Z"/><path d="M42.40321,100.40567a5.05247,5.05247,0,0,0-2.17379.45018,4.65366,4.65366,0,0,0-1.62148,1.24755,5.574,5.574,0,0,0-1.01383,1.88787,7.74383,7.74383,0,0,0-.349,2.3721,7.63011,7.63011,0,0,0,.36033,2.38344,5.8321,5.8321,0,0,0,1.02517,1.911,4.72687,4.72687,0,0,0,1.62148,1.27024,4.95578,4.95578,0,0,0,2.17379.46016,5.16389,5.16389,0,0,0,2.17332-.43793,4.59764,4.59764,0,0,0,1.62194-1.22576,5.57217,5.57217,0,0,0,1.02472-1.89922,7.88793,7.88793,0,0,0,.36033-2.43926,7.70241,7.70241,0,0,0-.36033-2.40568,5.596,5.596,0,0,0-1.02472-1.88833,4.69422,4.69422,0,0,0-1.63328-1.2362,5.12533,5.12533,0,0,0-2.18467-.45018m.02269-2.43246a8.69773,8.69773,0,0,1,3.33327.61946,7.31689,7.31689,0,0,1,2.5677,1.73449,7.84359,7.84359,0,0,1,1.64418,2.66889,9.56586,9.56586,0,0,1,.58587,3.4009,9.20492,9.20492,0,0,1-.61946,3.45763,7.72193,7.72193,0,0,1-1.76807,2.66935l2.16244,2.545v.78828H47.584l-1.50939-1.84658a8.61237,8.61237,0,0,1-1.68911.56273,9.42215,9.42215,0,0,1-5.30465-.4166,7.22556,7.22556,0,0,1-2.545-1.73449,7.7965,7.7965,0,0,1-1.62148-2.658,10.22169,10.22169,0,0,1,0-6.75733,7.714,7.714,0,0,1,1.63283-2.65755,7.47307,7.47307,0,0,1,2.55634-1.74583,8.49175,8.49175,0,0,1,3.3224-.63035"/><path d="M61.30048,112.5011a3.4596,3.4596,0,0,0,2.70293-1.06964,4.76432,4.76432,0,0,0,.96844-3.27746V98.28893H67.81v9.93223a8.89779,8.89779,0,0,1-.45064,3.007,5.26044,5.26044,0,0,1-1.28385,2.05034,5.02832,5.02832,0,0,1-2.04943,1.1713,10.2438,10.2438,0,0,1-5.46214,0,5.03113,5.03113,0,0,1-2.03854-1.1713,5.26056,5.26056,0,0,1-1.28385-2.05034,8.89847,8.89847,0,0,1-.45018-3.007V98.28893H57.6291V108.154a4.762,4.762,0,0,0,.96845,3.27746,3.4596,3.4596,0,0,0,2.70293,1.06964"/><path d="M75.85075,107.41064h5.33778L80.3104,104.843q-.5187-1.50849-.83321-2.45469-.31585-.94621-.56364-1.66687h-.698c-.09032.25459-.18017.51054-.27.76513q-.13547.38394-.30405.85636-.16952.47241-.37214,1.08144-.20217.60722-.49511,1.41863ZM70.7376,113.6724l5.74395-15.38392h4.2568l5.67588,15.38392v.78828H83.62145l-1.62194-4.61758H74.99485l-1.62149,4.61758H70.7376Z"/><path d="M92.78822,105.67679h2.45514a4.75958,4.75958,0,0,0,2.55635-.59132,2.11188,2.11188,0,0,0,.93531-1.9319,1.9923,1.9923,0,0,0-.94666-1.897,5.16838,5.16838,0,0,0-2.545-.535H92.78822Zm9.4825,8.78362H99.54509l-4.93253-6.35162H92.78822v6.35162H89.99543V98.28866h5.24793a15.71776,15.71776,0,0,1,2.35349.16882,4.86465,4.86465,0,0,1,2.01631.77693,4.25165,4.25165,0,0,1,1.91465,3.80525,5.18729,5.18729,0,0,1-.32719,1.926,4.366,4.366,0,0,1-.8668,1.39594,4.49127,4.49127,0,0,1-1.24981.934,6.52871,6.52871,0,0,1-1.47581.54049l4.66252,5.83608Z"/><polygon points="105.829 98.289 116.303 98.289 116.303 100.766 108.6 100.766 108.6 105.001 115.763 105.001 115.763 107.433 108.6 107.433 108.6 111.983 116.461 111.983 116.461 114.461 105.829 114.461 105.829 98.289"/><path d="M122.76784,109.82072a3.04326,3.04326,0,0,0,1.15995,1.90286,3.88125,3.88125,0,0,0,2.39887.68753,3.41037,3.41037,0,0,0,2.26363-.67573,2.2158,2.2158,0,0,0,.79963-1.77942,1.7992,1.7992,0,0,0-.2142-.91217,1.9124,1.9124,0,0,0-.59677-.63126,3.7175,3.7175,0,0,0-.94576-.43838q-.56364-.1804-1.26251-.383l-1.21532-.33765a10.91445,10.91445,0,0,1-1.93735-.71022,5.97556,5.97556,0,0,1-1.46355-.97933,3.79568,3.79568,0,0,1-.92443-1.29519,4.62136,4.62136,0,0,1,.09077-3.57063,4.1803,4.1803,0,0,1,1.14861-1.46356,5.56736,5.56736,0,0,1,1.8021-.95755,7.61827,7.61827,0,0,1,2.38662-.34853,6.13663,6.13663,0,0,1,3.965,1.18173,4.64772,4.64772,0,0,1,1.7118,3.16537l-2.70293.2251a2.71337,2.71337,0,0,0-.99069-1.57656,3.36544,3.36544,0,0,0-2.07257-.56364,2.96306,2.96306,0,0,0-1.93689.575,1.82476,1.82476,0,0,0-.69842,1.47536,1.70263,1.70263,0,0,0,.20285.86679,1.86115,1.86115,0,0,0,.58542.60811,4.2783,4.2783,0,0,0,.93441.46108q.55275.20286,1.24982.42886l1.14951.36033a20.34075,20.34075,0,0,1,1.94824.70931,5.72039,5.72039,0,0,1,1.47444.88994,3.50988,3.50988,0,0,1,.93578,1.23892,4.31143,4.31143,0,0,1,.32675,1.77941,4.67976,4.67976,0,0,1-.45065,2.06078,4.55166,4.55166,0,0,1-1.26206,1.5879,5.92737,5.92737,0,0,1-1.9251,1.01337,8.01205,8.01205,0,0,1-2.46649.36079,7.07057,7.07057,0,0,1-4.16693-1.1713,5.09281,5.09281,0,0,1-2.05034-3.53659Z"/><path d="M139.25492,105.81167h2.70293a6.99954,6.99954,0,0,0,1.36282-.123,3.163,3.163,0,0,0,1.081-.413,2.01427,2.01427,0,0,0,.72111-.78147,2.56339,2.56339,0,0,0,.25868-1.20579,2.68333,2.68333,0,0,0-.25868-1.23847,2.03758,2.03758,0,0,0-.70977-.79282,3.04557,3.04557,0,0,0-1.06964-.413,6.91337,6.91337,0,0,0-1.34012-.123h-2.74832Zm-2.81546-7.52292h5.90142a8.57388,8.57388,0,0,1,2.7592.383,4.69283,4.69283,0,0,1,1.80211,1.05876,3.95026,3.95026,0,0,1,.99067,1.5879,6.19993,6.19993,0,0,1,.30407,1.97047,5.35076,5.35076,0,0,1-.41661,2.19557,3.945,3.945,0,0,1-1.20488,1.54343,5.41106,5.41106,0,0,1-1.91465.91217,9.772,9.772,0,0,1-2.545.304h-2.86087V114.461h-2.81546Z"/><path d="M154.05337,107.41064h5.3378L158.513,104.843q-.51937-1.50849-.83365-2.45469-.31587-.94621-.56275-1.66687h-.69842c-.0903.25459-.18061.51054-.27046.76513q-.13479.38394-.30452.85636-.16814.47241-.37077,1.08144-.20286.60722-.49557,1.41863Zm-5.11359,6.26176,5.74395-15.38392h4.2568l5.67587,15.38392v.78828h-2.79232l-1.62194-4.61758H153.197l-1.62148,4.61758h-2.63576Z"/><path d="M181.73469,110.18151a8.06646,8.06646,0,0,1-1.002,1.78123,6.67187,6.67187,0,0,1-1.498,1.46129,7.19083,7.19083,0,0,1-2.03855.988,8.60057,8.60057,0,0,1-2.5795.36441,8.2413,8.2413,0,0,1-3.27656-.63171,7.35915,7.35915,0,0,1-2.51821-1.74447,7.76712,7.76712,0,0,1-1.6106-2.658,10.14495,10.14495,0,0,1,0-6.68971,7.79273,7.79273,0,0,1,1.621-2.66935,7.554,7.554,0,0,1,2.53047-1.76762,8.16893,8.16893,0,0,1,3.2997-.64214,7.6378,7.6378,0,0,1,4.44831,1.23891,6.66469,6.66469,0,0,1,2.5341,3.28836l-2.86039.56228a4.75208,4.75208,0,0,0-1.63374-1.94824,4.41145,4.41145,0,0,0-2.53412-.70886,4.75669,4.75669,0,0,0-2.12794.46017,4.56027,4.56027,0,0,0-1.577,1.268,5.73869,5.73869,0,0,0-.97933,1.90738,7.98114,7.98114,0,0,0-.33763,2.35577,7.71393,7.71393,0,0,0,.349,2.36756,5.54472,5.54472,0,0,0,1.01338,1.88515,4.67815,4.67815,0,0,0,1.6106,1.24436,4.971,4.971,0,0,0,2.16152.44974,4.22859,4.22859,0,0,0,2.60219-.76605,5.33727,5.33727,0,0,0,1.5879-1.86972Z"/><polygon points="185.541 98.289 196.015 98.289 196.015 100.766 188.311 100.766 188.311 105.001 195.474 105.001 195.474 107.433 188.311 107.433 188.311 111.983 196.173 111.983 196.173 114.461 185.541 114.461 185.541 98.289"/></g></g></g></svg>
\ No newline at end of file
diff --git a/content/zh/case-studies/thredup/thredup_featured_logo.png b/content/zh-cn/case-studies/thredup/thredup_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/thredup/thredup_featured_logo.png
rename to content/zh-cn/case-studies/thredup/thredup_featured_logo.png
diff --git a/content/zh/case-studies/vsco/vsco_featured_logo.png b/content/zh-cn/case-studies/vsco/vsco_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/vsco/vsco_featured_logo.png
rename to content/zh-cn/case-studies/vsco/vsco_featured_logo.png
diff --git a/content/zh-cn/case-studies/wikimedia/index.html b/content/zh-cn/case-studies/wikimedia/index.html
new file mode 100644
index 0000000000..8800c5f19e
--- /dev/null
+++ b/content/zh-cn/case-studies/wikimedia/index.html
@@ -0,0 +1,148 @@
+---
+title: 案例研究：Wikimedia
+case_study_styles: true
+cid: caseStudies
+
+new_case_study_styles: true
+heading_title_text: Wikimedia
+use_gradient_overlay: true
+subheading: >
+  利用 Kubernetes 构建工具提升世界的维基
+case_study_details:
+  - 公司: Wikimedia
+  - 地点: 加州旧金山
+---
+<!--
+title: Wikimedia Case Study
+case_study_styles: true
+cid: caseStudies
+
+new_case_study_styles: true
+heading_title_text: Wikimedia
+use_gradient_overlay: true
+subheading: >
+  Using Kubernetes to Build Tools to Improve the World's Wikis
+case_study_details:
+  - Company: Wikimedia
+  - Location: San Francisco, CA
+-->
+
+<!--
+<p>The non-profit Wikimedia Foundation operates some of the largest collaboratively edited reference projects in the world, including Wikipedia. To help users maintain and use wikis, it runs Wikimedia Tool Labs, a hosting environment for community developers working on tools and bots to help editors and other volunteers do their work, including reducing vandalism. The community around Wikimedia Tool Labs began forming nearly 10 years ago.</p>
+-->
+<p>非营利的 Wikimedia 基金会运营着一些世界上最大的合作编辑参考项目，包括 Wikipedia。为了帮助用户维护和使用 wiki，它运行 Wikimedia 工具实验室，这是一个托管环境，为社区开发人员工作的工具和机器人，以帮助编辑和其他志愿者做他们的工作，包括减少破坏。Wikimedia 工具实验室周围的社区在近 10 年前开始形成。</p>
+
+<!--
+{{< case-studies/quote author="Yuvi Panda, operations engineer at Wikimedia Foundation and Wikimedia Tool Labs">}}
+
+<img src="/images/wikimedia_logo.png" alt="Wikimedia">
+<br>
+<br>
+"Wikimedia Tool Labs is vital for making sure wikis all around the world work as well as they possibly can. Because it's grown organically for almost 10 years, it has become an extremely challenging environment and difficult to maintain. It's like a big ball of mud — you really can't see through it. With Kubernetes, we're simplifying the environment and making it easier for developers to build the tools that make wikis run better."
+{{< /case-studies/quote >}}
+-->
+{{< case-studies/quote author="Yuvi Panda, Wikimedia 基金会和 Wikimedia 工具实验室的运维工程师">}}
+
+<img src="/images/wikimedia_logo.png" alt="Wikimedia">
+<br>
+<br>
+“Wikimedia 工具实验室对于确保世界各地的 wiki 尽可能正常运行至关重要。因为它有机地生长了近 10 年，所以它已成为一个极具挑战性且难以维护的环境。它就像一个大的泥球，你真的看不透它。借助 Kubernetes，我们正在简化环境并让开发人员更容易构建出使 wiki 更好运行的工具。”
+{{< /case-studies/quote >}}
+
+<!--
+<h2>Challenges</h2>
+-->
+<h2>挑战</h2>
+
+<!--
+<ul>
+  <li>Simplify a complex, difficult-to-manage infrastructure</li>
+  <li>Allow developers to continue writing tools and bots using existing techniques</li>
+</ul>
+-->
+<ul>
+  <li>简化复杂、难以管理的基础架构</li>
+  <li>允许开发人员使用现有技术继续编写工具和机器人</li>
+</ul>
+
+<!--
+<h2>Why Kubernetes</h2>
+-->
+<h2>为什么要使用 Kubernetes</h2>
+
+<ul>
+<!--
+  <li>Wikimedia Tool Labs chose Kubernetes because it can mimic existing workflows, while reducing complexity</li>
+-->
+  <li>Wikimedia 工具实验室之所以选择 Kubernetes，是因为它可以模仿现有的工作流程，同时降低复杂性。</li>
+</ul>
+
+<!--
+<h2>Approach</h2>
+-->
+<h2>解决方案</h2>
+
+<ul>
+<!--
+  <li>Migrate old systems and a complex infrastructure to Kubernetes</li>
+-->
+  <li>将旧系统和复杂的基础设施迁移到 Kubernetes</li>
+</ul>
+
+<!--
+<h2>Results</h2>
+-->
+<h2>结果</h2>
+
+<!--
+<ul>
+  <li>20 percent of web tools that account for more than 40 percent of web traffic now run on Kubernetes</li>
+  <li>A 25-node cluster that keeps up with each new Kubernetes release</li>
+  <li>Thousands of lines of old code have been deleted, thanks to Kubernetes</li>
+</ul>
+-->
+<ul>
+  <li>现在占 Web 流量 40% 以上的 20% Web 工具都在 Kubernetes 上运行</li>
+  <li>一个 25 节点集群可跟上每个新 Kubernetes 版本</li>
+  <li>多亏了 Kubernetes，数千行旧代码可被删除</li>
+</ul>
+
+<!--
+<h2>Using Kubernetes to provide tools for maintaining wikis</h2>
+-->
+<h2>使用 Kubernetes 提供维护 wiki 的工具</h2>
+
+<!--
+<p>Wikimedia Tool Labs is run by a staff of four-and-a-half paid employees and two volunteers. The infrastructure didn't make it easy or intuitive for developers to build bots and other tools to make wikis work more easily. Yuvi says, "It's incredibly chaotic. We have lots of Perl and Bash duct tape on top of it. Everything is super fragile."</p>
+-->
+<p>Wikimedia 工具实验室由四个半带薪员工和两名志愿者管理。基础架构无法使开发人员轻松或直观地构建机器人和其他工具，使 wiki 更易于工作。Yuvi 说，“它非常混乱，我们有很多的 Perl 和 Bash 缠绕在上面，一切都是超级脆弱。”</p>
+
+<!--
+<p>To solve the problem, Wikimedia Tool Labs migrated parts of its infrastructure to Kubernetes, in preparation for eventually moving its entire system. Yuvi said Kubernetes greatly simplifies maintenance. The goal is to allow developers creating bots and other tools to use whatever development methods they want, but make it easier for the Wikimedia Tool Labs to maintain the required infrastructure for hosting and sharing them.</p>
+-->
+<p>为了解决这个问题，Wikimedia 工具实验室将其部分基础设施迁移到了 Kubernetes，为最终迁移整个系统做准备。Yuvi 说，Kubernetes 大大简化了维护。目标是允许创建机器人和其他工具的开发人员使用他们想要的任何开发方法，但使 Wikimedia 工具实验室更容易维护托管和共享它们所需的基础结构。</p>
+
+<!--
+<p>"With Kubernetes, I've been able to remove a lot of our custom-made code, which makes everything easier to maintain. Our users' code also runs in a more stable way than previously," says Yuvi.</p>
+-->
+<p>Yuvi 说：“借助 Kubernetes，我能够删除大量我们定制的代码，这使得所有内容更易于维护，我们的用户代码也以比以前更稳定的方式运行。”</p>
+
+<!--
+<h2>Simplifying infrastructure and keeping wikis running better</h2>
+-->
+<h2>简化基础架构让 wiki 更好地运行</h2>
+
+<!--
+<p>Wikimedia Tool Labs has seen great success with the initial Kubernetes deployment. Old code is being simplified and eliminated, contributing developers don't have to change the way they write their tools and bots, and those tools and bots run in a more stable fashion than they have in the past. The paid staff and volunteers are able to better keep up with fixing issues.</p>
+-->
+<p>Wikimedia 工具实验室在最初的 Kubernetes 部署中取得了巨大成功。旧代码正在被简化和消除，使开发人员不必改变他们编写工具和机器人的方式，这些工具和机器人的运行方式比过去更稳定。带薪员工和志愿者能够更好地解决问题。</p>
+
+<!--
+<p>In the future, with a more complete migration to Kubernetes, Wikimedia Tool Labs expects to make it even easier to host and maintain the bots and tools that help run wikis across the world. The tool labs already host approximately 1,300 tools and bots from 800 volunteers, with many more being submitted every day. Twenty percent of the tool labs' web tools that account for more than 60 percent of web traffic now run on Kubernetes. The tool labs has a 25-node cluster that keeps up with each new Kubernetes release. Many existing web tools are migrating to Kubernetes.</p>
+-->
+<p>将来，随着更完整的迁移到 Kubernetes，Wikimedia 工具实验室希望更轻松地托管和维护有助于在世界各地运行 wiki 的机器人和工具。该工具实验室已经拥有来自 800 名志愿者的大约 1300 个工具和机器人，而且每天提交量会更多。占 Web 流量 60% 以上的工具实验室的 Web 工具中有 20% 现在运行在 Kubernetes 上。工具实验室有一个 25 节点的集群，可以跟上每个新的 Kubernetes 版本。许多现有的 Web 工具正在迁移到 Kubernetes。</p>
+
+<!--
+<p>"Our goal is to make sure that people all over the world can share knowledge as easily as possible. Kubernetes helps with that, by making it easier for wikis everywhere to have the tools they need to thrive," says Yuvi.</p>
+-->
+<p>Yuvi 说：“我们的目标是确保世界各地的人们能够尽可能轻松地分享知识，Kubernetes 帮助实现了这一点，它让世界各地的 wiki 更容易拥有蓬勃发展所需的工具。”</p>
diff --git a/content/zh/case-studies/wikimedia/wikimedia_featured.png b/content/zh-cn/case-studies/wikimedia/wikimedia_featured.png
similarity index 100%
rename from content/zh/case-studies/wikimedia/wikimedia_featured.png
rename to content/zh-cn/case-studies/wikimedia/wikimedia_featured.png
diff --git a/content/zh-cn/case-studies/wikimedia/wikimedia_featured.svg b/content/zh-cn/case-studies/wikimedia/wikimedia_featured.svg
new file mode 100644
index 0000000000..5fa786aaa5
--- /dev/null
+++ b/content/zh-cn/case-studies/wikimedia/wikimedia_featured.svg
@@ -0,0 +1 @@
+<svg id="Layer_1" data-name="Layer 1" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 215 127"><defs><style>.cls-1{fill:transparent;}.cls-2{fill:#900;}.cls-3{fill:#069;}.cls-4{fill:#396;}.cls-5{fill:#484848;}</style></defs><title>kubernetes.io-logos2</title><rect class="cls-1" x="-3.75123" y="-4.36563" width="223.25536" height="134.51136"/><circle id="circle3" class="cls-2" cx="107.84735" cy="21.48597" r="15.77727"/><path id="path5" class="cls-3" d="M139.7013,18.0353l-8.93976,8.9394a34.71,34.71,0,1,1-45.8277,0l-8.93975-8.93975a47.33269,47.33269,0,1,0,63.70721.00035Z"/><path id="path7" class="cls-4" d="M104.69189,46.73345,89.41109,31.45229a28.38989,28.38989,0,0,0,15.2808,49.812Zm21.59242-15.28116L111.00315,46.7331V81.26427a28.39011,28.39011,0,0,0,15.28116-49.812Z"/><path id="path9" class="cls-5" d="M170.3688,119.11393h-4.10315l-1.08337-2.69545H159.411l-1.103,2.69545h-4.10314l5.87686-13.29007h4.42955Zm-6.10686-5.00735-1.94656-4.85378-1.9648,4.85378Zm-11.848,5.00735h-3.99937V105.82386h3.999v13.29007Zm-6.49357-6.40066a6.31385,6.31385,0,0,1-.74329,3.27677,7.01233,7.01233,0,0,1-1.74987,2.003,6.32532,6.32532,0,0,1-3.99445,1.12088h-7.16393V105.82387h5.51678a14.9088,14.9088,0,0,1,2.13134.13008,9.38954,9.38954,0,0,1,1.59455.365,6.28678,6.28678,0,0,1,1.20678.52942,6.20368,6.20368,0,0,1,.89089.63,6.10431,6.10431,0,0,1,1.19346,1.31337,6.40745,6.40745,0,0,1,.81516,1.75478A7.42171,7.42171,0,0,1,145.92035,112.71327Zm-4.0758-.1725a4.43822,4.43822,0,0,0-.61812-2.5247,3.02773,3.02773,0,0,0-1.48516-1.21205,5.25783,5.25783,0,0,0-1.76775-.30678h-1.7057v7.86689h1.7057a4.88661,4.88661,0,0,0,2.7214-.74714Q141.84454,114.86915,141.84455,112.54077Zm-12.2684,6.57316H119.566V105.82386h9.84712v2.67337H123.565v2.4325h5.57919v2.67337H123.565v2.83815h6.01113Zm-13.38193,0h-3.99936v-7.70246l-3.61614,4.45935h-.3166l-3.62632-4.45935v7.70246h-3.88962V105.82386h3.63052l4.08632,4.98562,4.10524-4.98562h3.62632l-.00036,13.29007Zm-18.80965,0H93.38591V105.82386h3.99866Zm-5.76291,0h-4.8892l-5.081-6.22326v6.22326H77.65282V105.82386h3.99866v5.94978l4.81312-5.94978H90.817l-4.9467,6.22325Zm-17.34132,0h-3.999V105.82386h3.999v13.29007Zm-5.859-13.29041-5.752,13.46537h-2.32L56.898,111.455l-3.53761,7.83394H51.02114l-5.637-13.46537h4.15118l2.761,7.36272,3.16351-7.36272h2.86656l3.10567,7.36272,2.88548-7.36272Z"/></svg>
\ No newline at end of file
diff --git a/content/zh/case-studies/wikimedia/wikimedia_logo.png b/content/zh-cn/case-studies/wikimedia/wikimedia_logo.png
similarity index 100%
rename from content/zh/case-studies/wikimedia/wikimedia_logo.png
rename to content/zh-cn/case-studies/wikimedia/wikimedia_logo.png
diff --git a/content/zh/case-studies/wink/index.html b/content/zh-cn/case-studies/wink/index.html
similarity index 100%
rename from content/zh/case-studies/wink/index.html
rename to content/zh-cn/case-studies/wink/index.html
diff --git a/content/zh/case-studies/wink/wink_featured.png b/content/zh-cn/case-studies/wink/wink_featured.png
similarity index 100%
rename from content/zh/case-studies/wink/wink_featured.png
rename to content/zh-cn/case-studies/wink/wink_featured.png
diff --git a/content/zh/case-studies/wink/wink_logo.png b/content/zh-cn/case-studies/wink/wink_logo.png
similarity index 100%
rename from content/zh/case-studies/wink/wink_logo.png
rename to content/zh-cn/case-studies/wink/wink_logo.png
diff --git a/content/zh/case-studies/woorank/woorank_featured_logo.png b/content/zh-cn/case-studies/woorank/woorank_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/woorank/woorank_featured_logo.png
rename to content/zh-cn/case-studies/woorank/woorank_featured_logo.png
diff --git a/content/zh/case-studies/workiva/index.html b/content/zh-cn/case-studies/workiva/index.html
similarity index 100%
rename from content/zh/case-studies/workiva/index.html
rename to content/zh-cn/case-studies/workiva/index.html
diff --git a/content/zh/case-studies/workiva/workiva_featured_logo.png b/content/zh-cn/case-studies/workiva/workiva_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/workiva/workiva_featured_logo.png
rename to content/zh-cn/case-studies/workiva/workiva_featured_logo.png
diff --git a/content/zh/case-studies/yahoo-japan/index.html b/content/zh-cn/case-studies/yahoo-japan/index.html
similarity index 100%
rename from content/zh/case-studies/yahoo-japan/index.html
rename to content/zh-cn/case-studies/yahoo-japan/index.html
diff --git a/content/zh/case-studies/yahoo-japan/yahooJapan_logo.png b/content/zh-cn/case-studies/yahoo-japan/yahooJapan_logo.png
similarity index 100%
rename from content/zh/case-studies/yahoo-japan/yahooJapan_logo.png
rename to content/zh-cn/case-studies/yahoo-japan/yahooJapan_logo.png
diff --git a/content/zh-cn/case-studies/ygrene/index.html b/content/zh-cn/case-studies/ygrene/index.html
new file mode 100644
index 0000000000..3c42589c1d
--- /dev/null
+++ b/content/zh-cn/case-studies/ygrene/index.html
@@ -0,0 +1,187 @@
+---
+title: 案例研究：Ygrene
+linkTitle: Ygrene
+case_study_styles: true
+cid: caseStudies
+logo: ygrene_featured_logo.png
+featured: true
+weight: 48
+quote: >
+  我们必须改变一些实践和代码，以及构建的方式，但我们能够在一个月左右的时间内将我们的主要系统安装到 Kubernetes 上，然后在两个月内投入生产。这对于金融公司来说是非常快的。
+
+new_case_study_styles: true
+heading_background: /images/case-studies/ygrene/banner1.jpg
+heading_title_logo: /images/ygrene_logo.png
+subheading: >
+  Ygrene: 使用原生云为金融行业带来安全性和可扩展性
+case_study_details:
+  - 公司: Ygrene
+  - 地点: Petaluma， Calif
+  - 行业: 清洁能源融资
+---
+<!-- 
+title: Ygrene Case Study
+linkTitle: Ygrene
+case_study_styles: true
+cid: caseStudies
+logo: ygrene_featured_logo.png
+featured: true
+weight: 48
+quote: >
+  We had to change some practices and code, and the way things were built, but we were able to get our main systems onto Kubernetes in a month or so, and then into production within two months. That's very fast for a finance company.
+
+new_case_study_styles: true
+heading_background: /images/case-studies/ygrene/banner1.jpg
+heading_title_logo: /images/ygrene_logo.png
+subheading: >
+  Ygrene: Using Cloud Native to Bring Security and Scalability to the Finance Industry
+case_study_details:
+  - Company: Ygrene
+  - Location: Petaluma, Calif.
+  - Industry: Clean energy financing 
+-->
+
+<!--
+<h2>Challenges</h2>
+-->
+<h2>挑战</h2>
+
+<!-- 
+<p>A PACE (Property Assessed Clean Energy) financing company, Ygrene has funded more than $1 billion in loans since 2010. In order to approve and process those loans, "We have lots of data sources that are being aggregated, and we also have lots of systems that need to churn on that data," says Ygrene Development Manager Austin Adams. The company was utilizing massive servers, and "we just reached the limit of being able to scale them vertically. We had a really unstable system that became overwhelmed with requests just for doing background data processing in real time. The performance the users saw was very poor. We needed a solution that wouldn't require us to make huge refactors to the code base." As a finance company, Ygrene also needed to ensure that they were shipping their applications securely.</p> 
+-->
+<p>作为一家 PACE（清洁能源资产评估）融资公司，Ygrene 自 2010 年以来已经为超过 10 亿的贷款提供资金。为了批准和处理这些贷款，“我们有很多正在聚合的数据源，而且我们也有许多系统需要对这些数据进行改动，”Ygrene 开发经理 Austin Adams 说。该公司正在使用大量服务器，“我们刚刚达到能够垂直扩展它们的极限。我们有一个非常不稳定的系统，它变得不知所措，要求只是做后台数据处理的实时。用户看到的性能很差。我们需要一个解决方案，不需要我们对代码库进行大量重构。作为一家金融公司，Ygrene 还需要确保他们安全地传输应用程序。”</p>
+
+<!-- 
+<h2>Solution</h2>
+-->
+<h2>解决方案</h2>
+
+<!-- 
+<p>Moving from an Engine Yard platform and Amazon Elastic Beanstalk, the Ygrene team embraced cloud native technologies and practices: <a href="https://kubernetes.io/">Kubernetes</a> to help scale out vertically and distribute workloads, <a href="https://github.com/theupdateframework/notary">Notary</a> to put in build-time controls and get trust on the Docker images being used with third-party dependencies, and <a href="https://www.fluentd.org/">Fluentd</a> for "observing every part of our stack," all running on <a href="https://aws.amazon.com/ec2/spot/">Amazon EC2 Spot</a>.</p>
+-->
+<p>从 Engine Yard 和 Amazon Elastic Beanstalk 上迁移了应用后，Ygrene 团队采用云原生技术和实践：使用<a href="https://kubernetes.io/"> Kubernetes </a>来帮助垂直扩展和分配工作负载，使用<a href="https://github.com/theupdateframework/notary"> Notary </a>加入构建时间控制和获取使用第三方依赖的可信赖 Docker 镜像，使用<a href="https://www.fluentd.org/"> Fluentd </a>“掌握堆栈中的所有情况”，这些都运行在 <a href="https://aws.amazon.com/ec2/spot/"> Amazon EC2 Spot </a>上。</p>
+
+<!--
+<h2>Impact</h2>
+-->
+<h2>影响</h2>
+
+<!--
+<p>Before, deployments typically took three to four hours, and two or three months' worth of work would be deployed at low-traffic times every week or two weeks. Now, they take five minutes for Kubernetes, and an hour for the overall deploy with smoke testing. And "we're able to deploy three or four times a week, with just one week's or two days' worth of work," Adams says. "We're deploying during the work week, in the daytime and without any downtime. We had to ask for business approval to take the systems down, even in the middle of the night, because people could be doing loans. Now we can deploy, ship code, and migrate databases, all without taking the system down. The company gets new features without worrying that some business will be lost or delayed." Additionally, by using the kops project, Ygrene can now run its Kubernetes clusters with AWS EC2 Spot, at a tenth of the previous cost. These cloud native technologies have "changed the game for scalability, observability, and security—we're adding new data sources that are very secure," says Adams. "Without Kubernetes, Notary, and Fluentd, we couldn't tell our investors and team members that we knew what was going on."</p>
+-->
+<p>以前，部署通常需要三到四个小时，而且每周或每两周要把一些两三个月工作量的任务在系统占用低的时候进行部署。现在，他们用 5 分钟来配置 Kubernetes，然后用一个小时进行整体部署与烟雾测试。Adams 说：“我们每周可以部署三到四次，只需一周或两天的工作量。”“我们在工作周、白天的任意时间进行部署，甚至不需要停机。以前我们不得不请求企业批准，以关闭系统，因为即使在半夜，人们也可能正在访问服务。现在，我们可以部署、上传代码和迁移数据库，而无需关闭系统。公司获得新功能，而不必担心某些业务会丢失或延迟。”此外，通过使用 kops 项目，Ygrene 现在可以用以前成本的十分之一使用 AWS EC2 Spot 运行其 Kubernetes 集群。Adams 说，这些云原生技术“改变了可扩展性、可观察性和安全性（我们正在添加新的非常安全的数据源）的游戏。”“没有 Kubernetes、Notary 和 Fluent，我们就无法告诉投资者和团队成员，我们知道刚刚发生了什么事情。”</p>
+
+<!--
+{{< case-studies/quote author="Austin Adams, Development Manager, Ygrene Energy Fund" >}}
+"CNCF projects are helping Ygrene determine the security and observability standards for the entire PACE industry. We're an emerging finance industry, and without these projects, especially Kubernetes, we couldn't be the industry leader that we are today."
+{{< /case-studies/quote >}}
+-->
+{{< case-studies/quote author="Austin Adams, Ygrene 能源基金会开发经理" >}}
+“CNCF 项目正在帮助 Ygrene 确定整个 PACE 行业的安全性和可观察性标准。我们是一个新兴的金融企业，没有这些项目，尤其是 Kubernetes，我们不可能成为今天的行业领导者。”
+{{< /case-studies/quote >}}
+
+<!--
+{{< case-studies/lead >}}
+In less than a decade, <a href="https://ygrene.com/">Ygrene</a> has funded more than $1 billion in loans for renewable energy projects.
+{{< /case-studies/lead >}}
+-->
+{{< case-studies/lead >}}
+在不到十年的时间里，<a href="https://ygrene.com/"> Ygrene </a>就为可再生能源项目提供了超过 10 亿美元的贷款。
+{{< /case-studies/lead >}}
+
+<!--
+<p>A <a href="https://www.energy.gov/eere/slsc/property-assessed-clean-energy-programs">PACE</a> (Property Assessed Clean Energy) financing company, "We take the equity in a home or a commercial building, and use it to finance property improvements for anything that saves electricity, produces electricity, saves water, or reduces carbon emissions," says Development Manager Austin Adams.</p>
+-->
+<p><a href="https://www.energy.gov/eere/slsc/property-assessed-clean-energy-programs"> PACE </a>（清洁能源物业评估）融资公司开发经理 Austin Adams 表示：“我们抵押房屋或商业建筑，用贷款来为任何可以节约电力、生产电力、节约用水或减少碳排放的项目提供资金支持。”</p>
+
+<!--
+<p>In order to approve those loans, the company processes an enormous amount of underwriting data. "We have tons of different points that we have to validate about the property, about the company, or about the person," Adams says. "So we have lots of data sources that are being aggregated, and we also have lots of systems that need to churn on that data in real time."</p>
+-->
+<p>为了批准这些贷款，公司需要处理大量的承销数据。Adams 说：“我们必须要验证有关财产、公司或人员的问题，像这样的工作数以千计。因此，我们有很多正在聚合的数据源，并且我们也有大量系统需要实时对这些数据进行改动。”</p>
+
+<!--
+<p>By 2017, deployments and scalability had become pain points. The company was utilizing massive servers, and "we just reached the limit of being able to scale them vertically," he says. Migrating to AWS Elastic Beanstalk didn't solve the problem: "The Scala services needed a lot of data from the main Ruby on Rails services and from different vendors, so they were asking for information from our Ruby services at a rate that those services couldn't handle. We had lots of configuration misses with Elastic Beanstalk as well. It just came to a head, and we realized we had a really unstable system."</p>
+-->
+<p>到 2017 年，部署和可扩展性已成为痛点。该公司已经使用了大量服务器，“我们刚刚达到能够垂直扩展的极限，”他说。迁移到 AWS Elastic Beanstalk 并不能解决问题：“Scala 服务需要来自主 Ruby on Rails 服务和不同供应商提供的大量数据，因此他们要求从我们的 Ruby 服务以一种服务器无法承受的速率获取信息。在 Elastic Beanstalk 上我们也有许多配置与应用不匹配。这仅仅是一个开始，我们也意识到我们这个系统非常不稳定。”</p>
+
+<!--
+{{< case-studies/quote
+  image="/images/case-studies/ygrene/banner3.jpg"
+  author="Austin Adams, Development Manager, Ygrene Energy Fund"
+>}}
+"CNCF has been an amazing incubator for so many projects. Now we look at its webpage regularly to find out if there are any new, awesome, high-quality projects we can implement into our stack. It's actually become a hub for us for knowing what software we need to be looking at to make our systems more secure or more scalable."
+{{< /case-studies/quote >}}
+-->
+{{< case-studies/quote
+  image="/images/case-studies/ygrene/banner3.jpg"
+  author="Austin Adams, Ygrene 能源基金会开发经理"
+>}}
+“CNCF 是众多项目惊人的孵化器。现在，我们定期查看其网页，了解是否有任何新的、可敬的高质量项目可以应用到我们的系统中。它实际上已成为我们了解自身需要什么样的软件以使我们的系统更加安全和具有可伸缩性的信息中心。”
+{{< /case-studies/quote >}}
+
+<!--
+<p>Adams along with the rest of the team set out to find a solution that would be transformational, but "wouldn't require us to make huge refactors to the code base," he says. And as a finance company, Ygrene needed security as much as scalability. They found the answer by embracing cloud native technologies: Kubernetes to help scale out vertically and distribute workloads, Notary to achieve reliable security at every level, and Fluentd for observability. "Kubernetes was where the community was going, and we wanted to be future proof," says Adams.</p> -->
+<p>Adams 和其他团队一起着手寻找一种具有变革性的解决方案，但“不需要我们对代码库进行巨大的重构，”他说。作为一家金融公司，和可伸缩性一样，Ygrene 需要更好的安全性。他们通过采用云原生技术找到了答案：Kubernetes 帮助纵向扩展和分配工作负载，Notary 在各个级别实现可靠的安全性，Fluentd 来提供可观察性。Adams 说：“Kubernetes 是社区前进的方向，也是我们展望未来的证明。”</p>
+
+<!-- 
+<p>With Kubernetes, the team was able to quickly containerize the Ygrene application with Docker. "We had to change some practices and code, and the way things were built," Adams says, "but we were able to get our main systems onto Kubernetes in a month or so, and then into production within two months. That's very fast for a finance company."</p>
+-->
+<p>有了 Kubernetes，该团队能够快速将 Ygrene 应用程序用 Docker 容器化。“我们必须改变一些实现和代码，以及系统的构建方式，” Adams 说，“但我们已经能够在一个月左右的时间内将主要系统引入 Kubernetes，然后在两个月内投入生产。对于一家金融公司来说，这已经非常快了。”</p>
+
+<!-- 
+<p>How? Cloud native has "changed the game for scalability, observability, and security—we're adding new data sources that are very secure," says Adams. "Without Kubernetes, Notary, and Fluentd, we couldn't tell our investors and team members that we knew what was going on."</p>
+-->
+<p>怎么样？Adams 说，这些云原生技术“改变了可扩展性、可观察性和安全性（我们正在添加新的非常安全的数据源）的游戏。”“没有 Kubernetes、Notary 和 Fluent，我们就无法告诉投资者和团队成员，我们知道刚刚发生了什么事情。”</p>
+
+<!-- 
+<p>Notary, in particular, "has been a godsend," says Adams. "We need to know that our attack surface on third-party dependencies is low, or at least managed. We use it as a trust system and we also use it as a separation, so production images are signed by Notary, but some development images we don't sign. That is to ensure that they can't get into the production cluster. We've been using it in the test cluster to feel more secure about our builds."</p>
+-->
+<p>Adams 说，尤其 Notary 简直就是“天赐之物”。“我们要清楚，我们针对第三方依赖项的攻击面较低，或者至少是托管的。因为我们使用 Notary 作为一个信任系统，我们也使用它作为区分，所以生产镜像由 Notary 签名，但一些开发镜像就不签署。这是为了确保未签名镜像无法进入生产集群。我们已经在测试集群中使用它，以使构建的应用更安全。”</p>
+
+<!-- 
+{{< case-studies/quote image="/images/case-studies/ygrene/banner4.jpg">}}
+"We had to change some practices and code, and the way things were built," Adams says, "but we were able to get our main systems onto Kubernetes in a month or so, and then into production within two months. That's very fast for a finance company."
+{{< /case-studies/quote >}}
+-->
+{{< case-studies/quote image="/images/case-studies/ygrene/banner4.jpg">}}
+“我们必须改变一些实现和代码，以及系统的构建方式，” Adams 说，“但我们已经能够在一个月左右的时间内将主要系统引入 Kubernetes，然后在两个月内投入生产。对于一家金融公司来说，这已经非常快了。”
+{{< /case-studies/quote >}}
+
+<!-- 
+<p>By using the kops project, Ygrene was able to move from Elastic Beanstalk to running its Kubernetes clusters on AWS EC2 Spot, at a tenth of the previous cost. "In order to scale before, we would need to up our instance sizes, incurring high cost for low value," says Adams. "Now with Kubernetes and kops, we are able to scale horizontally on Spot with multiple instance groups."</p>
+-->
+<p>通过使用 kops 项目，Ygrene 能够用以前成本的十分之一从 Elastic Beanstalk 迁移到 AWS EC2 Spot 上运行其 Kubernetes 集群。Adams 说：“以前为了扩展，我们需要增加实例大小，导致高成本产出低价值。现在，借助 Kubernetes 和 kops，我们能够在具有多个实例组的 Spot 上水平缩放。”</p>
+
+<!-- 
+<p>That also helped them mitigate the risk that comes with running in the public cloud. "We figured out, essentially, that if we're able to select instance classes using EC2 Spot that had an extremely low likelihood of interruption and zero history of interruption, and we're willing to pay a price high enough, that we could virtually get the same guarantee using Kubernetes because we have enough nodes," says Software Engineer Zach Arnold, who led the migration to Kubernetes. "Now that we've re-architected these pieces of the application to not live on the same server, we can push out to many different servers and have a more stable deployment."</p>
+-->
+<p>这也帮助他们降低了在公共云中运行所带来的风险。“我们发现，基本上，如果我们能够使用中断可能性极低、无中断历史的 EC2 Spot 选择实例类，并且我们愿意付出足够高的价格，我们几乎可以得到和使用 Kubernetes 相同的保证，因为我们有足够的节点，”软件工程师 Zach Arnold 说，他领导了向 Kubernetes 的迁移。“现在，我们已经重新架构了应用程序的这些部分，使之不再位于同一台服务器上，我们可以推送到许多不同的服务器，并实现更稳定的部署。”</p>
+
+<!-- 
+<p>As a result, the team can now ship code any time of day. "That was risky because it could bring down your whole loan management software with it," says Arnold. "But we now can deploy safely and securely during the day."</p>
+-->
+<p>因此，团队现在可以在一天中的任何时间传输代码。阿诺德说：“以前这样做是很危险的，因为它会拖慢整个贷款管理软件。”“但现在，我们可以在白天安全部署。”</p>
+
+<!-- 
+{{< case-studies/quote >}}
+"In order to scale before, we would need to up our instance sizes, incurring high cost for low value," says Adams. "Now with Kubernetes and kops, we are able to scale horizontally on Spot with multiple instance groups."
+{{< /case-studies/quote >}}
+-->
+{{< case-studies/quote >}}
+Adams 说：“以前为了扩展，我们需要增加实例大小，导致高成本产出低价值。现在，借助 Kubernetes 和 kops，我们能够在具有多个实例组的 Spot 上水平缩放。”
+{{< /case-studies/quote >}}
+
+<!-- 
+<p>Before, deployments typically took three to four hours, and two or three months' worth of work would be deployed at low-traffic times every week or two weeks. Now, they take five minutes for Kubernetes, and an hour for an overall deploy with smoke testing. And "we're able to deploy three or four times a week, with just one week's or two days' worth of work," Adams says. "We're deploying during the work week, in the daytime and without any downtime. We had to ask for business approval to take the systems down for 30 minutes to an hour, even in the middle of the night, because people could be doing loans. Now we can deploy, ship code, and migrate databases, all without taking the system down. The company gets new features without worrying that some business will be lost or delayed."</p>
+-->
+<p>以前，部署通常需要三到四个小时，而且每周或每两周要把一些两三个月工作量的任务在系统占用低的时候进行部署。现在，他们用5分钟来配置 Kubernetes，然后用一个小时进行整体部署与烟雾测试。Adams 说：“我们每周可以部署三到四次，只需一周或两天的工作量。”“我们在工作周、白天的任意时间进行部署，甚至不需要停机。以前我们不得不请求企业批准，以关闭系统，因为即使在半夜，人们也可能正在访问服务。现在，我们可以部署、上传代码和迁移数据库，而无需关闭系统。公司增加新项目，而不必担心某些业务会丢失或延迟。”</p>
+
+<!-- 
+<p>Cloud native also affected how Ygrene's 50+ developers and contractors work. Adams and Arnold spent considerable time "teaching people to think distributed out of the box," says Arnold. "We ended up picking what we call the Four S's of Shipping: safely, securely, stably, and speedily." (For more on the security piece of it, see their <a href="https://thenewstack.io/beyond-ci-cd-how-continuous-hacking-of-docker-containers-and-pipeline-driven-security-keeps-ygrene-secure/">article</a> on their "continuous hacking" strategy.) As for the engineers, says Adams, "they have been able to advance as their software has advanced. I think that at the end of the day, the developers feel better about what they're doing, and they also feel more connected to the modern software development community."</p>
+-->
+<p>云原生也影响了 Ygrene 的 50 多名开发人员和承包商的工作方式。Adams 和 Arnold 花了相当长的时间“教人们思考开箱即用的”，Arnold 说。“我们最终选择了称之为“航运四S”：安全、可靠、稳妥、快速。”（有关其安全部分的更多内容，请参阅他们关于"持续黑客攻击"策略的<a href="https://thenewstack.io/beyond-ci-cd-how-continuous-hacking-of-docker-containers-and-pipeline-driven-security-keeps-ygrene-secure/">文章</a>。至于工程师，Adams 说，“他们已经能够跟上软件进步的步伐。我想一天结束时，开发人员会感觉更好，他们也会感觉与现代软件开发社区的联系更加紧密。”</p>
+
+<!-- 
+<p>Looking ahead, Adams is excited to explore more CNCF projects, including SPIFFE and SPIRE. "CNCF has been an amazing incubator for so many projects," he says. "Now we look at its webpage regularly to find out if there are any new, awesome, high-quality projects we can implement into our stack. It's actually become a hub for us for knowing what software we need to be looking at to make our systems more secure or more scalable."</p>
+-->
+<p>展望未来，Adams 很高兴能探索更多的 CNCF 项目，包括 SPIFFE 和 SPIRE。“CNCF 是众多项目惊人的孵化器。现在，我们定期查看其网页，了解是否有任何新的、可敬的高质量项目可以应用到我们的系统中。它实际上已成为我们了解自身需要什么样的软件以使我们的系统更加安全和具有可伸缩性的信息中心。”</p>
diff --git a/content/zh/case-studies/ygrene/ygrene_featured_logo.png b/content/zh-cn/case-studies/ygrene/ygrene_featured_logo.png
similarity index 100%
rename from content/zh/case-studies/ygrene/ygrene_featured_logo.png
rename to content/zh-cn/case-studies/ygrene/ygrene_featured_logo.png
diff --git a/content/zh-cn/case-studies/zalando/index.html b/content/zh-cn/case-studies/zalando/index.html
new file mode 100644
index 0000000000..0247943d87
--- /dev/null
+++ b/content/zh-cn/case-studies/zalando/index.html
@@ -0,0 +1,196 @@
+---
+title: 案例研究：Zalando
+case_study_styles: true
+cid: caseStudies
+
+new_case_study_styles: true
+heading_background: /images/case-studies/zalando/banner1.jpg
+heading_title_logo: /images/zalando_logo.png
+subheading: >
+  欧洲领先的在线时尚平台通过云原生获得突破性进展
+case_study_details:
+  - 公司: Zalando
+  - 位置: Berlin， Germany
+  - 行业: 在线时尚平台
+---
+<!-- 
+title: Zalando Case Study
+case_study_styles: true
+cid: caseStudies
+
+new_case_study_styles: true
+heading_background: /images/case-studies/zalando/banner1.jpg
+heading_title_logo: /images/zalando_logo.png
+subheading: >
+  Europe's Leading Online Fashion Platform Gets Radical with Cloud Native
+case_study_details:
+  - Company: Zalando
+  - Location: Berlin, Germany
+  - Industry: Online Fashion
+-->
+<!-- 
+<h2>Challenge</h2>
+-->
+<h2>挑战</h2>
+
+<!-- 
+<p>Zalando, Europe's leading online fashion platform, has experienced exponential growth since it was founded in 2008. In 2015, with plans to further expand its original e-commerce site to include new services and products, Zalando embarked on a <a href="https://jobs.zalando.com/tech/blog/radical-agility-study-notes/">radical transformation</a> resulting in autonomous self-organizing teams. This change requires an infrastructure that could scale with the growth of the engineering organization. Zalando's technology department began rewriting its applications to be cloud-ready and started moving its infrastructure from on-premise data centers to the cloud. While orchestration wasn't immediately considered, as teams migrated to <a href="https://aws.amazon.com/">Amazon Web Services</a> (AWS): "We saw the pain teams were having with infrastructure and Cloud Formation on AWS," says Henning Jacobs, Head of Developer Productivity. "There's still too much operational overhead for the teams and compliance. " To provide better support, cluster management was brought into play.</p>
+-->
+<p>Zalando 是欧洲领先的在线时尚平台，自 2008 年成立以来，经历了指数级增长。在 2015 年，Zalando 计划进一步扩展其原有的电子商务站点，以扩展新的服务和产品，从而开始了<a href="https://jobs.zalando.com/tech/blog/radical-agility-study-notes/">彻底的变革</a>，因此形成了自主的自组织团队。这次扩展需要可以随工程组织的增长而扩展的基础架构。Zalando 的技术部门开始重写其应用程序，使其能够在云端运行，并开始将其基础架构从内部数据中心迁移到云。虽然编排没有立即被考虑，因为团队迁移到<a href="https://aws.amazon.com/">亚马逊网络服务</a>（AWS）：“我们体验过团队在 AWS 上进行基础设施架构和使用云资源时遇到的痛苦，”开发人员生产力主管 Henning Jacobs 说，“我们遇到了一些难题。对于团队和合规性来说，运营开销仍然过多。为了提供更好的支持，项目引入了集群管理。”</p>
+
+<!-- 
+<h2>Solution</h2>
+-->
+<h2>解决方案</h2>
+
+<!-- 
+<p>The company now runs its Docker containers on AWS using Kubernetes orchestration.</p>
+-->
+<p>该公司现在使用 Kubernetes 编排在 AWS 上运行的 Docker 容器。</p>
+
+<!--
+<h2>Impact</h2>
+-->
+<h2>影响</h2>
+
+<!-- 
+<p>With the old infrastructure "it was difficult to properly embrace new technologies, and DevOps teams were considered to be a bottleneck," says Jacobs. "Now, with this cloud infrastructure, they have this packaging format, which can contain anything that runs on the Linux kernel. This makes a lot of people pretty happy. The engineers love autonomy."</p>
+-->
+<p>Jacobs 说，由于旧基础设施“很难正确采用新技术，而 DevOps 团队被视为瓶颈。”“现在，有了这个云基础架构，它们有了这种打包格式，可以包含任何在 Linux 内核上运行的东西。这使得很多人相当高兴。工程师喜欢自主。”</p>
+
+<!-- 
+{{< case-studies/quote author="Henning Jacobs, Head of Developer Productivity at Zalando" >}}
+"We envision all Zalando delivery teams running their containerized applications on a state-of-the-art, reliable and scalable cluster infrastructure provided by Kubernetes."
+{{< /case-studies/quote >}}
+-->
+{{< case-studies/quote author="Henning Jacobs, Zalando 开发人员生产力主管" >}}
+<p>“我们设想所有 Zalando 交付团队在 Kubernetes 提供的最先进的、可靠且可扩展的集群基础架构上运行其容器化应用程序。”</p>
+{{< /case-studies/quote >}}
+
+<!-- 
+{{< case-studies/lead >}}
+When Henning Jacobs arrived at Zalando in 2010, the company was just two years old with 180 employees running an online store for European shoppers to buy fashion items.
+{{< /case-studies/lead >}}
+-->
+{{< case-studies/lead >}}
+当 Henning Jacobs 于 2010 年来到 Zalando 时，该公司刚成立两年，有 180 名员工经营一家网上商店，供欧洲消费者购买时尚商品。
+{{< /case-studies/lead >}}
+
+<!-- 
+<p>"It started as a PHP e-commerce site which was easy to get started with, but was not scaling with the business' needs" says Jacobs, Head of Developer Productivity at Zalando.</p>
+-->
+<p>Zalando 的开发人员生产力主管 Jacobs 说：“它最初是一个 PHP 电子商务网站，很容易上手，但无法随业务需求扩展。”</p>
+
+<!-- 
+<p>At that time, the company began expanding beyond its German origins into other European markets. Fast-forward to today and Zalando now has more than 14,000 employees, 3.6 billion Euro in revenue for 2016 and operates across 15 countries. "With growth in all dimensions, and constant scaling, it has been a once-in-a-lifetime experience," he says.</p>
+-->
+<p>当时，公司开始从 Germany 以外扩展到其他欧洲市场。快进到今天，Zalando 现在拥有超过 14000 名员工，2016 年收入为 36 亿欧元，业务遍及 15 个国家/地区。他表示：“这种全面快速的增长和不断扩展，一生只能有一次。”</p>
+
+<!-- 
+<p>Not to mention a unique opportunity for an infrastructure specialist like Jacobs. Just after he joined, the company began rewriting all their applications in-house. "That was generally our strategy," he says. "For example, we started with our own logistics warehouses but at first you don't know how to do logistics software, so you have some vendor software. And then we replaced it with our own because with off-the-shelf software you're not competitive. You need to optimize these processes based on your specific business needs."</p>
+-->
+<p>能拥有像 Jacobs 这样的基础设施专家的机会是非常独特的。就在他加入公司后，公司开始在内部重写他们的所有应用。“这通常是我们的策略，”他表示。“例如，我们从我们自己的物流仓库开始，但起初不知道如何做物流软件，所以得用一些供应商软件。然后我们用自己的软件替换了它，因为使用现成的软件是没有竞争力的。需要根据特定业务需求优化这些流程。”</p>
+
+<!-- 
+<p>In parallel to rewriting their applications, Zalando had set a goal of expanding beyond basic e-commerce to a platform offering multi-tenancy, a dramatic increase in assortments and styles, same-day delivery and even <a href="https://www.zalon.de">your own personal online stylist</a>.</p>
+-->
+<p>在重写其应用程序的同时，Zalando 设定了一个目标，即从基本电子商务扩展到一个提供多租户、大量增加的分类和样式、当天送达，甚至<a href="https://www.zalon.de">你自己个人在线造型师</a>的平台。</p>
+
+<!-- 
+<p>The need to scale ultimately led the company on a cloud-native journey. As did its embrace of a microservices-based software architecture that gives engineering teams more autonomy and ownership of projects. "This move to the cloud was necessary because in the data center you couldn't have autonomous teams. You have the same infrastructure and it was very homogeneous, so you could only run your Java or Python app," Jacobs says.</p>
+-->
+<p>扩展的需求最终引领了公司踏上云原生之旅。它采用基于微服务的软件架构，使工程团队拥有更多的项目自主权和所有权。“迁移到云是必要的，因为在数据中心中，团队不可能随心所欲。使用相同的基础架构，因此只能运行 Java 或 Python 应用，”Jacobs 说。</p>
+
+<!-- 
+{{< case-studies/quote image="/images/case-studies/zalando/banner3.jpg" >}}
+"This move to the cloud was necessary because in the data center you couldn't have autonomous teams. You have the same infrastructure and it was very homogeneous, so you could only run your Java or Python app."
+{{< /case-studies/quote >}}
+-->
+{{< case-studies/quote image="/images/case-studies/zalando/banner3.jpg" >}}
+“迁移到云是必要的，因为在数据中心中，团队不可能随心所欲。使用相同的基础架构，因此只能运行 Java 或 Python 应用。”
+{{< /case-studies/quote >}}
+
+<!-- 
+<p>Zalando began moving its infrastructure from two on-premise data centers to the cloud, requiring the migration of older applications for cloud-readiness. "We decided to have a clean break," says Jacobs. "Our <a href="https://aws.amazon.com/">Amazon Web Services</a> infrastructure was set up like so: Every team has its own AWS account, which is completely isolated, meaning there's no 'lift and shift.' You basically have to rewrite your application to make it cloud-ready even down to the persistence layer. We bravely went back to the drawing board and redid everything, first choosing Docker as a common containerization, then building the infrastructure from there."</p>
+-->
+<p>Zalando 开始将其基础架构从两个内部数据中心迁移到云，这需要迁移较旧的应用程序使其在云中准备就绪。“我们决定果断一些，” Jacobs 说。“我们的<a href="https://aws.amazon.com/">亚马逊网络服务</a>基础设施是这样的：每个团队都有自己的 AWS 账户，该账户是完全隔离的，这意味着没有'提升和转移'。基本上必须重写应用程序，使其在云中准备就绪，甚至到持久层也是如此。我们勇敢地回到绘图板，重做一切，首先选择 Docker 作为通用容器化，然后从那里构建基础结构。”</p>
+
+<!--
+<p>The company decided to hold off on orchestration at the beginning, but as teams were migrated to AWS, "we saw the pain teams were having with infrastructure and cloud formation on AWS," says Jacobs.</p>
+-->
+<p>公司最初决定推迟编排，但随着团队迁移到 AWS，“我们看到团队在 AWS 上的基础设施和使用云资源方面遇到了难题，” Jacobs 说。</p>
+
+<!-- 
+<p>Zalandos 200+ autonomous engineering teams decide what technologies to use and could operate their own applications using their own AWS accounts. This setup proved to be a compliance challenge. Even with strict rules-of-play and automated compliance checks in place, engineering teams and IT-compliance were overburdened addressing compliance issues. "Violations appear for non-compliant behavior, which we detect when scanning the cloud infrastructure," says Jacobs. "Everything is possible and nothing enforced, so you have to live with violations (and resolve them) instead of preventing the error in the first place. This means overhead for teams—and overhead for compliance and operations. It also takes time to spin up new EC2 instances on AWS, which affects our deployment velocity."</p>
+-->
+<p>Zalando 200 多人的自主工程团队研究使用哪些技术，并可以使用自己的 AWS 账户操作自己的应用程序。事实证明，此设置是一项合规性挑战。即使制定了严格的游戏规则和自动化的合规性检查，工程团队和 IT 合规性在解决合规性问题方面也负担过重。Jacobs 说："违规行为会出现，我们在扫描云基础架构时会检测到这些行为。“一切皆有可能，没有强制实施，因此你必须忍受违规行为（并解决它们），而不是一开始就防止错误。这些都会增加团队的开销，以及合规性和操作的开销。在 AWS 上启动新的 EC2 实例也需要时间，这会影响我们的部署速度。”</p>
+
+<!-- 
+<p>The team realized they needed to "leverage the value you get from cluster management," says Jacobs. When they first looked at Platform as a Service (PaaS) options in 2015, the market was fragmented; but "now there seems to be a clear winner. It seemed like a good bet to go with Kubernetes."</p>
+-->
+<p>Jacobs 说，团队意识到他们需要“利用从集群管理中获得的价值”。当他们在 2015 年首次将平台视为服务（PaaS）选项时，市场是支离破碎的；但“现在似乎有一个明确的赢家。使用 Kubernetes 似乎是一个很好的尝试。”</p>
+
+<!-- 
+<p>The transition to Kubernetes started in 2016 during Zalando's <a href="https://jobs.zalando.com/tech/blog/hack-week-5-is-live/?gh_src=4n3gxh1">Hack Week</a> where participants deployed their projects to a Kubernetes cluster. From there 60 members of the tech infrastructure department were on-boarded - and then engineering teams were brought on one at a time. "We always start by talking with them and make sure everyone's expectations are clear," says Jacobs. "Then we conduct some Kubernetes training, which is mostly training for our CI/CD setup, because the user interface for our users is primarily through the CI/CD system. But they have to know fundamental Kubernetes concepts and the API. This is followed by a weekly sync with each team to check their progress. Once they have something in production, we want to see if everything is fine on top of what we can improve."</p>
+-->
+<p>Kubernetes 的过渡始于 2016 年 Zalando 的<a href="https://jobs.zalando.com/tech/blog/hack-week-5-is-live/?gh_src=4n3gxh1">极客周</a>期间，参与者将他们的项目部署到 Kubernetes 集群。60 名技术基础设施部门的成员开始使用这项技术，之后每次会加入一支工程团队。Jacobs 说：“我们总是从与他们交谈开始，确保每个人的期望都清晰。然后，我们进行一些 Kubernetes 培训，这主要是针对我们的 CI/CD 设置的培训，因为我们的用户界面主要通过 CI/CD 系统。但是他们必须知道 Kubernetes 的基本概念和API。之后每周与每个团队同步，以检查其进度。一旦出现什么状况，就可以确定我们所做的改进是否正常。”</p>
+
+<!-- 
+{{< case-studies/quote image="/images/case-studies/zalando/banner4.jpg" >}}
+Once Zalando began migrating applications to Kubernetes, the results were immediate. "Kubernetes is a cornerstone for our seamless end-to-end developer experience. We are able to ship ideas to production using a single consistent and declarative API," says Jacobs.
+{{< /case-studies/quote >}}
+-->
+{{< case-studies/quote image="/images/case-studies/zalando/banner4.jpg" >}}
+一旦 Zalando 开始将应用迁移到 Kubernetes，效果立竿见影。“Kubernetes 是我们无缝端到端开发人员体验的基石。我们能够使用单一一致且声明性的 API 将创意运送到生产中，” Jacobs 说。
+{{< /case-studies/quote >}}
+
+<!-- 
+<p>At the moment, Zalando is running an initial 40 Kubernetes clusters with plans to scale for the foreseeable future. Once Zalando began migrating applications to Kubernetes, the results were immediate. "Kubernetes is a cornerstone for our seamless end-to-end developer experience. We are able to ship ideas to production using a single consistent and declarative API," says Jacobs. "The self-healing infrastructure provides a frictionless experience with higher-level abstractions built upon low-level best practices. We envision all Zalando delivery teams will run their containerized applications on a state-of-the-art reliable and scalable cluster infrastructure provided by Kubernetes."</p>
+-->
+<p>目前，Zalando 正在运行最初的 40 个 Kubernetes 集群，并计划在可预见的将来进行扩展。一旦 Zalando 开始将申请迁移到 Kubernetes，效果立竿见影。“Kubernetes 是我们无缝端到端开发人员体验的基石。我们能够使用单一一致且声明性的 API 将创意运送到生产中，” Jacobs 说。“自愈基础架构提供了无摩擦体验，基于低级最佳实践构建了更高级别的抽象。我们设想所有 Zalando 交付团队都将在 Kubernetes 提供的最先进的可靠和可扩展集群基础架构上运行其容器化应用程序。”</p>
+
+<!-- 
+<p>With the old on-premise infrastructure "it was difficult to properly embrace new technologies, and DevOps teams were considered to be a bottleneck," says Jacobs. "Now, with this cloud infrastructure, they have this packaging format, which can contain anything that runs in the Linux kernel. This makes a lot of people pretty happy. The engineers love the autonomy."</p>
+-->
+<p>Jacobs 说，使用旧的内部基础设施，“很难正确采用新技术，而 DevOps 团队被视为瓶颈。”“现在，有了这个云基础架构，它们有了这种打包格式，可以包含运行在 Linux 内核中的任何内容。这使得很多人相当高兴。工程师喜欢自主性。”</p>
+
+<!-- 
+<p>There were a few challenges in Zalando's Kubernetes implementation. "We are a team of seven people providing clusters to different engineering teams, and our goal is to provide a rock-solid experience for all of them," says Jacobs. "We don't want pet clusters. We don't want to have to understand what workload they have; it should just work out of the box. With that in mind, cluster autoscaling is important. There are many different ways of doing cluster management, and this is not part of the core. So we created two components to provision clusters, have a registry for clusters, and to manage the whole cluster life cycle."</p>
+-->
+<p>在 Zalando 的 Kubernetes 实施中出现了一些挑战。Jacobs 说：“我们是一支由七人组成的团队，为不同的工程团队提供集群，我们的目标是为所有团队提供坚如磐石的体验。”“我们不想要宠物集群。我们不想了解他们的工作量；它应该只是开箱即用。考虑到这一点，集群自动缩放非常重要。执行集群管理的方法有很多种，这不是核心的一部分。因此，我们创建了两个组件来预配集群，具有集群的注册表，并管理整个集群生命周期。”</p>
+
+
+<!--
+<p>Jacobs's team also worked to improve the Kubernetes-AWS integration. "Thus you're very restricted. You need infrastructure to scale each autonomous team's idea." Plus, "there are still a lot of best practices missing," says Jacobs. The team, for example, recently solved a pod security policy issue. "There was already a concept in Kubernetes but it wasn't documented, so it was kind of tricky," he says. The large Kubernetes community was a big help to resolve the issue. To help other companies start down the same path, Jacobs compiled his team's learnings in a document called <a href="http://kubernetes-on-aws.readthedocs.io/en/latest/admin-guide/kubernetes-in-production.html">Running Kubernetes in Production</a>.</p>
+-->
+<p>Jacobs 的团队还致力于改进 Kubernetes-AWS 集成。“由于许多限制条件，需要通过基础设施来扩展每个自主团队的想法。”此外，“仍然缺少很多最佳实践，” Jacobs 说。例如，该团队最近解决了 pod 安全策略问题。“在 Kubernetes 已经有一个概念，但没有记录，所以有点棘手，”他说。大型的 Kubernetes 社区是解决这个问题的一大帮助。为了帮助其他公司走上同样的道路，Jacobs 在一份名为<a href="http://kubernetes-on-aws.readthedocs.io/en/latest/admin-guide/kubernetes-in-production.html">在生产中运行 Kubernetes </a> 的文件中汇编了他的团队的经验教训。</p>
+
+<!-- 
+{{< case-studies/quote >}}
+"The Kubernetes API allows us to run applications in a cloud provider-agnostic way, which gives us the freedom to revisit IaaS providers in the coming years... We expect the Kubernetes API to be the global standard for PaaS infrastructure and are excited about the continued journey."
+{{< /case-studies/quote >}}
+-->
+{{< case-studies/quote >}}
+“Kubernetes API 允许我们以与云提供商无关的方式运行应用程序，这使我们能够在未来几年中自由访问 IaaS 提供商...。我们期望 Kubernetes API 成为 PaaS 基础设施的全球标准，并对未来的继续旅程感到兴奋。”
+{{< /case-studies/quote >}}
+
+
+<!-- 
+<p>In the end, Kubernetes made it possible for Zalando to introduce and maintain the new products the company envisioned to grow its platform. "<a href="https://www.zalon.de/">The fashion advice</a> product used Scala, and there were struggles to make this possible with our former infrastructure," says Jacobs. "It was a workaround, and that team needed more and more support from the platform team, just because they used different technologies. Now with Kubernetes, it's autonomous. Whatever the workload is, that team can just go their way, and Kubernetes prevents other bottlenecks."</p>
+-->
+<p>最后，Kubernetes 使 Zalando 能够引进和维护公司为发展其平台而设想的新产品。Jacobs 说：“时尚咨询产品使用 Scala，而我们以前的基础设施也难以实现这一点。”这是一个解决方法，该团队需要平台团队提供越来越多的支持，只是因为他们使用了不同的技术。现在有了 Kubernetes，它就自主了。无论工作负载是什么，该团队都可以走自己的路，而 Kubernetes 可以防止其他瓶颈。</p>
+
+<!-- 
+<p>Looking ahead, Jacobs sees Zalando's new infrastructure as a great enabler for other things the company has in the works, from its new logistics software, to a platform feature connecting brands, to products dreamed up by data scientists. "One vision is if you watch the next James Bond movie and see the suit he's wearing, you should be able to automatically order it, and have it delivered to you within an hour," says Jacobs. "It's about connecting the full fashion sphere. This is definitely not possible if you have a bottleneck with everyone running in the same data center and thus very restricted. You need infrastructure to scale each autonomous team's idea."</p>
+-->
+<p>展望未来，Jacobs 将 Zalando 的新基础设施视为公司在进行的其他工程中的巨大推动因素，从新的物流软件到连接品牌的平台功能，以及数据科学家梦寐以求的产品。Jacobs 说：“一个愿景是，如果你看下一部 James Bond 的电影，看看他穿的西装，你就应该能够自动订购，并在一小时内把它送到你身边。”“这是关于连接整个时尚领域。如果你遇到瓶颈，因为每个人都在同一个数据中心运行，因此限制很大，则这绝对是不可能的。需要基础设施来扩展每个自主团队的想法。”</p>
+
+<!-- 
+<p>For other companies considering this technology, Jacobs says he wouldn't necessarily advise doing it exactly the same way Zalando did. "It's okay to do so if you're ready to fail at some things," he says. "You need to set the right expectations. Not everything will work. Rewriting apps and this type of organizational change can be disruptive. The first product we moved was critical. There were a lot of dependencies, and it took longer than expected. Maybe we should have started with something less complicated, less business critical, just to get our toes wet."</p>
+-->
+<p>对于考虑这项技术的其他公司，Jacobs 说，他不一定建议像 Zalando 那样做。他表示：“如果你准备尝试失败，那么这样做是可以的。”“设定正确的期望是必须的。并不是一切都会起作用。重写应用和这种类型的组织更改可能会造成中断。我们移动的第一个产品至关重要。存在大量依赖关系，而且时间比预期长。也许我们应该从不那么复杂、不是业务关键的东西开始，只是为了开个好头。”</p>
+
+<!-- 
+<p>But once they got to the other side "it was clear for everyone that there's no big alternative," Jacobs adds. "The Kubernetes API allows us to run applications in a cloud provider-agnostic way, which gives us the freedom to revisit IaaS providers in the coming years. Zalando Technology benefits from migrating to Kubernetes as we are able to leverage our existing knowledge to create an engineering platform offering flexibility and speed to our engineers while significantly reducing the operational overhead. We expect the Kubernetes API to be the global standard for PaaS infrastructure and are excited about the continued journey."</p>
+-->
+<p>但是，一旦他们到了另一边，“每个人都很清楚，没有大的选择，” Jacobs 补充说。“Kubernetes API 允许我们以与云提供商无关的方式运行应用程序，这使我们能够在未来几年中自由访问 IaaS 提供商。Zalando 受益于迁移到 Kubernetes，因为我们能够利用现有知识创建工程平台，为我们的工程师提供灵活性和速度，同时显著降低运营开销。我们期望 Kubernetes API 成为 PaaS 基础设施的全球标准，并对未来的旅程感到兴奋。”</p>
diff --git a/content/zh/case-studies/zalando/zalando_feature_logo.png b/content/zh-cn/case-studies/zalando/zalando_feature_logo.png
similarity index 100%
rename from content/zh/case-studies/zalando/zalando_feature_logo.png
rename to content/zh-cn/case-studies/zalando/zalando_feature_logo.png
diff --git a/content/zh-cn/community/_index.html b/content/zh-cn/community/_index.html
new file mode 100644
index 0000000000..506e2a0fc7
--- /dev/null
+++ b/content/zh-cn/community/_index.html
@@ -0,0 +1,260 @@
+---
+title: 社区
+layout: basic
+cid: community
+---
+
+<!--
+title: Community
+layout: basic
+cid: community
+-->
+
+<div class="newcommunitywrapper">
+<div class="banner1">
+  <img src="/images/community/kubernetes-community-final-02.jpg" alt="Kubernetes 会议一览" style="width:100%;padding-left:0px" class="desktop">
+  <img src="/images/community/kubernetes-community-02-mobile.jpg" alt="Kubernetes 会议一览" style="width:100%;padding-left:0px" class="mobile">
+</div>
+
+<div class="intro">
+<br class="mobile">
+<!--p>The Kubernetes community -- users, contributors, and the culture we've built together -- is one of the biggest reasons for the meteoric rise of this open source project. Our culture and values continue to grow and change as the project itself grows and changes. We all work together toward constant improvement of the project and the ways we work on it.
+<br><br>We are the people who file issues and pull requests, attend SIG meetings, Kubernetes meetups, and KubeCon, advocate for its adoption and innovation, run <code>kubectl get pods</code>, and contribute in a thousand other vital ways. Read on to learn how you can get involved and become part of this amazing community.</p>
+-->
+<p>
+Kubernetes 社区 -- 用户、贡献者以及我们一起塑造的文化 -- 是这个开源项目持续增长的最重要原因。
+我们的文化和价值观随着项目自身的成长和变化而成长着、变化着。
+我们一起努力地持续改进项目本身，以及我们在这个项目中的工作方式。
+<br><br>我们是登记缺陷、提出拉取请求、参加 SIG 会议、Kubernetes Meetup、KubeCon，
+为了技术采纳和创新四处宣讲、运行 <code>kubectl get pods</code>
+并通过难以计数的其他重要方式作出贡献的一群人。
+如果想要了解如何参与进来并成为这一令人赞叹的社区的一员，请继续阅读。</p>
+</div>
+
+<div class="community__navbar">
+
+<a href="https://www.kubernetes.dev/"><!--Contributor Community-->贡献者社区</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+<a href="#values"><!--Community Values-->社区价值观</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+<a href="#conduct"><!--Code of conduct-->行为规范</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+<a href="#videos"><!--Videos-->视频</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+<a href="#discuss"><!--Discussions-->讨论</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+<a href="#events"><!--Events and meetups-->活动与聚会</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+<a href="#news"><!--News-->新闻</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+<a href="/releases"><!--Releases-->发行版本</a>
+
+</div>
+<br class="mobile"><br class="mobile">
+<div class="imagecols">
+<br class="mobile">
+  <div class="imagecol">
+    <img src="/images/community/kubernetes-community-final-03.jpg" alt="Kubernetes 会议一览" style="width:100%" class="desktop">
+  </div>
+
+  <div class="imagecol">
+    <img src="/images/community/kubernetes-community-final-04.jpg" alt="Kubernetes 会议一览" style="width:100%" class="desktop">
+  </div>
+
+  <div class="imagecol" style="margin-right:0% important">
+    <img src="/images/community/kubernetes-community-final-05.jpg" alt="Kubernetes 会议一览" style="width:100%;margin-right:0% important" class="desktop">
+  </div>
+  <img src="/images/community/kubernetes-community-04-mobile.jpg" alt="Kubernetes 会议一览" style="width:100%;margin-bottom:3%" class="mobile">
+<a name="values"></a>
+</div>
+
+<div><a name="values"></a></div>
+<div class="conduct">
+<div class="conducttext">
+<br class="mobile"><br class="mobile">
+<br class="tablet"><br class="tablet">
+<div class="conducttextnobutton" style="margin-bottom:2%"><h1><!--Community Values-->社区价值观</h1>
+<!--
+The Kubernetes Community values are the keystone to the ongoing success of the project.<br>
+These principles guide every aspect of the Kubernetes project.
+-->
+Kubernetes 社区价值观是项目持续成功的基石。<br>
+这些原则会指导 Kubernetes 项目的方方面面。
+<br>
+<a href="/community/values/">
+<br class="mobile"><br class="mobile">
+<span class="fullbutton">
+  <!--READ MORE-->继续阅读
+  </span>
+  </a>
+  </div><a name="conduct"></a>
+  </div>
+  </div>
+
+
+<div class="conduct">
+<div class="conducttext">
+<br class="mobile"><br class="mobile">
+<br class="tablet"><br class="tablet">
+<div class="conducttextnobutton" style="margin-bottom:2%"><h1><!--Code of Conduct-->行为规范</h1>
+<!--
+The Kubernetes community values respect and inclusiveness, and enforces a Code of Conduct in all interactions. If you notice a violation of the Code of Conduct at an event or meeting, in Slack, or in another communication mechanism, reach out to the Kubernetes Code of Conduct Committee at <a href="mailto:conduct@kubernetes.io" style="color:#0662EE;font-weight:300">conduct@kubernetes.io</a>. All reports are kept confidential. You can read about the committee&nbsp;<a href="https://github.com/kubernetes/community/tree/master/committee-code-of-conduct" style="color:#0662EE;font-weight:300">here</a>.
+-->
+Kubernetes 社区倡导相互尊重和包容，并要求在所有交互中遵从一种行为规范（Code of Conduct）。
+如果你在某个活动或会议中、Slack 上或者其他通信机制中观察到违反行为规范的情况，
+请通过 <a href="mailto:conduct@kubernetes.io" style="color:#0662EE;font-weight:300">conduct@kubernetes.io</a>
+联系 Kubernetes 的行为规范委员会（Kubernetes Code of Conduct Committee）。
+所有的违规报告都会被严格保密。你可以在
+<a href="https://github.com/kubernetes/community/tree/master/committee-code-of-conduct" style="color:#0662EE;font-weight:300">这里</a>阅读该委员会的信息。
+<br>
+<a href="https://kubernetes.io/community/code-of-conduct/">
+<br class="mobile"><br class="mobile">
+
+<span class="fullbutton">
+<!--READ MORE-->继续阅读
+</span>
+</a>
+</div><a name="videos"></a>
+</div>
+</div>
+
+<div class="videos">
+<br class="mobile"><br class="mobile">
+<br class="tablet"><br class="tablet">
+<h1 style="margin-top:0px">Videos</h1>
+
+<div style="margin-bottom:4%;font-weight:300;text-align:center;padding-left:10%;padding-right:10%"><!--We're on YouTube,
+a lot. Subscribe for a wide range of&nbsp;topics.-->我们在 YouTube 上有很多视频，你可以订阅很多不同的主题。</div>
+
+<div class="videocontainer">
+
+<div class="video">
+
+  <iframe width="100%" height="250"
+    src="https://www.youtube.com/embed/videoseries?list=PL69nYSiGNLP3azFUvYJjGn45YbF6C-uIg" title="阅读办公时间" frameborder="0" allow="autoplay; encrypted-media" allowfullscreen></iframe>
+
+<a href="https://www.youtube.com/playlist?list=PL69nYSiGNLP3azFUvYJjGn45YbF6C-uIg">
+<div class="videocta">
+观看阅读办公会议&nbsp;&#9654;</div>
+</a>
+</div>
+
+<div class="video">
+  <iframe width="100%" height="250"
+    src="https://www.youtube.com/embed/videoseries?list=PL69nYSiGNLP1pkHsbPjzAewvMgGUpkCnJ" title="社区每周例会" frameborder="0" allow="autoplay; encrypted-media" allowfullscreen></iframe>
+<a href="https://www.youtube.com/playlist?list=PL69nYSiGNLP1pkHsbPjzAewvMgGUpkCnJ">
+<div class="videocta">
+观看社区每周例会&nbsp;&#9654;
+</div>
+</a>
+</div>
+
+<div class="video">
+
+<iframe width="100%" height="250"
+  src="https://www.youtube.com/embed/videoseries?list=PL69nYSiGNLP3QpQrhZq_sLYo77BVKv09F" title="来自社区成员的演讲" frameborder="0" allow="autoplay; encrypted-media" allowfullscreen></iframe>
+
+<a href="https://www.youtube.com/playlist?list=PL69nYSiGNLP3QpQrhZq_sLYo77BVKv09F">
+<div class="videocta">
+观看来自社区成员的演讲&nbsp;&#9654;
+</div>
+
+</a>
+<a name="discuss"></a>
+</div>
+</div>
+</div>
+
+<div class="resources">
+<br class="mobile"><br class="mobile">
+<br class="tablet"><br class="tablet">
+<h1 style="padding-top:1%"><!--Discussions-->讨论</h1>
+
+<div style="font-weight:300;text-align:center"><!--We talk a lot. Find us and join the conversation on any of
+these&nbsp;platforms.-->我们有很多演讲材料。你可以在以下任何平台上找到我们并加入讨论。</div>
+
+<div class="resourcecontainer">
+
+<div class="resourcebox">
+<img src="/images/community/discuss.png" alt=Forum" style="width:80%;padding-bottom:2%">
+<a href="https://discuss.kubernetes.io/" style="color:#0662EE;display:block;margin-top:1%">
+<!--forum-->论坛&nbsp;&#9654;
+</a>
+<div class="resourceboxtext" style="font-size:12px;text-transform:none !important;font-weight:300;line-height:1.4em;color:#333333;margin-top:4%">
+<!--
+Topic-based technical discussions that bridge docs, StackOverflow, and so much&nbsp;more
+-->
+基于主题的技术讨论，包括 docs、StackOverflow 以及很多其他渠道。
+</div>
+</div>
+
+<div class="resourcebox">
+<img src="/images/community/twitter.png" alt="Twitter" style="width:80%;padding-bottom:2%">
+<a href="https://twitter.com/kubernetesio" style="color:#0662EE;display:block;margin-top:1%">
+Twitter&nbsp;&#9654;
+</a>
+<div class="resourceboxtext" style="font-size:12px;text-transform:none
+  !important;font-weight:300;line-height:1.4em;color:#333333;margin-top:4%"><!--Real-time announcements of blog posts,
+  events, news, ideas -->关于博客发表、活动、新闻、想法的实时公布</div>
+</div>
+
+<div class="resourcebox">
+<img src="/images/community/github.png" alt="GitHub" style="width:80%;padding-bottom:2%">
+<a href="https://github.com/kubernetes/kubernetes" style="color:#0662EE;display:block;margin-top:1%">
+github&nbsp;&#9654;
+</a>
+<div class="resourceboxtext" style="font-size:12px;text-transform:none !important;font-weight:300;line-height:1.4em;color:#333333;margin-top:4%">
+  <!--All the project and issue tracking, plus of course code-->所有的项目和缺陷跟踪，当然也包含代码
+</div>
+</div>
+
+<div class="resourcebox">
+<img src="/images/community/stack.png" alt="Stack Overflow" style="width:80%;padding-bottom:2%">
+<a href="https://stackoverflow.com/search?q=kubernetes" style="color:#0662EE;display:block;margin-top:1%">
+StackOverflow&nbsp;&#9654;
+</a>
+<div class="resourceboxtext" style="font-size:12px;text-transform:none !important;font-weight:300;line-height:1.4em;color:#333333;margin-top:4%">
+  <!--Technical troubleshooting for any use&nbsp;case-->针对不同场景的技术问题排查
+  <a name="events"></a>
+</div>
+</div>
+
+</div>
+</div>
+<div class="events">
+  <br class="mobile"><br class="mobile">
+  <br class="tablet"><br class="tablet">
+<div class="eventcontainer">
+  <h1 style="color:white !important"><!--Upcoming Events-->未来活动</h1>
+    {{< upcoming-events >}}
+</div>
+</div>
+
+<div class="meetups">
+<div class="meetupcol">
+<div class="meetuptext">
+  <h1 style="text-align:left"><!--Global Community-->全球社区</h1>
+  <!--
+With over 150 meetups in the world and growing, go find your local kube people. If one isn't near, take charge and create your own.
+  -->
+  我们在全球有超过 150 个 Meetup，而且数量仍在增长，你可以去找到本地的 Kubernetes
+  人员。如果附近没有，你可以负起责来，建一个你自己的 Meetup。
+</div>
+<a href="https://www.meetup.com/topics/kubernetes/">
+<div class="button">
+  <!--FIND A MEETUP-->寻找 Meetup
+</div>
+</a>
+<a name="news"></a>
+</div>
+</div>
+
+<div class="news">
+<br class="mobile"><br class="mobile">
+<br class="tablet"><br class="tablet">
+<h1 style="margin-bottom:2%"><!--Recent News-->最近新闻</h1>
+
+<br>
+<div class="twittercol1">
+<a class="twitter-timeline" data-tweet-limit="1" href="https://twitter.com/kubernetesio?ref_src=twsrc%5Etfw"><!--Tweets
+by kubernetesio-->kubernetesio 账号的推特</a> <script async src="https://platform.twitter.com/widgets.js" charset="utf-8"></script>
+</div>
+
+<br>
+<br><br><br><br>
+</div>
+
+</div>
diff --git a/content/zh/community/code-of-conduct.md b/content/zh-cn/community/code-of-conduct.md
similarity index 70%
rename from content/zh/community/code-of-conduct.md
rename to content/zh-cn/community/code-of-conduct.md
index 42450d7e86..3dc283fec8 100644
--- a/content/zh/community/code-of-conduct.md
+++ b/content/zh-cn/community/code-of-conduct.md
@@ -1,44 +1,44 @@
 ---
-title: 社区
+title: Kubernetes 社区行为规范
 layout: basic
 cid: community
-css: /css/community.css
+community_styles_migrated: true
 ---
 
 <!-- ---
-title: Community
+title: Kubernetes Community Code of Conduct
 layout: basic
 cid: community
-css: /css/community.css
+community_styles_migrated: true
 --- -->
 
-<div class="community_main">
-<!-- <h1>Kubernetes Community Code of Conduct</h1> -->
-<h1>Kubernetes 社区行为规范</h1>
-
+<div class="community-section" id="cncf-code-of-conduct-intro">
+<p>
 <!-- Kubernetes follows the
-<a href="https://github.com/cncf/foundation/blob/master/code-of-conduct.md">CNCF Code of Conduct</a>.
+<a href="https://github.com/cncf/foundation/blob/main/code-of-conduct.md">CNCF Code of Conduct</a>.
 The text of the CNCF CoC is replicated below, as of
 <a href="https://github.com/cncf/foundation/blob/0ce4694e5103c0c24ca90c189da81e5408a46632/code-of-conduct.md">commit 0ce4694</a>.
 If you notice that this is out of date, please
 <a href="https://github.com/kubernetes/website/issues/new">file an issue</a>. -->
-
 Kubernetes 遵循
-<a href="https://github.com/cncf/foundation/blob/master/code-of-conduct-languages/zh.md">CNCF 行为规范</a>。
+<a href="https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/zh.md">CNCF 行为规范</a>。
 CNCF 社区规范文本如下链接
 <a href="https://github.com/cncf/foundation/blob/0ce4694e5103c0c24ca90c189da81e5408a46632/code-of-conduct.md">commit 0ce4694</a>。
-如果您发现这个 CNCF 社区规范文本已经过时，请
+如果你发现这个 CNCF 社区规范文本已经过时，请
 <a href="https://github.com/kubernetes/website/issues/new">提交 issue</a>。
+</p>
 
+<p>
 <!-- If you notice a violation of the Code of Conduct at an event or meeting, in
 Slack, or in another communication mechanism, reach out to
 the [Kubernetes Code of Conduct Committee](https://github.com/kubernetes/community/tree/master/committee-code-of-conduct) <conduct@kubernetes.io>.
 Your anonymity will be protected. -->
 
 如果你在活动、会议、Slack 或是其它场合发现有任何违反行为规范的行为，请联系[Kubernetes 行为规范委员会](https://github.com/kubernetes/community/tree/master/committee-code-of-conduct)<conduct@kubernetes.io>。
-我们会确保您的匿名性。
+我们会确保你的匿名性。
+</p>
+</div>
 
-<div class="cncf_coc_container">
+<div id="cncf_coc_container">
 {{< include "/static/cncf-code-of-conduct.md" >}}
 </div>
-</div>
diff --git a/content/zh-cn/community/static/README.md b/content/zh-cn/community/static/README.md
new file mode 100644
index 0000000000..994a778d9a
--- /dev/null
+++ b/content/zh-cn/community/static/README.md
@@ -0,0 +1,9 @@
+<!-- The files in this directory have been imported from other sources. Do not
+edit them directly, except by replacing them with new versions.
+Localization note: you do not need to create localized versions of any of
+                   the files in this directory.
+-->
+
+本路径下的文件从其它地方导入。
+除了版本更新，不要直接修改。
+本地化说明：你无需为此目录中的任何文件创建本地化版本。
diff --git a/content/zh-cn/community/static/cncf-code-of-conduct.md b/content/zh-cn/community/static/cncf-code-of-conduct.md
new file mode 100644
index 0000000000..dde18750ea
--- /dev/null
+++ b/content/zh-cn/community/static/cncf-code-of-conduct.md
@@ -0,0 +1,39 @@
+<!-- Do not edit this file directly. Get the latest from
+     https://github.com/cncf/foundation/blob/master/code-of-conduct-languages/zh.md -->
+## 云原生计算基金会（CNCF）社区行为准则 1.0 版本
+
+### 贡献者行为准则
+
+作为这个项目的贡献者和维护者，为了建立一个开放和受欢迎的社区，
+我们保证尊重所有通过报告问题、发布功能请求、更新文档、提交拉取请求或补丁以及其他活动做出贡献的人员。
+
+我们致力于让参与此项目的每个人都不受骚扰，
+无论其经验水平、性别、性别认同和表达、性取向、残疾、个人外貌、体型、人种、种族、年龄、宗教或国籍等。
+
+不可接受的参与者行为包括：
+
+-	使用性语言或图像
+-	人身攻击
+-	挑衅、侮辱或贬低性评论
+-	公开或私下骚扰
+-	未经明确许可，发布他人的私人信息，比如地址或电子邮箱
+-	其他不道德或不专业的行为
+
+项目维护者有权利和责任删除、编辑或拒绝评论、提交、代码、维基编辑、问题和其他不符合本行为准则的贡献。
+通过采用本行为准则，项目维护者承诺将这些原则公平且一致地应用到这个项目管理的各个方面。
+不遵守或不执行行为准则的项目维护者可能被永久地从项目团队中移除。
+
+当个人代表项目或其社区时，本行为准则适用于项目空间和公共空间。
+
+如需举报侮辱、骚扰或其他不可接受的行为，
+你可发送邮件至 <conduct@kubernetes.io> 联系
+[Kubernetes行为守则委员会](https://github.com/kubernetes/community/tree/master/committee-code-of-conduct)。
+其他事务请联系CNCF项目维护专员，或发送邮件至 <mishi@linux.com> 联系我们的调解员Mishi Choudhary。
+
+本行为准则改编自《贡献者契约》（ https://contributor-covenant.org ）1.2.0 版本，
+可在 https://contributor-covenant.org/version/1/2/0/ 查看。
+
+### CNCF 活动行为准则
+
+云原生计算基金会（CNCF）活动受 Linux 基金会《[行为准则](https://events.linuxfoundation.org/code-of-conduct/)》管辖，
+该行为准则可在活动页面获得。其旨在与上述政策兼容，且包括更多关于事件回应的细节。
\ No newline at end of file
diff --git a/content/zh/docs/_index.md b/content/zh-cn/docs/_index.md
similarity index 100%
rename from content/zh/docs/_index.md
rename to content/zh-cn/docs/_index.md
diff --git a/content/zh/docs/concepts/_index.md b/content/zh-cn/docs/concepts/_index.md
similarity index 100%
rename from content/zh/docs/concepts/_index.md
rename to content/zh-cn/docs/concepts/_index.md
diff --git a/content/zh/docs/concepts/architecture/_index.md b/content/zh-cn/docs/concepts/architecture/_index.md
similarity index 100%
rename from content/zh/docs/concepts/architecture/_index.md
rename to content/zh-cn/docs/concepts/architecture/_index.md
diff --git a/content/zh/docs/concepts/architecture/cloud-controller.md b/content/zh-cn/docs/concepts/architecture/cloud-controller.md
similarity index 86%
rename from content/zh/docs/concepts/architecture/cloud-controller.md
rename to content/zh-cn/docs/concepts/architecture/cloud-controller.md
index 3a0a6c42f7..2e1e65850f 100644
--- a/content/zh/docs/concepts/architecture/cloud-controller.md
+++ b/content/zh-cn/docs/concepts/architecture/cloud-controller.md
@@ -72,18 +72,18 @@ The controllers inside the cloud controller manager include:
 <!--
 ### Node controller
 
-The node controller is responsible for creating {{< glossary_tooltip text="Node" term_id="node" >}} objects
+The node controller is responsible for updating {{< glossary_tooltip text="Node" term_id="node" >}} objects
 when new servers are created in your cloud infrastructure. The node controller obtains information about the
 hosts running inside your tenancy with the cloud provider. The node controller performs the following functions:
 -->
 ### 节点控制器   {#node-controller}
 
-节点控制器负责在云基础设施中创建了新服务器时为之 创建
+节点控制器负责在云基础设施中创建了新服务器时为之 更新
 {{< glossary_tooltip text="节点（Node）" term_id="node" >}}对象。
 节点控制器从云提供商获取当前租户中主机的信息。节点控制器执行以下功能：
 
 <!--
-1. Initialize a Node object for each server that the controller discovers through the cloud provider API.
+1. Update a Node object with the corresponding server's unique identifier obtained from the cloud provider API.
 2. Annotating and labelling the Node object with cloud-specific information, such as the region the node
    is deployed into and the resources (CPU, memory, etc) that it has available.
 3. Obtain the node's hostname and network addresses.
@@ -92,13 +92,13 @@ hosts running inside your tenancy with the cloud provider. The node controller p
    If the node has been deleted from the cloud, the controller deletes the Node object from your Kubernetes
    cluster.
 -->
-1. 针对控制器通过云平台驱动的 API 所发现的每个服务器初始化一个 Node 对象；
-2. 利用特定云平台的信息为 Node 对象添加注解和标签，例如节点所在的
-   区域（Region）和所具有的资源（CPU、内存等等）；
+1. 使用从云平台 API 获取的对应服务器的唯一标识符更新 Node 对象；
+2. 利用特定云平台的信息为 Node 对象添加注解和标签，例如节点所在的区域
+  （Region）和所具有的资源（CPU、内存等等）；
 3. 获取节点的网络地址和主机名；
-4. 检查节点的健康状况。如果节点无响应，控制器通过云平台 API 查看该节点是否
-   已从云中禁用、删除或终止。如果节点已从云中删除，则控制器从 Kubernetes 集群
-   中删除 Node 对象。
+4. 检查节点的健康状况。如果节点无响应，控制器通过云平台 API
+   查看该节点是否已从云中禁用、删除或终止。如果节点已从云中删除，
+   则控制器从 Kubernetes 集群中删除 Node 对象。
 
 <!--
 Some cloud provider implementations split this into a node controller and a separate node
@@ -118,8 +118,7 @@ of IP addresses for the Pod network.
 -->
 ### 路由控制器   {#route-controller}
 
-Route 控制器负责适当地配置云平台中的路由，以便 Kubernetes 集群中不同节点上的
-容器之间可以相互通信。
+Route 控制器负责适当地配置云平台中的路由，以便 Kubernetes 集群中不同节点上的容器之间可以相互通信。
 
 取决于云驱动本身，路由控制器可能也会为 Pod 网络分配 IP 地址块。
 
@@ -142,7 +141,7 @@ IP 地址、网络包过滤、目标健康检查等云基础设施组件集成
 <!--
 ## Authorization
 
-This section breaks down the access that the cloud controller managers requires
+This section breaks down the access that the cloud controller manager requires
 on various API objects, in order to perform its operations.
 -->
 ## 鉴权   {#authorization}
@@ -195,12 +194,14 @@ To set up Endpoints resources for the Services, it requires access to Create, Li
 -->
 ### 服务控制器 {#authorization-service-controller}
 
-服务控制器监测 Service 对象的 Create、Update 和 Delete 事件，并配置
-对应服务的 Endpoints 对象。
-为了访问 Service 对象，它需要 List、Watch 访问权限；为了更新 Service 对象
-它需要 Patch 和 Update 访问权限。
-为了能够配置 Service 对应的 Endpoints 资源，它需要 Create、List、Get、Watch
-和 Update 等访问权限。
+服务控制器监测 Service 对象的 Create、Update 和 Delete 事件，
+并配置对应服务的 Endpoints 对象。
+
+为了访问 Service 对象，它需要 List 和 Watch 访问权限。
+为了更新 Service 对象，它需要 Patch 和 Update 访问权限。
+
+为了能够配置 Service 对应的 Endpoints 资源，
+它需要 Create、List、Get、Watch 和 Update 等访问权限。
 
 `v1/Service`:
 
@@ -230,8 +231,8 @@ controller manager looks like:
 -->
 ### 其他  {#authorization-miscellaneous}
 
-云控制器管理器的实现中，其核心部分需要创建 Event 对象的访问权限以及
-创建 ServiceAccount 资源以保证操作安全性的权限。
+在云控制器管理器的实现中，其核心部分需要创建 Event 对象的访问权限，
+并创建 ServiceAccount 资源以保证操作安全性的权限。
 
 `v1/Event`:
 
@@ -318,10 +319,10 @@ To upgrade a HA control plane to use the cloud controller manager, see [Migrate
 
 Want to know how to implement your own cloud controller manager, or extend an existing project?
 -->
-[云控制器管理器的管理](/zh/docs/tasks/administer-cluster/running-cloud-controller/#cloud-controller-manager)
+[云控制器管理器的管理](/zh-cn/docs/tasks/administer-cluster/running-cloud-controller/#cloud-controller-manager)
 给出了运行和管理云控制器管理器的指南。
 
-要升级 HA 控制平面以使用云控制器管理器，请参见 [将复制的控制平面迁移以使用云控制器管理器](/zh/docs/tasks/administer-cluster/controller-manager-leader-migration/)
+要升级 HA 控制平面以使用云控制器管理器，请参见[将复制的控制平面迁移以使用云控制器管理器](/zh-cn/docs/tasks/administer-cluster/controller-manager-leader-migration/)。
 
 想要了解如何实现自己的云控制器管理器，或者对现有项目进行扩展么？
 
@@ -338,11 +339,11 @@ The implementation of the shared controllers highlighted in this document (Node,
 
 For more information about developing plugins, see [Developing Cloud Controller Manager](/docs/tasks/administer-cluster/developing-cloud-controller-manager/).
 -->
-本文中列举的共享控制器（节点控制器、路由控制器和服务控制器等）的实现以及
-其他一些生成具有 CloudProvider 接口的框架的代码，都是 Kubernetes 的核心代码。
+本文中列举的共享控制器（节点控制器、路由控制器和服务控制器等）的实现以及其他一些生成具有
+CloudProvider 接口的框架的代码，都是 Kubernetes 的核心代码。
 特定于云驱动的实现虽不是 Kubernetes 核心成分，仍要实现 `CloudProvider` 接口。
 
 关于如何开发插件的详细信息，可参考
-[开发云控制器管理器](/zh/docs/tasks/administer-cluster/developing-cloud-controller-manager/)
+[开发云控制器管理器](/zh-cn/docs/tasks/administer-cluster/developing-cloud-controller-manager/)
 文档。
 
diff --git a/content/zh-cn/docs/concepts/architecture/control-plane-node-communication.md b/content/zh-cn/docs/concepts/architecture/control-plane-node-communication.md
new file mode 100644
index 0000000000..fd8e4368d8
--- /dev/null
+++ b/content/zh-cn/docs/concepts/architecture/control-plane-node-communication.md
@@ -0,0 +1,221 @@
+---
+title: 节点与控制面之间的通信
+content_type: concept
+weight: 20
+---
+
+<!--
+title: Communication between Nodes and the Control Plane
+content_type: concept
+weight: 20
+aliases:
+- master-node-communication
+-->
+
+<!-- overview -->
+
+<!--
+This document catalogs the communication paths between the API server and the Kubernetes cluster.
+The intent is to allow users to customize their installation to harden the network configuration
+such that the cluster can be run on an untrusted network (or on fully public IPs on a cloud
+provider).
+-->
+本文列举控制面节点（确切说是 API 服务器）和 Kubernetes 集群之间的通信路径。
+目的是为了让用户能够自定义他们的安装，以实现对网络配置的加固，
+使得集群能够在不可信的网络上（或者在一个云服务商完全公开的 IP 上）运行。
+
+<!-- body -->
+
+<!--
+## Node to Control Plane
+
+Kubernetes has a "hub-and-spoke" API pattern. All API usage from nodes (or the pods they run)
+terminates at the API server. None of the other control plane components are designed to expose
+remote services. The API server is configured to listen for remote connections on a secure HTTPS
+port (typically 443) with one or more forms of client
+[authentication](/docs/reference/access-authn-authz/authentication/) enabled.
+One or more forms of [authorization](/docs/reference/access-authn-authz/authorization/) should be
+enabled, especially if [anonymous requests](/docs/reference/access-authn-authz/authentication/#anonymous-requests)
+or [service account tokens](/docs/reference/access-authn-authz/authentication/#service-account-tokens)
+are allowed.
+-->
+## 节点到控制面   {#node-to-control-plane}
+
+Kubernetes 采用的是中心辐射型（Hub-and-Spoke）API 模式。
+所有从节点（或运行于其上的 Pod）发出的 API 调用都终止于 API 服务器。
+其它控制面组件都没有被设计为可暴露远程服务。
+API 服务器被配置为在一个安全的 HTTPS 端口（通常为 443）上监听远程连接请求，
+并启用一种或多种形式的客户端[身份认证](/zh-cn/docs/reference/access-authn-authz/authentication/)机制。
+一种或多种客户端[鉴权机制](/zh-cn/docs/reference/access-authn-authz/authorization/)应该被启用，
+特别是在允许使用[匿名请求](/zh-cn/docs/reference/access-authn-authz/authentication/#anonymous-requests)
+或[服务账户令牌](/zh-cn/docs/reference/access-authn-authz/authentication/#service-account-tokens)的时候。
+
+<!--
+Nodes should be provisioned with the public root certificate for the cluster such that they can
+connect securely to the API server along with valid client credentials. A good approach is that the
+client credentials provided to the kubelet are in the form of a client certificate. See
+[kubelet TLS bootstrapping](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/)
+for automated provisioning of kubelet client certificates.
+-->
+应该使用集群的公共根证书开通节点，这样它们就能够基于有效的客户端凭据安全地连接 API 服务器。
+一种好的方法是以客户端证书的形式将客户端凭据提供给 kubelet。
+请查看 [kubelet TLS 启动引导](/zh-cn/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/)
+以了解如何自动提供 kubelet 客户端证书。
+
+<!--
+Pods that wish to connect to the API server can do so securely by leveraging a service account so
+that Kubernetes will automatically inject the public root certificate and a valid bearer token
+into the pod when it is instantiated.
+The `kubernetes` service (in `default` namespace) is configured with a virtual IP address that is
+redirected (via `kube-proxy`) to the HTTPS endpoint on the API server.
+
+The control plane components also communicate with the API server over the secure port.
+-->
+想要连接到 API 服务器的 Pod 可以使用服务账号安全地进行连接。
+当 Pod 被实例化时，Kubernetes 自动把公共根证书和一个有效的持有者令牌注入到 Pod 里。
+`kubernetes` 服务（位于 `default` 名字空间中）配置了一个虚拟 IP 地址，
+用于（通过 kube-proxy）转发请求到 API 服务器的 HTTPS 末端。
+
+控制面组件也通过安全端口与集群的 API 服务器通信。
+
+<!--
+As a result, the default operating mode for connections from the nodes and pods running on the
+nodes to the control plane is secured by default and can run over untrusted and/or public
+networks.
+-->
+这样，从集群节点和节点上运行的 Pod 到控制面的连接的缺省操作模式即是安全的，
+能够在不可信的网络或公网上运行。
+
+<!--
+## Control plane to node
+
+There are two primary communication paths from the control plane (the API server) to the nodes.
+The first is from the API server to the kubelet process which runs on each node in the cluster.
+The second is from the API server to any node, pod, or service through the API server's _proxy_
+functionality.
+-->
+## 控制面到节点  {#control-plane-to-node}
+
+从控制面（API 服务器）到节点有两种主要的通信路径。
+第一种是从 API 服务器到集群中每个节点上运行的 kubelet 进程。
+第二种是从 API 服务器通过它的代理功能连接到任何节点、Pod 或者服务。
+
+<!--
+### API server to kubelet
+
+The connections from the API server to the kubelet are used for:
+
+* Fetching logs for pods.
+* Attaching (usually through `kubectl`) to running pods.
+* Providing the kubelet's port-forwarding functionality.
+
+These connections terminate at the kubelet's HTTPS endpoint. By default, the API server does not
+verify the kubelet's serving certificate, which makes the connection subject to man-in-the-middle
+attacks and **unsafe** to run over untrusted and/or public networks.
+-->
+### API 服务器到 kubelet  {#api-server-to-kubelet}
+
+从 API 服务器到 kubelet 的连接用于：
+
+* 获取 Pod 日志
+* 挂接（通过 kubectl）到运行中的 Pod
+* 提供 kubelet 的端口转发功能。
+
+这些连接终止于 kubelet 的 HTTPS 末端。
+默认情况下，API 服务器不检查 kubelet 的服务证书。这使得此类连接容易受到中间人攻击，
+在非受信网络或公开网络上运行也是 **不安全的**。
+
+<!--
+To verify this connection, use the `--kubelet-certificate-authority` flag to provide the API
+server with a root certificate bundle to use to verify the kubelet's serving certificate.
+
+If that is not possible, use [SSH tunneling](#ssh-tunnels) between the API server and kubelet if
+required to avoid connecting over an
+untrusted or public network.
+
+Finally, [Kubelet authentication and/or authorization](/docs/reference/access-authn-authz/kubelet-authn-authz/)
+should be enabled to secure the kubelet API.
+-->
+为了对这个连接进行认证，使用 `--kubelet-certificate-authority` 标志给
+API 服务器提供一个根证书包，用于 kubelet 的服务证书。
+
+如果无法实现这点，又要求避免在非受信网络或公共网络上进行连接，可在 API 服务器和
+kubelet 之间使用 [SSH 隧道](#ssh-tunnels)。
+
+最后，应该启用
+[Kubelet 认证/鉴权](/zh-cn/docs/reference/access-authn-authz/kubelet-authn-authz/)
+来保护 kubelet API。
+
+<!--
+### API server to nodes, pods, and services
+
+The connections from the API server to a node, pod, or service default to plain HTTP connections
+and are therefore neither authenticated nor encrypted. They can be run over a secure HTTPS
+connection by prefixing `https:` to the node, pod, or service name in the API URL, but they will
+not validate the certificate provided by the HTTPS endpoint nor provide client credentials. So
+while the connection will be encrypted, it will not provide any guarantees of integrity. These
+connections **are not currently safe** to run over untrusted or public networks.
+-->
+### API 服务器到节点、Pod 和服务  {#api-server-to-nodes-pods-and-services}
+
+从 API 服务器到节点、Pod 或服务的连接默认为纯 HTTP 方式，因此既没有认证，也没有加密。
+这些连接可通过给 API URL 中的节点、Pod 或服务名称添加前缀 `https:` 来运行在安全的 HTTPS 连接上。
+不过这些连接既不会验证 HTTPS 末端提供的证书，也不会提供客户端证书。
+因此，虽然连接是加密的，仍无法提供任何完整性保证。
+这些连接 **目前还不能安全地** 在非受信网络或公共网络上运行。
+
+<!--
+### SSH tunnels
+
+Kubernetes supports SSH tunnels to protect the control plane to nodes communication paths. In this
+configuration, the API server initiates an SSH tunnel to each node in the cluster (connecting to
+the SSH server listening on port 22) and passes all traffic destined for a kubelet, node, pod, or
+service through the tunnel.
+This tunnel ensures that the traffic is not exposed outside of the network in which the nodes are
+running.
+-->
+### SSH 隧道 {#ssh-tunnels}
+
+Kubernetes 支持使用 SSH 隧道来保护从控制面到节点的通信路径。在这种配置下，
+API 服务器建立一个到集群中各节点的 SSH 隧道（连接到在 22 端口监听的 SSH 服务器）
+并通过这个隧道传输所有到 kubelet、节点、Pod 或服务的请求。
+这一隧道保证通信不会被暴露到集群节点所运行的网络之外。
+
+{{< note >}}
+<!--
+SSH tunnels are currently deprecated, so you shouldn't opt to use them unless you know what you
+are doing. The [Konnectivity service](#konnectivity-service) is a replacement for this
+communication channel.
+-->
+SSH 隧道目前已被废弃。除非你了解个中细节，否则不应使用。
+[Konnectivity 服务](#konnectivity-service)是 SSH 隧道的替代方案。
+{{< /note >}}
+
+<!--
+### Konnectivity service
+-->
+### Konnectivity 服务   {#konnectivity-service}
+
+{{< feature-state for_k8s_version="v1.18" state="beta" >}}
+
+<!--
+As a replacement to the SSH tunnels, the Konnectivity service provides TCP level proxy for the
+control plane to cluster communication. The Konnectivity service consists of two parts: the
+Konnectivity server in the control plane network and the Konnectivity agents in the nodes network.
+The Konnectivity agents initiate connections to the Konnectivity server and maintain the network
+connections.
+After enabling the Konnectivity service, all control plane to nodes traffic goes through these
+connections.
+
+Follow the [Konnectivity service task](/docs/tasks/extend-kubernetes/setup-konnectivity/) to set
+up the Konnectivity service in your cluster.
+-->
+作为 SSH 隧道的替代方案，Konnectivity 服务提供 TCP 层的代理，以便支持从控制面到集群的通信。
+Konnectivity 服务包含两个部分：Konnectivity 服务器和 Konnectivity 代理，
+分别运行在控制面网络和节点网络中。
+Konnectivity 代理建立并维持到 Konnectivity 服务器的网络连接。
+启用 Konnectivity 服务之后，所有控制面到节点的通信都通过这些连接传输。
+
+请浏览 [Konnectivity 服务任务](/zh-cn/docs/tasks/extend-kubernetes/setup-konnectivity/)
+在你的集群中配置 Konnectivity 服务。
+
diff --git a/content/zh/docs/concepts/architecture/controller.md b/content/zh-cn/docs/concepts/architecture/controller.md
similarity index 88%
rename from content/zh/docs/concepts/architecture/controller.md
rename to content/zh-cn/docs/concepts/architecture/controller.md
index 7c11a5a0d2..2703c82d69 100644
--- a/content/zh/docs/concepts/architecture/controller.md
+++ b/content/zh-cn/docs/concepts/architecture/controller.md
@@ -20,8 +20,8 @@ closer to the desired state, by turning equipment on or off.
 
 这是一个控制环的例子：房间里的温度自动调节器。
 
-当你设置了温度，告诉了温度自动调节器你的*期望状态（Desired State）*。
-房间的实际温度是*当前状态（Current State）*。
+当你设置了温度，告诉了温度自动调节器你的**期望状态（Desired State）**。
+房间的实际温度是**当前状态（Current State）**。
 通过对设备的开关控制，温度自动调节器让其当前状态接近期望状态。
 
 {{< glossary_definition term_id="controller" length="short">}}
@@ -31,7 +31,7 @@ closer to the desired state, by turning equipment on or off.
 ## Controller pattern
 
 A controller tracks at least one Kubernetes resource type.
-These [objects](/docs/concepts/overview/working-with-objects/kubernetes-objects/)
+These [objects](/docs/concepts/overview/working-with-objects/kubernetes-objects/#kubernetes-objects)
 have a spec field that represents the desired state. The
 controller(s) for that resource are responsible for making the current
 state come closer to that desired state.
@@ -50,7 +50,7 @@ detail.
 ## 控制器模式 {#controller-pattern}
 
 一个控制器至少追踪一种类型的 Kubernetes 资源。这些
-[对象](/zh/docs/concepts/overview/working-with-objects/kubernetes-objects/)
+[对象](/zh-cn/docs/concepts/overview/working-with-objects/kubernetes-objects/#kubernetes-objects)
 有一个代表期望状态的 `spec` 字段。
 该资源的控制器负责确保其当前状态接近期望状态。
 
@@ -74,7 +74,7 @@ Job is a Kubernetes resource that runs a
 {{< glossary_tooltip term_id="pod" >}}, or perhaps several Pods, to carry out
 a task and then stop.
 
-(Once [scheduled](/docs/concepts/scheduling/), Pod objects become part of the
+(Once [scheduled](/docs/concepts/scheduling-eviction/), Pod objects become part of the
 desired state for a kubelet).
 
 When the Job controller sees a new task it makes sure that, somewhere
@@ -96,7 +96,7 @@ and eventually the work is done.
 
 Job 是一种 Kubernetes 资源，它运行一个或者多个 {{< glossary_tooltip term_id="pod" >}}，
 来执行一个任务然后停止。
-（一旦[被调度了](/zh/docs/concepts/scheduling-eviction/)，对 `kubelet` 来说 Pod
+（一旦[被调度了](/zh-cn/docs/concepts/scheduling-eviction/)，对 `kubelet` 来说 Pod
 对象就会变成了期望状态的一部分）。
 
 在集群中，当 Job 控制器拿到新任务时，它会保证一组 Node 节点上的 `kubelet`
@@ -175,7 +175,7 @@ cloud provider APIs, and other services by
 -->
 在温度计的例子中，如果房间很冷，那么某个控制器可能还会启动一个防冻加热器。
 就 Kubernetes 集群而言，控制面间接地与 IP 地址管理工具、存储服务、云驱动
-APIs 以及其他服务协作，通过[扩展 Kubernetes](/zh/docs/concepts/extend-kubernetes/)
+APIs 以及其他服务协作，通过[扩展 Kubernetes](/zh-cn/docs/concepts/extend-kubernetes/)
 来实现这点。
 
 <!--
@@ -206,7 +206,10 @@ Kubernetes 采用了系统的云原生视图，并且可以处理持续的变化
 As a tenet of its design, Kubernetes uses lots of controllers that each manage
 a particular aspect of cluster state. Most commonly, a particular control loop
 (controller) uses one kind of resource as its desired state, and has a different
-kind of resource that it manages to make that desired state happen.
+kind of resource that it manages to make that desired state happen. For example,
+a controller for Jobs tracks Job objects (to discover new work) and Pod objects
+(to run the Jobs, and then to see when the work is finished). In this case
+something else creates the Jobs, whereas the Job controller creates Pods.
 
 It's useful to have simple controllers rather than one, monolithic set of control
 loops that are interlinked. Controllers can fail, so Kubernetes is designed to
@@ -218,6 +221,8 @@ allow for that.
 作为设计原则之一，Kubernetes 使用了很多控制器，每个控制器管理集群状态的一个特定方面。
 最常见的一个特定的控制器使用一种类型的资源作为它的期望状态，
 控制器管理控制另外一种类型的资源向它的期望状态演化。
+例如，Job 的控制器跟踪 Job 对象（以发现新的任务）和 Pod 对象（以运行 Job，然后查看任务何时完成）。
+在这种情况下，新任务会创建 Job，而 Job 控制器会创建 Pod。
 
 使用简单的控制器而不是一组相互连接的单体控制回路是很有用的。
 控制器会失败，所以 Kubernetes 的设计正是考虑到了这一点。
@@ -249,7 +254,7 @@ the {{< glossary_tooltip term_id="kube-controller-manager" >}}. These
 built-in controllers provide important core behaviors.
 
 The Deployment controller and Job controller are examples of controllers that
-come as part of Kubernetes itself (“built-in” controllers).
+come as part of Kubernetes itself ("built-in" controllers).
 Kubernetes lets you run a resilient control plane, so that if any of the built-in
 controllers were to fail, another part of the control plane will take over the work.
 
@@ -278,11 +283,13 @@ Kubernetes 允许你运行一个稳定的控制平面，这样即使某些内置
 * Read about the [Kubernetes control plane](/docs/concepts/overview/components/#control-plane-components)
 * Discover some of the basic [Kubernetes objects](/docs/concepts/overview/working-with-objects/kubernetes-objects/)
 * Learn more about the [Kubernetes API](/docs/concepts/overview/kubernetes-api/)
-* If you want to write your own controller, see [Extension Patterns](/docs/concepts/extend-kubernetes/extend-cluster/#extension-patterns) in Extending Kubernetes.
+* If you want to write your own controller, see
+  [Extension Patterns](/docs/concepts/extend-kubernetes/#extension-patterns)
+  in Extending Kubernetes.
 -->
-* 阅读 [Kubernetes 控制平面组件](/zh/docs/concepts/overview/components/#control-plane-components)
-* 了解 [Kubernetes 对象](/zh/docs/concepts/overview/working-with-objects/kubernetes-objects/)
+* 阅读 [Kubernetes 控制平面组件](/zh-cn/docs/concepts/overview/components/#control-plane-components)
+* 了解 [Kubernetes 对象](/zh-cn/docs/concepts/overview/working-with-objects/kubernetes-objects/)
   的一些基本知识
-* 进一步学习 [Kubernetes API](/zh/docs/concepts/overview/kubernetes-api/)
+* 进一步学习 [Kubernetes API](/zh-cn/docs/concepts/overview/kubernetes-api/)
 * 如果你想编写自己的控制器，请看 Kubernetes 的
-  [扩展模式](/zh/docs/concepts/extend-kubernetes/#extension-patterns)。
+  [扩展模式](/zh-cn/docs/concepts/extend-kubernetes/#extension-patterns)。
diff --git a/content/zh-cn/docs/concepts/architecture/cri.md b/content/zh-cn/docs/concepts/architecture/cri.md
new file mode 100644
index 0000000000..c0b3579578
--- /dev/null
+++ b/content/zh-cn/docs/concepts/architecture/cri.md
@@ -0,0 +1,88 @@
+---
+title: 容器运行时接口（CRI）
+content_type: concept
+weight: 50
+---
+
+<!-- 
+title: Container Runtime Interface (CRI)
+content_type: concept
+weight: 50
+-->
+
+<!-- overview -->
+<!-- 
+The CRI is a plugin interface which enables the kubelet to use a wide variety of
+container runtimes, without having a need to recompile the cluster components.
+
+You need a working
+{{<glossary_tooltip text="container runtime" term_id="container-runtime">}} on
+each Node in your cluster, so that the
+{{< glossary_tooltip text="kubelet" term_id="kubelet" >}} can launch
+{{< glossary_tooltip text="Pods" term_id="pod" >}} and their containers.
+-->
+CRI 是一个插件接口，它使 kubelet 能够使用各种容器运行时，无需重新编译集群组件。
+
+你需要在集群中的每个节点上都有一个可以正常工作的
+{{<glossary_tooltip text="容器运行时" term_id="container-runtime">}}，
+这样
+{{< glossary_tooltip text="kubelet" term_id="kubelet" >}} 能启动
+{{< glossary_tooltip text="Pod" term_id="pod" >}} 及其容器。
+
+{{< glossary_definition prepend="容器运行时接口（CRI）是" term_id="container-runtime-interface" length="all" >}}
+
+<!-- body -->
+<!-- ## The API {#api} -->
+## API {#api}
+
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
+
+<!--
+The kubelet acts as a client when connecting to the container runtime via gRPC.
+The runtime and image service endpoints have to be available in the container
+runtime, which can be configured separately within the kubelet by using the
+`--image-service-endpoint` and `--container-runtime-endpoint` [command line
+flags](/docs/reference/command-line-tools-reference/kubelet)
+-->
+当通过 gRPC 连接到容器运行时时，kubelet 充当客户端。
+运行时和镜像服务端点必须在容器运行时中可用，可以使用
+[命令行标志](/zh-cn/docs/reference/command-line-tools-reference/kubelet)的
+`--image-service-endpoint` 和 `--container-runtime-endpoint`
+在 kubelet 中单独配置。
+
+<!-- 
+For Kubernetes v{{< skew currentVersion >}}, the kubelet prefers to use CRI `v1`.
+If a container runtime does not support `v1` of the CRI, then the kubelet tries to
+negotiate any older supported version.
+The v{{< skew currentVersion >}} kubelet can also negotiate CRI `v1alpha2`, but
+this version is considered as deprecated.
+If the kubelet cannot negotiate a supported CRI version, the kubelet gives up
+and doesn't register as a node.
+-->
+对 Kubernetes v{{< skew currentVersion >}}，kubelet 偏向于使用 CRI `v1` 版本。
+如果容器运行时不支持 CRI 的 `v1` 版本，那么 kubelet 会尝试协商任何旧的其他支持版本。
+如果 kubelet 无法协商支持的 CRI 版本，则 kubelet 放弃并且不会注册为节点。
+
+<!-- 
+## Upgrading
+
+When upgrading Kubernetes, then the kubelet tries to automatically select the
+latest CRI version on restart of the component. If that fails, then the fallback
+will take place as mentioned above. If a gRPC re-dial was required because the
+container runtime has been upgraded, then the container runtime must also
+support the initially selected version or the redial is expected to fail. This
+requires a restart of the kubelet.
+-->
+## 升级  {#upgrading}
+
+升级 Kubernetes 时，kubelet 会尝试在组件重启时自动选择最新的 CRI 版本。
+如果失败，则将如上所述进行回退。如果由于容器运行时已升级而需要 gRPC 重拨，
+则容器运行时还必须支持最初选择的版本，否则重拨预计会失败。
+这需要重新启动 kubelet。
+
+## {{% heading "whatsnext" %}}
+
+<!-- 
+- Learn more about the CRI [protocol definition](https://github.com/kubernetes/cri-api/blob/c75ef5b/pkg/apis/runtime/v1/api.proto)
+-->
+- 了解更多有关 CRI [协议定义](https://github.com/kubernetes/cri-api/blob/c75ef5b/pkg/apis/runtime/v1/api.proto)
diff --git a/content/zh-cn/docs/concepts/architecture/garbage-collection.md b/content/zh-cn/docs/concepts/architecture/garbage-collection.md
new file mode 100644
index 0000000000..d45b98fa8f
--- /dev/null
+++ b/content/zh-cn/docs/concepts/architecture/garbage-collection.md
@@ -0,0 +1,360 @@
+---
+title: 垃圾收集
+content_type: concept
+weight: 50
+---
+
+<!--
+title: Garbage Collection
+content_type: concept
+weight: 50
+-->
+
+<!-- overview -->
+
+<!--
+{{<glossary_definition term_id="garbage-collection" length="short">}} This
+allows the clean up of resources like the following:
+-->
+{{<glossary_definition term_id="garbage-collection" length="short">}}
+垃圾收集允许系统清理如下资源：
+
+<!--
+* [Failed pods](/docs/concepts/workloads/pods/pod-lifecycle/#pod-garbage-collection)
+* [Completed Jobs](/docs/concepts/workloads/controllers/ttlafterfinished/)
+* [Objects without owner references](#owners-dependents)
+* [Unused containers and container images](#containers-images)
+* [Dynamically provisioned PersistentVolumes with a StorageClass reclaim policy of Delete](/docs/concepts/storage/persistent-volumes/#delete)
+* [Stale or expired CertificateSigningRequests (CSRs)](/docs/reference/access-authn-authz/certificate-signing-requests/#request-signing-process)
+* {{<glossary_tooltip text="Nodes" term_id="node">}} deleted in the following scenarios:
+  * On a cloud when the cluster uses a [cloud controller manager](/docs/concepts/architecture/cloud-controller/)
+  * On-premises when the cluster uses an addon similar to a cloud controller
+    manager
+* [Node Lease objects](/docs/concepts/architecture/nodes/#heartbeats)
+-->
+* [失败的 Pod](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#pod-garbage-collection)
+* [已完成的 Job](/zh-cn/docs/concepts/workloads/controllers/ttlafterfinished/)
+* [不再存在属主引用的对象](#owners-dependents)
+* [未使用的容器和容器镜像](#containers-images)
+* [动态制备的、StorageClass 回收策略为 Delete 的 PV 卷](/zh-cn/docs/concepts/storage/persistent-volumes/#delete)
+* [阻滞或者过期的 CertificateSigningRequest (CSRs)](/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests/#request-signing-process)
+* 在以下情形中删除了的{{<glossary_tooltip text="节点" term_id="node">}}对象：
+  * 当集群使用[云控制器管理器](/zh-cn/docs/concepts/architecture/cloud-controller/)运行于云端时；
+  * 当集群使用类似于云控制器管理器的插件运行在本地环境中时。
+* [节点租约对象](/zh-cn/docs/concepts/architecture/nodes/#heartbeats)
+
+<!--
+## Owners and dependents {#owners-dependents}
+
+Many objects in Kubernetes link to each other through [*owner references*](/docs/concepts/overview/working-with-objects/owners-dependents/). 
+Owner references tell the control plane which objects are dependent on others.
+Kubernetes uses owner references to give the control plane, and other API
+clients, the opportunity to clean up related resources before deleting an
+object. In most cases, Kubernetes manages owner references automatically.
+-->
+## 属主与依赖   {#owners-dependents}
+
+Kubernetes 中很多对象通过[*属主引用*](/zh-cn/docs/concepts/overview/working-with-objects/owners-dependents/)
+链接到彼此。属主引用（Owner Reference）可以告诉控制面哪些对象依赖于其他对象。
+Kubernetes 使用属主引用来为控制面以及其他 API 客户端在删除某对象时提供一个清理关联资源的机会。
+在大多数场合，Kubernetes 都是自动管理属主引用的。
+
+<!--
+Ownership is different from the [labels and selectors](/docs/concepts/overview/working-with-objects/labels/)
+mechanism that some resources also use. For example, consider a
+{{<glossary_tooltip text="Service" term_id="service">}} that creates
+`EndpointSlice` objects. The Service uses *labels* to allow the control plane to
+determine which `EndpointSlice` objects are used for that Service. In addition
+to the labels, each `EndpointSlice` that is managed on behalf of a Service has
+an owner reference. Owner references help different parts of Kubernetes avoid
+interfering with objects they don’t control.
+-->
+属主关系与某些资源所使用的[标签和选择算符](/zh-cn/docs/concepts/overview/working-with-objects/labels/)不同。
+例如，考虑一个创建 `EndpointSlice` 对象的 {{<glossary_tooltip text="Service" term_id="service">}}
+对象。Service 对象使用*标签*来允许控制面确定哪些 `EndpointSlice` 对象被该
+Service 使用。除了标签，每个被 Service 托管的 `EndpointSlice` 对象还有一个属主引用属性。
+属主引用可以帮助 Kubernetes 中的不同组件避免干预并非由它们控制的对象。
+
+{{< note >}}
+<!--
+Cross-namespace owner references are disallowed by design.
+Namespaced dependents can specify cluster-scoped or namespaced owners.
+A namespaced owner **must** exist in the same namespace as the dependent.
+If it does not, the owner reference is treated as absent, and the dependent
+is subject to deletion once all owners are verified absent.
+-->
+根据设计，系统不允许出现跨名字空间的属主引用。名字空间作用域的依赖对象可以指定集群作用域或者名字空间作用域的属主。
+名字空间作用域的属主**必须**存在于依赖对象所在的同一名字空间。
+如果属主位于不同名字空间，则属主引用被视为不存在，而当检查发现所有属主都已不存在时，依赖对象会被删除。
+
+<!--
+Cluster-scoped dependents can only specify cluster-scoped owners.
+In v1.20+, if a cluster-scoped dependent specifies a namespaced kind as an owner,
+it is treated as having an unresolvable owner reference, and is not able to be garbage collected.
+-->
+集群作用域的依赖对象只能指定集群作用域的属主。
+在 1.20 及更高版本中，如果一个集群作用域的依赖对象指定了某个名字空间作用域的类别作为其属主，
+则该对象被视为拥有一个无法解析的属主引用，因而无法被垃圾收集处理。
+
+<!--
+In v1.20+, if the garbage collector detects an invalid cross-namespace `ownerReference`,
+or a cluster-scoped dependent with an `ownerReference` referencing a namespaced kind, a warning Event 
+with a reason of `OwnerRefInvalidNamespace` and an `involvedObject` of the invalid dependent is reported.
+You can check for that kind of Event by running
+`kubectl get events -A --field-selector=reason=OwnerRefInvalidNamespace`.
+-->
+在 1.20 及更高版本中，如果垃圾收集器检测到非法的跨名字空间 `ownerReference`，
+或者某集群作用域的依赖对象的 `ownerReference` 引用某名字空间作用域的类别，
+系统会生成一个警告事件，其原因为 `OwnerRefInvalidNamespace`，`involvedObject`
+设置为非法的依赖对象。你可以通过运行
+`kubectl get events -A --field-selector=reason=OwnerRefInvalidNamespace`
+来检查是否存在这类事件。
+{{< /note >}}
+
+<!--
+## Cascading deletion {#cascading-deletion}
+
+Kubernetes checks for and deletes objects that no longer have owner
+references, like the pods left behind when you delete a ReplicaSet. When you
+delete an object, you can control whether Kubernetes deletes the object's
+dependents automatically, in a process called *cascading deletion*. There are
+two types of cascading deletion, as follows: 
+
+* Foreground cascading deletion
+* Background cascading deletion
+-->
+## 级联删除    {#cascading-deletion}
+
+Kubernetes 会检查并删除那些不再拥有属主引用的对象，例如在你删除了 ReplicaSet
+之后留下来的 Pod。当你删除某个对象时，你可以控制 Kubernetes 是否去自动删除该对象的依赖对象，
+这个过程称为 **级联删除（Cascading Deletion）**。
+级联删除有两种类型，分别如下：
+
+* 前台级联删除
+* 后台级联删除
+
+<!--
+You can also control how and when garbage collection deletes resources that have
+owner references using Kubernetes {{<glossary_tooltip text="finalizers" term_id="finalizer">}}. 
+-->
+你也可以使用 Kubernetes {{<glossary_tooltip text="Finalizers" term_id="finalizer">}}
+来控制垃圾收集机制如何以及何时删除包含属主引用的资源。
+
+<!--
+### Foreground cascading deletion {#foreground-deletion}
+
+In foreground cascading deletion, the owner object you're deleting first enters
+a *deletion in progress* state. In this state, the following happens to the
+owner object: 
+-->
+### 前台级联删除 {#foreground-deletion}
+
+在前台级联删除中，正在被你删除的属主对象首先进入 *deletion in progress* 状态。
+在这种状态下，针对属主对象会发生以下事情：
+
+<!--
+* The Kubernetes API server sets the object's `metadata.deletionTimestamp`
+  field to the time the object was marked for deletion.
+* The Kubernetes API server also sets the `metadata.finalizers` field to
+  `foregroundDeletion`. 
+* The object remains visible through the Kubernetes API until the deletion
+  process is complete.
+-->
+* Kubernetes API 服务器将对象的 `metadata.deletionTimestamp`
+  字段设置为对象被标记为要删除的时间点。
+* Kubernetes API 服务器也会将 `metadata.finalizers` 字段设置为 `foregroundDeletion`。
+* 在删除过程完成之前，通过 Kubernetes API 仍然可以看到该对象。
+
+<!--
+After the owner object enters the deletion in progress state, the controller
+deletes the dependents. After deleting all the dependent objects, the controller
+deletes the owner object. At this point, the object is no longer visible in the
+Kubernetes API. 
+
+During foreground cascading deletion, the only dependents that block owner
+deletion are those that have the `ownerReference.blockOwnerDeletion=true` field.
+See [Use foreground cascading deletion](/docs/tasks/administer-cluster/use-cascading-deletion/#use-foreground-cascading-deletion)
+to learn more.
+-->
+当属主对象进入删除过程中状态后，控制器删除其依赖对象。控制器在删除完所有依赖对象之后，
+删除属主对象。这时，通过 Kubernetes API 就无法再看到该对象。
+
+在前台级联删除过程中，唯一可能阻止属主对象被删除的是那些带有
+`ownerReference.blockOwnerDeletion=true` 字段的依赖对象。
+参阅[使用前台级联删除](/zh-cn/docs/tasks/administer-cluster/use-cascading-deletion/#use-foreground-cascading-deletion)
+以了解进一步的细节。
+
+<!--
+### Background cascading deletion {#background-deletion}
+
+In background cascading deletion, the Kubernetes API server deletes the owner
+object immediately and the controller cleans up the dependent objects in
+the background. By default, Kubernetes uses background cascading deletion unless
+you manually use foreground deletion or choose to orphan the dependent objects.
+
+See [Use background cascading deletion](/docs/tasks/administer-cluster/use-cascading-deletion/#use-background-cascading-deletion)
+to learn more.
+-->
+### 后台级联删除 {#background-deletion}
+
+在后台级联删除过程中，Kubernetes 服务器立即删除属主对象，控制器在后台清理所有依赖对象。
+默认情况下，Kubernetes 使用后台级联删除方案，除非你手动设置了要使用前台删除，
+或者选择遗弃依赖对象。
+
+参阅[使用后台级联删除](/zh-cn/docs/tasks/administer-cluster/use-cascading-deletion/#use-background-cascading-deletion)
+以了解进一步的细节。
+
+<!--
+### Orphaned dependents
+
+When Kubernetes deletes an owner object, the dependents left behind are called
+*orphan* objects. By default, Kubernetes deletes dependent objects. To learn how
+to override this behaviour, see [Delete owner objects and orphan dependents](/docs/tasks/administer-cluster/use-cascading-deletion/#set-orphan-deletion-policy).
+-->
+### 被遗弃的依赖对象    {#orphaned-dependents}
+
+当 Kubernetes 删除某个属主对象时，被留下来的依赖对象被称作被遗弃的（Orphaned）对象。
+默认情况下，Kubernetes 会删除依赖对象。要了解如何重载这种默认行为，可参阅
+[删除属主对象和遗弃依赖对象](/zh-cn/docs/tasks/administer-cluster/use-cascading-deletion/#set-orphan-deletion-policy)。
+
+<!--
+## Garbage collection of unused containers and images {#containers-images}
+
+The {{<glossary_tooltip text="kubelet" term_id="kubelet">}} performs garbage
+collection on unused images every five minutes and on unused containers every
+minute. You should avoid using external garbage collection tools, as these can
+break the kubelet behavior and remove containers that should exist. 
+-->
+## 未使用容器和镜像的垃圾收集     {#containers-images}
+
+{{<glossary_tooltip text="kubelet" term_id="kubelet">}} 会每五分钟对未使用的镜像执行一次垃圾收集，
+每分钟对未使用的容器执行一次垃圾收集。
+你应该避免使用外部的垃圾收集工具，因为外部工具可能会破坏 kubelet
+的行为，移除应该保留的容器。
+
+<!--
+To configure options for unused container and image garbage collection, tune the
+kubelet using a [configuration file](/docs/tasks/administer-cluster/kubelet-config-file/)
+and change the parameters related to garbage collection using the
+[`KubeletConfiguration`](/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
+resource type.
+-->
+要配置对未使用容器和镜像的垃圾收集选项，可以使用一个
+[配置文件](/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/)，基于
+[`KubeletConfiguration`](/zh-cn/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration) 
+资源类型来调整与垃圾搜集相关的 kubelet 行为。
+
+<!--
+### Container image lifecycle
+
+Kubernetes manages the lifecycle of all images through its *image manager*,
+which is part of the kubelet, with the cooperation of 
+{{< glossary_tooltip text="cadvisor" term_id="cadvisor" >}}. The kubelet
+considers the following disk usage limits when making garbage collection
+decisions:
+-->
+### 容器镜像生命期     {#container-image-lifecycle}
+
+Kubernetes 通过其镜像管理器（Image Manager）来管理所有镜像的生命周期，
+该管理器是 kubelet 的一部分，工作时与
+{{< glossary_tooltip text="cadvisor" term_id="cadvisor" >}} 协同。
+kubelet 在作出垃圾收集决定时会考虑如下磁盘用量约束：
+
+* `HighThresholdPercent`
+* `LowThresholdPercent`
+
+<!--
+Disk usage above the configured `HighThresholdPercent` value triggers garbage
+collection, which deletes images in order based on the last time they were used,
+starting with the oldest first. The kubelet deletes images
+until disk usage reaches the `LowThresholdPercent` value.
+-->
+磁盘用量超出所配置的 `HighThresholdPercent` 值时会触发垃圾收集，
+垃圾收集器会基于镜像上次被使用的时间来按顺序删除它们，首先删除的是最老的镜像。
+kubelet 会持续删除镜像，直到磁盘用量到达 `LowThresholdPercent` 值为止。
+
+<!--
+### Container garbage collection {#container-image-garbage-collection}
+
+The kubelet garbage collects unused containers based on the following variables,
+which you can define: 
+-->
+### 容器垃圾收集    {#container-image-garbage-collection}
+
+kubelet 会基于如下变量对所有未使用的容器执行垃圾收集操作，这些变量都是你可以定义的：
+
+<!--
+* `MinAge`: the minimum age at which the kubelet can garbage collect a
+  container. Disable by setting to `0`.
+* `MaxPerPodContainer`: the maximum number of dead containers each Pod pair
+  can have. Disable by setting to less than `0`.
+* `MaxContainers`: the maximum number of dead containers the cluster can have.
+  Disable by setting to less than `0`. 
+-->
+* `MinAge`：kubelet 可以垃圾回收某个容器时该容器的最小年龄。设置为 `0`
+  表示禁止使用此规则。
+* `MaxPerPodContainer`：每个 Pod 可以包含的已死亡的容器个数上限。设置为小于 `0`
+  的值表示禁止使用此规则。
+* `MaxContainers`：集群中可以存在的已死亡的容器个数上限。设置为小于 `0`
+  的值意味着禁止应用此规则。
+
+<!--
+In addition to these variables, the kubelet garbage collects unidentified and
+deleted containers, typically starting with the oldest first. 
+
+`MaxPerPodContainer` and `MaxContainer` may potentially conflict with each other
+in situations where retaining the maximum number of containers per Pod
+(`MaxPerPodContainer`) would go outside the allowable total of global dead
+containers (`MaxContainers`). In this situation, the kubelet adjusts
+`MaxPerPodContainer` to address the conflict. A worst-case scenario would be to
+downgrade `MaxPerPodContainer` to `1` and evict the oldest containers.
+Additionally, containers owned by pods that have been deleted are removed once
+they are older than `MinAge`.
+-->
+除以上变量之外，kubelet 还会垃圾收集除无标识的以及已删除的容器，通常从最老的容器开始。
+
+当保持每个 Pod 的最大数量的容器（`MaxPerPodContainer`）会使得全局的已死亡容器个数超出上限
+（`MaxContainers`）时，`MaxPerPodContainer` 和 `MaxContainers` 之间可能会出现冲突。
+在这种情况下，kubelet 会调整 `MaxPerPodContainer` 来解决这一冲突。
+最坏的情形是将 `MaxPerPodContainer` 降格为 `1`，并驱逐最老的容器。
+此外，当隶属于某已被删除的 Pod 的容器的年龄超过 `MinAge` 时，它们也会被删除。
+
+{{<note>}}
+<!--
+The kubelet only garbage collects the containers it manages.
+-->
+kubelet 仅会回收由它所管理的容器。
+{{</note>}}
+
+<!--
+## Configuring garbage collection {#configuring-gc}
+
+You can tune garbage collection of resources by configuring options specific to
+the controllers managing those resources. The following pages show you how to
+configure garbage collection:
+
+  * [Configuring cascading deletion of Kubernetes objects](/docs/tasks/administer-cluster/use-cascading-deletion/)
+  * [Configuring cleanup of finished Jobs](/docs/concepts/workloads/controllers/ttlafterfinished/)
+--> 
+## 配置垃圾收集     {#configuring-gc}
+
+你可以通过配置特定于管理资源的控制器来调整资源的垃圾收集行为。
+下面的页面为你展示如何配置垃圾收集：
+
+* [配置 Kubernetes 对象的级联删除](/zh-cn/docs/tasks/administer-cluster/use-cascading-deletion/)
+* [配置已完成 Job 的清理](/zh-cn/docs/concepts/workloads/controllers/ttlafterfinished/)
+
+<!-- * [Configuring unused container and image garbage collection](/docs/tasks/administer-cluster/reconfigure-kubelet/) -->
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* Learn more about [ownership of Kubernetes objects](/docs/concepts/overview/working-with-objects/owners-dependents/).
+* Learn more about Kubernetes [finalizers](/docs/concepts/overview/working-with-objects/finalizers/).
+* Learn about the [TTL controller](/docs/concepts/workloads/controllers/ttlafterfinished/) (beta) that cleans up finished Jobs.
+-->
+* 进一步了解 [Kubernetes 对象的属主关系](/zh-cn/docs/concepts/overview/working-with-objects/owners-dependents/)。
+* 进一步了解 Kubernetes [finalizers](/zh-cn/docs/concepts/overview/working-with-objects/finalizers/)。
+* 进一步了解 [TTL 控制器](/zh-cn/docs/concepts/workloads/controllers/ttlafterfinished/) (beta)，
+  该控制器负责清理已完成的 Job。
+
diff --git a/content/zh-cn/docs/concepts/architecture/nodes.md b/content/zh-cn/docs/concepts/architecture/nodes.md
new file mode 100644
index 0000000000..90634a7d9b
--- /dev/null
+++ b/content/zh-cn/docs/concepts/architecture/nodes.md
@@ -0,0 +1,1182 @@
+---
+title: 节点
+content_type: concept
+weight: 10
+---
+<!--
+reviewers:
+- caesarxuchao
+- dchen1107
+title: Nodes
+content_type: concept
+weight: 10
+-->
+
+<!-- overview -->
+
+<!--
+Kubernetes runs your workload by placing containers into Pods to run on _Nodes_.
+A node may be a virtual or physical machine, depending on the cluster. Each node
+is managed by the
+{{< glossary_tooltip text="control plane" term_id="control-plane" >}}
+and contains the services necessary to run
+{{< glossary_tooltip text="Pods" term_id="pod" >}}.
+
+Typically you have several nodes in a cluster; in a learning or resource-limited
+environment, you might have only one node.
+
+The [components](/docs/concepts/overview/components/#node-components) on a node include the
+{{< glossary_tooltip text="kubelet" term_id="kubelet" >}}, a
+{{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}, and the
+{{< glossary_tooltip text="kube-proxy" term_id="kube-proxy" >}}.
+-->
+Kubernetes 通过将容器放入在节点（Node）上运行的 Pod 中来执行你的工作负载。
+节点可以是一个虚拟机或者物理机器，取决于所在的集群配置。
+每个节点包含运行 {{< glossary_tooltip text="Pod" term_id="pod" >}} 所需的服务；
+这些节点由 {{< glossary_tooltip text="控制面" term_id="control-plane" >}} 负责管理。
+
+通常集群中会有若干个节点；而在一个学习所用或者资源受限的环境中，你的集群中也可能只有一个节点。
+
+节点上的[组件](/zh-cn/docs/concepts/overview/components/#node-components)包括
+{{< glossary_tooltip text="kubelet" term_id="kubelet" >}}、
+{{< glossary_tooltip text="容器运行时" term_id="container-runtime" >}}以及
+{{< glossary_tooltip text="kube-proxy" term_id="kube-proxy" >}}。
+
+<!-- body -->
+<!--
+## Management
+
+There are two main ways to have Nodes added to the {{< glossary_tooltip text="API server" term_id="kube-apiserver" >}}:
+
+1. The kubelet on a node self-registers to the control plane
+2. You (or another human user) manually add a Node object
+
+After you create a Node {{< glossary_tooltip text="object" term_id="object" >}},
+or the kubelet on a node self-registers, the control plane checks whether the new Node object is
+valid. For example, if you try to create a Node from the following JSON manifest:
+-->
+## 管理  {#management}
+
+向 {{< glossary_tooltip text="API 服务器" term_id="kube-apiserver" >}}添加节点的方式主要有两种：
+
+1. 节点上的 `kubelet` 向控制面执行自注册；
+2. 你（或者别的什么人）手动添加一个 Node 对象。
+
+在你创建了 Node {{< glossary_tooltip text="对象" term_id="object" >}}或者节点上的
+`kubelet` 执行了自注册操作之后，控制面会检查新的 Node 对象是否合法。
+例如，如果你尝试使用下面的 JSON 对象来创建 Node 对象：
+
+```json
+{
+  "kind": "Node",
+  "apiVersion": "v1",
+  "metadata": {
+    "name": "10.240.79.157",
+    "labels": {
+      "name": "my-first-k8s-node"
+    }
+  }
+}
+```
+
+<!--
+Kubernetes creates a Node object internally (the representation). Kubernetes checks
+that a kubelet has registered to the API server that matches the `metadata.name`
+field of the Node. If the node is healthy (i.e. all necessary services are running),
+then it is eligible to run a Pod. Otherwise, that node is ignored for any cluster activity
+until it becomes healthy.
+-->
+Kubernetes 会在内部创建一个 Node 对象作为节点的表示。Kubernetes 检查 `kubelet`
+向 API 服务器注册节点时使用的 `metadata.name` 字段是否匹配。
+如果节点是健康的（即所有必要的服务都在运行中），则该节点可以用来运行 Pod。
+否则，直到该节点变为健康之前，所有的集群活动都会忽略该节点。
+
+{{< note >}}
+<!--
+Kubernetes keeps the object for the invalid Node and continues checking to see whether
+it becomes healthy.
+
+You, or a {{< glossary_tooltip term_id="controller" text="controller">}}, must explicitly
+delete the Node object to stop that health checking.
+-->
+Kubernetes 会一直保存着非法节点对应的对象，并持续检查该节点是否已经变得健康。
+你，或者某个{{< glossary_tooltip term_id="controller" text="控制器">}}必须显式地删除该
+Node 对象以停止健康检查操作。
+{{< /note >}}
+
+<!--
+The name of a Node object must be a valid
+[DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
+-->
+Node 对象的名称必须是合法的
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
+
+<!--
+### Node name uniqueness
+
+The [name](/docs/concepts/overview/working-with-objects/names#names) identifies a Node. Two Nodes
+cannot have the same name at the same time. Kubernetes also assumes that a resource with the same
+name is the same object. In case of a Node, it is implicitly assumed that an instance using the
+same name will have the same state (e.g. network settings, root disk contents)
+and attributes like node labels. This may lead to
+inconsistencies if an instance was modified without changing its name. If the Node needs to be
+replaced or updated significantly, the existing Node object needs to be removed from API server
+first and re-added after the update.
+-->
+### 节点名称唯一性     {#node-name-uniqueness}
+
+节点的[名称](/zh-cn/docs/concepts/overview/working-with-objects/names#names)用来标识 Node 对象。
+没有两个 Node 可以同时使用相同的名称。 Kubernetes 还假定名字相同的资源是同一个对象。
+就 Node 而言，隐式假定使用相同名称的实例会具有相同的状态（例如网络配置、根磁盘内容）
+和类似节点标签这类属性。这可能在节点被更改但其名称未变时导致系统状态不一致。
+如果某个 Node 需要被替换或者大量变更，需要从 API 服务器移除现有的 Node 对象，
+之后再在更新之后重新将其加入。
+
+<!--
+### Self-registration of Nodes
+
+When the kubelet flag `--register-node` is true (the default), the kubelet will attempt to
+register itself with the API server.  This is the preferred pattern, used by most distros.
+
+For self-registration, the kubelet is started with the following options:
+-->
+### 节点自注册 {#self-registration-of-nodes}
+
+当 kubelet 标志 `--register-node` 为 true（默认）时，它会尝试向 API 服务注册自己。
+这是首选模式，被绝大多数发行版选用。
+
+对于自注册模式，kubelet 使用下列参数启动：
+
+<!--
+- `--kubeconfig` - Path to credentials to authenticate itself to the API server.
+- `--cloud-provider` - How to talk to a {{< glossary_tooltip text="cloud provider" term_id="cloud-provider" >}} to read metadata about itself.
+- `--register-node` - Automatically register with the API server.
+- `--register-with-taints` - Register the node with the given list of {{< glossary_tooltip text="taints" term_id="taint" >}} (comma separated `<key>=<value>:<effect>`).
+
+    No-op if `register-node` is false.
+- `--node-ip` - IP address of the node.
+- `--node-labels` - {{< glossary_tooltip text="Labels" term_id="label" >}} to add when registering the node in the cluster (see label restrictions enforced by the [NodeRestriction admission plugin](/docs/reference/access-authn-authz/admission-controllers/#noderestriction)).
+- `--node-status-update-frequency` - Specifies how often kubelet posts node status to master.
+-->
+- `--kubeconfig` - 用于向 API 服务器执行身份认证所用的凭据的路径。
+- `--cloud-provider` - 与某{{< glossary_tooltip text="云驱动" term_id="cloud-provider" >}}
+  进行通信以读取与自身相关的元数据的方式。
+- `--register-node` - 自动向 API 服务注册。
+- `--register-with-taints` - 使用所给的{{< glossary_tooltip text="污点" term_id="taint" >}}列表
+  （逗号分隔的 `<key>=<value>:<effect>`）注册节点。当 `register-node` 为 false 时无效。
+- `--node-ip` - 节点 IP 地址。
+- `--node-labels` - 在集群中注册节点时要添加的{{< glossary_tooltip text="标签" term_id="label" >}}。
+  （参见 [NodeRestriction 准入控制插件](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#noderestriction)所实施的标签限制）。
+- `--node-status-update-frequency` - 指定 kubelet 向控制面发送状态的频率。
+
+<!--
+When the [Node authorization mode](/docs/reference/access-authn-authz/node/) and
+[NodeRestriction admission plugin](/docs/reference/access-authn-authz/admission-controllers/#noderestriction) are enabled,
+kubelets are only authorized to create/modify their own Node resource.
+-->
+启用 [Node 鉴权模式](/zh-cn/docs/reference/access-authn-authz/node/)和
+[NodeRestriction 准入插件](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#noderestriction)时，
+仅授权 `kubelet` 创建或修改其自己的节点资源。
+
+{{< note >}}
+<!--
+As mentioned in the [Node name uniqueness](#node-name-uniqueness) section,
+when Node configuration needs to be updated, it is a good practice to re-register
+the node with the API server. For example, if the kubelet being restarted with
+the new set of `--node-labels`, but the same Node name is used, the change will
+not take an effect, as labels are being set on the Node registration.
+-->
+正如[节点名称唯一性](#node-name-uniqueness)一节所述，当 Node 的配置需要被更新时，
+一种好的做法是重新向 API 服务器注册该节点。例如，如果 kubelet 重启时其 `--node-labels`
+是新的值集，但同一个 Node 名称已经被使用，则所作变更不会起作用，
+因为节点标签是在 Node 注册时完成的。
+
+<!--
+Pods already scheduled on the Node may misbehave or cause issues if the Node
+configuration will be changed on kubelet restart. For example, already running
+Pod may be tainted against the new labels assigned to the Node, while other
+Pods, that are incompatible with that Pod will be scheduled based on this new
+label.  Node re-registration ensures all Pods will be drained and properly
+re-scheduled.
+-->
+如果在 kubelet 重启期间 Node 配置发生了变化，已经被调度到某 Node 上的 Pod
+可能会出现行为不正常或者出现其他问题，例如，已经运行的 Pod
+可能通过污点机制设置了与 Node 上新设置的标签相排斥的规则，也有一些其他 Pod，
+本来与此 Pod 之间存在不兼容的问题，也会因为新的标签设置而被调到到同一节点。
+节点重新注册操作可以确保节点上所有 Pod 都被排空并被正确地重新调度。
+{{< /note >}}
+
+<!--
+### Manual Node administration
+
+You can create and modify Node objects using
+{{< glossary_tooltip text="kubectl" term_id="kubectl" >}}.
+
+When you want to create Node objects manually, set the kubelet flag `--register-node=false`.
+
+You can modify Node objects regardless of the setting of `--register-node`.
+For example, you can set labels on an existing Node or mark it unschedulable.
+-->
+### 手动节点管理 {#manual-node-administration}
+
+你可以使用 {{< glossary_tooltip text="kubectl" term_id="kubectl" >}}
+来创建和修改 Node 对象。
+
+如果你希望手动创建节点对象时，请设置 kubelet 标志 `--register-node=false`。
+
+你可以修改 Node 对象（忽略 `--register-node` 设置）。
+例如，你可以修改节点上的标签或并标记其为不可调度。
+
+<!--
+You can use labels on Nodes in conjunction with node selectors on Pods to control
+scheduling. For example, you can constrain a Pod to only be eligible to run on
+a subset of the available nodes.
+
+Marking a node as unschedulable prevents the scheduler from placing new pods onto
+that Node but does not affect existing Pods on the Node. This is useful as a
+preparatory step before a node reboot or other maintenance.
+
+To mark a Node unschedulable, run:
+-->
+你可以结合使用 Node 上的标签和 Pod 上的选择算符来控制调度。
+例如，你可以限制某 Pod 只能在符合要求的节点子集上运行。
+
+如果标记节点为不可调度（unschedulable），将阻止新 Pod 调度到该 Node 之上，
+但不会影响任何已经在其上的 Pod。
+这是重启节点或者执行其他维护操作之前的一个有用的准备步骤。
+
+要标记一个 Node 为不可调度，执行以下命令：
+
+```shell
+kubectl cordon $NODENAME
+```
+
+<!--
+See [Safely Drain a Node](/docs/tasks/administer-cluster/safely-drain-node/)
+for more details.
+-->
+更多细节参考[安全地腾空节点](/zh-cn/docs/tasks/administer-cluster/safely-drain-node/)。
+
+{{< note >}}
+<!--
+Pods that are part of a {{< glossary_tooltip term_id="daemonset" >}} tolerate
+being run on an unschedulable Node. DaemonSets typically provide node-local services
+that should run on the Node even if it is being drained of workload applications.
+-->
+被 {{< glossary_tooltip term_id="daemonset" text="DaemonSet" >}} 控制器创建的 Pod
+能够容忍节点的不可调度属性。
+DaemonSet 通常提供节点本地的服务，即使节点上的负载应用已经被腾空，
+这些服务也仍需运行在节点之上。
+{{< /note >}}
+
+<!--
+## Node status
+
+A Node's status contains the following information:
+
+* [Addresses](#addresses)
+* [Conditions](#condition)
+* [Capacity and Allocatable](#capacity)
+* [Info](#info)
+-->
+## 节点状态   {#node-status}
+
+一个节点的状态包含以下信息:
+
+* [地址（Addresses）](#addresses)
+* [状况（Condition）](#condition)
+* [容量与可分配（Capacity）](#capacity)
+* [信息（Info）](#info)
+
+<!--
+You can use `kubectl` to view a Node's status and other details:
+-->
+你可以使用 `kubectl` 来查看节点状态和其他细节信息：
+
+```shell
+kubectl describe node <节点名称>
+```
+
+<!-- Each section is described in detail below. -->
+下面对每个部分进行详细描述。
+
+<!--
+### Addresses
+
+The usage of these fields varies depending on your cloud provider or bare metal configuration.
+-->
+### 地址   {#addresses}
+
+这些字段的用法取决于你的云服务商或者物理机配置。
+
+<!--
+* HostName: The hostname as reported by the node's kernel. Can be overridden via the kubelet `-hostname-override` parameter.
+* ExternalIP: Typically the IP address of the node that is externally routable (available from outside the cluster).
+* InternalIP: Typichostnameally the IP address of the node that is routable only within the cluster.
+-->
+* HostName：由节点的内核报告。可以通过 kubelet 的 `--hostname-override` 参数覆盖。
+* ExternalIP：通常是节点的可外部路由（从集群外可访问）的 IP 地址。
+* InternalIP：通常是节点的仅可在集群内部路由的 IP 地址。
+
+<!--
+### Conditions {#condition}
+
+The `conditions` field describes the status of all `Running` nodes. Examples of conditions include:
+-->
+### 状况 {#condition}
+
+`conditions` 字段描述了所有 `Running` 节点的状况。状况的示例包括：
+
+<!--
+{{< table caption = "Node conditions, and a description of when each condition applies." >}}
+| Node Condition       | Description |
+|----------------------|-------------|
+| `Ready`              | `True` if the node is healthy and ready to accept pods, `False` if the node is not healthy and is not accepting pods, and `Unknown` if the node controller has not heard from the node in the last `node-monitor-grace-period` (default is 40 seconds) |
+| `DiskPressure`       | `True` if pressure exists on the disk size—that is, if the disk capacity is low; otherwise `False` |
+| `MemoryPressure`     | `True` if pressure exists on the node memory—that is, if the node memory is low; otherwise `False` |
+| `PIDPressure`        | `True` if pressure exists on the processes—that is, if there are too many processes on the node; otherwise `False` |
+| `NetworkUnavailable` | `True` if the network for the node is not correctly configured, otherwise `False` |
+{{< /table >}}
+-->
+{{< table caption = "节点状况及每种状况适用场景的描述" >}}
+| 节点状况       | 描述        |
+|----------------|-------------|
+| `Ready` | 如节点是健康的并已经准备好接收 Pod 则为 `True`；`False` 表示节点不健康而且不能接收 Pod；`Unknown` 表示节点控制器在最近 `node-monitor-grace-period` 期间（默认 40 秒）没有收到节点的消息 |
+| `DiskPressure` | `True` 表示节点存在磁盘空间压力，即磁盘可用量低, 否则为 `False` |
+| `MemoryPressure` | `True` 表示节点存在内存压力，即节点内存可用量低，否则为 `False` |
+| `PIDPressure` | `True` 表示节点存在进程压力，即节点上进程过多；否则为 `False` |
+| `NetworkUnavailable` | `True` 表示节点网络配置不正确；否则为 `False` |
+{{< /table >}}
+
+{{< note >}}
+<!--
+If you use command-line tools to print details of a cordoned Node, the Condition includes
+`SchedulingDisabled`. `SchedulingDisabled` is not a Condition in the Kubernetes API; instead,
+cordoned nodes are marked Unschedulable in their spec.
+-->
+如果使用命令行工具来打印已保护（Cordoned）节点的细节，其中的 Condition 字段可能包括
+`SchedulingDisabled`。`SchedulingDisabled` 不是 Kubernetes API 中定义的
+Condition，被保护起来的节点在其规约中被标记为不可调度（Unschedulable）。
+{{< /note >}}
+
+<!--
+In the Kubernetes API, a node's condition is represented as part of the `.status`
+of the Node resource. For example, the following JSON structure describes a healthy node:
+-->
+在 Kubernetes API 中，节点的状况表示节点资源中`.status` 的一部分。
+例如，以下 JSON 结构描述了一个健康节点：
+
+```json
+"conditions": [
+  {
+    "type": "Ready",
+    "status": "True",
+    "reason": "KubeletReady",
+    "message": "kubelet is posting ready status",
+    "lastHeartbeatTime": "2019-06-05T18:38:35Z",
+    "lastTransitionTime": "2019-06-05T11:41:27Z"
+  }
+]
+```
+
+<!--
+If the `status` of the Ready condition remains `Unknown` or `False` for longer
+than the `pod-eviction-timeout` (an argument passed to the
+{{< glossary_tooltip text="kube-controller-manager" term_id="kube-controller-manager"
+>}}), then the [node controller](#node-controller) triggers
+{{< glossary_tooltip text="API-initiated eviction" term_id="api-eviction" >}}
+for all Pods assigned to that node. The default eviction timeout duration is
+**five minutes**.
+-->
+如果 Ready 状况的 `status` 处于 `Unknown` 或者 `False` 状态的时间超过了
+`pod-eviction-timeout` 值（一个传递给
+{{< glossary_tooltip text="kube-controller-manager" term_id="kube-controller-manager" >}}
+的参数），[节点控制器](#node-controller)会对节点上的所有 Pod 触发
+{{< glossary_tooltip text="API 发起的驱逐" term_id="api-eviction" >}}。
+默认的逐出超时时长为 **5 分钟**。
+
+<!--
+In some cases when the node is unreachable, the API server is unable to communicate
+with the kubelet on the node. The decision to delete the pods cannot be communicated to
+the kubelet until communication with the API server is re-established. In the meantime,
+the pods that are scheduled for deletion may continue to run on the partitioned node.
+-->
+某些情况下，当节点不可达时，API 服务器不能和其上的 kubelet 通信。
+删除 Pod 的决定不能传达给 kubelet，直到它重新建立和 API 服务器的连接为止。
+与此同时，被计划删除的 Pod 可能会继续在游离的节点上运行。
+
+<!--
+The node controller does not force delete pods until it is confirmed that they have stopped
+running in the cluster. You can see the pods that might be running on an unreachable node as
+being in the `Terminating` or `Unknown` state. In cases where Kubernetes cannot deduce from the
+underlying infrastructure if a node has permanently left a cluster, the cluster administrator
+may need to delete the node object by hand. Deleting the node object from Kubernetes causes
+all the Pod objects running on the node to be deleted from the API server and frees up their
+names.
+-->
+节点控制器在确认 Pod 在集群中已经停止运行前，不会强制删除它们。
+你可以看到可能在这些无法访问的节点上运行的 Pod 处于 `Terminating` 或者 `Unknown` 状态。
+如果 kubernetes 不能基于下层基础设施推断出某节点是否已经永久离开了集群，
+集群管理员可能需要手动删除该节点对象。
+从 Kubernetes 删除节点对象将导致 API 服务器删除节点上所有运行的 Pod 对象并释放它们的名字。
+
+<!--
+When problems occur on nodes, the Kubernetes control plane automatically creates
+[taints](/docs/concepts/scheduling-eviction/taint-and-toleration/) that match the conditions
+affecting the node.
+The scheduler takes the Node's taints into consideration when assigning a Pod to a Node.
+Pods can also have {{< glossary_tooltip text="tolerations" term_id="toleration" >}} that let
+them run on a Node even though it has a specific taint.
+-->
+当节点上出现问题时，Kubernetes 控制面会自动创建与影响节点的状况对应的
+[污点](/zh-cn/docs/concepts/scheduling-eviction/taint-and-toleration/)。
+调度器在将 Pod 指派到某 Node 时会考虑 Node 上的污点设置。
+Pod 也可以设置{{< glossary_tooltip text="容忍度" term_id="toleration" >}}，
+以便能够在设置了特定污点的 Node 上运行。
+
+<!--
+See [Taint Nodes by Condition](/docs/concepts/scheduling-eviction/taint-and-toleration/#taint-nodes-by-condition)
+for more details.
+-->
+进一步的细节可参阅[根据状况为节点设置污点](/zh-cn/docs/concepts/scheduling-eviction/taint-and-toleration/#taint-nodes-by-condition)。
+
+<!--
+### Capacity and Allocatable {#capacity}
+
+Describes the resources available on the node: CPU, memory and the maximum
+number of pods that can be scheduled onto the node.
+-->
+### 容量（Capacity）与可分配（Allocatable）     {#capacity}
+
+这两个值描述节点上的可用资源：CPU、内存和可以调度到节点上的 Pod 的个数上限。
+
+<!--
+The fields in the capacity block indicate the total amount of resources that a
+Node has. The allocatable block indicates the amount of resources on a
+Node that is available to be consumed by normal Pods.
+-->
+`capacity` 块中的字段标示节点拥有的资源总量。
+`allocatable` 块指示节点上可供普通 Pod 消耗的资源量。
+
+<!--
+You may read more about capacity and allocatable resources while learning how
+to [reserve compute resources](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)
+on a Node.
+-->
+可以在学习如何在节点上[预留计算资源](/zh-cn/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)
+的时候了解有关容量和可分配资源的更多信息。
+
+<!--
+### Info
+
+Describes general information about the node, such as kernel version, Kubernetes
+version (kubelet and kube-proxy version), container runtime details, and which
+operating system the node uses.
+The kubelet gathers this information from the node and publishes it into
+the Kubernetes API.
+-->
+
+### 信息（Info） {#info}
+
+Info 指的是节点的一般信息，如内核版本、Kubernetes 版本（`kubelet` 和 `kube-proxy` 版本）、
+容器运行时详细信息，以及节点使用的操作系统。
+`kubelet` 从节点收集这些信息并将其发布到 Kubernetes API。
+
+<!--
+## Heartbeats
+
+Heartbeats, sent by Kubernetes nodes, help your cluster determine the
+availability of each node, and to take action when failures are detected.
+
+For nodes there are two forms of heartbeats:
+-->
+## 心跳  {#heartbeats}
+
+Kubernetes 节点发送的心跳帮助你的集群确定每个节点的可用性，并在检测到故障时采取行动。
+
+对于节点，有两种形式的心跳:
+
+<!--
+* updates to the `.status` of a Node
+* [Lease](/docs/reference/kubernetes-api/cluster-resources/lease-v1/) objects
+  within the `kube-node-lease`
+  {{< glossary_tooltip term_id="namespace" text="namespace">}}.
+  Each Node has an associated Lease object.
+-->
+* 更新节点的 `.status`
+* `kube-node-lease` {{<glossary_tooltip term_id="namespace" text="名字空间">}}中的
+  [Lease（租约）](/zh-cn/docs/reference/kubernetes-api/cluster-resources/lease-v1/)对象。
+  每个节点都有一个关联的 Lease 对象。
+
+<!--
+Compared to updates to `.status` of a Node, a Lease is a lightweight resource.
+Using Leases for heartbeats reduces the performance impact of these updates
+for large clusters.
+
+The kubelet is responsible for creating and updating the `.status` of Nodes,
+and for updating their related Leases.
+-->
+与 Node 的 `.status` 更新相比，Lease 是一种轻量级资源。
+使用 Lease 来表达心跳在大型集群中可以减少这些更新对性能的影响。
+
+kubelet 负责创建和更新节点的 `.status`，以及更新它们对应的 Lease。
+
+<!--
+- The kubelet updates the node's `.status` either when there is change in status
+  or if there has been no update for a configured interval. The default interval
+  for `.status` updates to Nodes is 5 minutes, which is much longer than the 40
+  second default timeout for unreachable nodes.
+- The kubelet creates and then updates its Lease object every 10 seconds
+  (the default update interval). Lease updates occur independently from
+  updates to the Node's `.status`. If the Lease update fails, the kubelet retries,
+  using exponential backoff that starts at 200 milliseconds and capped at 7 seconds.
+-->
+- 当节点状态发生变化时，或者在配置的时间间隔内没有更新事件时，kubelet 会更新 `.status`。
+  `.status` 更新的默认间隔为 5 分钟（比节点不可达事件的 40 秒默认超时时间长很多）。
+- `kubelet` 会创建并每 10 秒（默认更新间隔时间）更新 Lease 对象。
+  Lease 的更新独立于 Node 的 `.status` 更新而发生。
+  如果 Lease 的更新操作失败，kubelet 会采用指数回退机制，从 200 毫秒开始重试，
+  最长重试间隔为 7 秒钟。
+
+<!--
+## Node controller
+
+The node {{< glossary_tooltip text="controller" term_id="controller" >}} is a
+Kubernetes control plane component that manages various aspects of nodes.
+
+The node controller has multiple roles in a node's life. The first is assigning a
+CIDR block to the node when it is registered (if CIDR assignment is turned on).
+-->
+## 节点控制器  {#node-controller}
+
+节点{{< glossary_tooltip text="控制器" term_id="controller" >}}是 Kubernetes 控制面组件，
+管理节点的方方面面。
+
+节点控制器在节点的生命周期中扮演多个角色。
+第一个是当节点注册时为它分配一个 CIDR 区段（如果启用了 CIDR 分配）。
+
+<!--
+The second is keeping the node controller's internal list of nodes up to date with
+the cloud provider's list of available machines. When running in a cloud
+environment and whenever a node is unhealthy, the node controller asks the cloud
+provider if the VM for that node is still available. If not, the node
+controller deletes the node from its list of nodes.
+-->
+第二个是保持节点控制器内的节点列表与云服务商所提供的可用机器列表同步。
+如果在云环境下运行，只要某节点不健康，节点控制器就会询问云服务是否节点的虚拟机仍可用。
+如果不可用，节点控制器会将该节点从它的节点列表删除。
+
+<!--
+The third is monitoring the nodes' health. The node controller is
+responsible for:
+
+- In the case that a node becomes unreachable, updating the `Ready` condition
+  in the Node's `.status` field. In this case the node controller sets the
+  `Ready` condition to `Unknown`.
+- If a node remains unreachable: triggering
+  [API-initiated eviction](/docs/concepts/scheduling-eviction/api-eviction/)
+  for all of the Pods on the unreachable node. By default, the node controller
+  waits 5 minutes between marking the node as `Unknown` and submitting
+  the first eviction request.
+
+By default, the node controller checks the state of each node every 5 seconds.
+This period can be configured using the `--node-monitor-period` flag on the
+`kube-controller-manager` component.
+-->
+第三个是监控节点的健康状况。节点控制器负责：
+
+- 在节点不可达的情况下，在 Node 的 `.status` 中更新 `Ready` 状况。
+  在这种情况下，节点控制器将 NodeReady 状况更新为 `Unknown`。
+- 如果节点仍然无法访问：对于不可达节点上的所有 Pod 触发
+  [API 发起的逐出](/zh-cn/docs/concepts/scheduling-eviction/api-eviction/)操作。
+  默认情况下，节点控制器在将节点标记为 `Unknown` 后等待 5 分钟提交第一个驱逐请求。
+
+默认情况下，节点控制器每 5 秒检查一次节点状态，可以使用 `kube-controller-manager`
+组件上的 `--node-monitor-period` 参数来配置周期。
+
+<!--
+### Rate limits on eviction
+
+In most cases, the node controller limits the eviction rate to
+`--node-eviction-rate` (default 0.1) per second, meaning it won't evict pods
+from more than 1 node per 10 seconds.
+-->
+### 逐出速率限制  {#rate-limits-on-eviction}
+
+大部分情况下，节点控制器把逐出速率限制在每秒 `--node-eviction-rate` 个（默认为 0.1）。
+这表示它每 10 秒钟内至多从一个节点驱逐 Pod。
+
+<!--
+The node eviction behavior changes when a node in a given availability zone
+becomes unhealthy. The node controller checks what percentage of nodes in the zone
+are unhealthy (the `Ready` condition is `Unknown` or `False`) at
+the same time:
+-->
+当一个可用区域（Availability Zone）中的节点变为不健康时，节点的驱逐行为将发生改变。
+节点控制器会同时检查可用区域中不健康（`Ready` 状况为 `Unknown` 或 `False`）
+的节点的百分比：
+
+<!--
+- If the fraction of unhealthy nodes is at least `--unhealthy-zone-threshold`
+  (default 0.55), then the eviction rate is reduced.
+- If the cluster is small (i.e. has less than or equal to
+  `--large-cluster-size-threshold` nodes - default 50), then evictions are stopped.
+- Otherwise, the eviction rate is reduced to `--secondary-node-eviction-rate`
+  (default 0.01) per second.
+-->
+- 如果不健康节点的比例超过 `--unhealthy-zone-threshold` （默认为 0.55），
+  驱逐速率将会降低。
+- 如果集群较小（意即小于等于 `--large-cluster-size-threshold` 个节点 - 默认为 50），
+  驱逐操作将会停止。
+- 否则驱逐速率将降为每秒 `--secondary-node-eviction-rate` 个（默认为 0.01）。
+
+<!--
+The reason these policies are implemented per availability zone is because one
+availability zone might become partitioned from the master while the others remain
+connected. If your cluster does not span multiple cloud provider availability zones,
+then the eviction mechanism does not take per-zone unavailability into account.
+-->
+在逐个可用区域中实施这些策略的原因是，
+当一个可用区域可能从控制面脱离时其它可用区域可能仍然保持连接。
+如果你的集群没有跨越云服务商的多个可用区域，那（整个集群）就只有一个可用区域。
+
+<!--
+A key reason for spreading your nodes across availability zones is so that the
+workload can be shifted to healthy zones when one entire zone goes down.
+Therefore, if all nodes in a zone are unhealthy, then the node controller evicts at
+the normal rate of `--node-eviction-rate`.  The corner case is when all zones are
+completely unhealthy (none of the nodes in the cluster are healthy). In such a
+case, the node controller assumes that there is some problem with connectivity
+between the control plane and the nodes, and doesn't perform any evictions.
+(If there has been an outage and some nodes reappear, the node controller does
+evict pods from the remaining nodes that are unhealthy or unreachable).
+-->
+跨多个可用区域部署你的节点的一个关键原因是当某个可用区域整体出现故障时，
+工作负载可以转移到健康的可用区域。
+因此，如果一个可用区域中的所有节点都不健康时，节点控制器会以正常的速率
+`--node-eviction-rate` 进行驱逐操作。
+在所有的可用区域都不健康（也即集群中没有健康节点）的极端情况下，
+节点控制器将假设控制面与节点间的连接出了某些问题，它将停止所有驱逐动作
+（如果故障后部分节点重新连接，节点控制器会从剩下不健康或者不可达节点中驱逐 Pod）。
+
+<!--
+The node controller is also responsible for evicting pods running on nodes with
+`NoExecute` taints, unless those pods tolerate that taint.
+The node controller also adds {{< glossary_tooltip text="taints" term_id="taint" >}}
+corresponding to node problems like node unreachable or not ready. This means
+that the scheduler won't place Pods onto unhealthy nodes.
+-->
+节点控制器还负责驱逐运行在拥有 `NoExecute` 污点的节点上的 Pod，
+除非这些 Pod 能够容忍此污点。
+节点控制器还负责根据节点故障（例如节点不可访问或没有就绪）
+为其添加{{< glossary_tooltip text="污点" term_id="taint" >}}。
+这意味着调度器不会将 Pod 调度到不健康的节点上。
+
+<!--
+## Resource capacity tracking {#node-capacity}
+
+Node objects track information about the Node's resource capacity (for example: the amount
+of memory available, and the number of CPUs).
+Nodes that [self register](#self-registration-of-nodes) report their capacity during
+registration. If you [manually](#manual-node-administration) add a Node, then
+you need to set the node's capacity information when you add it.
+-->
+### 资源容量跟踪   {#node-capacity}
+
+Node 对象会跟踪节点上资源的容量（例如可用内存和 CPU 数量）。
+通过[自注册](#self-registration-of-nodes)机制生成的 Node 对象会在注册期间报告自身容量。
+如果你[手动](#manual-node-administration)添加了 Node，
+你就需要在添加节点时手动设置节点容量。
+
+<!--
+The Kubernetes {{< glossary_tooltip text="scheduler" term_id="kube-scheduler" >}} ensures that
+there are enough resources for all the pods on a node.  The scheduler checks that the sum
+of the requests of containers on the node is no greater than the node capacity.
+The sum of requests includes all containers started by the kubelet, but excludes any
+containers started directly by the container runtime, and also excludes any
+process running outside of the kubelet's control.
+-->
+Kubernetes {{< glossary_tooltip text="调度器" term_id="kube-scheduler" >}}
+保证节点上有足够的资源供其上的所有 Pod 使用。
+它会检查节点上所有容器的请求的总和不会超过节点的容量。
+总的请求包括由 kubelet 启动的所有容器，但不包括由容器运行时直接启动的容器，
+也不包括不受 `kubelet` 控制的其他进程。
+
+{{< note >}}
+<!--
+If you want to explicitly reserve resources for non-Pod processes, follow this tutorial to
+[reserve resources for system daemons](/docs/tasks/administer-cluster/reserve-compute-resources/#system-reserved).
+-->
+如果要为非 Pod 进程显式保留资源。
+请参考[为系统守护进程预留资源](/zh-cn/docs/tasks/administer-cluster/reserve-compute-resources/#system-reserved)。
+{{< /note >}}
+
+<!--
+## Node topology
+-->
+## 节点拓扑  {#node-topology}
+
+{{< feature-state state="beta" for_k8s_version="v1.18" >}}
+
+<!--
+If you have enabled the `TopologyManager`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/), then
+the kubelet can use topology hints when making resource assignment decisions.
+See [Control Topology Management Policies on a Node](/docs/tasks/administer-cluster/topology-manager/)
+for more information.
+-->
+如果启用了 `TopologyManager` [特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)，
+`kubelet` 可以在作出资源分配决策时使用拓扑提示。
+参考[控制节点上拓扑管理策略](/zh-cn/docs/tasks/administer-cluster/topology-manager/)了解详细信息。
+
+<!-- 
+## Graceful node shutdown {#graceful-node-shutdown}
+-->
+## 节点体面关闭 {#graceful-node-shutdown}
+
+{{< feature-state state="beta" for_k8s_version="v1.21" >}}
+
+<!-- 
+The kubelet attempts to detect node system shutdown and terminates pods running on the node.
+
+Kubelet ensures that pods follow the normal
+[pod termination process](/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)
+during the node shutdown.
+-->
+kubelet 会尝试检测节点系统关闭事件并终止在节点上运行的所有 Pod。
+
+在节点终止期间，kubelet 保证 Pod 遵从常规的
+[Pod 终止流程](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)。
+
+<!-- 
+The graceful node shutdown feature depends on systemd since it takes advantage of
+[systemd inhibitor locks](https://www.freedesktop.org/wiki/Software/systemd/inhibit/) to
+delay the node shutdown with a given duration.
+-->
+节点体面关闭特性依赖于 systemd，因为它要利用
+[systemd 抑制器锁](https://www.freedesktop.org/wiki/Software/systemd/inhibit/)机制，
+在给定的期限内延迟节点关闭。
+
+<!--
+Graceful node shutdown is controlled with the `GracefulNodeShutdown`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/) which is
+enabled by default in 1.21.
+-->
+节点体面关闭特性受 `GracefulNodeShutdown`
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)控制，
+在 1.21 版本中是默认启用的。
+
+<!--
+Note that by default, both configuration options described below,
+`ShutdownGracePeriod` and `ShutdownGracePeriodCriticalPods` are set to zero,
+thus not activating the graceful node shutdown functionality.
+To activate the feature, the two kubelet config settings should be configured appropriately and set to non-zero values.
+-->
+注意，默认情况下，下面描述的两个配置选项，`shutdownGracePeriod` 和
+`shutdownGracePeriodCriticalPods` 都是被设置为 0 的，因此不会激活节点体面关闭功能。
+要激活此功能特性，这两个 kubelet 配置选项要适当配置，并设置为非零值。
+
+<!-- 
+During a graceful shutdown, kubelet terminates pods in two phases:
+
+1. Terminate regular pods running on the node.
+2. Terminate [critical pods](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical) running on the node.
+-->
+在体面关闭节点过程中，kubelet 分两个阶段来终止 Pod：
+
+1. 终止在节点上运行的常规 Pod。
+2. 终止在节点上运行的[关键 Pod](/zh-cn/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical)。
+
+<!-- 
+Graceful Node Shutdown feature is configured with two [`KubeletConfiguration`](/docs/tasks/administer-cluster/kubelet-config-file/) options:
+* `ShutdownGracePeriod`:
+  * Specifies the total duration that the node should delay the shutdown by. This is the total grace period for pod termination for both regular and [critical pods](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical).
+* `ShutdownGracePeriodCriticalPods`:
+  * Specifies the duration used to terminate [critical pods](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical) during a node shutdown. This value should be less than `ShutdownGracePeriod`.
+-->
+节点体面关闭的特性对应两个
+[`KubeletConfiguration`](/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/) 选项：
+
+* `shutdownGracePeriod`：
+  * 指定节点应延迟关闭的总持续时间。此时间是 Pod 体面终止的时间总和，不区分常规 Pod
+    还是[关键 Pod](/zh-cn/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical)。
+* `shutdownGracePeriodCriticalPods`：
+  * 在节点关闭期间指定用于终止[关键 Pod](/zh-cn/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical)
+    的持续时间。该值应小于 `shutdownGracePeriod`。
+
+<!--  
+For example, if `ShutdownGracePeriod=30s`, and
+`ShutdownGracePeriodCriticalPods=10s`, kubelet will delay the node shutdown by
+30 seconds. During the shutdown, the first 20 (30-10) seconds would be reserved
+for gracefully terminating normal pods, and the last 10 seconds would be
+reserved for terminating [critical pods](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical).
+-->
+例如，如果设置了 `shutdownGracePeriod=30s` 和 `shutdownGracePeriodCriticalPods=10s`，
+则 kubelet 将延迟 30 秒关闭节点。
+在关闭期间，将保留前 20（30 - 10）秒用于体面终止常规 Pod，
+而保留最后 10 秒用于终止[关键 Pod](/zh-cn/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical)。
+
+<!--
+When pods were evicted during the graceful node shutdown, they are marked as failed.
+Running `kubectl get pods` shows the status of the the evicted pods as `Shutdown`.
+And `kubectl describe pod` indicates that the pod was evicted because of node shutdown:
+-->
+{{< note >}}
+当 Pod 在正常节点关闭期间被驱逐时，它们会被标记为已经失败（Failed）。
+运行 `kubectl get pods` 时，被驱逐的 Pod 的状态显示为 `Shutdown`。
+并且 `kubectl describe pod` 表示 Pod 因节点关闭而被驱逐：
+
+```
+Reason:         Terminated
+Message:        Pod was terminated in response to imminent node shutdown.
+```
+{{< /note >}}
+
+<!--
+## Non Graceful node shutdown {#non-graceful-node-shutdown}
+-->
+## 节点非体面关闭 {#non-graceful-node-shutdown}
+
+{{< feature-state state="alpha" for_k8s_version="v1.24" >}}
+
+<!--
+A node shutdown action may not be detected by kubelet's Node Shutdown Manager, 
+either because the command does not trigger the inhibitor locks mechanism used by 
+kubelet or because of a user error, i.e., the ShutdownGracePeriod and 
+ShutdownGracePeriodCriticalPods are not configured properly. Please refer to above 
+section [Graceful Node Shutdown](#graceful-node-shutdown) for more details.
+-->
+节点关闭的操作可能无法被 kubelet 的节点关闭管理器检测到，
+是因为该命令不会触发 kubelet 所使用的抑制锁定机制，或者是因为用户错误的原因，
+即 ShutdownGracePeriod 和 ShutdownGracePeriodCriticalPod 配置不正确。
+请参考以上[节点体面关闭](#graceful-node-shutdown)部分了解更多详细信息。
+
+<!--
+When a node is shutdown but not detected by kubelet's Node Shutdown Manager, the pods 
+that are part of a StatefulSet will be stuck in terminating status on 
+the shutdown node and cannot move to a new running node. This is because kubelet on 
+the shutdown node is not available to delete the pods so the StatefulSet cannot 
+create a new pod with the same name. If there are volumes used by the pods, the 
+VolumeAttachments will not be deleted from the original shutdown node so the volumes 
+used by these pods cannot be attached to a new running node. As a result, the 
+application running on the StatefulSet cannot function properly. If the original 
+shutdown node comes up, the pods will be deleted by kubelet and new pods will be 
+created on a different running node. If the original shutdown node does not come up,  
+these pods will be stuck in terminating status on the shutdown node forever.
+-->
+当某节点关闭但 kubelet 的节点关闭管理器未检测到这一事件时，
+在那个已关闭节点上、属于 StatefulSet 的 Pod 将停滞于终止状态，并且不能移动到新的运行节点上。
+这是因为已关闭节点上的 kubelet 已不存在，亦无法删除 Pod，
+因此 StatefulSet 无法创建同名的新 Pod。
+如果 Pod 使用了卷，则 VolumeAttachments 不会从原来的已关闭节点上删除，
+因此这些 Pod 所使用的卷也无法挂接到新的运行节点上。
+所以，那些以 StatefulSet 形式运行的应用无法正常工作。
+如果原来的已关闭节点被恢复，kubelet 将删除 Pod，新的 Pod 将被在不同的运行节点上创建。
+如果原来的已关闭节点没有被恢复，那些在已关闭节点上的 Pod 将永远滞留在终止状态。
+
+<!--
+To mitigate the above situation, a  user can manually add the taint `node 
+kubernetes.io/out-of-service` with either `NoExecute` or `NoSchedule` effect to 
+a Node marking it out-of-service. 
+If the `NodeOutOfServiceVolumeDetach`  [feature gate](/docs/reference/
+command-line-tools-reference/feature-gates/) is enabled on
+`kube-controller-manager`, and a Node is marked out-of-service with this taint, the 
+pods on the node will be forcefully deleted if there are no matching tolerations on
+it and volume detach operations for the pods terminating on the node will happen
+immediately. This allows the Pods on the out-of-service node to recover quickly on a
+different node. 
+-->
+为了缓解上述情况，用户可以手动将具有 `NoExecute` 或 `NoSchedule` 效果的
+`node kubernetes.io/out-of-service` 污点添加到节点上，标记其无法提供服务。
+如果在 `kube-controller-manager` 上启用了 `NodeOutOfServiceVolumeDetach`
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)，
+并且节点被通过污点标记为无法提供服务，如果节点 Pod 上没有设置对应的容忍度，
+那么这样的 Pod 将被强制删除，并且该在节点上被终止的 Pod 将立即进行卷分离操作。
+这样就允许那些在无法提供服务节点上的 Pod 能在其他节点上快速恢复。
+
+<!--
+During a non-graceful shutdown, Pods are terminated in the two phases:
+
+1. Force delete the Pods that do not have matching `out-of-service` tolerations.
+2. Immediately perform detach volume operation for such pods. 
+-->
+在非体面关闭期间，Pod 分两个阶段终止：
+1. 强制删除没有匹配的 `out-of-service` 容忍度的 Pod。
+2. 立即对此类 Pod 执行分离卷操作。
+
+<!--
+{{< note >}}
+- Before adding the taint `node.kubernetes.io/out-of-service` , it should be verified
+that the node is already in shutdown or power off state (not in the middle of
+restarting).
+- The user is required to manually remove the out-of-service taint after the pods are
+moved to a new node and the user has checked that the shutdown node has been
+recovered since the user was the one who originally added the taint.
+{{< /note >}}
+-->
+{{< note >}}
+- 在添加 `node.kubernetes.io/out-of-service` 污点之前，应该验证节点已经处于关闭或断电状态（而不是在重新启动中）。
+- 将 Pod 移动到新节点后，用户需要手动移除停止服务的污点，并且用户要检查关闭节点是否已恢复，因为该用户是最初添加污点的用户。
+{{< /note >}}
+
+
+<!--
+### Pod Priority based graceful node shutdown {#pod-priority-graceful-node-shutdown}
+-->
+### 基于 Pod 优先级的节点体面关闭    {#pod-priority-graceful-node-shutdown}
+
+{{< feature-state state="alpha" for_k8s_version="v1.23" >}}
+
+<!--
+To provide more flexibility during graceful node shutdown around the ordering
+of pods during shutdown, graceful node shutdown honors the PriorityClass for
+Pods, provided that you enabled this feature in your cluster. The feature
+allows cluster administers to explicitly define the ordering of pods
+during graceful node shutdown based on
+[priority classes](/docs/concepts/scheduling-eviction/pod-priority-preemption/#priorityclass).
+-->
+为了在节点体面关闭期间提供更多的灵活性，尤其是处理关闭期间的 Pod 排序问题，
+节点体面关闭机制能够关注 Pod 的 PriorityClass 设置，前提是你已经在集群中启用了此功能特性。
+此功能特性允许集群管理员基于 Pod
+的[优先级类（Priority Class）](/zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption/#priorityclass)
+显式地定义节点体面关闭期间 Pod 的处理顺序。
+
+<!--
+The [Graceful Node Shutdown](#graceful-node-shutdown) feature, as described
+above, shuts down pods in two phases, non-critical pods, followed by critical
+pods. If additional flexibility is needed to explicitly define the ordering of
+pods during shutdown in a more granular way, pod priority based graceful
+shutdown can be used.
+-->
+前文所述的[节点体面关闭](#graceful-node-shutdown)特性能够分两个阶段关闭 Pod，
+首先关闭的是非关键的 Pod，之后再处理关键 Pod。
+如果需要显式地以更细粒度定义关闭期间 Pod 的处理顺序，需要一定的灵活度，
+这时可以使用基于 Pod 优先级的体面关闭机制。
+
+<!--
+When graceful node shutdown honors pod priorities, this makes it possible to do
+graceful node shutdown in multiple phases, each phase shutting down a
+particular priority class of pods. The kubelet can be configured with the exact
+phases and shutdown time per phase.
+-->
+当节点体面关闭能够处理 Pod 优先级时，节点体面关闭的处理可以分为多个阶段，
+每个阶段关闭特定优先级类的 Pod。kubelet 可以被配置为按确切的阶段处理 Pod，
+且每个阶段可以独立设置关闭时间。
+
+<!--
+Assuming the following custom pod
+[priority classes](/docs/concepts/scheduling-eviction/pod-priority-preemption/#priorityclass)
+in a cluster,
+-->
+假设集群中存在以下自定义的 Pod
+[优先级类](/zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption/#priorityclass)。
+
+| Pod 优先级类名称        | Pod 优先级类数值       |
+|-------------------------|------------------------|
+|`custom-class-a`         | 100000                 |
+|`custom-class-b`         | 10000                  |
+|`custom-class-c`         | 1000                   |
+|`regular/unset`          | 0                      |
+
+<!--
+Within the [kubelet configuration](/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
+the settings for `shutdownGracePeriodByPodPriority` could look like:
+-->
+在 [kubelet 配置](/zh-cn/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)中，
+`shutdownGracePeriodByPodPriority` 可能看起来是这样：
+
+| Pod 优先级类数值       | 关闭期限  |
+|------------------------|-----------|
+| 100000                 | 10 秒     |
+| 10000                  | 180 秒    |
+| 1000                   | 120 秒    |
+| 0                      | 60 秒     |
+
+<!--
+The corresponding kubelet config YAML configuration would be:
+-->
+对应的 kubelet 配置 YAML 将会是：
+
+```yaml
+shutdownGracePeriodByPodPriority:
+  - priority: 100000
+    shutdownGracePeriodSeconds: 10
+  - priority: 10000
+    shutdownGracePeriodSeconds: 180
+  - priority: 1000
+    shutdownGracePeriodSeconds: 120
+  - priority: 0
+    shutdownGracePeriodSeconds: 60
+```
+
+<!--
+The above table implies that any pod with `priority` value >= 100000 will get
+just 10 seconds to stop, any pod with value >= 10000 and < 100000 will get 180
+seconds to stop, any pod with value >= 1000 and < 10000 will get 120 seconds to stop.
+Finally, all other pods will get 60 seconds to stop.
+
+One doesn't have to specify values corresponding to all of the classes. For
+example, you could instead use these settings:
+-->
+上面的表格表明，所有 `priority` 值大于等于 100000 的 Pod 会得到 10 秒钟期限停止，
+所有 `priority` 值介于 10000 和 100000 之间的 Pod 会得到 180 秒钟期限停止，
+所有 `priority` 值介于 1000 和 10000 之间的 Pod 会得到 120 秒钟期限停止，
+所有其他 Pod 将获得 60 秒的时间停止。
+
+用户不需要为所有的优先级类都设置数值。例如，你也可以使用下面这种配置：
+
+| Pod 优先级类数值       | 关闭期限  |
+|------------------------|-----------|
+| 100000                 | 300 秒    |
+| 1000                   | 120 秒    |
+| 0                      | 60 秒     |
+
+<!--
+In the above case, the pods with `custom-class-b` will go into the same bucket
+as `custom-class-c` for shutdown.
+
+If there are no pods in a particular range, then the kubelet does not wait
+for pods in that priority range. Instead, the kubelet immediately skips to the
+next priority class value range.
+-->
+在上面这个场景中，优先级类为 `custom-class-b` 的 Pod 会与优先级类为 `custom-class-c`
+的 Pod 在关闭时按相同期限处理。
+
+如果在特定的范围内不存在 Pod，则 kubelet 不会等待对应优先级范围的 Pod。
+kubelet 会直接跳到下一个优先级数值范围进行处理。
+
+<!--
+If this feature is enabled and no configuration is provided, then no ordering
+action will be taken.
+
+Using this feature requires enabling the `GracefulNodeShutdownBasedOnPodPriority`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+, and setting `ShutdownGracePeriodByPodPriority` in the
+[kubelet config](/docs/reference/config-api/kubelet-config.v1beta1/)
+to the desired configuration containing the pod priority class values and
+their respective shutdown periods.
+-->
+如果此功能特性被启用，但没有提供配置数据，则不会出现排序操作。
+
+使用此功能特性需要启用 `GracefulNodeShutdownBasedOnPodPriority`
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)，
+并将 [kubelet 配置](/zh-cn/docs/reference/config-api/kubelet-config.v1beta1/)
+中的 `shutdownGracePeriodByPodPriority` 设置为期望的配置，
+其中包含 Pod 的优先级类数值以及对应的关闭期限。
+
+<!-- 
+{{< note >}}
+The ability to take Pod priority into account during graceful node shutdown was introduced
+as an Alpha feature in Kubernetes v1.23. In Kubernetes {{< skew currentVersion >}}
+the feature is Beta and is enabled by default.
+{{< /note >}} 
+-->
+{{< note >}}
+在节点体面关闭期间考虑 Pod 优先级的能力是作为 Kubernetes v1.23 中的 Alpha 功能引入的。
+在 Kubernetes {{< skew currentVersion >}} 中该功能是 Beta 版，默认启用。
+{{< /note >}}
+
+<!--
+Metrics `graceful_shutdown_start_time_seconds` and `graceful_shutdown_end_time_seconds`
+are emitted under the kubelet subsystem to monitor node shutdowns.
+-->
+kubelet 子系统中会生成 `graceful_shutdown_start_time_seconds` 和
+`graceful_shutdown_end_time_seconds` 度量指标以便监视节点关闭行为。
+
+<!--
+## Swap memory management {#swap-memory}
+-->
+## 交换内存管理 {#swap-memory}
+
+{{< feature-state state="alpha" for_k8s_version="v1.22" >}}
+
+<!--
+Prior to Kubernetes 1.22, nodes did not support the use of swap memory, and a
+kubelet would by default fail to start if swap was detected on a node. In 1.22
+onwards, swap memory support can be enabled on a per-node basis.
+-->
+在 Kubernetes 1.22 之前，节点不支持使用交换内存，并且默认情况下，
+如果在节点上检测到交换内存配置，kubelet 将无法启动。
+在 1.22 以后，可以逐个节点地启用交换内存支持。
+
+<!--
+To enable swap on a node, the `NodeSwap` feature gate must be enabled on
+the kubelet, and the `--fail-swap-on` command line flag or `failSwapOn`
+[configuration setting](/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
+must be set to false.
+-->
+要在节点上启用交换内存，必须启用kubelet 的 `NodeSwap` 特性门控，
+同时使用 `--fail-swap-on` 命令行参数或者将 `failSwapOn`
+[配置](/zh-cn/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)设置为 false。
+
+<!--
+A user can also optionally configure `memorySwap.swapBehavior` in order to
+specify how a node will use swap memory. For example,
+-->
+用户还可以选择配置 `memorySwap.swapBehavior` 以指定节点使用交换内存的方式。例如:
+
+```yaml
+memorySwap:
+  swapBehavior: LimitedSwap
+```
+
+<!--
+The available configuration options for `swapBehavior` are:
+
+- `LimitedSwap`: Kubernetes workloads are limited in how much swap they can
+  use. Workloads on the node not managed by Kubernetes can still swap.
+- `UnlimitedSwap`: Kubernetes workloads can use as much swap memory as they
+  request, up to the system limit.
+-->
+可用的 `swapBehavior` 的配置选项有：
+
+- `LimitedSwap`：Kubernetes 工作负载的交换内存会受限制。
+  不受 Kubernetes 管理的节点上的工作负载仍然可以交换。
+- `UnlimitedSwap`：Kubernetes 工作负载可以使用尽可能多的交换内存请求，
+  一直到达到系统限制为止。
+
+<!--
+If configuration for `memorySwap` is not specified and the feature gate is
+enabled, by default the kubelet will apply the same behaviour as the
+`LimitedSwap` setting.
+
+The behaviour of the `LimitedSwap` setting depends if the node is running with
+v1 or v2 of control groups (also known as "cgroups"):
+-->
+如果启用了特性门控但是未指定 `memorySwap` 的配置，默认情况下 kubelet 将使用
+`LimitedSwap` 设置。
+
+`LimitedSwap` 这种设置的行为取决于节点运行的是 v1 还是 v2 的控制组（也就是 `cgroups`）：
+
+<!--
+- **cgroupsv1:** Kubernetes workloads can use any combination of memory and
+  swap, up to the pod's memory limit, if set.
+- **cgroupsv2:** Kubernetes workloads cannot use swap memory.
+-->
+- **cgroupsv1:** Kubernetes 工作负载可以使用内存和交换，上限为 Pod 的内存限制值（如果设置了的话）。
+- **cgroupsv2:** Kubernetes 工作负载不能使用交换内存。
+
+<!--
+For more information, and to assist with testing and provide feedback, please
+see [KEP-2400](https://github.com/kubernetes/enhancements/issues/2400) and its
+[design proposal](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/2400-node-swap/README.md).
+-->
+如需更多信息以及协助测试和提供反馈，请参见
+[KEP-2400](https://github.com/kubernetes/enhancements/issues/2400)
+及其[设计提案](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/2400-node-swap/README.md)。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* Learn about the [components](/docs/concepts/overview/components/#node-components) that make up a node.
+* Read the [API definition for Node](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#node-v1-core).
+* Read the [Node](https://git.k8s.io/design-proposals-archive/architecture/architecture.md#the-kubernetes-node)
+  section of the architecture design document.
+* Read about [taints and tolerations](/docs/concepts/scheduling-eviction/taint-and-toleration/).
+-->
+* 进一步了解节点[组件](/zh-cn/docs/concepts/overview/components/#node-components)。
+* 阅读 [Node 的 API 定义](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#node-v1-core)。
+* 阅读架构设计文档中有关
+  [Node](https://git.k8s.io/design-proposals-archive/architecture/architecture.md#the-kubernetes-node)
+  的章节。
+* 了解[污点和容忍度](/zh-cn/docs/concepts/scheduling-eviction/taint-and-toleration/)。
diff --git a/content/zh/docs/concepts/cluster-administration/_index.md b/content/zh-cn/docs/concepts/cluster-administration/_index.md
similarity index 78%
rename from content/zh/docs/concepts/cluster-administration/_index.md
rename to content/zh-cn/docs/concepts/cluster-administration/_index.md
index 36e27269f7..c340a741c7 100644
--- a/content/zh/docs/concepts/cluster-administration/_index.md
+++ b/content/zh-cn/docs/concepts/cluster-administration/_index.md
@@ -25,7 +25,7 @@ The cluster administration overview is for anyone creating or administering a Ku
 It assumes some familiarity with core Kubernetes [concepts](/docs/concepts/).
 -->
 集群管理概述面向任何创建和管理 Kubernetes 集群的读者人群。
-我们假设你大概了解一些核心的 Kubernetes [概念](/zh/docs/concepts/)。
+我们假设你大概了解一些核心的 Kubernetes [概念](/zh-cn/docs/concepts/)。
 
 
 <!-- body -->
@@ -40,7 +40,7 @@ Before choosing a guide, here are some considerations:
 -->
 ## 规划集群   {#planning-a-cluster}
 
-查阅[安装](/zh/docs/setup/)中的指导，获取如何规划、建立以及配置 Kubernetes
+查阅[安装](/zh-cn/docs/setup/)中的指导，获取如何规划、建立以及配置 Kubernetes
 集群的示例。本文所列的文章称为*发行版* 。
 
 {{< note >}}
@@ -68,12 +68,12 @@ Before choosing a guide, here are some considerations:
 - 你的集群是在**本地**还是**云（IaaS）** 上？Kubernetes 不能直接支持混合集群。
   作为代替，你可以建立多个集群。
 - **如果你在本地配置 Kubernetes**，需要考虑哪种
-  [网络模型](/zh/docs/concepts/cluster-administration/networking/)最适合。
+  [网络模型](/zh-cn/docs/concepts/cluster-administration/networking/)最适合。
 - 你的 Kubernetes 在**裸金属硬件**上还是**虚拟机（VMs）** 上运行？
 - 你是想**运行一个集群**，还是打算**参与开发 Kubernetes 项目代码**？
   如果是后者，请选择一个处于开发状态的发行版。
   某些发行版只提供二进制发布版，但提供更多的选择。
-- 让你自己熟悉运行一个集群所需的[组件](/zh/docs/concepts/overview/components/)。
+- 让你自己熟悉运行一个集群所需的[组件](/zh-cn/docs/concepts/overview/components/)。
 
 <!--
 ## Managing a cluster
@@ -84,9 +84,9 @@ Before choosing a guide, here are some considerations:
 -->
 ## 管理集群   {#managing-a-cluster}
 
-* 学习如何[管理节点](/zh/docs/concepts/architecture/nodes/)。
+* 学习如何[管理节点](/zh-cn/docs/concepts/architecture/nodes/)。
 
-* 学习如何设定和管理集群共享的[资源配额](/zh/docs/concepts/policy/resource-quotas/) 。
+* 学习如何设定和管理集群共享的[资源配额](/zh-cn/docs/concepts/policy/resource-quotas/) 。
 
 <!--
 ## Securing a cluster
@@ -98,39 +98,39 @@ Before choosing a guide, here are some considerations:
 * [Authorization](/docs/reference/access-authn-authz/authorization/) is separate from authentication, and controls how HTTP calls are handled.
 * [Using Admission Controllers](/docs/reference/access-authn-authz/admission-controllers/) explains plug-ins which intercepts requests to the Kubernetes API server after authentication and authorization.
 * [Using Sysctls in a Kubernetes Cluster](/docs/concepts/cluster-administration/sysctl-cluster/) describes to an administrator how to use the `sysctl` command-line tool to set kernel parameters .
-* [Auditing](/docs/tasks/debug-application-cluster/audit/) describes how to interact with Kubernetes' audit logs.
+* [Auditing](/docs/tasks/debug/debug-cluster/audit/) describes how to interact with Kubernetes' audit logs.
 -->
 ## 保护集群  {#securing-a-cluster}
 
-* [生成证书](/zh/docs/tasks/administer-cluster/certificates/)
+* [生成证书](/zh-cn/docs/tasks/administer-cluster/certificates/)
   节描述了使用不同的工具链生成证书的步骤。
-* [Kubernetes 容器环境](/zh/docs/concepts/containers/container-environment/)
+* [Kubernetes 容器环境](/zh-cn/docs/concepts/containers/container-environment/)
   描述了 Kubernetes 节点上由 Kubelet 管理的容器的环境。
-* [控制到 Kubernetes API 的访问](/zh/docs/concepts/security/controlling-access/)
+* [控制到 Kubernetes API 的访问](/zh-cn/docs/concepts/security/controlling-access/)
   描述了如何为用户和 service accounts 建立权限许可。
-* [身份认证](/zh/docs/reference/access-authn-authz/authentication/)
+* [身份认证](/zh-cn/docs/reference/access-authn-authz/authentication/)
   节阐述了 Kubernetes 中的身份认证功能，包括许多认证选项。
-* [鉴权](/zh/docs/reference/access-authn-authz/authorization/)
+* [鉴权](/zh-cn/docs/reference/access-authn-authz/authorization/)
   与身份认证不同，用于控制如何处理 HTTP 请求。
-* [使用准入控制器](/zh/docs/reference/access-authn-authz/admission-controllers)
+* [使用准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers)
   阐述了在认证和授权之后拦截到 Kubernetes API 服务的请求的插件。
-* [在 Kubernetes 集群中使用 Sysctls](/zh/docs/tasks/administer-cluster/sysctl-cluster/)
+* [在 Kubernetes 集群中使用 Sysctls](/zh-cn/docs/tasks/administer-cluster/sysctl-cluster/)
   描述了管理员如何使用 `sysctl` 命令行工具来设置内核参数。
-* [审计](/zh/docs/tasks/debug-application-cluster/audit/)
+* [审计](/zh-cn/docs/tasks/debug/debug-cluster/audit/)
   描述了如何与 Kubernetes 的审计日志交互。
 
 <!--
 ### Securing the kubelet
 
 * [Master-Node communication](/docs/concepts/architecture/master-node-communication/)
-* [TLS bootstrapping](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/)
+* [TLS bootstrapping](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/)
 * [Kubelet authentication/authorization](/docs/admin/kubelet-authentication-authorization/)
 -->
 ### 保护 kubelet   {#securing-the-kubelet}
 
-* [主控节点通信](/zh/docs/concepts/architecture/control-plane-node-communication/)
-* [TLS 引导](/zh/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/)
-* [Kubelet 认证/授权](/zh/docs/reference/command-line-tools-reference/kubelet-authentication-authorization/)
+* [主控节点通信](/zh-cn/docs/concepts/architecture/control-plane-node-communication/)
+* [TLS 引导](/zh-cn/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/)
+* [Kubelet 认证/授权](/zh-cn/docs/reference/access-authn-authz/kubelet-authn-authz/)
 
 <!--
 ## Optional Cluster Services
@@ -140,8 +140,8 @@ Before choosing a guide, here are some considerations:
 -->
 ## 可选集群服务   {#optional-cluster-services}
 
-* [DNS 集成](/zh/docs/concepts/services-networking/dns-pod-service/)
+* [DNS 集成](/zh-cn/docs/concepts/services-networking/dns-pod-service/)
   描述了如何将一个 DNS 名解析到一个 Kubernetes service。
-* [记录和监控集群活动](/zh/docs/concepts/cluster-administration/logging/)
+* [记录和监控集群活动](/zh-cn/docs/concepts/cluster-administration/logging/)
   阐述了 Kubernetes 的日志如何工作以及怎样实现。
 
diff --git a/content/zh/docs/concepts/cluster-administration/addons.md b/content/zh-cn/docs/concepts/cluster-administration/addons.md
similarity index 51%
rename from content/zh/docs/concepts/cluster-administration/addons.md
rename to content/zh-cn/docs/concepts/cluster-administration/addons.md
index adadc7954f..88514c9729 100644
--- a/content/zh/docs/concepts/cluster-administration/addons.md
+++ b/content/zh-cn/docs/concepts/cluster-administration/addons.md
@@ -11,15 +11,11 @@ content_type: concept
 Add-ons extend the functionality of Kubernetes.
 
 This page lists some of the available add-ons and links to their respective installation instructions.
-
-Add-ons in each section are sorted alphabetically - the ordering does not imply any preferential status.
 -->
 Add-ons 扩展了 Kubernetes 的功能。
 
 本文列举了一些可用的 add-ons 以及到它们各自安装说明的链接。
 
-每个 Add-ons 按字母顺序排序 - 顺序不代表任何优先地位。
-
 <!-- body -->
 
 <!--
@@ -27,67 +23,74 @@ Add-ons 扩展了 Kubernetes 的功能。
 
 * [ACI](https://www.github.com/noironetworks/aci-containers) provides integrated container networking and network security with Cisco ACI.
 * [Antrea](https://antrea.io/) operates at Layer 3/4 to provide networking and security services for Kubernetes, leveraging Open vSwitch as the networking data plane.
-* [Calico](https://docs.projectcalico.org/latest/getting-started/kubernetes/) is a secure L3 networking and network policy provider.
-* [Canal](https://github.com/tigera/canal/tree/master/k8s-install) unites Flannel and Calico, providing networking and network policy.
-* [Cilium](https://github.com/cilium/cilium) is a L3 network and network policy plugin that can enforce HTTP/API/L7 policies transparently. Both routing and overlay/encapsulation mode are supported.
-* [CNI-Genie](https://github.com/Huawei-PaaS/CNI-Genie) enables Kubernetes to seamlessly connect to a choice of CNI plugins, such as Calico, Canal, Flannel, Romana, or Weave.
-* [Contiv](http://contiv.github.io) provides configurable networking (native L3 using BGP, overlay using vxlan, classic L2, and Cisco-SDN/ACI) for various use cases and a rich policy framework. Contiv project is fully [open sourced](http://github.com/contiv). The [installer](http://github.com/contiv/install) provides both kubeadm and non-kubeadm based installation options.
-* [Contrail](http://www.juniper.net/us/en/products-services/sdn/contrail/contrail-networking/), based on [Tungsten Fabric](https://tungsten.io), is an open source, multi-cloud network virtualization and policy management platform. Contrail and Tungsten Fabric are integrated with orchestration systems such as Kubernetes, OpenShift, OpenStack and Mesos, and provide isolation modes for virtual machines, containers/pods and bare metal workloads.
-* [Flannel](https://github.com/flannel-io/flannel#deploying-flannel-manually) is an overlay network provider that can be used with Kubernetes.
-* [Knitter](https://github.com/ZTE/Knitter/) is a network solution supporting multiple networking in Kubernetes.
-* [Multus](https://github.com/Intel-Corp/multus-cni) is a Multi plugin for multiple network support in Kubernetes to support all CNI plugins (e.g. Calico, Cilium, Contiv, Flannel), in addition to SRIOV, DPDK, OVS-DPDK and VPP based workloads in Kubernetes.
-* [OVN-Kubernetes](https://github.com/ovn-org/ovn-kubernetes/) is a networking provider for Kubernetes based on [OVN (Open Virtual Network)](https://github.com/ovn-org/ovn/), a virtual networking implementation that came out of the Open vSwitch (OVS) project. OVN-Kubernetes provides an overlay based networking implementation for Kubernetes, including an OVS based implementation of load balancing and network policy.
-* [OVN4NFV-K8S-Plugin](https://github.com/opnfv/ovn4nfv-k8s-plugin) is OVN based CNI controller plugin to provide cloud native based Service function chaining(SFC), Multiple OVN overlay networking, dynamic subnet creation, dynamic creation of virtual networks, VLAN Provider network, Direct provider network and pluggable with other Multi-network plugins, ideal for edge based cloud native workloads in Multi-cluster networking
-* [NSX-T](https://docs.vmware.com/en/VMware-NSX-T/2.0/nsxt_20_ncp_kubernetes.pdf) Container Plug-in (NCP) provides integration between VMware NSX-T and container orchestrators such as Kubernetes, as well as integration between NSX-T and container-based CaaS/PaaS platforms such as Pivotal Container Service (PKS) and OpenShift.
-* [Nuage](https://github.com/nuagenetworks/nuage-kubernetes/blob/v5.1.1-1/docs/kubernetes-1-installation.rst) is an SDN platform that provides policy-based networking between Kubernetes Pods and non-Kubernetes environments with visibility and security monitoring.
-* [Romana](http://romana.io) is a Layer 3 networking solution for pod networks that also supports the [NetworkPolicy API](/docs/concepts/services-networking/network-policies/). Kubeadm add-on installation details available [here](https://github.com/romana/romana/tree/master/containerize).
-* [Weave Net](https://www.weave.works/docs/net/latest/kubernetes/kube-addon/) provides networking and network policy, will carry on working on both sides of a network partition, and does not require an external database.
+* [Calico](https://docs.projectcalico.org/latest/introduction/) is a networking and network policy provider. Calico supports a flexible set of networking options so you can choose the most efficient option for your situation, including non-overlay and overlay networks, with or without BGP. Calico uses the same engine to enforce network policy for hosts, pods, and (if using Istio & Envoy) applications at the service mesh layer.
+* [Canal](https://projectcalico.docs.tigera.io/getting-started/kubernetes/flannel/flannel) unites Flannel and Calico, providing networking and network policy.
+* [Cilium](https://github.com/cilium/cilium) is a L3 network and network policy plugin that can enforce HTTP/API/L7 policies transparently. Both routing and overlay/encapsulation mode are supported, and it can work on top of other CNI plugins.
 -->
-## 网络和网络策略
+## 联网和网络策略
 
 * [ACI](https://www.github.com/noironetworks/aci-containers) 通过 Cisco ACI 提供集成的容器网络和安全网络。
 * [Antrea](https://antrea.io/) 在第 3/4 层执行操作，为 Kubernetes
   提供网络连接和安全服务。Antrea 利用 Open vSwitch 作为网络的数据面。
-* [Calico](https://docs.projectcalico.org/v3.11/getting-started/kubernetes/installation/calico)
-  是一个安全的 L3 网络和网络策略驱动。
-* [Canal](https://github.com/tigera/canal/tree/master/k8s-install) 结合 Flannel 和 Calico，提供网络和网络策略。
+* [Calico](https://docs.projectcalico.org/latest/introduction/) 是一个联网和网络策略供应商。
+  Calico 支持一套灵活的网络选项，因此你可以根据自己的情况选择最有效的选项，包括非覆盖和覆盖网络，带或不带 BGP。
+  Calico 使用相同的引擎为主机、Pod 和（如果使用 Istio 和 Envoy）应用程序在服务网格层执行网络策略。
+* [Canal](https://projectcalico.docs.tigera.io/getting-started/kubernetes/flannel/flannel) 结合 Flannel 和 Calico，提供联网和网络策略。
 * [Cilium](https://github.com/cilium/cilium) 是一个 L3 网络和网络策略插件，能够透明的实施 HTTP/API/L7 策略。
-  同时支持路由（routing）和覆盖/封装（overlay/encapsulation）模式。
-* [CNI-Genie](https://github.com/Huawei-PaaS/CNI-Genie) 使 Kubernetes 无缝连接到一种 CNI 插件，
-  例如：Flannel、Calico、Canal、Romana 或者 Weave。
-* [Contiv](https://contiv.github.io) 为多种用例提供可配置网络（使用 BGP 的原生 L3，使用 vxlan 的覆盖网络，
-  经典 L2 和 Cisco-SDN/ACI）和丰富的策略框架。Contiv 项目完全[开源](https://github.com/contiv)。
-  [安装工具](https://github.com/contiv/install)同时提供基于和不基于 kubeadm 的安装选项。
-* 基于 [Tungsten Fabric](https://tungsten.io) 的
-  [Contrail](https://www.juniper.net/us/en/products-services/sdn/contrail/contrail-networking/)
-  是一个开源的多云网络虚拟化和策略管理平台，Contrail 和 Tungsten Fabric 与业务流程系统
-  （例如 Kubernetes、OpenShift、OpenStack和Mesos）集成在一起，
+  同时支持路由（routing）和覆盖/封装（overlay/encapsulation）模式，并且它可以在其他 CNI 插件之上工作。
+<!--
+* [CNI-Genie](https://github.com/cni-genie/CNI-Genie) enables Kubernetes to seamlessly connect to a choice of CNI plugins, such as Calico, Canal, Flannel, or Weave.
+* [Contiv](https://contivpp.io/) provides configurable networking (native L3 using BGP, overlay using vxlan, classic L2, and Cisco-SDN/ACI) for various use cases and a rich policy framework. Contiv project is fully [open sourced](https://github.com/contiv). The [installer](https://github.com/contiv/install) provides both kubeadm and non-kubeadm based installation options.
+* [Contrail](https://www.juniper.net/us/en/products-services/sdn/contrail/contrail-networking/), based on [Tungsten Fabric](https://tungsten.io), is an open source, multi-cloud network virtualization and policy management platform. Contrail and Tungsten Fabric are integrated with orchestration systems such as Kubernetes, OpenShift, OpenStack and Mesos, and provide isolation modes for virtual machines, containers/pods and bare metal workloads.
+-->
+* [CNI-Genie](https://github.com/cni-genie/CNI-Genie) 使 Kubernetes 无缝连接到
+  Calico、Canal、Flannel 或 Weave 等其中一种 CNI 插件。
+* [Contiv](https://contivpp.io/) 为各种用例和丰富的策略框架提供可配置的网络
+  （带 BGP 的原生 L3、带 vxlan 的覆盖、标准 L2 和 Cisco-SDN/ACI）。
+  Contiv 项目完全[开源](https://github.com/contiv)。
+  其[安装程序](https://github.com/contiv/install) 提供了基于 kubeadm 和非 kubeadm 的安装选项。
+* [Contrail](https://www.juniper.net/us/en/products-services/sdn/contrail/contrail-networking/) 基于
+  [Tungsten Fabric](https://tungsten.io)，是一个开源的多云网络虚拟化和策略管理平台。
+  Contrail 和 Tungsten Fabric 与业务流程系统（例如 Kubernetes、OpenShift、OpenStack 和 Mesos）集成在一起，
   为虚拟机、容器或 Pod 以及裸机工作负载提供了隔离模式。
+<!--
+* [Flannel](https://github.com/flannel-io/flannel#deploying-flannel-manually) is an overlay network provider that can be used with Kubernetes.
+* [Knitter](https://github.com/ZTE/Knitter/) is a plugin to support multiple network interfaces in a Kubernetes pod.
+* [Multus](https://github.com/k8snetworkplumbingwg/multus-cni) is a Multi plugin for multiple network support in Kubernetes to support all CNI plugins (e.g. Calico, Cilium, Contiv, Flannel), in addition to SRIOV, DPDK, OVS-DPDK and VPP based workloads in Kubernetes.
+-->
 * [Flannel](https://github.com/flannel-io/flannel#deploying-flannel-manually)
   是一个可以用于 Kubernetes 的 overlay 网络提供者。
-* [Knitter](https://github.com/ZTE/Knitter/) 是为 kubernetes 提供复合网络解决方案的网络组件。
-* [Multus](https://github.com/Intel-Corp/multus-cni) 是一个多插件，可在 Kubernetes 中提供多种网络支持，
-  以支持所有 CNI 插件（例如 Calico，Cilium，Contiv，Flannel），
+* [Knitter](https://github.com/ZTE/Knitter/) 是在一个 Kubernetes Pod 中支持多个网络接口的插件。
+* [Multus](https://github.com/k8snetworkplumbingwg/multus-cni) 是一个多插件，
+  可在 Kubernetes 中提供多种网络支持，以支持所有 CNI 插件（例如 Calico、Cilium、Contiv、Flannel），
   而且包含了在 Kubernetes 中基于 SRIOV、DPDK、OVS-DPDK 和 VPP 的工作负载。
+<!--
+* [OVN-Kubernetes](https://github.com/ovn-org/ovn-kubernetes/) is a networking provider for Kubernetes based on [OVN (Open Virtual Network)](https://github.com/ovn-org/ovn/), a virtual networking implementation that came out of the Open vSwitch (OVS) project. OVN-Kubernetes provides an overlay based networking implementation for Kubernetes, including an OVS based implementation of load balancing and network policy.
+* [OVN4NFV-K8S-Plugin](https://github.com/opnfv/ovn4nfv-k8s-plugin) is OVN based CNI controller plugin to provide cloud native based Service function chaining(SFC), Multiple OVN overlay networking, dynamic subnet creation, dynamic creation of virtual networks, VLAN Provider network, Direct provider network and pluggable with other Multi-network plugins, ideal for edge based cloud native workloads in Multi-cluster networking.
+-->
 * [OVN-Kubernetes](https://github.com/ovn-org/ovn-kubernetes/) 是一个 Kubernetes 网络驱动，
   基于 [OVN（Open Virtual Network）](https://github.com/ovn-org/ovn/)实现，是从 Open vSwitch (OVS)
-  项目衍生出来的虚拟网络实现。
-  OVN-Kubernetes 为 Kubernetes 提供基于覆盖网络的网络实现，包括一个基于 OVS 实现的负载均衡器
-  和网络策略。
-* [OVN4NFV-K8S-Plugin](https://github.com/opnfv/ovn4nfv-k8s-plugin) 是一个基于 OVN 的 CNI
-  控制器插件，提供基于云原生的服务功能链条（Service Function Chaining，SFC）、多种 OVN 覆盖
-  网络、动态子网创建、动态虚拟网络创建、VLAN 驱动网络、直接驱动网络，并且可以
-  驳接其他的多网络插件，适用于基于边缘的、多集群联网的云原生工作负载。
-* [NSX-T](https://docs.vmware.com/en/VMware-NSX-T/2.0/nsxt_20_ncp_kubernetes.pdf) 容器插件（NCP）
+  项目衍生出来的虚拟网络实现。OVN-Kubernetes 为 Kubernetes 提供基于覆盖网络的网络实现，
+  包括一个基于 OVS 实现的负载均衡器和网络策略。
+* [OVN4NFV-K8S-Plugin](https://github.com/opnfv/ovn4nfv-k8s-plugin) 是一个基于 OVN 的 CNI 控制器插件，
+  提供基于云原生的服务功能链条（Service Function Chaining，SFC）、多种 OVN 覆盖网络、动态子网创建、
+  动态虚拟网络创建、VLAN 驱动网络、直接驱动网络，并且可以驳接其他的多网络插件，
+  适用于基于边缘的、多集群联网的云原生工作负载。
+<!--
+* [NSX-T](https://docs.vmware.com/en/VMware-NSX-T-Data-Center/index.html) Container Plug-in (NCP) provides integration between VMware NSX-T and container orchestrators such as Kubernetes, as well as integration between NSX-T and container-based CaaS/PaaS platforms such as Pivotal Container Service (PKS) and OpenShift.
+* [Nuage](https://github.com/nuagenetworks/nuage-kubernetes/blob/v5.1.1-1/docs/kubernetes-1-installation.rst) is an SDN platform that provides policy-based networking between Kubernetes Pods and non-Kubernetes environments with visibility and security monitoring.
+* [Romana](https://github.com/romana) is a Layer 3 networking solution for pod networks that also supports the [NetworkPolicy](/docs/concepts/services-networking/network-policies/) API.
+* [Weave Net](https://www.weave.works/docs/net/latest/kubernetes/kube-addon/) provides networking and network policy, will carry on working on both sides of a network partition, and does not require an external database.
+-->
+* [NSX-T](https://docs.vmware.com/en/VMware-NSX-T-Data-Center/index.html) 容器插件（NCP）
   提供了 VMware NSX-T 与容器协调器（例如 Kubernetes）之间的集成，以及 NSX-T 与基于容器的
   CaaS / PaaS 平台（例如关键容器服务（PKS）和 OpenShift）之间的集成。
 * [Nuage](https://github.com/nuagenetworks/nuage-kubernetes/blob/v5.1.1-1/docs/kubernetes-1-installation.rst)
   是一个 SDN 平台，可在 Kubernetes Pods 和非 Kubernetes 环境之间提供基于策略的联网，并具有可视化和安全监控。
-* [Romana](https://romana.io) 是一个 pod 网络的第三层解决方案，并支持[
-  NetworkPolicy API](/zh/docs/concepts/services-networking/network-policies/)。
-  Kubeadm add-on 安装细节可以在[这里](https://github.com/romana/romana/tree/master/containerize)找到。
+* [Romana](https://github.com/romana) 是一个 Pod 网络的第三层解决方案，并支持
+  [NetworkPolicy](/zh-cn/docs/concepts/services-networking/network-policies/) API。
 * [Weave Net](https://www.weave.works/docs/net/latest/kubernetes/kube-addon/)
-  提供在网络分组两端参与工作的网络和网络策略，并且不需要额外的数据库。
+  提供在网络分组两端参与工作的联网和网络策略，并且不需要额外的数据库。
 
 <!--
 ## Service Discovery
@@ -116,11 +119,19 @@ Add-ons 扩展了 Kubernetes 的功能。
 ## Infrastructure
 
 * [KubeVirt](https://kubevirt.io/user-guide/#/installation/installation) is an add-on to run virtual machines on Kubernetes. Usually run on bare-metal clusters.
+* The
+  [node problem detector](https://github.com/kubernetes/node-problem-detector)
+  runs on Linux nodes and reports system issues as either
+  [Events](/docs/reference/kubernetes-api/cluster-resources/event-v1/) or
+  [Node conditions](/docs/concepts/architecture/nodes/#condition).
 -->
 ## 基础设施
 
 * [KubeVirt](https://kubevirt.io/user-guide/#/installation/installation) 是可以让 Kubernetes
   运行虚拟机的 add-ons。通常运行在裸机集群上。
+* [节点问题检测器](https://github.com/kubernetes/node-problem-detector) 在 Linux 节点上运行，
+  并将系统问题报告为[事件](/zh-cn/docs/reference/kubernetes-api/cluster-resources/event-v1/)
+  或[节点状况](/zh-cn/docs/concepts/architecture/nodes/#condition)。
 
 <!--
 ## Legacy Add-ons
diff --git a/content/zh/docs/concepts/cluster-administration/certificates.md b/content/zh-cn/docs/concepts/cluster-administration/certificates.md
similarity index 71%
rename from content/zh/docs/concepts/cluster-administration/certificates.md
rename to content/zh-cn/docs/concepts/cluster-administration/certificates.md
index b900e77ec9..2297ffac05 100644
--- a/content/zh/docs/concepts/cluster-administration/certificates.md
+++ b/content/zh-cn/docs/concepts/cluster-administration/certificates.md
@@ -14,5 +14,5 @@ weight: 20
 <!--
 To learn how to generate certificates for your cluster, see [Certificates](/docs/tasks/administer-cluster/certificates/).
 -->
-要了解如何为集群生成证书，参阅[证书](/zh/docs/tasks/administer-cluster/certificates/)。
+要了解如何为集群生成证书，参阅[证书](/zh-cn/docs/tasks/administer-cluster/certificates/)。
 
diff --git a/content/zh/docs/concepts/cluster-administration/flow-control.md b/content/zh-cn/docs/concepts/cluster-administration/flow-control.md
similarity index 69%
rename from content/zh/docs/concepts/cluster-administration/flow-control.md
rename to content/zh-cn/docs/concepts/cluster-administration/flow-control.md
index c7805402f5..55ab657d13 100644
--- a/content/zh/docs/concepts/cluster-administration/flow-control.md
+++ b/content/zh-cn/docs/concepts/cluster-administration/flow-control.md
@@ -20,7 +20,7 @@ that the most important requests get through in a period of high traffic.
 -->
 对于集群管理员来说，控制 Kubernetes API 服务器在过载情况下的行为是一项关键任务。
 {{< glossary_tooltip term_id="kube-apiserver" text="kube-apiserver" >}}
-有一些控件（例如：命令行标志 `--max-requests-inflight` 和 `--max-mutating-requests-inflight` ）,
+有一些控件（例如：命令行标志 `--max-requests-inflight` 和 `--max-mutating-requests-inflight`），
 可以限制将要接受的未处理的请求，从而防止过量请求入站，潜在导致 API 服务器崩溃。
 但是这些标志不足以保证在高流量期间，最重要的请求仍能被服务器接受。
 
@@ -38,23 +38,29 @@ API 优先级和公平性（APF）是一种替代方案，可提升上述最大
 APF 以更细粒度的方式对请求进行分类和隔离。
 它还引入了空间有限的排队机制，因此在非常短暂的突发情况下，API 服务器不会拒绝任何请求。
 通过使用公平排队技术从队列中分发请求，这样，
-一个行为不佳的 {{< glossary_tooltip text="控制器" term_id="controller" >}}
-就不会饿死其他控制器（即使优先级相同）。
+一个行为不佳的{{< glossary_tooltip text="控制器" term_id="controller" >}}就不会饿死其他控制器
+（即使优先级相同）。
 
 <!--
+This feature is designed to work well with standard controllers, which
+use informers and react to failures of API requests with exponential
+back-off, and other clients that also work this way.
+-->
+本功能特性在设计上期望其能与标准控制器一起工作得很好；
+这类控制器使用通知组件（Informers）获得信息并对 API 请求的失效作出反应，
+在处理失效时能够执行指数型回退。其他客户端也以类似方式工作。
+
 {{< caution >}}
+<!--
 Requests classified as "long-running" — primarily watches — are not
 subject to the API Priority and Fairness filter. This is also true for
 the `--max-requests-inflight` flag without the API Priority and
 Fairness feature enabled.
-{{< /caution >}}
 -->
-{{< caution >}}
-属于“长时间运行”类型的请求（主要是 watch）不受 API 优先级和公平性过滤器的约束。
+属于“长时间运行”类型的请求（主要是 `watch`）不受 API 优先级和公平性过滤器的约束。
 如果未启用 APF 特性，即便设置 `--max-requests-inflight` 标志，该类请求也不受约束。
 {{< /caution >}}
 
-
 <!-- body -->
 
 <!--
@@ -70,26 +76,24 @@ for a general explanation of feature gates and how to enable and
 disable them.  The name of the feature gate for APF is
 "APIPriorityAndFairness".  This feature also involves an {{<
 glossary_tooltip term_id="api-group" text="API Group" >}} with: (a) a
-`v1alpha1` version, disabled by default, and (b) a `v1beta1`
-version,  enabled by default.  You can disable the feature
-gate and API group v1beta1 version by adding the following
+`v1alpha1` version, disabled by default, and (b) `v1beta1` and
+`v1beta2` versions, enabled by default.  You can disable the feature
+gate and API group beta versions by adding the following
 command-line flags to your `kube-apiserver` invocation:
 -->
 API 优先级与公平性（APF）特性由特性门控控制，默认情况下启用。
 有关特性门控的一般性描述以及如何启用和禁用特性门控，
-请参见[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)。
+请参见[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)。
 APF 的特性门控称为 `APIPriorityAndFairness`。
-此特性也与某个 {{< glossary_tooltip term_id="api-group" text="API 组" >}}
-相关：
-(a) 一个 `v1alpha1` 版本，默认被禁用；
-(b) 一个 `v1beta1` 版本，默认被启用。
-你可以在启动 `kube-apiserver` 时，添加以下命令行标志来禁用此功能门控
-及 v1beta1 API 组：
+此特性也与某个 {{< glossary_tooltip term_id="api-group" text="API 组" >}}相关：
+(a) `v1alpha1` 版本，默认被禁用；
+(b) `v1beta1` 和 `v1beta2` 版本，默认被启用。
+你可以在启动 `kube-apiserver` 时，添加以下命令行标志来禁用此功能门控及 API Beta 组：
 
 ```shell
 kube-apiserver \
 --feature-gates=APIPriorityAndFairness=false \
---runtime-config=flowcontrol.apiserver.k8s.io/v1beta1=false \
+--runtime-config=flowcontrol.apiserver.k8s.io/v1beta1=false,flowcontrol.apiserver.k8s.io/v1beta2=false \
   # ...其他配置不变
 ```
 
@@ -97,15 +101,15 @@ kube-apiserver \
 Alternatively, you can enable the v1alpha1 version of the API group
 with `--runtime-config=flowcontrol.apiserver.k8s.io/v1alpha1=true`.
 -->
-或者，你也可以通过
-`--runtime-config=flowcontrol.apiserver.k8s.io/v1alpha1=true`
+或者，你也可以通过 `--runtime-config=flowcontrol.apiserver.k8s.io/v1alpha1=true`
 启用 API 组的 v1alpha1 版本。
 
 <!--
 The command-line flag `--enable-priority-and-fairness=false` will disable the
 API Priority and Fairness feature, even if other flags have enabled it.
 -->
-命令行标志 `--enable-priority-fairness=false` 将彻底禁用 APF 特性，即使其他标志启用它也是无效。
+命令行标志 `--enable-priority-fairness=false` 将彻底禁用 APF 特性，
+即使其他标志启用它也是无效。
 
 <!--
 ## Concepts
@@ -121,26 +125,27 @@ causing failed requests when the average load is acceptably low.
 ## 概念    {#concepts}
 
 APF 特性包含几个不同的功能。
-传入的请求通过 _FlowSchema_ 按照其属性分类，并分配优先级。
+传入的请求通过 **FlowSchema** 按照其属性分类，并分配优先级。
 每个优先级维护自定义的并发限制，加强了隔离度，这样不同优先级的请求，就不会相互饿死。
-在同一个优先级内，公平排队算法可以防止来自不同 _flow_ 的请求相互饿死。
+在同一个优先级内，公平排队算法可以防止来自不同 **流（Flow）** 的请求相互饿死。
 该算法将请求排队，通过排队机制，防止在平均负载较低时，通信量突增而导致请求失败。
 
 <!--
 ### Priority Levels
-Without APF enabled, overall concurrency in
-the API server is limited by the `kube-apiserver` flags
-`--max-requests-inflight` and `--max-mutating-requests-inflight`. With APF
-enabled, the concurrency limits defined by these flags are summed and then the sum is divided up
-among a configurable set of _priority levels_. Each incoming request is assigned
-to a single priority level, and each priority level will only dispatch as many
+
+Without APF enabled, overall concurrency in the API server is limited by the
+`kube-apiserver` flags `--max-requests-inflight` and
+`--max-mutating-requests-inflight`. With APF enabled, the concurrency limits
+defined by these flags are summed and then the sum is divided up among a
+configurable set of _priority levels_. Each incoming request is assigned to a
+single priority level, and each priority level will only dispatch as many
 concurrent requests as its configuration allows.
 -->
 ### 优先级    {#Priority-Levels}
 
 如果未启用 APF，API 服务器中的整体并发量将受到 `kube-apiserver` 的参数
 `--max-requests-inflight` 和 `--max-mutating-requests-inflight` 的限制。
-启用 APF 后，将对这些参数定义的并发限制进行求和，然后将总和分配到一组可配置的 _优先级_ 中。
+启用 APF 后，将对这些参数定义的并发限制进行求和，然后将总和分配到一组可配置的 **优先级** 中。
 每个传入的请求都会分配一个优先级；每个优先级都有各自的配置，设定允许分发的并发请求数。
 
 <!--
@@ -153,9 +158,9 @@ from succeeding.
 例如，默认配置包括针对领导者选举请求、内置控制器请求和 Pod 请求都单独设置优先级。
 这表示即使异常的 Pod 向 API 服务器发送大量请求，也无法阻止领导者选举或内置控制器的操作执行成功。
 
-
 <!--
 ### Queuing
+
 Even within a priority level there may be a large number of distinct sources of
 traffic. In an overload situation, it is valuable to prevent one stream of
 requests from starving others (in particular, in the relatively common case of a
@@ -167,6 +172,8 @@ name of the matching FlowSchema plus a _flow distinguisher_ — which
 is either the requesting user, the target resource's namespace, or nothing — and the
 system attempts to give approximately equal weight to requests in different
 flows of the same priority level.
+To enable distinct handling of distinct instances, controllers that have
+many instances should authenticate with distinct usernames
 -->
 ### 排队    {#Queuing}
 
@@ -175,10 +182,11 @@ flows of the same priority level.
 （尤其是在一个较为常见的场景中，一个有故障的客户端会疯狂地向 kube-apiserver 发送请求，
 理想情况下，这个有故障的客户端不应对其他客户端产生太大的影响）。
 公平排队算法在处理具有相同优先级的请求时，实现了上述场景。
-每个请求都被分配到某个 _流_ 中，该 _流_ 由对应的 FlowSchema 的名字加上一个
-_流区分项（Flow Distinguisher）_ 来标识。
-这里的流区分项可以是发出请求的用户、目标资源的名称空间或什么都不是。
+每个请求都被分配到某个 **流（Flow）** 中，该 **流** 由对应的 FlowSchema 的名字加上一个
+**流区分项（Flow Distinguisher）** 来标识。
+这里的流区分项可以是发出请求的用户、目标资源的名字空间或什么都不是。
 系统尝试为不同流中具有相同优先级的请求赋予近似相等的权重。
+要启用对不同实例的不同处理方式，多实例的控制器要分别用不同的用户名来执行身份认证。
 
 <!--
 After classifying a request into a flow, the API Priority and Fairness
@@ -188,7 +196,7 @@ text="shuffle sharding" >}}, which makes relatively efficient use of
 queues to insulate low-intensity flows from high-intensity flows.
 -->
 将请求划分到流中之后，APF 功能将请求分配到队列中。
-分配时使用一种称为 {{< glossary_tooltip term_id="shuffle-sharding" text="混洗分片（Shuffle-Sharding）" >}}
+分配时使用一种称为{{< glossary_tooltip term_id="shuffle-sharding" text="混洗分片（Shuffle-Sharding）" >}}
 的技术。
 该技术可以相对有效地利用队列隔离低强度流与高强度流。
 
@@ -212,140 +220,17 @@ server.
 -->
 ### 豁免请求    {#Exempt-requests}
 
-某些特别重要的请求不受制于此特性施加的任何限制。这些豁免可防止不当的流控配置完全禁用 API 服务器。
-
-<!--
-## Defaults
-
-The Priority and Fairness feature ships with a suggested configuration that
-should suffice for experimentation; if your cluster is likely to
-experience heavy load then you should consider what configuration will work best.
-The suggested configuration groups requests into five priority classes:
--->
-## 默认值    {#defaults}
-
-APF 特性附带推荐配置，该配置对实验场景应该足够；
-如果你的集群有可能承受较大的负载，那么你应该考虑哪种配置最有效。
-推荐配置将请求分为五个优先级：
-
-<!--
-* The `system` priority level is for requests from the `system:nodes` group,
-  i.e. Kubelets, which must be able to contact the API server in order for
-  workloads to be able to schedule on them.
--->
-* `system` 优先级用于 `system:nodes` 组（即 Kubelets）的请求；
-  kubelets 必须能连上 API 服务器，以便工作负载能够调度到其上。
-
-<!--
-* The `leader-election` priority level is for leader election requests from
-  built-in controllers (in particular, requests for `endpoints`, `configmaps`,
-  or `leases` coming from the `system:kube-controller-manager` or
-  `system:kube-scheduler` users and service accounts in the `kube-system`
-  namespace). These are important to isolate from other traffic because failures
-  in leader election cause their controllers to fail and restart, which in turn
-  causes more expensive traffic as the new controllers sync their informers.
--->
-* `leader-election` 优先级用于内置控制器的领导选举的请求
-  （特别是来自 `kube-system` 名称空间中 `system:kube-controller-manager` 和
-  `system:kube-scheduler` 用户和服务账号，针对 `endpoints`、`configmaps` 或 `leases` 的请求）。
-  将这些请求与其他流量相隔离非常重要，因为领导者选举失败会导致控制器发生故障并重新启动，
-  这反过来会导致新启动的控制器在同步信息时，流量开销更大。
-
-<!--
-* The `workload-high` priority level is for other requests from built-in
-  controllers.
-* The `workload-low` priority level is for requests from any other service
-  account, which will typically include all requests from controllers running in
-  Pods.
-* The `global-default` priority level handles all other traffic, e.g.
-  interactive `kubectl` commands run by nonprivileged users.
--->
-* `workload-high` 优先级用于内置控制器的请求。
-* `workload-low` 优先级适用于来自任何服务帐户的请求，通常包括来自 Pods
-  中运行的控制器的所有请求。
-* `global-default` 优先级可处理所有其他流量，例如：非特权用户运行的交互式 `kubectl` 命令。
-
-<!--
-Additionally, there are two PriorityLevelConfigurations and two FlowSchemas that
-are built in and may not be overwritten:
--->
-系统内置了两个 PriorityLevelConfiguration 和两个 FlowSchema，它们是不可重载的：
-
-<!--
-* The special `exempt` priority level is used for requests that are not subject
-  to flow control at all: they will always be dispatched immediately. The
-  special `exempt` FlowSchema classifies all requests from the `system:masters`
-  group into this priority level. You may define other FlowSchemas that direct
-  other requests to this priority level, if appropriate.
--->
-* 特殊的 `exempt` 优先级的请求完全不受流控限制：它们总是立刻被分发。
-  特殊的 `exempt` FlowSchema 把 `system:masters` 组的所有请求都归入该优先级组。
-  如果合适，你可以定义新的 FlowSchema，将其他请求定向到该优先级。
-
-<!--
-* The special `catch-all` priority level is used in combination with the special
-  `catch-all` FlowSchema to make sure that every request gets some kind of
-  classification. Typically you should not rely on this catch-all configuration,
-  and should create your own catch-all FlowSchema and PriorityLevelConfiguration
-  (or use the `global-default` configuration that is installed by default) as
-  appropriate. To help catch configuration errors that miss classifying some
-  requests, the mandatory `catch-all` priority level only allows one concurrency
-  share and does not queue requests, making it relatively likely that traffic
-  that only matches the `catch-all` FlowSchema will be rejected with an HTTP 429
-  error.
--->
-* 特殊的 `catch-all` 优先级与特殊的 `catch-all` FlowSchema 结合使用，以确保每个请求都分类。
-  一般地，你不应该依赖于 `catch-all` 的配置，而应适当地创建自己的 `catch-all`
-  FlowSchema 和 PriorityLevelConfigurations（或使用默认安装的 `global-default` 配置）。
-  为了帮助捕获部分请求未分类的配置错误，强制要求 `catch-all` 优先级仅允许一个并发份额，
-  并且不对请求进行排队，使得仅与 `catch-all` FlowSchema 匹配的流量被拒绝的可能性更高，
-  并显示 HTTP 429 错误。
-
-<!-- ## Health check concurrency exemption -->
-## 健康检查并发豁免    {#Health-check-concurrency-exemption}
-
-<!--
-The suggested configuration gives no special treatment to the health
-check requests on kube-apiservers from their local kubelets --- which
-tend to use the secured port but supply no credentials.  With the
-suggested config, these requests get assigned to the `global-default`
-FlowSchema and the corresponding `global-default` priority level,
-where other traffic can crowd them out.
--->
-推荐配置没有为本地 kubelet 对 kube-apiserver 执行健康检查的请求进行任何特殊处理
-——它们倾向于使用安全端口，但不提供凭据。
-在推荐配置中，这些请求将分配 `global-default` FlowSchema 和 `global-default` 优先级，
-这样其他流量可以排除健康检查。
-
-<!--
-If you add the following additional FlowSchema, this exempts those
-requests from rate limiting.
--->
-如果添加以下 FlowSchema，健康检查请求不受速率限制。
-
-<!--
-Making this change also allows any hostile party to then send
-health-check requests that match this FlowSchema, at any volume they
-like.  If you have a web traffic filter or similar external security
-mechanism to protect your cluster's API server from general internet
-traffic, you can configure rules to block any health check requests
-that originate from outside your cluster.
--->
-{{< caution >}}
-进行此更改后，任何敌对方都可以发送与此 FlowSchema 匹配的任意数量的健康检查请求。
-如果你有 Web 流量过滤器或类似的外部安全机制保护集群的 API 服务器免受常规网络流量的侵扰，
-则可以配置规则，阻止所有来自集群外部的健康检查请求。
-{{< /caution >}}
-
-{{< codenew file="priority-and-fairness/health-for-strangers.yaml" >}}
+某些特别重要的请求不受制于此特性施加的任何限制。
+这些豁免可防止不当的流控配置完全禁用 API 服务器。
 
 <!--
 ## Resources
+
 The flow control API involves two kinds of resources.
-[PriorityLevelConfigurations](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io)
+[PriorityLevelConfigurations](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io)
 define the available isolation classes, the share of the available concurrency
 budget that each can handle, and allow for fine-tuning queuing behavior.
-[FlowSchemas](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#flowschema-v1beta1-flowcontrol-apiserver-k8s-io)
+[FlowSchemas](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#flowschema-v1beta2-flowcontrol-apiserver-k8s-io)
 are used to classify individual inbound requests, matching each to a
 single PriorityLevelConfiguration. There is also a `v1alpha1` version
 of the same API group, and it has the same Kinds with the same syntax and
@@ -354,10 +239,10 @@ semantics.
 ## 资源    {#Resources}
 
 流控 API 涉及两种资源。
-[PriorityLevelConfigurations](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#prioritylevelconfiguration-v1alpha1-flowcontrol-apiserver-k8s-io)
+[PriorityLevelConfiguration](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io)
 定义隔离类型和可处理的并发预算量，还可以微调排队行为。
-[FlowSchemas](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#flowschema-v1alpha1-flowcontrol-apiserver-k8s-io)
-用于对每个入站请求进行分类，并与一个 PriorityLevelConfigurations 相匹配。
+[FlowSchema](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#flowschema-v1beta2-flowcontrol-apiserver-k8s-io)
+用于对每个入站请求进行分类，并与一个 PriorityLevelConfiguration 相匹配。
 此外同一 API 组还有一个 `v1alpha1` 版本，其中包含语法和语义都相同的资源类别。
 
 <!--
@@ -368,7 +253,7 @@ requests, and limitations on the number of queued requests.
 -->
 ### PriorityLevelConfiguration    {#PriorityLevelConfiguration}
 
-一个 PriorityLevelConfiguration 表示单个隔离类型。每个 PriorityLevelConfigurations
+一个 PriorityLevelConfiguration 表示单个隔离类型。每个 PriorityLevelConfiguration
 对未完成的请求数有各自的限制，对排队中的请求数也有限制。
 
 <!--
@@ -382,12 +267,13 @@ server by restarting `kube-apiserver` with a different value for
 PriorityLevelConfigurations will see their maximum allowed concurrency go up (or
 down) by the same fraction.
 -->
-PriorityLevelConfigurations 的并发限制不是指定请求绝对数量，而是在“并发份额”中指定。
-API 服务器的总并发量限制通过这些份额按例分配到现有 PriorityLevelConfigurations 中。
+PriorityLevelConfiguration 的并发限制不是指定请求绝对数量，而是在“并发份额”中指定。
+API 服务器的总并发量限制通过这些份额按例分配到现有 PriorityLevelConfiguration 中。
 集群管理员可以更改 `--max-requests-inflight` （或 `--max-mutating-requests-inflight` ）的值，
 再重新启动 `kube-apiserver` 来增加或减小服务器的总流量，
-然后所有的 PriorityLevelConfigurations 将看到其最大并发增加（或减少）了相同的比例。
+然后所有的 PriorityLevelConfiguration 将看到其最大并发增加（或减少）了相同的比例。
 
+{{< caution >}}
 <!--
 With the Priority and Fairness feature enabled, the total concurrency limit for
 the server is set to the sum of `--max-requests-inflight` and
@@ -396,8 +282,7 @@ between mutating and non-mutating requests; if you want to treat them
 separately for a given resource, make separate FlowSchemas that match the
 mutating and non-mutating verbs respectively.
 -->
-{{< caution >}}
-启用 APF 功能后，服务器的总并发量限制将设置为
+启用 APF 特性后，服务器的总并发量限制将设置为
 `--max-requests-inflight` 和 `--max-mutating-requests-inflight` 之和。
 可变请求和不可变请求之间不再有任何区别；
 如果对于某种资源，你需要区别对待不同请求，请创建不同的 FlowSchema 分别匹配可变请求和不可变请求。
@@ -412,16 +297,19 @@ an HTTP 429 (Too Many Requests) error. A type of `Queue` means that requests
 above the threshold will be queued, with the shuffle sharding and fair queuing techniques used
 to balance progress between request flows.
 -->
-当入站请求的数量大于分配的 PriorityLevelConfigurations 中允许的并发级别时， `type` 字段将确定对额外请求的处理方式。
+当入站请求的数量大于分配的 PriorityLevelConfiguration 中允许的并发级别时，
+`type` 字段将确定对额外请求的处理方式。
 `Reject` 类型，表示多余的流量将立即被 HTTP 429（请求过多）错误所拒绝。
 `Queue` 类型，表示对超过阈值的请求进行排队，将使用阈值分片和公平排队技术来平衡请求流之间的进度。
 
 <!--
 The queuing configuration allows tuning the fair queuing algorithm for a
-priority level. Details of the algorithm can be read in the [enhancement
-proposal](#whats-next), but in short:
+priority level. Details of the algorithm can be read in the
+[enhancement proposal](https://github.com/kubernetes/enhancements/tree/master/keps/sig-api-machinery/1040-priority-and-fairness), but in short:
 -->
-公平排队算法支持通过排队配置对优先级微调。 可以在[增强建议](#whats-next)中阅读算法的详细信息，但总之：
+公平排队算法支持通过排队配置对优先级微调。
+可以在[增强建议](https://github.com/kubernetes/enhancements/tree/master/keps/sig-api-machinery/1040-priority-and-fairness)中阅读算法的详细信息，
+但总之：
 
 <!--
 * Increasing `queues` reduces the rate of collisions between different flows, at
@@ -443,23 +331,22 @@ proposal](#whats-next), but in short:
 * Changing `handSize` allows you to adjust the probability of collisions between
   different flows and the overall concurrency available to a single flow in an
   overload situation.
+-->
+* 修改 `handSize` 允许你调整过载情况下不同流之间的冲突概率以及单个流可用的整体并发性。
 
   {{< note >}}
+  <!--
   A larger `handSize` makes it less likely for two individual flows to collide
   (and therefore for one to be able to starve the other), but more likely that
   a small number of flows can dominate the apiserver. A larger `handSize` also
   potentially increases the amount of latency that a single high-traffic flow
   can cause. The maximum number of queued requests possible from a
-  single flow is `handSize *queueLengthLimit`.
-  {{< /note >}}
--->
-* 修改 `handSize` 允许你调整过载情况下不同流之间的冲突概率以及单个流可用的整体并发性。
-
-  {{< note >}}
+  single flow is `handSize * queueLengthLimit`.
+  -->
   较大的 `handSize` 使两个单独的流程发生碰撞的可能性较小（因此，一个流可以饿死另一个流），
   但是更有可能的是少数流可以控制 apiserver。
   较大的 `handSize` 还可能增加单个高并发流的延迟量。
-  单个流中可能排队的请求的最大数量为 `handSize *queueLengthLimit` 。
+  单个流中可能排队的请求的最大数量为 `handSize * queueLengthLimit` 。
   {{< /note >}}
 
 <!--
@@ -469,11 +356,11 @@ given mouse (low-intensity flow) is squished by the elephants (high-intensity fl
 an illustrative collection of numbers of elephants. See
 https://play.golang.org/p/Gi0PLgVHiUg , which computes this table.
 -->
-下表显示了有趣的随机分片配置集合，
-每行显示给定的老鼠（低强度流）被不同数量的大象挤压（高强度流）的概率。
+下表显示了有趣的随机分片配置集合，每行显示给定的老鼠（低强度流）
+被不同数量的大象挤压（高强度流）的概率。
 表来源请参阅： https://play.golang.org/p/Gi0PLgVHiUg
 
-{{< table caption = "Example Shuffle Sharding Configurations" >}}
+{{< table caption = "混分切片配置示例" >}}
 <!-- HandSize | Queues | 1 elephant | 4 elephants | 16 elephants -->
 随机分片 | 队列数 | 1 个大象 | 4 个大象 | 16 个大象
 |----------|-----------|------------|----------------|--------------------|
@@ -490,21 +377,23 @@ https://play.golang.org/p/Gi0PLgVHiUg , which computes this table.
 | 6 | 1024 | 6.337324016514285e-16 | 8.09060164312957e-11 | 4.517408062903668e-07 |
 {{< /table >}}
 
-<!-- ### FlowSchema -->
-### FlowSchema    {#FlowSchema}
-
 <!--
+### FlowSchema
+
 A FlowSchema matches some inbound requests and assigns them to a
 priority level. Every inbound request is tested against every
 FlowSchema in turn, starting with those with numerically lowest ---
 which we take to be the logically highest --- `matchingPrecedence` and
 working onward.  The first match wins.
 -->
+### FlowSchema
+
 FlowSchema 匹配一些入站请求，并将它们分配给优先级。
 每个入站请求都会对所有 FlowSchema 测试是否匹配，
 首先从 `matchingPrecedence` 数值最低的匹配开始（我们认为这是逻辑上匹配度最高），
 然后依次进行，直到首个匹配出现。
 
+{{< caution >}}
 <!--
 Only the first matching FlowSchema for a given request matters. If multiple
 FlowSchemas match a single inbound request, it will be assigned based on the one
@@ -513,7 +402,6 @@ with the highest `matchingPrecedence`. If multiple FlowSchemas with equal
 smaller `name` will win, but it's better not to rely on this, and instead to
 ensure that no two FlowSchemas have the same `matchingPrecedence`.
 -->
-{{< caution >}}
 对一个请求来说，只有首个匹配的 FlowSchema  才有意义。
 如果一个入站请求与多个 FlowSchema 匹配，则将基于 `matchingPrecedence` 值最高的请求进行筛选。
 如果一个请求匹配多个 FlowSchema 且 `matchingPrecedence` 的值相同，则按 `name` 的字典序选择最小，
@@ -538,7 +426,7 @@ the wildcard `*` may be specified to match all values for the given field,
 effectively removing it from consideration.
 -->
 对于 `subjects` 中的 `name` 字段和资源和非资源规则的
-`verbs`，`apiGroups`，`resources`，`namespaces` 和 `nonResourceURLs` 字段，
+`verbs`、`apiGroups`、`resources`、`namespaces` 和 `nonResourceURLs` 字段，
 可以指定通配符 `*` 来匹配任意值，从而有效地忽略该字段。
 
 <!--
@@ -553,12 +441,276 @@ considered part of a single flow. The correct choice for a given FlowSchema
 depends on the resource and your particular environment.
 -->
 FlowSchema 的 `distinguisherMethod.type` 字段决定了如何把与该模式匹配的请求分散到各个流中。
-可能是 `ByUser` ，在这种情况下，一个请求用户将无法饿死其他容量的用户；
-或者是 `ByNamespace` ，在这种情况下，一个名称空间中的资源请求将无法饿死其它名称空间的资源请求；
+可能是 `ByUser`，在这种情况下，一个请求用户将无法饿死其他容量的用户；
+或者是 `ByNamespace`，在这种情况下，一个名字空间中的资源请求将无法饿死其它名字空间的资源请求；
 或者它可以为空（或者可以完全省略 `distinguisherMethod`），
 在这种情况下，与此 FlowSchema 匹配的请求将被视为单个流的一部分。
 资源和你的特定环境决定了如何选择正确一个 FlowSchema。
 
+<!--
+## Defaults
+
+Each kube-apiserver maintains two sorts of APF configuration objects:
+mandatory and suggested.
+-->
+## 默认值    {#defaults}
+
+每个 kube-apiserver 会维护两种类型的 APF 配置对象：强制的（Mandatory）和建议的（Suggested）。
+
+<!--
+### Mandatory Configuration Objects
+
+The four mandatory configuration objects reflect fixed built-in
+guardrail behavior.  This is behavior that the servers have before
+those objects exist, and when those objects exist their specs reflect
+this behavior.  The four mandatory objects are as follows.
+-->
+### 强制的配置对象
+
+有四种强制的配置对象对应内置的守护行为。这里的行为是服务器在还未创建对象之前就具备的行为，
+而当这些对象存在时，其规约反映了这类行为。四种强制的对象如下：
+
+<!--
+* The mandatory `exempt` priority level is used for requests that are
+  not subject to flow control at all: they will always be dispatched
+  immediately. The mandatory `exempt` FlowSchema classifies all
+  requests from the `system:masters` group into this priority
+  level. You may define other FlowSchemas that direct other requests
+  to this priority level, if appropriate.
+-->
+* 强制的 `exempt` 优先级用于完全不受流控限制的请求：它们总是立刻被分发。
+  强制的 `exempt` FlowSchema 把 `system:masters` 组的所有请求都归入该优先级。
+  如果合适，你可以定义新的 FlowSchema，将其他请求定向到该优先级。
+
+<!--
+* The mandatory `catch-all` priority level is used in combination with
+  the mandatory `catch-all` FlowSchema to make sure that every request
+  gets some kind of classification. Typically you should not rely on
+  this catch-all configuration, and should create your own catch-all
+  FlowSchema and PriorityLevelConfiguration (or use the suggested
+  `global-default` priority level that is installed by default) as
+  appropriate. Because it is not expected to be used normally, the
+  mandatory `catch-all` priority level has a very small concurrency
+  share and does not queue requests.
+-->
+* 强制的 `catch-all` 优先级与强制的 `catch-all` FlowSchema 结合使用，
+  以确保每个请求都分类。一般而言，你不应该依赖于 `catch-all` 的配置，
+  而应适当地创建自己的 `catch-all` FlowSchema 和 PriorityLevelConfiguration
+  （或使用默认安装的 `global-default` 配置）。
+  因为这一优先级不是正常场景下要使用的，`catch-all` 优先级的并发度份额很小，
+  并且不会对请求进行排队。
+
+<!--
+### Suggested Configuration Objects
+
+The suggested FlowSchemas and PriorityLevelConfigurations constitute a
+reasonable default configuration.  You can modify these and/or create
+additional configuration objects if you want.  If your cluster is
+likely to experience heavy load then you should consider what
+configuration will work best.
+
+The suggested configuration groups requests into six priority levels:
+-->
+### 建议的配置对象
+
+建议的 FlowSchema 和 PriorityLevelConfiguration 包含合理的默认配置。
+你可以修改这些对象或者根据需要创建新的配置对象。如果你的集群可能承受较重负载，
+那么你就要考虑哪种配置最合适。
+
+建议的配置把请求分为六个优先级：
+
+<!--
+* The `node-high` priority level is for health updates from nodes.
+-->
+* `node-high` 优先级用于来自节点的健康状态更新。
+
+<!--
+* The `system` priority level is for non-health requests from the
+  `system:nodes` group, i.e. Kubelets, which must be able to contact
+  the API server in order for workloads to be able to schedule on
+  them.
+-->
+* `system` 优先级用于 `system:nodes` 组（即 kubelet）的与健康状态更新无关的请求；
+  kubelets 必须能连上 API 服务器，以便工作负载能够调度到其上。
+
+<!--
+* The `leader-election` priority level is for leader election requests from
+  built-in controllers (in particular, requests for `endpoints`, `configmaps`,
+  or `leases` coming from the `system:kube-controller-manager` or
+  `system:kube-scheduler` users and service accounts in the `kube-system`
+  namespace). These are important to isolate from other traffic because failures
+  in leader election cause their controllers to fail and restart, which in turn
+  causes more expensive traffic as the new controllers sync their informers.
+-->
+* `leader-election` 优先级用于内置控制器的领导选举的请求
+  （特别是来自 `kube-system` 名字空间中 `system:kube-controller-manager` 和
+  `system:kube-scheduler` 用户和服务账号，针对 `endpoints`、`configmaps` 或 `leases` 的请求）。
+  将这些请求与其他流量相隔离非常重要，因为领导者选举失败会导致控制器发生故障并重新启动，
+  这反过来会导致新启动的控制器在同步信息时，流量开销更大。
+
+<!--
+* The `workload-high` priority level is for other requests from built-in
+  controllers.
+* The `workload-low` priority level is for requests from any other service
+  account, which will typically include all requests from controllers running in
+  Pods.
+* The `global-default` priority level handles all other traffic, e.g.
+  interactive `kubectl` commands run by nonprivileged users.
+-->
+* `workload-high` 优先级用于内置控制器的其他请求。
+* `workload-low` 优先级用于来自所有其他服务帐户的请求，通常包括来自 Pod
+  中运行的控制器的所有请求。
+* `global-default` 优先级可处理所有其他流量，例如：非特权用户运行的交互式
+  `kubectl` 命令。
+
+<!--
+The suggested FlowSchemas serve to steer requests into the above
+priority levels, and are not enumerated here.
+-->
+建议的 FlowSchema 用来将请求导向上述的优先级内，这里不再一一列举。
+
+<!--
+### Maintenance of the Mandatory and Suggested Configuration Objects
+
+Each `kube-apiserver` independently maintains the mandatory and
+suggested configuration objects, using initial and periodic behavior.
+Thus, in a situation with a mixture of servers of different versions
+there may be thrashing as long as different servers have different
+opinions of the proper content of these objects.
+-->
+### 强制的与建议的配置对象的维护
+
+每个 `kube-apiserver` 都独立地维护其强制的与建议的配置对象，
+这一维护操作既是服务器的初始行为，也是其周期性操作的一部分。
+因此，当存在不同版本的服务器时，如果各个服务器对于配置对象中的合适内容有不同意见，
+就可能出现抖动。
+
+<!--
+Each `kube-apiserver` makes an initial maintenance pass over the
+mandatory and suggested configuration objects, and after that does
+periodic maintenance (once per minute) of those objects.
+
+For the mandatory configuration objects, maintenance consists of
+ensuring that the object exists and, if it does, has the proper spec.
+The server refuses to allow a creation or update with a spec that is
+inconsistent with the server's guardrail behavior.
+-->
+每个 `kube-apiserver` 都会对强制的与建议的配置对象执行初始的维护操作，
+之后（每分钟）对这些对象执行周期性的维护。
+
+对于强制的配置对象，维护操作包括确保对象存在并且包含合适的规约（如果存在的话）。
+服务器会拒绝创建或更新与其守护行为不一致的规约。
+
+<!--
+Maintenance of suggested configuration objects is designed to allow
+their specs to be overridden.  Deletion, on the other hand, is not
+respected: maintenance will restore the object.  If you do not want a
+suggested configuration object then you need to keep it around but set
+its spec to have minimal consequences.  Maintenance of suggested
+objects is also designed to support automatic migration when a new
+version of the `kube-apiserver` is rolled out, albeit potentially with
+thrashing while there is a mixed population of servers.
+-->
+对建议的配置对象的维护操作被设计为允许其规约被重载。删除操作是不允许的，
+维护操作期间会重建这类配置对象。如果你不需要某个建议的配置对象，
+你需要将它放在一边，并让其规约所产生的影响最小化。
+对建议的配置对象而言，其维护方面的设计也支持在上线新的 `kube-apiserver`
+时完成自动的迁移动作，即便可能因为当前的服务器集合存在不同的版本而可能造成抖动仍是如此。
+
+<!--
+Maintenance of a suggested configuration object consists of creating
+it --- with the server's suggested spec --- if the object does not
+exist.  OTOH, if the object already exists, maintenance behavior
+depends on whether the `kube-apiservers` or the users control the
+object.  In the former case, the server ensures that the object's spec
+is what the server suggests; in the latter case, the spec is left
+alone.
+-->
+对建议的配置对象的维护操作包括基于服务器建议的规约创建对象
+（如果对象不存在的话）。反之，如果对象已经存在，维护操作的行为取决于是否
+`kube-apiserver` 或者用户在控制对象。如果 `kube-apiserver` 在控制对象，
+则服务器确保对象的规约与服务器所给的建议匹配，如果用户在控制对象，
+对象的规约保持不变。
+
+<!--
+The question of who controls the object is answered by first looking
+for an annotation with key `apf.kubernetes.io/autoupdate-spec`.  If
+there is such an annotation and its value is `true` then the
+kube-apiservers control the object.  If there is such an annotation
+and its value is `false` then the users control the object.  If
+neither of those condtions holds then the `metadata.generation` of the
+object is consulted.  If that is 1 then the kube-apiservers control
+the object.  Otherwise the users control the object.  These rules were
+introduced in release 1.22 and their consideration of
+`metadata.generation` is for the sake of migration from the simpler
+earlier behavior.  Users who wish to control a suggested configuration
+object should set its `apf.kubernetes.io/autoupdate-spec` annotation
+to `false`.
+-->
+关于谁在控制对象这个问题，首先要看对象上的 `apf.kubernetes.io/autoupdate-spec`
+注解。如果对象上存在这个注解，并且其取值为`true`，则 kube-apiserver
+在控制该对象。如果存在这个注解，并且其取值为`false`，则用户在控制对象。
+如果这两个条件都不满足，则需要进一步查看对象的 `metadata.generation`。
+如果该值为 1，则 kube-apiserver 控制对象，否则用户控制对象。
+这些规则是在 1.22 发行版中引入的，而对 `metadata.generation`
+的考量是为了便于从之前较简单的行为迁移过来。希望控制建议的配置对象的用户应该将对象的
+`apf.kubernetes.io/autoupdate-spec` 注解设置为 `false`。
+
+<!--
+Maintenance of a mandatory or suggested configuration object also
+includes ensuring that it has an `apf.kubernetes.io/autoupdate-spec`
+annotation that accurately reflects whether the kube-apiservers
+control the object.
+
+Maintenance also includes deleting objects that are neither mandatory
+nor suggested but are annotated
+`apf.kubernetes.io/autoupdate-spec=true`.
+-->
+对强制的或建议的配置对象的维护操作也包括确保对象上存在 `apf.kubernetes.io/autoupdate-spec`
+这一注解，并且其取值准确地反映了是否 kube-apiserver 在控制着对象。
+
+维护操作还包括删除那些既非强制又非建议的配置，同时注解配置为
+`apf.kubernetes.io/autoupdate-spec=true` 的对象。
+
+<!--
+## Health check concurrency exemption
+
+The suggested configuration gives no special treatment to the health
+check requests on kube-apiservers from their local kubelets --- which
+tend to use the secured port but supply no credentials.  With the
+suggested config, these requests get assigned to the `global-default`
+FlowSchema and the corresponding `global-default` priority level,
+where other traffic can crowd them out.
+-->
+## 健康检查并发豁免    {#Health-check-concurrency-exemption}
+
+推荐配置没有为本地 kubelet 对 kube-apiserver 执行健康检查的请求进行任何特殊处理
+——它们倾向于使用安全端口，但不提供凭据。
+在推荐配置中，这些请求将分配 `global-default` FlowSchema 和 `global-default` 优先级，
+这样其他流量可以排除健康检查。
+
+<!--
+If you add the following additional FlowSchema, this exempts those
+requests from rate limiting.
+-->
+如果添加以下 FlowSchema，健康检查请求不受速率限制。
+
+{{< caution >}}
+<!--
+Making this change also allows any hostile party to then send
+health-check requests that match this FlowSchema, at any volume they
+like.  If you have a web traffic filter or similar external security
+mechanism to protect your cluster's API server from general internet
+traffic, you can configure rules to block any health check requests
+that originate from outside your cluster.
+-->
+进行此更改后，任何敌对方都可以发送与此 FlowSchema 匹配的任意数量的健康检查请求。
+如果你有 Web 流量过滤器或类似的外部安全机制保护集群的 API 服务器免受常规网络流量的侵扰，
+则可以配置规则，阻止所有来自集群外部的健康检查请求。
+{{< /caution >}}
+
+{{< codenew file="priority-and-fairness/health-for-strangers.yaml" >}}
+
 <!--
 ## Diagnostics
 
@@ -569,7 +721,6 @@ and the priority level to which it was assigned, respectively. The API objects'
 names are not included in these headers in case the requesting user does not
 have permission to view them, so when debugging you can use a command like
 -->
-
 ## 问题诊断    {#diagnostics}
 
 启用了 APF 的 API 服务器，它每个 HTTP 响应都有两个额外的 HTTP 头：
@@ -587,7 +738,7 @@ kubectl get prioritylevelconfigurations -o custom-columns="uid:{metadata.uid},na
 to get a mapping of UIDs to names for both FlowSchemas and
 PriorityLevelConfigurations.
 -->
-来获取 UID 到 FlowSchema 的名称和 UID 到 PriorityLevelConfigurations 的名称的映射。
+来获取 UID 到 FlowSchema 的名称和 UID 到 PriorityLevelConfiguration 的名称的映射。
 
 <!--
 ## Observability
@@ -598,17 +749,16 @@ PriorityLevelConfigurations.
 
 ### 指标    {#Metrics}
 
+{{< note >}}
 <!--
 In versions of Kubernetes before v1.20, the labels `flow_schema` and
 `priority_level` were inconsistently named `flowSchema` and `priorityLevel`,
 respectively. If you're running Kubernetes versions v1.19 and earlier, you
 should refer to the documentation for your version.
 -->
-{{< note >}}
 在 Kubernetes v1.20 之前的版本中，标签 `flow_schema` 和 `priority_level`
-的命名有时被写作 `flowSchema` 和 `priorityLevel`，即存在不一致的情况。
-如果你在运行 Kubernetes v1.19 或者更早版本，你需要参考你所使用的集群
-版本对应的文档。
+的名称有时被写作 `flowSchema` 和 `priorityLevel`，即存在不一致的情况。
+如果你在运行 Kubernetes v1.19 或者更早版本，你需要参考你所使用的集群版本对应的文档。
 {{< /note >}}
 
 <!--
@@ -628,23 +778,25 @@ poorly-behaved workloads that may be harming system health.
   matched the request), `priority_evel` (indicating the one to which
   the request was assigned), and `reason`.  The `reason` label will be
   have one of the following values:
-    * `queue-full`, indicating that too many requests were already
-      queued,
-    * `concurrency-limit`, indicating that the
-      PriorityLevelConfiguration is configured to reject rather than
-      queue excess requests, or
-    * `time-out`, indicating that the request was still in the queue
-      when its queuing time limit expired.
 -->
 * `apiserver_flowcontrol_rejected_requests_total` 是一个计数器向量，
   记录被拒绝的请求数量（自服务器启动以来累计值），
-  由标签 `flow_chema`（表示与请求匹配的 FlowSchema），`priority_evel` 
+  由标签 `flow_chema`（表示与请求匹配的 FlowSchema）、`priority_evel`
   （表示分配给请该求的优先级）和 `reason` 来区分。
   `reason` 标签将具有以下值之一：
-
-  * `queue-full` ，表明已经有太多请求排队，
-  * `concurrency-limit` ，表示将 PriorityLevelConfiguration 配置为 `Reject` 而不是 `Queue` ，或者
-  * `time-out`, 表示在其排队时间超期的请求仍在队列中。
+  <!--
+  * `queue-full`, indicating that too many requests were already
+    queued,
+  * `concurrency-limit`, indicating that the
+    PriorityLevelConfiguration is configured to reject rather than
+    queue excess requests, or
+  * `time-out`, indicating that the request was still in the queue
+    when its queuing time limit expired.
+  -->
+  * `queue-full`，表明已经有太多请求排队，
+  * `concurrency-limit`，表示将 PriorityLevelConfiguration 配置为
+    `Reject` 而不是 `Queue`，或者
+  * `time-out`，表示在其排队时间超期的请求仍在队列中。
 
 <!--
 * `apiserver_flowcontrol_dispatched_requests_total` is a counter
@@ -681,12 +833,17 @@ poorly-behaved workloads that may be harming system health.
   requests, broken down by the labels `phase` (which takes on the
   values `waiting` and `executing`) and `request_kind` (which takes on
   the values `mutating` and `readOnly`).  The observations are made
-  periodically at a high rate.
+  periodically at a high rate.  Each observed value is a ratio,
+  between 0 and 1, of a number of requests divided by the
+  corresponding limit on the number of requests (queue length limit
+  for waiting and concurrency limit for executing).
 -->
 * `apiserver_flowcontrol_read_vs_write_request_count_samples` 是一个直方图向量，
   记录当前请求数量的观察值，
   由标签 `phase`（取值为 `waiting` 和 `executing`）和 `request_kind`
   （取值 `mutating` 和 `readOnly`）拆分。定期以高速率观察该值。
+  每个观察到的值是一个介于 0 和 1 之间的比值，计算方式为请求数除以该请求数的对应限制
+  （等待的队列长度限制和执行所用的并发限制）。
 
 <!--
 * `apiserver_flowcontrol_read_vs_write_request_count_watermarks` is a
@@ -725,6 +882,14 @@ poorly-behaved workloads that may be harming system health.
   记录包含执行中（不在队列中等待）请求的瞬时数量，
   由标签 `priority_level` 和 `flow_schema` 进一步区分。
 
+<!-- 
+* `apiserver_flowcontrol_request_concurrency_in_use` is a gauge vector
+  holding the instantaneous number of occupied seats, broken down by
+  the labels `priority_level` and `flow_schema`.
+-->
+* `apiserver_flowcontrol_request_concurrency_in_use` 是一个规范向量，
+  包含占用座位的瞬时数量，由标签 `priority_level` 和 `flow_schema` 进一步区分。
+
 <!--
 * `apiserver_flowcontrol_priority_level_request_count_samples` is a
   histogram vector of observations of the then-current number of
@@ -770,6 +935,8 @@ poorly-behaved workloads that may be harming system health.
   记录请求队列的长度，由标签 `priority_level` 和 `flow_schema` 进一步区分。
   每个排队中的请求都会为其直方图贡献一个样本，并在添加请求后立即上报队列的长度。
   请注意，这样产生的统计数据与无偏调查不同。
+
+  {{< note >}}
   <!--
   An outlier value in a histogram here means it is likely that a single flow
   (i.e., requests by one user or for one namespace, depending on
@@ -778,11 +945,10 @@ poorly-behaved workloads that may be harming system health.
   level are longer than those for other priority levels, it may be appropriate
   to increase that PriorityLevelConfiguration's concurrency shares.
   -->
-  {{< note >}}
-  直方图中的离群值在这里表示单个流（即，一个用户或一个名称空间的请求，
+  直方图中的离群值在这里表示单个流（即，一个用户或一个名字空间的请求，
   具体取决于配置）正在疯狂地向 API 服务器发请求，并受到限制。
   相反，如果一个优先级的直方图显示该优先级的所有队列都比其他优先级的队列长，
-  则增加 PriorityLevelConfigurations 的并发份额是比较合适的。
+  则增加 PriorityLevelConfiguration 的并发份额是比较合适的。
   {{< /note >}}
 
 <!--
@@ -792,7 +958,7 @@ poorly-behaved workloads that may be harming system health.
   shares), broken down by the label `priority_level`.
 -->
 * `apiserver_flowcontrol_request_concurrency_limit` 是一个表向量，
-  记录并发限制的计算值（基于 API 服务器的总并发限制和 PriorityLevelConfigurations
+  记录并发限制的计算值（基于 API 服务器的总并发限制和 PriorityLevelConfiguration
   的并发份额），并按标签 `priority_level` 进一步区分。
 
 <!--
@@ -808,16 +974,16 @@ poorly-behaved workloads that may be harming system health.
   由标签 `flow_schema`（表示与请求匹配的 FlowSchema ），
   `priority_level`（表示分配该请求的优先级）
   和 `execute`（表示请求是否开始执行）进一步区分。
+
+  {{< note >}}
   <!--
   Since each FlowSchema always assigns requests to a single
   PriorityLevelConfiguration, you can add the histograms for all the
   FlowSchemas for one priority level to get the effective histogram for
   requests assigned to that priority level.
   -->
-  {{< note >}}
-  由于每个 FlowSchema 总会给请求分配 PriorityLevelConfigurations，
-  因此你可以为一个优先级添加所有 FlowSchema 的直方图，以获取分配给
-  该优先级的请求的有效直方图。
+  由于每个 FlowSchema 总会给请求分配 PriorityLevelConfiguration，
+  因此你可以为一个优先级添加所有 FlowSchema 的直方图，以获取分配给该优先级的请求的有效直方图。
   {{< /note >}}
 
 <!--
@@ -835,16 +1001,16 @@ poorly-behaved workloads that may be harming system health.
 <!--
 ### Debug endpoints
 
-When you enable the API Priority and Fairness feature,
-the kube-apiserver serves the following additional paths at its HTTP[S] ports.
+When you enable the API Priority and Fairness feature, the `kube-apiserver`
+serves the following additional paths at its HTTP[S] ports.
 -->
 ### 调试端点    {#Debug-endpoints}
 
 启用 APF 特性后， kube-apiserver 会在其 HTTP/HTTPS 端口提供以下路径：
 
 <!--
-- `/debug/api_priority_and_fairness/dump_priority_levels` - a listing of all the priority levels and the current state of each.
-You can fetch like this:
+- `/debug/api_priority_and_fairness/dump_priority_levels` - a listing of
+  all the priority levels and the current state of each.  You can fetch like this:
 -->
 - `/debug/api_priority_and_fairness/dump_priority_levels` ——
   所有优先级及其当前状态的列表。你可以这样获取：
@@ -853,10 +1019,12 @@ You can fetch like this:
   kubectl get --raw /debug/api_priority_and_fairness/dump_priority_levels
   ```
 
-  <!-- The output is similar to this: -->
+  <!--
+  The output is similar to this:
+  -->
   输出类似于：
 
-  ```
+  ```none
   PriorityLevelName, ActiveQueues, IsIdle, IsQuiescing, WaitingRequests, ExecutingRequests,
   workload-low,      0,            true,   false,       0,               0,
   global-default,    0,            true,   false,       0,               0,
@@ -868,8 +1036,8 @@ You can fetch like this:
   ```
 
 <!--
-- `/debug/api_priority_and_fairness/dump_queues` - a listing of all the queues and their current state.
-You can fetch like this:
+- `/debug/api_priority_and_fairness/dump_queues` - a listing of all the
+  queues and their current state.  You can fetch like this:
 -->
 - `/debug/api_priority_and_fairness/dump_queues` —— 所有队列及其当前状态的列表。
   你可以这样获取：
@@ -878,10 +1046,12 @@ You can fetch like this:
   kubectl get --raw /debug/api_priority_and_fairness/dump_queues
   ```
 
-  <!-- The output is similar to this: -->
+  <!--
+  The output is similar to this:
+  -->
   输出类似于：
 
-  ```
+  ```none
   PriorityLevelName, Index,  PendingRequests, ExecutingRequests, VirtualStart,
   workload-high,     0,      0,               0,                 0.0000,
   workload-high,     1,      0,               0,                 0.0000,
@@ -892,41 +1062,48 @@ You can fetch like this:
   ```
 
 <!--
-- `/debug/api_priority_and_fairness/dump_requests` - a listing of all the requests that are currently waiting in a queue.
-You can fetch like this:
+- `/debug/api_priority_and_fairness/dump_requests` - a listing of all the requests
+  that are currently waiting in a queue.  You can fetch like this:
 -->
-- `/debug/api_priority_and_fairness/dump_requests` ——当前正在队列中等待的所有请求的列表。
+- `/debug/api_priority_and_fairness/dump_requests` —— 当前正在队列中等待的所有请求的列表。
   你可以这样获取：
 
   ```shell
   kubectl get --raw /debug/api_priority_and_fairness/dump_requests
   ```
 
-  <!-- The output is similar to this: -->
+  <!--
+  The output is similar to this:
+  -->
   输出类似于：
 
-  ```
+  ```none
   PriorityLevelName, FlowSchemaName, QueueIndex, RequestIndexInQueue, FlowDistingsher,       ArriveTime,
   exempt,            <none>,         <none>,     <none>,              <none>,                <none>,
   system,            system-nodes,   12,         0,                   system:node:127.0.0.1, 2020-07-23T15:26:57.179170694Z,
   ```
 
   <!--
-  In addition to the queued requests,
-  the output includes one phantom line for each priority level that is exempt from limitation.
+  In addition to the queued requests, the output includes one phantom line
+  for each priority level that is exempt from limitation.
   -->
   针对每个优先级别，输出中还包含一条虚拟记录，对应豁免限制。
 
-  <!-- You can get a more detailed listing with a command like this: -->
+  <!--
+  You can get a more detailed listing with a command like this:
+  -->
   你可以使用以下命令获得更详细的清单：
 
   ```shell
   kubectl get --raw '/debug/api_priority_and_fairness/dump_requests?includeRequestDetails=1'
   ```
 
-  <!-- The output is similar to this: -->
+  <!--
+  The output is similar to this:
+  -->
   输出类似于：
-  ```
+
+  ```none
   PriorityLevelName, FlowSchemaName, QueueIndex, RequestIndexInQueue, FlowDistingsher,       ArriveTime,                     UserName,              Verb,   APIPath,                                                     Namespace, Name,   APIVersion, Resource, SubResource,
   system,            system-nodes,   12,         0,                   system:node:127.0.0.1, 2020-07-23T15:31:03.583823404Z, system:node:127.0.0.1, create, /api/v1/namespaces/scaletest/configmaps,
   system,            system-nodes,   12,         1,                   system:node:127.0.0.1, 2020-07-23T15:31:03.594555947Z, system:node:127.0.0.1, create, /api/v1/namespaces/scaletest/configmaps,
@@ -935,14 +1112,14 @@ You can fetch like this:
 ## {{% heading "whatsnext" %}}
 
 <!--
-For background information on design details for API priority and fairness, see the
-[enhancement proposal](https://github.com/kubernetes/enhancements/blob/master/keps/sig-api-machinery/20190228-priority-and-fairness.md).
-You can make suggestions and feature requests via
-[SIG API Machinery](https://github.com/kubernetes/community/tree/master/sig-api-machinery)
+For background information on design details for API priority and fairness, see
+the [enhancement proposal](https://github.com/kubernetes/enhancements/tree/master/keps/sig-api-machinery/1040-priority-and-fairness).
+You can make suggestions and feature requests via [SIG API Machinery](https://github.com/kubernetes/community/tree/master/sig-api-machinery) 
 or the feature's [slack channel](https://kubernetes.slack.com/messages/api-priority-and-fairness).
 -->
-有关API优先级和公平性的设计细节的背景信息，
-请参阅[增强建议](https://github.com/kubernetes/enhancements/blob/master/keps/sig-api-machinery/20190228-priority-and-fairness.md)。
-你可以通过 [SIG APIMachinery](https://github.com/kubernetes/community/tree/master/sig-api-machinery/)
+有关 API 优先级和公平性的设计细节的背景信息，
+请参阅[增强提案](https://github.com/kubernetes/enhancements/tree/master/keps/sig-api-machinery/1040-priority-and-fairness)。
+你可以通过 [SIG API Machinery](https://github.com/kubernetes/community/tree/master/sig-api-machinery/)
 或特性的 [Slack 频道](https://kubernetes.slack.com/messages/api-priority-and-fairness/)
 提出建议和特性请求。
+
diff --git a/content/zh/docs/concepts/cluster-administration/logging.md b/content/zh-cn/docs/concepts/cluster-administration/logging.md
similarity index 86%
rename from content/zh/docs/concepts/cluster-administration/logging.md
rename to content/zh-cn/docs/concepts/cluster-administration/logging.md
index 5844a91901..d56eb04b0a 100644
--- a/content/zh/docs/concepts/cluster-administration/logging.md
+++ b/content/zh-cn/docs/concepts/cluster-administration/logging.md
@@ -22,13 +22,13 @@ Application logs can help you understand what is happening inside your applicati
 
 <!--
 However, the native functionality provided by a container engine or runtime is usually not enough for a complete logging solution.
-For example, you may want access your application's logs if a container crashes; a pod gets evicted; or a node dies,
+For example, you may want to access your application's logs if a container crashes; a pod gets evicted; or a node dies,
 In a cluster, logs should have a separate storage and lifecycle independent of nodes, pods, or containers. This concept is called _cluster-level-logging_.
 -->
 但是，由容器引擎或运行时提供的原生功能通常不足以构成完整的日志记录方案。
 例如，如果发生容器崩溃、Pod 被逐出或节点宕机等情况，你可能想访问应用日志。
 在集群中，日志应该具有独立的存储和生命周期，与节点、Pod 或容器的生命周期相独立。
-这个概念叫 _集群级的日志_ 。
+这个概念叫 **集群级的日志**。
 
 <!-- body -->
 
@@ -94,10 +94,21 @@ The output is:
 ```
 
 <!--
-You can use `kubectl logs --previous` to retrieve logs from a previous instantiation of a container..If your pod has multiple containers, specify which container's logs you want to access by appending a container name to the command. See the [`kubectl logs` documentation](/docs/reference/generated/kubectl/kubectl-commands#logs) for more details.
+You can use `kubectl logs --previous` to retrieve logs from a previous instantiation of a container.
+If your pod has multiple containers, specify which container's logs you want to access by
+appending a container name to the command, with a `-c` flag, like so:
 -->
 你可以使用命令 `kubectl logs --previous` 检索之前容器实例的日志。
-如果 Pod 中有多个容器，你应该为该命令附加容器名以访问对应容器的日志。
+如果 Pod 有多个容器，你应该为该命令附加容器名以访问对应容器的日志，
+使用 `-c` 标志来指定要访问的容器的日志，如下所示：
+
+```console
+kubectl logs counter -c count
+```
+
+<!--
+See the [`kubectl logs` documentation](/docs/reference/generated/kubectl/kubectl-commands#logs) for more details.
+-->
 详见 [`kubectl logs` 文档](/docs/reference/generated/kubectl/kubectl-commands#logs)。
 
 <!--
@@ -151,21 +162,25 @@ Kubernetes 并不负责轮转日志，而是通过部署工具建立一个解决
 <!--
 As an example, you can find detailed information about how `kube-up.sh` sets
 up logging for COS image on GCP in the corresponding
-[`configure-helper` script](https://github.com/kubernetes/kubernetes/blob/{{< param "githubbranch" >}}/cluster/gce/gci/configure-helper.sh).
+[`configure-helper` script](https://github.com/kubernetes/kubernetes/blob/master/cluster/gce/gci/configure-helper.sh).
 -->
 例如，你可以找到关于 `kube-up.sh` 为 GCP 环境的 COS 镜像设置日志的详细信息，
 脚本为
-[`configure-helper` 脚本](https://github.com/kubernetes/kubernetes/blob/{{< param "githubbranch" >}}/cluster/gce/gci/configure-helper.sh)。
+[`configure-helper` 脚本](https://github.com/kubernetes/kubernetes/blob/master/cluster/gce/gci/configure-helper.sh)。
 
 <!--
 When using a **CRI container runtime**, the kubelet is responsible for rotating the logs and managing the logging directory structure. The kubelet
-sends this information to the CRI container runtime and the runtime writes the container logs to the given location. The two kubelet flags `container-log-max-size` and `container-log-max-files` can be used to configure the maximum size for each log file and the maximum number of files allowed for each container respectively.
+sends this information to the CRI container runtime and the runtime writes the container logs to the given location. 
+The two kubelet parameters [`containerLogMaxSize` and `containerLogMaxFiles`](/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
+in [kubelet config file](/docs/tasks/administer-cluster/kubelet-config-file/)
+can be used to configure the maximum size for each log file and the maximum number of files allowed for each container respectively.
 -->
-当使用某 *CRI 容器运行时* 时，kubelet 要负责对日志进行轮换，并
-管理日志目录的结构。kubelet 将此信息发送给 CRI 容器运行时，后者
-将容器日志写入到指定的位置。kubelet 标志 `container-log-max-size`
-和 `container-log-max-files` 可以用来配置每个日志文件的最大长度
-和每个容器可以生成的日志文件个数上限。
+当使用某 **CRI 容器运行时** 时，kubelet 要负责对日志进行轮换，并管理日志目录的结构。
+kubelet 将此信息发送给 CRI 容器运行时，后者将容器日志写入到指定的位置。
+在 [kubelet 配置文件](/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/)
+中的两个 kubelet 参数
+[`containerLogMaxSize` 和 `containerLogMaxFiles`](/zh-cn/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
+可以用来配置每个日志文件的最大长度和每个容器可以生成的日志文件个数上限。
 
 <!--
 When you run [`kubectl logs`](/docs/reference/generated/kubectl/kubectl-commands#logs) as in
@@ -183,11 +198,10 @@ the rotation and there are two files: one file that is 10MB in size and a second
 `kubectl logs` returns the latest log file which in this example is an empty response.
 -->
 {{< note >}}
-如果有外部系统执行日志轮转或者使用了 CRI 容器运行时，那么 `kubectl logs` 
+如果有外部系统执行日志轮转或者使用了 CRI 容器运行时，那么 `kubectl logs`
 仅可查询到最新的日志内容。
 比如，对于一个 10MB 大小的文件，通过 `logrotate` 执行轮转后生成两个文件，
-一个 10MB 大小，一个为空，`kubectl logs` 返回最新的日志文件，而该日志文件
-在这个例子中为空。
+一个 10MB 大小，一个为空，`kubectl logs` 返回最新的日志文件，而该日志文件在这个例子中为空。
 {{< /note >}}
 
 <!--
@@ -216,7 +230,7 @@ They use the [`klog`](https://github.com/kubernetes/klog)
 logging library. You can find the conventions for logging severity for those
 components in the [development docs on logging](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-instrumentation/logging.md).
 -->
-在使用 systemd 机制的服务器上，kubelet 和容器容器运行时将日志写入到 journald 中。
+在使用 systemd 机制的服务器上，kubelet 和容器运行时将日志写入到 journald 中。
 如果没有 systemd，它们将日志写入到 `/var/log` 目录下的 `.log` 文件中。
 容器中的系统组件通常将日志写到 `/var/log` 目录，绕过了默认的日志机制。
 他们使用 [klog](https://github.com/kubernetes/klog) 日志库。
@@ -263,7 +277,7 @@ While Kubernetes does not provide a native solution for cluster-level logging, t
 <!--
 You can implement cluster-level logging by including a _node-level logging agent_ on each node. The logging agent is a dedicated tool that exposes logs or pushes logs to a backend. Commonly, the logging agent is a container that has access to a directory with log files from all of the application containers on that node.
 -->
-你可以通过在每个节点上使用 _节点级的日志记录代理_ 来实现群集级日志记录。
+你可以通过在每个节点上使用 **节点级的日志记录代理** 来实现集群级日志记录。
 日志记录代理是一种用于暴露日志或将日志推送到后端的专用工具。
 通常，日志记录代理程序是一个容器，它可以访问包含该节点上所有应用程序容器的日志文件的目录。
 
@@ -276,11 +290,10 @@ Node-level logging creates only one agent per node, and doesn't require any chan
 节点级日志在每个节点上仅创建一个代理，不需要对节点上的应用做修改。
 
 <!--
-Containers write stdout and stderr, but with no agreed format. A node-level agent collects these logs and forwards them for aggregation.
+Containers write to stdout and stderr, but with no agreed format. A node-level agent collects these logs and forwards them for aggregation.
 -->
 容器向标准输出和标准错误输出写出数据，但在格式上并不统一。
-节点级代理
-收集这些日志并将其进行转发以完成汇总。
+节点级代理收集这些日志并将其进行转发以完成汇总。
 
 <!--
 ### Using a sidecar container with the logging agent {#sidecar-container-with-logging-agent}
@@ -327,7 +340,7 @@ like `kubectl logs`.
 -->
 这种方法允许你将日志流从应用程序的不同部分分离开，其中一些可能缺乏对写入
 `stdout` 或 `stderr` 的支持。重定向日志背后的逻辑是最小的，因此它的开销几乎可以忽略不计。
-另外，因为 `stdout`、`stderr` 由 kubelet 处理，你可以使用内置的工具 `kubectl logs`。
+另外，因为 `stdout` 和 `stderr` 由 kubelet 处理，所以你可以使用内置的工具 `kubectl logs`。
 
 <!--
 For example, a pod runs a single container, and the container
@@ -335,7 +348,7 @@ writes to two different log files, using two different formats. Here's a
 configuration file for the Pod:
 -->
 例如，某 Pod 中运行一个容器，该容器向两个文件写不同格式的日志。
-下面是这个 pod 的配置文件:
+下面是这个 Pod 的配置文件:
 
 {{< codenew file="admin/logging/two-files-counter-pod.yaml" >}}
 
@@ -346,9 +359,9 @@ the container. Instead, you can create two sidecar containers. Each sidecar
 container could tail a particular log file from a shared volume and then redirect
 the logs to its own `stdout` stream.
 -->
-不建议在同一个日志流中写入不同格式的日志条目，即使你成功地将其重定向到容器的
-`stdout` 流。相反，你可以创建两个边车容器。每个边车容器可以从共享卷
-跟踪特定的日志文件，并将文件内容重定向到各自的 `stdout` 流。
+不建议在同一个日志流中写入不同格式的日志条目，即使你成功地将其重定向到容器的 `stdout` 流。
+相反，你可以创建两个边车容器。每个边车容器可以从共享卷跟踪特定的日志文件，
+并将文件内容重定向到各自的 `stdout` 流。
 
 <!--
 Here's a configuration file for a pod that has two sidecar containers:
@@ -424,8 +437,7 @@ and retention policies to the kubelet.
 -->
 应用本身如果不具备轮转日志文件的功能，可以通过边车容器实现。
 该方式的一个例子是运行一个小的、定期轮转日志的容器。
-然而，还是推荐直接使用 `stdout` 和 `stderr`，将日志的轮转和保留策略
-交给 kubelet。
+然而，还是推荐直接使用 `stdout` 和 `stderr`，将日志的轮转和保留策略交给 kubelet。
 
 <!--
 #### Sidecar container with a logging agent
@@ -441,8 +453,8 @@ If the node-level logging agent is not flexible enough for your situation, you
 can create a sidecar container with a separate logging agent that you have
 configured specifically to run with your application.
 -->
-如果节点级日志记录代理程序对于你的场景来说不够灵活，你可以创建一个
-带有单独日志记录代理的边车容器，将代理程序专门配置为与你的应用程序一起运行。
+如果节点级日志记录代理程序对于你的场景来说不够灵活，
+你可以创建一个带有单独日志记录代理的边车容器，将代理程序专门配置为与你的应用程序一起运行。
 
 {{< note >}}
 <!--
@@ -461,7 +473,7 @@ a [ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/) to c
 -->
 下面是两个配置文件，可以用来实现一个带日志代理的边车容器。
 第一个文件包含用来配置 fluentd 的
-[ConfigMap](/zh/docs/tasks/configure-pod-container/configure-pod-configmap/)。
+[ConfigMap](/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap/)。
 
 {{< codenew file="admin/logging/fluentd-sidecar-config.yaml" >}}
 
@@ -484,8 +496,7 @@ flutend 通过 Pod 的挂载卷获取它的配置数据。
 <!--
 In the sample configurations, you can replace fluentd with any logging agent, reading from any source inside an application container.
 -->
-在示例配置中，你可以将 fluentd 替换为任何日志代理，从应用容器内
-的任何来源读取数据。
+在示例配置中，你可以将 fluentd 替换为任何日志代理，从应用容器内的任何来源读取数据。
 
 <!--
 ### Exposing logs directly from the application
@@ -499,6 +510,5 @@ In the sample configurations, you can replace fluentd with any logging agent, re
 <!--
 Cluster-logging that exposes or pushes logs directly from every application is outside the scope of Kubernetes.
 -->
-从各个应用中直接暴露和推送日志数据的集群日志机制
-已超出 Kubernetes 的范围。
+从各个应用中直接暴露和推送日志数据的集群日志机制已超出 Kubernetes 的范围。
 
diff --git a/content/zh/docs/concepts/cluster-administration/manage-deployment.md b/content/zh-cn/docs/concepts/cluster-administration/manage-deployment.md
similarity index 95%
rename from content/zh/docs/concepts/cluster-administration/manage-deployment.md
rename to content/zh-cn/docs/concepts/cluster-administration/manage-deployment.md
index eb991447b5..38bda5a21f 100644
--- a/content/zh/docs/concepts/cluster-administration/manage-deployment.md
+++ b/content/zh-cn/docs/concepts/cluster-administration/manage-deployment.md
@@ -12,8 +12,8 @@ You've deployed your application and exposed it via a service. Now what? Kuberne
 你已经部署了应用并通过服务暴露它。然后呢？
 Kubernetes 提供了一些工具来帮助管理你的应用部署，包括扩缩容和更新。
 我们将更深入讨论的特性包括
-[配置文件](/zh/docs/concepts/configuration/overview/)和
-[标签](/zh/docs/concepts/overview/working-with-objects/labels/)。
+[配置文件](/zh-cn/docs/concepts/configuration/overview/)和
+[标签](/zh-cn/docs/concepts/overview/working-with-objects/labels/)。
 
 <!-- body -->
 
@@ -85,7 +85,7 @@ A URL can also be specified as a configuration source, which is handy for deploy
 还可以使用 URL 作为配置源，便于直接使用已经提交到 Github 上的配置文件进行部署：
 
 ```shell
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/website/master/content/zh/examples/application/nginx/nginx-deployment.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/website/main/content/zh-cn/examples/application/nginx/nginx-deployment.yaml
 ```
 
 ```
@@ -236,10 +236,10 @@ persistentvolumeclaim/my-pvc created
 ```
 
 <!--
-If you're interested in learning more about `kubectl`, go ahead and read [kubectl Overview](/docs/reference/kubectl/overview/).
- -->
+If you're interested in learning more about `kubectl`, go ahead and read [Command line tool (kubectl)](/docs/reference/kubectl/).
+-->
 如果你有兴趣进一步学习关于 `kubectl` 的内容，请阅读
-[kubectl 概述](/zh/docs/reference/kubectl/overview/)。
+[命令行工具（kubectl）](/zh-cn/docs/reference/kubectl/)。
 
 <!--
 ## Using labels effectively
@@ -252,10 +252,10 @@ The examples we've used so far apply at most a single label to any resource. The
 在许多情况下，应使用多个标签来区分集合。
 
 <!--
-For instance, different applications would use different values for the `app` label, but a multi-tier application, such as the [guestbook example](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/guestbook/), would additionally need to distinguish each tier. The frontend could carry the following labels:
+For instance, different applications would use different values for the `app` label, but a multi-tier application, such as the [guestbook example](https://github.com/kubernetes/examples/tree/master/guestbook/), would additionally need to distinguish each tier. The frontend could carry the following labels:
 -->
 例如，不同的应用可能会为 `app` 标签设置不同的值。
-但是，类似 [guestbook 示例](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/guestbook/)
+但是，类似 [guestbook 示例](https://github.com/kubernetes/examples/tree/master/guestbook/)
 这样的多层应用，还需要区分每一层。前端可以带以下标签：
 
 ```yaml
@@ -445,7 +445,7 @@ For more information, please see [labels](/docs/concepts/overview/working-with-o
 （用参数 `-L` 或者 `--label-columns` 标明）。
 
 想要了解更多信息，请参考
-[标签](/zh/docs/concepts/overview/working-with-objects/labels/) 和
+[标签](/zh-cn/docs/concepts/overview/working-with-objects/labels/) 和
 [`kubectl label`](/docs/reference/generated/kubectl/kubectl-commands/#label)
 命令文档。
 
@@ -476,7 +476,7 @@ metadata:
 For more information, please see [annotations](/docs/concepts/overview/working-with-objects/annotations/) and [kubectl annotate](/docs/reference/generated/kubectl/kubectl-commands/#annotate) document.
  -->
 想要了解更多信息，请参考
-[注解](/zh/docs/concepts/overview/working-with-objects/annotations/)和
+[注解](/zh-cn/docs/concepts/overview/working-with-objects/annotations/)和
 [`kubectl annotate`](/docs/reference/generated/kubectl/kubectl-commands/#annotate)
 命令文档。
 
@@ -535,7 +535,7 @@ For more information, please see [kubectl scale](/docs/reference/generated/kubec
 想要了解更多信息，请参考
 [kubectl scale](/docs/reference/generated/kubectl/kubectl-commands/#scale)命令文档、
 [kubectl autoscale](/docs/reference/generated/kubectl/kubectl-commands/#autoscale) 命令文档和
-[水平 Pod 自动伸缩](/zh/docs/tasks/run-application/horizontal-pod-autoscale/) 文档。
+[水平 Pod 自动伸缩](/zh-cn/docs/tasks/run-application/horizontal-pod-autoscale/) 文档。
 
 <!--
 ## In-place updates of resources
@@ -648,7 +648,7 @@ and
  -->
 你可以使用 `kubectl patch` 来更新 API 对象。此命令支持 JSON patch、
 JSON merge patch、以及 strategic merge patch。 请参考
-[使用 kubectl patch 更新 API 对象](/zh/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/)
+[使用 kubectl patch 更新 API 对象](/zh-cn/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/)
 和
 [kubectl patch](/docs/reference/generated/kubectl/kubectl-commands/#patch).
 
@@ -716,14 +716,13 @@ That's it! The Deployment will declaratively update the deployed nginx applicati
  -->
 没错，就是这样！Deployment 将在后台逐步更新已经部署的 nginx 应用。
 它确保在更新过程中，只有一定数量的旧副本被开闭，并且只有一定基于所需 Pod 数量的新副本被创建。
-想要了解更多细节，请参考 [Deployment](/zh/docs/concepts/workloads/controllers/deployment/)。
+想要了解更多细节，请参考 [Deployment](/zh-cn/docs/concepts/workloads/controllers/deployment/)。
 
 ## {{% heading "whatsnext" %}}
 
 <!--
-- [Learn about how to use `kubectl` for application introspection and debugging.](/docs/tasks/debug-application-cluster/debug-application-introspection/)
+- [Learn about how to use `kubectl` for application introspection and debugging.](/docs/tasks/debug/debug-application/debug-running-pod/)
 - [Configuration Best Practices and Tips](/docs/concepts/configuration/overview/)
  -->
-- 学习[如何使用 `kubectl` 观察和调试应用](/zh/docs/tasks/debug-application-cluster/debug-application-introspection/)
-- 阅读[配置最佳实践和技巧](/zh/docs/concepts/configuration/overview/)
-
+- 学习[如何使用 `kubectl` 观察和调试应用](/zh-cn/docs/tasks/debug/debug-application/debug-running-pod/)
+- 阅读[配置最佳实践和技巧](/zh-cn/docs/concepts/configuration/overview/)
diff --git a/content/zh/docs/concepts/cluster-administration/networking.md b/content/zh-cn/docs/concepts/cluster-administration/networking.md
similarity index 53%
rename from content/zh/docs/concepts/cluster-administration/networking.md
rename to content/zh-cn/docs/concepts/cluster-administration/networking.md
index 2a44b99e44..9c8fcae681 100644
--- a/content/zh/docs/concepts/cluster-administration/networking.md
+++ b/content/zh-cn/docs/concepts/cluster-administration/networking.md
@@ -1,10 +1,15 @@
 ---
-reviewers:
-- thockin
 title: 集群网络系统
 content_type: concept
 weight: 50
 ---
+<!--
+reviewers:
+- thockin
+title: Cluster Networking
+content_type: concept
+weight: 50
+-->
 
 <!-- overview -->
 <!--
@@ -23,9 +28,9 @@ problems to address:
 
 1. 高度耦合的容器间通信：这个已经被 {{< glossary_tooltip text="Pods" term_id="pod" >}}
    和 `localhost` 通信解决了。
-2. Pod 间通信：这个是本文档的重点要讲述的。
-3. Pod 和服务间通信：这个已经在[服务](/zh/docs/concepts/services-networking/service/)里讲述过了。
-4. 外部和服务间通信：这也已经在[服务](/zh/docs/concepts/services-networking/service/)讲述过了。
+2. Pod 间通信：本文档讲述重点。
+3. Pod 和服务间通信：由[服务](/zh-cn/docs/concepts/services-networking/service/)负责。
+4. 外部和服务间通信：也由[服务](/zh-cn/docs/concepts/services-networking/service/)负责。
 
 <!-- body -->
 
@@ -40,6 +45,8 @@ application has to take ports as flags, the API servers have to know how to
 insert dynamic port numbers into configuration blocks, services have to know
 how to find each other, etc.  Rather than deal with this, Kubernetes takes a
 different approach.
+
+To learn about the Kubernetes networking model, see [here](/docs/concepts/services-networking/).
 -->
 Kubernetes 的宗旨就是在应用之间共享机器。
 通常来说，共享机器需要两个应用之间不能使用相同的端口，但是在多个应用开发者之间
@@ -49,80 +56,7 @@ Kubernetes 的宗旨就是在应用之间共享机器。
 而 API 服务器还需要知道如何将动态端口数值插入到配置模块中，服务也需要知道如何找到对方等等。
 与其去解决这些问题，Kubernetes 选择了其他不同的方法。
 
-<!--
-## The Kubernetes network model
-
-Every `Pod` gets its own IP address. This means you do not need to explicitly
-create links between `Pods` and you almost never need to deal with mapping
-container ports to host ports.  This creates a clean, backwards-compatible
-model where `Pods` can be treated much like VMs or physical hosts from the
-perspectives of port allocation, naming, service discovery, load balancing,
-application configuration, and migration.
-
-Kubernetes imposes the following fundamental requirements on any networking
-implementation (barring any intentional network segmentation policies):
-
-   * pods on a node can communicate with all pods on all nodes without NAT
-   * agents on a node (e.g. system daemons, kubelet) can communicate with all
-     pods on that node
-
-Note: For those platforms that support `Pods` running in the host network (e.g.
-Linux):
-
-   * pods in the host network of a node can communicate with all pods on all
-     nodes without NAT
--->
-## Kubernetes 网络模型   {#the-kubernetes-network-model}
-
-每一个 `Pod` 都有它自己的IP地址，这就意味着你不需要显式地在每个 `Pod` 之间创建链接，
-你几乎不需要处理容器端口到主机端口之间的映射。
-这将创建一个干净的、向后兼容的模型，在这个模型里，从端口分配、命名、服务发现、
-负载均衡、应用配置和迁移的角度来看，`Pod` 可以被视作虚拟机或者物理主机。
-
-Kubernetes 对所有网络设施的实施，都需要满足以下的基本要求（除非有设置一些特定的网络分段策略）：
-
-* 节点上的 Pod 可以不通过 NAT 和其他任何节点上的 Pod 通信
-* 节点上的代理（比如：系统守护进程、kubelet）可以和节点上的所有Pod通信
-
-备注：仅针对那些支持 `Pods` 在主机网络中运行的平台（比如：Linux）：
-
-* 那些运行在节点的主机网络里的 Pod 可以不通过 NAT 和所有节点上的 Pod 通信
-
-<!--
-This model is not only less complex overall, but it is principally compatible
-with the desire for Kubernetes to enable low-friction porting of apps from VMs
-to containers.  If your job previously ran in a VM, your VM had an IP and could
-talk to other VMs in your project.  This is the same basic model.
-
-Kubernetes IP addresses exist at the `Pod` scope - containers within a `Pod`
-share their network namespaces - including their IP address and MAC address.
-This means that containers within a `Pod` can all reach each other's ports on
-`localhost`. This also means that containers within a `Pod` must coordinate port
-usage, but this is no different from processes in a VM.  This is called the
--->
-这个模型不仅不复杂，而且还和 Kubernetes 的实现廉价的从虚拟机向容器迁移的初衷相兼容，
-如果你的工作开始是在虚拟机中运行的，你的虚拟机有一个 IP ，
-这样就可以和其他的虚拟机进行通信，这是基本相同的模型。
-
-Kubernetes 的 IP 地址存在于 `Pod` 范围内 - 容器共享它们的网络命名空间 - 包括它们的 IP 地址和 MAC 地址。
-这就意味着 `Pod` 内的容器都可以通过 `localhost` 到达各个端口。
-这也意味着 `Pod` 内的容器都需要相互协调端口的使用，但是这和虚拟机中的进程似乎没有什么不同，
-这也被称为“一个 Pod 一个 IP”模型。
-
-<!--
-How this is implemented is a detail of the particular container runtime in use.
-
-It is possible to request ports on the `Node` itself which forward to your `Pod`
-(called host ports), but this is a very niche operation. How that forwarding is
-implemented is also a detail of the container runtime. The `Pod` itself is
-blind to the existence or non-existence of host ports.
--->
-如何实现这一点是正在使用的容器运行时的特定信息。
-
-也可以在 `node` 本身通过端口去请求你的 `Pod`（称之为主机端口），
-但这是一个很特殊的操作。转发方式如何实现也是容器运行时的细节。
-`Pod` 自己并不知道这些主机端口是否存在。
-
+要了解 Kubernetes 网络模型，请参阅[此处](/zh-cn/docs/concepts/services-networking/)。
 <!--
 ## How to implement the Kubernetes networking model
 
@@ -133,7 +67,7 @@ as an introduction to various technologies and serves as a jumping-off point.
 The following networking options are sorted alphabetically - the order does not
 imply any preferential status.
 -->
-## 如何实现 Kubernetes 的网络模型
+## 如何实现 Kubernetes 的网络模型    {#how-to-implement-the-kubernetes-networking-model}
 
 有很多种方式可以实现这种网络模型，本文档并不是对各种实现技术的详细研究，
 但是希望可以作为对各种技术的详细介绍，并且成为你研究的起点。
@@ -167,39 +101,6 @@ Open vSwitch 是一个高性能可编程的虚拟交换机，支持 Linux 和 Wi
 Open vSwitch 使 Antrea 能够以高性能和高效的方式实现 Kubernetes 的网络策略。
 借助 Open vSwitch 可编程的特性，Antrea 能够在 Open vSwitch 之上实现广泛的联网、安全功能和服务。
 
-<!--
-### AOS from Apstra
-
-[AOS](https://www.apstra.com/products/aos/) is an Intent-Based Networking system that creates and manages complex datacenter environments from a simple integrated platform.  AOS leverages a highly scalable distributed design to eliminate network outages while minimizing costs.
-
-The AOS Reference Design currently supports Layer-3 connected hosts that eliminate legacy Layer-2 switching problems.  These Layer-3 hosts can be Linux servers (Debian, Ubuntu, CentOS) that create BGP neighbor relationships directly with the top of rack switches (TORs).  AOS automates the routing adjacencies and then provides fine grained control over the route health injections (RHI) that are common in a Kubernetes deployment.
-
-AOS has a rich set of REST API endpoints that enable Kubernetes to quickly change the network policy based on application requirements.  Further enhancements will integrate the AOS Graph model used for the network design with the workload provisioning, enabling an end to end management system for both private and public clouds.
-
-AOS supports the use of common vendor equipment from manufacturers including Cisco, Arista, Dell, Mellanox, HPE, and a large number of white-box systems and open network operating systems like Microsoft SONiC, Dell OPX, and Cumulus Linux.
-
-Details on how the AOS system works can be accessed here: https://www.apstra.com/products/how-it-works/
--->
-### Apstra 的 AOS 
-
-[AOS](https://www.apstra.com/products/aos/) 是一个基于意图的网络系统，
-可以通过一个简单的集成平台创建和管理复杂的数据中心环境。
-AOS 利用高度可扩展的分布式设计来消除网络中断，同时将成本降至最低。
-
-AOS 参考设计当前支持三层连接的主机，这些主机消除了旧的两层连接的交换问题。
-这些三层连接的主机可以是 Linux（Debian、Ubuntu、CentOS）系统，
-它们直接在机架式交换机（TOR）的顶部创建 BGP 邻居关系。
-AOS 自动执行路由邻接，然后提供对 Kubernetes 部署中常见的路由运行状况注入（RHI）的精细控制。
-
-AOS 具有一组丰富的 REST API 端点，这些端点使 Kubernetes 能够根据应用程序需求快速更改网络策略。
-进一步的增强功能将用于网络设计的 AOS Graph 模型与工作负载供应集成在一起，
-从而为私有云和公共云提供端到端管理系统。
-
-AOS 支持使用包括 Cisco、Arista、Dell、Mellanox、HPE 在内的制造商提供的通用供应商设备，
-以及大量白盒系统和开放网络操作系统，例如 Microsoft SONiC、Dell OPX 和 Cumulus Linux。
-
-想要更详细地了解 AOS 系统是如何工作的可以点击这里：https://www.apstra.com/products/how-it-works/
-
 <!--
 ### AWS VPC CNI for Kubernetes
 
@@ -209,7 +110,7 @@ Using this CNI plugin allows Kubernetes pods to have the same IP address inside
 
 Additionally, the CNI can be run alongside [Calico for network policy enforcement](https://docs.aws.amazon.com/eks/latest/userguide/calico.html). The AWS VPC CNI project is open source with [documentation on GitHub](https://github.com/aws/amazon-vpc-cni-k8s).
 -->
-### Kubernetes 的 AWS VPC CNI 
+### Kubernetes 的 AWS VPC CNI     {#aws-vpc-cni-for-kubernetes}
 
 [AWS VPC CNI](https://github.com/aws/amazon-vpc-cni-k8s) 为 Kubernetes 集群提供了集成的
 AWS 虚拟私有云（VPC）网络。该 CNI 插件提供了高吞吐量和可用性，低延迟以及最小的网络抖动。
@@ -217,7 +118,7 @@ AWS 虚拟私有云（VPC）网络。该 CNI 插件提供了高吞吐量和可
 这包括使用 VPC 流日志、VPC 路由策略和安全组进行网络流量隔离的功能。
 
 使用该 CNI 插件，可使 Kubernetes Pod 拥有与在 VPC 网络上相同的 IP 地址。
-CNI 将 AWS 弹性网络接口（ENI）分配给每个 Kubernetes 节点，并将每个 ENI 的辅助 IP 范围用于该节点上的 Pod 。
+CNI 将 AWS 弹性网络接口（ENI）分配给每个 Kubernetes 节点，并将每个 ENI 的辅助 IP 范围用于该节点上的 Pod。
 CNI 包含用于 ENI 和 IP 地址的预分配的控件，以便加快 Pod 的启动时间，并且能够支持多达 2000 个节点的大型集群。
 
 此外，CNI 可以与
@@ -225,62 +126,37 @@ CNI 包含用于 ENI 和 IP 地址的预分配的控件，以便加快 Pod 的
 AWS VPC CNI 项目是开源的，请查看 [GitHub 上的文档](https://github.com/aws/amazon-vpc-cni-k8s)。
 
 <!--
-### Azure CNI for Kubernetes 
+### Azure CNI for Kubernetes
 [Azure CNI](https://docs.microsoft.com/en-us/azure/virtual-network/container-networking-overview) is an [open source](https://github.com/Azure/azure-container-networking/blob/master/docs/cni.md) plugin that integrates Kubernetes Pods with an Azure Virtual Network (also known as VNet) providing network performance at par with VMs. Pods can connect to peered VNet and to on-premises over Express Route or site-to-site VPN and are also directly reachable from these networks. Pods can access Azure services, such as storage and SQL, that are protected by Service Endpoints or Private Link. You can use VNet security policies and routing to filter Pod traffic. The plugin assigns VNet IPs to Pods by utilizing a pool of secondary IPs pre-configured on the Network Interface of a Kubernetes node.
 
 Azure CNI is available natively in the [Azure Kubernetes Service (AKS)](https://docs.microsoft.com/en-us/azure/aks/configure-azure-cni).
 -->
-### Kubernetes 的 Azure CNI 
+### Kubernetes 的 Azure CNI     {#azure-cni-for-kubernetes}
 
 [Azure CNI](https://docs.microsoft.com/en-us/azure/virtual-network/container-networking-overview)
 是一个[开源插件](https://github.com/Azure/azure-container-networking/blob/master/docs/cni.md)，
 将 Kubernetes Pods 和 Azure 虚拟网络（也称为 VNet）集成在一起，可提供与 VM 相当的网络性能。
-Pod 可以通过 Express Route 或者 站点到站点的 VPN 来连接到对等的 VNet ，
+Pod 可以通过 Express Route 或者 站点到站点的 VPN 来连接到对等的 VNet，
 也可以从这些网络来直接访问 Pod。Pod 可以访问受服务端点或者受保护链接的 Azure 服务，比如存储和 SQL。
 你可以使用 VNet 安全策略和路由来筛选 Pod 流量。
-该插件通过利用在 Kubernetes 节点的网络接口上预分配的辅助 IP 池将 VNet 分配给 Pod 。
+该插件通过利用在 Kubernetes 节点的网络接口上预分配的辅助 IP 池将 VNet 分配给 Pod。
 
 Azure CNI 可以在
 [Azure Kubernetes Service (AKS)](https://docs.microsoft.com/en-us/azure/aks/configure-azure-cni) 中获得。
 
-<!--
-### Big Cloud Fabric from Big Switch Networks
-
-[Big Cloud Fabric](https://www.bigswitch.com/container-network-automation) is a cloud native networking architecture, designed to run Kubernetes in private cloud/on-premises environments. Using unified physical & virtual SDN, Big Cloud Fabric tackles inherent container networking problems such as load balancing, visibility, troubleshooting, security policies & container traffic monitoring.
-
-With the help of the Big Cloud Fabric's virtual pod multi-tenant architecture, container orchestration systems such as Kubernetes, RedHat OpenShift, Mesosphere DC/OS & Docker Swarm will be natively integrated alongside with VM orchestration systems such as VMware, OpenStack & Nutanix. Customers will be able to securely inter-connect any number of these clusters and enable inter-tenant communication between them if needed.
-
-BCF was recognized by Gartner as a visionary in the latest [Magic Quadrant](https://go.bigswitch.com/17GatedDocuments-MagicQuadrantforDataCenterNetworking_Reg.html). One of the BCF Kubernetes on-premises deployments (which includes Kubernetes, DC/OS & VMware running on multiple DCs across different geographic regions) is also referenced [here](https://portworx.com/architects-corner-kubernetes-satya-komala-nio/).
--->
-### Big Switch Networks 的 Big Cloud Fabric
-
-[Big Cloud Fabric](https://www.bigswitch.com/container-network-automation) 是一个基于云原生的网络架构，
-旨在在私有云或者本地环境中运行 Kubernetes。
-它使用统一的物理和虚拟 SDN，Big Cloud Fabric 解决了固有的容器网络问题，
-比如负载均衡、可见性、故障排除、安全策略和容器流量监控。
-
-在 Big Cloud Fabric 的虚拟 Pod 多租户架构的帮助下，容器编排系统
-（比如 Kubernetes、RedHat OpenShift、Mesosphere DC/OS 和 Docker Swarm）
-将与 VM 本地编排系统（比如 VMware、OpenStack 和 Nutanix）进行本地集成。
-客户将能够安全地互联任意数量的这些集群，并且在需要时启用他们之间的租户间通信。
-
-在最新的 [Magic Quadrant](https://go.bigswitch.com/17GatedDocuments-MagicQuadrantforDataCenterNetworking_Reg.html) 上，
-BCF 被 Gartner 认为是非常有远见的。
-而 BCF 的一条关于 Kubernetes 的本地部署（其中包括 Kubernetes、DC/OS 和在不同地理区域的多个
-DC 上运行的 VMware）也在[这里](https://portworx.com/architects-corner-kubernetes-satya-komala-nio/)被引用。
-
 <!--
 ### Calico
 
-[Calico](https://docs.projectcalico.org/) is an open source networking and network security solution for containers, virtual machines, and native host-based workloads. Calico supports multiple data planes including: a pure Linux eBPF dataplane, a standard Linux networking dataplane, and a Windows HNS dataplane. Calico provides a full networking stack but can also be used in conjunction with [cloud provider CNIs](https://docs.projectcalico.org/networking/determine-best-networking#calico-compatible-cni-plugins-and-cloud-provider-integrations) to provide network policy enforcement.
+[Calico](https://projectcalico.docs.tigera.io/about/about-calico/) is an open source networking and network security solution for containers, virtual machines, and native host-based workloads. Calico supports multiple data planes including: a pure Linux eBPF dataplane, a standard Linux networking dataplane, and a Windows HNS dataplane. Calico provides a full networking stack but can also be used in conjunction with [cloud provider CNIs](https://projectcalico.docs.tigera.io/networking/determine-best-networking#calico-compatible-cni-plugins-and-cloud-provider-integrations) to provide network policy enforcement.
 -->
 ### Calico
 
-[Calico](https://docs.projectcalico.org/) 是一个开源的联网及网络安全方案，
+[Calico](https://projectcalico.docs.tigera.io/about/about-calico/) 是一个开源的联网及网络安全方案，
 用于基于容器、虚拟机和本地主机的工作负载。
 Calico 支持多个数据面，包括：纯 Linux eBPF 的数据面、标准的 Linux 联网数据面
 以及 Windows HNS 数据面。Calico 在提供完整的联网堆栈的同时，还可与
-[云驱动 CNIs](https://docs.projectcalico.org/networking/determine-best-networking#calico-compatible-cni-plugins-and-cloud-provider-integrations) 联合使用，以保证网络策略实施。
+[云驱动 CNIs](https://projectcalico.docs.tigera.io/networking/determine-best-networking#calico-compatible-cni-plugins-and-cloud-provider-integrations)
+联合使用，以保证网络策略实施。
 
 <!--
 ### Cilium
@@ -300,23 +176,22 @@ Cilium 支持 L7/HTTP，可以在 L3-L7 上通过使用与网络分离的基于
 <!--
 ### CNI-Genie from Huawei
 
-[CNI-Genie](https://github.com/Huawei-PaaS/CNI-Genie) is a CNI plugin that enables Kubernetes to [simultaneously have access to different implementations](https://github.com/Huawei-PaaS/CNI-Genie/blob/master/docs/multiple-cni-plugins/README.md#what-cni-genie-feature-1-multiple-cni-plugins-enables) of the [Kubernetes network model](https://github.com/kubernetes/website/blob/master/content/en/docs/concepts/cluster-administration/networking.md#the-kubernetes-network-model) in runtime. This includes any implementation that runs as a [CNI plugin](https://github.com/containernetworking/cni#3rd-party-plugins), such as [Flannel](https://github.com/coreos/flannel#flannel), [Calico](https://docs.projectcalico.org/), [Romana](https://romana.io), [Weave-net](https://www.weave.works/products/weave-net/).
+[CNI-Genie](https://github.com/cni-genie/CNI-Genie) is a CNI plugin that enables Kubernetes to [simultaneously have access to different implementations](https://github.com/cni-genie/CNI-Genie/blob/master/docs/multiple-cni-plugins/README.md#what-cni-genie-feature-1-multiple-cni-plugins-enables) of the [Kubernetes network model](/docs/concepts/cluster-administration/networking/#how-to-implement-the-kubernetes-networking-model) in runtime. This includes any implementation that runs as a [CNI plugin](https://github.com/containernetworking/cni#3rd-party-plugins), such as [Flannel](https://github.com/flannel-io/flannel#flannel), [Calico](https://projectcalico.docs.tigera.io/about/about-calico/), [Weave-net](https://www.weave.works/oss/net/).
 
-CNI-Genie also supports [assigning multiple IP addresses to a pod](https://github.com/Huawei-PaaS/CNI-Genie/blob/master/docs/multiple-ips/README.md#feature-2-extension-cni-genie-multiple-ip-addresses-per-pod), each from a different CNI plugin.
+CNI-Genie also supports [assigning multiple IP addresses to a pod](https://github.com/cni-genie/CNI-Genie/blob/master/docs/multiple-ips/README.md#feature-2-extension-cni-genie-multiple-ip-addresses-per-pod), each from a different CNI plugin.
 -->
-### 华为的 CNI-Genie
+### 华为的 CNI-Genie    {#cni-genie-from-huawei}
 
-[CNI-Genie](https://github.com/Huawei-PaaS/CNI-Genie) 是一个 CNI 插件，
+[CNI-Genie](https://github.com/cni-genie/CNI-Genie) 是一个 CNI 插件，
 可以让 Kubernetes 在运行时使用不同的[网络模型](#the-kubernetes-network-model)的
-[实现同时被访问](https://github.com/Huawei-PaaS/CNI-Genie/blob/master/docs/multiple-cni-plugins/README.md#what-cni-genie-feature-1-multiple-cni-plugins-enables)。
+[实现同时被访问](https://github.com/cni-genie/CNI-Genie/blob/master/docs/multiple-cni-plugins/README.md#what-cni-genie-feature-1-multiple-cni-plugins-enables)。
 这包括以
 [CNI 插件](https://github.com/containernetworking/cni#3rd-party-plugins)运行的任何实现，比如
-[Flannel](https://github.com/coreos/flannel#flannel)、
-[Calico](https://docs.projectcalico.org/)、
-[Romana](https://romana.io)、
-[Weave-net](https://www.weave.works/products/weave-net/)。
+[Flannel](https://github.com/flannel-io/flannel#flannel)、
+[Calico](https://projectcalico.docs.tigera.io/about/about-calico/)、
+[Weave-net](https://www.weave.works/oss/net/)。
 
-CNI-Genie 还支持[将多个 IP 地址分配给 Pod](https://github.com/Huawei-PaaS/CNI-Genie/blob/master/docs/multiple-ips/README.md#feature-2-extension-cni-genie-multi-ip-addresses-per-pod)，
+CNI-Genie 还支持[将多个 IP 地址分配给 Pod](https://github.com/cni-genie/CNI-Genie/blob/master/docs/multiple-ips/README.md#feature-2-extension-cni-genie-multiple-ip-addresses-per-pod)，
 每个都来自不同的 CNI 插件。
 
 <!--
@@ -363,24 +238,19 @@ Coil operates with a low overhead compared to bare metal, and allows you to defi
 与裸机相比，Coil 的额外操作开销低，并允许针对外部网络的出站流量任意定义 NAT 网关。
 
 <!--
-### Contiv
+### Contiv-VPP
 
-[Contiv](https://github.com/contiv/netplugin) provides configurable networking (native l3 using BGP, overlay using vxlan,  classic l2, or Cisco-SDN/ACI) for various use cases. [Contiv](https://contiv.io) is all open sourced.
+[Contiv-VPP](https://contivpp.io/) is a user-space, performance-oriented network plugin for
+Kubernetes, using the [fd.io](https://fd.io/) data plane.
 -->
-### Contiv
+### Contiv-VPP
+[Contiv-VPP](https://contivpp.io/) 是用于 Kubernetes 的用户空间、面向性能的网络插件，使用 [fd.io](https://fd.io/) 数据平面。
 
-[Contiv](https://github.com/contiv/netplugin)
-为各种使用情况提供了一个可配置网络（使用了 BGP 的本地 L3，
-使用 vxlan 、经典 L2 或 Cisco-SDN/ACI 的覆盖网络）。
-[Contiv](https://contiv.io) 是完全开源的。
+### Contrail / Tungsten Fabric
 
 <!--
-### Contrail/Tungsten Fabric
-
 [Contrail](https://www.juniper.net/us/en/products-services/sdn/contrail/contrail-networking/), based on [Tungsten Fabric](https://tungsten.io), is a truly open, multi-cloud network virtualization and policy management platform. Contrail and Tungsten Fabric are integrated with various orchestration systems such as Kubernetes, OpenShift, OpenStack and Mesos, and provide different isolation modes for virtual machines, containers/pods and bare metal workloads.
 -->
-### Contrail/Tungsten Fabric
-
 [Contrail](https://www.juniper.net/us/en/products-services/sdn/contrail/contrail-networking/)
 是基于 [Tungsten Fabric](https://tungsten.io) 的，真正开放的多云网络虚拟化和策略管理平台。
 Contrail 和 Tungsten Fabric 与各种编排系统集成在一起，例如 Kubernetes、OpenShift、OpenStack 和 Mesos，
@@ -405,7 +275,7 @@ With this toolset DANM is able to provide multiple separated network interfaces,
 它由以下几个组件构成：
 
 * 能够配置具有高级功能的 IPVLAN 接口的 CNI 插件
-* 一个内置的 IPAM 模块，能够管理多个、群集内的、不连续的 L3 网络，并按请求提供动态、静态或无 IP 分配方案
+* 一个内置的 IPAM 模块，能够管理多个、集群内的、不连续的 L3 网络，并按请求提供动态、静态或无 IP 分配方案
 * CNI 元插件能够通过自己的 CNI 或通过将任务授权给其他任何流行的 CNI 解决方案（例如 SRI-OV 或 Flannel）来实现将多个网络接口连接到容器
 * Kubernetes 控制器能够集中管理所有 Kubernetes 主机的 VxLAN 和 VLAN 接口
 * 另一个 Kubernetes 控制器扩展了 Kubernetes 的基于服务的服务发现概念，以在 Pod 的所有网络接口上工作
@@ -415,93 +285,25 @@ With this toolset DANM is able to provide multiple separated network interfaces,
 <!--
 ### Flannel
 
-[Flannel](https://github.com/coreos/flannel#flannel) is a very simple overlay
+[Flannel](https://github.com/flannel-io/flannel#flannel) is a very simple overlay
 network that satisfies the Kubernetes requirements. Many
 people have reported success with Flannel and Kubernetes.
 -->
 ### Flannel
 
-[Flannel](https://github.com/coreos/flannel#flannel) 是一个非常简单的能够满足
+[Flannel](https://github.com/flannel-io/flannel#flannel) 是一个非常简单的能够满足
 Kubernetes 所需要的覆盖网络。已经有许多人报告了使用 Flannel 和 Kubernetes 的成功案例。
 
 <!--
-### Google Compute Engine (GCE)
+### Hybridnet
 
-For the Google Compute Engine cluster configuration scripts, [advanced
-routing](https://cloud.google.com/vpc/docs/routes) is used to
-assign each VM a subnet (default is `/24` - 254 IPs).  Any traffic bound for that
-subnet will be routed directly to the VM by the GCE network fabric.  This is in
-addition to the "main" IP address assigned to the VM, which is NAT'ed for
-outbound internet access.  A linux bridge (called `cbr0`) is configured to exist
-on that subnet, and is passed to docker's `-bridge` flag.
-
-Docker is started with:
-
-```shell
-DOCKER_OPTS="--bridge=cbr0 --iptables=false --ip-masq=false"
-```
-
-This bridge is created by Kubelet (controlled by the `--network-plugin=kubenet`
-flag) according to the `Node`'s `.spec.podCIDR`.
-
-Docker will now allocate IPs from the `cbr-cidr` block.  Containers can reach
-each other and `Nodes` over the `cbr0` bridge.  Those IPs are all routable
-within the GCE project network.
-
-GCE itself does not know anything about these IPs, though, so it will not NAT
-them for outbound internet traffic.  To achieve that an iptables rule is used
-to masquerade (aka SNAT - to make it seem as if packets came from the `Node`
-itself) traffic that is bound for IPs outside the GCE project network
-(10.0.0.0/8).
-
-```shell
-iptables -t nat -A POSTROUTING ! -d 10.0.0.0/8 -o eth0 -j MASQUERADE
-```
-
-Lastly IP forwarding is enabled in the kernel (so the kernel will process
-packets for bridged containers):
-
-```shell
-sysctl net.ipv4.ip_forward=1
-```
-
-The result of all this is that all `Pods` can reach each other and can egress
-traffic to the internet.
+[Hybridnet](https://github.com/alibaba/hybridnet) is an open source CNI plugin designed for hybrid clouds which provides both overlay and underlay networking for containers in one or more clusters. Overlay and underlay containers can run on the same node and have cluster-wide bidirectional network connectivity.
 -->
-### Google Compute Engine (GCE)
+### Hybridnet
 
-对于 Google Compute Engine 的集群配置脚本，
-[高级路由器](https://cloud.google.com/vpc/docs/routes) 用于为每个虚机分配一个子网（默认是 `/24` - 254个 IP），
-绑定到该子网的任何流量都将通过 GCE 网络结构直接路由到虚机。
-这是除了分配给虚机的“主” IP 地址之外的一个补充，该 IP 地址经过 NAT 转换以用于访问外网。
-Linux 网桥（称为“cbr0”）被配置为存在于该子网中，并被传递到 Docker 的 --bridge 参数上。
-
-Docker 会以这样的参数启动：
-
-```shell
-DOCKER_OPTS="--bridge=cbr0 --iptables=false --ip-masq=false"
-```
-
-这个网桥是由 Kubelet（由 `--network-plugin=kubenet` 参数控制）根据节点的 `.spec.podCIDR` 参数创建的。
-
-Docker 将会从 `cbr-cidr` 块分配 IP。
-容器之间可以通过 `cbr0` 网桥相互访问，也可以访问节点。
-这些 IP 都可以在 GCE 的网络中被路由。
-而 GCE 本身并不知道这些 IP，所以不会对访问外网的流量进行 NAT。
-为了实现此目的，使用了 `iptables` 规则来伪装（又称为 SNAT，使数据包看起来好像是来自“节点”本身），
-将通信绑定到 GCE 项目网络（10.0.0.0/8）之外的 IP。
-
-```shell
-iptables -t nat -A POSTROUTING ! -d 10.0.0.0/8 -o eth0 -j MASQUERADE
-```
-
-最后，在内核中启用了 IP 转发（因此内核将处理桥接容器的数据包）：
-
-```shell
-sysctl net.ipv4.ip_forward=1
-```
-
-所有这些的结果是所有 Pod 都可以互相访问，并且可以将流量发送到互联网。
+[Hybridnet](https://github.com/alibaba/hybridnet) 是一个为混合云设计的开源 CNI 插件，
+它为一个或多个集群中的容器提供覆盖和底层网络。Overlay 和 underlay 容器可以在同一个节点上运行，
+并具有集群范围的双向网络连接。
 
 <!--
 ### Jaguar
@@ -541,7 +343,7 @@ Jaguar 使用 vxlan 提供覆盖网络，而 Jaguar CNIPlugin 为每个 Pod 提
 ### Kube-OVN
 
 [Kube-OVN](https://github.com/alauda/kube-ovn) 是一个基于 OVN 的用于企业的 Kubernetes 网络架构。
-借助于 OVN/OVS ，它提供了一些高级覆盖网络功能，例如子网、QoS、静态 IP 分配、流量镜像、网关、
+借助于 OVN/OVS，它提供了一些高级覆盖网络功能，例如子网、QoS、静态 IP 分配、流量镜像、网关、
 基于 openflow 的网络策略和服务代理。
 
 <!--
@@ -552,7 +354,7 @@ Jaguar 使用 vxlan 提供覆盖网络，而 Jaguar CNIPlugin 为每个 Pod 提
 ### Kube-router
 
 [Kube-router](https://github.com/cloudnativelabs/kube-router) 是 Kubernetes 的专用网络解决方案，
-旨在提供高性能和易操作性。 
+旨在提供高性能和易操作性。
 Kube-router 提供了一个基于 Linux [LVS/IPVS](https://www.linuxvirtualserver.org/software/ipvs.html)
 的服务代理、一个基于 Linux 内核转发的无覆盖 Pod-to-Pod 网络解决方案和基于 iptables/ipset 的网络策略执行器。
 
@@ -565,25 +367,25 @@ Note that these instructions have only been tried very casually - it seems to
 work, but has not been thoroughly tested.  If you use this technique and
 perfect the process, please let us know.
 
-Follow the "With Linux Bridge devices" section of [this very nice
-tutorial](https://blog.oddbit.com/2014/08/11/four-ways-to-connect-a-docker/) from
+Follow the "With Linux Bridge devices" section of
+[this very nice tutorial](https://blog.oddbit.com/2014/08/11/four-ways-to-connect-a-docker/) from
 Lars Kellogg-Stedman.
 -->
 ### L2 networks and linux bridging
 
-如果你具有一个“哑”的L2网络，例如“裸机”环境中的简单交换机，则应该能够执行与上述 GCE 设置类似的操作。
+如果你具有一个“哑”的 L2 网络，例如“裸机”环境中的简单交换机，则应该能够执行与上述 GCE 设置类似的操作。
 请注意，这些说明仅是非常简单的尝试过-似乎可行，但尚未经过全面测试。
-如果您使用此技术并完善了流程，请告诉我们。
+如果你使用此技术并完善了流程，请告诉我们。
 
-根据 Lars Kellogg-Stedman 的这份非常不错的“Linux 网桥设备”
+根据 Lars Kellogg-Stedman 的这份非常不错的 “Linux 网桥设备”
 [使用说明](https://blog.oddbit.com/2014/08/11/four-ways-to-connect-a-docker/)来进行操作。
 
 <!--
 ### Multus (a Multi Network plugin)
 
-[Multus](https://github.com/Intel-Corp/multus-cni) is a Multi CNI plugin to support the Multi Networking feature in Kubernetes using CRD based network objects in Kubernetes.
+Multus is a Multi CNI plugin to support the Multi Networking feature in Kubernetes using CRD based network objects in Kubernetes.
 
-Multus supports all [reference plugins](https://github.com/containernetworking/plugins) (eg. [Flannel](https://github.com/containernetworking/plugins/tree/master/plugins/meta/flannel), [DHCP](https://github.com/containernetworking/plugins/tree/master/plugins/ipam/dhcp), [Macvlan](https://github.com/containernetworking/plugins/tree/master/plugins/main/macvlan)) that implement the CNI specification and 3rd party plugins (eg. [Calico](https://github.com/projectcalico/cni-plugin), [Weave](https://github.com/weaveworks/weave), [Cilium](https://github.com/cilium/cilium), [Contiv](https://github.com/contiv/netplugin)). In addition to it, Multus supports [SRIOV](https://github.com/hustcat/sriov-cni), [DPDK](https://github.com/Intel-Corp/sriov-cni), [OVS-DPDK & VPP](https://github.com/intel/vhost-user-net-plugin) workloads in Kubernetes with both cloud native and NFV based applications in Kubernetes.
+Multus supports all [reference plugins](https://github.com/containernetworking/plugins) (eg. [Flannel](https://github.com/containernetworking/cni.dev/blob/main/content/plugins/v0.9/meta/flannel.md), [DHCP](https://github.com/containernetworking/plugins/tree/master/plugins/ipam/dhcp), [Macvlan](https://github.com/containernetworking/plugins/tree/master/plugins/main/macvlan)) that implement the CNI specification and 3rd party plugins (eg. [Calico](https://github.com/projectcalico/cni-plugin), [Weave](https://github.com/weaveworks/weave), [Cilium](https://github.com/cilium/cilium), [Contiv](https://github.com/contiv/netplugin)). In addition to it, Multus supports [SRIOV](https://github.com/hustcat/sriov-cni), [DPDK](https://github.com/Intel-Corp/sriov-cni), [OVS-DPDK & VPP](https://github.com/intel/vhost-user-net-plugin) workloads in Kubernetes with both cloud native and NFV based applications in Kubernetes.
 -->
 ### Multus (a Multi Network plugin)
 
@@ -591,7 +393,7 @@ Multus supports all [reference plugins](https://github.com/containernetworking/p
 使用 Kubernetes 中基于 CRD 的网络对象来支持实现 Kubernetes 多网络系统。
 
 Multus 支持所有[参考插件](https://github.com/containernetworking/plugins)（比如：
-[Flannel](https://github.com/containernetworking/plugins/tree/master/plugins/meta/flannel)、
+[Flannel](https://github.com/containernetworking/cni.dev/blob/main/content/plugins/v0.9/meta/flannel.md)、
 [DHCP](https://github.com/containernetworking/plugins/tree/master/plugins/ipam/dhcp)、
 [Macvlan](https://github.com/containernetworking/plugins/tree/master/plugins/main/macvlan) ）
 来实现 CNI 规范和第三方插件（比如：
@@ -599,12 +401,24 @@ Multus 支持所有[参考插件](https://github.com/containernetworking/plugins
 [Weave](https://github.com/weaveworks/weave)、
 [Cilium](https://github.com/cilium/cilium)、
 [Contiv](https://github.com/contiv/netplugin)）。
-除此之外， Multus 还支持
+除此之外，Multus 还支持
 [SRIOV](https://github.com/hustcat/sriov-cni)、
 [DPDK](https://github.com/Intel-Corp/sriov-cni)、
 [OVS-DPDK & VPP](https://github.com/intel/vhost-user-net-plugin) 的工作负载，
 以及 Kubernetes 中基于云的本机应用程序和基于 NFV 的应用程序。
 
+<!--
+### OVN4NFV-K8s-Plugin (OVN based CNI controller & plugin)
+
+[OVN4NFV-K8S-Plugin](https://github.com/opnfv/ovn4nfv-k8s-plugin) is OVN based CNI controller plugin to provide cloud native based Service function chaining(SFC), Multiple OVN overlay networking, dynamic subnet creation, dynamic creation of virtual networks, VLAN Provider network, Direct provider network and pluggable with other Multi-network plugins, ideal for edge based cloud native workloads in Multi-cluster networking
+-->
+### OVN4NFV-K8s-Plugin（基于 OVN 的 CNI 控制器和插件）    {#ovn4nfv-k8s-plugin-ovn-based-cni-controller-plugin}
+
+[OVN4NFV-K8S-Plugin](https://github.com/opnfv/ovn4nfv-k8s-plugin) 是基于 OVN 的
+CNI 控制器插件，提供基于云原生的服务功能链 (SFC)、多个 OVN
+覆盖网络、动态子网创建、虚拟网络的动态创建、VLAN Provider 网络、Direct Provider
+网络且可与其他多网络插件组合，非常适合多集群网络中基于边缘的云原生工作负载。
+
 <!--
 ### NSX-T
 
@@ -623,28 +437,6 @@ NSX-T 可以为多云及多系统管理程序环境提供网络虚拟化，并
 以及 NSX-T 与基于容器的 CaaS/PaaS 平台（例如 Pivotal Container Service（PKS）和 OpenShift）之间的集成。
 
 <!--
-### Nuage Networks VCS (Virtualized Cloud Services)
-
-[Nuage](https://www.nuagenetworks.net) provides a highly scalable policy-based Software-Defined Networking (SDN) platform. Nuage uses the open source Open vSwitch for the data plane along with a feature rich SDN Controller built on open standards.
-
-The Nuage platform uses overlays to provide seamless policy-based networking between Kubernetes Pods and non-Kubernetes environments (VMs and bare metal servers). Nuage's policy abstraction model is designed with applications in mind and makes it easy to declare fine-grained policies for applications.The platform's real-time analytics engine enables visibility and security monitoring for Kubernetes applications.
--->
-### Nuage Networks VCS (Virtualized Cloud Services)
-
-[Nuage](https://www.nuagenetworks.net) 提供了一个高度可扩展的基于策略的软件定义网络（SDN）平台。
-Nuage 使用开源的 Open vSwitch 作为数据平面，以及基于开放标准构建具有丰富功能的 SDN 控制器。
-
-Nuage 平台使用覆盖层在 Kubernetes Pod 和非 Kubernetes 环境（VM 和裸机服务器）之间提供基于策略的无缝联网。
-Nuage 的策略抽象模型在设计时就考虑到了应用程序，并且可以轻松声明应用程序的细粒度策略。
-该平台的实时分析引擎可为 Kubernetes 应用程序提供可见性和安全性监控。
-
-<!--
-### OpenVSwitch
-
-[OpenVSwitch](https://www.openvswitch.org/) is a somewhat more mature but also
-complicated way to build an overlay network.  This is endorsed by several of the
-"Big Shops" for networking.
-
 ### OVN (Open Virtual Networking)
 
 OVN is an opensource network virtualization solution developed by the
@@ -653,42 +445,26 @@ stateful ACLs, load-balancers etc to build different virtual networking
 topologies.  The project has a specific Kubernetes plugin and documentation
 at [ovn-kubernetes](https://github.com/openvswitch/ovn-kubernetes).
 -->
-### OpenVSwitch
-
-[OpenVSwitch](https://www.openvswitch.org/) 是一个较为成熟的解决方案，但同时也增加了构建覆盖网络的复杂性。
-这也得到了几个网络系统的“大商店”的拥护。
-
-### OVN (开放式虚拟网络)
+### OVN（开放式虚拟网络）    {#ovn-open-virtual-networking}
 
 OVN 是一个由 Open vSwitch 社区开发的开源的网络虚拟化解决方案。
 它允许创建逻辑交换器、逻辑路由、状态 ACL、负载均衡等等来建立不同的虚拟网络拓扑。
-该项目有一个特定的Kubernetes插件和文档 [ovn-kubernetes](https://github.com/openvswitch/ovn-kubernetes)。
-
-<!--
-### Romana
-
-[Romana](https://romana.io) is an open source network and security automation solution that lets you deploy Kubernetes without an overlay network. Romana supports Kubernetes [Network Policy](/docs/concepts/services-networking/network-policies/) to provide isolation across network namespaces.
--->
-### Romana
-
-[Romana](https://romana.io) 是一个开源网络和安全自动化解决方案。
-它可以让你在没有覆盖网络的情况下部署 Kubernetes。
-Romana 支持 Kubernetes [网络策略](/zh/docs/concepts/services-networking/network-policies/)，
-来提供跨网络命名空间的隔离。
+该项目在 [ovn-kubernetes](https://github.com/openvswitch/ovn-kubernetes)
+提供特定的 Kubernetes 插件和文档。
 
 <!--
 ### Weave Net from Weaveworks
 
-[Weave Net](https://www.weave.works/products/weave-net/) is a
+[Weave Net](https://www.weave.works/oss/net/) is a
 resilient and simple to use network for Kubernetes and its hosted applications.
 Weave Net runs as a [CNI plug-in](https://www.weave.works/docs/net/latest/cni-plugin/)
 or stand-alone.  In either version, it doesn't require any configuration or extra code
 to run, and in both cases, the network provides one IP address per pod - as is standard for Kubernetes.
 -->
-### Weaveworks 的 Weave Net
+### Weaveworks 的 Weave Net    {#weave-net-from-weaveworks}
 
-[Weave Net](https://www.weave.works/products/weave-net/) 是 Kubernetes 及其
-托管应用程序的弹性且易于使用的网络系统。
+[Weave Net](https://www.weave.works/oss/net/) 为 Kubernetes
+及其托管应用提供的、弹性且易用的网络系统。
 Weave Net 可以作为 [CNI 插件](https://www.weave.works/docs/net/latest/cni-plugin/) 运行或者独立运行。
 在这两种运行方式里，都不需要任何配置或额外的代码即可运行，并且在两种情况下，
 网络都为每个 Pod 提供一个 IP 地址 -- 这是 Kubernetes 的标准配置。
@@ -697,9 +473,8 @@ Weave Net 可以作为 [CNI 插件](https://www.weave.works/docs/net/latest/cni-
 
 <!--
 The early design of the networking model and its rationale, and some future
-plans are described in more detail in the [networking design
-document](https://git.k8s.io/community/contributors/design-proposals/network/networking.md).
+plans are described in more detail in the
+[networking design document](https://git.k8s.io/design-proposals-archive/network/networking.md).
 -->
-网络模型的早期设计、运行原理以及未来的一些计划，都在
-[联网设计文档](https://git.k8s.io/community/contributors/design-proposals/network/networking.md)
-里有更详细的描述。
+网络模型的早期设计、运行原理以及未来的一些计划，
+都在[联网设计文档](https://git.k8s.io/design-proposals-archive/network/networking.md)里有更详细的描述。
diff --git a/content/zh/docs/concepts/cluster-administration/proxies.md b/content/zh-cn/docs/concepts/cluster-administration/proxies.md
similarity index 91%
rename from content/zh/docs/concepts/cluster-administration/proxies.md
rename to content/zh-cn/docs/concepts/cluster-administration/proxies.md
index be933ccc9c..350295c4f9 100644
--- a/content/zh/docs/concepts/cluster-administration/proxies.md
+++ b/content/zh-cn/docs/concepts/cluster-administration/proxies.md
@@ -36,7 +36,7 @@ There are several different proxies you may encounter when using Kubernetes:
     - locates apiserver
     - adds authentication headers
 -->
-1. [kubectl proxy](/zh/docs/tasks/access-application-cluster/access-cluster/#directly-accessing-the-rest-api)：
+1. [kubectl proxy](/zh-cn/docs/tasks/access-application-cluster/access-cluster/#directly-accessing-the-rest-api)：
 
     - 运行在用户的桌面或 pod 中
     - 从本机地址到 Kubernetes apiserver 的代理
@@ -56,10 +56,10 @@ There are several different proxies you may encounter when using Kubernetes:
     - can be used to reach a Node, Pod, or Service
     - does load balancing when used to reach a Service
 -->
-2. [apiserver proxy](/zh/docs/tasks/access-application-cluster/access-cluster/#discovering-builtin-services)：
+2. [apiserver proxy](/zh-cn/docs/tasks/access-application-cluster/access-cluster/#discovering-builtin-services)：
 
     - 是一个建立在 apiserver 内部的“堡垒”
-    - 将集群外部的用户与群集 IP 相连接，这些IP是无法通过其他方式访问的
+    - 将集群外部的用户与集群 IP 相连接，这些IP是无法通过其他方式访问的
     - 运行在 apiserver 进程内
     - 客户端到代理使用 HTTPS 协议 (如果配置 apiserver 使用 HTTP 协议，则使用 HTTP 协议)
     - 通过可用信息进行选择，代理到目的地可能使用 HTTP 或 HTTPS 协议
@@ -75,7 +75,7 @@ There are several different proxies you may encounter when using Kubernetes:
     - provides load balancing
     - is only used to reach services
 -->
-3. [kube proxy](/zh/docs/concepts/services-networking/service/#ips-and-vips)：
+3. [kube proxy](/zh-cn/docs/concepts/services-networking/service/#ips-and-vips)：
 
     - 在每个节点上运行
     - 代理 UDP、TCP 和 SCTP
diff --git a/content/zh-cn/docs/concepts/cluster-administration/system-logs.md b/content/zh-cn/docs/concepts/cluster-administration/system-logs.md
new file mode 100644
index 0000000000..2365e3bd23
--- /dev/null
+++ b/content/zh-cn/docs/concepts/cluster-administration/system-logs.md
@@ -0,0 +1,396 @@
+---
+title: 系统日志
+content_type: concept
+weight: 60
+---
+<!-- 
+reviewers:
+- dims
+- 44past4
+title: System Logs
+content_type: concept
+weight: 60
+-->
+
+<!-- overview -->
+
+<!--
+System component logs record events happening in cluster, which can be very useful for debugging.
+You can configure log verbosity to see more or less detail.
+Logs can be as coarse-grained as showing errors within a component, or as fine-grained as showing step-by-step traces of events (like HTTP access logs, pod state changes, controller actions, or scheduler decisions).
+-->
+系统组件的日志记录集群中发生的事件，这对于调试非常有用。
+你可以配置日志的精细度，以展示更多或更少的细节。
+日志可以是粗粒度的，如只显示组件内的错误，
+也可以是细粒度的，如显示事件的每一个跟踪步骤（比如 HTTP 访问日志、pod 状态更新、控制器动作或调度器决策）。
+
+<!-- body -->
+
+## Klog
+
+<!--
+klog is the Kubernetes logging library. [klog](https://github.com/kubernetes/klog)
+generates log messages for the Kubernetes system components.
+
+For more information about klog configuration, see the [Command line tool reference](/docs/reference/command-line-tools-reference/).
+-->
+klog 是 Kubernetes 的日志库。 
+[klog](https://github.com/kubernetes/klog) 
+为 Kubernetes 系统组件生成日志消息。
+
+有关 klog 配置的更多信息，请参见[命令行工具参考](/zh-cn/docs/reference/command-line-tools-reference/)。
+
+<!--
+Kubernetes is in the process of simplifying logging in its components. The
+following klog command line flags [are
+deprecated](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components)
+starting with Kubernetes 1.23 and will be removed in a future release:
+-->
+Kubernetes 正在进行简化其组件日志的努力。下面的 klog 命令行参数从 Kubernetes 1.23
+开始[已被废弃](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components)，
+会在未来版本中移除：
+
+- `--add-dir-header`
+- `--alsologtostderr`
+- `--log-backtrace-at`
+- `--log-dir`
+- `--log-file`
+- `--log-file-max-size`
+- `--logtostderr`
+- `--one-output`
+- `--skip-headers`
+- `--skip-log-headers`
+- `--stderrthreshold`
+
+<!--
+Output will always be written to stderr, regardless of the output
+format. Output redirection is expected to be handled by the component which
+invokes a Kubernetes component. This can be a POSIX shell or a tool like
+systemd.
+-->
+输出总会被写到标准错误输出（stderr）之上，无论输出格式如何。
+对输出的重定向将由调用 Kubernetes 组件的软件来处理。
+这一软件可以是 POSIX Shell 或者类似 systemd 这样的工具。
+
+<!--
+In some cases, for example a distroless container or a Windows system service,
+those options are not available. Then the
+[`kube-log-runner`](https://github.com/kubernetes/kubernetes/blob/d2a8a81639fcff8d1221b900f66d28361a170654/staging/src/k8s.io/component-base/logs/kube-log-runner/README.md)
+binary can be used as wrapper around a Kubernetes component to redirect
+output. A prebuilt binary is included in several Kubernetes base images under
+its traditional name as `/go-runner` and as `kube-log-runner` in server and
+node release archives.
+-->
+在某些场合下，例如对于无发行主体的（distroless）容器或者 Windows 系统服务，
+这些替代方案都是不存在的。那么你可以使用 
+[`kube-log-runner`](https://github.com/kubernetes/kubernetes/blob/d2a8a81639fcff8d1221b900f66d28361a170654/staging/src/k8s.io/component-base/logs/kube-log-runner/README.md)
+可执行文件来作为 Kubernetes 的封装层，完成对输出的重定向。
+在很多 Kubernetes 基础镜像中，都包含一个预先构建的可执行程序。
+这个程序原来称作 `/go-runner`，而在服务器和节点的发行版本库中，称作 `kube-log-runner`。
+
+<!--
+This table shows how `kube-log-runner` invocations correspond to shell redirection:
+-->
+下表展示的是 `kube-log-runner` 调用与 Shell 重定向之间的对应关系：
+
+<!--
+| Usage                                    | POSIX shell (such as bash) | `kube-log-runner <options> <cmd>`                           |
+| -----------------------------------------|----------------------------|-------------------------------------------------------------|
+| Merge stderr and stdout, write to stdout | `2>&1`                     | `kube-log-runner` (default behavior)                        |
+| Redirect both into log file              | `1>>/tmp/log 2>&1`         | `kube-log-runner -log-file=/tmp/log`                        |
+| Copy into log file and to stdout         | `2>&1 \| tee -a /tmp/log`  | `kube-log-runner -log-file=/tmp/log -also-stdout`           |
+| Redirect only stdout into log file       | `>/tmp/log`                | `kube-log-runner -log-file=/tmp/log -redirect-stderr=false` |
+-->
+| 用法                            | POSIX Shell（例如 Bash） | `kube-log-runner <options> <cmd>`  |
+| --------------------------------|--------------------------|------------------------------------|
+| 合并 stderr 与 stdout，写出到 stdout | `2>&1`             | `kube-log-runner`（默认行为 ）|
+| 将 stderr 与 stdout 重定向到日志文件 | `1>>/tmp/log 2>&1` | `kube-log-runner -log-file=/tmp/log` |
+| 输出到 stdout 并复制到日志文件中     | `2>&1 \| tee -a /tmp/log`  | `kube-log-runner -log-file=/tmp/log -also-stdout` |
+| 仅将 stdout 重定向到日志 | `>/tmp/log` | `kube-log-runner -log-file=/tmp/log -redirect-stderr=false` |
+
+<!--
+### Klog output
+
+An example of the traditional klog native format:
+-->
+### klog 输出
+
+传统的 klog 原生格式示例：
+
+```
+I1025 00:15:15.525108       1 httplog.go:79] GET /api/v1/namespaces/kube-system/pods/metrics-server-v0.3.1-57c75779f-9p8wg: (1.512ms) 200 [pod_nanny/v0.0.0 (linux/amd64) kubernetes/$Format 10.56.1.19:51756]
+```
+
+<!--
+The message string may contain line breaks:
+-->
+消息字符串可能包含换行符：
+
+```
+I1025 00:15:15.525108       1 example.go:79] This is a message
+which has a line break.
+```
+
+<!-- 
+### Structured Logging 
+-->
+### 结构化日志
+
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
+
+{{< warning >}}
+<!--
+Migration to structured log messages is an ongoing process. Not all log messages are structured in this version. When parsing log files, you must also handle unstructured log messages.
+
+Log formatting and value serialization are subject to change.
+-->
+迁移到结构化日志消息是一个正在进行的过程。在此版本中，并非所有日志消息都是结构化的。
+解析日志文件时，你也必须要处理非结构化日志消息。
+
+日志格式和值的序列化可能会发生变化。
+{{< /warning>}}
+
+<!--
+Structured logging introduces a uniform structure in log messages allowing for programmatic extraction of information. You can store and process structured logs with less effort and cost.
+The code which generates a log message determines whether it uses the traditional unstructured klog output
+or structured logging.
+-->
+结构化日志记录旨在日志消息中引入统一结构，以便以编程方式提取信息。
+你可以方便地用更小的开销来处理结构化日志。
+生成日志消息的代码决定其使用传统的非结构化的 klog 还是结构化的日志。
+
+<!--
+The default formatting of structured log messages is as text, with a format that
+is backward compatible with traditional klog:
+-->
+默认的结构化日志消息是以文本形式呈现的，其格式与传统的 klog 保持向后兼容：
+
+```ini
+<klog header> "<message>" <key1>="<value1>" <key2>="<value2>" ...
+```
+
+<!--
+Example:
+-->
+示例：
+
+```ini
+I1025 00:15:15.525108       1 controller_utils.go:116] "Pod status updated" pod="kube-system/kubedns" status="ready"
+```
+
+<!--
+Strings are quoted. Other values are formatted with
+[`%+v`](https://pkg.go.dev/fmt#hdr-Printing), which may cause log messages to
+continue on the next line [depending on the data](https://github.com/kubernetes/kubernetes/issues/106428).
+-->
+字符串在输出时会被添加引号。其他数值类型都使用 [`%+v`](https://pkg.go.dev/fmt#hdr-Printing)
+来格式化，因此可能导致日志消息会延续到下一行，
+[具体取决于数据本身](https://github.com/kubernetes/kubernetes/issues/106428)。
+
+```
+I1025 00:15:15.525108       1 example.go:116] "Example" data="This is text with a line break\nand \"quotation marks\"." someInt=1 someFloat=0.1 someStruct={StringField: First line,
+second line.}
+```
+
+<!-- 
+### Contextual Logging 
+-->
+### 上下文日志
+
+{{< feature-state for_k8s_version="v1.24" state="alpha" >}}
+
+<!-- 
+Contextual logging builds on top of structured logging. It is primarily about
+how developers use logging calls: code based on that concept is more flexible
+and supports additional use cases as described in the [Contextual Logging
+KEP](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/3077-contextual-logging). 
+-->
+上下文日志建立在结构化日志之上。
+它主要是关于开发人员如何使用日志记录调用：基于该概念的代码将更加灵活，
+并且支持在[结构化日志 KEP](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/3077-contextual-logging) 
+中描述的额外用例。
+
+<!-- 
+If developers use additional functions like `WithValues` or `WithName` in
+their components, then log entries contain additional information that gets
+passed into functions by their caller. 
+-->
+如果开发人员在他们的组件中使用额外的函数，比如 `WithValues` 或 `WithName`，
+那么日志条目将会包含额外的信息，这些信息会被调用者传递给函数。
+
+<!-- 
+Currently this is gated behind the `StructuredLogging` feature gate and
+disabled by default. The infrastructure for this was added in 1.24 without
+modifying components. The
+[`component-base/logs/example`](https://github.com/kubernetes/kubernetes/blob/v1.24.0-beta.0/staging/src/k8s.io/component-base/logs/example/cmd/logger.go)
+command demonstrates how to use the new logging calls and how a component
+behaves that supports contextual logging. 
+-->
+目前这一特性是由 `StructuredLogging` 特性门控所控制的，默认关闭。
+这个基础设施是在 1.24 中被添加的，并不需要修改组件。
+该 [`component-base/logs/example`](https://github.com/kubernetes/kubernetes/blob/v1.24.0-beta.0/staging/src/k8s.io/component-base/logs/example/cmd/logger.go)
+命令演示了如何使用新的日志记录调用以及组件如何支持上下文日志记录。
+
+```console
+$ cd $GOPATH/src/k8s.io/kubernetes/staging/src/k8s.io/component-base/logs/example/cmd/
+$ go run . --help
+...
+      --feature-gates mapStringBool  A set of key=value pairs that describe feature gates for alpha/experimental features. Options are:
+                                     AllAlpha=true|false (ALPHA - default=false)
+                                     AllBeta=true|false (BETA - default=false)
+                                     ContextualLogging=true|false (ALPHA - default=false)
+$ go run . --feature-gates ContextualLogging=true
+...
+I0404 18:00:02.916429  451895 logger.go:94] "example/myname: runtime" foo="bar" duration="1m0s"
+I0404 18:00:02.916447  451895 logger.go:95] "example: another runtime" foo="bar" duration="1m0s"
+```
+
+<!-- 
+The `example` prefix and `foo="bar"` were added by the caller of the function
+which logs the `runtime` message and `duration="1m0s"` value, without having to
+modify that function.
+
+With contextual logging disable, `WithValues` and `WithName` do nothing and log
+calls go through the global klog logger. Therefore this additional information
+is not in the log output anymore: 
+-->
+`example` 前缀和 `foo="bar"` 会被函数的调用者添加上，
+不需修改该函数，它就会记录 `runtime` 消息和 `duration="1m0s"` 值。
+
+禁用上下文日志后，`WithValues` 和 `WithName` 什么都不会做，
+并且会通过调用全局的 klog 日志记录器记录日志。
+因此，这些附加信息不再出现在日志输出中：
+
+```console
+$ go run . --feature-gates ContextualLogging=false
+...
+I0404 18:03:31.171945  452150 logger.go:94] "runtime" duration="1m0s"
+I0404 18:03:31.171962  452150 logger.go:95] "another runtime" duration="1m0s"
+```
+
+<!--
+### JSON log format
+-->
+### JSON 日志格式
+
+{{< feature-state for_k8s_version="v1.19" state="alpha" >}}
+
+{{< warning >}}
+<!--
+JSON output does not support many standard klog flags. For list of unsupported klog flags, see the [Command line tool reference](/docs/reference/command-line-tools-reference/).
+
+Not all logs are guaranteed to be written in JSON format (for example, during process start). If you intend to parse logs, make sure you can handle log lines that are not JSON as well.
+
+Field names and JSON serialization are subject to change.
+-->
+JSON 输出并不支持太多标准 klog 参数。对于不受支持的 klog 参数的列表，
+请参见[命令行工具参考](/zh-cn/docs/reference/command-line-tools-reference/)。
+
+并不是所有日志都保证写成 JSON 格式（例如，在进程启动期间）。
+如果你打算解析日志，请确保可以处理非 JSON 格式的日志行。
+
+字段名和 JSON 序列化可能会发生变化。
+{{< /warning >}}
+
+<!--
+The `--logging-format=json` flag changes the format of logs from klog native format to JSON format.
+Example of JSON log format (pretty printed):
+-->
+`--logging-format=json` 参数将日志格式从 klog 原生格式改为 JSON 格式。
+JSON 日志格式示例（美化输出）：
+```json
+{
+   "ts": 1580306777.04728,
+   "v": 4,
+   "msg": "Pod status updated",
+   "pod":{
+      "name": "nginx-1",
+      "namespace": "default"
+   },
+   "status": "ready"
+}
+```
+
+<!--
+Keys with special meaning:
+
+* `ts` - timestamp as Unix time (required, float)
+* `v` - verbosity (only for info and not for error messages, int)
+* `err` - error string (optional, string)
+* `msg` - message (required, string)
+
+List of components currently supporting JSON format:
+-->
+具有特殊意义的 key：
+* `ts` - Unix 时间风格的时间戳（必选项，浮点值）
+* `v` - 精细度（仅用于 info 级别，不能用于错误信息，整数）
+* `err` - 错误字符串（可选项，字符串）
+* `msg` - 消息（必选项，字符串）
+
+当前支持JSON格式的组件列表：
+
+* {{< glossary_tooltip term_id="kube-controller-manager" text="kube-controller-manager" >}}
+* {{< glossary_tooltip term_id="kube-apiserver" text="kube-apiserver" >}}
+* {{< glossary_tooltip term_id="kube-scheduler" text="kube-scheduler" >}}
+* {{< glossary_tooltip term_id="kubelet" text="kubelet" >}}
+
+<!--
+### Log verbosity level
+
+The `-v` flag controls log verbosity. Increasing the value increases the number of logged events. Decreasing the value decreases the number of logged events.
+Increasing verbosity settings logs increasingly less severe events. A verbosity setting of 0 logs only critical events.
+-->
+### 日志精细度级别
+
+参数 `-v` 控制日志的精细度。增大该值会增大日志事件的数量。
+减小该值可以减小日志事件的数量。增大精细度会记录更多的不太严重的事件。
+精细度设置为 0 时只记录关键（critical）事件。
+
+<!--
+### Log location
+
+There are two types of system components: those that run in a container and those
+that do not run in a container. For example:
+
+* The Kubernetes scheduler and kube-proxy run in a container.
+* The kubelet and {{<glossary_tooltip term_id="container-runtime" text="container runtime">}}
+  do not run in containers.
+-->
+### 日志位置
+
+有两种类型的系统组件：运行在容器中的组件和不运行在容器中的组件。例如：
+
+* Kubernetes 调度器和 kube-proxy 在容器中运行。
+* kubelet 和{{<glossary_tooltip term_id="container-runtime" text="容器运行时">}}不在容器中运行。
+
+<!--
+On machines with systemd, the kubelet and container runtime write to journald.
+Otherwise, they write to `.log` files in the `/var/log` directory.
+System components inside containers always write to `.log` files in the `/var/log` directory,
+bypassing the default logging mechanism.
+Similar to the container logs, you should rotate system component logs in the `/var/log` directory.
+In Kubernetes clusters created by the `kube-up.sh` script, log rotation is configured by the `logrotate` tool.
+The `logrotate` tool rotates logs daily, or once the log size is greater than 100MB.
+-->
+在使用 systemd 的系统中，kubelet 和容器运行时写入 journald。
+在别的系统中，日志写入 `/var/log` 目录下的 `.log` 文件中。
+容器中的系统组件总是绕过默认的日志记录机制，写入 `/var/log` 目录下的 `.log` 文件。
+与容器日志类似，你应该轮转 `/var/log` 目录下系统组件日志。
+在 `kube-up.sh` 脚本创建的 Kubernetes 集群中，日志轮转由 `logrotate` 工具配置。
+ `logrotate` 工具，每天或者当日志大于 100MB 时，轮转日志。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* Read about the [Kubernetes Logging Architecture](/docs/concepts/cluster-administration/logging/)
+* Read about [Structured Logging](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/1602-structured-logging)
+* Read about [Contextual Logging](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/3077-contextual-logging)
+* Read about [deprecation of klog flags](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components)
+* Read about the [Conventions for logging severity](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-instrumentation/logging.md)
+-->
+* 阅读 [Kubernetes 日志架构](/zh-cn/docs/concepts/cluster-administration/logging/)
+* 阅读[结构化日志提案（英文）](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/1602-structured-logging)
+* 阅读[上下文日志提案（英文）](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/3077-contextual-logging)
+* 阅读 [klog 参数的废弃（英文）](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components)
+* 阅读[日志严重级别约定（英文）](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-instrumentation/logging.md)
+
diff --git a/content/zh/docs/concepts/cluster-administration/system-metrics.md b/content/zh-cn/docs/concepts/cluster-administration/system-metrics.md
similarity index 98%
rename from content/zh/docs/concepts/cluster-administration/system-metrics.md
rename to content/zh-cn/docs/concepts/cluster-administration/system-metrics.md
index 3e62921679..2f971177fe 100644
--- a/content/zh/docs/concepts/cluster-administration/system-metrics.md
+++ b/content/zh-cn/docs/concepts/cluster-administration/system-metrics.md
@@ -128,7 +128,7 @@ For example:
 <!--
 * After deprecation
 -->
-* 被启用之后：
+* 被弃用之后：
 
   ```
   # HELP some_counter (Deprecated since 1.15.0) this counts things
@@ -204,7 +204,7 @@ kubelet 在驱动程序上保持打开状态。这意味着为了执行基础结
 现在，收集加速器指标的责任属于供应商，而不是 kubelet。供应商必须提供一个收集指标的容器，
 并将其公开给指标服务（例如 Prometheus）。
 
-[`DisableAcceleratorUsageMetrics` 特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
+[`DisableAcceleratorUsageMetrics` 特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)
 禁止由 kubelet 收集的指标。
 关于[何时会在默认情况下启用此功能也有一定规划](https://github.com/kubernetes/enhancements/tree/411e51027db842355bd489691af897afc1a41a5e/keps/sig-node/1867-disable-accelerator-usage-metrics#graduation-criteria)。
 
@@ -271,7 +271,7 @@ The kube-scheduler identifies the resource [requests and limits](/docs/concepts/
 - the unit of the resource if known (for example, `cores`)
 -->
 kube-scheduler 组件能够辩识各个 Pod 所配置的资源
-[请求和约束](/zh/docs/concepts/configuration/manage-resources-containers/)。
+[请求和约束](/zh-cn/docs/concepts/configuration/manage-resources-containers/)。
 在 Pod 的资源请求值或者约束值非零时，kube-scheduler 会以度量值时间序列的形式
 生成报告。该时间序列值包含以下标签：
 - 名字空间
@@ -341,4 +341,4 @@ Here is an example:
 * Read about the [Kubernetes deprecation policy](/docs/reference/using-api/deprecation-policy/#deprecating-a-feature-or-behavior)
 -->
 * 阅读有关指标的 [Prometheus 文本格式](https://github.com/prometheus/docs/blob/master/content/docs/instrumenting/exposition_formats.md#text-based-format)
-* 阅读有关 [Kubernetes 弃用策略](/zh/docs/reference/using-api/deprecation-policy/#deprecating-a-feature-or-behavior)
+* 阅读有关 [Kubernetes 弃用策略](/zh-cn/docs/reference/using-api/deprecation-policy/#deprecating-a-feature-or-behavior)
diff --git a/content/zh-cn/docs/concepts/cluster-administration/system-traces.md b/content/zh-cn/docs/concepts/cluster-administration/system-traces.md
new file mode 100644
index 0000000000..2a3860a361
--- /dev/null
+++ b/content/zh-cn/docs/concepts/cluster-administration/system-traces.md
@@ -0,0 +1,157 @@
+---
+title: 追踪 Kubernetes 系统组件
+content_type: concept
+weight: 60
+---
+<!-- 
+---
+title: Traces For Kubernetes System Components
+reviewers:
+- logicalhan
+- lilic
+content_type: concept
+weight: 60
+---
+-->
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.22" state="alpha" >}}
+
+<!-- 
+System component traces record the latency of and relationships between operations in the cluster.
+-->
+系统组件追踪功能记录各个集群操作的时延信息和这些操作之间的关系。
+
+<!-- 
+Kubernetes components emit traces using the
+[OpenTelemetry Protocol](https://github.com/open-telemetry/opentelemetry-specification/blob/main/specification/protocol/otlp.md#opentelemetry-protocol-specification)
+with the gRPC exporter and can be collected and routed to tracing backends using an
+[OpenTelemetry Collector](https://github.com/open-telemetry/opentelemetry-collector#-opentelemetry-collector).
+-->
+Kubernetes 组件基于 gRPC 导出器的
+[OpenTelemetry 协议](https://github.com/open-telemetry/opentelemetry-specification/blob/main/specification/protocol/otlp.md#opentelemetry-protocol-specification)
+发送追踪信息，并用
+[OpenTelemetry Collector](https://github.com/open-telemetry/opentelemetry-collector#-opentelemetry-collector)
+收集追踪信息，再将其转交给追踪系统的后台。
+
+<!-- body -->
+
+<!-- 
+## Trace Collection
+-->
+## 追踪信息的收集 {#trace-collection}
+
+<!-- 
+For a complete guide to collecting traces and using the collector, see
+[Getting Started with the OpenTelemetry Collector](https://opentelemetry.io/docs/collector/getting-started/).
+However, there are a few things to note that are specific to Kubernetes components.
+-->
+关于收集追踪信息、以及使用收集器的完整指南，可参见
+[Getting Started with the OpenTelemetry Collector](https://opentelemetry.io/docs/collector/getting-started/)。
+不过，还有一些特定于 Kubernetes 组件的事项值得注意。
+
+<!-- 
+By default, Kubernetes components export traces using the grpc exporter for OTLP on the
+[IANA OpenTelemetry port](https://www.iana.org/assignments/service-names-port-numbers/service-names-port-numbers.xhtml?search=opentelemetry), 4317.
+As an example, if the collector is running as a sidecar to a Kubernetes component,
+the following receiver configuration will collect spans and log them to standard output:
+-->
+默认情况下，Kubernetes 组件使用 gRPC 的 OTLP 导出器来导出追踪信息，将信息写到
+[IANA OpenTelemetry 端口](https://www.iana.org/assignments/service-names-port-numbers/service-names-port-numbers.xhtml?search=opentelemetry)。
+举例来说，如果收集器以 Kubernetes 组件的边车模式运行，以下接收器配置会收集 spans 信息，并将它们写入到标准输出。
+
+<!-- 
+# Replace this exporter with the exporter for your backend
+-->
+```yaml
+receivers:
+  otlp:
+    protocols:
+      grpc:
+exporters:
+  # 用适合你后端环境的导出器替换此处的导出器
+  logging:
+    logLevel: debug
+service:
+  pipelines:
+    traces:
+      receivers: [otlp]
+      exporters: [logging]
+```
+
+<!-- 
+## Component traces
+
+### kube-apiserver traces
+-->
+## 组件追踪 {#component-traces}
+
+### kube-apiserver 追踪 {#kube-apiserver-traces}
+
+<!-- 
+The kube-apiserver generates spans for incoming HTTP requests, and for outgoing requests
+to webhooks, etcd, and re-entrant requests. It propagates the
+[W3C Trace Context](https://www.w3.org/TR/trace-context/) with outgoing requests
+but does not make use of the trace context attached to incoming requests,
+as the kube-apiserver is often a public endpoint.
+-->
+kube-apiserver 为传入的 HTTP 请求、传出到 webhook 和 etcd 的请求以及重入的请求生成 spans。
+由于 kube-apiserver 通常是一个公开的端点，所以它通过出站的请求传播
+[W3C 追踪上下文](https://www.w3.org/TR/trace-context/)，
+但不使用入站请求的追踪上下文。
+
+<!-- 
+#### Enabling tracing in the kube-apiserver
+-->
+#### 在 kube-apiserver 中启用追踪 {#enabling-tracing-in-the-kube-apiserver}
+
+<!-- 
+To enable tracing, enable the `APIServerTracing`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+on the kube-apiserver. Also, provide the kube-apiserver with a tracing configration file
+with `--tracing-config-file=<path-to-config>`. This is an example config that records
+spans for 1 in 10000 requests, and uses the default OpenTelemetry endpoint:
+-->
+要启用追踪特性，需要启用 kube-apiserver 上的  `APIServerTracing`
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)。
+然后，使用 `--tracing-config-file=<<配置文件路径>` 为 kube-apiserver 提供追踪配置文件。
+下面是一个示例配置，它为万分之一的请求记录 spans，并使用了默认的 OpenTelemetry 端口。
+
+```yaml
+apiVersion: apiserver.config.k8s.io/v1alpha1
+kind: TracingConfiguration
+# default value
+#endpoint: localhost:4317
+samplingRatePerMillion: 100
+```
+
+<!-- 
+For more information about the `TracingConfiguration` struct, see
+[API server config API (v1alpha1)](/docs/reference/config-api/apiserver-config.v1alpha1/#apiserver-k8s-io-v1alpha1-TracingConfiguration).
+-->
+
+有关 TracingConfiguration 结构体的更多信息，请参阅 
+[API 服务器配置 API (v1alpha1)](/zh-cn/docs/reference/config-api/apiserver-config.v1alpha1/#apiserver-k8s-io-v1alpha1-TracingConfiguration)。
+
+<!-- 
+## Stability
+-->
+## 稳定性 {#stability}
+
+<!-- 
+Tracing instrumentation is still under active development, and may change
+in a variety of ways. This includes span names, attached attributes,
+instrumented endpoints, etc. Until this feature graduates to stable,
+there are no guarantees of backwards compatibility for tracing instrumentation.
+-->
+追踪工具仍在积极开发中，未来它会以多种方式发生变化。
+这些变化包括：span 名称、附加属性、检测端点等等。
+此类特性在达到稳定版本之前，不能保证追踪工具的向后兼容性。
+
+## {{% heading "whatsnext" %}}
+
+<!-- 
+* Read about [Getting Started with the OpenTelemetry Collector](https://opentelemetry.io/docs/collector/getting-started/)
+-->
+* 阅读[Getting Started with the OpenTelemetry Collector](https://opentelemetry.io/docs/collector/getting-started/)
diff --git a/content/zh/docs/concepts/configuration/_index.md b/content/zh-cn/docs/concepts/configuration/_index.md
similarity index 100%
rename from content/zh/docs/concepts/configuration/_index.md
rename to content/zh-cn/docs/concepts/configuration/_index.md
diff --git a/content/zh/docs/concepts/configuration/configmap.md b/content/zh-cn/docs/concepts/configuration/configmap.md
similarity index 83%
rename from content/zh/docs/concepts/configuration/configmap.md
rename to content/zh-cn/docs/concepts/configuration/configmap.md
index 7851c880d3..dc6dbf9920 100644
--- a/content/zh/docs/concepts/configuration/configmap.md
+++ b/content/zh-cn/docs/concepts/configuration/configmap.md
@@ -65,7 +65,7 @@ that lets you store configuration for other objects to use. Unlike most
 Kubernetes objects that have a `spec`, a ConfigMap has `data` and `binaryData`
 fields. These fields accept key-value pairs as their values.  Both the `data`
 field and the `binaryData` are optional. The `data` field is designed to
-contain UTF-8 byte sequences while the `binaryData` field is designed to
+contain UTF-8 strings while the `binaryData` field is designed to
 contain binary data as base64-encoded strings.
 
 The name of a ConfigMap must be a valid
@@ -73,15 +73,15 @@ The name of a ConfigMap must be a valid
 -->
 ## ConfigMap 对象
 
-ConfigMap 是一个 API [对象](/zh/docs/concepts/overview/working-with-objects/kubernetes-objects/)，
+ConfigMap 是一个 API [对象](/zh-cn/docs/concepts/overview/working-with-objects/kubernetes-objects/)，
 让你可以存储其他对象所需要使用的配置。
 和其他 Kubernetes 对象都有一个 `spec` 不同的是，ConfigMap 使用 `data` 和
 `binaryData` 字段。这些字段能够接收键-值对作为其取值。`data` 和 `binaryData`
-字段都是可选的。`data` 字段设计用来保存 UTF-8 字节序列，而 `binaryData` 则
-被设计用来保存二进制数据作为 base64 编码的字串。
+字段都是可选的。`data` 字段设计用来保存 UTF-8 字符串，而 `binaryData`
+则被设计用来保存二进制数据作为 base64 编码的字串。
 
 ConfigMap 的名字必须是一个合法的
-[DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
 
 <!--
 Each key under the `data` or the `binaryData` field must consist of
@@ -92,11 +92,11 @@ Starting from v1.19, you can add an `immutable` field to a ConfigMap
 definition to create an [immutable ConfigMap](#configmap-immutable).
 -->
 `data` 或 `binaryData` 字段下面的每个键的名称都必须由字母数字字符或者
-`-`、`_` 或 `.` 组成。在 `data` 下保存的键名不可以与在 `binaryData` 下
-出现的键名有重叠。
+`-`、`_` 或 `.` 组成。在 `data` 下保存的键名不可以与在 `binaryData`
+下出现的键名有重叠。
 
-从 v1.19 开始，你可以添加一个 `immutable` 字段到 ConfigMap 定义中，创建
-[不可变更的 ConfigMap](#configmap-immutable)。
+从 v1.19 开始，你可以添加一个 `immutable` 字段到 ConfigMap 定义中，
+创建[不可变更的 ConfigMap](#configmap-immutable)。
 
 <!--
 ## ConfigMaps and Pods
@@ -104,17 +104,27 @@ definition to create an [immutable ConfigMap](#configmap-immutable).
 You can write a Pod `spec` that refers to a ConfigMap and configures the container(s)
 in that Pod based on the data in the ConfigMap. The Pod and the ConfigMap must be in
 the same {{< glossary_tooltip text="namespace" term_id="namespace" >}}.
+-->
+## ConfigMaps 和 Pods
 
+你可以写一个引用 ConfigMap 的 Pod 的 `spec`，并根据 ConfigMap 中的数据在该
+Pod 中配置容器。这个 Pod 和 ConfigMap 必须要在同一个
+{{< glossary_tooltip text="名字空间" term_id="namespace" >}} 中。
+
+<!--
+The `spec` of a {{< glossary_tooltip text="static Pod" term_id="static-pod" >}} cannot refer to a ConfigMap
+or any other API objects.
+-->
+{{< note >}}
+{{< glossary_tooltip text="静态 Pod" term_id="static-pod" >}} 中的 `spec`
+字段不能引用 ConfigMap 或任何其他 API 对象。
+{{< /note >}}
+
+<!--
 Here's an example ConfigMap that has some keys with single values,
 and other keys where the value looks like a fragment of a configuration
 format.
 -->
-## ConfigMaps 和 Pods
-
-你可以写一个引用 ConfigMap 的 Pod 的 `spec`，并根据 ConfigMap 中的数据
-在该 Pod 中配置容器。这个 Pod 和 ConfigMap 必须要在同一个
-{{< glossary_tooltip text="名字空间" term_id="namespace" >}} 中。
-
 这是一个 ConfigMap 的示例，它的一些键只有一个值，其他键的值看起来像是
 配置的片段格式。
 
@@ -173,10 +183,9 @@ technique also lets you access a ConfigMap in a different namespace.
 Here's an example Pod that uses values from `game-demo` to configure a Pod:
 -->
 第四种方法意味着你必须编写代码才能读取 ConfigMap 和它的数据。然而，
-由于你是直接使用 Kubernetes API，因此只要 ConfigMap 发生更改，你的
-应用就能够通过订阅来获取更新，并且在这样的情况发生的时候做出反应。
-通过直接进入 Kubernetes API，这个技术也可以让你能够获取到不同的名字空间
-里的 ConfigMap。
+由于你是直接使用 Kubernetes API，因此只要 ConfigMap 发生更改，
+你的应用就能够通过订阅来获取更新，并且在这样的情况发生的时候做出反应。
+通过直接进入 Kubernetes API，这个技术也可以让你能够获取到不同的名字空间里的 ConfigMap。
 
 下面是一个 Pod 的示例，它通过使用 `game-demo` 中的值来配置一个 Pod：
 
@@ -233,16 +242,16 @@ definition specifies an `items` array in the `volumes` section.
 If you omit the `items` array entirely, every key  in the ConfigMap becomes
 a file with the same name as the key, and you get 4 files.
 -->
-ConfigMap 不会区分单行属性值和多行类似文件的值，重要的是 Pods 和其他对象
-如何使用这些值。
+ConfigMap 不会区分单行属性值和多行类似文件的值，重要的是 Pods
+和其他对象如何使用这些值。
 
 上面的例子定义了一个卷并将它作为 `/config` 文件夹挂载到 `demo` 容器内，
 创建两个文件，`/config/game.properties` 和
 `/config/user-interface.properties`，
 尽管 ConfigMap 中包含了四个键。
 这是因为 Pod 定义中在 `volumes` 节指定了一个 `items` 数组。
-如果你完全忽略 `items` 数组，则 ConfigMap 中的每个键都会变成一个与
-该键同名的文件，因此你会得到四个文件。
+如果你完全忽略 `items` 数组，则 ConfigMap 中的每个键都会变成一个与该键同名的文件，
+因此你会得到四个文件。
 
 <!--
 ## Using ConfigMaps
@@ -253,9 +262,8 @@ ConfigMaps can hold data that other parts of the system should use for configura
 -->
 ## 使用 ConfigMap   {#using-configmaps}
 
-ConfigMap 可以作为数据卷挂载。ConfigMap 也可被系统的其他组件使用，而
-不一定直接暴露给 Pod。例如，ConfigMap 可以保存系统中其他组件要使用
-的配置数据。
+ConfigMap 可以作为数据卷挂载。ConfigMap 也可被系统的其他组件使用，
+而不一定直接暴露给 Pod。例如，ConfigMap 可以保存系统中其他组件要使用的配置数据。
 
 <!--
 The most common way to use ConfigMaps is to configure settings for
@@ -281,6 +289,8 @@ To consume a ConfigMap in a volume in a Pod:
 -->
 ### 在 Pod 中将 ConfigMap 当做文件使用
 
+要在一个 Pod 的存储卷中使用 ConfigMap:
+
 <!--
 1. Create a ConfigMap or use an existing one. Multiple Pods can reference the
    same ConfigMap.
@@ -298,8 +308,8 @@ To consume a ConfigMap in a volume in a Pod:
 1. 创建一个 ConfigMap 对象或者使用现有的 ConfigMap 对象。多个 Pod 可以引用同一个
    ConfigMap。
 1. 修改 Pod 定义，在 `spec.volumes[]` 下添加一个卷。
-   为该卷设置任意名称，之后将 `spec.volumes[].configMap.name` 字段设置为对
-   你的 ConfigMap 对象的引用。
+   为该卷设置任意名称，之后将 `spec.volumes[].configMap.name` 字段设置为对你的
+   ConfigMap 对象的引用。
 1. 为每个需要该 ConfigMap 的容器添加一个 `.spec.containers[].volumeMounts[]`。
    设置 `.spec.containers[].volumeMounts[].readOnly=true` 并将
    `.spec.containers[].volumeMounts[].mountPath` 设置为一个未使用的目录名，
@@ -339,8 +349,8 @@ own `volumeMounts` block, but only one `.spec.volumes` is needed per ConfigMap.
 -->
 你希望使用的每个 ConfigMap 都需要在 `spec.volumes` 中被引用到。
 
-如果 Pod 中有多个容器，则每个容器都需要自己的 `volumeMounts` 块，但针对
-每个 ConfigMap，你只需要设置一个 `spec.volumes` 块。
+如果 Pod 中有多个容器，则每个容器都需要自己的 `volumeMounts` 块，但针对每个
+ConfigMap，你只需要设置一个 `spec.volumes` 块。
 
 <!--
 #### Mounted ConfigMaps are updated automatically
@@ -357,7 +367,7 @@ the [KubeletConfiguration struct](/docs/reference/config-api/kubelet-config.v1be
 kubelet 组件会在每次周期性同步时检查所挂载的 ConfigMap 是否为最新。
 不过，kubelet 使用的是其本地的高速缓存来获得 ConfigMap 的当前值。
 高速缓存的类型可以通过
-[KubeletConfiguration 结构](https://github.com/kubernetes/kubernetes/blob/{{< param "docsbranch" >}}/staging/src/k8s.io/kubelet/config/v1beta1/types.go)
+[KubeletConfiguration 结构](/zh-cn/docs/reference/config-api/kubelet-config.v1beta1/).
 的 `ConfigMapAndSecretChangeDetectionStrategy` 字段来配置。
 
 <!--
@@ -370,17 +380,24 @@ propagation delay, where the cache propagation delay depends on the chosen cache
 -->
 ConfigMap 既可以通过 watch 操作实现内容传播（默认形式），也可实现基于 TTL
 的缓存，还可以直接经过所有请求重定向到 API 服务器。
-因此，从 ConfigMap 被更新的那一刻算起，到新的主键被投射到 Pod 中去，这一
-时间跨度可能与 kubelet 的同步周期加上高速缓存的传播延迟相等。
+因此，从 ConfigMap 被更新的那一刻算起，到新的主键被投射到 Pod 中去，
+这一时间跨度可能与 kubelet 的同步周期加上高速缓存的传播延迟相等。
 这里的传播延迟取决于所选的高速缓存类型
 （分别对应 watch 操作的传播延迟、高速缓存的 TTL 时长或者 0）。
 
 <!--
-ConfigMaps consumed as environment variables are not updated automatically and require a pod restart. 
+ConfigMaps consumed as environment variables are not updated automatically and require a pod restart.
 -->
 以环境变量方式使用的 ConfigMap 数据不会被自动更新。
 更新这些数据需要重新启动 Pod。
 
+<!--
+A container using a ConfigMap as a [subPath](/docs/concepts/storage/volumes#using-subpath) volume mount will not receive ConfigMap updates.
+-->
+{{< note >}}
+使用 ConfigMap 作为 [subPath](/zh-cn/docs/concepts/storage/volumes#using-subpath) 卷挂载的容器将不会收到 ConfigMap 的更新。
+{{< /note >}}
+
 <!--
 ## Immutable ConfigMaps {#configmap-immutable}
 -->
@@ -394,9 +411,9 @@ individual Secrets and ConfigMaps as immutable. For clusters that extensively us
 (at least tens of thousands of unique ConfigMap to Pod mounts), preventing changes to their
 data has the following advantages:
 -->
-Kubernetes 特性 _不可变更的 Secret 和 ConfigMap_ 提供了一种将各个
-Secret 和 ConfigMap 设置为不可变更的选项。对于大量使用 ConfigMap 的
-集群（至少有数万个各不相同的 ConfigMap 给 Pod 挂载）而言，禁止更改
+Kubernetes 特性 _Immutable Secret 和 ConfigMaps_ 提供了一种将各个
+Secret 和 ConfigMap 设置为不可变更的选项。对于大量使用 ConfigMap 的集群
+（至少有数万个各不相同的 ConfigMap 给 Pod 挂载）而言，禁止更改
 ConfigMap 的数据有以下好处：
 
 <!--
@@ -405,8 +422,8 @@ ConfigMap 的数据有以下好处：
   closing watches for ConfigMaps marked as immutable.
 -->
 - 保护应用，使之免受意外（不想要的）更新所带来的负面影响。
-- 通过大幅降低对 kube-apiserver 的压力提升集群性能，这是因为系统会关闭
-  对已标记为不可变更的 ConfigMap 的监视操作。
+- 通过大幅降低对 kube-apiserver 的压力提升集群性能，
+  这是因为系统会关闭对已标记为不可变更的 ConfigMap 的监视操作。
 
 <!--
 This feature is controlled by the `ImmutableEphemeralVolumes`
@@ -415,8 +432,8 @@ You can create an immutable ConfigMap by setting the `immutable` field to `true`
 For example:
 -->
 此功能特性由 `ImmutableEphemeralVolumes`
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
-来控制。你可以通过将 `immutable` 字段设置为 `true` 创建不可变更的 ConfigMap。
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)来控制。
+你可以通过将 `immutable` 字段设置为 `true` 创建不可变更的 ConfigMap。
 例如：
 
 ```yaml
@@ -437,18 +454,18 @@ to the deleted ConfigMap, it is recommended to recreate these pods.
 -->
 一旦某 ConfigMap 被标记为不可变更，则 _无法_ 逆转这一变化，，也无法更改
 `data` 或 `binaryData` 字段的内容。你只能删除并重建 ConfigMap。
-因为现有的 Pod 会维护一个对已删除的 ConfigMap 的挂载点，建议重新创建
-这些 Pods。
+因为现有的 Pod 会维护一个已被删除的 ConfigMap 的挂载点，建议重新创建这些 Pods。
 
 ## {{% heading "whatsnext" %}}
 
 <!--
 * Read about [Secrets](/docs/concepts/configuration/secret/).
 * Read [Configure a Pod to Use a ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/).
+* Read about [changing a ConfigMap (or any other Kubernetes object)](/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/)
 * Read [The Twelve-Factor App](https://12factor.net/) to understand the motivation for
   separating code from configuration.
 -->
-* 阅读 [Secret](/zh/docs/concepts/configuration/secret/)。
-* 阅读 [配置 Pod 来使用 ConfigMap](/zh/docs/tasks/configure-pod-container/configure-pod-configmap/)。
-* 阅读 [Twelve-Factor 应用](https://12factor.net/) 来了解将代码和配置分开的动机。
-
+* 阅读 [Secret](/zh-cn/docs/concepts/configuration/secret/)。
+* 阅读[配置 Pod 使用 ConfigMap](/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap/)。
+* 阅读[修改 ConfigMap（或任何其他 Kubernetes 对象）](/zh-cn/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/)。
+* 阅读 [Twelve-Factor 应用](https://12factor.net/zh_cn/)来了解将代码和配置分开的动机。
diff --git a/content/zh/docs/concepts/configuration/manage-resources-containers.md b/content/zh-cn/docs/concepts/configuration/manage-resources-containers.md
similarity index 64%
rename from content/zh/docs/concepts/configuration/manage-resources-containers.md
rename to content/zh-cn/docs/concepts/configuration/manage-resources-containers.md
index ddb89be10e..8f2d617886 100644
--- a/content/zh/docs/concepts/configuration/manage-resources-containers.md
+++ b/content/zh-cn/docs/concepts/configuration/manage-resources-containers.md
@@ -1,43 +1,47 @@
 ---
-title: 为容器管理资源
+title: 为 Pod 和容器管理资源
 content_type: concept
 weight: 40
 feature:
   title: 自动装箱
   description: >
-    根据资源需求和其他约束自动放置容器，同时避免影响可用性。将关键性工作负载和尽力而为性质的服务工作负载进行混合放置，以提高资源利用率并节省更多资源。
+    根据资源需求和其他约束自动放置容器，同时避免影响可用性。
+    将关键性的和尽力而为性质的工作负载进行混合放置，以提高资源利用率并节省更多资源。
 ---
 
 <!--
-title: Managing Resources for Containers
+title: Resource Management for Pods and Containers
 content_type: concept
 weight: 40
 feature:
   title: Automatic binpacking
   description: >
-    Automatically places containers based on their resource requirements and other constraints, while not sacrificing availability. Mix critical and best-effort workloads in order to drive up utilization and save even more resources.
+    Automatically places containers based on their resource requirements and other constraints, while not sacrificing availability.
+    Mix critical and best-effort workloads in order to drive up utilization and save even more resources.
 -->
 
 <!-- overview -->
 
 <!--
 When you specify a {{< glossary_tooltip term_id="pod" >}}, you can optionally specify how
-much of each resource a {{< glossary_tooltip text="Container" term_id="container" >}} needs.
+much of each resource a {{< glossary_tooltip text="container" term_id="container" >}} needs.
 The most common resources to specify are CPU and memory (RAM); there are others.
 
-When you specify the resource _request_ for Containers in a Pod, the scheduler uses this
+When you specify the resource _request_ for Containers in a Pod, the
+{{< glossary_tooltip text="kube-scheduler" term_id="kube-scheduler" >}} uses this
 information to decide which node to place the Pod on. When you specify a resource _limit_
 for a Container, the kubelet enforces those limits so that the running container is not
 allowed to use more of that resource than the limit you set. The kubelet also reserves
 at least the _request_ amount of that system resource specifically for that container
 to use.
 -->
-
 当你定义 {{< glossary_tooltip text="Pod" term_id="pod" >}} 时可以选择性地为每个
 {{< glossary_tooltip text="容器" term_id="container" >}}设定所需要的资源数量。
 最常见的可设定资源是 CPU 和内存（RAM）大小；此外还有其他类型的资源。
 
-当你为 Pod 中的 Container 指定了资源 __请求__ 时，调度器就利用该信息决定将 Pod 调度到哪个节点上。
+当你为 Pod 中的 Container 指定了资源 __请求__ 时，
+{{< glossary_tooltip text="kube-scheduler" term_id="kube-scheduler" >}}
+就利用该信息决定将 Pod 调度到哪个节点上。
 当你还为 Container 指定了资源 __约束__ 时，kubelet 就可以确保运行的容器不会使用超出所设约束的资源。
 kubelet 还会为容器预留所 __请求__ 数量的系统资源，供其使用。
 
@@ -65,7 +69,7 @@ more RAM.
 运行，那么该容器就可以尝试使用更多的内存。
 
 <!--
-If you set a `memory` limit of 4GiB for that Container, the kubelet (and
+If you set a `memory` limit of 4GiB for that container, the kubelet (and
 {{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}) enforce the limit.
 The runtime prevents the container from using more than the configured resource limit. For example:
 when a process in the container tries to consume more than the allowed amount of memory,
@@ -88,15 +92,13 @@ runtimes can have different ways to implement the same restrictions.
 
 {{< note >}}
 <!--
-If a Container specifies its own memory limit, but does not specify a memory request, Kubernetes
-automatically assigns a memory request that matches the limit. Similarly, if a Container specifies its own
-CPU limit, but does not specify a CPU request, Kubernetes automatically assigns a CPU request that matches
-the limit.
+If you specify a limit for a resource, but do not specify any request, and no admission-time
+mechanism has applied a default request for that resource, then Kubernetes copies the limit
+you specified and uses it as the requested value for the resource.
 -->
-如果某 Container 设置了自己的内存限制但未设置内存请求，Kubernetes
-自动为其设置与内存限制相匹配的请求值。类似的，如果某 Container 设置了
-CPU 限制值但未设置 CPU 请求值，则 Kubernetes 自动为其设置 CPU 请求
-并使之与 CPU 限制值匹配。
+如果你为某个资源指定了限制，但不指定请求，
+并且没有应用准入时机制为该资源设置默认请求，
+然后 Kubernetes 复制你所指定的限制值，将其用作资源的请求值。
 {{< /note >}}
 
 <!--
@@ -105,7 +107,7 @@ CPU 限制值但未设置 CPU 请求值，则 Kubernetes 自动为其设置 CPU
 *CPU* and *memory* are each a *resource type*. A resource type has a base unit.
 CPU represents compute processing and is specified in units of [Kubernetes CPUs](#meaning-of-cpu).
 Memory is specified in units of bytes.
-If you're using Kubernetes v1.14 or newer, you can specify _huge page_ resources.
+For Linux workloads, you can specify _huge page_ resources.
 Huge pages are a Linux-specific feature where the node kernel allocates blocks of memory
 that are much larger than the default page size.
 
@@ -115,10 +117,10 @@ total of 80 MiB), that allocation fails.
 -->
 ## 资源类型  {#resource-types}
 
-*CPU* 和*内存*都是*资源类型*。每种资源类型具有其基本单位。
+*CPU* 和 *内存* 都是 *资源类型*。每种资源类型具有其基本单位。
 CPU 表达的是计算处理能力，其单位是 [Kubernetes CPUs](#meaning-of-cpu)。
 内存的单位是字节。
-如果你使用的是 Kubernetes v1.14 或更高版本，则可以指定巨页（Huge Page）资源。
+对于 Linux 负载，则可以指定巨页（Huge Page）资源。
 巨页是 Linux 特有的功能，节点内核在其中分配的内存块比默认页大小大得多。
 
 例如，在默认页面大小为 4KiB 的系统上，你可以指定约束 `hugepages-2Mi: 80Mi`。
@@ -141,16 +143,21 @@ consumed. They are distinct from
 [Services](/docs/concepts/services-networking/service/) are objects that can be read and modified
 through the Kubernetes API server.
 -->
-CPU 和内存统称为*计算资源*，或简称为*资源*。
+CPU 和内存统称为“计算资源”，或简称为“资源”。
 计算资源的数量是可测量的，可以被请求、被分配、被消耗。
-它们与 [API 资源](/zh/docs/concepts/overview/kubernetes-api/) 不同。
-API 资源（如 Pod 和 [Service](/zh/docs/concepts/services-networking/service/)）是可通过
+它们与 [API 资源](/zh-cn/docs/concepts/overview/kubernetes-api/) 不同。
+API 资源（如 Pod 和 [Service](/zh-cn/docs/concepts/services-networking/service/)）是可通过
 Kubernetes API 服务器读取和修改的对象。
 
 <!--
-## Resource requests and limits of Pod and Container
+## Resource requests and limits of Pod and container
 
-Each Container of a Pod can specify one or more of the following:
+For each container, you can specify resource limits and requests,
+including the following:
+-->
+## Pod 和 容器的资源请求和约束
+
+针对每个容器，你都可以指定其资源约束和请求，包括如下选项：
 
 * `spec.containers[].resources.limits.cpu`
 * `spec.containers[].resources.limits.memory`
@@ -159,93 +166,114 @@ Each Container of a Pod can specify one or more of the following:
 * `spec.containers[].resources.requests.memory`
 * `spec.containers[].resources.requests.hugepages-<size>`
 
-Although requests and limits can only be specified on individual Containers, it
-is convenient to talk about Pod resource requests and limits. A
-*Pod resource request/limit* for a particular resource type is the sum of the
-resource requests/limits of that type for each Container in the Pod.
+<!--
+Although you can only specify requests and limits for individual containers,
+it is also useful to think about the overall resource requests and limits for
+a Pod.
+A
+For a particular resource, a *Pod resource request/limit* is the sum of the
+resource requests/limits of that type for each container in the Pod.
 -->
-
-## Pod 和 容器的资源请求和约束
-
-Pod 中的每个容器都可以指定以下的一个或者多个值：
-
-- `spec.containers[].resources.limits.cpu`
-- `spec.containers[].resources.limits.memory`
-- `spec.containers[].resources.limits.hugepages-<size>`
-- `spec.containers[].resources.requests.cpu`
-- `spec.containers[].resources.requests.memory`
-- `spec.containers[].resources.requests.hugepages-<size>`
-
-尽管请求和限制值只能在单个容器上指定，我们仍可方便地计算出 Pod 的资源请求和约束。
-Pod 对特定资源类型的请求/约束值是 Pod 中各容器对该类型资源的请求/约束值的总和。
+尽管你只能逐个容器地指定请求和限制值，考虑 Pod 的总体资源请求和约束也是有用的。
+对特定资源而言，Pod 的资源请求/约束值是 Pod 中各容器对该类型资源的请求/约束值的总和。
 
 <!--
 ## Resource units in Kubernetes
 
-### Meaning of CPU
+### CPU resource units {#meaning-of-cpu}
 
 Limits and requests for CPU resources are measured in *cpu* units.
-One cpu, in Kubernetes, is equivalent to **1 vCPU/Core** for cloud providers and **1 hyperthread** on bare-metal Intel processors.
-
-Fractional requests are allowed. A Container with
-`spec.containers[].resources.requests.cpu` of `0.5` is guaranteed half as much
-CPU as one that asks for 1 CPU. The expression `0.1` is equivalent to the
-expression `100m`, which can be read as "one hundred millicpu". Some people say
-"one hundred millicores", and this is understood to mean the same thing. A
-request with a decimal point, like `0.1`, is converted to `100m` by the API, and
-precision finer than `1m` is not allowed. For this reason, the form `100m` might
-be preferred.
-CPU is always requested as an absolute quantity, never as a relative quantity;
-0.1 is the same amount of CPU on a single-core, dual-core, or 48-core machine.
+In Kubernetes, 1 CPU unit is equivalent to **1 physical CPU core**,
+or **1 virtual core**,  depending on whether the node is a physical host
+or a virtual machine running inside a physical machine.
 -->
 ## Kubernetes 中的资源单位  {#resource-units-in-kubernetes}
 
-### CPU 的含义 {#meaning-of-cpu}
+### CPU 资源单位    {#meaning-of-cpu}
 
-CPU 资源的约束和请求以 *cpu* 为单位。
-
-Kubernetes 中的一个 cpu 等于云平台上的 **1 个 vCPU/核**和裸机 Intel
-处理器上的 **1 个超线程 **。
-
-你也可以表达带小数 CPU 的请求。`spec.containers[].resources.requests.cpu` 为 0.5
-的 Container 肯定能够获得请求 1 CPU 的容器的一半 CPU 资源。表达式 `0.1` 等价于表达式 `100m`，
-可以看作 “100 millicpu”。有些人说成是“一百毫 cpu”，其实说的是同样的事情。
-具有小数点（如 `0.1`）的请求由 API 转换为 `100m`；最大精度是 `1m`。
-因此，或许你应该优先考虑使用 `100m` 的形式。
-
-CPU 总是按绝对数量来请求的，不可以使用相对数量；
-0.1 的 CPU 在单核、双核、48 核的机器上的意义是一样的。
+CPU 资源的约束和请求以 “cpu” 为单位。
+在 Kubernetes 中，一个 CPU 等于**1 个物理 CPU 核** 或者 **一个虚拟核**，
+取决于节点是一台物理主机还是运行在某物理主机上的虚拟机。
 
 <!--
-## Meaning of memory
+Fractional requests are allowed. When you define a container with
+`spec.containers[].resources.requests.cpu` set to `0.5`, you are requesting half
+as much CPU time compared to if you asked for `1.0` CPU.
+For CPU resource units, the [quantity](/docs/reference/kubernetes-api/common-definitions/quantity/) expression `0.1` is equivalent to the
+expression `100m`, which can be read as "one hundred millicpu". Some people say
+"one hundred millicores", and this is understood to mean the same thing.
+-->
+你也可以表达带小数 CPU 的请求。
+当你定义一个容器，将其 `spec.containers[].resources.requests.cpu` 设置为 0.5 时，
+你所请求的 CPU 是你请求 `1.0` CPU 时的一半。
+对于 CPU 资源单位，[数量](/zh-cn/docs/reference/kubernetes-api/common-definitions/quantity/)
+表达式 `0.1` 等价于表达式 `100m`，可以看作 “100 millicpu”。
+有些人说成是“一百毫核”，其实说的是同样的事情。
+
+<!--
+CPU resource is always specified as an absolute amount of resource, never as a relative amount. For example,
+`500m` CPU represents the roughly same amount of computing power whether that container
+runs on a single-core, dual-core, or 48-core machine.
+-->
+CPU 资源总是设置为资源的绝对数量而非相对数量值。
+例如，无论容器运行在单核、双核或者 48-核的机器上，`500m` CPU 表示的是大约相同的计算能力。
+
+{{< note >}}
+<!--
+Kubernetes doesn't allow you to specify CPU resources with a precision finer than
+`1m`. Because of this, it's useful to specify CPU units less than `1.0` or `1000m` using
+the milliCPU form; for example, `5m` rather than `0.005`.
+-->
+Kubernetes 不允许设置精度小于 `1m` 的 CPU 资源。
+因此，当 CPU 单位小于 `1` 或 `1000m` 时，使用毫核的形式是有用的；
+例如 `5m` 而不是 `0.005`。
+{{< /note >}}
+
+<!--
+### Memory resource units {#meaning-of-memory}
 
 Limits and requests for `memory` are measured in bytes. You can express memory as
-a plain integer or as a fixed-point number using one of these suffixes:
-E, P, T, G, M, K. You can also use the power-of-two equivalents: Ei, Pi, Ti, Gi,
+a plain integer or as a fixed-point number using one of these
+[quantity](/docs/reference/kubernetes-api/common-definitions/quantity/) suffixes:
+E, P, T, G, M, k. You can also use the power-of-two equivalents: Ei, Pi, Ti, Gi,
 Mi, Ki. For example, the following represent roughly the same value:
 -->
-## 内存的含义  {#meaning-of-memory}
+## 内存资源单位      {#meaning-of-memory}
 
-内存的约束和请求以字节为单位。你可以使用以下后缀之一以一般整数或定点数字形式来表示内存：
-E、P、T、G、M、k。你也可以使用对应的 2 的幂数：Ei、Pi、Ti、Gi、Mi、Ki。
+`memory` 的约束和请求以字节为单位。
+你可以使用普通的整数，或者带有以下
+[数量](/zh-cn/docs/reference/kubernetes-api/common-definitions/quantity/)后缀
+的定点数字来表示内存：E、P、T、G、M、k。
+你也可以使用对应的 2 的幂数：Ei、Pi、Ti、Gi、Mi、Ki。
 例如，以下表达式所代表的是大致相同的值：
 
 ```
-128974848、129e6、129M、123Mi
+128974848、129e6、129M、128974848000m、123Mi
 ```
 
 <!--
-Here's an example.
-The following Pod has two Containers. Each Container has a request of 0.25 cpu
-and 64MiB (2<sup>26</sup> bytes) of memory. Each Container has a limit of 0.5
-cpu and 128MiB of memory. You can say the Pod has a request of 0.5 cpu and 128
-MiB of memory, and a limit of 1 cpu and 256MiB of memory.
+Pay attention to the case of the suffixes. If you request `400m` of memory, this is a request
+for 0.4 bytes. Someone who types that probably meant to ask for 400 mebibytes (`400Mi`)
+or 400 megabytes (`400M`).
 -->
-下面是个例子。
+请注意后缀的大小写。如果你请求 `400m` 临时存储，实际上所请求的是 0.4 字节。
+如果有人这样设定资源请求或限制，可能他的实际想法是申请 400Mi 字节（`400Mi`）
+或者 400M 字节。
 
-以下 Pod 有两个 Container。每个 Container 的请求为 0.25 cpu 和 64MiB（2<sup>26</sup> 字节）内存，
-每个容器的资源约束为 0.5 cpu 和 128MiB 内存。
-你可以认为该 Pod 的资源请求为 0.5 cpu 和 128 MiB 内存，资源限制为 1 cpu 和 256MiB 内存。
+<!--
+## Container resources example {#example-1}
+
+The following Pod has two containers. Both containers are defined with a request for
+0.25 CPU
+and 64MiB (2<sup>26</sup> bytes) of memory. Each container has a limit of 0.5
+CPU and 128MiB of memory. You can say the Pod has a request of 0.5 CPU and 128
+MiB of memory, and a limit of 1 CPU and 256MiB of memory.
+-->
+## 容器资源示例     {#example-1}
+
+以下 Pod 有两个容器。每个容器的请求为 0.25 CPU 和 64MiB（2<sup>26</sup> 字节）内存，
+每个容器的资源约束为 0.5 CPU 和 128MiB 内存。
+你可以认为该 Pod 的资源请求为 0.5 CPU 和 128 MiB 内存，资源限制为 1 CPU 和 256MiB 内存。
 
 ```yaml
 apiVersion: v1
@@ -256,9 +284,6 @@ spec:
   containers:
   - name: app
     image: images.my-company.example/app:v4
-    env:
-    - name: MYSQL_ROOT_PASSWORD
-      value: "password"
     resources:
       requests:
         memory: "64Mi"
@@ -284,7 +309,8 @@ When you create a Pod, the Kubernetes scheduler selects a node for the Pod to
 run on. Each node has a maximum capacity for each of the resource types: the
 amount of CPU and memory it can provide for Pods. The scheduler ensures that,
 for each resource type, the sum of the resource requests of the scheduled
-Containers is less than the capacity of the node. Note that although actual memory
+containers is less than the capacity of the node.
+Note that although actual memory
 or CPU resource usage on nodes is very low, the scheduler still refuses to place
 a Pod on a node if the capacity check fails. This protects against a resource
 shortage on a node when resource usage later increases, for example, during a
@@ -300,97 +326,102 @@ daily peak in request rate.
 当稍后节点上资源用量增加，例如到达请求率的每日峰值区间时，节点上也不会出现资源不足的问题。
 
 <!--
-## How Pods with resource limits are run
+## How Kubernetes applies resource requests and limits {#how-pods-with-resource-limits-are-run}
 
-When the kubelet starts a Container of a Pod, it passes the CPU and memory limits
-to the container runtime.
+When the kubelet starts a container of a Pod, the kubelet passes that container's
+requests and limits for memory and CPU to the container runtime.
 
-When using Docker:
+On Linux, the container runtime typically configures
+kernel {{< glossary_tooltip text="cgroups" term_id="cgroup" >}} that apply and enforce the
+limits you defined.
 -->
-## 带资源约束的 Pod 如何运行
+## Kubernetes 应用资源请求与约束的方式 {#how-pods-with-resource-limits-are-run}
 
-当 kubelet 启动 Pod 中的 Container 时，它会将 CPU 和内存约束信息传递给容器运行时。
+当 kubelet 启动 Pod 中的容器时，它会将容器的 CPU 和内存请求与约束信息传递给容器运行时。
 
-当使用 Docker 时：
+在 Linux 系统上，容器运行时通常会配置内核
+{{< glossary_tooltip text="CGroups" term_id="cgroup" >}}，负责应用并实施所定义的请求。
 
 <!--
-- The `spec.containers[].resources.requests.cpu` is converted to its core value,
-  which is potentially fractional, and multiplied by 1024. The greater of this number
-  or 2 is used as the value of the
-  [`--cpu-shares`](https://docs.docker.com/engine/reference/run/#cpu-share-constraint)
-  flag in the `docker run` command.
-
-- The `spec.containers[].resources.limits.cpu` is converted to its millicore value and
-  multiplied by 100. The resulting value is the total amount of CPU time that a container can use
-  every 100ms. A container cannot use more than its share of CPU time during this interval.
-
-  The default quota period is 100ms. The minimum resolution of CPU quota is 1ms.
-
-- The `spec.containers[].resources.limits.memory` is converted to an integer, and
-  used as the value of the
-  [`--memory`](https://docs.docker.com/engine/reference/run/#/user-memory-constraints)
-  flag in the `docker run` command.
+- The CPU limit defines a hard ceiling on how much CPU time that the container can use.
+  During each scheduling interval (time slice), the Linux kernel checks to see if this
+  limit is exceeded; if so, the kernel waits before allowing that cgroup to resume execution.
 -->
-
-- `spec.containers[].resources.requests.cpu` 先被转换为可能是小数的基础值，再乘以 1024。
-  这个数值和 2 的较大者用作 `docker run` 命令中的
-  [`--cpu-shares`](https://docs.docker.com/engine/reference/run/#/cpu-share-constraint)
-  标志的值。
-- `spec.containers[].resources.limits.cpu` 先被转换为 millicore 值，再乘以 100。
-  其结果就是每 100 毫秒内容器可以使用的 CPU 时间总量。在此期间（100ms），容器所使用的 CPU
-  时间不会超过它被分配的时间。
-
-  {{< note >}}
-  默认的配额（Quota）周期为 100 毫秒。CPU 配额的最小精度为 1 毫秒。
-  {{</ note >}}
-
-- `spec.containers[].resources.limits.memory` 被转换为整数值，作为 `docker run` 命令中的
-  [`--memory`](https://docs.docker.com/engine/reference/run/#/user-memory-constraints)
-  参数值。
+- CPU 约束值定义的是容器可使用的 CPU 时间的硬性上限。
+  在每个调度周期（时间片）期间，Linux 内核检查是否已经超出该约束值；
+  内核会在允许该 cgroup 恢复执行之前会等待。
+<!--
+- The CPU request typically defines a weighting. If several different containers (cgroups)
+  want to run on a contended system, workloads with larger CPU requests are allocated more
+  CPU time than workloads with small requests.
+-->
+- CPU 请求值定义的是一个权重值。如果若干不同的容器（CGroups）需要在一个共享的系统上竞争运行，
+  CPU 请求值大的负载会获得比请求值小的负载更多的 CPU 时间。
+<!--
+- The memory request is mainly used during (Kubernetes) Pod scheduling. On a node that uses
+  cgroups v2, the container runtime might use the memory request as a hint to set
+  `memory.min` and `memory.low`.
+-->
+- 内存请求值主要用于（Kubernetes）Pod 调度期间。在一个启用了 CGroup v2 的节点上，
+  容器运行时可能会使用内存请求值作为设置 `memory.min` 和 `memory.low` 的提示值。
+<!--
+- The memory limit defines a memory limit for that cgroup. If the container tries to
+  allocate more memory than this limit, the Linux kernel out-of-memory subsystem activates
+  and, typically, intervenes by stopping one of the processes in the container that tried
+  to allocate memory. If that process is the container's PID 1, and the container is marked
+  as restartable, Kubernetes restarts the container.
+-->
+- 内存约束值定义的是 CGroup 的内存约束。如果容器尝试分配的内存量超出约束值，
+  则 Linux 内核的内存不足处理子系统会被激活，并停止尝试分配内存的容器中的某个进程。
+  如果该进程在容器中 PID 为 1，而容器被标记为可重新启动，则 Kubernetes
+  会重新启动该容器。
+<!--
+- The memory limit for the Pod or container can also apply to pages in memory backed
+  volumes, such as an `emptyDir`. The kubelet tracks `tmpfs` emptyDir volumes as container
+  memory use, rather than as local ephemeral storage.
+-->
+- Pod 或容器的内存约束值也适用于通过内存供应的卷，例如 `emptyDir` 卷。
+  kubelet 会跟踪 `tmpfs` 形式的 emptyDir 卷用量，将其作为容器的内存用量，
+  而不是临时存储用量。
 
 <!--
-If a Container exceeds its memory limit, it might be terminated. If it is
-restartable, the kubelet will restart it, as with any other type of runtime
-failure.
+If a container exceeds its memory request, and the node that it runs on becomes short of
+memory overall, it is likely that the Pod the container belongs to will be
+{{< glossary_tooltip text="evicted" term_id="eviction" >}}.
 
-If a Container exceeds its memory request, it is likely that its Pod will
-be evicted whenever the node runs out of memory.
+A container might or might not be allowed to exceed its CPU limit for extended periods of time.
+However, container runtimes don't terminate Pods or containers for excessive CPU usage.
 
-A Container might or might not be allowed to exceed its CPU limit for extended
-periods of time. However, it will not be killed for excessive CPU usage.
-
-To determine whether a Container cannot be scheduled or is being killed due to
-resource limits, see the
-[Troubleshooting](#troubleshooting) section.
+To determine whether a container cannot be scheduled or is being killed due to resource limits,
+see the [Troubleshooting](#troubleshooting) section.
 -->
-如果 Container 超过其内存限制，则可能会被终止。如果容器可重新启动，则与所有其他类型的
-运行时失效一样，kubelet 将重新启动容器。
+如果某容器内存用量超过其内存请求值并且所在节点内存不足时，容器所处的 Pod
+可能被{{< glossary_tooltip text="逐出" term_id="eviction" >}}.
 
-如果一个 Container 内存用量超过其内存请求值，那么当节点内存不足时，容器所处的 Pod 可能被逐出。
+每个容器可能被允许也可能不被允许使用超过其 CPU 约束的处理时间。
+但是，容器运行时不会由于 CPU 使用率过高而杀死 Pod 或容器。
 
-每个 Container 可能被允许也可能不被允许使用超过其 CPU 约束的处理时间。
-但是，容器不会由于 CPU 使用率过高而被杀死。
-
-要确定 Container 是否会由于资源约束而无法调度或被杀死，请参阅[疑难解答](#troubleshooting) 部分。
+要确定某容器是否会由于资源约束而无法调度或被杀死，请参阅[疑难解答](#troubleshooting)节。
 
 <!--
 ## Monitoring compute & memory resource usage
 
-The resource usage of a Pod is reported as part of the Pod status.
+The kubelet reports the resource usage of a Pod as part of the Pod
+[`status`](/docs/concepts/overview/working-with-objects/kubernetes-objects/#object-spec-and-status).
 
-If optional [tools for monitoring](/docs/tasks/debug-application-cluster/resource-usage-monitoring/)
+If optional [tools for monitoring](/docs/tasks/debug/debug-cluster/resource-usage-monitoring/)
 are available in your cluster, then Pod resource usage can be retrieved either
-from the [Metrics API](/docs/tasks/debug-application-cluster/resource-metrics-pipeline/#the-metrics-api)
+from the [Metrics API](/docs/tasks/debug/debug-cluster/resource-metrics-pipeline/#metrics-api)
 directly or from your monitoring tools.
 -->
 ## 监控计算和内存资源用量
 
-Pod 的资源使用情况是作为 Pod 状态的一部分来报告的。
+kubelet 会将 Pod 的资源使用情况作为 Pod
+[`status`](/zh-cn/docs/concepts/overview/working-with-objects/kubernetes-objects/#object-spec-and-status)
+的一部分来报告的。
 
-如果为集群配置了可选的
-[监控工具](/zh/docs/tasks/debug-application-cluster/resource-usage-monitoring/)，
-则可以直接从
-[指标 API](/zh/docs/tasks/debug-application-cluster/resource-metrics-pipeline/#the-metrics-api) 
+如果为集群配置了可选的[监控工具](/zh-cn/docs/tasks/debug/debug-cluster/resource-usage-monitoring/)，
+则可以直接从[指标 API](/zh-cn/docs/tasks/debug/debug-cluster/resource-metrics-pipeline/#metrics-api) 
 或者监控工具获得 Pod 的资源使用情况。
 
 <!--
@@ -408,6 +439,7 @@ mount [`emptyDir`](https://kubernetes.io/docs/concepts/storage/volumes/#emptydir
 ## 本地临时存储   {#local-ephemeral-storage}
 
 <!-- feature gate LocalStorageCapacityIsolation -->
+
 {{< feature-state for_k8s_version="v1.10" state="beta" >}}
 
 节点通常还可以具有本地的临时性存储，由本地挂接的可写入设备或者有时也用 RAM
@@ -416,7 +448,7 @@ mount [`emptyDir`](https://kubernetes.io/docs/concepts/storage/volumes/#emptydir
 
 Pods 通常可以使用临时性本地存储来实现缓冲区、保存日志等功能。
 kubelet 可以为使用本地临时存储的 Pods 提供这种存储空间，允许后者使用
-[`emptyDir`](/zh/docs/concepts/storage/volumes/#emptydir) 类型的
+[`emptyDir`](/zh-cn/docs/concepts/storage/volumes/#emptydir) 类型的
 {{< glossary_tooltip term_id="volume" text="卷" >}}将其挂载到容器中。
 
 <!--
@@ -424,7 +456,7 @@ The kubelet also uses this kind of storage to hold
 [node-level container logs](/docs/concepts/cluster-administration/logging/#logging-at-the-node-level),
 container images, and the writable layers of running containers.
 
-If a node fails, the data in its ephemeral storage can be lost.  
+If a node fails, the data in its ephemeral storage can be lost.
 Your applications cannot expect any performance SLAs (disk IOPS for example)
 from local ephemeral storage.
 
@@ -433,7 +465,7 @@ of ephemeral local storage a Pod can consume.
 -->
 
 kubelet 也使用此类存储来保存
-[节点层面的容器日志](/zh/docs/concepts/cluster-administration/logging/#logging-at-the-node-level)，
+[节点层面的容器日志](/zh-cn/docs/concepts/cluster-administration/logging/#logging-at-the-node-level)，
 容器镜像文件、以及运行中容器的可写入层。
 
 {{< caution >}}
@@ -470,7 +502,7 @@ Kubernetes 有两种方式支持节点上配置本地临时性存储：
 （kubelet）来保存数据的。
 
 kubelet 也会生成
-[节点层面的容器日志](/zh/docs/concepts/cluster-administration/logging/#logging-at-the-node-level)，
+[节点层面的容器日志](/zh-cn/docs/concepts/cluster-administration/logging/#logging-at-the-node-level)，
 并按临时性本地存储的方式对待之。
 
 <!--
@@ -521,7 +553,7 @@ as you like.
 无关的其他系统日志）；这个文件系统还可以是根文件系统。
 
 kubelet 也将
-[节点层面的容器日志](/zh/docs/concepts/cluster-administration/logging/#logging-at-the-node-level)
+[节点层面的容器日志](/zh-cn/docs/concepts/cluster-administration/logging/#logging-at-the-node-level)
 写入到第一个文件系统中，并按临时性本地存储的方式对待之。
 
 同时你使用另一个由不同逻辑存储设备支持的文件系统。在这种配置下，你会告诉
@@ -555,7 +587,7 @@ than as local ephemeral storage.
 kubelet 能够度量其本地存储的用量。实现度量机制的前提是：
 
 - `LocalStorageCapacityIsolation`
-  [特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
+  [特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)
   被启用（默认状态），并且
 - 你已经对节点进行了配置，使之使用所支持的本地临时性储存配置方式之一
 
@@ -568,43 +600,53 @@ kubelet 会将 `tmpfs` emptyDir 卷的用量当作容器内存用量，而不是
 <!--
 ### Setting requests and limits for local ephemeral storage
 
-You can use _ephemeral-storage_ for managing local ephemeral storage. Each Container of a Pod can specify one or more of the following:
+You can use `ephemeral-storage` for managing local ephemeral storage. Each
+container of a Pod can specify either or both of the following:
 
 * `spec.containers[].resources.limits.ephemeral-storage`
 * `spec.containers[].resources.requests.ephemeral-storage`
 
-Limits and requests for `ephemeral-storage` are measured in bytes. You can express storage as
-a plain integer or as a fixed-point number using one of these suffixes:
+Limits and requests for `ephemeral-storage` are measured in quantities.
+You can express storage as a plain integer or as a fixed-point number using one of these suffixes:
 E, P, T, G, M, K. You can also use the power-of-two equivalents: Ei, Pi, Ti, Gi,
 Mi, Ki. For example, the following represent roughly the same value:
-
-```shell
-128974848, 129e6, 129M, 123Mi
-```
 -->
 ### 为本地临时性存储设置请求和约束值
 
-你可以使用 _ephemeral-storage_ 来管理本地临时性存储。
-Pod 中的每个 Container 可以设置以下属性：
+你可以使用 `ephemeral-storage` 来管理本地临时性存储。
+Pod 中的每个容器可以设置以下属性：
 
 * `spec.containers[].resources.limits.ephemeral-storage`
 * `spec.containers[].resources.requests.ephemeral-storage`
 
-`ephemeral-storage` 的请求和约束值是按字节计量的。你可以使用一般整数或者定点数字
+`ephemeral-storage` 的请求和约束值是按量纲计量的。你可以使用一般整数或者定点数字
 加上下面的后缀来表达存储量：E、P、T、G、M、K。
 你也可以使用对应的 2 的幂级数来表达：Ei、Pi、Ti、Gi、Mi、Ki。
 例如，下面的表达式所表达的大致是同一个值：
 
-```
-128974848, 129e6, 129M, 123Mi
-```
+- `128974848`
+- `129e6`
+- `129M`
+- `123Mi`
 
 <!--
-In the following example, the Pod has two Containers. Each Container has a request of 2GiB of local ephemeral storage. Each Container has a limit of 4GiB of local ephemeral storage. Therefore, the Pod has a request of 4GiB of local ephemeral storage, and a limit of 8GiB of local ephemeral storage.
+Pay attention to the case of the suffixes. If you request `400m` of ephemeral-storage, this is a request
+for 0.4 bytes. Someone who types that probably meant to ask for 400 mebibytes (`400Mi`)
+or 400 megabytes (`400M`).
+-->
+请注意后缀的大小写。如果你请求 `400m` 临时存储，实际上所请求的是 0.4 字节。
+如果有人这样设定资源请求或限制，可能他的实际想法是申请 400Mi 字节（`400Mi`）
+或者 400M 字节。
+
+<!--
+In the following example, the Pod has two containers. Each container has a request of
+2GiB of local ephemeral storage. Each container has a limit of 4GiB of local ephemeral
+storage. Therefore, the Pod has a request of 4GiB of local ephemeral storage, and a
+limit of 8GiB of local ephemeral storage.
 -->
 
-在下面的例子中，Pod 包含两个 Container。每个 Container 请求 2 GiB 大小的本地临时性存储。
-每个 Container 都设置了 4 GiB 作为其本地临时性存储的约束值。
+在下面的例子中，Pod 包含两个容器。每个容器请求 2 GiB 大小的本地临时性存储。
+每个容器都设置了 4 GiB 作为其本地临时性存储的约束值。
 因此，整个 Pod 的本地临时性存储请求是 4 GiB，且其本地临时性存储的约束为 8 GiB。
 
 ```yaml
@@ -621,6 +663,9 @@ spec:
         ephemeral-storage: "2Gi"
       limits:
         ephemeral-storage: "4Gi"
+    volumeMounts:
+    - name: ephemeral
+      mountPath: "/tmp"
   - name: log-aggregator
     image: images.my-company.example/log-aggregator:v6
     resources:
@@ -628,15 +673,23 @@ spec:
         ephemeral-storage: "2Gi"
       limits:
         ephemeral-storage: "4Gi"
+    volumeMounts:
+    - name: ephemeral
+      mountPath: "/tmp"
+  volumes:
+    - name: ephemeral
+      emptyDir: {}
 ```
 
 <!--
 ### How Pods with ephemeral-storage requests are scheduled
 
 When you create a Pod, the Kubernetes scheduler selects a node for the Pod to
-run on. Each node has a maximum amount of local ephemeral storage it can provide for Pods. For more information, see [Node Allocatable](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable).
+run on. Each node has a maximum amount of local ephemeral storage it can provide for Pods.
+For more information, see
+[Node Allocatable](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable).
 
-The scheduler ensures that the sum of the resource requests of the scheduled Containers is less than the capacity of the node.
+The scheduler ensures that the sum of the resource requests of the scheduled containers is less than the capacity of the node.
 -->
 
 ### 带临时性存储的 Pods 的调度行为
@@ -644,10 +697,10 @@ The scheduler ensures that the sum of the resource requests of the scheduled Con
 当你创建一个 Pod 时，Kubernetes 调度器会为 Pod 选择一个节点来运行之。
 每个节点都有一个本地临时性存储的上限，是其可提供给 Pods 使用的总量。
 欲了解更多信息，可参考
-[节点可分配资源](/zh/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)
+[节点可分配资源](/zh-cn/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)
 节。
 
-调度器会确保所调度的 Containers 的资源请求总和不会超出节点的资源容量。
+调度器会确保所调度的容器的资源请求总和不会超出节点的资源容量。
 
 <!--
 ### Ephemeral storage consumption management {#resource-emphemeralstorage-consumption}
@@ -662,7 +715,7 @@ kubelet measures storage use in:
 If a Pod is using more ephemeral storage than you allow it to, the kubelet
 sets an eviction signal that triggers Pod eviction.
 
-For container-level isolation, if a Container's writable layer and log
+For container-level isolation, if a container's writable layer and log
 usage exceeds its storage limit, the kubelet marks the Pod for eviction.
 
 For pod-level isolation the kubelet works out an overall Pod storage limit by
@@ -787,7 +840,7 @@ Kubernetes does not use them.
 Quotas are faster and more accurate than directory scanning. When a
 directory is assigned to a project, all files created under a
 directory are created in that project, and the kernel merely has to
-keep track of how many blocks are in use by files in that project.  
+keep track of how many blocks are in use by files in that project.
 If a file is created and deleted, but has an open file descriptor,
 it continues to consume space. Quota tracking records that space accurately
 whereas directory scans overlook the storage used by deleted files.
@@ -829,8 +882,8 @@ If you want to use project quotas, you should:
 
 如果你希望使用项目配额，你需要：
 
-* 在 [kubelet 配置](/zh/docs/reference/config-api/kubelet-config.v1beta1/)中使用 `featureGates` 字段 或者使用 `--feature-gates` 命令行参数
-启用 `LocalStorageCapacityIsolationFSQuotaMonitoring=true` [特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/) 。
+* 在 [kubelet 配置](/zh-cn/docs/reference/config-api/kubelet-config.v1beta1/)中使用 `featureGates` 字段 或者使用 `--feature-gates` 命令行参数
+启用 `LocalStorageCapacityIsolationFSQuotaMonitoring=true` [特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/) 。
 
 * 确保根文件系统（或者可选的运行时文件系统）启用了项目配额。所有 XFS
   文件系统都支持项目配额。
@@ -875,6 +928,7 @@ Extended Resource in Pods.
 Node-level extended resources are tied to nodes.
 
 ##### Device plugin managed resources
+
 See [Device
 Plugin](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)
 for how to advertise device plugin managed resources on each node.
@@ -888,19 +942,17 @@ for how to advertise device plugin managed resources on each node.
 ##### 设备插件管理的资源   {#device-plugin-managed-resources}
 
 有关如何颁布在各节点上由设备插件所管理的资源，请参阅
-[设备插件](/zh/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)。
+[设备插件](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)。
 
 <!--
 ##### Other resources
+
 To advertise a new node-level extended resource, the cluster operator can
 submit a `PATCH` HTTP request to the API server to specify the available
 quantity in the `status.capacity` for a node in the cluster. After this
 operation, the node's `status.capacity` will include a new resource. The
 `status.allocatable` field is updated automatically with the new resource
-asynchronously by the kubelet. Note that because the scheduler uses the	node
-`status.allocatable` value when evaluating Pod fitness, there may be a short
-delay between patching the node capacity with a new resource and the first Pod
-that requests the resource to be scheduled on that node.
+asynchronously by the kubelet.
 -->
 ##### 其他资源   {#other-resources}
 
@@ -908,7 +960,16 @@ that requests the resource to be scheduled on that node.
 以在集群中节点的 `status.capacity` 中为其配置可用数量。
 完成此操作后，节点的 `status.capacity` 字段中将包含新资源。
 kubelet 会异步地对 `status.allocatable` 字段执行自动更新操作，使之包含新资源。
-请注意，由于调度器在评估 Pod 是否适合在某节点上执行时会使用节点的 `status.allocatable` 值，
+
+<!--
+Because the scheduler uses the node `status.allocatable` value when
+evaluating Pod fitness, the shceduler only takes account of the new value after
+the asynchronous update. There may be a short delay between patching the
+node capacity with a new resource and the time when the first Pod that requests
+the resource to be scheduled on that node.
+-->
+由于调度器在评估 Pod 是否适合在某节点上执行时会使用节点的 `status.allocatable` 值，
+调度器只会考虑异步更新之后的新值。
 在更新节点容量使之包含新资源之后和请求该资源的第一个 Pod 被调度到该节点之间，
 可能会有短暂的延迟。
 
@@ -919,7 +980,6 @@ Here is an example showing how to use `curl` to form an HTTP request that
 advertises five "example.com/foo" resources on node `k8s-node-1` whose master
 is `k8s-master`.
 -->
-
 **示例：**
 
 这是一个示例，显示了如何使用 `curl` 构造 HTTP 请求，公告主节点为 `k8s-master`
@@ -953,14 +1013,14 @@ Cluster-level extended resources are not tied to nodes. They are usually managed
 by scheduler extenders, which handle the resource consumption and resource quota.
 
 You can specify the extended resources that are handled by scheduler extenders
-in [scheduler policy configuration](/docs/reference/config-api/kube-scheduler-policy-config.v1/)
+in [scheduler policy configuration](/docs/reference/config-api/kube-scheduler-config.v1beta3/)
 -->
 #### 集群层面的扩展资源   {#cluster-level-extended-resources}
 
 集群层面的扩展资源并不绑定到具体节点。
 它们通常由调度器扩展程序（Scheduler Extenders）管理，这些程序处理资源消耗和资源配额。
 
-你可以在[调度器策略配置](/zh/docs/reference/config-api/kube-scheduler-policy-config.v1/)
+你可以在[调度器策略配置](/zh-cn/docs/reference/config-api/kube-scheduler-config.v1beta3/)
 中指定由调度器扩展程序处理的扩展资源。
 
 <!--
@@ -971,9 +1031,9 @@ cluster-level extended resource "example.com/foo" is handled by the scheduler
 extender.
 
 - The scheduler sends a Pod to the scheduler extender only if the Pod requests
-     "example.com/foo".
+  "example.com/foo".
 - The `ignoredByScheduler` field specifies that the scheduler does not check
-     the "example.com/foo" resource in its `PodFitsResources` predicate.
+  the "example.com/foo" resource in its `PodFitsResources` predicate.
 -->
 **示例：**
 
@@ -1081,54 +1141,64 @@ spec:
 <!--
 ## PID limiting
 
-Process ID (PID) limits allow for the configuration of a kubelet to limit the number of PIDs that a given Pod can consume. See [Pid Limiting](/docs/concepts/policy/pid-limiting/) for information.
+Process ID (PID) limits allow for the configuration of a kubelet
+to limit the number of PIDs that a given Pod can consume. See
+[PID Limiting](/docs/concepts/policy/pid-limiting/) for information.
 -->
-
 ## PID 限制   {#pid-limiting}
 
 进程 ID（PID）限制允许对 kubelet 进行配置，以限制给定 Pod 可以消耗的 PID 数量。
-有关信息，请参见 [PID 限制](/zh/docs/concepts/policy/pid-limiting/)。
+有关信息，请参见 [PID 限制](/zh-cn/docs/concepts/policy/pid-limiting/)。
 
 <!--
 ## Troubleshooting
 
-### My Pods are pending with event message failedScheduling
+### My Pods are pending with event message `FailedScheduling`
 
 If the scheduler cannot find any node where a Pod can fit, the Pod remains
-unscheduled until a place can be found. An event is produced each time the
-scheduler fails to find a place for the Pod, like this:
+unscheduled until a place can be found. An
+[Event](/docs/reference/kubernetes-api/cluster-resources/event-v1/) is produced
+each time the scheduler fails to find a place for the Pod, You can use `kubectl`
+to view the events for a Pod; for example:
 -->
 ## 疑难解答
 
-### 我的 Pod 处于悬决状态且事件信息显示 failedScheduling
+### 我的 Pod 处于悬决状态且事件信息显示 `FailedScheduling`
 
 如果调度器找不到该 Pod 可以匹配的任何节点，则该 Pod 将保持未被调度状态，
 直到找到一个可以被调度到的位置。每当调度器找不到 Pod 可以调度的地方时，
-会产生一个事件，如下所示：
+会产生一个 [Event](/zh-cn/docs/reference/kubernetes-api/cluster-resources/event-v1/)。
+你可以使用 `kubectl` 来查看 Pod 的事件；例如：
 
 ```shell
-kubectl describe pod frontend | grep -A 3 Events
+kubectl describe pod frontend | grep -A 9999999999 Events
 ```
+
 ```
 Events:
-  FirstSeen LastSeen   Count  From          Subobject        PathReason        Message
-  36s       5s         6      {scheduler}  FailedScheduling  Failed for reason PodExceedsFreeCPU and possibly others
+  Type     Reason            Age   From               Message
+  ----     ------            ----  ----               -------
+  Warning  FailedScheduling  23s   default-scheduler  0/42 nodes available: insufficient cpu
 ```
 
 <!--
 In the preceding example, the Pod named "frontend" fails to be scheduled due to
-insufficient CPU resource on the node. Similar error messages can also suggest
+insufficient CPU resource on any node. Similar error messages can also suggest
 failure due to insufficient memory (PodExceedsFreeMemory). In general, if a Pod
 is pending with a message of this type, there are several things to try:
+
 - Add more nodes to the cluster.
 - Terminate unneeded Pods to make room for pending Pods.
 - Check that the Pod is not larger than all the nodes. For example, if all the
   nodes have a capacity of `cpu: 1`, then a Pod with a request of `cpu: 1.1` will
   never be scheduled.
+- Check for node taints. If most of your nodes are tainted, and the new Pod does
+  not tolerate that taint, the scheduler only considers placements onto the
+  remaining nodes that don't have that taint.
+
 You can check node capacities and amounts allocated with the
 `kubectl describe nodes` command. For example:
 -->
-
 在上述示例中，由于节点上的 CPU 资源不足，名为 “frontend” 的 Pod 无法被调度。
 由于内存不足（PodExceedsFreeMemory）而导致失败时，也有类似的错误消息。
 一般来说，如果 Pod 处于悬决状态且有这种类型的消息时，你可以尝试如下几件事情：
@@ -1137,12 +1207,15 @@ You can check node capacities and amounts allocated with the
 - 终止不需要的 Pod，为悬决的 Pod 腾出空间。
 - 检查 Pod 所需的资源是否超出所有节点的资源容量。例如，如果所有节点的容量都是`cpu：1`，
   那么一个请求为 `cpu: 1.1` 的 Pod 永远不会被调度。
+- 检查节点上的污点设置。如果集群中节点上存在污点，而新的 Pod 不能容忍污点，
+  调度器只会考虑将 Pod 调度到不带有该污点的节点上。
 
 你可以使用 `kubectl describe nodes` 命令检查节点容量和已分配的资源数量。 例如：
 
 ```shell
 kubectl describe nodes e2e-test-node-pool-4lw4
 ```
+
 ```
 Name:            e2e-test-node-pool-4lw4
 [ ... 这里忽略了若干行以便阅读 ...]
@@ -1174,34 +1247,60 @@ Allocated resources:
 In the preceding output, you can see that if a Pod requests more than 1120m
 CPUs or 6.23Gi of memory, it will not fit on the node.
 
-By looking at the `Pods` section, you can see which Pods are taking up space on
+By looking at the "Pods" section, you can see which Pods are taking up space on
 the node.
-
-The amount of resources available to Pods is less than the node capacity, because
-system daemons use a portion of the available resources. The `allocatable` field
-[NodeStatus](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#nodestatus-v1-core)
-gives the amount of resources that are available to Pods. For more information, see
-[Node Allocatable Resources](https://git.k8s.io/community/contributors/design-proposals/node/node-allocatable.md).
-The [resource quota](/docs/concepts/policy/resource-quotas/) feature can be configured
-to limit the total amount of resources that can be consumed. If used in conjunction
-with namespaces, it can prevent one team from hogging all the resources.
 -->
 在上面的输出中，你可以看到如果 Pod 请求超过 1120m CPU 或者 6.23Gi 内存，节点将无法满足。
 
-通过查看 `Pods` 部分，你将看到哪些 Pod 占用了节点上的资源。
+通过查看 "Pods" 部分，你将看到哪些 Pod 占用了节点上的资源。
 
-可供 Pod 使用的资源量小于节点容量，因为系统守护程序也会使用一部分可用资源。
-[NodeStatus](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#nodestatus-v1-core)
-的 `allocatable` 字段给出了可用于 Pod 的资源量。
-有关更多信息，请参阅 [节点可分配资源](https://git.k8s.io/community/contributors/design-proposals/node-allocatable.md)。
+<!--
+The amount of resources available to Pods is less than the node capacity, because
+system daemons use a portion of the available resources. Within the Kubernetes API,
+each Node has a `.status.allocatable` field
+(see [NodeStatus](/docs/reference/kubernetes-api/cluster-resources/node-v1/#NodeStatus)
+for details).
+-->
+Pods 可用的资源量低于节点的资源总量，因为系统守护进程也会使用一部分可用资源。
+在 Kubernetes API 中，每个 Node 都有一个 `.status.allocatable` 字段
+（详情参见 [NodeStatus](/zh-cn/docs/reference/kubernetes-api/cluster-resources/node-v1/#NodeStatus)）。
 
-可以配置 [资源配额](/zh/docs/concepts/policy/resource-quotas/) 功能特性
-以限制可以使用的资源总量。
-如果与名字空间配合一起使用，就可以防止一个团队占用所有资源。
+<!--
+The `.status.allocatable` field describes the amount of resources that are available
+to Pods on that node (for example: 15 virtual CPUs and 7538 MiB of memory).
+For more information on node allocatable resources in Kubernetes, see
+[Reserve Compute Resources for System Daemons](/docs/tasks/administer-cluster/reserve-compute-resources/).
+-->
+字段 `.status.allocatable` 描述节点上可以用于 Pod 的资源总量（例如：15 个虚拟
+CPU、7538 MiB 内存）。关于 Kubernetes 中节点可分配资源的信息，可参阅
+[为系统守护进程预留计算资源](/zh-cn/docs/tasks/administer-cluster/reserve-compute-resources/)。
+
+<!--
+You can configure [resource quotas](/docs/concepts/policy/resource-quotas/)
+to limit the total amount of resources that a namespace can consume.
+Kubernetes enforces quotas for objects in particular namespace when there is a
+ResourceQuota in that namespace.
+For example, if you assign specific namespaces to different teams, you
+can add ResourceQuotas into those namespaces. Setting resource quotas helps to
+prevent one team from using so much of any resource that this over-use affects other teams.
+
+You should also consider what access you grant to that namespace:
+**full** write access to a namespace allows someone with that access to remove any
+resource, include a configured ResourceQuota.
+-->
+你可以配置[资源配额](/zh-cn/docs/concepts/policy/resource-quotas/)功能特性以限制每个名字空间可以使用的资源总量。
+当某名字空间中存在 ResourceQuota 时，Kubernetes 会在该名字空间中的对象强制实施配额。
+例如，如果你为不同的团队分配名字空间，你可以为这些名字空间添加 ResourceQuota。
+设置资源配额有助于防止一个团队占用太多资源，以至于这种占用会影响其他团队。
+
+你还需要考虑为这些名字空间设置授权访问：
+为名字空间提供 **全部** 的写权限时，具有合适权限的人可能删除所有资源，
+包括所配置的 ResourceQuota。
 
 <!--
 ### My Container is terminated
-Your Container might get terminated because it is resource-starved. To check
+
+Your container might get terminated because it is resource-starved. To check
 whether a Container is being killed because it is hitting a resource limit, call
 `kubectl describe pod` on the Pod of interest:
 -->
@@ -1215,6 +1314,11 @@ whether a Container is being killed because it is hitting a resource limit, call
 kubectl describe pod simmemleak-hra99
 ```
 
+<!--
+The output is similar to:
+-->
+输出类似于：
+
 ```
 Name:                           simmemleak-hra99
 Namespace:                      default
@@ -1225,7 +1329,6 @@ Status:                         Running
 Reason:
 Message:
 IP:                             10.244.2.75
-Replication Controllers:        simmemleak (1/1 replicas created)
 Containers:
   simmemleak:
     Image:  saadali/simmemleak
@@ -1244,57 +1347,47 @@ Conditions:
   Type      Status
   Ready     False
 Events:
-  FirstSeen                         LastSeen                         Count  From                              SubobjectPath                       Reason      Message
-  Tue, 07 Jul 2015 12:53:51 -0700   Tue, 07 Jul 2015 12:53:51 -0700  1      {scheduler }                                                          scheduled   Successfully assigned simmemleak-hra99 to kubernetes-node-tf0f
-  Tue, 07 Jul 2015 12:53:51 -0700   Tue, 07 Jul 2015 12:53:51 -0700  1      {kubelet kubernetes-node-tf0f}    implicitly required container POD   pulled      Pod container image "k8s.gcr.io/pause:0.8.0" already present on machine
-  Tue, 07 Jul 2015 12:53:51 -0700   Tue, 07 Jul 2015 12:53:51 -0700  1      {kubelet kubernetes-node-tf0f}    implicitly required container POD   created     Created with docker id 6a41280f516d
-  Tue, 07 Jul 2015 12:53:51 -0700   Tue, 07 Jul 2015 12:53:51 -0700  1      {kubelet kubernetes-node-tf0f}    implicitly required container POD   started     Started with docker id 6a41280f516d
-  Tue, 07 Jul 2015 12:53:51 -0700   Tue, 07 Jul 2015 12:53:51 -0700  1      {kubelet kubernetes-node-tf0f}    spec.containers{simmemleak}         created     Created with docker id 87348f12526a
+  Type    Reason     Age   From               Message
+  ----    ------     ----  ----               -------
+  Normal  Scheduled  42s   default-scheduler  Successfully assigned simmemleak-hra99 to kubernetes-node-tf0f
+  Normal  Pulled     41s   kubelet            Container image "saadali/simmemleak:latest" already present on machine
+  Normal  Created    41s   kubelet            Created container simmemleak
+  Normal  Started    40s   kubelet            Started container simmemleak
+  Normal  Killing    32s   kubelet            Killing container with id ead3fb35-5cf5-44ed-9ae1-488115be66c6: Need to kill Pod
 ```
 
 <!--
 In the preceding example, the `Restart Count:  5` indicates that the `simmemleak`
-Container in the Pod was terminated and restarted five times.
-
-You can call `kubectl get pod` with the `-o go-template=...` option to fetch the status
-of previously terminated Containers:
+Container in the Pod was terminated and restarted five times (so far).
+The `OOMKilled` reason shows that the container tried to use more memory than its limit.
 -->
-在上面的例子中，`Restart Count: 5` 意味着 Pod 中的 `simmemleak` 容器被终止并重启了五次。
-
-你可以使用 `kubectl get pod` 命令加上 `-o go-template=...` 选项来获取之前终止容器的状态。
-
-```shell
-kubectl get pod -o go-template='{{range.status.containerStatuses}}{{"Container Name: "}}{{.name}}{{"\r\nLastState: "}}{{.lastState}}{{end}}'  simmemleak-hra99
-```
-```
-Container Name: simmemleak
-LastState: map[terminated:map[exitCode:137 reason:OOM Killed startedAt:2015-07-07T20:58:43Z finishedAt:2015-07-07T20:58:43Z containerID:docker://0e4095bba1feccdfe7ef9fb6ebffe972b4b14285d5acdec6f0d3ae8a22fad8b2]]
-```
+在上面的例子中，`Restart Count: 5` 意味着 Pod 中的 `simmemleak`
+容器被终止并且（到目前为止）重启了五次。
+原因 `OOMKilled` 显示容器尝试使用超出其限制的内存量。
 
 <!--
-You can see that the Container was terminated because of `reason:OOM Killed`, where `OOM` stands for Out Of Memory.
+Your next step might be to check the application code for a memory leak. If you
+find that the application is behaving how you expect, consider setting a higher
+memory limit (and possibly request) for that container.
 -->
-
-你可以看到容器因为 `reason:OOM killed` 而被终止，`OOM` 表示内存不足（Out Of Memory）。
+你接下来要做的或许是检查应用代码，看看是否存在内存泄露。
+如果你发现应用的行为与你所预期的相同，则可以考虑为该容器设置一个更高的内存约束
+（也可能需要设置请求值）。
 
 ## {{% heading "whatsnext" %}}
 
 <!--
-* Get hands-on experience [assigning Memory resources to Containers and Pods](/docs/tasks/configure-pod-container/assign-memory-resource/).
-* Get hands-on experience [assigning CPU resources to Containers and Pods](/docs/tasks/configure-pod-container/assign-cpu-resource/).
-* For more details about the difference between requests and limits, see
-  [Resource QoS](https://git.k8s.io/community/contributors/design-proposals/node/resource-qos.md).
-* Read the [Container](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core) API reference
-* Read the [ResourceRequirements](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#resourcerequirements-v1-core) API reference
-* Read about [project quotas](http://xfs.org/docs/xfsdocs-xml-dev/XFS_User_Guide/tmp/en-US/html/xfs-quotas.html) in XFS
-* Read more about the [kube-scheduler Policy reference (v1)](/docs/reference/config-api/kube-scheduler-policy-config.v1/)
+* Get hands-on experience [assigning Memory resources to containers and Pods](/docs/tasks/configure-pod-container/assign-memory-resource/).
+* Get hands-on experience [assigning CPU resources to containers and Pods](/docs/tasks/configure-pod-container/assign-cpu-resource/).
+* Read how the API reference defines a [container](/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container)
+  and its [resource requirements](/docs/reference/kubernetes-api/workload-resources/pod-v1/#resources)
+* Read about [project quotas](https://xfs.org/docs/xfsdocs-xml-dev/XFS_User_Guide/tmp/en-US/html/xfs-quotas.html) in XFS
+* Read more about the [kube-scheduler configuration reference (v1beta3)](/docs/reference/config-api/kube-scheduler-config.v1beta3/)
 -->
-
-* 获取[分配内存资源给容器和 Pod ](/zh/docs/tasks/configure-pod-container/assign-memory-resource/) 的实践经验
-* 获取[分配 CPU 资源给容器和 Pod ](/zh/docs/tasks/configure-pod-container/assign-cpu-resource/) 的实践经验
-* 关于请求和约束之间的区别，细节信息可参见[资源服务质量](https://git.k8s.io/community/contributors/design-proposals/node/resource-qos.md)
-* 阅读 API 参考文档中 [Container](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core) 部分。
-* 阅读 API 参考文档中 [ResourceRequirements](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#resourcerequirements-v1-core) 部分。
-* 阅读 XFS 中关于[项目配额](https://xfs.org/docs/xfsdocs-xml-dev/XFS_User_Guide/tmp/en-US/html/xfs-quotas.html) 的文档。
-* 阅读更多关于[kube-scheduler 策略参考 (v1)](/zh/docs/reference/config-api/kube-scheduler-policy-config.v1/) 的文档。
+* 获取[分配内存资源给容器和 Pod ](/zh-cn/docs/tasks/configure-pod-container/assign-memory-resource/) 的实践经验
+* 获取[分配 CPU 资源给容器和 Pod ](/zh-cn/docs/tasks/configure-pod-container/assign-cpu-resource/) 的实践经验
+* 阅读 API 参考中 [Container](/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container)
+  和其[资源请求](/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1/#resources)定义。
+* 阅读 XFS 中[配额](https://xfs.org/docs/xfsdocs-xml-dev/XFS_User_Guide/tmp/en-US/html/xfs-quotas.html)的文档
+* 进一步阅读 [kube-scheduler 配置参考 (v1beta3)](/zh-cn/docs/reference/config-api/kube-scheduler-config.v1beta3/)
 
diff --git a/content/zh/docs/concepts/configuration/organize-cluster-access-kubeconfig.md b/content/zh-cn/docs/concepts/configuration/organize-cluster-access-kubeconfig.md
similarity index 87%
rename from content/zh/docs/concepts/configuration/organize-cluster-access-kubeconfig.md
rename to content/zh-cn/docs/concepts/configuration/organize-cluster-access-kubeconfig.md
index 023046d413..c46b91d3c7 100644
--- a/content/zh/docs/concepts/configuration/organize-cluster-access-kubeconfig.md
+++ b/content/zh-cn/docs/concepts/configuration/organize-cluster-access-kubeconfig.md
@@ -17,7 +17,8 @@ authentication mechanisms. The `kubectl` command-line tool uses kubeconfig files
 find the information it needs to choose a cluster and communicate with the API server
 of a cluster.
 -->
-使用 kubeconfig 文件来组织有关集群、用户、命名空间和身份认证机制的信息。`kubectl` 命令行工具使用 kubeconfig 文件来查找选择集群所需的信息，并与集群的 API 服务器进行通信。
+使用 kubeconfig 文件来组织有关集群、用户、命名空间和身份认证机制的信息。
+`kubectl` 命令行工具使用 kubeconfig 文件来查找选择集群所需的信息，并与集群的 API 服务器进行通信。
 
 <!--
 {{< note >}}
@@ -27,12 +28,13 @@ It does not mean that there is a file named `kubeconfig`.
 {{< /note >}}
 -->
 {{< note >}}
-用于配置集群访问的文件称为 *kubeconfig 文件*。这是引用配置文件的通用方法。这并不意味着有一个名为 `kubeconfig` 的文件
+用于配置集群访问的文件称为“kubeconfig 文件”。
+这是引用配置文件的通用方法，并不意味着有一个名为 `kubeconfig` 的文件
 {{< /note >}}
 
 <!--
 {{< warning >}}
-Only use kubeconfig files from trusted sources. Using a specially-crafted kubeconfig file could result in malicious code execution or file exposure. 
+Only use kubeconfig files from trusted sources. Using a specially-crafted kubeconfig file could result in malicious code execution or file exposure.
 If you must use an untrusted kubeconfig file, inspect it carefully first, much as you would a shell script.
 {{< /warning>}}
 -->
@@ -48,7 +50,7 @@ variable or by setting the
 [`-kubeconfig`](/docs/reference/generated/kubectl/kubectl/) flag.
 -->
 默认情况下，`kubectl` 在 `$HOME/.kube` 目录下查找名为 `config` 的文件。
-您可以通过设置 `KUBECONFIG` 环境变量或者设置
+你可以通过设置 `KUBECONFIG` 环境变量或者设置
 [`--kubeconfig`](/docs/reference/generated/kubectl/kubectl/)参数来指定其他 kubeconfig 文件。
 
 <!--
@@ -56,7 +58,7 @@ For step-by-step instructions on creating and specifying kubeconfig files, see
 [Configure Access to Multiple Clusters](/docs/tasks/access-application-cluster/configure-access-multiple-clusters).
 -->
 有关创建和指定 kubeconfig 文件的分步说明，请参阅
-[配置对多集群的访问](/zh/docs/tasks/access-application-cluster/configure-access-multiple-clusters)。
+[配置对多集群的访问](/zh-cn/docs/tasks/access-application-cluster/configure-access-multiple-clusters)。
 
 <!-- body -->
 
@@ -69,7 +71,7 @@ For step-by-step instructions on creating and specifying kubeconfig files, see
 Suppose you have several clusters, and your users and components authenticate
 in a variety of ways. For example:
 -->
-假设您有多个集群，并且您的用户和组件以多种方式进行身份认证。比如：
+假设你有多个集群，并且你的用户和组件以多种方式进行身份认证。比如：
 
 <!--
 - A running kubelet might authenticate using certificates.
@@ -85,7 +87,7 @@ With kubeconfig files, you can organize your clusters, users, and namespaces.
 You can also define contexts to quickly and easily switch between
 clusters and namespaces.
 -->
-使用 kubeconfig 文件，您可以组织集群、用户和命名空间。您还可以定义上下文，以便在集群和命名空间之间快速轻松地切换。
+使用 kubeconfig 文件，你可以组织集群、用户和命名空间。你还可以定义上下文，以便在集群和命名空间之间快速轻松地切换。
 
 <!--
 ## Context
@@ -96,15 +98,18 @@ clusters and namespaces.
 A *context* element in a kubeconfig file is used to group access parameters
 under a convenient name. Each context has three parameters: cluster, namespace, and user.
 By default, the `kubectl` command-line tool uses parameters from
-the *current context* to communicate with the cluster. 
+the *current context* to communicate with the cluster.
 -->
-通过 kubeconfig 文件中的 *context* 元素，使用简便的名称来对访问参数进行分组。每个上下文都有三个参数：cluster、namespace 和 user。默认情况下，`kubectl` 命令行工具使用 *当前上下文* 中的参数与集群进行通信。
+通过 kubeconfig 文件中的 *context* 元素，使用简便的名称来对访问参数进行分组。
+每个 context 都有三个参数：cluster、namespace 和 user。
+默认情况下，`kubectl` 命令行工具使用 **当前上下文** 中的参数与集群进行通信。
 
 <!--
 To choose the current context:
 -->
 选择当前上下文
-```
+
+```shell
 kubectl config use-context
 ```
 
@@ -175,7 +180,7 @@ Here are the rules that `kubectl` uses when it merges kubeconfig files:
      Even if the second file has non-conflicting entries under `red-user`, discard them.
 -->
 1. 如果设置了 `--kubeconfig` 参数，则仅使用指定的文件。不进行合并。此参数只能使用一次。
-   
+
    否则，如果设置了 `KUBECONFIG` 环境变量，将它用作应合并的文件列表。根据以下规则合并 `KUBECONFIG` 环境变量中列出的文件：
 
    * 忽略空文件名。
@@ -188,7 +193,7 @@ Here are the rules that `kubectl` uses when it merges kubeconfig files:
    [Setting the KUBECONFIG environment variable](/docs/tasks/access-application-cluster/configure-access-multiple-clusters/#set-the-kubeconfig-environment-variable).
 -->
    有关设置 `KUBECONFIG` 环境变量的示例，请参阅
-   [设置 KUBECONFIG 环境变量](/zh/docs/tasks/access-application-cluster/configure-access-multiple-clusters/#set-the-kubeconfig-environment-variable)。
+   [设置 KUBECONFIG 环境变量](/zh-cn/docs/tasks/access-application-cluster/configure-access-multiple-clusters/#set-the-kubeconfig-environment-variable)。
 
 <!--
    Otherwise, use the default kubeconfig file, `$HOME/.kube/config`, with no merging.
@@ -280,12 +285,39 @@ kubeconfig 文件中的文件和路径引用是相对于 kubeconfig 文件的位
 命令行上的文件引用是相对于当前工作目录的。
 在 `$HOME/.kube/config` 中，相对路径按相对路径存储，绝对路径按绝对路径存储。
 
+<!--
+## Proxy
+
+You can configure `kubectl` to use proxy by setting `proxy-url` in the kubeconfig file, like:
+-->
+## 代理
+
+你可以在 `kubeconfig` 文件中设置 `proxy-url` 来为 `kubectl` 使用代理，例如:
+
+```yaml
+apiVersion: v1
+kind: Config
+
+proxy-url: https://proxy.host:3128
+
+clusters:
+- cluster:
+  name: development
+
+users:
+- name: developer
+
+contexts:
+- context:
+  name: development
+
+```
+
 ## {{% heading "whatsnext" %}}
 
 <!--
 * [Configure Access to Multiple Clusters](/docs/tasks/access-application-cluster/configure-access-multiple-clusters/)
 * [`kubectl config`](/docs/reference/generated/kubectl/kubectl-commands#config)
 --->
-* [配置对多集群的访问](/zh/docs/tasks/access-application-cluster/configure-access-multiple-clusters/)
+* [配置对多集群的访问](/zh-cn/docs/tasks/access-application-cluster/configure-access-multiple-clusters/)
 * [`kubectl config`](/docs/reference/generated/kubectl/kubectl-commands#config)
-
diff --git a/content/zh/docs/concepts/configuration/overview.md b/content/zh-cn/docs/concepts/configuration/overview.md
similarity index 61%
rename from content/zh/docs/concepts/configuration/overview.md
rename to content/zh-cn/docs/concepts/configuration/overview.md
index 48f67f2990..e3be0085dd 100644
--- a/content/zh/docs/concepts/configuration/overview.md
+++ b/content/zh-cn/docs/concepts/configuration/overview.md
@@ -19,7 +19,7 @@ This document highlights and consolidates configuration best practices that are
 This is a living document. If you think of something that is not on this list but might be useful to others, please don't hesitate to file an issue or submit a PR.
 -->
 这是一份不断改进的文件。
-如果您认为某些内容缺失但可能对其他人有用，请不要犹豫，提交 Issue 或提交 PR。
+如果你认为某些内容缺失但可能对其他人有用，请不要犹豫，提交 Issue 或提交 PR。
 
 <!-- body -->
 <!--
@@ -36,7 +36,7 @@ This is a living document. If you think of something that is not on this list bu
 - Configuration files should be stored in version control before being pushed to the cluster. This allows you to quickly roll back a configuration change if necessary. It also aids cluster re-creation and restoration.
 -->
 - 在推送到集群之前，配置文件应存储在版本控制中。
- 这允许您在必要时快速回滚配置更改。
+ 这允许你在必要时快速回滚配置更改。
  它还有助于集群重新创建和恢复。 
 
 <!--
@@ -45,11 +45,11 @@ This is a living document. If you think of something that is not on this list bu
 - 使用 YAML 而不是 JSON 编写配置文件。虽然这些格式几乎可以在所有场景中互换使用，但 YAML 往往更加用户友好。
 
 <!--
-- Group related objects into a single file whenever it makes sense. One file is often easier to manage than several. See the [guestbook-all-in-one.yaml](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/guestbook/all-in-one/guestbook-all-in-one.yaml) file as an example of this syntax.
+- Group related objects into a single file whenever it makes sense. One file is often easier to manage than several. See the [guestbook-all-in-one.yaml](https://github.com/kubernetes/examples/tree/master/guestbook/all-in-one/guestbook-all-in-one.yaml) file as an example of this syntax.
 -->
 - 只要有意义，就将相关对象分组到一个文件中。
  一个文件通常比几个文件更容易管理。
- 请参阅[guestbook-all-in-one.yaml](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/guestbook/all-in-one/guestbook-all-in-one.yaml) 文件作为此语法的示例。
+ 请参阅 [guestbook-all-in-one.yaml](https://github.com/kubernetes/examples/tree/master/guestbook/all-in-one/guestbook-all-in-one.yaml) 文件作为此语法的示例。
 
 <!--
 - Note also that many `kubectl` commands can be called on a directory. For example, you can call `kubectl apply` on a directory of config files.
@@ -77,8 +77,8 @@ This is a living document. If you think of something that is not on this list bu
 - Don't use naked Pods (that is, Pods not bound to a [ReplicaSet](/docs/concepts/workloads/controllers/replicaset/) or [Deployment](/docs/concepts/workloads/controllers/deployment/)) if you can avoid it. Naked Pods will not be rescheduled in the event of a node failure.
 -->
 - 如果可能，不要使用独立的 Pods（即，未绑定到
-[ReplicaSet](/zh/docs/concepts/workloads/controllers/replicaset/) 或
-[Deployment](/zh/docs/concepts/workloads/controllers/deployment/) 的 Pod）。
+[ReplicaSet](/zh-cn/docs/concepts/workloads/controllers/replicaset/) 或
+[Deployment](/zh-cn/docs/concepts/workloads/controllers/deployment/) 的 Pod）。
  如果节点发生故障，将不会重新调度独立的 Pods。
 
 <!--
@@ -86,20 +86,20 @@ This is a living document. If you think of something that is not on this list bu
 -->
 
 Deployment 既可以创建一个 ReplicaSet 来确保预期个数的 Pod 始终可用，也可以指定替换 Pod 的策略（例如
-[RollingUpdate](/zh/docs/concepts/workloads/controllers/deployment/#rolling-update-deployment)）。
-除了一些显式的 [`restartPolicy: Never`](/zh/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy)
-场景外，Deployment 通常比直接创建 Pod 要好得多。[Job](/zh/docs/concepts/workloads/controllers/job/) 也可能是合适的选择。
+[RollingUpdate](/zh-cn/docs/concepts/workloads/controllers/deployment/#rolling-update-deployment)）。
+除了一些显式的 [`restartPolicy: Never`](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy)
+场景外，Deployment 通常比直接创建 Pod 要好得多。[Job](/zh-cn/docs/concepts/workloads/controllers/job/) 也可能是合适的选择。
 
 <!--
 ## Services
 -->
-## 服务
+## 服务   {#services}
 
 <!--
 - Create a [Service](/docs/concepts/services-networking/service/) before its corresponding backend workloads (Deployments or ReplicaSets), and before any workloads that need to access it. When Kubernetes starts a container, it provides environment variables pointing to all the Services which were running when the container was started. For example, if a Service named `foo` exists, all containers will get the following variables in their initial environment:
 -->
 - 在创建相应的后端工作负载（Deployment 或 ReplicaSet），以及在需要访问它的任何工作负载之前创建
-  [服务](/zh/docs/concepts/services-networking/service/)。
+  [服务](/zh-cn/docs/concepts/services-networking/service/)。
   当 Kubernetes 启动容器时，它提供指向启动容器时正在运行的所有服务的环境变量。
   例如，如果存在名为 `foo` 的服务，则所有容器将在其初始环境中获得以下变量。
 
@@ -118,7 +118,7 @@ Deployment 既可以创建一个 ReplicaSet 来确保预期个数的 Pod 始终
 - An optional (though strongly recommended) [cluster add-on](/docs/concepts/cluster-administration/addons/) is a DNS server.  The
 DNS server watches the Kubernetes API for new `Services` and creates a set of DNS records for each.  If DNS has been enabled throughout the cluster then all `Pods` should be able to do name resolution of `Services` automatically.
 -->
-- 一个可选（尽管强烈推荐）的[集群插件](/zh/docs/concepts/cluster-administration/addons/)
+- 一个可选（尽管强烈推荐）的[集群插件](/zh-cn/docs/concepts/cluster-administration/addons/)
   是 DNS 服务器。DNS 服务器为新的 `Services` 监视 Kubernetes API，并为每个创建一组 DNS 记录。
   如果在整个集群中启用了 DNS，则所有 `Pods` 应该能够自动对 `Services` 进行名称解析。
 
@@ -128,21 +128,21 @@ DNS server watches the Kubernetes API for new `Services` and creates a set of DN
 - 除非绝对必要，否则不要为 Pod 指定 `hostPort`。
   将 Pod 绑定到`hostPort`时，它会限制 Pod 可以调度的位置数，因为每个
   `<hostIP, hostPort, protocol>`组合必须是唯一的。
-  如果您没有明确指定 `hostIP` 和 `protocol`，Kubernetes 将使用 `0.0.0.0` 作为默认
+  如果你没有明确指定 `hostIP` 和 `protocol`，Kubernetes 将使用 `0.0.0.0` 作为默认
   `hostIP` 和 `TCP` 作为默认 `protocol`。
 
 <!--
   If you only need access to the port for debugging purposes, you can use the [apiserver proxy](/docs/tasks/access-application-cluster/access-cluster/#manually-constructing-apiserver-proxy-urls) or [`kubectl port-forward`](/docs/tasks/access-application-cluster/port-forward-access-application-cluster/).
 -->
-  如果您只需要访问端口以进行调试，则可以使用
-  [apiserver proxy](/zh/docs/tasks/access-application-cluster/access-cluster/#manually-constructing-apiserver-proxy-urls)或
-  [`kubectl port-forward`](/zh/docs/tasks/access-application-cluster/port-forward-access-application-cluster/)。
+  如果你只需要访问端口以进行调试，则可以使用
+  [apiserver proxy](/zh-cn/docs/tasks/access-application-cluster/access-cluster/#manually-constructing-apiserver-proxy-urls)或
+  [`kubectl port-forward`](/zh-cn/docs/tasks/access-application-cluster/port-forward-access-application-cluster/)。
 
 <!--
-  If you explicitly need to expose a Pod's port on the node, consider using a [NodePort](/docs/concepts/services-networking/service/#nodeport) Service before resorting to `hostPort`.
+  If you explicitly need to expose a Pod's port on the node, consider using a [NodePort](/docs/concepts/services-networking/service/#type-nodeport) Service before resorting to `hostPort`.
 -->
-  如果您明确需要在节点上公开 Pod 的端口，请在使用 `hostPort` 之前考虑使用
-  [NodePort](/zh/docs/concepts/services-networking/service/#nodeport) 服务。
+  如果你明确需要在节点上公开 Pod 的端口，请在使用 `hostPort` 之前考虑使用
+  [NodePort](/zh-cn/docs/concepts/services-networking/service/#type-nodeport) 服务。
 
 <!--
 - Avoid using `hostNetwork`, for the same reasons as `hostPort`.
@@ -153,29 +153,29 @@ DNS server watches the Kubernetes API for new `Services` and creates a set of DN
 - Use [headless Services](/docs/concepts/services-networking/service/#headless-
 services) (which have a `ClusterIP` of `None`) for service discovery when you don't need `kube-proxy` load balancing.
 -->
-- 当您不需要 `kube-proxy` 负载均衡时，使用
-  [无头服务](/zh/docs/concepts/services-networking/service/#headless-services)  
+- 当你不需要 `kube-proxy` 负载均衡时，使用
+  [无头服务](/zh-cn/docs/concepts/services-networking/service/#headless-services)  
   (`ClusterIP` 被设置为 `None`)以便于服务发现。
 
 <!--
 ## Using Labels
 -->
-## 使用标签
+## 使用标签   {#using-labels}
 
 <!--
-- Define and use [labels](/docs/concepts/overview/working-with-objects/labels/) that identify __semantic attributes__ of your application or Deployment, such as `{ app: myapp, tier: frontend, phase: test, deployment: v3 }`. You can use these labels to select the appropriate Pods for other resources; for example, a Service that selects all `tier: frontend` Pods, or all `phase: test` components of `app: myapp`. See the [guestbook](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/guestbook/) app for examples of this approach.
+- Define and use [labels](/docs/concepts/overview/working-with-objects/labels/) that identify __semantic attributes__ of your application or Deployment, such as `{ app.kubernetes.io/name: MyApp, tier: frontend, phase: test, deployment: v3 }`. You can use these labels to select the appropriate Pods for other resources; for example, a Service that selects all `tier: frontend` Pods, or all `phase: test` components of `app.kubernetes.io/name: MyApp`. See the [guestbook](https://github.com/kubernetes/examples/tree/master/guestbook/) app for examples of this approach.
 -->
-- 定义并使用[标签](/zh/docs/concepts/overview/working-with-objects/labels/)来识别应用程序
-  或 Deployment 的 __语义属性__，例如`{ app: myapp, tier: frontend, phase: test, deployment: v3 }`。
+- 定义并使用[标签](/zh-cn/docs/concepts/overview/working-with-objects/labels/)来识别应用程序
+  或 Deployment 的 **语义属性**，例如`{ app.kubernetes.io/name: MyApp, tier: frontend, phase: test, deployment: v3 }`。
   你可以使用这些标签为其他资源选择合适的 Pod；
-  例如，一个选择所有 `tier: frontend` Pod 的服务，或者 `app: myapp` 的所有 `phase: test` 组件。
-  有关此方法的示例，请参阅[guestbook](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/guestbook/) 。
+  例如，一个选择所有 `tier: frontend` Pod 的服务，或者 `app.kubernetes.io/name: MyApp` 的所有 `phase: test` 组件。
+  有关此方法的示例，请参阅 [guestbook](https://github.com/kubernetes/examples/tree/master/guestbook/) 。
 
 <!--
 A Service can be made to span multiple Deployments by omitting release-specific labels from its selector. [Deployments](/docs/concepts/workloads/controllers/deployment/) make it easy to update a running service without downtime.
 -->
 通过从选择器中省略特定发行版的标签，可以使服务跨越多个 Deployment。
-当你需要不停机的情况下更新正在运行的服务，可以使用[Deployment](/zh/docs/concepts/workloads/controllers/deployment/)。
+当你需要不停机的情况下更新正在运行的服务，可以使用[Deployment](/zh-cn/docs/concepts/workloads/controllers/deployment/)。
 
 <!--
 A desired state of an object is described by a Deployment, and if changes to that spec are _applied_, the deployment controller changes the actual state to the desired state at a controlled rate.
@@ -187,74 +187,25 @@ Deployment 描述了对象的期望状态，并且如果对该规范的更改被
 - Use the [Kubernetes common labels](/docs/concepts/overview/working-with-objects/common-labels/) for common use cases. These standardized labels enrich the metadata in a way that allows tools, including `kubectl` and [dashboard](/docs/tasks/access-application-cluster/web-ui-dashboard), to work in an interoperable way.
 -->
 
-- 对于常见场景，应使用 [Kubernetes 通用标签](/zh/docs/concepts/overview/working-with-objects/common-labels/)。
+- 对于常见场景，应使用 [Kubernetes 通用标签](/zh-cn/docs/concepts/overview/working-with-objects/common-labels/)。
   这些标准化的标签丰富了对象的元数据，使得包括 `kubectl` 和
-  [仪表板（Dashboard）](/zh/docs/tasks/access-application-cluster/web-ui-dashboard)
+  [仪表板（Dashboard）](/zh-cn/docs/tasks/access-application-cluster/web-ui-dashboard)
   这些工具能够以可互操作的方式工作。
 
 <!--
 - You can manipulate labels for debugging. Because Kubernetes controllers (such as ReplicaSet) and Services match to Pods using selector labels, removing the relevant labels from a Pod will stop it from being considered by a controller or from being served traffic by a Service. If you remove the labels of an existing Pod, its controller will create a new Pod to take its place. This is a useful way to debug a previously "live" Pod in a "quarantine" environment. To interactively remove or add labels, use [`kubectl label`](/docs/reference/generated/kubectl/kubectl-commands#label).
 -->
-- 您可以操纵标签进行调试。
+- 你可以操纵标签进行调试。
   由于 Kubernetes 控制器（例如 ReplicaSet）和服务使用选择器标签来匹配 Pod，
   从 Pod 中删除相关标签将阻止其被控制器考虑或由服务提供服务流量。
   如果删除现有 Pod 的标签，其控制器将创建一个新的 Pod 来取代它。
   这是在"隔离"环境中调试先前"活跃"的 Pod 的有用方法。
   要以交互方式删除或添加标签，请使用 [`kubectl label`](/docs/reference/generated/kubectl/kubectl-commands#label)。
 
-<!--
-## Container Images
--->
-## 容器镜像
-
-<!--
-The [imagePullPolicy](/docs/concepts/containers/images/#updating-images) and the tag of the image affect when the [kubelet](/docs/reference/command-line-tools-reference/kubelet/) attempts to pull the specified image.
--->
-[imagePullPolicy](/zh/docs/concepts/containers/images/#updating-images)和镜像标签会影响
-[kubelet](/zh/docs/reference/command-line-tools-reference/kubelet/) 何时尝试拉取指定的镜像。
-
-<!--
-- `imagePullPolicy: IfNotPresent`: the image is pulled only if it is not already present locally.
-- `imagePullPolicy: Always`: the image is pulled every time the pod is started.
-- `imagePullPolicy` is omitted and either the image tag is `:latest` or it is omitted: `imagePullPolicy` is automatically set to `Always`. Note that this will _not_ be updated to `IfNotPresent` if the tag changes value.
-- `imagePullPolicy` is omitted and the image tag is present but not `:latest`: `imagePullPolicy` is automatically set to `IfNotPresent`. Note that this will _not_ be updated to `Always` if the tag is later removed or changed to `:latest`.
-- `imagePullPolicy: Never`: the image is assumed to exist locally. No attempt is made to pull the image.
--->
-- `imagePullPolicy: IfNotPresent`：仅当镜像在本地不存在时才被拉取。
-- `imagePullPolicy: Always`：每次启动 Pod 的时候都会拉取镜像。
-- `imagePullPolicy` 省略时，镜像标签为 `:latest` 或不存在，其值自动被设置为 `Always`。注意，如果镜像标签的值发生改变，`imagePullPolicy` 的值不会被更新为 `IfNotPresent`。
-- `imagePullPolicy` 省略时，指定镜像标签并且不是 `:latest`，其值自动被设置为 `IfNotPresent`。注意，如果镜像标签的值之后被移除或者修改为 `latest`，`imagePullPolicy` 的值不会被更新为 `Always`。
-- `imagePullPolicy: Never`：假设镜像已经存在本地，不会尝试拉取镜像。
-
-<!--
-To make sure the container always uses the same version of the image, you can specify its [digest](https://docs.docker.com/engine/reference/commandline/pull/#pull-an-image-by-digest-immutable-identifier), for example `sha256:45b23dee08af5e43a7fea6c4cf9c25ccf269ee113168c19722f87876677c5cb2`. The digest uniquely identifies a specific version of the image, so it is never updated by Kubernetes unless you change the digest value.
--->
-{{< note >}}
-要确保容器始终使用相同版本的镜像，你可以指定其
-[摘要](https://docs.docker.com/engine/reference/commandline/pull/#pull-an-image-by-digest-immutable-identifier)，
-例如 `sha256:45b23dee08af5e43a7fea6c4cf9c25ccf269ee113168c19722f87876677c5cb2`。
-摘要唯一地标识出镜像的指定版本，因此除非您更改摘要值，否则 Kubernetes 永远不会更新它。
-{{< /note >}}
-
-<!--
-You should avoid using the `:latest` tag when deploying containers in production as it is harder to track which version of the image is running and more difficult to roll back properly.
--->
-{{< note >}}
-在生产中部署容器时应避免使用 `:latest` 标记，因为这样更难跟踪正在运行的镜像版本，并且更难以正确回滚。 
-{{< /note >}}
-
-<!--
-The caching semantics of the underlying image provider make even `imagePullPolicy: Always` efficient, as long as the registry is reliably accessible. With Docker, for example, if the image already exists, the pull attempt is fast because all image layers are cached and no image download is needed.
--->
-{{< note >}}
-只要镜像仓库是可访问的，底层镜像驱动程序的缓存语义能够使即便 `imagePullPolicy: Always` 的配置也很高效。
-例如，对于 Docker，如果镜像已经存在，则拉取尝试很快，因为镜像层都被缓存并且不需要下载。
-{{< /note >}}
-
 <!--
 ## Using kubectl
 -->
-## 使用 kubectl
+## 使用 kubectl   {#using-kubectl}
 
 <!--
 - Use `kubectl apply -f <directory>`. This looks for Kubernetes configuration in all `.yaml`, `.yml`, and `.json` files in `<directory>` and passes it to `apply`.
@@ -266,13 +217,13 @@ The caching semantics of the underlying image provider make even `imagePullPolic
 - Use label selectors for `get` and `delete` operations instead of specific object names. See the sections on [label selectors](/docs/concepts/overview/working-with-objects/labels/#label-selectors) and [using labels effectively](/docs/concepts/cluster-administration/manage-deployment/#using-labels-effectively).
 -->
 - 使用标签选择器进行 `get` 和 `delete` 操作，而不是特定的对象名称。
-- 请参阅[标签选择器](/zh/docs/concepts/overview/working-with-objects/labels/#label-selectors)和
-  [有效使用标签](/zh/docs/concepts/cluster-administration/manage-deployment/#using-labels-effectively)部分。
+- 请参阅[标签选择器](/zh-cn/docs/concepts/overview/working-with-objects/labels/#label-selectors)和
+  [有效使用标签](/zh-cn/docs/concepts/cluster-administration/manage-deployment/#using-labels-effectively)部分。
 
 <!--
 - Use `kubectl run` and `kubectl expose` to quickly create single-container Deployments and Services. See [Use a Service to Access an Application in a Cluster](/docs/tasks/access-application-cluster/service-access-application-cluster/) for an example.
 -->
 - 使用`kubectl run`和`kubectl expose`来快速创建单容器部署和服务。
-  有关示例，请参阅[使用服务访问集群中的应用程序](/zh/docs/tasks/access-application-cluster/service-access-application-cluster/)。
+  有关示例，请参阅[使用服务访问集群中的应用程序](/zh-cn/docs/tasks/access-application-cluster/service-access-application-cluster/)。
 
 
diff --git a/content/zh-cn/docs/concepts/configuration/secret.md b/content/zh-cn/docs/concepts/configuration/secret.md
new file mode 100644
index 0000000000..5c0549f1f3
--- /dev/null
+++ b/content/zh-cn/docs/concepts/configuration/secret.md
@@ -0,0 +1,2240 @@
+---
+title: Secret
+content_type: concept
+feature:
+  title: Secret 和配置管理
+  description: >
+    部署和更新 Secret 和应用程序的配置而不必重新构建容器镜像，
+    且不必将软件堆栈配置中的秘密信息暴露出来。
+weight: 30
+---
+<!--
+reviewers:
+- mikedanese
+title: Secrets
+content_type: concept
+feature:
+  title: Secret and configuration management
+  description: >
+    Deploy and update secrets and application configuration without rebuilding your image
+    and without exposing secrets in your stack configuration.
+weight: 30
+-->
+
+<!-- overview -->
+
+<!--
+A Secret is an object that contains a small amount of sensitive data such as
+a password, a token, or a key. Such information might otherwise be put in a
+{{< glossary_tooltip term_id="pod" >}} specification or in a
+{{< glossary_tooltip text="container image" term_id="image" >}}. Using a
+Secret means that you don't need to include confidential data in your
+application code.
+-->
+Secret 是一种包含少量敏感信息例如密码、令牌或密钥的对象。
+这样的信息可能会被放在 {{< glossary_tooltip term_id="pod" >}} 规约中或者镜像中。
+使用 Secret 意味着你不需要在应用程序代码中包含机密数据。
+
+<!--
+Because Secrets can be created independently of the Pods that use them, there
+is less risk of the Secret (and its data) being exposed during the workflow of
+creating, viewing, and editing Pods. Kubernetes, and applications that run in
+your cluster, can also take additional precautions with Secrets, such as avoiding
+writing secret data to nonvolatile storage.
+
+Secrets are similar to {{< glossary_tooltip text="ConfigMaps" term_id="configmap" >}}
+but are specifically intended to hold confidential data.
+-->
+由于创建 Secret 可以独立于使用它们的 Pod，
+因此在创建、查看和编辑 Pod 的工作流程中暴露 Secret（及其数据）的风险较小。
+Kubernetes 和在集群中运行的应用程序也可以对 Secret 采取额外的预防措施，
+例如避免将机密数据写入非易失性存储。
+
+Secret 类似于 {{<glossary_tooltip text="ConfigMap" term_id="configmap" >}}
+但专门用于保存机密数据。
+
+{{< caution >}}
+<!--
+Kubernetes Secrets are, by default, stored unencrypted in the API server's underlying data store (etcd). Anyone with API access can retrieve or modify a Secret, and so can anyone with access to etcd.
+Additionally, anyone who is authorized to create a Pod in a namespace can use that access to read any Secret in that namespace; this includes indirect access such as the ability to create a Deployment.
+
+In order to safely use Secrets, take at least the following steps:
+
+1. [Enable Encryption at Rest](/docs/tasks/administer-cluster/encrypt-data/) for Secrets.
+1. [Enable or configure RBAC rules](/docs/reference/access-authn-authz/authorization/) that
+   restrict reading and writing the Secret. Be aware that secrets can be obtained
+   implicitly by anyone with the permission to create a Pod.
+1. Where appropriate, also use mechanisms such as RBAC to limit which principals are allowed
+   to create new Secrets or replace existing ones.
+-->
+默认情况下，Kubernetes Secret 未加密地存储在 API 服务器的底层数据存储（etcd）中。
+任何拥有 API 访问权限的人都可以检索或修改 Secret，任何有权访问 etcd 的人也可以。
+此外，任何有权限在命名空间中创建 Pod 的人都可以使用该访问权限读取该命名空间中的任何 Secret；
+这包括间接访问，例如创建 Deployment 的能力。
+
+为了安全地使用 Secret，请至少执行以下步骤：
+
+1. 为 Secret [启用静态加密](/zh-cn/docs/tasks/administer-cluster/encrypt-data/)；
+1. [启用或配置 RBAC 规则](/zh-cn/docs/reference/access-authn-authz/authorization/)来限制读取和写入
+   Secret 的数据（包括通过间接方式）。需要注意的是，被准许创建 Pod 的人也隐式地被授权获取
+   Secret 内容。
+1. 在适当的情况下，还可以使用 RBAC 等机制来限制允许哪些主体创建新 Secret 或替换现有 Secret。
+{{< /caution >}}
+
+<!--
+See [Information security for Secrets](#information-security-for-secrets) for more details.
+-->
+参见 [Secret 的信息安全](#information-security-for-secrets)了解详情。
+
+<!-- body -->
+
+<!--
+## Uses for Secrets
+
+There are three main ways for a Pod to use a Secret:
+- As [files](#using-secrets-as-files-from-a-pod) in a
+  {{< glossary_tooltip text="volume" term_id="volume" >}} mounted on one or more of
+  its containers.
+- As [container environment variable](#using-secrets-as-environment-variables).
+- By the [kubelet when pulling images](#using-imagepullsecrets) for the Pod.
+
+The Kubernetes control plane also uses Secrets; for example,
+[bootstrap token Secrets](#bootstrap-token-secrets) are a mechanism to
+help automate node registration.
+-->
+## Secret 的使用 {#uses-for-secrets}
+
+Pod 可以用三种方式之一来使用 Secret：
+
+- 作为挂载到一个或多个容器上的{{< glossary_tooltip text="卷" term_id="volume" >}}
+  中的[文件](#using-secrets-as-files-from-a-pod)。
+- 作为[容器的环境变量](#using-secrets-as-environment-variables)。
+- 由 [kubelet 在为 Pod 拉取镜像时使用](#using-imagepullsecrets)。
+
+Kubernetes 控制面也使用 Secret；
+例如，[引导令牌 Secret](#bootstrap-token-secrets)
+是一种帮助自动化节点注册的机制。
+
+<!--
+### Alternatives to Secrets
+
+Rather than using a Secret to protect confidential data, you can pick from alternatives.
+
+Here are some of your options:
+-->
+### Secret 的替代方案  {#alternatives-to-secrets}
+
+除了使用 Secret 来保护机密数据，你也可以选择一些替代方案。
+
+下面是一些选项：
+
+<!--
+- if your cloud-native component needs to authenticate to another application that you
+  know is running within the same Kubernetes cluster, you can use a
+  [ServiceAccount](/docs/reference/access-authn-authz/authentication/#service-account-tokens)
+  and its tokens to identify your client.
+- there are third-party tools that you can run, either within or outside your cluster,
+  that provide secrets management. For example, a service that Pods access over HTTPS,
+  that reveals a secret if the client correctly authenticates (for example, with a ServiceAccount
+  token).
+-->
+- 如果你的云原生组件需要执行身份认证来访问你所知道的、在同一 Kubernetes 集群中运行的另一个应用，
+  你可以使用 [ServiceAccount](/zh-cn/docs/reference/access-authn-authz/authentication/#service-account-tokens)
+  及其令牌来标识你的客户端身份。
+- 你可以运行的第三方工具也有很多，这些工具可以运行在集群内或集群外，提供机密数据管理。
+  例如，这一工具可能是 Pod 通过 HTTPS 访问的一个服务，该服务在客户端能够正确地通过身份认证
+  （例如，通过 ServiceAccount 令牌）时，提供机密数据内容。
+<!--
+- for authentication, you can implement a custom signer for X.509 certificates, and use
+  [CertificateSigningRequests](/docs/reference/access-authn-authz/certificate-signing-requests/)
+  to let that custom signer issue certificates to Pods that need them.
+- you can use a [device plugin](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)
+  to expose node-local encryption hardware to a specific Pod. For example, you can schedule
+  trusted Pods onto nodes that provide a Trusted Platform Module, configured out-of-band.
+-->
+- 就身份认证而言，你可以为 X.509 证书实现一个定制的签名者，并使用
+  [CertificateSigningRequest](/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests/)
+  来让该签名者为需要证书的 Pod 发放证书。
+- 你可以使用一个[设备插件](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)
+  来将节点本地的加密硬件暴露给特定的 Pod。例如，你可以将可信任的 Pod
+  调度到提供可信平台模块（Trusted Platform Module，TPM）的节点上。
+  这类节点是另行配置的。
+
+<!--
+You can also combine two or more of those options, including the option to use Secret objects themselves.
+
+For example: implement (or deploy) an {{< glossary_tooltip text="operator" term_id="operator-pattern" >}}
+that fetches short-lived session tokens from an external service, and then creates Secrets based
+on those short-lived session tokens. Pods running in your cluster can make use of the session tokens,
+and operator ensures they are valid. This separation means that you can run Pods that are unaware of
+the exact mechanisms for issuing and refreshing those session tokens.
+-->
+你还可以将如上选项的两种或多种进行组合，包括直接使用 Secret 对象本身也是一种选项。
+
+例如：实现（或部署）一个 {{< glossary_tooltip text="operator" term_id="operator-pattern" >}}，
+从外部服务取回生命期很短的会话令牌，之后基于这些生命期很短的会话令牌来创建 Secret。
+运行在集群中的 Pod 可以使用这些会话令牌，而 Operator 则确保这些令牌是合法的。
+这种责权分离意味着你可以运行那些不了解会话令牌如何发放与刷新的确切机制的 Pod。
+
+<!--
+## Working with Secrets
+
+### Creating a Secret
+
+There are several options to create a Secret:
+
+- [create Secret using `kubectl` command](/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
+- [create Secret from config file](/docs/tasks/configmap-secret/managing-secret-using-config-file/)
+- [create Secret using kustomize](/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
+-->
+## 使用 Secret  {#working-with-secrets}
+
+### 创建 Secret  {#creating-a-secret}
+
+- [使用 `kubectl` 命令来创建 Secret](/zh-cn/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
+- [基于配置文件来创建 Secret](/zh-cn/docs/tasks/configmap-secret/managing-secret-using-config-file/)
+- [使用 kustomize 来创建 Secret](/zh-cn/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
+
+<!--
+#### Constraints on Secret names and data {#restriction-names-data}
+
+The name of a Secret object must be a valid
+[DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
+-->
+#### 对 Secret 名称与数据的约束 {#restriction-names-data}
+
+Secret 对象的名称必须是合法的
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
+
+<!--
+You can specify the `data` and/or the `stringData` field when creating a
+configuration file for a Secret.  The `data` and the `stringData` fields are optional.
+The values for all keys in the `data` field have to be base64-encoded strings.
+If the conversion to base64 string is not desirable, you can choose to specify
+the `stringData` field instead, which accepts arbitrary strings as values.
+
+The keys of `data` and `stringData` must consist of alphanumeric characters,
+`-`, `_` or `.`. All key-value pairs in the `stringData` field are internally
+merged into the `data` field. If a key appears in both the `data` and the
+`stringData` field, the value specified in the `stringData` field takes
+precedence.
+-->
+在为创建 Secret 编写配置文件时，你可以设置 `data` 与/或 `stringData` 字段。
+`data` 和 `stringData` 字段都是可选的。`data` 字段中所有键值都必须是 base64
+编码的字符串。如果不希望执行这种 base64 字符串的转换操作，你可以选择设置
+`stringData` 字段，其中可以使用任何字符串作为其取值。
+
+`data` 和 `stringData` 中的键名只能包含字母、数字、`-`、`_` 或 `.` 字符。
+`stringData` 字段中的所有键值对都会在内部被合并到 `data` 字段中。
+如果某个主键同时出现在 `data` 和 `stringData` 字段中，`stringData`
+所指定的键值具有高优先级。
+
+<!--
+#### Size limit {#restriction-data-size}
+
+Individual secrets are limited to 1MiB in size. This is to discourage creation
+of very large secrets that could exhaust the API server and kubelet memory.
+However, creation of many smaller secrets could also exhaust memory. You can
+use a [resource quota](/docs/concepts/policy/resource-quotas/) to limit the
+number of Secrets (or other resources) in a namespace.
+-->
+#### 尺寸限制   {#restriction-data-size}
+
+每个 Secret 的尺寸最多为 1MiB。施加这一限制是为了避免用户创建非常大的 Secret，
+进而导致 API 服务器和 kubelet 内存耗尽。不过创建很多小的 Secret 也可能耗尽内存。
+你可以使用[资源配额](/zh-cn/docs/concepts/policy/resource-quotas/)来约束每个名字空间中
+Secret（或其他资源）的个数。
+
+<!--
+### Editing a Secret
+
+You can edit an existing Secret using kubectl:
+-->
+### 编辑 Secret    {#editing-a-secret}
+
+你可以使用 kubectl 来编辑一个已有的 Secret：
+
+```shell
+kubectl edit secrets mysecret
+```
+
+<!--
+This opens your default editor and allows you to update the base64 encoded Secret
+values in the `data` field; for example:
+-->
+这一命令会启动你的默认编辑器，允许你更新 `data` 字段中存放的 base64 编码的 Secret 值；
+例如：
+
+```yaml
+# 请编辑以下对象。以 `#` 开头的几行将被忽略，
+# 且空文件将放弃编辑。如果保存此文件时出错，
+# 则重新打开此文件时也会有相关故障。
+apiVersion: v1
+data:
+  username: YWRtaW4=
+  password: MWYyZDFlMmU2N2Rm
+kind: Secret
+metadata:
+  annotations:
+    kubectl.kubernetes.io/last-applied-configuration: { ... }
+  creationTimestamp: 2020-01-22T18:41:56Z
+  name: mysecret
+  namespace: default
+  resourceVersion: "164619"
+  uid: cfee02d6-c137-11e5-8d73-42010af00002
+type: Opaque
+```
+
+<!--
+That example manifest defines a Secret with two keys in the `data` field: `username` and `password`.
+The values are Base64 strings in the manifest; however, when you use the Secret with a Pod
+then the kubelet provides the _decoded_ data to the Pod and its containers.
+
+You can package many keys and values into one Secret, or use many Secrets, whichever is convenient.
+-->
+这一示例清单定义了一个 Secret，其 `data` 字段中包含两个主键：`username` 和 `password`。
+清单中的字段值是 Base64 字符串，不过，当你在 Pod 中使用 Secret 时，kubelet 为 Pod
+及其中的容器提供的是**解码**后的数据。
+
+你可以在一个 Secret 中打包多个主键和数值，也可以选择使用多个 Secret，
+完全取决于哪种方式最方便。
+
+<!--
+### Using a Secret
+
+Secrets can be mounted as data volumes or exposed as
+{{< glossary_tooltip text="environment variables" term_id="container-env-variables" >}}
+to be used by a container in a Pod. Secrets can also be used by other parts of the
+system, without being directly exposed to the Pod. For example, Secrets can hold
+credentials that other parts of the system should use to interact with external
+systems on your behalf.
+-->
+### 使用 Secret    {#using-a-secret}
+
+Secret 可以以数据卷的形式挂载，也可以作为{{< glossary_tooltip text="环境变量" term_id="container-env-variables" >}}
+暴露给 Pod 中的容器使用。Secret 也可用于系统中的其他部分，而不是一定要直接暴露给 Pod。
+例如，Secret 也可以包含系统中其他部分在替你与外部系统交互时要使用的凭证数据。
+
+<!--
+Secret volume sources are validated to ensure that the specified object
+reference actually points to an object of type Secret. Therefore, a Secret
+needs to be created before any Pods that depend on it.  
+
+If the Secret cannot be fetched (perhaps because it does not exist, or
+due to a temporary lack of connection to the API server) the kubelet
+periodically retries running that Pod. The kubelet also reports an Event
+for that Pod, including details of the problem fetching the Secret.
+-->
+Kubernetes 会检查 Secret 的卷数据源，确保所指定的对象引用确实指向类型为 Secret
+的对象。因此，如果 Pod 依赖于某 Secret，该 Secret 必须先于 Pod 被创建。
+
+如果 Secret 内容无法取回（可能因为 Secret 尚不存在或者临时性地出现 API
+服务器网络连接问题），kubelet 会周期性地重试 Pod 运行操作。kubelet 也会为该 Pod
+报告 Event 事件，给出读取 Secret 时遇到的问题细节。
+
+<!--
+#### Optional Secrets {#restriction-secret-must-exist}
+
+When you define a container environment variable based on a Secret,
+you can mark it as _optional_. The default is for the Secret to be
+required.
+
+None of a Pod's containers will start until all non-optional Secrets are
+available.
+
+If a Pod references a specific key in a Secret and that Secret does exist, but
+is missing the named key, the Pod fails during startup.
+-->
+#### 可选的 Secret   {#restriction-secret-must-exist}
+
+当你定义一个基于 Secret 的环境变量时，你可以将其标记为可选。
+默认情况下，所引用的 Secret 都是必需的。
+
+只有所有非可选的 Secret 都可用时，Pod 中的容器才能启动运行。
+
+如果 Pod 引用了 Secret 中的特定主键，而虽然 Secret 本身存在，对应的主键不存在，
+Pod 启动也会失败。
+
+<!--
+### Using Secrets as files from a Pod {#using-secrets-as-files-from-a-pod}
+
+If you want to access data from a Secret in a Pod, one way to do that is to
+have Kubernetes make the value of that Secret be available as a file inside
+the filesystem of one or more of the Pod's containers.
+
+To configure that, you:
+-->
+### 在 Pod 中以文件形式使用 Secret  {#using-secrets-as-files-from-a-pod}
+
+如果你希望在 Pod 中访问 Secret 内的数据，一种方式是让 Kubernetes 将 Secret
+以 Pod 中一个或多个容器的文件系统中的文件的形式呈现出来。
+
+要配置这种行为，你需要：
+
+<!--
+1. Create a secret or use an existing one. Multiple Pods can reference the same secret.
+1. Modify your Pod definition to add a volume under `.spec.volumes[]`. Name the volume anything, and have a `.spec.volumes[].secret.secretName` field equal to the name of the Secret object.
+1. Add a `.spec.containers[].volumeMounts[]` to each container that needs the secret. Specify `.spec.containers[].volumeMounts[].readOnly = true` and `.spec.containers[].volumeMounts[].mountPath` to an unused directory name where you would like the secrets to appear.
+1. Modify your image or command line so that the program looks for files in that directory. Each key in the secret `data` map becomes the filename under `mountPath`.
+
+This is an example of a Pod that mounts a Secret named `mysecret` in a volume:
+-->
+1. 创建一个 Secret 或者使用已有的 Secret。多个 Pod 可以引用同一个 Secret。
+1. 更改 Pod 定义，在 `.spec.volumes[]` 下添加一个卷。根据需要为卷设置其名称，
+   并将 `.spec.volumes[].secret.secretName` 字段设置为 Secret 对象的名称。
+1. 为每个需要该 Secret 的容器添加 `.spec.containers[].volumeMounts[]`。
+   并将 `.spec.containers[].volumeMounts[].readOnly` 设置为 `true`，
+   将 `.spec.containers[].volumeMounts[].mountPath` 设置为希望 Secret
+   被放置的、目前尚未被使用的路径名。
+1. 更改你的镜像或命令行，以便程序读取所设置的目录下的文件。Secret 的 `data`
+   映射中的每个主键都成为 `mountPath` 下面的文件名。
+
+下面是一个通过卷来挂载名为 `mysecret` 的 Secret 的 Pod 示例：
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: mypod
+spec:
+  containers:
+  - name: mypod
+    image: redis
+    volumeMounts:
+    - name: foo
+      mountPath: "/etc/foo"
+      readOnly: true
+  volumes:
+  - name: foo
+    secret:
+      secretName: mysecret
+      optional: false # 默认设置，意味着 "mysecret" 必须已经存在
+```
+
+<!--
+Each Secret you want to use needs to be referred to in `.spec.volumes`.
+
+If there are multiple containers in the Pod, then each container needs its
+own `volumeMounts` block, but only one `.spec.volumes` is needed per Secret.
+-->
+你要访问的每个 Secret 都需要通过 `.spec.volumes` 来引用。
+
+如果 Pod 中包含多个容器，则每个容器需要自己的 `volumeMounts` 块，
+不过针对每个 Secret 而言，只需要一份 `.spec.volumes` 设置。
+
+{{< note >}}
+<!--
+Versions of Kubernetes before v1.22 automatically created credentials for accessing
+the Kubernetes API. This older mechanism was based on creating token Secrets that
+could then be mounted into running Pods.
+In more recent versions, including Kubernetes v{{< skew currentVersion >}}, API credentials
+are obtained directly by using the [TokenRequest](/docs/reference/kubernetes-api/authentication-resources/token-request-v1/) API,
+and are mounted into Pods using a [projected volume](/docs/reference/access-authn-authz/service-accounts-admin/#bound-service-account-token-volume).
+The tokens obtained using this method have bounded lifetimes, and are automatically
+invalidated when the Pod they are mounted into is deleted.
+-->
+Kubernetes v1.22 版本之前都会自动创建用来访问 Kubernetes API 的凭证。
+这一老的机制是基于创建可被挂载到 Pod 中的令牌 Secret 来实现的。
+在最近的版本中，包括 Kubernetes v{{< skew currentVersion >}} 中，API 凭据是直接通过
+[TokenRequest](/zh-cn/docs/reference/kubernetes-api/authentication-resources/token-request-v1/)
+API 来获得的，这一凭据会使用[投射卷](/zh-cn/docs/reference/access-authn-authz/service-accounts-admin/#bound-service-account-token-volume)
+挂载到 Pod 中。使用这种方式获得的令牌有确定的生命期，并且在挂载它们的 Pod
+被删除时自动作废。
+
+<!--
+You can still [manually create](/docs/tasks/configure-pod-container/configure-service-account/#manually-create-a-service-account-api-token)
+a service account token Secret; for example, if you need a token that never expires.
+However, using the [TokenRequest](/docs/reference/kubernetes-api/authentication-resources/token-request-v1/)
+subresource to obtain a token to access the API is recommended instead.
+You can use the [`kubectl create token`](/docs/reference/generated/kubectl/kubectl-commands#-em-token-em-)
+command to obtain a token from the `TokenRequest` API.
+-->
+你仍然可以[手动创建](/zh-cn/docs/tasks/configure-pod-container/configure-service-account/#manually-create-a-service-account-api-token)
+服务账号令牌。例如，当你需要一个永远都不过期的令牌时。
+不过，仍然建议使用 [TokenRequest](/zh-cn/docs/reference/kubernetes-api/authentication-resources/token-request-v1/)
+子资源来获得访问 API 服务器的令牌。
+你可以使用 [`kubectl create token`](/docs/reference/generated/kubectl/kubectl-commands#-em-token-em-)
+命令调用 `TokenRequest` API 获得令牌。
+{{< /note >}}
+
+<!--
+#### Projection of Secret keys to specific paths
+
+You can also control the paths within the volume where Secret keys are projected.
+You can use the `.spec.volumes[].secret.items` field to change the target path of each key:
+-->
+#### 将 Secret 键投射到特定目录 {#projection-of-secret-keys-to-specific-paths}
+
+你也可以控制 Secret 键所投射到的卷中的路径。
+你可以使用 `.spec.volumes[].secret.items` 字段来更改每个主键的目标路径：
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: mypod
+spec:
+  containers:
+  - name: mypod
+    image: redis
+    volumeMounts:
+    - name: foo
+      mountPath: "/etc/foo"
+      readOnly: true
+  volumes:
+  - name: foo
+    secret:
+      secretName: mysecret
+      items:
+      - key: username
+        path: my-group/my-username
+```
+
+<!--
+What will happen:
+
+* the `username` key from `mysecret` is available to the container at the path
+  `/etc/foo/my-group/my-username` instead of at `/etc/foo/username`.
+* the `password` key from that Secret object is not projected.
+
+If `.spec.volumes[].secret.items` is used, only keys specified in `items` are projected.
+To consume all keys from the Secret, all of them must be listed in the `items` field.
+
+If you list keys explicitly, then all listed keys must exist in the corresponding Secret.
+Otherwise, the volume is not created.
+-->
+将发生的事情如下：
+
+- `mysecret` 中的键 `username` 会出现在容器中的路径为 `/etc/foo/my-group/my-username`，
+  而不是 `/etc/foo/username`。
+- Secret 对象的 `password` 键不会被投射。
+
+如果使用了 `.spec.volumes[].secret.items`，则只有 `items` 中指定了的主键会被投射。
+如果要使用 Secret 中的所有主键，则需要将它们全部枚举到 `items` 字段中。
+
+如果你显式地列举了主键，则所列举的主键都必须在对应的 Secret 中存在。
+否则所在的卷不会被创建。
+
+<!--
+#### Secret files permissions
+
+You can set the POSIX file access permission bits for a single Secret key.
+If you don't specify any permissions, `0644` is used by default.
+You can also set a default mode for the entire Secret volume and override per key if needed.
+
+For example, you can specify a default mode like this:
+-->
+#### Secret 文件的访问权限 {#secret-files-permissions}
+
+你可以为某个 Secret 主键设置 POSIX 文件访问权限位。
+如果你不指定访问权限，默认会使用 `0644`。
+你也可以为整个 Secret 卷设置默认的访问模式，然后再根据需要在主键层面重载。
+
+例如，你可以像下面这样设置默认的模式：
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: mypod
+spec:
+  containers:
+  - name: mypod
+    image: redis
+    volumeMounts:
+    - name: foo
+      mountPath: "/etc/foo"
+  volumes:
+  - name: foo
+    secret:
+      secretName: mysecret
+      defaultMode: 0400
+```
+
+<!--
+The secret is mounted on `/etc/foo`; all the files created by the
+secret volume mount have permission `0400`.
+-->
+该 Secret 被挂载在 `/etc/foo` 下，Secret 卷挂载所创建的所有文件的访问模式都是 `0400`。
+
+{{< note >}}
+<!--
+If you're defining a Pod or a Pod template using JSON, beware that the JSON
+specification doesn't support octal notation. You can use the decimal value
+for the `defaultMode` (for example, 0400 in octal is 256 in decimal) instead.  
+If you're writing YAML, you can write the `defaultMode` in octal.
+-->
+如果你是使用 JSON 来定义 Pod 或 Pod 模板，需要注意 JSON 规范不支持八进制的记数方式。
+你可以在 `defaultMode` 中设置十进制的值（例如，八进制中的 0400 在十进制中为 256）。
+如果你使用 YAML 来编写定义，你可以用八进制值来设置 `defaultMode`。
+{{< /note >}}
+
+<!--
+#### Consuming Secret values from volumes
+
+Inside the container that mounts a secret volume, the secret keys appear as
+files. The secret values are base64 decoded and stored inside these files.
+
+This is the result of commands executed inside the container from the example above:
+-->
+#### 使用来自卷中的 Secret 值  {#consuming-secret-values-from-volumes}
+
+在挂载了 Secret 卷的容器内，Secret 的主键都呈现为文件。
+Secret 的取值都是 Base64 编码的，保存在这些文件中。
+
+下面是在上例中的容器内执行命令的结果：
+
+```shell
+ls /etc/foo/
+```
+
+<!--
+The output is similar to:
+-->
+输出类似于：
+
+```
+username
+password
+```
+
+```shell
+cat /etc/foo/username
+```
+
+<!--
+The output is similar to:
+-->
+输出类似于：
+
+```
+admin
+```
+
+```shell
+cat /etc/foo/password
+```
+
+<!--
+The output is similar to:
+-->
+输出类似于：
+
+```
+1f2d1e2e67df
+```
+
+<!--
+The program in a container is responsible for reading the secret data from these
+files, as needed.
+-->
+容器中的程序要负责根据需要读取 Secret 数据。
+
+<!--
+#### Mounted Secrets are updated automatically
+
+When a volume contains data from a Secret, and that Secret is updated, Kubernetes tracks
+this and updates the data in the volume, using an eventually-consistent approach.
+-->
+#### 挂载的 Secret 是被自动更新的  {#mounted-secrets-are-updated-automatically}
+
+当卷中包含来自 Secret 的数据，而对应的 Secret 被更新，Kubernetes
+会跟踪到这一操作并更新卷中的数据。更新的方式是保证最终一致性。
+
+{{< note >}}
+<!--
+A container using a Secret as a
+[subPath](/docs/concepts/storage/volumes#using-subpath) volume mount does not receive
+automated Secret updates.
+-->
+对于以 [subPath](/zh-cn/docs/concepts/storage/volumes#using-subpath) 形式挂载 Secret 卷的容器而言，
+它们无法收到自动的 Secret 更新。
+{{< /note >}}
+
+<!--
+The kubelet keeps a cache of the current keys and values for the Secrets that are used in
+volumes for pods on that node.
+You can configure the way that the kubelet detects changes from the cached values. The `configMapAndSecretChangeDetectionStrategy` field in
+the [kubelet configuration](/docs/reference/config-api/kubelet-config.v1beta1/) controls which strategy the kubelet uses. The default strategy is `Watch`.
+-->
+Kubelet 组件会维护一个缓存，在其中保存节点上 Pod 卷中使用的 Secret 的当前主键和取值。
+你可以配置 kubelet 如何检测所缓存数值的变化。
+[kubelet 配置](/zh-cn/docs/reference/config-api/kubelet-config.v1beta1/)中的
+`configMapAndSecretChangeDetectionStrategy` 字段控制 kubelet 所采用的策略。
+默认的策略是 `Watch`。
+
+<!--
+Updates to Secrets can be either propagated by an API watch mechanism (the default), based on
+a cache with a defined time-to-live, or polled from the cluster API server on each kubelet
+synchronisation loop.
+-->
+对 Secret 的更新操作既可以通过 API 的 watch 机制（默认）来传播，
+基于设置了生命期的缓存获取，也可以通过 kubelet 的同步回路来从集群的 API
+服务器上轮询获取。
+
+<!--
+As a result, the total delay from the moment when the Secret is updated to the moment
+when new keys are projected to the Pod can be as long as the kubelet sync period + cache
+propagation delay, where the cache propagation delay depends on the chosen cache type
+(following the same order listed in the previous paragraph, these are:
+watch propagation delay, the configured cache TTL, or zero for direct polling).
+-->
+因此，从 Secret 被更新到新的主键被投射到 Pod 中，中间存在一个延迟。
+这一延迟的上限是 kubelet 的同步周期加上缓存的传播延迟，
+其中缓存的传播延迟取决于所选择的缓存类型。
+对应上一段中提到的几种传播机制，延迟时长为 watch 的传播延迟、所配置的缓存 TTL
+或者对于直接轮询而言是零。
+
+<!--
+### Using Secrets as environment variables
+
+To use a Secret in an {{< glossary_tooltip text="environment variable" term_id="container-env-variables" >}}
+in a Pod:
+-->
+### 以环境变量的方式使用 Secret   {#using-secrets-as-environment-variables}
+
+如果需要在 Pod 中以{{< glossary_tooltip text="环境变量" term_id="container-env-variables" >}}
+的形式使用 Secret：
+
+<!--
+1. Create a Secret (or use an existing one).  Multiple Pods can reference the same Secret.
+1. Modify your Pod definition in each container that you wish to consume the value of a secret
+   key to add an environment variable for each secret key you wish to consume. The environment
+   variable that consumes the secret key should populate the secret's name and key in `env[].valueFrom.secretKeyRef`.
+1. Modify your image and/or command line so that the program looks for values in the specified
+   environment variables.
+-->
+1. 创建 Secret（或者使用现有 Secret）。多个 Pod 可以引用同一个 Secret。
+1. 更改 Pod 定义，在要使用 Secret 键值的每个容器中添加与所使用的主键对应的环境变量。
+   读取 Secret 主键的环境变量应该在 `env[].valueFrom.secretKeyRef` 中填写 Secret
+   的名称和主键名称。
+1. 更改你的镜像或命令行，以便程序读取环境变量中保存的值。
+
+<!--
+This is an example of a Pod that uses a Secret via environment variables:
+-->
+下面是一个通过环境变量来使用 Secret 的示例 Pod：
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: secret-env-pod
+spec:
+  containers:
+  - name: mycontainer
+    image: redis
+    env:
+      - name: SECRET_USERNAME
+        valueFrom:
+          secretKeyRef:
+            name: mysecret
+            key: username
+            optional: false # 此值为默认值；意味着 "mysecret"
+                            # 必须存在且包含名为 "username" 的主键
+      - name: SECRET_PASSWORD
+        valueFrom:
+          secretKeyRef:
+            name: mysecret
+            key: password
+            optional: false # 此值为默认值；意味着 "mysecret"
+                            # 必须存在且包含名为 "password" 的主键
+  restartPolicy: Never
+```
+
+<!--
+#### Invalid environment variables {#restriction-env-from-invalid}
+
+Secrets used to populate environment variables by the `envFrom` field that have keys
+that are considered invalid environment variable names will have those keys
+skipped. The Pod is allowed to start.
+-->
+#### 非法环境变量    {#restriction-env-from-invalid}
+
+对于通过 `envFrom` 字段来填充环境变量的 Secret 而言，
+如果其中包含的主键不能被当做合法的环境变量名，这些主键会被忽略掉。
+Pod 仍然可以启动。
+
+<!--
+If you define a Pod with an invalid variable name, the failed Pod startup includes
+an event with the reason set to `InvalidVariableNames` and a message that lists the
+skipped invalid keys. The following example shows a Pod that refers to a Secret
+named `mysecret`, where `mysecret` contains 2 invalid keys: `1badkey` and `2alsobad`.
+-->
+如果你定义的 Pod 中包含非法的变量名称，则 Pod 可能启动失败，
+会形成 reason 为 `InvalidVariableNames` 的事件，以及列举被略过的非法主键的消息。
+下面的例子中展示了一个 Pod，引用的是名为 `mysecret` 的 Secret，
+其中包含两个非法的主键：`1badkey` 和 `2alsobad`。
+
+```shell
+kubectl get events
+```
+
+<!--
+The output is similar to:
+-->
+输出类似于：
+
+```
+LASTSEEN   FIRSTSEEN   COUNT     NAME            KIND      SUBOBJECT                         TYPE      REASON
+0s         0s          1         dapi-test-pod   Pod                                         Warning   InvalidEnvironmentVariableNames   kubelet, 127.0.0.1      Keys [1badkey, 2alsobad] from the EnvFrom secret default/mysecret were skipped since they are considered invalid environment variable names.
+```
+
+<!--
+#### Consuming Secret values from environment variables
+
+Inside a container that consumes a Secret using environment variables, the secret keys appear
+as normal environment variables. The values of those variables are the base64 decoded values
+of the secret data.
+
+This is the result of commands executed inside the container from the example above:
+-->
+#### 通过环境变量使用 Secret 值 {#consuming-secret-values-from-environment-variables}
+
+在通过环境变量来使用 Secret 的容器中，Secret 主键展现为普通的环境变量。
+这些变量的取值是 Secret 数据的 Base64 解码值。
+
+下面是在前文示例中的容器内执行命令的结果：
+
+```shell
+echo "$SECRET_USERNAME"
+```
+
+<!--
+The output is similar to:
+-->
+输出类似于：
+
+```
+admin
+```
+
+```shell
+echo "$SECRET_PASSWORD"
+```
+
+<!--
+The output is similar to:
+-->
+输出类似于：
+
+```
+1f2d1e2e67df
+```
+
+{{< note >}}
+<!--
+If a container already consumes a Secret in an environment variable,
+a Secret update will not be seen by the container unless it is
+restarted. There are third party solutions for triggering restarts when
+secrets change.
+-->
+如果容器已经在通过环境变量来使用 Secret，Secret 更新在容器内是看不到的，
+除非容器被重启。有一些第三方的解决方案，能够在 Secret 发生变化时触发容器重启。
+{{< /note >}}
+
+<!--
+### Container image pull secrets {#using-imagepullsecrets}
+
+If you want to fetch container images from a private repository, you need a way for
+the kubelet on each node to authenticate to that repository. You can configure
+_image pull secrets_ to make this possible. These secrets are configured at the Pod
+level.
+-->
+### 容器镜像拉取 Secret  {#using-imagepullsecrets}
+
+如果你尝试从私有仓库拉取容器镜像，你需要一种方式让每个节点上的 kubelet
+能够完成与镜像库的身份认证。你可以配置 **镜像拉取 Secret** 来实现这点。
+Secret 是在 Pod 层面来配置的。
+
+<!--
+The `imagePullSecrets` field for a Pod is a list of references to Secrets in the same namespace
+as the Pod.
+You can use an `imagePullSecrets` to pass image registry access credentials to
+the kubelet. The kubelet uses this information to pull a private image on behalf of your Pod.
+See `PodSpec` in the [Pod API reference](/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodSpec)
+for more information about the `imagePullSecrets` field.
+-->
+Pod 的 `imagePullSecrets` 字段是一个对 Pod 所在的名字空间中的 Secret
+的引用列表。你可以使用 `imagePullSecrets` 来将镜像仓库访问凭据传递给 kubelet。
+kubelet 使用这个信息来替你的 Pod 拉取私有镜像。
+参阅 [Pod API 参考](/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodSpec)
+中的 `PodSpec` 进一步了解 `imagePullSecrets` 字段。
+
+<!--
+#### Using imagePullSecrets
+
+The `imagePullSecrets` field is a list of references to secrets in the same namespace.
+You can use an `imagePullSecrets` to pass a secret that contains a Docker (or other) image registry
+password to the kubelet. The kubelet uses this information to pull a private image on behalf of your Pod.
+See the [PodSpec API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core) for more information about the `imagePullSecrets` field.
+-->
+#### 使用 imagePullSecrets {#using-imagepullsecrets-1}
+
+`imagePullSecrets` 字段是一个列表，包含对同一名字空间中 Secret 的引用。
+你可以使用 `imagePullSecrets` 将包含 Docker（或其他）镜像仓库密码的 Secret
+传递给 kubelet。kubelet 使用此信息来替 Pod 拉取私有镜像。
+参阅 [PodSpec API ](/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodSpec)
+进一步了解 `imagePullSecrets` 字段。
+
+<!--
+##### Manually specifying an imagePullSecret
+
+You can learn how to specify `imagePullSecrets` from the [container images](/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod)
+documentation.
+-->
+##### 手动设定 imagePullSecret {#manually-specifying-an-imagepullsecret}
+
+你可以通过阅读[容器镜像](/zh-cn/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod)
+文档了解如何设置 `imagePullSecrets`。
+
+<!--
+##### Arranging for imagePullSecrets to be automatically attached
+
+You can manually create `imagePullSecrets`, and reference these from
+a ServiceAccount. Any Pods created with that ServiceAccount
+or created with that ServiceAccount by default, will get their `imagePullSecrets`
+field set to that of the service account.
+See [Add ImagePullSecrets to a service account](/docs/tasks/configure-pod-container/configure-service-account/#add-imagepullsecrets-to-a-service-account)
+ for a detailed explanation of that process.
+-->
+##### 设置 imagePullSecrets 为自动挂载 {#arranging-for-imagepullsecrets-to-be-automatically-attached}
+
+你可以手动创建 `imagePullSecret`，并在一个 ServiceAccount 中引用它。
+对使用该 ServiceAccount 创建的所有 Pod，或者默认使用该 ServiceAccount 创建的 Pod
+而言，其 `imagePullSecrets` 字段都会设置为该服务账号。
+请阅读[向服务账号添加 ImagePullSecrets](/zh-cn/docs/tasks/configure-pod-container/configure-service-account/#add-imagepullsecrets-to-a-service-account)
+来详细了解这一过程。
+
+<!--
+### Using Secrets with static Pods {#restriction-static-pod}
+
+You cannot use ConfigMaps or Secrets with
+{{< glossary_tooltip text="static Pods" term_id="static-pod" >}}.
+-->
+### 在静态 Pod 中使用 Secret    {#restriction-static-pod}
+
+你不可以在{{< glossary_tooltip text="静态 Pod" term_id="static-pod" >}}
+中使用 ConfigMap 或 Secret。
+
+<!--
+## Use cases
+
+### Use case: As container environment variables
+
+Create a secret
+-->
+## 使用场景  {#use-case}
+
+### 使用场景：作为容器环境变量 {#use-case-as-container-environment-variables}
+
+创建 Secret：
+
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: mysecret
+type: Opaque
+data:
+  USER_NAME: YWRtaW4=
+  PASSWORD: MWYyZDFlMmU2N2Rm
+```
+
+<!--
+Create the Secret:
+-->
+创建 Secret：
+
+```shell
+kubectl apply -f mysecret.yaml
+```
+
+<!--
+Use `envFrom` to define all of the Secret's data as container environment variables. The key from the Secret becomes the environment variable name in the Pod.
+-->
+使用 `envFrom` 来将 Secret 的所有数据定义为容器的环境变量。
+来自 Secret 的主键成为 Pod 中的环境变量名称：
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: secret-test-pod
+spec:
+  containers:
+    - name: test-container
+      image: k8s.gcr.io/busybox
+      command: [ "/bin/sh", "-c", "env" ]
+      envFrom:
+      - secretRef:
+          name: mysecret
+  restartPolicy: Never
+```
+
+<!--
+### Use case: Pod with SSH keys
+
+Create a Secret containing some SSH keys:
+-->
+### 使用场景：带 SSH 密钥的 Pod {#use-case-pod-with-ssh-keys}
+
+创建包含一些 SSH 密钥的 Secret：
+
+```shell
+kubectl create secret generic ssh-key-secret --from-file=ssh-privatekey=/path/to/.ssh/id_rsa --from-file=ssh-publickey=/path/to/.ssh/id_rsa.pub
+```
+
+<!--
+The output is similar to:
+-->
+输出类似于：
+
+```
+secret "ssh-key-secret" created
+```
+
+<!--
+You can also create a `kustomization.yaml` with a `secretGenerator` field containing ssh keys.
+-->
+你也可以创建一个 `kustomization.yaml` 文件，在其 `secretGenerator`
+字段中包含 SSH 密钥。
+
+{{< caution >}}
+<!--
+Think carefully before sending your own SSH keys: other users of the cluster may have access
+to the Secret.
+-->
+在提供你自己的 SSH 密钥之前要仔细思考：集群的其他用户可能有权访问该 Secret。
+
+<!--
+You could instead create an SSH private key representing a service identity that you want to be
+accessible to all the users with whom you share the Kubernetes cluster, and that you can revoke
+if the credentials are compromised.
+-->
+你也可以创建一个 SSH 私钥，代表一个你希望与你共享 Kubernetes 集群的其他用户分享的服务标识。
+当凭据信息被泄露时，你可以收回该访问权限。
+{{< /caution >}}
+
+<!--
+Now you can create a Pod which references the secret with the SSH key and
+consumes it in a volume:
+-->
+现在你可以创建一个 Pod，在其中访问包含 SSH 密钥的 Secret，并通过卷的方式来使用它：
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: secret-test-pod
+  labels:
+    name: secret-test
+spec:
+  volumes:
+  - name: secret-volume
+    secret:
+      secretName: ssh-key-secret
+  containers:
+  - name: ssh-test-container
+    image: mySshImage
+    volumeMounts:
+    - name: secret-volume
+      readOnly: true
+      mountPath: "/etc/secret-volume"
+```
+
+<!--
+When the container's command runs, the pieces of the key will be available in:
+-->
+容器命令执行时，秘钥的数据可以在下面的位置访问到：
+
+```
+/etc/secret-volume/ssh-publickey
+/etc/secret-volume/ssh-privatekey
+```
+
+<!--
+The container is then free to use the secret data to establish an SSH connection.
+-->
+容器就可以随便使用 Secret 数据来建立 SSH 连接。
+
+<!--
+### Use case: Pods with prod / test credentials
+
+This example illustrates a Pod which consumes a secret containing production
+credentials and another Pod which consumes a secret with test environment
+credentials.
+
+You can create a `kustomization.yaml` with a `secretGenerator` field or run
+`kubectl create secret`.
+-->
+### 使用场景：带有生产、测试环境凭据的 Pod {#use-case-pods-with-prod-test-credentials}
+
+这一示例所展示的一个 Pod 会使用包含生产环境凭据的 Secret，另一个 Pod
+使用包含测试环境凭据的 Secret。
+
+你可以创建一个带有 `secretGenerator` 字段的 `kustomization.yaml` 文件或者运行
+`kubectl create secret` 来创建 Secret。
+
+```shell
+kubectl create secret generic prod-db-secret --from-literal=username=produser --from-literal=password=Y4nys7f11
+```
+
+<!--
+The output is similar to:
+-->
+输出类似于：
+
+```
+secret "prod-db-secret" created
+```
+
+<!--
+You can also create a secret for test environment credentials.
+-->
+你也可以创建一个包含测试环境凭据的 Secret：
+
+```shell
+kubectl create secret generic test-db-secret --from-literal=username=testuser --from-literal=password=iluvtests
+```
+
+<!--
+The output is similar to:
+-->
+输出类似于：
+
+```
+secret "test-db-secret" created
+```
+
+{{< note >}}
+<!--
+Special characters such as `$`, `\`, `*`, `=`, and `!` will be interpreted by your [shell](https://en.wikipedia.org/wiki/Shell_(computing)) and require escaping.
+-->
+特殊字符（例如 `$`、`\`、`*`、`=` 和 `!`）会被你的
+[Shell](https://zh.wikipedia.org/wiki/%E6%AE%BC%E5%B1%A4) 解释，因此需要转义。
+
+<!--
+In most shells, the easiest way to escape the password is to surround it with single quotes (`'`).
+For example, if your actual password is `S!B\*d$zDsb=`, you should execute the command this way:
+-->
+在大多数 Shell 中，对密码进行转义的最简单方式是用单引号（`'`）将其括起来。
+例如，如果你的实际密码是 `S!B\*d$zDsb`，则应通过以下方式执行命令：
+
+```shell
+kubectl create secret generic dev-db-secret --from-literal=username=devuser --from-literal=password='S!B\*d$zDsb='
+```
+<!--
+You do not need to escape special characters in passwords from files (`--from-file`).
+-->
+你无需对文件中的密码（`--from-file`）中的特殊字符进行转义。
+{{< /note >}}
+
+<!--
+Now make the Pods:
+-->
+现在生成 Pod：
+
+```shell
+cat <<EOF > pod.yaml
+apiVersion: v1
+kind: List
+items:
+- kind: Pod
+  apiVersion: v1
+  metadata:
+    name: prod-db-client-pod
+    labels:
+      name: prod-db-client
+  spec:
+    volumes:
+    - name: secret-volume
+      secret:
+        secretName: prod-db-secret
+    containers:
+    - name: db-client-container
+      image: myClientImage
+      volumeMounts:
+      - name: secret-volume
+        readOnly: true
+        mountPath: "/etc/secret-volume"
+- kind: Pod
+  apiVersion: v1
+  metadata:
+    name: test-db-client-pod
+    labels:
+      name: test-db-client
+  spec:
+    volumes:
+    - name: secret-volume
+      secret:
+        secretName: test-db-secret
+    containers:
+    - name: db-client-container
+      image: myClientImage
+      volumeMounts:
+      - name: secret-volume
+        readOnly: true
+        mountPath: "/etc/secret-volume"
+EOF
+```
+
+<!--
+Add the pods to the same `kustomization.yaml`:
+-->
+将 Pod 添加到同一 `kustomization.yaml` 文件中：
+
+```shell
+cat <<EOF >> kustomization.yaml
+resources:
+- pod.yaml
+EOF
+```
+
+<!--
+Apply all those objects on the API server by running:
+-->
+通过下面的命令在 API 服务器上应用所有这些对象：
+
+```shell
+kubectl apply -k .
+```
+
+<!--
+Both containers will have the following files present on their filesystems with the values
+for each container's environment:
+-->
+两个文件都会在其文件系统中出现下面面的文件，文件中内容是各个容器的环境值：
+
+```
+/etc/secret-volume/username
+/etc/secret-volume/password
+```
+
+<!--
+Note how the specs for the two Pods differ only in one field; this facilitates
+creating Pods with different capabilities from a common Pod template.
+-->
+注意这两个 Pod 的规约中只有一个字段不同。
+这便于基于相同的 Pod 模板生成具有不同能力的 Pod。
+
+<!--
+You could further simplify the base Pod specification by using two service accounts:
+
+1. `prod-user` with the `prod-db-secret`
+1. `test-user` with the `test-db-secret`
+
+The Pod specification is shortened to:
+-->
+你可以通过使用两个服务账号来进一步简化这一基本的 Pod 规约：
+
+1. `prod-user` 服务账号使用 `prod-db-secret`
+1. `test-user` 服务账号使用 `test-db-secret`
+
+Pod 规约简化为：
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: prod-db-client-pod
+  labels:
+    name: prod-db-client
+spec:
+  serviceAccount: prod-db-client
+  containers:
+  - name: db-client-container
+    image: myClientImage
+```
+
+<!--
+### Use case: dotfiles in a secret volume
+
+You can make your data "hidden" by defining a key that begins with a dot.
+This key represents a dotfile or "hidden" file. For example, when the following secret
+is mounted into a volume, `secret-volume`:
+-->
+### 使用场景：在 Secret 卷中带句点的文件 {#use-case-dotfiles-in-a-secret-volume}
+
+通过定义以句点（`.`）开头的主键，你可以“隐藏”你的数据。
+这些主键代表的是以句点开头的文件或“隐藏”文件。
+例如，当下面的 Secret 被挂载到 `secret-volume` 卷中时：
+
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: dotfile-secret
+data:
+  .secret-file: dmFsdWUtMg0KDQo=
+---
+apiVersion: v1
+kind: Pod
+metadata:
+  name: secret-dotfiles-pod
+spec:
+  volumes:
+  - name: secret-volume
+    secret:
+      secretName: dotfile-secret
+  containers:
+  - name: dotfile-test-container
+    image: k8s.gcr.io/busybox
+    command:
+    - ls
+    - "-l"
+    - "/etc/secret-volume"
+    volumeMounts:
+    - name: secret-volume
+      readOnly: true
+      mountPath: "/etc/secret-volume"
+```
+
+<!--
+The volume will contain a single file, called `.secret-file`, and
+the `dotfile-test-container` will have this file present at the path
+`/etc/secret-volume/.secret-file`.
+-->
+卷中会包含一个名为 `.secret-file` 的文件，并且容器 `dotfile-test-container`
+中此文件位于路径 `/etc/secret-volume/.secret-file` 处。
+
+{{< note >}}
+<!--
+Files beginning with dot characters are hidden from the output of  `ls -l`;
+you must use `ls -la` to see them when listing directory contents.
+-->
+以句点开头的文件会在 `ls -l` 的输出中被隐藏起来；
+列举目录内容时你必须使用 `ls -la` 才能看到它们。
+{{< /note >}}
+
+<!--
+### Use case: Secret visible to one container in a Pod
+
+Consider a program that needs to handle HTTP requests, do some complex business
+logic, and then sign some messages with an HMAC. Because it has complex
+application logic, there might be an unnoticed remote file reading exploit in
+the server, which could expose the private key to an attacker.
+-->
+### 使用场景：仅对 Pod 中一个容器可见的 Secret {#use-case-secret-visible-to-one-container-in-a-pod}
+
+考虑一个需要处理 HTTP 请求，执行某些复杂的业务逻辑，之后使用 HMAC
+来对某些消息进行签名的程序。因为这一程序的应用逻辑很复杂，
+其中可能包含未被注意到的远程服务器文件读取漏洞，
+这种漏洞可能会把私钥暴露给攻击者。
+
+<!--
+This could be divided into two processes in two containers: a frontend container
+which handles user interaction and business logic, but which cannot see the
+private key; and a signer container that can see the private key, and responds
+to simple signing requests from the frontend (for example, over localhost networking).
+-->
+这一程序可以分隔成两个容器中的两个进程：前端容器要处理用户交互和业务逻辑，
+但无法看到私钥；签名容器可以看到私钥，并对来自前端的简单签名请求作出响应
+（例如，通过本地主机网络）。
+
+<!--
+With this partitioned approach, an attacker now has to trick the application
+server into doing something rather arbitrary, which may be harder than getting
+it to read a file.
+-->
+采用这种划分的方法，攻击者现在必须欺骗应用服务器来做一些其他操作，
+而这些操作可能要比读取一个文件要复杂很多。
+
+<!--
+## Types of Secret {#secret-types}
+
+When creating a Secret, you can specify its type using the `type` field of
+the [Secret](/docs/reference/kubernetes-api/config-and-storage-resources/secret-v1/)
+resource, or certain equivalent `kubectl` command line flags (if available).
+The Secret type is used to facilitate programmatic handling of the Secret data.
+
+Kubernetes provides several built-in types for some common usage scenarios.
+These types vary in terms of the validations performed and the constraints
+Kubernetes imposes on them.
+-->
+## Secret 的类型  {#secret-types}
+
+创建 Secret 时，你可以使用 [Secret](/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/secret-v1/)
+资源的 `type` 字段，或者与其等价的 `kubectl` 命令行参数（如果有的话）为其设置类型。
+Secret 类型有助于对 Secret 数据进行编程处理。
+
+Kubernetes 提供若干种内置的类型，用于一些常见的使用场景。
+针对这些类型，Kubernetes 所执行的合法性检查操作以及对其所实施的限制各不相同。
+
+<!--
+| Built-in Type | Usage |
+|--------------|-------|
+| `Opaque`     |  arbitrary user-defined data |
+| `kubernetes.io/service-account-token` | ServiceAccount token |
+| `kubernetes.io/dockercfg` | serialized `~/.dockercfg` file |
+| `kubernetes.io/dockerconfigjson` | serialized `~/.docker/config.json` file |
+| `kubernetes.io/basic-auth` | credentials for basic authentication |
+| `kubernetes.io/ssh-auth` | credentials for SSH authentication |
+| `kubernetes.io/tls` | data for a TLS client or server |
+| `bootstrap.kubernetes.io/token` | bootstrap token data |
+-->
+| 内置类型     | 用法  |
+|--------------|-------|
+| `Opaque`     | 用户定义的任意数据 |
+| `kubernetes.io/service-account-token` | 服务账号令牌 |
+| `kubernetes.io/dockercfg` | `~/.dockercfg` 文件的序列化形式 |
+| `kubernetes.io/dockerconfigjson` | `~/.docker/config.json` 文件的序列化形式 |
+| `kubernetes.io/basic-auth` | 用于基本身份认证的凭据 |
+| `kubernetes.io/ssh-auth` | 用于 SSH 身份认证的凭据 |
+| `kubernetes.io/tls` | 用于 TLS 客户端或者服务器端的数据 |
+| `bootstrap.kubernetes.io/token` | 启动引导令牌数据 |
+
+<!--
+You can define and use your own Secret type by assigning a non-empty string as the
+`type` value for a Secret object (an empty string is treated as an `Opaque` type).
+-->
+通过为 Secret 对象的 `type` 字段设置一个非空的字符串值，你也可以定义并使用自己
+Secret 类型（如果 `type` 值为空字符串，则被视为 `Opaque` 类型）。
+
+<!--
+Kubernetes doesn't impose any constraints on the type name. However, if you
+are using one of the built-in types, you must meet all the requirements defined
+for that type.
+-->
+Kubernetes 并不对类型的名称作任何限制。不过，如果你要使用内置类型之一，
+则你必须满足为该类型所定义的所有要求。
+
+<!--
+If you are defining a type of secret that's for public use, follow the convention
+and structure the secret type to have your domain name before the name, separated
+by a `/`. For example: `cloud-hosting.example.net/cloud-api-credentials`.
+-->
+如果你要定义一种公开使用的 Secret 类型，请遵守 Secret 类型的约定和结构，
+在类型名签名添加域名，并用 `/` 隔开。
+例如：`cloud-hosting.example.net/cloud-api-credentials`。
+
+<!--
+### Opaque secrets
+
+`Opaque` is the default Secret type if omitted from a Secret configuration file.
+When you create a Secret using `kubectl`, you will use the `generic`
+subcommand to indicate an `Opaque` Secret type. For example, the following
+command creates an empty Secret of type `Opaque`.
+-->
+### Opaque Secret
+
+当 Secret 配置文件中未作显式设定时，默认的 Secret 类型是 `Opaque`。
+当你使用 `kubectl` 来创建一个 Secret 时，你会使用 `generic`
+子命令来标明要创建的是一个 `Opaque` 类型 Secret。
+例如，下面的命令会创建一个空的 `Opaque` 类型 Secret 对象：
+
+```shell
+kubectl create secret generic empty-secret
+kubectl get secret empty-secret
+```
+
+<!--
+The output looks like:
+-->
+输出类似于
+
+```
+NAME           TYPE     DATA   AGE
+empty-secret   Opaque   0      2m6s
+```
+
+<!--
+The `DATA` column shows the number of data items stored in the Secret.
+In this case, `0` means you have created an empty Secret.
+-->
+`DATA` 列显示 Secret 中保存的数据条目个数。
+在这个例子种，`0` 意味着你刚刚创建了一个空的 Secret。
+
+<!--
+### Service account token Secrets
+
+A `kubernetes.io/service-account-token` type of Secret is used to store a
+token credential that identifies a
+{{< glossary_tooltip text="service account" term_id="service-account" >}}.
+-->
+### 服务账号令牌 Secret  {#service-account-token-secrets}
+
+类型为 `kubernetes.io/service-account-token` 的 Secret
+用来存放标识某{{< glossary_tooltip text="服务账号" term_id="service-account" >}}的令牌凭据。
+
+<!--
+Since 1.22, this type of Secret is no longer used to mount credentials into Pods,
+and obtaining tokens via the [TokenRequest](/docs/reference/kubernetes-api/authentication-resources/token-request-v1/)
+API is recommended instead of using service account token Secret objects.
+Tokens obtained from the `TokenRequest` API are more secure than ones stored in Secret objects,
+because they have a bounded lifetime and are not readable by other API clients.
+You can use the [`kubectl create token`](/docs/reference/generated/kubectl/kubectl-commands#-em-token-em-)
+command to obtain a token from the `TokenRequest` API.
+-->
+从 v1.22 开始，这种类型的 Secret 不再被用来向 Pod 中加载凭据数据，
+建议通过 [TokenRequest](/zh-cn/docs/reference/kubernetes-api/authentication-resources/token-request-v1/)
+API 来获得令牌，而不是使用服务账号令牌 Secret 对象。
+通过 `TokenRequest` API 获得的令牌比保存在 Secret 对象中的令牌更加安全，
+因为这些令牌有着被限定的生命期，并且不会被其他 API 客户端读取。
+你可以使用 [`kubectl create token`](/docs/reference/generated/kubectl/kubectl-commands#-em-token-em-)
+命令调用 `TokenRequest` API 获得令牌。
+
+<!--
+You should only create a service account token Secret object
+if you can't use the `TokenRequest` API to obtain a token,
+and the security exposure of persisting a non-expiring token credential
+in a readable API object is acceptable to you.
+-->
+只有在你无法使用 `TokenRequest` API 来获取令牌，
+并且你能够接受因为将永不过期的令牌凭据写入到可读取的 API 对象而带来的安全风险时，
+才应该创建服务账号令牌 Secret 对象。
+
+<!--
+When using this Secret type, you need to ensure that the
+`kubernetes.io/service-account.name` annotation is set to an existing
+service account name. If you are creating both the ServiceAccount and
+the Secret objects, you should create the ServiceAccount object first.
+-->
+使用这种 Secret 类型时，你需要确保对象的注解 `kubernetes.io/service-account-name`
+被设置为某个已有的服务账号名称。
+如果你同时负责 ServiceAccount 和 Secret 对象的创建，应该先创建 ServiceAccount 对象。
+
+<!--
+
+After the Secret is created, a Kubernetes {{< glossary_tooltip text="controller" term_id="controller" >}}
+fills in some other fields such as the `kubernetes.io/service-account.uid` annotation, and the
+`token` key in the `data` field, which is set to contain an authentication token.
+
+The following example configuration declares a service account token Secret:
+-->
+当 Secret 对象被创建之后，某个 Kubernetes{{< glossary_tooltip text="控制器" term_id="controller" >}}会填写
+Secret 的其它字段，例如 `kubernetes.io/service-account.uid` 注解以及 `data` 字段中的
+`token` 键值，使之包含实际的令牌内容。
+
+下面的配置实例声明了一个服务账号令牌 Secret：
+
+<!--
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: secret-sa-sample
+  annotations:
+    kubernetes.io/service-account.name: "sa-name"
+type: kubernetes.io/service-account-token
+data:
+  # You can include additional key value pairs as you do with Opaque Secrets
+  extra: YmFyCg==
+```
+-->
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: secret-sa-sample
+  annotations:
+    kubernetes.io/service-account.name: "sa-name"
+type: kubernetes.io/service-account-token
+data:
+  # 你可以像 Opaque Secret 一样在这里添加额外的键/值偶对
+  extra: YmFyCg==
+```
+
+<!--
+After creating the Secret, wait for Kubernetes to populate the `token` key in the `data` field.
+-->
+创建了 Secret 之后，等待 Kubernetes 在 `data` 字段中填充 `token` 主键。
+
+<!--
+See the [ServiceAccount](/docs/tasks/configure-pod-container/configure-service-account/)
+documentation for more information on how service accounts work.  
+You can also check the `automountServiceAccountToken` field and the
+`serviceAccountName` field of the
+[`Pod`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#pod-v1-core)
+for information on referencing service account credentials from within Pods.
+-->
+参考 [ServiceAccount](/zh-cn/docs/tasks/configure-pod-container/configure-service-account/)
+文档了解服务账号的工作原理。你也可以查看
+[`Pod`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#pod-v1-core)
+资源中的 `automountServiceAccountToken` 和 `serviceAccountName` 字段文档，
+进一步了解从 Pod 中引用服务账号凭据。
+
+<!--
+### Docker config Secrets
+
+You can use one of the following `type` values to create a Secret to
+store the credentials for accessing a container image registry:
+-->
+### Docker 配置 Secret  {#docker-config-secrets}
+
+你可以使用下面两种 `type` 值之一来创建 Secret，用以存放用于访问容器镜像仓库的凭据：
+
+- `kubernetes.io/dockercfg`
+- `kubernetes.io/dockerconfigjson`
+
+<!--
+The `kubernetes.io/dockercfg` type is reserved to store a serialized
+`~/.dockercfg` which is the legacy format for configuring Docker command line.
+When using this Secret type, you have to ensure the Secret `data` field
+contains a `.dockercfg` key whose value is content of a `~/.dockercfg` file
+encoded in the base64 format.
+-->
+`kubernetes.io/dockercfg` 是一种保留类型，用来存放 `~/.dockercfg` 文件的序列化形式。
+该文件是配置 Docker 命令行的一种老旧形式。使用此 Secret 类型时，你需要确保
+Secret 的 `data` 字段中包含名为 `.dockercfg` 的主键，其对应键值是用 base64
+编码的某 `~/.dockercfg` 文件的内容。
+
+<!--
+The `kubernetes.io/dockerconfigjson` type is designed for storing a serialized
+JSON that follows the same format rules as the `~/.docker/config.json` file
+which is a new format for `~/.dockercfg`.
+When using this Secret type, the `data` field of the Secret object must
+contain a `.dockerconfigjson` key, in which the content for the
+`~/.docker/config.json` file is provided as a base64 encoded string.
+
+Below is an example for a `kubernetes.io/dockercfg` type of Secret:
+-->
+类型 `kubernetes.io/dockerconfigjson` 被设计用来保存 JSON 数据的序列化形式，
+该 JSON 也遵从 `~/.docker/config.json` 文件的格式规则，而后者是 `~/.dockercfg`
+的新版本格式。使用此 Secret 类型时，Secret 对象的 `data` 字段必须包含
+`.dockerconfigjson` 键，其键值为 base64 编码的字符串包含 `~/.docker/config.json`
+文件的内容。
+
+下面是一个 `kubernetes.io/dockercfg` 类型 Secret 的示例：
+
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: secret-dockercfg
+type: kubernetes.io/dockercfg
+data:
+  .dockercfg: |
+    "<base64 encoded ~/.dockercfg file>"
+```
+
+{{< note >}}
+<!--
+If you do not want to perform the base64 encoding, you can choose to use the
+`stringData` field instead.
+-->
+如果你不希望执行 base64 编码转换，可以使用 `stringData` 字段代替。
+{{< /note >}}
+
+<!--
+When you create these types of Secrets using a manifest, the API
+server checks whether the expected key exists in the `data` field, and
+it verifies if the value provided can be parsed as a valid JSON. The API
+server doesn't validate if the JSON actually is a Docker config file.
+
+When you do not have a Docker config file, or you want to use `kubectl`
+to create a Secret for accessing a container registry, you can do:
+-->
+当你使用清单文件来创建这两类 Secret 时，API 服务器会检查 `data` 字段中是否存在所期望的主键，
+并且验证其中所提供的键值是否是合法的 JSON 数据。
+不过，API 服务器不会检查 JSON 数据本身是否是一个合法的 Docker 配置文件内容。
+
+当你没有 Docker 配置文件，或者你想使用 `kubectl` 创建一个 Secret
+来访问容器仓库时，你可以这样做：
+
+```shell
+kubectl create secret docker-registry secret-tiger-docker \
+  --docker-email=tiger@acme.example \
+  --docker-username=tiger \
+  --docker-password=pass1234 \
+  --docker-server=my-registry.example:5000
+```
+
+<!--
+That command creates a Secret of type `kubernetes.io/dockerconfigjson`.
+If you dump the `.data.dockerconfigjson` field from that new Secret and then
+decode it from base64:
+-->
+上面的命令创建一个类型为 `kubernetes.io/dockerconfigjson` 的 Secret。
+如果你对 `.data.dockerconfigjson` 内容进行转储并执行 base64 解码：
+
+```shell
+kubectl get secret secret-tiger-docker -o jsonpath='{.data.*}' | base64 -d
+```
+
+<!--
+then the output is equivalent to this JSON document (which is also a valid
+Docker configuration file):
+-->
+那么输出等价于这个 JSON 文档（这也是一个有效的 Docker 配置文件）：
+
+```json
+{
+  "auths": {
+    "my-registry.example:5000": {
+      "username": "tiger",
+      "password": "pass1234",
+      "email": "tiger@acme.example",
+      "auth": "dGlnZXI6cGFzczEyMzQ="
+    }
+  }
+}
+```
+
+{{< note >}}
+<!--
+The `auth` value there is base64 encoded; it is obscured but not secret.
+Anyone who can read that Secret can learn the registry access bearer token.
+-->
+`auths` 值是 base64 编码的，其内容被屏蔽但未被加密。
+任何能够读取该 Secret 的人都可以了解镜像库的访问令牌。
+{{< /note >}}
+
+<!--
+### Basic authentication Secret
+
+The `kubernetes.io/basic-auth` type is provided for storing credentials needed
+for basic authentication. When using this Secret type, the `data` field of the
+Secret must contain one of the following two keys:
+
+- `username`: the user name for authentication
+- `password`: the password or token for authentication
+-->
+### 基本身份认证 Secret  {#basic-authentication-secret}
+
+`kubernetes.io/basic-auth` 类型用来存放用于基本身份认证所需的凭据信息。
+使用这种 Secret 类型时，Secret 的 `data` 字段必须包含以下两个键之一：
+
+- `username`: 用于身份认证的用户名；
+- `password`: 用于身份认证的密码或令牌。
+
+<!--
+Both values for the above two keys are base64 encoded strings. You can, of
+course, provide the clear text content using the `stringData` for Secret
+creation.
+
+The following manifest is an example of a basic authentication Secret:
+-->
+以上两个键的键值都是 base64 编码的字符串。
+当然你也可以在创建 Secret 时使用 `stringData` 字段来提供明文形式的内容。
+以下清单是基本身份验证 Secret 的示例：
+
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: secret-basic-auth
+type: kubernetes.io/basic-auth
+stringData:
+  username: admin      # kubernetes.io/basic-auth 类型的必需字段
+  password: t0p-Secret # kubernetes.io/basic-auth 类型的必需字段
+```
+
+<!--
+The basic authentication Secret type is provided only for convenience.
+You can create an `Opaque` type for credentials used for basic authentication.
+However, using the defined and public Secret type (`kubernetes.io/basic-auth`) helps other
+people to understand the purpose of your Secret, and sets a convention for what key names
+to expect.
+The Kubernetes API verifies that the required keys are set for a Secret
+of this type.
+-->
+提供基本身份认证类型的 Secret 仅仅是出于方便性考虑。
+你也可以使用 `Opaque` 类型来保存用于基本身份认证的凭据。
+不过，使用预定义的、公开的 Secret 类型（`kubernetes.io/basic-auth`）
+有助于帮助其他用户理解 Secret 的目的，并且对其中存在的主键形成一种约定。
+API 服务器会检查 Secret 配置中是否提供了所需要的主键。
+
+<!--
+### SSH authentication secrets
+
+The builtin type `kubernetes.io/ssh-auth` is provided for storing data used in
+SSH authentication. When using this Secret type, you will have to specify a
+`ssh-privatekey` key-value pair in the `data` (or `stringData`) field
+as the SSH credential to use.
+
+The following manifest is an example of a Secret used for SSH public/private
+key authentication:
+-->
+### SSH 身份认证 Secret {#ssh-authentication-secrets}
+
+Kubernetes 所提供的内置类型 `kubernetes.io/ssh-auth` 用来存放 SSH 身份认证中所需要的凭据。
+使用这种 Secret 类型时，你就必须在其 `data` （或 `stringData`）
+字段中提供一个 `ssh-privatekey` 键值对，作为要使用的 SSH 凭据。
+
+下面的清单是一个 SSH 公钥/私钥身份认证的 Secret 示例：
+
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: secret-ssh-auth
+type: kubernetes.io/ssh-auth
+data:
+  # 此例中的实际数据被截断
+  ssh-privatekey: |
+     MIIEpQIBAAKCAQEAulqb/Y ...
+```
+
+<!--
+The SSH authentication Secret type is provided only for user's convenience.
+You could instead create an `Opaque` type Secret for credentials used for SSH authentication.
+However, using the defined and public Secret type (`kubernetes.io/ssh-auth`) helps other
+people to understand the purpose of your Secret, and sets a convention for what key names
+to expect.
+and the API server does verify if the required keys are provided in a Secret
+configuration.
+-->
+提供 SSH 身份认证类型的 Secret 仅仅是出于用户方便性考虑。
+你也可以使用 `Opaque` 类型来保存用于 SSH 身份认证的凭据。
+不过，使用预定义的、公开的 Secret 类型（`kubernetes.io/ssh-auth`）
+有助于其他人理解你的 Secret 的用途，也可以就其中包含的主键名形成约定。
+API 服务器确实会检查 Secret 配置中是否提供了所需要的主键。
+
+{{< caution >}}
+<!--
+SSH private keys do not establish trusted communication between an SSH client and
+host server on their own. A secondary means of establishing trust is needed to
+mitigate "man in the middle" attacks, such as a `known_hosts` file added to a
+ConfigMap.
+-->
+SSH 私钥自身无法建立 SSH 客户端与服务器端之间的可信连接。
+需要其它方式来建立这种信任关系，以缓解“中间人（Man In The Middle）”
+攻击，例如向 ConfigMap 中添加一个 `known_hosts` 文件。
+{{< /caution >}}
+
+<!--
+### TLS secrets
+
+Kubernetes provides a builtin Secret type `kubernetes.io/tls` for storing
+a certificate and its associated key that are typically used for TLS.
+
+One common use for TLS secrets is to configure encryption in transit for
+an [Ingress](/docs/concepts/services-networking/ingress/), but you can also use it
+with other resources or directly in your workload.
+When using this type of Secret, the `tls.key` and the `tls.crt` key must be provided
+in the `data` (or `stringData`) field of the Secret configuration, although the API
+server doesn't actually validate the values for each key.
+
+The following YAML contains an example config for a TLS Secret:
+-->
+### TLS Secret
+
+Kubernetes 提供一种内置的 `kubernetes.io/tls` Secret 类型，用来存放 TLS
+场合通常要使用的证书及其相关密钥。
+TLS Secret 的一种典型用法是为 [Ingress](/zh-cn/docs/concepts/services-networking/ingress/)
+资源配置传输过程中的数据加密，不过也可以用于其他资源或者直接在负载中使用。
+当使用此类型的 Secret 时，Secret 配置中的 `data` （或 `stringData`）字段必须包含
+`tls.key` 和 `tls.crt` 主键，尽管 API 服务器实际上并不会对每个键的取值作进一步的合法性检查。
+
+下面的 YAML 包含一个 TLS Secret 的配置示例：
+
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: secret-tls
+type: kubernetes.io/tls
+data:
+  # 此例中的数据被截断
+  tls.crt: |
+    MIIC2DCCAcCgAwIBAgIBATANBgkqh ...
+  tls.key: |
+    MIIEpgIBAAKCAQEA7yn3bRHQ5FHMQ ...
+```
+
+<!--
+The TLS Secret type is provided for user's convenience. You can create an `Opaque`
+for credentials used for TLS server and/or client. However, using the builtin Secret
+type helps ensure the consistency of Secret format in your project; the API server
+does verify if the required keys are provided in a Secret configuration.
+
+When creating a TLS Secret using `kubectl`, you can use the `tls` subcommand
+as shown in the following example:
+-->
+提供 TLS 类型的 Secret 仅仅是出于用户方便性考虑。
+你也可以使用 `Opaque` 类型来保存用于 TLS 服务器与/或客户端的凭据。
+不过，使用内置的 Secret 类型的有助于对凭据格式进行归一化处理，并且
+API 服务器确实会检查 Secret 配置中是否提供了所需要的主键。
+
+当使用 `kubectl` 来创建 TLS Secret 时，你可以像下面的例子一样使用 `tls`
+子命令：
+
+```shell
+kubectl create secret tls my-tls-secret \
+  --cert=path/to/cert/file \
+  --key=path/to/key/file
+```
+
+<!--
+The public/private key pair must exist before hand. The public key certificate
+for `--cert` must be DER format as per
+[Section 5.1 of RFC 7468](https://datatracker.ietf.org/doc/html/rfc7468#section-5.1),
+and must match the given private key for `--key` (PKCS #8 in DER format;
+[Section 11 of RFC 7468](https://datatracker.ietf.org/doc/html/rfc7468#section-11)).
+-->
+这里的公钥/私钥对都必须事先已存在。用于 `--cert` 的公钥证书必须是
+[RFC 7468 中 5.1 节](https://datatracker.ietf.org/doc/html/rfc7468#section-5.1)
+中所规定的 DER 格式，且与 `--key` 所给定的私钥匹配。
+私钥必须是 DER 格式的 PKCS #8
+（参见 [RFC 7468 第 11节](https://datatracker.ietf.org/doc/html/rfc7468#section-11)）。
+
+{{< note >}}
+<!--
+A kubernetes.io/tls Secret stores the Base64-encoded DER data for keys and
+certificates. If you're familiar with PEM format for private keys and for certificates,
+the base64 data are the same as that format except that you omit
+the initial and the last lines that are used in PEM.
+-->
+类型为 `kubernetes.io/tls` 的 Secret 中包含密钥和证书的 DER 数据，以 Base64 格式编码。
+如果你熟悉私钥和证书的 PEM 格式，base64 与该格式相同，只是你需要略过 PEM
+数据中所包含的第一行和最后一行。
+
+<!--
+For example, for a certificate, you do **not** include `--------BEGIN CERTIFICATE-----`
+and `-------END CERTIFICATE----`.
+-->
+例如，对于证书而言，你 **不要** 包含 `--------BEGIN CERTIFICATE-----`
+和 `-------END CERTIFICATE----` 这两行。
+{{< /note >}}
+
+<!--
+### Bootstrap token Secrets
+
+A bootstrap token Secret can be created by explicitly specifying the Secret
+`type` to `bootstrap.kubernetes.io/token`. This type of Secret is designed for
+tokens used during the node bootstrap process. It stores tokens used to sign
+well-known ConfigMaps.
+-->
+### 启动引导令牌 Secret  {#bootstrap-token-secrets}
+
+通过将 Secret 的 `type` 设置为 `bootstrap.kubernetes.io/token`
+可以创建启动引导令牌类型的 Secret。这种类型的 Secret 被设计用来支持节点的启动引导过程。
+其中包含用来为周知的 ConfigMap 签名的令牌。
+
+<!--
+A bootstrap token Secret is usually created in the `kube-system` namespace and
+named in the form `bootstrap-token-<token-id>` where `<token-id>` is a 6 character
+string of the token ID.
+
+As a Kubernetes manifest, a bootstrap token Secret might look like the
+following:
+-->
+启动引导令牌 Secret 通常创建于 `kube-system` 名字空间内，并以
+`bootstrap-token-<令牌 ID>` 的形式命名；
+其中 `<令牌 ID>` 是一个由 6 个字符组成的字符串，用作令牌的标识。
+
+以 Kubernetes 清单文件的形式，某启动引导令牌 Secret 可能看起来像下面这样：
+
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: bootstrap-token-5emitj
+  namespace: kube-system
+type: bootstrap.kubernetes.io/token
+data:
+  auth-extra-groups: c3lzdGVtOmJvb3RzdHJhcHBlcnM6a3ViZWFkbTpkZWZhdWx0LW5vZGUtdG9rZW4=
+  expiration: MjAyMC0wOS0xM1QwNDozOToxMFo=
+  token-id: NWVtaXRq
+  token-secret: a3E0Z2lodnN6emduMXAwcg==
+  usage-bootstrap-authentication: dHJ1ZQ==
+  usage-bootstrap-signing: dHJ1ZQ==
+```
+
+<!--
+A bootstrap type Secret has the following keys specified under `data`:
+
+- `token-id`: A random 6 character string as the token identifier. Required.
+- `token-secret`: A random 16 character string as the actual token secret. Required.
+- `description`: A human-readable string that describes what the token is
+  used for. Optional.
+- `expiration`: An absolute UTC time using RFC3339 specifying when the token
+  should be expired. Optional.
+- `usage-bootstrap-<usage>`: A boolean flag indicating additional usage for
+  the bootstrap token.
+- `auth-extra-groups`: A comma-separated list of group names that will be
+  authenticated as in addition to the `system:bootstrappers` group.
+-->
+启动引导令牌类型的 Secret 会在 `data` 字段中包含如下主键：
+
+- `token-id`：由 6 个随机字符组成的字符串，作为令牌的标识符。必需。
+- `token-secret`：由 16 个随机字符组成的字符串，包含实际的令牌机密。必需。
+- `description`：供用户阅读的字符串，描述令牌的用途。可选。
+- `expiration`：一个使用 RFC3339 来编码的 UTC 绝对时间，给出令牌要过期的时间。可选。
+- `usage-bootstrap-<usage>`：布尔类型的标志，用来标明启动引导令牌的其他用途。
+- `auth-extra-groups`：用逗号分隔的组名列表，身份认证时除被认证为
+  `system:bootstrappers` 组之外，还会被添加到所列的用户组中。
+
+<!--
+The above YAML may look confusing because the values are all in base64 encoded
+strings. In fact, you can create an identical Secret using the following YAML:
+
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  # Note how the Secret is named
+  name: bootstrap-token-5emitj
+  # A bootstrap token Secret usually resides in the kube-system namespace
+  namespace: kube-system
+type: bootstrap.kubernetes.io/token
+stringData:
+  auth-extra-groups: "system:bootstrappers:kubeadm:default-node-token"
+  expiration: "2020-09-13T04:39:10Z"
+  # This token ID is used in the name
+  token-id: "5emitj"
+  token-secret: "kq4gihvszzgn1p0r"
+  # This token can be used for authentication
+  usage-bootstrap-authentication: "true"
+  # and it can be used for signing
+  usage-bootstrap-signing: "true"
+```
+-->
+上面的 YAML 文件可能看起来令人费解，因为其中的数值均为 base64 编码的字符串。
+实际上，你完全可以使用下面的 YAML 来创建一个一模一样的 Secret：
+
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  # 注意 Secret 的命名方式
+  name: bootstrap-token-5emitj
+  # 启动引导令牌 Secret 通常位于 kube-system 名字空间
+  namespace: kube-system
+type: bootstrap.kubernetes.io/token
+stringData:
+  auth-extra-groups: "system:bootstrappers:kubeadm:default-node-token"
+  expiration: "2020-09-13T04:39:10Z"
+  # 此令牌 ID 被用于生成 Secret 名称
+  token-id: "5emitj"
+  token-secret: "kq4gihvszzgn1p0r"
+  # 此令牌还可用于 authentication （身份认证）
+  usage-bootstrap-authentication: "true"
+  # 且可用于 signing （证书签名）
+  usage-bootstrap-signing: "true"
+```
+
+<!--
+## Immutable Secrets {#secret-immutable}
+-->
+## 不可更改的 Secret {#secret-immutable}
+
+{{< feature-state for_k8s_version="v1.21" state="stable" >}}
+
+<!--
+Kubernetes lets you mark specific Secrets (and ConfigMaps) as _immutable_.
+Preventing changes to the data of an existing Secret has the following benefits:
+
+- protects you from accidental (or unwanted) updates that could cause applications outages
+- (for clusters that extensively use Secrets - at least tens of thousands of unique Secret
+  to Pod mounts), switching to immutable Secrets improves the performance of your cluster
+  by significantly reducing load on kube-apiserver. The kubelet does not need to maintain
+  a [watch] on any Secrets that are marked as immutable.
+-->
+Kubernetes 允许你将特定的 Secret（和 ConfigMap）标记为 **不可更改（Immutable）**。
+禁止更改现有 Secret 的数据有下列好处：
+
+- 防止意外（或非预期的）更新导致应用程序中断
+- （对于大量使用 Secret 的集群而言，至少数万个不同的 Secret 供 Pod 挂载），
+  通过将 Secret 标记为不可变，可以极大降低 kube-apiserver 的负载，提升集群性能。
+  kubelet 不需要监视那些被标记为不可更改的 Secret。
+
+<!--
+### Marking a Secret as immutable {#secret-immutable-create}
+
+You can create an immutable Secret by setting the `immutable` field to `true`. For example,
+-->
+### 将 Secret 标记为不可更改   {#secret-immutable-create}
+
+你可以通过将 Secret 的 `immutable` 字段设置为 `true` 创建不可更改的 Secret。
+例如：
+
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  ...
+data:
+  ...
+immutable: true
+```
+
+<!--
+You can also update any existing mutable Secret to make it immutable.
+-->
+你也可以更改现有的 Secret，令其不可更改。
+
+{{< note >}}
+<!--
+Once a Secret or ConfigMap is marked as immutable, it is _not_ possible to revert this change
+nor to mutate the contents of the `data` field. You can only delete and recreate the Secret.
+Existing Pods maintain a mount point to the deleted Secret - it is recommended to recreate
+these pods.
+-->
+一旦一个 Secret 或 ConfigMap 被标记为不可更改，撤销此操作或者更改 `data`
+字段的内容都是 **不** 可能的。
+只能删除并重新创建这个 Secret。现有的 Pod 将维持对已删除 Secret 的挂载点 --
+建议重新创建这些 Pod。
+{{< /note >}}
+
+<!--
+## Information security for Secrets
+
+Although ConfigMap and Secret work similarly, Kubernetes applies some additional
+protection for Secret objects.
+-->
+## Secret 的信息安全问题 {#information-security-for-secrets}
+
+尽管 ConfigMap 和 Secret 的工作方式类似，但 Kubernetes 对 Secret 有一些额外的保护。
+
+<!--
+Secrets often hold values that span a spectrum of importance, many of which can
+cause escalations within Kubernetes (e.g. service account tokens) and to
+external systems. Even if an individual app can reason about the power of the
+Secrets it expects to interact with, other apps within the same namespace can
+render those assumptions invalid.
+-->
+Secret 通常保存重要性各异的数值，其中很多都可能会导致 Kubernetes 中
+（例如，服务账号令牌）或对外部系统的特权提升。
+即使某些个别应用能够推导它期望使用的 Secret 的能力，
+同一名字空间中的其他应用可能会让这种假定不成立。
+
+<!--
+A Secret is only sent to a node if a Pod on that node requires it.
+For mounting secrets into Pods, the kubelet stores a copy of the data into a `tmpfs`
+so that the confidential data is not written to durable storage.
+Once the Pod that depends on the Secret is deleted, the kubelet deletes its local copy
+of the confidential data from the Secret.
+-->
+只有当某个节点上的 Pod 需要某 Secret 时，对应的 Secret 才会被发送到该节点上。
+如果将 Secret 挂载到 Pod 中，kubelet 会将数据的副本保存在在 `tmpfs` 中，
+这样机密的数据不会被写入到持久性存储中。
+一旦依赖于该 Secret 的 Pod 被删除，kubelet 会删除来自于该 Secret 的机密数据的本地副本。
+
+<!--
+There may be several containers in a Pod. By default, containers you define
+only have access to the default ServiceAccount and its related Secret.
+You must explicitly define environment variables or map a volume into a
+container in order to provide access to any other Secret.
+-->
+同一个 Pod 中可能包含多个容器。默认情况下，你所定义的容器只能访问默认 ServiceAccount
+及其相关 Secret。你必须显式地定义环境变量或者将卷映射到容器中，才能为容器提供对其他
+Secret 的访问。
+
+<!--
+There may be Secrets for several Pods on the same node. However, only the
+Secrets that a Pod requests are potentially visible within its containers.
+Therefore, one Pod does not have access to the Secrets of another Pod.
+-->
+针对同一节点上的多个 Pod 可能有多个 Secret。不过，只有某个 Pod 所请求的 Secret
+才有可能对 Pod 中的容器可见。因此，一个 Pod 不会获得访问其他 Pod 的 Secret 的权限。
+
+{{< warning >}}
+<!--
+Any privileged containers on a node are liable to have access to all Secrets used
+on that node.
+-->
+节点上的所有特权容器都可能访问到该节点上使用的所有 Secret。
+{{< /warning >}}
+
+<!--
+### Security recommendations for developers
+
+- Applications still need to protect the value of confidential information after reading it
+  from an environment variable or volume. For example, your application must avoid logging
+  the secret data in the clear or transmitting it to an untrusted party.
+- If you are defining multiple containers in a Pod, and only one of those
+  containers needs access to a Secret, define the volume mount or environment
+  variable configuration so that the other containers do not have access to that
+  Secret.
+-->
+### 针对开发人员的安全性建议 {#security-recommendations-for-developers}
+
+- 应用在从环境变量或卷中读取了机密信息内容之后仍要对其进行保护。例如，
+  你的应用应该避免用明文的方式将 Secret 数据写入日志，或者将其传递给不可信的第三方。
+- 如果你在一个 Pod 中定义了多个容器，而只有一个容器需要访问某 Secret，
+  定义卷挂载或环境变量配置时，应确保其他容器无法访问该 Secret。
+<!--
+- If you configure a Secret through a {{< glossary_tooltip text="manifest" term_id="manifest" >}},
+  with the secret data encoded as base64, sharing this file or checking it in to a
+  source repository means the secret is available to everyone who can read the manifest.
+  Base64 encoding is _not_ an encryption method, it provides no additional confidentiality
+  over plain text.
+-->
+- 如果你通过{{< glossary_tooltip text="清单" term_id="manifest" >}}来配置某 Secret，
+  Secret 数据以 Base64 的形式编码，将此文件共享，或者将其检入到某源码仓库，
+  都意味着 Secret 对于任何可以读取清单的人都是可见的。
+  Base64 编码 **不是** 一种加密方法，与明文相比没有任何安全性提升。
+<!--
+- When deploying applications that interact with the Secret API, you should
+  limit access using
+  [authorization policies](/docs/reference/access-authn-authz/authorization/) such as
+  [RBAC](/docs/reference/access-authn-authz/rbac/).
+-->
+- 部署与 Secret API 交互的应用时，你应该使用 [RBAC](/zh-cn/docs/reference/access-authn-authz/rbac/)
+  这类[鉴权策略](/zh-cn/docs/reference/access-authn-authz/authorization/)来限制访问。
+<!--
+- In the Kubernetes API, `watch` and `list` requests for Secrets within a namespace
+  are extremely powerful capabilities. Avoid granting this access where feasible, since
+  listing Secrets allows the clients to inspect the values of every Secret in that
+  namespace.
+-->
+- 在 Kubernetes API 中，名字空间内对 Secret 对象的 `watch` 和 `list` 请求是非常强大的能力。
+  在可能的时候应该避免授予这类访问权限，因为通过列举 Secret，
+  客户端能够查看对应名字空间内所有 Secret 的取值。
+
+<!--
+### Security recommendations for cluster administrators
+-->
+### 针对集群管理员的安全性建议 {#security-recommendations-for-cluster-administrators}
+
+{{< caution >}}
+<!--
+A user who can create a Pod that uses a Secret can also see the value of that Secret. Even
+if cluster policies do not allow a user to read the Secret directly, the same user could
+have access to run a Pod that then exposes the Secret.
+-->
+能够创建使用 Secret 的 Pod 的用户也可以查看该 Secret 的取值。
+即使集群策略不允许某用户直接读取 Secret 对象，这一用户仍然可以通过运行一个
+Pod 来访问 Secret 的内容。
+{{< /caution >}}
+
+<!--
+- Reserve the ability to `watch` or `list` all secrets in a cluster (using the Kubernetes
+  API), so that only the most privileged, system-level components can perform this action.
+- When deploying applications that interact with the Secret API, you should
+  limit access using
+  [authorization policies](/docs/reference/access-authn-authz/authorization/) such as
+  [RBAC](/docs/reference/access-authn-authz/rbac/).
+-->
+- 保留（使用 Kubernetes API）对集群中所有 Secret 对象执行 `watch` 或 `list` 操作的能力，
+  这样只有特权级最高、系统级别的组件能够执行这类操作。
+- 在部署需要通过 Secret API 交互的应用时，你应该通过使用
+  [RBAC](/zh-cn/docs/reference/access-authn-authz/rbac/)
+  这类[鉴权策略](/zh-cn/docs/reference/access-authn-authz/authorization/)来限制访问。
+<!--
+- In the API server, objects (including Secrets) are persisted into
+  {{< glossary_tooltip term_id="etcd" >}}; therefore:
+  - only allow cluster admistrators to access etcd (this includes read-only access);
+  - enable [encryption at rest](/docs/tasks/administer-cluster/encrypt-data/)
+    for Secret objects, so that the data of these Secrets are not stored in the clear
+    into {{< glossary_tooltip term_id="etcd" >}};
+  - consider wiping / shredding the durable storage used by etcd once it is
+    no longer in use;
+  - if there are multiple etcd instances, make sure that etcd is
+    using SSL/TLS for communication between etcd peers.
+-->
+- 在 API 服务器上，对象（包括 Secret）会被持久化到 {{< glossary_tooltip term_id="etcd" >}} 中；
+  因此：
+
+  - 只应准许集群管理员访问 etcd（包括只读访问）；
+  - 为 Secret 对象启用[静态加密](/zh-cn/docs/tasks/administer-cluster/encrypt-data/)，
+    这样这些 Secret 的数据就不会以明文的形式保存到
+    {{< glossary_tooltip term_id="etcd" >}} 中；
+  - 当 etcd 的持久化存储不再被使用时，请考虑彻底擦除存储介质；
+  - 如果存在多个 etcd 实例，请确保 etcd 使用 SSL/TLS 来完成其对等通信。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+- Learn how to [manage Secrets using `kubectl`](/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
+- Learn how to [manage Secrets using config file](/docs/tasks/configmap-secret/managing-secret-using-config-file/)
+- Learn how to [manage Secrets using kustomize](/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
+- Read the [API reference](/docs/reference/kubernetes-api/config-and-storage-resources/secret-v1/) for `Secret`
+-->
+- 学习如何[使用 `kubectl` 管理 Secret](/zh-cn/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
+- 学习如何[使用配置文件管理 Secret](/zh-cn/docs/tasks/configmap-secret/managing-secret-using-config-file/)
+- 学习如何[使用 kustomize 管理 Secret](/zh-cn/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
+- 阅读 [API 参考](/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/secret-v1/)了解 `Secret`
+
diff --git a/content/zh-cn/docs/concepts/configuration/windows-resource-management.md b/content/zh-cn/docs/concepts/configuration/windows-resource-management.md
new file mode 100644
index 0000000000..4a4cefb483
--- /dev/null
+++ b/content/zh-cn/docs/concepts/configuration/windows-resource-management.md
@@ -0,0 +1,134 @@
+---
+title: Windows 节点的资源管理
+content_type: concept
+weight: 75
+---
+<!--
+reviewers:
+- jayunit100
+- jsturtevant
+- marosset
+- perithompson
+title: Resource Management for Windows nodes
+content_type: concept
+weight: 75
+-->
+
+<!-- overview 
+This page outlines the differences in how resources are managed between Linux and Windows.
+-->
+本页概述了 Linux 和 Windows 在资源管理方式上的区别。
+
+<!-- body -->
+<!--
+On Linux nodes, {{< glossary_tooltip text="cgroups" term_id="cgroup" >}} are used
+as a pod boundary for resource control. Containers are created within that boundary for network, process and file system isolation. The Linux cgroup APIs can be used to gather CPU, I/O, and memory use statistics.
+
+In contrast, Windows uses a [_job object_](https://docs.microsoft.com/windows/win32/procthread/job-objects) per container with a system namespace filter
+to contain all processes in a container and provide logical isolation from the
+host. (Job objects are a Windows process isolation mechanism and are different from what Kubernetes refers to as a {{< glossary_tooltip term_id="job" text="Job" >}}).
+
+There is no way to run a Windows container without the namespace filtering in
+place. This means that system privileges cannot be asserted in the context of the
+host, and thus privileged containers are not available on Windows.
+Containers cannot assume an identity from the host because the Security Account Manager (SAM) is separate.
+-->
+在 Linux 节点上，{{< glossary_tooltip text="cgroup" term_id="cgroup" >}} 用作资源控制的 Pod 边界。
+在这个边界内创建容器以便于隔离网络、进程和文件系统。
+Linux cgroup API 可用于收集 CPU、I/O 和内存使用统计数据。
+
+与此相反，Windows 中每个容器对应一个[**作业对象**](https://docs.microsoft.com/zh-cn/windows/win32/procthread/job-objects)，
+与系统命名空间过滤器一起使用，将所有进程包含在一个容器中，提供与主机的逻辑隔离。
+（作业对象是一种 Windows 进程隔离机制，不同于 Kubernetes 提及的 {{< glossary_tooltip term_id="job" text="Job" >}})。
+
+如果没有命名空间过滤，就无法运行 Windows 容器。
+这意味着在主机环境中无法让系统特权生效，因此特权容器在 Windows 上不可用。
+容器不能使用来自主机的标识，因为安全帐户管理器（Security Account Manager，SAM）是独立的。
+
+<!--
+## Memory management {#resource-management-memory}
+
+Windows does not have an out-of-memory process killer as Linux does. Windows always
+treats all user-mode memory allocations as virtual, and pagefiles are mandatory.
+
+Windows nodes do not overcommit memory for processes. The
+net effect is that Windows won't reach out of memory conditions the same way Linux
+does, and processes page to disk instead of being subject to out of memory (OOM)
+termination. If memory is over-provisioned and all physical memory is exhausted,
+then paging can slow down performance.
+-->
+## 内存管理 {#resource-management-memory}
+
+Windows 不像 Linux 一样提供杀手（killer）机制，杀死内存不足的进程。
+Windows 始终将所有用户态内存分配视为虚拟内存，并强制使用页面文件（pagefile）。
+
+Windows 节点不会为进程过量使用内存。
+最终结果是 Windows 不会像 Linux 那样达到内存不足的情况，Windows 将进程页面放到磁盘，
+不会因为内存不足（OOM）而终止进程。
+如果内存配置过量且所有物理内存都已耗尽，则换页性能就会降低。
+<!--
+## CPU management {#resource-management-cpu}
+
+Windows can limit the amount of CPU time allocated for different processes but cannot
+guarantee a minimum amount of CPU time.
+
+On Windows, the kubelet supports a command-line flag to set the
+[scheduling priority](https://docs.microsoft.com/windows/win32/procthread/scheduling-priorities) of the
+kubelet process: `--windows-priorityclass`. This flag allows the kubelet process to get
+more CPU time slices when compared to other processes running on the Windows host.
+More information on the allowable values and their meaning is available at
+[Windows Priority Classes](https://docs.microsoft.com/en-us/windows/win32/procthread/scheduling-priorities#priority-class).
+To ensure that running Pods do not starve the kubelet of CPU cycles, set this flag to `ABOVE_NORMAL_PRIORITY_CLASS` or above.
+-->
+## CPU 管理 {#resource-management-cpu}
+
+Windows 可以限制为不同进程分配的 CPU 时间长度，但无法保证最小的 CPU 时间长度。
+
+在 Windows 上，kubelet 支持使用命令行标志来设置 kubelet 进程的[调度优先级](https://docs.microsoft.com/zh-cn/windows/win32/procthread/scheduling-priorities)：
+`--windows-priorityclass`。
+与 Windows 主机上运行的其他进程相比，此标志允许 kubelet 进程获取更多的 CPU 时间片。
+有关允许值及其含义的更多信息，请访问 [Windows 优先级类](https://docs.microsoft.com/zh-cn/windows/win32/procthread/scheduling-priorities#priority-class)。
+为了确保运行的 Pod 不会耗尽 kubelet 的 CPU 时钟周期，
+要将此标志设置为 `ABOVE_NORMAL_PRIORITY_CLASS` 或更高。
+
+<!--
+## Resource reservation {#resource-reservation}
+
+To account for memory and CPU used by the operating system, the container runtime, and by
+Kubernetes host processes such as the kubelet, you can (and should) reserve
+memory and CPU resources with the  `--kube-reserved` and/or `--system-reserved` kubelet flags.
+On Windows these values are only used to calculate the node's
+[allocatable](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable) resources.
+-->
+## 资源预留 {#resource-reservation}
+
+为了满足操作系统、容器运行时和 kubelet 等 Kubernetes 主机进程使用的内存和 CPU，
+你可以（且应该）用 `--kube-reserved` 和/或 `--system-reserved` kubelet 标志来预留内存和 CPU 资源。
+在 Windows 上，这些值仅用于计算节点的[可分配](/zh-cn/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)资源。
+
+<!--
+As you deploy workloads, set resource memory and CPU limits on containers.
+This also subtracts from `NodeAllocatable` and helps the cluster-wide scheduler in determining which pods to place on which nodes.
+
+Scheduling pods without limits may over-provision the Windows nodes and in extreme
+cases can cause the nodes to become unhealthy.
+-->
+{{< caution >}}
+在你部署工作负载时，需对容器设置内存和 CPU 资源的限制。
+这也会从 `NodeAllocatable` 中减去，帮助集群范围的调度器决定哪些 Pod 放到哪些节点上。
+
+若调度 Pod 时未设置限制值，可能对 Windows 节点过量配置资源。
+在极端情况下，这会让节点变得不健康。
+{{< /caution >}}
+
+<!--
+On Windows, a good practice is to reserve at least 2GiB of memory.
+
+To determine how much CPU to reserve,
+identify the maximum pod density for each node and monitor the CPU usage of
+the system services running there, then choose a value that meets your workload needs.
+-->
+在 Windows 上，一种好的做法是预留至少 2GiB 的内存。
+
+要决定预留多少 CPU，需明确每个节点的最大 Pod 密度，
+并监控节点上运行的系统服务的 CPU 使用率，然后选择一个满足工作负载需求的值。
diff --git a/content/zh/docs/concepts/containers/_index.md b/content/zh-cn/docs/concepts/containers/_index.md
similarity index 85%
rename from content/zh/docs/concepts/containers/_index.md
rename to content/zh-cn/docs/concepts/containers/_index.md
index c627f66f1e..de66ab39ea 100644
--- a/content/zh/docs/concepts/containers/_index.md
+++ b/content/zh-cn/docs/concepts/containers/_index.md
@@ -15,16 +15,12 @@ run it.
 Containers decouple applications from underlying host infrastructure.
 This makes deployment easier in different cloud or OS environments.
 -->
-
 每个运行的容器都是可重复的；
-包含依赖环境在内的标准，意味着无论您在哪里运行它，您都会得到相同的行为。
+包含依赖环境在内的标准，意味着无论你在哪里运行它都会得到相同的行为。
 
 容器将应用程序从底层的主机设施中解耦。
 这使得在不同的云或 OS 环境中部署更加容易。
 
-
-
-
 <!-- body -->
 <!--
 ## Container images
@@ -40,7 +36,7 @@ the change, then recreate the container to start from the updated image.
 -->
 
 ## 容器镜像 {#container-images}
-[容器镜像](/zh/docs/concepts/containers/images/)是一个随时可以运行的软件包，
+[容器镜像](/zh-cn/docs/concepts/containers/images/)是一个随时可以运行的软件包，
 包含运行应用程序所需的一切：代码和它需要的所有运行时、应用程序和系统库，以及一些基本设置的默认值。
 
 根据设计，容器是不可变的：你不能更改已经运行的容器的代码。
@@ -57,7 +53,7 @@ the change, then recreate the container to start from the updated image.
 * Read about [Pods](/docs/concepts/workloads/pods/)
 -->
 
-* 进一步阅读[容器镜像](/zh/docs/concepts/containers/images/)
-* 进一步阅读 [Pods](/zh/docs/concepts/workloads/pods/)
+* 进一步阅读[容器镜像](/zh-cn/docs/concepts/containers/images/)
+* 进一步阅读 [Pods](/zh-cn/docs/concepts/workloads/pods/)
 
 
diff --git a/content/zh/docs/concepts/containers/container-environment.md b/content/zh-cn/docs/concepts/containers/container-environment.md
similarity index 67%
rename from content/zh/docs/concepts/containers/container-environment.md
rename to content/zh-cn/docs/concepts/containers/container-environment.md
index 79170508e6..a3527e9f0a 100644
--- a/content/zh/docs/concepts/containers/container-environment.md
+++ b/content/zh-cn/docs/concepts/containers/container-environment.md
@@ -34,8 +34,8 @@ The Kubernetes Container environment provides several important resources to Con
 
 Kubernetes 的容器环境给容器提供了几个重要的资源：
 
-* 文件系统，其中包含一个[镜像](/zh/docs/concepts/containers/images/)
-  和一个或多个的[卷](/zh/docs/concepts/storage/volumes/)
+* 文件系统，其中包含一个[镜像](/zh-cn/docs/concepts/containers/images/)
+  和一个或多个的[卷](/zh-cn/docs/concepts/storage/volumes/)
 * 容器自身的信息
 * 集群中其他对象的信息
 
@@ -44,32 +44,31 @@ Kubernetes 的容器环境给容器提供了几个重要的资源：
 
 The *hostname* of a Container is the name of the Pod in which the Container is running.
 It is available through the `hostname` command or the
-[`gethostname`](http://man7.org/linux/man-pages/man2/gethostname.2.html)
+[`gethostname`](https://man7.org/linux/man-pages/man2/gethostname.2.html)
 function call in libc.
 
 The Pod name and namespace are available as environment variables through the
 [downward API](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/).
 
 User defined environment variables from the Pod definition are also available to the Container,
-as are any environment variables specified statically in the Docker image.
+as are any environment variables specified statically in the container image.
 -->
 ### 容器信息
 
-容器的 *hostname* 是它所运行在的 pod 的名称。它可以通过 `hostname` 命令或者调用 libc 中的
-[`gethostname`](https://man7.org/linux/man-pages/man2/gethostname.2.html) 函数来获取。
+一个容器的 **hostname** 是该容器运行所在的 Pod 的名称。通过 `hostname` 命令或者调用 libc 中的
+[`gethostname`](https://man7.org/linux/man-pages/man2/gethostname.2.html) 函数可以获取该名称。
 
 Pod 名称和命名空间可以通过
-[下行 API](/zh/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/)
+[下行 API](/zh-cn/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/)
 转换为环境变量。
 
-Pod 定义中的用户所定义的环境变量也可在容器中使用，就像在 Docker 镜像中静态指定的任何环境变量一样。
+Pod 定义中的用户所定义的环境变量也可在容器中使用，就像在 container 镜像中静态指定的任何环境变量一样。
 
 <!--
 ### Cluster information
 
 A list of all services that were running when a Container was created is available to that Container as environment variables.
 This list is limited to services within the same namespace as the new Container's Pod and Kubernetes control plane services.
-Those environment variables match the syntax of Docker links.
 
 For a service named *foo* that maps to a Container named *bar*,
 the following variables are defined:
@@ -78,21 +77,20 @@ the following variables are defined:
 
 创建容器时正在运行的所有服务都可用作该容器的环境变量。
 这里的服务仅限于新容器的 Pod 所在的名字空间中的服务，以及 Kubernetes 控制面的服务。
-这些环境变量与 Docker 链接的语法相同。
 
-对于名为 *foo* 的服务，当映射到名为 *bar* 的容器时，以下变量是被定义了的：
+对于名为 **foo** 的服务，当映射到名为 **bar** 的容器时，定义了以下变量：
 
 ```shell
-FOO_SERVICE_HOST=<the host the service is running on>
-FOO_SERVICE_PORT=<the port the service is running on>
+FOO_SERVICE_HOST=<其上服务正运行的主机>
+FOO_SERVICE_PORT=<其上服务正运行的端口>
 ```
 
 <!--
 Services have dedicated IP addresses and are available to the Container via DNS,
-if [DNS addon](http://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/dns/) is enabled. 
+if [DNS addon](https://releases.k8s.io/{{< param "fullversion" >}}/cluster/addons/dns/) is enabled. 
 -->
 服务具有专用的 IP 地址。如果启用了
-[DNS插件](https://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/dns/)，
+[DNS 插件](https://releases.k8s.io/{{< param "fullversion" >}}/cluster/addons/dns/)，
 可以在容器中通过 DNS 来访问服务。
 
 ## {{% heading "whatsnext" %}}
@@ -102,7 +100,7 @@ if [DNS addon](http://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addon
 * Get hands-on experience
   [attaching handlers to Container lifecycle events](/docs/tasks/configure-pod-container/attach-handler-lifecycle-event/).
 -->
-* 学习更多有关[容器生命周期回调](/zh/docs/concepts/containers/container-lifecycle-hooks/)的知识
-* 动手[为容器生命周期事件添加处理程序](/zh/docs/tasks/configure-pod-container/attach-handler-lifecycle-event/)
+* 学习更多有关[容器生命周期回调](/zh-cn/docs/concepts/containers/container-lifecycle-hooks/)的知识。
+* 动手[为容器的生命周期事件设置处理函数](/zh-cn/docs/tasks/configure-pod-container/attach-handler-lifecycle-event/)。
 
 
diff --git a/content/zh/docs/concepts/containers/container-lifecycle-hooks.md b/content/zh-cn/docs/concepts/containers/container-lifecycle-hooks.md
similarity index 65%
rename from content/zh/docs/concepts/containers/container-lifecycle-hooks.md
rename to content/zh-cn/docs/concepts/containers/container-lifecycle-hooks.md
index cb4a1d613a..ea6085dbf4 100644
--- a/content/zh/docs/concepts/containers/container-lifecycle-hooks.md
+++ b/content/zh-cn/docs/concepts/containers/container-lifecycle-hooks.md
@@ -41,7 +41,7 @@ and run code implemented in a handler when the corresponding lifecycle hook is e
 
 There are two hooks that are exposed to Containers:
 -->
-## 容器回调
+## 容器回调 {#container-hooks}
 
 有两个回调暴露给容器：
 
@@ -71,8 +71,8 @@ parameters are passed to the handler.
 而被终止之前，此回调会被调用。
 如果容器已经处于已终止或者已完成状态，则对 preStop 回调的调用将失败。
 在用来停止容器的 TERM 信号被发出之前，回调必须执行结束。
-Pod 的终止宽限周期在 `PreStop` 回调被执行之前即开始计数，所以无论
-回调函数的执行结果如何，容器最终都会在 Pod 的终止宽限期内被终止。
+Pod 的终止宽限周期在 `PreStop` 回调被执行之前即开始计数，
+所以无论回调函数的执行结果如何，容器最终都会在 Pod 的终止宽限期内被终止。
 没有参数会被传递给处理程序。
 
 <!--
@@ -80,7 +80,7 @@ A more detailed description of the termination behavior can be found in
 [Termination of Pods](/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination).
 -->
 有关终止行为的更详细描述，请参见
-[终止 Pod](/zh/docs/concepts/workloads/pods/pod-lifecycle/#termination-of-pods)。
+[终止 Pod](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)。
 
 <!--
 ### Hook handler implementations
@@ -99,7 +99,7 @@ Resources consumed by the command are counted against the Container.
 * HTTP - Executes an HTTP request against a specific endpoint on the Container.
 -->
 
-* Exec - 在容器的 cgroups 和名称空间中执行特定的命令（例如 `pre-stop.sh`）。
+* Exec - 在容器的 cgroups 和名字空间中执行特定的命令（例如 `pre-stop.sh`）。
   命令所消耗的资源计入容器的资源消耗。
 * HTTP - 对容器上的特定端点执行 HTTP 请求。
 
@@ -107,13 +107,13 @@ Resources consumed by the command are counted against the Container.
 ### Hook handler execution
 
 When a Container lifecycle management hook is called,
-the Kubernetes management system execute the handler according to the hook action,
+the Kubernetes management system executes the handler according to the hook action,
 `httpGet` and `tcpSocket` are executed by the kubelet process, and `exec` is executed in the container.
 -->
 ### 回调处理程序执行
 
 当调用容器生命周期管理回调时，Kubernetes 管理系统根据回调动作执行其处理程序，
-`httpGet` 和 `tcpSocket` 在kubelet 进程执行，而 `exec` 则由容器内执行 。
+`httpGet` 和 `tcpSocket` 在 kubelet 进程执行，而 `exec` 则由容器内执行。
 
 <!--
 Hook handler calls are synchronous within the context of the Pod containing the Container.
@@ -140,31 +140,14 @@ takes 55 seconds to complete, and the Container takes 10 seconds to stop
 normally after receiving the signal, then the Container will be killed
 before it can stop normally, since `terminationGracePeriodSeconds` is
 less than the total time (55+10) it takes for these two things to happen.
-
-`PreStop` hooks are not executed asynchronously from the signal
-to stop the Container; the hook must complete its execution before
-the signal can be sent.
-If a `PreStop` hook hangs during execution,
-the Pod's phase will be `Terminating` and remain there until the Pod is
-killed after its `terminationGracePeriodSeconds` expires.
-This grace period applies to the total time it takes for both
-the `PreStop` hook to execute and for the Container to stop normally.
-If, for example, `terminationGracePeriodSeconds` is 60, and the hook
-takes 55 seconds to complete, and the Container takes 10 seconds to stop
-normally after receiving the signal, then the Container will be killed
-before it can stop normally, since `terminationGracePeriodSeconds` is
-less than the total time (55+10) it takes for these two things to happen.
 -->
-`PreStop` 回调并不会与停止容器的信号处理程序异步执行；回调必须在
-可以发送信号之前完成执行。
-如果 `PreStop` 回调在执行期间停滞不前，Pod 的阶段会变成 `Terminating`
-并且一致处于该状态，直到其 `terminationGracePeriodSeconds` 耗尽为止，
-这时 Pod 会被杀死。
+`PreStop` 回调并不会与停止容器的信号处理程序异步执行；回调必须在可以发送信号之前完成执行。
+如果 `PreStop` 回调在执行期间停滞不前，Pod 的阶段会变成 `Terminating`并且一直处于该状态，
+直到其 `terminationGracePeriodSeconds` 耗尽为止，这时 Pod 会被杀死。
 这一宽限期是针对 `PreStop` 回调的执行时间及容器正常停止时间的总和而言的。
-例如，如果 `terminationGracePeriodSeconds` 是 60，回调函数花了 55 秒钟
-完成执行，而容器在收到信号之后花了 10 秒钟来正常结束，那么容器会在其
-能够正常结束之前即被杀死，因为 `terminationGracePeriodSeconds` 的值
-小于后面两件事情所花费的总时间（55+10）。
+例如，如果 `terminationGracePeriodSeconds` 是 60，回调函数花了 55 秒钟完成执行，
+而容器在收到信号之后花了 10 秒钟来正常结束，那么容器会在其能够正常结束之前即被杀死，
+因为 `terminationGracePeriodSeconds` 的值小于后面两件事情所花费的总时间（55+10）。
 
 <!--
 If either a `PostStart` or `PreStop` hook fails,
@@ -190,7 +173,7 @@ It is up to the hook implementation to handle this correctly.
 -->
 ### 回调递送保证
 
-回调的递送应该是 *至少一次*，这意味着对于任何给定的事件，
+回调的递送应该是**至少一次**，这意味着对于任何给定的事件，
 例如 `PostStart` 或 `PreStop`，回调可以被调用多次。
 如何正确处理被多次调用的情况，是回调实现所要考虑的问题。
 
@@ -214,30 +197,32 @@ The logs for a Hook handler are not exposed in Pod events.
 If a handler fails for some reason, it broadcasts an event.
 For `PostStart`, this is the `FailedPostStartHook` event,
 and for `PreStop`, this is the `FailedPreStopHook` event.
-You can see these events by running `kubectl describe pod <pod_name>`.
-Here is some example output of events from running this command:
+To generate a failed `FailedPreStopHook` event yourself, modify the [lifecycle-events.yaml](https://raw.githubusercontent.com/kubernetes/website/main/content/en/examples/pods/lifecycle-events.yaml) file to change the postStart command to "badcommand" and apply it.
+Here is some example output of the resulting events you see from running `kubectl describe pod lifecycle-demo`:
 -->
 ### 调试回调处理程序
 
 回调处理程序的日志不会在 Pod 事件中公开。
 如果处理程序由于某种原因失败，它将播放一个事件。
 对于 `PostStart`，这是 `FailedPostStartHook` 事件，对于 `PreStop`，这是 `FailedPreStopHook` 事件。
-您可以通过运行 `kubectl describe pod <pod_name>` 命令来查看这些事件。
-下面是运行这个命令的一些事件输出示例:
+要自己生成失败的 `FailedPreStopHook` 事件，请修改
+[lifecycle-events.yaml](https://raw.githubusercontent.com/kubernetes/website/main/content/en/examples/pods/lifecycle-events.yaml)
+文件将 postStart 命令更改为 “badcommand” 并应用它。
+以下是通过运行 `kubectl describe pod lifecycle-demo` 后你看到的一些结果事件的示例输出：
 
 ```
 Events:
-  FirstSeen    LastSeen    Count    From                            SubobjectPath        Type        Reason        Message
-  ---------    --------    -----    ----                            -------------        --------    ------        -------
-  1m        1m        1    {default-scheduler }                                Normal        Scheduled    Successfully assigned test-1730497541-cq1d2 to gke-test-cluster-default-pool-a07e5d30-siqd
-  1m        1m        1    {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}    spec.containers{main}    Normal        Pulling        pulling image "test:1.0"
-  1m        1m        1    {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}    spec.containers{main}    Normal        Created        Created container with docker id 5c6a256a2567; Security:[seccomp=unconfined]
-  1m        1m        1    {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}    spec.containers{main}    Normal        Pulled        Successfully pulled image "test:1.0"
-  1m        1m        1    {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}    spec.containers{main}    Normal        Started        Started container with docker id 5c6a256a2567
-  38s        38s        1    {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}    spec.containers{main}    Normal        Killing        Killing container with docker id 5c6a256a2567: PostStart handler: Error executing in Docker Container: 1
-  37s        37s        1    {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}    spec.containers{main}    Normal        Killing        Killing container with docker id 8df9fdfd7054: PostStart handler: Error executing in Docker Container: 1
-  38s        37s        2    {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}                Warning        FailedSync    Error syncing pod, skipping: failed to "StartContainer" for "main" with RunContainerError: "PostStart handler: Error executing in Docker Container: 1"
-  1m         22s         2     {kubelet gke-test-cluster-default-pool-a07e5d30-siqd}    spec.containers{main}    Warning        FailedPostStartHook
+  Type     Reason               Age              From               Message
+  ----     ------               ----             ----               -------
+  Normal   Scheduled            7s               default-scheduler  Successfully assigned default/lifecycle-demo to ip-XXX-XXX-XX-XX.us-east-2...
+  Normal   Pulled               6s               kubelet            Successfully pulled image "nginx" in 229.604315ms
+  Normal   Pulling              4s (x2 over 6s)  kubelet            Pulling image "nginx"
+  Normal   Created              4s (x2 over 5s)  kubelet            Created container lifecycle-demo-container
+  Normal   Started              4s (x2 over 5s)  kubelet            Started container lifecycle-demo-container
+  Warning  FailedPostStartHook  4s (x2 over 5s)  kubelet            Exec lifecycle hook ([badcommand]) for Container "lifecycle-demo-container" in Pod "lifecycle-demo_default(30229739-9651-4e5a-9a32-a8f1688862db)" failed - error: command 'badcommand' exited with 126: , message: "OCI runtime exec failed: exec failed: container_linux.go:380: starting container process caused: exec: \"badcommand\": executable file not found in $PATH: unknown\r\n"
+  Normal   Killing              4s (x2 over 5s)  kubelet            FailedPostStartHook
+  Normal   Pulled               4s               kubelet            Successfully pulled image "nginx" in 215.66395ms
+  Warning  BackOff              2s (x2 over 3s)  kubelet            Back-off restarting failed container
 ```
 
 ## {{% heading "whatsnext" %}}
@@ -248,6 +233,6 @@ Events:
   [attaching handlers to Container lifecycle events](/docs/tasks/configure-pod-container/attach-handler-lifecycle-event/).
 -->
 
-* 进一步了解[容器环境](/zh/docs/concepts/containers/container-environment/)
-* 动手实践，[为容器生命周期事件添加处理程序](/zh/docs/tasks/configure-pod-container/attach-handler-lifecycle-event/)
+* 进一步了解[容器环境](/zh-cn/docs/concepts/containers/container-environment/)。
+* 动手[为容器的生命周期事件设置处理函数](/zh-cn/docs/tasks/configure-pod-container/attach-handler-lifecycle-event/)。
 
diff --git a/content/zh/docs/concepts/containers/images.md b/content/zh-cn/docs/concepts/containers/images.md
similarity index 53%
rename from content/zh/docs/concepts/containers/images.md
rename to content/zh-cn/docs/concepts/containers/images.md
index 0a629be864..c3876235bb 100644
--- a/content/zh/docs/concepts/containers/images.md
+++ b/content/zh-cn/docs/concepts/containers/images.md
@@ -29,7 +29,7 @@ This page provides an outline of the container image concept.
 容器镜像是可执行的软件包，可以单独运行；该软件包对所处的运行时环境具有
 良定（Well Defined）的假定。
 
-你通常会创建应用的容器镜像并将其推送到某仓库，然后在
+你通常会创建应用的容器镜像并将其推送到某仓库（Registry），然后在
 {{< glossary_tooltip text="Pod" term_id="pod" >}} 中引用它。
 
 本页概要介绍容器镜像的概念。
@@ -41,12 +41,11 @@ This page provides an outline of the container image concept.
 
 Container images are usually given a name such as `pause`, `example/mycontainer`, or `kube-apiserver`.
 Images can also include a registry hostname; for example: `fictional.registry.example/imagename`,
-and possible a port number as well; for example: `fictional.registry.example:10443/imagename`.
+and possibly a port number as well; for example: `fictional.registry.example:10443/imagename`.
 
 If you don't specify a registry hostname, Kubernetes assumes that you mean the Docker public registry.
 
-After the image name part you can add a _tag_ (as also using with commands such
-as `docker` and `podman`).
+After the image name part you can add a _tag_ (in the same way you would when using with commands like `docker` or `podman`).
 Tags let you identify different versions of the same series of images.
 -->
 ## 镜像名称    {#image-names}
@@ -57,8 +56,7 @@ Tags let you identify different versions of the same series of images.
 
 如果你不指定仓库的主机名，Kubernetes 认为你在使用 Docker 公共仓库。
 
-在镜像名称之后，你可以添加一个 _标签（Tag）_ （就像在 `docker` 或 `podman`
-中也在用的那样）。
+在镜像名称之后，你可以添加一个标签（Tag）（与使用 `docker` 或 `podman` 等命令时的方式相同）。
 使用标签能让你辨识同一镜像序列中的不同版本。
 
 <!--
@@ -68,24 +66,10 @@ There are additional rules about where you can place the separator
 characters (`_`, `-`, and `.`) inside an image tag.  
 If you don't specify a tag, Kubernetes assumes you mean the tag `latest`.
 -->
-镜像标签可以包含小写字母、大写字符、数字、下划线（`_`）、句点（`.`）和连字符（`-`）。
+镜像标签可以包含小写字母、大写字母、数字、下划线（`_`）、句点（`.`）和连字符（`-`）。
 关于在镜像标签中何处可以使用分隔字符（`_`、`-` 和 `.`）还有一些额外的规则。
 如果你不指定标签，Kubernetes 认为你想使用标签 `latest`。
 
-<!--
-You should avoid using the `latest` tag when deploying containers in production,
-as it is harder to track which version of the image is running and more difficult
-to roll back to a working version.
-
-Instead, specify a meaningful tag such as `v1.42.0`.
--->
-{{< caution >}}
-你要避免在生产环境中使用 `latest` 标签，因为这会使得跟踪所运行的镜像版本变得
-非常困难，同时也很难回滚到之前运行良好的版本。
-
-正确的做法恰恰相反，你应该指定一个有意义的标签，如 `v1.42.0`。
-{{< /caution >}}
-
 <!--
 ## Updating images
 
@@ -107,22 +91,123 @@ image if it already exists.
 在镜像已经存在的情况下直接略过拉取镜像的操作。
 
 <!--
-If you would like to always force a pull, you can do one of the following:
+### Image pull policy
 
-- set the `imagePullPolicy` of the container to `Always`.
-- omit the `imagePullPolicy` and use `:latest` as the tag for the image to use;
-  Kubernetes will set the policy to `Always`.
-- omit the `imagePullPolicy` and the tag for the image to use.
-- enable the [AlwaysPullImages](/docs/reference/access-authn-authz/admission-controllers/#alwayspullimages) admission controller.
+The `imagePullPolicy` for a container and the tag of the image affect when the
+[kubelet](/docs/reference/command-line-tools-reference/kubelet/) attempts to pull (download) the specified image.
+
+Here's a list of the values you can set for `imagePullPolicy` and the effects
+these values have:
 -->
-如果你希望强制总是拉取镜像，你可以执行以下操作之一：
+### 镜像拉取策略   {#image-pull-policy}
 
-- 设置容器的 `imagePullPolicy` 为 `Always`。
-- 省略 `imagePullPolicy`，并使用 `:latest` 作为要使用的镜像的标签；
-  Kubernetes 会将策略设置为 `Always`。
-- 省略 `imagePullPolicy` 和要使用的镜像标签。
-- 启用 [AlwaysPullImages](/zh/docs/reference/access-authn-authz/admission-controllers/#alwayspullimages)
-  准入控制器（Admission Controller）。
+容器的 `imagePullPolicy` 和镜像的标签会影响 [kubelet](/zh-cn/docs/reference/command-line-tools-reference/kubelet/) 尝试拉取（下载）指定的镜像。
+
+以下列表包含了 `imagePullPolicy` 可以设置的值，以及这些值的效果：
+
+<!--
+`IfNotPresent`
+: the image is pulled only if it is not already present locally.
+
+`Always`
+: every time the kubelet launches a container, the kubelet queries the container
+  image registry to resolve the name to an image
+  [digest](https://docs.docker.com/engine/reference/commandline/pull/#pull-an-image-by-digest-immutable-identifier). If the kubelet has a
+  container image with that exact digest cached locally, the kubelet uses its cached
+  image; otherwise, the kubelet pulls the image with the resolved digest,
+  and uses that image to launch the container.
+
+`Never`
+: the kubelet does not try fetching the image. If the image is somehow already present
+  locally, the kubelet attempts to start the container; otherwise, startup fails.
+  See [pre-pulled images](#pre-pulled-images) for more details.
+-->
+`IfNotPresent`
+: 只有当镜像在本地不存在时才会拉取。
+
+`Always`
+: 每当 kubelet 启动一个容器时，kubelet 会查询容器的镜像仓库，
+  将名称解析为一个镜像[摘要](https://docs.docker.com/engine/reference/commandline/pull/#pull-an-image-by-digest-immutable-identifier)。
+  如果 kubelet 有一个容器镜像，并且对应的摘要已在本地缓存，kubelet 就会使用其缓存的镜像；
+  否则，kubelet 就会使用解析后的摘要拉取镜像，并使用该镜像来启动容器。
+
+`Never`
+: Kubelet 不会尝试获取镜像。如果镜像已经以某种方式存在本地，
+  kubelet 会尝试启动容器；否则，会启动失败。
+  更多细节见[提前拉取镜像](#pre-pulled-images)。
+
+<!--
+The caching semantics of the underlying image provider make even
+`imagePullPolicy: Always` efficient, as long as the registry is reliably accessible.
+Your container runtime can notice that the image layers already exist on the node
+so that they don't need to be downloaded again.
+-->
+只要能够可靠地访问镜像仓库，底层镜像提供者的缓存语义甚至可以使 `imagePullPolicy: Always` 高效。
+你的容器运行时可以注意到节点上已经存在的镜像层，这样就不需要再次下载。
+
+<!--
+You should avoid using the `:latest` tag when deploying containers in production as
+it is harder to track which version of the image is running and more difficult to
+roll back properly.
+
+Instead, specify a meaningful tag such as `v1.42.0`.
+
+To make sure the Pod always uses the same version of a container image, you can specify
+the image's digest;
+replace `<image-name>:<tag>` with `<image-name>@<digest>`
+(for example, `image@sha256:45b23dee08af5e43a7fea6c4cf9c25ccf269ee113168c19722f87876677c5cb2`).
+-->
+{{< note >}}
+在生产环境中部署容器时，你应该避免使用 `:latest` 标签，因为这使得正在运行的镜像的版本难以追踪，并且难以正确地回滚。
+
+相反，应指定一个有意义的标签，如 `v1.42.0`。
+{{< /note >}}
+
+为了确保 Pod 总是使用相同版本的容器镜像，你可以指定镜像的摘要；
+将 `<image-name>:<tag>` 替换为 `<image-name>@<digest>`，例如 `image@sha256:45b23dee08af5e43a7fea6c4cf9c25ccf269ee113168c19722f87876677c5cb2`。
+
+<!--
+When using image tags, if the image registry were to change the code that the tag on that image represents, you might end up with a mix of Pods running the old and new code. An image digest uniquely identifies a specific version of the image, so Kubernetes runs the same code every time it starts a container with that image name and digest specified. Specifying an image by digest fixes the code that you run so that a change at the registry cannot lead to that mix of versions.
+
+There are third-party [admission controllers](/docs/reference/access-authn-authz/admission-controllers/)
+that mutate Pods (and pod templates) when they are created, so that the
+running workload is defined based on an image digest rather than a tag.
+That might be useful if you want to make sure that all your workload is
+running the same code no matter what tag changes happen at the registry.
+-->
+当使用镜像标签时，如果镜像仓库修改了代码所对应的镜像标签，可能会出现新旧代码混杂在 Pod 中运行的情况。
+镜像摘要唯一标识了镜像的特定版本，因此 Kubernetes 每次启动具有指定镜像名称和摘要的容器时，都会运行相同的代码。
+通过摘要指定镜像可固定你运行的代码，这样镜像仓库的变化就不会导致版本的混杂。
+
+有一些第三方的[准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/)
+在创建 Pod（和 Pod 模板）时产生变更，这样运行的工作负载就是根据镜像摘要，而不是标签来定义的。
+无论镜像仓库上的标签发生什么变化，你都想确保你所有的工作负载都运行相同的代码，那么指定镜像摘要会很有用。
+
+<!-- 
+#### Default image pull policy {#imagepullpolicy-defaulting}
+
+When you (or a controller) submit a new Pod to the API server, your cluster sets the
+`imagePullPolicy` field when specific conditions are met:
+-->
+#### 默认镜像拉取策略    {#imagepullpolicy-defaulting}
+
+当你（或控制器）向 API 服务器提交一个新的 Pod 时，你的集群会在满足特定条件时设置 `imagePullPolicy `字段：
+
+<!--
+- if you omit the `imagePullPolicy` field, and the tag for the container image is
+  `:latest`, `imagePullPolicy` is automatically set to `Always`;
+- if you omit the `imagePullPolicy` field, and you don't specify the tag for the
+  container image, `imagePullPolicy` is automatically set to `Always`;
+- if you omit the `imagePullPolicy` field, and you specify the tag for the
+  container image that isn't `:latest`, the `imagePullPolicy` is automatically set to
+  `IfNotPresent`.
+-->
+- 如果你省略了 `imagePullPolicy` 字段，并且容器镜像的标签是 `:latest`，
+  `imagePullPolicy` 会自动设置为 `Always`。
+- 如果你省略了 `imagePullPolicy` 字段，并且没有指定容器镜像的标签，
+  `imagePullPolicy` 会自动设置为 `Always`。
+- 如果你省略了 `imagePullPolicy` 字段，并且为容器镜像指定了非 `:latest` 的标签，
+  `imagePullPolicy` 就会自动设置为 `IfNotPresent`。
 
 {{< note >}}
 <!--
@@ -134,18 +219,63 @@ For example, if you create a Deployment with an image whose tag is _not_
 `imagePullPolicy` field will _not_ change to `Always`. You must manually change
 the pull policy of any object after its initial creation.
 -->
-对象被 *创建* 时，容器的 `imagePullPolicy` 总是被设置为某值，如果镜像的标签
-后来发生改变，镜像拉取策略也不会被改变。
+容器的 `imagePullPolicy` 的值总是在对象初次 _创建_ 时设置的，如果后来镜像的标签发生变化，则不会更新。
 
-例如，如果你创建了一个 Deployment 对象，其中的镜像标签不是 `:latest`，
-后来 Deployment 的镜像被改为 `:latest`，则 `imagePullPolicy` 不会被改变为
-`Always`。你必须在对象被初始创建之后手动改变拉取策略。
+例如，如果你用一个 _非_ `:latest` 的镜像标签创建一个 Deployment，
+并在随后更新该 Deployment 的镜像标签为 `:latest`，则 `imagePullPolicy` 字段 _不会_ 变成 `Always`。
+你必须手动更改已经创建的资源的拉取策略。
 {{< /note >}}
 
 <!--
-When `imagePullPolicy` is defined without a specific value, it is also set to `Always`.
+#### Required image pull
+
+If you would like to always force a pull, you can do one of the following:
+
+- Set the `imagePullPolicy` of the container to `Always`.
+- Omit the `imagePullPolicy` and use `:latest` as the tag for the image to use;
+  Kubernetes will set the policy to `Always` when you submit the Pod.
+- Omit the `imagePullPolicy` and the tag for the image to use;
+  Kubernetes will set the policy to `Always` when you submit the Pod.
+- Enable the [AlwaysPullImages](/docs/reference/access-authn-authz/admission-controllers/#alwayspullimages) admission controller.
 -->
-如果 `imagePullPolicy` 未被定义为特定的值，也会被设置为 `Always`。
+#### 必要的镜像拉取   {#required-image-pull}
+
+如果你想总是强制执行拉取，你可以使用下述的一中方式：
+
+- 设置容器的 `imagePullPolicy` 为 `Always`。
+- 省略 `imagePullPolicy`，并使用 `:latest` 作为镜像标签；
+  当你提交 Pod 时，Kubernetes 会将策略设置为 `Always`。
+- 省略 `imagePullPolicy` 和镜像的标签；
+  当你提交 Pod 时，Kubernetes 会将策略设置为 `Always`。
+- 启用准入控制器 [AlwaysPullImages](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#alwayspullimages)。
+
+
+<!--
+### ImagePullBackOff
+
+When a kubelet starts creating containers for a Pod using a container runtime,
+it might be possible the container is in [Waiting](/docs/concepts/workloads/pods/pod-lifecycle/#container-state-waiting)
+state because of `ImagePullBackOff`.
+-->
+### ImagePullBackOff
+
+当 kubelet 使用容器运行时创建 Pod 时，容器可能因为 `ImagePullBackOff` 导致状态为
+[Waiting](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#container-state-waiting)。
+
+<!--
+The status `ImagePullBackOff` means that a container could not start because Kubernetes
+could not pull a container image (for reasons such as invalid image name, or pulling
+from a private registry without `imagePullSecret`). The `BackOff` part indicates
+that Kubernetes will keep trying to pull the image, with an increasing back-off delay.
+
+Kubernetes raises the delay between each attempt until it reaches a compiled-in limit,
+which is 300 seconds (5 minutes).
+-->
+`ImagePullBackOff` 状态意味着容器无法启动，
+因为 Kubernetes 无法拉取容器镜像（原因包括无效的镜像名称，或从私有仓库拉取而没有 `imagePullSecret`）。
+ `BackOff` 部分表示 Kubernetes 将继续尝试拉取镜像，并增加回退延迟。
+
+Kubernetes 会增加每次尝试之间的延迟，直到达到编译限制，即 300 秒（5 分钟）。
 
 <!--
 ## Multi-architecture images with image indexes
@@ -166,7 +296,7 @@ Kubernetes itself typically names container images with a suffix `-$(ARCH)`. For
 Kubernetes 自身通常在命名容器镜像时添加后缀 `-$(ARCH)`。
 为了向前兼容，请在生成较老的镜像时也提供后缀。
 这里的理念是为某镜像（如 `pause`）生成针对所有平台都适用的清单时，
-生成 `pause-amd64` 这类镜像，以便较老的配置文件或者将镜像后缀影编码到其中的
+生成 `pause-amd64` 这类镜像，以便较老的配置文件或者将镜像后缀硬编码到其中的
 YAML 文件也能兼容。
 
 <!--
@@ -214,17 +344,12 @@ These options are explained in more detail below.
 <!--
 ### Configuring nodes to authenticate to a private registry
 
-If you run Docker on your nodes, you can configure the Docker container
-runtime to authenticate to a private container registry.
-
-This approach is suitable if you can control node configuration.
+Specific instructions for setting credentials depends on the container runtime and registry you chose to use. You should refer to your solution's documentation for the most accurate information.
 -->
 ### 配置 Node 对私有仓库认证
 
-如果你在节点上运行的是 Docker，你可以配置 Docker
-容器运行时来向私有容器仓库认证身份。
-
-此方法适用于能够对节点进行配置的场合。
+设置凭据的具体说明取决于你选择使用的容器运行时和仓库。
+你应该参考解决方案的文档来获取最准确的信息。
 
 <!--
 Default Kubernetes only supports the `auths` and `HttpHeaders` section in Docker configuration.
@@ -236,154 +361,123 @@ Kubernetes 默认仅支持 Docker 配置中的 `auths` 和 `HttpHeaders` 部分
 {{< /note >}}
 
 <!--
-Docker stores keys for private registries in the `$HOME/.dockercfg` or `$HOME/.docker/config.json` file.  If you put the same file
-in the search paths list below, kubelet uses it as the credential provider when pulling images.
+For an example of configuring a private container image registry, see the
+[Pull an Image from a Private Registry](/docs/tasks/configure-pod-container/pull-image-private-registry)
+task. That example uses a private registry in Docker Hub.
 -->
-Docker 将私有仓库的密钥保存在 `$HOME/.dockercfg` 或 `$HOME/.docker/config.json`
-文件中。如果你将相同的文件放在下面所列的搜索路径中，`kubelet` 会在拉取镜像时将其用作凭据
-数据来源：
+有关配置私有容器镜像仓库的示例，请参阅任务
+[从私有镜像库中拉取镜像](/zh-cn/docs/tasks/configure-pod-container/pull-image-private-registry)。
+该示例使用 Docker Hub 中的私有注册表。
 
 <!--
-* `{--root-dir:-/var/lib/kubelet}/config.json`
-* `{cwd of kubelet}/config.json`
-* `${HOME}/.docker/config.json`
-* `/.docker/config.json`
-* `{--root-dir:-/var/lib/kubelet}/.dockercfg`
-* `{cwd of kubelet}/.dockercfg`
-* `${HOME}/.dockercfg`
-* `/.dockercfg`
+### Interpretation of config.json {#config-json}
 -->
-* `{--root-dir:-/var/lib/kubelet}/config.json`
-* `{kubelet 当前工作目录}/config.json`
-* `${HOME}/.docker/config.json`
-* `/.docker/config.json`
-* `{--root-dir:-/var/lib/kubelet}/.dockercfg`
-* `{kubelet 当前工作目录}/.dockercfg`
-* `${HOME}/.dockercfg`
-* `/.dockercfg`
+### config.json 说明 {#config-json}
 
 <!--
-You may have to set `HOME=/root` explicitly in the environment of the kubelet process.
+The interpretation of `config.json` varies between the original Docker
+implementation and the Kubernetes interpretation. In Docker, the `auths` keys
+can only specify root URLs, whereas Kubernetes allows glob URLs as well as
+prefix-matched paths. This means that a `config.json` like this is valid:
 -->
-{{< note >}}
-你可能不得不为 `kubelet` 进程显式地设置 `HOME=/root` 环境变量。
-{{< /note >}}
-
-<!--
-Here are the recommended steps to configuring your nodes to use a private registry.  In this
-example, run these on your desktop/laptop:
--->
-推荐采用如下步骤来配置节点以便访问私有仓库。以下示例中，在 PC 或笔记本电脑中操作：
-
-<!--
-1. Run `docker login [server]` for each set of credentials you want to use.  This updates `$HOME/.docker/config.json` on your PC.
-1. View `$HOME/.docker/config.json` in an editor to ensure it contains only the credentials you want to use.
-1. Get a list of your nodes; for example:
-      - if you want the names: `nodes=$( kubectl get nodes -o jsonpath='{range.items[*].metadata}{.name} {end}' )`
-      - if you want to get the IP addresses: `nodes=$( kubectl get nodes -o jsonpath='{range .items[*].status.addresses[?(@.type=="ExternalIP")]}{.address} {end}' )`
-1. Copy your local `.docker/config.json` to one of the search paths list above.
-      - for example, to test this out: `for n in $nodes; do scp ~/.docker/config.json root@"$n":/var/lib/kubelet/config.json; done`
--->
-1. 针对你要使用的每组凭据，运行 `docker login [服务器]` 命令。这会更新
-   你本地环境中的 `$HOME/.docker/config.json` 文件。
-1. 在编辑器中打开查看 `$HOME/.docker/config.json` 文件，确保其中仅包含你要
-   使用的凭据信息。
-1. 获得节点列表；例如：
-
-   - 如果想要节点名称：`nodes=$(kubectl get nodes -o jsonpath='{range.items[*].metadata}{.name} {end}')`
-
-   - 如果想要节点 IP ，`nodes=$(kubectl get nodes -o jsonpath='{range .items[*].status.addresses[?(@.type=="ExternalIP")]}{.address} {end}')`
-
-1. 将本地的 `.docker/config.json` 拷贝到所有节点，放入如上所列的目录之一：
-   - 例如，可以试一下：`for n in $nodes; do scp ~/.docker/config.json root@"$n":/var/lib/kubelet/config.json; done`
-
-<!--
-For production clusters, use a configuration management tool so that you can apply this
-setting to all the nodes where you need it.
--->
-{{< note >}}
-对于产品环境的集群，可以使用配置管理工具来将这些设置应用到
-你所期望的节点上。
-{{< /note >}}
-
-<!--
-Verify by creating a Pod that uses a private image; for example:
--->
-创建使用私有镜像的 Pod 来验证。例如：
-
-```shell
-kubectl apply -f - <<EOF
-apiVersion: v1
-kind: Pod
-metadata:
-  name: private-image-test-1
-spec:
-  containers:
-    - name: uses-private-image
-      image: $PRIVATE_IMAGE_NAME
-      imagePullPolicy: Always
-      command: [ "echo", "SUCCESS" ]
-EOF
-```
-
-输出类似于：
-
-```
-pod/private-image-test-1 created
+对于 `config.json` 的解释在原始 Docker 实现和 Kubernetes 的解释之间有所不同。
+在 Docker 中，`auths` 键只能指定根 URL ，而 Kubernetes 允许 glob URLs 以及
+前缀匹配的路径。这意味着，像这样的 `config.json` 是有效的：
+```json
+{
+    "auths": {
+        "*my-registry.io/images": {
+            "auth": "…"
+        }
+    }
+}
 ```
 
 <!--
-If everything is working, then, after a few moments, you can run:
+The root URL (`*my-registry.io`) is matched by using the following syntax:
 
-```shell
-kubectl logs private-image-test-1
 ```
-and see that the command outputs:
-```
-SUCCESS
+pattern:
+    { term }
+
+term:
+    '*'         matches any sequence of non-Separator characters
+    '?'         matches any single non-Separator character
+    '[' [ '^' ] { character-range } ']'
+                character class (must be non-empty)
+    c           matches character c (c != '*', '?', '\\', '[')
+    '\\' c      matches character c
+
+character-range:
+    c           matches character c (c != '\\', '-', ']')
+    '\\' c      matches character c
+    lo '-' hi   matches character c for lo <= c <= hi
 ```
 -->
-如果一切顺利，那么一段时间后你可以执行：
-```shell
-kubectl logs private-image-test-1
+使用以下语法匹配根 URL （`*my-registry.io`）：
 ```
-然后可以看到命令的输出：
-```
-SUCCESS
+pattern:
+    { term }
+
+term:
+    '*'         匹配任何无分隔符字符序列
+    '?'         匹配任意单个非分隔符
+    '[' [ '^' ] 字符范围
+                  字符集（必须非空）
+    c           匹配字符 c （c 不为 '*','?','\\','['）
+    '\\' c      匹配字符 c
+
+字符范围: 
+    c           匹配字符 c （c 不为 '\\','?','-',']'）
+    '\\' c      匹配字符 c
+    lo '-' hi   匹配字符范围在 lo 到 hi 之间字符
 ```
 
 <!--
-If you suspect that the command failed, you can run:
--->
-如果你怀疑命令失败了，你可以运行：
+Image pull operations would now pass the credentials to the CRI container
+runtime for every valid pattern. For example the following container image names
+would match successfully:
 
-```shell
-kubectl describe pods/private-image-test-1 | grep 'Failed'
+- `my-registry.io/images`
+- `my-registry.io/images/my-image`
+- `my-registry.io/images/another-image`
+- `sub.my-registry.io/images/my-image`
+- `a.sub.my-registry.io/images/my-image`
+-->
+现在镜像拉取操作会将每种有效模式的凭据都传递给 CRI 容器运行时。例如下面的容器镜像名称会匹配成功：
+
+- `my-registry.io/images`
+- `my-registry.io/images/my-image`
+- `my-registry.io/images/another-image`
+- `sub.my-registry.io/images/my-image`
+- `a.sub.my-registry.io/images/my-image`
+
+<!--
+The kubelet performs image pulls sequentially for every found credential. This
+means, that multiple entries in `config.json` are possible, too:
+-->
+kubelet 为每个找到的凭证的镜像按顺序拉取。 这意味着在 `config.json` 中可能有多项：
+
+```json
+{
+    "auths": {
+        "my-registry.io/images": {
+            "auth": "…"
+        },
+        "my-registry.io/images/subpath": {
+            "auth": "…"
+        }
+    }
+}
 ```
 
 <!--
-In case of failure, the output is similar to:
+If now a container specifies an image `my-registry.io/images/subpath/my-image`
+to be pulled, then the kubelet will try to download them from both
+authentication sources if one of them fails.
 -->
-如果命令确实失败，输出类似于：
-
-```
-  Fri, 26 Jun 2015 15:36:13 -0700    Fri, 26 Jun 2015 15:39:13 -0700    19    {kubelet node-i2hq}    spec.containers{uses-private-image}    failed        Failed to pull image "user/privaterepo:v1": Error: image user/privaterepo:v1 not found
-```
-
-<!--
-You must ensure all nodes in the cluster have the same `.docker/config.json`.  Otherwise, pods will run on
-some nodes and fail to run on others.  For example, if you use node autoscaling, then each instance
-template needs to include the `.docker/config.json` or mount a drive that contains it.
-
-All pods will have read access to images in any private registry once private
-registry keys are added to the `.docker/config.json`.
--->
-你必须确保集群中所有节点的 `.docker/config.json` 文件内容相同。
-否则，Pod 会能在一些节点上正常运行而无法在另一些节点上启动。
-例如，如果使用节点自动扩缩，那么每个实例模板都需要包含 `.docker/config.json`，
-或者挂载一个包含该文件的驱动器。
-
-在 `.docker/config.json` 中配置了私有仓库密钥后，所有 Pod 都将能读取私有仓库中的镜像。
+如果一个容器指定了要拉取的镜像 `my-registry.io/images/subpath/my-image`，
+并且其中一个失败，kubelet 将尝试从另一个身份验证源下载镜像。
 
 <!--
 ### Pre-pulled images
@@ -444,18 +538,17 @@ Kubernetes 支持在 Pod 中设置容器镜像仓库的密钥。
 <!--
 #### Creating a Secret with a Docker config
 
+You need to know the username, registry password and client email address for authenticating
+to the registry, as well as its hostname.
 Run the following command, substituting the appropriate uppercase values:
 -->
 #### 使用 Docker Config 创建 Secret   {#creating-a-secret-with-docker-config}
 
-运行以下命令，将大写字母代替为合适的值：
+你需要知道用于向仓库进行身份验证的用户名、密码和客户端电子邮件地址，以及它的主机名。
+运行以下命令，注意替换适当的大写值：
 
 ```shell
-kubectl create secret docker-registry <名称> \
-  --docker-server=DOCKER_REGISTRY_SERVER \
-  --docker-username=DOCKER_USER \
-  --docker-password=DOCKER_PASSWORD \
-  --docker-email=DOCKER_EMAIL
+kubectl create secret docker-registry <name> --docker-server=DOCKER_REGISTRY_SERVER --docker-username=DOCKER_USER --docker-password=DOCKER_PASSWORD --docker-email=DOCKER_EMAIL
 ```
 
 <!--
@@ -467,7 +560,7 @@ command, you can import the credentials file as a Kubernetes
 如果你已经有 Docker 凭据文件，则可以将凭据文件导入为 Kubernetes
 {{< glossary_tooltip text="Secret" term_id="secret" >}}，
 而不是执行上面的命令。
-[基于已有的 Docker 凭据创建 Secret](/zh/docs/tasks/configure-pod-container/pull-image-private-registry/#registry-secret-existing-credentials)
+[基于已有的 Docker 凭据创建 Secret](/zh-cn/docs/tasks/configure-pod-container/pull-image-private-registry/#registry-secret-existing-credentials)
 解释了如何完成这一操作。
 
 <!--
@@ -535,10 +628,10 @@ will be merged.
 -->
 你需要对使用私有仓库的每个 Pod 执行以上操作。
 不过，设置该字段的过程也可以通过为
-[服务账号](/zh/docs/tasks/configure-pod-container/configure-service-account/)
+[服务账号](/zh-cn/docs/tasks/configure-pod-container/configure-service-account/)
 资源设置 `imagePullSecrets` 来自动完成。
 有关详细指令可参见
-[将 ImagePullSecrets 添加到服务账号](/zh/docs/tasks/configure-pod-container/configure-service-account/#add-imagepullsecrets-to-a-service-account)。
+[将 ImagePullSecrets 添加到服务账号](/zh-cn/docs/tasks/configure-pod-container/configure-service-account/#add-imagepullsecrets-to-a-service-account)。
 
 你也可以将此方法与节点级别的 `.docker/config.json` 配置结合使用。
 来自不同来源的凭据会被合并。
@@ -592,7 +685,7 @@ common use cases and suggested solutions.
    - Move sensitive data into a "Secret" resource, instead of packaging it in an image.
 -->
 3. 集群使用专有镜像，且有些镜像需要更严格的访问控制
-   - 确保 [AlwaysPullImages 准入控制器](/zh/docs/reference/access-authn-authz/admission-controllers/#alwayspullimages)被启用。否则，所有 Pod 都可以使用所有镜像。
+   - 确保 [AlwaysPullImages 准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#alwayspullimages)被启用。否则，所有 Pod 都可以使用所有镜像。
    - 确保将敏感数据存储在 Secret 资源中，而不是将其打包在镜像里
 
 <!--
@@ -603,7 +696,7 @@ common use cases and suggested solutions.
    - The tenant adds that secret to imagePullSecrets of each namespace.
 -->
 4. 集群是多租户的并且每个租户需要自己的私有仓库
-   - 确保 [AlwaysPullImages 准入控制器](/zh/docs/reference/access-authn-authz/admission-controllers/#alwayspullimages)。否则，所有租户的所有的 Pod 都可以使用所有镜像。
+   - 确保 [AlwaysPullImages 准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#alwayspullimages)。否则，所有租户的所有的 Pod 都可以使用所有镜像。
    - 为私有仓库启用鉴权
    - 为每个租户生成访问仓库的凭据，放置在 Secret 中，并将 Secrert 发布到各租户的命名空间下。
    - 租户将 Secret 添加到每个名字空间中的 imagePullSecrets
@@ -619,7 +712,8 @@ Kubelet will merge any `imagePullSecrets` into a single virtual `.docker/config.
 ## {{% heading "whatsnext" %}}
 
 <!--
-* Read the [OCI Image Manifest Specification](https://github.com/opencontainers/image-spec/blob/master/manifest.md)
+* Read the [OCI Image Manifest Specification](https://github.com/opencontainers/image-spec/blob/master/manifest.md).
+* Learn about [container image garbage collection](/docs/concepts/architecture/garbage-collection/#container-image-garbage-collection).
 -->
-* 阅读 [OCI Image Manifest 规范](https://github.com/opencontainers/image-spec/blob/master/manifest.md)
-
+* 阅读 [OCI Image Manifest 规范](https://github.com/opencontainers/image-spec/blob/master/manifest.md)。
+* 了解[容器镜像垃圾收集](/zh-cn/docs/concepts/architecture/garbage-collection/#container-image-garbage-collection)。
diff --git a/content/zh/docs/concepts/containers/runtime-class.md b/content/zh-cn/docs/concepts/containers/runtime-class.md
similarity index 70%
rename from content/zh/docs/concepts/containers/runtime-class.md
rename to content/zh-cn/docs/concepts/containers/runtime-class.md
index d1ed733804..f528d81e28 100644
--- a/content/zh/docs/concepts/containers/runtime-class.md
+++ b/content/zh-cn/docs/concepts/containers/runtime-class.md
@@ -16,7 +16,7 @@ weight: 20
 
 {{< feature-state for_k8s_version="v1.20" state="stable" >}}
 
-<!-- 
+<!--
 This page describes the RuntimeClass resource and runtime selection mechanism.
 
 RuntimeClass is a feature for selecting the container runtime configuration. The container runtime
@@ -28,7 +28,7 @@ RuntimeClass 是一个用于选择容器运行时配置的特性，容器运行
 
 <!-- body -->
 
-<!-- 
+<!--
 ## Motivation
 
 You can set a different RuntimeClass between different Pods to provide a balance of
@@ -51,7 +51,7 @@ but with different settings.
 -->
 你还可以使用 RuntimeClass 运行具有相同容器运行时但具有不同设置的 Pod。
 
-<!-- 
+<!--
 ## Setup
 -->
 
@@ -77,22 +77,22 @@ CRI implementation for how to configure.
 RuntimeClass 的配置依赖于 运行时接口（CRI）的实现。
 根据你使用的 CRI 实现，查阅相关的文档（[下方](#cri-configuration)）来了解如何配置。
 
+{{< note >}}
 <!--
 RuntimeClass assumes a homogeneous node configuration across the cluster by default (which means
 that all nodes are configured the same way with respect to container runtimes). To support
-heterogenous node configurations, see [Scheduling](#scheduling) below.
+heterogeneous node configurations, see [Scheduling](#scheduling) below.
 -->
-{{< note >}}
 RuntimeClass 假设集群中的节点配置是同构的（换言之，所有的节点在容器运行时方面的配置是相同的）。
 如果需要支持异构节点，配置方法请参阅下面的 [调度](#scheduling)。
 {{< /note >}}
 
 <!--
 The configurations have a corresponding `handler` name, referenced by the RuntimeClass. The
-handler must be a valid DNS 1123 label (alpha-numeric + `-` characters).
+handler must be a valid [DNS label name](/docs/concepts/overview/working-with-objects/names/#dns-label-names).
 -->
 所有这些配置都具有相应的 `handler` 名，并被 RuntimeClass 引用。
-handler 必须符合 DNS-1123 命名规范（字母、数字、或 `-`）。
+handler 必须是有效的 [DNS 标签名](/zh-cn/docs/concepts/overview/working-with-objects/names/#dns-label-names)。
 
 <!--
 ### 2. Create the corresponding RuntimeClass resources
@@ -102,7 +102,7 @@ the configuration. For each handler, create a corresponding RuntimeClass object.
 -->
 ### 2. 创建相应的 RuntimeClass 资源
 
-在上面步骤 1 中，每个配置都需要有一个用于标识配置的 `handler`。 
+在上面步骤 1 中，每个配置都需要有一个用于标识配置的 `handler`。
 针对每个 handler 需要创建一个 RuntimeClass 对象。
 
 <!--
@@ -113,34 +113,44 @@ RuntimeClass 资源当前只有两个重要的字段：RuntimeClass 名 (`metada
 对象定义如下所示：
 
 ```yaml
-apiVersion: node.k8s.io/v1  # RuntimeClass 定义于 node.k8s.io API 组
+# RuntimeClass 定义于 node.k8s.io API 组
+apiVersion: node.k8s.io/v1
 kind: RuntimeClass
 metadata:
-  name: myclass  # 用来引用 RuntimeClass 的名字
+  # 用来引用 RuntimeClass 的名字
   # RuntimeClass 是一个集群层面的资源
-handler: myconfiguration  # 对应的 CRI 配置的名称
+  name: myclass
+# 对应的 CRI 配置的名称
+handler: myconfiguration
 ```
 
 <!--
-It is recommended that RuntimeClass write operations (create/update/patch/delete) be
-restricted to the cluster administrator. This is typically the default. See [Authorization
-Overview](/docs/reference/access-authn-authz/authorization/) for more details.
+The name of a RuntimeClass object must be a valid
+[DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 -->
+RuntimeClass 对象的名称必须是有效的
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
+
 {{< note >}}
+<!--
+It is recommended that RuntimeClass write operations (create/update/patch/delete) be
+restricted to the cluster administrator. This is typically the default. See
+[Authorization Overview](/docs/reference/access-authn-authz/authorization/) for more details.
+-->
 建议将 RuntimeClass 写操作（create、update、patch 和 delete）限定于集群管理员使用。
-通常这是默认配置。参阅[授权概述](/zh/docs/reference/access-authn-authz/authorization/)了解更多信息。
+通常这是默认配置。参阅[授权概述](/zh-cn/docs/reference/access-authn-authz/authorization/)了解更多信息。
 {{< /note >}}
 
 <!--
 ## Usage
 
-Once RuntimeClasses are configured for the cluster, using them is very simple. Specify a
-`runtimeClassName` in the Pod spec. For example:
+Once RuntimeClasses are configured for the cluster, you can specify a
+`runtimeClassName` in the Pod spec to use it. For example:
 -->
 ## 使用说明  {#usage}
 
-一旦完成集群中 RuntimeClasses 的配置，使用起来非常方便。
-在 Pod spec 中指定 `runtimeClassName` 即可。例如:
+一旦完成集群中 RuntimeClasses 的配置，
+你可以在 Pod spec 中指定 `runtimeClassName` 来使用它。例如:
 
 ```yaml
 apiVersion: v1
@@ -156,22 +166,22 @@ spec:
 This will instruct the kubelet to use the named RuntimeClass to run this pod. If the named
 RuntimeClass does not exist, or the CRI cannot run the corresponding handler, the pod will enter the
 `Failed` terminal [phase](/docs/concepts/workloads/pods/pod-lifecycle/#pod-phase). Look for a
-corresponding [event](/docs/tasks/debug-application-cluster/debug-application-introspection/) for an
+corresponding [event](/docs/tasks/debug/debug-application/debug-running-pod/) for an
 error message.
 -->
 这一设置会告诉 kubelet 使用所指的 RuntimeClass 来运行该 pod。
 如果所指的 RuntimeClass 不存在或者 CRI 无法运行相应的 handler，
-那么 pod 将会进入 `Failed` 终止[阶段](/zh/docs/concepts/workloads/pods/pod-lifecycle/#pod-phase)。
-你可以查看相应的[事件](/zh/docs/tasks/debug-application-cluster/debug-application-introspection/)，
+那么 pod 将会进入 `Failed` 终止[阶段](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#pod-phase)。
+你可以查看相应的[事件](/zh-cn/docs/tasks/debug/debug-application/debug-running-pod/)，
 获取执行过程中的错误信息。
 
 <!--
 If no `runtimeClassName` is specified, the default RuntimeHandler will be used, which is equivalent
 to the behavior when the RuntimeClass feature is disabled.
 -->
-如果未指定 `runtimeClassName` ，则将使用默认的 RuntimeHandler，相当于禁用 RuntimeClass 功能特性。
+如果未指定 `runtimeClassName`，则将使用默认的 RuntimeHandler，相当于禁用 RuntimeClass 功能特性。
 
-<!-- 
+<!--
 ### CRI Configuration
 
 For more details on setting up CRI runtimes, see [CRI installation](/docs/setup/production-environment/container-runtimes/).
@@ -179,48 +189,37 @@ For more details on setting up CRI runtimes, see [CRI installation](/docs/setup/
 ### CRI 配置   {#cri-configuration}
 
 关于如何安装 CRI 运行时，请查阅
-[CRI 安装](/zh/docs/setup/production-environment/container-runtimes/)。
+[CRI 安装](/zh-cn/docs/setup/production-environment/container-runtimes/)。
 
-#### dockershim
-
-<!--
-RuntimeClasses with dockershim must set the runtime handler to `docker`. Dockershim does not support
-custom configurable runtime handlers.
--->
-为 dockershim 设置 RuntimeClass 时，必须将运行时处理程序设置为 `docker`。
-Dockershim 不支持自定义的可配置的运行时处理程序。
-
-#### [containerd](https://containerd.io/)
+#### {{< glossary_tooltip term_id="containerd" >}}
 
 <!--
 Runtime handlers are configured through containerd's configuration at
 `/etc/containerd/config.toml`. Valid handlers are configured under the runtimes section:
 -->
 通过 containerd 的 `/etc/containerd/config.toml` 配置文件来配置运行时 handler。
-handler 需要配置在 runtimes 块中： 
+handler 需要配置在 runtimes 块中：
 
 ```
-[plugins.cri.containerd.runtimes.${HANDLER_NAME}]
+[plugins."io.containerd.grpc.v1.cri".containerd.runtimes.${HANDLER_NAME}]
 ```
 
 <!--
-See containerd's config documentation for more details:
-https://github.com/containerd/cri/blob/master/docs/config.md
+See containerd's [config documentation](https://github.com/containerd/containerd/blob/main/docs/cri/config.md)
+for more details:
 -->
-更详细信息，请查阅 containerd 配置文档：
-https://github.com/containerd/cri/blob/master/docs/config.md
+更详细信息，请查阅 containerd 的[配置指南](https://github.com/containerd/containerd/blob/main/docs/cri/config.md)
 
-#### [cri-o](https://cri-o.io/)
+#### {{< glossary_tooltip term_id="cri-o" >}}
 
 <!--
-Runtime handlers are configured through cri-o's configuration at `/etc/crio/crio.conf`. Valid
-handlers are configured under the [crio.runtime
-table](https://github.com/kubernetes-sigs/cri-o/blob/master/docs/crio.conf.5.md#crioruntime-table):
+Runtime handlers are configured through CRI-O's configuration at `/etc/crio/crio.conf`. Valid
+handlers are configured under the
+[crio.runtime table](https://github.com/cri-o/cri-o/blob/master/docs/crio.conf.5.md#crioruntime-table):
 -->
-通过 cri-o 的 `/etc/crio/crio.conf` 配置文件来配置运行时 handler。
+通过 CRI-O 的 `/etc/crio/crio.conf` 配置文件来配置运行时 handler。
 handler 需要配置在
-[crio.runtime 表](https://github.com/kubernetes-sigs/cri-o/blob/master/docs/crio.conf.5.md#crioruntime-table)
-下面：
+[crio.runtime 表](https://github.com/cri-o/cri-o/blob/master/docs/crio.conf.5.md#crioruntime-table)之下：
 
 ```
 [crio.runtime.runtimes.${HANDLER_NAME}]
@@ -228,13 +227,13 @@ handler 需要配置在
 ```
 
 <!--
-See CRI-O's [config documentation](https://raw.githubusercontent.com/cri-o/cri-o/9f11d1d/docs/crio.conf.5.md) for more details.
+See CRI-O's [config documentation](https://github.com/cri-o/cri-o/blob/master/docs/crio.conf.5.md) for more details.
 -->
-更详细信息，请查阅 CRI-O [配置文档](https://raw.githubusercontent.com/cri-o/cri-o/9f11d1d/docs/crio.conf.5.md)。
+更详细信息，请查阅 CRI-O [配置文档](https://github.com/cri-o/cri-o/blob/master/docs/crio.conf.5.md)。
 
-<!-- 
+<!--
 ## Scheduling
- -->
+-->
 ## 调度  {#scheduling}
 
 {{< feature-state for_k8s_version="v1.16" state="beta" >}}
@@ -247,7 +246,7 @@ If `scheduling` is not set, this RuntimeClass is assumed to be supported by all
 
 通过为 RuntimeClass 指定 `scheduling` 字段，
 你可以通过设置约束，确保运行该 RuntimeClass 的 Pod 被调度到支持该 RuntimeClass 的节点上。
-如果未设置 `scheduling`，则假定所有节点均支持此 RuntimeClass 。
+如果未设置 `scheduling`，则假定所有节点均支持此 RuntimeClass。
 
 <!--
 To ensure pods land on nodes supporting a specific RuntimeClass, that set of nodes should have a
@@ -256,7 +255,7 @@ RuntimeClass's nodeSelector is merged with the pod's nodeSelector in admission,
 the intersection of the set of nodes selected by each. If there is a conflict, the pod will be
 rejected.
 -->
-为了确保 pod 会被调度到支持指定运行时的 node 上，每个 node 需要设置一个通用的 label 用于被 
+为了确保 pod 会被调度到支持指定运行时的 node 上，每个 node 需要设置一个通用的 label 用于被
 `runtimeclass.scheduling.nodeSelector` 挑选。在 admission 阶段，RuntimeClass 的 nodeSelector 将会与
 pod 的 nodeSelector 合并，取二者的交集。如果有冲突，pod 将会被拒绝。
 
@@ -270,37 +269,32 @@ by each.
 与 `nodeSelector` 一样，tolerations 也在 admission 阶段与 pod 的 tolerations 合并，取二者的并集。
 
 <!--
-To learn more about configuring the node selector and tolerations, see [Assigning Pods to
-Nodes](/docs/concepts/configuration/assign-pod-node/).
+To learn more about configuring the node selector and tolerations, see
+[Assigning Pods to Nodes](/docs/concepts/scheduling-eviction/assign-pod-node/).
 -->
-更多有关 node selector 和 tolerations 的配置信息，请查阅 
-[将 Pod 分派到节点](/zh/docs/concepts/scheduling-eviction/assign-pod-node/)。
+更多有关 node selector 和 tolerations 的配置信息，请查阅
+[将 Pod 分派到节点](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/)。
 
-<!-- 
+<!--
 ### Pod Overhead
- -->
+-->
 ### Pod 开销   {#pod-overhead}
 
-{{< feature-state for_k8s_version="v1.18" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 <!--
 You can specify _overhead_ resources that are associated with running a Pod. Declaring overhead allows
-the cluster (including the scheduler) to account for it when making decisions about Pods and resources.  
-To use Pod overhead, you must have the PodOverhead [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
-enabled (it is on by default).
+the cluster (including the scheduler) to account for it when making decisions about Pods and resources.
 -->
 你可以指定与运行 Pod 相关的 _开销_ 资源。声明开销即允许集群（包括调度器）在决策 Pod 和资源时将其考虑在内。
-若要使用 Pod 开销特性，你必须确保 PodOverhead
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
-处于启用状态（默认为启用状态）。
 
 <!--
-Pod overhead is defined in RuntimeClass through the `Overhead` fields. Through the use of these fields,
+Pod overhead is defined in RuntimeClass through the `overhead` field. Through the use of this field,
 you can specify the overhead of running pods utilizing this RuntimeClass and ensure these overheads
 are accounted for in Kubernetes.
 -->
 Pod 开销通过 RuntimeClass 的 `overhead` 字段定义。
-通过使用这些字段，你可以指定使用该 RuntimeClass 运行 Pod 时的开销并确保 Kubernetes 将这些开销计算在内。
+通过使用这个字段，你可以指定使用该 RuntimeClass 运行 Pod 时的开销并确保 Kubernetes 将这些开销计算在内。
 
 ## {{% heading "whatsnext" %}}
 
@@ -308,9 +302,9 @@ Pod 开销通过 RuntimeClass 的 `overhead` 字段定义。
 - [RuntimeClass Design](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/585-runtime-class/README.md)
 - [RuntimeClass Scheduling Design](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/585-runtime-class/README.md#runtimeclass-scheduling)
 - Read about the [Pod Overhead](/docs/concepts/scheduling-eviction/pod-overhead/) concept
-- [PodOverhead Feature Design](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/20190226-pod-overhead.md)
+- [PodOverhead Feature Design](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/688-pod-overhead)
 -->
 - [RuntimeClass 设计](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/585-runtime-class/README.md)
 - [RuntimeClass 调度设计](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/585-runtime-class/README.md#runtimeclass-scheduling)
-- 阅读关于 [Pod 开销](/zh/docs/concepts/scheduling-eviction/pod-overhead/) 的概念
+- 阅读关于 [Pod 开销](/zh-cn/docs/concepts/scheduling-eviction/pod-overhead/) 的概念
 - [PodOverhead 特性设计](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/688-pod-overhead)
diff --git a/content/zh/docs/concepts/extend-kubernetes/_index.md b/content/zh-cn/docs/concepts/extend-kubernetes/_index.md
similarity index 72%
rename from content/zh/docs/concepts/extend-kubernetes/_index.md
rename to content/zh-cn/docs/concepts/extend-kubernetes/_index.md
index 22d9c7dac2..95b0b1cf31 100644
--- a/content/zh/docs/concepts/extend-kubernetes/_index.md
+++ b/content/zh-cn/docs/concepts/extend-kubernetes/_index.md
@@ -70,19 +70,20 @@ Customization approaches can be broadly divided into *configuration*, which only
 *Configuration files* and *flags* are documented in the Reference section of the online documentation, under each binary:
 
 * [kubelet](/docs/reference/command-line-tools-reference/kubelet/)
+* [kube-proxy](/docs/reference/command-line-tools-reference/kube-proxy/)
 * [kube-apiserver](/docs/reference/command-line-tools-reference/kube-apiserver/)
 * [kube-controller-manager](/docs/reference/command-line-tools-reference/kube-controller-manager/)
 * [kube-scheduler](/docs/reference/command-line-tools-reference/kube-scheduler/).
 -->
+## 配置   {#configuration}
 
-## Configuration
+配置文件和参数标志的说明位于在线文档的参考章节，按可执行文件组织：
 
-*配置文件*和*参数标志*的说明位于在线文档的参考章节，按可执行文件组织：
-
-* [kubelet](/zh/docs/reference/command-line-tools-reference/kubelet/)
-* [kube-apiserver](/zh/docs/reference/command-line-tools-reference/kube-apiserver/)
-* [kube-controller-manager](/zh/docs/reference/command-line-tools-reference/kube-controller-manager/)
-* [kube-scheduler](/zh/docs/reference/command-line-tools-reference/kube-scheduler/).
+* [kubelet](/zh-cn/docs/reference/command-line-tools-reference/kubelet/)
+* [kube-proxy](/zh-cn/docs/reference/command-line-tools-reference/kube-proxy/)
+* [kube-apiserver](/zh-cn/docs/reference/command-line-tools-reference/kube-apiserver/)
+* [kube-controller-manager](/zh-cn/docs/reference/command-line-tools-reference/kube-controller-manager/)
+* [kube-scheduler](/zh-cn/docs/reference/command-line-tools-reference/kube-scheduler/).
 
 <!--
 Flags and configuration files may not always be changeable in a hosted Kubernetes service or a distribution with managed installation. When they are changeable, they are usually only changeable by the cluster administrator. Also, they are subject to change in future Kubernetes versions, and setting them may require restarting processes. For those reasons, they should be used only when there are no other options.
@@ -94,19 +95,19 @@ Flags and configuration files may not always be changeable in a hosted Kubernete
 有鉴于此，通常应该在没有其他替代方案时才应考虑更改参数标志和配置文件。
 
 <!--
-*Built-in Policy APIs*, such as [ResourceQuota](/docs/concepts/policy/resource-quotas/), [PodSecurityPolicies](/docs/concepts/policy/pod-security-policy/), [NetworkPolicy](/docs/concepts/services-networking/network-policies/) and Role-based Access Control ([RBAC](/docs/reference/access-authn-authz/rbac/)), are built-in Kubernetes APIs. APIs are typically used with hosted Kubernetes services and with managed Kubernetes installations. They are declarative and use the same conventions as other Kubernetes resources like pods, so new cluster configuration can be repeatable and be managed the same way as applications. And, where they are stable, they enjoy a [defined support policy](/docs/reference/deprecation-policy/) like other Kubernetes APIs. For these reasons, they are preferred over *configuration files* and *flags* where suitable.
+*Built-in Policy APIs*, such as [ResourceQuota](/docs/concepts/policy/resource-quotas/), [PodSecurityPolicies](/docs/concepts/security/pod-security-policy/), [NetworkPolicy](/docs/concepts/services-networking/network-policies/) and Role-based Access Control ([RBAC](/docs/reference/access-authn-authz/rbac/)), are built-in Kubernetes APIs. APIs are typically used with hosted Kubernetes services and with managed Kubernetes installations. They are declarative and use the same conventions as other Kubernetes resources like pods, so new cluster configuration can be repeatable and be managed the same way as applications. And, where they are stable, they enjoy a [defined support policy](/docs/reference/using-api/deprecation-policy/) like other Kubernetes APIs. For these reasons, they are preferred over *configuration files* and *flags* where suitable.
 -->
-*内置的策略 API*，例如[ResourceQuota](/zh/docs/concepts/policy/resource-quotas/)、
-[PodSecurityPolicies](/zh/docs/concepts/policy/pod-security-policy/)、
-[NetworkPolicy](/zh/docs/concepts/services-networking/network-policies/)
-和基于角色的访问控制（[RBAC](/zh/docs/reference/access-authn-authz/rbac/)）等等
-都是内置的 Kubernetes API。
+*内置的策略 API*，例如[ResourceQuota](/zh-cn/docs/concepts/policy/resource-quotas/)、
+[PodSecurityPolicies](/zh-cn/docs/concepts/security/pod-security-policy/)、
+[NetworkPolicy](/zh-cn/docs/concepts/services-networking/network-policies/)
+和基于角色的访问控制（[RBAC](/zh-cn/docs/reference/access-authn-authz/rbac/)）
+等等都是内置的 Kubernetes API。
 API 通常用于托管的 Kubernetes 服务和受控的 Kubernetes 安装环境中。
-这些 API 是声明式的，与 Pod 这类其他 Kubernetes 资源遵从相同的约定，所以
-新的集群配置是可复用的，并且可以当作应用程序来管理。
-此外，对于稳定版本的 API 而言，它们与其他 Kubernetes API 一样，采纳的是
-一种[预定义的支持策略](/zh/docs/reference/using-api/deprecation-policy/)。
-出于以上原因，在条件允许的情况下，基于 API 的方案应该优先于*配置文件*和*参数标志*。
+这些 API 是声明式的，与 Pod 这类其他 Kubernetes 资源遵从相同的约定，
+所以新的集群配置是可复用的，并且可以当作应用程序来管理。
+此外，对于稳定版本的 API 而言，它们与其他 Kubernetes API 一样，
+采纳的是一种[预定义的支持策略](/zh-cn/docs/reference/using-api/deprecation-policy/)。
+出于以上原因，在条件允许的情况下，基于 API 的方案应该优先于配置文件和参数标志。
 
 <!--
 ## Extensions
@@ -114,9 +115,9 @@ API 通常用于托管的 Kubernetes 服务和受控的 Kubernetes 安装环境
 Extensions are software components that extend and deeply integrate with Kubernetes.
 They adapt it to support new types and new kinds of hardware.
 
-Most cluster administrators will use a hosted or distribution
-instance of Kubernetes. As a result, most Kubernetes users will not need to
-install extensions and fewer will need to author new ones.
+Many cluster administrators use a hosted or distribution instance of Kubernetes. 
+These clusters come with extensions pre-installed. As a result, most Kubernetes 
+users will not need to install extensions and even fewer users will need to author new ones.
 -->
 ## 扩展    {#extensions}
 
@@ -124,7 +125,7 @@ install extensions and fewer will need to author new ones.
 它们调整 Kubernetes 的工作方式使之支持新的类型和新的硬件种类。
 
 大多数集群管理员会使用一种托管的 Kubernetes 服务或者其某种发行版本。
-因此，大多数 Kubernetes 用户不需要安装扩展，
+这类集群通常都预先安装了扩展。因此，大多数 Kubernetes 用户不需要安装扩展，
 至于需要自己编写新的扩展的情况就更少了。
 
 <!--
@@ -155,31 +156,30 @@ calls out to a remote service, it is called a *Webhook*. The remote service
 is called a *Webhook Backend*. Like Controllers, Webhooks do add a point of
 failure.
 -->
-编写客户端程序有一种特殊的*Controller（控制器）*模式，能够与 Kubernetes 很好地
-协同工作。控制器通常会读取某个对象的 `.spec`，或许还会执行一些操作，之后更新
-对象的 `.status`。
+编写客户端程序有一种特殊的 Controller（控制器）模式，能够与 Kubernetes
+很好地协同工作。控制器通常会读取某个对象的 `.spec`，或许还会执行一些操作，
+之后更新对象的 `.status`。
 
-控制器是 Kubernetes 的客户端。当 Kubernetes 充当客户端，调用某远程服务时，对应
-的远程组件称作*Webhook*。 远程服务称作*Webhook 后端*。 
+Controller 是 Kubernetes 的客户端。当 Kubernetes 充当客户端，
+调用某远程服务时，对应的远程组件称作 *Webhook*，远程服务称作 Webhook 后端。
 与控制器模式相似，Webhook 也会在整个架构中引入新的失效点（Point of Failure）。
 
 <!--
 In the webhook model, Kubernetes makes a network request to a remote service.
 In the *Binary Plugin* model, Kubernetes executes a binary (program).
-Binary plugins are used by the kubelet (e.g. [Flex Volume
-Plugins](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-storage/flexvolume.md)
-and [Network
-Plugins](/docs/concepts/cluster-administration/network-plugins/))
+Binary plugins are used by the kubelet (e.g.
+[Flex Volume Plugins](/docs/concepts/storage/volumes/#flexvolume)
+and [Network Plugins](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/))
 and by kubectl.
 
 Below is a diagram showing how the extension points interact with the
 Kubernetes control plane.
 -->
 在 Webhook 模式中，Kubernetes 向远程服务发起网络请求。
-在*可执行文件插件（Binary Plugin）*模式中，Kubernetes 执行某个可执行文件（程序）。
-可执行文件插件在 kubelet （例如，
-[FlexVolume 插件](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-storage/flexvolume.md)
-和[网络插件](/zh/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)）
+在 **可执行文件插件（Binary Plugin）** 模式中，Kubernetes
+执行某个可执行文件（程序）。可执行文件插件在 kubelet （例如，
+[FlexVolume 插件](/zh-cn/docs/concepts/storage/volumes/#flexvolume))
+和[网络插件](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)）
 和 kubectl 中使用。
 
 下面的示意图中展示了这些扩展点如何与 Kubernetes 控制面交互。
@@ -217,17 +217,16 @@ This diagram shows the extension points in a Kubernetes system.
 If you are unsure where to start, this flowchart can help. Note that some solutions may involve several types of extensions.
 -->
 1. 用户通常使用 `kubectl` 与 Kubernetes API 交互。
-   [kubectl 插件](/zh/docs/tasks/extend-kubectl/kubectl-plugins/)能够扩展 kubectl 程序的行为。
+   [kubectl 插件](/zh-cn/docs/tasks/extend-kubectl/kubectl-plugins/)能够扩展 kubectl 程序的行为。
    这些插件只会影响到每个用户的本地环境，因此无法用来强制实施整个站点范围的策略。
 
 2. API 服务器处理所有请求。API 服务器中的几种扩展点能够使用户对请求执行身份认证、
    基于其内容阻止请求、编辑请求内容、处理删除操作等等。
-   这些扩展点在 [API 访问扩展](#api-access-extensions)
-   节详述。
+   这些扩展点在 [API 访问扩展](#api-access-extensions)节详述。
 
-3. API 服务器向外提供不同类型的*资源（resources）*。
-   *内置的资源类型*，如 `pods`，是由 Kubernetes 项目所定义的，无法改变。
-   你也可以添加自己定义的或者其他项目所定义的称作*自定义资源（Custom Resources）*
+3. API 服务器向外提供不同类型的资源（resources）。
+   内置的资源类型，如 `pods`，是由 Kubernetes 项目所定义的，无法改变。
+   你也可以添加自己定义的或者其他项目所定义的称作自定义资源（Custom Resources）
    的资源，正如[自定义资源](#user-defined-types)节所描述的那样。
    自定义资源通常与 API 访问扩展点结合使用。
 
@@ -235,12 +234,12 @@ If you are unsure where to start, this flowchart can help. Note that some soluti
    有几种方式来扩展调度行为。这些方法将在
    [调度器扩展](#scheduler-extensions)节中展开。
 
-5. Kubernetes 中的很多行为都是通过称为控制器（Controllers）的程序来实现的，这些程序也都是 API 服务器
-   的客户端。控制器常常与自定义资源结合使用。
+5. Kubernetes 中的很多行为都是通过称为控制器（Controllers）的程序来实现的，
+   这些程序也都是 API 服务器的客户端。控制器常常与自定义资源结合使用。
 
 6. 组件 kubelet 运行在各个节点上，帮助 Pod 展现为虚拟的服务器并在集群网络中拥有自己的 IP。
-   [网络插件](#network-plugins)使得 Kubernetes 能够采用
-   不同实现技术来连接 Pod 网络。
+   [网络插件](#network-plugins)使得 Kubernetes 能够采用不同实现技术来连接
+   Pod 网络。
 
 7. 组件 kubelet 也会为容器增加或解除存储卷的挂载。
    通过[存储插件](#storage-plugins)，可以支持新的存储类型。
@@ -274,7 +273,7 @@ For more about Custom Resources, see the [Custom Resources concept guide](/docs/
 
 不要使用自定义资源来充当应用、用户或者监控数据的数据存储。
 
-关于自定义资源的更多信息，可参见[自定义资源概念指南](/zh/docs/concepts/extend-kubernetes/api-extension/custom-resources/)。
+关于自定义资源的更多信息，可参见[自定义资源概念指南](/zh-cn/docs/concepts/extend-kubernetes/api-extension/custom-resources/)。
 
 <!--
 ### Combining New APIs with Automation
@@ -284,7 +283,7 @@ The combination of a custom resource API and a control loop is called the [Opera
 ### 结合使用新 API 与自动化组件 {#combinding-new-apis-with-automation}
 
 自定义资源 API 与控制回路的组合称作
-[Operator 模式](/zh/docs/concepts/extend-kubernetes/operator/)。
+[Operator 模式](/zh-cn/docs/concepts/extend-kubernetes/operator/)。
 Operator 模式用来管理特定的、通常是有状态的应用。
 这些自定义 API 和控制回路也可用来控制其他资源，如存储或策略。
 
@@ -314,15 +313,14 @@ Kubernetes has several built-in authentication methods that it supports. It can
 
 当请求到达 Kubernetes API 服务器时，首先要经过身份认证，之后是鉴权操作，
 再之后要经过若干类型的准入控制器的检查。
-参见[控制 Kubernetes API 访问](/zh/docs/concepts/security/controlling-access/)
+参见[控制 Kubernetes API 访问](/zh-cn/docs/concepts/security/controlling-access/)
 以了解此流程的细节。
 
 这些步骤中都存在扩展点。
 
-Kubernetes 提供若干内置的身份认证方法。
-它也可以运行在某中身份认证代理的后面，并且可以将来自鉴权头部的令牌发送到
-某个远程服务（Webhook）来执行验证操作。
-所有这些方法都在[身份认证文档](/zh/docs/reference/access-authn-authz/authentication/)
+Kubernetes 提供若干内置的身份认证方法。它也可以运行在某种身份认证代理的后面，
+并且可以将来自鉴权头部的令牌发送到某个远程服务（Webhook）来执行验证操作。
+所有这些方法都在[身份认证文档](/zh-cn/docs/reference/access-authn-authz/authentication/)
 中有详细论述。
 
 <!--
@@ -334,26 +332,26 @@ Kubernetes provides several built-in authentication methods, and an [Authenticat
 -->
 ### 身份认证    {#authentication}
 
-[身份认证](/zh/docs/reference/access-authn-authz/authentication/)负责将所有请求中
+[身份认证](/zh-cn/docs/reference/access-authn-authz/authentication/)负责将所有请求中
 的头部或证书映射到发出该请求的客户端的用户名。
 
 Kubernetes 提供若干种内置的认证方法，以及
-[认证 Webhook](/zh/docs/reference/access-authn-authz/authentication/#webhook-token-authentication)
+[认证 Webhook](/zh-cn/docs/reference/access-authn-authz/authentication/#webhook-token-authentication)
 方法以备内置方法无法满足你的要求。
 
 <!--
 ### Authorization
 
-[Authorization](/docs/reference/access-authn-authz/webhook/) determines whether specific users can read, write, and do other operations on API resources. It works at the level of whole resources - it doesn't discriminate based on arbitrary object fields. If the built-in authorization options don't meet your needs, and [Authorization webhook](/docs/reference/access-authn-authz/webhook/) allows calling out to user-provided code to make an authorization decision.
+[Authorization](/docs/reference/access-authn-authz/authorization/) determines whether specific users can read, write, and do other operations on API resources. It works at the level of whole resources - it doesn't discriminate based on arbitrary object fields. If the built-in authorization options don't meet your needs, and [Authorization webhook](/docs/reference/access-authn-authz/webhook/) allows calling out to user-provided code to make an authorization decision.
 -->
 ### 鉴权    {#authorization}
 
-[鉴权](/zh/docs/reference/access-authn-authz/webhook/)操作负责确定特定的用户
-是否可以读、写 API 资源或对其执行其他操作。
+[鉴权](/zh-cn/docs/reference/access-authn-authz/authorization/)
+操作负责确定特定的用户是否可以读、写 API 资源或对其执行其他操作。
 此操作仅在整个资源集合的层面进行。
 换言之，它不会基于对象的特定字段作出不同的判决。
 如果内置的鉴权选项无法满足你的需要，你可以使用
-[鉴权 Webhook](/zh/docs/reference/access-authn-authz/webhook/)来调用用户提供
+[鉴权 Webhook](/zh-cn/docs/reference/access-authn-authz/webhook/)来调用用户提供
 的代码，执行定制的鉴权操作。
 
 <!--
@@ -367,13 +365,13 @@ After a request is authorized, if it is a write operation, it also goes through
 ### 动态准入控制  {#dynamic-admission-control}
 
 请求的鉴权操作结束之后，如果请求的是写操作，还会经过
-[准入控制](/zh/docs/reference/access-authn-authz/admission-controllers/)处理步骤。
+[准入控制](/zh-cn/docs/reference/access-authn-authz/admission-controllers/)处理步骤。
 除了内置的处理步骤，还存在一些扩展点：
 
-* [Image Policy webhook](/zh/docs/reference/access-authn-authz/admission-controllers/#imagepolicywebhook)
+* [镜像策略 Webhook](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#imagepolicywebhook)
   能够限制容器中可以运行哪些镜像。
 * 为了执行任意的准入控制，可以使用一种通用的
-  [Admission webhook](/zh/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks) 
+  [准入 Webhook](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks) 
   机制。这类 Webhook 可以拒绝对象创建或更新请求。
 
 <!--
@@ -391,8 +389,15 @@ Kubelet call a Binary Plugin to mount the volume.
 
 [FlexVolumes](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/storage/flexvolume-deployment.md
 )
-卷可以让用户挂载无需内建支持的卷类型，kubelet 会调用可执行文件插件
-来挂载对应的存储卷。
+卷可以让用户挂载无需内建支持的卷类型，
+kubelet 会调用可执行文件插件来挂载对应的存储卷。
+
+<!--
+FlexVolume is deprecated since Kubernetes v1.23. The Out-of-tree CSI driver is the recommended way to write volume drivers in Kubernetes. See [Kubernetes Volume Plugin FAQ for Storage Vendors](https://github.com/kubernetes/community/blob/master/sig-storage/volume-plugin-faq.md#kubernetes-volume-plugin-faq-for-storage-vendors) for more information.
+-->
+从 Kubernetes v1.23 开始，FlexVolume 被弃用。
+在 Kubernetes 中编写卷驱动的推荐方式是使用树外（Out-of-tree）CSI 驱动。
+详细信息可参阅 [Kubernetes Volume Plugin FAQ for Storage Vendors](https://github.com/kubernetes/community/blob/master/sig-storage/volume-plugin-faq.md#kubernetes-volume-plugin-faq-for-storage-vendors)。
 
 <!--
 ### Device Plugins
@@ -407,13 +412,13 @@ Different networking fabrics can be supported via node-level [Network Plugins](/
 -->
 ### 设备插件    {#device-plugins}
 
-使用[设备插件](/zh/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)，
+使用[设备插件](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)，
 节点能够发现新的节点资源（除了内置的类似 CPU 和内存这类资源）。
 
 ### 网络插件   {#network-plugins}
 
-通过节点层面的[网络插件](/zh/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)，可以支持
-不同的网络设施。
+通过节点层面的[网络插件](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)，
+可以支持不同的网络设施。
 
 <!--
 ### Scheduler Extensions
@@ -437,7 +442,7 @@ the nodes chosen for a pod.
 调度器是一种特殊的控制器，负责监视 Pod 变化并将 Pod 分派给节点。
 默认的调度器可以被整体替换掉，同时继续使用其他 Kubernetes 组件。
 或者也可以在同一时刻使用
-[多个调度器](/zh/docs/tasks/extend-kubernetes/configure-multiple-schedulers/)。
+[多个调度器](/zh-cn/docs/tasks/extend-kubernetes/configure-multiple-schedulers/)。
 
 这是一项非同小可的任务，几乎绝大多数 Kubernetes
 用户都会发现其实他们不需要修改调度器。
@@ -446,7 +451,6 @@ the nodes chosen for a pod.
 [Webhook](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/scheduling/scheduler_extender.md)，
 允许使用某种 Webhook 后端（调度器扩展）来为 Pod 可选的节点执行过滤和优先排序操作。
 
-
 ## {{% heading "whatsnext" %}}
 
 <!--
@@ -458,12 +462,11 @@ the nodes chosen for a pod.
 * Learn about [kubectl plugins](/docs/tasks/extend-kubectl/kubectl-plugins/)
 * Learn about the [Operator pattern](/docs/concepts/extend-kubernetes/operator/)
 -->
-* 进一步了解[自定义资源](/zh/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
-* 了解[动态准入控制](/zh/docs/reference/access-authn-authz/extensible-admission-controllers/)
+* 进一步了解[自定义资源](/zh-cn/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
+* 了解[动态准入控制](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/)
 * 进一步了解基础设施扩展
-  * [网络插件](/zh/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)
-  * [设备插件](/zh/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)
-* 了解 [kubectl 插件](/zh/docs/tasks/extend-kubectl/kubectl-plugins/)
-* 了解 [Operator 模式](/zh/docs/concepts/extend-kubernetes/operator/)
-
+  * [网络插件](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)
+  * [设备插件](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)
+* 了解 [kubectl 插件](/zh-cn/docs/tasks/extend-kubectl/kubectl-plugins/)
+* 了解 [Operator 模式](/zh-cn/docs/concepts/extend-kubernetes/operator/)
 
diff --git a/content/zh/docs/concepts/extend-kubernetes/api-extension/_index.md b/content/zh-cn/docs/concepts/extend-kubernetes/api-extension/_index.md
similarity index 100%
rename from content/zh/docs/concepts/extend-kubernetes/api-extension/_index.md
rename to content/zh-cn/docs/concepts/extend-kubernetes/api-extension/_index.md
diff --git a/content/zh/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation.md b/content/zh-cn/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation.md
similarity index 60%
rename from content/zh/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation.md
rename to content/zh-cn/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation.md
index 738ba23e06..08659e89a4 100644
--- a/content/zh/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation.md
+++ b/content/zh-cn/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation.md
@@ -1,11 +1,11 @@
 ---
-title: 通过聚合层扩展 Kubernetes API
+title: Kubernetes API 聚合层
 content_type: concept
 weight: 20
 ---
 
 <!--
-title: Extending the Kubernetes API with the aggregation layer
+title: Kubernetes API Aggregation Layer
 reviewers:
 - lavalamp
 - cheftako
@@ -18,46 +18,44 @@ weight: 20
 
 <!--
 The aggregation layer allows Kubernetes to be extended with additional APIs, beyond what is offered by the core Kubernetes APIs.
+The additional APIs can either be ready-made solutions such as a [metrics server](https://github.com/kubernetes-sigs/metrics-server), or APIs that you develop yourself.
 -->
-使用聚合层（Aggregation Layer），用户可以通过额外的 API 扩展 Kubernetes，
+使用聚合层（Aggregation Layer），用户可以通过附加的 API 扩展 Kubernetes，
 而不局限于 Kubernetes 核心 API 提供的功能。
+这里的附加 API 可以是现成的解决方案，比如
+[metrics server](https://github.com/kubernetes-sigs/metrics-server)，
+或者你自己开发的 API。
 
 <!--
-The additional APIs can either be ready-made solutions such as [service-catalog](/docs/concepts/extend-kubernetes/service-catalog/), or APIs that you develop yourself.
-
 The aggregation layer is different from [Custom Resources](/docs/concepts/extend-kubernetes/api-extension/custom-resources/), which are a way to make the {{< glossary_tooltip term_id="kube-apiserver" text="kube-apiserver" >}} recognise new kinds of object.
 -->
-这里的附加 API 可以是[服务目录](/zh/docs/concepts/extend-kubernetes/service-catalog/)
-这类已经成熟的解决方案，也可以是你自己开发的 API。
-
 聚合层不同于
-[定制资源（Custom Resources）](/zh/docs/concepts/extend-kubernetes/api-extension/custom-resources/)。
+[定制资源（Custom Resources）](/zh-cn/docs/concepts/extend-kubernetes/api-extension/custom-resources/)。
 后者的目的是让 {{< glossary_tooltip term_id="kube-apiserver" text="kube-apiserver" >}}
-能够认识新的对象类别（Kind）。
+能够识别新的对象类别（Kind）。
 
 <!-- body -->
 
 <!--
 ## Aggregation layer
 
-The aggregation layer runs in-process with the kube-apiserver. Until an extension resource is registered, the aggregation layer will do nothing. To register an API, users must add an APIService object, which "claims" the URL path in the Kubernetes API. At that point, the aggregation layer will proxy anything sent to that API path (e.g. /apis/myextension.mycompany.io/v1/…) to the registered APIService.
+The aggregation layer runs in-process with the kube-apiserver. Until an extension resource is registered, the aggregation layer will do nothing. To register an API, you add an _APIService_ object, which "claims" the URL path in the Kubernetes API. At that point, the aggregation layer will proxy anything sent to that API path (e.g. `/apis/myextension.mycompany.io/v1/…`) to the registered APIService.
 -->
 ## 聚合层  {#aggregation-layer}
 
 聚合层在 kube-apiserver 进程内运行。在扩展资源注册之前，聚合层不做任何事情。
-要注册 API，用户必须添加一个 APIService 对象，用它来“申领” Kubernetes API 中的 URL 路径。
-自此以后，聚合层将会把发给该 API 路径的所有内容（例如 `/apis/myextension.mycompany.io/v1/…`）
+要注册 API，你可以添加一个 **APIService** 对象，用它来 “申领” Kubernetes API 中的 URL 路径。
+自此以后，聚合层将把发给该 API 路径的所有内容（例如 `/apis/myextension.mycompany.io/v1/…`）
 转发到已注册的 APIService。
 
 <!--
 The most common way to implement the APIService is to run an *extension API server* in Pod(s) that run in your cluster. If you're using the extension API server to manage resources in your cluster, the extension API server (also written as "extension-apiserver") is typically paired with one or more {{< glossary_tooltip text="controllers" term_id="controller" >}}. The apiserver-builder library provides a skeleton for both extension API servers and the associated controller(s).
 -->
-APIService 的最常见实现方式是在集群中某 Pod 内运行 *扩展 API 服务器*。
+APIService 的最常见实现方式是在集群中某 Pod 内运行 **扩展 API 服务器**。
 如果你在使用扩展 API 服务器来管理集群中的资源，该扩展 API 服务器（也被写成“extension-apiserver”）
 一般需要和一个或多个{{< glossary_tooltip text="控制器" term_id="controller" >}}一起使用。
 apiserver-builder 库同时提供构造扩展 API 服务器和控制器框架代码。
 
-
 <!--
 ### Response latency
 
@@ -66,7 +64,7 @@ Discovery requests are required to round-trip from the kube-apiserver in five se
 
 If your extension API server cannot achieve that latency requirement, consider making changes that let you meet it.
 -->
-### 反应延迟  {#response-latency}
+### 响应延迟  {#response-latency}
 
 扩展 API 服务器与 kube-apiserver 之间需要存在低延迟的网络连接。
 发现请求需要在五秒钟或更短的时间内完成到 kube-apiserver 的往返。
@@ -76,16 +74,16 @@ If your extension API server cannot achieve that latency requirement, consider m
 ## {{% heading "whatsnext" %}}
 
 <!--
-* To get the aggregator working in your environment, [configure the aggregation layer](/docs/tasks/access-kubernetes-api/configure-aggregation-layer/).
-* Then, [setup an extension api-server](/docs/tasks/access-kubernetes-api/setup-extension-api-server/) to work with the aggregation layer.
+* To get the aggregator working in your environment, [configure the aggregation layer](/docs/tasks/extend-kubernetes/configure-aggregation-layer/).
+* Then, [setup an extension api-server](/docs/tasks/extend-kubernetes/setup-extension-api-server/) to work with the aggregation layer.
 * Read about [APIService](/docs/reference/kubernetes-api/cluster-resources/api-service-v1/) in the API reference
 
 Alternatively: learn how to [extend the Kubernetes API using Custom Resource Definitions](/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/).
 -->
-* 阅读[配置聚合层](/zh/docs/tasks/extend-kubernetes/configure-aggregation-layer/) 文档，
+* 阅读[配置聚合层](/zh-cn/docs/tasks/extend-kubernetes/configure-aggregation-layer/) 文档，
   了解如何在自己的环境中启用聚合器。
-* 接下来，了解[安装扩展 API 服务器](/zh/docs/tasks/extend-kubernetes/setup-extension-api-server/)，
+* 接下来，了解[安装扩展 API 服务器](/zh-cn/docs/tasks/extend-kubernetes/setup-extension-api-server/)，
   开始使用聚合层。
-* 从 API 参考资料中研究关于 [APIService](/docs/reference/kubernetes-api/cluster-resources/api-service-v1/) 的内容。
+* 从 API 参考资料中研究关于 [APIService](/zh-cn/docs/reference/kubernetes-api/cluster-resources/api-service-v1/) 的内容。
 
-或者，学习如何[使用自定义资源定义扩展 Kubernetes API](/zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/)。
+或者，学习如何[使用 CustomResourceDefinition 扩展 Kubernetes API](/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/)。
diff --git a/content/zh/docs/concepts/extend-kubernetes/api-extension/custom-resources.md b/content/zh-cn/docs/concepts/extend-kubernetes/api-extension/custom-resources.md
similarity index 89%
rename from content/zh/docs/concepts/extend-kubernetes/api-extension/custom-resources.md
rename to content/zh-cn/docs/concepts/extend-kubernetes/api-extension/custom-resources.md
index 65bf222ff9..f69c13963f 100644
--- a/content/zh/docs/concepts/extend-kubernetes/api-extension/custom-resources.md
+++ b/content/zh-cn/docs/concepts/extend-kubernetes/api-extension/custom-resources.md
@@ -37,9 +37,9 @@ collection of Pod objects.
 ## 定制资源
 
 *资源（Resource）* 是
-[Kubernetes API](/zh/docs/concepts/overview/kubernetes-api/) 中的一个端点，
+[Kubernetes API](/zh-cn/docs/concepts/overview/kubernetes-api/) 中的一个端点，
 其中存储的是某个类别的
-[API 对象](/zh/docs/concepts/overview/working-with-objects/kubernetes-objects/)
+[API 对象](/zh-cn/docs/concepts/overview/working-with-objects/kubernetes-objects/)
 的一个集合。
 例如内置的 *pods* 资源包含一组 Pod 对象。
 
@@ -51,7 +51,7 @@ many core Kubernetes functions are now built using custom resources, making Kube
 Custom resources can appear and disappear in a running cluster through dynamic registration,
 and cluster admins can update custom resources independently of the cluster itself.
 Once a custom resource is installed, users can create and access its objects using
-[kubectl](/docs/reference/kubectl/overview/), just as they do for built-in resources like
+[kubectl](/docs/reference/kubectl/), just as they do for built-in resources like
 *Pods*.
 -->
 *定制资源（Custom Resource）* 是对 Kubernetes API 的扩展，不一定在默认的
@@ -61,7 +61,7 @@ Kubernetes 安装中就可用。定制资源所代表的是对特定 Kubernetes
 
 定制资源可以通过动态注册的方式在运行中的集群内或出现或消失，集群管理员可以独立于集群
 更新定制资源。一旦某定制资源被安装，用户可以使用 
-[kubectl](/zh/docs/reference/kubectl/overview/)
+[kubectl](/docs/reference/kubectl/)
 来创建和访问其中的对象，就像他们为 *pods* 这种内置资源所做的一样。
 
 <!--
@@ -84,7 +84,7 @@ keep the current state of Kubernetes objects in sync with the desired state.
 The controller interprets the structured data as a record of the user's
 desired state, and continually maintains this state.
 -->
-使用[声明式 API](/zh/docs/concepts/overview/kubernetes-api/)，
+使用[声明式 API](/zh-cn/docs/concepts/overview/kubernetes-api/)，
 你可以 _声明_ 或者设定你的资源的期望状态，并尝试让 Kubernetes 对象的当前状态
 同步到其期望状态。控制器负责将结构化的数据解释为用户所期望状态的记录，并
 持续地维护该状态。
@@ -99,7 +99,7 @@ for specific applications into an extension of the Kubernetes API.
 -->
 你可以在一个运行中的集群上部署和更新定制控制器，这类操作与集群的生命周期无关。
 定制控制器可以用于任何类别的资源，不过它们与定制资源结合起来时最为有效。
-[Operator 模式](/zh/docs/concepts/extend-kubernetes/operator/)就是将定制资源
+[Operator 模式](/zh-cn/docs/concepts/extend-kubernetes/operator/)就是将定制资源
 与定制控制器相结合的。你可以使用定制控制器来将特定于某应用的领域知识组织
 起来，以编码的形式构造对 Kubernetes API 的扩展。
 
@@ -113,7 +113,7 @@ or let your API stand alone.
 ## 我是否应该向我的 Kubernetes 集群添加定制资源？
 
 在创建新的 API 时，请考虑是
-[将你的 API 与 Kubernetes 集群 API 聚合起来](/zh/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)
+[将你的 API 与 Kubernetes 集群 API 聚合起来](/zh-cn/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)
 还是让你的 API 独立运行。
 
 <!--
@@ -133,7 +133,7 @@ or let your API stand alone.
 | 你希望可以是使用 `kubectl` 来读写你的新资源类别。 | 不要求 `kubectl` 支持。 |
 | 你希望在 Kubernetes UI （如仪表板）中和其他内置类别一起查看你的新资源类别。 | 不需要 Kubernetes UI 支持。 |
 | 你在开发新的 API。 | 你已经有一个提供 API 服务的程序并且工作良好。 |
-| 你有意愿取接受 Kubernetes 对 REST 资源路径所作的格式限制，例如 API 组和名字空间。（参阅 [API 概述](/zh/docs/concepts/overview/kubernetes-api/)） | 你需要使用一些特殊的 REST 路径以便与已经定义的 REST API 保持兼容。 |
+| 你有意愿取接受 Kubernetes 对 REST 资源路径所作的格式限制，例如 API 组和名字空间。（参阅 [API 概述](/zh-cn/docs/concepts/overview/kubernetes-api/)） | 你需要使用一些特殊的 REST 路径以便与已经定义的 REST API 保持兼容。 |
 | 你的资源可以自然地界定为集群作用域或集群中某个名字空间作用域。 | 集群作用域或名字空间作用域这种二分法很不合适；你需要对资源路径的细节进行控制。 |
 | 你希望复用 [Kubernetes API 支持特性](#common-features)。  | 你不需要这类特性。 |
 
@@ -214,7 +214,7 @@ Use a ConfigMap if any of the following apply:
 Use a [secret](/docs/concepts/configuration/secret/) for sensitive data, which is similar to a configMap but more secure.
 -->
 {{< note >}}
-请使用 [Secret](/zh/docs/concepts/configuration/secret/) 来保存敏感数据。
+请使用 [Secret](/zh-cn/docs/concepts/configuration/secret/) 来保存敏感数据。
 Secret 类似于 configMap，但更为安全。
 {{< /note >}}
 
@@ -251,7 +251,7 @@ Kubernetes provides two ways to add custom resources to your cluster:
 Kubernetes 提供了两种方式供你向集群中添加定制资源：
 
 - CRD 相对简单，创建 CRD 可以不必编程。
-- [API 聚合](/zh/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)
+- [API 聚合](/zh-cn/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)
   需要编程，但支持对 API 行为进行更多的控制，例如数据如何存储以及在不同 API 版本间如何转换等。
 
 <!--
@@ -267,7 +267,7 @@ Kubernetes 提供这两种选项以满足不同用户的需求，这样就既不
 
 聚合 API 指的是一些下位的 API 服务器，运行在主 API 服务器后面；主 API
 服务器以代理的方式工作。这种组织形式称作
-[API 聚合（API Aggregation，AA）](/zh/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/) 。
+[API 聚合（API Aggregation，AA）](/zh-cn/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/) 。
 对用户而言，看起来仅仅是 Kubernetes API 被扩展了。
 
 CRD 允许用户创建新的资源类别同时又不必添加新的 API 服务器。
@@ -288,12 +288,12 @@ The name of a CRD object must be a valid
 -->
 ## CustomResourceDefinitions
 
-[CustomResourceDefinition](/zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/)
+[CustomResourceDefinition](/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/)
 API 资源允许你定义定制资源。
 定义 CRD 对象的操作会使用你所设定的名字和模式定义（Schema）创建一个新的定制资源，
 Kubernetes API 负责为你的定制资源提供存储和访问服务。
 CRD 对象的名称必须是合法的
-[DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
 
 <!--
 This frees you from writing your own API server to handle the custom resource,
@@ -316,20 +316,21 @@ CRD 使得你不必编写自己的 API 服务器来处理定制资源，不过
 Usually, each resource in the Kubernetes API requires code that handles REST requests and manages persistent storage of objects. The main Kubernetes API server handles built-in resources like *pods* and *services*, and can also generically handle custom resources through [CRDs](#customresourcedefinitions).
 
 The [aggregation layer](/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/) allows you to provide specialized
-implementations for your custom resources by writing and deploying your own standalone API server.
-The main API server delegates requests to you for the custom resources that you handle,
+implementations for your custom resources by writing and deploying your own API server.
+The main API server delegates requests to your API server for the custom resources that you handle,
 making them available to all of its clients.
+
 -->
 ## API 服务器聚合  {#api-server-aggregation}
 
-通常，Kubernetes API 中的每个都需要处理 REST 请求和管理对象持久性存储的代码。
+通常，Kubernetes API 中的每个资源都需要处理 REST 请求和管理对象持久性存储的代码。
 Kubernetes API 主服务器能够处理诸如 *pods* 和 *services* 这些内置资源，也可以
 按通用的方式通过 [CRD](#customresourcedefinitions) 来处理定制资源。
 
-[聚合层（Aggregation Layer）](/zh/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)
-使得你可以通过编写和部署你自己的独立的 API 服务器来为定制资源提供特殊的实现。
-主 API 服务器将针对你要处理的定制资源的请求全部委托给你来处理，同时将这些资源
-提供给其所有客户。
+[聚合层（Aggregation Layer）](/zh-cn/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)
+使得你可以通过编写和部署你自己的 API 服务器来为定制资源提供特殊的实现。
+主 API 服务器将针对你要处理的定制资源的请求全部委托给你自己的 API 服务器来处理，同时将这些资源
+提供给其所有客户端。
 
 <!--
 ## Choosing a method for adding custom resources
@@ -401,17 +402,17 @@ Aggregated APIs offer more advanced API features and customization of other feat
 -->
 | 特性    | 描述        | CRDs | 聚合 API       |
 | ------- | ----------- | ---- | -------------- |
-| 合法性检查 | 帮助用户避免错误，允许你独立于客户端版本演化 API。这些特性对于由很多无法同时更新的客户端的场合。| 可以。大多数验证可以使用 [OpenAPI v3.0 合法性检查](/zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#validation) 来设定。其他合法性检查操作可以通过添加[合法性检查 Webhook](/zh/docs/reference/access-authn-authz/admission-controllers/#validatingadmissionwebhook-alpha-in-1-8-beta-in-1-9)来实现。 | 可以，可执行任何合法性检查。|
-| 默认值设置 | 同上 | 可以。可通过 [OpenAPI v3.0 合法性检查](/zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#defaulting)的 `default` 关键词（自 1.17 正式发布）或[更改性（Mutating）Webhook](/zh/docs/reference/access-authn-authz/admission-controllers/#mutatingadmissionwebhook)来实现（不过从 etcd 中读取老的对象时不会执行这些 Webhook）。 | 可以。 |
-| 多版本支持 | 允许通过两个 API 版本同时提供同一对象。可帮助简化类似字段更名这类 API 操作。如果你能控制客户端版本，这一特性将不再重要。 | [可以](/zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definition-versioning)。 | 可以。 |
+| 合法性检查 | 帮助用户避免错误，允许你独立于客户端版本演化 API。这些特性对于由很多无法同时更新的客户端的场合。| 可以。大多数验证可以使用 [OpenAPI v3.0 合法性检查](/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#validation) 来设定。其他合法性检查操作可以通过添加[合法性检查 Webhook](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#validatingadmissionwebhook-alpha-in-1-8-beta-in-1-9)来实现。 | 可以，可执行任何合法性检查。|
+| 默认值设置 | 同上 | 可以。可通过 [OpenAPI v3.0 合法性检查](/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#defaulting)的 `default` 关键词（自 1.17 正式发布）或[更改性（Mutating）Webhook](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#mutatingadmissionwebhook)来实现（不过从 etcd 中读取老的对象时不会执行这些 Webhook）。 | 可以。 |
+| 多版本支持 | 允许通过两个 API 版本同时提供同一对象。可帮助简化类似字段更名这类 API 操作。如果你能控制客户端版本，这一特性将不再重要。 | [可以](/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definition-versioning)。 | 可以。 |
 | 定制存储 | 支持使用具有不同性能模式的存储（例如，要使用时间序列数据库而不是键值存储），或者因安全性原因对存储进行隔离（例如对敏感信息执行加密）。 | 不可以。 | 可以。 |
-| 定制业务逻辑 | 在创建、读取、更新或删除对象时，执行任意的检查或操作。 | 可以。要使用 [Webhook](/zh/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks)。 | 可以。 |
-| 支持 scale 子资源 | 允许 HorizontalPodAutoscaler 和 PodDisruptionBudget 这类子系统与你的新资源交互。 | [可以](/zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#scale-subresource)。 | 可以。 |
-| 支持 status 子资源 | 允许在用户写入 spec 部分而控制器写入 status 部分时执行细粒度的访问控制。允许在对定制资源的数据进行更改时增加对象的代际（Generation）；这需要资源对 spec 和 status 部分有明确划分。| [可以](/zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#status-subresource)。 | 可以。 |
+| 定制业务逻辑 | 在创建、读取、更新或删除对象时，执行任意的检查或操作。 | 可以。要使用 [Webhook](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks)。 | 可以。 |
+| 支持 scale 子资源 | 允许 HorizontalPodAutoscaler 和 PodDisruptionBudget 这类子系统与你的新资源交互。 | [可以](/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#scale-subresource)。 | 可以。 |
+| 支持 status 子资源 | 允许在用户写入 spec 部分而控制器写入 status 部分时执行细粒度的访问控制。允许在对定制资源的数据进行更改时增加对象的代际（Generation）；这需要资源对 spec 和 status 部分有明确划分。| [可以](/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#status-subresource)。 | 可以。 |
 | 其他子资源 | 添加 CRUD 之外的操作，例如 "logs" 或 "exec"。 | 不可以。 | 可以。 |
-| strategic-merge-patch | 新的端点要支持标记了 `Content-Type: application/strategic-merge-patch+json` 的 PATCH 操作。对于更新既可在本地更改也可在服务器端更改的对象而言是有用的。要了解更多信息，可参见[使用 `kubectl patch` 来更新 API 对象](/zh/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/)。 | 不可以。 | 可以。 |
+| strategic-merge-patch | 新的端点要支持标记了 `Content-Type: application/strategic-merge-patch+json` 的 PATCH 操作。对于更新既可在本地更改也可在服务器端更改的对象而言是有用的。要了解更多信息，可参见[使用 `kubectl patch` 来更新 API 对象](/zh-cn/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/)。 | 不可以。 | 可以。 |
 | 支持协议缓冲区 | 新的资源要支持想要使用协议缓冲区（Protocol Buffer）的客户端。 | 不可以。 | 可以。 |
-| OpenAPI Schema | 是否存在新资源类别的 OpenAPI（Swagger）Schema 可供动态从服务器上读取？是否存在机制确保只能设置被允许的字段以避免用户犯字段拼写错误？是否实施了字段类型检查（换言之，不允许在 `string` 字段设置 `int` 值）？ | 可以，依据 [OpenAPI v3.0 合法性检查](/zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#validation) 模式（1.16 中进入正式发布状态）。 | 可以。|
+| OpenAPI Schema | 是否存在新资源类别的 OpenAPI（Swagger）Schema 可供动态从服务器上读取？是否存在机制确保只能设置被允许的字段以避免用户犯字段拼写错误？是否实施了字段类型检查（换言之，不允许在 `string` 字段设置 `int` 值）？ | 可以，依据 [OpenAPI v3.0 合法性检查](/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#validation) 模式（1.16 中进入正式发布状态）。 | 可以。|
 
 <!--
 ### Common Features
@@ -534,7 +535,7 @@ When you add a custom resource, you can access it using:
 -->
 ## 访问定制资源
 
-Kubernetes [客户端库](/zh/docs/reference/using-api/client-libraries/)可用来访问定制资源。
+Kubernetes [客户端库](/zh-cn/docs/reference/using-api/client-libraries/)可用来访问定制资源。
 并非所有客户端库都支持定制资源。_Go_ 和 _Python_ 客户端库是支持的。
 
 当你添加了新的定制资源后，可以用如下方式之一访问它们：
@@ -552,6 +553,6 @@ Kubernetes [客户端库](/zh/docs/reference/using-api/client-libraries/)可用
 * Learn how to [Extend the Kubernetes API with the aggregation layer](/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/).
 * Learn how to [Extend the Kubernetes API with CustomResourceDefinition](/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/).
 -->
-* 了解如何[使用聚合层扩展 Kubernetes API](/zh/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)
-* 了解如何[使用 CustomResourceDefinition 来扩展 Kubernetes API](/zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/)
+* 了解如何[使用聚合层扩展 Kubernetes API](/zh-cn/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)
+* 了解如何[使用 CustomResourceDefinition 来扩展 Kubernetes API](/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/)
 
diff --git a/content/zh/docs/concepts/extend-kubernetes/compute-storage-net/_index.md b/content/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/_index.md
similarity index 100%
rename from content/zh/docs/concepts/extend-kubernetes/compute-storage-net/_index.md
rename to content/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/_index.md
diff --git a/content/zh/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins.md b/content/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins.md
similarity index 77%
rename from content/zh/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins.md
rename to content/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins.md
index a25019b3a0..a0e1d855be 100644
--- a/content/zh/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins.md
+++ b/content/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins.md
@@ -63,11 +63,11 @@ and reports two healthy devices on a node, the node status is updated
 to advertise that the node has 2 "Foo" devices installed and available.
 -->
 设备插件可以通过此 gRPC 服务在 kubelet 进行注册。在注册期间，设备插件需要发送下面几样内容：
-  
+
 * 设备插件的 Unix 套接字。
 * 设备插件的 API 版本。
 * `ResourceName` 是需要公布的。这里 `ResourceName` 需要遵循
-  [扩展资源命名方案](/zh/docs/concepts/configuration/manage-resources-containers/#extended-resources)，
+  [扩展资源命名方案](/zh-cn/docs/concepts/configuration/manage-resources-containers/#extended-resources)，
   类似于 `vendor-domain/resourcetype`。（比如 NVIDIA GPU 就被公布为 `nvidia.com/gpu`。）
 
 成功注册后，设备插件就向 kubelet 发送它所管理的设备列表，然后 kubelet
@@ -78,26 +78,29 @@ to advertise that the node has 2 "Foo" devices installed and available.
 "Foo" 设备并且是可用的。
 
 <!--
-Then, users can request devices in a
-[Container](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core)
-specification as they request other types of resources, with the following limitations:
-
+Then, users can request devices as part of a Pod specification
+(see [`container`](/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container)).
+Requesting extended resources is similar to how you manage requests and limits for
+other resources, with the following differences:
 * Extended resources are only supported as integer resources and cannot be overcommitted.
-* Devices cannot be shared among Containers.
+* Devices cannot be shared between containers.
 -->
-然后用户需要请求其他类型的资源的时候，就可以在
-[Container](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core)
-规范请求这类设备，但是有以下的限制：
+然后，用户可以请求设备作为 Pod 规范的一部分，
+参见[Container](/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container)。
+请求扩展资源类似于管理请求和限制的方式，
+其他资源，有以下区别：
 
 * 扩展资源仅可作为整数资源使用，并且不能被过量使用
 * 设备不能在容器之间共享
 
+### 示例 {#example-pod}
+
 <!--
 Suppose a Kubernetes cluster is running a device plugin that advertises resource `hardware-vendor.example/foo`
 on certain nodes. Here is an example of a pod requesting this resource to run a demo workload:
 -->
 假设 Kubernetes 集群正在运行一个设备插件，该插件在一些节点上公布的资源为 `hardware-vendor.example/foo`。
-下面就是一个 Pod 示例，请求此资源以运行某演示负载：
+下面就是一个 Pod 示例，请求此资源以运行一个工作负载的示例：
 
 ```yaml
 ---
@@ -140,8 +143,12 @@ The general workflow of a device plugin includes the following steps:
   一个 gRPC 服务，该服务实现以下接口：
 
   <!--
+
   ```gRPC
   service DevicePlugin {
+        // GetDevicePluginOptions returns options to be communicated with Device Manager.
+        rpc GetDevicePluginOptions(Empty) returns (DevicePluginOptions) {}
+
         // ListAndWatch returns a stream of List of Devices
         // Whenever a Device state change or a Device disappears, ListAndWatch
         // returns the new list
@@ -168,6 +175,9 @@ The general workflow of a device plugin includes the following steps:
   -->
   ```gRPC
   service DevicePlugin {
+        // GetDevicePluginOptions 返回与设备管理器沟通的选项。
+        rpc GetDevicePluginOptions(Empty) returns (DevicePluginOptions) {}
+
         // ListAndWatch 返回 Device 列表构成的数据流。
         // 当 Device 状态发生变化或者 Device 消失时，ListAndWatch
         // 会返回新的列表。
@@ -331,13 +341,17 @@ service PodResourcesLister {
 }
 ```
 
+### `List` gRPC 端点 {#grpc-endpoint-list}
+
 <!--
 The `List` endpoint provides information on resources of running pods, with details such as the
 id of exclusively allocated CPUs, device id as it was reported by device plugins and id of
-the NUMA node where these devices are allocated.
+the NUMA node where these devices are allocated. Also, for NUMA-based machines, it contains
+the information about memory and hugepages reserved for a container.
 -->
 这一 `List` 端点提供运行中 Pods 的资源信息，包括类似独占式分配的
 CPU ID、设备插件所报告的设备 ID 以及这些设备分配所处的 NUMA 节点 ID。
+此外，对于基于 NUMA 的机器，它还会包含为容器保留的内存和大页的信息。
 
 ```gRPC
 // ListPodResourcesResponse 是 List 函数的响应
@@ -357,6 +371,14 @@ message ContainerResources {
     string name = 1;
     repeated ContainerDevices devices = 2;
     repeated int64 cpu_ids = 3;
+    repeated ContainerMemory memory = 4;
+}
+
+// ContainerMemory 包含分配给容器的内存和大页信息
+message ContainerMemory {
+    string memory_type = 1;
+    uint64 size = 2;
+    TopologyInfo topology = 3;
 }
 
 // Topology 描述资源的硬件拓扑结构
@@ -377,31 +399,92 @@ message ContainerDevices {
 }
 ```
 
+<!--
+{{< note >}}
+cpu_ids in the `ContainerResources` in the `List` endpoint correspond to exclusive CPUs allocated
+to a partilar container. If the goal is to evaluate CPUs that belong to the shared pool, the `List`
+endpoint needs to be used in conjunction with the `GetAllocatableResources` endpoint as explained
+below:
+1. Call `GetAllocatableResources` to get a list of all the allocatable CPUs
+2. Call `GetCpuIds` on all `ContainerResources` in the system
+3. Subtract out all of the CPUs from the `GetCpuIds` calls from the `GetAllocatableResources` call
+{{< /note >}}
+-->
+{{< note >}}
+`List` 端点中的 `ContainerResources` 中的 cpu_ids 对应于分配给某个容器的专属 CPU。
+如果要统计共享池中的 CPU，`List` 端点需要与 `GetAllocatableResources` 端点一起使用，如下所述:
+
+1. 调用 `GetAllocatableResources` 获取所有可用的 CPUs。
+2. 在系统中所有的 `ContainerResources` 上调用 `GetCpuIds`。
+3. 用 `GetAllocatableResources` 获取的 CPU 数减去 `GetCpuIds` 获取的 CPU 数。
+{{< /note >}}
+
+### `GetAllocatableResources` gRPC 端点 {#grpc-endpoint-getallocatableresources}
+
+{{< feature-state state="beta" for_k8s_version="v1.23" >}}
+
 <!--
 GetAllocatableResources provides information on resources initially available on the worker node.
 It provides more information than kubelet exports to APIServer.
 -->
-端点 `GetAllocatableResources` 提供最初在工作节点上可用的资源的信息。
+端点 `GetAllocatableResources` 提供工作节点上原始可用的资源信息。
 此端点所提供的信息比导出给 API 服务器的信息更丰富。
 
+{{< note >}}
+<!--
+`GetAllocatableResources` should only be used to evaluate [allocatable](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)
+resources on a node. If the goal is to evaluate free/unallocated resources it should be used in
+conjunction with the List() endpoint. The result obtained by `GetAllocatableResources` would remain
+the same unless the underlying resources exposed to kubelet change. This happens rarely but when
+it does (for example: hotplug/hotunplug, device health changes), client is expected to call
+`GetAlloctableResources` endpoint.
+However, calling `GetAllocatableResources` endpoint is not sufficient in case of cpu and/or memory
+update and Kubelet needs to be restarted to reflect the correct resource capacity and allocatable.
+-->
+`GetAllocatableResources` 应该仅被用于评估一个节点上的[可分配的](/zh-cn/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)
+资源。如果目标是评估空闲/未分配的资源，此调用应该与 List() 端点一起使用。
+除非暴露给 kubelet 的底层资源发生变化 否则 `GetAllocatableResources` 得到的结果将保持不变。
+这种情况很少发生，但当发生时（例如：热插拔，设备健康状况改变），客户端应该调用 `GetAlloctableResources` 端点。
+然而，调用 `GetAllocatableResources` 端点在 cpu、内存被更新的情况下是不够的，
+Kubelet 需要重新启动以获取正确的资源容量和可分配的资源。
+{{< /note >}}
+
 
 ```gRPC
 // AllocatableResourcesResponses 包含 kubelet 所了解到的所有设备的信息
 message AllocatableResourcesResponse {
     repeated ContainerDevices devices = 1;
     repeated int64 cpu_ids = 2;
+    repeated ContainerMemory memory = 3;
 }
 
 ```
 
+<!--
+Starting from Kubernetes v1.23, the `GetAllocatableResources` is enabled by default.
+You can disable it by turning off the
+`KubeletPodResourcesGetAllocatable` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/).
+
+Preceding Kubernetes v1.23, to enable this feature `kubelet` must be started with the following flag:
+
+`--feature-gates=KubeletPodResourcesGetAllocatable=true`
+-->
+从 Kubernetes v1.23 开始，`GetAllocatableResources` 被默认启用。
+你可以通过关闭 `KubeletPodResourcesGetAllocatable`
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/) 来禁用。
+
+在 Kubernetes v1.23 之前，要启用这一功能，`kubelet` 必须用以下标志启动：
+
+`--feature-gates=KubeletPodResourcesGetAllocatable=true`
+
 <!--
 `ContainerDevices` do expose the topology information declaring to which NUMA cells the device is affine.
 The NUMA cells are identified using a opaque integer ID, which value is consistent to what device
-plugins report [when they register themselves to the kubelet](https://kubernetes.io/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/#device-plugin-integration-with-the-topology-manager).
+plugins report [when they register themselves to the kubelet](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/#device-plugin-integration-with-the-topology-manager).
 -->
 `ContainerDevices` 会向外提供各个设备所隶属的 NUMA 单元这类拓扑信息。
 NUMA 单元通过一个整数 ID 来标识，其取值与设备插件所报告的一致。
-[设备插件注册到 kubelet 时](/zh/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)
+[设备插件注册到 kubelet 时](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)
 会报告这类信息。
 
 <!--
@@ -413,7 +496,7 @@ DaemonSet, `/var/lib/kubelet/pod-resources` must be mounted as a
 {{< glossary_tooltip term_id="volume" >}} in the device monitoring agent's
 [PodSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core).
 
-Support for the "PodResourcesLister service" requires `KubeletPodResources` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) to be enabled.
+Support for the `PodResourcesLister service` requires `KubeletPodResources` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) to be enabled.
 It is enabled by default starting with Kubernetes 1.15 and is v1 since Kubernetes 1.20.
 -->
 gRPC 服务通过 `/var/lib/kubelet/pod-resources/kubelet.sock` 的 UNIX 套接字来提供服务。
@@ -426,14 +509,13 @@ gRPC 服务通过 `/var/lib/kubelet/pod-resources/kubelet.sock` 的 UNIX 套接
 {{< glossary_tooltip text="卷" term_id="volume" >}}的形式被挂载到设备监控代理中。
 
 对“PodResourcesLister 服务”的支持要求启用 `KubeletPodResources`
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)。
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)。
 从 Kubernetes 1.15 开始默认启用，自从 Kubernetes 1.20 开始为 v1。
 
 <!--
-## Device Plugin integration with the Topology Manager
-
-{{< feature-state for_k8s_version="v1.17" state="alpha" >}}
+## Device plugin integration with the Topology Manager
 
+{{< feature-state for_k8s_version="v1.18" state="beta" >}}
 
 The Topology Manager is a Kubelet component that allows resources to be co-ordinated in a Topology aligned manner. In order to do this, the Device Plugin API was extended to include a `TopologyInfo` struct.
 -->
@@ -446,7 +528,7 @@ The Topology Manager is a Kubelet component that allows resources to be co-ordin
 
 ```gRPC
 message TopologyInfo {
-	repeated NUMANode nodes = 1;
+ repeated NUMANode nodes = 1;
 }
 
 message NUMANode {
@@ -483,12 +565,11 @@ pluginapi.Device{ID: "25102017", Health: pluginapi.Healthy, Topology:&pluginapi.
 Here are some examples of device plugin implementations:
 
 * The [AMD GPU device plugin](https://github.com/RadeonOpenCompute/k8s-device-plugin)
-* The [Intel device plugins](https://github.com/intel/intel-device-plugins-for-kubernetes) for Intel GPU, FPGA and QuickAssist devices
+* The [Intel device plugins](https://github.com/intel/intel-device-plugins-for-kubernetes) for Intel GPU, FPGA, QAT, VPU, SGX, DSA, DLB and IAA devices
 * The [KubeVirt device plugins](https://github.com/kubevirt/kubernetes-device-plugins) for hardware-assisted virtualization
-* The [NVIDIA GPU device plugin](https://github.com/NVIDIA/k8s-device-plugin)
-    * Requires [nvidia-docker](https://github.com/NVIDIA/nvidia-docker) 2.0, which allows you to run GPU-enabled Docker containers.
 * The [NVIDIA GPU device plugin for Container-Optimized OS](https://github.com/GoogleCloudPlatform/container-engine-accelerators/tree/master/cmd/nvidia_gpu)
 * The [RDMA device plugin](https://github.com/hustcat/k8s-rdma-device-plugin)
+* The [SocketCAN device plugin](https://github.com/collabora/k8s-socketcan)
 * The [Solarflare device plugin](https://github.com/vikaschoudhary16/sfc-device-plugin)
 * The [SR-IOV Network device plugin](https://github.com/intel/sriov-network-device-plugin)
 * The [Xilinx FPGA device plugins](https://github.com/Xilinx/FPGA_as_a_Service/tree/master/k8s-fpga-device-plugin) for Xilinx FPGA devices
@@ -496,14 +577,13 @@ Here are some examples of device plugin implementations:
 ## 设备插件示例 {#examples}
 
 下面是一些设备插件实现的示例：
- 
+
 * [AMD GPU 设备插件](https://github.com/RadeonOpenCompute/k8s-device-plugin)
-* [Intel 设备插件](https://github.com/intel/intel-device-plugins-for-kubernetes) 支持 Intel GPU、FPGA 和 QuickAssist 设备
+* [Intel 设备插件](https://github.com/intel/intel-device-plugins-for-kubernetes)支持 Intel GPU、FPGA、QAT、VPU、SGX、DSA、DLB 和 IAA 设备
 * [KubeVirt 设备插件](https://github.com/kubevirt/kubernetes-device-plugins) 用于硬件辅助的虚拟化
-* The [NVIDIA GPU 设备插件](https://github.com/NVIDIA/k8s-device-plugin)
-    * 需要 [nvidia-docker](https://github.com/NVIDIA/nvidia-docker) 2.0，以允许运行 Docker 容器的时候启用 GPU。
 * [为 Container-Optimized OS 所提供的 NVIDIA GPU 设备插件](https://github.com/GoogleCloudPlatform/container-engine-accelerators/tree/master/cmd/nvidia_gpu)
 * [RDMA 设备插件](https://github.com/hustcat/k8s-rdma-device-plugin)
+* [SocketCAN 设备插件](https://github.com/collabora/k8s-socketcan)
 * [Solarflare 设备插件](https://github.com/vikaschoudhary16/sfc-device-plugin)
 * [SR-IOV 网络设备插件](https://github.com/intel/sriov-network-device-plugin)
 * [Xilinx FPGA 设备插件](https://github.com/Xilinx/FPGA_as_a_Service/tree/master/k8s-fpga-device-plugin)
@@ -513,12 +593,10 @@ Here are some examples of device plugin implementations:
 <!--
 * Learn about [scheduling GPU resources](/docs/tasks/manage-gpus/scheduling-gpus/) using device plugins
 * Learn about [advertising extended resources](/docs/tasks/administer-cluster/extended-resource-node/) on a node
-* Read about using [hardware acceleration for TLS ingress](https://kubernetes.io/blog/2019/04/24/hardware-accelerated-ssl/tls-termination-in-ingress-controllers-using-kubernetes-device-plugins-and-runtimeclass/) with Kubernetes
-* Learn about the [Topology Manager] (/docs/tasks/adminster-cluster/topology-manager/)
+* Learn about the [Topology Manager](/docs/tasks/administer-cluster/topology-manager/)
+* Read about using [hardware acceleration for TLS ingress](/blog/2019/04/24/hardware-accelerated-ssl/tls-termination-in-ingress-controllers-using-kubernetes-device-plugins-and-runtimeclass/) with Kubernetes
 -->
-* 查看[调度 GPU 资源](/zh/docs/tasks/manage-gpus/scheduling-gpus/) 来学习使用设备插件
-* 查看在上如何[公布节点上的扩展资源](/zh/docs/tasks/administer-cluster/extended-resource-node/)
-* 阅读如何在 Kubernetes 中使用 [TLS Ingress 的硬件加速](https://kubernetes.io/blog/2019/04/24/hardware-accelerated-ssl/tls-termination-in-ingress-controllers-using-kubernetes-device-plugins-and-runtimeclass/) 
-* 学习[拓扑管理器](/zh/docs/tasks/administer-cluster/topology-manager/)
-
-
+* 查看[调度 GPU 资源](/zh-cn/docs/tasks/manage-gpus/scheduling-gpus/) 来学习使用设备插件
+* 查看在上如何[公布节点上的扩展资源](/zh-cn/docs/tasks/administer-cluster/extended-resource-node/)
+* 学习[拓扑管理器](/zh-cn/docs/tasks/administer-cluster/topology-manager/)
+* 阅读如何在 Kubernetes 中使用 [TLS Ingress 的硬件加速](/zh-cn/blog/2019/04/24/hardware-accelerated-ssl/tls-termination-in-ingress-controllers-using-kubernetes-device-plugins-and-runtimeclass/)
diff --git a/content/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins.md b/content/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins.md
new file mode 100644
index 0000000000..ccb9b15691
--- /dev/null
+++ b/content/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins.md
@@ -0,0 +1,240 @@
+---
+title: 网络插件
+content_type: concept
+weight: 10
+---
+<!--
+title: Network Plugins
+content_type: concept
+weight: 10
+-->
+
+<!-- overview -->
+
+<!-- 
+Kubernetes {{< skew currentVersion >}} supports [Container Network Interface](https://github.com/containernetworking/cni)
+(CNI) plugins for cluster networking. You must use a CNI plugin that is compatible with your cluster and that suits your needs. Different plugins are available (both open- and closed- source) in the wider Kubernetes ecosystem. 
+-->
+Kubernetes {{< skew currentVersion >}} 支持[容器网络接口](https://github.com/containernetworking/cni) (CNI) 集群网络插件。
+你必须使用和你的集群相兼容并且满足你的需求的 CNI 插件。
+在更广泛的 Kubernetes 生态系统中你可以使用不同的插件（开源和闭源）。
+
+<!--
+A CNI plugin is required to implement the [Kubernetes network model](/docs/concepts/services-networking/#the-kubernetes-network-model).
+-->
+要实现 [Kubernetes 网络模型](/zh-cn/docs/concepts/services-networking/#the-kubernetes-network-model)，你需要一个 CNI 插件。
+
+<!-- 
+You must use a CNI plugin that is compatible with the 
+[v0.4.0](https://github.com/containernetworking/cni/blob/spec-v0.4.0/SPEC.md) or later
+releases of the CNI specification. The Kubernetes project recommends using a plugin that is
+compatible with the [v1.0.0](https://github.com/containernetworking/cni/blob/spec-v1.0.0/SPEC.md)
+CNI specification (plugins can be compatible with multiple spec versions). 
+-->
+你必须使用与 [v0.4.0](https://github.com/containernetworking/cni/blob/spec-v0.4.0/SPEC.md)
+或更高版本的 CNI 规范相符合的 CNI 插件。
+Kubernetes 推荐使用一个兼容 [v1.0.0](https://github.com/containernetworking/cni/blob/spec-v1.0.0/SPEC.md)
+CNI 规范的插件（插件可以兼容多个规范版本）。
+
+<!-- body -->
+
+<!--
+## Installation
+
+A Container Runtime, in the networking context, is a daemon on a node configured to provide CRI Services for kubelet. In particular, the Container Runtime must be configured to load the CNI plugins required to implement the Kubernetes network model.
+-->
+## 安装   {#installation}
+
+在网络语境中，容器运行时（Container Runtime）是在节点上的守护进程，
+被配置用来为 kubelet 提供 CRI 服务。具体而言，容器运行时必须配置为加载所需的
+CNI 插件，从而实现 Kubernetes 网络模型。
+
+{{< note >}}
+<!--
+Prior to Kubernetes 1.24, the CNI plugins could also be managed by the kubelet using the `cni-bin-dir` and `network-plugin` command-line parameters.
+These command-line parameters were removed in Kubernetes 1.24, with management of the CNI no longer in scope for kubelet.
+-->
+在 Kubernetes 1.24 之前，CNI 插件也可以由 kubelet 使用命令行参数 `cni-bin-dir`
+和 `network-plugin` 管理。Kubernetes 1.24 移除了这些命令行参数，
+CNI 的管理不再是 kubelet 的工作。
+
+<!--
+See [Troubleshooting CNI plugin-related errors](/docs/tasks/administer-cluster/migrating-from-dockershim/troubleshooting-cni-plugin-related-errors/)
+if you are facing issues following the removal of dockershim.
+-->
+如果你在移除 dockershim 之后遇到问题，请参阅[排查 CNI 插件相关的错误](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/troubleshooting-cni-plugin-related-errors/)。
+{{< /note >}}
+
+<!--
+For specific information about how a Container Runtime manages the CNI plugins, see the documentation for that Container Runtime, for example:
+-->
+要了解容器运行时如何管理 CNI 插件的具体信息，可参见对应容器运行时的文档，例如：
+
+- [containerd](https://github.com/containerd/containerd/blob/main/script/setup/install-cni)
+- [CRI-O](https://github.com/cri-o/cri-o/blob/main/contrib/cni/README.md)
+
+<!--
+For specific information about how to install and manage a CNI plugin, see the documentation for that plugin or [networking provider](/docs/concepts/cluster-administration/networking/#how-to-implement-the-kubernetes-networking-model).
+-->
+要了解如何安装和管理 CNI 插件的具体信息，可参阅对应的插件或
+[网络驱动（Networking Provider）](/zh-cn/docs/concepts/cluster-administration/networking/#how-to-implement-the-kubernetes-networking-model)
+的文档。
+
+<!--
+## Network Plugin Requirements
+
+For plugin developers and users who regularly build or deploy Kubernetes, the plugin may also need specific configuration to support kube-proxy.
+The iptables proxy depends on iptables, and the plugin may need to ensure that container traffic is made available to iptables.
+For example, if the plugin connects containers to a Linux bridge, the plugin must set the `net/bridge/bridge-nf-call-iptables` sysctl to `1` to ensure that the iptables proxy functions correctly.
+If the plugin does not use a Linux bridge, but uses something like Open vSwitch or some other mechanism instead, it should ensure container traffic is appropriately routed for the proxy.
+-->
+## 网络插件要求   {#network-plugin-requirements}
+
+对于插件开发人员以及时常会构建并部署 Kubernetes 的用户而言，
+插件可能也需要特定的配置来支持 kube-proxy。
+iptables 代理依赖于 iptables，插件可能需要确保 iptables 能够监控容器的网络通信。
+例如，如果插件将容器连接到 Linux 网桥，插件必须将 `net/bridge/bridge-nf-call-iptables`
+sysctl 参数设置为 `1`，以确保 iptables 代理正常工作。
+如果插件不使用 Linux 网桥，而是使用类似于 Open vSwitch 或者其它一些机制，
+它应该确保为代理对容器通信执行正确的路由。
+
+<!--
+By default if no kubelet network plugin is specified, the `noop` plugin is used, which sets `net/bridge/bridge-nf-call-iptables=1` to ensure simple configurations (like Docker with a bridge) work correctly with the iptables proxy.
+-->
+
+默认情况下，如果未指定 kubelet 网络插件，则使用 `noop` 插件，
+该插件设置 `net/bridge/bridge-nf-call-iptables=1`，以确保简单的配置
+（如带网桥的 Docker ）与 iptables 代理正常工作。
+
+<!--
+### Loopback CNI
+
+In addition to the CNI plugin installed on the nodes for implementing the Kubernetes network model, Kubernetes also requires the container runtimes to provide a loopback interface `lo`, which is used for each sandbox (pod sandboxes, vm sandboxes, ...).
+Implementing the loopback interface can be accomplished by re-using the [CNI loopback plugin.](https://github.com/containernetworking/plugins/blob/master/plugins/main/loopback/loopback.go) or by developing your own code to achieve this (see [this example from CRI-O](https://github.com/cri-o/ocicni/blob/release-1.24/pkg/ocicni/util_linux.go#L91)).
+-->
+### 本地回路 CNI   {#loopback-cni}
+
+除了安装到节点上用于实现 Kubernetes 网络模型的 CNI 插件外，Kubernetes
+还需要容器运行时提供一个本地回路接口 `lo`，用于各个沙箱（Pod 沙箱、虚机沙箱……）。
+实现本地回路接口的工作可以通过复用
+[CNI 本地回路插件](https://github.com/containernetworking/plugins/blob/master/plugins/main/loopback/loopback.go)来实现，
+也可以通过开发自己的代码来实现
+（参阅 [CRI-O 中的示例](https://github.com/cri-o/ocicni/blob/release-1.24/pkg/ocicni/util_linux.go#L91)）。
+
+<!--
+### Support hostPort
+
+The CNI networking plugin supports `hostPort`. You can use the official [portmap](https://github.com/containernetworking/plugins/tree/master/plugins/meta/portmap)
+plugin offered by the CNI plugin team or use your own plugin with portMapping functionality.
+
+If you want to enable `hostPort` support, you must specify `portMappings capability` in your `cni-conf-dir`.
+For example:
+-->
+### 支持 hostPort   {#support-hostport}
+
+CNI 网络插件支持 `hostPort`。 你可以使用官方
+[portmap](https://github.com/containernetworking/plugins/tree/master/plugins/meta/portmap)
+插件，它由 CNI 插件团队提供，或者使用你自己的带有 portMapping 功能的插件。
+
+如果你想要启动 `hostPort` 支持，则必须在 `cni-conf-dir` 指定 `portMappings capability`。
+例如：
+
+```json
+{
+  "name": "k8s-pod-network",
+  "cniVersion": "0.4.0",
+  "plugins": [
+    {
+      "type": "calico",
+      "log_level": "info",
+      "datastore_type": "kubernetes",
+      "nodename": "127.0.0.1",
+      "ipam": {
+        "type": "host-local",
+        "subnet": "usePodCidr"
+      },
+      "policy": {
+        "type": "k8s"
+      },
+      "kubernetes": {
+        "kubeconfig": "/etc/cni/net.d/calico-kubeconfig"
+      }
+    },
+    {
+      "type": "portmap",
+      "capabilities": {"portMappings": true}
+    }
+  ]
+}
+```
+
+<!--
+### Support traffic shaping
+
+**Experimental Feature**
+
+The CNI networking plugin also supports pod ingress and egress traffic shaping. You can use the official [bandwidth](https://github.com/containernetworking/plugins/tree/master/plugins/meta/bandwidth)
+plugin offered by the CNI plugin team or use your own plugin with bandwidth control functionality.
+
+If you want to enable traffic shaping support, you must add the `bandwidth` plugin to your CNI configuration file
+(default `/etc/cni/net.d`) and ensure that the binary is included in your CNI bin dir (default `/opt/cni/bin`).
+-->
+### 支持流量整形   {#support-traffic-shaping}
+
+**实验功能**
+
+CNI 网络插件还支持 pod 入口和出口流量整形。
+你可以使用 CNI 插件团队提供的
+[bandwidth](https://github.com/containernetworking/plugins/tree/master/plugins/meta/bandwidth)
+插件，也可以使用你自己的具有带宽控制功能的插件。
+
+如果你想要启用流量整形支持，你必须将 `bandwidth` 插件添加到 CNI 配置文件
+（默认是 `/etc/cni/net.d`）并保证该可执行文件包含在你的 CNI 的 bin
+文件夹内 (默认为 `/opt/cni/bin`)。
+
+```json
+{
+  "name": "k8s-pod-network",
+  "cniVersion": "0.4.0",
+  "plugins": [
+    {
+      "type": "calico",
+      "log_level": "info",
+      "datastore_type": "kubernetes",
+      "nodename": "127.0.0.1",
+      "ipam": {
+        "type": "host-local",
+        "subnet": "usePodCidr"
+      },
+      "policy": {
+        "type": "k8s"
+      },
+      "kubernetes": {
+        "kubeconfig": "/etc/cni/net.d/calico-kubeconfig"
+      }
+    },
+    {
+      "type": "bandwidth",
+      "capabilities": {"bandwidth": true}
+    }
+  ]
+}
+```
+<!--
+Now you can add the `kubernetes.io/ingress-bandwidth` and `kubernetes.io/egress-bandwidth` annotations to your pod.
+For example:
+-->
+现在，你可以将 `kubernetes.io/ingress-bandwidth` 和 `kubernetes.io/egress-bandwidth`
+注解添加到 pod 中。例如：
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  annotations:
+    kubernetes.io/ingress-bandwidth: 1M
+    kubernetes.io/egress-bandwidth: 1M
+...
+```
+
+## {{% heading "whatsnext" %}}
diff --git a/content/zh/docs/concepts/extend-kubernetes/operator.md b/content/zh-cn/docs/concepts/extend-kubernetes/operator.md
similarity index 81%
rename from content/zh/docs/concepts/extend-kubernetes/operator.md
rename to content/zh-cn/docs/concepts/extend-kubernetes/operator.md
index 97326b31cd..2e46d58eb3 100644
--- a/content/zh/docs/concepts/extend-kubernetes/operator.md
+++ b/content/zh-cn/docs/concepts/extend-kubernetes/operator.md
@@ -13,15 +13,15 @@ weight: 30
 <!-- overview -->
 
 <!--
-Operators are software extensions to Kubernetes that make use of [custom
-resources](/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
+Operators are software extensions to Kubernetes that make use of
+[custom resources](/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
 to manage applications and their components. Operators follow
-Kubernetes principles, notably the [control loop](/docs/concepts/architecture/controller/).
+Kubernetes principles, notably the [control loop](/docs/concepts/architecture/controller).
 -->
 Operator 是 Kubernetes 的扩展软件，它利用
-[定制资源](/zh/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
+[定制资源](/zh-cn/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
 管理应用及其组件。
-Operator 遵循 Kubernetes 的理念，特别是在[控制器](/zh/docs/concepts/architecture/controller/)
+Operator 遵循 Kubernetes 的理念，特别是在[控制器](/zh-cn/docs/concepts/architecture/controller)
 方面。
 
 <!-- body -->
@@ -54,9 +54,7 @@ built-in automation from the core of Kubernetes. You can use Kubernetes
 to automate deploying and running workloads, *and* you can automate how
 Kubernetes does that.
 
-Kubernetes' {{< glossary_tooltip text="controllers" term_id="controller" >}}
-concept lets you extend the cluster's behaviour without modifying the code
-of Kubernetes itself.
+Kubernetes' {{< glossary_tooltip text="operator pattern" term_id="operator-pattern" >}} concept lets you extend the cluster's behaviour without modifying the code of Kubernetes itself by linking {{< glossary_tooltip text="controllers" term_id="controller" >}} to one or more custom resources.
 Operators are clients of the Kubernetes API that act as controllers for
 a [Custom Resource](/docs/concepts/extend-kubernetes/api-extension/custom-resources/).
 -->
@@ -65,10 +63,11 @@ a [Custom Resource](/docs/concepts/extend-kubernetes/api-extension/custom-resour
 Kubernetes 为自动化而生。无需任何修改，你即可以从 Kubernetes 核心中获得许多内置的自动化功能。
 你可以使用 Kubernetes 自动化部署和运行工作负载， *甚至* 可以自动化 Kubernetes 自身。
 
-Kubernetes {{< glossary_tooltip text="控制器" term_id="controller" >}}
-使你无需修改 Kubernetes 自身的代码，即可以扩展集群的行为。
+Kubernetes 的 {{< glossary_tooltip text="Operator 模式" term_id="operator-pattern" >}}概念允许你在不修改
+Kubernetes 自身代码的情况下，通过为一个或多个自定义资源关联{{< glossary_tooltip text="控制器" term_id="controller" >}}
+来扩展集群的能力。
 Operator 是 Kubernetes API 的客户端，充当
-[定制资源](/zh/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
+[自定义资源](/zh-cn/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
 的控制器。
 
 <!--
@@ -98,8 +97,7 @@ Some of the things that you can use an operator to automate include:
 * 在没有内部成员选举程序的情况下，为分布式应用选择首领角色
 
 <!--
-What might an Operator look like in more detail? Here's an example in more
-detail:
+What might an Operator look like in more detail? Here's an example:
 
 1. A custom resource named SampleDB, that you can configure into the cluster.
 2. A Deployment that makes sure a Pod is running that contains the
@@ -124,7 +122,7 @@ detail:
    creates Job objects that upgrade it for you.
 -->
 
-想要更详细的了解 Operator？这儿有一个详细的示例：
+想要更详细的了解 Operator？下面是一个示例：
 
 1. 有一个名为 SampleDB 的自定义资源，你可以将其配置到集群中。
 2. 一个包含 Operator 控制器部分的 Deployment，用来确保 Pod 处于运行状态。
@@ -204,7 +202,7 @@ that can act as a [client for the Kubernetes API](/docs/reference/using-api/clie
 
 如果生态系统中没可以实现你目标的 Operator，你可以自己编写代码。
 
-你还可以使用任何支持 [Kubernetes API 客户端](/zh/docs/reference/using-api/client-libraries/)
+你还可以使用任何支持 [Kubernetes API 客户端](/zh-cn/docs/reference/using-api/client-libraries/)
 的语言或运行时来实现 Operator（即控制器）。
 
 <!--
@@ -214,10 +212,14 @@ Operator.
 {{% thirdparty-content %}}
 
 * [Charmed Operator Framework](https://juju.is/)
+* [Java Operator SDK](https://github.com/java-operator-sdk/java-operator-sdk)
+* [Kopf](https://github.com/nolar/kopf) (Kubernetes Operator Pythonic Framework)
+* [kube-rs](https://kube.rs/) (Rust)
 * [kubebuilder](https://book.kubebuilder.io/)
+* [KubeOps](https://buehler.github.io/dotnet-operator-sdk/) (.NET operator SDK)
 * [KUDO](https://kudo.dev/) (Kubernetes Universal Declarative Operator)
-* [Metacontroller](https://metacontroller.app/) along with WebHooks that
-  you implement yourself
+* [Metacontroller](https://metacontroller.github.io/metacontroller/intro.html) along with WebHooks that 
+you implement yourself
 * [Operator Framework](https://operatorframework.io)
 * [shell-operator](https://github.com/flant/shell-operator)
 -->
@@ -226,15 +228,20 @@ Operator.
 {{% thirdparty-content %}}
 
 * [Charmed Operator Framework](https://juju.is/)
+* [Java Operator SDK](https://github.com/java-operator-sdk/java-operator-sdk)
+* [Kopf](https://github.com/nolar/kopf) (Kubernetes Operator Pythonic Framework)
+* [kube-rs](https://kube.rs/) (Rust)
 * [kubebuilder](https://book.kubebuilder.io/)
+* [KubeOps](https://buehler.github.io/dotnet-operator-sdk/) (.NET operator SDK)
 * [KUDO](https://kudo.dev/) (Kubernetes 通用声明式 Operator)
-* [Metacontroller](https://metacontroller.app/)，可与 Webhooks 结合使用，以实现自己的功能。
+* [Metacontroller](https://metacontroller.github.io/metacontroller/intro.html)，可与 Webhooks 结合使用，以实现自己的功能。
 * [Operator Framework](https://operatorframework.io)
 * [shell-operator](https://github.com/flant/shell-operator)
 
 ## {{% heading "whatsnext" %}}
 
 <!--
+* Read the {{< glossary_tooltip text="CNCF" term_id="cncf" >}} [Operator White Paper](https://github.com/cncf/tag-app-delivery/blob/eece8f7307f2970f46f100f51932db106db46968/operator-wg/whitepaper/Operator-WhitePaper_v1-0.md).
 * Learn more about [Custom Resources](/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
 * Find ready-made operators on [OperatorHub.io](https://operatorhub.io/) to suit your use case
 * [Publish](https://operatorhub.io/) your operator for other people to use
@@ -242,7 +249,8 @@ Operator.
 * Read an [article](https://cloud.google.com/blog/products/containers-kubernetes/best-practices-for-building-kubernetes-operators-and-stateful-apps) from Google Cloud about best practices for building Operators
 -->
 
-* 详细了解 [定制资源](/zh/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
+* 阅读 {{< glossary_tooltip text="CNCF" term_id="cncf" >}} [Operator 白皮书](https://github.com/cncf/tag-app-delivery/blob/eece8f7307f2970f46f100f51932db106db46968/operator-wg/whitepaper/Operator-WhitePaper_v1-0.md)。
+* 详细了解 [定制资源](/zh-cn/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
 * 在 [OperatorHub.io](https://operatorhub.io/) 上找到现成的、适合你的 Operator
 * [发布](https://operatorhub.io/)你的 Operator，让别人也可以使用
 * 阅读 [CoreOS 原始文章](https://web.archive.org/web/20170129131616/https://coreos.com/blog/introducing-operators.html)，它介绍了 Operator 模式（这是一个存档版本的原始文章）。
diff --git a/content/zh-cn/docs/concepts/overview/_index.md b/content/zh-cn/docs/concepts/overview/_index.md
new file mode 100644
index 0000000000..03941b849d
--- /dev/null
+++ b/content/zh-cn/docs/concepts/overview/_index.md
@@ -0,0 +1,14 @@
+---
+title: 概述
+weight: 20
+description: 了解 Kubernetes 及其构件的高层次概要。
+sitemap:
+  priority: 0.9
+---
+<!--
+title: "Overview"
+weight: 20
+description: Get a high-level outline of Kubernetes and the components it is built from.
+sitemap:
+  priority: 0.9
+-->
diff --git a/content/zh/docs/concepts/overview/components.md b/content/zh-cn/docs/concepts/overview/components.md
similarity index 68%
rename from content/zh/docs/concepts/overview/components.md
rename to content/zh-cn/docs/concepts/overview/components.md
index 8e76e91fd7..e7f844aaa6 100644
--- a/content/zh/docs/concepts/overview/components.md
+++ b/content/zh-cn/docs/concepts/overview/components.md
@@ -26,22 +26,19 @@ card:
 When you deploy Kubernetes, you get a cluster.
 {{</* glossary_definition term_id="cluster" length="all" prepend="A Kubernetes cluster consists of" */>}}
 
-This document outlines the various components you need to have
+This document outlines the various components you need to have for
 a complete and working Kubernetes cluster.
 
-Here's the diagram of a Kubernetes cluster with all the components tied together.
+{{< figure src="/images/docs/components-of-kubernetes.svg" alt="Components of Kubernetes" caption="The components of a Kubernetes cluster" class="diagram-large" >}}
 
-![Components of Kubernetes](/images/docs/components-of-kubernetes.svg)
 -->
 <!-- overview -->
-当你部署完 Kubernetes, 即拥有了一个完整的集群。
+当你部署完 Kubernetes，便拥有了一个完整的集群。
 {{< glossary_definition term_id="cluster" length="all" prepend="一个 Kubernetes">}}
 
-本文档概述了交付正常运行的 Kubernetes 集群所需的各种组件。
+本文档概述了一个正常运行的 Kubernetes 集群所需的各种组件。
 
-这张图表展示了包含所有相互关联组件的 Kubernetes 集群。
-
-![Kubernetes 组件](/images/docs/components-of-kubernetes.svg)
+{{< figure src="/images/docs/components-of-kubernetes.svg" alt="Kubernetes 的组件" caption="Kubernetes 集群的组件" class="diagram-large" >}}
 
 <!-- body -->
 
@@ -52,21 +49,22 @@ The control plane's components make global decisions about the cluster (for exam
  -->
 ## 控制平面组件（Control Plane Components）    {#control-plane-components}
 
-控制平面的组件对集群做出全局决策(比如调度)，以及检测和响应集群事件（例如，当不满足部署的
-`replicas` 字段时，启动新的 {{< glossary_tooltip text="pod" term_id="pod">}}）。
+控制平面组件会为集群做出全局决策，比如资源的调度。
+以及检测和响应集群事件，例如当不满足部署的 `replicas` 字段时，
+要启动新的 {{< glossary_tooltip text="pod" term_id="pod">}}）。
 
 <!--
 Control plane components can be run on any machine in the cluster. However,
 for simplicity, set up scripts typically start all control plane components on
 the same machine, and do not run user containers on this machine. See
 [Creating Highly Available clusters with kubeadm](/docs/setup/production-environment/tools/kubeadm/high-availability/)
-for an example control plane setup that runs across multiple VMs.
+for an example control plane setup that runs across multiple machines.
  -->
 控制平面组件可以在集群中的任何节点上运行。
 然而，为了简单起见，设置脚本通常会在同一个计算机上启动所有控制平面组件，
 并且不会在此计算机上运行用户容器。
-请参阅[使用 kubeadm 构建高可用性集群](/zh/docs/setup/production-environment/tools/kubeadm/high-availability/)
-中关于多 VM 控制平面设置的示例。
+请参阅[使用 kubeadm 构建高可用性集群](/zh-cn/docs/setup/production-environment/tools/kubeadm/high-availability/)
+中关于跨多机器控制平面设置的示例。
 
 ### kube-apiserver
 
@@ -93,12 +91,12 @@ Some types of these controllers are:
   * Endpoints controller: Populates the Endpoints object (that is, joins Services & Pods).
   * Service Account & Token controllers: Create default accounts and API access tokens for new namespaces.
 -->
-这些控制器包括:
+这些控制器包括：
 
-* 节点控制器（Node Controller）: 负责在节点出现故障时进行通知和响应
-* 任务控制器（Job controller）: 监测代表一次性任务的 Job 对象，然后创建 Pods 来运行这些任务直至完成
-* 端点控制器（Endpoints Controller）: 填充端点(Endpoints)对象(即加入 Service 与 Pod)
-* 服务帐户和令牌控制器（Service Account & Token Controllers）: 为新的命名空间创建默认帐户和 API 访问令牌
+* 节点控制器（Node Controller）：负责在节点出现故障时进行通知和响应
+* 任务控制器（Job Controller）：监测代表一次性任务的 Job 对象，然后创建 Pods 来运行这些任务直至完成
+* 端点控制器（Endpoints Controller）：填充端点（Endpoints）对象（即加入 Service 与 Pod）
+* 服务帐户和令牌控制器（Service Account & Token Controllers）：为新的命名空间创建默认帐户和 API 访问令牌
 
 <!--
 ### cloud-controller-manager
@@ -121,19 +119,20 @@ The following controllers can have cloud provider dependencies:
 
 {{< glossary_definition term_id="cloud-controller-manager" length="short" >}}
 
-`cloud-controller-manager` 仅运行特定于云平台的控制回路。
-如果你在自己的环境中运行 Kubernetes，或者在本地计算机中运行学习环境，
-所部署的环境中不需要云控制器管理器。
+`cloud-controller-manager` 仅运行特定于云平台的控制器。
+因此如果你在自己的环境中运行 Kubernetes，或者在本地计算机中运行学习环境，
+所部署的集群不需要有云控制器管理器。
 
-与 `kube-controller-manager` 类似，`cloud-controller-manager` 将若干逻辑上独立的
-控制回路组合到同一个可执行文件中，供你以同一进程的方式运行。
+与 `kube-controller-manager` 类似，`cloud-controller-manager`
+将若干逻辑上独立的控制回路组合到同一个可执行文件中，
+供你以同一进程的方式运行。
 你可以对其执行水平扩容（运行不止一个副本）以提升性能或者增强容错能力。
 
 下面的控制器都包含对云平台驱动的依赖：
 
-  * 节点控制器（Node Controller）: 用于在节点终止响应后检查云提供商以确定节点是否已被删除
-  * 路由控制器（Route Controller）: 用于在底层云基础架构中设置路由
-  * 服务控制器（Service Controller）: 用于创建、更新和删除云提供商负载均衡器
+  * 节点控制器（Node Controller）：用于在节点终止响应后检查云提供商以确定节点是否已被删除
+  * 路由控制器（Route Controller）：用于在底层云基础架构中设置路由
+  * 服务控制器（Service Controller）：用于创建、更新和删除云提供商负载均衡器
 
 <!--
 ## Node Components
@@ -142,7 +141,7 @@ Node components run on every node, maintaining running pods and providing the Ku
 -->
 ## Node 组件  {#node-components}
 
-节点组件在每个节点上运行，维护运行的 Pod 并提供 Kubernetes 运行环境。
+节点组件会在每个节点上运行，负责维护运行的 Pod 并提供 Kubernetes 运行环境。
 
 ### kubelet
 
@@ -170,7 +169,7 @@ for addons belong within the `kube-system` namespace.
 ## 插件（Addons）    {#addons}
 
 插件使用 Kubernetes 资源（{{< glossary_tooltip text="DaemonSet" term_id="daemonset" >}}、
-{{< glossary_tooltip text="Deployment" term_id="deployment" >}}等）实现集群功能。
+{{< glossary_tooltip text="Deployment" term_id="deployment" >}} 等）实现集群功能。
 因为这些插件提供集群级别的功能，插件中命名空间域的资源属于 `kube-system` 命名空间。
 
 <!--
@@ -178,7 +177,7 @@ Selected addons are described below; for an extended list of available addons, p
 see [Addons](/docs/concepts/cluster-administration/addons/).
 -->
 下面描述众多插件中的几种。有关可用插件的完整列表，请参见
-[插件（Addons）](/zh/docs/concepts/cluster-administration/addons/)。
+[插件（Addons）](/zh-cn/docs/concepts/cluster-administration/addons/)。
 
 <!--
 ### DNS
@@ -192,7 +191,7 @@ Containers started by Kubernetes automatically include this DNS server in their
 ### DNS   {#dns}
 
 尽管其他插件都并非严格意义上的必需组件，但几乎所有 Kubernetes 集群都应该
-有[集群 DNS](/zh/docs/concepts/services-networking/dns-pod-service/)，
+有[集群 DNS](/zh-cn/docs/concepts/services-networking/dns-pod-service/)，
 因为很多示例都需要 DNS 服务。
 
 集群 DNS 是一个 DNS 服务器，和环境中的其他 DNS 服务器一起工作，它为 Kubernetes 服务提供 DNS 记录。
@@ -204,22 +203,24 @@ Kubernetes 启动的容器自动将此 DNS 服务器包含在其 DNS 搜索列
 
 [Dashboard](/docs/tasks/access-application-cluster/web-ui-dashboard/) is a general purpose, web-based UI for Kubernetes clusters. It allows users to manage and troubleshoot applications running in the cluster, as well as the cluster itself.
 -->
-### Web 界面（仪表盘）   
+### Web 界面（仪表盘）   {#web-ui-dashboard}
 
-[Dashboard](/zh/docs/tasks/access-application-cluster/web-ui-dashboard/)
+[Dashboard](/zh-cn/docs/tasks/access-application-cluster/web-ui-dashboard/)
 是 Kubernetes 集群的通用的、基于 Web 的用户界面。
-它使用户可以管理集群中运行的应用程序以及集群本身并进行故障排除。
+它使用户可以管理集群中运行的应用程序以及集群本身，
+并进行故障排除。
 
 <!--
 ### Container Resource Monitoring
 
-[Container Resource Monitoring](/docs/tasks/debug-application-cluster/resource-usage-monitoring/) records generic time-series metrics
+[Container Resource Monitoring](/docs/tasks/debug/debug-cluster/resource-usage-monitoring/) records generic time-series metrics
 about containers in a central database, and provides a UI for browsing that data.
 -->
-### 容器资源监控
+### 容器资源监控   {#container-resource-monitoring}
 
-[容器资源监控](/zh/docs/tasks/debug-application-cluster/resource-usage-monitoring/)
-将关于容器的一些常见的时间序列度量值保存到一个集中的数据库中，并提供用于浏览这些数据的界面。
+[容器资源监控](/zh-cn/docs/tasks/debug/debug-cluster/resource-usage-monitoring/)
+将关于容器的一些常见的时间序列度量值保存到一个集中的数据库中，
+并提供浏览这些数据的界面。
 
 <!--
 ### Cluster-level Logging
@@ -227,10 +228,11 @@ about containers in a central database, and provides a UI for browsing that data
 A [cluster-level logging](/docs/concepts/cluster-administration/logging/) mechanism is responsible for
 saving container logs to a central log store with search/browsing interface.
 -->
-### 集群层面日志
+### 集群层面日志   {#cluster-level-logging}
 
-[集群层面日志](/zh/docs/concepts/cluster-administration/logging/) 机制负责将容器的日志数据
-保存到一个集中的日志存储中，该存储能够提供搜索和浏览接口。
+[集群层面日志](/zh-cn/docs/concepts/cluster-administration/logging/) 
+机制负责将容器的日志数据保存到一个集中的日志存储中，
+这种集中日志存储提供搜索和浏览接口。
 
 ## {{% heading "whatsnext" %}}
 
@@ -240,8 +242,7 @@ saving container logs to a central log store with search/browsing interface.
 * Learn about [kube-scheduler](/docs/concepts/scheduling-eviction/kube-scheduler/)
 * Read etcd's official [documentation](https://etcd.io/docs/)
 -->
-* 进一步了解[节点](/zh/docs/concepts/architecture/nodes/)
-* 进一步了解[控制器](/zh/docs/concepts/architecture/controller/)
-* 进一步了解 [kube-scheduler](/zh/docs/concepts/scheduling-eviction/kube-scheduler/)
+* 进一步了解[节点](/zh-cn/docs/concepts/architecture/nodes/)
+* 进一步了解[控制器](/zh-cn/docs/concepts/architecture/controller/)
+* 进一步了解 [kube-scheduler](/zh-cn/docs/concepts/scheduling-eviction/kube-scheduler/)
 * 阅读 etcd 官方[文档](https://etcd.io/docs/)
-
diff --git a/content/zh/docs/concepts/overview/kubernetes-api.md b/content/zh-cn/docs/concepts/overview/kubernetes-api.md
similarity index 51%
rename from content/zh/docs/concepts/overview/kubernetes-api.md
rename to content/zh-cn/docs/concepts/overview/kubernetes-api.md
index 17e0c45000..ce6a1575d7 100644
--- a/content/zh/docs/concepts/overview/kubernetes-api.md
+++ b/content/zh-cn/docs/concepts/overview/kubernetes-api.md
@@ -23,7 +23,7 @@ The Kubernetes API lets you query and manipulate the state of API objects in Kub
 (for example: Pods, Namespaces, ConfigMaps, and Events).
 
 Most operations can be performed through the
-[kubectl](/docs/reference/kubectl/overview/) command-line interface or other
+[kubectl](/docs/reference/kubectl/) command-line interface or other
 command-line tools, such as
 [kubeadm](/docs/reference/setup-tools/kubeadm/), which in turn use the
 API. However, you can also access the API directly using REST calls.
@@ -35,8 +35,8 @@ API 服务器负责提供 HTTP API，以供用户、集群中的不同部分和
 Kubernetes API 使你可以查询和操纵 Kubernetes API
 中对象（例如：Pod、Namespace、ConfigMap 和 Event）的状态。
 
-大部分操作都可以通过 [kubectl](/zh/docs/reference/kubectl/overview/) 命令行接口或
-类似 [kubeadm](/zh/docs/reference/setup-tools/kubeadm/) 这类命令行工具来执行，
+大部分操作都可以通过 [kubectl](/zh-cn/docs/reference/kubectl/) 命令行接口或
+类似 [kubeadm](/zh-cn/docs/reference/setup-tools/kubeadm/) 这类命令行工具来执行，
 这些工具在背后也是调用 API。不过，你也可以使用 REST 调用来访问这些 API。
 
 <!--
@@ -44,7 +44,7 @@ Consider using one of the [client libraries](/docs/reference/using-api/client-li
 if you are writing an application using the Kubernetes API.
 -->
 如果你正在编写程序来访问 Kubernetes API，可以考虑使用
-[客户端库](/zh/docs/reference/using-api/client-libraries/)之一。
+[客户端库](/zh-cn/docs/reference/using-api/client-libraries/)之一。
 
 <!-- body -->
 
@@ -53,14 +53,19 @@ if you are writing an application using the Kubernetes API.
 
 Complete API details are documented using [OpenAPI](https://www.openapis.org/).
 
-The Kubernetes API server serves an OpenAPI spec via the `/openapi/v2` endpoint.
-You can request the response format using request headers as follows:
+### OpenAPI V2
+
+The Kubernetes API server serves an aggregated OpenAPI v2 spec via the
+`/openapi/v2` endpoint. You can request the response format using
+request headers as follows:
 -->
 ## OpenAPI 规范     {#api-specification}
 
 完整的 API 细节是用 [OpenAPI](https://www.openapis.org/) 来表述的。
 
-Kubernetes API 服务器通过 `/openapi/v2` 末端提供 OpenAPI 规范。
+### OpenAPI V2
+
+Kubernetes API 服务器通过 `/openapi/v2` 端点提供聚合的 OpenAPI v2 规范。
 你可以按照下表所给的请求头部，指定响应的格式：
 
 <!--
@@ -138,6 +143,98 @@ Kubernetes 为 API 实现了一种基于 Protobuf 的序列化格式，主要用
 [Kubernetes Protobuf 序列化](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/protobuf.md)
 设计提案。每种模式对应的接口描述语言（IDL）位于定义 API 对象的 Go 包中。
 
+### OpenAPI V3
+
+{{< feature-state state="beta"  for_k8s_version="v1.24" >}}
+
+<!--
+Kubernetes {{< param "version" >}} offers beta support for publishing its APIs as OpenAPI v3; this is a
+beta feature that is enabled by default.
+You can disable the beta feature by turning off the
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/) named `OpenAPIV3`
+for the kube-apiserver component.
+-->
+Kubernetes {{< param "version" >}} 提供将其 API 以 OpenAPI v3 形式发布的 beta 支持；
+这一功能特性处于 beta 状态，默认被开启。
+你可以通过为 kube-apiserver 组件关闭 `OpenAPIV3`
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)来禁用此 beta 特性。
+
+<!--
+A discovery endpoint `/openapi/v3` is provided to see a list of all
+group/versions available. This endpoint only returns JSON. These group/versions
+are provided in the following format:
+-->
+发现端点 `/openapi/v3` 被提供用来查看可用的所有组、版本列表。
+此列表仅返回 JSON。这些组、版本以下面的格式提供：
+```json
+{
+    "paths": {
+        ...
+        "api/v1": {
+            "serverRelativeURL": "/openapi/v3/api/v1?hash=CC0E9BFD992D8C59AEC98A1E2336F899E8318D3CF4C68944C3DEC640AF5AB52D864AC50DAA8D145B3494F75FA3CFF939FCBDDA431DAD3CA79738B297795818CF"
+        },
+        "apis/admissionregistration.k8s.io/v1": {
+            "serverRelativeURL": "/openapi/v3/apis/admissionregistration.k8s.io/v1?hash=E19CC93A116982CE5422FC42B590A8AFAD92CDE9AE4D59B5CAAD568F083AD07946E6CB5817531680BCE6E215C16973CD39003B0425F3477CFD854E89A9DB6597"
+        },
+        ...
+}
+```
+
+<!-- 
+The relative URLs are pointing to immutable OpenAPI descriptions, in
+order to improve client-side caching. The proper HTTP caching headers
+are also set by the API server for that purpose (`Expires` to 1 year in
+the future, and `Cache-Control` to `immutable`). When an obsolete URL is
+used, the API server returns a redirect to the newest URL. 
+-->
+为了改进客户端缓存，相对的 URL 会指向不可变的 OpenAPI 描述。
+为了此目的，API 服务器也会设置正确的 HTTP 缓存标头
+（`Expires` 为未来 1 年，和 `Cache-Control` 为 `immutable`）。
+当一个过时的 URL 被使用时，API 服务器会返回一个指向最新 URL 的重定向。
+
+<!-- 
+The Kubernetes API server publishes an OpenAPI v3 spec per Kubernetes
+group version at the `/openapi/v3/apis/<group>/<version>?hash=<hash>`
+endpoint.
+
+Refer to the table below for accepted request headers. 
+-->
+Kubernetes API 服务器会在端点 `/openapi/v3/apis/<group>/<version>?hash=<hash>`
+发布一个 Kubernetes 组版本的 OpenAPI v3 规范。
+
+请参阅下表了解可接受的请求头部。
+
+<table>
+  <caption style="display:none"><!--Valid request header values for OpenAPI v3 queries-->OpenAPI v3 查询的合法请求头部值</caption>
+  <thead>
+     <tr>
+        <th><!--Header-->头部</th>
+        <th style="min-width: 50%;"><!--Possible values-->可选值</th>
+        <th><!--Notes-->说明</th>
+     </tr>
+  </thead>
+  <tbody>
+     <tr>
+        <td><code>Accept-Encoding</code></td>
+        <td><code>gzip</code></td>
+        <td><em><!--not supplying this header is also acceptable-->不提供此头部也是可接受的</em></td>
+     </tr>
+     <tr>
+        <td rowspan="3"><code>Accept</code></td>
+        <td><code>application/com.github.proto-openapi.spec.v3@v1.0+protobuf</code></td>
+        <td><em><!--mainly for intra-cluster use-->主要用于集群内部使用</em></td>
+     </tr>
+     <tr>
+        <td><code>application/json</code></td>
+        <td><em><!--default-->默认</em></td>
+     </tr>
+     <tr>
+        <td><code>*</code></td>
+        <td><em><!--serves-->以</em> <code>application/json</code> 形式返回</td>
+     </tr>
+  </tbody>
+</table>
+
 <!--
 ## API changes
 
@@ -145,13 +242,6 @@ Any system that is successful needs to grow and change as new use cases emerge o
 Therefore, Kubernetes has designed its features to allow the Kubernetes API to continuously change and grow.
 The Kubernetes project aims to _not_ break compatibility with existing clients, and to maintain that
 compatibility for a length of time so that other projects have an opportunity to adapt.
-
-In general, new API resources and new resource fields can be added often and frequently.
-Elimination of resources or fields requires following the
-[API deprecation policy](/docs/reference/using-api/deprecation-policy/).
-
-What constitutes a compatible change, and how to change the API, are detailed in
-[API changes](https://git.k8s.io/community/contributors/devel/sig-architecture/api_changes.md#readme).
 -->
 ## API 变更     {#api-changes}
 
@@ -160,67 +250,44 @@ What constitutes a compatible change, and how to change the API, are detailed in
 Kubernetes 项目的目标是 _不要_ 引发现有客户端的兼容性问题，并在一定的时期内
 维持这种兼容性，以便其他项目有机会作出适应性变更。
 
+<!--
+In general, new API resources and new resource fields can be added often and frequently.
+Elimination of resources or fields requires following the
+[API deprecation policy](/docs/reference/using-api/deprecation-policy/).
+-->
 一般而言，新的 API 资源和新的资源字段可以被频繁地添加进来。
 删除资源或者字段则要遵从
-[API 废弃策略](/zh/docs/reference/using-api/deprecation-policy/)。
-
-关于什么是兼容性的变更、如何变更 API 等详细信息，可参考
-[API 变更](https://git.k8s.io/community/contributors/devel/sig-architecture/api_changes.md#readme)。
+[API 废弃策略](/zh-cn/docs/reference/using-api/deprecation-policy/)。
 
 <!--
-## API groups and versioning
-
-To make it easier to eliminate fields or restructure resource representations,
-Kubernetes supports multiple API versions, each at a different API path, such
-as `/api/v1` or `/apis/rbac.authorization.k8s.io/v1alpha1`.
+Kubernetes makes a strong commitment to maintain compatibility for official Kubernetes APIs
+once they reach general availability (GA), typically at API version `v1`. Additionally,
+Kubernetes keeps compatibility even for _beta_ API versions wherever feasible:
+if you adopt a beta API you can continue to interact with your cluster using that API,
+even after the feature goes stable.
 -->
-## API 组和版本   {#api-groups-and-versioning}
-
-为了简化删除字段或者重构资源表示等工作，Kubernetes 支持多个 API 版本，
-每一个版本都在不同 API 路径下，例如 `/api/v1` 或
-`/apis/rbac.authorization.k8s.io/v1alpha1`。
+Kubernetes 对维护达到正式发布（GA）阶段的官方 API 的兼容性有着很强的承诺，
+通常这一 API 版本为 `v1`。此外，Kubernetes 在可能的时候还会保持 Beta API
+版本的兼容性：如果你采用了 Beta API，你可以继续在集群上使用该 API，
+即使该功能特性已进入稳定期也是如此。
 
+{{< note >}}
 <!--
-Versioning is done at the API level rather than at the resource or field level
-to ensure that the API presents a clear, consistent view of system resources
-and behavior, and to enable controlling access to end-of-life and/or
-experimental APIs.
+Although Kubernetes also aims to maintain compatibility for _alpha_ APIs versions, in some
+circumstances this is not possible. If you use any alpha API versions, check the release notes
+for Kubernetes when upgrading your cluster, in case the API did change.
 -->
-版本化是在 API 级别而不是在资源或字段级别进行的，目的是为了确保 API
-为系统资源和行为提供清晰、一致的视图，并能够控制对已废止的和/或实验性 API 的访问。
-
-<!--
-To make it easier to evolve and to extend its API, Kubernetes implements
-[API groups](/docs/reference/using-api/#api-groups) that can be
-[enabled or disabled](/docs/reference/using-api/#enabling-or-disabling).
--->
-为了便于演化和扩展其 API，Kubernetes 实现了
-可被[启用或禁用](/zh/docs/reference/using-api/#enabling-or-disabling)的
-[API 组](/zh/docs/reference/using-api/#api-groups)。
-
-<!--
-API resources are distinguished by their API group, resource type, namespace
-(for namespaced resources), and name. The API server may serve the same
-underlying data through multiple API version and handle the conversion between
-API versions transparently. All these different versions are actually
-representations of the same resource. For example, suppose there are two
-versions `v1` and `v1beta1` for the same resource. An object created by the
-`v1beta1` version can then be read, updated, and deleted by either the
-`v1beta1` or the `v1` versions.
--->
-API 资源之间靠 API 组、资源类型、名字空间（对于名字空间作用域的资源而言）和
-名字来相互区分。API 服务器可能通过多个 API 版本来向外提供相同的下层数据，
-并透明地完成不同 API 版本之间的转换。所有这些不同的版本实际上都是同一资源
-的（不同）表现形式。例如，假定同一资源有 `v1` 和 `v1beta1` 版本，
-使用 `v1beta1` 创建的对象则可以使用 `v1beta1` 或者 `v1` 版本来读取、更改
-或者删除。
+尽管 Kubernetes 也努力为 Alpha API 版本维护兼容性，在有些场合兼容性是无法做到的。
+如果你使用了任何 Alpha API 版本，需要在升级集群时查看 Kubernetes 发布说明，
+以防 API 的确发生变更。
+{{< /note >}}
 
 <!--
 Refer to [API versions reference](/docs/reference/using-api/#api-versioning)
 for more details on the API version level definitions.
 -->
-关于 API 版本级别的详细定义，请参阅
-[API 版本参考](/zh/docs/reference/using-api/#api-versioning)。
+关于 API 版本分级的定义细节，请参阅
+[API 版本参考](/zh-cn/docs/reference/using-api/#api-versioning)页面。
 
 <!--
 ## API Extension
@@ -237,10 +304,10 @@ The Kubernetes API can be extended in one of two ways:
 1. You can also extend the Kubernetes API by implementing an
    [aggregation layer](/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/).
 -->
-1. 你可以使用[自定义资源](/zh/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
+1. 你可以使用[自定义资源](/zh-cn/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
    来以声明式方式定义 API 服务器如何提供你所选择的资源 API。 
 1. 你也可以选择实现自己的
-   [聚合层](/zh/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)
+   [聚合层](/zh-cn/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)
    来扩展 Kubernetes API。
 
 ## {{% heading "whatsnext" %}}
@@ -252,12 +319,15 @@ The Kubernetes API can be extended in one of two ways:
   how the cluster manages authentication and authorization for API access.
 - Learn about API endpoints, resource types and samples by reading
   [API Reference](/docs/reference/kubernetes-api/).
+- Learn about what constitutes a compatible change, and how to change the API, from
+  [API changes](https://git.k8s.io/community/contributors/devel/sig-architecture/api_changes.md#readme).
 -->
 - 了解如何通过添加你自己的
-  [CustomResourceDefinition](/zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/)
+  [CustomResourceDefinition](/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/)
   来扩展 Kubernetes API。
-- [控制 Kubernetes API 访问](/zh/docs/concepts/security/controlling-access/)
-  页面描述了集群如何针对 API 访问管理身份认证和鉴权。
-- 通过阅读 [API 参考](/zh/docs/reference/kubernetes-api/)
-  了解 API 端点、资源类型以及示例。
+- [控制 Kubernetes API 访问](/zh-cn/docs/concepts/security/controlling-access/)页面描述了集群如何针对
+  API 访问管理身份认证和鉴权。
+- 通过阅读 [API 参考](/zh-cn/docs/reference/kubernetes-api/)了解 API 端点、资源类型以及示例。
+- 阅读 [API 变更（英文）](https://git.k8s.io/community/contributors/devel/sig-architecture/api_changes.md#readme)
+  以了解什么是兼容性的变更以及如何变更 API。
 
diff --git a/content/zh/docs/concepts/overview/what-is-kubernetes.md b/content/zh-cn/docs/concepts/overview/what-is-kubernetes.md
similarity index 70%
rename from content/zh/docs/concepts/overview/what-is-kubernetes.md
rename to content/zh-cn/docs/concepts/overview/what-is-kubernetes.md
index 97110f4f51..25feebb7fc 100644
--- a/content/zh/docs/concepts/overview/what-is-kubernetes.md
+++ b/content/zh-cn/docs/concepts/overview/what-is-kubernetes.md
@@ -2,7 +2,7 @@
 title: Kubernetes 是什么？
 content_type: concept
 description: >
-  Kubernetes 是一个可移植的，可扩展的开源平台，用于管理容器化的工作负载和服务，方便了声明式配置和自动化。它拥有一个庞大且快速增长的生态系统。Kubernetes 的服务，支持和工具广泛可用。
+  Kubernetes 是一个可移植、可扩展的开源平台，用于管理容器化的工作负载和服务，方便进行声明式配置和自动化。Kubernetes 拥有一个庞大且快速增长的生态系统，其服务、支持和工具的使用范围广泛。
 weight: 10
 card:
   name: concepts
@@ -29,26 +29,26 @@ This page is an overview of Kubernetes.
 
 <!-- body -->
 <!--
-Kubernetes is a portable, extensible, open-source platform for managing containerized workloads and services, that facilitates both declarative configuration and automation. It has a large, rapidly growing ecosystem. Kubernetes services, support, and tools are widely available.
+Kubernetes is a portable, extensible, open source platform for managing containerized workloads and services, that facilitates both declarative configuration and automation. It has a large, rapidly growing ecosystem. Kubernetes services, support, and tools are widely available.
 -->
-Kubernetes 是一个可移植的、可扩展的开源平台，用于管理容器化的工作负载和服务，可促进声明式配置和自动化。
-Kubernetes 拥有一个庞大且快速增长的生态系统。Kubernetes 的服务、支持和工具广泛可用。
+Kubernetes 是一个可移植、可扩展的开源平台，用于管理容器化的工作负载和服务，可促进声明式配置和自动化。
+Kubernetes 拥有一个庞大且快速增长的生态，其服务、支持和工具的使用范围相当广泛。
 
 <!--
 The name Kubernetes originates from Greek, meaning helmsman or pilot. K8s as an abbreviation results from counting the eight letters between the "K" and the "s". Google open-sourced the Kubernetes project in 2014. Kubernetes combines [over 15 years of Google's experience](/blog/2015/04/borg-predecessor-to-kubernetes/) running production workloads at scale with best-of-breed ideas and practices from the community.
 -->
 **Kubernetes** 这个名字源于希腊语，意为“舵手”或“飞行员”。k8s 这个缩写是因为 k 和 s 之间有八个字符的关系。
-Google 在 2014 年开源了 Kubernetes 项目。Kubernetes 建立在
-[Google 在大规模运行生产工作负载方面拥有十几年的经验](https://research.google/pubs/pub43438)
-的基础上，结合了社区中最好的想法和实践。
+Google 在 2014 年开源了 Kubernetes 项目。
+Kubernetes 建立在[Google 大规模运行生产工作负载十几年经验](https://research.google/pubs/pub43438)的基础上，
+结合了社区中最优秀的想法和实践。
 
 <!--
 ## Going back in time
 Let's take a look at why Kubernetes is so useful by going back in time.
 -->
-## 时光回溯
+## 时光回溯    {#going-back-in-time}
 
-让我们回顾一下为什么 Kubernetes 如此有用。
+让我们回顾一下为何 Kubernetes 能够裨益四方。
 
 <!--
 ![Deployment evolution](/images/docs/Container_Evolution.svg)
@@ -62,11 +62,13 @@ Early on, organizations ran applications on physical servers. There was no way t
 -->
 **传统部署时代：**
 
-早期，各个组织机构在物理服务器上运行应用程序。无法为物理服务器中的应用程序定义资源边界，这会导致资源分配问题。
-例如，如果在物理服务器上运行多个应用程序，则可能会出现一个应用程序占用大部分资源的情况，
-结果可能导致其他应用程序的性能下降。
-一种解决方案是在不同的物理服务器上运行每个应用程序，但是由于资源利用不足而无法扩展，
-并且维护许多物理服务器的成本很高。
+早期，各机构是在物理服务器上运行应用程序。
+由于无法限制在物理服务器中运行的应用程序资源使用，因此会导致资源分配问题。
+例如，如果在物理服务器上运行多个应用程序，
+则可能会出现一个应用程序占用大部分资源的情况，而导致其他应用程序的性能下降。
+一种解决方案是将每个应用程序都运行在不同的物理服务器上，
+但是当某个应用程式资源利用率不高时，剩余资源无法被分配给其他应用程式，
+而且维护许多物理服务器的成本很高。
 
 <!--
 **Virtualized deployment era:**
@@ -74,19 +76,19 @@ As a solution, virtualization was introduced. It allows you to run multiple Virt
 -->
 **虚拟化部署时代：**
 
-作为解决方案，引入了虚拟化。虚拟化技术允许你在单个物理服务器的 CPU 上运行多个虚拟机（VM）。
-虚拟化允许应用程序在 VM 之间隔离，并提供一定程度的安全，因为一个应用程序的信息
-不能被另一应用程序随意访问。
+因此，虚拟化技术被引入了。虚拟化技术允许你在单个物理服务器的 CPU 上运行多台虚拟机（VM）。
+虚拟化能使应用程序在不同 VM 之间被彼此隔离，且能提供一定程度的安全性，
+因为一个应用程序的信息不能被另一应用程序随意访问。
 
 <!--
 Virtualization allows better utilization of resources in a physical server and allows better scalability because an application can be added or updated easily, reduces hardware costs, and much more.
 
 Each VM is a full machine running all the components, including its own operating system, on top of the virtualized hardware.
 -->
-虚拟化技术能够更好地利用物理服务器上的资源，并且因为可轻松地添加或更新应用程序
-而可以实现更好的可伸缩性，降低硬件成本等等。
+虚拟化技术能够更好地利用物理服务器的资源，并且因为可轻松地添加或更新应用程序，
+而因此可以具有更高的可伸缩性，以及降低硬件成本等等的好处。
 
-每个 VM 是一台完整的计算机，在虚拟化硬件之上运行所有组件，包括其自己的操作系统。
+每个 VM 是一台完整的计算机，在虚拟化硬件之上运行所有组件，包括其自己的操作系统（OS）。
 
 <!--
 **Container deployment era:**
@@ -94,8 +96,8 @@ Containers are similar to VMs, but they have relaxed isolation properties to sha
 -->
 **容器部署时代：**
 
-容器类似于 VM，但是它们具有被放宽的隔离属性，可以在应用程序之间共享操作系统（OS）。
-因此，容器被认为是轻量级的。容器与 VM 类似，具有自己的文件系统、CPU、内存、进程空间等。
+容器类似于 VM，但是更宽松的隔离特性，使容器之间可以共享操作系统（OS）。
+因此，容器比起 VM 被认为是更轻量级的。且与 VM 类似，每个容器都具有自己的文件系统、CPU、内存、进程空间等。
 由于它们与基础架构分离，因此可以跨云和 OS 发行版本进行移植。
 
 <!--
@@ -116,16 +118,15 @@ Containers are becoming popular because they have many benefits. Some of the con
 * Resource utilization: high efficiency and density.
 -->
 * 敏捷应用程序的创建和部署：与使用 VM 镜像相比，提高了容器镜像创建的简便性和效率。
-* 持续开发、集成和部署：通过快速简单的回滚（由于镜像不可变性），支持可靠且频繁的
-  容器镜像构建和部署。
-* 关注开发与运维的分离：在构建/发布时而不是在部署时创建应用程序容器镜像，
+* 持续开发、集成和部署：通过快速简单的回滚（由于镜像不可变性），
+  提供可靠且频繁的容器镜像构建和部署。
+* 关注开发与运维的分离：在构建、发布时创建应用程序容器镜像，而不是在部署时，
   从而将应用程序与基础架构分离。
-* 可观察性：不仅可以显示操作系统级别的信息和指标，还可以显示应用程序的运行状况和其他指标信号。
-* 跨开发、测试和生产的环境一致性：在便携式计算机上与在云中相同地运行。
+* 可观察性：不仅可以显示 OS 级别的信息和指标，还可以显示应用程序的运行状况和其他指标信号。
+* 跨开发、测试和生产的环境一致性：在笔记本计算机上也可以和在云中运行一样的应用程序。
 * 跨云和操作系统发行版本的可移植性：可在 Ubuntu、RHEL、CoreOS、本地、
   Google Kubernetes Engine 和其他任何地方运行。
-* 以应用程序为中心的管理：提高抽象级别，从在虚拟硬件上运行 OS 到使用逻辑资源在
-  OS 上运行应用程序。
+* 以应用程序为中心的管理：提高抽象级别，从在虚拟硬件上运行 OS 到使用逻辑资源在 OS 上运行应用程序。
 * 松散耦合、分布式、弹性、解放的微服务：应用程序被分解成较小的独立部分，
   并且可以动态部署和管理 - 而不是在一台大型单机上整体运行。
 * 资源隔离：可预测的应用程序性能。
@@ -134,18 +135,20 @@ Containers are becoming popular because they have many benefits. Some of the con
 <!--
 ## Why you need Kubernetes and what can it do
 -->
-## 为什么需要 Kubernetes，它能做什么?
+## 为什么需要 Kubernetes，它能做什么？   {#why-you-need-kubernetes-and-what-can-it-do}
 
 <!--
 Containers are a good way to bundle and run your applications. In a production environment, you need to manage the containers that run the applications and ensure that there is no downtime. For example, if a container goes down, another container needs to start. Wouldn't it be easier if this behavior was handled by a system?
 -->
-容器是打包和运行应用程序的好方式。在生产环境中，你需要管理运行应用程序的容器，并确保不会停机。
-例如，如果一个容器发生故障，则需要启动另一个容器。如果系统处理此行为，会不会更容易？
+容器是打包和运行应用程序的好方式。在生产环境中，
+你需要管理运行着应用程序的容器，并确保服务不会下线。
+例如，如果一个容器发生故障，则你需要启动另一个容器。
+如果此行为交由给系统处理，是不是会更容易一些？
 
 <!--
 That's how Kubernetes comes to the rescue! Kubernetes provides you with a framework to run distributed systems resiliently. It takes care of your scaling requirements, failover, deployment patterns, and more. For example, Kubernetes can easily manage a canary deployment for your system.
 -->
-这就是 Kubernetes 来解决这些问题的方法！
+这就是 Kubernetes 要来做的事情！
 Kubernetes 为你提供了一个可弹性运行分布式系统的框架。
 Kubernetes 会满足你的扩展要求、故障转移、部署模式等。
 例如，Kubernetes 可以轻松管理系统的 Canary 部署。
@@ -161,7 +164,8 @@ Kubernetes can expose a container using the DNS name or using their own IP addre
 -->
 * **服务发现和负载均衡**
 
-  Kubernetes 可以使用 DNS 名称或自己的 IP 地址公开容器，如果进入容器的流量很大，
+  Kubernetes 可以使用 DNS 名称或自己的 IP 地址来曝露容器。
+  如果进入容器的流量很大，
   Kubernetes 可以负载均衡并分配网络流量，从而使部署稳定。
 
 <!--
@@ -178,8 +182,9 @@ You can describe the desired state for your deployed containers using Kubernetes
 -->
 * **自动部署和回滚**
 
-  你可以使用 Kubernetes 描述已部署容器的所需状态，它可以以受控的速率将实际状态
-  更改为期望状态。例如，你可以自动化 Kubernetes 来为你的部署创建新容器，
+  你可以使用 Kubernetes 描述已部署容器的所需状态，
+  它可以以受控的速率将实际状态更改为期望状态。
+  例如，你可以自动化 Kubernetes 来为你的部署创建新容器，
   删除现有容器并将它们的所有资源用于新容器。
 
 <!--
@@ -189,7 +194,7 @@ Kubernetes allows you to specify how much CPU and memory (RAM) each container ne
 * **自动完成装箱计算**
 
   Kubernetes 允许你指定每个容器所需 CPU 和内存（RAM）。
-  当容器指定了资源请求时，Kubernetes 可以做出更好的决策来管理容器的资源。
+  当容器指定了资源请求时，Kubernetes 可以做出更好的决策来为容器分配资源。
 
 <!--
 * **Self-healing**
@@ -197,8 +202,8 @@ Kubernetes restarts containers that fail, replaces containers, kills containers
 -->
 * **自我修复**
 
-  Kubernetes 重新启动失败的容器、替换容器、杀死不响应用户定义的
-  运行状况检查的容器，并且在准备好服务之前不将其通告给客户端。
+  Kubernetes 将重新启动失败的容器、替换容器、杀死不响应用户定义的运行状况检查的容器，
+  并且在准备好服务之前不将其通告给客户端。
 
 <!--
 * **Secret and configuration management**
@@ -212,16 +217,17 @@ Kubernetes lets you store and manage sensitive information, such as passwords, O
 <!--
 ## What Kubernetes is not
 -->
-## Kubernetes 不是什么
+## Kubernetes 不是什么   {#what-kubernetes-is-not}
 
 <!--
 Kubernetes is not a traditional, all-inclusive PaaS (Platform as a Service) system. Since Kubernetes operates at the container level rather than at the hardware level, it provides some generally applicable features common to PaaS offerings, such as deployment, scaling, load balancing, logging, and monitoring. However, Kubernetes is not monolithic, and these default solutions are optional and pluggable. Kubernetes provides the building blocks for building developer platforms, but preserves user choice and flexibility where it is important.
 -->
 Kubernetes 不是传统的、包罗万象的 PaaS（平台即服务）系统。
-由于 Kubernetes 在容器级别而不是在硬件级别运行，它提供了 PaaS 产品共有的一些普遍适用的功能，
+由于 Kubernetes 是在容器级别运行，而非在硬件级别，
+它提供了 PaaS 产品共有的一些普遍适用的功能，
 例如部署、扩展、负载均衡、日志记录和监视。
-但是，Kubernetes 不是单体系统，默认解决方案都是可选和可插拔的。
-Kubernetes 提供了构建开发人员平台的基础，但是在重要的地方保留了用户的选择和灵活性。
+但是，Kubernetes 不是单体式（monolithic）系统，那些默认解决方案都是可选、可插拔的。
+Kubernetes 为构建开发人员平台提供了基础，但是在重要的地方保留了用户选择权，能有更高的灵活性。
 
 <!--
 Kubernetes:
@@ -237,29 +243,29 @@ Kubernetes：
   Kubernetes 旨在支持极其多种多样的工作负载，包括无状态、有状态和数据处理工作负载。
   如果应用程序可以在容器中运行，那么它应该可以在 Kubernetes 上很好地运行。
 * 不部署源代码，也不构建你的应用程序。
-  持续集成(CI)、交付和部署（CI/CD）工作流取决于组织的文化和偏好以及技术要求。
-* 不提供应用程序级别的服务作为内置服务，例如中间件（例如，消息中间件）、
-  数据处理框架（例如，Spark）、数据库（例如，mysql）、缓存、集群存储系统
-  （例如，Ceph）。这样的组件可以在 Kubernetes 上运行，并且/或者可以由运行在
-  Kubernetes 上的应用程序通过可移植机制（例如，
-  [开放服务代理](https://openservicebrokerapi.org/)）来访问。
+  持续集成（CI）、交付和部署（CI/CD）工作流取决于组织的文化和偏好以及技术要求。
+* 不提供应用程序级别的服务作为内置服务，例如中间件（例如消息中间件）、
+  数据处理框架（例如 Spark）、数据库（例如 MySQL）、缓存、集群存储系统
+  （例如 Ceph）。这样的组件可以在 Kubernetes 上运行，并且/或者可以由运行在
+  Kubernetes 上的应用程序通过可移植机制
+  （例如[开放服务代理](https://openservicebrokerapi.org/)）来访问。
 <!--
 * Does not dictate logging, monitoring, or alerting solutions. It provides some integrations as proof of concept, and mechanisms to collect and export metrics.
 * Does not provide nor mandate a configuration language/system (for example, jsonnet). It provides a declarative API that may be targeted by arbitrary forms of declarative specifications.
 * Does not provide nor adopt any comprehensive machine configuration, maintenance, management, or self-healing systems.
 * Additionally, Kubernetes is not a mere orchestration system. In fact, it eliminates the need for orchestration. The technical definition of orchestration is execution of a defined workflow: first do A, then B, then C. In contrast, Kubernetes comprises a set of independent, composable control processes that continuously drive the current state towards the provided desired state. It shouldn’t matter how you get from A to C. Centralized control is also not required. This results in a system that is easier to use and more powerful, robust, resilient, and extensible.
 -->
-* 不要求日志记录、监视或警报解决方案。
-  它提供了一些集成作为概念证明，并提供了收集和导出指标的机制。
-* 不提供或不要求配置语言/系统（例如 jsonnet），它提供了声明性 API，
+* 不是日志记录、监视或警报的解决方案。
+  它集成了一些功能作为概念证明，并提供了收集和导出指标的机制。
+* 不提供也不要求配置用的语言、系统（例如 jsonnet），它提供了声明性 API，
   该声明性 API 可以由任意形式的声明性规范所构成。
 * 不提供也不采用任何全面的机器配置、维护、管理或自我修复系统。
 * 此外，Kubernetes 不仅仅是一个编排系统，实际上它消除了编排的需要。
   编排的技术定义是执行已定义的工作流程：首先执行 A，然后执行 B，再执行 C。
-  相比之下，Kubernetes 包含一组独立的、可组合的控制过程，
-  这些过程连续地将当前状态驱动到所提供的所需状态。
-  如何从 A 到 C 的方式无关紧要，也不需要集中控制，这使得系统更易于使用
-  且功能更强大、系统更健壮、更为弹性和可扩展。
+  而 Kubernetes 包含了一组独立可组合的控制过程，
+  可以连续地将当前状态驱动到所提供的预期状态。
+  你不需要在乎如何从 A 移动到 C，也不需要集中控制，这使得系统更易于使用
+  且功能更强大、系统更健壮，更为弹性和可扩展。
 
 ## {{% heading "whatsnext" %}}
 
@@ -267,5 +273,5 @@ Kubernetes：
 *   Take a look at the [Kubernetes Components](/docs/concepts/overview/components/)
 *   Ready to [Get Started](/docs/setup/)?
 -->
-* 查阅 [Kubernetes 组件](/zh/docs/concepts/overview/components/)
-* 开始 [Kubernetes 入门](/zh/docs/setup/)?
+* 查阅[Kubernetes 组件](/zh-cn/docs/concepts/overview/components/)
+* 开始[Kubernetes 的建置](/zh-cn/docs/setup/)吧！
diff --git a/content/zh-cn/docs/concepts/overview/working-with-objects/_index.md b/content/zh-cn/docs/concepts/overview/working-with-objects/_index.md
new file mode 100644
index 0000000000..4067d67097
--- /dev/null
+++ b/content/zh-cn/docs/concepts/overview/working-with-objects/_index.md
@@ -0,0 +1,7 @@
+---
+title: 使用 Kubernetes 对象
+weight: 40
+description: >
+  Kubernetes 对象是 Kubernetes 系统中的持久性实体。Kubernetes 使用这些实体表示你的集群状态。
+  了解 Kubernetes 对象模型以及如何使用这些对象。
+---
diff --git a/content/zh/docs/concepts/overview/working-with-objects/annotations.md b/content/zh-cn/docs/concepts/overview/working-with-objects/annotations.md
similarity index 87%
rename from content/zh/docs/concepts/overview/working-with-objects/annotations.md
rename to content/zh-cn/docs/concepts/overview/working-with-objects/annotations.md
index 5239861124..c8a03e0bc6 100644
--- a/content/zh/docs/concepts/overview/working-with-objects/annotations.md
+++ b/content/zh-cn/docs/concepts/overview/working-with-objects/annotations.md
@@ -37,7 +37,7 @@ Annotations, like labels, are key/value maps:
 标签可以用来选择对象和查找满足某些条件的对象集合。 相反，注解不用于标识和选择对象。
 注解中的元数据，可以很小，也可以很大，可以是结构化的，也可以是非结构化的，能够包含标签不允许的字符。
 
-注解和标签一样，是键/值对:
+注解和标签一样，是键/值对：
 
 ```json
 "metadata": {
@@ -48,10 +48,19 @@ Annotations, like labels, are key/value maps:
 }
 ```
 
+{{<note>}}
+<!--
+The keys and the values in the map must be strings. In other words, you cannot use
+numeric, boolean, list or other types for either the keys or the values.
+-->
+Map 中的键和值必须是字符串。
+换句话说，你不能使用数字、布尔值、列表或其他类型的键或值。
+{{</note>}}
+
 <!--
 Here are some examples of information that could be recorded in annotations:
 -->
-以下是一些例子，用来说明哪些信息可以使用注解来记录:
+以下是一些例子，用来说明哪些信息可以使用注解来记录：
 
 <!--
 * Fields managed by a declarative configuration layer. Attaching these fields
@@ -117,10 +126,10 @@ If the prefix is omitted, the annotation Key is presumed to be private to the us
 
 _注解（Annotations）_ 存储的形式是键/值对。有效的注解键分为两部分：
 可选的前缀和名称，以斜杠（`/`）分隔。 
-名称段是必需项，并且必须在63个字符以内，以字母数字字符（`[a-z0-9A-Z]`）开头和结尾，
+名称段是必需项，并且必须在 63 个字符以内，以字母数字字符（`[a-z0-9A-Z]`）开头和结尾，
 并允许使用破折号（`-`），下划线（`_`），点（`.`）和字母数字。 
-前缀是可选的。如果指定，则前缀必须是DNS子域：一系列由点（`.`）分隔的DNS标签，
-总计不超过253个字符，后跟斜杠（`/`）。
+前缀是可选的。如果指定，则前缀必须是 DNS 子域：一系列由点（`.`）分隔的 DNS 标签，
+总计不超过 253 个字符，后跟斜杠（`/`）。
 如果省略前缀，则假定注解键对用户是私有的。 由系统组件添加的注解
 （例如，`kube-scheduler`，`kube-controller-manager`，`kube-apiserver`，`kubectl`
 或其他第三方组件），必须为终端用户添加注解前缀。
@@ -130,7 +139,7 @@ The `kubernetes.io/` and `k8s.io/` prefixes are reserved for Kubernetes core com
 
 For example, here's the configuration file for a Pod that has the annotation `imageregistry: https://hub.docker.com/` :
 -->
-`kubernetes.io/` 和 `k8s.io/` 前缀是为Kubernetes核心组件保留的。
+`kubernetes.io/` 和 `k8s.io/` 前缀是为 Kubernetes 核心组件保留的。
 
 例如，下面是一个 Pod 的配置文件，其注解中包含 `imageregistry: https://hub.docker.com/`：
 
@@ -154,5 +163,5 @@ spec:
 <!--
 * Learn more about [Labels and Selectors](/docs/concepts/overview/working-with-objects/labels/).
 -->
-* 进一步了解[标签和选择算符](/zh/docs/concepts/overview/working-with-objects/labels/)。
+* 进一步了解[标签和选择算符](/zh-cn/docs/concepts/overview/working-with-objects/labels/)。
 
diff --git a/content/zh/docs/concepts/overview/working-with-objects/common-labels.md b/content/zh-cn/docs/concepts/overview/working-with-objects/common-labels.md
similarity index 94%
rename from content/zh/docs/concepts/overview/working-with-objects/common-labels.md
rename to content/zh-cn/docs/concepts/overview/working-with-objects/common-labels.md
index a64d648ac3..629c3ca7da 100644
--- a/content/zh/docs/concepts/overview/working-with-objects/common-labels.md
+++ b/content/zh-cn/docs/concepts/overview/working-with-objects/common-labels.md
@@ -15,7 +15,8 @@ You can visualize and manage Kubernetes objects with more tools than kubectl and
 the dashboard. A common set of labels allows tools to work interoperably, describing
 objects in a common manner that all tools can understand.
 -->
-除了 kubectl 和 dashboard 之外，您可以使用其他工具来可视化和管理 Kubernetes 对象。一组通用的标签可以让多个工具之间相互操作，用所有工具都能理解的通用方式描述对象。
+除了 kubectl 和 dashboard 之外，你可以使用其他工具来可视化和管理 Kubernetes 对象。
+一组通用的标签可以让多个工具之间相互操作，用所有工具都能理解的通用方式描述对象。
 
 <!--
 In addition to supporting tooling, the recommended labels describe applications
@@ -81,11 +82,12 @@ on every resource object.
 | `app.kubernetes.io/managed-by`      | 用于管理应用程序的工具 | `helm` | 字符串 |
 | `app.kubernetes.io/created-by`      | 创建该资源的控制器或者用户 | `controller-manager` | 字符串 |
 <!--
-To illustrate these labels in action, consider the following StatefulSet object:
+To illustrate these labels in action, consider the following {{< glossary_tooltip text="StatefulSet" term_id="statefulset" >}} object:
 -->
-为说明这些标签的实际使用情况，请看下面的 StatefulSet 对象：
+为说明这些标签的实际使用情况，请看下面的 {{< glossary_tooltip text="StatefulSet" term_id="statefulset" >}} 对象：
 
 ```yaml
+# 这是一段节选
 apiVersion: apps/v1
 kind: StatefulSet
 metadata:
@@ -258,4 +260,4 @@ metadata:
 <!--
 With the MySQL `StatefulSet` and `Service` you'll notice information about both MySQL and Wordpress, the broader application, are included.
 -->
-使用 MySQL `StatefulSet` 和 `Service`，您会注意到有关 MySQL 和 Wordpress 的信息，包括更广泛的应用程序。
+使用 MySQL `StatefulSet` 和 `Service`，你会注意到有关 MySQL 和 Wordpress 的信息，包括更广泛的应用程序。
diff --git a/content/zh/docs/concepts/overview/working-with-objects/field-selectors.md b/content/zh-cn/docs/concepts/overview/working-with-objects/field-selectors.md
similarity index 81%
rename from content/zh/docs/concepts/overview/working-with-objects/field-selectors.md
rename to content/zh-cn/docs/concepts/overview/working-with-objects/field-selectors.md
index 5184fb0b38..35fc5cdda4 100644
--- a/content/zh/docs/concepts/overview/working-with-objects/field-selectors.md
+++ b/content/zh-cn/docs/concepts/overview/working-with-objects/field-selectors.md
@@ -10,8 +10,8 @@ weight: 60
 <!--
 _Field selectors_ let you [select Kubernetes resources](/docs/concepts/overview/working-with-objects/kubernetes-objects) based on the value of one or more resource fields. Here are some example field selector queries:
 -->
-_字段选择器（Field selectors_）允许你根据一个或多个资源字段的值
-[筛选 Kubernetes 资源](/zh/docs/concepts/overview/working-with-objects/kubernetes-objects)。
+“字段选择器（Field selectors）”允许你根据一个或多个资源字段的值
+[筛选 Kubernetes 资源](/zh-cn/docs/concepts/overview/working-with-objects/kubernetes-objects)。
 下面是一些使用字段选择器查询的例子：
 
 * `metadata.name=my-service`
@@ -21,7 +21,7 @@ _字段选择器（Field selectors_）允许你根据一个或多个资源字段
 <!--
 This `kubectl` command selects all Pods for which the value of the [`status.phase`](/docs/concepts/workloads/pods/pod-lifecycle/#pod-phase) field is `Running`:
 -->
-下面这个 `kubectl` 命令将筛选出 [`status.phase`](/zh/docs/concepts/workloads/pods/pod-lifecycle/#pod-phase)
+下面这个 `kubectl` 命令将筛选出 [`status.phase`](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#pod-phase)
 字段值为 `Running` 的所有 Pod：
 
 ```shell
@@ -31,7 +31,7 @@ kubectl get pods --field-selector status.phase=Running
 Field selectors are essentially resource *filters*. By default, no selectors/filters are applied, meaning that all resources of the specified type are selected. This makes the following `kubectl` queries equivalent:
 -->
 {{< note >}}
-字段选择器本质上是资源*过滤器（Filters）*。默认情况下，字段选择器/过滤器是未被应用的，
+字段选择器本质上是资源“过滤器（Filters）”。默认情况下，字段选择器/过滤器是未被应用的，
 这意味着指定类型的所有资源都会被筛选出来。
 这使得以下的两个 `kubectl` 查询是等价的：
 
@@ -67,7 +67,7 @@ You can use the `=`, `==`, and `!=` operators with field selectors (`=` and `==`
 -->
 ## 支持的操作符   {#supported-operators}
 
-你可在字段选择器中使用 `=`、`==`和 `!=` （`=` 和 `==` 的意义是相同的）操作符。
+你可在字段选择器中使用 `=`、`==` 和 `!=` （`=` 和 `==` 的意义是相同的）操作符。
 例如，下面这个 `kubectl` 命令将筛选所有不属于 `default` 命名空间的 Kubernetes 服务：
 
 ```shell
@@ -81,7 +81,7 @@ As with [label](/docs/concepts/overview/working-with-objects/labels) and other s
 -->
 ## 链式选择器   {#chained-selectors}
 
-同[标签](/zh/docs/concepts/overview/working-with-objects/labels/)和其他选择器一样，
+同[标签](/zh-cn/docs/concepts/overview/working-with-objects/labels/)和其他选择器一样，
 字段选择器可以通过使用逗号分隔的列表组成一个选择链。
 下面这个 `kubectl` 命令将筛选 `status.phase` 字段不等于 `Running` 同时
 `spec.restartPolicy` 字段等于 `Always` 的所有 Pod：
@@ -93,7 +93,7 @@ kubectl get pods --field-selector=status.phase!=Running,spec.restartPolicy=Alway
 <!--
 ## Multiple resource types
 
-You use field selectors across multiple resource types. This `kubectl` command selects all Statefulsets and Services that are not in the `default` namespace:
+You can use field selectors across multiple resource types. This `kubectl` command selects all Statefulsets and Services that are not in the `default` namespace:
 -->
 ## 多种资源类型   {#multiple-resource-types}
 
diff --git a/content/zh-cn/docs/concepts/overview/working-with-objects/finalizers.md b/content/zh-cn/docs/concepts/overview/working-with-objects/finalizers.md
new file mode 100644
index 0000000000..21654acda9
--- /dev/null
+++ b/content/zh-cn/docs/concepts/overview/working-with-objects/finalizers.md
@@ -0,0 +1,156 @@
+---
+title: Finalizers
+content_type: concept
+weight: 60
+---
+
+<!-- overview -->
+
+{{<glossary_definition term_id="finalizer" length="long">}}
+
+<!--
+You can use finalizers to control {{<glossary_tooltip text="garbage collection" term_id="garbage-collection">}}
+of resources by alerting {{<glossary_tooltip text="controllers" term_id="controller">}} to perform specific cleanup tasks before
+deleting the target resource. 
+-->
+你可以通过使用 Finalizers 提醒{{<glossary_tooltip text="控制器" term_id="controller">}}
+在删除目标资源前执行特定的清理任务，
+来控制资源的{{<glossary_tooltip text="垃圾收集" term_id="garbage-collection">}}。
+
+<!--
+Finalizers don't usually specify the code to execute. Instead, they are
+typically lists of keys on a specific resource similar to annotations.
+Kubernetes specifies some finalizers automatically, but you can also specify
+your own.
+-->
+Finalizers 通常不指定要执行的代码。
+相反，它们通常是特定资源上的键的列表，类似于注解。
+Kubernetes 自动指定了一些 Finalizers，但你也可以指定你自己的。
+
+<!--
+## How finalizers work
+
+When you create a resource using a manifest file, you can specify finalizers in
+the `metadata.finalizers` field. When you attempt to delete the resource, the
+API server handling the delete request notices the values in the `finalizers` field
+and does the following: 
+
+  * Modifies the object to add a `metadata.deletionTimestamp` field with the
+    time you started the deletion.
+  * Prevents the object from being removed until its `metadata.finalizers` field is empty.
+  * Returns a `202` status code (HTTP "Accepted")
+-->
+## Finalizers 如何工作   {#how-finalizers-work}
+
+当你使用清单文件创建资源时，你可以在 `metadata.finalizers` 字段指定 Finalizers。
+当你试图删除该资源时，处理删除请求的 API 服务器会注意到 `finalizers` 字段中的值，
+并进行以下操作：
+
+  * 修改对象，将你开始执行删除的时间添加到 `metadata.deletionTimestamp` 字段。
+  * 禁止对象被删除，直到其 `metadata.finalizers` 字段为空。
+  * 返回 `202` 状态码（HTTP "Accepted"）。
+
+<!--
+The controller managing that finalizer notices the update to the object setting the
+`metadata.deletionTimestamp`, indicating deletion of the object has been requested.
+The controller then attempts to satisfy the requirements of the finalizers
+specified for that resource. Each time a finalizer condition is satisfied, the
+controller removes that key from the resource's `finalizers` field. When the
+`finalizers` field is emptied, an object with a `deletionTimestamp` field set
+is automatically deleted. You can also use finalizers to prevent deletion of unmanaged resources.
+-->
+管理 finalizer 的控制器注意到对象上发生的更新操作，对象的 `metadata.deletionTimestamp`
+被设置，意味着已经请求删除该对象。然后，控制器会试图满足资源的 Finalizers 的条件。
+每当一个 Finalizer 的条件被满足时，控制器就会从资源的 `finalizers` 字段中删除该键。
+当 `finalizers` 字段为空时，`deletionTimestamp` 字段被设置的对象会被自动删除。
+你也可以使用 Finalizers 来阻止删除未被管理的资源。
+
+<!--
+A common example of a finalizer is `kubernetes.io/pv-protection`, which prevents
+accidental deletion of `PersistentVolume` objects. When a `PersistentVolume`
+object is in use by a Pod, Kubernetes adds the `pv-protection` finalizer. If you
+try to delete the `PersistentVolume`, it enters a `Terminating` status, but the
+controller can't delete it because the finalizer exists. When the Pod stops
+using the `PersistentVolume`, Kubernetes clears the `pv-protection` finalizer,
+and the controller deletes the volume.
+-->
+一个常见的 Finalizer 的例子是 `kubernetes.io/pv-protection`，
+它用来防止意外删除 `PersistentVolume` 对象。
+当一个 `PersistentVolume` 对象被 Pod 使用时，
+Kubernetes 会添加 `pv-protection` Finalizer。
+如果你试图删除 `PersistentVolume`，它将进入 `Terminating` 状态，
+但是控制器因为该 Finalizer 存在而无法删除该资源。
+当 Pod 停止使用 `PersistentVolume` 时，
+Kubernetes 清除 `pv-protection` Finalizer，控制器就会删除该卷。
+
+<!--
+## Owner references, labels, and finalizers {#owners-labels-finalizers}
+
+Like {{<glossary_tooltip text="labels" term_id="label">}},
+[owner references](/docs/concepts/overview/working-with-objects/owners-dependents/)
+describe the relationships between objects in Kubernetes, but are used for a
+different purpose. When a
+{{<glossary_tooltip text="controller" term_id="controller">}} manages objects
+like Pods, it uses labels to track changes to groups of related objects. For
+example, when a {{<glossary_tooltip text="Job" term_id="job">}} creates one or
+more Pods, the Job controller applies labels to those pods and tracks changes to
+any Pods in the cluster with the same label.
+-->
+## 属主引用、标签和 Finalizers {#owners-labels-finalizers}
+
+与{{<glossary_tooltip text="标签" term_id="label">}}类似，
+[属主引用](/zh-cn/docs/concepts/overview/working-with-objects/owners-dependents/)
+描述了 Kubernetes 中对象之间的关系，但它们作用不同。
+当一个{{<glossary_tooltip text="控制器" term_id="controller">}}
+管理类似于 Pod 的对象时，它使用标签来跟踪相关对象组的变化。
+例如，当 {{<glossary_tooltip text="Job" term_id="job">}} 创建一个或多个 Pod 时，
+Job 控制器会给这些 Pod 应用上标签，并跟踪集群中的具有相同标签的 Pod 的变化。
+
+<!--
+The Job controller also adds *owner references* to those Pods, pointing at the
+Job that created the Pods. If you delete the Job while these Pods are running,
+Kubernetes uses the owner references (not labels) to determine which Pods in the
+cluster need cleanup.
+
+Kubernetes also processes finalizers when it identifies owner references on a
+resource targeted for deletion. 
+
+In some situations, finalizers can block the deletion of dependent objects,
+which can cause the targeted owner object to remain for
+longer than expected without being fully deleted. In these situations, you
+should check finalizers and owner references on the target owner and dependent
+objects to troubleshoot the cause. 
+-->
+Job 控制器还为这些 Pod 添加了“属主引用”，指向创建 Pod 的 Job。
+如果你在这些 Pod 运行的时候删除了 Job，
+Kubernetes 会使用属主引用（而不是标签）来确定集群中哪些 Pod 需要清理。
+
+当 Kubernetes 识别到要删除的资源上的属主引用时，它也会处理 Finalizers。
+
+在某些情况下，Finalizers 会阻止依赖对象的删除，
+这可能导致目标属主对象被保留的时间比预期的长，而没有被完全删除。
+在这些情况下，你应该检查目标属主和附属对象上的 Finalizers 和属主引用，来排查原因。
+
+{{< note >}}
+<!--
+In cases where objects are stuck in a deleting state, avoid manually
+removing finalizers to allow deletion to continue. Finalizers are usually added
+to resources for a reason, so forcefully removing them can lead to issues in
+your cluster. This should only be done when the purpose of the finalizer is
+understood and is accomplished in another way (for example, manually cleaning
+up some dependent object).
+
+-->
+在对象卡在删除状态的情况下，要避免手动移除 Finalizers，以允许继续删除操作。
+Finalizers 通常因为特殊原因被添加到资源上，所以强行删除它们会导致集群出现问题。
+只有了解 finalizer 的用途时才能这样做，并且应该通过一些其他方式来完成
+（例如，手动清除其余的依赖对象）。
+{{< /note >}}
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* Read [Using Finalizers to Control Deletion](/blog/2021/05/14/using-finalizers-to-control-deletion/)
+  on the Kubernetes blog.
+-->
+* 在 Kubernetes 博客上阅读[使用 Finalizers 控制删除](/blog/2021/05/14/using-finalizers-to-control-deletion/)。
diff --git a/content/zh-cn/docs/concepts/overview/working-with-objects/kubernetes-objects.md b/content/zh-cn/docs/concepts/overview/working-with-objects/kubernetes-objects.md
new file mode 100644
index 0000000000..bf52f1b340
--- /dev/null
+++ b/content/zh-cn/docs/concepts/overview/working-with-objects/kubernetes-objects.md
@@ -0,0 +1,234 @@
+---
+title: 理解 Kubernetes 对象
+content_type: concept
+weight: 10
+card: 
+  name: concepts
+  weight: 40
+---
+
+<!---
+title: Understanding Kubernetes Objects
+content_type: concept
+weight: 10
+card: 
+  name: concepts
+  weight: 40
+-->
+
+<!-- overview -->
+<!--
+This page explains how Kubernetes objects are represented in the Kubernetes API, and how you can express them in `.yaml` format.
+-->
+本页说明了在 Kubernetes API 中是如何表示 Kubernetes 对象的，
+以及使用 `.yaml` 格式的文件表示 Kubernetes 对象。
+
+<!-- body -->
+<!--
+## Understanding Kubernetes Objects
+
+*Kubernetes objects* are persistent entities in the Kubernetes system. Kubernetes uses these
+entities to represent the state of your cluster. Specifically, they can describe:
+
+* What containerized applications are running (and on which nodes)
+* The resources available to those applications
+* The policies around how those applications behave, such as restart policies, upgrades, and fault-tolerance
+-->
+## 理解 Kubernetes 对象    {#kubernetes-objects}
+
+在 Kubernetes 系统中，**Kubernetes 对象** 是持久化的实体。
+Kubernetes 使用这些实体去表示整个集群的状态。
+比较特别地是，它们描述了如下信息：
+
+* 哪些容器化应用正在运行（以及在哪些节点上运行）
+* 可以被应用使用的资源
+* 关于应用运行时表现的策略，比如重启策略、升级策略以及容错策略
+
+<!--
+A Kubernetes object is a "record of intent" - once you create the object, 
+the Kubernetes system will constantly work to ensure that object exists. 
+By creating an object, you're effectively telling the Kubernetes system what 
+you want your cluster's workload to look like; this is your cluster's *desired state*.
+
+To work with Kubernetes objects - whether to create, modify, or delete them - 
+you'll need to use the [Kubernetes API](/docs/concepts/overview/kubernetes-api/).
+When you use the `kubectl` command-line interface, for example, 
+the CLI makes the necessary Kubernetes API calls for you. 
+You can also use the Kubernetes API directly in your own programs using 
+one of the [Client Libraries](/docs/reference/using-api/client-libraries/).
+-->
+Kubernetes 对象是“目标性记录” —— 一旦创建该对象，Kubernetes 系统将不断工作以确保该对象存在。
+通过创建对象，你就是在告知 Kubernetes 系统，你想要的集群工作负载状态看起来应是什么样子的，
+这就是 Kubernetes 集群所谓的 **期望状态（Desired State）**。
+
+操作 Kubernetes 对象 —— 无论是创建、修改或者删除 —— 需要使用
+[Kubernetes API](/zh-cn/docs/concepts/overview/kubernetes-api)。
+比如，当使用 `kubectl` 命令行接口（CLI）时，CLI 会调用必要的 Kubernetes API；
+也可以在程序中使用[客户端库](/zh-cn/docs/reference/using-api/client-libraries/)，
+来直接调用 Kubernetes API。
+
+<!--
+### Object Spec and Status
+
+Almost every Kubernetes object includes two nested object fields that govern
+the object's configuration: the object *`spec`* and the object *`status`*.
+For objects that have a `spec`, you have to set this when you create the object,
+providing a description of the characteristics you want the resource to have:
+its _desired state_.
+-->
+### 对象规约（Spec）与状态（Status）    {#object-spec-and-status}
+
+几乎每个 Kubernetes 对象包含两个嵌套的对象字段，它们负责管理对象的配置：
+对象 **`spec`（规约）** 和 对象 **`status`（状态）**。
+对于具有 `spec` 的对象，你必须在创建对象时设置其内容，描述你希望对象所具有的特征：
+**期望状态（Desired State）**。
+
+<!--
+The `status` describes the _current state_ of the object, supplied and updated
+by the Kubernetes system and its components. The Kubernetes
+{{< glossary_tooltip text="control plane" term_id="control-plane" >}} continually
+and actively manages every object's actual state to match the desired state you
+supplied.
+-->
+`status` 描述了对象的**当前状态（Current State）**，它是由 Kubernetes 系统和组件设置并更新的。
+在任何时刻，Kubernetes {{< glossary_tooltip text="控制平面" term_id="control-plane" >}}
+都一直都在积极地管理着对象的实际状态，以使之达成期望状态。
+
+<!--
+For example: in Kubernetes, a Deployment is an object that can represent an
+application running on your cluster. When you create the Deployment, you
+might set the Deployment `spec` to specify that you want three replicas of
+the application to be running. The Kubernetes system reads the Deployment
+spec and starts three instances of your desired application-updating
+the status to match your spec. If any of those instances should fail
+(a status change), the Kubernetes system responds to the difference
+between spec and status by making a correction-in this case, starting
+a replacement instance.
+-->
+例如，Kubernetes 中的 Deployment 对象能够表示运行在集群中的应用。
+当创建 Deployment 时，可能会去设置 Deployment 的 `spec`，以指定该应用要有 3 个副本运行。
+Kubernetes 系统读取 Deployment 的 `spec`，
+并启动我们所期望的应用的 3 个实例 —— 更新状态以与规约相匹配。
+如果这些实例中有的失败了（一种状态变更），Kubernetes 系统会通过执行修正操作来响应
+`spec` 和状态间的不一致 —— 意味着它会启动一个新的实例来替换。
+
+<!--
+For more information on the object spec, status, and metadata, see the 
+[Kubernetes API Conventions](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md).
+-->
+关于对象 spec、status 和 metadata 的更多信息，可参阅
+[Kubernetes API 约定](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md)。
+
+<!--
+### Describing a Kubernetes Object
+
+When you create an object in Kubernetes, you must provide the object spec that describes its
+desired state, as well as some basic information about the object (such as a name). When you use
+the Kubernetes API to create the object (either directly or via `kubectl`), that API request must
+include that information as JSON in the request body. **Most often, you provide the information to
+`kubectl` in a .yaml file.** `kubectl` converts the information to JSON when making the API
+request.
+
+
+Here's an example `.yaml` file that shows the required fields and object spec for a Kubernetes Deployment:
+-->
+### 描述 Kubernetes 对象    {#describing-a-kubernetes-object}
+
+创建 Kubernetes 对象时，必须提供对象的 `spec`，用来描述该对象的期望状态，
+以及关于对象的一些基本信息（例如名称）。
+当使用 Kubernetes API 创建对象时（直接创建，或经由 `kubectl`），
+API 请求必须在请求本体中包含 JSON 格式的信息。
+**大多数情况下，你需要提供 `.yaml` 文件为 kubectl 提供这些信息**。
+`kubectl` 在发起 API 请求时，将这些信息转换成 JSON 格式。
+
+这里有一个 `.yaml` 示例文件，展示了 Kubernetes Deployment 的必需字段和对象 `spec`：
+
+{{< codenew file="application/deployment.yaml" >}}
+
+<!--
+One way to create a Deployment using a `.yaml` file like the one above is to use the
+[`kubectl apply`](/docs/reference/generated/kubectl/kubectl-commands#apply) command
+in the `kubectl` command-line interface, passing the `.yaml` file as an argument. Here's an example:
+-->
+相较于上面使用 `.yaml` 文件来创建 Deployment，另一种类似的方式是使用 `kubectl` 命令行接口（CLI）中的
+[`kubectl apply`](/docs/reference/generated/kubectl/kubectl-commands#apply) 命令，
+将 `.yaml` 文件作为参数。下面是一个示例：
+
+```shell
+kubectl apply -f https://k8s.io/examples/application/deployment.yaml
+```
+
+<!--
+The output is similar to this:
+-->
+输出类似下面这样：
+
+```
+deployment.apps/nginx-deployment created
+```
+
+<!--
+### Required Fields
+
+In the `.yaml` file for the Kubernetes object you want to create, you'll need to set values for the following fields:
+
+* `apiVersion` - Which version of the Kubernetes API you're using to create this object
+* `kind` - What kind of object you want to create
+* `metadata` - Data that helps uniquely identify the object, including a `name` string, `UID`, and optional `namespace`
+* `spec` - What state you desire for the object
+-->
+### 必需字段    {#required-fields}
+
+在想要创建的 Kubernetes 对象所对应的 `.yaml` 文件中，需要配置的字段如下：
+
+* `apiVersion` - 创建该对象所使用的 Kubernetes API 的版本
+* `kind` - 想要创建的对象的类别
+* `metadata` - 帮助唯一标识对象的一些数据，包括一个 `name` 字符串、`UID` 和可选的 `namespace`
+* `spec` - 你所期望的该对象的状态
+
+<!--
+The precise format of the object `spec` is different for every Kubernetes object, and contains
+nested fields specific to that object. The [Kubernetes API Reference](/docs/reference/kubernetes-api/)
+can help you find the spec format for all of the objects you can create using Kubernetes.
+-->
+对每个 Kubernetes 对象而言，其 `spec` 之精确格式都是不同的，包含了特定于该对象的嵌套字段。
+我们能在 [Kubernetes API 参考](/zh-cn/docs/reference/kubernetes-api/)
+找到我们想要在 Kubernetes 上创建的任何对象的规约格式。
+
+<!--
+For example, see the [`spec` field](/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodSpec)
+for the Pod API reference.
+For each Pod, the `.spec` field specifies the pod and its desired state (such as the container image name for
+each container within that pod).
+Another example of an object specification is the
+[`spec` field](/docs/reference/kubernetes-api/workload-resources/stateful-set-v1/#StatefulSetSpec)
+for the StatefulSet API. For StatefulSet, the `.spec` field specifies the StatefulSet and
+its desired state.
+Within the `.spec` of a StatefulSet is a [template](/docs/concepts/workloads/pods/#pod-templates)
+for Pod objects. That template describes Pods that the StatefulSet controller will create in order to
+satisfy the StatefulSet specification.
+Different kinds of object can also have different `.status`; again, the API reference pages
+detail the structure of that `.status` field, and its content for each different type of object.
+-->
+例如，参阅 Pod API 参考文档中
+[`spec` 字段](/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodSpec)。
+对于每个 Pod，其 `.spec` 字段设置了 Pod 及其期望状态（例如 Pod 中每个容器的容器镜像名称）。
+另一个对象规约的例子是 StatefulSet API 中的
+[`spec` 字段](/zh-cn/docs/reference/kubernetes-api/workload-resources/stateful-set-v1/#StatefulSetSpec)。
+对于 StatefulSet 而言，其 `.spec` 字段设置了 StatefulSet 及其期望状态。
+在 StatefulSet 的 `.spec` 内，有一个为 Pod 对象提供的[模板](/zh-cn/docs/concepts/workloads/pods/#pod-templates)。
+该模板描述了 StatefulSet 控制器为了满足 StatefulSet 规约而要创建的 Pod。
+不同类型的对象可以由不同的 `.status` 信息。API 参考页面给出了 `.status` 字段的详细结构，
+以及针对不同类型 API 对象的具体内容。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* Learn about the most important basic Kubernetes objects, such as [Pod](/docs/concepts/workloads/pods/).
+* Learn about [controllers](/docs/concepts/architecture/controller/) in Kubernetes.
+* [Using the Kubernetes API](/docs/reference/using-api/) explains some more API concepts.
+-->
+* 了解最重要的 Kubernetes 基本对象，例如 [Pod](/zh-cn/docs/concepts/workloads/pods/)。
+* 了解 Kubernetes 中的[控制器](/zh-cn/docs/concepts/architecture/controller/)。
+* [使用 Kubernetes API](/zh-cn/docs/reference/using-api/) 一节解释了一些 API 概念。
+
diff --git a/content/zh/docs/concepts/overview/working-with-objects/labels.md b/content/zh-cn/docs/concepts/overview/working-with-objects/labels.md
similarity index 70%
rename from content/zh/docs/concepts/overview/working-with-objects/labels.md
rename to content/zh-cn/docs/concepts/overview/working-with-objects/labels.md
index 2714cb3f7b..df23d8cf18 100644
--- a/content/zh/docs/concepts/overview/working-with-objects/labels.md
+++ b/content/zh-cn/docs/concepts/overview/working-with-objects/labels.md
@@ -16,11 +16,10 @@ weight: 40
 <!--
 _Labels_ are key/value pairs that are attached to objects, such as pods.
 Labels are intended to be used to specify identifying attributes of objects that are meaningful and relevant to users, but do not directly imply semantics to the core system.
-Labels can be used to organize and to select subsets of objects.
-Labels can be attached to objects at creation time and subsequently added and modified at any time.
-Each object can have a set of key/value labels defined.  Each Key must be unique for a given object.
+Labels can be used to organize and to select subsets of objects. Labels can be attached to objects at creation time and subsequently added and modified at any time.
+Each object can have a set of key/value labels defined. Each Key must be unique for a given object.
 -->
-_标签（Labels）_ 是附加到 Kubernetes 对象（比如 Pods）上的键值对。
+**标签（Labels）**是附加到 Kubernetes 对象（比如 Pods）上的键值对。
 标签旨在用于指定对用户有意义且相关的对象的标识属性，但不直接对核心系统有语义含义。
 标签可以用于组织和选择对象的子集。标签可以在创建时附加到对象，随后可以随时添加和修改。
 每个对象都可以定义一组键/值标签。每个键对于给定对象必须是唯一的。
@@ -40,7 +39,7 @@ and CLIs. Non-identifying information should be recorded using
 [annotations](/docs/concepts/overview/working-with-objects/annotations/).
 -->
 标签能够支持高效的查询和监听操作，对于用户界面和命令行是很理想的。
-应使用[注解](/zh/docs/concepts/overview/working-with-objects/annotations/) 记录非识别信息。
+应使用[注解](/zh-cn/docs/concepts/overview/working-with-objects/annotations/)记录非识别信息。
 
 <!-- body -->
 
@@ -49,7 +48,7 @@ and CLIs. Non-identifying information should be recorded using
 
 Labels enable users to map their own organizational structures onto system objects in a loosely coupled fashion, without requiring clients to store these mappings.
 -->
-## 动机
+## 动机   {#motivation}
 
 标签使用户能够以松散耦合的方式将他们自己的组织结构映射到系统对象，而无需客户端存储这些映射。
 
@@ -70,24 +69,23 @@ Example labels:
 * `"track" : "daily"`, `"track" : "weekly"`
 
 <!--
-These are just examples of commonly used labels; 
-you are free to develop your own conventions. 
-Keep in mind that label Key must be unique for a given object.
+These are examples of [commonly used labels](/docs/concepts/overview/working-with-objects/common-labels/); you are free to develop your own conventions. Keep in mind that label Key must be unique for a given object.
 -->
-这些只是常用标签的例子; 你可以任意制定自己的约定。请记住，对于给定对象标签的键必须是唯一的。
+有一些[常用标签](/zh-cn/docs/concepts/overview/working-with-objects/common-labels/)的例子；你可以任意制定自己的约定。
+请记住，标签的 Key 对于给定对象必须是唯一的。
 
 <!--
 ## Syntax and character set
 
-_Labels_ are key/value pairs. Valid label keys have two segments: an optional prefix and name, separated by a slash (`/`).  The name segment is required and must be 63 characters or less, beginning and ending with an alphanumeric character (`[a-z0-9A-Z]`) with dashes (`-`), underscores (`_`), dots (`.`), and alphanumerics between.  The prefix is optional.  If specified, the prefix must be a DNS subdomain: a series of DNS labels separated by dots (`.`), not longer than 253 characters in total, followed by a slash (`/`).
+_Labels_ are key/value pairs. Valid label keys have two segments: an optional prefix and name, separated by a slash (`/`). The name segment is required and must be 63 characters or less, beginning and ending with an alphanumeric character (`[a-z0-9A-Z]`) with dashes (`-`), underscores (`_`), dots (`.`), and alphanumerics between. The prefix is optional. If specified, the prefix must be a DNS subdomain: a series of DNS labels separated by dots (`.`), not longer than 253 characters in total, followed by a slash (`/`).
 
 If the prefix is omitted, the label Key is presumed to be private to the user. Automated system components (e.g. `kube-scheduler`, `kube-controller-manager`, `kube-apiserver`, `kubectl`, or other third-party automation) which add labels to end-user objects must specify a prefix.
 
-The `kubernetes.io/` prefix is reserved for Kubernetes core components.
+The `kubernetes.io/` and `k8s.io/` prefixes are [reserved](/docs/reference/labels-annotations-taints/) for Kubernetes core components.
 -->
-## 语法和字符集
+## 语法和字符集   {#syntax-and-character-set}
 
-_标签_ 是键值对。有效的标签键有两个段：可选的前缀和名称，用斜杠（`/`）分隔。
+**标签**是键值对。有效的标签键有两个段：可选的前缀和名称，用斜杠（`/`）分隔。
 名称段是必需的，必须小于等于 63 个字符，以字母数字字符（`[a-z0-9A-Z]`）开头和结尾，
 带有破折号（`-`），下划线（`_`），点（ `.`）和之间的字母数字。
 前缀是可选的。如果指定，前缀必须是 DNS 子域：由点（`.`）分隔的一系列 DNS 标签，总共不超过 253 个字符，
@@ -97,7 +95,7 @@ _标签_ 是键值对。有效的标签键有两个段：可选的前缀和名
 向最终用户对象添加标签的自动系统组件（例如 `kube-scheduler`、`kube-controller-manager`、
 `kube-apiserver`、`kubectl` 或其他第三方自动化工具）必须指定前缀。
 
-`kubernetes.io/` 前缀是为 Kubernetes 核心组件保留的。
+`kubernetes.io/` 和 `k8s.io/` 前缀是为 Kubernetes 核心组件[保留的](/zh-cn/docs/reference/labels-annotations-taints/)。
 
 <!--
 Valid label value:
@@ -110,30 +108,53 @@ Valid label value:
 
 * 必须为 63 个字符或更少（可以为空）
 * 除非标签值为空，必须以字母数字字符（`[a-z0-9A-Z]`）开头和结尾
-* 包含破折号（`-`）、下划线（`_`）、点（`.`）和字母或数字。
+* 包含破折号（`-`）、下划线（`_`）、点（`.`）和字母或数字
+
+<!--
+For example, here's the configuration file for a Pod that has two labels `environment: production` and `app: nginx` :
+-->
+例如，这是一个有 `environment: production` 和 `app: nginx` 标签的 Pod 配置文件：
+
+```yaml
+
+apiVersion: v1
+kind: Pod
+metadata:
+  name: label-demo
+  labels:
+    environment: production
+    app: nginx
+spec:
+  containers:
+  - name: nginx
+    image: nginx:1.14.2
+    ports:
+    - containerPort: 80
+
+```
 
 <!--
 ## Label selectors
 
-Unlike [names and UIDs](/docs/user-guide/identifiers), labels do not provide uniqueness. In general, we expect many objects to carry the same label(s).
+Unlike [names and UIDs](/docs/concepts/overview/working-with-objects/names/), labels do not provide uniqueness. In general, we expect many objects to carry the same label(s).
 -->
 ## 标签选择算符   {#label-selectors}
 
-与[名称和 UID](/zh/docs/concepts/overview/working-with-objects/names/) 不同，
+与[名称和 UID](/zh-cn/docs/concepts/overview/working-with-objects/names/) 不同，
 标签不支持唯一性。通常，我们希望许多对象携带相同的标签。
 
 <!--
 Via a _label selector_, the client/user can identify a set of objects. The label selector is the core grouping primitive in Kubernetes.
 -->
-通过 _标签选择算符_，客户端/用户可以识别一组对象。标签选择算符是 Kubernetes 中的核心分组原语。
+通过**标签选择算符**，客户端/用户可以识别一组对象。标签选择算符是 Kubernetes 中的核心分组原语。
 
 <!--
 The API currently supports two types of selectors: _equality-based_ and _set-based_.
 A label selector can be made of multiple _requirements_ which are comma-separated. In the case of multiple requirements, all must be satisfied so the comma separator acts as a logical _AND_ (`&&`) operator.
 -->
-API 目前支持两种类型的选择算符：_基于等值的_ 和 _基于集合的_。
-标签选择算符可以由逗号分隔的多个 _需求_ 组成。
-在多个需求的情况下，必须满足所有要求，因此逗号分隔符充当逻辑 _与_（`&&`）运算符。
+API 目前支持两种类型的选择算符：**基于等值的**和**基于集合的**。
+标签选择算符可以由逗号分隔的多个**需求**组成。
+在多个需求的情况下，必须满足所有要求，因此逗号分隔符充当逻辑**与**（`&&`）运算符。
 
 <!--
 The semantics of empty or non-specified selectors are dependent on the context,
@@ -143,18 +164,18 @@ them.
 空标签选择算符或者未指定的选择算符的语义取决于上下文，
 支持使用选择算符的 API 类别应该将算符的合法性和含义用文档记录下来。
 
+{{< note >}}
 <!--
 For some API types, such as ReplicaSets, the label selectors of two instances must not overlap within a namespace, or the controller can see that as conflicting instructions and fail to determine how many replicas should be present.
 -->
-{{< note >}}
 对于某些 API 类别（例如 ReplicaSet）而言，两个实例的标签选择算符不得在命名空间内重叠，
 否则它们的控制器将互相冲突，无法确定应该存在的副本个数。
 {{< /note >}}
 
+{{< caution >}}
 <!--
 For both equality-based and set-based conditions there is no logical _OR_ (`||`) operator. Ensure your filter statements are structured accordingly.
 -->
-{{< caution >}}
 对于基于等值的和基于集合的条件而言，不存在逻辑或（`||`）操作符。
 你要确保你的过滤语句按合适的方式组织。
 {{< /caution >}}
@@ -163,14 +184,14 @@ For both equality-based and set-based conditions there is no logical _OR_ (`||`)
 ### _Equality-based_ requirement
 
 _Equality-_ or _inequality-based_ requirements allow filtering by label keys and values. Matching objects must satisfy all of the specified label constraints, though they may have additional labels as well.
-Three kinds of operators are admitted `=`,`==`,`!=`. The first two represent _equality_ (and are simply synonyms), while the latter represents _inequality_. For example:
+Three kinds of operators are admitted `=`,`==`,`!=`. The first two represent _equality_ (and are synonyms), while the latter represents _inequality_. For example:
 -->
-### _基于等值的_ 需求
+### **基于等值的**需求
 
-_基于等值_ 或 _基于不等值_ 的需求允许按标签键和值进行过滤。
+**基于等值**或**基于不等值**的需求允许按标签键和值进行过滤。
 匹配对象必须满足所有指定的标签约束，尽管它们也可能具有其他标签。
-可接受的运算符有`=`、`==` 和 `!=` 三种。 
-前两个表示 _相等_（并且只是同义词），而后者表示 _不相等_。例如：
+可接受的运算符有 `=`、`==` 和 `!=` 三种。
+前两个表示**相等**（并且是同义词），而后者表示**不相等**。例如：
 
 ```
 environment = production
@@ -215,10 +236,10 @@ spec:
 
 _Set-based_ label requirements allow filtering keys according to a set of values. Three kinds of operators are supported: `in`,`notin` and `exists` (only the key identifier). For example:
 -->
-### _基于集合_ 的需求
+### **基于集合**的需求
 
-_基于集合_ 的标签需求允许你通过一组值来过滤键。
-支持三种操作符：`in`、`notin` 和 `exists` (只可以用在键标识符上)。例如：
+**基于集合**的标签需求允许你通过一组值来过滤键。
+支持三种操作符：`in`、`notin` 和 `exists`（只可以用在键标识符上）。例如：
 
 ```
 environment in (production, qa)
@@ -232,6 +253,7 @@ partition
 * The second example selects all resources with key equal to `tier` and values other than `frontend` and `backend`, and all resources with no labels with the `tier` key.
 * The third example selects all resources including a label with key `partition`; no values are checked.
 * The fourth example selects all resources without a label with key `partition`; no values are checked.
+
 Similarly the comma separator acts as an _AND_ operator. So filtering resources with a `partition` key (no matter the value) and with `environment` different than  `qa` can be achieved using `partition,environment notin (qa)`.
 -->
 
@@ -239,19 +261,20 @@ Similarly the comma separator acts as an _AND_ operator. So filtering resources
 * 第二个示例选择了所有键等于 `tier` 并且值不等于 `frontend` 或者 `backend` 的资源，以及所有没有 `tier` 键标签的资源。
 * 第三个示例选择了所有包含了有 `partition` 标签的资源；没有校验它的值。
 * 第四个示例选择了所有没有 `partition` 标签的资源；没有校验它的值。
-类似地，逗号分隔符充当 _与_ 运算符。因此，使用 `partition` 键（无论为何值）和
-`environment` 不同于 `qa` 来过滤资源可以使用 `partition, environment notin（qa)` 来实现。
+
+类似地，逗号分隔符充当 **与**运算符。因此，使用 `partition` 键（无论为何值）和
+`environment` 不同于 `qa` 来过滤资源可以使用 `partition, environment notin (qa)` 来实现。
 
 <!--
 The _set-based_ label selector is a general form of equality since `environment=production` is equivalent to `environment in (production)`; similarly for `!=` and `notin`.
 -->
-_基于集合_ 的标签选择算符是相等标签选择算符的一般形式，因为 `environment=production`
-等同于 `environment in（production）`；`!=` 和 `notin` 也是类似的。
+**基于集合**的标签选择算符是相等标签选择算符的一般形式，因为 `environment=production`
+等同于 `environment in (production)`；`!=` 和 `notin` 也是类似的。
 
 <!--
 _Set-based_ requirements can be mixed with _equality-based_ requirements. For example: `partition in (customerA, customerB),environment!=qa`.
 -->
-_基于集合_ 的要求可以与基于 _相等_ 的要求混合使用。例如：`partition in (customerA, customerB),environment!=qa`。
+**基于集合**的要求可以与基于**相等**的要求混合使用。例如：`partition in (customerA, customerB),environment!=qa`。
 
 ## API
 
@@ -269,22 +292,24 @@ LIST 和 WATCH 操作可以使用查询参数指定标签选择算符过滤一
 * _equality-based_ requirements: `?labelSelector=environment%3Dproduction,tier%3Dfrontend`
 * _set-based_ requirements: `?labelSelector=environment+in+%28production%2Cqa%29%2Ctier+in+%28frontend%29`
 -->
-* _基于等值_ 的需求: `?labelSelector=environment%3Dproduction,tier%3Dfrontend`
-* _基于集合_ 的需求: `?labelSelector=environment+in+%28production%2Cqa%29%2Ctier+in+%28frontend%29`
+* **基于等值**的需求：`?labelSelector=environment%3Dproduction,tier%3Dfrontend`
+* **基于集合**的需求：`?labelSelector=environment+in+%28production%2Cqa%29%2Ctier+in+%28frontend%29`
 
 <!--
 Both label selector styles can be used to list or watch resources via a REST client. For example, targeting `apiserver` with `kubectl` and using _equality-based_ one may write:
 -->
 两种标签选择算符都可以通过 REST 客户端用于 list 或者 watch 资源。
-例如，使用 `kubectl` 定位 `apiserver`，可以使用 _基于等值_ 的标签选择算符可以这么写：
+例如，使用 `kubectl` 定位 `apiserver`，可以使用**基于等值**的标签选择算符可以这么写：
 
 
 ```shell
 kubectl get pods -l environment=production,tier=frontend
 ```
 
-<!-- or using _set-based_ requirements: -->
-或者使用 _基于集合的_ 需求：
+<!--
+or using _set-based_ requirements:
+-->
+或者使用**基于集合的**需求：
 
 ```shell
 kubectl get pods -l 'environment in (production),tier in (frontend)'
@@ -293,14 +318,16 @@ kubectl get pods -l 'environment in (production),tier in (frontend)'
 <!--
 As already mentioned _set-based_ requirements are more expressive.  For instance, they can implement the _OR_ operator on values:
 -->
-正如刚才提到的，_基于集合_ 的需求更具有表达力。例如，它们可以实现值的 _或_ 操作：
+正如刚才提到的，**基于集合**的需求更具有表达力。例如，它们可以实现值的**或**操作：
 
 ```shell
 kubectl get pods -l 'environment in (production, qa)'
 ```
 
-<!-- or restricting negative matching via _exists_ operator: -->
-或者通过 _exists_ 运算符限制不匹配：
+<!--
+or restricting negative matching via _exists_ operator:
+-->
+或者通过**exists**运算符限制不匹配：
 
 ```shell
 kubectl get pods -l 'environment,environment notin (frontend)'
@@ -316,10 +343,10 @@ also use label selectors to specify sets of other resources, such as
 -->
 ### 在 API 对象中设置引用
 
-一些 Kubernetes 对象，例如 [`services`](/zh/docs/concepts/services-networking/service/)
-和 [`replicationcontrollers`](/zh/docs/concepts/workloads/controllers/replicationcontroller/) ，
+一些 Kubernetes 对象，例如 [`services`](/zh-cn/docs/concepts/services-networking/service/)
+和 [`replicationcontrollers`](/zh-cn/docs/concepts/workloads/controllers/replicationcontroller/)，
 也使用了标签选择算符去指定了其他资源的集合，例如
-[pods](/zh/docs/concepts/workloads/pods/)。
+[pods](/zh-cn/docs/concepts/workloads/pods/)。
 
 <!--
 #### Service and ReplicationController
@@ -334,7 +361,7 @@ Labels selectors for both objects are defined in `json` or `yaml` files using ma
 应该管理的 pods 的数量也是由标签选择算符定义的。
 
 两个对象的标签选择算符都是在 `json` 或者 `yaml` 文件中使用映射定义的，并且只支持
-_基于等值_ 需求的选择算符：
+**基于等值**需求的选择算符：
 
 ```json
 "selector": {
@@ -342,7 +369,9 @@ _基于等值_ 需求的选择算符：
 }
 ```
 
-<!-- or -->
+<!--
+or
+-->
 或者
 
 ```yaml
@@ -353,20 +382,24 @@ selector:
 <!---
 this selector (respectively in `json` or `yaml` format) is equivalent to `component=redis` or `component in (redis)`.
 -->
-这个选择算符(分别在 `json` 或者 `yaml` 格式中) 等价于 `component=redis` 或 `component in (redis)` 。
+这个选择算符（分别在 `json` 或者 `yaml` 格式中）等价于 `component=redis` 或 `component in (redis)`。
 
 <!--
 #### Resources that support set-based requirements
 
-Newer resources, such as [`Job`](/docs/concepts/jobs/run-to-completion-finite-workloads/), [`Deployment`](/docs/concepts/workloads/controllers/deployment/), [`Replica Set`](/docs/concepts/workloads/controllers/replicaset/), and [`Daemon Set`](/docs/concepts/workloads/controllers/daemonset/), support _set-based_ requirements as well.
+Newer resources, such as [`Job`](/docs/concepts/workloads/controllers/job/),
+[`Deployment`](/docs/concepts/workloads/controllers/deployment/),
+[`ReplicaSet`](/docs/concepts/workloads/controllers/replicaset/), and
+[`DaemonSet`](/docs/concepts/workloads/controllers/daemonset/),
+support _set-based_ requirements as well.
 -->
 #### 支持基于集合需求的资源
 
-比较新的资源，例如 [`Job`](/zh/docs/concepts/workloads/controllers/job/)、
-[`Deployment`](/zh/docs/concepts/workloads/controllers/deployment/)、
-[`Replica Set`](/zh/docs/concepts/workloads/controllers/replicaset/) 和
-[`DaemonSet`](/zh/docs/concepts/workloads/controllers/daemonset/) ，
-也支持 _基于集合的_ 需求。
+比较新的资源，例如 [`Job`](/zh-cn/docs/concepts/workloads/controllers/job/)、
+[`Deployment`](/zh-cn/docs/concepts/workloads/controllers/deployment/)、
+[`ReplicaSet`](/zh-cn/docs/concepts/workloads/controllers/replicaset/) 和
+[`DaemonSet`](/zh-cn/docs/concepts/workloads/controllers/daemonset/)，
+也支持**基于集合的**需求。
 
 ```yaml
 selector:
@@ -378,11 +411,11 @@ selector:
 ```
 
 <!--
-`matchLabels` is a map of `{key,value}` pairs. A single `{key,value}` in the `matchLabels` map is equivalent to an element of `matchExpressions`, whose `key` field is "key", the `operator` is "In", and the `values` array contains only "value". `matchExpressions` is a list of pod selector requirements. Valid operators include In, NotIn, Exists, and DoesNotExist. The values set must be non-empty in the case of In and NotIn. All of the requirements, from both `matchLabels` and `matchExpressions` are ANDed together - they must all be satisfied in order to match.
+`matchLabels` is a map of `{key,value}` pairs. A single `{key,value}` in the `matchLabels` map is equivalent to an element of `matchExpressions`, whose `key` field is "key", the `operator` is "In", and the `values` array contains only "value". `matchExpressions` is a list of pod selector requirements. Valid operators include In, NotIn, Exists, and DoesNotExist. The values set must be non-empty in the case of In and NotIn. All of the requirements, from both `matchLabels` and `matchExpressions` are ANDed together -- they must all be satisfied in order to match.
 -->
 
 `matchLabels` 是由 `{key,value}` 对组成的映射。
-`matchLabels` 映射中的单个 `{key,value }` 等同于 `matchExpressions` 的元素，
+`matchLabels` 映射中的单个 `{key,value}` 等同于 `matchExpressions` 的元素，
 其 `key` 字段为 "key"，`operator` 为 "In"，而 `values` 数组仅包含 "value"。
 `matchExpressions` 是 Pod 选择算符需求的列表。
 有效的运算符包括 `In`、`NotIn`、`Exists` 和 `DoesNotExist`。
@@ -394,10 +427,9 @@ selector:
 #### Selecting sets of nodes
 
 One use case for selecting over labels is to constrain the set of nodes onto which a pod can schedule.
-See the documentation on [node selection](/docs/concepts/configuration/assign-pod-node/) for more information.
+See the documentation on [node selection](/docs/concepts/scheduling-eviction/assign-pod-node/) for more information.
 -->
 #### 选择节点集
 
 通过标签进行选择的一个用例是确定节点集，方便 Pod 调度。
-有关更多信息，请参阅[选择节点](/zh/docs/concepts/scheduling-eviction/assign-pod-node/)文档。
-
+有关更多信息，请参阅[选择节点](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/)文档。
diff --git a/content/zh/docs/concepts/overview/working-with-objects/names.md b/content/zh-cn/docs/concepts/overview/working-with-objects/names.md
similarity index 58%
rename from content/zh/docs/concepts/overview/working-with-objects/names.md
rename to content/zh-cn/docs/concepts/overview/working-with-objects/names.md
index 09e767ea9c..a6f27bd406 100644
--- a/content/zh/docs/concepts/overview/working-with-objects/names.md
+++ b/content/zh-cn/docs/concepts/overview/working-with-objects/names.md
@@ -3,6 +3,14 @@ title: 对象名称和 IDs
 content_type: concept
 weight: 20
 ---
+<!--
+reviewers:
+- mikedanese
+- thockin
+title: Object Names and IDs
+content_type: concept
+weight: 20
+-->
 
 <!-- overview -->
 
@@ -13,19 +21,19 @@ Every Kubernetes object also has a [_UID_](#uids) that is unique across your who
 For example, you can only have one Pod named `myapp-1234` within the same [namespace](/docs/concepts/overview/working-with-objects/namespaces/), but you can have one Pod and one Deployment that are each named `myapp-1234`.
 -->
 
-集群中的每一个对象都有一个[_名称_](#names) 来标识在同类资源中的唯一性。
+集群中的每一个对象都有一个[**名称**]（#names）来标识在同类资源中的唯一性。
 
-每个 Kubernetes 对象也有一个[_UID_](#uids) 来标识在整个集群中的唯一性。
+每个 Kubernetes 对象也有一个 [**UID**]（#uids）来标识在整个集群中的唯一性。
 
-比如，在同一个[名字空间](/zh/docs/concepts/overview/working-with-objects/namespaces/)
-中有一个名为 `myapp-1234` 的 Pod, 但是可以命名一个 Pod 和一个 Deployment 同为 `myapp-1234`.
+比如，在同一个[名字空间](/zh-cn/docs/concepts/overview/working-with-objects/namespaces/)
+中有一个名为 `myapp-1234` 的 Pod，但是可以命名一个 Pod 和一个 Deployment 同为 `myapp-1234`。
 
 <!--
-For non-unique user-provided attributes, Kubernetes provides [labels](/docs/user-guide/labels) and [annotations](/docs/concepts/overview/working-with-objects/annotations/).
+For non-unique user-provided attributes, Kubernetes provides [labels](/docs/concepts/overview/working-with-objects/labels/) and [annotations](/docs/concepts/overview/working-with-objects/annotations/).
 -->
 对于用户提供的非唯一性的属性，Kubernetes 提供了
-[标签（Labels）](/zh/docs/concepts/working-with-objects/labels)和
-[注解（Annotation）](/zh/docs/concepts/overview/working-with-objects/annotations/)机制。
+[标签（Labels）](/zh-cn/docs/concepts/overview/working-with-objects/labels/)和
+[注解（Annotation）](/zh-cn/docs/concepts/overview/working-with-objects/annotations/)机制。
 
 <!-- body -->
 
@@ -46,9 +54,9 @@ In cases when objects represent a physical entity, like a Node representing a ph
 {{< /note >}}
 
 <!--
-Below are three types of commonly used name constraints for resources.
+Below are four types of commonly used name constraints for resources.
 -->
-以下是比较常见的三种资源命名约束。
+以下是比较常见的四种资源命名约束。
 
 <!--
 ### DNS Subdomain Names
@@ -69,13 +77,13 @@ This means the name must:
 DNS 子域名的定义可参见 [RFC 1123](https://tools.ietf.org/html/rfc1123)。
 这一要求意味着名称必须满足如下规则：
 
-- 不能超过253个字符
-- 只能包含小写字母、数字，以及'-' 和 '.'
-- 须以字母数字开头
-- 须以字母数字结尾
+- 不能超过 253 个字符
+- 只能包含小写字母、数字，以及 '-' 和 '.'
+- 必须以字母数字开头
+- 必须以字母数字结尾
 
 <!--
-### DNS Label Names
+### RFC 1123 Label Names {#dns-label-names}
 
 Some resource types require their names to follow the DNS
 label standard as defined in [RFC 1123](https://tools.ietf.org/html/rfc1123).
@@ -86,15 +94,38 @@ This means the name must:
 - start with an alphanumeric character
 - end with an alphanumeric character
 -->
-### DNS 标签名    {#dns-label-names}
+### RFC 1123 标签名    {#dns-label-names}
 
 某些资源类型需要其名称遵循 [RFC 1123](https://tools.ietf.org/html/rfc1123)
 所定义的 DNS 标签标准。也就是命名必须满足如下规则：
 
-- 最多63个字符
-- 只能包含小写字母、数字，以及'-'
-- 须以字母数字开头
-- 须以字母数字结尾
+- 最多 63 个字符
+- 只能包含小写字母、数字，以及 '-'
+- 必须以字母数字开头
+- 必须以字母数字结尾
+
+
+<!--
+### RFC 1035 Label Names
+
+Some resource types require their names to follow the DNS
+label standard as defined in [RFC 1035](https://tools.ietf.org/html/rfc1035).
+This means the name must:
+
+- contain at most 63 characters
+- contain only lowercase alphanumeric characters or '-'
+- start with an alphabetic character
+- end with an alphanumeric character
+-->
+### RFC 1035 标签名   {#rfc-1035-label-names}
+
+某些资源类型需要其名称遵循 [RFC 1035](https://tools.ietf.org/html/rfc1035)
+所定义的 DNS 标签标准。也就是命名必须满足如下规则：
+
+- 最多 63 个字符
+- 只能包含小写字母、数字，以及 '-'
+- 必须以字母开头
+- 必须以字母数字结尾
 
 <!--
 ### Path Segment Names
@@ -109,9 +140,9 @@ not contain "/" or "%".
 换句话说，其名称不能是 `.`、`..`，也不可以包含 `/` 或 `%` 这些字符。
 
 <!--
-Here’s an example manifest for a Pod named `nginx-demo`.
+Here's an example manifest for a Pod named `nginx-demo`.
 -->
-下面是一个名为`nginx-demo`的 Pod 的配置清单：
+下面是一个名为 `nginx-demo` 的 Pod 的配置清单：
 
 ```yaml
 apiVersion: v1
@@ -126,10 +157,10 @@ spec:
     - containerPort: 80
 ```
 
+{{< note >}}
 <!--
 Some resource types have additional restrictions on their names.
 -->
-{{< note >}}
 某些资源类型可能具有额外的命名约束。
 {{< /note >}}
 
@@ -141,16 +172,14 @@ Some resource types have additional restrictions on their names.
 Kubernetes UIDs are universally unique identifiers (also known as UUIDs).
 UUIDs are standardized as ISO/IEC 9834-8 and as ITU-T X.667.
 -->
-Kubernetes UIDs 是全局唯一标识符（也叫 UUIDs）。
-UUIDs 是标准化的，见 ISO/IEC 9834-8 和 ITU-T X.667.  
+Kubernetes UID 是全局唯一标识符（也叫 UUIDs）。
+UUIDs 是标准化的，见 ISO/IEC 9834-8 和 ITU-T X.667。
 
 ## {{% heading "whatsnext" %}}
 
 <!--
 * Read about [labels](/docs/concepts/overview/working-with-objects/labels/) in Kubernetes.
-* See the [Identifiers and Names in Kubernetes](https://git.k8s.io/community/contributors/design-proposals/architecture/identifiers.md) design document.
+* See the [Identifiers and Names in Kubernetes](https://git.k8s.io/design-proposals-archive/architecture/identifiers.md) design document.
 -->
-* 进一步了解 Kubernetes [标签](/zh/docs/concepts/overview/working-with-objects/labels/)
-* 参阅 [Kubernetes 标识符和名称](https://git.k8s.io/community/contributors/design-proposals/architecture/identifiers.md)的设计文档
-
-
+* 进一步了解 Kubernetes [标签](/zh-cn/docs/concepts/overview/working-with-objects/labels/)
+* 参阅 [Kubernetes 标识符和名称](https://git.k8s.io/design-proposals-archive/architecture/identifiers.md)的设计文档
diff --git a/content/zh-cn/docs/concepts/overview/working-with-objects/namespaces.md b/content/zh-cn/docs/concepts/overview/working-with-objects/namespaces.md
new file mode 100644
index 0000000000..89280dde35
--- /dev/null
+++ b/content/zh-cn/docs/concepts/overview/working-with-objects/namespaces.md
@@ -0,0 +1,270 @@
+---
+title: 名字空间
+content_type: concept
+weight: 30
+---
+<!--
+reviewers:
+- derekwaynecarr
+- mikedanese
+- thockin
+title: Namespaces
+content_type: concept
+weight: 30
+-->
+
+<!-- overview -->
+
+<!--
+In Kubernetes, _namespaces_ provides a mechanism for isolating groups of resources within a single cluster. Names of resources need to be unique within a namespace, but not across namespaces. Namespace-based scoping is applicable only for namespaced objects _(e.g. Deployments, Services, etc)_ and not for cluster-wide objects _(e.g. StorageClass, Nodes, PersistentVolumes, etc)_.
+-->
+在 Kubernetes 中，**名字空间（Namespace）**提供一种机制，将同一集群中的资源划分为相互隔离的组。
+同一名字空间内的资源名称要唯一，但跨名字空间时没有这个要求。
+名字空间作用域仅针对带有名字空间的对象，例如 Deployment、Service 等，
+这种作用域对集群访问的对象不适用，例如 StorageClass、Node、PersistentVolume 等。
+
+<!-- body -->
+
+<!--
+## When to Use Multiple Namespaces
+-->
+## 何时使用多个名字空间    {#when-to-use-multiple-namespaces}
+
+<!--
+Namespaces are intended for use in environments with many users spread across multiple
+teams, or projects.  For clusters with a few to tens of users, you should not
+need to create or think about namespaces at all.  Start using namespaces when you
+need the features they provide.
+-->
+名字空间适用于存在很多跨多个团队或项目的用户的场景。对于只有几到几十个用户的集群，根本不需要创建或考虑名字空间。当需要名字空间提供的功能时，请开始使用它们。
+
+<!--
+Namespaces provide a scope for names.  Names of resources need to be unique within a namespace,
+but not across namespaces. Namespaces cannot be nested inside one another and each Kubernetes
+resource can only be in one namespace.
+-->
+名字空间为名称提供了一个范围。资源的名称需要在名字空间内是唯一的，但不能跨名字空间。
+名字空间不能相互嵌套，每个 Kubernetes 资源只能在一个名字空间中。
+
+<!--
+Namespaces are a way to divide cluster resources between multiple users (via [resource quota](/docs/concepts/policy/resource-quotas/)).
+-->
+名字空间是在多个用户之间划分集群资源的一种方法（通过[资源配额](/zh-cn/docs/concepts/policy/resource-quotas/)）。
+
+<!--
+It is not necessary to use multiple namespaces to separate slightly different
+resources, such as different versions of the same software: use
+{{< glossary_tooltip text="labels" term_id="label" >}} to distinguish
+resources within the same namespace.
+-->
+不必使用多个名字空间来分隔仅仅轻微不同的资源，例如同一软件的不同版本：
+应该使用{{< glossary_tooltip text="标签" term_id="label" >}}
+来区分同一名字空间中的不同资源。
+
+<!--
+## Working with Namespaces
+
+Creation and deletion of namespaces are described in the
+[Admin Guide documentation for namespaces](/docs/tasks/administer-cluster/namespaces).
+-->
+## 使用名字空间    {#working-with-namespaces}
+
+名字空间的创建和删除在[名字空间的管理指南文档](/zh-cn/docs/tasks/administer-cluster/namespaces/)描述。
+
+<!--
+Avoid creating namespaces with the prefix `kube-`, since it is reserved for Kubernetes system namespaces.
+-->
+{{< note >}}
+避免使用前缀 `kube-` 创建名字空间，因为它是为 Kubernetes 系统名字空间保留的。
+{{< /note >}}
+
+<!--
+### Viewing namespaces
+
+You can list the current namespaces in a cluster using:
+-->
+### 查看名字空间    {#viewing-namespaces}
+
+你可以使用以下命令列出集群中现存的名字空间：
+
+```shell
+kubectl get namespace
+```
+```
+NAME              STATUS   AGE
+default           Active   1d
+kube-node-lease   Active   1d
+kube-public       Active   1d
+kube-system       Active   1d
+```
+
+<!--
+Kubernetes starts with four initial namespaces:
+
+   * `default` The default namespace for objects with no other namespace
+   * `kube-system` The namespace for objects created by the Kubernetes system
+   * `kube-public` This namespace is created automatically and is readable by all users (including those not authenticated). This namespace is mostly reserved for cluster usage, in case that some resources should be visible and readable publicly throughout the whole cluster. The public aspect of this namespace is only a convention, not a requirement.
+   * `kube-node-lease` This namespace holds [Lease](/docs/reference/kubernetes-api/cluster-resources/lease-v1/)
+      objects associated with each node. Node leases allow the kubelet to send
+      [heartbeats](/docs/concepts/architecture/nodes/#heartbeats) so that the control plane
+      can detect node failure.
+-->
+Kubernetes 会创建四个初始名字空间：
+
+   * `default` 没有指明使用其它名字空间的对象所使用的默认名字空间
+   * `kube-system` Kubernetes 系统创建对象所使用的名字空间
+   * `kube-public` 这个名字空间是自动创建的，所有用户（包括未经过身份验证的用户）都可以读取它。
+      这个名字空间主要用于集群使用，以防某些资源在整个集群中应该是可见和可读的。
+      这个名字空间的公共方面只是一种约定，而不是要求。
+   * `kube-node-lease` 此名字空间用于与各个节点相关的
+     [租约（Lease）](/docs/reference/kubernetes-api/cluster-resources/lease-v1/)对象。
+      节点租期允许 kubelet 发送[心跳](/zh-cn/docs/concepts/architecture/nodes/#heartbeats)，由此控制面能够检测到节点故障。
+
+<!--
+### Setting the namespace for a request
+
+To set the namespace for a current request, use the `--namespace` flag.
+
+For example:
+-->
+### 为请求设置名字空间    {#setting-the-namespace-for-a-request}
+
+要为当前请求设置名字空间，请使用 `--namespace` 参数。
+
+例如：
+
+```shell
+kubectl run nginx --image=nginx --namespace=<名字空间名称>
+kubectl get pods --namespace=<名字空间名称>
+```
+
+<!--
+### Setting the namespace preference
+
+You can permanently save the namespace for all subsequent kubectl commands in that
+context.
+-->
+### 设置名字空间偏好    {#setting-the-namespace-preference}
+
+你可以永久保存名字空间，以用于对应上下文中所有后续 kubectl 命令。
+
+```shell
+kubectl config set-context --current --namespace=<名字空间名称>
+# 验证
+kubectl config view --minify | grep namespace:
+```
+
+<!--
+## Namespaces and DNS
+
+When you create a [Service](/docs/concepts/services-networking/service/),
+it creates a corresponding [DNS entry](/docs/concepts/services-networking/dns-pod-service/).
+-->
+## 名字空间和 DNS   {#namespaces-and-dns}
+
+当你创建一个[服务](/zh-cn/docs/concepts/services-networking/service/)时，
+Kubernetes 会创建一个相应的 [DNS 条目](/zh-cn/docs/concepts/services-networking/dns-pod-service/)。
+
+<!--
+This entry is of the form `<service-name>.<namespace-name>.svc.cluster.local`, which means
+that if a container only uses `<service-name>`, it will resolve to the service which
+is local to a namespace.  This is useful for using the same configuration across
+multiple namespaces such as Development, Staging and Production.  If you want to reach
+across namespaces, you need to use the fully qualified domain name (FQDN).
+-->
+该条目的形式是 `<服务名称>.<名字空间名称>.svc.cluster.local`，这意味着如果容器只使用
+`<服务名称>`，它将被解析到本地名字空间的服务。这对于跨多个名字空间（如开发、测试和生产）
+使用相同的配置非常有用。如果你希望跨名字空间访问，则需要使用完全限定域名（FQDN）。
+
+<!--
+As a result, all namespace names must be valid
+[RFC 1123 DNS labels](/docs/concepts/overview/working-with-objects/names/#dns-label-names).
+-->
+因此，所有的名字空间名称都必须是合法的
+[RFC 1123 DNS 标签](/zh-cn/docs/concepts/overview/working-with-objects/names/#dns-label-names)。
+
+{{< warning >}}
+<!--
+By creating namespaces with the same name as [public top-level
+domains](https://data.iana.org/TLD/tlds-alpha-by-domain.txt), Services in these
+namespaces can have short DNS names that overlap with public DNS records.
+Workloads from any namespace performing a DNS lookup without a [trailing dot](https://datatracker.ietf.org/doc/html/rfc1034#page-8) will
+be redirected to those services, taking precedence over public DNS.
+-->
+通过创建与[公共顶级域名](https://data.iana.org/TLD/tlds-alpha-by-domain.txt)
+同名的名字空间，这些名字空间中的服务可以拥有与公共 DNS 记录重叠的、较短的 DNS 名称。
+所有名字空间中的负载在执行 DNS 查找时，如果查找的名称没有
+[尾部句点](https://datatracker.ietf.org/doc/html/rfc1034#page-8)，
+就会被重定向到这些服务上，因此呈现出比公共 DNS 更高的优先序。
+
+<!--
+To mitigate this, limit privileges for creating namespaces to trusted users. If
+required, you could additionally configure third-party security controls, such
+as [admission
+webhooks](/docs/reference/access-authn-authz/extensible-admission-controllers/),
+to block creating any namespace with the name of [public
+TLDs](https://data.iana.org/TLD/tlds-alpha-by-domain.txt).
+-->
+为了缓解这类问题，需要将创建名字空间的权限授予可信的用户。
+如果需要，你可以额外部署第三方的安全控制机制，例如以
+[准入 Webhook](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/)
+的形式，阻止用户创建与公共 [TLD](https://data.iana.org/TLD/tlds-alpha-by-domain.txt)
+同名的名字空间。
+{{< /warning >}}
+
+<!--
+## Not All Objects are in a Namespace
+-->
+## 并非所有对象都在名字空间中    {#not-all-objects-are-in-a-namespace}
+
+<!--
+Most Kubernetes resources (e.g. pods, services, replication controllers, and others) are
+in some namespaces.  However namespace resources are not themselves in a namespace.
+And low-level resources, such as
+[nodes](/docs/concepts/architecture/nodes/) and
+persistentVolumes, are not in any namespace.
+-->
+大多数 kubernetes 资源（例如 Pod、Service、副本控制器等）都位于某些名字空间中。
+但是名字空间资源本身并不在名字空间中。而且底层资源，例如
+[节点](/zh-cn/docs/concepts/architecture/nodes/)和持久化卷不属于任何名字空间。
+
+<!--
+To see which Kubernetes resources are and aren't in a namespace:
+-->
+查看哪些 Kubernetes 资源在名字空间中，哪些不在名字空间中：
+
+```shell
+# 位于名字空间中的资源
+kubectl api-resources --namespaced=true
+
+# 不在名字空间中的资源
+kubectl api-resources --namespaced=false
+```
+
+<!--
+## Automatic labelling
+-->
+## 自动打标签   {#automatic-labelling}
+
+{{< feature-state state="beta" for_k8s_version="1.21" >}}
+
+<!--
+The Kubernetes control plane sets an immutable {{< glossary_tooltip text="label" term_id="label" >}}
+`kubernetes.io/metadata.name` on all namespaces, provided that the `NamespaceDefaultLabelName`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled.
+The value of the label is the namespace name.
+-->
+Kubernetes 控制面会为所有名字空间设置一个不可变更的
+{{< glossary_tooltip text="标签" term_id="label" >}}
+`kubernetes.io/metadata.name`，只要 `NamespaceDefaultLabelName` 这一
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)
+被启用。标签的值是名字空间的名称。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* Learn more about [creating a new namespace](/docs/tasks/administer-cluster/namespaces/#creating-a-new-namespace).
+* Learn more about [deleting a namespace](/docs/tasks/administer-cluster/namespaces/#deleting-a-namespace).
+-->
+* 进一步了解[建立新的名字空间](/zh-cn/docs/tasks/administer-cluster/namespaces/#creating-a-new-namespace)。
+* 进一步了解[删除名字空间](/zh-cn/docs/tasks/administer-cluster/namespaces/#deleting-a-namespace)。
diff --git a/content/zh/docs/concepts/overview/working-with-objects/object-management.md b/content/zh-cn/docs/concepts/overview/working-with-objects/object-management.md
similarity index 92%
rename from content/zh/docs/concepts/overview/working-with-objects/object-management.md
rename to content/zh-cn/docs/concepts/overview/working-with-objects/object-management.md
index b1dd99ca60..d3dd367df7 100644
--- a/content/zh/docs/concepts/overview/working-with-objects/object-management.md
+++ b/content/zh-cn/docs/concepts/overview/working-with-objects/object-management.md
@@ -318,18 +318,18 @@ Disadvantages compared to imperative object configuration:
 
 <!--
 - [Managing Kubernetes Objects Using Imperative Commands](/docs/tasks/manage-kubernetes-objects/imperative-command/)
-- [Managing Kubernetes Objects Using Object Configuration (Imperative)](/docs/tasks/manage-kubernetes-objects/imperative-config/)
-- [Managing Kubernetes Objects Using Object Configuration (Declarative)](/docs/tasks/manage-kubernetes-objects/declarative-config/)
-- [Managing Kubernetes Objects Using Kustomize (Declarative)](/docs/tasks/manage-kubernetes-objects/kustomization/)
+- [Imperative Management of Kubernetes Objects Using Configuration Files](/docs/tasks/manage-kubernetes-objects/imperative-config/)
+- [Declarative Management of Kubernetes Objects Using Configuration Files](/docs/tasks/manage-kubernetes-objects/declarative-config/)
+- [Declarative Management of Kubernetes Objects Using Kustomize](/docs/tasks/manage-kubernetes-objects/kustomization/)
 - [Kubectl Command Reference](/docs/reference/generated/kubectl/kubectl-commands/)
 - [Kubectl Book](https://kubectl.docs.kubernetes.io)
 - [Kubernetes API Reference](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)
 -->
-- [使用指令式命令管理 Kubernetes 对象](/zh/docs/tasks/manage-kubernetes-objects/imperative-command/)
-- [使用对象配置管理 Kubernetes 对象（指令式）](/zh/docs/tasks/manage-kubernetes-objects/imperative-config/)
-- [使用对象配置管理 Kubernetes 对象（声明式）](/zh/docs/tasks/manage-kubernetes-objects/declarative-config/)
-- [使用 Kustomize（声明式）管理 Kubernetes 对象](/zh/docs/tasks/manage-kubernetes-objects/kustomization/)
+- [使用指令式命令管理 Kubernetes 对象](/zh-cn/docs/tasks/manage-kubernetes-objects/imperative-command/)
+- [使用配置文件对 Kubernetes 对象进行命令式管理](/zh-cn/docs/tasks/manage-kubernetes-objects/imperative-config/)
+- [使用配置文件对 Kubernetes 对象进行声明式管理](/zh-cn/docs/tasks/manage-kubernetes-objects/declarative-config/)
+- [使用 Kustomize 对 Kubernetes 对象进行声明式管理](/zh-cn/docs/tasks/manage-kubernetes-objects/kustomization/)
 - [Kubectl 命令参考](/docs/reference/generated/kubectl/kubectl-commands/)
-- [Kubectl Book](https://kubectl.docs.kubernetes.io)
+- [Kubectl Book](https://kubectl.docs.kubernetes.io/zh/)
 - [Kubernetes API 参考](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)
 
diff --git a/content/zh-cn/docs/concepts/overview/working-with-objects/owners-dependents.md b/content/zh-cn/docs/concepts/overview/working-with-objects/owners-dependents.md
new file mode 100644
index 0000000000..5ae4b8dddc
--- /dev/null
+++ b/content/zh-cn/docs/concepts/overview/working-with-objects/owners-dependents.md
@@ -0,0 +1,171 @@
+---
+title: 属主与附属
+content_type: concept
+weight: 60
+---
+<!-- 
+title: Owners and Dependents
+content_type: concept
+weight: 60
+-->
+
+<!-- overview -->
+
+<!-- 
+In Kubernetes, some objects are *owners* of other objects. For example, a
+{{<glossary_tooltip text="ReplicaSet" term_id="replica-set">}} is the owner of a set of Pods. These owned objects are *dependents*
+of their owner. 
+-->
+
+在 Kubernetes 中，一些对象是其他对象的“属主（Owner）”。
+例如，{{<glossary_tooltip text="ReplicaSet" term_id="replica-set">}} 是一组 Pod 的属主。
+具有属主的对象是属主的“附属（Dependent）”。
+
+<!--
+Ownership is different from the [labels and selectors](/docs/concepts/overview/working-with-objects/labels/)
+mechanism that some resources also use. For example, consider a Service that 
+creates `EndpointSlice` objects. The Service uses labels to allow the control plane to
+determine which `EndpointSlice` objects are used for that Service. In addition
+to the labels, each `EndpointSlice` that is managed on behalf of a Service has
+an owner reference. Owner references help different parts of Kubernetes avoid
+interfering with objects they don’t control. 
+-->
+属主关系不同于一些资源使用的[标签和选择算符](/zh-cn/docs/concepts/overview/working-with-objects/labels/)机制。
+例如，有一个创建 `EndpointSlice` 对象的 Service，
+该 Service 使用标签来让控制平面确定，哪些 `EndpointSlice` 对象属于该 Service。
+除开标签，每个代表 Service 所管理的 `EndpointSlice` 都有一个属主引用。
+属主引用避免 Kubernetes 的不同部分干扰到不受它们控制的对象。
+
+<!--
+## Owner references in object specifications
+
+Dependent objects have a `metadata.ownerReferences` field that references their
+owner object. A valid owner reference consists of the object name and a UID
+within the same namespace as the dependent object. Kubernetes sets the value of
+this field automatically for objects that are dependents of other objects like
+ReplicaSets, DaemonSets, Deployments, Jobs and CronJobs, and ReplicationControllers.
+You can also configure these relationships manually by changing the value of
+this field. However, you usually don't need to and can allow Kubernetes to
+automatically manage the relationships.
+-->
+## 对象规约中的属主引用   {#owner-references-in-object-specifications}
+
+附属对象有一个 `metadata.ownerReferences` 字段，用于引用其属主对象。
+一个有效的属主引用，包含与附属对象同在一个命名空间下的对象名称和一个 UID。
+Kubernetes 自动为一些对象的附属资源设置属主引用的值，
+这些对象包含 ReplicaSet、DaemonSet、Deployment、Job、CronJob、ReplicationController 等。
+你也可以通过改变这个字段的值，来手动配置这些关系。
+然而，通常不需要这么做，你可以让 Kubernetes 自动管理附属关系。
+
+<!--
+Dependent objects also have an `ownerReferences.blockOwnerDeletion` field that
+takes a boolean value and controls whether specific dependents can block garbage
+collection from deleting their owner object. Kubernetes automatically sets this
+field to `true` if a {{<glossary_tooltip text="controller" term_id="controller">}} 
+(for example, the Deployment controller) sets the value of the
+`metadata.ownerReferences` field. You can also set the value of the
+`blockOwnerDeletion` field manually to control which dependents block garbage
+collection.
+
+A Kubernetes admission controller controls user access to change this field for
+dependent resources, based on the delete permissions of the owner. This control
+prevents unauthorized users from delaying owner object deletion.
+-->
+附属对象还有一个 `ownerReferences.blockOwnerDeletion` 字段，该字段使用布尔值，
+用于控制特定的附属对象是否可以阻止垃圾收集删除其属主对象。
+如果{{<glossary_tooltip text="控制器" term_id="controller">}}（例如 Deployment 控制器）
+设置了 `metadata.ownerReferences` 字段的值，Kubernetes 会自动设置
+`blockOwnerDeletion` 的值为 `true`。
+你也可以手动设置 `blockOwnerDeletion` 字段的值，以控制哪些附属对象会阻止垃圾收集。
+
+Kubernetes 准入控制器根据属主的删除权限控制用户访问，以便为附属资源更改此字段。
+这种控制机制可防止未经授权的用户延迟属主对象的删除。
+
+{{< note >}}
+<!--
+Cross-namespace owner references are disallowed by design.
+Namespaced dependents can specify cluster-scoped or namespaced owners.
+A namespaced owner **must** exist in the same namespace as the dependent.
+If it does not, the owner reference is treated as absent, and the dependent
+is subject to deletion once all owners are verified absent.
+
+Cluster-scoped dependents can only specify cluster-scoped owners.
+In v1.20+, if a cluster-scoped dependent specifies a namespaced kind as an owner,
+it is treated as having an unresolvable owner reference, and is not able to be garbage collected.
+
+In v1.20+, if the garbage collector detects an invalid cross-namespace `ownerReference`,
+or a cluster-scoped dependent with an `ownerReference` referencing a namespaced kind, a warning Event 
+with a reason of `OwnerRefInvalidNamespace` and an `involvedObject` of the invalid dependent is reported.
+You can check for that kind of Event by running
+`kubectl get events -A --field-selector=reason=OwnerRefInvalidNamespace`.
+-->
+根据设计，kubernetes 不允许跨名字空间指定属主。
+名字空间范围的附属可以指定集群范围的或者名字空间范围的属主。
+名字空间范围的属主**必须**和该附属处于相同的名字空间。
+如果名字空间范围的属主和附属不在相同的名字空间，那么该属主引用就会被认为是缺失的，
+并且当附属的所有属主引用都被确认不再存在之后，该附属就会被删除。
+
+集群范围的附属只能指定集群范围的属主。
+在 v1.20+ 版本，如果一个集群范围的附属指定了一个名字空间范围类型的属主，
+那么该附属就会被认为是拥有一个不可解析的属主引用，并且它不能够被垃圾回收。
+
+在 v1.20+ 版本，如果垃圾收集器检测到无效的跨名字空间的属主引用，
+或者一个集群范围的附属指定了一个名字空间范围类型的属主，
+那么它就会报告一个警告事件。该事件的原因是 `OwnerRefInvalidNamespace`，
+`involvedObject` 属性中包含无效的附属。
+你可以运行 `kubectl get events -A --field-selector=reason=OwnerRefInvalidNamespace`
+来获取该类型的事件。
+{{< /note >}}
+
+<!--
+## Ownership and finalizers
+
+When you tell Kubernetes to delete a resource, the API server allows the
+managing controller to process any [finalizer rules](/docs/concepts/overview/working-with-objects/finalizers/)
+for the resource. {{<glossary_tooltip text="Finalizers" term_id="finalizer">}}
+prevent accidental deletion of resources your cluster may still need to function
+correctly. For example, if you try to delete a `PersistentVolume` that is still
+in use by a Pod, the deletion does not happen immediately because the
+`PersistentVolume` has the `kubernetes.io/pv-protection` finalizer on it.
+Instead, the volume remains in the `Terminating` status until Kubernetes clears
+the finalizer, which only happens after the `PersistentVolume` is no longer
+bound to a Pod. 
+-->
+## 属主关系与 Finalizer   {#ownership-and-finalizers}
+
+当你告诉 Kubernetes 删除一个资源，API 服务器允许管理控制器处理该资源的任何
+[Finalizer 规则](/zh-cn/docs/concepts/overview/working-with-objects/finalizers/)。
+{{<glossary_tooltip text="Finalizer" term_id="finalizer">}}
+防止意外删除你的集群所依赖的、用于正常运作的资源。
+例如，如果你试图删除一个仍被 Pod 使用的 `PersistentVolume`，该资源不会被立即删除，
+因为 `PersistentVolume` 有 `kubernetes.io/pv-protection` Finalizer。
+相反，它将进入 `Terminating` 状态，直到 Kubernetes 清除这个 Finalizer，
+而这种情况只会发生在 `PersistentVolume` 不再被挂载到 Pod 上时。
+
+<!--
+Kubernetes also adds finalizers to an owner resource when you use either
+[foreground or orphan cascading deletion](/docs/concepts/architecture/garbage-collection/#cascading-deletion).
+In foreground deletion, it adds the `foreground` finalizer so that the
+controller must delete dependent resources that also have
+`ownerReferences.blockOwnerDeletion=true` before it deletes the owner. If you
+specify an orphan deletion policy, Kubernetes adds the `orphan` finalizer so
+that the controller ignores dependent resources after it deletes the owner
+object. 
+-->
+当你使用[前台或孤立级联删除](/zh-cn/docs/concepts/architecture/garbage-collection/#cascading-deletion)时，
+Kubernetes 也会向属主资源添加 Finalizer。
+在前台删除中，会添加 `foreground` Finalizer，这样控制器必须在删除了拥有
+`ownerReferences.blockOwnerDeletion=true` 的附属资源后，才能删除属主对象。
+如果你指定了孤立删除策略，Kubernetes 会添加 `orphan` Finalizer，
+这样控制器在删除属主对象后，会忽略附属资源。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* Learn more about [Kubernetes finalizers](/docs/concepts/overview/working-with-objects/finalizers/).
+* Learn about [garbage collection](/docs/concepts/architecture/garbage-collection).
+* Read the API reference for [object metadata](/docs/reference/kubernetes-api/common-definitions/object-meta/#System).
+-->
+* 了解更多关于 [Kubernetes Finalizer](/zh-cn/docs/concepts/overview/working-with-objects/finalizers/)。
+* 了解关于[垃圾收集](/zh-cn/docs/concepts/architecture/garbage-collection)。
+* 阅读[对象元数据](/zh-cn/docs/reference/kubernetes-api/common-definitions/object-meta/#System)的 API 参考文档。
diff --git a/content/zh/docs/concepts/policy/_index.md b/content/zh-cn/docs/concepts/policy/_index.md
similarity index 100%
rename from content/zh/docs/concepts/policy/_index.md
rename to content/zh-cn/docs/concepts/policy/_index.md
diff --git a/content/zh/docs/concepts/policy/limit-range.md b/content/zh-cn/docs/concepts/policy/limit-range.md
similarity index 73%
rename from content/zh/docs/concepts/policy/limit-range.md
rename to content/zh-cn/docs/concepts/policy/limit-range.md
index 8412d9e80c..3eb7f7eee6 100644
--- a/content/zh/docs/concepts/policy/limit-range.md
+++ b/content/zh-cn/docs/concepts/policy/limit-range.md
@@ -11,7 +11,7 @@ By default, containers run with unbounded [compute resources](/docs/concepts/con
 With resource quotas, cluster administrators can restrict resource consumption and creation on a {{< glossary_tooltip text="namespace" term_id="namespace" >}} basis.
 Within a namespace, a Pod or Container can consume as much CPU and memory as defined by the namespace's resource quota. There is a concern that one Pod or Container could monopolize all available resources. A LimitRange is a policy to constrain resource allocations (to Pods or Containers) in a namespace.
 -->
-默认情况下， Kubernetes 集群上的容器运行使用的[计算资源](/zh/docs/concepts/configuration/manage-resources-containers/)没有限制。
+默认情况下， Kubernetes 集群上的容器运行使用的[计算资源](/zh-cn/docs/concepts/configuration/manage-resources-containers/)没有限制。
 使用资源配额，集群管理员可以以{{< glossary_tooltip text="名字空间" term_id="namespace" >}}为单位，限制其资源的使用与创建。
 在命名空间中，一个 Pod 或 Container 最多能够使用命名空间的资源配额所定义的 CPU 和内存用量。
 有人担心，一个 Pod 或 Container 会垄断所有可用的资源。
@@ -28,7 +28,7 @@ A _LimitRange_ provides constraints that can:
 - Set default request/limit for compute resources in a namespace and automatically inject them to Containers at runtime.
 -->
 
-一个 _LimitRange（限制范围）_ 对象提供的限制能够做到：
+一个 **LimitRange（限制范围）** 对象提供的限制能够做到：
 
 - 在一个命名空间中实施对每个 Pod 或 Container 最小和最大的资源使用量的限制。
 - 在一个命名空间中实施对每个 PersistentVolumeClaim 能申请的最小和最大的存储空间大小的限制。
@@ -40,25 +40,26 @@ A _LimitRange_ provides constraints that can:
 
 LimitRange support has been enabled by default since Kubernetes 1.10.
 
-LimitRange support is enabled by default for many Kubernetes distributions.
+A LimitRange is enforced in a particular namespace when there is a
+LimitRange object in that namespace.
 -->
 ## 启用 LimitRange
 
 对 LimitRange 的支持自 Kubernetes 1.10 版本默认启用。
 
-LimitRange 支持在很多 Kubernetes 发行版本中也是默认启用的。
+当某命名空间中有一个 LimitRange 对象时，将在该命名空间中实施 LimitRange 限制。
 
 <!--
 The name of a LimitRange object must be a valid
 [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 -->
 LimitRange 的名称必须是合法的
-[DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
 
 <!--
 ### Overview of Limit Range
 
-- The administrator creates one `LimitRange` in one namespace.
+- The administrator creates one LimitRange in one namespace.
 - Users create resources like Pods, Containers, and PersistentVolumeClaims in the namespace.
 - The `LimitRanger` admission controller enforces defaults and limits for all Pods and Containers that do not set compute resource requirements and tracks usage to ensure it does not exceed resource minimum, maximum and ratio defined in any LimitRange present in the namespace.
 - If creating or updating a resource (Pod, Container, PersistentVolumeClaim) that violates a LimitRange constraint, the request to the API server will fail with an HTTP status code `403 FORBIDDEN` and a message explaining the constraint that have been violated.
@@ -106,26 +107,26 @@ Neither contention nor changes to a LimitRange will affect already created resou
 ## {{% heading "whatsnext" %}}
 
 <!--
-See [LimitRanger design doc](https://git.k8s.io/community/contributors/design-proposals/resource-management/admission_control_limit_range.md) for more information.
+Refer to the [LimitRanger design document](https://git.k8s.io/design-proposals-archive/resource-management/admission_control_limit_range.md) for more information.
 -->
-参阅 [LimitRanger 设计文档](https://git.k8s.io/community/contributors/design-proposals/resource-management/admission_control_limit_range.md)获取更多信息。
+参阅 [LimitRanger 设计文档](https://git.k8s.io/design-proposals-archive/resource-management/admission_control_limit_range.md)获取更多信息。
 
 <!--
 For examples on using limits, see:
 
-- See [how to configure minimum and maximum CPU constraints per namespace](/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/).
-- See [how to configure minimum and maximum Memory constraints per namespace](/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/).
-- See [how to configure default CPU Requests and Limits per namespace](/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/).
-- See [how to configure default Memory Requests and Limits per namespace](/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/).
-- Check [how to configure minimum and maximum Storage consumption per namespace](/docs/tasks/administer-cluster/limit-storage-consumption/#limitrange-to-limit-requests-for-storage).
-- See a [detailed example on configuring quota per namespace](/docs/tasks/administer-cluster/quota-memory-cpu-namespace/).
+- [how to configure minimum and maximum CPU constraints per namespace](/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/).
+- [how to configure minimum and maximum Memory constraints per namespace](/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/).
+- [how to configure default CPU Requests and Limits per namespace](/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/).
+- [how to configure default Memory Requests and Limits per namespace](/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/).
+- [how to configure minimum and maximum Storage consumption per namespace](/docs/tasks/administer-cluster/limit-storage-consumption/#limitrange-to-limit-requests-for-storage).
+- a [detailed example on configuring quota per namespace](/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/).
 -->
-关于使用限值的例子，可参看
+关于使用限值的例子，可参阅：
 
-- [如何配置每个命名空间最小和最大的 CPU 约束](/zh/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)。
-- [如何配置每个命名空间最小和最大的内存约束](/zh/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)。
-- [如何配置每个命名空间默认的 CPU 申请值和限制值](/zh/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/)。
-- [如何配置每个命名空间默认的内存申请值和限制值](/zh/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)。
-- [如何配置每个命名空间最小和最大存储使用量](/zh/docs/tasks/administer-cluster/limit-storage-consumption/#limitrange-to-limit-requests-for-storage)。
-- [配置每个命名空间的配额的详细例子](/zh/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)。
+- [如何配置每个命名空间最小和最大的 CPU 约束](/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)。
+- [如何配置每个命名空间最小和最大的内存约束](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)。
+- [如何配置每个命名空间默认的 CPU 申请值和限制值](/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/)。
+- [如何配置每个命名空间默认的内存申请值和限制值](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)。
+- [如何配置每个命名空间最小和最大存储使用量](/zh-cn/docs/tasks/administer-cluster/limit-storage-consumption/#limitrange-to-limit-requests-for-storage)。
+- [配置每个命名空间的配额的详细例子](/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)。
 
diff --git a/content/zh/docs/concepts/policy/node-resource-managers.md b/content/zh-cn/docs/concepts/policy/node-resource-managers.md
similarity index 79%
rename from content/zh/docs/concepts/policy/node-resource-managers.md
rename to content/zh-cn/docs/concepts/policy/node-resource-managers.md
index 73f28da383..5636547075 100644
--- a/content/zh/docs/concepts/policy/node-resource-managers.md
+++ b/content/zh-cn/docs/concepts/policy/node-resource-managers.md
@@ -30,7 +30,7 @@ The main manager, the Topology Manager, is a Kubelet component that co-ordinates
 The configuration of individual managers is elaborated in dedicated documents:
 -->
 主管理器，也叫拓扑管理器（Topology Manager），是一个 Kubelet 组件，
-它通过[策略](/zh/docs/tasks/administer-cluster/topology-manager/)，
+它通过[策略](/zh-cn/docs/tasks/administer-cluster/topology-manager/)，
 协调全局的资源管理过程。
 
 各个管理器的配置方式会在专项文档中详细阐述：
@@ -40,6 +40,6 @@ The configuration of individual managers is elaborated in dedicated documents:
 - [Device Manager](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/#device-plugin-integration-with-the-topology-manager)
 - [Memory Manager Policies](/docs/tasks/administer-cluster/memory-manager/)
 -->
-- [CPU 管理器策略](/zh/docs/tasks/administer-cluster/cpu-management-policies/)
-- [设备管理器](/zh/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/#device-plugin-integration-with-the-topology-manager)
-- [内存管理器策略](/zh/docs/tasks/administer-cluster/memory-manager/)
+- [CPU 管理器策略](/zh-cn/docs/tasks/administer-cluster/cpu-management-policies/)
+- [设备管理器](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/#device-plugin-integration-with-the-topology-manager)
+- [内存管理器策略](/zh-cn/docs/tasks/administer-cluster/memory-manager/)
diff --git a/content/zh/docs/concepts/policy/pid-limiting.md b/content/zh-cn/docs/concepts/policy/pid-limiting.md
similarity index 88%
rename from content/zh/docs/concepts/policy/pid-limiting.md
rename to content/zh-cn/docs/concepts/policy/pid-limiting.md
index 212146208a..61fed9674b 100644
--- a/content/zh/docs/concepts/policy/pid-limiting.md
+++ b/content/zh-cn/docs/concepts/policy/pid-limiting.md
@@ -17,7 +17,8 @@ weight: 40
 {{< feature-state for_k8s_version="v1.20" state="stable" >}}
 
 <!--
-Kubernetes allow you to limit the number of process IDs (PIDs) that a {{< glossary_tooltip term_id="Pod" text="Pod" >}} can use.
+Kubernetes allow you to limit the number of process IDs (PIDs) that a
+{{< glossary_tooltip term_id="Pod" text="Pod" >}} can use.
 You can also reserve a number of allocatable PIDs for each {{< glossary_tooltip term_id="node" text="node" >}}
 for use by the operating system and daemons (rather than by Pods).
 -->
@@ -104,7 +105,7 @@ and limits. However, you specify it in a different way: rather than defining a
 Pod's resource limit in the `.spec` for a Pod, you configure the limit as a
 setting on the kubelet. Pod-defined PID limits are not currently supported.
 -->
-PID 限制是与[计算资源](/zh/docs/concepts/configuration/manage-resources-containers/)
+PID 限制是与[计算资源](/zh-cn/docs/concepts/configuration/manage-resources-containers/)
 请求和限制相辅相成的一种机制。不过，你需要用一种不同的方式来设置这一限制：
 你需要将其设置到 kubelet 上而不是在 Pod 的 `.spec` 中为 Pod 设置资源限制。
 目前还不支持在 Pod 级别设置 PID 限制。
@@ -145,7 +146,7 @@ gate](/docs/reference/command-line-tools-reference/feature-gates/)
 `SupportNodePidsLimit` to work.
 -->
 在 Kubernetes 1.20 版本之前，在节点级别通过 PID 资源限制预留 PID 的能力
-需要启用[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
+需要启用[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)
 `SupportNodePidsLimit` 才行。
 {{< /note >}}
 
@@ -155,8 +156,8 @@ gate](/docs/reference/command-line-tools-reference/feature-gates/)
 Kubernetes allows you to limit the number of processes running in a Pod. You
 specify this limit at the node level, rather than configuring it as a resource
 limit for a particular Pod. Each Node can have a different PID limit.  
-To configure the limit, you can specify the command line parameter
-`--pod-max-pids` to the kubelet, or set `PodPidsLimit` in the kubelet
+To configure the limit, you can specify the command line parameter `--pod-max-pids`
+to the kubelet, or set `PodPidsLimit` in the kubelet
 [configuration file](/docs/tasks/administer-cluster/kubelet-config-file/).
 -->
 ## Pod 级别 PID 限制   {#pod-pid-limits}
@@ -165,7 +166,7 @@ Kubernetes 允许你限制 Pod 中运行的进程个数。你可以在节点级
 而不是为特定的 Pod 来将其设置为资源限制。
 每个节点都可以有不同的 PID 限制设置。
 要设置限制值，你可以设置 kubelet 的命令行参数 `--pod-max-pids`，或者
-在 kubelet 的[配置文件](/zh/docs/tasks/administer-cluster/kubelet-config-file/)
+在 kubelet 的[配置文件](/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/)
 中设置 `PodPidsLimit`。
 
 {{< note >}}
@@ -175,7 +176,7 @@ the [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
 `SupportPodPidsLimit` to work.
 -->
 在 Kubernetes 1.20 版本之前，为 Pod 设置 PID 资源限制的能力需要启用
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)
 `SupportNodePidsLimit` 才行。
 {{< /note >}}
 
@@ -183,9 +184,12 @@ the [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
 ## PID based eviction
 
 You can configure kubelet to start terminating a Pod when it is misbehaving and consuming abnormal amount of resources.
-This feature is called eviction. You can [Configure Out of Resource Handling](/docs/tasks/administer-cluster/out-of-resource) for various eviction signals.
+This feature is called eviction. You can
+[Configure Out of Resource Handling](/docs/concepts/scheduling-eviction/node-pressure-eviction/)
+for various eviction signals.
 Use `pid.available` eviction signal to configure the threshold for number of PIDs used by Pod.
-You can set soft and hard eviction policies. However, even with the hard eviction policy, if the number of PIDs growing very fast,
+You can set soft and hard eviction policies.
+However, even with the hard eviction policy, if the number of PIDs growing very fast,
 node can still get into unstable state by hitting the node PIDs limit.
 Eviction signal value is calculated periodically and does NOT enforce the limit.
 -->
@@ -193,7 +197,7 @@ Eviction signal value is calculated periodically and does NOT enforce the limit.
 
 你可以配置 kubelet 使之在 Pod 行为不正常或者消耗不正常数量资源的时候将其终止。
 这一特性称作驱逐。你可以针对不同的驱逐信号
-[配置资源不足的处理](/zh/docs/tasks/administer-cluster/out-of-resource)。
+[配置资源不足的处理](/zh-cn/docs/concepts/scheduling-eviction/node-pressure-eviction/)。
 使用 `pid.available` 驱逐信号来配置 Pod 使用的 PID 个数的阈值。
 你可以设置硬性的和软性的驱逐策略。不过，即使使用硬性的驱逐策略，
 如果 PID 个数增长过快，节点仍然可能因为触及节点 PID 限制而进入一种不稳定状态。
@@ -219,15 +223,16 @@ Pod 行为不正常而没有 PID 可用。
 
 <!--
 - Refer to the [PID Limiting enhancement document](https://github.com/kubernetes/enhancements/blob/097b4d8276bc9564e56adf72505d43ce9bc5e9e8/keps/sig-node/20190129-pid-limiting.md) for more information.
-- For historical context, read [Process ID Limiting for Stability Improvements in Kubernetes 1.14](/blog/2019/04/15/process-id-limiting-for-stability-improvements-in-kubernetes-1.14/).
+- For historical context, read
+  [Process ID Limiting for Stability Improvements in Kubernetes 1.14](/blog/2019/04/15/process-id-limiting-for-stability-improvements-in-kubernetes-1.14/).
 - Read [Managing Resources for Containers](/docs/concepts/configuration/manage-resources-containers/).
-- Learn how to [Configure Out of Resource Handling](/docs/tasks/administer-cluster/out-of-resource).
+- Learn how to [Configure Out of Resource Handling](/docs/concepts/scheduling-eviction/node-pressure-eviction/).
 -->
 - 参阅 [PID 约束改进文档](https://github.com/kubernetes/enhancements/blob/097b4d8276bc9564e56adf72505d43ce9bc5e9e8/keps/sig-node/20190129-pid-limiting.md)
   以了解更多信息。
 - 关于历史背景，请阅读
   [Kubernetes 1.14 中限制进程 ID 以提升稳定性](/blog/2019/04/15/process-id-limiting-for-stability-improvements-in-kubernetes-1.14/)
   的博文。
-- 请阅读[为容器管理资源](/zh/docs/concepts/configuration/manage-resources-containers/)。
-- 学习如何[配置资源不足情况的处理](/zh/docs/tasks/administer-cluster/out-of-resource)。
+- 请阅读[为容器管理资源](/zh-cn/docs/concepts/configuration/manage-resources-containers/)。
+- 学习如何[配置资源不足情况的处理](/zh-cn/docs/concepts/scheduling-eviction/node-pressure-eviction/)。
 
diff --git a/content/zh/docs/concepts/policy/resource-quotas.md b/content/zh-cn/docs/concepts/policy/resource-quotas.md
similarity index 86%
rename from content/zh/docs/concepts/policy/resource-quotas.md
rename to content/zh-cn/docs/concepts/policy/resource-quotas.md
index 23cc9a2308..ede0a5f27e 100644
--- a/content/zh/docs/concepts/policy/resource-quotas.md
+++ b/content/zh-cn/docs/concepts/policy/resource-quotas.md
@@ -33,7 +33,7 @@ be created in a namespace by type, as well as the total amount of compute resour
 be consumed by resources in that namespace.
 -->
 资源配额，通过 `ResourceQuota` 对象来定义，对每个命名空间的资源消耗总量提供限制。
-它可以限制命名空间中某种类型的对象的总数目上限，也可以限制命令空间中的 Pod 可以使用的计算资源的总上限。
+它可以限制命名空间中某种类型的对象的总数目上限，也可以限制命名空间中的 Pod 可以使用的计算资源的总上限。
 
 <!--
 Resource quotas work like this:
@@ -41,8 +41,7 @@ Resource quotas work like this:
 资源配额的工作方式如下：
 
 <!--
-- Different teams work in different namespaces.  Currently this is voluntary, but
-  support for making this mandatory via ACLs is planned.
+- Different teams work in different namespaces. This can be enforced with [RBAC](/docs/reference/access-authn-authz/rbac/).
 - The administrator creates one ResourceQuota for each namespace.
 - Users create resources (pods, services, etc.) in the namespace, and the quota system
   tracks usage to ensure it does not exceed hard resource limits defined in a ResourceQuota.
@@ -53,26 +52,26 @@ Resource quotas work like this:
   the `LimitRanger` admission controller to force defaults for pods that make no compute resource requirements.
   See the [walkthrough](/docs/tasks/administer-cluster/quota-memory-cpu-namespace/) for an example of how to avoid this problem.
 -->
-- 不同的团队可以在不同的命名空间下工作，目前这是非约束性的，在未来的版本中可能会通过
-  ACL (Access Control List 访问控制列表) 来实现强制性约束。
+- 不同的团队可以在不同的命名空间下工作。这可以通过
+  [RBAC](/zh-cn/docs/reference/access-authn-authz/rbac/) 强制执行。
 - 集群管理员可以为每个命名空间创建一个或多个 ResourceQuota 对象。
-- 当用户在命名空间下创建资源（如 Pod、Service 等）时，Kubernetes 的配额系统会
-  跟踪集群的资源使用情况，以确保使用的资源用量不超过 ResourceQuota 中定义的硬性资源限额。
+- 当用户在命名空间下创建资源（如 Pod、Service 等）时，Kubernetes 的配额系统会跟踪集群的资源使用情况，
+  以确保使用的资源用量不超过 ResourceQuota 中定义的硬性资源限额。
 - 如果资源创建或者更新请求违反了配额约束，那么该请求会报错（HTTP 403 FORBIDDEN），
   并在消息中给出有可能违反的约束。
-- 如果命名空间下的计算资源 （如 `cpu` 和 `memory`）的配额被启用，则用户必须为
-  这些资源设定请求值（request）和约束值（limit），否则配额系统将拒绝 Pod 的创建。
+- 如果命名空间下的计算资源 （如 `cpu` 和 `memory`）的配额被启用，
+  则用户必须为这些资源设定请求值（request）和约束值（limit），否则配额系统将拒绝 Pod 的创建。
   提示: 可使用 `LimitRanger` 准入控制器来为没有设置计算资源需求的 Pod 设置默认值。
   
   若想避免这类问题，请参考
-  [演练](/zh/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)示例。
+  [演练](/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)示例。
 
 <!--
 The name of a ResourceQuota object must be a valid
 [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 -->
 ResourceQuota 对象的名称必须是合法的
-[DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
 
 <!--
 Examples of policies that could be created using namespaces and quotas are:
@@ -102,8 +101,9 @@ Neither contention nor changes to quota will affect already created resources.
 <!--
 ## Enabling Resource Quota
 
-Resource Quota support is enabled by default for many Kubernetes distributions.  It is
-enabled when the {{< glossary_tooltip text="API server" term_id="kube-apiserver" >}} `--enable-admission-plugins=` flag has `ResourceQuota` as
+Resource Quota support is enabled by default for many Kubernetes distributions. It is
+enabled when the {{< glossary_tooltip text="API server" term_id="kube-apiserver" >}}
+`--enable-admission-plugins=` flag has `ResourceQuota` as
 one of its arguments.
 -->
 ## 启用资源配额
@@ -122,12 +122,14 @@ ResourceQuota in that namespace.
 <!--
 ## Compute Resource Quota
 
-You can limit the total sum of [compute resources](/docs/concepts/configuration/manage-resources-containers/) that can be requested in a given namespace.
+You can limit the total sum of
+[compute resources](/docs/concepts/configuration/manage-resources-containers/)
+that can be requested in a given namespace.
 -->
 ## 计算资源配额
 
 用户可以对给定命名空间下的可被请求的
-[计算资源](/zh/docs/concepts/configuration/manage-resources-containers/)
+[计算资源](/zh-cn/docs/concepts/configuration/manage-resources-containers/)
 总量进行限制。
 
 <!--
@@ -160,12 +162,12 @@ The following resource types are supported:
 ### Resource Quota For Extended Resources
 
 In addition to the resources mentioned above, in release 1.10, quota support for
-[extended resources](/docs/concepts/configuration/manage-compute-resources-container/#extended-resources) is added.
+[extended resources](/docs/concepts/configuration/manage-resources-containers/#extended-resources) is added.
 -->
 ### 扩展资源的资源配额
 
 除上述资源外，在 Kubernetes 1.10 版本中，还添加了对
-[扩展资源](/zh/docs/concepts/configuration/manage-resources-containers/#extended-resources)
+[扩展资源](/zh-cn/docs/concepts/configuration/manage-resources-containers/#extended-resources)
 的支持。
 
 <!--
@@ -199,7 +201,7 @@ In addition, you can limit consumption of storage resources based on associated
 -->
 ## 存储资源配额
 
-用户可以对给定命名空间下的[存储资源](/zh/docs/concepts/storage/persistent-volumes/)
+用户可以对给定命名空间下的[存储资源](/zh-cn/docs/concepts/storage/persistent-volumes/)
 总量进行限制。
 
 此外，还可以根据相关的存储类（Storage Class）来限制存储资源的消耗。
@@ -215,9 +217,9 @@ In addition, you can limit consumption of storage resources based on associated
 | 资源名称 | 描述 |
 | --------------------- | ----------------------------------------------------------- |
 | `requests.storage` | 所有 PVC，存储资源的需求总量不能超过该值。 |
-| `persistentvolumeclaims` | 在该命名空间中所允许的 [PVC](/zh/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims) 总量。 |
+| `persistentvolumeclaims` | 在该命名空间中所允许的 [PVC](/zh-cn/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims) 总量。 |
 | `<storage-class-name>.storageclass.storage.k8s.io/requests.storage` | 在所有与 `<storage-class-name>` 相关的持久卷申领中，存储请求的总和不能超过该值。 |
-| `<storage-class-name>.storageclass.storage.k8s.io/persistentvolumeclaims` |  在与 storage-class-name 相关的所有持久卷申领中，命名空间中可以存在的[持久卷申领](/zh/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims)总数。 |
+| `<storage-class-name>.storageclass.storage.k8s.io/persistentvolumeclaims` |  在与 storage-class-name 相关的所有持久卷申领中，命名空间中可以存在的[持久卷申领](/zh-cn/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims)总数。 |
 
 <!--
 For example, if an operator wants to quota storage with `gold` storage class separate from `bronze` storage class, the operator can
@@ -249,11 +251,13 @@ In release 1.8, quota support for local ephemeral storage is added as an alpha f
 
 {{< note >}}
 <!--
-When using a CRI container runtime, container logs will count against the ephemeral storage quota. This can result in the unexpected eviction of pods that have exhausted their storage quotas. Refer to [Logging Architecture](/docs/concepts/cluster-administration/logging/) for details.
+When using a CRI container runtime, container logs will count against the ephemeral storage quota.
+This can result in the unexpected eviction of pods that have exhausted their storage quotas.
+Refer to [Logging Architecture](/docs/concepts/cluster-administration/logging/) for details.
 -->
 如果所使用的是 CRI 容器运行时，容器日志会被计入临时存储配额。
 这可能会导致存储配额耗尽的 Pods 被意外地驱逐出节点。
-参考[日志架构](/zh/docs/concepts/cluster-administration/logging/)
+参考[日志架构](/zh-cn/docs/concepts/cluster-administration/logging/)
 了解详细信息。
 {{< /note >}}
 
@@ -313,12 +317,9 @@ Job 而导致集群拒绝服务。
 
 <!--
 It is possible to do generic object count quota on a limited set of resources.
-In addition, it is possible to further constrain quota for particular resources by their type.
-
 The following types are supported:
 -->
 对有限的一组资源上实施一般性的对象数量配额也是可能的。
-此外，还可以进一步按资源的类型设置其配额。
 
 支持以下类型：
 
@@ -338,7 +339,7 @@ The following types are supported:
 | 资源名称 | 描述 |
 | ------------------------------- | ------------------------------------------------- |
 | `configmaps` | 在该命名空间中允许存在的 ConfigMap 总数上限。 |
-| `persistentvolumeclaims` | 在该命名空间中允许存在的 [PVC](/zh/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims) 的总数上限。 |
+| `persistentvolumeclaims` | 在该命名空间中允许存在的 [PVC](/zh-cn/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims) 的总数上限。 |
 | `pods` | 在该命名空间中允许存在的非终止状态的 Pod 总数上限。Pod 终止状态等价于 Pod 的 `.status.phase in (Failed, Succeeded)` 为真。 |
 | `replicationcontrollers` | 在该命名空间中允许存在的 ReplicationController 总数上限。 |
 | `resourcequotas` | 在该命名空间中允许存在的 ResourceQuota 总数上限。 |
@@ -382,7 +383,7 @@ Resources specified on the quota outside of the allowed set results in a validat
 | `NotTerminating` | Match pods where `.spec.activeDeadlineSeconds is nil` |
 | `BestEffort` | Match pods that have best effort quality of service. |
 | `NotBestEffort` | Match pods that do not have best effort quality of service. |
-| `PriorityClass` | Match pods that references the specified [priority class](/docs/concepts/configuration/pod-priority-preemption). |
+| `PriorityClass` | Match pods that references the specified [priority class](/docs/concepts/scheduling-eviction/pod-priority-preemption). |
 | `CrossNamespacePodAffinity` | Match pods that have cross-namespace pod [(anti)affinity terms](/docs/concepts/scheduling-eviction/assign-pod-node). |
 -->
 | 作用域 | 描述 |
@@ -391,8 +392,8 @@ Resources specified on the quota outside of the allowed set results in a validat
 | `NotTerminating` | 匹配所有 `spec.activeDeadlineSeconds` 是 nil 的 Pod。 |
 | `BestEffort` | 匹配所有 Qos 是 BestEffort 的 Pod。 |
 | `NotBestEffort` | 匹配所有 Qos 不是 BestEffort 的 Pod。 |
-| `PriorityClass` | 匹配所有引用了所指定的[优先级类](/zh/docs/concepts/configuration/pod-priority-preemption)的 Pods。 |
-| `CrossNamespacePodAffinity` | 匹配那些设置了跨名字空间 [（反）亲和性条件](/zh/docs/concepts/scheduling-eviction/assign-pod-node)的 Pod。 |
+| `PriorityClass` | 匹配所有引用了所指定的[优先级类](/zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption)的 Pods。 |
+| `CrossNamespacePodAffinity` | 匹配那些设置了跨名字空间 [（反）亲和性条件](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node)的 Pod。 |
 
 <!--
 The `BestEffort` scope restricts a quota to tracking the following resource:
@@ -463,10 +464,10 @@ one value. For example:
 ```
 
 <!--
-If the `operator` is `Exists` or `DoesNotExist`, the `values field must *NOT* be
+If the `operator` is `Exists` or `DoesNotExist`, the `values` field must *NOT* be
 specified.
 -->
-如果 `operator` 为 `Exists` 或 `DoesNotExist`，则*不*可以设置 `values` 字段。
+如果 `operator` 为 `Exists` 或 `DoesNotExist`，则**不**可以设置 `values` 字段。
 
 <!--
 ### Resource Quota Per PriorityClass
@@ -476,11 +477,11 @@ specified.
 {{< feature-state for_k8s_version="v1.17" state="stable" >}}
 
 <!--
-Pods can be created at a specific [priority](/docs/concepts/configuration/pod-priority-preemption/#pod-priority).
+Pods can be created at a specific [priority](/docs/concepts/scheduling-eviction/pod-priority-preemption/#pod-priority).
 You can control a pod's consumption of system resources based on a pod's priority, by using the `scopeSelector`
 field in the quota spec.
 -->
-Pod 可以创建为特定的[优先级](/zh/docs/concepts/configuration/pod-priority-preemption/#pod-priority)。
+Pod 可以创建为特定的[优先级](/zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption/#pod-priority)。
 通过使用配额规约中的 `scopeSelector` 字段，用户可以根据 Pod 的优先级控制其系统资源消耗。
 
 <!--
@@ -489,10 +490,11 @@ A quota is matched and consumed only if `scopeSelector` in the quota spec select
 仅当配额规范中的 `scopeSelector` 字段选择到某 Pod 时，配额机制才会匹配和计量 Pod 的资源消耗。
 
 <!--
-When quota is scoped for priority class using `scopeSelector` field, quota object is restricted to track only following resources:
+When quota is scoped for priority class using `scopeSelector` field, quota object
+is restricted to track only following resources:
 -->
-如果配额对象通过 `scopeSelector` 字段设置其作用域为优先级类，则配额对象只能
-跟踪以下资源：
+如果配额对象通过 `scopeSelector` 字段设置其作用域为优先级类，
+则配额对象只能跟踪以下资源：
 
 * `pods`
 * `cpu`
@@ -702,34 +704,34 @@ pods        0     10
 -->
 ### 跨名字空间的 Pod 亲和性配额   {#cross-namespace-pod-affinity-quota}
 
-{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 <!--
 Operators can use `CrossNamespacePodAffinity` quota scope to limit which namespaces are allowed to
 have pods with affinity terms that cross namespaces. Specifically, it controls which pods are allowed
 to set `namespaces` or `namespaceSelector` fields in pod affinity terms.
 -->
-集群运维人员可以使用 `CrossNamespacePodAffinity` 配额作用域来
-限制哪个名字空间中可以存在包含跨名字空间亲和性规则的 Pod。
-更为具体一点，此作用域用来配置哪些 Pod 可以在其 Pod 亲和性规则
-中设置 `namespaces` 或 `namespaceSelector` 字段。
+集群运维人员可以使用 `CrossNamespacePodAffinity`
+配额作用域来限制哪个名字空间中可以存在包含跨名字空间亲和性规则的 Pod。
+更为具体一点，此作用域用来配置哪些 Pod 可以在其 Pod 亲和性规则中设置
+`namespaces` 或 `namespaceSelector` 字段。
 
 <!--
 Preventing users from using cross-namespace affinity terms might be desired since a pod
 with anti-affinity constraints can block pods from all other namespaces 
 from getting scheduled in a failure domain. 
 -->
-禁止用户使用跨名字空间的亲和性规则可能是一种被需要的能力，因为带有
-反亲和性约束的 Pod 可能会阻止所有其他名字空间的 Pod 被调度到某失效域中。
+禁止用户使用跨名字空间的亲和性规则可能是一种被需要的能力，
+因为带有反亲和性约束的 Pod 可能会阻止所有其他名字空间的 Pod 被调度到某失效域中。
 
 <!--
 Using this scope operators can prevent certain namespaces (`foo-ns` in the example below) 
 from having pods that use cross-namespace pod affinity by creating a resource quota object in
 that namespace with `CrossNamespaceAffinity` scope and hard limit of 0:
 -->
-使用此作用域操作符可以避免某些名字空间（例如下面例子中的 `foo-ns`）运行
-特别的 Pod，这类 Pod 使用跨名字空间的 Pod 亲和性约束，在该名字空间中创建
-了作用域为 `CrossNamespaceAffinity` 的、硬性约束为 0 的资源配额对象。
+使用此作用域操作符可以避免某些名字空间（例如下面例子中的 `foo-ns`）运行特别的 Pod，
+这类 Pod 使用跨名字空间的 Pod 亲和性约束，在该名字空间中创建了作用域为
+`CrossNamespaceAffinity` 的、硬性约束为 0 的资源配额对象。
 
 ```yaml
 apiVersion: v1
@@ -748,12 +750,12 @@ spec:
 <!--
 If operators want to disallow using `namespaces` and `namespaceSelector` by default, and 
 only allow it for specific namespaces, they could configure `CrossNamespaceAffinity` 
-as a limited resource by setting the kube-apiserver flag -admission-control-config-file
+as a limited resource by setting the kube-apiserver flag --admission-control-config-file
 to the path of the following configuration file:
 -->
-如果集群运维人员希望默认禁止使用 `namespaces` 和 `namespaceSelector`，而
-仅仅允许在特定名字空间中这样做，他们可以将 `CrossNamespaceAffinity` 作为一个
-被约束的资源。方法是为 `kube-apiserver` 设置标志
+如果集群运维人员希望默认禁止使用 `namespaces` 和 `namespaceSelector`，
+而仅仅允许在特定名字空间中这样做，他们可以将 `CrossNamespaceAffinity`
+作为一个被约束的资源。方法是为 `kube-apiserver` 设置标志
 `--admission-control-config-file`，使之指向如下的配置文件：
 
 ```yaml
@@ -775,21 +777,11 @@ With the above configuration, pods can use `namespaces` and `namespaceSelector`
 if the namespace where they are created have a resource quota object with 
 `CrossNamespaceAffinity` scope and a hard limit greater than or equal to the number of pods using those fields.
 -->
-基于上面的配置，只有名字空间中包含作用域为 `CrossNamespaceAffinity` 且
-硬性约束大于或等于使用 `namespaces` 和 `namespaceSelector` 字段的 Pods
+基于上面的配置，只有名字空间中包含作用域为 `CrossNamespaceAffinity`
+且硬性约束大于或等于使用 `namespaces` 和 `namespaceSelector` 字段的 Pod
 个数时，才可以在该名字空间中继续创建在其 Pod 亲和性规则中设置 `namespaces`
 或 `namespaceSelector` 的新 Pod。
 
-<!--
-This feature is alpha and disabled by default. You can enable it by setting the
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
-`PodAffinityNamespaceSelector` in both kube-apiserver and kube-scheduler.
--->
-此功能特性处于 Alpha 阶段，默认被禁用。你可以通过为 kube-apiserver 和
-kube-scheduler 设置
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
-`PodAffinityNamespaceSelector` 来启用此特性。
-
 <!--
 ## Requests compared to Limits {#requests-vs-limits}
 
@@ -868,7 +860,7 @@ kubectl create -f ./object-counts.yaml --namespace=myspace
 kubectl get quota --namespace=myspace
 ```
 
-```
+```none
 NAME                    AGE
 compute-resources       30s
 object-counts           32s
@@ -878,7 +870,7 @@ object-counts           32s
 kubectl describe quota compute-resources --namespace=myspace
 ```
 
-```
+```none
 Name:                    compute-resources
 Namespace:               myspace
 Resource                 Used  Hard
@@ -894,7 +886,7 @@ requests.nvidia.com/gpu  0     4
 kubectl describe quota object-counts --namespace=myspace
 ```
 
-```
+```none
 Name:                   object-counts
 Namespace:              myspace
 Resource                Used    Hard
@@ -993,18 +985,18 @@ should be allowed in a namespace, if and only if, a matching quota object exists
 （例如 "cluster-services"）的 Pod。
 
 <!--
-With this mechanism, operators will be able to restrict usage of certain high
+With this mechanism, operators are able to restrict usage of certain high
 priority classes to a limited number of namespaces and not every namespace
 will be able to consume these priority classes by default.
 -->
-通过这种机制，操作人员能够将限制某些高优先级类仅出现在有限数量的命名空间中，
+通过这种机制，操作人员能够限制某些高优先级类仅出现在有限数量的命名空间中，
 而并非每个命名空间默认情况下都能够使用这些优先级类。
 
 <!--
-To enforce this, kube-apiserver flag `-admission-control-config-file` should be
+To enforce this, `kube-apiserver` flag `--admission-control-config-file` should be
 used to pass path to the following configuration file:
 -->
-要实现此目的，应设置 kube-apiserver 的标志 `--admission-control-config-file` 
+要实现此目的，应设置 `kube-apiserver` 的标志 `--admission-control-config-file` 
 指向如下配置文件：
 
 ```yaml
@@ -1034,7 +1026,7 @@ Then, create a resource quota object in the `kube-system` namespace:
 kubectl apply -f https://k8s.io/examples/policy/priority-class-resourcequota.yaml -n kube-system
 ```
 
-```
+```none
 resourcequota/pods-cluster-services created
 ```
 
@@ -1063,14 +1055,13 @@ and it is to be created in a namespace other than `kube-system`.
 ## {{% heading "whatsnext" %}}
 
 <!--
-- See [ResourceQuota design doc](https://git.k8s.io/community/contributors/design-proposals/resource-management/admission_control_resource_quota.md) for more information.
+- See [ResourceQuota design doc](https://git.k8s.io/design-proposals-archive/resource-management/admission_control_resource_quota.md) for more information.
 - See a [detailed example for how to use resource quota](/docs/tasks/administer-cluster/quota-api-object/).
-- Read [Quota support for priority class design doc](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/scheduling/pod-priority-resourcequota.md).
+- Read [Quota support for priority class design doc](https://git.k8s.io/design-proposals-archive/scheduling/pod-priority-resourcequota.md).
 - See [LimitedResources](https://github.com/kubernetes/kubernetes/pull/36765)
 -->
-- 查看[资源配额设计文档](https://git.k8s.io/community/contributors/design-proposals/resource-management/admission_control_resource_quota.md)
-- 查看[如何使用资源配额的详细示例](/zh/docs/tasks/administer-cluster/quota-api-object/)。
-- 阅读[优先级类配额支持的设计文档](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/scheduling/pod-priority-resourcequota.md)。
-  了解更多信息。
-- 参阅 [LimitedResources](https://github.com/kubernetes/kubernetes/pull/36765)
+- 参阅[资源配额设计文档](https://git.k8s.io/design-proposals-archive/resource-management/admission_control_resource_quota.md)。
+- 参阅[如何使用资源配额的详细示例](/zh-cn/docs/tasks/administer-cluster/quota-api-object/)。
+- 参阅[优先级类配额支持的设计文档](https://git.k8s.io/design-proposals-archive/scheduling/pod-priority-resourcequota.md)了解更多信息。
+- 参阅 [LimitedResources](https://github.com/kubernetes/kubernetes/pull/36765)。
 
diff --git a/content/zh-cn/docs/concepts/scheduling-eviction/_index.md b/content/zh-cn/docs/concepts/scheduling-eviction/_index.md
new file mode 100644
index 0000000000..f90a06410f
--- /dev/null
+++ b/content/zh-cn/docs/concepts/scheduling-eviction/_index.md
@@ -0,0 +1,78 @@
+---
+title: 调度、抢占和驱逐
+weight: 90
+content_type: concept
+description: >
+  在 Kubernetes 中，调度 (scheduling) 指的是确保 Pod 匹配到合适的节点，
+  以便 kubelet 能够运行它们。抢占 (Preemption) 指的是终止低优先级的 Pod 以便高优先级的 Pod
+  可以调度运行的过程。驱逐 (Eviction) 是在资源匮乏的节点上，主动让一个或多个 Pod 失效的过程。
+no_list: true
+---
+
+<!--
+title: "Scheduling, Preemption and Eviction"
+weight: 90
+content_type: concept
+description: >
+  In Kubernetes, scheduling refers to making sure that Pods are matched to Nodes
+  so that the kubelet can run them. Preemption is the process of terminating 
+  Pods with lower Priority so that Pods with higher Priority can schedule on 
+  Nodes. Eviction is the process of proactively terminating one or more Pods on
+  resource-starved Nodes.
+no_list: true
+-->
+
+<!--
+In Kubernetes, scheduling refers to making sure that {{<glossary_tooltip text="Pods" term_id="pod">}}
+are matched to {{<glossary_tooltip text="Nodes" term_id="node">}} so that the
+{{<glossary_tooltip text="kubelet" term_id="kubelet">}} can run them. Preemption
+is the process of terminating Pods with lower {{<glossary_tooltip text="Priority" term_id="pod-priority">}}
+so that Pods with higher Priority can schedule on Nodes. Eviction is the process
+of terminating one or more Pods on Nodes.
+-->
+在 Kubernetes 中，调度 (scheduling) 指的是确保 {{<glossary_tooltip text="Pod" term_id="pod">}}
+匹配到合适的{{<glossary_tooltip text="节点" term_id="node">}}，
+以便 {{<glossary_tooltip text="kubelet" term_id="kubelet">}} 能够运行它们。
+抢占 (Preemption) 指的是终止低{{<glossary_tooltip text="优先级" term_id="pod-priority">}}的 Pod
+以便高优先级的 Pod 可以调度运行的过程。
+驱逐 (Eviction) 是在资源匮乏的节点上，主动让一个或多个 Pod 失效的过程。
+
+<!--
+## Scheduling
+
+* [Kubernetes Scheduler](/docs/concepts/scheduling-eviction/kube-scheduler/)
+* [Assigning Pods to Nodes](/docs/concepts/scheduling-eviction/assign-pod-node/)
+* [Pod Overhead](/docs/concepts/scheduling-eviction/pod-overhead/)
+* [Pod Topology Spread Constraints](/docs/concepts/scheduling-eviction/topology-spread-constraints/)
+* [Taints and Tolerations](/docs/concepts/scheduling-eviction/taint-and-toleration/)
+* [Scheduling Framework](/docs/concepts/scheduling-eviction/scheduling-framework)
+* [Scheduler Performance Tuning](/docs/concepts/scheduling-eviction/scheduler-perf-tuning/)
+* [Resource Bin Packing for Extended Resources](/docs/concepts/scheduling-eviction/resource-bin-packing/)
+-->
+
+## 调度
+
+* [Kubernetes 调度器](/zh-cn/docs/concepts/scheduling-eviction/kube-scheduler/)
+* [将 Pod 指派到节点](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/)
+* [Pod 开销](/zh-cn/docs/concepts/scheduling-eviction/pod-overhead/)
+* [Pod 拓扑分布约束](/zh-cn/docs/concepts/scheduling-eviction/topology-spread-constraints/)
+* [污点和容忍度](/zh-cn/docs/concepts/scheduling-eviction/taint-and-toleration/)
+* [调度框架](/zh-cn/docs/concepts/scheduling-eviction/scheduling-framework)
+* [调度器性能调试](/zh-cn/docs/concepts/scheduling-eviction/scheduler-perf-tuning/)
+* [扩展资源的资源装箱](/zh-cn/docs/concepts/scheduling-eviction/resource-bin-packing/)
+
+<!--
+## Pod Disruption
+
+* [Pod Priority and Preemption](/docs/concepts/scheduling-eviction/pod-priority-preemption/)
+* [Node-pressure Eviction](/docs/concepts/scheduling-eviction/node-pressure-eviction/)
+* [API-initiated Eviction](/docs/concepts/scheduling-eviction/api-eviction/)
+-->
+
+## Pod 干扰
+
+{{<glossary_definition term_id="pod-disruption" length="all">}}
+
+* [Pod 优先级和抢占](/zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption/)
+* [节点压力驱逐](/zh-cn/docs/concepts/scheduling-eviction/node-pressure-eviction/)
+* [API 发起的驱逐](/zh-cn/docs/concepts/scheduling-eviction/api-eviction/)
diff --git a/content/zh-cn/docs/concepts/scheduling-eviction/api-eviction.md b/content/zh-cn/docs/concepts/scheduling-eviction/api-eviction.md
new file mode 100644
index 0000000000..4b9615951b
--- /dev/null
+++ b/content/zh-cn/docs/concepts/scheduling-eviction/api-eviction.md
@@ -0,0 +1,206 @@
+---
+title: API 发起的驱逐
+content_type: concept
+weight: 70
+---
+<!-- 
+---
+title: API-initiated Eviction
+content_type: concept
+weight: 70
+---
+-->
+{{< glossary_definition term_id="api-eviction" length="short" >}} </br>
+
+<!-- 
+You can request eviction by calling the Eviction API directly, or programmatically
+using a client of the {{<glossary_tooltip term_id="kube-apiserver" text="API server">}}, like the `kubectl drain` command. This
+creates an `Eviction` object, which causes the API server to terminate the Pod.
+
+API-initiated evictions respect your configured [`PodDisruptionBudgets`](/docs/tasks/run-application/configure-pdb/)
+and [`terminationGracePeriodSeconds`](/docs/concepts/workloads/pods/pod-lifecycle#pod-termination). 
+
+Using the API to create an Eviction object for a Pod is like performing a
+policy-controlled [`DELETE` operation](/docs/reference/kubernetes-api/workload-resources/pod-v1/#delete-delete-a-pod)
+on the Pod. 
+-->
+你可以通过直接调用 Eviction API 发起驱逐，也可以通过编程的方式使用
+{{<glossary_tooltip term_id="kube-apiserver" text="API 服务器">}}的客户端来发起驱逐，
+比如 `kubectl drain` 命令。
+此操作创建一个 `Eviction` 对象，该对象再驱动 API 服务器终止选定的 Pod。
+
+API 发起的驱逐将遵从你的
+[`PodDisruptionBudgets`](/zh-cn/docs/tasks/run-application/configure-pdb/)
+和 [`terminationGracePeriodSeconds`](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle#pod-termination)
+配置。
+
+使用 API 创建 Eviction 对象，就像对 Pod 执行策略控制的
+[`DELETE` 操作](/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1/#delete-delete-a-pod)
+
+<!--
+## Calling the Eviction API
+
+You can use a [Kubernetes language client](/docs/tasks/administer-cluster/access-cluster-api/#programmatic-access-to-the-api)
+to access the Kubernetes API and create an `Eviction` object. To do this, you
+POST the attempted operation, similar to the following example:
+-->
+## 调用 Eviction API
+
+你可以使用 [Kubernetes 语言客户端](/zh-cn/docs/tasks/administer-cluster/access-cluster-api/#programmatic-access-to-the-api)
+来访问 Kubernetes API 并创建 `Eviction` 对象。
+要执行此操作，你应该用 POST 发出要尝试的请求，类似于下面的示例：
+
+{{< tabs name="Eviction_example" >}}
+{{% tab name="policy/v1" %}}
+{{< note >}}
+<!-- `policy/v1` Eviction is available in v1.22+. Use `policy/v1beta1` with prior releases. -->
+`policy/v1`  版本的 Eviction 在 v1.22 以及更高的版本中可用，之前的发行版本使用 `policy/v1beta1` 版本。
+{{< /note >}}
+
+```json
+{
+  "apiVersion": "policy/v1",
+  "kind": "Eviction",
+  "metadata": {
+    "name": "quux",
+    "namespace": "default"
+  }
+}
+```
+{{% /tab %}}
+{{% tab name="policy/v1beta1" %}}
+{{< note >}}
+<!-- Deprecated in v1.22 in favor of `policy/v1` -->
+在 v1.22 版本废弃以支持 `policy/v1`
+{{< /note >}}
+
+```json
+{
+  "apiVersion": "policy/v1beta1",
+  "kind": "Eviction",
+  "metadata": {
+    "name": "quux",
+    "namespace": "default"
+  }
+}
+```
+{{% /tab %}}
+{{< /tabs >}}
+
+<!-- 
+Alternatively, you can attempt an eviction operation by accessing the API using
+`curl` or `wget`, similar to the following example:
+-->
+或者，你可以通过使用 `curl` 或者 `wget` 来访问 API 以尝试驱逐操作，类似于以下示例：
+
+```bash
+curl -v -H 'Content-type: application/json' https://your-cluster-api-endpoint.example/api/v1/namespaces/default/pods/quux/eviction -d @eviction.json
+```
+
+<!-- 
+## How API-initiated eviction works
+
+When you request an eviction using the API, the API server performs admission
+checks and responds in one of the following ways:
+-->
+
+## API 发起驱逐的工作原理
+
+当你使用 API 来请求驱逐时，API 服务器将执行准入检查，并通过以下方式之一做出响应：
+
+<!-- 
+* `200 OK`: the eviction is allowed, the `Eviction` subresource is created, and
+  the Pod is deleted, similar to sending a `DELETE` request to the Pod URL.
+* `429 Too Many Requests`: the eviction is not currently allowed because of the
+  configured {{<glossary_tooltip term_id="pod-disruption-budget" text="PodDisruptionBudget">}}.
+  You may be able to attempt the eviction again later. You might also see this
+  response because of API rate limiting. 
+* `500 Internal Server Error`: the eviction is not allowed because there is a
+  misconfiguration, like if multiple PodDisruptionBudgets reference the same Pod.
+-->
+* `200 OK`：允许驱逐，子资源 `Eviction` 被创建，并且 Pod 被删除，
+  类似于发送一个 `DELETE` 请求到 Pod 地址。
+* `429 Too Many Requests`：当前不允许驱逐，因为配置了 {{<glossary_tooltip term_id="pod-disruption-budget" text="PodDisruptionBudget">}}。
+  你可以稍后再尝试驱逐。你也可能因为 API 速率限制而看到这种响应。
+* `500 Internal Server Error`：不允许驱逐，因为存在配置错误，
+  例如存在多个 PodDisruptionBudgets 引用同一个 Pod。
+
+<!--
+If the Pod you want to evict isn't part of a workload that has a
+PodDisruptionBudget, the API server always returns `200 OK` and allows the
+eviction. 
+
+If the API server allows the eviction, the Pod is deleted as follows:
+-->
+如果你想驱逐的 Pod 不属于有 PodDisruptionBudget 的工作负载，
+API 服务器总是返回 `200 OK` 并且允许驱逐。
+
+如果 API 服务器允许驱逐，Pod 按照如下方式删除：
+
+<!--
+1. The `Pod` resource in the API server is updated with a deletion timestamp,
+   after which the API server considers the `Pod` resource to be terminated. The
+   `Pod` resource is also marked with the configured grace period.
+1. The {{<glossary_tooltip term_id="kubelet" text="kubelet">}} on the node where the local Pod is running notices that the `Pod`
+   resource is marked for termination and starts to gracefully shut down the
+   local Pod.
+1. While the kubelet is shutting the Pod down, the control plane removes the Pod
+   from {{<glossary_tooltip term_id="endpoint" text="Endpoint">}} and
+   {{<glossary_tooltip term_id="endpoint-slice" text="EndpointSlice">}}
+   objects. As a result, controllers no longer consider the Pod as a valid object.
+1. After the grace period for the Pod expires, the kubelet forcefully terminates
+   the local Pod.
+1. The kubelet tells the API server to remove the `Pod` resource.
+1. The API server deletes the `Pod` resource.
+-->
+1. API 服务器中的 `Pod` 资源会更新上删除时间戳，之后 API 服务器会认为此 `Pod` 资源将被终止。
+   此 `Pod` 资源还会标记上配置的宽限期。
+1. 本地运行状态的 Pod 所处的节点上的 {{<glossary_tooltip term_id="kubelet" text="kubelet">}}
+   注意到 `Pod` 资源被标记为终止，并开始优雅停止本地 Pod。
+1. 当 kubelet 停止 Pod 时，控制面从 {{<glossary_tooltip term_id="endpoint" text="Endpoint">}}
+   和 {{<glossary_tooltip term_id="endpoint-slice" text="EndpointSlice">}} 
+   对象中移除该 Pod。因此，控制器不再将此 Pod 视为有用对象。
+1. Pod 的宽限期到期后，kubelet 强制终止本地 Pod。
+1. kubelet 告诉 API 服务器删除 `Pod` 资源。
+1. API 服务器删除 `Pod` 资源。
+
+<!-- 
+## Troubleshooting stuck evictions
+
+In some cases, your applications may enter a broken state, where the Eviction
+API will only return `429` or `500` responses until you intervene. This can 
+happen if, for example, a ReplicaSet creates pods for your application but new 
+pods do not enter a `Ready` state. You may also notice this behavior in cases
+where the last evicted Pod had a long termination grace period.
+-->
+## 解决驱逐被卡住的问题
+
+在某些情况下，你的应用可能进入中断状态，
+在你干预之前，驱逐 API 总是返回 `429` 或 `500`。
+例如，如果 ReplicaSet 为你的应用程序创建了 Pod，
+但新的 Pod 没有进入 `Ready` 状态，就会发生这种情况。
+在最后一个被驱逐的 Pod 有很长的终止宽限期的情况下，你可能也会注意到这种行为。
+
+<!-- 
+If you notice stuck evictions, try one of the following solutions: 
+
+* Abort or pause the automated operation causing the issue. Investigate the stuck
+  application before you restart the operation.
+* Wait a while, then directly delete the Pod from your cluster control plane
+  instead of using the Eviction API.
+-->
+如果你注意到驱逐被卡住，请尝试以下解决方案之一：
+
+* 终止或暂停导致问题的自动化操作，重新启动操作之前，请检查被卡住的应用程序。
+* 等待一段时间后，直接从集群控制平面删除 Pod，而不是使用 Eviction API。
+
+## {{% heading "whatsnext" %}}
+
+<!-- 
+* Learn how to protect your applications with a [Pod Disruption Budget](/docs/tasks/run-application/configure-pdb/).
+* Learn about [Node-pressure Eviction](/docs/concepts/scheduling-eviction/node-pressure-eviction/).
+* Learn about [Pod Priority and Preemption](/docs/concepts/scheduling-eviction/pod-priority-preemption/).
+-->
+* 了解如何使用 [Pod 干扰预算](/zh-cn/docs/tasks/run-application/configure-pdb/) 保护你的应用。
+* 了解[节点压力引发的驱逐](/zh-cn/docs/concepts/scheduling-eviction/node-pressure-eviction/)。
+* 了解 [Pod 优先级和抢占](/zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption/)。
diff --git a/content/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node.md b/content/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node.md
new file mode 100644
index 0000000000..07f5fe0c3e
--- /dev/null
+++ b/content/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node.md
@@ -0,0 +1,878 @@
+---
+title: 将 Pod 指派给节点
+content_type: concept
+weight: 20
+---
+
+<!--
+reviewers:
+- davidopp
+- kevin-wangzefeng
+- bsalamat
+title: Assigning Pods to Nodes
+content_type: concept
+weight: 20
+-->
+
+<!-- overview -->
+
+<!--
+You can constrain a {{< glossary_tooltip text="Pod" term_id="pod" >}} so that it is 
+_restricted_ to run on particular {{< glossary_tooltip text="node(s)" term_id="node" >}},
+or to _prefer_ to run on particular nodes.
+There are several ways to do this and the recommended approaches all use
+[label selectors](/docs/concepts/overview/working-with-objects/labels/) to facilitate the selection.
+Often, you do not need to set any such constraints; the
+{{< glossary_tooltip text="scheduler" term_id="kube-scheduler" >}}  will automatically do a reasonable placement
+(for example, spreading your Pods across nodes so as not place Pods on a node with insufficient free resources).
+However, there are some circumstances where you may want to control which node
+the Pod deploys to, for example, to ensure that a Pod ends up on a node with an SSD attached to it,
+or to co-locate Pods from two different services that communicate a lot into the same availability zone.
+-->
+你可以约束一个 {{< glossary_tooltip text="Pod" term_id="pod" >}}
+以便 **限制** 其只能在特定的{{< glossary_tooltip text="节点" term_id="node" >}}上运行，
+或优先在特定的节点上运行。
+有几种方法可以实现这点，推荐的方法都是用
+[标签选择算符](/zh-cn/docs/concepts/overview/working-with-objects/labels/)来进行选择。
+通常这样的约束不是必须的，因为调度器将自动进行合理的放置（比如，将 Pod 分散到节点上，
+而不是将 Pod 放置在可用资源不足的节点上等等）。但在某些情况下，你可能需要进一步控制
+Pod 被部署到哪个节点。例如，确保 Pod 最终落在连接了 SSD 的机器上，
+或者将来自两个不同的服务且有大量通信的 Pods 被放置在同一个可用区。
+
+<!-- body -->
+
+<!--
+You can use any of the following methods to choose where Kubernetes schedules
+specific Pods:
+
+  * [nodeSelector](#nodeselector) field matching against [node labels](#built-in-node-labels)
+  * [Affinity and anti-affinity](#affinity-and-anti-affinity)
+  * [nodeName](#nodename) field
+  * [Pod topology spread constraints](#pod-topology-spread-constraints)
+-->
+你可以使用下列方法中的任何一种来选择 Kubernetes 对特定 Pod 的调度：
+
+* 与[节点标签](#built-in-node-labels)匹配的 [nodeSelector](#nodeSelector)
+* [亲和性与反亲和性](#affinity-and-anti-affinity)
+* [nodeName](#nodename) 字段
+* [Pod 拓扑分布约束](#pod-topology-spread-constraints)
+
+<!--
+## Node labels {#built-in-node-labels}
+
+Like many other Kubernetes objects, nodes have
+[labels](/docs/concepts/overview/working-with-objects/labels/). You can [attach labels manually](/docs/tasks/configure-pod-container/assign-pods-nodes/#add-a-label-to-a-node).
+Kubernetes also populates a standard set of labels on all nodes in a cluster. See [Well-Known Labels, Annotations and Taints](/docs/reference/labels-annotations-taints/)
+for a list of common node labels.
+-->
+## 节点标签     {#built-in-node-labels}
+
+与很多其他 Kubernetes 对象类似，节点也有[标签](/zh-cn/docs/concepts/overview/working-with-objects/labels/)。
+你可以[手动地添加标签](/zh-cn/docs/tasks/configure-pod-container/assign-pods-nodes/#add-a-label-to-a-node)。
+Kubernetes 也会为集群中所有节点添加一些标准的标签。
+参见[常用的标签、注解和污点](/zh-cn/docs/reference/labels-annotations-taints/)以了解常见的节点标签。
+
+{{< note >}}
+<!--
+The value of these labels is cloud provider specific and is not guaranteed to be reliable.
+For example, the value of `kubernetes.io/hostname` may be the same as the node name in some environments
+and a different value in other environments.
+-->
+这些标签的取值是取决于云提供商的，并且是无法在可靠性上给出承诺的。
+例如，`kubernetes.io/hostname` 的取值在某些环境中可能与节点名称相同，
+而在其他环境中会取不同的值。
+{{< /note >}}
+
+<!--
+### Node isolation/restriction
+
+Adding labels to nodes allows you to target Pods for scheduling on specific
+nodes or groups of nodes. You can use this functionality to ensure that specific
+Pods only run on nodes with certain isolation, security, or regulatory
+properties. 
+-->
+## 节点隔离/限制  {#node-isolation-restriction}
+
+通过为节点添加标签，你可以准备让 Pod 调度到特定节点或节点组上。
+你可以使用这个功能来确保特定的 Pod 只能运行在具有一定隔离性，安全性或监管属性的节点上。
+
+<!--
+If you use labels for node isolation, choose label keys that the {{<glossary_tooltip text="kubelet" term_id="kubelet">}}
+cannot modify. This prevents a compromised node from setting those labels on
+itself so that the scheduler schedules workloads onto the compromised node.
+-->
+如果使用标签来实现节点隔离，建议选择节点上的
+{{<glossary_tooltip text="kubelet" term_id="kubelet">}}
+无法修改的标签键。
+这可以防止受感染的节点在自身上设置这些标签，进而影响调度器将工作负载调度到受感染的节点。
+
+<!--
+The [`NodeRestriction` admission plugin](/docs/reference/access-authn-authz/admission-controllers/#noderestriction)
+prevents the kubelet from setting or modifying labels with a
+`node-restriction.kubernetes.io/` prefix. 
+
+To make use of that label prefix for node isolation:
+-->
+[`NodeRestriction` 准入插件](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#noderestriction)防止
+kubelet 使用 `node-restriction.kubernetes.io/` 前缀设置或修改标签。
+
+要使用该标签前缀进行节点隔离：
+
+<!--
+1. Ensure you are using the [Node authorizer](/docs/reference/access-authn-authz/node/) and have _enabled_ the `NodeRestriction` admission plugin.
+2. Add labels with the `node-restriction.kubernetes.io/` prefix to your nodes, and use those labels in your [node selectors](#nodeselector).
+   For example, `example.com.node-restriction.kubernetes.io/fips=true` or `example.com.node-restriction.kubernetes.io/pci-dss=true`.
+-->
+1. 确保你在使用[节点鉴权](/zh-cn/docs/reference/access-authn-authz/node/)机制并且已经启用了
+   [NodeRestriction 准入插件](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#noderestriction)。
+2. 将带有 `node-restriction.kubernetes.io/` 前缀的标签添加到 Node 对象，
+   然后在[节点选择器](#nodeSelector)中使用这些标签。
+   例如，`example.com.node-restriction.kubernetes.io/fips=true` 或
+   `example.com.node-restriction.kubernetes.io/pci-dss=true`。
+
+## nodeSelector
+
+<!--
+`nodeSelector` is the simplest recommended form of node selection constraint.
+You can add the `nodeSelector` field to your Pod specification and specify the
+[node labels](#built-in-node-labels) you want the target node to have.
+Kubernetes only schedules the Pod onto nodes that have each of the labels you
+specify. 
+-->
+`nodeSelector` 是节点选择约束的最简单推荐形式。你可以将 `nodeSelector` 字段添加到
+Pod 的规约中设置你希望目标节点所具有的[节点标签](#built-in-node-labels)。
+Kubernetes 只会将 Pod 调度到拥有你所指定的每个标签的节点上。
+
+<!--
+See [Assign Pods to Nodes](/docs/tasks/configure-pod-container/assign-pods-nodes) for more
+information.
+-->
+进一步的信息可参见[将 Pod 指派给节点](/zh-cn/docs/tasks/configure-pod-container/assign-pods-nodes)。
+
+<!--
+## Affinity and anti-affinity
+
+`nodeSelector` is the simplest way to constrain Pods to nodes with specific
+labels. Affinity and anti-affinity expands the types of constraints you can
+define. Some of the benefits of affinity and anti-affinity include:
+-->
+## 亲和性与反亲和性  {#affinity-and-anti-affinity}
+
+`nodeSelector` 提供了一种最简单的方法来将 Pod 约束到具有特定标签的节点上。
+亲和性和反亲和性扩展了你可以定义的约束类型。使用亲和性与反亲和性的一些好处有：
+
+<!--
+* The affinity/anti-affinity language is more expressive. `nodeSelector` only
+  selects nodes with all the specified labels. Affinity/anti-affinity gives you
+  more control over the selection logic.
+* You can indicate that a rule is *soft* or *preferred*, so that the scheduler
+  still schedules the Pod even if it can't find a matching node.
+* You can constrain a Pod using labels on other Pods running on the node (or other topological domain),
+  instead of just node labels, which allows you to define rules for which Pods
+  can be co-located on a node.
+-->
+* 亲和性、反亲和性语言的表达能力更强。`nodeSelector` 只能选择拥有所有指定标签的节点。
+  亲和性、反亲和性为你提供对选择逻辑的更强控制能力。
+* 你可以标明某规则是“软需求”或者“偏好”，这样调度器在无法找到匹配节点时仍然调度该 Pod。
+* 你可以使用节点上（或其他拓扑域中）运行的其他 Pod 的标签来实施调度约束，
+  而不是只能使用节点本身的标签。这个能力让你能够定义规则允许哪些 Pod 可以被放置在一起。
+
+<!--
+The affinity feature consists of two types of affinity:
+
+* *Node affinity* functions like the `nodeSelector` field but is more expressive and
+  allows you to specify soft rules. 
+* *Inter-pod affinity/anti-affinity* allows you to constrain Pods against labels
+  on other Pods.
+-->
+亲和性功能由两种类型的亲和性组成：
+
+* **节点亲和性**功能类似于 `nodeSelector` 字段，但它的表达能力更强，并且允许你指定软规则。
+* Pod 间亲和性/反亲和性允许你根据其他 Pod 的标签来约束 Pod。
+
+<!--
+### Node affinity
+
+Node affinity is conceptually similar to `nodeSelector`, allowing you to constrain which nodes your
+Pod can be scheduled on based on node labels. There are two types of node
+affinity:
+-->
+### 节点亲和性   {#node-affinity}
+
+节点亲和性概念上类似于 `nodeSelector`，
+它使你可以根据节点上的标签来约束 Pod 可以调度到哪些节点上。
+节点亲和性有两种：
+
+<!--
+* `requiredDuringSchedulingIgnoredDuringExecution`: The scheduler can't
+  schedule the Pod unless the rule is met. This functions like `nodeSelector`,
+  but with a more expressive syntax.
+* `preferredDuringSchedulingIgnoredDuringExecution`: The scheduler tries to
+  find a node that meets the rule. If a matching node is not available, the
+  scheduler still schedules the Pod.
+-->
+* `requiredDuringSchedulingIgnoredDuringExecution`：
+  调度器只有在规则被满足的时候才能执行调度。此功能类似于 `nodeSelector`，
+  但其语法表达能力更强。
+* `preferredDuringSchedulingIgnoredDuringExecution`：
+  调度器会尝试寻找满足对应规则的节点。如果找不到匹配的节点，调度器仍然会调度该 Pod。
+
+{{<note>}}
+<!--
+In the preceding types, `IgnoredDuringExecution` means that if the node labels
+change after Kubernetes schedules the Pod, the Pod continues to run.
+-->
+在上述类型中，`IgnoredDuringExecution` 意味着如果节点标签在 Kubernetes
+调度 Pod 时发生了变更，Pod 仍将继续运行。
+{{</note>}}
+
+<!--
+You can specify node affinities using the `.spec.affinity.nodeAffinity` field in
+your Pod spec.
+
+For example, consider the following Pod spec:
+-->
+你可以使用 Pod 规约中的 `.spec.affinity.nodeAffinity` 字段来设置节点亲和性。
+例如，考虑下面的 Pod 规约：
+
+{{< codenew file="pods/pod-with-node-affinity.yaml" >}}
+
+<!--
+In this example, the following rules apply:
+
+* The node *must* have a label with the key `topology.kubernetes.io/zone` and
+  the value of that label *must* be either `antarctica-east1` or `antarctica-west1`.
+* The node *preferably* has a label with the key `another-node-label-key` and
+  the value `another-node-label-value`.
+-->
+在这一示例中，所应用的规则如下：
+
+* 节点**必须**包含一个键名为 `topology.kubernetes.io/zone` 的标签，
+  并且该标签的取值**必须**为 `antarctica-east1` 或 `antarctica-west1`。
+* 节点**最好**具有一个键名为 `another-node-label-key` 且取值为
+  `another-node-label-value` 的标签。
+
+<!--
+You can use the `operator` field to specify a logical operator for Kubernetes to use when
+interpreting the rules. You can use `In`, `NotIn`, `Exists`, `DoesNotExist`,
+`Gt` and `Lt`.
+-->
+你可以使用 `operator` 字段来为 Kubernetes 设置在解释规则时要使用的逻辑操作符。
+你可以使用 `In`、`NotIn`、`Exists`、`DoesNotExist`、`Gt` 和 `Lt` 之一作为操作符。
+
+<!--
+`NotIn` and `DoesNotExist` allow you to define node anti-affinity behavior.
+Alternatively, you can use [node taints](/docs/concepts/scheduling-eviction/taint-and-toleration/) 
+to repel Pods from specific nodes.
+-->
+`NotIn` 和 `DoesNotExist` 可用来实现节点反亲和性行为。
+你也可以使用[节点污点](/zh-cn/docs/concepts/scheduling-eviction/taint-and-toleration/)
+将 Pod 从特定节点上驱逐。
+
+{{< note >}}
+<!--
+If you specify both `nodeSelector` and `nodeAffinity`, *both* must be satisfied
+for the Pod to be scheduled onto a node.
+-->
+如果你同时指定了 `nodeSelector` 和 `nodeAffinity`，**两者** 必须都要满足，
+才能将 Pod 调度到候选节点上。
+
+<!--
+If you specify multiple `nodeSelectorTerms` associated with `nodeAffinity`
+types, then the Pod can be scheduled onto a node if one of the specified `nodeSelectorTerms` can be
+satisfied.
+-->
+如果你指定了多个与 `nodeAffinity` 类型关联的 `nodeSelectorTerms`，
+只要其中一个 `nodeSelectorTerms` 满足的话，Pod 就可以被调度到节点上。
+
+<!--
+If you specify multiple `matchExpressions` associated with a single `nodeSelectorTerms`,
+then the Pod can be scheduled onto a node only if all the `matchExpressions` are
+satisfied.
+-->
+如果你指定了多个与同一 `nodeSelectorTerms` 关联的 `matchExpressions`，
+则只有当所有 `matchExpressions` 都满足时 Pod 才可以被调度到节点上。
+{{< /note >}}
+
+<!--
+See [Assign Pods to Nodes using Node Affinity](/docs/tasks/configure-pod-container/assign-pods-nodes-using-node-affinity/)
+for more information.
+-->
+参阅[使用节点亲和性来为 Pod 指派节点](/zh-cn/docs/tasks/configure-pod-container/assign-pods-nodes-using-node-affinity/)，
+以了解进一步的信息。
+
+<!--
+#### Node affinity weight
+
+You can specify a `weight` between 1 and 100 for each instance of the
+`preferredDuringSchedulingIgnoredDuringExecution` affinity type. When the
+scheduler finds nodes that meet all the other scheduling requirements of the Pod, the
+scheduler iterates through every preferred rule that the node satisfies and adds the
+value of the `weight` for that expression to a sum.
+-->
+#### 节点亲和性权重   {#node-affinity-weight}
+
+你可以为 `preferredDuringSchedulingIgnoredDuringExecution` 亲和性类型的每个实例设置
+`weight` 字段，其取值范围是 1 到 100。
+当调度器找到能够满足 Pod 的其他调度请求的节点时，调度器会遍历节点满足的所有的偏好性规则，
+并将对应表达式的 `weight` 值加和。
+
+<!--
+The final sum is added to the score of other priority functions for the node.
+Nodes with the highest total score are prioritized when the scheduler makes a
+scheduling decision for the Pod.
+
+For example, consider the following Pod spec: 
+-->
+最终的加和值会添加到该节点的其他优先级函数的评分之上。
+在调度器为 Pod 作出调度决定时，总分最高的节点的优先级也最高。
+
+例如，考虑下面的 Pod 规约：
+
+{{< codenew file="pods/pod-with-affinity-anti-affinity.yaml" >}}
+
+<!--
+If there are two possible nodes that match the
+`preferredDuringSchedulingIgnoredDuringExecution` rule, one with the
+`label-1:key-1` label and another with the `label-2:key-2` label, the scheduler
+considers the `weight` of each node and adds the weight to the other scores for
+that node, and schedules the Pod onto the node with the highest final score.
+-->
+如果存在两个候选节点，都满足 `preferredDuringSchedulingIgnoredDuringExecution` 规则，
+其中一个节点具有标签 `label-1:key-1`，另一个节点具有标签 `label-2:key-2`，
+调度器会考察各个节点的 `weight` 取值，并将该权重值添加到节点的其他得分值之上，
+
+{{< note >}}
+<!--
+If you want Kubernetes to successfully schedule the Pods in this example, you
+must have existing nodes with the `kubernetes.io/os=linux` label.
+-->
+如果你希望 Kubernetes 能够成功地调度此例中的 Pod，你必须拥有打了
+`kubernetes.io/os=linux` 标签的节点。
+{{< /note >}}
+
+<!--
+#### Node affinity per scheduling profile
+-->
+#### 逐个调度方案中设置节点亲和性    {#node-affinity-per-scheduling-profile}
+
+{{< feature-state for_k8s_version="v1.20" state="beta" >}}
+
+<!--
+When configuring multiple [scheduling profiles](/docs/reference/scheduling/config/#multiple-profiles), you can associate
+a profile with a node affinity, which is useful if a profile only applies to a specific set of nodes.
+To do so, add an `addedAffinity` to the `args` field of the [`NodeAffinity` plugin](/docs/reference/scheduling/config/#scheduling-plugins)
+in the [scheduler configuration](/docs/reference/scheduling/config/). For example:
+-->
+在配置多个[调度方案](/zh-cn/docs/reference/scheduling/config/#multiple-profiles)时，
+你可以将某个方案与节点亲和性关联起来，如果某个调度方案仅适用于某组特殊的节点时，
+这样做是很有用的。
+要实现这点，可以在[调度器配置](/zh-cn/docs/reference/scheduling/config/)中为
+[`NodeAffinity` 插件](/zh-cn/docs/reference/scheduling/config/#scheduling-plugins)的
+`args` 字段添加 `addedAffinity`。例如：
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+
+profiles:
+  - schedulerName: default-scheduler
+  - schedulerName: foo-scheduler
+    pluginConfig:
+      - name: NodeAffinity
+        args:
+          addedAffinity:
+            requiredDuringSchedulingIgnoredDuringExecution:
+              nodeSelectorTerms:
+              - matchExpressions:
+                - key: scheduler-profile
+                  operator: In
+                  values:
+                  - foo
+```
+
+<!--
+The `addedAffinity` is applied to all Pods that set `.spec.schedulerName` to `foo-scheduler`, in addition to the
+NodeAffinity specified in the PodSpec.
+That is, in order to match the Pod, nodes need to satisfy `addedAffinity` and
+the Pod's `.spec.NodeAffinity`.
+-->
+这里的 `addedAffinity` 除遵从 Pod 规约中设置的节点亲和性之外，
+还适用于将 `.spec.schedulerName` 设置为 `foo-scheduler`。
+换言之，为了匹配 Pod，节点需要满足 `addedAffinity` 和 Pod 的 `.spec.NodeAffinity`。
+
+<!--
+Since the `addedAffinity` is not visible to end users, its behavior might be
+unexpected to them. Use node labels that have a clear correlation to the
+scheduler profile name.
+-->
+由于 `addedAffinity` 对最终用户不可见，其行为可能对用户而言是出乎意料的。
+应该使用与调度方案名称有明确关联的节点标签。
+
+{{< note >}}
+<!--
+The DaemonSet controller, which [creates Pods for DaemonSets](/docs/concepts/workloads/controllers/daemonset/#scheduled-by-default-scheduler),
+does not support scheduling profiles. When the DaemonSet controller creates
+Pods, the default Kubernetes scheduler places those Pods and honors any
+`nodeAffinity` rules in the DaemonSet controller.
+-->
+DaemonSet 控制器[为 DaemonSet 创建 Pods](/zh-cn/docs/concepts/workloads/controllers/daemonset/#scheduled-by-default-scheduler)，
+但该控制器不理会调度方案。
+DaemonSet 控制器创建 Pod 时，默认的 Kubernetes 调度器负责放置 Pod，
+并遵从 DaemonSet 控制器中奢侈的 `nodeAffinity` 规则。
+{{< /note >}}
+
+<!--
+### Inter-pod affinity and anti-affinity
+
+Inter-pod affinity and anti-affinity allow you to constrain which nodes your
+Pods can be scheduled on based on the labels of **Pods** already running on that
+node, instead of the node labels.
+-->
+### Pod 间亲和性与反亲和性  {#inter-pod-affinity-and-anti-affinity}
+
+Pod 间亲和性与反亲和性使你可以基于已经在节点上运行的 **Pod** 的标签来约束
+Pod 可以调度到的节点，而不是基于节点上的标签。
+
+<!--
+Inter-pod affinity and anti-affinity rules take the form "this
+Pod should (or, in the case of anti-affinity, should not) run in an X if that X
+is already running one or more Pods that meet rule Y", where X is a topology
+domain like node, rack, cloud provider zone or region, or similar and Y is the
+rule Kubernetes tries to satisfy.
+-->
+Pod 间亲和性与反亲和性的规则格式为“如果 X 上已经运行了一个或多个满足规则 Y 的 Pod，
+则这个 Pod 应该（或者在反亲和性的情况下不应该）运行在 X 上”。
+这里的 X 可以是节点、机架、云提供商可用区或地理区域或类似的拓扑域，
+Y 则是 Kubernetes 尝试满足的规则。
+
+<!--
+You express these rules (Y) as [label selectors](/docs/concepts/overview/working-with-objects/labels/#label-selectors)
+with an optional associated list of namespaces. Pods are namespaced objects in
+Kubernetes, so Pod labels also implicitly have namespaces. Any label selectors
+for Pod labels should specify the namespaces in which Kubernetes should look for those
+labels.
+-->
+你通过[标签选择算符](/zh-cn/docs/concepts/overview/working-with-objects/labels/#label-selectors)
+的形式来表达规则（Y），并可根据需要指定选关联的名字空间列表。
+Pod 在 Kubernetes 中是名字空间作用域的对象，因此 Pod 的标签也隐式地具有名字空间属性。
+针对 Pod 标签的所有标签选择算符都要指定名字空间，Kubernetes
+会在指定的名字空间内寻找标签。
+
+<!--
+You express the topology domain (X) using a `topologyKey`, which is the key for
+the node label that the system uses to denote the domain. For examples, see
+[Well-Known Labels, Annotations and Taints](/docs/reference/labels-annotations-taints/).
+-->
+你会通过 `topologyKey` 来表达拓扑域（X）的概念，其取值是系统用来标示域的节点标签键。
+相关示例可参见[常用标签、注解和污点](/zh-cn/docs/reference/labels-annotations-taints/)。
+
+{{< note >}}
+<!--
+Inter-pod affinity and anti-affinity require substantial amount of
+processing which can slow down scheduling in large clusters significantly. We do
+not recommend using them in clusters larger than several hundred nodes.
+-->
+Pod 间亲和性和反亲和性都需要相当的计算量，因此会在大规模集群中显著降低调度速度。
+我们不建议在包含数百个节点的集群中使用这类设置。
+{{< /note >}}
+
+{{< note >}}
+<!--
+Pod anti-affinity requires nodes to be consistently labelled, in other words,
+every node in the cluster must have an appropriate label matching `topologyKey`.
+If some or all nodes are missing the specified `topologyKey` label, it can lead
+to unintended behavior.
+-->
+Pod 反亲和性需要节点上存在一致性的标签。换言之，
+集群中每个节点都必须拥有与 `topologyKey` 匹配的标签。
+如果某些或者所有节点上不存在所指定的 `topologyKey` 标签，调度行为可能与预期的不同。
+{{< /note >}}
+
+<!--
+#### Types of inter-pod affinity and anti-affinity
+
+Similar to [node affinity](#node-affinity) are two types of Pod affinity and
+anti-affinity as follows:
+-->
+#### Pod 间亲和性与反亲和性的类型
+
+与[节点亲和性](#node-affinity)类似，Pod 的亲和性与反亲和性也有两种类型：
+
+* `requiredDuringSchedulingIgnoredDuringExecution`
+* `preferredDuringSchedulingIgnoredDuringExecution`
+
+<!--
+For example, you could use
+`requiredDuringSchedulingIgnoredDuringExecution` affinity to tell the scheduler to
+co-locate Pods of two services in the same cloud provider zone because they
+communicate with each other a lot. Similarly, you could use
+`preferredDuringSchedulingIgnoredDuringExecution` anti-affinity to spread Pods
+from a service across multiple cloud provider zones.
+-->
+例如，你可以使用 `requiredDuringSchedulingIgnoredDuringExecution` 亲和性来告诉调度器，
+将两个服务的 Pod 放到同一个云提供商可用区内，因为它们彼此之间通信非常频繁。
+类似地，你可以使用 `preferredDuringSchedulingIgnoredDuringExecution`
+反亲和性来将同一服务的多个 Pod 分布到多个云提供商可用区中。
+
+<!--
+To use inter-pod affinity, use the `affinity.podAffinity` field in the Pod spec.
+For inter-pod anti-affinity, use the `affinity.podAntiAffinity` field in the Pod
+spec.
+-->
+要使用 Pod 间亲和性，可以使用 Pod 规约中的 `.affinity.podAffinity` 字段。
+对于 Pod 间反亲和性，可以使用 Pod 规约中的 `.affinity.podAntiAffinity` 字段。
+
+<!--
+#### Pod affinity example {#an-example-of-a-pod-that-uses-pod-affinity}
+
+Consider the following Pod spec:
+-->
+#### Pod 亲和性示例   {#an-example-of-a-pod-that-uses-pod-affinity}
+
+考虑下面的 Pod 规约：
+
+{{< codenew file="pods/pod-with-pod-affinity.yaml" >}}
+
+<!--
+This example defines one Pod affinity rule and one Pod anti-affinity rule. The
+Pod affinity rule uses the "hard"
+`requiredDuringSchedulingIgnoredDuringExecution`, while the anti-affinity rule
+uses the "soft" `preferredDuringSchedulingIgnoredDuringExecution`.
+-->
+本示例定义了一条 Pod 亲和性规则和一条 Pod 反亲和性规则。Pod 亲和性规则配置为
+`requiredDuringSchedulingIgnoredDuringExecution`，而 Pod 反亲和性配置为
+`preferredDuringSchedulingIgnoredDuringExecution`。
+
+<!--
+The affinity rule says that the scheduler can only schedule a Pod onto a node if
+the node is in the same zone as one or more existing Pods with the label
+`security=S1`. More precisely, the scheduler must place the Pod on a node that has the
+`topology.kubernetes.io/zone=V` label, as long as there is at least one node in
+that zone that currently has one or more Pods with the Pod label `security=S1`. 
+-->
+亲和性规则表示，仅当节点和至少一个已运行且有 `security=S1` 的标签的
+Pod 处于同一区域时，才可以将该 Pod 调度到节点上。
+更确切的说，调度器必须将 Pod 调度到具有 `topology.kubernetes.io/zone=V`
+标签的节点上，并且集群中至少有一个位于该可用区的节点上运行着带有
+`security=S1` 标签的 Pod。
+
+<!--
+The anti-affinity rule says that the scheduler should try to avoid scheduling
+the Pod onto a node that is in the same zone as one or more Pods with the label
+`security=S2`. More precisely, the scheduler should try to avoid placing the Pod on a node that has the
+`topology.kubernetes.io/zone=R` label if there are other nodes in the
+same zone currently running Pods with the `Security=S2` Pod label.
+-->
+反亲和性规则表示，如果节点处于 Pod 所在的同一可用区且至少一个 Pod 具有
+`security=S2` 标签，则该 Pod 不应被调度到该节点上。
+更确切地说， 如果同一可用区中存在其他运行着带有 `security=S2` 标签的 Pod 节点，
+并且节点具有标签 `topology.kubernetes.io/zone=R`，Pod 不能被调度到该节点上。
+
+<!--
+To get yourself more familiar with the examples of Pod affinity and anti-affinity,
+refer to the [design proposal](https://git.k8s.io/design-proposals-archive/scheduling/podaffinity.md).
+-->
+查阅[设计文档](https://git.k8s.io/design-proposals-archive/scheduling/podaffinity.md)
+以进一步熟悉 Pod 亲和性与反亲和性的示例。
+
+<!--
+You can use the `In`, `NotIn`, `Exists` and `DoesNotExist` values in the
+`operator` field for Pod affinity and anti-affinity.
+
+In principle, the `topologyKey` can be any allowed label key with the following
+exceptions for performance and security reasons:
+-->
+你可以针对 Pod 间亲和性与反亲和性为其 `operator` 字段使用 `In`、`NotIn`、`Exists`、
+`DoesNotExist` 等值。
+
+原则上，`topologyKey` 可以是任何合法的标签键。出于性能和安全原因，`topologyKey`
+有一些限制：
+
+<!--
+* For Pod affinity and anti-affinity, an empty `topologyKey` field is not allowed in both `requiredDuringSchedulingIgnoredDuringExecution`
+  and `preferredDuringSchedulingIgnoredDuringExecution`.
+* For `requiredDuringSchedulingIgnoredDuringExecution` Pod anti-affinity rules,
+  the admission controller `LimitPodHardAntiAffinityTopology` limits
+  `topologyKey` to `kubernetes.io/hostname`. You can modify or disable the
+  admission controller if you want to allow custom topologies.
+-->
+* 对于 Pod 亲和性而言，在 `requiredDuringSchedulingIgnoredDuringExecution`
+  和 `preferredDuringSchedulingIgnoredDuringExecution` 中，`topologyKey`
+  不允许为空。
+* 对于 `requiredDuringSchedulingIgnoredDuringExecution` 要求的 Pod 反亲和性，
+  准入控制器 `LimitPodHardAntiAffinityTopology` 要求 `topologyKey` 只能是
+  `kubernetes.io/hostname`。如果你希望使用其他定制拓扑逻辑，
+  你可以更改准入控制器或者禁用之。
+
+<!--
+In addition to `labelSelector` and `topologyKey`, you can optionally specify a list
+of namespaces which the `labelSelector` should match against using the
+`namespaces` field at the same level as `labelSelector` and `topologyKey`.
+If omitted or empty, `namespaces` defaults to the namespace of the Pod where the
+affinity/anti-affinity definition appears.
+-->
+除了 `labelSelector` 和 `topologyKey`，你也可以指定 `labelSelector`
+要匹配的命名空间列表，方法是在 `labelSelector` 和 `topologyKey`
+所在层同一层次上设置  `namespaces`。
+如果 `namespaces` 被忽略或者为空，则默认为 Pod 亲和性/反亲和性的定义所在的命名空间。
+
+<!--
+#### Namespace selector
+-->
+#### 名字空间选择算符  {#namespace-selector}
+
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
+
+<!--
+You can also select matching namespaces using `namespaceSelector`, which is a label query over the set of namespaces.
+The affinity term is applied to namespaces selected by both `namespaceSelector` and the `namespaces` field.
+Note that an empty `namespaceSelector` ({}) matches all namespaces, while a null or empty `namespaces` list and 
+null `namespaceSelector` matches the namespace of the Pod where the rule is defined.
+-->
+用户也可以使用 `namespaceSelector` 选择匹配的名字空间，`namespaceSelector`
+是对名字空间集合进行标签查询的机制。
+亲和性条件会应用到 `namespaceSelector` 所选择的名字空间和 `namespaces` 字段中所列举的名字空间之上。
+注意，空的 `namespaceSelector`（`{}`）会匹配所有名字空间，而 null 或者空的
+`namespaces` 列表以及 null 值 `namespaceSelector` 意味着“当前 Pod 的名字空间”。
+
+<!--
+#### More practical use-cases
+
+Inter-pod affinity and anti-affinity can be even more useful when they are used with higher
+level collections such as ReplicaSets, StatefulSets, Deployments, etc.  These
+rules allow you to configure that a set of workloads should
+be co-located in the same defined topology; for example, preferring to place two related
+Pods onto the same node.
+-->
+#### 更实际的用例
+
+Pod 间亲和性与反亲和性在与更高级别的集合（例如 ReplicaSet、StatefulSet、
+Deployment 等）一起使用时，它们可能更加有用。
+这些规则使得你可以配置一组工作负载，使其位于所定义的同一拓扑中；
+例如优先将两个相关的 Pod 置于相同的节点上。
+
+<!--
+For example: imagine a three-node cluster. You use the cluster to run a web application
+and also an in-memory cache (such as Redis). For this example, also assume that latency between
+the web application and the memory cache should be as low as is practical. You could use inter-pod
+affinity and anti-affinity to co-locate the web servers with the cache as much as possible.
+-->
+以一个三节点的集群为例。你使用该集群运行一个带有内存缓存（例如 Redis）的 Web 应用程序。
+在此例中，还假设 Web 应用程序和内存缓存之间的延迟应尽可能低。
+你可以使用 Pod 间的亲和性和反亲和性来尽可能地将该 Web 服务器与缓存并置。
+
+<!--
+In the following example Deployment for the redis cache, the replicas get the label `app=store`. The
+`podAntiAffinity` rule tells the scheduler to avoid placing multiple replicas
+with the `app=store` label on a single node. This creates each cache in a
+separate node.
+-->
+在下面的 Redis 缓存 Deployment 示例中，副本上设置了标签 `app=store`。
+`podAntiAffinity` 规则告诉调度器避免将多个带有 `app=store` 标签的副本部署到同一节点上。
+因此，每个独立节点上会创建一个缓存实例。
+
+```yaml
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: redis-cache
+spec:
+  selector:
+    matchLabels:
+      app: store
+  replicas: 3
+  template:
+    metadata:
+      labels:
+        app: store
+    spec:
+      affinity:
+        podAntiAffinity:
+          requiredDuringSchedulingIgnoredDuringExecution:
+          - labelSelector:
+              matchExpressions:
+              - key: app
+                operator: In
+                values:
+                - store
+            topologyKey: "kubernetes.io/hostname"
+      containers:
+      - name: redis-server
+        image: redis:3.2-alpine
+```
+
+<!--
+The following example Deployment for the web servers creates replicas with the label `app=web-store`.
+The Pod affinity rule tells the scheduler to place each replica on a node that has a Pod
+with the label `app=store`. The Pod anti-affinity rule tells the scheduler never to place
+multiple `app=web-store` servers on a single node.
+-->
+下例的 Deployment 为 Web 服务器创建带有标签 `app=web-store` 的副本。
+Pod 亲和性规则告诉调度器将每个副本放到存在标签为 `app=store` 的 Pod 的节点上。
+Pod 反亲和性规则告诉调度器决不要在单个节点上放置多个 `app=web-store` 服务器。
+
+```yaml
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: web-server
+spec:
+  selector:
+    matchLabels:
+      app: web-store
+  replicas: 3
+  template:
+    metadata:
+      labels:
+        app: web-store
+    spec:
+      affinity:
+        podAntiAffinity:
+          requiredDuringSchedulingIgnoredDuringExecution:
+          - labelSelector:
+              matchExpressions:
+              - key: app
+                operator: In
+                values:
+                - web-store
+            topologyKey: "kubernetes.io/hostname"
+        podAffinity:
+          requiredDuringSchedulingIgnoredDuringExecution:
+          - labelSelector:
+              matchExpressions:
+              - key: app
+                operator: In
+                values:
+                - store
+            topologyKey: "kubernetes.io/hostname"
+      containers:
+      - name: web-app
+        image: nginx:1.16-alpine
+```
+
+<!--
+Creating the two preceding Deployments results in the following cluster layout,
+where each web server is co-located with a cache, on three separate nodes.
+-->
+创建前面两个 Deployment 会产生如下的集群布局，每个 Web 服务器与一个缓存实例并置，
+并分别运行在三个独立的节点上。
+
+|       node-1         |       node-2        |       node-3       |
+|:--------------------:|:-------------------:|:------------------:|
+| *webserver-1*        |   *webserver-2*     |    *webserver-3*   |
+|  *cache-1*           |     *cache-2*       |     *cache-3*      |
+
+<!-- 
+The overall effect is that each cache instance is likely to be accessed by a single client, that
+is running on the same node. This approach aims to minimize both skew (imbalanced load) and latency. 
+-->
+总体效果是每个缓存实例都非常可能被在同一个节点上运行的某个客户端访问。
+这种方法旨在最大限度地减少偏差（负载不平衡）和延迟。
+
+<!--
+You might have other reasons to use Pod anti-affinity.
+See the [ZooKeeper tutorial](/docs/tutorials/stateful-application/zookeeper/#tolerating-node-failure)
+for an example of a StatefulSet configured with anti-affinity for high
+availability, using the same technique as this example.
+-->
+你可能还有使用 Pod 反亲和性的一些其他原因。
+参阅 [ZooKeeper 教程](/zh-cn/docs/tutorials/stateful-application/zookeeper/#tolerating-node-failure)
+了解一个 StatefulSet 的示例，该 StatefulSet 配置了反亲和性以实现高可用，
+所使用的是与此例相同的技术。
+
+<!--
+## nodeName
+
+`nodeName` is a more direct form of node selection than affinity or
+`nodeSelector`. `nodeName` is a field in the Pod spec. If the `nodeName` field
+is not empty, the scheduler ignores the Pod and the kubelet on the named node
+tries to place the Pod on that node. Using `nodeName` overrules using
+`nodeSelector` or affinity and anti-affinity rules.
+-->
+## nodeName
+
+`nodeName` 是比亲和性或者 `nodeSelector` 更为直接的形式。`nodeName` 是 Pod
+规约中的一个字段。如果 `nodeName` 字段不为空，调度器会忽略该 Pod，
+而指定节点上的 kubelet 会尝试将 Pod 放到该节点上。
+使用 `nodeName` 规则的优先级会高于使用 `nodeSelector` 或亲和性与非亲和性的规则。
+
+<!--
+Some of the limitations of using `nodeName` to select nodes are:
+
+- If the named node does not exist, the Pod will not run, and in
+  some cases may be automatically deleted.
+- If the named node does not have the resources to accommodate the
+  Pod, the Pod will fail and its reason will indicate why,
+  for example OutOfmemory or OutOfcpu.
+- Node names in cloud environments are not always predictable or stable.
+-->
+使用 `nodeName` 来选择节点的方式有一些局限性：
+
+- 如果所指代的节点不存在，则 Pod 无法运行，而且在某些情况下可能会被自动删除。
+- 如果所指代的节点无法提供用来运行 Pod 所需的资源，Pod 会失败，
+  而其失败原因中会给出是否因为内存或 CPU 不足而造成无法运行。
+- 在云环境中的节点名称并不总是可预测的，也不总是稳定的。
+
+<!--
+Here is an example of a Pod spec using the `nodeName` field:
+-->
+下面是一个使用 `nodeName` 字段的 Pod 规约示例：
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: nginx
+spec:
+  containers:
+  - name: nginx
+    image: nginx
+  nodeName: kube-01
+```
+
+<!--
+The above Pod will only run on the node `kube-01`.
+-->
+上面的 Pod 只能运行在节点 `kube-01` 之上。
+
+<!-- 
+## Pod topology spread constraints
+
+You can use _topology spread constraints_ to control how {{< glossary_tooltip text="Pods" term_id="Pod" >}}
+are spread across your cluster among failure-domains such as regions, zones, nodes, or among any other
+topology domains that you define. You might do this to improve performance, expected availability, or
+overall utilization.
+
+Read [Pod topology spread constraints](/docs/concepts/scheduling-eviction/topology-spread-constraints/)
+to learn more about how these work. 
+-->
+## Pod 拓扑分布约束 {#pod-topology-spread-constraints}
+
+你可以使用 **拓扑分布约束（Topology Spread Constraints）** 来控制
+{{< glossary_tooltip text="Pod" term_id="Pod" >}} 在集群内故障域之间的分布，
+故障域的示例有区域（Region）、可用区（Zone）、节点和其他用户自定义的拓扑域。
+这样做有助于提升性能、实现高可用或提升资源利用率。
+
+阅读 [Pod 拓扑分布约束](/zh-cn/docs/concepts/scheduling-eviction/topology-spread-constraints/)
+以进一步了解这些约束的工作方式。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* Read more about [taints and tolerations](/docs/concepts/scheduling-eviction/taint-and-toleration/) .
+* Read the design docs for [node affinity](https://git.k8s.io/design-proposals-archive/scheduling/nodeaffinity.md)
+  and for [inter-pod affinity/anti-affinity](https://git.k8s.io/design-proposals-archive/scheduling/podaffinity.md).
+* Learn about how the [topology manager](/docs/tasks/administer-cluster/topology-manager/) takes part in node-level
+  resource allocation decisions. 
+* Learn how to use [nodeSelector](/docs/tasks/configure-pod-container/assign-pods-nodes/).
+* Learn how to use [affinity and anti-affinity](/docs/tasks/configure-pod-container/assign-pods-nodes-using-node-affinity/).
+-->
+* 进一步阅读[污点与容忍度](/zh-cn/docs/concepts/scheduling-eviction/taint-and-toleration/)文档。
+* 阅读[节点亲和性](https://git.k8s.io/design-proposals-archive/scheduling/nodeaffinity.md)
+  和[Pod 间亲和性与反亲和性](https://git.k8s.io/design-proposals-archive/scheduling/podaffinity.md)
+  的设计文档。
+* 了解[拓扑管理器](/zh-cn/docs/tasks/administer-cluster/topology-manager/)如何参与节点层面资源分配决定。
+* 了解如何使用 [nodeSelector](/zh-cn/docs/tasks/configure-pod-container/assign-pods-nodes/)。
+* 了解如何使用[亲和性和反亲和性](/zh-cn/docs/tasks/configure-pod-container/assign-pods-nodes-using-node-affinity/)。
+
diff --git a/content/zh/docs/concepts/scheduling-eviction/kube-scheduler.md b/content/zh-cn/docs/concepts/scheduling-eviction/kube-scheduler.md
similarity index 57%
rename from content/zh/docs/concepts/scheduling-eviction/kube-scheduler.md
rename to content/zh-cn/docs/concepts/scheduling-eviction/kube-scheduler.md
index c950fb1e20..ac721e535f 100644
--- a/content/zh/docs/concepts/scheduling-eviction/kube-scheduler.md
+++ b/content/zh-cn/docs/concepts/scheduling-eviction/kube-scheduler.md
@@ -16,9 +16,9 @@ In Kubernetes, _scheduling_ refers to making sure that {{< glossary_tooltip text
 are matched to {{< glossary_tooltip text="Nodes" term_id="node" >}} so that
 {{< glossary_tooltip term_id="kubelet" >}} can run them.
 -->
-在 Kubernetes 中，_调度_ 是指将 {{< glossary_tooltip text="Pod" term_id="pod" >}} 放置到合适的
-{{< glossary_tooltip text="Node" term_id="node" >}} 上，然后对应 Node 上的
-{{< glossary_tooltip term_id="kubelet" >}} 才能够运行这些 pod。
+在 Kubernetes 中，**调度** 是指将 {{< glossary_tooltip text="Pod" term_id="pod" >}}
+放置到合适的{{< glossary_tooltip text="节点" term_id="node" >}}上，以便对应节点上的
+{{< glossary_tooltip term_id="kubelet" >}} 能够运行这些 Pod。
 
 <!-- body -->
 <!--
@@ -33,8 +33,8 @@ for finding the best Node for that Pod to run on. The scheduler reaches
 this placement decision taking into account the scheduling principles
 described below.
 -->
-调度器通过 kubernetes 的监测（Watch）机制来发现集群中新创建且尚未被调度到 Node 上的 Pod。
-调度器会将发现的每一个未调度的 Pod 调度到一个合适的 Node 上来运行。
+调度器通过 Kubernetes 的监测（Watch）机制来发现集群中新创建且尚未被调度到节点上的 Pod。
+调度器会将所发现的每一个未调度的 Pod 调度到一个合适的节点上来运行。
 调度器会依据下文的调度原则来做出调度选择。
 
 <!--
@@ -42,8 +42,8 @@ If you want to understand why Pods are placed onto a particular Node,
 or if you're planning to implement a custom scheduler yourself, this
 page will help you learn about scheduling.
 -->
-如果你想要理解 Pod 为什么会被调度到特定的 Node 上，或者你想要尝试实现
-一个自定义的调度器，这篇文章将帮助你了解调度。
+如果你想要理解 Pod 为什么会被调度到特定的节点上，
+或者你想要尝试实现一个自定义的调度器，这篇文章将帮助你了解调度。
 
 <!--
 ## kube-scheduler
@@ -57,11 +57,11 @@ is the default scheduler for Kubernetes and runs as part of the
 kube-scheduler is designed so that, if you want and need to, you can
 write your own scheduling component and use that instead.
 -->
-[kube-scheduler](/zh/docs/reference/command-line-tools-reference/kube-scheduler/)
+[kube-scheduler](/zh-cn/docs/reference/command-line-tools-reference/kube-scheduler/)
 是 Kubernetes 集群的默认调度器，并且是集群
 {{< glossary_tooltip text="控制面" term_id="control-plane" >}} 的一部分。
-如果你真的希望或者有这方面的需求，kube-scheduler 在设计上是允许
-你自己写一个调度组件并替换原有的 kube-scheduler。
+如果你真得希望或者有这方面的需求，kube-scheduler
+在设计上允许你自己编写一个调度组件并替换原有的 kube-scheduler。
 
 <!--
 For every newly created pods or other unscheduled pods, kube-scheduler
@@ -70,19 +70,19 @@ pods has different requirements for resources and every pod also has
 different requirements. Therefore, existing nodes need to be filtered
 according to the specific scheduling requirements.
 -->
-对每一个新创建的 Pod 或者是未被调度的 Pod，kube-scheduler 会选择一个最优的
-Node 去运行这个 Pod。然而，Pod 内的每一个容器对资源都有不同的需求，而且
-Pod 本身也有不同的资源需求。因此，Pod 在被调度到 Node 上之前，
-根据这些特定的资源调度需求，需要对集群中的 Node 进行一次过滤。
+对每一个新创建的 Pod 或者是未被调度的 Pod，kube-scheduler 会选择一个最优的节点去运行这个 Pod。
+然而，Pod 内的每一个容器对资源都有不同的需求，
+而且 Pod 本身也有不同的需求。因此，Pod 在被调度到节点上之前，
+根据这些特定的调度需求，需要对集群中的节点进行一次过滤。
 
 <!--
 In a cluster, Nodes that meet the scheduling requirements for a Pod
 are called _feasible_ nodes. If none of the nodes are suitable, the pod
 remains unscheduled until the scheduler is able to place it.
 -->
-在一个集群中，满足一个 Pod 调度请求的所有 Node 称之为 _可调度节点_。
-如果没有任何一个 Node 能满足 Pod 的资源请求，那么这个 Pod 将一直停留在
-未调度状态直到调度器能够找到合适的 Node。
+在一个集群中，满足一个 Pod 调度请求的所有节点称之为 **可调度节点**。
+如果没有任何一个节点能满足 Pod 的资源请求，
+那么这个 Pod 将一直停留在未调度状态直到调度器能够找到合适的 Node。
 
 <!--
 The scheduler finds feasible Nodes for a Pod and then runs a set of
@@ -91,8 +91,8 @@ score among the feasible ones to run the Pod. The scheduler then notifies
 the API server about this decision in a process called _binding_.
 -->
 调度器先在集群中找到一个 Pod 的所有可调度节点，然后根据一系列函数对这些可调度节点打分，
-选出其中得分最高的 Node 来运行 Pod。之后，调度器将这个调度决定通知给
-kube-apiserver，这个过程叫做 _绑定_。
+选出其中得分最高的节点来运行 Pod。之后，调度器将这个调度决定通知给
+kube-apiserver，这个过程叫做 **绑定**。
 
 <!--
 Factors that need to be taken into account for scheduling decisions include
@@ -101,7 +101,7 @@ policy constraints, affinity and anti-affinity specifications, data
 locality, inter-workload interference, and so on.
 -->
 在做调度决定时需要考虑的因素包括：单独和整体的资源请求、硬件/软件/策略限制、
-亲和以及反亲和要求、数据局域性、负载间的干扰等等。
+亲和以及反亲和要求、数据局部性、负载间的干扰等等。
 
 <!--
 ## Scheduling with kube-scheduler {#kube-scheduler-implementation}
@@ -114,7 +114,7 @@ kube-scheduler selects a node for the pod in a 2-step operation:
 1. Filtering
 2. Scoring
 -->
-kube-scheduler 给一个 pod 做调度选择包含两个步骤：
+kube-scheduler 给一个 Pod 做调度选择时包含两个步骤：
 
 1. 过滤
 2. 打分
@@ -127,17 +127,17 @@ resource requests. After this step, the node list contains any suitable
 Nodes; often, there will be more than one. If the list is empty, that
 Pod isn't (yet) schedulable.
 -->
-过滤阶段会将所有满足 Pod 调度需求的 Node 选出来。
-例如，PodFitsResources 过滤函数会检查候选 Node 的可用资源能否满足 Pod 的资源请求。
-在过滤之后，得出一个 Node 列表，里面包含了所有可调度节点；通常情况下，
-这个 Node 列表包含不止一个 Node。如果这个列表是空的，代表这个 Pod 不可调度。
+过滤阶段会将所有满足 Pod 调度需求的节点选出来。
+例如，PodFitsResources 过滤函数会检查候选节点的可用资源能否满足 Pod 的资源请求。
+在过滤之后，得出一个节点列表，里面包含了所有可调度节点；通常情况下，
+这个节点列表包含不止一个节点。如果这个列表是空的，代表这个 Pod 不可调度。
 
 <!--
 In the _scoring_ step, the scheduler ranks the remaining nodes to choose
 the most suitable Pod placement. The scheduler assigns a score to each Node
 that survived filtering, basing this score on the active scoring rules.
 -->
-在打分阶段，调度器会为 Pod 从所有可调度节点中选取一个最合适的 Node。
+在打分阶段，调度器会为 Pod 从所有可调度节点中选取一个最合适的节点。
 根据当前启用的打分规则，调度器会给每一个可调度节点进行打分。
 
 <!--
@@ -145,8 +145,8 @@ Finally, kube-scheduler assigns the Pod to the Node with the highest ranking.
 If there is more than one node with equal scores, kube-scheduler selects
 one of these at random.
 -->
-最后，kube-scheduler 会将 Pod 调度到得分最高的 Node 上。
-如果存在多个得分最高的 Node，kube-scheduler 会从中随机选取一个。
+最后，kube-scheduler 会将 Pod 调度到得分最高的节点上。
+如果存在多个得分最高的节点，kube-scheduler 会从中随机选取一个。
 
 <!--
 There are two supported ways to configure the filtering and scoring behavior
@@ -162,26 +162,34 @@ of the scheduler:
   `QueueSort`, `Filter`, `Score`, `Bind`, `Reserve`, `Permit`, and others. You
   can also configure the kube-scheduler to run different profiles.
  -->
-1. [调度策略](/zh/docs/reference/scheduling/policies) 允许你配置过滤的 _断言(Predicates)_
-   和打分的 _优先级(Priorities)_ 。
-2. [调度配置](/zh/docs/reference/scheduling/config/#profiles) 允许你配置实现不同调度阶段的插件，
-   包括：`QueueSort`, `Filter`, `Score`, `Bind`, `Reserve`, `Permit` 等等。
+1. [调度策略](/zh-cn/docs/reference/scheduling/policies)
+   允许你配置过滤所用的 **断言（Predicates）** 和打分所用的 **优先级（Priorities）**。
+2. [调度配置](/zh-cn/docs/reference/scheduling/config/#profiles) 允许你配置实现不同调度阶段的插件，
+   包括：`QueueSort`、`Filter`、`Score`、`Bind`、`Reserve`、`Permit` 等等。
    你也可以配置 kube-scheduler 运行不同的配置文件。
 
 ## {{% heading "whatsnext" %}}
 <!--
 * Read about [scheduler performance tuning](/docs/concepts/scheduling-eviction/scheduler-perf-tuning/)
-* Read about [Pod topology spread constraints](/docs/concepts/workloads/pods/pod-topology-spread-constraints/)
+* Read about [Pod topology spread constraints](/docs/concepts/scheduling-eviction/topology-spread-constraints/)
 * Read the [reference documentation](/docs/reference/command-line-tools-reference/kube-scheduler/) for kube-scheduler
-* Read the [kube-scheduler config (v1beta1)](/docs/reference/config-api/kube-scheduler-config.v1beta2/) reference
+* Read the [kube-scheduler config (v1beta3)](/docs/reference/config-api/kube-scheduler-config.v1beta3/) reference
 * Learn about [configuring multiple schedulers](/docs/tasks/extend-kubernetes/configure-multiple-schedulers/)
 * Learn about [topology management policies](/docs/tasks/administer-cluster/topology-manager/)
 * Learn about [Pod Overhead](/docs/concepts/scheduling-eviction/pod-overhead/)
+* Learn about scheduling of Pods that use volumes in:
+  * [Volume Topology Support](/docs/concepts/storage/storage-classes/#volume-binding-mode)
+  * [Storage Capacity Tracking](/docs/concepts/storage/storage-capacity/)
+  * [Node-specific Volume Limits](/docs/concepts/storage/storage-limits/)
 -->
-* 阅读关于 [调度器性能调优](/zh/docs/concepts/scheduling-eviction/scheduler-perf-tuning/)
-* 阅读关于 [Pod 拓扑分布约束](/zh/docs/concepts/workloads/pods/pod-topology-spread-constraints/)
-* 阅读关于 kube-scheduler 的 [参考文档](/zh/docs/reference/command-line-tools-reference/kube-scheduler/)
-* 阅读 [kube-scheduler 配置参考 (v1beta1)](/zh/docs/reference/config-api/kube-scheduler-config.v1beta2/)
-* 了解关于 [配置多个调度器](/zh/docs/tasks/extend-kubernetes/configure-multiple-schedulers/) 的方式
-* 了解关于 [拓扑结构管理策略](/zh/docs/tasks/administer-cluster/topology-manager/)
-* 了解关于 [Pod 额外开销](/zh/docs/concepts/scheduling-eviction/pod-overhead/)
+* 阅读关于[调度器性能调优](/zh-cn/docs/concepts/scheduling-eviction/scheduler-perf-tuning/)
+* 阅读关于 [Pod 拓扑分布约束](/docs/concepts/scheduling-eviction/topology-spread-constraints/)
+* 阅读关于 kube-scheduler 的[参考文档](/zh-cn/docs/reference/command-line-tools-reference/kube-scheduler/)
+* 阅读 [kube-scheduler 配置参考 (v1beta3)](/zh-cn/docs/reference/config-api/kube-scheduler-config.v1beta3/)
+* 了解关于[配置多个调度器](/zh-cn/docs/tasks/extend-kubernetes/configure-multiple-schedulers/) 的方式
+* 了解关于[拓扑结构管理策略](/zh-cn/docs/tasks/administer-cluster/topology-manager/)
+* 了解关于 [Pod 开销](/zh-cn/docs/concepts/scheduling-eviction/pod-overhead/)
+* 了解关于如何在以下情形使用卷来调度 Pod：
+  * [卷拓扑支持](/zh-cn/docs/concepts/storage/storage-classes/#volume-binding-mode)
+  * [存储容量跟踪](/zh-cn/docs/concepts/storage/storage-capacity/)
+  * [特定于节点的卷数限制](/zh-cn/docs/concepts/storage/storage-limits/)
diff --git a/content/zh/docs/concepts/scheduling-eviction/node-pressure-eviction.md b/content/zh-cn/docs/concepts/scheduling-eviction/node-pressure-eviction.md
similarity index 92%
rename from content/zh/docs/concepts/scheduling-eviction/node-pressure-eviction.md
rename to content/zh-cn/docs/concepts/scheduling-eviction/node-pressure-eviction.md
index 4c40fac8b0..ce17740440 100644
--- a/content/zh/docs/concepts/scheduling-eviction/node-pressure-eviction.md
+++ b/content/zh-cn/docs/concepts/scheduling-eviction/node-pressure-eviction.md
@@ -31,7 +31,7 @@ kubelet 可以主动地使节点上一个或者多个 Pod 失效，以回收资
 
 在节点压力驱逐期间，kubelet 将所选 Pod 的 `PodPhase` 设置为 `Failed`。这将终止 Pod。
 
-节点压力驱逐不同于 [API 发起的驱逐](/zh/docs/concepts/scheduling-eviction/api-eviction/)。
+节点压力驱逐不同于 [API 发起的驱逐](/zh-cn/docs/concepts/scheduling-eviction/api-eviction/)。
 
 <!-- 
 The kubelet does not respect your configured `PodDisruptionBudget` or the pod's
@@ -128,9 +128,9 @@ memory is reclaimable under pressure.
 -->
 `memory.available` 的值来自 cgroupfs，而不是像 `free -m` 这样的工具。
 这很重要，因为 `free -m` 在容器中不起作用，如果用户使用
-[节点可分配资源](/zh/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)
-这一功能特性，资源不足的判定是基于 CGroup 层次结构中的用户 Pod 所处的局部及 CGroup 根节点作出的。
-这个[脚本](/zh/examples/admin/resource/memory-available.sh)
+[节点可分配资源](/zh-cn/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)
+这一功能特性，资源不足的判定是基于 cgroup 层次结构中的用户 Pod 所处的局部及 cgroup 根节点作出的。
+这个[脚本](/zh-cn/examples/admin/resource/memory-available.sh)
 重现了 kubelet 为计算 `memory.available` 而执行的相同步骤。
 kubelet 在其计算中排除了 inactive_file（即非活动 LRU 列表上基于文件来虚拟的内存的字节数），
 因为它假定在压力下内存是可回收的。
@@ -154,15 +154,26 @@ kubelet 支持以下文件系统分区：
 
 kubelet 会自动发现这些文件系统并忽略其他文件系统。kubelet 不支持其他配置。
 
-{{<note>}}
-<!-- 
-Some kubelet garbage collection features are deprecated in favor of eviction.
-For a list of the deprecated features, see [kubelet garbage collection deprecation](/docs/concepts/cluster-administration/kubelet-garbage-collection/#deprecation).
+<!--
+Some kubelet garbage collection features are deprecated in favor of eviction:
+
+| Existing Flag | New Flag | Rationale |
+| ------------- | -------- | --------- |
+| `--image-gc-high-threshold` | `--eviction-hard` or `--eviction-soft` | existing eviction signals can trigger image garbage collection |
+| `--image-gc-low-threshold` | `--eviction-minimum-reclaim` | eviction reclaims achieve the same behavior |
+| `--maximum-dead-containers` | - | deprecated once old logs are stored outside of container's context |
+| `--maximum-dead-containers-per-container` | - | deprecated once old logs are stored outside of container's context |
+| `--minimum-container-ttl-duration` | - | deprecated once old logs are stored outside of container's context |
 -->
-一些 kubelet 垃圾收集功能已被弃用，以支持驱逐。
-有关已弃用功能的列表，请参阅
-[kubelet 垃圾收集弃用](/zh/docs/concepts/cluster-administration/kubelet-garbage-collection/#deprecation)。
-{{</note>}}
+一些 kubelet 垃圾收集功能已被弃用，以鼓励使用驱逐机制。
+
+| 现有标志 | 新的标志 | 原因 |
+| ------------- | -------- | --------- |
+| `--image-gc-high-threshold` | `--eviction-hard` 或 `--eviction-soft` | 现有的驱逐信号可以触发镜像垃圾收集 |
+| `--image-gc-low-threshold` | `--eviction-minimum-reclaim` | 驱逐回收具有相同的行为 |
+| `--maximum-dead-containers` | - | 一旦旧的日志存储在容器的上下文之外就会被弃用 |
+| `--maximum-dead-containers-per-container` | - | 一旦旧的日志存储在容器的上下文之外就会被弃用 |
+| `--minimum-container-ttl-duration` | - | 一旦旧的日志存储在容器的上下文之外就会被弃用 |
 
 <!-- 
 ### Eviction thresholds
@@ -247,7 +258,7 @@ You can use the following flags to configure soft eviction thresholds:
   如果驱逐条件持续时长超过指定的宽限期，可以触发 Pod 驱逐。
 * `eviction-soft-grace-period`：一组驱逐宽限期，
   如 `memory.available=1m30s`，定义软驱逐条件在触发 Pod 驱逐之前必须保持多长时间。
-* `eviction-max-pod-grace-period`：在满足软驱逐条件而终止 Pod 时使用的最大允许宽限期（以秒为单位）。 
+* `eviction-max-pod-grace-period`：在满足软驱逐条件而终止 Pod 时使用的最大允许宽限期（以秒为单位）。
 
 <!-- 
 #### Hard eviction thresholds {#hard-eviction-thresholds}
@@ -320,7 +331,7 @@ kubelet 根据下表将驱逐信号映射为节点状况：
 | 节点条件 | 驱逐信号 | 描述 |
 |---------|--------|------|
 | `MemoryPressure` | `memory.available` | 节点上的可用内存已满足驱逐条件 |
-| `DiskPressure`   | `nodefs.available`、`nodefs.inodesFree`、`imagefs.available` 或 `imagefs.inodesFree` | 节点的根文件系统或映像文件系统上的可用磁盘空间和 inode 已满足驱逐条件 |
+| `DiskPressure`   | `nodefs.available`、`nodefs.inodesFree`、`imagefs.available` 或 `imagefs.inodesFree` | 节点的根文件系统或镜像文件系统上的可用磁盘空间和 inode 已满足驱逐条件 |
 | `PIDPressure`    | `pid.available` | (Linux) 节点上的可用进程标识符已低于驱逐条件 |
 
 kubelet 根据配置的 `--node-status-update-frequency` 更新节点条件，默认为 `10s`。
@@ -414,7 +425,7 @@ The kubelet uses the following parameters to determine pod eviction order:
 kubelet 使用以下参数来确定 Pod 驱逐顺序：
 
 1. Pod 的资源使用是否超过其请求
-1. [Pod 优先级](/zh/docs/concepts/scheduling-eviction/pod-priority-preemption/)
+1. [Pod 优先级](/zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption/)
 1. Pod 相对于请求的资源使用情况
 
 <!-- 
@@ -449,7 +460,7 @@ QoS 不适用于临时存储（EphemeralStorage）请求，
 `Guaranteed` pods are guaranteed only when requests and limits are specified for
 all the containers and they are equal. These pods will never be evicted because
 of another pod's resource consumption. If a system daemon (such as `kubelet`,
-`docker`, and `journald`) is consuming more resources than were reserved via 
+and `journald`) is consuming more resources than were reserved via 
 `system-reserved` or `kube-reserved` allocations, and the node only has
 `Guaranteed` or `Burstable` pods using less resources than requests left on it,
 then the kubelet must choose to evict one of these pods to preserve node stability
@@ -458,7 +469,7 @@ will choose to evict pods of lowest Priority first.
 -->
 仅当 `Guaranteed` Pod 中所有容器都被指定了请求和限制并且二者相等时，才保证 Pod 不被驱逐。
 这些 Pod 永远不会因为另一个 Pod 的资源消耗而被驱逐。
-如果系统守护进程（例如 `kubelet`、`docker` 和 `journald`）
+如果系统守护进程（例如 `kubelet` 和 `journald`）
 消耗的资源比通过 `system-reserved` 或 `kube-reserved` 分配保留的资源多，
 并且该节点只有 `Guaranteed` 或 `Burstable` Pod 使用的资源少于其上剩余的请求，
 那么 kubelet 必须选择驱逐这些 Pod 中的一个以保持节点稳定性并减少资源匮乏对其他 Pod 的影响。 
@@ -472,7 +483,7 @@ requests.
 The kubelet sorts pods differently based on whether the node has a dedicated
 `imagefs` filesystem:
 -->
-当 kubelet 因 inode 或 PID 不足而驱逐 pod 时，
+当 kubelet 因 inode 或 PID 不足而驱逐 Pod 时，
 它使用优先级来确定驱逐顺序，因为 inode 和 PID 没有请求。
 
 kubelet 根据节点是否具有专用的 `imagefs` 文件系统对 Pod 进行不同的排序：
@@ -524,7 +535,7 @@ reclaims the quantity you specify.
 For example, the following configuration sets minimum reclaim amounts: 
 -->
 你可以使用 `--eviction-minimum-reclaim` 标志或
-[kubelet 配置文件](/zh/docs/tasks/administer-cluster/kubelet-config-file/)
+[kubelet 配置文件](/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/)
 为每个资源配置最小回收量。
 当 kubelet 注意到某个资源耗尽时，它会继续回收该资源，直到回收到你所指定的数量为止。
 
@@ -648,7 +659,7 @@ Consider the following scenario:
 
 * 节点内存容量：`10Gi`
 * 操作员希望为系统守护进程（内核、`kubelet` 等）保留 10% 的内存容量
-* 操作员希望驱逐内存利用率为 95% 的Pod，以减少系统 OOM 的概率。
+* 操作员希望驱逐内存利用率为 95% 的 Pod，以减少系统 OOM 的概率。
 
 <!-- 
 For this to work, the kubelet is launched as follows:
@@ -757,7 +768,7 @@ You can work around that behavior by setting the memory limit and memory request
 the same for containers likely to perform intensive I/O activity. You will need 
 to estimate or measure an optimal memory limit value for that container.
 -->
-更多细节请参见 [https://github.com/kubernetes/kubernetes/issues/43916](https://github.com/kubernetes/kubernetes/issues/43916)
+更多细节请参见 [https://github.com/kubernetes/kubernetes/issues/43916](https://github.com/kubernetes/kubernetes/issues/43916)。
 
 你可以通过为可能执行 I/O 密集型活动的容器设置相同的内存限制和内存请求来应对该行为。
 你将需要估计或测量该容器的最佳内存限制值。
@@ -771,8 +782,8 @@ to estimate or measure an optimal memory limit value for that container.
 * Learn about [Quality of Service](/docs/tasks/configure-pod-container/quality-service-pod/) (QoS)
 * Check out the [Eviction API](/docs/reference/generated/kubernetes-api/{{<param "version">}}/#create-eviction-pod-v1-core)
 -->
-* 了解 [API 发起的驱逐](/zh/docs/concepts/scheduling-eviction/api-eviction/)
-* 了解 [Pod 优先级和驱逐](/zh/docs/concepts/scheduling-eviction/pod-priority-preemption/)
-* 了解 [PodDisruptionBudgets](/docs/tasks/run-application/configure-pdb/)
-* 了解[服务质量](/zh/docs/tasks/configure-pod-container/quality-service-pod/)（QoS）
-* 查看[驱逐 API](/docs/reference/generated/kubernetes-api/{{<param "version">}}/#create-eviction-pod-v1-core)
\ No newline at end of file
+* 了解 [API 发起的驱逐](/zh-cn/docs/concepts/scheduling-eviction/api-eviction/)
+* 了解 [Pod 优先级和抢占](/zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption/)
+* 了解 [PodDisruptionBudgets](/zh-cn/docs/tasks/run-application/configure-pdb/)
+* 了解[服务质量](/zh-cn/docs/tasks/configure-pod-container/quality-service-pod/)（QoS）
+* 查看[驱逐 API](/docs/reference/generated/kubernetes-api/{{<param "version">}}/#create-eviction-pod-v1-core)
diff --git a/content/zh/docs/concepts/scheduling-eviction/pod-overhead.md b/content/zh-cn/docs/concepts/scheduling-eviction/pod-overhead.md
similarity index 50%
rename from content/zh/docs/concepts/scheduling-eviction/pod-overhead.md
rename to content/zh-cn/docs/concepts/scheduling-eviction/pod-overhead.md
index 998a2c3327..046a27cd99 100644
--- a/content/zh/docs/concepts/scheduling-eviction/pod-overhead.md
+++ b/content/zh-cn/docs/concepts/scheduling-eviction/pod-overhead.md
@@ -1,328 +1,336 @@
----
-title: Pod 开销
-content_type: concept
-weight: 30
----
-
-<!--
----
-reviewers:
-- dchen1107
-- egernst
-- tallclair
-title: Pod Overhead
-content_type: concept
-weight: 30
----
--->
-
-<!-- overview -->
-
-{{< feature-state for_k8s_version="v1.18" state="beta" >}}
-
-<!--
-When you run a Pod on a Node, the Pod itself takes an amount of system resources. These
-resources are additional to the resources needed to run the container(s) inside the Pod.
-_Pod Overhead_ is a feature for accounting for the resources consumed by the Pod infrastructure
-on top of the container requests & limits.
--->
-
-在节点上运行 Pod 时，Pod 本身占用大量系统资源。这些资源是运行 Pod 内容器所需资源的附加资源。
-_POD 开销_ 是一个特性，用于计算 Pod 基础设施在容器请求和限制之上消耗的资源。
-
-<!-- body -->
-
-<!--
-## Pod Overhead
--->
-
-## Pod 开销
-
-<!--
-In Kubernetes, the Pod's overhead is set at
-[admission](/docs/reference/access-authn-authz/extensible-admission-controllers/#what-are-admission-webhooks)
-time according to the overhead associated with the Pod's
-[RuntimeClass](/docs/concepts/containers/runtime-class/).
--->
-
-在 Kubernetes 中，Pod 的开销是根据与 Pod 的 [RuntimeClass](/zh/docs/concepts/containers/runtime-class/) 相关联的开销在
-[准入](/zh/docs/reference/access-authn-authz/extensible-admission-controllers/#what-are-admission-webhooks) 时设置的。
-
-<!--
-When Pod Overhead is enabled, the overhead is considered in addition to the sum of container
-resource requests when scheduling a Pod. Similarly,the kubelet will include the Pod overhead when sizing
-the Pod cgroup, and when carrying out Pod eviction ranking.
--->
-
-如果启用了 Pod Overhead，在调度 Pod 时，除了考虑容器资源请求的总和外，还要考虑 Pod 开销。
-类似地，kubelet 将在确定 Pod cgroups 的大小和执行 Pod 驱逐排序时也会考虑 Pod 开销。
-
-<!--
-## Enabling Pod Overhead {#set-up}
--->
-## 启用 Pod 开销 {#set-up}
-
-<!--
-You need to make sure that the `PodOverhead`
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled (it is on by default as of 1.18)
-across your cluster, and a `RuntimeClass` is utilized which defines the `overhead` field.
--->
-您需要确保在集群中启用了 `PodOverhead` [特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
-（在 1.18 默认是开启的），以及一个用于定义 `overhead` 字段的 `RuntimeClass`。
-
-<!--
-## Usage example
--->
-## 使用示例
-
-<!--
-To use the PodOverhead feature, you need a RuntimeClass that defines the `overhead` field. As
-an example, you could use the following RuntimeClass definition with a virtualizing container runtime
-that uses around 120MiB per Pod for the virtual machine and the guest OS:
--->
-要使用 PodOverhead 特性，需要一个定义 `overhead` 字段的 RuntimeClass。
-作为例子，可以在虚拟机和寄宿操作系统中通过一个虚拟化容器运行时来定义
-RuntimeClass 如下，其中每个 Pod 大约使用 120MiB:
-
-```yaml
----
-kind: RuntimeClass
-apiVersion: node.k8s.io/v1
-metadata:
-    name: kata-fc
-handler: kata-fc
-overhead:
-    podFixed:
-        memory: "120Mi"
-        cpu: "250m"
-```
-
-<!--
-Workloads which are created which specify the `kata-fc` RuntimeClass handler will take the memory and
-cpu overheads into account for resource quota calculations, node scheduling, as well as Pod cgroup sizing.
-
-Consider running the given example workload, test-pod:
--->
-通过指定 `kata-fc` RuntimeClass 处理程序创建的工作负载会将内存和 cpu 开销计入资源配额计算、节点调度以及 Pod cgroup 分级。
-
-假设我们运行下面给出的工作负载示例 test-pod:
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: test-pod
-spec:
-  runtimeClassName: kata-fc
-  containers:
-  - name: busybox-ctr
-    image: busybox
-    stdin: true
-    tty: true
-    resources:
-      limits:
-        cpu: 500m
-        memory: 100Mi
-  - name: nginx-ctr
-    image: nginx
-    resources:
-      limits:
-        cpu: 1500m
-        memory: 100Mi
-```
-
-<!--
-At admission time the RuntimeClass [admission controller](/docs/reference/access-authn-authz/admission-controllers/)
-updates the workload's PodSpec to include the `overhead` as described in the RuntimeClass. If the PodSpec already has this field defined,
-the Pod will be rejected. In the given example, since only the RuntimeClass name is specified, the admission controller mutates the Pod
-to include an `overhead`.
--->
-在准入阶段 RuntimeClass [准入控制器](/zh/docs/reference/access-authn-authz/admission-controllers/) 更新工作负载的 PodSpec 以包含
- RuntimeClass 中定义的 `overhead`. 如果 PodSpec 中该字段已定义，该 Pod 将会被拒绝。
-在这个例子中，由于只指定了 RuntimeClass 名称，所以准入控制器更新了 Pod, 包含了一个 `overhead`.
-
-<!--
-After the RuntimeClass admission controller, you can check the updated PodSpec:
--->
-在 RuntimeClass 准入控制器之后，可以检验一下已更新的 PodSpec:
-
-```bash
-kubectl get pod test-pod -o jsonpath='{.spec.overhead}'
-```
-
-<!--
-The output is:
--->
-输出：
-```
-map[cpu:250m memory:120Mi]
-```
-
-<!--
-If a ResourceQuota is defined, the sum of container requests as well as the
-`overhead` field are counted.
- -->
-如果定义了 ResourceQuata, 则容器请求的总量以及 `overhead` 字段都将计算在内。
-
-<!--
-When the kube-scheduler is deciding which node should run a new Pod, the scheduler considers that Pod's
-`overhead` as well as the sum of container requests for that Pod. For this example, the scheduler adds the
-requests and the overhead, then looks for a node that has 2.25 CPU and 320 MiB of memory available.
--->
-当 kube-scheduler 决定在哪一个节点调度运行新的 Pod 时，调度器会兼顾该 Pod 的 `overhead` 以及该 Pod 的容器请求总量。在这个示例中，调度器将资源请求和开销相加，然后寻找具备 2.25 CPU 和 320 MiB 内存可用的节点。
-
-<!--
-Once a Pod is scheduled to a node, the kubelet on that node creates a new {{< glossary_tooltip text="cgroup" term_id="cgroup" >}}
-for the Pod. It is within this pod that the underlying container runtime will create containers. -->
-一旦 Pod 调度到了某个节点， 该节点上的 kubelet 将为该 Pod 新建一个 {{< glossary_tooltip text="cgroup" term_id="cgroup" >}}. 底层容器运行时将在这个 pod 中创建容器。
-
-<!--
-If the resource has a limit defined for each container (Guaranteed QoS or Bustrable QoS with limits defined),
-the kubelet will set an upper limit for the pod cgroup associated with that resource (cpu.cfs_quota_us for CPU
-and memory.limit_in_bytes memory). This upper limit is based on the sum of the container limits plus the `overhead`
-defined in the PodSpec.
--->
-如果该资源对每一个容器都定义了一个限制（定义了受限的 Guaranteed QoS 或者 Bustrable QoS），kubelet 会为与该资源（CPU 的 cpu.cfs_quota_us 以及内存的 memory.limit_in_bytes）
-相关的 pod cgroup 设定一个上限。该上限基于容器限制总量与 PodSpec 中定义的 `overhead` 之和。
-
-<!--
-For CPU, if the Pod is Guaranteed or Burstable QoS, the kubelet will set `cpu.shares` based on the sum of container
-requests plus the `overhead` defined in the PodSpec.
--->
-对于 CPU, 如果 Pod 的 QoS 是 Guaranteed 或者 Burstable, kubelet 会基于容器请求总量与 PodSpec 中定义的 `overhead` 之和设置 `cpu.shares`.
-
-<!--
-Looking at our example, verify the container requests for the workload:
--->
-请看这个例子，验证工作负载的容器请求：
-```bash
-kubectl get pod test-pod -o jsonpath='{.spec.containers[*].resources.limits}'
-```
-
-<!--
-The total container requests are 2000m CPU and 200MiB of memory:
--->
-容器请求总计 2000m CPU 和 200MiB 内存：
-```
-map[cpu: 500m memory:100Mi] map[cpu:1500m memory:100Mi]
-```
-
-<!--
-Check this against what is observed by the node:
- -->
-对照从节点观察到的情况来检查一下：
-```bash
-kubectl describe node | grep test-pod -B2
-```
-
-<!--
-The output shows 2250m CPU and 320MiB of memory are requested, which includes PodOverhead:
- -->
-该输出显示请求了 2250m CPU 以及 320MiB 内存，包含了 PodOverhead 在内：
-```
-  Namespace                   Name                CPU Requests  CPU Limits   Memory Requests  Memory Limits  AGE
-  ---------                   ----                ------------  ----------   ---------------  -------------  ---
-  default                     test-pod            2250m (56%)   2250m (56%)  320Mi (1%)       320Mi (1%)     36m
-```
-
-<!--
-## Verify Pod cgroup limits
--->
-## 验证 Pod cgroup 限制
-
-<!--
-Check the Pod's memory cgroups on the node where the workload is running. In the following example, [`crictl`](https://github.com/kubernetes-sigs/cri-tools/blob/master/docs/crictl.md)
-is used on the node, which provides a CLI for CRI-compatible container runtimes. This is an
-advanced example to show PodOverhead behavior, and it is not expected that users should need to check
-cgroups directly on the node.
-
-First, on the particular node, determine the Pod identifier:
--->
-在工作负载所运行的节点上检查 Pod 的内存 cgroups. 在接下来的例子中，
-将在该节点上使用具备 CRI 兼容的容器运行时命令行工具
-[`crictl`](https://github.com/kubernetes-sigs/cri-tools/blob/master/docs/crictl.md)。
-
-首先在特定的节点上确定该 Pod 的标识符：
-
-<!--
-```bash
-# Run this on the node where the Pod is scheduled
--->
-```bash
-# 在该 Pod 调度的节点上执行如下命令：
-POD_ID="$(sudo crictl pods --name test-pod -q)"
-```
-
-<!--
-From this, you can determine the cgroup path for the Pod:
- -->
-可以依此判断该 Pod 的 cgroup 路径：
-
-<!--
-```bash
-# Run this on the node where the Pod is scheduled
--->
-```bash
-# 在该 Pod 调度的节点上执行如下命令：
-sudo crictl inspectp -o=json $POD_ID | grep cgroupsPath
-```
-
-<!--
-The resulting cgroup path includes the Pod's `pause` container. The Pod level cgroup is one directory above.
--->
-执行结果的 cgroup 路径中包含了该 Pod 的 `pause` 容器。Pod 级别的 cgroup 即上面的一个目录。
-```
-        "cgroupsPath": "/kubepods/podd7f4b509-cf94-4951-9417-d1087c92a5b2/7ccf55aee35dd16aca4189c952d83487297f3cd760f1bbf09620e206e7d0c27a"
-```
-
-<!--
-In this specific case, the pod cgroup path is `kubepods/podd7f4b509-cf94-4951-9417-d1087c92a5b2`. Verify the Pod level cgroup setting for memory:
- -->
-在这个例子中，该 pod 的 cgroup 路径是 `kubepods/podd7f4b509-cf94-4951-9417-d1087c92a5b2`。验证内存的 Pod 级别 cgroup 设置：
-
-<!--
-```bash
-# Run this on the node where the Pod is scheduled.
-# Also, change the name of the cgroup to match the cgroup allocated for your pod.
--->
-```bash
-# 在该 Pod 调度的节点上执行这个命令。
-# 另外，修改 cgroup 的名称以匹配为该 pod 分配的 cgroup。
- cat /sys/fs/cgroup/memory/kubepods/podd7f4b509-cf94-4951-9417-d1087c92a5b2/memory.limit_in_bytes
-```
-
-<!--
-This is 320 MiB, as expected:
--->
-和预期的一样是 320 MiB
-```
-335544320
-```
-
-<!--
-### Observability
--->
-### 可观察性
-
-<!--
-A `kube_pod_overhead` metric is available in [kube-state-metrics](https://github.com/kubernetes/kube-state-metrics)
-to help identify when PodOverhead is being utilized and to help observe stability of workloads
-running with a defined Overhead. This functionality is not available in the 1.9 release of
-kube-state-metrics, but is expected in a following release. Users will need to build kube-state-metrics
-from source in the meantime.
--->
-在 [kube-state-metrics](https://github.com/kubernetes/kube-state-metrics) 中可以通过
-`kube_pod_overhead` 指标来协助确定何时使用 PodOverhead 以及协助观察以一个既定
-开销运行的工作负载的稳定性。
-该特性在 kube-state-metrics 的 1.9 发行版本中不可用，不过预计将在后续版本中发布。
-在此之前，用户需要从源代码构建 kube-state-metrics。
-
-## {{% heading "whatsnext" %}}
-
-<!--
-* [RuntimeClass](/docs/concepts/containers/runtime-class/)
-* [PodOverhead Design](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/688-pod-overhead)
--->
-
-* [RuntimeClass](/zh/docs/concepts/containers/runtime-class/)
-* [PodOverhead 设计](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/688-pod-overhead)
+---
+title: Pod 开销
+content_type: concept
+weight: 30
+---
+
+<!--
+---
+reviewers:
+- dchen1107
+- egernst
+- tallclair
+title: Pod Overhead
+content_type: concept
+weight: 30
+---
+-->
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
+
+<!--
+When you run a Pod on a Node, the Pod itself takes an amount of system resources. These
+resources are additional to the resources needed to run the container(s) inside the Pod.
+In Kubernetes, _Pod Overhead_ is a way to account for the resources consumed by the Pod
+infrastructure on top of the container requests & limits.
+-->
+
+在节点上运行 Pod 时，Pod 本身占用大量系统资源。这些是运行 Pod 内容器所需资源之外的资源。
+在 Kubernetes 中，_POD 开销_ 是一种方法，用于计算 Pod 基础设施在容器请求和限制之上消耗的资源。
+
+<!-- body -->
+
+
+<!--
+In Kubernetes, the Pod's overhead is set at
+[admission](/docs/reference/access-authn-authz/extensible-admission-controllers/#what-are-admission-webhooks)
+time according to the overhead associated with the Pod's
+[RuntimeClass](/docs/concepts/containers/runtime-class/).
+-->
+
+在 Kubernetes 中，Pod 的开销是根据与 Pod 的 [RuntimeClass](/zh-cn/docs/concepts/containers/runtime-class/)
+相关联的开销在[准入](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/#what-are-admission-webhooks)时设置的。
+
+<!--
+When Pod Overhead is enabled, the overhead is considered in addition to the sum of container
+resource requests when scheduling a Pod. Similarly,the kubelet will include the Pod overhead when sizing
+the Pod cgroup, and when carrying out Pod eviction ranking.
+-->
+
+如果启用了 Pod Overhead，在调度 Pod 时，除了考虑容器资源请求的总和外，还要考虑 Pod 开销。
+类似地，kubelet 将在确定 Pod cgroups 的大小和执行 Pod 驱逐排序时也会考虑 Pod 开销。
+
+<!--
+## Configuring Pod overhead {#set-up}
+-->
+## 配置 Pod 开销 {#set-up}
+
+<!--
+You need to make sure a `RuntimeClass` is utilized which defines the `overhead` field.
+-->
+你需要确保使用一个定义了 `overhead` 字段的 `RuntimeClass`。
+
+<!--
+## Usage example
+-->
+## 使用示例
+
+<!--
+To work with Pod overhead, you need a RuntimeClass that defines the `overhead` field. As
+an example, you could use the following RuntimeClass definition with a virtualization container
+runtime that uses around 120MiB per Pod for the virtual machine and the guest OS:
+-->
+要使用 Pod 开销，你需要一个定义了 `overhead` 字段的 RuntimeClass。
+作为例子，下面的 RuntimeClass 定义中包含一个虚拟化所用的容器运行时，
+RuntimeClass 如下，其中每个 Pod 大约使用 120MiB 用来运行虚拟机和寄宿操作系统：
+
+```yaml
+apiVersion: node.k8s.io/v1
+kind: RuntimeClass
+metadata:
+  name: kata-fc
+handler: kata-fc
+overhead:
+  podFixed:
+    memory: "120Mi"
+    cpu: "250m"
+```
+
+<!--
+Workloads which are created which specify the `kata-fc` RuntimeClass handler will take the memory and
+cpu overheads into account for resource quota calculations, node scheduling, as well as Pod cgroup sizing.
+
+Consider running the given example workload, test-pod:
+-->
+通过指定 `kata-fc` RuntimeClass 处理程序创建的工作负载会将内存和 CPU
+开销计入资源配额计算、节点调度以及 Pod cgroup 尺寸确定。
+
+假设我们运行下面给出的工作负载示例 test-pod:
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test-pod
+spec:
+  runtimeClassName: kata-fc
+  containers:
+  - name: busybox-ctr
+    image: busybox:1.28
+    stdin: true
+    tty: true
+    resources:
+      limits:
+        cpu: 500m
+        memory: 100Mi
+  - name: nginx-ctr
+    image: nginx
+    resources:
+      limits:
+        cpu: 1500m
+        memory: 100Mi
+```
+
+<!--
+At admission time the RuntimeClass [admission controller](/docs/reference/access-authn-authz/admission-controllers/)
+updates the workload's PodSpec to include the `overhead` as described in the RuntimeClass. If the PodSpec already has this field defined,
+the Pod will be rejected. In the given example, since only the RuntimeClass name is specified, the admission controller mutates the Pod
+to include an `overhead`.
+-->
+在准入阶段 RuntimeClass [准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/)
+更新工作负载的 PodSpec 以包含
+RuntimeClass 中定义的 `overhead`。如果 PodSpec 中已定义该字段，该 Pod 将会被拒绝。
+在这个例子中，由于只指定了 RuntimeClass 名称，所以准入控制器更新了 Pod，使之包含 `overhead`。
+
+<!--
+After the RuntimeClass admission controller, you can check the updated PodSpec:
+-->
+在 RuntimeClass 准入控制器进行修改后，你可以查看更新后的 PodSpec：
+```bash
+kubectl get pod test-pod -o jsonpath='{.spec.overhead}'
+```
+
+<!--
+The output is:
+-->
+输出：
+```
+map[cpu:250m memory:120Mi]
+```
+
+<!--
+If a [ResourceQuota](/docs/concepts/policy/resource-quotas/) is defined, the sum of container requests as well as the
+`overhead` field are counted.
+ -->
+如果定义了 [ResourceQuata](/zh-cn/docs/concepts/policy/resource-quotas/), 
+则容器请求的总量以及 `overhead` 字段都将计算在内。
+
+<!--
+When the kube-scheduler is deciding which node should run a new Pod, the scheduler considers that Pod's
+`overhead` as well as the sum of container requests for that Pod. For this example, the scheduler adds the
+requests and the overhead, then looks for a node that has 2.25 CPU and 320 MiB of memory available.
+-->
+当 kube-scheduler 决定在哪一个节点调度运行新的 Pod 时，调度器会兼顾该 Pod 的
+`overhead` 以及该 Pod 的容器请求总量。在这个示例中，调度器将资源请求和开销相加，
+然后寻找具备 2.25 CPU 和 320 MiB 内存可用的节点。
+
+<!--
+Once a Pod is scheduled to a node, the kubelet on that node creates a new {{< glossary_tooltip
+text="cgroup" term_id="cgroup" >}} for the Pod. It is within this pod that the underlying
+container runtime will create containers.
+-->
+一旦 Pod 被调度到了某个节点， 该节点上的 kubelet 将为该 Pod 新建一个 
+{{< glossary_tooltip text="cgroup" term_id="cgroup" >}}。 底层容器运行时将在这个
+Pod 中创建容器。
+
+<!--
+If the resource has a limit defined for each container (Guaranteed QoS or Burstable QoS with limits defined),
+the kubelet will set an upper limit for the pod cgroup associated with that resource (cpu.cfs_quota_us for CPU
+and memory.limit_in_bytes memory). This upper limit is based on the sum of the container limits plus the `overhead`
+defined in the PodSpec.
+-->
+如果该资源对每一个容器都定义了一个限制（定义了限制值的 Guaranteed QoS 或者
+Burstable QoS），kubelet 会为与该资源（CPU 的 `cpu.cfs_quota_us` 以及内存的
+`memory.limit_in_bytes`）
+相关的 Pod cgroup 设定一个上限。该上限基于 PodSpec 中定义的容器限制总量与 `overhead` 之和。
+
+<!--
+For CPU, if the Pod is Guaranteed or Burstable QoS, the kubelet will set `cpu.shares` based on the
+sum of container requests plus the `overhead` defined in the PodSpec.
+-->
+对于 CPU，如果 Pod 的 QoS 是 Guaranteed 或者 Burstable，kubelet 会基于容器请求总量与
+PodSpec 中定义的 `overhead` 之和设置 `cpu.shares`。
+
+<!--
+Looking at our example, verify the container requests for the workload:
+-->
+请看这个例子，验证工作负载的容器请求：
+
+```bash
+kubectl get pod test-pod -o jsonpath='{.spec.containers[*].resources.limits}'
+```
+
+<!--
+The total container requests are 2000m CPU and 200MiB of memory:
+-->
+容器请求总计 2000m CPU 和 200MiB 内存：
+
+```
+map[cpu: 500m memory:100Mi] map[cpu:1500m memory:100Mi]
+```
+
+<!--
+Check this against what is observed by the node:
+ -->
+对照从节点观察到的情况来检查一下：
+
+```bash
+kubectl describe node | grep test-pod -B2
+```
+
+<!--
+The output shows requests for 2250m CPU, and for 320MiB of memory. The requests include Pod overhead:
+-->
+该输出显示请求了 2250m CPU 以及 320MiB 内存。请求包含了 Pod 开销在内：
+```
+  Namespace    Name       CPU Requests  CPU Limits   Memory Requests  Memory Limits  AGE
+  ---------    ----       ------------  ----------   ---------------  -------------  ---
+  default      test-pod   2250m (56%)   2250m (56%)  320Mi (1%)       320Mi (1%)     36m
+```
+
+<!--
+## Verify Pod cgroup limits
+-->
+## 验证 Pod cgroup 限制
+
+<!--
+Check the Pod's memory cgroups on the node where the workload is running. In the following example,
+[`crictl`](https://github.com/kubernetes-sigs/cri-tools/blob/master/docs/crictl.md)
+is used on the node, which provides a CLI for CRI-compatible container runtimes. This is an
+advanced example to show Pod overhead behavior, and it is not expected that users should need to check
+cgroups directly on the node.
+
+First, on the particular node, determine the Pod identifier:
+-->
+在工作负载所运行的节点上检查 Pod 的内存 cgroups。在接下来的例子中，
+将在该节点上使用具备 CRI 兼容的容器运行时命令行工具
+[`crictl`](https://github.com/kubernetes-sigs/cri-tools/blob/master/docs/crictl.md)。
+这是一个显示 Pod 开销行为的高级示例， 预计用户不需要直接在节点上检查 cgroups。
+首先在特定的节点上确定该 Pod 的标识符：
+
+<!--
+```bash
+# Run this on the node where the Pod is scheduled
+-->
+```bash
+# 在该 Pod 被调度到的节点上执行如下命令：
+POD_ID="$(sudo crictl pods --name test-pod -q)"
+```
+
+<!--
+From this, you can determine the cgroup path for the Pod:
+ -->
+可以依此判断该 Pod 的 cgroup 路径：
+
+<!--
+```bash
+# Run this on the node where the Pod is scheduled
+-->
+```bash
+# 在该 Pod 被调度到的节点上执行如下命令：
+sudo crictl inspectp -o=json $POD_ID | grep cgroupsPath
+```
+
+<!--
+The resulting cgroup path includes the Pod's `pause` container. The Pod level cgroup is one directory above.
+-->
+执行结果的 cgroup 路径中包含了该 Pod 的 `pause` 容器。Pod 级别的 cgroup 在即上一层目录。
+
+```
+  "cgroupsPath": "/kubepods/podd7f4b509-cf94-4951-9417-d1087c92a5b2/7ccf55aee35dd16aca4189c952d83487297f3cd760f1bbf09620e206e7d0c27a"
+```
+
+<!--
+In this specific case, the pod cgroup path is `kubepods/podd7f4b509-cf94-4951-9417-d1087c92a5b2`.
+Verify the Pod level cgroup setting for memory:
+-->
+在这个例子中，该 Pod 的 cgroup 路径是 `kubepods/podd7f4b509-cf94-4951-9417-d1087c92a5b2`。
+验证内存的 Pod 级别 cgroup 设置：
+
+<!--
+```bash
+# Run this on the node where the Pod is scheduled.
+# Also, change the name of the cgroup to match the cgroup allocated for your pod.
+-->
+```bash
+# 在该 Pod 被调度到的节点上执行这个命令。
+# 另外，修改 cgroup 的名称以匹配为该 Pod 分配的 cgroup。
+ cat /sys/fs/cgroup/memory/kubepods/podd7f4b509-cf94-4951-9417-d1087c92a5b2/memory.limit_in_bytes
+```
+
+<!--
+This is 320 MiB, as expected:
+-->
+和预期的一样，这一数值为 320 MiB。
+
+```
+335544320
+```
+
+<!--
+### Observability
+-->
+### 可观察性
+
+<!--
+Some `kube_pod_overhead_*` metrics are available in [kube-state-metrics](https://github.com/kubernetes/kube-state-metrics)
+to help identify when Pod overhead is being utilized and to help observe stability of workloads
+running with a defined overhead.
+-->
+在 [kube-state-metrics](https://github.com/kubernetes/kube-state-metrics) 中可以通过
+`kube_pod_overhead_*` 指标来协助确定何时使用 Pod 开销，
+以及协助观察以一个既定开销运行的工作负载的稳定性。
+该特性在 kube-state-metrics 的 1.9 发行版本中不可用，不过预计将在后续版本中发布。
+在此之前，用户需要从源代码构建 kube-state-metrics。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* Learn more about [RuntimeClass](/docs/concepts/containers/runtime-class/)
+* Read the [PodOverhead Design](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/688-pod-overhead)
+  enhancement proposal for extra context
+-->
+* 学习更多关于 [RuntimeClass](/zh-cn/docs/concepts/containers/runtime-class/) 的信息
+* 阅读 [PodOverhead 设计](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/688-pod-overhead)增强建议以获取更多上下文
diff --git a/content/zh/docs/concepts/scheduling-eviction/pod-priority-preemption.md b/content/zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption.md
similarity index 93%
rename from content/zh/docs/concepts/scheduling-eviction/pod-priority-preemption.md
rename to content/zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption.md
index 7c9fe009c3..cf4e594d6c 100644
--- a/content/zh/docs/concepts/scheduling-eviction/pod-priority-preemption.md
+++ b/content/zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption.md
@@ -23,7 +23,7 @@ importance of a Pod relative to other Pods. If a Pod cannot be scheduled, the
 scheduler tries to preempt (evict) lower priority Pods to make scheduling of the
 pending Pod possible.
 -->
-[Pod](/zh/docs/concepts/workloads/pods/) 可以有 _优先级_。
+[Pod](/zh-cn/docs/concepts/workloads/pods/) 可以有 _优先级_。
 优先级表示一个 Pod 相对于其他 Pod 的重要性。
 如果一个 Pod 无法被调度，调度程序会尝试抢占（驱逐）较低优先级的 Pod，
 以使悬决 Pod 可以被调度。
@@ -44,7 +44,7 @@ for details.
 在一个并非所有用户都是可信的集群中，恶意用户可能以最高优先级创建 Pod，
 导致其他 Pod 被驱逐或者无法被调度。
 管理员可以使用 ResourceQuota 来阻止用户创建高优先级的 Pod。
-参见[默认限制优先级消费](/zh/docs/concepts/policy/resource-quotas/#limit-priority-class-consumption-by-default)。
+参见[默认限制优先级消费](/zh-cn/docs/concepts/policy/resource-quotas/#limit-priority-class-consumption-by-default)。
 
 {{< /warning >}}
 
@@ -82,7 +82,7 @@ These are common classes and are used to [ensure that critical components are al
 -->
 Kubernetes 已经提供了 2 个 PriorityClass：
 `system-cluster-critical` 和 `system-node-critical`。
-这些是常见的类，用于[确保始终优先调度关键组件](/zh/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/)。
+这些是常见的类，用于[确保始终优先调度关键组件](/zh-cn/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/)。
 {{< /note >}}
 
 <!-- 
@@ -103,7 +103,7 @@ PriorityClass 是一个无名称空间对象，它定义了从优先级类名称
 名称在 PriorityClass 对象元数据的 `name` 字段中指定。
 值在必填的 `value` 字段中指定。值越大，优先级越高。
 PriorityClass 对象的名称必须是有效的
-[DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)，
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)，
 并且它不能以 `system-` 为前缀。
 
 <!--  
@@ -175,9 +175,9 @@ description: "此优先级类应仅用于 XYZ 服务 Pod。"
 <!--  
 ## Non-preempting PriorityClass {#non-preempting-priority-class}
 
-{{< feature-state for_k8s_version="v1.19" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
-Pods with `PreemptionPolicy: Never` will be placed in the scheduling queue
+Pods with `preemptionPolicy: Never` will be placed in the scheduling queue
 ahead of lower-priority pods,
 but they cannot preempt other pods.
 A non-preempting pod waiting to be scheduled will stay in the scheduling queue,
@@ -195,9 +195,9 @@ high-priority pods.
 -->
 ## 非抢占式 PriorityClass {#non-preempting-priority-class}
 
-{{< feature-state for_k8s_version="v1.19" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
-配置了 `PreemptionPolicy: Never` 的 Pod 将被放置在调度队列中较低优先级 Pod 之前，
+配置了 `preemptionPolicy: Never` 的 Pod 将被放置在调度队列中较低优先级 Pod 之前，
 但它们不能抢占其他 Pod。等待调度的非抢占式 Pod 将留在调度队列中，直到有足够的可用资源，
 它才可以被调度。非抢占式 Pod，像其他 Pod 一样，受调度程序回退的影响。
 这意味着如果调度程序尝试这些 Pod 并且无法调度它们，它们将以更低的频率被重试，
@@ -206,26 +206,26 @@ high-priority pods.
 非抢占式 Pod 仍可能被其他高优先级 Pod 抢占。
 
 <!--  
-`PreemptionPolicy` defaults to `PreemptLowerPriority`,
+`preemptionPolicy` defaults to `PreemptLowerPriority`,
 which will allow pods of that PriorityClass to preempt lower-priority pods
 (as is existing default behavior).
-If `PreemptionPolicy` is set to `Never`,
+If `preemptionPolicy` is set to `Never`,
 pods in that PriorityClass will be non-preempting.
 
 An example use case is for data science workloads.
 A user may submit a job that they want to be prioritized above other workloads,
 but do not wish to discard existing work by preempting running pods.
-The high priority job with `PreemptionPolicy: Never` will be scheduled
+The high priority job with `preemptionPolicy: Never` will be scheduled
 ahead of other queued pods,
 as soon as sufficient cluster resources "naturally" become free.
 -->
-`PreemptionPolicy` 默认为 `PreemptLowerPriority`，
+`preemptionPolicy` 默认为 `PreemptLowerPriority`，
 这将允许该 PriorityClass 的 Pod 抢占较低优先级的 Pod（现有默认行为也是如此）。
-如果 `PreemptionPolicy` 设置为 `Never`，则该 PriorityClass 中的 Pod 将是非抢占式的。
+如果 `preemptionPolicy` 设置为 `Never`，则该 PriorityClass 中的 Pod 将是非抢占式的。
 
 数据科学工作负载是一个示例用例。用户可以提交他们希望优先于其他工作负载的作业，
 但不希望因为抢占运行中的 Pod 而导致现有工作被丢弃。
-设置为 `PreemptionPolicy: Never` 的高优先级作业将在其他排队的 Pod 之前被调度，
+设置为 `preemptionPolicy: Never` 的高优先级作业将在其他排队的 Pod 之前被调度，
 只要足够的集群资源“自然地”变得可用。
 
 <!-- ### Example Non-preempting PriorityClass -->
@@ -328,9 +328,10 @@ resources reserved for Pod P and also gives users information about preemptions
 in their clusters.
 
 Please note that Pod P is not necessarily scheduled to the "nominated Node".
+The scheduler always tries the "nominated Node" before iterating over any other nodes.
 After victim Pods are preempted, they get their graceful termination period. If
 another node becomes available while scheduler is waiting for the victim Pods to
-terminate, scheduler will use the other node to schedule Pod P. As a result
+terminate, scheduler may use the other node to schedule Pod P. As a result
 `nominatedNodeName` and `nodeName` of Pod spec are not always the same. Also, if
 scheduler preempts Pods on Node N, but then a higher priority Pod than Pod P
 arrives, scheduler may give Node N to the new higher priority Pod. In such a
@@ -344,9 +345,10 @@ Pod P 状态的 `nominatedNodeName` 字段被设置为节点 N 的名称。
 该字段帮助调度程序跟踪为 Pod P 保留的资源，并为用户提供有关其集群中抢占的信息。
 
 请注意，Pod P 不一定会调度到“被提名的节点（Nominated Node）”。
+调度程序总是在迭代任何其他节点之前尝试“指定节点”。
 在 Pod 因抢占而牺牲时，它们将获得体面终止期。
 如果调度程序正在等待牺牲者 Pod 终止时另一个节点变得可用，
-则调度程序将使用另一个节点来调度 Pod P。
+则调度程序可以使用另一个节点来调度 Pod P。
 因此，Pod 规约中的 `nominatedNodeName` 和 `nodeName` 并不总是相同。
 此外，如果调度程序抢占节点 N 上的 Pod，但随后比 Pod P 更高优先级的 Pod 到达，
 则调度程序可能会将节点 N 分配给新的更高优先级的 Pod。
@@ -375,7 +377,7 @@ priority Pods to zero or a small number.
 #### 被抢占牺牲者的体面终止
 
 当 Pod 被抢占时，牺牲者会得到他们的
-[体面终止期](/zh/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)。
+[体面终止期](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)。
 它们可以在体面终止期内完成工作并退出。如果它们不这样做就会被杀死。
 这个体面终止期在调度程序抢占 Pod 的时间点和待处理的 Pod (P) 
 可以在节点 (N) 上调度的时间点之间划分出了一个时间跨度。
@@ -397,7 +399,7 @@ despite their PDBs being violated.
 -->
 #### 支持 PodDisruptionBudget，但不保证
 
-[PodDisruptionBudget](/zh/docs/concepts/workloads/pods/disruptions/) 
+[PodDisruptionBudget](/zh-cn/docs/concepts/workloads/pods/disruptions/) 
 (PDB) 允许多副本应用程序的所有者限制因自愿性质的干扰而同时终止的 Pod 数量。
 Kubernetes 在抢占 Pod 时支持 PDB，但对 PDB 的支持是基于尽力而为原则的。
 调度器会尝试寻找不会因被抢占而违反 PDB 的牺牲者，但如果没有找到这样的牺牲者，
@@ -637,7 +639,7 @@ exceeding its requests, it won't be evicted. Another Pod with higher priority
 that exceeds its requests may be evicted.
 -->
 kubelet 使用优先级来确定
-[节点压力驱逐](/zh/docs/concepts/scheduling-eviction/node-pressure-eviction/) Pod 的顺序。
+[节点压力驱逐](/zh-cn/docs/concepts/scheduling-eviction/node-pressure-eviction/) Pod 的顺序。
 你可以使用 QoS 类来估计 Pod 最有可能被驱逐的顺序。kubelet 根据以下因素对 Pod 进行驱逐排名：
 
   1. 对紧俏资源的使用是否超过请求值
@@ -645,11 +647,11 @@ kubelet 使用优先级来确定
   1. 相对于请求的资源使用量
 
 有关更多详细信息，请参阅
-[kubelet 驱逐时 Pod 的选择](/zh/docs/concepts/scheduling-eviction/node-pressure-eviction/#pod-selection-for-kubelet-eviction)。
+[kubelet 驱逐时 Pod 的选择](/zh-cn/docs/concepts/scheduling-eviction/node-pressure-eviction/#pod-selection-for-kubelet-eviction)。
 
 当某 Pod 的资源用量未超过其请求时，kubelet 节点压力驱逐不会驱逐该 Pod。
-如果优先级较低的 Pod 没有超过其请求，则不会被驱逐。
-另一个优先级高于其请求的 Pod 可能会被驱逐。
+如果优先级较低的 Pod 的资源使用量没有超过其请求，则不会被驱逐。
+另一个优先级较高且资源使用量超过其请求的 Pod 可能会被驱逐。
 
 ## {{% heading "whatsnext" %}}
 
@@ -661,7 +663,7 @@ kubelet 使用优先级来确定
 * Learn about [Node-pressure Eviction](/docs/concepts/scheduling-eviction/node-pressure-eviction/)
 -->
 * 阅读有关将 ResourceQuota 与 PriorityClass 结合使用的信息：
-  [默认限制优先级消费](/zh/docs/concepts/policy/resource-quotas/#limit-priority-class-consumption-by-default)
-* 了解 [Pod 干扰](/zh/docs/concepts/workloads/pods/disruptions/)
-* 了解 [API 发起的驱逐](/zh/docs/concepts/scheduling-eviction/api-eviction/)
-* 了解[节点压力驱逐](/zh/docs/concepts/scheduling-eviction/node-pressure-eviction/)
\ No newline at end of file
+  [默认限制优先级消费](/zh-cn/docs/concepts/policy/resource-quotas/#limit-priority-class-consumption-by-default)
+* 了解 [Pod 干扰](/zh-cn/docs/concepts/workloads/pods/disruptions/)
+* 了解 [API 发起的驱逐](/zh-cn/docs/concepts/scheduling-eviction/api-eviction/)
+* 了解[节点压力驱逐](/zh-cn/docs/concepts/scheduling-eviction/node-pressure-eviction/)
diff --git a/content/zh-cn/docs/concepts/scheduling-eviction/resource-bin-packing.md b/content/zh-cn/docs/concepts/scheduling-eviction/resource-bin-packing.md
new file mode 100644
index 0000000000..42b35709b2
--- /dev/null
+++ b/content/zh-cn/docs/concepts/scheduling-eviction/resource-bin-packing.md
@@ -0,0 +1,358 @@
+---
+title: 扩展资源的资源装箱
+content_type: concept
+weight: 80
+---
+<!--
+---
+reviewers:
+- bsalamat
+- k82cn
+- ahg-g
+title: Resource Bin Packing for Extended Resources
+content_type: concept
+weight: 80
+---
+-->
+
+<!-- overview -->
+
+<!--
+In the [scheduling-plugin](/docs/reference/scheduling/config/#scheduling-plugins)  `NodeResourcesFit` of kube-scheduler, there are two 
+scoring strategies that support the bin packing of resources: `MostAllocated` and `RequestedToCapacityRatio`.
+-->
+在 kube-scheduler 的[调度插件](/zh-cn/docs/reference/scheduling/config/#scheduling-plugins)
+`NodeResourcesFit` 中存在两种支持资源装箱（bin packing）的策略：`MostAllocated` 和
+`RequestedToCapacityRatio`。
+
+<!-- body -->
+
+<!--
+## Enabling bin packing using MostAllocated strategy
+
+The `MostAllocated` strategy scores the nodes based on the utilization of resources, favoring the ones with higher allocation.
+For each resource type, you can set a weight to modify its influence in the node score.
+
+To set the `MostAllocated` strategy for the `NodeResourcesFit` plugin, use a
+[scheduler configuration](/docs/reference/scheduling/config) similar to the following:
+-->
+## 使用 MostAllocated 策略启用资源装箱   {#enabling-bin-packing-using-mostallocated-strategy}
+
+`MostAllocated` 策略基于资源的利用率来为节点计分，优选分配比率较高的节点。
+针对每种资源类型，你可以设置一个权重值以改变其对节点得分的影响。
+
+要为插件 `NodeResourcesFit` 设置 `MostAllocated` 策略，
+可以使用一个类似于下面这样的[调度器配置](/zh-cn/docs/reference/scheduling/config/)：
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+- pluginConfig:
+  - args:
+      scoringStrategy:
+        resources:
+        - name: cpu
+          weight: 1
+        - name: memory
+          weight: 1
+        - name: intel.com/foo
+          weight: 3
+        - name: intel.com/bar
+          weight: 3
+        type: MostAllocated
+    name: NodeResourcesFit
+```
+
+<!--
+To learn more about other parameters and their default configuration, see the API documentation for 
+[`NodeResourcesFitArgs`](/docs/reference/config-api/kube-scheduler-config.v1beta3/#kubescheduler-config-k8s-io-v1beta3-NodeResourcesFitArgs).
+-->
+要进一步了解其它参数及其默认配置，请参阅
+[`NodeResourcesFitArgs`](/zh-cn/docs/reference/config-api/kube-scheduler-config.v1beta3/#kubescheduler-config-k8s-io-v1beta3-NodeResourcesFitArgs)
+的 API 文档。
+
+<!--
+## Enabling bin packing using RequestedToCapacityRatio
+
+The `RequestedToCapacityRatio` strategy allows the users to specify the resources along with weights for
+each resource to score nodes based on the request to capacity ratio. This
+allows users to bin pack extended resources by using appropriate parameters
+to improve the utilization of scarce resources in large clusters. It favors nodes according to a
+configured function of the allocated resources. The behavior of the `RequestedToCapacityRatio` in
+the `NodeResourcesFit` score function can be controlled by the
+[scoringStrategy](/docs/reference/config-api/kube-scheduler-config.v1beta3/#kubescheduler-config-k8s-io-v1beta3-ScoringStrategy) field.
+Within the `scoringStrategy` field, you can configure two parameters: `requestedToCapacityRatioParam` and
+`resources`. The `shape` in `requestedToCapacityRatioParam` 
+parameter allows the user to tune the function as least requested or most 
+requested based on `utilization` and `score` values.  The `resources` parameter 
+consists of `name` of the resource to be considered during scoring and `weight` 
+specify the weight of each resource.
+-->
+## 使用 RequestedToCapacityRatio 策略来启用资源装箱 {#enabling-bin-packing-using-requestedtocapacityratio}
+
+`RequestedToCapacityRatio` 策略允许用户基于请求值与容量的比率，针对参与节点计分的每类资源设置权重。
+这一策略是的用户可以使用合适的参数来对扩展资源执行装箱操作，进而提升大规模集群中稀有资源的利用率。
+此策略根据所分配资源的一个配置函数来评价节点。
+`NodeResourcesFit` 计分函数中的 `RequestedToCapacityRatio` 可以通过字段
+[scoringStrategy](/zh-cn/docs/reference/config-api/kube-scheduler-config.v1beta3/#kubescheduler-config-k8s-io-v1beta3-ScoringStrategy)
+来控制。
+在 `scoringStrategy` 字段中，你可以配置两个参数：`requestedToCapacityRatioParam`
+和 `resources`。`requestedToCapacityRatioParam` 参数中的 `shape`
+设置使得用户能够调整函数的算法，基于 `utilization` 和 `score` 值计算最少请求或最多请求。
+`resources` 参数中包含计分过程中需要考虑的资源的 `name`，以及用来设置每种资源权重的 `weight`。
+
+<!--
+Below is an example configuration that sets
+the bin packing behavior for extended resources `intel.com/foo` and `intel.com/bar`
+using the `requestedToCapacityRatio` field.
+-->
+下面是一个配置示例，使用 `requestedToCapacityRatio` 字段为扩展资源 `intel.com/foo`
+和 `intel.com/bar` 设置装箱行为：
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+- pluginConfig:
+  - args:
+      scoringStrategy:
+        resources:
+        - name: intel.com/foo
+          weight: 3
+        - name: intel.com/bar
+          weight: 3
+        requestedToCapacityRatioParam:
+          shape:
+          - utilization: 0
+            score: 0
+          - utilization: 100
+            score: 10
+        type: RequestedToCapacityRatio
+    name: NodeResourcesFit
+```
+
+<!--
+Referencing the `KubeSchedulerConfiguration` file with the kube-scheduler 
+flag `--config=/path/to/config/file` will pass the configuration to the 
+scheduler.
+-->
+使用 kube-scheduler 标志 `--config=/path/to/config/file` 
+引用 `KubeSchedulerConfiguration` 文件，可以将配置传递给调度器。
+
+<!--
+To learn more about other parameters and their default configuration, see the API documentation for 
+[`NodeResourcesFitArgs`](/docs/reference/config-api/kube-scheduler-config.v1beta3/#kubescheduler-config-k8s-io-v1beta3-NodeResourcesFitArgs).
+-->
+要进一步了解其它参数及其默认配置，可以参阅
+[`NodeResourcesFitArgs`](/zh-cn/docs/reference/config-api/kube-scheduler-config.v1beta3/#kubescheduler-config-k8s-io-v1beta3-NodeResourcesFitArgs)
+的 API 文档。
+
+<!--
+### Tuning the score function
+
+`shape` is used to specify the behavior of the `RequestedToCapacityRatio` function.
+-->
+### 调整计分函数    {#tuning-the-score-function}
+
+`shape` 用于指定 `RequestedToCapacityRatio` 函数的行为。
+
+```yaml
+shape:
+ - utilization: 0
+   score: 0
+ - utilization: 100
+   score: 10
+```
+
+<!--
+The above arguments give the node a `score` of 0 if `utilization` is 0% and 10 for
+`utilization` 100%, thus enabling bin packing behavior. To enable least
+requested the score value must be reversed as follows.
+-->
+上面的参数在 `utilization` 为 0% 时给节点评分为 0，在 `utilization` 为
+100% 时给节点评分为 10，因此启用了装箱行为。
+要启用最少请求（least requested）模式，必须按如下方式反转得分值。
+
+```yaml
+ shape:
+  - utilization: 0
+    score: 10
+  - utilization: 100
+    score: 0
+```
+
+<!--
+`resources` is an optional parameter which by defaults is set to:
+-->
+`resources` 是一个可选参数，默认情况下设置为：
+
+``` yaml
+resources:
+  - name: cpu
+    weight: 1
+  - name: memory
+    weight: 1
+```
+
+<!--
+It can be used to add extended resources as follows:
+-->
+它可以像下面这样用来添加扩展资源：
+
+```yaml
+resources:
+  - name: intel.com/foo
+    weight: 5
+  - name: cpu
+    weight: 3
+  - name: memory
+    weight: 1
+```
+
+<!--
+The `weight` parameter is optional and is set to 1 if not specified. Also, the
+`weight` cannot be set to a negative value.
+-->
+`weight` 参数是可选的，如果未指定，则设置为 1。
+同时，`weight` 不能设置为负值。
+
+<!--
+### Node scoring for capacity allocation
+
+This section is intended for those who want to understand the internal details
+of this feature.
+Below is an example of how the node score is calculated for a given set of values.
+-->
+### 节点容量分配的评分   {#node-scoring-for-capacity-allocation}
+
+本节适用于希望了解此功能的内部细节的人员。
+以下是如何针对给定的一组值来计算节点得分的示例。
+
+<!--
+Requested resources:
+-->
+请求的资源：
+
+```
+intel.com/foo : 2
+memory: 256MB
+cpu: 2
+```
+
+<!--
+Resource weights:
+-->
+资源权重：
+
+```
+intel.com/foo : 5
+memory: 1
+cpu: 3
+```
+
+```
+FunctionShapePoint {{0, 0}, {100, 10}}
+```
+
+<!--
+Node 1 spec:
+-->
+节点 1 配置：
+
+```
+可用：
+  intel.com/foo : 4
+  memory : 1 GB
+  cpu: 8
+
+已用：
+  intel.com/foo: 1
+  memory: 256MB
+  cpu: 1
+```
+
+<!--
+Node score:
+-->
+节点得分：
+
+```
+intel.com/foo  = resourceScoringFunction((2+1),4)
+               = (100 - ((4-3)*100/4)
+               = (100 - 25)
+               = 75                       # requested + used = 75% * available
+               = rawScoringFunction(75) 
+               = 7                        # floor(75/10) 
+
+memory         = resourceScoringFunction((256+256),1024)
+               = (100 -((1024-512)*100/1024))
+               = 50                       # requested + used = 50% * available
+               = rawScoringFunction(50)
+               = 5                        # floor(50/10)
+
+cpu            = resourceScoringFunction((2+1),8)
+               = (100 -((8-3)*100/8))
+               = 37.5                     # requested + used = 37.5% * available
+               = rawScoringFunction(37.5)
+               = 3                        # floor(37.5/10)
+
+NodeScore   =  (7 * 5) + (5 * 1) + (3 * 3) / (5 + 1 + 3)
+            =  5
+```
+
+<!--
+Node 2 spec:
+-->
+节点 2 配置：
+
+```
+可用：
+  intel.com/foo: 8
+  memory: 1GB
+  cpu: 8
+
+已用：
+  intel.com/foo: 2
+  memory: 512MB
+  cpu: 6
+```
+
+<!--
+Node score:
+-->
+节点得分：
+
+```
+intel.com/foo  = resourceScoringFunction((2+2),8)
+               = (100 - ((8-4)*100/8)
+               = (100 - 50)
+               = 50
+               = rawScoringFunction(50)
+               = 5
+
+memory         = resourceScoringFunction((256+512),1024)
+               = (100 -((1024-768)*100/1024))
+               = 75
+               = rawScoringFunction(75)
+               = 7
+
+cpu            = resourceScoringFunction((2+6),8)
+               = (100 -((8-8)*100/8))
+               = 100
+               = rawScoringFunction(100)
+               = 10
+
+NodeScore   =  (5 * 5) + (7 * 1) + (10 * 3) / (5 + 1 + 3)
+            =  7
+```
+
+## {{% heading "whatsnext" %}}
+
+<!--
+- Read more about the [scheduling framework](/docs/concepts/scheduling-eviction/scheduling-framework/)
+- Read more about [scheduler configuration](/docs/reference/scheduling/config/)
+-->
+- 继续阅读[调度器框架](/zh-cn/docs/concepts/scheduling-eviction/scheduling-framework/)
+- 继续阅读[调度器配置](/zh-cn/docs/reference/scheduling/config/)
+
diff --git a/content/zh/docs/concepts/scheduling-eviction/scheduler-perf-tuning.md b/content/zh-cn/docs/concepts/scheduling-eviction/scheduler-perf-tuning.md
similarity index 96%
rename from content/zh/docs/concepts/scheduling-eviction/scheduler-perf-tuning.md
rename to content/zh-cn/docs/concepts/scheduling-eviction/scheduler-perf-tuning.md
index 398a06f18d..6ceffe8461 100644
--- a/content/zh/docs/concepts/scheduling-eviction/scheduler-perf-tuning.md
+++ b/content/zh-cn/docs/concepts/scheduling-eviction/scheduler-perf-tuning.md
@@ -23,7 +23,7 @@ is the Kubernetes default scheduler. It is responsible for placement of Pods
 on Nodes in a cluster.
 -->
 作为 kubernetes 集群的默认调度器，
-[kube-scheduler](/zh/docs/concepts/scheduling-eviction/kube-scheduler/#kube-scheduler)
+[kube-scheduler](/zh-cn/docs/concepts/scheduling-eviction/kube-scheduler/#kube-scheduler)
 主要负责将 Pod 调度到集群的 Node 上。
 
 <!--
@@ -85,7 +85,7 @@ To change the value, edit the
 and then restart the scheduler.
 In many cases, the configuration file can be found at `/etc/kubernetes/config/kube-scheduler.yaml`
  -->
-要修改这个值，先编辑 [kube-scheduler 的配置文件](/zh/docs/reference/config-api/kube-scheduler-config.v1beta2/)
+要修改这个值，先编辑 [kube-scheduler 的配置文件](/zh-cn/docs/reference/config-api/kube-scheduler-config.v1beta3/)
 然后重启调度器。
 大多数情况下，这个配置文件是 `/etc/kubernetes/config/kube-scheduler.yaml`。
 
@@ -128,7 +128,7 @@ stops searching for more feasible nodes and moves on to the
 kube-scheduler 会将它转换为节点数的整数值。在调度期间，如果
 kube-scheduler 已确认的可调度节点数足以超过了配置的百分比数量，
 kube-scheduler 将停止继续查找可调度节点并继续进行
-[打分阶段](/zh/docs/concepts/scheduling-eviction/kube-scheduler/#kube-scheduler-implementation)。
+[打分阶段](/zh-cn/docs/concepts/scheduling-eviction/kube-scheduler/#kube-scheduler-implementation)。
 
 <!--
 [How the scheduler iterates over Nodes](#how-the-scheduler-iterates-over-nodes)
@@ -298,6 +298,6 @@ After going over all the Nodes, it goes back to Node 1.
 
 ## {{% heading "whatsnext" %}}
 
-<!-- * Check the [kube-scheduler configuration reference (v1beta1)](/docs/reference/config-api/kube-scheduler-config.v1beta2/) -->
+<!-- * Check the [kube-scheduler configuration reference (v1beta3)](/docs/reference/config-api/kube-scheduler-config.v1beta3/) -->
 
-* 参见 [kube-scheduler 配置参考 (v1beta1)](/zh/docs/reference/config-api/kube-scheduler-config.v1beta2/)
+* 参见 [kube-scheduler 配置参考 (v1beta3)](/zh-cn/docs/reference/config-api/kube-scheduler-config.v1beta3/)
diff --git a/content/zh/docs/concepts/scheduling-eviction/scheduling-framework.md b/content/zh-cn/docs/concepts/scheduling-eviction/scheduling-framework.md
similarity index 87%
rename from content/zh/docs/concepts/scheduling-eviction/scheduling-framework.md
rename to content/zh-cn/docs/concepts/scheduling-eviction/scheduling-framework.md
index 303b707a2f..80cefde2e1 100644
--- a/content/zh/docs/concepts/scheduling-eviction/scheduling-framework.md
+++ b/content/zh-cn/docs/concepts/scheduling-eviction/scheduling-framework.md
@@ -99,9 +99,9 @@ stateful tasks.
 一个插件可以在多个扩展点处注册，以执行更复杂或有状态的任务。
 
 <!--
-{{< figure src="/images/docs/scheduling-framework-extensions.png" title="scheduling framework extension points" >}}
+{{< figure src="/images/docs/scheduling-framework-extensions.png" title="scheduling framework extension points" class="diagram-large">}}
 -->
-{{< figure src="/images/docs/scheduling-framework-extensions.png" title="调度框架扩展点" >}}
+{{< figure src="/images/docs/scheduling-framework-extensions.png" title="调度框架扩展点" class="diagram-large">}}
 
 <!--
 ### QueueSort {#queue-sort}
@@ -113,27 +113,27 @@ These plugins are used to sort Pods in the scheduling queue. A queue sort plugin
 essentially provides a `less(Pod1, Pod2)` function. Only one queue sort
 plugin may be enabled at a time.
 -->
-队列排序插件用于对调度队列中的 Pod 进行排序。
+这些插件用于对调度队列中的 Pod 进行排序。
 队列排序插件本质上提供 `less(Pod1, Pod2)` 函数。
 一次只能启动一个队列插件。
 
 <!--
 ### PreFilter {#pre-filter}
 -->
-### 前置过滤 {#pre-filter}
+### PreFilter {#pre-filter}
 
 <!--
 These plugins are used to pre-process info about the Pod, or to check certain
 conditions that the cluster or the Pod must meet. If a PreFilter plugin returns
 an error, the scheduling cycle is aborted.
 -->
-前置过滤插件用于预处理 Pod 的相关信息，或者检查集群或 Pod 必须满足的某些条件。
+这些插件用于预处理 Pod 的相关信息，或者检查集群或 Pod 必须满足的某些条件。
 如果 PreFilter 插件返回错误，则调度周期将终止。
 
 <!--
 ### Filter
 -->
-### 过滤
+### Filter
 
 <!--
 These plugins are used to filter out nodes that cannot run the Pod. For each
@@ -141,14 +141,14 @@ node, the scheduler will call filter plugins in their configured order. If any
 filter plugin marks the node as infeasible, the remaining plugins will not be
 called for that node. Nodes may be evaluated concurrently.
 -->
-过滤插件用于过滤出不能运行该 Pod 的节点。对于每个节点，
+这些插件用于过滤出不能运行该 Pod 的节点。对于每个节点，
 调度器将按照其配置顺序调用这些过滤插件。如果任何过滤插件将节点标记为不可行，
 则不会为该节点调用剩下的过滤插件。节点可以被同时进行评估。
 
 <!--
 ### PostFilter {#post-filter}
 -->
-### 后置过滤 {#post-filter}
+### PostFilter  {#post-filter}
 
 <!--
 These plugins are called after Filter phase, but only when no feasible nodes
@@ -157,29 +157,28 @@ any postFilter plugin marks the node as `Schedulable`, the remaining plugins
 will not be called. A typical PostFilter implementation is preemption, which
 tries to make the pod schedulable by preempting other Pods.
 -->
-
-这些插件在筛选阶段后调用，但仅在该 Pod 没有可行的节点时调用。
-插件按其配置的顺序调用。如果任何后过滤器插件标记节点为“可调度”，
-则其余的插件不会调用。典型的后筛选实现是抢占，试图通过抢占其他 Pod
+这些插件在 Filter 阶段后调用，但仅在该 Pod 没有可行的节点时调用。
+插件按其配置的顺序调用。如果任何 PostFilter 插件标记节点为“Schedulable”，
+则其余的插件不会调用。典型的 PostFilter 实现是抢占，试图通过抢占其他 Pod
 的资源使该 Pod 可以调度。
 
 <!--
 ### PreScore {#pre-score}
  -->
-### 前置评分 {#pre-score}
+### PreScore {#pre-score}
 
 <!--
 These plugins are used to perform "pre-scoring" work, which generates a sharable
 state for Score plugins to use. If a PreScore plugin returns an error, the
 scheduling cycle is aborted.
  -->
-前置评分插件用于执行 “前置评分” 工作，即生成一个可共享状态供评分插件使用。
+这些插件用于执行 “前置评分（pre-scoring）” 工作，即生成一个可共享状态供 Score 插件使用。
 如果 PreScore 插件返回错误，则调度周期将终止。
 
 <!--
 ### Score {#scoring}
  -->
-### 评分 {#scoring}
+### Score  {#scoring}
 
 <!--
 These plugins are used to rank nodes that have passed the filtering phase. The
@@ -188,7 +187,7 @@ defined range of integers representing the minimum and maximum scores. After the
 [NormalizeScore](#normalize-scoring) phase, the scheduler will combine node
 scores from all plugins according to the configured plugin weights.
 -->
-评分插件用于对通过过滤阶段的节点进行排名。调度器将为每个节点调用每个评分插件。
+这些插件用于对通过过滤阶段的节点进行排序。调度器将为每个节点调用每个评分插件。
 将有一个定义明确的整数范围，代表最小和最大分数。
 在[标准化评分](#normalize-scoring)阶段之后，调度器将根据配置的插件权重
 合并所有插件的节点分数。
@@ -196,7 +195,7 @@ scores from all plugins according to the configured plugin weights.
 <!--
 ### NormalizeScore {#normalize-scoring}
 -->
-### 标准化评分 {#normalize-scoring}
+### NormalizeScore   {#normalize-scoring}
 
 <!--
 These plugins are used to modify scores before the scheduler computes a final
@@ -204,8 +203,8 @@ ranking of Nodes. A plugin that registers for this extension point will be
 called with the [Score](#scoring) results from the same plugin. This is called
 once per plugin per scheduling cycle.
 -->
-标准化评分插件用于在调度器计算节点的排名之前修改分数。
-在此扩展点注册的插件将使用同一插件的[评分](#scoring) 结果被调用。
+这些插件用于在调度器计算 Node 排名之前修改分数。
+在此扩展点注册的插件被调用时会使用同一插件的 [Score](#scoring) 结果。
 每个插件在每个调度周期调用一次。
 
 <!--
@@ -278,8 +277,8 @@ state, it will either trigger [Unreserve](#unreserve) plugins (on failure) or
 [PostBind](#post-bind) plugins (on success) at the end of the binding cycle.
 -->
 这个是调度周期的最后一步。
-一旦 Pod 处于保留状态，它将在绑定周期结束时触发[不保留](#unreserve) 插件
-（失败时）或 [绑定后](#post-bind) 插件（成功时）。
+一旦 Pod 处于保留状态，它将在绑定周期结束时触发 [Unreserve](#unreserve) 插件
+（失败时）或 [PostBind](#post-bind) 插件（成功时）。
 
 <!--
 ### Permit
@@ -335,28 +334,28 @@ is approved, it is sent to the [PreBind](#pre-bind) phase.
 尽管任何插件可以访问 “等待中” 状态的 Pod 列表并批准它们
 (查看 [`FrameworkHandle`](https://git.k8s.io/enhancements/keps/sig-scheduling/624-scheduling-framework#frameworkhandle))。
 我们期望只有允许插件可以批准处于 “等待中” 状态的预留 Pod 的绑定。
-一旦 Pod 被批准了，它将发送到[预绑定](#pre-bind) 阶段。
+一旦 Pod 被批准了，它将发送到 [PreBind](#pre-bind) 阶段。
 {{< /note >}}
 
 <!--
 ### Pre-bind {#pre-bind}
 -->
-### 预绑定 {#pre-bind}
+### PreBind  {#pre-bind}
 
 <!--
 These plugins are used to perform any work required before a Pod is bound. For
 example, a pre-bind plugin may provision a network volume and mount it on the
 target node before allowing the Pod to run there.
 -->
-预绑定插件用于执行 Pod 绑定前所需的任何工作。
-例如，一个预绑定插件可能需要提供网络卷并且在允许 Pod 运行在该节点之前
+这些插件用于执行 Pod 绑定前所需的所有工作。
+例如，一个 PreBind 插件可能需要制备网络卷并且在允许 Pod 运行在该节点之前
 将其挂载到目标节点上。
 
 <!--
 If any PreBind plugin returns an error, the Pod is [rejected](#unreserve) and
 returned to the scheduling queue.
 -->
-如果任何 PreBind 插件返回错误，则 Pod 将被[拒绝](#unreserve) 并且
+如果任何 PreBind 插件返回错误，则 Pod 将被 [拒绝](#unreserve) 并且
 退回到调度队列中。
 
 <!--
@@ -372,13 +371,13 @@ Pod. If a bind plugin chooses to handle a Pod, **the remaining bind plugins are
 skipped**.
 -->
 Bind 插件用于将 Pod 绑定到节点上。直到所有的 PreBind 插件都完成，Bind 插件才会被调用。
-各绑定插件按照配置顺序被调用。绑定插件可以选择是否处理指定的 Pod。
-如果绑定插件选择处理 Pod，**剩余的绑定插件将被跳过**。
+各 Bind 插件按照配置顺序被调用。Bind 插件可以选择是否处理指定的 Pod。
+如果某 Bind 插件选择处理某 Pod，**剩余的 Bind 插件将被跳过**。
 
 <!--
 ### PostBind {#post-bind}
 -->
-### 绑定后 {#post-bind}
+### PostBind  {#post-bind}
 
 <!--
 This is an informational extension point. Post-bind plugins are called after a
@@ -386,7 +385,7 @@ Pod is successfully bound. This is the end of a binding cycle, and can be used
 to clean up associated resources.
 -->
 这是个信息性的扩展点。
-绑定后插件在 Pod 成功绑定后被调用。这是绑定周期的结尾，可用于清理相关的资源。
+PostBind 插件在 Pod 成功绑定后被调用。这是绑定周期的结尾，可用于清理相关的资源。
 
 <!--
 ### Unreserve
@@ -406,7 +405,7 @@ Unreserve 插件应该清楚保留 Pod 的相关状态。
 Plugins that use this extension point usually should also use
 [Reserve](#reserve).
 -->
-使用此扩展点的插件通常也使用[Reserve](#reserve)。
+使用此扩展点的插件通常也使用 [Reserve](#reserve)。
 
 <!--
 ## Plugin API
@@ -452,7 +451,7 @@ enabled by default.
  -->
 你可以在调度器配置中启用或禁用插件。
 如果你在使用 Kubernetes v1.18 或更高版本，大部分调度
-[插件](/zh/docs/reference/scheduling/config/#scheduling-plugins)
+[插件](/zh-cn/docs/reference/scheduling/config/#scheduling-plugins)
 都在使用中且默认启用。
 
 <!--
@@ -461,7 +460,7 @@ plugins and get them configured along with default plugins. You can visit
 [scheduler-plugins](https://github.com/kubernetes-sigs/scheduler-plugins) for more details.
  -->
 除了默认的插件，你还可以实现自己的调度插件并且将它们与默认插件一起配置。
-你可以访问[scheduler-plugins](https://github.com/kubernetes-sigs/scheduler-plugins)
+你可以访问 [scheduler-plugins](https://github.com/kubernetes-sigs/scheduler-plugins)
 了解更多信息。
 
 <!--
@@ -471,4 +470,6 @@ Learn more at [multiple profiles](/docs/reference/scheduling/config/#multiple-pr
  -->
 如果你正在使用 Kubernetes v1.18 或更高版本，你可以将一组插件设置为
 一个调度器配置文件，然后定义不同的配置文件来满足各类工作负载。
-了解更多关于[多配置文件](/zh/docs/reference/scheduling/config/#multiple-profiles)。
+了解更多关于[多配置文件](/zh-cn/docs/reference/scheduling/config/#multiple-profiles)。
+
+
diff --git a/content/zh/docs/concepts/scheduling-eviction/taint-and-toleration.md b/content/zh-cn/docs/concepts/scheduling-eviction/taint-and-toleration.md
similarity index 62%
rename from content/zh/docs/concepts/scheduling-eviction/taint-and-toleration.md
rename to content/zh-cn/docs/concepts/scheduling-eviction/taint-and-toleration.md
index 9b374d2f87..981656fa6f 100644
--- a/content/zh/docs/concepts/scheduling-eviction/taint-and-toleration.md
+++ b/content/zh-cn/docs/concepts/scheduling-eviction/taint-and-toleration.md
@@ -4,6 +4,7 @@ content_type: concept
 weight: 40
 ---
 
+
 <!-- overview -->
 <!--
 [_Node affinity_](/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity)
@@ -11,38 +12,39 @@ is a property of {{< glossary_tooltip text="Pods" term_id="pod" >}} that *attrac
 a set of {{< glossary_tooltip text="nodes" term_id="node" >}} (either as a preference or a
 hard requirement). _Taints_ are the opposite -- they allow a node to repel a set of pods.
 -->
-[_节点亲和性_](/zh/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity)
+[节点亲和性](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity)
 是 {{< glossary_tooltip text="Pod" term_id="pod" >}} 的一种属性，它使 Pod
 被吸引到一类特定的{{< glossary_tooltip text="节点" term_id="node" >}}
 （这可能出于一种偏好，也可能是硬性要求）。
-_污点_（Taint）则相反——它使节点能够排斥一类特定的 Pod。
+**污点（Taint）** 则相反——它使节点能够排斥一类特定的 Pod。
 
 <!--
-_Tolerations_ are applied to pods, and allow (but do not require) the pods to schedule
-onto nodes with matching taints.
+
+_Tolerations_ are applied to pods. Tolerations allow the scheduler to schedule pods with matching taints. Tolerations allow scheduling but don't guarantee scheduling: the scheduler also [evaluates other parameters](/docs/concepts/scheduling-eviction/pod-priority-preemption/) as part of its function.
 
 Taints and tolerations work together to ensure that pods are not scheduled
 onto inappropriate nodes. One or more taints are applied to a node; this
 marks that the node should not accept any pods that do not tolerate the taints.
 -->
-容忍度（Toleration）是应用于 Pod 上的，允许（但并不要求）Pod
-调度到带有与之匹配的污点的节点上。
+**容忍度（Toleration）** 是应用于 Pod 上的。容忍度允许调度器调度带有对应污点的 Pod。
+容忍度允许调度但并不保证调度：作为其功能的一部分，
+调度器也会[评估其他参数](/zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption/)。
 
 污点和容忍度（Toleration）相互配合，可以用来避免 Pod 被分配到不合适的节点上。
-每个节点上都可以应用一个或多个污点，这表示对于那些不能容忍这些污点的 Pod，是不会被该节点接受的。
+每个节点上都可以应用一个或多个污点，这表示对于那些不能容忍这些污点的 Pod，
+是不会被该节点接受的。
 
 <!-- body -->
 
 <!--
 ## Concepts
--->
-## 概念
 
-<!--
 You add a taint to a node using [kubectl taint](/docs/reference/generated/kubectl/kubectl-commands#taint).
 For example,
 -->
-您可以使用命令 [kubectl taint](/docs/reference/generated/kubectl/kubectl-commands#taint) 给节点增加一个污点。比如，
+## 概念  {#concepts}
+
+你可以使用命令 [kubectl taint](/docs/reference/generated/kubectl/kubectl-commands#taint) 给节点增加一个污点。比如，
 
 ```shell
 kubectl taint nodes node1 key1=value1:NoSchedule
@@ -52,14 +54,7 @@ kubectl taint nodes node1 key1=value1:NoSchedule
 places a taint on node `node1`. The taint has key `key1`, value `value1`, and taint effect `NoSchedule`.
 This means that no pod will be able to schedule onto `node1` unless it has a matching toleration.
 
-```shell
-kubectl taint nodes node1 key:NoSchedule
-```
-
 To remove the taint added by the command above, you can run:
-```shell
-kubectl taint nodes node1 key1=value1:NoSchedule-
-```
 -->
 给节点 `node1` 增加一个污点，它的键名是 `key1`，键值是 `value1`，效果是 `NoSchedule`。
 这表示只有拥有和这个污点相匹配的容忍度的 Pod 才能够被分配到 `node1` 这个节点。
@@ -75,9 +70,9 @@ You specify a toleration for a pod in the PodSpec. Both of the following tolerat
 taint created by the `kubectl taint` line above, and thus a pod with either toleration would be able
 to schedule onto `node1`:
 -->
-您可以在 PodSpec 中定义 Pod 的容忍度。
+你可以在 Pod 规约中为 Pod 设置容忍度。
 下面两个容忍度均与上面例子中使用 `kubectl taint` 命令创建的污点相匹配，
-因此如果一个 Pod 拥有其中的任何一个容忍度都能够被分配到 `node1` ：
+因此如果一个 Pod 拥有其中的任何一个容忍度，都能够被调度到 `node1` ：
 
 ```yaml
 tolerations:
@@ -95,7 +90,7 @@ tolerations:
 ```
 
 <!--
-Here’s an example of a pod that uses tolerations:
+Here's an example of a pod that uses tolerations:
 -->
 这里是一个使用了容忍度的 Pod：
 
@@ -110,13 +105,15 @@ The default value for `operator` is `Equal`.
 A toleration "matches" a taint if the keys are the same and the effects are the same, and:
 
 * the `operator` is `Exists` (in which case no `value` should be specified), or
-* the `operator` is `Equal` and the `value`s are equal
+* the `operator` is `Equal` and the `value`s are equal.
 -->
 一个容忍度和一个污点相“匹配”是指它们有一样的键名和效果，并且：
 
 * 如果 `operator` 是 `Exists` （此时容忍度不能指定 `value`），或者
 * 如果 `operator` 是 `Equal` ，则它们的 `value` 应该相等
 
+{{< note >}}
+
 <!--
 There are two special cases:
 
@@ -125,23 +122,22 @@ will tolerate everything.
 
 An empty `effect` matches all effects with key `key1`.
 -->
-{{< note >}}
 存在两种特殊情况：
 
-如果一个容忍度的 `key` 为空且 operator 为 `Exists`，
-表示这个容忍度与任意的 key 、value 和 effect 都匹配，即这个容忍度能容忍任意 taint。
+如果一个容忍度的 `key` 为空且 `operator` 为 `Exists`，
+表示这个容忍度与任意的 key、value 和 effect 都匹配，即这个容忍度能容忍任何污点。
 
 如果 `effect` 为空，则可以与所有键名 `key1` 的效果相匹配。
 {{< /note >}}
 
 <!--
 The above example used `effect` of `NoSchedule`. Alternatively, you can use `effect` of `PreferNoSchedule`.
-This is a "preference" or "soft" version of `NoSchedule` - the system will *try* to avoid placing a
+This is a "preference" or "soft" version of `NoSchedule` -- the system will *try* to avoid placing a
 pod that does not tolerate the taint on the node, but it is not required. The third kind of `effect` is
 `NoExecute`, described later.
 -->
-上述例子中 `effect` 使用的值为 `NoSchedule`，您也可以使用另外一个值 `PreferNoSchedule`。
-这是“优化”或“软”版本的 `NoSchedule` —— 系统会 *尽量* 避免将 Pod 调度到存在其不能容忍污点的节点上，
+上述例子中 `effect` 使用的值为 `NoSchedule`，你也可以使用另外一个值 `PreferNoSchedule`。
+这是“优化”或“软”版本的 `NoSchedule` —— 系统会 **尽量** 避免将 Pod 调度到存在其不能容忍污点的节点上，
 但这不是强制的。`effect` 的值还可以设置为 `NoExecute`，下文会详细描述这个值。
 
 <!--
@@ -150,13 +146,12 @@ The way Kubernetes processes multiple taints and tolerations is like a filter: s
 with all of a node's taints, then ignore the ones for which the pod has a matching toleration; the
 remaining un-ignored taints have the indicated effects on the pod. In particular,
 -->
-您可以给一个节点添加多个污点，也可以给一个 Pod 添加多个容忍度设置。
+你可以给一个节点添加多个污点，也可以给一个 Pod 添加多个容忍度设置。
 Kubernetes 处理多个污点和容忍度的过程就像一个过滤器：从一个节点的所有污点开始遍历，
 过滤掉那些 Pod 中存在与之相匹配的容忍度的污点。余下未被过滤的污点的 effect 值决定了
-Pod 是否会被分配到该节点，特别是以下情况：
+Pod 是否会被分配到该节点。需要注意以下情况：
 
 <!--
-
 * if there is at least one un-ignored taint with effect `NoSchedule` then Kubernetes will not schedule
 the pod onto that node
 * if there is no un-ignored taint with effect `NoSchedule` but there is at least one un-ignored taint with
@@ -165,19 +160,19 @@ effect `PreferNoSchedule` then Kubernetes will *try* to not schedule the pod ont
 the node (if it is already running on the node), and will not be
 scheduled onto the node (if it is not yet running on the node).
 -->
-* 如果未被过滤的污点中存在至少一个 effect 值为 `NoSchedule` 的污点，
-  则 Kubernetes 不会将 Pod 分配到该节点。
-* 如果未被过滤的污点中不存在 effect 值为 `NoSchedule` 的污点，
-  但是存在 effect 值为 `PreferNoSchedule` 的污点，
-  则 Kubernetes 会 *尝试* 不将 Pod 分配到该节点。
-* 如果未被过滤的污点中存在至少一个 effect 值为 `NoExecute` 的污点，
-  则 Kubernetes 不会将 Pod 分配到该节点（如果 Pod 还未在节点上运行），
+* 如果未被忽略的污点中存在至少一个 effect 值为 `NoSchedule` 的污点，
+  则 Kubernetes 不会将 Pod 调度到该节点。
+* 如果未被忽略的污点中不存在 effect 值为 `NoSchedule` 的污点，
+  但是存在至少一个 effect 值为 `PreferNoSchedule` 的污点，
+  则 Kubernetes 会 **尝试** 不将 Pod 调度到该节点。
+* 如果未被忽略的污点中存在至少一个 effect 值为 `NoExecute` 的污点，
+  则 Kubernetes 不会将 Pod 调度到该节点（如果 Pod 还未在节点上运行），
   或者将 Pod 从该节点驱逐（如果 Pod 已经在节点上运行）。
 
 <!--
 For example, imagine you taint a node like this
 -->
-例如，假设您给一个节点添加了如下污点
+例如，假设你给一个节点添加了如下污点
 
 ```shell
 kubectl taint nodes node1 key1=value1:NoSchedule
@@ -188,7 +183,7 @@ kubectl taint nodes node1 key2=value2:NoSchedule
 <!--
 And a pod has two tolerations:
 -->
-假定有一个 Pod，它有两个容忍度：
+假定某个 Pod 有两个容忍度：
 
 ```yaml
 tolerations:
@@ -208,20 +203,19 @@ toleration matching the third taint. But it will be able to continue running if
 already running on the node when the taint is added, because the third taint is the only
 one of the three that is not tolerated by the pod.
 -->
-在这种情况下，上述 Pod 不会被分配到上述节点，因为其没有容忍度和第三个污点相匹配。
+在这种情况下，上述 Pod 不会被调度到上述节点，因为其没有容忍度和第三个污点相匹配。
 但是如果在给节点添加上述污点之前，该 Pod 已经在上述节点运行，
 那么它还可以继续运行在该节点上，因为第三个污点是三个污点中唯一不能被这个 Pod 容忍的。
 
 <!--
 Normally, if a taint with effect `NoExecute` is added to a node, then any pods that do
-not tolerate the taint will be evicted immediately, and any pods that do tolerate the
+not tolerate the taint will be evicted immediately, and pods that do tolerate the
 taint will never be evicted. However, a toleration with `NoExecute` effect can specify
 an optional `tolerationSeconds` field that dictates how long the pod will stay bound
 to the node after the taint is added. For example,
 -->
 通常情况下，如果给一个节点添加了一个 effect 值为 `NoExecute` 的污点，
-则任何不能忍受这个污点的 Pod 都会马上被驱逐，
-任何可以忍受这个污点的 Pod 都不会被驱逐。
+则任何不能忍受这个污点的 Pod 都会马上被驱逐，任何可以忍受这个污点的 Pod 都不会被驱逐。
 但是，如果 Pod 存在一个 effect 值为 `NoExecute` 的容忍度指定了可选属性
 `tolerationSeconds` 的值，则表示在给节点添加了上述污点之后，
 Pod 还能继续在节点上运行的时间。例如，
@@ -246,14 +240,14 @@ taint is removed before that time, the pod will not be evicted.
 
 <!--
 ## Example Use Cases
--->
-## 使用例子
 
-<!--
 Taints and tolerations are a flexible way to steer pods *away* from nodes or evict
 pods that shouldn't be running. A few of the use cases are
 -->
-通过污点和容忍度，可以灵活地让 Pod *避开* 某些节点或者将 Pod 从某些节点驱逐。下面是几个使用例子：
+## 使用例子  {#example-use-cases}
+
+通过污点和容忍度，可以灵活地让 Pod **避开**某些节点或者将 Pod 从某些节点驱逐。
+下面是几个使用例子：
 
 <!--
 * **Dedicated Nodes**: If you want to dedicate a set of nodes for exclusive use by
@@ -268,14 +262,16 @@ to the taint to the same set of nodes (e.g. `dedicated=groupName`), and the admi
 controller should additionally add a node affinity to require that the pods can only schedule
 onto nodes labeled with `dedicated=groupName`.
 -->
-* **专用节点**：如果您想将某些节点专门分配给特定的一组用户使用，您可以给这些节点添加一个污点（即，
+* **专用节点**：如果想将某些节点专门分配给特定的一组用户使用，你可以给这些节点添加一个污点（即，
   `kubectl taint nodes nodename dedicated=groupName:NoSchedule`），
-  然后给这组用户的 Pod 添加一个相对应的 toleration（通过编写一个自定义的
-  [准入控制器](/zh/docs/reference/access-authn-authz/admission-controllers/)，很容易就能做到）。
-  拥有上述容忍度的 Pod 就能够被分配到上述专用节点，同时也能够被分配到集群中的其它节点。
-  如果您希望这些 Pod 只能被分配到上述专用节点，那么您还需要给这些专用节点另外添加一个和上述
- 污点类似的 label （例如：`dedicated=groupName`），同时 还要在上述准入控制器中给 Pod
-  增加节点亲和性要求上述 Pod 只能被分配到添加了 `dedicated=groupName` 标签的节点上。
+  然后给这组用户的 Pod 添加一个相对应的容忍度
+  （通过编写一个自定义的[准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/)，
+  很容易就能做到）。
+  拥有上述容忍度的 Pod 就能够被调度到上述专用节点，同时也能够被调度到集群中的其它节点。
+  如果你希望这些 Pod 只能被调度到上述专用节点，
+  那么你还需要给这些专用节点另外添加一个和上述污点类似的 label （例如：`dedicated=groupName`），
+  同时还要在上述准入控制器中给 Pod 增加节点亲和性要求，要求上述 Pod 只能被调度到添加了
+  `dedicated=groupName` 标签的节点上。
 
 <!--
 * **Nodes with Special Hardware**: In a cluster where a small subset of nodes have specialized
@@ -288,7 +284,7 @@ toleration to pods that use the special hardware. As in the dedicated nodes use
 it is probably easiest to apply the tolerations using a custom
 [admission controller](/docs/reference/access-authn-authz/admission-controllers/).
 For example, it is recommended to use [Extended
-Resources](/docs/concepts/configuration/manage-compute-resources-container/#extended-resources)
+Resources](/docs/concepts/configuration/manage-resources-containers/#extended-resources)
 to represent the special hardware, taint your special hardware nodes with the
 extended resource name and run the
 [ExtendedResourceToleration](/docs/reference/access-authn-authz/admission-controllers/#extendedresourcetoleration)
@@ -301,28 +297,28 @@ nodes are dedicated for pods requesting such hardware and you don't have to
 manually add tolerations to your pods.
 -->
 * **配备了特殊硬件的节点**：在部分节点配备了特殊硬件（比如 GPU）的集群中，
-  我们希望不需要这类硬件的 Pod 不要被分配到这些特殊节点，以便为后继需要这类硬件的 Pod 保留资源。
-  要达到这个目的，可以先给配备了特殊硬件的节点添加 taint
+  我们希望不需要这类硬件的 Pod 不要被调度到这些特殊节点，以便为后继需要这类硬件的 Pod 保留资源。
+  要达到这个目的，可以先给配备了特殊硬件的节点添加污点
   （例如 `kubectl taint nodes nodename special=true:NoSchedule` 或
   `kubectl taint nodes nodename special=true:PreferNoSchedule`)，
-  然后给使用了这类特殊硬件的 Pod 添加一个相匹配的 toleration。
+  然后给使用了这类特殊硬件的 Pod 添加一个相匹配的容忍度。
   和专用节点的例子类似，添加这个容忍度的最简单的方法是使用自定义
-  [准入控制器](/zh/docs/reference/access-authn-authz/admission-controllers/)。
-  比如，我们推荐使用[扩展资源](/zh/docs/concepts/configuration/manage-resources-containers/#extended-resources)
+  [准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/)。
+  比如，我们推荐使用[扩展资源](/zh-cn/docs/concepts/configuration/manage-resources-containers/#extended-resources)
   来表示特殊硬件，给配置了特殊硬件的节点添加污点时包含扩展资源名称，
-  然后运行一个 [ExtendedResourceToleration](/zh/docs/reference/access-authn-authz/admission-controllers/#extendedresourcetoleration)
-  准入控制器。此时，因为节点已经被设置污点了，没有对应容忍度的 Pod
-  不会被调度到这些节点。但当你创建一个使用了扩展资源的 Pod 时，
-  `ExtendedResourceToleration` 准入控制器会自动给 Pod 加上正确的容忍度，
-  这样 Pod 就会被自动调度到这些配置了特殊硬件件的节点上。
-  这样就能够确保这些配置了特殊硬件的节点专门用于运行需要使用这些硬件的 Pod，
-  并且您无需手动给这些 Pod 添加容忍度。
+  然后运行一个 [ExtendedResourceToleration](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#extendedresourcetoleration)
+  准入控制器。此时，因为节点已经被设置污点了，没有对应容忍度的 Pod 不会被调度到这些节点。
+  但当你创建一个使用了扩展资源的 Pod 时，`ExtendedResourceToleration` 准入控制器会自动给
+  Pod 加上正确的容忍度，这样 Pod 就会被自动调度到这些配置了特殊硬件的节点上。
+  这种方式能够确保配置了特殊硬件的节点专门用于运行需要这些硬件的 Pod，
+  并且你无需手动给这些 Pod 添加容忍度。
 
 <!--
 * **Taint based Evictions**: A per-pod-configurable eviction behavior
 when there are node problems, which is described in the next section.
 -->
-* **基于污点的驱逐**: 这是在每个 Pod 中配置的在节点出现问题时的驱逐行为，接下来的章节会描述这个特性。
+* **基于污点的驱逐**: 这是在每个 Pod 中配置的在节点出现问题时的驱逐行为，
+  接下来的章节会描述这个特性。
 
 <!--
 ## Taint based Evictions
@@ -332,7 +328,7 @@ when there are node problems, which is described in the next section.
 {{< feature-state for_k8s_version="v1.18" state="stable" >}}
 
 <!--
-The `NoExecute` taint effect, which affects pods that are already
+The `NoExecute` taint effect, mentioned above, affects pods that are already
 running on the node as follows
 
  * pods that do not tolerate the taint are evicted immediately
@@ -341,17 +337,17 @@ running on the node as follows
  * pods that tolerate the taint with a specified `tolerationSeconds` remain
    bound for the specified amount of time
 -->
-前文提到过污点的 effect 值 `NoExecute`会影响已经在节点上运行的 Pod
+前文提到过污点的效果值 `NoExecute` 会影响已经在节点上运行的 Pod，如下
 
- * 如果 Pod 不能忍受 effect 值为 `NoExecute` 的污点，那么 Pod 将马上被驱逐
- * 如果 Pod 能够忍受 effect 值为 `NoExecute` 的污点，但是在容忍度定义中没有指定
-   `tolerationSeconds`，则 Pod 还会一直在这个节点上运行。
- * 如果 Pod 能够忍受 effect 值为 `NoExecute` 的污点，而且指定了 `tolerationSeconds`，
-   则 Pod 还能在这个节点上继续运行这个指定的时间长度。
+* 如果 Pod 不能忍受这类污点，Pod 会马上被驱逐。
+* 如果 Pod 能够忍受这类污点，但是在容忍度定义中没有指定 `tolerationSeconds`，
+  则 Pod 还会一直在这个节点上运行。
+* 如果 Pod 能够忍受这类污点，而且指定了 `tolerationSeconds`，
+  则 Pod 还能在这个节点上继续运行这个指定的时间长度。
 
 <!--
-The node controller automatically taints a node when certain conditions are
-true. The following taints are built in:
+The node controller automatically taints a Node when certain conditions
+are true. The following taints are built in:
 
  * `node.kubernetes.io/not-ready`: Node is not ready. This corresponds to
    the NodeCondition `Ready` being "`False`".
@@ -366,17 +362,18 @@ true. The following taints are built in:
     with "external" cloud provider, this taint is set on a node to mark it
     as unusable. After a controller from the cloud-controller-manager initializes
     this node, the kubelet removes this taint.
-  -->
+-->
 当某种条件为真时，节点控制器会自动给节点添加一个污点。当前内置的污点包括：
 
- * `node.kubernetes.io/not-ready`：节点未准备好。这相当于节点状态 `Ready` 的值为 "`False`"。
- * `node.kubernetes.io/unreachable`：节点控制器访问不到节点. 这相当于节点状态 `Ready` 的值为 "`Unknown`"。
- * `node.kubernetes.io/memory-pressure`：节点存在内存压力。
- * `node.kubernetes.io/disk-pressure`：节点存在磁盘压力。
- * `node.kubernetes.io/pid-pressure`: 节点的 PID 压力。
- * `node.kubernetes.io/network-unavailable`：节点网络不可用。
- * `node.kubernetes.io/unschedulable`: 节点不可调度。
- * `node.cloudprovider.kubernetes.io/uninitialized`：如果 kubelet 启动时指定了一个 "外部" 云平台驱动，
+* `node.kubernetes.io/not-ready`：节点未准备好。这相当于节点状况 `Ready` 的值为 "`False`"。
+* `node.kubernetes.io/unreachable`：节点控制器访问不到节点. 这相当于节点状况 `Ready`
+  的值为 "`Unknown`"。
+* `node.kubernetes.io/memory-pressure`：节点存在内存压力。
+* `node.kubernetes.io/disk-pressure`：节点存在磁盘压力。
+* `node.kubernetes.io/pid-pressure`: 节点的 PID 压力。
+* `node.kubernetes.io/network-unavailable`：节点网络不可用。
+* `node.kubernetes.io/unschedulable`: 节点不可调度。
+* `node.cloudprovider.kubernetes.io/uninitialized`：如果 kubelet 启动时指定了一个“外部”云平台驱动，
    它将给当前节点添加一个污点将其标志为不可用。在 cloud-controller-manager
    的一个控制器初始化这个节点后，kubelet 将删除这个污点。
 
@@ -385,37 +382,35 @@ In case a node is to be evicted, the node controller or the kubelet adds relevan
 with `NoExecute` effect. If the fault condition returns to normal the kubelet or node
 controller can remove the relevant taint(s).
 -->
-在节点被驱逐时，节点控制器或者 kubelet 会添加带有 `NoExecute` 效应的相关污点。
+在节点被驱逐时，节点控制器或者 kubelet 会添加带有 `NoExecute` 效果的相关污点。
 如果异常状态恢复正常，kubelet 或节点控制器能够移除相关的污点。
 
-<!--
-To maintain the existing [rate limiting](/docs/concepts/architecture/nodes/)
-behavior of pod evictions due to node problems, the system actually adds the taints
-in a rate-limited way. This prevents massive pod evictions in scenarios such
-as the master becoming partitioned from the nodes.
--->
 {{< note >}}
-为了保证由于节点问题引起的 Pod 驱逐
-[速率限制](/zh/docs/concepts/architecture/nodes/)行为正常，
-系统实际上会以限定速率的方式添加污点。在像主控节点与工作节点间通信中断等场景下，
-这样做可以避免 Pod 被大量驱逐。
+<!--
+The control plane limits the rate of adding node new taints to nodes. This rate limiting
+manages the number of evictions that are triggered when many nodes become unreachable at
+once (for example: if there is a network disruption).
+-->
+控制面会限制向节点添加新污点的速率。这一速率限制可以管理多个节点同时不可达时
+（例如出现网络中断的情况），可能触发的驱逐的数量。
 {{< /note >}}
 
 <!--
-This feature, in combination with `tolerationSeconds`, allows a pod
-to specify how long it should stay bound to a node that has one or both of these problems.
+You can specify `tolerationSeconds` for a Pod to define how long that Pod stays bound
+to a failing or unresponsive Node.
 -->
-使用这个功能特性，结合 `tolerationSeconds`，Pod 就可以指定当节点出现一个
-或全部上述问题时还将在这个节点上运行多长的时间。
+你可以为 Pod 设置 `tolerationSeconds`，以指定当节点失效或者不响应时，
+Pod 维系与该节点间绑定关系的时长。
 
 <!--
-For example, an application with a lot of local state might want to stay
-bound to node for a long time in the event of network partition, in the hope
+For example, you might want to keep an application with a lot of local state
+bound to node for a long time in the event of network partition, hoping
 that the partition will recover and thus the pod eviction can be avoided.
-The toleration the pod would use in that case would look like
+The toleration you set for that Pod might look like:
 -->
-比如，一个使用了很多本地状态的应用程序在网络断开时，仍然希望停留在当前节点上运行一段较长的时间，
-愿意等待网络恢复以避免被驱逐。在这种情况下，Pod 的容忍度可能是下面这样的：
+比如，你可能希望在出现网络分裂事件时，对于一个与节点本地状态有着深度绑定的应用而言，
+仍然停留在当前节点上运行一段较长的时间，以等待网络恢复以避免被驱逐。
+你为这种 Pod 所设置的容忍度看起来可能是这样：
 
 ```yaml
 tolerations:
@@ -425,60 +420,55 @@ tolerations:
   tolerationSeconds: 6000
 ```
 
-<!--
-Note that Kubernetes automatically adds a toleration for
-`node.kubernetes.io/not-ready` with `tolerationSeconds=300`
-unless the pod configuration provided
-by the user already has a toleration for `node.kubernetes.io/not-ready`.
-Likewise it adds a toleration for
-`node.kubernetes.io/unreachable` with `tolerationSeconds=300`
-unless the pod configuration provided
-by the user already has a toleration for `node.kubernetes.io/unreachable`.
--->
-
 {{< note >}}
-Kubernetes 会自动给 Pod 添加一个 key 为 `node.kubernetes.io/not-ready` 的容忍度
-并配置 `tolerationSeconds=300`，除非用户提供的 Pod 配置中已经已存在了 key 为
-`node.kubernetes.io/not-ready` 的容忍度。
-
-同样，Kubernetes 会给 Pod 添加一个 key 为 `node.kubernetes.io/unreachable` 的容忍度
-并配置 `tolerationSeconds=300`，除非用户提供的 Pod 配置中已经已存在了 key 为
-`node.kubernetes.io/unreachable` 的容忍度。
-{{< /note >}}
-
 <!--
+Kubernetes automatically adds a toleration for
+`node.kubernetes.io/not-ready` and `node.kubernetes.io/unreachable`
+with `tolerationSeconds=300`,
+unless you, or a controller, set those tolerations explicitly.
+
 These automatically-added tolerations mean that Pods remain bound to
 Nodes for 5 minutes after one of these problems is detected.
 -->
-这种自动添加的容忍度意味着在其中一种问题被检测到时 Pod
-默认能够继续停留在当前节点运行 5 分钟。
+Kubernetes 会自动给 Pod 添加针对 `node.kubernetes.io/not-ready` 和
+`node.kubernetes.io/unreachable` 的容忍度，且配置 `tolerationSeconds=300`，
+除非用户自身或者某控制器显式设置此容忍度。
+
+这些自动添加的容忍度意味着 Pod 可以在检测到对应的问题之一时，在 5
+分钟内保持绑定在该节点上。
+{{< /note >}}
 
 <!--
 [DaemonSet](/docs/concepts/workloads/controllers/daemonset/) pods are created with
 `NoExecute` tolerations for the following taints with no `tolerationSeconds`:
 
-  * `node.kubernetes.io/unreachable`
-  * `node.kubernetes.io/not-ready`
+* `node.kubernetes.io/unreachable`
+* `node.kubernetes.io/not-ready`
 
 This ensures that DaemonSet pods are never evicted due to these problems.
 -->
-[DaemonSet](/zh/docs/concepts/workloads/controllers/daemonset/) 中的 Pod 被创建时，
+[DaemonSet](/zh-cn/docs/concepts/workloads/controllers/daemonset/) 中的 Pod 被创建时，
 针对以下污点自动添加的 `NoExecute` 的容忍度将不会指定 `tolerationSeconds`：
 
-  * `node.kubernetes.io/unreachable`
-  * `node.kubernetes.io/not-ready`
+* `node.kubernetes.io/unreachable`
+* `node.kubernetes.io/not-ready`
 
 这保证了出现上述问题时 DaemonSet 中的 Pod 永远不会被驱逐。
 
 <!--
 ## Taint Nodes by Condition
+
+The control plane, using the node {{<glossary_tooltip text="controller" term_id="controller">}},
+automatically creates taints with a `NoSchedule` effect for
+[node conditions](/docs/concepts/scheduling-eviction/node-pressure-eviction/#node-conditions).
 -->
-## 基于节点状态添加污点
+## 基于节点状态添加污点  {#taint-nodes-by-condition}
+
+控制平面使用节点{{<glossary_tooltip text="控制器" term_id="controller">}}自动创建
+与[节点状况](/zh-cn/docs/concepts/scheduling-eviction/node-pressure-eviction/#node-conditions)
+对应的、效果为 `NoSchedule` 的污点。
 
 <!--
-The control plane, using the node {{<glossary_tooltip text="controller" term_id="controller">}},
-automatically creates taints with a `NoSchedule` effect for [node conditions](/docs/concepts/scheduling-eviction/node-pressure-eviction/#node-conditions).
-
 The scheduler checks taints, not node conditions, when it makes scheduling
 decisions. This ensures that node conditions don't directly affect scheduling.
 For example, if the `DiskPressure` node condition is active, the control plane
@@ -486,15 +476,11 @@ adds the `node.kubernetes.io/disk-pressure` taint and does not schedule new pods
 onto the affected node. If the `MemoryPressure` node condition is active, the
 control plane adds the `node.kubernetes.io/memory-pressure` taint. 
 -->
-
-控制平面使用节点{{<glossary_tooltip text="控制器" term_id="controller">}}自动创建
-与[节点状况](/zh/docs/concepts/scheduling-eviction/node-pressure-eviction/#node-conditions)对应的带有 `NoSchedule` 效应的污点。
-
 调度器在进行调度时检查污点，而不是检查节点状况。这确保节点状况不会直接影响调度。
-例如，如果 `DiskPressure` 节点状况处于活跃状态，则控制平面
-添加 `node.kubernetes.io/disk-pressure` 污点并且不会调度新的 pod
-到受影响的节点。如果 `MemoryPressure` 节点状况处于活跃状态，则
-控制平面添加 `node.kubernetes.io/memory-pressure` 污点。
+例如，如果 `DiskPressure` 节点状况处于活跃状态，则控制平面添加
+`node.kubernetes.io/disk-pressure` 污点并且不会调度新的 Pod 到受影响的节点。
+如果 `MemoryPressure` 节点状况处于活跃状态，则控制平面添加
+`node.kubernetes.io/memory-pressure` 污点。
 
 <!--
 You can ignore node conditions for newly created pods by adding the corresponding
@@ -505,17 +491,16 @@ or `Burstable` QoS classes (even pods with no memory request set) as if they are
 able to cope with memory pressure, while new `BestEffort` pods are not scheduled
 onto the affected node. 
 -->
-
 对于新创建的 Pod，可以通过添加相应的 Pod 容忍度来忽略节点状况。
-控制平面还在具有除 `BestEffort` 之外的 {{<glossary_tooltip text="QoS 类" term_id="qos-class" >}}的 pod 上
-添加 `node.kubernetes.io/memory-pressure` 容忍度。
+控制平面还在具有除 `BestEffort` 之外的
+{{<glossary_tooltip text="QoS 类" term_id="qos-class" >}}的 Pod 上添加
+`node.kubernetes.io/memory-pressure` 容忍度。
 这是因为 Kubernetes 将 `Guaranteed` 或 `Burstable` QoS 类中的 Pod（甚至没有设置内存请求的 Pod）
 视为能够应对内存压力，而新创建的 `BestEffort` Pod 不会被调度到受影响的节点上。
 
 <!--
-The DaemonSet controller automatically adds the
-following `NoSchedule` tolerations to all daemons, to prevent DaemonSets from
-breaking.
+The DaemonSet controller automatically adds the following `NoSchedule`
+tolerations to all daemons, to prevent DaemonSets from breaking.
 
   * `node.kubernetes.io/memory-pressure`
   * `node.kubernetes.io/disk-pressure`
@@ -524,26 +509,28 @@ breaking.
   * `node.kubernetes.io/network-unavailable` (*host network only*)
 -->
 
-DaemonSet 控制器自动为所有守护进程添加如下 `NoSchedule` 容忍度以防 DaemonSet 崩溃：
+DaemonSet 控制器自动为所有守护进程添加如下 `NoSchedule` 容忍度，以防 DaemonSet 崩溃：
 
-  * `node.kubernetes.io/memory-pressure`
-  * `node.kubernetes.io/disk-pressure`
-  * `node.kubernetes.io/pid-pressure` (1.14 或更高版本)
-  * `node.kubernetes.io/unschedulable` (1.10 或更高版本)
-  * `node.kubernetes.io/network-unavailable` (*只适合主机网络配置*)
+* `node.kubernetes.io/memory-pressure`
+* `node.kubernetes.io/disk-pressure`
+* `node.kubernetes.io/pid-pressure` (1.14 或更高版本)
+* `node.kubernetes.io/unschedulable` (1.10 或更高版本)
+* `node.kubernetes.io/network-unavailable` (**只适合主机网络配置**)
 
 <!--
 Adding these tolerations ensures backward compatibility. You can also add
 arbitrary tolerations to DaemonSets.
 -->
 
-添加上述容忍度确保了向后兼容，您也可以选择自由向 DaemonSet 添加容忍度。
+添加上述容忍度确保了向后兼容，你也可以选择自由向 DaemonSet 添加容忍度。
 
 ## {{% heading "whatsnext" %}}
 
 <!--
-* Read about [Node-pressure Eviction](/docs/concepts/scheduling-eviction/node-pressure-eviction/) and how you can configure it
+* Read about [Node-pressure Eviction](/docs/concepts/scheduling-eviction/node-pressure-eviction/)
+  and how you can configure it
 * Read about [Pod Priority](/docs/concepts/scheduling-eviction/pod-priority-preemption/)
 -->
-* 阅读[节点压力驱逐](/zh/docs/concepts/scheduling-eviction/node-pressure-eviction/)，以及如何配置其行为
-* 阅读 [Pod 优先级](/zh/docs/concepts/scheduling-eviction/pod-priority-preemption/)
+* 阅读[节点压力驱逐](/zh-cn/docs/concepts/scheduling-eviction/node-pressure-eviction/)，
+  以及如何配置其行为
+* 阅读 [Pod 优先级](/zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption/)
diff --git a/content/zh-cn/docs/concepts/scheduling-eviction/topology-spread-constraints.md b/content/zh-cn/docs/concepts/scheduling-eviction/topology-spread-constraints.md
new file mode 100644
index 0000000000..5fd4a41373
--- /dev/null
+++ b/content/zh-cn/docs/concepts/scheduling-eviction/topology-spread-constraints.md
@@ -0,0 +1,867 @@
+---
+title: Pod 拓扑分布约束
+content_type: concept
+weight: 40
+---
+
+<!-- 
+title: Pod Topology Spread Constraints
+content_type: concept
+weight: 40 
+-->
+
+<!-- overview -->
+
+<!-- 
+You can use _topology spread constraints_ to control how
+{{< glossary_tooltip text="Pods" term_id="Pod" >}} are spread across your cluster
+among failure-domains such as regions, zones, nodes, and other user-defined topology
+domains. This can help to achieve high availability as well as efficient resource
+utilization.
+
+You can set [cluster-level constraints](#cluster-level-default-constraints) as a default,
+or configure topology spread constraints for individual workloads. 
+-->
+你可以使用 **拓扑分布约束（Topology Spread Constraints）** 来控制
+{{< glossary_tooltip text="Pod" term_id="Pod" >}} 在集群内故障域之间的分布，
+例如区域（Region）、可用区（Zone）、节点和其他用户自定义拓扑域。
+这样做有助于实现高可用并提升资源利用率。
+
+你可以将[集群级约束](#cluster-level-default-constraints)设为默认值，或为个别工作负载配置拓扑分布约束。
+
+<!-- body -->
+
+<!-- 
+## Motivation
+
+Imagine that you have a cluster of up to twenty nodes, and you want to run a
+{{< glossary_tooltip text="workload" term_id="workload" >}}
+that automatically scales how many replicas it uses. There could be as few as
+two Pods or as many as fifteen.
+When there are only two Pods, you'd prefer not to have both of those Pods run on the
+same node: you would run the risk that a single node failure takes your workload
+offline.
+
+In addition to this basic usage, there are some advanced usage examples that
+enable your workloads to benefit on high availability and cluster utilization. 
+-->
+## 动机 {#motivation}
+
+假设你有一个最多包含二十个节点的集群，你想要运行一个自动扩缩的
+{{< glossary_tooltip text="工作负载" term_id="workload" >}}，请问要使用多少个副本？
+答案可能是最少 2 个 Pod，最多 15 个 Pod。
+当只有 2 个 Pod 时，你倾向于这 2 个 Pod 不要同时在同一个节点上运行：
+你所遭遇的风险是如果放在同一个节点上且单节点出现故障，可能会让你的工作负载下线。
+
+除了这个基本的用法之外，还有一些高级的使用案例，能够让你的工作负载受益于高可用性并提高集群利用率。
+
+<!-- 
+As you scale up and run more Pods, a different concern becomes important. Imagine
+that you have three nodes running five Pods each. The nodes have enough capacity
+to run that many replicas; however, the clients that interact with this workload
+are split across three different datacenters (or infrastructure zones). Now you
+have less concern about a single node failure, but you notice that latency is
+higher than you'd like, and you are paying for network costs associated with
+sending network traffic between the different zones.
+
+You decide that under normal operation you'd prefer to have a similar number of replicas
+[scheduled](/docs/concepts/scheduling-eviction/) into each infrastructure zone,
+and you'd like the cluster to self-heal in the case that there is a problem.
+
+Pod topology spread constraints offer you a declarative way to configure that.
+-->
+随着你的工作负载扩容，运行的 Pod 变多，将需要考虑另一个重要问题。
+假设你有 3 个节点，每个节点运行 5 个 Pod。这些节点有足够的容量能够运行许多副本；
+但与这个工作负载互动的客户端分散在三个不同的数据中心（或基础设施可用区）。
+现在你可能不太关注单节点故障问题，但你会注意到延迟高于自己的预期，
+在不同的可用区之间发送网络流量会产生一些网络成本。
+
+你决定在正常运营时倾向于将类似数量的副本[调度](/zh-cn/docs/concepts/scheduling-eviction/)
+到每个基础设施可用区，且你想要该集群在遇到问题时能够自愈。
+
+Pod 拓扑分布约束使你能够以声明的方式进行配置。
+
+<!-- 
+## `topologySpreadConstraints` field
+
+The Pod API includes a field, `spec.topologySpreadConstraints`. Here is an example: 
+-->
+## `topologySpreadConstraints` 字段
+
+Pod API 包括一个 `spec.topologySpreadConstraints` 字段。这里有一个示例：
+
+```yaml
+---
+apiVersion: v1
+kind: Pod
+metadata:
+  name: example-pod
+spec:
+  # 配置一个拓扑分布约束
+  topologySpreadConstraints:
+    - maxSkew: <integer>
+      minDomains: <integer> # 可选；自从 v1.24 开始成为 Alpha
+      topologyKey: <string>
+      whenUnsatisfiable: <string>
+      labelSelector: <object>
+  ### 其他 Pod 字段置于此处
+```
+
+<!-- 
+You can read more about this field by running `kubectl explain Pod.spec.topologySpreadConstraints`. 
+-->
+你可以运行 `kubectl explain Pod.spec.topologySpreadConstraints` 阅读有关此字段的更多信息。
+
+<!-- 
+### Spread constraint definition
+
+You can define one or multiple `topologySpreadConstraints` entries to instruct the
+kube-scheduler how to place each incoming Pod in relation to the existing Pods across
+your cluster. Those fields are: 
+-->
+### 分布约束定义
+
+你可以定义一个或多个 `topologySpreadConstraints` 条目以指导 kube-scheduler
+如何将每个新来的 Pod 与跨集群的现有 Pod 相关联。这些字段包括：
+
+<!--
+- **maxSkew** describes the degree to which Pods may be unevenly distributed. You must
+  specify this field and the number must be greater than zero. Its semantics differ
+  according to the value of `whenUnsatisfiable`:
+
+  - if you select `whenUnsatisfiable: DoNotSchedule`, then `maxSkew` defines the
+    maximum permitted difference between the number of matching pods in the target
+    topology and the _global minimum_
+    (the minimum number of pods that match the label selector in a topology domain).
+    For example, if you have 3 zones with 2, 4 and 5 matching pods respectively,
+    then the global minimum is 2 and `maxSkew` is compared relative to that number.
+  - if you select `whenUnsatisfiable: ScheduleAnyway`, the scheduler gives higher
+    precedence to topologies that would help reduce the skew.
+-->
+- **maxSkew** 描述这些 Pod 可能被均匀分布的程度。你必须指定此字段且该数值必须大于零。
+  其语义将随着 `whenUnsatisfiable` 的值发生变化：
+  
+  - 如果你选择 `whenUnsatisfiable: DoNotSchedule`，则 `maxSkew` 定义目标拓扑中匹配 Pod 的数量与
+    **全局最小值**（与拓扑域中标签选择算符匹配的最小 Pod 数量）之间的最大允许差值。
+    例如，如果你有 3 个可用区，分别有 2、4 和 5 个匹配的 Pod，则全局最小值为 2，
+    而 `maxSkew` 相对于该数字进行比较。
+  - 如果你选择 `whenUnsatisfiable: ScheduleAnyway`，则该调度器会更为偏向能够降低偏差值的拓扑域。
+
+<!--
+- **minDomains** indicates a minimum number of eligible domains. This field is optional.
+  A domain is a particular instance of a topology. An eligible domain is a domain whose
+  nodes match the node selector.
+
+  The `minDomains` field is an alpha field added in 1.24. You have to enable the
+  `MinDomainsInPodToplogySpread` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+  in order to use it.
+-->
+- **minDomains** 表示符合条件的域的最小数量。此字段是可选的。域是拓扑的一个特定实例。
+  符合条件的域是其节点与节点选择器匹配的域。
+  
+  {{< note >}}
+  `minDomains` 字段是 1.24 中添加的一个 Alpha 字段。
+  你必须启用 `MinDomainsInPodToplogySpread` [特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)，才能使用该字段。
+  {{< /note >}}
+  
+  <!--
+  - The value of `minDomains` must be greater than 0, when specified.
+    You can only specify `minDomains` in conjunction with `whenUnsatisfiable: DoNotSchedule`.
+  - When the number of eligible domains with match topology keys is less than `minDomains`,
+    Pod topology spread treats global minimum as 0, and then the calculation of `skew` is performed.
+    The global minimum is the minimum number of matching Pods in an eligible domain,
+    or zero if the number of eligible domains is less than `minDomains`.
+  - When the number of eligible domains with matching topology keys equals or is greater than
+    `minDomains`, this value has no effect on scheduling.
+  - If you do not specify `minDomains`, the constraint behaves as if `minDomains` is 1.
+  -->
+
+  - 指定的 `minDomains` 值必须大于 0。你可以结合 `whenUnsatisfiable: DoNotSchedule` 仅指定 `minDomains`。
+  - 当符合条件的、拓扑键匹配的域的数量小于 `minDomains` 时，拓扑分布将“全局最小值”（global minimum）设为 0，
+    然后进行 `skew` 计算。“全局最小值” 是一个符合条件的域中匹配 Pod 的最小数量，
+    如果符合条件的域的数量小于 `minDomains`，则全局最小值为零。
+  - 当符合条件的拓扑键匹配域的个数等于或大于 `minDomains` 时，该值对调度没有影响。
+  - 如果你未指定 `minDomains`，则约束行为类似于 `minDomains` 等于 1。
+
+<!--
+- **topologyKey** is the key of [node labels](#node-labels). If two Nodes are labelled
+  with this key and have identical values for that label, the scheduler treats both
+  Nodes as being in the same topology. The scheduler tries to place a balanced number
+  of Pods into each topology domain.
+
+- **whenUnsatisfiable** indicates how to deal with a Pod if it doesn't satisfy the spread constraint:
+  - `DoNotSchedule` (default) tells the scheduler not to schedule it.
+  - `ScheduleAnyway` tells the scheduler to still schedule it while prioritizing nodes that minimize the skew.
+
+- **labelSelector** is used to find matching Pods. Pods
+  that match this label selector are counted to determine the
+  number of Pods in their corresponding topology domain.
+  See [Label Selectors](/docs/concepts/overview/working-with-objects/labels/#label-selectors)
+  for more details.
+-->
+- **topologyKey** 是[节点标签](#node-labels)的键。如果两个节点使用此键标记并且具有相同的标签值，
+  则调度器会将这两个节点视为处于同一拓扑域中。该调度器尝试在每个拓扑域中放置数量均衡的 Pod。
+
+- **whenUnsatisfiable** 指示如果 Pod 不满足分布约束时如何处理：
+  - `DoNotSchedule`（默认）告诉调度器不要调度。
+  - `ScheduleAnyway` 告诉调度器仍然继续调度，只是根据如何能将偏差最小化来对节点进行排序。
+
+- **labelSelector** 用于查找匹配的 Pod。匹配此标签的 Pod 将被统计，以确定相应拓扑域中 Pod 的数量。
+  有关详细信息，请参考[标签选择算符](/zh-cn/docs/concepts/overview/working-with-objects/labels/#label-selectors)。
+
+<!--
+When a Pod defines more than one `topologySpreadConstraint`, those constraints are
+combined using a logical AND operation: the kube-scheduler looks for a node for the incoming Pod
+that satisfies all the configured constraints.
+-->
+当 Pod 定义了不止一个 `topologySpreadConstraint`，这些约束之间是逻辑与的关系。
+kube-scheduler 会为新的 Pod 寻找一个能够满足所有约束的节点。
+
+<!--
+### Node labels
+
+Topology spread constraints rely on node labels to identify the topology
+domain(s) that each {{< glossary_tooltip text="node" term_id="node" >}} is in.
+For example, a node might have labels:
+-->
+### 节点标签 {#node-labels}
+
+拓扑分布约束依赖于节点标签来标识每个{{< glossary_tooltip text="节点" term_id="node" >}}所在的拓扑域。例如，某节点可能具有标签：
+
+```yaml
+  region: us-east-1
+  zone: us-east-1a
+```
+
+<!--
+For brevity, this example doesn't use the
+[well-known](/docs/reference/labels-annotations-taints/) label keys
+`topology.kubernetes.io/zone` and `topology.kubernetes.io/region`. However,
+those registered label keys are nonetheless recommended rather than the private
+(unqualified) label keys `region` and `zone` that are used here.
+
+You can't make a reliable assumption about the meaning of a private label key
+between different contexts.
+-->
+{{< note >}}
+为了简便，此示例未使用[众所周知](/zh-cn/docs/reference/labels-annotations-taints/)的标签键
+`topology.kubernetes.io/zone` 和 `topology.kubernetes.io/region`。
+但是，建议使用那些已注册的标签键，而不是此处使用的私有（不合格）标签键 `region` 和 `zone`。
+
+你无法对不同上下文之间的私有标签键的含义做出可靠的假设。
+{{< /note >}}
+
+<!--
+Suppose you have a 4-node cluster with the following labels:
+-->
+假设你有一个 4 节点的集群且带有以下标签：
+
+```
+NAME    STATUS   ROLES    AGE     VERSION   LABELS
+node1   Ready    <none>   4m26s   v1.16.0   node=node1,zone=zoneA
+node2   Ready    <none>   3m58s   v1.16.0   node=node2,zone=zoneA
+node3   Ready    <none>   3m17s   v1.16.0   node=node3,zone=zoneB
+node4   Ready    <none>   2m43s   v1.16.0   node=node4,zone=zoneB
+```
+
+<!--
+Then the cluster is logically viewed as below:
+-->
+那么，从逻辑上看集群如下：
+
+{{<mermaid>}}
+graph TB
+    subgraph "zoneB"
+        n3(Node3)
+        n4(Node4)
+    end
+    subgraph "zoneA"
+        n1(Node1)
+        n2(Node2)
+    end
+
+    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+    class n1,n2,n3,n4 k8s;
+    class zoneA,zoneB cluster;
+{{< /mermaid >}}
+
+<!--
+## Consistency
+
+You should set the same Pod topology spread constraints on all pods in a group.
+
+Usually, if you are using a workload controller such as a Deployment, the pod template
+takes care of this for you. If you mix different spread constraints then Kubernetes
+follows the API definition of the field; however, the behavior is more likely to become
+confusing and troubleshooting is less straightforward.
+
+You need a mechanism to ensure that all the nodes in a topology domain (such as a
+cloud provider region) are labelled consistently.
+To avoid you needing to manually label nodes, most clusters automatically
+populate well-known labels such as `topology.kubernetes.io/hostname`. Check whether
+your cluster supports this.
+-->
+## 一致性 {#Consistency}
+
+你应该为一个组中的所有 Pod 设置相同的 Pod 拓扑分布约束。
+
+通常，如果你正使用一个工作负载控制器，例如 Deployment，则 Pod 模板会帮你解决这个问题。
+如果你混合不同的分布约束，则 Kubernetes 会遵循该字段的 API 定义；
+但是，该行为可能更令人困惑，并且故障排除也没那么简单。
+
+你需要一种机制来确保拓扑域（例如云提供商区域）中的所有节点具有一致的标签。
+为了避免你需要手动为节点打标签，大多数集群会自动填充知名的标签，
+例如 `topology.kubernetes.io/hostname`。检查你的集群是否支持此功能。
+
+<!--
+## Topology spread constraint examples
+
+### Example: one topology spread constraint {#example-one-topologyspreadconstraint}
+
+Suppose you have a 4-node cluster where 3 Pods labelled `foo: bar` are located in
+node1, node2 and node3 respectively:
+-->
+## 拓扑分布约束示例 {#topology-spread-constraint-examples}
+
+### 示例：一个拓扑分布约束 {#example-one-topologyspreadconstraint}
+
+假设你拥有一个 4 节点集群，其中标记为 `foo: bar` 的 3 个 Pod 分别位于 node1、node2 和 node3 中：
+
+{{<mermaid>}}
+graph BT
+    subgraph "zoneB"
+        p3(Pod) --> n3(Node3)
+        n4(Node4)
+    end
+    subgraph "zoneA"
+        p1(Pod) --> n1(Node1)
+        p2(Pod) --> n2(Node2)
+    end
+
+    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+    class n1,n2,n3,n4,p1,p2,p3 k8s;
+    class zoneA,zoneB cluster;
+{{< /mermaid >}}
+
+<!--
+If you want an incoming Pod to be evenly spread with existing Pods across zones, you
+can use a manifest similar to:
+-->
+如果你希望新来的 Pod 均匀分布在现有的可用区域，则可以按如下设置其清单：
+
+{{< codenew file="pods/topology-spread-constraints/one-constraint.yaml" >}}
+
+<!--
+From that manifest, `topologyKey: zone` implies the even distribution will only be applied
+to nodes that are labelled `zone: <any value>` (nodes that don't have a `zone` label
+are skipped). The field `whenUnsatisfiable: DoNotSchedule` tells the scheduler to let the
+incoming Pod stay pending if the scheduler can't find a way to satisfy the constraint.
+
+If the scheduler placed this incoming Pod into zone `A`, the distribution of Pods would
+become `[3, 1]`. That means the actual skew is then 2 (calculated as `3 - 1`), which
+violates `maxSkew: 1`. To satisfy the constraints and context for this example, the
+incoming Pod can only be placed onto a node in zone `B`:
+-->
+从此清单看，`topologyKey: zone` 意味着均匀分布将只应用于存在标签键值对为 `zone: <any value>` 的节点
+（没有 `zone` 标签的节点将被跳过）。如果调度器找不到一种方式来满足此约束，
+则 `whenUnsatisfiable: DoNotSchedule` 字段告诉该调度器将新来的 Pod 保持在 pending 状态。
+
+如果该调度器将这个新来的 Pod 放到可用区 `A`，则 Pod 的分布将成为 `[3, 1]`。
+这意味着实际偏差是 2（计算公式为 `3 - 1`），这违反了 `maxSkew: 1` 的约定。
+为了满足这个示例的约束和上下文，新来的 Pod 只能放到可用区 `B` 中的一个节点上：
+
+{{<mermaid>}}
+graph BT
+    subgraph "zoneB"
+        p3(Pod) --> n3(Node3)
+        p4(mypod) --> n4(Node4)
+    end
+    subgraph "zoneA"
+        p1(Pod) --> n1(Node1)
+        p2(Pod) --> n2(Node2)
+    end
+
+    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+    class n1,n2,n3,n4,p1,p2,p3 k8s;
+    class p4 plain;
+    class zoneA,zoneB cluster;
+{{< /mermaid >}}
+
+或者
+
+{{<mermaid>}}
+graph BT
+    subgraph "zoneB"
+        p3(Pod) --> n3(Node3)
+        p4(mypod) --> n3
+        n4(Node4)
+    end
+    subgraph "zoneA"
+        p1(Pod) --> n1(Node1)
+        p2(Pod) --> n2(Node2)
+    end
+
+    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+    class n1,n2,n3,n4,p1,p2,p3 k8s;
+    class p4 plain;
+    class zoneA,zoneB cluster;
+{{< /mermaid >}}
+
+<!--
+You can tweak the Pod spec to meet various kinds of requirements:
+
+- Change `maxSkew` to a bigger value - such as `2` -  so that the incoming Pod can
+  be placed into zone `A` as well.
+- Change `topologyKey` to `node` so as to distribute the Pods evenly across nodes
+  instead of zones. In the above example, if `maxSkew` remains `1`, the incoming
+  Pod can only be placed onto the node `node4`.
+- Change `whenUnsatisfiable: DoNotSchedule` to `whenUnsatisfiable: ScheduleAnyway`
+  to ensure the incoming Pod to be always schedulable (suppose other scheduling APIs
+  are satisfied). However, it's preferred to be placed into the topology domain which
+  has fewer matching Pods. (Be aware that this preference is jointly normalized
+  with other internal scheduling priorities such as resource usage ratio).
+-->
+你可以调整 Pod 规约以满足各种要求：
+
+- 将 `maxSkew` 更改为更大的值，例如 `2`，这样新来的 Pod 也可以放在可用区 `A` 中。
+- 将 `topologyKey` 更改为 `node`，以便将 Pod 均匀分布在节点上而不是可用区中。
+  在上面的例子中，如果 `maxSkew` 保持为 `1`，则新来的 Pod 只能放到 `node4` 节点上。
+- 将 `whenUnsatisfiable: DoNotSchedule` 更改为 `whenUnsatisfiable: ScheduleAnyway`，
+  以确保新来的 Pod 始终可以被调度（假设满足其他的调度 API）。但是，最好将其放置在匹配 Pod 数量较少的拓扑域中。
+  请注意，这一优先判定会与其他内部调度优先级（如资源使用率等）排序准则一起进行标准化。
+
+<!--
+### Example: multiple topology spread constraints {#example-multiple-topologyspreadconstraints}
+
+This builds upon the previous example. Suppose you have a 4-node cluster where 3
+existing Pods labeled `foo: bar` are located on node1, node2 and node3 respectively:
+-->
+### 示例：多个拓扑分布约束 {#example-multiple-topologyspreadconstraints}
+
+下面的例子建立在前面例子的基础上。假设你拥有一个 4 节点集群，
+其中 3 个标记为 `foo: bar` 的 Pod 分别位于 node1、node2 和 node3 上：
+
+{{<mermaid>}}
+graph BT
+    subgraph "zoneB"
+        p3(Pod) --> n3(Node3)
+        n4(Node4)
+    end
+    subgraph "zoneA"
+        p1(Pod) --> n1(Node1)
+        p2(Pod) --> n2(Node2)
+    end
+
+    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+    class n1,n2,n3,n4,p1,p2,p3 k8s;
+    class p4 plain;
+    class zoneA,zoneB cluster;
+{{< /mermaid >}}
+
+<!--
+You can combine two topology spread constraints to control the spread of Pods both
+by node and by zone:
+-->
+可以组合使用 2 个拓扑分布约束来控制 Pod 在节点和可用区两个维度上的分布：
+
+{{< codenew file="pods/topology-spread-constraints/two-constraints.yaml" >}}
+
+<!--
+In this case, to match the first constraint, the incoming Pod can only be placed onto
+nodes in zone `B`; while in terms of the second constraint, the incoming Pod can only be
+scheduled to the node `node4`. The scheduler only considers options that satisfy all
+defined constraints, so the only valid placement is onto node `node4`.
+-->
+在这种情况下，为了匹配第一个约束，新的 Pod 只能放置在可用区 `B` 中；
+而在第二个约束中，新来的 Pod 只能调度到节点 `node4` 上。
+该调度器仅考虑满足所有已定义约束的选项，因此唯一可行的选择是放置在节点 `node4` 上。
+
+<!--
+### Example: conflicting topology spread constraints {#example-conflicting-topologyspreadconstraints}
+
+Multiple constraints can lead to conflicts. Suppose you have a 3-node cluster across 2 zones:
+-->
+### 示例：有冲突的拓扑分布约束 {#example-conflicting-topologyspreadconstraints}
+
+多个约束可能导致冲突。假设有一个跨 2 个可用区的 3 节点集群：
+
+{{<mermaid>}}
+graph BT
+    subgraph "zoneB"
+        p4(Pod) --> n3(Node3)
+        p5(Pod) --> n3
+    end
+    subgraph "zoneA"
+        p1(Pod) --> n1(Node1)
+        p2(Pod) --> n1
+        p3(Pod) --> n2(Node2)
+    end
+
+    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+    class n1,n2,n3,n4,p1,p2,p3,p4,p5 k8s;
+    class zoneA,zoneB cluster;
+{{< /mermaid >}}
+
+<!--
+If you were to apply
+[`two-constraints.yaml`](https://raw.githubusercontent.com/kubernetes/website/main/content/en/examples/pods/topology-spread-constraints/two-constraints.yaml)
+(the manifest from the previous example)
+to **this** cluster, you would see that the Pod `mypod` stays in the `Pending` state.
+This happens because: to satisfy the first constraint, the Pod `mypod` can only
+be placed into zone `B`; while in terms of the second constraint, the Pod `mypod`
+can only schedule to node `node2`. The intersection of the two constraints returns
+an empty set, and the scheduler cannot place the Pod.
+
+To overcome this situation, you can either increase the value of `maxSkew` or modify
+one of the constraints to use `whenUnsatisfiable: ScheduleAnyway`. Depending on
+circumstances, you might also decide to delete an existing Pod manually - for example,
+if you are troubleshooting why a bug-fix rollout is not making progress.
+-->
+如果你将 [`two-constraints.yaml`](https://raw.githubusercontent.com/kubernetes/website/main/content/en/examples/pods/topology-spread-constraints/two-constraints.yaml)
+（来自上一个示例的清单）应用到**这个**集群，你将看到 Pod `mypod` 保持在 `Pending` 状态。
+出现这种情况的原因为：为了满足第一个约束，Pod `mypod` 只能放置在可用区 `B` 中；
+而在第二个约束中，Pod `mypod` 只能调度到节点 `node2` 上。
+两个约束的交集将返回一个空集，且调度器无法放置该 Pod。
+
+为了应对这种情形，你可以提高 `maxSkew` 的值或修改其中一个约束才能使用 `whenUnsatisfiable: ScheduleAnyway`。
+根据实际情形，例如若你在故障排查时发现某个漏洞修复工作毫无进展，你还可能决定手动删除一个现有的 Pod。
+
+<!--
+#### Interaction with node affinity and node selectors
+
+The scheduler will skip the non-matching nodes from the skew calculations if the
+incoming Pod has `spec.nodeSelector` or `spec.affinity.nodeAffinity` defined.
+-->
+#### 与节点亲和性和节点选择算符的相互作用 {#interaction-with-node-affinity-and-node-selectors}
+
+如果 Pod 定义了 `spec.nodeSelector` 或 `spec.affinity.nodeAffinity`，
+调度器将在偏差计算中跳过不匹配的节点。
+
+<!--
+### Example: topology spread constraints with node affinity {#example-topologyspreadconstraints-with-nodeaffinity}
+
+Suppose you have a 5-node cluster ranging across zones A to C:
+-->
+### 示例：带节点亲和性的拓扑分布约束 {#example-topologyspreadconstraints-with-nodeaffinity}
+
+假设你有一个跨可用区 A 到 C 的 5 节点集群：
+
+{{<mermaid>}}
+graph BT
+    subgraph "zoneB"
+        p3(Pod) --> n3(Node3)
+        n4(Node4)
+    end
+    subgraph "zoneA"
+        p1(Pod) --> n1(Node1)
+        p2(Pod) --> n2(Node2)
+    end
+
+classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+class n1,n2,n3,n4,p1,p2,p3 k8s;
+class p4 plain;
+class zoneA,zoneB cluster;
+{{< /mermaid >}}
+
+{{<mermaid>}}
+graph BT
+    subgraph "zoneC"
+        n5(Node5)
+    end
+
+classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+class n5 k8s;
+class zoneC cluster;
+{{< /mermaid >}}
+
+<!--
+and you know that zone `C` must be excluded. In this case, you can compose a manifest
+as below, so that Pod `mypod` will be placed into zone `B` instead of zone `C`.
+Similarly, Kubernetes also respects `spec.nodeSelector`.
+-->
+而且你知道可用区 `C` 必须被排除在外。在这种情况下，可以按如下方式编写清单，
+以便将 Pod `mypod` 放置在可用区 `B` 上，而不是可用区 `C` 上。
+同样，Kubernetes 也会一样处理 `spec.nodeSelector`。
+
+{{< codenew file="pods/topology-spread-constraints/one-constraint-with-nodeaffinity.yaml" >}}
+
+<!--
+## Implicit conventions
+
+There are some implicit conventions worth noting here:
+
+- Only the Pods holding the same namespace as the incoming Pod can be matching candidates.
+
+- The scheduler bypasses any nodes that don't have any `topologySpreadConstraints[*].topologyKey`
+  present. This implies that:
+
+  1. any Pods located on those bypassed nodes do not impact `maxSkew` calculation - in the
+     above example, suppose the node `node1` does not have a label "zone", then the 2 Pods will
+     be disregarded, hence the incoming Pod will be scheduled into zone `A`.
+  2. the incoming Pod has no chances to be scheduled onto this kind of nodes -
+     in the above example, suppose a node `node5` has the **mistyped** label `zone-typo: zoneC`
+     (and no `zone` label set). After node `node5` joins the cluster, it will be bypassed and
+     Pods for this workload aren't scheduled there.
+-->
+## 隐式约定 {#implicit-conventions}
+
+这里有一些值得注意的隐式约定：
+
+- 只有与新来的 Pod 具有相同命名空间的 Pod 才能作为匹配候选者。
+
+- 调度器会忽略没有任何 `topologySpreadConstraints[*].topologyKey` 的节点。这意味着：
+  
+  1. 位于这些节点上的 Pod 不影响 `maxSkew` 计算，在上面的例子中，假设节点 `node1` 没有标签 "zone"，
+     则 2 个 Pod 将被忽略，因此新来的 Pod 将被调度到可用区 `A` 中。
+  2. 新的 Pod 没有机会被调度到这类节点上。在上面的例子中，
+     假设节点 `node5` 带有 **拼写错误的** 标签 `zone-typo: zoneC`（且没有设置 `zone` 标签）。
+     节点 `node5` 接入集群之后，该节点将被忽略且针对该工作负载的 Pod 不会被调度到那里。
+
+<!--
+- Be aware of what will happen if the incoming Pod's
+  `topologySpreadConstraints[*].labelSelector` doesn't match its own labels. In the
+  above example, if you remove the incoming Pod's labels, it can still be placed onto
+  nodes in zone `B`, since the constraints are still satisfied. However, after that
+  placement, the degree of imbalance of the cluster remains unchanged - it's still zone `A`
+  having 2 Pods labelled as `foo: bar`, and zone `B` having 1 Pod labelled as
+  `foo: bar`. If this is not what you expect, update the workload's
+  `topologySpreadConstraints[*].labelSelector` to match the labels in the pod template.
+-->
+- 注意，如果新 Pod 的 `topologySpreadConstraints[*].labelSelector` 与自身的标签不匹配，将会发生什么。
+  在上面的例子中，如果移除新 Pod 的标签，则 Pod 仍然可以放置到可用区 `B` 中的节点上，因为这些约束仍然满足。
+  然而，在放置之后，集群的不平衡程度保持不变。可用区 `A` 仍然有 2 个 Pod 带有标签 `foo: bar`，
+  而可用区 `B` 有 1 个 Pod 带有标签 `foo: bar`。如果这不是你所期望的，
+  更新工作负载的 `topologySpreadConstraints[*].labelSelector` 以匹配 Pod 模板中的标签。
+
+<!--
+## Cluster-level default constraints
+
+It is possible to set default topology spread constraints for a cluster. Default
+topology spread constraints are applied to a Pod if, and only if:
+
+- It doesn't define any constraints in its `.spec.topologySpreadConstraints`.
+- It belongs to a Service, ReplicaSet, StatefulSet or ReplicationController.
+
+Default constraints can be set as part of the `PodTopologySpread` plugin
+arguments in a [scheduling profile](/docs/reference/scheduling/config/#profiles).
+The constraints are specified with the same [API above](#api), except that
+`labelSelector` must be empty. The selectors are calculated from the Services,
+ReplicaSets, StatefulSets or ReplicationControllers that the Pod belongs to.
+
+An example configuration might look like follows:
+-->
+## 集群级别的默认约束 {#cluster-level-default-constraints}
+
+为集群设置默认的拓扑分布约束也是可能的。默认拓扑分布约束在且仅在以下条件满足时才会被应用到 Pod 上：
+
+- Pod 没有在其 `.spec.topologySpreadConstraints` 中定义任何约束。
+- Pod 隶属于某个 Service、ReplicaSet、StatefulSet 或 ReplicationController。
+
+默认约束可以设置为[调度方案](/zh-cn/docs/reference/scheduling/config/#profiles)中
+`PodTopologySpread` 插件参数的一部分。约束的设置采用[如前所述的 API](#api)，
+只是 `labelSelector` 必须为空。
+选择算符是根据 Pod 所属的 Service、ReplicaSet、StatefulSet 或 ReplicationController 来设置的。
+
+配置的示例可能看起来像下面这个样子：
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+
+profiles:
+  - schedulerName: default-scheduler
+    pluginConfig:
+      - name: PodTopologySpread
+        args:
+          defaultConstraints:
+            - maxSkew: 1
+              topologyKey: topology.kubernetes.io/zone
+              whenUnsatisfiable: ScheduleAnyway
+          defaultingType: List
+```
+
+<!--
+The [`SelectorSpread` plugin](/docs/reference/scheduling/config/#scheduling-plugins)
+is disabled by default. The Kubernetes project recommends using `PodTopologySpread`
+to achieve similar behavior.
+-->
+{{< note >}}
+默认配置下，[`SelectorSpread` 插件](/zh-cn/docs/reference/scheduling/config/#scheduling-plugins)是被禁用的。
+Kubernetes 项目建议使用 `PodTopologySpread` 以执行类似行为。
+{{< /note >}}
+
+<!--
+### Built-in default constraints {#internal-default-constraints}
+-->
+### 内置默认约束 {#internal-default-constraints}
+
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
+
+<!--
+If you don't configure any cluster-level default constraints for pod topology spreading,
+then kube-scheduler acts as if you specified the following default topology constraints:
+-->
+如果你没有为 Pod 拓扑分布配置任何集群级别的默认约束，
+kube-scheduler 的行为就像你指定了以下默认拓扑约束一样：
+
+```yaml
+defaultConstraints:
+  - maxSkew: 3
+    topologyKey: "kubernetes.io/hostname"
+    whenUnsatisfiable: ScheduleAnyway
+  - maxSkew: 5
+    topologyKey: "topology.kubernetes.io/zone"
+    whenUnsatisfiable: ScheduleAnyway
+```
+
+<!--
+Also, the legacy `SelectorSpread` plugin, which provides an equivalent behavior,
+is disabled by default.
+-->
+此外，原来用于提供等同行为的 `SelectorSpread` 插件默认被禁用。
+
+<!--
+The `PodTopologySpread` plugin does not score the nodes that don't have
+the topology keys specified in the spreading constraints. This might result
+in a different default behavior compared to the legacy `SelectorSpread` plugin when
+using the default topology constraints.
+
+If your nodes are not expected to have **both** `kubernetes.io/hostname` and
+`topology.kubernetes.io/zone` labels set, define your own constraints
+instead of using the Kubernetes defaults.
+-->
+{{< note >}}
+对于分布约束中所指定的拓扑键而言，`PodTopologySpread` 插件不会为不包含这些拓扑键的节点评分。
+这可能导致在使用默认拓扑约束时，其行为与原来的 `SelectorSpread` 插件的默认行为不同。
+
+如果你的节点不会 **同时** 设置 `kubernetes.io/hostname` 和 `topology.kubernetes.io/zone` 标签，
+你应该定义自己的约束而不是使用 Kubernetes 的默认约束。
+{{< /note >}}
+
+<!--
+If you don't want to use the default Pod spreading constraints for your cluster,
+you can disable those defaults by setting `defaultingType` to `List` and leaving
+empty `defaultConstraints` in the `PodTopologySpread` plugin configuration:
+-->
+如果你不想为集群使用默认的 Pod 分布约束，你可以通过设置 `defaultingType` 参数为 `List`，
+并将 `PodTopologySpread` 插件配置中的 `defaultConstraints` 参数置空来禁用默认 Pod 分布约束：
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+
+profiles:
+  - schedulerName: default-scheduler
+    pluginConfig:
+      - name: PodTopologySpread
+        args:
+          defaultConstraints: []
+          defaultingType: List
+```
+
+<!--
+## Comparison with podAffinity and podAntiAffinity {#comparison-with-podaffinity-podantiaffinity}
+
+In Kubernetes, [inter-Pod affinity and anti-affinity](/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity)
+control how Pods are scheduled in relation to one another - either more packed
+or more scattered.
+
+`podAffinity`
+: attracts Pods; you can try to pack any number of Pods into qualifying
+  topology domain(s)
+`podAntiAffinity`
+: repels Pods. If you set this to `requiredDuringSchedulingIgnoredDuringExecution` mode then
+  only a single Pod can be scheduled into a single topology domain; if you choose
+  `preferredDuringSchedulingIgnoredDuringExecution` then you lose the ability to enforce the
+  constraint.
+-->
+## 比较 podAffinity 和 podAntiAffinity {#comparison-with-podaffinity-podantiaffinity}
+
+在 Kubernetes 中，Pod 间亲和性和反亲和性控制 Pod 彼此的调度方式（更密集或更分散）。
+
+对于 `podAffinity`：吸引 Pod；你可以尝试将任意数量的 Pod 集中到符合条件的拓扑域中。
+对于 `podAntiAffinity`：驱逐 Pod。如果将此设为 `requiredDuringSchedulingIgnoredDuringExecution` 模式，
+则只有单个 Pod 可以调度到单个拓扑域；如果你选择 `preferredDuringSchedulingIgnoredDuringExecution`，
+则你将丢失强制执行此约束的能力。
+
+<!--
+For finer control, you can specify topology spread constraints to distribute
+Pods across different topology domains - to achieve either high availability or
+cost-saving. This can also help on rolling update workloads and scaling out
+replicas smoothly.
+
+For more context, see the
+[Motivation](https://github.com/kubernetes/enhancements/tree/master/keps/sig-scheduling/895-pod-topology-spread#motivation)
+section of the enhancement proposal about Pod topology spread constraints.
+-->
+要实现更细粒度的控制，你可以设置拓扑分布约束来将 Pod 分布到不同的拓扑域下，从而实现高可用性或节省成本。
+这也有助于工作负载的滚动更新和平稳地扩展副本规模。
+
+有关详细信息，请参阅有关 Pod 拓扑分布约束的增强倡议的
+[动机](https://github.com/kubernetes/enhancements/tree/master/keps/sig-scheduling/895-pod-topology-spread#motivation)一节。
+
+<!--
+## Known limitations
+
+- There's no guarantee that the constraints remain satisfied when Pods are removed. For
+  example, scaling down a Deployment may result in imbalanced Pods distribution.
+
+  You can use a tool such as the [Descheduler](https://github.com/kubernetes-sigs/descheduler)
+  to rebalance the Pods distribution.
+- Pods matched on tainted nodes are respected.
+  See [Issue 80921](https://github.com/kubernetes/kubernetes/issues/80921).
+-->
+## 已知局限性 {#known-limitations}
+
+- 当 Pod 被移除时，无法保证约束仍被满足。例如，缩减某 Deployment 的规模时，Pod 的分布可能不再均衡。
+  
+  你可以使用 [Descheduler](https://github.com/kubernetes-sigs/descheduler) 来重新实现 Pod 分布的均衡。
+
+- 具有污点的节点上匹配的 Pod 也会被统计。
+  参考 [Issue 80921](https://github.com/kubernetes/kubernetes/issues/80921)。
+
+<!--
+- The scheduler doesn't have prior knowledge of all the zones or other topology
+  domains that a cluster has. They are determined from the existing nodes in the
+  cluster. This could lead to a problem in autoscaled clusters, when a node pool (or
+  node group) is scaled to zero nodes, and you're expecting the cluster to scale up,
+  because, in this case, those topology domains won't be considered until there is
+  at least one node in them.  
+  You can work around this by using an cluster autoscaling tool that is aware of
+  Pod topology spread constraints and is also aware of the overall set of topology
+  domains.
+-->
+- 该调度器不会预先知道集群拥有的所有可用区和其他拓扑域。
+  拓扑域由集群中存在的节点确定。在自动扩缩的集群中，如果一个节点池（或节点组）的节点数量缩减为零，
+  而用户正期望其扩容时，可能会导致调度出现问题。
+  因为在这种情况下，调度器不会考虑这些拓扑域，因为其中至少有一个节点。  
+  你可以通过使用感知 Pod 拓扑分布约束并感知整个拓扑域集的集群自动扩缩工具来解决此问题。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+- The blog article [Introducing PodTopologySpread](/blog/2020/05/introducing-podtopologyspread/)
+  explains `maxSkew` in some detail, as well as covering some advanced usage examples.
+- Read the [scheduling](/docs/reference/kubernetes-api/workload-resources/pod-v1/#scheduling) section of
+  the API reference for Pod.
+-->
+- 博客：[PodTopologySpread 介绍](/blog/2020/05/introducing-podtopologyspread/)详细解释了 `maxSkew`，
+  并给出了一些进阶的使用示例。
+- 阅读针对 Pod 的 API 参考的
+  [调度](/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1/#scheduling)一节。
diff --git a/content/zh/docs/concepts/security/_index.md b/content/zh-cn/docs/concepts/security/_index.md
similarity index 100%
rename from content/zh/docs/concepts/security/_index.md
rename to content/zh-cn/docs/concepts/security/_index.md
diff --git a/content/zh/docs/concepts/security/controlling-access.md b/content/zh-cn/docs/concepts/security/controlling-access.md
similarity index 71%
rename from content/zh/docs/concepts/security/controlling-access.md
rename to content/zh-cn/docs/concepts/security/controlling-access.md
index b45dee64dd..cf3b1bd481 100644
--- a/content/zh/docs/concepts/security/controlling-access.md
+++ b/content/zh-cn/docs/concepts/security/controlling-access.md
@@ -1,6 +1,7 @@
 ---
 title: Kubernetes API 访问控制
 content_type: concept
+weight: 50
 ---
 <!--
 ---
@@ -9,6 +10,7 @@ reviewers:
 - lavalamp
 title: Controlling Access to the Kubernetes API
 content_type: concept
+weight: 50
 ---
 -->
 
@@ -28,8 +30,8 @@ authorized for API access.
 When a request reaches the API, it goes through several stages, illustrated in the
 following diagram:
 -->
-用户使用 `kubectl`、客户端库或构造 REST 请求来访问 [Kubernetes API](/zh/docs/concepts/overview/kubernetes-api/)。
-人类用户和 [Kubernetes 服务账户](/zh/docs/tasks/configure-pod-container/configure-service-account/)都可以被鉴权访问 API。
+用户使用 `kubectl`、客户端库或构造 REST 请求来访问 [Kubernetes API](/zh-cn/docs/concepts/overview/kubernetes-api/)。
+人类用户和 [Kubernetes 服务账户](/zh-cn/docs/tasks/configure-pod-container/configure-service-account/)都可以被鉴权访问 API。
 当请求到达 API 时，它会经历多个阶段，如下图所示：
 
 ![Kubernetes API 请求处理步骤示意图](/images/docs/admin/access-control-overview.svg)
@@ -38,14 +40,18 @@ following diagram:
 ## 传输安全 {#transport-security}
 
 <!--
-In a typical Kubernetes cluster, the API serves on port 443, protected by TLS.
+By default, the Kubernetes API server listens on port 6443 on the first non-localhost network interface, protected by TLS. In a typical production Kubernetes cluster, the API serves on port 443. The port can be changed with the `--secure-port`, and the listening IP address with the `--bind-address` flag.
+
 The API server presents a certificate. This certificate may be signed using
 a private certificate authority (CA), or based on a public key infrastructure linked
-to a generally recognized CA.
+to a generally recognized CA. The certificate and corresponding private key can be set by using the `--tls-cert-file` and `--tls-private-key-file` flags.
 -->
-在典型的 Kubernetes 集群中，API 服务器在 443 端口上提供服务，受 TLS 保护。
-API 服务器出示证书。
-该证书可以使用私有证书颁发机构（CA）签名，也可以基于链接到公认的 CA 的公钥基础架构签名。
+默认情况下，Kubernetes API 服务器在第一个非 localhost 网络接口的 6443 端口上进行监听，
+受 TLS 保护。在一个典型的 Kubernetes 生产集群中，API 使用 443 端口。
+该端口可以通过 `--secure-port` 进行变更，监听 IP 地址可以通过 `--bind-address` 标志进行变更。
+
+API 服务器出示证书。该证书可以使用私有证书颁发机构（CA）签名，也可以基于链接到公认的 CA 的公钥基础架构签名。
+该证书和相应的私钥可以通过使用 `--tls-cert-file` 和 `--tls-private-key-file` 标志进行设置。
 
 <!--
 If your cluster uses a private certificate authority, you need a copy of that CA
@@ -72,7 +78,7 @@ Authenticators are described in more detail in
 -->
 如上图步骤 **1** 所示，建立 TLS 后， HTTP 请求将进入认证（Authentication）步骤。
 集群创建脚本或者集群管理员配置 API 服务器，使之运行一个或多个身份认证组件。
-身份认证组件在[认证](/zh/docs/reference/access-authn-authz/authentication/)节中有更详细的描述。
+身份认证组件在[认证](/zh-cn/docs/reference/access-authn-authz/authentication/)节中有更详细的描述。
 
 <!--
 The input to the authentication step is the entire HTTP request; however, it typically
@@ -182,7 +188,7 @@ Kubernetes 支持多种鉴权模块，例如 ABAC 模式、RBAC 模式和 Webhoo
 如果所有模块拒绝了该请求，请求将会被拒绝（HTTP 状态码 403）。
 
 要了解更多有关 Kubernetes 鉴权的更多信息，包括有关使用支持鉴权模块创建策略的详细信息，
-请参阅[鉴权](/zh/docs/reference/access-authn-authz/authorization/)。
+请参阅[鉴权](/zh-cn/docs/reference/access-authn-authz/authorization/)。
 
 <!-- ## Admission control -->
 ## 准入控制 {#admission-control}
@@ -223,65 +229,25 @@ for the corresponding API object, and then written to the object store (shown as
 
 除了拒绝对象之外，准入控制器还可以为字段设置复杂的默认值。
 
-可用的准入控制模块在[准入控制器](/zh/docs/reference/access-authn-authz/admission-controllers/)中进行了描述。
+可用的准入控制模块在[准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/)中进行了描述。
 
 请求通过所有准入控制器后，将使用检验例程检查对应的 API 对象，然后将其写入对象存储（如步骤 **4** 所示）。
 
-<!-- ## API server ports and IPs -->
-## API 服务器端口和 IP {#api-server-ports-and-ips}
-
 <!--
-The previous discussion applies to requests sent to the secure port of the API server
-(the typical case).  The API server can actually serve on 2 ports:
+## Auditing
 
-By default, the Kubernetes API server serves HTTP on 2 ports:
+Kubernetes auditing provides a security-relevant, chronological set of records documenting the sequence of actions in a cluster.
+The cluster audits the activities generated by users, by applications that use the Kubernetes API, and by the control plane itself.
+
+For more information, see [Auditing](/docs/tasks/debug/debug-cluster/audit/).
 -->
-前面的讨论适用于发送到 API 服务器的安全端口的请求（典型情况）。 API 服务器实际上可以在 2 个端口上提供服务：
 
-默认情况下，Kubernetes API 服务器在 2 个端口上提供 HTTP 服务：
+## 审计 {#auditing}
 
-<!--
-  1. `localhost` port:
-
-      - is intended for testing and bootstrap, and for other components of the master node
-        (scheduler, controller-manager) to talk to the API
-      - no TLS
-      - default is port 8080, change with `--insecure-port` flag.
-      - default IP is localhost, change with `--insecure-bind-address` flag.
-      - request **bypasses** authentication and authorization modules.
-      - request handled by admission control module(s).
-      - protected by need to have host access
-
-  2. “Secure port”:
-
-      - use whenever possible
-      - uses TLS.  Set cert with `--tls-cert-file` and key with `--tls-private-key-file` flag.
-      - default is port 6443, change with `--secure-port` flag.
-      - default IP is first non-localhost network interface, change with `--bind-address` flag.
-      - request handled by authentication and authorization modules.
-      - request handled by admission control module(s).
-      - authentication and authorization modules run.
- -->
-  1. `localhost` 端口:
-
-      - 用于测试和引导，以及主控节点上的其他组件（调度器，控制器管理器）与 API 通信
-      - 没有 TLS
-      - 默认为端口 8080，使用 `--insecure-port` 进行更改
-      - 默认 IP 为 localhost，使用 `--insecure-bind-address` 进行更改
-      - 请求 **绕过** 身份认证和鉴权模块
-      - 由准入控制模块处理的请求
-      - 受需要访问主机的保护
-
-  2. “安全端口”：
-
-      - 尽可能使用
-      - 使用 TLS。 用 `--tls-cert-file` 设置证书，用 `--tls-private-key-file` 设置密钥
-      - 默认端口 6443，使用 `--secure-port` 更改
-      - 默认 IP 是第一个非本地网络接口，使用 `--bind-address` 更改
-      - 请求须经身份认证和鉴权组件处理
-      - 请求须经准入控制模块处理
-      - 身份认证和鉴权模块运行
+Kubernetes 审计提供了一套与安全相关的、按时间顺序排列的记录，其中记录了集群中的操作序列。
+集群对用户、使用 Kubernetes API 的应用程序以及控制平面本身产生的活动进行审计。
 
+更多信息请参考[审计](/zh-cn/docs/tasks/debug/debug-cluster/audit/)。
 
 ## {{% heading "whatsnext" %}}
 
@@ -311,23 +277,23 @@ You can learn about:
 -->
 阅读更多有关身份认证、鉴权和 API 访问控制的文档：
 
-- [认证](/zh/docs/reference/access-authn-authz/authentication/)
-   - [使用 Bootstrap 令牌进行身份认证](/zh/docs/reference/access-authn-authz/bootstrap-tokens/)
-- [准入控制器](/zh/docs/reference/access-authn-authz/admission-controllers/)
-   - [动态准入控制](/zh/docs/reference/access-authn-authz/extensible-admission-controllers/)
-- [鉴权](/zh/docs/reference/access-authn-authz/authorization/)
-   - [基于角色的访问控制](/zh/docs/reference/access-authn-authz/rbac/)
-   - [基于属性的访问控制](/zh/docs/reference/access-authn-authz/abac/)
-   - [节点鉴权](/zh/docs/reference/access-authn-authz/node/)
-   - [Webhook 鉴权](/zh/docs/reference/access-authn-authz/webhook/)
-- [证书签名请求](/zh/docs/reference/access-authn-authz/certificate-signing-requests/)
-   - 包括 [CSR 认证](/zh/docs/reference/access-authn-authz/certificate-signing-requests/#approval-rejection)
-     和[证书签名](/zh/docs/reference/access-authn-authz/certificate-signing-requests/#signing)
+- [认证](/zh-cn/docs/reference/access-authn-authz/authentication/)
+   - [使用 Bootstrap 令牌进行身份认证](/zh-cn/docs/reference/access-authn-authz/bootstrap-tokens/)
+- [准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/)
+   - [动态准入控制](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/)
+- [鉴权](/zh-cn/docs/reference/access-authn-authz/authorization/)
+   - [基于角色的访问控制](/zh-cn/docs/reference/access-authn-authz/rbac/)
+   - [基于属性的访问控制](/zh-cn/docs/reference/access-authn-authz/abac/)
+   - [节点鉴权](/zh-cn/docs/reference/access-authn-authz/node/)
+   - [Webhook 鉴权](/zh-cn/docs/reference/access-authn-authz/webhook/)
+- [证书签名请求](/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests/)
+   - 包括 [CSR 认证](/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests/#approval-rejection)
+     和[证书签名](/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests/#signing)
 - 服务账户
-  - [开发者指导](/zh/docs/tasks/configure-pod-container/configure-service-account/)
-  - [管理](/zh/docs/reference/access-authn-authz/service-accounts-admin/)
+  - [开发者指导](/zh-cn/docs/tasks/configure-pod-container/configure-service-account/)
+  - [管理](/zh-cn/docs/reference/access-authn-authz/service-accounts-admin/)
 
 你可以了解
 - Pod 如何使用
-  [Secrets](/zh/docs/concepts/configuration/secret/#service-accounts-automatically-create-and-attach-secrets-with-api-credentials)
-  获取 API 凭证.
+  [Secrets](/zh-cn/docs/concepts/configuration/secret/#service-accounts-automatically-create-and-attach-secrets-with-api-credentials)
+  获取 API 凭证。
diff --git a/content/zh-cn/docs/concepts/security/multi-tenancy.md b/content/zh-cn/docs/concepts/security/multi-tenancy.md
new file mode 100644
index 0000000000..0414c9f540
--- /dev/null
+++ b/content/zh-cn/docs/concepts/security/multi-tenancy.md
@@ -0,0 +1,1092 @@
+---
+title: 多租户
+content_type: concept
+weight: 70
+---
+
+<!--
+title: Multi-tenancy
+content_type: concept
+weight: 70
+-->
+
+<!--
+This page provides an overview of available configuration options and best practices for cluster multi-tenancy.
+-->
+此页面概述了集群多租户的可用配置选项和最佳实践。
+
+<!--
+Sharing clusters saves costs and simplifies administration. 
+However, sharing clusters also presents challenges such as security, fairness, and managing _noisy neighbors_.
+-->
+共享集群可以节省成本并简化管理。
+然而，共享集群也带来了诸如安全性、公平性和管理**嘈杂邻居**等挑战。
+
+<!--
+Clusters can be shared in many ways. In some cases, different applications may run in the same cluster. 
+In other cases, multiple instances of the same application may run in the same cluster, one for each end user. 
+All these types of sharing are frequently described using the umbrella term _multi-tenancy_.
+-->
+集群可以通过多种方式共享。在某些情况下，不同的应用可能会在同一个集群中运行。
+在其他情况下，同一应用的多个实例可能在同一个集群中运行，每个实例对应一个最终用户。
+所有这些类型的共享经常使用一个总括术语**多租户（Multi-Tenancy）**来表述。
+
+<!--
+While Kubernetes does not have first-class concepts of end users or tenants, 
+it provides several features to help manage different tenancy requirements. These are discussed below.
+-->
+虽然 Kubernetes 没有最终用户或租户的一阶概念，
+它还是提供了几个特性来帮助管理不同的租户需求。下面将对此进行讨论。
+
+<!--
+## Use cases
+-->
+## 用例 {#use-cases}
+
+<!--
+The first step to determining how to share your cluster is understanding your use case, 
+so you can evaluate the patterns and tools available. 
+In general, multi-tenancy in Kubernetes clusters falls into two broad categories, 
+though many variations and hybrids are also possible.
+-->
+确定如何共享集群的第一步是理解用例，以便你可以评估可用的模式和工具。
+一般来说，Kubernetes 集群中的多租户分为两大类，但也可以有许多变体和混合。
+
+<!--
+### Multiple teams 
+-->
+### 多团队 {#multiple-teams}
+
+<!--
+A common form of multi-tenancy is to share a cluster between multiple teams within an organization, 
+each of whom may operate one or more workloads. 
+These workloads frequently need to communicate with each other, 
+and with other workloads located on the same or different clusters.
+-->
+多租户的一种常见形式是在组织内的多个团队之间共享一个集群，每个团队可以操作一个或多个工作负载。
+这些工作负载经常需要相互通信，并与位于相同或不同集群上的其他工作负载进行通信。
+
+<!--
+In this scenario, members of the teams often have direct access to Kubernetes resources via tools such as `kubectl`, 
+or indirect access through GitOps controllers or other types of release automation tools. 
+There is often some level of trust between members of different teams, 
+but Kubernetes policies such as RBAC, quotas, and network policies are essential to safely and fairly share clusters.
+-->
+在这一场景中，团队成员通常可以通过类似 `kubectl` 等工具直接访问 Kubernetes 资源，
+或者通过 GitOps 控制器或其他类型的自动化发布工具间接访问 Kubernetes 资源。
+不同团队的成员之间通常存在某种程度的信任，
+但 RBAC、配额和网络策略等 Kubernetes 策略对于安全、公平地共享集群至关重要。
+
+<!--
+### Multiple customers 
+-->
+### 多客户 {#multiple-customers}
+
+<!--
+The other major form of multi-tenancy frequently involves a Software-as-a-Service (SaaS) vendor running multiple instances of a workload for customers. 
+This business model is so strongly associated with this deployment style that many people call it "SaaS tenancy." 
+However, a better term might be "multi-customer tenancy,” since SaaS vendors may also use other deployment models, 
+and this deployment model can also be used outside of SaaS.
+-->
+多租户的另一种主要形式通常涉及为客户运行多个工作负载实例的软件即服务 (SaaS) 供应商。 
+这种业务模型与其部署风格之间的相关非常密切，以至于许多人称之为 “SaaS 租户”。  
+但是，更好的术语可能是“多客户租户（Multi-Customer Tenancy）”，因为 SaaS 供应商也可以使用其他部署模型，
+并且这种部署模型也可以在 SaaS 之外使用。
+
+<!--
+In this scenario, the customers do not have access to the cluster; 
+Kubernetes is invisible from their perspective and is only used by the vendor to manage the workloads. 
+Cost optimization is frequently a critical concern, 
+and Kubernetes policies are used to ensure that the workloads are strongly isolated from each other.
+-->
+在这种情况下，客户无权访问集群；
+从他们的角度来看，Kubernetes 是不可见的，仅由供应商用于管理工作负载。
+成本优化通常是一个关键问题，Kubernetes 策略用于确保工作负载彼此高度隔离。
+
+<!--
+## Terminology
+-->
+## 术语 {#terminology}
+
+<!--
+### Tenants
+-->
+### 租户 {#tenants}
+
+<!--
+When discussing multi-tenancy in Kubernetes, there is no single definition for a "tenant". 
+Rather, the definition of a tenant will vary depending on whether multi-team or multi-customer tenancy is being discussed.
+-->
+在讨论 Kubernetes 中的多租户时，“租户”没有单一的定义。
+相反，租户的定义将根据讨论的是多团队还是多客户租户而有所不同。
+
+<!--
+In multi-team usage, a tenant is typically a team, 
+where each team typically deploys a small number of workloads that scales with the complexity of the service. 
+However, the definition of "team" may itself be fuzzy, 
+as teams may be organized into higher-level divisions or subdivided into smaller teams.
+-->
+在多团队使用中，租户通常是一个团队，
+每个团队通常部署少量工作负载，这些工作负载会随着服务的复杂性而发生规模伸缩。
+然而，“团队”的定义本身可能是模糊的，
+因为团队可能被组织成更高级别的部门或细分为更小的团队。
+
+<!--
+By contrast, if each team deploys dedicated workloads for each new client, they are using a multi-customer model of tenancy. 
+In this case, a "tenant" is simply a group of users who share a single workload. 
+This may be as large as an entire company, or as small as a single team at that company.
+-->
+相反，如果每个团队为每个新客户部署专用的工作负载，那么他们使用的是多客户租户模型。
+在这种情况下，“租户”只是共享单个工作负载的一组用户。
+这种租户可能大到整个公司，也可能小到该公司的一个团队。
+
+<!--
+In many cases, the same organization may use both definitions of "tenants" in different contexts. 
+For example, a platform team may offer shared services such as security tools and databases to multiple internal “customers” 
+and a SaaS vendor may also have multiple teams sharing a development cluster. 
+Finally, hybrid architectures are also possible, 
+such as a SaaS provider using a combination of per-customer workloads for sensitive data, 
+combined with multi-tenant shared services.
+-->
+在许多情况下，同一组织可能在不同的上下文中使用“租户”的两种定义。
+例如，一个平台团队可能向多个内部“客户”提供安全工具和数据库等共享服务，
+而 SaaS 供应商也可能让多个团队共享一个开发集群。
+最后，混合架构也是可能的，
+例如，某 SaaS 提供商为每个客户的敏感数据提供独立的工作负载，同时提供多租户共享的服务。
+
+<!--
+{{< figure src="/images/docs/multi-tenancy.png" title="A cluster showing coexisting tenancy models" class="diagram-large" >}}
+-->
+{{< figure src="/images/docs/multi-tenancy.png" title="展示共存租户模型的集群" class="diagram-large" >}}
+
+<!--
+### Isolation
+-->
+### 隔离 {#isolation}
+
+<!--
+There are several ways to design and build multi-tenant solutions with Kubernetes. 
+Each of these methods comes with its own set of tradeoffs that impact the isolation level, 
+implementation effort, operational complexity, and cost of service. 
+-->
+使用 Kubernetes 设计和构建多租户解决方案有多种方法。
+每种方法都有自己的一组权衡，这些权衡会影响隔离级别、实现工作量、操作复杂性和服务成本。
+
+<!--
+A Kubernetes cluster consists of a control plane which runs Kubernetes software, 
+and a data plane consisting of worker nodes where tenant workloads are executed as pods. 
+Tenant isolation can be applied in both the control plane and the data plane based on organizational requirements.
+-->
+Kubernetes 集群由运行 Kubernetes 软件的控制平面和由工作节点组成的数据平面组成，
+租户工作负载作为 Pod 在工作节点上执行。
+租户隔离可以根据组织要求应用于控制平面和数据平面。
+
+<!--
+The level of isolation offered is sometimes described using terms like “hard” multi-tenancy, 
+which implies strong isolation, and “soft” multi-tenancy, which implies weaker isolation. 
+In particular, "hard" multi-tenancy is often used to describe cases where the tenants do not trust each other, 
+often from security and resource sharing perspectives (e.g. guarding against attacks such as data exfiltration or DoS). 
+Since data planes typically have much larger attack surfaces, 
+"hard" multi-tenancy often requires extra attention to isolating the data-plane, 
+though control plane isolation  also remains critical. 
+-->
+所提供的隔离级别有时会使用一些术语来描述，例如 “硬性（Hard）” 多租户意味着强隔离，
+而 “柔性（Soft）” 多租户意味着较弱的隔离。
+特别是，“硬性”多租户通常用于描述租户彼此不信任的情况，
+并且大多是从安全和资源共享的角度（例如，防范数据泄露或 DoS 攻击等）。
+由于数据平面通常具有更大的攻击面，“硬性”多租户通常需要额外注意隔离数据平面，
+尽管控制平面隔离也很关键。
+
+<!--
+However, the terms "hard" and "soft" can often be confusing, as there is no single definition that will apply to all users. 
+Rather, "hardness" or "softness" is better understood as a broad spectrum, 
+with many different techniques that can be used to maintain different types of isolation in your clusters, based on your requirements.
+-->
+但是，“硬性”和“柔性”这两个术语常常令人困惑，因为没有一种定义能够适用于所有用户。
+相反，依据“硬度（Hardness）”或“柔度（Softness）”所定义的广泛谱系则更容易理解，
+根据你的需求，可以使用许多不同的技术在集群中维护不同类型的隔离。
+
+<!--
+In more extreme cases, 
+it may be easier or necessary to forgo any cluster-level sharing at all and assign each tenant their dedicated cluster, 
+possibly even running on dedicated hardware if VMs are not considered an adequate security boundary. 
+This may be easier with managed Kubernetes clusters, 
+where the overhead of creating and operating clusters is at least somewhat taken on by a cloud provider. 
+The benefit of stronger tenant isolation must be evaluated against the cost and complexity of managing multiple clusters. 
+The [Multi-cluster SIG](https://git.k8s.io/community/sig-multicluster/README.md) is responsible for addressing these types of use cases.
+-->
+在更极端的情况下，彻底放弃所有集群级别的共享并为每个租户分配其专用集群可能更容易或有必要，
+如果认为虚拟机所提供的安全边界还不够，甚至可以在专用硬件上运行。
+对于托管的 Kubernetes 集群而言，这种方案可能更容易，
+其中创建和操作集群的开销至少在一定程度上由云提供商承担。
+必须根据管理多个集群的成本和复杂性来评估更强的租户隔离的好处。
+[Multi-Cluster SIG](https://git.k8s.io/community/sig-multicluster/README.md) 负责解决这些类型的用例。
+
+<!--
+The remainder of this page focuses on isolation techniques used for shared Kubernetes clusters. 
+However, even if you are considering dedicated clusters, it may be valuable to review these recommendations, 
+as it will give you the flexibility to shift to shared clusters in the future if your needs or capabilities change.
+-->
+本页的其余部分重点介绍用于共享 Kubernetes 集群的隔离技术。
+但是，即使你正在考虑使用专用集群，查看这些建议也可能很有价值，
+因为如果你的需求或功能发生变化，它可以让你在未来比较灵活地切换到共享集群。
+
+<!--
+## Control plane isolation
+-->
+## 控制面隔离 {#control-plane-isolation}
+
+<!--
+Control plane isolation ensures that different tenants cannot access or affect each others' Kubernetes API resources. 
+-->
+控制平面隔离确保不同租户无法访问或影响彼此的 Kubernetes API 资源。
+
+<!--
+### Namespaces
+-->
+### 命名空间 {#namespaces}
+
+<!--
+In Kubernetes, 
+a {{< glossary_tooltip text="Namespace" term_id="namespace" >}} provides a mechanism for isolating groups of API resources within a single cluster. 
+This isolation has two key dimensions:
+-->
+在 Kubernetes 中，
+{{<glossary_tooltip text="命名空间" term_id="namespace" >}}提供了一种在单个集群中隔离 API 资源组的机制。
+这种隔离有两个关键维度：
+
+<!--
+1. Object names within a namespace can overlap with names in other namespaces, similar to files in folders. 
+This allows tenants to name their resources without having to consider what other tenants are doing.
+-->
+1. 一个命名空间中的对象名称可以与其他命名空间中的名称重叠，类似于文件夹中的文件。
+   这允许租户命名他们的资源，而无需考虑其他租户在做什么。
+
+<!--
+2. Many Kubernetes security policies are scoped to namespaces. 
+For example, RBAC Roles and Network Policies are namespace-scoped resources. 
+Using RBAC, Users and Service Accounts can be restricted to a namespace.
+-->
+2. 许多 Kubernetes 安全策略的作用域是命名空间。
+   例如，RBAC Role 和 NetworkPolicy 是命名空间作用域的资源。
+   使用 RBAC，可以将用户和服务帐户限制在一个命名空间中。
+
+<!--
+In a multi-tenant environment, a Namespace helps segment a tenant's workload into a logical and distinct management unit. 
+In fact, a common practice is to isolate every workload in its own namespace, 
+even if multiple workloads are operated by the same tenant. 
+This ensures that each workload has its own identity and can be configured with an appropriate security policy.
+-->
+在多租户环境中，命名空间有助于将租户的工作负载划分到各不相同的逻辑管理单元中。
+事实上，一种常见的做法是将每个工作负载隔离在自己的命名空间中，
+即使多个工作负载由同一个租户操作。
+这可确保每个工作负载都有自己的身份，并且可以使用适当的安全策略进行配置。
+
+<!--
+The namespace isolation model requires configuration of several other Kubernetes resources, networking plugins, 
+and adherence to security best practices to properly isolate tenant workloads. 
+These considerations are discussed below.
+-->
+命名空间隔离模型需要配置其他几个 Kubernetes 资源、网络插件，
+并遵守安全最佳实践以正确隔离租户工作负载。
+这些考虑将在下面讨论。
+
+<!--
+### Access controls
+-->
+### 访问控制 {#access-controls}
+
+<!--
+The most important type of isolation for the control plane is authorization. 
+If teams or their workloads can access or modify each others' API resources, 
+they can change or disable all other types of policies thereby negating any protection those policies may offer. 
+As a result, it is critical to ensure that each tenant has the appropriate access to only the namespaces they need, 
+and no more. This is known as the "Principle of Least Privilege."
+-->
+控制平面最重要的隔离类型是授权。如果各个团队或其工作负载可以访问或修改彼此的 API 资源，
+他们可以更改或禁用所有其他类型的策略，从而取消这些策略可能提供的任何保护。
+因此，确保每个租户只对他们需要的命名空间有适当的访问权，
+而不是更多，这一点至关重要。这被称为“最小特权原则（Principle of Least Privileges）”。
+
+<!--
+Role-based access control (RBAC) is commonly used to enforce authorization in the Kubernetes control plane, 
+for both users and workloads (service accounts). 
+[Roles](/docs/reference/access-authn-authz/rbac/#role-and-clusterrole) 
+and [role bindings](/docs/reference/access-authn-authz/rbac/#rolebinding-and-clusterrolebinding) are Kubernetes objects 
+that are used at a namespace level to enforce access control in your application; 
+similar objects exist for authorizing access to cluster-level objects, 
+though these are less useful for multi-tenant clusters.
+-->
+基于角色的访问控制 (RBAC) 通常用于在 Kubernetes 控制平面中对用户和工作负载（服务帐户）强制执行鉴权。
+[角色](/zh-cn/docs/reference/access-authn-authz/rbac/#role-and-clusterrole)
+和[角色绑定](/zh-cn/docs/reference/access-authn-authz/rbac/#rolebinding-and-clusterrolebinding)是
+两种 Kubernetes 对象，用来在命名空间级别对应用实施访问控制；
+对集群级别的对象访问鉴权也有类似的对象，不过这些对象对于多租户集群不太有用。
+
+<!--
+In a multi-team environment, RBAC must be used to restrict tenants' access to the appropriate namespaces, 
+and ensure that cluster-wide resources can only be accessed or modified by privileged users such as cluster administrators. 
+-->
+在多团队环境中，必须使用 RBAC 来限制租户只能访问合适的命名空间，
+并确保集群范围的资源只能由集群管理员等特权用户访问或修改。
+
+<!--
+If a policy ends up granting a user more permissions than they need, 
+this is likely a signal that the namespace containing the affected resources should be refactored into finer-grained namespaces. 
+Namespace management tools may simplify the management of these finer-grained namespaces by applying common RBAC policies to different namespaces, 
+while still allowing fine-grained policies where necessary.
+-->
+如果一个策略最终授予用户的权限比他们所需要的还多，
+这可能是一个信号，表明包含受影响资源的命名空间应该被重构为更细粒度的命名空间。
+命名空间管理工具可以通过将通用 RBAC 策略应用于不同的命名空间来简化这些细粒度命名空间的管理，
+同时在必要时仍允许细粒度策略。
+
+<!--
+### Quotas 
+-->
+### 配额 {#quotas}
+
+<!--
+Kubernetes workloads consume node resources, like CPU and memory. In a multi-tenant environment, 
+you can use [Resource Quotas](/docs/concepts/policy/resource-quotas/) to manage resource usage of tenant workloads.
+For the multiple teams use case, 
+where tenants have access to the Kubernetes API, you can use resource quotas to limit the number of API resources 
+(for example: the number of Pods, or the number of ConfigMaps) that a tenant can create. 
+Limits on object count ensure fairness and aim to avoid _noisy neighbor_ issues from affecting other tenants that share a control plane.
+-->
+Kubernetes 工作负载消耗节点资源，例如 CPU 和内存。在多租户环境中，
+你可以使用[资源配额](/zh-cn/docs/concepts/policy/resource-quotas/)来管理租户工作负载的资源使用情况。
+对于多团队场景，各个租户可以访问 Kubernetes API，你可以使用资源配额来限制租户可以创建的 API 资源的数量
+（例如：Pod 的数量，或 ConfigMap 的数量）。
+对对象计数的限制确保了公平性，并有助于避免**嘈杂邻居**问题影响共享控制平面的其他租户。
+
+<!--
+Resource quotas are namespaced objects. 
+By mapping tenants to namespaces, 
+cluster admins can use quotas to ensure that a tenant cannot monopolize a cluster's resources or overwhelm its control plane. 
+Namespace management tools simplify the administration of quotas. 
+In addition, while Kubernetes quotas only apply within a single namespace, 
+some namespace management tools allow groups of namespaces to share quotas, 
+giving administrators far more flexibility with less effort than built-in quotas.
+-->
+资源配额是命名空间作用域的对象。
+通过将租户映射到命名空间，
+集群管理员可以使用配额来确保租户不能垄断集群的资源或压垮控制平面。
+命名空间管理工具简化了配额的管理。
+此外，虽然 Kubernetes 配额仅针对单个命名空间，
+但一些命名空间管理工具允许多个命名空间组共享配额，
+与内置配额相比，降低了管理员的工作量，同时为其提供了更大的灵活性。
+
+<!--
+Quotas prevent a single tenant from consuming greater than their allocated share of resources hence minimizing the “noisy neighbor” issue, 
+where one tenant negatively impacts the performance of other tenants' workloads. 
+-->
+配额可防止单个租户所消耗的资源超过其被分配的份额，从而最大限度地减少**嘈杂邻居**问题，
+即一个租户对其他租户工作负载的性能产生负面影响。
+
+<!--
+When you apply a quota to namespace, 
+Kubernetes requires you to also specify resource requests and limits for each container. 
+Limits are the upper bound for the amount of resources that a container can consume. 
+Containers that attempt to consume resources that exceed the configured limits will either be throttled or killed, 
+based on the resource type. 
+When resource requests are set lower than limits, 
+each container is guaranteed the requested amount but there may still be some potential for impact across workloads.
+-->
+当你对命名空间应用配额时，
+Kubernetes 要求你还为每个容器指定资源请求和限制。
+限制是容器可以消耗的资源量的上限。
+根据资源类型，尝试使用超出配置限制的资源的容器将被限制或终止。
+当资源请求设置为低于限制时，
+每个容器所请求的数量都可以得到保证，但可能仍然存在跨工作负载的一些潜在影响。
+
+<!--
+Quotas cannot protect against all kinds of resource sharing, such as network traffic. 
+Node isolation (described below) may be a better solution for this problem.
+-->
+配额不能针对所共享的所有资源（例如网络流量）提供保护。
+节点隔离（如下所述）可能是解决此问题的更好方法。
+
+<!--
+## Data Plane Isolation
+-->
+## 数据平面隔离 {#data-plane-isolation}
+
+<!--
+Data plane isolation ensures that pods and workloads for different tenants are sufficiently isolated.
+-->
+数据平面隔离确保不同租户的 Pod 和工作负载之间被充分隔离。
+
+<!--
+### Network isolation
+-->
+### 网络隔离 {#network-isolation}
+
+<!--
+By default, all pods in a Kubernetes cluster are allowed to communicate with each other, and all network traffic is unencrypted. 
+This can lead to security vulnerabilities where traffic is accidentally or maliciously sent to an unintended destination, 
+or is intercepted by a workload on a compromised node.
+-->
+默认情况下，Kubernetes 集群中的所有 Pod 都可以相互通信，并且所有网络流量都是未加密的。
+这可能导致安全漏洞，导致流量被意外或恶意发送到非预期目的地，
+或被受感染节点上的工作负载拦截。
+
+<!--
+Pod-to-pod communication can be controlled  using [Network Policies](/docs/concepts/services-networking/network-policies/), 
+which restrict communication between pods using namespace labels or IP address ranges. 
+In a multi-tenant environment where strict network isolation between tenants is required,   
+starting with a default policy that denies communication between pods is recommended 
+with another rule that allows all pods to query the DNS server for name resolution. 
+With such a default policy in place, 
+you can begin adding more permissive rules that allow for communication within a namespace. 
+This scheme can be further refined as required. 
+Note that this only applies to pods within a single control plane; 
+pods that belong to different virtual control planes cannot talk to each other via Kubernetes networking.
+-->
+Pod 之间的通信可以使用[网络策略](/zh-cn/docs/concepts/services-networking/network-policies/) 来控制，
+它使用命名空间标签或 IP 地址范围来限制 Pod 之间的通信。
+在需要租户之间严格网络隔离的多租户环境中，
+建议从拒绝 Pod 之间通信的默认策略入手，
+然后添加一条允许所有 Pod 查询 DNS 服务器以进行名称解析的规则。
+有了这样的默认策略之后，你就可以开始添加允许在命名空间内进行通信的更多规则。
+该方案可根据需要进一步细化。
+请注意，这仅适用于单个控制平面内的 Pod；
+属于不同虚拟控制平面的 Pod 不能通过 Kubernetes 网络相互通信。
+
+<!--
+Namespace management tools may simplify the creation of default or common network policies. 
+In addition, some of these tools allow you to enforce a consistent set of namespace labels across your cluster, 
+ensuring that they are a trusted basis for your policies.
+-->
+命名空间管理工具可以简化默认或通用网络策略的创建。
+此外，其中一些工具允许你在整个集群中强制实施一组一致的命名空间标签，
+确保它们是你策略的可信基础。
+
+{{< warning >}}
+<!--
+Network policies require a 
+[CNI plugin](https://kubernetes.io/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/#cni) 
+that supports the implementation of network policies. 
+Otherwise, NetworkPolicy resources will be ignored.
+-->
+网络策略需要一个支持网络策略实现的 
+[CNI 插件](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/#cni)。
+否则，NetworkPolicy 资源将被忽略。
+{{< /warning >}}
+
+<!--
+More advanced network isolation may be provided by service meshes, 
+which provide OSI Layer 7 policies based on workload identity, in addition to namespaces. 
+These higher-level policies can make it easier to manage namespaced based multi-tenancy, 
+especially when multiple namespaces are dedicated to a single tenant. 
+They frequently also offer encryption using mutual TLS, 
+protecting your data even in the presence of a compromised node, 
+and work across dedicated or virtual clusters. 
+However, they can be significantly more complex to manage and may not be appropriate for all users.
+-->
+服务网格可以提供更高级的网络隔离，
+除了命名空间之外，它还提供基于工作负载身份的 OSI 第 7 层策略。
+这些更高层次的策略可以更轻松地管理基于命名空间的多租户，
+尤其是存在多个命名空间专用于某一个租户时。
+服务网格还经常使用双向 TLS 提供加密能力，
+即使在存在受损节点的情况下也能保护你的数据，
+并且可以跨专用或虚拟集群工作。
+但是，它们的管理可能要复杂得多，并且可能并不适合所有用户。
+
+<!--
+### Storage isolation
+-->
+### 存储隔离 {#storage-isolation}
+
+<!--
+Kubernetes offers several types of volumes that can be used as persistent storage for workloads. 
+For security and data-isolation, [dynamic volume provisioning](/docs/concepts/storage/dynamic-provisioning/) 
+is recommended and volume types that use node resources should be avoided. 
+-->
+Kubernetes 提供了若干类型的卷，可以用作工作负载的持久存储。
+为了安全和数据隔离，建议使用[动态卷制备](/zh-cn/docs/concepts/storage/dynamic-provisioning/)，
+并且应避免使用节点资源的卷类型。
+
+<!--
+[StorageClasses](/docs/concepts/storage/storage-classes/) 
+allow you to describe custom "classes" of storage offered by your cluster, based on quality-of-service levels, 
+backup policies, or custom policies determined by the cluster administrators. 
+-->
+[存储类（StorageClass）](/zh-cn/docs/concepts/storage/storage-classes/)允许你根据服务质量级别、
+备份策略或由集群管理员确定的自定义策略描述集群提供的自定义存储“类”。
+
+<!--
+Pods can request storage using a [PersistentVolumeClaim](/docs/concepts/storage/persistent-volumes/). 
+A PersistentVolumeClaim is a namespaced resource, 
+which enables isolating portions of the storage system 
+and dedicating it to tenants within the shared Kubernetes cluster. 
+However, it is important to note that a PersistentVolume is a cluster-wide resource 
+and has a lifecycle independent of workloads and namespaces.
+-->
+Pod 可以使用[持久卷申领（PersistentVolumeClaim）](/zh-cn/docs/concepts/storage/persistent-volumes/)请求存储。
+PersistentVolumeClaim 是一种命名空间作用域的资源，
+它可以隔离存储系统的不同部分，并将隔离出来的存储提供给共享 Kubernetes 集群中的租户专用。
+但是，重要的是要注意 PersistentVolume 是集群作用域的资源，
+并且其生命周期独立于工作负载和命名空间的生命周期。
+
+<!--
+For example, you can configure a separate StorageClass for each tenant and use this to strengthen isolation.
+If a StorageClass is shared, you should set a [reclaim policy of `Delete`]
+(/docs/concepts/storage/storage-classes/#reclaim-policy)
+to ensure that a PersistentVolume cannot be reused across different namespaces.
+-->
+例如，你可以为每个租户配置一个单独的 StorageClass，并使用它来加强隔离。
+如果一个 StorageClass 是共享的，你应该设置一个[回收策略](/zh-cn/docs/concepts/storage/storage-classes/#reclaim-policy)
+以确保 PersistentVolume 不能在不同的命名空间中重复使用。
+
+<!--
+### Sandboxing containers
+-->
+### 沙箱容器 {#sandboxing-containers}
+
+{{% thirdparty-content %}}
+
+<!--
+Kubernetes pods are composed of one or more containers that execute on worker nodes. 
+Containers utilize OS-level virtualization and hence offer a weaker isolation boundary 
+than virtual machines that utilize hardware-based virtualization.
+-->
+Kubernetes Pod 由在工作节点上执行的一个或多个容器组成。
+容器利用操作系统级别的虚拟化，
+因此提供的隔离边界比使用基于硬件虚拟化的虚拟机弱一些。
+
+<!--
+In a shared environment, unpatched vulnerabilities in the application 
+and system layers can be exploited by attackers for container breakouts and remote code execution 
+that allow access to host resources. 
+In some applications, like a Content Management System (CMS), 
+customers may be allowed the ability to upload and execute untrusted scripts or code. 
+In either case, mechanisms to further isolate and protect workloads using strong isolation are desirable.
+-->
+在共享环境中，攻击者可以利用应用和系统层中未修补的漏洞实现容器逃逸和远程代码执行，
+从而允许访问主机资源。
+在某些应用中，例如内容管理系统 (CMS)，
+客户可能被授权上传和执行非受信的脚本或代码。
+无论哪种情况，都需要使用强隔离进一步隔离和保护工作负载的机制。
+
+<!--
+Sandboxing provides a way to isolate workloads running in a shared cluster. 
+It typically involves running each pod in a separate execution environment 
+such as a virtual machine or a userspace kernel. 
+Sandboxing is often recommended when you are running untrusted code, 
+where workloads are assumed to be malicious. 
+Part of the reason this type of isolation is necessary is because containers are processes running on a shared kernel; 
+they mount file systems like /sys and /proc from the underlying host, 
+making them less secure than an application that runs on a virtual machine which has its own kernel. 
+While controls such as seccomp, AppArmor, and SELinux can be used to strengthen the security of containers, 
+it is hard to apply a universal set of rules to all workloads running in a shared cluster. 
+Running workloads in a sandbox environment helps to insulate the host from container escapes, 
+where an attacker exploits a vulnerability to gain access to the host system 
+and all the processes/files running on that host.
+-->
+沙箱提供了一种在共享集群中隔离运行中的工作负载的方法。
+它通常涉及在单独的执行环境（例如虚拟机或用户空间内核）中运行每个 Pod。
+当你运行不受信任的代码时（假定工作负载是恶意的），通常建议使用沙箱，
+这种隔离是必要的，部分原因是由于容器是在共享内核上运行的进程。
+它们从底层主机挂载像 /sys 和 /proc 这样的文件系统，
+这使得它们不如在具有自己内核的虚拟机上运行的应用安全。
+虽然 seccomp、AppArmor 和 SELinux 等控件可用于加强容器的安全性，
+但很难将一套通用规则应用于在共享集群中运行的所有工作负载。
+在沙箱环境中运行工作负载有助于将主机隔离开来，不受容器逃逸影响，
+在容器逃逸场景中，攻击者会利用漏洞来访问主机系统以及在该主机上运行的所有进程/文件。
+
+<!--
+Virtual machines and userspace kernels are 2 popular approaches to sandboxing. 
+The following sandboxing implementations are available:
+* [gVisor](https://gvisor.dev/) intercepts syscalls from containers 
+and runs them through a userspace kernel, written in Go, with limited access to the underlying host.
+* [Kata Containers](https://katacontainers.io/) is an OCI compliant runtime that allows you to run containers in a VM. 
+The hardware virtualization available in Kata offers an added layer of security for containers running untrusted code. 
+-->
+虚拟机和用户空间内核是两种流行的沙箱方法。
+可以使用以下沙箱实现：
+* [gVisor](https://gvisor.dev/) 拦截来自容器的系统调用，并通过用户空间内核运行它们，
+  用户空间内核采用 Go 编写，对底层主机的访问是受限的
+* [Kata Containers](https://katacontainers.io/) 是符合 OCI 的运行时，允许你在 VM 中运行容器。
+  Kata 中提供的硬件虚拟化为运行不受信任代码的容器提供了额外的安全层。
+
+<!--
+### Node Isolation
+-->
+### 节点隔离 {#node-isolation}
+
+<!--
+Node isolation is another technique that you can use to isolate tenant workloads from each other. 
+With node isolation, 
+a set of nodes is dedicated to running pods from a particular tenant and co-mingling of tenant pods is prohibited. 
+This configuration reduces the noisy tenant issue, as all pods running on a node will belong to a single tenant. 
+The risk of information disclosure is slightly lower with node isolation because an attacker 
+that manages to escape from a container will only have access to the containers and volumes mounted to that node.
+-->
+节点隔离是另一种可用于将租户工作负载相互隔离的技术。
+通过节点隔离，一组节点专用于运行来自特定租户的 Pod，并且禁止混合不同租户 Pod 集合。
+这种配置减少了嘈杂的租户问题，因为在一个节点上运行的所有 Pod 都将属于一个租户。
+节点隔离的信息泄露风险略低，
+因为成功实现容器逃逸的攻击者也只能访问挂载在该节点上的容器和卷。
+
+<!--
+Although workloads from different tenants are running on different nodes, 
+it is important to be aware that the kubelet and 
+(unless using virtual control planes) the API service are still shared services. 
+A skilled attacker could use the permissions assigned to the kubelet 
+or other pods running on the node to move laterally within the cluster 
+and gain access to tenant workloads running on other nodes. 
+If this is a major concern, consider implementing compensating controls 
+such as seccomp, AppArmor or SELinux or explore using sandboxed containers 
+or creating separate clusters for each tenant.
+-->
+尽管来自不同租户的工作负载在不同的节点上运行，
+仍然很重要的是要注意 kubelet 和
+（除非使用虚拟控制平面）API 服务仍然是共享服务。
+熟练的攻击者可以使用分配给 kubelet 或节点上运行的其他 Pod
+的权限在集群内横向移动并获得对其他节点上运行的租户工作负载的访问权限。
+如果这是一个主要问题，请考虑实施补偿控制，
+例如使用 seccomp、AppArmor 或 SELinux，或者探索使用沙箱容器，或者为每个租户创建单独的集群。
+
+<!--
+Node isolation is a little easier to reason about from a billing standpoint 
+than sandboxing containers since you can charge back per node rather than per pod. 
+It also has fewer compatibility and performance issues 
+and may be easier to implement than sandboxing containers. 
+For example, nodes for each tenant can be configured with taints 
+so that only pods with the corresponding toleration can run on them. 
+A mutating webhook could then be used to automatically add tolerations 
+and node affinities to pods deployed into tenant namespaces 
+so that they run on a specific set of nodes designated for that tenant.
+-->
+从计费的角度来看，节点隔离比沙箱容器更容易理解，
+因为你可以按节点而不是按 Pod 收费。 
+它的兼容性和性能问题也较少，而且可能比沙箱容器更容易实现。
+例如，可以为每个租户的节点配置污点，
+以便只有具有相应容忍度的 Pod 才能在其上运行。
+然后可以使用变更性质的 Webhook 自动向部署到租户命名空间中的 Pod 添加容忍度和节点亲和性，
+以便它们在为该租户指定的一组特定节点上运行。
+
+<!--
+Node isolation can be implemented using an 
+[pod node selectors](https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/) 
+or a [Virtual Kubelet](https://github.com/virtual-kubelet).
+-->
+节点隔离可以使用
+[将 Pod 指派给节点](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/)
+或 [Virtual Kubelet](https://github.com/virtual-kubelet) 来实现。
+
+<!--
+## Additional Considerations
+-->
+## 额外的注意事项 {#additional-considerations}
+
+<!--
+This section discusses other Kubernetes constructs and patterns that are relevant for multi-tenancy.
+-->
+本节讨论与多租户相关的其他 Kubernetes 结构和模式。
+
+<!--
+### API Priority and Fairness
+-->
+### API优先级和公平性 {#api-priority-and-fairness}
+
+<!--
+[API priority and fairness](/docs/concepts/cluster-administration/flow-control/) is a Kubernetes feature 
+that allows you to assign a priority to certain pods running within the cluster. 
+When an application calls the Kubernetes API, the API server evaluates the priority assigned to pod. 
+Calls from pods with higher priority are fulfilled before those with a lower priority. 
+When contention is high, lower priority calls can be queued until the server is less busy or you can reject the requests. 
+-->
+[API 优先级和公平性](/zh-cn/docs/concepts/cluster-administration/flow-control/)是 Kubernetes 的一个特性，
+允许你为集群中运行的某些 Pod 赋予优先级。
+当应用调用 Kubernetes API 时，API 服务器会评估分配给 Pod 的优先级。
+来自具有较高优先级的 Pod 的调用会在具有较低优先级的 Pod 的调用之前完成。
+当争用很激烈时，较低优先级的调用可以排队，直到服务器不那么忙，或者你可以拒绝请求。
+
+<!--
+Using API priority and fairness will not be very common in SaaS environments 
+unless you are allowing customers to run applications that interface with the Kubernetes API, e.g. a controller.
+-->
+使用 API 优先级和公平性在 SaaS 环境中并不常见，
+除非你允许客户运行与 Kubernetes API 接口的应用，例如控制器。
+
+<!--
+### Quality-of-Service (QoS) {#qos}
+-->
+### 服务质量 (QoS) {#qos}
+
+<!--
+When you’re running a SaaS application, 
+you may want the ability to offer different Quality-of-Service (QoS) tiers of service to different tenants. 
+For example, you may have freemium service that comes with fewer performance guarantees and features 
+and a for-fee service tier with specific performance guarantees. 
+Fortunately, there are several Kubernetes constructs that can help you accomplish this within a shared cluster, 
+including network QoS, storage classes, and pod priority and preemption. 
+The idea with each of these is to provide tenants with the quality of service 
+that they paid for. Let’s start by looking at networking QoS. 
+-->
+当你运行 SaaS 应用时，
+你可能希望能够为不同的租户提供不同的服务质量 (QoS) 层级。
+例如，你可能拥有具有性能保证和功能较差的免费增值服务，
+以及具有一定性能保证的收费服务层。
+幸运的是，有几个 Kubernetes 结构可以帮助你在共享集群中完成此任务，
+包括网络 QoS、存储类以及 Pod 优先级和抢占。
+这些都是为了给租户提供他们所支付的服务质量。
+让我们从网络 QoS 开始。
+
+<!--
+Typically, all pods on a node share a network interface. 
+Without network QoS, some pods may consume an unfair share of the available bandwidth at the expense of other pods. 
+The Kubernetes [bandwidth plugin](https://www.cni.dev/plugins/current/meta/bandwidth/) creates an 
+[extended resource](/docs/concepts/configuration/manage-resources-containers/#extended-resources) for networking 
+that allows you to use Kubernetes resources constructs, i.e. requests/limits, 
+to apply rate limits to pods by using Linux tc queues. 
+Be aware that the plugin is considered experimental as per the 
+[Network Plugins](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/#support-traffic-shaping) documentation 
+and should be thoroughly tested before use in production environments. 
+-->
+通常，节点上的所有 Pod 共享一个网络接口。
+如果没有网络 QoS，一些 Pod 可能会以牺牲其他 Pod 为代价不公平地消耗可用带宽。
+Kubernetes [带宽插件](https://www.cni.dev/plugins/current/meta/bandwidth/)为网络创建
+[扩展资源](/zh-cn/docs/concepts/configuration/manage-resources-containers/#extended-resources)，
+以允许你使用 Kubernetes 的 resources 结构，即 requests 和 limits 设置。
+通过使用 Linux tc 队列将速率限制应用于 Pod。
+请注意，根据[支持流量整形](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/#support-traffic-shaping)文档，
+该插件被认为是实验性的，在生产环境中使用之前应该进行彻底的测试。
+
+<!--
+For storage QoS, you will likely want to create different storage classes 
+or profiles with different performance characteristics. 
+Each storage profile can be associated with a different tier of service 
+that is optimized for different workloads such IO, redundancy, or throughput. 
+Additional logic might be necessary to allow the tenant to associate the appropriate storage profile with their workload.
+-->
+对于存储 QoS，你可能希望创建具有不同性能特征的不同存储类或配置文件。
+每个存储配置文件可以与不同的服务层相关联，该服务层针对 IO、冗余或吞吐量等不同的工作负载进行优化。
+可能需要额外的逻辑来允许租户将适当的存储配置文件与其工作负载相关联。
+
+<!--
+Finally, there’s [pod priority and preemption](/docs/concepts/scheduling-eviction/pod-priority-preemption/) 
+where you can assign priority values to pods. 
+When scheduling pods, the scheduler will try evicting pods with lower priority 
+when there are insufficient resources to schedule pods that are assigned a higher priority. 
+If you have a use case where tenants have different service tiers in in a shared cluster e.g. free and paid, 
+you may want to give higher priority to certain tiers using this feature.
+-->
+最后，还有 [Pod 优先级和抢占](/zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption/)，
+你可以在其中为 Pod 分配优先级值。
+在调度 Pod 时，当没有足够的资源来调度分配了较高优先级的 Pod 时，
+调度程序将尝试驱逐具有较低优先级的 Pod。
+如果你有一个用例，其中租户在共享集群中具有不同的服务层，例如免费和付费，
+你可能希望使用此功能为某些层级提供更高的优先级。
+
+<!--
+### DNS
+-->
+### DNS {#dns}
+
+<!--
+Kubernetes clusters include a Domain Name System (DNS) service 
+to provide translations from names to IP addresses, for all Services and Pods. 
+By default, the Kubernetes DNS service allows lookups across all namespaces in the cluster.
+-->
+Kubernetes 集群包括一个域名系统 (DNS) 服务，
+可为所有服务和 Pod 提供从名称到 IP 地址的转换。
+默认情况下，Kubernetes DNS 服务允许在集群中的所有命名空间中进行查找。
+
+<!--
+In multi-tenant environments where tenants can access pods and other Kubernetes resources, 
+or where stronger isolation is required, 
+it may be necessary to prevent pods from looking up services in other Namespaces.
+You can restrict cross-namespace DNS lookups by configuring security rules for the DNS service.
+For example, CoreDNS (the default DNS service for Kubernetes) can leverage Kubernetes metadata
+to restrict queries to Pods and Services within a namespace. 
+For more information, read an 
+[example](https://github.com/coredns/policy#kubernetes-metadata-multi-tenancy-policy) of configuring
+this within the CoreDNS documentation.
+-->
+在多租户环境中，租户可以访问 Pod 和其他 Kubernetes 资源，
+或者在需要更强隔离的情况下，可能需要阻止 Pod 在其他名称空间中查找服务。
+你可以通过为 DNS 服务配置安全规则来限制跨命名空间的 DNS 查找。
+例如，CoreDNS（Kubernetes 的默认 DNS 服务）可以利用 Kubernetes
+元数据来限制对命名空间内的 Pod 和服务的查询。
+有关更多信息，请阅读 CoreDNS 文档中配置此功能的
+[示例](https://github.com/coredns/policy#kubernetes-metadata-multi-tenancy-policy)。
+
+<!--
+When a [Virtual Control Plane per tenant](#virtual-control-plane-per-tenant) model is used, 
+a DNS service must be configured per tenant or a multi-tenant DNS service must be used. 
+Here is an example of a [customized version of CoreDNS]
+(https://github.com/kubernetes-sigs/cluster-api-provider-nested/blob/main/virtualcluster/doc/tenant-dns.md) 
+that supports multiple tenants.
+-->
+当使用[各租户独立虚拟控制面](#virtual-control-plane-per-tenant)模型时，
+必须为每个租户配置 DNS 服务或必须使用多租户 DNS 服务。
+参见一个 [CoreDNS 的定制版本](https://github.com/kubernetes-sigs/cluster-api-provider-nested/blob/main/virtualcluster/doc/tenant-dns.md)
+支持多租户的示例。
+
+<!--
+### Operators
+-->
+### Operators {#operators}
+
+<!--
+[Operators](/docs/concepts/extend-kubernetes/operator/) are Kubernetes controllers that manage applications. 
+Operators can simplify the management of multiple instances of an application, like a database service, 
+which makes them a common building block in the multi-consumer (SaaS) multi-tenancy use case.  
+-->
+[Operator 模式](/zh-cn/docs/concepts/extend-kubernetes/operator/)是管理应用的 Kubernetes 控制器。
+Operators 可以简化应用的多个实例的管理，例如数据库服务，
+这使它们成为多消费者 (SaaS) 多租户用例中的通用构建块。
+
+<!--
+Operators used in a multi-tenant environment should follow a stricter set of guidelines. 
+Specifically, the Operator should: 
+* Support creating resources within different tenant namespaces, rather than just in the namespace in which the Operator is deployed.
+* Ensure that the Pods are configured with resource requests and limits, to ensure scheduling and fairness.  
+* Support configuration of Pods for data-plane isolation techniques such as node isolation and sandboxed containers.
+-->
+在多租户环境中使用 Operators 应遵循一套更严格的准则。具体而言，Operator 应：
+* 支持在不同的租户命名空间内创建资源，而不仅仅是在部署 Operator 的命名空间内。
+* 确保 Pod 配置了资源请求和限制，以确保调度和公平。
+* 支持节点隔离、沙箱容器等数据平面隔离技术的 Pod 配置。
+
+<!--
+## Implementations
+-->
+## 实现 {#implementations}
+
+{{% thirdparty-content %}}
+
+<!--
+There are two primary ways to share a Kubernetes cluster for multi-tenancy: 
+using Namespaces (i.e. a Namespace per tenant) 
+or by virtualizing the control plane (i.e. Virtual control plane per tenant).
+-->
+为多租户共享 Kubernetes 集群有两种主要方法：
+使用命名空间（即每个租户独立的命名空间）
+或虚拟化控制平面（即每个租户独立的虚拟控制平面）。
+
+<!--
+In both cases, data plane isolation, and management of additional considerations 
+such as API Priority and Fairness, is also recommended. 
+-->
+在这两种情况下，还建议对数据平面隔离和其他考虑事项，如 API 优先级和公平性，进行管理。
+
+<!--
+Namespace isolation is well-supported by Kubernetes, has a negligible resource cost, 
+and provides mechanisms to allow tenants to interact appropriately, 
+such as by allowing service-to-service communication. 
+However, it can be difficult to configure, and doesn't apply to Kubernetes resources 
+that can't be namespaced, such as Custom Resource Definitions, Storage Classes, and Webhooks.
+-->
+Kubernetes 很好地支持命名空间隔离，其资源开销可以忽略不计，并提供了允许租户适当交互的机制，
+例如允许服务之间的通信。
+但是，它可能很难配置，而且不适用于非命名空间作用域的 Kubernetes 资源，例如自定义资源定义、存储类和 Webhook 等。
+
+<!--
+Control plane virtualization allows for isolation of non-namespaced resources 
+at the cost of somewhat higher resource usage and more difficult cross-tenant sharing. 
+It is a good option when namespace isolation is insufficient but dedicated clusters are undesirable, 
+due to the high cost of maintaining them (especially on-prem) 
+or due to their higher overhead and lack of resource sharing. 
+However, even within a virtualized control plane, 
+you will likely see benefits by using namespaces as well.
+-->
+控制平面虚拟化允许以更高的资源使用率和更困难的跨租户共享为代价隔离非命名空间作用域的资源。
+当命名空间隔离不足但不希望使用专用集群时，这是一个不错的选择，
+因为维护专用集群的成本很高（尤其是本地集群），
+或者由于专用集群的额外开销较高且缺乏资源共享。
+但是，即使在虚拟化控制平面中，你也可能会看到使用命名空间的好处。
+
+<!--
+The two options are discussed in more detail in the following sections:
+-->
+以下各节将更详细地讨论这两个选项：
+
+<!--
+### Namespace per tenant
+-->
+### 每个租户独立的命名空间 {#namespace-per-tenant}
+
+<!--
+As previously mentioned, you should consider isolating each workload in its own namespace, 
+even if you are using dedicated clusters or virtualized control planes. 
+This ensures that each workload only has access to its own resources, such as Config Maps and Secrets, 
+and allows you to tailor dedicated security policies for each workload. 
+In addition, it is a best practice to give each namespace names that are unique across your entire fleet 
+(i.e., even if they are in separate clusters), 
+as this gives you the flexibility to switch between dedicated and shared clusters in the future, 
+or to use multi-cluster tooling such as service meshes.
+-->
+如前所述，你应该考虑将每个工作负载隔离在其自己的命名空间中，
+即使你使用的是专用集群或虚拟化控制平面。
+这可确保每个工作负载只能访问其自己的资源，例如 ConfigMap 和 Secret，
+并允许你为每个工作负载定制专用的安全策略。
+此外，最佳实践是为整个集群中的每个命名空间名称提供唯一的名称（即，即使它们位于单独的集群中），
+因为这使你将来可以灵活地在专用集群和共享集群之间切换，
+或者使用多集群工具，例如服务网格。
+
+<!--
+Conversely, there are also advantages to assigning namespaces at the tenant level, 
+not just the workload level, 
+since there are often policies that apply to all workloads owned by a single tenant. 
+However, this raises its own problems. 
+Firstly, this makes it difficult or impossible to customize policies to individual workloads, 
+and secondly, it may be challenging to come up with a single level of "tenancy" that should be given a namespace.  
+For example, an organization may have divisions, teams, and subteams - which should be assigned a namespace?
+-->
+相反，在租户级别分配命名空间也有优势，
+而不仅仅是工作负载级别，
+因为通常有一些策略适用于单个租户拥有的所有工作负载。
+然而，这种方案也有自己的问题。
+首先，这使得为各个工作负载定制策略变得困难或不可能，
+其次，确定应该赋予命名空间的单一级别的 “租户” 可能很困难。
+例如，一个组织可能有部门、团队和子团队 - 哪些应该分配一个命名空间？
+
+<!--
+To solve this, Kubernetes provides the [Hierarchical Namespace Controller (HNC)]
+(https://github.com/kubernetes-sigs/hierarchical-namespaces), 
+which allows you to organize your namespaces into hierarchies, 
+and share certain policies and resources between them. 
+It also helps you manage namespace labels, namespace lifecycles, and delegated management, 
+and share resource quotas across related namespaces. 
+These capabilities can be useful in both multi-team and multi-customer scenarios.
+-->
+为了解决这个问题，Kubernetes 提供了
+[Hierarchical Namespace Controller (HNC)](https://github.com/kubernetes-sigs/hierarchical-namespaces)，
+它允许你将多个命名空间组织成层次结构，并在它们之间共享某些策略和资源。
+它还可以帮助你管理命名空间标签、命名空间生命周期和委托管理，
+并在相关命名空间之间共享资源配额。
+这些功能在多团队和多客户场景中都很有用。
+
+<!--
+Other projects that provide similar capabilities and aid in managing namespaced resources are listed below:
+-->
+下面列出了提供类似功能并有助于管理命名空间资源的其他项目：
+
+<!--
+#### Multi-team tenancy
+-->
+#### 多团队租户 {#multi-team-tenancy}
+
+<!--
+* [Capsule](https://github.com/clastix/capsule)
+* [Kiosk](https://github.com/loft-sh/kiosk)
+-->
+* [Capsule](https://github.com/clastix/capsule)
+* [Kiosk](https://github.com/loft-sh/kiosk)
+
+<!--
+#### Multi-customer tenancy
+-->
+#### 多客户租户 {#multi-customer-tenancy}
+
+<!--
+* [Kubeplus](https://github.com/cloud-ark/kubeplus)
+-->
+* [Kubeplus](https://github.com/cloud-ark/kubeplus)
+
+<!--
+#### Policy engines
+-->
+#### 策略引擎 {#policy-engines}
+
+<!--
+Policy engines provide features to validate and generate tenant configurations:
+-->
+策略引擎提供了验证和生成租户配置的特性：
+
+<!--
+* [Kyverno](https://kyverno.io/)
+* [OPA/Gatekeeper](https://github.com/open-policy-agent/gatekeeper)
+-->
+* [Kyverno](https://kyverno.io/)
+* [OPA/Gatekeeper](https://github.com/open-policy-agent/gatekeeper)
+
+<!--
+### Virtual control plane per tenant
+-->
+### 每个租户独立的虚拟控制面    {#virtual-control-plane-per-tenant}
+
+<!--
+Another form of control-plane isolation is to use Kubernetes extensions to 
+provide each tenant a virtual control-plane that enables segmentation of cluster-wide API resources. 
+[Data plane isolation](#data-plane-isolation) techniques can be used 
+with this model to securely manage worker nodes across tenants.
+-->
+控制面隔离的另一种形式是使用 Kubernetes 扩展为每个租户提供一个虚拟控制面，
+以实现集群范围内 API 资源的分段。
+[数据平面隔离](#data-plane-isolation)技术可以与此模型一起使用，
+以安全地跨多个租户管理工作节点。
+
+<!--
+The virtual control plane based multi-tenancy model extends namespace-based multi-tenancy 
+by providing each tenant with dedicated control plane components, 
+and hence complete control over cluster-wide resources and add-on services. 
+Worker nodes are shared across all tenants, 
+and are managed by a Kubernetes cluster that is normally inaccessible to tenants. 
+This cluster is often referred to as a _super-cluster_ (or sometimes as a _host-cluster_). 
+Since a tenant’s control-plane is not directly associated 
+with underlying compute resources it is referred to as a _virtual control plane_.
+-->
+基于虚拟控制面的多租户模型通过为每个租户提供专用控制面组件来扩展基于命名空间的多租户，
+从而完全控制集群范围的资源和附加服务。
+工作节点在所有租户之间共享，并由租户通常无法访问的 Kubernetes 集群管理。
+该集群通常被称为 **超集群（Super-Cluster）**（或有时称为 **host-cluster**）。
+由于租户的控制面不直接与底层计算资源相关联，因此它被称为**虚拟控制平面**。
+
+<!--
+A virtual control plane typically consists of the Kubernetes API server, 
+the controller manager, and the etcd data store. 
+It interacts with the super cluster via a metadata synchronization controller 
+which coordinates changes across tenant control planes and the control plane of the super--cluster. 
+-->
+虚拟控制面通常由 Kubernetes API 服务器、控制器管理器和 etcd 数据存储组成。
+它通过元数据同步控制器与超集群交互，
+该控制器跨租户控制面和超集群控制面对变化进行协调。
+
+<!--
+By using per-tenant dedicated control planes, 
+most of the isolation problems due to sharing one API server among all tenants are solved. 
+Examples include noisy neighbors in the control plane, 
+uncontrollable blast radius of policy misconfigurations, 
+and conflicts between cluster scope objects such as webhooks and CRDs.  
+Hence, the virtual control plane model is particularly suitable for cases 
+where each tenant requires access to a Kubernetes API server and expects the full cluster manageability. 
+-->
+通过使用每个租户单独的专用控制面，可以解决由于所有租户共享一个 API 服务器而导致的大部分隔离问题。
+例如，控制平面中的嘈杂邻居、策略错误配置导致的不可控爆炸半径以及如
+webhook 和 CRD 等集群范围对象之间的冲突。
+因此，虚拟控制平面模型特别适用于每个租户都需要访问
+Kubernetes API 服务器并期望具有完整集群可管理性的情况。
+
+<!--
+The improved isolation comes at the cost of running 
+and maintaining an individual virtual control plane per tenant. 
+In addition, per-tenant control planes do not solve isolation problems in the data plane, 
+such as node-level noisy neighbors or security threats. 
+These must still be addressed separately.
+-->
+改进的隔离是以每个租户运行和维护一个单独的虚拟控制平面为代价的。
+此外，租户层面的控制面不能解决数据面的隔离问题，
+例如节点级的嘈杂邻居或安全威胁。
+这些仍然必须单独解决。
+
+<!--
+The Kubernetes [Cluster API - Nested (CAPN)]
+(https://github.com/kubernetes-sigs/cluster-api-provider-nested/tree/main/virtualcluster) 
+project provides an implementation of virtual control planes. 
+-->
+Kubernetes [Cluster API - Nested (CAPN)](https://github.com/kubernetes-sigs/cluster-api-provider-nested/tree/main/virtualcluster)
+项目提供了虚拟控制平面的实现。
+
+<!--
+#### Other implementations
+* [Kamaji](https://github.com/clastix/kamaji)
+* [vcluster](https://github.com/loft-sh/vcluster)
+-->
+#### 其他实现 {#other-implementations}
+* [Kamaji](https://github.com/clastix/kamaji)
+* [vcluster](https://github.com/loft-sh/vcluster)
\ No newline at end of file
diff --git a/content/zh/docs/concepts/security/overview.md b/content/zh-cn/docs/concepts/security/overview.md
similarity index 77%
rename from content/zh/docs/concepts/security/overview.md
rename to content/zh-cn/docs/concepts/security/overview.md
index 8f7f030e7f..165c339de1 100644
--- a/content/zh/docs/concepts/security/overview.md
+++ b/content/zh-cn/docs/concepts/security/overview.md
@@ -1,8 +1,19 @@
 ---
 title: 云原生安全概述
+description: >
+ 在云原生安全的背景下思考 Kubernetes 安全模型。
 content_type: concept
-weight: 10
+weight: 1
 ---
+<!--
+reviewers:
+- zparnold
+title: Overview of Cloud Native Security
+description: >
+  A model for thinking about Kubernetes security in the context of Cloud Native security.
+content_type: concept
+weight: 1
+-->
 
 <!-- overview -->
 <!--
@@ -25,7 +36,7 @@ This container security model provides suggestions, not proven information secur
 You can think about security in layers. The 4C's of Cloud Native security are Cloud,
 Clusters, Containers, and Code.
 -->
-## 云原生安全的 4 个 C
+## 云原生安全的 4 个 C    {#the-4c-s-of-cloud-native-security}
 
 你可以分层去考虑安全性，云原生安全的 4 个 C 分别是云（Cloud）、集群（Cluster）、容器（Container）和代码（Code）。
 
@@ -48,9 +59,13 @@ The Code layer benefits from strong base (Cloud, Cluster, Container) security la
 You cannot safeguard against poor security standards in the base layers by addressing
 security at the Code level.
 -->
-云原生安全模型的每一层都是基于下一个最外层，代码层受益于强大的基础安全层（云、集群、容器）。你无法通过在代码层解决安全问题来为基础层中糟糕的安全标准提供保护。
+云原生安全模型的每一层都是基于下一个最外层，代码层受益于强大的基础安全层（云、集群、容器）。
+你无法通过在代码层解决安全问题来为基础层中糟糕的安全标准提供保护。
 
-## 云
+<!--
+## Cloud
+-->
+## 云    {#cloud}
 
 <!--
 In many ways, the Cloud (or co-located servers, or the corporate datacenter) is the
@@ -72,9 +87,9 @@ If you are running a Kubernetes cluster on your own hardware or a different clou
 consult your documentation for security best practices.
 Here are links to some of the popular cloud providers' security documentation:
 -->
-### 云提供商安全性
+### 云提供商安全性    {#cloud-provider-security}
 
-如果您是在您自己的硬件或者其他不同的云提供商上运行 Kubernetes 集群，
+如果你是在你自己的硬件或者其他不同的云提供商上运行 Kubernetes 集群，
 请查阅相关文档来获取最好的安全实践。
 
 下面是一些比较流行的云提供商的安全性文档链接：
@@ -88,6 +103,7 @@ Amazon Web Services | https://aws.amazon.com/security/ |
 Google Cloud Platform | https://cloud.google.com/security/ |
 IBM Cloud | https://www.ibm.com/cloud/security |
 Microsoft Azure | https://docs.microsoft.com/en-us/azure/security/azure-security |
+Oracle Cloud Infrastructure | https://www.oracle.com/security/ |
 VMWare VSphere | https://www.vmware.com/security/hardening-guides.html |
 
 {{< /table >}}
@@ -102,10 +118,10 @@ Suggestions for securing your infrastructure in a Kubernetes cluster:
 Area of Concern for Kubernetes Infrastructure | Recommendation |
 --------------------------------------------- | -------------- |
 Network access to API Server (Control plane) | All access to the Kubernetes control plane is not allowed publicly on the internet and is controlled by network access control lists restricted to the set of IP addresses needed to administer the cluster.|
-Network access to Nodes (nodes) | Nodes should be configured to _only_ accept connections (via network access control lists)from the control plane on the specified ports, and accept connections for services in Kubernetes of type NodePort and LoadBalancer. If possible, these nodes should not be exposed on the public internet entirely.
+Network access to Nodes (nodes) | Nodes should be configured to _only_ accept connections (via network access control lists) from the control plane on the specified ports, and accept connections for services in Kubernetes of type NodePort and LoadBalancer. If possible, these nodes should not be exposed on the public internet entirely.
 Kubernetes access to Cloud Provider API | Each cloud provider needs to grant a different set of permissions to the Kubernetes control plane and nodes. It is best to provide the cluster with cloud provider access that follows the [principle of least privilege](https://en.wikipedia.org/wiki/Principle_of_least_privilege) for the resources it needs to administer. The [Kops documentation](https://github.com/kubernetes/kops/blob/master/docs/iam_roles.md#iam-roles) provides information about IAM policies and roles.
 Access to etcd | Access to etcd (the datastore of Kubernetes) should be limited to the control plane only. Depending on your configuration, you should attempt to use etcd over TLS. More information can be found in the [etcd documentation](https://github.com/etcd-io/etcd/tree/master/Documentation).
-etcd Encryption | Wherever possible it's a good practice to encrypt all drives at rest, but since etcd holds the state of the entire cluster (including Secrets) its disk should especially be encrypted at rest.
+etcd Encryption | Wherever possible it's a good practice to encrypt all storage at rest, and since etcd holds the state of the entire cluster (including Secrets) its disk should especially be encrypted at rest.
 
 {{< /table >}}
 -->
@@ -115,13 +131,13 @@ etcd Encryption | Wherever possible it's a good practice to encrypt all drives a
 
 {{< table caption="基础设施安全" >}}
 
-Kubetnetes 基础架构关注领域 | 建议 |
+Kubernetes 基础架构关注领域 | 建议 |
 --------------------------------------------- | -------------- |
 通过网络访问 API 服务（控制平面）|所有对 Kubernetes 控制平面的访问不允许在 Internet 上公开，同时应由网络访问控制列表控制，该列表包含管理集群所需的 IP 地址集。|
 通过网络访问 Node（节点）| 节点应配置为 _仅能_ 从控制平面上通过指定端口来接受（通过网络访问控制列表）连接，以及接受 NodePort 和 LoadBalancer 类型的 Kubernetes 服务连接。如果可能的话，这些节点不应完全暴露在公共互联网上。|
 Kubernetes 访问云提供商的 API | 每个云提供商都需要向 Kubernetes 控制平面和节点授予不同的权限集。为集群提供云提供商访问权限时，最好遵循对需要管理的资源的[最小特权原则](https://en.wikipedia.org/wiki/Principle_of_least_privilege)。[Kops 文档](https://github.com/kubernetes/kops/blob/master/docs/iam_roles.md#iam-roles)提供有关 IAM 策略和角色的信息。|
 访问 etcd | 对 etcd（Kubernetes 的数据存储）的访问应仅限于控制平面。根据配置情况，你应该尝试通过 TLS 来使用 etcd。更多信息可以在 [etcd 文档](https://github.com/etcd-io/etcd/tree/master/Documentation)中找到。|
-etcd 加密 | 在所有可能的情况下，最好对所有驱动器进行静态数据加密，但是由于 etcd 拥有整个集群的状态（包括机密信息），因此其磁盘更应该进行静态数据加密。|
+etcd 加密 | 在所有可能的情况下，最好对所有存储进行静态数据加密，并且由于 etcd 拥有整个集群的状态（包括机密信息），因此其磁盘更应该进行静态数据加密。|
 
 {{< /table >}}
 
@@ -133,7 +149,7 @@ There are two areas of concern for securing Kubernetes:
 * Securing the cluster components that are configurable
 * Securing the applications which run in the cluster
 -->
-## 集群
+## 集群    {#cluster}
 
 保护 Kubernetes 有两个方面需要注意：
 
@@ -149,7 +165,7 @@ good information practices, read and follow the advice about
 -->
 ### 集群组件 {#cluster-components}
 
-如果想要保护集群免受意外或恶意的访问，采取良好的信息管理实践，请阅读并遵循有关[保护集群](/zh/docs/tasks/administer-cluster/securing-a-cluster/)的建议。
+如果想要保护集群免受意外或恶意的访问，采取良好的信息管理实践，请阅读并遵循有关[保护集群](/zh-cn/docs/tasks/administer-cluster/securing-a-cluster/)的建议。
 
 <!--
 ### Components in the cluster (your application) {#cluster-applications}
@@ -157,7 +173,7 @@ good information practices, read and follow the advice about
 Depending on the attack surface of your application, you may want to focus on specific
 aspects of security. For example: If you are running a service (Service A) that is critical
 in a chain of other resources and a separate workload (Service B) which is
-vulnerable to a resource exhaustion attack then the risk of compromising Service A
+vulnerable to a resource exhaustion attack, then the risk of compromising Service A
 is high if you do not limit the resources of Service B. The following table lists
 areas of security concerns and recommendations for securing workloads running in Kubernetes:
 
@@ -166,27 +182,27 @@ Area of Concern for Workload Security | Recommendation |
 RBAC Authorization (Access to the Kubernetes API) | https://kubernetes.io/docs/reference/access-authn-authz/rbac/
 Authentication | https://kubernetes.io/docs/concepts/security/controlling-access/
 Application secrets management (and encrypting them in etcd at rest) | https://kubernetes.io/docs/concepts/configuration/secret/ <br> https://kubernetes.io/docs/tasks/administer-cluster/encrypt-data/
-Pod Security Policies | https://kubernetes.io/docs/concepts/policy/pod-security-policy/
+Ensuring that pods meet defined Pod Security Standards | https://kubernetes.io/docs/concepts/security/pod-security-standards/#policy-instantiation
 Quality of Service (and Cluster resource management) | https://kubernetes.io/docs/tasks/configure-pod-container/quality-service-pod/
 Network Policies | https://kubernetes.io/docs/concepts/services-networking/network-policies/
-TLS For Kubernetes Ingress | https://kubernetes.io/docs/concepts/services-networking/ingress/#tls
+TLS for Kubernetes Ingress | https://kubernetes.io/docs/concepts/services-networking/ingress/#tls
 -->
-### 集群中的组件（您的应用） {#cluster-applications}
+### 集群中的组件（你的应用） {#cluster-applications}
 
-根据您的应用程序的受攻击面，您可能需要关注安全性的特定面，比如：
-如果您正在运行中的一个服务（A 服务）在其他资源链中很重要，并且所运行的另一工作负载（服务 B）
+根据你的应用程序的受攻击面，你可能需要关注安全性的特定面，比如：
+如果你正在运行中的一个服务（A 服务）在其他资源链中很重要，并且所运行的另一工作负载（服务 B）
 容易受到资源枯竭的攻击，则如果你不限制服务 B 的资源的话，损害服务 A 的风险就会很高。
 下表列出了安全性关注的领域和建议，用以保护 Kubernetes 中运行的工作负载：
 
 工作负载安全性关注领域         |  建议                 |
 ------------------------------ | --------------------- |
-RBAC 授权(访问 Kubernetes API) | https://kubernetes.io/zh/docs/reference/access-authn-authz/rbac/
-认证方式 | https://kubernetes.io/zh/docs/concepts/security/controlling-access/
-应用程序 Secret 管理 (并在 etcd 中对其进行静态数据加密) | https://kubernetes.io/zh/docs/concepts/configuration/secret/ <br> https://kubernetes.io/zh/docs/tasks/administer-cluster/encrypt-data/
-Pod 安全策略 | https://kubernetes.io/zh/docs/concepts/policy/pod-security-policy/
-服务质量（和集群资源管理）| https://kubernetes.io/zh/docs/tasks/configure-pod-container/quality-service-pod/
-网络策略 | https://kubernetes.io/zh/docs/concepts/services-networking/network-policies/
-Kubernetes Ingress 的 TLS 支持 | https://kubernetes.io/zh/docs/concepts/services-networking/ingress/#tls
+RBAC 授权(访问 Kubernetes API) | https://kubernetes.io/zh-cn/docs/reference/access-authn-authz/rbac/
+认证方式 | https://kubernetes.io/zh-cn/docs/concepts/security/controlling-access/
+应用程序 Secret 管理 (并在 etcd 中对其进行静态数据加密) | https://kubernetes.io/zh-cn/docs/concepts/configuration/secret/ <br> https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/encrypt-data/
+确保 Pod 符合定义的 Pod 安全标准 | https://kubernetes.io/zh-cn/docs/concepts/security/pod-security-standards/#policy-instantiation
+服务质量（和集群资源管理）| https://kubernetes.io/zh-cn/docs/tasks/configure-pod-container/quality-service-pod/
+网络策略 | https://kubernetes.io/zh-cn/docs/concepts/services-networking/network-policies/
+Kubernetes Ingress 的 TLS 支持 | https://kubernetes.io/zh-cn/docs/concepts/services-networking/ingress/#tls
 
 <!--
 ## Container
@@ -199,18 +215,18 @@ Area of Concern for Containers | Recommendation |
 Container Vulnerability Scanning and OS Dependency Security | As part of an image build step, you should scan your containers for known vulnerabilities.
 Image Signing and Enforcement | Sign container images to maintain a system of trust for the content of your containers.
 Disallow privileged users | When constructing containers, consult your documentation for how to create users inside of the containers that have the least level of operating system privilege necessary in order to carry out the goal of the container.
-Use container runtime with stronger isolation | Select [container runtime classes](/docs/concepts/containers/runtime-class/) that provider stronger isolation
+Use container runtime with stronger isolation | Select [container runtime classes](/docs/concepts/containers/runtime-class/) that provide stronger isolation
 -->
-## 容器
+## 容器    {#container}
 
 容器安全性不在本指南的探讨范围内。下面是一些探索此主题的建议和连接：
 
 容器关注领域                   | 建议           |
 ------------------------------ | -------------- |
-容器漏洞扫描和操作系统依赖安全性 | 作为镜像构建的一部分，您应该扫描您的容器里的已知漏洞。
+容器漏洞扫描和操作系统依赖安全性 | 作为镜像构建的一部分，你应该扫描你的容器里的已知漏洞。
 镜像签名和执行 | 对容器镜像进行签名，以维护对容器内容的信任。
 禁止特权用户 | 构建容器时，请查阅文档以了解如何在具有最低操作系统特权级别的容器内部创建用户，以实现容器的目标。
-使用带有较强隔离能力的容器运行时 | 选择提供较强隔离能力的[容器运行时类](/zh/docs/concepts/containers/runtime-class/)。
+使用带有较强隔离能力的容器运行时 | 选择提供较强隔离能力的[容器运行时类](/zh-cn/docs/concepts/containers/runtime-class/)。
 <!--
 ## Code
 
@@ -218,9 +234,9 @@ Application code is one of the primary attack surfaces over which you have the m
 While securing application code is outside of the Kubernetes security topic, here
 are recommendations to protect application code:
 -->
-## 代码
+## 代码    {#code}
 
-应用程序代码是您最能够控制的主要攻击面之一，虽然保护应用程序代码不在 Kubernetes 安全主题范围内，但以下是保护应用程序代码的建议：
+应用程序代码是你最能够控制的主要攻击面之一，虽然保护应用程序代码不在 Kubernetes 安全主题范围内，但以下是保护应用程序代码的建议：
 
 <!--
 ### Code security
@@ -229,7 +245,7 @@ are recommendations to protect application code:
 
 Area of Concern for Code | Recommendation |
 -------------------------| -------------- |
-Access over TLS only | If your code needs to communicate by TCP, perform a TLS handshake with the client ahead of time. With the exception of a few cases, encrypt everything in transit. Going one step further, it's a good idea to encrypt network traffic between services. This can be done through a process known as mutual or [mTLS](https://en.wikipedia.org/wiki/Mutual_authentication) which performs a two sided verification of communication between two certificate holding services. |
+Access over TLS only | If your code needs to communicate by TCP, perform a TLS handshake with the client ahead of time. With the exception of a few cases, encrypt everything in transit. Going one step further, it's a good idea to encrypt network traffic between services. This can be done through a process known as mutual TLS authentication or [mTLS](https://en.wikipedia.org/wiki/Mutual_authentication) which performs a two sided verification of communication between two certificate holding services. |
 Limiting port ranges of communication | This recommendation may be a bit self-explanatory, but wherever possible you should only expose the ports on your service that are absolutely essential for communication or metric gathering. |
 3rd Party Dependency Security | It is a good practice to regularly scan your application's third party libraries for known security vulnerabilities. Each programming language has a tool for performing this check automatically. |
 Static Code Analysis | Most languages provide a way for a snippet of code to be analyzed for any potentially unsafe coding practices. Whenever possible you should perform checks using automated tooling that can scan codebases for common security errors. Some of the tools can be found at: https://owasp.org/www-community/Source_Code_Analysis_Tools |
@@ -237,17 +253,17 @@ Dynamic probing attacks | There are a few automated tools that you can run again
 
 {{< /table >}}
 -->
-### 代码安全性
+### 代码安全性    {#code-security}
 
 {{< table caption="代码安全" >}}
 
 代码关注领域 | 建议 |
 -------------------------| -------------- |
-仅通过 TLS 访问 | 如果您的代码需要通过 TCP 通信，请提前与客户端执行 TLS 握手。除少数情况外，请加密传输中的所有内容。更进一步，加密服务之间的网络流量是一个好主意。这可以通过被称为相互 LTS 或 [mTLS](https://en.wikipedia.org/wiki/Mutual_authentication) 的过程来完成，该过程对两个证书持有服务之间的通信执行双向验证。 |
+仅通过 TLS 访问 | 如果你的代码需要通过 TCP 通信，请提前与客户端执行 TLS 握手。除少数情况外，请加密传输中的所有内容。更进一步，加密服务之间的网络流量是一个好主意。这可以通过被称为双向 TLS 或 [mTLS](https://en.wikipedia.org/wiki/Mutual_authentication) 的过程来完成，该过程对两个证书持有服务之间的通信执行双向验证。 |
 限制通信端口范围 | 此建议可能有点不言自明，但是在任何可能的情况下，你都只应公开服务上对于通信或度量收集绝对必要的端口。|
 第三方依赖性安全 | 最好定期扫描应用程序的第三方库以了解已知的安全漏洞。每种编程语言都有一个自动执行此检查的工具。 |
-静态代码分析 | 大多数语言都提供给了一种方法，来分析代码段中是否存在潜在的不安全的编码实践。只要有可能，你都应该使用自动工具执行检查，该工具可以扫描代码库以查找常见的安全错误，一些工具可以在以下连接中找到：https://owasp.org/www-community/Source_Code_Analysis_Tools |
-动态探测攻击 | 您可以对服务运行一些自动化工具，来尝试一些众所周知的服务攻击。这些攻击包括 SQL 注入、CSRF 和 XSS。[OWASP Zed Attack](https://owasp.org/www-project-zap/) 代理工具是最受欢迎的动态分析工具之一。 |
+静态代码分析 | 大多数语言都提供给了一种方法，来分析代码段中是否存在潜在的不安全的编码实践。只要有可能，你都应该使用自动工具执行检查，该工具可以扫描代码库以查找常见的安全错误，一些工具可以在以下连接中找到： https://owasp.org/www-community/Source_Code_Analysis_Tools |
+动态探测攻击 | 你可以对服务运行一些自动化工具，来尝试一些众所周知的服务攻击。这些攻击包括 SQL 注入、CSRF 和 XSS。[OWASP Zed Attack](https://owasp.org/www-project-zap/) 代理工具是最受欢迎的动态分析工具之一。 |
 
 {{< /table >}}
 
@@ -267,12 +283,12 @@ Learn about related Kubernetes security topics:
 -->
 学习了解相关的 Kubernetes 安全主题：
 
-* [Pod 安全标准](/zh/docs/concepts/security/pod-security-standards/)
-* [Pod 的网络策略](/zh/docs/concepts/services-networking/network-policies/)
-* [控制对 Kubernetes API 的访问](/zh/docs/concepts/security/controlling-access/)
-* [保护您的集群](/zh/docs/tasks/administer-cluster/securing-a-cluster/)
-* 为控制面[加密通信中的数据](/zh/docs/tasks/tls/managing-tls-in-a-cluster/)
-* [加密静止状态的数据](/zh/docs/tasks/administer-cluster/encrypt-data/)
-* [Kubernetes 中的 Secret](/zh/docs/concepts/configuration/secret/)
-* [运行时类](/zh/docs/concepts/containers/runtime-class)
+* [Pod 安全标准](/zh-cn/docs/concepts/security/pod-security-standards/)
+* [Pod 的网络策略](/zh-cn/docs/concepts/services-networking/network-policies/)
+* [控制对 Kubernetes API 的访问](/zh-cn/docs/concepts/security/controlling-access/)
+* [保护你的集群](/zh-cn/docs/tasks/administer-cluster/securing-a-cluster/)
+* 为控制面[加密通信中的数据](/zh-cn/docs/tasks/tls/managing-tls-in-a-cluster/)
+* [加密静止状态的数据](/zh-cn/docs/tasks/administer-cluster/encrypt-data/)
+* [Kubernetes 中的 Secret](/zh-cn/docs/concepts/configuration/secret/)
+* [运行时类](/zh-cn/docs/concepts/containers/runtime-class)
 
diff --git a/content/zh-cn/docs/concepts/security/pod-security-admission.md b/content/zh-cn/docs/concepts/security/pod-security-admission.md
new file mode 100644
index 0000000000..9a3d6533d8
--- /dev/null
+++ b/content/zh-cn/docs/concepts/security/pod-security-admission.md
@@ -0,0 +1,327 @@
+---
+title: Pod 安全性准入
+description: >
+  对 Pod 安全性准入控制器的概述，Pod 安全性准入控制器可以实施 Pod 安全性标准。
+
+content_type: concept
+weight: 20
+min-kubernetes-server-version: v1.22
+---
+<!--
+reviewers:
+- tallclair
+- liggitt
+title: Pod Security Admission
+description: >
+  An overview of the Pod Security Admission Controller, which can enforce the Pod Security
+  Standards.
+content_type: concept
+weight: 20
+min-kubernetes-server-version: v1.22
+-->
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
+
+<!--
+The Kubernetes [Pod Security Standards](/docs/concepts/security/pod-security-standards/) define
+different isolation levels for Pods. These standards let you define how you want to restrict the
+behavior of pods in a clear, consistent fashion.
+-->
+Kubernetes [Pod 安全性标准（Security Standards）](/zh-cn/docs/concepts/security/pod-security-standards/)
+为 Pod 定义不同的隔离级别。这些标准能够让你以一种清晰、一致的方式定义如何限制 Pod 行为。
+
+<!--
+As a beta feature, Kubernetes offers a built-in _Pod Security_ {{< glossary_tooltip
+text="admission controller" term_id="admission-controller" >}}, the successor
+to [PodSecurityPolicies](/docs/concepts/security/pod-security-policy/). Pod security restrictions
+are applied at the {{< glossary_tooltip text="namespace" term_id="namespace" >}} level when pods
+are created.
+-->
+作为一项 Beta 功能特性，Kubernetes 提供一种内置的 _Pod 安全性_ 
+{{< glossary_tooltip text="准入控制器" term_id="admission-controller" >}}，
+作为 [PodSecurityPolicies](/zh-cn/docs/concepts/security/pod-security-policy/)
+特性的后继演化版本。Pod 安全性限制是在 Pod 被创建时在
+{{< glossary_tooltip text="名字空间" term_id="namespace" >}}层面实施的。
+
+{{< note >}}
+<!--
+The PodSecurityPolicy API is deprecated and will be 
+[removed](/docs/reference/using-api/deprecation-guide/#v1-25) from Kubernetes in v1.25.
+-->
+PodSecurityPolicy API 已经被废弃，会在 Kubernetes v1.25 发行版中
+[移除](/zh-cn/docs/reference/using-api/deprecation-guide/#v1-25)。
+{{< /note >}}
+
+<!-- body -->
+
+## {{% heading "prerequisites" %}}
+
+<!--
+To use this mechanism, your cluster must enforce Pod Security admission.
+-->
+要使用此机制，你的集群必须强制执行 Pod 安全准入。
+
+<!--
+### Built-in Pod Security admission enforcement
+
+In Kubernetes v1.23, the `PodSecurity` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is a beta feature and is enabled by default.
+This page is part of the documentation for Kubernetes v{{< skew currentVersion >}}.
+If you are running a different version of Kubernetes, consult the documentation for that release.
+-->
+### 内置 Pod 安全准入强制执行
+
+在 Kubernetes v1.23 中，`PodSecurity`
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)是一项 Beta 特性，
+默认被启用。
+本页面是 Kubernetes v{{< skew currentVersion >}} 文档的一部分。
+如果你运行的是其它版本的 Kubernetes，请查阅该版本的文档。
+
+<!--
+### Alternative: installing the `PodSecurity` admission webhook {#webhook}
+
+The `PodSecurity` admission logic is also available as a [validating admission webhook](https://git.k8s.io/pod-security-admission/webhook). This implementation is also beta.
+For environments where the built-in `PodSecurity` admission plugin cannot be enabled, you can instead enable that logic via a validating admission webhook.
+-->
+### 替代方案：安装 `PodSecurity` 准入 Webhook   {#webhook}
+
+`PodSecurity` 准入逻辑也可用作[验证性准入 Webhook](https://git.k8s.io/pod-security-admission/webhook)。
+该实现也是 Beta 版本。
+对于无法启用内置 `PodSecurity` 准入插件的环境，你可以改为通过验证准入 Webhook 启用该逻辑。
+
+<!--
+A pre-built container image, certificate generation scripts, and example manifests
+are available at [https://git.k8s.io/pod-security-admission/webhook](https://git.k8s.io/pod-security-admission/webhook).
+
+To install:
+-->
+在 [https://git.k8s.io/pod-security-admission/webhook](https://git.k8s.io/pod-security-admission/webhook)
+上可以找到一个预先构建的容器镜像、证书生成脚本以及一些示例性质的清单。
+执行下面的命令来安装：
+
+```shell
+git clone git@github.com:kubernetes/pod-security-admission.git
+cd pod-security-admission/webhook
+make certs
+kubectl apply -k .
+```
+
+{{< note >}}
+<!--
+The generated certificate is valid for 2 years. Before it expires,
+regenerate the certificate or remove the webhook in favor of the built-in admission plugin.
+-->
+所生成的证书合法期限为 2 年。在证书过期之前，
+需要重新生成证书或者去掉 Webhook 以使用内置的准入插件。
+{{< /note >}}
+
+<!-- body -->
+
+<!--
+## Pod Security levels
+-->
+## Pod 安全性级别   {#pod-security-levels}
+
+<!--
+Pod Security admission places requirements on a Pod's [Security
+Context](/docs/tasks/configure-pod-container/security-context/) and other related fields according
+to the three levels defined by the [Pod Security
+Standards](/docs/concepts/security/pod-security-standards): `privileged`, `baseline`, and
+`restricted`. Refer to the [Pod Security Standards](/docs/concepts/security/pod-security-standards)
+page for an in-depth look at those requirements.
+-->
+Pod 安全性准入插件对 Pod 的[安全性上下文](/zh-cn/docs/tasks/configure-pod-container/security-context/)
+有一定的要求，并且依据 [Pod 安全性标准](/zh-cn/docs/concepts/security/pod-security-standards)
+所定义的三个级别（`privileged`、`baseline` 和 `restricted`）对其他字段也有要求。
+关于这些需求的更进一步讨论，请参阅
+[Pod 安全性标准](/zh-cn/docs/concepts/security/pod-security-standards/)页面。
+
+<!--
+## Pod Security Admission labels for namespaces
+
+Once the feature is enabled or the webhook is installed, you can configure namespaces to define the admission
+control mode you want to use for pod security in each namespace. Kubernetes defines a set of 
+{{< glossary_tooltip term_id="label" text="labels" >}} that you can set to define which of the 
+predefined Pod Security Standard levels you want to use for a namespace. The label you select
+defines what action the {{< glossary_tooltip text="control plane" term_id="control-plane" >}}
+takes if a potential violation is detected:
+-->
+## 为名字空间设置 Pod 安全性准入控制标签
+
+一旦特性被启用或者安装了 Webhook，你可以配置名字空间以定义每个名字空间中
+Pod 安全性准入控制模式。
+Kubernetes 定义了一组{{< glossary_tooltip term_id="label" text="标签" >}}，
+你可以设置这些标签来定义某个名字空间上要使用的预定义的 Pod 安全性标准级别。
+你所选择的标签定义了检测到潜在违例时，{{< glossary_tooltip text="控制面" term_id="control-plane" >}}
+要采取什么样的动作。
+
+<!--
+Mode | Description
+:---------|:------------
+**enforce** | Policy violations will cause the pod to be rejected.
+**audit** | Policy violations will trigger the addition of an audit annotation to the event recorded in the [audit log](/docs/tasks/debug/debug-cluster/audit/), but are otherwise allowed.
+**warn** | Policy violations will trigger a user-facing warning, but are otherwise allowed.
+-->
+{{< table caption="Pod 安全准入模式" >}}
+模式 | 描述
+:---------|:------------
+**enforce** | 策略违例会导致 Pod 被拒绝
+**audit** | 策略违例会触发[审计日志](/zh-cn/docs/tasks/debug/debug-cluster/audit/)中记录新事件时添加审计注解；但是 Pod 仍是被接受的。
+**warn** | 策略违例会触发用户可见的警告信息，但是 Pod 仍是被接受的。
+{{< /table >}}
+
+<!--
+A namespace can configure any or all modes, or even set a different level for different modes.
+
+For each mode, there are two labels that determine the policy used:
+-->
+名字空间可以配置任何一种或者所有模式，或者甚至为不同的模式设置不同的级别。
+
+对于每种模式，决定所使用策略的标签有两个：
+
+<!--
+# The per-mode level label indicates which policy level to apply for the mode.
+#
+# MODE must be one of `enforce`, `audit`, or `warn`.
+# LEVEL must be one of `privileged`, `baseline`, or `restricted`.
+pod-security.kubernetes.io/<MODE>: <LEVEL>
+
+# Optional: per-mode version label that can be used to pin the policy to the
+# version that shipped with a given Kubernetes minor version (for example v{{< skew currentVersion >}}).
+#
+# MODE must be one of `enforce`, `audit`, or `warn`.
+# VERSION must be a valid Kubernetes minor version, or `latest`.
+pod-security.kubernetes.io/<MODE>-version: <VERSION>
+-->
+```
+# 模式的级别标签用来标示对应模式所应用的策略级别
+#
+# MODE 必须是 `enforce`、`audit` 或 `warn` 之一
+# LEVEL 必须是 `privileged`、baseline` 或 `restricted` 之一
+pod-security.kubernetes.io/<MODE>: <LEVEL>
+
+# 可选：针对每个模式版本的版本标签可以将策略锁定到
+# 给定 Kubernetes 小版本号所附带的版本（例如 v{{< skew currentVersion >}}）
+#
+# MODE 必须是 `enforce`、`audit` 或 `warn` 之一
+# VERSION 必须是一个合法的 Kubernetes 小版本号或者 `latest`
+pod-security.kubernetes.io/<MODE>-version: <VERSION>
+```
+
+<!--
+Check out [Enforce Pod Security Standards with Namespace Labels](/docs/tasks/configure-pod-container/enforce-standards-namespace-labels) to see example usage.
+-->
+关于用法示例，可参阅[使用名字空间标签来强制实施 Pod 安全标准](/zh-cn/docs/tasks/configure-pod-container/enforce-standards-namespace-labels/)。
+
+<!--
+## Workload resources and Pod templates
+
+Pods are often created indirectly, by creating a [workload
+object](/docs/concepts/workloads/controllers/) such as a {{< glossary_tooltip
+term_id="deployment" >}} or {{< glossary_tooltip term_id="job">}}. The workload object defines a
+_Pod template_ and a {{< glossary_tooltip term_id="controller" text="controller" >}} for the
+workload resource creates Pods based on that template. To help catch violations early, both the
+audit and warning modes are applied to the workload resources. However, enforce mode is **not**
+applied to workload resources, only to the resulting pod objects.
+-->
+## 负载资源和 Pod 模板    {#workload-resources-and-pod-templates}
+
+Pod 通常是通过创建 {{< glossary_tooltip term_id="deployment" >}} 或
+{{< glossary_tooltip term_id="job">}}
+这类[工作负载对象](/zh-cn/docs/concepts/workloads/controllers/)
+来间接创建的。工作负载对象为工作负载资源定义一个 **Pod 模板**
+和一个对应的负责基于该模板来创建 Pod 的{{< glossary_tooltip term_id="controller" text="控制器" >}}。
+为了尽早地捕获违例状况，`audit` 和 `warn` 模式都应用到负载资源。
+不过，`enforce` 模式并 **不** 应用到工作负载资源，仅应用到所生成的 Pod 对象上。 
+
+<!--
+## Exemptions
+
+You can define _exemptions_ from pod security enforcement in order to allow the creation of pods that
+would have otherwise been prohibited due to the policy associated with a given namespace.
+Exemptions can be statically configured in the
+[Admission Controller configuration](/docs/tasks/configure-pod-container/enforce-standards-admission-controller/#configure-the-admission-controller).
+-->
+## 豁免   {#exemptions}
+
+你可以为 Pod 安全性的实施设置 **豁免（Exemptions）** 规则，
+从而允许创建一些本来会被与给定名字空间相关的策略所禁止的 Pod。
+豁免规则可以在[准入控制器配置](/zh-cn/docs/tasks/configure-pod-container/enforce-standards-admission-controller/#configure-the-admission-controller)
+中静态配置。
+
+<!--
+Exemptions must be explicitly enumerated. Requests meeting exemption criteria are _ignored_ by the
+Admission Controller (all `enforce`, `audit` and `warn` behaviors are skipped). Exemption dimensions include:
+-->
+豁免规则可以显式枚举。满足豁免标准的请求会被准入控制器 **忽略**
+（所有 `enforce`、`audit` 和 `warn` 行为都会被略过）。
+豁免的维度包括：
+
+<!--
+- **Usernames:** requests from users with an exempt authenticated (or impersonated) username are
+  ignored.
+- **RuntimeClassNames:** pods and [workload resources](#workload-resources-and-pod-templates) specifying an exempt runtime class name are
+  ignored.
+- **Namespaces:** pods and [workload resources](#workload-resources-and-pod-templates) in an exempt namespace are ignored.
+-->
+- **Username：** 来自用户名已被豁免的、已认证的（或伪装的）的用户的请求会被忽略。
+- **RuntimeClassName：** 指定了已豁免的运行时类名称的 Pod
+  和[负载资源](#workload-resources-and-pod-templates)会被忽略。
+- **Namespace：** 位于被豁免的名字空间中的 Pod 和[负载资源](#workload-resources-and-pod-templates) 
+  会被忽略。
+
+{{< caution >}}
+<!--
+Most pods are created by a controller in response to a [workload
+resource](#workload-resources-and-pod-templates), meaning that exempting an end user will only
+exempt them from enforcement when creating pods directly, but not when creating a workload resource.
+Controller service accounts (such as `system:serviceaccount:kube-system:replicaset-controller`)
+should generally not be exempted, as doing so would implicitly exempt any user that can create the
+corresponding workload resource.
+-->
+大多数 Pod 是作为对[工作负载资源](#workload-resources-and-pod-templates)的响应，
+由控制器所创建的，这意味着为某最终用户提供豁免时，只会当该用户直接创建 Pod
+时对其实施安全策略的豁免。用户创建工作负载资源时不会被豁免。
+控制器服务账号（例如：`system:serviceaccount:kube-system:replicaset-controller`）
+通常不应该被豁免，因为豁免这类服务账号隐含着对所有能够创建对应工作负载资源的用户豁免。
+{{< /caution >}}
+
+<!--
+Updates to the following pod fields are exempt from policy checks, meaning that if a pod update
+request only changes these fields, it will not be denied even if the pod is in violation of the
+current policy level:
+-->
+策略检查时会对以下 Pod 字段的更新操作予以豁免，这意味着如果 Pod
+更新请求仅改变这些字段时，即使 Pod 违反了当前的策略级别，请求也不会被拒绝。
+
+<!--
+- Any metadata updates **except** changes to the seccomp or AppArmor annotations:
+  - `seccomp.security.alpha.kubernetes.io/pod` (deprecated)
+  - `container.seccomp.security.alpha.kubernetes.io/*` (deprecated)
+  - `container.apparmor.security.beta.kubernetes.io/*`
+- Valid updates to `.spec.activeDeadlineSeconds`
+- Valid updates to `.spec.tolerations`
+-->
+- 除了对 seccomp 或 AppArmor 注解之外的所有元数据（Metadata）更新操作：
+  - `seccomp.security.alpha.kubernetes.io/pod` （已弃用）
+  - `container.seccomp.security.alpha.kubernetes.io/*` （已弃用）
+  - `container.apparmor.security.beta.kubernetes.io/*`
+- 对 `.spec.activeDeadlineSeconds` 的合法更新
+- 对 `.spec.tolerations` 的合法更新
+
+## {{% heading "whatsnext" %}}
+
+<!--
+- [Pod Security Standards](/docs/concepts/security/pod-security-standards)
+- [Enforcing Pod Security Standards](/docs/setup/best-practices/enforcing-pod-security-standards)
+- [Enforce Pod Security Standards by Configuring the Built-in Admission Controller](/docs/tasks/configure-pod-container/enforce-standards-admission-controller)
+- [Enforce Pod Security Standards with Namespace Labels](/docs/tasks/configure-pod-container/enforce-standards-namespace-labels)
+- [Migrate from PodSecurityPolicy to the Built-In PodSecurity Admission Controller](/docs/tasks/configure-pod-container/migrate-from-psp)
+-->
+- [Pod 安全性标准](/zh-cn/docs/concepts/security/pod-security-standards/)
+- [强制实施 Pod 安全性标准](/zh-cn/docs/setup/best-practices/enforcing-pod-security-standards/)
+- [通过配置内置的准入控制器强制实施 Pod 安全性标准](/zh-cn/docs/tasks/configure-pod-container/enforce-standards-admission-controller/)
+- [使用名字空间标签来实施 Pod 安全性标准](/zh-cn/docs/tasks/configure-pod-container/enforce-standards-namespace-labels/)
+- [从 PodSecurityPolicy 迁移到内置的 PodSecurity 准入控制器](/zh-cn/docs/tasks/configure-pod-container/migrate-from-psp/)
+
diff --git a/content/zh/docs/concepts/policy/pod-security-policy.md b/content/zh-cn/docs/concepts/security/pod-security-policy.md
similarity index 61%
rename from content/zh/docs/concepts/policy/pod-security-policy.md
rename to content/zh-cn/docs/concepts/security/pod-security-policy.md
index 46db85215e..6ea7b7de32 100644
--- a/content/zh/docs/concepts/policy/pod-security-policy.md
+++ b/content/zh-cn/docs/concepts/security/pod-security-policy.md
@@ -3,6 +3,7 @@ title: Pod 安全策略
 content_type: concept
 weight: 30
 ---
+
 <!--
 reviewers:
 - pweil-
@@ -14,10 +15,20 @@ weight: 30
 
 {{< feature-state for_k8s_version="v1.21" state="deprecated" >}}
 
+{{< caution >}}
 <!--
-PodSecurityPolicy is deprecated as of Kubernetes v1.21, and will be removed in v1.25.
+PodSecurityPolicy is deprecated as of Kubernetes v1.21, and **will be removed in v1.25**. We recommend migrating to
+[Pod Security Admission](/docs/concepts/security/pod-security-admission/), or a 3rd party admission plugin.
+For a migration guide, see [Migrate from PodSecurityPolicy to the Built-In PodSecurity Admission Controller](/docs/tasks/configure-pod-container/migrate-from-psp/).
+For more information on the deprecation,
+see [PodSecurityPolicy Deprecation: Past, Present, and Future](/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/).
 -->
-PodSecurityPolicy 在 Kubernetes v1.21 版本中被弃用，将在 v1.25 中删除。
+PodSecurityPolicy 在 Kubernetes v1.21 版本中被弃用，**将在 v1.25 中删除**。
+我们建议迁移到 [Pod 安全性准入](/zh-cn/docs/concepts/security/pod-security-admission)，
+或者第三方的准入插件。
+若需了解迁移指南，可参阅[从 PodSecurityPolicy 迁移到内置的 PodSecurity 准入控制器](/zh-cn/docs/tasks/configure-pod-container/migrate-from-psp/)。
+关于弃用的更多信息，请查阅 [PodSecurityPolicy Deprecation: Past, Present, and Future](/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/)。
+{{< /caution >}}
 
 <!--
 Pod Security Policies enable fine-grained authorization of pod creation and
@@ -25,27 +36,29 @@ updates.
 -->
 Pod 安全策略使得对 Pod 创建和更新进行细粒度的权限控制成为可能。
 
+<!-- body -->
+
 <!--
 ## What is a Pod Security Policy?
 
 A _Pod Security Policy_ is a cluster-level resource that controls security
-sensitive aspects of the pod specification. The [PodSecurityPolicy](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritypolicy-v1beta1-policy) objects
+sensitive aspects of the pod specification. The
+[PodSecurityPolicy](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritypolicy-v1beta1-policy) objects
 define a set of conditions that a pod must run with in order to be accepted into
 the system, as well as defaults for the related fields. They allow an
 administrator to control the following:
 -->
-## 什么是 Pod 安全策略？
+## 什么是 Pod 安全策略？   {#what-is-a-pod-security-policy}
 
-_Pod 安全策略（Pod Security Policy）_ 是集群级别的资源，它能够控制 Pod 规约
-中与安全性相关的各个方面。
-[PodSecurityPolicy](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritypolicy-v1beta1-policy)
-对象定义了一组 Pod 运行时必须遵循的条件及相关字段的默认值，只有 Pod 满足这些条件
-才会被系统接受。
-Pod 安全策略允许管理员控制如下方面：
+**Pod 安全策略（Pod Security Policy）**是集群级别的资源，它能够控制 Pod
+规约中与安全性相关的各个方面。
+[PodSecurityPolicy](/zh-cn/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritypolicy-v1beta1-policy)
+对象定义了一组 Pod 运行时必须遵循的条件及相关字段的默认值，只有 Pod 满足这些条件才会被系统接受。
+Pod 安全策略允许管理员控制如下操作：
 
 <!--
 | Control Aspect                                      | Field Names                                 |
-| ----------------------------------------------------| ----------------------------------------- |
+| ----------------------------------------------------| ------------------------------------------- |
 | Running of privileged containers                    | [`privileged`](#privileged)                                |
 | Usage of host namespaces                            | [`hostPID`, `hostIPC`](#host-namespaces)    |
 | Usage of host networking and ports                  | [`hostNetwork`, `hostPorts`](#host-namespaces) |
@@ -67,46 +80,36 @@ Pod 安全策略允许管理员控制如下方面：
 | ----------------------------------- | --------------------------------- |
 | 运行特权容器                        | [`privileged`](#privileged) |
 | 使用宿主名字空间                    | [`hostPID`、`hostIPC`](#host-namespaces) |
-| 使用宿主的网络和端口                | [`hostNetwork`, `hostPorts`](#host-namespaces) |
+| 使用宿主的网络和端口                | [`hostNetwork`、`hostPorts`](#host-namespaces) |
 | 控制卷类型的使用                    | [`volumes`](#volumes-and-file-systems) |
 | 使用宿主文件系统                    | [`allowedHostPaths`](#volumes-and-file-systems) |
 | 允许使用特定的 FlexVolume 驱动      | [`allowedFlexVolumes`](#flexvolume-drivers) |
 | 分配拥有 Pod 卷的 FSGroup 账号      | [`fsGroup`](#volumes-and-file-systems)      |
 | 以只读方式访问根文件系统            | [`readOnlyRootFilesystem`](#volumes-and-file-systems) |
-| 设置容器的用户和组 ID               | [`runAsUser`, `runAsGroup`, `supplementalGroups`](#users-and-groups) |
-| 限制 root 账号特权级提升             | [`allowPrivilegeEscalation`, `defaultAllowPrivilegeEscalation`](#privilege-escalation) |
-| Linux 权能字（Capabilities）        | [`defaultAddCapabilities`, `requiredDropCapabilities`, `allowedCapabilities`](#capabilities) |
+| 设置容器的用户和组 ID               | [`runAsUser`、`runAsGroup`、`supplementalGroups`](#users-and-groups) |
+| 限制 root 账号特权级提升             | [`allowPrivilegeEscalation`、`defaultAllowPrivilegeEscalation`](#privilege-escalation) |
+| Linux 权能字（Capabilities）        | [`defaultAddCapabilities`、`requiredDropCapabilities`、`allowedCapabilities`](#capabilities) |
 | 设置容器的 SELinux 上下文           | [`seLinux`](#selinux)                       |
 | 指定容器可以挂载的 proc 类型        | [`allowedProcMountTypes`](#allowedprocmounttypes) |
-| 指定容器使用的 AppArmor 模版        | [annotations](#apparmor)                    |
-| 指定容器使用的 seccomp 模版         | [annotations](#seccomp)                     |
-| 指定容器使用的 sysctl 模版          | [`forbiddenSysctls`,`allowedUnsafeSysctls`](#sysctl)  | 
-
-
-_Pod 安全策略_ 由设置和策略组成，它们能够控制 Pod 访问的安全特征。这些设置分为如下三类：
-
-- *基于布尔值控制* ：这种类型的字段默认为最严格限制的值。
-- *基于被允许的值集合控制* ：这种类型的字段会与这组值进行对比，以确认值被允许。
-- *基于策略控制* ：设置项通过一种策略提供的机制来生成该值，这种机制能够确保指定的值落在被允许的这组值中。
+| 指定容器使用的 AppArmor 模板        | [annotations](#apparmor)                    |
+| 指定容器使用的 seccomp 模板         | [annotations](#seccomp)                     |
+| 指定容器使用的 sysctl 模板          | [`forbiddenSysctls`、`allowedUnsafeSysctls`](#sysctl)  | 
 
 <!--
 ## Enabling Pod Security Policies
 
-Pod security policy control is implemented as an optional (but recommended)
-[admission
-controller](/docs/reference/access-authn-authz/admission-controllers/#podsecuritypolicy). PodSecurityPolicies
-are enforced by [enabling the admission
-controller](/docs/reference/access-authn-authz/admission-controllers/#how-do-i-turn-on-an-admission-control-plug-in),
-but doing so without authorizing any policies **will prevent any pods from being
-created** in the cluster.
+Pod security policy control is implemented as an optional
+[admission controller](/docs/reference/access-authn-authz/admission-controllers/#podsecuritypolicy).
+PodSecurityPolicies are enforced by
+[enabling the admission controller](/docs/reference/access-authn-authz/admission-controllers/#how-do-i-turn-on-an-admission-control-plug-in),
+but doing so without authorizing any policies **will prevent any pods from being created** in the
+cluster.
 -->
-## 启用 Pod 安全策略
+## 启用 Pod 安全策略   {#enabling-pod-security-policies}
 
-Pod 安全策略实现为一种可选（但是建议启用）的
-[准入控制器](/zh/docs/reference/access-authn-authz/admission-controllers/#podsecuritypolicy)。
-[启用了准入控制器](/zh/docs/reference/access-authn-authz/admission-controllers/#how-do-i-turn-on-an-admission-control-plug-in)
-即可强制实施 Pod 安全策略，不过如果没有授权认可策略之前即启用
-准入控制器 **将导致集群中无法创建任何 Pod**。
+Pod 安全策略实现为一种可选的[准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#podsecuritypolicy)。
+[启用了准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#how-do-i-turn-on-an-admission-control-plug-in)即可强制实施
+Pod 安全策略，不过如果没有授权认可策略之前即启用准入控制器**将导致集群中无法创建任何 Pod**。
 
 <!--
 Since the pod security policy API (`policy/v1beta1/podsecuritypolicy`) is
@@ -114,23 +117,23 @@ enabled independently of the admission controller, for existing clusters it is
 recommended that policies are added and authorized before enabling the admission
 controller.
 -->
-由于 Pod 安全策略 API（`policy/v1beta1/podsecuritypolicy`）是独立于准入控制器
-来启用的，对于现有集群而言，建议在启用准入控制器之前先添加策略并对其授权。
+由于 Pod 安全策略 API（`policy/v1beta1/podsecuritypolicy`）是独立于准入控制器来启用的，
+对于现有集群而言，建议在启用准入控制器之前先添加策略并对其授权。
 
 <!--
 ## Authorizing Policies
 
 When a PodSecurityPolicy resource is created, it does nothing. In order to use
-it, the requesting user or target pod's [service
-account](/docs/tasks/configure-pod-container/configure-service-account/) must be
-authorized to use the policy, by allowing the `use` verb on the policy.
+it, the requesting user or target pod's
+[service account](/docs/tasks/configure-pod-container/configure-service-account/)
+must be authorized to use the policy, by allowing the `use` verb on the policy.
 -->
 ## 授权策略    {#authorizing-policies}
 
-PodSecurityPolicy 资源被创建时，并不执行任何操作。为了使用该资源，需要对
-发出请求的用户或者目标 Pod 的
-[服务账号](/zh/docs/tasks/configure-pod-container/configure-service-account/)
-授权，通过允许其对策略执行 `use` 动词允许其使用该策略。
+PodSecurityPolicy 资源被创建时，并不执行任何操作。为了使用该资源，
+需要对发出请求的用户或者目标 Pod
+的[服务账号](/zh-cn/docs/tasks/configure-pod-container/configure-service-account/)授权，
+通过允许其对策略执行 `use` 动作，以允许其使用该策略。
 
 <!--
 Most Kubernetes pods are not created directly by users. Instead, they are
@@ -143,10 +146,10 @@ so the preferred method for authorizing policies is to grant access to the
 pod's service account (see [example](#run-another-pod)).
 -->
 大多数 Kubernetes Pod 不是由用户直接创建的。相反，这些 Pod 是由
-[Deployment](/zh/docs/concepts/workloads/controllers/deployment/)、
-[ReplicaSet](/zh/docs/concepts/workloads/controllers/replicaset/)
-或者经由控制器管理器模版化的控制器创建。
-赋予控制器访问策略的权限意味着对应控制器所创建的 *所有* Pod 都可访问策略。
+[Deployment](/zh-cn/docs/concepts/workloads/controllers/deployment/)、
+[ReplicaSet](/zh-cn/docs/concepts/workloads/controllers/replicaset/)
+或者经由控制器管理器模板化的控制器创建。
+赋予控制器访问策略的权限意味着对应控制器所创建的**所有** Pod 都可访问策略。
 因此，对策略进行授权的优先方案是为 Pod 的服务账号授予访问权限
 （参见[示例](#run-another-pod)）。
 
@@ -158,23 +161,10 @@ authorization mode, and can easily be used to authorize use of policies.
 
 First, a `Role` or `ClusterRole` needs to grant access to `use` the desired
 policies. The rules to grant access look like this:
-
-```yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  name: <role name>
-rules:
-- apiGroups: ['policy']
-  resources: ['podsecuritypolicies']
-  verbs:     ['use']
-  resourceNames:
-  - <list of policies to authorize>
-```
 -->
 ### 通过 RBAC 授权   {#via-rbac}
 
-[RBAC](/zh/docs/reference/access-authn-authz/rbac/) 是一种标准的 Kubernetes
+[RBAC](/zh-cn/docs/reference/access-authn-authz/rbac/) 是一种标准的 Kubernetes
 鉴权模式，可以很容易地用来授权策略访问。
 
 首先，某 `Role` 或 `ClusterRole` 需要获得使用 `use` 访问目标策略的权限。
@@ -206,7 +196,11 @@ roleRef:
   name: <role name>
   apiGroup: rbac.authorization.k8s.io
 subjects:
-# Authorize specific service accounts:
+# Authorize all service accounts in a namespace (recommended):
+- kind: Group
+  apiGroup: rbac.authorization.k8s.io
+  name: system:serviceaccounts:<authorized namespace>
+# Authorize specific service accounts (not recommended):
 - kind: ServiceAccount
   name: <authorized service account name>
   namespace: <authorized pod namespace>
@@ -228,20 +222,25 @@ roleRef:
   name: <角色名称>
   apiGroup: rbac.authorization.k8s.io
 subjects:
-# 授权特定的服务账号
-- kind: ServiceAccount
-  name: <要授权的服务账号名称>
-  namespace: <authorized pod namespace>
-# 授权特定的用户（不建议这样操作）
-- kind: User
-  apiGroup: rbac.authorization.k8s.io
-  name: <要授权的用户名>
+  # 授权命名空间下的所有服务账号（推荐）：
+  - kind: Group
+    apiGroup: rbac.authorization.k8s.io
+    name: system:serviceaccounts:<authorized namespace>
+  # 授权特定的服务账号（不建议这样操作）：
+  - kind: ServiceAccount
+    name: <被授权的服务账号名称>
+    namespace: <被授权的 Pod 名字空间>
+  # 授权特定的用户（不建议这样操作）：
+  - kind: User
+    apiGroup: rbac.authorization.k8s.io
+    name: <被授权的用户名>
 ```
 
 <!--
 If a `RoleBinding` (not a `ClusterRoleBinding`) is used, it will only grant
 usage for pods being run in the same namespace as the binding. This can be
 paired with system groups to grant access to all pods run in the namespace:
+
 ```yaml
 # Authorize all service accounts in a namespace:
 - kind: Group
@@ -253,8 +252,8 @@ paired with system groups to grant access to all pods run in the namespace:
   name: system:authenticated
 ```
 -->
-如果使用的是 `RoleBinding`（而不是 `ClusterRoleBinding`），授权仅限于
-与该 `RoleBinding` 处于同一名字空间中的 Pods。
+如果使用的是 `RoleBinding`（而不是 `ClusterRoleBinding`），授权仅限于与该
+`RoleBinding` 处于同一名字空间中的 Pod。
 可以考虑将这种授权模式和系统组结合，对名字空间中的所有 Pod 授予访问权限。
 
 ```yaml
@@ -262,43 +261,127 @@ paired with system groups to grant access to all pods run in the namespace:
 - kind: Group
   apiGroup: rbac.authorization.k8s.io
   name: system:serviceaccounts
-# 或者与之等价，授权给某名字空间中所有被认证过的用户
+# 或者与此等价，授权给某名字空间中所有被认证过的用户
 - kind: Group
   apiGroup: rbac.authorization.k8s.io
   name: system:authenticated
 ```
 
 <!--
-For more examples of RBAC bindings, see [Role Binding
-Examples](/docs/reference/access-authn-authz/rbac#role-binding-examples).
-For a complete example of authorizing a PodSecurityPolicy, see
-[below](#example).
+For more examples of RBAC bindings, see
+[Role Binding Examples](/docs/reference/access-authn-authz/rbac#role-binding-examples).
+For a complete example of authorizing a PodSecurityPolicy, see [below](#example).
 -->
-参阅[角色绑定示例](/zh/docs/reference/access-authn-authz/rbac#role-binding-examples)
-查看 RBAC 绑定的更多实例。
+参阅[角色绑定示例](/zh-cn/docs/reference/access-authn-authz/rbac#role-binding-examples)查看
+RBAC 绑定的更多实例。
 参阅[下文](#example)，查看对 PodSecurityPolicy 进行授权的完整示例。
 
+<!--
+### Recommended Practice
+
+PodSecurityPolicy is being replaced by a new, simplified `PodSecurity`
+{{< glossary_tooltip text="admission controller" term_id="admission-controller" >}}.
+For more details on this change, see
+[PodSecurityPolicy Deprecation: Past, Present, and Future](/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/).
+Follow these guidelines to simplify migration from PodSecurityPolicy to the
+new admission controller:
+-->
+## 推荐实践   {#recommended-practice}
+
+PodSecurityPolicy 正在被一个新的、简化的 `PodSecurity`
+{{< glossary_tooltip text="准入控制器" term_id="admission-controller" >}}替代。
+有关此变更的更多详细信息，请参阅
+[PodSecurityPolicy Deprecation: Past, Present, and Future](/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/)。
+参照下述指导，简化从 PodSecurityPolicy 迁移到新的准入控制器步骤：
+
+<!--
+1. Limit your PodSecurityPolicies to the policies defined by the
+   [Pod Security Standards](/docs/concepts/security/pod-security-standards):
+
+   - {{< example file="policy/privileged-psp.yaml" >}}Privileged{{< /example >}}
+   - {{< example file="policy/baseline-psp.yaml" >}}Baseline{{< /example >}}
+   - {{< example file="policy/restricted-psp.yaml" >}}Restricted{{< /example >}}
+-->
+1. 将 PodSecurityPolicies 限制为
+   [Pod 安全性标准](/zh-cn/docs/concepts/security/pod-security-standards)所定义的策略：
+
+   - {{< example file="policy/privileged-psp.yaml" >}}Privileged{{< /example >}}
+   - {{< example file="policy/baseline-psp.yaml" >}}Baseline{{< /example >}}
+   - {{< example file="policy/restricted-psp.yaml" >}}Restricted{{< /example >}}
+
+<!--
+2. Only bind PSPs to entire namespaces, by using the `system:serviceaccounts:<namespace>` group
+   (where `<namespace>` is the target namespace). For example:
+
+   ```yaml
+   apiVersion: rbac.authorization.k8s.io/v1
+   # This cluster role binding allows all pods in the "development" namespace to use the baseline PSP.
+   kind: ClusterRoleBinding
+   metadata:
+     name: psp-baseline-namespaces
+   roleRef:
+     kind: ClusterRole
+     name: psp-baseline
+     apiGroup: rbac.authorization.k8s.io
+   subjects:
+   - kind: Group
+     name: system:serviceaccounts:development
+     apiGroup: rbac.authorization.k8s.io
+   - kind: Group
+     name: system:serviceaccounts:canary
+     apiGroup: rbac.authorization.k8s.io
+   ```
+-->
+2. 通过配置 `system:serviceaccounts:<namespace>` 组（`<namespace>` 是目标名字空间），
+   仅将 PSP 绑定到整个命名空间。示例：
+
+    ```yaml
+    apiVersion: rbac.authorization.k8s.io/v1
+    # 此集群角色绑定允许 "development" 名字空间中的所有 Pod 使用 baseline PSP。
+    kind: ClusterRoleBinding
+    metadata:
+      name: psp-baseline-namespaces
+    roleRef:
+      kind: ClusterRole
+      name: psp-baseline
+      apiGroup: rbac.authorization.k8s.io
+    subjects:
+    - kind: Group
+      name: system:serviceaccounts:development
+      apiGroup: rbac.authorization.k8s.io
+    - kind: Group
+      name: system:serviceaccounts:canary
+      apiGroup: rbac.authorization.k8s.io
+    ```
+
 <!--
 ### Troubleshooting
 
-- The [Controller Manager](/docs/reference/command-line-tools-reference/kube-controller-manager/) must be run
-against [the secured API port](/docs/reference/access-authn-authz/controlling-access/),
-and must not have superuser permissions. Otherwise requests would bypass
-authentication and authorization modules, all PodSecurityPolicy objects would be
-allowed, and users would be able to create privileged containers. For more details
-on configuring Controller Manager authorization, see
-[Controller Roles](/docs/reference/access-authn-authz/rbac/#controller-roles).
+- The [Controller Manager](/docs/reference/command-line-tools-reference/kube-controller-manager/)
+  must be run against the secured API port and must not have superuser permissions. See
+  [Controlling Access to the Kubernetes API](/docs/concepts/security/controlling-access)
+  to learn about API server access controls.  
+  If the controller manager connected through the trusted API port (also known as the
+  `localhost` listener), requests would bypass authentication and authorization modules;
+  all PodSecurityPolicy objects would be allowed, and users would be able to create grant
+  themselves the ability to create privileged containers.
+
+  For more details on configuring controller manager authorization, see
+  [Controller Roles](/docs/reference/access-authn-authz/rbac/#controller-roles).
 -->
 ### 故障排查   {#troubleshooting}
 
-- [控制器管理器组件](/zh/docs/reference/command-line-tools-reference/kube-controller-manager/)
-  必须运行在
-  [安全的 API 端口](/zh/docs/concepts/security/controlling-access/)，
-  并且一定不能具有超级用户权限。
-  否则其请求会绕过身份认证和鉴权模块控制，从而导致所有 PodSecurityPolicy 对象
-  都被启用，用户亦能创建特权容器。
-  关于配置控制器管理器鉴权相关的详细信息，可参阅
-  [控制器角色](/zh/docs/reference/access-authn-authz/rbac/#controller-roles)。
+- [控制器管理器组件](/zh-cn/docs/reference/command-line-tools-reference/kube-controller-manager/)
+  必须运行在安全的 API 端口之上，并且不能拥有超级用户的访问权限。
+  参阅[控制 Kubernetes API 的访问](/zh-cn/docs/concepts/security/controlling-access)以了解
+  API 服务器的访问控制。
+
+  如果控制器管理器通过可信的 API 端口连接（也称作 `localhost` 监听组件），
+  其请求会绕过身份认证和鉴权模块控制，从而导致所有 PodSecurityPolicy 对象都被允许，
+  用户亦能授予自身创建特权容器的特权。
+
+  关于配置控制器管理器鉴权的进一步细节，
+  请参阅[控制器角色](/zh-cn/docs/reference/access-authn-authz/rbac/#controller-roles)。
 
 <!--
 ## Policy Order
@@ -310,9 +393,8 @@ controller selects policies according to the following criteria:
 -->
 ## 策略顺序  {#policy-order}
 
-除了限制 Pod 创建与更新，Pod 安全策略也可用来为其所控制的很多字段
-设置默认值。当存在多个策略对象时，Pod 安全策略控制器依据以下条件选择
-策略：
+除了限制 Pod 创建与更新，Pod 安全策略也可用来为其所控制的很多字段设置默认值。
+当存在多个策略对象时，Pod 安全策略控制器依据以下条件选择策略：
 
 <!--
 1. PodSecurityPolicies which allow the pod as-is, without changing defaults or
@@ -320,17 +402,24 @@ controller selects policies according to the following criteria:
    PodSecurityPolicies doesn't matter.
 2. If the pod must be defaulted or mutated, the first PodSecurityPolicy
    (ordered by name) to allow the pod is selected.
+
+When a Pod is validated against a PodSecurityPolicy, [a `kubernetes.io/psp` annotation](/docs/reference/labels-annotations-taints/#kubernetes-io-psp)
+is added to the Pod, with the name of the PodSecurityPolicy as the annotation value.
 -->
 1. 优先考虑允许 Pod 保持原样，不会更改 Pod 字段默认值或其他配置的 PodSecurityPolicy。
    这类非更改性质的 PodSecurityPolicy 对象之间的顺序无关紧要。
 2. 如果必须要为 Pod 设置默认值或者其他配置，（按名称顺序）选择第一个允许
    Pod 操作的 PodSecurityPolicy 对象。
 
+当根据 PodSecurityPolicy 对一个 Pod 进行验证时，会为 Pod 添加
+[一个 `kubernetes.io/psp` 注释](/zh-cn/docs/reference/labels-annotations-taints/#kubernetes-io-psp)会被添加到 Pod 中，
+注解的值为 PodSecurityPolicy 的名称。
+
+{{< note >}}
 <!--
 During update operations (during which mutations to pod specs are disallowed)
 only non-mutating PodSecurityPolicies are used to validate the pod.
 -->
-{{< note >}}
 在更新操作期间（这时不允许更改 Pod 规约），仅使用非更改性质的
 PodSecurityPolicy 来对 Pod 执行验证操作。
 {{< /note >}}
@@ -338,13 +427,12 @@ PodSecurityPolicy 来对 Pod 执行验证操作。
 <!--
 ## Example
 
-_This example assumes you have a running cluster with the PodSecurityPolicy
-admission controller enabled and you have cluster admin privileges._
+This example assumes you have a running cluster with the PodSecurityPolicy
+admission controller enabled and you have cluster admin privileges.
 -->
 ## 示例   {#example}
 
-_本示例假定你已经有一个启动了 PodSecurityPolicy 准入控制器的集群并且
-你拥有集群管理员特权。_
+本示例假定你已经有一个启动了 PodSecurityPolicy 准入控制器的集群并且你拥有集群管理员特权。
 
 <!--
 ### Set up
@@ -354,8 +442,7 @@ this service account to mock a non-admin user.
 -->
 ### 配置   {#set-up}
 
-为运行此示例，配置一个名字空间和一个服务账号。我们将用这个服务账号来
-模拟一个非管理员账号的用户。
+为运行此示例，配置一个名字空间和一个服务账号。我们将用这个服务账号来模拟一个非管理员账号的用户。
 
 ```shell
 kubectl create namespace psp-example
@@ -377,25 +464,27 @@ alias kubectl-user='kubectl --as=system:serviceaccount:psp-example:fake-user -n
 <!--
 ### Create a policy and a pod
 
-Define the example PodSecurityPolicy object in a file. This is a policy that
-simply prevents the creation of privileged pods.
+This is a policy that prevents the creation of privileged pods.
+
 The name of a PodSecurityPolicy object must be a valid
 [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 -->
-### 创建一个策略和一个 Pod
+### 创建一个策略和一个 Pod   {#create-a-policy-and-a-pod}
+
+下面是一个防止创建特权 Pod 的策略。
 
-在一个文件中定义一个示例的 PodSecurityPolicy 对象。
-这里的策略只是用来禁止创建有特权要求的 Pods。
 PodSecurityPolicy 对象的名称必须是合法的
-[DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
 
 {{< codenew file="policy/example-psp.yaml" >}}
 
-<!-- And create it with kubectl: -->
+<!--
+And create it with kubectl:
+-->
 使用 kubectl 执行创建操作：
 
 ```shell
-kubectl-admin create -f example-psp.yaml
+kubectl-admin create -f https://k8s.io/examples/policy/example-psp.yaml
 ```
 
 <!--
@@ -435,6 +524,11 @@ pod's service account nor `fake-user` have permission to use the new policy:
 kubectl-user auth can-i use podsecuritypolicy/example
 ```
 
+<!--
+The output is similar to this:
+-->
+输出类似于：
+
 ```
 no
 ```
@@ -442,13 +536,13 @@ no
 Create the rolebinding to grant `fake-user` the `use` verb on the example
 policy:
 -->
-创建角色绑定，赋予 `fake-user` 使用 `use` 访问示例策略的权限：
+创建角色绑定，赋予 `fake-user` `use`（使用）示例策略的权限：
 
+{{< note >}}
 <!--
 This is not the recommended way! See the [next section](#run-another-pod)
 for the preferred approach.
 -->
-{{< note >}}
 不建议使用这种方法！
 欲了解优先考虑的方法，请参见[下节](#run-another-pod)。
 {{< /note >}}
@@ -506,19 +600,38 @@ spec:
 EOF
 ```
 <!--
-The output is similar to this:
+The output is similar to this
 -->
 输出类似于：
+
 ```
 pod "pause" created
 ```
 
 <!--
-It works as expected! But any attempts to create a privileged pod should still
-be denied:
+It works as expected! You can verify that the pod was validated against the
+newly created PodSecurityPolicy:
 -->
 此次尝试不出所料地成功了！
-不过任何创建特权 Pod 的尝试还是会被拒绝：
+你可以验证 Pod 是根据新创建的 PodSecurityPolicy 验证的。
+
+```shell
+kubectl-user get pod pause -o yaml | grep kubernetes.io/psp
+```
+
+<!--
+The output is similar to this:
+-->
+输出类似于：
+
+```
+kubernetes.io/psp: example
+```
+<!--
+But any attempts to create a privileged pod should still
+be denied:
+-->
+但任何试图创建特权 Pod 的请求仍然会被拒绝。
 
 ```shell
 kubectl-user create -f- <<EOF
@@ -625,7 +738,7 @@ kubectl-admin create rolebinding default:psp:unprivileged \
 
 输出为：
 
-```
+```none
 rolebinding "default:psp:unprivileged" created
 ```
 
@@ -633,8 +746,7 @@ rolebinding "default:psp:unprivileged" created
 Now if you give it a minute to retry, the replicaset-controller should
 eventually succeed in creating the pod:
 -->
-现在如果你给 ReplicaSet 控制器一分钟的时间来重试，该控制器最终将能够
-成功地创建 Pod：
+现在如果你给 ReplicaSet 控制器一分钟的时间来重试，该控制器最终将能够成功地创建 Pod：
 
 ```shell
 kubectl-user get pods --watch
@@ -642,7 +754,7 @@ kubectl-user get pods --watch
 
 输出类似于：
 
-```
+```none
 NAME                    READY     STATUS    RESTARTS   AGE
 pause-7774d79b5-qrgcb   0/1       Pending   0         1s
 pause-7774d79b5-qrgcb   0/1       Pending   0         1s
@@ -680,7 +792,8 @@ kubectl-admin delete psp example
 ```
 
 输出类似于：
-```
+
+```none
 podsecuritypolicy "example" deleted
 ```
 
@@ -692,8 +805,7 @@ pod security policy admission controller:
 -->
 ### 示例策略  {#example-policies}
 
-下面是一个你可以创建的约束性非常弱的策略，其效果等价于没有使用 Pod 安全
-策略准入控制器：
+下面是一个你可以创建的约束性非常弱的策略，其效果等价于没有使用 Pod 安全策略准入控制器：
 
 {{< codenew file="policy/privileged-psp.yaml" >}}
 
@@ -702,16 +814,17 @@ This is an example of a restrictive policy that requires users to run as an
 unprivileged user, blocks possible escalations to root, and requires use of
 several security mechanisms.
 -->
-下面是一个具有约束性的策略，要求用户以非特权账号运行，禁止可能的向 root 权限
-的升级，同时要求使用若干安全机制。
+下面是一个具有约束性的策略，要求用户以非特权账号运行，禁止可能的向 root 权限的升级，
+同时要求使用若干安全机制。
 
 {{< codenew file="policy/restricted-psp.yaml" >}}
 
 <!--
-See [Pod Security Standards](/docs/concepts/security/pod-security-standards/#policy-instantiation) for more examples.
+See [Pod Security Standards](/docs/concepts/security/pod-security-standards/#policy-instantiation)
+for more examples.
 -->
 更多的示例可参考
-[Pod 安全标准](/zh/docs/concepts/security/pod-security-standards/#policy-instantiation)。
+[Pod 安全标准](/zh-cn/docs/concepts/security/pod-security-standards/#policy-instantiation)。
 
 <!--
 ## Policy Reference
@@ -766,7 +879,7 @@ and `max`(inclusive). Defaults to no allowed host ports.
 此类授权将允许 Pod 访问本地回路（loopback）设备、在本地主机（localhost）
 上监听的服务、还可能用来监听同一节点上其他 Pod 的网络活动。
 
-**HostPorts** -提供可以在宿主网络名字空间中可使用的端口范围列表。 
+**HostPorts** - 提供可以在宿主网络名字空间中可使用的端口范围列表。
 该属性定义为一组 `HostPortRange` 对象的列表，每个对象中包含
 `min`（含）与 `max`（含）值的设置。
 默认不允许访问宿主端口。
@@ -777,34 +890,33 @@ and `max`(inclusive). Defaults to no allowed host ports.
 **Volumes** - Provides a list of allowed volume types. The allowable values
 correspond to the volume sources that are defined when creating a volume. For
 the complete list of volume types, see [Types of
-Volumes](/docs/concepts/storage/volumes/#types-of-volumes). Additionally, `*`
-may be used to allow all volume types.
+Volumes](/docs/concepts/storage/volumes/#types-of-volumes). Additionally,
+`*` may be used to allow all volume types.
 
 The **recommended minimum set** of allowed volumes for new PSPs are:
 -->
 ### 卷和文件系统   {#volumes-and-file-systems}
 
-**Volumes** - 提供一组被允许的卷类型列表。可被允许的值对应于创建卷时可以
-设置的卷来源。卷类型的完整列表可参见
-[卷类型](/zh/docs/concepts/storage/volumes/#types-of-volumes)。
-此外， `*` 可以用来允许所有卷类型。
+**Volumes** - 提供一组被允许的卷类型列表。可被允许的值对应于创建卷时可以设置的卷来源。
+卷类型的完整列表可参见[卷类型](/zh-cn/docs/concepts/storage/volumes/#types-of-volumes)。
+此外，`*` 可以用来允许所有卷类型。
 
-对于新的 Pod 安全策略设置而言，建议设置的卷类型的*最小列表*包含：
+对于新的 Pod 安全策略设置而言，建议设置的卷类型的**最小列表**包含：
 
-- configMap
-- downwardAPI
-- emptyDir
-- persistentVolumeClaim
-- secret
-- projected
+- `configMap`
+- `downwardAPI`
+- `emptyDir`
+- `persistentVolumeClaim`
+- `secret`
+- `projected`
 
+{{< warning >}}
 <!--
 PodSecurityPolicy does not limit the types of `PersistentVolume` objects that
 may be referenced by a `PersistentVolumeClaim`, and hostPath type
 `PersistentVolumes` do not support read-only access mode. Only trusted users
 should be granted permission to create `PersistentVolume` objects.
 -->
-{{< warning >}}
 PodSecurityPolicy 并不限制可以被 `PersistentVolumeClaim` 所引用的
 `PersistentVolume` 对象的类型。
 此外 `hostPath` 类型的 `PersistentVolume` 不支持只读访问模式。
@@ -815,20 +927,20 @@ PodSecurityPolicy 并不限制可以被 `PersistentVolumeClaim` 所引用的
 **FSGroup** - Controls the supplemental group applied to some volumes.
 
 - *MustRunAs* - Requires at least one `range` to be specified. Uses the
-minimum value of the first range as the default. Validates against all ranges.
+  minimum value of the first range as the default. Validates against all ranges.
 - *MayRunAs* - Requires at least one `range` to be specified. Allows
-`FSGroups` to be left unset without providing a default. Validates against
-all ranges if `FSGroups` is set.
+  `FSGroups` to be left unset without providing a default. Validates against
+  all ranges if `FSGroups` is set.
 - *RunAsAny* - No default provided. Allows any `fsGroup` ID to be specified.
 -->
 **FSGroup** - 控制应用到某些卷上的附加用户组。
 
-  - *MustRunAs* - 要求至少指定一个 `range`。
-    使用范围中的最小值作为默认值。所有 range 值都会被用来执行验证。
-  - *MayRunAs* - 要求至少指定一个 `range`。
-    允许不设置 `FSGroups`，且无默认值。
-    如果 `FSGroup` 被设置，则所有 range 值都会被用来执行验证检查。
-  - *RunAsAny* - 不提供默认值。允许设置任意 `fsGroup` ID 值。
+- **MustRunAs** - 要求至少指定一个 `range`。
+  使用范围中的最小值作为默认值。所有 range 值都会被用来执行验证。
+- **MayRunAs** - 要求至少指定一个 `range`。
+  允许不设置 `FSGroups`，且无默认值。
+  如果 `FSGroup` 被设置，则所有 range 值都会被用来执行验证检查。
+- **RunAsAny** - 不提供默认值。允许设置任意 `fsGroup` ID 值。
 
 <!--
 **AllowedHostPaths** - This specifies a list of host paths that are allowed
@@ -838,8 +950,8 @@ field, which allows hostPath volumes to mount a path that begins with an
 allowed prefix, and a `readOnly` field indicating it must be mounted read-only.
 For example:
 -->
-**AllowedHostPaths** - 设置一组宿主文件目录，这些目录项可以在 `hostPath` 卷中
-使用。列表为空意味着对所使用的宿主目录没有限制。
+**AllowedHostPaths** - 设置一组宿主文件目录，这些目录项可以在 `hostPath` 卷中使用。
+列表为空意味着对所使用的宿主目录没有限制。
 此选项定义包含一个对象列表，表中对象包含 `pathPrefix` 字段，用来表示允许
 `hostPath` 卷挂载以所指定前缀开头的路径。
 对象中还包含一个 `readOnly` 字段，用来表示对应的卷必须以只读方式挂载。
@@ -864,28 +976,32 @@ allowedHostPaths:
     readOnly: true # 仅允许只读模式挂载
 ```
 
+{{< warning >}}
 <!--
 There are many ways a container with unrestricted access to the host
 filesystem can escalate privileges, including reading data from other
 containers, and abusing the credentials of system services, such as Kubelet.
+-->
+容器如果对宿主文件系统拥有不受限制的访问权限，就可以有很多种方式提升自己的特权，
+包括读取其他容器中的数据、滥用系统服务（如 `kubelet`）的凭据信息等。
 
+<!--
 Writeable hostPath directory volumes allow containers to write
 to the filesystem in ways that let them traverse the host filesystem outside the `pathPrefix`.
 `readOnly: true`, available in Kubernetes 1.11+, must be used on **all** `allowedHostPaths`
 to effectively limit access to the specified `pathPrefix`.
 -->
-
-{{< warning >}}
-容器如果对宿主文件系统拥有不受限制的访问权限，就可以有很多种方式提升自己的特权，
-包括读取其他容器中的数据、滥用系统服务（如 `kubelet`）的凭据信息等。
-
 由可写入的目录所构造的 `hostPath` 卷能够允许容器写入数据到宿主文件系统，
 并且在写入时避开 `pathPrefix` 所设置的目录限制。
 `readOnly: true` 这一设置在 Kubernetes 1.11 版本之后可用。
-必须针对 `allowedHostPaths` 中的 *所有* 条目设置此属性才能有效地限制容器
-只能访问 `pathPrefix` 所指定的目录。
+必须针对 `allowedHostPaths` 中的 *所有* 条目设置此属性才能有效地限制容器只能访问
+`pathPrefix` 所指定的目录。
 {{< /warning >}}
 
+<!--
+**ReadOnlyRootFilesystem** - Requires that containers must run with a read-only
+root filesystem (i.e. no writable layer).
+-->
 **ReadOnlyRootFilesystem** - 要求容器必须以只读方式挂载根文件系统来运行
 （即不允许存在可写入层）。
 
@@ -928,7 +1044,7 @@ kind: PodSecurityPolicy
 metadata:
   name: allow-flex-volumes
 spec:
-  # spec d的其他字段
+  # spec 的其他字段
   volumes:
     - flexVolume
   allowedFlexVolumes:
@@ -942,67 +1058,65 @@ spec:
 **RunAsUser** - Controls which user ID the containers are run with.
 
 - *MustRunAs* - Requires at least one `range` to be specified. Uses the
-minimum value of the first range as the default. Validates against all ranges.
+  minimum value of the first range as the default. Validates against all ranges.
 - *MustRunAsNonRoot* - Requires that the pod be submitted with a non-zero
-`runAsUser` or have the `USER` directive defined (using a numeric UID) in the
-image. Pods which have specified neither `runAsNonRoot` nor `runAsUser` settings
-will be mutated to set `runAsNonRoot=true`, thus requiring a defined non-zero 
-numeric `USER` directive in the container. No default provided. Setting 
-`allowPrivilegeEscalation=false` is strongly recommended with this strategy.
+  `runAsUser` or have the `USER` directive defined (using a numeric UID) in the
+  image. Pods which have specified neither `runAsNonRoot` nor `runAsUser` settings
+  will be mutated to set `runAsNonRoot=true`, thus requiring a defined non-zero 
+  numeric `USER` directive in the container. No default provided. Setting 
+  `allowPrivilegeEscalation=false` is strongly recommended with this strategy.
 - *RunAsAny* - No default provided. Allows any `runAsUser` to be specified.
 -->
 ### 用户和组    {#users-and-groups}
 
 **RunAsUser** - 控制使用哪个用户 ID 来运行容器。
 
-  - *MustRunAs* - 必须配置一个 `range`。使用该范围内的第一个值作为默认值。
-    所有 range 值都被用于验证检查。
-- *MustRunAsNonRoot* - 要求提交的 Pod 具有非零 `runAsUser` 值，或在镜像中
+- **MustRunAs** - 必须至少设置一个 `range`。使用该范围内的第一个值作为默认值。
+  所有范围值都会被验证检查。
+
+- **MustRunAsNonRoot** - 要求提交的 Pod 具有非零 `runAsUser` 值，或在镜像中
   （使用 UID 数值）定义了 `USER` 环境变量。
-  如果 Pod 既没有设置 `runAsNonRoot`，也没有设置 `runAsUser`，则该 Pod 会被
-  修改以设置 `runAsNonRoot=true`，从而要求容器通过 `USER` 指令给出非零的数值形式
-  的用户 ID。此配置没有默认值。采用此配置时，强烈建议设置
-   `allowPrivilegeEscalation=false`。
-- *RunAsAny* - 没有提供默认值。允许指定任何 `runAsUser` 配置。
+  如果 Pod 既没有设置 `runAsNonRoot`，也没有设置 `runAsUser`，则该 Pod
+  会被修改以设置 `runAsNonRoot=true`，从而要求容器通过 `USER` 指令给出非零的数值形式的用户 ID。
+  此配置没有默认值。采用此配置时，强烈建议设置 `allowPrivilegeEscalation=false`。
+- **RunAsAny** - 没有提供默认值。允许指定任何 `runAsUser` 配置。
 
 <!--
 **RunAsGroup** - Controls which primary group ID the containers are run with.
 
-  - *MustRunAs* - Requires at least one `range` to be specified. Uses the 
-    minimum value of the first range as the default.
-    Validates against all ranges.
-  - *MayRunAs* - Does not require that RunAsGroup be specified. However, when RunAsGroup
-is specified, they have to fall in the defined range.
-  - *RunAsAny* - No default provided. Allows any `runAsGroup` to be specified.
+- *MustRunAs* - Requires at least one `range` to be specified. Uses the
+  minimum value of the first range as the default. Validates against all ranges.
+- *MayRunAs* - Does not require that RunAsGroup be specified. However, when RunAsGroup
+  is specified, they have to fall in the defined range.
+- *RunAsAny* - No default provided. Allows any `runAsGroup` to be specified.
 -->
 **RunAsGroup** - 控制运行容器时使用的主用户组 ID。
 
-  - *MustRunAs* - 要求至少指定一个 `range` 值。第一个 range
-    中的最小值作为默认值。所有 range 值都被用来执行验证检查。
-  - *MayRunAs* - 不要求设置 `RunAsGroup`。
-    不过，如果指定了 `RunAsGroup` 被设置，所设置值必须处于所定义的范围内。
-  - *RunAsAny* - 未指定默认值。允许 `runAsGroup` 设置任何值。
+- **MustRunAs** - 要求至少指定一个 `range` 值。第一个范围中的最小值作为默认值。
+  所有范围值都被用来执行验证检查。
+- **MayRunAs** - 不要求设置 `RunAsGroup`。
+  不过，如果指定了 `RunAsGroup` 被设置，所设置值必须处于所定义的范围内。
+- **RunAsAny** - 未指定默认值。允许 `runAsGroup` 设置任何值。
 
 <!--
 **SupplementalGroups** - Controls which group IDs containers add.
 
-  - *MustRunAs* - Requires at least one `range` to be specified. Uses the
-minimum value of the first range as the default. Validates against all ranges.
-  - *MayRunAs* - Requires at least one `range` to be specified. Allows
-`supplementalGroups` to be left unset without providing a default.
-Validates against all ranges if `supplementalGroups` is set.
-  - *RunAsAny* - No default provided. Allows any `supplementalGroups` to be
-specified.
+- *MustRunAs* - Requires at least one `range` to be specified. Uses the
+  minimum value of the first range as the default. Validates against all ranges.
+- *MayRunAs* - Requires at least one `range` to be specified. Allows
+  `supplementalGroups` to be left unset without providing a default.
+  Validates against all ranges if `supplementalGroups` is set.
+- *RunAsAny* - No default provided. Allows any `supplementalGroups` to be
+  specified.
 -->
 **SupplementalGroups** - 控制容器可以添加的组 ID。
 
-  - *MustRunAs* - 要求至少指定一个 `range` 值。
-    第一个 range 中的最小值用作默认值。
-    所有 range 值都被用来执行验证检查。
-  - *MayRunAs* - 要求至少指定一个 `range` 值。
-    允许不指定 `supplementalGroups` 且不设置默认值。
-    如果 `supplementalGroups` 被设置，则所有 range 值都被用来执行验证检查。
-  - *RunAsAny* - 未指定默认值。允许为 `supplementalGroups` 设置任何值。
+- **MustRunAs** - 要求至少指定一个 `range` 值。第一个范围中的最小值用作默认值。
+  所有范围值都被用来执行验证检查。
+- **MayRunAs** - 要求至少指定一个 `range` 值。
+  允许不指定 `supplementalGroups` 且不设置默认值。
+  如果 `supplementalGroups` 被设置，则所有 range 值都被用来执行验证检查。
+- **RunAsAny** - 未指定默认值。允许为 `supplementalGroups` 设置任何值。
 
 <!--
 ### Privilege Escalation
@@ -1017,11 +1131,10 @@ required to effectively enforce `MustRunAsNonRoot`.
 -->
 ### 特权提升   {#privilege-escalation}
 
-这一组选项控制容器的`allowPrivilegeEscalation` 属性。该属性直接决定是否为
-容器进程设置
+这一组选项控制容器的 `allowPrivilegeEscalation` 属性。该属性直接决定是否为容器进程设置
 [`no_new_privs`](https://www.kernel.org/doc/Documentation/prctl/no_new_privs.txt)
-参数。此参数会禁止 `setuid` 属性的可执行文件更改有效用户 ID（EUID），并且
-禁止启用额外权能的文件。例如，`no_new_privs` 会禁止使用 `ping` 工具。
+参数。此参数会禁止 `setuid` 属性的可执行文件更改有效用户 ID（EUID），
+并且禁止启用额外权能的文件。例如，`no_new_privs` 会禁止使用 `ping` 工具。
 如果想有效地实施 `MustRunAsNonRoot` 控制，需要配置这一选项。
 
 <!--
@@ -1031,9 +1144,9 @@ defaults to allowed so as to not break setuid binaries. Setting it to `false`
 ensures that no child process of a container can gain more privileges than its parent.
 -->
 **AllowPrivilegeEscalation** - 决定是否用户可以将容器的安全上下文设置为
-`allowPrivilegeEscalation=true`。默认设置下，这样做是允许的，目的是避免
-造成现有的 `setuid` 应用无法运行。将此选项设置为 `false` 可以确保容器的所有
-子进程都无法获得比父进程更多的特权。
+`allowPrivilegeEscalation=true`。默认设置下，这样做是允许的，
+目的是避免造成现有的 `setuid` 应用无法运行。将此选项设置为 `false`
+可以确保容器的所有子进程都无法获得比父进程更多的特权。
 
 <!--
 **DefaultAllowPrivilegeEscalation** - Sets the default for the
@@ -1042,10 +1155,10 @@ privilege escalation so as to not break setuid binaries. If that behavior is not
 desired, this field can be used to default to disallow, while still permitting
 pods to request `allowPrivilegeEscalation` explicitly.
 -->
-**DefaultAllowPrivilegeEscalation** - 为 `allowPrivilegeEscalation` 选项设置
-默认值。不设置此选项时的默认行为是允许特权提升，以便运行 setuid 程序。
-如果不希望运行 setuid 程序，可以使用此字段将选项的默认值设置为禁止，同时
-仍然允许 Pod 显式地请求 `allowPrivilegeEscalation`。 
+**DefaultAllowPrivilegeEscalation** - 为 `allowPrivilegeEscalation` 选项设置默认值。
+不设置此选项时的默认行为是允许特权提升，以便运行 setuid 程序。
+如果不希望运行 setuid 程序，可以使用此字段将选项的默认值设置为禁止，
+同时仍然允许 Pod 显式地请求 `allowPrivilegeEscalation`。
 
 <!--
 ### Capabilities
@@ -1057,17 +1170,17 @@ the PodSecurityPolicy. For more details on Linux capabilities, see
 [capabilities(7)](http://man7.org/linux/man-pages/man7/capabilities.7.html).
 
 The following fields take a list of capabilities, specified as the capability
-name in ALL_CAPS without the `CAP\_` prefix.
+name in ALL_CAPS without the `CAP_` prefix.
 -->
 ### 权能字    {#capabilities}
 
 Linux 权能字（Capabilities）将传统上与超级用户相关联的特权作了细粒度的分解。
-其中某些权能字可以用来提升特权，打破容器边界，可以通过 PodSecurityPolicy
-来限制。关于 Linux 权能字的更多细节，可参阅
+其中某些权能字可以用来提升特权，打破容器边界，可以通过 PodSecurityPolicy 来限制。
+关于 Linux 权能字的更多细节，可参阅
 [capabilities(7)](http://man7.org/linux/man-pages/man7/capabilities.7.html)。
 
-下列字段都可以配置为权能字的列表。表中的每一项都是 `ALL_CAPS` 中的一个权能字
-名称，只是需要去掉 `CAP_` 前缀。
+下列字段都可以配置为权能字的列表。表中的每一项都是 `ALL_CAPS` 中的一个权能字名称，
+只是需要去掉 `CAP_` 前缀。
 
 <!--
 **AllowedCapabilities** - Provides a list of capabilities that are allowed to be added
@@ -1092,14 +1205,13 @@ added. Capabilities listed in `RequiredDropCapabilities` must not be included in
 
 <!--
 **DefaultAddCapabilities** - The capabilities which are added to containers by
-default, in addition to the runtime defaults. See the [Docker
-documentation](https://docs.docker.com/engine/reference/run/#runtime-privilege-and-linux-capabilities)
-for the default list of capabilities when using the Docker runtime.
+default, in addition to the runtime defaults. See the
+documentation for your container runtime for information on working with Linux capabilities.
 -->
 **DefaultAddCapabilities** - 默认添加到容器的权能字集合。
 这一集合是作为容器运行时所设值的补充。
-关于使用 Docker 容器运行引擎时默认的权能字列表，可参阅
-[Docker 文档](https://docs.docker.com/engine/reference/run/#runtime-privilege-and-linux-capabilities)。
+关于使用 Docker 容器运行引擎时默认的权能字列表，
+可参阅你的容器运行时的文档来了解使用 Linux 权能字的信息。
 
 <!--
 ### SELinux
@@ -1111,9 +1223,9 @@ specified.
 -->
 ### SELinux
 
-- *MustRunAs* - 要求必须配置 `seLinuxOptions`。默认使用 `seLinuxOptions`。
+- **MustRunAs** - 要求必须配置 `seLinuxOptions`。默认使用 `seLinuxOptions`。
   针对 `seLinuxOptions` 所给值执行验证检查。
-- *RunAsAny* - 没有提供默认值。允许任意指定的 `seLinuxOptions` 选项。
+- **RunAsAny** - 没有提供默认值。允许任意指定的 `seLinuxOptions` 选项。
 
 <!--
 ### AllowedProcMountTypes
@@ -1136,32 +1248,34 @@ denoted as the string `Unmasked`.
 `allowedProcMountTypes` 是一组可以允许的 proc 挂载类型列表。
 空表或者 nil 值表示只能使用 `DefaultProcMountType`。
 
-`DefaultProcMount` 使用容器运行时的默认值设置来决定 `/proc` 的只读挂载模式
-和路径屏蔽。大多数容器运行时都会屏蔽 `/proc` 下面的某些路径以避免特殊设备或
-信息被不小心暴露给容器。这一配置使所有 `Default` 字符串值来表示。
+`DefaultProcMount` 使用容器运行时的默认值设置来决定 `/proc` 的只读挂载模式和路径屏蔽。
+大多数容器运行时都会屏蔽 `/proc` 下面的某些路径以避免特殊设备或信息被不小心暴露给容器。
+这一配置使所有 `Default` 字符串值来表示。
 
-此外唯一的ProcMountType 是 `UnmaskedProcMount`，意味着即将绕过容器运行时的
-路径屏蔽行为，确保新创建的 `/proc` 不会被容器修改。此配置用字符串
-`Unmasked` 来表示。
+此外唯一的ProcMountType 是 `UnmaskedProcMount`，意味着即将绕过容器运行时的路径屏蔽行为，
+确保新创建的 `/proc` 不会被容器修改。此配置用字符串 `Unmasked` 来表示。
 
 <!--
 ### AppArmor
 
-Controlled via annotations on the PodSecurityPolicy. Refer to the [AppArmor
-documentation](/docs/tutorials/clusters/apparmor/#podsecuritypolicy-annotations).
+Controlled via annotations on the PodSecurityPolicy. Refer to the
+[AppArmor documentation](/docs/tutorials/security/apparmor/#podsecuritypolicy-annotations).
 -->
 ### AppArmor
 
 通过 PodSecurityPolicy 上的注解来控制。
 详情请参阅
-[AppArmor 文档](/zh/docs/tutorials/clusters/apparmor/#podsecuritypolicy-annotations)。
-
+[AppArmor 文档](/zh-cn/docs/tutorials/security/apparmor/#podsecuritypolicy-annotations)。
 
 <!--
 ### Seccomp
 
-The use of seccomp profiles in pods can be controlled via annotations on the
-PodSecurityPolicy. Seccomp is an alpha feature in Kubernetes.
+As of Kubernetes v1.19, you can use the `seccompProfile` field in the
+`securityContext` of Pods or containers to
+[control use of seccomp profiles](/docs/tutorials/security/seccomp/).
+In prior versions, seccomp was controlled by adding annotations to a Pod. The
+same PodSecurityPolicies can be used with either version to enforce how these
+fields or annotations are applied.
 
 **seccomp.security.alpha.kubernetes.io/defaultProfileName** - Annotation that
 specifies the default seccomp profile to apply to containers. Possible values
@@ -1169,30 +1283,44 @@ are:
 -->
 ### Seccomp
 
-Pod 对 seccomp 模版的使用可以通过在 PodSecurityPolicy 上设置注解来控制。
-Seccomp 是 Kubernetes 的一项 alpha 阶段特性。
+从 Kubernetes v1.19 开始，你可以使用 Pod 或容器的 `securityContext` 中的 `seccompProfile`
+字段来[控制 seccomp 配置的使用](/zh-cn/docs/tutorials/security/seccomp/)。
+在更早的版本中，seccomp 是通过为 Pod 添加注解来控制的。
+相同的 PodSecurityPolicy 可以用于不同版本，进而控制如何应用对应的字段或注解。
 
-**seccomp.security.alpha.kubernetes.io/defaultProfileName** - 注解用来
-指定为容器配置默认的 seccomp 模版。可选值为：
+**seccomp.security.alpha.kubernetes.io/defaultProfileName** -
+注解用来指定为容器配置默认的 seccomp 模板。可选值为：
 
 <!--
 - `unconfined` - Seccomp is not applied to the container processes (this is the
   default in Kubernetes), if no alternative is provided.
 - `runtime/default` - The default container runtime profile is used.
-- `docker/default` - The Docker default seccomp profile is used. Deprecated as of
-  Kubernetes 1.11. Use `runtime/default` instead.
+- `docker/default` - The Docker default seccomp profile is used. Deprecated as
+  of Kubernetes 1.11. Use `runtime/default` instead.
 - `localhost/<path>` - Specify a profile as a file on the node located at
   `<seccomp_root>/<path>`, where `<seccomp_root>` is defined via the
-  `-seccomp-profile-root` flag on the Kubelet.
+  `--seccomp-profile-root` flag on the Kubelet. If the `--seccomp-profile-root`
+  flag is not defined, the default path will be used, which is
+  `<root-dir>/seccomp` where `<root-dir>` is specified by the `--root-dir` flag.
 -->
 - `unconfined` - 如果没有指定其他替代方案，Seccomp 不会被应用到容器进程上
   （Kubernets 中的默认设置）。
-- `runtime/default` - 使用默认的容器运行时模版。
-- `docker/default` - 使用 Docker 的默认 seccomp 模版。自 1.11 版本废弃。
+- `runtime/default` - 使用默认的容器运行时模板。
+- `docker/default` - 使用 Docker 的默认 seccomp 模板。自 1.11 版本废弃。
   应改为使用 `runtime/default`。
-- `localhost/<路径名>` - 指定节点上路径 `<seccomp_root>/<路径名>` 下的一个
-  文件作为其模版。其中 `<seccomp_root>` 是通过 `kubelet` 的标志
-  `--seccomp-profile-root` 来指定的。
+- `localhost/<路径名>` - 指定节点上路径 `<seccomp_root>/<路径名>` 下的一个文件作为其模板。
+  其中 `<seccomp_root>` 是通过 `kubelet` 的标志 `--seccomp-profile-root` 来指定的。
+  如果未定义 `--seccomp-profile-root` 标志，则使用默认的路径 `<root-dir>/seccomp`，
+  其中 `<root-dir>` 是通过 `--root-dir` 标志来设置的。
+
+  {{< note >}}
+  <!--
+  The `--seccomp-profile-root` flag is deprecated since Kubernetes
+  v1.19. Users are encouraged to use the default path.
+  -->
+  从 Kubernetes v1.19 开始，`--seccomp-profile-root` 标志已被启用。
+  用户应尝试使用默认路径。
+  {{< /note >}}
 
 <!--
 **seccomp.security.alpha.kubernetes.io/allowedProfileNames** - Annotation that
@@ -1203,8 +1331,8 @@ default cannot be changed.
 -->
 **seccomp.security.alpha.kubernetes.io/allowedProfileNames** - 指定可以为
 Pod seccomp 注解配置的值的注解。取值为一个可用值的列表。
-表中每项可以是上述各值之一，还可以是 `*`，用来表示允许所有的模版。
-如果没有设置此注解，意味着默认的 seccomp 模版是不可更改的。
+表中每项可以是上述各值之一，还可以是 `*`，用来表示允许所有的模板。
+如果没有设置此注解，意味着默认的 seccomp 模板是不可更改的。
 
 <!--
 ### Sysctl
@@ -1216,8 +1344,11 @@ By default, all safe sysctls are allowed.
 默认情况下，所有的安全的 sysctl 都是被允许的。
 
 <!--
-- `forbiddenSysctls` - excludes specific sysctls. You can forbid a combination of safe and unsafe sysctls in the list. To forbid setting any sysctls, use `*` on its own.
-- `allowedUnsafeSysctls` - allows specific sysctls that had been disallowed by the default list, so long as these are not listed in `forbiddenSysctls`.
+- `forbiddenSysctls` - excludes specific sysctls. You can forbid a combination
+  of safe and unsafe sysctls in the list. To forbid setting any sysctls, use
+  `*` on its own.
+- `allowedUnsafeSysctls` - allows specific sysctls that had been disallowed by
+  the default list, so long as these are not listed in `forbiddenSysctls`.
 -->
 - `forbiddenSysctls` - 用来排除某些特定的 sysctl。
   你可以在此列表中禁止一些安全的或者不安全的 sysctl。
@@ -1225,15 +1356,28 @@ By default, all safe sysctls are allowed.
 - `allowedUnsafeSysctls` - 用来启用那些被默认列表所禁用的 sysctl，
   前提是所启用的 sysctl 没有被列在 `forbiddenSysctls` 中。
 
-参阅 [Sysctl 文档](/zh/docs/tasks/administer-cluster/sysctl-cluster/#podsecuritypolicy)。
+<!--
+Refer to the [Sysctl documentation](/docs/tasks/administer-cluster/sysctl-cluster/#podsecuritypolicy).
+-->
+参阅 [Sysctl 文档](/zh-cn/docs/tasks/administer-cluster/sysctl-cluster/#podsecuritypolicy)。
 
 ## {{% heading "whatsnext" %}}
 
 <!--
-- See [Pod Security Standards](/docs/concepts/security/pod-security-standards/) for policy recommendations.
+- See [PodSecurityPolicy Deprecation: Past, Present, and Future](/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/)
+  to learn about the future of pod security policy.
 
-- Refer to [Pod Security Policy Reference](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritypolicy-v1beta1-policy) for the api details.
+- See [Pod Security Standards](/docs/concepts/security/pod-security-standards/)
+  for policy recommendations.
+
+- Refer to [PodSecurityPolicy reference](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritypolicy-v1beta1-policy)
+  for the API details.
 -->
-- 参阅[Pod 安全标准](/zh/docs/concepts/security/pod-security-standards/)
+- 参阅 [PodSecurityPolicy Deprecation: Past, Present, and
+  Future](/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/)，
+  了解 Pod 安全策略的未来。
+
+- 参阅 [Pod 安全标准](/zh-cn/docs/concepts/security/pod-security-standards/)，
   了解策略建议。
-- 阅读 [Pod 安全策略参考](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritypolicy-v1beta1-policy)了解 API 细节。
+- 阅读 [PodSecurityPolicy 参考](/zh-cn/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritypolicy-v1beta1-policy)，
+  了解 API 细节。
diff --git a/content/zh-cn/docs/concepts/security/pod-security-standards.md b/content/zh-cn/docs/concepts/security/pod-security-standards.md
new file mode 100644
index 0000000000..22a5f7edcd
--- /dev/null
+++ b/content/zh-cn/docs/concepts/security/pod-security-standards.md
@@ -0,0 +1,667 @@
+---
+title: Pod 安全性标准
+description: >
+  详细了解 Pod 安全性标准（Pod Security Standards）中所定义的不同策略级别。
+content_type: concept
+weight: 10
+---
+<!--
+reviewers:
+- tallclair
+title: Pod Security Standards
+description: >
+  A detailed look at the different policy levels defined in the Pod Security Standards.
+content_type: concept
+weight: 10
+-->
+
+<!-- overview -->
+
+<!--
+The Pod Security Standards define three different _policies_ to broadly cover the security
+spectrum. These policies are _cumulative_ and range from highly-permissive to highly-restrictive.
+This guide outlines the requirements of each policy.
+-->
+Pod 安全性标准定义了三种不同的 **策略（Policy）**，以广泛覆盖安全应用场景。
+这些策略是 **叠加式的（Cumulative）**，安全级别从高度宽松至高度受限。
+本指南概述了每个策略的要求。
+
+<!--
+| Profile | Description |
+| ------ | ----------- |
+| <strong style="white-space: nowrap">Privileged</strong> | Unrestricted policy, providing the widest possible level of permissions. This policy allows for known privilege escalations. |
+| <strong style="white-space: nowrap">Baseline</strong> | Minimally restrictive policy which prevents known privilege escalations. Allows the default (minimally specified) Pod configuration. |
+| <strong style="white-space: nowrap">Restricted</strong> | Heavily restricted policy, following current Pod hardening best practices. |
+-->
+| Profile | 描述 |
+| ------ | ----------- |
+| <strong style="white-space: nowrap">Privileged</strong> | 不受限制的策略，提供最大可能范围的权限许可。此策略允许已知的特权提升。 |
+| <strong style="white-space: nowrap">Baseline</strong> | 限制性最弱的策略，禁止已知的策略提升。允许使用默认的（规定最少）Pod 配置。 |
+| <strong style="white-space: nowrap">Restricted</strong> | 限制性非常强的策略，遵循当前的保护 Pod 的最佳实践。 |
+
+<!-- body -->
+
+<!--
+## Profile Details
+-->
+## Profile 细节    {#profile-details}
+
+### Privileged
+
+<!--
+**The _Privileged_ policy is purposely-open, and entirely unrestricted.** This type of policy is
+typically aimed at system- and infrastructure-level workloads managed by privileged, trusted users.
+
+The Privileged policy is defined by an absence of restrictions. Allow-by-default
+mechanisms (such as gatekeeper) may be Privileged by default. In contrast, for a deny-by-default mechanism (such as Pod
+Security Policy) the Privileged policy should disable all restrictions.
+-->
+**_Privileged_ 策略是有目的地开放且完全无限制的策略。**
+此类策略通常针对由特权较高、受信任的用户所管理的系统级或基础设施级负载。
+
+Privileged 策略定义中限制较少。默认允许的（Allow-by-default）实施机制（例如 gatekeeper）
+可以缺省设置为 Privileged。
+与此不同，对于默认拒绝（Deny-by-default）的实施机制（如 Pod 安全策略）而言，
+Privileged 策略应该禁止所有限制。
+
+### Baseline
+
+<!--
+**The _Baseline_ policy is aimed at ease of adoption for common containerized workloads while
+preventing known privilege escalations.** This policy is targeted at application operators and
+developers of non-critical applications. The following listed controls should be
+enforced/disallowed:
+-->
+**_Baseline_ 策略的目标是便于常见的容器化应用采用，同时禁止已知的特权提升。**
+此策略针对的是应用运维人员和非关键性应用的开发人员。
+下面列举的控制应该被实施（禁止）：
+
+{{< note >}}
+<!--
+In this table, wildcards (`*`) indicate all elements in a list. For example,
+`spec.containers[*].securityContext` refers to the Security Context object for _all defined
+containers_. If any of the listed containers fails to meet the requirements, the entire pod will
+fail validation.
+-->
+在下述表格中，通配符（`*`）意味着一个列表中的所有元素。
+例如 `spec.containers[*].securityContext` 表示 _所定义的所有容器_ 的安全性上下文对象。
+如果所列出的任一容器不能满足要求，整个 Pod 将无法通过校验。
+{{< /note >}}
+
+<table>
+	<!-- caption style="display:none">Baseline policy specification</caption -->
+	<caption style="display:none">Baseline 策略规范</caption>
+	<tbody>
+		<tr>
+			<td>控制（Control）</td>
+			<td>策略（Policy）</td>
+		</tr>
+		<tr>
+			<td style="white-space: nowrap">HostProcess</td>
+			<td>
+				<p><!--Windows pods offer the ability to run <a href="/docs/tasks/configure-pod-container/create-hostprocess-pod">HostProcess containers</a> which enables privileged access to the Windows node. Privileged access to the host is disallowed in the baseline policy. -->
+                                Windows Pod 提供了运行 <a href="/zh-cn/docs/tasks/configure-pod-container/create-hostprocess-pod">HostProcess 容器</a> 的能力，这使得对 Windows 节点的特权访问成为可能。Baseline 策略中禁止对宿主的特权访问。{{< feature-state for_k8s_version="v1.23" state="beta" >}}
+                                </p>
+				<p><strong><!--Restricted Fields-->限制的字段</strong></p>
+				<ul>
+					<li><code>spec.securityContext.windowsOptions.hostProcess</code></li>
+					<li><code>spec.containers[*].securityContext.windowsOptions.hostProcess</code></li>
+					<li><code>spec.initContainers[*].securityContext.windowsOptions.hostProcess</code></li>
+					<li><code>spec.ephemeralContainers[*].securityContext.windowsOptions.hostProcess</code></li>
+				</ul>
+				<p><strong><!--Allowed Values-->准许的取值</strong></p>
+				<ul>
+					<li><!--Undefined/nil-->未定义、nil</li>
+					<li><code>false</code></li>
+				</ul>
+			</td>
+		</tr>
+		<tr>
+			<td style="white-space: nowrap"><!--Host Namespaces-->宿主名字空间</td>
+			<td>
+				<p><!--Sharing the host namespaces must be disallowed.-->必须禁止共享宿主上的名字空间。</p>
+				<p><strong><!--Restricted Fields-->限制的字段</strong></p>
+				<ul>
+					<li><code>spec.hostNetwork</code></li>
+					<li><code>spec.hostPID</code></li>
+					<li><code>spec.hostIPC</code></li>
+				</ul>
+				<p><strong><!--Allowed Values-->准许的取值</strong></p>
+				<ul>
+					<li><!--Undefined/nil-->未定义、nil</li>
+					<li><code>false</code></li>
+				</ul>
+			</td>
+		</tr>
+		<tr>
+			<td style="white-space: nowrap"><!--Privileged Containers-->特权容器</td>
+			<td>
+				<p><!--Privileged Pods disable most security mechanisms and must be disallowed.-->特权 Pod 会使大多数安全性机制失效，必须被禁止。</p>
+				<p><strong><!--Restricted Fields-->限制的字段</strong></p>
+				<ul>
+					<li><code>spec.containers[*].securityContext.privileged</code></li>
+					<li><code>spec.initContainers[*].securityContext.privileged</code></li>
+					<li><code>spec.ephemeralContainers[*].securityContext.privileged</code></li>
+				</ul>
+				<p><strong><!--Allowed Values-->准许的取值</strong></p>
+				<ul>
+					<li><!--Undefined/nil-->未定义、nil</li>
+					<li><code>false</code></li>
+				</ul>
+			</td>
+		</tr>
+		<tr>
+			<td style="white-space: nowrap"><!--Capabilities-->权能</td>
+			<td>
+				<p><!--Adding additional capabilities beyond those listed below must be disallowed.-->必须禁止添加除下列字段之外的权能。</p>
+				<p><strong><!--Restricted Fields-->限制的字段</strong></p>
+				<ul>
+					<li><code>spec.containers[*].securityContext.capabilities.add</code></li>
+					<li><code>spec.initContainers[*].securityContext.capabilities.add</code></li>
+					<li><code>spec.ephemeralContainers[*].securityContext.capabilities.add</code></li>
+				</ul>
+				<p><strong><!--Allowed Values-->准许的取值</strong></p>
+				<ul>
+					<li><!--Undefined/nil-->未定义、nil</li>
+					<li><code>AUDIT_WRITE</code></li>
+					<li><code>CHOWN</code></li>
+					<li><code>DAC_OVERRIDE</code></li>
+					<li><code>FOWNER</code></li>
+					<li><code>FSETID</code></li>
+					<li><code>KILL</code></li>
+					<li><code>MKNOD</code></li>
+					<li><code>NET_BIND_SERVICE</code></li>
+					<li><code>SETFCAP</code></li>
+					<li><code>SETGID</code></li>
+					<li><code>SETPCAP</code></li>
+					<li><code>SETUID</code></li>
+					<li><code>SYS_CHROOT</code></li>
+				</ul>
+			</td>
+		</tr>
+		<tr>
+			<td style="white-space: nowrap"><!--HostPath Volumes-->HostPath 卷</td>
+			<td>
+				<p><!--HostPath volumes must be forbidden.-->必须禁止 HostPath 卷。</p>
+				<p><strong><!--Restricted Fields-->限制的字段</strong></p>
+				<ul>
+					<li><code>spec.volumes[*].hostPath</code></li>
+				</ul>
+				<p><strong><!--Allowed Values-->准许的取值</strong></p>
+				<ul>
+					<li><!--Undefined/nil-->未定义、nil</li>
+				</ul>
+			</td>
+		</tr>
+		<tr>
+			<td style="white-space: nowrap"><!--Host Ports-->宿主端口</td>
+			<td>
+				<p><!--HostPorts should be disallowed, or at minimum restricted to a known list.-->应该禁止使用宿主端口，或者至少限制只能使用某确定列表中的端口。</p>
+				<p><strong><!--Restricted Fields-->限制的字段</strong></p>
+				<ul>
+					<li><code>spec.containers[*].ports[*].hostPort</code></li>
+					<li><code>spec.initContainers[*].ports[*].hostPort</code></li>
+					<li><code>spec.ephemeralContainers[*].ports[*].hostPort</code></li>
+				</ul>
+				<p><strong><!--Allowed Values-->准许的取值</strong></p>
+				<ul>
+					<li><!--Undefined/nil-->未定义、nil</li>
+					<li><!--Known list-->已知列表</li>
+					<li><code>0</code></li>
+				</ul>
+			</td>
+		</tr>
+		<tr>
+			<td style="white-space: nowrap">AppArmor</td>
+			<td>
+				<p><!--On supported hosts, the <code>runtime/default</code> AppArmor profile is applied by default. The baseline policy should prevent overriding or disabling the default AppArmor profile, or restrict overrides to an allowed set of profiles.-->在受支持的主机上，默认使用 <code>runtime/default</code> AppArmor 配置。Baseline 策略应避免覆盖或者禁用默认策略，以及限制覆盖一些配置集合的权限。</p>
+				<p><strong><!--Restricted Fields-->限制的字段</strong></p>
+				<ul>
+					<li><code>metadata.annotations["container.apparmor.security.beta.kubernetes.io/*"]</code></li>
+				</ul>
+				<p><strong><!--Allowed Values-->准许的取值</strong></p>
+				<ul>
+					<li><!--Undefined/nil-->未定义、nil</li>
+					<li><code>runtime/default</code></li>
+					<li><code>localhost/*</code></li>
+				</ul>
+			</td>
+		</tr>
+		<tr>
+			<td style="white-space: nowrap">SELinux</td>
+			<td>
+				<p><!--Setting the SELinux type is restricted, and setting a custom SELinux user or role option is forbidden.-->设置 SELinux 类型的操作是被限制的，设置自定义的 SELinux 用户或角色选项是被禁止的。</p>
+				<p><strong><!--Restricted Fields-->限制的字段</strong></p>
+				<ul>
+					<li><code>spec.securityContext.seLinuxOptions.type</code></li>
+					<li><code>spec.containers[*].securityContext.seLinuxOptions.type</code></li>
+					<li><code>spec.initContainers[*].securityContext.seLinuxOptions.type</code></li>
+					<li><code>spec.ephemeralContainers[*].securityContext.seLinuxOptions.type</code></li>
+				</ul>
+				<p><strong><!--Allowed Values-->准许的取值</strong></p>
+				<ul>
+					<li><!--Undefined/""-->未定义、""</li>
+					<li><code>container_t</code></li>
+					<li><code>container_init_t</code></li>
+					<li><code>container_kvm_t</code></li>
+				</ul>
+				<hr />
+				<p><strong><!--Restricted Fields-->限制的字段</strong></p>
+				<ul>
+					<li><code>spec.securityContext.seLinuxOptions.user</code></li>
+					<li><code>spec.containers[*].securityContext.seLinuxOptions.user</code></li>
+					<li><code>spec.initContainers[*].securityContext.seLinuxOptions.user</code></li>
+					<li><code>spec.ephemeralContainers[*].securityContext.seLinuxOptions.user</code></li>
+					<li><code>spec.securityContext.seLinuxOptions.role</code></li>
+					<li><code>spec.containers[*].securityContext.seLinuxOptions.role</code></li>
+					<li><code>spec.initContainers[*].securityContext.seLinuxOptions.role</code></li>
+					<li><code>spec.ephemeralContainers[*].securityContext.seLinuxOptions.role</code></li>
+				</ul>
+				<p><strong><!--Allowed Values-->准许的取值</strong></p>
+				<ul>
+					<li><!--Undefined/""-->未定义、""</li>
+				</ul>
+			</td>
+		</tr>
+		<tr>
+			<td style="white-space: nowrap"><code>/proc</code><!--Mount Type-->挂载类型</td>
+			<td>
+				<p><!--The default <code>/proc</code> masks are set up to reduce attack surface, and should be required.-->要求使用默认的 <code>/proc</code> 掩码以减小攻击面。</p>
+				<p><strong><!--Restricted Fields-->限制的字段</strong></p>
+				<ul>
+					<li><code>spec.containers[*].securityContext.procMount</code></li>
+					<li><code>spec.initContainers[*].securityContext.procMount</code></li>
+					<li><code>spec.ephemeralContainers[*].securityContext.procMount</code></li>
+				</ul>
+				<p><strong><!--Allowed Values-->准许的取值</strong></p>
+				<ul>
+					<li><!--Undefined/nil-->未定义、nil</li>
+					<li><code>Default</code></li>
+				</ul>
+			</td>
+		</tr>
+		<tr>
+  			<td>Seccomp</td>
+  			<td>
+  				<p><!--Seccomp profile must not be explicitly set to <code>Unconfined</code>.-->Seccomp 配置必须不能显式设置为 <code>Unconfined</code>。</p>
+  				<p><strong><!--Restricted Fields-->限制的字段</strong></p>
+				<ul>
+					<li><code>spec.securityContext.seccompProfile.type</code></li>
+					<li><code>spec.containers[*].securityContext.seccompProfile.type</code></li>
+					<li><code>spec.initContainers[*].securityContext.seccompProfile.type</code></li>
+					<li><code>spec.ephemeralContainers[*].securityContext.seccompProfile.type</code></li>
+				</ul>
+				<p><strong><!--Allowed Values-->准许的取值</strong></p>
+				<ul>
+					<li><!--Undefined/nil-->未定义、nil</li>
+					<li><code>RuntimeDefault</code></li>
+					<li><code>Localhost</code></li>
+				</ul>
+  			</td>
+  		</tr>
+		<tr>
+			<td style="white-space: nowrap">Sysctls</td>
+			<td>
+				<p><!--Sysctls can disable security mechanisms or affect all containers on a host, and should be disallowed except for an allowed "safe" subset. A sysctl is considered safe if it is namespaced in the container or the Pod, and it is isolated from other Pods or processes on the same Node.-->Sysctls 可以禁用安全机制或影响宿主上所有容器，因此除了若干“安全”的子集之外，应该被禁止。如果某 sysctl 是受容器或 Pod 的名字空间限制，且与节点上其他 Pod 或进程相隔离，可认为是安全的。</p>
+				<p><strong><!--Restricted Fields-->限制的字段</strong></p>
+				<ul>
+					<li><code>spec.securityContext.sysctls[*].name</code></li>
+				</ul>
+				<p><strong><!--Allowed Values-->准许的取值</strong></p>
+				<ul>
+					<li><!--Undefined/nil-->未定义、nil</li>
+					<li><code>kernel.shm_rmid_forced</code></li>
+					<li><code>net.ipv4.ip_local_port_range</code></li>
+					<li><code>net.ipv4.ip_unprivileged_port_start</code></li>
+					<li><code>net.ipv4.tcp_syncookies</code></li>
+					<li><code>net.ipv4.ping_group_range</code></li>
+				</ul>
+			</td>
+		</tr>
+	</tbody>
+</table>
+
+### Restricted
+
+<!--
+**The _Restricted_ policy is aimed at enforcing current Pod hardening best practices, at the
+expense of some compatibility.** It is targeted at operators and developers of security-critical
+applications, as well as lower-trust users. The following listed controls should be
+enforced/disallowed:
+-->
+**_Restricted_ 策略旨在实施当前保护 Pod 的最佳实践，尽管这样作可能会牺牲一些兼容性。**
+该类策略主要针对运维人员和安全性很重要的应用的开发人员，以及不太被信任的用户。
+下面列举的控制需要被实施（禁止）：
+
+{{< note >}}
+<!--
+In this table, wildcards (`*`) indicate all elements in a list. For example, 
+`spec.containers[*].securityContext` refers to the Security Context object for _all defined
+containers_. If any of the listed containers fails to meet the requirements, the entire pod will
+fail validation.
+-->
+在下述表格中，通配符（`*`）意味着一个列表中的所有元素。
+例如 `spec.containers[*].securityContext` 表示 **所定义的所有容器** 的安全性上下文对象。
+如果所列出的任一容器不能满足要求，整个 Pod 将无法通过校验。
+{{< /note >}}
+
+<table>
+	<caption style="display:none"><!--Restricted policy specification-->Restricted 策略规范</caption>
+	<tbody>
+		<tr>
+			<td width="30%"><strong><!--Control-->控制</strong></td>
+			<td><strong><!--Policy-->策略</strong></td>
+		</tr>
+		<tr>
+			<td colspan="2"><em><!--Everything from the baseline profile.-->Baseline 策略的所有要求。</em></td>
+		</tr>
+		<tr>
+			<td style="white-space: nowrap"><!--Volume Types-->卷类型</td>
+			<td>
+				<p><!--In addition to restricting HostPath volumes, the restricted policy limits usage of non-core volume types to those defined through PersistentVolumes.-->除了限制 HostPath 卷之外，此类策略还限制可以通过 PersistentVolumes 定义的非核心卷类型。</p>
+				<p><strong><!--Restricted Fields-->限制的字段</strong></p>
+				<ul>
+					<li><code>spec.volumes[*]</code></li>
+				</ul>
+				<p><strong><!--Allowed Values-->准许的取值</strong></p>
+				<!--Every item in the <code>spec.volumes[*]</code> list must set one of the following fields to a non-null value:--><code>spec.volumes[*]</code> 列表中的每个条目必须将下面字段之一设置为非空值：
+				<ul>
+					<li><code>spec.volumes[*].configMap</code></li>
+					<li><code>spec.volumes[*].csi</code></li>
+					<li><code>spec.volumes[*].downwardAPI</code></li>
+					<li><code>spec.volumes[*].emptyDir</code></li>
+					<li><code>spec.volumes[*].ephemeral</code></li>
+					<li><code>spec.volumes[*].persistentVolumeClaim</code></li>
+					<li><code>spec.volumes[*].projected</code></li>
+					<li><code>spec.volumes[*].secret</code></li>
+				</ul>
+			</td>
+		</tr>
+		<tr>
+			<td style="white-space: nowrap"><!--Privilege Escalation (v1.8+)-->特权提升（v1.8+）</td>
+			<td>
+				<p><!--Privilege escalation (such as via set-user-ID or set-group-ID file mode) should not be allowed.-->禁止（通过 SetUID 或 SetGID 文件模式）获得特权提升。</p>
+				<p><strong><!--Restricted Fields-->限制的字段</strong></p>
+				<ul>
+					<li><code>spec.containers[*].securityContext.allowPrivilegeEscalation</code></li>
+					<li><code>spec.initContainers[*].securityContext.allowPrivilegeEscalation</code></li>
+					<li><code>spec.ephemeralContainers[*].securityContext.allowPrivilegeEscalation</code></li>
+				</ul>
+				<p><strong><!--Allowed Values-->允许的取值</strong></p>
+				<ul>
+					<li><code>false</code></li>
+				</ul>
+			</td>
+		</tr>
+		<tr>
+			<td style="white-space: nowrap"><!--Running as Non-root-->以非 root 账号运行</td>
+			<td>
+				<p><!--Containers must be required to run as non-root users.-->容器必须以非 root 账号运行。</p>
+				<p><strong><!--Restricted Fields-->限制的字段</strong></p>
+				<ul>
+					<li><code>spec.securityContext.runAsNonRoot</code></li>
+					<li><code>spec.containers[*].securityContext.runAsNonRoot</code></li>
+					<li><code>spec.initContainers[*].securityContext.runAsNonRoot</code></li>
+					<li><code>spec.ephemeralContainers[*].securityContext.runAsNonRoot</code></li>
+				</ul>
+				<p><strong><!--Allowed Values-->准许的取值</strong></p>
+				<ul>
+					<li><code>true</code></li>
+				</ul>
+				<small>
+					<!--The container fields may be undefined/<code>nil</code> if the pod-level
+					<code>spec.securityContext.runAsNonRoot</code> is set to <code>true</code>.-->如果 Pod 级别 <code>spec.securityContext.runAsNonRoot</code> 设置为 <code>true</code>，则允许容器组的安全上下文字段设置为 未定义/<code>nil</code>。
+				</small>
+			</td>
+		</tr>
+		<tr>
+			<td style="white-space: nowrap"><!--Running as Non-root user (v1.23+)-->非 root 用户（v1.23+）</td>
+			<td>
+				<p><!--Containers must not set <tt>runAsUser</tt> to 0-->容器不可以将 <tt>runAsUser</tt> 设置为 0</p>
+				<p><strong><!--Restricted Fields-->限制的字段</strong></p>
+				<ul>
+					<li><code>spec.securityContext.runAsUser</code></li>
+					<li><code>spec.containers[*].securityContext.runAsUser</code></li>
+					<li><code>spec.initContainers[*].securityContext.runAsUser</code></li>
+					<li><code>spec.ephemeralContainers[*].securityContext.runAsUser</code></li>
+				</ul>
+				<p><strong><!--Allowed Values-->准许的取值</strong></p>
+				<ul>
+					<li><!--any non-zero value-->所有的非零值</li>
+					<li><code>undefined/null</code></li>
+				</ul>
+			</td>
+		</tr>
+		<tr>
+			<td style="white-space: nowrap">Seccomp (v1.19+)</td>
+			<td>
+  				<p><!--Seccomp profile must be explicitly set to one of the allowed values. Both the <code>Unconfined</code> profile and the <em>absence</em> of a profile are prohibited.-->Seccomp Profile 必须被显式设置成一个允许的值。禁止使用 <code>Unconfined</code> Profile 或者指定 <em>不存在的</em> Profile。</p>
+  				<p><strong><!--Restricted Fields-->限制的字段</strong></p>
+				<ul>
+					<li><code>spec.securityContext.seccompProfile.type</code></li>
+					<li><code>spec.containers[*].securityContext.seccompProfile.type</code></li>
+					<li><code>spec.initContainers[*].securityContext.seccompProfile.type</code></li>
+					<li><code>spec.ephemeralContainers[*].securityContext.seccompProfile.type</code></li>
+				</ul>
+				<p><strong><!--Allowed Values-->准许的取值</strong></p>
+				<ul>
+					<li><code>RuntimeDefault</code></li>
+					<li><code>Localhost</code></li>
+				</ul>
+				<small>
+					<!--
+          The container fields may be undefined/<code>nil</code> if the pod-level
+					<code>spec.securityContext.seccompProfile.type</code> field is set appropriately.
+					Conversely, the pod-level field may be undefined/<code>nil</code> if _all_ container-
+					level fields are set.
+          -->
+          如果 Pod 级别的 <code>spec.securityContext.seccompProfile.type</code>
+          已设置得当，容器级别的安全上下文字段可以为未定义/<code>nil</code>。
+          反之如果 <bold>所有的</bold> 容器级别的安全上下文字段已设置，
+          则 Pod 级别的字段可为 未定义/<code>nil</code>。
+				</small>
+  			</td>
+  		</tr>
+		  <tr>
+			<td style="white-space: nowrap"><!--Capabilities (v1.22+) -->权能（v1.22+）</td>
+			<td>
+				<p>
+					<!--
+					Containers must drop <code>ALL</code> capabilities, and are only permitted to add back
+					the <code>NET_BIND_SERVICE</code> capability.
+          -->
+          容器必须弃用 <code>ALL</code> 权能，并且只允许添加
+          <code>NET_BIND_SERVICE</code> 权能。
+				</p>
+				<p><strong><!--Restricted Fields-->限制的字段</strong></p>
+				<ul>
+					<li><code>spec.containers[*].securityContext.capabilities.drop</code></li>
+					<li><code>spec.initContainers[*].securityContext.capabilities.drop</code></li>
+					<li><code>spec.ephemeralContainers[*].securityContext.capabilities.drop</code></li>
+				</ul>
+				<p><strong><!--Allowed Values-->准许的取值</strong></p>
+				<ul>
+					<li><!--Any list of capabilities that includes <code>ALL</code>-->包括 <code>ALL</code> 在内的任意权能列表。</li>
+				</ul>
+				<hr />
+				<p><strong><!--Restricted Fields-->限制的字段</strong></p>
+				<ul>
+					<li><code>spec.containers[*].securityContext.capabilities.add</code></li>
+					<li><code>spec.initContainers[*].securityContext.capabilities.add</code></li>
+					<li><code>spec.ephemeralContainers[*].securityContext.capabilities.add</code></li>
+				</ul>
+				<p><strong><!--Allowed Values-->准许的取值</strong></p>
+				<ul>
+					<li><!--Undefined/nil-->未定义、nil</li>
+					<li><code>NET_BIND_SERVICE</code></li>
+				</ul>
+			</td>
+		</tr>
+	</tbody>
+</table>
+
+<!--
+## Policy Instantiation
+
+Decoupling policy definition from policy instantiation allows for a common understanding and
+consistent language of policies across clusters, independent of the underlying enforcement
+mechanism.
+
+As mechanisms mature, they will be defined below on a per-policy basis. The methods of enforcement
+of individual policies are not defined here.
+-->
+## 策略实例化   {#policy-instantiation}
+
+将策略定义从策略实例中解耦出来有助于形成跨集群的策略理解和语言陈述，
+以免绑定到特定的下层实施机制。
+
+随着相关机制的成熟，这些机制会按策略分别定义在下面。特定策略的实施方法不在这里定义。
+
+<!--
+[**Pod Security Admission Controller**](/docs/concepts/security/pod-security-admission/)
+-->
+[**Pod 安全性准入控制器**](/zh-cn/docs/concepts/security/pod-security-admission/)
+
+- {{< example file="security/podsecurity-privileged.yaml" >}}Privileged 名字空间{{< /example >}}
+- {{< example file="security/podsecurity-baseline.yaml" >}}Baseline 名字空间{{< /example >}}
+- {{< example file="security/podsecurity-restricted.yaml" >}}Restricted 名字空间{{< /example >}}
+
+<!--
+[**PodSecurityPolicy**](/docs/concepts/security/pod-security-policy/) (Deprecated)
+-->
+[**PodSecurityPolicy**](/zh-cn/docs/concepts/security/pod-security-policy/) （已弃用）
+
+- {{< example file="policy/privileged-psp.yaml" >}}Privileged{{< /example >}}
+- {{< example file="policy/baseline-psp.yaml" >}}Baseline{{< /example >}}
+- {{< example file="policy/restricted-psp.yaml" >}}Restricted{{< /example >}}
+
+<!--
+### Alternatives
+-->
+### 替代方案   {#alternatives}
+
+{{% thirdparty-content %}}
+
+<!--
+Other alternatives for enforcing policies are being developed in the Kubernetes ecosystem, such as: 
+-->
+在 Kubernetes 生态系统中还在开发一些其他的替代方案，例如：
+
+- [Kubewarden](https://github.com/kubewarden)
+- [Kyverno](https://kyverno.io/policies/pod-security/)
+- [OPA Gatekeeper](https://github.com/open-policy-agent/gatekeeper)
+
+<!--
+## FAQ
+
+### Why isn't there a profile between privileged and baseline?
+-->
+## 常见问题    {#faq}
+
+### 为什么不存在介于 Privileged 和 Baseline 之间的策略类型
+
+<!--
+The three profiles defined here have a clear linear progression from most secure (restricted) to least
+secure (privileged), and cover a broad set of workloads. Privileges required above the baseline
+policy are typically very application specific, so we do not offer a standard profile in this
+niche. This is not to say that the privileged profile should always be used in this case, but that
+policies in this space need to be defined on a case-by-case basis.
+
+SIG Auth may reconsider this position in the future, should a clear need for other profiles arise.
+-->
+这里定义的三种策略框架有一个明晰的线性递进关系，从最安全（Restricted）到最不安全，
+并且覆盖了很大范围的工作负载。特权要求超出 Baseline 策略者通常是特定于应用的需求，
+所以我们没有在这个范围内提供标准框架。
+这并不意味着在这样的情形下仍然只能使用 Privileged 框架，
+只是说处于这个范围的策略需要因地制宜地定义。
+
+SIG Auth 可能会在将来考虑这个范围的框架，前提是有对其他框架的需求。
+
+<!--
+### What's the difference between a security profile and a security context?
+
+[Security Contexts](/docs/tasks/configure-pod-container/security-context/) configure Pods and
+Containers at runtime. Security contexts are defined as part of the Pod and container specifications
+in the Pod manifest, and represent parameters to the container runtime.
+-->
+### 安全配置与安全上下文的区别是什么？
+
+[安全上下文](/zh-cn/docs/tasks/configure-pod-container/security-context/)在运行时配置 Pod
+和容器。安全上下文是在 Pod 清单中作为 Pod 和容器规约的一部分来定义的，
+所代表的是传递给容器运行时的参数。
+
+<!--
+Security profiles are control plane mechanisms to enforce specific settings in the Security Context,
+as well as other related parameters outside the Security Context. As of July 2021, 
+[Pod Security Policies](/docs/concepts/security/pod-security-policy/) are deprecated in favor of the
+built-in [Pod Security Admission Controller](/docs/concepts/security/pod-security-admission/). 
+-->
+安全策略则是控制面用来对安全上下文以及安全性上下文之外的参数实施某种设置的机制。
+在 2020 年 7 月，
+[Pod 安全性策略](/zh-cn/docs/concepts/security/pod-security-policy/)已被废弃，
+取而代之的是内置的 [Pod 安全性准入控制器](/zh-cn/docs/concepts/security/pod-security-admission/)。
+
+<!--
+### What profiles should I apply to my Windows Pods?
+
+Windows in Kubernetes has some limitations and differentiators from standard Linux-based
+workloads. Specifically, many of the Pod SecurityContext fields
+[have no effect on Windows](/docs/concepts/windows/intro/#compatibility-v1-pod-spec-containers-securitycontext).
+As such, no standardized Pod Security profiles currently exist.
+-->
+### 我应该为我的 Windows Pod 实施哪种框架？
+
+Kubernetes 中的 Windows 负载与标准的基于 Linux 的负载相比有一些局限性和区别。
+尤其是 Pod SecurityContext
+字段[对 Windows 不起作用](/zh-cn/docs/concepts/windows/intro/#compatibility-v1-pod-spec-containers-securitycontext)。
+因此，目前没有对应的标准 Pod 安全性框架。
+
+<!--
+If you apply the restricted profile for a Windows pod, this **may** have an impact on the pod
+at runtime. The restricted profile requires enforcing Linux-specific restrictions (such as seccomp
+profile, and disallowing privilege escalation). If the kubelet and / or its container runtime ignore
+these Linux-specific values, then the Windows pod should still work normally within the restricted
+profile. However, the lack of enforcement means that there is no additional restriction, for Pods
+that use Windows containers, compared to the baseline profile.
+-->
+如果你为一个 Windows Pod 应用了 Restricted 策略，**可能会** 对该 Pod 的运行时产生影响。
+Restricted 策略需要强制执行 Linux 特有的限制（如 seccomp Profile，并且禁止特权提升）。
+如果 kubelet 和/或其容器运行时忽略了 Linux 特有的值，那么应该不影响 Windows Pod 正常工作。
+然而，对于使用 Windows 容器的 Pod 来说，缺乏强制执行意味着相比于 Restricted 策略，没有任何额外的限制。
+
+<!--
+The use of the HostProcess flag to create a HostProcess pod should only be done in alignment with the privileged policy.
+Creation of a Windows HostProcess pod is blocked under the baseline and restricted policies,
+so any HostProcess pod should be considered privileged.
+-->
+你应该只在 Privileged 策略下使用 HostProcess 标志来创建 HostProcess Pod。
+在 Baseline 和 Restricted 策略下，创建 Windows HostProcess Pod 是被禁止的，
+因此任何 HostProcess Pod 都应该被认为是有特权的。
+
+<!--
+### What about sandboxed Pods?
+
+There is not currently an API standard that controls whether a Pod is considered sandboxed or
+not. Sandbox Pods may be identified by the use of a sandboxed runtime (such as gVisor or Kata
+Containers), but there is no standard definition of what a sandboxed runtime is.
+-->
+### 沙箱（Sandboxed）Pod 怎么处理？  {#what-about-sandboxed-pods}
+
+现在还没有 API 标准来控制 Pod 是否被视作沙箱化 Pod。
+沙箱 Pod 可以通过其是否使用沙箱化运行时（如 gVisor 或 Kata Container）来辨别，
+不过目前还没有关于什么是沙箱化运行时的标准定义。
+
+<!--
+The protections necessary for sandboxed workloads can differ from others. For example, the need to
+restrict privileged permissions is lessened when the workload is isolated from the underlying
+kernel. This allows for workloads requiring heightened permissions to still be isolated.
+
+Additionally, the protection of sandboxed workloads is highly dependent on the method of
+sandboxing. As such, no single recommended profile is recommended for all sandboxed workloads.
+-->
+沙箱化负载所需要的保护可能彼此各不相同。例如，当负载与下层内核直接隔离开来时，
+限制特权化操作的许可就不那么重要。这使得那些需要更多许可权限的负载仍能被有效隔离。
+
+此外，沙箱化负载的保护高度依赖于沙箱化的实现方法。
+因此，现在还没有针对所有沙箱化负载的建议配置。
+
diff --git a/content/zh-cn/docs/concepts/security/rbac-good-practices.md b/content/zh-cn/docs/concepts/security/rbac-good-practices.md
new file mode 100644
index 0000000000..a708463208
--- /dev/null
+++ b/content/zh-cn/docs/concepts/security/rbac-good-practices.md
@@ -0,0 +1,373 @@
+---
+title: 基于角色的访问控制良好实践
+description: >
+  为集群操作人员提供的良好的 RBAC 设计原则和实践。
+content_type: concept
+weight: 60
+---
+
+<!--
+reviewers:
+title: Role Based Access Control Good Practices
+description: >
+  Principles and practices for good RBAC design for cluster operators.
+content_type: concept
+weight: 60
+-->
+
+<!-- overview -->
+
+<!--
+Kubernetes {{< glossary_tooltip text="RBAC" term_id="rbac" >}} is a key security control 
+to ensure that cluster users and workloads have only the access to resources required to 
+execute their roles. It is important to ensure that, when designing permissions for cluster
+users, the cluster administrator understands the areas where privilge escalation could occur, 
+to reduce the risk of excessive access leading to security incidents.
+
+The good practices laid out here should be read in conjunction with the general
+[RBAC documentation](/docs/reference/access-authn-authz/rbac/#restrictions-on-role-creation-or-update).
+-->
+
+Kubernetes {{< glossary_tooltip text="RBAC" term_id="rbac" >}}
+是一项重要的安全控制措施，用于保证集群用户和工作负载只能访问履行自身角色所需的资源。
+在为集群用户设计权限时，请务必确保集群管理员知道可能发生特权提级的地方，
+降低因过多权限而导致安全事件的风险。
+
+此文档的良好实践应该与通用
+[RBAC 文档](/zh-cn/docs/reference/access-authn-authz/rbac/#restrictions-on-role-creation-or-update)一起阅读。
+
+<!-- body -->
+
+<!--
+## General good practice
+
+### Least privilege
+-->
+## 通用的良好实践 {#general-good-practice}
+
+### 最小特权  {#least-privilege}
+
+<!--
+Ideally, minimal RBAC rights should be assigned to users and service accounts. Only permissions 
+explicitly required for their operation should be used. While each cluster will be different, 
+some general rules that can be applied are :
+-->
+理想情况下，分配给用户和服务帐户的 RBAC 权限应该是最小的。
+仅应使用操作明确需要的权限，虽然每个集群会有所不同，但可以应用的一些常规规则：
+
+<!--
+ - Assign permissions at the namespace level where possible. Use RoleBindings as opposed to 
+   ClusterRoleBindings to give users rights only within a specific namespace.
+ - Avoid providing wildcard permissions when possible, especially to all resources.
+   As Kubernetes is an extensible system, providing wildcard access gives rights
+   not just to all object types that currently exist in the cluster, but also to all future object types
+   which are created in the future.
+ - Administrators should not use `cluster-admin` accounts except where specifically needed. 
+   Providing a low privileged account with
+   [impersonation rights](/docs/reference/access-authn-authz/authentication/#user-impersonation)
+   can avoid accidental modification of cluster resources.
+ - Avoid adding users to the `system:masters` group. Any user who is a member of this group 
+   bypasses all RBAC rights checks and will always have unrestricted superuser access, which cannot be 
+   revoked by removing RoleBindings or ClusterRoleBindings. As an aside, if a cluster is 
+   using an authorization webhook, membership of this group also bypasses that webhook (requests 
+   from users who are members of that group are never sent to the webhook)
+-->
+- 尽可能在命名空间级别分配权限。授予用户在特定命名空间中的权限时使用 RoleBinding
+  而不是 ClusterRoleBinding。
+- 尽可能避免通过通配符设置权限，尤其是对所有资源的权限。
+  由于 Kubernetes 是一个可扩展的系统，因此通过通配符来授予访问权限不仅会授予集群中当前的所有对象类型，
+  还包含所有未来被创建的所有对象类型。
+- 管理员不应使用 `cluster-admin` 账号，除非特别需要。为低特权帐户提供
+  [伪装权限](/zh-cn/docs/reference/access-authn-authz/authentication/#user-impersonation)
+  可以避免意外修改集群资源。
+- 避免将用户添加到 `system:masters` 组。任何属于此组成员的用户都会绕过所有 RBAC 权限检查，
+  始终具有不受限制的超级用户访问权限，并且不能通过删除 `RoleBinding` 或 `ClusterRoleBinding`
+  来取消其权限。顺便说一句，如果集群是使用 Webhook 鉴权，此组的成员身份也会绕过该 
+  Webhook（来自属于该组成员的用户的请求永远不会发送到 Webhook）。
+ 
+<!--
+### Minimize distribution of privileged tokens
+-->
+### 最大限度地减少特权令牌的分发 {#minimize-distribution-of-privileged-tokens}
+
+<!--
+Ideally, pods shouldn't be assigned service accounts that have been granted powerful permissions
+(for example, any of the rights listed under [privilege escalation risks](#privilege-escalation-risks)). 
+In cases where a workload requires powerful permissions, consider the following practices:
+
+ - Limit the number of nodes running powerful pods. Ensure that any DaemonSets you run
+  are necessary and are run with least privilege to limit the blast radius of container escapes.
+ - Avoid running powerful pods alongside untrusted or publicly-exposed ones. Consider using 
+   [Taints and Toleration](/docs/concepts/scheduling-eviction/taint-and-toleration/),
+   [NodeAffinity](/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity), or
+   [PodAntiAffinity](/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity)
+   to ensure pods don't run alongside untrusted or less-trusted Pods. Pay especial attention to
+   situations where less-trustworthy Pods are not meeting the **Restricted** Pod Security Standard.
+-->
+理想情况下，不应为 Pod 分配具有强大权限（例如，在[特权提级的风险](#privilege-escalation-risks)中列出的任一权限）的服务帐户。
+如果工作负载需要比较大的权限，请考虑以下做法：
+- 限制运行此类 Pod 的节点数量。确保你运行的任何 DaemonSet 都是必需的，
+  并且以最小权限运行，以限制容器逃逸的影响范围。
+- 避免将此类 Pod 与不可信任或公开的 Pod 在一起运行。
+  考虑使用[污点和容忍度](/zh-cn/docs/concepts/scheduling-eviction/taint-and-toleration/)、
+  [节点亲和性](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity)或
+  [Pod 反亲和性](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity)确保 
+  Pod 不会与不可信或不太受信任的 Pod 一起运行。
+  特别注意可信度不高的 Pod 不符合 **Restricted** Pod 安全标准的情况。
+
+<!--
+### Hardening
+
+Kubernetes defaults to providing access which may not be required in every cluster. Reviewing 
+the RBAC rights provided by default can provide opportunities for security hardening.
+In general, changes should not be made to rights provided to `system:` accounts some options 
+to harden cluster rights exist:
+-->
+### 加固 {#hardening}
+
+Kubernetes 默认提供访问权限并非是每个集群都需要的。
+审查默认提供的 RBAC 权限为安全加固提供了机会。
+一般来说，不应该更改 `system:` 帐户的某些权限，有一些方式来强化现有集群的权限：
+
+<!--
+- Review bindings for the `system:unauthenticated` group and remove them where possible, as this gives 
+  access to anyone who can contact the API server at a network level.
+- Avoid the default auto-mounting of service account tokens by setting
+  `automountServiceAccountToken: false`. For more details, see
+  [using default service account token](/docs/tasks/configure-pod-container/configure-service-account/#use-the-default-service-account-to-access-the-api-server).
+  Setting this value for a Pod will overwrite the service account setting, workloads
+  which require service account tokens can still mount them.
+-->
+- 审查 `system:unauthenticated` 组的绑定，并在可能的情况下将其删除，
+  因为这会给所有能够访问 API 服务器的人以网络级别的权限。
+- 通过设置 `automountServiceAccountToken: false` 来避免服务账号令牌的默认自动挂载，
+  有关更多详细信息，请参阅[使用默认服务账号令牌](/zh-cn/docs/tasks/configure-pod-container/configure-service-account/#use-the-default-service-account-to-access-the-api-server)。
+  此参数可覆盖 Pod 服务账号设置，而需要服务账号令牌的工作负载仍可以挂载。
+
+<!--
+### Periodic review
+
+It is vital to periodically review the Kubernetes RBAC settings for redundant entries and 
+possible privilege escalations.
+If an attacker is able to create a user account with the same name as a deleted user,
+they can automatically inherit all the rights of the deleted user, especially the
+rights assigned to that user.
+ --> 
+### 定期检查  {#periodic-review}
+定期检查 Kubernetes RBAC 设置是否有冗余条目和提权可能性是至关重要的。
+如果攻击者能够创建与已删除用户同名的用户账号，
+他们可以自动继承被删除用户的所有权限，尤其是分配给该用户的权限。
+
+<!--
+## Kubernetes RBAC - privilege escalation risks {#privilege-escalation-risks}
+
+Within Kubernetes RBAC there are a number of privileges which, if granted, can allow a user or a service account
+to escalate their privileges in the cluster or affect systems outside the cluster.
+
+This section is intended to provide visibility of the areas where cluster operators 
+should take care, to ensure that they do not inadvertently allow for more access to clusters than intended.
+-->
+## Kubernetes RBAC - 权限提权的风险 {#privilege-escalation-risks}
+
+在 Kubernetes RBAC 中有许多特权，如果被授予，
+用户或服务帐户可以提升其在集群中的权限并可能影响集群外的系统。
+
+本节旨在提醒集群操作员需要注意的不同领域，
+以确保他们不会无意中授予超出预期的集群访问权限。
+
+<!--
+### Listing secrets
+
+It is generally clear that allowing `get` access on Secrets will allow a user to read their contents.
+It is also important to note that `list` and `watch` access also effectively allow for users to reveal the Secret contents.
+For example, when a List response is returned (for example, via `kubectl get secrets -A -o yaml`), the response
+includes the contents of all Secrets.
+-->
+### 列举 Secret {#listing-secrets}
+
+大家都很清楚，若允许对 Secrets 执行 `get` 访问，用户就获得了访问 Secret 内容的能力。
+同样需要注意的是：`list` 和 `watch` 访问也会授权用户获取 Secret 的内容。
+例如，当返回 List 响应时（例如，通过 
+`kubectl get secrets -A -o yaml`），响应包含所有 Secret 的内容。
+
+<!--
+### Workload creation
+
+Users who are able to create workloads (either Pods, or
+[workload resources](/docs/concepts/workloads/controllers/) that manage Pods) will
+be able to gain access to the underlying node unless restrictions based on the Kubernetes
+[Pod Security Standards](/docs/concepts/security/pod-security-standards/) are in place.
+-->
+### 工作负载的创建 {#workload-creation}
+
+能够创建工作负载的用户（Pod 或管理 Pod 的[工作负载资源](/zh-cn/docs/concepts/workloads/controllers/)） 
+能够访问下层的节点，除非基于 Kubernetes 的
+[Pod 安全标准](/zh-cn/docs/concepts/security/pod-security-standards/)做限制。
+
+<!--
+Users who can run privileged Pods can use that access to gain node access and potentially to
+further elevate their privileges. Where you do not fully trust a user or other principal
+with the ability to create suitably secure and isolated Pods, you should enforce either the
+**Baseline** or **Restricted** Pod Security Standard.
+You can use [Pod Security admission](/docs/concepts/security/pod-security-admission/)
+or other (third party) mechanisms to implement that enforcement.
+-->
+可以运行特权 Pod 的用户可以利用该访问权限获得节点访问权限，
+并可能进一步提升他们的特权。如果你不完全信任某用户或其他主体，
+不相信他们能够创建比较安全且相互隔离的 Pod，你应该强制实施 **Baseline**
+或 **Restricted** Pod 安全标准。
+你可以使用 [Pod 安全性准入](/zh-cn/docs/concepts/security/pod-security-admission/)或其他（第三方）机制来强制实施这些限制。
+
+<!--
+You can also use the deprecated [PodSecurityPolicy](/docs/concepts/security/pod-security-policy/) mechanism
+to restrict users' abilities to create privileged Pods (N.B. PodSecurityPolicy is scheduled for removal
+in version 1.25).
+-->
+你还可以使用已弃用的 [PodSecurityPolicy](/zh-cn/docs/concepts/security/pod-security-policy/)
+机制以限制用户创建特权 Pod 的能力 （特别注意：PodSecurityPolicy 已计划在版本 1.25 中删除）。
+
+<!--
+Creating a workload in a namespace also grants indirect access to Secrets in that namespace. 
+Creating a pod in kube-system or a similarly privileged namespace can grant a user access to 
+Secrets they would not have through RBAC directly.
+-->
+在命名空间中创建工作负载还会授予对该命名空间中 Secret 的间接访问权限。
+在 kube-system 或类似特权的命名空间中创建 Pod 
+可以授予用户不需要通过 RBAC 即可获取 Secret 访问权限。
+
+<!--
+### Persistent volume creation
+
+As noted in the [PodSecurityPolicy](/docs/concepts/security/pod-security-policy/#volumes-and-file-systems)
+documentation, access to create PersistentVolumes can allow for escalation of access to the underlying host.
+Where access to persistent storage is required trusted administrators should create
+PersistentVolumes, and constrained users should use PersistentVolumeClaims to access that storage.
+-->
+### 持久卷的创建 {#persistent-volume-creation}
+
+如 [PodSecurityPolicy](/zh-cn/docs/concepts/security/pod-security-policy/#volumes-and-file-systems) 
+文档中所述，创建 PersistentVolumes 的权限可以提权访问底层主机。
+如果需要访问 PersistentVolume，受信任的管理员应该创建 `PersistentVolume`，
+受约束的用户应该使用 `PersistentVolumeClaim` 访问该存储。
+
+<!--
+### Access to `proxy` subresource of Nodes
+
+Users with access to the proxy sub-resource of node objects have rights to the Kubelet API, 
+which allows for command execution on every pod on the node(s) to which they have rights. 
+This access bypasses audit logging and admission control, so care should be taken before 
+granting rights to this resource.
+-->
+### 访问 Node 的 `proxy` 子资源  {#access-to-proxy-subresource-of-nodes}
+
+有权访问 Node 对象的 proxy 子资源的用户有权访问 Kubelet API，
+这允许在他们有权访问的节点上的所有 Pod 上执行命令。
+此访问绕过审计日志记录和准入控制，因此在授予对此资源的权限前应小心。
+
+<!--
+### Escalate verb
+
+Generally, the RBAC system prevents users from creating clusterroles with more rights than the user possesses. 
+The exception to this is the `escalate` verb. As noted in the [RBAC documentation](/docs/reference/access-authn-authz/rbac/#restrictions-on-role-creation-or-update),
+users with this right can effectively escalate their privileges.
+-->
+### esclate 动词 {#escalate-verb}
+通常，RBAC 系统会阻止用户创建比他所拥有的更多权限的 `ClusterRole`。
+而 `escalate` 动词是个例外。如
+[RBAC 文档](/zh-cn/docs/reference/access-authn-authz/rbac/#restrictions-on-role-creation-or-update)
+中所述，拥有此权限的用户可以有效地提升他们的权限。
+
+<!--
+### Bind verb
+
+Similar to the `escalate` verb, granting users this right allows for the bypass of Kubernetes 
+in-built protections against privilege escalation, allowing users to create bindings to 
+roles with rights they do not already have.
+-->
+### bind 动词  {#bind-verb}
+
+与 `escalate` 动作类似，授予此权限的用户可以绕过 Kubernetes
+对权限提升的内置保护，用户可以创建并绑定尚不具有的权限的角色。
+
+<!--
+### Impersonate verb
+
+This verb allows users to impersonate and gain the rights of other users in the cluster. 
+Care should be taken when granting it, to ensure that excessive permissions cannot be gained 
+via one of the impersonated accounts.
+-->
+### impersonate 动词 {#impersonate-verb}
+
+此动词允许用户伪装并获得集群中其他用户的权限。
+授予它时应小心，以确保通过其中一个伪装账号不会获得过多的权限。
+
+<!--
+### CSRs and certificate issuing
+
+The CSR API allows for users with `create` rights to CSRs and `update` rights on `certificatesigningrequests/approval` 
+where the signer is `kubernetes.io/kube-apiserver-client` to create new client certificates 
+which allow users to authenticate to the cluster. Those client certificates can have arbitrary 
+names including duplicates of Kubernetes system components. This will effectively allow for privilege escalation.
+-->
+### CSR 和证书颁发 {#csrs-and-certificate-issuing}
+
+CSR API 允许用户拥有 `create` CSR 的权限和 `update`
+`certificatesigningrequests/approval` 的权限，
+其中签名者是 `kubernetes.io/kube-apiserver-client`，
+通过此签名创建的客户端证书允许用户向集群进行身份验证。
+这些客户端证书可以包含任意的名称，包括 Kubernetes 系统组件的副本。
+这将有利于特权提级。
+
+<!--
+### Token request
+
+Users with `create` rights on `serviceaccounts/token` can create TokenRequests to issue 
+tokens for existing service accounts. 
+-->
+### 令牌请求 {#token-request}
+
+拥有 `serviceaccounts/token` 的 `create` 权限的用户可以创建 
+TokenRequest 来发布现有服务帐户的令牌。
+
+<!--
+### Control admission webhooks
+
+Users with control over `validatingwebhookconfigurations` or `mutatingwebhookconfigurations` 
+can control webhooks that can read any object admitted to the cluster, and in the case of 
+mutating webhooks, also mutate admitted objects.
+-->
+###  控制准入 Webhook {#control-admission-webhooks}
+
+可以控制 `validatingwebhookconfigurations` 或 `mutatingwebhookconfigurations`
+的用户可以控制能读取任何允许进入集群的对象的 webhook，
+并且在有变更 webhook 的情况下，还可以变更准入的对象。
+
+<!--
+## Kubernetes RBAC - denial of service risks {#denial-of-service-risks}
+
+### Object creation denial-of-service {#object-creation-dos}
+Users who have rights to create objects in a cluster may be able to create sufficient large 
+objects to create a denial of service condition either based on the size or number of objects, as discussed in
+[etcd used by Kubernetes is vulnerable to OOM attack](https://github.com/kubernetes/kubernetes/issues/107325). This may be
+specifically relevant in multi-tenant clusters if semi-trusted or untrusted users 
+are allowed limited access to a system.
+
+One option for mitigation of this issue would be to use
+[resource quotas](/docs/concepts/policy/resource-quotas/#object-count-quota)
+to limit the quantity of objects which can be created.
+-->
+## Kubernetes RBAC - 拒绝服务攻击的风险 {#denial-of-service-risks}
+
+### 对象创建拒绝服务 {#object-creation-dos}
+有权在集群中创建对象的用户根据创建对象的大小和数量可能会创建足够大的对象，
+产生拒绝服务状况，如 [Kubernetes 使用的 etcd 容易受到 OOM 攻击](https://github.com/kubernetes/kubernetes/issues/107325)中的讨论。
+允许太不受信任或者不受信任的用户对系统进行有限的访问在多租户集群中是特别重要的。
+
+缓解此问题的一种选择是使用[资源配额](/zh-cn/docs/concepts/policy/resource-quotas/#object-count-quota)以限制可以创建的对象数量。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* To learn more about RBAC, see the [RBAC documentation](/docs/reference/access-authn-authz/rbac/).
+-->
+* 了解有关 RBAC 的更多信息，请参阅 [RBAC 文档](/zh-cn/docs/reference/access-authn-authz/rbac/)。
diff --git a/content/zh-cn/docs/concepts/security/windows-security.md b/content/zh-cn/docs/concepts/security/windows-security.md
new file mode 100644
index 0000000000..3cdf109039
--- /dev/null
+++ b/content/zh-cn/docs/concepts/security/windows-security.md
@@ -0,0 +1,109 @@
+---
+title: Windows 节点的安全性
+content_type: concept
+weight: 40
+---
+<!--
+reviewers:
+- jayunit100
+- jsturtevant
+- marosset
+- perithompson
+  title:    Security For Windows Nodes
+  content_type: concept
+  weight: 75
+-->
+
+<!-- overview -->
+
+<!--
+This page describes security considerations and best practices specific to the Windows operating system.
+-->
+本篇介绍特定于 Windows 操作系统的安全注意事项和最佳实践。
+
+<!-- body -->
+
+<!--
+## Protection for Secret data on nodes
+-->
+## 保护节点上的 Secret 数据   {#protection-for-secret-data-on-nodes}
+
+<!--
+On Windows, data from Secrets are written out in clear text onto the node's local
+storage (as compared to using tmpfs / in-memory filesystems on Linux). As a cluster
+operator, you should take both of the following additional measures:
+-->
+在 Windows 上，来自 Secret 的数据以明文形式写入节点的本地存储
+（与在 Linux 上使用 tmpfs / 内存中文件系统不同）。
+作为集群操作员，你应该采取以下两项额外措施：
+
+<!--
+1. Use file ACLs to secure the Secrets' file location.
+1. Apply volume-level encryption using [BitLocker](https://docs.microsoft.com/windows/security/information-protection/bitlocker/bitlocker-how-to-deploy-on-windows-server).
+-->
+1. 使用文件 ACL 来保护 Secret 的文件位置。
+2. 使用 [BitLocker](https://docs.microsoft.com/windows/security/information-protection/bitlocker/bitlocker-how-to-deploy-on-windows-server)
+   进行卷级加密。
+
+<!--
+## Container users
+-->
+## 容器用户   {#container-users}
+
+<!--
+[RunAsUsername](/docs/tasks/configure-pod-container/configure-runasusername)
+can be specified for Windows Pods or containers to execute the container
+processes as specific user. This is roughly equivalent to
+[RunAsUser](/docs/concepts/policy/pod-security-policy/#users-and-groups).
+-->
+可以为 Windows Pod 或容器指定 [RunAsUsername](/zh-cn/docs/tasks/configure-pod-container/configure-runasusername)
+以作为特定用户执行容器进程。这大致相当于 [RunAsUser](/zh-cn/docs/concepts/security/pod-security-policy/#users-and-groups)。
+
+<!--
+Windows containers offer two default user accounts, ContainerUser and ContainerAdministrator.
+The differences between these two user accounts are covered in
+[When to use ContainerAdmin and ContainerUser user accounts](https://docs.microsoft.com/virtualization/windowscontainers/manage-containers/container-security#when-to-use-containeradmin-and-containeruser-user-accounts) within Microsoft's _Secure Windows containers_ documentation.
+-->
+Windows 容器提供两个默认用户帐户，ContainerUser 和 ContainerAdministrator。
+在微软的 Windows 容器安全文档
+[何时使用 ContainerAdmin 和 ContainerUser 用户帐户](https://docs.microsoft.com/zh-cn/virtualization/windowscontainers/manage-containers/container-security#when-to-use-containeradmin-and-containeruser-user-accounts)
+中介绍了这两个用户帐户之间的区别。
+
+<!--
+Local users can be added to container images during the container build process.
+-->
+在容器构建过程中，可以将本地用户添加到容器镜像中。
+
+{{< note >}}
+<!--
+* [Nano Server](https://hub.docker.com/_/microsoft-windows-nanoserver) based images run as `ContainerUser` by default
+* [Server Core](https://hub.docker.com/_/microsoft-windows-servercore) based images run as `ContainerAdministrator` by default
+-->
+* 基于 [Nano Server](https://hub.docker.com/_/microsoft-windows-nanoserver) 的镜像默认以 `ContainerUser` 运行
+* 基于 [Server Core](https://hub.docker.com/_/microsoft-windows-servercore) 的镜像默认以 `ContainerAdministrator` 运行
+{{< /note >}}
+
+<!--
+Windows containers can also run as Active Directory identities by utilizing [Group Managed Service Accounts](/docs/tasks/configure-pod-container/configure-gmsa/)
+-->
+Windows 容器还可以通过使用[组管理的服务账号](/zh-cn/docs/tasks/configure-pod-container/configure-gmsa/)作为
+Active Directory 身份运行。
+
+<!--
+## Pod-level security isolation
+-->
+## Pod 级安全隔离   {#pod-level-security-isolation}
+
+<!--
+Linux-specific pod security context mechanisms (such as SELinux, AppArmor, Seccomp, or custom
+POSIX capabilities) are not supported on Windows nodes.
+-->
+Windows 节点不支持特定于 Linux 的 Pod 安全上下文机制（例如 SELinux、AppArmor、Seccomp 或自定义 POSIX 权能字）。
+
+<!--
+Privileged containers are [not supported](/docs/concepts/windows/intro/#compatibility-v1-pod-spec-containers-securitycontext) on Windows.
+Instead [HostProcess containers](/docs/tasks/configure-pod-container/create-hostprocess-pod) can be used on Windows to perform many of the tasks performed by privileged containers on Linux.
+-->
+Windows 上[不支持](/zh-cn/docs/concepts/windows/intro/#compatibility-v1-pod-spec-containers-securitycontext)特权容器。
+然而，可以在 Windows 上使用 [HostProcess 容器](/zh-cn/docs/tasks/configure-pod-container/create-hostprocess-pod)来执行
+Linux 上特权容器执行的许多任务。
diff --git a/content/zh-cn/docs/concepts/services-networking/_index.md b/content/zh-cn/docs/concepts/services-networking/_index.md
new file mode 100644
index 0000000000..80c78e4b8b
--- /dev/null
+++ b/content/zh-cn/docs/concepts/services-networking/_index.md
@@ -0,0 +1,103 @@
+---
+title: "服务、负载均衡和联网"
+weight: 60
+description: Kubernetes 网络背后的概念和资源。
+---
+
+<!--
+## The Kubernetes network model
+
+Every [`Pod`](/docs/concepts/workloads/pods/) in a cluster gets its own unique cluster-wide IP address. 
+This means you do not need to explicitly create links between `Pods` and you
+almost never need to deal with mapping container ports to host ports.  
+This creates a clean, backwards-compatible model where `Pods` can be treated
+much like VMs or physical hosts from the perspectives of port allocation,
+naming, service discovery, [load balancing](/docs/concepts/services-networking/ingress/#load-balancing),
+application configuration, and migration.
+-->
+## Kubernetes 网络模型   {#the-kubernetes-network-model}
+
+集群中每一个 [`Pod`](/zh-cn/docs/concepts/workloads/pods/) 都会获得自己的、
+独一无二的 IP 地址，
+这就意味着你不需要显式地在 `Pod` 之间创建链接，你几乎不需要处理容器端口到主机端口之间的映射。
+这将形成一个干净的、向后兼容的模型；在这个模型里，从端口分配、命名、服务发现、
+[负载均衡](/zh-cn/docs/concepts/services-networking/ingress/#load-balancing)、
+应用配置和迁移的角度来看，`Pod` 可以被视作虚拟机或者物理主机。
+
+<!--
+Kubernetes imposes the following fundamental requirements on any networking
+implementation (barring any intentional network segmentation policies):
+-->
+Kubernetes 强制要求所有网络设施都满足以下基本要求（从而排除了有意隔离网络的策略）：
+
+<!--
+* pods can communicate with all other pods on any other [node](/docs/concepts/architecture/nodes/) 
+  without NAT
+* agents on a node (e.g. system daemons, kubelet) can communicate with all
+  pods on that node
+-->
+* Pod 能够与所有其他[节点](/zh-cn/docs/concepts/architecture/nodes/)上的 Pod 通信，
+  且不需要网络地址转译（NAT）
+* 节点上的代理（比如：系统守护进程、kubelet）可以和节点上的所有 Pod 通信
+
+<!--
+Note: For those platforms that support `Pods` running in the host network (e.g.
+Linux), when pods are attached to the host network of a node they can still communicate 
+with all pods on all nodes without NAT.
+-->
+说明：对于支持在主机网络中运行 `Pod` 的平台（比如：Linux），
+当 Pod 挂接到节点的宿主网络上时，它们仍可以不通过 NAT 和所有节点上的 Pod 通信。
+
+<!--
+This model is not only less complex overall, but it is principally compatible
+with the desire for Kubernetes to enable low-friction porting of apps from VMs
+to containers.  If your job previously ran in a VM, your VM had an IP and could
+talk to other VMs in your project.  This is the same basic model.
+
+Kubernetes IP addresses exist at the `Pod` scope - containers within a `Pod`
+share their network namespaces - including their IP address and MAC address.
+This means that containers within a `Pod` can all reach each other's ports on
+`localhost`. This also means that containers within a `Pod` must coordinate port
+usage, but this is no different from processes in a VM.  This is called the
+"IP-per-pod" model.
+-->
+这个模型不仅不复杂，而且还和 Kubernetes 的实现从虚拟机向容器平滑迁移的初衷相符，
+如果你的任务开始是在虚拟机中运行的，你的虚拟机有一个 IP，
+可以和项目中其他虚拟机通信。这里的模型是基本相同的。
+
+Kubernetes 的 IP 地址存在于 `Pod` 范围内 —— 容器共享它们的网络命名空间 ——
+包括它们的 IP 地址和 MAC 地址。
+这就意味着 `Pod` 内的容器都可以通过 `localhost` 到达对方端口。
+这也意味着 `Pod` 内的容器需要相互协调端口的使用，但是这和虚拟机中的进程似乎没有什么不同，
+这也被称为“一个 Pod 一个 IP”模型。
+
+<!--
+How this is implemented is a detail of the particular container runtime in use.
+
+It is possible to request ports on the `Node` itself which forward to your `Pod`
+(called host ports), but this is a very niche operation. How that forwarding is
+implemented is also a detail of the container runtime. The `Pod` itself is
+blind to the existence or non-existence of host ports.
+-->
+如何实现以上需求是所使用的特定容器运行时的细节。
+
+也可以在 `Node` 本身请求端口，并用这类端口转发到你的 `Pod`（称之为主机端口），
+但这是一个很特殊的操作。转发方式如何实现也是容器运行时的细节。
+`Pod` 自己并不知道这些主机端口的存在。
+
+<!--
+Kubernetes networking addresses four concerns:
+- Containers within a Pod [use networking to communicate](/docs/concepts/services-networking/dns-pod-service/) via loopback.
+- Cluster networking provides communication between different Pods.
+- The [Service resource](/docs/concepts/services-networking/service/) lets you [expose an application running in Pods](/docs/concepts/services-networking/connect-applications-service/) to be reachable from outside your cluster.
+- You can also use Services to [publish services only for consumption inside your cluster](/docs/concepts/services-networking/service-traffic-policy/).
+-->
+
+Kubernetes 网络解决四方面的问题：
+
+- 一个 Pod 中的容器之间[通过本地回路（loopback）通信](/zh-cn/docs/concepts/services-networking/dns-pod-service/)。
+- 集群网络在不同 pod 之间提供通信。
+- [Service 资源](/zh-cn/docs/concepts/services-networking/service/)允许你
+  [向外暴露 Pods 中运行的应用](/zh-cn/docs/concepts/services-networking/connect-applications-service/)，
+  以支持来自于集群外部的访问。
+- 可以使用 Services 来[发布仅供集群内部使用的服务](/zh-cn/docs/concepts/services-networking/service-traffic-policy/)。
diff --git a/content/zh/docs/concepts/services-networking/connect-applications-service.md b/content/zh-cn/docs/concepts/services-networking/connect-applications-service.md
similarity index 70%
rename from content/zh/docs/concepts/services-networking/connect-applications-service.md
rename to content/zh-cn/docs/concepts/services-networking/connect-applications-service.md
index e75422a41b..16668c1e46 100644
--- a/content/zh/docs/concepts/services-networking/connect-applications-service.md
+++ b/content/zh-cn/docs/concepts/services-networking/connect-applications-service.md
@@ -9,30 +9,25 @@ weight: 30
 <!--
 ## The Kubernetes model for connecting containers
 
-Now that you have a continuously running, replicated application you can expose it on a network. Before discussing the Kubernetes approach to networking, it is worthwhile to contrast it with the "normal" way networking works with Docker.
+Now that you have a continuously running, replicated application you can expose it on a network.
 
-By default, Docker uses host-private networking, so containers can talk to other containers only if they are on the same machine. In order for Docker containers to communicate across nodes, there must be allocated ports on the machine's own IP address, which are then forwarded or proxied to the containers. This obviously means that containers must either coordinate which ports they use very carefully or ports must be allocated dynamically.
-
-Coordinating port allocations across multiple developers or teams that provide containers is very difficult to do at scale, and exposes users to cluster-level issues outside of their control. Kubernetes assumes that pods can communicate with other pods, regardless of which host they land on. Kubernetes gives every pod its own cluster-private IP address, so you do not need to explicitly create links between pods or map container ports to host ports. This means that containers within a Pod can all reach each other's ports on localhost, and all pods in a cluster can see each other without NAT. The rest of this document elaborates on how you can run reliable services on such a networking model.
+Kubernetes assumes that pods can communicate with other pods, regardless of which host they land on. Kubernetes gives every pod its own cluster-private IP address, so you do not need to explicitly create links between pods or map container ports to host ports. This means that containers within a Pod can all reach each other's ports on localhost, and all pods in a cluster can see each other without NAT. The rest of this document elaborates on how you can run reliable services on such a networking model.
 
 This guide uses a simple nginx server to demonstrate proof of concept.
 -->
 
-## Kubernetes 连接容器模型
+## Kubernetes 连接容器的模型
 
 既然有了一个持续运行、可复制的应用，我们就能够将它暴露到网络上。
-在讨论 Kubernetes 网络连接的方式之前，非常值得与 Docker 中 “正常” 方式的网络进行对比。
 
-默认情况下，Docker 使用私有主机网络连接，只能与同在一台机器上的容器进行通信。
-为了实现容器的跨节点通信，必须在机器自己的 IP 上为这些容器分配端口，为容器进行端口转发或者代理。
-
-多个开发人员或是提供容器的团队之间协调端口的分配很难做到规模化，那些难以控制的集群级别的问题，都会交由用户自己去处理。
 Kubernetes 假设 Pod 可与其它 Pod 通信，不管它们在哪个主机上。
-Kubernetes 给 Pod 分配属于自己的集群私有 IP 地址，所以没必要在 Pod 或映射到的容器的端口和主机端口之间显式地创建连接。
-这表明了在 Pod 内的容器都能够连接到本地的每个端口，集群中的所有 Pod 不需要通过 NAT 转换就能够互相看到。
-文档的剩余部分详述如何在一个网络模型之上运行可靠的服务。
+Kubernetes 给每一个 Pod 分配一个集群私有 IP 地址，所以没必要在
+Pod 与 Pod 之间创建连接或将容器的端口映射到主机端口。
+这意味着同一个 Pod 内的所有容器能通过 localhost 上的端口互相连通，集群中的所有 Pod
+也不需要通过 NAT 转换就能够互相看到。
+本文档的剩余部分详述如何在上述网络模型之上运行可靠的服务。
 
-该指南使用一个简单的 Nginx server 来演示并证明谈到的概念。
+本指南使用一个简单的 Nginx 服务器来演示概念验证原型。
 
 <!-- body -->
 
@@ -45,7 +40,7 @@ Create an nginx Pod, and note that it has a container port specification:
 ## 在集群中暴露 Pod
 
 我们在之前的示例中已经做过，然而让我们以网络连接的视角再重做一遍。
-创建一个 Nginx Pod，并且注意，它有一个容器端口的规范：
+创建一个 Nginx Pod，注意其中包含一个容器端口的规约：
 
 {{< codenew file="service/networking/run-my-nginx.yaml" >}}
 
@@ -77,16 +72,17 @@ kubectl get pods -l run=my-nginx -o yaml | grep podIP
 ```
 
 <!--
-You should be able to ssh into any node in your cluster and curl both IPs. Note that the containers are *not* using port 80 on the node, nor are there any special NAT rules to route traffic to the pod. This means you can run multiple nginx pods on the same node all using the same containerPort and access them from any other pod or node in your cluster using IP. Like Docker, ports can still be published to the host node's interfaces, but the need for this is radically diminished because of the networking model.
+You should be able to ssh into any node in your cluster and use a tool such as `curl` to make queries against both IPs. Note that the containers are *not* using port 80 on the node, nor are there any special NAT rules to route traffic to the pod. This means you can run multiple nginx pods on the same node all using the same `containerPort`, and access them from any other pod or node in your cluster using the assigned IP address for the Service. If you want to arrange for a specific port on the host Node to be forwarded to backing Pods, you can - but the networking model should mean that you do not need to do so.
 
-You can read more about [how we achieve this](/docs/concepts/cluster-administration/networking/#how-to-achieve-this) if you're curious.
+You can read more about the [Kubernetes Networking Model](/docs/concepts/cluster-administration/networking/#the-kubernetes-network-model) if you're curious.
 -->
-应该能够通过 ssh 登录到集群中的任何一个节点上，使用 curl 也能调通所有 IP 地址。
+你应该能够通过 ssh 登录到集群中的任何一个节点上，并使用诸如 `curl` 之类的工具向这两个 IP 地址发出查询请求。
 需要注意的是，容器不会使用该节点上的 80 端口，也不会使用任何特定的 NAT 规则去路由流量到 Pod 上。
-这意味着可以在同一个节点上运行多个 Pod，使用相同的容器端口，并且可以从集群中任何其他的 Pod 或节点上使用 IP 的方式访问到它们。
-像 Docker 一样，端口能够被发布到主机节点的接口上，但是出于网络模型的原因应该从根本上减少这种用法。
+这意味着可以在同一个节点上运行多个 Nginx Pod，使用相同的 `containerPort`，并且可以从集群中任何其他的
+Pod 或节点上使用 IP 的方式访问到它们。
+如果你想的话，你依然可以将宿主节点的某个端口的流量转发到 Pod 中，但是出于网络模型的原因，你不必这么做。
 
-如果对此好奇，可以获取更多关于 [如何实现网络模型](/zh/docs/concepts/cluster-administration/networking/#how-to-achieve-this)  的内容。
+如果对此好奇，请参考 [Kubernetes 网络模型](/zh-cn/docs/concepts/cluster-administration/networking/#the-kubernetes-network-model)。
 
 <!--
 ## Creating a Service
@@ -99,12 +95,13 @@ You can create a Service for your 2 nginx replicas with `kubectl expose`:
 -->
 ## 创建 Service
 
-我们有 Pod 在一个扁平的、集群范围的地址空间中运行 Nginx 服务，可以直接连接到这些 Pod，但如果某个节点死掉了会发生什么呢？
+我们有一组在一个扁平的、集群范围的地址空间中运行 Nginx 服务的 Pod。
+理论上，你可以直接连接到这些 Pod，但如果某个节点死掉了会发生什么呢？
 Pod 会终止，Deployment 将创建新的 Pod，且使用不同的 IP。这正是 Service 要解决的问题。
 
-Kubernetes Service 从逻辑上定义了运行在集群中的一组 Pod，这些 Pod 提供了相同的功能。
+Kubernetes Service 是集群中提供相同功能的一组 Pod 的抽象表达。
 当每个 Service 创建时，会被分配一个唯一的 IP 地址（也称为 clusterIP）。
-这个 IP 地址与一个 Service 的生命周期绑定在一起，当 Service 存在的时候它也不会改变。
+这个 IP 地址与 Service 的生命周期绑定在一起，只要 Service 存在，它就不会改变。
 可以配置 Pod 使它与 Service 进行通信，Pod 知道与 Service 通信将被自动地负载均衡到该 Service 中的某些 Pod 上。
 
 可以使用 `kubectl expose` 命令为 2个 Nginx 副本创建一个 Service：
@@ -120,7 +117,7 @@ service/my-nginx exposed
 This is equivalent to `kubectl apply -f` the following yaml:
 -->
 
-这等价于使用 `kubectl create -f` 命令创建，对应如下的 yaml 文件：
+这等价于使用 `kubectl create -f` 命令及如下的 yaml 文件创建：
 
 {{< codenew file="service/networking/nginx-svc.yaml" >}}
 
@@ -134,11 +131,11 @@ View [Service](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/
 API object to see the list of supported fields in service definition.
 Check your Service:
 -->
-上述规约将创建一个 Service，对应具有标签 `run: my-nginx` 的 Pod，目标 TCP 端口 80，
-并且在一个抽象的 Service 端口（`targetPort`：容器接收流量的端口；`port`：抽象的 Service
-端口，可以使任何其它 Pod 访问该 Service 的端口）上暴露。
-查看 [Service API 对象](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#service-v1-core)
-了解 Service 定义支持的字段列表。
+上述规约将创建一个 Service，该 Service 会将所有具有标签 `run: my-nginx` 的 Pod 的 TCP
+80 端口暴露到一个抽象的 Service 端口上（`targetPort`：容器接收流量的端口；`port`：可任意取值的抽象的 Service
+端口，其他 Pod 通过该端口访问 Service）。
+查看 [Service](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#service-v1-core)
+API 对象以了解 Service 所能接受的字段列表。
 查看你的 Service 资源:
 
 ```shell
@@ -158,7 +155,7 @@ matching the Service's selector will automatically get added to the endpoints.
 Check the endpoints, and note that the IPs are the same as the Pods created in
 the first step:
 -->
-正如前面所提到的，一个 Service 由一组 backend Pod 组成。这些 Pod 通过 `endpoints` 暴露出来。
+正如前面所提到的，一个 Service 由一组 Pod 提供支撑。这些 Pod 通过 `endpoints` 暴露出来。
 Service Selector 将持续评估，结果被 POST 到一个名称为 `my-nginx` 的 Endpoint 对象上。
 当 Pod 终止后，它会自动从 Endpoint 中移除，新的能够匹配上 Service Selector 的 Pod 将自动地被添加到 Endpoint 中。
 检查该 Endpoint，注意到 IP 地址与在第一步创建的 Pod 是相同的。
@@ -194,9 +191,9 @@ never hits the wire. If you're curious about how this works you can read more
 about the [service proxy](/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies).
 -->
 
-现在，能够从集群中任意节点上使用 curl 命令请求 Nginx Service  `<CLUSTER-IP>:<PORT>` 。
+现在，你应该能够从集群中任意节点上使用 curl 命令向 `<CLUSTER-IP>:<PORT>` 发送请求以访问 Nginx Service。
 注意 Service IP 完全是虚拟的，它从来没有走过网络，如果对它如何工作的原理感到好奇，
-可以进一步阅读[服务代理](/zh/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies)
+可以进一步阅读[服务代理](/zh-cn/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies)
 的内容。
 
 <!--
@@ -204,12 +201,12 @@ about the [service proxy](/docs/concepts/services-networking/service/#virtual-ip
 
 Kubernetes supports 2 primary modes of finding a Service - environment variables
 and DNS. The former works out of the box while the latter requires the
-[CoreDNS cluster addon](https://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/dns/coredns).
+[CoreDNS cluster addon](https://releases.k8s.io/{{< param "fullversion" >}}/cluster/addons/dns/coredns).
 -->
 ## 访问 Service
 
-Kubernetes支持两种查找服务的主要模式: 环境变量和DNS。 前者开箱即用，而后者则需要[CoreDNS集群插件]
-[CoreDNS 集群插件](https://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/dns/coredns).
+Kubernetes支持两种查找服务的主要模式: 环境变量和 DNS。前者开箱即用，而后者则需要
+[CoreDNS 集群插件](https://releases.k8s.io/{{< param "fullversion" >}}/cluster/addons/dns/coredns).
 
 <!--
 If the service environment variables are not desired (because possible clashing with expected program ones,
@@ -231,8 +228,9 @@ the environment of your running nginx Pods (your Pod name will be different):
 -->
 ### 环境变量
 
-当 Pod 在 Node 上运行时，kubelet 会为每个活跃的 Service 添加一组环境变量。
-这会有一个顺序的问题。想了解为何，检查正在运行的 Nginx Pod 的环境变量（Pod 名称将不会相同）：
+当 Pod 在节点上运行时，kubelet 会针对每个活跃的 Service 为 Pod 添加一组环境变量。
+这就引入了一个顺序的问题。为解释这个问题，让我们先检查正在运行的 Nginx Pod
+的环境变量（你的环境中的 Pod 名称将会与下面示例命令中的不同）：
 
 ```shell
 kubectl exec my-nginx-3800858182-jr4a2 -- printenv | grep SERVICE
@@ -254,10 +252,11 @@ replicas. This will give you scheduler-level Service spreading of your Pods
 variables:
 -->
 
-注意，还没有谈及到 Service。这是因为创建副本先于 Service。
-这样做的另一个缺点是，调度器可能在同一个机器上放置所有 Pod，如果该机器宕机则所有的 Service 都会挂掉。
-正确的做法是，我们杀掉 2 个 Pod，等待 Deployment 去创建它们。
-这次 Service 会 *先于* 副本存在。这将实现调度器级别的 Service，能够使 Pod 分散创建（假定所有的 Node 都具有同样的容量），以及正确的环境变量：
+能看到环境变量中并没有你创建的 Service 相关的值。这是因为副本的创建先于 Service。
+这样做的另一个缺点是，调度器可能会将所有 Pod 部署到同一台机器上，如果该机器宕机则整个 Service 都会离线。
+要改正的话，我们可以先终止这 2 个 Pod，然后等待 Deployment 去重新创建它们。
+这次 Service 会*先于*副本存在。这将实现调度器级别的 Pod 按 Service
+分布（假定所有的节点都具有同样的容量），并提供正确的环境变量：
 
 ```shell
 kubectl scale deployment my-nginx --replicas=0; kubectl scale deployment my-nginx --replicas=2;
@@ -274,7 +273,7 @@ my-nginx-3800858182-j4rm4   1/1       Running   0          5s      10.244.3.8
 You may notice that the pods have different names, since they are killed and recreated.
 -->
 
-可能注意到，Pod 具有不同的名称，因为它们被杀掉后并被重新创建。
+你可能注意到，Pod 具有不同的名称，这是因为它们是被重新创建的。
 
 ```shell
 kubectl exec my-nginx-3800858182-e9ihh -- printenv | grep SERVICE
@@ -293,8 +292,8 @@ KUBERNETES_SERVICE_PORT_HTTPS=443
 Kubernetes offers a DNS cluster addon Service that automatically assigns dns names to other Services. You can check if it's running on your cluster:
 -->
 
-Kubernetes 提供了一个 DNS 插件 Service，它使用 skydns 自动为其它 Service 指派 DNS 名字。
-如果它在集群中处于运行状态，可以通过如下命令来检查：
+Kubernetes 提供了一个自动为其它 Service 分配 DNS 名字的 DNS 插件 Service。
+你可以通过如下命令检查它是否在工作：
 
 ```shell
 kubectl get services kube-dns --namespace=kube-system
@@ -305,18 +304,15 @@ kube-dns   ClusterIP   10.0.0.10    <none>        53/UDP,53/TCP   8m
 ```
 
 <!--
-If it isn't running, you can [enable it](http://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/dns/kube-dns/README.md#how-do-i-configure-it).
-
 The rest of this section will assume you have a Service with a long lived IP
 (my-nginx), and a DNS server that has assigned a name to that IP. Here we use the CoreDNS cluster addon (application name `kube-dns`), so you can talk to the Service from any pod in your cluster using standard methods (e.g. `gethostbyname()`). If CoreDNS isn't running, you can enable it referring to the [CoreDNS README](https://github.com/coredns/deployment/tree/master/kubernetes) or [Installing CoreDNS](/docs/tasks/administer-cluster/coredns/#installing-coredns). Let's run another curl application to test this:
 -->
-如果没有在运行，可以[启用它](https://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/dns/kube-dns/README.md#how-do-i-configure-it)。
-本段剩余的内容，将假设已经有一个 Service，它具有一个长久存在的 IP（my-nginx），
-一个为该 IP 指派名称的 DNS 服务器。 这里我们使用 CoreDNS 集群插件（应用名为 `kube-dns`），
-所以可以通过标准做法，使在集群中的任何 Pod 都能与该 Service 通信（例如：`gethostbyname()`）。
+本段剩余的内容假设你已经有一个拥有持久 IP 地址的 Service（my-nginx），以及一个为其
+IP 分配名称的 DNS 服务器。 这里我们使用 CoreDNS 集群插件（应用名为 `kube-dns`），
+所以在集群中的任何 Pod 中，你都可以使用标准方法（例如：`gethostbyname()`）与该 Service 通信。
 如果 CoreDNS 没有在运行，你可以参照
-[CoreDNS README](https://github.com/coredns/deployment/tree/master/kubernetes) 或者
-[安装 CoreDNS](/zh/docs/tasks/administer-cluster/coredns/#installing-coredns) 来启用它。
+[CoreDNS README](https://github.com/coredns/deployment/tree/master/kubernetes)
+或者[安装 CoreDNS](/zh-cn/docs/tasks/administer-cluster/coredns/#installing-coredns) 来启用它。
 让我们运行另一个 curl 应用来进行测试：
 
 ```shell
@@ -351,21 +347,21 @@ Till now we have only accessed the nginx server from within the cluster. Before
 * An nginx server configured to use the certificates
 * A [secret](/docs/concepts/configuration/secret/) that makes the certificates accessible to pods
 
-You can acquire all these from the [nginx https example](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/https-nginx/). This requires having go and make tools installed. If you don't want to install those, then follow the manual steps later. In short:
+You can acquire all these from the [nginx https example](https://github.com/kubernetes/examples/tree/master/staging/https-nginx/). This requires having go and make tools installed. If you don't want to install those, then follow the manual steps later. In short:
 -->
 
 ## 保护 Service {#securing-the-service}
 
 到现在为止，我们只在集群内部访问了 Nginx 服务器。在将 Service 暴露到因特网之前，我们希望确保通信信道是安全的。
-为实现这一目的，可能需要：
+为实现这一目的，需要：
 
-* 用于 HTTPS 的自签名证书（除非已经有了一个识别身份的证书）
+* 用于 HTTPS 的自签名证书（除非已经有了一个身份证书）
 * 使用证书配置的 Nginx 服务器
-* 使证书可以访问 Pod 的 [Secret](/zh/docs/concepts/configuration/secret/)
+* 使 Pod 可以访问证书的 [Secret](/zh-cn/docs/concepts/configuration/secret/)
 
-你可以从 [Nginx https 示例](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/https-nginx/)
-获取所有上述内容。你需要安装 go 和 make 工具。如果你不想安装这些软件，可以按照
-后文所述的手动执行步骤执行操作。简要过程如下：
+你可以从
+[Nginx https 示例](https://github.com/kubernetes/examples/tree/master/staging/https-nginx/)获取所有上述内容。
+你需要安装 go 和 make 工具。如果你不想安装这些软件，可以按照后文所述的手动执行步骤执行操作。简要过程如下：
 
 ```shell
 make keys KEY=/tmp/nginx.key CERT=/tmp/nginx.crt
@@ -385,19 +381,6 @@ nginxsecret           kubernetes.io/tls                     2         1m
 
 <!--
 And also the configmap:
-```shell
-kubectl create configmap nginxconfigmap --from-file=default.conf
-```
-```
-configmap/nginxconfigmap created
-```
-```shell
-kubectl get configmaps
-```
-```
-NAME             DATA   AGE
-nginxconfigmap   1      114s
-```
 -->
 以下是 configmap：
 ```shell
@@ -420,9 +403,9 @@ Following are the manual steps to follow in case you run into problems running m
 以下是你在运行 make 时遇到问题时要遵循的手动步骤（例如，在 Windows 上）：
 
 ```shell
-# Create a public private key pair
+# 创建公钥和相对应的私钥
 openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /d/tmp/nginx.key -out /d/tmp/nginx.crt -subj "/CN=my-nginx/O=my-nginx"
-# Convert the keys to base64 encoding
+# 对密钥实施 base64 编码
 cat /d/tmp/nginx.crt | base64
 cat /d/tmp/nginx.key | base64
 ```
@@ -447,7 +430,7 @@ data:
 <!--
 Now create the secrets using the file:
 -->
-现在使用文件创建 Secrets：
+现在使用文件创建 Secret：
 
 ```shell
 kubectl apply -f nginxsecrets.yaml
@@ -462,7 +445,7 @@ nginxsecret           kubernetes.io/tls                     2         1m
 <!--
 Now modify your nginx replicas to start an https server using the certificate in the secret, and the Service, to expose both ports (80 and 443):
 -->
-现在修改 nginx 副本，启动一个使用在秘钥中的证书的 HTTPS 服务器和 Service，暴露端口（80 和 443）：
+现在修改 nginx 副本以启动一个使用 Secret 中的证书的 HTTPS 服务器以及相应的用于暴露其端口（80 和 443）的 Service：
 
 {{< codenew file="service/networking/nginx-secure-app.yaml" >}}
 
@@ -470,7 +453,7 @@ Now modify your nginx replicas to start an https server using the certificate in
 Noteworthy points about the nginx-secure-app manifest:
 
 - It contains both Deployment and Service specification in the same file.
-- The [nginx server](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/https-nginx/default.conf)
+- The [nginx server](https://github.com/kubernetes/examples/tree/master/staging/https-nginx/default.conf)
   serves HTTP traffic on port 80 and HTTPS traffic on 443, and nginx Service
   exposes both ports.
 - Each container has access to the keys through a volume mounted at `/etc/nginx/ssl`.
@@ -478,10 +461,10 @@ Noteworthy points about the nginx-secure-app manifest:
 -->
 关于 nginx-secure-app 清单，值得注意的几点如下：
 
-- 它在相同的文件中包含了 Deployment 和 Service 的规约
-- [nginx 服务器](https://github.com/kubernetes/kubernetes/tree/{{< param "githubbranch" >}}/staging/https-nginx/default.conf)
-  处理 80 端口上的 HTTP 流量，以及 443  端口上的 HTTPS 流量，Nginx Service 暴露了这两个端口。
-- 每个容器访问挂载在 /etc/nginx/ssl 卷上的秘钥。这需要在 Nginx 服务器启动之前安装好。
+- 它将 Deployment 和 Service 的规约放在了同一个文件中。
+- [Nginx 服务器](https://github.com/kubernetes/examples/tree/master/staging/https-nginx/default.conf)通过
+  80 端口处理 HTTP 流量，通过 443 端口处理 HTTPS 流量，而 Nginx Service 则暴露了这两个端口。
+- 每个容器能通过挂载在 `/etc/nginx/ssl` 的卷访问秘钥。卷和密钥需要在 Nginx 服务器启动*之前*配置好。
 
 ```shell
 kubectl delete deployments,svc my-nginx; kubectl create -f ./nginx-secure-app.yaml
@@ -508,7 +491,7 @@ Let's test this from a pod (the same secret is being reused for simplicity, the
 注意最后一步我们是如何提供 `-k` 参数执行 curl 命令的，这是因为在证书生成时，
 我们不知道任何关于运行 nginx 的 Pod 的信息，所以不得不在执行 curl 命令时忽略 CName 不匹配的情况。
 通过创建 Service，我们连接了在证书中的 CName 与在 Service 查询时被 Pod 使用的实际 DNS 名字。
-让我们从一个 Pod 来测试（为了简化使用同一个秘钥，Pod 仅需要使用 nginx.crt 去访问 Service）：
+让我们从一个 Pod 来测试（为了方便，这里使用同一个 Secret，Pod 仅需要使用 nginx.crt 去访问 Service）：
 
 {{< codenew file="service/networking/curlpod.yaml" >}}
 
@@ -538,10 +521,10 @@ node has a public IP.
 -->
 ## 暴露 Service
 
-对我们应用的某些部分，可能希望将 Service 暴露在一个外部 IP 地址上。
+对应用的某些部分，你可能希望将 Service 暴露在一个外部 IP 地址上。
 Kubernetes 支持两种实现方式：NodePort 和 LoadBalancer。
-在上一段创建的 Service 使用了 `NodePort`，因此 Nginx https 副本已经就绪，
-如果使用一个公网 IP，能够处理 Internet 上的流量。
+在上一段创建的 Service 使用了 `NodePort`，因此，如果你的节点有一个公网
+IP，那么 Nginx HTTPS 副本已经能够处理因特网上的流量。
 
 ```shell
 kubectl get svc my-nginx -o yaml | grep nodePort -C 5
@@ -579,18 +562,18 @@ kubectl get nodes -o yaml | grep ExternalIP -C 1
       type: ExternalIP
     allocatable:
 ...
-$ curl https://<EXTERNAL-IP>:<NODE-PORT> -k
 
+$ curl https://<EXTERNAL-IP>:<NODE-PORT> -k
 ...
 <h1>Welcome to nginx!</h1>
 ```
 
 <!--
-Let's now recreate the Service to use a cloud load balancer, just change the `Type` of `my-nginx` Service from `NodePort` to `LoadBalancer`:
+Let's now recreate the Service to use a cloud load balancer. Change the `Type` of `my-nginx` Service from `NodePort` to `LoadBalancer`:
 -->
 
-让我们重新创建一个 Service，使用一个云负载均衡器，只需要将 `my-nginx` Service 的 `Type`
-由 `NodePort` 改成 `LoadBalancer`。
+让我们重新创建一个 Service 以使用云负载均衡器。
+将 `my-nginx` Service 的 `Type` 由 `NodePort` 改成 `LoadBalancer`：
 
 ```shell
 kubectl edit svc my-nginx
@@ -616,17 +599,15 @@ output, in fact, so you'll need to do `kubectl describe service my-nginx` to
 see it.  You'll see something like this:
 -->
 
-在 `EXTERNAL-IP` 列指定的 IP 地址是在公网上可用的。`CLUSTER-IP` 只在集群/私有云网络中可用。
+在 `EXTERNAL-IP` 列中的 IP 地址能在公网上被访问到。`CLUSTER-IP` 只能从集群/私有云网络中访问。
 
-注意，在 AWS 上类型 `LoadBalancer` 创建一个 ELB，它使用主机名（比较长），而不是 IP。
-它太长以至于不能适配标准 `kubectl get svc` 的输出，事实上需要通过执行 `kubectl describe service my-nginx` 命令来查看它。
+注意，在 AWS 上，类型 `LoadBalancer` 的服务会创建一个 ELB，且 ELB 使用主机名（比较长），而不是 IP。
+ELB 的主机名太长以至于不能适配标准 `kubectl get svc` 的输出，所以需要通过执行
+`kubectl describe service my-nginx` 命令来查看它。
 可以看到类似如下内容：
 
 ```shell
 kubectl describe service my-nginx
-```
-
-```
 ...
 LoadBalancer Ingress:   a320587ffd19711e5a37606cf4a74574-1142138393.us-east-1.elb.amazonaws.com
 ...
@@ -639,6 +620,6 @@ LoadBalancer Ingress:   a320587ffd19711e5a37606cf4a74574-1142138393.us-east-1.el
 * Learn more about [Connecting a Front End to a Back End Using a Service](/docs/tasks/access-application-cluster/connecting-frontend-backend/)
 * Learn more about [Creating an External Load Balancer](/docs/tasks/access-application-cluster/create-external-load-balancer/)
 -->
-* 进一步了解如何[使用 Service 访问集群中的应用](/zh/docs/tasks/access-application-cluster/service-access-application-cluster/)
-* 进一步了解如何[使用 Service 将前端连接到后端](/zh/docs/tasks/access-application-cluster/connecting-frontend-backend/)
-* 进一步了解如何[创建外部负载均衡器](/zh/docs/tasks/access-application-cluster/create-external-load-balancer/)
+* 进一步了解如何[使用 Service 访问集群中的应用](/zh-cn/docs/tasks/access-application-cluster/service-access-application-cluster/)
+* 进一步了解如何[使用 Service 将前端连接到后端](/zh-cn/docs/tasks/access-application-cluster/connecting-frontend-backend/)
+* 进一步了解如何[创建外部负载均衡器](/zh-cn/docs/tasks/access-application-cluster/create-external-load-balancer/)
diff --git a/content/zh/docs/concepts/services-networking/dns-pod-service.md b/content/zh-cn/docs/concepts/services-networking/dns-pod-service.md
similarity index 68%
rename from content/zh/docs/concepts/services-networking/dns-pod-service.md
rename to content/zh-cn/docs/concepts/services-networking/dns-pod-service.md
index 7864aad7d8..9946a88eb3 100644
--- a/content/zh/docs/concepts/services-networking/dns-pod-service.md
+++ b/content/zh-cn/docs/concepts/services-networking/dns-pod-service.md
@@ -15,11 +15,11 @@ weight: 20
 <!-- overview -->
 
 <!--
-Kubernetes creates DNS records for services and pods. You can contact
-services with consistent DNS names instead of IP addresses.
+Kubernetes creates DNS records for Services and Pods. You can contact
+Services with consistent DNS names instead of IP addresses.
 -->
-Kubernetes 为服务和 Pods 创建 DNS 记录。
-你可以使用一致的 DNS 名称而非 IP 地址来访问服务。
+Kubernetes 为 Service 和 Pod 创建 DNS 记录。
+你可以使用一致的 DNS 名称而非 IP 地址访问 Service。
 
 <!-- body -->
 
@@ -30,40 +30,39 @@ Kubernetes DNS schedules a DNS Pod and Service on the cluster, and configures
 the kubelets to tell individual containers to use the DNS Service's IP to
 resolve DNS names.
 -->
-## 介绍
+## 介绍 {#introduction}
 
-Kubernetes DNS 在集群上调度 DNS Pod 和服务，并配置 kubelet 以告知各个容器
-使用 DNS 服务的 IP 来解析 DNS 名称。
+Kubernetes DNS 除了在集群上调度 DNS Pod 和 Service，
+还配置 kubelet 以告知各个容器使用 DNS Service 的 IP 来解析 DNS 名称。
 
 <!--
 Every Service defined in the cluster (including the DNS server itself) is
-assigned a DNS name. By default, a client Pod's DNS search list includes the
-Pod's own namespace and the cluster's default domain.
+assigned a DNS name. By default, a client Pod's DNS search list includes the 
+Pod's own namespace and the cluster's default domain. 
 -->
 集群中定义的每个 Service （包括 DNS 服务器自身）都被赋予一个 DNS 名称。
-默认情况下，客户端 Pod 的 DNS 搜索列表会包含 Pod 自身的名字空间和集群
-的默认域。
+默认情况下，客户端 Pod 的 DNS 搜索列表会包含 Pod 自身的名字空间和集群的默认域。
 
 <!--
-### Namespaces of Services
+### Namespaces of Services 
 
-A DNS query may return different results based on the namespace of the pod making
-it. DNS queries that don't specify a namespace are limited to the pod's
-namespace. Access services in other namespaces by specifying it in the DNS query.
+A DNS query may return different results based on the namespace of the Pod making 
+it. DNS queries that don't specify a namespace are limited to the Pod's 
+namespace. Access Services in other namespaces by specifying it in the DNS query. 
 
-For example, consider a pod in a `test` namespace. A `data` service is in
-the `prod` namespace.
+For example, consider a Pod in a `test` namespace. A `data` service is in 
+the `prod` namespace. 
 
-A query for `data` returns no results, because it uses the pod's `test` namespace.
+A query for `data` returns no results, because it uses the Pod's `test` namespace. 
 
-A query for `data.prod` returns the intended result, because it specifies the
-namespace.
+A query for `data.prod` returns the intended result, because it specifies the 
+namespace. 
 -->
-### Service 的名字空间
+### Service 的名字空间 {#namespaces-of-services}
 
 DNS 查询可能因为执行查询的 Pod 所在的名字空间而返回不同的结果。
 不指定名字空间的 DNS 查询会被限制在 Pod 所在的名字空间内。
-要访问其他名字空间中的服务，需要在 DNS 查询中给出名字空间。
+要访问其他名字空间中的 Service，需要在 DNS 查询中指定名字空间。
 
 例如，假定名字空间 `test` 中存在一个 Pod，`prod` 名字空间中存在一个服务
 `data`。
@@ -73,14 +72,14 @@ Pod 查询 `data` 时没有返回结果，因为使用的是 Pod 的名字空间
 Pod 查询 `data.prod` 时则会返回预期的结果，因为查询中指定了名字空间。
 
 <!--
-DNS queries may be expanded using the pod's `/etc/resolv.conf`. Kubelet
-sets this file for each pod. For example, a query for just `data` may be
-expanded to `data.test.cluster.local`. The values of the `search` option
-are used to expand queries. To learn more about DNS queries, see
-[the `resolv.conf` manual page.](https://www.man7.org/linux/man-pages/man5/resolv.conf.5.html)
+DNS queries may be expanded using the Pod's `/etc/resolv.conf`. Kubelet 
+sets this file for each Pod. For example, a query for just `data` may be 
+expanded to `data.test.svc.cluster.local`. The values of the `search` option 
+are used to expand queries. To learn more about DNS queries, see 
+[the `resolv.conf` manual page.](https://www.man7.org/linux/man-pages/man5/resolv.conf.5.html) 
 -->
 DNS 查询可以使用 Pod 中的 `/etc/resolv.conf` 展开。kubelet 会为每个 Pod
-生成此文件。例如，对 `data` 的查询可能被展开为 `data.test.cluster.local`。
+生成此文件。例如，对 `data` 的查询可能被展开为 `data.test.svc.cluster.local`。
 `search` 选项的取值会被用来展开查询。要进一步了解 DNS 查询，可参阅
 [`resolv.conf` 手册页面](https://www.man7.org/linux/man-pages/man5/resolv.conf.5.html)。
 
@@ -91,7 +90,7 @@ options ndots:5
 ```
 
 <!--
-In summary, a pod in the _test_ namespace can successfully resolve either
+In summary, a Pod in the `test` namespace can successfully resolve either 
 `data.prod` or `data.prod.svc.cluster.local`.
 -->
 概括起来，名字空间 `test` 中的 Pod 可以成功地解析 `data.prod` 或者
@@ -116,7 +115,7 @@ considered implementation details and are subject to change without warning.
 For more up-to-date specification, see
 [Kubernetes DNS-Based Service Discovery](https://github.com/kubernetes/dns/blob/master/docs/specification.md).
 -->
-以下各节详细介绍了被支持的 DNS 记录类型和被支持的布局。
+以下各节详细介绍已支持的 DNS 记录类型和布局。
 其它布局、名称或者查询即使碰巧可以工作，也应视为实现细节，
 将来很可能被更改而且不会因此发出警告。
 有关最新规范请查看
@@ -127,28 +126,30 @@ For more up-to-date specification, see
 
 ### A/AAAA records
 
-"Normal" (not headless) Services are assigned a DNS A or AAAA record for a name of the
-form `my-svc.my-namespace.svc.cluster-domain.example`.  This resolves to the cluster IP
+"Normal" (not headless) Services are assigned a DNS A or AAAA record,
+depending on the IP family of the Service, for a name of the form
+`my-svc.my-namespace.svc.cluster-domain.example`.  This resolves to the cluster IP
 of the Service.
 
-"Headless" (without a cluster IP) Services are also assigned a DNS A record for
-a name of the form `my-svc.my-namespace.svc.cluster-domain.example`.  Unlike normal
-Services, this resolves to the set of IPs of the pods selected by the Service.
+"Headless" (without a cluster IP) Services are also assigned a DNS A or AAAA record,
+depending on the IP family of the Service, for a name of the form
+`my-svc.my-namespace.svc.cluster-domain.example`.  Unlike normal
+Services, this resolves to the set of IPs of the Pods selected by the Service.
 Clients are expected to consume the set or else use standard round-robin
 selection from the set.
 -->
-### 服务  {#services}
+### Services 
 
-#### A/AAAA 记录
+#### A/AAAA 记录 {#a-aaaa-records}
 
-“普通” 服务（除了无头服务）会以 `my-svc.my-namespace.svc.cluster-domain.example`
-这种名字的形式被分配一个 DNS A 或 AAAA 记录，取决于服务的 IP 协议族。
-该名称会解析成对应服务的集群 IP。
+“普通” Service（除了无头 Service）会以 `my-svc.my-namespace.svc.cluster-domain.example`
+这种名字的形式被分配一个 DNS A 或 AAAA 记录，取决于 Service 的 IP 协议族。
+该名称会解析成对应 Service 的集群 IP。
 
-“无头（Headless）” 服务（没有集群 IP）也会以
+“无头（Headless）” Service （没有集群 IP）也会以
 `my-svc.my-namespace.svc.cluster-domain.example` 这种名字的形式被指派一个 DNS A 或 AAAA 记录，
-具体取决于服务的 IP 协议族。
-与普通服务不同，这一记录会被解析成对应服务所选择的 Pod 集合的 IP。
+具体取决于 Service 的 IP 协议族。
+与普通 Service 不同，这一记录会被解析成对应 Service 所选择的 Pod IP 的集合。
 客户端要能够使用这组 IP，或者使用标准的轮转策略从这组 IP 中进行选择。
 
 <!--
@@ -158,20 +159,21 @@ SRV Records are created for named ports that are part of normal or [Headless
 Services](/docs/concepts/services-networking/service/#headless-services).
 For each named port, the SRV record would have the form
 `_my-port-name._my-port-protocol.my-svc.my-namespace.svc.cluster-domain.example`.
-For a regular service, this resolves to the port number and the domain name:
+For a regular Service, this resolves to the port number and the domain name:
 `my-svc.my-namespace.svc.cluster-domain.example`.
-For a headless service, this resolves to multiple answers, one for each pod
-that is backing the service, and contains the port number and the domain name of the pod
+For a headless Service, this resolves to multiple answers, one for each Pod
+that is backing the Service, and contains the port number and the domain name of the Pod
 of the form `auto-generated-name.my-svc.my-namespace.svc.cluster-domain.example`.
 -->
 #### SRV 记录  {#srv-records}
 
-Kubernetes 会为命名端口创建 SRV 记录，这些端口是普通服务或
-[无头服务](/zh/docs/concepts/services-networking/service/#headless-services)的一部分。
-对每个命名端口，SRV 记录具有 `_my-port-name._my-port-protocol.my-svc.my-namespace.svc.cluster-domain.example` 这种形式。
-对普通服务，该记录会被解析成端口号和域名：`my-svc.my-namespace.svc.cluster-domain.example`。
-对无头服务，该记录会被解析成多个结果，服务对应的每个后端 Pod 各一个；
-其中包含 Pod 端口号和形为 `auto-generated-name.my-svc.my-namespace.svc.cluster-domain.example`
+Kubernetes 根据普通 Service 或
+[Headless Service](/zh-cn/docs/concepts/services-networking/service/#headless-services)
+中的命名端口创建 SRV 记录。每个命名端口，
+SRV 记录格式为 `_my-port-name._my-port-protocol.my-svc.my-namespace.svc.cluster-domain.example`。
+普通 Service，该记录会被解析成端口号和域名：`my-svc.my-namespace.svc.cluster-domain.example`。
+无头 Service，该记录会被解析成多个结果，及该服务的每个后端 Pod 各一个 SRV 记录，
+其中包含 Pod 端口号和格式为 `auto-generated-name.my-svc.my-namespace.svc.cluster-domain.example`
 的域名。
 
 ## Pods
@@ -179,21 +181,20 @@ Kubernetes 会为命名端口创建 SRV 记录，这些端口是普通服务或
 <!--
 ### A/AAAA records
 
-In general a pod has the following DNS resolution:
+In general a Pod has the following DNS resolution:
 
 `pod-ip-address.my-namespace.pod.cluster-domain.example`.
 
-For example, if a pod in the `default` namespace has the IP address 172.17.0.3,
+For example, if a Pod in the `default` namespace has the IP address 172.17.0.3,
 and the domain name for your cluster is `cluster.local`, then the Pod has a DNS name:
 
 `172-17-0-3.default.pod.cluster.local`.
 
-Any pods created by a Deployment or DaemonSet exposed by a Service have the
-following DNS resolution available:
+Any Pods exposed by a Service have the following DNS resolution available:
 
-`pod-ip-address.deployment-name.my-namespace.svc.cluster-domain.example`.
+`pod-ip-address.service-name.my-namespace.svc.cluster-domain.example`.
 -->
-### A/AAAA 记录
+### A/AAAA 记录 {#a-aaaa-records}
 
 一般而言，Pod 会对应如下 DNS 名字解析：
 
@@ -204,19 +205,18 @@ following DNS resolution available:
 
 `172-17-0-3.default.pod.cluster.local`.
 
-Deployment 或通过 Service 暴露出来的 DaemonSet 所创建的 Pod 会有如下 DNS
-解析名称可用：
+通过 Service 暴露出来的所有 Pod 都会有如下 DNS 解析名称可用：
 
-`pod-ip-address.deployment-name.my-namespace.svc.cluster-domain.example`.
+`pod-ip-address.service-name.my-namespace.svc.cluster-domain.example`.
 
 <!--
 ### Pod's hostname and subdomain fields
 
-Currently when a pod is created, its hostname is the Pod's `metadata.name` value.
+Currently when a Pod is created, its hostname is the Pod's `metadata.name` value.
 
 The Pod spec has an optional `hostname` field, which can be used to specify the
 Pod's hostname. When specified, it takes precedence over the Pod's name to be
-the hostname of the pod. For example, given a Pod with `hostname` set to
+the hostname of the Pod. For example, given a Pod with `hostname` set to
 "`my-host`", the Pod will have its hostname set to "`my-host`".
 
 The Pod spec also has an optional `subdomain` field which can be used to specify
@@ -226,7 +226,7 @@ domain name (FQDN) "`foo.bar.my-namespace.svc.cluster-domain.example`".
 
 Example:
 -->
-### Pod 的 hostname 和 subdomain 字段
+### Pod 的 hostname 和 subdomain 字段 {#pod-s-hostname-and-subdomain-fields}
 
 当前，创建 Pod 时其主机名取自 Pod 的 `metadata.name` 值。
 
@@ -290,21 +290,21 @@ spec:
 ```
 
 <!--
-If there exists a headless service in the same namespace as the pod and with
+If there exists a headless Service in the same namespace as the Pod and with
 the same name as the subdomain, the cluster's DNS Server also returns an A or AAAA
 record for the Pod's fully qualified hostname.
 For example, given a Pod with the hostname set to "`busybox-1`" and the subdomain set to
 "`default-subdomain`", and a headless Service named "`default-subdomain`" in
-the same namespace, the pod will see its own FQDN as
+the same namespace, the Pod will see its own FQDN as
 "`busybox-1.default-subdomain.my-namespace.svc.cluster-domain.example`". DNS serves an
-A or AAAA record at that name, pointing to the Pod's IP. Both pods "`busybox1`" and
+A or AAAA record at that name, pointing to the Pod's IP. Both Pods "`busybox1`" and
 "`busybox2`" can have their distinct A or AAAA records.
 -->
-如果某无头服务与某 Pod 在同一个名字空间中，且它们具有相同的子域名，
+如果某无头 Service 与某 Pod 在同一个名字空间中，且它们具有相同的子域名，
 集群的 DNS 服务器也会为该 Pod 的全限定主机名返回 A 记录或 AAAA 记录。
 例如，在同一个名字空间中，给定一个主机名为 “busybox-1”、
 子域名设置为 “default-subdomain” 的 Pod，和一个名称为 “`default-subdomain`”
-的无头服务，Pod 将看到自己的 FQDN 为
+的无头 Service，Pod 将看到自己的 FQDN 为
 "`busybox-1.default-subdomain.my-namespace.svc.cluster-domain.example`"。
 DNS 会为此名字提供一个 A 记录或 AAAA 记录，指向该 Pod 的 IP。
 “`busybox1`” 和 “`busybox2`” 这两个 Pod 分别具有它们自己的 A 或 AAAA 记录。
@@ -316,18 +316,16 @@ along with its IP.
 Endpoints 对象可以为任何端点地址及其 IP 指定 `hostname`。
 
 <!--
-Because A records are not created for Pod names, `hostname` is required for the Pod's A
+Because A or AAAA records are not created for Pod names, `hostname` is required for the Pod's A or AAAA
 record to be created. A Pod with no `hostname` but with `subdomain` will only create the
-A record for the headless service (`default-subdomain.my-namespace.svc.cluster-domain.example`),
+A or AAAA record for the headless Service (`default-subdomain.my-namespace.svc.cluster-domain.example`),
 pointing to the Pod's IP address. Also, Pod needs to become ready in order to have a
 record unless `publishNotReadyAddresses=True` is set on the Service.
 -->
 {{< note >}}
-因为没有为 Pod 名称创建 A 记录或 AAAA 记录，所以要创建 Pod 的 A 记录
-或 AAAA 记录需要 `hostname`。
-
+由于不是为 Pod 名称创建 A 或 AAAA 记录的，因此 Pod 的 A 或 AAAA 需要 `hostname`。
 没有设置 `hostname` 但设置了 `subdomain` 的 Pod 只会为
-无头服务创建 A 或 AAAA 记录（`default-subdomain.my-namespace.svc.cluster-domain.example`）
+无头 Service 创建 A 或 AAAA 记录（`default-subdomain.my-namespace.svc.cluster-domain.example`）
 指向 Pod 的 IP 地址。
 另外，除非在服务上设置了 `publishNotReadyAddresses=True`，否则只有 Pod 进入就绪状态
 才会有与之对应的记录。
@@ -343,12 +341,13 @@ record unless `publishNotReadyAddresses=True` is set on the Service.
 {{< feature-state for_k8s_version="v1.22" state="stable" >}}
 
 <!--
-When a Pod is configured to have fully qualified domain name (FQDN), its hostname is the short hostname. For example, if you have a Pod with the fully qualified domain name `busybox-1.default-subdomain.my-namespace.svc.cluster-domain.example`, then by default the `hostname` command inside that Pod returns `busybox-1` and  the `hostname -fqdn` command returns the FQDN.
+When a Pod is configured to have fully qualified domain name (FQDN), its hostname is the short hostname. For example, if you have a Pod with the fully qualified domain name `busybox-1.default-subdomain.my-namespace.svc.cluster-domain.example`, then by default the `hostname` command inside that Pod returns `busybox-1` and  the `hostname --fqdn` command returns the FQDN.
+
+When you set `setHostnameAsFQDN: true` in the Pod spec, the kubelet writes the Pod's FQDN into the hostname for that Pod's namespace. In this case, both `hostname` and `hostname --fqdn` return the Pod's FQDN.
 -->
-**前置条件**：`SetHostnameAsFQDN`
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
-必须在 {{< glossary_tooltip text="API 服务器" term_id="kube-apiserver" >}}
-上启用。
+当 Pod 配置为具有全限定域名 (FQDN) 时，其主机名是短主机名。
+ 例如，如果你有一个具有完全限定域名 `busybox-1.default-subdomain.my-namespace.svc.cluster-domain.example` 的 Pod，
+ 则默认情况下，该 Pod 内的 `hostname` 命令返回 `busybox-1`，而 `hostname --fqdn` 命令返回 FQDN。
 
 当你在 Pod 规约中设置了 `setHostnameAsFQDN: true` 时，kubelet 会将 Pod
 的全限定域名（FQDN）作为该 Pod 的主机名记录到 Pod 所在名字空间。
@@ -358,7 +357,7 @@ When a Pod is configured to have fully qualified domain name (FQDN), its hostnam
 <!--
 In Linux, the hostname field of the kernel (the `nodename` field of `struct utsname`) is limited to 64 characters.
 
-If a Pod enables this feature and its FQDN is longer than 64 character, it will fail to start. The Pod will remain in `Pending` status (`ContainerCreating` as seen by `kubectl`) generating error events, such as Failed to construct FQDN from pod hostname and cluster domain, FQDN `long-FQDN` is too long (64 characters is the max, 70 characters requested). One way of improving user experience for this scenario is to create an [admission webhook controller](/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks) to control FQDN size when users create top level objects, for example, Deployment.
+If a Pod enables this feature and its FQDN is longer than 64 character, it will fail to start. The Pod will remain in `Pending` status (`ContainerCreating` as seen by `kubectl`) generating error events, such as Failed to construct FQDN from Pod hostname and cluster domain, FQDN `long-FQDN` is too long (64 characters is the max, 70 characters requested). One way of improving user experience for this scenario is to create an [admission webhook controller](/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks) to control FQDN size when users create top level objects, for example, Deployment.
 -->
 在 Linux 中，内核的主机名字段（`struct utsname` 的 `nodename` 字段）限定
 最多 64 个字符。
@@ -366,38 +365,39 @@ If a Pod enables this feature and its FQDN is longer than 64 character, it will
 如果 Pod 启用这一特性，而其 FQDN 超出 64 字符，Pod 的启动会失败。
 Pod 会一直出于 `Pending` 状态（通过 `kubectl` 所看到的 `ContainerCreating`），
 并产生错误事件，例如
-"Failed to construct FQDN from pod hostname and cluster domain, FQDN
+"Failed to construct FQDN from Pod hostname and cluster domain, FQDN
 `long-FQDN` is too long (64 characters is the max, 70 characters requested)."
 （无法基于 Pod 主机名和集群域名构造 FQDN，FQDN `long-FQDN` 过长，至多 64
 字符，请求字符数为 70）。
 对于这种场景而言，改善用户体验的一种方式是创建一个
-[准入 Webhook 控制器](/zh/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks)，
+[准入 Webhook 控制器](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks)，
 在用户创建顶层对象（如 Deployment）的时候控制 FQDN 的长度。
 {{< /note >}}
 
 <!--
 ### Pod's DNS Policy
 
-DNS policies can be set on a per-pod basis. Currently Kubernetes supports the
-following pod-specific DNS policies. These policies are specified in the
+DNS policies can be set on a per-Pod basis. Currently Kubernetes supports the
+following Pod-specific DNS policies. These policies are specified in the
 `dnsPolicy` field of a Pod Spec.
 
 - "`Default`": The Pod inherits the name resolution configuration from the node
-  that the pods run on.
-  See [related discussion](/docs/tasks/administer-cluster/dns-custom-nameservers/#inheriting-dns-from-the-node)
+  that the Pods run on.
+  See [related discussion](/docs/tasks/administer-cluster/dns-custom-nameservers)
   for more details.
 - "`ClusterFirst`": Any DNS query that does not match the configured cluster
   domain suffix, such as "`www.kubernetes.io`", is forwarded to the upstream
   nameserver inherited from the node. Cluster administrators may have extra
   stub-domain and upstream DNS servers configured.
-  See [related discussion](/docs/tasks/administer-cluster/dns-custom-nameservers/#impacts-on-pods)
+  See [related discussion](/docs/tasks/administer-cluster/dns-custom-nameservers)
   for details on how DNS queries are handled in those cases.
 - "`ClusterFirstWithHostNet`": For Pods running with hostNetwork, you should
   explicitly set its DNS policy "`ClusterFirstWithHostNet`".
+  - Note: This is not supported on Windows. See [below](#dns-windows) for details
 - "`None`": It allows a Pod to ignore DNS settings from the Kubernetes
   environment. All DNS settings are supposed to be provided using the
   `dnsConfig` field in the Pod Spec.
-  See [Pod's DNS config](#pod-s-dns-config) subsection below.
+  See [Pod's DNS config](#pod-dns-config) subsection below.
 -->
 ### Pod 的 DNS 策略    {#pod-s-dns-policy}
 
@@ -405,14 +405,15 @@ DNS 策略可以逐个 Pod 来设定。目前 Kubernetes 支持以下特定 Pod
 这些策略可以在 Pod 规约中的 `dnsPolicy` 字段设置：
 
 - "`Default`": Pod 从运行所在的节点继承名称解析配置。参考
-  [相关讨论](/zh/docs/tasks/administer-cluster/dns-custom-nameservers/#inheriting-dns-from-the-node)
+  [相关讨论](/zh-cn/docs/tasks/administer-cluster/dns-custom-nameservers)
   获取更多信息。
 - "`ClusterFirst`": 与配置的集群域后缀不匹配的任何 DNS 查询（例如 "www.kubernetes.io"）
   都将转发到从节点继承的上游名称服务器。集群管理员可能配置了额外的存根域和上游 DNS 服务器。
-  参阅[相关讨论](/zh/docs/tasks/administer-cluster/dns-custom-nameservers/#impacts-on-pods)
+  参阅[相关讨论](/zh-cn/docs/tasks/administer-cluster/dns-custom-nameservers)
   了解在这些场景中如何处理 DNS 查询的信息。
 - "`ClusterFirstWithHostNet`"：对于以 hostNetwork 方式运行的 Pod，应显式设置其 DNS 策略
   "`ClusterFirstWithHostNet`"。
+  - 注意：这在 Windows 上不支持。 有关详细信息，请参见[下文](#dns-windows)。
 - "`None`": 此设置允许 Pod 忽略 Kubernetes 环境中的 DNS 设置。Pod 会使用其 `dnsConfig` 字段
   所提供的 DNS 设置。
   参见 [Pod 的 DNS 配置](#pod-dns-config)节。
@@ -452,7 +453,7 @@ spec:
 ```
 
 <!--
-### Pod's DNS Config
+### Pod's DNS Config {#pod-dns-config}
 
 {{< feature-state for_k8s_version="v1.14" state="stable" >}}
 
@@ -537,8 +538,7 @@ kubectl exec -it dns-example -- cat /etc/resolv.conf
 <!--
 The output is similar to this:
 -->
-输出类似于
-
+输出类似于：
 ```
 nameserver fd00:79:30::a
 search default.svc.cluster-domain.example svc.cluster-domain.example cluster-domain.example
@@ -568,19 +568,39 @@ a list of search domains of up to 2048 characters.
 搜索域以及一个最多 2048 个字符的搜索域列表。
 
 <!--
-### Feature availability
+## DNS resolution on Windows nodes {#dns-windows}
 
-The availability of Pod DNS Config and DNS Policy "`None`" is shown as below.
+- ClusterFirstWithHostNet is not supported for Pods that run on Windows nodes.
+  Windows treats all names with a `.` as a FQDN and skips FQDN resolution.
+- On Windows, there are multiple DNS resolvers that can be used. As these come with
+  slightly different behaviors, using the
+  [`Resolve-DNSName`](https://docs.microsoft.com/powershell/module/dnsclient/resolve-dnsname)
+  powershell cmdlet for name query resolutions is recommended.
+- On Linux, you have a DNS suffix list, which is used after resolution of a name as fully
+  qualified has failed.
+  On Windows, you can only have 1 DNS suffix, which is the DNS suffix associated with that
+  Pod's namespace (example: `mydns.svc.cluster.local`). Windows can resolve FQDNs, Services,
+  or network name which can be resolved with this single suffix. For example, a Pod spawned
+  in the `default` namespace, will have the DNS suffix `default.svc.cluster.local`.
+  Inside a Windows Pod, you can resolve both `kubernetes.default.svc.cluster.local`
+  and `kubernetes`, but not the partially qualified names (`kubernetes.default` or
+  `kubernetes.default.svc`).
 -->
-### 功能的可用性
+## Windows 节点上的 DNS 解析 {#dns-windows}
 
-Pod DNS 配置和 DNS 策略 "`None`" 的可用版本对应如下所示。
-
-| k8s 版本 | 特性支持 |
-| :---------: |:-----------:|
-| 1.14 | 稳定 |
-| 1.10 | Beta（默认启用） |
-| 1.9 | Alpha |
+- 在 Windows 节点上运行的 Pod 不支持 ClusterFirstWithHostNet。
+  Windows 将所有带有 `.` 的名称视为全限定域名（FQDN）并跳过全限定域名（FQDN）解析。
+- 在 Windows 上，可以使用的 DNS 解析器有很多。
+  由于这些解析器彼此之间会有轻微的行为差别，建议使用
+  [`Resolve-DNSName`](https://docs.microsoft.com/powershell/module/dnsclient/resolve-dnsname)
+  powershell cmdlet 进行名称查询解析。
+- 在 Linux 上，有一个 DNS 后缀列表，当解析全名失败时可以使用。
+  在 Windows 上，你只能有一个 DNS 后缀，
+  即与该 Pod 的命名空间相关联的 DNS 后缀（例如：`mydns.svc.cluster.local`）。
+  Windows 可以解析全限定域名（FQDN），和使用了该 DNS 后缀的 Services 或者网络名称。
+  例如，在 `default` 命名空间中生成一个 Pod，该 Pod 会获得的 DNS 后缀为 `default.svc.cluster.local`。
+  在 Windows 的 Pod 中，你可以解析 `kubernetes.default.svc.cluster.local` 和 `kubernetes`，
+  但是不能解析部分限定名称（`kubernetes.default` 和 `kubernetes.default.svc`）。
 
 ## {{% heading "whatsnext" %}}
 
@@ -589,5 +609,5 @@ For guidance on administering DNS configurations, check
 [Configure DNS Service](/docs/tasks/administer-cluster/dns-custom-nameservers/)
 -->
 有关管理 DNS 配置的指导，请查看
-[配置 DNS 服务](/zh/docs/tasks/administer-cluster/dns-custom-nameservers/)
+[配置 DNS 服务](/zh-cn/docs/tasks/administer-cluster/dns-custom-nameservers/)
 
diff --git a/content/zh/docs/concepts/services-networking/dual-stack.md b/content/zh-cn/docs/concepts/services-networking/dual-stack.md
similarity index 56%
rename from content/zh/docs/concepts/services-networking/dual-stack.md
rename to content/zh-cn/docs/concepts/services-networking/dual-stack.md
index e1d5516bec..a95af75e13 100644
--- a/content/zh/docs/concepts/services-networking/dual-stack.md
+++ b/content/zh-cn/docs/concepts/services-networking/dual-stack.md
@@ -9,34 +9,35 @@ weight: 70
 ---
 
 <!--
-reviewers:
-- lachie83
-- khenidak
-- aramase
-- bridgetkromhout
 title: IPv4/IPv6 dual-stack
 feature:
   title: IPv4/IPv6 dual-stack
   description: >
     Allocation of IPv4 and IPv6 addresses to Pods and Services
-
 content_type: concept
+reviewers:
+- lachie83
+- khenidak
+- aramase
+- bridgetkromhout
 weight: 70
 -->
 
 <!-- overview -->
 
-{{< feature-state for_k8s_version="v1.21" state="beta" >}}
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
 
 <!--
- IPv4/IPv6 dual-stack networking enables the allocation of both IPv4 and IPv6 addresses to {{< glossary_tooltip text="Pods" term_id="pod" >}} and {{< glossary_tooltip text="Services" term_id="service" >}}.
+IPv4/IPv6 dual-stack networking enables the allocation of both IPv4 and IPv6 addresses to
+{{< glossary_tooltip text="Pods" term_id="pod" >}} and {{< glossary_tooltip text="Services" term_id="service" >}}.
 -->
 IPv4/IPv6 双协议栈网络能够将 IPv4 和 IPv6 地址分配给
 {{< glossary_tooltip text="Pod" term_id="pod" >}} 和
 {{< glossary_tooltip text="Service" term_id="service" >}}。
 
 <!--
-IPv4/IPv6 dual-stack networking is enabled by default for your Kubernetes cluster starting in 1.21, allowing the simultaneous assignment of both IPv4 and IPv6 addresses.
+IPv4/IPv6 dual-stack networking is enabled by default for your Kubernetes cluster starting in
+1.21, allowing the simultaneous assignment of both IPv4 and IPv6 addresses.
 -->
 从 1.21 版本开始，Kubernetes 集群默认启用 IPv4/IPv6 双协议栈网络，
 以支持同时分配 IPv4 和 IPv6 地址。
@@ -54,9 +55,9 @@ IPv4/IPv6 dual-stack on your Kubernetes cluster provides the following features:
 Kubernetes 集群的 IPv4/IPv6 双协议栈可提供下面的功能：
 
 <!--
-   * Dual-stack Pod networking (a single IPv4 and IPv6 address assignment per Pod)
-   * IPv4 and IPv6 enabled Services
-   * Pod off-cluster egress routing (eg. the Internet) via both IPv4 and IPv6 interfaces
+* Dual-stack Pod networking (a single IPv4 and IPv6 address assignment per Pod)
+* IPv4 and IPv6 enabled Services
+* Pod off-cluster egress routing (eg. the Internet) via both IPv4 and IPv6 interfaces
 -->
 * 双协议栈 pod 网络 (每个 pod 分配一个 IPv4 和 IPv6 地址)
 * IPv4 和 IPv6 启用的服务
@@ -73,18 +74,20 @@ The following prerequisites are needed in order to utilize IPv4/IPv6 dual-stack
 为了使用 IPv4/IPv6 双栈的 Kubernetes 集群，需要满足以下先决条件：
 
 <!--
-   * Kubernetes 1.20 or later  
-     For information about using dual-stack services with earlier
-     Kubernetes versions, refer to the documentation for that version
-     of Kubernetes.
-   * Provider support for dual-stack networking (Cloud provider or otherwise must be able to provide Kubernetes nodes with routable IPv4/IPv6 network interfaces)
-   * A network plugin that supports dual-stack (such as Kubenet or Calico)
+* Kubernetes 1.20 or later  
+  For information about using dual-stack services with earlier
+  Kubernetes versions, refer to the documentation for that version
+  of Kubernetes.
+* Provider support for dual-stack networking (Cloud provider or otherwise must be able to provide
+  Kubernetes nodes with routable IPv4/IPv6 network interfaces)
+* A [network plugin](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/) that
+  supports dual-stack networking.
 -->
 * Kubernetes 1.20 版本或更高版本，有关更早 Kubernetes 版本的使用双栈服务的信息，
   请参考对应版本的 Kubernetes 文档。
 * 提供商支持双协议栈网络（云提供商或其他提供商必须能够为 Kubernetes
   节点提供可路由的 IPv4/IPv6 网络接口）
-* 支持双协议栈的网络插件（如 Kubenet 或 Calico）
+* 支持双协议栈的[网络插件](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)
 
 <!--
 ## Configure IPv4/IPv6 dual-stack
@@ -92,98 +95,106 @@ The following prerequisites are needed in order to utilize IPv4/IPv6 dual-stack
 ## 配置 IPv4/IPv6 双协议栈
 
 <!--
-To use IPv4/IPv6 dual-stack, ensure the `IPv6DualStack` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled for the relevant components of your cluster. (Starting in 1.21, IPv4/IPv6 dual-stack defaults to enabled.)
+To configure IPv4/IPv6 dual-stack, set dual-stack cluster network assignments:
 -->
-要使用 IPv4/IPv6 双协议栈，确保为集群的相关组件启用 `IPv6DualStack`
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)，
-（从 1.21 版本开始，IPv4/IPv6 双协议栈默认是被启用的）。
-
+如果配置 IPv4/IPv6 双栈，请分配双栈集群网络：
 <!--
-   * kube-apiserver:
-      * `--service-cluster-ip-range=<IPv4 CIDR>,<IPv6 CIDR>`
-   * kube-controller-manager:
-      * `--cluster-cidr=<IPv4 CIDR>,<IPv6 CIDR>`
-      * `--service-cluster-ip-range=<IPv4 CIDR>,<IPv6 CIDR>`
-      * `--node-cidr-mask-size-ipv4|--node-cidr-mask-size-ipv6` defaults to /24 for IPv4 and /64 for IPv6
-   * kube-proxy:
-      * `--cluster-cidr=<IPv4 CIDR>,<IPv6 CIDR>`
+* kube-apiserver:
+  * `--service-cluster-ip-range=<IPv4 CIDR>,<IPv6 CIDR>`
+* kube-controller-manager:
+  * `--cluster-cidr=<IPv4 CIDR>,<IPv6 CIDR>`
+  * `--service-cluster-ip-range=<IPv4 CIDR>,<IPv6 CIDR>`
+  * `--node-cidr-mask-size-ipv4|--node-cidr-mask-size-ipv6` defaults to /24 for IPv4 and /64 for IPv6
+* kube-proxy:
+  * `--cluster-cidr=<IPv4 CIDR>,<IPv6 CIDR>`
+* kubelet:
+  * when there is no `--cloud-provider` the administrator can pass a comma-separated pair of IP
+    addresses via `--node-ip` to manually configure dual-stack `.status.addresses` for that Node.
+    If a Pod runs on that node in HostNetwork mode, the Pod reports these IP addresses in its
+    `.status.podIPs` field.
+    All `podIPs` in a node match the IP family preference defined by the `.status.addresses`
+    field for that Node.
 -->
 * kube-apiserver:
   * `--service-cluster-ip-range=<IPv4 CIDR>,<IPv6 CIDR>`
 * kube-controller-manager:
   * `--cluster-cidr=<IPv4 CIDR>,<IPv6 CIDR>` 
   * `--service-cluster-ip-range=<IPv4 CIDR>,<IPv6 CIDR>`
-  * `--node-cidr-mask-size-ipv4|--node-cidr-mask-size-ipv6` 对于 IPv4 默认为 /24，对于 IPv6 默认为 /64
+  * `--node-cidr-mask-size-ipv4|--node-cidr-mask-size-ipv6` 对于 IPv4 默认为 /24，
+    对于 IPv6 默认为 /64
 * kube-proxy:
   * `--cluster-cidr=<IPv4 CIDR>,<IPv6 CIDR>`
+* kubelet:
+  * 当没有 `--cloud-provider` 时，管理员可以通过 `--node-ip` 来传递逗号分隔的 IP 地址，
+    为该节点手动配置双栈 `.status.addresses`。
+    如果 Pod 以 HostNetwork 模式在该节点上运行，则 Pod 会用 `.status.podIPs` 字段来报告它的 IP 地址。
+    一个节点中的所有 `podIP` 都会匹配该节点的由 `.status.addresses` 字段定义的 IP 组。
 
 {{< note >}}
 <!--
 An example of an IPv4 CIDR: `10.244.0.0/16` (though you would supply your own address range)
 
-An example of an IPv6 CIDR: `fdXY:IJKL:MNOP:15::/64` (this shows the format but is not a valid address - see [RFC 4193](https://tools.ietf.org/html/rfc4193))
+An example of an IPv6 CIDR: `fdXY:IJKL:MNOP:15::/64` (this shows the format but is not a valid
+address - see [RFC 4193](https://tools.ietf.org/html/rfc4193))
 -->
 IPv4 CIDR 的一个例子：`10.244.0.0/16`（尽管你会提供你自己的地址范围）。
 
 IPv6 CIDR 的一个例子：`fdXY:IJKL:MNOP:15::/64`
 （这里演示的是格式而非有效地址 - 请看 [RFC 4193](https://tools.ietf.org/html/rfc4193)）。
-<!--
-Starting in 1.21, IPv4/IPv6 dual-stack defaults to enabled.
-You can disable it when necessary by specifying `--feature-gates="IPv6DualStack=false"`
-on the kube-apiserver, kube-controller-manager, kubelet, and kube-proxy command line.
--->
-从 1.21 开始 IPv4/IPv6 双协议栈默认为启用状态。
-你可以在必要的时候通过为 kube-apiserver、kube-controller-manager、kubelet
-和 kube-proxy 命令行设置 `--feature-gates="IPv6DualStack=false"` 来禁用
-此特性。
 {{< /note >}}
 
 <!--
 ## Services
 -->
-## 服务
+## 服务  {#services}
 
 <!--
-You can create {{< glossary_tooltip text="Services" term_id="service" >}} which can use IPv4, IPv6, or both. 
+You can create {{< glossary_tooltip text="Services" term_id="service" >}} which can use IPv4, IPv6, or both.
 
-The address family of a Service defaults to the address family of the first service cluster IP range (configured via the `--service-cluster-ip-range` flag to the kube-apiserver).
+The address family of a Service defaults to the address family of the first service cluster IP
+range (configured via the `--service-cluster-ip-range` flag to the kube-apiserver).
 
 When you define a Service you can optionally configure it as dual stack. To specify the behavior you want, you
 set the `.spec.ipFamilyPolicy` field to one of the following values:
 -->
 你可以使用 IPv4 或 IPv6 地址来创建
 {{< glossary_tooltip text="Service" term_id="service" >}}。
+
 服务的地址族默认为第一个服务集群 IP 范围的地址族（通过 kube-apiserver 的
 `--service-cluster-ip-range` 参数配置）。
+
 当你定义服务时，可以选择将其配置为双栈。若要指定所需的行为，你可以设置
 `.spec.ipFamilyPolicy` 字段为以下值之一：
 
 <!--
-* `SingleStack`: Single-stack service. The control plane allocates a cluster IP for the Service, using the first configured service cluster IP range.
+* `SingleStack`: Single-stack service. The control plane allocates a cluster IP for the Service,
+  using the first configured service cluster IP range.
 * `PreferDualStack`:
-  * Allocates IPv4 and IPv6 cluster IPs for the Service. (If the cluster has `--feature-gates="IPv6DualStack=false"`, this setting follows the same behavior as `SingleStack`.)
+  * Allocates IPv4 and IPv6 cluster IPs for the Service.
 * `RequireDualStack`: Allocates Service `.spec.ClusterIPs` from both IPv4 and IPv6 address ranges.
-  * Selects the `.spec.ClusterIP` from the list of `.spec.ClusterIPs` based on the address family of the first element in the `.spec.ipFamilies` array.
+  * Selects the `.spec.ClusterIP` from the list of `.spec.ClusterIPs` based on the address family
+    of the first element in the `.spec.ipFamilies` array.
 -->
-
 * `SingleStack`：单栈服务。控制面使用第一个配置的服务集群 IP 范围为服务分配集群 IP。
 * `PreferDualStack`：
   * 为服务分配 IPv4 和 IPv6 集群 IP 地址。
-    （如果集群设置了 `--feature-gates="IPv6DualStack=false"`，则此设置的行为与
-    `SingleStack` 设置相同。）
 * `RequireDualStack`：从 IPv4 和 IPv6 的地址范围分配服务的 `.spec.ClusterIPs`
   * 从基于在 `.spec.ipFamilies` 数组中第一个元素的地址族的 `.spec.ClusterIPs`
     列表中选择 `.spec.ClusterIP` 
 
 <!--
-If you would like to define which IP family to use for single stack or define the order of IP families for dual-stack, you can choose the address families by setting an optional field, `.spec.ipFamilies`, on the Service. 
+If you would like to define which IP family to use for single stack or define the order of IP
+families for dual-stack, you can choose the address families by setting an optional field,
+`.spec.ipFamilies`, on the Service. 
 -->
 如果你想要定义哪个 IP 族用于单栈或定义双栈 IP 族的顺序，可以通过设置
 服务上的可选字段 `.spec.ipFamilies` 来选择地址族。
 
 {{< note >}}
 <!--
-The `.spec.ipFamilies` field is immutable because the `.spec.ClusterIP` cannot be reallocated on a Service that already exists. If you want to change `.spec.ipFamilies`, delete and recreate the Service.
+The `.spec.ipFamilies` field is immutable because the `.spec.ClusterIP` cannot be reallocated on a
+Service that already exists. If you want to change `.spec.ipFamilies`, delete and recreate the
+Service.
 -->
 `.spec.ipFamilies` 字段是不可变的，因为系统无法为已经存在的服务重新分配
 `.spec.ClusterIP`。如果你想改变 `.spec.ipFamilies`，则需要删除并重新创建服务。
@@ -199,7 +210,6 @@ You can set `.spec.ipFamilies` to any of the following array values:
 - `["IPv6"]`
 - `["IPv4","IPv6"]` (dual stack)
 - `["IPv6","IPv4"]` (dual stack)
-
 -->
 - `["IPv4"]`
 - `["IPv6"]`
@@ -216,35 +226,46 @@ The first family you list is used for the legacy `.spec.ClusterIP` field.
 
 These examples demonstrate the behavior of various dual-stack Service configuration scenarios.
 -->
-### 双栈服务配置场景
+### 双栈服务配置场景   {#dual-stack-service-configuration-scenarios}
 
 以下示例演示多种双栈服务配置场景下的行为。
 
 <!--
 #### Dual-stack options on new Services
 -->
-#### 新服务的双栈选项
+#### 新服务的双栈选项    {#dual-stack-options-on-new-services}
 
 <!--
-1. This Service specification does not explicitly define `.spec.ipFamilyPolicy`. When you create this Service, Kubernetes assigns a cluster IP for the Service from the first configured `service-cluster-ip-range` and sets the `.spec.ipFamilyPolicy` to `SingleStack`. ([Services without selectors](/docs/concepts/services-networking/service/#services-without-selectors) and [headless Services](/docs/concepts/services-networking/service/#headless-services) with selectors will behave in this same way.)
+1. This Service specification does not explicitly define `.spec.ipFamilyPolicy`. When you create
+   this Service, Kubernetes assigns a cluster IP for the Service from the first configured
+   `service-cluster-ip-range` and sets the `.spec.ipFamilyPolicy` to `SingleStack`. ([Services
+   without selectors](/docs/concepts/services-networking/service/#services-without-selectors) and
+   [headless Services](/docs/concepts/services-networking/service/#headless-services) with selectors 
+   will behave in this same way.)
 -->
-
 1. 此服务规约中没有显式设定 `.spec.ipFamilyPolicy`。当你创建此服务时，Kubernetes
    从所配置的第一个 `service-cluster-ip-range` 种为服务分配一个集群IP，并设置
    `.spec.ipFamilyPolicy` 为 `SingleStack`。
-   （[无选择算符的服务](/zh/docs/concepts/services-networking/service/#services-without-selectors)
-   和[无头服务](/zh/docs/concepts/services-networking/service/#headless-services)的行为方式
+   （[无选择算符的服务](/zh-cn/docs/concepts/services-networking/service/#services-without-selectors)
+   和[无头服务](/zh-cn/docs/concepts/services-networking/service/#headless-services)的行为方式
    与此相同。）
-   
+
    {{< codenew file="service/networking/dual-stack-default-svc.yaml" >}}
 
 <!--
-1. This Service specification explicitly defines `PreferDualStack` in `.spec.ipFamilyPolicy`. When you create this Service on a dual-stack cluster, Kubernetes assigns both IPv4 and IPv6 addresses for the service. The control plane updates the `.spec` for the Service to record the IP address assignments. The field `.spec.ClusterIPs` is the primary field, and contains both assigned IP addresses; `.spec.ClusterIP` is a secondary field with its value calculated from `.spec.ClusterIPs`.
+1. This Service specification explicitly defines `PreferDualStack` in `.spec.ipFamilyPolicy`. When
+   you create this Service on a dual-stack cluster, Kubernetes assigns both IPv4 and IPv6
+   addresses for the service. The control plane updates the `.spec` for the Service to record the IP
+   address assignments. The field `.spec.ClusterIPs` is the primary field, and contains both assigned 
+   IP addresses; `.spec.ClusterIP` is a secondary field with its value calculated from
+   `.spec.ClusterIPs`.
    
-      * For the `.spec.ClusterIP` field, the control plane records the IP address that is from the same address family as the first service cluster IP range. 
-      * On a single-stack cluster, the `.spec.ClusterIPs` and `.spec.ClusterIP` fields both only list one address. 
-      * On a cluster with dual-stack enabled, specifying `RequireDualStack` in `.spec.ipFamilyPolicy` behaves the same as `PreferDualStack`.
-
+   * For the `.spec.ClusterIP` field, the control plane records the IP address that is from the
+     same address family as the first service cluster IP range. 
+   * On a single-stack cluster, the `.spec.ClusterIPs` and `.spec.ClusterIP` fields both only list
+     one address. 
+   * On a cluster with dual-stack enabled, specifying `RequireDualStack` in `.spec.ipFamilyPolicy`
+     behaves the same as `PreferDualStack`.
 -->
 2. 此服务规约显式地将 `.spec.ipFamilyPolicy` 设置为 `PreferDualStack`。
    当你在双栈集群上创建此服务时，Kubernetes 会为该服务分配 IPv4 和 IPv6 地址。
@@ -262,7 +283,10 @@ These examples demonstrate the behavior of various dual-stack Service configurat
    {{< codenew file="service/networking/dual-stack-preferred-svc.yaml" >}}
 
 <!--
-1. This Service specification explicitly defines `IPv6` and `IPv4` in `.spec.ipFamilies` as well as defining `PreferDualStack` in `.spec.ipFamilyPolicy`. When Kubernetes assigns an IPv6 and IPv4 address in `.spec.ClusterIPs`, `.spec.ClusterIP` is set to the IPv6 address because that is the first element in the `.spec.ClusterIPs` array, overriding the default.
+1. This Service specification explicitly defines `IPv6` and `IPv4` in `.spec.ipFamilies` as well
+   as defining `PreferDualStack` in `.spec.ipFamilyPolicy`. When Kubernetes assigns an IPv6 and
+   IPv4 address in `.spec.ClusterIPs`, `.spec.ClusterIP` is set to the IPv6 address because that is
+   the first element in the `.spec.ClusterIPs` array, overriding the default.
 -->
 3. 下面的服务规约显式地在 `.spec.ipFamilies` 中指定 `IPv6` 和 `IPv4`，并
    将 `.spec.ipFamilyPolicy` 设定为 `PreferDualStack`。
@@ -275,17 +299,21 @@ These examples demonstrate the behavior of various dual-stack Service configurat
 <!--
 #### Dual-stack defaults on existing Services
 -->
-#### 现有服务的双栈默认值
+#### 现有服务的双栈默认值   {#dual-stack-defaults-on-existing-services}
 
 <!--
-These examples demonstrate the default behavior when dual-stack is newly enabled on a cluster where Services already exist.  (Upgrading an existing cluster to 1.21 will enable dual-stack unless `--feature-gates="IPv6DualStack=false"` is set.)
+These examples demonstrate the default behavior when dual-stack is newly enabled on a cluster
+where Services already exist. (Upgrading an existing cluster to 1.21 or beyond will enable
+dual-stack.)
 -->
 下面示例演示了在服务已经存在的集群上新启用双栈时的默认行为。
-（将现有集群升级到 1.21 会启用双协议栈支持，除非设置了
-`--feature-gates="IPv6DualStack=false"`）
+（将现有集群升级到 1.21 或者更高版本会启用双协议栈支持。）
 
 <!--
-1. When dual-stack is enabled on a cluster, existing Services (whether `IPv4` or `IPv6`) are configured by the control plane to set `.spec.ipFamilyPolicy` to `SingleStack` and set `.spec.ipFamilies` to the address family of the existing Service. The existing Service cluster IP will be stored in `.spec.ClusterIPs`.
+1. When dual-stack is enabled on a cluster, existing Services (whether `IPv4` or `IPv6`) are
+   configured by the control plane to set `.spec.ipFamilyPolicy` to `SingleStack` and set
+   `.spec.ipFamilies` to the address family of the existing Service. The existing Service cluster IP
+   will be stored in `.spec.ClusterIPs`.
 -->
 1. 在集群上启用双栈时，控制面会将现有服务（无论是 `IPv4` 还是 `IPv6`）配置
    `.spec.ipFamilyPolicy` 为 `SingleStack` 并设置 `.spec.ipFamilies`
@@ -301,13 +329,13 @@ These examples demonstrate the default behavior when dual-stack is newly enabled
    ```shell
    kubectl get svc my-service -o yaml
    ```
-   
+
    ```yaml
    apiVersion: v1
    kind: Service
    metadata:
      labels:
-       app: MyApp
+       app.kubernetes.io/name: MyApp
      name: my-service
    spec:
      clusterIP: 10.0.197.123
@@ -321,17 +349,22 @@ These examples demonstrate the default behavior when dual-stack is newly enabled
        protocol: TCP
        targetPort: 80
      selector:
-       app: MyApp
+       app.kubernetes.io/name: MyApp
      type: ClusterIP
    status:
      loadBalancer: {}
    ```
 
 <!--
-1. When dual-stack is enabled on a cluster, existing [headless Services](/docs/concepts/services-networking/service/#headless-services) with selectors are configured by the control plane to set `.spec.ipFamilyPolicy` to `SingleStack` and set `.spec.ipFamilies` to the address family of the first service cluster IP range (configured via the `--service-cluster-ip-range` flag to the kube-apiserver) even though `.spec.ClusterIP` is set to `None`.
+1. When dual-stack is enabled on a cluster, existing
+   [headless Services](/docs/concepts/services-networking/service/#headless-services) with selectors
+   are configured by the control plane to set `.spec.ipFamilyPolicy` to `SingleStack` and set
+   `.spec.ipFamilies` to the address family of the first service cluster IP range (configured via the
+   `--service-cluster-ip-range` flag to the kube-apiserver) even though `.spec.ClusterIP` is set to
+   `None`.
 -->
 2. 在集群上启用双栈时，带有选择算符的现有
-   [无头服务](/zh/docs/concepts/services-networking/service/#headless-services)
+   [无头服务](/zh-cn/docs/concepts/services-networking/service/#headless-services)
    由控制面设置 `.spec.ipFamilyPolicy` 为 `SingleStack`
    并设置 `.spec.ipFamilies` 为第一个服务集群 IP 范围的地址族（通过配置 kube-apiserver 的
    `--service-cluster-ip-range` 参数），即使 `.spec.ClusterIP` 的设置值为 `None` 也如此。
@@ -346,13 +379,13 @@ These examples demonstrate the default behavior when dual-stack is newly enabled
    ```shell
    kubectl get svc my-service -o yaml
    ```
-   
+
    ```yaml
    apiVersion: v1
    kind: Service
    metadata:
      labels:
-       app: MyApp
+       app.kubernetes.io/name: MyApp
      name: my-service
    spec:
      clusterIP: None
@@ -366,13 +399,13 @@ These examples demonstrate the default behavior when dual-stack is newly enabled
        protocol: TCP
        targetPort: 80
      selector:
-       app: MyApp  
+       app.kubernetes.io/name: MyApp
    ```
 
 <!--
 #### Switching Services between single-stack and dual-stack
 -->
-#### 在单栈和双栈之间切换服务
+#### 在单栈和双栈之间切换服务   {#switching-services-between-single-stack-and-dual-stack}
 
 <!--
 Services can be changed from single-stack to dual-stack and from dual-stack to single-stack.
@@ -380,14 +413,17 @@ Services can be changed from single-stack to dual-stack and from dual-stack to s
 服务可以从单栈更改为双栈，也可以从双栈更改为单栈。
 
 <!--
-1. To change a Service from single-stack to dual-stack, change `.spec.ipFamilyPolicy` from `SingleStack` to `PreferDualStack` or `RequireDualStack` as desired. When you change this Service from single-stack to dual-stack, Kubernetes assigns the missing address family so that the Service now has IPv4 and IPv6 addresses.
+1. To change a Service from single-stack to dual-stack, change `.spec.ipFamilyPolicy` from
+   `SingleStack` to `PreferDualStack` or `RequireDualStack` as desired. When you change this
+   Service from single-stack to dual-stack, Kubernetes assigns the missing address family so that the
+   Service now has IPv4 and IPv6 addresses.
 
    Edit the Service specification updating the `.spec.ipFamilyPolicy` from `SingleStack` to `PreferDualStack`.
 -->
 1. 要将服务从单栈更改为双栈，根据需要将 `.spec.ipFamilyPolicy` 从 `SingleStack` 改为
    `PreferDualStack` 或 `RequireDualStack`。
-   当你将此服务从单栈更改为双栈时，Kubernetes 将分配缺失的地址族，以便现在
-   该服务具有 IPv4 和 IPv6 地址。
+   当你将此服务从单栈更改为双栈时，Kubernetes 将分配缺失的地址族，
+   以便现在该服务具有 IPv4 和 IPv6 地址。
    编辑服务规约将 `.spec.ipFamilyPolicy` 从 `SingleStack` 改为 `PreferDualStack`。
 
    <!--
@@ -411,9 +447,12 @@ Services can be changed from single-stack to dual-stack and from dual-stack to s
    ```
 
 <!--
-1. To change a Service from dual-stack to single-stack, change `.spec.ipFamilyPolicy` from `PreferDualStack` or `RequireDualStack` to `SingleStack`. When you change this Service from dual-stack to single-stack, Kubernetes retains only the first element in the `.spec.ClusterIPs` array, and sets `.spec.ClusterIP` to that IP address and sets `.spec.ipFamilies` to the address family of `.spec.ClusterIPs`.
+1. To change a Service from dual-stack to single-stack, change `.spec.ipFamilyPolicy` from
+   `PreferDualStack` or `RequireDualStack` to `SingleStack`. When you change this Service from
+   dual-stack to single-stack, Kubernetes retains only the first element in the `.spec.ClusterIPs`
+   array, and sets `.spec.ClusterIP` to that IP address and sets `.spec.ipFamilies` to the address
+   family of `.spec.ClusterIPs`.
 -->
-
 2. 要将服务从双栈更改为单栈，请将 `.spec.ipFamilyPolicy` 从 `PreferDualStack` 或
    `RequireDualStack` 改为 `SingleStack`。
    当你将此服务从双栈更改为单栈时，Kubernetes 只保留 `.spec.ClusterIPs`
@@ -423,24 +462,27 @@ Services can be changed from single-stack to dual-stack and from dual-stack to s
 <!--
 ### Headless Services without selector
 -->
-### 无选择算符的无头服务
+### 无选择算符的无头服务   {#headless-services-without-selector}
 
 <!--
-For [Headless Services without selectors](/docs/concepts/services-networking/service/#without-selectors) and without `.spec.ipFamilyPolicy` explicitly set, the `.spec.ipFamilyPolicy` field defaults to `RequireDualStack`.
+For [Headless Services without selectors](/docs/concepts/services-networking/service/#without-selectors)
+and without `.spec.ipFamilyPolicy` explicitly set, the `.spec.ipFamilyPolicy` field defaults
+to `RequireDualStack`.
 -->
-对于[不带选择算符的无头服务](/zh/docs/concepts/services-networking/service/#without-selectors)，
+对于[不带选择算符的无头服务](/zh-cn/docs/concepts/services-networking/service/#without-selectors)，
 若没有显式设置 `.spec.ipFamilyPolicy`，则 `.spec.ipFamilyPolicy`
 字段默认设置为 `RequireDualStack`。
 
 <!--
 ### Service type LoadBalancer
 -->
-### LoadBalancer 类型服务
+### LoadBalancer 类型服务   {#service-type-loadbalancer}
 
 <!--
 To provision a dual-stack load balancer for your Service:
-   * Set the `.spec.type` field to `LoadBalancer`
-   * Set `.spec.ipFamilyPolicy` field to `PreferDualStack` or `RequireDualStack`
+
+* Set the `.spec.type` field to `LoadBalancer`
+* Set `.spec.ipFamilyPolicy` field to `PreferDualStack` or `RequireDualStack`
 -->
 要为你的服务提供双栈负载均衡器：
 
@@ -449,7 +491,8 @@ To provision a dual-stack load balancer for your Service:
 
 {{< note >}}
 <!--
-To use a dual-stack `LoadBalancer` type Service, your cloud provider must support IPv4 and IPv6 load balancers.
+To use a dual-stack `LoadBalancer` type Service, your cloud provider must support IPv4 and IPv6
+load balancers.
 -->
 为了使用双栈的负载均衡器类型服务，你的云驱动必须支持 IPv4 和 IPv6 的负载均衡器。
 {{< /note >}}
@@ -457,10 +500,14 @@ To use a dual-stack `LoadBalancer` type Service, your cloud provider must suppor
 <!--
 ## Egress traffic
 -->
-## 出站流量
+## 出站流量    {#egress-traffic}
 
 <!--
-If you want to enable egress traffic in order to reach off-cluster destinations (eg. the public Internet) from a Pod that uses non-publicly routable IPv6 addresses, you need to enable the Pod to use a publicly routed IPv6 address via a mechanism such as transparent proxying or IP masquerading. The [ip-masq-agent](https://github.com/kubernetes-sigs/ip-masq-agent) project supports IP masquerading on dual-stack clusters.
+If you want to enable egress traffic in order to reach off-cluster destinations (eg. the public
+Internet) from a Pod that uses non-publicly routable IPv6 addresses, you need to enable the Pod to
+use a publicly routed IPv6 address via a mechanism such as transparent proxying or IP
+masquerading. The [ip-masq-agent](https://github.com/kubernetes-sigs/ip-masq-agent) project
+supports IP masquerading on dual-stack clusters.
 -->
 如果你要启用出站流量，以便使用非公开路由 IPv6 地址的 Pod 到达集群外地址
 （例如公网），则需要通过透明代理或 IP 伪装等机制使 Pod 使用公共路由的
@@ -475,11 +522,41 @@ Ensure your {{< glossary_tooltip text="CNI" term_id="cni" >}} provider supports
 确认你的 {{< glossary_tooltip text="CNI" term_id="cni" >}} 驱动支持 IPv6。
 {{< /note >}}
 
+<!--
+## Windows support
+
+Kubernetes on Windows does not support single-stack "IPv6-only" networking. However,
+dual-stack IPv4/IPv6 networking for pods and nodes with single-family services
+is supported.
+
+You can use IPv4/IPv6 dual-stack networking with `l2bridge` networks.
+-->
+## Windows 支持   {#windows-support}
+
+Windows 上的 Kubernetes 不支持单栈“仅 IPv6” 网络。 然而，
+对于 Pod 和节点而言，仅支持单栈形式服务的双栈 IPv4/IPv6 网络是被支持的。
+
+你可以使用 `l2bridge` 网络来实现 IPv4/IPv6 双栈联网。
+
+{{< note >}}
+<!--
+Overlay (VXLAN) networks on Windows **do not** support dual-stack networking.
+-->
+Windows 上的 Overlay (VXLAN) 网络**不**支持双栈网络。
+{{< /note >}}
+
+<!--
+You can read more about the different network modes for Windows within the
+[Networking on Windows](/docs/concepts/services-networking/windows-networking#network-modes) topic.
+-->
+关于 Windows 的不同网络模式，你可以进一步阅读
+[Windows 上的网络](/zh-cn/docs/concepts/services-networking/windows-networking#network-modes)。
+
 ## {{% heading "whatsnext" %}}
 
 <!--
 * [Validate IPv4/IPv6 dual-stack](/docs/tasks/network/validate-dual-stack) networking
-* [Enable dual-stack networking using kubeadm ](/docs/setup/production-environment/tools/kubeadm/dual-stack-support/)
+* [Enable dual-stack networking using kubeadm](/docs/setup/production-environment/tools/kubeadm/dual-stack-support/)
 -->
-* [验证 IPv4/IPv6 双协议栈](/zh/docs/tasks/network/validate-dual-stack)网络
-* [使用 kubeadm 启用双协议栈网络](/zh/docs/setup/production-environment/tools/kubeadm/dual-stack-support/)
+* [验证 IPv4/IPv6 双协议栈](/zh-cn/docs/tasks/network/validate-dual-stack)网络
+* [使用 kubeadm 启用双协议栈网络](/zh-cn/docs/setup/production-environment/tools/kubeadm/dual-stack-support/)
diff --git a/content/zh/docs/concepts/services-networking/endpoint-slices.md b/content/zh-cn/docs/concepts/services-networking/endpoint-slices.md
similarity index 82%
rename from content/zh/docs/concepts/services-networking/endpoint-slices.md
rename to content/zh-cn/docs/concepts/services-networking/endpoint-slices.md
index 513e6ecd49..b3f0949298 100644
--- a/content/zh/docs/concepts/services-networking/endpoint-slices.md
+++ b/content/zh-cn/docs/concepts/services-networking/endpoint-slices.md
@@ -52,11 +52,11 @@ significant amounts of network traffic and processing when Endpoints changed.
 EndpointSlices help you mitigate those issues as well as provide an extensible
 platform for additional features such as topological routing.
 -->
-由于任一服务的所有网络端点都保存在同一个 Endpoints 资源中，这类资源可能变得
-非常巨大，而这一变化会影响到 Kubernetes 组件（比如主控组件）的性能，并
-在 Endpoints 变化时需要处理大量的网络流量和处理。
-EndpointSlice 能够帮助你缓解这一问题，还能为一些诸如拓扑路由这类的额外
-功能提供一个可扩展的平台。
+由于任一 Service 的所有网络端点都保存在同一个 Endpoints 资源中，
+这类资源可能变得非常巨大，而这一变化会影响到 Kubernetes
+组件（比如主控组件）的性能，并在 Endpoints 变化时产生大量的网络流量和额外的处理。
+EndpointSlice 能够帮助你缓解这一问题，
+还能为一些诸如拓扑路由这类的额外功能提供一个可扩展的平台。
 
 <!--
 ## Endpoint Slice resources {#endpointslice-resource}
@@ -78,13 +78,13 @@ Kubernetes Service.
 
 在 Kubernetes 中，`EndpointSlice` 包含对一组网络端点的引用。
 指定选择器后控制面会自动为设置了 {{< glossary_tooltip text="选择算符" term_id="selector" >}}
-的 Kubernetes 服务创建 EndpointSlice。
-这些 EndpointSlice 将包含对与服务选择算符匹配的所有 Pod 的引用。
-EndpointSlice 通过唯一的协议、端口号和服务名称将网络端点组织在一起。
+的 Kubernetes Service 创建 EndpointSlice。
+这些 EndpointSlice 将包含对与 Service 选择算符匹配的所有 Pod 的引用。
+EndpointSlice 通过唯一的协议、端口号和 Service 名称将网络端点组织在一起。
 EndpointSlice 的名称必须是合法的
-[DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
 
-例如，下面是 Kubernetes 服务 `example` 的 EndpointSlice 资源示例。
+例如，下面是 Kubernetes Service `example` 的 EndpointSlice 资源示例。
 
 ```yaml
 apiVersion: discovery.k8s.io/v1
@@ -174,8 +174,8 @@ Services will always have the `ready` condition set to `true`.
 处于运行中的 Pod，它的 `Ready` 状况被设置为 `True`，应该将此 EndpointSlice 状况也设置为 `true`。
 出于兼容性原因，当 Pod 处于终止过程中，`ready` 永远不会为 `true`。
 消费者应参考 `serving` 状况来检查处于终止中的 Pod 的就绪情况。
-该规则的唯一例外是将 `spec.publishNotReadyAddresses` 设置为 `true` 的服务。
-这些服务（Service）的端点将始终将 `ready` 状况设置为 `true`。
+该规则的唯一例外是将 `spec.publishNotReadyAddresses` 设置为 `true` 的 Service。
+这些 Service 的端点将始终将 `ready` 状况设置为 `true`。
 
 <!--
 #### Serving
@@ -252,22 +252,22 @@ EndpointSlice 中的每个端点都可以包含一定的拓扑信息。
 In the v1 API, the per endpoint `topology` was effectively removed in favor of
 the dedicated fields `nodeName` and `zone`.
 -->
-在 v1 API 中，逐个端点设置的 `topology` 实际上被去除，以鼓励使用专用
-的字段 `nodeName` 和 `zone`。
+在 v1 API 中，逐个端点设置的 `topology` 实际上被去除，
+以鼓励使用专用的字段 `nodeName` 和 `zone`。
 
 <!--
 Setting arbitrary topology fields on the `endpoint` field of an `EndpointSlice`
-resource has been deprecated and is not be supported in the v1 API. Instead,
-the v1 API supports setting individual `nodeName` and `zone` fields. These
-fields are automatically translated between API versions. For example, the
+resource has been deprecated and is not supported in the v1 API. 
+Instead, the v1 API supports setting individual `nodeName` and `zone` fields. 
+These fields are automatically translated between API versions. For example, the
 value of the `"topology.kubernetes.io/zone"` key in the `topology` field in
 the v1beta1 API is accessible as the `zone` field in the v1 API.
 -->
-对 `EndpointSlice` 对象的 `endpoint` 字段设置任意的拓扑结构信息这一操作已被
-废弃，不再被 v1 API 所支持。取而代之的是 v1 API 所支持的 `nodeName` 和 `zone`
+对 `EndpointSlice` 对象的 `endpoint` 字段设置任意的拓扑结构信息这一操作已被废弃，
+不再被 v1 API 所支持。取而代之的是 v1 API 所支持的 `nodeName` 和 `zone`
 这些独立的字段。这些字段可以在不同的 API 版本之间自动完成转译。
-例如，v1beta1 API 中 `topology` 字段的 `topology.kubernetes.io/zone` 取值可以
-在 v1 API 中通过 `zone` 字段访问。
+例如，v1beta1 API 中 `topology` 字段的 `topology.kubernetes.io/zone`
+取值可以在 v1 API 中通过 `zone` 字段访问。
 {{< /note >}}
 
 <!--
@@ -283,8 +283,8 @@ entities or controllers managing additional sets of EndpointSlices.
 
 通常，控制面（尤其是端点切片的 {{< glossary_tooltip text="控制器" term_id="controller" >}}）
 会创建和管理 EndpointSlice 对象。EndpointSlice 对象还有一些其他使用场景，
-例如作为服务网格（Service Mesh）的实现。这些场景都会导致有其他实体
-或者控制器负责管理额外的 EndpointSlice 集合。
+例如作为服务网格（Service Mesh）的实现。
+这些场景都会导致有其他实体或者控制器负责管理额外的 EndpointSlice 集合。
 
 <!--
 To ensure that multiple entities can manage EndpointSlices without interfering
@@ -299,8 +299,8 @@ EndpointSlices should also set a unique value for this label.
 为了确保多个实体可以管理 EndpointSlice 而且不会相互产生干扰，Kubernetes 定义了
 {{< glossary_tooltip term_id="label" text="标签" >}}
 `endpointslice.kubernetes.io/managed-by`，用来标明哪个实体在管理某个
-EndpointSlice。端点切片控制器会在自己所管理的所有 EndpointSlice 上将该标签值设置
-为 `endpointslice-controller.k8s.io`。
+EndpointSlice。端点切片控制器会在自己所管理的所有 EndpointSlice 上将该标签值设置为
+`endpointslice-controller.k8s.io`。
 管理 EndpointSlice 的其他实体也应该为此标签设置一个唯一值。
 
 <!--
@@ -313,10 +313,10 @@ label that enables simple lookups of all EndpointSlices belonging to a Service.
 -->
 ### 属主关系   {#ownership}
 
-在大多数场合下，EndpointSlice 都由某个 Service 所有，（因为）该端点切片正是
-为该服务跟踪记录其端点。这一属主关系是通过为每个 EndpointSlice 设置一个
-属主（owner）引用，同时设置 `kubernetes.io/service-name` 标签来标明的，
-目的是方便查找隶属于某服务的所有 EndpointSlice。
+在大多数场合下，EndpointSlice 都由某个 Service 所有，
+（因为）该端点切片正是为该服务跟踪记录其端点。这一属主关系是通过为每个 EndpointSlice
+设置一个属主（owner）引用，同时设置 `kubernetes.io/service-name` 标签来标明的，
+目的是方便查找隶属于某 Service 的所有 EndpointSlice。
 
 <!--
 ### EndpointSlice mirroring
@@ -328,8 +328,8 @@ resources to corresponding EndpointSlices.
 -->
 ### EndpointSlice 镜像    {#endpointslice-mirroring}
 
-在某些场合，应用会创建定制的 Endpoints 资源。为了保证这些应用不需要并发
-的更改 Endpoints 和 EndpointSlice 资源，集群的控制面将大多数 Endpoints
+在某些场合，应用会创建定制的 Endpoints 资源。为了保证这些应用不需要并发的更改
+Endpoints 和 EndpointSlice 资源，集群的控制面将大多数 Endpoints
 映射到对应的 EndpointSlice 之上。
 
 <!--
@@ -372,8 +372,8 @@ with Endpoints.
 ### EndpointSlices 的分布问题  {#distribution-of-endpointslices}
 
 每个 EndpointSlice 都有一组端口值，适用于资源内的所有端点。
-当为服务使用命名端口时，Pod 可能会就同一命名端口获得不同的端口号，因而需要
-不同的 EndpointSlice。这有点像 Endpoints 用来对子网进行分组的逻辑。
+当为 Service 使用命名端口时，Pod 可能会就同一命名端口获得不同的端口号，
+因而需要不同的 EndpointSlice。这有点像 Endpoints 用来对子网进行分组的逻辑。
 
 <!--
 The control plane tries to fill EndpointSlices as full as possible, but does not
@@ -386,11 +386,10 @@ actively rebalance them. The logic is fairly straightforward:
 3. If there's still new endpoints left to add, try to fit them into a previously
    unchanged slice and/or create new ones.
 -->
-控制面尝试尽量将 EndpointSlice 填满，不过不会主动地在若干 EndpointSlice 之间
-执行再平衡操作。这里的逻辑也是相对直接的：
+控制面尝试尽量将 EndpointSlice 填满，不过不会主动地在若干 EndpointSlice
+之间执行再平衡操作。这里的逻辑也是相对直接的：
 
-1. 列举所有现有的 EndpointSlices，移除那些不再需要的端点并更新那些已经
-   变化的端点。
+1. 列举所有现有的 EndpointSlices，移除那些不再需要的端点并更新那些已经变化的端点。
 2. 列举所有在第一步中被更改过的 EndpointSlices，用新增加的端点将其填满。
 3. 如果还有新的端点未被添加进去，尝试将这些端点添加到之前未更改的切片中，
    或者创建新切片。
@@ -403,11 +402,11 @@ this approach will create a new EndpointSlice instead of filling up the 2
 existing EndpointSlices. In other words, a single EndpointSlice creation is
 preferrable to multiple EndpointSlice updates.
 -->
-这里比较重要的是，与在 EndpointSlice 之间完成最佳的分布相比，第三步中更看重
-限制 EndpointSlice 更新的操作次数。例如，如果有 10 个端点待添加，有两个
-EndpointSlice 中各有 5 个空位，上述方法会创建一个新的 EndpointSlice 而不是
-将现有的两个 EndpointSlice 都填满。换言之，与执行多个 EndpointSlice 更新操作
-相比较，方法会优先考虑执行一个 EndpointSlice 创建操作。
+这里比较重要的是，与在 EndpointSlice 之间完成最佳的分布相比，第三步中更看重限制
+EndpointSlice 更新的操作次数。例如，如果有 10 个端点待添加，有两个 EndpointSlice
+中各有 5 个空位，上述方法会创建一个新的 EndpointSlice 而不是将现有的两个
+EndpointSlice 都填满。换言之，与执行多个 EndpointSlice 更新操作相比较，
+方法会优先考虑执行一个 EndpointSlice 创建操作。
 
 <!--
 With kube-proxy running on each Node and watching EndpointSlices, every change
@@ -416,10 +415,10 @@ every Node in the cluster. This approach is intended to limit the number of
 changes that need to be sent to every Node, even if it may result with multiple
 EndpointSlices that are not full.
 -->
-由于 kube-proxy 在每个节点上运行并监视 EndpointSlice 状态，EndpointSlice 的
-每次变更都变得相对代价较高，因为这些状态变化要传递到集群中每个节点上。
-这一方法尝试限制要发送到所有节点上的变更消息个数，即使这样做可能会导致有
-多个 EndpointSlice 没有被填满。
+由于 kube-proxy 在每个节点上运行并监视 EndpointSlice 状态，EndpointSlice
+的每次变更都变得相对代价较高，因为这些状态变化要传递到集群中每个节点上。
+这一方法尝试限制要发送到所有节点上的变更消息个数，即使这样做可能会导致有多个
+EndpointSlice 没有被填满。
 
 <!--
 In practice, this less than ideal distribution should be rare. Most changes
@@ -429,11 +428,11 @@ necessary soon anyway. Rolling updates of Deployments also provide a natural
 repacking of EndpointSlices with all Pods and their corresponding endpoints
 getting replaced.
 -->
-在实践中，上面这种并非最理想的分布是很少出现的。大多数被 EndpointSlice 控制器
-处理的变更都是足够小的，可以添加到某已有 EndpointSlice 中去的。并且，假使无法
-添加到已有的切片中，不管怎样都会快就会需要一个新的 EndpointSlice 对象。
-Deployment 的滚动更新为重新为 EndpointSlice 打包提供了一个自然的机会，所有
-Pod 及其对应的端点在这一期间都会被替换掉。
+在实践中，上面这种并非最理想的分布是很少出现的。大多数被 EndpointSlice
+控制器处理的变更都是足够小的，可以添加到某已有 EndpointSlice 中去的。
+并且，假使无法添加到已有的切片中，不管怎样都会快就会需要一个新的
+EndpointSlice 对象。Deployment 的滚动更新为重新为 EndpointSlice
+打包提供了一个自然的机会，所有 Pod 及其对应的端点在这一期间都会被替换掉。
 
 <!--
 ### Duplicate endpoints
@@ -460,5 +459,5 @@ implementation in `kube-proxy`.
 <!--
 * Read [Connecting Applications with Services](/docs/concepts/services-networking/connect-applications-service/)
 -->
-* 阅读[使用服务连接应用](/zh/docs/concepts/services-networking/connect-applications-service/)
+* 阅读[使用 Service 连接到应用](/zh-cn/docs/concepts/services-networking/connect-applications-service/)
 
diff --git a/content/zh/docs/concepts/services-networking/ingress-controllers.md b/content/zh-cn/docs/concepts/services-networking/ingress-controllers.md
similarity index 59%
rename from content/zh/docs/concepts/services-networking/ingress-controllers.md
rename to content/zh-cn/docs/concepts/services-networking/ingress-controllers.md
index 54286d81a4..294cc38b6f 100644
--- a/content/zh/docs/concepts/services-networking/ingress-controllers.md
+++ b/content/zh-cn/docs/concepts/services-networking/ingress-controllers.md
@@ -29,9 +29,9 @@ Ingress 控制器不是随集群自动启动的。
 基于此页面，你可选择最适合你的集群的 ingress 控制器实现。
 
 Kubernetes 作为一个项目，目前支持和维护
-[AWS](https://github.com/kubernetes-sigs/aws-load-balancer-controller#readme)，
-[GCE](https://git.k8s.io/ingress-gce/README.md) 
-和 [nginx](https://git.k8s.io/ingress-nginx/README.md#readme) Ingress 控制器。
+[AWS](https://github.com/kubernetes-sigs/aws-load-balancer-controller#readme)、
+[GCE](https://git.k8s.io/ingress-gce/README.md#readme)
+和 [Nginx](https://git.k8s.io/ingress-nginx/README.md#readme) Ingress 控制器。
 
 <!-- body -->
 
@@ -43,33 +43,40 @@ Kubernetes 作为一个项目，目前支持和维护
 {{% thirdparty-content %}}
 
 <!--
-* [AKS Application Gateway Ingress Controller](https://azure.github.io/application-gateway-kubernetes-ingress/) is an ingress controller that configures the [Azure Application Gateway](https://docs.microsoft.com/azure/application-gateway/overview).
+* [AKS Application Gateway Ingress Controller](https://docs.microsoft.com/azure/application-gateway/tutorial-ingress-controller-add-on-existing) is an ingress controller that configures the [Azure Application Gateway](https://docs.microsoft.com/azure/application-gateway/overview).
 * [Ambassador](https://www.getambassador.io/) API Gateway is an [Envoy](https://www.envoyproxy.io)-based ingress
   controller.
+* [Apache APISIX ingress controller](https://github.com/apache/apisix-ingress-controller) is an [Apache APISIX](https://github.com/apache/apisix)-based ingress controller.
 * [Avi Kubernetes Operator](https://github.com/vmware/load-balancer-and-ingress-services-for-kubernetes) provides L4-L7 load-balancing using [VMware NSX Advanced Load Balancer](https://avinetworks.com/).
-* The [Citrix ingress controller](https://github.com/citrix/citrix-k8s-ingress-controller#readme) works with
-  Citrix Application Delivery Controller.
-* [Contour](https://projectcontour.io/) is an [Envoy](https://www.envoyproxy.io/) based ingress controller.
-* [EnRoute](https://getenroute.io/) is an [Envoy](https://www.envoyproxy.io) based API gateway that can run as an ingress controller.
 -->
-* [AKS 应用程序网关 Ingress 控制器](https://azure.github.io/application-gateway-kubernetes-ingress/)
-  是一个配置 [Azure 应用程序网关](https://docs.microsoft.com/azure/application-gateway/overview)
+* [AKS 应用程序网关 Ingress 控制器](https://docs.microsoft.com/zh-cn/azure/application-gateway/tutorial-ingress-controller-add-on-existing)
+  是一个配置 [Azure 应用程序网关](https://docs.microsoft.com/zh-cn/azure/application-gateway/overview)
   的 Ingress 控制器。
 * [Ambassador](https://www.getambassador.io/) API 网关是一个基于
-  [Envoy](https://www.envoyproxy.io) 的 Ingress
-  控制器。
+  [Envoy](https://www.envoyproxy.io) 的 Ingress 控制器。
 * [Apache APISIX Ingress 控制器](https://github.com/apache/apisix-ingress-controller)
   是一个基于 [Apache APISIX 网关](https://github.com/apache/apisix) 的 Ingress 控制器。
 * [Avi Kubernetes Operator](https://github.com/vmware/load-balancer-and-ingress-services-for-kubernetes)
   使用 [VMware NSX Advanced Load Balancer](https://avinetworks.com/)
   提供第 4 到第 7 层的负载均衡。
+<!--
+* [BFE Ingress Controller](https://github.com/bfenetworks/ingress-bfe) is a [BFE](https://www.bfe-networks.net)-based ingress controller.
+* The [Citrix ingress controller](https://github.com/citrix/citrix-k8s-ingress-controller#readme) works with
+  Citrix Application Delivery Controller.
+* [Contour](https://projectcontour.io/) is an [Envoy](https://www.envoyproxy.io/) based ingress controller.
+* [EnRoute](https://getenroute.io/) is an [Envoy](https://www.envoyproxy.io) based API gateway that can run as an ingress controller.
+* [Easegress IngressController](https://github.com/megaease/easegress/blob/main/doc/reference/ingresscontroller.md) is an [Easegress](https://megaease.com/easegress/) based API gateway that can run as an ingress controller.
+-->
+* [BFE Ingress 控制器](https://github.com/bfenetworks/ingress-bfe)是一个基于
+  [BFE](https://www.bfe-networks.net) 的 Ingress 控制器。
 * [Citrix Ingress 控制器](https://github.com/citrix/citrix-k8s-ingress-controller#readme)
   可以用来与 Citrix Application Delivery Controller 一起使用。
 * [Contour](https://projectcontour.io/) 是一个基于 [Envoy](https://www.envoyproxy.io/)
   的 Ingress 控制器。
-* [EnRoute](https://getenroute.io/) 是一个基于 [Envoy](https://www.envoyproxy.io) API 网关，
-  可以作为 Ingress 控制器来执行。
-* [Easegress IngressController](https://github.com/megaease/easegress/blob/main/doc/ingresscontroller.md) 是一个基于 [Easegress](https://megaease.com/easegress/) API 网关，可以作为 Ingress 控制器来执行。
+* [EnRoute](https://getenroute.io/) 是一个基于 [Envoy](https://www.envoyproxy.io)
+  的 API 网关，可以用作 Ingress 控制器。
+* [Easegress IngressController](https://github.com/megaease/easegress/blob/main/doc/reference/ingresscontroller.md)
+  是一个基于 [Easegress](https://megaease.com/easegress/) 的 API 网关，可以用作 Ingress 控制器。
 <!--
 * F5 BIG-IP [Container Ingress Services for Kubernetes](https://clouddocs.f5.com/containers/latest/userguide/kubernetes/)
   lets you use an Ingress to configure F5 BIG-IP virtual servers.
@@ -86,34 +93,41 @@ Kubernetes 作为一个项目，目前支持和维护
   [用于 Kubernetes 的容器 Ingress 服务](https://clouddocs.f5.com/products/connectors/k8s-bigip-ctlr/latest)
   让你能够使用 Ingress 来配置 F5 BIG-IP 虚拟服务器。
 * [Gloo](https://gloo.solo.io) 是一个开源的、基于 [Envoy](https://www.envoyproxy.io) 的
-  Ingress 控制器，能够提供 API 网关功能，
-* [HAProxy Ingress](https://haproxy-ingress.github.io/) 针对
-  [HAProxy](https://www.haproxy.org/#desc)
-  的 Ingress 控制器。
+  Ingress 控制器，能够提供 API 网关功能。
+* [HAProxy Ingress](https://haproxy-ingress.github.io/) 是一个针对
+  [HAProxy](https://www.haproxy.org/#desc) 的 Ingress 控制器。
 * [用于 Kubernetes 的 HAProxy Ingress 控制器](https://github.com/haproxytech/kubernetes-ingress#readme)
   也是一个针对 [HAProxy](https://www.haproxy.org/#desc) 的 Ingress 控制器。
-* [Istio Ingress](https://istio.io/latest/docs/tasks/traffic-management/ingress/kubernetes-ingress/)
-  是一个基于 [Istio](https://istio.io/) 的 Ingress 控制器。
+* [Istio Ingress](https://istio.io/latest/zh/docs/tasks/traffic-management/ingress/kubernetes-ingress/)
+  是一个基于 [Istio](https://istio.io/zh/) 的 Ingress 控制器。
 <!--
 * The [Kong Ingress Controller for Kubernetes](https://github.com/Kong/kubernetes-ingress-controller#readme)
   is an ingress controller driving [Kong Gateway](https://konghq.com/kong/).
+* [Kusk Gateway](https://kusk.kubeshop.io/) is an OpenAPI-driven ingress controller based on [Envoy](https://www.envoyproxy.io).
 * The [NGINX Ingress Controller for Kubernetes](https://www.nginx.com/products/nginx-ingress-controller/)
   works with the [NGINX](https://www.nginx.com/resources/glossary/nginx/) webserver (as a proxy).
+* The [Pomerium Ingress Controller](https://www.pomerium.com/docs/k8s/ingress.html) is based on [Pomerium](https://pomerium.com/), which offers context-aware access policy.
 * [Skipper](https://opensource.zalando.com/skipper/kubernetes/ingress-controller/) HTTP router and reverse proxy for service composition, including use cases like Kubernetes Ingress, designed as a library to build your custom proxy.
+-->
+* [用于 Kubernetes 的 Kong Ingress 控制器](https://github.com/Kong/kubernetes-ingress-controller#readme)
+  是一个用来驱动 [Kong Gateway](https://konghq.com/kong/) 的 Ingress 控制器。
+* [Kusk Gateway](https://kusk.kubeshop.io/) 是一个基于 [Envoy](https://www.envoyproxy.io) 的、
+  OpenAPI 驱动的 Ingress 控制器。
+* [用于 Kubernetes 的 NGINX Ingress 控制器](https://www.nginx.com/products/nginx-ingress-controller/)
+  能够与 [NGINX](https://www.nginx.com/resources/glossary/nginx/)
+  网页服务器（作为代理）一起使用。
+* [Pomerium Ingress 控制器](https://www.pomerium.com/docs/k8s/ingress.html)
+  基于 [Pomerium](https://pomerium.com/)，能提供上下文感知的准入策略。
+* [Skipper](https://opensource.zalando.com/skipper/kubernetes/ingress-controller/) HTTP
+  路由器和反向代理可用于服务组装，支持包括 Kubernetes Ingress
+  这类使用场景，是一个用以构造你自己的定制代理的库。
+<!--
 * The [Traefik Kubernetes Ingress provider](https://doc.traefik.io/traefik/providers/kubernetes-ingress/) is an
   ingress controller for the [Traefik](https://traefik.io/traefik/) proxy.
 * [Tyk Operator](https://github.com/TykTechnologies/tyk-operator) extends Ingress with Custom Resources to bring API Management capabilities to Ingress. Tyk Operator works with the Open Source Tyk Gateway & Tyk Cloud control plane.
 * [Voyager](https://appscode.com/products/voyager) is an ingress controller for
   [HAProxy](https://www.haproxy.org/#desc).
 -->
-* [用于 Kubernetes 的 Kong Ingress 控制器](https://github.com/Kong/kubernetes-ingress-controller#readme)
-  是一个用来驱动 [Kong Gateway](https://konghq.com/kong/) 的 Ingress 控制器。
-* [用于 Kubernetes 的 NGINX Ingress 控制器](https://www.nginx.com/products/nginx-ingress-controller/)
-  能够与 [NGINX](https://www.nginx.com/resources/glossary/nginx/) Web 服务器（作为代理）
-  一起使用。
-* [Skipper](https://opensource.zalando.com/skipper/kubernetes/ingress-controller/) HTTP
-  路由器和反向代理可用于服务组装，支持包括 Kubernetes Ingress 这类使用场景，
-  设计用来作为构造你自己的定制代理的库。
 * [Traefik Kubernetes Ingress 提供程序](https://doc.traefik.io/traefik/providers/kubernetes-ingress/)
   是一个用于 [Traefik](https://traefik.io/traefik/) 代理的 Ingress 控制器。
 * [Tyk Operator](https://github.com/TykTechnologies/tyk-operator)
@@ -128,23 +142,32 @@ Kubernetes 作为一个项目，目前支持和维护
 ## 使用多个 Ingress 控制器
 
 <!--
-You may deploy [any number of ingress controllers](https://git.k8s.io/ingress-nginx/docs/user-guide/multiple-ingress.md#multiple-ingress-controllers) 
-within a cluster. When you create an ingress, you should annotate each ingress with the appropriate
-[`ingress.class`](https://git.k8s.io/ingress-gce/docs/faq/README.md#how-do-i-run-multiple-ingress-controllers-in-the-same-cluster) 
-to indicate which ingress controller should be used if more than one exists within your cluster.
+You may deploy any number of ingress controllers using [ingress class](/docs/concepts/services-networking/ingress/#ingress-class)
+within a cluster. Note the `.metadata.name` of your ingress class resource. When you create an ingress you would need that name to specify the `ingressClassName` field on your Ingress object (refer to [IngressSpec v1 reference](/docs/reference/kubernetes-api/service-resources/ingress-v1/#IngressSpec). `ingressClassName` is a replacement of the older [annotation method](/docs/concepts/services-networking/ingress/#deprecated-annotation).
+-->
+你可以使用
+[Ingress 类](/zh-cn/docs/concepts/services-networking/ingress/#ingress-class)在集群中部署任意数量的
+Ingress 控制器。
+请注意你的 Ingress 类资源的 `.metadata.name` 字段。
+当你创建 Ingress 时，你需要用此字段的值来设置 Ingress 对象的 `ingressClassName` 字段（请参考
+[IngressSpec v1 reference](/zh-cn/docs/reference/kubernetes-api/service-resources/ingress-v1/#IngressSpec)）。
+`ingressClassName`
+是之前的[注解](/zh-cn/docs/concepts/services-networking/ingress/#deprecated-annotation)做法的替代。
 
-If you do not define a class, your cloud provider may use a default ingress controller.
+<!--
+If you do not specify an IngressClass for an Ingress, and your cluster has exactly one IngressClass marked as default, then Kubernetes [applies](/docs/concepts/services-networking/ingress/#default-ingress-class) the cluster's default IngressClass to the Ingress.
+You mark an IngressClass as default by setting the [`ingressclass.kubernetes.io/is-default-class` annotation](/docs/reference/labels-annotations-taints/#ingressclass-kubernetes-io-is-default-class) on that IngressClass, with the string value `"true"`.
 
 Ideally, all ingress controllers should fulfill this specification, but the various ingress
 controllers operate slightly differently.
 -->
-
-你可以在集群中部署[任意数量的 ingress 控制器](https://git.k8s.io/ingress-nginx/docs/user-guide/multiple-ingress.md#multiple-ingress-controllers)。
-创建 ingress 时，应该使用适当的
-[`ingress.class`](https://git.k8s.io/ingress-gce/docs/faq/README.md#how-do-i-run-multiple-ingress-controllers-in-the-same-cluster) 
-注解每个 Ingress 以表明在集群中如果有多个 Ingress 控制器时，应该使用哪个 Ingress 控制器。
-
-如果不定义 `ingress.class`，云提供商可能使用默认的 Ingress 控制器。
+如果你不为 Ingress 指定 IngressClass，并且你的集群中只有一个 IngressClass 被标记为默认，那么
+Kubernetes 会将此集群的默认 IngressClass
+[应用](/zh-cn/docs/concepts/services-networking/ingress/#default-ingress-class)到 Ingress 上。
+IngressClass。
+你可以通过将
+[`ingressclass.kubernetes.io/is-default-class` 注解](/zh-cn/docs/reference/labels-annotations-taints/#ingressclass-kubernetes-io-is-default-class)
+的值设置为 `"true"` 来将一个 IngressClass 标记为集群默认。
 
 理想情况下，所有 Ingress 控制器都应满足此规范，但各种 Ingress 控制器的操作略有不同。
 
@@ -161,6 +184,6 @@ Make sure you review your ingress controller's documentation to understand the c
 * Learn more about [Ingress](/docs/concepts/services-networking/ingress/).
 * [Set up Ingress on Minikube with the NGINX Controller](/docs/tasks/access-application-cluster/ingress-minikube).
 -->
-* 进一步了解 [Ingress](/zh/docs/concepts/services-networking/ingress/)。
-* [在 Minikube 上使用 NGINX 控制器安装 Ingress](/zh/docs/tasks/access-application-cluster/ingress-minikube)。
+* 进一步了解 [Ingress](/zh-cn/docs/concepts/services-networking/ingress/)。
+* [在 Minikube 上使用 NGINX 控制器安装 Ingress](/zh-cn/docs/tasks/access-application-cluster/ingress-minikube)。
 
diff --git a/content/zh/docs/concepts/services-networking/ingress.md b/content/zh-cn/docs/concepts/services-networking/ingress.md
similarity index 67%
rename from content/zh/docs/concepts/services-networking/ingress.md
rename to content/zh-cn/docs/concepts/services-networking/ingress.md
index c1ee7b6078..6b5bf60c38 100644
--- a/content/zh/docs/concepts/services-networking/ingress.md
+++ b/content/zh-cn/docs/concepts/services-networking/ingress.md
@@ -20,7 +20,7 @@ weight: 40
 
 For clarity, this guide defines the following terms:
 -->
-## 术语
+## 术语  {#terminology}
 
 为了表达更加清晰，本指南定义了以下术语：
 
@@ -31,15 +31,14 @@ For clarity, this guide defines the following terms:
 * Cluster network: A set of links, logical or physical, that facilitate communication within a cluster according to the Kubernetes [networking model](/docs/concepts/cluster-administration/networking/).
 * Service: A Kubernetes {{< glossary_tooltip term_id="service" >}} that identifies a set of Pods using {{< glossary_tooltip text="label" term_id="label" >}} selectors. Unless mentioned otherwise, Services are assumed to have virtual IPs only routable within the cluster network.
  -->
-* 节点（Node）: Kubernetes 集群中其中一台工作机器，是集群的一部分。
+* 节点（Node）: Kubernetes 集群中的一台工作机器，是集群的一部分。
 * 集群（Cluster）: 一组运行由 Kubernetes 管理的容器化应用程序的节点。
   在此示例和在大多数常见的 Kubernetes 部署环境中，集群中的节点都不在公共网络中。
-* 边缘路由器（Edge router）: 在集群中强制执行防火墙策略的路由器（router）。
-  可以是由云提供商管理的网关，也可以是物理硬件。
-* 集群网络（Cluster network）: 一组逻辑的或物理的连接，根据 Kubernetes
-  [网络模型](/zh/docs/concepts/cluster-administration/networking/) 在集群内实现通信。
-* 服务（Service）：Kubernetes {{< glossary_tooltip text="服务" term_id="service" >}}使用
-  {{< glossary_tooltip text="标签" term_id="label" >}}选择算符（selectors）标识的一组 Pod。
+* 边缘路由器（Edge Router）: 在集群中强制执行防火墙策略的路由器。可以是由云提供商管理的网关，也可以是物理硬件。
+* 集群网络（Cluster Network）: 一组逻辑的或物理的连接，根据 Kubernetes
+  [网络模型](/zh-cn/docs/concepts/cluster-administration/networking/)在集群内实现通信。
+* 服务（Service）：Kubernetes {{< glossary_tooltip term_id="service" >}}，
+  使用{{< glossary_tooltip text="标签" term_id="label" >}}选择器（selectors）辨认一组 Pod。
   除非另有说明，否则假定服务只具有在集群网络中可路由的虚拟 IP。
 
 <!--
@@ -49,10 +48,11 @@ For clarity, this guide defines the following terms:
 {{< link text="services" url="/docs/concepts/services-networking/service/" >}} within the cluster.
 Traffic routing is controlled by rules defined on the Ingress resource.
 -->
-## Ingress 是什么？
+## Ingress 是什么？  {#what-is-ingress}
 
 [Ingress](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#ingress-v1beta1-networking-k8s-io)
-公开了从集群外部到集群内[服务](/zh/docs/concepts/services-networking/service/)的 HTTP 和 HTTPS 路由。
+公开从集群外部到集群内[服务](/zh-cn/docs/concepts/services-networking/service/)的
+HTTP 和 HTTPS 路由。
 流量路由由 Ingress 资源上定义的规则控制。
 
 <!--
@@ -60,40 +60,25 @@ Here is a simple example where an Ingress sends all its traffic to one Service:
 -->
 下面是一个将所有流量都发送到同一 Service 的简单 Ingress 示例：
 
-{{< mermaid >}}
-graph LR;
-  client([客户端])-. Ingress-管理的 <br> 负载均衡器 .->ingress[Ingress];
-  ingress-->|路由规则|service[Service];
-  subgraph cluster
-  ingress;
-  service-->pod1[Pod];
-  service-->pod2[Pod];
-  end
-  classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-  classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-  classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-  class ingress,service,pod1,pod2 k8s;
-  class client plain;
-  class cluster cluster;
-{{</ mermaid >}}
+{{< figure src="/zh-cn/docs/images/ingress.svg" alt="ingress-diagram" class="diagram-large" caption="图. Ingress" link="https://mermaid.live/edit#pako:eNqNkstuwyAQRX8F4U0r2VHqPlSRKqt0UamLqlnaWWAYJygYLB59KMm_Fxcix-qmGwbuXA7DwAEzzQETXKutof0Ovb4vaoUQkwKUu6pi3FwXM_QSHGBt0VFFt8DRU2OWSGrKUUMlVQwMmhVLEV1Vcm9-aUksiuXRaO_CEhkv4WjBfAgG1TrGaLa-iaUw6a0DcwGI-WgOsF7zm-pN881fvRx1UDzeiFq7ghb1kgqFWiElyTjnuXVG74FkbdumefEpuNuRu_4rZ1pqQ7L5fL6YQPaPNiFuywcG9_-ihNyUkm6YSONWkjVNM8WUIyaeOJLO3clTB_KhL8NQDmVe-OJjxgZM5FhFiiFTK5zjDkxHBQ9_4zB4a-x20EGNSZhyaKmXrg7f5hSsvufUwTMXThtMWiot5Jh6p9ffimHijIezaSVoeN0uiqcfMJvf7w" >}}
 
 <!-- 
 An Ingress may be configured to give Services externally-reachable URLs, load balance traffic, terminate SSL / TLS, and offer name based virtual hosting. An [Ingress controller](/docs/concepts/services-networking/ingress-controllers) is responsible for fulfilling the Ingress, usually with a load balancer, though it may also configure your edge router or additional frontends to help handle the traffic.
 -->
-可以将 Ingress 配置为服务提供外部可访问的 URL、负载均衡流量、终止 SSL/TLS，以及提供基于名称的虚拟主机等能力。
-[Ingress 控制器](/zh/docs/concepts/services-networking/ingress-controllers)
+Ingress 可为 Service 提供外部可访问的 URL、负载均衡流量、终止 SSL/TLS，以及基于名称的虚拟托管。
+[Ingress 控制器](/zh-cn/docs/concepts/services-networking/ingress-controllers)
 通常负责通过负载均衡器来实现 Ingress，尽管它也可以配置边缘路由器或其他前端来帮助处理流量。
 
 <!-- 
 An Ingress does not expose arbitrary ports or protocols. Exposing services other than HTTP and HTTPS to the internet typically
-uses a service of type [Service.Type=NodePort](/docs/concepts/services-networking/service/#nodeport) or
+uses a service of type [Service.Type=NodePort](/docs/concepts/services-networking/service/#type-nodeport) or
 [Service.Type=LoadBalancer](/docs/concepts/services-networking/service/#loadbalancer).
 -->
 Ingress 不会公开任意端口或协议。
 将 HTTP 和 HTTPS 以外的服务公开到 Internet 时，通常使用
-[Service.Type=NodePort](/zh/docs/concepts/services-networking/service/#nodeport)
-或 [Service.Type=LoadBalancer](/zh/docs/concepts/services-networking/service/#loadbalancer)
-类型的服务。
+[Service.Type=NodePort](/zh-cn/docs/concepts/services-networking/service/#type-nodeport)
+或 [Service.Type=LoadBalancer](/zh-cn/docs/concepts/services-networking/service/#loadbalancer)
+类型的 Service。
 
 <!--
 ## Prerequisites
@@ -102,7 +87,7 @@ You must have an [ingress controller](/docs/concepts/services-networking/ingress
 -->
 ## 环境准备
 
-你必须具有 [Ingress 控制器](/zh/docs/concepts/services-networking/ingress-controllers) 才能满足 Ingress 的要求。
+你必须拥有一个 [Ingress 控制器](/zh-cn/docs/concepts/services-networking/ingress-controllers) 才能满足 Ingress 的要求。
 仅创建 Ingress 资源本身没有任何效果。
 
 <!-- 
@@ -110,7 +95,7 @@ You may need to deploy an Ingress controller such as [ingress-nginx](https://kub
 [Ingress controllers](/docs/concepts/services-networking/ingress-controllers).
 -->
 你可能需要部署 Ingress 控制器，例如 [ingress-nginx](https://kubernetes.github.io/ingress-nginx/deploy/)。
-你可以从许多 [Ingress 控制器](/zh/docs/concepts/services-networking/ingress-controllers) 中进行选择。
+你可以从许多 [Ingress 控制器](/zh-cn/docs/concepts/services-networking/ingress-controllers) 中进行选择。
 
 <!-- 
 Ideally, all Ingress controllers should fit the reference specification. In reality, the various Ingress
@@ -138,35 +123,53 @@ A minimal Ingress resource example:
 {{< codenew file="service/networking/minimal-ingress.yaml" >}}
 
 <!-- 
-As with all other Kubernetes resources, an Ingress needs `apiVersion`, `kind`, and `metadata` fields.
+An Ingress needs `apiVersion`, `kind`, `metadata` and `spec` fields.
 The name of an Ingress object must be a valid
 [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 For general information about working with config files, see [deploying applications](/docs/tasks/run-application/run-stateless-application-deployment/), [configuring containers](/docs/tasks/configure-pod-container/configure-pod-configmap/), [managing resources](/docs/concepts/cluster-administration/manage-deployment/).
  Ingress frequently uses annotations to configure some options depending on the Ingress controller, an example of which
  is the [rewrite-target annotation](https://github.com/kubernetes/ingress-nginx/blob/master/docs/examples/rewrite/README.md).
-Different [Ingress controller](/docs/concepts/services-networking/ingress-controllers) support different annotations. Review the documentation for
+Different [Ingress controllers](/docs/concepts/services-networking/ingress-controllers) support different annotations. Review the documentation for
  your choice of Ingress controller to learn which annotations are supported.
 -->
- 与所有其他 Kubernetes 资源一样，Ingress 需要使用 `apiVersion`、`kind` 和 `metadata` 字段。
- Ingress 对象的命名必须是合法的 [DNS 子域名名称](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
- 有关使用配置文件的一般信息，请参见[部署应用](/zh/docs/tasks/run-application/run-stateless-application-deployment/)、
-[配置容器](/zh/docs/tasks/configure-pod-container/configure-pod-configmap/)、
-[管理资源](/zh/docs/concepts/cluster-administration/manage-deployment/)。
- Ingress 经常使用注解（annotations）来配置一些选项，具体取决于 Ingress 控制器，例如
-[重写目标注解](https://github.com/kubernetes/ingress-nginx/blob/master/docs/examples/rewrite/README.md)。
- 不同的 [Ingress 控制器](/zh/docs/concepts/services-networking/ingress-controllers)
-支持不同的注解。查看文档以供你选择 Ingress 控制器，以了解支持哪些注解。
+Ingress 需要指定 `apiVersion`、`kind`、 `metadata`和 `spec` 字段。
+Ingress 对象的命名必须是合法的 [DNS 子域名名称](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
+关于如何使用配置文件，请参见[部署应用](/zh-cn/docs/tasks/run-application/run-stateless-application-deployment/)、
+[配置容器](/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap/)、
+[管理资源](/zh-cn/docs/concepts/cluster-administration/manage-deployment/)。
+Ingress 经常使用注解（annotations）来配置一些选项，具体取决于 Ingress
+控制器，例如[重写目标注解](https://github.com/kubernetes/ingress-nginx/blob/master/docs/examples/rewrite/README.md)。
+不同的 [Ingress 控制器](/zh-cn/docs/concepts/services-networking/ingress-controllers)支持不同的注解。
+查看你所选的 Ingress 控制器的文档，以了解其支持哪些注解。
 
 <!-- 
 The Ingress [spec](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status)
 has all the information needed to configure a load balancer or proxy server. Most importantly, it
 contains a list of rules matched against all incoming requests. Ingress resource only supports rules
-for directing HTTP traffic.
+for directing HTTP(S) traffic.
 -->
 Ingress [规约](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status)
 提供了配置负载均衡器或者代理服务器所需的所有信息。
 最重要的是，其中包含与所有传入请求匹配的规则列表。
-Ingress 资源仅支持用于转发 HTTP 流量的规则。
+Ingress 资源仅支持用于转发 HTTP(S) 流量的规则。
+
+<!--
+If the `ingressClassName` is omitted, a [default Ingress class](#default-ingress-class)
+should be defined.
+
+There are some ingress controllers, that work without the definition of a
+default `IngressClass`. For example, the Ingress-NGINX controller can be
+configured with a [flag](https://kubernetes.github.io/ingress-nginx/#what-is-the-flag-watch-ingress-without-class)
+`--watch-ingress-without-class`. It is [recommended](https://kubernetes.github.io/ingress-nginx/#i-have-only-one-instance-of-the-ingresss-nginx-controller-in-my-cluster-what-should-i-do)  though, to specify the
+default `IngressClass` as shown [below](#default-ingress-class).
+-->
+如果 `ingressClassName` 被省略，那么你应该定义一个[默认 Ingress 类](#default-ingress-class)。
+
+有一些 Ingress 控制器不需要定义默认的 `IngressClass`。比如：Ingress-NGINX
+控制器可以通过[参数](https://kubernetes.github.io/ingress-nginx/#what-is-the-flag-watch-ingress-without-class)
+`--watch-ingress-without-class` 来配置。
+不过仍然[推荐](https://kubernetes.github.io/ingress-nginx/#i-have-only-one-instance-of-the-ingresss-nginx-controller-in-my-cluster-what-should-i-do)
+按[下文](#default-ingress-class)所示来设置默认的 `IngressClass`。
 
 <!-- 
 ### Ingress rules
@@ -192,31 +195,42 @@ Each HTTP rule contains the following information:
   如果提供了 `host`（例如 foo.bar.com），则 `rules` 适用于该 `host`。
 * 路径列表 paths（例如，`/testpath`）,每个路径都有一个由 `serviceName` 和 `servicePort` 定义的关联后端。
   在负载均衡器将流量定向到引用的服务之前，主机和路径都必须匹配传入请求的内容。
-* `backend`（后端）是 [Service 文档](/zh/docs/concepts/services-networking/service/)中所述的服务和端口名称的组合。
+* `backend`（后端）是 [Service 文档](/zh-cn/docs/concepts/services-networking/service/)中所述的服务和端口名称的组合。
   与规则的 `host` 和 `path` 匹配的对 Ingress 的 HTTP（和 HTTPS ）请求将发送到列出的 `backend`。
 
 <!-- 
 A `defaultBackend` is often configured in an Ingress controller to service any requests that do not
 match a path in the spec. 
 -->
-通常在 Ingress 控制器中会配置 `defaultBackend`（默认后端），以服务于任何不符合规约中 `path` 的请求。
+通常在 Ingress 控制器中会配置 `defaultBackend`（默认后端），以服务于无法与规约中 `path` 匹配的所有请求。
 
 <!-- 
 ### DefaultBackend {#default-backend}
 
-An Ingress with no rules sends all traffic to a single default backend. The `defaultBackend` is conventionally a configuration option of the [Ingress controller](/docs/concepts/services-networking/ingress-controllers) and is not specified in your Ingress resources.
--->
-### DefaultBackend  {#default-backend}
+An Ingress with no rules sends all traffic to a single default backend and `.spec.defaultBackend`
+is the backend that should handle requests in that case.
+The `defaultBackend` is conventionally a configuration option of the
+[Ingress controller](/docs/concepts/services-networking/ingress-controllers) and
+is not specified in your Ingress resources.
+If no `.spec.rules` are specified, `.spec.defaultBackend` must be specified.
+If `defaultBackend` is not set, the handling of requests that do not match any of the rules will be up to the
+ingress controller (consult the documentation for your ingress controller to find out how it handles this case). 
 
-没有 `rules` 的 Ingress 将所有流量发送到同一个默认后端。
-`defaultBackend` 通常是 [Ingress 控制器](/zh/docs/concepts/services-networking/ingress-controllers)
-的配置选项，而非在 Ingress 资源中指定。
-
-<!--
 If none of the hosts or paths match the HTTP request in the Ingress objects, the traffic is
 routed to your default backend.
 -->
-如果 `hosts` 或 `paths` 都没有与 Ingress 对象中的 HTTP 请求匹配，则流量将路由到默认后端。
+### 默认后端  {#default-backend}
+
+没有设置规则的 Ingress 将所有流量发送到同一个默认后端，而
+`.spec.defaultBackend` 则是在这种情况下处理请求的那个默认后端。
+`defaultBackend` 通常是
+[Ingress 控制器](/zh-cn/docs/concepts/services-networking/ingress-controllers)的配置选项，而非在
+Ingress 资源中指定。
+如果未设置任何的 `.spec.rules`，那么必须指定 `.spec.defaultBackend`。
+如果未设置 `defaultBackend`，那么如何处理所有与规则不匹配的流量将交由
+Ingress 控制器决定（请参考你的 Ingress 控制器的文档以了解它是如何处理那些流量的）。
+
+如果没有 `hosts` 或 `paths` 与 Ingress 对象中的 HTTP 请求匹配，则流量将被路由到默认后端。
 
 <!--
 ### Resource backends {#resource-backend}
@@ -229,9 +243,8 @@ with static assets.
 -->
 ### 资源后端  {#resource-backend}
 
-`Resource` 后端是一个 `ObjectRef`，指向同一名字空间中的另一个
-Kubernetes，将其作为 Ingress 对象。`Resource` 与 `Service` 配置是互斥的，在
-二者均被设置时会无法通过合法性检查。
+`Resource` 后端是一个引用，指向同一命名空间中的另一个 Kubernetes 资源，将其作为 Ingress 对象。
+`Resource` 后端与 Service 后端是互斥的，在二者均被设置时会无法通过合法性检查。
 `Resource` 后端的一种常见用法是将所有入站数据导向带有静态资产的对象存储后端。
 
 {{< codenew file="service/networking/ingress-resource-backend.yaml" >}}
@@ -410,41 +423,140 @@ IngressClass 资源包含额外的配置，其中包括应当实现该类的控
 {{< codenew file="service/networking/external-lb.yaml" >}}
 
 <!-- 
-IngressClass resources contain an optional parameters field. This can be used to
-reference additional implementation-specific configuration for this class.
+The `.spec.parameters` field of an IngressClass lets you reference another
+resource that provides configuration related to that IngressClass.
+
+The specific type of parameters to use depends on the ingress controller
+that you specify in the `.spec.controller` field of the IngressClass.
  -->
-IngressClass 资源包含一个可选的 `parameters` 字段，可用于为该类引用额外的、
-特定于具体实现的配置。
+IngressClass 中的 `.spec.parameters` 字段可用于引用其他资源以提供额外的相关配置。
+
+参数（`parameters`）的具体类型取决于你在 `.spec.controller` 字段中指定的 Ingress 控制器。
 
 <!--
-#### Namespace-scoped parameters
--->
-#### 名字空间域的参数
+### IngressClass scope
 
-{{< feature-state for_k8s_version="v1.22" state="beta" >}}
+Depending on your ingress controller, you may be able to use parameters
+that you set cluster-wide, or just for one namespace.
+-->
+### IngressClass 的作用域
+
+取决于你的 Ingress 控制器，你可能可以使用集群范围设置的参数或某个名字空间范围的参数。
+
+{{< tabs name="tabs_ingressclass_parameter_scope" >}}
+{{% tab name="集群作用域" %}}
+<!--
+The default scope for IngressClass parameters is cluster-wide.
+
+If you set the `.spec.parameters` field and don't set
+`.spec.parameters.scope`, or if you set `.spec.parameters.scope` to
+`Cluster`, then the IngressClass refers to a cluster-scoped resource.
+The `kind` (in combination the `apiGroup`) of the parameters
+refers to a cluster-scoped API (possibly a custom resource), and
+the `name` of the parameters identifies a specific cluster scoped
+resource for that API.
+
+For example:
+-->
+IngressClass 的参数默认是集群范围的。
+
+如果你设置了 `.spec.parameters` 字段且未设置 `.spec.parameters.scope`
+字段，或是将 `.spec.parameters.scope` 字段设为了 `Cluster`，那么该
+IngressClass 所指代的即是一个集群作用域的资源。
+参数的 `kind`（和 `apiGroup` 一起）指向一个集群作用域的
+API（可能是一个定制资源（Custom Resource）），而它的
+`name` 则为此 API 确定了一个具体的集群作用域的资源。
+
+示例：
+```yaml
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  name: external-lb-1
+spec:
+  controller: example.com/ingress-controller
+  parameters:
+    # 此 IngressClass 的配置定义在一个名为 “external-config-1” 的
+    # ClusterIngressParameter（API 组为 k8s.example.net）资源中。
+    # 这项定义告诉 Kubernetes 去寻找一个集群作用域的参数资源。
+    scope: Cluster
+    apiGroup: k8s.example.net
+    kind: ClusterIngressParameter
+    name: external-config-1
+```
+{{% /tab %}}
+{{% tab name="命名空间作用域" %}}
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
 
 <!--
-`Parameters` field has a `scope` and `namespace` field that can be used to
-reference a namespace-specific resource for configuration of an Ingress class.
-`Scope` field defaults to `Cluster`, meaning, the default is cluster-scoped
-resource. Setting `Scope` to `Namespace` and setting the `Namespace` field
-will reference a parameters resource in a specific namespace:
+If you set the `.spec.parameters` field and set
+`.spec.parameters.scope` to `Namespace`, then the IngressClass refers
+to a namespaced-scoped resource. You must also set the `namespace`
+field within `.spec.parameters` to the namespace that contains
+the parameters you want to use.
 
-Namespace-scoped parameters avoid the need for a cluster-scoped CustomResourceDefinition
-for a parameters resource. This further avoids RBAC-related resources
-that would otherwise be required to grant permissions to cluster-scoped
-resources.
+The `kind` (in combination the `apiGroup`) of the parameters
+refers to a namespaced API (for example: ConfigMap), and
+the `name` of the parameters identifies a specific resource
+in the namespace you specified in `namespace`.
 -->
-`parameters` 字段有一个 `scope` 和 `namespace` 字段，可用来引用特定
-于名字空间的资源，对 Ingress 类进行配置。
-`scope` 字段默认为 `Cluster`，表示默认是集群作用域的资源。
-将 `scope` 设置为 `Namespace` 并设置 `namespace` 字段就可以引用某特定
-名字空间中的参数资源。
+如果你设置了 `.spec.parameters` 字段且将 `.spec.parameters.scope`
+字段设为了 `Namespace`，那么该 IngressClass 将会引用一个命名空间作用域的资源。
+`.spec.parameters.namespace` 必须和此资源所处的命名空间相同。
 
-有了名字空间域的参数，就不再需要为一个参数资源配置集群范围的 CustomResourceDefinition。
-除此之外，之前对访问集群范围的资源进行授权，需要用到 RBAC 相关的资源，现在也不再需要了。
+参数的 `kind`（和 `apiGroup`
+一起）指向一个命名空间作用域的 API（例如：ConfigMap），而它的
+`name` 则确定了一个位于你指定的命名空间中的具体的资源。
 
-{{< codenew file="service/networking/namespaced-params.yaml" >}}
+<!--
+Namespace-scoped parameters help the cluster operator delegate control over the
+configuration (for example: load balancer settings, API gateway definition)
+that is used for a workload. If you used a cluster-scoped parameter then either:
+
+- the cluster operator team needs to approve a different team's changes every
+  time there's a new configuration change being applied.
+- the cluster operator must define specific access controls, such as
+  [RBAC](/docs/reference/access-authn-authz/rbac/) roles and bindings, that let
+  the application team make changes to the cluster-scoped parameters resource.
+-->
+命名空间作用域的参数帮助集群操作者将控制细分到用于工作负载的各种配置中（比如：负载均衡设置、API
+网关定义）。如果你使用集群作用域的参数，那么你必须从以下两项中选择一项执行：
+
+- 每次修改配置，集群操作团队需要批准其他团队的修改。
+- 集群操作团队定义具体的准入控制，比如 [RBAC](/zh-cn/docs/reference/access-authn-authz/rbac/)
+  角色与角色绑定，以使得应用程序团队可以修改集群作用域的配置参数资源。
+
+<!--
+The IngressClass API itself is always cluster-scoped.
+
+Here is an example of an IngressClass that refers to parameters that are
+namespaced:
+-->
+IngressClass API 本身是集群作用域的。
+
+这里是一个引用命名空间作用域的配置参数的 IngressClass 的示例：
+```yaml
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  name: external-lb-2
+spec:
+  controller: example.com/ingress-controller
+  parameters:
+    # 此 IngressClass 的配置定义在一个名为 “external-config” 的
+    # IngressParameter（API 组为 k8s.example.com）资源中，
+    # 该资源位于 “external-configuration” 命名空间中。
+    scope: Namespace
+    apiGroup: k8s.example.com
+    kind: IngressParameter
+    namespace: external-configuration
+    name: external-config
+```
+
+{{% /tab %}}
+{{< /tabs >}}
 
 <!-- 
 ### Deprecated Annotation
@@ -456,8 +568,8 @@ never formally defined, but was widely supported by Ingress controllers.
 -->
 ### 废弃的注解  {#deprecated-annotation}
 
-在 Kubernetes 1.18 版本引入 IngressClass 资源和 `ingressClassName` 字段之前，
-Ingress 类是通过 Ingress 中的一个 `kubernetes.io/ingress.class` 注解来指定的。
+在 Kubernetes 1.18 版本引入 IngressClass 资源和 `ingressClassName` 字段之前，Ingress
+类是通过 Ingress 中的一个 `kubernetes.io/ingress.class` 注解来指定的。
 这个注解从未被正式定义过，但是得到了 Ingress 控制器的广泛支持。
 
 <!-- 
@@ -468,9 +580,8 @@ Ingress, the field is a reference to an IngressClass resource that contains
 additional Ingress configuration, including the name of the Ingress controller.
 -->
 Ingress 中新的 `ingressClassName` 字段是该注解的替代品，但并非完全等价。
-该注解通常用于引用实现该 Ingress 的控制器的名称，
-而这个新的字段则是对一个包含额外 Ingress 配置的 IngressClass 资源的引用，
-包括 Ingress 控制器的名称。
+该注解通常用于引用实现该 Ingress 的控制器的名称，而这个新的字段则是对一个包含额外
+Ingress 配置的 IngressClass 资源的引用，包括 Ingress 控制器的名称。
 
 <!-- 
 ### Default IngressClass {#default-ingress-class}
@@ -499,6 +610,21 @@ IngressClasess are marked as default in your cluster.
 解决这个问题只需确保集群中最多只能有一个 IngressClass 被标记为默认。
 {{< /caution >}}
 
+<!--
+There are some ingress controllers, that work without the definition of a
+default `IngressClass`. For example, the Ingress-NGINX controller can be
+configured with a [flag](https://kubernetes.github.io/ingress-nginx/#what-is-the-flag-watch-ingress-without-class)
+`--watch-ingress-without-class`. It is [recommended](https://kubernetes.github.io/ingress-nginx/#i-have-only-one-instance-of-the-ingresss-nginx-controller-in-my-cluster-what-should-i-do)  though, to specify the
+default `IngressClass`:
+-->
+有一些 Ingress 控制器不需要定义默认的 `IngressClass`。比如：Ingress-NGINX
+控制器可以通过[参数](https://kubernetes.github.io/ingress-nginx/#what-is-the-flag-watch-ingress-without-class)
+`--watch-ingress-without-class` 来配置。
+不过仍然[推荐](https://kubernetes.github.io/ingress-nginx/#i-have-only-one-instance-of-the-ingresss-nginx-controller-in-my-cluster-what-should-i-do)
+设置默认的 `IngressClass`。
+
+{{< codenew file="service/networking/default-ingressclass.yaml" >}}
+
 <!--
 ## Types of Ingress
 
@@ -559,25 +685,8 @@ down to a minimum. For example, a setup like:
 一个扇出（fanout）配置根据请求的 HTTP URI 将来自同一 IP 地址的流量路由到多个 Service。
 Ingress 允许你将负载均衡器的数量降至最低。例如，这样的设置：
 
-{{< mermaid >}}
-graph LR;
-  client([客户端])-. Ingress-管理的 <br> 负载均衡器 .->ingress[Ingress, 178.91.123.132];
-  ingress-->|/foo|service1[Service service1:4200];
-  ingress-->|/bar|service2[Service service2:8080];
-  subgraph cluster
-  ingress;
-  service1-->pod1[Pod];
-  service1-->pod2[Pod];
-  service2-->pod3[Pod];
-  service2-->pod4[Pod];
-  end
-  classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-  classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-  classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-  class ingress,service1,service2,pod1,pod2,pod3,pod4 k8s;
-  class client plain;
-  class cluster cluster;
-{{</ mermaid >}}
+{{< figure src="/zh-cn/docs/images/ingressFanOut.svg" alt="ingress-fanout-diagram" class="diagram-large" caption="图. Ingress 扇出" link="https://mermaid.live/edit#pako:eNqNUslOwzAQ_RXLvYCUhMQpUFzUUzkgcUBwbHpw4klr4diR7bCo8O8k2FFbFomLPZq3jP00O1xpDpjijWHtFt09zAuFUCUFKHey8vf6NE7QrdoYsDZumGIb4Oi6NAskNeOoZJKpCgxK4oXwrFVgRyi7nCVXWZKRPMlysv5yD6Q4Xryf1Vq_WzDPooJs9egLNDbolKTpT03JzKgh3zWEztJZ0Niu9L-qZGcdmAMfj4cxvWmreba613z9C0B-AMQD-V_AdA-A4j5QZu0SatRKJhSqhZR0wjmPrDP6CeikrutQxy-Cuy2dtq9RpaU2dJKm6fzI5Glmg0VOLio4_5dLjx27hFSC015KJ2VZHtuQvY2fuHcaE43G0MaCREOow_FV5cMxHZ5-oPX75UM5avuXhXuOI9yAaZjg_aLuBl6B3RYaKDDtSw4166QrcKE-emrXcubghgunDaY1kxYizDqnH99UhakzHYykpWD9hjS--fEJoIELqQ" >}}
+
 
 <!--
 would require an Ingress such as:
@@ -630,8 +739,8 @@ you are using, you may need to create a default-http-backend
 [Service](/docs/concepts/services-networking/service/).
 -->
 {{< note >}}
-取决于你所使用的 [Ingress 控制器](/zh/docs/concepts/services-networking/ingress-controllers)，
-你可能需要创建默认 HTTP 后端[服务](/zh/docs/concepts/services-networking/service/)。
+取决于你所使用的 [Ingress 控制器](/zh-cn/docs/concepts/services-networking/ingress-controllers)，
+你可能需要创建默认 HTTP 后端[服务](/zh-cn/docs/concepts/services-networking/service/)。
 {{< /note >}}
 
 <!--
@@ -643,25 +752,7 @@ Name-based virtual hosts support routing HTTP traffic to multiple host names at
 
 基于名称的虚拟主机支持将针对多个主机名的 HTTP 流量路由到同一 IP 地址上。
 
-{{< mermaid >}}
-graph LR;
-  client([客户端])-. Ingress-管理的 <br> 负载均衡器 .->ingress[Ingress, 178.91.123.132];
-  ingress-->|Host: foo.bar.com|service1[Service service1:80];
-  ingress-->|Host: bar.foo.com|service2[Service service2:80];
-  subgraph cluster
-  ingress;
-  service1-->pod1[Pod];
-  service1-->pod2[Pod];
-  service2-->pod3[Pod];
-  service2-->pod4[Pod];
-  end
-  classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-  classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-  classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-  class ingress,service1,service2,pod1,pod2,pod3,pod4 k8s;
-  class client plain;
-  class cluster cluster;
-{{</ mermaid >}}
+{{< figure src="/zh-cn/docs/images/ingressNameBased.svg" alt="ingress-namebase-diagram" class="diagram-large" caption="图. 基于名称实现虚拟托管的 Ingress" link="https://mermaid.live/edit#pako:eNqNkl9PwyAUxb8KYS-atM1Kp05m9qSJJj4Y97jugcLtRqTQAPVPdN_dVlq3qUt8gZt7zvkBN7xjbgRgiteW1Rt0_zjLNUJcSdD-ZBn21WmcoDu9tuBcXDHN1iDQVWHnSBkmUMEU0xwsSuK5DK5l745QejFNLtMkJVmSZmT1Re9NcTz_uDXOU1QakxTMJtxUHw7ss-SQLhehQEODTsdH4l20Q-zFyc84-Y67pghv5apxHuweMuj9eS2_NiJdPhix-kMgvwQShOyYMNkJoEUYM3PuGkpUKyY1KqVSdCSEiJy35gnoqCzLvo5fpPAbOqlfI26UsXQ0Ho9nB5CnqesRGTnncPYvSqsdUvqp9KRdlI6KojjEkB0mnLgjDRONhqENBYm6oXbLV5V1y6S7-l42_LowlIN2uFm_twqOcAW2YlK0H_i9c-bYb6CCHNO2FFCyRvkc53rbWptaMA83QnpjMS2ZchBh1nizeNMcU28bGEzXkrV_pArN7Sc0rBTu" >}}
 
 <!--
 The following Ingress tells the backing load balancer to route requests based on
@@ -682,14 +773,10 @@ Ingress 控制器 IP 地址的任何网络流量，而无需基于名称的虚
 
 <!-- 
 For example, the following Ingress routes traffic
-requested for `first.bar.com` to `service1`, `second.bar.com` to `service2`, and any traffic
-to the IP address without a hostname defined in request (that is, without a request header being
-presented) to `service3`.
+requested for `first.bar.com` to `service1`, `second.bar.com` to `service2`, and any traffic whose request host header doesn't match `first.bar.com` and `second.bar.com` to `service3`.
 -->
-例如，以下 Ingress 会将针对 `first.bar.com` 的请求流量路由到 `service1`，
-将针对 `second.bar.com` 的请求流量路由到 `service2`，
-而针对该 IP 地址的、没有在请求中定义主机名的请求流量会被路由（即，不提供请求标头）
-到 `service3`。
+例如，以下 Ingress 会将请求 `first.bar.com` 的流量路由到 `service1`，将请求
+`second.bar.com` 的流量路由到 `service2`，而所有其他流量都会被路由到 `service3`。
 
 {{< codenew file="service/networking/name-virtual-host-ingress-no-third-host.yaml" >}}
 
@@ -710,12 +797,12 @@ and private key to use for TLS. For example:
 
 你可以通过设定包含 TLS 私钥和证书的{{< glossary_tooltip text="Secret" term_id="secret" >}}
 来保护 Ingress。
-Ingress 只支持单个 TLS 端口 443，并假定 TLS 连接终止于 Ingress 节点
-（与 Service 及其 Pod 之间的流量都以明文传输）。
-如果 Ingress 中的 TLS 配置部分指定了不同的主机，那么它们将根据通过 SNI TLS 扩展指定的主机名
-（如果 Ingress 控制器支持 SNI）在同一端口上进行复用。
-TLS Secret 必须包含名为 `tls.crt` 和 `tls.key` 的键名。
-这些数据包含用于 TLS 的证书和私钥。例如：
+Ingress 只支持单个 TLS 端口 443，并假定 TLS 连接终止于
+Ingress 节点（与 Service 及其 Pod 之间的流量都以明文传输）。
+如果 Ingress 中的 TLS 配置部分指定了不同的主机，那么它们将根据通过
+SNI TLS 扩展指定的主机名（如果 Ingress 控制器支持 SNI）在同一端口上进行复用。
+TLS Secret 的数据中必须包含用于 TLS 的以键名 `tls.crt` 保存的证书和以键名 `tls.key` 保存的私钥。
+例如：
 
 ```yaml
 apiVersion: v1
@@ -724,8 +811,8 @@ metadata:
   name: testsecret-tls
   namespace: default
 data:
-  tls.crt: base64 编码的 cert
-  tls.key: base64 编码的 key
+  tls.crt: base64 编码的证书
+  tls.key: base64 编码的私钥
 type: kubernetes.io/tls
 ```
 
@@ -747,8 +834,7 @@ certificates would have to be issued for all the possible sub-domains. Therefore
 section.
 -->
 注意，默认规则上无法使用 TLS，因为需要为所有可能的子域名发放证书。
-因此，`tls` 节区的 `hosts` 的取值需要域 `rules` 节区的 `host`
-完全匹配。
+因此，`tls` 字段中的 `hosts` 的取值需要与 `rules` 字段中的 `host` 完全匹配。
 {{< /note >}}
 
 {{< codenew file="service/networking/tls-example-ingress.yaml" >}}
@@ -779,8 +865,8 @@ a Service.
 -->
 ### 负载均衡  {#load-balancing}
 
-Ingress 控制器启动引导时使用一些适用于所有 Ingress 的负载均衡策略设置，
-例如负载均衡算法、后端权重方案和其他等。
+Ingress 控制器启动引导时使用一些适用于所有 Ingress
+的负载均衡策略设置，例如负载均衡算法、后端权重方案等。
 更高级的负载均衡概念（例如持久会话、动态权重）尚未通过 Ingress 公开。
 你可以通过用于服务的负载均衡器来获取这些功能。
 
@@ -795,12 +881,10 @@ specific documentation to see how they handle health checks (
 -->
 值得注意的是，尽管健康检查不是通过 Ingress 直接暴露的，在 Kubernetes
 中存在并行的概念，比如
-[就绪检查](/zh/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/)，
+[就绪检查](/zh-cn/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/)，
 允许你实现相同的目的。
-请检查特定控制器的说明文档（
-[nginx](https://git.k8s.io/ingress-nginx/README.md)，
-[GCE](https://git.k8s.io/ingress-gce/README.md#health-checks)）
-以了解它们是怎样处理健康检查的。
+请检查特定控制器的说明文档（[nginx](https://git.k8s.io/ingress-nginx/README.md)、
+[GCE](https://git.k8s.io/ingress-gce/README.md#health-checks)）以了解它们是怎样处理健康检查的。
 
 <!--
 ## Updating an Ingress
@@ -916,8 +1000,7 @@ Please check the documentation of the relevant [Ingress controller](/docs/concep
 ## 跨可用区失败  {#failing-across-availability-zones}
 
 不同的云厂商使用不同的技术来实现跨故障域的流量分布。详情请查阅相关 Ingress 控制器的文档。
-请查看相关 [Ingress 控制器](/zh/docs/concepts/services-networking/ingress-controllers)
-的文档以了解详细信息。
+请查看相关 [Ingress 控制器](/zh-cn/docs/concepts/services-networking/ingress-controllers)的文档以了解详细信息。
 
 <!--
 ## Alternatives
@@ -932,17 +1015,17 @@ You can expose a Service in multiple ways that don't directly involve the Ingres
 * Use [Service.Type=LoadBalancer](/docs/concepts/services-networking/service/#loadbalancer)
 * Use [Service.Type=NodePort](/docs/concepts/services-networking/service/#nodeport)
 -->
-* 使用 [Service.Type=LoadBalancer](/zh/docs/concepts/services-networking/service/#loadbalancer)
-* 使用 [Service.Type=NodePort](/zh/docs/concepts/services-networking/service/#nodeport)
+* 使用 [Service.Type=LoadBalancer](/zh-cn/docs/concepts/services-networking/service/#loadbalancer)
+* 使用 [Service.Type=NodePort](/zh-cn/docs/concepts/services-networking/service/#nodeport)
 
 ## {{% heading "whatsnext" %}}
 
 <!--
-* Learn about the [Ingress API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#ingress-v1-networking-k8s-io)
+* Learn about the [Ingress](/docs/reference/kubernetes-api/service-resources/ingress-v1/) API
 * Learn about [Ingress Controllers](/docs/concepts/services-networking/ingress-controllers/)
 * [Set up Ingress on Minikube with the NGINX Controller](/docs/tasks/access-application-cluster/ingress-minikube/)
 -->
-* 进一步了解 [Ingress API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#ingress-v1beta1-networking-k8s-io)
-* 进一步了解 [Ingress 控制器](/zh/docs/concepts/services-networking/ingress-controllers/)
-* [使用 NGINX 控制器在 Minikube 上安装 Ingress](/zh/docs/tasks/access-application-cluster/ingress-minikube/)
+* 进一步了解 [Ingress](/docs/reference/kubernetes-api/service-resources/ingress-v1/) API
+* 进一步了解 [Ingress 控制器](/zh-cn/docs/concepts/services-networking/ingress-controllers/)
+* [使用 NGINX 控制器在 Minikube 上安装 Ingress](/zh-cn/docs/tasks/access-application-cluster/ingress-minikube/)
 
diff --git a/content/zh/docs/concepts/services-networking/network-policies.md b/content/zh-cn/docs/concepts/services-networking/network-policies.md
similarity index 71%
rename from content/zh/docs/concepts/services-networking/network-policies.md
rename to content/zh-cn/docs/concepts/services-networking/network-policies.md
index fe52d20dce..88bbebdfaa 100644
--- a/content/zh/docs/concepts/services-networking/network-policies.md
+++ b/content/zh-cn/docs/concepts/services-networking/network-policies.md
@@ -4,7 +4,7 @@ content_type: concept
 weight: 50
 ---
 
-<!-- 
+<!--
 title: Network Policies
 content_type: concept
 weight: 50
@@ -13,7 +13,7 @@ weight: 50
 <!-- overview -->
 
 <!--
-If you want to control traffic flow at the IP address or port level (OSI layer 3 or 4), then you might consider using Kubernetes NetworkPolicies for particular applications in your cluster.  NetworkPolicies are an application-centric construct which allow you to specify how a {{< glossary_tooltip text="pod" term_id="pod">}} is allowed to communicate with various network "entities" (we use the word "entity" here to avoid overloading the more common terms such as "endpoints" and "services", which have specific Kubernetes connotations) over the network.
+If you want to control traffic flow at the IP address or port level (OSI layer 3 or 4), then you might consider using Kubernetes NetworkPolicies for particular applications in your cluster.  NetworkPolicies are an application-centric construct which allow you to specify how a {{< glossary_tooltip text="pod" term_id="pod">}} is allowed to communicate with various network "entities" (we use the word "entity" here to avoid overloading the more common terms such as "endpoints" and "services", which have specific Kubernetes connotations) over the network. NetworkPolicies apply to a connection with a pod on one or both ends, and are not relevant to other connections.
 -->
 如果你希望在 IP 地址或端口层面（OSI 第 3 层或第 4 层）控制网络流量，
 则你可以考虑为集群中特定应用使用 Kubernetes 网络策略（NetworkPolicy）。
@@ -21,6 +21,7 @@ NetworkPolicy 是一种以应用为中心的结构，允许你设置如何允许
 {{< glossary_tooltip text="Pod" term_id="pod">}} 与网络上的各类网络“实体”
 （我们这里使用实体以避免过度使用诸如“端点”和“服务”这类常用术语，
 这些术语在 Kubernetes 中有特定含义）通信。
+NetworkPolicies 适用于一端或两端与 Pod 的连接，与其他连接无关。
 
 <!--
 The entities that a Pod can communicate with are identified through a combination of the following 3 identifiers:
@@ -41,7 +42,7 @@ When defining a pod- or namespace- based NetworkPolicy, you use a {{< glossary_t
 
 Meanwhile, when IP based NetworkPolicies are created, we define policies based on IP blocks (CIDR ranges).
 -->
-在定义基于 Pod 或名字空间的 NetworkPolicy 时，你会使用 
+在定义基于 Pod 或名字空间的 NetworkPolicy 时，你会使用
 {{< glossary_tooltip text="选择算符" term_id="selector">}} 来设定哪些流量
 可以进入或离开与该算符匹配的 Pod。
 
@@ -57,38 +58,55 @@ Network policies are implemented by the [network plugin](/docs/concepts/extend-k
 -->
 ## 前置条件   {#prerequisites}
 
-网络策略通过[网络插件](/zh/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)
+网络策略通过[网络插件](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)
 来实现。要使用网络策略，你必须使用支持 NetworkPolicy 的网络解决方案。
 创建一个 NetworkPolicy 资源对象而没有控制器来使它生效的话，是没有任何作用的。
 
 <!--
-## Isolated and Non-isolated Pods
+## The Two Sorts of Pod Isolation
 
-By default, pods are non-isolated; they accept traffic from any source.
-
-Pods become isolated by having a NetworkPolicy that selects them. Once there is any NetworkPolicy in a namespace selecting a particular pod, that pod will reject any connections that are not allowed by any NetworkPolicy. (Other pods in the namespace that are not selected by any NetworkPolicy will continue to accept all traffic.)
-
-Network policies do not conflict; they are additive. If any policy or policies select a pod, the pod is restricted to what is allowed by the union of those policies' ingress/egress rules. Thus, order of evaluation does not affect the policy result.
-
-For a network flow between two pods to be allowed, both the egress policy on the source pod and the ingress policy on the destination pod need to allow the traffic. If either the egress policy on the source, or the ingress policy on the destination denies the traffic, the traffic will be denied.
+There are two sorts of isolation for a pod: isolation for egress, and isolation for ingress.  They concern what connections may be established.  "Isolation" here is not absolute, rather it means "some restrictions apply".  The alternative, "non-isolated for $direction", means that no restrictions apply in the stated direction.  The two sorts of isolation (or not) are declared independently, and are both relevant for a connection from one pod to another.
 -->
-## 隔离和非隔离的 Pod   {#isolated-and-non-isolated-pods}
 
-默认情况下，Pod 是非隔离的，它们接受任何来源的流量。
+## Pod 隔离的两种类型   {#the-two-sorts-of-pod-isolation}
 
-Pod 在被某 NetworkPolicy 选中时进入被隔离状态。
-一旦名字空间中有 NetworkPolicy 选择了特定的 Pod，该 Pod 会拒绝该 NetworkPolicy
-所不允许的连接。 
-（名字空间下其他未被 NetworkPolicy 所选择的 Pod 会继续接受所有的流量）
+Pod 有两种隔离: 出口的隔离和入口的隔离。它们涉及到可以建立哪些连接。
+这里的“隔离”不是绝对的，而是意味着“有一些限制”。
+另外的，“非隔离方向”意味着在所述方向上没有限制。这两种隔离（或不隔离）是独立声明的，
+并且都与从一个 Pod 到另一个 Pod 的连接有关。
 
-网络策略不会冲突，它们是累积的。
-如果任何一个或多个策略选择了一个 Pod, 则该 Pod 受限于这些策略的
-入站（Ingress）/出站（Egress）规则的并集。因此评估的顺序并不会影响策略的结果。
+<!--
+By default, a pod is non-isolated for egress; all outbound connections are allowed.  A pod is isolated for egress if there is any NetworkPolicy that both selects the pod and has "Egress" in its `policyTypes`; we say that such a policy applies to the pod for egress.  When a pod is isolated for egress, the only allowed connections from the pod are those allowed by the `egress` list of some NetworkPolicy that applies to the pod for egress.  The effects of those `egress` lists combine additively.
+-->
 
-为了允许两个 Pods 之间的网络数据流，源端 Pod 上的出站（Egress）规则和
-目标端 Pod 上的入站（Ingress）规则都需要允许该流量。
-如果源端的出站（Egress）规则或目标端的入站（Ingress）规则拒绝该流量，
-则流量将被拒绝。
+默认情况下，一个 Pod 的出口是非隔离的，即所有外向连接都是被允许的。如果有任何的 NetworkPolicy
+选择该 Pod 并在其 `policyTypes` 中包含 “Egress”，则该 Pod 是出口隔离的，
+我们称这样的策略适用于该 Pod 的出口。当一个 Pod 的出口被隔离时，
+唯一允许的来自 Pod 的连接是适用于出口的 Pod 的某个 NetworkPolicy 的 `egress` 列表所允许的连接。
+这些 `egress` 列表的效果是相加的。
+
+<!--
+By default, a pod is non-isolated for ingress; all inbound connections are allowed.  A pod is isolated for ingress if there is any NetworkPolicy that both selects the pod and has "Ingress" in its `policyTypes`; we say that such a policy applies to the pod for ingress.  When a pod is isolated for ingress, the only allowed connections into the pod are those from the pod's node and those allowed by the `ingress` list of some NetworkPolicy that applies to the pod for ingress.  The effects of those `ingress` lists combine additively.
+-->
+
+默认情况下，一个 Pod 对入口是非隔离的，即所有入站连接都是被允许的。如果有任何的 NetworkPolicy
+选择该 Pod 并在其 `policyTypes` 中包含 “Ingress”，则该 Pod 被隔离入口，
+我们称这种策略适用于该 Pod 的入口。当一个 Pod 的入口被隔离时，唯一允许进入该 Pod
+的连接是来自该 Pod 节点的连接和适用于入口的 Pod 的某个 NetworkPolicy 的 `ingress`
+列表所允许的连接。这些 `ingress` 列表的效果是相加的。
+
+<!--
+Network policies do not conflict; they are additive. If any policy or policies apply to a given pod for a given direction, the connections allowed in that direction from that pod is the union of what the applicable policies allow. Thus, order of evaluation does not affect the policy result.
+
+For a connection from a source pod to a destination pod to be allowed, both the egress policy on the source pod and the ingress policy on the destination pod need to allow the connection. If either side does not allow the connection, it will not happen.
+-->
+
+网络策略是相加的，所以不会产生冲突。如果策略适用于 Pod 某一特定方向的流量，
+Pod 在对应方向所允许的连接是适用的网络策略所允许的集合。
+因此，评估的顺序不影响策略的结果。
+
+要允许从源 Pod 到目的 Pod 的连接，源 Pod 的出口策略和目的 Pod 的入口策略都需要允许连接。
+如果任何一方不允许连接，建立连接将会失败。
 
 <!--
 ## The NetworkPolicy resource {#networkpolicy-resource}
@@ -104,44 +122,9 @@ An example NetworkPolicy might look like this:
 
 下面是一个 NetworkPolicy 的示例:
 
-```yaml
-apiVersion: networking.k8s.io/v1
-kind: NetworkPolicy
-metadata:
-  name: test-network-policy
-  namespace: default
-spec:
-  podSelector:
-    matchLabels:
-      role: db
-  policyTypes:
-  - Ingress
-  - Egress
-  ingress:
-  - from:
-    - ipBlock:
-        cidr: 172.17.0.0/16
-        except:
-        - 172.17.1.0/24
-    - namespaceSelector:
-        matchLabels:
-          project: myproject
-    - podSelector:
-        matchLabels:
-          role: frontend
-    ports:
-    - protocol: TCP
-      port: 6379
-  egress:
-  - to:
-    - ipBlock:
-        cidr: 10.0.0.0/24
-    ports:
-    - protocol: TCP
-      port: 5978
-```
+{{< codenew file="service/networking/networkpolicy.yaml" >}}
 
-<!-- 
+<!--
 POSTing this to the API server for your cluster will have no effect unless your chosen networking solution supports network policy.
  -->
 {{< note >}}
@@ -152,7 +135,7 @@ POSTing this to the API server for your cluster will have no effect unless your
 __Mandatory Fields__: As with all other Kubernetes config, a NetworkPolicy
 needs `apiVersion`, `kind`, and `metadata` fields.  For general information
 about working with config files, see
-[Configure Containers Using a ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/),
+[Configure a Pod to Use a ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/),
 and [Object Management](/docs/concepts/overview/working-with-objects/object-management).
 
 __spec__: NetworkPolicy [spec](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#spec-and-status) has all the information needed to define a particular network policy in the given namespace.
@@ -161,8 +144,8 @@ __podSelector__: Each NetworkPolicy includes a `podSelector` which selects the g
 -->
 __必需字段__：与所有其他的 Kubernetes 配置一样，NetworkPolicy 需要 `apiVersion`、
 `kind` 和 `metadata` 字段。关于配置文件操作的一般信息，请参考
-[使用 ConfigMap 配置容器](/zh/docs/tasks/configure-pod-container/configure-pod-configmap/),
-和[对象管理](/zh/docs/concepts/overview/working-with-objects/object-management)。
+[配置 Pod 以使用 ConfigMap](/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap/),
+和[对象管理](/zh-cn/docs/concepts/overview/working-with-objects/object-management)。
 
 __spec__：NetworkPolicy [规约](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#spec-and-status)
 中包含了在一个名字空间中定义特定网络策略所需的所有信息。
@@ -187,7 +170,7 @@ __policyTypes__: 每个 NetworkPolicy 都包含一个 `policyTypes` 列表，其
 
 __ingress__: 每个 NetworkPolicy 可包含一个 `ingress` 规则的白名单列表。
 每个规则都允许同时匹配 `from` 和 `ports` 部分的流量。示例策略中包含一条
-简单的规则： 它匹配某个特定端口，来自三个来源中的一个，第一个通过 `ipBlock`
+简单的规则：它匹配某个特定端口，来自三个来源中的一个，第一个通过 `ipBlock`
 指定，第二个通过 `namespaceSelector` 指定，第三个通过 `podSelector` 指定。
 
 __egress__: 每个 NetworkPolicy 可包含一个 `egress` 规则的白名单列表。
@@ -198,7 +181,7 @@ __egress__: 每个 NetworkPolicy 可包含一个 `egress` 规则的白名单列
 So, the example NetworkPolicy:
 
 1. isolates "role=db" pods in the "default" namespace for both ingress and egress traffic (if they weren't already isolated)
-2. (Ingress rules) allows connections to all pods in the “default” namespace with the label “role=db” on TCP port 6379 from:
+2. (Ingress rules) allows connections to all pods in the "default" namespace with the label "role=db" on TCP port 6379 from:
 
    * any pod in the "default" namespace with the label "role=frontend"
    * any pod in a namespace with the label "project=myproject"
@@ -218,10 +201,10 @@ See the [Declare Network Policy](/docs/tasks/administer-cluster/declare-network-
    * IP 地址范围为 172.17.0.0–172.17.0.255 和 172.17.2.0–172.17.255.255
      （即，除了 172.17.1.0/24 之外的所有 172.17.0.0/16）
 
-3. （Egress 规则）允许从带有 "role=db" 标签的名字空间下的任何 Pod 到 CIDR
+3. （Egress 规则）允许 “default” 命名空间中任何带有标签 “role=db” 的 Pod 到 CIDR
    10.0.0.0/24 下 5978 TCP 端口的连接。
 
-参阅[声明网络策略](/zh/docs/tasks/administer-cluster/declare-network-policy/)演练
+参阅[声明网络策略](/zh-cn/docs/tasks/administer-cluster/declare-network-policy/)演练
 了解更多示例。
 
 <!--
@@ -245,7 +228,7 @@ Pod，应将其允许作为入站流量来源或出站流量目的地。
 __namespaceSelector__：此选择器将选择特定的名字空间，应将所有 Pod 用作其
 入站流量来源或出站流量目的地。
 
-__namespaceSelector__ *和* __podSelector__： 一个指定 `namespaceSelector`
+__namespaceSelector__ *和* __podSelector__：一个指定 `namespaceSelector`
 和 `podSelector` 的 `to`/`from` 条目选择特定名字空间中的特定 Pod。
 注意使用正确的 YAML 语法；下面的策略：
 
@@ -262,7 +245,7 @@ __namespaceSelector__ *和* __podSelector__： 一个指定 `namespaceSelector`
   ...
 ```
 
-<!-- 
+<!--
 contains a single `from` element allowing connections from Pods with the label `role=client` in namespaces with the label `user=alice`. But *this* policy:
  -->
 在 `from` 数组中仅包含一个元素，只允许来自标有 `role=client` 的 Pod 且
@@ -334,71 +317,85 @@ in that namespace.
 
 <!--
 ### Default deny all ingress traffic
-
-You can create a "default" isolation policy for a namespace by creating a NetworkPolicy that selects all pods but does not allow any ingress traffic to those pods.
 -->
-### 默认拒绝所有入站流量
+### 默认拒绝所有入站流量   {#default-deny-all-ingress-traffic}
 
-你可以通过创建选择所有容器但不允许任何进入这些容器的入站流量的 NetworkPolicy 
-来为名字空间创建 "default" 隔离策略。
+<!--
+You can create a "default" ingress isolation policy for a namespace by creating a NetworkPolicy that selects all pods but does not allow any ingress traffic to those pods.
+-->
+你可以通过创建选择所有容器但不允许任何进入这些容器的入站流量的 NetworkPolicy
+来为名字空间创建 “default” 隔离策略。
 
 {{< codenew file="service/networking/network-policy-default-deny-ingress.yaml" >}}
 
 <!--
-This ensures that even pods that aren't selected by any other NetworkPolicy will still be isolated. This policy does not change the default egress isolation behavior.
+This ensures that even pods that aren't selected by any other NetworkPolicy will still be isolated for ingress. This policy does not affect isolation for egress from any pod.
 -->
-这样可以确保即使容器没有选择其他任何 NetworkPolicy，也仍然可以被隔离。
-此策略不会更改默认的出口隔离行为。
+这确保即使没有被任何其他 NetworkPolicy 选择的 Pod 仍将被隔离以进行入口。
+此策略不影响任何 Pod 的出口隔离。
 
 <!--
-### Default allow all ingress traffic
-
-If you want to allow all traffic to all pods in a namespace (even if policies are added that cause some pods to be treated as "isolated"), you can create a policy that explicitly allows all traffic in that namespace.
+### Allow all ingress traffic
 -->
-### 默认允许所有入站流量
+### 允许所有入站流量   {#allow-all-ingress-traffic}
 
-如果要允许所有流量进入某个名字空间中的所有 Pod（即使添加了导致某些 Pod 被视为
-“隔离”的策略），则可以创建一个策略来明确允许该名字空间中的所有流量。
+<!--
+If you want to allow all incoming connections to all pods in a namespace, you can create a policy that explicitly allows that.
+-->
+如果你想允许一个命名空间中所有 Pod 的所有入站连接，你可以创建一个明确允许的策略。
 
 {{< codenew file="service/networking/network-policy-allow-all-ingress.yaml" >}}
 
+<!--
+With this policy in place, no additional policy or policies can cause any incoming connection to those pods to be denied.  This policy has no effect on isolation for egress from any pod.
+-->
+有了这个策略，任何额外的策略都不会导致到这些 Pod 的任何入站连接被拒绝。
+此策略对任何 Pod 的出口隔离没有影响。
+
 <!--
 ### Default deny all egress traffic
 
 You can create a "default" egress isolation policy for a namespace by creating a NetworkPolicy that selects all pods but does not allow any egress traffic from those pods.
 -->
-### 默认拒绝所有出站流量
+### 默认拒绝所有出站流量   {#default-deny-all-egress-traffic}
 
-你可以通过创建选择所有容器但不允许来自这些容器的任何出站流量的 NetworkPolicy 
-来为名字空间创建 "default" egress 隔离策略。
+你可以通过创建选择所有容器但不允许来自这些容器的任何出站流量的 NetworkPolicy
+来为名字空间创建 “default” 隔离策略。
 
 {{< codenew file="service/networking/network-policy-default-deny-egress.yaml" >}}
 
 <!--
 This ensures that even pods that aren't selected by any other NetworkPolicy will not be allowed egress traffic. This policy does not
-change the default ingress isolation behavior.
+change the ingress isolation behavior of any pod.
 -->
 此策略可以确保即使没有被其他任何 NetworkPolicy 选择的 Pod 也不会被允许流出流量。
-此策略不会更改默认的入站流量隔离行为。
+此策略不会更改任何 Pod 的入站流量隔离行为。
 
 <!--
-### Default allow all egress traffic
-
-If you want to allow all traffic from all pods in a namespace (even if policies are added that cause some pods to be treated as "isolated"), you can create a policy that explicitly allows all egress traffic in that namespace.
+### Allow all egress traffic
 -->
-### 默认允许所有出站流量
+### 允许所有出站流量   {#allow-all-egress-traffic}
 
-如果要允许来自名字空间中所有 Pod 的所有流量（即使添加了导致某些 Pod 被视为“隔离”的策略），
-则可以创建一个策略，该策略明确允许该名字空间中的所有出站流量。
+<!--
+If you want to allow all connections from all pods in a namespace, you can create a policy that explicitly allows all outgoing connections from pods in that namespace.
+-->
+如果要允许来自命名空间中所有 Pod 的所有连接，
+则可以创建一个明确允许来自该命名空间中 Pod 的所有出站连接的策略。
 
 {{< codenew file="service/networking/network-policy-allow-all-egress.yaml" >}}
 
+<!--
+With this policy in place, no additional policy or policies can cause any outgoing connection from those pods to be denied.  This policy has no effect on isolation for ingress to any pod.
+-->
+有了这个策略，任何额外的策略都不会导致来自这些 Pod 的任何出站连接被拒绝。
+此策略对进入任何 Pod 的隔离没有影响。
+
 <!--
 ### Default deny all ingress and all egress traffic
 
 You can create a "default" policy for a namespace which prevents all ingress AND egress traffic by creating the following NetworkPolicy in that namespace.
 -->
-### 默认拒绝所有入口和所有出站流量
+### 默认拒绝所有入站和所有出站流量   {#default-deny-all-ingress-and-all-egress-traffic}
 
 你可以为名字空间创建“默认”策略，以通过在该名字空间中创建以下 NetworkPolicy
 来阻止所有入站和出站流量。
@@ -414,7 +411,7 @@ This ensures that even pods that aren't selected by any other NetworkPolicy will
 <!--
 ## SCTP support
 -->
-## SCTP 支持
+## SCTP 支持   {#sctp-support}
 
 {{< feature-state for_k8s_version="v1.20" state="stable" >}}
 
@@ -425,11 +422,11 @@ When the feature gate is enabled, you can set the `protocol` field of a NetworkP
 作为一个稳定特性，SCTP 支持默认是被启用的。
 要在集群层面禁用 SCTP，你（或你的集群管理员）需要为 API 服务器指定
 `--feature-gates=SCTPSupport=false,...`
-来禁用 `SCTPSupport` [特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)。
+来禁用 `SCTPSupport` [特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)。
 启用该特性门控后，用户可以将 NetworkPolicy 的 `protocol` 字段设置为 `SCTP`。
 
 {{< note >}}
-<!-- 
+<!--
 You must be using a {{< glossary_tooltip text="CNI" term_id="cni" >}} plugin that supports SCTP protocol NetworkPolicies.
  -->
 你必须使用支持 SCTP 协议网络策略的 {{< glossary_tooltip text="CNI" term_id="cni" >}} 插件。
@@ -474,17 +471,20 @@ spec:
 ```
 
 <!--
-The above rule allows any Pod with label `db` on the namespace `default` to communicate 
-with any IP within the range `10.0.0.0/24` over TCP, provided that the target 
+The above rule allows any Pod with label `role=db` on the namespace `default` to communicate
+with any IP within the range `10.0.0.0/24` over TCP, provided that the target
 port is between the range 32000 and 32768.
 -->
-上面的规则允许名字空间 `default` 中所有带有标签 `db` 的 Pod 使用 TCP 协议
+上面的规则允许名字空间 `default` 中所有带有标签 `role=db` 的 Pod 使用 TCP 协议
 与 `10.0.0.0/24` 范围内的 IP 通信，只要目标端口介于 32000 和 32768 之间就可以。
 
 <!--
 The following restrictions apply when using this field:
-* As a beta feature, this is enabled by default. To disable the `endPort` field at a cluster level, you (or your cluster administrator) need to disable the `NetworkPolicyEndPort` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) for the API server with `-feature-gates=NetworkPolicyEndPort=false,…`.
-* The `endPort` field must be equal than or greater to the `port` field.
+* As a beta feature, this is enabled by default. To disable the `endPort` field
+  at a cluster level, you (or your cluster administrator) need to disable the
+  `NetworkPolicyEndPort` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+  for the API server with `--feature-gates=NetworkPolicyEndPort=false,…`.
+* The `endPort` field must be equal to or greater than the `port` field.
 * `endPort` can only be defined if `port` is also defined.
 * Both ports must be numeric.
 -->
@@ -492,9 +492,9 @@ The following restrictions apply when using this field:
 
 * 作为一种 Beta 阶段的特性，端口范围设定默认是被启用的。要在整个集群
   范围内禁止使用 `endPort` 字段，你（或者你的集群管理员）需要为 API
-  服务器设置 `-feature-gates=NetworkPolicyEndPort=false,...` 以禁用
-  `NetworkPolicyEndPort` 
-  [特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)。
+  服务器设置 `--feature-gates=NetworkPolicyEndPort=false,...` 以禁用
+  `NetworkPolicyEndPort`
+  [特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)。
 * `endPort` 字段必须等于或者大于 `port` 字段的值。
 * 两个字段的设置值都只能是数字。
 
@@ -502,13 +502,13 @@ The following restrictions apply when using this field:
 <!--
 Your cluster must be using a {{< glossary_tooltip text="CNI" term_id="cni" >}} plugin that
 supports the `endPort` field in NetworkPolicy specifications.
-If your [network plugin](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/) 
+If your [network plugin](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)
 does not support the `endPort` field and you specify a NetworkPolicy with that,
 the policy will be applied only for the single `port` field.
 -->
 你的集群所使用的 {{< glossary_tooltip text="CNI" term_id="cni" >}} 插件
 必须支持在 NetworkPolicy 规约中使用 `endPort` 字段。
-如果你的[网络插件](/zh/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)
+如果你的[网络插件](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)
 不支持 `endPort` 字段，而你指定了一个包含 `endPort` 字段的 NetworkPolicy，
 策略只对单个 `port` 字段生效。
 {{< /note >}}
@@ -518,7 +518,7 @@ the policy will be applied only for the single `port` field.
 -->
 ## 基于名字指向某名字空间   {#targeting-a-namespace-by-its-name}
 
-{{< feature-state state="beta" for_k8s_version="1.21" >}}
+{{< feature-state for_k8s_version="1.22" state="stable" >}}
 
 <!--
 The Kubernetes control plane sets an immutable label `kubernetes.io/metadata.name` on all
@@ -530,7 +530,7 @@ While NetworkPolicy cannot target a namespace by its name with some object field
 standardized label to target a specific namespace.
 -->
 只要 `NamespaceDefaultLabelName`
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)
 被启用，Kubernetes 控制面会在所有名字空间上设置一个不可变更的标签
 `kubernetes.io/metadata.name`。该标签的值是名字空间的名称。
 
@@ -540,11 +540,11 @@ standardized label to target a specific namespace.
 <!--
 ## What you can't do with network policies (at least, not yet)
 
-As of Kubernetes {{< skew latestVersion >}}, the following functionality does not exist in the NetworkPolicy API, but you might be able to implement workarounds using Operating System components (such as SELinux, OpenVSwitch, IPTables, and so on) or Layer 7 technologies (Ingress controllers, Service Mesh implementations) or admission controllers.  In case you are new to network security in Kubernetes, its worth noting that the following User Stories cannot (yet) be implemented using the NetworkPolicy API.
+As of Kubernetes {{< skew currentVersion >}}, the following functionality does not exist in the NetworkPolicy API, but you might be able to implement workarounds using Operating System components (such as SELinux, OpenVSwitch, IPTables, and so on) or Layer 7 technologies (Ingress controllers, Service Mesh implementations) or admission controllers.  In case you are new to network security in Kubernetes, its worth noting that the following User Stories cannot (yet) be implemented using the NetworkPolicy API.
 -->
-## 通过网络策略（至少目前还）无法完成的工作
+## 通过网络策略（至少目前还）无法完成的工作   {#what-you-can-t-do-with-network-policies-at-least-not-yet}
 
-到 Kubernetes {{< skew latestVersion >}} 为止，NetworkPolicy API 还不支持以下功能，不过
+到 Kubernetes {{< skew currentVersion >}} 为止，NetworkPolicy API 还不支持以下功能，不过
 你可能可以使用操作系统组件（如 SELinux、OpenVSwitch、IPTables 等等）
 或者第七层技术（Ingress 控制器、服务网格实现）或准入控制器来实现一些
 替代方案。
@@ -588,8 +588,7 @@ As of Kubernetes {{< skew latestVersion >}}, the following functionality does no
   walkthrough for further examples.
 - See more [recipes](https://github.com/ahmetb/kubernetes-network-policy-recipes) for common scenarios enabled by the NetworkPolicy resource.
 -->
-- 参阅[声明网络策略](/zh/docs/tasks/administer-cluster/declare-network-policy/)
+- 参阅[声明网络策略](/zh-cn/docs/tasks/administer-cluster/declare-network-policy/)
   演练了解更多示例；
 - 有关 NetworkPolicy 资源所支持的常见场景的更多信息，请参见
   [此指南](https://github.com/ahmetb/kubernetes-network-policy-recipes)。
-
diff --git a/content/zh/docs/concepts/services-networking/service-topology.md b/content/zh-cn/docs/concepts/services-networking/service-topology.md
similarity index 96%
rename from content/zh/docs/concepts/services-networking/service-topology.md
rename to content/zh-cn/docs/concepts/services-networking/service-topology.md
index 4ab71cee41..e899786565 100644
--- a/content/zh/docs/concepts/services-networking/service-topology.md
+++ b/content/zh-cn/docs/concepts/services-networking/service-topology.md
@@ -25,7 +25,7 @@ introduced in Kubernetes v1.21, provide similar functionality.
 -->
 此功能特性，尤其是 Alpha 阶段的 `topologyKeys` API，在 Kubernetes v1.21
 版本中已被废弃。Kubernetes v1.21 版本中引入的
-[拓扑感知的提示](/zh/docs/concepts/services-networking/topology-aware-hints/),
+[拓扑感知的提示](/zh-cn/docs/concepts/services-networking/topology-aware-hints/),
 提供类似的功能。
 {{</ note >}}
 
@@ -104,7 +104,7 @@ as the last value in the list.
 ## 使用服务拓扑 {#using-service-topology}
 
 如果集群启用了 `ServiceTopology`
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)，
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)，
 你就可以在 Service 规约中设定 `topologyKeys` 字段，从而控制其流量路由。
 此字段是 `Node` 标签的优先顺序字段，将用于在访问这个 `Service` 时对端点进行排序。
 流量会被定向到第一个标签值和源 `Node` 标签值相匹配的 `Node`。
@@ -300,6 +300,6 @@ spec:
 * Read about [enabling Service Topology](/docs/tasks/administer-cluster/enabling-service-topology)
 * Read [Connecting Applications with Services](/docs/concepts/services-networking/connect-applications-service/)
 -->
-* 阅读关于[启用服务拓扑](/zh/docs/tasks/administer-cluster/enabling-service-topology/)
-* 阅读[用服务连接应用程序](/zh/docs/concepts/services-networking/connect-applications-service/)
+* 阅读关于[启用服务拓扑](/zh-cn/docs/tasks/administer-cluster/enabling-service-topology/)
+* 阅读[用服务连接应用程序](/zh-cn/docs/concepts/services-networking/connect-applications-service/)
 
diff --git a/content/zh/docs/concepts/services-networking/service-traffic-policy.md b/content/zh-cn/docs/concepts/services-networking/service-traffic-policy.md
similarity index 77%
rename from content/zh/docs/concepts/services-networking/service-traffic-policy.md
rename to content/zh-cn/docs/concepts/services-networking/service-traffic-policy.md
index f52f073d2e..306f310dcb 100644
--- a/content/zh/docs/concepts/services-networking/service-traffic-policy.md
+++ b/content/zh-cn/docs/concepts/services-networking/service-traffic-policy.md
@@ -15,7 +15,7 @@ weight: 45
 
 <!-- overview -->
 
-{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
 
 <!-- 
 _Service Internal Traffic Policy_ enables internal traffic restrictions to only route
@@ -35,16 +35,16 @@ _服务内部流量策略_ 开启了内部流量限制，只路由内部流量
 ## 使用服务内部流量策略 {#using-service-internal-traffic-policy}
 
 <!-- 
-Once you have enabled the `ServiceInternalTrafficPolicy`
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/),
-you can enable an internal-only traffic policy for a
+The `ServiceInternalTrafficPolicy` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+is a Beta feature and enabled by default.
+When the feature is enabled, you can enable the internal-only traffic policy for a
 {{< glossary_tooltip text="Services" term_id="service" >}}, by setting its
 `.spec.internalTrafficPolicy` to `Local`.
 This tells kube-proxy to only use node local endpoints for cluster internal traffic.
 -->
-一旦你启用了 `ServiceInternalTrafficPolicy` 这个
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/),
-你就可以通过将 {{< glossary_tooltip text="Services" term_id="service" >}} 的 
+`ServiceInternalTrafficPolicy` 
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/) 是 Beta 功能，默认启用。
+启用该功能后，你就可以通过将 {{< glossary_tooltip text="Services" term_id="service" >}} 的 
 `.spec.internalTrafficPolicy` 项设置为 `Local`，
 来为它指定一个内部专用的流量策略。
 此设置就相当于告诉 kube-proxy 对于集群内部流量只能使用本地的服务端口。
@@ -75,7 +75,7 @@ metadata:
   name: my-service
 spec:
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   ports:
     - protocol: TCP
       port: 80
@@ -99,7 +99,7 @@ When the [feature gate](/docs/reference/command-line-tools-reference/feature-gat
 kube-proxy 基于 `spec.internalTrafficPolicy` 的设置来过滤路由的目标服务端点。
 当它的值设为 `Local` 时，只选择节点本地的服务端点。
 当它的值设为 `Cluster` 或缺省时，则选择所有的服务端点。
-启用[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
+启用[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)
 `ServiceInternalTrafficPolicy` 后，
 `spec.internalTrafficPolicy` 的值默认设为 `Cluster`。
 
@@ -119,10 +119,10 @@ kube-proxy 基于 `spec.internalTrafficPolicy` 的设置来过滤路由的目标
 ## {{% heading "whatsnext" %}}
 
 <!-- 
-* Read about [enabling Topology Aware Hints](/docs/tasks/administer-cluster/enabling-topology-aware-hints)
+* Read about [Topology Aware Hints](/docs/concepts/services-networking/topology-aware-hints)
 * Read about [Service External Traffic Policy](/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip)
 * Read [Connecting Applications with Services](/docs/concepts/services-networking/connect-applications-service/)
 -->
-* 请阅读[启用拓扑感知提示](/zh/docs/tasks/administer-cluster/enabling-topology-aware-hints)
-* 请阅读[Service 的外部流量策略](/zh/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip)
-* 请阅读[用 Service 连接应用](/zh/docs/concepts/services-networking/connect-applications-service/)
+* 请阅读[拓扑感知提示](/zh-cn/docs/concepts/services-networking/topology-aware-hints)
+* 请阅读[Service 的外部流量策略](/zh-cn/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip)
+* 请阅读[用 Service 连接应用](/zh-cn/docs/concepts/services-networking/connect-applications-service/)
diff --git a/content/zh/docs/concepts/services-networking/service.md b/content/zh-cn/docs/concepts/services-networking/service.md
similarity index 85%
rename from content/zh/docs/concepts/services-networking/service.md
rename to content/zh-cn/docs/concepts/services-networking/service.md
index 05b50c1ee1..3964b190b5 100644
--- a/content/zh/docs/concepts/services-networking/service.md
+++ b/content/zh-cn/docs/concepts/services-networking/service.md
@@ -1,5 +1,5 @@
 ---
-title: 服务
+title: 服务（Service）
 feature:
   title: 服务发现与负载均衡
   description: >
@@ -30,7 +30,7 @@ Kubernetes gives Pods their own IP addresses and a single DNS name for a set of
 and can load-balance across them.
 -->
 使用 Kubernetes，你无需修改应用程序即可使用不熟悉的服务发现机制。
-Kubernetes 为 Pods 提供自己的 IP 地址，并为一组 Pod 提供相同的 DNS 名，
+Kubernetes 为 Pod 提供自己的 IP 地址，并为一组 Pod 提供相同的 DNS 名，
 并且可以在它们之间进行负载均衡。
 
 <!-- body -->
@@ -39,7 +39,7 @@ Kubernetes 为 Pods 提供自己的 IP 地址，并为一组 Pod 提供相同的
 ## Motivation
 
 Kubernetes {{< glossary_tooltip term_id="pod" text="Pods" >}} are created and destroyed
-to match the state of your cluster. Pods are nonpermanent resources.
+to match the desired state of your cluster. Pods are nonpermanent resources.
 If you use a {{< glossary_tooltip term_id="deployment" >}} to run your app,
 it can create and destroy Pods dynamically.
 
@@ -57,7 +57,7 @@ Enter _Services_.
 
 ## 动机
 
-创建和销毁 Kubernetes {{< glossary_tooltip term_id="pod" text="Pod" >}} 以匹配集群状态。
+创建和销毁 Kubernetes {{< glossary_tooltip term_id="pod" text="Pod" >}} 以匹配集群的期望状态。
 Pod 是非永久性资源。
 如果你使用 {{< glossary_tooltip term_id="deployment">}}
 来运行你的应用程序，则它可以动态创建和销毁 Pod。
@@ -67,7 +67,7 @@ Pod 是非永久性资源。
 这导致了一个问题： 如果一组 Pod（称为“后端”）为集群内的其他 Pod（称为“前端”）提供功能，
 那么前端如何找出并跟踪要连接的 IP 地址，以便前端可以使用提供工作负载的后端部分？
 
-进入 _Services_。
+进入 **Services**。
 
 <!--
 ## Service resources {#service-resource}
@@ -83,7 +83,7 @@ To learn about other ways to define Service endpoints,
 see [Services _without_ selectors](#services-without-selectors).
 -->
 Kubernetes Service 定义了这样一种抽象：逻辑上的一组 Pod，一种可以访问它们的策略 —— 通常称为微服务。
-Service 所针对的 Pods 集合通常是通过{{< glossary_tooltip text="选择算符" term_id="selector" >}}来确定的。
+Service 所针对的 Pod 集合通常是通过{{< glossary_tooltip text="选择算符" term_id="selector" >}}来确定的。
 要了解定义服务端点的其他方法，请参阅[不带选择算符的服务](#services-without-selectors)。
 
 <!--
@@ -95,7 +95,7 @@ track of the set of backends themselves.
 
 The Service abstraction enables this decoupling.
 -->
-举个例子，考虑一个图片处理后端，它运行了 3 个副本。这些副本是可互换的 —— 
+举个例子，考虑一个图片处理后端，它运行了 3 个副本。这些副本是可互换的 ——
 前端不需要关心它们调用了哪个后端副本。
 然而组成这一组后端程序的 Pod 实际上可能会发生变化，
 前端客户端不应该也没必要知道，而且也不需要跟踪这一组后端的状态。
@@ -138,7 +138,7 @@ and contains a label `app=MyApp`:
 Service 在 Kubernetes 中是一个 REST 对象，和 Pod 类似。
 像所有的 REST 对象一样，Service 定义可以基于 `POST` 方式，请求 API server 创建新的实例。
 Service 对象的名称必须是合法的
-[RFC 1035 标签名称](/docs/concepts/overview/working-with-objects/names#rfc-1035-label-names).。
+[RFC 1035 标签名称](/zh-cn/docs/concepts/overview/working-with-objects/names#rfc-1035-label-names)。
 
 例如，假定有一组 Pod，它们对外暴露了 9376 端口，同时还被打上 `app=MyApp` 标签：
 
@@ -155,7 +155,7 @@ spec:
       port: 80
       targetPort: 9376
 ```
-
+ 
 <!--
 This specification creates a new Service object named “my-service”, which
 targets TCP port 9376 on any Pod with the `app=MyApp` label.
@@ -171,10 +171,10 @@ also named "my-service".
 上述配置创建一个名称为 "my-service" 的 Service 对象，它会将请求代理到使用
 TCP 端口 9376，并且具有标签 `"app=MyApp"` 的 Pod 上。
 
-Kubernetes 为该服务分配一个 IP 地址（有时称为 "集群IP"），该 IP 地址由服务代理使用。
+Kubernetes 为该服务分配一个 IP 地址（有时称为 “集群 IP”），该 IP 地址由服务代理使用。
 (请参见下面的 [VIP 和 Service 代理](#virtual-ips-and-service-proxies)).
 
-服务选择算符的控制器不断扫描与其选择器匹配的 Pod，然后将所有更新发布到也称为
+服务选择算符的控制器不断扫描与其选择算符匹配的 Pod，然后将所有更新发布到也称为
 “my-service” 的 Endpoint 对象。
 
 <!--
@@ -189,13 +189,54 @@ field.
 
 <!--
 Port definitions in Pods have names, and you can reference these names in the
-`targetPort` attribute of a Service. This works even if there is a mixture
-of Pods in the Service using a single configured name, with the same network
-protocol available via different port numbers.
-This offers a lot of flexibility for deploying and evolving your Services.
-For example, you can change the port numbers that Pods expose in the next
-version of your backend software, without breaking clients.
+`targetPort` attribute of a Service. For example, we can bind the `targetPort`
+of the Service to the Pod port in the following way:
+-->
+Pod 中的端口定义是有名字的，你可以在 Service 的 `targetPort` 属性中引用这些名称。
+例如，我们可以通过以下方式将 Service 的 `targetPort` 绑定到 Pod 端口：
 
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: nginx
+  labels:
+    app.kubernetes.io/name: proxy
+spec:
+  containers:
+  - name: nginx
+    image: nginx:stable
+    ports:
+      - containerPort: 80
+        name: http-web-svc
+        
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: nginx-service
+spec:
+  selector:
+    app.kubernetes.io/name: proxy
+  ports:
+  - name: name-of-service-port
+    protocol: TCP
+    port: 80
+    targetPort: http-web-svc
+```
+
+<!--
+This works even if there is a mixture of Pods in the Service using a single
+configured name, with the same network protocol available via different
+port numbers. This offers a lot of flexibility for deploying and evolving
+your Services. For example, you can change the port numbers that Pods expose
+in the next version of your backend software, without breaking clients.
+-->
+即使 Service 中使用同一配置名称混合使用多个 Pod，各 Pod 通过不同的端口号支持相同的网络协议，
+此功能也可以使用。这为 Service 的部署和演化提供了很大的灵活性。
+例如，你可以在新版本中更改 Pod 中后端软件公开的端口号，而不会破坏客户端。
+
+<!--
 The default protocol for Services is TCP; you can also use any other
 [supported protocol](#protocol-support).
 
@@ -203,10 +244,6 @@ As many Services need to expose more than one port, Kubernetes supports multiple
 port definitions on a Service object.
 Each port definition can have the same `protocol`, or a different one.
 -->
-Pod 中的端口定义是有名字的，你可以在服务的 `targetPort` 属性中引用这些名称。
-即使服务中使用单个配置的名称混合使用 Pod，并且通过不同的端口号提供相同的网络协议，此功能也可以使用。
-这为部署和发展服务提供了很大的灵活性。
-例如，你可以更改 Pods 在新版本的后端软件中公开的端口号，而不会破坏客户端。
 
 服务的默认协议是 TCP；你还可以使用任何其他[受支持的协议](#protocol-support)。
 
@@ -216,9 +253,9 @@ Pod 中的端口定义是有名字的，你可以在服务的 `targetPort` 属
 <!--
 ### Services without selectors
 
-Services most commonly abstract access to Kubernetes Pods, but they can also
-abstract other kinds of backends.
-For example:
+Services most commonly abstract access to Kubernetes Pods thanks to the selector,
+but when used with a corresponding Endpoints object and without a selector, the Service can abstract other kinds of backends, 
+including ones that run outside the cluster. For example:
 
   * You want to have an external database cluster in production, but in your
     test environment you use your own databases.
@@ -232,12 +269,14 @@ For example:
 -->
 ### 没有选择算符的 Service   {#services-without-selectors}
 
-服务最常见的是抽象化对 Kubernetes Pod 的访问，但是它们也可以抽象化其他种类的后端。
-实例:
+由于选择算符的存在，服务最常见的用法是为 Kubernetes Pod 的访问提供抽象，
+但是当与相应的 Endpoints 对象一起使用且没有选择算符时，
+服务也可以为其他类型的后端提供抽象，包括在集群外运行的后端。
+例如：
 
   * 希望在生产环境中使用外部的数据库集群，但测试环境使用自己的数据库。
   * 希望服务指向另一个 {{< glossary_tooltip term_id="namespace" >}} 中或其它集群中的服务。
-  * 你正在将工作负载迁移到 Kubernetes。 在评估该方法时，你仅在 Kubernetes 中运行一部分后端。
+  * 你正在将工作负载迁移到 Kubernetes。在评估该方法时，你仅在 Kubernetes 中运行一部分后端。
 
 在任何这些场景中，都能够定义没有选择算符的 Service。
 实例:
@@ -259,13 +298,14 @@ Because this Service has no selector, the corresponding Endpoints object is not
 created automatically. You can manually map the Service to the network address and port
 where it's running, by adding an Endpoints object manually:
 -->
-由于此服务没有选择算符，因此不会自动创建相应的 Endpoint 对象。
-你可以通过手动添加 Endpoint 对象，将服务手动映射到运行该服务的网络地址和端口：
+由于此服务没有选择算符，因此不会自动创建相应的 Endpoints 对象。
+你可以通过手动添加 Endpoints 对象，将服务手动映射到运行该服务的网络地址和端口：
 
 ```yaml
 apiVersion: v1
 kind: Endpoints
 metadata:
+  # 这里的 name 要与 Service 的名字相同
   name: my-service
 subsets:
   - addresses:
@@ -278,8 +318,17 @@ The name of the Endpoints object must be a valid
 [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 -->
 Endpoints 对象的名称必须是合法的
-[DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
 
+<!--
+When you create an [Endpoints](docs/reference/kubernetes-api/service-resources/endpoints-v1/)
+object for a Service, you set the name of the new object to be the same as that
+of the Service.
+-->
+当你为某个 Service 创建一个 [Endpoints](/zh-cn/docs/reference/kubernetes-api/service-resources/endpoints-v1/)
+对象时，你要将新对象的名称设置为与 Service 的名称相同。
+
+{{< note >}}
 <!--
 The endpoint IPs _must not_ be: loopback (127.0.0.0/8 for IPv4, ::1/128 for IPv6), or
 link-local (169.254.0.0/16 and 224.0.0.0/24 for IPv4, fe80::/64 for IPv6).
@@ -288,7 +337,6 @@ Endpoint IP addresses cannot be the cluster IPs of other Kubernetes Services,
 because {{< glossary_tooltip term_id="kube-proxy" >}} doesn't support virtual IPs
 as a destination.
 -->
-{{< note >}}
 端点 IPs _必须不可以_ 是：本地回路（IPv4 的 127.0.0.0/8, IPv6 的 ::1/128）或
 本地链接（IPv4 的 169.254.0.0/16 和 224.0.0.0/24，IPv6 的 fe80::/64)。
 
@@ -330,7 +378,7 @@ the endpoints controller has truncated the number of endpoints to 1000.
 <!--
 ### EndpointSlices
 -->
-### EndpointSlice
+### EndpointSlices
 
 {{< feature-state for_k8s_version="v1.21" state="stable" >}}
 
@@ -345,13 +393,13 @@ endpoints.
 Endpoint Slices provide additional attributes and functionality which is
 described in detail in [EndpointSlices](/docs/concepts/services-networking/endpoint-slices/).
 -->
-Endpoint 切片是一种 API 资源，可以为 Endpoint 提供更可扩展的替代方案。
-尽管从概念上讲与 Endpoint 非常相似，但 Endpoint 切片允许跨多个资源分布网络端点。
-默认情况下，一旦到达100个 Endpoint，该 Endpoint 切片将被视为“已满”，
-届时将创建其他 Endpoint 切片来存储任何其他 Endpoint。
+EndpointSlices 是一种 API 资源，可以为 Endpoints 提供更可扩展的替代方案。
+尽管从概念上讲与 Endpoints 非常相似，但 EndpointSlices 允许跨多个资源分布网络端点。
+默认情况下，一旦到达 100 个 Endpoint，该 EndpointSlice 将被视为“已满”，
+届时将创建其他 EndpointSlices 来存储任何其他 Endpoints。
 
-Endpoint 切片提供了附加的属性和功能，这些属性和功能在
-[EndpointSlices](/zh/docs/concepts/services-networking/endpoint-slices/)
+EndpointSlices 提供了附加的属性和功能，这些属性和功能在
+[EndpointSlices](/zh-cn/docs/concepts/services-networking/endpoint-slices/)
 中有详细描述。
 
 <!-- 
@@ -375,7 +423,7 @@ domain prefixed names such as `mycompany.com/my-custom-protocol`.
 
 该字段遵循标准的 Kubernetes 标签语法。
 其值可以是 [IANA 标准服务名称](https://www.iana.org/assignments/service-names)
-或以域名为前缀的名称，如 `mycompany.com/my-custom-protocol`。 
+或以域名为前缀的名称，如 `mycompany.com/my-custom-protocol`。
 <!--
 ## Virtual IPs and service proxies
 
@@ -482,7 +530,7 @@ having traffic sent via kube-proxy to a Pod that's known to have failed.
 ### iptables 代理模式 {#proxy-mode-iptables}
 
 这种模式，`kube-proxy` 会监视 Kubernetes 控制节点对 Service 对象和 Endpoints 对象的添加和移除。
-对每个 Service，它会配置 iptables 规则，从而捕获到达该 Service 的 `clusterIP` 
+对每个 Service，它会配置 iptables 规则，从而捕获到达该 Service 的 `clusterIP`
 和端口的请求，进而将请求重定向到 Service 的一组后端中的某个 Pod 上面。
 对于每个 Endpoints 对象，它也会配置 iptables 规则，这个规则会选择一个后端组合。
 
@@ -491,16 +539,15 @@ having traffic sent via kube-proxy to a Pod that's known to have failed.
 使用 iptables 处理流量具有较低的系统开销，因为流量由 Linux netfilter 处理，
 而无需在用户空间和内核空间之间切换。 这种方法也可能更可靠。
 
-如果 kube-proxy 在 iptables 模式下运行，并且所选的第一个 Pod 没有响应，
-则连接失败。
+如果 kube-proxy 在 iptables 模式下运行，并且所选的第一个 Pod 没有响应，则连接失败。
 这与用户空间模式不同：在这种情况下，kube-proxy 将检测到与第一个 Pod 的连接已失败，
 并会自动使用其他后端 Pod 重试。
 
-你可以使用 Pod [就绪探测器](/zh/docs/concepts/workloads/pods/pod-lifecycle/#container-probes)
+你可以使用 Pod [就绪探测器](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#container-probes)
 验证后端 Pod 可以正常工作，以便 iptables 模式下的 kube-proxy 仅看到测试正常的后端。
 这样做意味着你避免将流量通过 kube-proxy 发送到已知已失败的 Pod。
 
-![iptables代理模式下Service概览图](/images/docs/services-iptables-overview.svg)
+![iptables 代理模式下 Service 概览图](/images/docs/services-iptables-overview.svg)
 
 <!--
 ### IPVS proxy mode {#proxy-mode-ipvs}
@@ -529,16 +576,16 @@ IPVS provides more options for balancing traffic to backend Pods;
 these are:
 -->
 在 `ipvs` 模式下，kube-proxy 监视 Kubernetes 服务和端点，调用 `netlink` 接口相应地创建 IPVS 规则，
-并定期将 IPVS 规则与 Kubernetes 服务和端点同步。 该控制循环可确保IPVS 
-状态与所需状态匹配。访问服务时，IPVS 将流量定向到后端Pod之一。
+并定期将 IPVS 规则与 Kubernetes 服务和端点同步。该控制循环可确保 IPVS
+状态与所需状态匹配。访问服务时，IPVS 将流量定向到后端 Pod 之一。
 
-IPVS代理模式基于类似于 iptables 模式的 netfilter 挂钩函数，
+IPVS 代理模式基于类似于 iptables 模式的 netfilter 挂钩函数，
 但是使用哈希表作为基础数据结构，并且在内核空间中工作。
 这意味着，与 iptables 模式下的 kube-proxy 相比，IPVS 模式下的 kube-proxy
 重定向通信的延迟要短，并且在同步代理规则时具有更好的性能。
 与其他代理模式相比，IPVS 模式还支持更高的网络流量吞吐量。
 
-IPVS 提供了更多选项来平衡后端 Pod 的流量。 这些是：
+IPVS 提供了更多选项来平衡后端 Pod 的流量。这些是：
 
 * `rr`：轮替（Round-Robin）
 * `lc`：最少链接（Least Connection），即打开链接数量最少者优先
@@ -578,17 +625,23 @@ You can also set the maximum session sticky time by setting
 (the default value is 10800, which works out to be 3 hours).
 -->
 
-![IPVS代理的 Services 概述图](/images/docs/services-ipvs-overview.svg)
+![IPVS 代理的 Services 概述图](/images/docs/services-ipvs-overview.svg)
 
 在这些代理模型中，绑定到服务 IP 的流量：
 在客户端不了解 Kubernetes 或服务或 Pod 的任何信息的情况下，将 Port 代理到适当的后端。
 
 如果要确保每次都将来自特定客户端的连接传递到同一 Pod，
-则可以通过将 `service.spec.sessionAffinity` 设置为 "ClientIP" 
-（默认值是 "None"），来基于客户端的 IP 地址选择会话关联。
-你还可以通过适当设置 `service.spec.sessionAffinityConfig.clientIP.timeoutSeconds` 
-来设置最大会话停留时间。
-（默认值为 10800 秒，即 3 小时）。
+则可以通过将 `service.spec.sessionAffinity` 设置为 "ClientIP"
+（默认值是 "None"），来基于客户端的 IP 地址选择会话亲和性。
+你还可以通过适当设置 `service.spec.sessionAffinityConfig.clientIP.timeoutSeconds`
+来设置最大会话停留时间。（默认值为 10800 秒，即 3 小时）。
+
+<!--
+On Windows, setting the maximum session sticky time for Services is not supported.
+-->
+{{< note >}}
+在 Windows 上，不支持为服务设置最大会话停留时间。
+{{< /note >}}
 
 <!--
 ## Multi-Port Services
@@ -633,7 +686,7 @@ also start and end with an alphanumeric character.
 For example, the names `123-abc` and `web` are valid, but `123_abc` and `-web` are not.
 -->
 {{< note >}}
-与一般的Kubernetes名称一样，端口名称只能包含小写字母数字字符 和 `-`。 
+与一般的Kubernetes名称一样，端口名称只能包含小写字母数字字符 和 `-`。
 端口名称还必须以字母数字字符开头和结尾。
 
 例如，名称 `123-abc` 和 `web` 有效，但是 `123_abc` 和 `-web` 无效。
@@ -674,7 +727,7 @@ server will return a 422 HTTP status code to indicate that there's a problem.
 <!--
 You can set the `spec.externalTrafficPolicy` field to control how traffic from external sources is routed.
 Valid values are `Cluster` and `Local`. Set the field to `Cluster` to route external traffic to all ready endpoints
-and `Local` to only route to ready node-local endpoints. If the traffic policy is `Local` and there are are no node-local
+and `Local` to only route to ready node-local endpoints. If the traffic policy is `Local` and there are no node-local
 endpoints, the kube-proxy does not forward any traffic for the relevant Service.
 -->
 
@@ -694,7 +747,7 @@ has local endpoints and whether or not all the local endpoints are marked as ter
 -->
 
 如果你启用了 kube-proxy 的 `ProxyTerminatingEndpoints`
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)，
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)，
 kube-proxy 会检查节点是否有本地的端点，以及是否所有的本地端点都被标记为终止中。
 
 <!--
@@ -705,8 +758,8 @@ as if the external traffic policy were set to `Cluster`.
 -->
 
 如果本地有端点，而且所有端点处于终止中的状态，那么 kube-proxy 会忽略任何设为 `Local` 的外部流量策略。
-在所有本地端点处于终止中的状态的同时，kube-proxy 将请求指定服务的流量转发到位于其它节点的
-状态健康的端点，如同外部流量策略设为 `Cluster`。
+在所有本地端点处于终止中的状态的同时，kube-proxy 将请求指定服务的流量转发到位于其它节点的状态健康的端点，
+如同外部流量策略设为 `Cluster`。
 
 <!--
 This forwarding behavior for terminating endpoints exists to allow external load balancers to
@@ -751,11 +804,7 @@ Kubernetes 支持两种基本的服务发现模式 —— 环境变量和 DNS。
 ### Environment variables
 
 When a Pod is run on a Node, the kubelet adds a set of environment variables
-for each active Service.  It supports both [Docker links
-compatible](https://docs.docker.com/userguide/dockerlinks/) variables (see
-[makeLinkVariables](https://releases.k8s.io/{{< param "githubbranch" >}}/pkg/kubelet/envvars/envvars.go#L49))
-and simpler `{SVCNAME}_SERVICE_HOST` and `{SVCNAME}_SERVICE_PORT` variables,
-where the Service name is upper-cased and dashes are converted to underscores.
+for each active Service. It adds `{SVCNAME}_SERVICE_HOST` and `{SVCNAME}_SERVICE_PORT` variables, where the Service name is upper-cased and dashes are converted to underscores. It also supports variables (see [makeLinkVariables](https://github.com/kubernetes/kubernetes/blob/dd2d12f6dc0e654c15d5db57a5f9f6ba61192726/pkg/kubelet/envvars/envvars.go#L72)) that are compatible with Docker Engine's "_[legacy container links](https://docs.docker.com/network/links/)_" feature.
 
 For example, the Service `redis-master` which exposes TCP port 6379 and has been
 allocated cluster IP address 10.0.0.11, produces the following environment
@@ -764,10 +813,10 @@ variables:
 ### 环境变量   {#environment-variables}
 
 当 Pod 运行在 `Node` 上，kubelet 会为每个活跃的 Service 添加一组环境变量。
-它同时支持 [Docker links兼容](https://docs.docker.com/userguide/dockerlinks/) 变量
-（查看 [makeLinkVariables](https://releases.k8s.io/{{< param "githubbranch" >}}/pkg/kubelet/envvars/envvars.go#L49)）、
-简单的 `{SVCNAME}_SERVICE_HOST` 和 `{SVCNAME}_SERVICE_PORT` 变量。
+kubelet 为 Pod 添加环境变量 `{SVCNAME}_SERVICE_HOST` 和 `{SVCNAME}_SERVICE_PORT`。
 这里 Service 的名称需大写，横线被转换成下划线。
+它还支持与 Docker Engine 的 "**[legacy container links](https://docs.docker.com/network/links/)**" 特性兼容的变量
+（参阅 [makeLinkVariables](https://github.com/kubernetes/kubernetes/blob/dd2d12f6dc0e654c15d5db57a5f9f6ba61192726/pkg/kubelet/envvars/envvars.go#L72)) 。
 
 举个例子，一个名称为 `redis-master` 的 Service 暴露了 TCP 端口 6379，
 同时给它分配了 Cluster IP 地址 10.0.0.11，这个 Service 生成了如下环境变量：
@@ -793,7 +842,7 @@ worry about this ordering issue.
 -->
 {{< note >}}
 当你具有需要访问服务的 Pod 时，并且你正在使用环境变量方法将端口和集群 IP 发布到客户端
-Pod 时，必须在客户端 Pod 出现 *之前* 创建服务。
+Pod 时，必须在客户端 Pod 出现 **之前** 创建服务。
 否则，这些客户端 Pod 将不会设定其环境变量。
 
 如果仅使用 DNS 查找服务的集群 IP，则无需担心此设定问题。
@@ -810,7 +859,7 @@ Services and creates a set of DNS records for each one.  If DNS has been enabled
 throughout your cluster then all Pods should automatically be able to resolve
 Services by their DNS name.
 -->
-你可以（几乎总是应该）使用[附加组件](/zh/docs/concepts/cluster-administration/addons/)
+你可以（几乎总是应该）使用[附加组件](/zh-cn/docs/concepts/cluster-administration/addons/)
 为 Kubernetes 集群设置 DNS 服务。
 
 支持集群的 DNS 服务器（例如 CoreDNS）监视 Kubernetes API 中的新服务，并为每个服务创建一组 DNS 记录。
@@ -846,12 +895,11 @@ You can find more information about `ExternalName` resolution in
 -->
 Kubernetes 还支持命名端口的 DNS SRV（服务）记录。
 如果 `my-service.my-ns` 服务具有名为 `http`　的端口，且协议设置为 TCP，
-则可以对 `_http._tcp.my-service.my-ns` 执行 DNS SRV 查询查询以发现该端口号, 
-`"http"` 以及 IP 地址。
+则可以对 `_http._tcp.my-service.my-ns` 执行 DNS SRV 查询以发现该端口号、`"http"` 以及 IP 地址。
 
 Kubernetes DNS 服务器是唯一的一种能够访问 `ExternalName` 类型的 Service 的方式。
 更多关于 `ExternalName` 信息可以查看
-[DNS Pod 和 Service](/zh/docs/concepts/services-networking/dns-pod-service/)。
+[DNS Pod 和 Service](/zh-cn/docs/concepts/services-networking/dns-pod-service/)。
 
 <!--
 ## Headless Services  {#headless-services}
@@ -874,10 +922,9 @@ selectors defined:
 遇到这种情况，可以通过指定 Cluster IP（`spec.clusterIP`）的值为 `"None"`
 来创建 `Headless` Service。
 
-你可以使用无头 Service 与其他服务发现机制进行接口，而不必与 Kubernetes
-的实现捆绑在一起。
+你可以使用一个无头 Service 与其他服务发现机制进行接口，而不必与 Kubernetes 的实现捆绑在一起。
 
-对这无头 Service 并不会分配 Cluster IP，kube-proxy 不会处理它们，
+对于无头 `Services` 并不会分配 Cluster IP，kube-proxy 不会处理它们，
 而且平台也不会为它们进行负载均衡和路由。
 DNS 如何实现自动配置，依赖于 Service 是否定义了选择算符。
 
@@ -890,7 +937,7 @@ A records (IP addresses) that point directly to the `Pods` backing the `Service`
 -->
 ### 带选择算符的服务 {#with-selectors}
 
-对定义了选择算符的无头服务，Endpoint 控制器在 API 中创建了 Endpoints 记录，
+对定义了选择算符的无头服务，Endpoints 控制器在 API 中创建了 `Endpoints` 记录，
 并且修改 DNS 配置返回 A 记录（IP 地址），通过这个地址直接到达 `Service` 的后端 Pod 上。
 
 <!--
@@ -906,7 +953,7 @@ either:
 -->
 ### 无选择算符的服务  {#without-selectors}
 
-对没有定义选择算符的无头服务，Endpoint 控制器不会创建 `Endpoints` 记录。
+对没有定义选择算符的无头服务，Endpoints 控制器不会创建 `Endpoints` 记录。
 然而 DNS 系统会查找和配置，无论是：
 
 * 对于 [`ExternalName`](#external-name) 类型的服务，查找其 CNAME 记录
@@ -925,8 +972,7 @@ The default is `ClusterIP`.
 -->
 ## 发布服务（服务类型)      {#publishing-services-service-types}
 
-对一些应用的某些部分（如前端），可能希望将其暴露给 Kubernetes 集群外部
-的 IP 地址。
+对一些应用的某些部分（如前端），可能希望将其暴露给 Kubernetes 集群外部的 IP 地址。
 
 Kubernetes `ServiceTypes` 允许指定你所需要的 Service 类型，默认是 `ClusterIP`。
 
@@ -936,7 +982,7 @@ Kubernetes `ServiceTypes` 允许指定你所需要的 Service 类型，默认是
 * `ClusterIP`: Exposes the Service on a cluster-internal IP. Choosing this value
   makes the Service only reachable from within the cluster. This is the
   default `ServiceType`.
-* [`NodePort`](#nodeport): Exposes the Service on each Node's IP at a static port
+* [`NodePort`](#type-nodeport): Exposes the Service on each Node's IP at a static port
   (the `NodePort`). A `ClusterIP` Service, to which the `NodePort` Service
   routes, is automatically created.  You'll be able to contact the `NodePort` Service,
   from outside the cluster,
@@ -953,7 +999,7 @@ Kubernetes `ServiceTypes` 允许指定你所需要的 Service 类型，默认是
 -->
 * `ClusterIP`：通过集群的内部 IP 暴露服务，选择该值时服务只能够在集群内部访问。
   这也是默认的 `ServiceType`。
-* [`NodePort`](#nodeport)：通过每个节点上的 IP 和静态端口（`NodePort`）暴露服务。
+* [`NodePort`](#type-nodeport)：通过每个节点上的 IP 和静态端口（`NodePort`）暴露服务。
   `NodePort` 服务会路由到自动创建的 `ClusterIP` 服务。
   通过请求 `<节点 IP>:<节点端口>`，你可以从集群的外部访问一个 `NodePort` 服务。
 * [`LoadBalancer`](#loadbalancer)：使用云提供商的负载均衡器向外部暴露服务。
@@ -969,12 +1015,12 @@ Kubernetes `ServiceTypes` 允许指定你所需要的 Service 类型，默认是
 <!--
 You can also use [Ingress](/docs/concepts/services-networking/ingress/) to expose your Service. Ingress is not a Service type, but it acts as the entry point for your cluster. It lets you consolidate your routing rules into a single resource as it can expose multiple services under the same IP address.
 -->
-你也可以使用 [Ingress](/zh/docs/concepts/services-networking/ingress/) 来暴露自己的服务。
+你也可以使用 [Ingress](/zh-cn/docs/concepts/services-networking/ingress/) 来暴露自己的服务。
 Ingress 不是一种服务类型，但它充当集群的入口点。
-它可以将路由规则整合到一个资源中，因为它可以在同一IP地址下公开多个服务。
+它可以将路由规则整合到一个资源中，因为它可以在同一 IP 地址下公开多个服务。
 
 <!--
-### Type NodePort {#nodeport}
+### Type NodePort {#type-nodeport}
 
 If you set the `type` field to `NodePort`, the Kubernetes control plane
 allocates a port from a range specified by `--service-node-port-range` flag (default: 30000-32767).
@@ -989,15 +1035,15 @@ to particular IP block(s).
 
 This flag takes a comma-delimited list of IP blocks (e.g. `10.0.0.0/8`, `192.0.2.0/25`) to specify IP address ranges that kube-proxy should consider as local to this node.
 -->
-### NodePort 类型  {#nodeport}
+### NodePort 类型  {#type-nodeport}
 
 如果你将 `type` 字段设置为 `NodePort`，则 Kubernetes 控制平面将在
 `--service-node-port-range` 标志指定的范围内分配端口（默认值：30000-32767）。
 每个节点将那个端口（每个节点上的相同端口号）代理到你的服务中。
 你的服务在其 `.spec.ports[*].nodePort` 字段中要求分配的端口。
 
-如果你想指定特定的 IP 代理端口，则可以设置 kube-proxy 中的 `--nodeport-addresses` 参数
-或者将[kube-proxy 配置文件](/docs/reference/config-api/kube-proxy-config.v1alpha1/)
+如果你想指定特定的 IP 代理端口，则可以设置 kube-proxy 中的 `--nodeport-addresses` 参数或者将
+[kube-proxy 配置文件](/zh-cn/docs/reference/config-api/kube-proxy-config.v1alpha1/)
 中的等效 `nodePortAddresses` 字段设置为特定的 IP 块。
 该标志采用逗号分隔的 IP 块列表（例如，`10.0.0.0/8`、`192.0.2.0/25`）来指定
 kube-proxy 应该认为是此节点本地的 IP 地址范围。
@@ -1121,7 +1167,6 @@ set is ignored.
 如果设置了 `loadBalancerIP`，但云提供商并不支持这种特性，那么设置的
 `loadBalancerIP` 值将会被忽略掉。
 
-
 <!--
 On **Azure**, if you want to use a user-specified public type `loadBalancerIP`, you first need
 to create a static type public IP address resource. This public IP address resource should
@@ -1131,43 +1176,45 @@ For example, `MC_myResourceGroup_myAKSCluster_eastus`.
 Specify the assigned IP address as loadBalancerIP. Ensure that you have updated the securityGroupName in the cloud provider configuration file. For information about troubleshooting `CreatingLoadBalancerFailed` permission issues see, [Use a static IP address with the Azure Kubernetes Service (AKS) load balancer](https://docs.microsoft.com/en-us/azure/aks/static-ip) or [CreatingLoadBalancerFailed on AKS cluster with advanced networking](https://github.com/Azure/AKS/issues/357).
 -->
 {{< note >}}
-在 **Azure** 上，如果要使用用户指定的公共类型 `loadBalancerIP`，则
-首先需要创建静态类型的公共 IP 地址资源。
+在 **Azure** 上，如果要使用用户指定的公共类型 `loadBalancerIP`，
+则首先需要创建静态类型的公共 IP 地址资源。
 此公共 IP 地址资源应与集群中其他自动创建的资源位于同一资源组中。
 例如，`MC_myResourceGroup_myAKSCluster_eastus`。
 
-将分配的 IP 地址设置为 loadBalancerIP。确保你已更新云提供程序配置文件中的
-securityGroupName。
+将分配的 IP 地址设置为 loadBalancerIP。确保你已更新云提供程序配置文件中的 securityGroupName。
 有关对 `CreatingLoadBalancerFailed` 权限问题进行故障排除的信息，
-请参阅 [与 Azure Kubernetes 服务（AKS）负载平衡器一起使用静态 IP 地址](https://docs.microsoft.com/en-us/azure/aks/static-ip)
+请参阅[与 Azure Kubernetes 服务（AKS）负载平衡器一起使用静态 IP 地址](https://docs.microsoft.com/zh-cn/azure/aks/static-ip)
 或[在 AKS 集群上使用高级联网时出现 CreatingLoadBalancerFailed](https://github.com/Azure/AKS/issues/357)。
 {{< /note >}}
 <!--
 #### Load balancers with mixed protocol types
 
-{{< feature-state for_k8s_version="v1.20" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.24" state="beta" >}}
 
 By default, for LoadBalancer type of Services, when there is more than one port defined, all
 ports must have the same protocol, and the protocol must be one which is supported
 by the cloud provider.
 
-If the feature gate `MixedProtocolLBService` is enabled for the kube-apiserver it is allowed to use different protocols when there is more than one port defined.
+The feature gate `MixedProtocolLBService` (enabled by default for the kube-apiserver as of v1.24) allows the use of
+different protocols for LoadBalancer type of Services, when there is more than one port defined.
 -->
 #### 混合协议类型的负载均衡器
 
 {{< feature-state for_k8s_version="v1.20" state="alpha" >}}
 
-默认情况下，对于 LoadBalancer 类型的服务，当定义了多个端口时，所有
-端口必须具有相同的协议，并且该协议必须是受云提供商支持的协议。
+默认情况下，对于 LoadBalancer 类型的服务，当定义了多个端口时，
+所有端口必须具有相同的协议，并且该协议必须是受云提供商支持的协议。
 
-如果为 kube-apiserver 启用了 `MixedProtocolLBService` 特性门控，
-则当定义了多个端口时，允许使用不同的协议。
+当服务中定义了多个端口时，特性门控 `MixedProtocolLBService`（在 kube-apiserver 1.24 版本默认为启用）允许
+LoadBalancer 类型的服务使用不同的协议。
 
 <!--
-The set of protocols that can be used for LoadBalancer type of Services is still defined by the cloud provider.
+The set of protocols that can be used for LoadBalancer type of Services is still defined by the cloud provider. If a
+cloud provider does not support mixed protocols they will provide only a single protocol.
 -->
 {{< note >}}
 可用于 LoadBalancer 类型服务的协议集仍然由云提供商决定。
+如果云提供商不支持混合协议，他们将只提供单一协议。
 {{< /note >}}
 
 <!--
@@ -1175,36 +1222,34 @@ The set of protocols that can be used for LoadBalancer type of Services is still
 -->
 ### 禁用负载均衡器节点端口分配 {#load-balancer-nodeport-allocation}
 
-{{< feature-state for_k8s_version="v1.20" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 <!--
 Starting in v1.20, you can optionally disable node port allocation for a Service Type=LoadBalancer by setting
 the field `spec.allocateLoadBalancerNodePorts` to `false`. This should only be used for load balancer implementations
 that route traffic directly to pods as opposed to using node ports. By default, `spec.allocateLoadBalancerNodePorts`
 is `true` and type LoadBalancer Services will continue to allocate node ports. If `spec.allocateLoadBalancerNodePorts`
-is set to `false` on an existing Service with allocated node ports, those node ports will NOT be de-allocated automatically.
+is set to `false` on an existing Service with allocated node ports, those node ports will **not** be de-allocated automatically.
 You must explicitly remove the `nodePorts` entry in every Service port to de-allocate those node ports.
-You must enable the `ServiceLBNodePortControl` feature gate to use this field.
 -->
-从 v1.20 版本开始， 你可以通过设置 `spec.allocateLoadBalancerNodePorts` 为 `false` 
+你可以通过设置 `spec.allocateLoadBalancerNodePorts` 为 `false`
 对类型为 LoadBalancer 的服务禁用节点端口分配。
 这仅适用于直接将流量路由到 Pod 而不是使用节点端口的负载均衡器实现。
 默认情况下，`spec.allocateLoadBalancerNodePorts` 为 `true`，
 LoadBalancer 类型的服务继续分配节点端口。
 如果现有服务已被分配节点端口，将参数 `spec.allocateLoadBalancerNodePorts`
-设置为 `false` 时，这些服务上已分配置的节点端口不会被自动释放。
+设置为 `false` 时，这些服务上已分配置的节点端口**不会**被自动释放。
 你必须显式地在每个服务端口中删除 `nodePorts` 项以释放对应端口。
-你必须启用 `ServiceLBNodePortControl` 特性门控才能使用该字段。
 
 <!--
 #### Specifying class of load balancer implementation {#load-balancer-class}
 -->
 #### 设置负载均衡器实现的类别 {#load-balancer-class}
 
-{{< feature-state for_k8s_version="v1.22" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 <!--
-`spec.loadBalancerClass` enables you to use a load balancer implementation other than the cloud provider default. This feature is available from v1.21, you must enable the `ServiceLoadBalancerClass` feature gate to use this field in v1.21, and the feature gate is enabled by default from v1.22 onwards.
+`spec.loadBalancerClass` enables you to use a load balancer implementation other than the cloud provider default.
 By default, `spec.loadBalancerClass` is `nil` and a `LoadBalancer` type of Service uses
 the cloud provider's default load balancer implementation if the cluster is configured with
 a cloud provider using the `--cloud-provider` component flag. 
@@ -1216,15 +1261,10 @@ the cloud provider) will ignore Services that have this field set.
 Once set, it cannot be changed. 
 -->
 `spec.loadBalancerClass` 允许你不使用云提供商的默认负载均衡器实现，转而使用指定的负载均衡器实现。
-这个特性从 v1.21 版本开始可以使用，你在 v1.21 版本中使用这个字段必须启用 `ServiceLoadBalancerClass` 
-特性门控，这个特性门控从 v1.22 版本及以后默认打开。
 默认情况下，`.spec.loadBalancerClass` 的取值是 `nil`，如果集群使用 `--cloud-provider` 配置了云提供商，
 `LoadBalancer` 类型服务会使用云提供商的默认负载均衡器实现。
-如果设置了 `.spec.loadBalancerClass`，则假定存在某个与所指定的类相匹配的
-负载均衡器实现在监视服务变化。
-所有默认的负载均衡器实现（例如，由云提供商所提供的）都会忽略设置了此字段
-的服务。`.spec.loadBalancerClass` 只能设置到类型为 `LoadBalancer` 的 Service
-之上，而且一旦设置之后不可变更。
+如果设置了 `.spec.loadBalancerClass`，则假定存在某个与所指定的类相匹配的负载均衡器实现在监视服务变化。
+所有默认的负载均衡器实现（例如，由云提供商所提供的）都会忽略设置了此字段的服务。`.spec.loadBalancerClass` 只能设置到类型为 `LoadBalancer` 的 Service 之上，而且一旦设置之后不可变更。
 
 <!--
 The value of `spec.loadBalancerClass` must be a label-style identifier,
@@ -1232,8 +1272,8 @@ with an optional prefix such as "`internal-vip`" or "`example.com/internal-vip`"
 Unprefixed names are reserved for end-users.
 -->
 `.spec.loadBalancerClass` 的值必须是一个标签风格的标识符，
-可以有选择地带有类似 "`internal-vip`" 或 "`example.com/internal-vip`" 这类
-前缀。没有前缀的名字是保留给最终用户的。
+可以有选择地带有类似 "`internal-vip`" 或 "`example.com/internal-vip`" 这类前缀。
+没有前缀的名字是保留给最终用户的。
 
 <!--
 #### Internal load balancer
@@ -1259,9 +1299,10 @@ depending on the cloud Service provider you're using.
 <!--
 Select one of the tabs.
 -->
-选择一个标签
+选择一个标签。
 {{% /tab %}}
 {{% tab name="GCP" %}}
+
 ```yaml
 [...]
 metadata:
@@ -1353,6 +1394,17 @@ metadata:
 [...]
 ```
 
+{{% /tab %}}
+{{% tab name="OCI" %}}
+
+```yaml
+[...]
+metadata:
+    name: my-service
+    annotations:
+        service.beta.kubernetes.io/oci-load-balancer-internal: true
+[...]
+```
 {{% /tab %}}
 {{< /tabs >}}
 
@@ -1405,8 +1457,8 @@ modifying the headers.
 In a mixed-use environment where some ports are secured and others are left unencrypted,
 you can use the following annotations:
 -->
-第二个注解指定 Pod 使用哪种协议。 对于 HTTPS 和 SSL，ELB 希望 Pod 使用证书
-通过加密连接对自己进行身份验证。
+第二个注解指定 Pod 使用哪种协议。对于 HTTPS 和 SSL，ELB 希望 Pod
+使用证书通过加密连接对自己进行身份验证。
 
 HTTP 和 HTTPS 选择第7层代理：ELB 终止与用户的连接，解析标头，并在转发请求时向
 `X-Forwarded-For` 标头注入用户的 IP 地址（Pod 仅在连接的另一端看到 ELB 的 IP 地址）。
@@ -1434,7 +1486,7 @@ To see which policies are available for use, you can use the `aws` command line
 而 `80` 端口将转发 HTTP 数据包。
 
 从 Kubernetes v1.9 起可以使用
-[预定义的 AWS SSL 策略](https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-security-policy-table.html)
+[预定义的 AWS SSL 策略](https://docs.aws.amazon.com/zh_cn/elasticloadbalancing/latest/classic/elb-security-policy-table.html)
 为你的服务使用 HTTPS 或 SSL 侦听器。
 要查看可以使用哪些策略，可以使用 `aws` 命令行工具：
 
@@ -1507,10 +1559,10 @@ specifies the logical hierarchy you created for your Amazon S3 bucket.
 
 注解 `service.beta.kubernetes.io/aws-load-balancer-access-log-enabled` 控制是否启用访问日志。
 
-注解 `service.beta.kubernetes.io/aws-load-balancer-access-log-emit-interval` 
+注解 `service.beta.kubernetes.io/aws-load-balancer-access-log-emit-interval`
 控制发布访问日志的时间间隔（以分钟为单位）。你可以指定 5 分钟或 60 分钟的间隔。
 
-注解 `service.beta.kubernetes.io/aws-load-balancer-access-log-s3-bucket-name` 
+注解 `service.beta.kubernetes.io/aws-load-balancer-access-log-s3-bucket-name`
 控制存储负载均衡器访问日志的 Amazon S3 存储桶的名称。
 
 注解 `service.beta.kubernetes.io/aws-load-balancer-access-log-s3-bucket-prefix`
@@ -1644,7 +1696,7 @@ on Elastic Load Balancing for a list of supported instance types.
 {{< note >}}
 NLB 仅适用于某些实例类。有关受支持的实例类型的列表，
 请参见
-[AWS文档](https://docs.aws.amazon.com/elasticloadbalancing/latest/network/target-group-register-targets.html#register-deregister-targets)
+[AWS 文档](https://docs.aws.amazon.com/zh_cn/elasticloadbalancing/latest/network/target-group-register-targets.html#register-deregister-targets)
 中关于所支持的实例类型的 Elastic Load Balancing 说明。
 {{< /note >}}
 
@@ -1681,10 +1733,10 @@ groups are modified with the following IP rules:
 -->
 
 为了获得均衡流量，请使用 DaemonSet 或指定
-[Pod 反亲和性](/zh/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity)
+[Pod 反亲和性](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity)
 使其不在同一节点上。
 
-你还可以将 NLB 服务与[内部负载平衡器](/zh/docs/concepts/services-networking/service/#internal-load-balancer)
+你还可以将 NLB 服务与[内部负载平衡器](/zh-cn/docs/concepts/services-networking/service/#internal-load-balancer)
 注解一起使用。
 
 为了使客户端流量能够到达 NLB 后面的实例，使用以下 IP 规则修改了节点安全组：
@@ -1692,14 +1744,14 @@ groups are modified with the following IP rules:
 | Rule | Protocol | Port(s) | IpRange(s) | IpRange Description |
 |------|----------|---------|------------|---------------------|
 | Health Check | TCP | NodePort(s) (`.spec.healthCheckNodePort` for `.spec.externalTrafficPolicy = Local`) | Subnet CIDR | kubernetes.io/rule/nlb/health=\<loadBalancerName\> |
-| Client Traffic | TCP | NodePort(s) | `.spec.loadBalancerSourceRanges` (defaults to `0.0.0.0/0`) | kubernetes.io/rule/nlb/client=\<loadBalancerName\> |
-| MTU Discovery | ICMP | 3,4 | `.spec.loadBalancerSourceRanges` (defaults to `0.0.0.0/0`) | kubernetes.io/rule/nlb/mtu=\<loadBalancerName\> |
+| Client Traffic | TCP | NodePort(s) | `.spec.loadBalancerSourceRanges` (默认值为 `0.0.0.0/0`) | kubernetes.io/rule/nlb/client=\<loadBalancerName\> |
+| MTU Discovery | ICMP | 3,4 | `.spec.loadBalancerSourceRanges` (默认值为 `0.0.0.0/0`) | kubernetes.io/rule/nlb/mtu=\<loadBalancerName\> |
 
 <!--
 In order to limit which client IP's can access the Network Load Balancer,
 specify `loadBalancerSourceRanges`.
 -->
-为了限制哪些客户端IP可以访问网络负载平衡器，请指定 `loadBalancerSourceRanges`。
+为了限制哪些客户端 IP 可以访问网络负载平衡器，请指定 `loadBalancerSourceRanges`。
 
 ```yaml
 spec:
@@ -1718,6 +1770,13 @@ in those modified security groups.
 如果节点具有公共 IP 地址，请注意，非 NLB 流量也可以到达那些修改后的安全组中的所有实例。
 {{< /note >}}
 
+<!--
+Further documentation on annotations for Elastic IPs and other common use-cases may be found
+in the [AWS Load Balancer Controller documentation](https://kubernetes-sigs.github.io/aws-load-balancer-controller/latest/guide/service/annotations/).
+-->
+有关弹性 IP 注解和更多其他常见用例，
+请参阅[AWS 负载均衡控制器文档](https://kubernetes-sigs.github.io/aws-load-balancer-controller/latest/guide/service/annotations/)。
+
 <!--
 #### Other CLB annotations on Tencent Kubernetes Engine (TKE)
 
@@ -1802,7 +1861,7 @@ the `my-service` Service in the `prod` namespace to `my.database.example.com`:
 
 ### ExternalName 类型         {#externalname}
 
-类型为 ExternalName 的服务将服务映射到 DNS 名称，而不是典型的选择器，例如 `my-service` 或者 `cassandra`。
+类型为 ExternalName 的服务将服务映射到 DNS 名称，而不是典型的选择算符，例如 `my-service` 或者 `cassandra`。
 你可以使用 `spec.externalName` 参数指定这些服务。
 
 例如，以下 Service 定义将 `prod` 名称空间中的 `my-service` 服务映射到 `my.database.example.com`：
@@ -1819,14 +1878,14 @@ spec:
 ```
 
 <!--
-ExternalName accepts an IPv4 address string, but as a DNS names comprised of digits, not as an IP address. ExternalNames that resemble IPv4 addresses are not resolved by CoreDNS or ingress-nginx because ExternalName
+ExternalName accepts an IPv4 address string, but as a DNS name comprised of digits, not as an IP address. ExternalNames that resemble IPv4 addresses are not resolved by CoreDNS or ingress-nginx because ExternalName
 is intended to specify a canonical DNS name. To hardcode an IP address, consider using
 [headless Services](#headless-services).
 -->
 {{< note >}}
 ExternalName 服务接受 IPv4 地址字符串，但作为包含数字的 DNS 名称，而不是 IP 地址。
 类似于 IPv4 地址的外部名称不能由 CoreDNS 或 ingress-nginx 解析，因为外部名称旨在指定规范的 DNS 名称。
-要对 IP 地址进行硬编码，请考虑使用 [headless Services](#headless-services)。
+要对 IP 地址进行硬编码，请考虑使用[无头 Services](#headless-services)。
 {{< /note >}}
 
 <!--
@@ -1841,7 +1900,7 @@ Service's `type`.
 当查找主机 `my-service.prod.svc.cluster.local` 时，集群 DNS 服务返回 `CNAME` 记录，
 其值为 `my.database.example.com`。
 访问 `my-service` 的方式与其他服务的方式相同，但主要区别在于重定向发生在 DNS 级别，而不是通过代理或转发。
-如果以后你决定将数据库移到集群中，则可以启动其 Pod，添加适当的选择器或端点以及更改服务的 `type`。
+如果以后你决定将数据库移到集群中，则可以启动其 Pod，添加适当的选择算符或端点以及更改服务的 `type`。
 
 <!--
 {{< warning >}}
@@ -1851,14 +1910,12 @@ For protocols that use hostnames this difference may lead to errors or unexpecte
 {{< /warning >}}
 -->
 {{< warning >}}
-对于一些常见的协议，包括 HTTP 和 HTTPS，
-你使用 ExternalName 可能会遇到问题。
-如果你使用 ExternalName，那么集群内客户端使用的主机名
-与 ExternalName 引用的名称不同。
+对于一些常见的协议，包括 HTTP 和 HTTPS，你使用 ExternalName 可能会遇到问题。
+如果你使用 ExternalName，那么集群内客户端使用的主机名与 ExternalName 引用的名称不同。
 
 对于使用主机名的协议，此差异可能会导致错误或意外响应。
-HTTP 请求将具有源服务器无法识别的 `Host:` 标头；TLS 服
-务器将无法提供与客户端连接的主机名匹配的证书。
+HTTP 请求将具有源服务器无法识别的 `Host:` 标头；
+TLS 服务器将无法提供与客户端连接的主机名匹配的证书。
 {{< /warning >}}
 
 <!--
@@ -1866,8 +1923,8 @@ This section is indebted to the [Kubernetes Tips - Part
 1](https://akomljen.com/kubernetes-tips-part-1/) blog post from [Alen Komljen](https://akomljen.com/).
 -->
 {{< note >}}
-本部分感谢 [Alen Komljen](https://akomljen.com/)的
-[Kubernetes Tips - Part1](https://akomljen.com/kubernetes-tips-part-1/) 博客文章。
+有关这部分内容，我们要感谢 [Alen Komljen](https://akomljen.com/) 刊登的
+[Kubernetes Tips - Part1](https://akomljen.com/kubernetes-tips-part-1/) 这篇博文。
 {{< /note >}}
 
 <!--
@@ -1883,7 +1940,7 @@ In the example below, "`my-service`" can be accessed by clients on "`80.11.12.10
 -->
 ### 外部 IP  {#external-ips}
 
-如果外部的 IP 路由到集群中一个或多个 Node 上，Kubernetes Service 会被暴露给这些 externalIPs。
+如果外部的 IP 路由到集群中一个或多个 Node 上，Kubernetes Service 会被暴露给这些 `externalIPs`。
 通过外部 IP（作为目的 IP 地址）进入到集群，打到 Service 的端口上的流量，
 将会被路由到 Service 的 Endpoint 上。
 `externalIPs` 不会被 Kubernetes 管理，它属于集群管理员的职责范畴。
@@ -1898,7 +1955,7 @@ metadata:
   name: my-service
 spec:
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   ports:
     - name: http
       protocol: TCP
@@ -1935,8 +1992,8 @@ but the current API requires it.
 
 使用用户空间代理，隐藏了访问 Service 的数据包的源 IP 地址。
 这使得一些类型的防火墙无法起作用。
-iptables 代理不会隐藏 Kubernetes 集群内部的 IP 地址，但却要求客户端请求
-必须通过一个负载均衡器或 Node 端口。
+iptables 代理不会隐藏 Kubernetes 集群内部的 IP 地址，
+但却要求客户端请求必须通过一个负载均衡器或 Node 端口。
 
 `Type` 字段支持嵌套功能 —— 每一层需要添加到上一层里面。
 不会严格要求所有云提供商（例如，GCE 就没必要为了使一个 `LoadBalancer`
@@ -1965,7 +2022,8 @@ someone else's choice.  That is an isolation failure.
 
 In order to allow you to choose a port number for your Services, we must
 ensure that no two Services can collide. Kubernetes does that by allocating each
-Service its own IP address.
+Service its own IP address from within the `service-cluster-ip-range`
+CIDR range that is configured for the API server.
 
 To ensure each Service receives a unique IP, an internal allocator atomically
 updates a global allocation map in {{< glossary_tooltip term_id="etcd" >}}
@@ -1985,8 +2043,9 @@ Kubernetes 最主要的哲学之一，是用户不应该暴露那些能够导致
 对于 Service 资源的设计，这意味着如果用户的选择有可能与他人冲突，那就不要让用户自行选择端口号。
 这是一个隔离性的失败。
 
-为了使用户能够为他们的 Service 选择一个端口号，我们必须确保不能有2个 Service 发生冲突。
-Kubernetes 通过为每个 Service 分配它们自己的 IP 地址来实现。
+为了使用户能够为他们的 Service 选择一个端口号，我们必须确保不能有 2 个 Service 发生冲突。
+Kubernetes 通过在为 API 服务器配置的 `service-cluster-ip-range` CIDR
+范围内为每个服务分配自己的 IP 地址来实现。
 
 为了保证每个 Service 被分配到一个唯一的 IP，需要一个内部的分配器能够原子地更新
 {{< glossary_tooltip term_id="etcd" >}} 中的一个全局分配映射表，
@@ -1999,6 +2058,42 @@ Kubernetes 通过为每个 Service 分配它们自己的 IP 地址来实现。
 同时 Kubernetes 会通过控制器检查不合理的分配（如管理员干预导致的）
 以及清理已被分配但不再被任何 Service 使用的 IP 地址。
 
+<!--
+#### IP address ranges for `type: ClusterIP` Services {#service-ip-static-sub-range}
+
+{{< feature-state for_k8s_version="v1.24" state="alpha" >}}
+However, there is a problem with this `ClusterIP` allocation strategy, because a user
+can also [choose their own address for the service](#choosing-your-own-ip-address).
+This could result in a conflict if the internal allocator selects the same IP address
+for another Service.
+-->
+#### `type: ClusterIP` 服务的 IP 地址范围  {#service-ip-static-sub-range}
+
+{{< feature-state for_k8s_version="v1.24" state="alpha" >}}
+但是，这种 `ClusterIP` 分配策略存在一个问题，因为用户还可以[为服务选择自己的地址](#choosing-your-own-ip-address)。
+如果内部分配器为另一个服务选择相同的 IP 地址，这可能会导致冲突。
+
+<!--
+If you enable the `ServiceIPStaticSubrange`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/),
+the allocation strategy divides the `ClusterIP` range into two bands, based on
+the size of the configured `service-cluster-ip-range` by using the following formula
+`min(max(16, cidrSize / 16), 256)`, described as _never less than 16 or more than 256,
+with a graduated step function between them_. Dynamic IP allocations will be preferentially
+chosen from the upper band, reducing risks of conflicts with the IPs
+assigned from the lower band.
+This allows users to use the lower band of the `service-cluster-ip-range` for their
+Services with static IPs assigned with a very low risk of running into conflicts.
+-->
+如果启用 `ServiceIPStaticSubrange`[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)，
+分配策略根据配置的 `service-cluster-ip-range` 的大小，使用以下公式
+`min(max(16, cidrSize / 16), 256)` 进行划分，该公式可描述为
+“在不小于 16 且不大于 256 之间有一个步进量（Graduated Step）”，将
+`ClusterIP` 范围分成两段。动态 IP 分配将优先从上半段地址中选择，
+从而降低与下半段地址分配的 IP 冲突的风险。
+这允许用户将 `service-cluster-ip-range` 的下半段地址用于他们的服务，
+与所分配的静态 IP 的冲突风险非常低。
+
 <!--
 ### Service IP addresses {#ips-and-vips}
 
@@ -2015,14 +2110,13 @@ each operate slightly differently.
 -->
 ### Service IP 地址 {#ips-and-vips}
 
-不像 Pod 的 IP 地址，它实际路由到一个固定的目的地，Service 的 IP 实际上
-不能通过单个主机来进行应答。
-相反，我们使用 `iptables`（Linux 中的数据包处理逻辑）来定义一个
-虚拟 IP 地址（VIP），它可以根据需要透明地进行重定向。
+不像 Pod 的 IP 地址，它实际路由到一个固定的目的地，Service 的 IP 实际上不能通过单个主机来进行应答。
+相反，我们使用 `iptables`（Linux 中的数据包处理逻辑）来定义一个虚拟 IP 地址（VIP），
+它可以根据需要透明地进行重定向。
 当客户端连接到 VIP 时，它们的流量会自动地传输到一个合适的 Endpoint。
 环境变量和 DNS，实际上会根据 Service 的 VIP 和端口来进行填充。
 
-kube-proxy支持三种代理模式: 用户空间，iptables和IPVS；它们各自的操作略有不同。
+kube-proxy 支持三种代理模式: 用户空间、iptables 和 IPVS；它们各自的操作略有不同。
 
 #### Userspace  {#userspace}
 
@@ -2047,8 +2141,8 @@ of which Pods they are actually accessing.
 作为一个例子，考虑前面提到的图片处理应用程序。
 当创建后端 Service 时，Kubernetes master 会给它指派一个虚拟 IP 地址，比如 10.0.0.1。
 假设 Service 的端口是 1234，该 Service 会被集群中所有的 `kube-proxy` 实例观察到。
-当代理看到一个新的 Service， 它会打开一个新的端口，建立一个从该 VIP 重定向到
-新端口的 iptables，并开始接收请求连接。
+当代理看到一个新的 Service，它会打开一个新的端口，
+建立一个从该 VIP 重定向到新端口的 iptables，并开始接收请求连接。
 
 当一个客户端连接到一个 VIP，iptables 规则开始起作用，它会重定向该数据包到
 "服务代理" 的端口。
@@ -2099,11 +2193,10 @@ through a load-balancer, though in those cases the client IP does get altered.
 iptables operations slow down dramatically in large scale cluster e.g 10,000 Services.
 IPVS is designed for load balancing and based on in-kernel hash tables. So you can achieve performance consistency in large number of Services from IPVS-based kube-proxy. Meanwhile, IPVS-based kube-proxy has more sophisticated load balancing algorithms (least conns, locality, weighted, persistence).
 -->
-在大规模集群（例如 10000 个服务）中，iptables 操作会显着降低速度。 IPVS
-专为负载平衡而设计，并基于内核内哈希表。
+在大规模集群（例如 10000 个服务）中，iptables 操作会显着降低速度。
+IPVS 专为负载平衡而设计，并基于内核内哈希表。
 因此，你可以通过基于 IPVS 的 kube-proxy 在大量服务中实现性能一致性。
-同时，基于 IPVS 的 kube-proxy 具有更复杂的负载均衡算法（最小连接、局部性、
-加权、持久性）。
+同时，基于 IPVS 的 kube-proxy 具有更复杂的负载均衡算法（最小连接、局部性、加权、持久性）。
 
 ## API 对象
 
@@ -2165,7 +2258,7 @@ NAT for multihomed SCTP associations requires special logic in the corresponding
 {{< /warning >}}
 -->
 {{< warning >}}
-支持多宿主SCTP关联要求 CNI 插件能够支持为一个 Pod 分配多个接口和IP地址。
+支持多宿主SCTP关联要求 CNI 插件能够支持为一个 Pod 分配多个接口和 IP 地址。
 
 用于多宿主 SCTP 关联的 NAT 在相应的内核模块中需要特殊的逻辑。
 {{< /warning >}}
@@ -2234,7 +2327,7 @@ incoming connection, similar to this example
 [PROXY 协议](https://www.haproxy.org/download/1.8/doc/proxy-protocol.txt)
 的连接。
 
-负载平衡器将发送一系列初始字节，描述传入的连接，类似于此示例
+负载平衡器将发送一系列初始字节，描述传入的连接，类似于此示例：
 
 ```
 PROXY TCP4 192.0.2.202 10.0.42.7 12345 7\r\n
@@ -2252,7 +2345,7 @@ followed by the data from the client.
 * Read about [Ingress](/docs/concepts/services-networking/ingress/)
 * Read about [Endpoint Slices](/docs/concepts/services-networking/endpoint-slices/)
 -->
-* 阅读[使用服务访问应用](/zh/docs/concepts/services-networking/connect-applications-service/)
-* 阅读了解 [Ingress](/zh/docs/concepts/services-networking/ingress/)
-* 阅读了解[端点切片（Endpoint Slices）](/zh/docs/concepts/services-networking/endpoint-slices/)
+* 阅读[使用服务访问应用](/zh-cn/docs/concepts/services-networking/connect-applications-service/)
+* 阅读了解 [Ingress](/zh-cn/docs/concepts/services-networking/ingress/)
+* 阅读了解[端点切片（Endpoint Slices）](/zh-cn/docs/concepts/services-networking/endpoint-slices/)
 
diff --git a/content/zh/docs/concepts/services-networking/topology-aware-hints.md b/content/zh-cn/docs/concepts/services-networking/topology-aware-hints.md
similarity index 92%
rename from content/zh/docs/concepts/services-networking/topology-aware-hints.md
rename to content/zh-cn/docs/concepts/services-networking/topology-aware-hints.md
index 58baaea5cb..a867c2a537 100644
--- a/content/zh/docs/concepts/services-networking/topology-aware-hints.md
+++ b/content/zh-cn/docs/concepts/services-networking/topology-aware-hints.md
@@ -15,7 +15,7 @@ weight: 45
 
 <!-- overview -->
 
-{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
 
 <!-- 
 _Topology Aware Hints_ enable topology aware routing by including suggestions
@@ -32,6 +32,18 @@ _拓扑感知提示_ 包含客户怎么使用服务端点的建议，从而实
 
 例如，你可以在一个地域内路由流量，以降低通信成本，或提高网络性能。
 
+<!-- 
+The "topology-aware hints" feature is at Beta stage and it is **NOT** enabled
+by default. To try out this feature, you have to enable the `TopologyAwareHints`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/).
+-->
+
+{{< note >}}
+“拓扑感知提示”特性处于 Beta 阶段，并且默认情况下**未**启用。 
+要试用此特性，你必须启用 `TopologyAwareHints`
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)。
+{{< /note >}}
+
 <!-- body -->
 
 <!-- 
@@ -47,7 +59,7 @@ Routing". When calculating the endpoints for a {{< glossary_tooltip term_id="Ser
 the EndpointSlice controller considers the topology (region and zone) of each endpoint
 and populates the hints field to allocate it to a zone.
 Cluster components such as the {{< glossary_tooltip term_id="kube-proxy" text="kube-proxy" >}}
-can then consume those hints, and use them to influence how traffic to is routed
+can then consume those hints, and use them to influence how the traffic to is routed
 (favoring topologically closer endpoints).
 -->
 Kubernetes 集群越来越多的部署到多区域环境中。
@@ -64,14 +76,13 @@ EndpointSlice 控制器会评估每一个端点的拓扑（地域和区域），
 ## 使用拓扑感知提示 {#using-topology-aware-hints}
 
 <!-- 
-If you have [enabled](/docs/tasks/administer-cluster/enabling-topology-aware-hints) the
-overall feature, you can activate Topology Aware Hints for a Service by setting the
+You can activate Topology Aware Hints for a Service by setting the
 `service.kubernetes.io/topology-aware-hints` annotation to `auto`. This tells
 the EndpointSlice controller to set topology hints if it is deemed safe.
 Importantly, this does not guarantee that hints will always be set.
 -->
-如果你已经[启用](/zh/docs/tasks/administer-cluster/enabling-topology-aware-hints)了整个特性，
-就可以通过把注解 `service.kubernetes.io/topology-aware-hints` 的值设置为 `auto`，
+
+你可以通过把注解 `service.kubernetes.io/topology-aware-hints` 的值设置为 `auto`，
 来激活服务的拓扑感知提示功能。
 这告诉 EndpointSlice 控制器在它认为安全的时候来设置拓扑提示。
 重要的是，这并不能保证总会设置提示（hints）。
@@ -106,7 +117,7 @@ as many endpoints to the zone with 2 CPU cores.
 此特性开启后，EndpointSlice 控制器负责在 EndpointSlice 上设置提示信息。
 控制器按比例给每个区域分配一定比例数量的端点。
 这个比例来源于此区域中运行节点的
-[可分配](/zh/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)
+[可分配](/zh-cn/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)
 CPU 核心数。
 例如，如果一个区域拥有 2 CPU 核心，而另一个区域只有 1 CPU 核心，
 那控制器将给那个有 2 CPU 的区域分配两倍数量的端点。
@@ -278,8 +289,7 @@ Kubernetes 控制平面和每个节点上的 kube-proxy，在使用拓扑感知
 ## {{% heading "whatsnext" %}}
 
 <!-- 
-* Read about [enabling Topology Aware Hints](/docs/tasks/administer-cluster/enabling-topology-aware-hints/)
 * Read [Connecting Applications with Services](/docs/concepts/services-networking/connect-applications-service/)
 -->
-* 参阅[启用拓扑感知提示](/zh/docs/tasks/administer-cluster/enabling-topology-aware-hints/)
-* 参阅[通过服务连通应用](/zh/docs/concepts/services-networking/connect-applications-service/)
+
+* 参阅[通过服务连通应用](/zh-cn/docs/concepts/services-networking/connect-applications-service/)
diff --git a/content/zh-cn/docs/concepts/services-networking/windows-networking.md b/content/zh-cn/docs/concepts/services-networking/windows-networking.md
new file mode 100644
index 0000000000..ea2df2e815
--- /dev/null
+++ b/content/zh-cn/docs/concepts/services-networking/windows-networking.md
@@ -0,0 +1,310 @@
+---
+title: Windows 网络
+content_type: concept
+weight: 75
+---
+<!--
+reviewers:
+- aravindhp
+- jayunit100
+- jsturtevant
+- marosset
+title: Networking on Windows
+content_type: concept
+weight: 75
+-->
+<!-- overview -->
+<!--
+Kubernetes supports running nodes on either Linux or Windows. You can mix both kinds of node within a single cluster.
+This page provides an overview to networking specific to the Windows operating system.
+-->
+Kubernetes 支持运行 Linux 或 Windows 节点。
+你可以在统一集群内混布这两种节点。
+本页提供了特定于 Windows 操作系统的网络概述。
+
+<!-- body -->
+<!--
+## Container networking on Windows {#networking}
+
+Networking for Windows containers is exposed through
+[CNI plugins](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/).
+Windows containers function similarly to virtual machines in regards to
+networking. Each container has a virtual network adapter (vNIC) which is connected
+to a Hyper-V virtual switch (vSwitch). The Host Networking Service (HNS) and the
+Host Compute Service (HCS) work together to create containers and attach container
+vNICs to networks. HCS is responsible for the management of containers whereas HNS
+is responsible for the management of networking resources such as:
+
+* Virtual networks (including creation of vSwitches)
+* Endpoints / vNICs
+* Namespaces
+* Policies including packet encapsulations, load-balancing rules, ACLs, and NAT rules.
+-->
+## Windows 容器网络 {#networking}
+
+Windows 容器网络通过 [CNI 插件](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)暴露。
+Windows 容器网络的工作方式与虚拟机类似。
+每个容器都有一个连接到 Hyper-V 虚拟交换机（vSwitch）的虚拟网络适配器（vNIC）。
+主机网络服务（Host Networking Service，HNS）和主机计算服务（Host Comute Service，HCS）
+协同创建容器并将容器 vNIC 挂接到网络。
+HCS 负责管理容器，而 HNS 负责管理以下网络资源：
+
+* 虚拟网络（包括创建 vSwitch）
+* Endpoint / vNIC
+* 命名空间
+* 包括数据包封装、负载均衡规则、ACL 和 NAT 规则在内的策略。
+
+<!--
+The Windows HNS and vSwitch implement namespacing and can
+create virtual NICs as needed for a pod or container. However, many configurations such
+as DNS, routes, and metrics are stored in the Windows registry database rather than as
+files inside `/etc`, which is how Linux stores those configurations. The Windows registry for the container
+is separate from that of the host, so concepts like mapping `/etc/resolv.conf` from
+the host into a container don't have the same effect they would on Linux. These must
+be configured using Windows APIs run in the context of that container. Therefore
+CNI implementations need to call the HNS instead of relying on file mappings to pass
+network details into the pod or container.
+-->
+Windows HNS 和 vSwitch 实现命名空间划分，且可以按需为 Pod 或容器创建虚拟 NIC。
+然而，诸如 DNS、路由和指标等许多配置将存放在 Windows 注册表数据库中，
+而不是像 Linux 将这些配置作为文件存放在 `/etc` 内。
+针对容器的 Windows 注册表与主机的注册表是分开的，因此将 `/etc/resolv.conf`
+从主机映射到一个容器的类似概念与 Linux 上的效果不同。
+这些必须使用容器环境中运行的 Windows API 进行配置。
+因此，实现 CNI 时需要调用 HNS，而不是依赖文件映射将网络详情传递到 Pod 或容器中。
+
+<!--
+## Network modes
+
+Windows supports five different networking drivers/modes: L2bridge, L2tunnel,
+Overlay (Beta), Transparent, and NAT. In a heterogeneous cluster with Windows and Linux
+worker nodes, you need to select a networking solution that is compatible on both
+Windows and Linux. The following table lists the out-of-tree plugins are supported on Windows,
+with recommendations on when to use each CNI:
+-->
+## 网络模式 {#network-mode}
+
+Windows 支持五种不同的网络驱动/模式：L2bridge、L2tunnel、Overlay (Beta)、Transparent 和 NAT。
+在 Windows 和 Linux 工作节点组成的异构集群中，你需要选择一个同时兼容 Windows 和 Linux 的网络方案。
+下表列出了 Windows 支持的树外插件，并给出了何时使用每种 CNI 的建议：
+
+<!--
+| Network Driver | Description | Container Packet Modifications | Network Plugins | Network Plugin Characteristics |
+| -------------- | ----------- | ------------------------------ | --------------- | ------------------------------ |
+| L2bridge       | Containers are attached to an external vSwitch. Containers are attached to the underlay network, although the physical network doesn't need to learn the container MACs because they are rewritten on ingress/egress. | MAC is rewritten to host MAC, IP may be rewritten to host IP using HNS OutboundNAT policy. | [win-bridge](https://github.com/containernetworking/plugins/tree/master/plugins/main/windows/win-bridge), [Azure-CNI](https://github.com/Azure/azure-container-networking/blob/master/docs/cni.md), Flannel host-gateway uses win-bridge | win-bridge uses L2bridge network mode, connects containers to the underlay of hosts, offering best performance. Requires user-defined routes (UDR) for inter-node connectivity. |
+| L2Tunnel | This is a special case of l2bridge, but only used on Azure. All packets are sent to the virtualization host where SDN policy is applied. | MAC rewritten, IP visible on the underlay network | [Azure-CNI](https://github.com/Azure/azure-container-networking/blob/master/docs/cni.md) | Azure-CNI allows integration of containers with Azure vNET, and allows them to leverage the set of capabilities that [Azure Virtual Network provides](https://azure.microsoft.com/en-us/services/virtual-network/). For example, securely connect to Azure services or use Azure NSGs. See [azure-cni for some examples](https://docs.microsoft.com/azure/aks/concepts-network#azure-cni-advanced-networking) |
+| Overlay | Containers are given a vNIC connected to an external vSwitch. Each overlay network gets its own IP subnet, defined by a custom IP prefix.The overlay network driver uses VXLAN encapsulation. | Encapsulated with an outer header. | [win-overlay](https://github.com/containernetworking/plugins/tree/master/plugins/main/windows/win-overlay), Flannel VXLAN (uses win-overlay) | win-overlay should be used when virtual container networks are desired to be isolated from underlay of hosts (e.g. for security reasons). Allows for IPs to be re-used for different overlay networks (which have different VNID tags)  if you are restricted on IPs in your datacenter.  This option requires [KB4489899](https://support.microsoft.com/help/4489899) on Windows Server 2019. |
+| Transparent (special use case for [ovn-kubernetes](https://github.com/openvswitch/ovn-kubernetes)) | Requires an external vSwitch. Containers are attached to an external vSwitch which enables intra-pod communication via logical networks (logical switches and routers). | Packet is encapsulated either via [GENEVE](https://datatracker.ietf.org/doc/draft-gross-geneve/) or [STT](https://datatracker.ietf.org/doc/draft-davie-stt/) tunneling to reach pods which are not on the same host.  <br/> Packets are forwarded or dropped via the tunnel metadata information supplied by the ovn network controller. <br/> NAT is done for north-south communication. | [ovn-kubernetes](https://github.com/openvswitch/ovn-kubernetes) | [Deploy via ansible](https://github.com/openvswitch/ovn-kubernetes/tree/master/contrib). Distributed ACLs can be applied via Kubernetes policies. IPAM support. Load-balancing can be achieved without kube-proxy. NATing is done without using iptables/netsh. |
+| NAT (*not used in Kubernetes*) | Containers are given a vNIC connected to an internal vSwitch. DNS/DHCP is provided using an internal component called [WinNAT](https://techcommunity.microsoft.com/t5/virtualization/windows-nat-winnat-capabilities-and-limitations/ba-p/382303) | MAC and IP is rewritten to host MAC/IP. | [nat](https://github.com/Microsoft/windows-container-networking/tree/master/plugins/nat) | Included here for completeness |
+-->
+| 网络驱动 | 描述 | 容器数据包修改 | 网络插件 | 网络插件特点 |
+| -------------- | ----------- | ------------------------------ | --------------- | ------------------------------ |
+| L2bridge       | 容器挂接到一个外部 vSwitch。容器挂接到下层网络，但物理网络不需要了解容器的 MAC，因为这些 MAC 在入站/出站时被重写。 | MAC 被重写为主机 MAC，可使用 HNS OutboundNAT 策略将 IP 重写为主机 IP。 | [win-bridge](https://github.com/containernetworking/plugins/tree/master/plugins/main/windows/win-bridge)、[Azure-CNI](https://github.com/Azure/azure-container-networking/blob/master/docs/cni.md)、Flannel host-gateway 使用 win-bridge| win-bridge 使用 L2bridge 网络模式，将容器连接到主机的下层，提供最佳性能。节点间连接需要用户定义的路由（UDR）。 |
+| L2Tunnel | 这是 L2bridge 的一种特例，但仅用在 Azure 上。所有数据包都会被发送到应用了 SDN 策略的虚拟化主机。 | MAC 被重写，IP 在下层网络上可见。| [Azure-CNI](https://github.com/Azure/azure-container-networking/blob/master/docs/cni.md) | Azure-CNI 允许将容器集成到 Azure vNET，允许容器充分利用 [Azure 虚拟网络](https://azure.microsoft.com/zh-cn/services/virtual-network/)所提供的能力集合。例如，安全地连接到 Azure 服务或使用 Azure NSG。参考 [azure-cni 了解有关示例](https://docs.microsoft.com/zh-cn/azure/aks/concepts-network#azure-cni-advanced-networking)。 |
+| Overlay | 容器被赋予一个 vNIC，连接到外部 vSwitch。每个上层网络都有自己的 IP 子网，由自定义 IP 前缀进行定义。该上层网络驱动使用 VXLAN 封装。 | 用外部头进行封装。 | [win-overlay](https://github.com/containernetworking/plugins/tree/master/plugins/main/windows/win-overlay)、Flannel VXLAN（使用 win-overlay） | 当需要将虚拟容器网络与主机的下层隔离时（例如出于安全原因），应使用 win-overlay。如果你的数据中心的 IP 个数有限，可以将 IP 在不同的上层网络中重用（带有不同的 VNID 标记）。在 Windows Server 2019 上这个选项需要 [KB4489899](https://support.microsoft.com/zh-cn/help/4489899)。 |
+| Transparent（[ovn-kubernetes](https://github.com/openvswitch/ovn-kubernetes) 的特殊用例） | 需要一个外部 vSwitch。容器挂接到一个外部 vSwitch，由后者通过逻辑网络（逻辑交换机和路由器）实现 Pod 内通信。 | 数据包通过 [GENEVE](https://datatracker.ietf.org/doc/draft-gross-geneve/) 或 [STT](https://datatracker.ietf.org/doc/draft-davie-stt/) 隧道进行封装，以到达其它主机上的 Pod。  <br/> 数据包基于 OVN 网络控制器提供的隧道元数据信息被转发或丢弃。<br/>南北向通信使用 NAT。 | [ovn-kubernetes](https://github.com/openvswitch/ovn-kubernetes) | [通过 ansible 部署](https://github.com/openvswitch/ovn-kubernetes/tree/master/contrib)。通过 Kubernetes 策略可以实施分布式 ACL。支持 IPAM。无需 kube-proxy 即可实现负载均衡。无需 iptables/netsh 即可进行 NAT。 |
+| NAT（**Kubernetes 中未使用**） | 容器被赋予一个 vNIC，连接到内部 vSwitch。DNS/DHCP 是使用一个名为 [WinNAT 的内部组件](https://techcommunity.microsoft.com/t5/virtualization/windows-nat-winnat-capabilities-and-limitations/ba-p/382303)实现的 | MAC 和 IP 重写为主机 MAC/IP。 | [nat](https://github.com/Microsoft/windows-container-networking/tree/master/plugins/nat) | 放在此处保持完整性。 |
+
+<!--
+As outlined above, the [Flannel](https://github.com/coreos/flannel)
+[CNI plugin](https://github.com/flannel-io/cni-plugin)
+is also [supported](https://github.com/flannel-io/cni-plugin#windows-support-experimental) on Windows via the
+[VXLAN network backend](https://github.com/coreos/flannel/blob/master/Documentation/backends.md#vxlan) (**Beta support** ; delegates to win-overlay)
+and [host-gateway network backend](https://github.com/coreos/flannel/blob/master/Documentation/backends.md#host-gw) (stable support; delegates to win-bridge).
+-->
+如上所述，Windows 通过 [VXLAN 网络后端](https://github.com/coreos/flannel/blob/master/Documentation/backends.md#vxlan)（**Beta 支持**；委派给 win-overlay）
+和 [host-gateway 网络后端](https://github.com/coreos/flannel/blob/master/Documentation/backends.md#host-gw)（稳定支持；委派给 win-bridge）
+也[支持](https://github.com/flannel-io/cni-plugin#windows-support-experimental) [Flannel](https://github.com/coreos/flannel) 的 [CNI 插件](https://github.com/flannel-io/cni-plugin)。
+
+<!--
+This plugin supports delegating to one of the reference CNI plugins (win-overlay,
+win-bridge), to work in conjunction with Flannel daemon on Windows (Flanneld) for
+automatic node subnet lease assignment and HNS network creation. This plugin reads
+in its own configuration file (cni.conf), and aggregates it with the environment
+variables from the FlannelD generated subnet.env file. It then delegates to one of
+the reference CNI plugins for network plumbing, and sends the correct configuration
+containing the node-assigned subnet to the IPAM plugin (for example: `host-local`).
+-->
+此插件支持委派给参考 CNI 插件（win-overlay、win-bridge）之一，配合使用 Windows
+上的 Flannel 守护程序（Flanneld），以便自动分配节点子网租赁并创建 HNS 网络。
+该插件读取自己的配置文件（cni.conf），并聚合 FlannelD 生成的 subnet.env 文件中的环境变量。
+然后，委派给网络管道的参考 CNI 插件之一，并将包含节点分配子网的正确配置发送给 IPAM 插件（例如：`host-local`）。
+
+<!--
+For Node, Pod, and Service objects, the following network flows are supported for
+TCP/UDP traffic:
+
+* Pod → Pod (IP)
+* Pod → Pod (Name)
+* Pod → Service (Cluster IP)
+* Pod → Service (PQDN, but only if there are no ".")
+* Pod → Service (FQDN)
+* Pod → external (IP)
+* Pod → external (DNS)
+* Node → Pod
+* Pod → Node
+-->
+对于 Node、Pod 和 Service 对象，TCP/UDP 流量支持以下网络流：
+
+* Pod → Pod（IP）
+* Pod → Pod（名称）
+* Pod → Service（集群 IP）
+* Pod → Service（PQDN，但前提是没有 "."）
+* Pod → Service（FQDN）
+* Pod → 外部（IP）
+* Pod → 外部（DNS）
+* Node → Pod
+* Pod → Node
+
+<!--
+## IP address management (IPAM) {#ipam}
+
+The following IPAM options are supported on Windows:
+
+* [host-local](https://github.com/containernetworking/plugins/tree/master/plugins/ipam/host-local)
+* [azure-vnet-ipam](https://github.com/Azure/azure-container-networking/blob/master/docs/ipam.md) (for azure-cni only)
+* [Windows Server IPAM](https://docs.microsoft.com/windows-server/networking/technologies/ipam/ipam-top) (fallback option if no IPAM is set)
+-->
+## IP 地址管理（IPAM） {#ipam}
+
+Windows 支持以下 IPAM 选项：
+
+* [host-local](https://github.com/containernetworking/plugins/tree/master/plugins/ipam/host-local)
+* [azure-vnet-ipam](https://github.com/Azure/azure-container-networking/blob/master/docs/ipam.md)（仅适用于 azure-cni）
+* [Windows Server IPAM](https://docs.microsoft.com/zh-cn/windows-server/networking/technologies/ipam/ipam-top)（未设置 IPAM 时的回滚选项）
+
+<!--
+## Load balancing and Services
+
+A Kubernetes {{< glossary_tooltip text="Service" term_id="service" >}} is an abstraction
+that defines a logical set of Pods and a means to access them over a network.
+In a cluster that includes Windows nodes, you can use the following types of Service:
+-->
+## 负载均衡和 Service {#load-balancing-and-services}
+
+Kubernetes {{< glossary_tooltip text="Service" term_id="service" >}} 是一种抽象：定义了逻辑上的一组 Pod 和一种通过网络访问这些 Pod 的方式。
+在包含 Windows 节点的集群中，你可以使用以下类别的 Service：
+
+* `NodePort`
+* `ClusterIP`
+* `LoadBalancer`
+* `ExternalName`
+
+<!--
+Windows container networking differs in some important ways from Linux networking.
+The [Microsoft documentation for Windows Container Networking](https://docs.microsoft.com/en-us/virtualization/windowscontainers/container-networking/architecture)
+provides additional details and background.
+
+On Windows, you can use the following settings to configure Services and load
+balancing behavior:
+-->
+Windows 容器网络与 Linux 网络有着很重要的差异。
+更多细节和背景信息，参考 [Microsoft Windows 容器网络文档](https://docs.microsoft.com/zh-cn/virtualization/windowscontainers/container-networking/architecture)。
+
+在 Windows 上，你可以使用以下设置来配置 Service 和负载均衡行为：
+
+<!--
+{{< table caption="Windows Service Settings" >}}
+| Feature | Description | Minimum Supported Windows OS build | How to enable |
+| ------- | ----------- | -------------------------- | ------------- |
+| Session affinity | Ensures that connections from a particular client are passed to the same Pod each time. | Windows Server 2022 | Set `service.spec.sessionAffinity` to "ClientIP" |
+| Direct Server Return (DSR) | Load balancing mode where the IP address fixups and the LBNAT occurs at the container vSwitch port directly; service traffic arrives with the source IP set as the originating pod IP. | Windows Server 2019 | Set the following flags in kube-proxy: `--feature-gates="WinDSR=true" --enable-dsr=true` |
+| Preserve-Destination | Skips DNAT of service traffic, thereby preserving the virtual IP of the target service in packets reaching the backend Pod. Also disables node-node forwarding. | Windows Server, version 1903 | Set `"preserve-destination": "true"` in service annotations and enable DSR in kube-proxy. |
+| IPv4/IPv6 dual-stack networking | Native IPv4-to-IPv4 in parallel with IPv6-to-IPv6 communications to, from, and within a cluster | Windows Server 2019 | See [IPv4/IPv6 dual-stack](#ipv4ipv6-dual-stack) |
+| Client IP preservation | Ensures that source IP of incoming ingress traffic gets preserved. Also disables node-node forwarding. |  Windows Server 2019  | Set `service.spec.externalTrafficPolicy` to "Local" and enable DSR in kube-proxy |
+{{< /table >}}
+-->
+{{< table caption="Windows Service 设置" >}}
+| 功能特性 | 描述 | 支持的 Windows 操作系统最低版本 | 启用方式 |
+| ------- | ----------- | -------------------------- | ------------- |
+| 会话亲和性 | 确保每次都将来自特定客户端的连接传递到同一个 Pod。 | Windows Server 2022 | 将 `service.spec.sessionAffinity` 设为 “ClientIP” |
+| Direct Server Return (DSR) | 在负载均衡模式中 IP 地址修正和 LBNAT 直接发生在容器 vSwitch 端口；服务流量到达时源 IP 设置为原始 Pod IP。 | Windows Server 2019 | 在 kube-proxy 中设置以下标志：`--feature-gates="WinDSR=true" --enable-dsr=true` |
+| 保留目标（Preserve-Destination） | 跳过服务流量的 DNAT，从而在到达后端 Pod 的数据包中保留目标服务的虚拟 IP。也会禁用节点间的转发。 | Windows Server，version 1903 | 在服务注解中设置 `"preserve-destination": "true"` 并在 kube-proxy 中启用 DSR。 |
+| IPv4/IPv6 双栈网络 | 进出集群和集群内通信都支持原生的 IPv4 间与 IPv6 间流量 | Windows Server 2019 | 参考 [IPv4/IPv6 双栈](#ipv4ipv6-dual-stack)。 |
+| 客户端 IP 保留 | 确保入站流量的源 IP 得到保留。也会禁用节点间转发。 |  Windows Server 2019  | 将 `service.spec.externalTrafficPolicy` 设置为 “Local” 并在 kube-proxy 中启用 DSR。 |
+{{< /table >}}
+
+<!--
+There are known issue with NodePort Services on overlay networking, if the destination node is running Windows Server 2022.
+To avoid the issue entirely, you can configure the service with `externalTrafficPolicy: Local`.
+
+There are known issues with Pod to Pod connectivity on l2bridge network on Windows Server 2022 with KB5005619 or higher installed.
+To workaround the issue and restore Pod to Pod connectivity, you can disable the WinDSR feature in kube-proxy.
+
+These issues require OS fixes.
+Please follow https://github.com/microsoft/Windows-Containers/issues/204 for updates.
+-->
+{{< warning >}} 
+如果目的地节点在运行 Windows Server 2022，则上层网络的 NodePort Service 存在已知问题。
+要完全避免此问题，可以使用 `externalTrafficPolicy: Local` 配置服务。
+
+在安装了 KB5005619 的 Windows Server 2022 或更高版本上，采用 L2bridge 网络时
+Pod 间连接存在已知问题。
+要解决此问题并恢复 Pod 间连接，你可以在 kube-proxy 中禁用 WinDSR 功能。
+
+这些问题需要操作系统修复。
+有关更新，请参考 https://github.com/microsoft/Windows-Containers/issues/204。
+{{< /warning >}}
+
+<!--
+## Limitations
+
+The following networking functionality is _not_ supported on Windows nodes:
+
+* Host networking mode
+* Local NodePort access from the node itself (works for other nodes or external clients)
+* More than 64 backend pods (or unique destination addresses) for a single Service
+* IPv6 communication between Windows pods connected to overlay networks
+* Local Traffic Policy in non-DSR mode
+-->
+## 限制 {#limitations}
+
+Windows 节点**不支持**以下网络功能：
+
+* 主机网络模式
+* 从节点本身访问本地 NodePort（可以从其他节点或外部客户端进行访问）
+* 为同一 Service 提供 64 个以上后端 Pod（或不同目的地址）
+* 在连接到上层网络的 Windows Pod 之间使用 IPv6 通信
+* 非 DSR 模式中的本地流量策略（Local Traffic Policy）
+
+<!--
+* Outbound communication using the ICMP protocol via the `win-overlay`, `win-bridge`, or using the Azure-CNI plugin.\
+  Specifically, the Windows data plane ([VFP](https://www.microsoft.com/research/project/azure-virtual-filtering-platform/))
+  doesn't support ICMP packet transpositions, and this means:
+  * ICMP packets directed to destinations within the same network (such as pod to pod communication via ping) 
+    work as expected;
+  * TCP/UDP packets work as expected;
+  * ICMP packets directed to pass through a remote network (e.g. pod to external internet communication via ping) 
+    cannot be transposed and thus will not be routed back to their source;
+  * Since TCP/UDP packets can still be transposed, you can substitute `ping <destination>` with
+    `curl <destination>` when debugging connectivity with the outside world.
+-->
+* 通过 `win-overlay`、`win-bridge` 使用 ICMP 协议，或使用 Azure-CNI 插件进行出站通信。  
+  具体而言，Windows 数据平面（[VFP](https://www.microsoft.com/research/project/azure-virtual-filtering-platform/)）不支持 ICMP 数据包转换，这意味着：
+  * 指向同一网络内目的地址的 ICMP 数据包（例如 Pod 间的 ping 通信）可正常工作；
+  * TCP/UDP 数据包可正常工作；
+  * 通过远程网络指向其它地址的 ICMP 数据包（例如通过 ping 从 Pod 到外部公网的通信）无法被转换，
+    因此无法被路由回到这些数据包的源点；
+  * 由于 TCP/UDP 数据包仍可被转换，所以在调试与外界的连接时，
+    你可以将 `ping <destination>` 替换为 `curl <destination>`。
+
+<!--
+Other limitations:
+
+* Windows reference network plugins win-bridge and win-overlay do not implement
+  [CNI spec](https://github.com/containernetworking/cni/blob/master/SPEC.md) v0.4.0,
+  due to a missing `CHECK` implementation.
+* The Flannel VXLAN CNI plugin has the following limitations on Windows:
+  * Node-pod connectivity is only possible for local pods with Flannel v0.12.0 (or higher).
+  * Flannel is restricted to using VNI 4096 and UDP port 4789. See the official
+    [Flannel VXLAN](https://github.com/coreos/flannel/blob/master/Documentation/backends.md#vxlan)
+    backend docs for more details on these parameters.
+-->
+其他限制：
+
+* 由于缺少 `CHECK` 实现，Windows 参考网络插件 win-bridge 和 win-overlay 未实现
+[CNI 规约](https://github.com/containernetworking/cni/blob/master/SPEC.md) 的 v0.4.0 版本。
+* Flannel VXLAN CNI 插件在 Windows 上有以下限制：
+  * 使用 Flannel v0.12.0（或更高版本）时，节点到 Pod 的连接仅适用于本地 Pod。
+  * Flannel 仅限于使用 VNI 4096 和 UDP 端口 4789。
+  有关这些参数的更多详细信息，请参考官方的 [Flannel VXLAN](https://github.com/coreos/flannel/blob/master/Documentation/backends.md#vxlan) 后端文档。
diff --git a/content/zh/docs/concepts/storage/_index.md b/content/zh-cn/docs/concepts/storage/_index.md
similarity index 100%
rename from content/zh/docs/concepts/storage/_index.md
rename to content/zh-cn/docs/concepts/storage/_index.md
diff --git a/content/zh/docs/concepts/storage/dynamic-provisioning.md b/content/zh-cn/docs/concepts/storage/dynamic-provisioning.md
similarity index 73%
rename from content/zh/docs/concepts/storage/dynamic-provisioning.md
rename to content/zh-cn/docs/concepts/storage/dynamic-provisioning.md
index 14b72ac157..01fd7ed29c 100644
--- a/content/zh/docs/concepts/storage/dynamic-provisioning.md
+++ b/content/zh-cn/docs/concepts/storage/dynamic-provisioning.md
@@ -1,5 +1,5 @@
 ---
-title: 动态卷供应
+title: 动态卷制备
 content_type: concept
 weight: 40
 ---
@@ -20,11 +20,11 @@ to represent them in Kubernetes. The dynamic provisioning feature eliminates
 the need for cluster administrators to pre-provision storage. Instead, it
 automatically provisions storage when it is requested by users.
 -->
-动态卷供应允许按需创建存储卷。
-如果没有动态供应，集群管理员必须手动地联系他们的云或存储提供商来创建新的存储卷，
+动态卷制备允许按需创建存储卷。
+如果没有动态制备，集群管理员必须手动地联系他们的云或存储提供商来创建新的存储卷，
 然后在 Kubernetes 集群创建
-[`PersistentVolume` 对象](/zh/docs/concepts/storage/persistent-volumes/)来表示这些卷。
-动态供应功能消除了集群管理员预先配置存储的需要。 相反，它在用户请求时自动供应存储。
+[`PersistentVolume` 对象](/zh-cn/docs/concepts/storage/persistent-volumes/)来表示这些卷。
+动态制备功能消除了集群管理员预先配置存储的需要。相反，它在用户请求时自动制备存储。
 
 <!-- body -->
 
@@ -40,9 +40,9 @@ from the API group `storage.k8s.io`. A cluster administrator can define as many
 *provisioner*) that provisions a volume and the set of parameters to pass to
 that provisioner when provisioning.
 -->
-动态卷供应的实现基于 `storage.k8s.io` API 组中的 `StorageClass` API 对象。
-集群管理员可以根据需要定义多个 `StorageClass` 对象，每个对象指定一个*卷插件*（又名 *provisioner*），
-卷插件向卷供应商提供在创建卷时需要的数据卷信息及相关参数。
+动态卷制备的实现基于 `storage.k8s.io` API 组中的 `StorageClass` API 对象。
+集群管理员可以根据需要定义多个 `StorageClass` 对象，每个对象指定一个**卷插件**（又名 **provisioner**），
+卷插件向卷制备商提供在创建卷时需要的数据卷信息及相关参数。
 
 <!--
 A cluster administrator can define and expose multiple flavors of storage (from
@@ -52,29 +52,33 @@ about the complexity and nuances of how storage is provisioned, but still
 have the ability to select from multiple storage options.
 -->
 集群管理员可以在集群中定义和公开多种存储（来自相同或不同的存储系统），每种都具有自定义参数集。
-该设计也确保终端用户不必担心存储供应的复杂性和细微差别，但仍然能够从多个存储选项中进行选择。
+该设计也确保终端用户不必担心存储制备的复杂性和细微差别，但仍然能够从多个存储选项中进行选择。
 
 <!--
 More information on storage classes can be found
 [here](/docs/concepts/storage/storage-classes/).
 -->
-点击[这里](/zh/docs/concepts/storage/storage-classes/)查阅有关存储类的更多信息。
+点击[这里](/zh-cn/docs/concepts/storage/storage-classes/)查阅有关存储类的更多信息。
 
 <!--
 ## Enabling Dynamic Provisioning
 -->
-## 启用动态卷供应  {#enabling-dynamic-provisioning}
+## 启用动态卷制备  {#enabling-dynamic-provisioning}
 
 <!--
 To enable dynamic provisioning, a cluster administrator needs to pre-create
 one or more StorageClass objects for users.
 StorageClass objects define which provisioner should be used and what parameters
 should be passed to that provisioner when dynamic provisioning is invoked.
+The name of a StorageClass object must be a valid
+[DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
+
 The following manifest creates a storage class "slow" which provisions standard
 disk-like persistent disks.
 -->
-要启用动态供应功能，集群管理员需要为用户预先创建一个或多个 `StorageClass` 对象。
-`StorageClass` 对象定义当动态供应被调用时，哪一个驱动将被使用和哪些参数将被传递给驱动。
+要启用动态制备功能，集群管理员需要为用户预先创建一个或多个 `StorageClass` 对象。
+`StorageClass` 对象定义当动态制备被调用时，哪一个驱动将被使用和哪些参数将被传递给驱动。
+StorageClass 对象的名字必须是一个合法的 [DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
 以下清单创建了一个 `StorageClass` 存储类 "slow"，它提供类似标准磁盘的永久磁盘。
 
 ```yaml
@@ -106,7 +110,7 @@ parameters:
 <!--
 ## Using Dynamic Provisioning
 -->
-## 使用动态卷供应
+## 使用动态卷制备 {#using-dynamic-provisioning}
 
 <!--
 Users request dynamically provisioned storage by including a storage class in
@@ -117,7 +121,7 @@ is deprecated since v1.9. Users now can and should instead use the
 this field must match the name of a `StorageClass` configured by the
 administrator (see [below](#enabling-dynamic-provisioning)).
 -->
-用户通过在 `PersistentVolumeClaim` 中包含存储类来请求动态供应的存储。
+用户通过在 `PersistentVolumeClaim` 中包含存储类来请求动态制备的存储。
 在 Kubernetes v1.9 之前，这通过 `volume.beta.kubernetes.io/storage-class` 注解实现。然而，这个注解自 v1.6 起就不被推荐使用了。
 用户现在能够而且应该使用 `PersistentVolumeClaim` 对象的 `storageClassName` 字段。
 这个字段的值必须能够匹配到集群管理员配置的 `StorageClass` 名称（见[下面](#enabling-dynamic-provisioning)）。
@@ -146,7 +150,7 @@ spec:
 This claim results in an SSD-like Persistent Disk being automatically
 provisioned. When the claim is deleted, the volume is destroyed.
 -->
-该声明会自动供应一块类似 SSD 的永久磁盘。
+该声明会自动制备一块类似 SSD 的永久磁盘。
 在删除该声明后，这个卷也会被销毁。
 
 <!--
@@ -159,7 +163,7 @@ Dynamic provisioning can be enabled on a cluster such that all claims are
 dynamically provisioned if no storage class is specified. A cluster administrator
 can enable this behavior by:
 -->
-可以在群集上启用动态卷供应，以便在未指定存储类的情况下动态设置所有声明。
+可以在集群上启用动态卷制备，以便在未指定存储类的情况下动态设置所有声明。
 集群管理员可以通过以下方式启用此行为：
 
 <!--
@@ -167,18 +171,20 @@ can enable this behavior by:
 - Making sure that the [`DefaultStorageClass` admission controller](/docs/reference/access-authn-authz/admission-controllers/#defaultstorageclass)
   is enabled on the API server.
 -->
-- 标记一个 `StorageClass` 为 *默认*；
-- 确保 [`DefaultStorageClass` 准入控制器](/zh/docs/reference/access-authn-authz/admission-controllers/#defaultstorageclass)在 API 服务端被启用。
+- 标记一个 `StorageClass` 为 **默认**；
+- 确保 [`DefaultStorageClass` 准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#defaultstorageclass)在 API 服务端被启用。
 
 <!--
 An administrator can mark a specific `StorageClass` as default by adding the
-`storageclass.kubernetes.io/is-default-class` annotation to it.
+`storageclass.kubernetes.io/is-default-class` [annotation](/docs/reference/labels-annotations-taints/#storageclass-kubernetes-io-is-default-class) to it.
 When a default `StorageClass` exists in a cluster and a user creates a
 `PersistentVolumeClaim` with `storageClassName` unspecified, the
 `DefaultStorageClass` admission controller automatically adds the
 `storageClassName` field pointing to the default storage class.
 -->
-管理员可以通过向其添加 `storageclass.kubernetes.io/is-default-class` 注解来将特定的 `StorageClass` 标记为默认。
+管理员可以通过向其添加 `storageclass.kubernetes.io/is-default-class`
+[annotation](/zh-cn/docs/reference/labels-annotations-taints/#storageclass-kubernetes-io-is-default-class)
+来将特定的 `StorageClass` 标记为默认。
 当集群中存在默认的 `StorageClass` 并且用户创建了一个未指定 `storageClassName` 的 `PersistentVolumeClaim` 时，
 `DefaultStorageClass` 准入控制器会自动向其中添加指向默认存储类的 `storageClassName` 字段。
 
@@ -187,13 +193,13 @@ Note that there can be at most one *default* storage class on a cluster, or
 a `PersistentVolumeClaim` without `storageClassName` explicitly specified cannot
 be created.
 -->
-请注意，群集上最多只能有一个 *默认* 存储类，否则无法创建没有明确指定
+请注意，集群上最多只能有一个 **默认** 存储类，否则无法创建没有明确指定
 `storageClassName` 的 `PersistentVolumeClaim`。
 
 <!--
 ## Topology Awareness
 -->
-## 拓扑感知
+## 拓扑感知 {#topology-awareness}
 
 <!--
 In [Multi-Zone](/docs/setup/multiple-zones) clusters, Pods can be spread across
@@ -201,7 +207,7 @@ Zones in a Region. Single-Zone storage backends should be provisioned in the Zon
 Pods are scheduled. This can be accomplished by setting the [Volume Binding
 Mode](/docs/concepts/storage/storage-classes/#volume-binding-mode).
 -->
-在[多区域](/zh/docs/setup/best-practices/multiple-zones/)集群中，Pod 可以被分散到多个区域。
-单区域存储后端应该被供应到 Pod 被调度到的区域。
-这可以通过设置[卷绑定模式](/zh/docs/concepts/storage/storage-classes/#volume-binding-mode)来实现。
+在[多可用区](/zh-cn/docs/setup/best-practices/multiple-zones/)集群中，Pod 可以被分散到某个区域的多个可用区。
+单可用区存储后端应该被制备到 Pod 被调度到的可用区。
+这可以通过设置[卷绑定模式](/zh-cn/docs/concepts/storage/storage-classes/#volume-binding-mode)来实现。
 
diff --git a/content/zh/docs/concepts/storage/ephemeral-volumes.md b/content/zh-cn/docs/concepts/storage/ephemeral-volumes.md
similarity index 81%
rename from content/zh/docs/concepts/storage/ephemeral-volumes.md
rename to content/zh-cn/docs/concepts/storage/ephemeral-volumes.md
index 7dee7ecab5..2e7c7980df 100644
--- a/content/zh/docs/concepts/storage/ephemeral-volumes.md
+++ b/content/zh-cn/docs/concepts/storage/ephemeral-volumes.md
@@ -1,7 +1,7 @@
 ---
 title: 临时卷
 content_type: concept
-weight: 50
+weight: 30
 ---
 <!--
 reviewers:
@@ -12,7 +12,7 @@ reviewers:
 - pohly
 title: Ephemeral Volumes
 content_type: concept
-weight: 50
+weight: 30
 -->
 
 <!-- overview -->
@@ -23,7 +23,7 @@ with [volumes](/docs/concepts/storage/volumes/) is suggested, in
 particular PersistentVolumeClaim and PersistentVolume.
 -->
 本文档描述 Kubernetes 中的 _临时卷（Ephemeral Volume）_。
-建议先了解[卷](/zh/docs/concepts/storage/volumes/)，特别是 PersistentVolumeClaim 和 PersistentVolume。
+建议先了解[卷](/zh-cn/docs/concepts/storage/volumes/)，特别是 PersistentVolumeClaim 和 PersistentVolume。
 
 <!-- body -->
 <!--
@@ -33,7 +33,7 @@ services are often limited by memory size and can move infrequently
 used data into storage that is slower than memory with little impact
 on overall performance.
 -->
-有些应用程序需要额外的存储，但并不关心数据在重启后仍然可用，既是否被持久地保存。
+有些应用程序需要额外的存储，但并不关心数据在重启后仍然可用。
 例如，缓存服务经常受限于内存大小，将不常用的数据转移到比内存慢、但对总体性能的影响很小的存储中。
 
 <!--
@@ -55,7 +55,7 @@ _临时卷_ 就是为此类用例设计的。因为卷会遵从 Pod 的生命周
 Ephemeral volumes are specified _inline_ in the Pod spec, which
 simplifies application deployment and management.
 -->
-临时卷在 Pod 规范中以 _内联_ 方式定义，这简化了应用程序的部署和管理。
+临时卷在 Pod 规约中以 _内联_ 方式定义，这简化了应用程序的部署和管理。
 
 <!--
 ### Types of ephemeral volumes
@@ -80,13 +80,13 @@ different purposes:
   can be provided by all storage drivers that also support persistent volumes
 -->
 Kubernetes 为了不同的目的，支持几种不同类型的临时卷：
-- [emptyDir](/zh/docs/concepts/storage/volumes/#emptydir)：
+- [emptyDir](/zh-cn/docs/concepts/storage/volumes/#emptydir)：
   Pod 启动时为空，存储空间来自本地的 kubelet 根目录（通常是根磁盘）或内存
-- [configMap](/zh/docs/concepts/storage/volumes/#configmap)、
-  [downwardAPI](/zh/docs/concepts/storage/volumes/#downwardapi)、
-  [secret](/zh/docs/concepts/storage/volumes/#secret)：
+- [configMap](/zh-cn/docs/concepts/storage/volumes/#configmap)、
+  [downwardAPI](/zh-cn/docs/concepts/storage/volumes/#downwardapi)、
+  [secret](/zh-cn/docs/concepts/storage/volumes/#secret)：
   将不同类型的 Kubernetes 数据注入到 Pod 中
-- [CSI 临时卷](/zh/docs/concepts/storage/volumes/#csi-ephemeral-volumes)：
+- [CSI 临时卷](/zh-cn/docs/concepts/storage/volumes/#csi-ephemeral-volumes)：
   类似于前面的卷类型，但由专门[支持此特性](https://kubernetes-csi.github.io/docs/drivers.html)
   的指定
   [CSI 驱动程序](https://github.com/container-storage-interface/spec/blob/master/spec.md)提供
@@ -103,7 +103,7 @@ CSI ephemeral volumes *must* be provided by third-party CSI storage
 drivers.
 -->
 `emptyDir`、`configMap`、`downwardAPI`、`secret` 是作为
-[本地临时存储](/zh/docs/concepts/configuration/manage-resources-containers/#local-ephemeral-storage)
+[本地临时存储](/zh-cn/docs/concepts/configuration/manage-resources-containers/#local-ephemeral-storage)
 提供的。它们由各个节点上的 kubelet 管理。
 
 CSI 临时卷 *必须* 由第三方 CSI 存储驱动程序提供。
@@ -131,6 +131,7 @@ is managed by kubelet, or injecting different data.
 ### CSI ephemeral volumes
 -->
 ### CSI 临时卷 {#csi-ephemeral-volumes}
+
 {{< feature-state for_k8s_version="v1.16" state="beta" >}}
 
 <!--
@@ -142,12 +143,12 @@ The Kubernetes CSI [Drivers list](https://kubernetes-csi.github.io/docs/drivers.
 shows which drivers support ephemeral volumes.
 -->
 
-该特性需要启用参数 `CSIInlineVolume` 
-[特性门控（feature gate）](/zh/docs/reference/command-line-tools-reference/feature-gates/)。
+该特性需要启用参数 `CSIInlineVolume`
+[特性门控（feature gate）](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)。
 该参数从 Kubernetes 1.16 开始默认启用。
 
 {{< note >}}
-只有一部分 CSI 驱动程序支持 CSI 临时卷。Kubernetes CSI 
+只有一部分 CSI 驱动程序支持 CSI 临时卷。Kubernetes CSI
 [驱动程序列表](https://kubernetes-csi.github.io/docs/drivers.html)
 显示了支持临时卷的驱动程序。
 {{< /note >}}
@@ -170,7 +171,7 @@ Here's an example manifest for a Pod that uses CSI ephemeral storage:
 从概念上讲，CSI 临时卷类似于 `configMap`、`downwardAPI` 和 `secret` 类型的卷：
 其存储在每个节点本地管理，并在将 Pod 调度到节点后与其他本地资源一起创建。
 在这个阶段，Kubernetes 没有重新调度 Pods 的概念。卷创建不太可能失败，否则 Pod 启动将会受阻。
-特别是，这些卷 *不* 支持[感知存储容量的 Pod 调度](/zh/docs/concepts/storage/storage-capacity/)。
+特别是，这些卷 **不** 支持[感知存储容量的 Pod 调度](/zh-cn/docs/concepts/storage/storage-capacity/)。
 它们目前也没包括在 Pod 的存储资源使用限制中，因为 kubelet 只能对它自己管理的存储强制执行。
 
 下面是使用 CSI 临时存储的 Pod 的示例清单：
@@ -183,7 +184,7 @@ metadata:
 spec:
   containers:
     - name: my-frontend
-      image: busybox
+      image: busybox:1.28
       volumeMounts:
       - mountPath: "/data"
         name: my-csi-inline-vol
@@ -202,32 +203,51 @@ driver. These attributes are specific to each driver and not
 standardized. See the documentation of each CSI driver for further
 instructions.
 
-As a cluster administrator, you can use a [PodSecurityPolicy](/docs/concepts/policy/pod-security-policy/) to control which CSI drivers can be used in a Pod, specified with the
-[`allowedCSIDrivers` field](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritypolicyspec-v1beta1-policy).
 -->
+
 `volumeAttributes` 决定驱动程序准备什么样的卷。这些属性特定于每个驱动程序，且没有实现标准化。
 有关进一步的说明，请参阅每个 CSI 驱动程序的文档。
 
-作为一个集群管理员，你可以使用 
-[PodSecurityPolicy](/zh/docs/concepts/policy/pod-security-policy/) 
+<!--
+### CSI driver restrictions
+
+CSI ephemeral volumes allow users to provide `volumeAttributes`
+directly to the CSI driver as part of the Pod spec. A CSI driver
+allowing `volumeAttributes` that are typically restricted to
+administrators is NOT suitable for use in an inline ephemeral volume.
+For example, parameters that are normally defined in the StorageClass
+should not be exposed to users through the use of inline ephemeral volumes.
+-->
+
+### CSI 驱动程序限制 {#csi-driver-restrictions}
+
+CSI 临时卷允许用户直接向 CSI 驱动程序提供 `volumeAttributes`，它会作为 Pod 规约的一部分。
+允许 `volumeAttributes` 的 CSI 驱动程序通常仅限于管理员使用，不适合在内联临时卷中使用。
+例如，通常在 StorageClass 中定义的参数不应通过使用内联临时卷向用户公开。
+
+作为一个集群管理员，你可以使用
+[PodSecurityPolicy](/zh-cn/docs/concepts/security/pod-security-policy/)
 来控制在 Pod 中可以使用哪些 CSI 驱动程序，
 具体则是通过 [`allowedCSIDrivers` 字段](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritypolicyspec-v1beta1-policy)
 指定。
 
+<!--
+Cluster administrators who need to restrict the CSI drivers that are
+allowed to be used as inline volumes within a Pod spec may do so by:
+- Removing `Ephemeral` from `volumeLifecycleModes` in the CSIDriver spec, which prevents the driver from being used as an inline ephemeral volume.
+- Using an [admission webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/) to restrict how this driver is used.
+-->
+如果集群管理员需要限制 CSI 驱动程序在 Pod 规约中被作为内联卷使用，可以这样做：
+- 从 CSIDriver 规约的 `volumeLifecycleModes` 中删除 `Ephemeral`，这可以防止驱动程序被用作内联临时卷。
+- 使用[准入 Webhook](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/)
+  来限制如何使用此驱动程序。
+
 <!--
 ### Generic ephemeral volumes
 -->
 ### 通用临时卷 {#generic-ephemeral-volumes}
 
-{{< feature-state for_k8s_version="v1.21" state="beta" >}}
-
-<!--
-This feature requires the `GenericEphemeralVolume` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) to be
-enabled. Because this is a beta feature, it is enabled by default.
--->
-这个特性需要启用 `GenericEphemeralVolume` 
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)。
-因为这是一个 beta 特性，默认情况下启用。
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
 
 <!--
 Generic ephemeral volumes are similar to `emptyDir` volumes in the
@@ -241,7 +261,7 @@ features:
   parameters.
 - Typical operations on volumes are supported assuming that the driver
   supports them, including
-  ([snapshotting](/docs/concepts/storage/volume-snapshots/),
+  [snapshotting](/docs/concepts/storage/volume-snapshots/),
   [cloning](/docs/concepts/storage/volume-pvc-datasource/),
   [resizing](/docs/concepts/storage/persistent-volumes/#expanding-persistent-volumes-claims),
   and [storage capacity tracking](/docs/concepts/storage/storage-capacity/).
@@ -252,13 +272,13 @@ Example:
 在最初制备完毕时一般为空。不过通用临时卷也有一些额外的功能特性：
 
 - 存储可以是本地的，也可以是网络连接的。
-- 卷可以有固定的大小，pod不能超量使用。
+- 卷可以有固定的大小，Pod 不能超量使用。
 - 卷可能有一些初始数据，这取决于驱动程序和参数。
 - 当驱动程序支持，卷上的典型操作将被支持，包括
-  （[快照](/zh/docs/concepts/storage/volume-snapshots/)、
-  [克隆](/zh/docs/concepts/storage/volume-pvc-datasource/)、
-  [调整大小](/zh/docs/concepts/storage/persistent-volumes/#expanding-persistent-volumes-claims)和
-  [存储容量跟踪](/zh/docs/concepts/storage/storage-capacity/)）。
+  （[快照](/zh-cn/docs/concepts/storage/volume-snapshots/)、
+  [克隆](/zh-cn/docs/concepts/storage/volume-pvc-datasource/)、
+  [调整大小](/zh-cn/docs/concepts/storage/persistent-volumes/#expanding-persistent-volumes-claims)和
+  [存储容量跟踪](/zh-cn/docs/concepts/storage/storage-capacity/)）。
 
 示例：
 
@@ -270,7 +290,7 @@ metadata:
 spec:
   containers:
     - name: my-frontend
-      image: busybox
+      image: busybox:1.28
       volumeMounts:
       - mountPath: "/scratch"
         name: scratch-volume
@@ -320,8 +340,8 @@ because then the scheduler is free to choose a suitable node for
 the Pod. With immediate binding, the scheduler is forced to select a node that has
 access to the volume once it is available.
 -->
-如上设置将触发卷的绑定与/或准备操作，相应动作或者在 
-{{< glossary_tooltip text="StorageClass" term_id="storage-class" >}} 
+如上设置将触发卷的绑定与/或准备操作，相应动作或者在
+{{< glossary_tooltip text="StorageClass" term_id="storage-class" >}}
 使用即时卷绑定时立即执行，
 或者当 Pod 被暂时性调度到某节点时执行 (`WaitForFirstConsumer` 卷绑定模式)。
 对于常见的临时卷，建议采用后者，这样调度器就可以自由地为 Pod 选择合适的节点。
@@ -334,10 +354,10 @@ that provide that ephemeral storage. When the Pod is deleted,
 the Kubernetes garbage collector deletes the PVC, which then usually
 triggers deletion of the volume because the default reclaim policy of
 storage classes is to delete volumes. You can create quasi-ephemeral local storage
-using a StorageClass with a reclaim policy of `retain`: the storage outlives the Pod, 
+using a StorageClass with a reclaim policy of `retain`: the storage outlives the Pod,
 and in this case you need to ensure that volume clean up happens separately.
 -->
-就[资源所有权](/zh/docs/concepts/workloads/controllers/garbage-collection/#owners-and-dependents)而言，
+就[资源所有权](/zh-cn/docs/concepts/workloads/controllers/garbage-collection/#owners-and-dependents)而言，
 拥有通用临时存储的 Pod 是提供临时存储 (ephemeral storage) 的 PersistentVolumeClaim 的所有者。
 当 Pod 被删除时，Kubernetes 垃圾收集器会删除 PVC，
 然后 PVC 通常会触发卷的删除，因为存储类的默认回收策略是删除卷。
@@ -410,37 +430,21 @@ same namespace, so that these conflicts can't occur.
 Enabling the GenericEphemeralVolume feature allows users to create
 PVCs indirectly if they can create Pods, even if they do not have
 permission to create PVCs directly. Cluster administrators must be
-aware of this. If this does not fit their security model, they have
-two choices:
+aware of this. If this does not fit their security model, they should
+use an [admission webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/) that rejects objects like Pods that have a generic ephemeral volume.
 -->
 启用 GenericEphemeralVolume 特性会导致那些没有 PVCs 创建权限的用户，
 在创建 Pods 时，被允许间接的创建 PVCs。
 集群管理员必须意识到这一点。
-如果这不符合他们的安全模型，他们有如下选择：
-
-<!--
-- Explicitly disable the feature through the feature gate.
-- Use a [Pod Security
-  Policy](/docs/concepts/policy/pod-security-policy/) where the
-  `volumes` list does not contain the `ephemeral` volume type
-  (deprecated in Kubernetes 1.21).
-- Use an [admission webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/)
-  which rejects objects like Pods that have a generic ephemeral
-  volume.
--->
-- 通过特性门控显式禁用该特性。
-- 当 `volumes` 列表不包含 `ephemeral` 卷类型时，使用
-  [Pod 安全策略](/zh/docs/concepts/policy/pod-security-policy/)。
-  （这一方式在 Kubernetes 1.21 版本已经弃用）
-- 使用一个[准入 Webhook](/zh/docs/reference/access-authn-authz/extensible-admission-controllers/)
-  拒绝包含通用临时卷的 Pods。
+如果这不符合他们的安全模型，他们应该使用一个[准入 Webhook](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/)
+拒绝包含通用临时卷的 Pods。
 
 <!--
 The normal [namespace quota for PVCs](/docs/concepts/policy/resource-quotas/#storage-resource-quota) still applies, so
 even if users are allowed to use this new mechanism, they cannot use
 it to circumvent other policies.
 -->
-[为 PVC 卷所设置的逐名字空间的配额](/zh/docs/concepts/policy/resource-quotas/#storage-resource-quota)
+[为 PVC 卷所设置的逐名字空间的配额](/zh-cn/docs/concepts/policy/resource-quotas/#storage-resource-quota)
 仍然有效，因此即使允许用户使用这种新机制，他们也不能使用它来规避其他策略。
 
 ## {{% heading "whatsnext" %}}
@@ -452,7 +456,7 @@ See [local ephemeral storage](/docs/concepts/configuration/manage-resources-cont
 -->
 ### kubelet 管理的临时卷 {#ephemeral-volumes-managed-by-kubelet}
 
-参阅[本地临时存储](/zh/docs/concepts/configuration/manage-resources-containers/#local-ephemeral-storage)。
+参阅[本地临时存储](/zh-cn/docs/concepts/configuration/manage-resources-containers/#local-ephemeral-storage)。
 
 <!--
 ### CSI ephemeral volumes
@@ -473,11 +477,8 @@ See [local ephemeral storage](/docs/concepts/configuration/manage-resources-cont
 
 - For more information on the design, see the
 [Generic ephemeral inline volumes KEP](https://github.com/kubernetes/enhancements/blob/master/keps/sig-storage/1698-generic-ephemeral-volumes/README.md).
-- For more information on further development of this feature, see the [enhancement tracking issue #1698](https://github.com/kubernetes/enhancements/issues/1698).
 -->
 ### 通用临时卷 {#generic-ephemeral-volumes}
 
 - 有关设计的更多信息，参阅
   [Generic ephemeral inline volumes KEP](https://github.com/kubernetes/enhancements/blob/master/keps/sig-storage/1698-generic-ephemeral-volumes/README.md)。
-- 关于本特性下一步开发的更多信息，参阅
-  [enhancement tracking issue #1698](https://github.com/kubernetes/enhancements/issues/1698)。
diff --git a/content/zh/docs/concepts/storage/persistent-volumes.md b/content/zh-cn/docs/concepts/storage/persistent-volumes.md
similarity index 59%
rename from content/zh/docs/concepts/storage/persistent-volumes.md
rename to content/zh-cn/docs/concepts/storage/persistent-volumes.md
index 607a899f2b..4bca21f6c7 100644
--- a/content/zh/docs/concepts/storage/persistent-volumes.md
+++ b/content/zh-cn/docs/concepts/storage/persistent-volumes.md
@@ -7,7 +7,6 @@ feature:
     或 <a href="https://aws.amazon.com/products/storage/">AWS</a>
     之类公有云提供商所提供的存储或者诸如 NFS、iSCSI、Gluster、Ceph、Cinder
     或 Flocker 这类网络存储系统。
-
 content_type: concept
 weight: 20
 ---
@@ -23,7 +22,6 @@ feature:
   title: Storage orchestration
   description: >
     Automatically mount the storage system of your choice, whether from local storage, a public cloud provider such as <a href="https://cloud.google.com/storage/">GCP</a> or <a href="https://aws.amazon.com/products/storage/">AWS</a>, or a network storage system such as NFS, iSCSI, Gluster, Ceph, Cinder, or Flocker.
-
 content_type: concept
 weight: 20
 -->
@@ -31,10 +29,10 @@ weight: 20
 <!-- overview -->
 
 <!--
-This document describes the current state of _persistent volumes_ in Kubernetes. Familiarity with [volumes](/docs/concepts/storage/volumes/) is suggested.
+This document describes _persistent volumes_ in Kubernetes. Familiarity with [volumes](/docs/concepts/storage/volumes/) is suggested.
 -->
-本文描述 Kubernetes 中 _持久卷（Persistent Volume）_ 的当前状态。
-建议先熟悉[卷（Volume）](/zh/docs/concepts/storage/volumes/)的概念。
+本文描述 Kubernetes 中的**持久卷（Persistent Volume）** 。
+建议先熟悉[卷（Volume）](/zh-cn/docs/concepts/storage/volumes/)的概念。
 
 <!-- body -->
 
@@ -45,24 +43,25 @@ Managing storage is a distinct problem from managing compute instances. The Pers
 -->
 ## 介绍  {#introduction}
 
-存储的管理是一个与计算实例的管理完全不同的问题。PersistentVolume 子系统为用户
-和管理员提供了一组 API，将存储如何供应的细节从其如何被使用中抽象出来。
+存储的管理是一个与计算实例的管理完全不同的问题。
+PersistentVolume 子系统为用户和管理员提供了一组 API，
+将存储如何制备的细节从其如何被使用中抽象出来。
 为了实现这点，我们引入了两个新的 API 资源：PersistentVolume 和
 PersistentVolumeClaim。
 
 <!--
 A _PersistentVolume_ (PV) is a piece of storage in the cluster that has been provisioned by an administrator or dynamically provisioned using [Storage Classes](/docs/concepts/storage/storage-classes/). It is a resource in the cluster just like a node is a cluster resource. PVs are volume plugins like Volumes, but have a lifecycle independent of any individual Pod that uses the PV. This API object captures the details of the implementation of the storage, be that NFS, iSCSI, or a cloud-provider-specific storage system.
 -->
-持久卷（PersistentVolume，PV）是集群中的一块存储，可以由管理员事先供应，或者
-使用[存储类（Storage Class）](/zh/docs/concepts/storage/storage-classes/)来动态供应。
-持久卷是集群资源，就像节点也是集群资源一样。PV 持久卷和普通的 Volume 一样，也是使用
-卷插件来实现的，只是它们拥有独立于任何使用 PV 的 Pod 的生命周期。
+**持久卷（PersistentVolume，PV）** 是集群中的一块存储，可以由管理员事先制备，
+或者使用[存储类（Storage Class）](/zh-cn/docs/concepts/storage/storage-classes/)来动态制备。
+持久卷是集群资源，就像节点也是集群资源一样。PV 持久卷和普通的 Volume 一样，
+也是使用卷插件来实现的，只是它们拥有独立于任何使用 PV 的 Pod 的生命周期。
 此 API 对象中记述了存储的实现细节，无论其背后是 NFS、iSCSI 还是特定于云平台的存储系统。
 
 <!--
 A _PersistentVolumeClaim_ (PVC) is a request for storage by a user. It is similar to a Pod. Pods consume node resources and PVCs consume PV resources. Pods can request specific levels of resources (CPU and Memory).  Claims can request specific size and access modes (e.g., they can be mounted ReadWriteOnce, ReadOnlyMany or ReadWriteMany, see [AccessModes](#access-modes)).
 -->
-持久卷申领（PersistentVolumeClaim，PVC）表达的是用户对存储的请求。概念上与 Pod 类似。
+**持久卷申领（PersistentVolumeClaim，PVC）** 表达的是用户对存储的请求。概念上与 Pod 类似。
 Pod 会耗用节点资源，而 PVC 申领会耗用 PV 资源。Pod 可以请求特定数量的资源（CPU
 和内存）；同样 PVC 申领也可以请求特定的大小和访问模式
 （例如，可以要求 PV 卷能够以 ReadWriteOnce、ReadOnlyMany 或 ReadWriteMany
@@ -73,13 +72,13 @@ While PersistentVolumeClaims allow a user to consume abstract storage resources,
 
 See the [detailed walkthrough with working examples](/docs/tasks/configure-pod-container/configure-persistent-volume-storage/).
 -->
-尽管 PersistentVolumeClaim 允许用户消耗抽象的存储资源，常见的情况是针对不同的
-问题用户需要的是具有不同属性（如，性能）的 PersistentVolume 卷。
-集群管理员需要能够提供不同性质的 PersistentVolume，并且这些 PV 卷之间的差别不
-仅限于卷大小和访问模式，同时又不能将卷是如何实现的这些细节暴露给用户。
-为了满足这类需求，就有了 _存储类（StorageClass）_ 资源。
+尽管 PersistentVolumeClaim 允许用户消耗抽象的存储资源，
+常见的情况是针对不同的问题用户需要的是具有不同属性（如，性能）的 PersistentVolume 卷。
+集群管理员需要能够提供不同性质的 PersistentVolume，
+并且这些 PV 卷之间的差别不仅限于卷大小和访问模式，同时又不能将卷是如何实现的这些细节暴露给用户。
+为了满足这类需求，就有了 **存储类（StorageClass）** 资源。
 
-参见[基于运行示例的详细演练](/zh/docs/tasks/configure-pod-container/configure-persistent-volume-storage/)。
+参见[基于运行示例的详细演练](/zh-cn/docs/tasks/configure-pod-container/configure-persistent-volume-storage/)。
 
 <!--
 ## Lifecycle of a volume and claim
@@ -95,19 +94,19 @@ There are two ways PVs may be provisioned: statically or dynamically.
 PV 卷是集群中的资源。PVC 申领是对这些资源的请求，也被用来执行对资源的申领检查。
 PV 卷和 PVC 申领之间的互动遵循如下生命周期：
 
-### 供应   {#provisioning}
+### 制备   {#provisioning}
 
-PV 卷的供应有两种方式：静态供应或动态供应。
+PV 卷的制备有两种方式：静态制备或动态制备。
 
 <!--
 #### Static
 
 A cluster administrator creates a number of PVs. They carry the details of the real storage, which is available for use by cluster users. They exist in the Kubernetes API and are available for consumption.
 -->
-#### 静态供应  {#static}
+#### 静态制备  {#static}
 
-集群管理员创建若干 PV 卷。这些卷对象带有真实存储的细节信息，并且对集群
-用户可用（可见）。PV 卷对象存在于 Kubernetes  API 中，可供用户消费（使用）。
+集群管理员创建若干 PV 卷。这些卷对象带有真实存储的细节信息，
+并且对集群用户可用（可见）。PV 卷对象存在于 Kubernetes  API 中，可供用户消费（使用）。
 
 <!--
 #### Dynamic
@@ -120,59 +119,57 @@ the administrator must have created and configured that class for dynamic
 provisioning to occur. Claims that request the class `""` effectively disable
 dynamic provisioning for themselves.
 -->
-#### 动态供应     {#dynamic}
+#### 动态制备     {#dynamic}
 
 如果管理员所创建的所有静态 PV 卷都无法与用户的 PersistentVolumeClaim 匹配，
-集群可以尝试为该 PVC 申领动态供应一个存储卷。
-这一供应操作是基于 StorageClass 来实现的：PVC 申领必须请求某个
-[存储类](/zh/docs/concepts/storage/storage-classes/)，同时集群管理员必须
-已经创建并配置了该类，这样动态供应卷的动作才会发生。
-如果 PVC 申领指定存储类为 `""`，则相当于为自身禁止使用动态供应的卷。
+集群可以尝试为该 PVC 申领动态制备一个存储卷。
+这一制备操作是基于 StorageClass 来实现的：PVC 申领必须请求某个
+[存储类](/zh-cn/docs/concepts/storage/storage-classes/)，
+同时集群管理员必须已经创建并配置了该类，这样动态制备卷的动作才会发生。
+如果 PVC 申领指定存储类为 `""`，则相当于为自身禁止使用动态制备的卷。
 
 <!--
 To enable dynamic storage provisioning based on storage class, the cluster administrator
 needs to enable the `DefaultStorageClass` [admission controller](/docs/reference/access-authn-authz/admission-controllers/#defaultstorageclass)
 on the API server. This can be done, for example, by ensuring that `DefaultStorageClass` is
-among the comma-delimited, ordered list of values for the `-enable-admission-plugins` flag of
+among the comma-delimited, ordered list of values for the `--enable-admission-plugins` flag of
 the API server component. For more information on API server command-line flags,
 check [kube-apiserver](/docs/admin/kube-apiserver/) documentation.
 -->
-为了基于存储类完成动态的存储供应，集群管理员需要在 API 服务器上启用
-`DefaultStorageClass` [准入控制器](/zh/docs/reference/access-authn-authz/admission-controllers/#defaultstorageclass)。
+为了基于存储类完成动态的存储制备，集群管理员需要在 API 服务器上启用
+`DefaultStorageClass` [准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#defaultstorageclass)。
 举例而言，可以通过保证 `DefaultStorageClass` 出现在 API 服务器组件的
-`--enable-admission-plugins` 标志值中实现这点；该标志的值可以是逗号
-分隔的有序列表。关于 API 服务器标志的更多信息，可以参考
-[kube-apiserver](/zh/docs/reference/command-line-tools-reference/kube-apiserver/)
+`--enable-admission-plugins` 标志值中实现这点；该标志的值可以是逗号分隔的有序列表。
+关于 API 服务器标志的更多信息，可以参考
+[kube-apiserver](/zh-cn/docs/reference/command-line-tools-reference/kube-apiserver/)
 文档。
 
 <!--
 ### Binding
 
 A user creates, or in the case of dynamic provisioning, has already created, a PersistentVolumeClaim with a specific amount of storage requested and with certain access modes. A control loop in the master watches for new PVCs, finds a matching PV (if possible), and binds them together. If a PV was dynamically provisioned for a new PVC, the loop will always bind that PV to the PVC. Otherwise, the user will always get at least what they asked for, but the volume may be in excess of what was requested. Once bound, PersistentVolumeClaim binds are exclusive, regardless of how they were bound. A PVC to PV binding is a one-to-one mapping, using a ClaimRef which is a bi-directional binding between the PersistentVolume and the PersistentVolumeClaim.
-
-Claims will remain unbound indefinitely if a matching volume does not exist. Claims will be bound as matching volumes become available. For example, a cluster provisioned with many 50Gi PVs would not match a PVC requesting 100Gi. The PVC can be bound when a 100Gi PV is added to the cluster.
 -->
 ### 绑定     {#binding}
 
 用户创建一个带有特定存储容量和特定访问模式需求的 PersistentVolumeClaim 对象；
-在动态供应场景下，这个 PVC 对象可能已经创建完毕。
+在动态制备场景下，这个 PVC 对象可能已经创建完毕。
 主控节点中的控制回路监测新的 PVC 对象，寻找与之匹配的 PV 卷（如果可能的话），
 并将二者绑定到一起。
-如果为了新的 PVC 申领动态供应了 PV 卷，则控制回路总是将该 PV 卷绑定到这一 PVC 申领。
+如果为了新的 PVC 申领动态制备了 PV 卷，则控制回路总是将该 PV 卷绑定到这一 PVC 申领。
 否则，用户总是能够获得他们所请求的资源，只是所获得的 PV 卷可能会超出所请求的配置。
-一旦绑定关系建立，则 PersistentVolumeClaim 绑定就是排他性的，无论该 PVC 申领是
-如何与 PV 卷建立的绑定关系。
-PVC 申领与 PV 卷之间的绑定是一种一对一的映射，实现上使用 ClaimRef 来记述 PV 卷
-与 PVC 申领间的双向绑定关系。
+一旦绑定关系建立，则 PersistentVolumeClaim 绑定就是排他性的，
+无论该 PVC 申领是如何与 PV 卷建立的绑定关系。
+PVC 申领与 PV 卷之间的绑定是一种一对一的映射，实现上使用 ClaimRef 来记述
+PV 卷与 PVC 申领间的双向绑定关系。
 
 <!--
 Claims will remain unbound indefinitely if a matching volume does not exist. Claims will be bound as matching volumes become available. For example, a cluster provisioned with many 50Gi PVs would not match a PVC requesting 100Gi. The PVC can be bound when a 100Gi PV is added to the cluster.
 -->
 如果找不到匹配的 PV 卷，PVC 申领会无限期地处于未绑定状态。
 当与之匹配的 PV 卷可用时，PVC 申领会被绑定。
-例如，即使某集群上供应了很多 50 Gi 大小的 PV 卷，也无法与请求
-100 Gi 大小的存储的 PVC 匹配。当新的 100 Gi PV 卷被加入到集群时，该
-PVC 才有可能被绑定。
+例如，即使某集群上制备了很多 50 Gi 大小的 PV 卷，也无法与请求
+100 Gi 大小的存储的 PVC 匹配。当新的 100 Gi PV 卷被加入到集群时，
+该 PVC 才有可能被绑定。
 
 <!--
 ### Using
@@ -181,15 +178,16 @@ Pods use claims as volumes. The cluster inspects the claim to find the bound vol
 -->
 ### 使用    {#using}
 
-Pod 将 PVC 申领当做存储卷来使用。集群会检视 PVC 申领，找到所绑定的卷，并
-为 Pod 挂载该卷。对于支持多种访问模式的卷，用户要在 Pod 中以卷的形式使用申领
-时指定期望的访问模式。
+Pod 将 PVC 申领当做存储卷来使用。集群会检视 PVC 申领，找到所绑定的卷，
+并为 Pod 挂载该卷。对于支持多种访问模式的卷，
+用户要在 Pod 中以卷的形式使用申领时指定期望的访问模式。
 
 <!--
 Once a user has a claim and that claim is bound, the bound PV belongs to the user for as long as they need it. Users schedule Pods and access their claimed PVs by including a `persistentVolumeClaim` section in a Pod's `volumes` block. See [Claims As Volumes](#claims-as-volumes) for more details on this.
 -->
-一旦用户有了申领对象并且该申领已经被绑定，则所绑定的 PV 卷在用户仍然需要它期间
-一直属于该用户。用户通过在 Pod 的 `volumes` 块中包含 `persistentVolumeClaim`
+一旦用户有了申领对象并且该申领已经被绑定，
+则所绑定的 PV 卷在用户仍然需要它期间一直属于该用户。
+用户通过在 Pod 的 `volumes` 块中包含 `persistentVolumeClaim`
 节区来调度 Pod，访问所申领的 PV 卷。
 相关细节可参阅[使用申领作为卷](#claims-as-volumes)。
 
@@ -200,9 +198,9 @@ The purpose of the Storage Object in Use Protection feature is to ensure that Pe
 -->
 ### 保护使用中的存储对象   {#storage-object-in-use-protection}
 
-保护使用中的存储对象（Storage Object in Use Protection）这一功能特性的目的
-是确保仍被 Pod 使用的 PersistentVolumeClaim（PVC）对象及其所绑定的
-PersistentVolume（PV）对象在系统中不会被删除，因为这样做可能会引起数据丢失。
+保护使用中的存储对象（Storage Object in Use Protection）
+这一功能特性的目的是确保仍被 Pod 使用的 PersistentVolumeClaim（PVC）
+对象及其所绑定的 PersistentVolume（PV）对象在系统中不会被删除，因为这样做可能会引起数据丢失。
 
 <!--
 PVC is in active use by a Pod when a Pod object exists that is using the PVC.
@@ -273,11 +271,11 @@ Events:            <none>
 
 When a user is done with their volume, they can delete the PVC objects from the API that allows reclamation of the resource. The reclaim policy for a PersistentVolume tells the cluster what to do with the volume after it has been released of its claim. Currently, volumes can either be Retained, Recycled, or Deleted.
 -->
-### 回收   {#reclaiming}
+### 回收（Reclaiming）   {#reclaiming}
 
-当用户不再使用其存储卷时，他们可以从 API 中将 PVC 对象删除，从而允许
-该资源被回收再利用。PersistentVolume 对象的回收策略告诉集群，当其被
-从申领中释放时如何处理该数据卷。
+当用户不再使用其存储卷时，他们可以从 API 中将 PVC 对象删除，
+从而允许该资源被回收再利用。PersistentVolume 对象的回收策略告诉集群，
+当其被从申领中释放时如何处理该数据卷。
 目前，数据卷可以被 Retained（保留）、Recycled（回收）或 Deleted（删除）。
 
 <!--
@@ -287,21 +285,24 @@ The `Retain` reclaim policy allows for manual reclamation of the resource. When
 -->
 #### 保留（Retain）    {#retain}
 
-回收策略 `Retain` 使得用户可以手动回收资源。当 PersistentVolumeClaim 对象
-被删除时，PersistentVolume 卷仍然存在，对应的数据卷被视为"已释放（released）"。
+回收策略 `Retain` 使得用户可以手动回收资源。当 PersistentVolumeClaim
+对象被删除时，PersistentVolume 卷仍然存在，对应的数据卷被视为"已释放（released）"。
 由于卷上仍然存在这前一申领人的数据，该卷还不能用于其他申领。
 管理员可以通过下面的步骤来手动回收该卷：
 
 <!--
 1. Delete the PersistentVolume. The associated storage asset in external infrastructure (such as an AWS EBS, GCE PD, Azure Disk, or Cinder volume) still exists after the PV is deleted.
 1. Manually clean up the data on the associated storage asset accordingly.
-1. Manually delete the associated storage asset, or if you want to reuse the same storage asset, create a new PersistentVolume with the storage asset definition.
+1. Manually delete the associated storage asset.
+
+If you want to reuse the same storage asset, create a new PersistentVolume with the same storage asset definition.
 -->
 1. 删除 PersistentVolume 对象。与之相关的、位于外部基础设施中的存储资产
    （例如 AWS EBS、GCE PD、Azure Disk 或 Cinder 卷）在 PV 删除之后仍然存在。
 1. 根据情况，手动清除所关联的存储资产上的数据。
-1. 手动删除所关联的存储资产；如果你希望重用该存储资产，可以基于存储资产的
-   定义创建新的 PersistentVolume 卷对象。
+1. 手动删除所关联的存储资产。
+
+如果你希望重用该存储资产，可以基于存储资产的定义创建新的 PersistentVolume 卷对象。
 
 <!--
 #### Delete
@@ -313,10 +314,10 @@ For volume plugins that support the `Delete` reclaim policy, deletion removes bo
 对于支持 `Delete` 回收策略的卷插件，删除动作会将 PersistentVolume 对象从
 Kubernetes 中移除，同时也会从外部基础设施（如 AWS EBS、GCE PD、Azure Disk 或
 Cinder 卷）中移除所关联的存储资产。
-动态供应的卷会继承[其 StorageClass 中设置的回收策略](#reclaim-policy)，该策略默认
-为 `Delete`。
-管理员需要根据用户的期望来配置 StorageClass；否则 PV 卷被创建之后必须要被
-编辑或者修补。参阅[更改 PV 卷的回收策略](/zh/docs/tasks/administer-cluster/change-pv-reclaim-policy/).
+动态制备的卷会继承[其 StorageClass 中设置的回收策略](#reclaim-policy)，
+该策略默认为 `Delete`。管理员需要根据用户的期望来配置 StorageClass；
+否则 PV 卷被创建之后必须要被编辑或者修补。
+参阅[更改 PV 卷的回收策略](/zh-cn/docs/tasks/administer-cluster/change-pv-reclaim-policy/).
 
 <!--
 #### Recycle
@@ -328,11 +329,11 @@ If supported by the underlying volume plugin, the `Recycle` reclaim policy perfo
 #### 回收（Recycle）     {#recycle}
 
 {{< warning >}}
-回收策略 `Recycle` 已被废弃。取而代之的建议方案是使用动态供应。
+回收策略 `Recycle` 已被废弃。取而代之的建议方案是使用动态制备。
 {{< /warning >}}
 
-如果下层的卷插件支持，回收策略 `Recycle` 会在卷上执行一些基本的
-擦除（`rm -rf /thevolume/*`）操作，之后允许该卷用于新的 PVC 申领。
+如果下层的卷插件支持，回收策略 `Recycle` 会在卷上执行一些基本的擦除
+（`rm -rf /thevolume/*`）操作，之后允许该卷用于新的 PVC 申领。
 
 <!--
 However, an administrator can configure a custom recycler Pod template using
@@ -342,7 +343,7 @@ The custom recycler Pod template must contain a `volumes` specification, as
 shown in the example below:
 -->
 不过，管理员可以按
-[参考资料](/zh/docs/reference/command-line-tools-reference/kube-controller-manager/)
+[参考资料](/zh-cn/docs/reference/command-line-tools-reference/kube-controller-manager/)
 中所述，使用 Kubernetes 控制器管理器命令行参数来配置一个定制的回收器（Recycler）
 Pod 模板。此定制的回收器 Pod 模板必须包含一个 `volumes` 规约，如下例所示：
 
@@ -370,8 +371,98 @@ spec:
 <!--
 However, the particular path specified in the custom recycler Pod template in the `volumes` part is replaced with the particular path of the volume that is being recycled.
 -->
-定制回收器 Pod 模板中在 `volumes` 部分所指定的特定路径要替换为
-正被回收的卷的路径。
+定制回收器 Pod 模板中在 `volumes` 部分所指定的特定路径要替换为正被回收的卷的路径。
+
+<!--
+### PersistentVolume deletion protection finalizer
+
+Finalizers can be added on a PersistentVolume to ensure that PersistentVolumes
+having `Delete` reclaim policy are deleted only after the backing storage are deleted.
+-->
+### PersistentVolume 删除保护 finalizer  {#persistentvolume-deletion-protection-finalizer}
+{{< feature-state for_k8s_version="v1.23" state="alpha" >}}
+
+可以在 PersistentVolume 上添加终结器（Finalizer），
+以确保只有在删除对应的存储后才删除具有 `Delete` 回收策略的 PersistentVolume。
+
+<!--
+The newly introduced finalizers `kubernetes.io/pv-controller` and `external-provisioner.volume.kubernetes.io/finalizer`
+are only added to dynamically provisioned volumes.
+
+The finalizer `kubernetes.io/pv-controller` is added to in-tree plugin volumes. The following is an example
+-->
+新引入的 `kubernetes.io/pv-controller` 和 `external-provisioner.volume.kubernetes.io/finalizer`
+终结器仅会被添加到动态制备的卷上。
+
+终结器 `kubernetes.io/pv-controller` 会被添加到树内插件卷上。
+下面是一个例子：
+
+```shell
+kubectl describe pv pvc-74a498d6-3929-47e8-8c02-078c1ece4d78
+Name:            pvc-74a498d6-3929-47e8-8c02-078c1ece4d78
+Labels:          <none>
+Annotations:     kubernetes.io/createdby: vsphere-volume-dynamic-provisioner
+                 pv.kubernetes.io/bound-by-controller: yes
+                 pv.kubernetes.io/provisioned-by: kubernetes.io/vsphere-volume
+Finalizers:      [kubernetes.io/pv-protection kubernetes.io/pv-controller]
+StorageClass:    vcp-sc
+Status:          Bound
+Claim:           default/vcp-pvc-1
+Reclaim Policy:  Delete
+Access Modes:    RWO
+VolumeMode:      Filesystem
+Capacity:        1Gi
+Node Affinity:   <none>
+Message:         
+Source:
+    Type:               vSphereVolume (a Persistent Disk resource in vSphere)
+    VolumePath:         [vsanDatastore] d49c4a62-166f-ce12-c464-020077ba5d46/kubernetes-dynamic-pvc-74a498d6-3929-47e8-8c02-078c1ece4d78.vmdk
+    FSType:             ext4
+    StoragePolicyName:  vSAN Default Storage Policy
+Events:                 <none>
+```
+
+<!--
+The finalizer `external-provisioner.volume.kubernetes.io/finalizer` is added for CSI volumes.
+The following is an example:
+-->
+终结器 `external-provisioner.volume.kubernetes.io/finalizer` 会被添加到 CSI 卷上。下面是一个例子：
+
+```shell
+Name:            pvc-2f0bab97-85a8-4552-8044-eb8be45cf48d
+Labels:          <none>
+Annotations:     pv.kubernetes.io/provisioned-by: csi.vsphere.vmware.com
+Finalizers:      [kubernetes.io/pv-protection external-provisioner.volume.kubernetes.io/finalizer]
+StorageClass:    fast
+Status:          Bound
+Claim:           demo-app/nginx-logs
+Reclaim Policy:  Delete
+Access Modes:    RWO
+VolumeMode:      Filesystem
+Capacity:        200Mi
+Node Affinity:   <none>
+Message:         
+Source:
+    Type:              CSI (a Container Storage Interface (CSI) volume source)
+    Driver:            csi.vsphere.vmware.com
+    FSType:            ext4
+    VolumeHandle:      44830fa8-79b4-406b-8b58-621ba25353fd
+    ReadOnly:          false
+    VolumeAttributes:      storage.kubernetes.io/csiProvisionerIdentity=1648442357185-8081-csi.vsphere.vmware.com
+                           type=vSphere CNS Block Volume
+Events:                <none>
+```
+
+<!--
+Enabling the `CSIMigration` feature for a specific in-tree volume plugin will remove
+the `kubernetes.io/pv-controller` finalizer, while adding the `external-provisioner.volume.kubernetes.io/finalizer`
+finalizer. Similarly, disabling `CSIMigration` will remove the `external-provisioner.volume.kubernetes.io/finalizer`
+finalizer, while adding the `kubernetes.io/pv-controller` finalizer.
+-->
+为特定的树内卷插件启用 `CSIMigration` 特性将删除 `kubernetes.io/pv-controller` 终结器，
+同时添加 `external-provisioner.volume.kubernetes.io/finalizer` 终结器。
+同样，禁用 `CSIMigration` 将删除 `external-provisioner.volume.kubernetes.io/finalizer` 终结器，
+同时添加 `kubernetes.io/pv-controller` 终结器。
 
 <!--
 ### Reserving a PersistentVolume
@@ -391,9 +482,8 @@ The binding happens regardless of some volume matching criteria, including node
 The control plane still checks that [storage class](/docs/concepts/storage/storage-classes/), access modes, and requested storage size are valid.
 -->
 绑定操作不会考虑某些卷匹配条件是否满足，包括节点亲和性等等。
-控制面仍然会检查
-[存储类](/zh/docs/concepts/storage/storage-classes/)、访问模式和所请求的
-存储尺寸都是合法的。
+控制面仍然会检查[存储类](/zh-cn/docs/concepts/storage/storage-classes/)、
+访问模式和所请求的存储尺寸都是合法的。
 
 ```yaml
 apiVersion: v1
@@ -411,9 +501,9 @@ spec:
 This method does not guarantee any binding privileges to the PersistentVolume. If other PersistentVolumeClaims could use the PV that you specify, you first need to reserve that storage volume. Specify the relevant PersistentVolumeClaim in the `claimRef` field of the PV so that other PVCs can not bind to it.
 -->
 此方法无法对 PersistentVolume 的绑定特权做出任何形式的保证。
-如果有其他 PersistentVolumeClaim 可以使用你所指定的 PV，则你应该首先预留
-该存储卷。你可以将 PV 的 `claimRef` 字段设置为相关的 PersistentVolumeClaim
-以确保其他 PVC 不会绑定到该 PV 卷。
+如果有其他 PersistentVolumeClaim 可以使用你所指定的 PV，
+则你应该首先预留该存储卷。你可以将 PV 的 `claimRef` 字段设置为相关的
+PersistentVolumeClaim 以确保其他 PVC 不会绑定到该 PV 卷。
 
 ```yaml
 apiVersion: v1
@@ -432,8 +522,8 @@ spec:
 This is useful if you want to consume PersistentVolumes that have their `claimPolicy` set
 to `Retain`, including cases where you are reusing an existing PV.
 -->
-如果你想要使用 `claimPolicy` 属性设置为 `Retain` 的 PersistentVolume 卷
-时，包括你希望复用现有的 PV 卷时，这点是很有用的
+如果你想要使用 `claimPolicy` 属性设置为 `Retain` 的 PersistentVolume 卷时，
+包括你希望复用现有的 PV 卷时，这点是很有用的
 
 <!--
 ### Expanding Persistent Volumes Claims
@@ -443,21 +533,21 @@ to `Retain`, including cases where you are reusing an existing PV.
 {{< feature-state for_k8s_version="v1.11" state="beta" >}}
 
 <!--
-Support for expanding PersistentVolumeClaims (PVCs) is now enabled by default. You can expand
+Support for expanding PersistentVolumeClaims (PVCs) is enabled by default. You can expand
 the following types of volumes:
 -->
 现在，对扩充 PVC 申领的支持默认处于被启用状态。你可以扩充以下类型的卷：
 
-* gcePersistentDisk
+* azureDisk
+* azureFile
 * awsElasticBlockStore
-* Cinder
+* cinder (deprecated)
+* {{< glossary_tooltip text="csi" term_id="csi" >}}
+* flexVolume (deprecated)
+* gcePersistentDisk
 * glusterfs
 * rbd
-* Azure File
-* Azure Disk
-* Portworx
-* FlexVolumes
-{{< glossary_tooltip text="CSI" term_id="csi" >}}
+* portworxVolume
 
 <!--
 You can only expand a PVC if its storage class's `allowVolumeExpansion` field is set to true.
@@ -488,6 +578,24 @@ new PersistentVolume is never created to satisfy the claim. Instead, an existing
 Kubernetes 不会创建新的 PV 卷来满足此申领的请求。
 与之相反，现有的卷会被调整大小。
 
+<!--
+Directly editing the size of a PersistentVolume can prevent an automatic resize of that volume.
+If you edit the capacity of a PersistentVolume, and then edit the `.spec` of a matching
+PersistentVolumeClaim to make the size of the PersistentVolumeClaim match the PersistentVolume,
+then no storage resize happens.
+The Kubernetes control plane will see that the desired state of both resources matches,
+conclude that the backing volume size has been manually
+increased and that no resize is necessary.
+-->
+{{< warning >}}
+直接编辑 PersistentVolume 的大小可以阻止该卷自动调整大小。
+如果对 PersistentVolume 的容量进行编辑，然后又将其所对应的
+PersistentVolumeClaim 的 `.spec` 进行编辑，使该 PersistentVolumeClaim
+的大小匹配 PersistentVolume 的话，则不会发生存储大小的调整。
+Kubernetes 控制平面将看到两个资源的所需状态匹配，
+并认为其后备卷的大小已被手动增加，无需调整。
+{{< /warning >}}
+
 <!--
 #### CSI Volume expansion
 -->
@@ -498,8 +606,8 @@ Kubernetes 不会创建新的 PV 卷来满足此申领的请求。
 <!--
 Support for expanding CSI volumes is enabled by default but it also requires a specific CSI driver to support volume expansion. Refer to documentation of the specific CSI driver for more information.
 -->
-对 CSI 卷的扩充能力默认是被启用的，不过扩充 CSI 卷要求 CSI 驱动支持
-卷扩充操作。可参阅特定 CSI 驱动的文档了解更多信息。
+对 CSI 卷的扩充能力默认是被启用的，不过扩充 CSI 卷要求 CSI
+驱动支持卷扩充操作。可参阅特定 CSI 驱动的文档了解更多信息。
 
 <!--
 #### Resizing a volume containing a file system
@@ -515,35 +623,22 @@ When a volume contains a file system, the file system is only resized when a new
 the PersistentVolumeClaim in `ReadWrite` mode. File system expansion is either done when a Pod is starting up
 or when a Pod is running and the underlying file system supports online expansion.
 
-FlexVolumes allow resize if the driver is set with the `RequiresFSResize` capability to `true`.
-The FlexVolume can be resized on Pod restart.
+FlexVolumes (deprecated since Kubernetes v1.23) allow resize if the driver is configured with the
+`RequiresFSResize` capability to `true`. The FlexVolume can be resized on Pod restart.
 -->
-当卷中包含文件系统时，只有在 Pod 使用 `ReadWrite` 模式来使用 PVC 申领的
-情况下才能重设其文件系统的大小。
-文件系统扩充的操作或者是在 Pod 启动期间完成，或者在下层文件系统支持在线
-扩充的前提下在 Pod 运行期间完成。
+当卷中包含文件系统时，只有在 Pod 使用 `ReadWrite` 模式来使用 PVC
+申领的情况下才能重设其文件系统的大小。文件系统扩充的操作或者是在 Pod
+启动期间完成，或者在下层文件系统支持在线扩充的前提下在 Pod 运行期间完成。
 
-如果 FlexVolumes 的驱动将 `RequiresFSResize` 能力设置为 `true`，则该
-FlexVolume 卷可以在 Pod 重启期间调整大小。
+如果 FlexVolumes 的驱动将 `RequiresFSResize` 能力设置为 `true`，
+则该 FlexVolume 卷（于 Kubernetes v1.23 弃用）可以在 Pod 重启期间调整大小。
 
 <!--
 #### Resizing an in-use PersistentVolumeClaim
 -->
 #### 重设使用中 PVC 申领的大小    {#resizing-an-in-use-persistentvolumevlaim}
 
-{{< feature-state for_k8s_version="v1.15" state="beta" >}}
-
-<!--
-Expanding in-use PVCs is available as beta since Kubernetes 1.15, and as alpha since 1.11. The `ExpandInUsePersistentVolumes` feature must be enabled, which is the case automatically for many clusters for beta features. Refer to the [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) documentation for more information.
--->
-{{< note >}}
-Kubernetes 从 1.15 版本开始将调整使用中 PVC 申领大小这一能力作为 Beta
-特性支持；该特性在 1.11 版本以来处于 Alpha 阶段。
-`ExpandInUsePersistentVolumes` 特性必须被启用；在很多集群上，与此类似的
-Beta 阶段的特性是自动启用的。
-可参考[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
-文档了解更多信息。
-{{< /note >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 <!--
 In this case, you don't need to delete and recreate a Pod or deployment that is using an existing PVC.
@@ -579,13 +674,23 @@ Expanding EBS volumes is a time-consuming operation. Also, there is a per-volume
 <!--
 #### Recovering from Failure when Expanding Volumes
 
-If expanding underlying storage fails, the cluster administrator can manually recover the Persistent Volume Claim (PVC) state and cancel the resize requests. Otherwise, the resize requests are continuously retried by the controller without administrator intervention.
+If a user specifies a new size that is too big to be satisfied by underlying storage system, expansion of PVC will be continuously retried until user or cluster administrator takes some action. This can be undesirable and hence Kubernetes provides following methods of recovering from such failures.
 -->
 #### 处理扩充卷过程中的失败      {#recovering-from-failure-when-expanding-volumes}
 
-如果扩充下层存储的操作失败，集群管理员可以手动地恢复 PVC 申领的状态并
-取消重设大小的请求。否则，在没有管理员干预的情况下，控制器会反复重试
-重设大小的操作。
+如果用户指定的新大小过大，底层存储系统无法满足，PVC 的扩展将不断重试，
+直到用户或集群管理员采取一些措施。这种情况是不希望发生的，因此 Kubernetes
+提供了以下从此类故障中恢复的方法。
+
+{{< tabs name="recovery_methods" >}}
+{{% tab name="集群管理员手动处理" %}}
+
+<!--
+If expanding underlying storage fails, the cluster administrator can manually recover the Persistent Volume Claim (PVC) state and cancel the resize requests. Otherwise, the resize requests are continuously retried by the controller without administrator intervention.
+-->
+如果扩充下层存储的操作失败，集群管理员可以手动地恢复 PVC
+申领的状态并取消重设大小的请求。否则，在没有管理员干预的情况下，
+控制器会反复重试重设大小的操作。
 
 <!--
 1. Mark the PersistentVolume(PV) that is bound to the PersistentVolumeClaim(PVC) with `Retain` reclaim policy.
@@ -594,7 +699,7 @@ If expanding underlying storage fails, the cluster administrator can manually re
 4. Re-create the PVC with smaller size than PV and set `volumeName` field of the PVC to the name of the PV. This should bind new PVC to existing PV.
 5. Don't forget to restore the reclaim policy of the PV.
 -->
-1. 将绑定到 PVC 申领的 PV 卷标记为 `Retain` 回收策略；
+1. 将绑定到 PVC 申领的 PV 卷标记为 `Retain` 回收策略。
 2. 删除 PVC 对象。由于 PV 的回收策略为 `Retain`，我们不会在重建 PVC 时丢失数据。
 3. 删除 PV 规约中的 `claimRef` 项，这样新的 PVC 可以绑定到该卷。
    这一操作会使得 PV 卷变为 "可用（Available）"。
@@ -602,6 +707,53 @@ If expanding underlying storage fails, the cluster administrator can manually re
    这一操作将把新的 PVC 对象绑定到现有的 PV 卷。
 5. 不要忘记恢复 PV 卷上设置的回收策略。
 
+{{% /tab %}}
+{{% tab name="通过请求扩展为更小尺寸" %}}
+{{% feature-state for_k8s_version="v1.23" state="alpha" %}}
+
+<!--
+Recovery from failing PVC expansion by users is available as an alpha feature since Kubernetes 1.23. The `RecoverVolumeExpansionFailure` feature must be enabled for this feature to work. Refer to the [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) documentation for more information.
+-->
+{{< note >}}
+Kubernetes 从 1.23 版本开始将允许用户恢复失败的 PVC 扩展这一能力作为
+alpha 特性支持。 `RecoverVolumeExpansionFailure` 必须被启用以允许使用此特性。
+可参考[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)
+文档了解更多信息。
+{{< /note >}}
+
+<!--
+If the feature gates `RecoverVolumeExpansionFailure` is
+enabled in your cluster, and expansion has failed for a PVC, you can retry expansion with a
+smaller size than the previously requested value. To request a new expansion attempt with a
+smaller proposed size, edit `.spec.resources` for that PVC and choose a value that is less than the
+value you previously tried.
+This is useful if expansion to a higher value did not succeed because of capacity constraint.
+If that has happened, or you suspect that it might have, you can retry expansion by specifying a
+size that is within the capacity limits of underlying storage provider. You can monitor status of resize operation by watching `.status.resizeStatus` and events on the PVC.
+-->
+如果集群中的特性门控 `RecoverVolumeExpansionFailure`
+已启用，在 PVC 的扩展发生失败时，你可以使用比先前请求的值更小的尺寸来重试扩展。
+要使用一个更小的尺寸尝试请求新的扩展，请编辑该 PVC 的 `.spec.resources`
+并选择一个比你之前所尝试的值更小的值。
+如果由于容量限制而无法成功扩展至更高的值，这将很有用。
+如果发生了这种情况，或者你怀疑可能发生了这种情况，
+你可以通过指定一个在底层存储制备容量限制内的尺寸来重试扩展。
+你可以通过查看 `.status.resizeStatus` 以及 PVC 上的事件来监控调整大小操作的状态。
+
+<!--
+Note that,
+although you can specify a lower amount of storage than what was requested previously,
+the new value must still be higher than `.status.capacity`.
+Kubernetes does not support shrinking a PVC to less than its current size.
+-->
+请注意，
+尽管你可以指定比之前的请求更低的存储量，新值必须仍然高于 `.status.capacity`。
+Kubernetes 不支持将 PVC 缩小到小于其当前的尺寸。
+
+{{% /tab %}}
+{{% /tabs %}}
+
+
 <!--
 ## Types of Persistent Volumes
 
@@ -617,12 +769,8 @@ PV 持久卷是用插件的形式来实现的。Kubernetes 目前支持以下插
 * [`azureDisk`](/docs/concepts/storage/volumes/#azuredisk) - Azure Disk
 * [`azureFile`](/docs/concepts/storage/volumes/#azurefile) - Azure File
 * [`cephfs`](/docs/concepts/storage/volumes/#cephfs) - CephFS volume
-* [`cinder`](/docs/concepts/storage/volumes/#cinder) - Cinder (OpenStack block storage)
-  (**deprecated**)
 * [`csi`](/docs/concepts/storage/volumes/#csi) - Container Storage Interface (CSI)
 * [`fc`](/docs/concepts/storage/volumes/#fc) - Fibre Channel (FC) storage
-* [`flexVolume`](/docs/concepts/storage/volumes/#flexVolume) - FlexVolume
-* [`flocker`](/docs/concepts/storage/volumes/#flocker) - Flocker storage
 * [`gcePersistentDisk`](/docs/concepts/storage/volumes/#gcepersistentdisk) - GCE Persistent Disk
 * [`glusterfs`](/docs/concepts/storage/volumes/#glusterfs) - Glusterfs volume
 * [`hostPath`](/docs/concepts/storage/volumes/#hostpath) - HostPath volume
@@ -632,44 +780,64 @@ PV 持久卷是用插件的形式来实现的。Kubernetes 目前支持以下插
 * [`local`](/docs/concepts/storage/volumes/#local) - local storage devices
   mounted on nodes.
 * [`nfs`](/docs/concepts/storage/volumes/#nfs) - Network File System (NFS) storage
-* `photonPersistentDisk` - Photon controller persistent disk.
-  (This volume type no longer works since the removal of the corresponding
-  cloud provider.)
 * [`portworxVolume`](/docs/concepts/storage/volumes/#portworxvolume) - Portworx volume
-* [`quobyte`](/docs/concepts/storage/volumes/#quobyte) - Quobyte volume
 * [`rbd`](/docs/concepts/storage/volumes/#rbd) - Rados Block Device (RBD) volume
-* [`scaleIO`](/docs/concepts/storage/volumes/#scaleio) - ScaleIO volume
-  (**deprecated**)
-* [`storageos`](/docs/concepts/storage/volumes/#storageos) - StorageOS volume
 * [`vsphereVolume`](/docs/concepts/storage/volumes/#vspherevolume) - vSphere VMDK volume
 -->
-* [`awsElasticBlockStore`](/zh/docs/concepts/storage/volumes/#awselasticblockstore) - AWS 弹性块存储（EBS）
-* [`azureDisk`](/zh/docs/concepts/storage/volumes/#azuredisk) - Azure Disk
-* [`azureFile`](/zh/docs/concepts/storage/volumes/#azurefile) - Azure File
-* [`cephfs`](/zh/docs/concepts/storage/volumes/#cephfs) - CephFS volume
-* [`cinder`](/zh/docs/concepts/storage/volumes/#cinder) - Cinder （OpenStack 块存储）
-  (**弃用**)
-* [`csi`](/zh/docs/concepts/storage/volumes/#csi) - 容器存储接口 (CSI)
-* [`fc`](/zh/docs/concepts/storage/volumes/#fc) - Fibre Channel (FC) 存储
-* [`flexVolume`](/zh/docs/concepts/storage/volumes/#flexVolume) - FlexVolume
-* [`flocker`](/zh/docs/concepts/storage/volumes/#flocker) - Flocker 存储
-* [`gcePersistentDisk`](/zh/docs/concepts/storage/volumes/#gcepersistentdisk) - GCE 持久化盘
-* [`glusterfs`](/zh/docs/concepts/storage/volumes/#glusterfs) - Glusterfs 卷
-* [`hostPath`](/zh/docs/concepts/storage/volumes/#hostpath) - HostPath 卷
-  （仅供单节点测试使用；不适用于多节点集群；
-  请尝试使用 `local` 卷作为替代）
-* [`iscsi`](/zh/docs/concepts/storage/volumes/#iscsi) - iSCSI (SCSI over IP) 存储
-* [`local`](/zh/docs/concepts/storage/volumes/#local) - 节点上挂载的本地存储设备
-* [`nfs`](/zh/docs/concepts/storage/volumes/#nfs) - 网络文件系统 (NFS) 存储
-* `photonPersistentDisk` - Photon 控制器持久化盘。
-  （这个卷类型已经因对应的云提供商被移除而被弃用）。
-* [`portworxVolume`](/zh/docs/concepts/storage/volumes/#portworxvolume) - Portworx 卷
-* [`quobyte`](/zh/docs/concepts/storage/volumes/#quobyte) - Quobyte 卷
-* [`rbd`](/zh/docs/concepts/storage/volumes/#rbd) - Rados 块设备 (RBD) 卷
-* [`scaleIO`](/zh/docs/concepts/storage/volumes/#scaleio) - ScaleIO 卷
-  (**弃用**)
-* [`storageos`](/zh/docs/concepts/storage/volumes/#storageos) - StorageOS 卷
-* [`vsphereVolume`](/zh/docs/concepts/storage/volumes/#vspherevolume) - vSphere VMDK 卷
+* [`awsElasticBlockStore`](/zh-cn/docs/concepts/storage/volumes/#awselasticblockstore) - AWS 弹性块存储（EBS）
+* [`azureDisk`](/zh-cn/docs/concepts/storage/volumes/#azuredisk) - Azure Disk
+* [`azureFile`](/zh-cn/docs/concepts/storage/volumes/#azurefile) - Azure File
+* [`cephfs`](/zh-cn/docs/concepts/storage/volumes/#cephfs) - CephFS volume
+* [`csi`](/zh-cn/docs/concepts/storage/volumes/#csi) - 容器存储接口 (CSI)
+* [`fc`](/zh-cn/docs/concepts/storage/volumes/#fc) - Fibre Channel (FC) 存储
+* [`gcePersistentDisk`](/zh-cn/docs/concepts/storage/volumes/#gcepersistentdisk) - GCE 持久化盘
+* [`glusterfs`](/zh-cn/docs/concepts/storage/volumes/#glusterfs) - Glusterfs 卷
+* [`hostPath`](/zh-cn/docs/concepts/storage/volumes/#hostpath) - HostPath 卷
+  （仅供单节点测试使用；不适用于多节点集群；请尝试使用 `local` 卷作为替代）
+* [`iscsi`](/zh-cn/docs/concepts/storage/volumes/#iscsi) - iSCSI (SCSI over IP) 存储
+* [`local`](/zh-cn/docs/concepts/storage/volumes/#local) - 节点上挂载的本地存储设备
+* [`nfs`](/zh-cn/docs/concepts/storage/volumes/#nfs) - 网络文件系统 (NFS) 存储
+* [`portworxVolume`](/zh-cn/docs/concepts/storage/volumes/#portworxvolume) - Portworx 卷
+* [`rbd`](/zh-cn/docs/concepts/storage/volumes/#rbd) - Rados 块设备 (RBD) 卷
+* [`vsphereVolume`](/zh-cn/docs/concepts/storage/volumes/#vspherevolume) - vSphere VMDK 卷
+
+<!-- 
+The following types of PersistentVolume are deprecated. This means that support is still available but will be removed in a future Kubernetes release.
+
+* [`cinder`](/docs/concepts/storage/volumes/#cinder) - Cinder (OpenStack block storage)
+  (**deprecated** in v1.18)
+* [`flexVolume`](/docs/concepts/storage/volumes/#flexvolume) - FlexVolume
+  (**deprecated** in v1.23)
+* [`flocker`](/docs/concepts/storage/volumes/#flocker) - Flocker storage
+  (**deprecated** in v1.22)
+* [`quobyte`](/docs/concepts/storage/volumes/#quobyte) - Quobyte volume
+  (**deprecated** in v1.22)
+* [`storageos`](/docs/concepts/storage/volumes/#storageos) - StorageOS volume
+  (**deprecated** in v1.22)
+-->
+
+以下的持久卷已被弃用。这意味着当前仍是支持的，但是 Kubernetes 将来的发行版会将其移除。
+
+* [`cinder`](/zh-cn/docs/concepts/storage/volumes/#cinder) - Cinder（OpenStack 块存储）（于 v1.18 **弃用**）
+* [`flexVolume`](/zh-cn/docs/concepts/storage/volumes/#flexVolume) - FlexVolume （于 v1.23 **弃用**）
+* [`flocker`](/zh-cn/docs/concepts/storage/volumes/#flocker) - Flocker 存储（于 v1.22 **弃用**）
+* [`quobyte`](/zh-cn/docs/concepts/storage/volumes/#quobyte) - Quobyte 卷
+（于 v1.22 **弃用**）
+* [`storageos`](/zh-cn/docs/concepts/storage/volumes/#storageos) - StorageOS 卷（于 v1.22 **弃用**）
+
+<!-- 
+Older versions of Kubernetes also supported the following in-tree PersistentVolume types:
+
+* `photonPersistentDisk` - Photon controller persistent disk.
+  (**not available** after v1.15)
+* [`scaleIO`](/docs/concepts/storage/volumes/#scaleio) - ScaleIO volume
+  (**not available** after v1.21)
+-->
+
+旧版本的 Kubernetes 仍支持这些“树内（In-Tree）”持久卷类型：
+
+* `photonPersistentDisk` - Photon 控制器持久化盘。（v1.15 之后 **不可用**）
+* [`scaleIO`](/zh-cn/docs/concepts/storage/volumes/#scaleio) - ScaleIO 卷（v1.21 之后 **不可用**）
 
 <!--
 ## Persistent Volumes
@@ -682,7 +850,7 @@ The name of a PersistentVolume object must be a valid
 
 每个 PV 对象都包含 `spec` 部分和 `status` 部分，分别对应卷的规约和状态。
 PersistentVolume 对象的名称必须是合法的
-[DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 
 ```yaml
 apiVersion: v1
@@ -717,7 +885,7 @@ Helper programs relating to the volume type may be required for consumption of a
 <!--
 ### Capacity
 
-Generally, a PV will have a specific storage capacity.  This is set using the PV's `capacity` attribute.  See the Kubernetes [Resource Model](https://git.k8s.io/community/contributors/design-proposals/scheduling/resources.md) to understand the units expected by `capacity`.
+Generally, a PV will have a specific storage capacity.  This is set using the PV's `capacity` attribute.  Read the glossary term [Quantity](/docs/reference/glossary/?all=true#term-quantity) to understand the units expected by `capacity`.
 
 Currently, storage size is the only resource that can be set or requested.  Future attributes may include IOPS, throughput, etc.
 -->
@@ -725,9 +893,8 @@ Currently, storage size is the only resource that can be set or requested.  Futu
 
 一般而言，每个 PV 卷都有确定的存储容量。
 容量属性是使用 PV 对象的 `capacity` 属性来设置的。
-参考 Kubernetes
-[资源模型（Resource Model）](https://git.k8s.io/community/contributors/design-proposals/scheduling/resources.md)
-设计提案，了解 `capacity` 字段可以接受的单位。
+参考词汇表中的[量纲（Quantity）](/zh-cn/docs/reference/glossary/?all=true#term-quantity)
+词条，了解 `capacity` 字段可以接受的单位。
 
 目前，存储大小是可以设置和请求的唯一资源。
 未来可能会包含 IOPS、吞吐量等属性。
@@ -754,9 +921,8 @@ on the device before mounting it for the first time.
 `volumeMode` 是一个可选的 API 参数。
 如果该参数被省略，默认的卷模式是 `Filesystem`。
 
-`volumeMode` 属性设置为 `Filesystem` 的卷会被 Pod *挂载（Mount）* 到某个目录。
-如果卷的存储来自某块设备而该设备目前为空，Kuberneretes 会在第一次挂载卷之前
-在设备上创建文件系统。
+`volumeMode` 属性设置为 `Filesystem` 的卷会被 Pod **挂载（Mount）** 到某个目录。
+如果卷的存储来自某块设备而该设备目前为空，Kuberneretes 会在第一次挂载卷之前在设备上创建文件系统。
 
 <!--
 You can set the value of `volumeMode` to `Block` to use a volume as a raw block device.
@@ -769,10 +935,10 @@ for an example on how to use a volume with `volumeMode: Block` in a Pod.
 -->
 你可以将 `volumeMode` 设置为 `Block`，以便将卷作为原始块设备来使用。
 这类卷以块设备的方式交给 Pod 使用，其上没有任何文件系统。
-这种模式对于为 Pod 提供一种使用最快可能方式来访问卷而言很有帮助，Pod 和
-卷之间不存在文件系统层。另外，Pod 中运行的应用必须知道如何处理原始块设备。
-关于如何在 Pod 中使用 `volumeMode: Block` 的卷，可参阅
-[原始块卷支持](#raw-block-volume-support)。
+这种模式对于为 Pod 提供一种使用最快可能方式来访问卷而言很有帮助，
+Pod 和卷之间不存在文件系统层。另外，Pod 中运行的应用必须知道如何处理原始块设备。
+关于如何在 Pod 中使用 `volumeMode: Block` 的卷，
+可参阅[原始块卷支持](#raw-block-volume-support)。
 
 <!--
 ### Access Modes
@@ -782,24 +948,46 @@ A PersistentVolume can be mounted on a host in any way supported by the resource
 ### 访问模式   {#access-modes}
 
 PersistentVolume 卷可以用资源提供者所支持的任何方式挂载到宿主系统上。
-如下表所示，提供者（驱动）的能力不同，每个 PV 卷的访问模式都会设置为
-对应卷所支持的模式值。
-例如，NFS 可以支持多个读写客户，但是某个特定的 NFS PV 卷可能在服务器
-上以只读的方式导出。每个 PV 卷都会获得自身的访问模式集合，描述的是
-特定 PV 卷的能力。
+如下表所示，提供者（驱动）的能力不同，每个 PV 卷的访问模式都会设置为对应卷所支持的模式值。
+例如，NFS 可以支持多个读写客户，但是某个特定的 NFS PV 卷可能在服务器上以只读的方式导出。
+每个 PV 卷都会获得自身的访问模式集合，描述的是特定 PV 卷的能力。
 
 <!--
 The access modes are:
 
-* ReadWriteOnce -- the volume can be mounted as read-write by a single node
-* ReadOnlyMany -- the volume can be mounted read-only by many nodes
-* ReadWriteMany -- the volume can be mounted as read-write by many nodes
+`ReadWriteOnce` 
+: the volume can be mounted as read-write by a single node. ReadWriteOnce access mode still can allow multiple pods to access the volume when the pods are running on the same node.
+
+`ReadOnlyMany`
+: the volume can be mounted as read-only by many nodes.
+
+`ReadWriteMany`
+: the volume can be mounted as read-write by many nodes.
+
+ `ReadWriteOncePod`
+: the volume can be mounted as read-write by a single Pod. Use ReadWriteOncePod access mode if you want to ensure that only one pod across whole cluster can read that PVC or write to it. This is only supported for CSI volumes and Kubernetes version 1.22+.
+
+The blog article [Introducing Single Pod Access Mode for PersistentVolumes](/blog/2021/09/13/read-write-once-pod-access-mode-alpha/) covers this in more detail.
 -->
 访问模式有：
 
-* ReadWriteOnce -- 卷可以被一个节点以读写方式挂载；
-* ReadOnlyMany -- 卷可以被多个节点以只读方式挂载；
-* ReadWriteMany -- 卷可以被多个节点以读写方式挂载。
+`ReadWriteOnce`
+: 卷可以被一个节点以读写方式挂载。
+ReadWriteOnce 访问模式也允许运行在同一节点上的多个 Pod 访问卷。
+
+`ReadOnlyMany`
+: 卷可以被多个节点以只读方式挂载。
+
+`ReadWriteMany`
+: 卷可以被多个节点以读写方式挂载。
+
+`ReadWriteOncePod`
+: 卷可以被单个 Pod 以读写方式挂载。
+如果你想确保整个集群中只有一个 Pod 可以读取或写入该 PVC，
+请使用 ReadWriteOncePod 访问模式。这只支持 CSI 卷以及需要 Kubernetes 1.22 以上版本。
+
+这篇博客文章 [Introducing Single Pod Access Mode for PersistentVolumes](/blog/2021/09/13/read-write-once-pod-access-mode-alpha/)
+描述了更详细的内容。
 
 <!--
 In the CLI, the access modes are abbreviated to:
@@ -807,47 +995,64 @@ In the CLI, the access modes are abbreviated to:
 * RWO - ReadWriteOnce
 * ROX - ReadOnlyMany
 * RWX - ReadWriteMany
+* RWOP - ReadWriteOncePod
 -->
 在命令行接口（CLI）中，访问模式也使用以下缩写形式：
 
 * RWO - ReadWriteOnce
 * ROX - ReadOnlyMany
 * RWX - ReadWriteMany
+* RWOP - ReadWriteOncePod
+
+{{< note >}}
+<!--
+Kubernetes uses volume access modes to match PersistentVolumeClaims and PersistentVolumes.
+In some cases, the volume access modes also constrain where the PersistentVolume can be mounted.
+Volume access modes do **not** enforce write protection once the storage has been mounted.
+Even if the access modes are specified as ReadWriteOnce, ReadOnlyMany, or ReadWriteMany, they don't set any constraints on the volume.
+For example, even if a PersistentVolume is created as ReadOnlyMany, it is no guarantee that it will be read-only.
+If the access modes are specified as ReadWriteOncePod, the volume is constrained and can be mounted on only a single Pod.
+-->
+Kubernetes 使用卷访问模式来匹配 PersistentVolumeClaim 和 PersistentVolume。
+在某些场合下，卷访问模式也会限制 PersistentVolume 可以挂载的位置。
+卷访问模式并**不会**在存储已经被挂载的情况下为其实施写保护。
+即使访问模式设置为 ReadWriteOnce、ReadOnlyMany 或 ReadWriteMany，它们也不会对卷形成限制。
+例如，即使某个卷创建时设置为 ReadOnlyMany，也无法保证该卷是只读的。
+如果访问模式设置为 ReadWriteOncePod，则卷会被限制起来并且只能挂载到一个 Pod 上。
+{{< /note >}}
 
 <!--
 > __Important!__ A volume can only be mounted using one access mode at a time, even if it supports many.  For example, a GCEPersistentDisk can be mounted as ReadWriteOnce by a single node or ReadOnlyMany by many nodes, but not at the same time.
 -->
-> __重要提醒！__ 每个卷只能同一时刻只能以一种访问模式挂载，即使该卷能够支持
-> 多种访问模式。例如，一个 GCEPersistentDisk 卷可以被某节点以 ReadWriteOnce
-> 模式挂载，或者被多个节点以 ReadOnlyMany 模式挂载，但不可以同时以两种模式
-> 挂载。
+> **重要提醒！** 每个卷同一时刻只能以一种访问模式挂载，即使该卷能够支持多种访问模式。
+> 例如，一个 GCEPersistentDisk 卷可以被某节点以 ReadWriteOnce
+> 模式挂载，或者被多个节点以 ReadOnlyMany 模式挂载，但不可以同时以两种模式挂载。
 
 <!--
 | Volume Plugin        | ReadWriteOnce          | ReadOnlyMany          | ReadWriteMany|
 -->
 
-| 卷插件               | ReadWriteOnce  | ReadOnlyMany | ReadWriteMany|
-| :---                 | :---:          | :---:        | :---:        |
-| AWSElasticBlockStore | &#x2713;       | -            | -            |
-| AzureFile            | &#x2713;       | &#x2713;     | &#x2713;     |
-| AzureDisk            | &#x2713;       | -            | -            |
-| CephFS               | &#x2713;       | &#x2713;     | &#x2713;     |
-| Cinder               | &#x2713;       | -            | -            |
-| CSI                  | 取决于驱动     | 取决于驱动   | 取决于驱动   |
-| FC                   | &#x2713;       | &#x2713;     | -            |
-| FlexVolume           | &#x2713;       | &#x2713;     | 取决于驱动   |
-| Flocker              | &#x2713;       | -            | -            |
-| GCEPersistentDisk    | &#x2713;       | &#x2713;     | -            |
-| Glusterfs            | &#x2713;       | &#x2713;     | &#x2713;     |
-| HostPath             | &#x2713;       | -            | -            |
-| iSCSI                | &#x2713;       | &#x2713;     | -            |
-| Quobyte              | &#x2713;       | &#x2713;     | &#x2713;     |
-| NFS                  | &#x2713;       | &#x2713;     | &#x2713;     |
-| RBD                  | &#x2713;       | &#x2713;     | -            |
-| VsphereVolume        | &#x2713;       | -            | - (Pod 运行于同一节点上时可行)  |
-| PortworxVolume       | &#x2713;       | -            | &#x2713;     |
-| ScaleIO              | &#x2713;       | &#x2713;     | -            |
-| StorageOS            | &#x2713;       | -            | -            |
+| 卷插件                | ReadWriteOnce          | ReadOnlyMany          | ReadWriteMany | ReadWriteOncePod       |
+| :---                 | :---:                  | :---:                 | :---:         | -                      |
+| AWSElasticBlockStore | &#x2713;               | -                     | -             | -                      |
+| AzureFile            | &#x2713;               | &#x2713;              | &#x2713;      | -                      |
+| AzureDisk            | &#x2713;               | -                     | -             | -                      |
+| CephFS               | &#x2713;               | &#x2713;              | &#x2713;      | -                      |
+| Cinder               | &#x2713;               | -                     | ([如果多次挂接卷可用](https://github.com/kubernetes/cloud-provider-openstack/blob/master/docs/cinder-csi-plugin/features.md#multi-attach-volumes))           | -                      |
+| CSI                  | 取决于驱动               | 取决于驱动             | 取决于驱动      | 取决于驱动               |
+| FC                   | &#x2713;               | &#x2713;              | -             | -                      |
+| FlexVolume           | &#x2713;               | &#x2713;              | 取决于驱动      | -                      |
+| Flocker              | &#x2713;               | -                     | -             | -                      |
+| GCEPersistentDisk    | &#x2713;               | &#x2713;              | -             | -                      |
+| Glusterfs            | &#x2713;               | &#x2713;              | &#x2713;      | -                      |
+| HostPath             | &#x2713;               | -                     | -             | -                      |
+| iSCSI                | &#x2713;               | &#x2713;              | -             | -                      |
+| Quobyte              | &#x2713;               | &#x2713;              | &#x2713;      | -                      |
+| NFS                  | &#x2713;               | &#x2713;              | &#x2713;      | -                      |
+| RBD                  | &#x2713;               | &#x2713;              | -             | -                      |
+| VsphereVolume        | &#x2713;               | -                     | - （Pod 运行于同一节点上时可行） | -       |
+| PortworxVolume       | &#x2713;               | -                     | &#x2713;      | -                  | - |
+| StorageOS            | &#x2713;               | -                     | -             | -                      |
 
 <!--
 ### Class
@@ -862,10 +1067,9 @@ to PVCs that request no particular class.
 ### 类    {#class}
 
 每个 PV 可以属于某个类（Class），通过将其 `storageClassName` 属性设置为某个
-[StorageClass](/zh/docs/concepts/storage/storage-classes/) 的名称来指定。
+[StorageClass](/zh-cn/docs/concepts/storage/storage-classes/) 的名称来指定。
 特定类的 PV 卷只能绑定到请求该类存储卷的 PVC 申领。
-未设置 `storageClassName` 的 PV 卷没有类设定，只能绑定到那些没有指定特定
-存储类的 PVC 申领。
+未设置 `storageClassName` 的 PV 卷没有类设定，只能绑定到那些没有指定特定存储类的 PVC 申领。
 
 <!--
 In the past, the annotation `volume.beta.kubernetes.io/storage-class` was used instead
@@ -876,7 +1080,6 @@ it will become fully deprecated in a future Kubernetes release.
 `storageClassName` 属性。这一注解目前仍然起作用，不过在将来的 Kubernetes
 发布版本中该注解会被彻底废弃。
 
-
 <!--
 ### Reclaim Policy
 
@@ -920,19 +1123,19 @@ The following volume types support mount options:
 -->
 以下卷类型支持挂载选项：
 
-* AWSElasticBlockStore
-* AzureDisk
-* AzureFile
-* CephFS
-* Cinder （OpenStack 块存储）
-* GCEPersistentDisk
-* Glusterfs
-* NFS
-* Quobyte 卷
-* RBD （Ceph 块设备）
-* StorageOS
-* VsphereVolume
-* iSCSI
+* `awsElasticBlockStore`
+* `azureDisk`
+* `azureFile`
+* `cephfs`
+* `cinder` (**已弃用**于 v1.18)
+* `gcePersistentDisk`
+* `glusterfs`
+* `iscsi`
+* `nfs`
+* `quobyte` (**已弃用**于 v1.22)
+* `rbd`
+* `storageos` (**已弃用**于 v1.22)
+* `vsphereVolume`
 
 <!--
 Mount options are not validated, If a mount option is invalid, the mount fails.
@@ -953,27 +1156,26 @@ it will become fully deprecated in a future Kubernetes release.
 -->
 ### 节点亲和性   {#node-affinity}
 
-<!--
-A PV can specify [node affinity](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#volumenodeaffinity-v1-core) to define constraints that limit what nodes this volume can be accessed from. Pods that use a PV will only be scheduled to nodes that are selected by the node affinity.
--->
-每个 PV 卷可以通过设置
-[节点亲和性](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#volumenodeaffinity-v1-core)
-来定义一些约束，进而限制从哪些节点上可以访问此卷。
-使用这些卷的 Pod 只会被调度到节点亲和性规则所选择的节点上执行。
-
 <!--
 For most volume types, you do not need to set this field. It is automatically populated for [AWS EBS](/docs/concepts/storage/volumes/#awselasticblockstore), [GCE PD](/docs/concepts/storage/volumes/#gcepersistentdisk) and [Azure Disk](/docs/concepts/storage/volumes/#azuredisk) volume block types. You need to explicitly set this for [local](/docs/concepts/storage/volumes/#local) volumes.
 -->
 {{< note >}}
 对大多数类型的卷而言，你不需要设置节点亲和性字段。
-[AWS EBS](/zh/docs/concepts/storage/volumes/#awselasticblockstore)、
-[GCE PD](/zh/docs/concepts/storage/volumes/#gcepersistentdisk) 和
-[Azure Disk](/zh/docs/concepts/storage/volumes/#azuredisk) 卷类型都能
-自动设置相关字段。
-你需要为 [local](/zh/docs/concepts/storage/volumes/#local) 卷显式地设置
-此属性。
+[AWS EBS](/zh-cn/docs/concepts/storage/volumes/#awselasticblockstore)、
+[GCE PD](/zh-cn/docs/concepts/storage/volumes/#gcepersistentdisk) 和
+[Azure Disk](/zh-cn/docs/concepts/storage/volumes/#azuredisk) 卷类型都能自动设置相关字段。
+你需要为 [local](/zh-cn/docs/concepts/storage/volumes/#local) 卷显式地设置此属性。
 {{< /note >}}
 
+<!--
+A PV can specify node affinity to define constraints that limit what nodes this volume can be accessed from. Pods that use a PV will only be scheduled to nodes that are selected by the node affinity. To specify node affinity, set `nodeAffinity` in the `.spec` of a PV. The [PersistentVolume](/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-v1/#PersistentVolumeSpec) API reference has more details on this field.
+-->
+每个 PV 卷可以通过设置节点亲和性来定义一些约束，进而限制从哪些节点上可以访问此卷。
+使用这些卷的 Pod 只会被调度到节点亲和性规则所选择的节点上执行。
+要设置节点亲和性，配置 PV 卷 `.spec` 中的 `nodeAffinity`。
+[持久卷](/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-v1/#PersistentVolumeSpec)
+API 参考关于该字段的更多细节。
+
 <!--
 ### Phase
 
@@ -1006,8 +1208,7 @@ The name of a PersistentVolumeClaim object must be a valid
 -->
 每个 PVC 对象都有 `spec` 和 `status` 部分，分别对应申领的规约和状态。
 PersistentVolumeClaim 对象的名称必须是合法的
-[DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
-
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 
 ```yaml
 apiVersion: v1
@@ -1045,18 +1246,18 @@ Claims use [the same convention as volumes](#volume-mode) to indicate the consum
 -->
 ### 卷模式 {#volume-modes}
 
-申领使用[与卷相同的约定](#access-modes)来表明是将卷作为文件系统还是块设备来使用。
+申领使用[与卷相同的约定](#volume-mode)来表明是将卷作为文件系统还是块设备来使用。
 
 <!--
 ### Resources
 
-Claims, like Pods, can request specific quantities of a resource. In this case, the request is for storage. The same [resource model](https://git.k8s.io/community/contributors/design-proposals/scheduling/resources.md) applies to both volumes and claims.
+Claims, like Pods, can request specific quantities of a resource. In this case, the request is for storage. The same [resource model](https://git.k8s.io/design-proposals-archive/scheduling/resources.md) applies to both volumes and claims.
 -->
 ### 资源    {#resources}
 
 申领和 Pod 一样，也可以请求特定数量的资源。在这个上下文中，请求的资源是存储。
 卷和申领都使用相同的
-[资源模型](https://git.k8s.io/community/contributors/design-proposals/scheduling/resources.md)。
+[资源模型](https://git.k8s.io/design-proposals-archive/scheduling/resources.md)。
 
 <!--
 ### Selector
@@ -1065,7 +1266,7 @@ Claims can specify a [label selector](/docs/concepts/overview/working-with-objec
 -->
 ### 选择算符    {#selector}
 
-申领可以设置[标签选择算符](/zh/docs/concepts/overview/working-with-objects/labels/#label-selectors)
+申领可以设置[标签选择算符](/zh-cn/docs/concepts/overview/working-with-objects/labels/#label-selectors)
 来进一步过滤卷集合。只有标签与选择算符相匹配的卷能够绑定到申领上。
 选择算符包含两个字段：
 
@@ -1094,7 +1295,7 @@ be bound to the PVC.
 ### 类      {#class}
 
 申领可以通过为 `storageClassName` 属性设置
-[StorageClass](/zh/docs/concepts/storage/storage-classes/) 的名称来请求特定的存储类。
+[StorageClass](/zh-cn/docs/concepts/storage/storage-classes/) 的名称来请求特定的存储类。
 只有所请求的类的 PV 卷，即 `storageClassName` 值与 PVC 设置相同的 PV 卷，
 才能绑定到 PVC 申领。
 
@@ -1108,11 +1309,11 @@ by the cluster, depending on whether the
 is turned on.
 -->
 PVC 申领不必一定要请求某个类。如果 PVC 的 `storageClassName` 属性值设置为 `""`，
-则被视为要请求的是没有设置存储类的 PV 卷，因此这一 PVC 申领只能绑定到未设置
-存储类的 PV 卷（未设置注解或者注解值为 `""` 的 PersistentVolume（PV）对象在系统中不会被删除，因为这样做可能会引起数据丢失。
-未设置 `storageClassName` 的 PVC 与此大不相同，也会被集群作不同处理。
-具体筛查方式取决于
-[`DefaultStorageClass` 准入控制器插件](/zh/docs/reference/access-authn-authz/admission-controllers/#defaultstorageclass)
+则被视为要请求的是没有设置存储类的 PV 卷，因此这一 PVC 申领只能绑定到未设置存储类的
+PV 卷（未设置注解或者注解值为 `""` 的 PersistentVolume（PV）对象在系统中不会被删除，
+因为这样做可能会引起数据丢失。未设置 `storageClassName` 的 PVC 与此大不相同，
+也会被集群作不同处理。具体筛查方式取决于
+[`DefaultStorageClass` 准入控制器插件](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#defaultstorageclass)
 是否被启用。
 
 <!--
@@ -1133,11 +1334,11 @@ PVC 申领不必一定要请求某个类。如果 PVC 的 `storageClassName` 属
   所有未设置 `storageClassName` 的 PVC 都只能绑定到隶属于默认存储类的 PV 卷。
   设置默认 StorageClass 的工作是通过将对应 StorageClass 对象的注解
   `storageclass.kubernetes.io/is-default-class` 赋值为 `true` 来完成的。
-  如果管理员未设置默认存储类，集群对 PVC 创建的处理方式与未启用准入控制器插件
-  时相同。如果设定的默认存储类不止一个，准入控制插件会禁止所有创建 PVC 操作。
+  如果管理员未设置默认存储类，集群对 PVC 创建的处理方式与未启用准入控制器插件时相同。
+  如果设定的默认存储类不止一个，准入控制插件会禁止所有创建 PVC 操作。
 * 如果准入控制器插件被关闭，则不存在默认 StorageClass 的说法。
   所有未设置 `storageClassName` 的 PVC 都只能绑定到未设置存储类的 PV 卷。
-  在这种情况下，未设置 `storageClassName` 的 PVC 与 `storageClassName` 设置未
+  在这种情况下，未设置 `storageClassName` 的 PVC 与 `storageClassName` 设置为
   `""` 的 PVC 的处理方式相同。
 
 <!--
@@ -1151,14 +1352,14 @@ the requested labels may be bound to the PVC.
 取决于安装方法，默认的 StorageClass 可能在集群安装期间由插件管理器（Addon
 Manager）部署到集群中。
 
-当某 PVC 除了请求 StorageClass 之外还设置了 `selector`，则这两种需求会按
-逻辑与关系处理：只有隶属于所请求类且带有所请求标签的 PV 才能绑定到 PVC。
+当某 PVC 除了请求 StorageClass 之外还设置了 `selector`，则这两种需求会按逻辑与关系处理：
+只有隶属于所请求类且带有所请求标签的 PV 才能绑定到 PVC。
 
 <!--
 Currently, a PVC with a non-empty `selector` can't have a PV dynamically provisioned for it.
 -->
 {{< note >}}
-目前，设置了非空 `selector` 的 PVC 对象无法让集群为其动态供应 PV 卷。
+目前，设置了非空 `selector` 的 PVC 对象无法让集群为其动态制备 PV 卷。
 {{< /note >}}
 
 <!--
@@ -1220,7 +1421,7 @@ See [an example of `hostPath` typed volume](/docs/tasks/configure-pod-container/
 ### 类型为 `hostpath` 的 PersistentVolume  {#persistentvolumes-typed-hostpath}
 
 `hostPath` PersistentVolume 使用节点上的文件或目录来模拟网络附加（network-attached）存储。
-相关细节可参阅[`hostPath` 卷示例](/zh/docs/tasks/configure-pod-container/configure-persistent-volume-storage/#create-a-persistentvolume)。
+相关细节可参阅 [`hostPath` 卷示例](/zh-cn/docs/tasks/configure-pod-container/configure-persistent-volume-storage/#create-a-persistentvolume)。
 
 <!--
 ## Raw Block Volume Support
@@ -1233,7 +1434,7 @@ See [an example of `hostPath` typed volume](/docs/tasks/configure-pod-container/
 The following volume plugins support raw block volumes, including dynamic provisioning where
 applicable:
 -->
-以下卷插件支持原始块卷，包括其动态供应（如果支持的话）的卷：
+以下卷插件支持原始块卷，包括其动态制备（如果支持的话）的卷：
 
 * AWSElasticBlockStore
 * AzureDisk
@@ -1287,11 +1488,10 @@ spec:
     requests:
       storage: 10Gi
 ```
-
 <!--
 ### Pod specification adding Raw Block Device path in container
 -->
-### 在容器中添加原始块设备路径的 Pod 规约
+### 在容器中添加原始块设备路径的 Pod 规约  {#pod-spec-adding-raw-block-device-path-in-container}
 
 ```yaml
 apiVersion: v1
@@ -1329,12 +1529,12 @@ Volume binding matrix for statically provisioned volumes:
 -->
 ### 绑定块卷     {#binding-block-volumes}
 
-如果用户通过 PersistentVolumeClaim 规约的 `volumeMode` 字段来表明对原始
-块设备的请求，绑定规则与之前版本中未在规约中考虑此模式的实现略有不同。
+如果用户通过 PersistentVolumeClaim 规约的 `volumeMode` 字段来表明对原始块设备的请求，
+绑定规则与之前版本中未在规约中考虑此模式的实现略有不同。
 下面列举的表格是用户和管理员可以为请求原始块设备所作设置的组合。
 此表格表明在不同的组合下卷是否会被绑定。
 
-静态供应卷的卷绑定矩阵：
+静态制备卷的卷绑定矩阵：
 
 <!--
 | PV volumeMode | PVC volumeMode  | Result           |
@@ -1365,28 +1565,25 @@ Volume binding matrix for statically provisioned volumes:
 Only statically provisioned volumes are supported for alpha release. Administrators should take care to consider these values when working with raw block devices.
 -->
 {{< note >}}
-Alpha 发行版本中仅支持静态供应的卷。
+Alpha 发行版本中仅支持静态制备的卷。
 管理员需要在处理原始块设备时小心处理这些值。
 {{< /note >}}
 
 <!--
 ## Volume Snapshot and Restore Volume from Snapshot Support
 -->
-## 对卷快照及从卷快照中恢复卷的支持
+## 对卷快照及从卷快照中恢复卷的支持 {#volume-snapshot-and-restore-volume-from-snapshot-support}
 
-{{< feature-state for_k8s_version="v1.17" state="beta" >}}
+{{< feature-state for_k8s_version="v1.20" state="stable" >}}
 
 <!--
-Volume snapshot feature was added to support CSI Volume Plugins only. For details, see [volume snapshots](/docs/concepts/storage/volume-snapshots/).
-
-To enable support for restoring a volume from a volume snapshot data source, enable the
-`VolumeSnapshotDataSource` feature gate on the apiserver and controller-manager.
+Volume snapshots only support the out-of-tree CSI volume plugins. For details, see [Volume Snapshots](/docs/concepts/storage/volume-snapshots/).
+In-tree volume plugins are deprecated. You can read about the deprecated volume plugins in the [Volume Plugin FAQ](https://github.com/kubernetes/community/blob/master/sig-storage/volume-plugin-faq.md).
 -->
-卷快照（Volume Snapshot）功能的添加仅是为了支持 CSI 卷插件。
-有关细节可参阅[卷快照](/zh/docs/concepts/storage/volume-snapshots/)文档。
-
-要启用从卷快照数据源恢复数据卷的支持，可在 API 服务器和控制器管理器上启用
-`VolumeSnapshotDataSource` 特性门控。
+卷快照（Volume Snapshot）仅支持树外 CSI 卷插件。
+有关细节可参阅[卷快照](/zh-cn/docs/concepts/storage/volume-snapshots/)文档。
+树内卷插件被弃用。你可以查阅[卷插件 FAQ](https://git.k8s.io/community/sig-storage/volume-plugin-faq.md)
+了解已弃用的卷插件。
 
 <!--
 ### Create a PersistentVolumeClaim from a Volume Snapshot {#create-persistent-volume-claim-from-volume-snapshot}
@@ -1418,8 +1615,7 @@ spec:
 -->
 ## 卷克隆     {#volume-cloning}
 
-[卷克隆](/zh/docs/concepts/storage/volume-pvc-datasource/)功能特性仅适用于
-CSI 卷插件。
+[卷克隆](/zh-cn/docs/concepts/storage/volume-pvc-datasource/)功能特性仅适用于 CSI 卷插件。
 
 <!--
 ### Create PersistentVolumeClaim from an existing PVC {#create-persistent-volume-claim-from-an-existing-pvc}
@@ -1443,6 +1639,129 @@ spec:
       storage: 10Gi
 ```
 
+<!--
+## Volume populators and data sources
+
+Kubernetes supports custom volume populators.
+To use custom volume populators, you must enable the `AnyVolumeDataSource`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/) for
+the kube-apiserver and kube-controller-manager.
+
+Volume populators take advantage of a PVC spec field called `dataSourceRef`. Unlike the
+`dataSource` field, which can only contain either a reference to another PersistentVolumeClaim
+or to a VolumeSnapshot, the `dataSourceRef` field can contain a reference to any object in the
+same namespace, except for core objects other than PVCs. For clusters that have the feature
+gate enabled, use of the `dataSourceRef` is preferred over `dataSource`.
+-->
+
+## 卷填充器（Populator）与数据源      {#volume-populators-and-data-sources}
+
+{{< feature-state for_k8s_version="v1.24" state="beta" >}}
+
+Kubernetes 支持自定义的卷填充器。要使用自定义的卷填充器，你必须为
+kube-apiserver 和 kube-controller-manager 启用 `AnyVolumeDataSource`
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)。
+
+卷填充器利用了 PVC 规约字段 `dataSourceRef`。
+不像 `dataSource` 字段只能包含对另一个持久卷申领或卷快照的引用，
+`dataSourceRef` 字段可以包含对同一命名空间中任何对象的引用（不包含除 PVC 以外的核心资源）。
+对于启用了特性门控的集群，使用 `dataSourceRef` 比 `dataSource` 更好。
+
+<!--
+## Data source references
+
+The `dataSourceRef` field behaves almost the same as the `dataSource` field. If either one is
+specified while the other is not, the API server will give both fields the same value. Neither
+field can be changed after creation, and attempting to specify different values for the two
+fields will result in a validation error. Therefore the two fields will always have the same
+contents.
+-->
+
+## 数据源引用   {#data-source-references}
+
+`dataSourceRef` 字段的行为与 `dataSource` 字段几乎相同。
+如果其中一个字段被指定而另一个字段没有被指定，API 服务器将给两个字段相同的值。
+这两个字段都不能在创建后改变，如果试图为这两个字段指定不同的值，将导致验证错误。
+因此，这两个字段将总是有相同的内容。
+
+<!--
+There are two differences between the `dataSourceRef` field and the `dataSource` field that
+users should be aware of:
+
+* The `dataSource` field ignores invalid values (as if the field was blank) while the
+  `dataSourceRef` field never ignores values and will cause an error if an invalid value is
+  used. Invalid values are any core object (objects with no apiGroup) except for PVCs.
+* The `dataSourceRef` field may contain different types of objects, while the `dataSource` field
+  only allows PVCs and VolumeSnapshots.
+
+Users should always use `dataSourceRef` on clusters that have the feature gate enabled, and
+fall back to `dataSource` on clusters that do not. It is not necessary to look at both fields
+under any circumstance. The duplicated values with slightly different semantics exist only for
+backwards compatibility. In particular, a mixture of older and newer controllers are able to
+interoperate because the fields are the same.
+-->
+在 `dataSourceRef` 字段和 `dataSource` 字段之间有两个用户应该注意的区别：
+
+* `dataSource` 字段会忽略无效的值（如同是空值），
+   而 `dataSourceRef` 字段永远不会忽略值，并且若填入一个无效的值，会导致错误。
+   无效值指的是 PVC 之外的核心对象（没有 apiGroup 的对象）。
+* `dataSourceRef` 字段可以包含不同类型的对象，而 `dataSource` 字段只允许 PVC 和卷快照。
+
+用户应该始终在启用了特性门控的集群上使用 `dataSourceRef`，而在没有启用特性门控的集群上使用 `dataSource`。
+在任何情况下都没有必要查看这两个字段。
+这两个字段的值看似相同但是语义稍微不一样，是为了向后兼容。
+特别是混用旧版本和新版本的控制器时，它们能够互通。
+
+<!--
+### Using volume populators
+
+Volume populators are {{< glossary_tooltip text="controllers" term_id="controller" >}} that can
+create non-empty volumes, where the contents of the volume are determined by a Custom Resource.
+Users create a populated volume by referring to a Custom Resource using the `dataSourceRef` field:
+-->
+## 使用卷填充器   {#using-volume-populators}
+
+卷填充器是能创建非空卷的{{< glossary_tooltip text="控制器" term_id="controller" >}}，
+其卷的内容通过一个自定义资源决定。
+用户通过使用 `dataSourceRef` 字段引用自定义资源来创建一个被填充的卷：
+
+```yaml
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: populated-pvc
+spec:
+  dataSourceRef:
+    name: example-name
+    kind: ExampleDataSource
+    apiGroup: example.storage.k8s.io
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi
+```
+
+<!--
+Because volume populators are external components, attempts to create a PVC that uses one
+can fail if not all the correct components are installed. External controllers should generate
+events on the PVC to provide feedback on the status of the creation, including warnings if
+the PVC cannot be created due to some missing component.
+
+You can install the alpha [volume data source validator](https://github.com/kubernetes-csi/volume-data-source-validator)
+controller into your cluster. That controller generates warning Events on a PVC in the case that no populator
+is registered to handle that kind of data source. When a suitable populator is installed for a PVC, it's the
+responsibility of that populator controller to report Events that relate to volume creation and issues during
+the process.
+-->
+因为卷填充器是外部组件，如果没有安装所有正确的组件，试图创建一个使用卷填充器的 PVC 就会失败。
+外部控制器应该在 PVC 上产生事件，以提供创建状态的反馈，包括在由于缺少某些组件而无法创建 PVC 的情况下发出警告。
+
+你可以把 alpha 版本的[卷数据源验证器](https://github.com/kubernetes-csi/volume-data-source-validator)
+控制器安装到你的集群中。
+如果没有填充器处理该数据源的情况下，该控制器会在 PVC 上产生警告事件。
+当一个合适的填充器被安装到 PVC 上时，该控制器的职责是上报与卷创建有关的事件，以及在该过程中发生的问题。
+
 <!--
 ## Writing Portable Configuration
 
@@ -1463,6 +1782,7 @@ and need persistent storage, it is recommended that you use the following patter
   以及 ConfigMap 等放在一起。
 - 不要在配置中包含 PersistentVolume 对象，因为对配置进行实例化的用户很可能
   没有创建 PersistentVolume 的权限。
+
 <!--
 - Give the user the option of providing a storage class name when instantiating
   the template.
@@ -1480,9 +1800,10 @@ and need persistent storage, it is recommended that you use the following patter
   - 仍按用户提供存储类名称，将该名称放到 `persistentVolumeClaim.storageClassName` 字段中。
     这样会使得 PVC 在集群被管理员启用了存储类支持时能够匹配到正确的存储类，
   - 如果用户未指定存储类名称，将 `persistentVolumeClaim.storageClassName` 留空（nil）。
-    这样，集群会使用默认 `StorageClass` 为用户自动供应一个存储卷。
+    这样，集群会使用默认 `StorageClass` 为用户自动制备一个存储卷。
     很多集群环境都配置了默认的 `StorageClass`，或者管理员也可以自行创建默认的
     `StorageClass`。
+
 <!--
 - In your tooling, watch for PVCs that are not getting bound after some time
   and surface this to the user, as this may indicate that the cluster has no
@@ -1499,23 +1820,24 @@ and need persistent storage, it is recommended that you use the following patter
 <!--
 * Learn more about [Creating a PersistentVolume](/docs/tasks/configure-pod-container/configure-persistent-volume-storage/#create-a-persistentvolume).
 * Learn more about [Creating a PersistentVolumeClaim](/docs/tasks/configure-pod-container/configure-persistent-volume-storage/#create-a-persistentvolumeclaim).
-* Read the [Persistent Storage design document](https://git.k8s.io/community/contributors/design-proposals/storage/persistent-storage.md).
+* Read the [Persistent Storage design document](https://git.k8s.io/design-proposals-archive/storage/persistent-storage.md).
 -->
-* 进一步了解[创建持久卷](/zh/docs/tasks/configure-pod-container/configure-persistent-volume-storage/#create-a-persistentvolume).
-* 进一步学习[创建 PVC 申领](/zh/docs/tasks/configure-pod-container/configure-persistent-volume-storage/#create-a-persistentvolumeclaim).
-* 阅读[持久存储的设计文档](https://git.k8s.io/community/contributors/design-proposals/storage/persistent-storage.md).
+* 进一步了解[创建持久卷](/zh-cn/docs/tasks/configure-pod-container/configure-persistent-volume-storage/#create-a-persistentvolume).
+* 进一步学习[创建 PVC 申领](/zh-cn/docs/tasks/configure-pod-container/configure-persistent-volume-storage/#create-a-persistentvolumeclaim).
+* 阅读[持久存储的设计文档](https://git.k8s.io/design-proposals-archive/storage/persistent-storage.md).
 
 <!--
-### Reference
+### API references {#reference}
 
-* [PersistentVolume](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#persistentvolume-v1-core)
-* [PersistentVolumeSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#persistentvolumespec-v1-core)
-* [PersistentVolumeClaim](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#persistentvolumeclaim-v1-core)
-* [PersistentVolumeClaimSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#persistentvolumeclaimspec-v1-core)
+Read about the APIs described in this page:
+
+* [`PersistentVolume`](/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-v1/)
+* [`PersistentVolumeClaim`](/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-claim-v1/)
 -->
-### 参考    {#reference}
+### API 参考    {#reference}
+
+阅读以下页面中描述的 API：
+
+* [`PersistentVolume`](/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-v1/)
+* [`PersistentVolumeClaim`](/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-claim-v1/)
 
-* [PersistentVolume](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#persistentvolume-v1-core)
-* [PersistentVolumeSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#persistentvolumespec-v1-core)
-* [PersistentVolumeClaim](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#persistentvolumeclaim-v1-core)
-* [PersistentVolumeClaimSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#persistentvolumeclaimspec-v1-core)
diff --git a/content/zh-cn/docs/concepts/storage/projected-volumes.md b/content/zh-cn/docs/concepts/storage/projected-volumes.md
new file mode 100644
index 0000000000..bf61134654
--- /dev/null
+++ b/content/zh-cn/docs/concepts/storage/projected-volumes.md
@@ -0,0 +1,229 @@
+---
+title: 投射卷
+content_type: concept
+weight: 21 # 跟在持久卷之后
+---
+
+<!--
+reviewers:
+- marosset
+- jsturtevant
+- zshihang
+title: Projected Volumes
+content_type: concept
+weight: 21 # just after persistent volumes
+-->
+
+<!-- overview -->
+
+<!--
+This document describes _projected volumes_ in Kubernetes. Familiarity with [volumes](/docs/concepts/storage/volumes/) is suggested.
+-->
+本文档描述 Kubernetes 中的**投射卷（Projected Volumes）**。
+建议先熟悉[卷](/zh-cn/docs/concepts/storage/volumes/)概念。
+
+<!-- body -->
+
+<!--
+## Introduction
+
+A `projected` volume maps several existing volume sources into the same directory.
+
+Currently, the following types of volume sources can be projected:
+
+* [`secret`](/docs/concepts/storage/volumes/#secret)
+* [`downwardAPI`](/docs/concepts/storage/volumes/#downwardapi)
+* [`configMap`](/docs/concepts/storage/volumes/#configmap)
+* [`serviceAccountToken`](#serviceaccounttoken)
+-->
+## 介绍    {#introduction}
+
+一个 `projected` 卷可以将若干现有的卷源映射到同一个目录之上。
+
+目前，以下类型的卷源可以被投射：
+
+* [`secret`](/zh-cn/docs/concepts/storage/volumes/#secret)
+* [`downwardAPI`](/zh-cn/docs/concepts/storage/volumes/#downwardapi)
+* [`configMap`](/zh-cn/docs/concepts/storage/volumes/#configmap)
+* [`serviceAccountToken`](#serviceaccounttoken)
+
+<!--
+All sources are required to be in the same namespace as the Pod. For more details,
+see the [all-in-one volume](https://git.k8s.io/design-proposals-archive/node/all-in-one-volume.md) design document.
+-->
+所有的卷源都要求处于 Pod 所在的同一个名字空间内。进一步的详细信息，可参考
+[一体化卷](https://git.k8s.io/design-proposals-archive/node/all-in-one-volume.md)设计文档。
+
+<!--
+### Example configuration with a secret, a downwardAPI, and a configMap {#example-configuration-secret-downwardapi-configmap}
+-->
+### 带有 Secret、DownwardAPI 和 ConfigMap 的配置示例 {#example-configuration-secret-downwardapi-configmap}
+
+{{< codenew file="pods/storage/projected-secret-downwardapi-configmap.yaml" >}}
+
+<!--
+### Example configuration: secrets with a non-default permission mode set {#example-configuration-secrets-nondefault-permission-mode}
+-->
+### 带有非默认权限模式设置的 Secret 的配置示例 {#example-configuration-secrets-nondefault-permission-mode}
+
+{{< codenew file="pods/storage/projected-secrets-nondefault-permission-mode.yaml" >}}
+
+<!--
+Each projected volume source is listed in the spec under `sources`. The
+parameters are nearly the same with two exceptions:
+
+* For secrets, the `secretName` field has been changed to `name` to be consistent
+  with ConfigMap naming.
+* The `defaultMode` can only be specified at the projected level and not for each
+  volume source. However, as illustrated above, you can explicitly set the `mode`
+  for each individual projection.
+-->
+每个被投射的卷源都列举在规约中的 `sources` 下面。参数几乎相同，只有两个例外：
+
+* 对于 Secret，`secretName` 字段被改为 `name` 以便于 ConfigMap 的命名一致；
+* `defaultMode` 只能在投射层级设置，不能在卷源层级设置。不过，正如上面所展示的，
+  你可以显式地为每个投射单独设置 `mode` 属性。
+
+<!--
+## serviceAccountToken projected volumes {#serviceaccounttoken}
+When the `TokenRequestProjection` feature is enabled, you can inject the token
+for the current [service account](/docs/reference/access-authn-authz/authentication/#service-account-tokens)
+into a Pod at a specified path. For example:
+-->
+## serviceAccountToken 投射卷 {#serviceaccounttoken}
+
+当 `TokenRequestProjection` 特性被启用时，你可以将当前
+[服务账号](/zh-cn/docs/reference/access-authn-authz/authentication/#service-account-tokens)
+的令牌注入到 Pod 中特定路径下。例如：
+
+{{< codenew file="pods/storage/projected-service-account-token.yaml" >}}
+
+<!--
+The example Pod has a projected volume containing the injected service account
+token. Containers in this Pod can use that token to access the Kubernetes API
+server, authenticating with the identity of [the pod's ServiceAccount](/docs/tasks/configure-pod-container/configure-service-account/).
+The `audience` field contains the intended audience of the
+token. A recipient of the token must identify itself with an identifier specified
+in the audience of the token, and otherwise should reject the token. This field
+is optional and it defaults to the identifier of the API server.
+-->
+示例 Pod 中包含一个投射卷，其中包含注入的服务账号令牌。
+此 Pod 中的容器可以使用该令牌访问 Kubernetes API 服务器， 使用
+[Pod 的 ServiceAccount](/zh-cn/docs/tasks/configure-pod-container/configure-service-account/)
+进行身份验证。`audience` 字段包含令牌所针对的受众。
+收到令牌的主体必须使用令牌受众中所指定的某个标识符来标识自身，否则应该拒绝该令牌。
+此字段是可选的，默认值为 API 服务器的标识。
+
+<!--
+The `expirationSeconds` is the expected duration of validity of the service account
+token. It defaults to 1 hour and must be at least 10 minutes (600 seconds). An administrator
+can also limit its maximum value by specifying the `--service-account-max-token-expiration`
+option for the API server. The `path` field specifies a relative path to the mount point
+of the projected volume.
+-->
+字段 `expirationSeconds` 是服务账号令牌预期的生命期长度。默认值为 1 小时，
+必须至少为 10 分钟（600 秒）。管理员也可以通过设置 API 服务器的命令行参数
+`--service-account-max-token-expiration` 来为其设置最大值上限。
+`path` 字段给出与投射卷挂载点之间的相对路径。
+
+{{< note >}}
+<!--
+A container using a projected volume source as a [`subPath`](/docs/concepts/storage/volumes/#using-subpath)
+volume mount will not receive updates for those volume sources.
+-->
+以 [`subPath`](/zh-cn/docs/concepts/storage/volumes/#using-subpath)
+形式使用投射卷源的容器无法收到对应卷源的更新。
+{{< /note >}}
+
+<!--
+## SecurityContext interactions
+-->
+## 与 SecurityContext 间的关系    {#securitycontext-interactions}
+
+<!--
+The [proposal](https://git.k8s.io/enhancements/keps/sig-storage/2451-service-account-token-volumes#proposal) for file permission handling in projected service account volume enhancement introduced the projected files having the correct owner permissions set.
+-->
+关于在投射的服务账号卷中处理文件访问权限的[提案](https://git.k8s.io/enhancements/keps/sig-storage/2451-service-account-token-volumes#proposal)
+介绍了如何使得所投射的文件具有合适的属主访问权限。
+
+### Linux
+
+<!--
+In Linux pods that have a projected volume and `RunAsUser` set in the Pod
+[`SecurityContext`](/docs/reference/kubernetes-api/workload-resources/pod-v1/#security-context),
+the projected files have the correct ownership set including container user
+ownership.
+-->
+在包含了投射卷并在
+[`SecurityContext`](/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1/#security-context)
+中设置了 `RunAsUser` 属性的 Linux Pod 中，投射文件具有正确的属主属性设置，
+其中包含了容器用户属主。
+
+### Windows
+
+<!--
+In Windows pods that have a projected volume and `RunAsUsername` set in the
+Pod `SecurityContext`, the ownership is not enforced due to the way user
+accounts are managed in Windows. Windows stores and manages local user and group
+accounts in a database file called Security Account Manager (SAM). Each
+container maintains its own instance of the SAM database, to which the host has
+no visibility into while the container is running. Windows containers are
+designed to run the user mode portion of the OS in isolation from the host,
+hence the maintenance of a virtual SAM database. As a result, the kubelet running
+on the host does not have the ability to dynamically configure host file
+ownership for virtualized container accounts. It is recommended that if files on
+the host machine are to be shared with the container then they should be placed
+into their own volume mount outside of `C:\`.
+-->
+在包含了投射卷并在 `SecurityContext` 中设置了 `RunAsUsername` 的 Windows Pod 中,
+由于 Windows 中用户账号的管理方式问题，文件的属主无法正确设置。
+Windows 在名为安全账号管理器（Security Account Manager，SAM）
+的数据库中保存本地用户和组信息。每个容器会维护其自身的 SAM 数据库实例，
+宿主系统无法窥视到容器运行期间数据库内容。Windows 容器被设计用来运行操作系统的用户态部分，
+与宿主系统之间隔离，因此维护了一个虚拟的 SAM 数据库。
+所以，在宿主系统上运行的 kubelet 无法动态为虚拟的容器账号配置宿主文件的属主。
+如果需要将宿主机器上的文件与容器共享，建议将它们放到挂载于 `C:\` 之外的独立卷中。
+
+<!--
+By default, the projected files will have the following ownership as shown for
+an example projected volume file:
+-->
+默认情况下，所投射的文件会具有如下例所示的属主属性设置：
+
+```powershell
+PS C:\> Get-Acl C:\var\run\secrets\kubernetes.io\serviceaccount\..2021_08_31_22_22_18.318230061\ca.crt | Format-List
+
+Path   : Microsoft.PowerShell.Core\FileSystem::C:\var\run\secrets\kubernetes.io\serviceaccount\..2021_08_31_22_22_18.318230061\ca.crt
+Owner  : BUILTIN\Administrators
+Group  : NT AUTHORITY\SYSTEM
+Access : NT AUTHORITY\SYSTEM Allow  FullControl
+         BUILTIN\Administrators Allow  FullControl
+         BUILTIN\Users Allow  ReadAndExecute, Synchronize
+Audit  :
+Sddl   : O:BAG:SYD:AI(A;ID;FA;;;SY)(A;ID;FA;;;BA)(A;ID;0x1200a9;;;BU)
+```
+
+<!--
+This implies all administrator users like `ContainerAdministrator` will have
+read, write and execute access while, non-administrator users will have read and
+execute access.
+-->
+这意味着，所有类似 `ContainerAdministrator` 的管理员用户都具有读、写和执行访问权限，
+而非管理员用户将具有读和执行访问权限。
+
+{{< note >}}
+<!--
+In general, granting the container access to the host is discouraged as it can
+open the door for potential security exploits.
+
+Creating a Windows Pod with `RunAsUser` in it's `SecurityContext` will result in
+the Pod being stuck at `ContainerCreating` forever. So it is advised to not use
+the Linux only `RunAsUser` option with Windows Pods.
+-->
+总体而言，为容器授予访问宿主系统的权限这种做法是不推荐的，因为这样做可能会打开潜在的安全性攻击之门。
+
+在创建 Windows Pod 时，如果在其 `SecurityContext` 中设置了 `RunAsUser`，
+Pod 会一直阻塞在 `ContainerCreating` 状态。因此，建议不要在 Windows
+节点上使用仅针对 Linux 的 `RunAsUser` 选项。
+{{< /note >}}
+
diff --git a/content/zh/docs/concepts/storage/storage-capacity.md b/content/zh-cn/docs/concepts/storage/storage-capacity.md
similarity index 69%
rename from content/zh/docs/concepts/storage/storage-capacity.md
rename to content/zh-cn/docs/concepts/storage/storage-capacity.md
index edb448babd..c89d98e3bc 100644
--- a/content/zh/docs/concepts/storage/storage-capacity.md
+++ b/content/zh-cn/docs/concepts/storage/storage-capacity.md
@@ -1,7 +1,7 @@
 ---
 title: 存储容量
 content_type: concept
-weight: 45
+weight: 70
 ---
 
 <!-- overview -->
@@ -10,60 +10,66 @@ Storage capacity is limited and may vary depending on the node on
 which a pod runs: network-attached storage might not be accessible by
 all nodes, or storage is local to a node to begin with.
 
-{{< feature-state for_k8s_version="v1.19" state="alpha" >}}
-{{< feature-state for_k8s_version="v1.21" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 This page describes how Kubernetes keeps track of storage capacity and
-how the scheduler uses that information to schedule Pods onto nodes
+how the scheduler uses that information to [schedule Pods](/docs/concepts/scheduling-eviction/) onto nodes
 that have access to enough storage capacity for the remaining missing
 volumes. Without storage capacity tracking, the scheduler may choose a
 node that doesn't have enough capacity to provision a volume and
 multiple scheduling retries will be needed.
-
-Tracking storage capacity is supported for {{< glossary_tooltip
-text="Container Storage Interface" term_id="csi" >}} (CSI) drivers and
-[needs to be enabled](#enabling-storage-capacity-tracking) when installing a CSI driver.
 -->
 存储容量是有限的，并且会因为运行 Pod 的节点不同而变化：
 网络存储可能并非所有节点都能够访问，或者对于某个节点存储是本地的。
 
-{{< feature-state for_k8s_version="v1.19" state="alpha" >}}
-{{< feature-state for_k8s_version="v1.21" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 本页面描述了 Kubernetes 如何跟踪存储容量以及调度程序如何为了余下的尚未挂载的卷使用该信息将
-Pod 调度到能够访问到足够存储容量的节点上。
+[Pod 调度](/zh-cn/docs/concepts/scheduling-eviction/)到能够访问到足够存储容量的节点上。
 如果没有跟踪存储容量，调度程序可能会选择一个没有足够容量来提供卷的节点，并且需要多次调度重试。
 
-{{< glossary_tooltip text="容器存储接口" term_id="csi" >}}（CSI）驱动程序支持跟踪存储容量，
-并且在安装 CSI 驱动程序时[需要启用](#enabling-storage-capacity-tracking)该功能。
+## {{% heading "prerequisites" %}}
+
+<!--
+Kubernetes v{{< skew currentVersion >}} includes cluster-level API support for
+storage capacity tracking. To use this you must also be using a CSI driver that
+supports capacity tracking. Consult the documentation for the CSI drivers that
+you use to find out whether this support is available and, if so, how to use
+it. If you are not running Kubernetes v{{< skew currentVersion >}}, check the
+documentation for that version of Kubernetes.
+-->
+Kubernetes v{{< skew currentVersion >}} 包含了对存储容量跟踪的集群级 API 支持。
+要使用它，你还必须使用支持容量跟踪的 CSI 驱动程序。请查阅你使用的 CSI 驱动程序的文档，
+以了解此支持是否可用，如果可用，该如何使用它。如果你运行的不是
+Kubernetes v{{< skew currentVersion >}}，请查看对应版本的 Kubernetes 文档。
 
 <!-- body -->
 <!--
 ## API
 
 There are two API extensions for this feature:
-- CSIStorageCapacity objects:
+- [CSIStorageCapacity](/docs/reference/kubernetes-api/config-and-storage-resources/csi-storage-capacity-v1/) objects:
   these get produced by a CSI driver in the namespace
   where the driver is installed. Each object contains capacity
   information for one storage class and defines which nodes have
   access to that storage.
-- [The `CSIDriverSpec.StorageCapacity` field](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#csidriverspec-v1-storage-k8s-io):
+- [The `CSIDriverSpec.StorageCapacity` field](/docs/reference/kubernetes-api/config-and-storage-resources/csi-driver-v1/#CSIDriverSpec):
   when set to `true`, the Kubernetes scheduler will consider storage
   capacity for volumes that use the CSI driver.
 -->
 ## API
 
 这个特性有两个 API 扩展接口：
-- CSIStorageCapacity 对象：这些对象由 CSI 驱动程序在安装驱动程序的命名空间中产生。
+- [CSIStorageCapacity](/docs/reference/kubernetes-api/config-and-storage-resources/csi-storage-capacity-v1/) 对象：这些对象由
+  CSI 驱动程序在安装驱动程序的命名空间中产生。
   每个对象都包含一个存储类的容量信息，并定义哪些节点可以访问该存储。
-- [`CSIDriverSpec.StorageCapacity` 字段](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#csidriverspec-v1-storage-k8s-io)：
+- [`CSIDriverSpec.StorageCapacity` 字段](/docs/reference/kubernetes-api/config-and-storage-resources/csi-driver-v1/#CSIDriverSpec)：
   设置为 true 时，Kubernetes 调度程序将考虑使用 CSI 驱动程序的卷的存储容量。
 
 <!--
 ## Scheduling
 
 Storage capacity information is used by the Kubernetes scheduler if:
-- the `CSIStorageCapacity` feature gate is true,
 - a Pod uses a volume that has not been created yet,
 - that volume uses a {{< glossary_tooltip text="StorageClass" term_id="storage-class" >}} which references a CSI driver and
   uses `WaitForFirstConsumer` [volume binding
@@ -92,10 +98,9 @@ significant resources there.
 ## 调度
 
 如果有以下情况，存储容量信息将会被 Kubernetes 调度程序使用：
-- `CSIStorageCapacity` 特性门控被设置为 true，
 - Pod 使用的卷还没有被创建，
 - 卷使用引用了 CSI 驱动的 {{< glossary_tooltip text="StorageClass" term_id="storage-class" >}}，
-并且使用了 `WaitForFirstConsumer` [卷绑定模式](/zh/docs/concepts/storage/storage-classes/#volume-binding-mode)，
+并且使用了 `WaitForFirstConsumer` [卷绑定模式](/zh-cn/docs/concepts/storage/storage-classes/#volume-binding-mode)，
 - 驱动程序的 `CSIDriver` 对象的 `StorageCapacity` 被设置为 true。
 
 在这种情况下，调度程序仅考虑将 Pod 调度到有足够存储容量的节点上。这个检测非常简单，
@@ -104,7 +109,7 @@ significant resources there.
 对于具有 `Immediate` 卷绑定模式的卷，存储驱动程序将决定在何处创建该卷，而不取决于将使用该卷的 Pod。
 然后，调度程序将 Pod 调度到创建卷后可使用该卷的节点上。
 
-对于 [CSI 临时卷](/zh/docs/concepts/storage/volumes/#csi)，调度总是在不考虑存储容量的情况下进行。
+对于 [CSI 临时卷](/zh-cn/docs/concepts/storage/volumes/#csi)，调度总是在不考虑存储容量的情况下进行。
 这是基于这样的假设：该卷类型仅由节点本地的特殊 CSI 驱动程序使用，并且不需要大量资源。
 
 <!--
@@ -142,9 +147,7 @@ multiple volumes: one volume might have been created already in a
 topology segment which then does not have enough capacity left for
 another volume. Manual intervention is necessary to recover from this,
 for example by increasing capacity or deleting the volume that was
-already created. [Further
-work](https://github.com/kubernetes/enhancements/pull/1703) is needed
-to handle this automatically.
+already created.
 -->
 ## 限制
 
@@ -153,32 +156,12 @@ to handle this automatically.
 
 当 Pod 使用多个卷时，调度可能会永久失败：一个卷可能已经在拓扑段中创建，而该卷又没有足够的容量来创建另一个卷，
 要想从中恢复，必须要进行手动干预，比如通过增加存储容量或者删除已经创建的卷。
-需要[进一步工作](https://github.com/kubernetes/enhancements/pull/1703)来自动处理此问题。
-
-<!--
-## Enabling storage capacity tracking
-
-Storage capacity tracking is a beta feature and enabled by default in 
-a Kubernetes cluster since Kubernetes 1.21. In addition to having the
-feature enabled in the cluster, a CSI driver also has to support
-it. Please refer to the driver's documentation for details.
--->
-## 开启存储容量跟踪
-
-存储容量跟踪是一个 Beta 特性，从 Kubernetes 1.21 版本起在 Kubernetes 集群
-中默认被启用。除了在集群中启用此功能特性之外，还要求 CSI 驱动支持此特性。
-请参阅驱动的文档了解详细信息。
 
 ## {{% heading "whatsnext" %}}
 
 <!--
- - For more information on the design, see the
+- For more information on the design, see the
 [Storage Capacity Constraints for Pod Scheduling KEP](https://github.com/kubernetes/enhancements/blob/master/keps/sig-storage/1472-storage-capacity-tracking/README.md).
-- For more information on further development of this feature, see the [enhancement tracking issue #1472](https://github.com/kubernetes/enhancements/issues/1472).
-- Learn about [Kubernetes Scheduler](/docs/concepts/scheduling-eviction/kube-scheduler/)
 -->
 - 想要获得更多该设计的信息，查看
   [Storage Capacity Constraints for Pod Scheduling KEP](https://github.com/kubernetes/enhancements/blob/master/keps/sig-storage/1472-storage-capacity-tracking/README.md)。
-- 有关此功能的下一步开发信息，查看
-  [enhancement tracking issue #1472](https://github.com/kubernetes/enhancements/issues/1472)。
-- 学习 [Kubernetes 调度器](/zh/docs/concepts/scheduling-eviction/kube-scheduler/)。
diff --git a/content/zh/docs/concepts/storage/storage-classes.md b/content/zh-cn/docs/concepts/storage/storage-classes.md
similarity index 91%
rename from content/zh/docs/concepts/storage/storage-classes.md
rename to content/zh-cn/docs/concepts/storage/storage-classes.md
index 28ca72dd42..02634bb669 100644
--- a/content/zh/docs/concepts/storage/storage-classes.md
+++ b/content/zh-cn/docs/concepts/storage/storage-classes.md
@@ -23,8 +23,8 @@ with [volumes](/docs/concepts/storage/volumes/) and
 [persistent volumes](/docs/concepts/storage/persistent-volumes) is suggested.
 -->
 本文描述了 Kubernetes 中 StorageClass 的概念。建议先熟悉
-[卷](/zh/docs/concepts/storage/volumes/)和
-[持久卷](/zh/docs/concepts/storage/persistent-volumes)的概念。
+[卷](/zh-cn/docs/concepts/storage/volumes/)和
+[持久卷](/zh-cn/docs/concepts/storage/persistent-volumes)的概念。
 
 <!-- body -->
 
@@ -38,7 +38,7 @@ administrators. Kubernetes itself is unopinionated about what classes
 represent. This concept is sometimes called "profiles" in other storage
 systems.
 -->
-## 介绍
+## 介绍 {#introduction}
 
 StorageClass 为管理员提供了描述存储 "类" 的方法。
 不同的类型可能会映射到不同的服务质量等级或备份策略，或是由集群管理员制定的任意策略。
@@ -52,7 +52,7 @@ Each StorageClass contains the fields `provisioner`, `parameters`, and
 class needs to be dynamically provisioned.
 
 -->
-## StorageClass 资源
+## StorageClass 资源 {#the-storageclass-resource}
 
 每个 StorageClass 都包含 `provisioner`、`parameters` 和 `reclaimPolicy` 字段，
 这些字段会在 StorageClass 需要动态分配 PersistentVolume 时会使用到。
@@ -74,7 +74,7 @@ for details.
  -->
 管理员可以为没有申请绑定到特定 StorageClass 的 PVC 指定一个默认的存储类：
 更多详情请参阅
-[PersistentVolumeClaim 章节](/zh/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims)。
+[PersistentVolumeClaim 章节](/zh-cn/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims)。
 
 ```yaml
 apiVersion: storage.k8s.io/v1
@@ -120,7 +120,7 @@ for provisioning PVs. This field must be specified.
 | Glusterfs            |  &#x2713;  |        [Glusterfs](#glusterfs)        |
 | iSCSI                |     -      |                   -                   |
 | Quobyte              |  &#x2713;  |          [Quobyte](#quobyte)          |
-| NFS                  |     -      |                   -                   |
+| NFS                  |     -      |              [NFS](#nfs)              |
 | RBD                  |  &#x2713;  |         [Ceph RBD](#ceph-rbd)         |
 | VsphereVolume        |  &#x2713;  |          [vSphere](#vsphere)          |
 | PortworxVolume       |  &#x2713;  |  [Portworx Volume](#portworx-卷)  |
@@ -132,7 +132,7 @@ for provisioning PVs. This field must be specified.
 You are not restricted to specifying the "internal" provisioners
 listed here (whose names are prefixed with "kubernetes.io" and shipped
 alongside Kubernetes). You can also run and specify external provisioners,
-which are independent programs that follow a [specification](https://git.k8s.io/community/contributors/design-proposals/storage/volume-provisioning.md)
+which are independent programs that follow a [specification](https://github.com/kubernetes/design-proposals-archive/blob/main/storage/volume-provisioning.md))
 defined by Kubernetes. Authors of external provisioners have full discretion
 over where their code lives, how the provisioner is shipped, how it needs to be
 run, what volume plugin it uses (including Flex), etc. The repository
@@ -143,7 +143,7 @@ the specification. Some external provisioners are listed under the repository
  -->
 你不限于指定此处列出的 "内置" 制备器（其名称前缀为 "kubernetes.io" 并打包在 Kubernetes 中）。
 你还可以运行和指定外部制备器，这些独立的程序遵循由 Kubernetes 定义的
-[规范](https://git.k8s.io/community/contributors/design-proposals/storage/volume-provisioning.md)。
+[规范](https://github.com/kubernetes/design-proposals-archive/blob/main/storage/volume-provisioning.md)。
 外部供应商的作者完全可以自由决定他们的代码保存于何处、打包方式、运行方式、使用的插件（包括 Flex）等。
 代码仓库 [kubernetes-sigs/sig-storage-lib-external-provisioner](https://github.com/kubernetes-sigs/sig-storage-lib-external-provisioner)
 包含一个用于为外部制备器编写功能实现的类库。你可以访问代码仓库
@@ -170,7 +170,7 @@ StorageClass object is created, it will default to `Delete`.
 PersistentVolumes that are created manually and managed via a StorageClass will have
 whatever reclaim policy they were assigned at creation.
  -->
-### 回收策略
+### 回收策略 {#reclaim-policy}
 
 由 StorageClass 动态创建的 PersistentVolume 会在类的 `reclaimPolicy` 字段中指定回收策略，可以是
 `Delete` 或者 `Retain`。如果 StorageClass 对象被创建时没有指定 `reclaimPolicy`，它将默认为 `Delete`。
@@ -181,7 +181,7 @@ whatever reclaim policy they were assigned at creation.
 ### Allow Volume Expansion
 -->
 
-### 允许卷扩展
+### 允许卷扩展 {#allow-volume-expansion}
 
 {{< feature-state for_k8s_version="v1.11" state="beta" >}}
 
@@ -233,7 +233,7 @@ If the volume plugin does not support mount options but mount options are
 specified, provisioning will fail. Mount options are not validated on either
 the class or PV, If a mount option is invalid, the PV mount fails.
  -->
-### 挂载选项
+### 挂载选项 {#mount-options}
 
 由 StorageClass 动态创建的 PersistentVolume 将使用类中 `mountOptions` 字段指定的挂载选项。
 
@@ -243,13 +243,13 @@ the class or PV, If a mount option is invalid, the PV mount fails.
 <!--
 ### Volume Binding Mode
  -->
-### 卷绑定模式
+### 卷绑定模式 {#volume-binding-mode}
 
 <!--
 The `volumeBindingMode` field controls when [volume binding and dynamic
 provisioning](/docs/concepts/storage/persistent-volumes/#provisioning) should occur.
  -->
-`volumeBindingMode` 字段控制了[卷绑定和动态制备](/zh/docs/concepts/storage/persistent-volumes/#provisioning)
+`volumeBindingMode` 字段控制了[卷绑定和动态制备](/zh-cn/docs/concepts/storage/persistent-volumes/#provisioning)
 应该发生在什么时候。
 
 <!--
@@ -277,10 +277,10 @@ and [taints and tolerations](/docs/concepts/scheduling-eviction/taint-and-tolera
 集群管理员可以通过指定 `WaitForFirstConsumer` 模式来解决此问题。
 该模式将延迟 PersistentVolume 的绑定和制备，直到使用该 PersistentVolumeClaim 的 Pod 被创建。
 PersistentVolume 会根据 Pod 调度约束指定的拓扑来选择或制备。这些包括但不限于
-[资源需求](/zh/docs/concepts/configuration/manage-resources-containers/)、
-[节点筛选器](/zh/docs/concepts/scheduling-eviction/assign-pod-node/#nodeselector)、
-[pod 亲和性和互斥性](/zh/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity/)、
-以及[污点和容忍度](/zh/docs/concepts/scheduling-eviction/taint-and-toleration)。
+[资源需求](/zh-cn/docs/concepts/configuration/manage-resources-containers/)、
+[节点筛选器](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/#nodeselector)、
+[pod 亲和性和互斥性](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity/)、
+以及[污点和容忍度](/zh-cn/docs/concepts/scheduling-eviction/taint-and-toleration)。
 
 <!--
 The following plugins support `WaitForFirstConsumer` with dynamic provisioning:
@@ -313,9 +313,46 @@ The following plugins support `WaitForFirstConsumer` with pre-created Persistent
 and pre-created PVs, but you'll need to look at the documentation for a specific CSI driver
 to see its supported topology keys and examples.
 -->
-动态配置和预先创建的 PV 也支持 [CSI卷](/zh/docs/concepts/storage/volumes/#csi)，
+动态配置和预先创建的 PV 也支持 [CSI卷](/zh-cn/docs/concepts/storage/volumes/#csi)，
 但是你需要查看特定 CSI 驱动程序的文档以查看其支持的拓扑键名和例子。
 
+{{< note >}}
+<!-- 
+   If you choose to use `WaitForFirstConsumer`, do not use `nodeName` in the Pod spec
+   to specify node affinity. If `nodeName` is used in this case, the scheduler will be bypassed and PVC will remain in `pending` state.
+
+   Instead, you can use node selector for hostname in this case as shown below.
+-->
+   如果你选择使用 `WaitForFirstConsumer`，请不要在 Pod 规约中使用 `nodeName` 来指定节点亲和性。
+   如果在这种情况下使用 `nodeName`，Pod 将会绕过调度程序，PVC 将停留在 `pending` 状态。
+   
+   相反，在这种情况下，你可以使用节点选择器作为主机名，如下所示
+
+{{< /note >}}
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: task-pv-pod
+spec:
+  nodeSelector:
+    kubernetes.io/hostname: kube-01
+  volumes:
+    - name: task-pv-storage
+      persistentVolumeClaim:
+        claimName: task-pv-claim
+  containers:
+    - name: task-pv-container
+      image: nginx
+      ports:
+        - containerPort: 80
+          name: "http-server"
+      volumeMounts:
+        - mountPath: "/usr/share/nginx/html"
+          name: task-pv-storage
+```
+
 <!--
 ### Allowed Topologies
 -->
@@ -352,8 +389,8 @@ allowedTopologies:
 - matchLabelExpressions:
   - key: failure-domain.beta.kubernetes.io/zone
     values:
-    - us-central1-a
-    - us-central1-b
+    - us-central-1a
+    - us-central-1b
 ```
 
 <!--
@@ -369,7 +406,7 @@ There can be at most 512 parameters defined for a StorageClass.
 The total length of the parameters object including its keys and values cannot
 exceed 256 KiB.
  -->
-## 参数
+## 参数 {#parameters}
 
 Storage Classes 的参数描述了存储类的卷。取决于制备器，可以接受不同的参数。
 例如，参数 type 的值 io1 和参数 iopsPerGB 特定于 EBS PV。
@@ -393,6 +430,7 @@ parameters:
 ```
 
 <!--
+* `type`: `io1`, `gp2`, `gp2`, `sc1`, `st1`. See
 * `type`: `io1`, `gp2`, `sc1`, `st1`. See
   [AWS docs](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSVolumeTypes.html)
   for details. Default: `gp2`.
@@ -647,6 +685,41 @@ parameters:
   当动态制备持久卷时，Gluster 插件自动创建名为 `gluster-dynamic-<claimname>`
   的端点和无头服务。在 PVC 被删除时动态端点和无头服务会自动被删除。
 
+### NFS
+
+```yaml
+apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: example-nfs
+provisioner: example.com/external-nfs
+parameters:
+  server: nfs-server.example.com
+  path: /share
+  readOnly: "false"
+```
+
+<!-- 
+* `server`: Server is the hostname or IP address of the NFS server.
+* `path`: Path that is exported by the NFS server.
+* `readOnly`: A flag indicating whether the storage will be mounted as read only (default false).
+-->
+* `server`：NFS 服务器的主机名或 IP 地址。
+* `path`：NFS 服务器导出的路径。
+* `readOnly`：是否将存储挂载为只读的标志（默认为 false）。
+
+<!-- 
+Kubernetes doesn't include an internal NFS provisioner. You need to use an external provisioner to create a StorageClass for NFS.
+Here are some examples:
+* [NFS Ganesha server and external provisioner](https://github.com/kubernetes-sigs/nfs-ganesha-server-and-external-provisioner)
+* [NFS subdir external provisioner](https://github.com/kubernetes-sigs/nfs-subdir-external-provisioner)
+-->
+Kubernetes 不包含内部 NFS 驱动。你需要使用外部驱动为 NFS 创建 StorageClass。
+这里有些例子：
+* [NFS Ganesha 服务器和外部驱动](https://github.com/kubernetes-sigs/nfs-ganesha-server-and-external-provisioner)
+* [NFS subdir 外部驱动](https://github.com/kubernetes-sigs/nfs-subdir-external-provisioner)
+
+
 ### OpenStack Cinder
 
 ```yaml
@@ -683,38 +756,38 @@ OpenStack 的内部驱动已经被弃用。请使用
 <!--
 There are two types of provisioners for vSphere storage classes: 
 
-- [CSI provisioner](#csi-provisioner): `csi.vsphere.vmware.com`
+- [CSI provisioner](#vsphere-provisioner-csi): `csi.vsphere.vmware.com`
 - [vCP provisioner](#vcp-provisioner): `kubernetes.io/vsphere-volume`
 
 In-tree provisioners are [deprecated](/blog/2019/12/09/kubernetes-1-17-feature-csi-migration-beta/#why-are-we-migrating-in-tree-plugins-to-csi). For more information on the CSI provisioner, see [Kubernetes vSphere CSI Driver](https://vsphere-csi-driver.sigs.k8s.io/) and [vSphereVolume CSI migration](/docs/concepts/storage/volumes/#csi-migration-5).
 -->
 vSphere 存储类有两种制备器
 
-- [CSI 制备器](#csi-provisioner): `csi.vsphere.vmware.com`
+- [CSI 制备器](#vsphere-provisioner-csi): `csi.vsphere.vmware.com`
 - [vCP 制备器](#vcp-provisioner): `kubernetes.io/vsphere-volume`
 
 树内制备器已经被
 [弃用](/blog/2019/12/09/kubernetes-1-17-feature-csi-migration-beta/#why-are-we-migrating-in-tree-plugins-to-csi)。
 更多关于 CSI 制备器的详情，请参阅 
 [Kubernetes vSphere CSI 驱动](https://vsphere-csi-driver.sigs.k8s.io/)
-和 [vSphereVolume CSI 迁移](/zh/docs/concepts/storage/volumes/#csi-migration-5)。
+和 [vSphereVolume CSI 迁移](/zh-cn/docs/concepts/storage/volumes/#csi-migration-5)。
 
 <!--
 #### CSI Provisioner {#vsphere-provisioner-csi}
 
-The vSphere CSI StorageClass provisioner works with Tanzu Kubernetes clusters. For an example, refer to the [vSphere CSI repository](https://raw.githubusercontent.com/kubernetes-sigs/vsphere-csi-driver/master/example/vanilla-k8s-file-driver/example-sc.yaml).
+The vSphere CSI StorageClass provisioner works with Tanzu Kubernetes clusters. For an example, refer to the [vSphere CSI repository](https://github.com/kubernetes-sigs/vsphere-csi-driver/blob/master/example/vanilla-k8s-RWM-filesystem-volumes/example-sc.yaml).
 -->
 #### CSI 制备器 {#vsphere-provisioner-csi}
 
 vSphere CSI StorageClass 制备器在 Tanzu Kubernetes 集群下运行。示例请参
-[vSphere CSI 仓库](https://raw.githubusercontent.com/kubernetes-sigs/vsphere-csi-driver/master/example/vanilla-k8s-file-driver/example-sc.yaml)。
+[vSphere CSI 仓库](https://github.com/kubernetes-sigs/vsphere-csi-driver/blob/master/example/vanilla-k8s-RWM-filesystem-volumes/example-sc.yaml)。
 
 <!--
 #### vCP Provisioner 
 
 The following examples use the VMware Cloud Provider (vCP) StorageClass provisioner.  
 -->
-#### vCP 制备器
+#### vCP 制备器 {#vcp-provisioner}
 
 以下示例使用 VMware Cloud Provider (vCP) StorageClass 调度器
 
@@ -912,6 +985,17 @@ parameters:
 
 ### Quobyte
 
+{{< feature-state for_k8s_version="v1.22" state="deprecated" >}}
+
+<!-- 
+The Quobyte in-tree storage plugin is deprecated, an 
+[example](https://github.com/quobyte/quobyte-csi/blob/master/example/StorageClass.yaml)
+`StorageClass` for the out-of-tree Quobyte plugin can be found at the Quobyte CSI repository.
+-->
+Quobyte 树内（in-tree）存储插件已弃用，
+你可以在 Quobyte CSI 仓库中找到用于树外（out-of-tree）Quobyte 插件的 `StorageClass`
+[示例](https://github.com/quobyte/quobyte-csi/blob/master/example/StorageClass.yaml)。
+
 ```yaml
 apiVersion: storage.k8s.io/v1
 kind: StorageClass
@@ -992,7 +1076,7 @@ parameters:
 <!--
 ### Azure Disk
 -->
-### Azure 磁盘
+### Azure 磁盘 {#azure-disk}
 
 <!--
 #### Azure Unmanaged Disk Storage Class {#azure-disk-storage-class}
@@ -1023,7 +1107,7 @@ parameters:
 * `location`：Azure 存储帐户位置。默认为空。
 * `storageAccount`：Azure 存储帐户名称。
   如果提供存储帐户，它必须位于与集群相同的资源组中，并且 `location`
-  是被忽略的。如果未提供存储帐户，则会在与群集相同的资源组中创建新的存储帐户。
+  是被忽略的。如果未提供存储帐户，则会在与集群相同的资源组中创建新的存储帐户。
 
 <!--
 #### Azure Disk Storage Class (starting from v1.7.2) {#azure-disk-storage-class}
@@ -1073,7 +1157,7 @@ parameters:
 <!--
 ### Azure File
 -->
-### Azure 文件
+### Azure 文件 {#azure-file}
 
 ```yaml
 kind: StorageClass
@@ -1125,8 +1209,8 @@ add the `create` permission of resource `secret` for clusterrole
 `system:controller:persistent-volume-binder`.
 -->
 在存储制备期间，为挂载凭证创建一个名为 `secretName` 的 Secret。如果集群同时启用了
-[RBAC](/zh/docs/reference/access-authn-authz/rbac/) 和
-[控制器角色](/zh/docs/reference/access-authn-authz/rbac/#controller-roles)，
+[RBAC](/zh-cn/docs/reference/access-authn-authz/rbac/) 和
+[控制器角色](/zh-cn/docs/reference/access-authn-authz/rbac/#controller-roles)，
 为 `system:controller:persistent-volume-binder` 的 clusterrole 添加
 `Secret` 资源的 `create` 权限。
 
@@ -1141,7 +1225,7 @@ be read by other users.
 <!--
 ### Portworx Volume
  -->
-### Portworx 卷
+### Portworx 卷 {#portworx-volume}
 
 ```yaml
 apiVersion: storage.k8s.io/v1
@@ -1210,7 +1294,7 @@ parameters:
   storagePool: sp1
   storageMode: ThinProvisioned
   secretRef: sio-secret
-  readOnly: false
+  readOnly: "false"
   fsType: xfs
 ```
 
@@ -1342,7 +1426,7 @@ references it.
 <!--
 ### Local
 -->
-### 本地
+### 本地 {#local}
 
 {{< feature-state for_k8s_version="v1.14" state="stable" >}}
 
diff --git a/content/zh/docs/concepts/storage/storage-limits.md b/content/zh-cn/docs/concepts/storage/storage-limits.md
similarity index 93%
rename from content/zh/docs/concepts/storage/storage-limits.md
rename to content/zh-cn/docs/concepts/storage/storage-limits.md
index 14ffd377a6..6943ba3ed6 100644
--- a/content/zh/docs/concepts/storage/storage-limits.md
+++ b/content/zh-cn/docs/concepts/storage/storage-limits.md
@@ -16,22 +16,21 @@ content_type: concept
 
 <!-- overview -->
 
-<!-- This page describes the maximum number of volumes that can be attached
-to a Node for various cloud providers. -->
+<!-- 
+This page describes the maximum number of volumes that can be attached
+to a Node for various cloud providers. 
+-->
 此页面描述了各个云供应商可关联至一个节点的最大卷数。
 
-<!-- Cloud providers like Google, Amazon, and Microsoft typically have a limit on
+<!-- 
+Cloud providers like Google, Amazon, and Microsoft typically have a limit on
 how many volumes can be attached to a Node. It is important for Kubernetes to
 respect those limits. Otherwise, Pods scheduled on a Node could get stuck
-waiting for volumes to attach. -->
-
+waiting for volumes to attach. 
+-->
 谷歌、亚马逊和微软等云供应商通常对可以关联到节点的卷数量进行限制。
 Kubernetes 需要尊重这些限制。 否则，在节点上调度的 Pod 可能会卡住去等待卷的关联。
 
-
-
-
-
 <!-- body -->
 
 <!--
@@ -40,7 +39,6 @@ Kubernetes 需要尊重这些限制。 否则，在节点上调度的 Pod 可能
 The Kubernetes scheduler has default limits on the number of volumes
 that can be attached to a Node:
 -->
-
 ## Kubernetes 的默认限制
 
 The Kubernetes 调度器对关联于一个节点的卷数有默认限制：
@@ -73,20 +71,18 @@ the limit you set.
 
 The limit applies to the entire cluster, so it affects all Nodes.
 -->
-
 ## 自定义限制
 
-您可以通过设置 `KUBE_MAX_PD_VOLS` 环境变量的值来设置这些限制，然后再启动调度器。
+你可以通过设置 `KUBE_MAX_PD_VOLS` 环境变量的值来设置这些限制，然后再启动调度器。
 CSI 驱动程序可能具有不同的过程，关于如何自定义其限制请参阅相关文档。
 
-如果设置的限制高于默认限制，请谨慎使用。请参阅云提供商的文档以确保节点可支持您设置的限制。
+如果设置的限制高于默认限制，请谨慎使用。请参阅云提供商的文档以确保节点可支持你设置的限制。
 
 此限制应用于整个集群，所以它会影响所有节点。
 
 <!--
 ## Dynamic volume limits
 -->
-
 ## 动态卷限制
 
 {{< feature-state state="stable" for_k8s_version="v1.17" >}}
@@ -99,7 +95,6 @@ Dynamic volume limits are supported for following volume types.
 - Azure Disk
 - CSI
 -->
-
 以下卷类型支持动态卷限制。
 
 - Amazon EBS
@@ -111,7 +106,6 @@ Dynamic volume limits are supported for following volume types.
 For volumes managed by in-tree volume plugins, Kubernetes automatically determines the Node
 type and enforces the appropriate maximum number of volumes for the node. For example:
 -->
-
 对于由内建插件管理的卷，Kubernetes 会自动确定节点类型并确保节点上可关联的卷数目合规。 例如：
 
 <!--
@@ -132,7 +126,6 @@ Refer to the [CSI specifications](https://github.com/container-storage-interface
 
 * For volumes managed by in-tree plugins that have been migrated to a CSI driver, the maximum number of volumes will be the one reported by the CSI driver.
 -->
-
 * 在
 <a href="https://cloud.google.com/compute/">Google Compute Engine</a>环境中,
 [根据节点类型](https://cloud.google.com/compute/docs/disks/#pdnumberlimits)最多可以将127个卷关联到节点。
diff --git a/content/zh/docs/concepts/storage/volume-health-monitoring.md b/content/zh-cn/docs/concepts/storage/volume-health-monitoring.md
similarity index 56%
rename from content/zh/docs/concepts/storage/volume-health-monitoring.md
rename to content/zh-cn/docs/concepts/storage/volume-health-monitoring.md
index 4684d4353f..bf1c732fd6 100644
--- a/content/zh/docs/concepts/storage/volume-health-monitoring.md
+++ b/content/zh-cn/docs/concepts/storage/volume-health-monitoring.md
@@ -3,7 +3,6 @@ title: 卷健康监测
 content_type: concept
 ---
 <!-- 
----
 reviewers:
 - jsafrane
 - saad-ali
@@ -11,7 +10,6 @@ reviewers:
 - xing-yang
 title: Volume Health Monitoring
 content_type: concept
----
 -->
 
 <!-- overview -->
@@ -21,7 +19,9 @@ content_type: concept
 <!-- 
 {{< glossary_tooltip text="CSI" term_id="csi" >}} volume health monitoring allows CSI Drivers to detect abnormal volume conditions from the underlying storage systems and report them as events on {{< glossary_tooltip text="PVCs" term_id="persistent-volume-claim" >}} or {{< glossary_tooltip text="Pods" term_id="pod" >}}.
 -->
-{{< glossary_tooltip text="CSI" term_id="csi" >}} 卷健康监测支持 CSI 驱动从底层的存储系统着手，探测异常的卷状态，并以事件的形式上报到 {{< glossary_tooltip text="PVCs" term_id="persistent-volume-claim" >}} 或 {{< glossary_tooltip text="Pods" term_id="pod" >}}.
+{{< glossary_tooltip text="CSI" term_id="csi" >}} 卷健康监测支持 CSI 驱动从底层的存储系统着手，
+探测异常的卷状态，并以事件的形式上报到 {{< glossary_tooltip text="PVCs" term_id="persistent-volume-claim" >}}
+或 {{< glossary_tooltip text="Pods" term_id="pod" >}}.
 
 <!-- body -->
 
@@ -42,24 +42,30 @@ Kubernetes _卷健康监测_ 是 Kubernetes 容器存储接口（CSI）实现的
 {{< glossary_tooltip text="PersistentVolumeClaim" term_id="persistent-volume-claim" >}} (PVC)
 中上报一个事件。
 
-<!-- The External Health Monitor {{< glossary_tooltip text="controller" term_id="controller" >}} also watches for node failure events. You can enable node failure monitoring by setting the `enable-node-watcher` flag to true. When the external health monitor detects a node failure event, the controller reports an Event will be reported on the PVC to indicate that pods using this PVC are on a failed node.
+<!--
+The External Health Monitor {{< glossary_tooltip text="controller" term_id="controller" >}} also watches for node failure events. You can enable node failure monitoring by setting the `enable-node-watcher` flag to true. When the external health monitor detects a node failure event, the controller reports an Event will be reported on the PVC to indicate that pods using this PVC are on a failed node.
 
-If a CSI Driver supports Volume Health Monitoring feature from the node side, an Event will be reported on every Pod using the PVC when an abnormal volume condition is detected on a CSI volume.
+If a CSI Driver supports Volume Health Monitoring feature from the node side, an Event will be reported on every Pod using the PVC when an abnormal volume condition is detected on a CSI volume. In addition, Volume Health information is exposed as Kubelet VolumeStats metrics. A new metric kubelet_volume_stats_health_status_abnormal is added. This metric includes two labels: `namespace` and `persistentvolumeclaim`. The count is either 1 or 0. 1 indicates the volume is unhealthy, 0 indicates volume is healthy. For more information, please check [KEP](https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/1432-volume-health-monitor#kubelet-metrics-changes).
 -->
-外部健康监测  {{< glossary_tooltip text="控制器" term_id="controller" >}} 也会监测节点失效事件。
+外部健康监测{{< glossary_tooltip text="控制器" term_id="controller" >}}也会监测节点失效事件。
 如果要启动节点失效监测功能，你可以设置标志 `enable-node-watcher` 为 `true`。
-当外部健康监测器检测到一个节点失效事件，控制器会报送一个事件，该事件会在 PVC 上继续上报，
+当外部健康监测器检测到节点失效事件，控制器会报送一个事件，该事件会在 PVC 上继续上报，
 以表明使用此 PVC 的 Pod 正位于一个失效的节点上。
 
-如果 CSI 驱动程序支持节点测的卷健康检测，那当在 CSI 卷上检测到异常卷时，会在使用该 PVC 的每个Pod 上触发一个事件。
+如果 CSI 驱动程序支持节点测的卷健康检测，那当在 CSI 卷上检测到异常卷时，
+会在使用该 PVC 的每个Pod 上触发一个事件。
+此外，卷运行状况信息作为 Kubelet VolumeStats 指标公开。
+添加了一个新的指标 kubelet_volume_stats_health_status_abnormal。
+该指标包括两个标签：`namespace` 和 `persistentvolumeclaim`。
+计数为 1 或 0。1 表示卷不正常，0 表示卷正常。更多信息请访问[KEP](https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/1432-volume-health-monitor#kubelet-metrics-changes)。
 
 <!-- 
 You need to enable the `CSIVolumeHealth` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) to use this feature from the node side.
 -->
 {{< note >}}
-你需要启用 
-`CSIVolumeHealth` [特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
-，才能从节点测使用此特性。
+你需要启用 `CSIVolumeHealth`
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)，
+才能在节点上使用此特性。
 {{< /note >}}
 
 ## {{% heading "whatsnext" %}}
@@ -68,4 +74,5 @@ You need to enable the `CSIVolumeHealth` [feature gate](/docs/reference/command-
 See the [CSI driver documentation](https://kubernetes-csi.github.io/docs/drivers.html) to find out which CSI drivers have implemented this feature.
 -->
 参阅 [CSI 驱动程序文档](https://kubernetes-csi.github.io/docs/drivers.html)，
-可以找出有那些 CSI 驱动程序已实现了此特性。
\ No newline at end of file
+可以找出有哪些 CSI 驱动程序实现了此特性。
+
diff --git a/content/zh/docs/concepts/storage/volume-pvc-datasource.md b/content/zh-cn/docs/concepts/storage/volume-pvc-datasource.md
similarity index 98%
rename from content/zh/docs/concepts/storage/volume-pvc-datasource.md
rename to content/zh-cn/docs/concepts/storage/volume-pvc-datasource.md
index 00571f1511..d50dcdd99c 100644
--- a/content/zh/docs/concepts/storage/volume-pvc-datasource.md
+++ b/content/zh-cn/docs/concepts/storage/volume-pvc-datasource.md
@@ -1,7 +1,7 @@
 ---
 title: CSI 卷克隆
 content_type: concept
-weight: 30
+weight: 60
 ---
 
 <!--
@@ -12,7 +12,7 @@ reviewers:
 - msau42
 title: CSI Volume Cloning
 content_type: concept
-weight: 30
+weight: 60
 -->
 
 <!-- overview -->
@@ -21,7 +21,7 @@ weight: 30
 This document describes the concept of cloning existing CSI Volumes in Kubernetes.  Familiarity with [Volumes](/docs/concepts/storage/volumes) is suggested.
 -->
 本文档介绍 Kubernetes 中克隆现有 CSI 卷的概念。阅读前建议先熟悉
-[卷](/zh/docs/concepts/storage/volumes)。
+[卷](/zh-cn/docs/concepts/storage/volumes)。
 
 <!-- body -->
 
diff --git a/content/zh/docs/concepts/storage/volume-snapshot-classes.md b/content/zh-cn/docs/concepts/storage/volume-snapshot-classes.md
similarity index 88%
rename from content/zh/docs/concepts/storage/volume-snapshot-classes.md
rename to content/zh-cn/docs/concepts/storage/volume-snapshot-classes.md
index 24a9356149..47f617fe11 100644
--- a/content/zh/docs/concepts/storage/volume-snapshot-classes.md
+++ b/content/zh-cn/docs/concepts/storage/volume-snapshot-classes.md
@@ -1,7 +1,7 @@
 ---
 title: 卷快照类
 content_type: concept
-weight: 30
+weight: 41 # 置于卷快照章节后
 ---
 
 <!-- overview -->
@@ -12,8 +12,8 @@ with [volume snapshots](/docs/concepts/storage/volume-snapshots/) and
 [storage classes](/docs/concepts/storage/storage-classes) is suggested.
 -->
 本文档描述了 Kubernetes 中 VolumeSnapshotClass 的概念。建议熟悉
-[卷快照（Volume Snapshots）](/zh/docs/concepts/storage/volume-snapshots/)和
-[存储类（Storage Class）](/zh/docs/concepts/storage/storage-classes)。
+[卷快照（Volume Snapshots）](/zh-cn/docs/concepts/storage/volume-snapshots/)和
+[存储类（Storage Class）](/zh-cn/docs/concepts/storage/storage-classes)。
 
 
 <!-- body -->
@@ -41,6 +41,11 @@ The name of a VolumeSnapshotClass object is significant, and is how users can
 request a particular class. Administrators set the name and other parameters
 of a class when first creating VolumeSnapshotClass objects, and the objects cannot
 be updated once they are created.
+
+{{< note >}}
+Installation of the CRDs is the responsibility of the Kubernetes distribution. Without the required CRDs present, the creation of a VolumeSnapshotClass fails.  
+{{< /note >}}
+
 -->
 ## VolumeSnapshotClass 资源  {#the-volumesnapshortclass-resource}
 
@@ -51,6 +56,10 @@ VolumeSnapshotClass 对象的名称很重要，是用户可以请求特定类的
 管理员在首次创建 VolumeSnapshotClass 对象时设置类的名称和其他参数，
 对象一旦创建就无法更新。
 
+{{< note >}}
+CRD 的安装是 Kubernetes 发行版的责任。 如果不存在所需的 CRD，则 VolumeSnapshotClass 的创建将失败。
+{{< /note >}}
+
 ```yaml
 apiVersion: snapshot.storage.k8s.io/v1
 kind: VolumeSnapshotClass
@@ -119,4 +128,3 @@ the volume snapshot class. Different parameters may be accepted depending on the
 ## 参数 {#parameters}
 
 卷快照类具有描述属于该卷快照类的卷快照的参数，可根据 `driver` 接受不同的参数。
-
diff --git a/content/zh/docs/concepts/storage/volume-snapshots.md b/content/zh-cn/docs/concepts/storage/volume-snapshots.md
similarity index 65%
rename from content/zh/docs/concepts/storage/volume-snapshots.md
rename to content/zh-cn/docs/concepts/storage/volume-snapshots.md
index 8f7db23c70..c523fb6c4d 100644
--- a/content/zh/docs/concepts/storage/volume-snapshots.md
+++ b/content/zh-cn/docs/concepts/storage/volume-snapshots.md
@@ -1,24 +1,22 @@
 ---
 title: 卷快照
 content_type: concept
-weight: 20
+weight: 40
 ---
 
 <!--
 title: Volume Snapshots
 content_type: concept
-weight: 20
+weight: 40
 -->
 
 <!-- overview -->
 
-{{< feature-state for_k8s_version="1.17" state="beta" >}}
-
 <!--
 In Kubernetes, a _VolumeSnapshot_ represents a snapshot of a volume on a storage system. This document assumes that you are already familiar with Kubernetes [persistent volumes](/docs/concepts/storage/persistent-volumes/).
 -->
-在 Kubernetes 中，卷快照是一个存储系统上卷的快照，本文假设你已经熟悉了 Kubernetes
-的 [持久卷](/zh/docs/concepts/storage/persistent-volumes/)。
+在 Kubernetes 中，**卷快照** 是一个存储系统上卷的快照，本文假设你已经熟悉了 Kubernetes
+的[持久卷](/zh-cn/docs/concepts/storage/persistent-volumes/)。
 
 <!-- body -->
 
@@ -31,29 +29,31 @@ In Kubernetes, a _VolumeSnapshot_ represents a snapshot of a volume on a storage
 <!--
 Similar to how API resources `PersistentVolume` and `PersistentVolumeClaim` are used to provision volumes for users and administrators, `VolumeSnapshotContent` and `VolumeSnapshot` API resources are provided to create volume snapshots for users and administrators.
 -->
-与 `PersistentVolume` 和 `PersistentVolumeClaim` 两个 API 资源用于给用户和管理员提供卷类似，`VolumeSnapshotContent` 和 `VolumeSnapshot` 两个 API 资源用于给用户和管理员创建卷快照。
+与 `PersistentVolume` 和 `PersistentVolumeClaim` 这两个 API 资源用于给用户和管理员制备卷类似，
+`VolumeSnapshotContent` 和 `VolumeSnapshot` 这两个 API 资源用于给用户和管理员创建卷快照。
 
 <!--
 A `VolumeSnapshotContent` is a snapshot taken from a volume in the cluster that has been provisioned by an administrator. It is a resource in the cluster just like a PersistentVolume is a cluster resource.
 -->
-`VolumeSnapshotContent` 是一种快照，从管理员已提供的集群中的卷获取。就像持久卷是集群的资源一样，它也是集群中的资源。
+`VolumeSnapshotContent` 是从一个卷获取的一种快照，该卷由管理员在集群中进行制备。
+就像持久卷（PersistentVolume）是集群的资源一样，它也是集群中的资源。
 
 <!--
 A `VolumeSnapshot` is a request for snapshot of a volume by a user. It is similar to a PersistentVolumeClaim.
 -->
-`VolumeSnapshot` 是用户对于卷的快照的请求。它类似于持久卷声明。
+`VolumeSnapshot` 是用户对于卷的快照的请求。它类似于持久卷声明（PersistentVolumeClaim）。
 
 <!--
 `VolumeSnapshotClass` allows you to specify different attributes belonging to a `VolumeSnapshot`. These attributes may differ among snapshots taken from the same volume on the storage system and therefore cannot be expressed by using the same `StorageClass` of a `PersistentVolumeClaim`.
 -->
-`VolumeSnapshotClass` 允许指定属于 `VolumeSnapshot` 的不同属性。在从存储系统的相同卷上获取的快照之间，这些属性可能有所不同，因此不能通过使用与 `PersistentVolumeClaim` 相同的 `StorageClass` 来表示。
+`VolumeSnapshotClass` 允许指定属于 `VolumeSnapshot` 的不同属性。在从存储系统的相同卷上获取的快照之间，
+这些属性可能有所不同，因此不能通过使用与 `PersistentVolumeClaim` 相同的 `StorageClass` 来表示。
 
 <!--
 Volume snapshots provide Kubernetes users with a standardized way to copy a volume's contents at a particular point in time without creating an entirely new volume. This functionality enables, for example, database administrators to backup databases before performing edit or delete modifications.
 -->
-卷快照能力为 Kubernetes 用户提供了一种标准的方式来在指定时间点
-复制卷的内容，并且不需要创建全新的卷。例如，这一功能使得数据库管理员
-能够在执行编辑或删除之类的修改之前对数据库执行备份。
+卷快照能力为 Kubernetes 用户提供了一种标准的方式来在指定时间点复制卷的内容，并且不需要创建全新的卷。
+例如，这一功能使得数据库管理员能够在执行编辑或删除之类的修改之前对数据库执行备份。
 
 <!--
 Users need to be aware of the following when using this feature:
@@ -68,8 +68,8 @@ Users need to be aware of the following when using this feature:
 * CSI drivers may or may not have implemented the volume snapshot functionality. The CSI drivers that have provided support for volume snapshot will likely use the csi-snapshotter. See [CSI Driver documentation](https://kubernetes-csi.github.io/docs/) for details.
 * The CRDs and snapshot controller installations are the responsibility of the Kubernetes distribution.
 -->
-* API 对象 `VolumeSnapshot`，`VolumeSnapshotContent` 和 `VolumeSnapshotClass` 
-  是 {{< glossary_tooltip term_id="CustomResourceDefinition" text="CRDs" >}}，
+* API 对象 `VolumeSnapshot`，`VolumeSnapshotContent` 和 `VolumeSnapshotClass`
+  是 {{< glossary_tooltip term_id="CustomResourceDefinition" text="CRD" >}}，
   不属于核心 API。
 * `VolumeSnapshot` 支持仅可用于 CSI 驱动。
 * 作为 `VolumeSnapshot` 部署过程的一部分，Kubernetes 团队提供了一个部署于控制平面的快照控制器，
@@ -78,12 +78,12 @@ Users need to be aware of the following when using this feature:
   并且负责创建和删除 `VolumeSnapshotContent` 对象。
   边车 csi-snapshotter 监视 `VolumeSnapshotContent` 对象，
   并且触发针对 CSI 端点的 `CreateSnapshot` 和 `DeleteSnapshot` 的操作。
-* 还有一个验证性质的 Webhook 服务器，可以对快照对象进行更严格的验证。 
-  Kubernetes 发行版应将其与快照控制器和 CRD（而非 CSI 驱动程序）一起安装。 
+* 还有一个验证性质的 Webhook 服务器，可以对快照对象进行更严格的验证。
+  Kubernetes 发行版应将其与快照控制器和 CRD（而非 CSI 驱动程序）一起安装。
   此服务器应该安装在所有启用了快照功能的 Kubernetes 集群中。
-* CSI 驱动可能实现，也可能没有实现卷快照功能。CSI 驱动可能会使用 csi-snapshotter 
+* CSI 驱动可能实现，也可能没有实现卷快照功能。CSI 驱动可能会使用 csi-snapshotter
   来提供对卷快照的支持。详见 [CSI 驱动程序文档](https://kubernetes-csi.github.io/docs/)
-* Kubernetes 负责 CRDs 和快照控制器的安装。
+* Kubernetes 负责 CRD 和快照控制器的安装。
 
 <!--
 ## Lifecycle of a volume snapshot and volume snapshot content
@@ -92,33 +92,36 @@ Users need to be aware of the following when using this feature:
 -->
 ## 卷快照和卷快照内容的生命周期 {#lifecycle-of-a-volume-snapshot-and-volume-snapshot-content}
 
-`VolumeSnapshotContents` 是集群中的资源。`VolumeSnapshots` 是对于这些资源的请求。`VolumeSnapshotContents` 和 `VolumeSnapshots` 之间的交互遵循以下生命周期：
+`VolumeSnapshotContents` 是集群中的资源。`VolumeSnapshots` 是对于这些资源的请求。
+`VolumeSnapshotContents` 和 `VolumeSnapshots` 之间的交互遵循以下生命周期：
 
 <!--
 ### Provisioning Volume Snapshot
 
 There are two ways snapshots may be provisioned: pre-provisioned or dynamically provisioned.
 -->
-### 供应卷快照 {#provisioning-volume-snapshot}
+### 制备卷快照 {#provisioning-volume-snapshot}
 
-快照可以通过两种方式进行配置：预配置或动态配置。
+快照可以通过两种方式进行制备：预制备或动态制备。
 
 <!--
 #### Pre-provisioned {#static}
 A cluster administrator creates a number of `VolumeSnapshotContents`. They carry the details of the real volume snapshot on the storage system which is available for use by cluster users. They exist in the Kubernetes API and are available for consumption.
 -->
-#### 预配置 {#static}
-集群管理员创建多个 `VolumeSnapshotContents`。它们带有存储系统上实际卷快照的详细信息，可以供集群用户使用。它们存在于 Kubernetes API 中，并且能够被使用。
+#### 预制备 {#static}
+
+集群管理员创建多个 `VolumeSnapshotContents`。它们带有存储系统上实际卷快照的详细信息，可以供集群用户使用。
+它们存在于 Kubernetes API 中，并且能够被使用。
 
 <!--
 #### Dynamic
 
 Instead of using a pre-existing snapshot, you can request that a snapshot to be dynamically taken from a PersistentVolumeClaim. The [VolumeSnapshotClass](/docs/concepts/storage/volume-snapshot-classes/) specifies storage provider-specific parameters to use when taking a snapshot.
 -->
-#### 动态的 {#dynamic}
+#### 动态制备 {#dynamic}
 
 可以从 `PersistentVolumeClaim` 中动态获取快照，而不用使用已经存在的快照。
-在获取快照时，[卷快照类](/zh/docs/concepts/storage/volume-snapshot-classes/)
+在获取快照时，[卷快照类](/zh-cn/docs/concepts/storage/volume-snapshot-classes/)
 指定要用的特定于存储提供程序的参数。
 
 <!--
@@ -128,12 +131,13 @@ The snapshot controller handles the binding of a `VolumeSnapshot` object with an
 -->
 ### 绑定 {#binding}
 
-在预配置和动态配置场景下，快照控制器处理绑定 `VolumeSnapshot` 对象和其合适的 `VolumeSnapshotContent` 对象。绑定关系是一对一的。
+在预制备和动态制备场景下，快照控制器处理绑定 `VolumeSnapshot` 对象和其合适的 `VolumeSnapshotContent` 对象。
+绑定关系是一对一的。
 
 <!--
 In the case of pre-provisioned binding, the VolumeSnapshot will remain unbound until the requested VolumeSnapshotContent object is created.
 -->
-在预配置快照绑定场景下，`VolumeSnapshotContent` 对象创建之后，才会和 `VolumeSnapshot` 进行绑定。
+在预制备快照绑定场景下，`VolumeSnapshotContent` 对象创建之后，才会和 `VolumeSnapshot` 进行绑定。
 
 <!--
 ### Persistent Volume Claim as Snapshot Source Protection
@@ -146,16 +150,20 @@ API objects are not removed from the system while a snapshot is being taken from
 ### 快照源的持久性卷声明保护
 
 这种保护的目的是确保在从系统中获取快照时，不会将正在使用的
- {{< glossary_tooltip text="PersistentVolumeClaim" term_id="persistent-volume-claim" >}} 
+ {{< glossary_tooltip text="PersistentVolumeClaim" term_id="persistent-volume-claim" >}}
  API 对象从系统中删除（因为这可能会导致数据丢失）。
 
 <!--
 
 While a snapshot is being taken of a PersistentVolumeClaim, that PersistentVolumeClaim is in-use. If you delete a PersistentVolumeClaim API object in active use as a snapshot source, the PersistentVolumeClaim object is not removed immediately. Instead, removal of the PersistentVolumeClaim object is postponed until the snapshot is readyToUse or aborted.
 -->
-如果一个 PVC 正在被快照用来作为源进行快照创建，则该 PVC 是使用中的。如果用户删除正作为快照源的 PVC API 对象，则 PVC 对象不会立即被删除掉。相反，PVC 对象的删除将推迟到任何快照不在主动使用它为止。当快照的 `Status` 中的 `ReadyToUse`值为 `true` 时，PVC 将不再用作快照源。
+如果一个 PVC 正在被快照用来作为源进行快照创建，则该 PVC 是使用中的。如果用户删除正作为快照源的 PVC API 对象，
+则 PVC 对象不会立即被删除掉。相反，PVC 对象的删除将推迟到任何快照不在主动使用它为止。
+当快照的 `Status` 中的 `ReadyToUse`值为 `true` 时，PVC 将不再用作快照源。
 
-当从 `PersistentVolumeClaim` 中生成快照时，`PersistentVolumeClaim` 就在被使用了。如果删除一个作为快照源的 `PersistentVolumeClaim` 对象，这个 `PersistentVolumeClaim` 对象不会立即被删除的。相反，删除 `PersistentVolumeClaim` 对象的动作会被放弃，或者推迟到快照的 Status 为 ReadyToUse时再执行。
+当从 `PersistentVolumeClaim` 中生成快照时，`PersistentVolumeClaim` 就在被使用了。
+如果删除一个作为快照源的 `PersistentVolumeClaim` 对象，这个 `PersistentVolumeClaim` 对象不会立即被删除的。
+相反，删除 `PersistentVolumeClaim` 对象的动作会被放弃，或者推迟到快照的 Status 为 ReadyToUse 时再执行。
 
 <!--
 ### Delete
@@ -164,7 +172,9 @@ Deletion is triggered by deleting the `VolumeSnapshot` object, and the `Deletion
 -->
 ### 删除 {#delete}
 
-删除 `VolumeSnapshot` 对象触发删除 `VolumeSnapshotContent` 操作，并且 `DeletionPolicy` 会紧跟着执行。如果 `DeletionPolicy` 是 `Delete`，那么底层存储快照会和 `VolumeSnapshotContent` 一起被删除。如果 `DeletionPolicy` 是 `Retain`，那么底层快照和 `VolumeSnapshotContent` 都会被保留。
+删除 `VolumeSnapshot` 对象触发删除 `VolumeSnapshotContent` 操作，并且 `DeletionPolicy` 会紧跟着执行。
+如果 `DeletionPolicy` 是 `Delete`，那么底层存储快照会和 `VolumeSnapshotContent` 一起被删除。
+如果 `DeletionPolicy` 是 `Retain`，那么底层快照和 `VolumeSnapshotContent` 都会被保留。
 
 <!--
 ## VolumeSnapshots
@@ -173,7 +183,7 @@ Each VolumeSnapshot contains a spec and a status.
 -->
 ## 卷快照 {#volume-snapshots}
 
-每个 `VolumeSnapshot` 包含一个 spec 和一个状态。
+每个 `VolumeSnapshot` 包含一个 spec 和一个 status。
 
 ```yaml
 apiVersion: snapshot.storage.k8s.io/v1
@@ -194,16 +204,16 @@ A volume snapshot can request a particular class by specifying the name of a
 using the attribute `volumeSnapshotClassName`. If nothing is set, then the default class is used if available.
 -->
 `persistentVolumeClaimName` 是 `PersistentVolumeClaim` 数据源对快照的名称。
-这个字段是动态配置快照中的必填字段。
+这个字段是动态制备快照中的必填字段。
 
-卷快照可以通过指定 [VolumeSnapshotClass](/zh/docs/concepts/storage/volume-snapshot-classes/)
+卷快照可以通过指定 [VolumeSnapshotClass](/zh-cn/docs/concepts/storage/volume-snapshot-classes/)
 使用 `volumeSnapshotClassName` 属性来请求特定类。如果没有设置，那么使用默认类（如果有）。
 
 <!--
 For pre-provisioned snapshots, you need to specify a `volumeSnapshotContentName` as the source for the snapshot as shown in the following example. The `volumeSnapshotContentName` source field is required for pre-provisioned snapshots.
 -->
-如下面例子所示，对于预配置的快照，需要给快照指定 `volumeSnapshotContentName` 来作为源。
-对于预配置的快照 `source` 中的`volumeSnapshotContentName` 字段是必填的。
+如下面例子所示，对于预制备的快照，需要给快照指定 `volumeSnapshotContentName` 作为来源。
+对于预制备的快照 `source` 中的`volumeSnapshotContentName` 字段是必填的。
 
 ```yaml
 apiVersion: snapshot.storage.k8s.io/v1
@@ -221,7 +231,8 @@ spec:
 Each VolumeSnapshot contains a spec and a status, which is the specification and status of the volume snapshot.
 Each VolumeSnapshotContent contains a spec and status. In dynamic provisioning, the snapshot common controller creates `VolumeSnapshotContent` objects. Here is an example:
 -->
-每个 VolumeSnapshotContent 对象包含 spec 和 status。在动态配置时，快照通用控制器创建 `VolumeSnapshotContent` 对象。下面是例子：
+每个 VolumeSnapshotContent 对象包含 spec 和 status。
+在动态制备时，快照通用控制器创建 `VolumeSnapshotContent` 对象。下面是例子：
 
 ```yaml
 apiVersion: snapshot.storage.k8s.io/v1
@@ -233,6 +244,7 @@ spec:
   driver: hostpath.csi.k8s.io
   source:
     volumeHandle: ee0cfb94-f8d4-11e9-b2d8-0242ac110002
+  sourceVolumeMode: Filesystem
   volumeSnapshotClassName: csi-hostpath-snapclass
   volumeSnapshotRef:
     name: new-snapshot-test
@@ -247,7 +259,7 @@ For pre-provisioned snapshots, you (as cluster administrator) are responsible fo
 -->
 `volumeHandle` 是存储后端创建卷的唯一标识符，在卷创建期间由 CSI 驱动程序返回。动态设置快照需要此字段。它指出了快照的卷源。
 
-对于预配置快照，你（作为集群管理员）要按如下命令来创建 `VolumeSnapshotContent` 对象。
+对于预制备快照，你（作为集群管理员）要按如下命令来创建 `VolumeSnapshotContent` 对象。
 
 ```yaml
 apiVersion: snapshot.storage.k8s.io/v1
@@ -259,6 +271,7 @@ spec:
   driver: hostpath.csi.k8s.io
   source:
     snapshotHandle: 7bdd0de3-aaeb-11e8-9aae-0242ac110002
+  sourceVolumeMode: Filesystem
   volumeSnapshotRef:
     name: new-snapshot-test
     namespace: default
@@ -266,22 +279,90 @@ spec:
 <!--
 `snapshotHandle` is the unique identifier of the volume snapshot created on the storage backend. This field is required for the pre-provisioned snapshots. It specifies the CSI snapshot id on the storage system that this `VolumeSnapshotContent` represents.
 -->
-`snapshotHandle` 是存储后端创建卷的唯一标识符。对于预设置快照，这个字段是必须的。它指定此 `VolumeSnapshotContent` 表示的存储系统上的 CSI 快照 id。
+`snapshotHandle` 是存储后端创建卷的唯一标识符。对于预设置快照，这个字段是必须的。
+它指定此 `VolumeSnapshotContent` 表示的存储系统上的 CSI 快照 ID。
+
+<!--
+`sourceVolumeMode` is the mode of the volume whose snapshot is taken. The value 
+of the `sourceVolumeMode` field can be either `Filesystem` or `Block`. If the 
+source volume mode is not specified, Kubernetes treats the snapshot as if the 
+source volume's mode is unknown.
+-->
+`sourceVolumeMode` 是创建快照的卷的模式。`sourceVolumeMode` 字段的值可以是
+`Filesystem` 或 `Block`。如果没有指定源卷模式，Kubernetes 会将快照视为未知的源卷模式。
+
+<!--
+## Converting the volume mode of a Snapshot {#convert-volume-mode}
+
+If the `VolumeSnapshots` API installed on your cluster supports the `sourceVolumeMode`
+field, then the API has the capability to prevent unauthorized users from converting
+the mode of a volume.
+
+To check if your cluster has capability for this feature, run the following command:
+-->
+## 转换快照的卷模式 {#convert-volume-mode}
+
+如果在你的集群上安装的 `VolumeSnapshots` API 支持 `sourceVolumeMode`
+字段，则该 API 可以防止未经授权的用户转换卷的模式。
+
+要检查你的集群是否具有此特性的能力，可以运行如下命令：
+
+```yaml
+$ kubectl get crd volumesnapshotcontent -o yaml
+```
+
+<!--
+If you want to allow users to create a `PersistentVolumeClaim` from an existing
+`VolumeSnapshot`, but with a different volume mode than the source, the annotation
+`snapshot.storage.kubernetes.io/allowVolumeModeChange: "true"`needs to be added to
+the `VolumeSnapshotContent` that corresponds to the `VolumeSnapshot`.
+-->
+如果你希望允许用户从现有的 `VolumeSnapshot` 创建 `PersistentVolumeClaim`，
+但是使用与源卷不同的卷模式，则需要添加注解
+`snapshot.storage.kubernetes.io/allowVolumeModeChange: "true"`
+到对应 `VolumeSnapshot` 的 `VolumeSnapshotContent` 中。
+<!--
+For pre-provisioned snapshots, `Spec.SourceVolumeMode` needs to be populated
+by the cluster administrator.
+
+An example `VolumeSnapshotContent` resource with this feature enabled would look like:
+-->
+对于预制备的快照，`Spec.SourceVolumeMode` 需要由集群管理员填充。
+
+启用此特性的 `VolumeSnapshotContent` 资源示例如下所示：
+
+```yaml
+apiVersion: snapshot.storage.k8s.io/v1
+kind: VolumeSnapshotContent
+metadata:
+  name: new-snapshot-content-test
+  annotations:
+    - snapshot.storage.kubernetes.io/allowVolumeModeChange: "true"
+spec:
+  deletionPolicy: Delete
+  driver: hostpath.csi.k8s.io
+  source:
+    snapshotHandle: 7bdd0de3-aaeb-11e8-9aae-0242ac110002
+  sourceVolumeMode: Filesystem
+  volumeSnapshotRef:
+    name: new-snapshot-test
+    namespace: default
+```
 
 <!--
 ## Provisioning Volumes from Snapshots
 -->
-## 从快照供应卷
+## 从快照制备卷 {#provisioning-volumes-from-snapshots}
 
 <!--
 You can provision a new volume, pre-populated with data from a snapshot, by using
 the *dataSource* field in the `PersistentVolumeClaim` object.
 -->
-你可以配置一个新卷，该卷预填充了快照中的数据，在 `持久卷声明` 对象中使用 *dataSource* 字段。
+你可以制备一个新卷，该卷预填充了快照中的数据，在 `持久卷声明` 对象中使用 **dataSource** 字段。
 
 <!--
 For more details, see
 [Volume Snapshot and Restore Volume from Snapshot](/docs/concepts/storage/persistent-volumes/#volume-snapshot-and-restore-volume-from-snapshot-support).
 -->
 更多详细信息，请参阅
-[卷快照和从快照还原卷](/zh/docs/concepts/storage/persistent-volumes/#volume-snapshot-and-restore-volume-from-snapshot-support)。
+[卷快照和从快照还原卷](/zh-cn/docs/concepts/storage/persistent-volumes/#volume-snapshot-and-restore-volume-from-snapshot-support)。
diff --git a/content/zh/docs/concepts/storage/volumes.md b/content/zh-cn/docs/concepts/storage/volumes.md
similarity index 73%
rename from content/zh/docs/concepts/storage/volumes.md
rename to content/zh-cn/docs/concepts/storage/volumes.md
index 81e4ebf738..cd5a6da040 100644
--- a/content/zh/docs/concepts/storage/volumes.md
+++ b/content/zh-cn/docs/concepts/storage/volumes.md
@@ -25,18 +25,16 @@ but with a clean state. A second problem occurs when sharing files
 between containers running together in a `Pod`.
 The Kubernetes {{< glossary_tooltip text="volume" term_id="volume" >}} abstraction
 solves both of these problems.
+Familiarity with [Pods](/docs/concepts/workloads/pods/) is suggested.
 -->
-Container 中的文件在磁盘上是临时存放的，这给 Container 中运行的较重要的应用
-程序带来一些问题。问题之一是当容器崩溃时文件丢失。kubelet 会重新启动容器，
-但容器会以干净的状态重启。
+Container 中的文件在磁盘上是临时存放的，这给 Container 中运行的较重要的应用程序带来一些问题。
+问题之一是当容器崩溃时文件丢失。
+kubelet 会重新启动容器，但容器会以干净的状态重启。
 第二个问题会在同一 `Pod` 中运行多个容器并共享文件时出现。
 Kubernetes {{< glossary_tooltip text="卷（Volume）" term_id="volume" >}}
 这一抽象概念能够解决这两个问题。
 
-<!--
-Familiarity with [Pods](/docs/user-guide/pods) is suggested.
--->
-阅读本文前建议你熟悉一下 [Pods](/zh/docs/concepts/workloads/pods)。 
+阅读本文前建议你熟悉一下 [Pod](/zh-cn/docs/concepts/workloads/pods)。 
 
 <!-- body -->
 
@@ -51,7 +49,7 @@ drivers, but the functionality is somewhat limited.
 -->
 ## 背景  {#background}
 
-Docker 也有 [卷（Volume）](https://docs.docker.com/storage/) 的概念，但对它只有少量且松散的管理。
+Docker 也有[卷（Volume）](https://docs.docker.com/storage/) 的概念，但对它只有少量且松散的管理。
 Docker 卷是磁盘上或者另外一个容器内的一个目录。
 Docker 提供卷驱动程序，但是其功能非常有限。
 
@@ -59,15 +57,15 @@ Docker 提供卷驱动程序，但是其功能非常有限。
 Kubernetes supports many types of volumes. A {{< glossary_tooltip term_id="pod" text="Pod" >}}
 can use any number of volume types simultaneously.
 Ephemeral volume types have a lifetime of a pod, but persistent volumes exist beyond
-the lifetime of a pod. When a pod ceases to exist, Kubernetes destroys ephemeral volumes; 
-however, Kubernetes does not destroy persistent volumes. 
+the lifetime of a pod. When a pod ceases to exist, Kubernetes destroys ephemeral volumes;
+however, Kubernetes does not destroy persistent volumes.
 For any kind of volume in a given pod, data is preserved across container restarts.
 -->
 Kubernetes 支持很多类型的卷。
 {{< glossary_tooltip term_id="pod" text="Pod" >}} 可以同时使用任意数目的卷类型。
 临时卷类型的生命周期与 Pod 相同，但持久卷可以比 Pod 的存活期长。
-当 Pod 不再存在时，Kubernetes 也会销毁临时卷；不过 Kubernetes 不会销毁
-持久卷。对于给定 Pod 中任何类型的卷，在容器重启期间数据都不会丢失。
+当 Pod 不再存在时，Kubernetes 也会销毁临时卷；不过 Kubernetes 不会销毁持久卷。
+对于给定 Pod 中任何类型的卷，在容器重启期间数据都不会丢失。
 
 <!--
 At its core, a volume is just a directory, possibly with some data in it, which
@@ -76,27 +74,41 @@ medium that backs it, and the contents of it are determined by the particular
 volume type used.
 -->
 卷的核心是一个目录，其中可能存有数据，Pod 中的容器可以访问该目录中的数据。
-所采用的特定的卷类型将决定该目录如何形成的、使用何种介质保存数据以及目录中存放
-的内容。
+所采用的特定的卷类型将决定该目录如何形成的、使用何种介质保存数据以及目录中存放的内容。
 
 <!--
 To use a volume, specify the volumes to provide for the Pod in `.spec.volumes`
 and declare where to mount those volumes into containers in `.spec.containers[*].volumeMounts`.
-A process in a container sees a filesystem view composed from their Docker
-image and volumes. The [Docker image](https://docs.docker.com/userguide/dockerimages/)
-is at the root of the filesystem hierarchy. Volumes mount at the specified paths within
-the image. Volumes can not mount onto other volumes or have hard links to
-other volumes. Each Container in the Pod's configuration must independently specify where to
-mount each volume.
+A process in a container sees a filesystem view composed from the initial contents of
+the {{< glossary_tooltip text="container image" term_id="image" >}}, plus volumes
+(if defined) mounted inside the container.
+The process sees a root filesystem that initially matches the contents of the container
+image.
+Any writes to within that filesystem hierarchy, if allowed, affect what that process views
+when it performs a subsequent filesystem access.
 -->
 使用卷时, 在 `.spec.volumes` 字段中设置为 Pod 提供的卷，并在
 `.spec.containers[*].volumeMounts` 字段中声明卷在容器中的挂载位置。
-容器中的进程看到的是由它们的 Docker 镜像和卷组成的文件系统视图。
-[Docker 镜像](https://docs.docker.com/userguide/dockerimages/) 
-位于文件系统层次结构的根部。各个卷则挂载在镜像内的指定路径上。
-卷不能挂载到其他卷之上，也不能与其他卷有硬链接。
+容器中的进程看到的文件系统视图是由它们的 {{< glossary_tooltip text="容器镜像" term_id="image" >}}
+的初始内容以及挂载在容器中的卷（如果定义了的话）所组成的。
+其中根文件系统同容器镜像的内容相吻合。
+任何在该文件系统下的写入操作，如果被允许的话，都会影响接下来容器中进程访问文件系统时所看到的内容。
+
+<!--
+Volumes mount at the [specified paths](#using-subpath) within
+the image.
+For each container defined within a Pod, you must independently specify where
+to mount each volume that the container uses.
+
+Volumes cannot mount within other volumes (but see [Using subPath](#using-subpath)
+for a related mechanism). Also, a volume cannot contain a hard link to anything in
+a different volume.
+-->
+卷挂载在镜像中的[指定路径](#using-subpath)下。
 Pod 配置中的每个容器必须独立指定各个卷的挂载位置。
 
+卷不能挂载到其他卷之上（不过存在一种[使用 subPath](#using-subpath) 的相关机制），也不能与其他卷有硬链接。
+
 <!--
 ## Types of Volumes
 
@@ -106,18 +118,24 @@ Kubernetes supports several types of Volumes:
 
 Kubernetes 支持下列类型的卷：
 
-### awsElasticBlockStore {#awselasticblockstore}
-
 <!--
+### awsElasticBlockStore (deprecated) {#awselasticblockstore}
+
+{{< feature-state for_k8s_version="v1.17" state="deprecated" >}}
+
 An `awsElasticBlockStore` volume mounts an Amazon Web Services (AWS)
 [EBS Volume](http://aws.amazon.com/ebs/) into your Pod.  Unlike
 `emptyDir`, which is erased when a Pod is removed, the contents of an EBS
 volume are persisted and the volume is unmounted. This means that an
 EBS volume can be pre-populated with data, and that data can be shared between pods.
 -->
-`awsElasticBlockStore` 卷将 Amazon Web服务（AWS）[EBS 卷](https://aws.amazon.com/ebs/)
-挂载到你的 Pod 中。与 `emptyDir` 在 Pod 被删除时也被删除不同，EBS 卷的内容在删除 Pod 时
-会被保留，卷只是被卸载掉了。
+### awsElasticBlockStore （已弃用）   {#awselasticblockstore}
+
+{{< feature-state for_k8s_version="v1.17" state="deprecated" >}}
+
+`awsElasticBlockStore` 卷将 Amazon Web 服务（AWS）[EBS 卷](https://aws.amazon.com/ebs/)挂载到你的
+Pod 中。与 `emptyDir` 在 Pod 被删除时也被删除不同，EBS 卷的内容在删除
+Pod 时会被保留，卷只是被卸载掉了。
 这意味着 EBS 卷可以预先填充数据，并且该数据可以在 Pod 之间共享。
 
 <!--
@@ -157,7 +175,7 @@ aws ec2 create-volume --availability-zone=eu-west-1a --size=10 --volume-type=gp2
 Make sure the zone matches the zone you brought up your cluster in. Check that the size and
 EBS volume type are suitable for your use.
 -->
-确保该区域与你的群集所在的区域相匹配。还要检查卷的大小和 EBS 卷类型都适合你的用途。
+确保该区域与你的集群所在的区域相匹配。还要检查卷的大小和 EBS 卷类型都适合你的用途。
 
 <!--
 #### AWS EBS Example configuration
@@ -204,9 +222,10 @@ driver](https://github.com/kubernetes-sigs/aws-ebs-csi-driver)
 must be installed on the cluster and the `CSIMigration` and `CSIMigrationAWS`
 beta features must be enabled.
 -->
-如果启用了对 `awsElasticBlockStore` 的 `CSIMigration` 特性支持，所有插件操作都
-不再指向树内插件（In-Tree Plugin），转而指向 `ebs.csi.aws.com` 容器存储接口
-（Container Storage Interface，CSI）驱动。为了使用此特性，必须在集群中安装
+如果启用了对 `awsElasticBlockStore` 的 `CSIMigration`
+特性支持，所有插件操作都不再指向树内插件（In-Tree Plugin），转而指向
+`ebs.csi.aws.com` 容器存储接口（Container Storage Interface，CSI）驱动。
+为了使用此特性，必须在集群中安装
 [AWS EBS CSI 驱动](https://github.com/kubernetes-sigs/aws-ebs-csi-driver)，
 并确保 `CSIMigration` 和 `CSIMigrationAWS` Beta 功能特性被启用。
 
@@ -219,56 +238,80 @@ beta features must be enabled.
 
 <!--
 To disable the `awsElasticBlockStore` storage plugin from being loaded by the controller manager
-and the kubelet, set the `CSIMigrationAWSComplete` flag to `true`. This feature requires the `ebs.csi.aws.com` Container Storage Interface (CSI) driver installed on all worker nodes.
+and the kubelet, set the `InTreePluginAWSUnregister` flag to `true`.
 -->
-如欲禁止 `awsElasticBlockStore` 存储插件被控制器管理器和 kubelet
-组件加载，可将 `CSIMigrationAWSComplete` 特性门控设置为 `true`。此特性要求在
-集群中所有工作节点上安装 `ebs.csi.aws.com` 容器存储接口驱动。
-
-### azureDisk {#azuredisk}
+要禁止控制器管理器和 kubelet 加载 `awsElasticBlockStore` 存储插件，
+请将 `InTreePluginAWSUnregister` 标志设置为 `true`。
 
 <!--
+### azureDisk (deprecated) {#azuredisk}
+
+{{< feature-state for_k8s_version="v1.19" state="deprecated" >}}
+
 The `azureDisk` volume type mounts a Microsoft Azure [Data Disk](https://docs.microsoft.com/en-us/azure/aks/csi-storage-drivers) into a pod.
 
-For more details, see the [`azureDisk` volume plugin](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/azure_disk/README.md).
+For more details, see the [`azureDisk` volume plugin](https://github.com/kubernetes/examples/tree/master/staging/volumes/azure_disk/README.md).
 -->
+### azureDisk （已弃用）   {#azuredisk}
+
+{{< feature-state for_k8s_version="v1.19" state="deprecated" >}}
 
 `azureDisk` 卷类型用来在 Pod 上挂载 Microsoft Azure
 [数据盘（Data Disk）](https://azure.microsoft.com/en-us/documentation/articles/virtual-machines-linux-about-disks-vhds/) 。
-若需了解更多详情，请参考 [`azureDisk` 卷插件](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/azure_disk/README.md)。
+若需了解更多详情，请参考 [`azureDisk` 卷插件](https://github.com/kubernetes/examples/tree/master/staging/volumes/azure_disk/README.md)。
 
 <!--
 #### azureDisk CSI Migration
 -->
 #### azureDisk 的 CSI 迁移  {#azuredisk-csi-migration}
 
-{{< feature-state for_k8s_version="v1.19" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 <!--
 The `CSIMigration` feature for `azureDisk`, when enabled, redirects all plugin operations
 from the existing in-tree plugin to the `disk.csi.azure.com` Container
-Storage Interface (CSI) Driver. In order to use this feature, the [Azure Disk CSI
-Driver](https://github.com/kubernetes-sigs/azuredisk-csi-driver)
-must be installed on the cluster and the `CSIMigration` and `CSIMigrationAzureDisk`
-features must be enabled.
+Storage Interface (CSI) Driver. In order to use this feature, the
+[Azure Disk CSI Driver](https://github.com/kubernetes-sigs/azuredisk-csi-driver)
+must be installed on the cluster and the `CSIMigration` feature must be enabled.
 -->
 
-启用 `azureDisk` 的 `CSIMigration` 功能后，所有插件操作从现有的树内插件重定向到
+启用 `azureDisk` 的 `CSIMigration` 特性后，所有插件操作从现有的树内插件重定向到
 `disk.csi.azure.com` 容器存储接口（CSI）驱动程序。
-为了使用此功能，必须在集群中安装
+为了使用此特性，必须在集群中安装
 [Azure 磁盘 CSI 驱动程序](https://github.com/kubernetes-sigs/azuredisk-csi-driver)，
-并且 `CSIMigration` 和 `CSIMigrationAzureDisk` 功能必须被启用。
-
-### azureFile {#azurefile}
+并且 `CSIMigration` 特性必须被启用。
 
 <!--
+#### azureDisk CSI migration complete
+
+{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+
+To disable the `azureDisk` storage plugin from being loaded by the controller manager
+and the kubelet, set the `InTreePluginAzureDiskUnregister` flag to `true`.
+-->
+#### azureDisk CSI 迁移完成
+
+{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+
+要禁止控制器管理器和 kubelet 加载 `azureDisk` 存储插件，
+请将 `InTreePluginAzureDiskUnregister` 标志设置为 `true`。
+
+<!--
+### azureFile (deprecated) {#azurefile}
+
+{{< feature-state for_k8s_version="v1.21" state="deprecated" >}}
+
 The `azureFile` volume type mounts a Microsoft Azure File volume (SMB 2.1 and 3.0)
 into a Pod.
 
-For more details, see the [`azureFile` volume plugin](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/azure_file/README.md).
+For more details, see the [`azureFile` volume plugin](https://github.com/kubernetes/examples/tree/master/staging/volumes/azure_file/README.md).
 -->
+### azureFile （已弃用）    {#azurefile}
+
+{{< feature-state for_k8s_version="v1.21" state="deprecated" >}}
+
 `azureFile` 卷类型用来在 Pod 上挂载 Microsoft Azure 文件卷（File Volume）（SMB 2.1 和 3.0）。
-更多详情请参考 [`azureFile` 卷插件](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/azure_file/README.md)。
+更多详情请参考 [`azureFile` 卷插件](https://github.com/kubernetes/examples/tree/master/staging/volumes/azure_file/README.md)。
 
 <!--
 #### azureFile CSI migration
@@ -285,18 +328,34 @@ Driver](https://github.com/kubernetes-sigs/azurefile-csi-driver)
 must be installed on the cluster and the `CSIMigration` and `CSIMigrationAzureFile`
 [feature gates](/docs/reference/command-line-tools-reference/feature-gates/) must be enabled.
 -->
-启用 `azureFile` 的 `CSIMigration` 功能后，所有插件操作将从现有的树内插件重定向到
-`file.csi.azure.com` 容器存储接口（CSI）驱动程序。要使用此功能，必须在集群中安装
+启用 `azureFile` 的 `CSIMigration` 特性后，所有插件操作将从现有的树内插件重定向到
+`file.csi.azure.com` 容器存储接口（CSI）驱动程序。要使用此特性，必须在集群中安装
 [Azure 文件 CSI 驱动程序](https://github.com/kubernetes-sigs/azurefile-csi-driver)，
 并且 `CSIMigration` 和 `CSIMigrationAzureFile`
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)
 必须被启用。
 
 <!--
-Azure File CSI driver does not support using same volume with different fsgroups, if Azurefile CSI migration is enabled, using same volume with different fsgroups won't be supported at all.
+Azure File CSI driver does not support using same volume with different fsgroups. If
+`CSIMigrationAzureFile` is enabled, using same volume with different fsgroups won't be supported at all.
 -->
 Azure 文件 CSI 驱动尚不支持为同一卷设置不同的 fsgroup。
-如果 AzureFile CSI 迁移被启用，用不同的 fsgroup 来使用同一卷也是不被支持的。
+如果 `CSIMigrationAzureFile` 特性被启用，用不同的 fsgroup 来使用同一卷也是不被支持的。
+
+<!--
+#### azureDisk CSI migration complete
+
+{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+
+To disable the `azureDisk` storage plugin from being loaded by the controller manager
+and the kubelet, set the `InTreePluginAzureDiskUnregister` flag to `true`.
+-->
+#### azureDisk CSI 迁移完成
+
+{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+
+要禁止控制器管理器和 kubelet 加载 `azureDisk` 存储插件，
+请将 `InTreePluginAzureDiskUnregister` 标志设置为 `true`。
 
 ### cephfs {#cephfs}
 
@@ -309,8 +368,9 @@ that data can be shared between Pods.  The `cephfs` can be mounted by multiple
 writers simultaneously.
 -->
 `cephfs` 卷允许你将现存的 CephFS 卷挂载到 Pod 中。
-不像 `emptyDir` 那样会在 Pod 被删除的同时也会被删除，`cephfs` 卷的内容在 Pod 被删除
-时会被保留，只是卷被卸载了。这意味着 `cephfs` 卷可以被预先填充数据，且这些数据可以在
+不像 `emptyDir` 那样会在 Pod 被删除的同时也会被删除，`cephfs`
+卷的内容在 Pod 被删除时会被保留，只是卷被卸载了。
+这意味着 `cephfs` 卷可以被预先填充数据，且这些数据可以在
 Pod 之间共享。同一 `cephfs` 卷可同时被多个写者挂载。
 
 <!--
@@ -321,27 +381,33 @@ You must have your own Ceph server running with the share exported before you ca
 {{< /note >}}
 
 <!--
-See the [CephFS example](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/volumes/cephfs/) for more details.
+See the [CephFS example](https://github.com/kubernetes/examples/tree/master/volumes/cephfs/) for more details.
 -->
-更多信息请参考 [CephFS 示例](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/volumes/cephfs/)。
+更多信息请参考 [CephFS 示例](https://github.com/kubernetes/examples/tree/master/volumes/cephfs/)。
 
-### cinder {#cinder}
+<!--
+### cinder (deprecated) {#cinder}
+-->
+### cinder （已弃用）   {#cinder}
 
+{{< feature-state for_k8s_version="v1.18" state="deprecated" >}}
+
+{{< note >}}
 <!--
 Kubernetes must be configured with the OpenStack cloud provider.
 -->
-{{< note >}}
 Kubernetes 必须配置了 OpenStack Cloud Provider。
 {{< /note >}}
 
 <!--
 The `cinder` volume type is used to mount the OpenStack Cinder volume into your pod.
-
-#### Cinder Volume Example configuration
 -->
 `cinder` 卷类型用于将 OpenStack Cinder 卷挂载到 Pod 中。
 
-#### Cinder 卷示例配置
+<!--
+#### Cinder Volume Example configuration
+-->
+#### Cinder 卷示例配置  {#cinder-volume-example-configuration}
 
 ```yaml
 apiVersion: v1
@@ -368,29 +434,31 @@ spec:
 -->
 #### OpenStack CSI 迁移
 
-{{< feature-state for_k8s_version="v1.21" state="beta" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 <!--
-The `CSIMigration` feature for Cinder is enabled by default in Kubernetes 1.21.
+The `CSIMigration` feature for Cinder is enabled by default since Kubernetes 1.21.
 It redirects all plugin operations from the existing in-tree plugin to the
 `cinder.csi.openstack.org` Container Storage Interface (CSI) Driver.
 [OpenStack Cinder CSI Driver](https://github.com/kubernetes/cloud-provider-openstack/blob/master/docs/cinder-csi-plugin/using-cinder-csi-plugin.md)
 must be installed on the cluster.
-You can disable Cinder CSI migration for your cluster by setting the `CSIMigrationOpenStack` 
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/) to `false`.
-If you disable the `CSIMigrationOpenStack` feature, the in-tree Cinder volume plugin takes responsibility
-for all aspects of Cinder volume storage management.
 -->
-Cinder 的 `CSIMigration` 功能在 Kubernetes 1.21 版本中是默认被启用的。
+自 Kubernetes 1.21 版本起，Cinder 的 `CSIMigration` 特性是默认被启用的。
 此特性会将插件的所有操作从现有的树内插件重定向到
 `cinder.csi.openstack.org` 容器存储接口（CSI）驱动程序。
-为了使用此功能，必须在集群中安装
+为了使用此特性，必须在集群中安装
 [OpenStack Cinder CSI 驱动程序](https://github.com/kubernetes/cloud-provider-openstack/blob/master/docs/cinder-csi-plugin/using-cinder-csi-plugin.md)，
 你可以通过设置 `CSIMigrationOpenStack`
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)
 为 `false` 来禁止 Cinder CSI 迁移。
-如果你禁用了 `CSIMigrationOpenStack` 功能特性，则树内的 Cinder 卷插件
-会负责 Cinder 卷存储管理的方方面面。
+
+<!--
+To disable the in-tree Cinder plugin from being loaded by the controller manager
+and the kubelet, you can enable the `InTreePluginOpenStackUnregister`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/).
+-->
+要禁止控制器管理器和 kubelet 加载树内 Cinder 插件，你可以启用
+`InTreePluginOpenStackUnregister` [特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)。
 
 ### configMap
 
@@ -400,10 +468,9 @@ provides a way to inject configuration data into Pods.
 The data stored in a ConfigMap object can be referenced in a volume of type
 `configMap` and then consumed by containerized applications running in a Pod.
 -->
-[`configMap`](/zh/docs/tasks/configure-pod-container/configure-pod-configmap/) 卷
-提供了向 Pod 注入配置数据的方法。
-ConfigMap 对象中存储的数据可以被 `configMap` 类型的卷引用，然后被 Pod 中运行的
-容器化应用使用。
+[`configMap`](/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap/)
+卷提供了向 Pod 注入配置数据的方法。
+ConfigMap 对象中存储的数据可以被 `configMap` 类型的卷引用，然后被 Pod 中运行的容器化应用使用。
 
 <!--
 When referencing a ConfigMap, you provide the name of the ConfigMap in the
@@ -424,7 +491,7 @@ metadata:
 spec:
   containers:
     - name: test
-      image: busybox
+      image: busybox:1.28
       volumeMounts:
         - name: config-vol
           mountPath: /etc/config
@@ -443,8 +510,8 @@ its `log_level` entry are mounted into the Pod at path "`/etc/config/log_level`"
 Note that this path is derived from the volume's `mountPath` and the `path`
 keyed with `log_level`.
 -->
-`log-config` ConfigMap 以卷的形式挂载，并且存储在 `log_level` 条目中的所有内容
-都被挂载到 Pod 的 `/etc/config/log_level` 路径下。
+`log-config` ConfigMap 以卷的形式挂载，并且存储在 `log_level`
+条目中的所有内容都被挂载到 Pod 的 `/etc/config/log_level` 路径下。
 请注意，这个路径来源于卷的 `mountPath` 和 `log_level` 键对应的 `path`。
 
 <!--
@@ -457,7 +524,7 @@ keyed with `log_level`.
 * Text data is exposed as files using the UTF-8 character encoding. For other character encodings, use `binaryData`.
 -->
 {{< note >}}
-* 在使用 [ConfigMap](/zh/docs/tasks/configure-pod-container/configure-pod-configmap/) 之前你首先要创建它。
+* 在使用 [ConfigMap](/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap/) 之前你首先要创建它。
 * 容器以 [subPath](#using-subpath) 卷挂载方式使用 ConfigMap 时，将无法接收 ConfigMap 的更新。
 * 文本数据挂载成文件时采用 UTF-8 字符编码。如果使用其他字符编码形式，可使用
   `binaryData` 字段。
@@ -473,17 +540,17 @@ It mounts a directory and writes the requested data in plain text files.
 这种卷类型挂载一个目录并在纯文本文件中写入所请求的数据。
 
 <!--
-A Container using Downward API as a [subPath](#using-subpath) volume mount will not
-receive Downward API updates.
+A container using the downward API as a [`subPath`](#using-subpath) volume mount does not
+receive updates when field values change.
 -->
 {{< note >}}
-容器以 [subPath](#using-subpath) 卷挂载方式使用 downwardAPI 时，将不能接收到它的更新。
+容器以 [subPath](#using-subpath) 卷挂载方式使用 downward API 时，在字段值更改时将不能接收到它的更新。
 {{< /note >}}
 
 <!--
 See the [`downwardAPI` volume example](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/)  for more details.
 -->
-更多详细信息请参考 [`downwardAPI` 卷示例](/zh/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/)。
+更多详细信息请参考 [`downwardAPI` 卷示例](/zh-cn/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/)。
 
 ### emptyDir
 
@@ -545,8 +612,8 @@ backed volumes are sized to 50% of the memory on a Linux host.
 -->
 
 {{< note >}}
-当启用 `SizeMemoryBackedVolumes` [特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)时，
-你可以为基于内存提供的卷指定大小。
+当启用 `SizeMemoryBackedVolumes` [特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)
+时，你可以为基于内存提供的卷指定大小。
 如果未指定大小，则基于内存的卷的大小为 Linux 主机上内存的 50％。
 {{< /note>}}
 
@@ -589,15 +656,15 @@ targetWWNs expect that those WWNs are from multi-path connections.
 <!--
 You must configure FC SAN Zoning to allocate and mask those LUNs (volumes) to the target WWNs beforehand so that Kubernetes hosts can access them.
 -->
-{{< caution >}}
-你必须配置 FC SAN Zoning，以便预先向目标 WWN 分配和屏蔽这些 LUN（卷），
-这样 Kubernetes 主机才可以访问它们。
-{{< /caution >}}
+{{< note >}}
+你必须配置 FC SAN Zoning，以便预先向目标 WWN 分配和屏蔽这些 LUN（卷），这样
+Kubernetes 主机才可以访问它们。
+{{< /note >}}
 
 <!--
-See the [FC example](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/fibre_channel) for more details.
+See the [fibre channel example](https://github.com/kubernetes/examples/tree/master/staging/volumes/fibre_channel) for more details.
 -->
-更多详情请参考 [FC 示例](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/fibre_channel)。
+更多详情请参考 [FC 示例](https://github.com/kubernetes/examples/tree/master/staging/volumes/fibre_channel)。
 
 <!--
 ### flocker (deprecated) {#flocker}
@@ -632,9 +699,9 @@ You must have your own Flocker installation running before you can use it.
 {{< /note >}}
 
 <!--
-See the [Flocker example](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/flocker) for more details.
+See the [Flocker example](https://github.com/kubernetes/examples/tree/master/staging/volumes/flocker) for more details.
 -->
-更多详情请参考 [Flocker 示例](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/flocker)。
+更多详情请参考 [Flocker 示例](https://github.com/kubernetes/examples/tree/master/staging/volumes/flocker)。
 
 <!--
 ### gcePersistentDisk
@@ -738,10 +805,9 @@ feature allows the creation of Persistent Disks that are available in two zones
 within the same region. In order to use this feature, the volume must be provisioned
 as a PersistentVolume; referencing the volume directly from a Pod is not supported.
 -->
-[区域持久盘](https://cloud.google.com/compute/docs/disks/#repds) 功能允许你创建能在
-同一区域的两个可用区中使用的持久盘。
-要使用这个功能，必须以持久卷（PersistentVolume）的方式提供卷；直接从 Pod 引用这种卷
-是不可以的。
+[区域持久盘](https://cloud.google.com/compute/docs/disks/#repds)特性允许你创建能在同一区域的两个可用区中使用的持久盘。
+要使用这个特性，必须以持久卷（PersistentVolume）的方式提供卷；直接从
+Pod 引用这种卷是不可以的。
 
 <!--
 #### Manually provisioning a Regional PD PersistentVolume
@@ -751,8 +817,8 @@ Before creating a PersistentVolume, you must create the PD:
 -->
 #### 手动供应基于区域 PD 的 PersistentVolume {#manually-provisioning-regional-pd-pv}
 
-使用[为 GCE PD 定义的存储类](/zh/docs/concepts/storage/storage-classes/#gce) 可以
-实现动态供应。在创建 PersistentVolume 之前，你首先要创建 PD。
+使用[为 GCE PD 定义的存储类](/zh-cn/docs/concepts/storage/storage-classes/#gce)
+可以实现动态供应。在创建 PersistentVolume 之前，你首先要创建 PD。
 
 ```shell
 gcloud beta compute disks create --size=500GB my-data-disk
@@ -784,7 +850,8 @@ spec:
     required:
       nodeSelectorTerms:
       - matchExpressions:
-        - key: failure-domain.beta.kubernetes.io/zone
+        # failure-domain.beta.kubernetes.io/zone 应在 1.21 之前使用
+        - key: topology.kubernetes.io/zone
           operator: In
           values:
           - us-central1-a
@@ -806,11 +873,26 @@ Driver](https://github.com/kubernetes-sigs/gcp-compute-persistent-disk-csi-drive
 must be installed on the cluster and the `CSIMigration` and `CSIMigrationGCE`
 beta features must be enabled.
 -->
-启用 GCE PD 的 `CSIMigration` 功能后，所有插件操作将从现有的树内插件重定向到
+启用 GCE PD 的 `CSIMigration` 特性后，所有插件操作将从现有的树内插件重定向到
 `pd.csi.storage.gke.io` 容器存储接口（ CSI ）驱动程序。
-为了使用此功能，必须在集群中上安装
+为了使用此特性，必须在集群中上安装
 [GCE PD CSI驱动程序](https://github.com/kubernetes-sigs/gcp-compute-persistent-disk-csi-driver)，
-并且 `CSIMigration` 和 `CSIMigrationGCE` Beta 功能必须被启用。
+并且 `CSIMigration` 和 `CSIMigrationGCE` Beta 特性必须被启用。
+
+<!-- 
+#### GCE CSI migration complete
+
+{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+
+To disable the `gcePersistentDisk` storage plugin from being loaded by the controller manager
+and the kubelet, set the `InTreePluginGCEUnregister` flag to `true`.
+-->
+#### GCE CSI 迁移完成
+
+{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+
+要禁止控制器管理器和 kubelet 加载 `gcePersistentDisk` 存储插件，请将
+`InTreePluginGCEUnregister` 标志设置为 `true`。
 
 <!--
 ### gitRepo (deprecated) {#gitrepo}
@@ -823,8 +905,8 @@ The gitRepo volume type is deprecated. To provision a container with a git repo,
 -->
 {{< warning >}}
 `gitRepo` 卷类型已经被废弃。如果需要在容器中提供 git 仓库，请将一个
-[EmptyDir](#emptydir) 卷挂载到 InitContainer 中，使用 git 命令完成仓库的克隆操作，
-然后将 [EmptyDir](#emptydir) 卷挂载到 Pod 的容器中。
+[EmptyDir](#emptydir) 卷挂载到 InitContainer 中，使用 git
+命令完成仓库的克隆操作，然后将 [EmptyDir](#emptydir) 卷挂载到 Pod 的容器中。
 {{< /warning >}}
 
 <!--
@@ -883,12 +965,28 @@ You must have your own GlusterFS installation running before you can use it.
 {{< /note >}}
 
 <!--
-See the [GlusterFS example](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/volumes/glusterfs) for more details.
+See the [GlusterFS example](https://github.com/kubernetes/examples/tree/master/volumes/glusterfs) for more details.
 -->
-更多详情请参考 [GlusterFS 示例](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/volumes/glusterfs)。
+更多详情请参考 [GlusterFS 示例](https://github.com/kubernetes/examples/tree/master/volumes/glusterfs)。
 
 ### hostPath
 
+{{< warning >}}
+<!-- 
+HostPath volumes present many security risks, and it is a best practice to avoid the use of
+HostPaths when possible. When a HostPath volume must be used, it should be scoped to only the
+required file or directory, and mounted as ReadOnly.
+
+If restricting HostPath access to specific directories through AdmissionPolicy, `volumeMounts` MUST
+be required to use `readOnly` mounts for the policy to be effective.
+-->
+HostPath 卷存在许多安全风险，最佳做法是尽可能避免使用 HostPath。
+当必须使用 HostPath 卷时，它的范围应仅限于所需的文件或目录，并以只读方式挂载。
+
+如果通过 AdmissionPolicy 限制 HostPath 对特定目录的访问，则必须要求
+`volumeMounts` 使用 `readOnly` 挂载以使策略生效。
+{{< /warning >}}
+
 <!--
 A `hostPath` volume mounts a file or directory from the host node's filesystem
 into your Pod. This is not something that most Pods will need, but it offers a
@@ -947,6 +1045,9 @@ The supported values for field `type` are:
 <!--
 Watch out when using this type of volume, because:
 
+* HostPaths can expose privileged system credentials (such as for the Kubelet) or privileged APIs
+  (such as container runtime socket), which can be used for container escape or to attack other
+  parts of the cluster.
 * Pods with identical configuration (such as created from a PodTemplate) may
   behave differently on different nodes due to different files on the nodes
 * The files or directories created on the underlying hosts are only writable by root. You
@@ -956,11 +1057,13 @@ Watch out when using this type of volume, because:
 -->
 当使用这种类型的卷时要小心，因为：
 
-* 具有相同配置（例如基于同一 PodTemplate 创建）的多个 Pod 会由于节点上文件的不同
-  而在不同节点上有不同的行为。
+* HostPath 卷可能会暴露特权系统凭据（例如 Kubelet）或特权
+  API（例如容器运行时套接字），可用于容器逃逸或攻击集群的其他部分。
+* 具有相同配置（例如基于同一 PodTemplate 创建）的多个 Pod
+  会由于节点上文件的不同而在不同节点上有不同的行为。
 * 下层主机上创建的文件或目录只能由 root 用户写入。你需要在
-  [特权容器](/zh/docs/tasks/configure-pod-container/security-context/)
-  中以 root 身份运行进程，或者修改主机上的文件权限以便容器能够写入 `hostPath` 卷。
+  [特权容器](/zh-cn/docs/tasks/configure-pod-container/security-context/)中以
+  root 身份运行进程，或者修改主机上的文件权限以便容器能够写入 `hostPath` 卷。
 
 <!--
 #### hostPath configuration example
@@ -1042,8 +1145,8 @@ unmounted.  This means that an iscsi volume can be pre-populated with data, and
 that data can be shared between pods.
 -->
 `iscsi` 卷能将 iSCSI (基于 IP 的 SCSI) 卷挂载到你的 Pod 中。
-不像 `emptyDir` 那样会在删除 Pod 的同时也会被删除，`iscsi` 卷的内容在删除 Pod 时
-会被保留，卷只是被卸载。
+不像 `emptyDir` 那样会在删除 Pod 的同时也会被删除，`iscsi`
+卷的内容在删除 Pod 时会被保留，卷只是被卸载。
 这意味着 `iscsi` 卷可以被预先填充数据，并且这些数据可以在 Pod 之间共享。
 
 <!--
@@ -1065,9 +1168,9 @@ iSCSI 的一个特点是它可以同时被多个用户以只读方式挂载。
 不幸的是，iSCSI 卷只能由单个使用者以读写模式挂载。不允许同时写入。
 
 <!--
-See the [iSCSI example](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/volumes/iscsi) for more details.
+See the [iSCSI example](https://github.com/kubernetes/examples/tree/master/volumes/iscsi) for more details.
 -->
-更多详情请参考 [iSCSI 示例](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/volumes/iscsi)。
+更多详情请参考 [iSCSI 示例](https://github.com/kubernetes/examples/tree/master/volumes/iscsi)。
 
 <!--
 ### local
@@ -1104,9 +1207,8 @@ The following is an example of PersistentVolume spec using a `local` volume and
 `nodeAffinity`:
 -->
 然而，`local` 卷仍然取决于底层节点的可用性，并不适合所有应用程序。
-如果节点变得不健康，那么`local` 卷也将变得不可被 Pod 访问。使用它的 Pod 将不能运行。
-使用 `local` 卷的应用程序必须能够容忍这种可用性的降低，以及因底层磁盘的耐用性特征
-而带来的潜在的数据丢失风险。
+如果节点变得不健康，那么 `local` 卷也将变得不可被 Pod 访问。使用它的 Pod 将不能运行。
+使用 `local` 卷的应用程序必须能够容忍这种可用性的降低，以及因底层磁盘的耐用性特征而带来的潜在的数据丢失风险。
 
 下面是一个使用 `local` 卷和 `nodeAffinity` 的持久卷示例：
 
@@ -1161,10 +1263,9 @@ such as node resource requirements, node selectors, Pod affinity, and Pod anti-a
 -->
 使用 `local` 卷时，建议创建一个 StorageClass 并将其 `volumeBindingMode` 设置为
 `WaitForFirstConsumer`。要了解更多详细信息，请参考
-[local StorageClass 示例](/zh/docs/concepts/storage/storage-classes/#local)。
-延迟卷绑定的操作可以确保 Kubernetes 在为 PersistentVolumeClaim 作出绑定决策时，
-会评估 Pod 可能具有的其他节点约束，例如：如节点资源需求、节点选择器、Pod
-亲和性和 Pod 反亲和性。
+[local StorageClass 示例](/zh-cn/docs/concepts/storage/storage-classes/#local)。
+延迟卷绑定的操作可以确保 Kubernetes 在为 PersistentVolumeClaim 作出绑定决策时，会评估
+Pod 可能具有的其他节点约束，例如：如节点资源需求、节点选择器、Pod亲和性和 Pod 反亲和性。
 
 <!--
 An external static provisioner can be run separately for improved management of
@@ -1210,9 +1311,9 @@ You must have your own NFS server running with the share exported before you can
 {{< /caution >}}
 
 <!--
-See the [NFS example](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/nfs) for more details.
+See the [NFS example](https://github.com/kubernetes/examples/tree/master/staging/volumes/nfs) for more details.
 -->
-要了解更多详情请参考 [NFS 示例](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/nfs)。
+要了解更多详情请参考 [NFS 示例](https://github.com/kubernetes/examples/tree/master/staging/volumes/nfs)。
 
 ### persistentVolumeClaim {#persistentvolumeclaim}
 
@@ -1222,16 +1323,15 @@ A `persistentVolumeClaim` volume is used to mount a
 are a way for users to "claim" durable storage (such as a GCE PersistentDisk or an
 iSCSI volume) without knowing the details of the particular cloud environment.
 -->
-`persistentVolumeClaim` 卷用来将[持久卷](/zh/docs/concepts/storage/persistent-volumes/)（PersistentVolume）
-挂载到 Pod 中。
-持久卷申领（PersistentVolumeClaim）是用户在不知道特定云环境细节的情况下"申领"持久存储
-（例如 GCE PersistentDisk 或者 iSCSI 卷）的一种方法。
+`persistentVolumeClaim` 卷用来将[持久卷](/zh-cn/docs/concepts/storage/persistent-volumes/)（PersistentVolume）挂载到 Pod 中。
+持久卷申领（PersistentVolumeClaim）是用户在不知道特定云环境细节的情况下“申领”持久存储（例如
+GCE PersistentDisk 或者 iSCSI 卷）的一种方法。
 
 <!--
 See the [PersistentVolumes example](/docs/concepts/storage/persistent-volumes/) for more
 details.
 -->
-更多详情请参考[持久卷示例](/zh/docs/concepts/storage/persistent-volumes/)。
+更多详情请参考[持久卷示例](/zh-cn/docs/concepts/storage/persistent-volumes/)。
 
 ### portworxVolume {#portworxvolume}
 
@@ -1241,8 +1341,8 @@ Kubernetes. [Portworx](https://portworx.com/use-case/kubernetes-storage/) finger
 and aggregates capacity across multiple servers. Portworx runs in-guest in virtual machines or on bare metal Linux nodes.
 -->
 `portworxVolume` 是一个可伸缩的块存储层，能够以超融合（hyperconverged）的方式与 Kubernetes 一起运行。
-[Portworx](https://portworx.com/use-case/kubernetes-storage/) 支持对服务器上存储的指纹处理、
-基于存储能力进行分层以及跨多个服务器整合存储容量。
+[Portworx](https://portworx.com/use-case/kubernetes-storage/)
+支持对服务器上存储的指纹处理、基于存储能力进行分层以及跨多个服务器整合存储容量。
 Portworx 可以以 in-guest 方式在虚拟机中运行，也可以在裸金属 Linux 节点上运行。
 
 <!--
@@ -1283,199 +1383,20 @@ before using it in the Pod.
 {{< /note >}}
 
 <!--
-For more details, see the [Portworx volume](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/portworx/README.md) examples.
+For more details, see the [Portworx volume](https://github.com/kubernetes/examples/tree/master/staging/volumes/portworx/README.md) examples.
 -->
 
-更多详情可以参考 [Portworx 卷](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/portworx/README.md)。
+更多详情可以参考 [Portworx 卷](https://github.com/kubernetes/examples/tree/master/staging/volumes/portworx/README.md)。
 
-### projected
+### projected （投射）
 
 <!--
-A `projected` volume maps several existing volume sources into the same directory.
-
-Currently, the following types of volume sources can be projected:
+A projected volume maps several existing volume sources into the same
+directory. For more details, see [projected volumes](/docs/concepts/storage/projected-volumes/).
 -->
-`projected` 卷类型能将若干现有的卷来源映射到同一目录上。
+投射卷能将若干现有的卷来源映射到同一目录上。更多详情请参考[投射卷](/zh-cn/docs/concepts/storage/projected-volumes/)。
 
-目前，可以映射的卷来源类型如下：
-
-- [`secret`](#secret)
-- [`downwardAPI`](#downwardapi)
-- [`configMap`](#configmap)
-- `serviceAccountToken`
-
-<!--
-All sources are required to be in the same namespace as the Pod. For more details,
-see the [all-in-one volume design document](https://github.com/kubernetes/community/blob/{{< param "githubbranch" >}}/contributors/design-proposals/node/all-in-one-volume.md).
--->
-所有的卷来源需要和 Pod 处于相同的命名空间。
-更多详情请参考[一体化卷设计文档](https://github.com/kubernetes/community/blob/{{< param "githubbranch" >}}/contributors/design-proposals/node/all-in-one-volume.md)。
-
-<!--
-#### Example configuration with a secret, a downwardAPI, and a configMap {#example-configuration-secret-downwardapi-configmap}
--->
-
-#### 包含 Secret、downwardAPI 和 configMap 的 Pod 示例  {#example-configuration-secret-downwardapi-configmap}
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: volume-test
-spec:
-  containers:
-  - name: container-test
-    image: busybox
-    volumeMounts:
-    - name: all-in-one
-      mountPath: "/projected-volume"
-      readOnly: true
-  volumes:
-  - name: all-in-one
-    projected:
-      sources:
-      - secret:
-          name: mysecret
-          items:
-            - key: username
-              path: my-group/my-username
-      - downwardAPI:
-          items:
-            - path: "labels"
-              fieldRef:
-                fieldPath: metadata.labels
-            - path: "cpu_limit"
-              resourceFieldRef:
-                containerName: container-test
-                resource: limits.cpu
-      - configMap:
-          name: myconfigmap
-          items:
-            - key: config
-              path: my-group/my-config
-```
-
-<!--
-#### Example configuration: secrets with a non-default permission mode set {#example-configuration-secrets-nondefault-permission-mode}
--->
-
-下面是一个带有非默认访问权限设置的多个 secret 的 Pod 示例：
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: volume-test
-spec:
-  containers:
-  - name: container-test
-    image: busybox
-    volumeMounts:
-    - name: all-in-one
-      mountPath: "/projected-volume"
-      readOnly: true
-  volumes:
-  - name: all-in-one
-    projected:
-      sources:
-      - secret:
-          name: mysecret
-          items:
-            - key: username
-              path: my-group/my-username
-      - secret:
-          name: mysecret2
-          items:
-            - key: password
-              path: my-group/my-password
-              mode: 511
-```
-<!--
-Each projected volume source is listed in the spec under `sources`. The
-parameters are nearly the same with two exceptions:
-
-* For secrets, the `secretName` field has been changed to `name` to be consistent
-  with ConfigMap naming.
-* The `defaultMode` can only be specified at the projected level and not for each
-  volume source. However, as illustrated above, you can explicitly set the `mode`
-  for each individual projection.
--->
-每个被投射的卷来源都在规约中的 `sources` 内列出。参数几乎相同，除了两处例外：
-
-* 对于 `secret`，`secretName` 字段已被变更为 `name` 以便与 ConfigMap 命名一致。
-* `defaultMode` 只能在整个投射卷级别指定，而无法针对每个卷来源指定。
-  不过，如上所述，你可以显式地为每个投射项设置 `mode` 值。
-
-<!--
-When the `TokenRequestProjection` feature is enabled, you can inject the token
-for the current [service account](/docs/reference/access-authn-authz/authentication/#service-account-tokens)
-into a Pod at a specified path. Below is an example:
--->
-
-当开启 `TokenRequestProjection` 功能时，可以将当前
-[服务帐号](/zh/docs/reference/access-authn-authz/authentication/#service-account-tokens)
-的令牌注入 Pod 中的指定路径。
-下面是一个例子：
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: sa-token-test
-spec:
-  containers:
-  - name: container-test
-    image: busybox
-    volumeMounts:
-    - name: token-vol
-      mountPath: "/service-account"
-      readOnly: true
-  volumes:
-  - name: token-vol
-    projected:
-      sources:
-      - serviceAccountToken:
-          audience: api
-          expirationSeconds: 3600
-          path: token
-```
-
-<!--
-The example Pod has a projected volume containing the injected service account
-token. This token can be used by a Pod's containers to access the Kubernetes API
-server. The `audience` field contains the intended audience of the
-token. A recipient of the token must identify itself with an identifier specified
-in the audience of the token, and otherwise should reject the token. This field
-is optional and it defaults to the identifier of the API server.
--->
-示例 Pod 具有包含注入服务帐户令牌的映射卷。
-该令牌可以被 Pod 中的容器用来访问 Kubernetes API 服务器。
-`audience` 字段包含令牌的预期受众。
-令牌的接收者必须使用令牌的受众中指定的标识符来标识自己，否则应拒绝令牌。
-此字段是可选的，默认值是 API 服务器的标识符。
-
-<!--
-The `expirationSeconds` is the expected duration of validity of the service account
-token. It defaults to 1 hour and must be at least 10 minutes (600 seconds). An administrator
-can also limit its maximum value by specifying the `-service-account-max-token-expiration`
-option for the API server. The `path` field specifies a relative path to the mount point
-of the projected volume.
--->
-`expirationSeconds` 是服务帐户令牌的有效期时长。
-默认值为 1 小时，必须至少 10 分钟（600 秒）。
-管理员还可以通过设置 API 服务器的 `--service-account-max-token-expiration` 选项来
-限制其最大值。
-`path` 字段指定相对于映射卷的挂载点的相对路径。
-
-{{< note >}}
-<!--
-A container using a projected volume source as a [subPath](#using-subpath) volume mount will not
-receive updates for those volume sources.
--->
-使用投射卷源作为 [subPath](#using-subpath) 卷挂载的容器将不会接收这些卷源的更新。
-{{< /note >}}
-
-### quobyte
+### quobyte (已弃用) {#quobyte}
 
 <!--
 A `quobyte` volume allows an existing [Quobyte](http://www.quobyte.com) volume to
@@ -1498,107 +1419,100 @@ GitHub project has [instructions](https://github.com/quobyte/quobyte-csi#quobyte
 -->
 Quobyte 支持{{< glossary_tooltip text="容器存储接口（CSI）" term_id="csi" >}}。
 推荐使用 CSI 插件以在 Kubernetes 中使用 Quobyte 卷。
-Quobyte 的 GitHub 项目包含以 CSI 形式部署 Quobyte 的
-[说明](https://github.com/quobyte/quobyte-csi#quobyte-csi)
-及使用示例。
+Quobyte 的 GitHub 项目包含以 CSI 形式部署 Quobyte
+的[说明](https://github.com/quobyte/quobyte-csi#quobyte-csi)及使用示例。
 
 ### rbd
 
 <!--
 An `rbd` volume allows a
-[Rados Block Device](https://docs.ceph.com/en/latest/rbd/) volume to mount into your
-Pod.  Unlike `emptyDir`, which is erased when a Pod is removed, the contents of
-a `rbd` volume are preserved and the volume is merely unmounted.  This
-means that a RBD volume can be pre-populated with data, and that data can
-be shared between pods.
+[Rados Block Device](https://docs.ceph.com/en/latest/rbd/) (RBD) volume to mount
+into your Pod. Unlike `emptyDir`, which is erased when a pod is removed, the
+contents of an `rbd` volume are preserved and the volume is unmounted. This
+means that a RBD volume can be pre-populated with data, and that data can be
+shared between pods.
 -->
-`rbd` 卷允许将 [Rados 块设备](https://docs.ceph.com/en/latest/rbd/) 卷挂载到你的 Pod 中.
-不像 `emptyDir` 那样会在删除 Pod 的同时也会被删除，`rbd` 卷的内容在删除 Pod 时
-会被保存，卷只是被卸载。
+`rbd` 卷允许将 [Rados 块设备](https://docs.ceph.com/en/latest/rbd/)卷挂载到你的 Pod 中。
+不像 `emptyDir` 那样会在删除 Pod 的同时也会被删除，`rbd` 卷的内容在删除 Pod 时会被保存，卷只是被卸载。
 这意味着 `rbd` 卷可以被预先填充数据，并且这些数据可以在 Pod 之间共享。
 
 <!--
-You must have your own Ceph installation running before you can use RBD.
+You must have a Ceph installation running before you can use RBD.
 -->
-{{< caution >}}
+{{< note >}}
 在使用 RBD 之前，你必须安装运行 Ceph。
-{{< /caution >}}
+{{< /note >}}
 
 <!--
 A feature of RBD is that it can be mounted as read-only by multiple consumers
-simultaneously.  This means that you can pre-populate a volume with your dataset
-and then serve it in parallel from as many Pods as you need.  Unfortunately,
+simultaneously. This means that you can pre-populate a volume with your dataset
+and then serve it in parallel from as many pods as you need. Unfortunately,
 RBD volumes can only be mounted by a single consumer in read-write mode.
 Simultaneous writers are not allowed.
 
-See the [RBD example](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/volumes/rbd) for more details.
+See the [RBD example](https://github.com/kubernetes/examples/tree/master/volumes/rbd)
+for more details.
 -->
 RBD 的一个特性是它可以同时被多个用户以只读方式挂载。
 这意味着你可以用数据集预先填充卷，然后根据需要在尽可能多的 Pod 中并行地使用卷。
 不幸的是，RBD 卷只能由单个使用者以读写模式安装。不允许同时写入。
 
 更多详情请参考
-[RBD 示例](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/volumes/rbd)。
+[RBD 示例](https://github.com/kubernetes/examples/tree/master/volumes/rbd)。
 
 <!--
-### scaleIO (deprecated) {#scaleio}
+#### RBD CSI migration
 -->
-### scaleIO （已弃用）   {#scaleio}
+#### RBD CSI 迁移 {#rbd-csi-migration}
+
+{{< feature-state for_k8s_version="v1.23" state="alpha" >}}
 
 <!--
-ScaleIO is a software-based storage platform that can use existing hardware to
-create clusters of scalable shared block networked storage. The `scaleIO` volume
-plugin allows deployed Pods to access existing ScaleIO
-volumes (or it can dynamically provision new volumes for persistent volume claims, see
-[ScaleIO Persistent Volumes](/docs/concepts/storage/persistent-volumes/#scaleio)).
+The `CSIMigration` feature for `RBD`, when enabled, redirects all plugin
+operations from the existing in-tree plugin to the `rbd.csi.ceph.com` {{<
+glossary_tooltip text="CSI" term_id="csi" >}} driver. In order to use this
+feature, the
+[Ceph CSI driver](https://github.com/ceph/ceph-csi)
+must be installed on the cluster and the `CSIMigration` and `csiMigrationRBD`
+[feature gates](/docs/reference/command-line-tools-reference/feature-gates/)
+must be enabled.
 -->
-ScaleIO 是基于软件的存储平台，可以使用现有硬件来创建可伸缩的、共享的而且是网络化的块存储集群。
-`scaleIO` 卷插件允许部署的 Pod 访问现有的 ScaleIO 卷（或者它可以动态地为持久卷申领提供新的卷，
-参见 [ScaleIO 持久卷](/zh/docs/concepts/storage/persistent-volumes/#scaleio)）。
+启用 RBD 的 `CSIMigration` 特性后，所有插件操作从现有的树内插件重定向到
+`rbd.csi.ceph.com` {{<glossary_tooltip text="CSI" term_id="csi" >}} 驱动程序。
+要使用该特性，必须在集群内安装
+[Ceph CSI 驱动](https://github.com/ceph/ceph-csi)，并启用 `CSIMigration` 和 `csiMigrationRBD` 
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)。
 
 <!--
-You must have an existing ScaleIO cluster already setup and
-running with the volumes created before you can use them.
+As a Kubernetes cluster operator that administers storage, here are the
+prerequisites that you must complete before you attempt migration to the
+RBD CSI driver:
+
+* You must install the Ceph CSI driver (`rbd.csi.ceph.com`), v3.5.0 or above,
+  into your Kubernetes cluster.
+* considering the `clusterID` field is a required parameter for CSI driver for
+  its operations, but in-tree StorageClass has `monitors` field as a required
+  parameter, a Kubernetes storage admin has to create a clusterID based on the
+  monitors hash ( ex:`#echo -n
+  '<monitors_string>' | md5sum`) in the CSI config map and keep the monitors
+  under this clusterID configuration.
+* Also, if the value of `adminId` in the in-tree Storageclass is different from
+ `admin`, the `adminSecretName` mentioned in the in-tree Storageclass has to be
+  patched with the base64 value of the `adminId` parameter value, otherwise this
+  step can be skipped.
 -->
 {{< note >}}
-在使用前，你必须有个安装完毕且运行正常的 ScaleIO 集群，并且创建好了存储卷。
+作为一位管理存储的 Kubernetes 集群操作者，在尝试迁移到 RBD CSI 驱动前，你必须完成下列先决事项：
+
+* 你必须在集群中安装 v3.5.0 或更高版本的 Ceph CSI 驱动（`rbd.csi.ceph.com`）。
+* 因为 `clusterID` 是 CSI 驱动程序必需的参数，而树内存储类又将 `monitors`
+  作为一个必需的参数，所以 Kubernetes 存储管理者需要根据 `monitors`
+  的哈希值（例：`#echo -n '<monitors_string>' | md5sum`）来创建
+  `clusterID`，并保持该 `monitors` 存在于该 `clusterID` 的配置中。
+* 同时，如果树内存储类的 `adminId` 的值不是 `admin`，那么其 `adminSecretName`
+  就需要被修改成 `adminId` 参数的 base64 编码值。
 {{< /note >}}
 
-<!--
-The following is an example of Pod configuration with ScaleIO:
--->
-下面是配置了 ScaleIO 的 Pod 示例：
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: pod-0
-spec:
-  containers:
-  - image: k8s.gcr.io/test-webserver
-    name: pod-0
-    volumeMounts:
-    - mountPath: /test-pd
-      name: vol-0
-  volumes:
-  - name: vol-0
-    scaleIO:
-      gateway: https://localhost:443/api
-      system: scaleio
-      protectionDomain: sd0
-      storagePool: sp1
-      volumeName: vol-0
-      secretRef:
-        name: sio-secret
-      fsType: xfs
-```
-
-<!--
-For further detail, please see the [ScaleIO examples](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/scaleio).
--->
-更多详情，请参考 [ScaleIO 示例](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/volumes/scaleio)。
-
 ### secret
 
 <!--
@@ -1609,9 +1523,8 @@ backed by tmpfs (a RAM-backed filesystem) so they are never written to
 non-volatile storage.
 -->
 `secret` 卷用来给 Pod 传递敏感信息，例如密码。你可以将 Secret 存储在 Kubernetes
-API 服务器上，然后以文件的形式挂在到 Pod 中，无需直接与 Kubernetes 耦合。
-`secret` 卷由 tmpfs（基于 RAM 的文件系统）提供存储，因此它们永远不会被写入非易失性
-（持久化的）存储器。
+API 服务器上，然后以文件的形式挂载到 Pod 中，无需直接与 Kubernetes 耦合。
+`secret` 卷由 tmpfs（基于 RAM 的文件系统）提供存储，因此它们永远不会被写入非易失性（持久化的）存储器。
 
 <!--
 You must create a secret in the Kubernetes API before you can use it.
@@ -1631,9 +1544,9 @@ receive Secret updates.
 <!--
 For more details, see [Configuring Secrets](/docs/concepts/configuration/secret/).
 -->
-更多详情请参考[配置 Secrets](/zh/docs/concepts/configuration/secret/)。
+更多详情请参考[配置 Secrets](/zh-cn/docs/concepts/configuration/secret/)。
 
-### storageOS {#storageos}
+### storageOS (已弃用) {#storageos}
 
 <!--
 A `storageos` volume allows an existing [StorageOS](https://www.storageos.com)
@@ -1709,15 +1622,13 @@ For more information about StorageOS, dynamic provisioning, and PersistentVolume
 关于 StorageOS 的进一步信息、动态供应和持久卷申领等等，请参考
 [StorageOS 示例](https://github.com/kubernetes/examples/blob/master/volumes/storageos)。
 
-### vsphereVolume {#vspherevolume}
+### vsphereVolume（弃用） {#vspherevolume}
 
 <!--
-You must configure the Kubernetes vSphere Cloud Provider. For cloudprovider
-configuration, refer to the [vSphere Getting Started guide](https://vmware.github.io/vsphere-storage-for-kubernetes/documentation/).
+We recommend to use vSphere CSI out-of-tree driver instead.
 -->
 {{< note >}}
-你必须配置 Kubernetes 的 vSphere 云驱动。云驱动的配置方法请参考
-[vSphere 使用指南](https://vmware.github.io/vsphere-storage-for-kubernetes/documentation/)。
+建议你改用 vSphere CSI 树外驱动程序。
 {{< /note >}}
 
 <!--
@@ -1728,68 +1639,6 @@ of a volume are preserved when it is unmounted. It supports both VMFS and VSAN d
 在卸载卷时，卷的内容会被保留。
 vSphereVolume 卷类型支持 VMFS 和 VSAN 数据仓库。
 
-<!--
-You must create VMDK using one of the following methods before using with Pod.
--->
-{{< caution >}}
-在挂载到 Pod 之前，你必须用下列方式之一创建 VMDK。
-{{< /caution >}}
-
-<!--
-#### Creating a VMDK volume {#creating-vmdk-volume}
-
-Choose one of the following methods to create a VMDK.
--->
-#### 创建 VMDK 卷  {#creating-vmdk-volume}
-
-选择下列方式之一创建 VMDK。
-
-{{< tabs name="tabs_volumes" >}}
-{{% tab name="使用 vmkfstools 创建" %}}
-
-首先 ssh 到 ESX，然后使用下面的命令来创建 VMDK：
-
-```shell
-vmkfstools -c 2G /vmfs/volumes/DatastoreName/volumes/myDisk.vmdk
-```
-{{% /tab %}}
-{{% tab name="使用 vmware-vdiskmanager 创建" %}}
-
-使用下面的命令创建 VMDK：
-
-```shell
-vmware-vdiskmanager -c -t 0 -s 40GB -a lsilogic myDisk.vmdk
-```
-{{% /tab %}}
-
-{{< /tabs >}}
-
-
-<!--
-#### vSphere VMDK configuration example {#vsphere-vmdk-configuration}
--->
-#### vSphere VMDK 配置示例    {#vsphere-vmdk-configuration}
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: test-vmdk
-spec:
-  containers:
-  - image: k8s.gcr.io/test-webserver
-    name: test-container
-    volumeMounts:
-    - mountPath: /test-vmdk
-      name: test-volume
-  volumes:
-  - name: test-volume
-    # 此 VMDK 卷必须已经存在
-    vsphereVolume:
-      volumePath: "[DatastoreName] volumes/myDisk"
-      fsType: ext4
-```
-
 <!--
 For more information, see the [vSphere volume](https://github.com/kubernetes/examples/tree/master/staging/volumes/vsphere) examples.
 -->
@@ -1813,15 +1662,30 @@ must be installed on the cluster and the `CSIMigration` and `CSIMigrationvSphere
 当 `vsphereVolume` 的 `CSIMigration` 特性被启用时，所有插件操作都被从树内插件重定向到
 `csi.vsphere.vmware.com` {{< glossary_tooltip text="CSI" term_id="csi" >}} 驱动。
 为了使用此功能特性，必须在集群中安装
-[vSphere CSI 驱动](https://github.com/kubernetes-sigs/vsphere-csi-driver)，
-并启用 `CSIMigration` 和 `CSIMigrationvSphere`
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)。
+[vSphere CSI 驱动](https://github.com/kubernetes-sigs/vsphere-csi-driver)，并启用
+`CSIMigration` 和 `CSIMigrationvSphere`
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)。
 
 <!--
-This also requires minimum vSphere vCenter/ESXi Version to be 7.0u1 and minimum HW Version to be VM version 15.
+You can find additional advice on how to migrate in VMware's
+documentation page [Migrating In-Tree vSphere Volumes to vSphere Container Storage Plug-in](https://docs.vmware.com/en/VMware-vSphere-Container-Storage-Plug-in/2.0/vmware-vsphere-csp-getting-started/GUID-968D421F-D464-4E22-8127-6CB9FF54423F.html).
 -->
-此特性还要求 vSphere vCenter/ESXi 的版本至少为 7.0u1，且 HW 版本至少为
-VM version 15。
+你可以在 VMware 的文档页面[迁移树内 vSphere 卷插件到 vSphere 容器存储插件](https://docs.vmware.com/en/VMware-vSphere-Container-Storage-Plug-in/2.0/vmware-vsphere-csp-getting-started/GUID-968D421F-D464-4E22-8127-6CB9FF54423F.html)
+中找到有关如何迁移的其他建议。
+<!--
+Kubernetes v{{< skew currentVersion >}} requires that you are using vSphere 7.0u2 or later
+in order to migrate to the out-of-tree CSI driver.
+If you are running a version of Kubernetes other than v{{< skew currentVersion >}}, consult
+the documentation for that version of Kubernetes.
+If you are running Kubernetes v{{< skew currentVersion >}} and an older version of vSphere,
+consider upgrading to at least vSphere 7.0u2.
+-->
+为了迁移到树外 CSI 驱动程序，Kubernetes v{{< skew currentVersion >}}
+要求你使用 vSphere 7.0u2 或更高版本。
+如果你正在运行 v{{< skew currentVersion >}} 以外的 Kubernetes 版本，
+请查阅该 Kubernetes 版本的文档。
+如果你正在运行 Kubernetes v{{< skew currentVersion >}} 和旧版本的 vSphere，
+请考虑至少升级到 vSphere 7.0u2。
 
 {{< note >}}
 <!--
@@ -1854,12 +1718,34 @@ CSI 驱动所创建的新卷都不会理会这些参数。
 {{< feature-state for_k8s_version="v1.19" state="beta" >}}
 
 <!--
-To turn off the `vsphereVolume` plugin from being loaded by the controller manager and the kubelet, you need to set this feature flag to `true`. You must install a `csi.vsphere.vmware.com` {{< glossary_tooltip text="CSI" term_id="csi" >}} driver on all worker nodes.
+To turn off the `vsphereVolume` plugin from being loaded by the controller manager and the kubelet, you need to set `InTreePluginvSphereUnregister` feature flag to `true`. You must install a `csi.vsphere.vmware.com` {{< glossary_tooltip text="CSI" term_id="csi" >}} driver on all worker nodes.
 -->
 为了避免控制器管理器和 kubelet 加载 `vsphereVolume` 插件，你需要将
-`CSIMigrationVSphereComplete` 特性设置为 `true`。你还必须在所有工作节点上安装
+`InTreePluginvSphereUnregister` 特性设置为 `true`。你还必须在所有工作节点上安装
 `csi.vsphere.vmware.com` {{< glossary_tooltip text="CSI" term_id="csi" >}} 驱动。
 
+<!--
+#### Portworx CSI migration
+-->
+#### Portworx CSI 迁移
+
+{{< feature-state for_k8s_version="v1.23" state="alpha" >}}
+
+<!--
+The `CSIMigration` feature for Portworx has been added but disabled by default in Kubernetes 1.23 since it's in alpha state.
+It redirects all plugin operations from the existing in-tree plugin to the
+`pxd.portworx.com` Container Storage Interface (CSI) Driver.
+[Portworx CSI Driver](https://docs.portworx.com/portworx-install-with-kubernetes/storage-operations/csi/)
+must be installed on the cluster.
+To enable the feature, set `CSIMigrationPortworx=true` in kube-controller-manager and kubelet.
+-->
+Kubernetes 1.23 中加入了 Portworx 的 `CSIMigration` 特性，但默认不会启用，因为该特性仍处于 alpha 阶段。
+该特性会将所有的插件操作从现有的树内插件重定向到
+`pxd.portworx.com` 容器存储接口（Container Storage Interface, CSI）驱动程序。
+集群中必须安装
+[Portworx CSI 驱动](https://docs.portworx.com/portworx-install-with-kubernetes/storage-operations/csi/)。
+要启用此特性，请在 kube-controller-manager 和 kubelet 中设置 `CSIMigrationPortworx=true`。
+
 <!--
 ## Using subPath {#using-subpath}
 
@@ -1867,7 +1753,7 @@ Sometimes, it is useful to share one volume for multiple uses in a single Pod.
 The `volumeMounts.subPath` property specifies a sub-path inside the referenced volume
 instead of its root.
 -->
-## 使用 subPath  {#using-path}
+## 使用 subPath  {#using-subpath}
 
 有时，在单个 Pod 中共享卷以供多方使用是很有用的。
 `volumeMounts.subPath` 属性可用于指定所引用的卷内的子路径，而不是其根路径。
@@ -1952,11 +1838,12 @@ spec:
         fieldRef:
           apiVersion: v1
           fieldPath: metadata.name
-    image: busybox
+    image: busybox:1.28
     command: [ "sh", "-c", "while [ true ]; do echo 'Hello'; sleep 10; done | tee -a /logs/hello.txt" ]
     volumeMounts:
     - name: workdir1
       mountPath: /logs
+      # 包裹变量名的是小括号，而不是大括号
       subPathExpr: $(POD_NAME)
   restartPolicy: Never
   volumes:
@@ -1976,33 +1863,31 @@ Pods.
 -->
 ## 资源   {#resources}
 
-`emptyDir` 卷的存储介质（磁盘、SSD 等）是由保存 kubelet 数据的根目录
-（通常是 `/var/lib/kubelet`）的文件系统的介质确定。
-Kubernetes 对 `emptyDir` 卷或者 `hostPath` 卷可以消耗的空间没有限制，
-容器之间或 Pod 之间也没有隔离。
+`emptyDir` 卷的存储介质（磁盘、SSD 等）是由保存 kubelet
+数据的根目录（通常是 `/var/lib/kubelet`）的文件系统的介质确定。
+Kubernetes 对 `emptyDir` 卷或者 `hostPath` 卷可以消耗的空间没有限制，容器之间或 Pod 之间也没有隔离。
 
 <!--
 To learn about requesting space using a resource specification, see
 [how to manage resources](/docs/concepts/configuration/manage-resources-containers/).
 -->
 要了解如何使用资源规约来请求空间，可参考
-[如何管理资源](/zh/docs/concepts/configuration/manage-resources-containers/)。
+[如何管理资源](/zh-cn/docs/concepts/configuration/manage-resources-containers/)。
 
 
 <!--
 ## Out-of-Tree Volume Plugins
 
 The out-of-tree volume plugins include
-{{< glossary_tooltip text="Container Storage Interface" term_id="csi" >}} (CSI)
-and FlexVolume. They enable storage vendors to create custom storage plugins
-without adding them to the Kubernetes repository.
+{{< glossary_tooltip text="Container Storage Interface" term_id="csi" >}} (CSI), and also FlexVolume (which is deprecated). These plugins enable storage vendors to create custom storage plugins
+without adding their plugin source code to the Kubernetes repository.
 -->
 ## 树外（Out-of-Tree）卷插件    {#out-of-tree-volume-plugins}
 
 Out-of-Tree 卷插件包括
-{{< glossary_tooltip text="容器存储接口（CSI）" term_id="csi" >}} (CSI)
-和 FlexVolume。
-它们使存储供应商能够创建自定义存储插件，而无需将它们添加到 Kubernetes 代码仓库。
+{{< glossary_tooltip text="容器存储接口（CSI）" term_id="csi" >}}
+和 FlexVolume（已弃用）。
+它们使存储供应商能够创建自定义存储插件，而无需将插件源码添加到 Kubernetes 代码仓库。
 
 <!--
 Previously, all volume plugins were "in-tree". The "in-tree" plugins were built, linked, compiled,
@@ -2021,8 +1906,7 @@ extensions.
 For storage vendors looking to create an out-of-tree volume plugin, please refer
 to [this FAQ](https://github.com/kubernetes/community/blob/master/sig-storage/volume-plugin-faq.md).
 -->
-CSI 和 FlexVolume 都允许独立于 Kubernetes 代码库开发卷插件，并作为扩展部署
-（安装）在 Kubernetes 集群上。
+CSI 和 FlexVolume 都允许独立于 Kubernetes 代码库开发卷插件，并作为扩展部署（安装）在 Kubernetes 集群上。
 
 对于希望创建树外（Out-Of-Tree）卷插件的存储供应商，请参考
 [卷插件常见问题](https://github.com/kubernetes/community/blob/master/sig-storage/volume-plugin-faq.md)。
@@ -2076,15 +1960,15 @@ A `csi` volume can be used in a Pod in three different ways:
 * with a [CSI ephemeral volume](/docs/concepts/storage/ephemeral-volumes/#csi-ephemeral-volume)
 if the driver supports that (beta feature)
 -->
-一旦在 Kubernetes 集群上部署了 CSI 兼容卷驱动程序，用户就可以使用 `csi` 卷类型来
-挂接、挂载 CSI 驱动所提供的卷。
+一旦在 Kubernetes 集群上部署了 CSI 兼容卷驱动程序，用户就可以使用
+`csi` 卷类型来挂接、挂载 CSI 驱动所提供的卷。
 
 `csi` 卷可以在 Pod 中以三种方式使用：
 
 * 通过 PersistentVolumeClaim(#persistentvolumeclaim) 对象引用
-* 使用[一般性的临时卷](/zh/docs/concepts/storage/ephemeral-volumes/#generic-ephemeral-volume)
+* 使用[一般性的临时卷](/zh-cn/docs/concepts/storage/ephemeral-volumes/#generic-ephemeral-volume)
   （Alpha 特性）
-* 使用 [CSI 临时卷](/zh/docs/concepts/storage/ephemeral-volumes/#csi-ephemeral-volume)，
+* 使用 [CSI 临时卷](/zh-cn/docs/concepts/storage/ephemeral-volumes/#csi-ephemeral-volume)，
   前提是驱动支持这种用法（Beta 特性）
 
 <!--
@@ -2101,10 +1985,10 @@ persistent volume:
   CSI driver components to identify which PV objects belong to the CSI driver.
 -->
 - `driver`：指定要使用的卷驱动名称的字符串值。
-  这个值必须与 CSI 驱动程序在 `GetPluginInfoResponse` 中返回的值相对应；
-  该接口定义在 [CSI 规范](https://github.com/container-storage-interface/spec/blob/master/spec.md#getplugininfo)中。
-  Kubernetes 使用所给的值来标识要调用的 CSI 驱动程序；CSI 驱动程序也使用该值来辨识
-  哪些 PV 对象属于该 CSI 驱动程序。
+  这个值必须与 CSI 驱动程序在 `GetPluginInfoResponse` 中返回的值相对应；该接口定义在
+  [CSI 规范](https://github.com/container-storage-interface/spec/blob/master/spec.md#getplugininfo)中。
+  Kubernetes 使用所给的值来标识要调用的 CSI 驱动程序；CSI
+  驱动程序也使用该值来辨识哪些 PV 对象属于该 CSI 驱动程序。
 
 <!--
 - `volumeHandle`: A string value that uniquely identifies the volume. This value
@@ -2114,8 +1998,8 @@ persistent volume:
   referencing the volume.
 -->
 - `volumeHandle`：唯一标识卷的字符串值。
-  该值必须与 CSI 驱动在 `CreateVolumeResponse` 的 `volume_id` 字段中返回的值相对应；
-  接口定义在 [CSI spec](https://github.com/container-storage-interface/spec/blob/master/spec.md#createvolume) 中。
+  该值必须与 CSI 驱动在 `CreateVolumeResponse` 的 `volume_id` 字段中返回的值相对应；接口定义在
+  [CSI 规范](https://github.com/container-storage-interface/spec/blob/master/spec.md#createvolume) 中。
   在所有对 CSI 卷驱动程序的调用中，引用该 CSI 卷时都使用此值作为 `volume_id` 参数。
 
 <!--
@@ -2124,8 +2008,7 @@ persistent volume:
   passed to the CSI driver via the `readonly` field in the
   `ControllerPublishVolumeRequest`.
 -->
-- `readOnly`：一个可选的布尔值，指示通过 `ControllerPublished` 关联该卷时是否设置
-  该卷为只读。默认值是 false。
+- `readOnly`：一个可选的布尔值，指示通过 `ControllerPublished` 关联该卷时是否设置该卷为只读。默认值是 false。
   该值通过 `ControllerPublishVolumeRequest` 中的 `readonly` 字段传递给 CSI 驱动。
 
 <!--
@@ -2154,7 +2037,7 @@ persistent volume:
 - `volumeAttributes`：一个字符串到字符串的映射表，用来设置卷的静态属性。
   该映射必须与 CSI 驱动程序返回的 `CreateVolumeResponse` 中的 `volume.attributes`
   字段的映射相对应；
-  [CSI 规范](https://github.com/container-storage-interface/spec/blob/master/spec.md#createvolume) 中有相应的定义。
+  [CSI 规范](https://github.com/container-storage-interface/spec/blob/master/spec.md#createvolume)中有相应的定义。
   该映射通过`ControllerPublishVolumeRequest`、`NodeStageVolumeRequest`、和
   `NodePublishVolumeRequest` 中的 `volume_attributes` 字段传递给 CSI 驱动。
 
@@ -2214,7 +2097,7 @@ You can set up your
 [PersistentVolume/PersistentVolumeClaim with raw block volume support](/docs/concepts/storage/persistent-volumes/#raw-block-volume-support) as usual, without any CSI specific changes.
 -->
 你可以和以前一样，安装自己的
-[带有原始块卷支持的 PV/PVC](/zh/docs/concepts/storage/persistent-volumes/#raw-block-volume-support)，
+[带有原始块卷支持的 PV/PVC](/zh-cn/docs/concepts/storage/persistent-volumes/#raw-block-volume-support)，
 采用 CSI 对此过程没有影响。
 
 <!--
@@ -2233,15 +2116,41 @@ for more information.
 -->
 你可以直接在 Pod 规约中配置 CSI 卷。采用这种方式配置的卷都是临时卷，
 无法在 Pod 重新启动后继续存在。
-进一步的信息可参阅[临时卷](/zh/docs/concepts/storage/ephemeral-volumes/#csi-ephemeral-volume)。
+进一步的信息可参阅[临时卷](/zh-cn/docs/concepts/storage/ephemeral-volumes/#csi-ephemeral-volume)。
 
 <!--
-For more information on how to develop a CSI driver, refer to the [kubernetes-csi
-documentation](https://kubernetes-csi.github.io/docs/)
-
+For more information on how to develop a CSI driver, refer to the
+[kubernetes-csi documentation](https://kubernetes-csi.github.io/docs/)
 -->
 有关如何开发 CSI 驱动的更多信息，请参考 [kubernetes-csi 文档](https://kubernetes-csi.github.io/docs/)。
 
+<!--
+#### Windows CSI proxy
+-->
+#### Windows CSI 代理  {#windows-csi-proxy}
+
+{{< feature-state for_k8s_version="v1.22" state="stable" >}}
+
+<!--
+CSI node plugins need to perform various privileged
+operations like scanning of disk devices and mounting of file systems. These operations
+differ for each host operating system. For Linux worker nodes, containerized CSI node
+node plugins are typically deployed as privileged containers. For Windows worker nodes,
+privileged operations for containerized CSI node plugins is supported using
+[csi-proxy](https://github.com/kubernetes-csi/csi-proxy), a community-managed,
+stand-alone binary that needs to be pre-installed on each Windows node.
+
+For more details, refer to the deployment guide of the CSI plugin you wish to deploy.
+-->
+CSI 节点插件需要执行多种特权操作，例如扫描磁盘设备和挂载文件系统等。
+这些操作在每个宿主操作系统上都是不同的。对于 Linux 工作节点而言，容器化的 CSI
+节点插件通常部署为特权容器。对于 Windows 工作节点而言，容器化 CSI
+节点插件的特权操作是通过 [csi-proxy](https://github.com/kubernetes-csi/csi-proxy)
+来支持的。csi-proxy 是一个由社区管理的、独立的可执行二进制文件，
+需要被预安装到每个 Windows 节点上。
+
+要了解更多的细节，可以参考你要部署的 CSI 插件的部署指南。
+
 <!--
 #### Migrating to CSI drivers from in-tree plugins
 -->
@@ -2258,39 +2167,71 @@ configuration changes to existing Storage Classes, PersistentVolumes or Persiste
 
 The operations and features that are supported include:
 provisioning/delete, attach/detach, mount/unmount and resizing of volumes.
-
-In-tree plugins that support `CSIMigration` and have a corresponding CSI driver implemented
-are listed in [Types of Volumes](#volume-types).
 -->
-启用 `CSIMigration` 功能后，针对现有树内插件的操作会被重定向到相应的 CSI 插件
-（应已安装和配置）。
-因此，操作员在过渡到取代树内插件的 CSI 驱动时，无需对现有存储类、PV 或 PVC
-（指树内插件）进行任何配置更改。
+启用 `CSIMigration` 特性后，针对现有树内插件的操作会被重定向到相应的 CSI 插件（应已安装和配置）。
+因此，操作员在过渡到取代树内插件的 CSI 驱动时，无需对现有存储类、PV 或 PVC（指树内插件）进行任何配置更改。
 
-所支持的操作和功能包括：配备（Provisioning）/删除、挂接（Attach）/解挂（Detach）、
+所支持的操作和特性包括：配备（Provisioning）/删除、挂接（Attach）/解挂（Detach）、
 挂载（Mount）/卸载（Unmount）和调整卷大小。
 
+<!--
+In-tree plugins that support `CSIMigration` and have a corresponding CSI driver implemented
+are listed in [Types of Volumes](#volume-types).
+
+The following in-tree plugins support persistent storage on Windows nodes:
+-->
 上面的[卷类型](#volume-types)节列出了支持 `CSIMigration` 并已实现相应 CSI
 驱动程序的树内插件。
 
+下面是支持 Windows 节点上持久性存储的树内插件：
+
+* [`awsElasticBlockStore`](#awselasticblockstore)
+* [`azureDisk`](#azuredisk)
+* [`azureFile`](#azurefile)
+* [`gcePersistentDisk`](#gcepersistentdisk)
+* [`vsphereVolume`](#vspherevolume)
+
 ### flexVolume
 
+{{< feature-state for_k8s_version="v1.23" state="deprecated" >}}
+
 <!--
-FlexVolume is an out-of-tree plugin interface that has existed in Kubernetes
-since version 1.2 (before CSI). It uses an exec-based model to interface with
-drivers. The FlexVolume driver binaries must be installed in a pre-defined volume
-plugin path on each node (and in some cases master).
+FlexVolume is an out-of-tree plugin interface that uses an exec-based model to interface
+with storage drivers. The FlexVolume driver binaries must be installed in a pre-defined
+volume plugin path on each node and in some cases the control plane nodes as well.
 
-Pods interact with FlexVolume drivers through the `flexvolume` in-tree plugin.
-More details can be found [here](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-storage/flexvolume.md).
+Pods interact with FlexVolume drivers through the `flexVolume` in-tree volume plugin.
+For more details, see the FlexVolume [README](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-storage/flexvolume.md#readme) document.
 -->
-FlexVolume 是一个自 1.2 版本（在 CSI 之前）以来在 Kubernetes 中一直存在的树外插件接口。
-它使用基于 exec 的模型来与驱动程序对接。
-用户必须在每个节点（在某些情况下是主控节点）上的预定义卷插件路径中安装
-FlexVolume 驱动程序可执行文件。
+FlexVolume 是一个使用基于 exec 的模型来与驱动程序对接的树外插件接口。
+用户必须在每个节点上的预定义卷插件路径中安装 FlexVolume
+驱动程序可执行文件，在某些情况下，控制平面节点中也要安装。
 
-Pod 通过 `flexvolume` 树内插件与 Flexvolume 驱动程序交互。
-更多详情请参考 [FlexVolume](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-storage/flexvolume.md) 示例。
+Pod 通过 `flexvolume` 树内插件与 FlexVolume 驱动程序交互。
+更多详情请参考 FlexVolume [README](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-storage/flexvolume.md#readme) 文档。
+
+<!--
+The following FlexVolume [plugins](https://github.com/Microsoft/K8s-Storage-Plugins/tree/master/flexvolume/windows),
+deployed as PowerShell scripts on the host, support Windows nodes:
+-->
+下面的 FlexVolume [插件](https://github.com/Microsoft/K8s-Storage-Plugins/tree/master/flexvolume/windows)
+以 PowerShell 脚本的形式部署在宿主系统上，支持 Windows 节点：
+
+* [SMB](https://github.com/microsoft/K8s-Storage-Plugins/tree/master/flexvolume/windows/plugins/microsoft.com~smb.cmd)
+* [iSCSI](https://github.com/microsoft/K8s-Storage-Plugins/tree/master/flexvolume/windows/plugins/microsoft.com~iscsi.cmd)
+
+{{< note >}}
+<!--
+FlexVolume is deprecated. Using an out-of-tree CSI driver is the recommended way to integrate external storage with Kubernetes.
+
+Maintainers of FlexVolume driver should implement a CSI Driver and help to migrate users of FlexVolume drivers to CSI.
+Users of FlexVolume should move their workloads to use the equivalent CSI Driver.
+-->
+FlexVolume 已被弃用。推荐使用树外 CSI 驱动来将外部存储整合进 Kubernetes。
+
+FlexVolume 驱动的维护者应开发一个 CSI 驱动并帮助用户从 FlexVolume 驱动迁移到 CSI。
+FlexVolume 用户应迁移工作负载以使用对等的 CSI 驱动。
+{{< /note >}}
 
 <!--
 ## Mount propagation
@@ -2303,8 +2244,7 @@ Its values are:
 -->
 ## 挂载卷的传播   {#mount-propagation}
 
-挂载卷的传播能力允许将容器安装的卷共享到同一 Pod 中的其他容器，
-甚至共享到同一节点上的其他 Pod。
+挂载卷的传播能力允许将容器安装的卷共享到同一 Pod 中的其他容器，甚至共享到同一节点上的其他 Pod。
 
 卷的挂载传播特性由 `Container.volumeMounts` 中的 `mountPropagation` 字段控制。
 它的值包括：
@@ -2322,8 +2262,8 @@ Its values are:
 * `None` - 此卷挂载将不会感知到主机后续在此卷或其任何子目录上执行的挂载变化。
    类似的，容器所创建的卷挂载在主机上是不可见的。这是默认模式。
 
-   该模式等同于 [Linux 内核文档](https://www.kernel.org/doc/Documentation/filesystems/sharedsubtree.txt)
-   中描述的 `private` 挂载传播选项。
+   该模式等同于 [Linux 内核文档](https://www.kernel.org/doc/Documentation/filesystems/sharedsubtree.txt)中描述的
+  `private` 挂载传播选项。
 
 <!--
  * `HostToContainer` - This volume mount will receive all subsequent mounts
@@ -2343,11 +2283,11 @@ Its values are:
 
   换句话说，如果主机在此挂载卷中挂载任何内容，容器将能看到它被挂载在那里。
 
-  类似的，配置了 `Bidirectional` 挂载传播选项的 Pod 如果在同一卷上挂载了内容，
-  挂载传播设置为 `HostToContainer` 的容器都将能看到这一变化。
+  类似的，配置了 `Bidirectional` 挂载传播选项的 Pod 如果在同一卷上挂载了内容，挂载传播设置为
+  `HostToContainer` 的容器都将能看到这一变化。
 
-  该模式等同于 [Linux 内核文档](https://www.kernel.org/doc/Documentation/filesystems/sharedsubtree.txt)
-  中描述的 `rslave` 挂载传播选项。
+  该模式等同于 [Linux 内核文档](https://www.kernel.org/doc/Documentation/filesystems/sharedsubtree.txt)中描述的
+  `rslave` 挂载传播选项。
 
 <!--
 * `Bidirectional` - This volume mount behaves the same the `HostToContainer` mount.
@@ -2363,8 +2303,8 @@ Its values are:
 * `Bidirectional` - 这种卷挂载和 `HostToContainer` 挂载表现相同。
   另外，容器创建的卷挂载将被传播回至主机和使用同一卷的所有 Pod 的所有容器。
 
-  该模式等同于 [Linux 内核文档](https://www.kernel.org/doc/Documentation/filesystems/sharedsubtree.txt)
-  中描述的 `rshared` 挂载传播选项。
+  该模式等同于 [Linux 内核文档](https://www.kernel.org/doc/Documentation/filesystems/sharedsubtree.txt)中描述的
+  `rshared` 挂载传播选项。
 
   <!--
   `Bidirectional` mount propagation can be dangerous. It can damage
@@ -2389,8 +2329,7 @@ Docker as shown below.
 -->
 ### 配置  {#configuration}
 
-在某些部署环境中，挂载传播正常工作前，必须在 Docker 中正确配置挂载共享（mount share），
-如下所示。
+在某些部署环境中，挂载传播正常工作前，必须在 Docker 中正确配置挂载共享（mount share），如下所示。
 
 <!--
 Edit your Docker's `systemd` service file.  Set `MountFlags` as follows:
@@ -2413,10 +2352,8 @@ sudo systemctl restart docker
 
 ## {{% heading "whatsnext" %}}
 
-
 <!--
 Follow an example of [deploying WordPress and MySQL with Persistent Volumes](/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume/).
 -->
-
-参考[使用持久卷部署 WordPress 和 MySQL](/zh/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume/) 示例。
+参考[使用持久卷部署 WordPress 和 MySQL](/zh-cn/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume/) 示例。
 
diff --git a/content/zh-cn/docs/concepts/storage/windows-storage.md b/content/zh-cn/docs/concepts/storage/windows-storage.md
new file mode 100644
index 0000000000..697aa22477
--- /dev/null
+++ b/content/zh-cn/docs/concepts/storage/windows-storage.md
@@ -0,0 +1,132 @@
+---
+title: Windows 存储
+content_type: concept
+---
+<!--
+reviewers:
+- jingxu97
+- mauriciopoppe
+- jayunit100
+- jsturtevant
+- marosset
+- aravindhp
+title: Windows Storage
+content_type: concept
+-->
+
+<!-- overview -->
+<!--
+This page provides an storage overview specific to the Windows operating system.
+-->
+此页面提供特定于 Windows 操作系统的存储概述。
+<!-- body -->
+
+<!--
+## Persistent storage {#storage}
+
+Windows has a layered filesystem driver to mount container layers and create a copy
+filesystem based on NTFS. All file paths in the container are resolved only within
+the context of that container.
+-->
+## 持久存储 {#storage}
+Windows 有一个分层文件系统驱动程序用来挂载容器层和创建基于 NTFS 的文件系统拷贝。
+容器中的所有文件路径仅在该容器的上下文中解析。
+
+<!--
+* With Docker, volume mounts can only target a directory in the container, and not
+  an individual file. This limitation does not apply to containerd.
+* Volume mounts cannot project files or directories back to the host filesystem.
+* Read-only filesystems are not supported because write access is always required
+  for the Windows registry and SAM database. However, read-only volumes are supported.
+* Volume user-masks and permissions are not available. Because the SAM is not shared
+  between the host & container, there's no mapping between them. All permissions are
+  resolved within the context of the container.
+-->
+* 使用 Docker 时，卷挂载只能是容器中的目录，而不能是单个文件。此限制不适用于 containerd。
+* 卷挂载不能将文件或目录映射回宿主文件系统。
+* 不支持只读文件系统，因为 Windows 注册表和 SAM 数据库始终需要写访问权限。不过，Windows 支持只读的卷。
+* 不支持卷的用户掩码和访问许可，因为宿主与容器之间并不共享 SAM，二者之间不存在映射关系。
+  所有访问许可都是在容器上下文中解析的。
+
+<!--
+As a result, the following storage functionality is not supported on Windows nodes:
+-->
+因此，Windows 节点不支持以下存储功能：
+
+<!--
+* Volume subpath mounts: only the entire volume can be mounted in a Windows container
+* Subpath volume mounting for Secrets
+* Host mount projection
+* Read-only root filesystem (mapped volumes still support `readOnly`)
+* Block device mapping
+* Memory as the storage medium (for example, `emptyDir.medium` set to `Memory`)
+* File system features like uid/gid; per-user Linux filesystem permissions
+* Setting [secret permissions with DefaultMode](/docs/concepts/configuration/secret/#secret-files-permissions) (due to UID/GID dependency)
+* NFS based storage/volume support
+* Expanding the mounted volume (resizefs)
+-->
+* 卷子路径挂载：只能在 Windows 容器上挂载整个卷
+* Secret 的子路径挂载
+* 宿主挂载映射
+* 只读的根文件系统（映射的卷仍然支持 `readOnly`）
+* 块设备映射
+* 内存作为存储介质（例如 `emptyDir.medium` 设置为 `Memory`）
+* 类似 UID/GID、各用户不同的 Linux 文件系统访问许可等文件系统特性
+* 使用 [DefaultMode 设置 Secret 权限](/zh-cn/docs/concepts/configuration/secret/#secret-files-permissions)
+  （因为该特性依赖 UID/GID）
+* 基于 NFS 的存储和卷支持
+* 扩展已挂载卷（resizefs）
+
+<!--
+Kubernetes {{< glossary_tooltip text="volumes" term_id="volume" >}} enable complex
+applications, with data persistence and Pod volume sharing requirements, to be deployed
+on Kubernetes. Management of persistent volumes associated with a specific storage
+back-end or protocol includes actions such as provisioning/de-provisioning/resizing
+of volumes, attaching/detaching a volume to/from a Kubernetes node and
+mounting/dismounting a volume to/from individual containers in a pod that needs to
+persist data.
+-->
+使用 Kubernetes {{< glossary_tooltip text="卷" term_id="volume" >}}，
+对数据持久性和 Pod 卷共享有需求的复杂应用也可以部署到 Kubernetes 上。
+管理与特定存储后端或协议相关的持久卷时，相关的操作包括：对卷的制备（Provisioning）、
+去配（De-provisioning）和调整大小，将卷挂接到 Kubernetes 节点或从节点上解除挂接，
+将卷挂载到需要持久数据的 Pod 中的某容器上或从容器上卸载。
+
+<!--
+Volume management components are shipped as Kubernetes volume
+[plugin](/docs/concepts/storage/volumes/#types-of-volumes).
+The following broad classes of Kubernetes volume plugins are supported on Windows:
+-->
+卷管理组件作为 Kubernetes 卷[插件](/zh-cn/docs/concepts/storage/volumes/#types-of-volumes)发布。
+Windows 支持以下类型的 Kubernetes 卷插件：
+
+<!--
+* [`FlexVolume plugins`](/docs/concepts/storage/volumes/#flexVolume)
+  * Please note that FlexVolumes have been deprecated as of 1.23
+* [`CSI Plugins`](/docs/concepts/storage/volumes/#csi)
+-->
+* [`FlexVolume plugins`](/zh-cn/docs/concepts/storage/volumes/#flexVolume)
+  * 请注意自 1.23 版本起，FlexVolume 已被弃用
+* [`CSI Plugins`](/zh-cn/docs/concepts/storage/volumes/#csi)
+
+<!--
+##### In-tree volume plugins
+
+The following in-tree plugins support persistent storage on Windows nodes:
+-->
+##### 树内（In-Tree）卷插件  {#in-tree-volume-plugins}
+
+以下树内（In-Tree）插件支持 Windows 节点上的持久存储：
+
+<!--
+* [`awsElasticBlockStore`](/docs/concepts/storage/volumes/#awselasticblockstore)
+* [`azureDisk`](/docs/concepts/storage/volumes/#azuredisk)
+* [`azureFile`](/docs/concepts/storage/volumes/#azurefile)
+* [`gcePersistentDisk`](/docs/concepts/storage/volumes/#gcepersistentdisk)
+* [`vsphereVolume`](/docs/concepts/storage/volumes/#vspherevolume)
+-->
+* [`awsElasticBlockStore`](/zh-cn/docs/concepts/storage/volumes/#awselasticblockstore)
+* [`azureDisk`](/zh-cn/docs/concepts/storage/volumes/#azuredisk)
+* [`azureFile`](/zh-cn/docs/concepts/storage/volumes/#azurefile)
+* [`gcePersistentDisk`](/zh-cn/docs/concepts/storage/volumes/#gcepersistentdisk)
+* [`vsphereVolume`](/zh-cn/docs/concepts/storage/volumes/#vspherevolume)
\ No newline at end of file
diff --git a/content/zh-cn/docs/concepts/windows/_index.md b/content/zh-cn/docs/concepts/windows/_index.md
new file mode 100644
index 0000000000..a78ddcfe75
--- /dev/null
+++ b/content/zh-cn/docs/concepts/windows/_index.md
@@ -0,0 +1,8 @@
+---
+title: "Kubernetes 中的 Windows"
+weight: 50
+---
+<!--
+title: "Windows in Kubernetes"
+weight: 50
+-->
diff --git a/content/zh-cn/docs/concepts/windows/intro.md b/content/zh-cn/docs/concepts/windows/intro.md
new file mode 100644
index 0000000000..fd97892836
--- /dev/null
+++ b/content/zh-cn/docs/concepts/windows/intro.md
@@ -0,0 +1,721 @@
+---
+title: Kubernetes 中的 Windows 容器
+content_type: concept
+weight: 65
+---
+<!--
+reviewers:
+- jayunit100
+- jsturtevant
+- marosset
+- perithompson
+title: Windows containers in Kubernetes
+content_type: concept
+weight: 65
+-->
+
+<!-- overview -->
+<!--
+Windows applications constitute a large portion of the services and applications that
+run in many organizations. [Windows containers](https://aka.ms/windowscontainers)
+provide a way to encapsulate processes and package dependencies, making it easier
+to use DevOps practices and follow cloud native patterns for Windows applications.
+
+Organizations with investments in Windows-based applications and Linux-based
+applications don't have to look for separate orchestrators to manage their workloads,
+leading to increased operational efficiencies across their deployments, regardless
+of operating system.
+-->
+在许多组织中，所运行的很大一部分服务和应用是 Windows 应用。
+[Windows 容器](https://aka.ms/windowscontainers)提供了一种封装进程和包依赖项的方式，
+从而简化了 DevOps 实践，令 Windows 应用程序同样遵从云原生模式。
+
+对于同时投入基于 Windows 应用和 Linux 应用的组织而言，他们不必寻找不同的编排系统来管理其工作负载，
+使其跨部署的运营效率得以大幅提升，而不必关心所用的操作系统。
+
+<!-- body -->
+
+<!--
+## Windows nodes in Kubernetes
+
+To enable the orchestration of Windows containers in Kubernetes, include Windows nodes
+in your existing Linux cluster. Scheduling Windows containers in
+{{< glossary_tooltip text="Pods" term_id="pod" >}} on Kubernetes is similar to
+scheduling Linux-based containers.
+
+In order to run Windows containers, your Kubernetes cluster must include
+multiple operating systems.
+While you can only run the {{< glossary_tooltip text="control plane" term_id="control-plane" >}} on Linux,
+you can deploy worker nodes running either Windows or Linux.
+-->
+## Kubernetes 中的 Windows 节点 {#windows-nodes-in-k8s}
+
+若要在 Kubernetes 中启用对 Windows 容器的编排，可以在现有的 Linux 集群中包含 Windows 节点。
+在 Kubernetes 上调度 {{< glossary_tooltip text="Pod" term_id="pod" >}} 中的 Windows 容器与调度基于 Linux 的容器类似。
+
+为了运行 Windows 容器，你的 Kubernetes 集群必须包含多个操作系统。
+尽管你只能在 Linux 上运行{{< glossary_tooltip text="控制平面" term_id="control-plane" >}}，
+你可以部署运行 Windows 或 Linux 的工作节点。
+
+<!--
+Windows {{< glossary_tooltip text="nodes" term_id="node" >}} are
+[supported](#windows-os-version-support) provided that the operating system is
+Windows Server 2019.
+
+This document uses the term *Windows containers* to mean Windows containers with
+process isolation. Kubernetes does not support running Windows containers with
+[Hyper-V isolation](https://docs.microsoft.com/en-us/virtualization/windowscontainers/manage-containers/hyperv-container).
+-->
+支持 Windows {{< glossary_tooltip text="节点" term_id="node" >}}的前提是操作系统为 Windows Server 2019。
+
+本文使用术语 **Windows 容器**表示具有进程隔离能力的 Windows 容器。
+Kubernetes 不支持使用
+[Hyper-V 隔离能力](https://docs.microsoft.com/zh-cn/virtualization/windowscontainers/manage-containers/hyperv-container)来运行
+Windows 容器。
+
+<!--
+## Compatibility and limitations {#limitations}
+
+Some node features are only available if you use a specific
+[container runtime](#container-runtime); others are not available on Windows nodes,
+including:
+
+* HugePages: not supported for Windows containers
+* Privileged containers: not supported for Windows containers.
+  [HostProcess Containers](/docs/tasks/configure-pod-container/create-hostprocess-pod/) offer similar functionality.
+* TerminationGracePeriod: requires containerD
+-->
+## 兼容性与局限性 {#limitations}
+
+某些节点层面的功能特性仅在使用特定[容器运行时](#container-runtime)时才可用；
+另外一些特性则在 Windows 节点上不可用，包括：
+
+* 巨页（HugePages）：Windows 容器当前不支持。
+* 特权容器：Windows 容器当前不支持。
+  [HostProcess 容器](/zh-cn/docs/tasks/configure-pod-container/create-hostprocess-pod/)提供类似功能。
+* TerminationGracePeriod：需要 containerD。
+
+<!--
+Not all features of shared namespaces are supported. See [API compatibility](#api)
+for more details.
+
+See [Windows OS version compatibility](#windows-os-version-support) for details on
+the Windows versions that Kubernetes is tested against.
+
+From an API and kubectl perspective, Windows containers behave in much the same
+way as Linux-based containers. However, there are some notable differences in key
+functionality which are outlined in this section.
+-->
+Windows 节点并不支持共享命名空间的所有功能特性。
+有关更多详细信息，请参考 [API 兼容性](#api)。
+
+有关 Kubernetes 测试时所使用的 Windows 版本的详细信息，请参考 [Windows 操作系统版本兼容性](#windows-os-version-support)。
+
+从 API 和 kubectl 的角度来看，Windows 容器的行为与基于 Linux 的容器非常相似。
+然而，在本节所概述的一些关键功能上，二者存在一些显著差异。
+
+<!--
+### Comparison with Linux {#compatibility-linux-similarities}
+
+Key Kubernetes elements work the same way in Windows as they do in Linux. This
+section refers to several key workload abstractions and how they map to Windows.
+-->
+### 与 Linux 比较 {#comparison-with-Linux-similarities}
+
+Kubernetes 关键组件在 Windows 上的工作方式与在 Linux 上相同。
+本节介绍几个关键的工作负载抽象及其如何映射到 Windows。
+
+<!--
+* [Pods](/docs/concepts/workloads/pods/)
+
+  A Pod is the basic building block of Kubernetes–the smallest and simplest unit in
+  the Kubernetes object model that you create or deploy. You may not deploy Windows and
+  Linux containers in the same Pod. All containers in a Pod are scheduled onto a single
+  Node where each Node represents a specific platform and architecture. The following
+  Pod capabilities, properties and events are supported with Windows containers:
+  * Single or multiple containers per Pod with process isolation and volume sharing
+  * Pod `status` fields
+  * Readiness, liveness, and startup probes
+  * postStart & preStop container lifecycle hooks
+  * ConfigMap, Secrets: as environment variables or volumes
+  * `emptyDir` volumes
+  * Named pipe host mounts
+  * Resource limits
+  * OS field: 
+    The `.spec.os.name` field should be set to `windows` to indicate that the current Pod uses Windows containers.
+    The `IdentifyPodOS` feature gate needs to be enabled for this field to be recognized.
+
+    {{< note >}}
+    Starting from 1.24, the `IdentifyPodOS` feature gate is in Beta stage and defaults to be enabled.
+    {{< /note >}}
+
+    If the `IdentifyPodOS` feature gate is enabled and you set the `.spec.os.name` field to `windows`,
+    you must not set the following fields in the `.spec` of that Pod:  
+    In the above list, wildcards (`*`) indicate all elements in a list.
+    For example, `spec.containers[*].securityContext` refers to the SecurityContext object
+    for all containers. If any of these fields is specified, the Pod will
+    not be admitted by the API server.
+-->
+* [Pod](/zh-cn/docs/concepts/workloads/pods/)
+  
+  Pod 是 Kubernetes 的基本构建块，是可以创建或部署的最小和最简单的单元。
+  你不可以在同一个 Pod 中部署 Windows 和 Linux 容器。
+  Pod 中的所有容器都调度到同一 Node 上，每个 Node 代表一个特定的平台和体系结构。
+  Windows 容器支持以下 Pod 能力、属性和事件：
+  
+  * 每个 Pod 有一个或多个容器，具有进程隔离和卷共享能力
+  * Pod `status` 字段
+  * 就绪、存活和启动探针
+  * postStart 和 preStop 容器生命周期回调
+  * ConfigMap 和 Secret：作为环境变量或卷
+  * `emptyDir` 卷
+  * 命名管道形式的主机挂载
+  * 资源限制
+  * 操作系统字段：
+
+    `.spec.os.name` 字段应设置为 `windows` 以表明当前 Pod 使用 Windows 容器。
+    需要启用 `IdentifyPodOS` 特性门控才能让这个字段被识别。
+    
+    {{< note >}} 
+    从 1.24 开始，`IdentifyPodOS` 特性门控进入 Beta 阶段，默认启用。
+    {{< /note >}}
+    
+    如果 `IdentifyPodOS` 特性门控已启用并且你将 `.spec.os.name` 字段设置为 `windows`，
+    则你不得在对应 Pod 的 `.spec` 中设置以下字段：
+    
+    * `spec.hostPID`
+    * `spec.hostIPC`
+    * `spec.securityContext.seLinuxOptions`
+    * `spec.securityContext.seccompProfile`
+    * `spec.securityContext.fsGroup`
+    * `spec.securityContext.fsGroupChangePolicy`
+    * `spec.securityContext.sysctls`
+    * `spec.shareProcessNamespace`
+    * `spec.securityContext.runAsUser`
+    * `spec.securityContext.runAsGroup`
+    * `spec.securityContext.supplementalGroups`
+    * `spec.containers[*].securityContext.seLinuxOptions`
+    * `spec.containers[*].securityContext.seccompProfile`
+    * `spec.containers[*].securityContext.capabilities`
+    * `spec.containers[*].securityContext.readOnlyRootFilesystem`
+    * `spec.containers[*].securityContext.privileged`
+    * `spec.containers[*].securityContext.allowPrivilegeEscalation`
+    * `spec.containers[*].securityContext.procMount`
+    * `spec.containers[*].securityContext.runAsUser`
+    * `spec.containers[*].securityContext.runAsGroup`
+ 
+    在上述列表中，通配符（`*`）表示列表中的所有项。
+    例如，`spec.containers[*].securityContext` 指代所有容器的 SecurityContext 对象。
+    如果指定了这些字段中的任意一个，则 API 服务器不会接受此 Pod。
+
+<!--
+* [Workload resources](/docs/concepts/workloads/controllers/) including:
+  * ReplicaSet
+  * Deployment
+  * StatefulSet
+  * DaemonSet
+  * Job
+  * CronJob
+  * ReplicationController
+* {{< glossary_tooltip text="Services" term_id="service" >}}
+  See [Load balancing and Services](/docs/concepts/services-networking/windows-networking/#load-balancing-and-services) for more details.
+-->
+* [工作负载资源](/zh-cn/docs/concepts/workloads/controllers/)包括：
+  
+  * ReplicaSet
+  * Deployment
+  * StatefulSet
+  * DaemonSet
+  * Job
+  * CronJob
+  * ReplicationController
+
+* {{< glossary_tooltip text="Services" term_id="service" >}}
+
+  有关更多详细信息，请参考[负载均衡和 Service](/zh-cn/docs/concepts/services-networking/windows-networking/#load-balancing-and-services)。
+
+<!--
+Pods, workload resources, and Services are critical elements to managing Windows
+workloads on Kubernetes. However, on their own they are not enough to enable
+the proper lifecycle management of Windows workloads in a dynamic cloud native
+environment. Kubernetes also supports:
+
+* `kubectl exec`
+* Pod and container metrics
+* {{< glossary_tooltip text="Horizontal pod autoscaling" term_id="horizontal-pod-autoscaler" >}}
+* {{< glossary_tooltip text="Resource quotas" term_id="resource-quota" >}}
+* Scheduler preemption
+-->
+Pod、工作负载资源和 Service 是在 Kubernetes 上管理 Windows 工作负载的关键元素。
+然而，它们本身还不足以在动态的云原生环境中对 Windows 工作负载进行恰当的生命周期管理。
+Kubernetes 还支持：
+
+* `kubectl exec`
+* Pod 和容器度量指标
+* {{< glossary_tooltip text="Pod 水平自动扩缩容" term_id="horizontal-pod-autoscaler" >}}
+* {{< glossary_tooltip text="资源配额" term_id="resource-quota" >}}
+* 调度器抢占
+
+<!--
+### Command line options for the kubelet {#kubelet-compatibility}
+
+Some kubelet command line options behave differently on Windows, as described below:
+-->
+### kubelet 的命令行选项 {#kubelet-compatibility}
+
+某些 kubelet 命令行选项在 Windows 上的行为不同，如下所述：
+
+<!--
+* The `--windows-priorityclass` lets you set the scheduling priority of the kubelet process
+  (see [CPU resource management](/docs/concepts/configuration/windows-resource-management/#resource-management-cpu))
+* The `--kubelet-reserve`, `--system-reserve` , and `--eviction-hard` flags update
+  [NodeAllocatable](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)
+* Eviction by using `--enforce-node-allocable` is not implemented
+* Eviction by using `--eviction-hard` and `--eviction-soft` are not implemented
+* When running on a Windows node the kubelet does not have memory or CPU
+  restrictions. `--kube-reserved` and `--system-reserved` only subtract from `NodeAllocatable`
+  and do not guarantee resource provided for workloads.
+  See [Resource Management for Windows nodes](/docs/concepts/configuration/windows-resource-management/#resource-reservation)
+  for more information.
+* The `MemoryPressure` Condition is not implemented
+* The kubelet does not take OOM eviction actions
+-->
+* `--windows-priorityclass` 允许你设置 kubelet 进程的调度优先级
+  （参考 [CPU 资源管理](/zh-cn/docs/concepts/configuration/windows-resource-management/#resource-management-cpu)）。
+* `--kubelet-reserve`、`--system-reserve` 和 `--eviction-hard` 标志更新
+  [NodeAllocatable](/zh-cn/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)。
+* 未实现使用 `--enforce-node-allocable` 驱逐。
+* 未实现使用 `--eviction-hard` 和 `--eviction-soft` 驱逐。
+* 在 Windows 节点上运行时，kubelet 没有内存或 CPU 限制。
+  `--kube-reserved` 和 `--system-reserved` 仅从 `NodeAllocatable` 中减去，并且不保证为工作负载提供的资源。
+  有关更多信息，请参考 [Windows 节点的资源管理](/zh-cn/docs/concepts/configuration/windows-resource-management/#resource-reservation)。
+* 未实现 `MemoryPressure` 条件。
+* kubelet 不会执行 OOM 驱逐操作。
+
+<!--
+### API compatibility {#api}
+
+There are subtle differences in the way the Kubernetes APIs work for Windows due to the OS
+and container runtime. Some workload properties were designed for Linux, and fail to run on Windows.
+
+At a high level, these OS concepts are different:
+-->
+### API 兼容性 {#api}
+
+由于操作系统和容器运行时的缘故，Kubernetes API 在 Windows 上的工作方式存在细微差异。
+某些工作负载属性是为 Linux 设计的，无法在 Windows 上运行。
+
+从较高的层面来看，以下操作系统概念是不同的：
+
+<!--
+* Identity - Linux uses userID (UID) and groupID (GID) which
+  are represented as integer types. User and group names
+  are not canonical - they are just an alias in `/etc/groups`
+  or `/etc/passwd` back to UID+GID. Windows uses a larger binary
+  [security identifier](https://docs.microsoft.com/en-us/windows/security/identity-protection/access-control/security-identifiers) (SID)
+  which is stored in the Windows Security Access Manager (SAM) database. This
+  database is not shared between the host and containers, or between containers.
+* File permissions - Windows uses an access control list based on (SIDs), whereas
+  POSIX systems such as Linux use a bitmask based on object permissions and UID+GID,
+  plus _optional_ access control lists.
+* File paths - the convention on Windows is to use `\` instead of `/`. The Go IO
+  libraries typically accept both and just make it work, but when you're setting a
+  path or command line that's interpreted inside a container, `\` may be needed.
+-->
+* 身份 - Linux 使用 userID（UID）和 groupID（GID），表示为整数类型。
+  用户名和组名是不规范的，它们只是 `/etc/groups` 或 `/etc/passwd` 中的别名，
+  作为 UID+GID 的后备标识。
+  Windows 使用更大的二进制[安全标识符](https://docs.microsoft.com/zh-cn/windows/security/identity-protection/access-control/security-identifiers)（SID），
+  存放在 Windows 安全访问管理器（Security Access Manager，SAM）数据库中。
+  此数据库在主机和容器之间或容器之间不共享。
+* 文件权限 - Windows 使用基于 SID 的访问控制列表，
+  而像 Linux 使用基于对象权限和 UID+GID 的位掩码（POSIX 系统）以及**可选的**访问控制列表。
+* 文件路径 - Windows 上的约定是使用 `\` 而不是 `/`。
+  Go IO 库通常接受两者，能让其正常工作，但当你设置要在容器内解读的路径或命令行时，
+  可能需要用 `\`。
+
+<!--
+* Signals - Windows interactive apps handle termination differently, and can
+  implement one or more of these:
+  * A UI thread handles well-defined messages including `WM_CLOSE`.
+  * Console apps handle Ctrl-C or Ctrl-break using a Control Handler.
+  * Services register a Service Control Handler function that can accept
+    `SERVICE_CONTROL_STOP` control codes.
+Container exit codes follow the same convention where 0 is success, and nonzero is failure.
+The specific error codes may differ across Windows and Linux. However, exit codes
+passed from the Kubernetes components (kubelet, kube-proxy) are unchanged.
+-->
+* 信号 - Windows 交互式应用处理终止的方式不同，可以实现以下一种或多种：
+  * UI 线程处理包括 `WM_CLOSE` 在内准确定义的消息。
+  * 控制台应用使用控制处理程序（Control Handler）处理 Ctrl-C 或 Ctrl-Break。
+  * 服务会注册可接受 `SERVICE_CONTROL_STOP` 控制码的服务控制处理程序（Service Control Handler）函数。
+
+容器退出码遵循相同的约定，其中 0 表示成功，非零表示失败。
+具体的错误码在 Windows 和 Linux 中可能不同。
+但是，从 Kubernetes 组件（kubelet、kube-proxy）传递的退出码保持不变。
+
+<!--
+##### Field compatibility for container specifications {#compatibility-v1-pod-spec-containers}
+
+The following list documents differences between how Pod container specifications
+work between Windows and Linux:
+
+* Huge pages are not implemented in the Windows container
+  runtime, and are not available. They require [asserting a user
+  privilege](https://docs.microsoft.com/en-us/windows/desktop/Memory/large-page-support)
+  that's not configurable for containers.
+* `requests.cpu` and `requests.memory` - requests are subtracted
+  from node available resources, so they can be used to avoid overprovisioning a
+  node. However, they cannot be used to guarantee resources in an overprovisioned
+  node. They should be applied to all containers as a best practice if the operator
+  wants to avoid overprovisioning entirely.
+-->
+##### 容器规范的字段兼容性 {#compatibility-v1-pod-spec-containers}
+
+以下列表记录了 Pod 容器规范在 Windows 和 Linux 之间的工作方式差异：
+
+* 巨页（Huge page）在 Windows 容器运行时中未实现，且不可用。
+  巨页需要不可为容器配置的[用户特权生效](https://docs.microsoft.com/zh-cn/windows/win32/memory/large-page-support)。
+* `requests.cpu` 和 `requests.memory` -
+  从节点可用资源中减去请求，因此请求可用于避免一个节点过量供应。
+  但是，请求不能用于保证已过量供应的节点中的资源。
+  如果运营商想要完全避免过量供应，则应将设置请求作为最佳实践应用到所有容器。
+<!--
+* `securityContext.allowPrivilegeEscalation` -
+   not possible on Windows; none of the capabilities are hooked up
+* `securityContext.capabilities` -
+   POSIX capabilities are not implemented on Windows
+* `securityContext.privileged` -
+   Windows doesn't support privileged containers
+* `securityContext.procMount` -
+   Windows doesn't have a `/proc` filesystem
+* `securityContext.readOnlyRootFilesystem` -
+   not possible on Windows; write access is required for registry & system
+   processes to run inside the container
+* `securityContext.runAsGroup` -
+   not possible on Windows as there is no GID support
+-->  
+* `securityContext.allowPrivilegeEscalation` -
+  不能在 Windows 上使用；所有权能字都无法生效。
+* `securityContext.capabilities` - POSIX 权能未在 Windows 上实现。
+* `securityContext.privileged` - Windows 不支持特权容器。
+* `securityContext.procMount` - Windows 没有 `/proc` 文件系统。
+* `securityContext.readOnlyRootFilesystem` -
+  不能在 Windows 上使用；对于容器内运行的注册表和系统进程，写入权限是必需的。
+* `securityContext.runAsGroup` - 不能在 Windows 上使用，因为不支持 GID。
+<!--
+* `securityContext.runAsNonRoot` -
+   this setting will prevent containers from running as `ContainerAdministrator`
+   which is the closest equivalent to a root user on Windows.
+* `securityContext.runAsUser` -
+   use [`runAsUserName`](/docs/tasks/configure-pod-container/configure-runasusername)
+   instead
+* `securityContext.seLinuxOptions` -
+   not possible on Windows as SELinux is Linux-specific
+* `terminationMessagePath` -
+   this has some limitations in that Windows doesn't support mapping single files. The
+   default value is `/dev/termination-log`, which does work because it does not
+   exist on Windows by default.
+-->
+* `securityContext.runAsNonRoot` - 
+  此设置将阻止以 `ContainerAdministrator` 身份运行容器，这是 Windows 上与 root 用户最接近的身份。
+* `securityContext.runAsUser` - 改用 [`runAsUserName`](/zh-cn/docs/tasks/configure-pod-container/configure-runasusername)。
+* `securityContext.seLinuxOptions` - 不能在 Windows 上使用，因为 SELinux 特定于 Linux。
+* `terminationMessagePath` - 这个字段有一些限制，因为 Windows 不支持映射单个文件。
+  默认值为 `/dev/termination-log`，因为默认情况下它在 Windows 上不存在，所以能生效。
+
+<!--
+##### Field compatibility for Pod specifications {#compatibility-v1-pod}
+
+The following list documents differences between how Pod specifications work between Windows and Linux:
+
+* `hostIPC` and `hostpid` - host namespace sharing is not possible on Windows
+* `hostNetwork` - There is no Windows OS support to share the host network
+* `dnsPolicy` - setting the Pod `dnsPolicy` to `ClusterFirstWithHostNet` is
+   not supported on Windows because host networking is not provided. Pods always
+   run with a container network.
+* `podSecurityContext` (see below)
+* `shareProcessNamespace` - this is a beta feature, and depends on Linux namespaces
+  which are not implemented on Windows. Windows cannot share process namespaces or
+  the container's root filesystem. Only the network can be shared.
+-->
+##### Pod 规范的字段兼容性 {#compatibility-v1-pod}
+
+以下列表记录了 Pod 规范在 Windows 和 Linux 之间的工作方式差异：
+
+* `hostIPC` 和 `hostpid` - 不能在 Windows 上共享主机命名空间。
+* `hostNetwork` - Windows 操作系统不支持共享主机网络。
+* `dnsPolicy` - Windows 不支持将 Pod `dnsPolicy` 设为 `ClusterFirstWithHostNet`，
+  因为未提供主机网络。Pod 始终用容器网络运行。
+* `podSecurityContext`（参见下文）
+* `shareProcessNamespace` - 这是一个 beta 版功能特性，依赖于 Windows 上未实现的 Linux 命名空间。
+  Windows 无法共享进程命名空间或容器的根文件系统（root filesystem）。
+  只能共享网络。
+<!--
+* `terminationGracePeriodSeconds` - this is not fully implemented in Docker on Windows,
+  see the [GitHub issue](https://github.com/moby/moby/issues/25982).
+  The behavior today is that the ENTRYPOINT process is sent CTRL_SHUTDOWN_EVENT,
+  then Windows waits 5 seconds by default, and finally shuts down
+  all processes using the normal Windows shutdown behavior. The 5
+  second default is actually in the Windows registry
+  [inside the container](https://github.com/moby/moby/issues/25982#issuecomment-426441183),
+  so it can be overridden when the container is built.
+* `volumeDevices` - this is a beta feature, and is not implemented on Windows.
+  Windows cannot attach raw block devices to pods.
+* `volumes`
+  * If you define an `emptyDir` volume, you cannot set its volume source to `memory`.
+* You cannot enable `mountPropagation` for volume mounts as this is not
+  supported on Windows.
+-->
+* `terminationGracePeriodSeconds` - 这在 Windows 上的 Docker 中没有完全实现，
+  请参考 [GitHub issue](https://github.com/moby/moby/issues/25982)。
+  目前的行为是通过 CTRL_SHUTDOWN_EVENT 发送 ENTRYPOINT 进程，然后 Windows 默认等待 5 秒，
+  最后使用正常的 Windows 关机行为终止所有进程。
+  5 秒默认值实际上位于[容器内](https://github.com/moby/moby/issues/25982#issuecomment-426441183)的 Windows 注册表中，
+  因此在构建容器时可以覆盖这个值。
+* `volumeDevices` - 这是一个 beta 版功能特性，未在 Windows 上实现。
+  Windows 无法将原始块设备挂接到 Pod。
+* `volumes`
+  * 如果你定义一个 `emptyDir` 卷，则你无法将卷源设为 `memory`。
+* 你无法为卷挂载启用 `mountPropagation`，因为这在 Windows 上不支持。
+
+<!--
+##### Field compatibility for Pod security context {#compatibility-v1-pod-spec-containers-securitycontext}
+
+None of the Pod [`securityContext`](/docs/reference/kubernetes-api/workload-resources/pod-v1/#security-context) fields work on Windows.
+-->
+##### Pod 安全上下文的字段兼容性 {#compatibility-v1-pod-spec-containers-securitycontext}
+
+Pod 的所有 [`securityContext`](/docs/reference/kubernetes-api/workload-resources/pod-v1/#security-context)
+字段都无法在 Windows 上生效。
+
+<!--
+## Node problem detector
+
+The node problem detector (see
+[Monitor Node Health](/docs/tasks/debug/debug-cluster/monitor-node-health/))
+has preliminary support for Windows.
+For more information, visit the project's [GitHub page](https://github.com/kubernetes/node-problem-detector#windows).
+-->
+## 节点问题检测器 {#node-problem-detector}
+
+节点问题检测器（参考[节点健康监测](/zh-cn/docs/tasks/debug/debug-cluster/monitor-node-health/)）初步支持 Windows。
+有关更多信息，请访问该项目的 [GitHub 页面](https://github.com/kubernetes/node-problem-detector#windows)。
+
+<!--
+### Pause container
+
+In a Kubernetes Pod, an infrastructure or “pause” container is first created
+to host the container. In Linux, the cgroups and namespaces that make up a pod
+need a process to maintain their continued existence; the pause process provides
+this. Containers that belong to the same pod, including infrastructure and worker
+containers, share a common network endpoint (same IPv4 and / or IPv6 address, same
+network port spaces). Kubernetes uses pause containers to allow for worker containers
+crashing or restarting without losing any of the networking configuration.
+-->
+### Pause 容器 {#pause-container}
+
+在 Kubernetes Pod 中，首先创建一个基础容器或 “pause” 容器来承载容器。
+在 Linux 中，构成 Pod 的 cgroup 和命名空间维持持续存在需要一个进程；
+而 pause 进程就提供了这个功能。
+属于同一 Pod 的容器（包括基础容器和工作容器）共享一个公共网络端点
+（相同的 IPv4 和/或 IPv6 地址，相同的网络端口空间）。
+Kubernetes 使用 pause 容器以允许工作容器崩溃或重启，而不会丢失任何网络配置。
+
+<!--
+Kubernetes maintains a multi-architecture image that includes support for Windows.
+For Kubernetes v{{< skew currentVersion >}} the recommended pause image is `k8s.gcr.io/pause:3.6`.
+The [source code](https://github.com/kubernetes/kubernetes/tree/master/build/pause)
+is available on GitHub.
+
+Microsoft maintains a different multi-architecture image, with Linux and Windows
+amd64 support, that you can find as `mcr.microsoft.com/oss/kubernetes/pause:3.6`.
+This image is built from the same source as the Kubernetes maintained image but
+all of the Windows binaries are [authenticode signed](https://docs.microsoft.com/en-us/windows-hardware/drivers/install/authenticode) by Microsoft.
+The Kubernetes project recommends using the Microsoft maintained image if you are
+deploying to a production or production-like environment that requires signed
+binaries.
+-->
+Kubernetes 维护一个多体系结构的镜像，包括对 Windows 的支持。
+对于 Kubernetes v{{< skew currentVersion >}}，推荐的 pause 镜像为 `k8s.gcr.io/pause:3.6`。
+可在 GitHub 上获得[源代码](https://github.com/kubernetes/kubernetes/tree/master/build/pause)。
+
+Microsoft 维护一个不同的多体系结构镜像，支持 Linux 和 Windows amd64，
+你可以找到的镜像类似 `mcr.microsoft.com/oss/kubernetes/pause:3.6`。
+此镜像的构建与 Kubernetes 维护的镜像同源，但所有 Windows 可执行文件均由
+Microsoft 进行了[验证码签名](https://docs.microsoft.com/zh-cn/windows-hardware/drivers/install/authenticode)。
+如果你正部署到一个需要签名可执行文件的生产或类生产环境，
+Kubernetes 项目建议使用 Microsoft 维护的镜像。
+
+<!--
+### Container runtimes {#container-runtime}
+
+You need to install a
+{{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}
+into each node in the cluster so that Pods can run there.
+
+The following container runtimes work with Windows:
+-->
+### 容器运行时 {#container-runtime}
+
+你需要将{{< glossary_tooltip text="容器运行时" term_id="container-runtime" >}}安装到集群中的每个节点，
+这样 Pod 才能在这些节点上运行。
+
+以下容器运行时适用于 Windows：
+
+{{% thirdparty-content %}}
+
+<!--
+#### ContainerD
+
+{{< feature-state for_k8s_version="v1.20" state="stable" >}}
+
+You can use {{< glossary_tooltip term_id="containerd" text="ContainerD" >}} 1.4.0+
+as the container runtime for Kubernetes nodes that run Windows.
+
+Learn how to [install ContainerD on a Windows node](/docs/setup/production-environment/container-runtimes/#install-containerd).
+-->
+#### ContainerD {#containerd}
+
+{{< feature-state for_k8s_version="v1.20" state="stable" >}}
+
+对于运行 Windows 的 Kubernetes 节点，你可以使用
+{{< glossary_tooltip term_id="containerd" text="ContainerD" >}} 1.4.0+ 作为容器运行时。
+
+学习如何[在 Windows 上安装 ContainerD](/zh-cn/docs/setup/production-environment/container-runtimes/#install-containerd)。
+
+<!--
+There is a [known limitation](/docs/tasks/configure-pod-container/configure-gmsa/#gmsa-limitations)
+when using GMSA with containerd to access Windows network shares, which requires a
+kernel patch.
+-->
+{{< note >}}
+将 GMSA 和 containerd 一起用于访问 Windows
+网络共享时存在[已知限制](/zh-cn/docs/tasks/configure-pod-container/configure-gmsa/#gmsa-limitations)，
+这需要一个内核补丁。
+{{< /note >}}
+
+<!--
+#### Mirantis Container Runtime {#mcr}
+
+[Mirantis Container Runtime](https://docs.mirantis.com/mcr/20.10/overview.html) (MCR) is available as a container runtime for all Windows Server 2019 and later versions.
+
+See [Install MCR on Windows Servers](https://docs.mirantis.com/mcr/20.10/install/mcr-windows.html) for more information.
+-->
+#### Mirantis 容器运行时 {#mcr}
+
+[Mirantis 容器运行时](https://docs.mirantis.com/mcr/20.10/overview.html)（MCR）
+可作为所有 Windows Server 2019 和更高版本的容器运行时。
+
+有关更多信息，请参考[在 Windows Server 上安装 MCR](https://docs.mirantis.com/mcr/20.10/install/mcr-windows.html)。
+
+<!--
+## Windows OS version compatibility {#windows-os-version-support}
+
+On Windows nodes, strict compatibility rules apply where the host OS version must
+match the container base image OS version. Only Windows containers with a container
+operating system of Windows Server 2019 are fully supported.
+
+For Kubernetes v{{< skew currentVersion >}}, operating system compatibility for Windows nodes (and Pods)
+is as follows:
+-->
+## Windows 操作系统版本兼容性 {#windows-os-version-support}
+
+在 Windows 节点上，如果主机操作系统版本必须与容器基础镜像操作系统版本匹配，
+则会应用严格的兼容性规则。
+仅 Windows Server 2019 作为容器操作系统时，才能完全支持 Windows 容器。
+
+对于 Kubernetes v{{< skew currentVersion >}}，Windows 节点（和 Pod）的操作系统兼容性如下：
+
+Windows Server LTSC release
+: Windows Server 2019
+: Windows Server 2022
+
+Windows Server SAC release
+:  Windows Server version 20H2
+
+<!--
+The Kubernetes [version-skew policy](/docs/setup/release/version-skew-policy/) also applies.
+-->
+也适用 Kubernetes [版本偏差策略](/zh-cn/releases/version-skew-policy/)。
+
+<!--
+## Getting help and troubleshooting {#troubleshooting}
+
+Your main source of help for troubleshooting your Kubernetes cluster should start
+with the [Troubleshooting](/docs/tasks/debug/)
+page.
+
+Some additional, Windows-specific troubleshooting help is included
+in this section. Logs are an important element of troubleshooting
+issues in Kubernetes. Make sure to include them any time you seek
+troubleshooting assistance from other contributors. Follow the
+instructions in the
+SIG Windows [contributing guide on gathering logs](https://github.com/kubernetes/community/blob/master/sig-windows/CONTRIBUTING.md#gathering-logs).
+-->
+## 获取帮助和故障排查 {#troubleshooting}
+
+对 Kubernetes 集群进行故障排查的主要帮助来源应始于[故障排查](/zh-cn/docs/tasks/debug/)页面。
+
+本节包括了一些其他特定于 Windows 的故障排查帮助。
+日志是解决 Kubernetes 中问题的重要元素。
+确保在任何时候向其他贡献者寻求故障排查协助时随附了日志信息。
+遵照 SIG Windows
+[日志收集贡献指南](https://github.com/kubernetes/community/blob/master/sig-windows/CONTRIBUTING.md#gathering-logs)中的指示说明。
+
+<!--
+### Reporting issues and feature requests
+
+If you have what looks like a bug, or you would like to
+make a feature request, please follow the [SIG Windows contributing guide](https://github.com/kubernetes/community/blob/master/sig-windows/CONTRIBUTING.md#reporting-issues-and-feature-requests) to create a new issue.
+You should first search the list of issues in case it was
+reported previously and comment with your experience on the issue and add additional
+logs. SIG Windows channel on the Kubernetes Slack is also a great avenue to get some initial support and
+troubleshooting ideas prior to creating a ticket.
+-->
+### 报告问题和功能请求 {#report-issue-and-feature-request}
+
+如果你发现疑似 bug，或者你想提出功能请求，请按照
+[SIG Windows 贡献指南](https://github.com/kubernetes/community/blob/master/sig-windows/CONTRIBUTING.md#reporting-issues-and-feature-requests)
+新建一个 Issue。
+你应该先搜索 issue 列表，以防之前报告过这个问题，凭你对该问题的经验添加评论，
+并随附日志信息。
+Kubernetes Slack 上的 SIG Windows 频道也是一个很好的途径，
+可以在创建工单之前获得一些初始支持和故障排查思路。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+### Deployment tools
+
+The kubeadm tool helps you to deploy a Kubernetes cluster, providing the control
+plane to manage the cluster it, and nodes to run your workloads.
+[Adding Windows nodes](/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes/)
+explains how to deploy Windows nodes to your cluster using kubeadm.
+
+The Kubernetes [cluster API](https://cluster-api.sigs.k8s.io/) project also provides means to automate deployment of Windows nodes.
+-->
+### 部署工具 {#deployment-tools}
+
+kubeadm 工具帮助你部署 Kubernetes 集群，提供管理集群的控制平面以及运行工作负载的节点。
+[添加 Windows 节点](/zh-cn/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes/)阐述了如何使用
+kubeadm 将 Windows 节点部署到你的集群。
+
+Kubernetes [集群 API](https://cluster-api.sigs.k8s.io/) 项目也提供了自动部署 Windows 节点的方式。
+
+<!--
+### Windows distribution channels
+
+For a detailed explanation of Windows distribution channels see the [Microsoft documentation](https://docs.microsoft.com/en-us/windows-server/get-started-19/servicing-channels-19).
+
+Information on the different Windows Server servicing channels
+including their support models can be found at
+[Windows Server servicing channels](https://docs.microsoft.com/en-us/windows-server/get-started/servicing-channels-comparison).
+-->
+### Windows 分发渠道 {#windows-distribution-channels}
+
+有关 Windows 分发渠道的详细阐述，请参考
+[Microsoft 文档](https://docs.microsoft.com/zh-cn/windows-server/get-started-19/servicing-channels-19)。
+
+有关支持模型在内的不同 Windows Server 服务渠道的信息，请参考
+[Windows Server 服务渠道](https://docs.microsoft.com/zh-cn/windows-server/get-started/servicing-channels-comparison)。
diff --git a/content/zh-cn/docs/concepts/windows/user-guide.md b/content/zh-cn/docs/concepts/windows/user-guide.md
new file mode 100644
index 0000000000..ede5611ad5
--- /dev/null
+++ b/content/zh-cn/docs/concepts/windows/user-guide.md
@@ -0,0 +1,482 @@
+---
+title: Kubernetes 中的 Windows 容器调度指南
+content_type: concept
+weight: 75
+---
+<!-- 
+reviewers:
+- jayunit100
+- jsturtevant
+- marosset
+title: Guide for scheduling Windows containers in Kubernetes
+content_type: concept
+weight: 75
+-->
+
+<!-- overview -->
+
+<!-- 
+Windows applications constitute a large portion of the services and applications that run in many organizations.
+This guide walks you through the steps to configure and deploy Windows containers in Kubernetes.
+-->
+在许多组织中运行的服务和应用程序中，Windows 应用程序构成了很大一部分。
+本指南将引导你完成在 Kubernetes 中配置和部署 Windows 容器的步骤。
+
+<!-- body -->
+
+<!-- 
+## Objectives
+
+* Configure an example deployment to run Windows containers on the Windows node
+* Highlight Windows specific funcationality in Kubernetes
+-->
+## 目标  {#objectives}
+
+* 配置 Deployment 样例以在 Windows 节点上运行 Windows 容器
+* 在 Kubernetes 中突出 Windows 特定的功能
+
+<!-- 
+## Before you begin
+
+* Create a Kubernetes cluster that includes a
+control plane and a [worker node running Windows Server](/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes/)
+* It is important to note that creating and deploying services and workloads on Kubernetes
+behaves in much the same way for Linux and Windows containers.
+[Kubectl commands](/docs/reference/kubectl/) to interface with the cluster are identical.
+The example in the section below is provided to jumpstart your experience with Windows containers.
+-->
+## 在你开始之前  {#before-you-begin}
+
+* 创建一个 Kubernetes 集群，其中包含一个控制平面和一个[运行 Windows Server 的工作节点](/zh-cn/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes/)
+* 务必请注意，在 Kubernetes 上创建和部署服务和工作负载的行为方式与 Linux 和 Windows 容器的行为方式大致相同。
+  与集群交互的 [kubectl 命令](/zh-cn/docs/reference/kubectl/)是一致的。
+  下一小节的示例旨在帮助你快速开始使用 Windows 容器。
+
+<!-- 
+## Getting Started: Deploying a Windows container
+
+The example YAML file below deploys a simple webserver application running inside a Windows container.
+
+Create a service spec named `win-webserver.yaml` with the contents below:
+-->
+## 快速开始：部署 Windows 容器  {#getting-started-deploying-a-windows-container}
+
+以下示例 YAML 文件部署了一个在 Windows 容器内运行的简单 Web 服务器的应用程序。
+
+创建一个名为 `win-webserver.yaml` 的 Service 规约，其内容如下：
+
+```yaml
+apiVersion: v1
+kind: Service
+metadata:
+  name: win-webserver
+  labels:
+    app: win-webserver
+spec:
+  ports:
+    # 此 Service 服务的端口
+    - port: 80
+      targetPort: 80
+  selector:
+    app: win-webserver
+  type: NodePort
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app: win-webserver
+  name: win-webserver
+spec:
+  replicas: 2
+  selector:
+    matchLabels:
+      app: win-webserver
+  template:
+    metadata:
+      labels:
+        app: win-webserver
+      name: win-webserver
+    spec:
+     containers:
+      - name: windowswebserver
+        image: mcr.microsoft.com/windows/servercore:ltsc2019
+        command:
+        - powershell.exe
+        - -command
+        - "<#code used from https://gist.github.com/19WAS85/5424431#> ; $$listener = New-Object System.Net.HttpListener ; $$listener.Prefixes.Add('http://*:80/') ; $$listener.Start() ; $$callerCounts = @{} ; Write-Host('Listening at http://*:80/') ; while ($$listener.IsListening) { ;$$context = $$listener.GetContext() ;$$requestUrl = $$context.Request.Url ;$$clientIP = $$context.Request.RemoteEndPoint.Address ;$$response = $$context.Response ;Write-Host '' ;Write-Host('> {0}' -f $$requestUrl) ;  ;$$count = 1 ;$$k=$$callerCounts.Get_Item($$clientIP) ;if ($$k -ne $$null) { $$count += $$k } ;$$callerCounts.Set_Item($$clientIP, $$count) ;$$ip=(Get-NetAdapter | Get-NetIpAddress); $$header='<html><body><H1>Windows Container Web Server</H1>' ;$$callerCountsString='' ;$$callerCounts.Keys | % { $$callerCountsString+='<p>IP {0} callerCount {1} ' -f $$ip[1].IPAddress,$$callerCounts.Item($$_) } ;$$footer='</body></html>' ;$$content='{0}{1}{2}' -f $$header,$$callerCountsString,$$footer ;Write-Output $$content ;$$buffer = [System.Text.Encoding]::UTF8.GetBytes($$content) ;$$response.ContentLength64 = $$buffer.Length ;$$response.OutputStream.Write($$buffer, 0, $$buffer.Length) ;$$response.Close() ;$$responseStatus = $$response.StatusCode ;Write-Host('< {0}' -f $$responseStatus)  } ; "
+     nodeSelector:
+      kubernetes.io/os: windows
+```
+
+{{< note >}}
+<!-- 
+Port mapping is also supported, but for simplicity this example exposes
+port 80 of the container directly to the Service.
+-->
+端口映射也是支持的，但为简单起见，此示例将容器的端口 80 直接暴露给服务。
+{{< /note >}}
+
+<!-- 
+1. Check that all nodes are healthy:
+-->
+1. 检查所有节点是否健康
+
+   ```bash
+   kubectl get nodes
+   ```
+
+<!-- 
+1. Deploy the service and watch for pod updates:
+-->
+1. 部署 Service 并监视 Pod 更新：
+
+   ```bash
+   kubectl apply -f win-webserver.yaml
+   kubectl get pods -o wide -w
+   ```
+
+   <!-- 
+   When the service is deployed correctly both Pods are marked as Ready. To exit the watch command, press Ctrl+C.
+   -->
+   当 Service 被正确部署时，两个 Pod 都被标记为就绪（Ready）。要退出 watch 命令，请按 Ctrl+C。
+
+<!-- 
+1. Check that the deployment succeeded. To verify:
+
+    * Two pods listed from the Linux control plane node, use `kubectl get pods`
+    * Node-to-pod communication across the network, `curl` port 80 of your pod IPs from the Linux control plane node
+      to check for a web server response
+    * Pod-to-pod communication, ping between pods (and across hosts, if you have more than one Windows node)
+      using `docker exec` or `kubectl exec`
+    * Service-to-pod communication, `curl` the virtual service IP (seen under `kubectl get services`)
+      from the Linux control plane node and from individual pods
+    * Service discovery, `curl` the service name with the Kubernetes [default DNS suffix](/docs/concepts/services-networking/dns-pod-service/#services)
+    * Inbound connectivity, `curl` the NodePort from the Linux control plane node or machines outside of the cluster
+    * Outbound connectivity, `curl` external IPs from inside the pod using `kubectl exec`
+-->
+1. 检查部署是否成功。请验证：
+
+   * 当执行 `kubectl get pods` 命令时，能够从 Linux 控制平面所在的节点上列出两个 Pod。
+   * 跨网络的节点到 Pod 通信，从 Linux 控制平面所在的节点上执行 `curl` 命令来访问
+     Pod IP 的 80 端口以检查 Web 服务器响应。
+   * Pod 间通信，使用 `docker exec` 或 `kubectl exec`
+     命令进入容器，并在 Pod 之间（以及跨主机，如果你有多个 Windows 节点）相互进行 ping 操作。
+   * Service 到 Pod 的通信，在 Linux 控制平面所在的节点以及独立的 Pod 中执行 `curl`
+     命令来访问虚拟的服务 IP（在 `kubectl get services` 命令下查看）。
+   * 服务发现，执行 `curl` 命令来访问带有 Kubernetes 
+     [默认 DNS 后缀](/zh-cn/docs/concepts/services-networking/dns-pod-service/#services)的服务名称。
+   * 入站连接，在 Linux 控制平面所在的节点上或集群外的机器上执行 `curl` 命令来访问 NodePort 服务。
+   * 出站连接，使用 `kubectl exec`，从 Pod 内部执行 `curl` 访问外部 IP。
+
+{{< note >}}
+<!-- 
+Windows container hosts are not able to access the IP of services scheduled on them due to current platform limitations of the Windows networking stack.
+Only Windows pods are able to access service IPs.
+-->
+由于当前 Windows 平台的网络堆栈限制，Windows 容器主机无法访问调度到其上的 Service 的 IP。
+只有 Windows Pod 能够访问 Service IP。
+{{< /note >}}
+
+<!-- 
+## Observability
+
+### Capturing logs from workloads
+
+Logs are an important element of observability; they enable users to gain insights
+into the operational aspect of workloads and are a key ingredient to troubleshooting issues.
+Because Windows containers and workloads inside Windows containers behave differently from Linux containers,
+users had a hard time collecting logs, limiting operational visibility.
+Windows workloads for example are usually configured to log to ETW (Event Tracing for Windows)
+or push entries to the application event log.
+[LogMonitor](https://github.com/microsoft/windows-container-tools/tree/master/LogMonitor), an open source tool by Microsoft,
+is the recommended way to monitor configured log sources inside a Windows container.
+LogMonitor supports monitoring event logs, ETW providers, and custom application logs,
+piping them to STDOUT for consumption by `kubectl logs <pod>`.
+
+Follow the instructions in the LogMonitor GitHub page to copy its binaries and configuration files
+to all your containers and add the necessary entrypoints for LogMonitor to push your logs to STDOUT.
+-->
+## 可观察性  {#observability}
+
+### 捕捉来自工作负载的日志  {#capturing-logs-from-workloads}
+
+日志是可观察性的重要元素；它们使用户能够深入了解工作负载的运行情况，并且是解决问题的关键因素。
+由于 Windows 容器和 Windows 容器中的工作负载与 Linux 容器的行为不同，因此用户很难收集日志，从而限制了操作可见性。
+例如，Windows 工作负载通常配置为记录到 ETW（Windows 事件跟踪）或向应用程序事件日志推送条目。
+[LogMonitor](https://github.com/microsoft/windows-container-tools/tree/master/LogMonitor)
+是一个微软开源的工具，是监视 Windows 容器内所配置的日志源的推荐方法。
+LogMonitor 支持监视事件日志、ETW 提供程序和自定义应用程序日志，将它们传送到 STDOUT 以供 `kubectl logs <pod>` 使用。
+
+按照 LogMonitor GitHub 页面中的说明，将其二进制文件和配置文件复制到所有容器，
+并为 LogMonitor 添加必要的入口点以将日志推送到标准输出（STDOUT）。
+
+<!-- 
+## Configuring container user
+
+### Using configurable Container usernames
+
+Windows containers can be configured to run their entrypoints and processes
+with different usernames than the image defaults.
+Learn more about it [here](/docs/tasks/configure-pod-container/configure-runasusername/).
+-->
+## 配置容器用户  {#configuring-container-user}
+
+### 使用可配置的容器用户名  {#using-configurable-container-usernames}
+
+Windows 容器可以配置为使用不同于镜像默认值的用户名来运行其入口点和进程。
+[在这里](/zh-cn/docs/tasks/configure-pod-container/configure-runasusername/)了解更多信息。
+
+<!-- 
+### Managing Workload Identity with Group Managed Service Accounts
+
+Windows container workloads can be configured to use Group Managed Service Accounts (GMSA).
+Group Managed Service Accounts are a specific type of Active Directory account that provide automatic password management,
+simplified service principal name (SPN) management, and the ability to delegate the management to other administrators across multiple servers.
+Containers configured with a GMSA can access external Active Directory Domain resources while carrying the identity configured with the GMSA.
+Learn more about configuring and using GMSA for Windows containers [here](/docs/tasks/configure-pod-container/configure-gmsa/).
+-->
+### 使用组托管服务帐户（GMSA）管理工作负载身份  {#managing-workload-identity-with-group-managed-service-accounts}
+
+Windows 容器工作负载可以配置为使用组托管服务帐户（Group Managed Service Accounts，GMSA）。
+组托管服务帐户是一种特定类型的活动目录（Active Directory）帐户，可提供自动密码管理、
+简化的服务主体名称（Service Principal Name，SPN）管理，以及将管理委派给多个服务器上的其他管理员的能力。
+配置了 GMSA 的容器可以携带使用 GMSA 配置的身份访问外部活动目录域资源。
+在[此处](/zh-cn/docs/tasks/configure-pod-container/configure-gmsa/)了解有关为 Windows 容器配置和使用 GMSA 的更多信息。
+
+<!-- 
+## Taints and Tolerations
+
+Users need to use some combination of taints and node selectors in order to
+schedule Linux and Windows workloads to their respective OS-specific nodes.
+The recommended approach is outlined below,
+with one of its main goals being that this approach should not break compatibility for existing Linux workloads.
+
+If the `IdentifyPodOS` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is
+enabled, you can (and should) set `.spec.os.name` for a Pod to indicate the operating system
+that the containers in that Pod are designed for. For Pods that run Linux containers, set
+`.spec.os.name` to `linux`. For Pods that run Windows containers, set `.spec.os.name`
+to Windows.
+-->
+## 污点和容忍度  {#taints-and-tolerations}
+
+用户需要使用某种污点（Taint）和节点选择器的组合，以便将 Linux 和 Windows 工作负载各自调度到特定操作系统的节点。
+下面概述了推荐的方法，其主要目标之一是该方法不应破坏现有 Linux 工作负载的兼容性。
+
+如果启用了 `IdentifyPodOS` [特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)，
+你可以（并且应该）将 Pod 的 `.spec.os.name` 设置为该 Pod 中的容器设计所用于的操作系统。
+对于运行 Linux 容器的 Pod，将 `.spec.os.name` 设置为 `linux`。
+对于运行 Windows 容器的 Pod，将 `.spec.os.name` 设置为 `Windows`。
+
+{{< note >}}
+<!-- 
+Starting from 1.24, the `IdentifyPodOS` feature is in Beta stage and defaults to be enabled.
+-->
+从 1.24 开始，`IdentifyPodOS` 特性处于 Beta 阶段，默认启用。
+{{< /note >}}
+
+<!-- 
+The scheduler does not use the value of `.spec.os.name` when assigning Pods to nodes. You should
+use normal Kubernetes mechanisms for
+[assigning pods to nodes](/docs/concepts/scheduling-eviction/assign-pod-node/)
+to ensure that the control plane for your cluster places pods onto nodes that are running the
+appropriate operating system.
+
+The `.spec.os.name` value has no effect on the scheduling of the Windows pods,
+so taints and tolerations and node selectors are still required
+ to ensure that the Windows pods land onto appropriate Windows nodes.
+-->
+调度器在将 Pod 分配到节点时并不使用 `.spec.os.name` 的值。
+你应该使用正常的 Kubernetes 机制[将 Pod 分配给节点](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/)，
+以确保集群的控制平面将 Pod 放置到运行适当操作系统的节点上。
+
+`.spec.os.name` 值对 Windows Pod 的调度没有影响，
+因此仍然需要污点和容忍以及节点选择器来确保 Windows Pod 落在适当的 Windows 节点。
+
+<!-- 
+### Ensuring OS-specific workloads land on the appropriate container host
+
+Users can ensure Windows containers can be scheduled on the appropriate host using Taints and Tolerations.
+All Kubernetes nodes today have the following default labels:
+
+* kubernetes.io/os = [windows|linux]
+* kubernetes.io/arch = [amd64|arm64|...]
+-->
+### 确保特定于操作系统的工作负载落到合适的容器主机上  {#ensuring-os-specific-workloads-land-on-the-appropriate-container-host}
+
+用户可以使用污点（Taint）和容忍度（Toleration）确保将 Windows 容器调度至合适的主机上。
+现在，所有的 Kubernetes 节点都有以下默认标签：
+
+* kubernetes.io/os = [windows|linux]
+* kubernetes.io/arch = [amd64|arm64|...]
+
+<!-- 
+If a Pod specification does not specify a nodeSelector like `"kubernetes.io/os": windows`,
+it is possible the Pod can be scheduled on any host, Windows or Linux.
+This can be problematic since a Windows container can only run on Windows and a Linux container can only run on Linux.
+The best practice is to use a nodeSelector.
+-->
+如果 Pod 规约没有指定像 `"kubernetes.io/os": windows` 这样的 nodeSelector，
+则 Pod 可以被调度到任何主机上，Windows 或 Linux。
+这可能会有问题，因为 Windows 容器只能在 Windows 上运行，而 Linux 容器只能在 Linux 上运行。
+最佳实践是使用 nodeSelector。
+
+<!-- 
+However, we understand that in many cases users have a pre-existing large number of deployments for Linux containers,
+as well as an ecosystem of off-the-shelf configurations, such as community Helm charts, and programmatic Pod generation cases, such as with Operators.
+In those situations, you may be hesitant to make the configuration change to add nodeSelectors.
+The alternative is to use Taints. Because the kubelet can set Taints during registration,
+it could easily be modified to automatically add a taint when running on Windows only.
+-->
+但是，我们了解到，在许多情况下，用户已经预先存在大量 Linux 容器部署，
+以及现成配置的生态系统，例如社区中的 Helm Chart 包和程序化的 Pod 生成案例，例如 Operator。
+在这些情况下，你可能不愿更改配置来添加节点选择器。
+另一种方法是使用污点。因为 kubelet 可以在注册过程中设置污点，
+所以可以很容易地修改为，当只能在 Windows 上运行时，自动添加污点。
+
+<!-- 
+For example:  `--register-with-taints='os=windows:NoSchedule'`
+
+By adding a taint to all Windows nodes, nothing will be scheduled on them (that includes existing Linux Pods).
+In order for a Windows Pod to be scheduled on a Windows node, 
+it would need both the nodeSelector and the appropriate matching toleration to choose Windows.
+-->
+例如：`--register-with-taints='os=windows:NoSchedule'`
+
+通过向所有 Windows 节点添加污点，任何负载都不会被调度到这些节点上（包括现有的 Linux Pod）。
+为了在 Windows 节点上调度 Windows Pod，它需要 nodeSelector 和匹配合适的容忍度来选择 Windows。
+
+```yaml
+nodeSelector:
+    kubernetes.io/os: windows
+    node.kubernetes.io/windows-build: '10.0.17763'
+tolerations:
+    - key: "os"
+      operator: "Equal"
+      value: "windows"
+      effect: "NoSchedule"
+```
+
+<!-- 
+### Handling multiple Windows versions in the same cluster
+
+The Windows Server version used by each pod must match that of the node. If you want to use multiple Windows
+Server versions in the same cluster, then you should set additional node labels and nodeSelectors.
+
+Kubernetes 1.17 automatically adds a new label `node.kubernetes.io/windows-build` to simplify this.
+If you're running an older version, then it's recommended to add this label manually to Windows nodes.
+
+This label reflects the Windows major, minor, and build number that need to match for compatibility.
+Here are values used today for each Windows Server version.
+-->
+### 处理同一集群中的多个 Windows 版本  {#handling-multiple-windows-versions-in-the-same-cluster}
+
+每个 Pod 使用的 Windows Server 版本必须与节点的版本匹配。
+如果要在同一个集群中使用多个 Windows Server 版本，则应设置额外的节点标签和节点选择器。
+
+Kubernetes 1.17 自动添加了一个新标签 `node.kubernetes.io/windows-build` 来简化这一点。
+如果你运行的是旧版本，则建议手动将此标签添加到 Windows 节点。
+
+此标签反映了需要匹配以实现兼容性的 Windows 主要、次要和内部版本号。
+以下是目前用于每个 Windows Server 版本的值。
+
+<!-- 
+| Product Name                         |   Build Number(s)      |
+-->
+| 产品名称                              |   构建号                |
+|--------------------------------------|------------------------|
+| Windows Server 2019                  | 10.0.17763             |
+| Windows Server, Version 20H2         | 10.0.19042             |
+| Windows Server 2022                  | 10.0.20348             |
+
+<!-- 
+### Simplifying with RuntimeClass
+
+[RuntimeClass] can be used to simplify the process of using taints and tolerations.
+A cluster administrator can create a `RuntimeClass` object which is used to encapsulate these taints and tolerations.
+
+1. Save this file to `runtimeClasses.yml`. It includes the appropriate `nodeSelector`
+for the Windows OS, architecture, and version.
+-->
+### 使用 RuntimeClass 进行简化  {#simplifying-with-runtimeclass}
+
+[RuntimeClass] 可用于简化使用污点和容忍度的流程。
+集群管理员可以创建一个用于封装这些污点和容忍度的 `RuntimeClass` 对象。
+
+1. 将此文件保存到 `runtimeClasses.yml`。它包括针对 Windows 操作系统、架构和版本的 `nodeSelector`。
+
+```yaml
+apiVersion: node.k8s.io/v1
+kind: RuntimeClass
+metadata:
+  name: windows-2019
+handler: 'docker'
+scheduling:
+  nodeSelector:
+    kubernetes.io/os: 'windows'
+    kubernetes.io/arch: 'amd64'
+    node.kubernetes.io/windows-build: '10.0.17763'
+  tolerations:
+  - effect: NoSchedule
+    key: os
+    operator: Equal
+    value: "windows"
+```
+
+<!-- 
+1. Run `kubectl create -f runtimeClasses.yml` using as a cluster administrator
+1. Add `runtimeClassName: windows-2019` as appropriate to Pod specs
+
+For example:
+-->
+1. 以集群管理员身份运行 `kubectl create -f runtimeClasses.yml`
+1. 根据情况，向 Pod 规约中添加 `runtimeClassName: windows-2019`
+
+例如：
+
+```yaml
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: iis-2019
+  labels:
+    app: iis-2019
+spec:
+  replicas: 1
+  template:
+    metadata:
+      name: iis-2019
+      labels:
+        app: iis-2019
+    spec:
+      runtimeClassName: windows-2019
+      containers:
+      - name: iis
+        image: mcr.microsoft.com/windows/servercore/iis:windowsservercore-ltsc2019
+        resources:
+          limits:
+            cpu: 1
+            memory: 800Mi
+          requests:
+            cpu: .1
+            memory: 300Mi
+        ports:
+          - containerPort: 80
+ selector:
+    matchLabels:
+      app: iis-2019
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: iis
+spec:
+  type: LoadBalancer
+  ports:
+  - protocol: TCP
+    port: 80
+  selector:
+    app: iis-2019
+```
+
+[RuntimeClass]: /zh-cn/docs/concepts/containers/runtime-class/
diff --git a/content/zh/docs/concepts/workloads/_index.md b/content/zh-cn/docs/concepts/workloads/_index.md
similarity index 73%
rename from content/zh/docs/concepts/workloads/_index.md
rename to content/zh-cn/docs/concepts/workloads/_index.md
index a61176f660..a9e0ccc89d 100644
--- a/content/zh/docs/concepts/workloads/_index.md
+++ b/content/zh-cn/docs/concepts/workloads/_index.md
@@ -25,10 +25,10 @@ a critical failure on the {{< glossary_tooltip text="node" term_id="node" >}} wh
 Pod is running means that all the Pods on that node fail. Kubernetes treats that level
 of failure as final: you would need to create a new Pod even if the node later recovers.
 -->
-无论你的负载是单一组件还是由多个一同工作的组件构成，在 Kubernetes 中你
-可以在一组 [Pods](/zh/docs/concepts/workloads/pods) 中运行它。
+在 Kubernetes 中，无论你的负载是由单个组件还是由多个一同工作的组件构成，
+你都可以在一组 [Pod](/zh-cn/docs/concepts/workloads/pods) 中运行它。
 在 Kubernetes 中，Pod 代表的是集群上处于运行状态的一组
-{{< glossary_tooltip text="容器" term_id="container" >}}。
+{{< glossary_tooltip text="容器" term_id="container" >}} 的集合。
 
 <!--
 Kubernetes pods have a [defined lifecycle](/docs/concepts/workloads/pods/pod-lifecycle/).
@@ -37,11 +37,11 @@ For example, once a pod is running in your cluster then a critical fault on the
 all the pods on that node fail. Kubernetes treats that level of failure as final: you
 would need to create a new `Pod` to recover, even if the node later becomes healthy.
 -->
-Kubernetes Pods 有[确定的生命周期](/zh/docs/concepts/workloads/pods/pod-lifecycle/)。
-例如，当某 Pod 在你的集群中运行时，Pod 运行所在的
+Kubernetes Pods 遵循[预定义的生命周期](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/)。
+例如，当在你的集群中运行了某个 Pod，但是 Pod 所在的
 {{< glossary_tooltip text="节点" term_id="node" >}} 出现致命错误时，
-所有该节点上的 Pods 都会失败。Kubernetes 将这类失败视为最终状态：
-即使该节点后来恢复正常运行，你也需要创建新的 Pod 来恢复应用。
+所有该节点上的 Pods 的状态都会变成失败。Kubernetes 将这类失败视为最终状态：
+即使该节点后来恢复正常运行，你也需要创建新的 Pod 以恢复应用。
 
 <!--
 However, to make life considerably easier, you don't need to manage each Pod directly.
@@ -52,10 +52,10 @@ you specified.
 
 Kubernetes provides several built-in workload resources:
 -->
-不过，为了让用户的日子略微好过一些，你并不需要直接管理每个 Pod。
-相反，你可以使用 _负载资源_ 来替你管理一组 Pods。
-这些资源配置 {{< glossary_tooltip term_id="controller" text="控制器" >}}
-来确保合适类型的、处于运行状态的 Pod 个数是正确的，与你所指定的状态相一致。
+不过，为了减轻用户的使用负担，通常不需要用户直接管理每个 Pod。
+而是使用**负载资源**来替用户管理一组 Pod。
+这些负载资源通过配置 {{< glossary_tooltip term_id="controller" text="控制器" >}}
+来确保正确类型的、处于运行状态的 Pod 个数是正确的，与用户所指定的状态相一致。
 
 Kubernetes 提供若干种内置的工作负载资源：
 
@@ -72,15 +72,15 @@ Kubernetes 提供若干种内置的工作负载资源：
   `Pods` for that `StatefulSet`, can replicate data to other `Pods` in the same `StatefulSet`
   to improve overall resilience.
 -->
-* [Deployment](/zh/docs/concepts/workloads/controllers/deployment/) 和
-  [ReplicaSet](/zh/docs/concepts/workloads/controllers/replicaset/)
+* [Deployment](/zh-cn/docs/concepts/workloads/controllers/deployment/) 和
+  [ReplicaSet](/zh-cn/docs/concepts/workloads/controllers/replicaset/)
   （替换原来的资源 {{< glossary_tooltip text="ReplicationController" term_id="replication-controller" >}}）。
   `Deployment` 很适合用来管理你的集群上的无状态应用，`Deployment` 中的所有
-  `Pod` 都是相互等价的，并且在需要的时候被换掉。
-* [StatefulSet](/zh/docs/concepts/workloads/controllers/statefulset/)
+  `Pod` 都是相互等价的，并且在需要的时候被替换。
+* [StatefulSet](/zh-cn/docs/concepts/workloads/controllers/statefulset/)
   让你能够运行一个或者多个以某种方式跟踪应用状态的 Pods。
   例如，如果你的负载会将数据作持久存储，你可以运行一个 `StatefulSet`，将每个
-  `Pod` 与某个 [`PersistentVolume`](/zh/docs/concepts/storage/persistent-volumes/)
+  `Pod` 与某个 [`PersistentVolume`](/zh-cn/docs/concepts/storage/persistent-volumes/)
   对应起来。你在 `StatefulSet` 中各个 `Pod` 内运行的代码可以将数据复制到同一
   `StatefulSet` 中的其它 `Pod` 中以提高整体的服务可靠性。
 <!--
@@ -95,14 +95,14 @@ Kubernetes 提供若干种内置的工作负载资源：
   define tasks that run to completion and then stop. Jobs represent one-off tasks, whereas
   `CronJobs` recur according to a schedule.
 -->
-* [DaemonSet](/zh/docs/concepts/workloads/controllers/daemonset/)
+* [DaemonSet](/zh-cn/docs/concepts/workloads/controllers/daemonset/)
   定义提供节点本地支撑设施的 `Pods`。这些 Pods 可能对于你的集群的运维是
   非常重要的，例如作为网络链接的辅助工具或者作为网络
   {{< glossary_tooltip text="插件" term_id="addons" >}}
   的一部分等等。每次你向集群中添加一个新节点时，如果该节点与某 `DaemonSet`
   的规约匹配，则控制面会为该 `DaemonSet` 调度一个 `Pod` 到该新节点上运行。
-* [Job](/zh/docs/concepts/workloads/controllers/job/) 和
-  [CronJob](/zh/docs/concepts/workloads/controllers/cron-jobs/)。
+* [Job](/zh-cn/docs/concepts/workloads/controllers/job/) 和
+  [CronJob](/zh-cn/docs/concepts/workloads/controllers/cron-jobs/)。
   定义一些一直运行到结束并停止的任务。`Job` 用来表达的是一次性的任务，而
   `CronJob` 会根据其时间规划反复运行。
 
@@ -115,13 +115,12 @@ of Kubernetes' core. For example, if you wanted to run a group of `Pods` for you
 stop work unless _all_ the Pods are available (perhaps for some high-throughput distributed task),
 then you can implement or install an extension that does provide that feature.
 -->
-在庞大的 Kubernetes 生态系统中，你还可以找到一些提供额外操作的第三方
-工作负载资源。通过使用
-[定制资源定义（CRD）](/zh/docs/concepts/extend-kubernetes/api-extension/custom-resources/)，
+在庞大的 Kubernetes 生态系统中，你还可以找到一些提供额外操作的第三方工作负载相关的资源。
+通过使用[定制资源定义（CRD）](/zh-cn/docs/concepts/extend-kubernetes/api-extension/custom-resources/)，
 你可以添加第三方工作负载资源，以完成原本不是 Kubernetes 核心功能的工作。
 例如，如果你希望运行一组 `Pods`，但要求所有 Pods 都可用时才执行操作
-（比如针对某种高吞吐量的分布式任务），你可以实现一个能够满足这一需求
-的扩展，并将其安装到集群中运行。
+（比如针对某种高吞吐量的分布式任务），你可以基于定制资源实现一个能够满足这一需求的扩展，
+并将其安装到集群中运行。
 
 ## {{% heading "whatsnext" %}}
 
@@ -135,33 +134,31 @@ As well as reading about each resource, you can learn about specific tasks that
 -->
 除了阅读了解每类资源外，你还可以了解与这些资源相关的任务：
 
-* [使用 Deployment 运行一个无状态的应用](/zh/docs/tasks/run-application/run-stateless-application-deployment/)
-* 以[单实例](/zh/docs/tasks/run-application/run-single-instance-stateful-application/)
-  或者[多副本集合](/zh/docs/tasks/run-application/run-replicated-stateful-application/)
+* [使用 Deployment 运行一个无状态的应用](/zh-cn/docs/tasks/run-application/run-stateless-application-deployment/)
+* 以[单实例](/zh-cn/docs/tasks/run-application/run-single-instance-stateful-application/)或者[多副本集合](/zh-cn/docs/tasks/run-application/run-replicated-stateful-application/)
   的形式运行有状态的应用；
-* [使用 `CronJob` 运行自动化的任务](/zh/docs/tasks/job/automated-tasks-with-cron-jobs/)
+* [使用 `CronJob` 运行自动化的任务](/zh-cn/docs/tasks/job/automated-tasks-with-cron-jobs/)
 
 <!--
 To learn about Kubernetes' mechanisms for separating code from configuration,
 visit [Configuration](/docs/concepts/configuration/).
 -->
-要了解 Kubernetes 将代码与配置分离的实现机制，可参阅
-[配置部分](/zh/docs/concepts/configuration/)。
+要了解 Kubernetes 将代码与配置分离的实现机制，可参阅[配置部分](/zh-cn/docs/concepts/configuration/)。
 
 <!--
 There are two supporting concepts that provide backgrounds about how Kubernetes manages pods
 for applications:
-* [Garbage collection](/docs/concepts/workloads/controllers/garbage-collection/) tidies up objects
+* [Garbage collection](/docs/concepts/architecture/garbage-collection/) tidies up objects
   from your cluster after their _owning resource_ has been removed.
 * The [_time-to-live after finished_ controller](/docs/concepts/workloads/controllers/ttlafterfinished/)
   removes Jobs once a defined time has passed since they completed.
 -->
 关于 Kubernetes 如何为应用管理 Pods，还有两个支撑概念能够提供相关背景信息：
 
-* [垃圾收集](/zh/docs/concepts/workloads/controllers/garbage-collection/)机制负责在
+* [垃圾收集](/zh-cn/docs/concepts/architecture/garbage-collection/)机制负责在
   对象的 _属主资源_ 被删除时在集群中清理这些对象。
-* [_Time-to-Live_ 控制器](/zh/docs/concepts/workloads/controllers/ttlafterfinished/)
-  会在 Job 结束之后的指定时间间隔之后删除它们。
+* [**Time-to-Live** 控制器](/zh-cn/docs/concepts/workloads/controllers/ttlafterfinished/)会在 Job
+  结束之后的指定时间间隔之后删除它们。
 
 <!--
 Once your application is running, you might want to make it available on the internet as
@@ -169,6 +166,6 @@ a [`Service`](/docs/concepts/services-networking/service/) or, for web applicati
 using an [`Ingress`](/docs/concepts/services-networking/ingress).
 -->
 一旦你的应用处于运行状态，你就可能想要以
-[`Service`](/zh/docs/concepts/services-networking/service/)
+[`Service`](/zh-cn/docs/concepts/services-networking/service/)
 的形式使之可在互联网上访问；或者对于 Web 应用而言，使用
-[`Ingress`](/zh/docs/concepts/services-networking/ingress) 资源将其暴露到互联网上。
+[`Ingress`](/zh-cn/docs/concepts/services-networking/ingress) 资源将其暴露到互联网上。
diff --git a/content/zh/docs/concepts/workloads/controllers/_index.md b/content/zh-cn/docs/concepts/workloads/controllers/_index.md
similarity index 100%
rename from content/zh/docs/concepts/workloads/controllers/_index.md
rename to content/zh-cn/docs/concepts/workloads/controllers/_index.md
diff --git a/content/zh/docs/concepts/workloads/controllers/cron-jobs.md b/content/zh-cn/docs/concepts/workloads/controllers/cron-jobs.md
similarity index 66%
rename from content/zh/docs/concepts/workloads/controllers/cron-jobs.md
rename to content/zh-cn/docs/concepts/workloads/controllers/cron-jobs.md
index 44be9b9a68..b90916f840 100644
--- a/content/zh/docs/concepts/workloads/controllers/cron-jobs.md
+++ b/content/zh-cn/docs/concepts/workloads/controllers/cron-jobs.md
@@ -43,6 +43,24 @@ that the cron job controller uses.
 那么为该容器所设置的时区将会决定 Cron Job 的控制器所使用的时区。
 {{< /caution >}}
 
+<!--
+The [v1 CronJob API](/docs/reference/kubernetes-api/workload-resources/cron-job-v1/)
+does not officially support setting timezone as explained above.
+
+Setting variables such as `CRON_TZ` or `TZ` is not officially supported by the Kubernetes project.
+`CRON_TZ` or `TZ` is an implementation detail of the internal library being used
+for parsing and calculating the next Job creation time. Any usage of it is not
+recommended in a production cluster.
+-->
+
+{{< caution >}}
+如 [v1 CronJob API](/zh-cn/docs/reference/kubernetes-api/workload-resources/cron-job-v1/) 所述，官方并不支持设置时区。
+
+Kubernetes 项目官方并不支持设置如 `CRON_TZ` 或者 `TZ` 等变量。
+`CRON_TZ` 或者 `TZ` 是用于解析和计算下一个 Job 创建时间所使用的内部库中一个实现细节。
+不建议在生产集群中使用它。
+{{< /caution>}}
+
 <!--
 When creating the manifest for a CronJob resource, make sure the name you provide
 is a valid [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
@@ -51,7 +69,7 @@ append 11 characters to the job name provided and there is a constraint that the
 maximum length of a Job name is no more than 63 characters.
 -->
 为 CronJob 资源创建清单时，请确保所提供的名称是一个合法的
-[DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
 名称不能超过 52 个字符。
 这是因为 CronJob 控制器将自动在提供的 Job 名称后附加 11 个字符，并且存在一个限制，
 即 Job 名称的最大长度不能超过 63 个字符。
@@ -61,42 +79,43 @@ maximum length of a Job name is no more than 63 characters.
 <!--
 ## CronJob
 
-CronJobs are useful for creating periodic and recurring tasks, like running backups or
-sending emails. CronJobs can also schedule individual tasks for a specific time, such as
-scheduling a Job for when your cluster is likely to be idle.
+CronJobs are meant for performing regular scheduled actions such as backups,
+report generation, and so on. Each of those tasks should be configured to recur
+indefinitely (for example: once a day / week / month); you can define the point
+in time within that interval when the job should start.
 -->
-## CronJob
+## CronJob    {#cronjob}
 
-CronJobs 对于创建周期性的、反复重复的任务很有用，例如执行数据备份或者发送邮件。
-CronJobs 也可以用来计划在指定时间来执行的独立任务，例如计划当集群看起来很空闲时
-执行某个 Job。
+CronJob 用于执行周期性的动作，例如备份、报告生成等。
+这些任务中的每一个都应该配置为周期性重复的（例如：每天/每周/每月一次）；
+你可以定义任务开始执行的时间间隔。
 
 <!--
 ### Example
 
 This example CronJob manifest prints the current time and a hello message every minute:
 -->
-### 示例
+### 示例    {#example}
 
 下面的 CronJob 示例清单会在每分钟打印出当前时间和问候消息：
 
 {{< codenew file="application/job/cronjob.yaml" >}}
 
-[使用 CronJob 运行自动化任务](/zh/docs/tasks/job/automated-tasks-with-cron-jobs/)
+[使用 CronJob 运行自动化任务](/zh-cn/docs/tasks/job/automated-tasks-with-cron-jobs/)
 一文会为你详细讲解此例。
 
 <!--
 ### Cron schedule syntax
 -->
-### Cron 时间表语法
+### Cron 时间表语法    {#cron-schedule-syntax}
 
 ```
 # ┌───────────── 分钟 (0 - 59)
 # │ ┌───────────── 小时 (0 - 23)
 # │ │ ┌───────────── 月的某天 (1 - 31)
 # │ │ │ ┌───────────── 月份 (1 - 12)
-# │ │ │ │ ┌───────────── 周的某天 (0 - 6) （周日到周一；在某些系统上，7 也是星期日）
-# │ │ │ │ │                                   
+# │ │ │ │ ┌───────────── 周的某天 (0 - 6)（周日到周一；在某些系统上，7 也是星期日）
+# │ │ │ │ │                          或者是 sun，mon，tue，web，thu，fri，sat
 # │ │ │ │ │
 # │ │ │ │ │
 # * * * * *
@@ -131,14 +150,48 @@ To generate CronJob schedule expressions, you can also use web tools like [cront
 -->
 要生成 CronJob 时间表表达式，你还可以使用 [crontab.guru](https://crontab.guru/) 之类的 Web 工具。
 
+<!-- 
+## Time zones
+For CronJobs with no time zone specified, the kube-controller-manager interprets schedules relative to its local time zone.
+
+{{< feature-state for_k8s_version="v1.24" state="alpha" >}}
+
+If you enable the  `CronJobTimeZone` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/),
+you can specify a time zone for a CronJob (if you don't enable that feature gate, or if you are using a version of
+Kubernetes that does not have experimental time zone support, all CronJobs in your cluster have an unspecified
+timezone).
+
+When you have the feature enabled, you can set `spec.timeZone` to the name of a valid [time zone](https://en.wikipedia.org/wiki/List_of_tz_database_time_zones) name. For example, setting
+`spec.timeZone: "Etc/UTC"` instructs Kubernetes to interpret the schedule relative to Coordinated Universal Time.
+
+A time zone database from the Go standard library is included in the binaries and used as a fallback in case an external database is not available on the system.
+-->
+
+## 时区    {#time-zones}
+对于没有指定时区的 CronJob，kube-controller-manager 基于本地时区解释排期表（Schedule）。
+
+{{< feature-state for_k8s_version="v1.24" state="alpha" >}}
+
+如果启用了 `CronJobTimeZone` [特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)，
+你可以为 CronJob 指定一个时区（如果你没有启用该特性门控，或者你使用的是不支持试验性时区功能的
+Kubernetes 版本，集群中所有 CronJob 的时区都是未指定的）。
+
+启用该特性后，你可以将 `spec.timeZone`
+设置为有效[时区](https://zh.wikipedia.org/wiki/%E6%97%B6%E5%8C%BA%E4%BF%A1%E6%81%AF%E6%95%B0%E6%8D%AE%E5%BA%93)名称。 
+例如，设置 `spec.timeZone: "Etc/UTC"` 指示 Kubernetes 采用 UTC 来解释排期表。
+
+Go 标准库中的时区数据库包含在二进制文件中，并用作备用数据库，以防系统上没有可用的外部数据库。
+
+
 <!--
+
 ## CronJob Limitations
 
 A cron job creates a job object _about_ once per execution time of its schedule. We say "about" because there
 are certain circumstances where two jobs might be created, or no job might be created. We attempt to make these rare,
 but do not completely prevent them. Therefore, jobs should be _idempotent_.
 -->
-## CronJob 限制  {#cron-job-limitations}
+## CronJob 限制    {#cronjob-limitations}
 
 CronJob 根据其计划编排，在每次该执行任务的时候大约会创建一个 Job。
 我们之所以说 "大约"，是因为在某些情况下，可能会创建两个 Job，或者不会创建任何 Job。
@@ -223,12 +276,12 @@ and use the original CronJob controller instead, one pass the `CronJobController
 flag to the {{< glossary_tooltip term_id="kube-controller-manager" text="kube-controller-manager" >}},
 and set this flag to `false`. For example:
 -->
-## 控制器版本   {#new-controller}
+## 控制器版本    {#new-controller}
 
 从 Kubernetes v1.21 版本开始，CronJob 控制器的第二个版本被用作默认实现。
 要禁用此默认 CronJob 控制器而使用原来的 CronJob 控制器，请在
 {{< glossary_tooltip term_id="kube-controller-manager" text="kube-controller-manager" >}}
-中设置[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
+中设置[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)
 `CronJobControllerV2`，将此标志设置为 `false`。例如：
 
 ```
@@ -237,14 +290,26 @@ and set this flag to `false`. For example:
 
 ## {{% heading "whatsnext" %}}
 <!--
-[Cron expression format](https://en.wikipedia.org/wiki/Cron)
-documents the format of CronJob `schedule` fields.
-
-For instructions on creating and working with cron jobs, and for an example of a spec file for a cron job, see [Running automated tasks with cron jobs](/docs/tasks/job/automated-tasks-with-cron-jobs).
+* Learn about [Pods](/docs/concepts/workloads/pods/) and
+  [Jobs](/docs/concepts/workloads/controllers/job/), two concepts
+  that CronJobs rely upon.
+* Read about the [format](https://pkg.go.dev/github.com/robfig/cron/v3#hdr-CRON_Expression_Format)
+  of CronJob `.spec.schedule` fields.
+* For instructions on creating and working with CronJobs, and for an example
+  of a CronJob manifest,
+  see [Running automated tasks with CronJobs](/docs/tasks/job/automated-tasks-with-cron-jobs/).
+* For instructions to clean up failed or completed jobs automatically,
+  see [Clean up Jobs automatically](/docs/concepts/workloads/controllers/job/#clean-up-finished-jobs-automatically)
+* `CronJob` is part of the Kubernetes REST API.
+  Read the {{< api-reference page="workload-resources/cron-job-v1" >}}
+  object definition to understand the API for Kubernetes cron jobs.
 -->
 
-* 进一步了解 [Cron 表达式的格式](https://en.wikipedia.org/wiki/Cron)，学习设置
-  CronJob `schedule` 字段
+* 了解 CronJob 所依赖的 [Pod](/zh-cn/docs/concepts/workloads/pods/) 与 [Job](/zh-cn/docs/concepts/workloads/controllers/job/) 的概念。
+* 阅读 CronJob `.spec.schedule` 字段的[格式](https://pkg.go.dev/github.com/robfig/cron/v3#hdr-CRON_Expression_Format)。
 * 有关创建和使用 CronJob 的说明及示例规约文件，请参见
-  [使用 CronJob 运行自动化任务](/zh/docs/tasks/job/automated-tasks-with-cron-jobs/)。
-
+  [使用 CronJob 运行自动化任务](/zh-cn/docs/tasks/job/automated-tasks-with-cron-jobs/)。
+* 有关自动清理失败或完成作业的说明，请参阅[自动清理作业](/zh-cn/docs/concepts/workloads/controllers/job/#clean-up-finished-jobs-automatically)
+* `CronJob` 是 Kubernetes REST API 的一部分，
+   阅读 {{< api-reference page="workload-resources/cron-job-v1" >}}
+   对象定义以了解关于该资源的 API。
diff --git a/content/zh/docs/concepts/workloads/controllers/daemonset.md b/content/zh-cn/docs/concepts/workloads/controllers/daemonset.md
similarity index 67%
rename from content/zh/docs/concepts/workloads/controllers/daemonset.md
rename to content/zh-cn/docs/concepts/workloads/controllers/daemonset.md
index 6ad8c561d9..40927843c6 100644
--- a/content/zh/docs/concepts/workloads/controllers/daemonset.md
+++ b/content/zh-cn/docs/concepts/workloads/controllers/daemonset.md
@@ -50,12 +50,13 @@ different flags and/or different memory and cpu requests for different hardware
 
 ### Create a DaemonSet
 -->
-## 编写 DaemonSet Spec 
+## 编写 DaemonSet Spec   {#writing-a-daemon-set-spec}
 
-### 创建 DaemonSet
+### 创建 DaemonSet   {#create-a-daemon-set}
 
 <!--
-You can describe a DaemonSet in a YAML file. For example, the `daemonset.yaml` file below describes a DaemonSet that runs the fluentd-elasticsearch Docker image:
+You can describe a DaemonSet in a YAML file. For example, the `daemonset.yaml` file below
+describes a DaemonSet that runs the fluentd-elasticsearch Docker image:
 -->
 你可以在 YAML 文件中描述 DaemonSet。
 例如，下面的 daemonset.yaml 文件描述了一个运行 fluentd-elasticsearch Docker 镜像的 DaemonSet：
@@ -76,25 +77,27 @@ kubectl apply -f https://k8s.io/examples/controllers/daemonset.yaml
 
 As with all other Kubernetes config, a DaemonSet needs `apiVersion`, `kind`, and `metadata` fields.  For
 general information about working with config files, see
- [running stateless applications](/docs/tasks/run-application/run-stateless-application-deployment/),
-[configuring containers](/docs/tasks/), and [object management using kubectl](/docs/concepts/overview/working-with-objects/object-management/) documents.
+[running stateless applications](/docs/tasks/run-application/run-stateless-application-deployment/)
+and [object management using kubectl](/docs/concepts/overview/working-with-objects/object-management/).
 
 The name of a DaemonSet object must be a valid
 [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 
-A DaemonSet also needs a [`.spec`](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status) section.
+A DaemonSet also needs a
+[`.spec`](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status)
+section.
 -->
-### 必需字段
+### 必需字段   {#required-fields}
 
 和所有其他 Kubernetes 配置一样，DaemonSet 需要 `apiVersion`、`kind` 和 `metadata` 字段。
 有关配置文件的基本信息，参见
-[部署应用](/zh/docs/tasks/run-application/run-stateless-application-deployment/)、
-[配置容器](/zh/docs/tasks/)和
-[使用 kubectl 进行对象管理](/zh/docs/concepts/overview/working-with-objects/object-management/)
+[部署应用](/zh-cn/docs/tasks/run-application/run-stateless-application-deployment/)、
+[配置容器](/zh-cn/docs/tasks/)和
+[使用 kubectl 进行对象管理](/zh-cn/docs/concepts/overview/working-with-objects/object-management/)
 文档。
 
 DaemonSet 对象的名称必须是一个合法的
-[DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
 
 DaemonSet 也需要一个 [`.spec`](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status) 配置段。
 
@@ -103,7 +106,9 @@ DaemonSet 也需要一个 [`.spec`](https://git.k8s.io/community/contributors/de
 
 The `.spec.template` is one of the required fields in `.spec`.
 
-The `.spec.template` is a [pod template](/docs/concepts/workloads/pods/pod-overview/#pod-templates). It has exactly the same schema as a [Pod](/docs/concepts/workloads/pods/pod/), except it is nested and does not have an `apiVersion` or `kind`.
+The `.spec.template` is a [pod template](/docs/concepts/workloads/pods/#pod-templates).
+It has exactly the same schema as a {{< glossary_tooltip text="Pod" term_id="pod" >}},
+except it is nested and does not have an `apiVersion` or `kind`.
 
 In addition to required fields for a Pod, a Pod template in a DaemonSet has to specify appropriate
 labels (see [pod selector](#pod-selector)).
@@ -115,14 +120,14 @@ A Pod Template in a DaemonSet must have a [`RestartPolicy`](/docs/concepts/workl
 
 `.spec` 中唯一必需的字段是 `.spec.template`。
 
-`.spec.template` 是一个 [Pod 模板](/zh/docs/concepts/workloads/pods/#pod-templates)。
+`.spec.template` 是一个 [Pod 模板](/zh-cn/docs/concepts/workloads/pods/#pod-templates)。
 除了它是嵌套的，因而不具有 `apiVersion` 或 `kind` 字段之外，它与
 {{< glossary_tooltip text="Pod" term_id="pod" >}} 具有相同的 schema。
 
 除了 Pod 必需字段外，在 DaemonSet 中的 Pod 模板必须指定合理的标签（查看 [Pod 选择算符](#pod-selector)）。
 
 在 DaemonSet 中的 Pod 模板必须具有一个值为 `Always` 的
-[`RestartPolicy`](/zh/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy)。
+[`RestartPolicy`](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy)。
 当该值未指定时，默认是 `Always`。
 
 <!--
@@ -131,20 +136,18 @@ A Pod Template in a DaemonSet must have a [`RestartPolicy`](/docs/concepts/workl
 The `.spec.selector` field is a pod selector.  It works the same as the `.spec.selector` of
 a [Job](/docs/concepts/jobs/run-to-completion-finite-workloads/).
 
-As of Kubernetes 1.8, you must specify a pod selector that matches the labels of the
-`.spec.template`. The pod selector will no longer be defaulted when left empty. Selector
-defaulting was not compatible with `kubectl apply`. Also, once a DaemonSet is created,
+You must specify a pod selector that matches the labels of the
+`.spec.template`.
+Also, once a DaemonSet is created,
 its `.spec.selector` can not be mutated. Mutating the pod selector can lead to the
 unintentional orphaning of Pods, and it was found to be confusing to users.
 -->
 ### Pod 选择算符     {#pod-selector}
 
 `.spec.selector` 字段表示 Pod 选择算符，它与
-[Job](/zh/docs/concepts/workloads/controllers/job/) 的 `.spec.selector` 的作用是相同的。
+[Job](/zh-cn/docs/concepts/workloads/controllers/job/) 的 `.spec.selector` 的作用是相同的。
 
-从 Kubernetes 1.8 开始，您必须指定与 `.spec.template` 的标签匹配的 Pod 选择算符。
-用户不指定 Pod 选择算符时，该字段不再有默认值。
-选择算符的默认值生成结果与 `kubectl apply` 不兼容。 
+你必须指定与 `.spec.template` 的标签匹配的 Pod 选择算符。
 此外，一旦创建了 DaemonSet，它的 `.spec.selector` 就不能修改。
 修改 Pod 选择算符可能导致 Pod 意外悬浮，并且这对用户来说是费解的。
 
@@ -154,11 +157,12 @@ The `.spec.selector` is an object consisting of two fields:
 `spec.selector` 是一个对象，如下两个字段组成：
 
 <!--
-* `matchLabels` - works the same as the `.spec.selector` of a [ReplicationController](/docs/concepts/workloads/controllers/replicationcontroller/).
+* `matchLabels` - works the same as the `.spec.selector` of a
+  [ReplicationController](/docs/concepts/workloads/controllers/replicationcontroller/).
 * `matchExpressions` - allows to build more sophisticated selectors by specifying key,
   list of values and an operator that relates the key and values.
 -->
-* `matchLabels` - 与 [ReplicationController](/zh/docs/concepts/workloads/controllers/replicationcontroller/)
+* `matchLabels` - 与 [ReplicationController](/zh-cn/docs/concepts/workloads/controllers/replicationcontroller/)
   的 `.spec.selector` 的作用相同。
 * `matchExpressions` - 允许构建更加复杂的选择器，可以通过指定 key、value
   列表以及将 key 和 value 列表关联起来的 operator。
@@ -169,26 +173,28 @@ When the two are specified the result is ANDed.
 当上述两个字段都指定时，结果会按逻辑与（AND）操作处理。
 
 <!--
-If the `.spec.selector` is specified, it must match the `.spec.template.metadata.labels`. Config with these not matching will be rejected by the API.
+The `.spec.selector` must match the `.spec.template.metadata.labels`.
+Config with these two not matching will be rejected by the API.
 -->
-如果指定了 `.spec.selector`，必须与 `.spec.template.metadata.labels` 相匹配。
-如果与后者不匹配，则 DeamonSet 会被 API 拒绝。
+`.spec.selector` 必须与 `.spec.template.metadata.labels` 相匹配。
+如果配置中这两个字段不匹配，则会被 API 拒绝。
 
 <!--
 ### Running Pods on Only Some Nodes
 
 If you specify a `.spec.template.spec.nodeSelector`, then the DaemonSet controller will
-create Pods on nodes which match that [node
-selector](/docs/concepts/configuration/assign-pod-node/). Likewise if you specify a `.spec.template.spec.affinity`,
-then DaemonSet controller will create Pods on nodes which match that [node affinity](/docs/concepts/configuration/assign-pod-node/).
+create Pods on nodes which match that [node selector](/docs/concepts/scheduling-eviction/assign-pod-node/).
+Likewise if you specify a `.spec.template.spec.affinity`,
+then DaemonSet controller will create Pods on nodes which match that
+[node affinity](/docs/concepts/scheduling-eviction/assign-pod-node/).
 If you do not specify either, then the DaemonSet controller will create Pods on all nodes.
 -->
-### 仅在某些节点上运行 Pod
+### 仅在某些节点上运行 Pod   {#running-pods-on-only-some-nodes}
 
 如果指定了 `.spec.template.spec.nodeSelector`，DaemonSet 控制器将在能够与
-[Node 选择算符](/zh/docs/concepts/scheduling-eviction/assign-pod-node/) 匹配的节点上创建 Pod。
+[Node 选择算符](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/) 匹配的节点上创建 Pod。
 类似这种情况，可以指定 `.spec.template.spec.affinity`，之后 DaemonSet 控制器
-将在能够与[节点亲和性](/zh/docs/concepts/scheduling-eviction/assign-pod-node/)
+将在能够与[节点亲和性](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/)
 匹配的节点上创建 Pod。
 如果根本就没有指定，则 DaemonSet Controller 将在所有节点上创建 Pod。
 
@@ -197,11 +203,11 @@ If you do not specify either, then the DaemonSet controller will create Pods on
 
 ### Scheduled by default scheduler
 -->
-## Daemon Pods 是如何被调度的
+## Daemon Pods 是如何被调度的   {#how-daemon-pods-are-scheduled}
 
-### 通过默认调度器调度
+### 通过默认调度器调度   {#scheduled-by-default-scheduler}
 
-{{< feature-state state="stable" for-kubernetes-version="1.17" >}}
+{{< feature-state for_k8s_version="1.17" state="stable" >}}
 
 <!--
 A DaemonSet ensures that all eligible nodes run a copy of a Pod. Normally, the
@@ -209,12 +215,12 @@ node that a Pod runs on is selected by the Kubernetes scheduler. However,
 DaemonSet pods are created and scheduled by the DaemonSet controller instead.
 That introduces the following issues:
 
- * Inconsistent Pod behavior: Normal Pods waiting to be scheduled are created
-   and in `Pending` state, but DaemonSet pods are not created in `Pending`
-   state. This is confusing to the user.
- * [Pod preemption](/docs/concepts/configuration/pod-priority-preemption/)
-   is handled by default scheduler. When preemption is enabled, the DaemonSet controller
-   will make scheduling decisions without considering pod priority and preemption.
+* Inconsistent Pod behavior: Normal Pods waiting to be scheduled are created
+  and in `Pending` state, but DaemonSet pods are not created in `Pending`
+  state. This is confusing to the user.
+* [Pod preemption](/docs/concepts/scheduling-eviction/pod-priority-preemption/)
+  is handled by default scheduler. When preemption is enabled, the DaemonSet controller
+  will make scheduling decisions without considering pod priority and preemption.
 -->
 DaemonSet 确保所有符合条件的节点都运行该 Pod 的一个副本。
 通常，运行 Pod 的节点由 Kubernetes 调度器选择。
@@ -222,7 +228,7 @@ DaemonSet 确保所有符合条件的节点都运行该 Pod 的一个副本。
 
 * Pod 行为的不一致性：正常 Pod 在被创建后等待调度时处于 `Pending` 状态，
   DaemonSet Pods 创建后不会处于 `Pending` 状态下。这使用户感到困惑。
-* [Pod 抢占](/zh/docs/concepts/configuration/pod-priority-preemption/)
+* [Pod 抢占](/zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption/)
   由默认调度器处理。启用抢占后，DaemonSet 控制器将在不考虑 Pod 优先级和抢占
   的情况下制定调度决策。
 
@@ -231,14 +237,16 @@ DaemonSet 确保所有符合条件的节点都运行该 Pod 的一个副本。
 scheduler instead of the DaemonSet controller, by adding the `NodeAffinity` term
 to the DaemonSet pods, instead of the `.spec.nodeName` term. The default
 scheduler is then used to bind the pod to the target host. If node affinity of
-the DaemonSet pod already exists, it is replaced. The DaemonSet controller only
+the DaemonSet pod already exists, it is replaced (the original node affinity was
+taken into account before selecting the target host). The DaemonSet controller only
 performs these operations when creating or modifying DaemonSet pods, and no
 changes are made to the `spec.template` of the DaemonSet.
 -->
-`ScheduleDaemonSetPods` 允许您使用默认调度器而不是 DaemonSet 控制器来调度 DaemonSets，
+`ScheduleDaemonSetPods` 允许你使用默认调度器而不是 DaemonSet 控制器来调度 DaemonSets，
 方法是将 `NodeAffinity` 条件而不是 `.spec.nodeName` 条件添加到 DaemonSet Pods。
 默认调度器接下来将 Pod 绑定到目标主机。
-如果 DaemonSet Pod 的节点亲和性配置已存在，则被替换。
+如果 DaemonSet Pod 的节点亲和性配置已存在，则被替换
+（原始的节点亲和性配置在选择目标主机之前被考虑）。
 DaemonSet 控制器仅在创建或修改 DaemonSet Pod 时执行这些操作，
 并且不会更改 DaemonSet 的 `spec.template`。
 
@@ -271,7 +279,7 @@ the related features.
 -->
 ### 污点和容忍度   {#taint-and-toleration}
 
-尽管 Daemon Pods 遵循[污点和容忍度](/zh/docs/concepts/scheduling-eviction/taint-and-toleration)
+尽管 Daemon Pods 遵循[污点和容忍度](/zh-cn/docs/concepts/scheduling-eviction/taint-and-toleration)
 规则，根据相关特性，控制器会自动将以下容忍度添加到 DaemonSet Pod：
 
 | 容忍度键名                               | 效果       | 版本    | 描述                                                         |
@@ -292,14 +300,16 @@ Some possible patterns for communicating with Pods in a DaemonSet are:
 
 - **Push**: Pods in the DaemonSet are configured to send updates to another service, such
   as a stats database.  They do not have clients.
-- **NodeIP and Known Port**: Pods in the DaemonSet can use a `hostPort`, so that the pods are reachable via the node IPs.  Clients know the list of node IPs somehow, and know the port by convention.
-- **DNS**: Create a [headless service](/docs/concepts/services-networking/service/#headless-services) with the same pod selector,
-  and then discover DaemonSets using the `endpoints` resource or retrieve multiple A records from
-  DNS.
+- **NodeIP and Known Port**: Pods in the DaemonSet can use a `hostPort`, so that the pods
+  are reachable via the node IPs.
+  Clients know the list of node IPs somehow, and know the port by convention.
+- **DNS**: Create a [headless service](/docs/concepts/services-networking/service/#headless-services)
+  with the same pod selector, and then discover DaemonSets using the `endpoints`
+  resource or retrieve multiple A records from DNS.
 - **Service**: Create a service with the same Pod selector, and use the service to reach a
   daemon on a random node. (No way to reach specific node.)
 -->
-## 与 Daemon Pods 通信
+## 与 Daemon Pods 通信   {#communicating-with-daemon-pods}
 
 与 DaemonSet 中的 Pod 进行通信的几种可能模式如下：
 
@@ -310,7 +320,7 @@ Some possible patterns for communicating with Pods in a DaemonSet are:
   访问到 Pod。客户端能通过某种方法获取节点 IP 列表，并且基于此也可以获取到相应的端口。
 
 - **DNS**：创建具有相同 Pod 选择算符的
-  [无头服务](/zh/docs/concepts/services-networking/service/#headless-services)，
+  [无头服务](/zh-cn/docs/concepts/services-networking/service/#headless-services)，
   通过使用 `endpoints` 资源或从 DNS 中检索到多个 A 记录来发现 DaemonSet。
 
 - **Service**：创建具有相同 Pod 选择算符的服务，并使用该服务随机访问到某个节点上的
@@ -326,7 +336,7 @@ You can modify the Pods that a DaemonSet creates.  However, Pods do not allow al
 fields to be updated.  Also, the DaemonSet controller will use the original template the next
 time a node (even with the same name) is created.
 -->
-## 更新 DaemonSet
+## 更新 DaemonSet   {#updating-a-daemon-set}
 
 如果节点的标签被修改，DaemonSet 将立刻向新匹配上的节点添加 Pod，
 同时删除不匹配的节点上的 Pod。
@@ -335,28 +345,28 @@ time a node (even with the same name) is created.
 下次当某节点（即使具有相同的名称）被创建时，DaemonSet 控制器还会使用最初的模板。
 
 <!--
-You can delete a DaemonSet.  If you specify `-cascade=false` with `kubectl`, then the Pods
+You can delete a DaemonSet.  If you specify `--cascade=orphan` with `kubectl`, then the Pods
 will be left on the nodes.  If you subsequently create a new DaemonSet with the same selector,
 the new DaemonSet adopts the existing Pods. If any Pods need replacing the DaemonSet replaces
 them according to its `updateStrategy`.
 
 You can [perform a rolling update](/docs/tasks/manage-daemon/update-daemon-set/) on a DaemonSet.
 -->
-您可以删除一个 DaemonSet。如果使用 `kubectl` 并指定 `--cascade=false` 选项，
+你可以删除一个 DaemonSet。如果使用 `kubectl` 并指定 `--cascade=orphan` 选项，
 则 Pod 将被保留在节点上。接下来如果创建使用相同选择算符的新 DaemonSet，
 新的 DaemonSet 会收养已有的 Pod。
 如果有 Pod 需要被替换，DaemonSet 会根据其 `updateStrategy` 来替换。
 
-你可以对 DaemonSet [执行滚动更新](/zh/docs/tasks/manage-daemon/update-daemon-set/)操作。
+你可以对 DaemonSet [执行滚动更新](/zh-cn/docs/tasks/manage-daemon/update-daemon-set/)操作。
 
 <!--
 ## Alternatives to DaemonSet
 
 ### Init Scripts
 -->
-## DaemonSet 的替代方案
+## DaemonSet 的替代方案   {#alternatives-to-daemon-set}
 
-### init 脚本
+### init 脚本   {#init-scripts}
 
 <!--
 It is certainly possible to run daemon processes by directly starting them on a node (e.g. using
@@ -388,7 +398,7 @@ a DaemonSet replaces Pods that are deleted or terminated for any reason, such as
 node failure or disruptive node maintenance, such as a kernel upgrade. For this reason, you should
 use a DaemonSet rather than creating individual Pods.
 -->
-### 裸 Pod
+### 裸 Pod   {#bare-pods}
 
 直接创建 Pod并指定其运行在特定的节点上也是可以的。
 然而，DaemonSet 能够替换由于任何原因（例如节点失败、例行节点维护、内核升级）
@@ -404,10 +414,10 @@ Unlike DaemonSet, static Pods cannot be managed with kubectl
 or other Kubernetes API clients.  Static Pods do not depend on the apiserver, making them useful
 in cluster bootstrapping cases.  Also, static Pods may be deprecated in the future.
 -->
-### 静态 Pod
+### 静态 Pod   {#static-pods}
 
 通过在一个指定的、受 `kubelet` 监视的目录下编写文件来创建 Pod 也是可行的。
-这类 Pod 被称为[静态 Pod](/zh/docs/tasks/configure-pod-container/static-pod/)。
+这类 Pod 被称为[静态 Pod](/zh-cn/docs/tasks/configure-pod-container/static-pod/)。
 不像 DaemonSet，静态 Pod 不受 `kubectl` 和其它 Kubernetes API 客户端管理。
 静态 Pod 不依赖于 API 服务器，这使得它们在启动引导新集群的情况下非常有用。
 此外，静态 Pod 在将来可能会被废弃。
@@ -422,14 +432,47 @@ storage servers).
 Use a Deployment for stateless services, like frontends, where scaling up and down the
 number of replicas and rolling out updates are more important than controlling exactly which host
 the Pod runs on.  Use a DaemonSet when it is important that a copy of a Pod always run on
-all or certain hosts, and when it needs to start before other Pods.
+all or certain hosts, if the DaemonSet provides node-level functionality that allows other Pods to run correctly on that particular node.
+
+For example, [network plugins](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/) often include a component that runs as a DaemonSet. The DaemonSet component makes sure that the node where it's running has working cluster networking.
 -->
 ### Deployments
 
-DaemonSet 与 [Deployments](/zh/docs/concepts/workloads/controllers/deployment/) 非常类似，
+DaemonSet 与 [Deployments](/zh-cn/docs/concepts/workloads/controllers/deployment/) 非常类似，
 它们都能创建 Pod，并且 Pod 中的进程都不希望被终止（例如，Web 服务器、存储服务器）。
+
 建议为无状态的服务使用 Deployments，比如前端服务。
 对这些服务而言，对副本的数量进行扩缩容、平滑升级，比精确控制 Pod 运行在某个主机上要重要得多。
-当需要 Pod 副本总是运行在全部或特定主机上，并需要它们先于其他 Pod 启动时，
+当需要 Pod 副本总是运行在全部或特定主机上，并且当该 DaemonSet 提供了节点级别的功能（允许其他 Pod 在该特定节点上正确运行）时，
 应该使用 DaemonSet。
 
+例如，[网络插件](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)通常包含一个以 DaemonSet 运行的组件。
+这个 DaemonSet 组件确保它所在的节点的集群网络正常工作。
+
+## {{% heading "whatsnext" %}}
+<!--
+* Learn about [Pods](/docs/concepts/workloads/pods).
+  * Learn about [static Pods](#static-pods), which are useful for running Kubernetes
+    {{< glossary_tooltip text="control plane" term_id="control-plane" >}} components.
+* Find out how to use DaemonSets
+  * [Perform a rolling update on a DaemonSet](/docs/tasks/manage-daemon/update-daemon-set/)
+  * [Perform a rollback on a DaemonSet](/docs/tasks/manage-daemon/rollback-daemon-set/)
+    (for example, if a roll out didn't work how you expected).
+* Understand [how Kubernetes assigns Pods to Nodes](/docs/concepts/scheduling-eviction/assign-pod-node/).
+* Learn about [device plugins](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/) and
+  [add ons](/docs/concepts/cluster-administration/addons/), which often run as DaemonSets.
+* `DaemonSet` is a top-level resource in the Kubernetes REST API.
+  Read the {{< api-reference page="workload-resources/daemon-set-v1" >}}
+  object definition to understand the API for daemon sets.
+-->
+* 了解 [Pods](/zh-cn/docs/concepts/workloads/pods)。
+  * 了解[静态 Pod](#static-pods)，这对运行 Kubernetes {{< glossary_tooltip text="控制面" term_id="control-plane" >}}组件有帮助。
+* 了解如何使用 DaemonSet
+  * [对 DaemonSet 执行滚动更新](/zh-cn/docs/tasks/manage-daemon/update-daemon-set/)
+  * [对 DaemonSet 执行回滚](/zh-cn/docs/tasks/manage-daemon/rollback-daemon-set/)（例如：新的版本没有达到你的预期）
+* 理解[Kubernetes 如何将 Pod 分配给节点](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/)。
+* 了解[设备插件](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)和
+  [扩展（Addons）](/zh-cn/docs/concepts/cluster-administration/addons/)，它们常以 DaemonSet 运行。
+* `DaemonSet` 是 Kubernetes REST API 中的顶级资源。阅读 {{< api-reference page="workload-resources/daemon-set-v1" >}}
+   对象定义理解关于该资源的 API。
+
diff --git a/content/zh/docs/concepts/workloads/controllers/deployment.md b/content/zh-cn/docs/concepts/workloads/controllers/deployment.md
similarity index 77%
rename from content/zh/docs/concepts/workloads/controllers/deployment.md
rename to content/zh-cn/docs/concepts/workloads/controllers/deployment.md
index 0f6ea1846f..180a62b83c 100644
--- a/content/zh/docs/concepts/workloads/controllers/deployment.md
+++ b/content/zh-cn/docs/concepts/workloads/controllers/deployment.md
@@ -21,25 +21,25 @@ weight: 10
 <!-- overview -->
 
 <!--
-A _Deployment_ provides declarative updates for [Pods](/docs/concepts/workloads/pods/pod/) and
-[ReplicaSets](/docs/concepts/workloads/controllers/replicaset/).
+A _Deployment_ provides declarative updates for {{< glossary_tooltip text="Pods" term_id="pod" >}} and
+{{< glossary_tooltip term_id="replica-set" text="ReplicaSets" >}}.
 -->
-一个 _Deployment_ 为 {{< glossary_tooltip text="Pods" term_id="pod" >}}
-和 {{< glossary_tooltip term_id="replica-set" text="ReplicaSets" >}}
+一个 Deployment 为 {{< glossary_tooltip text="Pod" term_id="pod" >}}
+和 {{< glossary_tooltip term_id="replica-set" text="ReplicaSet" >}}
 提供声明式的更新能力。
 
 <!--
 You describe a _desired state_ in a Deployment, and the Deployment {{< glossary_tooltip term_id="controller" >}} changes the actual state to the desired state at a controlled rate. You can define Deployments to create new ReplicaSets, or to remove existing Deployments and adopt all their resources with new Deployments.
 -->
-你负责描述 Deployment 中的 _目标状态_，而 Deployment {{< glossary_tooltip term_id="controller" >}}
+你负责描述 Deployment 中的 **目标状态**，而 Deployment {{< glossary_tooltip term_id="controller" >}}
 以受控速率更改实际状态，
 使其变为期望状态。你可以定义 Deployment 以创建新的 ReplicaSet，或删除现有 Deployment，
 并通过新的 Deployment 收养其资源。
 
+{{< note >}}
 <!--
 Do not manage ReplicaSets owned by a Deployment. Consider opening an issue in the main Kubernetes repository if your use case is not covered below.
 -->
-{{< note >}}
 不要管理 Deployment 所拥有的 ReplicaSet 。
 如果存在下面未覆盖的使用场景，请考虑在 Kubernetes 仓库中提出 Issue。
 {{< /note >}}
@@ -58,23 +58,25 @@ The following are typical use cases for Deployments:
 <!--
 * [Create a Deployment to rollout a ReplicaSet](#creating-a-deployment). The ReplicaSet creates Pods in the background. Check the status of the rollout to see if it succeeds or not.
 * [Declare the new state of the Pods](#updating-a-deployment) by updating the PodTemplateSpec of the Deployment. A new ReplicaSet is created and the Deployment manages moving the Pods from the old ReplicaSet to the new one at a controlled rate. Each new ReplicaSet updates the revision of the Deployment.
-* [Rollback to an earlier Deployment revision](#rolling-back-a-deployment) if the current state of the Deployment is not stable. Each rollback updates the revision of the Deployment.
-* [Scale up the Deployment to facilitate more load](#scaling-a-deployment).
- * [Pause the Deployment](#pausing-and-resuming-a-deployment) to apply multiple fixes to its PodTemplateSpec and then resume it to start a new rollout.
- * [Use the status of the Deployment](#deployment-status) as an indicator that a rollout has stuck.
- * [Clean up older ReplicaSets](#clean-up-policy) that you don't need anymore.
 -->
 * [创建 Deployment 以将 ReplicaSet 上线](#creating-a-deployment)。 ReplicaSet 在后台创建 Pods。
   检查 ReplicaSet 的上线状态，查看其是否成功。
 * 通过更新 Deployment 的 PodTemplateSpec，[声明 Pod 的新状态](#updating-a-deployment) 。
   新的 ReplicaSet 会被创建，Deployment 以受控速率将 Pod 从旧 ReplicaSet 迁移到新 ReplicaSet。
   每个新的 ReplicaSet 都会更新 Deployment 的修订版本。
+<!--
+* [Rollback to an earlier Deployment revision](#rolling-back-a-deployment) if the current state of the Deployment is not stable. Each rollback updates the revision of the Deployment.
+* [Scale up the Deployment to facilitate more load](#scaling-a-deployment).
+* [Pause the Deployment](#pausing-and-resuming-a-deployment) to apply multiple fixes to its PodTemplateSpec and then resume it to start a new rollout.
+* [Use the status of the Deployment](#deployment-status) as an indicator that a rollout has stuck.
+* [Clean up older ReplicaSets](#clean-up-policy) that you don't need anymore.
+-->
 * 如果 Deployment 的当前状态不稳定，[回滚到较早的 Deployment 版本](#rolling-back-a-deployment)。
   每次回滚都会更新 Deployment 的修订版本。
 * [扩大 Deployment 规模以承担更多负载](#scaling-a-deployment)。
 * [暂停 Deployment ](#pausing-and-resuming-a-deployment) 以应用对 PodTemplateSpec 所作的多项修改，
   然后恢复其执行以启动新的上线版本。
-* [使用 Deployment 状态](#deployment-status) 来判定上线过程是否出现停滞。
+* [使用 Deployment 状态](#deployment-status)来判定上线过程是否出现停滞。
 * [清理较旧的不再需要的 ReplicaSet](#clean-up-policy) 。
 
 <!--
@@ -84,7 +86,7 @@ The following is an example of a Deployment. It creates a ReplicaSet to bring up
 -->
 ## 创建 Deployment  {#creating-a-deployment}
 
-下面是 Deployment 示例。其中创建了一个 ReplicaSet，负责启动三个 `nginx` Pods：
+下面是一个 Deployment 示例。其中创建了一个 ReplicaSet，负责启动三个 `nginx` Pods：
 
 {{< codenew file="controllers/nginx-deployment.yaml" >}}
 
@@ -125,17 +127,17 @@ In this example:
 
 <!--
 * The `template` field contains the following sub-fields:
-   * The Pods are labeled `app: nginx`using the `labels` field.
+  * The Pods are labeled `app: nginx`using the `.meatadata.labels` field.
   * The Pod template's specification, or `.template.spec` field, indicates that
     the Pods run one container, `nginx`, which runs the `nginx`
     [Docker Hub](https://hub.docker.com/) image at version 1.14.2.
-  * Create one container and name it `nginx` using the `name` field.
+  * Create one container and name it `nginx` using the `.spec.template.spec.containers[0].name` field.
 -->
 * `template` 字段包含以下子字段：
-  * Pod 被使用 `labels` 字段打上 `app: nginx` 标签。
+  * Pod 被使用 `.metadata.labels` 字段打上 `app: nginx` 标签。
   * Pod 模板规约（即 `.template.spec` 字段）指示 Pods 运行一个 `nginx` 容器，
-    该容器运行版本为 1.14.2 的 `nginx` [Docker Hub](https://hub.docker.com/)镜像。
-  * 创建一个容器并使用 `name` 字段将其命名为 `nginx`。
+    该容器运行版本为 1.14.2 的 `nginx` [Docker Hub](https://hub.docker.com/) 镜像。
+  * 创建一个容器并使用 `.spec.template.spec.containers[0].name` 字段将其命名为 `nginx`。
 
 <!--
 Before you begin, make sure your Kubernetes cluster is up and running.
@@ -152,25 +154,18 @@ Follow the steps given below to create the above Deployment:
    ```shell
    kubectl apply -f https://k8s.io/examples/controllers/nginx-deployment.yaml
    ```
-   <!--
-   You may specify the `-record` flag to write the command executed in the resource annotation
-   `kubernetes.io/change-cause`. It is useful for future introspection.
-   For example, to see the commands executed in each Deployment revision.
-   -->
-   {{< note >}}
-   你可以设置 `--record` 标志将所执行的命令写入资源注解 `kubernetes.io/change-cause` 中。
-   这对于以后的检查是有用的。例如，要查看针对每个 Deployment 修订版本所执行过的命令。
-   {{< /note >}}
 
 <!--
- 2. Run `kubectl get deployments` to check if the Deployment was created. If the Deployment is still being created, the output is similar to the following:
+ 2. Run `kubectl get deployments` to check if the Deployment was created.
+
+    If the Deployment is still being created, the output is similar to the following:
 -->
-2. 运行 `kubectl get deployments` 检查 Deployment 是否已创建。如果仍在创建 Deployment，
-   则输出类似于：
+2. 运行 `kubectl get deployments` 检查 Deployment 是否已创建。
+   如果仍在创建 Deployment，则输出类似于：
 
    ```
-   NAME               DESIRED   CURRENT   UP-TO-DATE   AVAILABLE   AGE
-   nginx-deployment   3         0         0            0           1s
+   NAME               READY   UP-TO-DATE   AVAILABLE   AGE
+   nginx-deployment   0/3     0            0           1s
    ```
 
    <!--
@@ -186,7 +181,7 @@ Follow the steps given below to create the above Deployment:
    * `AGE` displays the amount of time that the application has been running.
    -->
    * `NAME` 列出了集群中 Deployment 的名称。
-   * `READY` 显示应用程序的可用的 _副本_ 数。显示的模式是“就绪个数/期望个数”。
+   * `READY` 显示应用程序的可用的“副本”数。显示的模式是“就绪个数/期望个数”。
    * `UP-TO-DATE` 显示为了达到期望状态已经更新的副本数。
    * `AVAILABLE` 显示应用可供用户使用的副本数。
    * `AGE` 显示应用程序运行的时间。
@@ -216,8 +211,8 @@ Follow the steps given below to create the above Deployment:
 4. 几秒钟后再次运行 `kubectl get deployments`。输出类似于：
 
    ```
-   NAME               DESIRED   CURRENT   UP-TO-DATE   AVAILABLE   AGE
-   nginx-deployment   3         3         3            3           18s
+   NAME               READY   UP-TO-DATE   AVAILABLE   AGE
+   nginx-deployment   3/3     3            3           18s
    ```
 
    <!--
@@ -257,13 +252,14 @@ Follow the steps given below to create the above Deployment:
 
    <!--
    Notice that the name of the ReplicaSet is always formatted as `[DEPLOYMENT-NAME]-[RANDOM-STRING]`. The random string is
-   randomly generated and uses the pod-template-hash as a seed.
+   randomly generated and uses the `pod-template-hash` as a seed.
    -->
    注意 ReplicaSet 的名称始终被格式化为`[Deployment名称]-[随机字符串]`。
-   其中的随机字符串是使用 pod-template-hash 作为种子随机生成的。
+   其中的随机字符串是使用 `pod-template-hash` 作为种子随机生成的。
 
 <!--
- 6. To see the labels automatically generated for each Pod, run `kubectl get pods -show-labels`. The following output is returned:
+6. To see the labels automatically generated for each Pod, run `kubectl get pods -show-labels`.
+   The following output is returned:
 -->
 6. 要查看每个 Pod 自动生成的标签，运行 `kubectl get pods --show-labels`。返回以下输出：
 
@@ -279,17 +275,17 @@ Follow the steps given below to create the above Deployment:
    -->
    所创建的 ReplicaSet 确保总是存在三个 `nginx` Pod。
 
-<!--
-You must specify an appropriate selector and Pod template labels in a Deployment (in this case,
-`app: nginx`). Do not overlap labels or selectors with other controllers
-(including other Deployments and StatefulSets). Kubernetes doesn't stop you from overlapping,
-and if multiple controllers have overlapping selectors those controllers might conflict and behave unexpectedly.
--->
 {{< note >}}
+<!--
+You must specify an appropriate selector and Pod template labels in a Deployment
+(in this case, `app: nginx`).
+
+Do not overlap labels or selectors with other controllers (including other Deployments and StatefulSets). Kubernetes doesn't stop you from overlapping, and if multiple controllers have overlapping selectors those controllers might conflict and behave unexpectedly.
+-->
 你必须在 Deployment 中指定适当的选择算符和 Pod 模板标签（在本例中为 `app: nginx`）。
 标签或者选择算符不要与其他控制器（包括其他 Deployment 和 StatefulSet）重叠。
-Kubernetes 不会阻止你这样做，但是如果多个控制器具有重叠的选择算符，它们可能会发生冲突
-执行难以预料的操作。
+Kubernetes 不会阻止你这样做，但是如果多个控制器具有重叠的选择算符，
+它们可能会发生冲突执行难以预料的操作。
 {{< /note >}}
 
 <!--
@@ -297,17 +293,18 @@ Kubernetes 不会阻止你这样做，但是如果多个控制器具有重叠的
 -->
 ### Pod-template-hash 标签
 
-<!-- Do not change this label.  -->
 {{< note >}}
+<!--
+Do not change this label.
+-->
 不要更改此标签。
 {{< /note >}}
 
 <!--
-The `pod-template-hash` label is added by the Deployment controller to every ReplicaSet
-that a Deployment creates or adopts.
+The `pod-template-hash` label is added by the Deployment controller to every ReplicaSet that a Deployment creates or adopts.
 -->
-Deployment 控制器将 `pod-template-hash` 标签添加到 Deployment 所创建或收留的
-每个 ReplicaSet 。
+Deployment 控制器将 `pod-template-hash` 标签添加到 Deployment
+所创建或收留的每个 ReplicaSet 。
 
 <!--
 This label ensures that child ReplicaSets of a Deployment do not overlap. It is generated by hashing the `PodTemplate` of the ReplicaSet and using the resulting hash as the label value that is added to the ReplicaSet selector, Pod template labels,
@@ -323,18 +320,17 @@ and in any existing Pods that the ReplicaSet might have.
 -->
 ## 更新 Deployment   {#updating-a-deployment}
 
+{{< note >}}
 <!--
  A Deployment's rollout is triggered if and only if the Deployment's Pod template (that is, `.spec.template`)
 is changed, for example if the labels or container images of the template are updated. Other updates, such as scaling the Deployment, do not trigger a rollout.
 -->
-{{< note >}}
 仅当 Deployment Pod 模板（即 `.spec.template`）发生改变时，例如模板的标签或容器镜像被更新，
-才会触发 Deployment 上线。
-其他更新（如对 Deployment 执行扩缩容的操作）不会触发上线动作。
+才会触发 Deployment 上线。其他更新（如对 Deployment 执行扩缩容的操作）不会触发上线动作。
 {{< /note >}}
 
 <!--
- Follow the steps given below to update your Deployment:
+Follow the steps given below to update your Deployment:
 -->
 按照以下步骤更新 Deployment：
 
@@ -344,8 +340,7 @@ is changed, for example if the labels or container images of the template are up
 1. 先来更新 nginx Pod 以使用 `nginx:1.16.1` 镜像，而不是 `nginx:1.14.2` 镜像。
 
    ```shell
-   kubectl --record deployment.apps/nginx-deployment set image \
-      deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1
+   kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1
    ```
    <!--
    or use the following command:
@@ -353,31 +348,35 @@ is changed, for example if the labels or container images of the template are up
    或者使用下面的命令：
     
    ```shell
-   kubectl set image deployment/nginx-deployment nginx=nginx:1.16.1 --record
-   ```
-
-   <!-- The output is similar to: -->
-   输出类似于：
-
-   ```
-   deployment.apps/nginx-deployment image updated
+   kubectl set image deployment/nginx-deployment nginx=nginx:1.16.1
    ```
 
    <!--
-   Alternatively, you can `edit` the Deployment and change `.spec.template.spec.containers[0].image` from `nginx:1.7.9` to `nginx:1.9.1`:
+   The output is similar to:
    -->
-   或者，可以 `edit`  Deployment 并将 `.spec.template.spec.containers[0].image` 从
-   `nginx:1.14.2` 更改至 `nginx:1.16.1`。
-
-   ```shell
-   kubectl edit deployment.v1.apps/nginx-deployment
-   ```
-
-   <!-- The output is similar to this: -->
    输出类似于：
 
    ```
-   deployment.apps/nginx-deployment edited
+   deployment/nginx-deployment image updated
+   ```
+
+   <!--
+   Alternatively, you can `edit` the Deployment and change `.spec.template.spec.containers[0].image` from `nginx:1.14.2` to `nginx:1.16.1`:
+   -->
+   或者，可以对 Deployment 执行 `edit` 操作并将 `.spec.template.spec.containers[0].image` 从
+   `nginx:1.14.2` 更改至 `nginx:1.16.1`。
+
+   ```shell
+   kubectl edit deployment/nginx-deployment
+   ```
+
+   <!--
+   The output is similar to this:
+   -->
+   输出类似于：
+
+   ```
+   deployment/nginx-deployment edited
    ```
 
 <!--
@@ -389,7 +388,9 @@ is changed, for example if the labels or container images of the template are up
    kubectl rollout status deployment/nginx-deployment
    ```
 
-   <!-- The output is similar to this: -->
+   <!--
+   The output is similar to this:
+   -->
    输出类似于：
 
    ```
@@ -414,9 +415,9 @@ Get more details on your updated Deployment:
 * 在上线成功后，可以通过运行 `kubectl get deployments` 来查看 Deployment：
   输出类似于：
 
-  ```shell
-  NAME               DESIRED   CURRENT   UP-TO-DATE   AVAILABLE   AGE
-  nginx-deployment   3         3         3            3           36s
+  ```ini
+  NAME               READY   UP-TO-DATE   AVAILABLE   AGE
+  nginx-deployment   3/3     3            3           36s
   ```
 
 <!--
@@ -430,7 +431,9 @@ up to 3 replicas, as well as scaling down the old ReplicaSet to 0 replicas.
   kubectl get rs
   ```
 
-  <!-- The output is similar to: -->
+  <!--
+  The output is similar to:
+  -->
   输出类似于：
 
   ```
@@ -448,7 +451,9 @@ up to 3 replicas, as well as scaling down the old ReplicaSet to 0 replicas.
   kubectl get pods
   ```
 
-  <!-- The output is similar to this: -->
+  <!--
+  The output is similar to this:
+  -->
   输出类似于：
 
   ```
@@ -480,12 +485,14 @@ up to 3 replicas, as well as scaling down the old ReplicaSet to 0 replicas.
   For example, if you look at the above Deployment closely, you will see that it first created a new Pod,
   then deleted some old Pods, and created new ones. It does not kill old Pods until a sufficient number of
   new Pods have come up, and does not create new Pods until a sufficient number of old Pods have been killed.
-  It makes sure that at least 2 Pods are available and that at max 4 Pods in total are available.
+  It makes sure that at least 2 Pods are available and that at max 4 Pods in total are available. In case of
+    a Deployment with 4 replicas, the number of Pods would be between 3 and 5.
   -->
   例如，如果仔细查看上述 Deployment ，将看到它首先创建了一个新的 Pod，然后删除了一些旧的 Pods，
   并创建了新的 Pods。它不会杀死老 Pods，直到有足够的数量新的 Pods 已经出现。
-  在足够数量的旧 Pods 被杀死前并没有创建新 Pods。它确保至少 2 个 Pod 可用，同时
-  最多总共 4 个 Pod 可用。
+  在足够数量的旧 Pods 被杀死前并没有创建新 Pods。它确保至少 2 个 Pod 可用，
+  同时最多总共 4 个 Pod 可用。
+  当 Deployment 设置为 4 个副本时，Pod 的个数会介于 3 和 5 之间。
 
 <!--
 * Get details of your Deployment:
@@ -496,7 +503,9 @@ up to 3 replicas, as well as scaling down the old ReplicaSet to 0 replicas.
   kubectl describe deployments
   ```
 
-  <!-- The output is similar to this: -->
+  <!--
+  The output is similar to this:
+  -->
   输出类似于：
 
   ```
@@ -541,18 +550,33 @@ up to 3 replicas, as well as scaling down the old ReplicaSet to 0 replicas.
   <!--
   Here you see that when you first created the Deployment, it created a ReplicaSet (nginx-deployment-2035384211)
   and scaled it up to 3 replicas directly. When you updated the Deployment, it created a new ReplicaSet
-  (nginx-deployment-1564180365) and scaled it up to 1 and then scaled down the old ReplicaSet to 2, so that at
-  least 2 Pods were available and at most 4 Pods were created at all times. It then continued scaling up and down
-  the new and the old ReplicaSet, with the same rolling update strategy. Finally, you'll have 3 available replicas
+  (nginx-deployment-1564180365) and scaled it up to 1 and waited for it to come up. Then it scaled down the old ReplicaSet
+  to 2 and scaled up the new ReplicaSet to 2 so that at least 3 Pods were available and at most 4 Pods were created at all times.
+  It then continued scaling up and down the new and the old ReplicaSet, with the same rolling update strategy.
+  Finally, you'll have 3 available replicas
   in the new ReplicaSet, and the old ReplicaSet is scaled down to 0.
   -->
-  可以看到，当第一次创建 Deployment 时，它创建了一个 ReplicaSet（nginx-deployment-2035384211）
+  可以看到，当第一次创建 Deployment 时，它创建了一个 ReplicaSet（`nginx-deployment-2035384211`）
   并将其直接扩容至 3 个副本。更新 Deployment 时，它创建了一个新的 ReplicaSet
-  （nginx-deployment-1564180365），并将其扩容为 1，然后将旧 ReplicaSet 缩容到 2，
-  以便至少有 2 个 Pod 可用且最多创建 4 个 Pod。
+  （nginx-deployment-1564180365），并将其扩容为 1，等待其就绪；然后将旧 ReplicaSet 缩容到 2，
+  将新的 ReplicaSet 扩容到 2 以便至少有 3 个 Pod 可用且最多创建 4 个 Pod。
   然后，它使用相同的滚动更新策略继续对新的 ReplicaSet 扩容并对旧的 ReplicaSet 缩容。
   最后，你将有 3 个可用的副本在新的 ReplicaSet 中，旧 ReplicaSet 将缩容到 0。
 
+{{< note >}}
+<!--
+Kubernetes doesn't count terminating Pods when calculating the number of `availableReplicas`, which must be between
+`replicas - maxUnavailable` and `replicas + maxSurge`. As a result, you might notice that there are more Pods than
+expected during a rollout, and that the total resources consumed by the Deployment is more than `replicas + maxSurge`
+until the `terminationGracePeriodSeconds` of the terminating Pods expires.
+-->
+Kubernetes 在计算 `availableReplicas` 数值时不考虑终止过程中的 Pod，
+`availableReplicas` 的值一定介于 `replicas - maxUnavailable` 和 `replicas + maxSurge` 之间。
+因此，你可能在上线期间看到 Pod 个数比预期的多，Deployment 所消耗的总的资源也大于
+`replicas + maxSurge` 个 Pod 所用的资源，直到被终止的 Pod 所设置的
+`terminationGracePeriodSeconds` 到期为止。
+{{< /note >}}
+
 <!--
 ### Rollover (aka multiple updates in-flight)
 
@@ -580,16 +604,16 @@ as per the update and start scaling that up, and rolls over the ReplicaSet that
 <!--
 For example, suppose you create a Deployment to create 5 replicas of `nginx:1.14.2`,
 but then update the Deployment to create 5 replicas of `nginx:1.16.1`, when only 3
-replicas of `nginx:1.7.9` had been created. In that case, the Deployment immediately starts
-killing the 3 `nginx:1.7.9` Pods that it had created, and starts creating
-`nginx:1.9.1` Pods. It does not wait for the 5 replicas of `nginx:1.14.2` to be created
+replicas of `nginx:1.14.2` had been created. In that case, the Deployment immediately starts
+killing the 3 `nginx:1.14.2` Pods that it had created, and starts creating
+`nginx:1.16.1` Pods. It does not wait for the 5 replicas of `nginx:1.14.2` to be created
 before changing course.
 -->
 例如，假定你在创建一个 Deployment 以生成 `nginx:1.14.2` 的 5 个副本，但接下来
-更新 Deployment 以创建 5 个 `nginx:1.16.1` 的副本，而此时只有 3 个`nginx:1.14.2`
+更新 Deployment 以创建 5 个 `nginx:1.16.1` 的副本，而此时只有 3 个 `nginx:1.14.2`
 副本已创建。在这种情况下，Deployment 会立即开始杀死 3 个 `nginx:1.14.2` Pods，
-并开始创建 `nginx:1.16.1` Pods。它不会等待 `nginx:1.14.2` 的 5 个副本都创建完成
-后才开始执行变更动作。
+并开始创建 `nginx:1.16.1` Pods。它不会等待 `nginx:1.14.2` 的 5
+个副本都创建完成后才开始执行变更动作。
 
 <!--
 ### Label selector updates
@@ -598,21 +622,21 @@ before changing course.
 In any case, if you need to perform a label selector update, exercise great caution and make sure you have grasped
 all of the implications.
 -->
-### 更改标签选择算符
+### 更改标签选择算符   {#label-selector-updates}
 
 通常不鼓励更新标签选择算符。建议你提前规划选择算符。
-在任何情况下，如果需要更新标签选择算符，请格外小心，并确保自己了解
-这背后可能发生的所有事情。
+在任何情况下，如果需要更新标签选择算符，请格外小心，
+并确保自己了解这背后可能发生的所有事情。
 
+{{< note >}}
 <!--
 In API version `apps/v1`, a Deployment's label selector is immutable after it gets created.
 -->
-{{< note >}}
 在 API 版本 `apps/v1` 中，Deployment 标签选择算符在创建后是不可变的。
 {{< /note >}}
 
 <!--
- * Selector additions require the Pod template labels in the Deployment spec to be updated with the new label too,
+* Selector additions require the Pod template labels in the Deployment spec to be updated with the new label too,
 otherwise a validation error is returned. This change is a non-overlapping one, meaning that the new selector does
 not select ReplicaSets and Pods created with the old selector, resulting in orphaning all old ReplicaSets and
 creating a new ReplicaSet.
@@ -643,6 +667,7 @@ By default, all of the Deployment's rollout history is kept in the system so tha
 默认情况下，Deployment 的所有上线记录都保留在系统中，以便可以随时回滚
 （你可以通过修改修订历史记录限制来更改这一约束）。
 
+{{< note >}}
 <!--
 A Deployment's revision is created when a Deployment's rollout is triggered. This means that the
 new revision is created if and only if the Deployment's Pod template (`.spec.template`) is changed,
@@ -651,7 +676,6 @@ do not create a Deployment revision, so that you can facilitate simultaneous man
 This means that when you roll back to an earlier revision, only the Deployment's Pod template part is
 rolled back.
 -->
-{{< note >}}
 Deployment 被触发上线时，系统就会创建 Deployment 的新的修订版本。
 这意味着仅当 Deployment 的 Pod 模板（`.spec.template`）发生更改时，才会创建新修订版本
 -- 例如，模板的标签或容器镜像发生变化。
@@ -667,14 +691,14 @@ Deployment 被触发上线时，系统就会创建 Deployment 的新的修订版
   `nginx:1.161` 而不是 `nginx:1.16.1`：
 
   ```shell
-  kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.161 --record=true
+  kubectl set image deployment/nginx-deployment nginx=nginx:1.161 --record=true
   ```
 
   <!-- The output is similar to this: -->
   输出类似于：
 
-  ```shell
-  deployment.apps/nginx-deployment image updated
+  ```
+  deployment/nginx-deployment image updated
   ```
 
 <!--
@@ -739,19 +763,17 @@ Deployment 被触发上线时，系统就会创建 Deployment 的新的修订版
   nginx-deployment-3066724191-08mng   0/1       ImagePullBackOff   0          6s
   ```
 
-  <!--
-  The Deployment controller stops the bad rollout automatically, and stops scaling up the new
-  ReplicaSet. This depends on the rollingUpdate parameters (`maxUnavailable` specifically) that you have specified.
-  Kubernetes by default sets the value to 25%.
-  -->
   {{< note >}}
+  <!--
+  The Deployment controller stops the bad rollout automatically, and stops scaling up the new ReplicaSet. This depends on the rollingUpdate parameters (`maxUnavailable` specifically) that you have specified. Kubernetes by default sets the value to 25%.
+  -->
   Deployment 控制器自动停止有问题的上线过程，并停止对新的 ReplicaSet 扩容。
   这行为取决于所指定的 rollingUpdate 参数（具体为 `maxUnavailable`）。
   默认情况下，Kubernetes 将此值设置为 25%。
   {{< /note >}}
 
 <!--
- * Get the description of the Deployment:
+* Get the description of the Deployment:
 -->
 * 获取 Deployment 描述信息：
 
@@ -762,7 +784,7 @@ Deployment 被触发上线时，系统就会创建 Deployment 的新的修订版
   <!-- The output is similar to this: -->
   输出类似于：
 
-  ```shell
+  ```
   Name:           nginx-deployment
   Namespace:      default
   CreationTimestamp:  Tue, 15 Mar 2016 14:48:04 -0700
@@ -776,7 +798,7 @@ Deployment 被触发上线时，系统就会创建 Deployment 的新的修订版
     Labels:  app=nginx
     Containers:
      nginx:
-      Image:        nginx:1.91
+      Image:        nginx:1.161
       Port:         80/TCP
       Host Port:    0/TCP
       Environment:  <none>
@@ -822,18 +844,18 @@ Follow the steps given below to check the rollout history:
 1. 首先，检查 Deployment 修订历史：
 
    ```shell
-   kubectl rollout history deployment.v1.apps/nginx-deployment
+   kubectl rollout history deployment/nginx-deployment
    ```
 
    <!-- The output is similar to this: -->
    输出类似于：
 
-   ```shell
+   ```
    deployments "nginx-deployment"
    REVISION    CHANGE-CAUSE
-   1           kubectl apply --filename=https://k8s.io/examples/controllers/nginx-deployment.yaml --record=true
-   2           kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.9.1 --record=true
-   3           kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.91 --record=true
+   1           kubectl apply --filename=https://k8s.io/examples/controllers/nginx-deployment.yaml
+   2           kubectl set image deployment/nginx-deployment nginx=nginx:1.16.1
+   3           kubectl set image deployment/nginx-deployment nginx=nginx:1.161
    ```
 
    <!--
@@ -843,12 +865,11 @@ Follow the steps given below to check the rollout history:
    复制动作发生在修订版本创建时。你可以通过以下方式设置 `CHANGE-CAUSE` 消息：
 
    <!--
-   * Annotating the Deployment with `kubectl annotate deployment.v1.apps/nginx-deployment kubernetes.io/change-cause="image updated to 1.9.1"`
-   * Append the `-record` flag to save the `kubectl` command that is making changes to the resource.
+   * Annotating the Deployment with `kubectl annotate deployment/nginx-deployment kubernetes.io/change-cause="image updated to 1.16.1"`
    * Manually editing the manifest of the resource.
    -->
-   * 使用 `kubectl annotate deployment.v1.apps/nginx-deployment kubernetes.io/change-cause="image updated to 1.9.1"` 为 Deployment 添加注解。
-   * 追加 `--record` 命令行标志以保存正在更改资源的 `kubectl` 命令。
+   * 使用 `kubectl annotate deployment/nginx-deployment kubernetes.io/change-cause="image updated to 1.16.1"`
+     为 Deployment 添加注解。
    * 手动编辑资源的清单。
 
 <!--
@@ -857,17 +878,19 @@ Follow the steps given below to check the rollout history:
 2. 要查看修订历史的详细信息，运行：
 
    ```shell
-   kubectl rollout history deployment.v1.apps/nginx-deployment --revision=2
+   kubectl rollout history deployment/nginx-deployment --revision=2
    ```
 
-   <!-- The output is similar to this: -->
+   <!--
+   The output is similar to this:
+   -->
    输出类似于：
 
-   ```shell
+   ```
    deployments "nginx-deployment" revision 2
      Labels:       app=nginx
              pod-template-hash=1159050644
-     Annotations:  kubernetes.io/change-cause=kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1 --record=true
+     Annotations:  kubernetes.io/change-cause=kubectl set image deployment/nginx-deployment nginx=nginx:1.16.1
      Containers:
       nginx:
        Image:      nginx:1.16.1
@@ -893,10 +916,12 @@ Follow the steps given below to rollback the Deployment from the current version
 1. 假定现在你已决定撤消当前上线并回滚到以前的修订版本：
 
    ```shell
-   kubectl rollout undo deployment.v1.apps/nginx-deployment
+   kubectl rollout undo deployment/nginx-deployment
    ```
 
-   <!-- The output is similar to this: -->
+   <!--
+   The output is similar to this:
+   -->
    输出类似于：
 
    ```
@@ -909,10 +934,12 @@ Follow the steps given below to rollback the Deployment from the current version
    或者，你也可以通过使用 `--to-revision` 来回滚到特定修订版本：
 
    ```shell
-   kubectl rollout undo deployment.v1.apps/nginx-deployment --to-revision=2
+   kubectl rollout undo deployment/nginx-deployment --to-revision=2
    ```
 
-   <!-- The output is similar to this: -->
+   <!--
+   The output is similar to this:
+   -->
    输出类似于：
 
    ```
@@ -922,14 +949,15 @@ Follow the steps given below to rollback the Deployment from the current version
    <!--
    For more details about rollout related commands, read [`kubectl rollout`](/docs/reference/generated/kubectl/kubectl-commands#rollout).
    -->
-   与回滚相关的指令的更详细信息，请参考 [`kubectl rollout`](/docs/reference/generated/kubectl/kubectl-commands#rollout)。
+   与回滚相关的指令的更详细信息，请参考
+   [`kubectl rollout`](/docs/reference/generated/kubectl/kubectl-commands#rollout)。
 
    <!--
    The Deployment is now rolled back to a previous stable revision. As you can see, a `DeploymentRollback` event
    for rolling back to revision 2 is generated from Deployment controller.
    -->
-   现在，Deployment 正在回滚到以前的稳定版本。正如你所看到的，Deployment 控制器生成了
-   回滚到修订版本 2 的 `DeploymentRollback` 事件。
+   现在，Deployment 正在回滚到以前的稳定版本。正如你所看到的，Deployment
+   控制器生成了回滚到修订版本 2 的 `DeploymentRollback` 事件。
 
 <!--
  2. Check if the rollback was successful and the Deployment is running as expected, run:
@@ -940,12 +968,14 @@ Follow the steps given below to rollback the Deployment from the current version
    kubectl get deployment nginx-deployment
    ```
 
-   <!-- The output is similar to this: -->
+   <!--
+   The output is similar to this:
+   -->
    输出类似于：
 
-   ```shell
-   NAME               DESIRED   CURRENT   UP-TO-DATE   AVAILABLE   AGE
-   nginx-deployment   3         3         3            3           30m
+   ```
+   NAME               READY   UP-TO-DATE   AVAILABLE   AGE
+   nginx-deployment   3/3     3            3           30m
    ```
 
 <!--
@@ -957,7 +987,9 @@ Follow the steps given below to rollback the Deployment from the current version
    kubectl describe deployment nginx-deployment
    ```
 
-   <!-- The output is similar to this: -->
+   <!--
+   The output is similar to this:
+   -->
    输出类似于：
 
    ```
@@ -966,7 +998,7 @@ Follow the steps given below to rollback the Deployment from the current version
    CreationTimestamp:      Sun, 02 Sep 2018 18:17:55 -0500
    Labels:                 app=nginx
    Annotations:            deployment.kubernetes.io/revision=4
-                           kubernetes.io/change-cause=kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1 --record=true
+                           kubernetes.io/change-cause=kubectl set image deployment/nginx-deployment nginx=nginx:1.16.1
    Selector:               app=nginx
    Replicas:               3 desired | 3 updated | 3 total | 3 available | 0 unavailable
    StrategyType:           RollingUpdate
@@ -1014,10 +1046,12 @@ You can scale a Deployment by using the following command:
 你可以使用如下指令缩放 Deployment：
 
 ```shell
-kubectl scale deployment.v1.apps/nginx-deployment --replicas=10
+kubectl scale deployment/nginx-deployment --replicas=10
 ```
 
-<!-- The output is similar to this: -->
+<!--
+The output is similar to this:
+-->
 输出类似于：
 
 ```
@@ -1029,15 +1063,17 @@ Assuming [horizontal Pod autoscaling](/docs/tasks/run-application/horizontal-pod
 in your cluster, you can setup an autoscaler for your Deployment and choose the minimum and maximum number of
 Pods you want to run based on the CPU utilization of your existing Pods.
 -->
-假设集群启用了[Pod 的水平自动缩放](/zh/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/)，
-你可以为 Deployment 设置自动缩放器，并基于现有 Pods 的 CPU 利用率选择
-要运行的 Pods 个数下限和上限。
+假设集群启用了[Pod 的水平自动缩放](/zh-cn/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/)，
+你可以为 Deployment 设置自动缩放器，并基于现有 Pod 的 CPU 利用率选择要运行的
+Pod 个数下限和上限。
 
 ```shell
-kubectl autoscale deployment.v1.apps/nginx-deployment --min=10 --max=15 --cpu-percent=80
+kubectl autoscale deployment/nginx-deployment --min=10 --max=15 --cpu-percent=80
 ```
 
-<!-- The output is similar to this: -->
+<!--
+The output is similar to this:
+-->
 输出类似于：
 
 ```
@@ -1062,7 +1098,8 @@ Deployment 控制器会平衡现有的活跃状态的 ReplicaSets（含 Pods 的
 <!--
 For example, you are running a Deployment with 10 replicas, [maxSurge](#max-surge)=3, and [maxUnavailable](#max-unavailable)=2.
 -->
-例如，你正在运行一个 10 个副本的 Deployment，其 [maxSurge](#max-surge)=3，[maxUnavailable](#max-unavailable)=2。
+例如，你正在运行一个 10 个副本的 Deployment，其
+[maxSurge](#max-surge)=3，[maxUnavailable](#max-unavailable)=2。
 
 <!--
 * Ensure that the 10 replicas in your Deployment are running.
@@ -1072,7 +1109,9 @@ For example, you are running a Deployment with 10 replicas, [maxSurge](#max-surg
   ```shell
   kubectl get deploy
   ```
-  <!-- The output is similar to this: -->
+  <!--
+  The output is similar to this:
+  -->
   输出类似于：
 
   ```
@@ -1086,10 +1125,12 @@ For example, you are running a Deployment with 10 replicas, [maxSurge](#max-surg
 * 更新 Deployment 使用新镜像，碰巧该镜像无法从集群内部解析。
 
   ```shell
-  kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:sometag
+  kubectl set image deployment/nginx-deployment nginx=nginx:sometag
   ```
 
-  <!-- The output is similar to this: -->
+  <!--
+  The output is similar to this:
+  -->
   输出类似于：
 
   ```
@@ -1106,7 +1147,10 @@ For example, you are running a Deployment with 10 replicas, [maxSurge](#max-surg
   ```shell
   kubectl get rs
   ```
-  <!-- The output is similar to this: -->
+
+  <!--
+  The output is similar to this:
+  -->
   输出类似于：
 
   ```
@@ -1142,7 +1186,10 @@ the new replicas become healthy. To confirm this, run:
 ```shell
 kubectl get deploy
 ```
-<!-- The output is similar to this: -->
+
+<!--
+The output is similar to this:
+-->
 输出类似于：
 
 ```
@@ -1159,7 +1206,9 @@ The rollout status confirms how the replicas were added to each ReplicaSet.
 kubectl get rs
 ```
 
-<!-- The output is similar to this: -->
+<!--
+The output is similar to this:
+-->
 输出类似于：
 
 ```shell
@@ -1169,27 +1218,37 @@ nginx-deployment-618515232    11        11        11        7m
 ```
 
 <!--
-## Pausing and Resuming a Deployment
+## Pausing and Resuming a rollout of a Deployment {#pausing-and-resuming-a-deployment}
 
-You can pause a Deployment before triggering one or more updates and then resume it. This allows you to
+When you update a Deployment, or plan to, you can pause rollouts
+for that Deployment before you trigger one or more updates. When
+you're ready to apply those changes, you resume rollouts for the
+Deployment. This approach allows you to
 apply multiple fixes in between pausing and resuming without triggering unnecessary rollouts.
 -->
-## 暂停、恢复 Deployment   {#pausing-and-resuming-a-deployment}
+## 暂停、恢复 Deployment 的上线过程  {#pausing-and-resuming-a-deployment}
 
-你可以在触发一个或多个更新之前暂停 Deployment，然后再恢复其执行。
+在你更新一个 Deployment 的时候，或者计划更新它的时候，
+你可以在触发一个或多个更新之前暂停 Deployment 的上线过程。
+当你准备应用这些变更时，你可以重新恢复 Deployment 上线过程。
 这样做使得你能够在暂停和恢复执行之间应用多个修补程序，而不会触发不必要的上线操作。
 
 <!--
 * For example, with a Deployment that was created:
+
   Get the Deployment details:
 -->
 * 例如，对于一个刚刚创建的 Deployment：
-  获取 Deployment 信息：
+
+  获取该 Deployment 信息：
 
   ```shell
   kubectl get deploy
   ```
-  <!-- The output is similar to this: -->
+
+  <!--
+  The output is similar to this:
+  -->
   输出类似于：
 
   ```
@@ -1197,17 +1256,21 @@ apply multiple fixes in between pausing and resuming without triggering unnecess
   nginx     3         3         3            3           1m
   ```
 
-  <!-- Get the rollout status: -->
+  <!--
+  Get the rollout status:
+  -->
   获取上线状态：
 
   ```shell
   kubectl get rs
   ```
 
-  <!-- The output is similar to this: -->
+  <!--
+  The output is similar to this:
+  -->
   输出类似于：
 
-  ```shell
+  ```
   NAME               DESIRED   CURRENT   READY     AGE
   nginx-2142116321   3         3         3         1m
   ```
@@ -1215,13 +1278,15 @@ apply multiple fixes in between pausing and resuming without triggering unnecess
 <!--
 * Pause by running the following command:
 -->
-* 使用如下指令暂停运行：
+* 使用如下指令暂停上线：
 
   ```shell
-  kubectl rollout pause deployment.v1.apps/nginx-deployment
+  kubectl rollout pause deployment/nginx-deployment
   ```
 
-  <!-- The output is similar to this: -->
+  <!--
+  The output is similar to this:
+  -->
   输出类似于：
 
   ```shell
@@ -1234,10 +1299,12 @@ apply multiple fixes in between pausing and resuming without triggering unnecess
 * 接下来更新 Deployment 镜像：
 
   ```shell
-  kubectl set image deployment.v1.apps/nginx-deployment nginx=nginx:1.16.1
+  kubectl set image deployment/nginx-deployment nginx=nginx:1.16.1
   ```
 
-  <!-- The output is similar to this: -->
+  <!--
+  The output is similar to this:
+  -->
   输出类似于：
 
   ```
@@ -1250,28 +1317,30 @@ apply multiple fixes in between pausing and resuming without triggering unnecess
 * 注意没有新的上线被触发：
 
   ```shell
-  kubectl rollout history deployment.v1.apps/nginx-deployment
+  kubectl rollout history deployment/nginx-deployment
   ```
 
   <!-- The output is similar to this: -->
   输出类似于：
 
-  ```shell
+  ```
   deployments "nginx"
   REVISION  CHANGE-CAUSE
   1   <none>
   ```
 
 <!--
-* Get the rollout status to ensure that the Deployment is updates successfully:
+* Get the rollout status to verify that the existing ReplicaSet has not changed:
 -->
-* 获取上线状态确保 Deployment 更新已经成功：
+* 获取上线状态验证现有的 ReplicaSet 没有被更改：
 
   ```shell
   kubectl get rs
   ```
 
-  <!-- The output is similar to this: -->
+  <!--
+  The output is similar to this:
+  -->
   输出类似于：
 
   ```shell
@@ -1285,10 +1354,12 @@ apply multiple fixes in between pausing and resuming without triggering unnecess
 * 你可以根据需要执行很多更新操作，例如，可以要使用的资源：
 
   ```shell
-  kubectl set resources deployment.v1.apps/nginx-deployment -c=nginx --limits=cpu=200m,memory=512Mi
+  kubectl set resources deployment/nginx-deployment -c=nginx --limits=cpu=200m,memory=512Mi
   ```
 
-  <!-- The output is similar to this: -->
+  <!--
+  The output is similar to this:
+  -->
   输出类似于：
 
   ```
@@ -1296,25 +1367,27 @@ apply multiple fixes in between pausing and resuming without triggering unnecess
   ```
 
   <!--
-  The initial state of the Deployment prior to pausing it will continue its function, but new updates to
+  The initial state of the Deployment prior to pausing its rollout will continue its function, but new updates to
   the Deployment will not have any effect as long as the Deployment is paused.
   -->
-  暂停 Deployment 之前的初始状态将继续发挥作用，但新的更新在 Deployment 被
-  暂停期间不会产生任何效果。
+  暂停 Deployment 上线之前的初始状态将继续发挥作用，但新的更新在 Deployment
+  上线被暂停期间不会产生任何效果。
 
 <!--
-* Eventually, resume the Deployment and observe a new ReplicaSet coming up with all the new updates:
+* Eventually, resume the Deployment rollout and observe a new ReplicaSet coming up with all the new updates:
 -->
-* 最终，恢复 Deployment 执行并观察新的 ReplicaSet 的创建过程，其中包含了所应用的所有更新：
+* 最终，恢复 Deployment 上线并观察新的 ReplicaSet 的创建过程，其中包含了所应用的所有更新：
 
   ```shell
-  kubectl rollout resume deployment.v1.apps/nginx-deployment
+  kubectl rollout resume deployment/nginx-deployment
   ```
 
-  <!-- The output is similar to this: -->
-  输出：
+  <!--
+  The output is similar to this:
+  -->
+  输出类似于这样：
 
-  ```shell
+  ```
   deployment.apps/nginx-deployment resumed
   ```
 
@@ -1327,7 +1400,9 @@ apply multiple fixes in between pausing and resuming without triggering unnecess
   kubectl get rs -w
   ```
 
-  <!-- The output is similar to this: -->
+  <!--
+  The output is similar to this:
+  -->
   输出类似于：
 
   ```
@@ -1357,7 +1432,9 @@ apply multiple fixes in between pausing and resuming without triggering unnecess
   kubectl get rs
   ```
 
-  <!-- The output is similar to this: -->
+  <!--
+  The output is similar to this:
+  -->
   输出类似于：
 
   ```
@@ -1366,10 +1443,10 @@ apply multiple fixes in between pausing and resuming without triggering unnecess
   nginx-3926361531   3         3         3         28s
   ```
 
+{{< note >}}
 <!--
 You cannot rollback a paused Deployment until you resume it.
 -->
-{{< note >}}
 你不可以回滚处于暂停状态的 Deployment，除非先恢复其执行状态。
 {{< /note >}}
 
@@ -1393,10 +1470,10 @@ Kubernetes marks a Deployment as _progressing_ when one of the following tasks i
 -->
 ### 进行中的 Deployment  {#progressing-deployment}
 
-执行下面的任务期间，Kubernetes 标记 Deployment 为 _进行中（Progressing）_：
+执行下面的任务期间，Kubernetes 标记 Deployment 为**进行中**（Progressing）_：
 
 <!--
- * The Deployment creates a new ReplicaSet.
+* The Deployment creates a new ReplicaSet.
 * The Deployment is scaling up its newest ReplicaSet.
 * The Deployment is scaling down its older ReplicaSet(s).
 * New Pods become ready or available (ready for at least [MinReadySeconds](#min-ready-seconds)).
@@ -1406,6 +1483,17 @@ Kubernetes marks a Deployment as _progressing_ when one of the following tasks i
 * Deployment 正在为其旧有的 ReplicaSet(s) 缩容
 * 新的 Pods 已经就绪或者可用（就绪至少持续了 [MinReadySeconds](#min-ready-seconds) 秒）。
 
+<!--
+When the rollout becomes “progressing”, the Deployment controller adds a condition with the following
+attributes to the Deployment's `.status.conditions`:
+-->
+当上线过程进入“Progressing”状态时，Deployment 控制器会向 Deployment 的
+`.status.conditions` 中添加包含下面属性的状况条目：
+
+* `type: Progressing`
+* `status: "True"`
+* `reason: NewReplicaSetCreated` | `reason: FoundNewReplicaSet` | `reason: ReplicaSetUpdated`
+
 <!--
 You can monitor the progress for a Deployment by using `kubectl rollout status`.
 -->
@@ -1418,7 +1506,7 @@ Kubernetes marks a Deployment as _complete_ when it has the following characteri
 -->
 ### 完成的 Deployment    {#complete-deployment}
 
-当 Deployment 具有以下特征时，Kubernetes 将其标记为 _完成（Complete）_：
+当 Deployment 具有以下特征时，Kubernetes 将其标记为**完成（Complete）**;
 
 <!--
 * All of the replicas associated with the Deployment have been updated to the latest version you've specified, meaning any
@@ -1430,6 +1518,25 @@ updates you've requested have been completed.
 * 与 Deployment 关联的所有副本都可用。
 * 未运行 Deployment 的旧副本。
 
+<!--
+When the rollout becomes “complete”, the Deployment controller sets a condition with the following
+attributes to the Deployment's `.status.conditions`:
+-->
+当上线过程进入“Complete”状态时，Deployment 控制器会向 Deployment 的
+`.status.conditions` 中添加包含下面属性的状况条目：
+
+* `type: Progressing`
+* `status: "True"`
+* `reason: NewReplicaSetAvailable`
+
+<!--
+This `Progressing` condition will retain a status value of `"True"` until a new rollout
+is initiated. The condition holds even when availability of replicas changes (which
+does instead affect the `Available` condition).
+-->
+这一 `Progressing` 状况的状态值会持续为 `"True"`，直至新的上线动作被触发。
+即使副本的可用状态发生变化（进而影响 `Available` 状况），`Progressing` 状况的值也不会变化。
+
 <!--
 You can check if a Deployment has completed by using `kubectl rollout status`. If the rollout completed
 successfully, `kubectl rollout status` returns a zero exit code.
@@ -1447,7 +1554,14 @@ kubectl rollout status deployment/nginx-deployment
 ```shell
 Waiting for rollout to finish: 2 of 3 updated replicas are available...
 deployment "nginx-deployment" successfully rolled out
+```
+
+从 `kubectl rollout` 命令获得的返回状态为 0（成功）：
+
+```shell
 $ echo $?
+```
+```
 0
 ```
 
@@ -1485,7 +1599,7 @@ number of seconds the Deployment controller waits before indicating (in the Depl
 Deployment progress has stalled.
 -->
 检测此状况的一种方法是在 Deployment 规约中指定截止时间参数：
-（[`.spec.progressDeadlineSeconds`]（#progress-deadline-seconds））。
+（[`.spec.progressDeadlineSeconds`](#progress-deadline-seconds)）。
 `.spec.progressDeadlineSeconds` 给出的是一个秒数值，Deployment 控制器在（通过 Deployment 状态）
 标示 Deployment 进展停滞之前，需要等待所给的时长。
 
@@ -1497,10 +1611,12 @@ lack of progress for a Deployment after 10 minutes:
 在 10 分钟后报告 Deployment 没有进展：
 
 ```shell
-kubectl patch deployment.v1.apps/nginx-deployment -p '{"spec":{"progressDeadlineSeconds":600}}'
+kubectl patch deployment/nginx-deployment -p '{"spec":{"progressDeadlineSeconds":600}}'
 ```
 
-<!-- The output is similar to this: -->
+<!--
+The output is similar to this:
+-->
 输出类似于：
 
 ```
@@ -1511,35 +1627,46 @@ deployment.apps/nginx-deployment patched
 Once the deadline has been exceeded, the Deployment controller adds a DeploymentCondition with the following
 attributes to the Deployment's `.status.conditions`:
 -->
-超过截止时间后，Deployment 控制器将添加具有以下属性的 DeploymentCondition 到
+超过截止时间后，Deployment 控制器将添加具有以下属性的 Deployment 状况到
 Deployment 的 `.status.conditions` 中：
 
 * Type=Progressing
 * Status=False
 * Reason=ProgressDeadlineExceeded
 
+<!--
+This condition can also fail early and is then set to status value of `"False"` due to reasons as `ReplicaSetCreateError`.
+Also, the deadline is not taken into account anymore once the Deployment rollout completes.
+-->
+这一状况也可能会比较早地失败，因而其状态值被设置为 `"False"`，
+其原因为 `ReplicaSetCreateError`。
+一旦 Deployment 上线完成，就不再考虑其期限。
+
 <!--
 See the [Kubernetes API conventions](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties) for more information on status conditions.
 -->
 参考
-[Kubernetes API 约定](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties)
+[Kubernetes API Conventions](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties)
 获取更多状态状况相关的信息。
 
+{{< note >}}
 <!--
  Kubernetes takes no action on a stalled Deployment other than to report a status condition with
 `Reason=ProgressDeadlineExceeded`. Higher level orchestrators can take advantage of it and act accordingly, for
 example, rollback the Deployment to its previous version.
-
-If you pause a Deployment, Kubernetes does not check progress against your specified deadline. You can
-safely pause a Deployment in the middle of a rollout and resume without triggering the condition for
-exceeding the deadline.
 -->
-{{< note >}}
 除了报告 `Reason=ProgressDeadlineExceeded` 状态之外，Kubernetes 对已停止的
 Deployment 不执行任何操作。更高级别的编排器可以利用这一设计并相应地采取行动。
 例如，将 Deployment 回滚到其以前的版本。
+{{< /note >}}
 
-如果你暂停了某个 Deployment，Kubernetes 不再根据指定的截止时间检查 Deployment 进展。
+{{< note >}}
+<!--
+If you pause a Deployment rollout, Kubernetes does not check progress against your specified deadline. You can
+safely pause a Deployment in the middle of a rollout and resume without triggering the condition for
+exceeding the deadline.
+-->
+如果你暂停了某个 Deployment 上线，Kubernetes 不再根据指定的截止时间检查 Deployment 进展。
 你可以在上线过程中间安全地暂停 Deployment 再恢复其执行，这样做不会导致超出最后时限的问题。
 {{< /note >}}
 
@@ -1638,18 +1765,18 @@ Conditions:
 ```
 
 <!--
-`Type=Available` with `Status=True` means that your Deployment has minimum availability. Minimum availability is dictated
-by the parameters specified in the deployment strategy. `Type=Progressing` with `Status=True` means that your Deployment
+`type: Available` with `status: "True"` means that your Deployment has minimum availability. Minimum availability is dictated
+by the parameters specified in the deployment strategy. `type: Progressing` with `status: "True"` means that your Deployment
 is either in the middle of a rollout and it is progressing or that it has successfully completed its progress and the minimum
 required new replicas are available (see the Reason of the condition for the particulars - in our case
-`Reason=NewReplicaSetAvailable` means that the Deployment is complete).
+`reason: NewReplicaSetAvailable` means that the Deployment is complete).
 -->
-`Type=Available` 加上 `Status=True` 意味着 Deployment 具有最低可用性。
+`type: Available` 加上 `status: True` 意味着 Deployment 具有最低可用性。
 最低可用性由 Deployment 策略中的参数指定。
-`Type=Progressing` 加上 `Status=True` 表示 Deployment 处于上线过程中，并且正在运行，
+`type: Progressing` 加上 `status: True` 表示 Deployment 处于上线过程中，并且正在运行，
 或者已成功完成进度，最小所需新副本处于可用。
 请参阅对应状况的 Reason 了解相关细节。
-在我们的案例中 `Reason=NewReplicaSetAvailable` 表示 Deployment 已完成。
+在我们的案例中 `reason: NewReplicaSetAvailable` 表示 Deployment 已完成。
 
 <!--
 You can check if a Deployment has failed to progress by using `kubectl rollout status`. `kubectl rollout status`
@@ -1686,8 +1813,8 @@ $ echo $?
 <!--
 ### Operating on a failed deployment
 
-All actions that apply to a complete Deployment also apply to a failed Deployment. You can scale it up/down,
-roll back to a previous revision, or even pause it if you need to apply multiple tweaks in the Deployment
+All actions that apply to a complete Deployment also apply to a failed Deployment. You can scale it up/down, roll back
+to a previous revision, or even pause it if you need to apply multiple tweaks in the Deployment
 Pod template.
 -->
 ### 对失败 Deployment 的操作   {#operating-on-a-failed-deployment}
@@ -1709,11 +1836,11 @@ it is 10.
 Deployment 的多少个旧有 ReplicaSet。其余的 ReplicaSet 将在后台被垃圾回收。
 默认情况下，此值为 10。
 
+{{< note >}}
 <!--
- Explicitly setting this field to 0, will result in cleaning up all the history of your Deployment
+Explicitly setting this field to 0, will result in cleaning up all the history of your Deployment
 thus that Deployment will not be able to roll back.
 -->
-{{< note >}}
 显式将此字段设置为 0 将导致 Deployment 的所有历史记录被清空，因此 Deployment 将无法回滚。
 {{< /note >}}
 
@@ -1726,23 +1853,23 @@ can create multiple Deployments, one for each release, following the canary patt
 -->
 ## 金丝雀部署 {#canary-deployment}
 
-如果要使用 Deployment 向用户子集或服务器子集上线版本，则可以遵循
-[资源管理](/zh/docs/concepts/cluster-administration/manage-deployment/#canary-deployments)
-所描述的金丝雀模式，创建多个 Deployment，每个版本一个。
+如果要使用 Deployment 向用户子集或服务器子集上线版本，
+则可以遵循[资源管理](/zh-cn/docs/concepts/cluster-administration/manage-deployment/#canary-deployments)所描述的金丝雀模式，
+创建多个 Deployment，每个版本一个。
 
 <!--
 ## Writing a Deployment Spec
 
 As with all other Kubernetes configs, a Deployment needs `apiVersion`, `kind`, and `metadata` fields.
-For general information about working with config files, see [deploying applications](/docs/tutorials/stateless-application/run-stateless-application-deployment/),
+For general information about working with config files, see
+[deploying applications](/docs/tasks/run-application/run-stateless-application-deployment/),
 configuring containers, and [using kubectl to manage resources](/docs/concepts/overview/working-with-objects/object-management/) documents.
 -->
 ## 编写 Deployment 规约       {#writing-a-deployment-spec}
 
 同其他 Kubernetes 配置一样， Deployment 需要 `apiVersion`，`kind` 和 `metadata` 字段。
-有关配置文件的其他信息，请参考
-[部署 Deployment ](/zh/docs/tasks/run-application/run-stateless-application-deployment/)、配置容器和
-[使用 kubectl 管理资源](/zh/docs/concepts/overview/working-with-objects/object-management/)等相关文档。
+有关配置文件的其他信息，请参考[部署 Deployment](/zh-cn/docs/tasks/run-application/run-stateless-application-deployment/)、
+配置容器和[使用 kubectl 管理资源](/zh-cn/docs/concepts/overview/working-with-objects/object-management/)等相关文档。
 
 <!--
 The name of a Deployment object must be a valid
@@ -1751,7 +1878,7 @@ The name of a Deployment object must be a valid
 A Deployment also needs a [`.spec` section](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status).
 -->
 Deployment 对象的名称必须是合法的
-[DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
 Deployment 还需要 [`.spec` 部分](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status)。
 
 <!--
@@ -1764,10 +1891,10 @@ The `.spec.template` and `.spec.selector` are the only required field of the `.s
 `.spec` 中只有 `.spec.template` 和 `.spec.selector` 是必需的字段。
 
 <!--
- The `.spec.template` is a [Pod template](/docs/concepts/workloads/pods/pod-overview/#pod-templates). It has exactly the same schema as a [Pod](/docs/concepts/workloads/pods/pod/), except it is nested and does not have an
-`apiVersion` or `kind`.
+
+The `.spec.template` is a [Pod template](/docs/concepts/workloads/pods/#pod-templates). It has exactly the same schema as a {{< glossary_tooltip text="Pod" term_id="pod" >}}, except it is nested and does not have an `apiVersion` or `kind`.
 -->
-`.spec.template` 是一个 [Pod 模板](/zh/docs/concepts/workloads/pods/#pod-templates)。
+`.spec.template` 是一个 [Pod 模板](/zh-cn/docs/concepts/workloads/pods/#pod-templates)。
 它和 {{< glossary_tooltip text="Pod" term_id="pod" >}} 的语法规则完全相同。
 只是这里它是嵌套的，因此不需要 `apiVersion` 或 `kind`。
 
@@ -1782,7 +1909,7 @@ labels and an appropriate restart policy. For labels, make sure not to overlap w
 Only a [`.spec.template.spec.restartPolicy`](/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy) equal to `Always` is
 allowed, which is the default if not specified.
 -->
-只有 [`.spec.template.spec.restartPolicy`](/zh/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy)
+只有 [`.spec.template.spec.restartPolicy`](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy)
 等于 `Always` 才是被允许的，这也是在没有指定时的默认设置。
 
 <!--
@@ -1794,6 +1921,34 @@ allowed, which is the default if not specified.
 
 `.spec.replicas` 是指定所需 Pod 的可选字段。它的默认值是1。
 
+<!--
+Should you manually scale a Deployment, example via `kubectl scale deployment
+deployment --replicas=X`, and then you update that Deployment based on a manifest
+(for example: by running `kubectl apply -f deployment.yaml`),
+then applying that manifest overwrites the manual scaling that you previously did.
+-->
+如果你对某个 Deployment 执行了手动扩缩操作（例如，通过 
+`kubectl scale deployment deployment --replicas=X`），
+之后基于清单对 Deployment 执行了更新操作（例如通过运行
+`kubectl apply -f deployment.yaml`），那么通过应用清单而完成的更新会覆盖之前手动扩缩所作的变更。
+
+<!--
+If a [HorizontalPodAutoscaler](/docs/tasks/run-application/horizontal-pod-autoscale/) (or any
+similar API for horizontal scaling) is managing scaling for a Deployment, don't set `.spec.replicas`.
+-->
+如果一个 [HorizontalPodAutoscaler](/zh-cn/docs/tasks/run-application/horizontal-pod-autoscale/)
+（或者其他执行水平扩缩操作的类似 API）在管理 Deployment 的扩缩，
+则不要设置 `.spec.replicas`。
+
+<!--
+Instead, allow the Kubernetes
+{{< glossary_tooltip text="control plane" term_id="control-plane" >}} to manage the
+`.spec.replicas` field automatically.
+-->
+恰恰相反，应该允许 Kubernetes
+{{< glossary_tooltip text="控制面" term_id="control-plane" >}}来自动管理
+`.spec.replicas` 字段。
+
 <!--
 ### Selector
 
@@ -1805,12 +1960,12 @@ for the Pods targeted by this Deployment.
 ### 选择算符   {#selector}
 
 `.spec.selector` 是指定本 Deployment 的 Pod
-[标签选择算符](/zh/docs/concepts/overview/working-with-objects/labels/)的必需字段。
+[标签选择算符](/zh-cn/docs/concepts/overview/working-with-objects/labels/)的必需字段。
 
 `.spec.selector` 必须匹配 `.spec.template.metadata.labels`，否则请求会被 API 拒绝。
 
 <!--
- In API version `apps/v1`, `.spec.selector` and `.metadata.labels` do not default to `.spec.template.metadata.labels` if not set. So they must be set explicitly. Also note that `.spec.selector` is immutable after creation of the Deployment in `apps/v1`.
+In API version `apps/v1`, `.spec.selector` and `.metadata.labels` do not default to `.spec.template.metadata.labels` if not set. So they must be set explicitly. Also note that `.spec.selector` is immutable after creation of the Deployment in `apps/v1`.
 -->
 在 API `apps/v1`版本中，`.spec.selector` 和 `.metadata.labels` 如果没有设置的话，
 不会被默认设置为 `.spec.template.metadata.labels`，所以需要明确进行设置。
@@ -1825,14 +1980,14 @@ Pods with `.spec.template` if the number of Pods is less than the desired number
 的总数超过 `.spec.replicas` 的设置时，Deployment 会终结之。
 如果 Pods 总数未达到期望值，Deployment 会基于 `.spec.template` 创建新的 Pod。
 
+{{< note >}}
 <!--
 You should not create other Pods whose labels match this selector, either directly, by creating
 another Deployment, or by creating another controller such as a ReplicaSet or a ReplicationController. If you
 do so, the first Deployment thinks that it created these other Pods. Kubernetes does not stop you from doing this.
 -->
-{{< note >}}
-你不应直接创建、或者通过创建另一个 Deployment，或者创建类似 ReplicaSet
-或 ReplicationController 这类控制器来创建标签与此选择算符匹配的 Pod。
+你不应直接创建与此选择算符匹配的 Pod，也不应通过创建另一个 Deployment 或者类似于
+ReplicaSet 或 ReplicationController 这类控制器来创建标签与此选择算符匹配的 Pod。
 如果这样做，第一个 Deployment 会认为它创建了这些 Pod。
 Kubernetes 不会阻止你这么做。
 {{< /note >}}
@@ -1864,6 +2019,23 @@ All existing Pods are killed before new ones are created when `.spec.strategy.ty
 
 如果 `.spec.strategy.type==Recreate`，在创建新 Pods 之前，所有现有的 Pods 会被杀死。
 
+{{< note >}}
+<!--
+This will only guarantee Pod termination previous to creation for upgrades. If you upgrade a Deployment, all Pods 
+of the old revision will be terminated immediately. Successful removal is awaited before any Pod of the new 
+revision is created. If you manually delete a Pod, the lifecycle is controlled by the ReplicaSet and the 
+replacement will be created immediately (even if the old Pod is still in a Terminating state). If you need an 
+"at most" guarantee for your Pods, you should consider using a 
+[StatefulSet](/docs/concepts/workloads/controllers/statefulset/).
+-->
+这只会确保为了升级而创建新 Pod 之前其他 Pod 都已终止。如果你升级一个 Deployment，
+所有旧版本的 Pod 都会立即被终止。控制器等待这些 Pod 被成功移除之后，
+才会创建新版本的 Pod。如果你手动删除一个 Pod，其生命周期是由 ReplicaSet 来控制的，
+后者会立即创建一个替换 Pod（即使旧的 Pod 仍然处于 Terminating 状态）。
+如果你需要一种“最多 n 个”的 Pod 个数保证，你需要考虑使用
+[StatefulSet](/zh-cn/docs/concepts/workloads/controllers/statefulset/)。
+{{< /note >}}
+
 <!--
 #### Rolling Update Deployment
 
@@ -1889,8 +2061,8 @@ or a percentage of desired Pods (for example, 10%). The absolute number is calcu
 rounding down. The value cannot be 0 if `.spec.strategy.rollingUpdate.maxSurge` is 0. The default value is 25%.
 -->
 `.spec.strategy.rollingUpdate.maxUnavailable` 是一个可选字段，用来指定
-更新过程中不可用的 Pod 的个数上限。该值可以是绝对数字（例如，5），也可以是
-所需 Pods 的百分比（例如，10%）。百分比值会转换成绝对数并去除小数部分。
+更新过程中不可用的 Pod 的个数上限。该值可以是绝对数字（例如，5），也可以是所需
+Pods 的百分比（例如，10%）。百分比值会转换成绝对数并去除小数部分。
 如果 `.spec.strategy.rollingUpdate.maxSurge` 为 0，则此值不能为 0。
 默认值为 25%。
 
@@ -1901,8 +2073,8 @@ down further, followed by scaling up the new ReplicaSet, ensuring that the total
 at all times during the update is at least 70% of the desired Pods.
 -->
 例如，当此值设置为 30% 时，滚动更新开始时会立即将旧 ReplicaSet 缩容到期望 Pod 个数的70%。
-新 Pod 准备就绪后，可以继续缩容旧有的 ReplicaSet，然后对新的 ReplicaSet 扩容，确保在更新期间
-可用的 Pods 总数在任何时候都至少为所需的 Pod 个数的 70%。
+新 Pod 准备就绪后，可以继续缩容旧有的 ReplicaSet，然后对新的 ReplicaSet 扩容，
+确保在更新期间可用的 Pods 总数在任何时候都至少为所需的 Pod 个数的 70%。
 
 <!--
 ##### Max Surge
@@ -1914,8 +2086,8 @@ is calculated from the percentage by rounding up. The default value is 25%.
 -->
 ##### 最大峰值   {#max-surge}
 
-`.spec.strategy.rollingUpdate.maxSurge` 是一个可选字段，用来指定可以创建的超出
-期望 Pod 个数的 Pod 数量。此值可以是绝对数（例如，5）或所需 Pods 的百分比（例如，10%）。
+`.spec.strategy.rollingUpdate.maxSurge` 是一个可选字段，用来指定可以创建的超出期望
+Pod 个数的 Pod 数量。此值可以是绝对数（例如，5）或所需 Pods 的百分比（例如，10%）。
 如果 `MaxUnavailable` 为 0，则此值不能为 0。百分比值会通过向上取整转换为绝对数。
 此字段的默认值为 25%。
 
@@ -1934,8 +2106,8 @@ total number of Pods running at any time during the update is at most 130% of de
 
  `.spec.progressDeadlineSeconds` is an optional field that specifies the number of seconds you want
 to wait for your Deployment to progress before the system reports back that the Deployment has
-[failed progressing](#failed-deployment) - surfaced as a condition with `Type=Progressing`, `Status=False`.
-and `Reason=ProgressDeadlineExceeded` in the status of the resource. The Deployment controller will keep
+[failed progressing](#failed-deployment) - surfaced as a condition with `type: Progressing`, `status: False`.
+and `reason: ProgressDeadlineExceeded` in the status of the resource. The Deployment controller will keep
 retrying the Deployment. In the future, once automatic rollback will be implemented, the Deployment
 controller will roll back a Deployment as soon as it observes such a condition.
 -->
@@ -1943,8 +2115,8 @@ controller will roll back a Deployment as soon as it observes such a condition.
  
 `.spec.progressDeadlineSeconds` 是一个可选字段，用于指定系统在报告 Deployment
 [进展失败](#failed-deployment) 之前等待 Deployment 取得进展的秒数。
-这类报告会在资源状态中体现为 `Type=Progressing`、`Status=False`、
-`Reason=ProgressDeadlineExceeded`。Deployment 控制器将持续重试 Deployment。
+这类报告会在资源状态中体现为 `type: Progressing`、`status: False`、
+`reason: ProgressDeadlineExceeded`。Deployment 控制器将持续重试 Deployment。
 将来，一旦实现了自动回滚，Deployment 控制器将在探测到这样的条件时立即回滚 Deployment。
 
 <!--
@@ -1962,9 +2134,11 @@ a Pod is considered ready, see [Container Probes](/docs/concepts/workloads/pods/
 -->
 ### 最短就绪时间    {#min-ready-seconds}
 
-`.spec.minReadySeconds` 是一个可选字段，用于指定新创建的 Pod 在没有任意容器崩溃情况下的最小就绪时间，
+`.spec.minReadySeconds` 是一个可选字段，用于指定新创建的 Pod
+在没有任意容器崩溃情况下的最小就绪时间，
 只有超出这个时间 Pod 才被视为可用。默认值为 0（Pod 在准备就绪后立即将被视为可用）。
-要了解何时 Pod 被视为就绪，可参考[容器探针](/zh/docs/concepts/workloads/pods/pod-lifecycle/#container-probes)。
+要了解何时 Pod 被视为就绪，
+可参考[容器探针](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#container-probes)。
 
 <!--
 ### Revision History Limit
@@ -2006,3 +2180,23 @@ it is created.
 暂停的 Deployment 和未暂停的 Deployment 的唯一区别是，Deployment 处于暂停状态时，
 PodTemplateSpec 的任何修改都不会触发新的上线。
 Deployment 在创建时是默认不会处于暂停状态。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* Learn about [Pods](/docs/concepts/workloads/pods).
+* [Run a Stateless Application Using a Deployment](/docs/tasks/run-application/run-stateless-application-deployment/).
+* `Deployment` is a top-level resource in the Kubernetes REST API.
+  Read the {{< api-reference page="workload-resources/deployment-v1" >}}
+  object definition to understand the API for deployments.
+* Read about [PodDisruptionBudget](/docs/concepts/workloads/pods/disruptions/) and how
+  you can use it to manage application availability during disruptions.
+-->
+* 了解 [Pod](/zh-cn/docs/concepts/workloads/pods)。
+* [使用 Deployment 运行一个无状态应用](/zh-cn/docs/tasks/run-application/run-stateless-application-deployment/)。
+* `Deployment` 是 Kubernetes REST API 中的一个顶层资源。
+  阅读 {{< api-reference page="workload-resources/deployment-v1" >}}
+  对象定义，以了解 Deployment 的 API 细节。
+* 阅读 [PodDisruptionBudget](/zh-cn/docs/concepts/workloads/pods/disruptions/)
+  了解如何使用它来在可能出现干扰的情况下管理应用的可用性。
+
diff --git a/content/zh/docs/concepts/workloads/controllers/job.md b/content/zh-cn/docs/concepts/workloads/controllers/job.md
similarity index 68%
rename from content/zh/docs/concepts/workloads/controllers/job.md
rename to content/zh-cn/docs/concepts/workloads/controllers/job.md
index 27e97ef8bf..ca031f5372 100644
--- a/content/zh/docs/concepts/workloads/controllers/job.md
+++ b/content/zh-cn/docs/concepts/workloads/controllers/job.md
@@ -1,5 +1,5 @@
 ---
-title: Jobs
+title: Job
 content_type: concept
 feature:
   title: 批量执行
@@ -33,11 +33,14 @@ The Job object will start a new Pod if the first Pod fails or is deleted (for ex
 due to a node hardware failure or a node reboot).
 
 You can also use a Job to run multiple Pods in parallel.
+
+If you want to run a Job (either a single task, or several in parallel) on a schedule,
+see [CronJob](/docs/concepts/workloads/controllers/cron-jobs/).
 -->
-Job 会创建一个或者多个 Pods，并将继续重试 Pods 的执行，直到指定数量的 Pods 成功终止。
-随着 Pods 成功结束，Job 跟踪记录成功完成的 Pods 个数。
+Job 会创建一个或者多个 Pod，并将继续重试 Pod 的执行，直到指定数量的 Pod 成功终止。
+随着 Pod 成功结束，Job 跟踪记录成功完成的 Pod 个数。
 当数量达到指定的成功个数阈值时，任务（即 Job）结束。
-删除 Job 的操作会清除所创建的全部 Pods。
+删除 Job 的操作会清除所创建的全部 Pod。
 挂起 Job 的操作会删除 Job 的所有活跃 Pod，直到 Job 被再次恢复执行。
 
 一种简单的使用场景下，你会创建一个 Job 对象以便以一种可靠的方式运行某 Pod 直到完成。
@@ -46,7 +49,11 @@ Job 会创建一个或者多个 Pods，并将继续重试 Pods 的执行，直
 
 你也可以使用 Job 以并行的方式运行多个 Pod。
 
+如果你想按某种排期表（Schedule）运行 Job（单个任务或多个并行任务），请参阅
+[CronJob](/zh-cn/docs/concepts/workloads/controllers/cron-jobs/)。
+
 <!-- body -->
+
 <!--
 ## Running an example Job
 
@@ -60,26 +67,36 @@ It takes around 10s to complete.
 
 {{< codenew file="controllers/job.yaml" >}}
 
-<!--You can run the example with this command:-->
+<!--
+You can run the example with this command:
+-->
 你可以使用下面的命令来运行此示例：
 
 ```shell
 kubectl apply -f https://kubernetes.io/examples/controllers/job.yaml
 ```
 
+<!--
+The output is similar to this:
+-->
 输出类似于：
 
 ```
 job.batch/pi created
 ```
 
-<!-- Check on the status of the Job with `kubectl`: -->
+<!--
+Check on the status of the Job with `kubectl`:
+-->
 使用 `kubectl` 来检查 Job 的状态：
 
 ```shell
 kubectl describe jobs/pi
 ```
 
+<!--
+The output is similar to this:
+-->
 输出类似于：
 
 ```
@@ -101,7 +118,7 @@ Pod Template:
            job-name=pi
   Containers:
    pi:
-    Image:      perl
+    Image:      perl:5.34.0
     Port:       <none>
     Host Port:  <none>
     Command:
@@ -123,15 +140,18 @@ To view completed Pods of a Job, use `kubectl get pods`.
 
 To list all the Pods that belong to a Job in a machine readable form, you can use a command like this:
 -->
-要查看 Job 对应的已完成的 Pods，可以执行 `kubectl get pods`。
+要查看 Job 对应的已完成的 Pod，可以执行 `kubectl get pods`。
 
-要以机器可读的方式列举隶属于某 Job 的全部 Pods，你可以使用类似下面这条命令：
+要以机器可读的方式列举隶属于某 Job 的全部 Pod，你可以使用类似下面这条命令：
 
 ```shell
 pods=$(kubectl get pods --selector=job-name=pi --output=jsonpath='{.items[*].metadata.name}')
 echo $pods
 ```
 
+<!--
+The output is similar to this:
+-->
 输出类似于：
 
 ```
@@ -139,7 +159,7 @@ pi-5rwd7
 ```
 
 <!--
-Here, the selector is the same as the selector for the Job.  The `-output=jsonpath` option specifies an expression
+Here, the selector is the same as the selector for the Job.  The `--output=jsonpath` option specifies an expression
 with the name from each Pod in the returned list.
 
 View the standard output of one of the pods:
@@ -153,12 +173,15 @@ View the standard output of one of the pods:
 kubectl logs $pods
 ```
 
-<!--The output is similar to this:-->
+<!--
+The output is similar to this:
+-->
 输出类似于：
 
 ```
 3.1415926535897932384626433832795028841971693993751058209749445923078164062862089986280348253421170679821480865132823066470938446095505822317253594081284811174502841027019385211055596446229489549303819644288109756659334461284756482337867831652712019091456485669234603486104543266482133936072602491412737245870066063155881748815209209628292540917153643678925903600113305305488204665213841469519415116094330572703657595919530921861173819326117931051185480744623799627495673518857527248912279381830119491298336733624406566430860213949463952247371907021798609437027705392171762931767523846748184676694051320005681271452635608277857713427577896091736371787214684409012249534301465495853710507922796892589235420199561121290219608640344181598136297747713099605187072113499999983729780499510597317328160963185950244594553469083026425223082533446850352619311881710100031378387528865875332083814206171776691473035982534904287554687311595628638823537875937519577818577805321712268066130019278766111959092164201989380952572010654858632788659361533818279682303019520353018529689957736225994138912497217752834791315155748572424541506959508295331168617278558890750983817546374649393192550604009277016711390098488240128583616035637076601047101819429555961989467678374494482553797747268471040475346462080466842590694912933136770289891521047521620569660240580381501935112533824300355876402474964732639141992726042699227967823547816360093417216412199245863150302861829745557067498385054945885869269956909272107975093029553211653449872027559602364806654991198818347977535663698074265425278625518184175746728909777727938000816470600161452491921732172147723501414419735685481613611573525521334757418494684385233239073941433345477624168625189835694855620992192221842725502542568876717904946016534668049886272327917860857843838279679766814541009538837863609506800642251252051173929848960841284886269456042419652850222106611863067442786220391949450471237137869609563643719172874677646575739624138908658326459958133904780275901
 ```
+
 <!--
 ## Writing a Job spec
 
@@ -167,12 +190,12 @@ Its name must be a valid [DNS subdomain name](/docs/concepts/overview/working-wi
 
 A Job also needs a [`.spec` section](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status).
 -->
-## 编写 Job 规约
+## 编写 Job 规约    {#writing-a-job-spec}
 
 与 Kubernetes 中其他资源的配置类似，Job 也需要 `apiVersion`、`kind` 和 `metadata` 字段。
-Job 的名字必须是合法的 [DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
+Job 的名字必须是合法的 [DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
 
-Job 配置还需要一个[`.spec` 节](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status)。
+Job 配置还需要一个 [`.spec` 节](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status)。
 
 <!--
 ### Pod Template
@@ -186,18 +209,18 @@ labels (see [pod selector](#pod-selector)) and an appropriate restart policy.
 
 Only a [`RestartPolicy`](/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy) equal to `Never` or `OnFailure` is allowed.
 -->
-### Pod 模版
+### Pod 模板    {#pod-template}
 
 Job 的 `.spec` 中只有 `.spec.template` 是必需的字段。
 
-字段 `.spec.template` 的值是一个 [Pod 模版](/zh/docs/concepts/workloads/pods/#pod-templates)。
+字段 `.spec.template` 的值是一个 [Pod 模板](/zh-cn/docs/concepts/workloads/pods/#pod-templates)。
 其定义规范与 {{< glossary_tooltip text="Pod" term_id="pod" >}}
 完全相同，只是其中不再需要 `apiVersion` 或 `kind` 字段。
 
-除了作为 Pod 所必需的字段之外，Job 中的 Pod 模版必需设置合适的标签
-（参见[Pod 选择算符](#pod-selector)）和合适的重启策略。
+除了作为 Pod 所必需的字段之外，Job 中的 Pod 模板必须设置合适的标签
+（参见 [Pod 选择算符](#pod-selector)）和合适的重启策略。
 
-Job 中 Pod 的 [`RestartPolicy`](/zh/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy)
+Job 中 Pod 的 [`RestartPolicy`](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy)
 只能设置为 `Never` 或 `OnFailure` 之一。
 
 <!--
@@ -219,6 +242,7 @@ There are three main types of task suitable to run as a Job:
 ### Job 的并行执行 {#parallel-jobs}
 
 适合以 Job 形式来运行的任务主要有三种：
+
 <!--
 1. Non-parallel Jobs
    - normally, only one Pod is started, unless the Pod fails.
@@ -238,17 +262,17 @@ There are three main types of task suitable to run as a Job:
 1. 非并行 Job：
    - 通常只启动一个 Pod，除非该 Pod 失败。
    - 当 Pod 成功终止时，立即视 Job 为完成状态。
-1. 具有 *确定完成计数* 的并行 Job：
+1. 具有**确定完成计数**的并行 Job：
    - `.spec.completions` 字段设置为非 0 的正数值。
    - Job 用来代表整个任务，当成功的 Pod 个数达到 `.spec.completions` 时，Job 被视为完成。
    - 当使用 `.spec.completionMode="Indexed"` 时，每个 Pod 都会获得一个不同的
      索引值，介于 0 和 `.spec.completions-1` 之间。
-1. 带 *工作队列* 的并行 Job：
+1. 带**工作队列**的并行 Job：
    - 不设置 `spec.completions`，默认值为 `.spec.parallelism`。
    - 多个 Pod 之间必须相互协调，或者借助外部服务确定每个 Pod 要处理哪个工作条目。
      例如，任一 Pod 都可以从工作队列中取走最多 N 个工作条目。
    - 每个 Pod 都可以独立确定是否其它 Pod 都已完成，进而确定 Job 是否完成。
-   - 当 Job 中 _任何_ Pod 成功终止，不再创建新 Pod。
+   - 当 Job 中**任何** Pod 成功终止，不再创建新 Pod。
    - 一旦至少 1 个 Pod 成功完成，并且所有 Pod 都已终止，即可宣告 Job 成功完成。
    - 一旦任何 Pod 成功退出，任何其它 Pod 都不应再对此任务执行任何操作或生成任何输出。
      所有 Pod 都应启动退出过程。
@@ -265,13 +289,13 @@ a non-negative integer.
 
 For more information about how to make use of the different types of job, see the [job patterns](#job-patterns) section.
 -->
-对于 _非并行_ 的 Job，你可以不设置 `spec.completions` 和 `spec.parallelism`。
+对于**非并行**的 Job，你可以不设置 `spec.completions` 和 `spec.parallelism`。
 这两个属性都不设置时，均取默认值 1。
 
-对于 _确定完成计数_ 类型的 Job，你应该设置 `.spec.completions` 为所需要的完成个数。
+对于**确定完成计数**类型的 Job，你应该设置 `.spec.completions` 为所需要的完成个数。
 你可以设置 `.spec.parallelism`，也可以不设置。其默认值为 1。
 
-对于一个 _工作队列_ Job，你不可以设置 `.spec.completions`，但要将`.spec.parallelism`
+对于一个**工作队列** Job，你不可以设置 `.spec.completions`，但要将`.spec.parallelism`
 设置为一个非负整数。
 
 关于如何利用不同类型的 Job 的更多信息，请参见 [Job 模式](#job-patterns)一节。
@@ -292,26 +316,26 @@ parallelism, for a variety of reasons:
 如果未设置，则默认为 1。
 如果设置为 0，则 Job 相当于启动之后便被暂停，直到此值被增加。
 
-实际并行性（在任意时刻运行状态的 Pods 个数）可能比并行性请求略大或略小，
+实际并行性（在任意时刻运行状态的 Pod 个数）可能比并行性请求略大或略小，
 原因如下：
 
 <!--
 - For _fixed completion count_ Jobs, the actual number of pods running in parallel will not exceed the number of
   remaining completions.   Higher values of `.spec.parallelism` are effectively ignored.
-- For _work queue_ Jobs, no new Pods are started after any Pod has succeeded - remaining Pods are allowed to complete, however.
+- For _work queue_ Jobs, no new Pods are started after any Pod has succeeded -- remaining Pods are allowed to complete, however.
 - If the Job {{< glossary_tooltip term_id="controller" >}} has not had time to react.
 - If the Job controller failed to create Pods for any reason (lack of `ResourceQuota`, lack of permission, etc.),
   then there may be fewer pods than requested.
 - The Job controller may throttle new Pod creation due to excessive previous pod failures in the same Job.
 - When a Pod is gracefully shut down, it takes time to stop.
 -->
-- 对于 _确定完成计数_ Job，实际上并行执行的 Pods 个数不会超出剩余的完成数。
+- 对于**确定完成计数** Job，实际上并行执行的 Pod 个数不会超出剩余的完成数。
   如果 `.spec.parallelism` 值较高，会被忽略。
-- 对于 _工作队列_ Job，有任何 Job 成功结束之后，不会有新的 Pod 启动。
-  不过，剩下的 Pods 允许执行完毕。
+- 对于**工作队列** Job，有任何 Job 成功结束之后，不会有新的 Pod 启动。
+  不过，剩下的 Pod 允许执行完毕。
 - 如果 Job {{< glossary_tooltip text="控制器" term_id="controller" >}} 没有来得及作出响应，或者
-- 如果 Job 控制器因为任何原因（例如，缺少 `ResourceQuota` 或者没有权限）无法创建 Pods。
-  Pods 个数可能比请求的数目小。
+- 如果 Job 控制器因为任何原因（例如，缺少 `ResourceQuota` 或者没有权限）无法创建 Pod。
+  Pod 个数可能比请求的数目小。
 - Job 控制器可能会因为之前同一 Job 中 Pod 失效次数过多而压制新 Pod 的创建。
 - 当 Pod 处于体面终止进程中，需要一定时间才能停止。
 
@@ -320,28 +344,13 @@ parallelism, for a variety of reasons:
 -->
 ### 完成模式   {#completion-mode}
 
-{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
-
-{{< note >}}
-<!--
-To be able to create Indexed Jobs, make sure to enable the `IndexedJob`
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
-on the [API server](/docs/reference/command-line-tools-reference/kube-apiserver/)
-and the [controller manager](/docs/reference/command-line-tools-reference/kube-controller-manager/).
--->
-若想创建带索引的 Job（Indexed Job），请确保
-[API 服务器](/zh/docs/reference/command-line-tools-reference/kube-apiserver/)
-和[控制器管理器](/docs/reference/command-line-tools-reference/kube-controller-manager/)
-上的
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
-`IndexedJob` 被启用。
-{{< /note >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 <!--
 Jobs with _fixed completion count_ - that is, jobs that have non null
 `.spec.completions` - can have a completion mode that is specified in `.spec.completionMode`:
 -->
-带有 *确定完成计数* 的 Job，即 `.spec.completions` 不为 null 的 Job，
+带有**确定完成计数**的 Job，即 `.spec.completions` 不为 null 的 Job，
 都可以在其 `.spec.completionMode` 中设置完成模式：
 
 <!--
@@ -350,21 +359,34 @@ Jobs with _fixed completion count_ - that is, jobs that have non null
   completion is homologous to each other. Note that Jobs that have null
   `.spec.completions` are implicitly `NonIndexed`.
 - `Indexed`: the Pods of a Job get an associated completion index from 0 to
-  `.spec.completions-1`, available in the annotation `batch.kubernetes.io/job-completion-index`.
+  `.spec.completions-1`. The index is available through three mechanisms:
+  - The Pod annotation `batch.kubernetes.io/job-completion-index`.
+  - As part of the Pod hostname, following the pattern `$(job-name)-$(index)`.
+    When you use an Indexed Job in combination with a
+    {{< glossary_tooltip term_id="Service" >}}, Pods within the Job can use
+    the deterministic hostnames to address each other via DNS.
+  - From the containarized task, in the environment variable `JOB_COMPLETION_INDEX`.
+
   The Job is considered complete when there is one successfully completed Pod
   for each index. For more information about how to use this mode, see
   [Indexed Job for Parallel Processing with Static Work Assignment](/docs/tasks/job/indexed-parallel-processing-static/).
   Note that, although rare, more than one Pod could be started for the same
   index, but only one of them will count towards the completion count.
 -->
-- `NonIndexed` （默认值）：当成功完成的 Pod 个数达到 `.spec.completions` 所
+- `NonIndexed`（默认值）：当成功完成的 Pod 个数达到 `.spec.completions` 所
   设值时认为 Job 已经完成。换言之，每个 Job 完成事件都是独立无关且同质的。
   要注意的是，当 `.spec.completions` 取值为 null 时，Job 被隐式处理为 `NonIndexed`。
-- `Indexed`：Job 的 Pod 会获得对应的完成索引，取值为 0 到 `.spec.completions-1`，
-  存放在注解 `batch.kubernetes.io/job-completion-index` 中。
+- `Indexed`：Job 的 Pod 会获得对应的完成索引，取值为 0 到 `.spec.completions-1`。
+  该索引可以通过三种方式获取：
+  - Pod 注解 `batch.kubernetes.io/job-completion-index`。
+  - 作为 Pod 主机名的一部分，遵循模式 `$(job-name)-$(index)`。
+    当你同时使用带索引的 Job（Indexed Job）与 {{< glossary_tooltip term_id="Service" >}}，
+    Job 中的 Pod 可以通过 DNS 使用确切的主机名互相寻址。
+  - 对于容器化的任务，在环境变量 `JOB_COMPLETION_INDEX` 中。
+
   当每个索引都对应一个完成完成的 Pod 时，Job 被认为是已完成的。
   关于如何使用这种模式的更多信息，可参阅
-  [用带索引的 Job 执行基于静态任务分配的并行处理](/zh/docs/tasks/job/indexed-parallel-processing-static/)。
+  [用带索引的 Job 执行基于静态任务分配的并行处理](/zh-cn/docs/tasks/job/indexed-parallel-processing-static/)。
   需要注意的是，对同一索引值可能被启动的 Pod 不止一个，尽管这种情况很少发生。
   这时，只有一个会被记入完成计数中。
 
@@ -379,7 +401,7 @@ restarted locally, or else specify `.spec.template.spec.restartPolicy = "Never"`
 See [pod lifecycle](/docs/concepts/workloads/pods/pod-lifecycle/#example-states) for more information on `restartPolicy`.
 -->
 
-## 处理 Pod 和容器失效
+## 处理 Pod 和容器失效    {#handling-pod-and-container-failures}
 
 Pod 中的容器可能因为多种不同原因失效，例如因为其中的进程退出时返回值非零，
 或者容器因为超出内存约束而被杀死等等。
@@ -388,7 +410,7 @@ Pod 则继续留在当前节点，但容器会被重新运行。
 因此，你的程序需要能够处理在本地被重启的情况，或者要设置
 `.spec.template.spec.restartPolicy = "Never"`。
 关于 `restartPolicy` 的更多信息，可参阅
-[Pod 生命周期](/zh/docs/concepts/workloads/pods/pod-lifecycle/#example-states)。
+[Pod 生命周期](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#example-states)。
 
 <!--
 An entire Pod can also fail, for a number of reasons, such as when the pod is kicked off the node
@@ -428,52 +450,71 @@ due to a logical error in configuration etc.
 To do so, set `.spec.backoffLimit` to specify the number of retries before
 considering a Job as failed. The back-off limit is set by default to 6. Failed
 Pods associated with the Job are recreated by the Job controller with an
-exponential back-off delay (10s, 20s, 40s ...) capped at six minutes. The
-back-off count is reset when a Job's Pod is deleted or successful without any
-other Pods for the Job failing around that time.
--->
-### Pod 回退失效策略
+exponential back-off delay (10s, 20s, 40s ...) capped at six minutes. 
 
-在有些情形下，你可能希望 Job 在经历若干次重试之后直接进入失败状态，因为这很
-可能意味着遇到了配置错误。
+The number of retries is calculated in two ways:
+- The number of Pods with `.status.phase = "Failed"`.
+- When using `restartPolicy = "OnFailure"`, the number of retries in all the
+  containers of Pods with `.status.phase` equal to `Pending` or `Running`.
+
+If either of the calculations reaches the `.spec.backoffLimit`, the Job is
+considered failed.
+
+When the [`JobTrackingWithFinalizers`](#job-tracking-with-finalizers) feature is
+disabled, the number of failed Pods is only based on Pods that are still present
+in the API.
+-->
+### Pod 回退失效策略    {#pod-backoff-failure-policy}
+
+在有些情形下，你可能希望 Job 在经历若干次重试之后直接进入失败状态，
+因为这很可能意味着遇到了配置错误。
 为了实现这点，可以将 `.spec.backoffLimit` 设置为视 Job 为失败之前的重试次数。
 失效回退的限制值默认为 6。
 与 Job 相关的失效的 Pod 会被 Job 控制器重建，回退重试时间将会按指数增长
 （从 10 秒、20 秒到 40 秒）最多至 6 分钟。
-当 Job 的 Pod 被删除时，或者 Pod 成功时没有其它 Pod 处于失败状态，失效回退的次数也会被重置（为 0）。
 
+计算重试次数有以下两种方法：
+- 计算 `.status.phase = "Failed"` 的 Pod 数量。
+- 当 Pod 的 `restartPolicy = "OnFailure"` 时，针对 `.status.phase` 等于 `Pending` 或
+  `Running` 的 Pod，计算其中所有容器的重试次数。
+
+如果两种方式其中一个的值达到 `.spec.backoffLimit`，则 Job 被判定为失败。
+
+当 [`JobTrackingWithFinalizers`](#job-tracking-with-finalizers) 特性被禁用时，
+失败的 Pod 数目仅基于 API 中仍然存在的 Pod。
+
+{{< note >}}
 <!--
-If your job has `restartPolicy = "OnFailure"`, keep in mind that your container running the Job
+If your job has `restartPolicy = "OnFailure"`, keep in mind that your Pod running the Job
 will be terminated once the job backoff limit has been reached. This can make debugging the Job's executable more difficult. We suggest setting
 `restartPolicy = "Never"` when debugging the Job or using a logging system to ensure output
 from failed Jobs is not lost inadvertently.
 -->
-{{< note >}}
-如果你的 Job 的 `restartPolicy` 被设置为 "OnFailure"，就要注意运行该 Job 的容器
+如果你的 Job 的 `restartPolicy` 被设置为 "OnFailure"，就要注意运行该 Job 的 Pod
 会在 Job 到达失效回退次数上限时自动被终止。
 这会使得调试 Job 中可执行文件的工作变得非常棘手。
 我们建议在调试 Job 时将 `restartPolicy` 设置为 "Never"，
-或者使用日志系统来确保失效 Jobs 的输出不会意外遗失。
+或者使用日志系统来确保失效 Job 的输出不会意外遗失。
 {{< /note >}}
 
 <!--
 ## Job termination and cleanup
 
-When a Job completes, no more Pods are created, but the Pods are not deleted either.  Keeping them around
+When a Job completes, no more Pods are created, but the Pods are [usually](#pod-backoff-failure-policy) not deleted either.
+Keeping them around
 allows you to still view the logs of completed pods to check for errors, warnings, or other diagnostic output.
 The job object also remains after it is completed so that you can view its status.  It is up to the user to delete
 old jobs after noting their status.  Delete the job with `kubectl` (e.g. `kubectl delete jobs/pi` or `kubectl delete -f ./job.yaml`). When you delete the job using `kubectl`, all the pods it created are deleted too.
 -->
-## Job 终止与清理
+## Job 终止与清理    {#clean-up-finished-jobs-automatically}
 
-Job 完成时不会再创建新的 Pod，不过已有的 Pod 也不会被删除。
-保留这些 Pod 使得你可以查看已完成的 Pod 的日志输出，以便检查错误、警告
-或者其它诊断性输出。
+Job 完成时不会再创建新的 Pod，不过已有的 Pod [通常](#pod-backoff-failure-policy)也不会被删除。
+保留这些 Pod 使得你可以查看已完成的 Pod 的日志输出，以便检查错误、警告或者其它诊断性输出。
 Job 完成时 Job 对象也一样被保留下来，这样你就可以查看它的状态。
 在查看了 Job 状态之后删除老的 Job 的操作留给了用户自己。
 你可以使用 `kubectl` 来删除 Job（例如，`kubectl delete jobs/pi`
 或者 `kubectl delete -f ./job.yaml`）。
-当使用 `kubectl` 来删除 Job 时，该 Job 所创建的 Pods 也会被删除。
+当使用 `kubectl` 来删除 Job 时，该 Job 所创建的 Pod 也会被删除。
 
 <!--
 By default, a Job will run uninterrupted unless a Pod fails (`restartPolicy=Never`) or a Container exits in error (`restartPolicy=OnFailure`), at which point the Job defers to the
@@ -488,14 +529,13 @@ Once a Job reaches `activeDeadlineSeconds`, all of its running Pods are terminat
 或者某个容器出错退出（`restartPolicy=OnFailure`）。
 这时，Job 基于前述的 `spec.backoffLimit` 来决定是否以及如何重试。
 一旦重试次数到达 `.spec.backoffLimit` 所设的上限，Job 会被标记为失败，
-其中运行的 Pods 都会被终止。
+其中运行的 Pod 都会被终止。
 
 终止 Job 的另一种方式是设置一个活跃期限。
 你可以为 Job 的 `.spec.activeDeadlineSeconds` 设置一个秒数值。
 该值适用于 Job 的整个生命期，无论 Job 创建了多少个 Pod。
-一旦 Job 运行时间达到 `activeDeadlineSeconds` 秒，其所有运行中的 Pod
-都会被终止，并且 Job 的状态更新为 `type: Failed`
-及 `reason: DeadlineExceeded`。
+一旦 Job 运行时间达到 `activeDeadlineSeconds` 秒，其所有运行中的 Pod 都会被终止，
+并且 Job 的状态更新为 `type: Failed` 及 `reason: DeadlineExceeded`。
 
 <!--
 Note that a Job's `.spec.activeDeadlineSeconds` takes precedence over its `.spec.backoffLimit`. Therefore, a Job that is retrying one or more failed Pods will not deploy additional Pods once it reaches the time limit specified by `activeDeadlineSeconds`, even if the `backoffLimit` is not yet reached.
@@ -504,8 +544,8 @@ Example:
 -->
 注意 Job 的 `.spec.activeDeadlineSeconds` 优先级高于其 `.spec.backoffLimit` 设置。
 因此，如果一个 Job 正在重试一个或多个失效的 Pod，该 Job 一旦到达
-`activeDeadlineSeconds` 所设的时限即不再部署额外的 Pod，即使其重试次数还未
-达到 `backoffLimit` 所设的限制。
+`activeDeadlineSeconds` 所设的时限即不再部署额外的 Pod，
+即使其重试次数还未达到 `backoffLimit` 所设的限制。
 
 例如：
 
@@ -521,7 +561,7 @@ spec:
     spec:
       containers:
       - name: pi
-        image: perl
+        image: perl:5.34.0
         command: ["perl",  "-Mbignum=bpi", "-wle", "print bpi(2000)"]
       restartPolicy: Never
 ```
@@ -532,14 +572,14 @@ Keep in mind that the `restartPolicy` applies to the Pod, and not to the Job its
 That is, the Job termination mechanisms activated with `.spec.activeDeadlineSeconds` and `.spec.backoffLimit` result in a permanent Job failure that requires manual intervention to resolve.
 -->
 注意 Job 规约和 Job 中的
-[Pod 模版规约](/zh/docs/concepts/workloads/pods/init-containers/#detailed-behavior)
+[Pod 模板规约](/zh-cn/docs/concepts/workloads/pods/init-containers/#detailed-behavior)
 都有 `activeDeadlineSeconds` 字段。
 请确保你在合适的层次设置正确的字段。
 
 还要注意的是，`restartPolicy` 对应的是 Pod，而不是 Job 本身：
 一旦 Job 状态变为 `type: Failed`，就不会再发生 Job 重启的动作。
-换言之，由 `.spec.activeDeadlineSeconds` 和 `.spec.backoffLimit` 所触发的 Job 终结机制
-都会导致 Job 永久性的失败，而这类状态都需要手工干预才能解决。
+换言之，由 `.spec.activeDeadlineSeconds` 和 `.spec.backoffLimit` 所触发的 Job
+终结机制都会导致 Job 永久性的失败，而这类状态都需要手工干预才能解决。
 
 <!--
 ## Clean up finished jobs automatically
@@ -554,15 +594,14 @@ cleaned up by CronJobs based on the specified capacity-based cleanup policy.
 -->
 ## 自动清理完成的 Job   {#clean-up-finished-jobs-automatically}
 
-完成的 Job 通常不需要留存在系统中。在系统中一直保留它们会给 API
-服务器带来额外的压力。
+完成的 Job 通常不需要留存在系统中。在系统中一直保留它们会给 API 服务器带来额外的压力。
 如果 Job 由某种更高级别的控制器来管理，例如
-[CronJobs](/zh/docs/concepts/workloads/controllers/cron-jobs/)，
+[CronJob](/zh-cn/docs/concepts/workloads/controllers/cron-jobs/)，
 则 Job 可以被 CronJob 基于特定的根据容量裁定的清理策略清理掉。
 
 ### 已完成 Job 的 TTL 机制  {#ttl-mechanisms-for-finished-jobs}
 
-{{< feature-state for_k8s_version="v1.12" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
 
 <!--
 Another way to clean up finished Jobs (either `Complete` or `Failed`)
@@ -579,10 +618,8 @@ be honored.
 For example:
 -->
 自动清理已完成 Job （状态为 `Complete` 或 `Failed`）的另一种方式是使用由
-[TTL 控制器](/zh/docs/concepts/workloads/controllers/ttlafterfinished/)所提供
-的 TTL 机制。
-通过设置 Job 的 `.spec.ttlSecondsAfterFinished` 字段，可以让该控制器清理掉
-已结束的资源。
+[TTL 控制器](/zh-cn/docs/concepts/workloads/controllers/ttlafterfinished/)所提供的 TTL 机制。
+通过设置 Job 的 `.spec.ttlSecondsAfterFinished` 字段，可以让该控制器清理掉已结束的资源。
 
 TTL 控制器清理 Job 时，会级联式地删除 Job 对象。
 换言之，它会删除所有依赖的对象，包括 Pod 及 Job 本身。
@@ -601,7 +638,7 @@ spec:
     spec:
       containers:
       - name: pi
-        image: perl
+        image: perl:5.34.0
         command: ["perl",  "-Mbignum=bpi", "-wle", "print bpi(2000)"]
       restartPolicy: Never
 ```
@@ -613,21 +650,12 @@ seconds after it finishes.
 If the field is set to `0`, the Job will be eligible to be automatically deleted
 immediately after it finishes. If the field is unset, this Job won't be cleaned
 up by the TTL controller after it finishes.
-
-Note that this TTL mechanism is alpha, with feature gate `TTLAfterFinished`. For
-more information, see the documentation for
-[TTL controller](/docs/concepts/workloads/controllers/ttlafterfinished/) for
-finished resources.
 -->
 Job `pi-with-ttl` 在结束 100 秒之后，可以成为被自动删除的对象。
 
 如果该字段设置为 `0`，Job 在结束之后立即成为可被自动删除的对象。
 如果该字段没有设置，Job 不会在结束之后被 TTL 控制器自动清除。
 
-注意这种 TTL 机制仍然是一种 Alpha 状态的功能特性，需要配合 `TTLAfterFinished`
-特性门控使用。有关详细信息，可参考
-[TTL 控制器](/zh/docs/concepts/workloads/controllers/ttlafterfinished/)的文档。
-
 <!--
 ## Job patterns
 
@@ -641,7 +669,7 @@ NoSQL database to scan, and so on.
 
 Job 对象可以用来支持多个 Pod 的可靠的并发执行。
 Job 对象不是设计用来支持相互通信的并行进程的，后者一般在科学计算中应用较多。
-Job 的确能够支持对一组相互独立而又有所关联的 *工作条目* 的并行处理。
+Job 的确能够支持对一组相互独立而又有所关联的**工作条目**的并行处理。
 这类工作条目可能是要发送的电子邮件、要渲染的视频帧、要编解码的文件、NoSQL
 数据库中要扫描的主键范围等等。
 
@@ -652,8 +680,8 @@ considering one set of work items that the user wants to manage together &mdash;
 There are several different patterns for parallel computation, each with strengths and weaknesses.
 The tradeoffs are:
 -->
-在一个复杂系统中，可能存在多个不同的工作条目集合。这里我们仅考虑用户希望一起管理的
-工作条目集合之一 &mdash; *批处理作业*。
+在一个复杂系统中，可能存在多个不同的工作条目集合。
+这里我们仅考虑用户希望一起管理的工作条目集合之一：**批处理作业**。
 
 并行计算的模式有好多种，每种都有自己的强项和弱点。这里要权衡的因素有：
 
@@ -674,23 +702,23 @@ The tradeoffs are:
 - 创建与工作条目相等的 Pod 或者令每个 Pod 可以处理多个工作条目。
   前者通常不需要对现有代码和容器做较大改动；
   后者则更适合工作条目数量较大的场合，原因同上。
-- 有几种技术都会用到工作队列。这意味着需要运行一个队列服务，并修改现有程序或容器
-  使之能够利用该工作队列。
+- 有几种技术都会用到工作队列。这意味着需要运行一个队列服务，
+  并修改现有程序或容器使之能够利用该工作队列。
   与之比较，其他方案在修改现有容器化应用以适应需求方面可能更容易一些。
 
 <!--
 The tradeoffs are summarized here, with columns 2 to 4 corresponding to the above tradeoffs.
 The pattern names are also links to examples and more detailed description.
 -->
-下面是对这些权衡的汇总，列 2 到 4 对应上面的权衡比较。
+下面是对这些权衡的汇总，第 2 到 4 列对应上面的权衡比较。
 模式的名称对应了相关示例和更详细描述的链接。
 
-| 模式  | 单个 Job 对象 | Pods 数少于工作条目数？ | 直接使用应用无需修改? |
+| 模式  | 单个 Job 对象 | Pod 数少于工作条目数？ | 直接使用应用无需修改? |
 | ----- |:-------------:|:-----------------------:|:---------------------:|
-| [每工作条目一 Pod 的队列](/zh/docs/tasks/job/coarse-parallel-processing-work-queue/) | ✓ | | 有时 |
-| [Pod 数量可变的队列](/zh/docs/tasks/job/fine-parallel-processing-work-queue/) | ✓ | ✓ |  |
-| [静态任务分派的带索引的 Job](/zh/docs/tasks/job/indexed-parallel-processing-static) | ✓ |  | ✓ |
-| [Job 模版扩展](/zh/docs/tasks/job/parallel-processing-expansion/)  |  |  | ✓ |
+| [每工作条目一 Pod 的队列](/zh-cn/docs/tasks/job/coarse-parallel-processing-work-queue/) | ✓ | | 有时 |
+| [Pod 数量可变的队列](/zh-cn/docs/tasks/job/fine-parallel-processing-work-queue/) | ✓ | ✓ |  |
+| [静态任务分派的带索引的 Job](/zh-cn/docs/tasks/job/indexed-parallel-processing-static) | ✓ |  | ✓ |
+| [Job 模板扩展](/zh-cn/docs/tasks/job/parallel-processing-expansion/)  |  |  | ✓ |
 
 <!--
 When you specify completions with `.spec.completions`, each Pod created by the Job controller
@@ -704,8 +732,8 @@ Here, `W` is the number of work items.
 -->
 当你使用 `.spec.completions` 来设置完成数时，Job 控制器所创建的每个 Pod
 使用完全相同的 [`spec`](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status)。
-这意味着任务的所有 Pod 都有相同的命令行，都使用相同的镜像和数据卷，甚至连
-环境变量都（几乎）相同。
+这意味着任务的所有 Pod 都有相同的命令行，都使用相同的镜像和数据卷，
+甚至连环境变量都（几乎）相同。
 这些模式是让每个 Pod 执行不同工作的几种不同形式。
 
 下表显示的是每种模式下 `.spec.parallelism` 和 `.spec.completions` 所需要的设置。
@@ -713,10 +741,10 @@ Here, `W` is the number of work items.
 
 | 模式  | `.spec.completions` |  `.spec.parallelism` |
 | ----- |:-------------------:|:--------------------:|
-| [每工作条目一 Pod 的队列](/zh/docs/tasks/job/coarse-parallel-processing-work-queue/) | W | 任意值 |
-| [Pod 个数可变的队列](/zh/docs/tasks/job/fine-parallel-processing-work-queue/) | 1 | 任意值 |
-| [静态任务分派的带索引的 Job](/zh/docs/tasks/job/indexed-parallel-processing-static) | W |  | 任意值 |
-| [Job 模版扩展](/zh/docs/tasks/job/parallel-processing-expansion/) | 1 | 应该为 1 |
+| [每工作条目一 Pod 的队列](/zh-cn/docs/tasks/job/coarse-parallel-processing-work-queue/) | W | 任意值 |
+| [Pod 个数可变的队列](/zh-cn/docs/tasks/job/fine-parallel-processing-work-queue/) | 1 | 任意值 |
+| [静态任务分派的带索引的 Job](/zh-cn/docs/tasks/job/indexed-parallel-processing-static) | W |  | 任意值 |
+| [Job 模板扩展](/zh-cn/docs/tasks/job/parallel-processing-expansion/) | 1 | 应该为 1 |
 
 <!--
 ## Advanced usage
@@ -727,38 +755,27 @@ Here, `W` is the number of work items.
 
 ### 挂起 Job   {#suspending-a-job}
 
-{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
-
-{{< note >}}
-<!--
-Suspending Jobs is available in Kubernetes versions 1.21 and above. You must
-enable the `SuspendJob` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
-on the [API server](/docs/reference/command-line-tools-reference/kube-apiserver/)
-and the [controller manager](/docs/reference/command-line-tools-reference/kube-controller-manager/)
-in order to use this feature.
--->
-在 Kubernetes 1.21 及更高版本中可以执行挂起（Suspending）Job 的操作。
-你必须在
-[API 服务器](/zh/docs/reference/command-line-tools-reference/kube-apiserver/)
-和[控制器管理器](/zh/docs/reference/command-line-tools-reference/kube-controller-manager/)
-上启用 `SuspendJob` 这一
-[特性门控](/docs/reference/command-line-tools-reference/feature-gates/)
-才能执行此操作，
-{{< /note >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 <!--
 When a Job is created, the Job controller will immediately begin creating Pods
 to satisfy the Job's requirements and will continue to do so until the Job is
 complete. However, you may want to temporarily suspend a Job's execution and
-resume it later. To suspend a Job, you can update the `.spec.suspend` field of
+resume it later, or start Jobs in suspended state and have a custom controller
+decide later when to start them.
+-->
+Job 被创建时，Job 控制器会马上开始执行 Pod 创建操作以满足 Job 的需求，
+并持续执行此操作直到 Job 完成为止。
+不过你可能想要暂时挂起 Job 执行，或启动处于挂起状态的 Job，
+并拥有一个自定义控制器以后再决定什么时候开始。
+
+<!--
+To suspend a Job, you can update the `.spec.suspend` field of
 the Job to true; later, when you want to resume it again, update it to false.
 Creating a Job with `.spec.suspend` set to true will create it in the suspended
 state.
 -->
-Job 被创建时，Job 控制器会马上开始执行 Pod 创建操作以满足 Job 的需求，
-并持续执行此操作直到 Job 完成为止。
-不过你可能想要暂时挂起 Job 执行，之后再恢复其执行。
-要挂起一个 Job，你可以将 Job 的 `.spec.suspend` 字段更新为 true。
+要挂起一个 Job，你可以更新 `.spec.suspend` 字段为 true，
 之后，当你希望恢复其执行时，将其更新为 false。
 创建一个 `.spec.suspend` 被设置为 true 的 Job 本质上会将其创建为被挂起状态。
 
@@ -767,20 +784,19 @@ When a Job is resumed from suspension, its `.status.startTime` field will be
 reset to the current time. This means that the `.spec.activeDeadlineSeconds`
 timer will be stopped and reset when a Job is suspended and resumed.
 -->
-当 Job 被从挂起状态恢复执行时，其 `.status.startTime` 字段会被重置为
-当前的时间。这意味着 `.spec.activeDeadlineSeconds` 计时器会在 Job 挂起时
-被停止，并在 Job 恢复执行时复位。
+当 Job 被从挂起状态恢复执行时，其 `.status.startTime` 字段会被重置为当前的时间。
+这意味着 `.spec.activeDeadlineSeconds` 计时器会在 Job 挂起时被停止，
+并在 Job 恢复执行时复位。
 
 <!--
-Remember that suspending a Job will delete all active Pods. When the Job is
-suspended, your [Pods will be terminated](/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)
+When you suspend a Job, any running Pods that don't have a status of `Completed` will be [terminated](/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination).
 with a SIGTERM signal. The Pod's graceful termination period will be honored and
 your Pod must handle this signal in this period. This may involve saving
 progress for later or undoing changes. Pods terminated this way will not count
 towards the Job's `completions` count.
 -->
-要记住的是，挂起 Job 会删除其所有活跃的 Pod。当 Job 被挂起时，你的 Pod 会
-收到 SIGTERM 信号而被[终止](/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)。
+当你挂起一个 Job 时，所有正在运行且状态不是 `Completed` 的 Pod
+将被[终止](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)。
 Pod 的体面终止期限会被考虑，不过 Pod 自身也必须在此期限之内处理完信号。
 处理逻辑可能包括保存进度以便将来恢复，或者取消已经做出的变更等等。
 Pod 以这种形式终止时，不会被记入 Job 的 `completions` 计数。
@@ -808,6 +824,28 @@ spec:
       ...
 ```
 
+<!--
+You can also toggle Job suspension by patching the Job using the command line.
+
+Suspend an active Job:
+-->
+你也可以使用命令行为 Job 打补丁来切换 Job 的挂起状态。
+
+挂起一个活跃的 Job：
+
+```shell
+kubectl patch job/myjob --type=strategic --patch '{"spec":{"suspend":true}}'
+```
+
+<!--
+Resume a suspended Job:
+-->
+恢复一个挂起的 Job：
+
+```shell
+kubectl patch job/myjob --type=strategic --patch '{"spec":{"suspend":false}}'
+```
+
 <!--
 The Job's status can be used to determine if a Job is suspended or has been
 suspended in the past:
@@ -818,10 +856,10 @@ Job 的 `status` 可以用来确定 Job 是否被挂起，或者曾经被挂起
 kubectl get jobs/myjob -o yaml
 ```
 
-```json
+```yaml
 apiVersion: batch/v1
 kind: Job
-# .metadata and .spec omitted
+# .metadata 和 .spec 已省略
 status:
   conditions:
   - lastProbeTime: "2021-02-05T13:14:33Z"
@@ -840,11 +878,10 @@ exist in the Job's status, the Job has never been stopped.
 
 Events are also created when the Job is suspended and resumed:
 -->
-Job 的 "Suspended" 类型的状况在状态值为 "True" 时意味着 Job 正被
-挂起；`lastTransitionTime` 字段可被用来确定 Job 被挂起的时长。
+Job 的 "Suspended" 类型的状况在状态值为 "True" 时意味着 Job 正被挂起；
+`lastTransitionTime` 字段可被用来确定 Job 被挂起的时长。
 如果此状况字段的取值为 "False"，则 Job 之前被挂起且现在在运行。
-如果 "Suspended" 状况在 `status` 字段中不存在，则意味着 Job 从未
-被停止执行。
+如果 "Suspended" 状况在 `status` 字段中不存在，则意味着 Job 从未被停止执行。
 
 当 Job 被挂起和恢复执行时，也会生成事件：
 
@@ -871,12 +908,65 @@ directly a result of toggling the `.spec.suspend` field. In the time between
 these two events, we see that no Pods were created, but Pod creation restarted
 as soon as the Job was resumed.
 -->
-最后四个四件，特别是 "Suspended" 和 "Resumed" 事件，都是因为 `.spec.suspend`
+最后四个事件，特别是 "Suspended" 和 "Resumed" 事件，都是因为 `.spec.suspend`
 字段值被改来改去造成的。在这两个事件之间，我们看到没有 Pod 被创建，不过当
 Job 被恢复执行时，Pod 创建操作立即被重启执行。
 
 <!--
-### Specifying your own Pod selector {#specifying-your-own-pod-selector}
+### Mutable Scheduling Directives
+-->
+### 可变调度指令 {#mutable-scheduling-directives}
+
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
+
+{{< note >}}
+<!--
+In order to use this behavior, you must enable the `JobMutableNodeSchedulingDirectives`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+on the [API server](/docs/reference/command-line-tools-reference/kube-apiserver/).
+It is enabled by default.
+-->
+为了使用此功能，你必须在 [API 服务器](/zh-cn/docs/reference/command-line-tools-reference/kube-apiserver/)上启用
+`JobMutableNodeSchedulingDirectives` [特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)。
+默认情况下启用。
+{{< /note >}}
+
+<!--
+In most cases a parallel job will want the pods to run with constraints, 
+like all in the same zone, or all either on GPU model x or y but not a mix of both.
+-->
+在大多数情况下，并行作业会希望 Pod 在一定约束条件下运行，
+比如所有的 Pod 都在同一个区域，或者所有的 Pod 都在 GPU 型号 x 或 y 上，而不是两者的混合。
+
+<!--
+The [suspend](#suspending-a-job) field is the first step towards achieving those semantics. Suspend allows a 
+custom queue controller to decide when a job should start; However, once a job is unsuspended,
+a custom queue controller has no influence on where the pods of a job will actually land.
+-->
+[suspend](#suspend-a-job) 字段是实现这些语义的第一步。
+suspend 允许自定义队列控制器，以决定工作何时开始；然而，一旦工作被取消暂停，
+自定义队列控制器对 Job 中 Pod 的实际放置位置没有影响。
+
+<!--
+This feature allows updating a Job's scheduling directives before it starts, which gives custom queue
+controllers the ability to influence pod placement while at the same time offloading actual 
+pod-to-node assignment to kube-scheduler. This is allowed only for suspended Jobs that have never 
+been unsuspended before.
+-->
+此特性允许在 Job 开始之前更新调度指令，从而为定制队列提供影响 Pod
+放置的能力，同时将 Pod 与节点间的分配关系留给 kube-scheduler 决定。
+这一特性仅适用于之前从未被暂停过的、已暂停的 Job。
+控制器能够影响 Pod 放置，同时参考实际 pod-to-node 分配给 kube-scheduler。
+这仅适用于从未暂停的 Job。
+
+<!--
+The fields in a Job's pod template that can be updated are node affinity, node selector, 
+tolerations, labels and annotations.
+-->
+Job 的 Pod 模板中可以更新的字段是节点亲和性、节点选择器、容忍、标签和注解。
+
+<!--
+### Specifying your own Pod selector
 
 Normally, when you create a Job object, you do not specify `.spec.selector`.
 The system defaulting logic adds this field when the Job is created.
@@ -904,9 +994,9 @@ in unpredictable ways too.  Kubernetes will not stop you from making a mistake w
 specifying `.spec.selector`.
 -->
 做这个操作时请务必小心。
-如果你所设定的标签选择算符并不唯一针对 Job 对应的 Pod 集合，甚或该算符还能匹配
-其他无关的 Pod，这些无关的 Job 的 Pod 可能会被删除。
-或者当前 Job 会将另外一些 Pod 当作是完成自身工作的 Pods，
+如果你所设定的标签选择算符并不唯一针对 Job 对应的 Pod 集合，
+甚或该算符还能匹配其他无关的 Pod，这些无关的 Job 的 Pod 可能会被删除。
+或者当前 Job 会将另外一些 Pod 当作是完成自身工作的 Pod，
 又或者两个 Job 之一或者二者同时都拒绝创建 Pod，无法运行至完成状态。
 如果所设置的算符不具有唯一性，其他控制器（如 RC 副本控制器）及其所管理的 Pod
 集合可能会变得行为不可预测。
@@ -920,23 +1010,26 @@ to keep running, but you want the rest of the Pods it creates
 to use a different pod template and for the Job to have a new name.
 You cannot update the Job because these fields are not updatable.
 Therefore, you delete Job `old` but _leave its pods
-running_, using `kubectl delete jobs/old -cascade=false`.
+running_, using `kubectl delete jobs/old --cascade=orphan`.
 Before deleting it, you make a note of what selector it uses:
 -->
 下面是一个示例场景，在这种场景下你可能会使用刚刚讲述的特性。
 
 假定名为 `old` 的 Job 已经处于运行状态。
 你希望已有的 Pod 继续运行，但你希望 Job 接下来要创建的其他 Pod
-使用一个不同的 Pod 模版，甚至希望 Job 的名字也发生变化。
+使用一个不同的 Pod 模板，甚至希望 Job 的名字也发生变化。
 你无法更新现有的 Job，因为这些字段都是不可更新的。
-因此，你会删除 `old` Job，但 _允许该 Job 的 Pod 集合继续运行_。
-这是通过 `kubectl delete jobs/old --cascade=false` 实现的。
+因此，你会删除 `old` Job，但**允许该 Job 的 Pod 集合继续运行**。
+这是通过 `kubectl delete jobs/old --cascade=orphan` 实现的。
 在删除之前，我们先记下该 Job 所使用的选择算符。
 
 ```shell
 kubectl get job old -o yaml
 ```
 
+<!--
+The output is similar to this:
+-->
 输出类似于：
 
 ```yaml
@@ -963,8 +1056,8 @@ the selector that the system normally generates for you automatically.
 由于现有 Pod 都具有标签 `controller-uid=a8f3d00d-c6d2-11e5-9f87-42010af00002`，
 它们也会被名为 `new` 的 Job 所控制。
 
-你需要在新 Job 中设置 `manualSelector: true`，因为你并未使用系统通常自动为你
-生成的选择算符。 
+你需要在新 Job 中设置 `manualSelector: true`，
+因为你并未使用系统通常自动为你生成的选择算符。
 
 ```yaml
 kind: Job
@@ -981,12 +1074,87 @@ spec:
 
 <!--
 The new Job itself will have a different uid from `a8f3d00d-c6d2-11e5-9f87-42010af00002`.  Setting
-`manualSelector: true` tells the system to that you know what you are doing and to allow this
+`manualSelector: true` tells the system that you know what you are doing and to allow this
 mismatch.
 -->
 新的 Job 自身会有一个不同于 `a8f3d00d-c6d2-11e5-9f87-42010af00002` 的唯一 ID。
-设置 `manualSelector: true` 是在告诉系统你知道自己在干什么并要求系统允许这种不匹配
-的存在。
+设置 `manualSelector: true`
+是在告诉系统你知道自己在干什么并要求系统允许这种不匹配的存在。
+
+<!--
+### Job tracking with finalizers
+-->
+### 使用 Finalizer 追踪 Job   {#job-tracking-with-finalizers}
+
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
+
+{{< note >}}
+<!--
+In order to use this behavior, you must enable the `JobTrackingWithFinalizers`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+on the [API server](/docs/reference/command-line-tools-reference/kube-apiserver/)
+and the [controller manager](/docs/reference/command-line-tools-reference/kube-controller-manager/).
+It is enabled by default.
+-->
+要使用该行为，你必须为 [API 服务器](/zh-cn/docs/reference/command-line-tools-reference/kube-apiserver/)
+和[控制器管理器](/zh-cn/docs/reference/command-line-tools-reference/kube-controller-manager/)
+启用 `JobTrackingWithFinalizers`
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)。
+默认是启用的。
+
+<!--
+When enabled, the control plane tracks new Jobs using the behavior described
+below. Jobs created before the feature was enabled are unaffected. As a user,
+the only difference you would see is that the control plane tracking of Job
+completion is more accurate.
+-->
+启用后，控制面基于下述行为追踪新的 Job。在启用该特性之前创建的 Job 不受影响。
+作为用户，你会看到的唯一区别是控制面对 Job 完成情况的跟踪更加准确。
+{{< /note >}}
+
+<!--
+When this feature isn't enabled, the Job {{< glossary_tooltip term_id="controller" >}}
+relies on counting the Pods that exist in the cluster to track the Job status,
+that is, to keep the counters for `succeeded` and `failed` Pods.
+However, Pods can be removed for a number of reasons, including:
+- The garbage collector that removes orphan Pods when a Node goes down.
+- The garbage collector that removes finished Pods (in `Succeeded` or `Failed`
+  phase) after a threshold.
+- Human intervention to delete Pods belonging to a Job.
+- An external controller (not provided as part of Kubernetes) that removes or
+  replaces Pods.
+-->
+该功能未启用时，Job {{< glossary_tooltip term_id="controller" >}} 依靠计算集群中存在的 Pod 来跟踪作业状态。
+也就是说，维持一个统计 `succeeded` 和 `failed` 的 Pod 的计数器。
+然而，Pod 可以因为一些原因被移除，包括：
+- 当一个节点宕机时，垃圾收集器会删除孤立（Orphan）Pod。
+- 垃圾收集器在某个阈值后删除已完成的 Pod（处于 `Succeeded` 或 `Failed` 阶段）。
+- 人工干预删除 Job 的 Pod。
+- 一个外部控制器（不包含于 Kubernetes）来删除或取代 Pod。
+
+<!--
+If you enable the `JobTrackingWithFinalizers` feature for your cluster, the
+control plane keeps track of the Pods that belong to any Job and notices if any
+such Pod is removed from the API server. To do that, the Job controller creates Pods with
+the finalizer `batch.kubernetes.io/job-tracking`. The controller removes the
+finalizer only after the Pod has been accounted for in the Job status, allowing
+the Pod to be removed by other controllers or users.
+
+The Job controller uses the new algorithm for new Jobs only. Jobs created
+before the feature is enabled are unaffected. You can determine if the Job
+controller is tracking a Job using Pod finalizers by checking if the Job has the
+annotation `batch.kubernetes.io/job-tracking`. You should **not** manually add
+or remove this annotation from Jobs.
+-->
+如果你为你的集群启用了 `JobTrackingWithFinalizers` 特性，控制面会跟踪属于任何 Job 的 Pod。
+并注意是否有任何这样的 Pod 被从 API 服务器上删除。
+为了实现这一点，Job 控制器创建的 Pod 带有 Finalizer `batch.kubernetes.io/job-tracking`。
+控制器只有在 Pod 被记入 Job 状态后才会移除 Finalizer，允许 Pod 可以被其他控制器或用户删除。
+
+Job 控制器只对新的 Job 使用新的算法。在启用该特性之前创建的 Job 不受影响。
+你可以根据检查 Job 是否含有 `batch.kubernetes.io/job-tracking` 注解，
+来确定 Job 控制器是否正在使用 Pod Finalizer 追踪 Job。
+你**不**应该给 Job 手动添加或删除该注解。
 
 <!--
 ## Alternatives
@@ -1010,7 +1178,7 @@ Job 会重新创建新的 Pod 来替代已终止的 Pod。
 <!--
 ### Replication Controller
 
-Jobs are complementary to [Replication Controllers](/docs/user-guide/replication-controller).
+Jobs are complementary to [Replication Controllers](/docs/concepts/workloads/controllers/replicationcontroller/).
 A Replication Controller manages Pods which are not expected to terminate (e.g. web servers), and a Job
 manages Pods that are expected to terminate (e.g. batch tasks).
 
@@ -1020,11 +1188,11 @@ for pods with `RestartPolicy` equal to `OnFailure` or `Never`.
 -->
 ### 副本控制器    {#replication-controller}
 
-Job 与[副本控制器](/zh/docs/concepts/workloads/controllers/replicationcontroller/)是彼此互补的。
+Job 与[副本控制器](/zh-cn/docs/concepts/workloads/controllers/replicationcontroller/)是彼此互补的。
 副本控制器管理的是那些不希望被终止的 Pod （例如，Web 服务器），
 Job 管理的是那些希望被终止的 Pod（例如，批处理作业）。
 
-正如在 [Pod 生命期](/zh/docs/concepts/workloads/pods/pod-lifecycle/) 中讨论的，
+正如在 [Pod 生命期](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/) 中讨论的，
 `Job` 仅适合于 `restartPolicy` 设置为 `OnFailure` 或 `Never` 的 Pod。
 注意：如果 `restartPolicy` 未设置，其默认值是 `Always`。
 
@@ -1035,35 +1203,53 @@ Another pattern is for a single Job to create a Pod which then creates other Pod
 of custom controller for those Pods.  This allows the most flexibility, but may be somewhat
 complicated to get started with and offers less integration with Kubernetes.
 -->
-### 单个 Job 启动控制器 Pod
+### 单个 Job 启动控制器 Pod    {#single-job-starts-controller-pod}
 
-另一种模式是用唯一的 Job 来创建 Pod，而该 Pod 负责启动其他 Pod，因此扮演了一种
-后启动 Pod 的控制器的角色。
+另一种模式是用唯一的 Job 来创建 Pod，而该 Pod 负责启动其他 Pod，
+因此扮演了一种后启动 Pod 的控制器的角色。
 这种模式的灵活性更高，但是有时候可能会把事情搞得很复杂，很难入门，
 并且与 Kubernetes 的集成度很低。
 
 <!--
 One example of this pattern would be a Job which starts a Pod which runs a script that in turn
-starts a Spark master controller (see [spark example](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/spark/README.md)), runs a spark
+starts a Spark master controller (see [spark example](https://github.com/kubernetes/examples/tree/master/staging/spark/README.md)), runs a spark
 driver, and then cleans up.
 
 An advantage of this approach is that the overall process gets the completion guarantee of a Job
 object, but maintains complete control over what Pods are created and how work is assigned to them.
 -->
 这种模式的实例之一是用 Job 来启动一个运行脚本的 Pod，脚本负责启动 Spark
-主控制器（参见 [Spark 示例](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/spark/README.md)），
+主控制器（参见 [Spark 示例](https://github.com/kubernetes/examples/tree/master/staging/spark/README.md)），
 运行 Spark 驱动，之后完成清理工作。
 
 这种方法的优点之一是整个过程得到了 Job 对象的完成保障，
 同时维持了对创建哪些 Pod、如何向其分派工作的完全控制能力，
 
+## {{% heading "whatsnext" %}}
+
 <!--
-## Cron Jobs {#cron-jobs}
-
-You can use a [`CronJob`](/docs/concepts/workloads/controllers/cron-jobs/) to create a Job that will run at specified times/dates, similar to the Unix tool `cron`.
+* Learn about [Pods](/docs/concepts/workloads/pods).
+* Read about different ways of running Jobs:
+   * [Coarse Parallel Processing Using a Work Queue](/docs/tasks/job/coarse-parallel-processing-work-queue/)
+   * [Fine Parallel Processing Using a Work Queue](/docs/tasks/job/fine-parallel-processing-work-queue/)
+   * Use an [indexed Job for parallel processing with static work assignment](/docs/tasks/job/indexed-parallel-processing-static/) (beta)
+   * Create multiple Jobs based on a template: [Parallel Processing using Expansions](/docs/tasks/job/parallel-processing-expansion/)
+* Follow the links within [Clean up finished jobs automatically](#clean-up-finished-jobs-automatically)
+  to learn more about how your cluster can clean up completed and / or failed tasks.
+* `Job` is part of the Kubernetes REST API.
+  Read the {{< api-reference page="workload-resources/job-v1" >}}
+  object definition to understand the API for jobs.
+* Read about [`CronJob`](/docs/concepts/workloads/controllers/cron-jobs/), which you
+  can use to define a series of Jobs that will run based on a schedule, similar to
+  the UNIX tool `cron`.
 -->
-## Cron Jobs {#cron-jobs}
-
-你可以使用 [`CronJob`](/zh/docs/concepts/workloads/controllers/cron-jobs/)
-创建一个在指定时间/日期运行的 Job，类似于 UNIX 系统上的 `cron` 工具。
-
+* 了解 [Pod](/zh-cn/docs/concepts/workloads/pods)。
+* 了解运行 Job 的不同的方式：
+  * [使用工作队列进行粗粒度并行处理](/zh-cn/docs/tasks/job/coarse-parallel-processing-work-queue/)
+  * [使用工作队列进行精细的并行处理](/zh-cn/docs/tasks/job/fine-parallel-processing-work-queue/)
+  * [使用索引作业完成静态工作分配下的并行处理](/zh-cn/docs/tasks/job/indexed-parallel-processing-static/)（Beta 阶段）
+  * 基于一个模板运行多个 Job：[使用展开的方式进行并行处理](/zh-cn/docs/tasks/job/parallel-processing-expansion/)
+* 跟随[自动清理完成的 Job](#clean-up-finished-jobs-automatically) 文中的链接，了解你的集群如何清理完成和失败的任务。
+* `Job` 是 Kubernetes REST API 的一部分。阅读 {{< api-reference page="workload-resources/job-v1" >}}
+   对象定义理解关于该资源的 API。
+* 阅读 [`CronJob`](/zh-cn/docs/concepts/workloads/controllers/cron-jobs/)，它允许你定义一系列定期运行的 Job，类似于 UNIX 工具 `cron`。
diff --git a/content/zh/docs/concepts/workloads/controllers/replicaset.md b/content/zh-cn/docs/concepts/workloads/controllers/replicaset.md
similarity index 64%
rename from content/zh/docs/concepts/workloads/controllers/replicaset.md
rename to content/zh-cn/docs/concepts/workloads/controllers/replicaset.md
index 14c86eb956..353baa30ca 100644
--- a/content/zh/docs/concepts/workloads/controllers/replicaset.md
+++ b/content/zh-cn/docs/concepts/workloads/controllers/replicaset.md
@@ -35,53 +35,53 @@ template.
 -->
 ## ReplicaSet 的工作原理 {#how-a-replicaset-works}
 
-RepicaSet 是通过一组字段来定义的，包括一个用来识别可获得的 Pod
+ReplicaSet 是通过一组字段来定义的，包括一个用来识别可获得的 Pod
 的集合的选择算符、一个用来标明应该维护的副本个数的数值、一个用来指定应该创建新 Pod
 以满足副本个数条件时要使用的 Pod 模板等等。
-每个 ReplicaSet 都通过根据需要创建和 删除 Pod 以使得副本个数达到期望值，
+每个 ReplicaSet 都通过根据需要创建和删除 Pod 以使得副本个数达到期望值，
 进而实现其存在价值。当 ReplicaSet 需要创建新的 Pod 时，会使用所提供的 Pod 模板。
 
 <!--
-A ReplicaSet is linked to its Pods via the Pods' [metadata.ownerReferences](/docs/concepts/workloads/controllers/garbage-collection/#owners-and-dependents)
+A ReplicaSet is linked to its Pods via the Pods' [metadata.ownerReferences](/docs/concepts/architecture/garbage-collection/#owners-and-dependents)
 field, which specifies what resource the current object is owned by. All Pods acquired by a ReplicaSet have their owning
 ReplicaSet's identifying information within their ownerReferences field. It's through this link that the ReplicaSet
 knows of the state of the Pods it is maintaining and plans accordingly.
 -->
 ReplicaSet 通过 Pod 上的
-[metadata.ownerReferences](/zh/docs/concepts/workloads/controllers/garbage-collection/#owners-and-dependents)
+[metadata.ownerReferences](/zh-cn/docs/concepts/architecture/garbage-collection/#owners-and-dependents)
 字段连接到附属 Pod，该字段给出当前对象的属主资源。
 ReplicaSet 所获得的 Pod 都在其 ownerReferences 字段中包含了属主 ReplicaSet
 的标识信息。正是通过这一连接，ReplicaSet 知道它所维护的 Pod 集合的状态，
 并据此计划其操作行为。
 
 <!--
-A ReplicaSet identifies new Pods to acquire by using its selector. If there is a Pod that has no OwnerReference or the
-OwnerReference is not a {{< glossary_tooltip term_id="controller" >}} and it matches a ReplicaSet's selector, it will be immediately acquired by said ReplicaSet.
+A ReplicaSet identifies new Pods to acquire by using its selector. If there is a Pod that has no
+OwnerReference or the OwnerReference is not a {{< glossary_tooltip term_id="controller" >}} and it
+matches a ReplicaSet's selector, it will be immediately acquired by said ReplicaSet.
 -->
 ReplicaSet 使用其选择算符来辨识要获得的 Pod 集合。如果某个 Pod 没有
-OwnerReference 或者其 OwnerReference 不是一个 
-{{< glossary_tooltip text="控制器" term_id="controller" >}}，且其匹配到
-某 ReplicaSet 的选择算符，则该 Pod 立即被此 ReplicaSet 获得。
+OwnerReference 或者其 OwnerReference 不是一个{{< glossary_tooltip text="控制器" term_id="controller" >}}，
+且其匹配到某 ReplicaSet 的选择算符，则该 Pod 立即被此 ReplicaSet 获得。
 
 <!--
 ## When to use a ReplicaSet
 
 A ReplicaSet ensures that a specified number of pod replicas are running at any given
 time. However, a Deployment is a higher-level concept that manages ReplicaSets and
-provides declarative updates to pods along with a lot of other useful features.
+provides declarative updates to Pods along with a lot of other useful features.
 Therefore, we recommend using Deployments instead of directly using ReplicaSets, unless
 you require custom update orchestration or don't require updates at all.
 
 This actually means that you may never need to manipulate ReplicaSet objects:
 use a Deployment instead, and define your application in the spec section.
 -->
-## 何时使用 ReplicaSet
+## 何时使用 ReplicaSet    {#when-to-use-a-replicaset}
 
 ReplicaSet 确保任何时间都有指定数量的 Pod 副本在运行。
 然而，Deployment 是一个更高级的概念，它管理 ReplicaSet，并向 Pod
 提供声明式的更新以及许多其他有用的功能。
-因此，我们建议使用 Deployment 而不是直接使用 ReplicaSet，除非
-你需要自定义更新业务流程或根本不需要更新。
+因此，我们建议使用 Deployment 而不是直接使用 ReplicaSet，
+除非你需要自定义更新业务流程或根本不需要更新。
 
 这实际上意味着，你可能永远不需要操作 ReplicaSet 对象：而是使用
 Deployment，并在 spec 部分定义你的应用。
@@ -89,17 +89,16 @@ Deployment，并在 spec 部分定义你的应用。
 <!--
 ## Example
 -->
-## 示例
+## 示例    {#example}
 
 {{< codenew file="controllers/frontend.yaml" >}}
 
 <!--
-Saving this manifest into `frontend.yaml` and submitting it to a Kubernetes cluster should
-create the defined ReplicaSet and the pods that it manages.
+Saving this manifest into `frontend.yaml` and submitting it to a Kubernetes cluster will
+create the defined ReplicaSet and the Pods that it manages.
 -->
 将此清单保存到 `frontend.yaml` 中，并将其提交到 Kubernetes 集群，
-应该就能创建 yaml 文件所定义的 ReplicaSet 及其管理的 Pod。
-
+就能创建 yaml 文件所定义的 ReplicaSet 及其管理的 Pod。
 
 ```shell
 kubectl apply -f https://kubernetes.io/examples/controllers/frontend.yaml
@@ -139,25 +138,25 @@ And you will see output similar to:
 你会看到类似如下的输出：
 
 ```
-Name:		frontend
-Namespace:	default
-Selector:	tier=frontend
-Labels:		app=guestbook
-		tier=frontend
+Name:         frontend
+Namespace:    default
+Selector:     tier=frontend
+Labels:       app=guestbook
+              tier=frontend
 Annotations:  kubectl.kubernetes.io/last-applied-configuration:
                 {"apiVersion":"apps/v1","kind":"ReplicaSet","metadata":{"annotations":{},"labels":{"app":"guestbook","tier":"frontend"},"name":"frontend",...
-Replicas:	3 current / 3 desired
-Pods Status:	3 Running / 0 Waiting / 0 Succeeded / 0 Failed
+Replicas:     3 current / 3 desired
+Pods Status:  3 Running / 0 Waiting / 0 Succeeded / 0 Failed
 Pod Template:
-  Labels:       tier=frontend
+  Labels:  tier=frontend
   Containers:
    php-redis:
-    Image:      gcr.io/google_samples/gb-frontend:v3
+    Image:        gcr.io/google_samples/gb-frontend:v3
     Port:         <none>
     Host Port:    <none>
     Environment:  <none>
-    Mounts:             <none>
-  Volumes:              <none>
+    Mounts:       <none>
+  Volumes:        <none>
 Events:
   Type    Reason            Age   From                   Message
   ----    ------            ----  ----                   -------
@@ -169,7 +168,7 @@ Events:
 <!--
 And lastly you can check for the Pods brought up:
 -->
-最后可以查看启动了的 Pods：
+最后可以查看启动了的 Pod 集合：
 
 ```shell
 kubectl get pods
@@ -191,8 +190,8 @@ frontend-wtsmm   1/1     Running   0          6m36s
 You can also verify that the owner reference of these pods is set to the frontend ReplicaSet.
 To do this, get the yaml of one of the Pods running:
 -->
-你也可以查看 Pods 的属主引用被设置为前端的 ReplicaSet。
-要实现这点，可取回运行中的 Pods 之一的 YAML：
+你也可以查看 Pod 的属主引用被设置为前端的 ReplicaSet。
+要实现这点，可取回运行中的某个 Pod 的 YAML：
 
 ```shell
 kubectl get pods frontend-b2zdv -o yaml
@@ -226,26 +225,19 @@ metadata:
 
 <!--
 ## Non-Template Pod acquisitions
-
-While you can create bare Pods with no problems, it is strongly recommended to make sure that the bare Pods do not have
-labels which match the selector of one of your ReplicaSets. The reason for this is because a ReplicaSet is not limited
-to owning Pods specified by its template - it can acquire other Pods in the manner specified in the previous sections.
 -->
-## 非模板 Pod 的获得
+## 非模板 Pod 的获得    {#non-template-pod-acquisitions}
 
 <!--
-While you can create bare Pods with no problems, it is strongly recommended to
-make sure that the bare Pods do not have labels which match the selector of
-one of your ReplicaSets. The reason for this is because a ReplicaSet is not
-limited to owning Pods specified by its template - it can acquire other Pods
-in the manner specified in the previous sections.
+While you can create bare Pods with no problems, it is strongly recommended to make sure that the bare Pods do not have
+labels which match the selector of one of your ReplicaSets. The reason for this is because a ReplicaSet is not limited
+to owning Pods specified by its template-- it can acquire other Pods in the manner specified in the previous sections.
 
-Take the previous frontend ReplicaSet example, and the Pods specified in the
-following manifest:
+Take the previous frontend ReplicaSet example, and the Pods specified in the following manifest:
 -->
-尽管你完全可以直接创建裸的 Pods，强烈建议你确保这些裸的 Pods 并不包含可能与你
-的某个 ReplicaSet 的选择算符相匹配的标签。原因在于 ReplicaSet 并不仅限于拥有
-在其模板中设置的 Pods，它还可以像前面小节中所描述的那样获得其他 Pods。
+尽管你完全可以直接创建裸的 Pod，强烈建议你确保这些裸的 Pod 并不包含可能与你的某个
+ReplicaSet 的选择算符相匹配的标签。原因在于 ReplicaSet 并不仅限于拥有在其模板中设置的
+Pod，它还可以像前面小节中所描述的那样获得其他 Pod。
 
 {{< codenew file="pods/pod-rs.yaml" >}}
 
@@ -256,11 +248,10 @@ ReplicaSet, they will immediately be acquired by it.
 Suppose you create the Pods after the frontend ReplicaSet has been deployed and has set up its initial Pod replicas to
 fulfill its replica count requirement:
 -->
-由于这些 Pod 没有控制器（Controller，或其他对象）作为其属主引用，并且
-其标签与 frontend ReplicaSet 的选择算符匹配，它们会立即被该 ReplicaSet
-获取。
+由于这些 Pod 没有控制器（Controller，或其他对象）作为其属主引用，
+并且其标签与 frontend ReplicaSet 的选择算符匹配，它们会立即被该 ReplicaSet 获取。
 
-假定你在 frontend ReplicaSet 已经被部署之后创建 Pods，并且你已经在 ReplicaSet
+假定你在 frontend ReplicaSet 已经被部署之后创建 Pod，并且你已经在 ReplicaSet
 中设置了其初始的 Pod 副本数以满足其副本计数需要：
 
 ```shell
@@ -273,10 +264,10 @@ its desired count.
 
 Fetching the Pods:
 -->
-新的 Pods 会被该 ReplicaSet 获取，并立即被 ReplicaSet 终止，因为
-它们的存在会使得 ReplicaSet 中 Pod 个数超出其期望值。
+新的 Pod 会被该 ReplicaSet 获取，并立即被 ReplicaSet 终止，
+因为它们的存在会使得 ReplicaSet 中 Pod 个数超出其期望值。
 
-取回 Pods：
+取回 Pod：
 
 
 ```shell
@@ -286,9 +277,9 @@ kubectl get pods
 <!--
 The output shows that the new Pods are either already terminated, or in the process of being terminated:
 -->
-输出显示新的 Pods 或者已经被终止，或者处于终止过程中：
+输出显示新的 Pod 或者已经被终止，或者处于终止过程中：
 
-```shell
+```
 NAME             READY   STATUS        RESTARTS   AGE
 frontend-b2zdv   1/1     Running       0          10m
 frontend-vcmts   1/1     Running       0          10m
@@ -300,7 +291,7 @@ pod2             0/1     Terminating   0          1s
 <!--
 If you create the Pods first:
 -->
-如果你先行创建 Pods：
+如果你先行创建 Pod：
 
 ```shell
 kubectl apply -f https://kubernetes.io/examples/pods/pod-rs.yaml
@@ -319,9 +310,9 @@ kubectl apply -f https://kubernetes.io/examples/controllers/frontend.yaml
 You shall see that the ReplicaSet has acquired the Pods and has only created new ones according to its spec until the
 number of its new Pods and the original matches its desired count. As fetching the Pods:
 -->
-你会看到 ReplicaSet 已经获得了该 Pods，并仅根据其规约创建新的 Pods，直到
-新的 Pods 和原来的 Pods 的总数达到其预期个数。
-这时取回 Pods：
+你会看到 ReplicaSet 已经获得了该 Pod，并仅根据其规约创建新的 Pod，
+直到新的 Pod 和原来的 Pod 的总数达到其预期个数。
+这时取回 Pod 列表：
 
 ```shell
 kubectl get pods
@@ -339,33 +330,32 @@ pod1             1/1     Running   0          36s
 pod2             1/1     Running   0          36s
 ```
 
-采用这种方式，一个 ReplicaSet 中可以包含异质的 Pods 集合。
+<!--
+In this manner, a ReplicaSet can own a non-homogenous set of Pods
+-->
+采用这种方式，一个 ReplicaSet 中可以包含异质的 Pod 集合。
 
 <!--
-## Writing a ReplicaSet Spec
+## Writing a ReplicaSet manifest
 
 As with all other Kubernetes API objects, a ReplicaSet needs the `apiVersion`, `kind`, and `metadata` fields.
 For ReplicaSets, the `kind` is always a ReplicaSet.
-In Kubernetes 1.9 the API version `apps/v1` on the ReplicaSet kind is the current version and is enabled by default. The API version `apps/v1beta2` is deprecated.
-Refer to the first lines of the `frontend.yaml` example for guidance.
 
 The name of a ReplicaSet object must be a valid
 [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 
-A ReplicaSet also needs a [`.spec` section](https://git.k8s.io/community/contributors/devel/api-conventions.md#spec-and-status).
+A ReplicaSet also needs a [`.spec` section](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status).
 -->
-## 编写 ReplicaSet 的 spec
+## 编写 ReplicaSet 的清单    {#writing-a-replicaset-manifest}
 
 与所有其他 Kubernetes API 对象一样，ReplicaSet 也需要 `apiVersion`、`kind`、和 `metadata` 字段。
-对于 ReplicaSets 而言，其 `kind` 始终是 ReplicaSet。
-在 Kubernetes 1.9 中，ReplicaSet 上的 API 版本 `apps/v1` 是其当前版本，且被
-默认启用。API 版本 `apps/v1beta2` 已被废弃。
-参考 `frontend.yaml` 示例的第一行。
+对于 ReplicaSet 而言，其 `kind` 始终是 ReplicaSet。
 
 ReplicaSet 对象的名称必须是合法的
-[DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
 
-ReplicaSet 也需要 [`.spec`](https://git.k8s.io/community/contributors/devel/api-conventions.md#spec-and-status)
+ReplicaSet 也需要
+[`.spec`](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status)
 部分。
 
 <!--
@@ -378,13 +368,13 @@ Be careful not to overlap with the selectors of other controllers, lest they try
 For the template's [restart policy](/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy) field,
 `.spec.template.spec.restartPolicy`, the only allowed value is `Always`, which is the default.
 -->
-### Pod 模版
+### Pod 模板    {#pod-template}
 
-`.spec.template` 是一个[Pod 模版](/zh/docs/concepts/workloads/pods/#pod-templates)，
+`.spec.template` 是一个 [Pod 模板](/zh-cn/docs/concepts/workloads/pods/#pod-templates)，
 要求设置标签。在 `frontend.yaml` 示例中，我们指定了标签 `tier: frontend`。
 注意不要将标签与其他控制器的选择算符重叠，否则那些控制器会尝试收养此 Pod。
 
-对于模板的[重启策略](/zh/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy)
+对于模板的[重启策略](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy)
 字段，`.spec.template.spec.restartPolicy`，唯一允许的取值是 `Always`，这也是默认值.
 
 <!--
@@ -404,8 +394,8 @@ be rejected by the API.
 -->
 ### Pod 选择算符   {#pod-selector}
 
-`.spec.selector` 字段是一个[标签选择算符](/zh/docs/concepts/overview/working-with-objects/labels/)。
-如前文中[所讨论的](#how-a-replicaset-works)，这些是用来标识要被获取的 Pods
+`.spec.selector` 字段是一个[标签选择算符](/zh-cn/docs/concepts/overview/working-with-objects/labels/)。
+如前文中[所讨论的](#how-a-replicaset-works)，这些是用来标识要被获取的 Pod
 的标签。在签名的 `frontend.yaml` 示例中，选择算符为：
 
 ```yaml
@@ -413,17 +403,18 @@ matchLabels:
   tier: frontend
 ```
 
-在 ReplicaSet 中，`.spec.template.metadata.labels` 的值必须与 `spec.selector` 值
-相匹配，否则该配置会被 API 拒绝。
+在 ReplicaSet 中，`.spec.template.metadata.labels` 的值必须与 `spec.selector`
+值相匹配，否则该配置会被 API 拒绝。
 
 {{< note >}}
 <!--
-For 2 ReplicaSets specifying the same `.spec.selector` but different `.spec.template.metadata.labels` and `.spec.template.spec` fields, each ReplicaSet ignores the Pods created by the other ReplicaSet.
+For 2 ReplicaSets specifying the same `.spec.selector` but different
+`.spec.template.metadata.labels` and `.spec.template.spec` fields, each ReplicaSet ignores the
+Pods created by the other ReplicaSet.
 -->
-对于设置了相同的 `.spec.selector`，但 
-`.spec.template.metadata.labels` 和 `.spec.template.spec` 字段不同的
-两个 ReplicaSet 而言，每个 ReplicaSet 都会忽略被另一个 ReplicaSet 所
-创建的 Pods。
+对于设置了相同的 `.spec.selector`，但
+`.spec.template.metadata.labels` 和 `.spec.template.spec` 字段不同的两个
+ReplicaSet 而言，每个 ReplicaSet 都会忽略被另一个 ReplicaSet 所创建的 Pod。
 {{< /note >}}
 
 <!--
@@ -437,48 +428,54 @@ If you do not specify `.spec.replicas`, then it defaults to 1.
 ### Replicas
 
 你可以通过设置 `.spec.replicas` 来指定要同时运行的 Pod 个数。
-ReplicaSet 创建、删除 Pods 以与此值匹配。
+ReplicaSet 创建、删除 Pod 以与此值匹配。
 
-如果你没有指定 `.spec.replicas`, 那么默认值为 1。
+如果你没有指定 `.spec.replicas`，那么默认值为 1。
 
 <!--
 ## Working with ReplicaSets
 
 ### Deleting a ReplicaSet and its Pods
 
-To delete a ReplicaSet and all of its Pods, use [`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands#delete). The [Garbage collector](/docs/concepts/workloads/controllers/garbage-collection/) automatically deletes all of the dependent Pods by default.
+To delete a ReplicaSet and all of its Pods, use
+[`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands#delete). The
+[Garbage collector](/docs/concepts/architecture/garbage-collection/) automatically deletes all of
+the dependent Pods by default.
 
-When using the REST API or the `client-go` library, you must set `propagationPolicy` to `Background` or `Foreground` in delete option. e.g. :
+When using the REST API or the `client-go` library, you must set `propagationPolicy` to
+`Background` or `Foreground` in the `-d` option. For example:
 -->
-## 使用 ReplicaSets
+## 使用 ReplicaSet    {#working-with-replicasets}
 
-### 删除 ReplicaSet 和它的 Pod
+### 删除 ReplicaSet 和它的 Pod    {#deleting-a-replicaset-and-its-pods}
 
 要删除 ReplicaSet 和它的所有 Pod，使用
 [`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands#delete) 命令。
-默认情况下，[垃圾收集器](/zh/docs/concepts/workloads/controllers/garbage-collection/)
+默认情况下，[垃圾收集器](/zh-cn/docs/concepts/architecture/garbage-collection/)
 自动删除所有依赖的 Pod。
 
-当使用 REST API 或 `client-go` 库时，你必须在删除选项中将 `propagationPolicy`
+当使用 REST API 或 `client-go` 库时，你必须在 `-d` 选项中将 `propagationPolicy`
 设置为 `Background` 或 `Foreground`。例如：
 
 ```shell
 kubectl proxy --port=8080
 curl -X DELETE  'localhost:8080/apis/apps/v1/namespaces/default/replicasets/frontend' \
-   -d '{"kind":"DeleteOptions","apiVersion":"v1","propagationPolicy":"Foreground"}' \
-   -H "Content-Type: application/json"
+  -d '{"kind":"DeleteOptions","apiVersion":"v1","propagationPolicy":"Foreground"}' \
+  -H "Content-Type: application/json"
 ```
 
 <!--
 ### Deleting just a ReplicaSet
 
-You can delete a ReplicaSet without affecting any of its Pods using [`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands#delete) with the `-cascade=orphan` option.
+You can delete a ReplicaSet without affecting any of its Pods using
+[`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands#delete)
+with the `--cascade=orphan` option.
 When using the REST API or the `client-go` library, you must set `propagationPolicy` to `Orphan`.
 For example:
 -->
-### 只删除 ReplicaSet
+### 只删除 ReplicaSet    {#deleting-just-a-replicaset}
 
-你可以只删除 ReplicaSet 而不影响它的 Pods，方法是使用
+你可以只删除 ReplicaSet 而不影响它的各个 Pod，方法是使用
 [`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands#delete)
 命令并设置 `--cascade=orphan` 选项。
 
@@ -494,29 +491,29 @@ curl -X DELETE  'localhost:8080/apis/apps/v1/namespaces/default/replicasets/fron
 
 <!--
 Once the original is deleted, you can create a new ReplicaSet to replace it.  As long
-as the old and new `.spec.selector` are the same, then the new one will adopt the old pods.
-However, it will not make any effort to make existing pods match a new, different pod template.
+as the old and new `.spec.selector` are the same, then the new one will adopt the old Pods.
+However, it will not make any effort to make existing Pods match a new, different pod template.
 To update Pods to a new spec in a controlled way, use a
-[Deployment](/docs/concepts/workloads/controllers/deployment/#creating-a-deployment), as ReplicaSets do not support a rolling update directly.
+[Deployment](/docs/concepts/workloads/controllers/deployment/#creating-a-deployment), as
+ReplicaSets do not support a rolling update directly.
 -->
 一旦删除了原来的 ReplicaSet，就可以创建一个新的来替换它。
 由于新旧 ReplicaSet 的 `.spec.selector` 是相同的，新的 ReplicaSet 将接管老的 Pod。
 但是，它不会努力使现有的 Pod 与新的、不同的 Pod 模板匹配。
 若想要以可控的方式更新 Pod 的规约，可以使用
-[Deployment](/zh/docs/concepts/workloads/controllers/deployment/#creating-a-deployment)
+[Deployment](/zh-cn/docs/concepts/workloads/controllers/deployment/#creating-a-deployment)
 资源，因为 ReplicaSet 并不直接支持滚动更新。
 
 <!--
-### Isolating pods from a ReplicaSet
+### Isolating Pods from a ReplicaSet
 
-Pods may be removed from a ReplicaSet's target set by changing their labels. This technique may be used to remove pods 
+You can remove Pods from a ReplicaSet by changing their labels. This technique may be used to remove Pods
 from service for debugging, data recovery, etc. Pods that are removed in this way will be replaced automatically (
-  assuming that the number of replicas is not also changed).
-
+assuming that the number of replicas is not also changed).
 -->
-### 将 Pod 从 ReplicaSet 中隔离
+### 将 Pod 从 ReplicaSet 中隔离    {#isolating-pods-from-a-replicaset}
 
-可以通过改变标签来从 ReplicaSet 的目标集中移除 Pod。
+可以通过改变标签来从 ReplicaSet 中移除 Pod。
 这种技术可以用来从服务中去除 Pod，以便进行排错、数据恢复等。
 以这种方式移除的 Pod 将被自动替换（假设副本的数量没有改变）。
 
@@ -524,53 +521,51 @@ from service for debugging, data recovery, etc. Pods that are removed in this wa
 ### Scaling a ReplicaSet
 
 A ReplicaSet can be easily scaled up or down by simply updating the `.spec.replicas` field. The ReplicaSet controller
-ensures that a desired number of pods with a matching label selector are available and operational.
+ensures that a desired number of Pods with a matching label selector are available and operational.
 -->
-### 缩放 RepliaSet
+### 扩缩 RepliaSet    {#scaling-a-replicaset}
 
-通过更新 `.spec.replicas` 字段，ReplicaSet 可以被轻松的进行缩放。ReplicaSet
+通过更新 `.spec.replicas` 字段，ReplicaSet 可以被轻松地进行扩缩。ReplicaSet
 控制器能确保匹配标签选择器的数量的 Pod 是可用的和可操作的。
 
 <!--
 When scaling down, the ReplicaSet controller chooses which pods to delete by sorting the available pods to
 prioritize scaling down pods based on the following general algorithm:
 -->
-在降低集合规模时，ReplicaSet 控制器通过对可用的 Pods 进行排序来优先选择
-要被删除的 Pods。其一般性算法如下：
+在降低集合规模时，ReplicaSet 控制器通过对可用的所有 Pod 进行排序来优先选择要被删除的那些 Pod。
+其一般性算法如下：
 
 <!--
- 1. Pending (and unschedulable) pods are scaled down first
- 2. If controller.kubernetes.io/pod-deletion-cost annotation is set, then
-    the pod with the lower value will come first.
- 3. Pods on nodes with more replicas come before pods on nodes with fewer replicas.
- 4. If the pods' creation times differ, the pod that was created more recently
-    comes before the older pod (the creation times are bucketed on an integer log scale
-    when the `LogarithmicScaleDown` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled)
+1. Pending (and unschedulable) pods are scaled down first
+1. If `controller.kubernetes.io/pod-deletion-cost` annotation is set, then
+   the pod with the lower value will come first.
+1. Pods on nodes with more replicas come before pods on nodes with fewer replicas.
+1. If the pods' creation times differ, the pod that was created more recently
+   comes before the older pod (the creation times are bucketed on an integer log scale
+   when the `LogarithmicScaleDown` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled)
 -->
-1. 首先选择剔除悬决（Pending，且不可调度）的 Pods
-2. 如果设置了 `controller.kubernetes.io/pod-deletion-cost` 注解，则注解值
-   较小的优先被裁减掉
+1. 首先选择剔除悬决（Pending，且不可调度）的各个 Pod
+2. 如果设置了 `controller.kubernetes.io/pod-deletion-cost` 注解，则注解值较小的优先被裁减掉
 3. 所处节点上副本个数较多的 Pod 优先于所处节点上副本较少者
 4. 如果 Pod 的创建时间不同，最近创建的 Pod 优先于早前创建的 Pod 被裁减。
-   （当 `LogarithmicScaleDown` 这一
-   [特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
+   （当 `LogarithmicScaleDown` 这一[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)
    被启用时，创建时间是按整数幂级来分组的）。
 
-如果以上比较结果都相同，则随机选择。   
+如果以上比较结果都相同，则随机选择。
 
 <!--
 ### Pod deletion cost 
 -->
 ### Pod 删除开销   {#pod-deletion-cost}
 
-{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.22" state="beta" >}}
 
 <!--
 Using the [`controller.kubernetes.io/pod-deletion-cost`](/docs/reference/labels-annotations-taints/#pod-deletion-cost) 
 annotation, users can set a preference regarding which pods to remove first when downscaling a ReplicaSet.
 -->
-通过使用 [`controller.kubernetes.io/pod-deletion-cost`](/zh/docs/reference/labels-annotations-taints/#pod-deletion-cost)
-注解，用户可以对 ReplicaSet 缩容时要先删除哪些 Pods 设置偏好。
+通过使用 [`controller.kubernetes.io/pod-deletion-cost`](/zh-cn/docs/reference/labels-annotations-taints/#pod-deletion-cost)
+注解，用户可以对 ReplicaSet 缩容时要先删除哪些 Pod 设置偏好。
 
 <!--
 The annotation should be set on the pod, the range is [-2147483647, 2147483647]. It represents the cost of
@@ -578,24 +573,23 @@ deleting a pod compared to other pods belonging to the same ReplicaSet. Pods wit
 cost are preferred to be deleted before pods with higher deletion cost. 
 -->
 此注解要设置到 Pod 上，取值范围为 [-2147483647, 2147483647]。
-所代表的的是删除同一 ReplicaSet 中其他 Pod 相比较而言的开销。
-删除开销较小的 Pods 比删除开销较高的 Pods 更容易被删除。
+所代表的是删除同一 ReplicaSet 中其他 Pod 相比较而言的开销。
+删除开销较小的 Pod 比删除开销较高的 Pod 更容易被删除。
 
 <!--
 The implicit value for this annotation for pods that don't set it is 0; negative values are permitted.
 Invalid values will be rejected by the API server.
 -->
-Pods 如果未设置此注解，则隐含的设置值为 0。负值也是可接受的。
+Pod 如果未设置此注解，则隐含的设置值为 0。负值也是可接受的。
 如果注解值非法，API 服务器会拒绝对应的 Pod。
 
 <!--
-This feature is alpha and disabled by default. You can enable it by setting the
+This feature is beta and enabled by default. You can disable it using the
 [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
 `PodDeletionCost` in both kube-apiserver and kube-controller-manager.
 -->
-此功能特性处于 Alpha 阶段，默认被禁用。你可以通过为 kube-apiserver 和
-kube-controller-manager 设置
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
+此功能特性处于 Beta 阶段，默认被禁用。你可以通过为 kube-apiserver 和
+kube-controller-manager 设置[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)
 `PodDeletionCost` 来启用此功能。
 
 {{< note >}}
@@ -606,7 +600,7 @@ kube-controller-manager 设置
 -->
 - 此机制实施时仅是尽力而为，并不能对 Pod 的删除顺序作出任何保证；
 - 用户应避免频繁更新注解值，例如根据某观测度量值来更新此注解值是应该避免的。
-  这样做会在 API 服务器上产生大量的 Pod 更新操作。 
+  这样做会在 API 服务器上产生大量的 Pod 更新操作。
 {{< /note >}}
 
 <!--
@@ -618,28 +612,26 @@ should update `controller.kubernetes.io/pod-deletion-cost` once before issuing a
 annotation to a value proportional to pod utilization level). This works if the application itself controls
 the down scaling; for example, the driver pod of a Spark deployment.
 -->
-#### 使用场景示例
+#### 使用场景示例    {#example-use-case}
 
-同一应用的不同 Pods 可能其利用率是不同的。在对应用执行缩容操作时，可能
-希望移除利用率较低的 Pods。为了避免频繁更新 Pods，应用应该在执行缩容
-操作之前更新一次 `controller.kubernetes.io/pod-deletion-cost` 注解值
+同一应用的不同 Pod 可能其利用率是不同的。在对应用执行缩容操作时，
+可能希望移除利用率较低的 Pod。为了避免频繁更新 Pod，应用应该在执行缩容操作之前更新一次
+`controller.kubernetes.io/pod-deletion-cost` 注解值
 （将注解值设置为一个与其 Pod 利用率对应的值）。
-如果应用自身控制器缩容操作时（例如 Spark 部署的驱动 Pod），这种机制
-是可以起作用的。
+如果应用自身控制器缩容操作时（例如 Spark 部署的驱动 Pod），这种机制是可以起作用的。
 
 <!--
-### ReplicaSet as an Horizontal Pod Autoscaler Target
+### ReplicaSet as a Horizontal Pod Autoscaler Target
 
 A ReplicaSet can also be a target for
 [Horizontal Pod Autoscalers (HPA)](/docs/tasks/run-application/horizontal-pod-autoscale/). That is,
 a ReplicaSet can be auto-scaled by an HPA. Here is an example HPA targeting
 the ReplicaSet we created in the previous example.
 -->
-### ReplicaSet 作为水平的 Pod 自动缩放器目标
+### ReplicaSet 作为水平的 Pod 自动扩缩器目标    {#replicaset-as-a-horizontal-pod-autoscaler-target}
 
-ReplicaSet 也可以作为
-[水平的 Pod 缩放器 (HPA)](/zh/docs/tasks/run-application/horizontal-pod-autoscale/)
-的目标。也就是说，ReplicaSet 可以被 HPA 自动缩放。
+ReplicaSet 也可以作为[水平的 Pod 扩缩器 (HPA)](/zh-cn/docs/tasks/run-application/horizontal-pod-autoscale/)
+的目标。也就是说，ReplicaSet 可以被 HPA 自动扩缩。
 以下是 HPA 以我们在前一个示例中创建的副本集为目标的示例。
 
 {{< codenew file="controllers/hpa-rs.yaml" >}}
@@ -647,10 +639,10 @@ ReplicaSet 也可以作为
 <!--
 Saving this manifest into `hpa-rs.yaml` and submitting it to a Kubernetes cluster should
 create the defined HPA that autoscales the target ReplicaSet depending on the CPU usage
-of the replicated pods.
+of the replicated Pods.
 -->
 将这个列表保存到 `hpa-rs.yaml` 并提交到 Kubernetes 集群，就能创建它所定义的
-HPA，进而就能根据复制的 Pod 的 CPU 利用率对目标 ReplicaSet进行自动缩放。
+HPA，进而就能根据复制的 Pod 的 CPU 利用率对目标 ReplicaSet 进行自动扩缩。
 
 ```shell
 kubectl apply -f https://k8s.io/examples/controllers/hpa-rs.yaml
@@ -660,7 +652,7 @@ kubectl apply -f https://k8s.io/examples/controllers/hpa-rs.yaml
 Alternatively, you can use the `kubectl autoscale` command to accomplish the same
 (and it's easier!)
 -->
-或者，可以使用 `kubectl autoscale` 命令完成相同的操作。 (而且它更简单！)
+或者，可以使用 `kubectl autoscale` 命令完成相同的操作（而且它更简单！）
 
 ```shell
 kubectl autoscale rs frontend --max=10 --min=3 --cpu-percent=50
@@ -669,7 +661,7 @@ kubectl autoscale rs frontend --max=10 --min=3 --cpu-percent=50
 <!--
 ## Alternatives to ReplicaSet
 
-### Deployment (Recommended)
+### Deployment (recommended)
 
 [`Deployment`](/docs/concepts/workloads/controllers/deployment/) is an object which can own ReplicaSets and update
 them and their Pods via declarative, server-side rolling updates.
@@ -678,55 +670,59 @@ creation, deletion and updates. When you use Deployments you don't have to worry
 they create. Deployments own and manage their ReplicaSets.
 As such, it is recommended to use Deployments when you want ReplicaSets.
 -->
-## ReplicaSet 的替代方案
+## ReplicaSet 的替代方案    {#alternatives-to-replicaset}
 
-### Deployment （推荐）
+### Deployment（推荐）    {#deployment-recommended}
 
-[`Deployment`](/zh/docs/concepts/workloads/controllers/deployment/) 是一个
-可以拥有 ReplicaSet 并使用声明式方式在服务器端完成对 Pods 滚动更新的对象。
-尽管 ReplicaSet 可以独立使用，目前它们的主要用途是提供给 Deployment 作为
-编排 Pod 创建、删除和更新的一种机制。当使用 Deployment 时，你不必关心
-如何管理它所创建的 ReplicaSet，Deployment 拥有并管理其 ReplicaSet。
+[`Deployment`](/zh-cn/docs/concepts/workloads/controllers/deployment/) 是一个可以拥有
+ReplicaSet 并使用声明式方式在服务器端完成对 Pod 滚动更新的对象。
+尽管 ReplicaSet 可以独立使用，目前它们的主要用途是提供给 Deployment 作为编排
+Pod 创建、删除和更新的一种机制。当使用 Deployment 时，你不必关心如何管理它所创建的
+ReplicaSet，Deployment 拥有并管理其 ReplicaSet。
 因此，建议你在需要 ReplicaSet 时使用 Deployment。
 
 <!--
 ### Bare Pods
 
-Unlike the case where a user directly created Pods, a ReplicaSet replaces Pods that are deleted or terminated for any reason, such as in the case of node failure or disruptive node maintenance, such as a kernel upgrade. For this reason, we recommend that you use a ReplicaSet even if your application requires only a single Pod. Think of it similarly to a process supervisor, only it supervises multiple Pods across multiple nodes instead of individual processes on a single node. A ReplicaSet delegates local container restarts to some agent on the node (for example, Kubelet or Docker).
+Unlike the case where a user directly created Pods, a ReplicaSet replaces Pods that are deleted or
+terminated for any reason, such as in the case of node failure or disruptive node maintenance,
+such as a kernel upgrade. For this reason, we recommend that you use a ReplicaSet even if your
+application requires only a single Pod. Think of it similarly to a process supervisor, only it
+supervises multiple Pods across multiple nodes instead of individual processes on a single node. A
+ReplicaSet delegates local container restarts to some agent on the node such as Kubelet.
 -->
-### 裸 Pod
+### 裸 Pod    {#bare-pods}
 
 与用户直接创建 Pod 的情况不同，ReplicaSet 会替换那些由于某些原因被删除或被终止的
 Pod，例如在节点故障或破坏性的节点维护（如内核升级）的情况下。
 因为这个原因，我们建议你使用 ReplicaSet，即使应用程序只需要一个 Pod。
 想像一下，ReplicaSet 类似于进程监视器，只不过它在多个节点上监视多个 Pod，
 而不是在单个节点上监视单个进程。
-ReplicaSet 将本地容器重启的任务委托给了节点上的某个代理（例如，Kubelet 或 Docker）去完成。
+ReplicaSet 将本地容器重启的任务委托给了节点上的某个代理（例如，Kubelet）去完成。
 
 <!--
 ### Job
 
-Use a [`Job`](/docs/concepts/workloads/controllers/job/) instead of a ReplicaSet for Pods that are expected to terminate on their own
-(that is, batch jobs).
+Use a [`Job`](/docs/concepts/workloads/controllers/job/) instead of a ReplicaSet for Pods that are
+expected to terminate on their own (that is, batch jobs).
 -->
-
 ### Job
 
-使用[`Job`](/zh/docs/concepts/workloads/controllers/job/) 代替ReplicaSet，
+使用[`Job`](/zh-cn/docs/concepts/workloads/controllers/job/) 代替 ReplicaSet，
 可以用于那些期望自行终止的 Pod。
 
 <!--
 ### DaemonSet
 
-Use a [`DaemonSet`](/docs/concepts/workloads/controllers/daemonset/) instead of a ReplicaSet for pods that provide a
-machine-level function, such as machine monitoring or machine logging.  These pods have a lifetime that is tied
-to a machine lifetime: the pod needs to be running on the machine before other pods start, and are
+Use a [`DaemonSet`](/docs/concepts/workloads/controllers/daemonset/) instead of a ReplicaSet for Pods that provide a
+machine-level function, such as machine monitoring or machine logging.  These Pods have a lifetime that is tied
+to a machine lifetime: the Pod needs to be running on the machine before other Pods start, and are
 safe to terminate when the machine is otherwise ready to be rebooted/shutdown.
 -->
 ### DaemonSet
 
 对于管理那些提供主机级别功能（如主机监控和主机日志）的容器，
-就要用 [`DaemonSet`](/zh/docs/concepts/workloads/controllers/daemonset/)
+就要用 [`DaemonSet`](/zh-cn/docs/concepts/workloads/controllers/daemonset/)
 而不用 ReplicaSet。
 这些 Pod 的寿命与主机寿命有关：这些 Pod 需要先于主机上的其他 Pod 运行，
 并且在机器准备重新启动/关闭时安全地终止。
@@ -734,14 +730,36 @@ safe to terminate when the machine is otherwise ready to be rebooted/shutdown.
 ### ReplicationController
 
 <!--
-ReplicaSets are the successors to [_ReplicationControllers_](/docs/concepts/workloads/controllers/replicationcontroller/).
+ReplicaSets are the successors to [ReplicationControllers](/docs/concepts/workloads/controllers/replicationcontroller/).
 The two serve the same purpose, and behave similarly, except that a ReplicationController does not support set-based
 selector requirements as described in the [labels user guide](/docs/concepts/overview/working-with-objects/labels/#label-selectors).
 As such, ReplicaSets are preferred over ReplicationControllers
 -->
-ReplicaSet 是 [ReplicationController](/zh/docs/concepts/workloads/controllers/replicationcontroller/)
+ReplicaSet 是 [ReplicationController](/zh-cn/docs/concepts/workloads/controllers/replicationcontroller/)
 的后继者。二者目的相同且行为类似，只是 ReplicationController 不支持
-[标签用户指南](/zh/docs/concepts/overview/working-with-objects/labels/#label-selectors)
+[标签用户指南](/zh-cn/docs/concepts/overview/working-with-objects/labels/#label-selectors)
 中讨论的基于集合的选择算符需求。
 因此，相比于 ReplicationController，应优先考虑 ReplicaSet。
 
+## {{% heading "whatsnext" %}}
+
+<!--
+* Learn about [Pods](/docs/concepts/workloads/pods).
+* Learn about [Deployments](/docs/concepts/workloads/controllers/deployment/).
+* [Run a Stateless Application Using a Deployment](/docs/tasks/run-application/run-stateless-application-deployment/),
+  which relies on ReplicaSets to work.
+* `ReplicaSet` is a top-level resource in the Kubernetes REST API.
+  Read the {{< api-reference page="workload-resources/replica-set-v1" >}}
+  object definition to understand the API for replica sets.
+* Read about [PodDisruptionBudget](/docs/concepts/workloads/pods/disruptions/) and how
+  you can use it to manage application availability during disruptions.
+-->
+* 了解 [Pod](/zh-cn/docs/concepts/workloads/pods)。
+* 了解 [Deployment](/zh-cn/docs/concepts/workloads/controllers/deployment/)。
+* [使用 Deployment 运行一个无状态应用](/zh-cn/docs/tasks/run-application/run-stateless-application-deployment/)，
+  它依赖于 ReplicaSet。
+* `ReplicaSet` 是 Kubernetes REST API 中的顶级资源。阅读
+  {{< api-reference page="workload-resources/replica-set-v1" >}}
+  对象定义理解关于该资源的 API。
+* 阅读 [Pod 干扰预算（Disruption Budget）](/zh-cn/docs/concepts/workloads/pods/disruptions/)，
+  了解如何在干扰下运行高度可用的应用。
diff --git a/content/zh/docs/concepts/workloads/controllers/replicationcontroller.md b/content/zh-cn/docs/concepts/workloads/controllers/replicationcontroller.md
similarity index 80%
rename from content/zh/docs/concepts/workloads/controllers/replicationcontroller.md
rename to content/zh-cn/docs/concepts/workloads/controllers/replicationcontroller.md
index 285215a3b2..0d9f4b7142 100644
--- a/content/zh/docs/concepts/workloads/controllers/replicationcontroller.md
+++ b/content/zh-cn/docs/concepts/workloads/controllers/replicationcontroller.md
@@ -7,7 +7,7 @@ feature:
     重新启动失败的容器，在节点死亡时替换并重新调度容器，杀死不响应用户定义的健康检查的容器，并且在它们准备好服务之前不会将它们公布给客户端。
 content_type: concept
 weight: 90
----     
+---
 
 <!--
 reviewers:
@@ -26,12 +26,12 @@ weight: 90
 
 <!-- overview -->
 
+{{< note >}}
 <!--
 A [`Deployment`](/docs/concepts/workloads/controllers/deployment/) that configures a [`ReplicaSet`](/docs/concepts/workloads/controllers/replicaset/) is now the recommended way to set up replication.
 -->
-{{< note >}}
-现在推荐使用配置 [`ReplicaSet`](/zh/docs/concepts/workloads/controllers/replicaset/) 的
-[`Deployment`](/zh/docs/concepts/workloads/controllers/deployment/) 来建立副本管理机制。
+现在推荐使用配置 [`ReplicaSet`](/zh-cn/docs/concepts/workloads/controllers/replicaset/) 的
+[`Deployment`](/zh-cn/docs/concepts/workloads/controllers/deployment/) 来建立副本管理机制。
 {{< /note >}}
 
 <!--
@@ -56,7 +56,7 @@ only a single pod. A ReplicationController is similar to a process supervisor,
 but instead of supervising individual processes on a single node, the ReplicationController supervises multiple pods
 across multiple nodes.
 -->
-## ReplicationController 如何工作
+## ReplicationController 如何工作   {#how-a-replicationcontroller-works}
 
 当 Pod 数量过多时，ReplicationController 会终止多余的 Pod。当 Pod 数量太少时，ReplicationController 将会启动新的 Pod。
 与手动创建的 Pod 不同，由 ReplicationController 创建的 Pod 在失败、被删除或被终止时会被自动替换。
@@ -82,7 +82,7 @@ service, such as web servers.
 
 This example ReplicationController config runs three copies of the nginx web server.
 -->
-## 运行一个示例 ReplicationController
+## 运行一个示例 ReplicationController   {#running-an-example-replicationcontroller}
 
 这个示例 ReplicationController 配置运行 nginx Web 服务器的三个副本。
 
@@ -187,16 +187,20 @@ specifies an expression with the name from each pod in the returned list.
 ## Writing a ReplicationController Spec
 
 As with all other Kubernetes config, a ReplicationController needs `apiVersion`, `kind`, and `metadata` fields.
+The name of a ReplicationController object must be a valid
+[DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 For general information about working with configuration files, see [object management](/docs/concepts/overview/working-with-objects/object-management/).
 
 A ReplicationController also needs a [`.spec` section](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status).
 -->
-## 编写一个 ReplicationController 规约
+## 编写一个 ReplicationController 规约   {#writing-a-replicationcontroller-spec}
 
 与所有其它 Kubernetes 配置一样，ReplicationController 需要 `apiVersion`、
 `kind` 和 `metadata` 字段。
+ReplicationController 对象的名称必须是有效的
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
 有关使用配置文件的常规信息，参考
-[对象管理](/zh/docs/concepts/overview/working-with-objects/object-management/)。
+[对象管理](/zh-cn/docs/concepts/overview/working-with-objects/object-management/)。
 
 ReplicationController 也需要一个 [`.spec` 部分](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status)。
 
@@ -205,14 +209,14 @@ ReplicationController 也需要一个 [`.spec` 部分](https://git.k8s.io/commun
 
 The `.spec.template` is the only required field of the `.spec`.
 
-The `.spec.template` is a [pod template](/docs/concepts/workloads/pods/pod-overview/#pod-templates). It has exactly the same schema as a [pod](/docs/concepts/workloads/pods/pod/), except it is nested and does not have an `apiVersion` or `kind`.
+The `.spec.template` is a [pod template](/docs/concepts/workloads/pods/#pod-templates). It has exactly the same schema as a {{< glossary_tooltip text="Pod" term_id="pod" >}}, except it is nested and does not have an `apiVersion` or `kind`.
 -->
 ### Pod 模板  {#pod-template}
 
 `.spec.template` 是 `.spec` 的唯一必需字段。
 
-`.spec.template` 是一个 [Pod 模板](/zh/docs/concepts/workloads/pods/#pod-templates)。
-它的模式与 [Pod](/zh/docs/concepts/workloads/pods/) 完全相同，只是它是嵌套的，没有 `apiVersion` 或 `kind` 属性。
+`.spec.template` 是一个 [Pod 模板](/zh-cn/docs/concepts/workloads/pods/#pod-templates)。
+它的模式与 {{< glossary_tooltip text="Pod" term_id="pod" >}} 完全相同，只是它是嵌套的，没有 `apiVersion` 或 `kind` 属性。
 
 <!--
 In addition to required fields for a Pod, a pod template in a ReplicationController must specify appropriate
@@ -221,15 +225,15 @@ labels and an appropriate restart policy. For labels, make sure not to overlap w
 Only a [`.spec.template.spec.restartPolicy`](/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy) equal to `Always` is allowed, which is the default if not specified.
 
 For local container restarts, ReplicationControllers delegate to an agent on the node,
-for example the [Kubelet](/docs/admin/kubelet/) or Docker.
+for example the [Kubelet](/docs/reference/command-line-tools-reference/kubelet/) or Docker.
 -->
 除了 Pod 所需的字段外，ReplicationController 中的 Pod 模板必须指定适当的标签和适当的重新启动策略。
 对于标签，请确保不与其他控制器重叠。参考 [Pod 选择算符](#pod-selector)。
 
-只允许 [`.spec.template.spec.restartPolicy`](/zh/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy) 等于 `Always`，如果没有指定，这是默认值。
+只允许 [`.spec.template.spec.restartPolicy`](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy) 等于 `Always`，如果没有指定，这是默认值。
 
 对于本地容器重启，ReplicationController 委托给节点上的代理，
-例如 [Kubelet](/zh/docs/reference/command-line-tools-reference/kubelet/) 或 Docker。
+例如 [Kubelet](/zh-cn/docs/reference/command-line-tools-reference/kubelet/) 或 Docker。
 
 <!--
 ### Labels on the ReplicationController
@@ -242,8 +246,8 @@ different, and the `.metadata.labels` do not affect the behavior of the Replicat
 ### ReplicationController 上的标签
 
 ReplicationController 本身可以有标签 （`.metadata.labels`）。
-通常，你可以将这些设置为 `.spec.template.metadata.labels`； 
-如果没有指定 `.metadata.labels` 那么它默认为 `.spec.template.metadata.labels`。  
+通常，你可以将这些设置为 `.spec.template.metadata.labels`；
+如果没有指定 `.metadata.labels` 那么它默认为 `.spec.template.metadata.labels`。
 但是，Kubernetes 允许它们是不同的，`.metadata.labels` 不会影响 ReplicationController 的行为。
 
 <!--
@@ -256,7 +260,7 @@ deleted. This allows the ReplicationController to be replaced without affecting
 -->
 ### Pod 选择算符 {#pod-selector}
 
-`.spec.selector` 字段是一个[标签选择算符](/zh/docs/concepts/overview/working-with-objects/labels/#label-selectors)。 
+`.spec.selector` 字段是一个[标签选择算符](/zh-cn/docs/concepts/overview/working-with-objects/labels/#label-selectors)。
 ReplicationController 管理标签与选择算符匹配的所有 Pod。
 它不区分它创建或删除的 Pod 和其他人或进程创建或删除的 Pod。
 这允许在不影响正在运行的 Pod 的情况下替换 ReplicationController。
@@ -299,7 +303,7 @@ If you do not specify `.spec.replicas`, then it defaults to 1.
 你可以通过设置 `.spec.replicas` 来指定应该同时运行多少个 Pod。
 在任何时候，处于运行状态的 Pod 个数都可能高于或者低于设定值。例如，副本个数刚刚被增加或减少时，或者一个 Pod 处于优雅终止过程中而其替代副本已经提前开始创建时。
 
-如果你没有指定 `.spec.replicas` ，那么它默认是 1。
+如果你没有指定 `.spec.replicas`，那么它默认是 1。
 
 <!--
 ## Working with ReplicationControllers
@@ -311,7 +315,7 @@ delete`](/docs/reference/generated/kubectl/kubectl-commands#delete).  Kubectl wi
 for it to delete each pod before deleting the ReplicationController itself.  If this kubectl
 command is interrupted, it can be restarted.
 
-When using the REST API or Go client library, you need to do the steps explicitly (scale replicas to
+When using the REST API or [client library](/docs/reference/using-api/client-libraries), you need to do the steps explicitly (scale replicas to
 0, wait for pod deletions, then delete the ReplicationController).
 -->
 ## 使用 ReplicationController {#working-with-replicationcontrollers}
@@ -323,7 +327,7 @@ When using the REST API or Go client library, you need to do the steps explicitl
 kubectl 将 ReplicationController 缩放为 0 并等待以便在删除 ReplicationController 本身之前删除每个 Pod。
 如果这个 kubectl 命令被中断，可以重新启动它。
 
-当使用 REST API 或 Go 客户端库时，你需要明确地执行这些步骤（缩放副本为 0、
+当使用 REST API 或[客户端库](/zh-cn/docs/reference/using-api/client-libraries)时，你需要明确地执行这些步骤（缩放副本为 0、
 等待 Pod 删除，之后删除 ReplicationController 资源）。
 
 <!--
@@ -331,17 +335,17 @@ kubectl 将 ReplicationController 缩放为 0 并等待以便在删除 Replicati
 
 You can delete a ReplicationController without affecting any of its pods.
 
-Using kubectl, specify the `--cascade=false` option to [`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands#delete).
+Using kubectl, specify the `--cascade=orphan` option to [`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands#delete).
 
-When using the REST API or Go client library, simply delete the ReplicationController object.
+When using the REST API or [client library](/docs/reference/using-api/client-libraries), you can delete the ReplicationController object.
 -->
 ### 只删除 ReplicationController
 
 你可以删除一个 ReplicationController 而不影响它的任何 Pod。
 
-使用 kubectl，为 [`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands#delete) 指定 `--cascade=false` 选项。
+使用 kubectl，为 [`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands#delete) 指定 `--cascade=orphan` 选项。
 
-当使用 REST API 或 Go 客户端库时，只需删除 ReplicationController 对象。
+当使用 REST API 或[客户端库](/zh-cn/docs/reference/using-api/client-libraries)时，只需删除 ReplicationController 对象。
 
 <!--
 Once the original is deleted, you can create a new ReplicationController to replace it.  As long
@@ -368,7 +372,7 @@ Pods may be removed from a ReplicationController's target set by changing their
 <!--
 ## Common usage patterns
 -->
-## 常见的使用模式
+## 常见的使用模式   {#common-usage-patterns}
 
 <!--
 ### Rescheduling
@@ -393,7 +397,7 @@ The ReplicationController enables scaling the number of replicas up or down, eit
 
 The ReplicationController is designed to facilitate rolling updates to a service by replacing pods one-by-one.
 
-As explained in [#1353](http://issue.k8s.io/1353), the recommended approach is to create a new ReplicationController with 1 replica, scale the new (+1) and old (-1) controllers one by one, and then delete the old controller after it reaches 0 replicas. This predictably updates the set of pods regardless of unexpected failures.
+As explained in [#1353](https://issue.k8s.io/1353), the recommended approach is to create a new ReplicationController with 1 replica, scale the new (+1) and old (-1) controllers one by one, and then delete the old controller after it reaches 0 replicas. This predictably updates the set of pods regardless of unexpected failures.
 -->
 ### 滚动更新 {#rolling-updates}
 
@@ -407,17 +411,11 @@ ReplicationController 的设计目的是通过逐个替换 Pod 以方便滚动
 Ideally, the rolling update controller would take application readiness into account, and would ensure that a sufficient number of pods were productively serving at any given time.
 
 The two ReplicationControllers would need to create pods with at least one differentiating label, such as the image tag of the primary container of the pod, since it is typically image updates that motivate rolling updates.
-
-Rolling update is implemented in the client tool
-[`kubectl rolling-update`](/docs/reference/generated/kubectl/kubectl-commands#rolling-update). Visit [`kubectl rolling-update` task](/docs/tasks/run-application/rolling-update-replication-controller/) for more concrete examples.
 -->
 理想情况下，滚动更新控制器将考虑应用程序的就绪情况，并确保在任何给定时间都有足够数量的 Pod 有效地提供服务。
 
 这两个 ReplicationController 将需要创建至少具有一个不同标签的 Pod，比如 Pod 主要容器的镜像标签，因为通常是镜像更新触发滚动更新。
 
-滚动更新是在客户端工具 [`kubectl rolling-update`](/docs/reference/generated/kubectl/kubectl-commands#rolling-update)
-中实现的。访问 [`kubectl rolling-update` 任务](/zh/docs/tasks/run-application/rolling-update-replication-controller/)以获得更多的具体示例。
-
 <!--
 ### Multiple release tracks
 
@@ -462,7 +460,7 @@ A ReplicationController will never terminate on its own, but it isn't expected t
 
 Pods created by a ReplicationController are intended to be fungible and semantically identical, though their configurations may become heterogeneous over time. This is an obvious fit for replicated stateless servers, but ReplicationControllers can also be used to maintain availability of master-elected, sharded, and worker-pool applications. Such applications should use dynamic work assignment mechanisms, such as the [RabbitMQ work queues](https://www.rabbitmq.com/tutorials/tutorial-two-python.html), as opposed to static/one-time customization of the configuration of each pod, which is considered an anti-pattern. Any pod customization performed, such as vertical auto-sizing of resources (for example, cpu or memory), should be performed by another online controller process, not unlike the ReplicationController itself.
 -->
-## 编写多副本的应用
+## 编写多副本的应用   {#writing-programs-for-replication}
 
 由 ReplicationController 创建的 Pod 是可替换的，语义上是相同的，
 尽管随着时间的推移，它们的配置可能会变得异构。
@@ -477,9 +475,9 @@ Pods created by a ReplicationController are intended to be fungible and semantic
 <!--
 ## Responsibilities of the ReplicationController
 
-The ReplicationController ensures that the desired number of pods matches its label selector and are operational. Currently, only terminated pods are excluded from its count. In the future, [readiness](http://issue.k8s.io/620) and other information available from the system may be taken into account, we may add more controls over the replacement policy, and we plan to emit events that could be used by external clients to implement arbitrarily sophisticated replacement and/or scale-down policies.
+The ReplicationController ensures that the desired number of pods matches its label selector and are operational. Currently, only terminated pods are excluded from its count. In the future, [readiness](https://issue.k8s.io/620) and other information available from the system may be taken into account, we may add more controls over the replacement policy, and we plan to emit events that could be used by external clients to implement arbitrarily sophisticated replacement and/or scale-down policies.
 -->
-## ReplicationController 的职责
+## ReplicationController 的职责   {#responsibilities-of-the-replicationcontroller}
 
 ReplicationController 仅确保所需的 Pod 数量与其标签选择算符匹配，并且是可操作的。
 目前，它的计数中只排除终止的 Pod。
@@ -488,7 +486,7 @@ ReplicationController 仅确保所需的 Pod 数量与其标签选择算符匹
 我们计划发出事件，这些事件可以被外部客户端用来实现任意复杂的替换和/或缩减策略。
 
 <!--
-The ReplicationController is forever constrained to this narrow responsibility. It itself will not perform readiness nor liveness probes. Rather than performing auto-scaling, it is intended to be controlled by an external auto-scaler (as discussed in [#492](http://issue.k8s.io/492)), which would change its `replicas` field. We will not add scheduling policies (for example, [spreading](http://issue.k8s.io/367#issuecomment-48428019)) to the ReplicationController. Nor should it verify that the pods controlled match the currently specified template, as that would obstruct auto-sizing and other automated processes. Similarly, completion deadlines, ordering dependencies, configuration expansion, and other features belong elsewhere. We even plan to factor out the mechanism for bulk pod creation ([#170](http://issue.k8s.io/170)).
+The ReplicationController is forever constrained to this narrow responsibility. It itself will not perform readiness nor liveness probes. Rather than performing auto-scaling, it is intended to be controlled by an external auto-scaler (as discussed in [#492](https://issue.k8s.io/492)), which would change its `replicas` field. We will not add scheduling policies (for example, [spreading](https://issue.k8s.io/367#issuecomment-48428019)) to the ReplicationController. Nor should it verify that the pods controlled match the currently specified template, as that would obstruct auto-sizing and other automated processes. Similarly, completion deadlines, ordering dependencies, configuration expansion, and other features belong elsewhere. We even plan to factor out the mechanism for bulk pod creation ([#170](https://issue.k8s.io/170)).
 -->
 ReplicationController 永远被限制在这个狭隘的职责范围内。
 它本身既不执行就绪态探测，也不执行活跃性探测。
@@ -501,12 +499,12 @@ ReplicationController 永远被限制在这个狭隘的职责范围内。
 我们甚至计划考虑批量创建 Pod 的机制（查阅 [#170](https://issue.k8s.io/170)）。
 
 <!--
-The ReplicationController is intended to be a composable building-block primitive. We expect higher-level APIs and/or tools to be built on top of it and other complementary primitives for user convenience in the future. The "macro" operations currently supported by kubectl (run, scale, rolling-update) are proof-of-concept examples of this. For instance, we could imagine something like [Asgard](http://techblog.netflix.com/2012/06/asgard-web-based-cloud-management-and.html) managing ReplicationControllers, auto-scalers, services, scheduling policies, canaries, etc.
+The ReplicationController is intended to be a composable building-block primitive. We expect higher-level APIs and/or tools to be built on top of it and other complementary primitives for user convenience in the future. The "macro" operations currently supported by kubectl (run, scale) are proof-of-concept examples of this. For instance, we could imagine something like [Asgard](https://netflixtechblog.com/asgard-web-based-cloud-management-and-deployment-2c9fc4e4d3a1) managing ReplicationControllers, auto-scalers, services, scheduling policies, canaries, etc.
 -->
 ReplicationController 旨在成为可组合的构建基元。
 我们希望在它和其他补充原语的基础上构建更高级别的 API 或者工具，以便于将来的用户使用。
 kubectl 目前支持的 "macro" 操作（运行、缩放、滚动更新）就是这方面的概念示例。
-例如，我们可以想象类似于 [Asgard](https://techblog.netflix.com/2012/06/asgaard-web-based-cloud-management-and.html)
+例如，我们可以想象类似于 [Asgard](https://netflixtechblog.com/asgard-web-based-cloud-management-and-deployment-2c9fc4e4d3a1)
 的东西管理 ReplicationController、自动定标器、服务、调度策略、金丝雀发布等。
 
 <!--
@@ -516,7 +514,7 @@ Replication controller is a top-level resource in the Kubernetes REST API. More
 API object can be found at:
 [ReplicationController API object](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#replicationcontroller-v1-core).
 -->
-## API 对象
+## API 对象   {#api-object}
 
 在 Kubernetes REST API 中 Replication controller 是顶级资源。
 更多关于 API 对象的详细信息可以在
@@ -524,19 +522,20 @@ API object can be found at:
 
 <!--
 ## Alternatives to ReplicationController
+
 ### ReplicaSet
 
 [`ReplicaSet`](/docs/concepts/workloads/controllers/replicaset/) is the next-generation ReplicationController that supports the new [set-based label selector](/docs/concepts/overview/working-with-objects/labels/#set-based-requirement).
-It’s mainly used by [Deployment](/docs/concepts/workloads/controllers/deployment/) as a mechanism to orchestrate Pod creation, deletion and updates.
-Note that we recommend using Deployments instead of directly using Replica Sets, unless you require custom update orchestration or don’t require updates at all.
+It's mainly used by [Deployment](/docs/concepts/workloads/controllers/deployment/) as a mechanism to orchestrate pod creation, deletion and updates.
+Note that we recommend using Deployments instead of directly using Replica Sets, unless you require custom update orchestration or don't require updates at all.
 -->
-## ReplicationController 的替代方案
+## ReplicationController 的替代方案   {#alternatives-to-replicationcontroller}
 
 ### ReplicaSet
 
-[`ReplicaSet`](/zh/docs/concepts/workloads/controllers/replicaset/) 是下一代 ReplicationController，
-支持新的[基于集合的标签选择算符](/zh/docs/concepts/overview/working-with-objects/labels/#set-based-requirement)。
-它主要被 [`Deployment`](/zh/docs/concepts/workloads/controllers/deployment/)
+[`ReplicaSet`](/zh-cn/docs/concepts/workloads/controllers/replicaset/) 是下一代 ReplicationController，
+支持新的[基于集合的标签选择算符](/zh-cn/docs/concepts/overview/working-with-objects/labels/#set-based-requirement)。
+它主要被 [`Deployment`](/zh-cn/docs/concepts/workloads/controllers/deployment/)
 用来作为一种编排 Pod 创建、删除及更新的机制。
 请注意，我们推荐使用 Deployment 而不是直接使用 ReplicaSet，除非
 你需要自定义更新编排或根本不需要更新。
@@ -544,16 +543,14 @@ Note that we recommend using Deployments instead of directly using Replica Sets,
 <!--
 ### Deployment (Recommended)
 
-[`Deployment`](/docs/concepts/workloads/controllers/deployment/) is a higher-level API object that updates its underlying Replica Sets and their Pods
-in a similar fashion as `kubectl rolling-update`. Deployments are recommended if you want this rolling update functionality,
-because unlike `kubectl rolling-update`, they are declarative, server-side, and have additional features.
+[`Deployment`](/docs/concepts/workloads/controllers/deployment/) is a higher-level API object that updates its underlying Replica Sets and their Pods.
+Deployments are recommended if you want the rolling update functionality,
+because they are declarative, server-side, and have additional features.
 -->
 ### Deployment （推荐）
 
-[`Deployment`](/zh/docs/concepts/workloads/controllers/deployment/) 是一种更高级别的 API 对象，
-它以类似于 `kubectl rolling-update` 的方式更新其底层 ReplicaSet 及其 Pod。
-如果你想要这种滚动更新功能，那么推荐使用 Deployment，因为与 `kubectl rolling-update` 不同，
-它们是声明式的、服务端的，并且具有其它特性。
+[`Deployment`](/zh-cn/docs/concepts/workloads/controllers/deployment/) 是一种更高级别的 API 对象，用于更新其底层 ReplicaSet 及其 Pod。
+如果你想要这种滚动更新功能，那么推荐使用 Deployment，因为它们是声明式的、服务端的，并且具有其它特性。
 
 <!--
 ### Bare Pods
@@ -563,21 +560,21 @@ Unlike in the case where a user directly created pods, a ReplicationController r
 ### 裸 Pod
 
 与用户直接创建 Pod 的情况不同，ReplicationController 能够替换因某些原因
-被删除或被终止的 Pod ，例如在节点故障或中断节点维护的情况下，例如内核升级。
+被删除或被终止的 Pod，例如在节点故障或中断节点维护的情况下，例如内核升级。
 因此，我们建议你使用 ReplicationController，即使你的应用程序只需要一个 Pod。
-可以将其看作类似于进程管理器，它只管理跨多个节点的多个 Pod ，而不是单个节点上的单个进程。
+可以将其看作类似于进程管理器，它只管理跨多个节点的多个 Pod，而不是单个节点上的单个进程。
 ReplicationController 将本地容器重启委托给节点上的某个代理(例如，Kubelet 或 Docker)。
 
 <!--
 ### Job
 
-Use a [`Job`](/docs/concepts/jobs/run-to-completion-finite-workloads/) instead of a ReplicationController for Pods that are expected to terminate on their own
+Use a [`Job`](/docs/concepts/workloads/controllers/job/) instead of a ReplicationController for pods that are expected to terminate on their own
 (that is, batch jobs).
 -->
 ### Job
 
 对于预期会自行终止的 Pod (即批处理任务)，使用
-[`Job`](/zh/docs/concepts/workloads/controllers/job/) 而不是 ReplicationController。
+[`Job`](/zh-cn/docs/concepts/workloads/controllers/job/) 而不是 ReplicationController。
 
 <!--
 ### DaemonSet
@@ -590,17 +587,25 @@ safe to terminate when the machine is otherwise ready to be rebooted/shutdown.
 ### DaemonSet
 
 对于提供机器级功能（例如机器监控或机器日志记录）的 Pod，
-使用 [`DaemonSet`](/zh/docs/concepts/workloads/controllers/daemonset/) 而不是
+使用 [`DaemonSet`](/zh-cn/docs/concepts/workloads/controllers/daemonset/) 而不是
 ReplicationController。
 这些 Pod 的生命期与机器的生命期绑定：它们需要在其他 Pod 启动之前在机器上运行，
 并且在机器准备重新启动或者关闭时安全地终止。
 
 <!--
-## For more information
+## {{% heading "whatsnext" %}}
 
-Read [Run Stateless AP Replication Controller](/docs/tutorials/stateless-application/run-stateless-ap-replication-controller/).
+* Learn about [Pods](/docs/concepts/workloads/pods).
+* Learn about [Deployment](/docs/concepts/workloads/controllers/deployment/), the replacement
+  for ReplicationController.
+* `ReplicationController` is part of the Kubernetes REST API.
+  Read the {{< api-reference page="workload-resources/replication-controller-v1" >}}
+  object definition to understand the API for replication controllers.
 -->
-## 更多信息
+## {{% heading "whatsnext" %}}
 
-请阅读[运行无状态的 ReplicationController](/zh/docs/tasks/run-application/run-stateless-application-deployment/)。
+- 了解 [Pods](/zh-cn/docs/concepts/workloads/pods)。
+- 了解 [Depolyment](/zh-cn/docs/concepts/workloads/controllers/deployment/)，ReplicationController 的替代品。
+- `ReplicationController` 是 Kubernetes REST API 的一部分，阅读 {{< api-reference page="workload-resources/replication-controller-v1" >}}
+  对象定义以了解 replication controllers 的 API。
 
diff --git a/content/zh-cn/docs/concepts/workloads/controllers/statefulset.md b/content/zh-cn/docs/concepts/workloads/controllers/statefulset.md
new file mode 100644
index 0000000000..7bc7f7d145
--- /dev/null
+++ b/content/zh-cn/docs/concepts/workloads/controllers/statefulset.md
@@ -0,0 +1,794 @@
+---
+title: StatefulSet
+content_type: concept
+weight: 30
+---
+
+<!--
+title: StatefulSets
+content_type: concept
+weight: 30
+-->
+
+<!-- overview -->
+
+<!--
+StatefulSet is the workload API object used to manage stateful applications.
+-->
+StatefulSet 是用来管理有状态应用的工作负载 API 对象。
+
+{{< glossary_definition term_id="statefulset" length="all" >}}
+
+<!-- body -->
+
+<!--
+## Using StatefulSets
+
+StatefulSets are valuable for applications that require one or more of the
+following.
+-->
+## 使用 StatefulSet   {#using-statefulsets}
+
+StatefulSet 对于需要满足以下一个或多个需求的应用程序很有价值：
+
+<!--
+* Stable, unique network identifiers.
+* Stable, persistent storage.
+* Ordered, graceful deployment and scaling.
+* Ordered, automated rolling updates.
+-->
+* 稳定的、唯一的网络标识符。
+* 稳定的、持久的存储。
+* 有序的、优雅的部署和扩缩。
+* 有序的、自动的滚动更新。
+
+<!--
+In the above, stable is synonymous with persistence across Pod (re)scheduling.
+If an application doesn't require any stable identifiers or ordered deployment,
+deletion, or scaling, you should deploy your application using a workload object
+that provides a set of stateless replicas.
+[Deployment](/docs/concepts/workloads/controllers/deployment/) or
+[ReplicaSet](/docs/concepts/workloads/controllers/replicaset/) may be better suited to your stateless needs.
+-->
+在上面描述中，“稳定的”意味着 Pod 调度或重调度的整个过程是有持久性的。
+如果应用程序不需要任何稳定的标识符或有序的部署、删除或扩缩，
+则应该使用由一组无状态的副本控制器提供的工作负载来部署应用程序，比如
+[Deployment](/zh-cn/docs/concepts/workloads/controllers/deployment/) 或者
+[ReplicaSet](/zh-cn/docs/concepts/workloads/controllers/replicaset/)
+可能更适用于你的无状态应用部署需要。
+
+<!--
+## Limitations
+-->
+## 限制  {#limitations}
+
+<!--
+* The storage for a given Pod must either be provisioned by a [PersistentVolume Provisioner](https://github.com/kubernetes/examples/tree/master/staging/persistent-volume-provisioning/README.md) based on the requested `storage class`, or pre-provisioned by an admin.
+* Deleting and/or scaling a StatefulSet down will *not* delete the volumes associated with the StatefulSet. This is done to ensure data safety, which is generally more valuable than an automatic purge of all related StatefulSet resources.
+* StatefulSets currently require a [Headless Service](/docs/concepts/services-networking/service/#headless-services) to be responsible for the network identity of the Pods. You are responsible for creating this Service.
+* StatefulSets do not provide any guarantees on the termination of pods when a StatefulSet is deleted. To achieve ordered and graceful termination of the pods in the StatefulSet, it is possible to scale the StatefulSet down to 0 prior to deletion.
+* When using [Rolling Updates](#rolling-updates) with the default
+  [Pod Management Policy](#pod-management-policies) (`OrderedReady`),
+  it's possible to get into a broken state that requires
+  [manual intervention to repair](#forced-rollback).
+-->
+* 给定 Pod 的存储必须由
+  [PersistentVolume 驱动](https://github.com/kubernetes/examples/tree/master/staging/persistent-volume-provisioning/README.md)
+  基于所请求的 `storage class` 来提供，或者由管理员预先提供。
+* 删除或者扩缩 StatefulSet 并**不会**删除它关联的存储卷。
+  这样做是为了保证数据安全，它通常比自动清除 StatefulSet 所有相关的资源更有价值。
+* StatefulSet 当前需要[无头服务](/zh-cn/docs/concepts/services-networking/service/#headless-services)
+  来负责 Pod 的网络标识。你需要负责创建此服务。
+* 当删除一个 StatefulSet 时，该 StatefulSet 不提供任何终止 Pod 的保证。
+  为了实现 StatefulSet 中的 Pod 可以有序且体面地终止，可以在删除之前将 StatefulSet
+  缩容到 0。
+* 在默认 [Pod 管理策略](#pod-management-policies)(`OrderedReady`) 时使用
+  [滚动更新](#rolling-updates)，可能进入需要[人工干预](#forced-rollback)
+  才能修复的损坏状态。
+
+<!--
+## Components
+The example below demonstrates the components of a StatefulSet.
+-->
+## 组件  {#components}
+
+下面的示例演示了 StatefulSet 的组件。
+
+```yaml
+apiVersion: v1
+kind: Service
+metadata:
+  name: nginx
+  labels:
+    app: nginx
+spec:
+  ports:
+  - port: 80
+    name: web
+  clusterIP: None
+  selector:
+    app: nginx
+---
+apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: web
+spec:
+  selector:
+    matchLabels:
+      app: nginx # 必须匹配 .spec.template.metadata.labels
+  serviceName: "nginx"
+  replicas: 3 # 默认值是 1
+  minReadySeconds: 10 # 默认值是 0
+  template:
+    metadata:
+      labels:
+        app: nginx # 必须匹配 .spec.selector.matchLabels
+    spec:
+      terminationGracePeriodSeconds: 10
+      containers:
+      - name: nginx
+        image: k8s.gcr.io/nginx-slim:0.8
+        ports:
+        - containerPort: 80
+          name: web
+        volumeMounts:
+        - name: www
+          mountPath: /usr/share/nginx/html
+  volumeClaimTemplates:
+  - metadata:
+      name: www
+    spec:
+      accessModes: [ "ReadWriteOnce" ]
+      storageClassName: "my-storage-class"
+      resources:
+        requests:
+          storage: 1Gi
+```
+
+<!--
+In the above example:
+
+* A Headless Service, named `nginx`, is used to control the network domain.
+* The StatefulSet, named `web`, has a Spec that indicates that 3 replicas of the nginx container will be launched in unique Pods.
+* The `volumeClaimTemplates` will provide stable storage using [PersistentVolumes](/docs/concepts/storage/persistent-volumes/) provisioned by a PersistentVolume Provisioner.
+
+The name of a StatefulSet object must be a valid
+[DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
+
+-->
+上述例子中：
+
+* 名为 `nginx` 的 Headless Service 用来控制网络域名。
+* 名为 `web` 的 StatefulSet 有一个 Spec，它表明将在独立的 3 个 Pod 副本中启动 nginx 容器。
+* `volumeClaimTemplates` 将通过 PersistentVolumes 驱动提供的
+  [PersistentVolumes](/zh-cn/docs/concepts/storage/persistent-volumes/) 来提供稳定的存储。
+
+StatefulSet 的命名需要遵循 [DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)规范。
+
+<!--
+### Pod Selector
+-->
+### Pod 选择算符     {#pod-selector}
+
+<!--
+You must set the `.spec.selector` field of a StatefulSet to match the labels of its `.spec.template.metadata.labels`. Failing to specify a matching Pod Selector will result in a validation error during StatefulSet creation.
+-->
+你必须设置 StatefulSet 的 `.spec.selector` 字段，使之匹配其在
+`.spec.template.metadata.labels` 中设置的标签。
+未指定匹配的 Pod 选择算符将在创建 StatefulSet 期间导致验证错误。
+
+<!--
+### Volume Claim Templates
+
+You can set the  `.spec.volumeClaimTemplates` which can provide stable storage using [PersistentVolumes](/docs/concepts/storage/persistent-volumes/) provisioned by a PersistentVolume Provisioner.
+-->
+### 卷申领模板  {#volume-claim-templates}
+
+你可以设置 `.spec.volumeClaimTemplates`，
+它可以使用 PersistentVolume 制备程序所准备的
+[PersistentVolumes](/zh-cn/docs/concepts/storage/persistent-volumes/) 来提供稳定的存储。
+
+<!-- ### Minimum ready seconds -->
+### 最短就绪秒数 {#minimum-ready-seconds}
+
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
+
+<!--
+`.spec.minReadySeconds` is an optional field that specifies the minimum number of seconds for which a newly
+created Pod should be ready without any of its containers crashing, for it to be considered available.
+Please note that this feature is beta and enabled by default. Please opt out by unsetting the StatefulSetMinReadySeconds flag, if you don't
+want this feature to be enabled. This field defaults to 0 (the Pod will be considered 
+available as soon as it is ready). To learn more about when a Pod is considered ready, see [Container Probes](/docs/concepts/workloads/pods/pod-lifecycle/#container-probes).
+-->
+`.spec.minReadySeconds` 是一个可选字段，
+它指定新创建的 Pod 应该准备好且其任何容器不崩溃的最小秒数，以使其被视为可用。
+请注意，此功能是测试版，默认启用。如果你不希望启用此功能，
+请通过取消设置 StatefulSetMinReadySeconds 标志来选择退出。
+该字段默认为 0（Pod 准备就绪后将被视为可用）。
+要了解有关何时认为 Pod 准备就绪的更多信息，
+请参阅[容器探针](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#container-probes)。
+
+<!--
+## Pod Identity
+
+StatefulSet Pods have a unique identity that is comprised of an ordinal, a
+stable network identity, and stable storage. The identity sticks to the Pod,
+regardless of which node it's (re)scheduled on.
+-->
+## Pod 标识   {#pod-identity}
+
+StatefulSet Pod 具有唯一的标识，该标识包括顺序标识、稳定的网络标识和稳定的存储。
+该标识和 Pod 是绑定的，与该 Pod 调度到哪个节点上无关。
+
+<!--
+### Ordinal Index
+
+For a StatefulSet with N replicas, each Pod in the StatefulSet will be
+assigned an integer ordinal, from 0 up through N-1, that is unique over the Set.
+-->
+### 有序索引   {#ordinal-index}
+
+对于具有 N 个副本的 StatefulSet，该 StatefulSet 中的每个 Pod 将被分配一个从 0 到 N-1
+的整数序号，该序号在此 StatefulSet 上是唯一的。
+
+<!--
+### Stable Network ID
+
+Each Pod in a StatefulSet derives its hostname from the name of the StatefulSet
+and the ordinal of the Pod. The pattern for the constructed hostname
+is `$(statefulset name)-$(ordinal)`. The example above will create three Pods
+named `web-0,web-1,web-2`.
+A StatefulSet can use a [Headless Service](/docs/concepts/services-networking/service/#headless-services)
+to control the domain of its Pods. The domain managed by this Service takes the form:
+`$(service name).$(namespace).svc.cluster.local`, where "cluster.local" is the
+cluster domain.
+As each Pod is created, it gets a matching DNS subdomain, taking the form:
+`$(podname).$(governing service domain)`, where the governing service is defined
+by the `serviceName` field on the StatefulSet.
+-->
+### 稳定的网络 ID   {#stable-network-id}
+
+StatefulSet 中的每个 Pod 根据 StatefulSet 的名称和 Pod 的序号派生出它的主机名。
+组合主机名的格式为`$(StatefulSet 名称)-$(序号)`。
+上例将会创建三个名称分别为 `web-0、web-1、web-2` 的 Pod。
+StatefulSet 可以使用 [无头服务](/zh-cn/docs/concepts/services-networking/service/#headless-services)
+控制它的 Pod 的网络域。管理域的这个服务的格式为：
+`$(服务名称).$(名字空间).svc.cluster.local`，其中 `cluster.local` 是集群域。
+一旦每个 Pod 创建成功，就会得到一个匹配的 DNS 子域，格式为：
+`$(pod 名称).$(所属服务的 DNS 域名)`，其中所属服务由 StatefulSet 的 `serviceName` 域来设定。
+
+<!--
+Depending on how DNS is configured in your cluster, you may not be able to look up the DNS
+name for a newly-run Pod immediately. This behavior can occur when other clients in the
+cluster have already sent queries for the hostname of the Pod before it was created.
+Negative caching (normal in DNS) means that the results of previous failed lookups are
+remembered and reused, even after the Pod is running, for at least a few seconds.
+
+If you need to discover Pods promptly after they are created, you have a few options:
+
+- Query the Kubernetes API directly (for example, using a watch) rather than relying on DNS lookups.
+- Decrease the time of caching in your Kubernetes DNS provider (typically this means editing the config map for CoreDNS, which currently caches for 30 seconds).
+
+
+As mentioned in the [limitations](#limitations) section, you are responsible for
+creating the [Headless Service](/docs/concepts/services-networking/service/#headless-services)
+responsible for the network identity of the pods.
+
+-->
+取决于集群域内部 DNS 的配置，有可能无法查询一个刚刚启动的 Pod 的 DNS 命名。
+当集群内其他客户端在 Pod 创建完成前发出 Pod 主机名查询时，就会发生这种情况。
+负缓存 (在 DNS 中较为常见) 意味着之前失败的查询结果会被记录和重用至少若干秒钟，
+即使 Pod 已经正常运行了也是如此。
+
+如果需要在 Pod 被创建之后及时发现它们，可使用以下选项：
+
+- 直接查询 Kubernetes API（比如，利用 watch 机制）而不是依赖于 DNS 查询
+- 缩短 Kubernetes DNS 驱动的缓存时长（通常这意味着修改 CoreDNS 的 ConfigMap，目前缓存时长为 30 秒）
+
+正如[限制](#limitations)中所述，你需要负责创建[无头服务](/zh-cn/docs/concepts/services-networking/service/#headless-services)
+以便为 Pod 提供网络标识。
+
+<!--
+Here are some examples of choices for Cluster Domain, Service name,
+StatefulSet name, and how that affects the DNS names for the StatefulSet's Pods.
+
+
+Cluster Domain | Service (ns/name) | StatefulSet (ns/name)  | StatefulSet Domain  | Pod DNS | Pod Hostname |
+-------------- | ----------------- | ----------------- | -------------- | ------- | ------------ |
+ cluster.local | default/nginx     | default/web       | nginx.default.svc.cluster.local | web-{0..N-1}.nginx.default.svc.cluster.local | web-{0..N-1} |
+ cluster.local | foo/nginx         | foo/web           | nginx.foo.svc.cluster.local     | web-{0..N-1}.nginx.foo.svc.cluster.local     | web-{0..N-1} |
+ kube.local    | foo/nginx         | foo/web           | nginx.foo.svc.kube.local        | web-{0..N-1}.nginx.foo.svc.kube.local        | web-{0..N-1} |
+
+-->
+下面给出一些选择集群域、服务名、StatefulSet 名、及其怎样影响 StatefulSet 的 Pod 上的 DNS 名称的示例：
+
+集群域名       | 服务（名字空间/名字）| StatefulSet（名字空间/名字） | StatefulSet 域名 | Pod DNS | Pod 主机名   |
+-------------- | -------------------- | ---------------------------- | ---------------- | ------- | ------------ |
+ cluster.local | default/nginx     | default/web       | nginx.default.svc.cluster.local | web-{0..N-1}.nginx.default.svc.cluster.local | web-{0..N-1} |
+ cluster.local | foo/nginx         | foo/web           | nginx.foo.svc.cluster.local     | web-{0..N-1}.nginx.foo.svc.cluster.local     | web-{0..N-1} |
+ kube.local    | foo/nginx         | foo/web           | nginx.foo.svc.kube.local        | web-{0..N-1}.nginx.foo.svc.kube.local        | web-{0..N-1} |
+
+<!--
+Cluster Domain will be set to `cluster.local` unless
+[otherwise configured](/docs/concepts/services-networking/dns-pod-service/#how-it-works).
+-->
+{{< note >}}
+集群域会被设置为 `cluster.local`，除非有[其他配置](/zh-cn/docs/concepts/services-networking/dns-pod-service/)。
+{{< /note >}}
+
+<!--
+### Stable Storage
+
+For each VolumeClaimTemplate entry defined in a StatefulSet, each Pod receives one PersistentVolumeClaim. In the nginx example above, each Pod receives a single PersistentVolume with a StorageClass of `my-storage-class` and 1 Gib of provisioned storage. If no StorageClass
+is specified, then the default StorageClass will be used. When a Pod is (re)scheduled
+onto a node, its `volumeMounts` mount the PersistentVolumes associated with its
+PersistentVolume Claims. Note that, the PersistentVolumes associated with the
+Pods' PersistentVolume Claims are not deleted when the Pods, or StatefulSet are deleted.
+This must be done manually.
+-->
+### 稳定的存储  {#stable-storage}
+
+对于 StatefulSet 中定义的每个 VolumeClaimTemplate，每个 Pod 接收到一个 PersistentVolumeClaim。在上面的 nginx 示例中，每个 Pod 将会得到基于 StorageClass `my-storage-class` 提供的
+1 Gib 的 PersistentVolume。
+如果没有声明 StorageClass，就会使用默认的 StorageClass。
+当一个 Pod 被调度（重新调度）到节点上时，它的 `volumeMounts` 会挂载与其
+PersistentVolumeClaims 相关联的 PersistentVolume。
+请注意，当 Pod 或者 StatefulSet 被删除时，与 PersistentVolumeClaims 相关联的
+PersistentVolume 并不会被删除。要删除它必须通过手动方式来完成。
+
+<!--
+### Pod Name Label
+
+When the StatefulSet {{< glossary_tooltip term_id="controller" >}} creates a Pod,
+it adds a label, `statefulset.kubernetes.io/pod-name`, that is set to the name of
+the Pod. This label allows you to attach a Service to a specific Pod in
+the StatefulSet.
+-->
+### Pod 名称标签   {#pod-name-label}
+
+当 StatefulSet {{< glossary_tooltip term_id="controller" >}} 创建 Pod 时，
+它会添加一个标签 `statefulset.kubernetes.io/pod-name`，该标签值设置为 Pod 名称。
+这个标签允许你给 StatefulSet 中的特定 Pod 绑定一个 Service。
+
+<!--
+## Deployment and Scaling Guarantees
+
+* For a StatefulSet with N replicas, when Pods are being deployed, they are created sequentially, in order from {0..N-1}.
+* When Pods are being deleted, they are terminated in reverse order, from {N-1..0}.
+* Before a scaling operation is applied to a Pod, all of its predecessors must be Running and Ready.
+* Before a Pod is terminated, all of its successors must be completely shutdown.
+-->
+## 部署和扩缩保证   {#deployment-and-scaling-guarantees}
+
+* 对于包含 N 个 副本的 StatefulSet，当部署 Pod 时，它们是依次创建的，顺序为 `0..N-1`。
+* 当删除 Pod 时，它们是逆序终止的，顺序为 `N-1..0`。
+* 在将扩缩操作应用到 Pod 之前，它前面的所有 Pod 必须是 Running 和 Ready 状态。
+* 在一个 Pod 终止之前，所有的继任者必须完全关闭。
+
+<!--
+The StatefulSet should not specify a `pod.Spec.TerminationGracePeriodSeconds` of 0. This practice is unsafe and strongly discouraged. For further explanation, please refer to [force deleting StatefulSet Pods](/docs/tasks/run-application/force-delete-stateful-set-pod/).
+-->
+StatefulSet 不应将 `pod.Spec.TerminationGracePeriodSeconds` 设置为 0。
+这种做法是不安全的，要强烈阻止。更多的解释请参考
+[强制删除 StatefulSet Pod](/zh-cn/docs/tasks/run-application/force-delete-stateful-set-pod/)。
+
+<!--
+When the nginx example above is created, three Pods will be deployed in the order
+web-0, web-1, web-2. web-1 will not be deployed before web-0 is
+[Running and Ready](/docs/user-guide/pod-states/), and web-2 will not be deployed until
+web-1 is Running and Ready. If web-0 should fail, after web-1 is Running and Ready, but before
+web-2 is launched, web-2 will not be launched until web-0 is successfully relaunched and
+becomes Running and Ready.
+-->
+在上面的 nginx 示例被创建后，会按照 web-0、web-1、web-2 的顺序部署三个 Pod。
+在 web-0 进入 [Running 和 Ready](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/)
+状态前不会部署 web-1。在 web-1 进入 Running 和 Ready 状态前不会部署 web-2。
+如果 web-1 已经处于 Running 和 Ready 状态，而 web-2 尚未部署，在此期间发生了
+web-0 运行失败，那么 web-2 将不会被部署，要等到 web-0 部署完成并进入 Running 和
+Ready 状态后，才会部署 web-2。
+
+<!--
+If a user were to scale the deployed example by patching the StatefulSet such that
+`replicas=1`, web-2 would be terminated first. web-1 would not be terminated until web-2
+is fully shutdown and deleted. If web-0 were to fail after web-2 has been terminated and
+is completely shutdown, but prior to web-1's termination, web-1 would not be terminated
+until web-0 is Running and Ready.
+-->
+如果用户想将示例中的 StatefulSet 缩放为 `replicas=1`，首先被终止的是 web-2。
+在 web-2 没有被完全停止和删除前，web-1 不会被终止。
+当 web-2 已被终止和删除、web-1 尚未被终止，如果在此期间发生 web-0 运行失败，
+那么就不会终止 web-1，必须等到 web-0 进入 Running 和 Ready 状态后才会终止 web-1。
+
+<!--
+### Pod Management Policies
+
+StatefulSet allows you to relax its ordering guarantees while
+preserving its uniqueness and identity guarantees via its `.spec.podManagementPolicy` field.
+-->
+### Pod 管理策略 {#pod-management-policies}
+
+StatefulSet 允许你放宽其排序保证，
+同时通过它的 `.spec.podManagementPolicy` 域保持其唯一性和身份保证。
+
+<!--
+#### OrderedReady Pod Management
+
+`OrderedReady` pod management is the default for StatefulSets. It implements the behavior
+described [above](#deployment-and-scaling-guarantees).
+-->
+#### OrderedReady Pod 管理   {#orderedready-pod-management}
+
+`OrderedReady` Pod 管理是 StatefulSet 的默认设置。它实现了
+[上面](#deployment-and-scaling-guarantees)描述的功能。
+
+<!--
+#### Parallel Pod Management
+
+`Parallel` pod management tells the StatefulSet controller to launch or
+terminate all Pods in parallel, and to not wait for Pods to become Running
+and Ready or completely terminated prior to launching or terminating another
+Pod. This option only affects the behavior for scaling operations. Updates are not affected.
+
+-->
+#### 并行 Pod 管理   {#parallel-pod-management}
+
+`Parallel` Pod 管理让 StatefulSet 控制器并行的启动或终止所有的 Pod，
+启动或者终止其他 Pod 前，无需等待 Pod 进入 Running 和 ready 或者完全停止状态。
+这个选项只会影响扩缩操作的行为，更新则不会被影响。
+
+<!--
+## Update Strategies
+
+A StatefulSet's `.spec.updateStrategy` field allows you to configure
+and disable automated rolling updates for containers, labels, resource request/limits, and
+annotations for the Pods in a StatefulSet. There are two possible values:
+-->
+## 更新策略  {#update-strategies}
+
+StatefulSet 的 `.spec.updateStrategy` 字段让
+你可以配置和禁用掉自动滚动更新 Pod 的容器、标签、资源请求或限制、以及注解。
+有两个允许的值：
+<!--
+`OnDelete`
+: When a StatefulSet's `.spec.updateStrategy.type` is set to `OnDelete`,
+  the StatefulSet controller will not automatically update the Pods in a
+  StatefulSet. Users must manually delete Pods to cause the controller to
+  create new Pods that reflect modifications made to a StatefulSet's `.spec.template`.
+
+`RollingUpdate`
+: The `RollingUpdate` update strategy implements automated, rolling update for the Pods in a StatefulSet. This is the default update strategy.
+-->
+`OnDelete`
+: 当 StatefulSet 的 `.spec.updateStrategy.type` 设置为 `OnDelete` 时，
+  它的控制器将不会自动更新 StatefulSet 中的 Pod。
+  用户必须手动删除 Pod 以便让控制器创建新的 Pod，以此来对 StatefulSet 的
+  `.spec.template` 的变动作出反应。
+
+`RollingUpdate`
+: `RollingUpdate` 更新策略对 StatefulSet 中的 Pod 执行自动的滚动更新。这是默认的更新策略。
+
+<!--
+## Rolling Updates
+
+When a StatefulSet's `.spec.updateStrategy.type` is set to `RollingUpdate`, the
+StatefulSet controller will delete and recreate each Pod in the StatefulSet. It will proceed
+in the same order as Pod termination (from the largest ordinal to the smallest), updating
+each Pod one at a time.
+
+The Kubernetes control plane waits until an updated Pod is Running and Ready prior
+to updating its predecessor. If you have set `.spec.minReadySeconds` (see
+[Minimum Ready Seconds](#minimum-ready-seconds)), the control plane additionally waits that
+amount of time after the Pod turns ready, before moving on.
+-->
+## 滚动更新 {#rolling-updates}
+
+当 StatefulSet 的 `.spec.updateStrategy.type` 被设置为 `RollingUpdate` 时，
+StatefulSet 控制器会删除和重建 StatefulSet 中的每个 Pod。
+它将按照与 Pod 终止相同的顺序（从最大序号到最小序号）进行，每次更新一个 Pod。
+
+Kubernetes 控制平面会等到被更新的 Pod 进入 Running 和 Ready 状态，然后再更新其前身。
+如果你设置了 `.spec.minReadySeconds`（查看[最短就绪秒数](#minimum-ready-seconds)），
+控制平面在 Pod 就绪后会额外等待一定的时间再执行下一步。
+
+<!--
+### Partitioned rolling updates {#partitions}
+
+The `RollingUpdate` update strategy can be partitioned, by specifying a
+`.spec.updateStrategy.rollingUpdate.partition`. If a partition is specified, all Pods with an
+ordinal that is greater than or equal to the partition will be updated when the StatefulSet's
+`.spec.template` is updated. All Pods with an ordinal that is less than the partition will not
+be updated, and, even if they are deleted, they will be recreated at the previous version. If a
+StatefulSet's `.spec.updateStrategy.rollingUpdate.partition` is greater than its `.spec.replicas`,
+updates to its `.spec.template` will not be propagated to its Pods.
+In most cases you will not need to use a partition, but they are useful if you want to stage an
+update, roll out a canary, or perform a phased roll out.
+-->
+### 分区滚动更新   {#partitions}
+
+通过声明 `.spec.updateStrategy.rollingUpdate.partition` 的方式，`RollingUpdate`
+更新策略可以实现分区。
+如果声明了一个分区，当 StatefulSet 的 `.spec.template` 被更新时，
+所有序号大于等于该分区序号的 Pod 都会被更新。
+所有序号小于该分区序号的 Pod 都不会被更新，并且，即使它们被删除也会依据之前的版本进行重建。
+如果 StatefulSet 的 `.spec.updateStrategy.rollingUpdate.partition` 大于它的
+`.spec.replicas`，则对它的 `.spec.template` 的更新将不会传递到它的 Pod。
+在大多数情况下，你不需要使用分区，但如果你希望进行阶段更新、执行金丝雀或执行
+分阶段上线，则这些分区会非常有用。
+
+<!--
+### Maximum unavailable Pods
+-->
+### 最大不可用 Pod   {#maximum-unavailable-pods}
+
+{{< feature-state for_k8s_version="v1.24" state="alpha" >}}
+
+<!--
+You can control the maximum number of Pods that can be unavailable during an update
+by specifying the `.spec.updateStrategy.rollingUpdate.maxUnavailable` field.
+The value can be an absolute number (for example, `5`) or a percentage of desired
+Pods (for example, `10%`). Absolute number is calculated from the percentage value
+by rounding it up. This field cannot be 0. The default setting is 1.
+-->
+你可以通过指定 `.spec.updateStrategy.rollingUpdate.maxUnavailable`
+字段来控制更新期间不可用的 Pod 的最大数量。
+该值可以是绝对值（例如，“5”）或者是期望 Pod 个数的百分比（例如，`10%`）。
+绝对值是根据百分比值四舍五入计算的。
+该字段不能为 0。默认设置为 1。
+
+<!--
+This field applies to all Pods in the range `0` to `replicas - 1`. If there is any
+unavailable Pod in the range `0` to `replicas - 1`, it will be counted towards
+`maxUnavailable`.
+-->
+该字段适用于 `0` 到 `replicas - 1` 范围内的所有 Pod。
+如果在 `0` 到 `replicas - 1` 范围内存在不可用 Pod，这类 Pod 将被计入 `maxUnavailable` 值。
+
+<!--
+{{< note >}}
+The `maxUnavailable` field is in Alpha stage and it is honored only by API servers
+that are running with the `MaxUnavailableStatefulSet`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+enabled.
+{{< /note >}}
+-->
+{{< note >}}
+`maxUnavailable` 字段处于 Alpha 阶段，仅当 API 服务器启用了 `MaxUnavailableStatefulSet`
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)时才起作用。
+{{< /note >}}
+
+<!--
+### Forced Rollback
+
+When using [Rolling Updates](#rolling-updates) with the default
+[Pod Management Policy](#pod-management-policies) (`OrderedReady`),
+it's possible to get into a broken state that requires manual intervention to repair.
+
+If you update the Pod template to a configuration that never becomes Running and
+Ready (for example, due to a bad binary or application-level configuration error),
+StatefulSet will stop the rollout and wait.
+-->
+### 强制回滚 {#forced-rollback}
+
+在默认 [Pod 管理策略](#pod-management-policies)(`OrderedReady`) 下使用
+[滚动更新](#rolling-updates)，可能进入需要人工干预才能修复的损坏状态。
+
+如果更新后 Pod 模板配置进入无法运行或就绪的状态（例如，
+由于错误的二进制文件或应用程序级配置错误），StatefulSet 将停止回滚并等待。
+
+<!--
+In this state, it's not enough to revert the Pod template to a good configuration.
+Due to a [known issue](https://github.com/kubernetes/kubernetes/issues/67250),
+StatefulSet will continue to wait for the broken Pod to become Ready
+(which never happens) before it will attempt to revert it back to the working
+configuration.
+
+After reverting the template, you must also delete any Pods that StatefulSet had
+already attempted to run with the bad configuration.
+StatefulSet will then begin to recreate the Pods using the reverted template.
+-->
+在这种状态下，仅将 Pod 模板还原为正确的配置是不够的。由于
+[已知问题](https://github.com/kubernetes/kubernetes/issues/67250)，StatefulSet
+将继续等待损坏状态的 Pod 准备就绪（永远不会发生），然后再尝试将其恢复为正常工作配置。
+
+恢复模板后，还必须删除 StatefulSet 尝试使用错误的配置来运行的 Pod。这样，
+StatefulSet 才会开始使用被还原的模板来重新创建 Pod。
+
+<!-- ## PersistentVolumeClaim retention -->
+## PersistentVolumeClaim 保留  {#persistentvolumeclaim-retention}
+
+{{< feature-state for_k8s_version="v1.23" state="alpha" >}}
+
+<!--
+The optional `.spec.persistentVolumeClaimRetentionPolicy` field controls if
+and how PVCs are deleted during the lifecycle of a StatefulSet. You must enable the
+`StatefulSetAutoDeletePVC` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+to use this field. Once enabled, there are two policies you can configure for each
+StatefulSet:
+-->
+在 StatefulSet 的生命周期中，可选字段
+`.spec.persistentVolumeClaimRetentionPolicy` 控制是否删除以及如何删除 PVC。
+使用该字段，你必须启用 `StatefulSetAutoDeletePVC`
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)。
+启用后，你可以为每个 StatefulSet 配置两个策略：
+
+<!--
+`whenDeleted`
+: configures the volume retention behavior that applies when the StatefulSet is deleted
+
+`whenScaled`
+: configures the volume retention behavior that applies when the replica count of
+  the StatefulSet   is reduced; for example, when scaling down the set.
+  
+For each policy that you can configure, you can set the value to either `Delete` or `Retain`.
+-->
+`whenDeleted`
+: 配置删除 StatefulSet 时应用的卷保留行为。
+
+`whenScaled`
+: 配置当 StatefulSet 的副本数减少时应用的卷保留行为；例如，缩小集合时。
+
+对于你可以配置的每个策略，你可以将值设置为 `Delete` 或 `Retain`。
+
+<!--
+`Delete`
+: The PVCs created from the StatefulSet `volumeClaimTemplate` are deleted for each Pod
+  affected by the policy. With the `whenDeleted` policy all PVCs from the
+  `volumeClaimTemplate` are deleted after their Pods have been deleted. With the
+  `whenScaled` policy, only PVCs corresponding to Pod replicas being scaled down are
+  deleted, after their Pods have been deleted.
+-->
+`Delete`
+: 对于受策略影响的每个 Pod，基于 StatefulSet 的 `volumeClaimTemplate` 字段创建的 PVC 都会被删除。
+  使用 `whenDeleted` 策略，所有来自 `volumeClaimTemplate` 的 PVC 在其 Pod 被删除后都会被删除。
+  使用 `whenScaled` 策略，只有与被缩减的 Pod 副本对应的 PVC 在其 Pod 被删除后才会被删除。
+
+<!--
+`Retain` (default)
+: PVCs from the `volumeClaimTemplate` are not affected when their Pod is
+  deleted. This is the behavior before this new feature.
+-->
+`Retain`（默认）
+: 来自 `volumeClaimTemplate` 的 PVC 在 Pod 被删除时不受影响。这是此新功能之前的行为。
+
+<!--
+Bear in mind that these policies **only** apply when Pods are being removed due to the
+StatefulSet being deleted or scaled down. For example, if a Pod associated with a StatefulSet
+fails due to node failure, and the control plane creates a replacement Pod, the StatefulSet
+retains the existing PVC.  The existing volume is unaffected, and the cluster will attach it to
+the node where the new Pod is about to launch.
+
+The default for policies is `Retain`, matching the StatefulSet behavior before this new feature.
+
+Here is an example policy.
+-->
+请记住，这些策略**仅**适用于由于 StatefulSet 被删除或被缩小而被删除的 Pod。
+例如，如果与 StatefulSet 关联的 Pod 由于节点故障而失败，
+并且控制平面创建了替换 Pod，则 StatefulSet 保留现有的 PVC。
+现有卷不受影响，集群会将其附加到新 Pod 即将启动的节点上。
+
+策略的默认值为 `Retain`，与此新功能之前的 StatefulSet 行为相匹配。
+
+这是一个示例策略。
+
+```yaml
+apiVersion: apps/v1
+kind: StatefulSet
+...
+spec:
+  persistentVolumeClaimRetentionPolicy:
+    whenDeleted: Retain
+    whenScaled: Delete
+...
+```
+
+<!--
+The StatefulSet {{<glossary_tooltip text="controller" term_id="controller">}} adds [owner
+references](/docs/concepts/overview/working-with-objects/owners-dependents/#owner-references-in-object-specifications)
+to its PVCs, which are then deleted by the {{<glossary_tooltip text="garbage collector"
+term_id="garbage-collection">}} after the Pod is terminated. This enables the Pod to
+cleanly unmount all volumes before the PVCs are deleted (and before the backing PV and
+volume are deleted, depending on the retain policy).  When you set the `whenDeleted`
+policy to `Delete`, an owner reference to the StatefulSet instance is placed on all PVCs
+associated with that StatefulSet. 
+-->
+StatefulSet {{<glossary_tooltip text="控制器" term_id="controller">}}为其 PVC 添加了
+[属主引用](/zh-cn/docs/concepts/overview/working-with-objects/owners-dependents/#owner-references-in-object-specifications)，
+这些 PVC 在 Pod 终止后被{{<glossary_tooltip text="垃圾回收器" term_id="garbage-collection">}}删除。
+这使 Pod 能够在删除 PVC 之前（以及在删除后备 PV 和卷之前，取决于保留策略）干净地卸载所有卷。
+当你设置 `whenDeleted` 删除策略，对 StatefulSet 实例的属主引用放置在与该 StatefulSet 关联的所有 PVC 上。
+
+<!--
+The `whenScaled` policy must delete PVCs only when a Pod is scaled down, and not when a
+Pod is deleted for another reason. When reconciling, the StatefulSet controller compares
+its desired replica count to the actual Pods present on the cluster. Any StatefulSet Pod
+whose id greater than the replica count is condemned and marked for deletion. If the
+`whenScaled` policy is `Delete`, the condemned Pods are first set as owners to the
+associated StatefulSet template PVCs, before the Pod is deleted. This causes the PVCs
+to be garbage collected after only the condemned Pods have terminated.
+-->
+`whenScaled` 策略必须仅在 Pod 缩减时删除 PVC，而不是在 Pod 因其他原因被删除时删除。
+执行协调操作时，StatefulSet 控制器将其所需的副本数与集群上实际存在的 Pod 进行比较。
+对于 StatefulSet 中的所有 Pod 而言，如果其 ID 大于副本数，则将被废弃并标记为需要删除。
+如果 `whenScaled` 策略是 `Delete`，则在删除 Pod 之前，
+首先将已销毁的 Pod 设置为与 StatefulSet 模板对应的 PVC 的属主。
+这会导致 PVC 仅在已废弃的 Pod 终止后被垃圾收集。
+
+<!--
+This means that if the controller crashes and restarts, no Pod will be deleted before its
+owner reference has been updated appropriate to the policy. If a condemned Pod is
+force-deleted while the controller is down, the owner reference may or may not have been
+set up, depending on when the controller crashed. It may take several reconcile loops to
+update the owner references, so some condemned Pods may have set up owner references and
+other may not. For this reason we recommend waiting for the controller to come back up,
+which will verify owner references before terminating Pods. If that is not possible, the
+operator should verify the owner references on PVCs to ensure the expected objects are
+deleted when Pods are force-deleted.
+-->
+这意味着如果控制器崩溃并重新启动，在其属主引用更新到适合策略的 Pod 之前，不会删除任何 Pod。
+如果在控制器关闭时强制删除了已废弃的 Pod，则属主引用可能已被设置，也可能未被设置，具体取决于控制器何时崩溃。
+更新属主引用可能需要几个协调循环，因此一些已废弃的 Pod 可能已经被设置了属主引用，而其他可能没有。
+出于这个原因，我们建议等待控制器恢复，控制器将在终止 Pod 之前验证属主引用。
+如果这不可行，则操作员应验证 PVC 上的属主引用，以确保在强制删除 Pod 时删除预期的对象。
+
+<!--
+### Replicas
+
+`.spec.replicas` is an optional field that specifies the number of desired Pods. It defaults to 1.
+
+Should you manually scale a deployment, example via `kubectl scale
+statefulset statefulset --replicas=X`, and then you update that StatefulSet
+based on a manifest (for example: by running `kubectl apply -f
+statefulset.yaml`), then applying that manifest overwrites the manual scaling
+that you previously did.
+-->
+### 副本数 {#replicas}
+
+`.spec.replicas` 是一个可选字段，用于指定所需 Pod 的数量。它的默认值为 1。
+
+如果你手动扩缩已部署的负载，例如通过 `kubectl scale statefulset statefulset --replicas=X`，
+然后根据清单更新 StatefulSet（例如：通过运行 `kubectl apply -f statefulset.yaml`），
+那么应用该清单的操作会覆盖你之前所做的手动扩缩。
+
+<!--
+If a [HorizontalPodAutoscaler](/docs/tasks/run-application/horizontal-pod-autoscale/)
+(or any similar API for horizontal scaling) is managing scaling for a
+Statefulset, don't set `.spec.replicas`. Instead, allow the Kubernetes
+{{<glossary_tooltip text="control plane" term_id="control-plane" >}} to manage
+the `.spec.replicas` field automatically.
+-->
+如果 [HorizontalPodAutoscaler](/zh-cn/docs/tasks/run-application/horizontal-pod-autoscale/)
+（或任何类似的水平缩放 API）正在管理 StatefulSet 的缩放，
+请不要设置 `.spec.replicas`。
+相反，允许 Kubernetes 控制平面自动管理 `.spec.replicas` 字段。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* Learn about [Pods](/docs/concepts/workloads/pods).
+* Find out how to use StatefulSets
+  * Follow an example of [deploying a stateful application](/docs/tutorials/stateful-application/basic-stateful-set/).
+  * Follow an example of [deploying Cassandra with Stateful Sets](/docs/tutorials/stateful-application/cassandra/).
+  * Follow an example of [running a replicated stateful application](/docs/tasks/run-application/run-replicated-stateful-application/).
+  * Learn how to [scale a StatefulSet](/docs/tasks/run-application/scale-stateful-set/).
+  * Learn what's involved when you [delete a StatefulSet](/docs/tasks/run-application/delete-stateful-set/).
+  * Learn how to [configure a Pod to use a volume for storage](/docs/tasks/configure-pod-container/configure-volume-storage/).
+  * Learn how to [configure a Pod to use a PersistentVolume for storage](/docs/tasks/configure-pod-container/configure-persistent-volume-storage/).
+* `StatefulSet` is a top-level resource in the Kubernetes REST API.
+  Read the {{< api-reference page="workload-resources/stateful-set-v1" >}}
+  object definition to understand the API for stateful sets.
+* Read about [PodDisruptionBudget](/docs/concepts/workloads/pods/disruptions/) and how
+  you can use it to manage application availability during disruptions.
+-->
+* 了解 [Pod](/zh-cn/docs/concepts/workloads/pods)。
+* 了解如何使用 StatefulSet
+  * 跟随示例[部署有状态应用](/zh-cn/docs/tutorials/stateful-application/basic-stateful-set/)。
+  * 跟随示例[使用 StatefulSet 部署 Cassandra](/zh-cn/docs/tutorials/stateful-application/cassandra/)。
+  * 跟随示例[运行多副本的有状态应用程序](/zh-cn/docs/tasks/run-application/run-replicated-stateful-application/)。
+  * 了解如何[扩缩 StatefulSet](/zh-cn/docs/tasks/run-application/scale-stateful-set/)。
+  * 了解[删除 StatefulSet](/zh-cn/docs/tasks/run-application/delete-stateful-set/)涉及到的操作。
+  * 了解如何[配置 Pod 以使用卷进行存储](/zh-cn/docs/tasks/configure-pod-container/configure-volume-storage/)。
+  * 了解如何[配置 Pod 以使用 PersistentVolume 作为存储](/zh-cn/docs/tasks/configure-pod-container/configure-persistent-volume-storage/)。
+* `StatefulSet` 是 Kubernetes REST API 中的顶级资源。阅读 {{< api-reference page="workload-resources/stateful-set-v1" >}}
+   对象定义理解关于该资源的 API。
+* 阅读 [Pod 干扰预算（Disruption Budget）](/zh-cn/docs/concepts/workloads/pods/disruptions/)，了解如何在干扰下运行高度可用的应用。
diff --git a/content/zh-cn/docs/concepts/workloads/controllers/ttlafterfinished.md b/content/zh-cn/docs/concepts/workloads/controllers/ttlafterfinished.md
new file mode 100644
index 0000000000..7887151b9a
--- /dev/null
+++ b/content/zh-cn/docs/concepts/workloads/controllers/ttlafterfinished.md
@@ -0,0 +1,128 @@
+---
+title: 已完成 Job 的自动清理
+content_type: concept
+weight: 70
+---
+<!--
+title: Automatic Clean-up for Finished Jobs
+content_type: concept
+weight: 70
+-->
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
+
+<!--
+TTL-after-finished {{<glossary_tooltip text="controller" term_id="controller">}} provides a 
+TTL (time to live) mechanism to limit the lifetime of resource objects that 
+have finished execution. TTL controller only handles 
+{{< glossary_tooltip text="Jobs" term_id="job" >}}.
+-->
+TTL-after-finished {{<glossary_tooltip text="控制器" term_id="controller">}} 提供了一种 TTL 机制来限制已完成执行的资源对象的生命周期。
+TTL 控制器目前只处理 {{< glossary_tooltip text="Job" term_id="job" >}}。
+
+
+<!-- body -->
+
+<!--
+## TTL-after-finished Controller
+
+The TTL-after-finished controller is only supported for Jobs. A cluster operator can use this feature to clean
+up finished Jobs (either `Complete` or `Failed`) automatically by specifying the
+`.spec.ttlSecondsAfterFinished` field of a Job, as in this
+[example](/docs/concepts/workloads/controllers/job/#clean-up-finished-jobs-automatically).
+-->
+## TTL-after-finished 控制器
+
+TTL-after-finished 控制器只支持 Job。集群操作员可以通过指定 Job 的 `.spec.ttlSecondsAfterFinished`
+字段来自动清理已结束的作业（`Complete` 或 `Failed`），如
+[示例](/zh-cn/docs/concepts/workloads/controllers/job/#clean-up-finished-jobs-automatically)
+所示。
+
+<!--
+The TTL-after-finished controller will assume that a job is eligible to be cleaned up
+TTL seconds after the job has finished, in other words, when the TTL has expired. When the
+TTL-after-finished controller cleans up a job, it will delete it cascadingly, that is to say it will delete
+its dependent objects together with it. Note that when the job is deleted,
+its lifecycle guarantees, such as finalizers, will be honored.
+-->
+TTL-after-finished 控制器假设作业能在执行完成后的 TTL 秒内被清理，也就是当 TTL 过期后。
+当 TTL 控制器清理作业时，它将做级联删除操作，即删除资源对象的同时也删除其依赖对象。
+注意，当资源被删除时，由该资源的生命周期保证其终结器（Finalizers）等被执行。
+
+<!--
+The TTL seconds can be set at any time. Here are some examples for setting the
+`.spec.ttlSecondsAfterFinished` field of a Job:
+-->
+可以随时设置 TTL 秒。以下是设置 Job 的 `.spec.ttlSecondsAfterFinished` 字段的一些示例：
+
+<!--
+* Specify this field in the job manifest, so that a Job can be cleaned up
+  automatically some time after it finishes.
+* Set this field of existing, already finished jobs, to adopt this new feature.
+* Use a
+  [mutating admission webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks)
+  to set this field dynamically at job creation time. Cluster administrators can
+  use this to enforce a TTL policy for finished jobs.
+* Use a
+  [mutating admission webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks)
+  to set this field dynamically after the job has finished, and choose
+  different TTL values based on job status, labels, etc.
+-->
+* 在作业清单（manifest）中指定此字段，以便 Job 在完成后的某个时间被自动清除。
+* 将此字段设置为现有的、已完成的作业，以采用此新功能。
+* 在创建作业时使用 [mutating admission webhook](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks)
+  动态设置该字段。集群管理员可以使用它对完成的作业强制执行 TTL 策略。
+* 使用 [mutating admission webhook](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks)
+  在作业完成后动态设置该字段，并根据作业状态、标签等选择不同的 TTL 值。
+
+<!--
+## Caveat
+
+### Updating TTL Seconds
+
+Note that the TTL period, e.g. `.spec.ttlSecondsAfterFinished` field of Jobs,
+can be modified after the job is created or has finished. However, once the
+Job becomes eligible to be deleted (when the TTL has expired), the system won't
+guarantee that the Jobs will be kept, even if an update to extend the TTL
+returns a successful API response.
+-->
+## 警告
+
+### 更新 TTL 秒数
+
+请注意，在创建 Job 或已经执行结束后，仍可以修改其 TTL 周期，例如 Job 的
+`.spec.ttlSecondsAfterFinished` 字段。
+但是一旦 Job 变为可被删除状态（当其 TTL 已过期时），即使你通过 API 增加其 TTL
+时长得到了成功的响应，系统也不保证 Job 将被保留。
+
+<!--
+### Time Skew
+
+Because TTL-after-finished controller uses timestamps stored in the Kubernetes resources to
+determine whether the TTL has expired or not, this feature is sensitive to time
+skew in the cluster, which may cause TTL-after-finished controller to clean up resource objects
+at the wrong time.
+-->
+### 时间偏差  {#time-skew}
+
+由于 TTL-after-finished 控制器使用存储在 Kubernetes 资源中的时间戳来确定 TTL 是否已过期，
+因此该功能对集群中的时间偏差很敏感，这可能导致 TTL-after-finished 控制器在错误的时间清理资源对象。
+
+<!--
+Clocks aren't always correct, but the difference should be
+very small. Please be aware of this risk when setting a non-zero TTL.
+-->
+时钟并不总是如此正确，但差异应该很小。
+设置非零 TTL 时请注意避免这种风险。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* [Clean up Jobs automatically](/docs/concepts/workloads/controllers/jobs-run-to-completion/#clean-up-finished-jobs-automatically)
+* [Design doc](https://github.com/kubernetes/enhancements/blob/master/keps/sig-apps/592-ttl-after-finish/README.md)
+-->
+* [自动清理 Job](/zh-cn/docs/concepts/workloads/controllers/job/#clean-up-finished-jobs-automatically)
+* [设计文档](https://github.com/kubernetes/enhancements/blob/master/keps/sig-apps/592-ttl-after-finish/README.md)
+
diff --git a/content/zh/docs/concepts/workloads/pods/_index.md b/content/zh-cn/docs/concepts/workloads/pods/_index.md
similarity index 70%
rename from content/zh/docs/concepts/workloads/pods/_index.md
rename to content/zh-cn/docs/concepts/workloads/pods/_index.md
index 17d2efd32c..afd9ecdef4 100644
--- a/content/zh/docs/concepts/workloads/pods/_index.md
+++ b/content/zh-cn/docs/concepts/workloads/pods/_index.md
@@ -1,5 +1,5 @@
 ---
-title: Pods
+title: Pod
 content_type: concept
 weight: 10
 no_list: true
@@ -33,16 +33,15 @@ application-specific "logical host": it contains one or more application
 containers which are relatively tightly coupled. 
 In non-cloud contexts, applications executed on the same physical or virtual machine are analogous to cloud applications executed on the same logical host.
 -->
-_Pod_ 是可以在 Kubernetes 中创建和管理的、最小的可部署的计算单元。
+**Pod** 是可以在 Kubernetes 中创建和管理的、最小的可部署的计算单元。
 
-_Pod_ （就像在鲸鱼荚或者豌豆荚中）是一组（一个或多个）
+**Pod**（就像在鲸鱼荚或者豌豆荚中）是一组（一个或多个）
 {{< glossary_tooltip text="容器" term_id="container" >}}；
 这些容器共享存储、网络、以及怎样运行这些容器的声明。
 Pod 中的内容总是并置（colocated）的并且一同调度，在共享的上下文中运行。
-Pod 所建模的是特定于应用的“逻辑主机”，其中包含一个或多个应用容器，
-这些容器是相对紧密的耦合在一起的。
-在非云环境中，在相同的物理机或虚拟机上运行的应用类似于
-在同一逻辑主机上运行的云应用。
+Pod 所建模的是特定于应用的 “逻辑主机”，其中包含一个或多个应用容器，
+这些容器相对紧密地耦合在一起。
+在非云环境中，在相同的物理机或虚拟机上运行的应用类似于在同一逻辑主机上运行的云应用。
 
 <!--
 As well as application containers, a Pod can contain
@@ -52,8 +51,8 @@ during Pod startup. You can also inject
 for debugging if your cluster offers this.
 -->
 除了应用容器，Pod 还可以包含在 Pod 启动期间运行的
-[Init 容器](/zh/docs/concepts/workloads/pods/init-containers/)。
-你也可以在集群中支持[临时性容器](/zh/docs/concepts/workloads/pods/ephemeral-containers/)
+[Init 容器](/zh-cn/docs/concepts/workloads/pods/init-containers/)。
+你也可以在集群中支持[临时性容器](/zh-cn/docs/concepts/workloads/pods/ephemeral-containers/)
 的情况下，为调试的目的注入临时性容器。
 
 <!-- body -->
@@ -82,16 +81,46 @@ further sub-isolations applied.
 In terms of Docker concepts, a Pod is similar to a group of Docker containers
 with shared namespaces and shared filesystem volumes.
 -->
-Pod 的共享上下文包括一组 Linux 名字空间、控制组（cgroup）和可能一些其他的隔离
-方面，即用来隔离 Docker 容器的技术。
+Pod 的共享上下文包括一组 Linux 名字空间、控制组（cgroup）和可能一些其他的隔离方面，
+即用来隔离 Docker 容器的技术。
 在 Pod 的上下文中，每个独立的应用可能会进一步实施隔离。
 
-就 Docker 概念的术语而言，Pod 类似于共享名字空间和文件系统卷的一组 Docker
-容器。
+就 Docker 概念的术语而言，Pod 类似于共享名字空间和文件系统卷的一组 Docker 容器。
 
 <!--
 ## Using Pods
 
+The following is an example of a Pod which consists of a container running the image `nginx:1.14.2`.
+
+{{< codenew file="pods/simple-pod.yaml" >}}
+
+To create the Pod shown above, run the following command:
+-->
+## 使用 Pod   {#using-pods}
+
+下面是一个 Pod 示例，它由一个运行镜像 `nginx:1.14.2` 的容器组成。
+
+{{< codenew file="pods/simple-pod.yaml" >}}
+
+要创建上面显示的 Pod，请运行以下命令：
+
+```shell
+kubectl apply -f https://k8s.io/examples/pods/simple-pod.yaml
+```
+
+<!--
+Pods are generally not created directly and are created using workload resources.
+See [Working with Pods](#working-with-pods) for more information on how Pods are used
+with workload resources.
+
+### Workload resources for managing pods
+-->
+Pod 通常不是直接创建的，而是使用工作负载资源创建的。
+有关如何将 Pod 用于工作负载资源的更多信息，请参阅[使用 Pod](#working-with-pods)。
+
+### 用于管理 pod 的工作负载资源
+
+<!--
 Usually you don't need to create Pods directly, even singleton Pods. 
 Instead, create them using workload resources such as {{< glossary_tooltip text="Deployment"
 term_id="deployment" >}} or {{< glossary_tooltip text="Job" term_id="job" >}}.
@@ -100,15 +129,12 @@ If your Pods need to track state, consider the
 
 Pods in a Kubernetes cluster are used in two main ways:
 -->
-## 使用 Pod   {#using-pods}
-
 通常你不需要直接创建 Pod，甚至单实例 Pod。
 相反，你会使用诸如
 {{< glossary_tooltip text="Deployment" term_id="deployment" >}} 或
-{{< glossary_tooltip text="Job" term_id="job" >}} 这类工作负载资源
-来创建 Pod。如果 Pod 需要跟踪状态，
-可以考虑 {{< glossary_tooltip text="StatefulSet" term_id="statefulset" >}}
-资源。
+{{< glossary_tooltip text="Job" term_id="job" >}} 这类工作负载资源来创建 Pod。
+如果 Pod 需要跟踪状态，可以考虑
+{{< glossary_tooltip text="StatefulSet" term_id="statefulset" >}} 资源。
 
 Kubernetes 集群中的 Pod 主要有两种用法：
 
@@ -130,12 +156,12 @@ Kubernetes 集群中的 Pod 主要有两种用法：
   relatively advanced use case. You should use this pattern only in specific
   instances in which your containers are tightly coupled.
 -->
-* **运行单个容器的 Pod**。"每个 Pod 一个容器"模型是最常见的 Kubernetes 用例；
+* **运行单个容器的 Pod**。"每个 Pod 一个容器" 模型是最常见的 Kubernetes 用例；
   在这种情况下，可以将 Pod 看作单个容器的包装器，并且 Kubernetes 直接管理 Pod，而不是容器。
 * **运行多个协同工作的容器的 Pod**。
   Pod 可能封装由多个紧密耦合且需要共享资源的共处容器组成的应用程序。
   这些位于同一位置的容器可能形成单个内聚的服务单元 —— 一个容器将文件从共享卷提供给公众，
-  而另一个单独的“边车”（sidecar）容器则刷新或更新这些文件。
+  而另一个单独的 “边车”（sidecar）容器则刷新或更新这些文件。
   Pod 将这些容器和存储资源打包为一个可管理的实体。
 
   {{< note >}}
@@ -156,9 +182,9 @@ Kubernetes uses workload resources, and their controllers, to implement applicat
 scaling and auto-healing.
 -->
 
-每个 Pod 都旨在运行给定应用程序的单个实例。如果希望横向扩展应用程序（例如，运行多个实例
-以提供更多的资源），则应该使用多个 Pod，每个实例使用一个 Pod。
-在 Kubernetes 中，这通常被称为 _副本（Replication）_。
+每个 Pod 都旨在运行给定应用程序的单个实例。如果希望横向扩展应用程序
+（例如，运行多个实例以提供更多的资源），则应该使用多个 Pod，每个实例使用一个 Pod。
+在 Kubernetes 中，这通常被称为**副本（Replication）**。
 通常使用一种工作负载资源及其{{< glossary_tooltip text="控制器" term_id="controller" >}}
 来创建和管理一组 Pod 副本。
 
@@ -187,9 +213,9 @@ that updates those files from a remote source, as in the following diagram:
 -->
 
 例如，你可能有一个容器，为共享卷中的文件提供 Web 服务器支持，以及一个单独的
-“sidecar（挂斗）”容器负责从远端更新这些文件，如下图所示：
+"边车 (sidercar)" 容器负责从远端更新这些文件，如下图所示：
 
-{{< figure src="/images/docs/pod.svg" alt="example pod diagram" width="50%" >}}
+{{< figure src="/images/docs/pod.svg" alt="Pod 创建示意图" class="diagram-medium" >}}
 
 <!--
 Some Pods have {{< glossary_tooltip text="init containers" term_id="init-container" >}}
@@ -199,12 +225,11 @@ Init containers run and complete before the app containers are started.
 Pods natively provide two kinds of shared resources for their constituent containers:
 [networking](#pod-networking) and [storage](#pod-storage).
 -->
-有些 Pod 具有 {{< glossary_tooltip text="Init 容器" term_id="init-container" >}} 和
+有些 Pod 具有 {{< glossary_tooltip text="Init 容器" term_id="init-container" >}}和
 {{< glossary_tooltip text="应用容器" term_id="app-container" >}}。
 Init 容器会在启动应用容器之前运行并完成。
 
-Pod 天生地为其成员容器提供了两种共享资源：[网络](#pod-networking)和
-[存储](#pod-storage)。
+Pod 天生地为其成员容器提供了两种共享资源：[网络](#pod-networking)和[存储](#pod-storage)。
 
 <!--
 ## Working with Pods
@@ -221,10 +246,9 @@ the Pod is *evicted* for lack of resources, or the node fails.
 
 你很少在 Kubernetes 中直接创建一个个的 Pod，甚至是单实例（Singleton）的 Pod。
 这是因为 Pod 被设计成了相对临时性的、用后即抛的一次性实体。
-当 Pod 由你或者间接地由 {{< glossary_tooltip text="控制器" term_id="controller" >}}
+当 Pod 由你或者间接地由{{< glossary_tooltip text="控制器" term_id="controller" >}}
 创建时，它被调度在集群中的{{< glossary_tooltip text="节点" term_id="node" >}}上运行。
-Pod 会保持在该节点上运行，直到 Pod 结束执行、Pod 对象被删除、Pod 因资源不足而被
-*驱逐* 或者节点失效为止。
+Pod 会保持在该节点上运行，直到 Pod 结束执行、Pod 对象被删除、Pod 因资源不足而被**驱逐**或者节点失效为止。
 
 <!--
 Restarting a container in a Pod should not be confused with restarting a Pod. A Pod
@@ -242,7 +266,7 @@ When you create the manifest for a Pod object, make sure the name specified is a
 [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 -->
 当你为 Pod 对象创建清单时，要确保所指定的 Pod 名称是合法的
-[DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
 
 <!--
 ### Pods and controllers
@@ -279,15 +303,15 @@ PodTemplates are specifications for creating Pods, and are included in workload
 [Jobs](/docs/concepts/workloads/controllers/job/), and
 [DaemonSets](/docs/concepts/workloads/controllers/daemonset/).
 -->
-### Pod 模版    {#pod-templates}
+### Pod 模板    {#pod-templates}
 
 {{< glossary_tooltip text="负载" term_id="workload" >}}资源的控制器通常使用
-_Pod 模板（Pod Template）_ 来替你创建 Pod 并管理它们。
+**Pod 模板（Pod Template）**来替你创建 Pod 并管理它们。
 
 Pod 模板是包含在工作负载对象中的规范，用来创建 Pod。这类负载资源包括
-[Deployment](/zh/docs/concepts/workloads/controllers/deployment/)、
-[Job](/zh/docs/concepts/workloads/controllers/job/) 和
-[DaemonSets](/zh/docs/concepts/workloads/controllers/daemonset/)等。
+[Deployment](/zh-cn/docs/concepts/workloads/controllers/deployment/)、
+[Job](/zh-cn/docs/concepts/workloads/controllers/job/) 和
+[DaemonSets](/zh-cn/docs/concepts/workloads/controllers/daemonset/) 等。
 
 <!--
 Each controller for a workload resource uses the `PodTemplate` inside the workload
@@ -310,14 +334,14 @@ metadata:
   name: hello
 spec:
   template:
-    # 这里是 Pod 模版
+    # 这里是 Pod 模板
     spec:
       containers:
       - name: hello
-        image: busybox
+        image: busybox:1.28
         command: ['sh', '-c', 'echo "Hello, Kubernetes!" && sleep 3600']
       restartPolicy: OnFailure
-    # 以上为 Pod 模版
+    # 以上为 Pod 模板
 ```
 
 <!--
@@ -330,13 +354,13 @@ pod template for each Deployment object. If the template is updated, the Deploym
 to remove the existing Pods and create new Pods based on the updated template. Each workload
 resource implements its own rules for handling changes to the Pod template.
 -->
-修改 Pod 模版或者切换到新的 Pod 模版都不会对已经存在的 Pod 起作用。
-Pod 不会直接收到模版的更新。相反，
-新的 Pod 会被创建出来，与更改后的 Pod 模版匹配。
+修改 Pod 模板或者切换到新的 Pod 模板都不会对已经存在的 Pod 起作用。
+Pod 不会直接收到模板的更新。相反，
+新的 Pod 会被创建出来，与更改后的 Pod 模板匹配。
 
 例如，Deployment 控制器针对每个 Deployment 对象确保运行中的 Pod 与当前的 Pod
-模版匹配。如果模版被更新，则 Deployment 必须删除现有的 Pod，基于更新后的模版
-创建新的 Pod。每个工作负载资源都实现了自己的规则，用来处理对 Pod 模版的更新。
+模板匹配。如果模板被更新，则 Deployment 必须删除现有的 Pod，基于更新后的模板创建新的 Pod。
+每个工作负载资源都实现了自己的规则，用来处理对 Pod 模板的更新。
 
 <!--
 On Nodes, the {{< glossary_tooltip term_id="kubelet" text="kubelet" >}} does not
@@ -345,10 +369,10 @@ details are abstracted away. That abstraction and separation of concerns simplif
 system semantics, and makes it feasible to extend the cluster's behavior without
 changing existing code.
 -->
-在节点上，{{< glossary_tooltip term_id="kubelet" text="kubelet" >}}并不直接监测
-或管理与 Pod 模版相关的细节或模版的更新，这些细节都被抽象出来。
-这种抽象和关注点分离简化了整个系统的语义，并且使得用户可以在不改变现有代码的
-前提下就能扩展集群的行为。
+在节点上，{{< glossary_tooltip term_id="kubelet" text="kubelet" >}} 并不直接监测
+或管理与 Pod 模板相关的细节或模板的更新，这些细节都被抽象出来。
+这种抽象和关注点分离简化了整个系统的语义，
+并且使得用户可以在不改变现有代码的前提下就能扩展集群的行为。
 
 <!--
 ## Pod update and replacement
@@ -359,8 +383,8 @@ template instead of updating or patching the existing Pods.
 -->
 ## Pod 更新与替换   {#pod-update-and-replacement}
 
-正如前面章节所述，当某工作负载的 Pod 模板被改变时，控制器会基于更新的模板
-创建新的 Pod 对象而不是对现有 Pod 执行更新或者修补操作。
+正如前面章节所述，当某工作负载的 Pod 模板被改变时，
+控制器会基于更新的模板创建新的 Pod 对象而不是对现有 Pod 执行更新或者修补操作。
 
 <!--
 Kubernetes doesn't prevent you from managing Pods directly. It is possible to
@@ -394,8 +418,8 @@ Kubernetes 并不禁止你直接管理 Pod。对运行中的 Pod 的某些字段
      number.
 -->
 - Pod 的绝大多数元数据都是不可变的。例如，你不可以改变其 `namespace`、`name`、
-  `uid` 或者 `creationTimestamp` 字段；`generation` 字段是比较特别的，如果更新
-  该字段，只能增加字段取值而不能减少。
+  `uid` 或者 `creationTimestamp` 字段；`generation` 字段是比较特别的，
+  如果更新该字段，只能增加字段取值而不能减少。
 - 如果 `metadata.deletionTimestamp` 已经被设置，则不可以向 `metadata.finalizers`
   列表中添加新的条目。
 - Pod 更新不可以改变除 `spec.containers[*].image`、`spec.initContainers[*].image`、
@@ -412,7 +436,7 @@ Kubernetes 并不禁止你直接管理 Pod。对运行中的 Pod 的某些字段
 Pods enable data sharing and communication among their constituent
 containters.
 -->
-### 资源共享和通信    {#resource-sharing-and-communication}
+### 资源共享和通信 {#resource-sharing-and-communication}
 
 Pod 使它的成员容器间能够进行数据共享和通信。
 
@@ -433,7 +457,7 @@ Kubernetes implements shared storage and makes it available to Pods.
 Pod 中的所有容器都可以访问该共享卷，从而允许这些容器共享数据。
 卷还允许 Pod 中的持久数据保留下来，即使其中的容器需要重新启动。
 有关 Kubernetes 如何在 Pod 中实现共享存储并将其提供给 Pod 的更多信息，
-请参考[卷](/zh/docs/concepts/storage/)。
+请参考[卷](/zh-cn/docs/concepts/storage/)。
 
 <!--
 ### Pod networking
@@ -449,9 +473,8 @@ they must coordinate how they use the shared network resources (such as ports).
 
 每个 Pod 都在每个地址族中获得一个唯一的 IP 地址。
 Pod 中的每个容器共享网络名字空间，包括 IP 地址和网络端口。
-*Pod 内* 的容器可以使用 `localhost` 互相通信。
-当 Pod 中的容器与 *Pod 之外* 的实体通信时，它们必须协调如何使用共享的网络资源
-（例如端口）。
+**Pod 内**的容器可以使用 `localhost` 互相通信。
+当 Pod 中的容器与 **Pod 之外**的实体通信时，它们必须协调如何使用共享的网络资源（例如端口）。
 
 <!--
 Within a Pod, containers share an IP address and port space, and
@@ -459,14 +482,13 @@ can find each other via `localhost`. The containers in a Pod can also communicat
 with each other using standard inter-process communications like SystemV semaphores
 or POSIX shared memory.  Containers in different Pods have distinct IP addresses
 and can not communicate by IPC without
-[special configuration](/docs/concepts/policy/pod-security-policy/).
+and can not communicate by OS-level IPC without special configuration.
 Containers that want to interact with a container running in a different Pod can
 use IP networking to communicate.
 -->
 在同一个 Pod 内，所有容器共享一个 IP 地址和端口空间，并且可以通过 `localhost` 发现对方。
 他们也能通过如 SystemV 信号量或 POSIX 共享内存这类标准的进程间通信方式互相通信。
-不同 Pod 中的容器的 IP 地址互不相同，没有
-[特殊配置](/zh/docs/concepts/policy/pod-security-policy/) 就不能使用 IPC 进行通信。
+不同 Pod 中的容器的 IP 地址互不相同，没有特殊配置，无法通过 OS 级 IPC 进行通信就不能使用 IPC 进行通信。
 如果某容器希望与运行于其他 Pod 中的容器通信，可以通过 IP 联网的方式实现。
 
 <!--
@@ -475,30 +497,34 @@ Containers within the Pod see the system hostname as being the same as the confi
 section.
 -->
 Pod 中的容器所看到的系统主机名与为 Pod 配置的 `name` 属性值相同。
-[网络](/zh/docs/concepts/cluster-administration/networking/)部分提供了更多有关此内容的信息。
+[网络](/zh-cn/docs/concepts/cluster-administration/networking/)部分提供了更多有关此内容的信息。
 
 <!--
 ## Privileged mode for containers
 
-Any container in a Pod can enable privileged mode, using the `privileged` flag on
-the [security context](/docs/tasks/configure-pod-container/security-context/) of the container spec. This is useful for containers that want to use operating system administrative capabilities such as manipulating the network stack or accessing hardware devices.
-Processes within a privileged container get almost the same privileges that are available to processes outside a container.
+In Linux, any container in a Pod can enable privileged mode using the `privileged` (Linux) flag on the [security context](/docs/tasks/configure-pod-container/security-context/) of the container spec. This is useful for containers that want to use operating system administrative capabilities such as manipulating the network stack or accessing hardware devices.
+
+If your cluster has the `WindowsHostProcessContainers` feature enabled, you can create a [Windows HostProcess pod](/docs/tasks/configure-pod-container/create-hostprocess-pod) by setting the `windowsOptions.hostProcess` flag on the security context of the pod spec. All containers in these pods must run as Windows HostProcess containers. HostProcess pods run directly on the host and can also be used to perform administrative tasks as is done with Linux privileged containers.
 -->
 ## 容器的特权模式     {#privileged-mode-for-containers}
 
-Pod 中的任何容器都可以使用容器规约中的
-[安全性上下文](/zh/docs/tasks/configure-pod-container/security-context/)中的
-`privileged` 参数启用特权模式。
-这对于想要使用操作系统管理权能（Capabilities，如操纵网络堆栈和访问设备）
-的容器很有用。
-容器内的进程几乎可以获得与容器外的进程相同的特权。
+在 Linux 中，Pod 中的任何容器都可以使用容器规约中的
+[安全性上下文](/zh-cn/docs/tasks/configure-pod-container/security-context/)中的
+`privileged`（Linux）参数启用特权模式。
+这对于想要使用操作系统管理权能（Capabilities，如操纵网络堆栈和访问设备）的容器很有用。
+
+如果你的集群启用了 `WindowsHostProcessContainers` 特性，你可以使用 Pod 规约中安全上下文的
+`windowsOptions.hostProcess` 参数来创建
+[Windows HostProcess Pod](/zh-cn/docs/tasks/configure-pod-container/create-hostprocess-pod/)。
+这些 Pod 中的所有容器都必须以 Windows HostProcess 容器方式运行。
+HostProcess Pod 可以直接运行在主机上，它也能像 Linux 特权容器一样，用于执行管理任务。
 
 <!--
-Your {< glossary_tooltip text="container runtime" term_id="container-runtime" >}} must support the concept of a privileged container for this setting to be relevant.
+Your {{< glossary_tooltip text="container runtime" term_id="container-runtime" >}} must support the concept of a privileged container for this setting to be relevant.
 -->
 {{< note >}}
-你的{{< glossary_tooltip text="容器运行时" term_id="container-runtime" >}}必须支持
-特权容器的概念才能使用这一配置。
+你的{{< glossary_tooltip text="容器运行时" term_id="container-runtime" >}}
+必须支持特权容器的概念才能使用这一配置。
 {{< /note >}}
 
 <!--
@@ -513,8 +539,8 @@ Pods, the kubelet directly supervises each static Pod (and restarts it if it fai
 -->
 ## 静态 Pod    {#static-pods}
 
-_静态 Pod（Static Pod）_ 直接由特定节点上的 `kubelet` 守护进程管理，
-不需要{{< glossary_tooltip text="API 服务器" term_id="kube-apiserver" >}}看到它们。
+**静态 Pod（Static Pod）**直接由特定节点上的 `kubelet` 守护进程管理，
+不需要 {{< glossary_tooltip text="API 服务器" term_id="kube-apiserver" >}}看到它们。
 尽管大多数 Pod 都是通过控制面（例如，{{< glossary_tooltip text="Deployment" term_id="deployment" >}}）
 来管理的，对于静态 Pod 而言，`kubelet` 直接监控每个 Pod，并在其失效时重启之。
 
@@ -531,12 +557,46 @@ but cannot be controlled from there.
 静态 Pod 通常绑定到某个节点上的 {{< glossary_tooltip text="kubelet" term_id="kubelet" >}}。
 其主要用途是运行自托管的控制面。
 在自托管场景中，使用 `kubelet` 来管理各个独立的
-[控制面组件](/zh/docs/concepts/overview/components/#control-plane-components)。
+[控制面组件](/zh-cn/docs/concepts/overview/components/#control-plane-components)。
 
 `kubelet` 自动尝试为每个静态 Pod 在 Kubernetes API 服务器上创建一个
 {{< glossary_tooltip text="镜像 Pod" term_id="mirror-pod" >}}。
-这意味着在节点上运行的 Pod 在 API 服务器上是可见的，但不可以通过 API
-服务器来控制。
+这意味着在节点上运行的 Pod 在 API 服务器上是可见的，但不可以通过 API 服务器来控制。
+
+{{< note >}}
+<!--
+The `spec` of a static Pod cannot refer to other API objects
+(e.g., {{< glossary_tooltip text="ServiceAccount" term_id="service-account" >}},
+{{< glossary_tooltip text="ConfigMap" term_id="configmap" >}},
+{{< glossary_tooltip text="Secret" term_id="secret" >}}, etc).
+-->
+静态 Pod 的 `spec` 不能引用其他的 API 对象（例如：
+{{< glossary_tooltip text="ServiceAccount" term_id="service-account" >}}、
+{{< glossary_tooltip text="ConfigMap" term_id="configmap" >}}、
+{{< glossary_tooltip text="Secret" term_id="secret" >}} 等）。
+{{< /note >}}
+
+<!--
+## Container probes
+
+A _probe_ is a diagnostic performed periodically by the kubelet on a container. To perform a diagnostic, the kubelet can invoke different actions:
+
+- `ExecAction` (performed with the help of the container runtime)
+- `TCPSocketAction` (checked directly by the kubelet)
+- `HTTPGetAction` (checked directly by the kubelet)
+
+You can read more about [probes](/docs/concepts/workloads/pods/pod-lifecycle/#container-probes) 
+in the Pod Lifecycle documentation.
+-->
+## 容器探针   {#container-probes}
+
+**Probe** 是由 kubelet 对容器执行的定期诊断。要执行诊断，kubelet 可以执行三种动作：
+    
+- `ExecAction`（借助容器运行时执行）
+- `TCPSocketAction`（由 kubelet 直接检测）
+- `HTTPGetAction`（由 kubelet 直接检测）
+
+你可以参阅 Pod 的生命周期文档中的[探针](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#container-probes)部分。
 
 ## {{% heading "whatsnext" %}}
 
@@ -544,24 +604,24 @@ but cannot be controlled from there.
 * Learn about the [lifecycle of a Pod](/docs/concepts/workloads/pods/pod-lifecycle/).
 * Learn about [RuntimeClass](/docs/concepts/containers/runtime-class/) and how you can use it to
   configure different Pods with different container runtime configurations.
-* Read about [Pod topology spread constraints](/docs/concepts/workloads/pods/pod-topology-spread-constraints/).
-* Read about [PodDisruptionBudget](https://kubernetes.io/docs/concepts/workloads/pods/disruptions/) and how you can use it to manage application availability during disruptions.
-* Pod is a top-level resource in the Kubernetes REST API.  
-  The [Pod](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#pod-v1-core)
+* Read about [PodDisruptionBudget](/docs/concepts/workloads/pods/disruptions/) and how you can use it to manage application availability during disruptions.
+* Pod is a top-level resource in the Kubernetes REST API.
+  The {{< api-reference page="workload-resources/pod-v1" >}}
   object definition describes the object in detail.
-* [The Distributed System Toolkit: Patterns for Composite Containers](https://kubernetes.io/blog/2015/06/the-distributed-system-toolkit-patterns) explains common layouts for Pods with more than one container.
---
-* 了解 [Pod 生命周期](/zh/docs/concepts/workloads/pods/pod-lifecycle/)
-* 了解 [RuntimeClass](/zh/docs/concepts/containers/runtime-class/)，以及如何使用它
-  来配置不同的 Pod 使用不同的容器运行时配置
-* 了解 [Pod 拓扑分布约束](/zh/docs/concepts/workloads/pods/pod-topology-spread-constraints/)
-* 了解 [PodDisruptionBudget](/zh/docs/concepts/workloads/pods/disruptions/)，以及你
-  如何可以利用它在出现干扰因素时管理应用的可用性
-* Pod 在 Kubernetes REST API 中是一个顶层资源；
-  [Pod](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#pod-v1-core)
+* [The Distributed System Toolkit: Patterns for Composite Containers](/blog/2015/06/the-distributed-system-toolkit-patterns/) explains common layouts for Pods with more than one container.
+* Read about [Pod topology spread constraints](/docs/concepts/scheduling-eviction/topology-spread-constraints//).
+-->
+* 了解 [Pod 生命周期](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/)。
+* 了解 [RuntimeClass](/zh-cn/docs/concepts/containers/runtime-class/)，以及如何使用它
+  来配置不同的 Pod 使用不同的容器运行时配置。
+* 了解 [PodDisruptionBudget](/zh-cn/docs/concepts/workloads/pods/disruptions/)，以及你
+  如何可以利用它在出现干扰因素时管理应用的可用性。
+* Pod 在 Kubernetes REST API 中是一个顶层资源。
+  {{< api-reference page="workload-resources/pod-v1" >}}
   对象的定义中包含了更多的细节信息。
-* 博客 [分布式系统工具箱：复合容器模式](https://kubernetes.io/blog/2015/06/the-distributed-system-toolkit-patterns)
+* 博客 [分布式系统工具箱：复合容器模式](/blog/2015/06/the-distributed-system-toolkit-patterns/)
   中解释了在同一 Pod 中包含多个容器时的几种常见布局。
+* 了解 [Pod 拓扑分布约束](/zh-cn/docs/concepts/scheduling-eviction/topology-spread-constraints//)。
 
 <!--
 To understand the context for why Kubernetes wraps a common Pod API in other resources (such as {{< glossary_tooltip text="StatefulSets" term_id="statefulset" >}} or {{< glossary_tooltip text="Deployments" term_id="deployment" >}}), you can read about the prior art, including:
@@ -576,4 +636,3 @@ To understand the context for why Kubernetes wraps a common Pod API in other res
 * [Marathon](https://mesosphere.github.io/marathon/docs/rest-api.html)
 * [Omega](https://research.google/pubs/pub41684/)
 * [Tupperware](https://engineering.fb.com/data-center-engineering/tupperware/).
-
diff --git a/content/zh/docs/concepts/workloads/pods/disruptions.md b/content/zh-cn/docs/concepts/workloads/pods/disruptions.md
similarity index 92%
rename from content/zh/docs/concepts/workloads/pods/disruptions.md
rename to content/zh-cn/docs/concepts/workloads/pods/disruptions.md
index e146d66bc5..24e7ac25dc 100644
--- a/content/zh/docs/concepts/workloads/pods/disruptions.md
+++ b/content/zh-cn/docs/concepts/workloads/pods/disruptions.md
@@ -52,7 +52,7 @@ an application.  Examples are:
 - cloud provider or hypervisor failure makes VM disappear
 - a kernel panic
 - the node disappears from the cluster due to cluster network partition
-- eviction of a pod due to the node being [out-of-resources](/docs/tasks/administer-cluster/out-of-resource/).
+- eviction of a pod due to the node being [out-of-resources](/docs/concepts/scheduling-eviction/node-pressure-eviction/).
 -->
 
 - 节点下层物理机的硬件故障
@@ -60,7 +60,7 @@ an application.  Examples are:
 - 云提供商或虚拟机管理程序中的故障导致的虚拟机消失
 - 内核错误
 - 节点由于集群网络隔离从集群中消失
-- 由于节点[资源不足](/zh/docs/tasks/administer-cluster/out-of-resource/)导致 pod 被驱逐。
+- 由于节点[资源不足](/zh-cn/docs/concepts/scheduling-eviction/node-pressure-eviction/)导致 pod 被驱逐。
 
 <!--
 Except for the out-of-resources condition, all these conditions
@@ -98,7 +98,7 @@ Cluster Administrator actions include:
 -->
 集群管理员操作包括：
 
-- [排空（drain）节点](/zh/docs/tasks/administer-cluster/safely-drain-node/)进行修复或升级。
+- [排空（drain）节点](/zh-cn/docs/tasks/administer-cluster/safely-drain-node/)进行修复或升级。
 - 从集群中排空节点以缩小集群（了解[集群自动扩缩](https://github.com/kubernetes/autoscaler/#readme)）。
 - 从节点中移除一个 Pod，以允许其他 Pod 使用该节点。
 
@@ -145,13 +145,13 @@ and [stateful](/docs/tasks/run-application/run-replicated-stateful-application/)
   or across zones (if using a
   [multi-zone cluster](/docs/setup/multiple-zones).)
 -->
-- 确保 Pod 在请求中给出[所需资源](/zh/docs/tasks/configure-pod-container/assign-memory-resource/)。
+- 确保 Pod 在请求中给出[所需资源](/zh-cn/docs/tasks/configure-pod-container/assign-memory-resource/)。
 - 如果需要更高的可用性，请复制应用程序。
-  （了解有关运行多副本的[无状态](/zh/docs/tasks/run-application/run-stateless-application-deployment/)
-  和[有状态](/zh/docs/tasks/run-application/run-replicated-stateful-application/)应用程序的信息。）
+  （了解有关运行多副本的[无状态](/zh-cn/docs/tasks/run-application/run-stateless-application-deployment/)
+  和[有状态](/zh-cn/docs/tasks/run-application/run-replicated-stateful-application/)应用程序的信息。）
 - 为了在运行复制应用程序时获得更高的可用性，请跨机架（使用
-  [反亲和性](/zh/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity)
-  或跨区域（如果使用[多区域集群](/zh/docs/setup/best-practices/multiple-zones/)）扩展应用程序。
+  [反亲和性](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity)
+  或跨区域（如果使用[多区域集群](/zh-cn/docs/setup/best-practices/multiple-zones/)）扩展应用程序。
 
 <!--
 The frequency of voluntary disruptions varies.  On a basic Kubernetes cluster, there are
@@ -161,7 +161,7 @@ rolling out node software updates can cause voluntary disruptions. Also, some im
 of cluster (node) autoscaling may cause voluntary disruptions to defragment and compact nodes.
 Your cluster administrator or hosting provider should have documented what level of voluntary
 disruptions, if any, to expect. Certain configuration options, such as
-[using PriorityClasses](https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/)
+[using PriorityClasses](/docs/concepts/scheduling-eviction/pod-priority-preemption/)
 in your pod spec can also cause voluntary (and involuntary) disruptions.
 -->
 自愿干扰的频率各不相同。在一个基本的 Kubernetes 集群中，没有自愿干扰（只有用户触发的干扰）。
@@ -170,7 +170,7 @@ in your pod spec can also cause voluntary (and involuntary) disruptions.
 实现可能导致碎片整理和紧缩节点的自愿干扰。集群
 管理员或托管提供商应该已经记录了各级别的自愿干扰（如果有的话）。
 有些配置选项，例如在 pod spec 中
-[使用 PriorityClasses](https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/)
+[使用 PriorityClasses](/zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption/)
 也会产生自愿（和非自愿）的干扰。
 
 <!--
@@ -213,7 +213,7 @@ instead of directly deleting pods or deployments.  Examples are the `kubectl dra
 and the Kubernetes-on-GCE cluster upgrade script (`cluster/gce/upgrade.sh`).
 -->
 集群管理员和托管提供商应该使用遵循 PodDisruptionBudgets 的接口
-（通过调用[Eviction API](/zh/docs/tasks/administer-cluster/safely-drain-node/#the-eviction-api)），
+（通过调用[Eviction API](/zh-cn/docs/tasks/administer-cluster/safely-drain-node/#the-eviction-api)），
 而不是直接删除 Pod 或 Deployment。
 
 <!--
@@ -253,11 +253,12 @@ Pod 控制器的 `.spec.replicas` 计算“预期的” Pod 数量。
 根据 Pod 对象的 `.metadata.ownerReferences` 字段来发现控制器。
 
 <!--
-PDBs cannot prevent [involuntary disruptions](#voluntary-and-involuntary-disruptions) from
-occurring, but they do count against the budget.
+[Involuntary disruptions](#voluntary-and-involuntary-disruptions) cannot be prevented by PDBs; however they
+do count against the budget.
 -->
-PDB 不能阻止[非自愿干扰](#voluntary-and-involuntary-disruptions)的发生，但是确实会计入
-预算。
+
+PDB 无法防止[非自愿干扰](#voluntary-and-involuntary-disruptions)；
+但它们确实计入预算。
 
 <!--
 Pods which are deleted or unavailable due to a rolling upgrade to an application do count
@@ -276,7 +277,7 @@ hornoring the
 `terminationGracePeriodSeconds` setting in its [PodSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core).
 -->
 当使用驱逐 API 驱逐 Pod 时，Pod 会被体面地
-[终止](/zh/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)，期间会
+[终止](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)，期间会
 参考 [PodSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core)
 中的 `terminationGracePeriodSeconds` 配置值。
 
@@ -314,7 +315,7 @@ Both pods go into the `terminating` state at the same time.
 This puts the cluster in this state:
 -->
 
-例如，假设集群管理员想要重启系统，升级内核版本来修复内核中的权限。
+例如，假设集群管理员想要重启系统，升级内核版本来修复内核中的缺陷。
 集群管理员首先使用 `kubectl drain` 命令尝试排空 `node-1` 节点。
 命令尝试驱逐 `pod-a` 和 `pod-x`。操作立即就成功了。
 两个 Pod 同时进入 `terminating` 状态。这时的集群处于下面的状态：
@@ -403,7 +404,7 @@ Deployment 创建 `pod-b` 的替代 Pod `pod-e`。
 
 |    node-1 *drained*  |       node-2        |       node-3       | *no node*          |
 |:--------------------:|:-------------------:|:------------------:|:------------------:|
-|                      | pod-b *available*   | pod-c *available*  | pod-e *pending*    |
+|                      | pod-b *terminating* | pod-c *available*  | pod-e *pending*    |
 |                      | pod-d *available*   | pod-y              |                    |
 
 <!--
@@ -505,7 +506,7 @@ the nodes in your cluster, such as a node or system software upgrade, here are s
 * Learn about [updating a deployment](/docs/concepts/workloads/controllers/deployment/#updating-a-deployment)
   including steps to maintain its availability during the rollout.
 -->
-* 参考[配置 Pod 干扰预算](/zh/docs/tasks/run-application/configure-pdb/)中的方法来保护你的应用。
-* 进一步了解[排空节点](/zh/docs/tasks/administer-cluster/safely-drain-node/)的信息。
-* 了解[更新 Deployment](/zh/docs/concepts/workloads/controllers/deployment/#updating-a-deployment)
+* 参考[配置 Pod 干扰预算](/zh-cn/docs/tasks/run-application/configure-pdb/)中的方法来保护你的应用。
+* 进一步了解[排空节点](/zh-cn/docs/tasks/administer-cluster/safely-drain-node/)的信息。
+* 了解[更新 Deployment](/zh-cn/docs/concepts/workloads/controllers/deployment/#updating-a-deployment)
   的过程，包括如何在其进程中维持应用的可用性
diff --git a/content/zh-cn/docs/concepts/workloads/pods/downward-api.md b/content/zh-cn/docs/concepts/workloads/pods/downward-api.md
new file mode 100644
index 0000000000..2ca4376acf
--- /dev/null
+++ b/content/zh-cn/docs/concepts/workloads/pods/downward-api.md
@@ -0,0 +1,270 @@
+---
+title: Downward API
+content_type: concept
+description: >
+  有两种方法可以将 Pod 和容器字段暴露给运行中的容器：环境变量和由特殊卷类型承载的文件。
+  这两种暴露 Pod 和容器字段的方法统称为 Downward API。
+---
+<!--
+title: Downward API
+content_type: concept
+description: >
+  There are two ways to expose Pod and container fields to a running container:
+  environment variables, and as files that are populated by a special volume type.
+  Together, these two ways of exposing Pod and container fields are called the downward API.
+-->
+
+<!-- overview -->
+
+<!--
+It is sometimes useful for a container to have information about itself, without
+being overly coupled to Kubernetes. The _downward API_ allows containers to consume
+information about themselves or the cluster without using the Kubernetes client
+or API server.
+-->
+对于容器来说，在不与 Kubernetes 过度耦合的情况下，拥有关于自身的信息有时是很有用的。
+**Downward API** 允许容器在不使用 Kubernetes 客户端或 API 服务器的情况下获得自己或集群的信息。
+
+<!--
+An example is an existing application that assumes a particular well-known
+environment variable holds a unique identifier. One possibility is to wrap the
+application, but that is tedious and error-prone, and it violates the goal of low
+coupling. A better option would be to use the Pod's name as an identifier, and
+inject the Pod's name into the well-known environment variable.
+-->
+例如，现有应用程序假设某特定的周知的环境变量是存在的，其中包含唯一标识符。
+一种方法是对应用程序进行封装，但这很繁琐且容易出错，并且违背了低耦合的目标。
+更好的选择是使用 Pod 名称作为标识符，并将 Pod 名称注入到周知的环境变量中。
+
+<!--
+In Kubernetes, there are two ways to expose Pod and container fields to a running container:
+
+* as [environment variables](/docs/tasks/inject-data-application/environment-variable-expose-pod-information/#the-downward-api)
+* as [files in a `downwardAPI` volume](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/)
+-->
+在 Kubernetes 中，有两种方法可以将 Pod 和容器字段暴露给运行中的容器：
+
+* 作为[环境变量](/zh-cn/docs/tasks/inject-data-application/environment-variable-expose-pod-information/#the-downward-api)
+* 作为 [`downwardAPI` 卷中的文件](/zh-cn/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/)
+
+<!--
+Together, these two ways of exposing Pod and container fields are called the
+_downward API_.
+-->
+这两种暴露 Pod 和容器字段的方式统称为 **Downward API**。
+
+<!-- body -->
+
+<!--
+## Available fields
+
+Only some Kubernetes API fields are available through the downward API. This
+section lists which fields you can make available.
+-->
+## 可用字段  {#available-fields}
+
+只有部分 Kubernetes API 字段可以通过 Downward API 使用。本节列出了你可以使用的字段。
+
+<!--
+You can pass information from available Pod-level fields using `fieldRef`.
+At the API level, the `spec` for a Pod always defines at least one
+[Container](/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container).
+You can pass information from available Container-level fields using
+`resourceFieldRef`.
+-->
+你可以使用 `fieldRef` 传递来自可用的 Pod 级字段的信息。在 API 层面，一个 Pod 的
+`spec` 总是定义了至少一个 [Container](/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container)。
+你可以使用 `resourceFieldRef` 传递来自可用的 Container 级字段的信息。
+
+<!--
+### Information available via `fieldRef` {#downwardapi-fieldRef}
+
+For most Pod-level fields, you can provide them to a container either as
+an environment variable or using a `downwardAPI` volume. The fields available
+via either mechanism are:
+-->
+### 可通过 `fieldRef` 获得的信息  {#downwardapi-fieldRef}
+
+对于大多数 Pod 级别的字段，你可以将它们作为环境变量或使用 `downwardAPI` 卷提供给容器。
+通过这两种机制可用的字段有：
+
+<!--
+`metadata.name`
+: the pod's name
+-->
+`metadata.name`
+: Pod 的名称
+
+<!--
+`metadata.namespace`
+: the pod's {{< glossary_tooltip text="namespace" term_id="namespace" >}}
+-->
+`metadata.namespace`
+: Pod 的{{< glossary_tooltip text="命名空间" term_id="namespace" >}}
+
+<!--
+`metadata.uid`
+: the pod's unique ID
+-->
+`metadata.uid`
+: Pod 的唯一 ID
+
+<!--
+`metadata.annotations['<KEY>']`
+: the value of the pod's {{< glossary_tooltip text="annotation" term_id="annotation" >}} named `<KEY>` (for example, `metadata.annotations['myannotation']`)
+-->
+`metadata.annotations['<KEY>']`
+: Pod 的{{< glossary_tooltip text="注解" term_id="annotation" >}} `<KEY>` 的值（例如：`metadata.annotations['myannotation']`）
+
+<!--
+`metadata.labels['<KEY>']`
+: the text value of the pod's {{< glossary_tooltip text="label" term_id="label" >}} named `<KEY>` (for example, `metadata.labels['mylabel']`)
+-->
+`metadata.labels['<KEY>']`
+: Pod 的{{< glossary_tooltip text="标签" term_id="label" >}} `<KEY>` 的值（例如：`metadata.labels['mylabel']`）
+
+<!--
+`spec.serviceAccountName`
+: the name of the pod's {{< glossary_tooltip text="service account" term_id="service-account" >}}
+-->
+`spec.serviceAccountName`
+: Pod 的{{< glossary_tooltip text="服务账号" term_id="service-account" >}}名称
+
+<!--
+`spec.nodeName`
+: the name of the {{< glossary_tooltip term_id="node" text="node">}} where the Pod is executing
+-->
+`spec.nodeName`
+: Pod 运行时所处的{{< glossary_tooltip term_id="node" text="节点">}}名称
+
+<!--
+`status.hostIP`
+: the primary IP address of the node to which the Pod is assigned
+-->
+`status.hostIP`
+: Pod 所在节点的主 IP 地址
+
+<!--
+`status.podIP`
+: the pod's primary IP address (usually, its IPv4 address)
+-->
+`status.podIP`
+: Pod 的主 IP 地址（通常是其 IPv4 地址）
+
+<!--
+In addition, the following information is available through
+a `downwardAPI` volume `fieldRef`, but **not as environment variables**:
+-->
+此外，以下信息可以通过 `downwardAPI` 卷 `fieldRef` 获得，但**不能作为环境变量**获得：
+
+<!--
+`metadata.labels`
+: all of the pod's labels, formatted as `label-key="escaped-label-value"` with one label per line
+-->
+`metadata.labels`
+: Pod 的所有标签，格式为 `标签键名="转义后的标签值"`，每行一个标签
+
+<!--
+`metadata.annotations`
+: all of the pod's annotations, formatted as `annotation-key="escaped-annotation-value"` with one annotation per line  
+-->
+`metadata.annotations`
+: Pod 的全部注解，格式为 `注解键名="转义后的注解值"`，每行一个注解
+
+<!--
+### Information available via `resourceFieldRef` {#downwardapi-resourceFieldRef}
+
+These container-level fields allow you to provide information about
+[requests and limits](/docs/concepts/configuration/manage-resources-containers/#requests-and-limits)
+for resources such as CPU and memory.
+-->
+### 可通过 `resourceFieldRef` 获得的信息  {#downwardapi-resourceFieldRef}
+
+<!--
+`resource: limits.cpu`
+: A container's CPU limit
+-->
+`resource: limits.cpu`
+: 容器的 CPU 限制值
+
+<!--
+`resource: requests.cpu`
+: A container's CPU request
+-->
+`resource: requests.cpu`
+: 容器的 CPU 请求值
+
+<!--
+`resource: limits.memory`
+: A container's memory limit
+-->
+`resource: limits.memory`
+: 容器的内存限制值
+
+<!--
+`resource: requests.memory`
+: A container's memory request
+-->
+`resource: requests.memory`
+: 容器的内存请求值
+
+<!--
+`resource: limits.hugepages-*`
+: A container's hugepages limit (provided that the `DownwardAPIHugePages` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled)
+-->
+`resource: limits.hugepages-*`
+: 容器的巨页限制值（前提是启用了 `DownwardAPIHugePages`
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)）
+
+<!--
+`resource: requests.hugepages-*`
+: A container's hugepages request (provided that the `DownwardAPIHugePages` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled)
+-->
+`resource: requests.hugepages-*`
+: 容器的巨页请求值（前提是启用了 `DownwardAPIHugePages`
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)）
+
+<!--
+`resource: limits.ephemeral-storage`
+: A container's ephemeral-storage limit
+-->
+`resource: limits.ephemeral-storage`
+: 容器的临时存储的限制值
+
+<!--
+`resource: requests.ephemeral-storage`
+: A container's ephemeral-storage request
+-->
+`resource: requests.ephemeral-storage`
+: 容器的临时存储的请求值
+
+<!--
+#### Fallback information for resource limits
+
+If CPU and memory limits are not specified for a container, and you use the
+downward API to try to expose that information, then the
+kubelet defaults to exposing the maximum allocatable value for CPU and memory
+based on the [node allocatable](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)
+calculation.
+-->
+#### 资源限制的后备信息  {#fallback-information-for-resource-limits}
+
+如果没有为容器指定 CPU 和内存限制时尝试使用 Downward API 暴露该信息，那么 kubelet 默认会根据
+[节点可分配资源](/zh-cn/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)
+计算并暴露 CPU 和内存的最大可分配值。
+
+
+## {{% heading "whatsnext" %}}
+
+<!--
+You can read about [`downwardAPI` volumes](/docs/concepts/storage/volumes/#downwardapi).
+
+You can try using the downward API to expose container- or Pod-level information:
+* as [environment variables](/docs/tasks/inject-data-application/environment-variable-expose-pod-information/#the-downward-api)
+* as [files in `downwardAPI` volume](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/)
+-->
+你可以阅读有关 [`downwardAPI` 卷](/zh-cn/docs/concepts/storage/volumes/#downwardapi)的内容。
+
+你可以尝试使用 Downward API 暴露容器或 Pod 级别的信息：
+* 作为[环境变量](/zh-cn/docs/tasks/inject-data-application/environment-variable-expose-pod-information/#the-downward-api)
+* 作为 [`downwardAPI` 卷中的文件](/zh-cn/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/)
diff --git a/content/zh/docs/concepts/workloads/pods/ephemeral-containers.md b/content/zh-cn/docs/concepts/workloads/pods/ephemeral-containers.md
similarity index 52%
rename from content/zh/docs/concepts/workloads/pods/ephemeral-containers.md
rename to content/zh-cn/docs/concepts/workloads/pods/ephemeral-containers.md
index ba7be533d8..a464991304 100644
--- a/content/zh/docs/concepts/workloads/pods/ephemeral-containers.md
+++ b/content/zh-cn/docs/concepts/workloads/pods/ephemeral-containers.md
@@ -12,7 +12,7 @@ weight: 80
 
 <!-- overview -->
 
-{{< feature-state state="alpha" for_k8s_version="v1.16" >}}
+{{< feature-state state="beta" for_k8s_version="v1.23" >}}
 
 <!--
 This page provides an overview of ephemeral containers: a special type of container
@@ -25,20 +25,6 @@ containers to inspect services rather than to build applications.
 中临时运行，以便完成用户发起的操作，例如故障排查。
 你会使用临时容器来检查服务，而不是用它来构建应用程序。
 
-{{< warning >}}
-<!--
-Ephemeral containers are in early alpha state and are not suitable for production
-clusters. You should expect the feature not to work in some situations, such as
-when targeting the namespaces of a container. In accordance with the [Kubernetes
-Deprecation Policy](/docs/reference/using-api/deprecation-policy/), this alpha
-feature could change significantly in the future or be removed entirely.
--->
-临时容器处于早期的 Alpha 阶段，不适用于生产环境集群。
-应该预料到临时容器在某些情况下不起作用，例如在定位容器的命名空间时。
-根据 [Kubernetes 弃用政策](/zh/docs/reference/using-api/deprecation-policy/)，
-此 Alpha 功能将来可能发生重大变化或被完全删除。
-{{< /warning >}}
-
 <!-- body -->
 
 <!--
@@ -138,154 +124,11 @@ sharing](/docs/tasks/configure-pod-container/share-process-namespace/) so
 you can view processes in other containers.
 -->
 使用临时容器时，启用
-[进程名字空间共享](/zh/docs/tasks/configure-pod-container/share-process-namespace/)
+[进程名字空间共享](/zh-cn/docs/tasks/configure-pod-container/share-process-namespace/)
 很有帮助，可以查看其他容器中的进程。
 
+{{% heading "whatsnext" %}}
 <!--
-See [Debugging with Ephemeral Debug Container](/docs/tasks/debug-application-cluster/debug-running-pod/#ephemeral-container)
-for examples of troubleshooting using ephemeral containers.
+* Learn how to [debug pods using ephemeral containers](/docs/tasks/debug/debug-application/debug-running-pod/#ephemeral-container).
 -->
-关于如何使用临时容器来执行故障排查的例子，可参阅
-[使用临时调试容器来调试](/zh/docs/tasks/debug-application-cluster/debug-running-pod/#ephemeral-container)。
-
-<!--
-## Ephemeral containers API
--->
-### 临时容器 API   {#ephemeral-containers-api}
-
-{{< note >}}
-<!--
-The examples in this section require the `EphemeralContainers` [feature
-gate](/docs/reference/command-line-tools-reference/feature-gates/) to be
-enabled, and Kubernetes client and server version v1.16 or later.
--->
-本节中的示例要求启用 `EphemeralContainers`
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)，
-并且 kubernetes 客户端和服务端版本要求为 v1.16 或更高版本。
-{{< /note >}}
-
-<!--
-The examples in this section demonstrate how ephemeral containers appear in
-the API. You would normally use `kubectl debug` or another `kubectl`
-[plugin](/docs/tasks/extend-kubectl/kubectl-plugins/) to automate these steps
-rather than invoking the API directly.
--->
-本节中的示例演示了临时容器如何出现在 API 中。
-通常，你会使用 `kubectl debug` 或别的 `kubectl`
-[插件](/zh/docs/tasks/extend-kubectl/kubectl-plugins/) 自动执行这些步骤，而不是直接调用API。
-
-<!--
-Ephemeral containers are created using the `ephemeralcontainers` subresource
-of Pod, which can be demonstrated using `kubectl -raw`. First describe
-the ephemeral container to add as an `EphemeralContainers` list:
--->
-临时容器是使用 Pod 的 `ephemeralcontainers` 子资源创建的，可以使用
-`kubectl --raw` 命令进行显示。
-首先描述临时容器被添加为一个 `EphemeralContainers` 列表：
-
-```json
-{
-    "apiVersion": "v1",
-    "kind": "EphemeralContainers",
-    "metadata": {
-        "name": "example-pod"
-    },
-    "ephemeralContainers": [{
-        "command": [
-            "sh"
-        ],
-        "image": "busybox",
-        "imagePullPolicy": "IfNotPresent",
-        "name": "debugger",
-        "stdin": true,
-        "tty": true,
-        "terminationMessagePolicy": "File"
-    }]
-}
-```
-
-<!--
-To update the ephemeral containers of the already running `example-pod`:
--->
-使用如下命令更新已运行的临时容器 `example-pod`：
-
-```shell
-kubectl replace --raw /api/v1/namespaces/default/pods/example-pod/ephemeralcontainers  -f ec.json
-```
-
-<!--
-This will return the new list of ephemeral containers:
--->
-这将返回临时容器的新列表：
-
-```json
-{
-   "kind":"EphemeralContainers",
-   "apiVersion":"v1",
-   "metadata":{
-      "name":"example-pod",
-      "namespace":"default",
-      "selfLink":"/api/v1/namespaces/default/pods/example-pod/ephemeralcontainers",
-      "uid":"a14a6d9b-62f2-4119-9d8e-e2ed6bc3a47c",
-      "resourceVersion":"15886",
-      "creationTimestamp":"2019-08-29T06:41:42Z"
-   },
-   "ephemeralContainers":[
-      {
-         "name":"debugger",
-         "image":"busybox",
-         "command":[
-            "sh"
-         ],
-         "resources":{
-
-         },
-         "terminationMessagePolicy":"File",
-         "imagePullPolicy":"IfNotPresent",
-         "stdin":true,
-         "tty":true
-      }
-   ]
-}
-```
-
-<!--
-You can view the state of the newly created ephemeral container using `kubectl describe`:
--->
-可以使用以下命令查看新创建的临时容器的状态：
-
-```shell
-kubectl describe pod example-pod
-```
-
-输出为：
-
-```
-...
-Ephemeral Containers:
-  debugger:
-    Container ID:  docker://cf81908f149e7e9213d3c3644eda55c72efaff67652a2685c1146f0ce151e80f
-    Image:         busybox
-    Image ID:      docker-pullable://busybox@sha256:9f1003c480699be56815db0f8146ad2e22efea85129b5b5983d0e0fb52d9ab70
-    Port:          <none>
-    Host Port:     <none>
-    Command:
-      sh
-    State:          Running
-      Started:      Thu, 29 Aug 2019 06:42:21 +0000
-    Ready:          False
-    Restart Count:  0
-    Environment:    <none>
-    Mounts:         <none>
-...
-```
-
-<!--
-You can attach to the new ephemeral container using `kubectl attach`:
--->
-可以使用以下命令连接到新的临时容器：
-
-```shell
-kubectl attach -it example-pod -c debugger
-```
-
+* 了解如何[使用临时调试容器来进行调试](/zh-cn/docs/tasks/debug/debug-application/debug-running-pod/#ephemeral-container)
diff --git a/content/zh/docs/concepts/workloads/pods/init-containers.md b/content/zh-cn/docs/concepts/workloads/pods/init-containers.md
similarity index 87%
rename from content/zh/docs/concepts/workloads/pods/init-containers.md
rename to content/zh-cn/docs/concepts/workloads/pods/init-containers.md
index d15fcfebce..2f2404dad5 100644
--- a/content/zh/docs/concepts/workloads/pods/init-containers.md
+++ b/content/zh-cn/docs/concepts/workloads/pods/init-containers.md
@@ -63,16 +63,21 @@ However, if the Pod has a `restartPolicy` of Never, and an init container fails
 
 <!--
 To specify an init container for a Pod, add the `initContainers` field into
-the Pod specification, as an array of objects of type
-[Container](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core),
-alongside the app `containers` array.
+the [Pod specification](/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodSpec),
+as an array of `container` items (similar to the app `containers` field and its contents).
+See [Container](/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container) in the
+API reference for more details.
+
 The status of the init containers is returned in `.status.initContainerStatuses`
 field as an array of the container statuses (similar to the `.status.containerStatuses`
 field).
 -->
-为 Pod 设置 Init 容器需要在 Pod 的 `spec` 中添加 `initContainers` 字段，
+为 Pod 设置 Init 容器需要在 [Pod 规约](/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodSpec)
+中添加 `initContainers` 字段，
 该字段以 [Container](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core)
 类型对象数组的形式组织，和应用的 `containers` 数组同级相邻。
+参阅 API 参考的[容器](/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container)章节了解详情。
+
 Init 容器的状态在 `status.initContainerStatuses` 字段中以容器状态数组的格式返回
 （类似 `status.containerStatuses` 字段）。
 
@@ -140,8 +145,8 @@ have some advantages for start-up related code:
 * Init 容器能以不同于 Pod 内应用容器的文件系统视图运行。因此，Init 容器可以访问
   应用容器不能访问的 {{< glossary_tooltip text="Secret" term_id="secret" >}} 的权限。
 
-* 由于 Init 容器必须在应用容器启动之前运行完成，因此 Init 容器
-  提供了一种机制来阻塞或延迟应用容器的启动，直到满足了一组先决条件。
+* 由于 Init 容器必须在应用容器启动之前运行完成，因此 Init
+  容器提供了一种机制来阻塞或延迟应用容器的启动，直到满足了一组先决条件。
   一旦前置条件满足，Pod 内的所有的应用容器会并行启动。
 
 <!--
@@ -151,19 +156,35 @@ Here are some ideas for how to use init containers:
 
 * Wait for a {{< glossary_tooltip text="Service" term_id="service">}} to
   be created, using a shell one-line command like:
+-->
+### 示例  {#examples}
+
+下面是一些如何使用 Init 容器的想法：
+
+* 等待一个 Service 完成创建，通过类似如下 Shell 命令：
+
   ```shell
   for i in {1..100}; do sleep 1; if dig myservice; then exit 0; fi; done; exit 1
   ```
 
- * Register this Pod with a remote server from the downward API with a command like:
+<!--
+* Register this Pod with a remote server from the downward API with a command like:
+-->
+* 注册这个 Pod 到远程服务器，通过在命令中调用 API，类似如下：
+
   ```shell
   curl -X POST http://$MANAGEMENT_SERVICE_HOST:$MANAGEMENT_SERVICE_PORT/register -d 'instance=$(<POD_NAME>)&ip=$(<POD_IP>)'
   ```
+
+<!--
 * Wait for some time before starting the app container with a command like
+-->
+* 在启动应用容器之前等一段时间，使用类似命令：
+
   ```shell
   sleep 60
   ```
-
+<!--
 * Clone a Git repository into a {{< glossary_tooltip text="Volume" term_id="volume" >}}
 
 * Place values into a configuration file and run a template tool to dynamically
@@ -171,29 +192,6 @@ Here are some ideas for how to use init containers:
   place the `POD_IP` value in a configuration and generate the main app
   configuration file using Jinja.
 -->
-### 示例  {#examples}
-
-下面是一些如何使用 Init 容器的想法：
-
-* 等待一个 Service 完成创建，通过类似如下 shell 命令：
-
-  ```shell
-  for i in {1..100}; do sleep 1; if dig myservice; then exit 0; fi; exit 1
-  ```
-
-* 注册这个 Pod 到远程服务器，通过在命令中调用 API，类似如下：
-
-  ```shell
-  curl -X POST http://$MANAGEMENT_SERVICE_HOST:$MANAGEMENT_SERVICE_PORT/register \
-    -d 'instance=$(<POD_NAME>)&ip=$(<POD_IP>)'
-  ```
-
-* 在启动应用容器之前等一段时间，使用类似命令：
-
-  ```shell
-  sleep 60
-  ```
-
 * 克隆 Git 仓库到{{< glossary_tooltip text="卷" term_id="volume" >}}中。
 
 * 将配置值放到配置文件中，运行模板工具为主应用容器动态地生成配置文件。
@@ -217,7 +215,7 @@ kind: Pod
 metadata:
   name: myapp-pod
   labels:
-    app: myapp
+    app.kubernetes.io/name: MyApp
 spec:
   containers:
   - name: myapp-container
@@ -244,6 +242,7 @@ kubectl apply -f myapp.yaml
 The output is similar to this:
 -->
 输出类似于：
+
 ```
 pod/myapp-pod created
 ```
@@ -256,10 +255,12 @@ And check on its status with:
 ```shell
 kubectl get -f myapp.yaml
 ```
+
 <!--
 The output is similar to this:
 -->
 输出类似于：
+
 ```
 NAME        READY     STATUS     RESTARTS   AGE
 myapp-pod   0/1       Init:0/2   0          6m
@@ -273,15 +274,17 @@ or for more details:
 ```shell
 kubectl describe -f myapp.yaml
 ```
+
 <!--
 The output is similar to this:
 -->
 输出类似于：
+
 ```
 Name:          myapp-pod
 Namespace:     default
 [...]
-Labels:        app=myapp
+Labels:        app.kubernetes.io/name=MyApp
 Status:        Pending
 [...]
 Init Containers:
@@ -403,13 +406,26 @@ init containers. [What's next](#what-s-next) contains a link to a more detailed
 During Pod startup, the kubelet delays running init containers until the networking
 and storage are ready. Then the kubelet runs the Pod's init containers in the order
 they appear in the Pod's spec.
+-->
+## 具体行为 {#detailed-behavior}
 
+在 Pod 启动过程中，每个 Init 容器会在网络和数据卷初始化之后按顺序启动。
+kubelet 运行依据 Init 容器在 Pod 规约中的出现顺序依次运行之。
+
+<!--
 Each init container must exit successfully before
 the next container starts. If a container fails to start due to the runtime or
 exits with failure, it is retried according to the Pod `restartPolicy`. However,
 if the Pod `restartPolicy` is set to Always, the init containers use
 `restartPolicy` OnFailure.
+-->
+每个 Init 容器成功退出后才会启动下一个 Init 容器。
+如果某容器因为容器运行时的原因无法启动，或以错误状态退出，kubelet 会根据
+Pod 的 `restartPolicy` 策略进行重试。
+然而，如果 Pod 的 `restartPolicy` 设置为 "Always"，Init 容器失败时会使用
+`restartPolicy` 的 "OnFailure" 策略。
 
+<!--
 A Pod cannot be `Ready` until all init containers have succeeded. The ports on an
 init container are not aggregated under a Service. A Pod that is initializing
 is in the `Pending` state but should have a condition `Initialized` set to false.
@@ -417,17 +433,6 @@ is in the `Pending` state but should have a condition `Initialized` set to false
 If the Pod [restarts](#pod-restart-reasons), or is restarted, all init containers
 must execute again.
 -->
-## 具体行为 {#detailed-behavior}
-
-在 Pod 启动过程中，每个 Init 容器会在网络和数据卷初始化之后按顺序启动。
-kubelet 运行依据 Init 容器在 Pod 规约中的出现顺序依次运行之。
-
-每个 Init 容器成功退出后才会启动下一个 Init 容器。
-如果某容器因为容器运行时的原因无法启动，或以错误状态退出，kubelet 会根据
-Pod 的 `restartPolicy` 策略进行重试。
-然而，如果 Pod 的 `restartPolicy` 设置为 "Always"，Init 容器失败时会使用
-`restartPolicy` 的 "OnFailure" 策略。
-
 在所有的 Init 容器没有成功之前，Pod 将不会变成 `Ready` 状态。
 Init 容器的端口将不会在 Service 中进行聚集。正在初始化中的 Pod 处于 `Pending` 状态，
 但会将状况 `Initializing` 设置为 false。
@@ -441,11 +446,6 @@ Altering an init container image field is equivalent to restarting the Pod.
 Because init containers can be restarted, retried, or re-executed, init container
 code should be idempotent. In particular, code that writes to files on `EmptyDirs`
 should be prepared for the possibility that an output file already exists.
-
-Init containers have all of the fields of an app container. However, Kubernetes
-prohibits `readinessProbe` from being used because init containers cannot
-define readiness distinct from completion. This is enforced during validation.
-
 -->
 对 Init 容器规约的修改仅限于容器的 `image` 字段。
 更改 Init 容器的 `image` 字段，等同于重启该 Pod。
@@ -453,20 +453,31 @@ define readiness distinct from completion. This is enforced during validation.
 因为 Init 容器可能会被重启、重试或者重新执行，所以 Init 容器的代码应该是幂等的。
 特别地，基于 `emptyDirs` 写文件的代码，应该对输出文件可能已经存在做好准备。
 
+<!--
+Init containers have all of the fields of an app container. However, Kubernetes
+prohibits `readinessProbe` from being used because init containers cannot
+define readiness distinct from completion. This is enforced during validation.
+-->
 Init 容器具有应用容器的所有字段。然而 Kubernetes 禁止使用 `readinessProbe`，
 因为 Init 容器不能定义不同于完成态（Completion）的就绪态（Readiness）。
 Kubernetes 会在校验时强制执行此检查。
 
 <!--
-Use `activeDeadlineSeconds` on the Pod and `livenessProbe` on the container to
-prevent init containers from failing forever. The active deadline includes init
-containers.
+Use `activeDeadlineSeconds` on the Pod to prevent init containers from failing forever.
+The active deadline includes init containers.
+However it is recommended to use `activeDeadlineSeconds` only if teams deploy their application
+as a Job, because `activeDeadlineSeconds` has an effect even after initContainer finished.
+The Pod which is already running correctly would be killed by `activeDeadlineSeconds` if you set.
 
 The name of each app and init container in a Pod must be unique; a
 validation error is thrown for any container sharing a name with another.
 -->
 在 Pod 上使用 `activeDeadlineSeconds` 和在容器上使用 `livenessProbe` 可以避免
-Init 容器一直重复失败。`activeDeadlineSeconds` 时间包含了 Init 容器启动的时间。
+Init 容器一直重复失败。
+`activeDeadlineSeconds` 时间包含了 Init 容器启动的时间。
+但建议仅在团队将其应用程序部署为 Job 时才使用 `activeDeadlineSeconds`，
+因为 `activeDeadlineSeconds` 在 Init 容器结束后仍有效果。
+如果你设置了 `activeDeadlineSeconds`，已经在正常运行的 Pod 会被杀死。
 
 在 Pod 中的每个应用容器和 Init 容器的名称必须唯一；
 与任何其它容器共享同一个名称，会在校验时抛出错误。
@@ -476,29 +487,36 @@ Init 容器一直重复失败。`activeDeadlineSeconds` 时间包含了 Init 容
 
 Given the ordering and execution for init containers, the following rules
 for resource usage apply:
+-->
+### 资源 {#resources}
 
+在给定的 Init 容器执行顺序下，资源使用适用于如下规则：
+
+<!--
 * The highest of any particular resource request or limit defined on all init
-  containers is the *effective init request/limit*
+  containers is the *effective init request/limit*. If any resource has no
+  resource limit specified this is considered as the highest limit.
 * The Pod's *effective request/limit* for a resource is the higher of:
   * the sum of all app containers request/limit for a resource
   * the effective init request/limit for a resource
+-->
+* 所有 Init 容器上定义的任何特定资源的 limit 或 request 的最大值，作为
+  Pod **有效初始 request/limit**。
+  如果任何资源没有指定资源限制，这被视为最高限制。
+* Pod 对资源的 **有效 limit/request** 是如下两者中的较大者：
+  * 所有应用容器对某个资源的 limit/request 之和
+  * 对某个资源的有效初始 limit/request
+
+<!--
 * Scheduling is done based on effective requests/limits, which means
   init containers can reserve resources for initialization that are not used
   during the life of the Pod.
 * The QoS (quality of service) tier of the Pod's *effective QoS tier* is the
   QoS tier for init containers and app containers alike.
 -->
-### 资源 {#resources}
-
-在给定的 Init 容器执行顺序下，资源使用适用于如下规则：
-
-* 所有 Init 容器上定义的任何特定资源的 limit 或 request 的最大值，作为 Pod *有效初始 request/limit*
-* Pod 对资源的 *有效 limit/request* 是如下两者的较大者：
-  * 所有应用容器对某个资源的 limit/request 之和
-  * 对某个资源的有效初始 limit/request
 * 基于有效 limit/request 完成调度，这意味着 Init 容器能够为初始化过程预留资源，
   这些资源在 Pod 生命周期过程中并没有被使用。
-* Pod 的 *有效 QoS 层* ，与 Init 容器和应用容器的一样。
+* Pod 的 **有效 QoS 层** ，与 Init 容器和应用容器的一样。
 
 <!--
 Quota and limits are applied based on the effective Pod request and limit.
@@ -512,21 +530,22 @@ Pod 级别的 cgroups 是基于有效 Pod 的请求和限制值，和调度器
 
 A Pod can restart, causing re-execution of init containers, for the following
 reasons:
+-->
+### Pod 重启的原因  {#pod-restart-reasons}
 
+Pod 重启会导致 Init 容器重新执行，主要有如下几个原因：
+
+<!--
 * The Pod infrastructure container is restarted. This is uncommon and would
   have to be done by someone with root access to nodes.
 * All containers in a Pod are terminated while `restartPolicy` is set to Always,
   forcing a restart, and the init container completion record has been lost due
   to garbage collection.
 -->
-### Pod 重启的原因  {#pod-restart-reasons}
-
-Pod 重启会导致 Init 容器重新执行，主要有如下几个原因：
-
 * Pod 的基础设施容器 (译者注：如 `pause` 容器) 被重启。这种情况不多见，
   必须由具备 root 权限访问节点的人员来完成。
 
-* 当 `restartPolicy` 设置为 "`Always`"，Pod 中所有容器会终止而强制重启。
+* 当 `restartPolicy` 设置为 `Always`，Pod 中所有容器会终止而强制重启。
   由于垃圾收集机制的原因，Init 容器的完成记录将会丢失。
 
 <!--
@@ -536,14 +555,15 @@ applies for Kubernetes v1.20 and later. If you are using an earlier version of
 Kubernetes, consult the documentation for the version you are using.
 -->
 当 Init 容器的镜像发生改变或者 Init 容器的完成记录因为垃圾收集等原因被丢失时，
-Pod 不会被重启。这一行为适用于 Kubernetes v1.20 及更新版本。如果你在使用较早
-版本的 Kubernetes，可查阅你所使用的版本对应的文档。
+Pod 不会被重启。这一行为适用于 Kubernetes v1.20 及更新版本。
+如果你在使用较早版本的 Kubernetes，可查阅你所使用的版本对应的文档。
 
 ## {{% heading "whatsnext" %}}
 
 <!--
 * Read about [creating a Pod that has an init container](/docs/tasks/configure-pod-container/configure-pod-initialization/#create-a-pod-that-has-an-init-container)
-* Learn how to [debug init containers](/docs/tasks/debug-application-cluster/debug-init-containers/)
+* Learn how to [debug init containers](/docs/tasks/debug/debug-application/debug-init-containers/)
 -->
-* 阅读[创建包含 Init 容器的 Pod](/zh/docs/tasks/configure-pod-container/configure-pod-initialization/#create-a-pod-that-has-an-init-container)
-* 学习如何[调试 Init 容器](/zh/docs/tasks/debug-application-cluster/debug-init-containers/)
+* 阅读[创建包含 Init 容器的 Pod](/zh-cn/docs/tasks/configure-pod-container/configure-pod-initialization/#create-a-pod-that-has-an-init-container)
+* 学习如何[调试 Init 容器](/zh-cn/docs/tasks/debug/debug-application/debug-init-containers/)
+
diff --git a/content/zh/docs/concepts/workloads/pods/pod-lifecycle.md b/content/zh-cn/docs/concepts/workloads/pods/pod-lifecycle.md
similarity index 81%
rename from content/zh/docs/concepts/workloads/pods/pod-lifecycle.md
rename to content/zh-cn/docs/concepts/workloads/pods/pod-lifecycle.md
index 76702d222c..4c120be05a 100644
--- a/content/zh/docs/concepts/workloads/pods/pod-lifecycle.md
+++ b/content/zh-cn/docs/concepts/workloads/pods/pod-lifecycle.md
@@ -45,7 +45,7 @@ or is [terminated](#pod-termination).
 Pod 对象的状态包含了一组 [Pod 状况（Conditions）](#pod-conditions)。
 如果应用需要的话，你也可以向其中注入[自定义的就绪性信息](#pod-readiness-gate)。
 
-Pod 在其生命周期中只会被[调度](/zh/docs/concepts/scheduling-eviction/)一次。
+Pod 在其生命周期中只会被[调度](/zh-cn/docs/concepts/scheduling-eviction/)一次。
 一旦 Pod 被调度（分派）到某个节点，Pod 会一直在该节点运行，直到 Pod 停止或者
 被[终止](#pod-termination)。
 
@@ -66,7 +66,7 @@ are [scheduled for deletion](#pod-garbage-collection) after a timeout period.
 
 和一个个独立的应用容器一样，Pod 也被认为是相对临时性（而不是长期存在）的实体。
 Pod 会被创建、赋予一个唯一的
-ID（[UID](/zh/docs/concepts/overview/working-with-objects/names/#uids)），
+ID（[UID](/zh-cn/docs/concepts/overview/working-with-objects/names/#uids)），
 并被调度到节点，并在终止（根据重启策略）或删除之前一直运行在该节点。
 
 如果一个{{< glossary_tooltip text="节点" term_id="node" >}}死掉了，调度到该节点
@@ -107,7 +107,7 @@ created anew.
 如果 Pod 因为任何原因被删除，甚至某完全相同的替代 Pod 被创建时，
 这个相关的对象（例如这里的卷）也会被删除并重建。
 
-{{< figure src="/images/docs/pod.svg" title="Pod 结构图例" width="50%" >}}
+{{< figure src="/images/docs/pod.svg" title="Pod 结构图例" class="diagram-medium" >}}
 
 *一个包含多个容器的 Pod 中包含一个用来拉取文件的程序和一个 Web 服务器，
 均使用持久卷作为容器间共享的存储。*
@@ -153,7 +153,7 @@ Value | Description
 -->
 取值 | 描述
 :-----|:-----------
-`Pending`（悬决）| Pod 已被 Kubernetes 系统接受，但有一个或者多个容器尚未创建亦未运行。此阶段包括等待 Pod 被调度的时间和通过网络下载镜像的时间，
+`Pending`（悬决）| Pod 已被 Kubernetes 系统接受，但有一个或者多个容器尚未创建亦未运行。此阶段包括等待 Pod 被调度的时间和通过网络下载镜像的时间。
 `Running`（运行中） | Pod 已经绑定到了某个节点，Pod 中所有的容器都已被创建。至少有一个容器仍在运行，或者正处于启动或重启状态。
 `Succeeded`（成功） | Pod 中的所有容器都已成功终止，并且不会再重启。
 `Failed`（失败） | Pod 中的所有容器都已终止，并且至少有一个容器是因为失败终止。也就是说，容器以非 0 状态退出或者被系统终止。
@@ -182,7 +182,7 @@ There are three possible container states: `Waiting`, `Running`, and `Terminated
 ## 容器状态  {#container-states}
 
 Kubernetes 会跟踪 Pod 中每个容器的状态，就像它跟踪 Pod 总体上的[阶段](#pod-phase)一样。
-你可以使用[容器生命周期回调](/zh/docs/concepts/containers/container-lifecycle-hooks/) 
+你可以使用[容器生命周期回调](/zh-cn/docs/concepts/containers/container-lifecycle-hooks/)
 来在容器生命周期中的特定时间点触发事件。
 
 一旦{{< glossary_tooltip text="调度器" term_id="kube-scheduler" >}}将 Pod
@@ -247,7 +247,7 @@ completion or failed for some reason. When you use `kubectl` to query a Pod with
 a container that is `Terminated`, you see a reason, an exit code, and the start and
 finish time for that container's period of execution.
 
-If a container has a `preStop` hook configured, that runs before the container enters
+If a container has a `preStop` hook configured, this hook runs before the container enters
 the `Terminated` state.
 -->
 ### `Terminated`（已终止）   {#container-state-terminated}
@@ -300,14 +300,14 @@ Pod 有一个 PodStatus 对象，其中包含一个
 * `PodScheduled`: the Pod has been scheduled to a node.
 * `ContainersReady`: all containers in the Pod are ready.
 * `Initialized`: all [init containers](/docs/concepts/workloads/pods/init-containers/)
-  have started successfully.
+  have completed successfully.
 * `Ready`: the Pod is able to serve requests and should be added to the load
   balancing pools of all matching Services.
 -->
 * `PodScheduled`：Pod 已经被调度到某节点；
 * `ContainersReady`：Pod 中所有容器都已就绪；
-* `Initialized`：所有的 [Init 容器](/zh/docs/concepts/workloads/pods/init-containers/)
-  都已成功启动；
+* `Initialized`：所有的 [Init 容器](/zh-cn/docs/concepts/workloads/pods/init-containers/)
+  都已成功完成；
 * `Ready`：Pod 可以为请求提供服务，并且应该被添加到对应服务的负载均衡池中。
 
 <!--
@@ -382,8 +382,8 @@ status:
 <!--
 The Pod conditions you add must have names that meet the Kubernetes [label key format](/docs/concepts/overview/working-with-objects/labels/#syntax-and-character-set).
 -->
-你所添加的 Pod 状况名称必须满足 Kubernetes 
-[标签键名格式](/zh/docs/concepts/overview/working-with-objects/labels/#syntax-and-character-set)。
+你所添加的 Pod 状况名称必须满足 Kubernetes
+[标签键名格式](/zh-cn/docs/concepts/overview/working-with-objects/labels/#syntax-and-character-set)。
 
 <!--
 ### Status for Pod readiness {#pod-readiness-status}
@@ -401,7 +401,7 @@ write code that sets custom Pod conditions for Pod readiness.
 如果需要设置 Pod 的 `status.conditions`，应用或者
 {{< glossary_tooltip term_id="operator-pattern" text="Operators">}}
 需要使用 `PATCH` 操作。
-你可以使用 [Kubernetes 客户端库](/zh/docs/reference/using-api/client-libraries/)
+你可以使用 [Kubernetes 客户端库](/zh-cn/docs/reference/using-api/client-libraries/)
 之一来编写代码，针对 Pod 就绪态设置定制的 Pod 状况。
 
 <!--
@@ -425,93 +425,145 @@ When a Pod's containers are Ready but at least one custom condition is missing o
 <!--
 ## Container probes
 
-A [Probe](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#probe-v1-core) is a diagnostic
+A _probe_ is a diagnostic
 performed periodically by the
 [kubelet](/docs/reference/command-line-tools-reference/kubelet/)
-on a Container. To perform a diagnostic,
-the kubelet calls a
-[Handler](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#handler-v1-core) implemented by
-the container. There are three types of handlers:
+on a container. To perform a diagnostic,
+the kubelet either executes code within the container, or makes
+a network request.
 -->
 ## 容器探针    {#container-probes}
 
-[Probe](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#probe-v1-core)
-是由 [kubelet](/zh/docs/reference/command-line-tools-reference/kubelet/) 对容器执行的定期诊断。
-要执行诊断，kubelet 调用由容器实现的
-[Handler](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#handler-v1-core)
-（处理程序）。有三种类型的处理程序：
+probe 是由 [kubelet](/zh-cn/docs/reference/command-line-tools-reference/kubelet/) 对容器执行的定期诊断。
+要执行诊断，kubelet 既可以在容器内执行代码，也可以发出一个网络请求。
 
 <!--
-* [ExecAction](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#execaction-v1-core):
-  Executes a specified command inside the container. The diagnostic
+### Check mechanisms {#probe-check-methods}
+
+There are four different ways to check a container using a probe.
+Each probe must define exactly one of these four mechanisms:
+
+`exec`
+: Executes a specified command inside the container. The diagnostic
   is considered successful if the command exits with a status code of 0.
 
-* [TCPSocketAction](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#tcpsocketaction-v1-core):
-  Performs a TCP check against the Pod's IP address on
-  a specified port. The diagnostic is considered successful if the port is open.
+`grpc`
+: Performs a remote procedure call using [gRPC](https://grpc.io/).
+  The target should implement
+  [gRPC health checks](https://grpc.io/grpc/core/md_doc_health-checking.html).
+  The diagnostic is considered successful if the `status`
+  of the response is `SERVING`.
+  gRPC probes are an alpha feature and are only available if you
+  enable the `GRPCContainerProbe`
+  [feature gate](/docs/reference/command-line-tools-reference/feature-gates/).
+
+`httpGet`
+: Performs an HTTP `GET` request against the Pod's IP
+  address on a specified port and path. The diagnostic is
+  considered successful if the response has a status code
+  greater than or equal to 200 and less than 400.
+
+`tcpSocket`
+: Performs a TCP check against the Pod's IP address on
+  a specified port. The diagnostic is considered successful if
+  the port is open. If the remote system (the container) closes
+  the connection immediately after it opens, this counts as healthy.
 
-* [HTTPGetAction](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#httpgetaction-v1-core):
-  Performs an HTTP `GET` request against the Pod's IP
-  address on a specified port and path. The diagnostic is considered successful
-  if the response has a status code greater than or equal to 200 and less than 400.
 -->
-- [ExecAction](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#execaction-v1-core)：
-  在容器内执行指定命令。如果命令退出时返回码为 0 则认为诊断成功。
+### 检查机制    {#probe-check-methods}
 
-- [TCPSocketAction](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#tcpsocketaction-v1-core)：
-  对容器的 IP 地址上的指定端口执行 TCP 检查。如果端口打开，则诊断被认为是成功的。
+使用探针来检查容器有四种不同的方法。
+每个探针都必须准确定义为这四种机制中的一种：
 
-- [HTTPGetAction](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#httpgetaction-v1-core)：
-  对容器的 IP 地址上指定端口和路径执行 HTTP Get 请求。如果响应的状态码大于等于 200
+`exec`
+: 在容器内执行指定命令。如果命令退出时返回码为 0 则认为诊断成功。
+
+`grpc`
+: 使用 [gRPC](https://grpc.io/) 执行一个远程过程调用。
+  目标应该实现
+  [gRPC健康检查](https://grpc.io/grpc/core/md_doc_health-checking.html)。
+  如果响应的状态是 "SERVING"，则认为诊断成功。
+  gRPC 探针是一个 alpha 特性，只有在你启用了
+  "GRPCContainerProbe" [特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)时才能使用。
+
+`httpGet`
+: 对容器的 IP 地址上指定端口和路径执行 HTTP `GET` 请求。如果响应的状态码大于等于 200
   且小于 400，则诊断被认为是成功的。
 
+`tcpSocket`
+: 对容器的 IP 地址上的指定端口执行 TCP 检查。如果端口打开，则诊断被认为是成功的。
+  如果远程系统（容器）在打开连接后立即将其关闭，这算作是健康的。
+
 <!--
+### Probe outcome
 Each probe has one of three results:
 
-* `Success`: The container passed the diagnostic.
-* `Failure`: The container failed the diagnostic.
-* `Unknown`: The diagnostic failed, so no action should be taken.
+`Success`
+: The container passed the diagnostic.
+
+`Failure`
+: The container failed the diagnostic.
+
+`Unknown`
+: The diagnostic failed (no action should be taken, and the kubelet
+  will make further checks).
+
 -->
+### 探测结果    {#probe-outcome}
 每次探测都将获得以下三种结果之一：
 
-- `Success`（成功）：容器通过了诊断。
-- `Failure`（失败）：容器未通过诊断。
-- `Unknown`（未知）：诊断失败，因此不会采取任何行动。
+`Success`（成功）
+: 容器通过了诊断。
+
+`Failure`（失败）
+: 容器未通过诊断。
+
+`Unknown`（未知）
+: 诊断失败，因此不会采取任何行动。
 
 <!--
+### Types of probe
 The kubelet can optionally perform and react to three kinds of probes on running
 containers:
 -->
+### 探测类型    {#types-of-probe}
 针对运行中的容器，`kubelet` 可以选择是否执行以下三种探针，以及如何针对探测结果作出反应：
 
 <!--
-* `livenessProbe`: Indicates whether the container is running. If
-   the liveness probe fails, the kubelet kills the container, and the container
-   is subjected to its [restart policy](#restart-policy). If a Container does not
-   provide a liveness probe, the default state is `Success`.
+`livenessProbe`
+: Indicates whether the container is running. If
+  the liveness probe fails, the kubelet kills the container, and the container
+  is subjected to its [restart policy](#restart-policy). If a container does not
+  provide a liveness probe, the default state is `Success`.
 
-* `readinessProbe`: Indicates whether the container is ready to respond to requests.
-   If the readiness probe fails, the endpoints controller removes the Pod's IP
-   address from the endpoints of all Services that match the Pod. The default
-   state of readiness before the initial delay is `Failure`. If a Container does
-   not provide a readiness probe, the default state is `Success`.
+`readinessProbe`
+: Indicates whether the container is ready to respond to requests.
+  If the readiness probe fails, the endpoints controller removes the Pod's IP
+  address from the endpoints of all Services that match the Pod. The default
+  state of readiness before the initial delay is `Failure`. If a container does
+  not provide a readiness probe, the default state is `Success`.
 
-* `startupProbe`: Indicates whether the application within the container is started.
-   All other probes are disabled if a startup probe is provided, until it succeeds.
-   If the startup probe fails, the kubelet kills the container, and the container
-   is subjected to its [restart policy](#restart-policy). If a Container does not
-   provide a startup probe, the default state is `Success`.
+`startupProbe`
+: Indicates whether the application within the container is started.
+  All other probes are disabled if a startup probe is provided, until it succeeds.
+  If the startup probe fails, the kubelet kills the container, and the container
+  is subjected to its [restart policy](#restart-policy). If a container does not
+  provide a startup probe, the default state is `Success`.
 -->
-- `livenessProbe`：指示容器是否正在运行。如果存活态探测失败，则 kubelet 会杀死容器，
+
+`livenessProbe`
+: 指示容器是否正在运行。如果存活态探测失败，则 kubelet 会杀死容器，
   并且容器将根据其[重启策略](#restart-policy)决定未来。如果容器不提供存活探针，
   则默认状态为 `Success`。
 
-- `readinessProbe`：指示容器是否准备好为请求提供服务。如果就绪态探测失败，
+`readinessProbe`
+: 指示容器是否准备好为请求提供服务。如果就绪态探测失败，
   端点控制器将从与 Pod 匹配的所有服务的端点列表中删除该 Pod 的 IP 地址。
   初始延迟之前的就绪态的状态值默认为 `Failure`。
   如果容器不提供就绪态探针，则默认状态为 `Success`。
 
-- `startupProbe`: 指示容器中的应用是否已经启动。如果提供了启动探针，则所有其他探针都会被
+`startupProbe`
+: 指示容器中的应用是否已经启动。如果提供了启动探针，则所有其他探针都会被
   禁用，直到此探针成功为止。如果启动探测失败，`kubelet` 将杀死容器，而容器依其
   [重启策略](#restart-policy)进行重启。
   如果容器没有提供启动探测，则默认状态为 `Success`。
@@ -521,12 +573,12 @@ For more information about how to set up a liveness, readiness, or startup probe
 see [Configure Liveness, Readiness and Startup Probes](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/).
 -->
 如欲了解如何设置存活态、就绪态和启动探针的进一步细节，可以参阅
-[配置存活态、就绪态和启动探针](/zh/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/)。
+[配置存活态、就绪态和启动探针](/zh-cn/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/)。
 
 <!--
-### When should you use a liveness probe?
+#### When should you use a liveness probe?
 -->
-### 何时该使用存活态探针?    {#when-should-you-use-a-liveness-probe}
+#### 何时该使用存活态探针?    {#when-should-you-use-a-liveness-probe}
 
 {{< feature-state for_k8s_version="v1.0" state="stable" >}}
 
@@ -539,16 +591,16 @@ with the Pod's `restartPolicy`.
 If you'd like your container to be killed and restarted if a probe fails, then
 specify a liveness probe, and specify a `restartPolicy` of Always or OnFailure.
 -->
-如果容器中的进程能够在遇到问题或不健康的情况下自行崩溃，则不一定需要存活态探针; 
-`kubelet` 将根据 Pod 的`restartPolicy` 自动执行修复操作。
+如果容器中的进程能够在遇到问题或不健康的情况下自行崩溃，则不一定需要存活态探针;
+`kubelet` 将根据 Pod 的 `restartPolicy` 自动执行修复操作。
 
 如果你希望容器在探测失败时被杀死并重新启动，那么请指定一个存活态探针，
-并指定`restartPolicy` 为 "`Always`" 或 "`OnFailure`"。
+并指定 `restartPolicy` 为 "`Always`" 或 "`OnFailure`"。
 
 <!--
-### When should you use a readiness probe?
+#### When should you use a readiness probe?
 -->
-### 何时该使用就绪态探针?      {#when-should-you-use-a-readiness-probe}
+#### 何时该使用就绪态探针?      {#when-should-you-use-a-readiness-probe}
 
 {{< feature-state for_k8s_version="v1.0" state="stable" >}}
 
@@ -558,16 +610,11 @@ specify a readiness probe. In this case, the readiness probe might be the same
 as the liveness probe, but the existence of the readiness probe in the spec means
 that the Pod will start without receiving any traffic and only start receiving
 traffic after the probe starts succeeding.
-If your container needs to work on loading large data, configuration files, or
-migrations during startup, specify a readiness probe.
 -->
 如果要仅在探测成功时才开始向 Pod 发送请求流量，请指定就绪态探针。
 在这种情况下，就绪态探针可能与存活态探针相同，但是规约中的就绪态探针的存在意味着
 Pod 将在启动阶段不接收任何数据，并且只有在探针探测成功后才开始接收数据。
 
-如果你的容器需要加载大规模的数据、配置文件或者在启动期间执行迁移操作，可以添加一个
-就绪态探针。
-
 <!--
 If you want your container to be able to take itself down for maintenance, you
 can specify a readiness probe that checks an endpoint specific to readiness that
@@ -576,6 +623,27 @@ is different from the liveness probe.
 如果你希望容器能够自行进入维护状态，也可以指定一个就绪态探针，检查某个特定于
 就绪态的因此不同于存活态探测的端点。
 
+<!--
+If your app has a strict dependency on back-end services, you can implement both
+a liveness and a readiness probe. The liveness probe passes when the app itself
+is healthy, but the readiness probe additionally checks that each required
+back-end service is available. This helps you avoid directing traffic to Pods
+that can only respond with error messages.
+
+If your container needs to work on loading large data, configuration files, or
+migrations during startup, you can use a
+[startup probe](#when-should-you-use-a-startup-probe). However, if you want to
+detect the difference between an app that has failed and an app that is still
+processing its startup data, you might prefer a readiness probe.
+-->
+如果你的应用程序对后端服务有严格的依赖性，你可以同时实现存活态和就绪态探针。
+当应用程序本身是健康的，存活态探针检测通过后，就绪态探针会额外检查每个所需的后端服务是否可用。
+这可以帮助你避免将流量导向只能返回错误信息的 Pod。
+
+如果你的容器需要在启动期间加载大型数据、配置文件或执行迁移，你可以使用
+[启动探针](#when-should-you-use-a-startup-probe)。
+然而，如果你想区分已经失败的应用和仍在处理其启动数据的应用，你可能更倾向于使用就绪探针。
+
 {{< note >}}
 <!--
 If you want to be able to drain requests when the Pod is deleted, you do not
@@ -590,9 +658,9 @@ to stop.
 {{< /note >}}
 
 <!--
-### When should you use a startup probe?
+#### When should you use a startup probe?
 -->
-### 何时该使用启动探针？   {#when-should-you-use-a-startup-probe}
+#### 何时该使用启动探针？   {#when-should-you-use-a-startup-probe}
 
 {{< feature-state for_k8s_version="v1.18" state="beta" >}}
 
@@ -686,11 +754,11 @@ An example flow:
    如果你使用 `kubectl describe` 来查验你正在删除的 Pod，该 Pod 会显示为
    "Terminating" （正在终止）。
    在 Pod 运行所在的节点上：`kubelet` 一旦看到 Pod
-   被标记为正在终止（已经设置了体面终止限期），`kubelet` 即开始本地的 Pod 关闭过程。 
+   被标记为正在终止（已经设置了体面终止限期），`kubelet` 即开始本地的 Pod 关闭过程。
 
    <!--
    1. If one of the Pod's containers has defined a `preStop`
-      [hook](/docs/concepts/containers/container-lifecycle-hooks/#hook-details), the kubelet
+      [hook](/docs/concepts/containers/container-lifecycle-hooks), the kubelet
       runs that hook inside of the container. If the `preStop` hook is still running after the
       grace period expires, the kubelet requests a small, one-off grace period extension of 2
       seconds.
@@ -702,7 +770,7 @@ An example flow:
       order. If the order of shutdowns matters, consider using a `preStop` hook to synchronize.
    -->
    1. 如果 Pod 中的容器之一定义了 `preStop`
-      [回调](/zh/docs/concepts/containers/container-lifecycle-hooks/#hook-details)，
+      [回调](/zh-cn/docs/concepts/containers/container-lifecycle-hooks)，
       `kubelet` 开始在容器内运行该回调逻辑。如果超出体面终止限期时，`preStop` 回调逻辑
       仍在运行，`kubelet` 会请求给予该 Pod 的宽限期一次性增加 2 秒钟。
 
@@ -806,7 +874,7 @@ API 服务器直接删除 Pod 对象，这样新的与之同名的 Pod 即可以
 在节点侧，被设置为立即终止的 Pod 仍然会在被强行杀死之前获得一点点的宽限时间。
 
 如果你需要强制删除 StatefulSet 的 Pod，请参阅
-[从 StatefulSet 中删除 Pod](/zh/docs/tasks/run-application/force-delete-stateful-set-pod/)
+[从 StatefulSet 中删除 Pod](/zh-cn/docs/tasks/run-application/force-delete-stateful-set-pod/)
 的任务文档。
 
 <!--
@@ -836,21 +904,20 @@ This avoids a resource leak as Pods are created and terminated over time.
 
 <!--
 * Get hands-on experience
-  [attaching handlers to Container lifecycle events](/docs/tasks/configure-pod-container/attach-handler-lifecycle-event/).
+  [attaching handlers to container lifecycle events](/docs/tasks/configure-pod-container/attach-handler-lifecycle-event/).
 
 * Get hands-on experience
   [configuring Liveness, Readiness and Startup Probes](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/).
 
 * Learn more about [container lifecycle hooks](/docs/concepts/containers/container-lifecycle-hooks/).
 
-* For detailed information about Pod / Container status in the API, see [PodStatus](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podstatus-v1-core)
-and
-[ContainerStatus](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#containerstatus-v1-core).
+* For detailed information about Pod and container status in the API, see
+  the API reference documentation covering
+  [`.status`](/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodStatus) for Pod.
 -->
-* 动手实践[为容器生命周期时间关联处理程序](/zh/docs/tasks/configure-pod-container/attach-handler-lifecycle-event/)。
-* 动手实践[配置存活态、就绪态和启动探针](/zh/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/)。
-* 进一步了解[容器生命周期回调](/zh/docs/concepts/containers/container-lifecycle-hooks/)。
-* 关于 API 中定义的有关 Pod/容器的详细规范信息，
-  可参阅 [PodStatus](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podstatus-v1-core)
-  和 [ContainerStatus](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#containerstatus-v1-core)。
+* 动手实践[为容器生命周期时间关联处理程序](/zh-cn/docs/tasks/configure-pod-container/attach-handler-lifecycle-event/)。
+* 动手实践[配置存活态、就绪态和启动探针](/zh-cn/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/)。
+* 进一步了解[容器生命周期回调](/zh-cn/docs/concepts/containers/container-lifecycle-hooks/)。
+* 关于 API 中定义的有关 Pod 和容器状态的详细规范信息，
+  可参阅 API 参考文档中 Pod 的 [`.status`](/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodStatus) 字段。
 
diff --git a/content/zh-cn/docs/contribute/_index.md b/content/zh-cn/docs/contribute/_index.md
new file mode 100644
index 0000000000..1ec143445b
--- /dev/null
+++ b/content/zh-cn/docs/contribute/_index.md
@@ -0,0 +1,315 @@
+---
+content_type: concept
+title: 为 Kubernetes 文档出一份力
+linktitle: 贡献
+main_menu: true
+no_list: true
+weight: 80
+card:
+  name: contribute
+  weight: 10
+  title: 开始为 Kubernetes 做贡献
+---
+<!--
+---
+content_type: concept
+title: Contribute to Kubernetes docs
+linktitle: Contribute
+main_menu: true
+no_list: true
+weight: 80
+card:
+  name: contribute
+  weight: 10
+  title: Start contributing to K8s
+---
+-->
+
+<!-- overview -->
+
+<!--
+*Kubernetes welcomes improvements from all contributors, new and experienced!*
+-->
+*Kubernetes 欢迎来自所有贡献者的改进，无论你是新人和有经验的贡献者！*
+
+<!--
+{{< note >}}
+To learn more about contributing to Kubernetes in general, see the
+[contributor documentation](https://www.kubernetes.dev/docs/).
+
+You can also read the
+{{< glossary_tooltip text="CNCF" term_id="cncf" >}}
+[page](https://contribute.cncf.io/contributors/projects/#kubernetes)
+about contributing to Kubernetes.
+{{< /note >}}
+-->
+{{< note >}}
+要了解有关为 Kubernetes 做出贡献的更多信息，请参阅
+[贡献者文档](https://www.kubernetes.dev/docs/)。
+
+你还可以阅读
+{{< glossary_tooltip text="CNCF" term_id="cncf" >}}
+关于为 Kubernetes 做贡献的[页面](https://contribute.cncf.io/contributors/projects/#kubernetes)。
+
+<!--
+This website is maintained by [Kubernetes SIG Docs](/docs/contribute/#get-involved-with-sig-docs).
+
+Kubernetes documentation contributors:
+
+- Improve existing content
+- Create new content
+- Translate the documentation
+- Manage and publish the documentation parts of the Kubernetes release cycle
+-->
+本网站由 [Kubernetes SIG Docs](/zh-cn/docs/contribute/#get-involved-with-SIG-Docs)（文档特别兴趣小组）维护。
+
+Kubernetes 文档项目的贡献者：
+
+- 改进现有内容
+- 创建新内容
+- 翻译文档
+- 管理并发布 Kubernetes 周期性发行版的文档
+
+<!-- body -->
+
+<!-- 
+## Getting started
+
+Anyone can open an issue about documentation, or contribute a change with a
+pull request (PR) to the
+[`kubernetes/website` GitHub repository](https://github.com/kubernetes/website).
+You need to be comfortable with
+[git](https://git-scm.com/) and
+[GitHub](https://lab.github.com/)
+to work effectively in the Kubernetes community.
+-->
+## 入门 {#getting-started}
+
+任何人都可以提出文档方面的问题（issue），或贡献一个变更，用拉取请求（PR）的方式提交到
+[GitHub 上的 `kubernetes/website` 仓库](https://github.com/kubernetes/website)。
+当然你需要熟练使用 [git](https://git-scm.com/) 和 [GitHub](https://lab.github.com/) 才能在 Kubernetes 社区中有效工作。
+
+<!-- 
+To get involved with documentation:
+
+1. Sign the CNCF [Contributor License Agreement](https://github.com/kubernetes/community/blob/master/CLA.md).
+2. Familiarize yourself with the [documentation repository](https://github.com/kubernetes/website)
+   and the website's [static site generator](https://gohugo.io).
+3. Make sure you understand the basic processes for
+   [opening a pull request](/docs/contribute/new-content/open-a-pr/) and
+   [reviewing changes](/docs/contribute/review/reviewing-prs/).
+-->
+如何参与文档编制：
+
+1. 签署 CNCF 的[贡献者许可协议](https://github.com/kubernetes/community/blob/master/CLA.md)。
+2. 熟悉[文档仓库](https://github.com/kubernetes/website)和网站的[静态站点生成器](https://gohugo.io)。
+3. 确保理解[发起 PR](/zh-cn/docs/contribute/new-content/open-a-pr/) 和[审查变更](/zh-cn/docs/contribute/review/reviewing-prs/)的基本流程。
+
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
+
+{{< mermaid >}}
+flowchart TB
+subgraph third[发起 PR]
+direction TB
+U[ ] -.-
+Q[改进现有内容] --- N[创建新内容]
+N --- O[翻译文档]
+O --- P[管理并发布 K8s<br>周期性发行版的文档]
+
+end
+
+subgraph second[评审]
+direction TB
+   T[ ] -.-
+   D[仔细查看<br>K8s/website<br>仓库] --- E[下载安装 Hugo<br>静态站点<br>生成器]
+   E --- F[了解基本的<br>GitHub 命令]
+   F --- G[评审待处理的 PR<br>并遵从变更审查<br>流程]
+end
+
+subgraph first[注册]
+    direction TB
+    S[ ] -.-
+    B[签署 CNCF<br>贡献者<br>许可协议] --- C[加入 sig-docs<br>Slack 频道] 
+    C --- V[加入 kubernetes-sig-docs<br>邮件列表]
+    V --- M[参加每周的<br>sig-docs 电话会议<br>或 slack 会议]
+end
+
+A([fa:fa-user 新的<br>贡献者]) --> first
+A --> second
+A --> third
+A --> H[提出问题!!!]
+
+
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class A,B,C,D,E,F,G,H,M,Q,N,O,P,V grey
+class S,T,U spacewhite
+class first,second,third white
+{{</ mermaid >}}
+
+<!-- 
+Figure 1. Getting started for a new contributor.
+
+Figure 1 outlines a roadmap for new contributors. You can follow some or all of the steps for `Sign up` and `Review`. Now you are ready to open PRs that achieve your contribution objectives with some listed under `Open PR`. Again, questions are always welcome!
+-->
+图 1. 新手入门指示。
+
+图 1 概述了新贡献者的路线图。
+你可以遵从“注册”和“评审”所述的某些或全部步骤。
+至此，你完成了发起 PR 的准备工作，
+可以通过“发起 PR” 列出的事项实现你的贡献目标。
+再次重申，欢迎随时提出问题！
+
+<!-- 
+Some tasks require more trust and more access in the Kubernetes organization.
+See [Participating in SIG Docs](/docs/contribute/participate/) for more details about
+roles and permissions.
+-->
+有些任务要求 Kubernetes 组织内更高的信任级别和访问权限。
+阅读[参与 SIG Docs 工作](/zh-cn/docs/contribute/participate/)，获取角色和权限的更多细节。
+
+<!-- 
+## Your first contribution
+
+You can prepare for your first contribution by reviewing several steps beforehand. Figure 2 outlines the steps and the details follow. 
+-->
+## 第一次贡献 {#your-first-contribution}
+
+你可以提前查阅几个步骤，来准备你的第一次贡献。
+图 2 概述了后续的步骤和细节。
+
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
+
+{{< mermaid >}}
+flowchart LR
+    subgraph second[第一次贡献]
+    direction TB
+    S[ ] -.-
+    G[查阅其他 K8s<br>成员发起的 PR] -->
+    A[检索 K8s/website<br>问题列表是否有<br>good first 一类的 PR] --> B[发起一个 PR!!]
+    end
+    subgraph first[建议的准备工作]
+    direction TB
+       T[ ] -.-
+       D[阅读贡献概述] -->E[阅读 K8s 内容<br>和风格指南]
+       E --> F[了解 Hugo 页面<br>内容类型<br>和短代码]
+    end
+    
+
+    first ----> second
+     
+
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class A,B,D,E,F,G grey
+class S,T spacewhite
+class first,second white
+{{</ mermaid >}}
+
+<!-- 
+Figure 2. Preparation for your first contribution.
+-->
+图 2. 第一次贡献的准备工作。
+
+<!--
+- Read the [Contribution overview](/docs/contribute/new-content/) to
+  learn about the different ways you can contribute.
+- Check [`kubernetes/website` issues list](https://github.com/kubernetes/website/issues/)
+  for issues that make good entry points.
+- [Open a pull request using GitHub](/docs/contribute/new-content/open-a-pr/#changes-using-github)
+  to existing documentation and learn more about filing issues in GitHub.
+- [Review pull requests](/docs/contribute/review/reviewing-prs/) from other
+  Kubernetes community members for accuracy and language.
+- Read the Kubernetes [content](/docs/contribute/style/content-guide/) and
+  [style guides](/docs/contribute/style/style-guide/) so you can leave informed comments.
+- Learn about [page content types](/docs/contribute/style/page-content-types/)
+  and [Hugo shortcodes](/docs/contribute/style/hugo-shortcodes/).
+-->
+- 通读[贡献概述](/zh-cn/docs/contribute/new-content/)，了解参与贡献的不同方式。
+- 查看 [`kubernetes/website` 问题列表](https://github.com/kubernetes/website/issues/)，
+  检索最适合作为切入点的问题。
+- 在现有文档上，[使用 GitHub 提交 PR](/zh-cn/docs/contribute/new-content/open-a-pr/#changes-using-github)，
+  掌握在 GitHub 上登记 Issue 的方法。
+- Kubernetes 社区其他成员会[评审 PR ](/zh-cn/docs/contribute/review/reviewing-prs/)，
+  以确保文档精准和语言流畅。
+- 阅读 kubernetes 的[内容指南](/zh-cn/docs/contribute/style/content-guide/)和
+  [风格指南](/zh-cn/docs/contribute/style/style-guide/)，以发表有见地的评论。
+- 了解[页面内容类型](/zh-cn/docs/contribute/style/page-content-types/)和 
+  [Hugo 短代码](/zh-cn/docs/contribute/style/hugo-shortcodes/)。
+
+<!--
+## Next steps
+
+- Learn to [work from a local clone](/docs/contribute/new-content/open-a-pr/#fork-the-repo)
+  of the repository.
+- Document [features in a release](/docs/contribute/new-content/new-features/).
+- Participate in [SIG Docs](/docs/contribute/participate/), and become a
+  [member or reviewer](/docs/contribute/participate/roles-and-responsibilities/).
+  
+- Start or help with a [localization](/docs/contribute/localization/).
+-->
+## 下一步 {#next-teps}
+
+- 学习在仓库的[本地克隆中工作](/zh-cn/docs/contribute/new-content/open-a-pr/#fork-the-repo)。
+- 为[发行版的特性](/zh-cn/docs/contribute/new-content/new-features/)编写文档。
+- 加入 [SIG Docs](/zh-cn/docs/contribute/participate/)，并成为[成员或评审者](/zh-cn/docs/contribute/participate/roles-and-responsibilities/)。
+  
+- 开始或帮助[本地化](/zh-cn/docs/contribute/localization/) 工作。
+
+<!-- 
+## Get involved with SIG Docs
+
+[SIG Docs](/docs/contribute/participate/) is the group of contributors who
+publish and maintain Kubernetes documentation and the website. Getting
+involved with SIG Docs is a great way for Kubernetes contributors (feature
+development or otherwise) to have a large impact on the Kubernetes project.
+
+SIG Docs communicates with different methods:
+-->
+## 参与 SIG Docs 工作 {#get-involved-with-SIG-Docs}
+
+[SIG Docs](/zh-cn/docs/contribute/participate/) 是负责发布、维护 Kubernetes 文档的贡献者团体。
+参与 SIG Docs 是 Kubernetes 贡献者（开发者和其他人员）对 Kubernetes 项目产生重大影响力的好方式。
+
+SIG Docs 的几种沟通方式：
+<!--
+- [Join `#sig-docs` on the Kubernetes Slack instance](https://slack.k8s.io/). Make sure to
+  introduce yourself!
+- [Join the `kubernetes-sig-docs` mailing list](https://groups.google.com/forum/#!forum/kubernetes-sig-docs),
+  where broader discussions take place and official decisions are recorded.
+- Join the [SIG Docs video meeting](https://github.com/kubernetes/community/tree/master/sig-docs) held every two weeks. Meetings are always announced on `#sig-docs` and added to the [Kubernetes community meetings calendar](https://calendar.google.com/calendar/embed?src=cgnt364vd8s86hr2phapfjc6uk%40group.calendar.google.com&ctz=America/Los_Angeles). You'll need to download the [Zoom client](https://zoom.us/download) or dial in using a phone.
+- Join the SIG Docs async Slack standup meeting on those weeks when the in-person Zoom video meeting does not take place. Meetings are always announced on `#sig-docs`. You can contribute to any one of the threads up to 24 hours after meeting announcement. 
+-->
+- [加入 Kubernetes 在 Slack 上的`#sig-docs` 频道](https://slack.k8s.io/)。
+  一定记得自我介绍!
+- [加入 `kubernetes-sig-docs` 邮件列表](https://groups.google.com/forum/#!forum/kubernetes-sig-docs),
+  这里有更广泛的讨论，和官方决策的记录。
+- 参加每两周召开一次的 [SIG Docs 视频会议](https://github.com/kubernetes/community/tree/master/sig-docs)。
+  会议总是在 `#sig-docs` 上发出公告，同时添加到
+  [Kubernetes 社区会议日历](https://calendar.google.com/calendar/embed?src=cgnt364vd8s86hr2phapfjc6uk%40group.calendar.google.com&ctz=America/Los_Angeles)。
+  你需要下载 [Zoom 客户端软件](https://zoom.us/download)，或电话拨号接入。
+- 如果有几周未召开实况 Zoom 视频会议，请参加 SIG Docs 异步 Slack 站会。
+  会议总是在 `#sig-docs` 上发出公告。
+  你可以在会议公告后 24 小时内为其中任一议题做贡献。
+
+<!--
+## Other ways to contribute
+
+- Visit the [Kubernetes community site](/community/). Participate on Twitter or Stack Overflow, learn about local Kubernetes meetups and events, and more.
+- Read the [contributor cheatsheet](https://www.kubernetes.dev/docs/contributor-cheatsheet/) to get involved with Kubernetes feature development.
+- Visit the contributor site to learn more about [Kubernetes Contributors](https://www.kubernetes.dev/) and [additional contributor resources](https://www.kubernetes.dev/resources/).
+- Submit a [blog post or case study](/docs/contribute/new-content/blogs-case-studies/).
+-->
+## 其他贡献方式 {#other-ways-to-contribute}
+
+- 访问 [Kubernetes 社区网站](/zh-cn/community/)。
+  参与 Twitter 或 Stack Overflow，了解当地的 Kubernetes 会议和活动等等。
+- 阅读[贡献者备忘单](https://github.com/kubernetes/community/tree/master/contributors/guide/contributor-cheatsheet)，
+  参与 Kubernetes 功能开发。
+- 访问贡献者网站，进一步了解有关 [Kubernetes 贡献者](https://www.kubernetes.dev/)
+  和[更多贡献者资源](https://www.kubernetes.dev/resources/)的信息。
+- 提交一篇[博客文章或案例研究](/zh-cn/docs/contribute/new-content/blogs-case-studies/)。
diff --git a/content/zh/docs/contribute/advanced.md b/content/zh-cn/docs/contribute/advanced.md
similarity index 71%
rename from content/zh/docs/contribute/advanced.md
rename to content/zh-cn/docs/contribute/advanced.md
index 3a69c1f97f..074da4b64f 100644
--- a/content/zh/docs/contribute/advanced.md
+++ b/content/zh-cn/docs/contribute/advanced.md
@@ -1,5 +1,5 @@
 ---
-title: 高级贡献
+title: 进阶贡献
 slug: advanced
 content_type: concept
 weight: 98
@@ -15,26 +15,27 @@ weight: 98
 
 <!--
 This page assumes that you understand how to
-[contribute to new content](/docs/contribute/new-content/overview) and
+[contribute to new content](/docs/contribute/new-content/) and
 [review others' work](/docs/contribute/review/reviewing-prs/), and are ready
 to learn about more ways to contribute. You need to use the Git command line
 client and other tools for some of these tasks.
 -->
 
-如果你已经了解如何[贡献新内容](/zh/docs/contribute/new-content/overview/)和
-[评阅他人工作](/zh/docs/contribute/review/reviewing-prs/)，并准备了解更多贡献的途径，
-请阅读此文。您需要使用 Git 命令行工具和其他工具做这些工作。
+如果你已经了解如何[贡献新内容](/zh-cn/docs/contribute/new-content/)和
+[评阅他人工作](/zh-cn/docs/contribute/review/reviewing-prs/)，并准备了解更多贡献的途径，
+请阅读此文。你需要使用 Git 命令行工具和其他工具做这些工作。
 
 <!-- body -->
 
 <!--
 ## Propose improvements
 
-SIG Docs [members](/docs/contribute/participate/roles-and-responsibilities/#members) can propose improvements.
+SIG Docs [members](/docs/contribute/participate/roles-and-responsibilities/#members)
+can propose improvements.
 -->
-## 提出改进建议
+## 提出改进建议   {#propose-improvements}
 
-SIG Docs 的 [成员](/zh/docs/contribute/participate/roles-and-responsibilities/#members) 可以提出改进建议。
+SIG Docs 的[成员](/zh-cn/docs/contribute/participate/roles-and-responsibilities/#members) 可以提出改进建议。
 
 <!--
 After you've been contributing to the Kubernetes documentation for a while, you
@@ -44,18 +45,18 @@ the documentation, the website style, the processes for reviewing and merging
 pull requests, or other aspects of the documentation. For maximum transparency,
 these types of proposals need to be discussed in a SIG Docs meeting or on the
 [kubernetes-sig-docs mailing list](https://groups.google.com/forum/#!forum/kubernetes-sig-docs).
-In addition, it can really help to have some context about the way things
+In addition, it can help to have some context about the way things
 currently work and why past decisions have been made before proposing sweeping
 changes. The quickest way to get answers to questions about how the documentation
 currently works is to ask in the `#sig-docs` Slack channel on
 [kubernetes.slack.com](https://kubernetes.slack.com)
 -->
-在对 Kubernetes 文档贡献了一段时间后，你可能会对[样式指南](/zh/docs/contribute/style/style-guide/)、
-[内容指南](/zh/docs/contribute/style/content-guide/)、用于构建文档的工具链、网站样式、
+在对 Kubernetes 文档贡献了一段时间后，你可能会对[样式指南](/zh-cn/docs/contribute/style/style-guide/)、
+[内容指南](/zh-cn/docs/contribute/style/content-guide/)、用于构建文档的工具链、网站样式、
 评审和合并 PR 的流程或者文档的其他方面产生改进的想法。
 为了尽可能透明化，这些提议都需要在 SIG Docs 会议或
 [kubernetes-sig-docs 邮件列表](https://groups.google.com/forum/#!forum/kubernetes-sig-docs)上讨论。
-此外，在提出全面的改进之前，这些讨论能真正帮助我们了解有关“当前工作如何运作”和“以往的决定是为何做出”的背景。
+此外，在提出全面的改进之前，这些讨论能帮助我们了解有关“当前工作如何运作”和“以往的决定是为何做出”的背景。
 想了解文档的当前运作方式，最快的途径是咨询 [kubernetes.slack.com](https://kubernetes.slack.com)
 中的 `#sig-docs` 聊天群组。
 
@@ -66,18 +67,19 @@ appropriate. For instance, an update to the style guide or the website's
 functionality might involve opening a pull request, while a change related to
 documentation testing might involve working with sig-testing.
 -->
-在进行了讨论并且 SIG 就期望的结果达成一致之后，你就能以最合理的方式处理改进建议了。例如，样式指南或网站功能的更新可能涉及 PR 的新增，而与文档测试相关的更改可能涉及 sig-testing。
+在进行了讨论并且 SIG 就期望的结果达成一致之后，你就能以最合理的方式处理改进建议了。
+例如，样式指南或网站功能的更新可能涉及 PR 的新增，而与文档测试相关的更改可能涉及 sig-testing。
 
 <!--
 ## Coordinate docs for a Kubernetes release
 
-SIG Docs [approvers](/docs/contribute/participating/#approvers) can coordinate
-docs for a Kubernetes release.
+SIG Docs [approvers](/docs/contribute/participate/roles-and-responsibilities/#approvers)
+can coordinate docs for a Kubernetes release.
 -->
-## 为 Kubernetes 版本发布协调文档工作
+## 为 Kubernetes 版本发布协调文档工作   {#coordinate-docs-for-a-kubernetes-release}
 
-SIG Docs 的[批准者（approvers）](/zh/docs/contribute/participating/#approvers) 可以为
-Kubernetes 版本发布协调文档工作。
+SIG Docs 的[批准者（approvers）](/zh-cn/docs/contribute/participate/roles-and-responsibilities/#approvers)
+可以为 Kubernetes 版本发布协调文档工作。
 
 <!--
 Each Kubernetes release is coordinated by a team of people participating in the
@@ -96,7 +98,7 @@ refer to
 The SIG Docs representative for a given release coordinates the following tasks:
 
 - Monitor the feature-tracking spreadsheet for new or changed features with an
-  impact on documentation. If documentation for a given feature won't be ready
+  impact on documentation. If the documentation for a given feature won't be ready
   for the release, the feature may not be allowed to go into the release.
 - Attend sig-release meetings regularly and give updates on the status of the
   docs for the release.
@@ -129,63 +131,66 @@ rotated among SIG Docs approvers.
 <!--
 ## Serve as a New Contributor Ambassador
 
-SIG Docs [approvers](/docs/contribute/participating/#approvers) can serve as
-New Contributor Ambassadors. 
+SIG Docs [approvers](/docs/contribute/participate/roles-and-responsibilities/#approvers)
+can serve as New Contributor Ambassadors.
 
-New Contributor Ambassadors work together to welcome new contributors to SIG-Docs, 
+New Contributor Ambassadors welcome new contributors to SIG-Docs,
 suggest PRs to new contributors, and mentor new contributors through their first
 few PR submissions.
 
 Responsibilities for New Contributor Ambassadors include:
 -->
 
-## 担任新的贡献者大使
+## 担任新的贡献者大使   {#serve-as-a-new-contributor-ambassador}
 
-SIG Docs [批准人（Approvers）](/zh/docs/contribute/participating/#approvers) 
+SIG Docs [批准人（Approvers）](/zh-cn/docs/contribute/participate/roles-and-responsibilities/#approvers)
 可以担任新的贡献者大使。
 
-新的贡献者大使共同努力欢迎 SIG-Docs 的新贡献者，对新贡献者的 PR 提出建议，
+新的贡献者大使欢迎 SIG-Docs 的新贡献者，对新贡献者的 PR 提出建议，
 以及在前几份 PR 提交中指导新贡献者。
 
 新的贡献者大使的职责包括：
 
 <!--
 - Being available on the [Kubernetes #sig-docs channel](https://kubernetes.slack.com) to answer questions from new contributors.
-- Working with PR wranglers to identify good first issues for new contributors. 
-- Mentoring new contributors through their first few PRs to the docs repo. 
+- Working with PR wranglers to identify [good first issues](https://kubernetes.dev/docs/guide/help-wanted/#good-first-issue) for new contributors.
+- Mentoring new contributors through their first few PRs to the docs repo.
 - Helping new contributors create the more complex PRs they need to become Kubernetes members.
 - [Sponsoring contributors](/docs/contribute/advanced/#sponsor-a-new-contributor) on their path to becoming Kubernetes members.
+- Hosting a monthly meeting to help and mentor new contributors.
 -->
 - 监听 [Kubernetes #sig-docs 频道](https://kubernetes.slack.com) 上新贡献者的 Issue。
-- 与 PR 管理者合作为新参与者寻找合适的第一个 issues。 
-- 通过前几个 PR 指导新贡献者为文档存储库作贡献。 
+- 与 PR 管理者合作为新参与者寻找[合适的第一个 issues](https://kubernetes.dev/docs/guide/help-wanted/#good-first-issue)。
+- 通过前几个 PR 指导新贡献者为文档存储库作贡献。
 - 帮助新的贡献者创建成为 Kubernetes 成员所需的更复杂的 PR。
 - [为贡献者提供保荐](#sponsor-a-new-contributor)，使其成为 Kubernetes 成员。
+- 每月召开一次会议，帮助和指导新的贡献者。
 
 <!--
-Current New Contributor Ambassadors are announced at each SIG-Docs meeting, and in the [Kubernetes #sig-docs channel](https://kubernetes.slack.com).
+Current New Contributor Ambassadors are announced at each SIG-Docs meeting and in the [Kubernetes #sig-docs channel](https://kubernetes.slack.com).
 -->
 当前新贡献者大使将在每次 SIG 文档会议上以及 [Kubernetes #sig-docs 频道](https://kubernetes.slack.com)中宣布。
 
 <!--
 ## Sponsor a new contributor
 
-SIG Docs [reviewers](/docs/contribute/participating/#reviewers) can sponsor
-new contributors.
+SIG Docs [reviewers](/docs/contribute/participate/roles-and-responsibilities/#reviewers)
+can sponsor new contributors.
 -->
 ## 为新的贡献者提供保荐 {#sponsor-a-new-contributor}
 
-SIG Docs 的[评审人（Reviewers）](/zh/docs/contribute/participating/#reviewers) 可以为新的贡献者提供保荐。
+SIG Docs 的[评审人（Reviewers）](/zh-cn/docs/contribute/participate/roles-and-responsibilities/#reviewers)
+可以为新的贡献者提供保荐。
 
 <!--
 After a new contributor has successfully submitted 5 substantive pull requests
 to one or more Kubernetes repositories, they are eligible to apply for
-[membership](/docs/contribute/participating#members) in the Kubernetes
-organization. The contributor's membership needs to be backed by two sponsors
-who are already reviewers.
+[membership](/docs/contribute/participate/roles-and-responsibilities/#members)
+in the Kubernetes organization. The contributor's membership needs to be
+backed by two sponsors who are already reviewers.
 -->
 新的贡献者针对一个或多个 Kubernetes 项目仓库成功提交了 5 个实质性 PR 之后，
-就有资格申请 Kubernetes 组织的[成员身份](/zh/docs/contribute/participate/roles-and-responsibilities/#members)。
+就有资格申请 Kubernetes 组织的[成员身份](/zh-cn/docs/contribute/participate/roles-and-responsibilities/#members)。
 贡献者的成员资格需要同时得到两位评审人的保荐。
 
 <!--
@@ -205,37 +210,42 @@ membership in the Kubernetes organization.
 <!--
 ## Serve as a SIG Co-chair
 
-SIG Docs [approvers](/docs/contribute/participating/#approvers) can serve a term as a co-chair of SIG Docs.
+SIG Docs [members](/docs/contribute/participate/roles-and-responsibilities/#members)
+can serve a term as a co-chair of SIG Docs.
 
 ### Prerequisites
 -->
-## 担任 SIG 联合主席
+## 担任 SIG 联合主席   {#sponsor-a-new-contributor}
 
-SIG Docs [批准人（Approvers）](/zh/docs/contribute/participate/roles-and-responsibilities/#approvers)
+SIG Docs [成员（Members）](/zh-cn/docs/contribute/participate/roles-and-responsibilities/#members)
 可以担任 SIG Docs 的联合主席。
 
-### 前提条件
+### 前提条件   {#prerequisites}
 
 <!--
-Approvers must meet the following requirements to be a co-chair:
+A Kubernetes member must meet the following requirements to be a co-chair:
 
-- Have been a SIG Docs approver for at least 6 months
-- Have [led a Kubernetes docs release](/docs/contribute/advanced/#coordinate-docs-for-a-kubernetes-release) or shadowed two releases
 - Understand SIG Docs workflows and tooling: git, Hugo, localization, blog subproject
-- Understand how other Kubernetes SIGs and repositories affect the SIG Docs workflow, including: [teams in k/org](https://github.com/kubernetes/org/blob/master/config/kubernetes/sig-docs/teams.yaml), [process in k/community](https://github.com/kubernetes/community/tree/master/sig-docs), plugins in [k/test-infra](https://github.com/kubernetes/test-infra/), and the role of [SIG Architecture](https://github.com/kubernetes/community/tree/master/sig-architecture). 
+- Understand how other Kubernetes SIGs and repositories affect the SIG Docs
+  workflow, including:
+  [teams in k/org](https://github.com/kubernetes/org/blob/main/config/kubernetes/sig-docs/teams.yaml), the
+  [process in k/community](https://github.com/kubernetes/community/tree/main/sig-docs),
+  plugins in [k/test-infra](https://github.com/kubernetes/test-infra/), and the role of
+  [SIG Architecture](https://github.com/kubernetes/community/tree/main/sig-architecture).
+  In addition, understand how the [Kubernetes docs release process](/docs/contribute/advanced/#coordinate-docs-for-a-kubernetes-release) works.
+- Approved by the SIG Docs community either directly or via lazy consensus.
 - Commit at least 5 hours per week (and often more) to the role for a minimum of 6 months
 -->
-Approvers 必须满足以下要求才能成为联合主席：
+Kubernetes 成员必须满足以下要求才能成为联合主席：
 
-- 已维持 SIG Docs approver 身份至少 6 个月
-- [曾领导 Kubernetes 文档发布](/zh/docs/contribute/advanced/#coordinate-docs-for-a-kubernetes-release)
-  或者在两个版本发布中有实习经历
 - 理解 SIG Docs 工作流程和工具：git、Hugo、本地化、博客子项目
 - 理解其他 Kubernetes SIG 和仓库会如何影响 SIG Docs 工作流程，包括：
-  [k/org 中的团队](https://github.com/kubernetes/org/blob/master/config/kubernetes/sig-docs/teams.yaml)、
-  [k/community 中的流程](https://github.com/kubernetes/community/tree/master/sig-docs)、
+  [k/org 中的团队](https://github.com/kubernetes/org/blob/main/config/kubernetes/sig-docs/teams.yaml)、
+  [k/community 中的流程](https://github.com/kubernetes/community/tree/main/sig-docs)、
   [k/test-infra](https://github.com/kubernetes/test-infra/) 中的插件、
-  [SIG Architecture](https://github.com/kubernetes/community/tree/master/sig-architecture) 中的角色。 
+  [SIG Architecture](https://github.com/kubernetes/community/tree/main/sig-architecture) 中的角色。
+  此外，了解 [Kubernetes 文档发布流程](/zh-cn/docs/contribute/advanced/#coordinate-docs-for-a-kubernetes-release)的工作原理。
+- 由 SIG Docs 社区直接或通过惰性共识批准。
 - 在至少 6 个月的时段内，确保每周至少投入 5 个小时（通常更多）
 
 <!--
@@ -245,7 +255,7 @@ The role of co-chair is primarily one of service: co-chairs handle process and p
 
 Responsibilities include:
 -->
-### 职责范围
+### 职责范围   {#responsibilities}
 
 联合主席主要提供以下服务：
 联合主席负责处理流程和政策、时间安排和召开会议、安排 PR 管理员、以及一些其他人不想做的事情，目的是增长贡献者团队。
@@ -254,7 +264,7 @@ Responsibilities include:
 
 <!--
 - Keep SIG Docs focused on maximizing developer happiness through excellent documentation
-- Exemplify the [community code of conduct](https://github.com/cncf/foundation/blob/master/code-of-conduct.md) and hold SIG members accountable to it
+- Exemplify the [community code of conduct](https://github.com/cncf/foundation/blob/main/code-of-conduct.md) and hold SIG members accountable to it
 - Learn and set best practices for the SIG by updating contribution guidelines
 - Schedule and run SIG meetings: weekly status updates, quarterly retro/planning sessions, and others as needed
 - Schedule and run doc sprints at KubeCon events and other conferences
@@ -262,7 +272,7 @@ Responsibilities include:
 - Keep the SIG running smoothly
 -->
 - 保持 SIG Docs 专注于通过出色的文档最大限度地提高开发人员的满意度
-- 以身作则，践行[社区行为准则](https://github.com/cncf/foundation/blob/master/code-of-conduct.md)，
+- 以身作则，践行[社区行为准则](https://github.com/cncf/foundation/blob/main/code-of-conduct.md)，
   并要求 SIG 成员对自身行为负责
 - 通过更新贡献指南，为 SIG 学习并设置最佳实践
 - 安排和举行 SIG 会议：每周状态更新，每季度回顾/计划会议以及其他需要的会议
@@ -276,15 +286,15 @@ Responsibilities include:
 
 To schedule and run effective meetings, these guidelines show what to do, how to do it, and why.
 
-**Uphold the [community code of conduct](https://github.com/cncf/foundation/blob/master/code-of-conduct.md)**:
+**Uphold the [community code of conduct](https://github.com/cncf/foundation/blob/main/code-of-conduct.md)**:
 
 - Hold respectful, inclusive discussions with respectful, inclusive language.
 -->
-### 召开高效的会议
+### 召开高效的会议   {#running-effective-meetings}
 
 为了安排和召开高效的会议，这些指南说明了如何做、怎样做以及原因。
 
-**坚持[社区行为准则](https://github.com/cncf/foundation/blob/master/code-of-conduct.md)**：
+**坚持[社区行为准则](https://github.com/cncf/foundation/blob/main/code-of-conduct.md)**：
 
 - 相互尊重地、包容地进行讨论。
 
@@ -330,7 +340,7 @@ For weekly meetings, copypaste the previous week's notes into the "Past meetings
 
 **Honor folks' time**:
 
-- Begin and end meetings punctually
+Begin and end meetings on time.
 -->
 **根据需要来进行协调**：
 
@@ -339,19 +349,19 @@ For weekly meetings, copypaste the previous week's notes into the "Past meetings
 
 **尊重大家的时间**:
 
-- 准时开始和结束会议
+按时开始和结束会议
 
 <!--
 **Use Zoom effectively**:
 
-- Familiarize yourself with [Zoom guidelines for Kubernetes](https://github.com/kubernetes/community/blob/master/communication/zoom-guidelines.md)
+- Familiarize yourself with [Zoom guidelines for Kubernetes](https://github.com/kubernetes/community/blob/main/communication/zoom-guidelines.md)
 - Claim the host role when you log in by entering the host key
 
 <img src="/images/docs/contribute/claim-host.png" width="75%" alt="Claiming the host role in Zoom" />
 -->
 **有效利用 Zoom**：
 
-- 熟悉 [ Kubernetes Zoom 指南](https://github.com/kubernetes/community/blob/master/communication/zoom-guidelines.md)
+- 熟悉 [ Kubernetes Zoom 指南](https://github.com/kubernetes/community/blob/main/communication/zoom-guidelines.md)
 - 输入主持人密钥登录时声明主持人角色
 
 <img src="/images/docs/contribute/claim-host.png" width="75%" alt="声明 Zoom 角色" />
@@ -360,12 +370,12 @@ For weekly meetings, copypaste the previous week's notes into the "Past meetings
 ### Recording meetings on Zoom
 
 When you're ready to start the recording, click Record to Cloud.
-    
+
 When you're ready to stop recording, click Stop.
 
 The video uploads automatically to YouTube.
 -->
-### 录制 Zoom 会议
+### 录制 Zoom 会议   {#recording-meetings-on-zoom}
 
 准备开始录制时，请单击“录制到云”。
 
diff --git a/content/zh/docs/contribute/analytics.md b/content/zh-cn/docs/contribute/analytics.md
similarity index 100%
rename from content/zh/docs/contribute/analytics.md
rename to content/zh-cn/docs/contribute/analytics.md
diff --git a/content/zh/docs/contribute/generate-ref-docs/_index.md b/content/zh-cn/docs/contribute/generate-ref-docs/_index.md
similarity index 85%
rename from content/zh/docs/contribute/generate-ref-docs/_index.md
rename to content/zh-cn/docs/contribute/generate-ref-docs/_index.md
index fc73d84b29..87f08c5f6d 100644
--- a/content/zh/docs/contribute/generate-ref-docs/_index.md
+++ b/content/zh-cn/docs/contribute/generate-ref-docs/_index.md
@@ -22,5 +22,5 @@ To build the reference documentation, see the following guide:
 本节的主题是描述如何生成 Kubernetes 参考指南。
 要生成参考文档，请参考下面的指南：
 
-* [生成参考文档快速入门](/zh/docs/contribute/generate-ref-docs/quickstart/)
+* [生成参考文档快速入门](/zh-cn/docs/contribute/generate-ref-docs/quickstart/)
 
diff --git a/content/zh/docs/contribute/generate-ref-docs/contribute-upstream.md b/content/zh-cn/docs/contribute/generate-ref-docs/contribute-upstream.md
similarity index 88%
rename from content/zh/docs/contribute/generate-ref-docs/contribute-upstream.md
rename to content/zh-cn/docs/contribute/generate-ref-docs/contribute-upstream.md
index d16879d7e7..cbbc13cb9b 100644
--- a/content/zh/docs/contribute/generate-ref-docs/contribute-upstream.md
+++ b/content/zh-cn/docs/contribute/generate-ref-docs/contribute-upstream.md
@@ -27,10 +27,10 @@ API or the `kube-*` components from the upstream code, see the following instruc
 - [Generating Reference Documentation for the Kubernetes API](/docs/contribute/generate-ref-docs/kubernetes-api/)
 - [Generating Reference Documentation for the Kubernetes Components and Tools](/docs/contribute/generate-ref-docs/kubernetes-components/)
 -->
-如果您仅想从上游代码重新生成 Kubernetes API 或 `kube-*` 组件的参考文档。请参考以下说明：
+如果你仅想从上游代码重新生成 Kubernetes API 或 `kube-*` 组件的参考文档。请参考以下说明：
 
-- [生成 Kubernetes API 的参考文档](/zh/docs/contribute/generate-ref-docs/kubernetes-api/)
-- [生成 Kubernetes 组件和工具的参考文档](/zh/docs/contribute/generate-ref-docs/kubernetes-components/)
+- [生成 Kubernetes API 的参考文档](/zh-cn/docs/contribute/generate-ref-docs/kubernetes-api/)
+- [生成 Kubernetes 组件和工具的参考文档](/zh-cn/docs/contribute/generate-ref-docs/kubernetes-components/)
 
 ## {{% heading "prerequisites" %}}
 
@@ -40,6 +40,8 @@ You need to have these tools installed:
   - [Golang](https://golang.org/doc/install) version 1.13+
   - [Docker](https://docs.docker.com/engine/installation/)
   - [etcd](https://github.com/coreos/etcd/)
+  - [make](https://www.gnu.org/software/make/)
+  - [gcc compiler/linker](https://gcc.gnu.org/)
 -->
 - 你需要安装以下工具：
 
@@ -47,6 +49,8 @@ You need to have these tools installed:
   - [Golang](https://golang.org/doc/install) 的 1.13 版本或更高
   - [Docker](https://docs.docker.com/engine/installation/)
   - [etcd](https://github.com/coreos/etcd/)
+  - [make](https://www.gnu.org/software/make/)
+  - [gcc compiler/linker](https://gcc.gnu.org/)
 
 <!--
 - Your $GOPATH environment variable must be set, and the location of `etcd`
@@ -61,7 +65,7 @@ You need to have these tools installed:
   [Creating a Pull Request](https://help.github.com/articles/creating-a-pull-request/) and
   [GitHub Standard Fork & Pull Request Workflow](https://gist.github.com/Chaser324/ce0505fbed06b947d962).
 -->
-- 您需要知道如何创建对 GitHub 代码仓库的拉取请求（Pull Request）。
+- 你需要知道如何创建对 GitHub 代码仓库的拉取请求（Pull Request）。
   通常，这涉及创建代码仓库的派生副本。
   要获取更多的信息请参考[创建 PR](https://help.github.com/articles/creating-a-pull-request/) 和
   [GitHub 标准派生和 PR 工作流程](https://gist.github.com/Chaser324/ce0505fbed06b947d962)。
@@ -83,7 +87,7 @@ creating a patch to fix it in the upstream project.
 Kubernetes API 和 `kube-*` 组件（例如 `kube-apiserver`、`kube-controller-manager`）的参考文档
 是根据[上游 Kubernetes](https://github.com/kubernetes/kubernetes/) 中的源代码自动生成的。
 
-当您在生成的文档中看到错误时，您可能需要考虑创建一个 PR 用来在上游项目中对其进行修复。
+当你在生成的文档中看到错误时，你可能需要考虑创建一个 PR 用来在上游项目中对其进行修复。
 
 <!--
 ## Cloning the Kubernetes repository
@@ -92,7 +96,7 @@ If you don't already have the kubernetes/kubernetes repository, get it now:
 -->
 ## 克隆 Kubernetes 代码仓库
 
-如果您还没有 kubernetes/kubernetes 代码仓库，请参照下列命令获取：
+如果你还没有 kubernetes/kubernetes 代码仓库，请参照下列命令获取：
 
 ```shell
 mkdir $GOPATH/src
@@ -107,7 +111,7 @@ For example, if you followed the preceding step to get the repository, your
 base directory is `$GOPATH/src/github.com/kubernetes/kubernetes.`
 The remaining steps refer to your base directory as `<k8s-base>`.
 -->
-确定您的 [kubernetes/kubernetes](https://github.com/kubernetes/kubernetes) 代码仓库克隆的根目录。
+确定你的 [kubernetes/kubernetes](https://github.com/kubernetes/kubernetes) 代码仓库克隆的根目录。
 例如，如果按照前面的步骤获取代码仓库，则你的根目录为 `$GOPATH/src/github.com/kubernetes/kubernetes`。
 接下来其余步骤将你的根目录称为 `<k8s-base>`。
 
@@ -118,7 +122,7 @@ For example, if you followed the preceding step to get the repository, your
 base directory is `$GOPATH/src/github.com/kubernetes-sigs/reference-docs.`
 The remaining steps refer to your base directory as `<rdocs-base>`.
 -->
-确定您的 [kubernetes-sigs/reference-docs](https://github.com/kubernetes-sigs/reference-docs)
+确定你的 [kubernetes-sigs/reference-docs](https://github.com/kubernetes-sigs/reference-docs)
 代码仓库克隆的根目录。
 例如，如果按照前面的步骤获取代码仓库，则你的根目录为
 `$GOPATH/src/github.com/kubernetes-sigs/reference-docs`。
@@ -142,7 +146,7 @@ The documentation for the `kube-*` components is also generated from the upstrea
 source code. You must change the code related to the component
 you want to fix in order to fix the generated documentation.
 -->
-`kube-*` 组件的文档也是从上游源代码生成的。您必须更改与要修复的组件相关的代码，才能修复生成的文档。
+`kube-*` 组件的文档也是从上游源代码生成的。你必须更改与要修复的组件相关的代码，才能修复生成的文档。
 
 <!--
 ### Making changes to the upstream source code
@@ -164,7 +168,7 @@ and make sure it is up to date:
 -->
 以下在 Kubernetes 源代码中编辑注释的示例。
 
-在您本地的 kubernetes/kubernetes 代码仓库中，检出默认分支，并确保它是最新的：
+在你本地的 kubernetes/kubernetes 代码仓库中，检出默认分支，并确保它是最新的：
 
 ```shell
 cd <k8s-base>
@@ -196,7 +200,7 @@ git status
 The output shows that you are on the master branch, and that the `types.go`
 source file has been modified:
 -->
-输出显示您在 master 分支上，`types.go` 源文件已被修改：
+输出显示你在 master 分支上，`types.go` 源文件已被修改：
 
 ```shell
 On branch master
@@ -213,7 +217,7 @@ you will do a second commit. It is important to keep your changes separated into
 ### 提交已编辑的文件
 
 运行 `git add` 和 `git commit` 命令提交到目前为止所做的更改。
-在下一步中，您将进行第二次提交，将更改分成两个提交很重要。
+在下一步中，你将进行第二次提交，将更改分成两个提交很重要。
 
 <!--
 ### Generating the OpenAPI spec and related files
@@ -237,8 +241,9 @@ hack/update-generated-protobuf.sh
 On branch master
 ...
     modified:   api/openapi-spec/swagger.json
+    modified:   api/openapi-spec/v3/apis__apps__v1_openapi.json
+    modified:   pkg/generated/openapi/zz_generated.openapi.go
     modified:   staging/src/k8s.io/api/apps/v1/generated.proto
-    modified:   staging/src/k8s.io/api/apps/v1/types.go
     modified:   staging/src/k8s.io/api/apps/v1/types_swagger_doc_generated.go
 ```
 
@@ -249,7 +254,7 @@ This is important, because `swagger.json` is the input to the second stage of
 the doc generation process.
 -->
 查看 `api/openapi-spec/swagger.json` 的内容，以确保拼写错误已经被修正。
-例如，您可以运行 `git diff -a api/openapi-spec/swagger.json` 命令。
+例如，你可以运行 `git diff -a api/openapi-spec/swagger.json` 命令。
 这很重要，因为 `swagger.json` 是文档生成过程中第二阶段的输入。
 
 <!--
@@ -257,9 +262,9 @@ Run `git add` and `git commit` to commit your changes. Now you have two commits:
 one that contains the edited `types.go` file, and one that contains the generated OpenAPI spec
 and related files. Keep these two commits separate. That is, do not squash your commits.
 -->
-运行 `git add` 和 `git commit` 命令来提交您的更改。现在您有两个提交（commits）：
+运行 `git add` 和 `git commit` 命令来提交你的更改。现在你有两个提交（commits）：
 一种包含编辑的 `types.go` 文件，另一种包含生成的 OpenAPI 规范和相关文件。
-将这两个提交分开独立。也就是说，不要 squash 您的提交。
+将这两个提交分开独立。也就是说，不要 squash 你的提交。
 
 <!--
 Submit your changes as a
@@ -269,9 +274,9 @@ master branch of the
 Monitor your pull request, and respond to reviewer comments as needed. Continue
 to monitor your pull request until it is merged.
 -->
-将您的更改作为 [PR](https://help.github.com/articles/creating-a-pull-request/) 
+将你的更改作为 [PR](https://help.github.com/articles/creating-a-pull-request/) 
 提交到 [kubernetes/kubernetes](https://github.com/kubernetes/kubernetes) 代码仓库的 master 分支。
-关注您的 PR，并根据需要回复 reviewer 的评论。继续关注您的 PR，直到 PR 被合并为止。
+关注你的 PR，并根据需要回复 reviewer 的评论。继续关注你的 PR，直到 PR 被合并为止。
 
 <!--
 [PR 57758](https://github.com/kubernetes/kubernetes/pull/57758)
@@ -292,7 +297,7 @@ repository and in related repositories, such as
 -->
 {{< note >}}
 确定要更改的正确源文件可能很棘手。在前面的示例中，官方的源文件位于 `kubernetes/kubernetes`
-代码仓库的 `staging` 目录中。但是根据您的情况，`staging` 目录可能不是找到官方源文件的地方。
+代码仓库的 `staging` 目录中。但是根据你的情况，`staging` 目录可能不是找到官方源文件的地方。
 如果需要帮助，请阅读
 [kubernetes/kubernetes](https://github.com/kubernetes/kubernetes/tree/master/staging)
 代码仓库和相关代码仓库
@@ -325,7 +330,7 @@ commit into the release-{{< skew prevMinorVersion >}} branch. The idea is to che
 that edited `types.go`, but not the commit that has the results of running the scripts. For instructions, see
 [Propose a Cherry Pick](https://git.k8s.io/community/contributors/devel/sig-release/cherry-picks.md).
 -->
-回想一下，您的 PR 有两个提交：一个用于编辑 `types.go`，一个用于由脚本生成的文件。
+回想一下，你的 PR 有两个提交：一个用于编辑 `types.go`，一个用于由脚本生成的文件。
 下一步是将你的第一次提交 cherrypick 到 release-{{< skew prevMinorVersion >}} 分支。
 这样做的原因是仅 cherrypick 编辑了 types.go 的提交，
 而不是具有脚本运行结果的提交。
@@ -361,7 +366,7 @@ Now add a commit to your cherry-pick pull request that has the recently generate
 and related files. Monitor your pull request until it gets merged into the
 release-{{< skew prevMinorVersion >}} branch.
 -->
-现在将提交添加到您的 Cherry-Pick PR 中，该 PR 中包含最新生成的 OpenAPI 规范和相关文件。
+现在将提交添加到你的 Cherry-Pick PR 中，该 PR 中包含最新生成的 OpenAPI 规范和相关文件。
 关注你的 PR，直到其合并到 release-{{< skew prevMinorVersion >}} 分支中为止。
 
 <!--
@@ -400,8 +405,8 @@ the API reference documentation.
 You are now ready to follow the [Generating Reference Documentation for the Kubernetes API](/docs/contribute/generate-ref-docs/kubernetes-api/) guide to generate the
 [published Kubernetes API reference documentation](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/).
 -->
-现在，您可以按照
-[生成 Kubernetes API 的参考文档](/zh/docs/contribute/generate-ref-docs/kubernetes-api/)
+现在，你可以按照
+[生成 Kubernetes API 的参考文档](/zh-cn/docs/contribute/generate-ref-docs/kubernetes-api/)
 指南来生成
 [已发布的 Kubernetes API 参考文档](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)。
 
@@ -412,7 +417,7 @@ You are now ready to follow the [Generating Reference Documentation for the Kube
 * [Generating Reference Docs for Kubernetes Components and Tools](/docs/home/contribute/generated-reference/kubernetes-components/)
 * [Generating Reference Documentation for kubectl Commands](/docs/home/contribute/generated-reference/kubectl/)
 -->
-* [生成 Kubernetes API 的参考文档](/zh/docs/contribute/generate-ref-docs/kubernetes-api/)
-* [为 Kubernetes 组件和工具生成参考文档](/zh/docs/contribute/generate-ref-docs/kubernetes-components/)
-* [生成 kubectl 命令的参考文档](/zh/docs/contribute/generate-ref-docs/kubectl/)
+* [生成 Kubernetes API 的参考文档](/zh-cn/docs/contribute/generate-ref-docs/kubernetes-api/)
+* [为 Kubernetes 组件和工具生成参考文档](/zh-cn/docs/contribute/generate-ref-docs/kubernetes-components/)
+* [生成 kubectl 命令的参考文档](/zh-cn/docs/contribute/generate-ref-docs/kubectl/)
 
diff --git a/content/zh/docs/contribute/generate-ref-docs/kubectl.md b/content/zh-cn/docs/contribute/generate-ref-docs/kubectl.md
similarity index 96%
rename from content/zh/docs/contribute/generate-ref-docs/kubectl.md
rename to content/zh-cn/docs/contribute/generate-ref-docs/kubectl.md
index cf376a312f..957ca8b347 100644
--- a/content/zh/docs/contribute/generate-ref-docs/kubectl.md
+++ b/content/zh-cn/docs/contribute/generate-ref-docs/kubectl.md
@@ -36,7 +36,7 @@ reference page, see
 生成参考文档，如 [kubectl apply](/docs/reference/generated/kubectl/kubectl-commands#apply) 和
 [kubectl taint](/docs/reference/generated/kubectl/kubectl-commands#taint)。
 本主题没有讨论如何生成 [kubectl](/docs/reference/generated/kubectl/kubectl-commands/) 组件选项的参考页面。
-相关说明请参见[为 Kubernetes 组件和工具生成参考页面](/zh/docs/contribute/generate-ref-docs/kubernetes-components/)。
+相关说明请参见[为 Kubernetes 组件和工具生成参考页面](/zh-cn/docs/contribute/generate-ref-docs/kubernetes-components/)。
 {{< /note >}}
 
 ## {{% heading "prerequisites" %}}
@@ -72,7 +72,7 @@ go get -u kubernetes-incubator/reference-docs
 <!-- 
 If you don't already have the kubernetes/website repository, get it now: 
 -->
-如果您还没有获取过 `kubernetes/website` 仓库，现在获取之：
+如果你还没有获取过 `kubernetes/website` 仓库，现在获取之：
 
 ```shell
 git clone https://github.com/<your-username>/website $GOPATH/src/github.com/<your-username>/website
@@ -242,7 +242,7 @@ For example, update the following variables:
 * 设置 `K8S_ROOT` 为 `<k8s-base>`。
 * 设置 `K8S_WEBROOT` 为 `<web-base>`。
 * 设置 `K8S_RELEASE` 为要构建文档的版本。
-  例如，如果您想为 Kubernetes {{< skew prevMinorVersion >}} 构建文档，
+  例如，如果你想为 Kubernetes {{< skew prevMinorVersion >}} 构建文档，
   请将 `K8S_RELEASE` 设置为 {{< skew prevMinorVersion >}}。
 
 例如：
@@ -416,7 +416,7 @@ topics will be visible in the
 对 `kubernetes/website` 仓库创建 PR。跟踪你的 PR，并根据需要回应评审人的评论。
 继续跟踪你的 PR，直到它被合入。
 
-在 PR 合入的几分钟后，你更新的参考主题将出现在[已发布文档](/zh/docs/home/)中。
+在 PR 合入的几分钟后，你更新的参考主题将出现在[已发布文档](/zh-cn/docs/home/)中。
 
 ## {{% heading "whatsnext" %}}
 
@@ -425,7 +425,7 @@ topics will be visible in the
 * [Generating Reference Documentation for Kubernetes Components and Tools](/docs/contribute/generate-ref-docs/kubernetes-components/)
 * [Generating Reference Documentation for the Kubernetes API](/docs/contribute/generate-ref-docs/kubernetes-api/)
 -->
-* [生成参考文档快速入门](/zh/docs/contribute/generate-ref-docs/quickstart/)
-* [为 Kubernetes 组件和工具生成参考文档](/zh/docs/contribute/generate-ref-docs/kubernetes-components/)
-* [为 Kubernetes API 生成参考文档](/zh/docs/contribute/generate-ref-docs/kubernetes-api/)
+* [生成参考文档快速入门](/zh-cn/docs/contribute/generate-ref-docs/quickstart/)
+* [为 Kubernetes 组件和工具生成参考文档](/zh-cn/docs/contribute/generate-ref-docs/kubernetes-components/)
+* [为 Kubernetes API 生成参考文档](/zh-cn/docs/contribute/generate-ref-docs/kubernetes-api/)
 
diff --git a/content/zh/docs/contribute/generate-ref-docs/kubernetes-api.md b/content/zh-cn/docs/contribute/generate-ref-docs/kubernetes-api.md
similarity index 93%
rename from content/zh/docs/contribute/generate-ref-docs/kubernetes-api.md
rename to content/zh-cn/docs/contribute/generate-ref-docs/kubernetes-api.md
index 5563e174a0..74fc1fe897 100644
--- a/content/zh/docs/contribute/generate-ref-docs/kubernetes-api.md
+++ b/content/zh-cn/docs/contribute/generate-ref-docs/kubernetes-api.md
@@ -31,9 +31,9 @@ Kubernetes API 参考文档是从
 构建的，
 且使用[kubernetes-sigs/reference-docs](https://github.com/kubernetes-sigs/reference-docs) 生成代码。
 
-如果您在生成的文档中发现错误，则需要[在上游修复](/zh/docs/contribute/generate-ref-docs/contribute-upstream/)。
+如果你在生成的文档中发现错误，则需要[在上游修复](/zh-cn/docs/contribute/generate-ref-docs/contribute-upstream/)。
 
-如果您只需要从 [OpenAPI](https://github.com/OAI/OpenAPI-Specification) 规范中重新生成参考文档，请继续阅读此页。
+如果你只需要从 [OpenAPI](https://github.com/OAI/OpenAPI-Specification) 规范中重新生成参考文档，请继续阅读此页。
 
 ## {{% heading "prerequisites" %}}
 
@@ -135,7 +135,7 @@ Go to `<rdocs-base>`, and open the `Makefile` for editing:
 * 设置 `K8S_ROOT` 为 `<k8s-base>`.
 * 设置 `K8S_WEBROOT` 为 `<web-base>`.
 * 设置 `K8S_RELEASE` 为要构建的文档的版本。
-  例如，如果您想为 Kubernetes 1.17.0 构建文档，请将 `K8S_RELEASE` 设置为 1.17.0。
+  例如，如果你想为 Kubernetes 1.17.0 构建文档，请将 `K8S_RELEASE` 设置为 1.17.0。
 
 <!-- 
 For example: 
@@ -305,9 +305,9 @@ Submit your changes as a
 Monitor your pull request, and respond to reviewer comments as needed. Continue
 to monitor your pull request until it has been merged.
 -->
-基于你所生成的更改[创建 PR](/zh/docs/contribute/new-content/open-a-pr/)，
+基于你所生成的更改[创建 PR](/zh-cn/docs/contribute/new-content/open-a-pr/)，
 提交到 [kubernetes/website](https://github.com/kubernetes/website) 仓库。
-监视您提交的 PR，并根据需要回复 reviewer 的评论。继续监视您的 PR，直到合并为止。
+监视你提交的 PR，并根据需要回复 reviewer 的评论。继续监视你的 PR，直到合并为止。
 
 ## {{% heading "whatsnext" %}}
 
@@ -316,7 +316,7 @@ to monitor your pull request until it has been merged.
 * [Generating Reference Docs for Kubernetes Components and Tools](/docs/contribute/generate-ref-docs/kubernetes-components/)
 * [Generating Reference Documentation for kubectl Commands](/docs/contribute/generate-ref-docs/kubectl/)
 -->
-* [生成参考文档快速入门](/zh/docs/contribute/generate-ref-docs/quickstart/)
-* [为 Kubernetes 组件和工具生成参考文档](/zh/docs/contribute/generate-ref-docs/kubernetes-components/)
-* [为 kubectl 命令集生成参考文档](/zh/docs/contribute/generate-ref-docs/kubectl/)
+* [生成参考文档快速入门](/zh-cn/docs/contribute/generate-ref-docs/quickstart/)
+* [为 Kubernetes 组件和工具生成参考文档](/zh-cn/docs/contribute/generate-ref-docs/kubernetes-components/)
+* [为 kubectl 命令集生成参考文档](/zh-cn/docs/contribute/generate-ref-docs/kubectl/)
 
diff --git a/content/zh/docs/contribute/generate-ref-docs/kubernetes-components.md b/content/zh-cn/docs/contribute/generate-ref-docs/kubernetes-components.md
similarity index 67%
rename from content/zh/docs/contribute/generate-ref-docs/kubernetes-components.md
rename to content/zh-cn/docs/contribute/generate-ref-docs/kubernetes-components.md
index 0ca9d48df6..a89e8d655e 100644
--- a/content/zh/docs/contribute/generate-ref-docs/kubernetes-components.md
+++ b/content/zh-cn/docs/contribute/generate-ref-docs/kubernetes-components.md
@@ -23,7 +23,7 @@ This page shows how to build the Kubernetes component and tool reference pages.
 Start with the [Prerequisites section](/docs/contribute/generate-ref-docs/quickstart/#before-you-begin)
 in the Reference Documentation Quickstart guide.
 -->
-阅读参考文档快速入门指南中的[准备工作](/zh/docs/contribute/generate-ref-docs/quickstart/#before-you-begin)节。
+阅读参考文档快速入门指南中的[准备工作](/zh-cn/docs/contribute/generate-ref-docs/quickstart/#before-you-begin)节。
 
 <!-- steps -->
 
@@ -31,7 +31,7 @@ in the Reference Documentation Quickstart guide.
 Follow the [Reference Documentation Quickstart](/docs/contribute/generate-ref-docs/quickstart/)
 to generate the Kubernetes component and tool reference pages.
 -->
-按照[参考文档快速入门](/zh/docs/contribute/generate-ref-docs/quickstart/)
+按照[参考文档快速入门](/zh-cn/docs/contribute/generate-ref-docs/quickstart/)
 指引，生成 Kubernetes 组件和工具的参考文档。
 
 ## {{% heading "whatsnext" %}}
@@ -43,8 +43,8 @@ to generate the Kubernetes component and tool reference pages.
 * [Contributing to the Upstream Kubernetes Project for Documentation](/docs/contribute/generate-ref-docs/contribute-upstream/)
 -->
 
-* [生成参考文档快速入门](/zh/docs/contribute/generate-ref-docs/quickstart/) 
-* [为 kubectll 命令生成参考文档](/zh/docs/contribute/generate-ref-docs/kubectl/)
-* [为 Kubernetes API 生成参考文档](/zh/docs/contribute/generate-ref-docs/kubernetes-api/)
-* [为上游 Kubernetes 项目做贡献以改进文档](/zh/docs/contribute/generate-ref-docs/contribute-upstream/)
+* [生成参考文档快速入门](/zh-cn/docs/contribute/generate-ref-docs/quickstart/) 
+* [为 kubectll 命令生成参考文档](/zh-cn/docs/contribute/generate-ref-docs/kubectl/)
+* [为 Kubernetes API 生成参考文档](/zh-cn/docs/contribute/generate-ref-docs/kubernetes-api/)
+* [为上游 Kubernetes 项目做贡献以改进文档](/zh-cn/docs/contribute/generate-ref-docs/contribute-upstream/)
 
diff --git a/content/zh/docs/contribute/generate-ref-docs/prerequisites-ref-docs.md b/content/zh-cn/docs/contribute/generate-ref-docs/prerequisites-ref-docs.md
similarity index 96%
rename from content/zh/docs/contribute/generate-ref-docs/prerequisites-ref-docs.md
rename to content/zh-cn/docs/contribute/generate-ref-docs/prerequisites-ref-docs.md
index 5d5cde99f8..7954f939c0 100644
--- a/content/zh/docs/contribute/generate-ref-docs/prerequisites-ref-docs.md
+++ b/content/zh-cn/docs/contribute/generate-ref-docs/prerequisites-ref-docs.md
@@ -41,5 +41,5 @@
 
 - 你需要知道如何为一个 GitHub 仓库创建拉取请求（PR）。
   这牵涉到创建仓库的派生（fork）副本。
-  有关信息可进一步查看[基于本地副本开展工作](/zh/docs/contribute/new-content/open-a-pr/#fork-the-repo)。
+  有关信息可进一步查看[基于本地副本开展工作](/zh-cn/docs/contribute/new-content/open-a-pr/#fork-the-repo)。
 
diff --git a/content/zh/docs/contribute/generate-ref-docs/quickstart.md b/content/zh-cn/docs/contribute/generate-ref-docs/quickstart.md
similarity index 96%
rename from content/zh/docs/contribute/generate-ref-docs/quickstart.md
rename to content/zh-cn/docs/contribute/generate-ref-docs/quickstart.md
index cff372a2b4..7c4336aae5 100644
--- a/content/zh/docs/contribute/generate-ref-docs/quickstart.md
+++ b/content/zh-cn/docs/contribute/generate-ref-docs/quickstart.md
@@ -57,7 +57,7 @@ see the [contributing upstream guide](/docs/contribute/generate-ref-docs/contrib
 
 {{< note>}}
 如果你希望更改构建工具和 API 参考资料，可以阅读
-[上游贡献指南](/zh/docs/contribute/generate-ref-docs/contribute-upstream).
+[上游贡献指南](/zh-cn/docs/contribute/generate-ref-docs/contribute-upstream).
 {{< /note >}}
 
 <!--
@@ -185,7 +185,7 @@ Single page Markdown documents, imported by the tool, must adhere to
 the [Documentation Style Guide](/docs/contribute/style/style-guide/).
 -->
 通过工具导入的单页面的 Markdown 文档必须遵从
-[文档样式指南](/zh/docs/contribute/style/style-guide/)。
+[文档样式指南](/zh-cn/docs/contribute/style/style-guide/)。
 
 <!--
 ## Customizing reference.yml
@@ -385,7 +385,7 @@ topics will be visible in the
 继续监视该 PR 直到其被合并为止。
 
 当你的 PR 被合并几分钟之后，你所做的对参考文档的变更就会出现
-[发布的文档](/zh/docs/home/)上。
+[发布的文档](/zh-cn/docs/home/)上。
 
 ## {{% heading "whatsnext" %}}
 
@@ -399,7 +399,7 @@ running the build targets, see the following guides:
 -->
 要手动设置所需的构造仓库，执行构建目标，以生成各个参考文档，可参考下面的指南：
 
-* [为 Kubernetes 组件和工具生成参考文档](/zh/docs/contribute/generate-ref-docs/kubernetes-components/)
-* [为 kubeclt 命令生成参考文档](/zh/docs/contribute/generate-ref-docs/kubectl/)
-* [为 Kubernetes API 生成参考文档](/zh/docs/contribute/generate-ref-docs/kubernetes-api/)
+* [为 Kubernetes 组件和工具生成参考文档](/zh-cn/docs/contribute/generate-ref-docs/kubernetes-components/)
+* [为 kubectl 命令生成参考文档](/zh-cn/docs/contribute/generate-ref-docs/kubectl/)
+* [为 Kubernetes API 生成参考文档](/zh-cn/docs/contribute/generate-ref-docs/kubernetes-api/)
 
diff --git a/content/zh/docs/contribute/localization.md b/content/zh-cn/docs/contribute/localization.md
similarity index 82%
rename from content/zh/docs/contribute/localization.md
rename to content/zh-cn/docs/contribute/localization.md
index 3e5fe68e9e..abd8ac59dd 100644
--- a/content/zh/docs/contribute/localization.md
+++ b/content/zh-cn/docs/contribute/localization.md
@@ -7,7 +7,7 @@ card:
   weight: 50
   title: 翻译文档
 ---
-<!-- 
+<!--
 title: Localizing Kubernetes Documentation
 content_type: concept
 approvers:
@@ -23,20 +23,20 @@ card:
 
 <!-- overview -->
 
-<!-- 
-This page shows you how to [localize](https://blog.mozilla.org/l10n/2011/12/14/i18n-vs-l10n-whats-the-diff/) the docs for a different language. 
+<!--
+This page shows you how to [localize](https://blog.mozilla.org/l10n/2011/12/14/i18n-vs-l10n-whats-the-diff/) the docs for a different language.
 -->
 此页面描述如何为其他语言的文档提供
 [本地化](https://blog.mozilla.org/l10n/2011/12/14/i18n-vs-l10n-whats-the-diff/)版本。
 
 <!-- body -->
 
-<!-- 
+<!--
 ## Contribute to an existing localization
 
-You can help add or improve content to an existing localization. In [Kubernetes Slack](https://slack.k8s.io/) you'll find a channel for each localization. There is also a general [SIG Docs Localizations Slack channel](https://kubernetes.slack.com/messages/sig-docs-localizations) where you can say hello. 
+You can help add or improve content to an existing localization. In [Kubernetes Slack](https://slack.k8s.io/) you'll find a channel for each localization. There is also a general [SIG Docs Localizations Slack channel](https://kubernetes.slack.com/messages/sig-docs-localizations) where you can say hello.
 -->
-## 为现有的本地化做出贡献
+## 为现有的本地化做出贡献 {#contribute-to-an-existing-localization}
 
 你可以帮助添加或改进现有本地化的内容。在 [Kubernetes Slack](https://slack.k8s.io/) 中，
 你能找到每个本地化的频道。还有一个通用的
@@ -44,7 +44,7 @@ You can help add or improve content to an existing localization. In [Kubernetes
 你可以在这里打个招呼。
 
 {{< note >}}
-<!-- 
+<!--
 If you want to work on a localization that already exists, check
 this page in that localization (if it exists), rather than the
 English original. You might see extra details there.
@@ -53,18 +53,18 @@ English original. You might see extra details there.
 你可能会在那里看到额外的详细信息。
 {{< /note >}}
 
-<!-- 
+<!--
 ### Find your two-letter language code
 
 First, consult the [ISO 639-1 standard](https://www.loc.gov/standards/iso639-2/php/code_list.php) to find your localization's two-letter language code. For example, the two-letter code for Korean is `ko`.
 
 ### Fork and clone the repo
 
-First, [create your own fork](/docs/contribute/new-content/open-a-pr/#fork-the-repo) of the [kubernetes/website](https://github.com/kubernetes/website) repository. 
+First, [create your own fork](/docs/contribute/new-content/open-a-pr/#fork-the-repo) of the [kubernetes/website](https://github.com/kubernetes/website) repository.
 
 The website content directory includes sub-directories for each language. The localization you want to help out with is inside `content/<two-letter-code>`.
 -->
-### 找到两个字母的语言代码
+### 找到两个字母的语言代码 {#find-your-two-letter-language-code}
 
 首先，有关本地化的两个字母的语言代码，请参考
 [ISO 639-1 标准](https://www.loc.gov/standards/iso639-2/php/code_list.php)。
@@ -73,7 +73,7 @@ The website content directory includes sub-directories for each language. The lo
 ### 派生（fork）并且克隆仓库 {#fork-and-clone-the-repo}
 
 首先，为 [kubernetes/website](https://github.com/kubernetes/website) 仓库
-[创建你自己的副本](/zh/docs/contribute/new-content/open-a-pr/#fork-the-repo)。
+[创建你自己的副本](/zh-cn/docs/contribute/new-content/open-a-pr/#fork-the-repo)。
 
 <!--
 Then, clone your fork and `cd` into it:
@@ -85,9 +85,12 @@ git clone https://github.com/<username>/website
 cd website
 ```
 
+<!--
+The website content directory includes sub-directories for each language. The localization you want to help out with is inside `content/<two-letter-code>`.
+-->
 网站内容目录包括每种语言的子目录。你想要助力的本地化位于 `content/<two-letter-code>` 中。
 
-<!-- 
+<!--
 ### Suggest changes
 
 Create or update your chosen localized page based on the English original. See
@@ -113,10 +116,10 @@ that localization. The process is very similar to proposing changes to the upstr
 
 请将拉取请求限制为单个本地化，因为在多个本地化中更改内容的拉取请求可能难以审查。
 
-按照[内容改进建议](/zh/docs/contribute/suggest-improvements/)提出对该本地化的更改。
+按照[内容改进建议](/zh-cn/docs/contribute/suggest-improvements/)提出对该本地化的更改。
 该过程与提议更改上游（英文）内容非常相似。
 
-<!--  
+<!--
 ## Start a new localization
 
 If you want the Kubernetes documentation localized into a new language, here's what
@@ -128,7 +131,7 @@ to begin a localization.
 All localization teams must be self-sustaining. The Kubernetes website is happy to host your work, but
 it's up to you to translate it and keep existing localized content current.
 -->
-## 开始新的本地化
+## 开始新的本地化 {#start-a-new-localization}
 
 如果你希望将 Kubernetes 文档本地化为一种新语言，你需要执行以下操作。
 
@@ -137,7 +140,7 @@ it's up to you to translate it and keep existing localized content current.
 所有本地化团队都必须能够自我维持。
 Kubernetes 网站很乐意托管你的作品，但要由你来翻译它并使现有的本地化内容保持最新。
 
-<!-- 
+<!--
 You'll need to know the two-letter language code for your language. Consult the
 [ISO 639-1 standard](https://www.loc.gov/standards/iso639-2/php/code_list.php) to find your
 localization's two-letter language code. For example, the two-letter code for Korean is
@@ -160,19 +163,19 @@ Kubernetes 项目才能将你的更改发布到当前网站。
 
 SIG Docs 可以帮助你在单独的分支上工作，以便你可以逐步实现该目标。
 
-<!-- 
+<!--
 ### Find community
 
 Let Kubernetes SIG Docs know you're interested in creating a localization! Join the [SIG Docs Slack channel](https://kubernetes.slack.com/messages/sig-docs) and the [SIG Docs Localizations Slack channel](https://kubernetes.slack.com/messages/sig-docs-localizations). Other localization teams are happy to help you get started and answer any questions you have.
 -->
-### 找到社区
+### 找到社区 {#find-community}
 
 让 Kubernetes SIG Docs 知道你有兴趣创建本地化！
 加入 [SIG Docs Slack 频道](https://kubernetes.slack.com/messages/sig-docs)
 和 [SIG Docs Localizations Slack 频道](https://kubernetes.slack.com/messages/sig-docs-localizations)。
 其他本地化团队很乐意帮助你入门并回答你的任何问题。
 
-<!-- 
+<!--
 Please also consider participating in the [SIG Docs Localization Subgroup meeting](https://github.com/kubernetes/community/tree/master/sig-docs).  The mission of the SIG Docs localization subgroup is to work across the SIG Docs localization teams to collaborate on defining and documenting the processes for creating localized contribution guides. In addition, the SIG Docs localization subgroup will look for opportunities for the creation and sharing of common tools across localization teams and also serve to identify new requirements to the SIG Docs Leadership team.  If you have questions about this meeting, please inquire on the [SIG Docs Localizations Slack channel](https://kubernetes.slack.com/messages/sig-docs-localizations).
 
 You can also create a Slack channel for your localization in the `kubernetes/community` repository. For an example of adding a Slack channel, see the PR for [adding a channel for Persian](https://github.com/kubernetes/community/pull/4980).
@@ -189,25 +192,26 @@ SIG Docs 本地化小组的任务是与 SIG Docs 本地化团队合作，
 你还可以在 `kubernetes/community` 仓库中为你的本地化创建一个 Slack 频道。
 有关添加 Slack 频道的示例，请参阅
 [为波斯语添加频道](https://github.com/kubernetes/community/pull/4980)的 PR。
-    
-<!-- 
+
+<!--
 ### Join the Kubernetes GitHub organization
-Once you've opened a localization PR, you can become members of the Kubernetes GitHub organization. Each person on the team needs to create their own [Organization Membership Request](https://github.com/kubernetes/org/issues/new/choose) in the `kubernetes/org` repository. 
+
+Once you've opened a localization PR, you can become members of the Kubernetes GitHub organization. Each person on the team needs to create their own [Organization Membership Request](https://github.com/kubernetes/org/issues/new/choose) in the `kubernetes/org` repository.
 -->
-### 加入到 Kubernetes GitHub 组织
+### 加入到 Kubernetes GitHub 组织 {#join-the-kubernetes-github-organization}
 
 提交本地化 PR 后，你可以成为 Kubernetes GitHub 组织的成员。
 团队中的每个人都需要在 `kubernetes/org` 仓库中创建自己的
 [组织成员申请](https://github.com/kubernetes/org/issues/new/choose)。
 
-<!-- 
+<!--
 ### Add your localization team in GitHub
 
-Next, add your Kubernetes localization team to [`sig-docs/teams.yaml`](https://github.com/kubernetes/org/blob/main/config/kubernetes/sig-docs/teams.yaml). For an example of adding a localization team, see the PR to add the [Spanish localization team](https://github.com/kubernetes/org/pull/685). 
+Next, add your Kubernetes localization team to [`sig-docs/teams.yaml`](https://github.com/kubernetes/org/blob/main/config/kubernetes/sig-docs/teams.yaml). For an example of adding a localization team, see the PR to add the [Spanish localization team](https://github.com/kubernetes/org/pull/685).
 
-Members of `@kubernetes/sig-docs-**-owners` can approve PRs that change content within (and only within) your localization directory: `/content/**/`. 
+Members of `@kubernetes/sig-docs-**-owners` can approve PRs that change content within (and only within) your localization directory: `/content/**/`.
 
-The `@kubernetes/sig-docs-**-reviews` team automates review assignment for new PRs. 
+For each localization, The `@kubernetes/sig-docs-**-reviews` team automates review assignment for new PRs.
 -->
 ### 在 GitHub 中添加你的本地化团队 {#add-your-localization-team-in-github}
 
@@ -217,24 +221,24 @@ The `@kubernetes/sig-docs-**-reviews` team automates review assignment for new P
 
 `@kubernetes/sig-docs-**-owners` 成员可以批准更改对应本地化目录 `/content/**/` 中内容的 PR，并仅限这类 PR。
 
-`@kubernetes/sig-docs-**-reviews` 团队被自动分派新 PR 的审阅任务。
+对于每个本地化，`@kubernetes/sig-docs-**-reviews` 团队被自动分派新 PR 的审阅任务。
 
-<!-- 
+<!--
 Members of `@kubernetes/website-maintainers` can create new localization branches to coordinate translation efforts.
 
-Members of `website-milestone-maintainers` can use the `/milestone` [Prow command](https://prow.k8s.io/command-help) to assign a milestone to issues or PRs. 
+Members of `@kubernetes/website-milestone-maintainers` can use the `/milestone` [Prow command](https://prow.k8s.io/command-help) to assign a milestone to issues or PRs.
 -->
 `@kubernetes/website-maintainers` 成员可以创建新的本地化分支来协调翻译工作。
 
 `@kubernetes/website-milestone-maintainers` 成员可以使用 `/milestone`
 [Prow 命令](https://prow.k8s.io/command-help)为 issues 或 PR 设定里程碑。
-    
-<!-- 
+
+<!--
 ### Configure the workflow
 
 Next, add a GitHub label for your localization in the `kubernetes/test-infra` repository. A label lets you filter issues and pull requests for your specific language.
 
-For an example of adding a label, see the PR for adding the [Italian language label](https://github.com/kubernetes/test-infra/pull/11316). 
+For an example of adding a label, see the PR for adding the [Italian language label](https://github.com/kubernetes/test-infra/pull/11316).
 -->
 ### 配置工作流程 {#configure-the-workflow}
 
@@ -246,16 +250,14 @@ For an example of adding a label, see the PR for adding the [Italian language la
 你还可以在 `kubernetes/community` 仓库中为你的本地化创建一个 Slack 频道。
 有关添加 Slack 频道的示例，请参见[为印尼语和葡萄牙语添加频道](https://github.com/kubernetes/community/pull/3605)的 PR。
 
-<!-- 
+<!--
 ### Modify the site configuration
 
 The Kubernetes website uses Hugo as its web framework. The website's Hugo configuration resides in the  [`config.toml`](https://github.com/kubernetes/website/tree/main/config.toml) file. To support a new localization, you'll need to modify `config.toml`.
 
-Add a configuration block for the new language to `config.toml`, under the existing `[languages]` block. The German block, for example, looks like: 
+Add a configuration block for the new language to `config.toml`, under the existing `[languages]` block. The German block, for example, looks like:
 -->
-## 最低要求内容 {#minimum-required-content}
-
-### 修改站点配置
+### 修改站点配置 {#configure-the-workflow}
 
 Kubernetes 网站使用 Hugo 作为其 Web 框架。网站的 Hugo 配置位于
 [`config.toml`](https://github.com/kubernetes/website/tree/main/config.toml)文件中。
@@ -268,26 +270,37 @@ Kubernetes 网站使用 Hugo 作为其 Web 框架。网站的 Hugo 配置位于
 [languages.de]
 title = "Kubernetes"
 description = "Produktionsreife Container-Verwaltung"
-languageName = "Deutsch"
+languageName = "Deutsch (German)"
+languageNameLatinScript = "German"
 contentDir = "content/de"
-weight = 3
+weight = 8
 ```
 
-<!-- 
+<!--
+The value for `languageName` will be listed in language selection bar. Assign "language name in native script (language name in latin script)" to `languageName`, for example, `languageName = "한국어 (Korean)"`. `languageNameLatinScript` can be used to access the language name in latin script and use it in the theme. Assign "language name in latin script" to `languageNameLatinScript`, for example, `languageNameLatinScript ="Korean"`. 
+-->
+`languageName` 的值将列在语言选择栏中。
+将 `languageName` 赋值为“本地脚本中的语言名称（拉丁脚本中的语言名称）”。
+例如，`languageName = "한국어 (Korean)"`。
+`languageNameLatinScript` 可用于访问拉丁脚本中的语言名称并在主题中使用。
+将 `languageNameLatinScript` 赋值为“拉丁脚本中的语言名称”。
+例如，`languageNameLatinScript ="Korean"`。
+
+<!--
 When assigning a `weight` parameter for your block, find the language block with the highest weight and add 1 to that value.
 
-For more information about Hugo's multilingual support, see "[Multilingual Mode](https://gohugo.io/content-management/multilingual/)". 
+For more information about Hugo's multilingual support, see "[Multilingual Mode](https://gohugo.io/content-management/multilingual/)".
 -->
 为你的语言块分配一个 `weight` 参数时，找到权重最高的语言块并将其加 1。
 
 有关 Hugo 多语言支持的更多信息，请参阅"[多语言模式](https://gohugo.io/content-management/multilingual/)"。
 
-<!-- 
+<!--
 ### Add a new localization directory
 
-Add a language-specific subdirectory to the [`content`](https://github.com/kubernetes/website/tree/master/content) folder in the repository. For example, the two-letter code for German is `de`: 
+Add a language-specific subdirectory to the [`content`](https://github.com/kubernetes/website/tree/main/content) folder in the repository. For example, the two-letter code for German is `de`:
 -->
-### 添加一个新的本地化目录
+### 添加一个新的本地化目录 {#add-a-new-localization-directory}
 
 将特定语言的子目录添加到仓库中的
 [`content`](https://github.com/kubernetes/website/tree/main/content) 文件夹下。
@@ -297,7 +310,7 @@ Add a language-specific subdirectory to the [`content`](https://github.com/kuber
 mkdir content/de
 ```
 
-<!-- 
+<!--
 You also need to create a directory inside `data/i18n` for
 [localized strings](#site-strings-in-i18n); look at existing localizations
 for an example. To use these new strings, you must also create a symbolic link
@@ -317,28 +330,28 @@ For example, for German the strings live in `data/i18n/de/de.toml`, and
 例如，对于德语，字符串位于 `data/i18n/de/de.toml` 中，
 而 `i18n/de.toml` 是指向 `data/i18n/de/de.toml` 的符号链接。
 
-<!-- 
-### Localize the community code of conduct 
+<!--
+### Localize the community code of conduct
 
 Open a PR against the [`cncf/foundation`](https://github.com/cncf/foundation/tree/master/code-of-conduct-languages) repository to add the code of conduct in your language.
 
 -->
-### 本地化社区行为准则
+### 本地化社区行为准则 {#localize-the-community-code-of-conduct}
 
 在 [`cncf/foundation`](https://github.com/cncf/foundation/tree/master/code-of-conduct-languages)
 仓库提交 PR，添加你所用语言版本的行为准则。
 
 -->
-<!-- 
+<!--
 ### Setting up the OWNERS files
 
 To set the roles of each user contributing to the localization, create an `OWNERS` file inside the language-specific subdirectory with:
 
 - **reviewers**: A list of kubernetes teams with reviewer roles, in this case, the `sig-docs-**-reviews` team created in [Add your localization team in GitHub](#add-your-localization-team-in-github).
 - **approvers**: A list of kubernetes teams with approvers roles, in this case, the `sig-docs-**-owners` team created in [Add your localization team in GitHub](#add-your-localization-team-in-github).
-- **labels**: A list of GitHub labels to automatically apply to a PR, in this case, the language label created in [Configure the workflow](#configure-the-workflow). 
+- **labels**: A list of GitHub labels to automatically apply to a PR, in this case, the language label created in [Configure the workflow](#configure-the-workflow).
 -->
-### 设置 OWNERS 文件
+### 设置 OWNERS 文件 {#setting-up-the-owners-files}
 
 要设置每个对本地化做出贡献用户的角色，请在特定于语言的子目录内创建一个 `OWNERS` 文件，其中：
 
@@ -351,10 +364,10 @@ To set the roles of each user contributing to the localization, create an `OWNER
 - **labels**: 可以自动应用于 PR 的 GitHub 标签列表，在本例中为
   [配置工作流程](#configure-the-workflow)中创建的语言标签。
 
-<!-- 
+<!--
 More information about the `OWNERS` file can be found at [go.k8s.io/owners](https://go.k8s.io/owners).
 
-The [Spanish OWNERS file](https://git.k8s.io/website/content/es/OWNERS), with language code `es`, looks like: 
+The [Spanish OWNERS file](https://git.k8s.io/website/content/es/OWNERS), with language code `es`, looks like:
 -->
 有关 `OWNERS` 文件的更多信息，请访问[go.k8s.io/owners](https://go.k8s.io/owners)。
 
@@ -375,12 +388,12 @@ approvers:
 
 labels:
 - language/es
-``` 
+```
 
-<!-- 
+<!--
 After adding the language-specific `OWNERS` file, update the [root `OWNERS_ALIASES`](https://git.k8s.io/website/OWNERS_ALIASES) file with the new Kubernetes teams for the localization, `sig-docs-**-owners` and `sig-docs-**-reviews`.
 
-For each team, add the list of GitHub users requested in [Add your localization team in GitHub](#add-your-localization-team-in-github), in alphabetical order. 
+For each team, add the list of GitHub users requested in [Add your localization team in GitHub](#add-your-localization-team-in-github), in alphabetical order.
 -->
 添加了特定语言的 OWNERS 文件之后，使用新的 Kubernetes 本地化团队、
 `sig-docs-**-owners` 和 `sig-docs-**-reviews` 列表更新
@@ -410,7 +423,7 @@ For each team, add the list of GitHub users requested in [Add your localization
      - remyleone
 ```
 
-<!-- 
+<!--
 ### Open a pull request
 
 Next, [open a pull request](/docs/contribute/new-content/open-a-pr/#open-a-pr) (PR) to add a localization to the `kubernetes/website` repository.
@@ -421,7 +434,7 @@ For an example of adding a new localization, see the PR to enable [docs in Frenc
 -->
 ### 打开拉取请求  {#open-a-pull-request}
 
-接下来，[打开拉取请求](/zh/docs/contribute/new-content/open-a-pr/#open-a-pr)（PR）
+接下来，[打开拉取请求](/zh-cn/docs/contribute/new-content/open-a-pr/#open-a-pr)（PR）
 将本地化添加到 `kubernetes/website` 存储库。
 
 PR 必须包含所有[最低要求内容](#minimum-required-content)才能获得批准。
@@ -429,19 +442,19 @@ PR 必须包含所有[最低要求内容](#minimum-required-content)才能获得
 有关添加新本地化的示例，
 请参阅 PR 以启用[法语文档](https://github.com/kubernetes/website/pull/12548)。
 
-<!-- 
+<!--
 ### Add a localized README file
 
-To guide other localization contributors, add a new [`README-**.md`](https://help.github.com/articles/about-readmes/) to the top level of [k/website](https://github.com/kubernetes/website/), where `**` is the two-letter language code. For example, a German README file would be `README-de.md`.
+To guide other localization contributors, add a new [`README-**.md`](https://help.github.com/articles/about-readmes/) to the top level of [kubernetes/website](https://github.com/kubernetes/website/), where `**` is the two-letter language code. For example, a German README file would be `README-de.md`.
 
 Provide guidance to localization contributors in the localized `README-**.md` file. Include the same information contained in `README.md` as well as:
 
 - A point of contact for the localization project
-- Any information specific to the localization 
+- Any information specific to the localization
 -->
-### 添加本地化的 README 文件
+### 添加本地化的 README 文件 {#add-a-localized-readme-file}
 
-为了指导其他本地化贡献者，请在 [k/website](https://github.com/kubernetes/website/)
+为了指导其他本地化贡献者，请在 [kubernetes/website](https://github.com/kubernetes/website/)
 的根目录添加一个新的 [`README-**.md`](https://help.github.com/articles/about-readmes/)，
 其中 `**` 是两个字母的语言代码。例如，德语 README 文件为 `README-de.md`。
 
@@ -450,14 +463,14 @@ Provide guidance to localization contributors in the localized `README-**.md` fi
 - 本地化项目的联系人
 - 任何特定于本地化的信息
 
-<!-- 
-After you create the localized README, add a link to the file from the main English `README.md`, and include contact information in English. You can provide a GitHub ID, email address, [Slack channel](https://slack.com/), or other method of contact. You must also provide a link to your localized Community Code of Conduct. 
+<!--
+After you create the localized README, add a link to the file from the main English `README.md`, and include contact information in English. You can provide a GitHub ID, email address, [Slack channel](https://slack.com/), or other method of contact. You must also provide a link to your localized Community Code of Conduct.
 -->
 创建本地化的 README 文件后，请在英语版文件 `README.md` 中添加指向该文件的链接，
 并给出英文形式的联系信息。你可以提供 GitHub ID、电子邮件地址、
 [Slack 频道](https://slack.com/)或其他联系方式。你还必须提供指向本地化的社区行为准则的链接。
 
-<!-- 
+<!--
 ### Launching your new localization
 
 Once a localization meets requirements for workflow and minimum output, SIG Docs will:
@@ -465,7 +478,7 @@ Once a localization meets requirements for workflow and minimum output, SIG Docs
 - Enable language selection on the website
 - Publicize the localization's availability through [Cloud Native Computing Foundation](https://www.cncf.io/about/) (CNCF) channels, including the [Kubernetes blog](https://kubernetes.io/blog/).
 -->
-### 启动你的新本地化
+### 启动你的新本地化 {#add-a-localized-readme-file}
 
 一旦本地化满足工作流程和最小输出的要求，SIG Docs 将：
 
@@ -473,39 +486,46 @@ Once a localization meets requirements for workflow and minimum output, SIG Docs
 - 通过[云原生计算基金会](https://www.cncf.io/about/)（CNCF）渠道，
   包括 [Kubernetes 博客](https://kubernetes.io/blog/)，来宣传本地化的可用性。
 
-<!-- 
+<!--
 ## Translating content
 
 Localizing *all* of the Kubernetes documentation is an enormous task. It's okay to start small and expand over time.
-
-At a minimum, all localizations must include: 
 -->
 ## 翻译文档 {#translating-content}
 
 本地化*所有* Kubernetes 文档是一项艰巨的任务。从小做起，循序渐进。
 
+<!--
+### Minimum required content
+
+At a minimum, all localizations must include:
+-->
+### 最低要求内容 {#minimum-required-content}
+
 所有本地化至少必须包括：
 
-<!-- 
+<!--
 Description | URLs
 -----|-----
 Home | [All heading and subheading URLs](/docs/home/)
 Setup | [All heading and subheading URLs](/docs/setup/)
 Tutorials | [Kubernetes Basics](/docs/tutorials/kubernetes-basics/), [Hello Minikube](/docs/tutorials/hello-minikube/)
 Site strings | [All site strings](#Site-strings-in-i18n) in a new localized TOML file
+Releases | [All heading and subheading URLs](/releases)
 -->
 描述 | 网址
 -----|-----
-主页 | [所有标题和副标题网址](/zh/docs/home/)
-安装 | [所有标题和副标题网址](/zh/docs/setup/)
-教程 | [Kubernetes 基础](/zh/docs/tutorials/kubernetes-basics/), [Hello Minikube](/zh/docs/tutorials/hello-minikube/)
+主页 | [所有标题和副标题网址](/zh-cn/docs/home/)
+安装 | [所有标题和副标题网址](/zh-cn/docs/setup/)
+教程 | [Kubernetes 基础](/zh-cn/docs/tutorials/kubernetes-basics/), [Hello Minikube](/zh-cn/docs/tutorials/hello-minikube/)
 网站字符串 | [所有网站字符串](#Site-strings-in-i18n)
+发行版本 | [所有标题和副标题 URL](/releases)
 
-<!-- 
-Translated documents must reside in their own `content/**/` subdirectory, but otherwise follow the same URL path as the English source. For example, to prepare the [Kubernetes Basics](/docs/tutorials/kubernetes-basics/) tutorial for translation into German, create a subfolder under the `content/de/` folder and copy the English source: 
+<!--
+Translated documents must reside in their own `content/**/` subdirectory, but otherwise follow the same URL path as the English source. For example, to prepare the [Kubernetes Basics](/docs/tutorials/kubernetes-basics/) tutorial for translation into German, create a subfolder under the `content/de/` folder and copy the English source:
 -->
 翻译后的文档必须保存在自己的 `content/**/` 子目录中，否则将遵循与英文源相同的 URL 路径。
-例如，要准备将 [Kubernetes 基础](/zh/docs/tutorials/kubernetes-basics/) 教程翻译为德语，
+例如，要准备将 [Kubernetes 基础](/zh-cn/docs/tutorials/kubernetes-basics/) 教程翻译为德语，
 请在 `content/de/` 文件夹下创建一个子文件夹并复制英文源：
 
 ```shell
@@ -513,24 +533,24 @@ mkdir -p content/de/docs/tutorials
 cp content/en/docs/tutorials/kubernetes-basics.md content/de/docs/tutorials/kubernetes-basics.md
 ```
 
-<!-- 
-Translation tools can speed up the translation process. For example, some editors offers plugins to quickly translate text.  
+<!--
+Translation tools can speed up the translation process. For example, some editors offers plugins to quickly translate text.
 -->
 翻译工具可以加快翻译过程。例如，某些编辑器提供了用于快速翻译文本的插件。
 
-<!-- 
-Machine-generated translation alone does not meet the minimum standard of quality and requires extensive human review to meet that standard.  
+<!--
+Machine-generated translation is insufficient on its own. Localization requires extensive human review to meet minimum standards of quality.
 -->
 {{< caution >}}
-机器生成的翻译不能达到最低质量标准，需要进行大量人工审查才能达到该标准。
+机器生成的翻译本身是不够的，本地化需要广泛的人工审核才能满足最低质量标准。
 {{< /caution >}}
 
-<!-- 
-To ensure accuracy in grammar and meaning, members of your localization team should carefully review all machine-generated translations before publishing. 
+<!--
+To ensure accuracy in grammar and meaning, members of your localization team should carefully review all machine-generated translations before publishing.
 -->
 为了确保语法和含义的准确性，本地化团队的成员应在发布之前仔细检查所有由机器生成的翻译。
 
-<!-- 
+<!--
 ### Source files
 
 Localizations must be based on the English files from a specific release targeted by the localization team.
@@ -546,9 +566,9 @@ To find source files for your target version:
     Previous version | [`release-{{< skew prevMinorVersion >}}`](https://github.com/kubernetes/website/tree/release-{{< skew prevMinorVersion >}})
     Next version | [`dev-{{< skew nextMinorVersion >}}`](https://github.com/kubernetes/website/tree/dev-{{< skew nextMinorVersion >}})
 
-The `master` branch holds content for the current release `{{< latest-version >}}`. The release team will create `{{< release-branch >}}` branch before the next release: v{{< skew nextMinorVersion >}}.
+The `main` branch holds content for the current release `{{< latest-version >}}`. The release team will create a `{{< release-branch >}}` branch before the next release: v{{< skew nextMinorVersion >}}.
 -->
-### 源文件
+### 源文件 {#source-files}
 
 本地化必须基于本地化团队所针对的特定发行版本中的英文文件。
 每个本地化团队可以决定要针对哪个发行版本，在下文中称作目标版本（target version）。）
@@ -568,27 +588,27 @@ The `master` branch holds content for the current release `{{< latest-version >}
 发行团队会在下一个发行版本 v{{< skew nextMinorVersion >}} 出现之前创建
 `{{< release-branch >}}` 分支。
 
-<!-- 
-### Site strings in i18n/ 
+<!--
+### Site strings in i18n
 
-Localizations must include the contents of [`data/i18n/en/en.toml`](https://github.com/kubernetes/website/blob/master/i18n/en.toml) in a new language-specific file. Using German as an example: `data/i18n/de/de.toml`. 
+Localizations must include the contents of [`data/i18n/en/en.toml`](https://github.com/kubernetes/website/blob/main/data/i18n/en/en.toml) in a new language-specific file. Using German as an example: `data/i18n/de/de.toml`.
 
-Add a new localization file to `i18n/`. For example, with German (`de`): 
+Add a new localization directory and file to `data/i18n/`. For example, with German (`de`):
 -->
 ### i18n/ 中的网站字符串 {#site-strings-in-i18n}
 
 本地化必须在新的语言特定文件中包含
-[`data/i18n/en/en.toml`](https://github.com/kubernetes/website/blob/master/i18n/en.toml)
+[`data/i18n/en/en.toml`](https://github.com/kubernetes/website/blob/main/data/i18n/en/en.toml)
 的内容。以德语为例：`data/i18n/de/de.toml`。
 
-将新的本地化文件添加到 `i18n/`。例如德语 (`de`)：
+将新的本地化文件和目录添加到 `data/i18n/`。例如德语 (`de`)：
 
 ```bash
 mkdir -p data/i18n/de
 cp data/i18n/en/en.toml data/i18n/de/de.toml
 ```
 
-<!-- 
+<!--
 Revise the comments at the top of the file to suit your localization,
 then translate the value of each string. For example, this is the German-language
 placeholder text for the search form:
@@ -601,29 +621,47 @@ placeholder text for the search form:
 other = "Suchen"
 ```
 
-<!-- 
-Localizing site strings lets you customize site-wide text and features: for example, the legal copyright text in the footer on each page. 
+<!--
+Localizing site strings lets you customize site-wide text and features: for example, the legal copyright text in the footer on each page.
 -->
 本地化网站字符串允许你自定义网站范围的文本和特性：例如，每个页面页脚中的合法版权文本。
 
-<!-- 
+<!--
 ### Language specific style guide and glossary
 
-Some language teams have their own language-specific style guide and glossary. For example, see the [Korean Localization Guide](/ko/docs/contribute/localization_ko/). 
+Some language teams have their own language-specific style guide and glossary. For example, see the [Korean Localization Guide](/ko/docs/contribute/localization_ko/).
 -->
-### 特定语言的样式指南和词汇表
+### 特定语言的样式指南和词汇表 {#language-specific-style-guide-and-glossary}
 
 一些语言团队有自己的特定语言样式指南和词汇表。
-例如，请参见[中文本地化指南](/zh/docs/contribute/localization_zh/)。
+例如，请参见[中文本地化指南](/zh-cn/docs/contribute/localization_zh/)。
 
-<!-- 
-## Branching strategy 
+<!--
+### Language specific Zoom meetings
+
+If the localization project needs a separate meeting time, contact a SIG Docs Co-Chair or Tech Lead to create a new reoccurring Zoom meeting and calendar invite. This is only needed when the the team is large enough to sustain and require a separate meeting.
+
+Per CNCF policy, the localization teams must upload their meetings to the SIG Docs YouTube playlist. A SIG Docs Co-Chair or Tech Lead can help with the process until SIG Docs automates it.
+
+-->
+
+### 特定语言的 Zoom 会议 {#language-specific-zoom-meetings}
+
+如果本地化项目需要单独的会议时间，
+请联系 SIG Docs 联合主席或技术主管以创建新的重复 Zoom 会议和日历邀请。
+仅当团队维持在足够大的规模并需要单独的会议时才需要这样做。
+
+根据 CNCF 政策，本地化团队必须将他们的会议上传到 SIG Docs YouTube 播放列表。
+SIG Docs 联合主席或技术主管可以帮助完成该过程，直到 SIG Docs 实现自动化。
+
+<!--
+## Branching strategy
 
 Because localization projects are highly collaborative efforts, we
 encourage teams to work in shared localization branches - especially
 when starting out and the localization is not yet live.
 
-To collaborate on a localization branch: 
+To collaborate on a localization branch:
 -->
 ### 分支策略 {#branching-strategy}
 
@@ -632,16 +670,16 @@ To collaborate on a localization branch:
 
 在本地化分支上协作需要：
 
-<!-- 
+<!--
 1. A team member of [@kubernetes/website-maintainers](https://github.com/orgs/kubernetes/teams/website-maintainers) opens a localization branch from a source branch on https://github.com/kubernetes/website.
 
-    Your team approvers joined the `@kubernetes/website-maintainers` team when you [added your localization team](#add-your-localization-team-in-github) to the [`kubernetes/org`](https://github.com/kubernetes/org) repository. 
+    Your team approvers joined the `@kubernetes/website-maintainers` team when you [added your localization team](#add-your-localization-team-in-github) to the [`kubernetes/org`](https://github.com/kubernetes/org) repository.
 
     We recommend the following branch naming scheme:
 
     `dev-<source version>-<language code>.<team milestone>`
 
-    For example, an approver on a German localization team opens the localization branch `dev-1.12-de.1` directly against the k/website repository, based on the source branch for Kubernetes v1.12.
+    For example, an approver on a German localization team opens the localization branch `dev-1.12-de.1` directly against the kubernetes/website repository, based on the source branch for Kubernetes v1.12.
 -->
 1. [@kubernetes/website-maintainers](https://github.com/orgs/kubernetes/teams/website-maintainers)
    中的团队成员从 https://github.com/kubernetes/website 原有分支新建一个本地化分支。
@@ -653,16 +691,16 @@ To collaborate on a localization branch:
    `dev-<source version>-<language code>.<team milestone>`
 
    例如，一个德语本地化团队的批准人基于 Kubernetes v1.12 版本的源分支，
-   直接新建了 k/website 仓库的本地化分支 `dev-1.12-de.1`。
+   直接新建了 kubernetes/website 仓库的本地化分支 `dev-1.12-de.1`。
 
-<!-- 
+<!--
 2. Individual contributors open feature branches based on the localization branch.
 
     For example, a German contributor opens a pull request with changes to `kubernetes:dev-1.12-de.1` from `username:local-branch-name`.
 
 3. Approvers review and merge feature branches into the localization branch.
 
-4. Periodically, an approver merges the localization branch to its source branch by opening and approving a new pull request. Be sure to squash the commits before approving the pull request. 
+4. Periodically, an approver merges the localization branch to its source branch by opening and approving a new pull request. Be sure to squash the commits before approving the pull request.
 -->
 2. 个人贡献者基于本地化分支创建新的特性分支
 
@@ -673,19 +711,19 @@ To collaborate on a localization branch:
 4. 批准人会定期发起并批准新的 PR，将本地化分支合并到其源分支。
    在批准 PR 之前，请确保先 squash commits。
 
-<!-- 
-Repeat steps 1-4 as needed until the localization is complete. For example, subsequent German localization branches would be: `dev-1.12-de.2`, `dev-1.12-de.3`, etc. 
+<!--
+Repeat steps 1-4 as needed until the localization is complete. For example, subsequent German localization branches would be: `dev-1.12-de.2`, `dev-1.12-de.3`, etc.
 -->
 根据需要重复步骤 1-4，直到完成本地化工作。例如，随后的德语本地化分支将是：
 `dev-1.12-de.2`、`dev-1.12-de.3`，等等。
 
-<!-- 
+<!--
 Teams must merge localized content into the same branch from which the content was sourced.
 
 For example:
 
 - a localization branch sourced from `main` must be merged into `main`.
-- a localization branch sourced from `release-{{ skew "prevMinorVersion" }}` must be merged into `release-{{ skew "prevMinorVersion" }}`.
+- a localization branch sourced from `release-{{% skew "prevMinorVersion" %}}` must be merged into `release-{{% skew "prevMinorVersion" %}}`.
 
 {{< note >}}
 If your localization branch was created from `main` branch but it is not merged into `main` before new release branch `{{< release-branch >}}` created, merge it into both `main` and new release branch `{{< release-branch >}}`. To merge your localization branch into new release branch `{{< release-branch >}}`, you need to switch upstream branch of your localization branch to `{{< release-branch >}}`.
@@ -705,11 +743,11 @@ If your localization branch was created from `main` branch but it is not merged
 要将本地化分支合并到新的发行分支 `{{< release-branch >}}` 中，你需要
 将你本地化分支的上游分支切换到 `{{< release-branch >}}`。
 
-<!-- 
+<!--
 At the beginning of every team milestone, it's helpful to open an issue comparing upstream changes between the previous localization branch and the current localization branch. There are two scripts for comparing upstream changes. [`upstream_changes.py`](https://github.com/kubernetes/website/tree/main/scripts#upstream_changespy) is useful for checking the changes made to a specific file. And [`diff_l10n_branches.py`](https://github.com/kubernetes/website/tree/main/scripts#diff_l10n_branchespy) is useful for creating a list of outdated files for a specific localization branch.
 
 While only approvers can open a new localization branch and merge pull requests, anyone can open a pull request for a new localization branch. No special permissions are required.
- -->
+-->
 在团队每个里程碑的开始时段，创建一个 issue 来比较先前的本地化分支
 和当前的本地化分支之间的上游变化很有帮助。
 现在有两个脚本用来比较上游的变化。
@@ -721,13 +759,13 @@ While only approvers can open a new localization branch and merge pull requests,
 虽然只有批准人才能创建新的本地化分支并合并 PR，任何人都可以
 为新的本地化分支提交一个拉取请求（PR）。不需要特殊权限。
 
-<!-- 
-For more information about working from forks or directly from the repository, see ["fork and clone the repo"](#fork-and-clone-the-repo). 
+<!--
+For more information about working from forks or directly from the repository, see ["fork and clone the repo"](#fork-and-clone-the-repo).
 -->
 有关基于派生或直接从仓库开展工作的更多信息，请参见 ["派生和克隆"](#fork-and-clone-the-repo)。
 
-<!-- 
-## Upstream contributions 
+<!--
+## Upstream contributions
 
 SIG Docs welcomes upstream contributions and corrections to the English source.
 -->
diff --git a/content/zh/docs/contribute/localization_zh.md b/content/zh-cn/docs/contribute/localization_zh.md
similarity index 86%
rename from content/zh/docs/contribute/localization_zh.md
rename to content/zh-cn/docs/contribute/localization_zh.md
index 8b157d4a18..192adedd06 100644
--- a/content/zh/docs/contribute/localization_zh.md
+++ b/content/zh-cn/docs/contribute/localization_zh.md
@@ -6,7 +6,7 @@ content_type: concept
 <!-- overview -->
 
 本节详述文档中文本地化过程中须注意的事项。
-这里列举的内容包含了*中文本地化小组*早期给出的指导性建议和后续实践过程中积累的经验。
+这里列举的内容包含了**中文本地化小组**早期给出的指导性建议和后续实践过程中积累的经验。
 在阅读、贡献、评阅中文本地化文档的过程中，如果对本文的指南有任何改进建议，
 都请直接提出 PR。我们欢迎任何形式的补充和更正！
 
@@ -158,27 +158,18 @@ weight: 30
 通过 HTML 注释的短代码仍会被运行，因此需要额外小心。建议处理方式：
 
 ```
+{{</* note */>}}
 <!--
 English text
 -->
-{{</* note */>}}
 中文译文
 {{</* /note */>}}
 ```
 
-评阅人应该不难理解中英文段落的对应关系。但是如果采用下面的方式，
-则会出现两个 `note`，因此需要避免。这是因为被注释起来的短代码仍会起作用！
-
-```
-<!--
-{{</* note */>}}
-English text
-{{</* /note */>}}
--->
-{{</* note */>}}
-中文译文
-{{</* /note */>}}
-```
+{{< note >}}
+现行风格与之前风格有些不同，这是因为较新的 Hugo 版本已经能够正确处理短代码中的注释段落。
+保持注释掉的英文与译文都在短代码内更便于维护。
+{{< /note >}}
 
 ### 译与不译
 
@@ -198,13 +189,13 @@ deployment 来表示名为 "Deployment" 的 API 资源类型和对象实例。
 
 #### 代码中的注释
 
-一般而言，代码中的注释需要翻译，包括存放在 `content/zh/examples/`
+一般而言，代码中的注释需要翻译，包括存放在 `content/zh-cn/examples/`
 目录下的清单文件中的注释。
 
 
 #### 出站链接
 
-如果超级链接的目标是 Kubernetes 网站之外的纯英文网页，链接中的内容*可以*不翻译。
+如果超级链接的目标是 Kubernetes 网站之外的纯英文网页，链接中的内容**可以**不翻译。
 例如：
 
 ```
@@ -214,16 +205,18 @@ Please check [installation caveats](https://acme.com/docs/v1/caveats) ...
 请参阅 [installation caveats](https://acme.com/docs/v1/caveats) ...
 ```
 
+{{< note >}}
 注意，这里的 `installation` 与 `参阅` 之间留白，因为解析后属于中英文混排的情况。
+{{< /note >}}
 
 ### 标点符号
 
-译文中标点符号要使用全角字符，除非以下两种情况：
+1. 译文中标点符号要使用全角字符，除非以下两种情况：
 
-- 标点符号是英文命令的一部分；
-- 标点符号是 Markdown 语法的一部分。
+   - 标点符号是英文命令的一部分；
+   - 标点符号是 Markdown 语法的一部分。
 
-英文排比句式中采用的逗号，在译文中要使用顿号代替，以便符合中文书写习惯。
+1. 英文排比句式中采用的逗号，在译文中要使用顿号代替，以便符合中文书写习惯。
 
 ## 更新译文
 
@@ -233,7 +226,7 @@ Please check [installation caveats](https://acme.com/docs/v1/caveats) ...
 
 为确保准确跟踪中文化版本与英文版本之间的差异，中文内容的 PR 所包含的每个页面都必须是“最新的”。
 这里的“最新”指的是对应的英文页面中的更改已全部同步到中文页面。
-如果某中文 PR 中包含对 `content/zh/docs/foo/bar.md` 的更改，且文件 `bar.md`
+如果某中文 PR 中包含对 `content/zh-cn/docs/foo/bar.md` 的更改，且文件 `bar.md`
 的上次更改日期是 `2020-10-01 01:02:03 UTC`，对应 GIT 标签 `abcd1234`，
 则 `bar.md` 应包含自 `abcd1234` 以来 `content/en/docs/foo/bar.md` 的所有变更，
 否则视此 PR 为不完整 PR，会破坏我们对上游变更的跟踪。
@@ -242,7 +235,7 @@ Please check [installation caveats](https://acme.com/docs/v1/caveats) ...
 `bar.md` 上次提交以来发生的所有变更，可使用：
 
 ```
-./scripts/lsync.sh content/zh/docs/foo/bar.md
+./scripts/lsync.sh content/zh-cn/docs/foo/bar.md
 ```
 
 ## 关于链接
@@ -273,18 +266,18 @@ Please check [installation caveats](https://acme.com/docs/v1/caveats) ...
 For more information, please check [volumes](/docs/concepts/storage/)
 ...
 -->
-更多的信息可参考[卷](/zh/docs/concepts/storage/)页面。
+更多的信息可参考[卷](/zh-cn/docs/concepts/storage/)页面。
 ```
 
 如果对应目标页面尚未本地化，建议登记一个 Issue。
 
 {{< note >}}
 Website 的仓库中 `scripts/linkchecker.py` 是一个工具，可用来检查页面中的链接。
-例如，下面的命令检查中文本地化目录 `/content/zh/docs/concepts/containers/`
+例如，下面的命令检查中文本地化目录 `/content/zh-cn/docs/concepts/containers/`
 中所有 Markdown 文件中的链接合法性：
 
-```
-./scripts/linkchecker.py -l zh -f /docs/concepts/containers/**/*.md
+```shell
+./scripts/linkchecker.py -l zh-cn -f /docs/concepts/containers/**/*.md
 ```
 {{< /note >}}
 
@@ -293,15 +286,22 @@ Website 的仓库中 `scripts/linkchecker.py` 是一个工具，可用来检查
 以下为译文 Markdown 排版格式要求：
 
 - 中英文之间留一个空格
+
   * 这里的“英文”包括以英文呈现的超级链接
-  * 这里的中文、英文都不包括标点符号
+  * 这里的中文、英文都**不包括**标点符号
+
 - 译文 Markdown 中不要使用长行，应适当断行。
+
   * 可根据需要在 80-120 列断行
   * 最好结合句子的边界断行，即一句话在一行，不必留几个字转到下一行
   * 不要在两个中文字符中间断行，因为这样会造成中文字符中间显示一个多余空格，
     如果句子太长，可以从中文与非中文符号之间断行
   * 超级链接文字一般较长，可独立成行
 
+- 英文原文中可能通过 `_text_` 或者 `*text*` 的形式用斜体突出部分字句。
+  考虑到中文斜体字非常不美观，在译文中应改为 `**译文**` 形式，
+  即用双引号语法生成加粗字句，实现突出显示效果。
+
 {{< warning >}}
 我们注意到有些贡献者可能使用了某种自动化工具，在 Markdown 英文原文中自动添加空格。
 虽然这些工具可一定程度提高效率，仍然需要提请作者注意，某些工具所作的转换可能是不对的，
@@ -309,11 +309,10 @@ Website 的仓库中 `scripts/linkchecker.py` 是一个工具，可用来检查
 甚至将超级链接中的半角井号（`#`）转换为全角，导致链接失效。
 {{< /warning >}}
 
-英文中 "you" 翻译成 "你" 不必是 “您"。
-文章内的链接用英文，例如 (#deploying)，在对应的标题上后面加上 {#deploying}
 
+## 特殊词汇
 
-## 术语
+英文中 "you" 翻译成 "你"，不必翻译为 "您" 以表现尊敬或谦卑。
 
 ### 术语拼写
 
@@ -324,14 +323,14 @@ Website 的仓库中 `scripts/linkchecker.py` 是一个工具，可用来检查
 列举所有 Pod，查看其创建时间 ...        [Yes]
 ```
 
-*第一次*使用首字母缩写时，应标注其全称和中文译文。例如：
+**第一次**使用首字母缩写时，应标注其全称和中文译文。例如：
 
 ```
 你可以创建一个 Pod 干扰预算（Pod Disruption Budget，PDB）来解决这一问题。
 所谓 PDB 实际上是 ...
 ```
 
-对于某些特定于 Kubernetes 语境的术语，也应在*第一次*出现在页面中时给出其英文原文，
+对于某些特定于 Kubernetes 语境的术语，也应在**第一次**出现在页面中时给出其英文原文，
 以便读者对照阅读。例如：
 
 ```
@@ -350,9 +349,14 @@ Website 的仓库中 `scripts/linkchecker.py` 是一个工具，可用来检查
 - annotation，注解
 - anti-affinity，反亲和性
 - attach，挂接
+- authenticate，身份验证
+- authorize，授权或鉴权
+  - 将权限授予某主体时，译为“授权”
+  - 根据某些参数/条件来确定具有哪些权限时，译为“鉴权”
+- authorizer，鉴权器
 - autoscale，自动扩缩容
 - bearer token，持有者令牌
-- capabilities权能字
+- capabilities
   * 当泛指某主体执行某操作的能力时，可直译为“能力”
   * 当特指 Linux 操作系统上的[权限控制](http://man7.org/linux/man-pages/man7/capabilities.7.html)机制时，译为“权能字”
 - certificate authority，证书机构
diff --git a/content/zh-cn/docs/contribute/new-content/_index.md b/content/zh-cn/docs/contribute/new-content/_index.md
new file mode 100644
index 0000000000..e37acc6428
--- /dev/null
+++ b/content/zh-cn/docs/contribute/new-content/_index.md
@@ -0,0 +1,200 @@
+---
+title: 贡献新内容
+content_type: 概念
+main_menu: true
+weight: 20
+---
+<!-- 
+title: Contributing new content
+content_type: concept
+main_menu: true
+weight: 20
+-->
+
+<!-- overview -->
+
+<!-- 
+This section contains information you should know before contributing new
+content. 
+-->
+
+本节包含你在贡献新内容之前需要知晓的信息。
+
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
+
+{{< mermaid >}}
+flowchart LR 
+    subgraph second[开始之前]
+    direction TB
+    S[ ] -.-
+    A[签署 CNCF CLA] --> B[选择 Git 分支]
+    B --> C[每个 PR 一种语言]
+    C --> F[检查贡献者工具]
+    end
+    subgraph first[基本知识]
+    direction TB
+       T[ ] -.-
+       D[用 markdown 编写文档<br>并用 Hugo 构建网站] --- E[GitHub 源代码]
+       E --- G['/content/../docs' 文件夹包含<br>多语言文档]
+       G --- H[评审 Hugo 页面内容<br>类型和短代码]
+    end
+    
+
+    first ----> second
+
+
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class A,B,C,D,E,F,G,H grey
+class S,T spacewhite
+class first,second white
+{{</ mermaid >}}
+
+<!--
+***Figure - Contributing new content preparation***
+
+The figure above depicts the information you should know
+prior to submitting new content. The information details follow.
+-->
+
+***插图 - 贡献新内容准备工作***
+
+上图描述了你在提交新内容之前需要知晓的信息。
+详细信息见下文。
+
+<!-- body -->
+<!-- 
+## Contributing basics
+
+- Write Kubernetes documentation in Markdown and build the Kubernetes site
+  using [Hugo](https://gohugo.io/).
+- Kubernetes documentation uses [CommonMark](https://commonmark.org/) as its flavor of  Markdown. 
+- The source is in [GitHub](https://github.com/kubernetes/website). You can find
+  Kubernetes documentation at `/content/en/docs/`. Some of the reference
+  documentation is automatically generated from scripts in
+  the `update-imported-docs/` directory.
+- [Page content types](/docs/contribute/style/page-content-types/) describe the
+  presentation of documentation content in Hugo.
+  -->
+
+## 基本知识
+
+- 使用 Markdown 编写 Kubernetes 文档并使用 [Hugo](https://gohugo.io/) 构建网站。
+- Kubernetes 文档使用 [CommonMark](https://commonmark.org/) 作为 Markdown 的风格。
+- 源代码位于 [GitHub](https://github.com/kubernetes/website) 仓库中。
+  你可以在 `/content/zh-cn/docs/` 目录下找到 Kubernetes 文档。
+  某些参考文档是使用位于 `update-imported-docs/` 目录下的脚本自动生成的。
+- [页面内容类型](/zh-cn/docs/contribute/style/page-content-types/)使用 Hugo 描述文档内容的呈现。
+
+<!-- 
+- You can use [Docsy shortcodes](https://www.docsy.dev/docs/adding-content/shortcodes/) or [custom Hugo shortcodes](/docs/contribute/style/hugo-shortcodes/) to contribute to Kubernetes documentation.
+- In addition to the standard Hugo shortcodes, we use a number of
+  [custom Hugo shortcodes](/docs/contribute/style/hugo-shortcodes/) in our
+  documentation to control the presentation of content.
+- Documentation source is available in multiple languages in `/content/`. Each
+  language has its own folder with a two-letter code determined by the
+  [ISO 639-1 standard](https://www.loc.gov/standards/iso639-2/php/code_list.php)
+  . For example, English documentation source is stored in `/content/en/docs/`.
+- For more information about contributing to documentation in multiple languages
+  or starting a new translation,
+  see [localization](/docs/contribute/localization).
+-->
+
+- 你可以使用 [Docsy 短代码](https://www.docsy.dev/docs/adding-content/shortcodes/)
+  或[定制的 Hugo 短代码](/zh-cn/docs/contribute/style/hugo-shortcodes/)贡献 Kubernetes 文档。
+- 除了标准的 Hugo 短代码外，
+  我们还在文档中使用一些[定制的 Hugo 短代码](/zh-cn/docs/contribute/style/hugo-shortcodes/)来控制内容的呈现。
+- 文档的源代码有多种语言形式，位于 `/content/` 目录下。
+  每种语言都有一个自己的目录，用两个字母表示，这两个字母是基于
+  [ISO 639-1 标准](https://www.loc.gov/standards/iso639-2/php/code_list.php)来确定的。
+  例如，英语文档的源代码位于 `/content/en/docs/` 目录下。
+- 关于为多语言文档做贡献以及如何开始新翻译的详细信息，
+  可参考[本地化文档](/zh-cn/docs/contribute/localization)。
+
+<!-- 
+## Before you begin {#before-you-begin}
+### Sign the CNCF CLA {#sign-the-cla}
+All Kubernetes contributors **must** read
+the [Contributor guide](https://github.com/kubernetes/community/blob/master/contributors/guide/README.md)
+and [sign the Contributor License Agreement (CLA)](https://github.com/kubernetes/community/blob/master/CLA.md).
+Pull requests from contributors who haven't signed the CLA fail the automated
+tests. The name and email you provide must match those found in
+your `git config`, and your git name and email must match those used for the
+CNCF CLA.
+-->
+
+## 开始之前 {#before-you-begin}
+
+### 签署 CNCF CLA {#sign-the-cla}
+
+所有 Kubernetes 贡献者**必须**阅读[贡献者指南](https://github.com/kubernetes/community/blob/master/contributors/guide/README.md)
+并[签署贡献者授权同意书 (Contributor License Agreement, CLA)](https://github.com/kubernetes/community/blob/master/CLA.md)。  
+
+若贡献者尚未签署 CLA，其发起的 PR 将无法通过自动化测试。
+你所提供的姓名和邮件地址必须与 `git config` 中配置的完全相同，
+而且你的 git 用户名和邮件地址必须与用来签署 CNCF CLA 的信息一致。
+
+<!-- 
+### Choose which Git branch to use
+
+When opening a pull request, you need to know in advance which branch to base
+your work on.
+
+Scenario | Branch
+:---------|:------------
+Existing or new English language content for the current release | `main`
+Content for a feature change release | The branch which corresponds to the major and minor version the feature change is in, using the pattern `dev-<version>`. For example, if a feature changes in the `v{{< skew nextMinorVersion >}}` release, then add documentation changes to the ``dev-{{< skew nextMinorVersion >}}`` branch.
+Content in other languages (localizations) | Use the localization's convention. See the [Localization branching strategy](/docs/contribute/localization/#branching-strategy) for more information.
+
+If you're still not sure which branch to choose, ask in `#sig-docs` on Slack.
+-->
+
+### 选择要使用的 Git 分支
+
+在发起 PR 时，你需要预先知道基于哪个分支来开展工作。
+
+场景 | 分支
+:---------|:------------
+针对当前发行版本的，对现有英文内容的修改或新的英文内容 | `main`
+ 针对功能特性变更的内容 | 分支对应于功能特性变更的主要和次要版本，分支名称采用 `dev-<version>` 的模式。例如，如果某功能特性在 `v{{< skew nextMinorVersion >}}` 版本发生变化，则对应的文档变化要添加到 `dev-{{< skew nextMinorVersion >}}` 分支。
+ 其他语言的内容（本地化） | 基于本地化团队的约定。参见[本地化分支策略](/zh-cn/docs/contribute/localization/#branching-strategy)了解更多信息。 
+
+如果你仍不能确定要选择哪个分支，请在 Slack 的 `#sig-docs` 频道上提出问题。  
+
+<!-- 
+{{< note >}} If you already submitted your pull request and you know that the
+base branch was wrong, you (and only you, the submitter) can change it. {{<
+/note >}}
+-->
+
+{{< note >}}
+如果你已经提交了 PR，并且发现所针对的分支选错了，你（且只有作为提交人的你）可以更改分支。
+{{< /note >}}
+
+<!-- 
+### Languages per PR
+
+Limit pull requests to one language per PR. If you need to make an identical
+change to the same code sample in multiple languages, open a separate PR for
+each language.
+-->
+
+### 每个 PR 牵涉的语言
+
+请确保每个 PR 仅涉及一种语言。
+如果你需要对多种语言下的同一代码示例进行相同的修改，也请为每种语言发起一个独立的 PR。
+
+<!-- 
+## Tools for contributors
+
+The [doc contributors tools](https://github.com/kubernetes/website/tree/main/content/en/docs/doc-contributor-tools)
+directory in the `kubernetes/website` repository contains tools to help your
+contribution journey go more smoothly.
+-->
+
+## 为贡献者提供的工具
+
+`kubernetes/website` 仓库的[文档贡献者工具](https://github.com/kubernetes/website/tree/main/content/zh-cn/docs/doc-contributor-tools)目录中包含了一些工具，
+有助于使你的贡献过程更为顺畅。
diff --git a/content/zh/docs/contribute/new-content/blogs-case-studies.md b/content/zh-cn/docs/contribute/new-content/blogs-case-studies.md
similarity index 71%
rename from content/zh/docs/contribute/new-content/blogs-case-studies.md
rename to content/zh-cn/docs/contribute/new-content/blogs-case-studies.md
index 71ebf83930..aa425e2bbb 100644
--- a/content/zh/docs/contribute/new-content/blogs-case-studies.md
+++ b/content/zh-cn/docs/contribute/new-content/blogs-case-studies.md
@@ -34,14 +34,78 @@ Anyone can write a blog post and submit it for review.
 -->
 ## Kubernetes 博客
 
-Kubernetes 博客用于项目发布新功能特性、社区报告以及其他一些可能对整个社区
-很重要的新闻。
+Kubernetes 博客用于项目发布新功能特性、
+社区报告以及其他一些可能对整个社区很重要的新闻。
 其读者包括最终用户和开发人员。
-大多数博客的内容是关于核心项目中正在发生的事情，不过我们也鼓励你提交一些
-关于生态系统中其他地方发生的事情的博客。
+大多数博客的内容是关于核心项目中正在发生的事情，
+不过我们也鼓励你提交一些有关生态系统中其他时事的博客。
 
 任何人都可以撰写博客并提交评阅。
 
+<!-- 
+### Submit a Post
+
+Blog posts should not be commercial in nature and should consist of original content that applies broadly to the Kubernetes community.
+Appropriate blog content includes:
+
+- New Kubernetes capabilities
+- Kubernetes projects updates
+- Updates from Special Interest Groups
+- Tutorials and walkthroughs
+- Thought leadership around Kubernetes
+- Kubernetes Partner OSS integration
+- **Original content only**
+-->
+### 提交博文
+
+博文不应该是商业性质的，应该包含广泛适用于 Kubernetes 社区的原创内容。
+合适的博客内容包括：
+
+- Kubernetes 新能力
+- Kubernetes 项目更新信息
+- 来自特别兴趣小组（Special Interest Groups, SIG）的更新信息
+- 教程和演练
+- 有关 Kubernetes 的纲领性理念
+- Kubernetes 合作伙伴 OSS 集成信息
+- **仅限原创内容**
+
+<!-- 
+Unsuitable content includes:
+
+- Vendor product pitches
+- Partner updates without an integration and customer story
+- Syndicated posts (language translations ok)
+-->
+
+不合适的博客内容包括：
+
+- 供应商产品推介
+- 不含集成信息和客户故事的合作伙伴更新信息
+- 已发表的博文（可刊登博文译稿）
+
+<!-- 
+To submit a blog post, follow these steps:
+
+1. [Sign the CLA](https://kubernetes.io/docs/contribute/start/#sign-the-cla) if you have not yet done so.
+1. Have a look at the Markdown format for existing blog posts in the [website repository](https://github.com/kubernetes/website/tree/master/content/en/blog/_posts).
+1. Write out your blog post in a text editor of your choice.
+1. On the same link from step 2, click the Create new file button. Paste your content into the editor. Name the file to match the proposed title of the blog post, but don’t put the date in the file name. The blog reviewers will work with you on the final file name and the date the blog will be published.
+1. When you save the file, GitHub will walk you through the pull request process.
+1. A blog post reviewer will review your submission and work with you on feedback and final details. When the blog post is approved, the blog will be scheduled for publication.
+-->
+要提交博文，你可以遵从以下步骤：
+
+1. 如果你还未签署 CLA，请先[签署 CLA](https://kubernetes.io/docs/contribute/start/#sign-the-cla)。
+2. 查阅[网站仓库](https://github.com/kubernetes/website/tree/master/content/en/blog/_posts)中现有博文的 Markdown 格式。
+3. 在你所选的文本编辑器中撰写你的博文。
+4. 在第 2 步的同一链接上，点击 **Create new file** 按钮。
+   将你的内容粘贴到编辑器中。为文件命名，使其与提议的博文标题一致，
+   但不要在文件名中写日期。
+   博客评阅者将与你一起确定最终的文件名和发表博客的日期。
+5. 保存文件时，GitHub 将引导你完成 PR 流程。
+6. 博客评阅者将评阅你提交的内容，并与你一起处理反馈和最终细节。
+   当博文被批准后，博客将排期发表。
+
 <!--
 ### Guidelines and expectations
 
@@ -55,7 +119,7 @@ Kubernetes 博客用于项目发布新功能特性、社区报告以及其他一
 - 博客内容不可以是销售用语。
   - 文章内容必须是对整个 Kubernetes 社区中很多人都有参考意义。
     例如，所提交的文章应该关注上游的 Kubernetes 项目本身，而不是某个厂商特定的配置。
-    请参阅[文档风格指南](/zh/docs/contribute/style/content-guide/#what-s-allowed)
+    请参阅[文档风格指南](/zh-cn/docs/contribute/style/content-guide/#what-s-allowed)
     以了解哪些内容是 Kubernetes 所允许的。
   - 链接应该主要指向官方的 Kubernetes 文档。
     当引用外部信息时，链接应该是多样的。
@@ -74,7 +138,7 @@ Kubernetes 博客用于项目发布新功能特性、社区报告以及其他一
 - 博客内容并非在某特定日期发表。
     - 文章会交由社区自愿者评阅。我们会尽力满足特定的时限要求，只是无法就此作出承诺。
   - Kubernetes 项目的很多核心组件会在发布窗口期内提交博客文章，导致发表时间被推迟。
-    因此，请考虑在发布周期内较为平静的时间段提交博文。
+    因此，请考虑在发布周期内较为平静的时间段提交博客文章。
   - 如果你希望就博文发表日期上进行较大范围的协调，请联系
     [CNCF 推广团队](https://www.cncf.io/about/contact/)。
     这也许是比提交博客文章更合适的一种选择。
@@ -87,6 +151,7 @@ Kubernetes 博客用于项目发布新功能特性、社区报告以及其他一
   - The components of Kubernetes are purposely modular, so tools that use existing integration points like CNI and CSI are on topic. 
   - Posts about other CNCF projects may or may not be on topic. We recommend asking the blog team before submitting a draft.
     - Many CNCF projects have their own blog. These are often a better choice for posts. There are times of major feature or milestone for a CNCF project that users would be interested in reading on the Kubernetes blog.
+  - Blog posts about contributing to the Kubernetes project should be in the [Kubernetes Contributors site](https://kubernetes.dev)
 -->
 - 博客内容应该对 Kubernetes 用户有用。
   - 与参与 Kubernetes SIGs 活动相关，或者与这类活动的结果相关的主题通常是切题的。
@@ -98,6 +163,7 @@ Kubernetes 博客用于项目发布新功能特性、社区报告以及其他一
     - 很多 CNCF 项目有自己的博客。这些博客通常是更好的选择。
       有些时候，某个 CNCF 项目的主要功能特性或者里程碑的变化可能是用户有兴趣在
       Kubernetes 博客上阅读的内容。
+  - 关于为 Kubernetes 项目做贡献的博客内容应该放在 [Kubernetes 贡献者站点](https://kubernetes.dev)上。
 <!--
 - Blog posts should be original content
   - The official blog is not for repurposing existing content from a third party as new content.
@@ -126,7 +192,7 @@ We recognize that this requirement makes the process more difficult for less-fam
 -->
 ### 提交博客的技术考虑
 
-所提交的内容应该是 Markdown 格式的，以便能够被[Hugo](https://gohugo.io/) 生成器来处理。
+所提交的内容应该是 Markdown 格式的，以便能够被 [Hugo](https://gohugo.io/) 生成器来处理。
 关于如何使用相关技术，有[很多可用的资源](https://gohugo.io/documentation/)。
 
 我们知道这一需求可能给那些对此过程不熟悉的朋友们带来不便，
@@ -141,7 +207,6 @@ To submit a blog post follow these directions:
 SIG Docs [博客子项目](https://github.com/kubernetes/community/tree/master/sig-docs/blog-subproject) 负责管理博客的评阅过程。
 更多信息可参考[提交博文](https://github.com/kubernetes/community/tree/master/sig-docs/blog-subproject#submit-a-post)。
 
-
 要提交博文，你可以遵从以下指南：
 <!--
 - [Open a pull request](/docs/contribute/new-content/open-a-pr/#fork-the-repo) with a new blog post. New blog posts go under the [`content/en/blog/_posts`](https://github.com/kubernetes/website/tree/main/content/en/blog/_posts) directory.
@@ -152,7 +217,7 @@ SIG Docs [博客子项目](https://github.com/kubernetes/community/tree/master/s
   - Do **not** include dots in the filename. A name like `2020-01-01-whats-new-in-1.19.md` causes failures during a build.
   - The front matter must include the following:
 -->
-- [发起一个包含博文的 PR](/zh/docs/contribute/new-content/open-a-pr/#fork-the-repo)。
+- [发起一个包含新博文的 PR](/zh-cn/docs/contribute/new-content/open-a-pr/#fork-the-repo)。
   新博文要创建于 [`content/en/blog/_posts`](https://github.com/kubernetes/website/tree/main/content/en/blog/_posts) 目录下。
 
 - 确保你的博文遵从合适的命名规范，并带有下面的引言（元数据）信息：
@@ -198,6 +263,30 @@ SIG Docs [博客子项目](https://github.com/kubernetes/community/tree/master/s
   - 博客团队会对 PR 内容进行评阅，为你提供一些评语以便修订。
     之后，机器人会将你的博文合并并发表。
 
+<!-- 
+  - If the content of the blog post contains only content that is not expected to require updates to stay accurate for the reader, it can be marked as evergreen and exempted from the automatic warning about outdated content added to blog posts older than one year.
+    - To mark a blog post as evergreen, add this to the front matter:
+      
+      ```yaml
+      evergreen: true
+      ```
+    - Examples of content that should not be marked evergreen:
+      - **Tutorials** that only apply to specific releases or versions and not all future versions
+      - References to pre-GA APIs or features
+-->
+
+  - 如果博文的内容仅包含预期无需更新就能对读者保持精准的内容，
+    则可以将这篇博文标记为长期有效（evergreen），
+    且免除添加博文发表一年后内容过期的自动警告。
+    - 要将一篇博文标记为长期有效，请在引言部分添加以下标记：
+      
+      ```yaml
+      evergreen: true
+      ```
+    - 不应标记为长期有效的内容示例：
+      - 仅适用于特定发行版或版本而不是所有未来版本的**教程**
+      - 对非正式发行（Pre-GA）API 或功能特性的引用
+
 <!--
 ## Submit a case study
 
@@ -212,13 +301,11 @@ Refer to the [case study guidelines](https://github.com/cncf/foundation/blob/mas
 ## 提交案例分析
 
 案例分析用来概述组织如何使用 Kubernetes 解决现实世界的问题。
-Kubernetes 市场化团队和 {{< glossary_tooltip text="CNCF" term_id="cncf" >}} 成员
-会与你一起工作，撰写所有的案例分析。
+Kubernetes 市场化团队和 {{< glossary_tooltip text="CNCF" term_id="cncf" >}} 成员会与你一起工作，
+撰写所有的案例分析。
 
-请查看
-[现有案例分析](https://github.com/kubernetes/website/tree/main/content/en/case-studies)
-的源码。
+请查看[现有案例分析](https://github.com/kubernetes/website/tree/main/content/en/case-studies)的源码。
 
-参考[案例分析指南](https://github.com/cncf/foundation/blob/master/case-study-guidelines.md)
+参考[案例分析指南](https://github.com/cncf/foundation/blob/master/case-study-guidelines.md)，
 根据指南中的注意事项提交你的 PR 请求。
 
diff --git a/content/zh/docs/contribute/new-content/new-features.md b/content/zh-cn/docs/contribute/new-content/new-features.md
similarity index 93%
rename from content/zh/docs/contribute/new-content/new-features.md
rename to content/zh-cn/docs/contribute/new-content/new-features.md
index 031ce848fd..55828147c1 100644
--- a/content/zh/docs/contribute/new-content/new-features.md
+++ b/content/zh-cn/docs/contribute/new-content/new-features.md
@@ -24,8 +24,7 @@ card:
 <!-- overview -->
 
 <!--
-Each major Kubernetes release introduces new features that require documentation.
-New releases also bring updates to existing features and documentation (such as upgrading a feature from alpha to beta).
+Each major Kubernetes release introduces new features that require documentation. New releases also bring updates to existing features and documentation (such as upgrading a feature from alpha to beta).
 
 Generally, the SIG responsible for a feature submits draft documentation of the
 feature as a pull request to the appropriate development branch of the
@@ -64,14 +63,14 @@ the techniques described in
 在你选定了某个功能特性，为其撰写文档（主笔或辅助），请在 `#sig-docs` Slack 频道、SIG Docs 的每周例会上，
 或者在功能特性对应的 PR 上提出咨询。
 如果继续工作是没有问题的，你可以使用
-[向他人的 PR 中提交](/zh/docs/contribute/review/for-approvers/#commit-into-another-persons-pr)
+[向他人的 PR 中提交](/zh-cn/docs/contribute/review/for-approvers/#commit-into-another-persons-pr)
 中描述的技术之一，参与 PR 的编辑工作。
 
 <!--
 ### Find out about upcoming features
 
 To find out about upcoming features, attend the weekly SIG Release meeting (see
-the [community](https://kubernetes.io/community/) page for upcoming meetings)
+the [community](/community/) page for upcoming meetings)
 and monitor the release-specific documentation
 in the [kubernetes/sig-release](https://github.com/kubernetes/sig-release/)
 repository. Each release has a sub-directory in the [/sig-release/tree/master/releases/](https://github.com/kubernetes/sig-release/tree/master/releases)
@@ -81,7 +80,7 @@ notes, and a document listing each person on the release team.
 ### 了解即将发布的功能特性
 
 要了解即将发布的功能特性，可以参加每周的 SIG Release 例会
-（参考[社区](https://kubernetes.io/community/)页面，了解即将召开的会议），
+（参考[社区](/zh-cn/community/)页面，了解即将召开的会议），
 监视 [kubernetes/sig-release](https://github.com/kubernetes/sig-release/)
 中与发行相关的文档。
 每个发行版本在
@@ -226,11 +225,9 @@ When ready, populate your placeholder PR with feature documentation and change
 the state of the PR from draft to **ready for review**. To mark a pull request
 as ready for review, navigate to the merge box and click **Ready for review**.
 
-Do your best to describe your feature and how to use it. If you need help
-structuring your documentation, ask in the `#sig-docs` slack channel.
+Do your best to describe your feature and how to use it. If you need help structuring your documentation, ask in the `#sig-docs` slack channel.
 
-When you complete your content, the documentation person assigned to your
-feature reviews it. 
+When you complete your content, the documentation person assigned to your feature reviews it.
 To ensure technical accuracy, the content may also require a technical review from corresponding SIG(s).
 Use their suggestions to get the content to a release ready state.
 -->
@@ -257,13 +254,19 @@ table with Alpha and Beta history intact.
 -->
 如果你在处理的功能特性处于 Alpha 或 Beta 阶段并由某特性门控控制，
 请确保在你的 PR 中，该特性门控被添加到 
-[Alpha/Beta 特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/#feature-gates-for-alpha-or-beta-features)
+[Alpha/Beta 特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/#feature-gates-for-alpha-or-beta-features)
 表格中。对于新的特性门控选项，需要为该特性门控提供一段描述。
 如果所处理的功能特性已经进入正式发布（GA）状态或者被废弃，
 请确保将其从上述表格中迁移到
-[已毕业或废弃的特性](/zh/docs/reference/command-line-tools-reference/feature-gates/#feature-gates-for-graduated-or-deprecated-features)
+[已毕业或废弃的特性](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/#feature-gates-for-graduated-or-deprecated-features)
 表格中，并确保迁移后保留其 Alpha、Beta 版本变迁历史。
 
+<!-- 
+If your feature needs documentation and the first draft
+content is not received, the feature may be removed from the milestone.
+-->
+如果你的功能特性需要文档，而你未提交初版文档，该特性可能会被从里程碑中删除。
+
 <!--
 ### All PRs reviewed and ready to merge
 
diff --git a/content/zh-cn/docs/contribute/new-content/open-a-pr.md b/content/zh-cn/docs/contribute/new-content/open-a-pr.md
new file mode 100644
index 0000000000..1e2dc956c1
--- /dev/null
+++ b/content/zh-cn/docs/contribute/new-content/open-a-pr.md
@@ -0,0 +1,1054 @@
+---
+title: 发起拉取请求（PR）
+content_type: concept
+weight: 10
+card:
+  name: contribute
+  weight: 40
+---
+<!--
+title: Opening a pull request
+content_type: concept
+weight: 10
+card:
+  name: contribute
+  weight: 40
+-->
+
+<!-- overview -->
+<!--
+{{< note >}}
+**Code developers**: If you are documenting a new feature for an
+upcoming Kubernetes release, see
+[Document a new feature](/docs/contribute/new-content/new-features/).
+{{< /note >}}
+
+To contribute new content pages or improve existing content pages, open a pull request (PR).
+Make sure you follow all the requirements in the
+[Before you begin](/docs/contribute/new-content/) section.
+-->
+{{< note >}}
+**代码开发者们**：如果你在为下一个 Kubernetes 发行版本中的某功能特性撰写文档，
+请参考[为发行版本撰写功能特性文档](/zh-cn/docs/contribute/new-content/new-features/)。
+{{< /note >}}
+
+要贡献新的内容页面或者改进已有内容页面，请发起拉取请求（PR）。
+请确保你满足了[开始之前](/zh-cn/docs/contribute/new-content/)一节中所列举的所有要求。
+
+<!--
+If your change is small, or you're unfamiliar with git, read
+[Changes using GitHub](#changes-using-github) to learn how to edit a page.
+
+If your changes are large, read [Work from a local fork](#fork-the-repo) to learn how to make
+changes locally on your computer.
+-->
+如果你所提交的变更足够小，或者你对 git 工具不熟悉，可以阅读
+[使用 GitHub 提交变更](#changes-using-github)以了解如何编辑页面。
+
+如果所提交的变更较大，请阅读[基于本地克隆副本开展工作](#fork-the-repo)以学习
+如何在你本地计算机上进行修改。
+
+<!-- body -->
+
+<!-- 
+## Changes using GitHub
+
+If you're less experienced with git workflows, here's an easier method of
+opening a pull request. Figure 1 outlines the steps and the details follow.
+-->
+## 使用 GitHub 提交变更   {#changes-using-github}
+
+如果你在 git 工作流方面欠缺经验，这里有一种发起拉取请求的更为简单的方法。
+图 1 勾勒了后续的步骤和细节。
+
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
+
+{{< mermaid >}}
+flowchart LR
+A([fa:fa-user 新的<br>贡献者]) --- id1[(K8s/Website<br>GitHub)]
+subgraph tasks[使用 GitHub 提交变更]
+direction TB
+    0[ ] -.-
+    1[1. 编辑此页] --> 2[2. 使用 GitHub markdown<br>编辑器进行修改]
+    2 --> 3[3. 填写 Propose file change]
+
+end
+subgraph tasks2[ ]
+direction TB
+4[4. 选择 Propose file change] --> 5[5. 选择 Create pull request] --> 6[6. 填写 Open a pull request]
+6 --> 7[7. 选择 Create pull request] 
+end
+
+id1 --> tasks --> tasks2
+
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+classDef k8s fill:#326ce5,stroke:#fff,stroke-width:1px,color:#fff;
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class A,1,2,3,4,5,6,7 grey
+class 0 spacewhite
+class tasks,tasks2 white
+class id1 k8s
+{{</ mermaid >}}
+
+<!--
+Figure 1. Steps for opening a PR using GitHub.
+-->
+图 1. 使用 GitHub 发起一个 PR 的步骤。
+
+<!--
+1. On the page where you see the issue, select the pencil icon at the top right.
+   You can also scroll to the bottom of the page and select **Edit this page**.
+
+1. Make your changes in the GitHub markdown editor.
+
+1. Below the editor, fill in the **Propose file change** form.
+   In the first field, give your commit message a title.
+   In the second field, provide a description.
+-->
+1. 在你发现问题的网页，选择右上角的铅笔图标。
+   你也可以滚动到页面底端，选择**编辑此页**。
+
+2. 在 GitHub 的 Markdown 编辑器中修改内容。
+
+3. 在编辑器的下方，填写 **Propose file change** 表单。
+   在第一个字段中，为你的提交消息取一个标题。
+   在第二个字段中，为你的提交写一些描述文字。
+
+   <!-- 
+   Do not use any [GitHub Keywords](https://help.github.com/en/github/managing-your-work-on-github/linking-a-pull-request-to-an-issue#linking-a-pull-request-to-an-issue-using-a-keyword)
+   in your commit message. You can add those to the pull request description later.
+   -->
+   {{< note >}}
+   不要在提交消息中使用 [GitHub 关键词](https://help.github.com/en/github/managing-your-work-on-github/linking-a-pull-request-to-an-issue#linking-a-pull-request-to-an-issue-using-a-keyword)。
+   你可以在后续的 PR 描述中使用这些关键词。
+   {{< /note >}}
+
+<!--
+1. Select **Propose file change**.
+
+1. Select **Create pull request**.
+
+1. The **Open a pull request** screen appears. Fill in the form:
+
+   - The **Subject** field of the pull request defaults to the commit summary.
+     You can change it if needed.
+   - The **Body** contains your extended commit message, if you have one,
+     and some template text. Add the
+     details the template text asks for, then delete the extra template text.
+   - Leave the **Allow edits from maintainers** checkbox selected.
+-->
+4. 选择 **Propose File Change**。
+
+5. 选择 **Create pull request**。
+
+6. 出现 **Open a pull request** 界面。填写表单：
+
+   - **Subject** 字段默认为提交的概要信息。你可以根据需要修改它。
+   - **Body** 字段包含更为详细的提交消息，如果你之前有填写过的话，
+     以及一些模板文字。填写模板所要求的详细信息，
+     之后删除多余的模板文字。
+   - 确保 **Allow edits from maintainers** 复选框被勾选。
+
+   <!--
+   PR descriptions are a great way to help reviewers understand your change.
+   For more information, see [Opening a PR](#open-a-pr).
+   -->
+   {{< note >}}
+   PR 描述信息是帮助 PR 评阅人了解你所提议的变更的重要途径。
+   更多信息请参考[发起一个 PR](#open-a-pr)。
+   {{< /note >}}
+
+<!-- 1. Select **Create pull request**. -->
+7. 选择 **Create pull request**。
+
+<!--
+### Addressing feedback in GitHub
+
+Before merging a pull request, Kubernetes community members review and
+approve it. The `k8s-ci-robot` suggests reviewers based on the nearest
+owner mentioned in the pages. If you have someone specific in mind,
+leave a comment with their GitHub username in it.
+-->
+### 在 GitHub 上处理反馈意见   {#addressing-feedback-in-github}
+
+在合并 PR 之前，Kubernetes 社区成员会评阅并批准它。
+`k8s-ci-robot` 会基于页面中最近提及的属主来建议评阅人（reviewers）。
+如果你希望特定某人来评阅，可以留下评论，提及该用户的 GitHub 用户名。
+
+<!--
+If a reviewer asks you to make changes:
+
+1. Go to the **Files changed** tab.
+1. Select the pencil (edit) icon on any files changed by the pull request.
+1. Make the changes requested.
+1. Commit the changes.
+
+If you are waiting on a reviewer, reach out once every 7 days. You can also post a message in the
+`#sig-docs` Slack channel.
+
+When your review is complete, a reviewer merges your PR and your changes go live a few minutes later.
+-->
+如果某个评阅人请你修改 PR：
+
+1. 前往 **Files changed** Tab 页面；
+1. 选择 PR 所修改的任何文件所对应的铅笔（edit）图标；
+1. 根据建议作出修改；
+1. 提交所作修改。
+
+如果你希望等待评阅人的反馈，可以每 7 天左右联系一次。
+你也可以在 `#sig-docs` Slack 频道发送消息。
+
+当评阅过程结束，某个评阅人会合并你的 PR。
+几分钟之后，你所做的变更就会上线了。
+
+<!--
+## Work from a local fork {#fork-the-repo}
+
+If you're more experienced with git, or if your changes are larger than a few lines,
+work from a local fork.
+
+Make sure you have [git](https://git-scm.com/book/en/v2/Getting-Started-Installing-Git) installed
+on your computer. You can also use a git UI application.
+
+Figure 2 shows the steps to follow when you work from a local fork. The details for each step follow.
+-->
+## 基于本地克隆副本开展工作   {#fork-the-repo}
+
+如果你有 git 的使用经验，或者你要提议的修改不仅仅几行，请使用本地克隆副本
+来开展工作。
+
+首先要确保你在本地计算机上安装了 [git](https://git-scm.com/book/en/v2/Getting-Started-Installing-Git)。
+你也可以使用 git 的带用户界面的应用。
+
+图 2 显示了基于本地克隆副本开展工作的步骤。
+每个步骤的细节如下。
+
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
+
+{{< mermaid >}}
+flowchart LR
+1[派生 K8s/website<br>仓库] --> 2[创建本地克隆副本<br>并指定 upstream 仓库]
+subgraph changes[你的变更]
+direction TB
+S[ ] -.-
+3[创建一个分支<br>例如: my_new_branch] --> 3a[使用文本编辑器<br>进行修改] --> 4["使用 Hugo 在本地<br>预览你的变更<br>(localhost:1313)<br>或构建容器镜像"]
+end
+subgraph changes2[提交 / 推送]
+direction TB
+T[ ] -.-
+5[提交你的变更] --> 6[将提交推送到<br>origin/my_new_branch]
+end
+
+2 --> changes --> changes2
+
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+classDef k8s fill:#326ce5,stroke:#fff,stroke-width:1px,color:#fff;
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class 1,2,3,3a,4,5,6 grey
+class S,T spacewhite
+class changes,changes2 white
+{{</ mermaid >}}
+
+<!-- 
+Figure 2. Working from a local fork to make your changes.
+-->
+图 2. 使用本地克隆副本进行修改。
+
+<!--
+### Fork the kubernetes/website repository
+
+1. Navigate to the [`kubernetes/website`](https://github.com/kubernetes/website/) repository.
+1. Select **Fork**.
+-->
+### 派生 kubernetes/website 仓库   {#fork-the-kubernetes-website-repository}
+
+1. 前往 [`kubernetes/website`](https://github.com/kubernetes/website/) 仓库；
+1. 选择 **Fork**.
+
+<!--
+### Create a local clone and set the upstream
+
+1. In a terminal window, clone your fork and update the [Docsy Hugo theme](https://github.com/google/docsy#readme):
+-->
+### 创建一个本地克隆副本并指定 upstream 仓库   {#create-a-local-clone-and-set-the-upstream}
+
+1. 打开终端窗口，克隆你所派生的副本，并更新 [Docsy Hugo 主题](https://github.com/google/docsy#readme)：
+
+   ```shell
+   git clone git@github.com/<github_username>/website
+   cd website
+   git submodule update --init --recursive --depth 1
+   ```
+
+<!--
+1. Navigate to the new `website` directory. Set the `kubernetes/website` repository as the `upstream` remote:
+-->
+2. 前往新的 `website` 目录，将 `kubernetes/website` 仓库设置为 `upstream`
+   远端：
+
+   ```shell
+   cd website
+
+   git remote add upstream https://github.com/kubernetes/website.git
+   ```
+
+<!--
+1. Confirm your `origin` and `upstream` repositories:
+-->
+3. 确认你现在有两个仓库，`origin` 和 `upstream`：
+
+   ```shell
+   git remote -v
+   ```
+
+   Output is similar to:
+
+   ```none
+   origin	git@github.com:<github_username>/website.git (fetch)
+   origin	git@github.com:<github_username>/website.git (push)
+   upstream	https://github.com/kubernetes/website.git (fetch)
+   upstream	https://github.com/kubernetes/website.git (push)
+   ```
+<!--
+1. Fetch commits from your fork's `origin/main` and `kubernetes/website`'s `upstream/main`:
+-->
+4. 从你的克隆副本取回 `origin/main` 分支，从 `kubernetes/website` 取回 `upstream/main`：
+
+   ```shell
+   git fetch origin
+   git fetch upstream
+   ```
+
+   <!--
+   This makes sure your local repository is up to date before you start making changes.
+   -->
+   这样可以确保你本地的仓库在开始工作前是最新的。
+
+   <!--
+   This workflow is different than the
+   [Kubernetes Community GitHub Workflow](https://github.com/kubernetes/community/blob/master/contributors/guide/github-workflow.md).
+   You do not need to merge your local copy of `main` with `upstream/main` before pushing updates
+   to your fork.
+   -->
+   {{< note >}}
+   此工作流程与 [Kubernetes 社区 GitHub 工作流](https://github.com/kubernetes/community/blob/master/contributors/guide/github-workflow.md)有所不同。
+   在推送你的变更到你的远程派生副本库之前，你不需要将你本地的 `main` 与 `upstream/main` 合并。
+   {{< /note >}}
+
+<!--
+### Create a branch
+
+1. Decide which branch base to your work on:
+
+  - For improvements to existing content, use `upstream/main`.
+  - For new content about existing features, use `upstream/main`.
+  - For localized content, use the localization's conventions. For more information, see
+    [localizing Kubernetes documentation](/docs/contribute/localization/).
+  - For new features in an upcoming Kubernetes release, use the feature branch. For more
+    information, see [documenting for a release](/docs/contribute/new-content/new-features/).
+  - For long-running efforts that multiple SIG Docs contributors collaborate on,
+    like content reorganization, use a specific feature branch created for that effort.
+
+    If you need help choosing a branch, ask in the `#sig-docs` Slack channel.
+-->
+### 创建一个分支   {#create-a-branch}
+
+1. 决定你要基于哪个分支来开展工作：
+
+   - 针对已有内容的改进，请使用 `upstream/main`。
+   - 针对已有功能特性的新文档内容，请使用 `upstream/main`。
+   - 对于本地化内容，请基于本地化的约定。
+     可参考[本地化 Kubernetes 文档](/zh-cn/docs/contribute/localization/)了解详细信息。
+   - 对于在下一个 Kubernetes 版本中新功能特性的文档，使用独立的功能特性分支。
+     参考[为发行版本撰写功能特性文档](/zh-cn/docs/contribute/new-content/new-features/)了解更多信息。
+   - 对于很多 SIG Docs 共同参与的，需较长时间才完成的任务，例如内容的重构，
+     请使用为该任务创建的特性分支。
+
+   如果你在选择分支上需要帮助，请在 `#sig-docs` Slack 频道提问。
+
+<!--
+1. Create a new branch based on the branch identified in step 1. This example assumes the base
+   branch is `upstream/main`:
+-->
+2. 基于第 1 步中选定的分支，创建新分支。
+   下面的例子假定基础分支是 `upstream/main`：
+
+   ```shell
+   git checkout -b <my_new_branch> upstream/main
+   ```
+
+<!--
+3. Make your changes using a text editor.
+-->
+3. 使用文本编辑器进行修改。
+
+<!--
+At any time, use the `git status` command to see what files you've changed.
+-->
+在任何时候，都可以使用 `git status` 命令查看你所改变了的文件列表。
+
+<!--
+### Commit your changes
+
+When you are ready to submit a pull request, commit your changes.
+-->
+### 提交你的变更   {#commit-your-changes}
+
+当你准备好发起拉取请求（PR）时，提交你所做的变更。
+
+<!--
+1. In your local repository, check which files you need to commit:
+-->
+1. 在你的本地仓库中，检查你要提交的文件：
+
+   ```shell
+   git status
+   ```
+
+   <!--
+   Output is similar to:
+   -->
+   输出类似于：
+
+   ```none
+   On branch <my_new_branch>
+   Your branch is up to date with 'origin/<my_new_branch>'.
+
+   Changes not staged for commit:
+   (use "git add <file>..." to update what will be committed)
+   (use "git checkout -- <file>..." to discard changes in working directory)
+
+   modified:   content/en/docs/contribute/new-content/contributing-content.md
+
+   no changes added to commit (use "git add" and/or "git commit -a")
+   ```
+
+<!--
+1. Add the files listed under **Changes not staged for commit** to the commit:
+-->
+2. 将 **Changes not staged for commit** 下列举的文件添加到提交中：
+
+   ```shell
+   git add <your_file_name>
+   ```
+
+   <!--
+   Repeat this for each file.
+   -->
+   针对每个文件重复此操作。
+
+<!--
+1. After adding all the files, create a commit:
+-->
+3. 添加完所有文件之后，创建一个提交（commit）：
+
+   ```shell
+   git commit -m "Your commit message"
+   ```
+
+   <!--
+   Do not use any [GitHub Keywords](https://help.github.com/en/github/managing-your-work-on-github/linking-a-pull-request-to-an-issue#linking-a-pull-request-to-an-issue-using-a-keyword)
+   in your commit message. You can add those to the pull request
+   description later.
+   -->
+   {{< note >}}
+   不要在提交消息中使用任何 [GitHub 关键词](https://help.github.com/en/github/managing-your-work-on-github/linking-a-pull-request-to-an-issue#linking-a-pull-request-to-an-issue-using-a-keyword)。
+   你可以在后续的 PR 描述中使用这些关键词。
+   {{< /note >}}
+
+<!--
+1. Push your local branch and its new commit to your remote fork:
+-->
+4. 推送你本地分支及其中的新提交到你的远程派生副本库：
+
+   ```shell
+   git push origin <my_new_branch>
+   ```
+
+<!--
+### Preview your changes locally {#preview-locally}
+
+It's a good idea to preview your changes locally before pushing them or opening a pull request.
+A preview lets you catch build errors or markdown formatting problems.
+
+You can either build the website's container image or run Hugo locally. Building the container
+image is slower but displays [Hugo shortcodes](/docs/contribute/style/hugo-shortcodes/), which can
+be useful for debugging.
+-->
+### 在本地预览你的变更   {#preview-locally}
+
+在推送变更或者发起 PR 之前在本地查看一下预览是个不错的主意。
+通过预览你可以发现构建错误或者 Markdown 格式问题。
+
+你可以构建网站的容器镜像或者在本地运行 Hugo。
+构建容器镜像的方式比较慢，不过能够显示 [Hugo 短代码（shortcodes）](/zh-cn/docs/contribute/style/hugo-shortcodes/)，
+因此对于调试是很有用的。
+
+{{< tabs name="tab_with_hugo" >}}
+{{% tab name="在容器内执行 Hugo" %}}
+
+<!--
+The commands below use Docker as default container engine. Set the `CONTAINER_ENGINE` environment
+variable to override this behaviour.
+-->
+{{< note >}}
+下面的命令中使用 Docker 作为默认的容器引擎。
+如果需要重载这一行为，可以设置 `CONTAINER_ENGINE` 环境变量。
+{{< /note >}}
+
+<!--
+1. Build the container image locally  
+   _You only need this step if you are testing a change to the Hugo tool itself_
+-->
+1. 在本地构建容器镜像
+   _如果你正在测试对 Hugo 工具本身的更改，则仅需要此步骤_
+
+   ```shell
+   # 在终端窗口中执行（如果有需要）
+   make container-image
+   ```
+
+<!--
+1. Start Hugo in a container:
+-->
+2. 在容器中启动 Hugo：
+
+   ```shell
+   # 在终端窗口中执行
+   make container-serve
+   ```
+
+<!--
+1. In a web browser, navigate to `https://localhost:1313`. Hugo watches the
+   changes and rebuilds the site as needed.
+
+1. To stop the local Hugo instance, go back to the terminal and type `Ctrl+C`,
+   or close the terminal window.
+-->
+3. 启动浏览器，浏览 `https://localhost:1313`。
+   Hugo 会监测文件的变更并根据需要重新构建网站。
+
+4. 要停止本地 Hugo 实例，可返回到终端并输入 `Ctrl+C`，或者关闭终端窗口。
+
+{{% /tab %}}
+{{% tab name="在命令行执行 Hugo" %}}
+
+<!--
+Alternately, install and use the `hugo` command on your computer:
+-->
+另一种方式是，在你的本地计算机上安装并使用 `hugo` 命令：
+
+<!--
+1. Install the [Hugo](https://gohugo.io/getting-started/installing/) version specified in
+   [`website/netlify.toml`](https://raw.githubusercontent.com/kubernetes/website/main/netlify.toml).
+
+1. If you have not updated your website repository, the `website/themes/docsy` directory is empty.
+   The site cannot build without a local copy of the theme. To update the website theme, run:
+-->
+1. 安装 [`website/netlify.toml`](https://raw.githubusercontent.com/kubernetes/website/main/netlify.toml)
+   文件中指定的 [Hugo](https://gohugo.io/getting-started/installing/) 版本。
+
+2.  如果你尚未更新你的网站仓库，则 `website/themes/docsy` 目录是空的。
+    如果本地缺少主题的副本，则该站点无法构建。
+    要更新网站主题，运行以下命令：
+
+   ```shell
+   git submodule update --init --recursive --depth 1
+   ```
+
+<!--
+1. In a terminal, go to your Kubernetes website repository and start the Hugo server:
+-->
+3. 启动一个终端窗口，进入 Kubernetes 网站仓库目录，启动 Hugo 服务器：
+
+   ```shell
+   cd <path_to_your_repo>/website
+   hugo server --buildFuture
+   ```
+
+<!--
+1. In a web browser, navigate to `https://localhost:1313`. Hugo watches the
+   changes and rebuilds the site as needed.
+
+1. To stop the local Hugo instance, go back to the terminal and type `Ctrl+C`,
+   or close the terminal window.
+-->
+4. 在浏览器的地址栏输入： `https://localhost:1313`。
+   Hugo 会监测文件的变更并根据需要重新构建网站。
+
+5. 要停止本地 Hugo 实例，返回到终端窗口并输入 `Ctrl+C` 或者关闭终端窗口。
+
+{{% /tab %}}
+{{< /tabs >}}
+
+<!--
+### Open a pull request from your fork to kubernetes/website {#open-a-pr}
+-->
+### 从你的克隆副本向 kubernetes/website 发起拉取请求（PR）   {#open-a-pr}
+
+<!-- 
+Figure 3 shows the steps to open a PR from your fork to the K8s/website. The details follow.
+-->
+图 3 显示了从你的克隆副本向 K8s/website 发起 PR 的步骤。
+详细信息如下。
+
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
+
+{{< mermaid >}}
+flowchart LR
+subgraph first[ ]
+direction TB
+1[1. 前往 K8s/website 仓库] --> 2[2. 选择 New Pull Request]
+2 --> 3[3. 选择 compare across forks]
+3 --> 4[4. 从 head repository 下拉菜单<br>选择你的克隆副本]
+end
+subgraph second [ ]
+direction TB
+5[5. 从 compare 下拉菜单<br>选择你的分支] --> 6[6. 选择 Create Pull Request]
+6 --> 7[7. 为你的 PR<br>添加一个描述]
+7 --> 8[8. 选择 Create pull request]
+end
+
+first --> second
+
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+class 1,2,3,4,5,6,7,8 grey
+class first,second white
+{{</ mermaid >}}
+
+<!-- 
+Figure 3. Steps to open a PR from your fork to the K8s/website.
+-->
+图 3. 从你的克隆副本向 K8s/website 发起一个 PR 的步骤。
+
+<!--
+1. In a web browser, go to the [`kubernetes/website`](https://github.com/kubernetes/website/) repository.
+1. Select **New Pull Request**.
+1. Select **compare across forks**.
+1. From the **head repository** drop-down menu, select your fork.
+1. From the **compare** drop-down menu, select your branch.
+1. Select **Create Pull Request**.
+1. Add a description for your pull request:
+
+    - **Title** (50 characters or less): Summarize the intent of the change.
+    - **Description**: Describe the change in more detail.
+
+      - If there is a related GitHub issue, include `Fixes #12345` or `Closes #12345` in the
+        description. GitHub's automation closes the mentioned issue after merging the PR if used.
+        If there are other related PRs, link those as well.
+      - If you want advice on something specific, include any questions you'd like reviewers to
+        think about in your description.
+
+1. Select the **Create pull request** button.
+
+Congratulations! Your pull request is available in [Pull requests](https://github.com/kubernetes/website/pulls).
+-->
+1. 在 Web 浏览器中，前往 [`kubernetes/website`](https://github.com/kubernetes/website/) 仓库；
+1. 点击 **New Pull Request**；
+1. 选择 **compare across forks**；
+1. 从 **head repository** 下拉菜单中，选取你的派生仓库；
+1. 从 **compare** 下拉菜单中，选择你的分支；
+1. 点击 **Create Pull Request**；
+1. 为你的拉取请求添加一个描述：
+
+    - **Title** （不超过 50 个字符）：总结变更的目的；
+    - **Description**：给出变更的详细信息；
+
+      - 如果存在一个相关联的 GitHub Issue，可以在描述中包含 `Fixes #12345` 或
+        `Closes #12345`。GitHub 的自动化设施能够在当前 PR 被合并时自动关闭所提及
+        的 Issue。如果有其他相关联的 PR，也可以添加对它们的链接。
+      - 如果你特别希望获得某方面的建议，可以在描述中包含你希望评阅人思考的问题。
+
+1. 点击 **Create pull request** 按钮。
+
+祝贺你！你的拉取请求现在出现在 [Pull Requests](https://github.com/kubernetes/website/pulls) 列表中了！
+
+<!--
+After opening a PR, GitHub runs automated tests and tries to deploy a preview using
+[Netlify](https://www.netlify.com/).
+
+- If the Netlify build fails, select **Details** for more information.
+- If the Netlify build succeeds, select **Details** opens a staged version of the Kubernetes
+  website with your changes applied. This is how reviewers check your changes.
+
+GitHub also automatically assigns labels to a PR, to help reviewers. You can add them too, if
+needed. For more information, see [Adding and removing issue labels](/docs/contribute/review/for-approvers/#adding-and-removing-issue-labels).
+-->
+在发起 PR 之后，GitHub 会执行一些自动化的测试，并尝试使用
+[Netlify](https://www.netlify.com/) 部署一个预览版本。
+
+- 如果 Netlify 构建操作失败，可选择 **Details** 了解详细信息。
+- 如果 Netlify 构建操作成功，选择 **Details** 会打开 Kubernetes 的一个预览版本，
+  其中包含了你所作的变更。评阅人也使用这一功能来检查你的变更。
+
+GitHub 也会自动为 PR 分派一些标签，以帮助评阅人。
+如果有需要，你也可以向 PR 添加标签。
+欲了解相关详细信息，可以参考
+[添加和删除 Issue 标签](/zh-cn/docs/contribute/review/for-approvers/#adding-and-removing-issue-labels)。
+
+<!--
+### Addressing feedback locally
+
+1. After making your changes, amend your previous commit:
+-->
+### 在本地处理反馈   {#addressing-feedback-locally}
+
+1. 在本地完成修改之后，可以修补（amend）你之前的提交：
+
+   ```shell
+   git commit -a --amend
+   ```
+
+   <!--
+   - `-a`: commits all changes
+   - `--amend`: amends the previous commit, rather than creating a new one
+   -->
+   - `-a`：提交所有修改
+   - `--amend`：对前一次提交进行增补，而不是创建新的提交
+
+<!--
+1. Update your commit message if needed.
+
+1. Use `git push origin <my_new_branch>` to push your changes and re-run the Netlify tests.
+-->
+2. 如果有必要，更新你的提交消息；
+
+3. 使用 `git push origin <my_new_branch>` 来推送你的变更，重新触发 Netlify 测试。
+
+   <!--
+   If you use `git commit -m` instead of amending, you must [squash your commits](#squashing-commits)
+   before merging.
+   -->
+   {{< note >}}
+   如果你使用 `git commit -m` 而不是增补参数，在 PR 最终合并之前你必须
+   [squash 你的提交](#squashing-commits)。
+   {{< /note >}}
+
+<!--
+#### Changes from reviewers
+
+Sometimes reviewers commit to your pull request. Before making any other changes, fetch those commits.
+
+1. Fetch commits from your remote fork and rebase your working branch:
+-->
+#### 来自评阅人的修改   {#changes-from-reviewers}
+
+有时评阅人会向你的 PR 中提交修改。在作出其他修改之前，请先取回这些提交。
+
+1. 从你的远程派生副本仓库取回提交，让你的工作分支基于所取回的分支：
+
+   ```shell
+   git fetch origin
+   git rebase origin/<your-branch-name>
+   ```
+
+<!--
+1. After rebasing, force-push new changes to your fork:
+-->
+2. 变更基线（rebase）操作完成之后，强制推送本地的新改动到你的派生仓库：
+
+   ```shell
+   git push --force-with-lease origin <your-branch-name>
+   ```
+
+<!--
+#### Merge conflicts and rebasing
+
+For more information, see [Git Branching - Basic Branching and Merging](https://git-scm.com/book/en/v2/Git-Branching-Basic-Branching-and-Merging#_basic_merge_conflicts),
+[Advanced Merging](https://git-scm.com/book/en/v2/Git-Tools-Advanced-Merging), or ask in the
+`#sig-docs` Slack channel for help.
+-->
+#### 合并冲突和重设基线   {#merge-conflicts-and-rebasing}
+
+{{< note >}}
+要了解更多信息，可参考
+[Git Branching - Basic Branching and Merging](https://git-scm.com/book/en/v2/Git-Branching-Basic-Branching-and-Merging#_basic_merge_conflicts)、
+[Advanced Merging](https://git-scm.com/book/en/v2/Git-Tools-Advanced-Merging)，
+或者在 `#sig-docs` Slack 频道寻求帮助。
+{{< /note >}}
+
+<!--
+If another contributor commits changes to the same file in another PR, it can create a merge
+conflict. You must resolve all merge conflicts in your PR.
+
+1. Update your fork and rebase your local branch:
+-->
+如果另一个贡献者在别的 PR 中提交了对同一文件的修改，这可能会造成合并冲突。
+你必须在你的 PR 中解决所有合并冲突。
+
+1. 更新你的派生副本，重设本地分支的基线：
+
+   ```shell
+   git fetch origin
+   git rebase origin/<your-branch-name>
+   ```
+
+   <!--
+   Then force-push the changes to your fork:
+   -->
+   之后强制推送修改到你的派生副本仓库：
+
+   ```shell
+   git push --force-with-lease origin <your-branch-name>
+   ```
+
+<!--
+1. Fetch changes from `kubernetes/website`'s `upstream/main` and rebase your branch:
+-->
+2. 从 `kubernetes/website` 的 `upstream/main` 分支取回更改，然后重设本地分支的基线：
+
+   ```shell
+   git fetch upstream
+   git rebase upstream/main
+   ```
+
+<!--
+1. Inspect the results of the rebase:
+-->
+3. 检查重设基线操作之后的状态：
+
+   ```shell
+   git status
+   ```
+
+   <!--
+   This results in a number of files marked as conflicted.
+   -->
+   你会看到一组存在冲突的文件。
+
+<!--
+1. Open each conflicted file and look for the conflict markers: `>>>`, `<<<`, and `===`.
+   Resolve the conflict and delete the conflict marker.
+-->
+4. 打开每个存在冲突的文件，查找冲突标记：`>>>`、`<<<` 和 `===`。
+   解决完冲突之后删除冲突标记。
+
+   <!--
+   For more information, see [How conflicts are presented](https://git-scm.com/docs/git-merge#_how_conflicts_are_presented).
+   -->
+   {{< note >}}
+   进一步的详细信息可参见
+   [冲突是怎样表示的](https://git-scm.com/docs/git-merge#_how_conflicts_are_presented).
+   {{< /note >}}
+
+<!--
+1. Add the files to the changeset:
+-->
+5. 添加文件到变更集合：
+
+   ```shell
+   git add <filename>
+   ```
+
+<!--
+1. Continue the rebase:
+-->
+6. 继续执行基线变更（rebase）操作：
+
+   ```shell
+   git rebase --continue
+   ```
+
+<!--
+1. Repeat steps 2 to 5 as needed.
+
+   After applying all commits, the `git status` command shows that the rebase is complete.
+-->
+7. 根据需要重复步骤 2 到 5。
+
+   在应用完所有提交之后，`git status` 命令会显示 rebase 操作完成。
+
+<!--
+1. Force-push the branch to your fork:
+-->
+8. 将分支强制推送到你的派生仓库：
+
+   ```shell
+   git push --force-with-lease origin <your-branch-name>
+   ```
+
+   <!--
+   The pull request no longer shows any conflicts.
+   -->
+   PR 不再显示存在冲突。
+
+<!--
+### Squashing commits
+-->
+### 压缩（Squashing）提交   {#squashing-commits}
+
+<!--
+For more information, see [Git Tools - Rewriting History](https://git-scm.com/book/en/v2/Git-Tools-Rewriting-History),
+or ask in the `#sig-docs` Slack channel for help.
+-->
+{{< note >}}
+要了解更多信息，可参看
+[Git Tools - Rewriting History](https://git-scm.com/book/en/v2/Git-Tools-Rewriting-History)，
+或者在 `#sig-docs` Slack 频道寻求帮助。
+{{< /note >}}
+
+<!--
+If your PR has multiple commits, you must squash them into a single commit before merging your PR.
+You can check the number of commits on your PR's **Commits** tab or by running the `git log`
+command locally.
+-->
+如果你的 PR 包含多个提交（commits），你必须将其压缩成一个提交才能被合并。
+你可以在 PR 的 **Commits** Tab 页面查看提交个数，也可以在本地通过
+`git log` 命令查看提交个数。
+
+<!--
+This topic assumes `vim` as the command line text editor.
+-->
+{{< note >}}
+本主题假定使用 `vim` 作为命令行文本编辑器。
+{{< /note >}}
+
+<!--
+1. Start an interactive rebase:
+-->
+1. 启动一个交互式的 rebase 操作：
+
+   ```shell
+   git rebase -i HEAD~<number_of_commits_in_branch>
+   ```
+
+   <!--
+   Squashing commits is a form of rebasing. The `-i` switch tells git you want to rebase interactively.
+   `HEAD~<number_of_commits_in_branch` indicates how many commits to look at for the rebase.
+   -->
+   压缩提交的过程也是一种重设基线的过程。
+   这里的 `-i` 开关告诉 git 你希望交互式地执行重设基线操作。
+   `HEAD~<number_of_commits_in_branch` 表明在 rebase 操作中查看多少个提交。
+
+   <!--
+   Output is similar to:
+   -->
+   输出类似于；
+
+   ```none
+   pick d875112ca Original commit
+   pick 4fa167b80 Address feedback 1
+   pick 7d54e15ee Address feedback 2
+
+   # Rebase 3d18sf680..7d54e15ee onto 3d183f680 (3 commands)
+
+   ...
+
+   # These lines can be re-ordered; they are executed from top to bottom.
+   ```
+
+   <!--
+   The first section of the output lists the commits in the rebase. The second section lists the
+   options for each commit. Changing the word `pick` changes the status of the commit once the rebase
+   is complete.
+
+   For the purposes of rebasing, focus on `squash` and `pick`.
+   -->
+   输出的第一部分列举了重设基线操作中的提交。
+   第二部分给出每个提交的选项。
+   改变单词 `pick` 就可以改变重设基线操作之后提交的状态。
+
+   就重设基线操作本身，我们关注 `squash` 和 `pick` 选项。
+
+   <!--
+   For more information, see [Interactive Mode](https://git-scm.com/docs/git-rebase#_interactive_mode).
+   -->
+   {{< note >}}
+   进一步的详细信息可参考 [Interactive Mode](https://git-scm.com/docs/git-rebase#_interactive_mode)。
+   {{< /note >}}
+
+<!--
+1. Start editing the file.
+
+   Change the original text:
+-->
+
+2. 开始编辑文件。
+
+   修改原来的文本：
+
+   ```none
+   pick d875112ca Original commit
+   pick 4fa167b80 Address feedback 1
+   pick 7d54e15ee Address feedback 2
+   ```
+
+   <!--
+   To:
+   -->
+   使之成为：
+
+   ```none
+   pick d875112ca Original commit
+   squash 4fa167b80 Address feedback 1
+   squash 7d54e15ee Address feedback 2
+   ```
+
+   <!--
+   This squashes commits `4fa167b80 Address feedback 1` and `7d54e15ee Address feedback 2` into
+   `d875112ca Original commit`, leaving only `d875112ca Original commit` as a part of the timeline.
+   -->
+   以上编辑操作会压缩提交 `4fa167b80 Address feedback 1` 和 `7d54e15ee Address feedback 2`
+   到 `d875112ca Original commit` 中，只留下 `d875112ca Original commit` 成为时间线中的一部分。
+
+<!--
+1. Save and exit your file.
+
+1. Push your squashed commit:
+-->
+3. 保存文件并退出编辑器。
+
+4. 推送压缩后的提交：
+
+   ```shell
+   git push --force-with-lease origin <branch_name>
+   ```
+
+<!--
+## Contribute to other repos
+
+The [Kubernetes project](https://github.com/kubernetes) contains 50+ repositories. Many of these
+repositories contain documentation: user-facing help text, error messages, API references or code
+comments.
+
+If you see text you'd like to improve, use GitHub to search all repositories in the Kubernetes
+organization. This can help you figure out where to submit your issue or PR.
+-->
+## 贡献到其他仓库   {#contribute-to-other-repos}
+
+[Kubernetes 项目](https://github.com/kubernetes)包含大约 50 多个仓库。
+这些仓库中很多都有文档：提供给最终用户的帮助文本、错误信息、API 参考或者代码注释等。
+
+如果你发现有些文本需要改进，可以使用 GitHub 来搜索 Kubernetes 组织下的所有仓库。
+这样有助于发现要在哪里提交 Issue 或 PR。
+
+<!--
+Each repository has its own processes and procedures. Before you file an issue or submit a PR,
+read that repository's `README.md`, `CONTRIBUTING.md`, and `code-of-conduct.md`, if they exist.
+
+Most repositories use issue and PR templates. Have a look through some open issues and PRs to get
+a feel for that team's processes. Make sure to fill out the templates with as much detail as
+possible when you file issues or PRs.
+-->
+每个仓库有其自己的流程和过程。在登记 Issue 或者发起 PR 之前，
+记得阅读仓库可能存在的 `README.md`、`CONTRIBUTING.md` 和
+`code-of-conduct.md` 文件。
+
+大多数仓库都有自己的 Issue 和 PR 模板。
+通过查看一些待解决的 Issue 和 PR，
+你可以大致了解协作的流程。
+在登记 Issue 或提出 PR 时，务必尽量填充所给的模板，多提供详细信息。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+- Read [Reviewing](/docs/contribute/review/reviewing-prs) to learn more about the review process.
+-->
+- 阅读[评阅](/zh-cn/docs/contribute/review/reviewing-prs)节，学习评阅过程。
+
diff --git a/content/zh/docs/contribute/participate/_index.md b/content/zh-cn/docs/contribute/participate/_index.md
similarity index 88%
rename from content/zh/docs/contribute/participate/_index.md
rename to content/zh-cn/docs/contribute/participate/_index.md
index ba6ab0c738..acffd9d90a 100644
--- a/content/zh/docs/contribute/participate/_index.md
+++ b/content/zh-cn/docs/contribute/participate/_index.md
@@ -40,8 +40,8 @@ SIG Docs 欢迎所有贡献者提供内容和审阅。任何人可以提交拉
 欢迎所有人对文档内容创建 Issue 和对正在处理中的 PR 进行评论。
 
 <!--
-You can also become a [member](/docs/contribute/participating/roles-and-responsibilities/#members),
-[reviewer](/docs/contribute/participating/roles-and-responsibilities/#reviewers), or [approver](/docs/contribute/participating/roles-and-responsibilities/#approvers). These roles require greater
+You can also become a [member](/docs/contribute/participate/roles-and-responsibilities/#members),
+[reviewer](/docs/contribute/participate/roles-and-responsibilities/#reviewers), or [approver](/docs/contribute/participate/roles-and-responsibilities/#approvers). These roles require greater
 access and entail certain responsibilities for approving and committing changes.
 See [community-membership](https://github.com/kubernetes/community/blob/master/community-membership.md)
 for more information on how membership works within the Kubernetes community.
@@ -50,9 +50,9 @@ The rest of this document outlines some unique ways these roles function within
 SIG Docs, which is responsible for maintaining one of the most public-facing
 aspects of Kubernetes - the Kubernetes website and documentation.
 -->
-你也可以成为[成员（member）](/docs/contribute/participating/roles-and-responsibilities/#members)、
-[评阅人（reviewer）](/docs/contribute/participating/roles-and-responsibilities/#reviewers) 或者
-[批准人（approver）](/docs/contribute/participating/roles-and-responsibilities/#approvers)。
+你也可以成为[成员（member）](/zh-cn/docs/contribute/participate/roles-and-responsibilities/#members)、
+[评阅人（reviewer）](/zh-cn/docs/contribute/participate/roles-and-responsibilities/#reviewers) 或者
+[批准人（approver）](/zh-cn/docs/contribute/participate/roles-and-responsibilities/#approvers)。
 这些角色拥有更高的权限，且需要承担批准和提交变更的责任。
 有关 Kubernetes 社区中的成员如何工作的更多信息，请参见
 [社区成员身份](https://github.com/kubernetes/community/blob/master/community-membership.md)。
@@ -72,7 +72,7 @@ of the Kubernetes project as a whole and how SIG Docs works within it. See
 [Leadership](https://github.com/kubernetes/community/tree/master/sig-docs#leadership)
 for the current list of chairpersons.
 -->
-## SIG Docs 主席
+## SIG Docs 主席   {#sig-docs-chairperson}
 
 每个 SIG，包括 SIG Docs，都会选出一位或多位成员作为主席。
 主席会成为 SIG Docs 和其他 Kubernetes 组织的联络接口人。
@@ -125,7 +125,7 @@ related to GitHub issues and pull requests. The
 [Kubernetes website repository](https://github.com/kubernetes/website) uses
 two [prow plugins](https://github.com/kubernetes/test-infra/blob/master/prow/plugins):
 -->
-### OWNERS 文件和扉页
+### OWNERS 文件和扉页   {#owners-files-and-front-matter}
 
 Kubernetes 项目使用名为 prow 的自动化工具来自动处理 GitHub issue 和 PR。
 [Kubernetes website 仓库](https://github.com/kubernetes/website) 使用了两个
@@ -144,7 +144,7 @@ how prow works within the repository.
 这两个插件使用位于 `kubernetes/website` 仓库顶层的
 [OWNERS](https://github.com/kubernetes/website/blob/main/OWNERS) 文件和
 [OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS_ALIASES)
-文件来控制 prow 在仓库范围的工作方式。 
+文件来控制 prow 在仓库范围的工作方式。
 
 <!--
 An OWNERS file contains a list of people who are SIG Docs reviewers and
@@ -153,9 +153,9 @@ can act as a reviewer or approver of files in that subdirectory and its
 descendents. For more information about OWNERS files in general, see
 [OWNERS](https://github.com/kubernetes/community/blob/master/contributors/guide/owners.md).
 -->
-OWNERS 文件包含 SIG Docs 评阅人和批准人的列表。 
+OWNERS 文件包含 SIG Docs 评阅人和批准人的列表。
 OWNERS 文件也可以存在于子目录中，可以在子目录层级重新设置哪些人可以作为评阅人和
-批准人，并将这一设定传递到下层子目录。 
+批准人，并将这一设定传递到下层子目录。
 关于 OWNERS 的更多信息，请参考
 [OWNERS](https://github.com/kubernetes/community/blob/master/contributors/guide/owners.md)
 文档。
@@ -206,7 +206,7 @@ SIG Docs 批准人。下面是合并的工作机制：
 - 所有 Kubernetes 成员可以通过 `/lgtm` 评论添加 `lgtm` 标签。
 - 只有 SIG Docs 批准人可以通过评论 `/approve` 合并 PR。
   某些批准人还会执行一些其他角色，例如
-  [PR 管理者](/zh/docs/contribute/participate/pr-wranglers/) 或
+  [PR 管理者](/zh-cn/docs/contribute/participate/pr-wranglers/) 或
   [SIG Docs 主席](#sig-docs-chairperson)等。
 
 ## {{% heading "whatsnext" %}}
@@ -214,12 +214,12 @@ SIG Docs 批准人。下面是合并的工作机制：
 <!--
 For more information about contributing to the Kubernetes documentation, see:
 
-- [Contributing new content](/docs/contribute/overview/)
+- [Contributing new content](/docs/contribute/new-content/)
 - [Reviewing content](/docs/contribute/review/reviewing-prs)
 - [Documentation style guide](/docs/contribute/style/)
 -->
 关于贡献 Kubernetes 文档的更多信息，请参考：
 
-- [贡献新内容](/zh/docs/contribute/new-content/overview/)
-- [评阅内容](/zh/docs/contribute/review/reviewing-prs)
-- [文档样式指南](/zh/docs/contribute/style/)
+- [贡献新内容](/zh-cn/docs/contribute/new-content/)
+- [评阅内容](/zh-cn/docs/contribute/review/reviewing-prs)
+- [文档样式指南](/zh-cn/docs/contribute/style/)
diff --git a/content/zh/docs/contribute/participate/pr-wranglers.md b/content/zh-cn/docs/contribute/participate/pr-wranglers.md
similarity index 67%
rename from content/zh/docs/contribute/participate/pr-wranglers.md
rename to content/zh-cn/docs/contribute/participate/pr-wranglers.md
index bf08aa770a..9ec889d8cd 100644
--- a/content/zh/docs/contribute/participate/pr-wranglers.md
+++ b/content/zh-cn/docs/contribute/participate/pr-wranglers.md
@@ -11,15 +11,15 @@ weight: 20
 
 <!-- overview -->
 <!--
-SIG Docs [approvers](/docs/contribute/participate/roles-and-responsibilites/#approvers) take week-long shifts [managing pull requests](https://github.com/kubernetes/website/wiki/PR-Wranglers) for the repository.
+SIG Docs [approvers](/docs/contribute/participate/roles-and-responsibilities/#approvers) take week-long shifts [managing pull requests](https://github.com/kubernetes/website/wiki/PR-Wranglers) for the repository.
 
 This section covers the duties of a PR wrangler. For more information on giving good reviews, see [Reviewing changes](/docs/contribute/review/).
 -->
-SIG Docs 的[批准人（Approvers）](/zh/docs/contribute/participate/roles-and-responsibilites/#approvers)们每周轮流负责
-[管理仓库的 PRs](https://github.com/kubernetes/website/wiki/PR-Wranglers)。
+SIG Docs 的[批准人（Approvers）](/zh-cn/docs/contribute/participate/roles-and-responsibilities/#approvers)们每周轮流负责
+[管理仓库的 PR](https://github.com/kubernetes/website/wiki/PR-Wranglers)。
 
-本节介绍 PR 管理者的职责。关于如何提供较好的评审意见，可参阅
-[评审变更](/zh/docs/contribute/review/).
+本节介绍 PR 管理者的职责。关于如何提供较好的评审意见，
+可参阅[评审变更](/zh-cn/docs/contribute/review/)。
 
 
 <!-- body -->
@@ -31,42 +31,57 @@ Each day in a week-long shift as PR Wrangler:
 - Triage and tag incoming issues daily. See [Triage and categorize issues](/docs/contribute/review/for-approvers/#triage-and-categorize-issues) for guidelines on how SIG Docs uses metadata.
 - Review [open pull requests](https://github.com/kubernetes/website/pulls) for quality and adherence to the [Style](/docs/contribute/style/style-guide/) and [Content](/docs/contribute/style/content-guide/) guides.
     - Start with the smallest PRs (`size/XS`) first, and end with the largest (`size/XXL`). Review as many PRs as you can.
-- Make sure PR contributors sign the [CLA](https://github.com/kubernetes/community/blob/master/CLA.md).
-    - Use [this](https://github.com/zparnold/k8s-docs-pr-botherer) script to remind contributors that haven’t signed the CLA to do so.
-- Provide feedback on changes and ask for technical reviews from members of other SIGs.
-    - Provide inline suggestions on the PR for the proposed content changes.
-    - If you need to verify content, comment on the PR and request more details.
-    - Assign relevant `sig/` label(s).
-    - If needed, assign reviewers from the `reviewers:` block in the file's front matter.
-- Use the `/approve` comment to approve a PR for merging. Merge the PR when ready.
-    - PRs should have a `/lgtm` comment from another member before merging.
-    - Consider accepting technically accurate content that doesn't meet the [style guidelines](/docs/contribute/style/style-guide/). Open a new issue with the label `good first issue` to address style concerns.
 -->
 ## 职责 {#duties}
 在为期一周的轮值期内，PR 管理者要：
 
 - 每天对新增的 Issues 判定和打标签。参见
-  [对 Issues 进行判定和分类](/zh/docs/contribute/review/for-approvers/#triage-and-categorize-issues)
+  [对 Issues 进行判定和分类](/zh-cn/docs/contribute/review/for-approvers/#triage-and-categorize-issues)
   以了解 SIG Docs 如何使用元数据的详细信息。
 - 检查[悬决的 PR](https://github.com/kubernetes/website/pulls) 的质量并确保它们符合
-  [样式指南](/zh/docs/contribute/style/style-guide/)和
-  [内容指南](/zh/docs/contribute/style/content-guide/)要求。
+  [样式指南](/zh-cn/docs/contribute/style/style-guide/)和
+  [内容指南](/zh-cn/docs/contribute/style/content-guide/)要求。
 
   - 首先查看最小的 PR（`size/XS`），然后逐渐扩展到最大的
     PR（`size/XXL`），尽可能多地评审 PR。
+<!-- 
+- Make sure PR contributors sign the [CLA](https://github.com/kubernetes/community/blob/master/CLA.md).
+    - Use [this](https://github.com/zparnold/k8s-docs-pr-botherer) script to remind contributors that haven't signed the CLA to do so.
+- Provide feedback on changes and ask for technical reviews from members of other SIGs.
+    - Provide inline suggestions on the PR for the proposed content changes.
+    - If you need to verify content, comment on the PR and request more details.
+    - Assign relevant `sig/` label(s).
+    - If needed, assign reviewers from the `reviewers:` block in the file's front matter.
+    - You can also tag a [SIG](https://github.com/kubernetes/community/blob/master/sig-list.md) for a review by commenting `@kubernetes/<sig>-pr-reviews` on the PR.
+-->
 - 确保贡献者完成 [CLA](https://github.com/kubernetes/community/blob/master/CLA.md) 签署。
   - 使用[此脚本](https://github.com/zparnold/k8s-docs-pr-botherer)自动提醒尚未签署
     CLA 的贡献者签署 CLA。
 - 针对提供提供反馈，请求其他 SIG 的成员进行技术审核。
   - 为 PR 所建议的内容更改提供就地反馈。
-  - 如果您需要验证内容，请在 PR 上发表评论并要求贡献者提供更多细节。
+  - 如果你需要验证内容，请在 PR 上发表评论并要求贡献者提供更多细节。
   - 设置相关的 `sig/` 标签。
-  - 如果需要，从文件开头的 `reviewers:` 块中指派评阅人。
+  - 如果需要，根据文件开头的 `reviewers:` 块来指派评审人。
+  - 你也可以通过在 PR 上作出 `@kubernetes/<sig>-pr-reviews` 的评论以标记需要某个
+    [SIG](https://github.com/kubernetes/community/blob/master/sig-list.md) 来评审。
+<!-- 
+- Use the `/approve` comment to approve a PR for merging. Merge the PR when ready.
+    - PRs should have a `/lgtm` comment from another member before merging.
+    - Consider accepting technically accurate content that doesn't meet the
+      [style guidelines](/docs/contribute/style/style-guide/). As you approve the change,
+      open a new issue to address the style concern. You can usually write these style fix
+      issues as [good first issues](https://kubernetes.dev/docs/guide/help-wanted/#good-first-issue).
+    - Using style fixups as good first issues is a good way to ensure a supply of easier tasks
+      to help onboard new contributors.
+-->
 - 使用 `/approve` 评论来批准可以合并的 PR，在 PR 就绪时将其合并。
   - PR 在被合并之前，应该有来自其他成员的 `/lgtm` 评论。
   - 可以考虑接受那些技术上准确，但文风上不满足
-    [风格指南](/zh/docs/contribute/style/style-guide/)要求的 PR。
-    可以登记一个新的 Issue 来解决文档风格问题，并将其标记为 `good first issue`。
+    [风格指南](/zh-cn/docs/contribute/style/style-guide/)要求的 PR。
+    批准变更时，可以登记一个新的 Issue 来解决文档风格问题。
+    你通常可以将这些风格修复问题标记为 `good first issue`。
+  - 将风格修复事项标记为 `good first issue` 可以很好地确保向新加入的贡献者分派一些比较简单的任务，
+    这有助于接纳新的贡献者。
 
 <!--
 ### Helpful GitHub queries for wranglers
@@ -75,7 +90,7 @@ The following queries are helpful when wrangling.
 After working through these queries, the remaining list of PRs to review is usually small.
 These queries exclude localization PRs. All queries are against the main branch except the last one.
 -->
-### 对于管理人有用的 GitHub 查询
+### 对管理者有用的 GitHub 查询
 
 执行管理操作时，以下查询很有用。完成以下这些查询后，剩余的要审阅的 PR 列表通常很小。
 这些查询都不包含本地化的 PR，并仅包含主分支上的 PR（除了最后一个查询）。
@@ -164,11 +179,46 @@ To close a pull request, leave a `/close` comment on the PR.
 要关闭 PR，请在 PR 上输入 `/close` 评论。
 
 <!--
-The [`fejta-bot`](https://github.com/fejta-bot) bot marks issues as stale after 90 days of inactivity. After 30 more days it marks issues as rotten and closes them.  PR wranglers should close issues after 14-30 days of inactivity.
+The [`k8s-ci-robot`](https://github.com/k8s-ci-robot) bot marks issues as stale after 90 days of inactivity. After 30 more days it marks issues as rotten and closes them.  PR wranglers should close issues after 14-30 days of inactivity.
 -->
 {{< note >}}
-一个名为 [`fejta-bot`](https://github.com/fejta-bot) 的自动服务会在 Issue 停滞 90
+一个名为 [`k8s-ci-robot`](https://github.com/k8s-ci-robot) 的自动服务会在 Issue 停滞 90
 天后自动将其标记为过期；然后再等 30 天，如果仍然无人过问，则将其关闭。
 PR 管理者应该在 issues 处于无人过问状态 14-30 天后关闭它们。
 {{< /note >}}
 
+<!--
+## PR Wrangler shadow program
+
+In late 2021, SIG Docs introduced the PR Wrangler Shadow Program. The program was introduced to help new contributors understand the PR wrangling process.
+-->
+## PR 管理者影子计划
+
+2021 下半年，SIG Docs 推出了 PR 管理者影子计划（PR Wrangler Shadow Program）。
+该计划旨在帮助新的贡献者们了解 PR 管理流程。
+
+<!-- 
+### Become a shadow
+
+- If you are interested in shadowing as a PR wrangler, please visit the [PR Wranglers Wiki page](https://github.com/kubernetes/website/wiki/PR-Wranglers) to see the PR wrangling schedule for this year and sign up.
+
+- Kubernetes org members can edit the [PR Wranglers Wiki page](https://github.com/kubernetes/website/wiki/PR-Wranglers) and sign up to shadow an existing PR Wrangler for a week.
+
+- Others can reach out on the [#sig-docs Slack channel](https://kubernetes.slack.com/messages/sig-docs) for requesting to shadow an assigned PR Wrangler for a specific week. Feel free to reach out to Brad Topol (`@bradtopol`) or one of the [SIG Docs co-chairs/leads](https://github.com/kubernetes/community/tree/master/sig-docs#leadership).
+
+- Once you've signed up to shadow a PR Wrangler, introduce yourself to the PR Wrangler on the [Kubernetes Slack](https://slack.k8s.io).
+-->
+### 成为一名影子
+
+- 如果你有兴趣成为一名 PR 管理者的影子，请访问 [PR 管理者维基页面](https://github.com/kubernetes/website/wiki/PR-Wranglers)查看今年的 
+  PR 管理轮值表，然后注册报名。
+
+- Kubernetes 组织成员可以编辑 [PR 管理者维基页面](https://github.com/kubernetes/website/wiki/PR-Wranglers)，
+  注册成为一名现有 PR 管理者一周内的影子。
+
+- 其他人可以通过 [#sig-docs Slack 频道](https://kubernetes.slack.com/messages/sig-docs)申请成为指定 
+  PR 管理者某一周的影子。可以随时咨询 (`@bradtopol`) 或某一位
+  [SIG Docs 联席主席/主管](https://github.com/kubernetes/community/tree/master/sig-docs#leadership)。
+
+- 注册成为一名 PR 管理者的影子时，
+  请你在 [Kubernetes Slack](https://slack.k8s.io) 向这名 PR 管理者做一次自我介绍。
diff --git a/content/zh/docs/contribute/participate/roles-and-responsibilities.md b/content/zh-cn/docs/contribute/participate/roles-and-responsibilities.md
similarity index 90%
rename from content/zh/docs/contribute/participate/roles-and-responsibilities.md
rename to content/zh-cn/docs/contribute/participate/roles-and-responsibilities.md
index 2b91550a60..8df7b4cddf 100644
--- a/content/zh/docs/contribute/participate/roles-and-responsibilities.md
+++ b/content/zh-cn/docs/contribute/participate/roles-and-responsibilities.md
@@ -40,7 +40,7 @@ Anyone can:
 - Contribute to a localization
 - Suggest improvements on [Slack](http://slack.k8s.io/) or the [SIG docs mailing list](https://groups.google.com/forum/#!forum/kubernetes-sig-docs).
 
-After [signing the CLA](/docs/contribute/new-content/overview/#sign-the-cla), anyone can also:
+After [signing the CLA](https://github.com/kubernetes/community/blob/master/CLA.md), anyone can also:
 
 - Open a pull request to improve existing content, add new content, or write a blog post or case study
 - Create diagrams, graphics assets, and embeddable screencasts and videos
@@ -62,12 +62,12 @@ For more information, see [contributing new content](/docs/contribute/new-conten
   [SIG Docs 邮件列表](https://groups.google.com/forum/#!forum/kubernetes-sig-docs)
   上提出改进建议。
 
-在[签署了 CLA](/zh/docs/contribute/new-content/overview/#sign-the-cla) 之后，任何人还可以：
+在[签署了 CLA](https://github.com/kubernetes/community/blob/master/CLA.md) 之后，任何人还可以：
 
 - 发起拉取请求（PR），改进现有内容、添加新内容、撰写博客或者案例分析
 - 创建示意图、图形资产或者嵌入式的截屏和视频内容
 
-进一步的详细信息，可参见[贡献新内容](/zh/docs/contribute/new-content/)。
+进一步的详细信息，可参见[贡献新内容](/zh-cn/docs/contribute/new-content/)。
 
 <!--
 ## Members
@@ -99,7 +99,7 @@ Members can:
 - 使用 `/lgtm` 评论添加 LGTM (looks good to me（我觉得可以）) 标签到某个 PR
 
   {{< note >}}
-  使用 `/lgtm` 会触发自动化机制。如果你希望提供不拘约束力的批准意见，
+  使用 `/lgtm` 会触发自动化机制。如果你希望提供非约束性的批准意见，
   直接回复 "LGTM" 也是可以的。
   {{< /note >}}
 
@@ -134,7 +134,7 @@ After submitting at least 5 substantial pull requests and meeting the other [req
 2.  Open a GitHub issue in the [`kubernetes/org`](https://github.com/kubernetes/org/) repository. Use the **Organization Membership Request** issue template.
 -->
 1. 找到两个[评审人](#reviewers)或[批准人](#approvers)为你的成员身份提供
-   [担保](/zh/docs/contribute/advanced#sponsor-a-new-contributor)。
+   [担保](/zh-cn/docs/contribute/advanced#sponsor-a-new-contributor)。
 
    通过 [Kubernetes Slack 上的 #sig-docs 频道](https://kubernetes.slack.com) 或者
    [SIG Docs 邮件列表](https://groups.google.com/forum/#!forum/kubernetes-sig-docs)
@@ -146,7 +146,7 @@ After submitting at least 5 substantial pull requests and meeting the other [req
    {{< /note >}}
 
 2. 在 [`kubernetes/org`](https://github.com/kubernetes/org/) 仓库
-   使用 **Organization Membership Request** Issue 模版登记一个 Issue。
+   使用 **Organization Membership Request** Issue 模板登记一个 Issue。
 
 <!--
 3.  Let your sponsors know about the GitHub issue. You can either:
@@ -174,7 +174,7 @@ After submitting at least 5 substantial pull requests and meeting the other [req
    如果你的成员请求未被接受，你会收到一些反馈。
    当处理完反馈意见之后，可以再次发起申请。
 
-4. 在你的邮件账户中接受来自 Kubernetes GitHub 组织发出的成员邀请。
+4. 登录你的邮件账户，接受来自 Kubernetes GitHub 组织发出的成员邀请。
 
     {{< note >}}
     GitHub 会将邀请发送到你的账户中所设置的默认邮件地址。
@@ -207,7 +207,7 @@ You can be a SIG Docs reviewer, or a reviewer for docs in a specific subject are
 
 评审人可以：
 
-- 执行[任何人](#anyone)和[成员](#members)节所列举的操作
+- 执行[任何人](#anyone)和[成员](#members)节区所列举的操作
 - 评审 PR 并提供具约束性的反馈信息
 
     {{< note >}}
@@ -242,14 +242,14 @@ A `/lgtm` comment from reviewer is binding and triggers automation that adds the
 如果所指派的评审人未能及时评审，其他的评审人也可以参与进来。
 你可以根据需要指派技术评审人。
 
-### 使用 `/lgtm`
+### 使用 `/lgtm`   {#using-lgtm}
 
 LGTM 代表的是 “Looks Good To Me （我觉得可以）”，用来标示某个 PR
 在技术上是准确的，可以被合并。
 所有 PR 都需要来自某评审人的 `/lgtm` 评论和来自某批准人的 `/approve`
 评论。
 
-来自评审人的 `/lgtm` 评论是具有约束性的，会触发自动化设施添加 `lgtm` 标签。
+来自评审人的 `/lgtm` 评论是具有约束性的，会触发自动化引擎添加 `lgtm` 标签。
 
 <!--
 ### Becoming a reviewer
@@ -265,11 +265,11 @@ To apply:
 你可以成为一个 SIG Docs 评审人。
 来自其他 SIG 的评审人必须为 SIG Docs 单独申请评审人资格。
 
-申请过程如下：
+申请流程如下：
 
 <!--
 1. Open a pull request that adds your GitHub user name to a section of the
-[OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS) file
+[OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS_ALIASES) file
 in the `kubernetes/website` repository.
 
   {{< note >}}
@@ -282,8 +282,8 @@ If approved, a SIG Docs lead adds you to the appropriate GitHub team. Once added
 [@k8s-ci-robot](https://github.com/kubernetes/test-infra/tree/master/prow#bots-home) assigns and suggests you as a reviewer on new pull requests.
 -->
 1. 发起 PR，将你的 GitHub 用户名添加到 `kubernetes/website` 仓库中
-   [OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS)
-   文件的特定节。
+   [OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS_ALIASES)
+   文件的对应节区。
 
    {{< note >}}
    如果你不确定要添加到哪个位置，可以将自己添加到 `sig-docs-en-reviews`。
@@ -292,8 +292,8 @@ If approved, a SIG Docs lead adds you to the appropriate GitHub team. Once added
 2. 将 PR 指派给一个或多个 SIG Docs 批准人（`sig-docs-{language}-owners`
    下列举的用户名）。
 
-请求被批准之后，SIG Docs Leads 之一会将你添加到合适的 GitHub 团队。
-一旦添加完成， [@k8s-ci-robot](https://github.com/kubernetes/test-infra/tree/master/prow#bots-home)
+申请被批准之后，SIG Docs Leads 之一会将你添加到合适的 GitHub 团队。
+一旦添加完成，[@k8s-ci-robot](https://github.com/kubernetes/test-infra/tree/master/prow#bots-home)
 会在处理未来的 PR 时，将 PR 指派给你或者建议你来评审某 PR。
 
 <!--
@@ -322,12 +322,12 @@ If the PR already has a `/lgtm`, or if the approver also comments with `/lgtm`,
 批准人可以执行以下操作：
 
 - 执行列举在[任何人](#anyone)、[成员](#members)和[评审人](#reviewers)节区的操作
-- 通过使用 `/approve` 评论来批准、合并 PRs，发布贡献者所贡献的内容。
+- 通过使用 `/approve` 评论来批准、合并 PR，发布贡献者所贡献的内容。
 - 就样式指南给出改进建议
 - 对文档测试给出改进建议
 - 对 Kubernetes 网站或其他工具给出改进建议
 
-如果某个 PR 已有 `/lgtm` 标签，或者批准人再回复一个 `/lgtm` ，则这个 PR 会自动合并。
+如果某个 PR 已有 `/lgtm` 标签，或者批准人再回复一个 `/lgtm`，则这个 PR 会自动合并。
 SIG Docs 批准人应该只在不需要额外的技术评审的情况下才可以标记 `/lgtm`。
 
 <!--
@@ -356,7 +356,7 @@ Approvers and SIG Docs leads are the only ones who can merge pull requests into
     不小心的合并可能会破坏整个站点。在执行合并操作时，务必小心。
     {{< /warning >}}
 
-- 确保所提议的变更满足[贡献指南](/zh/docs/contribute/style/content-guide/#contributing-content)要求
+- 确保所提议的变更满足[贡献指南](/zh-cn/docs/contribute/style/content-guide/#contributing-content)要求。
 
     如果有问题或者疑惑，可以根据需要请他人帮助评审。
 
@@ -368,7 +368,7 @@ Approvers and SIG Docs leads are the only ones who can merge pull requests into
 
 - 参与 [PR 管理者轮值排班](https://github.com/kubernetes/website/wiki/PR-Wranglers)
   执行时长为一周的 PR 管理。SIG Docs 期望所有批准人都参与到此轮值工作中。
-  更多细节可参见[做一周的 PR 管理者](/zh/docs/contribute/participate/pr-wranglers/)。
+  更多细节可参见 [PR 管理者](/zh-cn/docs/contribute/participate/pr-wranglers/)。
 
 <!--
 ### Becoming an approver
@@ -378,12 +378,12 @@ When you meet the [requirements](https://github.com/kubernetes/community/blob/ma
 ### 成为批准人  {#becoming-an-approver}
 
 当你满足[一定条件](https://github.com/kubernetes/community/blob/master/community-membership.md#approver)时，可以成为一个 SIG Docs 批准人。
-来自其他 SIGs 的批准人也必须在 SIG Docs 独立申请批准人资格。
+来自其他 SIG 的批准人也必须在 SIG Docs 独立申请批准人资格。
 
 <!--
 To apply:
 
-1. Open a pull request adding yourself to a section of the [OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS) file in the `kubernetes/website` repository.
+1. Open a pull request adding yourself to a section of the [OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS_ALIASES) file in the `kubernetes/website` repository.
 
     {{< note >}}
     If you aren't sure where to add yourself, add yourself to `sig-docs-en-owners`.
@@ -396,7 +396,7 @@ If approved, a SIG Docs lead adds you to the appropriate GitHub team. Once added
 申请流程如下：
 
 1. 发起一个 PR，将自己添加到 `kubernetes/website` 仓库中
-   [OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS)
+   [OWNERS_ALIASES](https://github.com/kubernetes/website/blob/main/OWNERS_ALIASES)
    文件的对应节区。
 
    {{< note >}}
@@ -406,13 +406,13 @@ If approved, a SIG Docs lead adds you to the appropriate GitHub team. Once added
 2. 将 PR 指派给一个或多个 SIG Docs 批准人。
 
 请求被批准之后，SIG Docs Leads 之一会将你添加到对应的 GitHub 团队。
-一旦添加完成， [K8s-ci-robot](https://github.com/kubernetes/test-infra/tree/master/prow#bots-home)
+一旦添加完成，[K8s-ci-robot](https://github.com/kubernetes/test-infra/tree/master/prow#bots-home)
 会在处理未来的 PR 时，将 PR 指派给你或者建议你来评审某 PR。
 
 ## {{% heading "whatsnext" %}}
 
 <!--
-- Read about [PR wrangling](/docs/contribute/participating/pr-wranglers), a role all approvers take on rotation.
+- Read about [PR wrangling](/docs/contribute/participate/pr-wranglers), a role all approvers take on rotation.
 -->
-- 阅读[管理 PR](/zh/docs/contribute/participate/pr-wranglers/)，了解所有批准人轮值的一个角色。
+- 阅读 [PR 管理者](/zh-cn/docs/contribute/participate/pr-wranglers/)，了解所有批准人轮值的角色。
 
diff --git a/content/zh/docs/contribute/review/_index.md b/content/zh-cn/docs/contribute/review/_index.md
similarity index 100%
rename from content/zh/docs/contribute/review/_index.md
rename to content/zh-cn/docs/contribute/review/_index.md
diff --git a/content/zh/docs/contribute/review/for-approvers.md b/content/zh-cn/docs/contribute/review/for-approvers.md
similarity index 94%
rename from content/zh/docs/contribute/review/for-approvers.md
rename to content/zh-cn/docs/contribute/review/for-approvers.md
index a0aa83feca..54879831b0 100644
--- a/content/zh/docs/contribute/review/for-approvers.md
+++ b/content/zh-cn/docs/contribute/review/for-approvers.md
@@ -27,8 +27,8 @@ In addition to the rotation, a bot assigns reviewers and approvers
 for the PR based on the owners for the affected files.
 -->
 SIG Docs
-[评阅人（Reviewers）](/zh/docs/contribute/participate/roles-and-responsibilities/#reviewers)
-和[批准人（Approvers）](/zh/docs/contribute/participate/roles-and-responsibilities/#approvers)
+[评阅人（Reviewers）](/zh-cn/docs/contribute/participate/roles-and-responsibilities/#reviewers)
+和[批准人（Approvers）](/zh-cn/docs/contribute/participate/roles-and-responsibilities/#approvers)
 在对变更进行评审时需要做一些额外的事情。
 
 每周都有一个特定的文档批准人自愿负责对 PR 进行分类和评阅。
@@ -51,7 +51,7 @@ Everything described in [Reviewing a pull request](/docs/contribute/review/revie
 
 Kubernetes 文档遵循 [Kubernetes 代码评阅流程](https://github.com/kubernetes/community/blob/master/contributors/guide/owners.md#the-code-review-process)。
 
-[评阅 PR](/zh/docs/contribute/review/reviewing-prs/) 文档中所描述的所有规程都适用，
+[评阅 PR](/zh-cn/docs/contribute/review/reviewing-prs/) 文档中所描述的所有规程都适用，
 不过评阅人和批准人还要做以下工作：
 
 <!--
@@ -74,7 +74,7 @@ when it comes to requesting technical review from code contributors.
   你可以查看 Markdown 文件的文件头，其中的 `reviewers` 字段给出了哪些人可以为文档提供技术审核。
   {{< /note >}}
 
-- 确保 PR 遵从[内容指南](/zh/docs/contribute/style/content-guide/)和[样式指南](/zh/docs/contribute/style/style-guide/)；
+- 确保 PR 遵从[内容指南](/zh-cn/docs/contribute/style/content-guide/)和[样式指南](/zh-cn/docs/contribute/style/style-guide/)；
   如果 PR 没有达到要求，指引作者阅读指南中的相关部分。
 - 适当的时候使用 GitHub **Request Changes** 选项，建议 PR 作者实施所建议的修改。
 - 当你所提供的建议被采纳后，在 GitHub 中使用 `/approve` 或 `/lgtm` Prow 命令，改变评审状态。
@@ -153,7 +153,7 @@ Prow 命令。
 {{< table caption="Prow commands for reviewing" >}}
 Prow Command | Role Restrictions | Description
 :------------|:------------------|:-----------
-`/lgtm` | Anyone, but triggers automation if a Reviewer or Approver uses it | Signals that you've finished reviewing a PR and are satisfied with the changes.
+`/lgtm` | Organization members | Signals that you've finished reviewing a PR and are satisfied with the changes.
 `/approve` | Approvers | Approves a PR for merging.
 `/assign` | Reviewers or Approvers | Assigns a person to review or approve a PR
 `/close` | Reviewers or Approvers | Closes an issue or PR.
@@ -167,7 +167,7 @@ of commands you can use in a PR.
 {{< table caption="评阅用 Prow 命令" >}}
 Prow 命令 | 角色限制 | 描述
 :------------|:------------------|:-----------
-`/lgtm` | 任何人均可使用，但只有评阅人和批准人使用此命令的时候才会触发自动化操作 | 用来表明你已经完成 PR 的评阅并对其所作变更表示满意
+`/lgtm` | 组织成员 | 用来表明你已经完成 PR 的评阅并对其所作变更表示满意
 `/approve` | 批准人 | 批准某 PR 可以合并
 `/assign` |评阅人或批准人 | 指派某人来评阅或批准某 PR
 `/close` | 评阅人或批准人 | 关闭 Issue 或 PR
@@ -233,7 +233,7 @@ finds issues that might need triage.
   `priority/important-longterm` | Do this within 6 months.
   `priority/backlog` | Deferrable indefinitely. Do when resources are available.
   `priority/awaiting-more-evidence` | Placeholder for a potentially good issue so it doesn't get lost.
-  `help` or `good first issue` | Suitable for someone with very little Kubernetes or SIG Docs experience. See [Help Wanted and Good First Issue Labels](https://github.com/kubernetes/community/blob/master/contributors/guide/help-wanted.md) for more information.
+  `help` or `good first issue` | Suitable for someone with very little Kubernetes or SIG Docs experience. See [Help Wanted and Good First Issue Labels](https://kubernetes.dev/docs/guide/help-wanted/) for more information.
 
   At your discretion, take ownership of an issue and submit a PR for it
   (especially if it's quick or relates to work you're already doing).
@@ -252,7 +252,7 @@ the [kubernetes-sig-docs mailing list](https://groups.google.com/forum/#!forum/k
   `priority/important-longterm` | 应在 6 个月内处理
   `priority/backlog` | 可无限期地推迟，可在人手充足时处理
   `priority/awaiting-more-evidence` | 占位符，标示 Issue 可能是一个不错的 Issue，避免该 Issue 被忽略或遗忘
-  `help` or `good first issue` | 适合对 Kubernetes 或 SIG Docs 经验较少的贡献者来处理。更多信息可参考[需要帮助和入门候选 Issue 标签](https://github.com/kubernetes/community/blob/master/contributors/guide/help-wanted.md)。
+  `help` or `good first issue` | 适合对 Kubernetes 或 SIG Docs 经验较少的贡献者来处理。更多信息可参考[需要帮助和入门候选 Issue 标签](https://kubernetes.dev/docs/guide/help-wanted/)。
   {{< /table >}}
 
    基于你自己的判断，你可以选择某 Issue 来处理，为之发起 PR
@@ -273,7 +273,7 @@ To add a label, leave a comment in one of the following formats:
 To remove a label, leave a comment in one of the following formats:
 
 - `/remove-<label-to-remove>` (for example, `/remove-help`)
-- `/remove-<label-category> <label-to-remove>` (for example, `/remove-triage needs-information`)`
+- `/remove-<label-category> <label-to-remove>` (for example, `/remove-triage needs-information`)
 -->
 ## 添加和删除 Issue 标签 {#adding-and-removing-issue-labels}
 
@@ -361,7 +361,7 @@ If the dead link issue is in the API or `kubectl` documentation, assign them `/p
 
 ### Blog issues
 
-We expect [Kubernetes Blog](https://kubernetes.io/blog/) entries to become
+We expect [Kubernetes Blog](/blog/) entries to become
 outdated over time. Therefore, we only maintain blog entries less than a year old.
 If an issue is related to a blog entry that is more than one year old,
 close the issue without fixing.
@@ -375,7 +375,7 @@ close the issue without fixing.
 
 ### 博客问题  {#blog-issues}
 
-我们预期 [Kubernetes 博客](https://kubernetes.io/blog/)条目随着时间推移都会过期。
+我们预期 [Kubernetes 博客](/zh-cn/blog/)条目随着时间推移都会过期。
 因此，我们只维护一年内的博客条目。
 如果某个 Issue 是与某个超过一年的博客条目有关的，可以直接关闭
 Issue，不必修复。
diff --git a/content/zh/docs/contribute/review/reviewing-prs.md b/content/zh-cn/docs/contribute/review/reviewing-prs.md
similarity index 58%
rename from content/zh/docs/contribute/review/reviewing-prs.md
rename to content/zh-cn/docs/contribute/review/reviewing-prs.md
index e420fb919a..4fdbde162b 100644
--- a/content/zh/docs/contribute/review/reviewing-prs.md
+++ b/content/zh-cn/docs/contribute/review/reviewing-prs.md
@@ -1,5 +1,5 @@
 ---
-title: 评阅 PRs
+title: 评审 PR
 content_type: concept
 main_menu: true
 weight: 10
@@ -12,6 +12,7 @@ weight: 10
 -->
 
 <!-- overview -->
+
 <!--
 Anyone can review a documentation pull request. Visit the [pull requests](https://github.com/kubernetes/website/pulls) section in the Kubernetes website repository to see open pull requests.
 
@@ -22,23 +23,26 @@ It helps you learn the code base and build trust with other contributors.
 Before reviewing, it's a good idea to:
 
 - Read the  [content guide](/docs/contribute/style/content-guide/) and
-[style guide](/docs/contribute/style/style-guide/) so you can leave informed comments.
-- Understand the different [roles and responsibilities](/docs/contribute/participating/#roles-and-responsibilities) in the Kubernetes documentation community.
+  [style guide](/docs/contribute/style/style-guide/) so you can leave informed comments.
+- Understand the different
+  [roles and responsibilities](/docs/contribute/participate/roles-and-responsibilities/)
+  in the Kubernetes documentation community.
 -->
-任何人均可评阅文档的拉取请求。访问 Kubernetes 网站仓库的
-[pull requests](https://github.com/kubernetes/website/pulls)
-部分可以查看所有待处理的拉取请求（PRs）。
+任何人均可评审文档的拉取请求。
+访问 Kubernetes 网站仓库的 [pull requests](https://github.com/kubernetes/website/pulls) 部分，
+可以查看所有待处理的拉取请求（PR）。
 
-评阅文档 PR 是将你自己介绍给 Kubernetes 社区的一种很好的方式。
+评审文档 PR 是将你自己介绍给 Kubernetes 社区的一种很好的方式。
 它将有助于你学习代码库并与其他贡献者之间建立相互信任关系。
 
-在评阅之前，可以考虑：
+在评审之前，可以考虑：
 
-- 阅读[内容指南](/zh/docs/contribute/style/content-guide/)和 
-  [样式指南](/zh/docs/contribute/style/style-guide/)以便给出有价值的评论。
-- 了解 Kubernetes 文档社区中不同的[角色和职责](/zh/docs/contribute/participate/roles-and-responsibilities/)。
+- 阅读[内容指南](/zh-cn/docs/contribute/style/content-guide/)和 
+  [样式指南](/zh-cn/docs/contribute/style/style-guide/)以便给出有价值的评论。
+- 了解 Kubernetes 文档社区中不同的[角色和职责](/zh-cn/docs/contribute/participate/roles-and-responsibilities/)。
 
 <!-- body -->
+
 <!--
 ## Before you begin
 
@@ -53,21 +57,62 @@ Before you start a review:
 -->
 ## 准备工作 {#before-you-begin}
 
-在你开始评阅之前：
+在你开始评审之前：
 
-- 阅读 [CNCF 行为准则](https://github.com/cncf/foundation/blob/master/code-of-conduct.md)
-  确保你会始终遵从其中约定；
-- 保持有礼貌、体谅他人，怀助人为乐初心；
-- 评论时若给出修改建议，也要兼顾 PR 的积极方面
-- 保持同理心，多考虑他人收到评阅意见时的可能反应
-- 假定大家都是好意的，通过问问题澄清意图
-- 如果你是有经验的贡献者，请考虑和新贡献者一起合作，提高其产出质量
+- 阅读 [CNCF 行为准则](https://github.com/cncf/foundation/blob/master/code-of-conduct.md)。
+  确保你会始终遵从其中约定。
+- 保持有礼貌、体谅他人，怀助人为乐初心。
+- 评论时若给出修改建议，也要兼顾 PR 的积极方面。
+- 保持同理心，多考虑他人收到评审意见时的可能反应。
+- 假定大家都是好意的，通过问问题澄清意图。
+- 如果你是有经验的贡献者，请考虑和新贡献者一起合作，提高其产出质量。
 
-<!--
+<!-- 
 ## Review process
 
-In general, review pull requests for content and style in English.
+In general, review pull requests for content and style in English. Figure 1 outlines the steps for the review process. The details for each step follow.
+-->
+## 评审过程  {#review-process}
 
+一般而言，应该使用英语来评审 PR 的内容和样式。
+图 1 概述了评审流程的各个步骤。
+每个步骤的详细信息如下。
+
+<!-- See https://github.com/kubernetes/website/issues/28808 for live-editor URL to this figure -->
+<!-- You can also cut/paste the mermaid code into the live editor at https://mermaid-js.github.io/mermaid-live-editor to play around with it -->
+
+{{< mermaid >}}
+flowchart LR
+    subgraph fourth[开始评审]
+    direction TB
+    S[ ] -.-
+    M[添加评论] --> N[评审变更]
+    N --> O[新手应该<br>选择 Comment]
+    end
+    subgraph third[选择 PR]
+    direction TB
+    T[ ] -.-
+    J[阅读描述<br>和评论]--> K[通过 Netlify 预览构建<br>来预览变更]
+    end
+ 
+  A[查阅待处理的 PR 清单]--> B[通过标签过滤<br>待处理的 PR]
+  B --> third --> fourth
+     
+
+classDef grey fill:#dddddd,stroke:#ffffff,stroke-width:px,color:#000000, font-size:15px;
+classDef white fill:#ffffff,stroke:#000,stroke-width:px,color:#000,font-weight:bold
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class A,B,J,K,M,N,O grey
+class S,T spacewhite
+class third,fourth white
+{{</ mermaid >}}
+
+<!-- 
+Figure 1. Review process steps.
+-->
+图 1. 评审流程步骤。
+
+<!--
 1.  Go to
     [https://github.com/kubernetes/website/pulls](https://github.com/kubernetes/website/pulls).
     You see a list of every open pull request against the Kubernetes website and
@@ -80,61 +125,74 @@ In general, review pull requests for content and style in English.
 
     Additionally, ensure the PR isn't marked as a work in progress. PRs using the `work in progress` label are not ready for review yet.
 -->
-## 评阅过程  {#review-process}
-
-一般而言，应该使用英语来评阅 PR 的内容和样式。
-
 1. 前往 [https://github.com/kubernetes/website/pulls](https://github.com/kubernetes/website/pulls)，
-   你会看到所有针对 Kubernetes 网站和文档的待处理 PRs。
+   你会看到所有针对 Kubernetes 网站和文档的待处理 PR。
 
-2. 使用以下标签（组合）对待处理 PRs 进行过滤：
+2. 使用以下标签（组合）对待处理 PR 进行过滤：
 
-    - `cncf-cla: yes` （建议）：由尚未签署 CLA 的贡献者所发起的 PRs 不可以合并。
-      参考[签署 CLA](/zh/docs/contribute/new-content/overview/#sign-the-cla) 以了解更多信息。
-    - `language/en` （建议）：仅查看英语语言的 PRs。
-    - `size/<尺寸>`：过滤特定尺寸（规模）的 PRs。如果你刚入门，可以从较小的 PR 开始。
+    - `cncf-cla: yes` （建议）：由尚未签署 CLA 的贡献者所发起的 PR 不可以合并。
+      参考[签署 CLA](/zh-cn/docs/contribute/new-content/#sign-the-cla) 以了解更多信息。
+    - `language/en` （建议）：仅查看英语语言的 PR。
+    - `size/<尺寸>`：过滤特定尺寸（规模）的 PR。
+      如果你刚入门，可以从较小的 PR 开始。
 
     此外，确保 PR 没有标记为尚未完成（Work in Progress）。
-    包含 `work in progress` 的 PRs 通常还没准备好被评阅。
+    包含 `work in progress` 的 PR 通常还没准备好被评审。
 
-<!--
+<!-- 
 3.  Once you've selected a PR to review, understand the change by:
     - Reading the PR description to understand the changes made, and read any linked issues
     - Reading any comments by other reviewers
     - Clicking the **Files changed** tab to see the files and lines changed
-    - Previewing the changes in the Netlify preview build by scrolling to the PR's build check section at the bottom of the **Conversation** tab and clicking the **deploy/netlify** line's **Details** link.
+    - Previewing the changes in the Netlify preview build by scrolling to the PR's build check section at the bottom of the **Conversation** tab.
+      Here's a screenshot (this shows GitHub's desktop site; if you're reviewing
+      on a tablet or smartphone device, the GitHub web UI is slightly different):
+      {{< figure src="/images/docs/github_netlify_deploy_preview.png" alt="GitHub pull request details including link to Netlify preview" >}}
+      To open the preview, click on the  **Details** link of the **deploy/netlify** line in the list of checks.
+-->
+3. 选定 PR 评审之后，可以通过以下方式理解所作的变更：
 
+   - 阅读 PR 描述以理解所作变更，并且阅读所有关联的 Issues。
+   - 阅读其他评审人给出的评论。
+   - 点击 **Files changed** Tab 页面，查看被改变的文件和代码行。
+   - 滚动到 **Conversation** Tab 页面下端的 PR 构建检查节区，
+     预览 Netlify 预览构建中的变更。
+     以下是一个屏幕截图（这显示了 GitHub 的桌面版外观；
+     如果你在平板电脑或智能手机设备上进行评审，
+     GitHub 的 Web UI 会略有不同）：
+     {{< figure src="/images/docs/github_netlify_deploy_preview.png" alt="GitHub PR 详细信息，包括 Netlify 预览链接" >}}
+     要打开预览，请点击 **deploy/netlify** 行的 **Details** 链接。
+
+<!--
 4.  Go to the **Files changed** tab to start your review.
     1. Click on the `+` symbol  beside the line you want to comment on.
     2. Fill in any comments you have about the line and click either **Add single comment** (if you have only one comment to make) or  **Start a review** (if you have multiple comments to make).
     3. When finished, click **Review changes** at the top of the page. Here, you can add
-       add a summary of your review (and leave some positive comments for the contributor!),
+      a summary of your review (and leave some positive comments for the contributor!),
       approve the PR, comment or request changes as needed. New contributors should always
       choose **Comment**.
 -->
-3. 选定 PR 评阅之后，可以通过以下方式理解所作的变更：
+4. 前往 **Files changed** Tab 页面，开始你的评审工作。
 
-   - 阅读 PR 描述以理解所作变更，并且阅读所有关联的 Issues
-   - 阅读其他评阅人给出的评论
-   - 点击 **Files changed** Tab 页面，查看被改变的文件和代码行
-   - 滚动到 **Conversation** Tab 页面下端的 PR 构建检查节区，点击
-     **deploy/netlify** 行的 **Details** 链接，预览 Netlify
-     预览构建所生成的结果
-
-4. 前往 **Files changed** Tab 页面，开始你的评阅工作
-
-   1. 点击你希望评论的行旁边的 `+` 号
-   2. 填写你对该行的评论，之后或者选择**Add single comment** （如果你只有一条评论）
-      或者 **Start a review** （如果你还有其他评论要添加）
-   3. 评论结束时，点击页面顶部的 **Review changes**。这里你可以添加你的评论结语
-      （记得留下一些正能量的评论！）、根据需要批准 PR、请求作者进一步修改等等。
+   1. 点击你希望评论的行旁边的 `+` 号。
+   2. 填写你对该行的评论，
+      之后选择 **Add single comment**（如果你只有一条评论）
+      或者 **Start a review**（如果你还有其他评论要添加）。
+   3. 评论结束时，点击页面顶部的 **Review changes**。
+      这里你可以添加你的评论结语（记得留下一些正能量的评论！）、
+      根据需要批准 PR、请求作者进一步修改等等。
       新手应该选择 **Comment**。
 
-<!--
+<!-- 
 ## Reviewing checklist
 
 When reviewing, use the following as a starting point.
+-->
+## 评审清单  {#reviewing-checklist}
 
+评审 PR 时可以从下面的条目入手。
+
+<!--
 ### Language and grammar
 
 - Are there any obvious errors in language or grammar? Is there a better way to phrase something?
@@ -144,16 +202,12 @@ When reviewing, use the following as a starting point.
 - Are there long sentences which could be shorter or less complex?
 - Are there any long paragraphs which might work better as a list or table?
 -->
-## 评阅清单  {#reviewing-checklist}
-
-评阅 PR 时可以从下面的条目入手。
-
 ### 语言和语法 {#language-and-grammar}
 
 - 是否存在明显的语言或语法错误？对某事的描述有更好的方式？
 - 是否存在一些过于复杂晦涩的用词，本可以用简单词汇来代替？
 - 是否有些用词、术语或短语可以用不带歧视性的表达方式代替？
-- 用词和大小写方面是否遵从了[样式指南](/zh/docs/contribute/style/style-guide/)？
+- 用词和大小写方面是否遵从了[样式指南](/zh-cn/docs/contribute/style/style-guide/)？
 - 是否有些句子太长，可以改得更短、更简单？
 - 是否某些段落过长，可以考虑使用列表或者表格来表达？
 
@@ -177,10 +231,6 @@ When reviewing, use the following as a starting point.
   - Does the page appear correctly in the section's side navigation (or at all)?
   - Should the page appear on the [Docs Home](/docs/home/) listing?
 - Do the changes show up in the Netlify preview? Be particularly vigilant about lists, code blocks, tables, notes and images.
-
-### Other
-
-For small issues with a PR, like typos or whitespace, prefix your comments with `nit:`.  This lets the author know the issue is non-critical.
 -->
 ### 网站 {#Website}
 
@@ -188,15 +238,20 @@ For small issues with a PR, like typos or whitespace, prefix your comments with
   如果是这样，PR 是否会导致出现新的失效链接？
   是否有其他的办法，比如改变页面标题但不改变其 slug？
 - PR 是否引入新的页面？如果是：
-  - 该页面是否使用了正确的[页面内容类型](/zh/docs/contribute/style/page-content-types/)
+  - 该页面是否使用了正确的[页面内容类型](/zh-cn/docs/contribute/style/page-content-types/)
     及相关联的 Hugo 短代码（shortcodes）？
   - 该页面能否在对应章节的侧面导航中显示？显示得正确么？
-  - 该页面是否应出现在[网站主页面](/zh/docs/home/)的列表中？
+  - 该页面是否应出现在[网站主页面](/zh-cn/docs/home/)的列表中？
 - 变更是否正确出现在 Netlify 预览中了？
-  要对列表、代码段、表格、注释和图像等元素格外留心
+  要对列表、代码段、表格、注释和图像等元素格外留心。
 
+<!--
+### Other
+
+For small issues with a PR, like typos or whitespace, prefix your comments with `nit:`.  This lets the author know the issue is non-critical.
+-->
 ### 其他 {#other}
 
-对于 PR 中的小问题，例如拼写错误或者空格问题，可以在你的评论前面加上 `nit:`。
+对于 PR 中的小问题，例如拼写错误或者空格问题，
+可以在你的评论前面加上 `nit:`。
 这样做可以让作者知道该问题不是一个不得了的大问题。
-
diff --git a/content/zh/docs/contribute/style/_index.md b/content/zh-cn/docs/contribute/style/_index.md
similarity index 100%
rename from content/zh/docs/contribute/style/_index.md
rename to content/zh-cn/docs/contribute/style/_index.md
diff --git a/content/zh/docs/contribute/style/content-guide.md b/content/zh-cn/docs/contribute/style/content-guide.md
similarity index 79%
rename from content/zh/docs/contribute/style/content-guide.md
rename to content/zh-cn/docs/contribute/style/content-guide.md
index 1f787a1b93..d506a90975 100644
--- a/content/zh/docs/contribute/style/content-guide.md
+++ b/content/zh-cn/docs/contribute/style/content-guide.md
@@ -15,22 +15,22 @@ weight: 10
 <!--
 This page contains guidelines for Kubernetes documentation.
 
-If you have questions about what's allowed, join the #sig-docs channel in 
-[Kubernetes Slack](http://slack.k8s.io/) and ask! 
+If you have questions about what's allowed, join the #sig-docs channel in
+[Kubernetes Slack](https://slack.k8s.io/) and ask!
 
-You can register for Kubernetes Slack at http://slack.k8s.io/. 
+You can register for Kubernetes Slack at https://slack.k8s.io/.
 
 For information on creating new content for the Kubernetes
 docs, follow the [style guide](/docs/contribute/style/style-guide).
 -->
 本页包含 Kubernetes 文档的一些指南。
 
-如果你不清楚哪些事情是可以做的，请加入到 
-[Kubernetes Slack](http://slack.k8s.io/) 的 `#sig-docs` 频道提问！
-你可以在 http://slack.k8s.io 注册到 Kubernetes Slack。
+如果你不清楚哪些事情是可以做的，请加入到
+[Kubernetes Slack](https://slack.k8s.io/) 的 `#sig-docs` 频道提问！
+你可以在 https://slack.k8s.io 注册到 Kubernetes Slack。
 
 关于为 Kubernetes 文档创建新内容的更多信息，可参考
-[样式指南](/zh/docs/contribute/style/style-guide)。
+[样式指南](/zh-cn/docs/contribute/style/style-guide)。
 
 <!-- body -->
 
@@ -42,7 +42,7 @@ Source for the Kubernetes website, including the docs, resides in the
 
 Located in the `kubernetes/website/content/<language_code>/docs` folder, the
 majority of Kubernetes documentation is specific to the [Kubernetes
-project](https://github.com/kubernetes/kubernetes). 
+project](https://github.com/kubernetes/kubernetes).
 
 ## What's allowed
 
@@ -72,12 +72,12 @@ Kubernetes 网站（包括其文档）源代码位于
 ### Third party content
 
 Kubernetes documentation includes applied examples of projects in the Kubernetes project&mdash;projects that live in the [kubernetes](https://github.com/kubernetes) and
-[kubernetes-sigs](https://github.com/kubernetes-sigs) GitHub organizations. 
+[kubernetes-sigs](https://github.com/kubernetes-sigs) GitHub organizations.
 
-Links to active content in the Kubernetes project are always allowed. 
+Links to active content in the Kubernetes project are always allowed.
 
-Kubernetes requires some third party content to function. Examples include container runtimes (containerd, CRI-O, Docker), 
-[networking policy](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/) (CNI plugins), [Ingress controllers](https://kubernetes.io/docs/concepts/services-networking/ingress-controllers/), and [logging](https://kubernetes.io/docs/concepts/cluster-administration/logging/).
+Kubernetes requires some third party content to function. Examples include container runtimes (containerd, CRI-O, Docker),
+[networking policy](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/) (CNI plugins), [Ingress controllers](/docs/concepts/services-networking/ingress-controllers/), and [logging](/docs/concepts/cluster-administration/logging/).
 
 Docs can link to third-party open source software (OSS) outside the Kubernetes project only if it's necessary for Kubernetes to function.
 -->
@@ -92,9 +92,9 @@ Kubernetes 文档包含 Kubernetes 项目下的多个项目的应用示例。
 
 Kubernetes 需要某些第三方内容才能正常工作。例如
 容器运行时（containerd、CRI-O、Docker），
-[联网策略](/zh/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)
-（CNI 插件），[Ingress 控制器](/zh/docs/concepts/services-networking/ingress-controllers/)
-以及[日志](https://kubernetes.io/zh/docs/concepts/cluster-administration/logging/)等。
+[联网策略](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)
+（CNI 插件），[Ingress 控制器](/zh-cn/docs/concepts/services-networking/ingress-controllers/)
+以及[日志](/zh-cn/docs/concepts/cluster-administration/logging/)等。
 
 只有对应的第三方开源软件（OSS）是运行 Kubernetes 所必需的，才可以在文档中包含
 指向这些 Kubernetes 项目之外的软件的链接。
@@ -109,7 +109,8 @@ Dual-sourced content requires double the effort (or more!) to maintain
 and grows stale more quickly.
 
 {{< note >}}
-If you're a maintainer for a Kubernetes project and need help hosting your own docs, 
+
+If you're a maintainer for a Kubernetes project and need help hosting your own docs,
 ask for help in [#sig-docs on Kubernetes Slack](https://kubernetes.slack.com/messages/C1J0BPD2M/).
 {{< /note >}}
 -->
@@ -128,15 +129,13 @@ ask for help in [#sig-docs on Kubernetes Slack](https://kubernetes.slack.com/mes
 <!--
 ### More information
 
-If you have questions about allowed content, join the [Kubernetes Slack](http://slack.k8s.io/) #sig-docs channel and ask!
+If you have questions about allowed content, join the [Kubernetes Slack](https://slack.k8s.io/) #sig-docs channel and ask!
 -->
 ### 更多信息  {#more-information}
 
-如果你对允许出现的内容有疑问，请加入到 [Kubernetes Slack](http://slack.k8s.io/)
+如果你对允许出现的内容有疑问，请加入到 [Kubernetes Slack](https://slack.k8s.io/)
 的 `#sig-docs` 频道提问！
 
 ## {{% heading "whatsnext" %}}
 
-* 阅读[样式指南](/zh/docs/contribute/style/style-guide)。
-
-
+* 阅读[样式指南](/zh-cn/docs/contribute/style/style-guide)。
diff --git a/content/zh/docs/contribute/style/content-organization.md b/content/zh-cn/docs/contribute/style/content-organization.md
similarity index 96%
rename from content/zh/docs/contribute/style/content-organization.md
rename to content/zh-cn/docs/contribute/style/content-organization.md
index eb35c80b5f..247d016057 100644
--- a/content/zh/docs/contribute/style/content-organization.md
+++ b/content/zh-cn/docs/contribute/style/content-organization.md
@@ -159,7 +159,7 @@ One example is [Custom Hugo Shortcodes](/docs/contribute/style/hugo-shortcodes/)
 除了独立的内容页面（Markdown 文件），Hugo 还支持
 [页面包](https://gohugo.io/content-management/page-bundles/)。
 
-一个例子是[定制的 Hugo 短代码（shortcodes）](/zh/docs/contribute/style/hugo-shortcodes/)。
+一个例子是[定制的 Hugo 短代码（shortcodes）](/zh-cn/docs/contribute/style/hugo-shortcodes/)。
 它被认为是 `leaf bundle`（叶子包）。
 目录下的所有内容，包括 `index.md`，都是包的一部分。此外还包括页面间相对链接、可被处理的图像等：
 
@@ -222,7 +222,7 @@ The `SASS` source of the stylesheets for this site is stored below `src/sass` an
 * Learn about the [Content guide](/docs/contribute/style/content-guide)
 -->
 
-* 了解[定制 Hugo 短代码](/zh/docs/contribute/style/hugo-shortcodes/)
-* 了解[样式指南](/zh/docs/contribute/style/style-guide)
-* 了解[内容指南](/zh/docs/contribute/style/content-guide)
+* 了解[定制 Hugo 短代码](/zh-cn/docs/contribute/style/hugo-shortcodes/)
+* 了解[样式指南](/zh-cn/docs/contribute/style/style-guide)
+* 了解[内容指南](/zh-cn/docs/contribute/style/content-guide)
 
diff --git a/content/zh-cn/docs/contribute/style/diagram-guide.md b/content/zh-cn/docs/contribute/style/diagram-guide.md
new file mode 100644
index 0000000000..4f106e9af6
--- /dev/null
+++ b/content/zh-cn/docs/contribute/style/diagram-guide.md
@@ -0,0 +1,1262 @@
+---
+title: 图表指南
+linktitle: 图表指南
+content_type: concept
+weight: 15
+---
+<!--
+title: Diagram Guide
+linktitle: Diagram guide
+content_type: concept
+weight: 15
+-->
+
+<!--Overview-->
+
+<!--
+This guide shows you how to create, edit and share diagrams using the Mermaid
+JavaScript library. Mermaid.js allows you to generate diagrams using a simple
+markdown-like syntax inside Markdown files. You can also use Mermaid to
+generate `.svg` or `.png` image files that you can add to your documentation.
+
+The target audience for this guide is anybody wishing to learn about Mermaid
+and/or how to create and add diagrams to Kubernetes documentation.
+
+Figure 1 outlines the topics covered in this section. 
+-->
+本指南为你展示如何创建、编辑和分享基于 Mermaid JavaScript 库的图表。
+Mermaid.js 允许你使用简单的、类似于 Markdown 的语法来在 Markdown 文件中生成图表。
+你也可以使用 Mermaid 来创建 `.svg` 或 `.png` 图片文件，将其添加到你的文档中。
+
+本指南的目标受众是所有希望了解 Mermaid 的用户，以及那些想了解如何创建图表并将其添加到
+Kubernetes 文档中的用户。
+
+图 1 概要介绍的是本节所涉及的话题。
+
+{{< mermaid >}}
+flowchart LR
+subgraph m[Mermaid.js]
+direction TB
+S[ ]-.-
+C[使用 markdown 来<br>构造图表] -->
+D[在线<br>编辑器]
+end
+A[为什么图表<br>很有用] --> m
+m --> N[3 种创建<br>图表的方法]
+N --> T[示例]
+T --> X[样式<br>与标题]
+X --> V[提示]
+
+
+
+    classDef box fill:#fff,stroke:#000,stroke-width:1px,color:#000;
+    classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+    class A,C,D,N,X,m,T,V box
+    class S spacewhite
+
+%% you can hyperlink Mermaid diagram nodes to a URL using click statements
+
+click A "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgc3ViZ3JhcGggbVtNZXJtYWlkLmpzXVxuICAgIGRpcmVjdGlvbiBUQlxuICAgICAgICBTWyBdLS4tXG4gICAgICAgIENbYnVpbGQ8YnI-ZGlhZ3JhbXM8YnI-d2l0aCBtYXJrZG93bl0gLS0-XG4gICAgICAgIERbb24tbGluZTxicj5saXZlIGVkaXRvcl1cbiAgICBlbmRcbiAgICBBW1doeSBhcmUgZGlhZ3JhbXM8YnI-dXNlZnVsP10gLS0-IG1cbiAgICBtIC0tPiBOWzMgeCBtZXRob2RzPGJyPmZvciBjcmVhdGluZzxicj5kaWFncmFtc11cbiAgICBOIC0tPiBUW0V4YW1wbGVzXVxuICAgIFQgLS0-IFhbU3R5bGluZzxicj5hbmQ8YnI-Y2FwdGlvbnNdXG4gICAgWCAtLT4gVltUaXBzXVxuICAgIFxuIFxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzRGVmIHNwYWNld2hpdGUgZmlsbDojZmZmZmZmLHN0cm9rZTojZmZmLHN0cm9rZS13aWR0aDowcHgsY29sb3I6IzAwMFxuICAgIGNsYXNzIEEsQyxELE4sWCxtLFQsViBib3hcbiAgICBjbGFzcyBTIHNwYWNld2hpdGUiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOnRydWV9" _blank
+click C "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgc3ViZ3JhcGggbVtNZXJtYWlkLmpzXVxuICAgIGRpcmVjdGlvbiBUQlxuICAgICAgICBTWyBdLS4tXG4gICAgICAgIENbYnVpbGQ8YnI-ZGlhZ3JhbXM8YnI-d2l0aCBtYXJrZG93bl0gLS0-XG4gICAgICAgIERbb24tbGluZTxicj5saXZlIGVkaXRvcl1cbiAgICBlbmRcbiAgICBBW1doeSBhcmUgZGlhZ3JhbXM8YnI-dXNlZnVsP10gLS0-IG1cbiAgICBtIC0tPiBOWzMgeCBtZXRob2RzPGJyPmZvciBjcmVhdGluZzxicj5kaWFncmFtc11cbiAgICBOIC0tPiBUW0V4YW1wbGVzXVxuICAgIFQgLS0-IFhbU3R5bGluZzxicj5hbmQ8YnI-Y2FwdGlvbnNdXG4gICAgWCAtLT4gVltUaXBzXVxuICAgIFxuIFxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzRGVmIHNwYWNld2hpdGUgZmlsbDojZmZmZmZmLHN0cm9rZTojZmZmLHN0cm9rZS13aWR0aDowcHgsY29sb3I6IzAwMFxuICAgIGNsYXNzIEEsQyxELE4sWCxtLFQsViBib3hcbiAgICBjbGFzcyBTIHNwYWNld2hpdGUiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOnRydWV9" _blank
+click D "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgc3ViZ3JhcGggbVtNZXJtYWlkLmpzXVxuICAgIGRpcmVjdGlvbiBUQlxuICAgICAgICBTWyBdLS4tXG4gICAgICAgIENbYnVpbGQ8YnI-ZGlhZ3JhbXM8YnI-d2l0aCBtYXJrZG93bl0gLS0-XG4gICAgICAgIERbb24tbGluZTxicj5saXZlIGVkaXRvcl1cbiAgICBlbmRcbiAgICBBW1doeSBhcmUgZGlhZ3JhbXM8YnI-dXNlZnVsP10gLS0-IG1cbiAgICBtIC0tPiBOWzMgeCBtZXRob2RzPGJyPmZvciBjcmVhdGluZzxicj5kaWFncmFtc11cbiAgICBOIC0tPiBUW0V4YW1wbGVzXVxuICAgIFQgLS0-IFhbU3R5bGluZzxicj5hbmQ8YnI-Y2FwdGlvbnNdXG4gICAgWCAtLT4gVltUaXBzXVxuICAgIFxuIFxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzRGVmIHNwYWNld2hpdGUgZmlsbDojZmZmZmZmLHN0cm9rZTojZmZmLHN0cm9rZS13aWR0aDowcHgsY29sb3I6IzAwMFxuICAgIGNsYXNzIEEsQyxELE4sWCxtLFQsViBib3hcbiAgICBjbGFzcyBTIHNwYWNld2hpdGUiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOnRydWV9" _blank
+click N "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgc3ViZ3JhcGggbVtNZXJtYWlkLmpzXVxuICAgIGRpcmVjdGlvbiBUQlxuICAgICAgICBTWyBdLS4tXG4gICAgICAgIENbYnVpbGQ8YnI-ZGlhZ3JhbXM8YnI-d2l0aCBtYXJrZG93bl0gLS0-XG4gICAgICAgIERbb24tbGluZTxicj5saXZlIGVkaXRvcl1cbiAgICBlbmRcbiAgICBBW1doeSBhcmUgZGlhZ3JhbXM8YnI-dXNlZnVsP10gLS0-IG1cbiAgICBtIC0tPiBOWzMgeCBtZXRob2RzPGJyPmZvciBjcmVhdGluZzxicj5kaWFncmFtc11cbiAgICBOIC0tPiBUW0V4YW1wbGVzXVxuICAgIFQgLS0-IFhbU3R5bGluZzxicj5hbmQ8YnI-Y2FwdGlvbnNdXG4gICAgWCAtLT4gVltUaXBzXVxuICAgIFxuIFxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzRGVmIHNwYWNld2hpdGUgZmlsbDojZmZmZmZmLHN0cm9rZTojZmZmLHN0cm9rZS13aWR0aDowcHgsY29sb3I6IzAwMFxuICAgIGNsYXNzIEEsQyxELE4sWCxtLFQsViBib3hcbiAgICBjbGFzcyBTIHNwYWNld2hpdGUiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOnRydWV9" _blank
+click T "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgc3ViZ3JhcGggbVtNZXJtYWlkLmpzXVxuICAgIGRpcmVjdGlvbiBUQlxuICAgICAgICBTWyBdLS4tXG4gICAgICAgIENbYnVpbGQ8YnI-ZGlhZ3JhbXM8YnI-d2l0aCBtYXJrZG93bl0gLS0-XG4gICAgICAgIERbb24tbGluZTxicj5saXZlIGVkaXRvcl1cbiAgICBlbmRcbiAgICBBW1doeSBhcmUgZGlhZ3JhbXM8YnI-dXNlZnVsP10gLS0-IG1cbiAgICBtIC0tPiBOWzMgeCBtZXRob2RzPGJyPmZvciBjcmVhdGluZzxicj5kaWFncmFtc11cbiAgICBOIC0tPiBUW0V4YW1wbGVzXVxuICAgIFQgLS0-IFhbU3R5bGluZzxicj5hbmQ8YnI-Y2FwdGlvbnNdXG4gICAgWCAtLT4gVltUaXBzXVxuICAgIFxuIFxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzRGVmIHNwYWNld2hpdGUgZmlsbDojZmZmZmZmLHN0cm9rZTojZmZmLHN0cm9rZS13aWR0aDowcHgsY29sb3I6IzAwMFxuICAgIGNsYXNzIEEsQyxELE4sWCxtLFQsViBib3hcbiAgICBjbGFzcyBTIHNwYWNld2hpdGUiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOnRydWV9" _blank
+click X "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgc3ViZ3JhcGggbVtNZXJtYWlkLmpzXVxuICAgIGRpcmVjdGlvbiBUQlxuICAgICAgICBTWyBdLS4tXG4gICAgICAgIENbYnVpbGQ8YnI-ZGlhZ3JhbXM8YnI-d2l0aCBtYXJrZG93bl0gLS0-XG4gICAgICAgIERbb24tbGluZTxicj5saXZlIGVkaXRvcl1cbiAgICBlbmRcbiAgICBBW1doeSBhcmUgZGlhZ3JhbXM8YnI-dXNlZnVsP10gLS0-IG1cbiAgICBtIC0tPiBOWzMgeCBtZXRob2RzPGJyPmZvciBjcmVhdGluZzxicj5kaWFncmFtc11cbiAgICBOIC0tPiBUW0V4YW1wbGVzXVxuICAgIFQgLS0-IFhbU3R5bGluZzxicj5hbmQ8YnI-Y2FwdGlvbnNdXG4gICAgWCAtLT4gVltUaXBzXVxuICAgIFxuIFxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzRGVmIHNwYWNld2hpdGUgZmlsbDojZmZmZmZmLHN0cm9rZTojZmZmLHN0cm9rZS13aWR0aDowcHgsY29sb3I6IzAwMFxuICAgIGNsYXNzIEEsQyxELE4sWCxtLFQsViBib3hcbiAgICBjbGFzcyBTIHNwYWNld2hpdGUiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOnRydWV9" _blank
+click V "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgc3ViZ3JhcGggbVtNZXJtYWlkLmpzXVxuICAgIGRpcmVjdGlvbiBUQlxuICAgICAgICBTWyBdLS4tXG4gICAgICAgIENbYnVpbGQ8YnI-ZGlhZ3JhbXM8YnI-d2l0aCBtYXJrZG93bl0gLS0-XG4gICAgICAgIERbb24tbGluZTxicj5saXZlIGVkaXRvcl1cbiAgICBlbmRcbiAgICBBW1doeSBhcmUgZGlhZ3JhbXM8YnI-dXNlZnVsP10gLS0-IG1cbiAgICBtIC0tPiBOWzMgeCBtZXRob2RzPGJyPmZvciBjcmVhdGluZzxicj5kaWFncmFtc11cbiAgICBOIC0tPiBUW0V4YW1wbGVzXVxuICAgIFQgLS0-IFhbU3R5bGluZzxicj5hbmQ8YnI-Y2FwdGlvbnNdXG4gICAgWCAtLT4gVltUaXBzXVxuICAgIFxuIFxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzRGVmIHNwYWNld2hpdGUgZmlsbDojZmZmZmZmLHN0cm9rZTojZmZmLHN0cm9rZS13aWR0aDowcHgsY29sb3I6IzAwMFxuICAgIGNsYXNzIEEsQyxELE4sWCxtLFQsViBib3hcbiAgICBjbGFzcyBTIHNwYWNld2hpdGUiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOnRydWV9" _blank
+
+{{< /mermaid >}}
+
+<!--
+Figure 1. Topics covered in this section.
+-->
+图 1. 本节中涉及的话题.
+
+<!--
+All you need to begin working with Mermaid is the following:
+
+* Basic understanding of markdown.
+* Using the Mermaid live editor.
+* Using [Hugo shortcodes](/docs/contribute/style/hugo-shortcodes/).
+* Using the [Hugo {{</* figure */>}} shortcode](https://gohugo.io/content-management/shortcodes/#figure).   
+* Performing [Hugo local previews](/docs/contribute/new-content/open-a-pr/#preview-locally).
+* Familiar with the [Contributing new content](/docs/contribute/new-content/) process.
+-->
+开始使用 Mermaid 之前，你需要以下准备：
+
+* 对 Markdown 有一个基本的了解
+* 使用 Mermaid 在线编辑器
+* 使用 [Hugo 短代码（shortcode）](/zh-cn/docs/contribute/style/hugo-shortcodes/)
+* 使用 [Hugo {{</* figure */>}} 短代码](https://gohugo.io/content-management/shortcodes/#figure)
+* 执行 [Hugo 本地预览](/zh-cn/docs/contribute/new-content/open-a-pr/#preview-locally)
+* 熟悉[贡献新内容](/zh-cn/docs/contribute/new-content/)的流程
+
+{{< note >}}
+<!--
+You can click on each diagram in this section to view the code and rendered
+diagram in the Mermaid live editor.
+-->
+你可以点击本节中的每个图表来查看其源代码，以及在 Mermaid 在线编辑器中渲染的图表结果。
+{{< /note >}}
+
+<!--body-->
+
+<!--
+## Why you should use diagrams in documentation
+
+Diagrams improve documentation clarity and comprehension. There are advantages for both the user and the contributor.
+-->
+## 你为什么应该在代码中使用图表
+
+图表可以增进文档的清晰度，便于理解。对于用户和贡献者而言都有好处。
+
+<!--
+The user benefits include:
+
+* __Friendly landing spot__. A detailed text-only greeting page could
+  intimidate users, in particular, first-time Kubernetes users. 
+* __Faster grasp of concepts__. A diagram can help users understand the key
+  points of a complex topic. Your diagram can serve as a visual learning guide
+  to dive into the topic details. 
+* __Better retention__. For some, it is easier to recall pictures rather than text.
+-->
+用户获得的好处有：
+* __较为友好的初次体验__：非常详尽的、只包含文本的欢迎页面对用户而言是蛮恐怖的，
+  尤其是初次接触 Kubernetes 的用户。
+* __快速理解概念__：图表可以帮助用户理解复杂主题下的要点。
+  你的图表可以作为一种可视化的学习指南，将用户带入主题的细节。
+* __便于记忆__：对某些人而言，图形（图像）要比文字更容易记忆。
+
+<!--
+The contributor benefits include:
+
+* __Assist in developing the structure and content__ of your contribution. For
+  example, you can start with a simple diagram covering the high-level points
+  and then dive into details.  
+* __Expand and grow the user community__. Easily consumed documentation
+  augmented with diagrams attracts new users who might previously have been
+  reluctant to engage due to perceived complexities. 
+-->
+对贡献者而言的好处有：
+
+* __帮助确立所贡献文档的结构和内容__。例如，
+  你可以先提供一个覆盖所有顶层要点的图表，然后再逐步展开细节。
+* __培养用户社区并提升其能力__ 容易理解的文档，附以图表，能够吸引新的用户，
+  尤其是那些因为预见到复杂性而不愿参与的用户。
+
+<!--
+You should consider your target audience. In addition to experienced K8s
+users, you will have many who are new to Kubernetes. Even a simple diagram can
+assist new users in absorbing Kubernetes concepts. They become emboldened and
+more confident to further explore Kubernetes and the documentation.  
+-->
+你需要考虑你的目标受众。除了一些有经验的 K8s 用户外，你还会遇到很多刚接触
+Kubernetes 的用户。即使一张简单的图表也可以帮助新用户吸收 Kubernetes 概念。
+他们会变得更为大胆和自信，进一步地了解 Kubernetes 及其文档。
+
+## Mermaid
+
+<!--
+[Mermaid](https://mermaid-js.github.io/mermaid/#/) is an open source
+JavaScript library that allows you to create, edit and easily share diagrams
+using a simple, markdown-like syntax configured inline in Markdown files.
+-->
+[Mermaid](https://mermaid-js.github.io/mermaid/#/) 是一个开源的 JavaScript 库，
+可以帮助你创建、编辑并很容易地分享图表。这些图表使用简单的、类似 Markdown
+的语法开发，并可内嵌到 Markdown 文件中。
+
+<!--
+The following lists features of Mermaid: 
+
+* Simple code syntax.
+* Includes a web-based tool allowing you to code and preview your diagrams.
+* Supports multiple formats including flowchart, state and sequence.
+* Easy collaboration with colleagues by sharing a per-diagram URL. 
+* Broad selection of shapes, lines, themes and styling. 
+-->
+下面是 Mermaid 的一些特性：
+
+* 简单的编码语法
+* 包含基于 Web 的工具，便于你编制和预览你的图表
+* 支持包括流程图、状态图、时序图在内的多种格式
+* 可以通过共享图表的 URL 来与同事方便地合作
+* 有丰富的形状、线条、主题和样式可供选择
+
+<!--
+The following lists advantages of using Mermaid:
+
+* No need for separate, non-Mermaid diagram tools.
+* Adheres to existing PR workflow. You can think of Mermaid code as just
+  Markdown text included in your PR.
+* Simple tool builds simple diagrams. You don't want to get bogged down
+  (re)crafting an overly complex and detailed picture. Keep it simple! 
+-->
+使用 Mermaid 的一些好处如下：
+
+* 不需要使用另外的、非 Mermaid 的图表工具
+* 与现有的 PR 工作流结合的很好。你可以将 Mermaid 代码视为你的 PR 中所包含的
+  Markdown 文本
+* 简单的工具生成简单的图表。你不需要精心制作或雕琢过于复杂或详尽的图片。
+  保持简单就好。
+
+<!--
+Mermaid provides a simple, open and transparent method for the SIG communities
+to add, edit and collaborate on diagrams for new or existing documentation.
+-->
+Mermaid 提供一种简单的、开放且透明的方法，便于 SIG 社区为新的或现有的文档添加、
+编辑图表并展开协作。
+
+{{< note >}}
+<!--
+You can still use Mermaid to create/edit diagrams even if it's not supported
+in your environment. This method is called __Mermaid+SVG__ and is explained
+below.
+-->
+即使你的工作环境中不支持，你仍然可以使用 Mermaid 来创建、编辑图表。
+这种方法称作 __Mermaid+SVG__，在后文详细解释。
+{{< /note >}}
+
+<!--
+### Live editor
+
+The [Mermaid live editor](https://mermaid-js.github.io/mermaid-live-editor) is
+a web-based tool that enables you to create, edit and review diagrams. 
+-->
+### 在线编辑器
+
+[Mermaid 在线编辑器](https://mermaid-js.github.io/mermaid-live-editor)是一个基于 
+Web 的工具，允许你创建、编辑和审阅图表。
+
+<!--
+The following lists live editor functions:
+
+* Displays Mermaid code and rendered diagram. 
+* Generates a URL for each saved diagram. The URL is displayed in the URL
+  field of your browser. You can share the URL with colleagues who can access
+  and modify the diagram. 
+* Option to download `.svg` or `.png` files. 
+-->
+在线编辑器的功能主要有：
+
+* 显示 Mermaid 代码和渲染的图表。
+* 为所保存的每个图表生成一个 URL。该 URL 显示在你的浏览器的 URL 字段中。
+  你可以将 URL 分享给同事，便于他人访问和更改图表。
+* 提供将图表下载为 `.svg` 或 `.png` 文件的选项。
+
+
+{{< note >}}
+<!--
+The live editor is the easiest and fastest way to create and edit Mermaid diagrams. 
+-->
+在线编辑器是创建和编辑 Mermaid 图表的最简单的，也是最快的方式。
+{{< /note >}}
+
+<!--
+## Methods for creating diagrams
+
+Figure 2 outlines the three methods to generate and add diagrams.
+-->
+## 创建图表的方法   {#methods-for-creating-diagrams}
+
+图 2 给出三种生成和添加图表的方法。
+
+{{< mermaid >}}
+graph TB
+A[贡献者]
+B[向 .md 文件<br><br>中内嵌<br>Mermaid 代码]
+C[Mermaid+SVG<br><br>将 Mermaid 所生成的<br>SVG 文件添加到 .md 文件]
+D[外部工具<br><br>添加外部工具<br>所生成的 SVG<br>文件到 .md 文件]
+
+    A --> B
+    A --> C
+    A --> D
+
+    classDef box fill:#fff,stroke:#000,stroke-width:1px,color:#000;
+    class A,B,C,D box
+
+%% 你可以使用 click 语句为 Mermaid 节点设置指向某 URL 的超链接
+
+click A "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZ3JhcGggVEJcbiAgICBBW0NvbnRyaWJ1dG9yXVxuICAgIEJbSW5saW5lPGJyPjxicj5NZXJtYWlkIGNvZGU8YnI-YWRkZWQgdG8gLm1kIGZpbGVdXG4gICAgQ1tNZXJtYWlkK1NWRzxicj48YnI-QWRkIG1lcm1haWQtZ2VuZXJhdGVkPGJyPnN2ZyBmaWxlIHRvIC5tZCBmaWxlXVxuICAgIERbRXh0ZXJuYWwgdG9vbDxicj48YnI-QWRkIGV4dGVybmFsLXRvb2wtPGJyPmdlbmVyYXRlZCBzdmcgZmlsZTxicj50byAubWQgZmlsZV1cblxuICAgIEEgLS0-IEJcbiAgICBBIC0tPiBDXG4gICAgQSAtLT4gRFxuXG4gICAgY2xhc3NEZWYgYm94IGZpbGw6I2ZmZixzdHJva2U6IzAwMCxzdHJva2Utd2lkdGg6MXB4LGNvbG9yOiMwMDA7XG4gICAgY2xhc3MgQSxCLEMsRCBib3giLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ" _blank
+
+click B "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZ3JhcGggVEJcbiAgICBBW0NvbnRyaWJ1dG9yXVxuICAgIEJbSW5saW5lPGJyPjxicj5NZXJtYWlkIGNvZGU8YnI-YWRkZWQgdG8gLm1kIGZpbGVdXG4gICAgQ1tNZXJtYWlkK1NWRzxicj48YnI-QWRkIG1lcm1haWQtZ2VuZXJhdGVkPGJyPnN2ZyBmaWxlIHRvIC5tZCBmaWxlXVxuICAgIERbRXh0ZXJuYWwgdG9vbDxicj48YnI-QWRkIGV4dGVybmFsLXRvb2wtPGJyPmdlbmVyYXRlZCBzdmcgZmlsZTxicj50byAubWQgZmlsZV1cblxuICAgIEEgLS0-IEJcbiAgICBBIC0tPiBDXG4gICAgQSAtLT4gRFxuXG4gICAgY2xhc3NEZWYgYm94IGZpbGw6I2ZmZixzdHJva2U6IzAwMCxzdHJva2Utd2lkdGg6MXB4LGNvbG9yOiMwMDA7XG4gICAgY2xhc3MgQSxCLEMsRCBib3giLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ" _blank
+
+click C "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZ3JhcGggVEJcbiAgICBBW0NvbnRyaWJ1dG9yXVxuICAgIEJbSW5saW5lPGJyPjxicj5NZXJtYWlkIGNvZGU8YnI-YWRkZWQgdG8gLm1kIGZpbGVdXG4gICAgQ1tNZXJtYWlkK1NWRzxicj48YnI-QWRkIG1lcm1haWQtZ2VuZXJhdGVkPGJyPnN2ZyBmaWxlIHRvIC5tZCBmaWxlXVxuICAgIERbRXh0ZXJuYWwgdG9vbDxicj48YnI-QWRkIGV4dGVybmFsLXRvb2wtPGJyPmdlbmVyYXRlZCBzdmcgZmlsZTxicj50byAubWQgZmlsZV1cblxuICAgIEEgLS0-IEJcbiAgICBBIC0tPiBDXG4gICAgQSAtLT4gRFxuXG4gICAgY2xhc3NEZWYgYm94IGZpbGw6I2ZmZixzdHJva2U6IzAwMCxzdHJva2Utd2lkdGg6MXB4LGNvbG9yOiMwMDA7XG4gICAgY2xhc3MgQSxCLEMsRCBib3giLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ" _blank
+
+click D "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZ3JhcGggVEJcbiAgICBBW0NvbnRyaWJ1dG9yXVxuICAgIEJbSW5saW5lPGJyPjxicj5NZXJtYWlkIGNvZGU8YnI-YWRkZWQgdG8gLm1kIGZpbGVdXG4gICAgQ1tNZXJtYWlkK1NWRzxicj48YnI-QWRkIG1lcm1haWQtZ2VuZXJhdGVkPGJyPnN2ZyBmaWxlIHRvIC5tZCBmaWxlXVxuICAgIERbRXh0ZXJuYWwgdG9vbDxicj48YnI-QWRkIGV4dGVybmFsLXRvb2wtPGJyPmdlbmVyYXRlZCBzdmcgZmlsZTxicj50byAubWQgZmlsZV1cblxuICAgIEEgLS0-IEJcbiAgICBBIC0tPiBDXG4gICAgQSAtLT4gRFxuXG4gICAgY2xhc3NEZWYgYm94IGZpbGw6I2ZmZixzdHJva2U6IzAwMCxzdHJva2Utd2lkdGg6MXB4LGNvbG9yOiMwMDA7XG4gICAgY2xhc3MgQSxCLEMsRCBib3giLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ" _blank
+
+{{< /mermaid >}} 
+
+<!--
+Figure 2. Methods to create diagrams.
+-->
+图 2. 创建图表的方法
+
+
+<!--
+### Inline
+
+Figure 3 outlines the steps to follow for adding a diagram using the Inline
+method. 
+-->
+### 内嵌（Inline）
+
+图 3 给出的是使用内嵌方法来添加图表所遵循的步骤。
+
+{{< mermaid >}}
+graph LR
+A[1. 使用在线编辑器<br>来创建或编辑<br>图表] -->
+B[2. 将图表的 URL<br>保存到某处] -->
+C[3. 将 Mermaid 代码<br>复制到 markdown 文件中] -->
+D[4. 添加图表标题]
+
+
+    classDef box fill:#fff,stroke:#000,stroke-width:1px,color:#000;
+    class A,B,C,D box
+
+%% 你可以使用 click 语句为 Mermaid 节点设置指向某 URL 的超链接
+
+click A "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZ3JhcGggTFJcbiAgICBBWzEuIFVzZSBsaXZlIGVkaXRvcjxicj4gdG8gY3JlYXRlL2VkaXQ8YnI-ZGlhZ3JhbV0gLS0-XG4gICAgQlsyLiBTdG9yZSBkaWFncmFtPGJyPlVSTCBzb21ld2hlcmVdIC0tPlxuICAgIENbMy4gQ29weSBNZXJtYWlkIGNvZGU8YnI-dG8gcGFnZSBtYXJrZG93biBmaWxlXSAtLT5cbiAgICBEWzQuIEFkZCBjYXB0aW9uXVxuIFxuXG4gICAgY2xhc3NEZWYgYm94IGZpbGw6I2ZmZixzdHJva2U6IzAwMCxzdHJva2Utd2lkdGg6MXB4LGNvbG9yOiMwMDA7XG4gICAgY2xhc3MgQSxCLEMsRCBib3hcbiAgICAiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ" _blank
+
+click B "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZ3JhcGggTFJcbiAgICBBWzEuIFVzZSBsaXZlIGVkaXRvcjxicj4gdG8gY3JlYXRlL2VkaXQ8YnI-ZGlhZ3JhbV0gLS0-XG4gICAgQlsyLiBTdG9yZSBkaWFncmFtPGJyPlVSTCBzb21ld2hlcmVdIC0tPlxuICAgIENbMy4gQ29weSBNZXJtYWlkIGNvZGU8YnI-dG8gcGFnZSBtYXJrZG93biBmaWxlXSAtLT5cbiAgICBEWzQuIEFkZCBjYXB0aW9uXVxuIFxuXG4gICAgY2xhc3NEZWYgYm94IGZpbGw6I2ZmZixzdHJva2U6IzAwMCxzdHJva2Utd2lkdGg6MXB4LGNvbG9yOiMwMDA7XG4gICAgY2xhc3MgQSxCLEMsRCBib3hcbiAgICAiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ" _blank
+
+click C "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZ3JhcGggTFJcbiAgICBBWzEuIFVzZSBsaXZlIGVkaXRvcjxicj4gdG8gY3JlYXRlL2VkaXQ8YnI-ZGlhZ3JhbV0gLS0-XG4gICAgQlsyLiBTdG9yZSBkaWFncmFtPGJyPlVSTCBzb21ld2hlcmVdIC0tPlxuICAgIENbMy4gQ29weSBNZXJtYWlkIGNvZGU8YnI-dG8gcGFnZSBtYXJrZG93biBmaWxlXSAtLT5cbiAgICBEWzQuIEFkZCBjYXB0aW9uXVxuIFxuXG4gICAgY2xhc3NEZWYgYm94IGZpbGw6I2ZmZixzdHJva2U6IzAwMCxzdHJva2Utd2lkdGg6MXB4LGNvbG9yOiMwMDA7XG4gICAgY2xhc3MgQSxCLEMsRCBib3hcbiAgICAiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ" _blank
+
+click D "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZ3JhcGggTFJcbiAgICBBWzEuIFVzZSBsaXZlIGVkaXRvcjxicj4gdG8gY3JlYXRlL2VkaXQ8YnI-ZGlhZ3JhbV0gLS0-XG4gICAgQlsyLiBTdG9yZSBkaWFncmFtPGJyPlVSTCBzb21ld2hlcmVdIC0tPlxuICAgIENbMy4gQ29weSBNZXJtYWlkIGNvZGU8YnI-dG8gcGFnZSBtYXJrZG93biBmaWxlXSAtLT5cbiAgICBEWzQuIEFkZCBjYXB0aW9uXVxuIFxuXG4gICAgY2xhc3NEZWYgYm94IGZpbGw6I2ZmZixzdHJva2U6IzAwMCxzdHJva2Utd2lkdGg6MXB4LGNvbG9yOiMwMDA7XG4gICAgY2xhc3MgQSxCLEMsRCBib3hcbiAgICAiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ" _blank
+
+{{< /mermaid >}}
+
+<!--
+Figure 3. Inline Method steps.
+-->
+图 3. 内嵌方法的步骤
+
+<!--
+The following lists the steps you should follow for adding a diagram using the Inline method:
+
+1. Create your diagram using the live editor. 
+2. Store the diagram URL somewhere for later access.
+3. Copy the mermaid code to the location in your `.md` file where you want the diagram to appear. 
+4. Add a caption below the diagram using Markdown text.
+-->
+下面是使用内嵌方法来添加图表时你要执行的步骤：
+
+1. 使用在线编辑器创建你的图表
+1. 将图表的 URL 保存在某处以便以后访问
+1. 将 Mermaid 代码复制到你的 `.md` 文件中你希望它出现的位置
+1. 使用 Markdown 文本在图表下方为其添加标题
+
+<!--
+A Hugo build runs the Mermaid code and turns it into a diagram.
+-->
+Hugo 在构造（网站）过程中会运行 Mermaid 代码，将其转换为图表。
+
+{{< note >}}
+<!--
+You may find keeping track of diagram URLs is cumbersome. If so, make a note
+in the `.md` file that the Mermaid code is self-documenting. Contributors can
+copy the Mermaid code to and from the live editor for diagram edits.
+-->
+你可能认为记录图表 URL 是一个麻烦的过程。如果确实如此，你可以在 `.md` 文件中作一个记录，
+标明该 Mermaid 代码是自说明的。贡献者可以将 Mermaid 代码复制到在线编辑器中编辑，
+或者将其从在线编辑器中复制出来。
+{{< /note >}}
+
+<!--
+Here is a sample code snippet contained in an `.md` file:    
+-->
+下面是一段包含在某 `.md` 文件中的示例代码片段：
+
+```
+---
+title: 我的文档
+---
+Figure 17 给出从 A 到 B 的一个简单流程。
+这里是其他 markdown 文本
+...
+{{</* mermaid */>}} 
+    graph TB
+    A --> B
+{{</* /mermaid */>}}
+
+图 17. 从 A 到 B
+
+其他文本
+```
+
+{{< note >}}
+<!--
+You must include the Hugo Mermaid shortcode
+tags at the start and end of the Mermaid code block. You should add a diagram
+caption below the diagram. 
+-->
+你必须在 Mermaid 代码块之前和之后分别添加 Hugo Mermaid
+短代码标记，而且你应该在图表之后为其添加图表标题。
+{{< /note >}}
+
+<!--
+For more details on diagram captions, see [How to use captions](#how-to-use-captions).
+-->
+有关添加图表标题的细节，参阅[如何使用标题](#how-to-use-captions)。
+
+<!--
+The following lists advantages of the Inline method:
+
+* Live editor tool. 
+* Easy to copy Mermaid code to and from the live editor and your `.md` file.
+* No need for separate `.svg` image file handling.
+* Content text, diagram code and diagram caption contained in the same `.md` file.
+-->
+使用内嵌方法的好处有：
+
+* 可以直接使用在线编辑器工具
+* 很容易在在线编辑器与你的 `.md` 文件之间来回复制 Mermaid 代码
+* 不需要额外处理 `.svg` 图片文件
+* 内容文字、图表代码和图表标题都位于同一个 `.md` 文件中。
+
+<!--
+You should use the [local](/docs/contribute/new-content/open-a-pr/#preview-locally)
+and Netlify previews to verify the diagram is properly rendered. 
+-->
+你应该使用[本地](/zh-cn/docs/contribute/new-content/open-a-pr/#preview-locally)和 Netlify
+预览来验证图表是可以正常渲染的。
+
+{{< caution >}}
+<!--
+The Mermaid live editor feature set may not support the K8s/website Mermaid feature set. 
+You might see a syntax error or a blank screen after the Hugo build.
+If that is the case, consider using the Mermaid+SVG method. 
+-->
+Mermaid 在线编辑器的功能特性可能不支持 K8s 网站的 Mermaid 特性。
+你可能在 Hugo 构建过程中看到语法错误提示或者空白屏幕。
+如果发生这类情况，可以考虑使用 Mermaid+SVG 方法。
+{{< /caution >}}
+
+### Mermaid+SVG
+
+<!--
+Figure 4 outlines the steps to follow for adding a diagram using the Mermaid+SVG method.
+-->
+图 4 给出的是使用 Mermaid+SVG 方法添加图表所要遵循的步骤：
+
+{{< mermaid >}}
+flowchart LR
+A[1. 使用在线编辑器<br>创建或编辑<br>图表]
+B[2. 将图表的 URL<br>保存到别处]
+C[3. 生成 .svg 文件<br>并将其下载到<br>images/ 目录]
+subgraph w[ ]
+direction TB
+D[4. 使用 figure 短代码<br>来在 .md 文件中<br>引用 .svg 文件] -->
+E[5. 添加图表标题]
+end
+A --> B
+B --> C
+C --> w
+
+    classDef box fill:#fff,stroke:#000,stroke-width:1px,color:#000;
+    class A,B,C,D,E,w box
+
+click A "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgQVsxLiBVc2UgbGl2ZSBlZGl0b3I8YnI-IHRvIGNyZWF0ZS9lZGl0PGJyPmRpYWdyYW1dXG4gICAgQlsyLiBTdG9yZSBkaWFncmFtPGJyPlVSTCBzb21ld2hlcmVdXG4gICAgQ1szLiBHZW5lcmF0ZSAuc3ZnIGZpbGU8YnI-YW5kIGRvd25sb2FkIHRvPGJyPmltYWdlcy8gZm9sZGVyXVxuICAgIHN1YmdyYXBoIHdbIF1cbiAgICBkaXJlY3Rpb24gVEJcbiAgICBEWzQuIFVzZSBmaWd1cmUgc2hvcnRjb2RlPGJyPnRvIHJlZmVyZW5jZSAuc3ZnPGJyPmZpbGUgaW4gcGFnZTxicj4ubWQgZmlsZV0gLS0-XG4gICAgRVs1LiBBZGQgY2FwdGlvbl1cbiAgICBlbmRcbkEgLS0-IEJcbkIgLS0-IENcbkMgLS0-IHdcblxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzIEEsQixDLEQsRSx3IGJveFxuICAgICIsIm1lcm1haWQiOiJ7XG4gIFwidGhlbWVcIjogXCJkZWZhdWx0XCJcbn0iLCJ1cGRhdGVFZGl0b3IiOmZhbHNlLCJhdXRvU3luYyI6dHJ1ZSwidXBkYXRlRGlhZ3JhbSI6dHJ1ZX0" _blank
+
+click B "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgQVsxLiBVc2UgbGl2ZSBlZGl0b3I8YnI-IHRvIGNyZWF0ZS9lZGl0PGJyPmRpYWdyYW1dXG4gICAgQlsyLiBTdG9yZSBkaWFncmFtPGJyPlVSTCBzb21ld2hlcmVdXG4gICAgQ1szLiBHZW5lcmF0ZSAuc3ZnIGZpbGU8YnI-YW5kIGRvd25sb2FkIHRvPGJyPmltYWdlcy8gZm9sZGVyXVxuICAgIHN1YmdyYXBoIHdbIF1cbiAgICBkaXJlY3Rpb24gVEJcbiAgICBEWzQuIFVzZSBmaWd1cmUgc2hvcnRjb2RlPGJyPnRvIHJlZmVyZW5jZSAuc3ZnPGJyPmZpbGUgaW4gcGFnZTxicj4ubWQgZmlsZV0gLS0-XG4gICAgRVs1LiBBZGQgY2FwdGlvbl1cbiAgICBlbmRcbkEgLS0-IEJcbkIgLS0-IENcbkMgLS0-IHdcblxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzIEEsQixDLEQsRSx3IGJveFxuICAgICIsIm1lcm1haWQiOiJ7XG4gIFwidGhlbWVcIjogXCJkZWZhdWx0XCJcbn0iLCJ1cGRhdGVFZGl0b3IiOmZhbHNlLCJhdXRvU3luYyI6dHJ1ZSwidXBkYXRlRGlhZ3JhbSI6dHJ1ZX0" _blank
+
+click C "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgQVsxLiBVc2UgbGl2ZSBlZGl0b3I8YnI-IHRvIGNyZWF0ZS9lZGl0PGJyPmRpYWdyYW1dXG4gICAgQlsyLiBTdG9yZSBkaWFncmFtPGJyPlVSTCBzb21ld2hlcmVdXG4gICAgQ1szLiBHZW5lcmF0ZSAuc3ZnIGZpbGU8YnI-YW5kIGRvd25sb2FkIHRvPGJyPmltYWdlcy8gZm9sZGVyXVxuICAgIHN1YmdyYXBoIHdbIF1cbiAgICBkaXJlY3Rpb24gVEJcbiAgICBEWzQuIFVzZSBmaWd1cmUgc2hvcnRjb2RlPGJyPnRvIHJlZmVyZW5jZSAuc3ZnPGJyPmZpbGUgaW4gcGFnZTxicj4ubWQgZmlsZV0gLS0-XG4gICAgRVs1LiBBZGQgY2FwdGlvbl1cbiAgICBlbmRcbkEgLS0-IEJcbkIgLS0-IENcbkMgLS0-IHdcblxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzIEEsQixDLEQsRSx3IGJveFxuICAgICIsIm1lcm1haWQiOiJ7XG4gIFwidGhlbWVcIjogXCJkZWZhdWx0XCJcbn0iLCJ1cGRhdGVFZGl0b3IiOmZhbHNlLCJhdXRvU3luYyI6dHJ1ZSwidXBkYXRlRGlhZ3JhbSI6dHJ1ZX0" _blank
+
+click D "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgQVsxLiBVc2UgbGl2ZSBlZGl0b3I8YnI-IHRvIGNyZWF0ZS9lZGl0PGJyPmRpYWdyYW1dXG4gICAgQlsyLiBTdG9yZSBkaWFncmFtPGJyPlVSTCBzb21ld2hlcmVdXG4gICAgQ1szLiBHZW5lcmF0ZSAuc3ZnIGZpbGU8YnI-YW5kIGRvd25sb2FkIHRvPGJyPmltYWdlcy8gZm9sZGVyXVxuICAgIHN1YmdyYXBoIHdbIF1cbiAgICBkaXJlY3Rpb24gVEJcbiAgICBEWzQuIFVzZSBmaWd1cmUgc2hvcnRjb2RlPGJyPnRvIHJlZmVyZW5jZSAuc3ZnPGJyPmZpbGUgaW4gcGFnZTxicj4ubWQgZmlsZV0gLS0-XG4gICAgRVs1LiBBZGQgY2FwdGlvbl1cbiAgICBlbmRcbkEgLS0-IEJcbkIgLS0-IENcbkMgLS0-IHdcblxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzIEEsQixDLEQsRSx3IGJveFxuICAgICIsIm1lcm1haWQiOiJ7XG4gIFwidGhlbWVcIjogXCJkZWZhdWx0XCJcbn0iLCJ1cGRhdGVFZGl0b3IiOmZhbHNlLCJhdXRvU3luYyI6dHJ1ZSwidXBkYXRlRGlhZ3JhbSI6dHJ1ZX0" _blank
+
+click E "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgQVsxLiBVc2UgbGl2ZSBlZGl0b3I8YnI-IHRvIGNyZWF0ZS9lZGl0PGJyPmRpYWdyYW1dXG4gICAgQlsyLiBTdG9yZSBkaWFncmFtPGJyPlVSTCBzb21ld2hlcmVdXG4gICAgQ1szLiBHZW5lcmF0ZSAuc3ZnIGZpbGU8YnI-YW5kIGRvd25sb2FkIHRvPGJyPmltYWdlcy8gZm9sZGVyXVxuICAgIHN1YmdyYXBoIHdbIF1cbiAgICBkaXJlY3Rpb24gVEJcbiAgICBEWzQuIFVzZSBmaWd1cmUgc2hvcnRjb2RlPGJyPnRvIHJlZmVyZW5jZSAuc3ZnPGJyPmZpbGUgaW4gcGFnZTxicj4ubWQgZmlsZV0gLS0-XG4gICAgRVs1LiBBZGQgY2FwdGlvbl1cbiAgICBlbmRcbkEgLS0-IEJcbkIgLS0-IENcbkMgLS0-IHdcblxuICAgIGNsYXNzRGVmIGJveCBmaWxsOiNmZmYsc3Ryb2tlOiMwMDAsc3Ryb2tlLXdpZHRoOjFweCxjb2xvcjojMDAwO1xuICAgIGNsYXNzIEEsQixDLEQsRSx3IGJveFxuICAgICIsIm1lcm1haWQiOiJ7XG4gIFwidGhlbWVcIjogXCJkZWZhdWx0XCJcbn0iLCJ1cGRhdGVFZGl0b3IiOmZhbHNlLCJhdXRvU3luYyI6dHJ1ZSwidXBkYXRlRGlhZ3JhbSI6dHJ1ZX0" _blank
+
+
+{{< /mermaid >}}
+
+<!--
+Figure 4. Mermaid+SVG method steps.
+-->
+图 4. Mermaid+SVG 方法的步骤。
+
+<!--
+The following lists the steps you should follow for adding a diagram using the Mermaid+SVG method:
+
+1. Create your diagram using the live editor. 
+2. Store the diagram URL somewhere for later access.
+3. Generate an `.svg` image file for the diagram and download it to the appropriate `images/` folder. 
+4. Use the `{{</* figure */>}}` shortcode to reference the diagram in the `.md` file. 
+5. Add a caption using the `{{</* figure */>}}` shortcode's `caption` parameter.
+-->
+使用 Mermaid+SVG 方法来添加图表时你要遵从的步骤：
+
+1. 使用在线编辑器创建你的图表
+1. 将图表的 URL 保存到某处以便以后访问
+1. 为你的图表生成 `.svg` 文件，并将其下载到合适的 `images/` 目录下
+1. 使用 `{{</* figure */>}}` 短代码在 `.md` 文件中引用该图表
+1. 使用 `{{</* figure */>}}` 短代码的 `caption` 参数为图表设置标题
+
+<!--
+For example, use the live editor to create a diagram called `boxnet`.
+Store the diagram URL somewhere for later access. Generate and download a
+`boxnet.svg` file to the appropriate `../images/` folder. 
+-->
+例如，使用在线编辑器创建一个名为 `boxnet` 的图表。
+将图表的 URL 保存到别处以便以后访问。生成 `boxnet.svg` 文件并将其下载到合适的
+`../images/` 目录下。
+
+<!--
+Use the `{{</* figure */>}}` shortcode in your PR's `.md` file to reference
+the `.svg` image file and add a caption.
+-->
+在你的 PR 中的 `.md` 文件内使用 `{{</* figure */>}}` 短代码来引用
+`.svg` 图片文件，并为之添加标题。
+
+<!--
+```json
+{{</* figure src="/static/images/boxnet.svg" alt="Boxnet figure" class="diagram-large" caption="Figure 14. Boxnet caption" */>}}
+```
+-->
+```json
+{{</* figure src="/static/images/boxnet.svg" alt="Boxnet 示意图" class="diagram-large" caption="图 14. Boxnet 标题" */>}}
+```
+
+<!--
+For more details on diagram captions, see [How to use captions](#how-to-use-captions).
+-->
+关于图表标题的细节，可参阅[如何使用标题](#how-to-use-captions)。
+
+{{< note >}}
+<!--
+The `{{</* figure */>}}` shortcode is the preferred method for adding `.svg` image files
+to your documentation. You can also use the standard markdown image syntax like so:
+`![my boxnet diagram](static/images/boxnet.svg)`.
+And you will need to add a caption below the diagram. 
+-->
+使用 `{{</* figure */>}}` 短代码是向你的文档中添加 `.svg` 图片文件的优选方法。
+你也可以使用标准的 markdown 图片语法，即
+`![my boxnet diagram](static/images/boxnet.svg)`。
+如果是后面这种，则需要在图表下面为其添加标题。
+{{< /note >}}
+
+<!--
+You should add the live editor URL as a comment block in the `.svg` image file using a text editor.
+For example, you would include the following at the beginning of the `.svg` image file:
+-->
+你应该使用文本编辑器以注释块的形式在 `.svg` 图片文件中添加在线编辑器的 URL。
+例如，你应该在 `.svg` 图片文件的开头部分包含下面的内容：
+
+```
+<!-- 要查看或者编辑 Mermaid 代码，可访问下面的 URL：-->
+<!-- https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb ... <URL 的其余部分> -->
+```
+
+<!--
+The following lists advantages of the Mermaid+SVG method:
+
+* Live editor tool.
+* Live editor tool supports the most current Mermaid feature set.  
+* Employ existing K8s/website methods for handling `.svg` image files.
+* Environment doesn't require Mermaid support.
+-->
+使用 Mermaid+SVG 方法的好处有：
+
+* 可以直接使用在线编辑器工具
+* 在线编辑器支持的 Mermaid 特性集合最新
+* 可以利用 K8s 网站用来处理 `.svg` 图片文件的现有方法
+* 工作环境不需要 Mermaid 支持
+
+<!--
+Be sure to check that your diagram renders properly using the
+[local](/docs/contribute/new-content/open-a-pr/#preview-locally)
+and Netlify previews.
+-->
+要使用[本地](/zh-cn/docs/contribute/new-content/open-a-pr/#preview-locally)和
+Netlify 预览来检查你的图表可以正常渲染。
+
+<!--
+### External tool
+
+Figure 5 outlines the steps to follow for adding a diagram using the External Tool method. 
+
+First, use your external tool to create the diagram and save it as an `.svg`
+or `.png` image file. After that, use the same steps as the __Mermaid+SVG__
+method for adding `.svg` image files.
+-->
+### 外部工具
+
+图 5 给出使用外部工具来添加图表时所遵循的步骤。
+
+首先，要使用你的外部工具来创建图表，并将其保存为一个 `.svg` 文件或 `.png` 图片文件。
+之后，使用 __Mermaid+SVG__ 方法中相同的步骤添加 `.svg`（`.png`）文件。
+
+{{< mermaid >}}
+flowchart LR
+
+A[1. 使用外部工具<br>来创建或编辑<br>图表]
+B[2. 如果可能保存<br>图表位置供<br> 其他贡献者访问]
+C[3. 生成 .svg 文件<br>或 .png 文件<br>并将其下载到<br>合适的 images/ 目录]
+
+subgraph w[ ]
+direction TB
+D[4. 使用 figure 短代码<br>在你的 .md 文件中<br>引用该 SVG 或 PNG<br>文件] -->
+E[5. 为图表添加标题]
+end
+A --> B
+B --> C
+C --> w
+
+    classDef box fill:#fff,stroke:#000,stroke-width:1px,color:#000;
+    class A,B,C,D,E,w box
+
+click A "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgQVsxLiBVc2UgZXh0ZXJuYWw8YnI-dG9vbCB0byBjcmVhdGUvZWRpdDxicj5kaWFncmFtXVxuICAgIEJbMi4gSWYgcG9zc2libGUsIHNhdmU8YnI-ZGlhZ3JhbSBjb29yZGluYXRlczxicj5mb3IgY29udHJpYnV0b3I8YnI-YWNjZXNzXVxuICAgIENbMy4gR2VuZXJhdGUgLnN2ZyA8YnI-b3IucG5nIGZpbGU8YnI-YW5kIGRvd25sb2FkIHRvPGJyPmFwcHJvcHJpYXRlPGJyPmltYWdlcy8gZm9sZGVyXVxuICAgIHN1YmdyYXBoIHdbIF1cbiAgICBkaXJlY3Rpb24gVEJcbiAgICBEWzQuIFVzZSBmaWd1cmUgc2hvcnRjb2RlPGJyPnRvIHJlZmVyZW5jZSBzdmcgb3I8YnI-cG5nIGZpbGUgaW48YnI-cGFnZSAubWQgZmlsZV0gLS0-XG4gICAgRVs1LiBBZGQgY2FwdGlvbl1cbiAgICBlbmRcbiAgICBBIC0tPiBCXG4gICAgQiAtLT4gQ1xuICAgIEMgLS0-IHdcbiAgICBjbGFzc0RlZiBib3ggZmlsbDojZmZmLHN0cm9rZTojMDAwLHN0cm9rZS13aWR0aDoxcHgsY29sb3I6IzAwMDtcbiAgICBjbGFzcyBBLEIsQyxELEUsdyBib3hcbiAgICAiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ"
+
+click B "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgQVsxLiBVc2UgZXh0ZXJuYWw8YnI-dG9vbCB0byBjcmVhdGUvZWRpdDxicj5kaWFncmFtXVxuICAgIEJbMi4gSWYgcG9zc2libGUsIHNhdmU8YnI-ZGlhZ3JhbSBjb29yZGluYXRlczxicj5mb3IgY29udHJpYnV0b3I8YnI-YWNjZXNzXVxuICAgIENbMy4gR2VuZXJhdGUgLnN2ZyA8YnI-b3IucG5nIGZpbGU8YnI-YW5kIGRvd25sb2FkIHRvPGJyPmFwcHJvcHJpYXRlPGJyPmltYWdlcy8gZm9sZGVyXVxuICAgIHN1YmdyYXBoIHdbIF1cbiAgICBkaXJlY3Rpb24gVEJcbiAgICBEWzQuIFVzZSBmaWd1cmUgc2hvcnRjb2RlPGJyPnRvIHJlZmVyZW5jZSBzdmcgb3I8YnI-cG5nIGZpbGUgaW48YnI-cGFnZSAubWQgZmlsZV0gLS0-XG4gICAgRVs1LiBBZGQgY2FwdGlvbl1cbiAgICBlbmRcbiAgICBBIC0tPiBCXG4gICAgQiAtLT4gQ1xuICAgIEMgLS0-IHdcbiAgICBjbGFzc0RlZiBib3ggZmlsbDojZmZmLHN0cm9rZTojMDAwLHN0cm9rZS13aWR0aDoxcHgsY29sb3I6IzAwMDtcbiAgICBjbGFzcyBBLEIsQyxELEUsdyBib3hcbiAgICAiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ"
+
+click C "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgQVsxLiBVc2UgZXh0ZXJuYWw8YnI-dG9vbCB0byBjcmVhdGUvZWRpdDxicj5kaWFncmFtXVxuICAgIEJbMi4gSWYgcG9zc2libGUsIHNhdmU8YnI-ZGlhZ3JhbSBjb29yZGluYXRlczxicj5mb3IgY29udHJpYnV0b3I8YnI-YWNjZXNzXVxuICAgIENbMy4gR2VuZXJhdGUgLnN2ZyA8YnI-b3IucG5nIGZpbGU8YnI-YW5kIGRvd25sb2FkIHRvPGJyPmFwcHJvcHJpYXRlPGJyPmltYWdlcy8gZm9sZGVyXVxuICAgIHN1YmdyYXBoIHdbIF1cbiAgICBkaXJlY3Rpb24gVEJcbiAgICBEWzQuIFVzZSBmaWd1cmUgc2hvcnRjb2RlPGJyPnRvIHJlZmVyZW5jZSBzdmcgb3I8YnI-cG5nIGZpbGUgaW48YnI-cGFnZSAubWQgZmlsZV0gLS0-XG4gICAgRVs1LiBBZGQgY2FwdGlvbl1cbiAgICBlbmRcbiAgICBBIC0tPiBCXG4gICAgQiAtLT4gQ1xuICAgIEMgLS0-IHdcbiAgICBjbGFzc0RlZiBib3ggZmlsbDojZmZmLHN0cm9rZTojMDAwLHN0cm9rZS13aWR0aDoxcHgsY29sb3I6IzAwMDtcbiAgICBjbGFzcyBBLEIsQyxELEUsdyBib3hcbiAgICAiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ"
+
+click D "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgQVsxLiBVc2UgZXh0ZXJuYWw8YnI-dG9vbCB0byBjcmVhdGUvZWRpdDxicj5kaWFncmFtXVxuICAgIEJbMi4gSWYgcG9zc2libGUsIHNhdmU8YnI-ZGlhZ3JhbSBjb29yZGluYXRlczxicj5mb3IgY29udHJpYnV0b3I8YnI-YWNjZXNzXVxuICAgIENbMy4gR2VuZXJhdGUgLnN2ZyA8YnI-b3IucG5nIGZpbGU8YnI-YW5kIGRvd25sb2FkIHRvPGJyPmFwcHJvcHJpYXRlPGJyPmltYWdlcy8gZm9sZGVyXVxuICAgIHN1YmdyYXBoIHdbIF1cbiAgICBkaXJlY3Rpb24gVEJcbiAgICBEWzQuIFVzZSBmaWd1cmUgc2hvcnRjb2RlPGJyPnRvIHJlZmVyZW5jZSBzdmcgb3I8YnI-cG5nIGZpbGUgaW48YnI-cGFnZSAubWQgZmlsZV0gLS0-XG4gICAgRVs1LiBBZGQgY2FwdGlvbl1cbiAgICBlbmRcbiAgICBBIC0tPiBCXG4gICAgQiAtLT4gQ1xuICAgIEMgLS0-IHdcbiAgICBjbGFzc0RlZiBib3ggZmlsbDojZmZmLHN0cm9rZTojMDAwLHN0cm9rZS13aWR0aDoxcHgsY29sb3I6IzAwMDtcbiAgICBjbGFzcyBBLEIsQyxELEUsdyBib3hcbiAgICAiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ"
+
+click E "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZmxvd2NoYXJ0IExSXG4gICAgQVsxLiBVc2UgZXh0ZXJuYWw8YnI-dG9vbCB0byBjcmVhdGUvZWRpdDxicj5kaWFncmFtXVxuICAgIEJbMi4gSWYgcG9zc2libGUsIHNhdmU8YnI-ZGlhZ3JhbSBjb29yZGluYXRlczxicj5mb3IgY29udHJpYnV0b3I8YnI-YWNjZXNzXVxuICAgIENbMy4gR2VuZXJhdGUgLnN2ZyA8YnI-b3IucG5nIGZpbGU8YnI-YW5kIGRvd25sb2FkIHRvPGJyPmFwcHJvcHJpYXRlPGJyPmltYWdlcy8gZm9sZGVyXVxuICAgIHN1YmdyYXBoIHdbIF1cbiAgICBkaXJlY3Rpb24gVEJcbiAgICBEWzQuIFVzZSBmaWd1cmUgc2hvcnRjb2RlPGJyPnRvIHJlZmVyZW5jZSBzdmcgb3I8YnI-cG5nIGZpbGUgaW48YnI-cGFnZSAubWQgZmlsZV0gLS0-XG4gICAgRVs1LiBBZGQgY2FwdGlvbl1cbiAgICBlbmRcbiAgICBBIC0tPiBCXG4gICAgQiAtLT4gQ1xuICAgIEMgLS0-IHdcbiAgICBjbGFzc0RlZiBib3ggZmlsbDojZmZmLHN0cm9rZTojMDAwLHN0cm9rZS13aWR0aDoxcHgsY29sb3I6IzAwMDtcbiAgICBjbGFzcyBBLEIsQyxELEUsdyBib3hcbiAgICAiLCJtZXJtYWlkIjoie1xuICBcInRoZW1lXCI6IFwiZGVmYXVsdFwiXG59IiwidXBkYXRlRWRpdG9yIjpmYWxzZSwiYXV0b1N5bmMiOnRydWUsInVwZGF0ZURpYWdyYW0iOmZhbHNlfQ"
+
+
+{{< /mermaid >}}
+
+<!--
+Figure 5. External Tool method steps
+-->
+图 5. 外部工具方法步骤.
+
+<!--
+The following lists the steps you should follow for adding a diagram using the External Tool method:
+
+1. Use your external tool to create a diagram. 
+2. Save the diagram coordinates for contributor access. For example, your tool
+   may offer a link to the diagram image, or you could place the source code
+   file, such as an `.xml` file, in a public repository for later contributor access.
+3. Generate and save the diagram as an `.svg` or `.png` image file.
+   Download this file to the appropriate `../images/` folder.
+4. Use the `{{</* figure */>}}` shortcode to reference the diagram in the `.md` file.
+5. Add a caption using the `{{</* figure */>}}` shortcode's `caption` parameter.
+-->
+使用外部工具方法来添加图表时，你要遵从的步骤如下：
+
+1. 使用你的外部工具来创建图表。
+1. 将图表的位置保存起来供其他贡献者访问。例如，你的工具可能提供一个指向图表的链接，
+   或者你可以将源码文件（例如一个 `.xml` 文件）放置到一个公开的仓库，
+   以便其他贡献者访问。
+1. 生成图表并将其下载为 `.svg` 或 `.png` 图片文件，保存到合适的 `../images/` 目录下。
+1. 使用 `{{</* figure */>}}` 短代码从 `.md` 文件中引用该图表。
+5. 使用 `{{</* figure */>}}` 短代码的 `caption` 参数为图表设置标题。
+
+<!--
+Here is the `{{</* figure */>}}` shortcode for the `images/apple.svg` diagram: 
+-->
+下面是一个用于 `images/apple.svg` 图表的 `{{</* figure */>}}` 短代码：
+
+<!--
+```text
+{{</* figure src="/static/images/apple.svg" alt="red-apple-figure" class="diagram-large" caption="Figure 9. A Big Red Apple" */>}} 
+```
+-->
+```text
+{{</* figure src="/static/images/apple.svg" alt="red-apple-figure" class="diagram-large" caption="图 9. 一个大红苹果" */>}} 
+```
+
+<!--
+If your external drawing tool permits:
+
+* You can incorporate multiple `.svg` or `.png` logos, icons and images into your diagram.
+  However, make sure you observe copyright and follow the Kubernetes documentation
+  [guidelines](/docs/contribute/style/content-guide/) on the use of third party content.
+* You should save the diagram source coordinates for later contributor access.
+  For example, your tool may offer a link to the diagram image, or you could
+  place the source code file, such as an `.xml` file, somewhere for contributor access.
+-->
+如果你的外部绘图工具支持：
+
+* 你可以将多个 `.svg` 或 `.png` 商标、图标或图片整合到你的图表中。
+  不过，你需要确保你查看了版权并遵守了 Kubernetes 文档关于使用第三方内容的
+  [指南](/zh-cn/docs/contribute/style/content-guide/)。
+* 你应该将图表的源位置保存起来，以便其他贡献者访问。
+  例如，你的工具可能提供指向图表文件的链接，或者你应该将源代码文件
+  （例如一个 `.xml` 文件）放到某处以便其他贡献者访问。
+
+<!--
+For more information on K8s and CNCF logos and images, check out
+[CNCF Artwork](https://github.com/cncf/artwork).
+-->
+关于 K8s 和 CNCF 商标与图片的详细信息，可参阅 [CNCF Artwork](https://github.com/cncf/artwork)。
+
+<!--
+The following lists advantages of the External Tool method: 
+
+* Contributor familiarity with external tool.
+* Diagrams require more detail than what Mermaid can offer.
+
+Don't forget to check that your diagram renders correctly using the
+[local](/docs/contribute/new-content/open-a-pr/#preview-locally) and Netlify previews.
+-->
+使用外部工具的好处有：
+
+* 贡献者对外部工具更为熟悉
+* 图表可能需要 Mermaid 所无法提供的细节
+
+不要忘记使用[本地](/zh-cn/docs/contribute/new-content/open-a-pr/#preview-locally)
+和 Netlify 预览来检查你的图表可以正常渲染。
+
+<!--
+## Examples
+
+This section shows several examples of Mermaid diagrams. 
+-->
+## 示例
+
+本节给出 Mermaid 的若干样例。
+
+{{< note >}}
+<!--
+The code block examples omit the Hugo Mermaid
+shortcode tags. This allows you to copy the code block into the live editor
+to experiment on your own.
+Note that the live editor doesn't recognize Hugo shortcodes. 
+-->
+代码块示例中忽略了 Hugo Mermaid 短代码标记。
+这样，你就可以将这些代码段复制到在线编辑器中自行实验。
+注意，在线编辑器无法识别 Hugo 短代码。
+{{< /note >}}
+
+<!--
+### Example 1 - Pod topology spread constraints
+
+Figure 6 shows the diagram appearing in the
+[Pod topology pread constraints](/docs/concepts/scheduling-eviction/topology-spread-constraints/#node-labels)
+page.
+-->
+### 示例 1 - Pod 拓扑分布约束
+
+图 6 展示的是 [Pod 拓扑分布约束](/zh-cn/docs/concepts/scheduling-eviction/topology-spread-constraints/#node-labels)
+页面所出现的图表。
+
+{{< mermaid >}}
+    graph TB
+    subgraph "zoneB"
+    n3(Node3)
+    n4(Node4)
+    end
+    subgraph "zoneA"
+    n1(Node1)
+    n2(Node2)
+    end
+    
+    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+    class n1,n2,n3,n4 k8s;
+    class zoneA,zoneB cluster;
+
+click n3 "https://mermaid-js.github.io/mermaid-live-editor/edit/#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" _blank
+
+click n4 "https://mermaid-js.github.io/mermaid-live-editor/edit/#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" _blank
+
+click n1 "https://mermaid-js.github.io/mermaid-live-editor/edit/#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" _blank
+
+click n2 "https://mermaid-js.github.io/mermaid-live-editor/edit/#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" _blank
+
+{{< /mermaid >}}
+
+<!--
+Figure 6. Pod Topology Spread Constraints.
+
+Code block:
+-->
+图 6. Pod 拓扑分布约束
+
+代码块：
+
+``` 
+graph TB
+   subgraph "zoneB"
+       n3(Node3)
+       n4(Node4)
+   end
+   subgraph "zoneA"
+       n1(Node1)
+       n2(Node2)
+   end
+ 
+   classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+   classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+   classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+   class n1,n2,n3,n4 k8s;
+   class zoneA,zoneB cluster;
+```
+
+<!--
+### Example 2 - Ingress
+
+Figure 7 shows the diagram appearing in the [What is Ingress](/docs/concepts/services-networking/ingress/#what-is-ingress) page.
+-->
+### 示例 2 - Ingress
+
+图 7 显示的是 [Ingress 是什么](/zh-cn/docs/concepts/services-networking/ingress/#what-is-ingress)
+页面所出现的图表。
+
+{{< mermaid >}}
+graph LR;
+client([客户端])-. Ingress 所管理的 <br> 负载均衡器 .->ingress[Ingress];
+ingress-->|路由规则|service[服务];
+subgraph cluster
+ingress;
+service-->pod1[Pod];
+service-->pod2[Pod];
+end
+classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+class ingress,service,pod1,pod2 k8s;
+class client plain;
+class cluster cluster;
+
+click client "https://mermaid-js.github.io/mermaid-live-editor/edit/#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" _blank
+
+click ingress "https://mermaid-js.github.io/mermaid-live-editor/edit/#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" _blank
+
+click service "https://mermaid-js.github.io/mermaid-live-editor/edit/#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" _blank
+
+click pod1 "https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiZ3JhcGggIExSXG4gIGNsaWVudChbY2xpZW50XSktLiBJbmdyZXNzLW1hbmFnZWQgPGJyPiBsb2FkIGJhbGFuY2VyIC4tPmluZ3Jlc3NbSW5ncmVzc107XG4gIGluZ3Jlc3MtLT58cm91dGluZyBydWxlfHNlcnZpY2VbU2VydmljZV07XG4gIHN1YmdyYXBoIGNsdXN0ZXJcbiAgaW5ncmVzcztcbiAgc2VydmljZS0tPnBvZDFbUG9kXTtcbiAgc2VydmljZS0tPnBvZDJbUG9kXTtcbiAgZW5kXG4gIGNsYXNzRGVmIHBsYWluIGZpbGw6I2RkZCxzdHJva2U6I2ZmZixzdHJva2Utd2lkdGg6NHB4LGNvbG9yOiMwMDA7XG4gIGNsYXNzRGVmIGs4cyBmaWxsOiMzMjZjZTUsc3Ryb2tlOiNmZmYsc3Ryb2tlLXdpZHRoOjRweCxjb2xvcjojZmZmO1xuICBjbGFzc0RlZiBjbHVzdGVyIGZpbGw6I2ZmZixzdHJva2U6I2JiYixzdHJva2Utd2lkdGg6MnB4LGNvbG9yOiMzMjZjZTU7XG4gIGNsYXNzIGluZ3Jlc3Msc2VydmljZSxwb2QxLHBvZDIgazhzO1xuICBjbGFzcyBjbGllbnQgcGxhaW47XG4gIGNsYXNzIGNsdXN0ZXIgY2x1c3RlcjtcbiIsIm1lcm1haWQiOiJ7XG4gIFwidGhlbWVcIjogXCJkZWZhdWx0XCJcbn0iLCJ1cGRhdGVFZGl0b3IiOmZhbHNlLCJhdXRvU3luYyI6dHJ1ZSwidXBkYXRlRGlhZ3JhbSI6ZmFsc2V9" _blank
+
+click pod2 "https://mermaid-js.github.io/mermaid-live-editor/edit/#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" _blank
+
+
+{{< /mermaid >}}
+
+<!--
+Figure 7. Ingress
+
+Code block:
+-->
+图 7. Ingress
+
+代码块：
+
+```mermaid
+graph LR;
+ client([客户端])-. Ingress 所管理的<br>负载均衡器 .->ingress[Ingress];
+ ingress-->|路由规则|service[服务];
+ subgraph cluster
+ ingress;
+ service-->pod1[Pod];
+ service-->pod2[Pod];
+ end
+ classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+ classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+ classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+ class ingress,service,pod1,pod2 k8s;
+ class client plain;
+ class cluster cluster;
+```
+
+<!--
+### Example 3 - K8s system flow
+
+Figure 8 depicts a Mermaid sequence diagram showing the system flow between
+K8s components to start a container. 
+-->
+### 示例 3 - K8s 系统流程
+
+图 8 给出的是一个 Mermaid 时序图，展示启动容器时 K8s 组件间的控制流。
+
+{{< figure src="/zh-cn/docs/images/diagram-guide-example-3.svg" alt="K8s system flow diagram" class="diagram-large" caption="Figure 8. K8s system flow diagram" link="https://mermaid-js.github.io/mermaid-live-editor/edit/#eyJjb2RlIjoiJSV7aW5pdDp7XCJ0aGVtZVwiOlwibmV1dHJhbFwifX0lJVxuc2VxdWVuY2VEaWFncmFtXG4gICAgYWN0b3IgbWVcbiAgICBwYXJ0aWNpcGFudCBhcGlTcnYgYXMgY29udHJvbCBwbGFuZTxicj48YnI-YXBpLXNlcnZlclxuICAgIHBhcnRpY2lwYW50IGV0Y2QgYXMgY29udHJvbCBwbGFuZTxicj48YnI-ZXRjZCBkYXRhc3RvcmVcbiAgICBwYXJ0aWNpcGFudCBjbnRybE1nciBhcyBjb250cm9sIHBsYW5lPGJyPjxicj5jb250cm9sbGVyPGJyPm1hbmFnZXJcbiAgICBwYXJ0aWNpcGFudCBzY2hlZCBhcyBjb250cm9sIHBsYW5lPGJyPjxicj5zY2hlZHVsZXJcbiAgICBwYXJ0aWNpcGFudCBrdWJlbGV0IGFzIG5vZGU8YnI-PGJyPmt1YmVsZXRcbiAgICBwYXJ0aWNpcGFudCBjb250YWluZXIgYXMgbm9kZTxicj48YnI-Y29udGFpbmVyPGJyPnJ1bnRpbWVcbiAgICBtZS0-PmFwaVNydjogMS4ga3ViZWN0bCBjcmVhdGUgLWYgcG9kLnlhbWxcbiAgICBhcGlTcnYtLT4-ZXRjZDogMi4gc2F2ZSBuZXcgc3RhdGVcbiAgICBjbnRybE1nci0-PmFwaVNydjogMy4gY2hlY2sgZm9yIGNoYW5nZXNcbiAgICBzY2hlZC0-PmFwaVNydjogNC4gd2F0Y2ggZm9yIHVuYXNzaWduZWQgcG9kcyhzKVxuICAgIGFwaVNydi0-PnNjaGVkOiA1LiBub3RpZnkgYWJvdXQgcG9kIHcgbm9kZW5hbWU9XCIgXCJcbiAgICBzY2hlZC0-PmFwaVNydjogNi4gYXNzaWduIHBvZCB0byBub2RlXG4gICAgYXBpU3J2LS0-PmV0Y2Q6IDcuIHNhdmUgbmV3IHN0YXRlXG4gICAga3ViZWxldC0-PmFwaVNydjogOC4gbG9vayBmb3IgbmV3bHkgYXNzaWduZWQgcG9kKHMpXG4gICAgYXBpU3J2LT4-a3ViZWxldDogOS4gYmluZCBwb2QgdG8gbm9kZVxuICAgIGt1YmVsZXQtPj5jb250YWluZXI6IDEwLiBzdGFydCBjb250YWluZXJcbiAgICBrdWJlbGV0LT4-YXBpU3J2OiAxMS4gdXBkYXRlIHBvZCBzdGF0dXNcbiAgICBhcGlTcnYtLT4-ZXRjZDogMTIuIHNhdmUgbmV3IHN0YXRlIiwibWVybWFpZCI6IntcbiAgXCJ0aGVtZVwiOiBcImRlZmF1bHRcIlxufSIsInVwZGF0ZUVkaXRvciI6ZmFsc2UsImF1dG9TeW5jIjp0cnVlLCJ1cGRhdGVEaWFncmFtIjp0cnVlfQ" >}}
+
+
+<!--
+Code block:
+-->
+代码段：
+
+```
+%%{init:{"theme":"neutral"}}%%
+sequenceDiagram
+    actor me
+    participant apiSrv as 控制面<br><br>api-server
+    participant etcd as 控制面<br><br>etcd 数据存储
+    participant cntrlMgr as 控制面<br><br>控制器管理器
+    participant sched as 控制面<br><br>调度器
+    participant kubelet as 节点<br><br>kubelet
+    participant container as 节点<br><br>容器运行时
+    me->>apiSrv: 1. kubectl create -f pod.yaml
+    apiSrv-->>etcd: 2. 保存新状态
+    cntrlMgr->>apiSrv: 3. 检查变更
+    sched->>apiSrv: 4. 监视未分派的 Pod(s)
+    apiSrv->>sched: 5. 通知 nodename=" " 的 Pod
+    sched->>apiSrv: 6. 指派 Pod 到节点
+    apiSrv-->>etcd: 7. 保存新状态
+    kubelet->>apiSrv: 8. 查询新指派的 Pod(s)
+    apiSrv->>kubelet: 9. 将 Pod 绑定到节点
+    kubelet->>container: 10. 启动容器
+    kubelet->>apiSrv: 11. 更新 Pod 状态
+    apiSrv-->>etcd: 12. 保存新状态
+```
+
+<!--
+## How to style diagrams
+-->
+## 如何设置图表样式
+
+<!--
+You can style one or more diagram elements using well-known CSS nomenclature.
+You accomplish this using two types of statements in the Mermaid code.
+
+* `classDef` defines a class of style attributes.
+* `class` defines one or more elements to apply the class to. 
+-->
+你可以使用大家都熟悉的 CSS 术语来为一个或多个图表元素设置渲染样式。
+你可以在 Mermaid 代码中使用两种类型的语句来完成这一工作：
+
+* `classDef` 定义一类样式属性；
+* `class` 指定 class 所适用的一种或多种元素。
+
+<!--
+In the code for
+[figure 7](https://mermaid-js.github.io/mermaid-live-editor/edit/#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),
+you can see examples of both.
+-->
+在[图 7](https://mermaid-js.github.io/mermaid-live-editor/edit/#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)
+中，你可以看到这两种示例。
+
+<!--
+```
+classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff; // defines style for the k8s class
+class ingress,service,pod1,pod2 k8s; // k8s class is applied to elements ingress, service, pod1 and pod2.
+```
+-->
+```
+classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff; // 定义 k8s 类的样式
+class ingress,service,pod1,pod2 k8s; // k8s 类会应用到 ingress, service, pod1 and pod2 这些元素之上
+```
+
+<!--
+You can include one or multiple `classDef` and `class` statements in your diagram.
+You can also use the official K8s `#326ce5` hex color code for K8s components in your diagram.
+
+For more information on styling and classes, see
+[Mermaid Styling and classes docs](https://mermaid-js.github.io/mermaid/#/flowchart?id=styling-and-classes).
+-->
+你可以在你的图表中包含一个或多个 `classDef` 和 `class` 语句。
+你也可以在你的图表中为 k8s 组件使用官方的 K8s `#326ce5` 十六进制颜色代码。
+
+关于样式设置和类的更多信息，可参阅
+[Mermaid Styling and classes docs](https://mermaid-js.github.io/mermaid/#/flowchart?id=styling-and-classes)。
+
+<!--
+## How to use captions
+
+A caption is a brief description of a diagram. A title or a short description
+of the diagram are examples of captions. Captions aren't meant to replace
+explanatory text you have in your documentation. Rather, they serve as a
+"context link" between that text and your diagram. 
+-->
+## 如何使用标题   {#how-to-use-captions}
+
+<!--
+A caption is a brief description of a diagram. A title or a short description
+of the diagram are examples of captions. Captions aren't meant to replace
+explanatory text you have in your documentation. Rather, they serve as a
+"context link" between that text and your diagram. 
+-->
+标题用来为图表提供简要的描述。标题或短描述都可以作为图表标题。
+标题不是用来替换你在文档中要提供的解释性文字。
+相反，它们是用来在文字与图表之间建立“语境连接”的。
+
+<!--
+The combination of some text and a diagram tied together with a caption help
+provide a concise representation of the information you wish to convey to the
+user. 
+
+Without captions, you are asking the user to scan the text above or below the
+diagram to figure out a meaning. This can be frustrating for the user. 
+-->
+将一些文字和带标题的图表组合到一起，可以为你所想要向用户传递的信息提供一种更为精确的表达。
+
+没有标题的话，用户就必须在图表前后的文字中来回阅读，从而了解其含义。
+这会让用户感觉到很沮丧。
+
+<!--
+Figure 9 lays out the three components for proper captioning: diagram, diagram
+caption and the diagram referral.
+-->
+图 9 给出合适的标题所需要具备的三要素：图表、图表标题和图表引用。
+
+{{< mermaid >}}
+flowchart
+A[图表本身<br><br>内嵌 Mermaid 或<br>SVG 图片文件]
+B[图表标题<br><br>添加图表编号和<br>标题文字]
+C[图表引用<br><br>在文字中用图表<br>编号引用图表]
+
+    classDef box fill:#fff,stroke:#000,stroke-width:1px,color:#000;
+    class A,B,C box
+
+click A "https://mermaid-js.github.io/mermaid-live-editor/edit#eyJjb2RlIjoiZmxvd2NoYXJ0XG4gICAgQVtEaWFncmFtPGJyPjxicj5JbmxpbmUgTWVybWFpZCBvcjxicj5TVkcgaW1hZ2UgZmlsZXNdXG4gICAgQltEaWFncmFtIENhcHRpb248YnI-PGJyPkFkZCBGaWd1cmUgTnVtYmVyLiBhbmQ8YnI-Q2FwdGlvbiBUZXh0XVxuICAgIENbRGlhZ3JhbSBSZWZlcnJhbDxicj48YnI-UmVmZXJlbmVuY2UgRmlndXJlIE51bWJlcjxicj5pbiB0ZXh0XVxuXG4gICAgY2xhc3NEZWYgYm94IGZpbGw6I2ZmZixzdHJva2U6IzAwMCxzdHJva2Utd2lkdGg6MXB4LGNvbG9yOiMwMDA7XG4gICAgY2xhc3MgQSxCLEMgYm94IiwibWVybWFpZCI6IntcbiAgXCJ0aGVtZVwiOiBcImRlZmF1bHRcIlxufSIsInVwZGF0ZUVkaXRvciI6ZmFsc2UsImF1dG9TeW5jIjp0cnVlLCJ1cGRhdGVEaWFncmFtIjpmYWxzZX0" _blank
+
+click B "https://mermaid-js.github.io/mermaid-live-editor/edit#eyJjb2RlIjoiZmxvd2NoYXJ0XG4gICAgQVtEaWFncmFtPGJyPjxicj5JbmxpbmUgTWVybWFpZCBvcjxicj5TVkcgaW1hZ2UgZmlsZXNdXG4gICAgQltEaWFncmFtIENhcHRpb248YnI-PGJyPkFkZCBGaWd1cmUgTnVtYmVyLiBhbmQ8YnI-Q2FwdGlvbiBUZXh0XVxuICAgIENbRGlhZ3JhbSBSZWZlcnJhbDxicj48YnI-UmVmZXJlbmVuY2UgRmlndXJlIE51bWJlcjxicj5pbiB0ZXh0XVxuXG4gICAgY2xhc3NEZWYgYm94IGZpbGw6I2ZmZixzdHJva2U6IzAwMCxzdHJva2Utd2lkdGg6MXB4LGNvbG9yOiMwMDA7XG4gICAgY2xhc3MgQSxCLEMgYm94IiwibWVybWFpZCI6IntcbiAgXCJ0aGVtZVwiOiBcImRlZmF1bHRcIlxufSIsInVwZGF0ZUVkaXRvciI6ZmFsc2UsImF1dG9TeW5jIjp0cnVlLCJ1cGRhdGVEaWFncmFtIjpmYWxzZX0" _blank
+
+click C "https://mermaid-js.github.io/mermaid-live-editor/edit#eyJjb2RlIjoiZmxvd2NoYXJ0XG4gICAgQVtEaWFncmFtPGJyPjxicj5JbmxpbmUgTWVybWFpZCBvcjxicj5TVkcgaW1hZ2UgZmlsZXNdXG4gICAgQltEaWFncmFtIENhcHRpb248YnI-PGJyPkFkZCBGaWd1cmUgTnVtYmVyLiBhbmQ8YnI-Q2FwdGlvbiBUZXh0XVxuICAgIENbRGlhZ3JhbSBSZWZlcnJhbDxicj48YnI-UmVmZXJlbmVuY2UgRmlndXJlIE51bWJlcjxicj5pbiB0ZXh0XVxuXG4gICAgY2xhc3NEZWYgYm94IGZpbGw6I2ZmZixzdHJva2U6IzAwMCxzdHJva2Utd2lkdGg6MXB4LGNvbG9yOiMwMDA7XG4gICAgY2xhc3MgQSxCLEMgYm94IiwibWVybWFpZCI6IntcbiAgXCJ0aGVtZVwiOiBcImRlZmF1bHRcIlxufSIsInVwZGF0ZUVkaXRvciI6ZmFsc2UsImF1dG9TeW5jIjp0cnVlLCJ1cGRhdGVEaWFncmFtIjpmYWxzZX0" _blank
+
+{{< /mermaid >}}
+
+<!--
+Figure 9. Caption Components.
+-->
+图 9. 标题要素
+
+{{< note >}}
+<!--
+You should always add a caption to each diagram in your documentation.
+-->
+你应该总是为文档中的每个图表添加标题。
+{{< /note >}}
+
+<!--
+**Diagram**
+
+The `Mermaid+SVG` and `External Tool` methods generate `.svg` image files.
+
+Here is the `{{</* figure */>}}` shortcode for the diagram defined in an
+`.svg` image file saved to `/images/docs/components-of-kubernetes.svg`:
+
+```none
+{{</* figure src="/images/docs/components-of-kubernetes.svg" alt="Kubernetes pod running inside a cluster" class="diagram-large" caption="Figure 4. Kubernetes Architecture Components */>}}
+```
+-->
+**图表本身**
+
+Mermaid+SVG 和外部工具方法都会生成 `.svg` 图片文件。
+
+下面的 `{{</* figure */>}}` 短代码是针对定义在保存于 
+`/images/docs/components-of-kubernetes.svg` 中的 `.svg` 图片文件的。
+
+```none
+{{</* figure src="/images/docs/components-of-kubernetes.svg" alt="运行于集群中的 Kubernetes Pod" class="diagram-large" caption="图 4. Kubernetes 结构组件" */>}}
+```
+
+<!--
+You should pass the `src`, `alt`, `class` and `caption` values into the
+`{{</* figure */>}}` shortcode. You can adjust the size of the diagram using
+`diagram-large`, `diagram-medium` and `diagram-small` classes.  
+-->
+你需要将 `src`、`alt`、`class` 和 `caption` 取值传递给 `{{</* figure */>}}` 短代码。
+你可以使用 `diagram-large`、`diagram-medium` 和 `diagram-small` 类来调整图表的尺寸。
+
+{{< note >}}
+<!--
+Diagrams created using the `Inline` method don't use the `{{</* figure */>}}`
+shortcode. The Mermaid code defines how the diagram will render on your page.
+-->
+使用内嵌方法来创建的图表不使用 `{{</* figure */>}}` 短代码。
+Mermaid 代码定义该图表将如何在页面上渲染。
+{{< /note >}}
+
+<!--
+See [Methods for creating diagrams](#methods-for-creating-diagrams)
+for more information on the different methods for creating diagrams.
+-->
+关于创建图表的不同方法，可参阅[创建图表的方法](#methods-for-creating-diagrams)。
+
+<!--
+**Diagram Caption**
+
+Next, add a diagram caption.
+
+If you define your diagram in an `.svg` image file, then you should use the
+`{{</* figure */>}}` shortcode's `caption` parameter.
+-->
+**图表标题**
+
+接下来，添加图表标题。
+
+如果你使用 `.svg` 图片文件来定义你的图表，你就需要使用 `{{</* figure */>}}`
+短代码的 `caption` 参数。
+
+<!--
+```none
+{{</* figure src="/images/docs/components-of-kubernetes.svg" alt="Kubernetes pod running inside a cluster" class="diagram-large" caption="Figure 4. Kubernetes Architecture Components" */>}}
+```
+-->
+```none
+{{</* figure src="/images/docs/components-of-kubernetes.svg" alt="运行于集群中的 Kubernetes Pod" class="diagram-large" caption="图 4. Kubernetes 架构组件" */>}}
+```
+
+<!--
+If you define your diagram using inline Mermaid code, then you should use Markdown text.
+
+```none
+Figure 4. Kubernetes Architecture Components
+```
+-->
+如果你使用内嵌的 Mermaid 代码来定义图表，则你需要使用 Markdown 文本来添加标题。
+
+```none
+图 4. Kubernetes 架构组件
+```
+
+<!--
+The following lists several items to consider when adding diagram captions: 
+
+* Use the `{{</* figure */>}}` shortcode to add a diagram caption for `Mermaid+SVG`
+  and `External Tool` diagrams. 
+* Use simple Markdown text to add a diagram caption for the `Inline` method.
+* Prepend your diagram caption with `Figure NUMBER.`. You must use `Figure`
+  and the number must be unique for each diagram in your documentation page.
+  Add a period after the number.  
+* Add your diagram caption text after the `Figure NUMBER.` on the same line.
+  You must puncuate the caption with a period. Keep the caption text short.
+* Position your diagram caption __BELOW__ your diagram.
+-->
+添加图表标题时需要考虑的问题：
+
+* 使用 `{{</* figure */>}}` 短代码来为 Mermaid+SVG 和外部工具方法制作的图表添加标题。
+* 对于内嵌方法制作的图表，使用简单的 Markdown 文本来为其添加标题。
+* 在你的图表标题前面添加 `图 <编号>.`. 你必须使用 `图` 字样，
+  并且编号必须对于文档页面中所有图表而言唯一。
+  在编号之后添加一个英文句号。
+* 将图表标题添加到 `图 <编号>.` 之后，并且在同一行。
+  你必须为图表标题添加英文句点作为其结束标志。尽量保持标题文字简短。
+* 图表标题要放在图表 __之后__。
+
+<!--
+**Diagram Referral**
+
+Finally, you can add a diagram referral. This is used inside your text and
+should precede the diagram itself. It allows a user to connect your text with
+the associated diagram. The `Figure NUMBER` in your referral and caption must
+match.
+-->
+**图表引用**
+
+最后，你可以添加图表引用。图表引用位于你的文档正文中，并且应该出现在图表之前。
+这样，用户可以将你的文字与对应的图表关联起来。引用时所给的 `图 <编号>`
+部分要与图表标题中对应部分一致。
+
+<!--
+You should avoid using spatial references such as `..the image below..` or
+`..the following figure ..` 
+
+Here is an example of a diagram referral:
+-->
+你要避免使用空间上的相对引用，例如 `..下面的图片..` 或者 `..下面的图形..`。
+
+<!--
+```text
+Figure 10 depicts the components of the Kubernetes architecture.
+The control plane ...
+```
+-->
+```text
+图 10 展示的是 Kubernetes 体系结构。其控制面 ...
+```
+
+<!--
+Diagram referrals are optional and there are cases where they might not be
+suitable. If you are not sure, add a diagram referral to your text to see if
+it looks and sounds okay. When in doubt, use a diagram referral.
+-->
+图表引用是可选的，在有些场合中，添加这类引用是不合适的。
+如果你不是很确定，可以在文字中添加图表引用，以判断是否看起来、读起来比较通顺。
+如果仍然不确定，可以使用图表引用。
+
+<!--
+**Complete picture**
+
+Figure 10 shows the Kubernetes Architecture diagram that includes the diagram,
+diagram caption and diagram referral. The `{{</* figure */>}}` shortcode
+renders the diagram, adds the caption and includes the optional `link`
+parameter so you can hyperlink the diagram. The diagram referral is contained
+in this paragraph. 
+
+Here is the `{{</* figure */>}}` shortcode for this diagram:
+-->
+**完整全图**
+
+图 10 展示的是一个 Kubernetes 架构图表，其中包含了图表本身、图表标题和图表引用。
+
+这里的 `{{</* figure */>}}` 短代码负责渲染图表，添加标题并包含可选的 `link`
+参数，以便于你为图表提供超级链接。图表引用也被包含在段落中。
+
+下面是针对此图表的 `{{</* figure */>}}` 短代码。
+
+<!--
+```
+{{</* figure src="/images/docs/components-of-kubernetes.svg" alt="Kubernetes pod running inside a cluster" class="diagram-large" caption="Figure 10. Kubernetes Architecture." link="https://kubernetes.io/docs/concepts/overview/components/" */>}}
+```
+-->
+```
+{{</* figure src="/images/docs/components-of-kubernetes.svg" alt="运行在集群中的 Kubernetes Pod " class="diagram-large" caption="图 10. Kubernetes 架构." link="https://kubernetes.io/docs/concepts/overview/components/" */>}}
+```
+
+<!--
+{{< figure src="/images/docs/components-of-kubernetes.svg" alt="Kubernetes pod running inside a cluster" class="diagram-large" caption="Figure 10. Kubernetes Architecture." link="https://kubernetes.io/docs/concepts/overview/components/" >}}
+-->
+{{< figure src="/images/docs/components-of-kubernetes.svg" alt="运行在集群中的 Kubernetes Pod" class="diagram-large" caption="图 10. Kubernetes 架构." link="https://kubernetes.io/docs/concepts/overview/components/" >}}
+
+<!--
+## Tips
+
+* Always use the live editor to create/edit your diagram. 
+  
+* Always use Hugo local and Netlify previews to check out how the diagram
+  appears in the documentation.
+  
+* Include diagram source pointers such as a URL, source code location, or
+  indicate the code is self-documenting.
+-->
+## 提示  {#tips}
+ 
+* 总是使用在线编辑器来创建和编辑你的图表。
+* 总是使用 Hugo 本地和 Netlify 预览来检查图表在文档中的渲染效果。 
+* 提供图表源代码指针，例如 URL、源代码位置或者标明代码时是说明的。
+<!-- 
+* Always use diagram captions.
+  
+* Very helpful to include the diagram `.svg` or `.png` image and/or Mermaid
+  source code in issues and PRs.
+
+* With the `Mermaid+SVG` and `External Tool` methods, use `.svg` image files
+  because they stay sharp when you zoom in on the diagram.
+
+* Best practice for `.svg` files is to load it into an SVG editing tool and use the
+  "Convert text to paths" function.
+  This ensures that the diagram renders the same on all systems, regardless of font
+  availability and font rendering support.
+-->
+* 总是提供图表标题。
+* 在问题报告或 PR 中包含 `.svg` 或 `.png` 图片与/或 Mermaid 代码会很有帮助。
+* 对于 Mermaid+SVG 方法和外部工具方法而言，尽量使用 `.svg` 图片文件，
+  因为这类文件在被放大之后仍能清晰地显示。
+* 对于 `.svg` 文件的最佳实践是将其加载到一个 SVG 编辑工具中，并使用
+  “将文字转换为路径”功能完成转换。
+<!--
+* No Mermaid support for additional icons or artwork.
+  
+* Hugo Mermaid shortcodes don't work in the live editor.
+  
+* Any time you modify a diagram in the live editor, you __must__ save it
+  to generate a new URL for the diagram.
+  
+* Click on the diagrams in this section to view the code and diagram rendering
+  in the live editor.
+-->
+* Mermaid 不支持额外的图表或艺术形式。
+* Hugo Mermaid 短代码在在线编辑器中无法显示。
+* 如果你想要在在线编辑器中更改图表，你 __必须__ 保存它以便为图表生成新的 URL。
+* 点击本节中的图表，你可以查看其源代码及其在在线编辑器中的渲染效果。
+<!--
+* Look over the source code of this page, `diagram-guide.md`, for more examples.
+  
+* Check out the [Mermaid docs](https://mermaid-js.github.io/mermaid/#/)
+  for explanations and examples.
+-->
+* 查看本页的源代码，`diagram-guide.md` 文件，可以将其作为示例。
+* 查阅 [Mermaid docs](https://mermaid-js.github.io/mermaid/#/) 以获得更多的解释和示例。
+
+<!--
+Most important, __Keep Diagrams Simple__.
+This will save time for you and fellow contributors, and allow for easier reading
+by new and experienced users.
+-->
+最重要的一点，__保持图表简单__。
+这样做会节省你和其他贡献者的时间，同时也会方便新的以及有经验的用户阅读。
+
diff --git a/content/zh/docs/contribute/style/hugo-shortcodes/example1.md b/content/zh-cn/docs/contribute/style/hugo-shortcodes/example1.md
similarity index 100%
rename from content/zh/docs/contribute/style/hugo-shortcodes/example1.md
rename to content/zh-cn/docs/contribute/style/hugo-shortcodes/example1.md
diff --git a/content/zh/docs/contribute/style/hugo-shortcodes/example2.md b/content/zh-cn/docs/contribute/style/hugo-shortcodes/example2.md
similarity index 100%
rename from content/zh/docs/contribute/style/hugo-shortcodes/example2.md
rename to content/zh-cn/docs/contribute/style/hugo-shortcodes/example2.md
diff --git a/content/zh/docs/contribute/style/hugo-shortcodes/index.md b/content/zh-cn/docs/contribute/style/hugo-shortcodes/index.md
similarity index 56%
rename from content/zh/docs/contribute/style/hugo-shortcodes/index.md
rename to content/zh-cn/docs/contribute/style/hugo-shortcodes/index.md
index 02d3dfc015..b351b6f596 100644
--- a/content/zh/docs/contribute/style/hugo-shortcodes/index.md
+++ b/content/zh-cn/docs/contribute/style/hugo-shortcodes/index.md
@@ -9,10 +9,14 @@ content_type: concept
 
 <!-- overview -->
 
-<!-- This page explains the custom Hugo shortcodes that can be used in Kubernetes Markdown documentation. -->
+<!--
+This page explains the custom Hugo shortcodes that can be used in Kubernetes Markdown documentation.
+-->
 本页面将介绍 Hugo 自定义短代码，可以用于 Kubernetes Markdown 文档书写。
 
-<!-- Read more about shortcodes in the [Hugo documentation](https://gohugo.io/content-management/shortcodes). -->
+<!--
+Read more about shortcodes in the [Hugo documentation](https://gohugo.io/content-management/shortcodes).
+-->
 关于短代码的更多信息可参见 [Hugo 文档](https://gohugo.io/content-management/shortcodes)。
 
 <!-- body -->
@@ -20,18 +24,18 @@ content_type: concept
 <!--
 ## Feature state
 
-In a Markdown page (.md file) on this site, you can add a shortcode to display
-version and state of the documented feature.
+In a Markdown page (`.md` file) on this site, you can add a shortcode to
+display version and state of the documented feature.
 -->
 ## 功能状态
 
-在本站的 Markdown 页面中，你可以加入短代码来展示所描述的功能特性的版本和状态。
+在本站的 Markdown 页面（`.md` 文件）中，你可以加入短代码来展示所描述的功能特性的版本和状态。
 
 <!--
 ### Feature state demo
 
-Below is a demo of the feature state snippet, which displays the feature as stable 
-in the latest Kubernetes version.
+Below is a demo of the feature state snippet, which displays the feature as
+stable in the latest Kubernetes version.
 -->
 ### 功能状态示例
 
@@ -41,12 +45,16 @@ in the latest Kubernetes version.
 {{</* feature-state state="stable" */>}}
 ```
 
-<!-- Renders to: -->
+<!--
+Renders to:
+-->
 会转换为：
 
 {{< feature-state state="stable" >}}
 
-<!-- The valid values for `state` are: -->
+<!--
+The valid values for `state` are:
+-->
 `state` 的可选值如下：
 
 * alpha
@@ -69,7 +77,9 @@ feature state version by passing the `for_k8s_version` shortcode parameter. For
 {{</* feature-state for_k8s_version="v1.10" state="beta" */>}}
 ```
 
-<!-- Renders to: -->
+<!--
+Renders to:
+-->
 会转换为：
 
 {{< feature-state for_k8s_version="v1.10" state="beta" >}}
@@ -78,10 +88,10 @@ feature state version by passing the `for_k8s_version` shortcode parameter. For
 ## Glossary
 There are two glossary shortcodes: `glossary_tooltip` and `glossary_definition`.
 
-You can reference glossary terms with an inclusion that will automatically
-update and replace content with the relevant links from [our
-glossary](/docs/reference/glossary/). When the glossary term is moused-over,
-the glossary entry displays a tooltip. The glossary term also displays as a link.
+You can reference glossary terms with an inclusion that automatically updates
+and replaces content with the relevant links from [our glossary](/docs/reference/glossary/).
+When the glossary term is moused-over, the glossary entry displays a tooltip.
+The glossary term also displays as a link.
 
 As well as inclusions with tooltips, you can reuse the definitions from the glossary in
 page content.
@@ -91,26 +101,29 @@ page content.
 有两种词汇表提示：`glossary_tooltip` 和 `glossary_definition`。
 
 你可以通过加入术语词汇的短代码，来自动更新和替换相应链接中的内容
-（[我们的词汇库](/zh/docs/reference/glossary/)）
+（[我们的词汇库](/zh-cn/docs/reference/glossary/)）
 在浏览在线文档时，术语会显示为超链接的样式，当鼠标移到术语上时，其解释就会显示在提示框中。
 
 除了包含工具提示外，你还可以重用页面内容中词汇表中的定义。
 <!--
-The raw data for glossary terms is stored at [https://github.com/kubernetes/website/tree/main/content/en/docs/reference/glossary](https://github.com/kubernetes/website/tree/main/content/en/docs/reference/glossary), with a content file for each glossary term.
+The raw data for glossary terms is stored at
+[the glossary directory](https://github.com/kubernetes/website/tree/main/content/en/docs/reference/glossary),
+with a content file for each glossary term.
 -->
 
-词汇术语的原始数据保存在 [https://github.com/kubernetes/website/tree/main/content/en/docs/reference/glossary](https://github.com/kubernetes/website/tree/main/content/en/docs/reference/glossary)，每个内容文件对应相应的术语解释。
+词汇术语的原始数据保存在[词汇目录](https://github.com/kubernetes/website/tree/main/content/en/docs/reference/glossary)，
+每个内容文件对应相应的术语解释。
 
 <!--
 ### Glossary demo
 
-For example, the following include within the Markdown will render to
+For example, the following include within the Markdown renders to
 {{< glossary_tooltip text="cluster" term_id="cluster" >}} with a tooltip:
 -->
 ### 词汇演示
 
-例如，下面的代码在 Markdown 中将会转换为 `{{< glossary_tooltip text="cluster" term_id="cluster" >}}`，
-然后在提示框中显示。
+例如下面的代码在 Markdown 中将会转换为
+{{< glossary_tooltip text="cluster" term_id="cluster" >}}，然后在提示框中显示。
 
 ```
 {{</* glossary_tooltip text="cluster" term_id="cluster" */>}}
@@ -146,10 +159,68 @@ which renders as:
 呈现为： 
 {{< glossary_definition term_id="cluster" length="all" >}}
 
+<!--
+## Links to API Reference
+-->
+## 链接至 API 参考 {#links-to-api-reference}
+
+<!--
+You can link to a page of the Kubernetes API reference using the
+`api-reference` shortcode, for example to the
+{{< api-reference page="workload-resources/pod-v1" >}} reference:
+-->
+你可以使用 `api-reference` 短代码链接到 Kubernetes API 参考页面，例如
+Pod
+{{< api-reference page="workload-resources/pod-v1" >}} 参考文件：
+
+```
+{{</* api-reference page="workload-resources/pod-v1" */>}}
+```
+
+<!--
+The content of the `page` parameter is the suffix of the URL of the API reference page.
+-->
+本语句中 `page` 参数的内容是 API 参考页面的 URL 后缀。
+
+
+<!--
+You can link to a specific place into a page by specifying an `anchor`
+parameter, for example to the {{< api-reference page="workload-resources/pod-v1" anchor="PodSpec" >}}
+reference or the {{< api-reference page="workload-resources/pod-v1" anchor="environment-variables" >}}
+section of the page:
+-->
+你可以通过指定 `anchor` 参数链接到页面中的特定位置，例如到
+{{< api-reference page="workload-resources/pod-v1" anchor="PodSpec" >}} 参考，或页面的
+{{< api-reference page="workload-resources/pod-v1" anchor="environment-variables" >}}
+部分。
+
+```
+{{</* api-reference page="workload-resources/pod-v1" anchor="PodSpec" */>}}
+{{</* api-reference page="workload-resources/pod-v1" anchor="environment-variables" */>}}
+```
+
+
+<!--
+You can change the text of the link by specifying a `text` parameter, for
+example by linking to the
+{{< api-reference page="workload-resources/pod-v1" anchor="environment-variables" text="Environment Variables">}}
+section of the page:
+-->
+你可以通过指定 `text` 参数来更改链接的文本，例如通过链接到页面的
+{{< api-reference page="workload-resources/pod-v1" anchor="environment-variables" text="环境变量">}}
+部分：
+
+```
+{{</* api-reference page="workload-resources/pod-v1" anchor="environment-variables" text="环境变量" */>}}
+```
+
+
 <!--
 ## Table captions
 
-You can make tables more accessible to screen readers by adding a table caption. To add a [caption](https://www.w3schools.com/tags/tag_caption.asp) to a table, enclose the table with a `table` shortcode and specify the caption with the `caption` parameter.
+You can make tables more accessible to screen readers by adding a table caption. To add a
+[caption](https://www.w3schools.com/tags/tag_caption.asp) to a table,
+enclose the table with a `table` shortcode and specify the caption with the `caption` parameter.
 
 {{< note >}}
 Table captions are visible to screen readers but invisible when viewed in standard HTML.
@@ -205,7 +276,8 @@ Parameter | Description | Default
 {{< /table >}}
 
 <!--
-If you inspect the HTML for the table, you should see this element immediately after the opening `<table>` element:
+If you inspect the HTML for the table, you should see this element immediately
+after the opening `<table>` element:
 
 ```html
 <caption style="display: none;">Configuration parameters</caption>
@@ -235,8 +307,17 @@ The `tabs` shortcode takes these parameters:
 
 <!--
 * `name`: The name as shown on the tab.
-* `codelang`: If you provide inner content to the `tab` shortcode, you can tell Hugo what code language to use for highlighting.
-* `include`: The file to include in the tab. If the tab lives in a Hugo [leaf bundle](https://gohugo.io/content-management/page-bundles/#leaf-bundles), the file -- which can be any MIME type supported by Hugo -- will be looked up in the bundle itself. If not, the content page to include will be looked up relative to the current. Note that with the `include` you will not have any shortcode inner content and must use the self-closing syntax, e.g. {{</* tab name="Content File #1" include="example1" /*/>}}. Non-content files will be code-highlighted. The language to use will be taken from the filename if not provided in `codelang`.
+* `codelang`: If you provide inner content to the `tab` shortcode, you can tell Hugo
+  what code language to use for highlighting.
+* `include`: The file to include in the tab. If the tab lives in a Hugo
+  [leaf bundle](https://gohugo.io/content-management/page-bundles/#leaf-bundles),
+  the file -- which can be any MIME type supported by Hugo -- is looked up in the bundle itself.
+  If not, the content page that needs to be included is looked up relative to the current page.
+  Note that with the `include`, you do not have any shortcode inner content and must use the
+  self-closing syntax. For example,
+  `{{</* tab name="Content File #1" include="example1" /*/>}}`. The language needs to be specified
+  under `codelang` or the language is taken based on the file name.
+  Non-content files are code-highlighted by default.
 -->
 * `name`： 标签页上显示的名字。
 * `codelang`: 如果要在 `tab` 短代码中加入内部内容，需要告知 Hugo 使用的是什么代码语言，方便代码高亮。
@@ -245,10 +326,12 @@ The `tabs` shortcode takes these parameters:
   Hugo 会在包内查找文件（可以是 Hugo 所支持的任何 MIME 类型文件）。
   否则，Hugo 会在当前路径的相对路径下查找所要包含的内容页面。
   注意，在 `include` 页面中不能包含短代码内容，必须要使用自结束（self-closing）语法。
-  非内容文件将会被代码高亮。
+  例如 `{{</* tab name="Content File #1" include="example1" /*/>}}`。
   如果没有在 `codelang` 进行声明的话，Hugo 会根据文件名推测所用的语言。
+  默认情况下，非内容文件将会被代码高亮。
 <!--
-* If your inner content is markdown, you must use `%`-delimiter to surorund the tab, e.g. `{{%/* tab name="Tab 1" %}}This is **markdown**{{% /tab */%}}`
+* If your inner content is markdown, you must use the `%`-delimiter to surround the tab.
+  For example, `{{%/* tab name="Tab 1" %}}This is **markdown**{{% /tab */%}}`
 * You can combine the variations mentioned above inside a tab set.
 -->
 * 如果内部内容是 Markdown，你必须要使用 `%` 分隔符来包装标签页。
@@ -282,7 +365,9 @@ println "This is tab 2."
 {{< /tabs */>}}
 ```
 
-<!-- Will be rendered as: -->
+<!--
+Renders to:
+-->
 会转换为：
 
 {{< tabs name="tab_with_code" >}}
@@ -294,41 +379,51 @@ println "This is tab 2."
 {{< /tab >}}
 {{< /tabs >}}
 
-<!-- ### Tabs demo: Inline Markdown and HTML -->
+<!--
+### Tabs demo: Inline Markdown and HTML
+-->
 ### 标签页演示：内联 Markdown 和 HTML
 
 ```go-html-template
 {{</* tabs name="tab_with_md" >}}
 {{% tab name="Markdown" %}}
-这是 **一些 markdown 。**
-{{< note >}}它甚至可以包含短代码。{{< /note >}}
+这是 **一些 markdown。**
+{{< note >}}
+它甚至可以包含短代码。
+{{< /note >}}
 {{% /tab %}}
 {{< tab name="HTML" >}}
 <div>
 	<h3>纯 HTML</h3>
-	<p>这是一些 <i>纯</i> HTML 。</p>
+	<p>这是一些 <i>纯</i> HTML。</p>
 </div>
 {{< /tab >}}
 {{< /tabs */>}}
 ```
 
-<!-- Will be rendered as: -->
+<!--
+Renders to:
+-->
 会转换为：
 
 {{< tabs name="tab_with_md" >}}
 {{% tab name="Markdown" %}}
-这是 **一些 markdown 。**
-{{< note >}}它甚至可以包含短代码。{{< /note >}}
+这是 **一些 markdown。**
+{{< note >}}
+它甚至可以包含短代码。
+{{< /note >}}
 {{% /tab %}}
 {{< tab name="HTML" >}}
 <div>
 	<h3>纯 HTML</h3>
-	<p>这是一些 <i>纯</i> HTML 。</p>
+	<p>这是一些 <i>纯</i> HTML。</p>
 </div>
 {{< /tab >}}
 {{< /tabs >}}
 
-<!-- ### Tabs demo: File include -->
+<!--
+### Tabs demo: File include
+-->
 ### 标签页演示：文件嵌套
 
 ```go-text-template
@@ -339,7 +434,9 @@ println "This is tab 2."
 {{< /tabs */>}}
 ```
 
-<!-- Will be rendered as: -->
+<!--
+Renders to:
+-->
 会转换为：
 
 {{< tabs name="tab_with_file_include" >}}
@@ -348,6 +445,78 @@ println "This is tab 2."
 {{< tab name="JSON File" include="podtemplate.json" />}}
 {{< /tabs >}}
 
+<!--
+## Third party content marker
+-->
+## 第三方内容标记  {#third-party-content-marker}
+
+<!--
+Running Kubernetes requires third-party software. For example: you
+usually need to add a
+[DNS server](/docs/tasks/administer-cluster/dns-custom-nameservers/#introduction)
+to your cluster so that name resolution works.
+-->
+运行 Kubernetes 需要第三方软件。例如：你通常需要将
+[DNS 服务器](/zh-cn/docs/tasks/administer-cluster/dns-custom-nameservers/#introduction)
+添加到集群中，以便名称解析工作。
+
+<!--
+When we link to third-party software, or otherwise mention it,
+we follow the [content guide](/docs/contribute/style/content-guide/)
+and we also mark those third party items.
+-->
+当我们链接到第三方软件或以其他方式提及它时，我们会遵循[内容指南](/zh-cn/docs/contribute/style/content-guide/)
+并标记这些第三方项目。
+
+<!--
+Using these shortcodes adds a disclaimer to any documentation page
+that uses them.
+-->
+使用这些短代码会向使用它们的任何文档页面添加免责声明。
+
+<!--
+### Lists {#third-party-content-list}
+-->
+### 列表  {#third-party-content-list}
+
+<!--
+For a list of several third-party items, add:
+-->
+对于有关几个第三方项目的列表，请添加：
+```
+{{%/* thirdparty-content */%}}
+```
+<!--
+just below the heading for the section that includes all items.
+-->
+在包含所有项目的段落标题正下方。
+
+<!--
+### Items {#third-party-content-item}
+-->
+### 项目  {#third-party-content-item}
+
+<!--
+If you have a list where most of the items refer to in-project
+software (for example: Kubernetes itself, and the separate
+[Descheduler](https://github.com/kubernetes-sigs/descheduler)
+component), then there is a different form to use.
+-->
+如果你有一个列表，其中大多数项目引用项目内软件（例如：Kubernetes 本身，以及单独的
+[Descheduler](https://github.com/kubernetes-sigs/descheduler)
+组件），那么可以使用不同的形式。
+
+<!--
+Add the shortcode:
+
+before the item, or just below the heading for the specific item.
+-->
+在项目之前，或在特定项目的段落下方添加此短代码：
+```
+{{%/* thirdparty-content single="true" */%}}
+```
+
+
 <!--
 ## Version strings
 
@@ -364,9 +533,10 @@ The two most commonly used version parameters are `latest` and `version`.
 <!--
 ### `{{</* param "version" */>}}`
 
-The `{{</* param "version" */>}}` shortcode generates the value of the current version of
-the Kubernetes documentation from the `version` site parameter. The `param` shortcode accepts
-the name of one site parameter, in this case: `version`.
+The `{{</* param "version" */>}}` shortcode generates the value of the current
+version of the Kubernetes documentation from the `version` site parameter. The
+`param` shortcode accepts the name of one site parameter, in this case:
+`version`.
 -->
 ### `{{</* param "version" */>}}`
 
@@ -375,10 +545,11 @@ the name of one site parameter, in this case: `version`.
 
 <!--
 {{< note >}}
-In previously released documentation, `latest` and `version` parameter values are not equivalent.
-After a new version is released, `latest` is incremented and the value of `version` for the
-documentation set remains unchanged. For example, a previously released version of the
-documentation displays `version` as `v1.19` and `latest` as `v1.20`.
+In previously released documentation, `latest` and `version` parameter values
+are not equivalent.  After a new version is released, `latest` is incremented
+and the value of `version` for the documentation set remains unchanged. For
+example, a previously released version of the documentation displays `version`
+as `v1.19` and `latest` as `v1.20`.
 {{< /note >}}
 -->
 {{< note >}}
@@ -415,7 +586,8 @@ Renders to:
 <!--
 ### `{{</* latest-semver */>}}`
 
-The `{{</* latest-semver */>}}` shortcode generates the value of `latest` without the "v" prefix.
+The `{{</* latest-semver */>}}` shortcode generates the value of `latest`
+without the "v" prefix.
 
 Renders to:
 -->
@@ -432,7 +604,7 @@ Renders to:
 
 The `{{</* version-check */>}}` shortcode checks if the `min-kubernetes-server-version`
 page parameter is present and then uses this value to compare to `version`.
- 
+
 Renders to:
 -->
 ### `{{</* version-check */>}}`
@@ -447,9 +619,9 @@ Renders to:
 <!--
 ### `{{</* latest-release-notes */>}}`
 
-The `{{</* latest-release-notes */>}}` shortcode generates a version string from `latest` and removes
-the "v" prefix. The shortcode prints a new URL for the release note CHANGELOG page with the modified
-version string.
+The `{{</* latest-release-notes */>}}` shortcode generates a version string
+from `latest` and removes the "v" prefix. The shortcode prints a new URL for
+the release note CHANGELOG page with the modified version string.
 
 Renders to:
 -->
@@ -466,14 +638,14 @@ Renders to:
 
 <!--
 * Learn about [Hugo](https://gohugo.io/).
-* Learn about [writing a new topic](/docs/home/contribute/style/write-new-topic/).
-* Learn about [page content types](/docs/home/contribute/style/page-content-types/).
-* Learn about [creating a pull request](/docs/contribute/new-content/open-a-pr/).
+* Learn about [writing a new topic](/docs/contribute/style/write-new-topic/).
+* Learn about [page content types](/docs/contribute/style/page-content-types/).
+* Learn about [opening a pull request](/docs/contribute/new-content/open-a-pr/).
 * Learn about [advanced contributing](/docs/contribute/advanced/).
 -->
 
-* 了解[Hugo](https://gohugo.io/)。
-* 了解[撰写新的话题](/zh/docs/contribute/style/write-new-topic/)。
-* 了解[使用页面内容类型](/zh/docs/contribute/style/page-content-types/)。
-* 了解[发起 PR](/zh/docs/contribute/new-content/open-a-pr/)。
-* 了解[高级贡献](/zh/docs/contribute/advanced/)。
+* 了解 [Hugo](https://gohugo.io/)。
+* 了解[撰写新的话题](/zh-cn/docs/contribute/style/write-new-topic/)。
+* 了解[使用页面内容类型](/zh-cn/docs/contribute/style/page-content-types/)。
+* 了解[发起 PR](/zh-cn/docs/contribute/new-content/open-a-pr/)。
+* 了解[进阶贡献](/zh-cn/docs/contribute/advanced/)。
diff --git a/content/zh/docs/contribute/style/hugo-shortcodes/podtemplate.json b/content/zh-cn/docs/contribute/style/hugo-shortcodes/podtemplate.json
similarity index 100%
rename from content/zh/docs/contribute/style/hugo-shortcodes/podtemplate.json
rename to content/zh-cn/docs/contribute/style/hugo-shortcodes/podtemplate.json
diff --git a/content/zh/docs/contribute/style/page-content-types.md b/content/zh-cn/docs/contribute/style/page-content-types.md
similarity index 95%
rename from content/zh/docs/contribute/style/page-content-types.md
rename to content/zh-cn/docs/contribute/style/page-content-types.md
index de72b6b4c4..2c4f11b51d 100644
--- a/content/zh/docs/contribute/style/page-content-types.md
+++ b/content/zh-cn/docs/contribute/style/page-content-types.md
@@ -198,7 +198,7 @@ published example of a concept page.
 - 在 `body` 节中，详细解释对应概念；
 - 对于 `whatsnext` 节，提供一个项目符号列表（最多 5 个），帮助读者进一步学习掌握概念
 
-[注解](/zh/docs/concepts/overview/working-with-objects/annotations/)页面是一个已经
+[注解](/zh-cn/docs/concepts/overview/working-with-objects/annotations/)页面是一个已经
 上线的概念页面的例子。
 
 <!--
@@ -271,7 +271,7 @@ An example of a published task topic is [Using an HTTP proxy to access the Kuber
 - 在 `whatsnext` 节中，使用项目符号列表（不超过 5 项），列举读者可能接下来有兴趣
   阅读的主题。
 
-已上线的任务主题示例之一是[使用 HTTP 代理来访问 Kubernetes API](/zh/docs/tasks/extend-kubernetes/http-proxy-access-api/)。
+已上线的任务主题示例之一是[使用 HTTP 代理来访问 Kubernetes API](/zh-cn/docs/tasks/extend-kubernetes/http-proxy-access-api/)。
 
 <!--
 ### Tutorial
@@ -354,7 +354,7 @@ An example of a published tutorial topic is
   阅读的主题。
 
 已发布的教程主题的一个例子是
-[使用 Deployment 运行无状态应用](/zh/docs/tasks/run-application/run-stateless-application-deployment/).
+[使用 Deployment 运行无状态应用](/zh-cn/docs/tasks/run-application/run-stateless-application-deployment/).
 
 <!--
 ### Reference
@@ -395,9 +395,9 @@ Examples of published tool reference pages are:
 
 已发布的工具参考页面示例包括：
 
-- [kubeadm init](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init/)
-- [kube-apiserver](/zh/docs/reference/command-line-tools-reference/kube-apiserver/)
-- [kubectl](/zh/docs/reference/kubectl/kubectl/)
+- [kubeadm init](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init/)
+- [kube-apiserver](/zh-cn/docs/reference/command-line-tools-reference/kube-apiserver/)
+- [kubectl](/zh-cn/docs/reference/kubectl/kubectl/)
 
 ## {{% heading "whatsnext" %}}
 
@@ -406,7 +406,7 @@ Examples of published tool reference pages are:
 - Learn about the [Content guide](/docs/contribute/style/content-guide/)
 - Learn about [content organization](/docs/contribute/style/content-organization/)
 -->
-- 了解[样式指南](/zh/docs/contribute/style/style-guide/)
-- 了解[内容指南](/zh/docs/contribute/style/content-guide/)
-- 了解[内容组织](/zh/docs/contribute/style/content-organization/)
+- 了解[样式指南](/zh-cn/docs/contribute/style/style-guide/)
+- 了解[内容指南](/zh-cn/docs/contribute/style/content-guide/)
+- 了解[内容组织](/zh-cn/docs/contribute/style/content-organization/)
 
diff --git a/content/zh/docs/contribute/style/style-guide.md b/content/zh-cn/docs/contribute/style/style-guide.md
similarity index 89%
rename from content/zh/docs/contribute/style/style-guide.md
rename to content/zh-cn/docs/contribute/style/style-guide.md
index 433bfbc721..0c3dc77632 100644
--- a/content/zh/docs/contribute/style/style-guide.md
+++ b/content/zh-cn/docs/contribute/style/style-guide.md
@@ -22,7 +22,7 @@ For additional information on creating new content for the Kubernetes
 documentation, read the [Documentation Content Guide](/docs/contribute/style/content-guide/).
 
 Changes to the style guide are made by SIG Docs as a group. To propose a change
-or addition, [add it to the agenda](https://docs.google.com/document/d/1ddHwLK3kUMX1wVFIwlksjTk0MsqitBnWPe1LRa1Rx5A/edit) for an upcoming SIG Docs meeting, and attend the meeting to participate in the
+or addition, [add it to the agenda](https://bit.ly/sig-docs-agenda) for an upcoming SIG Docs meeting, and attend the meeting to participate in the
 discussion.
 -->
 本页讨论 Kubernetes 文档的样式指南。
@@ -30,11 +30,11 @@ discussion.
 你可以自行决定，且欢迎使用 PR 来为此文档提供修改意见。
 
 关于为 Kubernetes 文档贡献新内容的更多信息，可以参考
-[文档内容指南](/zh/docs/contribute/style/content-guide/)。
+[文档内容指南](/zh-cn/docs/contribute/style/content-guide/)。
 
 样式指南的变更是 SIG Docs 团队集体决定。
 如要提议更改或新增条目，请先将其添加到下一次 SIG Docs 例会的
-[议程表](https://docs.google.com/document/d/1ddHwLK3kUMX1wVFIwlksjTk0MsqitBnWPe1LRa1Rx5A/edit)
+[议程表](https://bit.ly/sig-docs-agenda)
 上，并按时参加会议讨论。
 
 <!-- body -->
@@ -46,7 +46,7 @@ and representing feature state.
 -->
 {{< note >}}
 Kubernetes 文档使用带调整的 [Goldmark Markdown 解释器](https://github.com/yuin/goldmark/)
-和一些 [Hugo 短代码](/zh/docs/contribute/style/hugo-shortcodes/) 来支持词汇表项、Tab
+和一些 [Hugo 短代码](/zh-cn/docs/contribute/style/hugo-shortcodes/) 来支持词汇表项、Tab
 页以及特性门控标注。
 {{< /note >}}
 
@@ -68,7 +68,7 @@ Kubernetes 文档已经被翻译为多个语种
 （参见 [本地化 READMEs](https://github.com/kubernetes/website/blob/main/README.md#localization-readmemds)）。
 
 为文档提供一种新的语言翻译的途径可以在
-[本地化 Kubernetes 文档](/zh/docs/contribute/localization/)中找到。
+[本地化 Kubernetes 文档](/zh-cn/docs/contribute/localization/)中找到。
 
 英语文档使用美国英语的拼写和语法。
 
@@ -83,29 +83,19 @@ When you refer specifically to interacting with an API object, use [UpperCamelCa
 
 When you are generally discussing an API object, use [sentence-style capitalization](https://docs.microsoft.com/en-us/style-guide/text-formatting/using-type/use-sentence-style-capitalization).
 
-You may use the word "resource", "API", or "object" to clarify a Kubernetes resource type in a sentence.
-
-Don't split an API object name into separate words. For example, use PodTemplateList, not Pod Template List.
-
 The following examples focus on capitalization. For more information about formatting API object names, review the related guidance on [Code Style](#code-style-inline-code).
 -->
 ## 文档格式标准 {#documentation-formatting-standards}
 
 ### 对 API 对象使用大写驼峰式命名法  {#use-upper-camel-case-for-api-objects}
 
-当你与指定的 API 对象进行交互时，使用 [大写驼峰式命名法](https://en.wikipedia.org/wiki/Camel_case)，也被称为帕斯卡拼写法（PascalCase）.
-你可能在 [API 参考](/docs/reference/kubernetes-api/) 中看到不同的大小写形式，
+当你与指定的 API 对象进行交互时，使用[大写驼峰式命名法](https://en.wikipedia.org/wiki/Camel_case)，也被称为帕斯卡拼写法（PascalCase）。
+你可能在 [API 参考](/zh-cn/docs/reference/kubernetes-api/)中看到不同的大小写形式，
 例如 "configMap"。在一般性的文档中，最好使用大写驼峰形式，将之称作 "ConfigMap"。
 
 在一般性地讨论 API 对象时，使用
 [句子式大写](https://docs.microsoft.com/en-us/style-guide/text-formatting/using-type/use-sentence-style-capitalization)。
 
-你可以使用“资源”、“API”或者“对象”这类词汇来进一步在句子中明确所指的是
-一个 Kubernetes 资源类型。
-
-不要将 API 对象的名称切分成多个单词。例如，使用 PodTemplateList，不要
-使用 Pod Template List。
-
 下面的例子关注的是大小写问题。关于如何格式化 API 对象的名称，
 有关详细细节可参考相关的[代码风格](#code-style-inline-code)指南。
 
@@ -123,7 +113,7 @@ For managing confidential data, consider using the Secret API. | For managing co
 {{< table caption = "使用 Pascal 风格大小写来给出 API 对象的约定" >}}
 可以 | 不可以
 :--| :-----
-该 HorizontalPodAutoscaler 负责... | 该 HorizontalPodAutoscaler 负责...
+该 HorizontalPodAutoscaler 负责... | 该 Horizontal pod autoscaler 负责...
 每个 PodList 是一个 Pod 组成的列表。 | 每个 Pod List 是一个由 pods 组成的列表。
 该 Volume 对象包含一个 `hostPath` 字段。 | 此卷对象包含一个 hostPath 字段。
 每个 ConfigMap 对象都是某个名字空间的一部分。| 每个 configMap 对象是某个名字空间的一部分。
@@ -391,6 +381,79 @@ Set the value of the `replicas` field to 2. | Set the value of the `replicas` fi
 将 `replicas` 字段值设置为 2. | 将 `replicas` 字段值设置为 `2`.
 {{< /table >}}
 
+<!--
+## Referring to Kubernetes API resources
+
+This section talks about how we reference API resources in the documentation.
+
+### Clarification about "resource"
+
+Kubernetes uses the word "resource" to refer to API resources, such as `pod`, `deployment`, and so on. We also use "resource" to talk about CPU and memory requests and limits. Always refer to API resources as "API resources" to avoid confusion with CPU and memory resources.
+-->
+## 引用 Kubernetes API 资源
+
+本节讨论我们如何在文档中引用 API 资源。
+
+### 有关 “资源” 的阐述
+
+Kubernetes 使用 “resource” 一词来指代 API 资源，例如 `pod`、`deployment` 等。
+我们还使用 “resource” 来谈论 CPU 和内存请求和限制。
+所以始终将 API 资源称为 “API resources” 以避免与 CPU 和内存资源混淆。
+
+<!--
+### When to use Kubernetes API terminologies
+
+The different Kubernetes API terminologies are:
+
+- Resource type: the name used in the API URL (such as `pods`, `namespaces`)
+- Resource: a single instance of a resource type (such as `pod`, `secret`)
+- Object: a resource that serves as a "record of intent". An object is a desired state for a specific part of your cluster, which the Kubernetes control plane tries to maintain.
+
+Always use "resource" or "object" when referring to an API resource in docs. For example, use "a `Secret` object" over just "a `Secret`".
+-->
+### 何时使用 Kubernetes API 术语
+
+不同 Kubernetes API 术语的说明如下：
+
+- 资源类型：API URL 中使用的名称（如 `pods`、`namespaces`）
+- 资源：资源类型的单个实例（如 `pod`、`secret`）
+- 对象：作为 “意向记录” 的资源。对象是集群特定部分的期望状态，
+  该状态由 Kubernetes 控制平面负责维护。
+
+在文档中引用 API 资源时始终使用 “资源” 或 “对象”。
+例如，使用 “一个 `Secret` 对象” 而不是 “一个 `Secret`”。
+
+<!--
+### API resource names
+
+Always format API resource names using [UpperCamelCase](https://en.wikipedia.org/wiki/Camel_case), also known as PascalCase, and code formatting.
+
+For inline code in an HTML document, use the `<code>` tag. In a Markdown document, use the backtick (`` ` ``).
+
+Don't split an API object name into separate words. For example, use `PodTemplateList`, not Pod Template List.
+
+For more information about PascalCase and code formatting, please review the related guidance on [Use upper camel case for API objects](/docs/contribute/style/style-guide/#use-upper-camel-case-for-api-objects) and [Use code style for inline code, commands, and API objects](/docs/contribute/style/style-guide/#code-style-inline-code).
+
+For more information about Kubernetes API terminologies, please review the related guidance on [Kubernetes API terminology](/docs/reference/using-api/api-concepts/#standard-api-terminology).
+-->
+### API 资源名称
+
+始终使用[大写驼峰式命名法](https://zh.wikipedia.org/wiki/%E9%A7%9D%E5%B3%B0%E5%BC%8F%E5%A4%A7%E5%B0%8F%E5%AF%AB)
+（PascalCase）和代码格式来表达 API 资源名称。
+
+对于 HTML 文档中的内联代码，请使用 `<code>` 标记。
+在 Markdown 文档中，使用反引号 (`` ` ``)。
+
+不要将 API 对象的名称切分成多个单词。
+例如请使用 `PodTemplateList` 而非 `Pod Template List`。
+
+有关 PascalCase 和代码格式的更多信息，
+请查看[对 API 对象使用大写驼峰式命名法](/zh-cn/docs/contribute/style/style-guide/#use-upper-camel-case-for-api-objects)
+和[针对内嵌代码、命令与 API 对象使用代码样式](/zh-cn/docs/contribute/style/style-guide/#code-style-inline-code)。
+
+有关 Kubernetes API 术语的更多信息，
+请查看 [Kubernetes API 术语](/zh-cn/docs/reference/using-api/api-concepts/#standard-api-terminology)的相关指南。
+
 <!--
 ## Code snippet formatting
 
@@ -459,8 +522,8 @@ To specify the Kubernetes version for a task or tutorial page, include `min-kube
 代码示例或者配置示例如果包含版本信息，应该与对应的文字描述一致。
 
 如果所给的信息是特定于具体版本的，需要在
-[任务模版](/zh/docs/contribute/style/page-content-types/#task)
-或[教程模版](/zh/docs/contribute/style/page-content-types/#tutorial)
+[任务模版](/zh-cn/docs/contribute/style/page-content-types/#task)
+或[教程模版](/zh-cn/docs/contribute/style/page-content-types/#tutorial)
 的 `prerequisites` 小节定义 Kubernetes 版本。
 页面保存之后，`prerequisites` 小节会显示为 **开始之前**。
 
@@ -952,7 +1015,7 @@ Write Markdown-style links: `[link text](URL)`. For example: `[Hugo shortcodes](
 可以 | 不可以
 :--| :-----
 插入超级链接时给出它们所链接到的目标内容的上下文。例如：你的机器上某些端口处于开放状态。参见<a href="#check-required-ports">检查所需端口</a>了解更详细信息。| 使用有二义性的术语，如“点击这里”。例如：你的机器上某些端口处于打开状态。参见<a href="#check-required-ports">这里</a>了解详细信息。
-编写 Markdown 风格的链接：`[链接文本](URL)`。例如：`[Hugo 短代码](/zh/docs/contribute/style/hugo-shortcodes/#table-captions)`，输出是[Hugo 短代码](/zh/docs/contribute/style/hugo-shortcodes/#table-captions). | 编写 HTML 风格的超级链接：`<a href="/media/examples/link-element-example.css" target="_blank">访问我们的教程！</a>`，或者创建会打开新 Tab 页或新窗口的链接。例如：`[网站示例](https://example.com){target="_blank"}`。
+编写 Markdown 风格的链接：`[链接文本](URL)`。例如：`[Hugo 短代码](/zh-cn/docs/contribute/style/hugo-shortcodes/#table-captions)`，输出是[Hugo 短代码](/zh-cn/docs/contribute/style/hugo-shortcodes/#table-captions). | 编写 HTML 风格的超级链接：`<a href="/media/examples/link-element-example.css" target="_blank">访问我们的教程！</a>`，或者创建会打开新 Tab 页或新窗口的链接。例如：`[网站示例](https://example.com){target="_blank"}`。
 {{< /table >}}
 
 <!--
@@ -1015,7 +1078,7 @@ The semantic purpose of a data table is to present tabular data. Sighted users c
 表格标题可以用来给数据表提供一个描述性的标题。
 辅助技术使用 HTML 表格标题元素来在页面结构中辨识表格内容。
 
-- 请 [Hugo 短代码](/zh/docs/contribute/style/hugo-shortcodes/#table-captions)
+- 请 [Hugo 短代码](/zh-cn/docs/contribute/style/hugo-shortcodes/#table-captions)
   为表格添加标题。
 
 <!--
@@ -1267,7 +1330,7 @@ These steps ... | These simple steps ...
 
 ## {{% heading "whatsnext" %}}
 
-* 了解[编写新主题](/zh/docs/contribute/style/write-new-topic/).
-* 了解[页面内容类型](/zh/docs/contribute/style/page-content-types/).
-* 了解[发起 PR](/zh/docs/contribute/new-content/open-a-pr/).
+* 了解[编写新主题](/zh-cn/docs/contribute/style/write-new-topic/)。
+* 了解[页面内容类型](/zh-cn/docs/contribute/style/page-content-types/)。
+* 了解[发起 PR](/zh-cn/docs/contribute/new-content/open-a-pr/)。
 
diff --git a/content/zh/docs/contribute/style/write-new-topic.md b/content/zh-cn/docs/contribute/style/write-new-topic.md
similarity index 92%
rename from content/zh/docs/contribute/style/write-new-topic.md
rename to content/zh-cn/docs/contribute/style/write-new-topic.md
index bd5a2fce72..b9602e42d7 100644
--- a/content/zh/docs/contribute/style/write-new-topic.md
+++ b/content/zh-cn/docs/contribute/style/write-new-topic.md
@@ -21,7 +21,7 @@ This page shows how to create a new topic for the Kubernetes docs.
 Create a fork of the Kubernetes documentation repository as described in
 [Start contributing](/docs/contribute/start/).
 -->
-如[发起 PR](/zh/docs/contribute/new-content/open-a-pr/)中所述，创建 Kubernetes 文档库的派生副本。
+如[发起 PR](/zh-cn/docs/contribute/new-content/open-a-pr/)中所述，创建 Kubernetes 文档库的派生副本。
 
 <!-- steps -->
 
@@ -46,8 +46,8 @@ Tutorial | A tutorial page shows how to accomplish a goal that ties together sev
 {{< table caption = "选择页面类型的说明" >}}
 类型 | 描述
 :--- | :----------
-概念（Concept） | 概念页面负责解释 Kubernetes 的某方面。例如，概念页面可以描述 Kubernetes Deployment 对象，并解释当部署、扩展和更新时，它作为应用程序所扮演的角色。一般来说，概念页面不包括步骤序列，而是提供任务或教程的链接。概念主题的示例可参见 <a href="/zh/docs/concepts/architecture/nodes/">节点</a>。
-任务（Task） | 任务页面展示如何完成特定任务。其目的是给读者提供一系列的步骤，让他们在阅读时可以实际执行。任务页面可长可短，前提是它始终围绕着某个主题展开。在任务页面中，可以将简短的解释与要执行的步骤混合在一起。如果需要提供较长的解释，则应在概念主题中进行。相关联的任务和概念主题应该相互链接。一个简短的任务页面的实例可参见 <a href="/zh/docs/tasks/configure-pod-container/configure-volume-storage/">配置 Pod 使用卷存储</a>。一个较长的任务页面的实例可参见 <a href="/zh/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/">配置活跃性和就绪性探针</a>。
+概念（Concept） | 概念页面负责解释 Kubernetes 的某方面。例如，概念页面可以描述 Kubernetes Deployment 对象，并解释当部署、扩展和更新时，它作为应用程序所扮演的角色。一般来说，概念页面不包括步骤序列，而是提供任务或教程的链接。概念主题的示例可参见 <a href="/zh-cn/docs/concepts/architecture/nodes/">节点</a>。
+任务（Task） | 任务页面展示如何完成特定任务。其目的是给读者提供一系列的步骤，让他们在阅读时可以实际执行。任务页面可长可短，前提是它始终围绕着某个主题展开。在任务页面中，可以将简短的解释与要执行的步骤混合在一起。如果需要提供较长的解释，则应在概念主题中进行。相关联的任务和概念主题应该相互链接。一个简短的任务页面的实例可参见 <a href="/zh-cn/docs/tasks/configure-pod-container/configure-volume-storage/">配置 Pod 使用卷存储</a>。一个较长的任务页面的实例可参见 <a href="/zh-cn/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/">配置活跃性和就绪性探针</a>。
 教程（Tutorial） | 教程页面展示如何实现某个目标，该目标将若干 Kubernetes 功能特性联系在一起。教程可能提供一些步骤序列，读者可以在阅读页面时实际执行这些步骤。或者它可以提供相关代码片段的解释。例如，教程可以提供代码示例的讲解。教程可以包括对 Kubernetes 几个关联特性的简要解释，但有关更深入的特性解释应该链接到相关概念主题。 
 {{< /table >}}
 
@@ -56,7 +56,7 @@ Use a [content type](/docs/contribute/style/page-content-types/) for each new pa
 that you write. Using page type helps ensure
 consistency among topics of a given type.
 -->
-为每个新页面选择其[内容类型](/zh/docs/contribute/style/page-content-types/)。
+为每个新页面选择其[内容类型](/zh-cn/docs/contribute/style/page-content-types/)。
 使用页面类型有助于确保给定类型的各主题之间保持一致。
 
 <!--
@@ -74,7 +74,7 @@ URL for the topic, for example:
 
 选择一个标题，确保其中包含希望搜索引擎发现的关键字。
 确定文件名时请使用标题中的单词，由连字符分隔。
-例如，标题为[Using an HTTP Proxy to Access Kubernetes API](/zh/docs/tasks/extend-kubernetes/http-proxy-access-api/)
+例如，标题为[Using an HTTP Proxy to Access Kubernetes API](/zh-cn/docs/tasks/extend-kubernetes/http-proxy-access-api/)
 的主题的文件名为 `http-proxy-access-api.md`。
 你不需要在文件名中加上 "kubernetes"，因为 "kubernetes" 已经在主题的 URL 中了，
 例如：
@@ -189,10 +189,10 @@ following cases (not an exhaustive list):
 
 - 代码显示来自命令的输出，例如 `kubectl get deploy mydeployment -o json | jq '.status'`。
 - 代码不够通用，用户无法验证。例如，你可以嵌入 YAML 文件来创建一个依赖于特定
-  [FlexVolume](/zh/docs/concepts/storage/volumes#flexvolume) 实现的 Pod。
+  [FlexVolume](/zh-cn/docs/concepts/storage/volumes#flexvolume) 实现的 Pod。
 - 该代码是一个不完整的示例，因为其目的是突出展现某个大文件中的部分内容。
   例如，在描述出于某些原因定制
-  [PodSecurityPolicy](/zh/docs/tasks/administer-cluster/sysctl-cluster/#podsecuritypolicy)
+  [PodSecurityPolicy](/zh-cn/docs/tasks/administer-cluster/sysctl-cluster/#podsecuritypolicy)
   的方法时，你可以在主题文件中直接提供一个短的代码段。
 - 由于某些其他原因，该代码不适合用户验证。
   例如，当使用 `kubectl edit` 命令描述如何将新属性添加到资源时，
@@ -285,7 +285,7 @@ For an example of a topic that uses this technique, see
 [Running a Single-Instance Stateful Application](/docs/tutorials/stateful-application/run-stateful-application/).
 -->
 有关使用此技术的主题的示例，请参见
-[运行单实例有状态的应用](/zh/docs/tasks/run-application/run-single-instance-stateful-application/)。
+[运行单实例有状态的应用](/zh-cn/docs/tasks/run-application/run-single-instance-stateful-application/)。
 
 <!--
 ## Adding images to a topic
@@ -302,6 +302,6 @@ Put image files in the `/images` directory. The preferred image format is SVG.
 * Learn about [using page content types](/docs/contribute/style/page-content-types/).
 * Learn about [creating a pull request](/docs/contribute/new-content/open-a-pr/).
 -->
-* 了解[使用页面内容类型](/zh/docs/contribute/style/page-content-types/).
-* 了解[创建 PR](/zh/docs/contribute/new-content/open-a-pr/).
+* 了解[使用页面内容类型](/zh-cn/docs/contribute/style/page-content-types/).
+* 了解[创建 PR](/zh-cn/docs/contribute/new-content/open-a-pr/).
 
diff --git a/content/zh/docs/contribute/suggesting-improvements.md b/content/zh-cn/docs/contribute/suggesting-improvements.md
similarity index 94%
rename from content/zh/docs/contribute/suggesting-improvements.md
rename to content/zh-cn/docs/contribute/suggesting-improvements.md
index cdc033d966..96f8b4b5ac 100644
--- a/content/zh/docs/contribute/suggesting-improvements.md
+++ b/content/zh-cn/docs/contribute/suggesting-improvements.md
@@ -1,6 +1,5 @@
 ---
 title: 提出内容改进建议
-slug: suggest-improvements
 content_type: concept
 weight: 10
 card:
@@ -9,7 +8,6 @@ card:
 ---
 <!--
 title: Suggesting content improvements
-slug: suggest-improvements
 content_type: concept
 weight: 10
 card:
@@ -42,7 +40,7 @@ Kubernetes 贡献者会审阅这些问题并根据需要对其分类、打标签
 
 If you want to suggest improvements to existing content or notice an error, then open an issue.
 
-1. Go to the bottom of the page and click the **Create an Issue** button. This redirects you
+1. Click the **Create an issue** link on the right sidebar. This redirects you
  to a GitHub issue page pre-populated with some headers.
 2. Describe the issue or suggestion for improvement. Provide as many details as you can.
 3. Click **Submit new issue**.
@@ -55,7 +53,7 @@ they can take action on your issue.
 
 如果你希望就改进已有内容提出建议或者在文档中发现了错误，请创建一个问题（issue）。
 
-1. 滚动到页面底部，点击“报告问题”按钮。浏览器会重定向到一个 GitHub 问题页面，其中
+1. 点击右侧边栏的 **报告问题** 按钮。浏览器会重定向到一个 GitHub 问题页面，其中
    包含了一些预先填充的内容。
 1. 请描述遇到的问题或关于改进的建议。尽可能提供细节信息。
 1. 点击 **提交新问题**.
diff --git a/content/zh/docs/doc-contributor-tools/linkchecker/README.md b/content/zh-cn/docs/doc-contributor-tools/linkchecker/README.md
similarity index 85%
rename from content/zh/docs/doc-contributor-tools/linkchecker/README.md
rename to content/zh-cn/docs/doc-contributor-tools/linkchecker/README.md
index 016907c2eb..6f31aed3ab 100644
--- a/content/zh/docs/doc-contributor-tools/linkchecker/README.md
+++ b/content/zh-cn/docs/doc-contributor-tools/linkchecker/README.md
@@ -1,24 +1,26 @@
-<!-- 
+<!--
 # Internal link checking tool
  -->
 # 内置链接检查工具
 
-<!-- 
+<!--
 You can use [htmltest](https://github.com/wjdp/htmltest) to check for broken links in [`/content/en/`](https://git.k8s.io/website/content/en/). This is useful when refactoring sections of content, moving pages around, or renaming files or page headers.
  -->
-你可以使用 [htmltest](https://github.com/wjdp/htmltest) 来检查 [`/content/en/`](https://git.k8s.io/website/content/en/) 下面的失效链接。这在重构章节内容、移动页面或者重命名文件或页眉时非常有用。
+你可以使用 [htmltest](https://github.com/wjdp/htmltest) 来检查
+[`/content/en/`](https://git.k8s.io/website/content/en/) 下面的失效链接。
+这在重构章节内容、移动页面或者重命名文件或页眉时非常有用。
 
-<!-- 
+<!--
 ## How the tool works
  -->
 ## 工作原理
 
-<!-- 
+<!--
 `htmltest` scans links in the generated HTML files of the kubernetes website repository. It runs using a `make` command which does the following:
  -->
 `htmltest` 会扫描 kubernetes website 仓库构建生成的 HTML 文件。通过执行 `make` 命令进行了下列操作：
 
-<!-- 
+<!--
 - Builds the site and generates output HTML in the `/public` directory of your local `kubernetes/website` repository
 - Pulls the `wdjp/htmltest` Docker image
 - Mounts your local `kubernetes/website` repository to the Docker image
@@ -29,21 +31,22 @@ You can use [htmltest](https://github.com/wjdp/htmltest) to check for broken lin
 - 挂载本地 `kubernetes/website` 仓库到 Docker 容器中
 - 扫描 `/public` 目录下生成的文件并将遇到的失效链接通过命令行打印出来
 
-<!-- 
+<!--
 ## What it does and doesn't check
  -->
 ## 哪些链接不会检查
 
-<!-- 
+<!--
 The link checker scans generated HTML files, not raw Markdown. The htmltest tool depends on a configuration file, [`.htmltest.yml`](https://git.k8s.io/website/.htmltest.yml), to determine which content to examine.
 
 The link checker scans the following:
  -->
-该链接检查器扫描生成的 HTML 文件，而非原始的 Markdown. 该 htmltest 工具依赖于一个配置文件，[`.htmltest.yml`](https://git.k8s.io/website/.htmltest.yml)，来决定检查哪些内容。
+该链接检查器扫描生成的 HTML 文件，而非原始的 Markdown. 该 htmltest 工具依赖于配置文件
+[`.htmltest.yml`](https://git.k8s.io/website/.htmltest.yml)，来决定检查哪些内容。
 
 该链接检查器扫描以下内容：
 
-<!-- 
+<!--
 - All content generated from Markdown in [`/content/en/docs`](https://git.k8s.io/website/content/en/docs/) directory, excluding:
   - Generated API references, for example https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.18/
 - All internal links, excluding:
@@ -56,12 +59,12 @@ The link checker scans the following:
   - 空白锚点 (`<a href="#">` 或 `[title](#)`) 以及空白目标地址  (`<a href="">` 或 `[title]()`)
   - 指向图片或其他媒体文件的内部链接
 
-<!-- 
+<!--
 The link checker does not scan the following:
  -->
 该链接检查器不会扫描以下内容：
 
-<!-- 
+<!--
 - Links included in the top and side nav bars, footer links, or links in a page's `<head>` section, such as links to CSS stylesheets, scripts, and meta information
 - Top level pages and their children, for example: `/training`, `/community`, `/case-studies/adidas`
 - Blog posts
@@ -69,34 +72,34 @@ The link checker does not scan the following:
 - Localizations
  -->
 - 包含在顶部和侧边导航栏的链接，以及页脚链接或者页面的 `<head>` 部分中的链接，例如 CSS 样式表、脚本以及元信息的链接。
-- 顶级页面及其子页面，例如： `/training`, `/community`, `/case-studies/adidas`
+- 顶级页面及其子页面，例如：`/training`、`/community`、`/case-studies/adidas`
 - 博客文章
-- API 参考文档，例如：https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.18/
+- API 参考文档，例如： https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.18/
 - 本地化内容
 
-<!-- 
+<!--
 ## Prerequisites and installation
  -->
 ## 先决条件以及安装说明
 
-<!-- 
+<!--
 You must install
  -->
 必须安装：
 * [Docker](https://docs.docker.com/get-docker/)
 * [make](https://www.gnu.org/software/make/)
- 
-<!-- 
+
+<!--
 ## Running the link checker
  -->
 ## 运行链接检查器
 
-<!-- 
+<!--
 To run the link checker:
  -->
 运行链接检查器需要：
 
-<!-- 
+<!--
 1. Navigate to the root directory of your local `kubernetes/website` repository.
 
 2. Run the following command:
@@ -106,15 +109,15 @@ To run the link checker:
 2. 执行如下命令：
 
   ```
-  make docker-internal-linkcheck
+  make container-internal-linkcheck
   ```
 
-<!-- 
+<!--
 ## Understanding the output
  -->
 ## 理解输出的内容
 
-<!-- 
+<!--
 If the link checker finds broken links, the output is similar to the following:
  -->
 如果链接检查器发现了失效链接，则输出内容类似如下：
@@ -125,7 +128,7 @@ tasks/access-kubernetes-api/custom-resources/index.html
   hash does not exist --- tasks/access-kubernetes-api/custom-resources/index.html --> #preserving-unknown-fields
 ```
 
-<!-- 
+<!--
 This is one set of broken links. The log adds an output for each page with broken links.
 
 In this output, the file with broken links is `tasks/access-kubernetes-api/custom-resources.md`.
@@ -138,15 +141,15 @@ One way to fix this is to:
  -->
 这是一系列失效链接。该日志附带了每个页面下的失效链接。
 
-在这部分输出中，包含失效链接的文件是 `tasks/access-kubernetes-api/custom-resources.md`.
+在这部分输出中，包含失效链接的文件是 `tasks/access-kubernetes-api/custom-resources.md`。
 
-该工具给出了一个理由：`hash does not exist`. 在大部分情况下，你可以忽略这个。
+该工具给出了一个理由：`hash does not exist`，在大部分情况下，你可以忽略这个。
 
-目标链接是 `#preserving-unknown-fields`.
+目标链接是 `#preserving-unknown-fields`。
 
 修复这个问题的一种方式是：
 
-<!-- 
+<!--
 1. Navigate to the Markdown file with a broken link.
 2. Using a text editor, do a full-text search (usually Ctrl+F or Command+F) for the broken link's URL, `#preserving-unknown-fields`.
 3. Fix the link. For a broken page hash (or _anchor_) link, check whether the topic was renamed or removed.
@@ -155,7 +158,7 @@ One way to fix this is to:
 2. 使用文本编辑器全文搜索失效链接的 URL（通常使用 Ctrl+F 或 Command+F）`#preserving-unknown-fields`.
 3. 修复该链接。对于一个失效的锚点（或者 _anchor_ ）链接，检查该主题是否已更名或者移除。
 
-<!-- 
+<!--
 Run htmltest to verify that broken links are fixed.
  -->
 运行 htmltest 来验证失效链接是否已修复。
\ No newline at end of file
diff --git a/content/zh/docs/home/_index.md b/content/zh-cn/docs/home/_index.md
similarity index 90%
rename from content/zh/docs/home/_index.md
rename to content/zh-cn/docs/home/_index.md
index cedb0180df..738ee19bb4 100644
--- a/content/zh/docs/home/_index.md
+++ b/content/zh-cn/docs/home/_index.md
@@ -24,9 +24,9 @@ overview:
   Kubernetes 是一个开源的容器编排引擎，用来对容器化应用进行自动化部署、 扩缩和管理。该项目托管在 <a href="https://www.cncf.io/about">CNCF</a>。
 # cards:
 # - name: concepts
-#   title: "Understand the basics"
+#   title: "Understand Kubernetes"
 #   description: "Learn about Kubernetes and its fundamental concepts."
-#   button: "Learn Concepts"
+#   button: "View Concepts"
 #   button_path: "/docs/concepts"
 # - name: tutorials
 #   title: "Try Kubernetes"
@@ -62,51 +62,51 @@ overview:
 #   title: K8s Release Notes
 #   description: If you are installing Kubernetes or upgrading to the newest version, refer to the current release notes.
 #   button: "Download Kubernetes"
-#   button_path: "/zh/docs/setup/release/notes"
+#   button_path: "/zh-cn/docs/setup/release/notes"
 # - name: about
 #   title: About the documentation
 #   description: This website contains documentation for the current and previous 4 versions of Kubernetes.
 cards:
 - name: concepts
-  title: "了解基本知识"
+  title: "了解 Kubernetes"
   description: "了解 Kubernetes 和其基础概念。"
-  button: "了解概念"
-  button_path: "/zh/docs/concepts"
+  button: "查看概念"
+  button_path: "/zh-cn/docs/concepts"
 - name: tutorials
   title: "尝试 Kubernetes"
   description: "按照教程学习如何在 Kubernetes 上部署应用。"
   button: "查看教程"
-  button_path: "/zh/docs/tutorials"
+  button_path: "/zh-cn/docs/tutorials"
 - name: setup
   title: "设置 K8s 集群"
   description: "按照你的资源情况和需求运行 Kubernetes。"
   button: "设置 Kubernetes"
-  button_path: "/zh/docs/setup"
+  button_path: "/zh-cn/docs/setup"
 - name: tasks
   title: "了解如何使用 Kubernetes"
   description: "查看常见任务以及如何使用简单步骤执行它们。"
   button: "查看任务"
-  button_path: "/zh/docs/tasks"
+  button_path: "/zh-cn/docs/tasks"
 - name: training
   title: "培训"
   description: "通过 Kubernetes 认证，助你的云原生项目成功！"
   button: "查看培训"
-  button_path: "/zh/training"
+  button_path: "/zh-cn/training"
 - name: reference
   title: 查阅参考信息 
   description: 浏览术语、命令行语法、API 资源类型和安装工具文档。
   button: 查看参考
-  button_path: /zh/docs/reference
+  button_path: /zh-cn/docs/reference
 - name: contribute
   title: 为文档作贡献
   description: 任何人，无论对该项目熟悉与否，都能贡献自己的力量。
   button: 为文档作贡献
-  button_path: /zh/docs/contribute
+  button_path: /zh-cn/docs/contribute
 - name: release-notes
   title: K8s 发布说明
   description: 如果你正在安装或升级 Kubernetes，最好参考最新的发布说明。
   button: "下载 Kubernetes"
-  button_path: "/zh/docs/setup/release/notes"
+  button_path: "/releases/download"
 - name: about
   title: 关于文档
   description: 本网站包含了当前及前 4 个版本的 Kubernetes 文档。
diff --git a/content/zh-cn/docs/home/supported-doc-versions.md b/content/zh-cn/docs/home/supported-doc-versions.md
new file mode 100644
index 0000000000..6fc4dcf339
--- /dev/null
+++ b/content/zh-cn/docs/home/supported-doc-versions.md
@@ -0,0 +1,34 @@
+---
+title: Kubernetes 文档支持的版本
+content_type: custom
+layout: supported-versions
+card:
+  name: about
+  weight: 10
+  title: Kubernetes 文档支持的版本
+---
+<!--
+title: Available Documentation Versions
+content_type: custom
+layout: supported-versions
+card:
+  name: about
+  weight: 10
+  title: Available Documentation Versions
+-->
+<!-- overview -->
+
+<!-- 
+This website contains documentation for the current version of Kubernetes
+and the four previous versions of Kubernetes.
+
+The availability of documentation for a Kubernetes version is separate from whether
+that release is currently supported.
+Read [Support period](/releases/patch-releases/#support-period) to learn about
+which versions of Kubernetes are officially supported, and for how long.
+-->
+
+本网站包含当前版本和之前四个版本的 Kubernetes 文档。
+
+Kubernetes 版本的文档可用性与当前是否支持该版本是分开的。
+阅读[支持期限](/zh-cn/releases/patch-releases/#support-period)，了解官方支持 Kubernetes 的哪些版本，以及支持多长时间。
diff --git a/content/zh-cn/docs/images/diagram-guide-example-3.svg b/content/zh-cn/docs/images/diagram-guide-example-3.svg
new file mode 100644
index 0000000000..85fef13910
--- /dev/null
+++ b/content/zh-cn/docs/images/diagram-guide-example-3.svg
@@ -0,0 +1 @@
+<svg id="graph-div" width="100%" xmlns="http://www.w3.org/2000/svg" height="747" style="max-width: 1540px;" viewBox="-50 -10 1540 747"><style>#graph-div {font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;fill:#000000;}#graph-div .error-icon{fill:#552222;}#graph-div .error-text{fill:#552222;stroke:#552222;}#graph-div .edge-thickness-normal{stroke-width:2px;}#graph-div .edge-thickness-thick{stroke-width:3.5px;}#graph-div .edge-pattern-solid{stroke-dasharray:0;}#graph-div .edge-pattern-dashed{stroke-dasharray:3;}#graph-div .edge-pattern-dotted{stroke-dasharray:2;}#graph-div .marker{fill:#666;stroke:#666;}#graph-div .marker.cross{stroke:#666;}#graph-div svg{font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;}#graph-div .actor{stroke:hsl(0, 0%, 83%);fill:#eee;}#graph-div text.actor&gt;tspan{fill:#333;stroke:none;}#graph-div .actor-line{stroke:#666;}#graph-div .messageLine0{stroke-width:1.5;stroke-dasharray:none;stroke:#333;}#graph-div .messageLine1{stroke-width:1.5;stroke-dasharray:2,2;stroke:#333;}#graph-div #arrowhead path{fill:#333;stroke:#333;}#graph-div .sequenceNumber{fill:white;}#graph-div #sequencenumber{fill:#333;}#graph-div #crosshead path{fill:#333;stroke:#333;}#graph-div .messageText{fill:#333;stroke:#333;}#graph-div .labelBox{stroke:hsl(0, 0%, 83%);fill:#eee;}#graph-div .labelText,#graph-div .labelText&gt;tspan{fill:#333;stroke:none;}#graph-div .loopText,#graph-div .loopText&gt;tspan{fill:#333;stroke:none;}#graph-div .loopLine{stroke-width:2px;stroke-dasharray:2,2;stroke:hsl(0, 0%, 83%);fill:hsl(0, 0%, 83%);}#graph-div .note{stroke:#999;fill:#666;}#graph-div .noteText,#graph-div .noteText&gt;tspan{fill:#fff;stroke:none;}#graph-div .activation0{fill:#f4f4f4;stroke:#666;}#graph-div .activation1{fill:#f4f4f4;stroke:#666;}#graph-div .activation2{fill:#f4f4f4;stroke:#666;}#graph-div .actorPopupMenu{position:absolute;}#graph-div .actorPopupMenuPanel{position:absolute;fill:#eee;box-shadow:0px 8px 16px 0px rgba(0,0,0,0.2);filter:drop-shadow(3px 5px 2px rgb(0 0 0 / 0.4));}#graph-div .actor-man line{stroke:hsl(0, 0%, 83%);fill:#eee;}#graph-div .actor-man circle,#graph-div line{stroke:hsl(0, 0%, 83%);fill:#eee;stroke-width:2px;}#graph-div :root{--mermaid-font-family:"trebuchet ms",verdana,arial,sans-serif;}</style><g></g><defs><symbol id="computer" width="24" height="24"><path transform="scale(.5)" d="M2 2v13h20v-13h-20zm18 11h-16v-9h16v9zm-10.228 6l.466-1h3.524l.467 1h-4.457zm14.228 3h-24l2-6h2.104l-1.33 4h18.45l-1.297-4h2.073l2 6zm-5-10h-14v-7h14v7z"></path></symbol></defs><defs><symbol id="database" fill-rule="evenodd" clip-rule="evenodd"><path transform="scale(.5)" d="M12.258.001l.256.004.255.005.253.008.251.01.249.012.247.015.246.016.242.019.241.02.239.023.236.024.233.027.231.028.229.031.225.032.223.034.22.036.217.038.214.04.211.041.208.043.205.045.201.046.198.048.194.05.191.051.187.053.183.054.18.056.175.057.172.059.168.06.163.061.16.063.155.064.15.066.074.033.073.033.071.034.07.034.069.035.068.035.067.035.066.035.064.036.064.036.062.036.06.036.06.037.058.037.058.037.055.038.055.038.053.038.052.038.051.039.05.039.048.039.047.039.045.04.044.04.043.04.041.04.04.041.039.041.037.041.036.041.034.041.033.042.032.042.03.042.029.042.027.042.026.043.024.043.023.043.021.043.02.043.018.044.017.043.015.044.013.044.012.044.011.045.009.044.007.045.006.045.004.045.002.045.001.045v17l-.001.045-.002.045-.004.045-.006.045-.007.045-.009.044-.011.045-.012.044-.013.044-.015.044-.017.043-.018.044-.02.043-.021.043-.023.043-.024.043-.026.043-.027.042-.029.042-.03.042-.032.042-.033.042-.034.041-.036.041-.037.041-.039.041-.04.041-.041.04-.043.04-.044.04-.045.04-.047.039-.048.039-.05.039-.051.039-.052.038-.053.038-.055.038-.055.038-.058.037-.058.037-.06.037-.06.036-.062.036-.064.036-.064.036-.066.035-.067.035-.068.035-.069.035-.07.034-.071.034-.073.033-.074.033-.15.066-.155.064-.16.063-.163.061-.168.06-.172.059-.175.057-.18.056-.183.054-.187.053-.191.051-.194.05-.198.048-.201.046-.205.045-.208.043-.211.041-.214.04-.217.038-.22.036-.223.034-.225.032-.229.031-.231.028-.233.027-.236.024-.239.023-.241.02-.242.019-.246.016-.247.015-.249.012-.251.01-.253.008-.255.005-.256.004-.258.001-.258-.001-.256-.004-.255-.005-.253-.008-.251-.01-.249-.012-.247-.015-.245-.016-.243-.019-.241-.02-.238-.023-.236-.024-.234-.027-.231-.028-.228-.031-.226-.032-.223-.034-.22-.036-.217-.038-.214-.04-.211-.041-.208-.043-.204-.045-.201-.046-.198-.048-.195-.05-.19-.051-.187-.053-.184-.054-.179-.056-.176-.057-.172-.059-.167-.06-.164-.061-.159-.063-.155-.064-.151-.066-.074-.033-.072-.033-.072-.034-.07-.034-.069-.035-.068-.035-.067-.035-.066-.035-.064-.036-.063-.036-.062-.036-.061-.036-.06-.037-.058-.037-.057-.037-.056-.038-.055-.038-.053-.038-.052-.038-.051-.039-.049-.039-.049-.039-.046-.039-.046-.04-.044-.04-.043-.04-.041-.04-.04-.041-.039-.041-.037-.041-.036-.041-.034-.041-.033-.042-.032-.042-.03-.042-.029-.042-.027-.042-.026-.043-.024-.043-.023-.043-.021-.043-.02-.043-.018-.044-.017-.043-.015-.044-.013-.044-.012-.044-.011-.045-.009-.044-.007-.045-.006-.045-.004-.045-.002-.045-.001-.045v-17l.001-.045.002-.045.004-.045.006-.045.007-.045.009-.044.011-.045.012-.044.013-.044.015-.044.017-.043.018-.044.02-.043.021-.043.023-.043.024-.043.026-.043.027-.042.029-.042.03-.042.032-.042.033-.042.034-.041.036-.041.037-.041.039-.041.04-.041.041-.04.043-.04.044-.04.046-.04.046-.039.049-.039.049-.039.051-.039.052-.038.053-.038.055-.038.056-.038.057-.037.058-.037.06-.037.061-.036.062-.036.063-.036.064-.036.066-.035.067-.035.068-.035.069-.035.07-.034.072-.034.072-.033.074-.033.151-.066.155-.064.159-.063.164-.061.167-.06.172-.059.176-.057.179-.056.184-.054.187-.053.19-.051.195-.05.198-.048.201-.046.204-.045.208-.043.211-.041.214-.04.217-.038.22-.036.223-.034.226-.032.228-.031.231-.028.234-.027.236-.024.238-.023.241-.02.243-.019.245-.016.247-.015.249-.012.251-.01.253-.008.255-.005.256-.004.258-.001.258.001zm-9.258 20.499v.01l.001.021.003.021.004.022.005.021.006.022.007.022.009.023.01.022.011.023.012.023.013.023.015.023.016.024.017.023.018.024.019.024.021.024.022.025.023.024.024.025.052.049.056.05.061.051.066.051.07.051.075.051.079.052.084.052.088.052.092.052.097.052.102.051.105.052.11.052.114.051.119.051.123.051.127.05.131.05.135.05.139.048.144.049.147.047.152.047.155.047.16.045.163.045.167.043.171.043.176.041.178.041.183.039.187.039.19.037.194.035.197.035.202.033.204.031.209.03.212.029.216.027.219.025.222.024.226.021.23.02.233.018.236.016.24.015.243.012.246.01.249.008.253.005.256.004.259.001.26-.001.257-.004.254-.005.25-.008.247-.011.244-.012.241-.014.237-.016.233-.018.231-.021.226-.021.224-.024.22-.026.216-.027.212-.028.21-.031.205-.031.202-.034.198-.034.194-.036.191-.037.187-.039.183-.04.179-.04.175-.042.172-.043.168-.044.163-.045.16-.046.155-.046.152-.047.148-.048.143-.049.139-.049.136-.05.131-.05.126-.05.123-.051.118-.052.114-.051.11-.052.106-.052.101-.052.096-.052.092-.052.088-.053.083-.051.079-.052.074-.052.07-.051.065-.051.06-.051.056-.05.051-.05.023-.024.023-.025.021-.024.02-.024.019-.024.018-.024.017-.024.015-.023.014-.024.013-.023.012-.023.01-.023.01-.022.008-.022.006-.022.006-.022.004-.022.004-.021.001-.021.001-.021v-4.127l-.077.055-.08.053-.083.054-.085.053-.087.052-.09.052-.093.051-.095.05-.097.05-.1.049-.102.049-.105.048-.106.047-.109.047-.111.046-.114.045-.115.045-.118.044-.12.043-.122.042-.124.042-.126.041-.128.04-.13.04-.132.038-.134.038-.135.037-.138.037-.139.035-.142.035-.143.034-.144.033-.147.032-.148.031-.15.03-.151.03-.153.029-.154.027-.156.027-.158.026-.159.025-.161.024-.162.023-.163.022-.165.021-.166.02-.167.019-.169.018-.169.017-.171.016-.173.015-.173.014-.175.013-.175.012-.177.011-.178.01-.179.008-.179.008-.181.006-.182.005-.182.004-.184.003-.184.002h-.37l-.184-.002-.184-.003-.182-.004-.182-.005-.181-.006-.179-.008-.179-.008-.178-.01-.176-.011-.176-.012-.175-.013-.173-.014-.172-.015-.171-.016-.17-.017-.169-.018-.167-.019-.166-.02-.165-.021-.163-.022-.162-.023-.161-.024-.159-.025-.157-.026-.156-.027-.155-.027-.153-.029-.151-.03-.15-.03-.148-.031-.146-.032-.145-.033-.143-.034-.141-.035-.14-.035-.137-.037-.136-.037-.134-.038-.132-.038-.13-.04-.128-.04-.126-.041-.124-.042-.122-.042-.12-.044-.117-.043-.116-.045-.113-.045-.112-.046-.109-.047-.106-.047-.105-.048-.102-.049-.1-.049-.097-.05-.095-.05-.093-.052-.09-.051-.087-.052-.085-.053-.083-.054-.08-.054-.077-.054v4.127zm0-5.654v.011l.001.021.003.021.004.021.005.022.006.022.007.022.009.022.01.022.011.023.012.023.013.023.015.024.016.023.017.024.018.024.019.024.021.024.022.024.023.025.024.024.052.05.056.05.061.05.066.051.07.051.075.052.079.051.084.052.088.052.092.052.097.052.102.052.105.052.11.051.114.051.119.052.123.05.127.051.131.05.135.049.139.049.144.048.147.048.152.047.155.046.16.045.163.045.167.044.171.042.176.042.178.04.183.04.187.038.19.037.194.036.197.034.202.033.204.032.209.03.212.028.216.027.219.025.222.024.226.022.23.02.233.018.236.016.24.014.243.012.246.01.249.008.253.006.256.003.259.001.26-.001.257-.003.254-.006.25-.008.247-.01.244-.012.241-.015.237-.016.233-.018.231-.02.226-.022.224-.024.22-.025.216-.027.212-.029.21-.03.205-.032.202-.033.198-.035.194-.036.191-.037.187-.039.183-.039.179-.041.175-.042.172-.043.168-.044.163-.045.16-.045.155-.047.152-.047.148-.048.143-.048.139-.05.136-.049.131-.05.126-.051.123-.051.118-.051.114-.052.11-.052.106-.052.101-.052.096-.052.092-.052.088-.052.083-.052.079-.052.074-.051.07-.052.065-.051.06-.05.056-.051.051-.049.023-.025.023-.024.021-.025.02-.024.019-.024.018-.024.017-.024.015-.023.014-.023.013-.024.012-.022.01-.023.01-.023.008-.022.006-.022.006-.022.004-.021.004-.022.001-.021.001-.021v-4.139l-.077.054-.08.054-.083.054-.085.052-.087.053-.09.051-.093.051-.095.051-.097.05-.1.049-.102.049-.105.048-.106.047-.109.047-.111.046-.114.045-.115.044-.118.044-.12.044-.122.042-.124.042-.126.041-.128.04-.13.039-.132.039-.134.038-.135.037-.138.036-.139.036-.142.035-.143.033-.144.033-.147.033-.148.031-.15.03-.151.03-.153.028-.154.028-.156.027-.158.026-.159.025-.161.024-.162.023-.163.022-.165.021-.166.02-.167.019-.169.018-.169.017-.171.016-.173.015-.173.014-.175.013-.175.012-.177.011-.178.009-.179.009-.179.007-.181.007-.182.005-.182.004-.184.003-.184.002h-.37l-.184-.002-.184-.003-.182-.004-.182-.005-.181-.007-.179-.007-.179-.009-.178-.009-.176-.011-.176-.012-.175-.013-.173-.014-.172-.015-.171-.016-.17-.017-.169-.018-.167-.019-.166-.02-.165-.021-.163-.022-.162-.023-.161-.024-.159-.025-.157-.026-.156-.027-.155-.028-.153-.028-.151-.03-.15-.03-.148-.031-.146-.033-.145-.033-.143-.033-.141-.035-.14-.036-.137-.036-.136-.037-.134-.038-.132-.039-.13-.039-.128-.04-.126-.041-.124-.042-.122-.043-.12-.043-.117-.044-.116-.044-.113-.046-.112-.046-.109-.046-.106-.047-.105-.048-.102-.049-.1-.049-.097-.05-.095-.051-.093-.051-.09-.051-.087-.053-.085-.052-.083-.054-.08-.054-.077-.054v4.139zm0-5.666v.011l.001.02.003.022.004.021.005.022.006.021.007.022.009.023.01.022.011.023.012.023.013.023.015.023.016.024.017.024.018.023.019.024.021.025.022.024.023.024.024.025.052.05.056.05.061.05.066.051.07.051.075.052.079.051.084.052.088.052.092.052.097.052.102.052.105.051.11.052.114.051.119.051.123.051.127.05.131.05.135.05.139.049.144.048.147.048.152.047.155.046.16.045.163.045.167.043.171.043.176.042.178.04.183.04.187.038.19.037.194.036.197.034.202.033.204.032.209.03.212.028.216.027.219.025.222.024.226.021.23.02.233.018.236.017.24.014.243.012.246.01.249.008.253.006.256.003.259.001.26-.001.257-.003.254-.006.25-.008.247-.01.244-.013.241-.014.237-.016.233-.018.231-.02.226-.022.224-.024.22-.025.216-.027.212-.029.21-.03.205-.032.202-.033.198-.035.194-.036.191-.037.187-.039.183-.039.179-.041.175-.042.172-.043.168-.044.163-.045.16-.045.155-.047.152-.047.148-.048.143-.049.139-.049.136-.049.131-.051.126-.05.123-.051.118-.052.114-.051.11-.052.106-.052.101-.052.096-.052.092-.052.088-.052.083-.052.079-.052.074-.052.07-.051.065-.051.06-.051.056-.05.051-.049.023-.025.023-.025.021-.024.02-.024.019-.024.018-.024.017-.024.015-.023.014-.024.013-.023.012-.023.01-.022.01-.023.008-.022.006-.022.006-.022.004-.022.004-.021.001-.021.001-.021v-4.153l-.077.054-.08.054-.083.053-.085.053-.087.053-.09.051-.093.051-.095.051-.097.05-.1.049-.102.048-.105.048-.106.048-.109.046-.111.046-.114.046-.115.044-.118.044-.12.043-.122.043-.124.042-.126.041-.128.04-.13.039-.132.039-.134.038-.135.037-.138.036-.139.036-.142.034-.143.034-.144.033-.147.032-.148.032-.15.03-.151.03-.153.028-.154.028-.156.027-.158.026-.159.024-.161.024-.162.023-.163.023-.165.021-.166.02-.167.019-.169.018-.169.017-.171.016-.173.015-.173.014-.175.013-.175.012-.177.01-.178.01-.179.009-.179.007-.181.006-.182.006-.182.004-.184.003-.184.001-.185.001-.185-.001-.184-.001-.184-.003-.182-.004-.182-.006-.181-.006-.179-.007-.179-.009-.178-.01-.176-.01-.176-.012-.175-.013-.173-.014-.172-.015-.171-.016-.17-.017-.169-.018-.167-.019-.166-.02-.165-.021-.163-.023-.162-.023-.161-.024-.159-.024-.157-.026-.156-.027-.155-.028-.153-.028-.151-.03-.15-.03-.148-.032-.146-.032-.145-.033-.143-.034-.141-.034-.14-.036-.137-.036-.136-.037-.134-.038-.132-.039-.13-.039-.128-.041-.126-.041-.124-.041-.122-.043-.12-.043-.117-.044-.116-.044-.113-.046-.112-.046-.109-.046-.106-.048-.105-.048-.102-.048-.1-.05-.097-.049-.095-.051-.093-.051-.09-.052-.087-.052-.085-.053-.083-.053-.08-.054-.077-.054v4.153zm8.74-8.179l-.257.004-.254.005-.25.008-.247.011-.244.012-.241.014-.237.016-.233.018-.231.021-.226.022-.224.023-.22.026-.216.027-.212.028-.21.031-.205.032-.202.033-.198.034-.194.036-.191.038-.187.038-.183.04-.179.041-.175.042-.172.043-.168.043-.163.045-.16.046-.155.046-.152.048-.148.048-.143.048-.139.049-.136.05-.131.05-.126.051-.123.051-.118.051-.114.052-.11.052-.106.052-.101.052-.096.052-.092.052-.088.052-.083.052-.079.052-.074.051-.07.052-.065.051-.06.05-.056.05-.051.05-.023.025-.023.024-.021.024-.02.025-.019.024-.018.024-.017.023-.015.024-.014.023-.013.023-.012.023-.01.023-.01.022-.008.022-.006.023-.006.021-.004.022-.004.021-.001.021-.001.021.001.021.001.021.004.021.004.022.006.021.006.023.008.022.01.022.01.023.012.023.013.023.014.023.015.024.017.023.018.024.019.024.02.025.021.024.023.024.023.025.051.05.056.05.06.05.065.051.07.052.074.051.079.052.083.052.088.052.092.052.096.052.101.052.106.052.11.052.114.052.118.051.123.051.126.051.131.05.136.05.139.049.143.048.148.048.152.048.155.046.16.046.163.045.168.043.172.043.175.042.179.041.183.04.187.038.191.038.194.036.198.034.202.033.205.032.21.031.212.028.216.027.22.026.224.023.226.022.231.021.233.018.237.016.241.014.244.012.247.011.25.008.254.005.257.004.26.001.26-.001.257-.004.254-.005.25-.008.247-.011.244-.012.241-.014.237-.016.233-.018.231-.021.226-.022.224-.023.22-.026.216-.027.212-.028.21-.031.205-.032.202-.033.198-.034.194-.036.191-.038.187-.038.183-.04.179-.041.175-.042.172-.043.168-.043.163-.045.16-.046.155-.046.152-.048.148-.048.143-.048.139-.049.136-.05.131-.05.126-.051.123-.051.118-.051.114-.052.11-.052.106-.052.101-.052.096-.052.092-.052.088-.052.083-.052.079-.052.074-.051.07-.052.065-.051.06-.05.056-.05.051-.05.023-.025.023-.024.021-.024.02-.025.019-.024.018-.024.017-.023.015-.024.014-.023.013-.023.012-.023.01-.023.01-.022.008-.022.006-.023.006-.021.004-.022.004-.021.001-.021.001-.021-.001-.021-.001-.021-.004-.021-.004-.022-.006-.021-.006-.023-.008-.022-.01-.022-.01-.023-.012-.023-.013-.023-.014-.023-.015-.024-.017-.023-.018-.024-.019-.024-.02-.025-.021-.024-.023-.024-.023-.025-.051-.05-.056-.05-.06-.05-.065-.051-.07-.052-.074-.051-.079-.052-.083-.052-.088-.052-.092-.052-.096-.052-.101-.052-.106-.052-.11-.052-.114-.052-.118-.051-.123-.051-.126-.051-.131-.05-.136-.05-.139-.049-.143-.048-.148-.048-.152-.048-.155-.046-.16-.046-.163-.045-.168-.043-.172-.043-.175-.042-.179-.041-.183-.04-.187-.038-.191-.038-.194-.036-.198-.034-.202-.033-.205-.032-.21-.031-.212-.028-.216-.027-.22-.026-.224-.023-.226-.022-.231-.021-.233-.018-.237-.016-.241-.014-.244-.012-.247-.011-.25-.008-.254-.005-.257-.004-.26-.001-.26.001z"></path></symbol></defs><defs><symbol id="clock" width="24" height="24"><path transform="scale(.5)" d="M12 2c5.514 0 10 4.486 10 10s-4.486 10-10 10-10-4.486-10-10 4.486-10 10-10zm0-2c-6.627 0-12 5.373-12 12s5.373 12 12 12 12-5.373 12-12-5.373-12-12-12zm5.848 12.459c.202.038.202.333.001.372-1.907.361-6.045 1.111-6.547 1.111-.719 0-1.301-.582-1.301-1.301 0-.512.77-5.447 1.125-7.445.034-.192.312-.181.343.014l.985 6.238 5.394 1.011z"></path></symbol></defs><line id="actor14" x1="75" y1="80" x2="75" y2="681" class="200" stroke-width="0.5px" stroke="#999"></line><g class="actor-man"><line id="actor-man-torso14" x1="75" y1="25" x2="75" y2="45"></line><line id="actor-man-arms14" x1="57" y1="33" x2="93" y2="33"></line><line x1="57" y1="60" x2="75" y2="45"></line><line x1="75" y1="45" x2="91" y2="60"></line><circle cx="75" cy="10" r="15" width="150" height="65"></circle><text x="75" y="67.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="75" dy="0">me</tspan></text></g><g><line id="actor15" x1="357" y1="5" x2="357" y2="681" class="200" stroke-width="0.5px" stroke="#999"></line><g id="root-15"><rect x="282" y="0" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="357" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="357" dy="-14">control plane</tspan></text><text x="357" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="357" dy="0"></tspan></text><text x="357" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="357" dy="14">api-server</tspan></text></g></g><g><line id="actor16" x1="561" y1="5" x2="561" y2="681" class="200" stroke-width="0.5px" stroke="#999"></line><g id="root-16"><rect x="486" y="0" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="561" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="561" dy="-14">control plane</tspan></text><text x="561" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="561" dy="0"></tspan></text><text x="561" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="561" dy="14">etcd datastore</tspan></text></g></g><g><line id="actor17" x1="761" y1="5" x2="761" y2="681" class="200" stroke-width="0.5px" stroke="#999"></line><g id="root-17"><rect x="686" y="0" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="761" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="761" dy="-21">control plane</tspan></text><text x="761" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="761" dy="-7"></tspan></text><text x="761" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="761" dy="7">controller</tspan></text><text x="761" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="761" dy="21">manager</tspan></text></g></g><g><line id="actor18" x1="961" y1="5" x2="961" y2="681" class="200" stroke-width="0.5px" stroke="#999"></line><g id="root-18"><rect x="886" y="0" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="961" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="961" dy="-14">control plane</tspan></text><text x="961" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="961" dy="0"></tspan></text><text x="961" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="961" dy="14">scheduler</tspan></text></g></g><g><line id="actor19" x1="1161" y1="5" x2="1161" y2="681" class="200" stroke-width="0.5px" stroke="#999"></line><g id="root-19"><rect x="1086" y="0" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="1161" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1161" dy="-14">node</tspan></text><text x="1161" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1161" dy="0"></tspan></text><text x="1161" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1161" dy="14">kubelet</tspan></text></g></g><g><line id="actor20" x1="1365" y1="5" x2="1365" y2="681" class="200" stroke-width="0.5px" stroke="#999"></line><g id="root-20"><rect x="1290" y="0" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="1365" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1365" dy="-21">node</tspan></text><text x="1365" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1365" dy="-7"></tspan></text><text x="1365" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1365" dy="7">container</tspan></text><text x="1365" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1365" dy="21">runtime</tspan></text></g></g><defs><marker id="arrowhead" refX="9" refY="5" markerUnits="userSpaceOnUse" markerWidth="12" markerHeight="12" orient="auto"><path d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs><defs><marker id="crosshead" markerWidth="15" markerHeight="8" orient="auto" refX="16" refY="4"><path fill="black" stroke="#000000" stroke-width="1px" d="M 9,2 V 6 L16,4 Z" style="stroke-dasharray: 0, 0;"></path><path fill="none" stroke="#000000" stroke-width="1px" d="M 0,1 L 6,7 M 6,1 L 0,7" style="stroke-dasharray: 0, 0;"></path></marker></defs><defs><marker id="filled-head" refX="18" refY="7" markerWidth="20" markerHeight="28" orient="auto"><path d="M 18,7 L9,13 L14,7 L9,1 Z"></path></marker></defs><defs><marker id="sequencenumber" refX="15" refY="15" markerWidth="60" markerHeight="40" orient="auto"><circle cx="15" cy="15" r="6"></circle></marker></defs><text x="216" y="80" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">1. kubectl create -f pod.yaml</text><line x1="75" y1="113" x2="357" y2="113" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></line><text x="459" y="128" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">2. save new state</text><line x1="357" y1="161" x2="561" y2="161" class="messageLine1" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="stroke-dasharray: 3, 3; fill: none;"></line><text x="559" y="176" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">3. check for changes</text><line x1="761" y1="209" x2="357" y2="209" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></line><text x="659" y="224" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">4. watch for unassigned pods(s)</text><line x1="961" y1="257" x2="357" y2="257" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></line><text x="659" y="272" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">5. notify about pod w nodename=" "</text><line x1="357" y1="305" x2="961" y2="305" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></line><text x="659" y="320" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">6. assign pod to node</text><line x1="961" y1="353" x2="357" y2="353" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></line><text x="459" y="368" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">7. save new state</text><line x1="357" y1="401" x2="561" y2="401" class="messageLine1" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="stroke-dasharray: 3, 3; fill: none;"></line><text x="759" y="416" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">8. look for newly assigned pod(s)</text><line x1="1161" y1="449" x2="357" y2="449" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></line><text x="759" y="464" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">9. bind pod to node</text><line x1="357" y1="497" x2="1161" y2="497" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></line><text x="1263" y="512" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">10. start container</text><line x1="1161" y1="545" x2="1365" y2="545" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></line><text x="759" y="560" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">11. update pod status</text><line x1="1161" y1="593" x2="357" y2="593" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></line><text x="459" y="608" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">12. save new state</text><line x1="357" y1="641" x2="561" y2="641" class="messageLine1" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="stroke-dasharray: 3, 3; fill: none;"></line><g class="actor-man"><line id="actor-man-torso20" x1="75" y1="686" x2="75" y2="706"></line><line id="actor-man-arms20" x1="57" y1="694" x2="93" y2="694"></line><line x1="57" y1="721" x2="75" y2="706"></line><line x1="75" y1="706" x2="91" y2="721"></line><circle cx="75" cy="671" r="15" width="150" height="65"></circle><text x="75" y="728.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="75" dy="0">me</tspan></text></g><g><rect x="282" y="661" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="357" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="357" dy="-14">control plane</tspan></text><text x="357" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="357" dy="0"></tspan></text><text x="357" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="357" dy="14">api-server</tspan></text></g><g><rect x="486" y="661" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="561" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="561" dy="-14">control plane</tspan></text><text x="561" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="561" dy="0"></tspan></text><text x="561" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="561" dy="14">etcd datastore</tspan></text></g><g><rect x="686" y="661" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="761" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="761" dy="-21">control plane</tspan></text><text x="761" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="761" dy="-7"></tspan></text><text x="761" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="761" dy="7">controller</tspan></text><text x="761" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="761" dy="21">manager</tspan></text></g><g><rect x="886" y="661" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="961" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="961" dy="-14">control plane</tspan></text><text x="961" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="961" dy="0"></tspan></text><text x="961" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="961" dy="14">scheduler</tspan></text></g><g><rect x="1086" y="661" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="1161" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1161" dy="-14">node</tspan></text><text x="1161" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1161" dy="0"></tspan></text><text x="1161" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1161" dy="14">kubelet</tspan></text></g><g><rect x="1290" y="661" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="1365" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1365" dy="-21">node</tspan></text><text x="1365" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1365" dy="-7"></tspan></text><text x="1365" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1365" dy="7">container</tspan></text><text x="1365" y="693.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="1365" dy="21">runtime</tspan></text></g></svg>
\ No newline at end of file
diff --git a/content/zh-cn/docs/images/ha-control-plane.svg b/content/zh-cn/docs/images/ha-control-plane.svg
new file mode 100644
index 0000000000..eb5bbdba81
--- /dev/null
+++ b/content/zh-cn/docs/images/ha-control-plane.svg
@@ -0,0 +1,4 @@
+<!-- if localizing, copy the Google Drawing, update the text, save as SVG, and embed -->
+<!-- Google Drawing: https://docs.google.com/drawings/d/1P1YQry4VYAGTx7UwOT4mDajtIByPew54VtkkZASmDdo/edit?usp=sharing -->
+
+<svg version="1.1" viewBox="0.0 0.0 960.0 720.0" fill="none" stroke="none" stroke-linecap="square" stroke-miterlimit="10" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg"><clipPath id="p.0"><path d="m0 0l960.0 0l0 720.0l-960.0 0l0 -720.0z" clip-rule="nonzero"/></clipPath><g clip-path="url(#p.0)"><path fill="#000000" fill-opacity="0.0" d="m0 0l960.0 0l0 720.0l-960.0 0z" fill-rule="evenodd"/><path fill="#cfe2f3" d="m728.2441 105.826775l190.48822 0l0 349.85825l-190.48822 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m728.2441 105.826775l190.48822 0l0 349.85825l-190.48822 0z" fill-rule="evenodd"/><path fill="#000000" d="m747.3774 125.09552l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm1.7109375 -0.921875q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.6468506 3.453125l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm9.974976 -1.046875l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875zm1.1248779 1.046875l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm4.0164795 -3.453125q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.6312256 3.453125l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm6.6796875 2.65625l0 -9.5625l1.078125 0l0 0.890625q0.375 -0.53125 0.84375 -0.78125q0.484375 -0.265625 1.15625 -0.265625q0.875 0 1.546875 0.453125q0.6875 0.453125 1.03125 1.28125q0.34375 0.828125 0.34375 1.828125q0 1.046875 -0.375 1.90625q-0.375 0.84375 -1.109375 1.296875q-0.71875 0.453125 -1.53125 0.453125q-0.578125 0 -1.046875 -0.25q-0.46875 -0.25 -0.765625 -0.625l0 3.375l-1.171875 0zm1.0625 -6.078125q0 1.34375 0.53125 1.984375q0.546875 0.625 1.3125 0.625q0.78125 0 1.34375 -0.65625q0.5625 -0.65625 0.5625 -2.046875q0 -1.3125 -0.546875 -1.96875q-0.546875 -0.671875 -1.296875 -0.671875q-0.75 0 -1.328125 0.703125q-0.578125 0.703125 -0.578125 2.03125zm6.3343506 3.421875l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm7.4923706 -0.859375q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm2.9906006 3.46875l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm12.146851 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm10.2247925 4.125l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm6.9749756 -3.453125q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm11.131226 3.453125l0 -0.875q-0.65625 1.03125 -1.9375 1.03125q-0.8125 0 -1.515625 -0.453125q-0.6875 -0.453125 -1.078125 -1.265625q-0.375 -0.828125 -0.375 -1.890625q0 -1.03125 0.34375 -1.875q0.34375 -0.84375 1.03125 -1.28125q0.703125 -0.453125 1.546875 -0.453125q0.625 0 1.109375 0.265625q0.5 0.25 0.796875 0.671875l0 -3.421875l1.171875 0l0 9.546875l-1.09375 0zm-3.703125 -3.453125q0 1.328125 0.5625 1.984375q0.5625 0.65625 1.328125 0.65625q0.765625 0 1.296875 -0.625q0.53125 -0.625 0.53125 -1.90625q0 -1.421875 -0.546875 -2.078125q-0.546875 -0.671875 -1.34375 -0.671875q-0.78125 0 -1.3125 0.640625q-0.515625 0.625 -0.515625 2.0zm11.365601 1.234375l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm10.2092285 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm9.1883545 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5218506 6.78125l0 -9.5625l1.078125 0l0 0.890625q0.375 -0.53125 0.84375 -0.78125q0.484375 -0.265625 1.15625 -0.265625q0.875 0 1.546875 0.453125q0.6875 0.453125 1.03125 1.28125q0.34375 0.828125 0.34375 1.828125q0 1.046875 -0.375 1.90625q-0.375 0.84375 -1.109375 1.296875q-0.71875 0.453125 -1.53125 0.453125q-0.578125 0 -1.046875 -0.25q-0.46875 -0.25 -0.765625 -0.625l0 3.375l-1.171875 0zm1.0625 -6.078125q0 1.34375 0.53125 1.984375q0.546875 0.625 1.3125 0.625q0.78125 0 1.34375 -0.65625q0.5625 -0.65625 0.5625 -2.046875q0 -1.3125 -0.546875 -1.96875q-0.546875 -0.671875 -1.296875 -0.671875q-0.75 0 -1.328125 0.703125q-0.578125 0.703125 -0.578125 2.03125zm6.3343506 3.421875l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm2.9923706 -8.1875l0 -1.359375l1.171875 0l0 1.359375l-1.171875 0zm0 8.1875l0 -6.90625l1.171875 0l0 6.90625l-1.171875 0zm7.4610596 -2.53125l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm6.6640625 1.671875q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm11.2092285 0.9375l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875z" fill-rule="nonzero"/><path fill="#ff9900" d="m749.7533 154.41995l146.67712 0l0 88.0l-146.67712 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m749.7533 154.41995l146.67712 0l0 88.0l-146.67712 0z" fill-rule="evenodd"/><path fill="#000000" d="m758.7377 176.21994l3.65625 -9.546875l1.359375 0l3.90625 9.546875l-1.4375 0l-1.109375 -2.890625l-3.984375 0l-1.046875 2.890625l-1.34375 0zm2.75 -3.921875l3.234375 0l-1.0 -2.640625q-0.453125 -1.203125 -0.671875 -1.96875q-0.1875 0.90625 -0.515625 1.8125l-1.046875 2.796875zm7.1866455 3.921875l0 -9.546875l3.59375 0q0.953125 0 1.453125 0.09375q0.703125 0.125 1.171875 0.453125q0.484375 0.328125 0.765625 0.921875q0.296875 0.59375 0.296875 1.296875q0 1.21875 -0.78125 2.0625q-0.765625 0.84375 -2.796875 0.84375l-2.4375 0l0 3.875l-1.265625 0zm1.265625 -5.0l2.453125 0q1.234375 0 1.75 -0.453125q0.515625 -0.46875 0.515625 -1.28125q0 -0.609375 -0.3125 -1.03125q-0.296875 -0.421875 -0.796875 -0.5625q-0.3125 -0.09375 -1.171875 -0.09375l-2.4375 0l0 3.421875zm7.8428345 5.0l0 -9.546875l1.25 0l0 9.546875l-1.25 0zm6.562256 -2.0625l1.15625 -0.1875q0.109375 0.703125 0.546875 1.078125q0.453125 0.359375 1.25 0.359375q0.8125 0 1.203125 -0.328125q0.390625 -0.328125 0.390625 -0.765625q0 -0.390625 -0.359375 -0.625q-0.234375 -0.15625 -1.1875 -0.390625q-1.296875 -0.328125 -1.796875 -0.5625q-0.484375 -0.25 -0.75 -0.65625q-0.25 -0.421875 -0.25 -0.9375q0 -0.453125 0.203125 -0.84375q0.21875 -0.40625 0.578125 -0.671875q0.28125 -0.1875 0.75 -0.328125q0.46875 -0.140625 1.015625 -0.140625q0.8125 0 1.421875 0.234375q0.609375 0.234375 0.90625 0.640625q0.296875 0.390625 0.40625 1.0625l-1.140625 0.15625q-0.078125 -0.53125 -0.453125 -0.828125q-0.375 -0.3125 -1.0625 -0.3125q-0.8125 0 -1.15625 0.265625q-0.34375 0.265625 -0.34375 0.625q0 0.234375 0.140625 0.421875q0.15625 0.1875 0.453125 0.3125q0.171875 0.0625 1.03125 0.296875q1.25 0.328125 1.734375 0.546875q0.5 0.203125 0.78125 0.609375q0.28125 0.40625 0.28125 1.0q0 0.59375 -0.34375 1.109375q-0.34375 0.515625 -1.0 0.796875q-0.640625 0.28125 -1.453125 0.28125q-1.34375 0 -2.046875 -0.5625q-0.703125 -0.5625 -0.90625 -1.65625zm11.8671875 -0.15625l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm6.3758545 0l-2.625 -6.90625l1.234375 0l1.484375 4.140625q0.234375 0.65625 0.4375 1.390625q0.15625 -0.546875 0.4375 -1.3125l1.53125 -4.21875l1.21875 0l-2.625 6.90625l-1.09375 0zm9.4765625 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0z" fill-rule="nonzero"/><path fill="#00ff00" d="m771.3517 203.13132l0 0c0 -2.1511993 1.7438965 -3.8950958 3.8951416 -3.8950958l60.115295 0c1.03302 0 2.0238037 0.41036987 2.7542725 1.1408386c0.73046875 0.730484 1.1408081 1.7212067 1.1408081 2.7542572l0 15.579895c0 2.1511993 -1.7438965 3.8950806 -3.8950806 3.8950806l-60.115295 0c-2.151245 0 -3.8951416 -1.7438812 -3.8951416 -3.8950806z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m771.3517 203.13132l0 0c0 -2.1511993 1.7438965 -3.8950958 3.8951416 -3.8950958l60.115295 0c1.03302 0 2.0238037 0.41036987 2.7542725 1.1408386c0.73046875 0.730484 1.1408081 1.7212067 1.1408081 2.7542572l0 15.579895c0 2.1511993 -1.7438965 3.8950806 -3.8950806 3.8950806l-60.115295 0c-2.151245 0 -3.8951416 -1.7438812 -3.8951416 -3.8950806z" fill-rule="evenodd"/><path fill="#000000" d="m787.1019 213.5025l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm9.084351 3.078125l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875zm5.656128 -1.484375l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm6.6328125 2.53125l0 -0.875q-0.65625 1.03125 -1.9375 1.03125q-0.8125 0 -1.515625 -0.453125q-0.6875 -0.453125 -1.078125 -1.265625q-0.375 -0.828125 -0.375 -1.890625q0 -1.03125 0.34375 -1.875q0.34375 -0.84375 1.03125 -1.28125q0.703125 -0.453125 1.546875 -0.453125q0.625 0 1.109375 0.265625q0.5 0.25 0.796875 0.671875l0 -3.421875l1.171875 0l0 9.546875l-1.09375 0zm-3.703125 -3.453125q0 1.328125 0.5625 1.984375q0.5625 0.65625 1.328125 0.65625q0.765625 0 1.296875 -0.625q0.53125 -0.625 0.53125 -1.90625q0 -1.421875 -0.546875 -2.078125q-0.546875 -0.671875 -1.34375 -0.671875q-0.78125 0 -1.3125 0.640625q-0.515625 0.625 -0.515625 2.0z" fill-rule="nonzero"/><path fill="#f3f3f3" d="m749.7533 261.3281l146.67712 0l0 44.81888l-146.67712 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m749.7533 261.3281l146.67712 0l0 44.81888l-146.67712 0z" fill-rule="evenodd"/><path fill="#bababa" d="m759.15955 281.06558l1.15625 -0.1875q0.109375 0.703125 0.546875 1.078125q0.453125 0.359375 1.25 0.359375q0.8125 0 1.203125 -0.328125q0.390625 -0.328125 0.390625 -0.765625q0 -0.390625 -0.359375 -0.625q-0.234375 -0.15625 -1.1875 -0.390625q-1.296875 -0.328125 -1.796875 -0.5625q-0.484375 -0.25 -0.75 -0.65625q-0.25 -0.421875 -0.25 -0.9375q0 -0.453125 0.203125 -0.84375q0.21875 -0.40625 0.578125 -0.671875q0.28125 -0.1875 0.75 -0.328125q0.46875 -0.140625 1.015625 -0.140625q0.8125 0 1.421875 0.234375q0.609375 0.234375 0.90625 0.640625q0.296875 0.390625 0.40625 1.0625l-1.140625 0.15625q-0.078125 -0.53125 -0.453125 -0.828125q-0.375 -0.3125 -1.0625 -0.3125q-0.8125 0 -1.15625 0.265625q-0.34375 0.265625 -0.34375 0.625q0 0.234375 0.140625 0.421875q0.15625 0.1875 0.453125 0.3125q0.171875 0.0625 1.03125 0.296875q1.25 0.328125 1.734375 0.546875q0.5 0.203125 0.78125 0.609375q0.28125 0.40625 0.28125 1.0q0 0.59375 -0.34375 1.109375q-0.34375 0.515625 -1.0 0.796875q-0.640625 0.28125 -1.453125 0.28125q-1.34375 0 -2.046875 -0.5625q-0.703125 -0.5625 -0.90625 -1.65625zm11.6484375 -0.46875l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm2.1484375 2.53125l0 -9.546875l1.171875 0l0 3.421875q0.828125 -0.9375 2.078125 -0.9375q0.765625 0 1.328125 0.296875q0.5625 0.296875 0.8125 0.84375q0.25 0.53125 0.25 1.546875l0 4.375l-1.171875 0l0 -4.375q0 -0.890625 -0.390625 -1.28125q-0.375 -0.40625 -1.078125 -0.40625q-0.515625 0 -0.984375 0.28125q-0.453125 0.265625 -0.65625 0.734375q-0.1875 0.453125 -0.1875 1.265625l0 3.78125l-1.171875 0zm12.146851 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm11.006226 4.125l0 -0.875q-0.65625 1.03125 -1.9375 1.03125q-0.8125 0 -1.515625 -0.453125q-0.6875 -0.453125 -1.078125 -1.265625q-0.375 -0.828125 -0.375 -1.890625q0 -1.03125 0.34375 -1.875q0.34375 -0.84375 1.03125 -1.28125q0.703125 -0.453125 1.546875 -0.453125q0.625 0 1.109375 0.265625q0.5 0.25 0.796875 0.671875l0 -3.421875l1.171875 0l0 9.546875l-1.09375 0zm-3.703125 -3.453125q0 1.328125 0.5625 1.984375q0.5625 0.65625 1.328125 0.65625q0.765625 0 1.296875 -0.625q0.53125 -0.625 0.53125 -1.90625q0 -1.421875 -0.546875 -2.078125q-0.546875 -0.671875 -1.34375 -0.671875q-0.78125 0 -1.3125 0.640625q-0.515625 0.625 -0.515625 2.0zm11.162476 3.453125l0 -1.015625q-0.8125 1.171875 -2.1875 1.171875q-0.609375 0 -1.140625 -0.234375q-0.53125 -0.234375 -0.796875 -0.578125q-0.25 -0.359375 -0.359375 -0.875q-0.0625 -0.34375 -0.0625 -1.09375l0 -4.28125l1.171875 0l0 3.828125q0 0.921875 0.0625 1.234375q0.109375 0.46875 0.46875 0.734375q0.359375 0.25 0.890625 0.25q0.515625 0 0.984375 -0.265625q0.46875 -0.265625 0.65625 -0.734375q0.1875 -0.46875 0.1875 -1.34375l0 -3.703125l1.171875 0l0 6.90625l-1.046875 0zm2.8656006 0l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm7.7110596 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0z" fill-rule="nonzero"/><path fill="#f3f3f3" d="m749.7533 325.0551l146.67712 0l0 44.81891l-146.67712 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m749.7533 325.0551l146.67712 0l0 44.81891l-146.67712 0z" fill-rule="evenodd"/><path fill="#bababa" d="m764.1439 344.32385l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm1.7109375 -0.921875q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.6468506 3.453125l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm9.974976 -1.046875l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875zm1.1248779 1.046875l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm4.0164795 -3.453125q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.6312256 3.453125l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm2.9610596 0l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm7.7111206 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm8.156982 0l0 -6.90625l1.046875 0l0 0.96875q0.328125 -0.515625 0.859375 -0.8125q0.546875 -0.3125 1.234375 -0.3125q0.78125 0 1.265625 0.3125q0.484375 0.3125 0.6875 0.890625q0.828125 -1.203125 2.140625 -1.203125q1.03125 0 1.578125 0.578125q0.5625 0.5625 0.5625 1.734375l0 4.75l-1.171875 0l0 -4.359375q0 -0.703125 -0.125 -1.0q-0.109375 -0.3125 -0.40625 -0.5q-0.296875 -0.1875 -0.703125 -0.1875q-0.71875 0 -1.203125 0.484375q-0.484375 0.484375 -0.484375 1.546875l0 4.015625l-1.171875 0l0 -4.484375q0 -0.78125 -0.296875 -1.171875q-0.28125 -0.390625 -0.921875 -0.390625q-0.5 0 -0.921875 0.265625q-0.421875 0.25 -0.609375 0.75q-0.1875 0.5 -0.1875 1.453125l0 3.578125l-1.171875 0zm15.618042 -0.859375q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm2.9906006 3.46875l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm11.928101 -0.859375q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm2.7718506 4.046875l1.140625 0.15625q0.078125 0.53125 0.40625 0.78125q0.4375 0.3125 1.1875 0.3125q0.8125 0 1.25 -0.328125q0.453125 -0.3125 0.609375 -0.90625q0.09375 -0.359375 0.078125 -1.5q-0.765625 0.90625 -1.90625 0.90625q-1.4375 0 -2.21875 -1.03125q-0.78125 -1.03125 -0.78125 -2.46875q0 -0.984375 0.359375 -1.8125q0.359375 -0.84375 1.03125 -1.296875q0.6875 -0.453125 1.609375 -0.453125q1.21875 0 2.015625 0.984375l0 -0.828125l1.078125 0l0 5.96875q0 1.609375 -0.328125 2.28125q-0.328125 0.6875 -1.046875 1.078125q-0.703125 0.390625 -1.75 0.390625q-1.234375 0 -2.0 -0.5625q-0.75 -0.5625 -0.734375 -1.671875zm0.984375 -4.15625q0 1.359375 0.53125 1.984375q0.546875 0.625 1.359375 0.625q0.796875 0 1.34375 -0.625q0.546875 -0.625 0.546875 -1.953125q0 -1.265625 -0.5625 -1.90625q-0.5625 -0.640625 -1.359375 -0.640625q-0.765625 0 -1.3125 0.640625q-0.546875 0.625 -0.546875 1.875zm11.381226 1.359375l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0z" fill-rule="nonzero"/><path fill="#f3f3f3" d="m749.7533 388.78217l146.67712 0l0 44.81888l-146.67712 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m749.7533 388.78217l146.67712 0l0 44.81888l-146.67712 0z" fill-rule="evenodd"/><path fill="#bababa" d="m764.1439 408.0509l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm2.1328125 2.53125l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm7.5079346 0l0 -1.015625q-0.8125 1.171875 -2.1875 1.171875q-0.609375 0 -1.140625 -0.234375q-0.53125 -0.234375 -0.796875 -0.578125q-0.25 -0.359375 -0.359375 -0.875q-0.0625 -0.34375 -0.0625 -1.09375l0 -4.28125l1.171875 0l0 3.828125q0 0.921875 0.0625 1.234375q0.109375 0.46875 0.46875 0.734375q0.359375 0.25 0.890625 0.25q0.515625 0 0.984375 -0.265625q0.46875 -0.265625 0.65625 -0.734375q0.1875 -0.46875 0.1875 -1.34375l0 -3.703125l1.171875 0l0 6.90625l-1.046875 0zm2.4124756 -2.0625l1.15625 -0.1875q0.109375 0.703125 0.546875 1.078125q0.453125 0.359375 1.25 0.359375q0.8125 0 1.203125 -0.328125q0.390625 -0.328125 0.390625 -0.765625q0 -0.390625 -0.359375 -0.625q-0.234375 -0.15625 -1.1875 -0.390625q-1.296875 -0.328125 -1.796875 -0.5625q-0.484375 -0.25 -0.75 -0.65625q-0.25 -0.421875 -0.25 -0.9375q0 -0.453125 0.203125 -0.84375q0.21875 -0.40625 0.578125 -0.671875q0.28125 -0.1875 0.75 -0.328125q0.46875 -0.140625 1.015625 -0.140625q0.8125 0 1.421875 0.234375q0.609375 0.234375 0.90625 0.640625q0.296875 0.390625 0.40625 1.0625l-1.140625 0.15625q-0.078125 -0.53125 -0.453125 -0.828125q-0.375 -0.3125 -1.0625 -0.3125q-0.8125 0 -1.15625 0.265625q-0.34375 0.265625 -0.34375 0.625q0 0.234375 0.140625 0.421875q0.15625 0.1875 0.453125 0.3125q0.171875 0.0625 1.03125 0.296875q1.25 0.328125 1.734375 0.546875q0.5 0.203125 0.78125 0.609375q0.28125 0.40625 0.28125 1.0q0 0.59375 -0.34375 1.109375q-0.34375 0.515625 -1.0 0.796875q-0.640625 0.28125 -1.453125 0.28125q-1.34375 0 -2.046875 -0.5625q-0.703125 -0.5625 -0.90625 -1.65625zm9.6953125 1.015625l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875zm5.874878 -1.171875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm12.672607 -0.859375q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm7.5218506 3.46875l0 -1.015625q-0.8125 1.171875 -2.1875 1.171875q-0.609375 0 -1.140625 -0.234375q-0.53125 -0.234375 -0.796875 -0.578125q-0.25 -0.359375 -0.359375 -0.875q-0.0625 -0.34375 -0.0625 -1.09375l0 -4.28125l1.171875 0l0 3.828125q0 0.921875 0.0625 1.234375q0.109375 0.46875 0.46875 0.734375q0.359375 0.25 0.890625 0.25q0.515625 0 0.984375 -0.265625q0.46875 -0.265625 0.65625 -0.734375q0.1875 -0.46875 0.1875 -1.34375l0 -3.703125l1.171875 0l0 6.90625l-1.046875 0zm5.4437256 -1.046875l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875zm0.7030029 -2.40625q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.1781006 1.390625l1.15625 -0.1875q0.109375 0.703125 0.546875 1.078125q0.453125 0.359375 1.25 0.359375q0.8125 0 1.203125 -0.328125q0.390625 -0.328125 0.390625 -0.765625q0 -0.390625 -0.359375 -0.625q-0.234375 -0.15625 -1.1875 -0.390625q-1.296875 -0.328125 -1.796875 -0.5625q-0.484375 -0.25 -0.75 -0.65625q-0.25 -0.421875 -0.25 -0.9375q0 -0.453125 0.203125 -0.84375q0.21875 -0.40625 0.578125 -0.671875q0.28125 -0.1875 0.75 -0.328125q0.46875 -0.140625 1.015625 -0.140625q0.8125 0 1.421875 0.234375q0.609375 0.234375 0.90625 0.640625q0.296875 0.390625 0.40625 1.0625l-1.140625 0.15625q-0.078125 -0.53125 -0.453125 -0.828125q-0.375 -0.3125 -1.0625 -0.3125q-0.8125 0 -1.15625 0.265625q-0.34375 0.265625 -0.34375 0.625q0 0.234375 0.140625 0.421875q0.15625 0.1875 0.453125 0.3125q0.171875 0.0625 1.03125 0.296875q1.25 0.328125 1.734375 0.546875q0.5 0.203125 0.78125 0.609375q0.28125 0.40625 0.28125 1.0q0 0.59375 -0.34375 1.109375q-0.34375 0.515625 -1.0 0.796875q-0.640625 0.28125 -1.453125 0.28125q-1.34375 0 -2.046875 -0.5625q-0.703125 -0.5625 -0.90625 -1.65625zm11.6484375 -0.46875l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm6.6640625 1.671875q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm2.9749756 3.46875l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm7.7110596 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m753.0315 65.49606l140.91339 0l0 35.55905l-140.91339 0z" fill-rule="evenodd"/><path fill="#000000" d="m797.8199 87.29606l0 -0.953125l4.390625 -5.046875q-0.75 0.03125 -1.3125 0.03125l-2.828125 0l0 -0.9375l5.65625 0l0 0.765625l-3.75 4.390625l-0.71875 0.796875q0.796875 -0.0625 1.484375 -0.0625l3.1875 0l0 1.015625l-6.109375 0zm6.8359375 -3.453125q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.6468506 3.453125l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53131104 0.21875 0.78131104 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171936 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm12.146912 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm14.7404175 3.265625q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm2.5374756 0.609375l0 -1.1875l3.59375 0l0 1.1875l-3.59375 0zm4.5790405 0.34375l1.171875 -0.15625q0.203125 1.0 0.6875 1.4375q0.484375 0.4375 1.171875 0.4375q0.828125 0 1.390625 -0.578125q0.578125 -0.578125 0.578125 -1.421875q0 -0.796875 -0.53125 -1.3125q-0.515625 -0.53125 -1.328125 -0.53125q-0.34375 0 -0.828125 0.125l0.125 -1.03125q0.125 0.015625 0.1875 0.015625q0.75 0 1.34375 -0.390625q0.609375 -0.390625 0.609375 -1.203125q0 -0.640625 -0.4375 -1.0625q-0.4375 -0.421875 -1.125 -0.421875q-0.6875 0 -1.140625 0.4375q-0.453125 0.421875 -0.59375 1.28125l-1.171875 -0.21875q0.21875 -1.171875 0.984375 -1.8125q0.765625 -0.65625 1.890625 -0.65625q0.78125 0 1.4375 0.34375q0.65625 0.328125 1.0 0.90625q0.359375 0.578125 0.359375 1.234375q0 0.609375 -0.34375 1.125q-0.328125 0.5 -0.96875 0.796875q0.84375 0.203125 1.3125 0.828125q0.46875 0.609375 0.46875 1.53125q0 1.25 -0.921875 2.125q-0.90625 0.859375 -2.296875 0.859375q-1.25 0 -2.09375 -0.75q-0.828125 -0.75 -0.9375 -1.9375z" fill-rule="nonzero"/><path fill="#cfe2f3" d="m245.13124 105.826775l190.48817 0l0 349.85825l-190.48817 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m245.13124 105.826775l190.48817 0l0 349.85825l-190.48817 0z" fill-rule="evenodd"/><path fill="#000000" d="m263.89032 125.09552l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm1.7109375 -0.921875q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.6468506 3.453125l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm9.974976 -1.046875l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875zm1.1248474 1.046875l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm4.01651 -3.453125q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.6312256 3.453125l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm6.6796875 2.65625l0 -9.5625l1.078125 0l0 0.890625q0.375 -0.53125 0.84375 -0.78125q0.484375 -0.265625 1.15625 -0.265625q0.875 0 1.546875 0.453125q0.6875 0.453125 1.03125 1.28125q0.34375 0.828125 0.34375 1.828125q0 1.046875 -0.375 1.90625q-0.375 0.84375 -1.109375 1.296875q-0.71875 0.453125 -1.53125 0.453125q-0.578125 0 -1.046875 -0.25q-0.46875 -0.25 -0.765625 -0.625l0 3.375l-1.171875 0zm1.0625 -6.078125q0 1.34375 0.53125 1.984375q0.546875 0.625 1.3125 0.625q0.78125 0 1.34375 -0.65625q0.5625 -0.65625 0.5625 -2.046875q0 -1.3125 -0.546875 -1.96875q-0.546875 -0.671875 -1.296875 -0.671875q-0.75 0 -1.328125 0.703125q-0.578125 0.703125 -0.578125 2.03125zm6.3343506 3.421875l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm7.49234 -0.859375q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm2.9906006 3.46875l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm12.146851 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm10.2248535 4.125l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm6.9749756 -3.453125q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm11.131226 3.453125l0 -0.875q-0.65625 1.03125 -1.9375 1.03125q-0.8125 0 -1.515625 -0.453125q-0.6875 -0.453125 -1.078125 -1.265625q-0.375 -0.828125 -0.375 -1.890625q0 -1.03125 0.34375 -1.875q0.34375 -0.84375 1.03125 -1.28125q0.703125 -0.453125 1.546875 -0.453125q0.625 0 1.109375 0.265625q0.5 0.25 0.796875 0.671875l0 -3.421875l1.171875 0l0 9.546875l-1.09375 0zm-3.703125 -3.453125q0 1.328125 0.5625 1.984375q0.5625 0.65625 1.328125 0.65625q0.765625 0 1.296875 -0.625q0.53125 -0.625 0.53125 -1.90625q0 -1.421875 -0.546875 -2.078125q-0.546875 -0.671875 -1.34375 -0.671875q-0.78125 0 -1.3125 0.640625q-0.515625 0.625 -0.515625 2.0zm11.365601 1.234375l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm10.209198 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm9.1883545 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5218506 6.78125l0 -9.5625l1.078125 0l0 0.890625q0.375 -0.53125 0.84375 -0.78125q0.484375 -0.265625 1.15625 -0.265625q0.875 0 1.546875 0.453125q0.6875 0.453125 1.03125 1.28125q0.34375 0.828125 0.34375 1.828125q0 1.046875 -0.375 1.90625q-0.375 0.84375 -1.109375 1.296875q-0.71875 0.453125 -1.53125 0.453125q-0.578125 0 -1.046875 -0.25q-0.46875 -0.25 -0.765625 -0.625l0 3.375l-1.171875 0zm1.0625 -6.078125q0 1.34375 0.53125 1.984375q0.546875 0.625 1.3125 0.625q0.78125 0 1.34375 -0.65625q0.5625 -0.65625 0.5625 -2.046875q0 -1.3125 -0.546875 -1.96875q-0.546875 -0.671875 -1.296875 -0.671875q-0.75 0 -1.328125 0.703125q-0.578125 0.703125 -0.578125 2.03125zm6.3343506 3.421875l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm2.99234 -8.1875l0 -1.359375l1.171875 0l0 1.359375l-1.171875 0zm0 8.1875l0 -6.90625l1.171875 0l0 6.90625l-1.171875 0zm7.46109 -2.53125l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm6.6640625 1.671875q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm11.2092285 2.609375q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875z" fill-rule="nonzero"/><path fill="#ff9900" d="m266.6404 154.41995l146.67719 0l0 88.0l-146.67719 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m266.6404 154.41995l146.67719 0l0 88.0l-146.67719 0z" fill-rule="evenodd"/><path fill="#000000" d="m275.6248 176.21994l3.65625 -9.546875l1.359375 0l3.90625 9.546875l-1.4375 0l-1.109375 -2.890625l-3.984375 0l-1.046875 2.890625l-1.34375 0zm2.75 -3.921875l3.234375 0l-1.0 -2.640625q-0.453125 -1.203125 -0.671875 -1.96875q-0.1875 0.90625 -0.515625 1.8125l-1.046875 2.796875zm7.1866455 3.921875l0 -9.546875l3.59375 0q0.953125 0 1.453125 0.09375q0.703125 0.125 1.171875 0.453125q0.484375 0.328125 0.765625 0.921875q0.296875 0.59375 0.296875 1.296875q0 1.21875 -0.78125 2.0625q-0.765625 0.84375 -2.796875 0.84375l-2.4375 0l0 3.875l-1.265625 0zm1.265625 -5.0l2.453125 0q1.234375 0 1.75 -0.453125q0.515625 -0.46875 0.515625 -1.28125q0 -0.609375 -0.3125 -1.03125q-0.296875 -0.421875 -0.796875 -0.5625q-0.3125 -0.09375 -1.171875 -0.09375l-2.4375 0l0 3.421875zm7.842865 5.0l0 -9.546875l1.25 0l0 9.546875l-1.25 0zm6.5622253 -2.0625l1.15625 -0.1875q0.109375 0.703125 0.546875 1.078125q0.453125 0.359375 1.25 0.359375q0.8125 0 1.203125 -0.328125q0.390625 -0.328125 0.390625 -0.765625q0 -0.390625 -0.359375 -0.625q-0.234375 -0.15625 -1.1875 -0.390625q-1.296875 -0.328125 -1.796875 -0.5625q-0.484375 -0.25 -0.75 -0.65625q-0.25 -0.421875 -0.25 -0.9375q0 -0.453125 0.203125 -0.84375q0.21875 -0.40625 0.578125 -0.671875q0.28125 -0.1875 0.75 -0.328125q0.46875 -0.140625 1.015625 -0.140625q0.8125 0 1.421875 0.234375q0.609375 0.234375 0.90625 0.640625q0.296875 0.390625 0.40625 1.0625l-1.140625 0.15625q-0.078125 -0.53125 -0.453125 -0.828125q-0.375 -0.3125 -1.0625 -0.3125q-0.8125 0 -1.15625 0.265625q-0.34375 0.265625 -0.34375 0.625q0 0.234375 0.140625 0.421875q0.15625 0.1875 0.453125 0.3125q0.171875 0.0625 1.03125 0.296875q1.25 0.328125 1.734375 0.546875q0.5 0.203125 0.78125 0.609375q0.28125 0.40625 0.28125 1.0q0 0.59375 -0.34375 1.109375q-0.34375 0.515625 -1.0 0.796875q-0.640625 0.28125 -1.453125 0.28125q-1.34375 0 -2.046875 -0.5625q-0.703125 -0.5625 -0.90625 -1.65625zm11.8671875 -0.15625l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm6.375885 0l-2.625 -6.90625l1.234375 0l1.484375 4.140625q0.234375 0.65625 0.4375 1.390625q0.15625 -0.546875 0.4375 -1.3125l1.53125 -4.21875l1.21875 0l-2.625 6.90625l-1.09375 0zm9.4765625 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0z" fill-rule="nonzero"/><path fill="#00ff00" d="m288.23883 203.13132l0 0c0 -2.1511993 1.7438965 -3.8950958 3.895111 -3.8950958l60.115326 0c1.0330505 0 2.0237732 0.41036987 2.754242 1.1408386c0.73046875 0.730484 1.1408386 1.7212067 1.1408386 2.7542572l0 15.579895c0 2.1511993 -1.7438965 3.8950806 -3.8950806 3.8950806l-60.115326 0c-2.1512146 0 -3.895111 -1.7438812 -3.895111 -3.8950806z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m288.23883 203.13132l0 0c0 -2.1511993 1.7438965 -3.8950958 3.895111 -3.8950958l60.115326 0c1.0330505 0 2.0237732 0.41036987 2.754242 1.1408386c0.73046875 0.730484 1.1408386 1.7212067 1.1408386 2.7542572l0 15.579895c0 2.1511993 -1.7438965 3.8950806 -3.8950806 3.8950806l-60.115326 0c-2.1512146 0 -3.895111 -1.7438812 -3.895111 -3.8950806z" fill-rule="evenodd"/><path fill="#000000" d="m303.98904 213.5025l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm9.084351 3.078125l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875zm5.656128 -1.484375l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm6.6328125 2.53125l0 -0.875q-0.65625 1.03125 -1.9375 1.03125q-0.8125 0 -1.515625 -0.453125q-0.6875 -0.453125 -1.078125 -1.265625q-0.375 -0.828125 -0.375 -1.890625q0 -1.03125 0.34375 -1.875q0.34375 -0.84375 1.03125 -1.28125q0.703125 -0.453125 1.546875 -0.453125q0.625 0 1.109375 0.265625q0.5 0.25 0.796875 0.671875l0 -3.421875l1.171875 0l0 9.546875l-1.09375 0zm-3.703125 -3.453125q0 1.328125 0.5625 1.984375q0.5625 0.65625 1.328125 0.65625q0.765625 0 1.296875 -0.625q0.53125 -0.625 0.53125 -1.90625q0 -1.421875 -0.546875 -2.078125q-0.546875 -0.671875 -1.34375 -0.671875q-0.78125 0 -1.3125 0.640625q-0.515625 0.625 -0.515625 2.0z" fill-rule="nonzero"/><path fill="#ff9900" d="m266.6404 261.3281l146.67719 0l0 44.81888l-146.67719 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m266.6404 261.3281l146.67719 0l0 44.81888l-146.67719 0z" fill-rule="evenodd"/><path fill="#000000" d="m276.04666 281.06558l1.15625 -0.1875q0.109375 0.703125 0.546875 1.078125q0.453125 0.359375 1.25 0.359375q0.8125 0 1.203125 -0.328125q0.390625 -0.328125 0.390625 -0.765625q0 -0.390625 -0.359375 -0.625q-0.234375 -0.15625 -1.1875 -0.390625q-1.296875 -0.328125 -1.796875 -0.5625q-0.484375 -0.25 -0.75 -0.65625q-0.25 -0.421875 -0.25 -0.9375q0 -0.453125 0.203125 -0.84375q0.21875 -0.40625 0.578125 -0.671875q0.28125 -0.1875 0.75 -0.328125q0.46875 -0.140625 1.015625 -0.140625q0.8125 0 1.421875 0.234375q0.609375 0.234375 0.90625 0.640625q0.296875 0.390625 0.40625 1.0625l-1.140625 0.15625q-0.078125 -0.53125 -0.453125 -0.828125q-0.375 -0.3125 -1.0625 -0.3125q-0.8125 0 -1.15625 0.265625q-0.34375 0.265625 -0.34375 0.625q0 0.234375 0.140625 0.421875q0.15625 0.1875 0.453125 0.3125q0.171875 0.0625 1.03125 0.296875q1.25 0.328125 1.734375 0.546875q0.5 0.203125 0.78125 0.609375q0.28125 0.40625 0.28125 1.0q0 0.59375 -0.34375 1.109375q-0.34375 0.515625 -1.0 0.796875q-0.640625 0.28125 -1.453125 0.28125q-1.34375 0 -2.046875 -0.5625q-0.703125 -0.5625 -0.90625 -1.65625zm11.6484375 -0.46875l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm2.1484375 2.53125l0 -9.546875l1.171875 0l0 3.421875q0.828125 -0.9375 2.078125 -0.9375q0.765625 0 1.328125 0.296875q0.5625 0.296875 0.8125 0.84375q0.25 0.53125 0.25 1.546875l0 4.375l-1.171875 0l0 -4.375q0 -0.890625 -0.390625 -1.28125q-0.375 -0.40625 -1.078125 -0.40625q-0.515625 0 -0.984375 0.28125q-0.453125 0.265625 -0.65625 0.734375q-0.1875 0.453125 -0.1875 1.265625l0 3.78125l-1.171875 0zm12.146851 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm11.006226 4.125l0 -0.875q-0.65625 1.03125 -1.9375 1.03125q-0.8125 0 -1.515625 -0.453125q-0.6875 -0.453125 -1.078125 -1.265625q-0.375 -0.828125 -0.375 -1.890625q0 -1.03125 0.34375 -1.875q0.34375 -0.84375 1.03125 -1.28125q0.703125 -0.453125 1.546875 -0.453125q0.625 0 1.109375 0.265625q0.5 0.25 0.796875 0.671875l0 -3.421875l1.171875 0l0 9.546875l-1.09375 0zm-3.703125 -3.453125q0 1.328125 0.5625 1.984375q0.5625 0.65625 1.328125 0.65625q0.765625 0 1.296875 -0.625q0.53125 -0.625 0.53125 -1.90625q0 -1.421875 -0.546875 -2.078125q-0.546875 -0.671875 -1.34375 -0.671875q-0.78125 0 -1.3125 0.640625q-0.515625 0.625 -0.515625 2.0zm11.162476 3.453125l0 -1.015625q-0.8125 1.171875 -2.1875 1.171875q-0.609375 0 -1.140625 -0.234375q-0.53125 -0.234375 -0.796875 -0.578125q-0.25 -0.359375 -0.359375 -0.875q-0.0625 -0.34375 -0.0625 -1.09375l0 -4.28125l1.171875 0l0 3.828125q0 0.921875 0.0625 1.234375q0.109375 0.46875 0.46875 0.734375q0.359375 0.25 0.890625 0.25q0.515625 0 0.984375 -0.265625q0.46875 -0.265625 0.65625 -0.734375q0.1875 -0.46875 0.1875 -1.34375l0 -3.703125l1.171875 0l0 6.90625l-1.046875 0zm2.8656006 0l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm7.71109 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0z" fill-rule="nonzero"/><path fill="#ff9900" d="m266.6404 325.0551l146.67719 0l0 44.81891l-146.67719 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m266.6404 325.0551l146.67719 0l0 44.81891l-146.67719 0z" fill-rule="evenodd"/><path fill="#000000" d="m281.03104 344.32385l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm1.7109375 -0.921875q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.6468506 3.453125l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm9.974976 -1.046875l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875zm1.1248779 1.046875l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm4.0164795 -3.453125q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.6312256 3.453125l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm2.96109 0l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm7.71109 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm8.156982 0l0 -6.90625l1.046875 0l0 0.96875q0.328125 -0.515625 0.859375 -0.8125q0.546875 -0.3125 1.234375 -0.3125q0.78125 0 1.265625 0.3125q0.484375 0.3125 0.6875 0.890625q0.828125 -1.203125 2.140625 -1.203125q1.03125 0 1.578125 0.578125q0.5625 0.5625 0.5625 1.734375l0 4.75l-1.171875 0l0 -4.359375q0 -0.703125 -0.125 -1.0q-0.109375 -0.3125 -0.40625 -0.5q-0.296875 -0.1875 -0.703125 -0.1875q-0.71875 0 -1.203125 0.484375q-0.484375 0.484375 -0.484375 1.546875l0 4.015625l-1.171875 0l0 -4.484375q0 -0.78125 -0.296875 -1.171875q-0.28125 -0.390625 -0.921875 -0.390625q-0.5 0 -0.921875 0.265625q-0.421875 0.25 -0.609375 0.75q-0.1875 0.5 -0.1875 1.453125l0 3.578125l-1.171875 0zm15.6180725 -0.859375q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm2.9906006 3.46875l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm11.928101 -0.859375q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm2.7718506 4.046875l1.140625 0.15625q0.078125 0.53125 0.40625 0.78125q0.4375 0.3125 1.1875 0.3125q0.8125 0 1.25 -0.328125q0.453125 -0.3125 0.609375 -0.90625q0.09375 -0.359375 0.078125 -1.5q-0.765625 0.90625 -1.90625 0.90625q-1.4375 0 -2.21875 -1.03125q-0.78125 -1.03125 -0.78125 -2.46875q0 -0.984375 0.359375 -1.8125q0.359375 -0.84375 1.03125 -1.296875q0.6875 -0.453125 1.609375 -0.453125q1.21875 0 2.015625 0.984375l0 -0.828125l1.078125 0l0 5.96875q0 1.609375 -0.328125 2.28125q-0.328125 0.6875 -1.046875 1.078125q-0.703125 0.390625 -1.75 0.390625q-1.234375 0 -2.0 -0.5625q-0.75 -0.5625 -0.734375 -1.671875zm0.984375 -4.15625q0 1.359375 0.53125 1.984375q0.546875 0.625 1.359375 0.625q0.796875 0 1.34375 -0.625q0.546875 -0.625 0.546875 -1.953125q0 -1.265625 -0.5625 -1.90625q-0.5625 -0.640625 -1.359375 -0.640625q-0.765625 0 -1.3125 0.640625q-0.546875 0.625 -0.546875 1.875zm11.381226 1.359375l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0z" fill-rule="nonzero"/><path fill="#ff9900" d="m266.6404 388.78217l146.67719 0l0 44.81888l-146.67719 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m266.6404 388.78217l146.67719 0l0 44.81888l-146.67719 0z" fill-rule="evenodd"/><path fill="#000000" d="m281.03104 408.0509l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm2.1328125 2.53125l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm7.507965 0l0 -1.015625q-0.8125 1.171875 -2.1875 1.171875q-0.609375 0 -1.140625 -0.234375q-0.53125 -0.234375 -0.796875 -0.578125q-0.25 -0.359375 -0.359375 -0.875q-0.0625 -0.34375 -0.0625 -1.09375l0 -4.28125l1.171875 0l0 3.828125q0 0.921875 0.0625 1.234375q0.109375 0.46875 0.46875 0.734375q0.359375 0.25 0.890625 0.25q0.515625 0 0.984375 -0.265625q0.46875 -0.265625 0.65625 -0.734375q0.1875 -0.46875 0.1875 -1.34375l0 -3.703125l1.171875 0l0 6.90625l-1.046875 0zm2.4124756 -2.0625l1.15625 -0.1875q0.109375 0.703125 0.546875 1.078125q0.453125 0.359375 1.25 0.359375q0.8125 0 1.203125 -0.328125q0.390625 -0.328125 0.390625 -0.765625q0 -0.390625 -0.359375 -0.625q-0.234375 -0.15625 -1.1875 -0.390625q-1.296875 -0.328125 -1.796875 -0.5625q-0.484375 -0.25 -0.75 -0.65625q-0.25 -0.421875 -0.25 -0.9375q0 -0.453125 0.203125 -0.84375q0.21875 -0.40625 0.578125 -0.671875q0.28125 -0.1875 0.75 -0.328125q0.46875 -0.140625 1.015625 -0.140625q0.8125 0 1.421875 0.234375q0.609375 0.234375 0.90625 0.640625q0.296875 0.390625 0.40625 1.0625l-1.140625 0.15625q-0.078125 -0.53125 -0.453125 -0.828125q-0.375 -0.3125 -1.0625 -0.3125q-0.8125 0 -1.15625 0.265625q-0.34375 0.265625 -0.34375 0.625q0 0.234375 0.140625 0.421875q0.15625 0.1875 0.453125 0.3125q0.171875 0.0625 1.03125 0.296875q1.25 0.328125 1.734375 0.546875q0.5 0.203125 0.78125 0.609375q0.28125 0.40625 0.28125 1.0q0 0.59375 -0.34375 1.109375q-0.34375 0.515625 -1.0 0.796875q-0.640625 0.28125 -1.453125 0.28125q-1.34375 0 -2.046875 -0.5625q-0.703125 -0.5625 -0.90625 -1.65625zm9.6953125 1.015625l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875zm5.874878 -1.171875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm12.672607 -0.859375q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm7.5218506 3.46875l0 -1.015625q-0.8125 1.171875 -2.1875 1.171875q-0.609375 0 -1.140625 -0.234375q-0.53125 -0.234375 -0.796875 -0.578125q-0.25 -0.359375 -0.359375 -0.875q-0.0625 -0.34375 -0.0625 -1.09375l0 -4.28125l1.171875 0l0 3.828125q0 0.921875 0.0625 1.234375q0.109375 0.46875 0.46875 0.734375q0.359375 0.25 0.890625 0.25q0.515625 0 0.984375 -0.265625q0.46875 -0.265625 0.65625 -0.734375q0.1875 -0.46875 0.1875 -1.34375l0 -3.703125l1.171875 0l0 6.90625l-1.046875 0zm5.4437256 -1.046875l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875zm0.7029724 -2.40625q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.1781006 1.390625l1.15625 -0.1875q0.109375 0.703125 0.546875 1.078125q0.453125 0.359375 1.25 0.359375q0.8125 0 1.203125 -0.328125q0.390625 -0.328125 0.390625 -0.765625q0 -0.390625 -0.359375 -0.625q-0.234375 -0.15625 -1.1875 -0.390625q-1.296875 -0.328125 -1.796875 -0.5625q-0.484375 -0.25 -0.75 -0.65625q-0.25 -0.421875 -0.25 -0.9375q0 -0.453125 0.203125 -0.84375q0.21875 -0.40625 0.578125 -0.671875q0.28125 -0.1875 0.75 -0.328125q0.46875 -0.140625 1.015625 -0.140625q0.8125 0 1.421875 0.234375q0.609375 0.234375 0.90625 0.640625q0.296875 0.390625 0.40625 1.0625l-1.140625 0.15625q-0.078125 -0.53125 -0.453125 -0.828125q-0.375 -0.3125 -1.0625 -0.3125q-0.8125 0 -1.15625 0.265625q-0.34375 0.265625 -0.34375 0.625q0 0.234375 0.140625 0.421875q0.15625 0.1875 0.453125 0.3125q0.171875 0.0625 1.03125 0.296875q1.25 0.328125 1.734375 0.546875q0.5 0.203125 0.78125 0.609375q0.28125 0.40625 0.28125 1.0q0 0.59375 -0.34375 1.109375q-0.34375 0.515625 -1.0 0.796875q-0.640625 0.28125 -1.453125 0.28125q-1.34375 0 -2.046875 -0.5625q-0.703125 -0.5625 -0.90625 -1.65625zm11.6484375 -0.46875l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm6.6640625 1.671875q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm2.9749756 3.46875l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm7.71109 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m269.91864 65.49606l140.91339 0l0 35.55905l-140.91339 0z" fill-rule="evenodd"/><path fill="#000000" d="m314.70706 87.29606l0 -0.953125l4.390625 -5.046875q-0.75 0.03125 -1.3125 0.03125l-2.828125 0l0 -0.9375l5.65625 0l0 0.765625l-3.75 4.390625l-0.71875 0.796875q0.796875 -0.0625 1.484375 -0.0625l3.1875 0l0 1.015625l-6.109375 0zm6.8359375 -3.453125q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.6468506 3.453125l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm12.146851 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm14.740448 3.265625q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm2.5374756 0.609375l0 -1.1875l3.59375 0l0 1.1875l-3.59375 0zm8.98526 2.859375l-1.171875 0l0 -7.46875q-0.421875 0.40625 -1.109375 0.8125q-0.6875 0.40625 -1.234375 0.609375l0 -1.140625q0.984375 -0.453125 1.71875 -1.109375q0.734375 -0.671875 1.03125 -1.28125l0.765625 0l0 9.578125z" fill-rule="nonzero"/><path fill="#cfe2f3" d="m486.68765 105.826775l190.48819 0l0 349.85825l-190.48819 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m486.68765 105.826775l190.48819 0l0 349.85825l-190.48819 0z" fill-rule="evenodd"/><path fill="#000000" d="m505.44675 125.09552l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm1.7109375 -0.921875q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.3280945 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.7655945 0.421875 -1.6718445 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.5780945 -0.671875 0.5780945 -2.03125q0 -1.28125 -0.5937195 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.64682 3.453125l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm9.974976 -1.046875l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875zm1.1248779 1.046875l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm4.0164795 -3.453125q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.6312256 3.453125l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm6.6797485 2.65625l0 -9.5625l1.078125 0l0 0.890625q0.375 -0.53125 0.84375 -0.78125q0.484375 -0.265625 1.15625 -0.265625q0.875 0 1.546875 0.453125q0.6875 0.453125 1.03125 1.28125q0.34375 0.828125 0.34375 1.828125q0 1.046875 -0.375 1.90625q-0.375 0.84375 -1.109375 1.296875q-0.71875 0.453125 -1.53125 0.453125q-0.578125 0 -1.046875 -0.25q-0.46875 -0.25 -0.765625 -0.625l0 3.375l-1.171875 0zm1.0625 -6.078125q0 1.34375 0.53125 1.984375q0.546875 0.625 1.3125 0.625q0.78125 0 1.34375 -0.65625q0.5625 -0.65625 0.5625 -2.046875q0 -1.3125 -0.546875 -1.96875q-0.546875 -0.671875 -1.296875 -0.671875q-0.75 0 -1.328125 0.703125q-0.578125 0.703125 -0.578125 2.03125zm6.3343506 3.421875l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm7.4923096 -0.859375q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm2.9906006 3.46875l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm12.146851 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm10.2248535 4.125l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm6.9749756 -3.453125q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm11.131226 3.453125l0 -0.875q-0.65625 1.03125 -1.9375 1.03125q-0.8125 0 -1.515625 -0.453125q-0.6875 -0.453125 -1.078125 -1.265625q-0.375 -0.828125 -0.375 -1.890625q0 -1.03125 0.34375 -1.875q0.34375 -0.84375 1.03125 -1.28125q0.703125 -0.453125 1.546875 -0.453125q0.625 0 1.109375 0.265625q0.5 0.25 0.796875 0.671875l0 -3.421875l1.171875 0l0 9.546875l-1.09375 0zm-3.703125 -3.453125q0 1.328125 0.5625 1.984375q0.5625 0.65625 1.328125 0.65625q0.765625 0 1.296875 -0.625q0.53125 -0.625 0.53125 -1.90625q0 -1.421875 -0.546875 -2.078125q-0.546875 -0.671875 -1.34375 -0.671875q-0.78125 0 -1.3125 0.640625q-0.515625 0.625 -0.515625 2.0zm11.365601 1.234375l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm10.2092285 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm9.1883545 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5218506 6.78125l0 -9.5625l1.078125 0l0 0.890625q0.375 -0.53125 0.84375 -0.78125q0.484375 -0.265625 1.15625 -0.265625q0.875 0 1.546875 0.453125q0.6875 0.453125 1.03125 1.28125q0.34375 0.828125 0.34375 1.828125q0 1.046875 -0.375 1.90625q-0.375 0.84375 -1.109375 1.296875q-0.71875 0.453125 -1.53125 0.453125q-0.578125 0 -1.046875 -0.25q-0.46875 -0.25 -0.765625 -0.625l0 3.375l-1.171875 0zm1.0625 -6.078125q0 1.34375 0.53125 1.984375q0.546875 0.625 1.3125 0.625q0.78125 0 1.34375 -0.65625q0.5625 -0.65625 0.5625 -2.046875q0 -1.3125 -0.546875 -1.96875q-0.546875 -0.671875 -1.296875 -0.671875q-0.75 0 -1.328125 0.703125q-0.578125 0.703125 -0.578125 2.03125zm6.3343506 3.421875l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm2.9923096 -8.1875l0 -1.359375l1.171875 0l0 1.359375l-1.171875 0zm0 8.1875l0 -6.90625l1.171875 0l0 6.90625l-1.171875 0zm7.4611206 -2.53125l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm6.6640625 1.671875q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm7.7717285 3.46875l-1.078125 0l0 -9.546875l1.171875 0l0 3.40625q0.734375 -0.921875 1.890625 -0.921875q0.640625 0 1.203125 0.265625q0.578125 0.25 0.9375 0.71875q0.375 0.453125 0.578125 1.109375q0.203125 0.65625 0.203125 1.40625q0 1.78125 -0.875 2.75q-0.875 0.96875 -2.109375 0.96875q-1.21875 0 -1.921875 -1.015625l0 0.859375zm0 -3.5q0 1.234375 0.328125 1.78125q0.5625 0.90625 1.5 0.90625q0.765625 0 1.328125 -0.65625q0.5625 -0.671875 0.5625 -2.0q0 -1.34375 -0.546875 -1.984375q-0.53125 -0.65625 -1.296875 -0.65625q-0.765625 0 -1.328125 0.671875q-0.546875 0.671875 -0.546875 1.9375z" fill-rule="nonzero"/><path fill="#ff9900" d="m508.19684 154.41995l146.67719 0l0 88.0l-146.67719 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m508.19684 154.41995l146.67719 0l0 88.0l-146.67719 0z" fill-rule="evenodd"/><path fill="#000000" d="m517.1812 176.21994l3.65625 -9.546875l1.359375 0l3.90625 9.546875l-1.4375 0l-1.109375 -2.890625l-3.984375 0l-1.046875 2.890625l-1.34375 0zm2.75 -3.921875l3.234375 0l-1.0 -2.640625q-0.453125 -1.203125 -0.671875 -1.96875q-0.1875 0.90625 -0.515625 1.8125l-1.046875 2.796875zm7.1866455 3.921875l0 -9.546875l3.59375 0q0.953125 0 1.453125 0.09375q0.703125 0.125 1.171875 0.453125q0.484375 0.328125 0.765625 0.921875q0.296875 0.59375 0.296875 1.296875q0 1.21875 -0.78125 2.0625q-0.765625 0.84375 -2.796875 0.84375l-2.4375 0l0 3.875l-1.265625 0zm1.265625 -5.0l2.453125 0q1.234375 0 1.75 -0.453125q0.515625 -0.46875 0.515625 -1.28125q0 -0.609375 -0.3125 -1.03125q-0.296875 -0.421875 -0.796875 -0.5625q-0.3125 -0.09375 -1.171875 -0.09375l-2.4375 0l0 3.421875zm7.8428955 5.0l0 -9.546875l1.25 0l0 9.546875l-1.25 0zm6.562195 -2.0625l1.15625 -0.1875q0.109375 0.703125 0.546875 1.078125q0.453125 0.359375 1.25 0.359375q0.8125 0 1.203125 -0.328125q0.390625 -0.328125 0.390625 -0.765625q0 -0.390625 -0.359375 -0.625q-0.234375 -0.15625 -1.1875 -0.390625q-1.296875 -0.328125 -1.796875 -0.5625q-0.484375 -0.25 -0.75 -0.65625q-0.25 -0.421875 -0.25 -0.9375q0 -0.453125 0.203125 -0.84375q0.21875 -0.40625 0.578125 -0.671875q0.28125 -0.1875 0.75 -0.328125q0.46875 -0.140625 1.015625 -0.140625q0.8125 0 1.421875 0.234375q0.609375 0.234375 0.90625 0.640625q0.296875 0.390625 0.40625 1.0625l-1.140625 0.15625q-0.078125 -0.53125 -0.453125 -0.828125q-0.375 -0.3125 -1.0625 -0.3125q-0.8125 0 -1.15625 0.265625q-0.34375 0.265625 -0.34375 0.625q0 0.234375 0.140625 0.421875q0.15625 0.1875 0.453125 0.3125q0.171875 0.0625 1.03125 0.296875q1.25 0.328125 1.734375 0.546875q0.5 0.203125 0.78125 0.609375q0.28125 0.40625 0.28125 1.0q0 0.59375 -0.34375 1.109375q-0.34375 0.515625 -1.0 0.796875q-0.640625 0.28125 -1.453125 0.28125q-1.34375 0 -2.046875 -0.5625q-0.703125 -0.5625 -0.90625 -1.65625zm11.8671875 -0.15625l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm6.3758545 0l-2.625 -6.90625l1.234375 0l1.484375 4.140625q0.234375 0.65625 0.4375 1.390625q0.15625 -0.546875 0.4375 -1.3125l1.53125 -4.21875l1.21875 0l-2.625 6.90625l-1.09375 0zm9.4765625 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0z" fill-rule="nonzero"/><path fill="#00ff00" d="m529.7953 203.13132l0 0c0 -2.1511993 1.7438965 -3.8950958 3.8950806 -3.8950958l60.115356 0c1.03302 0 2.0237427 0.41036987 2.7542114 1.1408386c0.73046875 0.730484 1.1408691 1.7212067 1.1408691 2.7542572l0 15.579895c0 2.1511993 -1.7438965 3.8950806 -3.8950806 3.8950806l-60.115356 0c-2.151184 0 -3.8950806 -1.7438812 -3.8950806 -3.8950806z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m529.7953 203.13132l0 0c0 -2.1511993 1.7438965 -3.8950958 3.8950806 -3.8950958l60.115356 0c1.03302 0 2.0237427 0.41036987 2.7542114 1.1408386c0.73046875 0.730484 1.1408691 1.7212067 1.1408691 2.7542572l0 15.579895c0 2.1511993 -1.7438965 3.8950806 -3.8950806 3.8950806l-60.115356 0c-2.151184 0 -3.8950806 -1.7438812 -3.8950806 -3.8950806z" fill-rule="evenodd"/><path fill="#000000" d="m545.5455 213.5025l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm9.084351 3.078125l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875zm5.656128 -1.484375l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm6.6328125 2.53125l0 -0.875q-0.65625 1.03125 -1.9375 1.03125q-0.8125 0 -1.515625 -0.453125q-0.6875 -0.453125 -1.078125 -1.265625q-0.375 -0.828125 -0.375 -1.890625q0 -1.03125 0.34375 -1.875q0.34375 -0.84375 1.03125 -1.28125q0.703125 -0.453125 1.546875 -0.453125q0.625 0 1.109375 0.265625q0.5 0.25 0.796875 0.671875l0 -3.421875l1.171875 0l0 9.546875l-1.09375 0zm-3.703125 -3.453125q0 1.328125 0.5625 1.984375q0.5625 0.65625 1.328125 0.65625q0.765625 0 1.296875 -0.625q0.53125 -0.625 0.53125 -1.90625q0 -1.421875 -0.546875 -2.078125q-0.546875 -0.671875 -1.34375 -0.671875q-0.78125 0 -1.3125 0.640625q-0.515625 0.625 -0.515625 2.0z" fill-rule="nonzero"/><path fill="#f3f3f3" d="m508.19684 261.3281l146.67719 0l0 44.81888l-146.67719 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m508.19684 261.3281l146.67719 0l0 44.81888l-146.67719 0z" fill-rule="evenodd"/><path fill="#bababa" d="m517.6031 281.06558l1.15625 -0.1875q0.109375 0.703125 0.546875 1.078125q0.453125 0.359375 1.25 0.359375q0.8125 0 1.203125 -0.328125q0.390625 -0.328125 0.390625 -0.765625q0 -0.390625 -0.359375 -0.625q-0.234375 -0.15625 -1.1875 -0.390625q-1.296875 -0.328125 -1.796875 -0.5625q-0.484375 -0.25 -0.75 -0.65625q-0.25 -0.421875 -0.25 -0.9375q0 -0.453125 0.203125 -0.84375q0.21875 -0.40625 0.578125 -0.671875q0.28125 -0.1875 0.75 -0.328125q0.46875 -0.140625 1.015625 -0.140625q0.8125 0 1.421875 0.234375q0.609375 0.234375 0.90625 0.640625q0.296875 0.390625 0.40625 1.0625l-1.140625 0.15625q-0.078125 -0.53125 -0.453125 -0.828125q-0.375 -0.3125 -1.0625 -0.3125q-0.8125 0 -1.15625 0.265625q-0.34375 0.265625 -0.34375 0.625q0 0.234375 0.140625 0.421875q0.15625 0.1875 0.453125 0.3125q0.171875 0.0625 1.03125 0.296875q1.25 0.328125 1.734375 0.546875q0.5 0.203125 0.78125 0.609375q0.28125 0.40625 0.28125 1.0q0 0.59375 -0.34375 1.109375q-0.34375 0.515625 -1.0 0.796875q-0.640625 0.28125 -1.453125 0.28125q-1.34375 0 -2.046875 -0.5625q-0.703125 -0.5625 -0.90625 -1.65625zm11.6484375 -0.46875l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm2.1484375 2.53125l0 -9.546875l1.171875 0l0 3.421875q0.828125 -0.9375 2.078125 -0.9375q0.765625 0 1.328125 0.296875q0.5625 0.296875 0.8125 0.84375q0.25 0.53125 0.25 1.546875l0 4.375l-1.171875 0l0 -4.375q0 -0.890625 -0.390625 -1.28125q-0.375 -0.40625 -1.078125 -0.40625q-0.515625 0 -0.984375 0.28125q-0.453125 0.265625 -0.65625 0.734375q-0.1875 0.453125 -0.1875 1.265625l0 3.78125l-1.171875 0zm12.146851 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm11.006226 4.125l0 -0.875q-0.65625 1.03125 -1.9375 1.03125q-0.8125 0 -1.515625 -0.453125q-0.6875 -0.453125 -1.078125 -1.265625q-0.375 -0.828125 -0.375 -1.890625q0 -1.03125 0.34375 -1.875q0.34375 -0.84375 1.03125 -1.28125q0.703125 -0.453125 1.546875 -0.453125q0.625 0 1.109375 0.265625q0.5 0.25 0.796875 0.671875l0 -3.421875l1.171875 0l0 9.546875l-1.09375 0zm-3.703125 -3.453125q0 1.328125 0.5625 1.984375q0.5625 0.65625 1.328125 0.65625q0.765625 0 1.296875 -0.625q0.53125 -0.625 0.53125 -1.90625q0 -1.421875 -0.546875 -2.078125q-0.546875 -0.671875 -1.34375 -0.671875q-0.78125 0 -1.3125 0.640625q-0.515625 0.625 -0.515625 2.0zm11.162476 3.453125l0 -1.015625q-0.8125 1.171875 -2.1875 1.171875q-0.609375 0 -1.140625 -0.234375q-0.53125 -0.234375 -0.796875 -0.578125q-0.25 -0.359375 -0.359375 -0.875q-0.0625 -0.34375 -0.0625 -1.09375l0 -4.28125l1.171875 0l0 3.828125q0 0.921875 0.0625 1.234375q0.109375 0.46875 0.46875 0.734375q0.359375 0.25 0.890625 0.25q0.515625 0 0.984375 -0.265625q0.46875 -0.265625 0.65625 -0.734375q0.1875 -0.46875 0.1875 -1.34375l0 -3.703125l1.171875 0l0 6.90625l-1.046875 0zm2.8656006 0l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm7.7111206 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0z" fill-rule="nonzero"/><path fill="#f3f3f3" d="m508.19684 325.0551l146.67719 0l0 44.81891l-146.67719 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m508.19684 325.0551l146.67719 0l0 44.81891l-146.67719 0z" fill-rule="evenodd"/><path fill="#bababa" d="m522.58746 344.32385l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm1.7109375 -0.921875q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.6468506 3.453125l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm9.974976 -1.046875l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875zm1.1248779 1.046875l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm4.0164795 -3.453125q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.6312256 3.453125l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm2.9611206 0l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm7.7110596 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm8.156982 0l0 -6.90625l1.046875 0l0 0.96875q0.328125 -0.515625 0.859375 -0.8125q0.546875 -0.3125 1.234375 -0.3125q0.78125 0 1.265625 0.3125q0.484375 0.3125 0.6875 0.890625q0.828125 -1.203125 2.140625 -1.203125q1.03125 0 1.578125 0.578125q0.5625 0.5625 0.5625 1.734375l0 4.75l-1.171875 0l0 -4.359375q0 -0.703125 -0.125 -1.0q-0.109375 -0.3125 -0.40625 -0.5q-0.296875 -0.1875 -0.703125 -0.1875q-0.71875 0 -1.203125 0.484375q-0.484375 0.484375 -0.484375 1.546875l0 4.015625l-1.171875 0l0 -4.484375q0 -0.78125 -0.296875 -1.171875q-0.28125 -0.390625 -0.921875 -0.390625q-0.5 0 -0.921875 0.265625q-0.421875 0.25 -0.609375 0.75q-0.1875 0.5 -0.1875 1.453125l0 3.578125l-1.171875 0zm15.618042 -0.859375q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm2.9906006 3.46875l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm11.928101 -0.859375q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm2.7718506 4.046875l1.140625 0.15625q0.078125 0.53125 0.40625 0.78125q0.4375 0.3125 1.1875 0.3125q0.8125 0 1.25 -0.328125q0.453125 -0.3125 0.609375 -0.90625q0.09375 -0.359375 0.078125 -1.5q-0.765625 0.90625 -1.90625 0.90625q-1.4375 0 -2.21875 -1.03125q-0.78125 -1.03125 -0.78125 -2.46875q0 -0.984375 0.359375 -1.8125q0.359375 -0.84375 1.03125 -1.296875q0.6875 -0.453125 1.609375 -0.453125q1.21875 0 2.015625 0.984375l0 -0.828125l1.078125 0l0 5.96875q0 1.609375 -0.328125 2.28125q-0.328125 0.6875 -1.046875 1.078125q-0.703125 0.390625 -1.75 0.390625q-1.234375 0 -2.0 -0.5625q-0.75 -0.5625 -0.734375 -1.671875zm0.984375 -4.15625q0 1.359375 0.53125 1.984375q0.546875 0.625 1.359375 0.625q0.796875 0 1.34375 -0.625q0.546875 -0.625 0.546875 -1.953125q0 -1.265625 -0.5625 -1.90625q-0.5625 -0.640625 -1.359375 -0.640625q-0.765625 0 -1.3125 0.640625q-0.546875 0.625 -0.546875 1.875zm11.381226 1.359375l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0z" fill-rule="nonzero"/><path fill="#f3f3f3" d="m508.19684 388.78217l146.67719 0l0 44.81888l-146.67719 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m508.19684 388.78217l146.67719 0l0 44.81888l-146.67719 0z" fill-rule="evenodd"/><path fill="#bababa" d="m522.58746 408.0509l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm2.1328125 2.53125l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm7.5079956 0l0 -1.015625q-0.8125 1.171875 -2.1875 1.171875q-0.609375 0 -1.140625 -0.234375q-0.53125 -0.234375 -0.796875 -0.578125q-0.25 -0.359375 -0.359375 -0.875q-0.0625 -0.34375 -0.0625 -1.09375l0 -4.28125l1.171875 0l0 3.828125q0 0.921875 0.0625 1.234375q0.109375 0.46875 0.46875 0.734375q0.359375 0.25 0.890625 0.25q0.515625 0 0.984375 -0.265625q0.46875 -0.265625 0.65625 -0.734375q0.1875 -0.46875 0.1875 -1.34375l0 -3.703125l1.171875 0l0 6.90625l-1.046875 0zm2.4124756 -2.0625l1.15625 -0.1875q0.109375 0.703125 0.546875 1.078125q0.453125 0.359375 1.25 0.359375q0.8125 0 1.203125 -0.328125q0.390625 -0.328125 0.390625 -0.765625q0 -0.390625 -0.359375 -0.625q-0.234375 -0.15625 -1.1875 -0.390625q-1.296875 -0.328125 -1.796875 -0.5625q-0.484375 -0.25 -0.75 -0.65625q-0.25 -0.421875 -0.25 -0.9375q0 -0.453125 0.203125 -0.84375q0.21875 -0.40625 0.578125 -0.671875q0.28125 -0.1875 0.75 -0.328125q0.46875 -0.140625 1.015625 -0.140625q0.8125 0 1.421875 0.234375q0.609375 0.234375 0.90625 0.640625q0.296875 0.390625 0.40625 1.0625l-1.140625 0.15625q-0.078125 -0.53125 -0.453125 -0.828125q-0.375 -0.3125 -1.0625 -0.3125q-0.8125 0 -1.15625 0.265625q-0.34375 0.265625 -0.34375 0.625q0 0.234375 0.140625 0.421875q0.15625 0.1875 0.453125 0.3125q0.171875 0.0625 1.03125 0.296875q1.25 0.328125 1.734375 0.546875q0.5 0.203125 0.78125 0.609375q0.28125 0.40625 0.28125 1.0q0 0.59375 -0.34375 1.109375q-0.34375 0.515625 -1.0 0.796875q-0.640625 0.28125 -1.453125 0.28125q-1.34375 0 -2.046875 -0.5625q-0.703125 -0.5625 -0.90625 -1.65625zm9.6953125 1.015625l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875zm5.874817 -1.171875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm12.672607 -0.859375q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm7.5218506 3.46875l0 -1.015625q-0.8125 1.171875 -2.1875 1.171875q-0.609375 0 -1.140625 -0.234375q-0.53125 -0.234375 -0.796875 -0.578125q-0.25 -0.359375 -0.359375 -0.875q-0.0625 -0.34375 -0.0625 -1.09375l0 -4.28125l1.171875 0l0 3.828125q0 0.921875 0.0625 1.234375q0.109375 0.46875 0.46875 0.734375q0.359375 0.25 0.890625 0.25q0.515625 0 0.984375 -0.265625q0.46875 -0.265625 0.65625 -0.734375q0.1875 -0.46875 0.1875 -1.34375l0 -3.703125l1.171875 0l0 6.90625l-1.046875 0zm5.4437256 -1.046875l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875zm0.7030029 -2.40625q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.1781006 1.390625l1.15625 -0.1875q0.109375 0.703125 0.546875 1.078125q0.453125 0.359375 1.25 0.359375q0.8125 0 1.203125 -0.328125q0.390625 -0.328125 0.390625 -0.765625q0 -0.390625 -0.359375 -0.625q-0.234375 -0.15625 -1.1875 -0.390625q-1.296875 -0.328125 -1.796875 -0.5625q-0.484375 -0.25 -0.75 -0.65625q-0.25 -0.421875 -0.25 -0.9375q0 -0.453125 0.203125 -0.84375q0.21875 -0.40625 0.578125 -0.671875q0.28125 -0.1875 0.75 -0.328125q0.46875 -0.140625 1.015625 -0.140625q0.8125 0 1.421875 0.234375q0.609375 0.234375 0.90625 0.640625q0.296875 0.390625 0.40625 1.0625l-1.140625 0.15625q-0.078125 -0.53125 -0.453125 -0.828125q-0.375 -0.3125 -1.0625 -0.3125q-0.8125 0 -1.15625 0.265625q-0.34375 0.265625 -0.34375 0.625q0 0.234375 0.140625 0.421875q0.15625 0.1875 0.453125 0.3125q0.171875 0.0625 1.03125 0.296875q1.25 0.328125 1.734375 0.546875q0.5 0.203125 0.78125 0.609375q0.28125 0.40625 0.28125 1.0q0 0.59375 -0.34375 1.109375q-0.34375 0.515625 -1.0 0.796875q-0.640625 0.28125 -1.453125 0.28125q-1.34375 0 -2.046875 -0.5625q-0.703125 -0.5625 -0.90625 -1.65625zm11.6484375 -0.46875l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm6.6640625 1.671875q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm2.9749756 3.46875l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm7.7111206 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m511.47507 65.49606l140.91336 0l0 35.55905l-140.91336 0z" fill-rule="evenodd"/><path fill="#000000" d="m556.2635 87.29606l0 -0.953125l4.390625 -5.046875q-0.75 0.03125 -1.3125 0.03125l-2.828125 0l0 -0.9375l5.65625 0l0 0.765625l-3.75 4.390625l-0.71875 0.796875q0.796875 -0.0625 1.484375 -0.0625l3.1875 0l0 1.015625l-6.109375 0zm6.8359375 -3.453125q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.6468506 3.453125l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm12.146851 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm14.7404785 3.265625q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm2.5374756 0.609375l0 -1.1875l3.59375 0l0 1.1875l-3.59375 0zm10.7196045 1.734375l0 1.125l-6.296875 0q-0.015625 -0.421875 0.140625 -0.8125q0.234375 -0.640625 0.765625 -1.265625q0.53125 -0.625 1.53125 -1.453125q1.5625 -1.265625 2.109375 -2.015625q0.546875 -0.75 0.546875 -1.40625q0 -0.703125 -0.5 -1.171875q-0.5 -0.484375 -1.296875 -0.484375q-0.859375 0 -1.375 0.515625q-0.5 0.5 -0.5 1.390625l-1.203125 -0.109375q0.125 -1.359375 0.921875 -2.0625q0.8125 -0.703125 2.171875 -0.703125q1.375 0 2.171875 0.765625q0.8125 0.75 0.8125 1.875q0 0.578125 -0.234375 1.140625q-0.234375 0.546875 -0.78125 1.15625q-0.546875 0.609375 -1.8125 1.671875q-1.046875 0.890625 -1.359375 1.21875q-0.296875 0.3125 -0.484375 0.625l4.671875 0z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m74.19948 198.13661l0 0c0 -3.490631 2.8297043 -6.320343 6.3203354 -6.320343l852.9971 0c1.6762695 0 3.2838745 0.66589355 4.4691772 1.851181c1.1853027 1.1853027 1.8511963 2.7929077 1.8511963 4.469162l0 25.280579c0 3.490631 -2.829712 6.320343 -6.3203735 6.320343l-852.9971 0c-3.490631 0 -6.3203354 -2.829712 -6.3203354 -6.320343z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m74.19948 198.13661l0 0c0 -3.490631 2.8297043 -6.320343 6.3203354 -6.320343l852.9971 0c1.6762695 0 3.2838745 0.66589355 4.4691772 1.851181c1.1853027 1.1853027 1.8511963 2.7929077 1.8511963 4.469162l0 25.280579c0 3.490631 -2.829712 6.320343 -6.3203735 6.320343l-852.9971 0c-3.490631 0 -6.3203354 -2.829712 -6.3203354 -6.320343z" fill-rule="evenodd"/><path fill="#000000" d="m90.66001 213.35815l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm9.084351 3.078125l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875zm5.6561127 -1.484375l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm6.6328125 2.53125l0 -0.875q-0.65625 1.03125 -1.9375 1.03125q-0.8125 0 -1.515625 -0.453125q-0.6875 -0.453125 -1.078125 -1.265625q-0.375 -0.828125 -0.375 -1.890625q0 -1.03125 0.34375 -1.875q0.34375 -0.84375 1.03125 -1.28125q0.703125 -0.453125 1.546875 -0.453125q0.625 0 1.109375 0.265625q0.5 0.25 0.796875 0.671875l0 -3.421875l1.171875 0l0 9.546875l-1.09375 0zm-3.703125 -3.453125q0 1.328125 0.5625 1.984375q0.5625 0.65625 1.328125 0.65625q0.765625 0 1.296875 -0.625q0.53125 -0.625 0.53125 -1.90625q0 -1.421875 -0.546875 -2.078125q-0.546875 -0.671875 -1.34375 -0.671875q-0.78125 0 -1.3125 0.640625q-0.515625 0.625 -0.515625 2.0zm14.849838 0.921875l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm2.1328125 2.53125l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm7.5079727 0l0 -1.015625q-0.8125 1.171875 -2.1875076 1.171875q-0.609375 0 -1.140625 -0.234375q-0.53125 -0.234375 -0.796875 -0.578125q-0.25 -0.359375 -0.359375 -0.875q-0.0625 -0.34375 -0.0625 -1.09375l0 -4.28125l1.171875 0l0 3.828125q0 0.921875 0.0625 1.234375q0.109375 0.46875 0.46875 0.734375q0.359375 0.25 0.890625 0.25q0.515625 0 0.9843826 -0.265625q0.46875 -0.265625 0.65625 -0.734375q0.1875 -0.46875 0.1875 -1.34375l0 -3.703125l1.171875 0l0 6.90625l-1.046875 0zm2.4124756 -2.0625l1.15625 -0.1875q0.109375 0.703125 0.546875 1.078125q0.453125 0.359375 1.25 0.359375q0.8125 0 1.203125 -0.328125q0.390625 -0.328125 0.390625 -0.765625q0 -0.390625 -0.359375 -0.625q-0.234375 -0.15625 -1.1875 -0.390625q-1.296875 -0.328125 -1.796875 -0.5625q-0.484375 -0.25 -0.75 -0.65625q-0.25 -0.421875 -0.25 -0.9375q0 -0.453125 0.203125 -0.84375q0.21875 -0.40625 0.578125 -0.671875q0.28125 -0.1875 0.75 -0.328125q0.46875 -0.140625 1.015625 -0.140625q0.8125 0 1.421875 0.234375q0.609375 0.234375 0.90625 0.640625q0.296875 0.390625 0.40625 1.0625l-1.140625 0.15625q-0.078125 -0.53125 -0.453125 -0.828125q-0.375 -0.3125 -1.0625 -0.3125q-0.8125 0 -1.15625 0.265625q-0.34375 0.265625 -0.34375 0.625q0 0.234375 0.140625 0.421875q0.15625 0.1875 0.453125 0.3125q0.171875 0.0625 1.03125 0.296875q1.25 0.328125 1.734375 0.546875q0.5 0.203125 0.78125 0.609375q0.28125 0.40625 0.28125 1.0q0 0.59375 -0.34375 1.109375q-0.34375 0.515625 -1.0 0.796875q-0.640625 0.28125 -1.453125 0.28125q-1.34375 0 -2.046875 -0.5625q-0.703125 -0.5625 -0.90625 -1.65625zm9.6953125 1.015625l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875zm5.8748627 -1.171875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m74.19948 153.06837l0 0c0 -3.490631 2.8297043 -6.320343 6.3203354 -6.320343l852.9971 0c1.6762695 0 3.2838745 0.66589355 4.4691772 1.851181c1.1853027 1.1853027 1.8511963 2.7928925 1.8511963 4.469162l0 25.280579c0 3.490631 -2.829712 6.320343 -6.3203735 6.320343l-852.9971 0c-3.490631 0 -6.3203354 -2.829712 -6.3203354 -6.320343z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" stroke-dasharray="4.0,3.0" d="m74.19948 153.06837l0 0c0 -3.490631 2.8297043 -6.320343 6.3203354 -6.320343l852.9971 0c1.6762695 0 3.2838745 0.66589355 4.4691772 1.851181c1.1853027 1.1853027 1.8511963 2.7928925 1.8511963 4.469162l0 25.280579c0 3.490631 -2.829712 6.320343 -6.3203735 6.320343l-852.9971 0c-3.490631 0 -6.3203354 -2.829712 -6.3203354 -6.320343z" fill-rule="evenodd"/><path fill="#000000" d="m85.91001 162.50867l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm2.539215 -3.453125q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm11.162476 2.59375q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm7.4749756 3.46875l0 -0.875q-0.65625 1.03125 -1.9375 1.03125q-0.8125 0 -1.515625 -0.453125q-0.6875 -0.453125 -1.078125 -1.265625q-0.375 -0.828125 -0.375 -1.890625q0 -1.03125 0.34375 -1.875q0.34375 -0.84375 1.03125 -1.28125q0.703125 -0.453125 1.546875 -0.453125q0.625 0 1.109375 0.265625q0.5 0.25 0.796875 0.671875l0 -3.421875l1.171875 0l0 9.546875l-1.09375 0zm-3.703125 -3.453125q0 1.328125 0.5625 1.984375q0.5625 0.65625 1.328125 0.65625q0.765625 0 1.296875 -0.625q0.53125 -0.625 0.53125 -1.90625q0 -1.421875 -0.546875 -2.078125q-0.546875 -0.671875 -1.34375 -0.671875q-0.78125 0 -1.3125 0.640625q-0.515625 0.625 -0.515625 2.0zm11.412338 3.453125l-1.078125 0l0 -9.546875l1.171875 0l0 3.40625q0.734375 -0.921875 1.890625 -0.921875q0.640625 0 1.203125 0.265625q0.578125 0.25 0.9375 0.71875q0.375 0.453125 0.578125 1.109375q0.203125 0.65625 0.203125 1.40625q0 1.78125 -0.875 2.75q-0.875 0.96875 -2.109375 0.96875q-1.21875 0 -1.921875 -1.015625l0 0.859375zm0 -3.5q0 1.234375 0.328125 1.78125q0.5625 0.90625 1.5 0.90625q0.765625 0 1.328125 -0.65625q0.5625 -0.671875 0.5625 -2.0q0 -1.34375 -0.546875 -1.984375q-0.53125 -0.65625 -1.296875 -0.65625q-0.765625 0 -1.328125 0.671875q-0.546875 0.671875 -0.546875 1.9375zm10.849976 2.640625q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.29688263 0.828125l-1.2187576 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm2.9749832 3.46875l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm7.49234 -0.859375q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm2.9906006 3.46875l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm11.928101 -2.53125l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm6.8828125 0.3125l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0z" fill-rule="nonzero"/><path fill="#000000" d="m90.66001 176.28992l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm5.7406006 4.125l2.53125 -3.59375l-2.34375 -3.3125l1.46875 0l1.0625 1.609375q0.296875 0.46875 0.484375 0.78125q0.28125 -0.4375 0.515625 -0.765625l1.171875 -1.625l1.40625 0l-2.390625 3.25l2.5625 3.65625l-1.4375 0l-1.421875 -2.140625l-0.375 -0.59375l-1.8125 2.734375l-1.421875 0zm10.0078125 -1.046875l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875zm5.8748627 -1.171875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm4.4539948 0l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm11.928101 -0.859375q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125076 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.2187576 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm2.9749832 3.46875l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm7.0547028 0l0 -9.546875l1.25 0l0 9.546875l-1.25 0zm3.4842377 0l0 -9.546875l3.59375 0q0.953125 0 1.453125 0.09375q0.703125 0.125 1.171875 0.453125q0.484375 0.328125 0.765625 0.921875q0.296875 0.59375 0.296875 1.296875q0 1.21875 -0.78125 2.0625q-0.765625 0.84375 -2.796875 0.84375l-2.4375 0l0 3.875l-1.265625 0zm1.265625 -5.0l2.453125 0q1.234375 0 1.75 -0.453125q0.515625 -0.46875 0.515625 -1.28125q0 -0.609375 -0.3125 -1.03125q-0.296875 -0.421875 -0.796875 -0.5625q-0.3125 -0.09375 -1.171875 -0.09375l-2.4375 0l0 3.421875z" fill-rule="nonzero"/><path fill="#cfe2f3" d="m245.13124 494.40683l190.48817 0l0 123.37009l-190.48817 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m245.13124 494.40683l190.48817 0l0 123.37009l-190.48817 0z" fill-rule="evenodd"/><path fill="#cfe2f3" d="m261.07086 512.54333l190.48819 0l0 123.370056l-190.48819 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m261.07086 512.54333l190.48819 0l0 123.370056l-190.48819 0z" fill-rule="evenodd"/><path fill="#cfe2f3" d="m274.81104 529.5801l190.48819 0l0 123.370056l-190.48819 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m274.81104 529.5801l190.48819 0l0 123.370056l-190.48819 0z" fill-rule="evenodd"/><path fill="#000000" d="m329.06168 567.38007l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm6.9749756 -3.453125q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm11.131226 3.453125l0 -0.875q-0.65625 1.03125 -1.9375 1.03125q-0.8125 0 -1.515625 -0.453125q-0.6875 -0.453125 -1.078125 -1.265625q-0.375 -0.828125 -0.375 -1.890625q0 -1.03125 0.34375 -1.875q0.34375 -0.84375 1.03125 -1.28125q0.703125 -0.453125 1.546875 -0.453125q0.625 0 1.109375 0.265625q0.5 0.25 0.796875 0.671875l0 -3.421875l1.171875 0l0 9.546875l-1.09375 0zm-3.703125 -3.453125q0 1.328125 0.5625 1.984375q0.5625 0.65625 1.328125 0.65625q0.765625 0 1.296875 -0.625q0.53125 -0.625 0.53125 -1.90625q0 -1.421875 -0.546875 -2.078125q-0.546875 -0.671875 -1.34375 -0.671875q-0.78125 0 -1.3125 0.640625q-0.515625 0.625 -0.515625 2.0zm11.365601 1.234375l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm9.349823 4.28125l2.765625 -9.859375l0.9375 0l-2.765625 9.859375l-0.9375 0zm8.2966 -0.15625l0 -9.546875l1.171875 0l0 5.453125l2.765625 -2.8125l1.515625 0l-2.640625 2.5625l2.90625 4.34375l-1.4375 0l-2.28125 -3.53125l-0.828125 0.796875l0 2.734375l-1.171875 0zm11.1796875 0l0 -1.015625q-0.8125 1.171875 -2.1875 1.171875q-0.609375 0 -1.140625 -0.234375q-0.53125 -0.234375 -0.796875 -0.578125q-0.25 -0.359375 -0.359375 -0.875q-0.0625 -0.34375 -0.0625 -1.09375l0 -4.28125l1.171875 0l0 3.828125q0 0.921875 0.0625 1.234375q0.109375 0.46875 0.46875 0.734375q0.359375 0.25 0.890625 0.25q0.515625 0 0.984375 -0.265625q0.46875 -0.265625 0.65625 -0.734375q0.1875 -0.46875 0.1875 -1.34375l0 -3.703125l1.171875 0l0 6.90625l-1.046875 0zm3.9593506 0l-1.078125 0l0 -9.546875l1.171875 0l0 3.40625q0.734375 -0.921875 1.890625 -0.921875q0.640625 0 1.203125 0.265625q0.578125 0.25 0.9375 0.71875q0.375 0.453125 0.578125 1.109375q0.203125 0.65625 0.203125 1.40625q0 1.78125 -0.875 2.75q-0.875 0.96875 -2.109375 0.96875q-1.21875 0 -1.921875 -1.015625l0 0.859375zm0 -3.5q0 1.234375 0.328125 1.78125q0.5625 0.90625 1.5 0.90625q0.765625 0 1.328125 -0.65625q0.5625 -0.671875 0.5625 -2.0q0 -1.34375 -0.546875 -1.984375q-0.53125 -0.65625 -1.296875 -0.65625q-0.765625 0 -1.328125 0.671875q-0.546875 0.671875 -0.546875 1.9375zm11.068726 1.28125l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm7.71109 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm9.084351 3.078125l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875z" fill-rule="nonzero"/><path fill="#cfe2f3" d="m486.68765 494.40683l190.48819 0l0 123.37009l-190.48819 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m486.68765 494.40683l190.48819 0l0 123.37009l-190.48819 0z" fill-rule="evenodd"/><path fill="#cfe2f3" d="m502.6273 512.54333l190.48819 0l0 123.370056l-190.48819 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m502.6273 512.54333l190.48819 0l0 123.370056l-190.48819 0z" fill-rule="evenodd"/><path fill="#cfe2f3" d="m516.36743 529.5801l190.48822 0l0 123.370056l-190.48822 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m516.36743 529.5801l190.48822 0l0 123.370056l-190.48822 0z" fill-rule="evenodd"/><path fill="#000000" d="m570.6181 567.38007l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm6.9749756 -3.453125q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm11.131226 3.453125l0 -0.875q-0.65625 1.03125 -1.9375 1.03125q-0.8125 0 -1.515625 -0.453125q-0.6875 -0.453125 -1.078125 -1.265625q-0.375 -0.828125 -0.375 -1.890625q0 -1.03125 0.34375 -1.875q0.34375 -0.84375 1.03125 -1.28125q0.703125 -0.453125 1.546875 -0.453125q0.625 0 1.109375 0.265625q0.5 0.25 0.796875 0.671875l0 -3.421875l1.171875 0l0 9.546875l-1.09375 0zm-3.703125 -3.453125q0 1.328125 0.5625 1.984375q0.5625 0.65625 1.328125 0.65625q0.765625 0 1.296875 -0.625q0.53125 -0.625 0.53125 -1.90625q0 -1.421875 -0.546875 -2.078125q-0.546875 -0.671875 -1.34375 -0.671875q-0.78125 0 -1.3125 0.640625q-0.515625 0.625 -0.515625 2.0zm11.365601 1.234375l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm9.3498535 4.28125l2.765625 -9.859375l0.9375 0l-2.765625 9.859375l-0.9375 0zm8.29657 -0.15625l0 -9.546875l1.171875 0l0 5.453125l2.765625 -2.8125l1.515625 0l-2.640625 2.5625l2.90625 4.34375l-1.4375 0l-2.28125 -3.53125l-0.828125 0.796875l0 2.734375l-1.171875 0zm11.1796875 0l0 -1.015625q-0.8125 1.171875 -2.1875 1.171875q-0.609375 0 -1.140625 -0.234375q-0.53125 -0.234375 -0.796875 -0.578125q-0.25 -0.359375 -0.359375 -0.875q-0.0625 -0.34375 -0.0625 -1.09375l0 -4.28125l1.171875 0l0 3.828125q0 0.921875 0.0625 1.234375q0.109375 0.46875 0.46875 0.734375q0.359375 0.25 0.890625 0.25q0.515625 0 0.984375 -0.265625q0.46875 -0.265625 0.65625 -0.734375q0.1875 -0.46875 0.1875 -1.34375l0 -3.703125l1.171875 0l0 6.90625l-1.046875 0zm3.9593506 0l-1.078125 0l0 -9.546875l1.171875 0l0 3.40625q0.734375 -0.921875 1.890625 -0.921875q0.640625 0 1.203125 0.265625q0.578125 0.25 0.9375 0.71875q0.375 0.453125 0.578125 1.109375q0.203125 0.65625 0.203125 1.40625q0 1.78125 -0.875 2.75q-0.875 0.96875 -2.109375 0.96875q-1.21875 0 -1.921875 -1.015625l0 0.859375zm0 -3.5q0 1.234375 0.328125 1.78125q0.5625 0.90625 1.5 0.90625q0.765625 0 1.328125 -0.65625q0.5625 -0.671875 0.5625 -2.0q0 -1.34375 -0.546875 -1.984375q-0.53125 -0.65625 -1.296875 -0.65625q-0.765625 0 -1.328125 0.671875q-0.546875 0.671875 -0.546875 1.9375zm11.068726 1.28125l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -9.546875l1.171875 0l0 9.546875l-1.171875 0zm7.7111206 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm9.084351 3.078125l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m516.36743 591.2651l-467.16925 0l0 -425.54327l24.996056 0" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m516.36743 591.2651l-467.16925 0l0 -425.54327l18.996056 0" fill-rule="evenodd"/><path fill="#000000" stroke="#000000" stroke-width="1.0" stroke-linecap="butt" d="m68.19423 167.37352l4.5380936 -1.6517334l-4.5380936 -1.6517334z" fill-rule="evenodd"/></g></svg>
diff --git a/content/zh-cn/docs/images/ingress.svg b/content/zh-cn/docs/images/ingress.svg
new file mode 100644
index 0000000000..450a0aae9b
--- /dev/null
+++ b/content/zh-cn/docs/images/ingress.svg
@@ -0,0 +1 @@
+<svg viewBox="0 0 683.28125 224" style="max-width: 683.28125px;" height="224" aria-labelledby="chart-title-graph-div chart-desc-graph-div" role="img" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg" width="100%" id="graph-div"><title id="chart-title-graph-div"></title><desc id="chart-desc-graph-div"></desc><style>#graph-div {font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;fill:#333;}#graph-div .error-icon{fill:#552222;}#graph-div .error-text{fill:#552222;stroke:#552222;}#graph-div .edge-thickness-normal{stroke-width:2px;}#graph-div .edge-thickness-thick{stroke-width:3.5px;}#graph-div .edge-pattern-solid{stroke-dasharray:0;}#graph-div .edge-pattern-dashed{stroke-dasharray:3;}#graph-div .edge-pattern-dotted{stroke-dasharray:2;}#graph-div .marker{fill:#333333;stroke:#333333;}#graph-div .marker.cross{stroke:#333333;}#graph-div svg{font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;}#graph-div .label{font-family:"trebuchet ms",verdana,arial,sans-serif;color:#333;}#graph-div .cluster-label text{fill:#333;}#graph-div .cluster-label span{color:#333;}#graph-div .label text,#graph-div span{fill:#333;color:#333;}#graph-div .node rect,#graph-div .node circle,#graph-div .node ellipse,#graph-div .node polygon,#graph-div .node path{fill:#ECECFF;stroke:#9370DB;stroke-width:1px;}#graph-div .node .label{text-align:center;}#graph-div .node.clickable{cursor:pointer;}#graph-div .arrowheadPath{fill:#333333;}#graph-div .edgePath .path{stroke:#333333;stroke-width:2.0px;}#graph-div .flowchart-link{stroke:#333333;fill:none;}#graph-div .edgeLabel{background-color:#e8e8e8;text-align:center;}#graph-div .edgeLabel rect{opacity:0.5;background-color:#e8e8e8;fill:#e8e8e8;}#graph-div .cluster rect{fill:#ffffde;stroke:#aaaa33;stroke-width:1px;}#graph-div .cluster text{fill:#333;}#graph-div .cluster span{color:#333;}#graph-div div.mermaidTooltip{position:absolute;text-align:center;max-width:200px;padding:2px;font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:12px;background:hsl(80, 100%, 96.2745098039%);border:1px solid #aaaa33;border-radius:2px;pointer-events:none;z-index:100;}#graph-div :root{--mermaid-font-family:"trebuchet ms",verdana,arial,sans-serif;}#graph-div .plain&gt;*{fill:#ddd!important;stroke:#fff!important;stroke-width:4px!important;color:#000!important;}#graph-div .plain span{fill:#ddd!important;stroke:#fff!important;stroke-width:4px!important;color:#000!important;}#graph-div .k8s&gt;*{fill:#326ce5!important;stroke:#fff!important;stroke-width:4px!important;color:#fff!important;}#graph-div .k8s span{fill:#326ce5!important;stroke:#fff!important;stroke-width:4px!important;color:#fff!important;}#graph-div .cluster&gt;*{fill:#fff!important;stroke:#bbb!important;stroke-width:2px!important;color:#326ce5!important;}#graph-div .cluster span{fill:#fff!important;stroke:#bbb!important;stroke-width:2px!important;color:#326ce5!important;}</style><g><g class="output"><g class="clusters"><g style="opacity: 1;" transform="translate(464.8125,112)" id="flowchart-cluster-82" class="cluster"><rect y="-104" x="-210.46875" height="208" width="420.9375"></rect><g id="graph-divText" transform="translate(0, -90)" class="label"><g transform="translate(-24.578125,-12)"><foreignObject height="24" width="49.15625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">cluster</div></foreignObject></g></g></g></g><g class="edgePaths"><g style="opacity: 1;" id="L-client-ingress" class="edgePath LS-client LE-ingress"><path style="fill:none;stroke-width:2px;stroke-dasharray:3;" marker-end="url(#arrowhead118)" d="M80.015625,112L94.54296875,112C109.0703125,112,138.125,112,167.1796875,112C196.234375,112,225.2890625,112,243.98307291666666,112C262.6770833333333,112,271.0104166666667,112,275.1770833333333,112L279.34375,112" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead118"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-ingress-service" class="edgePath LS-ingress LE-service"><path style="fill:none" marker-end="url(#arrowhead119)" d="M348.46875,112L359.6731770833333,112C370.8776041666667,112,393.2864583333333,112,415.6953125,112C438.1041666666667,112,460.5130208333333,112,471.7174479166667,112L482.921875,112" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead119"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-service-pod1" class="edgePath LS-service LE-pod1"><path style="fill:none" marker-end="url(#arrowhead120)" d="M547.2456781914893,90L552.6396276595744,85.83333333333333C558.0335771276596,81.66666666666667,568.8214760638298,73.33333333333333,578.3820921985815,69.16666666666667C587.9427083333334,65,596.2760416666666,65,600.4427083333334,65L604.609375,65" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead120"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-service-pod2" class="edgePath LS-service LE-pod2"><path style="fill:none" marker-end="url(#arrowhead121)" d="M547.2456781914893,134L552.6396276595744,138.16666666666666C558.0335771276596,142.33333333333334,568.8214760638298,150.66666666666666,578.3820921985815,154.83333333333334C587.9427083333334,159,596.2760416666666,159,600.4427083333334,159L604.609375,159" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead121"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g></g><g class="edgeLabels"><g style="opacity: 1;" transform="translate(167.1796875,112)" class="edgeLabel"><g class="label" transform="translate(-62.1640625,-24)"><rect height="48" width="124.328125" ry="0" rx="0"></rect><foreignObject height="48" width="124.328125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-client' L-LE-ingress" id="L-L-client-ingress">Ingress-managed <br/> load balancer</span></div></foreignObject></g></g><g style="opacity: 1;" transform="translate(415.6953125,112)" class="edgeLabel"><g class="label" transform="translate(-42.2265625,-12)"><rect height="24" width="84.453125" ry="0" rx="0"></rect><foreignObject height="24" width="84.453125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-ingress' L-LE-service" id="L-L-ingress-service">routing rule</span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-service' L-LE-pod1" id="L-L-service-pod1"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-service' L-LE-pod2" id="L-L-service-pod2"></span></div></foreignObject></g></g></g><g class="nodes"><g style="opacity: 1;" transform="translate(313.90625,112)" id="flowchart-ingress-74" class="node k8s"><rect class="label-container" height="44" width="69.125" y="-22" x="-34.5625" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-24.5625,-12)"><foreignObject height="24" width="49.125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Ingress</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(627.4453125,65)" id="flowchart-pod1-79" class="node k8s"><rect class="label-container" height="44" width="45.671875" y="-22" x="-22.8359375" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-12.8359375,-12)"><foreignObject height="24" width="25.671875"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Pod</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(518.765625,112)" id="flowchart-service-76" class="node k8s"><rect class="label-container" height="44" width="71.6875" y="-22" x="-35.84375" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-25.84375,-12)"><foreignObject height="24" width="51.6875"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Service</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(627.4453125,159)" id="flowchart-pod2-81" class="node k8s"><rect class="label-container" height="44" width="45.671875" y="-22" x="-22.8359375" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-12.8359375,-12)"><foreignObject height="24" width="25.671875"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Pod</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(44.0078125,112)" id="flowchart-client-73" class="node plain"><rect class="label-container" height="44" width="72.015625" y="-22" x="-36.0078125" ry="22" rx="22"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-20.5078125,-12)"><foreignObject height="24" width="41.015625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">client</div></foreignObject></g></g></g></g></g></g></svg>
\ No newline at end of file
diff --git a/content/zh-cn/docs/images/ingressFanOut.svg b/content/zh-cn/docs/images/ingressFanOut.svg
new file mode 100644
index 0000000000..a6bf202635
--- /dev/null
+++ b/content/zh-cn/docs/images/ingressFanOut.svg
@@ -0,0 +1 @@
+<svg viewBox="0 0 854.515625 412" style="max-width: 854.515625px;" height="412" aria-labelledby="chart-title-graph-div chart-desc-graph-div" role="img" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg" width="100%" id="graph-div"><title id="chart-title-graph-div"></title><desc id="chart-desc-graph-div"></desc><style>#graph-div {font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;fill:#333;}#graph-div .error-icon{fill:#552222;}#graph-div .error-text{fill:#552222;stroke:#552222;}#graph-div .edge-thickness-normal{stroke-width:2px;}#graph-div .edge-thickness-thick{stroke-width:3.5px;}#graph-div .edge-pattern-solid{stroke-dasharray:0;}#graph-div .edge-pattern-dashed{stroke-dasharray:3;}#graph-div .edge-pattern-dotted{stroke-dasharray:2;}#graph-div .marker{fill:#333333;stroke:#333333;}#graph-div .marker.cross{stroke:#333333;}#graph-div svg{font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;}#graph-div .label{font-family:"trebuchet ms",verdana,arial,sans-serif;color:#333;}#graph-div .cluster-label text{fill:#333;}#graph-div .cluster-label span{color:#333;}#graph-div .label text,#graph-div span{fill:#333;color:#333;}#graph-div .node rect,#graph-div .node circle,#graph-div .node ellipse,#graph-div .node polygon,#graph-div .node path{fill:#ECECFF;stroke:#9370DB;stroke-width:1px;}#graph-div .node .label{text-align:center;}#graph-div .node.clickable{cursor:pointer;}#graph-div .arrowheadPath{fill:#333333;}#graph-div .edgePath .path{stroke:#333333;stroke-width:2.0px;}#graph-div .flowchart-link{stroke:#333333;fill:none;}#graph-div .edgeLabel{background-color:#e8e8e8;text-align:center;}#graph-div .edgeLabel rect{opacity:0.5;background-color:#e8e8e8;fill:#e8e8e8;}#graph-div .cluster rect{fill:#ffffde;stroke:#aaaa33;stroke-width:1px;}#graph-div .cluster text{fill:#333;}#graph-div .cluster span{color:#333;}#graph-div div.mermaidTooltip{position:absolute;text-align:center;max-width:200px;padding:2px;font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:12px;background:hsl(80, 100%, 96.2745098039%);border:1px solid #aaaa33;border-radius:2px;pointer-events:none;z-index:100;}#graph-div :root{--mermaid-font-family:"trebuchet ms",verdana,arial,sans-serif;}#graph-div .plain&gt;*{fill:#ddd!important;stroke:#fff!important;stroke-width:4px!important;color:#000!important;}#graph-div .plain span{fill:#ddd!important;stroke:#fff!important;stroke-width:4px!important;color:#000!important;}#graph-div .k8s&gt;*{fill:#326ce5!important;stroke:#fff!important;stroke-width:4px!important;color:#fff!important;}#graph-div .k8s span{fill:#326ce5!important;stroke:#fff!important;stroke-width:4px!important;color:#fff!important;}#graph-div .cluster&gt;*{fill:#fff!important;stroke:#bbb!important;stroke-width:2px!important;color:#326ce5!important;}#graph-div .cluster span{fill:#fff!important;stroke:#bbb!important;stroke-width:2px!important;color:#326ce5!important;}</style><g><g class="output"><g class="clusters"><g style="opacity: 1;" transform="translate(550.4296875,206)" id="flowchart-cluster-158" class="cluster"><rect y="-198" x="-296.0859375" height="396" width="592.171875"></rect><g id="graph-divText" transform="translate(0, -184)" class="label"><g transform="translate(-24.578125,-12)"><foreignObject height="24" width="49.15625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">cluster</div></foreignObject></g></g></g></g><g class="edgePaths"><g style="opacity: 1;" id="L-client-ingress" class="edgePath LS-client LE-ingress"><path style="fill:none;stroke-width:2px;stroke-dasharray:3;" marker-end="url(#arrowhead193)" d="M80.015625,206L94.54296875,206C109.0703125,206,138.125,206,167.1796875,206C196.234375,206,225.2890625,206,243.98307291666666,206C262.6770833333333,206,271.0104166666667,206,275.1770833333333,206L279.34375,206" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead193"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-ingress-service1" class="edgePath LS-ingress LE-service1"><path style="fill:none" marker-end="url(#arrowhead194)" d="M406.0119680851064,184L423.35372340425533,172C440.6954787234043,160,475.37898936170217,136,499.54886968085106,124C523.71875,112,537.375,112,544.203125,112L551.03125,112" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead194"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-ingress-service2" class="edgePath LS-ingress LE-service2"><path style="fill:none" marker-end="url(#arrowhead195)" d="M406.0119680851064,228L423.35372340425533,240C440.6954787234043,252,475.37898936170217,276,499.54886968085106,288C523.71875,300,537.375,300,544.203125,300L551.03125,300" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead195"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-service1-pod1" class="edgePath LS-service1 LE-pod1"><path style="fill:none" marker-end="url(#arrowhead196)" d="M691.0531914893617,90L701.0182845744681,85.83333333333333C710.9833776595746,81.66666666666667,730.9135638297872,73.33333333333333,745.0453235815603,69.16666666666667C759.1770833333334,65,767.5104166666666,65,771.6770833333334,65L775.84375,65" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead196"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-service1-pod2" class="edgePath LS-service1 LE-pod2"><path style="fill:none" marker-end="url(#arrowhead197)" d="M691.0531914893617,134L701.0182845744681,138.16666666666666C710.9833776595746,142.33333333333334,730.9135638297872,150.66666666666666,745.0453235815603,154.83333333333334C759.1770833333334,159,767.5104166666666,159,771.6770833333334,159L775.84375,159" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead197"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-service2-pod3" class="edgePath LS-service2 LE-pod3"><path style="fill:none" marker-end="url(#arrowhead198)" d="M691.0531914893617,278L701.0182845744681,273.8333333333333C710.9833776595746,269.6666666666667,730.9135638297872,261.3333333333333,745.0453235815603,257.1666666666667C759.1770833333334,253,767.5104166666666,253,771.6770833333334,253L775.84375,253" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead198"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-service2-pod4" class="edgePath LS-service2 LE-pod4"><path style="fill:none" marker-end="url(#arrowhead199)" d="M691.0531914893617,322L701.0182845744681,326.1666666666667C710.9833776595746,330.3333333333333,730.9135638297872,338.6666666666667,745.0453235815603,342.8333333333333C759.1770833333334,347,767.5104166666666,347,771.6770833333334,347L775.84375,347" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead199"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g></g><g class="edgeLabels"><g style="opacity: 1;" transform="translate(167.1796875,206)" class="edgeLabel"><g class="label" transform="translate(-62.1640625,-24)"><rect height="48" width="124.328125" ry="0" rx="0"></rect><foreignObject height="48" width="124.328125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-client' L-LE-ingress" id="L-L-client-ingress">Ingress-managed <br/> load balancer</span></div></foreignObject></g></g><g style="opacity: 1;" transform="translate(510.0625,112)" class="edgeLabel"><g class="label" transform="translate(-15.7421875,-12)"><rect height="24" width="31.484375" ry="0" rx="0"></rect><foreignObject height="24" width="31.484375"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-ingress' L-LE-service1" id="L-L-ingress-service1">/foo</span></div></foreignObject></g></g><g style="opacity: 1;" transform="translate(510.0625,300)" class="edgeLabel"><g class="label" transform="translate(-15.96875,-12)"><rect height="24" width="31.9375" ry="0" rx="0"></rect><foreignObject height="24" width="31.9375"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-ingress' L-LE-service2" id="L-L-ingress-service2">/bar</span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-service1' L-LE-pod1" id="L-L-service1-pod1"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-service1' L-LE-pod2" id="L-L-service1-pod2"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-service2' L-LE-pod3" id="L-L-service2-pod3"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-service2' L-LE-pod4" id="L-L-service2-pod4"></span></div></foreignObject></g></g></g><g class="nodes"><g style="opacity: 1;" transform="translate(374.21875,206)" id="flowchart-ingress-144" class="node k8s"><rect class="label-container" height="44" width="189.75" y="-22" x="-94.875" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-84.875,-12)"><foreignObject height="24" width="169.75"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Ingress, 178.91.123.132</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(798.6796875,65)" id="flowchart-pod1-151" class="node k8s"><rect class="label-container" height="44" width="45.671875" y="-22" x="-22.8359375" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-12.8359375,-12)"><foreignObject height="24" width="25.671875"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Pod</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(638.4375,112)" id="flowchart-service1-146" class="node k8s"><rect class="label-container" height="44" width="174.8125" y="-22" x="-87.40625" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-77.40625,-12)"><foreignObject height="24" width="154.8125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Service service1:4200</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(798.6796875,159)" id="flowchart-pod2-153" class="node k8s"><rect class="label-container" height="44" width="45.671875" y="-22" x="-22.8359375" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-12.8359375,-12)"><foreignObject height="24" width="25.671875"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Pod</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(798.6796875,253)" id="flowchart-pod3-155" class="node k8s"><rect class="label-container" height="44" width="45.671875" y="-22" x="-22.8359375" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-12.8359375,-12)"><foreignObject height="24" width="25.671875"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Pod</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(638.4375,300)" id="flowchart-service2-148" class="node k8s"><rect class="label-container" height="44" width="174.8125" y="-22" x="-87.40625" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-77.40625,-12)"><foreignObject height="24" width="154.8125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Service service2:8080</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(798.6796875,347)" id="flowchart-pod4-157" class="node k8s"><rect class="label-container" height="44" width="45.671875" y="-22" x="-22.8359375" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-12.8359375,-12)"><foreignObject height="24" width="25.671875"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Pod</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(44.0078125,206)" id="flowchart-client-143" class="node plain"><rect class="label-container" height="44" width="72.015625" y="-22" x="-36.0078125" ry="22" rx="22"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-20.5078125,-12)"><foreignObject height="24" width="41.015625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">client</div></foreignObject></g></g></g></g></g></g></svg>
\ No newline at end of file
diff --git a/content/zh-cn/docs/images/ingressNameBased.svg b/content/zh-cn/docs/images/ingressNameBased.svg
new file mode 100644
index 0000000000..7e1d7be98c
--- /dev/null
+++ b/content/zh-cn/docs/images/ingressNameBased.svg
@@ -0,0 +1 @@
+<svg viewBox="0 0 934.40625 412" style="max-width: 934.40625px;" height="412" aria-labelledby="chart-title-graph-div chart-desc-graph-div" role="img" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg" width="100%" id="graph-div"><title id="chart-title-graph-div"></title><desc id="chart-desc-graph-div"></desc><style>#graph-div {font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;fill:#333;}#graph-div .error-icon{fill:#552222;}#graph-div .error-text{fill:#552222;stroke:#552222;}#graph-div .edge-thickness-normal{stroke-width:2px;}#graph-div .edge-thickness-thick{stroke-width:3.5px;}#graph-div .edge-pattern-solid{stroke-dasharray:0;}#graph-div .edge-pattern-dashed{stroke-dasharray:3;}#graph-div .edge-pattern-dotted{stroke-dasharray:2;}#graph-div .marker{fill:#333333;stroke:#333333;}#graph-div .marker.cross{stroke:#333333;}#graph-div svg{font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;}#graph-div .label{font-family:"trebuchet ms",verdana,arial,sans-serif;color:#333;}#graph-div .cluster-label text{fill:#333;}#graph-div .cluster-label span{color:#333;}#graph-div .label text,#graph-div span{fill:#333;color:#333;}#graph-div .node rect,#graph-div .node circle,#graph-div .node ellipse,#graph-div .node polygon,#graph-div .node path{fill:#ECECFF;stroke:#9370DB;stroke-width:1px;}#graph-div .node .label{text-align:center;}#graph-div .node.clickable{cursor:pointer;}#graph-div .arrowheadPath{fill:#333333;}#graph-div .edgePath .path{stroke:#333333;stroke-width:2.0px;}#graph-div .flowchart-link{stroke:#333333;fill:none;}#graph-div .edgeLabel{background-color:#e8e8e8;text-align:center;}#graph-div .edgeLabel rect{opacity:0.5;background-color:#e8e8e8;fill:#e8e8e8;}#graph-div .cluster rect{fill:#ffffde;stroke:#aaaa33;stroke-width:1px;}#graph-div .cluster text{fill:#333;}#graph-div .cluster span{color:#333;}#graph-div div.mermaidTooltip{position:absolute;text-align:center;max-width:200px;padding:2px;font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:12px;background:hsl(80, 100%, 96.2745098039%);border:1px solid #aaaa33;border-radius:2px;pointer-events:none;z-index:100;}#graph-div :root{--mermaid-font-family:"trebuchet ms",verdana,arial,sans-serif;}#graph-div .plain&gt;*{fill:#ddd!important;stroke:#fff!important;stroke-width:4px!important;color:#000!important;}#graph-div .plain span{fill:#ddd!important;stroke:#fff!important;stroke-width:4px!important;color:#000!important;}#graph-div .k8s&gt;*{fill:#326ce5!important;stroke:#fff!important;stroke-width:4px!important;color:#fff!important;}#graph-div .k8s span{fill:#326ce5!important;stroke:#fff!important;stroke-width:4px!important;color:#fff!important;}#graph-div .cluster&gt;*{fill:#fff!important;stroke:#bbb!important;stroke-width:2px!important;color:#326ce5!important;}#graph-div .cluster span{fill:#fff!important;stroke:#bbb!important;stroke-width:2px!important;color:#326ce5!important;}</style><g><g class="output"><g class="clusters"><g style="opacity: 1;" transform="translate(590.375,206)" id="flowchart-cluster-234" class="cluster"><rect y="-198" x="-336.03125" height="396" width="672.0625"></rect><g id="graph-divText" transform="translate(0, -184)" class="label"><g transform="translate(-24.578125,-12)"><foreignObject height="24" width="49.15625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">cluster</div></foreignObject></g></g></g></g><g class="edgePaths"><g style="opacity: 1;" id="L-client-ingress" class="edgePath LS-client LE-ingress"><path style="fill:none;stroke-width:2px;stroke-dasharray:3;" marker-end="url(#arrowhead271)" d="M80.015625,206L94.54296875,206C109.0703125,206,138.125,206,167.1796875,206C196.234375,206,225.2890625,206,243.98307291666666,206C262.6770833333333,206,271.0104166666667,206,275.1770833333333,206L279.34375,206" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead271"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-ingress-service1" class="edgePath LS-ingress LE-service1"><path style="fill:none" marker-end="url(#arrowhead272)" d="M417.32463430851067,184L440.83693484042556,172C464.34923537234044,160,511.3738364361702,136,549.7702515514185,124C588.1666666666666,112,617.9348958333334,112,632.8190104166666,112L647.703125,112" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead272"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-ingress-service2" class="edgePath LS-ingress LE-service2"><path style="fill:none" marker-end="url(#arrowhead273)" d="M417.32463430851067,228L440.83693484042556,240C464.34923537234044,252,511.3738364361702,276,549.7702515514185,288C588.1666666666666,300,617.9348958333334,300,632.8190104166666,300L647.703125,300" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead273"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-service1-pod1" class="edgePath LS-service1 LE-pod1"><path style="fill:none" marker-end="url(#arrowhead274)" d="M775.406914893617,90L784.6281582446809,85.83333333333333C793.8494015957446,81.66666666666667,812.2918882978723,73.33333333333333,825.6797983156029,69.16666666666667C839.0677083333334,65,847.4010416666666,65,851.5677083333334,65L855.734375,65" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead274"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-service1-pod2" class="edgePath LS-service1 LE-pod2"><path style="fill:none" marker-end="url(#arrowhead275)" d="M775.406914893617,134L784.6281582446809,138.16666666666666C793.8494015957446,142.33333333333334,812.2918882978723,150.66666666666666,825.6797983156029,154.83333333333334C839.0677083333334,159,847.4010416666666,159,851.5677083333334,159L855.734375,159" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead275"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-service2-pod3" class="edgePath LS-service2 LE-pod3"><path style="fill:none" marker-end="url(#arrowhead276)" d="M775.406914893617,278L784.6281582446809,273.8333333333333C793.8494015957446,269.6666666666667,812.2918882978723,261.3333333333333,825.6797983156029,257.1666666666667C839.0677083333334,253,847.4010416666666,253,851.5677083333334,253L855.734375,253" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead276"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-service2-pod4" class="edgePath LS-service2 LE-pod4"><path style="fill:none" marker-end="url(#arrowhead277)" d="M775.406914893617,322L784.6281582446809,326.1666666666667C793.8494015957446,330.3333333333333,812.2918882978723,338.6666666666667,825.6797983156029,342.8333333333333C839.0677083333334,347,847.4010416666666,347,851.5677083333334,347L855.734375,347" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead277"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g></g><g class="edgeLabels"><g style="opacity: 1;" transform="translate(167.1796875,206)" class="edgeLabel"><g class="label" transform="translate(-62.1640625,-24)"><rect height="48" width="124.328125" ry="0" rx="0"></rect><foreignObject height="48" width="124.328125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-client' L-LE-ingress" id="L-L-client-ingress">Ingress-managed <br/> load balancer</span></div></foreignObject></g></g><g style="opacity: 1;" transform="translate(558.3984375,112)" class="edgeLabel"><g class="label" transform="translate(-64.3046875,-12)"><rect height="24" width="128.609375" ry="0" rx="0"></rect><foreignObject height="24" width="128.609375"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-ingress' L-LE-service1" id="L-L-ingress-service1">Host: foo.bar.com</span></div></foreignObject></g></g><g style="opacity: 1;" transform="translate(558.3984375,300)" class="edgeLabel"><g class="label" transform="translate(-64.3046875,-12)"><rect height="24" width="128.609375" ry="0" rx="0"></rect><foreignObject height="24" width="128.609375"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-ingress' L-LE-service2" id="L-L-ingress-service2">Host: bar.foo.com</span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-service1' L-LE-pod1" id="L-L-service1-pod1"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-service1' L-LE-pod2" id="L-L-service1-pod2"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-service2' L-LE-pod3" id="L-L-service2-pod3"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-service2' L-LE-pod4" id="L-L-service2-pod4"></span></div></foreignObject></g></g></g><g class="nodes"><g style="opacity: 1;" transform="translate(374.21875,206)" id="flowchart-ingress-220" class="node k8s"><rect class="label-container" height="44" width="189.75" y="-22" x="-94.875" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-84.875,-12)"><foreignObject height="24" width="169.75"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Ingress, 178.91.123.132</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(878.5703125,65)" id="flowchart-pod1-227" class="node k8s"><rect class="label-container" height="44" width="45.671875" y="-22" x="-22.8359375" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-12.8359375,-12)"><foreignObject height="24" width="25.671875"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Pod</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(726.71875,112)" id="flowchart-service1-222" class="node k8s"><rect class="label-container" height="44" width="158.03125" y="-22" x="-79.015625" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-69.015625,-12)"><foreignObject height="24" width="138.03125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Service service1:80</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(878.5703125,159)" id="flowchart-pod2-229" class="node k8s"><rect class="label-container" height="44" width="45.671875" y="-22" x="-22.8359375" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-12.8359375,-12)"><foreignObject height="24" width="25.671875"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Pod</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(878.5703125,253)" id="flowchart-pod3-231" class="node k8s"><rect class="label-container" height="44" width="45.671875" y="-22" x="-22.8359375" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-12.8359375,-12)"><foreignObject height="24" width="25.671875"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Pod</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(726.71875,300)" id="flowchart-service2-224" class="node k8s"><rect class="label-container" height="44" width="158.03125" y="-22" x="-79.015625" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-69.015625,-12)"><foreignObject height="24" width="138.03125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Service service2:80</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(878.5703125,347)" id="flowchart-pod4-233" class="node k8s"><rect class="label-container" height="44" width="45.671875" y="-22" x="-22.8359375" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-12.8359375,-12)"><foreignObject height="24" width="25.671875"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Pod</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(44.0078125,206)" id="flowchart-client-219" class="node plain"><rect class="label-container" height="44" width="72.015625" y="-22" x="-36.0078125" ry="22" rx="22"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-20.5078125,-12)"><foreignObject height="24" width="41.015625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">client</div></foreignObject></g></g></g></g></g></g></svg>
\ No newline at end of file
diff --git a/content/zh-cn/docs/images/tutor-service-nodePort-fig01.svg b/content/zh-cn/docs/images/tutor-service-nodePort-fig01.svg
new file mode 100644
index 0000000000..bb4d866f85
--- /dev/null
+++ b/content/zh-cn/docs/images/tutor-service-nodePort-fig01.svg
@@ -0,0 +1 @@
+<svg viewBox="0 0 484.78125 84" style="max-width: 484.78125px;" height="84" aria-labelledby="chart-title-graph-div chart-desc-graph-div" role="img" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg" width="100%" id="graph-div"><title id="chart-title-graph-div"></title><desc id="chart-desc-graph-div"></desc><style>#graph-div {font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;fill:#333;}#graph-div .error-icon{fill:#552222;}#graph-div .error-text{fill:#552222;stroke:#552222;}#graph-div .edge-thickness-normal{stroke-width:2px;}#graph-div .edge-thickness-thick{stroke-width:3.5px;}#graph-div .edge-pattern-solid{stroke-dasharray:0;}#graph-div .edge-pattern-dashed{stroke-dasharray:3;}#graph-div .edge-pattern-dotted{stroke-dasharray:2;}#graph-div .marker{fill:#333333;stroke:#333333;}#graph-div .marker.cross{stroke:#333333;}#graph-div svg{font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;}#graph-div .label{font-family:"trebuchet ms",verdana,arial,sans-serif;color:#333;}#graph-div .cluster-label text{fill:#333;}#graph-div .cluster-label span{color:#333;}#graph-div .label text,#graph-div span{fill:#333;color:#333;}#graph-div .node rect,#graph-div .node circle,#graph-div .node ellipse,#graph-div .node polygon,#graph-div .node path{fill:#ECECFF;stroke:#9370DB;stroke-width:1px;}#graph-div .node .label{text-align:center;}#graph-div .node.clickable{cursor:pointer;}#graph-div .arrowheadPath{fill:#333333;}#graph-div .edgePath .path{stroke:#333333;stroke-width:2.0px;}#graph-div .flowchart-link{stroke:#333333;fill:none;}#graph-div .edgeLabel{background-color:#e8e8e8;text-align:center;}#graph-div .edgeLabel rect{opacity:0.5;background-color:#e8e8e8;fill:#e8e8e8;}#graph-div .cluster rect{fill:#ffffde;stroke:#aaaa33;stroke-width:1px;}#graph-div .cluster text{fill:#333;}#graph-div .cluster span{color:#333;}#graph-div div.mermaidTooltip{position:absolute;text-align:center;max-width:200px;padding:2px;font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:12px;background:hsl(80, 100%, 96.2745098039%);border:1px solid #aaaa33;border-radius:2px;pointer-events:none;z-index:100;}#graph-div :root{--mermaid-font-family:"trebuchet ms",verdana,arial,sans-serif;}#graph-div .plain&gt;*{fill:#ddd!important;stroke:#fff!important;stroke-width:4px!important;color:#000!important;}#graph-div .plain span{fill:#ddd!important;stroke:#fff!important;stroke-width:4px!important;color:#000!important;}#graph-div .k8s&gt;*{fill:#326ce5!important;stroke:#fff!important;stroke-width:4px!important;color:#fff!important;}#graph-div .k8s span{fill:#326ce5!important;stroke:#fff!important;stroke-width:4px!important;color:#fff!important;}</style><g><g class="output"><g class="clusters"></g><g class="edgePaths"><g style="opacity: 1;" id="L-client-node2" class="edgePath LS-client LE-node2"><path style="fill:none" marker-end="url(#arrowhead23)" d="M69.015625,36.50387051372273L73.18229166666667,35.753225428102276C77.34895833333333,35.00258034248182,85.68229166666667,33.50129017124091,94.015625,33.44708453891548C102.34895833333333,33.392878906590056,110.68229166666667,34.78575781318012,114.84895833333333,35.48219726647515L119.015625,36.178636719770175" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead23"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-node2-client" class="edgePath LS-node2 LE-client"><path style="fill:none" marker-end="url(#arrowhead24)" d="M119.015625,47.821363280229825L114.84895833333333,48.51780273352485C110.68229166666667,49.21424218681989,102.34895833333333,50.607121093409944,94.015625,50.55291546108452C85.68229166666667,50.49870982875908,77.34895833333333,48.99741965751818,73.18229166666667,48.246774571897724L69.015625,47.49612948627727" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead24"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-node2-node1" class="edgePath LS-node2 LE-node1"><path style="fill:none;stroke-width:2px;stroke-dasharray:3;" marker-end="url(#arrowhead25)" d="M188.671875,32.096334444107846L195.76171875,30.080278703423204C202.8515625,28.064222962738565,217.03125,24.03211148136928,231.2109375,24.03211148136928C245.390625,24.03211148136928,259.5703125,28.064222962738565,266.66015625,30.080278703423204L273.75,32.096334444107846" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead25"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-node1-node2" class="edgePath LS-node1 LE-node2"><path style="fill:none;stroke-width:2px;stroke-dasharray:3;" marker-end="url(#arrowhead26)" d="M273.75,51.903665555892154L266.66015625,53.919721296576796C259.5703125,55.93577703726144,245.390625,59.96788851863072,231.2109375,59.96788851863071C217.03125,59.96788851863072,202.8515625,55.93577703726144,195.76171875,53.919721296576796L188.671875,51.903665555892154" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead26"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-node1-endpoint" class="edgePath LS-node1 LE-endpoint"><path style="fill:none" marker-end="url(#arrowhead27)" d="M343.40625,42L347.5729166666667,42C351.7395833333333,42,360.0729166666667,42,368.40625,42C376.7395833333333,42,385.0729166666667,42,389.2395833333333,42L393.40625,42" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead27"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g></g><g class="edgeLabels"><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-client' L-LE-node2" id="L-L-client-node2"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-node2' L-LE-client" id="L-L-node2-client"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="translate(231.2109375,20)" class="edgeLabel"><g class="label" transform="translate(-17.5390625,-12)"><rect height="24" width="35.078125" ry="0" rx="0"></rect><foreignObject height="24" width="35.078125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-node2' L-LE-node1" id="L-L-node2-node1">SNAT</span></div></foreignObject></g></g><g style="opacity: 1;" transform="translate(231.2109375,64)" class="edgeLabel"><g class="label" transform="translate(-17.5390625,-12)"><rect height="24" width="35.078125" ry="0" rx="0"></rect><foreignObject height="24" width="35.078125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-node1' L-LE-node2" id="L-L-node1-node2">SNAT</span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-node1' L-LE-endpoint" id="L-L-node1-endpoint"></span></div></foreignObject></g></g></g><g class="nodes"><g style="opacity: 1;" transform="translate(38.5078125,42)" id="flowchart-client-10" class="node plain"><rect class="label-container" height="44" width="61.015625" y="-22" x="-30.5078125" ry="5" rx="5"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-20.5078125,-12)"><foreignObject height="24" width="41.015625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">client</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(153.84375,42)" id="flowchart-node2-11" class="node k8s"><rect class="label-container" height="44" width="69.65625" y="-22" x="-34.828125" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-24.828125,-12)"><foreignObject height="24" width="49.65625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Node 2</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(308.578125,42)" id="flowchart-node1-15" class="node k8s"><rect class="label-container" height="44" width="69.65625" y="-22" x="-34.828125" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-24.828125,-12)"><foreignObject height="24" width="49.65625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Node 1</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(435.09375,42)" id="flowchart-endpoint-19" class="node k8s"><rect class="label-container" height="44" width="83.375" y="-22" x="-41.6875" ry="5" rx="5"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-31.6875,-12)"><foreignObject height="24" width="63.375"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Endpoint</div></foreignObject></g></g></g></g></g></g></svg>
\ No newline at end of file
diff --git a/content/zh-cn/docs/images/tutor-service-nodePort-fig02.svg b/content/zh-cn/docs/images/tutor-service-nodePort-fig02.svg
new file mode 100644
index 0000000000..1a891575e5
--- /dev/null
+++ b/content/zh-cn/docs/images/tutor-service-nodePort-fig02.svg
@@ -0,0 +1 @@
+<svg viewBox="0 0 212.25 248" style="max-width: 212.25px;" height="248" aria-labelledby="chart-title-graph-div chart-desc-graph-div" role="img" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg" width="100%" id="graph-div"><title id="chart-title-graph-div"></title><desc id="chart-desc-graph-div"></desc><style>#graph-div {font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;fill:#333;}#graph-div .error-icon{fill:#552222;}#graph-div .error-text{fill:#552222;stroke:#552222;}#graph-div .edge-thickness-normal{stroke-width:2px;}#graph-div .edge-thickness-thick{stroke-width:3.5px;}#graph-div .edge-pattern-solid{stroke-dasharray:0;}#graph-div .edge-pattern-dashed{stroke-dasharray:3;}#graph-div .edge-pattern-dotted{stroke-dasharray:2;}#graph-div .marker{fill:#333333;stroke:#333333;}#graph-div .marker.cross{stroke:#333333;}#graph-div svg{font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;}#graph-div .label{font-family:"trebuchet ms",verdana,arial,sans-serif;color:#333;}#graph-div .cluster-label text{fill:#333;}#graph-div .cluster-label span{color:#333;}#graph-div .label text,#graph-div span{fill:#333;color:#333;}#graph-div .node rect,#graph-div .node circle,#graph-div .node ellipse,#graph-div .node polygon,#graph-div .node path{fill:#ECECFF;stroke:#9370DB;stroke-width:1px;}#graph-div .node .label{text-align:center;}#graph-div .node.clickable{cursor:pointer;}#graph-div .arrowheadPath{fill:#333333;}#graph-div .edgePath .path{stroke:#333333;stroke-width:2.0px;}#graph-div .flowchart-link{stroke:#333333;fill:none;}#graph-div .edgeLabel{background-color:#e8e8e8;text-align:center;}#graph-div .edgeLabel rect{opacity:0.5;background-color:#e8e8e8;fill:#e8e8e8;}#graph-div .cluster rect{fill:#ffffde;stroke:#aaaa33;stroke-width:1px;}#graph-div .cluster text{fill:#333;}#graph-div .cluster span{color:#333;}#graph-div div.mermaidTooltip{position:absolute;text-align:center;max-width:200px;padding:2px;font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:12px;background:hsl(80, 100%, 96.2745098039%);border:1px solid #aaaa33;border-radius:2px;pointer-events:none;z-index:100;}#graph-div :root{--mermaid-font-family:"trebuchet ms",verdana,arial,sans-serif;}#graph-div .plain&gt;*{fill:#ddd!important;stroke:#fff!important;stroke-width:4px!important;color:#000!important;}#graph-div .plain span{fill:#ddd!important;stroke:#fff!important;stroke-width:4px!important;color:#000!important;}#graph-div .k8s&gt;*{fill:#326ce5!important;stroke:#fff!important;stroke-width:4px!important;color:#fff!important;}#graph-div .k8s span{fill:#326ce5!important;stroke:#fff!important;stroke-width:4px!important;color:#fff!important;}</style><g><g class="output"><g class="clusters"></g><g class="edgePaths"><g style="opacity: 1;" id="L-client-node1" class="edgePath LS-client LE-node1"><path style="fill:none" marker-end="url(#arrowhead69)" d="M81.58909574468085,52L76.2851839539007,56.166666666666664C70.98127216312056,60.333333333333336,60.373448581560275,68.66666666666667,55.06953679078014,77C49.765625,85.33333333333333,49.765625,93.66666666666667,49.765625,97.83333333333333L49.765625,102" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead69"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-client-node2" class="edgePath LS-client LE-node2"><path style="fill:none" marker-end="url(#arrowhead70)" d="M137.59840425531914,52L142.9023160460993,56.166666666666664C148.20622783687944,60.333333333333336,158.8140514184397,68.66666666666667,164.11796320921985,77C169.421875,85.33333333333333,169.421875,93.66666666666667,169.421875,97.83333333333333L169.421875,102" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead70"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-node1-endpoint" class="edgePath LS-node1 LE-endpoint"><path style="fill:none" marker-end="url(#arrowhead71)" d="M45.084773936170215,146L44.198249113475185,150.16666666666666C43.31172429078015,154.33333333333334,41.538674645390074,162.66666666666666,41.538674645390074,171C41.538674645390074,179.33333333333334,43.31172429078015,187.66666666666666,44.19824911347518,191.83333333333334L45.084773936170215,196" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead71"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g><g style="opacity: 1;" id="L-endpoint-node1" class="edgePath LS-endpoint LE-node1"><path style="fill:none" marker-end="url(#arrowhead72)" d="M54.446476063829785,196L55.33300088652482,191.83333333333334C56.21952570921985,187.66666666666666,57.992575354609926,179.33333333333334,57.992575354609926,171C57.992575354609926,162.66666666666666,56.21952570921985,154.33333333333334,55.333000886524815,150.16666666666666L54.446476063829785,146" class="path"></path><defs><marker orient="auto" markerHeight="6" markerWidth="8" markerUnits="strokeWidth" refY="5" refX="9" viewBox="0 0 10 10" id="arrowhead72"><path style="stroke-width: 1; stroke-dasharray: 1, 0;" class="arrowheadPath" d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs></g></g><g class="edgeLabels"><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-client' L-LE-node1" id="L-L-client-node1"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-client' L-LE-node2" id="L-L-client-node2"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-node1' L-LE-endpoint" id="L-L-node1-endpoint"></span></div></foreignObject></g></g><g style="opacity: 1;" transform="" class="edgeLabel"><g class="label" transform="translate(0,0)"><rect height="0" width="0" ry="0" rx="0"></rect><foreignObject height="0" width="0"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml"><span style="" class="edgeLabel L-LS-endpoint' L-LE-node1" id="L-L-endpoint-node1"></span></div></foreignObject></g></g></g><g class="nodes"><g style="opacity: 1;" transform="translate(109.59375,30)" id="flowchart-client-66" class="node plain"><rect class="label-container" height="44" width="61.015625" y="-22" x="-30.5078125" ry="5" rx="5"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-20.5078125,-12)"><foreignObject height="24" width="41.015625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">client</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(49.765625,124)" id="flowchart-node1-67" class="node k8s"><rect class="label-container" height="44" width="69.65625" y="-22" x="-34.828125" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-24.828125,-12)"><foreignObject height="24" width="49.65625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Node 1</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(169.421875,124)" id="flowchart-node2-69" class="node k8s"><rect class="label-container" height="44" width="69.65625" y="-22" x="-34.828125" ry="0" rx="0"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-24.828125,-12)"><foreignObject height="24" width="49.65625"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">Node 2</div></foreignObject></g></g></g><g style="opacity: 1;" transform="translate(49.765625,218)" id="flowchart-endpoint-71" class="node k8s"><rect class="label-container" height="44" width="83.53125" y="-22" x="-41.765625" ry="5" rx="5"></rect><g transform="translate(0,0)" class="label"><g transform="translate(-31.765625,-12)"><foreignObject height="24" width="63.53125"><div style="display: inline-block; white-space: nowrap;" xmlns="http://www.w3.org/1999/xhtml">endpoint</div></foreignObject></g></g></g></g></g></g></svg>
\ No newline at end of file
diff --git a/content/zh-cn/docs/reference/_index.md b/content/zh-cn/docs/reference/_index.md
new file mode 100644
index 0000000000..b4fe004ca6
--- /dev/null
+++ b/content/zh-cn/docs/reference/_index.md
@@ -0,0 +1,199 @@
+---
+title: 参考
+linkTitle: "参考"
+main_menu: true
+weight: 70
+content_type: concept
+no_list: true
+---
+
+<!--
+title: Reference
+approvers:
+- chenopis
+linkTitle: "Reference"
+main_menu: true
+weight: 70
+content_type: concept
+no_list: true
+-->
+
+<!-- overview -->
+
+<!--
+This section of the Kubernetes documentation contains references.
+-->
+这是 Kubernetes 文档的参考部分。
+
+<!-- body -->
+
+<!--
+## API Reference
+
+* [Glossary](/docs/reference/glossary/) -  a comprehensive, standardized list of Kubernetes terminology
+
+* [Kubernetes API Reference](/docs/reference/kubernetes-api/)
+* [One-page API Reference for Kubernetes {{< param "version" >}}](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)
+* [Using The Kubernetes API](/docs/reference/using-api/) - overview of the API for Kubernetes.
+* [API access control](/docs/reference/access-authn-authz/) - details on how Kubernetes controls API access
+* [Well-Known Labels, Annotations and Taints](/docs/reference/labels-annotations-taints/)
+-->
+## API 参考  {#api-reference}
+
+* [术语表](/zh-cn/docs/reference/glossary/) —— 一个全面的、标准化的 Kubernetes 术语表
+* [Kubernetes API 参考](/zh-cn/docs/reference/kubernetes-api/)
+* [Kubernetes API 单页参考 {{< param "version" >}}](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)。
+* [使用 Kubernetes API ](/zh-cn/docs/reference/using-api/) —— Kubernetes 的 API 概述
+* [API 的访问控制](/zh-cn/docs/reference/access-authn-authz/) —— 关于 Kubernetes 如何控制 API 访问的详细信息
+* [常见的标签、注解和污点](/zh-cn/docs/reference/labels-annotations-taints/)
+
+<!--
+## Officially supported client libraries
+
+To call the Kubernetes API from a programming language, you can use
+[client libraries](/docs/reference/using-api/client-libraries/). Officially supported
+client libraries:
+
+- [Kubernetes Go client library](https://github.com/kubernetes/client-go/)
+- [Kubernetes Python client library](https://github.com/kubernetes-client/python)
+- [Kubernetes Java client library](https://github.com/kubernetes-client/java)
+- [Kubernetes JavaScript client library](https://github.com/kubernetes-client/javascript)
+- [Kubernetes C# client library](https://github.com/kubernetes-client/csharp)
+- [Kubernetes Haskell client library](https://github.com/kubernetes-client/haskell)
+-->
+## 官方支持的客户端库   {#officially-supported-client-libraries}
+
+如果你需要通过编程语言调用 Kubernetes API，你可以使用[客户端库](/zh-cn/docs/reference/using-api/client-libraries/)。
+以下是官方支持的客户端库：
+
+- [Kubernetes Go 语言客户端库](https://github.com/kubernetes/client-go/)
+- [Kubernetes Python 语言客户端库](https://github.com/kubernetes-client/python)
+- [Kubernetes Java 语言客户端库](https://github.com/kubernetes-client/java)
+- [Kubernetes JavaScript 语言客户端库](https://github.com/kubernetes-client/javascript)
+- [Kubernetes C# 语言客户端库](https://github.com/kubernetes-client/csharp)
+- [Kubernetes Haskell 语言客户端库](https://github.com/kubernetes-client/haskell)
+
+<!--
+## CLI
+
+* [kubectl](/docs/reference/kubectl/) - Main CLI tool for running commands and managing Kubernetes clusters.
+    * [JSONPath](/docs/reference/kubectl/jsonpath/) - Syntax guide for using [JSONPath expressions](https://goessner.net/articles/JsonPath/) with kubectl.
+* [kubeadm](/docs/reference/setup-tools/kubeadm/) - CLI tool to easily provision a secure Kubernetes cluster.
+-->
+## CLI
+
+* [kubectl](/zh-cn/docs/reference/kubectl/) —— 主要的 CLI 工具，用于运行命令和管理 Kubernetes 集群。
+  * [JSONPath](/zh-cn/docs/reference/kubectl/jsonpath/) —— 通过 kubectl 使用
+    [JSONPath 表达式](https://goessner.net/articles/JsonPath/) 的语法指南。
+* [kubeadm](/zh-cn/docs/reference/setup-tools/kubeadm/) - 此 CLI 工具可轻松配置安全的 Kubernetes 集群。
+
+<!--
+## Components
+
+* [kubelet](/docs/reference/command-line-tools-reference/kubelet/) - The
+  primary agent that runs on each node. The kubelet takes a set of PodSpecs
+  and ensures that the described containers are running and healthy.
+* [kube-apiserver](/docs/reference/command-line-tools-reference/kube-apiserver/) -
+  REST API that validates and configures data for API objects such as  pods,
+  services, replication controllers.
+* [kube-controller-manager](/docs/reference/command-line-tools-reference/kube-controller-manager/) - Daemon that embeds the core control loops shipped with Kubernetes.
+* [kube-proxy](/docs/reference/command-line-tools-reference/kube-proxy/) - Can
+  do simple TCP/UDP stream forwarding or round-robin TCP/UDP forwarding across
+  a set of back-ends.
+* [kube-scheduler](/docs/reference/command-line-tools-reference/kube-scheduler/) - Scheduler that manages availability, performance, and capacity.
+  
+  * [Scheduler Policies](/docs/reference/scheduling/policies)
+  * [Scheduler Profiles](/docs/reference/scheduling/config#profiles)
+  * List of [ports and protocols](/docs/reference/ports-and-protocols/) that
+    should be open on control plane and worker nodes
+-->
+## 组件  {#components}
+
+* [kubelet](/zh-cn/docs/reference/command-line-tools-reference/kubelet/) ——
+  在每个节点上运行的主代理。kubelet 接收一组 PodSpec 并确保其所描述的容器健康地运行。
+* [kube-apiserver](/zh-cn/docs/reference/command-line-tools-reference/kube-apiserver/) ——
+  REST API，用于验证和配置 API 对象（如 Pod、服务或副本控制器等）的数据。
+* [kube-controller-manager](/zh-cn/docs/reference/command-line-tools-reference/kube-controller-manager/) ——
+  一个守护进程，其中包含 Kubernetes 所附带的核心控制回路。
+* [kube-proxy](/zh-cn/docs/reference/command-line-tools-reference/kube-proxy/) ——
+  可进行简单的 TCP/UDP 流转发或针对一组后端执行轮流 TCP/UDP 转发。
+* [kube-scheduler](/zh-cn/docs/reference/command-line-tools-reference/kube-scheduler/) ——
+  一个调度程序，用于管理可用性、性能和容量。
+  
+  * [调度策略](/zh-cn/docs/reference/scheduling/policies)
+  * [调度配置](/zh-cn/docs/reference/scheduling/config#profiles)
+  * 应该在控制平面和工作节点上打开的[端口和协议](/zh-cn/docs/reference/ports-and-protocols/)列表
+
+<!--
+## Config APIs
+
+This section hosts the documentation for "unpublished" APIs which are used to
+configure  kubernetes components or tools. Most of these APIs are not exposed
+by the API server in a RESTful way though they are essential for a user or an
+operator to use or manage a cluster.
+
+* [kube-apiserver configuration (v1alpha1)](/docs/reference/config-api/apiserver-config.v1alpha1/)
+* [kube-apiserver configuration (v1)](/docs/reference/config-api/apiserver-config.v1/)
+* [kube-apiserver encryption (v1)](/docs/reference/config-api/apiserver-encryption.v1/)
+* [kube-apiserver event rate limit (v1alpha1)](/docs/reference/config-api/apiserver-eventratelimit.v1alpha1/)
+* [kubelet configuration (v1alpha1)](/docs/reference/config-api/kubelet-config.v1alpha1/) and
+  [kubelet configuration (v1beta1)](/docs/reference/config-api/kubelet-config.v1beta1/)
+* [kubelet credential providers (v1alpha1)](/docs/reference/config-api/kubelet-credentialprovider.v1alpha1/)
+* [kubelet credential providers (v1beta1)](/docs/reference/config-api/kubelet-credentialprovider.v1beta1/)
+* [kube-scheduler configuration (v1beta2)](/docs/reference/config-api/kube-scheduler-config.v1beta2/) and
+  [kube-scheduler configuration (v1beta3)](/docs/reference/config-api/kube-scheduler-config.v1beta3/)
+* [kube-proxy configuration (v1alpha1)](/docs/reference/config-api/kube-proxy-config.v1alpha1/)
+* [`audit.k8s.io/v1` API](/docs/reference/config-api/apiserver-audit.v1/)
+* [Client authentication API (v1beta1)](/docs/reference/config-api/client-authentication.v1beta1/) and
+  [Client authentication API (v1)](/docs/reference/config-api/client-authentication.v1/)
+* [WebhookAdmission configuration (v1)](/docs/reference/config-api/apiserver-webhookadmission.v1/)
+* [ImagePolicy API (v1alpha1)](/docs/reference/config-api/imagepolicy.v1alpha1/)
+-->
+## 配置 API   {#config-apis}
+
+本节包含用于配置 kubernetes 组件或工具的 "未发布" API 的文档。
+尽管这些 API 对于用户或操作者使用或管理集群来说是必不可少的，
+它们大都没有以 RESTful 的方式在 API 服务器上公开。
+
+* [kube-apiserver 配置 (v1alpha1)](/zh-cn/docs/reference/config-api/apiserver-config.v1alpha1/)
+* [kube-apiserver 配置 (v1)](/zh-cn/docs/reference/config-api/apiserver-config.v1/)
+* [kube-apiserver 加密 (v1)](/zh-cn/docs/reference/config-api/apiserver-encryption.v1/)
+* [kube-apiserver 事件速率限制 (v1alpha1)](/zh-cn/docs/reference/config-api/apiserver-eventratelimit.v1alpha1/)
+* [kubelet 配置 (v1alpha1)](/zh-cn/docs/reference/config-api/kubelet-config.v1alpha1/) 和
+  [kubelet 配置 (v1beta1)](/zh-cn/docs/reference/config-api/kubelet-config.v1beta1/)
+* [kubelet 凭据驱动 (v1alpha1)](/zh-cn/docs/reference/config-api/kubelet-credentialprovider.v1alpha1/)
+* [kubelet 凭据驱动 (v1beta1)](/zh-cn/docs/reference/config-api/kubelet-credentialprovider.v1beta1/)
+* [kube-scheduler 配置 (v1beta2)](/zh-cn/docs/reference/config-api/kube-scheduler-config.v1beta2/) 和
+  [kube-scheduler 配置 (v1beta3)](/zh-cn/docs/reference/config-api/kube-scheduler-config.v1beta3/)
+* [kube-proxy 配置 (v1alpha1)](/zh-cn/docs/reference/config-api/kube-proxy-config.v1alpha1/)
+* [`audit.k8s.io/v1` API](/zh-cn/docs/reference/config-api/apiserver-audit.v1/)
+* [客户端身份认证 API (v1beta1)](/zh-cn/docs/reference/config-api/client-authentication.v1beta1/) 和
+  [客户端身份认证 API (v1)](/zh-cn/docs/reference/config-api/client-authentication.v1/)
+* [WebhookAdmission 配置 (v1)](/zh-cn/docs/reference/config-api/apiserver-webhookadmission.v1/)
+* [ImagePolicy API (v1alpha1)](/zh-cn/docs/reference/config-api/imagepolicy.v1alpha1/)
+
+<!--
+## Config API for kubeadm
+
+* [v1beta2](/docs/reference/config-api/kubeadm-config.v1beta2/)
+* [v1beta3](/docs/reference/config-api/kubeadm-config.v1beta3/)
+-->
+## kubeadm 的配置 API   {#config-api-for-kubeadm}
+
+* [v1beta2](/zh-cn/docs/reference/config-api/kubeadm-config.v1beta2/)
+* [v1beta3](/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3/)
+
+<!--
+## Design Docs
+
+An archive of the design docs for Kubernetes functionality. Good starting points are
+[Kubernetes Architecture](https://git.k8s.io/design-proposals-archive/architecture/architecture.md) and
+[Kubernetes Design Overview](https://git.k8s.io/design-proposals-archive).
+-->
+## 设计文档   {#design-docs}
+
+Kubernetes 功能的设计文档归档，不妨考虑从
+[Kubernetes 架构](https://git.k8s.io/design-proposals-archive/architecture/architecture.md) 和
+[Kubernetes 设计概述](https://git.k8s.io/design-proposals-archive)
+开始阅读。
+
diff --git a/content/zh-cn/docs/reference/access-authn-authz/_index.md b/content/zh-cn/docs/reference/access-authn-authz/_index.md
new file mode 100644
index 0000000000..4a47d52636
--- /dev/null
+++ b/content/zh-cn/docs/reference/access-authn-authz/_index.md
@@ -0,0 +1,60 @@
+---
+title: API 访问控制
+weight: 15
+no_list: true
+---
+
+<!--
+title: API Access Control
+weight: 15
+no_list: true
+-->
+
+<!--
+For an introduction to how Kubernetes implements and controls API access,
+read [Controlling Access to the Kubernetes API](/docs/concepts/security/controlling-access/).
+
+Reference documentation:
+-->
+关于 Kubernetes 如何实现和控制 API 访问的介绍性材料，
+可阅读[控制 Kubernetes API 的访问](/zh-cn/docs/concepts/security/controlling-access/)。
+
+参考文档：
+
+<!--
+- [Authenticating](/docs/reference/access-authn-authz/authentication/)
+   - [Authenticating with Bootstrap Tokens](/docs/reference/access-authn-authz/bootstrap-tokens/)
+- [Admission Controllers](/docs/reference/access-authn-authz/admission-controllers/)
+   - [Dynamic Admission Control](/docs/reference/access-authn-authz/extensible-admission-controllers/)
+- [Authorization](/docs/reference/access-authn-authz/authorization/)
+   - [Role Based Access Control](/docs/reference/access-authn-authz/rbac/)
+   - [Attribute Based Access Control](/docs/reference/access-authn-authz/abac/)
+   - [Node Authorization](/docs/reference/access-authn-authz/node/)
+   - [Webhook Authorization](/docs/reference/access-authn-authz/webhook/)
+- [Certificate Signing Requests](/docs/reference/access-authn-authz/certificate-signing-requests/)
+   - including [CSR approval](/docs/reference/access-authn-authz/certificate-signing-requests/#approval-rejection)
+     and [certificate signing](/docs/reference/access-authn-authz/certificate-signing-requests/#signing)
+- Service accounts
+  - [Developer guide](/docs/tasks/configure-pod-container/configure-service-account/)
+  - [Administration](/docs/reference/access-authn-authz/service-accounts-admin/)
+- [Kubelet Authentication & Authorization](/docs/reference/access-authn-authz/kubelet-authn-authz/)
+  - including kubelet [TLS bootstrapping](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/)
+-->
+- [身份认证](/zh-cn/docs/reference/access-authn-authz/authentication/)
+   - [使用启动引导令牌来执行身份认证](/zh-cn/docs/reference/access-authn-authz/bootstrap-tokens/)
+- [准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/)
+   - [动态准入控制](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/)
+- [鉴权与授权](/zh-cn/docs/reference/access-authn-authz/authorization/)
+   - [基于角色的访问控制](/zh-cn/docs/reference/access-authn-authz/rbac/)
+   - [基于属性的访问控制](/zh-cn/docs/reference/access-authn-authz/abac/)
+   - [节点鉴权](/zh-cn/docs/reference/access-authn-authz/node/)
+   - [Webhook 鉴权](/zh-cn/docs/reference/access-authn-authz/webhook/)
+- [证书签名请求](/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests/)
+   - 包含 [CSR 的批复](/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests/#approval-rejection)
+     和[证书签名](/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests/#signing)
+- 服务账号
+  - [开发者指南](/zh-cn/docs/tasks/configure-pod-container/configure-service-account/)
+  - [管理文档](/zh-cn/docs/reference/access-authn-authz/service-accounts-admin/)
+- [Kubelet 认证和鉴权](/zh-cn/docs/reference/access-authn-authz/kubelet-authn-authz/)
+  - 包括 kubelet [TLS 启动引导](/zh-cn/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/)
+
diff --git a/content/zh/docs/reference/access-authn-authz/abac.md b/content/zh-cn/docs/reference/access-authn-authz/abac.md
similarity index 87%
rename from content/zh/docs/reference/access-authn-authz/abac.md
rename to content/zh-cn/docs/reference/access-authn-authz/abac.md
index 789e1cd3db..7fec8e45e5 100644
--- a/content/zh/docs/reference/access-authn-authz/abac.md
+++ b/content/zh-cn/docs/reference/access-authn-authz/abac.md
@@ -1,15 +1,9 @@
 ---
-approvers:
-- erictune
-- lavalamp
-- deads2k
-- liggitt
 title: 使用 ABAC 鉴权
 content_type: concept
+weight: 80
 ---
-
 <!--
----
 reviewers:
 - erictune
 - lavalamp
@@ -18,7 +12,6 @@ reviewers:
 title: Using ABAC Authorization
 content_type: concept
 weight: 80
----
 -->
 
 <!-- overview -->
@@ -26,7 +19,8 @@ weight: 80
 <!--
 Attribute-based access control (ABAC) defines an access control paradigm whereby access rights are granted to users through the use of policies which combine attributes together.
 -->
-基于属性的访问控制（Attribute-based access control - ABAC）定义了访问控制范例，其中通过使用将属性组合在一起的策略来向用户授予访问权限。
+基于属性的访问控制（Attribute-based access control - ABAC）定义了访问控制范例，
+其中通过使用将属性组合在一起的策略来向用户授予访问权限。
 
 
 
@@ -38,7 +32,7 @@ Attribute-based access control (ABAC) defines an access control paradigm whereby
 To enable `ABAC` mode, specify `--authorization-policy-file=SOME_FILENAME` and `--authorization-mode=ABAC` on startup.
 
 The file format is [one JSON object per line](http://jsonlines.org/).  There
-should be no enclosing list or map, just one map per line.
+should be no enclosing list or map, only one map per line.
 
 Each line is a "policy object", where each such object is a map with the following
 properties:
@@ -52,13 +46,13 @@ properties:
       - `group`, type string; if you specify `group`, it must match one of the groups of the authenticated user. `system:authenticated` matches all authenticated requests. `system:unauthenticated` matches all unauthenticated requests.
     - Resource-matching properties:
       - `apiGroup`, type string; an API group.
-        - Ex: `extensions`
+        - Ex: `apps`, `networking.k8s.io`
         - Wildcard: `*` matches all API groups.
       - `namespace`, type string; a namespace.
         - Ex: `kube-system`
         - Wildcard: `*` matches all resource requests.
       - `resource`, type string; a resource type
-        - Ex: `pods`
+        - Ex: `pods`, `deployments`
         - Wildcard: `*` matches all resource requests.
     - Non-resource-matching properties:
       - `nonResourcePath`, type string; non-resource request paths.
@@ -68,35 +62,35 @@ properties:
           - `/foo/*` matches all subpaths of `/foo/`.
     - `readonly`, type boolean, when true, means that the Resource-matching policy only applies to get, list, and watch operations, Non-resource-matching policy only applies to get operation.
 -->
-
-## 策略文件格式
+## 策略文件格式   {#policy-file-format}
 
 基于 `ABAC` 模式，可以这样指定策略文件 `--authorization-policy-file=SOME_FILENAME`。
 
-此文件格式是 [JSON Lines](https://jsonlines.org/)，不应存在封闭的列表或映射，每行一个映射。
+此文件格式是 [JSON Lines](https://jsonlines.org/)，不应存在外层的列表或映射，每行应只有一个映射。
 
 每一行都是一个策略对象，策略对象是具有以下属性的映射：
 
   - 版本控制属性：
-    - `apiVersion`，字符串类型：有效值为`abac.authorization.kubernetes.io/v1beta1`，允许对策略格式进行版本控制和转换。
+    - `apiVersion`，字符串类型：有效值为 `abac.authorization.kubernetes.io/v1beta1`，允许对策略格式进行版本控制和转换。
     - `kind`，字符串类型：有效值为 `Policy`，允许对策略格式进行版本控制和转换。
   - `spec` 配置为具有以下映射的属性：
     - 主体匹配属性：
       - `user`，字符串类型；来自 `--token-auth-file` 的用户字符串，如果你指定 `user`，它必须与验证用户的用户名匹配。
-      - `group`，字符串类型；如果指定 `group`，它必须与经过身份验证的用户的一个组匹配，`system:authenticated`匹配所有经过身份验证的请求。`system:unauthenticated`匹配所有未经过身份验证的请求。
+      - `group`，字符串类型；如果指定 `group`，它必须与经过身份验证的用户的一个组匹配，`system:authenticated` 匹配所有经过身份验证的请求。
+        `system:unauthenticated` 匹配所有未经过身份验证的请求。
   - 资源匹配属性：
     - `apiGroup`，字符串类型；一个 API 组。
-      - 例： `extensions`
+      - 例如：`apps`，`networking.k8s.io`
       - 通配符：`*`匹配所有 API 组。
     - `namespace`，字符串类型；一个命名空间。
       - 例如：`kube-system`
       - 通配符：`*`匹配所有资源请求。
     - `resource`，字符串类型；资源类型。
-      - 例：`pods`
+      - 例如：`pods`，`deployments`
       - 通配符：`*`匹配所有资源请求。
   - 非资源匹配属性：
     - `nonResourcePath`，字符串类型；非资源请求路径。
-      - 例如：`/version`或 `/apis`
+      - 例如：`/version` 或 `/apis`
       - 通配符：
         - `*` 匹配所有非资源请求。
         - `/foo/*` 匹配 `/foo/` 的所有子路径。
@@ -142,7 +136,7 @@ To permit a user to do anything, write a policy with the apiGroup, namespace,
 resource, and nonResourcePath properties set to `"*"`.
 -->
 
-## 鉴权算法
+## 鉴权算法   {#authorization-algorithm}
 
 请求具有与策略对象的属性对应的属性。
 
@@ -154,10 +148,7 @@ resource, and nonResourcePath properties set to `"*"`.
 
 要允许任何经过身份验证的用户执行某些操作，请将策略组属性设置为 `"system:authenticated"`。
 
-要允许任何未经身份验证的用户执行某些操作，请将策略组属性设置为 `"system:authentication"`。
-
-要允许用户执行任何操作，请使用 apiGroup，命名空间，
-资源和 nonResourcePath 属性设置为 `"*"` 的策略。
+要允许任何未经身份验证的用户执行某些操作，请将策略组属性设置为 `"system:unauthenticated"`。
 
 要允许用户执行任何操作，请使用设置为 `"*"` 的 apiGroup，namespace，resource 和 nonResourcePath 属性编写策略。
 
@@ -181,17 +172,18 @@ up the verbosity:
     kubectl --v=8 version
 -->
 
-## Kubectl
+## kubectl
 
-Kubectl 使用 api-server 的 `/api` 和 `/apis` 端点来发现服务资源类型，并使用位于 `/openapi/v2` 的模式信息来验证通过创建/更新操作发送到 API 的对象。
+kubectl 使用 api-server 的 `/api` 和 `/apis` 端点来发现服务资源类型，
+并使用位于 `/openapi/v2` 的模式信息来验证通过创建/更新操作发送到 API 的对象。
 
 当使用 ABAC 鉴权时，这些特殊资源必须显式地通过策略中的 `nonResourcePath` 属性暴露出来（参见下面的 [示例](#examples)）：
 
-* `/api`，`/api/*`，`/apis`和 `/apis/*` 用于 API 版本协商。
+* `/api`，`/api/*`，`/apis` 和 `/apis/*` 用于 API 版本协商。
 * `/version` 通过 `kubectl version` 检索服务器版本。
 * `/swaggerapi/*` 用于创建 / 更新操作。
 
-要检查涉及到特定 kubectl 操作的 HTTP 调用，您可以调整详细程度：
+要检查涉及到特定 kubectl 操作的 HTTP 调用，你可以调整详细程度：
     kubectl --v=8 version
 
 <!--
@@ -213,7 +205,6 @@ Kubectl 使用 api-server 的 `/api` 和 `/apis` 端点来发现服务资源类
     {"apiVersion": "abac.authorization.kubernetes.io/v1beta1", "kind": "Policy", "spec": {"user": "kubelet", "namespace": "*", "resource": "events"}}
     ```
  -->
-
 ## 例子 {#examples}
 
 1. Alice 可以对所有资源做任何事情：
@@ -221,12 +212,12 @@ Kubectl 使用 api-server 的 `/api` 和 `/apis` 端点来发现服务资源类
     ```json
     {"apiVersion": "abac.authorization.kubernetes.io/v1beta1", "kind": "Policy", "spec": {"user": "alice", "namespace": "*", "resource": "*", "apiGroup": "*"}}
     ```
-2. Kubelet 可以读取任何 pod：
+2. kubelet 可以读取任何 pod：
 
     ```json
     {"apiVersion": "abac.authorization.kubernetes.io/v1beta1", "kind": "Policy", "spec": {"user": "kubelet", "namespace": "*", "resource": "pods", "readonly": true}}
     ```
-3. Kubelet 可以读写事件：
+3. kubelet 可以读写事件：
 
     ```json
     {"apiVersion": "abac.authorization.kubernetes.io/v1beta1", "kind": "Policy", "spec": {"user": "kubelet", "namespace": "*", "resource": "events"}}
@@ -245,8 +236,8 @@ Kubectl 使用 api-server 的 `/api` 和 `/apis` 端点来发现服务资源类
     {"apiVersion": "abac.authorization.kubernetes.io/v1beta1", "kind": "Policy", "spec": {"group": "system:unauthenticated", "readonly": true, "nonResourcePath": "*"}}
     ```
 -->
-
 4. Bob 可以在命名空间 `projectCaribou` 中读取 pod：
+
     ```json
     {"apiVersion": "abac.authorization.kubernetes.io/v1beta1", "kind": "Policy", "spec": {"user": "bob", "namespace": "projectCaribou", "resource": "pods", "readonly": true}}
     ```
@@ -258,7 +249,7 @@ Kubectl 使用 api-server 的 `/api` 和 `/apis` 端点来发现服务资源类
     ```
 
 <!--
-[Complete file example](http://releases.k8s.io/{{< param "githubbranch" >}}/pkg/auth/authorizer/abac/example_policy_file.jsonl)
+[Complete file example](http://releases.k8s.io/{{< param "fullversion" >}}/pkg/auth/authorizer/abac/example_policy_file.jsonl)
 
 ## A quick note on service accounts
 
@@ -269,10 +260,9 @@ system:serviceaccount:<namespace>:<serviceaccountname>
 ```
 
 -->
+[完整文件示例](https://releases.k8s.io/{{< param "fullversion" >}}/pkg/auth/authorizer/abac/example_policy_file.jsonl)
 
-[完整文件示例](https://releases.k8s.io/{{< param "githubbranch" >}}/pkg/auth/authorizer/abac/example_policy_file.jsonl)
-
-## 服务帐户的快速说明
+## 服务帐户的快速说明   {#a-quick-note-on-service-accounts}
 
 服务帐户自动生成用户。用户名是根据命名约定生成的：
 
diff --git a/content/zh/docs/reference/access-authn-authz/admission-controllers.md b/content/zh-cn/docs/reference/access-authn-authz/admission-controllers.md
similarity index 55%
rename from content/zh/docs/reference/access-authn-authz/admission-controllers.md
rename to content/zh-cn/docs/reference/access-authn-authz/admission-controllers.md
index d7d612af16..5380576973 100644
--- a/content/zh/docs/reference/access-authn-authz/admission-controllers.md
+++ b/content/zh-cn/docs/reference/access-authn-authz/admission-controllers.md
@@ -21,14 +21,14 @@ weight: 30
 <!--
 This page provides an overview of Admission Controllers.
 -->
-此页面概述了准入控制器。
+此页面提供准入控制器（Admission Controllers）的概述。
 
 <!-- body -->
 
 <!--
 ## What are they?
 -->
-## 什么是准入控制插件？
+## 什么是准入控制插件？  {#what-are-they}
 
 <!--
 An admission controller is a piece of code that intercepts requests to the
@@ -38,20 +38,22 @@ is authenticated and authorized.  The controllers consist of the
 `kube-apiserver` binary, and may only be configured by the cluster
 administrator. In that list, there are two special controllers:
 MutatingAdmissionWebhook and ValidatingAdmissionWebhook.  These execute the
-mutating and validating (respectively) [admission control
-webhooks](/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks)
+mutating and validating (respectively)
+[admission control webhooks](/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks)
 which are configured in the API.
 -->
 准入控制器是一段代码，它会在请求通过认证和授权之后、对象被持久化之前拦截到达 API
 服务器的请求。控制器由下面的[列表](#what-does-each-admission-controller-do)组成，
-并编译进 `kube-apiserver` 二进制文件，并且只能由集群管理员配置。
+并编译进 `kube-apiserver` 可执行文件，并且只能由集群管理员配置。
 在该列表中，有两个特殊的控制器：MutatingAdmissionWebhook 和 ValidatingAdmissionWebhook。
 它们根据 API 中的配置，分别执行变更和验证
-[准入控制 webhook](/zh/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks)。
+[准入控制 webhook](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks)。
 
 <!--
 Admission controllers may be "validating", "mutating", or both. Mutating
-controllers may modify the objects they admit; validating controllers may not.
+controllers may modify related objects to the requests they admit; validating controllers may not.
+
+Admission controllers limit requests to create, delete, modify objects or connect to proxy. They do not limit requests to read objects.
 
 The admission control process proceeds in two phases. In the first phase,
 mutating admission controllers are run. In the second phase, validating
@@ -62,12 +64,14 @@ If any of the controllers in either phase reject the request, the entire
 request is rejected immediately and an error is returned to the end-user.
 -->
 准入控制器可以执行 “验证（Validating）” 和/或 “变更（Mutating）” 操作。
-变更（mutating）控制器可以修改被其接受的对象；验证（validating）控制器则不行。
+变更（mutating）控制器可以根据被其接受的请求更改相关对象；验证（validating）控制器则不行。
+
+准入控制器限制创建、删除、修改对象或连接到代理的请求，不限制读取对象的请求。
 
 准入控制过程分为两个阶段。第一阶段，运行变更准入控制器。第二阶段，运行验证准入控制器。
 再次提醒，某些控制器既是变更准入控制器又是验证准入控制器。
 
-如果任何一个阶段的任何控制器拒绝了该请求，则整个请求将立即被拒绝，并向终端用户返回一个错误。
+如果两个阶段之一的任何一个控制器拒绝了某请求，则整个请求将立即被拒绝，并向最终用户返回错误。
 
 <!--
 Finally, in addition to sometimes mutating the object in question, admission
@@ -78,39 +82,37 @@ corresponding reclamation or reconciliation process, as a given admission
 controller does not know for sure that a given request will pass all of the
 other admission controllers.
 -->
-最后，除了对对象进行变更外，准入控制器还可以有其它作用：将相关资源作为请求处理的一部分进行变更。
-增加使用配额就是一个典型的示例，说明了这样做的必要性。
+最后，除了对对象进行变更外，准入控制器还可能有其它副作用：将相关资源作为请求处理的一部分进行变更。
+增加配额用量就是一个典型的示例，说明了这样做的必要性。
 此类用法都需要相应的回收或回调过程，因为任一准入控制器都无法确定某个请求能否通过所有其它准入控制器。
 
 <!--
 ## Why do I need them?
--->
-## 为什么需要准入控制器？
 
-<!--
 Many advanced features in Kubernetes require an admission controller to be enabled in order
 to properly support the feature.  As a result, a Kubernetes API server that is not properly
 configured with the right set of admission controllers is an incomplete server and will not
 support all the features you expect.
 -->
+## 为什么需要准入控制器？    {#why-do-i-need-them}
+
 Kubernetes 的许多高级功能都要求启用一个准入控制器，以便正确地支持该特性。
-因此，没有正确配置准入控制器的 Kubernetes API 服务器是不完整的，它无法支持你期望的所有特性。
+因此，没有正确配置准入控制器的 Kubernetes API 服务器是不完整的，它无法支持你所期望的所有特性。
 
 <!--
 ## How do I turn on an admission controller?
--->
 
-## 如何启用一个准入控制器？
 
-<!--
 The Kubernetes API server flag `enable-admission-plugins` takes a comma-delimited list of admission control plugins to invoke prior to modifying objects in the cluster.
 For example, the following command line enables the `NamespaceLifecycle` and the `LimitRanger`
 admission control plugins:
 -->
-Kubernetes API 服务器的 `enable-admission-plugins` 标志接受一个用于在集群修改对象之前
-调用的（以逗号分隔的）准入控制插件顺序列表。
+## 如何启用一个准入控制器？  {#how-do-i-turn-on-an-admission-controller}
 
-例如，下面的命令就启用了 `NamespaceLifecycle` 和 `LimitRanger` 准入控制插件：
+Kubernetes API 服务器的 `enable-admission-plugins` 标志接受一个（以逗号分隔的）准入控制插件列表，
+这些插件会在集群修改对象之前被调用。
+
+例如，下面的命令启用 `NamespaceLifecycle` 和 `LimitRanger` 准入控制插件：
 
 ```shell
 kube-apiserver --enable-admission-plugins=NamespaceLifecycle,LimitRanger ...
@@ -124,7 +126,7 @@ have to modify the systemd unit file if the API server is deployed as a systemd
 service, you may modify the manifest file for the API server if Kubernetes is deployed
 in a self-hosted way.
 -->
-根据你 Kubernetes 集群的部署方式以及 API 服务器的启动方式的不同，你可能需要以不同的方式应用设置。
+根据你 Kubernetes 集群的部署方式以及 API 服务器的启动方式，你可能需要以不同的方式应用设置。
 例如，如果将 API 服务器部署为 systemd 服务，你可能需要修改 systemd 单元文件；
 如果以自托管方式部署 Kubernetes，你可能需要修改 API 服务器的清单文件。
 {{< /note >}}
@@ -134,7 +136,7 @@ in a self-hosted way.
 
 The Kubernetes API server flag `disable-admission-plugins` takes a comma-delimited list of admission control plugins to be disabled, even if they are in the list of plugins enabled by default.
 -->
-## 怎么关闭准入控制器？
+## 怎么关闭准入控制器？   {#how-do-i-turn-off-an-admission-controller}
 
 Kubernetes API 服务器的 `disable-admission-plugins` 标志，会将传入的（以逗号分隔的）
 准入控制插件列表禁用，即使是默认启用的插件也会被禁用。
@@ -148,9 +150,9 @@ kube-apiserver --disable-admission-plugins=PodNodeSelector,AlwaysDeny ...
 
 To see which admission plugins are enabled:
 -->
-## 哪些插件是默认启用的？
+## 哪些插件是默认启用的？  {#which-plugins-are-enabled-by-default}
 
-下面的命令可以查看哪些插件是默认启用的：
+要查看哪些插件是被启用的：
 
 ```shell
 kube-apiserver -h | grep enable-admission-plugins
@@ -159,27 +161,25 @@ kube-apiserver -h | grep enable-admission-plugins
 <!--
 In the current version, the default ones are:
 -->
+在目前版本中，默认启用的插件有：
 
-在目前版本中，它们是：
-
-```shell
-CertificateApproval, CertificateSigning, CertificateSubjectRestriction, DefaultIngressClass, DefaultStorageClass, DefaultTolerationSeconds, LimitRanger, MutatingAdmissionWebhook, NamespaceLifecycle, PersistentVolumeClaimResize, Priority, ResourceQuota, RuntimeClass, ServiceAccount, StorageObjectInUseProtection, TaintNodesByCondition, ValidatingAdmissionWebhook
+```
+CertificateApproval, CertificateSigning, CertificateSubjectRestriction, DefaultIngressClass, DefaultStorageClass, DefaultTolerationSeconds, LimitRanger, MutatingAdmissionWebhook, NamespaceLifecycle, PersistentVolumeClaimResize, PodSecurity, Priority, ResourceQuota, RuntimeClass, ServiceAccount, StorageObjectInUseProtection, TaintNodesByCondition, ValidatingAdmissionWebhook
 ```
 
 <!--
 ## What does each admission controller do?
-
-### AlwaysAdmit {#alwaysadmit} {{< feature-state for_k8s_version="v1.13" state="deprecated" >}}
-
-This admission controller allows all pods into the cluster. It is deprecated because its behavior is the same as if there were no admission controller at all.
 -->
-## 每个准入控制器的作用是什么？
+## 每个准入控制器的作用是什么？  {#what-does-each-admission-controller-do}
 
-### AlwaysAdmit {#alwaysadmit} 
+### AlwaysAdmit {#alwaysadmit}
 
 {{< feature-state for_k8s_version="v1.13" state="deprecated" >}}
 
-该准入控制器会允许所有的 pod 接入集群。已废弃，因为它的行为根本就和没有准入控制器一样。
+<!--
+This admission controller allows all pods into the cluster. It is deprecated because its behavior is the same as if there were no admission controller at all.
+-->
+该准入控制器允许所有的 Pod 进入集群。此插件已被弃用，因其行为与没有准入控制器一样。
 
 ### AlwaysDeny {#alwaysdeny}
 
@@ -188,7 +188,7 @@ This admission controller allows all pods into the cluster. It is deprecated bec
 <!--
 Rejects all requests. AlwaysDeny is DEPRECATED as it has no real meaning.
 -->
-拒绝所有的请求。由于它没有实际意义，已废弃。
+拒绝所有的请求。由于它没有实际意义，已被弃用。
 
 ### AlwaysPullImages {#alwayspullimages}
 
@@ -201,58 +201,58 @@ scheduled onto the right node), without any authorization check against the imag
 is enabled, images are always pulled prior to starting containers, which means valid credentials are
 required.
 -->
-该准入控制器会修改每一个新创建的 Pod 的镜像拉取策略为 Always 。
+该准入控制器会修改每个新创建的 Pod，将其镜像拉取策略设置为 Always。
 这在多租户集群中是有用的，这样用户就可以放心，他们的私有镜像只能被那些有凭证的人使用。
-如果没有这个准入控制器，一旦镜像被拉取到节点上，任何用户的 Pod 都可以通过已了解到的镜像
-的名称（假设 Pod 被调度到正确的节点上）来使用它，而不需要对镜像进行任何授权检查。
-当启用这个准入控制器时，总是在启动容器之前拉取镜像，这意味着需要有效的凭证。
+如果没有这个准入控制器，一旦镜像被拉取到节点上，任何用户的 Pod 都可以通过已了解到的镜像的名称
+（假设 Pod 被调度到正确的节点上）来使用它，而不需要对镜像进行任何鉴权检查。
+启用这个准入控制器之后，启动容器之前必须拉取镜像，这意味着需要有效的凭证。
 
-### CertificateApproval
+### CertificateApproval {#certificateapproval}
 
 <!--
-This admission controller observes requests to 'approve' CertificateSigningRequest resources
-and performs additional authorization checks to ensure the approving user has permission 
-to approve certificate requests with the spec.signerName requested on the CertificateSigningRequest resource.
+This admission controller observes requests to 'approve' CertificateSigningRequest resources and performs additional
+authorization checks to ensure the approving user has permission to `approve` certificate requests with the
+`spec.signerName` requested on the CertificateSigningRequest resource.
 -->
-
-此准入控制器获取“审批” CertificateSigningRequest 资源的请求并执行额外的授权检查，
-以确保审批请求的用户有权限审批 `spec.signerName` 请求 CertificateSigningRequest 资源的证书请求。
+此准入控制器获取“审批” CertificateSigningRequest 资源的请求并执行额外的鉴权检查，
+以确保针对设置了 `spec.signerName` 的 CertificateSigningRequest 资源而言，
+审批请求的用户有权限对证书请求执行 `approve` 操作。
 
 <!--
-See Certificate Signing Requests for more information on the permissions required 
-to perform different actions on CertificateSigningRequest resources.
+See [Certificate Signing Requests](/docs/reference/access-authn-authz/certificate-signing-requests/) for more
+information on the permissions required to perform different actions on CertificateSigningRequest resources.
 -->
+有关对 CertificateSigningRequest 资源执行不同操作所需权限的详细信息，
+请参阅[证书签名请求](/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests/)。
 
-有关对证书签名请求资源执行不同操作所需权限的详细信息，
-请参阅[证书签名请求](/zh/docs/reference/access-authn-authz/certificate-signing-requests/)
-
-### CertificateSigning
+### CertificateSigning  {#certificatesigning}
 
 <!--
-This admission controller observes updates to the status.certificate field of CertificateSigningRequest resources 
-and performs an additional authorization checks to ensure the signing user has permission 
-to sign certificate requests with the spec.signerName requested on the CertificateSigningRequest resource.
+This admission controller observes updates to the `status.certificate` field of CertificateSigningRequest resources
+and performs an additional authorization checks to ensure the signing user has permission to `sign` certificate
+requests with the `spec.signerName` requested on the CertificateSigningRequest resource.
 -->
-此准入控制器获取 CertificateSigningRequest 资源的 `status.certificate` 字段更新请求并执行额外的授权检查，
-以确保签发证书的用户有权限为 `spec.signerName` 请求 CertificateSigningRequest 资源的证书请求`签发`证书。
+此准入控制器监视对 CertificateSigningRequest 资源的 `status.certificate` 字段的更新请求，
+并执行额外的鉴权检查，以确保针对设置了 `spec.signerName` 的 CertificateSigningRequest 资源而言，
+签发证书的用户有权限对证书请求执行 `sign` 操作。
 
 <!--
-See Certificate Signing Requests for more information on the permissions required 
-to perform different actions on CertificateSigningRequest resources.
+See [Certificate Signing Requests](/docs/reference/access-authn-authz/certificate-signing-requests/) for more
+information on the permissions required to perform different actions on CertificateSigningRequest resources.
 -->
-有关对证书签名请求资源执行不同操作所需权限的详细信息，
-请参阅[证书签名请求](/zh/docs/reference/access-authn-authz/certificate-signing-requests/)
+有关对 CertificateSigningRequest 资源执行不同操作所需权限的详细信息，
+请参阅[证书签名请求](/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests/)。
 
-### CertificateSubjectRestrictions 
+### CertificateSubjectRestriction {#certificatesubjectrestriction}
 
 <!--
-This admission controller observes creation of CertificateSigningRequest resources 
-that have a spec.signerName of kubernetes.io/kube-apiserver-client. It rejects any request 
-that specifies a 'group' (or 'organization attribute') of system:masters.
+This admission controller observes creation of CertificateSigningRequest resources that have a `spec.signerName`
+of `kubernetes.io/kube-apiserver-client`. It rejects any request that specifies a 'group' (or 'organization attribute')
+of `system:masters`.
 -->
-此准入控制器获取具有 `kubernetes.io/kube-apiserver-client` 的 `spec.signerName` 的
-CertificateSigningRequest 资源创建请求，
-它拒绝任何包含了 `system:masters` 一个“组”（或者“组织”）的请求。
+此准入控制器监视 `spec.signerName` 被设置为 `kubernetes.io/kube-apiserver-client` 的
+CertificateSigningRequest 资源创建请求，并拒绝所有将 “group”（或 “organization attribute”）
+设置为 `system:masters` 的请求。
 
 ### DefaultIngressClass {#defaultingressclass}
 
@@ -262,8 +262,8 @@ ingress class and automatically adds a default ingress class to them.  This way,
 request any special ingress class do not need to care about them at all and they will get the
 default one.
 -->
-该准入控制器监测没有请求任何特定 Ingress 类的 `Ingress` 对象的创建，并自动向其添加默认 Ingress 类。
-这样，没有任何特殊 Ingress 类需求的用户根本不需要关心它们，它们将获得默认 Ingress 类。
+该准入控制器监测没有请求任何特定 Ingress 类的 `Ingress` 对象创建请求，并自动向其添加默认 Ingress 类。
+这样，没有任何特殊 Ingress 类需求的用户根本不需要关心它们，他们将被设置为默认 Ingress 类。
 
 <!--
 This admission controller does not do anything when no default ingress class is configured. When more than one ingress
@@ -272,18 +272,18 @@ must revisit their `IngressClass` objects and mark only one as default (with the
 "ingressclass.kubernetes.io/is-default-class").  This admission controller ignores any `Ingress`
 updates; it acts only on creation.
 -->
-当未配置默认 Ingress 类时，此准入控制器不执行任何操作。如果将多个 Ingress 类标记为默认 Ingress 类，
-它将拒绝任何创建 `Ingress` 的操作，并显示错误。
-要修复此错误，管理员必须重新检查其 `IngressClass` 对象，并仅将其中一个标记为默认（通过注解
-"ingressclass.kubernetes.io/is-default-class"）。
-此准入控制器会忽略所有 `Ingress` 更新操作，仅响应创建操作。
+当未配置默认 Ingress 类时，此准入控制器不执行任何操作。如果有多个 Ingress 类被标记为默认 Ingress 类，
+此控制器将拒绝所有创建 `Ingress` 的操作，并返回错误信息。
+要修复此错误，管理员必须重新检查其 `IngressClass` 对象，并仅将其中一个标记为默认
+（通过注解 "ingressclass.kubernetes.io/is-default-class"）。
+此准入控制器会忽略所有 `Ingress` 更新操作，仅处理创建操作。
 
 <!--
 See the [ingress](/docs/concepts/services-networking/ingress/) documentation for more about ingress
 classes and how to mark one as default.
 -->
 关于 Ingress 类以及如何将 Ingress 类标记为默认的更多信息，请参见
-[ingress](/zh/docs/concepts/services-networking/ingress/)。
+[Ingress](/zh-cn/docs/concepts/services-networking/ingress/) 页面。
 
 ### DefaultStorageClass {#defaultstorageclass}
 
@@ -293,9 +293,9 @@ and automatically adds a default storage class to them.
 This way, users that do not request any special storage class do not need to care about them at all and they
 will get the default one.
 -->
-该准入控制器监测没有请求任何特定存储类的 `PersistentVolumeClaim` 对象的创建，
+此准入控制器监测没有请求任何特定存储类的 `PersistentVolumeClaim` 对象的创建请求，
 并自动向其添加默认存储类。
-这样，没有任何特殊存储类需求的用户根本不需要关心它们，它们将获得默认存储类。
+这样，没有任何特殊存储类需求的用户根本不需要关心它们，它们将被设置为使用默认存储类。
 
 <!--
 This admission controller does not do anything when no default storage class is configured. When more than one storage
@@ -304,33 +304,33 @@ must revisit their `StorageClass` objects and mark only one as default.
 This admission controller ignores any `PersistentVolumeClaim` updates; it acts only on creation.
 -->
 当未配置默认存储类时，此准入控制器不执行任何操作。如果将多个存储类标记为默认存储类，
-它将拒绝任何创建 `PersistentVolumeClaim` 的操作，并显示错误。
-要修复此错误，管理员必须重新访问其 `StorageClass` 对象，并仅将其中一个标记为默认。
-此准入控制器会忽略所有 `PersistentVolumeClaim` 更新操作，仅响应创建操作。
+此控制器将拒绝所有创建 `PersistentVolumeClaim` 的请求，并返回错误信息。
+要修复此错误，管理员必须重新检查其 `StorageClass` 对象，并仅将其中一个标记为默认。
+此准入控制器会忽略所有 `PersistentVolumeClaim` 更新操作，仅处理创建操作。
 
 <!--
 See [persistent volume](/docs/concepts/storage/persistent-volumes/) documentation about persistent volume claims and
 storage classes and how to mark a storage class as default.
 -->
-关于持久化卷和存储类，以及如何将存储类标记为默认，请参见
-[持久化卷](/zh/docs/concepts/storage/persistent-volumes/)。
+关于持久卷申领和存储类，以及如何将存储类标记为默认，请参见[持久卷](/zh-cn/docs/concepts/storage/persistent-volumes/)页面。
 
 ### DefaultTolerationSeconds {#defaulttolerationseconds}
 
 <!--
 This admission controller sets the default forgiveness toleration for pods to tolerate
 the taints `notready:NoExecute` and `unreachable:NoExecute` based on the k8s-apiserver input parameters
-`default-not-ready-toleration-seconds` and `default-unreachable-toleration-seconds` if the pods don't already
+`default-not-ready-toleration-seconds` and `default-unreachable-toleration-seconds` if the pods don't already 
 have toleration for taints `node.kubernetes.io/not-ready:NoExecute` or
 `node.kubernetes.io/unreachable:NoExecute`.
 The default value for `default-not-ready-toleration-seconds` and `default-unreachable-toleration-seconds` is 5 minutes.
 -->
-该准入控制器基于 k8s-apiserver 输入参数 `default-not-ready-toleration-seconds` 和
+此准入控制器基于 k8s-apiserver 的输入参数 `default-not-ready-toleration-seconds` 和
 `default-unreachable-toleration-seconds` 为 Pod 设置默认的容忍度，以容忍 `notready:NoExecute` 和
-`unreachable:NoExecute` 污点。
+`unreachable:NoExecute` 污点
 （如果 Pod 尚未容忍 `node.kubernetes.io/not-ready：NoExecute` 和
-`node.kubernetes.io/unreachable：NoExecute` 污点的话）
-`default-not-ready-toleration-seconds` 和 `default-unreachable-toleration-seconds` 的默认值是 5 分钟。
+`node.kubernetes.io/unreachable：NoExecute` 污点的话）。
+`default-not-ready-toleration-seconds` 和 `default-unreachable-toleration-seconds`
+的默认值是 5 分钟。
 
 ### DenyEscalatingExec {#denyescalatingexec}
 
@@ -341,9 +341,9 @@ This admission controller will deny exec and attach commands to pods that run wi
 allow host access.  This includes pods that run as privileged, have access to the host IPC namespace, and
 have access to the host PID namespace.
 -->
-该准入控制器将拒绝在由于拥有升级特权，而具备访问宿主机能力的 Pod 中执行 exec 和
-attach 命令。这包括在特权模式运行的 Pod，可以访问主机 IPC 名字空间的 Pod，
-和访问主机 PID 名字空间的 Pod 。
+此准入控制器将拒绝在由于拥有提级特权而具备访问宿主机能力的 Pod 中执行 exec 和
+attach 命令。这类 Pod 包括在特权模式运行的 Pod、可以访问主机 IPC 名字空间的 Pod、
+和访问主机 PID 名字空间的 Pod。
 
 <!--
 The DenyEscalatingExec admission plugin is deprecated.
@@ -352,10 +352,10 @@ Use of a policy-based admission plugin (like [PodSecurityPolicy](#podsecuritypol
 which can be targeted at specific users or Namespaces and also protects against creation of overly privileged Pods
 is recommended instead.
 -->
-DenyExecOnPrivileged 准入插件已被废弃。
+DenyEscalatingExec 准入插件已被弃用。
 
 建议使用基于策略的准入插件（例如 [PodSecurityPolicy](#podsecuritypolicy) 和自定义准入插件），
-该插件可以针对特定用户或名字空间，还可以防止创建权限过高的 Pod。
+这类插件可以针对特定用户或名字空间，还可以防止创建权限过高的 Pod。
 
 ### DenyExecOnPrivileged {#denyexeconprivileged} 
 
@@ -364,14 +364,14 @@ DenyExecOnPrivileged 准入插件已被废弃。
 <!--
 This admission controller will intercept all requests to exec a command in a pod if that pod has a privileged container.
 -->
-如果一个 pod 拥有一个特权容器，该准入控制器将拦截所有在该 pod 中执行 exec 命令的请求。
+如果一个 Pod 中存在特权容器，该准入控制器将拦截所有在该 Pod 中执行 exec 命令的请求。
 
 <!--
 This functionality has been merged into [DenyEscalatingExec](#denyescalatingexec).
 The DenyExecOnPrivileged admission plugin is deprecated.
 -->
 此功能已合并至 [DenyEscalatingExec](#denyescalatingexec)。
-而 DenyExecOnPrivileged 准入插件已被废弃。
+而 DenyExecOnPrivileged 准入插件已被弃用。
 
 <!--
 Use of a policy-based admission plugin (like [PodSecurityPolicy](#podsecuritypolicy) or a custom admission plugin)
@@ -379,9 +379,9 @@ which can be targeted at specific users or Namespaces and also protects against
 is recommended instead.
 -->
 建议使用基于策略的准入插件（例如 [PodSecurityPolicy](#podsecuritypolicy) 和自定义准入插件），
-该插件可以针对特定用户或名字空间，还可以防止创建权限过高的 Pod。
+这类插件可以针对特定用户或名字空间，还可以防止创建权限过高的 Pod。
 
-### DenyServiceExternalIPs
+### DenyServiceExternalIPs   {#denyserviceexternalips}
 
 <!--
 This admission controller rejects all net-new usage of the `Service` field `externalIPs`.  This
@@ -391,18 +391,20 @@ Services which use `externalIPs` and may not add new values to `externalIPs` on
 existing `Service` objects.  Existing uses of `externalIPs` are not affected,
 and users may remove values from `externalIPs` on existing `Service` objects.
 -->
-该准入控制器拒绝 `Service` 字段 `externalIPs` 的所有新规使用。 此功能非常强大（允许网络流量拦截），
-并且无法很好地受策略控制。 启用后，群集用户将无法创建使用 `externalIPs` 的新服务，也无法在现有
-`Service` 对象上向 `externalIPs` 添加新值。 `externalIPs` 的现有使用不受影响，用户可以从现有
-`Service` 对象上的 `externalIPs` 中删除值。
+此准入控制器拒绝新的 `Service` 中使用字段 `externalIPs`。
+此功能非常强大（允许网络流量拦截），并且无法很好地受策略控制。
+启用后，集群用户将无法创建使用 `externalIPs` 的新 `Service`，也无法在现有
+`Service` 对象上为 `externalIPs` 添加新值。
+`externalIPs` 的现有使用不受影响，用户可以在现有 `Service` 对象上从
+`externalIPs` 中删除值。
 
 <!--
 Most users do not need this feature at all, and cluster admins should consider disabling it.
 Clusters that do need to use this feature should consider using some custom policy to manage usage
 of it.
 -->
-大多数用户根本不需要此功能，集群管理员应考虑将其禁用。
-确实需要使用此功能的集群应考虑使用一些自定义策略来管理其的使用。
+大多数用户根本不需要此特性，集群管理员应考虑将其禁用。
+确实需要使用此特性的集群应考虑使用一些自定义策略来管理 `externalIPs` 的使用。
 
 ### EventRateLimit {#eventratelimit} 
 
@@ -412,45 +414,30 @@ of it.
 This admission controller mitigates the problem where the API server gets flooded by
 event requests. The cluster admin can specify event rate limits by:
 -->
-该准入控制器缓解了事件请求淹没 API 服务器的问题。集群管理员可以通过以下方式指定事件速率限制：
+此准入控制器缓解了事件请求淹没 API 服务器的问题。集群管理员可以通过以下方式指定事件速率限制：
 
 <!--
- * Enabling the `EventRateLimit` admission controller;
- * Referencing an `EventRateLimit` configuration file from the file provided to the API
-   server's command line flag `--admission-control-config-file`:
+* Enabling the `EventRateLimit` admission controller;
+* Referencing an `EventRateLimit` configuration file from the file provided to the API
+  server's command line flag `--admission-control-config-file`:
 -->
 * 启用 `EventRateLimit` 准入控制器；
-* 从文件中引用 `EventRateLimit` 配置文件，并提供给 API 服务器命令的
-  `--admission-control-config-file` 标志：
+* 在通过 API 服务器的命令行标志 `--admission-control-config-file` 设置的文件中，
+  引用 `EventRateLimit` 配置文件：
 
-{{< tabs name="eventratelimit_example" >}}
-{{% tab name="apiserver.config.k8s.io/v1" %}}
-```yaml
-apiVersion: apiserver.config.k8s.io/v1
-kind: AdmissionConfiguration
-plugins:
-- name: EventRateLimit
-  path: eventconfig.yaml
-...
-```
-{{% /tab %}}
-{{% tab name="apiserver.k8s.io/v1alpha1" %}}
-```yaml
-# Deprecated in v1.17 in favor of apiserver.config.k8s.io/v1
-apiVersion: apiserver.k8s.io/v1alpha1
-kind: AdmissionConfiguration
-plugins:
-- name: EventRateLimit
-  path: eventconfig.yaml
-...
-```
-{{% /tab %}}
-{{< /tabs >}}
+  ```yaml
+  apiVersion: apiserver.config.k8s.io/v1
+  kind: AdmissionConfiguration
+  plugins:
+    - name: EventRateLimit
+      path: eventconfig.yaml
+  ...
+  ```
 
 <!--
 There are four types of limits that can be specified in the configuration:
 -->
-可以在配置中指定四种类型的限制：
+可以在配置中指定的限制有四种类型：
 
 <!--
  * `Server`: All event requests received by the API server share a single bucket.
@@ -460,34 +447,34 @@ There are four types of limits that can be specified in the configuration:
    involved object of the event.
 -->
 * `Server`: API 服务器收到的所有事件请求共享一个桶。
-* `Namespace`: 每个名字空间都有一个专用的桶。
-* `User`: 给每个用户都分配一个桶。
-* `SourceAndObject`: 根据事件的源和涉及对象的每种组合分配桶。
+* `Namespace`: 每个名字空间都对应一个专用的桶。
+* `User`: 为每个用户分配一个桶。
+* `SourceAndObject`: 根据事件的来源和涉及对象的各种组合分配桶。
 
 <!--
 Below is a sample `eventconfig.yaml` for such a configuration:
 -->
-下面是一个配置示例 `eventconfig.yaml`：
+下面是一个针对此配置的 `eventconfig.yaml` 示例：
 
 ```yaml
 apiVersion: eventratelimit.admission.k8s.io/v1alpha1
 kind: Configuration
 limits:
-- type: Namespace
-  qps: 50
-  burst: 100
-  cacheSize: 2000
-- type: User
-  qps: 10
-  burst: 50
+  - type: Namespace
+    qps: 50
+    burst: 100
+    cacheSize: 2000
+  - type: User
+    qps: 10
+    burst: 50
 ```
 
 <!--
-See the [EventRateLimit proposal](https://git.k8s.io/community/contributors/design-proposals/api-machinery/admission_control_event_rate_limit.md)
+See the [EventRateLimit Config API (v1alpha1)](/docs/reference/config-api/apiserver-eventratelimit.v1alpha1/)
 for more details.
 -->
 详情请参见
-[事件速率限制提案](https://git.k8s.io/community/contributors/design-proposals/api-machinery/admission_control_event_rate_limit.md)。
+[EventRateLimit 配置 API 文档（v1alpha1）](/zh-cn/docs/reference/config-api/apiserver-eventratelimit.v1alpha1/)。
 
 ### ExtendedResourceToleration {#extendedresourcetoleration}
 
@@ -499,30 +486,28 @@ name as the key. This admission controller, if enabled, automatically
 adds tolerations for such taints to pods requesting extended resources, so users don't have to manually
 add these tolerations.
 -->
-该插件有助于创建可扩展资源的专用节点。
-如果运营商想创建可扩展资源的专用节点（如 GPU、FPGA 等），
-那他们应该以扩展资源名称作为键名，
-[为节点设置污点](/zh/docs/concepts/scheduling-eviction/taint-and-toleration/)。
-如果启用了该准入控制器，会将此类污点的容忍自动添加到请求扩展资源的 Pod 中，
-用户不必再手动添加这些容忍。
+此插件有助于创建带有扩展资源的专用节点。
+如果运维人员想要创建带有扩展资源（如 GPU、FPGA 等）的专用节点，他们应该以扩展资源名称作为键名，
+[为节点设置污点](/zh-cn/docs/concepts/scheduling-eviction/taint-and-toleration/)。
+如果启用了此准入控制器，会将此类污点的容忍度自动添加到请求扩展资源的 Pod 中，
+用户不必再手动添加这些容忍度。
 
 ### ImagePolicyWebhook {#imagepolicywebhook}
 
 <!--
 The ImagePolicyWebhook admission controller allows a backend webhook to make admission decisions.
 -->
-ImagePolicyWebhook 准入控制器允许使用一个后端的 webhook 做出准入决策。
+ImagePolicyWebhook 准入控制器允许使用后端 Webhook 做出准入决策。
 
 <!--
 #### Configuration File Format
--->
-#### 配置文件格式
 
-<!--
 ImagePolicyWebhook uses a configuration file to set options for the behavior of the backend.
 This file may be json or yaml and has the following format:
 -->
-ImagePolicyWebhook 使用配置文件来为后端行为设置配置选项。该文件可以是 JSON 或 YAML，
+#### 配置文件格式  {#configuration-file-format}
+
+ImagePolicyWebhook 使用配置文件来为后端行为设置选项。该文件可以是 JSON 或 YAML，
 并具有以下格式:
 
 ```yaml
@@ -530,7 +515,7 @@ imagePolicy:
   kubeConfigFile: /path/to/kubeconfig/for/backend
   # 以秒计的时长，控制批准请求的缓存时间
   allowTTL: 50
-  # 以秒计的时长，控制批准请求的缓存时间
+  # 以秒计的时长，控制拒绝请求的缓存时间
   denyTTL: 50
   # 以毫秒计的时长，控制重试间隔
   retryBackoff: 500
@@ -541,11 +526,9 @@ imagePolicy:
 <!--
 Reference the ImagePolicyWebhook configuration file from the file provided to the API server's command line flag `--admission-control-config-file`:
 -->
-从文件中引用 ImagePolicyWebhook 的配置文件，并将其提供给 API 服务器命令标志
-`--admission-control-config-file`：
+在通过命令行标志 `--admission-control-config-file` 为 API 服务器提供的文件中，
+引用 ImagePolicyWebhook 配置文件：
 
-{{< tabs name="imagepolicywebhook_example1" >}}
-{{% tab name="apiserver.config.k8s.io/v1" %}}
 ```yaml
 apiVersion: apiserver.config.k8s.io/v1
 kind: AdmissionConfiguration
@@ -554,27 +537,12 @@ plugins:
   path: imagepolicyconfig.yaml
 ...
 ```
-{{% /tab %}}
-{{% tab name="apiserver.k8s.io/v1alpha1" %}}
-```yaml
-# v1.17 中已废弃以鼓励使用 apiserver.config.k8s.io/v1
-apiVersion: apiserver.k8s.io/v1alpha1
-kind: AdmissionConfiguration
-plugins:
-- name: ImagePolicyWebhook
-  path: imagepolicyconfig.yaml
-...
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 <!--
 Alternatively, you can embed the configuration directly in the file:
 -->
-或者，你也可以直接将配置嵌入到文件中：
+或者，你也可以直接将配置嵌入到该文件中：
 
-{{< tabs name="imagepolicywebhook_example2" >}}
-{{% tab name="apiserver.config.k8s.io/v1" %}}
 ```yaml
 apiVersion: apiserver.config.k8s.io/v1
 kind: AdmissionConfiguration
@@ -588,24 +556,6 @@ plugins:
       retryBackoff: 500
       defaultAllow: true
 ```
-{{% /tab %}}
-{{% tab name="apiserver.k8s.io/v1alpha1" %}}
-```yaml
-# v1.17 中已废弃以鼓励使用 apiserver.config.k8s.io/v1
-apiVersion: apiserver.k8s.io/v1alpha1
-kind: AdmissionConfiguration
-plugins:
-- name: ImagePolicyWebhook
-  configuration:
-    imagePolicy:
-      kubeConfigFile: <kubeconfig 文件路径>
-      allowTTL: 50
-      denyTTL: 50
-      retryBackoff: 500
-      defaultAllow: true
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 <!--
 The ImagePolicyWebhook config file must reference a
@@ -614,14 +564,14 @@ formatted file which sets up the connection to the backend.
 It is required that the backend communicate over TLS.
 -->
 ImagePolicyWebhook 的配置文件必须引用
-[kubeconfig](/zh/docs/tasks/access-application-cluster/configure-access-multiple-clusters/)
-格式的文件；该文件设置了到后端的连接参数。
-要求后端使用 TLS 进行通信。
+[kubeconfig](/zh-cn/docs/tasks/access-application-cluster/configure-access-multiple-clusters/)
+格式的文件；该文件用来设置与后端的连接。要求后端使用 TLS 进行通信。
 
 <!--
-The kubeconfig file's cluster field must point to the remote service, and the user field must contain the returned authorizer.
+The kubeconfig file's `cluster` field must point to the remote service, and the `user` field
+must contain the returned authorizer.
 -->
-kubeconfig 文件的 cluster 字段需要指向远端服务，user 字段需要包含已返回的授权者。
+kubeconfig 文件的 `clusters` 字段需要指向远端服务，`users` 字段需要包含已返回的授权者。
 
 <!--
 ```yaml
@@ -647,13 +597,13 @@ clusters:
 - name: name-of-remote-imagepolicy-service
   cluster:
     certificate-authority: /path/to/ca.pem    # CA 用于验证远程服务
-    server: https://images.example.com/policy # 要查询的远程服务的 URL。必须是 'https' 。
+    server: https://images.example.com/policy # 要查询的远程服务的 URL，必须是 'https'。
 
 # users 指的是 API 服务器的 Webhook 配置。
 users:
 - name: name-of-api-server
   user:
-    client-certificate: /path/to/cert.pem # webhook 准入控制器使用的证书
+    client-certificate: /path/to/cert.pem # Webhook 准入控制器使用的证书
     client-key: /path/to/key.pem          # 证书匹配的密钥
 ```
 
@@ -662,30 +612,38 @@ For additional HTTP configuration, refer to the
 [kubeconfig](/docs/tasks/access-application-cluster/configure-access-multiple-clusters/) documentation.
 -->
 关于 HTTP 配置的更多信息，请参阅
-[kubeconfig](/zh/docs/tasks/access-application-cluster/configure-access-multiple-clusters/)
+[kubeconfig](/zh-cn/docs/tasks/access-application-cluster/configure-access-multiple-clusters/)
 文档。
 
 <!--
-#### Request Payloads
--->
-#### 请求载荷
+#### Request payloads
 
-<!--
-When faced with an admission decision, the API Server POSTs a JSON serialized `imagepolicy.k8s.io/v1alpha1` `ImageReview` object describing the action. This object contains fields describing the containers being admitted, as well as any pod annotations that match `*.image-policy.k8s.io/*`.
+When faced with an admission decision, the API Server POSTs a JSON serialized
+`imagepolicy.k8s.io/v1alpha1` `ImageReview` object describing the action.
+This object contains fields describing the containers being admitted, as well as
+any pod annotations that match `*.image-policy.k8s.io/*`.
 -->
+#### 请求载荷  {#request-payloads}
+
 当面对一个准入决策时，API 服务器发送一个描述操作的 JSON 序列化的
 `imagepolicy.k8s.io/v1alpha1` `ImageReview` 对象。
-该对象包含描述被审核容器的字段，以及所有匹配 `*.image-policy.k8s.io/*` 的
-Pod 注解。
+该对象包含描述被准入容器的字段，以及与 `*.image-policy.k8s.io/*` 匹配的所有 Pod 注解。
 
+{{ note }}
 <!--
-Note that webhook API objects are subject to the same versioning compatibility rules as other Kubernetes API objects. Implementers should be aware of looser compatibility promises for alpha objects and check the "apiVersion" field of the request to ensure correct deserialization. Additionally, the API Server must enable the imagepolicy.k8s.io/v1alpha1 API extensions group (`--runtime-config=imagepolicy.k8s.io/v1alpha1=true`).
+The webhook API objects are subject to the same versioning compatibility rules
+as other Kubernetes API objects. Implementers should be aware of looser compatibility
+promises for alpha objects and check the `apiVersion` field of the request to
+ensure correct deserialization.
+Additionally, the API Server must enable the `imagepolicy.k8s.io/v1alpha1` API extensions
+group (`--runtime-config=imagepolicy.k8s.io/v1alpha1=true`).
 -->
 注意，Webhook API 对象与其他 Kubernetes API 对象一样受制于相同的版本控制兼容性规则。
-实现者应该知道对 alpha 对象的更宽松的兼容性，并检查请求的 "apiVersion" 字段，
+实现者应该知道对 alpha 对象兼容性是相对宽松的，并检查请求的 "apiVersion" 字段，
 以确保正确的反序列化。
 此外，API 服务器必须启用 `imagepolicy.k8s.io/v1alpha1` API 扩展组
 （`--runtime-config=imagepolicy.k8s.io/v1alpha1=true`）。
+{{ /note }}
 
 <!--
 An example request body:
@@ -714,10 +672,12 @@ An example request body:
 ```
 
 <!--
-The remote service is expected to fill the `ImageReviewStatus` field of the request and respond to either allow or disallow access. The response body's "spec" field is ignored and may be omitted. A permissive response would return:
+The remote service is expected to fill the `ImageReviewStatus` field of the request and
+respond to either allow or disallow access. The response body's `spec` field is ignored and
+may be omitted. A permissive response would return:
 -->
 远程服务将填充请求的 `ImageReviewStatus` 字段，并返回允许或不允许访问的响应。
-响应体的 "spec" 字段会被忽略，并且可以省略。一个允许访问应答会返回：
+响应体的 `spec` 字段会被忽略，并且可以被省略。一个允许访问应答会返回：
 
 ```json
 {
@@ -746,80 +706,77 @@ To disallow access, the service would return:
 ```
 
 <!--
-For further documentation refer to the `imagepolicy.v1alpha1` API objects and `plugin/pkg/admission/imagepolicy/admission.go`.
+For further documentation refer to the
+[`imagepolicy.v1alpha1` API](/docs/reference/config-api/imagepolicy.v1alpha1/).
 -->
-更多的文档，请参阅 `imagepolicy.v1alpha1` API 对象和
-`plugin/pkg/admission/imagepolicy/admission.go`。
+更多的文档，请参阅 [`imagepolicy.v1alpha1` API](/zh-cn/docs/reference/config-api/imagepolicy.v1alpha1/)。
 
 <!--
 #### Extending with Annotations
--->
-#### 使用注解进行扩展
 
-<!--
-All annotations on a Pod that match `*.image-policy.k8s.io/*` are sent to the webhook. Sending annotations allows users who are aware of the image policy backend to send extra information to it, and for different backends implementations to accept different information.
+All annotations on a Pod that match `*.image-policy.k8s.io/*` are sent to the webhook.
+Sending annotations allows users who are aware of the image policy backend to
+send extra information to it, and for different backends implementations to
+accept different information.
 -->
+#### 使用注解进行扩展  {#extending-with-annotations}
+
 一个 Pod 中匹配 `*.image-policy.k8s.io/*` 的注解都会被发送给 Webhook。
-这样做使得了解后端镜像策略的用户可以向它发送额外的信息，并为不同的后端实现
-接收不同的信息。
+这样做使得了解后端镜像策略的用户可以向它发送额外的信息，
+并让不同的后端实现接收不同的信息。
 
 <!--
 Examples of information you might put here are:
+
+* request to "break glass" to override a policy, in case of emergency.
+* a ticket number from a ticket system that documents the break-glass request
+* provide a hint to the policy server as to the imageID of the image being provided, to save it a lookup
 -->
 你可以在这里输入的信息有：
 
-<!--
- * request to "break glass" to override a policy, in case of emergency.
- * a ticket number from a ticket system that documents the break-glass request
- * provide a hint to the policy server as to the imageID of the image being provided, to save it a lookup
--->
-* 在紧急情况下，请求 "break glass" 覆盖一个策略。
-* 从一个记录了 break-glass 的请求的 ticket 系统得到的一个 ticket 号码。
-* 向策略服务器提供一个提示，用于提供镜像的 imageID，以方便它进行查找。
+* 在紧急情况下，请求破例覆盖某个策略。
+* 从一个记录了破例的请求的工单（Ticket）系统得到的一个工单号码。
+* 向策略服务器提供提示信息，用于提供镜像的 imageID，以方便它进行查找。
 
 <!--
-In any case, the annotations are provided by the user and are not validated by Kubernetes in any way. In the future, if an annotation is determined to be widely useful, it may be promoted to a named field of `ImageReviewSpec`.
+In any case, the annotations are provided by the user and are not validated by Kubernetes in any way.
 -->
 在任何情况下，注解都是由用户提供的，并不会被 Kubernetes 以任何方式进行验证。
-在将来，如果一个注解确定将被广泛使用，它可能会被提升为 ImageReviewSpec 的一个命名字段。
 
-### LimitPodHardAntiAffinityTopology {#limitpodhardantiaffinitytopology}
+### LimitPodHardAntiAffinityTopology   {#limitpodhardantiaffinitytopology}
 
 <!--
 This admission controller denies any pod that defines `AntiAffinity` topology key other than
 `kubernetes.io/hostname` in `requiredDuringSchedulingRequiredDuringExecution`.
 -->
-该准入控制器拒绝（定义了 `AntiAffinity` 拓扑键的）任何 Pod
-（`requiredDuringSchedulingRequiredDuringExecution` 中的
-`kubernetes.io/hostname` 除外）。
+此准入控制器拒绝定义了 `AntiAffinity` 拓扑键的任何 Pod
+（`requiredDuringSchedulingRequiredDuringExecution` 中的 `kubernetes.io/hostname` 除外）。
 
 ### LimitRanger {#limitranger}
 
 <!--
-This admission controller will observe the incoming request and ensure that it does not violate any of the constraints
-enumerated in the `LimitRange` object in a `Namespace`.  If you are using `LimitRange` objects in
-your Kubernetes deployment, you MUST use this admission controller to enforce those constraints. LimitRanger can also
-be used to apply default resource requests to Pods that don't specify any; currently, the default LimitRanger
-applies a 0.1 CPU requirement to all Pods in the `default` namespace.
+This admission controller will observe the incoming request and ensure that it does not violate
+any of the constraints enumerated in the `LimitRange` object in a `Namespace`.  If you are using
+`LimitRange` objects in your Kubernetes deployment, you MUST use this admission controller to
+enforce those constraints. LimitRanger can also be used to apply default resource requests to Pods
+that don't specify any; currently, the default LimitRanger applies a 0.1 CPU requirement to all
+Pods in the `default` namespace.
 -->
-该准入控制器会观察传入的请求，并确保它不会违反 `Namespace` 中 `LimitRange`
-对象枚举的任何约束。
-如果你在 Kubernetes 部署中使用了 `LimitRange` 对象，则必须使用此准入控制器来
-执行这些约束。
-LimitRanger 还可以用于将默认资源请求应用到没有指定任何内容的 Pod；
-当前，默认的 LimitRanger 对 `default` 名字空间中的所有 Pod 都应用了
-0.1 CPU 的需求。
+此准入控制器会监测传入的请求，并确保请求不会违反 `Namespace` 中 `LimitRange` 对象所设置的任何约束。
+如果你在 Kubernetes 部署中使用了 `LimitRange` 对象，则必须使用此准入控制器来执行这些约束。
+LimitRanger 还可以用于将默认资源请求应用到没有设定资源约束的 Pod；
+当前，默认的 LimitRanger 对 `default` 名字空间中的所有 Pod 都设置 0.1 CPU 的需求。
 
 <!--
-See the [limitRange design doc](https://git.k8s.io/community/contributors/design-proposals/resource-management/admission_control_limit_range.md)
-and the [example of Limit Range](/docs/tasks/configure-pod-container/limit-range/) for more details.
+See the [LimitRange API reference](/docs/reference/kubernetes-api/policy-resources/limit-range-v1/)
+and the [example of LimitRange](/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
+for more details.
 -->
 请查看
-[limitRange 设计文档](https://git.k8s.io/community/contributors/design-proposals/resource-management/admission_control_limit_range.md)
-和 [LimitRange 例子](/zh/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
-以了解更多细节。
+[limitRange API 文档](/zh-cn/docs/reference/kubernetes-api/policy-resources/limit-range-v1/)和
+[LimitRange 例子](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)以了解更多细节。
 
-### MutatingAdmissionWebhook {#mutatingadmissionwebhook} 
+### MutatingAdmissionWebhook {#mutatingadmissionwebhook}
 
 <!--
 This admission controller calls any mutating webhooks which match the request. Matching
@@ -827,8 +784,8 @@ webhooks are called in serial; each one may modify the object if it desires.
 
 This admission controller (as implied by the name) only runs in the mutating phase.
 -->
-该准入控制器调用任何与请求匹配的变更 Webhook。匹配的 Webhook 将被串行调用。
-每一个 Webhook 都可以根据需要修改对象。
+此准入控制器调用任何与请求匹配的变更（Mutating） Webhook。匹配的 Webhook 将被顺序调用。
+每一个 Webhook 都可以自由修改对象。
 
 `MutatingAdmissionWebhook`，顾名思义，仅在变更阶段运行。
 
@@ -837,42 +794,41 @@ If a webhook called by this has side effects (for example, decrementing quota) i
 *must* have a reconciliation system, as it is not guaranteed that subsequent
 webhooks or validating admission controllers will permit the request to finish.
 -->
-如果由此准入控制器调用的 Webhook 有副作用（如降低配额），
-则它 *必须* 具有协调系统，因为不能保证后续的 Webhook 和验证准入控制器都会允许完成请求。
+如果由此准入控制器调用的 Webhook 有副作用（如：减少配额），
+则它 **必须** 具有协调系统，因为不能保证后续的 Webhook 和验证准入控制器都会允许完成请求。
 
 <!--
 If you disable the MutatingAdmissionWebhook, you must also disable the
 `MutatingWebhookConfiguration` object in the `admissionregistration.k8s.io/v1`
-group/version via the `--runtime-config` flag (both are on by default in
-versions >= 1.9).
+group/version via the `--runtime-config` flag, both are on by default.
 -->
 如果你禁用了 MutatingAdmissionWebhook，那么还必须使用 `--runtime-config` 标志禁止
-`admissionregistration.k8s.io/v1` 组/版本中的 `MutatingWebhookConfiguration`
-对象（版本 >=1.9 时，这两个对象都是默认启用的）。
+`admissionregistration.k8s.io/v1` 组/版本中的 `MutatingWebhookConfiguration`，
+二者都是默认启用的。
 
 <!--
 #### Use caution when authoring and installing mutating webhooks
 -->
-#### 谨慎编写和安装变更 webhook
+#### 谨慎编写和安装变更 webhook  {#use-caution-when-authoring-and-installing-mutating-webhooks}
 
 <!--
- * Users may be confused when the objects they try to create are different from
-   what they get back.
- * Built in control loops may break when the objects they try to create are
-   different when read back.
-   * Setting originally unset fields is less likely to cause problems than
-     overwriting fields set in the original request. Avoid doing the latter.
- * Future changes to control loops for built-in resources or third-party resources
-   may break webhooks that work well today. Even when the webhook installation API
-   is finalized, not all possible webhook behaviors will be guaranteed to be supported
-   indefinitely.
+* Users may be confused when the objects they try to create are different from
+  what they get back.
+* Built in control loops may break when the objects they try to create are
+  different when read back.
+  * Setting originally unset fields is less likely to cause problems than
+    overwriting fields set in the original request. Avoid doing the latter.
+* Future changes to control loops for built-in resources or third-party resources
+  may break webhooks that work well today. Even when the webhook installation API
+  is finalized, not all possible webhook behaviors will be guaranteed to be supported
+  indefinitely.
 -->
 * 当用户尝试创建的对象与返回的对象不同时，用户可能会感到困惑。
-* 当它们回读的对象与尝试创建的对象不同，内建的控制环可能会出问题。
+* 当他们读回的对象与尝试创建的对象不同，内建的控制回路可能会出问题。
   * 与覆盖原始请求中设置的字段相比，使用原始请求未设置的字段会引起问题的可能性较小。
-    应尽量避免前面那种方式。
-* 内建资源和第三方资源的控制回路未来可能会受到破坏性的更改，使现在运行良好的 Webhook
-  无法再正常运行。即使完成了 Webhook API 安装，也不代表会为该 webhook 提供无限期的支持。
+    应尽量避免覆盖原始请求中的字段设置。
+* 内建资源和第三方资源的控制回路未来可能会出现破坏性的变更，使现在运行良好的 Webhook
+  无法再正常运行。即使完成了 Webhook API 安装，也不代表该 Webhook 会被提供无限期的支持。
 
 ### NamespaceAutoProvision {#namespaceautoprovision}
 
@@ -883,9 +839,9 @@ It creates a namespace if it cannot be found.
 This admission controller is useful in deployments that do not want to restrict creation of
 a namespace prior to its usage.
 -->
-该准入控制器会检查名字空间资源上的所有传入请求，并检查所引用的名字空间是否确实存在。
-如果找不到，它将创建一个名字空间。
-此准入控制器对于不想要求名字空间必须先创建后使用的集群部署中很有用。
+此准入控制器会检查针对名字空间域资源的所有传入请求，并检查所引用的名字空间是否确实存在。
+如果找不到所引用的名字空间，控制器将创建一个名字空间。
+此准入控制器对于不想要求名字空间必须先创建后使用的集群部署很有用。
 
 ### NamespaceExists {#namespaceexists}
 
@@ -893,26 +849,28 @@ a namespace prior to its usage.
 This admission controller checks all requests on namespaced resources other than `Namespace` itself.
 If the namespace referenced from a request doesn't exist, the request is rejected.
 -->
-该准入控制器检查除 `Namespace` 以外的名字空间作用域资源上的所有请求。
+此准入控制器检查针对名字空间作用域的资源（除 `Namespace` 自身）的所有请求。
 如果请求引用的名字空间不存在，则拒绝该请求。
 
 ### NamespaceLifecycle {#namespacelifecycle}
 
 <!--
-This admission controller enforces that a `Namespace` that is undergoing termination cannot have new objects created in it,
-and ensures that requests in a non-existent `Namespace` are rejected. This admission controller also prevents deletion of
-three system reserved namespaces `default`, `kube-system`, `kube-public`.
+This admission controller enforces that a `Namespace` that is undergoing termination cannot have
+new objects created in it, and ensures that requests in a non-existent `Namespace` are rejected.
+This admission controller also prevents deletion of three system reserved namespaces `default`,
+`kube-system`, `kube-public`.
 -->
-该准入控制器禁止在一个正在被终止的 `Namespace` 中创建新对象，并确保
-使用不存在的 `Namespace` 的请求被拒绝。
+该准入控制器禁止在一个正在被终止的 `Namespace` 中创建新对象，并确保针对不存在的
+`Namespace` 的请求被拒绝。
 该准入控制器还会禁止删除三个系统保留的名字空间，即 `default`、
 `kube-system` 和 `kube-public`。
 
 <!--
-A `Namespace` deletion kicks off a sequence of operations that remove all objects (pods, services, etc.) in that
-namespace.  In order to enforce integrity of that process, we strongly recommend running this admission controller.
+A `Namespace` deletion kicks off a sequence of operations that remove all objects (pods, services,
+etc.) in that namespace.  In order to enforce integrity of that process, we strongly recommend
+running this admission controller.
 -->
-删除 `Namespace` 会触发删除该名字空间中所有对象（Pod、Service 等）的一系列操作。
+`Namespace` 的删除操作会触发一系列删除该名字空间中所有对象（Pod、Service 等）的操作。
 为了确保这个过程的完整性，我们强烈建议启用这个准入控制器。
 
 ### NodeRestriction {#noderestriction}
@@ -922,51 +880,52 @@ This admission controller limits the `Node` and `Pod` objects a kubelet can modi
 kubelets must use credentials in the `system:nodes` group, with a username in the form `system:node:<nodeName>`.
 Such kubelets will only be allowed to modify their own `Node` API object, and only modify `Pod` API objects that are bound to their node.
 -->
-该准入控制器限制了 kubelet 可以修改的 `Node` 和 `Pod` 对象。
+该准入控制器限制了某 kubelet 可以修改的 `Node` 和 `Pod` 对象。
 为了受到这个准入控制器的限制，kubelet 必须使用在 `system:nodes` 组中的凭证，
 并使用 `system:node:<nodeName>` 形式的用户名。
-这样，kubelet 只可修改自己的 `Node` API 对象，只能修改绑定到节点本身的 Pod 对象。
+这样，kubelet 只可修改自己的 `Node` API 对象，只能修改绑定到自身节点的 Pod 对象。
 
 <!--
-In Kubernetes 1.11+, kubelets are not allowed to update or remove taints from their `Node` API object.
+kubelets are not allowed to update or remove taints from their `Node` API object.
 
-In Kubernetes 1.13+, the `NodeRestriction` admission plugin prevents kubelets from deleting their `Node` API object,
+The `NodeRestriction` admission plugin prevents kubelets from deleting their `Node` API object,
 and enforces kubelet modification of labels under the `kubernetes.io/` or `k8s.io/` prefixes as follows:
 -->
-在 Kubernetes 1.11+ 的版本中，不允许 kubelet 从 `Node` API 对象中更新或删除污点。
+不允许 kubelet 更新或删除 `Node` API 对象的污点。
 
-在 Kubernetes 1.13+ 的版本中，`NodeRestriction` 准入插件可防止 kubelet 删除
-`Node` API 对象，并对 `kubernetes.io/` 或 `k8s.io/` 前缀标签的 kubelet
-强制进行如下修改：
+`NodeRestriction` 准入插件可防止 kubelet 删除其 `Node` API 对象，
+并对前缀为 `kubernetes.io/` 或 `k8s.io/` 的标签的修改对 kubelet 作如下限制：
 
 <!--
 * **Prevents** kubelets from adding/removing/updating labels with a `node-restriction.kubernetes.io/` prefix.
-This label prefix is reserved for administrators to label their `Node` objects for workload isolation purposes,
-and kubelets will not be allowed to modify labels with that prefix.
+  This label prefix is reserved for administrators to label their `Node` objects for workload isolation purposes,
+  and kubelets will not be allowed to modify labels with that prefix.
 * **Allows** kubelets to add/remove/update these labels and label prefixes:
 -->
-* **防止** kubelet 添加/删除/更新带有 `node-restriction.kubernetes.io/` 前缀的标签。
-  保留此前缀的标签，供管理员用来标记 Node 对象以隔离工作负载，并且不允许 kubelet
+* **禁止** kubelet 添加、删除或更新前缀为 `node-restriction.kubernetes.io/` 的标签。
+  这类前缀的标签时保留给管理员的，用以为 `Node` 对象设置标签以隔离工作负载，而不允许 kubelet
   修改带有该前缀的标签。
-* **允许** kubelet 添加/删除/更新这些和这些前缀的标签：
+* **允许** kubelet 添加、删除、更新以下标签：
   * `kubernetes.io/hostname`
   * `kubernetes.io/arch`
   * `kubernetes.io/os`
   * `beta.kubernetes.io/instance-type`
   * `node.kubernetes.io/instance-type`
   * `failure-domain.beta.kubernetes.io/region` （已弃用）
-  * `failure-domain.beta.kubernetes.io/zone`  (已弃用）
+  * `failure-domain.beta.kubernetes.io/zone` （已弃用）
   * `topology.kubernetes.io/region`
   * `topology.kubernetes.io/zone`
-  * `kubelet.kubernetes.io/`-prefixed labels
-  * `node.kubernetes.io/`-prefixed labels
+  * `kubelet.kubernetes.io/` 为前缀的标签
+  * `node.kubernetes.io/` 为前缀的标签
 
 <!--
-Use of any other labels under the `kubernetes.io` or `k8s.io` prefixes by kubelets is reserved, and may be disallowed or allowed by the `NodeRestriction` admission plugin in the future.
+Use of any other labels under the `kubernetes.io` or `k8s.io` prefixes by kubelets is reserved,
+and may be disallowed or allowed by the `NodeRestriction` admission plugin in the future.
 
-Future versions may add additional restrictions to ensure kubelets have the minimal set of permissions required to operate correctly.
+Future versions may add additional restrictions to ensure kubelets have the minimal set of
+permissions required to operate correctly.
 -->
-kubelet 保留 `kubernetes.io` 或 `k8s.io` 前缀的所有标签，并且将来可能会被
+以 `kubernetes.io` 或 `k8s.io` 为前缀的所有其他标签都限制 kubelet 使用，并且将来可能会被
 `NodeRestriction` 准入插件允许或禁止。
 
 将来的版本可能会增加其他限制，以确保 kubelet 具有正常运行所需的最小权限集。
@@ -980,38 +939,32 @@ This admission controller also protects the access to `metadata.ownerReferences[
 of an object, so that only users with "update" permission to the `finalizers`
 subresource of the referenced *owner* can change it.
 -->
-该准入控制器保护对 `metadata.ownerReferences` 对象的访问，以便只有对该对象具有
-“删除” 权限的用户才能对其进行更改。
+此准入控制器保护对对象的 `metadata.ownerReferences` 的访问，以便只有对该对象具有
+“delete” 权限的用户才能对其进行更改。
 该准入控制器还保护对 `metadata.ownerReferences[x].blockOwnerDeletion` 对象的访问，
-以便只有对所引用的 **属主（owner）** 的 `finalizers` 子资源具有 “更新” 
+以便只有对所引用的 **属主（owner）** 的 `finalizers` 子资源具有 “update” 
 权限的用户才能对其进行更改。
 
 ### PersistentVolumeClaimResize {#persistentvolumeclaimresize}
 
-<!--
-This admission controller implements additional validations for checking incoming `PersistentVolumeClaim` resize requests.
--->
-该准入控制器检查传入的 `PersistentVolumeClaim` 调整大小请求，对其执行额外的验证操作。
-
-{{< note >}}
-<!--
-Support for volume resizing is available as an alpha feature. Admins must set the feature gate `ExpandPersistentVolumes`
-to `true` to enable resizing.
--->
-对调整卷大小的支持是一种 Alpha 特性。管理员必须将特性门控 `ExpandPersistentVolumes`
-设置为 `true` 才能启用调整大小。
-{{< /note >}}
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
 
 <!--
-After enabling the `ExpandPersistentVolumes` feature gate, enabling the `PersistentVolumeClaimResize` admission
-controller is recommended, too. This admission controller prevents resizing of all claims by default unless a claim's `StorageClass`
+This admission controller implements additional validations for checking incoming
+`PersistentVolumeClaim` resize requests.
+-->
+此准入控制器检查传入的 `PersistentVolumeClaim` 调整大小请求，对其执行额外的验证检查操作。
+
+<!--
+Enabling the `PersistentVolumeClaimResize` admission controller is recommended.
+This admission controller prevents resizing of all claims by default unless a claim's `StorageClass`
  explicitly enables resizing by setting `allowVolumeExpansion` to `true`.
 
 For example: all `PersistentVolumeClaim`s created from the following `StorageClass` support volume expansion:
 -->
-启用 `ExpandPersistentVolumes` 特性门控之后，建议将 `PersistentVolumeClaimResize`
-准入控制器也启用。除非 PVC 的 `StorageClass` 明确地将 `allowVolumeExpansion` 设置为
-`true` 来显式启用调整大小。否则，默认情况下该准入控制器会阻止所有对 PVC 大小的调整。
+建议启用 `PersistentVolumeClaimResize` 准入控制器。除非 PVC 的 `StorageClass` 明确地将
+`allowVolumeExpansion` 设置为 `true` 来显式启用调整大小。
+否则，默认情况下该准入控制器会阻止所有对 PVC 大小的调整。
 
 例如：由以下 `StorageClass` 创建的所有 `PersistentVolumeClaim` 都支持卷容量扩充：
 
@@ -1033,7 +986,7 @@ allowVolumeExpansion: true
 For more information about persistent volume claims, see [PersistentVolumeClaims](/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims).
 -->
 关于持久化卷申领的更多信息，请参见
-[PersistentVolumeClaims](/zh/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims)。
+[PersistentVolumeClaim](/zh-cn/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims)。
 
 ### PersistentVolumeLabel {#persistentvolumelabel} 
 
@@ -1047,15 +1000,15 @@ region and/or zone.
 If the admission controller doesn't support automatic labelling your PersistentVolumes, you
 may need to add the labels manually to prevent pods from mounting volumes from
 a different zone. PersistentVolumeLabel is DEPRECATED and labeling persistent volumes has been taken over by
-[cloud controller manager](/docs/tasks/administer-cluster/running-cloud-controller/).
+the {{< glossary_tooltip text="cloud-controller-manager" term_id="cloud-controller-manager" >}}.
 Starting from 1.11, this admission controller is disabled by default.
 -->
-该准入控制器会自动将区（region）或区域（zone）标签附加到由云提供商（如 GCE、AWS）
-定义的 PersistentVolume。这有助于确保 Pod 和 PersistentVolume 位于相同的区或区域。
+此准入控制器会自动将由云提供商（如 GCE、AWS）定义的区（region）或区域（zone）
+标签附加到 PersistentVolume 上。这有助于确保 Pod 和 PersistentVolume 位于相同的区或区域。
 如果准入控制器不支持为 PersistentVolumes 自动添加标签，那你可能需要手动添加标签，
 以防止 Pod 挂载其他区域的卷。
-PersistentVolumeLabel 已被废弃，标记持久卷已由
-[云管理控制器](/zh/docs/tasks/administer-cluster/running-cloud-controller/)接管。
+PersistentVolumeLabel 已被弃用，为持久卷添加标签的操作已由
+{{< glossary_tooltip text="云管理控制器" term_id="cloud-controller-manager" >}}接管。
 从 1.11 开始，默认情况下禁用此准入控制器。
 
 ### PodNodeSelector {#podnodeselector}
@@ -1063,19 +1016,19 @@ PersistentVolumeLabel 已被废弃，标记持久卷已由
 {{< feature-state for_k8s_version="v1.5" state="alpha" >}}
 
 <!--
-This admission controller defaults and limits what node selectors may be used within a namespace by reading a namespace annotation and a global configuration.
+This admission controller defaults and limits what node selectors may be used within a namespace
+by reading a namespace annotation and a global configuration.
 -->
-该准入控制器通过读取名字空间注解和全局配置，来为名字空间中可以使用的节点选择器
-设置默认值并实施限制。
+此准入控制器通过读取名字空间注解和全局配置，来为名字空间中可以使用的节点选择器设置默认值并实施限制。
 
 <!--
-#### Configuration File Format
+#### Configuration file format
 
 `PodNodeSelector` uses a configuration file to set options for the behavior of the backend.
 Note that the configuration file format will move to a versioned file in a future release.
 This file may be json or yaml and has the following format:
 -->
-#### 配置文件格式
+#### 配置文件格式    {#configuration-file-format-podnodeselector}
 
 `PodNodeSelector` 使用配置文件来设置后端行为的选项。
 请注意，配置文件格式将在将来某个版本中改为版本化文件。
@@ -1083,50 +1036,37 @@ This file may be json or yaml and has the following format:
 
 ```yaml
 podNodeSelectorPluginConfig:
- clusterDefaultNodeSelector: name-of-node-selector
- namespace1: name-of-node-selector
- namespace2: name-of-node-selector
+  clusterDefaultNodeSelector: name-of-node-selector
+  namespace1: name-of-node-selector
+  namespace2: name-of-node-selector
 ```
 
 <!--
-Reference the `PodNodeSelector` configuration file from the file provided to the API server's command line flag `--admission-control-config-file`:
+Reference the `PodNodeSelector` configuration file from the file provided to the API server's
+command line flag `--admission-control-config-file`:
 -->
-基于提供给 API 服务器命令行标志 `--admission-control-config-file` 的文件名，
-从文件中引用 `PodNodeSelector` 配置文件：
+通过 API 服务器命令行标志 `--admission-control-config-file` 为 API 服务器提供的文件中，
+需要引用 `PodNodeSelector` 配置文件：
 
-{{< tabs name="podnodeselector_example1" >}}
-{{% tab name="apiserver.config.k8s.io/v1" %}}
 ```yaml
 apiVersion: apiserver.config.k8s.io/v1
 kind: AdmissionConfiguration
 plugins:
-- name: PodNodeSelector
-  path: podnodeselector.yaml
+  - name: PodNodeSelector
+    path: podnodeselector.yaml
 ...
 ```
-{{% /tab %}}
-{{% tab name="apiserver.k8s.io/v1alpha1" %}}
-```yaml
-# 在 v1.17 中废弃，以鼓励使用 apiserver.config.k8s.io/v1
-apiVersion: apiserver.k8s.io/v1alpha1
-kind: AdmissionConfiguration
-plugins:
-- name: PodNodeSelector
-  path: podnodeselector.yaml
-...
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 <!--
 #### Configuration Annotation Format
 
-`PodNodeSelector` uses the annotation key `scheduler.alpha.kubernetes.io/node-selector` to assign node selectors to namespaces.
+`PodNodeSelector` uses the annotation key `scheduler.alpha.kubernetes.io/node-selector` to assign
+node selectors to namespaces.
 -->
-#### 配置注解格式
+#### 配置注解格式   {#configuration-annotation-format}
 
-`PodNodeSelector` 使用键为 `scheduler.alpha.kubernetes.io/node-selector` 的注解
-为名字空间设置节点选择算符。
+`PodNodeSelector` 使用键为 `scheduler.alpha.kubernetes.io/node-selector`
+的注解为名字空间设置节点选择算符。
 
 ```yaml
 apiVersion: v1
@@ -1139,28 +1079,30 @@ metadata:
 
 <!--
 #### Internal Behavior
+
 This admission controller has the following behavior:
 -->
-#### 内部行为
+#### 内部行为   {#internal-behavior}
 
-该准入控制器行为如下：
+此准入控制器行为如下：
 
 <!--
-1. If the `Namespace` has an annotation with a key `scheduler.alpha.kubernetes.io/node-selector`, use its value as the
-node selector.
-2. If the namespace lacks such an annotation, use the `clusterDefaultNodeSelector` defined in the `PodNodeSelector`
-plugin configuration file as the node selector.
-3. Evaluate the pod's node selector against the namespace node selector for conflicts. Conflicts result in rejection.
-4. Evaluate the pod's node selector against the namespace-specific allowed selector defined the plugin configuration file.
-Conflicts result in rejection.
+1. If the `Namespace` has an annotation with a key `scheduler.alpha.kubernetes.io/node-selector`,
+   use its value as the node selector.
+2. If the namespace lacks such an annotation, use the `clusterDefaultNodeSelector` defined in the
+   `PodNodeSelector` plugin configuration file as the node selector.
+3. Evaluate the pod's node selector against the namespace node selector for conflicts. Conflicts
+   result in rejection.
+4. Evaluate the pod's node selector against the namespace-specific allowed selector defined the
+   plugin configuration file. Conflicts result in rejection.
 -->
 1. 如果 `Namespace` 的注解带有键 `scheduler.alpha.kubernetes.io/node-selector`，
    则将其值用作节点选择算符。
 2. 如果名字空间缺少此类注解，则使用 `PodNodeSelector` 插件配置文件中定义的
    `clusterDefaultNodeSelector` 作为节点选择算符。
-3. 评估 Pod 节点选择算符和名字空间节点选择算符是否存在冲突。存在冲突将导致拒绝。
+3. 评估 Pod 节点选择算符和名字空间节点选择算符是否存在冲突。存在冲突将拒绝 Pod。
 4. 评估 Pod 节点选择算符和特定于名字空间的被允许的选择算符所定义的插件配置文件是否存在冲突。
-   存在冲突将导致拒绝。
+   存在冲突将导致拒绝 Pod。
 
 {{< note >}}
 <!--
@@ -1171,8 +1113,30 @@ PodNodeSelector 允许 Pod 强制在特定标签的节点上运行。
 另请参阅 PodTolerationRestriction 准入插件，该插件可防止 Pod 在特定污点的节点上运行。
 {{< /note >}}
 
+### PodSecurity {#podsecurity}
+
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
+
+<!--
+This is the replacement for the deprecated [PodSecurityPolicy](#podsecuritypolicy) admission controller
+defined in the next section. This admission controller acts on creation and modification of the pod and
+determines if it should be admitted based on the requested security context and the 
+[Pod Security Standards](/docs/concepts/security/pod-security-standards/).
+
+See the [Pod Security Admission documentation](/docs/concepts/security/pod-security-admission/)
+for more information.
+-->
+这是下节所讨论的已被废弃的 [PodSecurityPolicy](#podsecuritypolicy) 准入控制器的替代品。
+此准入控制器负责在创建和修改 Pod 时，根据请求的安全上下文和
+[Pod 安全标准](/zh-cn/docs/concepts/security/pod-security-standards/)
+来确定是否可以执行请求。
+
+更多信息请参阅 [Pod 安全性准入控制器](/zh-cn/docs/concepts/security/pod-security-admission/)。
+
 ### PodSecurityPolicy {#podsecuritypolicy}
 
+{{< feature-state for_k8s_version="v1.21" state="deprecated" >}}
+
 <!--
 This admission controller acts on creation and modification of the pod and determines if it should be admitted
 based on the requested security context and the available Pod Security Policies.
@@ -1181,35 +1145,36 @@ based on the requested security context and the available Pod Security Policies.
 安全策略确定是否可以执行请求。
 
 <!--
-See also [Pod Security Policy documentation](/docs/concepts/policy/pod-security-policy/)
+See also the [PodSecurityPolicy](/docs/concepts/security/pod-security-policy/) documentation
 for more information.
 -->
-查看 [Pod 安全策略文档](/zh/docs/concepts/policy/pod-security-policy/)
-了解更多细节。
+查看 [Pod 安全策略文档](/zh-cn/docs/concepts/security/pod-security-policy/)进一步了解其间细节。
 
 ### PodTolerationRestriction {#podtolerationrestriction}
 
 {{< feature-state for_k8s_version="v1.7" state="alpha" >}}
 
 <!--
-The PodTolerationRestriction admission controller verifies any conflict between tolerations of a pod and the tolerations of its namespace.
+The PodTolerationRestriction admission controller verifies any conflict between tolerations of a
+pod and the tolerations of its namespace.
 It rejects the pod request if there is a conflict.
 It then merges the tolerations annotated on the namespace into the tolerations of the pod.
 The resulting tolerations are checked against a list of allowed tolerations annotated to the namespace.
 If the check succeeds, the pod request is admitted otherwise it is rejected.
 -->
-准入控制器 PodTolerationRestriction 检查 Pod 的容忍度与其名字空间的容忍度之间
-是否存在冲突。如果存在冲突，则拒绝 Pod 请求。
-然后，它将名字空间的容忍度合并到 Pod 的容忍度中，之后根据名字空间的容忍度
-白名单检查所得到的容忍度结果。如果检查成功，则将接受 Pod 请求，否则拒绝该请求。
+准入控制器 PodTolerationRestriction 检查 Pod 的容忍度与其名字空间的容忍度之间是否存在冲突。
+如果存在冲突，则拒绝 Pod 请求。
+控制器接下来会将名字空间的容忍度合并到 Pod 的容忍度中，
+根据名字空间的容忍度白名单检查所得到的容忍度结果。
+如果检查成功，则将接受 Pod 请求，否则拒绝该请求。
 
 <!--
 If the namespace of the pod does not have any associated default tolerations or allowed
 tolerations annotated, the cluster-level default tolerations or cluster-level list of allowed tolerations are used
 instead if they are specified.
 -->
-如果 Pod 的名字空间没有任何关联的默认容忍度或容忍度白名单，则使用集群级别的
-默认容忍度或容忍度白名单（如果有的话）。
+如果 Pod 的名字空间没有任何关联的默认容忍度或容忍度白名单，
+则使用集群级别的默认容忍度或容忍度白名单（如果有的话）。
 
 <!--
 Tolerations to a namespace are assigned via the `scheduler.alpha.kubernetes.io/defaultTolerations` annotation key.
@@ -1217,7 +1182,7 @@ The list of allowed tolerations can be added via the `scheduler.alpha.kubernetes
 
 Example for namespace annotations:
 -->
-名字空间的容忍度通过注解健 `scheduler.alpha.kubernetes.io/defaultTolerations`
+名字空间的容忍度通过注解键 `scheduler.alpha.kubernetes.io/defaultTolerations`
 来设置。可接受的容忍度可以通过 `scheduler.alpha.kubernetes.io/tolerationsWhitelist`
 注解键来添加。
 
@@ -1236,7 +1201,9 @@ metadata:
 <!--
 ### Priority {#priority}
 
-The priority admission controller uses the `priorityClassName` field and populates the integer value of the priority. If the priority class is not found, the Pod is rejected.
+The priority admission controller uses the `priorityClassName` field and populates the integer
+value of the priority.
+If the priority class is not found, the Pod is rejected.
 -->
 ### 优先级 {#priority}
 
@@ -1246,91 +1213,88 @@ The priority admission controller uses the `priorityClassName` field and populat
 ### ResourceQuota {#resourcequota}
 
 <!--
-This admission controller will observe the incoming request and ensure that it does not violate any of the constraints
-enumerated in the `ResourceQuota` object in a `Namespace`.  If you are using `ResourceQuota`
-objects in your Kubernetes deployment, you MUST use this admission controller to enforce quota constraints.
+This admission controller will observe the incoming request and ensure that it does not violate
+any of the constraints enumerated in the `ResourceQuota` object in a `Namespace`.  If you are
+using `ResourceQuota` objects in your Kubernetes deployment, you MUST use this admission
+controller to enforce quota constraints.
 -->
-该准入控制器会监测传入的请求，并确保它不违反任何一个 `Namespace` 中的 `ResourceQuota`
-对象中枚举出来的约束。
-如果你在 Kubernetes 部署中使用了 `ResourceQuota`，你必须使用这个准入控制器来强制
-执行配额限制。
+此准入控制器会监测传入的请求，并确保它不违反任何一个 `Namespace` 中的 `ResourceQuota`
+对象中列举的约束。如果你在 Kubernetes 部署中使用了 `ResourceQuota`，
+则必须使用这个准入控制器来强制执行配额限制。
 
 <!--
-See the [resourceQuota design doc](https://git.k8s.io/community/contributors/design-proposals/resource-management/admission_control_resource_quota.md) and the [example of Resource Quota](/docs/concepts/policy/resource-quotas/) for more details.
+See the [ResourceQuota API reference](/docs/reference/kubernetes-api/policy-resources/resource-quota-v1/)
+and the [example of Resource Quota](/docs/concepts/policy/resource-quotas/) for more details.
 -->
-请查看
-[resourceQuota 设计文档](https://git.k8s.io/community/contributors/design-proposals/admission_control_resource_quota.md)和 [Resource Quota 例子](/zh/docs/concepts/policy/resource-quotas/)
-了解更多细节。
+请参阅
+[resourceQuota API 参考](/zh-cn/docs/reference/kubernetes-api/policy-resources/resource-quota-v1/)
+和 [Resource Quota 例子](/zh-cn/docs/concepts/policy/resource-quotas/)了解更多细节。
 
-
-<!--
 ### RuntimeClass {#runtimeclass}
 
 {{< feature-state for_k8s_version="v1.20" state="stable" >}}
 
-If you enable the `PodOverhead` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/), and define a RuntimeClass with [Pod overhead](/docs/concepts/scheduling-eviction/pod-overhead/) configured, this admission controller checks incoming
-Pods. When enabled, this admission controller rejects any Pod create requests that have the overhead already set.
-For Pods that have a  RuntimeClass is configured and selected in their `.spec`, this admission controller sets `.spec.overhead` in the Pod based on the value defined in the corresponding RuntimeClass.
-
-{{< note >}}
-The `.spec.overhead` field for Pod and the `.overhead` field for RuntimeClass are both in beta. If you do not enable the `PodOverhead` feature gate, all Pods are treated as if `.spec.overhead` is unset.
-{{< /note >}}
+<!--
+If you define a RuntimeClass with [Pod overhead](/docs/concepts/scheduling-eviction/pod-overhead/)
+configured, this admission controller checks incoming Pods.
+When enabled, this admission controller rejects any Pod create requests
+that have the overhead already set.
+For Pods that have a RuntimeClass configured and selected in their `.spec`,
+this admission controller sets `.spec.overhead` in the Pod based on the value
+defined in the corresponding RuntimeClass.
 
 See also [Pod Overhead](/docs/concepts/scheduling-eviction/pod-overhead/)
 for more information.
 -->
-### RuntimeClass {#runtimeclass}
-
-+{{< feature-state for_k8s_version="v1.20" state="stable" >}}
-
-如果你开启 `PodOverhead`
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/),
-并且通过 [Pod 开销](/zh/docs/concepts/scheduling-eviction/pod-overhead/)
-配置来定义一个 RuntimeClass，这个准入控制器会检查新的 Pod。
-当启用的时候，这个准入控制器会拒绝任何 overhead 字段已经设置的 Pod。
+如果你所定义的 RuntimeClass 包含 [Pod 开销](/zh-cn/docs/concepts/scheduling-eviction/pod-overhead/)，
+这个准入控制器会检查新的 Pod。
+被启用后，此准入控制器会拒绝所有已经设置了 overhead 字段的 Pod 创建请求。
 对于配置了 RuntimeClass 并在其 `.spec` 中选定 RuntimeClass 的 Pod，
 此准入控制器会根据相应 RuntimeClass 中定义的值为 Pod 设置 `.spec.overhead`。
 
-{{< note >}}
-Pod 的 `.spec.overhead` 字段和 RuntimeClass 的 `.overhead` 字段均为处于 beta 版本。
-如果你未启用 `PodOverhead` 特性门控，则所有 Pod 均被视为未设置 `.spec.overhead`。
-{{< /note >}}
-
-详情请参见 [Pod 开销](/zh/docs/concepts/scheduling-eviction/pod-overhead/)。
+详情请参见 [Pod 开销](/zh-cn/docs/concepts/scheduling-eviction/pod-overhead/)。
 
 ### SecurityContextDeny {#securitycontextdeny}
 
 <!--
-This admission controller will deny any pod that attempts to set certain escalating
+This admission controller will deny any Pod that attempts to set certain escalating
 [SecurityContext](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#securitycontext-v1-core)
 fields, as shown in the
 [Configure a Security Context for a Pod or Container](/docs/tasks/configure-pod-container/security-context/)
 task.
-This should be enabled if a cluster doesn't utilize 
-[pod security policies](/docs/concepts/policy/pod-security-policy/)
-to restrict the set of values a security context can take.
+If you don't use [Pod Security admission](/docs/concepts/security/pod-security-admission/),
+[PodSecurityPolicies](/docs/concepts/security/pod-security-policy/), nor any external enforcement mechanism,
+then you could use this admission controller to restrict the set of values a security context can take.
 -->
-该准入控制器将拒绝任何试图设置特定提升
-[SecurityContext](/zh/docs/tasks/configure-pod-container/security-context/)
-字段的 Pod，正如任务
-[为 Pod 或 Container 配置安全上下文](/zh/docs/tasks/configure-pod-container/security-context/)
-中所展示的那样。
-如果集群没有使用 [Pod 安全策略](/zh/docs/concepts/policy/pod-security-policy/)
-来限制安全上下文所能获取的值集，那么应该启用这个功能。
+此准入控制器将拒绝任何试图设置特定提升
+[SecurityContext](/zh-cn/docs/tasks/configure-pod-container/security-context/)
+中某些字段的 Pod，正如任务[为 Pod 或 Container 配置安全上下文](/zh-cn/docs/tasks/configure-pod-container/security-context/)
+中所展示的那样。如果集群没有使用
+[Pod 安全性准入](/zh-cn/docs/concepts/security/pod-security-admission/)、
+[PodSecurityPolicy](/zh-cn/docs/concepts/security/pod-security-policy/)，
+也没有任何外部强制机制，那么你可以使用此准入控制器来限制安全上下文所能获取的值集。
+
+<!--
+See [Pod Security Standards](/docs/concepts/security/pod-security-standards/) for more context on restricting
+pod privileges.
+-->
+有关限制 Pod 权限的更多内容，请参阅 
+[Pod 安全标准](/zh-cn/docs/concepts/security/pod-security-standards/)。
 
 ### ServiceAccount {#serviceaccount}
 
 <!--
 This admission controller implements automation for
 [serviceAccounts](/docs/tasks/configure-pod-container/configure-service-account/).
-We strongly recommend using this admission controller if you intend to make use of Kubernetes `ServiceAccount` objects.
+We strongly recommend using this admission controller if you intend to make use of Kubernetes
+`ServiceAccount` objects.
 -->
 此准入控制器实现了
-[ServiceAccount](/zh/docs/tasks/configure-pod-container/configure-service-account/)
+[ServiceAccount](/zh-cn/docs/tasks/configure-pod-container/configure-service-account/)
 的自动化。
 如果你打算使用 Kubernetes 的 ServiceAccount 对象，我们强烈建议你使用这个准入控制器。
 
-### StorageObjectInUseProtection
+### StorageObjectInUseProtection   {#storageobjectinuseprotection}
 
 <!--
 The `StorageObjectInUseProtection` plugin adds the `kubernetes.io/pvc-protection` or `kubernetes.io/pv-protection`
@@ -1342,24 +1306,24 @@ Refer to the
 for more detailed information.
 -->
 `StorageObjectInUseProtection` 插件将 `kubernetes.io/pvc-protection` 或
-`kubernetes.io/pv-protection` finalizers 添加到新创建的持久化卷声明（PVC）
-或持久化卷（PV）中。
-如果用户尝试删除 PVC/PV，除非 PVC/PV 的保护控制器移除 finalizers，否则
-PVC/PV 不会被删除。
-有关更多详细信息，请参考
-[保护使用中的存储对象](/zh/docs/concepts/storage/persistent-volumes/#storage-object-in-use-protection)。
+`kubernetes.io/pv-protection` finalizers 添加到新创建的持久卷申领（PVC）
+或持久卷（PV）中。如果用户尝试删除 PVC/PV，除非 PVC/PV 的保护控制器移除终结器（finalizers），
+否则 PVC/PV 不会被删除。有关更多详细信息，
+请参考[保护使用中的存储对象](/zh-cn/docs/concepts/storage/persistent-volumes/#storage-object-in-use-protection)。
 
-### TaintNodesByCondition {#taintnodesbycondition} 
+### TaintNodesByCondition {#taintnodesbycondition}
 
 {{< feature-state for_k8s_version="v1.17" state="stable" >}}
 
 <!--
-This admission controller {{< glossary_tooltip text="taints" term_id="taint" >}} newly created Nodes as `NotReady` and `NoSchedule`. That tainting avoids a race condition that could cause Pods to be scheduled on new Nodes before their taints were updated to accurately reflect their reported conditions.
+This admission controller {{< glossary_tooltip text="taints" term_id="taint" >}} newly created
+Nodes as `NotReady` and `NoSchedule`. That tainting avoids a race condition that could cause Pods
+to be scheduled on new Nodes before their taints were updated to accurately reflect their reported
+conditions.
 -->
-该准入控制器为新创建的节点添加 `NotReady` 和 `NoSchedule` 
-{{< glossary_tooltip text="污点" term_id="taint" >}}。
-这些污点能够避免一些竞态条件的发生，这类静态条件可能导致 Pod 在更新节点污点以准确
-反映其所报告状况之前，就被调度到新节点上。
+该准入控制器为新创建的节点添加 `NotReady` 和 `NoSchedule` {{< glossary_tooltip text="污点" term_id="taint" >}}。
+这些污点能够避免一些竞态条件的发生，而这类竞态条件可能导致 Pod
+在更新节点污点以准确反映其所报告状况之前，就被调度到新节点上。
 
 ### ValidatingAdmissionWebhook {#validatingadmissionwebhook} 
 
@@ -1369,18 +1333,18 @@ webhooks are called in parallel; if any of them rejects the request, the request
 fails. This admission controller only runs in the validation phase; the webhooks it calls may not
 mutate the object, as opposed to the webhooks called by the `MutatingAdmissionWebhook` admission controller.
 -->
-该准入控制器调用与请求匹配的所有验证 Webhook。
+此准入控制器调用与请求匹配的所有验证性 Webhook。
 匹配的 Webhook 将被并行调用。如果其中任何一个拒绝请求，则整个请求将失败。
-该准入控制器仅在验证（Validating）阶段运行；与 `MutatingAdmissionWebhook` 准入控制器
-所调用的 Webhook 相反，它调用的 Webhook 应该不会使对象出现变更。
+该准入控制器仅在验证（Validating）阶段运行；与 `MutatingAdmissionWebhook`
+准入控制器所调用的 Webhook 相反，它调用的 Webhook 不可以变更对象。
 
 <!--
 If a webhook called by this has side effects (for example, decrementing quota) it
 *must* have a reconciliation system, as it is not guaranteed that subsequent
 webhooks or other validating admission controllers will permit the request to finish.
 -->
-如果以此方式调用的 Webhook 有其它作用（如，降低配额），则它必须具有协调机制。
-这是因为无法保证后续的 Webhook 或其他有效的准入控制器都允许请求完成。
+如果以此方式调用的 Webhook 有其它副作用（如：减少配额），则它 **必须** 具有协调机制。
+这是因为无法保证后续的 Webhook 或其他验证性准入控制器都允许请求完成。
 
 <!--
 If you disable the ValidatingAdmissionWebhook, you must also disable the
@@ -1389,26 +1353,22 @@ group/version via the `--runtime-config` flag (both are on by default in
 versions 1.9 and later).
 -->
 如果你禁用了 ValidatingAdmissionWebhook，还必须通过 `--runtime-config` 标志来禁用
-`admissionregistration.k8s.io/v1` 组/版本中的  `ValidatingWebhookConfiguration`
-对象（默认情况下在 1.9 版和更高版本中均处于启用状态）。
-
+`admissionregistration.k8s.io/v1` 组/版本中的 `ValidatingWebhookConfiguration`
+对象（默认情况下在 v1.9 和更高版本中均处于启用状态）。
 
 <!--
 ## Is there a recommended set of admission controllers to use?
 
-Yes. The recommended admission controllers are enabled by default (shown [here](/docs/reference/command-line-tools-reference/kube-apiserver/#options)), so you do not need to explicitly specify them. You can enable additional admission controllers beyond the default set using the `--enable-admission-plugins` flag (**order doesn't matter**).
+Yes. The recommended admission controllers are enabled by default
+(shown [here](/docs/reference/command-line-tools-reference/kube-apiserver/#options)),
+so you do not need to explicitly specify them.
+You can enable additional admission controllers beyond the default set using the
+`--enable-admission-plugins` flag (**order doesn't matter**).
 -->
 ## 有推荐的准入控制器吗？
 
 有。推荐使用的准入控制器默认情况下都处于启用状态
-（请查看[这里](/zh/docs/reference/command-line-tools-reference/kube-apiserver/#options)）。
+（请查看[这里](/zh-cn/docs/reference/command-line-tools-reference/kube-apiserver/#options)）。
 因此，你无需显式指定它们。
 你可以使用 `--enable-admission-plugins` 标志（ **顺序不重要** ）来启用默认设置以外的其他准入控制器。
 
-{{< note >}}
-<!--
-`--admission-control` was deprecated in 1.10 and replaced with `--enable-admission-plugins`.
--->
-`--admission-control` 在 1.10 中已废弃，由 `--enable-admission-plugins` 取代。
-{{< /note >}}
-
diff --git a/content/zh/docs/reference/access-authn-authz/authentication.md b/content/zh-cn/docs/reference/access-authn-authz/authentication.md
similarity index 62%
rename from content/zh/docs/reference/access-authn-authz/authentication.md
rename to content/zh-cn/docs/reference/access-authn-authz/authentication.md
index 2d70848b8f..c9b05082b0 100644
--- a/content/zh/docs/reference/access-authn-authz/authentication.md
+++ b/content/zh-cn/docs/reference/access-authn-authz/authentication.md
@@ -47,26 +47,27 @@ Kubernetes 假定普通用户是由一个与集群无关的服务通过以下方
 - 类似 Keystone 或者 Google Accounts 这类用户数据库
 - 包含用户名和密码列表的文件
 
-有鉴于此，_Kubernetes 并不包含用来代表普通用户账号的对象_。
+有鉴于此，**Kubernetes 并不包含用来代表普通用户账号的对象**。
 普通用户的信息无法通过 API 调用添加到集群中。
 
 <!--
-Even though normal user cannot be added via an API call, but any user that
-presents a valid certificate signed by the cluster’s certificate authority
+Even though a normal user cannot be added via an API call, any user that
+presents a valid certificate signed by the cluster's certificate authority
 (CA) is considered authenticated. In this configuration, Kubernetes determines
-the username from the common name field in the ‘subject’ of the cert (e.g.,
-“/CN=bob”). From there, the role based access control (RBAC) sub-system would
+the username from the common name field in the 'subject' of the cert (e.g.,
+"/CN=bob"). From there, the role based access control (RBAC) sub-system would
 determine whether the user is authorized to perform a specific operation on a
 resource. For more details, refer to the normal users topic in
 [certificate request](/docs/reference/access-authn-authz/certificate-signing-requests/#normal-user)
 for more details about this.
 -->
-尽管无法通过 API 调用来添加普通用户，Kubernetes 仍然认为能够提供由集群的证书
-机构签名的合法证书的用户是通过身份认证的用户。基于这样的配置，Kubernetes
-使用证书中的 'subject' 的通用名称（Common Name）字段（例如，"/CN=bob"）来
-确定用户名。接下来，基于角色访问控制（RBAC）子系统会确定用户是否有权针对
-某资源执行特定的操作。进一步的细节可参阅
-[证书请求](/zh/docs/reference/access-authn-authz/certificate-signing-requests/#normal-user)
+尽管无法通过 API 调用来添加普通用户，
+Kubernetes 仍然认为能够提供由集群的证书机构签名的合法证书的用户是通过身份认证的用户。
+基于这样的配置，Kubernetes 使用证书中的 'subject' 的通用名称（Common Name）字段
+（例如，"/CN=bob"）来确定用户名。
+接下来，基于角色访问控制（RBAC）子系统会确定用户是否有权针对某资源执行特定的操作。
+进一步的细节可参阅
+[证书请求](/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests/#normal-user)
 下普通用户主题。
 
 <!--
@@ -83,29 +84,26 @@ of the control plane, must authenticate when making requests to the API server,
 or be treated as an anonymous user.
 -->
 与此不同，服务账号是 Kubernetes API 所管理的用户。它们被绑定到特定的名字空间，
-或者由 API 服务器自动创建，或者通过 API 调用创建。服务账号与一组以 Secret 保存
-的凭据相关，这些凭据会被挂载到 Pod 中，从而允许集群内的进程访问 Kubernetes
-API。
+或者由 API 服务器自动创建，或者通过 API 调用创建。服务账号与一组以 Secret
+保存的凭据相关，这些凭据会被挂载到 Pod 中，从而允许集群内的进程访问 Kubernetes API。
 
-API 请求则或者与某普通用户相关联，或者与某服务账号相关联，亦或者被视作
-[匿名请求](#anonymous-requests)。这意味着集群内外的每个进程在向 API 服务器发起
-请求时都必须通过身份认证，否则会被视作匿名用户。这里的进程可以是在某工作站上
-输入 `kubectl` 命令的操作人员，也可以是节点上的 `kubelet` 组件，还可以是控制面
-的成员。
+API 请求则或者与某普通用户相关联，或者与某服务账号相关联，
+亦或者被视作[匿名请求](#anonymous-requests)。这意味着集群内外的每个进程在向 API
+服务器发起请求时都必须通过身份认证，否则会被视作匿名用户。这里的进程可以是在某工作站上输入
+`kubectl` 命令的操作人员，也可以是节点上的 `kubelet` 组件，还可以是控制面的成员。
 
 <!--
 ## Authentication strategies
 
-Kubernetes uses client certificates, bearer tokens, an authenticating proxy, or HTTP basic auth to
+Kubernetes uses client certificates, bearer tokens, or an authenticating proxy to
 authenticate API requests through authentication plugins. As HTTP requests are
 made to the API server, plugins attempt to associate the following attributes
 with the request:
 -->
 ## 身份认证策略  {#authentication-strategies}
 
-Kubernetes 使用身份认证插件利用客户端证书、持有者令牌（Bearer Token）、身份认证代理（Proxy）
-或者 HTTP 基本认证机制来认证 API 请求的身份。HTTP 请求发给 API 服务器时，
-插件会将以下属性关联到请求本身：
+Kubernetes 通过身份认证插件利用客户端证书、持有者令牌（Bearer Token）或身份认证代理（Proxy）
+来认证 API 请求的身份。HTTP 请求发给 API 服务器时，插件会将以下属性关联到请求本身：
 
 <!--
 * Username: a string which identifies the end user. Common values might be `kube-admin` or `jane@example.com`.
@@ -117,8 +115,8 @@ Kubernetes 使用身份认证插件利用客户端证书、持有者令牌（Bea
 * 用户 ID：用来辩识最终用户的字符串，旨在比用户名有更好的一致性和唯一性。
 * 用户组：取值为一组字符串，其中各个字符串用来标明用户是某个命名的用户逻辑集合的成员。
   常见的值可能是 `system:masters` 或者 `devops-team` 等。
-* 附加字段：一组额外的键-值映射，键是字符串，值是一组字符串；用来保存一些鉴权组件可能
-  觉得有用的额外信息。
+* 附加字段：一组额外的键-值映射，键是字符串，值是一组字符串；
+  用来保存一些鉴权组件可能觉得有用的额外信息。
 
 <!--
 All values are opaque to the authentication system and only hold significance
@@ -126,12 +124,11 @@ when interpreted by an [authorizer](/docs/reference/access-authn-authz/authoriza
 
 You can enable multiple authentication methods at once. You should usually use at least two methods:
 
- - service account tokens for service accounts
- - at least one other method for user authentication.
+- service account tokens for service accounts
+- at least one other method for user authentication.
 -->
-所有（属性）值对于身份认证系统而言都是不透明的，只有被
-[鉴权组件](/zh/docs/reference/access-authn-authz/authorization/)
-解释过之后才有意义。
+所有（属性）值对于身份认证系统而言都是不透明的，
+只有被[鉴权组件](/zh-cn/docs/reference/access-authn-authz/authorization/)解释过之后才有意义。
 
 你可以同时启用多种身份认证方法，并且你通常会至少使用两种方法：
 
@@ -149,19 +146,19 @@ Integrations with other authentication protocols (LDAP, SAML, Kerberos, alternat
 can be accomplished using an [authenticating proxy](#authenticating-proxy) or the
 [authentication webhook](#webhook-token-authentication).
 -->
-当集群中启用了多个身份认证模块时，第一个成功地对请求完成身份认证的模块会
-直接做出评估决定。API 服务器并不保证身份认证模块的运行顺序。
+当集群中启用了多个身份认证模块时，第一个成功地对请求完成身份认证的模块会直接做出评估决定。
+API 服务器并不保证身份认证模块的运行顺序。
 
 对于所有通过身份认证的用户，`system:authenticated` 组都会被添加到其组列表中。
 
-与其它身份认证协议（LDAP、SAML、Kerberos、X509 的替代模式等等）都可以通过
-使用一个[身份认证代理](#authenticating-proxy)或
-[身份认证 Webhoook](#webhook-token-authentication)来实现。
+与其它身份认证协议（LDAP、SAML、Kerberos、X509 的替代模式等等）
+都可以通过使用一个[身份认证代理](#authenticating-proxy)或[身份认证 Webhoook](#webhook-token-authentication)
+来实现。
 
 <!--
 ### X509 Client Certs
 
-Client certificate authentication is enabled by passing the `-client-ca-file=SOMEFILE`
+Client certificate authentication is enabled by passing the `--client-ca-file=SOMEFILE`
 option to API server. The referenced file must contain one or more certificate authorities
 to use to validate client certificates presented to the API server. If a client certificate
 is presented and verified, the common name of the subject is used as the user name for the
@@ -175,8 +172,8 @@ For example, using the `openssl` command line tool to generate a certificate sig
 
 通过给 API 服务器传递 `--client-ca-file=SOMEFILE` 选项，就可以启动客户端证书身份认证。
 所引用的文件必须包含一个或者多个证书机构，用来验证向 API 服务器提供的客户端证书。
-如果提供了客户端证书并且证书被验证通过，则 subject 中的公共名称（Common Name）就被
-作为请求的用户名。
+如果提供了客户端证书并且证书被验证通过，则 subject 中的公共名称（Common Name）
+就被作为请求的用户名。
 自 Kubernetes 1.4 开始，客户端证书还可以通过证书的 organization 字段标明用户的组成员信息。
 要包含用户的多个组成员信息，可以在证书种包含多个 organization 字段。
 
@@ -189,39 +186,34 @@ openssl req -new -key jbeda.pem -out jbeda-csr.pem -subj "/CN=jbeda/O=app1/O=app
 <!--
 This would create a CSR for the username "jbeda", belonging to two groups, "app1" and "app2".
 
-See [Managing Certificates](/docs/concepts/cluster-administration/certificates/) for how to generate a client cert.
+See [Managing Certificates](/docs/tasks/administer-cluster/certificates/) for how to generate a client cert.
 -->
 此命令将使用用户名 `jbeda` 生成一个证书签名请求（CSR），且该用户属于 "app" 和
 "app2" 两个用户组。
 
-参阅[管理证书](/zh/docs/concepts/cluster-administration/certificates/)了解如何生成客户端证书。
+参阅[管理证书](/zh-cn/docs/tasks/administer-cluster/certificates/)了解如何生成客户端证书。
 
 <!--
 ### Static Token File
 
-The API server reads bearer tokens from a file when given the `-token-auth-file=SOMEFILE` option on the command line.  Currently, tokens last indefinitely, and the token list cannot be
-changed without restarting API server.
+The API server reads bearer tokens from a file when given the `--token-auth-file=SOMEFILE` option on the command line.  Currently, tokens last indefinitely, and the token list cannot be
+changed without restarting the API server.
 
 The token file is a csv file with a minimum of 3 columns: token, user name, user uid,
 followed by optional group names.
 -->
 ### 静态令牌文件  {#static-token-file}
 
-当 API 服务器的命令行设置了 `--token-auth-file=SOMEFILE` 选项时，会从文件中
-读取持有者令牌。目前，令牌会长期有效，并且在不重启 API 服务器的情况下
-无法更改令牌列表。
+当 API 服务器的命令行设置了 `--token-auth-file=SOMEFILE` 选项时，会从文件中读取持有者令牌。
+目前，令牌会长期有效，并且在不重启 API 服务器的情况下无法更改令牌列表。
 
 令牌文件是一个 CSV 文件，包含至少 3 个列：令牌、用户名和用户的 UID。
 其余列被视为可选的组名。
 
+{{< note >}}
 <!--
 If you have more than one group the column must be double quoted e.g.
-
-```conf
-token,user,uid,"group1,group2,group3"
-```
 -->
-{{< note >}}
 如果要设置的组名不止一个，则对应的列必须用双引号括起来，例如
 
 ```conf
@@ -234,7 +226,7 @@ token,user,uid,"group1,group2,group3"
 
 When using bearer token authentication from an http client, the API
 server expects an `Authorization` header with a value of `Bearer
-THETOKEN`.  The bearer token must be a character sequence that can be
+<token>`.  The bearer token must be a character sequence that can be
 put in an HTTP header value using no more than the encoding and
 quoting facilities of HTTP.  For example: if the bearer token is
 `31ada4fd-adec-460c-809a-9e56ceb75269` then it would appear in an HTTP
@@ -242,12 +234,10 @@ header as shown below.
 -->
 #### 在请求中放入持有者令牌   {#putting-a-bearer-token-in-a-request}
 
-当使用持有者令牌来对某 HTTP 客户端执行身份认证时，API 服务器希望看到
-一个名为 `Authorization` 的 HTTP 头，其值格式为 `Bearer THETOKEN`。
-持有者令牌必须是一个可以放入 HTTP 头部值字段的字符序列，至多可使用
-HTTP 的编码和引用机制。
-例如：如果持有者令牌为 `31ada4fd-adec-460c-809a-9e56ceb75269`，则其
-出现在 HTTP 头部时如下所示：
+当使用持有者令牌来对某 HTTP 客户端执行身份认证时，API 服务器希望看到一个名为
+`Authorization` 的 HTTP 头，其值格式为 `Bearer <token>`。
+持有者令牌必须是一个可以放入 HTTP 头部值字段的字符序列，至多可使用 HTTP 的编码和引用机制。
+例如：如果持有者令牌为 `31ada4fd-adec-460c-809a-9e56ceb75269`，则其出现在 HTTP 头部时如下所示：
 
 ```http
 Authorization: Bearer 31ada4fd-adec-460c-809a-9e56ceb75269
@@ -268,7 +258,7 @@ dynamically managed and created. Controller Manager contains a TokenCleaner
 controller that deletes bootstrap tokens as they expire.
 -->
 为了支持平滑地启动引导新的集群，Kubernetes 包含了一种动态管理的持有者令牌类型，
-称作 *启动引导令牌（Bootstrap Token）*。
+称作 **启动引导令牌（Bootstrap Token）**。
 这些令牌以 Secret 的形式保存在 `kube-system` 名字空间中，可以被动态管理和创建。
 控制器管理器包含的 `TokenCleaner` 控制器能够在启动引导令牌过期时将其删除。
 
@@ -277,8 +267,8 @@ The tokens are of the form `[a-z0-9]{6}.[a-z0-9]{16}`.  The first component is a
 Token ID and the second component is the Token Secret.  You specify the token
 in an HTTP header as follows:
 -->
-这些令牌的格式为 `[a-z0-9]{6}.[a-z0-9]{16}`。第一个部分是令牌的 ID；第二个部分
-是令牌的 Secret。你可以用如下所示的方式来在 HTTP 头部设置令牌：
+这些令牌的格式为 `[a-z0-9]{6}.[a-z0-9]{16}`。第一个部分是令牌的 ID；
+第二个部分是令牌的 Secret。你可以用如下所示的方式来在 HTTP 头部设置令牌：
 
 ```http
 Authorization: Bearer 781292.db7bc3a58fc5f07e
@@ -291,8 +281,7 @@ the TokenCleaner controller via the `-controllers` flag on the Controller
 Manager.  This is done with something like `-controllers=*,tokencleaner`.
 `kubeadm` will do this for you if you are using it to bootstrap a cluster.
 -->
-你必须在 API 服务器上设置 `--enable-bootstrap-token-auth` 标志来启用基于启动
-引导令牌的身份认证组件。
+你必须在 API 服务器上设置 `--enable-bootstrap-token-auth` 标志来启用基于启动引导令牌的身份认证组件。
 你必须通过控制器管理器的 `--controllers` 标志来启用 TokenCleaner 控制器；
 这可以通过类似 `--controllers=*,tokencleaner` 这种设置来做到。
 如果你使用 `kubeadm` 来启动引导新的集群，该工具会帮你完成这些设置。
@@ -307,17 +296,16 @@ cluster.
 -->
 身份认证组件的认证结果为 `system:bootstrap:<令牌 ID>`，该用户属于
 `system:bootstrappers` 用户组。
-这里的用户名和组设置都是有意设计成这样，其目的是阻止用户在启动引导集群之后
-继续使用这些令牌。
-这里的用户名和组名可以用来（并且已经被 `kubeadm` 用来）构造合适的鉴权
-策略，以完成启动引导新集群的工作。
+这里的用户名和组设置都是有意设计成这样，其目的是阻止用户在启动引导集群之后继续使用这些令牌。
+这里的用户名和组名可以用来（并且已经被 `kubeadm` 用来）构造合适的鉴权策略，
+以完成启动引导新集群的工作。
 
 <!--
 Please see [Bootstrap Tokens](/docs/reference/access-authn-authz/bootstrap-tokens/) for in depth
 documentation on the Bootstrap Token authenticator and controllers along with
 how to manage these tokens with `kubeadm`.
 -->
-请参阅[启动引导令牌](/zh/docs/reference/access-authn-authz/bootstrap-tokens/)
+请参阅[启动引导令牌](/zh-cn/docs/reference/access-authn-authz/bootstrap-tokens/)
 以了解关于启动引导令牌身份认证组件与控制器的更深入的信息，以及如何使用
 `kubeadm` 来管理这些令牌。
 
@@ -333,8 +321,8 @@ If unspecified, the API server's TLS private key will be used.
 -->
 ### 服务账号令牌   {#service-account-tokens}
 
-服务账号（Service Account）是一种自动被启用的用户认证机制，使用经过签名的
-持有者令牌来验证请求。该插件可接受两个可选参数：
+服务账号（Service Account）是一种自动被启用的用户认证机制，使用经过签名的持有者令牌来验证请求。
+该插件可接受两个可选参数：
 
 * `--service-account-key-file` 一个包含用来为持有者令牌签名的 PEM 编码密钥。
   若未指定，则使用 API 服务器的 TLS 私钥。
@@ -349,15 +337,15 @@ talk to the API server. Accounts may be explicitly associated with pods using th
 `serviceAccountName` field of a `PodSpec`.
 -->
 服务账号通常由 API 服务器自动创建并通过 `ServiceAccount`
-[准入控制器](/zh/docs/reference/access-authn-authz/admission-controllers/)
+[准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/)
 关联到集群中运行的 Pod 上。
 持有者令牌会挂载到 Pod 中可预知的位置，允许集群内进程与 API 服务器通信。
 服务账号也可以使用 Pod 规约的 `serviceAccountName` 字段显式地关联到 Pod 上。
 
+{{< note >}}
 <!--
 `serviceAccountName` is usually omitted because this is done automatically.
 -->
-{{< note >}}
 `serviceAccountName` 通常会被忽略，因为关联关系是自动建立的。
 {{< /note >}}
 
@@ -382,21 +370,21 @@ spec:
 <!--
 Service account bearer tokens are perfectly valid to use outside the cluster and
 can be used to create identities for long standing jobs that wish to talk to the
-Kubernetes API. To manually create a service account, simply use the `kubectl
-create serviceaccount (NAME)` command. This creates a service account in the
-current namespace and an associated secret.
+Kubernetes API. To manually create a service account, use the `kubectl create
+serviceaccount (NAME)` command. This creates a service account in the current
+namespace and an associated secret.
 -->
-在集群外部使用服务账号持有者令牌也是完全合法的，且可用来为长时间运行的、需要与
-Kubernetes  API 服务器通信的任务创建标识。要手动创建服务账号，可以使用
-`kubectl create serviceaccount <名称>` 命令。此命令会在当前的名字空间中生成一个
-服务账号和一个与之关联的 Secret。
+在集群外部使用服务账号持有者令牌也是完全合法的，且可用来为长时间运行的、需要与 Kubernetes
+API 服务器通信的任务创建标识。要手动创建服务账号，可以使用
+`kubectl create serviceaccount <名称>` 命令。
+此命令会在当前的名字空间中生成一个服务账号和一个与之关联的 Secret。
 
 ```bash
 kubectl create serviceaccount jenkins
 ```
 
 ```
-serviceaccount/jenkins created
+serviceaccount "jenkins" created
 ```
 
 <!--
@@ -421,8 +409,7 @@ secrets:
 The created secret holds the public CA of the API server and a signed JSON Web
 Token (JWT).
 -->
-所创建的 Secret 中会保存 API 服务器的公开的 CA 证书和一个已签名的 JSON Web
-令牌（JWT）。
+所创建的 Secret 中会保存 API 服务器的公开的 CA 证书和一个已签名的 JSON Web 令牌（JWT）。
 
 ```bash
 kubectl get secret jenkins-token-1yvwg -o yaml
@@ -453,10 +440,10 @@ metadata:
 type: kubernetes.io/service-account-token
 ```
 
+{{< note >}}
 <!--
 Values are base64 encoded because secrets are always base64 encoded.
 -->
-{{< note >}}
 字段值是按 Base64 编码的，这是因为 Secret 数据总是采用 Base64 编码来存储。
 {{< /note >}}
 
@@ -482,8 +469,8 @@ when granting permissions to service accounts and read capabilities for secrets.
 服务账号被身份认证后，所确定的用户名为 `system:serviceaccount:<名字空间>:<服务账号>`，
 并被分配到用户组 `system:serviceaccounts` 和 `system:serviceaccounts:<名字空间>`。
 
-警告：由于服务账号令牌保存在 Secret 对象中，任何能够读取这些 Secret 的用户
-都可以被认证为对应的服务账号。在为用户授予访问服务账号的权限时，以及对 Secret
+警告：由于服务账号令牌保存在 Secret 对象中，任何能够读取这些 Secret
+的用户都可以被认证为对应的服务账号。在为用户授予访问服务账号的权限时，以及对 Secret
 的读权限时，要格外小心。
 
 <!--
@@ -512,8 +499,8 @@ as a bearer token.  See [above](#putting-a-bearer-token-in-a-request) for how th
 is included in a request.
 -->
 要识别用户，身份认证组件使用 OAuth2
-[令牌响应](https://openid.net/specs/openid-connect-core-1_0.html#TokenResponse)
-中的 `id_token`（而非 `access_token`）作为持有者令牌。
+[令牌响应](https://openid.net/specs/openid-connect-core-1_0.html#TokenResponse)中的
+`id_token`（而非 `access_token`）作为持有者令牌。
 关于如何在请求中设置令牌，可参见[前文](#putting-a-bearer-token-in-a-request)。
 
 {{< mermaid >}}
@@ -568,25 +555,23 @@ sequenceDiagram
 
 <!--
 Since all of the data needed to validate who you are is in the `id_token`, Kubernetes doesn't need to
-"phone home" to the identity provider.  In a model where every request is stateless this provides a very scalable
-solution for authentication.  It does offer a few challenges:
+"phone home" to the identity provider.  In a model where every request is stateless this provides a very scalable solution for authentication.  It does offer a few challenges:
 -->
-由于用来验证你是谁的所有数据都在 `id_token` 中，Kubernetes 不需要再去联系
-身份服务。在一个所有请求都是无状态请求的模型中，这一工作方式可以使得身份认证
-的解决方案更容易处理大规模请求。不过，此访问也有一些挑战：
+由于用来验证你是谁的所有数据都在 `id_token` 中，Kubernetes 不需要再去联系身份服务。
+在一个所有请求都是无状态请求的模型中，这一工作方式可以使得身份认证的解决方案更容易处理大规模请求。
+不过，此访问也有一些挑战：
 
 <!--
-1.  Kubernetes has no "web interface" to trigger the authentication process.  There is no browser or interface to collect credentials which is why you need to authenticate to your identity provider first.
-2.  The `id_token` can't be revoked, it's like a certificate so it should be short-lived (only a few minutes) so it can be very annoying to have to get a new token every few minutes.
-3.  There's no easy way to authenticate to the Kubernetes dashboard without using the `kubectl proxy` command or a reverse proxy that injects the `id_token`.
+1. Kubernetes has no "web interface" to trigger the authentication process.  There is no browser or interface to collect credentials which is why you need to authenticate to your identity provider first.
+2. The `id_token` can't be revoked, it's like a certificate so it should be short-lived (only a few minutes) so it can be very annoying to have to get a new token every few minutes.
+3. To authenticate to the Kubernetes dashboard, you must use the `kubectl proxy` command or a reverse proxy that injects the `id_token`.
 -->
-1.  Kubernetes 没有提供用来触发身份认证过程的 "Web 界面"。
-    因为不存在用来收集用户凭据的浏览器或用户接口，你必须自己先行完成
-    对身份服务的认证过程。
-2.  `id_token` 令牌不可收回。因其属性类似于证书，其生命期一般很短（只有几分钟），
-    所以，每隔几分钟就要获得一个新的令牌这件事可能很让人头疼。
-3.  如果不使用 `kubectl proxy` 命令或者一个能够注入 `id_token` 的反向代理，
-    向 Kubernetes 控制面板执行身份认证是很困难的。
+1. Kubernetes 没有提供用来触发身份认证过程的 "Web 界面"。
+   因为不存在用来收集用户凭据的浏览器或用户接口，你必须自己先行完成对身份服务的认证过程。
+2. `id_token` 令牌不可收回。因其属性类似于证书，其生命期一般很短（只有几分钟），
+   所以，每隔几分钟就要获得一个新的令牌这件事可能很让人头疼。
+3. 如果需要向 Kubernetes 控制面板执行身份认证，你必须使用 `kubectl proxy`
+   命令或者一个能够注入 `id_token` 的反向代理。
 
 <!--
 #### Configuring the API Server
@@ -629,9 +614,8 @@ wish to utilize multiple OAuth clients should explore providers which support th
 `azp` (authorized party) claim, a mechanism for allowing one client to issue
 tokens on behalf of another.
 -->
-很重要的一点是，API 服务器并非一个 OAuth2 客户端，相反，它只能被配置为
-信任某一个令牌发放者。这使得使用公共服务（如 Google）的用户可以不信任发放给
-第三方的凭据。
+很重要的一点是，API 服务器并非一个 OAuth2 客户端，相反，它只能被配置为信任某一个令牌发放者。
+这使得使用公共服务（如 Google）的用户可以不信任发放给第三方的凭据。
 如果管理员希望使用多个 OAuth 客户端，他们应该研究一下那些支持 `azp`
 （Authorized Party，被授权方）申领的服务。
 `azp` 是一种允许某客户端代替另一客户端发放令牌的机制。
@@ -643,17 +627,16 @@ You can use an existing public OpenID Connect Identity Provider (such as Google,
 Or, you can run your own Identity Provider, such as CoreOS [dex](https://github.com/coreos/dex),
 [Keycloak](https://github.com/keycloak/keycloak),
 CloudFoundry [UAA](https://github.com/cloudfoundry/uaa), or
-Tremolo Security's [OpenUnison](https://github.com/tremolosecurity/openunison).
+Tremolo Security's [OpenUnison](https://openunison.github.io/).
 -->
 Kubernetes 并未提供 OpenID Connect 的身份服务。
-你可以使用现有的公共的 OpenID Connect 身份服务（例如 Google 或者
-[其他服务](https://connect2id.com/products/nimbus-oauth-openid-connect-sdk/openid-connect-providers)）。
+你可以使用现有的公共的 OpenID Connect 身份服务
+（例如 Google 或者[其他服务](https://connect2id.com/products/nimbus-oauth-openid-connect-sdk/openid-connect-providers)）。
 或者，你也可以选择自己运行一个身份服务，例如
 CoreOS [dex](https://github.com/coreos/dex)、
 [Keycloak](https://github.com/keycloak/keycloak)、
 CloudFoundry [UAA](https://github.com/cloudfoundry/uaa) 或者
-Tremolo Security 的
-[OpenUnison](https://github.com/tremolosecurity/openunison)。
+Tremolo Security 的 [OpenUnison](https://openunison.github.io/)。
 
 <!--
 For an identity provider to work with Kubernetes it must:
@@ -676,12 +659,10 @@ Or you can use [this similar script](https://raw.githubusercontent.com/TremoloSe
 关于上述第三条需求，即要求具备 CA 签名的证书，有一些额外的注意事项。
 如果你部署了自己的身份服务，而不是使用云厂商（如 Google 或 Microsoft）所提供的服务，
 你必须对身份服务的 Web 服务器证书进行签名，签名所用证书的 `CA` 标志要设置为
-`TRUE`，即使用的是自签名证书。这是因为 GoLang 的 TLS 客户端实现对证书验证
-标准方面有非常严格的要求。如果你手头没有现成的 CA 证书，可以使用 CoreOS
+`TRUE`，即使用的是自签名证书。这是因为 GoLang 的 TLS 客户端实现对证书验证标准方面有非常严格的要求。如果你手头没有现成的 CA 证书，可以使用 CoreOS
 团队所开发的[这个脚本](https://github.com/dexidp/dex/blob/master/examples/k8s/gencert.sh)
 来创建一个简单的 CA 和被签了名的证书与密钥对。
-或者你也可以使用
-[这个类似的脚本](https://raw.githubusercontent.com/TremoloSecurity/openunison-qs-kubernetes/master/src/main/bash/makessl.sh)，
+或者你也可以使用[这个类似的脚本](https://raw.githubusercontent.com/TremoloSecurity/openunison-qs-kubernetes/master/src/main/bash/makessl.sh)，
 生成一个合法期更长、密钥尺寸更大的 SHA256 证书。
 
 <!--
@@ -704,10 +685,10 @@ Providers that don't return an `id_token` as part of their refresh token respons
 -->
 #### 使用 kubectl   {#using-kubectl}
 
-##### 选项一 - OIDC 身份认证组件
+##### 选项一：OIDC 身份认证组件
 
-第一种方案是使用 kubectl 的 `oidc` 身份认证组件，该组件将 `id_token` 设置
-为所有请求的持有者令牌，并且在令牌过期时自动刷新。在你登录到你的身份服务之后，
+第一种方案是使用 kubectl 的 `oidc` 身份认证组件，该组件将 `id_token` 设置为所有请求的持有者令牌，
+并且在令牌过期时自动刷新。在你登录到你的身份服务之后，
 可以使用 kubectl 来添加你的 `id_token`、`refresh_token`、`client_id` 和
 `client_secret`，以配置该插件。
 
@@ -765,15 +746,15 @@ users:
 Once your `id_token` expires, `kubectl` will attempt to refresh your `id_token` using your `refresh_token` and `client_secret` storing the new values for the `refresh_token` and `id_token` in your `.kube/config`.
 -->
 当你的 `id_token` 过期时，`kubectl` 会尝试使用你的 `refresh_token` 来刷新你的
-`id_token`，并且在 `client_secret` 中存放 `refresh_token` 的新值，同时把
-`id_token` 的新值写入到 `.kube/config` 文件中。
+`id_token`，并且在 `.kube/config` 文件的 `client_secret` 中存放 `refresh_token`
+和 `id_token` 的新值。
 
 <!--
 ##### Option 2 - Use the `--token` Option
 
-The `kubectl` command lets you pass in a token using the `--token` option.  Simply copy and paste the `id_token` into this option:
+The `kubectl` command lets you pass in a token using the `--token` option. Copy and paste the `id_token` into this option:
 -->
-##### 选项二 - 使用 `--token` 选项
+##### 选项二：使用 `--token` 选项
 
 `kubectl` 命令允许你使用 `--token` 选项传递一个令牌。
 你可以将 `id_token` 的内容复制粘贴过来，作为此标志的取值：
@@ -794,8 +775,8 @@ Webhook authentication is a hook for verifying bearer tokens.
 
 Webhook 身份认证是一种用来验证持有者令牌的回调机制。
 
-* `--authentication-token-webhook-config-file` 指向一个配置文件，其中描述
-  如何访问远程的 Webhook 服务。
+* `--authentication-token-webhook-config-file` 指向一个配置文件，
+  其中描述如何访问远程的 Webhook 服务。
 * `--authentication-token-webhook-cache-ttl` 用来设定身份认证决定的缓存时间。
   默认时长为 2 分钟。
 
@@ -804,7 +785,7 @@ The configuration file uses the [kubeconfig](/docs/concepts/configuration/organi
 file format. Within the file, `clusters` refers to the remote service and
 `users` refers to the API server webhook. An example would be:
 -->
-配置文件使用 [kubeconfig](/zh/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
+配置文件使用 [kubeconfig](/zh-cn/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
 文件的格式。文件中，`clusters` 指代远程服务，`users` 指代远程 API 服务
 Webhook。下面是一个例子：
 
@@ -819,7 +800,7 @@ clusters:
   - name: name-of-remote-authn-service
     cluster:
       certificate-authority: /path/to/ca.pem         # CA for verifying the remote service.
-      server: https://authn.example.com/authenticate # URL of remote service to query. Must use 'https'.
+      server: https://authn.example.com/authenticate # URL of remote service to query. 'https' recommended for production.
 
 # users refers to the API server's webhook configuration.
 users:
@@ -833,7 +814,7 @@ current-context: webhook
 contexts:
 - context:
     cluster: name-of-remote-authn-service
-    user: name-of-api-sever
+    user: name-of-api-server
   name: webhook
 ```
 -->
@@ -847,7 +828,7 @@ clusters:
   - name: name-of-remote-authn-service
     cluster:
       certificate-authority: /path/to/ca.pem         # 用来验证远程服务的 CA
-      server: https://authn.example.com/authenticate # 要查询的远程服务 URL。必须使用 'https'。
+      server: https://authn.example.com/authenticate # 要查询的远程服务 URL。生产环境中建议使用 'https'。
 
 # users 指代 API 服务的 Webhook 配置
 users:
@@ -861,116 +842,199 @@ current-context: webhook
 contexts:
 - context:
     cluster: name-of-remote-authn-service
-    user: name-of-api-sever
+    user: name-of-api-server
   name: webhook
 ```
 
 <!--
-When a client attempts to authenticate with the API server using a bearer token
-as discussed [above](#putting-a-bearer-token-in-a-request),
-the authentication webhook POSTs a JSON-serialized `authentication.k8s.io/v1beta1` `TokenReview` object containing the token
-to the remote service. Kubernetes will not challenge a request that lacks such a header.
+When a client attempts to authenticate with the API server using a bearer token as discussed [above](#putting-a-bearer-token-in-a-request),
+the authentication webhook POSTs a JSON-serialized `TokenReview` object containing the token to the remote service.
 -->
-当客户端尝试在 API 服务器上使用持有者令牌完成身份认证（
-如[前](#putting-a-bearer-token-in-a-request)所述）时，
+当客户端尝试在 API 服务器上使用持有者令牌完成身份认证
+（如[前](#putting-a-bearer-token-in-a-request)所述）时，
 身份认证 Webhook 会用 POST 请求发送一个 JSON 序列化的对象到远程服务。
-该对象是 `authentication.k8s.io/v1beta1` 组的 `TokenReview` 对象，
-其中包含持有者令牌。
+该对象是 `TokenReview` 对象，其中包含持有者令牌。
 Kubernetes 不会强制请求提供此 HTTP 头部。
 
 <!--
-Note that webhook API objects are subject to the same [versioning compatibility rules](/docs/concepts/overview/kubernetes-api/)
-as other Kubernetes API objects. Implementers should be aware of looser
-compatibility promises for beta objects and check the "apiVersion" field of the
-request to ensure correct deserialization. Additionally, the API server must
-enable the `authentication.k8s.io/v1beta1` API extensions group (`--runtime-config=authentication.k8s.io/v1beta1=true`).
-
-The POST body will be of the following format:
+Note that webhook API objects are subject to the same [versioning compatibility rules](/docs/concepts/overview/kubernetes-api/) as other Kubernetes API objects.
+Implementers should check the `apiVersion` field of the request to ensure correct deserialization,
+and **must** respond with a `TokenReview` object of the same version as the request.
 -->
-要注意的是，Webhook API 对象和其他 Kubernetes API 对象一样，也要受到同一
-[版本兼容规则](/zh/docs/concepts/overview/kubernetes-api/)约束。
-实现者要了解对 Beta 阶段对象的兼容性承诺，并检查请求的 `apiVersion` 字段，
-以确保数据结构能够正常反序列化解析。此外，API 服务器必须启用
-`authentication.k8s.io/v1beta1` API 扩展组
-（`--runtime-config=authentication.k8s.io/v1beta1=true`）。
+要注意的是，Webhook API 对象和其他 Kubernetes API 对象一样，
+也要受到同一[版本兼容规则](/zh-cn/docs/concepts/overview/kubernetes-api/)约束。
+实现者应检查请求的 `apiVersion` 字段以确保正确的反序列化，
+并且 **必须** 以与请求相同版本的 `TokenReview` 对象进行响应。
 
-POST 请求的 Body 部分将是如下格式：
 
+{{< tabs name="TokenReview_request" >}}
+{{% tab name="authentication.k8s.io/v1" %}}
+{{< note >}}
 <!--
-```json
+The Kubernetes API server defaults to sending `authentication.k8s.io/v1beta1` token reviews for backwards compatibility.
+To opt into receiving `authentication.k8s.io/v1` token reviews, the API server must be started with `--authentication-token-webhook-version=v1`.
+-->
+Kubernetes API 服务器默认发送 `authentication.k8s.io/v1beta1` 令牌以实现向后兼容性。
+要选择接收 `authentication.k8s.io/v1` 令牌认证，API 服务器必须带着参数
+`--authentication-token-webhook-version=v1` 启动。
+{{< /note >}}
+
+```yaml
+{
+  "apiVersion": "authentication.k8s.io/v1",
+  "kind": "TokenReview",
+  "spec": {
+   # 发送到 API 服务器的不透明持有者令牌
+    "token": "014fbff9a07c...",
+   
+    # 提供令牌的服务器的受众标识符的可选列表。
+    # 受众感知令牌验证器（例如，OIDC 令牌验证器）
+    # 应验证令牌是否针对此列表中的至少一个受众，
+    # 并返回此列表与响应状态中令牌的有效受众的交集。
+    # 这确保了令牌对于向其提供给的服务器进行身份验证是有效的。
+    # 如果未提供受众，则应验证令牌以向 Kubernetes API 服务器进行身份验证。
+    "audiences": ["https://myserver.example.com", "https://myserver.internal.example.com"]
+  }
+}
+```
+{{% /tab %}}
+{{% tab name="authentication.k8s.io/v1beta1" %}}
+```yaml
 {
   "apiVersion": "authentication.k8s.io/v1beta1",
   "kind": "TokenReview",
   "spec": {
-    "token": "(BEARERTOKEN)"
-  }
-}
-```
--->
-```json
-{
-  "apiVersion": "authentication.k8s.io/v1beta1",
-  "kind": "TokenReview",
-  "spec": {
-    "token": "<持有者令牌>"
+    # 发送到 API 服务器的不透明匿名令牌
+    "token": "014fbff9a07c...",
+   
+    # 提供令牌的服务器的受众标识符的可选列表。
+    # 受众感知令牌验证器（例如，OIDC 令牌验证器）
+    # 应验证令牌是否针对此列表中的至少一个受众，
+    # 并返回此列表与响应状态中令牌的有效受众的交集。
+    # 这确保了令牌对于向其提供给的服务器进行身份验证是有效的。
+    # 如果未提供受众，则应验证令牌以向 Kubernetes API 服务器进行身份验证。
+    "audiences": ["https://myserver.example.com", "https://myserver.internal.example.com"]
   }
 }
 ```
+{{% /tab %}}
+{{< /tabs >}}
 
 <!--
-The remote service is expected to fill the `status` field of
-the request to indicate the success of the login. The response body's `spec`
-field is ignored and may be omitted. A successful validation of the bearer
-token would return:
+The remote service is expected to fill the `status` field of the request to indicate the success of the login.
+The response body's `spec` field is ignored and may be omitted.
+The remote service must return a response using the same `TokenReview` API version that it received.
+A successful validation of the bearer token would return:
 -->
-远程服务应该会填充请求的 `status` 字段，以标明登录操作是否成功。
-响应的 Body 中的 `spec` 字段会被忽略，因此可以省略。
-如果持有者令牌验证成功，应该返回如下所示的响应：
+远程服务预计会填写请求的 `status` 字段以指示登录成功。
+响应正文的 `spec` 字段被忽略并且可以省略。
+远程服务必须使用它收到的相同 `TokenReview` API 版本返回响应。
+持有者令牌的成功验证将返回：
 
-```json
+{{< tabs name="TokenReview_response_success" >}}
+{{% tab name="authentication.k8s.io/v1" %}}
+```yaml
 {
-  "apiVersion": "authentication.k8s.io/v1beta1",
+  "apiVersion": "authentication.k8s.io/v1",
   "kind": "TokenReview",
   "status": {
     "authenticated": true,
     "user": {
+      # 必要
       "username": "janedoe@example.com",
+      # 可选
       "uid": "42",
-      "groups": [
-        "developers",
-        "qa"
-      ],
+      # 可选的组成员身份
+      "groups": ["developers", "qa"],
+      # 认证者提供的可选附加信息。
+      # 此字段不可包含机密数据，因为这类数据可能被记录在日志或 API 对象中，
+      # 并且可能传递给 admission webhook。
       "extra": {
         "extrafield1": [
           "extravalue1",
           "extravalue2"
         ]
       }
-    }
+    },
+    # 验证器可以返回的、可选的用户感知令牌列表，
+    # 包含令牌对其有效的、包含于 `spec.audiences` 列表中的受众。
+    # 如果省略，则认为该令牌可用于对 Kubernetes API 服务器进行身份验证。
+    "audiences": ["https://myserver.example.com"]
   }
 }
 ```
+{{% /tab %}}
+{{% tab name="authentication.k8s.io/v1beta1" %}}
+```yaml
+{
+  "apiVersion": "authentication.k8s.io/v1beta1",
+  "kind": "TokenReview",
+  "status": {
+    "authenticated": true,
+    "user": {
+      # 必要
+      "username": "janedoe@example.com",
+      # 可选
+      "uid": "42",
+      # 可选的组成员身份
+      "groups": ["developers", "qa"],
+      # 认证者提供的可选附加信息。
+      # 此字段不可包含机密数据，因为这类数据可能被记录在日志或 API 对象中，
+      # 并且可能传递给 admission webhook。
+      "extra": {
+        "extrafield1": [
+          "extravalue1",
+          "extravalue2"
+        ]
+      }
+    },
+    # 验证器可以返回的、可选的用户感知令牌列表，
+    # 包含令牌对其有效的、包含于 `spec.audiences` 列表中的受众。
+    # 如果省略，则认为该令牌可用于对 Kubernetes API 服务器进行身份验证。
+    "audiences": ["https://myserver.example.com"]
+  }
+}
+```
+{{% /tab %}}
+{{< /tabs >}}
 
 <!--
 An unsuccessful request would return:
 -->
 而不成功的请求会返回：
 
-```json
+{{< tabs name="TokenReview_response_error" >}}
+{{% tab name="authentication.k8s.io/v1" %}}
+```yaml
+{
+  "apiVersion": "authentication.k8s.io/v1",
+  "kind": "TokenReview",
+  "status": {
+    "authenticated": false,
+    # 可选地包括有关身份验证失败原因的详细信息。
+    # 如果没有提供错误信息，API 将返回一个通用的 Unauthorized 消息。
+    # 当 authenticated=true 时，error 字段被忽略。
+    "error": "Credentials are expired"
+  }
+}
+```
+{{% /tab %}}
+{{% tab name="authentication.k8s.io/v1beta1" %}}
+```yaml
 {
   "apiVersion": "authentication.k8s.io/v1beta1",
   "kind": "TokenReview",
   "status": {
-    "authenticated": false
+    "authenticated": false,
+    # 可选地包括有关身份验证失败原因的详细信息。
+    # 如果没有提供错误信息，API 将返回一个通用的 Unauthorized 消息。
+    # 当 authenticated=true 时，error 字段被忽略。
+    "error": "Credentials are expired"
   }
 }
 ```
-
-<!--
-HTTP status codes can be used to supply additional error context.
--->
-HTTP 状态码可用来提供进一步的错误语境信息。
-
+{{% /tab %}}
+{{< /tabs >}}
 <!--
 ### Authenticating Proxy
 
@@ -985,24 +1049,26 @@ API 服务器可以配置成从请求的头部字段值（如 `X-Remote-User`）
 <!--
 * `--requestheader-username-headers` Required, case-insensitive. Header names to check, in order, for the user identity. The first header containing a value is used as the username.
 * `--requestheader-group-headers` 1.6+. Optional, case-insensitive. "X-Remote-Group" is suggested. Header names to check, in order, for the user's groups. All values in all specified headers are used as group names.
-* `-requestheader-extra-headers-prefix` 1.6+. Optional, case-insensitive. "X-Remote-Extra-" is suggested. Header prefixes to look for to determine extra information about the user (typically used by the configured authorization plugin). Any headers beginning with any of the specified prefixes have the prefix removed. The remainder of the header name is lowercased and [percent-decoded](https://tools.ietf.org/html/rfc3986#section-2.1) and becomes the extra key, and the header value is the extra value.
+* `--requestheader-extra-headers-prefix` 1.6+. Optional, case-insensitive. "X-Remote-Extra-" is suggested. Header prefixes to look for to determine extra information about the user (typically used by the configured authorization plugin). Any headers beginning with any of the specified prefixes have the prefix removed. The remainder of the header name is lowercased and [percent-decoded](https://tools.ietf.org/html/rfc3986#section-2.1) and becomes the extra key, and the header value is the extra value.
 -->
-* `--requestheader-username-headers` 必需字段，大小写不敏感。用来设置要获得用户身份所要检查的头部字段名称列表（有序）。第一个包含数值的字段会被用来提取用户名。
+* `--requestheader-username-headers` 必需字段，大小写不敏感。
+  用来设置要获得用户身份所要检查的头部字段名称列表（有序）。
+  第一个包含数值的字段会被用来提取用户名。
 * `--requestheader-group-headers` 可选字段，在 Kubernetes 1.6 版本以后支持，大小写不敏感。
   建议设置为 "X-Remote-Group"。用来指定一组头部字段名称列表，以供检查用户所属的组名称。
   所找到的全部头部字段的取值都会被用作用户组名。
 * `--requestheader-extra-headers-prefix` 可选字段，在 Kubernetes 1.6 版本以后支持，大小写不敏感。
-  建议设置为 "X-Remote-Extra-"。用来设置一个头部字段的前缀字符串，API 服务器会基于所给
-  前缀来查找与用户有关的一些额外信息。这些额外信息通常用于所配置的鉴权插件。
-  API 服务器会将与所给前缀匹配的头部字段过滤出来，去掉其前缀部分，将剩余部分
-  转换为小写字符串并在必要时执行[百分号解码](https://tools.ietf.org/html/rfc3986#section-2.1)
-  后，构造新的附加信息字段键名。原来的头部字段值直接作为附加信息字段的值。
+  建议设置为 "X-Remote-Extra-"。用来设置一个头部字段的前缀字符串，
+  API 服务器会基于所给前缀来查找与用户有关的一些额外信息。这些额外信息通常用于所配置的鉴权插件。
+  API 服务器会将与所给前缀匹配的头部字段过滤出来，去掉其前缀部分，将剩余部分转换为小写字符串，
+  并在必要时执行[百分号解码](https://tools.ietf.org/html/rfc3986#section-2.1)后，
+  构造新的附加信息字段键名。原来的头部字段值直接作为附加信息字段的值。
 
+{{< note >}}
 <!--
 Prior to 1.11.3 (and 1.10.7, 1.9.11), the extra key could only contain characters which were [legal in HTTP header labels](https://tools.ietf.org/html/rfc7230#section-3.2.6).
 For example, with this configuration:
 -->
-{{< note >}}
 在 1.13.3 版本之前（包括 1.10.7、1.9.11），附加字段的键名只能包含
 [HTTP 头部标签的合法字符](https://tools.ietf.org/html/rfc7230#section-3.2.6)。
 {{< /note >}}
@@ -1058,17 +1124,16 @@ the risks and the mechanisms to protect the CA's usage.
 * `--requestheader-allowed-names` Optional. List of Common Name values (CNs). If set, a valid client certificate with a CN in the specified list must be presented before the request headers are checked for user names. If empty, any CN is allowed.
 -->
 为了防范头部信息侦听，在请求中的头部字段被检视之前，
-身份认证代理需要向 API 服务器提供一份合法的客户端证书，
-供后者使用所给的 CA 来执行验证。
-警告：*不要* 在不同的上下文中复用 CA 证书，除非你清楚这样做的风险是什么以及
-应如何保护 CA 用法的机制。
+身份认证代理需要向 API 服务器提供一份合法的客户端证书，供后者使用所给的 CA 来执行验证。
+警告：**不要** 在不同的上下文中复用 CA 证书，除非你清楚这样做的风险是什么以及应如何保护
+CA 用法的机制。
 
 * `--requestheader-client-ca-file` 必需字段，给出 PEM 编码的证书包。
   在检查请求的头部字段以提取用户名信息之前，必须提供一个合法的客户端证书，
   且该证书要能够被所给文件中的机构所验证。
 * `--requestheader-allowed-names` 可选字段，用来给出一组公共名称（CN）。
-  如果此标志被设置，则在检视请求中的头部以提取用户信息之前，必须提供
-  包含此列表中所给的 CN 名的、合法的客户端证书。
+  如果此标志被设置，则在检视请求中的头部以提取用户信息之前，
+  必须提供包含此列表中所给的 CN 名的、合法的客户端证书。
 
 <!--
 ## Anonymous requests
@@ -1079,9 +1144,9 @@ treated as anonymous requests, and given a username of `system:anonymous` and a
 -->
 ## 匿名请求   {#anonymous-requests}
 
-启用匿名请求支持之后，如果请求没有被已配置的其他身份认证方法拒绝，则被视作
-匿名请求（Anonymous Requests）。这类请求获得用户名 `system:anonymous` 和
-对应的用户组 `system:unauthenticated`。
+启用匿名请求支持之后，如果请求没有被已配置的其他身份认证方法拒绝，
+则被视作匿名请求（Anonymous Requests）。这类请求获得用户名 `system:anonymous`
+和对应的用户组 `system:unauthenticated`。
 
 <!--
 For example, on a server with token authentication configured, and anonymous access enabled,
@@ -1091,24 +1156,23 @@ A request providing no bearer token would be treated as an anonymous request.
 In 1.5.1-1.5.x, anonymous access is disabled by default, and can be enabled by
 passing the `--anonymous-auth=true` option to the API server.
 -->
-例如，在一个配置了令牌身份认证且启用了匿名访问的服务器上，如果请求提供了非法的
-持有者令牌，则会返回 `401 Unauthorized` 错误。
-如果请求没有提供持有者令牌，则被视为匿名请求。
+例如，在一个配置了令牌身份认证且启用了匿名访问的服务器上，如果请求提供了非法的持有者令牌，
+则会返回 `401 Unauthorized` 错误。如果请求没有提供持有者令牌，则被视为匿名请求。
 
 在 1.5.1-1.5.x 版本中，匿名访问默认情况下是被禁用的，可以通过为 API 服务器设定
 `--anonymous-auth=true` 来启用。
 
 <!--
 In 1.6+, anonymous access is enabled by default if an authorization mode other than `AlwaysAllow`
-is used, and can be disabled by passing the `-anonymous-auth=false` option to the API server.
+is used, and can be disabled by passing the `--anonymous-auth=false` option to the API server.
 Starting in 1.6, the ABAC and RBAC authorizers require explicit authorization of the
 `system:anonymous` user or the `system:unauthenticated` group, so legacy policy rules
 that grant access to the `*` user or `*` group do not include anonymous users.
 -->
 在 1.6 及之后版本中，如果所使用的鉴权模式不是 `AlwaysAllow`，则匿名访问默认是被启用的。
 从 1.6 版本开始，ABAC 和 RBAC 鉴权模块要求对 `system:anonymous` 用户或者
-`system:unauthenticated` 用户组执行显式的权限判定，所以之前的为 `*` 用户或
-`*` 用户组赋予访问权限的策略规则都不再包含匿名用户。
+`system:unauthenticated` 用户组执行显式的权限判定，所以之前的为用户 `*` 或用户组
+`*` 赋予访问权限的策略规则都不再包含匿名用户。
 
 <!--
 ## User impersonation
@@ -1135,10 +1199,10 @@ to the impersonated user info.
 * Request user info is replaced with impersonation values.
 * Request is evaluated, authorization acts on impersonated user info.
 -->
-带伪装的请求首先会被身份认证识别为发出请求的用户，之后会切换到使用被伪装的用户
-的用户信息。
+带伪装的请求首先会被身份认证识别为发出请求的用户，
+之后会切换到使用被伪装的用户的用户信息。
 
-* 用户发起 API 调用时 _同时_ 提供自身的凭据和伪装头部字段信息
+* 用户发起 API 调用时 **同时** 提供自身的凭据和伪装头部字段信息
 * API 服务器对用户执行身份认证
 * API 服务器确认通过认证的用户具有伪装特权
 * 请求用户的信息被替换成伪装字段的值
@@ -1148,8 +1212,9 @@ to the impersonated user info.
 The following HTTP headers can be used to performing an impersonation request:
 
 * `Impersonate-User`: The username to act as.
-* `Impersonate-Group`: A group name to act as. Can be provided multiple times to set multiple groups. Optional. Requires "Impersonate-User"
-* `Impersonate-Extra-( extra name )`: A dynamic header used to associate extra fields with the user. Optional. Requires "Impersonate-User". In order to be preserved consistently, `( extra name )` should be lower-case, and any characters which aren't [legal in HTTP header labels](https://tools.ietf.org/html/rfc7230#section-3.2.6) MUST be utf8 and [percent-encoded](https://tools.ietf.org/html/rfc3986#section-2.1).
+* `Impersonate-Group`: A group name to act as. Can be provided multiple times to set multiple groups. Optional. Requires "Impersonate-User".
+* `Impersonate-Extra-( extra name )`: A dynamic header used to associate extra fields with the user. Optional. Requires "Impersonate-User". In order to be preserved consistently, `( extra name )` must be lower-case, and any characters which aren't [legal in HTTP header labels](https://tools.ietf.org/html/rfc7230#section-3.2.6) MUST be utf8 and [percent-encoded](https://tools.ietf.org/html/rfc3986#section-2.1).
+* `Impersonate-Uid`: A unique identifier that represents the user being impersonated. Optional. Requires "Impersonate-User". Kubernetes does not impose any format requirements on this string.
 -->
 以下 HTTP 头部字段可用来执行伪装请求：
 
@@ -1158,31 +1223,50 @@ The following HTTP headers can be used to performing an impersonation request:
   可选字段；要求 "Impersonate-User" 必须被设置。
 * `Impersonate-Extra-<附加名称>`：一个动态的头部字段，用来设置与用户相关的附加字段。
   此字段可选；要求 "Impersonate-User" 被设置。为了能够以一致的形式保留，
-  `<附加名称>`部分必须是小写字符，如果有任何字符不是
-  [合法的 HTTP 头部标签字符](https://tools.ietf.org/html/rfc7230#section-3.2.6)，
+  `<附加名称>`部分必须是小写字符，
+  如果有任何字符不是[合法的 HTTP 头部标签字符](https://tools.ietf.org/html/rfc7230#section-3.2.6)，
   则必须是 utf8 字符，且转换为[百分号编码](https://tools.ietf.org/html/rfc3986#section-2.1)。
+* `Impersonate-Uid`：一个唯一标识符，用来表示所伪装的用户。此头部可选。
+  如果设置，则要求 "Impersonate-User" 也存在。Kubernetes 对此字符串没有格式要求。
 
+{{< note >}}
 <!--
 Prior to 1.11.3 (and 1.10.7, 1.9.11), `( extra name )` could only contain characters which were [legal in HTTP header labels](https://tools.ietf.org/html/rfc7230#section-3.2.6).
 -->
+在 1.11.3 版本之前（以及 1.10.7、1.9.11），`<附加名称>` 只能包含合法的 HTTP 标签字符。
+{{< /note >}}
+
 {{< note >}}
-在 1.11.3 版本之前（以及 1.10.7、1.9.11），`<附加名称>` 只能包含
-合法的 HTTP 标签字符。
+<!--
+`Impersonate-Uid` is only available in versions 1.22.0 and higher.
+-->
+`Impersonate-Uid` 仅在 1.22.0 及更高版本中可用。
 {{< /note >}}
 
 <!--
-An example set of headers:
+An example of the impersonation headers used when impersonating a user with groups:
 -->
-头部字段集合的示例：
+伪装带有用户组的用户时，所使用的伪装头部字段示例：
 
 ```http
 Impersonate-User: jane.doe@example.com
 Impersonate-Group: developers
 Impersonate-Group: admins
+```
+
+<!--
+An example of the impersonation headers used when impersonating a user with a UID and
+extra fields:
+-->
+伪装带有 UID 和附加字段的用户时，所使用的伪装头部字段示例：
+
+```http
+Impersonate-User: jane.doe@example.com
 Impersonate-Extra-dn: cn=jane,ou=engineers,dc=example,dc=com
 Impersonate-Extra-acme.com%2Fproject: some-project
 Impersonate-Extra-scopes: view
 Impersonate-Extra-scopes: development
+Impersonate-Uid: 06f6ce97-e2c5-4ab8-7ba5-7654dd08d52b
 ```
 
 <!--
@@ -1214,17 +1298,24 @@ node/mynode cordoned
 node/mynode drained
 ```
 
+{{< note >}}
 <!--
-To impersonate a user, group, or set extra fields, the impersonating user must
+`kubectl` cannot impersonate extra fields or UIDs.
+-->
+`kubectl` 不能对附加字段或 UID 执行伪装。
+{{< /note >}}
+
+<!--
+To impersonate a user, group, user identifier (UID) or extra fields, the impersonating user must
 have the ability to perform the "impersonate" verb on the kind of attribute
-being impersonated ("user", "group", etc.). For clusters that enable the RBAC
+being impersonated ("user", "group", "uid", etc.). For clusters that enable the RBAC
 authorization plugin, the following ClusterRole encompasses the rules needed to
 set user and group impersonation headers:
 -->
-要伪装成某个用户、某个组或者设置附加字段，执行伪装操作的用户必须具有对所伪装的
-类别（“user”、“group” 等）执行 “impersonate” 动词操作的能力。
-对于启用了 RBAC 鉴权插件的集群，下面的 ClusterRole 封装了设置用户和组伪装字段
-所需的规则：
+若要伪装成某个用户、某个组、用户标识符（UID））或者设置附加字段，
+执行伪装操作的用户必须具有对所伪装的类别（“user”、“group”、“uid” 等）执行 “impersonate”
+动词操作的能力。
+对于启用了 RBAC 鉴权插件的集群，下面的 ClusterRole 封装了设置用户和组伪装字段所需的规则：
 
 ```yaml
 apiVersion: rbac.authorization.k8s.io/v1
@@ -1238,22 +1329,24 @@ rules:
 ```
 
 <!--
+For impersonation, extra fields and impersonated UIDs are both under the "authentication.k8s.io" `apiGroup`.
 Extra fields are evaluated as sub-resources of the resource "userextras". To
-allow a user to use impersonation headers for the extra field "scopes", a user
-should be granted the following role:
+allow a user to use impersonation headers for the extra field "scopes" and
+for UIDs, a user should be granted the following role:
 -->
+为了执行伪装，附加字段和所伪装的 UID 都位于 "authorization.k8s.io" `apiGroup` 中。
 附加字段会被作为 `userextras` 资源的子资源来执行权限评估。
-如果要允许用户为附加字段 “scopes” 设置伪装头部，该用户需要被授予以下规则：
+如果要允许用户为附加字段 “scopes” 和 UID 设置伪装头部，该用户需要被授予以下角色：
 
 ```yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  name: scopes-impersonator
+  name: scopes-and-uid-impersonator
 rules:
-# 可以设置 "Impersonate-Extra-scopes" 头部
+# 可以设置 "Impersonate-Extra-scopes" 和 "Impersonate-Uid" 头部
 - apiGroups: ["authentication.k8s.io"]
-  resources: ["userextras/scopes"]
+  resources: ["userextras/scopes", "uids"]
   verbs: ["impersonate"]
 ```
 
@@ -1269,31 +1362,51 @@ kind: ClusterRole
 metadata:
   name: limited-impersonator
 rules:
-# 可以伪装成用户 "jane.doe@example.com"
-- apiGroups: [""]
-  resources: ["users"]
-  verbs: ["impersonate"]
-  resourceNames: ["jane.doe@example.com"]
-
-# 可以伪装成用户组 "developers" 和 "admins"
-- apiGroups: [""]
-  resources: ["groups"]
-  verbs: ["impersonate"]
-  resourceNames: ["developers","admins"]
-
-# 可以将附加字段 "scopes" 伪装成 "view" 和 "development"
-- apiGroups: ["authentication.k8s.io"]
-  resources: ["userextras/scopes"]
-  verbs: ["impersonate"]
-  resourceNames: ["view", "development"]
+  # 可以伪装成用户 "jane.doe@example.com"
+  - apiGroups: [""]
+    resources: ["users"]
+    verbs: ["impersonate"]
+    resourceNames: ["jane.doe@example.com"]
+  
+  # 可以伪装成用户组 "developers" 和 "admins"
+  - apiGroups: [""]
+    resources: ["groups"]
+    verbs: ["impersonate"]
+    resourceNames: ["developers","admins"]
+  
+  # 可以将附加字段 "scopes" 伪装成 "view" 和 "development"
+  - apiGroups: ["authentication.k8s.io"]
+    resources: ["userextras/scopes"]
+    verbs: ["impersonate"]
+    resourceNames: ["view", "development"]
+  
+  # 可以伪装 UID "06f6ce97-e2c5-4ab8-7ba5-7654dd08d52b"
+  - apiGroups: ["authentication.k8s.io"]
+    resources: ["uids"]
+    verbs: ["impersonate"]
+    resourceNames: ["06f6ce97-e2c5-4ab8-7ba5-7654dd08d52b"]
 ```
 
+{{< note >}}
+<!--
+Impersonating a user or group allows you to perform any action as if you were that user or group;
+for that reason, impersonation is not namespace scoped.
+If you want to allow impersonation using Kubernetes RBAC, 
+this requires using a `ClusterRole` and a `ClusterRoleBinding`,
+not a `Role` and `RoleBinding`.
+-->
+基于伪装成一个用户或用户组的能力，你可以执行任何操作，好像你就是那个用户或用户组一样。
+出于这一原因，伪装操作是不受名字空间约束的。
+如果你希望允许使用 Kubernetes RBAC 来执行身份伪装，就需要使用 `ClusterRole`
+和 `ClusterRoleBinding`，而不是 `Role` 或 `RoleBinding`。
+{{< /note >}}
+
 <!--
 ## client-go credential plugins
 -->
 ## client-go 凭据插件  {#client-go-credential-plugins}
 
-{{< feature-state for_k8s_version="v1.11" state="beta" >}}
+{{< feature-state for_k8s_version="v1.22" state="stable" >}}
 
 <!--
 `k8s.io/client-go` and tools using it such as `kubectl` and `kubelet` are able to execute an
@@ -1305,11 +1418,11 @@ protocol specific logic, then returns opaque credentials to use. Almost all cred
 use cases require a server side component with support for the [webhook token authenticator](#webhook-token-authentication)
 to interpret the credential format produced by the client plugin.
 -->
-`k8s.io/client-go` 及使用它的工具（如 `kubectl` 和 `kubelet`）可以执行某个外部
-命令来获得用户的凭据信息。
+`k8s.io/client-go` 及使用它的工具（如 `kubectl` 和 `kubelet`）
+可以执行某个外部命令来获得用户的凭据信息。
 
-这一特性的目的是便于客户端与 `k8s.io/client-go` 并不支持的身份认证协议（LDAP、
-Kerberos、OAuth2、SAML 等）继承。
+这一特性的目的是便于客户端与 `k8s.io/client-go` 并不支持的身份认证协议
+（LDAP、Kerberos、OAuth2、SAML 等）继承。
 插件实现特定于协议的逻辑，之后返回不透明的凭据以供使用。
 几乎所有的凭据插件使用场景中都需要在服务器端存在一个支持
 [Webhook 令牌身份认证组件](#webhook-token-authentication)的模块，
@@ -1325,10 +1438,10 @@ to install a credential plugin on their workstation.
 -->
 ### 示例应用场景   {#example-use-case}
 
-在一个假想的应用场景中，某组织运行这一个外部的服务，能够将特定用户的已签名的
-令牌转换成 LDAP 凭据。此服务还能够对
-[Webhook 令牌身份认证组件](#webhook-token-authentication)的请求做出响应以
-验证所提供的令牌。用户需要在自己的工作站上安装一个凭据插件。
+在一个假想的应用场景中，某组织运行这一个外部的服务，能够将特定用户的已签名的令牌转换成
+LDAP 凭据。此服务还能够对
+[Webhook 令牌身份认证组件](#webhook-token-authentication)的请求做出响应以验证所提供的令牌。
+用户需要在自己的工作站上安装一个凭据插件。
 
 <!--
 To authenticate against the API:
@@ -1344,8 +1457,8 @@ To authenticate against the API:
 * 用户发出 `kubectl` 命令。
 * 凭据插件提示用户输入 LDAP 凭据，并与外部服务交互，获得令牌。
 * 凭据插件将令牌返回该 client-go，后者将其用作持有者令牌提交给 API 服务器。
-* API 服务器使用[Webhook 令牌身份认证组件](#webhook-token-authentication)向
-  外部服务发出 `TokenReview` 请求。
+* API 服务器使用 [Webhook 令牌身份认证组件](#webhook-token-authentication)向外部服务发出
+  `TokenReview` 请求。
 * 外部服务检查令牌上的签名，返回用户的用户名和用户组信息。
 
 <!--
@@ -1356,9 +1469,12 @@ as part of the user fields.
 -->
 ### 配置  {#configuration}
 
-凭据插件通过 [kubectl 配置文件](/zh/docs/tasks/access-application-cluster/configure-access-multiple-clusters/)
+凭据插件通过 [kubectl 配置文件](/zh-cn/docs/tasks/access-application-cluster/configure-access-multiple-clusters/)
 来作为 user 字段的一部分设置。
 
+{{< tabs name="exec_plugin_kubeconfig_example_1" >}}
+{{% tab name="client.authentication.k8s.io/v1" %}}
+
 <!--
 ```yaml
 apiVersion: v1
@@ -1374,9 +1490,10 @@ users:
       #
       # The API version returned by the plugin MUST match the version listed here.
       #
-      # To integrate with tools that support multiple versions (such as client.authentication.k8s.io/v1alpha1),
-      # set an environment variable or pass an argument to the tool that indicates which version the exec plugin expects.
-      apiVersion: "client.authentication.k8s.io/v1beta1"
+      # To integrate with tools that support multiple versions (such as client.authentication.k8s.io/v1beta1),
+      # set an environment variable, pass an argument to the tool that indicates which version the exec plugin expects,
+      # or read the version from the ExecCredential object in the KUBERNETES_EXEC_INFO environment variable.
+      apiVersion: "client.authentication.k8s.io/v1"
 
       # Environment variables to set when executing the plugin. Optional.
       env:
@@ -1405,6 +1522,13 @@ users:
       # very large CA data, to this exec plugin as a part of the KUBERNETES_EXEC_INFO
       # environment variable.
       provideClusterInfo: true
+
+      # The contract between the exec plugin and the standard input I/O stream. If the
+      # contract cannot be satisfied, this plugin will not be run and an error will be
+      # returned. Valid values are "Never" (this exec plugin never uses standard input),
+      # "IfAvailable" (this exec plugin wants to use standard input if it is available),
+      # or "Always" (this exec plugin requires standard input to function). Required.
+      interactiveMode: Never
 clusters:
 - name: my-cluster
   cluster:
@@ -1435,11 +1559,154 @@ users:
       command: "example-client-go-exec-plugin"
 
       # 解析 ExecCredentials 资源时使用的 API 版本。必需。
-      #
       # 插件返回的 API 版本必需与这里列出的版本匹配。
       #
-      # 要与支持多个版本的工具（如 client.authentication.k8sio/v1alpha1）集成，
-      # 可以设置一个环境变量或者向工具传递一个参数标明 exec 插件所期望的版本。
+      # 要与支持多个版本的工具（如 client.authentication.k8s.io/v1beta1）集成，
+      # 可以设置一个环境变量或者向工具传递一个参数标明 exec 插件所期望的版本，
+      # 或者从 KUBERNETES_EXEC_INFO 环境变量的 ExecCredential 对象中读取版本信息。
+      apiVersion: "client.authentication.k8s.io/v1"
+
+      # 执行此插件时要设置的环境变量。可选字段。
+      env:
+      - name: "FOO"
+        value: "bar"
+
+      # 执行插件时要传递的参数。可选字段。
+      args:
+      - "arg1"
+      - "arg2"
+
+      # 当可执行文件不存在时显示给用户的文本。可选的。
+      installHint: |
+        需要 example-client-go-exec-plugin 来在当前集群上执行身份认证。可以通过以下命令安装：
+
+        MacOS: brew install example-client-go-exec-plugin
+
+        Ubuntu: apt-get install example-client-go-exec-plugin
+
+        Fedora: dnf install example-client-go-exec-plugin
+
+        ...
+
+      # 是否使用 KUBERNETES_EXEC_INFO 环境变量的一部分向这个 exec 插件
+      # 提供集群信息（可能包含非常大的 CA 数据）
+      provideClusterInfo: true
+
+      # Exec 插件与标准输入 I/O 数据流之间的协议。如果协议无法满足，
+      # 则插件无法运行并会返回错误信息。合法的值包括 "Never" （Exec 插件从不使用标准输入），
+      # "IfAvailable" （Exec 插件希望在可以的情况下使用标准输入），
+      # 或者 "Always" （Exec 插件需要使用标准输入才能工作）。必需字段。
+      interactiveMode: Never
+clusters:
+- name: my-cluster
+  cluster:
+    server: "https://172.17.4.100:6443"
+    certificate-authority: "/etc/kubernetes/ca.pem"
+    extensions:
+    - name: client.authentication.k8s.io/exec # 为每个集群 exec 配置保留的扩展名
+      extension:
+        arbitrary: config
+        this: 在设置 provideClusterInfo 时可通过环境变量 KUBERNETES_EXEC_INFO 指定
+        you: ["can", "put", "anything", "here"]
+contexts:
+- name: my-cluster
+  context:
+    cluster: my-cluster
+    user: my-user
+current-context: my-cluster
+```
+{{% /tab %}}
+{{% tab name="client.authentication.k8s.io/v1beta1" %}}
+<!--
+```yaml
+apiVersion: v1
+kind: Config
+users:
+- name: my-user
+  user:
+    exec:
+      # Command to execute. Required.
+      command: "example-client-go-exec-plugin"
+
+      # API version to use when decoding the ExecCredentials resource. Required.
+      #
+      # The API version returned by the plugin MUST match the version listed here.
+      #
+      # To integrate with tools that support multiple versions (such as client.authentication.k8s.io/v1),
+      # set an environment variable, pass an argument to the tool that indicates which version the exec plugin expects,
+      # or read the version from the ExecCredential object in the KUBERNETES_EXEC_INFO environment variable.
+      apiVersion: "client.authentication.k8s.io/v1beta1"
+
+      # Environment variables to set when executing the plugin. Optional.
+      env:
+      - name: "FOO"
+        value: "bar"
+
+      # Arguments to pass when executing the plugin. Optional.
+      args:
+      - "arg1"
+      - "arg2"
+
+      # Text shown to the user when the executable doesn't seem to be present. Optional.
+      installHint: |
+        example-client-go-exec-plugin is required to authenticate
+        to the current cluster.  It can be installed:
+
+        On macOS: brew install example-client-go-exec-plugin
+
+        On Ubuntu: apt-get install example-client-go-exec-plugin
+
+        On Fedora: dnf install example-client-go-exec-plugin
+
+        ...
+
+      # Whether or not to provide cluster information, which could potentially contain
+      # very large CA data, to this exec plugin as a part of the KUBERNETES_EXEC_INFO
+      # environment variable.
+      provideClusterInfo: true
+
+      # The contract between the exec plugin and the standard input I/O stream. If the
+      # contract cannot be satisfied, this plugin will not be run and an error will be
+      # returned. Valid values are "Never" (this exec plugin never uses standard input),
+      # "IfAvailable" (this exec plugin wants to use standard input if it is available),
+      # or "Always" (this exec plugin requires standard input to function). Optional.
+      # Defaults to "IfAvailable".
+      interactiveMode: Never
+clusters:
+- name: my-cluster
+  cluster:
+    server: "https://172.17.4.100:6443"
+    certificate-authority: "/etc/kubernetes/ca.pem"
+    extensions:
+    - name: client.authentication.k8s.io/exec # reserved extension name for per cluster exec config
+      extension:
+        arbitrary: config
+        this: can be provided via the KUBERNETES_EXEC_INFO environment variable upon setting provideClusterInfo
+        you: ["can", "put", "anything", "here"]
+contexts:
+- name: my-cluster
+  context:
+    cluster: my-cluster
+    user: my-user
+current-context: my-cluster
+```
+-->
+```yaml
+apiVersion: v1
+kind: Config
+users:
+- name: my-user
+  user:
+    exec:
+      # 要执行的命令。必需。
+      command: "example-client-go-exec-plugin"
+
+      # 解析 ExecCredentials 资源时使用的 API 版本。必需。
+      # 插件返回的 API 版本必需与这里列出的版本匹配。
+      #
+      # 要与支持多个版本的工具（如 client.authentication.k8s.io/v1）集成，
+      # 可以设置一个环境变量或者向工具传递一个参数标明 exec 插件所期望的版本，
+      # 或者从 KUBERNETES_EXEC_INFO 环境变量的 ExecCredential 对象中读取版本信息。
       apiVersion: "client.authentication.k8s.io/v1beta1"
 
       # 执行此插件时要设置的环境变量。可选字段。
@@ -1467,6 +1734,13 @@ users:
       # 是否使用 KUBERNETES_EXEC_INFO 环境变量的一部分向这个 exec 插件
       # 提供集群信息（可能包含非常大的 CA 数据）
       provideClusterInfo: true
+
+      # Exec 插件与标准输入 I/O 数据流之间的协议。如果协议无法满足，
+      # 则插件无法运行并会返回错误信息。合法的值包括 "Never" （Exec 插件从不使用标准输入），
+      # "IfAvailable" （Exec 插件希望在可以的情况下使用标准输入），
+      # 或者 "Always" （Exec 插件需要使用标准输入才能工作）。可选字段。
+      # 默认值为 "IfAvailable"。
+      interactiveMode: Never
 clusters:
 - name: my-cluster
   cluster:
@@ -1486,6 +1760,9 @@ contexts:
 current-context: my-cluster
 ```
 
+{{% /tab %}}
+{{< /tabs >}}
+
 <!--
 Relative command paths are interpreted as relative to the directory of the config file. If
 KUBECONFIG is set to `/home/jane/kubeconfig` and the exec command is `./bin/example-client-go-exec-plugin`,
@@ -1502,7 +1779,8 @@ the binary `/home/jane/bin/example-client-go-exec-plugin` is executed.
     exec:
       # 对 kubeconfig 目录而言的相对路径
       command: "./bin/example-client-go-exec-plugin"
-      apiVersion: "client.authentication.k8s.io/v1beta1"
+      apiVersion: "client.authentication.k8s.io/v1"
+      interactiveMode: Never
 ```
 
 <!--
@@ -1510,26 +1788,77 @@ the binary `/home/jane/bin/example-client-go-exec-plugin` is executed.
 
 The executed command prints an `ExecCredential` object to `stdout`. `k8s.io/client-go`
 authenticates against the Kubernetes API using the returned credentials in the `status`.
-
-When run from an interactive session, `stdin` is exposed directly to the plugin. Plugins should use a
-[TTY check](https://godoc.org/golang.org/x/crypto/ssh/terminal#IsTerminal) to determine if it's
-appropriate to prompt a user interactively.
-
-To use bearer token credentials, the plugin returns a token in the status of the `ExecCredential`.
+The executed command is passed an `ExecCredential` object as input via the `KUBERNETES_EXEC_INFO`
+environment variable. This input contains helpful information like the expected API version
+of the returned `ExecCredential` object and whether or not the plugin can use `stdin` to interact
+with the user.
 -->
 ### 输出和输出格式   {#input-and-output-formats}
 
 所执行的命令会在 `stdout` 打印 `ExecCredential` 对象。
-`k8s.io/client-go` 使用 `status` 中返回的凭据信息向 Kubernetes API 服务器
-执行身份认证。
+`k8s.io/client-go` 使用 `status` 中返回的凭据信息向 Kubernetes API 服务器执行身份认证。
+所执行的命令会通过环境变量 `KUBERNETES_EXEC_INFO` 收到一个 `ExecCredential` 对象作为其输入。
+此输入中包含类似于所返回的 `ExecCredential` 对象的预期 API 版本，
+以及是否插件可以使用 `stdin` 与用户交互这类信息。
 
-在交互式会话中运行时，`stdin` 是直接暴露给插件使用的。
-插件应该使用
-[TTY check](https://godoc.org/golang.org/x/crypto/ssh/terminal#IsTerminal)
-来确定是否适合用交互方式请求用户输入。
+<!--
+When run from an interactive session (i.e., a terminal), `stdin` can be exposed directly
+to the plugin. Plugins should use the `spec.interactive` field of the input
+`ExecCredential` object from the `KUBERNETES_EXEC_INFO` environment variable in order to
+determine if `stdin` has been provided. A plugin's `stdin` requirements (i.e., whether
+`stdin` is optional, strictly required, or never used in order for the plugin
+to run successfully) is declared via the `user.exec.interactiveMode` field in the
+[kubeconfig](/docs/concepts/configuration/organize-cluster-access-kubeconfig/) (see table
+below for valid values). The `user.exec.interactiveMode` field is optional in `client.authentication.k8s.io/v1beta1`
+and required in `client.authentication.k8s.io/v1`.
+-->
 
-与使用持有者令牌凭据，插件在 `ExecCredential` 的状态中返回一个令牌：
+在交互式会话（即，某终端）中运行时，`stdin` 是直接暴露给插件使用的。
+插件应该使用来自 `KUBERNETES_EXEC_INFO` 环境变量的 `ExecCredential`
+输入对象中的 `spec.interactive` 字段来确定是否提供了 `stdin`。
+插件的 `stdin` 需求（即，为了能够让插件成功运行，是否 `stdin` 是可选的、
+必须提供的或者从不会被使用的）是通过 
+[kubeconfig](/zh-cn/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
+中的 `user.exec.interactiveMode` 来声明的（参见下面的表格了解合法值）。
+字段 `user.exec.interactiveMode` 在 `client.authentication.k8s.io/v1beta1`
+中是可选的，在 `client.authentication.k8s.io/v1` 中是必需的。
 
+
+<!--
+| `interactiveMode` Value | Meaning |
+| ----------------------- | ------- |
+| `Never` | This exec plugin never needs to use standard input, and therefore the exec plugin will be run regardless of whether standard input is available for user input. |
+| `IfAvailable` | This exec plugin would like to use standard input if it is available, but can still operate if standard input is not available. Therefore, the exec plugin will be run regardless of whether stdin is available for user input. If standard input is available for user input, then it will be provided to this exec plugin. |
+| `Always` | This exec plugin requires standard input in order to run, and therefore the exec plugin will only be run if standard input is available for user input. If standard input is not available for user input, then the exec plugin will not be run and an error will be returned by the exec plugin runner. |
+-->
+{{< table caption="interactiveMode 取值" >}}
+| `interactiveMode` 取值  | 含义    |
+| ----------------------- | ------- |
+| `Never` | 此 exec 插件从不需要使用标准输入，因此如论是否有标准输入提供给用户输入，该 exec 插件都能运行。 |
+| `IfAvailable` | 此 exec 插件希望在标准输入可用的情况下使用标准输入，但在标准输入不存在时也可运行。因此，无论是否存在给用户提供输入的标准输入，此 exec 插件都会运行。如果存在供用户输入的标准输入，则该标准输入会被提供给 exec 插件。 |
+| `Always` | 此 exec 插件需要标准输入才能正常运行，因此只有存在供用户输入的标准输入时，此 exec 插件才会运行。如果不存在供用户输入的标准输入，则 exec 插件无法运行，并且 exec 插件的执行者会因此返回错误信息。 |
+{{< /table >}}
+
+<!--
+To use bearer token credentials, the plugin returns a token in the status of the
+[`ExecCredential`](/docs/reference/config-api/client-authentication.v1beta1/#client-authentication-k8s-io-v1beta1-ExecCredential)
+-->
+与使用持有者令牌凭据，插件在 [`ExecCredential`](/zh-cn/docs/reference/config-api/client-authentication.v1beta1/#client-authentication-k8s-io-v1beta1-ExecCredential)
+的状态中返回一个令牌：
+
+{{< tabs name="exec_plugin_ExecCredential_example_1" >}}
+{{% tab name="client.authentication.k8s.io/v1" %}}
+```json
+{
+  "apiVersion": "client.authentication.k8s.io/v1",
+  "kind": "ExecCredential",
+  "status": {
+    "token": "my-bearer-token"
+  }
+}
+```
+{{% /tab %}}
+{{% tab name="client.authentication.k8s.io/v1beta1" %}}
 ```json
 {
   "apiVersion": "client.authentication.k8s.io/v1beta1",
@@ -1539,6 +1868,8 @@ To use bearer token credentials, the plugin returns a token in the status of the
   }
 }
 ```
+{{% /tab %}}
+{{< /tabs >}}
 
 <!--
 Alternatively, a PEM-encoded client certificate and key can be returned to use TLS client auth.
@@ -1558,6 +1889,20 @@ If specified, `clientKeyData` and `clientCertificateData` must both must be pres
 `clientCertificateData` 字段可能包含一些要发送给服务器的中间证书（Intermediate
 Certificates）。
 
+{{< tabs name="exec_plugin_ExecCredential_example_2" >}}
+{{% tab name="client.authentication.k8s.io/v1" %}}
+```json
+{
+  "apiVersion": "client.authentication.k8s.io/v1",
+  "kind": "ExecCredential",
+  "status": {
+    "clientCertificateData": "-----BEGIN CERTIFICATE-----\n...\n-----END CERTIFICATE-----",
+    "clientKeyData": "-----BEGIN RSA PRIVATE KEY-----\n...\n-----END RSA PRIVATE KEY-----"
+  }
+}
+```
+{{% /tab %}}
+{{% tab name="client.authentication.k8s.io/v1beta1" %}}
 ```json
 {
   "apiVersion": "client.authentication.k8s.io/v1beta1",
@@ -1568,10 +1913,14 @@ Certificates）。
   }
 }
 ```
+{{% /tab %}}
+{{< /tabs >}}
 
 <!--
 Optionally, the response can include the expiry of the credential formatted as a
-RFC3339 timestamp. Presence or absence of an expiry has the following impact:
+[RFC 3339](https://datatracker.ietf.org/doc/html/rfc3339) timestamp.
+
+Presence or absence of an expiry has the following impact:
 
 - If an expiry is included, the bearer token and TLS credentials are cached until
   the expiry time is reached, or if the server responds with a 401 HTTP status code,
@@ -1579,7 +1928,8 @@ RFC3339 timestamp. Presence or absence of an expiry has the following impact:
 - If an expiry is omitted, the bearer token and TLS credentials are cached until
   the server responds with a 401 HTTP status code or until the process exits.
 -->
-作为一种可选方案，响应中还可以包含以 RFC3339 时间戳格式给出的证书到期时间。
+作为一种可选方案，响应中还可以包含以 [RFC 3339](https://datatracker.ietf.org/doc/html/rfc3339)
+时间戳格式给出的证书到期时间。
 证书到期时间的有无会有如下影响：
 
 - 如果响应中包含了到期时间，持有者令牌和 TLS 凭据会被缓存，直到到期期限到来、
@@ -1587,6 +1937,20 @@ RFC3339 timestamp. Presence or absence of an expiry has the following impact:
 - 如果未指定到期时间，则持有者令牌和 TLS 凭据会被缓存，直到服务器返回 401
   HTTP 状态码或者进程退出。
 
+{{< tabs name="exec_plugin_ExecCredential_example_3" >}}
+{{% tab name="client.authentication.k8s.io/v1" %}}
+```json
+{
+  "apiVersion": "client.authentication.k8s.io/v1",
+  "kind": "ExecCredential",
+  "status": {
+    "token": "my-bearer-token",
+    "expirationTimestamp": "2018-03-05T17:30:20-08:00"
+  }
+}
+```
+{{% /tab %}}
+{{% tab name="client.authentication.k8s.io/v1beta1" %}}
 ```json
 {
   "apiVersion": "client.authentication.k8s.io/v1beta1",
@@ -1597,23 +1961,46 @@ RFC3339 timestamp. Presence or absence of an expiry has the following impact:
   }
 }
 ```
+{{% /tab %}}
+{{< /tabs >}}
 
 <!--
-The plugin can optionally be called with an environment variable, `KUBERNETES_EXEC_INFO`,
-that contains information about the cluster for which this plugin is obtaining
-credentials. This information can be used to perform cluster-specific credential
-acquisition logic. In order to enable this behavior, the `provideClusterInfo` field must
-be set on the exec user field in the
-[kubeconfig](/docs/concepts/configuration/organize-cluster-access-kubeconfig/). Here is an
-example of the aforementioned `KUBERNETES_EXEC_INFO` environment variable.
+To enable the exec plugin to obtain cluster-specific information, set `provideClusterInfo` on the `user.exec`
+field in the [kubeconfig](/docs/concepts/configuration/organize-cluster-access-kubeconfig/).
+The plugin will then be supplied this cluster-specific information in the `KUBERNETES_EXEC_INFO` environment variable.
+Information from this environment variable can be used to perform cluster-specific
+credential acquisition logic.
+The following `ExecCredential` manifest describes a cluster information sample.
 -->
+为了让 exec 插件能够获得特定与集群的信息，可以在
+[kubeconfig](/zh-cn/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
+中的 `user.exec` 设置 `provideClusterInfo`。
+这一特定于集群的信息就会通过 `KUBERNETES_EXEC_INFO` 环境变量传递给插件。
+此环境变量中的信息可以用来执行特定于集群的凭据获取逻辑。
+下面的 `ExecCredential` 清单描述的是一个示例集群信息。
 
-调用此插件时可以选择性地设置环境变量 `KUBERNETES_EXEC_INFO`。
-该变量包含了此插件获取凭据所针对的集群信息。此信息可用于执行群集特定的凭据获取逻辑。
-为了启用此行为，必须在 [kubeconfig](/zh/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
-中的 exec user 字段上设置`provideClusterInfo`字段。
-下面是上述 `KUBERNETES_EXEC_INFO` 环境变量的示例。
-
+{{< tabs name="exec_plugin_ExecCredential_example_4" >}}
+{{% tab name="client.authentication.k8s.io/v1" %}}
+```json
+{
+  "apiVersion": "client.authentication.k8s.io/v1",
+  "kind": "ExecCredential",
+  "spec": {
+    "cluster": {
+      "server": "https://172.17.4.100:6443",
+      "certificate-authority-data": "LS0t...",
+      "config": {
+        "arbitrary": "config",
+        "this": "可以在设置 provideClusterInfo 时通过 KUBERNETES_EXEC_INFO 环境变量提供",
+        "you": ["can", "put", "anything", "here"]
+      }
+    },
+    "interactive": true
+  }
+}
+```
+{{% /tab %}}
+{{% tab name="client.authentication.k8s.io/v1beta1" %}}
 ```json
 {
   "apiVersion": "client.authentication.k8s.io/v1beta1",
@@ -1624,10 +2011,23 @@ example of the aforementioned `KUBERNETES_EXEC_INFO` environment variable.
       "certificate-authority-data": "LS0t...",
       "config": {
         "arbitrary": "config",
-        "this": "在设置 provideClusterInfo 时可通过环境变量 KUBERNETES_EXEC_INFO 指定",
+        "this": "可以在设置 provideClusterInfo 时通过 KUBERNETES_EXEC_INFO 环境变量提供",
         "you": ["can", "put", "anything", "here"]
       }
-    }
+    },
+    "interactive": true
   }
 }
 ```
+{{% /tab %}}
+{{< /tabs >}}
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* Read the [client authentication reference (v1beta1)](/docs/reference/config-api/client-authentication.v1beta1/)
+* Read the [client authentication reference (v1)](/docs/reference/config-api/client-authentication.v1/)
+-->
+* 阅读[客户端认证参考文档 (v1beta1)](/zh-cn/docs/reference/config-api/client-authentication.v1beta1/)
+* 阅读[客户端认证参考文档 (v1)](/zh-cn/docs/reference/config-api/client-authentication.v1/)
+
diff --git a/content/zh/docs/reference/access-authn-authz/authorization.md b/content/zh-cn/docs/reference/access-authn-authz/authorization.md
similarity index 63%
rename from content/zh/docs/reference/access-authn-authz/authorization.md
rename to content/zh-cn/docs/reference/access-authn-authz/authorization.md
index 840ddc7a75..ba70c2b36d 100644
--- a/content/zh/docs/reference/access-authn-authz/authorization.md
+++ b/content/zh-cn/docs/reference/access-authn-authz/authorization.md
@@ -35,7 +35,7 @@ cloud-provider-wide access control systems which may handle other APIs besides
 the Kubernetes API.
 -->
 在 Kubernetes 中，你必须在鉴权（授予访问权限）之前进行身份验证（登录），有关身份验证的信息，
-请参阅[访问控制概述](/zh/docs/concepts/security/controlling-access/).
+请参阅[访问控制概述](/zh-cn/docs/concepts/security/controlling-access/).
 
 Kubernetes 期望请求中存在 REST API 常见的属性。
 这意味着 Kubernetes 鉴权适用于现有的组织范围或云提供商范围的访问控制系统，
@@ -48,7 +48,15 @@ Kubernetes authorizes API requests using the API server. It evaluates all of the
 request attributes against all policies and allows or denies the request. All
 parts of an API request must be allowed by some policy in order to proceed. This
 means that permissions are denied by default.
+-->
+## 确定是允许还是拒绝请求  {#determine-whether-a-request-is-allowed-or-denied}
 
+Kubernetes 使用 API 服务器对 API 请求进行鉴权。
+它根据所有策略评估所有请求属性来决定允许或拒绝请求。
+一个 API 请求的所有部分都必须被某些策略允许才能继续。
+这意味着默认情况下拒绝权限。
+
+<!--
 (Although Kubernetes uses the API server, access controls and policies that
 depend on specific fields of specific kinds of objects are handled by Admission
 Controllers.)
@@ -58,13 +66,6 @@ If any authorizer approves or denies a request, that decision is immediately
 returned and no other authorizer is consulted. If all modules have no opinion on
 the request, then the request is denied. A deny returns an HTTP status code 403.
 -->
-## 确定是允许还是拒绝请求
-
-Kubernetes 使用 API 服务器对 API 请求进行鉴权。
-它根据所有策略评估所有请求属性来决定允许或拒绝请求。
-一个 API 请求的所有部分都必须被某些策略允许才能继续。
-这意味着默认情况下拒绝权限。
-
 （尽管 Kubernetes 使用 API 服务器，但是依赖于特定对象种类的特定字段的访问控制
 和策略由准入控制器处理。）
 
@@ -94,22 +95,21 @@ Kubernetes reviews only the following API request attributes:
 
 Kubernetes 仅审查以下 API 请求属性：
 
-* **用户** - 身份验证期间提供的 `user` 字符串。
-* **组** - 经过身份验证的用户所属的组名列表。
-* **额外信息** - 由身份验证层提供的任意字符串键到字符串值的映射。
-* **API** - 指示请求是否针对 API 资源。
-* **请求路径** - 各种非资源端点的路径，如 `/api` 或 `/healthz`。
-* **API 请求动词** - API 动词 `get`、`list`、`create`、`update`、`patch`、`watch`、
+* **用户** —— 身份验证期间提供的 `user` 字符串。
+* **组** —— 经过身份验证的用户所属的组名列表。
+* **额外信息** —— 由身份验证层提供的任意字符串键到字符串值的映射。
+* **API** —— 指示请求是否针对 API 资源。
+* **请求路径** —— 各种非资源端点的路径，如 `/api` 或 `/healthz`。
+* **API 请求动词** —— API 动词 `get`、`list`、`create`、`update`、`patch`、`watch`、
   `proxy`、`redirect`、`delete` 和 `deletecollection` 用于资源请求。
-  要确定资源 API 端点的请求动词，请参阅
-  [确定请求动词](#determine-the-request-verb)。
-* **HTTP 请求动词** - HTTP 动词 `get`、`post`、`put` 和 `delete` 用于非资源请求。
-* **Resource** - 正在访问的资源的 ID 或名称（仅限资源请求）- 
+  要确定资源 API 端点的请求动词，请参阅[确定请求动词](#determine-the-request-verb)。
+* **HTTP 请求动词** —— HTTP 动词 `get`、`post`、`put` 和 `delete` 用于非资源请求。
+* **资源** —— 正在访问的资源的 ID 或名称（仅限资源请求）- 
   对于使用 `get`、`update`、`patch` 和 `delete` 动词的资源请求，你必须提供资源名称。
-* **子资源** - 正在访问的子资源（仅限资源请求）。
-* **名字空间** - 正在访问的对象的名称空间（仅适用于名字空间资源请求）。
-* **API 组** - 正在访问的 {{< glossary_tooltip text="API 组" term_id="api-group" >}}
-  （仅限资源请求）。空字符串表示[核心 API 组](/zh/docs/reference/using-api/#api-groups)。
+* **子资源** —— 正在访问的子资源（仅限资源请求）。
+* **名字空间** —— 正在访问的对象的名称空间（仅适用于名字空间资源请求）。
+* **API 组** —— 正在访问的 {{< glossary_tooltip text="API 组" term_id="api-group" >}}
+  （仅限资源请求）。空字符串表示[核心 API 组](/zh-cn/docs/reference/using-api/#api-groups)。
 
 <!--
 ## Determine the Request Verb
@@ -117,15 +117,17 @@ Kubernetes 仅审查以下 API 请求属性：
 **Non-resource requests**
 Requests to endpoints other than `/api/v1/...` or `/apis/<group>/<version>/...`
 are considered "non-resource requests", and use the lower-cased HTTP method of the request as the verb.
+
 For example, a `GET` request to endpoints like `/api` or `/healthz` would use `get` as the verb.
 -->
 ## 确定请求动词  {#determine-the-request-verb}
 
 **非资源请求**
 
-对于 `/api/v1/...` 或 `/apis/<group>/<version>/...` 之外的端点的请求被
-视为“非资源请求（Non-Resource Requests）”，并使用该请求的 HTTP 方法的
-小写形式作为其请求动词。
+对于 `/api/v1/...` 或 `/apis/<group>/<version>/...`
+之外的端点的请求被视为 “非资源请求（Non-Resource Requests）”，
+并使用该请求的 HTTP 方法的小写形式作为其请求动词。
+
 例如，对 `/api` 或 `/healthz` 这类端点的 `GET` 请求将使用 `get` 作为其动词。
 
 <!--
@@ -137,8 +139,7 @@ collection of resources:
 -->
 **资源请求**
 
-要确定对资源 API 端点的请求动词，需要查看所使用的 HTTP 动词以及该请求是针对
-单个资源还是一组资源：
+要确定对资源 API 端点的请求动词，需要查看所使用的 HTTP 动词以及该请求是针对单个资源还是一组资源：
 
 <!--
 HTTP verb | request verb
@@ -157,10 +158,18 @@ PUT       | update
 PATCH     | patch
 DELETE    | delete（针对单个资源）、deletecollection（针对集合）
 
+{{< caution >}}
+<!--
+The `get`, `list` and `watch` verbs can all return the full details of a resource. In terms of the returned data they are equivalent. For example, `list` on `secrets` will still reveal the `data` attributes of any returned resources.
+-->
+`get`、`list` 和 `watch` 动作都可以返回一个资源的完整详细信息。就返回的数据而言，它们是等价的。
+例如，对 `secrets` 使用 `list` 仍然会显示所有已返回资源的 `data` 属性。
+{{< /caution >}}
+
 <!--
 Kubernetes sometimes checks authorization for additional permissions using specialized verbs. For example:
 
-* [PodSecurityPolicy](/docs/concepts/policy/pod-security-policy/)
+* [PodSecurityPolicy](/docs/concepts/security/pod-security-policy/)
   * `use` verb on `podsecuritypolicies` resources in the `policy` API group.
 * [RBAC](/docs/reference/access-authn-authz/rbac/#privilege-escalation-prevention-and-bootstrapping)
   * `bind` and `escalate` verbs on `roles` and `clusterroles` resources in the `rbac.authorization.k8s.io` API group.
@@ -169,19 +178,19 @@ Kubernetes sometimes checks authorization for additional permissions using speci
 -->
 Kubernetes 有时使用专门的动词以对额外的权限进行鉴权。例如：
 
-* [PodSecurityPolicy](/zh/docs/concepts/policy/pod-security-policy/)
+* [PodSecurityPolicy](/zh-cn/docs/concepts/security/pod-security-policy/)
   * `policy` API 组中 `podsecuritypolicies` 资源使用 `use` 动词
-* [RBAC](/zh/docs/reference/access-authn-authz/rbac/#privilege-escalation-prevention-and-bootstrapping)
+* [RBAC](/zh-cn/docs/reference/access-authn-authz/rbac/#privilege-escalation-prevention-and-bootstrapping)
   * 对 `rbac.authorization.k8s.io` API 组中 `roles` 和 `clusterroles` 资源的 `bind`
     和 `escalate` 动词
-* [身份认证](/zh/docs/reference/access-authn-authz/authentication/)
+* [身份认证](/zh-cn/docs/reference/access-authn-authz/authentication/)
   * 对核心 API 组中 `users`、`groups` 和 `serviceaccounts` 以及 `authentication.k8s.io`
     API 组中的 `userextras` 所使用的 `impersonate` 动词。
 
 <!--
 ## Authorization Modules  {#authorization-modules}
 
- * **Node** - A special-purpose authorizer that grants permissions to kubelets based on the pods they are scheduled to run. To learn more about using the Node authorization mode, see [Node Authorization](/docs/reference/access-authn-authz/node/).
+ * **Node** - A special-purpose authorization mode that grants permissions to kubelets based on the pods they are scheduled to run. To learn more about using the Node authorization mode, see [Node Authorization](/docs/reference/access-authn-authz/node/).
  * **ABAC** - Attribute-based access control (ABAC) defines an access control paradigm whereby access rights are granted to users through the use of policies which combine attributes together. The policies can use any type of attributes (user attributes, resource attributes, object, environment attributes, etc). To learn more about using the ABAC mode, see [ABAC Mode](/docs/reference/access-authn-authz/abac/).
  * **RBAC** - Role-based access control (RBAC) is a method of regulating access to computer or network resources based on the roles of individual users within an enterprise. In this context, access is the ability of an individual user to perform a specific task, such as view, create, or modify a file. To learn more about using the RBAC mode, see [RBAC Mode](/docs/reference/access-authn-authz/rbac/)
    * When specified RBAC (Role-Based Access Control) uses the `rbac.authorization.k8s.io` API group to drive authorization decisions, allowing admins to dynamically configure permission policies through the Kubernetes API.
@@ -190,23 +199,25 @@ Kubernetes 有时使用专门的动词以对额外的权限进行鉴权。例如
 -->
 ## 鉴权模块  {#authorization-modules}
 
-* **Node** - 一个专用鉴权组件，根据调度到 kubelet 上运行的 Pod 为 kubelet 授予权限。
-  了解有关使用节点鉴权模式的更多信息，请参阅[节点鉴权](/zh/docs/reference/access-authn-authz/node/)。
-* **ABAC** - 基于属性的访问控制（ABAC）定义了一种访问控制范型，通过使用将属性组合
-  在一起的策略，将访问权限授予用户。策略可以使用任何类型的属性（用户属性、资源属性、
-  对象，环境属性等）。要了解有关使用 ABAC 模式的更多信息，请参阅
-  [ABAC 模式](/zh/docs/reference/access-authn-authz/abac/)。
-* **RBAC** - 基于角色的访问控制（RBAC）是一种基于企业内个人用户的角色来管理对
-  计算机或网络资源的访问的方法。在此上下文中，权限是单个用户执行特定任务的能力，
+* **Node** —— 一个专用鉴权模式，根据调度到 kubelet 上运行的 Pod 为 kubelet 授予权限。
+  要了解有关使用节点鉴权模式的更多信息，请参阅[节点鉴权](/zh-cn/docs/reference/access-authn-authz/node/)。
+* **ABAC** —— 基于属性的访问控制（ABAC）定义了一种访问控制范型，通过使用将属性组合在一起的策略，
+  将访问权限授予用户。策略可以使用任何类型的属性（用户属性、资源属性、对象，环境属性等）。
+  要了解有关使用 ABAC 模式的更多信息，请参阅
+  [ABAC 模式](/zh-cn/docs/reference/access-authn-authz/abac/)。
+* **RBAC** —— 基于角色的访问控制（RBAC）
+  是一种基于企业内个人用户的角色来管理对计算机或网络资源的访问的方法。
+  在此上下文中，权限是单个用户执行特定任务的能力，
   例如查看、创建或修改文件。要了解有关使用 RBAC 模式的更多信息，请参阅
-  [RBAC 模式](/zh/docs/reference/access-authn-authz/rbac/)。
-  * 被启用之后，RBAC（基于角色的访问控制）使用 `rbac.authorization.k8s.io` API 组来
-    驱动鉴权决策，从而允许管理员通过 Kubernetes API 动态配置权限策略。
+  [RBAC 模式](/zh-cn/docs/reference/access-authn-authz/rbac/)。
+  * 被启用之后，RBAC（基于角色的访问控制）使用 `rbac.authorization.k8s.io` API
+    组来驱动鉴权决策，从而允许管理员通过 Kubernetes API 动态配置权限策略。
   * 要启用 RBAC，请使用 `--authorization-mode = RBAC` 启动 API 服务器。
-* **Webhook** - WebHook 是一个 HTTP 回调：发生某些事情时调用的 HTTP POST；
-  通过 HTTP POST 进行简单的事件通知。实现 WebHook 的 Web 应用程序会在发生某些事情时
-  将消息发布到 URL。要了解有关使用 Webhook 模式的更多信息，请参阅
-  [Webhook 模式](/zh/docs/reference/access-authn-authz/webhook/)。
+* **Webhook** —— WebHook 是一个 HTTP 回调：发生某些事情时调用的 HTTP POST；
+  通过 HTTP POST 进行简单的事件通知。
+  实现 WebHook 的 Web 应用程序会在发生某些事情时将消息发布到 URL。
+  要了解有关使用 Webhook 模式的更多信息，请参阅
+  [Webhook 模式](/zh-cn/docs/reference/access-authn-authz/webhook/)。
 
 <!--
 #### Checking API Access
@@ -224,6 +235,12 @@ a given action, and works regardless of the authorization mode used.
 ```shell
 kubectl auth can-i create deployments --namespace dev
 ```
+
+<!--
+The output is similar to this:
+-->
+输出类似于：
+
 ```
 yes
 ```
@@ -231,6 +248,12 @@ yes
 ```shell
 kubectl auth can-i create deployments --namespace prod
 ```
+
+<!--
+The output is similar to this:
+-->
+输出类似于：
+
 ```
 no
 ```
@@ -239,23 +262,49 @@ no
 Administrators can combine this with [user impersonation](/docs/reference/access-authn-authz/authentication/#user-impersonation)
 to determine what action other users can perform.
 -->
-管理员可以将此与
-[用户扮演](/zh/docs/reference/access-authn-authz/authentication/#user-impersonation)
+管理员可以将此与[用户扮演（User Impersonation）](/zh-cn/docs/reference/access-authn-authz/authentication/#user-impersonation)
 结合使用，以确定其他用户可以执行的操作。
 
 ```bash
 kubectl auth can-i list secrets --namespace dev --as dave
 ```
+
+<!--
+The output is similar to this:
+-->
+输出类似于：
+
 ```
 no
 ```
 
+<!--
+Similarly, to check whether a ServiceAccount named `dev-sa` in Namespace `dev`
+can list Pods in the Namespace `target`:
+-->
+类似地，检查名字空间 `dev` 里的 `dev-sa` 服务账户是否可以列举名字空间 `target` 里的 Pod：
+
+```bash
+kubectl auth can-i list pods \
+	--namespace target \
+	--as system:serviceaccount:dev:dev-sa
+```
+
+<!--
+The output is similar to this:
+-->
+输出类似于：
+
+```
+yes
+```
+
 <!--
 `SelfSubjectAccessReview` is part of the `authorization.k8s.io` API group, which
 exposes the API server authorization to external services. Other resources in
 this group include:
 
-* `SubjectAccessReview` - Access review for any user, not just the current one. Useful for delegating authorization decisions to the API server. For example, the kubelet and extension API servers use this to determine user access to their own APIs.
+* `SubjectAccessReview` - Access review for any user, not only the current one. Useful for delegating authorization decisions to the API server. For example, the kubelet and extension API servers use this to determine user access to their own APIs.
 * `LocalSubjectAccessReview` - Like `SubjectAccessReview` but restricted to a specific namespace.
 * `SelfSubjectRulesReview` - A review which returns the set of actions a user can perform within a namespace. Useful for users to quickly summarize their own access, or for UIs to hide/show actions.
 
@@ -266,10 +315,9 @@ field of the returned object is the result of the query.
 服务器鉴权公开给外部服务。该组中的其他资源包括：
 
 * `SubjectAccessReview` - 对任意用户的访问进行评估，而不仅仅是当前用户。
-  当鉴权决策被委派给 API 服务器时很有用。例如，kubelet 和扩展 API 服务器使用
-  它来确定用户对自己的 API 的访问权限。
-* `LocalSubjectAccessReview` - 与 `SubjectAccessReview` 类似，但仅限于特定的
-  名字空间。
+  当鉴权决策被委派给 API 服务器时很有用。例如，kubelet 和扩展 API
+  服务器使用它来确定用户对自己的 API 的访问权限。
+* `LocalSubjectAccessReview` - 与 `SubjectAccessReview` 类似，但仅限于特定的名字空间。
 * `SelfSubjectRulesReview` - 返回用户可在名字空间内执行的操作集的审阅。
   用户可以快速汇总自己的访问权限，或者用于 UI 中的隐藏/显示动作。
 
@@ -318,7 +366,7 @@ your policies include:
 
 The following flags can be used:
 -->
-## 为你的鉴权模块设置参数
+## 为你的鉴权模块设置参数  {#using-flags-for-your-authorization-module}
 
 你必须在策略中包含一个参数标志，以指明你的策略包含哪个鉴权模块：
 
@@ -332,8 +380,7 @@ The following flags can be used:
   * `--authorization-mode=AlwaysDeny` This flag blocks all requests. Use this flag only for testing.
   * `--authorization-mode=AlwaysAllow` This flag allows all requests. Use this flag only if you do not require authorization for your API requests.
 -->
-* `--authorization-mode=ABAC` 基于属性的访问控制（ABAC）模式允许你
-  使用本地文件配置策略。
+* `--authorization-mode=ABAC` 基于属性的访问控制（ABAC）模式允许你使用本地文件配置策略。
 * `--authorization-mode=RBAC` 基于角色的访问控制（RBAC）模式允许你使用
   Kubernetes API 创建和存储策略。
 * `--authorization-mode=Webhook` WebHook 是一种 HTTP 回调模式，允许你使用远程
@@ -341,56 +388,82 @@ The following flags can be used:
 * `--authorization-mode=Node` 节点鉴权是一种特殊用途的鉴权模式，专门对
   kubelet 发出的 API 请求执行鉴权。
 * `--authorization-mode=AlwaysDeny` 该标志阻止所有请求。仅将此标志用于测试。
-* `--authorization-mode=AlwaysAllow` 此标志允许所有请求。仅在你不需要 API 请求
-  的鉴权时才使用此标志。
+* `--authorization-mode=AlwaysAllow` 此标志允许所有请求。仅在你不需要 API 请求的鉴权时才使用此标志。
 
 <!--
 You can choose more than one authorization module. Modules are checked in order
 so an earlier module has higher priority to allow or deny a request.
 -->
-你可以选择多个鉴权模块。模块按顺序检查，以便较靠前的模块具有更高的优先级来允许
-或拒绝请求。
+你可以选择多个鉴权模块。模块按顺序检查，以便较靠前的模块具有更高的优先级来允许或拒绝请求。
 
 <!--
-## Privilege escalation via pod creation
+## Privilege escalation via workload creation or edits {#privilege-escalation-via-pod-creation}
 
-Users who have the ability to create pods in a namespace can potentially
-escalate their privileges within that namespace.  They can create pods that
-access their privileges within that namespace. They can create pods that access
-secrets the user cannot themselves read, or that run under a service account
-with different/greater permissions.
+Users who can create/edit pods in a namespace, either directly or through a [controller](/docs/concepts/architecture/controller/)
+such as an operator, could escalate their privileges in that namespace.
 -->
-## 通过创建 Pod 提升权限
+## 通过创建或编辑工作负载提升权限 {#privilege-escalation-via-pod-creation}
 
-能够在名字空间中创建 Pod 的用户可能会提升其在该名字空间内的权限。
-他们可以创建在该名字空间内访问其权限的 Pod。
-他们可以创建 Pod 访问用户自己无法读取的 Secret，或者在具有不同/更高权限的
-服务帐户下运行的 Pod 。
+能够在名字空间中创建或者编辑 Pod 的用户，
+无论是直接操作还是通过[控制器](/zh-cn/docs/concepts/architecture/controller/)
+（例如，一个 Operator）来操作，都可以提升他们在该名字空间内的权限。
 
 {{< caution >}}
 <!--
-System administrators, use care when granting access to pod creation.  A user
-granted permission to create pods (or controllers that create pods) in the
-namespace can: read all secrets in the namespace; read all config maps in the
-namespace; and impersonate any service account in the namespace and take any
-action the account could take. This applies regardless of authorization mode.
+System administrators, use care when granting access to create or edit workloads.
+Details of how these can be misused are documented in [escalation paths](/docs/reference/access-authn-authz/authorization/#escalation-paths)
 -->
-系统管理员在授予对 Pod 创建的访问权限时要小心。
-被授予在名字空间中创建 Pod（或创建 Pod 的控制器）的权限的用户可以：
-读取名字空间中的所有 Secret；读取名字空间中的所有 ConfigMap；
-并模拟名字空间中的任意服务账号并执行账号可以执行的任何操作。
-无论采用何种鉴权方式，这都适用。
+系统管理员在授予对工作负载的创建或编辑的权限时要小心。
+关于这些权限如何被误用的详细信息请参阅
+[提升途径](#escalation-paths)
 {{< /caution >}}
 
+<!--
+### Escalation paths {#escalation-paths}
+- Mounting arbitrary secrets in that namespace
+  - Can be used to access secrets meant for other workloads
+  - Can be used to obtain a more privileged service account's service account token
+- Using arbitrary Service Accounts in that namespace
+  - Can perform Kubernetes API actions as another workload (impersonation)
+  - Can perform any privileged actions that Service Account has
+- Mounting configmaps meant for other workloads in that namespace
+  - Can be used to obtain information meant for other workloads, such as DB host names.
+- Mounting volumes meant for other workloads in that namespace
+  - Can be used to obtain information meant for other workloads, and change it.
+-->
+### 特权提升途径 {#escalation-paths}
+
+- 挂载该名字空间内的任意 Secret
+  - 可以用来访问其他工作负载专用的 Secret
+  - 可以用来获取权限更高的服务账号的令牌
+- 使用该名字空间内的任意服务账号
+  - 可以用另一个工作负载的身份来访问 Kubernetes API（伪装）
+  - 可以执行该服务账号的任意特权操作
+- 挂载该名字空间里其他工作负载专用的 ConfigMap
+  - 可以用来获取其他工作负载专用的信息，例如数据库主机名。
+- 挂载该名字空间里其他工作负载的卷
+  - 可以用来获取其他工作负载专用的信息，并且更改它。
+
+{{< caution >}}
+<!--
+System administrators should be cautious when deploying CRDs that
+change the above areas. These may open privilege escalations paths.
+This should be considered when deciding on your RBAC controls.
+-->
+系统管理员在部署改变以上部分的 CRD 的时候要小心。
+它们可能会打开权限提升的途径。
+在决定你的 RBAC 控制时应该考虑这方面的问题。
+{{< /caution >}}
+
+
 ## {{% heading "whatsnext" %}}
 
 <!--
 * To learn more about Authentication, see **Authentication** in [Controlling Access to the Kubernetes API](/docs/concepts/security/controlling-access/).
 * To learn more about Admission Control, see [Using Admission Controllers](/docs/reference/access-authn-authz/admission-controllers/).
 -->
-* 要了解有关身份验证的更多信息，请参阅
-  [控制对 Kubernetes API 的访问](/zh/docs/concepts/security/controlling-access/)
-  中的 **身份验证**  部分。
-* 要了解有关准入控制的更多信息，请参阅
-  [使用准入控制器](/zh/docs/reference/access-authn-authz/admission-controllers/)。
+* 要了解有关身份验证的更多信息，
+  请参阅[控制对 Kubernetes API 的访问](/zh-cn/docs/concepts/security/controlling-access/)中的
+  **身份验证**  部分。
+* 要了解有关准入控制的更多信息，请参阅[使用准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/)。
 
diff --git a/content/zh/docs/reference/access-authn-authz/bootstrap-tokens.md b/content/zh-cn/docs/reference/access-authn-authz/bootstrap-tokens.md
similarity index 91%
rename from content/zh/docs/reference/access-authn-authz/bootstrap-tokens.md
rename to content/zh-cn/docs/reference/access-authn-authz/bootstrap-tokens.md
index 08b79a5d8d..961517d5ad 100644
--- a/content/zh/docs/reference/access-authn-authz/bootstrap-tokens.md
+++ b/content/zh-cn/docs/reference/access-authn-authz/bootstrap-tokens.md
@@ -21,14 +21,14 @@ creating new clusters or joining new nodes to an existing cluster.  It was built
 to support [kubeadm](/docs/reference/setup-tools/kubeadm/), but can be used in other contexts
 for users that wish to start clusters without `kubeadm`. It is also built to
 work, via RBAC policy, with the
-[Kubelet TLS Bootstrapping](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/) system.
+[Kubelet TLS Bootstrapping](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/) system.
 -->
 启动引导令牌是一种简单的持有者令牌（Bearer Token），这种令牌是在新建集群
 或者在现有集群中添加新节点时使用的。
-它被设计成能够支持 [`kubeadm`](/zh/docs/reference/setup-tools/kubeadm/)，
+它被设计成能够支持 [`kubeadm`](/zh-cn/docs/reference/setup-tools/kubeadm/)，
 但是也可以被用在其他的案例中以便用户在不使用 `kubeadm` 的情况下启动集群。
 它也被设计成可以通过 RBAC 策略，结合
-[Kubelet TLS 启动引导](/zh/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/)
+[Kubelet TLS 启动引导](/zh-cn/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/)
 系统进行工作。
 
 <!-- body -->
@@ -108,12 +108,16 @@ controller on the controller manager.
 
 过期的令牌可以通过启用控制器管理器中的 `tokencleaner` 控制器来删除。
 
+```
+--controllers=*,tokencleaner
+```
+
 <!--
 ## Bootstrap Token Secret Format
 
 Each valid token is backed by a secret in the `kube-system` namespace.  You can
 find the full design doc
-[here](https://github.com/kubernetes/community/blob/{{< param "githubbranch" >}}/contributors/design-proposals/cluster-lifecycle/bootstrap-discovery.md).
+[here](https://github.com/kubernetes/design-proposals-archive/blob/main/cluster-lifecycle/bootstrap-discovery.md).
 
 Here is what the secret looks like.
 -->
@@ -121,7 +125,7 @@ Here is what the secret looks like.
 
 每个合法的令牌背后对应着 `kube-system` 名字空间中的某个 Secret 对象。
 你可以从
-[这里](https://github.com/kubernetes/community/blob/{{< param "githubbranch" >}}/contributors/design-proposals/cluster-lifecycle/bootstrap-discovery.md).
+[这里](https://github.com/kubernetes/design-proposals-archive/blob/main/cluster-lifecycle/bootstrap-discovery.md)
 找到完整设计文档。
 
 这是 Secret 看起来的样子。
@@ -142,10 +146,11 @@ stringData:
 
   # 令牌 ID 和秘密信息，必需。
   token-id: 07401b
-  token-secret: base64(f395accd246ae52d)
+  token-secret: f395accd246ae52d
 
   # 可选的过期时间字段
-  expiration: "2017-03-10T03:22:11Z"
+  expiration: 2017-03-10T03:22:11Z
+
   # 允许的用法
   usage-bootstrap-authentication: "true"
   usage-bootstrap-signing: "true"
@@ -197,7 +202,7 @@ You can use the `kubeadm` tool to manage tokens on a running cluster. See the
 ## 使用 `kubeadm` 管理令牌   {#token-management-with-kubeadm}
 
 你可以使用 `kubeadm` 工具管理运行中集群上的令牌。
-参见 [kubeadm token 文档](/zh/docs/reference/setup-tools/kubeadm/kubeadm-token/)
+参见 [kubeadm token 文档](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-token/)
 以了解详细信息。
 
 <!--
@@ -259,7 +264,7 @@ data:
 ```
 
 <!--
-The `kubeconfig` member of the ConfigMap is a config file with just the cluster
+The `kubeconfig` member of the ConfigMap is a config file with only the cluster
 information filled out.  The key thing being communicated here is the
 `certificate-authority-data`.  This may be expanded in the future.
 -->
@@ -280,7 +285,7 @@ is used.
 `kubeconfig` 的载荷进行编码。完成编码的载荷会被插入到两个句点中间，形成完整的
 JWS。你可以使用完整的令牌（比如 `07401b.f395accd246ae52d`）作为共享密钥，
 通过 `HS256` 方式 (HMAC-SHA256) 对 JWS 进行校验。
-用户 _必须_ 确保使用了 HS256。
+用户**必须**确保使用了 HS256。
 
 {{< warning >}}
 <!--
@@ -298,6 +303,6 @@ client relying on the signature to bootstrap TLS trust.
 Consult the [kubeadm implementation details](/docs/reference/setup-tools/kubeadm/implementation-details/)
 section for more information.
 -->
-参考 [kubeadm 实现细节](/zh/docs/reference/setup-tools/kubeadm/implementation-details/)
+参考 [kubeadm 实现细节](/zh-cn/docs/reference/setup-tools/kubeadm/implementation-details/)
 了解更多信息。
 
diff --git a/content/zh/docs/reference/access-authn-authz/certificate-signing-requests.md b/content/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests.md
similarity index 80%
rename from content/zh/docs/reference/access-authn-authz/certificate-signing-requests.md
rename to content/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests.md
index e9d5e62c65..2af972ff80 100644
--- a/content/zh/docs/reference/access-authn-authz/certificate-signing-requests.md
+++ b/content/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests.md
@@ -3,11 +3,12 @@ title: 证书签名请求
 content_type: concept
 weight: 20
 ---
-<!-- 
+<!--
 reviewers:
 - liggitt
 - mikedanese
 - munnerz
+- enj
 title: Certificate Signing Requests
 content_type: concept
 weight: 20
@@ -17,22 +18,22 @@ weight: 20
 
 {{< feature-state for_k8s_version="v1.19" state="stable" >}}
 
-<!-- 
+<!--
 The Certificates API enables automation of
 [X.509](https://www.itu.int/rec/T-REC-X.509) credential provisioning by providing
 a programmatic interface for clients of the Kubernetes API to request and obtain
-X.509 {{< glossary_tooltip term_id="certificate" text="certificates" >}} 
+X.509 {{< glossary_tooltip term_id="certificate" text="certificates" >}}
 from a Certificate Authority (CA).
 
 A CertificateSigningRequest (CSR) resource is used to request that a certificate be signed
 by a denoted signer, after which the request may be approved or denied before
 finally being signed.
 -->
-证书 API 支持 
-[X.509](https://www.itu.int/rec/T-REC-X.509) 
+证书 API 支持
+[X.509](https://www.itu.int/rec/T-REC-X.509)
 的自动化配置，
 它为 Kubernetes API 的客户端提供一个编程接口，
-用于从证书颁发机构（CA）请求并获取 X.509 
+用于从证书颁发机构（CA）请求并获取 X.509
 {{< glossary_tooltip term_id="certificate" text="证书" >}}。
 
 CertificateSigningRequest（CSR）资源用来向指定的签名者申请证书签名，
@@ -40,7 +41,7 @@ CertificateSigningRequest（CSR）资源用来向指定的签名者申请证书
 
 <!-- body -->
 
-<!-- 
+<!--
 ## Request signing process
 
 The CertificateSigningRequest resource type allows a client to ask for an X.509 certificate
@@ -50,6 +51,9 @@ The CertificateSigningRequest object includes a PEM-encoded PKCS#10 signing requ
 the `spec.request` field. The CertificateSigningRequest denotes the _signer_ (the
 recipient that the request is being made to) using the `spec.signerName` field.
 Note that `spec.signerName` is a required key after api version `certificates.k8s.io/v1`.
+In Kubernetes v1.22 and later, clients may optionally set the `spec.expirationSeconds`
+field to request a particular lifetime for the issued certificate.  The minimum valid
+value for this field is `600`, i.e. ten minutes.
 -->
 ## 请求签名流程 {#request-signing-process}
 
@@ -57,14 +61,16 @@ CertificateSigningRequest 资源类型允许客户使用它申请发放 X.509 
 CertificateSigningRequest 对象 在 `spec.request` 中包含一个 PEM 编码的 PKCS#10 签名请求。
 CertificateSigningRequest 使用 `spec.signerName` 字段标示 _签名者_（请求的接收方）。
 注意，`spec.signerName` 在 `certificates.k8s.io/v1` 之后的 API 版本是必填项。
+在 Kubernetes v1.22 和以后的版本，客户可以可选地设置 `spec.expirationSeconds`
+字段来为颁发的证书设定一个特定的有效期。该字段的最小有效值是 `600`，也就是 10 分钟。
 
-<!-- 
+<!--
 Once created, a CertificateSigningRequest must be approved before it can be signed.
 Depending on the signer selected, a CertificateSigningRequest may be automatically approved
 by a {{< glossary_tooltip text="controller" term_id="controller" >}}.
-Otherwise, a CertificateSigningRequest must be manually approved 
+Otherwise, a CertificateSigningRequest must be manually approved
 either via the REST API (or client-go)
-or by running `kubectl certificate approve`. 
+or by running `kubectl certificate approve`.
 Likewise, a CertificateSigningRequest may also be denied,
 which tells the configured signer that it must not sign the request.
 -->
@@ -77,13 +83,13 @@ which tells the configured signer that it must not sign the request.
 这就相当于通知了指定的签名者，这个证书不能签名。
 
 <!--  
-For certificates that have been approved, the next step is signing. 
+For certificates that have been approved, the next step is signing.
 The relevant signing controller
 first validates that the signing conditions are met and then creates a certificate.
-The signing controller then updates the CertificateSigningRequest, 
+The signing controller then updates the CertificateSigningRequest,
 storing the new certificate into
 the `status.certificate` field of the existing CertificateSigningRequest object. The
-`status.certificate` field is either empty or contains a X.509 certificate, 
+`status.certificate` field is either empty or contains a X.509 certificate,
 encoded in PEM format.
 The CertificateSigningRequest `status.certificate` field is empty until the signer does this.
 -->
@@ -94,8 +100,8 @@ The CertificateSigningRequest `status.certificate` field is empty until the sign
 此时，字段 `status.certificate` 要么为空，要么包含一个用 PEM 编码的 X.509 证书。
 直到签名完成前，CertificateSigningRequest 的字段 `status.certificate` 都为空。
 
-<!-- 
-Once the `status.certificate` field has been populated, 
+<!--
+Once the `status.certificate` field has been populated,
 the request has been completed and clients can now
 fetch the signed certificate PEM data from the CertificateSigningRequest resource.
 The signers can instead deny certificate signing if the approval conditions are not met.
@@ -104,16 +110,18 @@ The signers can instead deny certificate signing if the approval conditions are
 客户端现在可以从 CertificateSigningRequest 资源中获取已签名的证书的 PEM 数据。
 当然如果不满足签名条件，签名者可以拒签。
 
-<!-- 
-In order to reduce the number of old CertificateSigningRequest resources left 
+<!--
+In order to reduce the number of old CertificateSigningRequest resources left
 in a cluster, a garbage collection
-controller runs periodically. 
+controller runs periodically.
 The garbage collection removes CertificateSigningRequests that have not changed
 state for some duration:
 
 * Approved requests: automatically deleted after 1 hour
 * Denied requests: automatically deleted after 1 hour
-* Pending requests: automatically deleted after 1 hour
+* Failed requests: automatically deleted after 1 hour
+* Pending requests: automatically deleted after 24 hours
+* All requests: automatically deleted after the issued certificate has expired
 -->
 为了减少集群中遗留的过时的 CertificateSigningRequest 资源的数量，
 一个垃圾收集控制器将会周期性地运行。
@@ -121,12 +129,14 @@ state for some duration:
 
 * 已批准的请求：1小时后自动删除
 * 已拒绝的请求：1小时后自动删除
-* 挂起的请求：1小时后自动删除
+* 已失败的请求：1小时后自动删除
+* 挂起的请求：24小时后自动删除
+* 所有请求：在颁发的证书过期后自动删除
 
-<!-- 
+<!--
 ## Signers
 
-Custom signerNames can also be specified. All signers should provide information about how they work 
+Custom signerNames can also be specified. All signers should provide information about how they work
 so that clients can predict what will happen to their CSRs.
 This includes:
 -->
@@ -137,20 +147,18 @@ This includes:
 以便客户端可以预期到他们的 CSR 将发生什么。
 此类信息包括：
 
-<!-- 
+<!--
 1. **Trust distribution**: how trust (CA bundles) are distributed.
-2.  **Permitted subjects**: any restrictions on and behavior 
+2.  **Permitted subjects**: any restrictions on and behavior
    when a disallowed subject is requested.
-3. **Permitted x509 extensions**: including IP subjectAltNames, DNS subjectAltNames, 
-   Email subjectAltNames, URI subjectAltNames etc, 
+3. **Permitted x509 extensions**: including IP subjectAltNames, DNS subjectAltNames,
+   Email subjectAltNames, URI subjectAltNames etc,
    and behavior when a disallowed extension is requested.
-4. **Permitted key usages / extended key usages**: any restrictions on and behavior 
+4. **Permitted key usages / extended key usages**: any restrictions on and behavior
    when usages different than the signer-determined usages are specified in the CSR.
-5. **Expiration/certificate lifetime**: whether it is fixed by the signer, 
-   configurable by the admin, determined by the CSR object etc and the behavior 
-   when an expiration is different than the signer-determined expiration 
-   that is specified in the CSR.
-6. **CA bit allowed/disallowed**: and behavior if a CSR contains a request 
+5. **Expiration/certificate lifetime**: whether it is fixed by the signer, configurable by the admin, determined by the CSR `spec.expirationSeconds` field, etc
+   and the behavior when the signer-determined expiration is different from the CSR `spec.expirationSeconds` field.
+6. **CA bit allowed/disallowed**: and behavior if a CSR contains a request
    a for a CA certificate when the signer does not permit it.
 -->
 1. **信任分发**：信任（CA 证书包）是如何分发的。
@@ -159,11 +167,11 @@ This includes:
    Email subjectAltNames、URI subjectAltNames 等，请求一个受限制的扩展项时的应对手段。
 4. **许可的密钥用途/扩展的密钥用途**：当用途和签名者在 CSR 中指定的用途不同时，
    相应的限制和应对手段。
-5. **过期时间/证书有效期**：过期时间由签名者确定、由管理员配置，还是由 CSR 对象指定等，
-   以及过期时间与签名者在 CSR 中指定过期时间不同时的应对手段。
+5. **过期时间/证书有效期**：过期时间由签名者确定、由管理员配置、还是由 CSR `spec.expirationSeconds` 字段指定等，
+   以及签名者决定的过期时间与 CSR `spec.expirationSeconds` 字段不同时的应对手段。
 6. **允许/不允许 CA 位**：当 CSR 包含一个签名者并不允许的 CA 证书的请求时，相应的应对手段。
 
-<!-- 
+<!--
 Commonly, the `status.certificate` field contains a single PEM-encoded X.509
 certificate once the CSR is approved and the certificate is issued. Some
 signers store multiple certificates into the `status.certificate` field. In
@@ -178,23 +186,32 @@ intermediates to be presented during TLS handshakes.
 例如，这是要在 TLS 握手时提供的证书和中继证书。
 
 <!--
-The PKCS#10 signing request format doesn't allow to specify a certificate
-expiration or lifetime. The expiration or lifetime therefore has to be set
-through e.g. an annotation on the CSR object. While it's theoretically
-possible for a signer to use that expiration date, there is currently no
-known implementation that does. (The built-in signers all use the same
-`ClusterSigningDuration` configuration option, which defaults to 1 year,
-and can be changed with the `--cluster-signing-duration` command-line
-flag of the kube-controller-manager.)
+The PKCS#10 signing request format does not have a standard mechanism to specify a
+certificate expiration or lifetime. The expiration or lifetime therefore has to be set
+through the `spec.expirationSeconds` field of the CSR object. The built-in signers
+use the `ClusterSigningDuration` configuration option, which defaults to 1 year,
+(the `--cluster-signing-duration` command-line flag of the kube-controller-manager)
+as the default when no `spec.expirationSeconds` is specified.  When `spec.expirationSeconds`
+is specified, the minimum of `spec.expirationSeconds` and `ClusterSigningDuration` is
+used.
 -->
-PKCS#10 签名请求格式不允许设置证书的过期时间或者生命期。因此，证书的过期
-时间或者生命期必须通过类似 CSR 对象的注解字段这种形式来设置。
-尽管让签名者使用过期日期从理论上来讲也是可行的，目前还不存在哪个实现这样做了。
-（内置的签名者都是用相同的 `ClusterSigningDuration` 配置选项，而该选项
-中将生命期的默认值设为 1 年，且可通过 kube-controller-manager 的命令行选项
-`--cluster-signing-duration` 来更改。）
+PKCS#10 签名请求格式并没有一种标准的方法去设置证书的过期时间或者生命期。
+因此，证书的过期时间或者生命期必须通过 CSR 对象的 `spec.expirationSeconds` 字段来设置。
+当 `spec.expirationSeconds` 没有被指定时，内置的签名者默认使用 `ClusterSigningDuration` 配置选项
+（kube-controller-manager 的命令行选项 `--cluster-signing-duration`），该选项的默认值设为 1 年。
+当 `spec.expirationSeconds` 被指定时，`spec.expirationSeconds` 和 `ClusterSigningDuration`
+中的最小值会被使用。
 
-<!-- 
+{{< note >}}
+<!--
+The `spec.expirationSeconds` field was added in Kubernetes v1.22.  Earlier versions of Kubernetes do not honor this field.
+Kubernetes API servers prior to v1.22 will silently drop this field when the object is created.
+-->
+`spec.expirationSeconds` 字段是在 Kubernetes v1.22 中加入的。早期的 Kubernetes 版本并不认识该字段。
+v1.22 版本之前的 Kubernetes API 服务器会在创建对象的时候忽略该字段。
+{{< /note >}}
+
+<!--
 ### Kubernetes signers
 
 Kubernetes provides built-in signers that each have a well-known `signerName`:
@@ -203,7 +220,7 @@ Kubernetes provides built-in signers that each have a well-known `signerName`:
 
 Kubernetes提供了内置的签名者，每个签名者都有一个众所周知的 `signerName`:
 
-<!-- 
+<!--
 1. `kubernetes.io/kube-apiserver-client`: signs certificates that will be honored as client certificates by the API server.
   Never auto-approved by {{< glossary_tooltip term_id="kube-controller-manager" >}}.
     1. Trust distribution: signed certificates must be honored as client-certificates by the kube-apiserver. The CA bundle is not distributed by any other means.
@@ -214,8 +231,8 @@ Kubernetes提供了内置的签名者，每个签名者都有一个众所周知
        but it is often not the only cluster-admin subject in a cluster.
     1. Permitted x509 extensions - honors subjectAltName and key usage extensions and discards other extensions.
     1. Permitted key usages - must include `["client auth"]`. Must not include key usages beyond `["digital signature", "key encipherment", "client auth"]`.
-    1. Expiration/certificate lifetime - set by the `--cluster-signing-duration` option for the
-       kube-controller-manager implementation of this signer.
+    1. Expiration/certificate lifetime - for the kube-controller-manager implementation of this signer, set to the minimum
+       of the `--cluster-signing-duration` option or, if specified, the `spec.expirationSeconds` field of the CSR object.
     1. CA bit allowed/disallowed - not allowed.
 -->
 1. `kubernetes.io/kube-apiserver-client`：签名的证书将被 API 服务器视为客户证书。
@@ -229,11 +246,11 @@ Kubernetes提供了内置的签名者，每个签名者都有一个众所周知
    1. 许可的 x509 扩展：允许 subjectAltName 和 key usage 扩展，弃用其他扩展。
    1. 许可的密钥用途：必须包含 `["client auth"]`，但不能包含
       `["digital signature", "key encipherment", "client auth"]` 之外的键。
-   1. 过期时间/证书有效期：通过 kube-controller-manager 中 `--cluster-signing-duration`
-      标志来设置，由其中的签名者实施。
+   1. 过期时间/证书有效期：对于 kube-controller-manager 实现的签名者，
+      设置为 `--cluster-signing-duration` 选项和 CSR 对象的 `spec.expirationSeconds` 字段（如有设置该字段）中的最小值。
    1. 允许/不允许 CA 位：不允许。
 
-<!-- 
+<!--
 1. `kubernetes.io/kube-apiserver-client-kubelet`: signs client certificates that will be honored as client certificates by the
    API server.
    May be auto-approved by {{< glossary_tooltip term_id="kube-controller-manager" >}}.
@@ -242,8 +259,8 @@ Kubernetes提供了内置的签名者，每个签名者都有一个众所周知
    1. Permitted subjects - organizations are exactly `["system:nodes"]`, common name starts with "`system:node:`".
    1. Permitted x509 extensions - honors key usage extensions, forbids subjectAltName extensions and drops other extensions.
    1. Permitted key usages - exactly `["key encipherment", "digital signature", "client auth"]`.
-   1. Expiration/certificate lifetime - set by the `--cluster-signing-duration` option for the
-      kube-controller-manager implementation of this signer.
+   1. Expiration/certificate lifetime - for the kube-controller-manager implementation of this signer, set to the minimum
+      of the `--cluster-signing-duration` option or, if specified, the `spec.expirationSeconds` field of the CSR object.
    1. CA bit allowed/disallowed - not allowed.
 -->
 2. `kubernetes.io/kube-apiserver-client-kubelet`: 签名的证书将被 kube-apiserver 视为客户证书。
@@ -253,11 +270,11 @@ Kubernetes提供了内置的签名者，每个签名者都有一个众所周知
    1. 许可的主体：组织名必须是 `["system:nodes"]`，用户名以 "`system:node:`" 开头
    1. 许可的 x509 扩展：允许 key usage 扩展，禁用 subjectAltName 扩展，并删除其他扩展。
    1. 许可的密钥用途：必须是 `["key encipherment", "digital signature", "client auth"]`
-   1. 过期时间/证书有效期：通过 kube-controller-manager 中签名者的实现所对应的标志
-      `--cluster-signing-duration` 来设置。
+   1. 过期时间/证书有效期：对于 kube-controller-manager 实现的签名者，
+      设置为 `--cluster-signing-duration` 选项和 CSR 对象的 `spec.expirationSeconds` 字段（如有设置该字段）中的最小值。
    1. 允许/不允许 CA 位：不允许。
 
-<!-- 
+<!--
 1. `kubernetes.io/kubelet-serving`: signs serving certificates that are honored as a valid kubelet serving certificate
    by the API server, but has no other guarantees.
    Never auto-approved by {{< glossary_tooltip term_id="kube-controller-manager" >}}.
@@ -266,7 +283,8 @@ Kubernetes提供了内置的签名者，每个签名者都有一个众所周知
    1. Permitted x509 extensions - honors key usage and DNSName/IPAddress subjectAltName extensions, forbids EmailAddress and
       URI subjectAltName extensions, drops other extensions. At least one DNS or IP subjectAltName must be present.
    1. Permitted key usages - exactly `["key encipherment", "digital signature", "server auth"]`.
-   1. Expiration/certificate lifetime - minimum of CSR signer or request.
+   1. Expiration/certificate lifetime - for the kube-controller-manager implementation of this signer, set to the minimum
+      of the `--cluster-signing-duration` option or, if specified, the `spec.expirationSeconds` field of the CSR object.
    1. CA bit allowed/disallowed - not allowed.
 -->
 3. `kubernetes.io/kubelet-serving`: 签名服务证书，该服务证书被 API 服务器视为有效的 kubelet 服务证书，
@@ -276,12 +294,12 @@ Kubernetes提供了内置的签名者，每个签名者都有一个众所周知
    1. 许可的 x509 扩展：允许 key usage、DNSName/IPAddress subjectAltName 等扩展，
       禁止  EmailAddress、URI subjectAltName 等扩展，并丢弃其他扩展。
       至少有一个 DNS 或 IP 的 SubjectAltName 存在。
-   1. 许可的密钥用途：必须是 `["key encipherment", "digital signature", "client auth"]`
-   1. 过期日期/证书生命期：通过 kube-controller-manager 中签名者的实现所对应的标志
-      `--cluster-signing-duration` 来设置。
+   1. 许可的密钥用途：必须是 `["key encipherment", "digital signature", "server auth"]`
+   1. 过期时间/证书有效期：对于 kube-controller-manager 实现的签名者，
+      设置为 `--cluster-signing-duration` 选项和 CSR 对象的 `spec.expirationSeconds` 字段（如有设置该字段）中的最小值。
    1. 允许/不允许 CA 位：不允许。
 
-<!-- 
+<!--
 1. `kubernetes.io/legacy-unknown`:  has no guarantees for trust at all. Some third-party distributions of Kubernetes
    may honor client certificates signed by it. The stable CertificateSigningRequest API (version `certificates.k8s.io/v1` and later)
    does not allow to set the `signerName` as `kubernetes.io/legacy-unknown`.
@@ -290,8 +308,8 @@ Kubernetes提供了内置的签名者，每个签名者都有一个众所周知
    1. Permitted subjects - any
    1. Permitted x509 extensions - honors subjectAltName and key usage extensions and discards other extensions.
    1. Permitted key usages - any
-   1. Expiration/certificate lifetime - set by the `--cluster-signing-duration` option for the
-       kube-controller-manager implementation of this signer.
+   1. Expiration/certificate lifetime - for the kube-controller-manager implementation of this signer, set to the minimum
+      of the `--cluster-signing-duration` option or, if specified, the `spec.expirationSeconds` field of the CSR object.
    1. CA bit allowed/disallowed - not allowed.
 -->
 4. `kubernetes.io/legacy-unknown`: 不保证信任。Kubernetes 的一些第三方发行版可能会使用它签署的客户端证书。
@@ -302,8 +320,8 @@ Kubernetes提供了内置的签名者，每个签名者都有一个众所周知
    1. 许可的主体：全部。
    1. 许可的 x509 扩展：允许 subjectAltName 和 key usage 等扩展，并弃用其他扩展。
    1. 许可的密钥用途：全部。
-   1. 过期日期/证书生命期：通过 kube-controller-manager 中签名者的实现所对应的标志
-      `--cluster-signing-duration` 来设置。
+   1. 过期时间/证书有效期：对于 kube-controller-manager 实现的签名者，
+      设置为 `--cluster-signing-duration` 选项和 CSR 对象的 `spec.expirationSeconds` 字段（如有设置该字段）中的最小值。
    1. 允许/不允许 CA 位 - 不允许。
 
 {{< note >}}
@@ -313,7 +331,16 @@ Failures for all of these are only reported in kube-controller-manager logs.
 注意：所有这些故障仅在 kube-controller-manager 日志中报告。
 {{< /note >}}
 
-<!-- 
+{{< note >}}
+<!--
+The `spec.expirationSeconds` field was added in Kubernetes v1.22.  Earlier versions of Kubernetes do not honor this field.
+Kubernetes API servers prior to v1.22 will silently drop this field when the object is created.
+-->
+`spec.expirationSeconds` 字段是在 Kubernetes v1.22 中加入的。早期的 Kubernetes 版本并不认识该字段。
+v1.22 版本之前的 Kubernetes API 服务器会在创建对象的时候忽略该字段。
+{{< /note >}}
+
+<!--
 Distribution of trust happens out of band for these signers.  Any trust outside of those described above are strictly
 coincidental. For instance, some distributions may honor `kubernetes.io/legacy-unknown` as client certificates for the
 kube-apiserver, but this is not a standard.
@@ -326,7 +353,7 @@ guaranteed to verify a connection to the API server using the default service (`
 这些用途都没有以任何方式涉及到 ServiceAccount 中的 Secrets `.data[ca.crt]`。
 此 CA 证书包只保证使用默认的服务（`kubernetes.default.svc`）来验证到 API 服务器的连接。
 
-<!-- 
+<!--
 ## Authorization
 
 To allow creating a CertificateSigningRequest and retrieving any CertificateSigningRequest:
@@ -339,7 +366,7 @@ For example:
 
 授权创建 CertificateSigningRequest 和检索 CertificateSigningRequest:
 
-* verbs（动词）: `create`、`get`、`list`、`watch`, 
+* verbs（动词）: `create`、`get`、`list`、`watch`,
   group（组）：`certificates.k8s.io`，
   resources：`certificatesigningrequests`
 
@@ -347,7 +374,7 @@ For example:
 
 {{< codenew file="access/certificate-signing-request/clusterrole-create.yaml" >}}
 
-<!-- 
+<!--
 To allow approving a CertificateSigningRequest:
 
 * Verbs: `get`, `list`, `watch`, group: `certificates.k8s.io`, resource: `certificatesigningrequests`
@@ -373,7 +400,7 @@ For example:
 
 {{< codenew file="access/certificate-signing-request/clusterrole-approve.yaml" >}}
 
-<!-- 
+<!--
 To allow signing a CertificateSigningRequest:
 
 * Verbs: `get`, `list`, `watch`, group: `certificates.k8s.io`, resource: `certificatesigningrequests`
@@ -395,21 +422,20 @@ To allow signing a CertificateSigningRequest:
 
 {{< codenew file="access/certificate-signing-request/clusterrole-sign.yaml" >}}
 
-<!-- 
+<!--
 ## Normal User
 
 A few steps are required in order to get a normal user to be able to
-authenticate and invoke an API. First, this user must have certificate issued
-by the Kubernetes cluster, and then present that Certificate to the API call
-as the Certificate Header or through the kubectl.
+authenticate and invoke an API. First, this user must have a certificate issued
+by the Kubernetes cluster, and then present that certificate to the Kubernetes API.
 -->
 ## 普通用户 {#normal-user}
 
 为了让普通用户能够通过认证并调用 API，需要执行几个步骤。
 首先，该用户必须拥有 Kubernetes 集群签发的证书，
-然后将该证书作为 API 调用的 Certificate 头或通过 kubectl 提供。
+然后将该证书提供给 Kubernetes API。
 
-<!-- 
+<!--
 ### Create private key
 
 The following scripts show how to generate PKI private key and CSR. It is
@@ -421,17 +447,17 @@ O is the group that this user will belong to. You can refer to
 
 下面的脚本展示了如何生成 PKI 私钥和 CSR。
 设置 CSR 的 CN 和 O 属性很重要。CN 是用户名，O 是该用户归属的组。
-你可以参考 [RBAC](/zh/docs/reference/access-authn-authz/rbac/) 了解标准组的信息。
+你可以参考 [RBAC](/zh-cn/docs/reference/access-authn-authz/rbac/) 了解标准组的信息。
 
 ```shell
 openssl genrsa -out myuser.key 2048
 openssl req -new -key myuser.key -out myuser.csr
 ```
 
-<!-- 
+<!--
 ### Create CertificateSigningRequest
 
-Create a CertificateSigningRequest and submit it to a Kubernetes Cluster via kubectl. 
+Create a CertificateSigningRequest and submit it to a Kubernetes Cluster via kubectl.
 Below is a script to generate the CertificateSigningRequest.
 -->
 ### 创建 CertificateSigningRequest {#create-certificatesigningrequest}
@@ -446,29 +472,30 @@ kind: CertificateSigningRequest
 metadata:
   name: myuser
 spec:
-  groups:
-  - system:authenticated
   request: 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
   signerName: kubernetes.io/kube-apiserver-client
+  expirationSeconds: 86400  # one day
   usages:
   - client auth
 EOF
 ```
 
-<!-- 
+<!--
 Some points to note:
 
 - `usages` has to be '`client auth`'
+- `expirationSeconds` could be made longer (i.e. `864000` for ten days) or shorter (i.e. `3600` for one hour)
 - `request` is the base64 encoded value of the CSR file content.
   You can get the content using this command: ```cat myuser.csr | base64 | tr -d "\n"```
 -->
 需要注意的几点:
 
 - `usage` 字段必须是 '`client auth`'
+- `expirationSeconds` 可以设置为更长（例如 `864000` 是十天）或者更短（例如 `3600` 是一个小时）
 - `request` 字段是 CSR 文件内容的 base64 编码值。
   要得到该值，可以执行命令 `cat myuser.csr | base64 | tr -d "\n"`。
 
-<!-- 
+<!--
 ### Approve certificate signing request
 
 Use kubectl to create a CSR and approve it.
@@ -485,7 +512,7 @@ Get the list of CSRs:
 kubectl get csr
 ```
 
-<!-- 
+<!--
 Approve the CSR:
 -->
 批准 CSR：
@@ -494,10 +521,10 @@ Approve the CSR:
 kubectl certificate approve myuser
 ```
 
-<!-- 
+<!--
 ### Get the certificate
 
-Retrieve the certificate from the CSR.
+Retrieve the certificate from the CSR:
 -->
 ### 取得证书 {#get-the-certificate}
 
@@ -507,8 +534,8 @@ Retrieve the certificate from the CSR.
 kubectl get csr/myuser -o yaml
 ```
 
-<!-- 
-The Certificate value is in Base64-encoded format under `status.certificate`.
+<!--
+The certificate value is in Base64-encoded format under `status.certificate`.
 
 Export the issued certificate from the CertificateSigningRequest.
 
@@ -522,25 +549,25 @@ kubectl get csr myuser -o jsonpath='{.status.certificate}'| base64 -d > myuser.c
 ```
 
 <!--
-### Create Role and Role Binding
+### Create Role and RoleBinding
 
-With the certificate created. it is time to define the Role and RoleBinding for
+With the certificate created it is time to define the Role and RoleBinding for
 this user to access Kubernetes cluster resources.
 
-This is a sample script to create Role for this new user
+This is a sample command to create a Role for this new user:
 -->
 ### 创建角色和角色绑定 {#create-role-and-role-binding}
 
 创建了证书之后，为了让这个用户能访问 Kubernetes 集群资源，现在就要创建
 Role 和 RoleBinding 了。
 
-下面是为这个新用户创建 Role 的示例脚本：
+下面是为这个新用户创建 Role 的示例命令：
 
 ```shell
 kubectl create role developer --verb=create --verb=get --verb=list --verb=update --verb=delete --resource=pods
 ```
 
-<!-- 
+<!--
 This is a sample command to create a RoleBinding for this new user:
 -->
 下面是为这个新用户创建 RoleBinding 的示例命令：
@@ -549,7 +576,7 @@ This is a sample command to create a RoleBinding for this new user:
 kubectl create rolebinding developer-binding-myuser --role=developer --user=myuser
 ```
 
-<!-- 
+<!--
 ### Add to kubeconfig
 
 The last step is to add this user into the kubeconfig file.
@@ -568,7 +595,7 @@ kubectl config set-credentials myuser --client-key=myuser.key --client-certifica
 
 ```
 
-<!-- 
+<!--
 Then, you need to add the context:
 -->
 然后，你需要添加上下文：
@@ -577,7 +604,7 @@ Then, you need to add the context:
 kubectl config set-context myuser --cluster=kubernetes --user=myuser
 ```
 
-<!-- 
+<!--
 To test it, change the context to `myuser`:
 -->
 来测试一下，把上下文切换为 `myuser`：
@@ -586,8 +613,8 @@ To test it, change the context to `myuser`:
 kubectl config use-context myuser
 ```
 
-<!-- 
-## Approval or rejection   {#approval-rejection}
+<!--
+## Approval or rejection  {#approval-rejection}
 
 ### Control plane automated approval {#approval-rejection-control-plane}
 
@@ -601,13 +628,13 @@ in order to check authorization for certificate approval.
 
 ### 控制平面的自动化批准 {#approval-rejection-control-plane}
 
-kube-controller-manager 内建了一个证书批准者，其 signerName 为 
+kube-controller-manager 内建了一个证书批准者，其 signerName 为
 `kubernetes.io/kube-apiserver-client-kubelet`，
 该批准者将 CSR 上用于节点凭据的各种权限委托给权威认证机构。
 kube-controller-manager 将 SubjectAccessReview 资源发送（POST）到 API 服务器，
 以便检验批准证书的授权。
 
-<!-- 
+<!--
 ### Approval or rejection using `kubectl` {#approval-rejection-kubectl}
 
 A Kubernetes administrator (with appropriate permissions) can manually approve
@@ -627,8 +654,8 @@ Kubernetes 管理员（拥有足够的权限）可以手工批准（或驳回）
 kubectl certificate approve <certificate-signing-request-name>
 ```
 
-<!-- 
-Likewise, to deny a CSR: 
+<!--
+Likewise, to deny a CSR:
 -->
 同样地，驳回一个 CSR：
 
@@ -636,7 +663,7 @@ Likewise, to deny a CSR:
 kubectl certificate deny <certificate-signing-request-name>
 ```
 
-<!-- 
+<!--
 ### Approval or rejection using the Kubernetes API {#approval-rejection-api-client}
 
 Users of the REST API can approve CSRs by submitting an UPDATE request to the `approval`
@@ -672,10 +699,11 @@ status:
     reason: ApprovedByMyPolicy # You can set this to any string
     type: Approved
 ```
-<!-- 
+
+<!--
 For `Denied` CSRs:
 -->
-驳回（`Denied`）的 CRS：
+驳回（`Denied`）的 CSR：
 
 ```yaml
 apiVersion: certificates.k8s.io/v1
@@ -690,7 +718,7 @@ status:
     type: Denied
 ```
 
-<!-- 
+<!--
 It's usual to set `status.conditions.reason` to a machine-friendly reason
 code using TitleCase; this is a convention but you can set it to anything
 you like. If you want to add a note for human consumption, use the
@@ -700,7 +728,7 @@ you like. If you want to add a note for human consumption, use the
 这是一个命名约定，但你也可以随你的个人喜好设置。
 如果你想添加一个供人类使用的注释，那就用 `status.conditions.message`  字段。
 
-<!-- 
+<!--
 ## Signing
 
 ### Control plane signer {#signer-control-plane}
@@ -716,8 +744,8 @@ were marked as approved.
 
 ### 控制平面签名者    {#signer-control-plane}
 
-Kubernetes 控制平面实现了每一个 
-[Kubernetes 签名者](/zh/docs/reference/access-authn-authz/certificate-signing-requests/#kubernetes-signers)，
+Kubernetes 控制平面实现了每一个
+[Kubernetes 签名者](/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests/#kubernetes-signers)，
 每个签名者的实现都是 kube-controller-manager 的一部分。
 
 {{< note >}}
@@ -725,7 +753,16 @@ Kubernetes 控制平面实现了每一个
 kube-controller-manager 签名所有标记为 approved  的 CSR。
 {{< /note >}}
 
-<!-- 
+{{< note >}}
+<!--
+The `spec.expirationSeconds` field was added in Kubernetes v1.22.  Earlier versions of Kubernetes do not honor this field.
+Kubernetes API servers prior to v1.22 will silently drop this field when the object is created.
+-->
+`spec.expirationSeconds` 字段是在 Kubernetes v1.22 中加入的。早期的 Kubernetes 版本并不认识该字段。
+v1.22 版本之前的 Kubernetes API 服务器会在创建对象的时候忽略该字段。
+{{< /note >}}
+
+<!--
 ### API-based signers {#signer-api}
 
 Users of the REST API can sign CSRs by submitting an UPDATE request to the `status`
@@ -744,7 +781,7 @@ Example certificate content:
 
 REST API 的用户可以通过向待签名的 CSR 的 `status` 子资源提交更新请求来对 CSR 进行签名。
 
-作为这个请求的一部分， `status.certificate` 字段应设置为已签名的证书。
+作为这个请求的一部分，`status.certificate` 字段应设置为已签名的证书。
 此字段可包含一个或多个 PEM 编码的证书。
 
 所有的 PEM 块必须具备 "CERTIFICATE" 标签，且不包含文件头，且编码的数据必须是
@@ -775,7 +812,7 @@ M1fLPhLyR54fGaY+7/X8P9AZzPefAkwizeXwe9ii6/a08vWoiE4=
 -----END CERTIFICATE-----
 ```
 
-<!-- 
+<!--
 Non-PEM content may appear before or after the CERTIFICATE PEM blocks and is unvalidated,
 to allow for explanatory text as described in section 5.2 of RFC7468.
 
@@ -798,14 +835,14 @@ status:
 
 ## {{% heading "whatsnext" %}}
 
-<!-- 
+<!--
 * Read [Manage TLS Certificates in a Cluster](/docs/tasks/tls/managing-tls-in-a-cluster/)
 * View the source code for the kube-controller-manager built in [signer](https://github.com/kubernetes/kubernetes/blob/32ec6c212ec9415f604ffc1f4c1f29b782968ff1/pkg/controller/certificates/signer/cfssl_signer.go)
 * View the source code for the kube-controller-manager built in [approver](https://github.com/kubernetes/kubernetes/blob/32ec6c212ec9415f604ffc1f4c1f29b782968ff1/pkg/controller/certificates/approver/sarapprove.go)
 * For details of X.509 itself, refer to [RFC 5280](https://tools.ietf.org/html/rfc5280#section-3.1) section 3.1
 * For information on the syntax of PKCS#10 certificate signing requests, refer to [RFC 2986](https://tools.ietf.org/html/rfc2986)
 -->
-* 参阅 [管理集群中的 TLS 认证](/zh/docs/tasks/tls/managing-tls-in-a-cluster/)
+* 参阅 [管理集群中的 TLS 认证](/zh-cn/docs/tasks/tls/managing-tls-in-a-cluster/)
 * 查看 kube-controller-manager 中[签名者](https://github.com/kubernetes/kubernetes/blob/32ec6c212ec9415f604ffc1f4c1f29b782968ff1/pkg/controller/certificates/signer/cfssl_signer.go)部分的源代码
 * 查看 kube-controller-manager 中[批准者](https://github.com/kubernetes/kubernetes/blob/32ec6c212ec9415f604ffc1f4c1f29b782968ff1/pkg/controller/certificates/approver/sarapprove.go)部分的源代码
 * 有关 X.509 本身的详细信息，请参阅 [RFC 5280](https://tools.ietf.org/html/rfc5280#section-3.1) 第3.1节
diff --git a/content/zh/docs/reference/access-authn-authz/extensible-admission-controllers.md b/content/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers.md
similarity index 61%
rename from content/zh/docs/reference/access-authn-authz/extensible-admission-controllers.md
rename to content/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers.md
index f41d34c8ee..7c257e8286 100644
--- a/content/zh/docs/reference/access-authn-authz/extensible-admission-controllers.md
+++ b/content/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers.md
@@ -16,7 +16,7 @@ In addition to [compiled-in admission plugins](/docs/reference/access-authn-auth
 admission plugins can be developed as extensions and run as webhooks configured at runtime.
 This page describes how to build, configure, use, and monitor admission webhooks.
 -->
-除了[内置的 admission 插件](/zh/docs/reference/access-authn-authz/admission-controllers/)，
+除了[内置的 admission 插件](/zh-cn/docs/reference/access-authn-authz/admission-controllers/)，
 准入插件可以作为扩展独立开发，并以运行时所配置的 Webhook 的形式运行。
 此页面描述了如何构建、配置、使用和监视准入 Webhook。
 
@@ -36,8 +36,8 @@ Mutating admission Webhooks are invoked first, and can modify objects sent to th
 -->
 准入 Webhook 是一种用于接收准入请求并对其进行处理的 HTTP 回调机制。
 可以定义两种类型的准入 webhook，即
-[验证性质的准入 Webhook](/zh/docs/reference/access-authn-authz/admission-controllers/#validatingadmissionwebhook) 和
-[修改性质的准入 Webhook](/zh/docs/reference/access-authn-authz/admission-controllers/#mutatingadmissionwebhook)。
+[验证性质的准入 Webhook](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#validatingadmissionwebhook) 和
+[修改性质的准入 Webhook](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#mutatingadmissionwebhook)。
 修改性质的准入 Webhook 会先被调用。它们可以更改发送到 API 
 服务器的对象以执行自定义的设置默认值操作。
 
@@ -57,11 +57,9 @@ should use a validating admission webhook, since objects can be modified after b
 则应使用验证性质的准入 Webhook，因为对象被修改性质 Webhook 看到之后仍然可能被修改。
 {{< /note >}}
 
-
 <!--
 ### Experimenting with admission webhooks
 
-Admission webhooks are essentially part of the cluster control-plane. You should
 write and deploy them with great caution. Please read the [user
 guides](/docs/reference/access-authn-authz/extensible-admission-controllers/#write-an-admission-webhook-server) for
 instructions if you intend to write/deploy production-grade admission webhooks.
@@ -70,31 +68,26 @@ In the following, we describe how to quickly experiment with admission webhooks.
 ### 尝试准入 Webhook
 
 准入 Webhook 本质上是集群控制平面的一部分。你应该非常谨慎地编写和部署它们。
-如果你打算编写或者部署生产级准入 webhook，请阅读[用户指南](/zh/docs/reference/access-authn-authz/extensible-admission-controllers/#write-an-admission-webhook-server)以获取相关说明。
+如果你打算编写或者部署生产级准入 webhook，请阅读[用户指南](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/#write-an-admission-webhook-server)以获取相关说明。
 在下文中，我们将介绍如何快速试验准入 Webhook。
 
 <!--
 ### Prerequisites
 
-* Ensure that the Kubernetes cluster is at least as new as v1.16 (to use `admissionregistration.k8s.io/v1`),
-  or v1.9 (to use `admissionregistration.k8s.io/v1beta1`).
-
 * Ensure that MutatingAdmissionWebhook and ValidatingAdmissionWebhook
   admission controllers are enabled.
   [Here](/docs/reference/access-authn-authz/admission-controllers/#is-there-a-recommended-set-of-admission-controllers-to-use)
   is a recommended set of admission controllers to enable in general.
 
-* Ensure that the admissionregistration.k8s.io/v1beta1 API is enabled.
+* Ensure that the `admissionregistration.k8s.io/v1` API is enabled.
 -->
 ### 先决条件 {#prerequisites}
 
-* 确保 Kubernetes 集群版本至少为 v1.16（以便使用 `admissionregistration.k8s.io/v1` API） 或者 v1.9 （以便使用 `admissionregistration.k8s.io/v1beta1` API）。
-
 * 确保启用 MutatingAdmissionWebhook 和 ValidatingAdmissionWebhook 控制器。
-  [这里](/zh/docs/reference/access-authn-authz/admission-controllers/#is-there-a-recommended-set-of-admission-controllers-to-use)
+  [这里](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#is-there-a-recommended-set-of-admission-controllers-to-use)
   是一组推荐的 admission 控制器，通常可以启用。
 
-* 确保启用了 `admissionregistration.k8s.io/v1beta1` API。
+* 确保启用了 `admissionregistration.k8s.io/v1` API。
 
 <!--
 ### Write an admission webhook server
@@ -102,13 +95,15 @@ In the following, we describe how to quickly experiment with admission webhooks.
 ### 编写一个准入 Webhook 服务器
 
 <!--
-Please refer to the implementation of the [admission webhook
-server](https://github.com/kubernetes/kubernetes/blob/v1.13.0/test/images/webhook/main.go)
+Please refer to the implementation of the [admission webhook server](https://github.com/kubernetes/kubernetes/blob/release-1.21/test/images/agnhost/webhook/main.go)
 that is validated in a Kubernetes e2e test. The webhook handles the
-`AdmissionReview` request sent by the apiservers, and sends back its decision
+`AdmissionReview` request sent by the API servers, and sends back its decision
 as an `AdmissionReview` object in the same version it received.
 -->
-请参阅 Kubernetes e2e 测试中的 [admission webhook 服务器](https://github.com/kubernetes/kubernetes/blob/v1.13.0/test/images/webhook/main.go) 的实现。webhook 处理由 apiserver 发送的 `AdmissionReview` 请求，并且将其决定作为 `AdmissionReview` 对象以相同版本发送回去。
+请参阅 Kubernetes e2e 测试中的
+[admission webhook 服务器](https://github.com/kubernetes/kubernetes/blob/release-1.21/test/images/agnhost/webhook/main.go)
+的实现。webhook 处理由 API 服务器发送的 `AdmissionReview` 请求，并且将其决定
+作为 `AdmissionReview` 对象以相同版本发送回去。
 
 <!--
 See the [webhook request](#request) section for details on the data sent to webhooks.
@@ -122,14 +117,17 @@ See the [webhook response](#response) section for the data expected from webhook
 
 <!--
 The example admission webhook server leaves the `ClientAuth` field
-[empty](https://github.com/kubernetes/kubernetes/blob/v1.13.0/test/images/webhook/config.go#L47-L48),
+[empty](https://github.com/kubernetes/kubernetes/blob/v1.22.0/test/images/agnhost/webhook/config.go#L38-L39),
 which defaults to `NoClientCert`. This means that the webhook server does not
-authenticate the identity of the clients, supposedly apiservers. If you need
+authenticate the identity of the clients, supposedly API servers. If you need
 mutual TLS or other ways to authenticate the clients, see
-how to [authenticate apiservers](#authenticate-apiservers).
+how to [authenticate API servers](#authenticate-apiservers).
 -->
-示例准入 Webhook 服务器置 `ClientAuth` 字段为[空](https://github.com/kubernetes/kubernetes/blob/v1.13.0/test/images/webhook/config.go#L47-L48)，默认为 `NoClientCert` 。这意味着 webhook 服务器不会验证客户端的身份，认为其是 apiservers。
-如果你需要双向 TLS 或其他方式来验证客户端，请参阅如何[对 apiservers 进行身份认证](#authenticate-apiservers)。
+示例准入 Webhook 服务器置 `ClientAuth` 字段为
+[空](https://github.com/kubernetes/kubernetes/blob/v1.22.0/test/images/agnhost/webhook/config.go#L38-L39)，
+默认为 `NoClientCert` 。这意味着 webhook 服务器不会验证客户端的身份，认为其是 apiservers。
+如果你需要双向 TLS 或其他方式来验证客户端，请参阅
+如何[对 apiservers 进行身份认证](#authenticate-apiservers)。
 
 <!--
 ### Deploy the admission webhook service
@@ -141,9 +139,14 @@ The webhook server in the e2e test is deployed in the Kubernetes cluster, via
 the [deployment API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#deployment-v1-apps).
 The test also creates a [service](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#service-v1-core)
 as the front-end of the webhook server. See
-[code](https://github.com/kubernetes/kubernetes/blob/v1.15.0/test/e2e/apimachinery/webhook.go#L301).
+[code](https://github.com/kubernetes/kubernetes/blob/v1.22.0/test/e2e/apimachinery/webhook.go#L748).
 -->
-e2e 测试中的 webhook 服务器通过 [deployment API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#deployment-v1-apps) 部署在 Kubernetes 集群中。该测试还将创建一个 [service](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#service-v1-core) 作为 webhook 服务器的前端。参见[相关代码](https://github.com/kubernetes/kubernetes/blob/v1.15.0/test/e2e/apimachinery/webhook.go#L301)。
+e2e 测试中的 webhook 服务器通过
+[deployment API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#deployment-v1-apps)
+部署在 Kubernetes 集群中。该测试还将创建一个
+[service](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#service-v1-core)
+作为 webhook 服务器的前端。参见
+[相关代码](https://github.com/kubernetes/kubernetes/blob/v1.22.0/test/e2e/apimachinery/webhook.go#L748)。
 
 <!--
 You may also deploy your webhooks outside of the cluster. You will need to update
@@ -152,7 +155,7 @@ your webhook configurations accordingly.
 你也可以在集群外部署 webhook。这样做需要相应地更新你的 webhook 配置。
 
 <!--
-### Configure准入 Webhooks on the fly
+### Configure admission webhooks on the fly
 -->
 ### 即时配置准入 Webhook
 
@@ -163,15 +166,16 @@ webhooks via
 or
 [MutatingWebhookConfiguration](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io).
 -->
-你可以通过 [ValidatingWebhookConfiguration](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#validatingwebhookconfiguration-v1-admissionregistration-k8s-io) 或者 [MutatingWebhookConfiguration](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io) 动态配置哪些资源要被哪些准入 Webhook 处理。
+你可以通过 
+[ValidatingWebhookConfiguration](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#validatingwebhookconfiguration-v1-admissionregistration-k8s-io)
+或者 
+[MutatingWebhookConfiguration](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io) 动态配置哪些资源要被哪些准入 Webhook 处理。
 <!--
 The following is an example `ValidatingWebhookConfiguration`, a mutating webhook configuration is similar.
 See the [webhook configuration](#webhook-configuration) section for details about each config field.
 -->
 以下是一个 `ValidatingWebhookConfiguration` 示例，mutating webhook 配置与此类似。有关每个配置字段的详细信息，请参阅 [webhook 配置](#webhook-configuration) 部分。
 
-{{< tabs name="ValidatingWebhookConfiguration_example_1" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
@@ -189,43 +193,26 @@ webhooks:
     service:
       namespace: "example-namespace"
       name: "example-service"
-    caBundle: "Ci0tLS0tQk...<base64-encoded PEM bundle containing the CA that signed the webhook's serving certificate>...tLS0K"
-  admissionReviewVersions: ["v1", "v1beta1"]
+    caBundle: <CA_BUNDLE>
+  admissionReviewVersions: ["v1"]
   sideEffects: None
   timeoutSeconds: 5
 ```
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# 1.16 中被淘汰，推荐使用 admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: ValidatingWebhookConfiguration
-metadata:
-  name: "pod-policy.example.com"
-webhooks:
-- name: "pod-policy.example.com"
-  rules:
-  - apiGroups:   [""]
-    apiVersions: ["v1"]
-    operations:  ["CREATE"]
-    resources:   ["pods"]
-    scope:       "Namespaced"
-  clientConfig:
-    service:
-      namespace: "example-namespace"
-      name: "example-service"
-    caBundle: "Ci0tLS0tQk...<base64-encoded PEM bundle containing the CA that signed the webhook's serving certificate>...tLS0K"
-  admissionReviewVersions: ["v1beta1"]
-  timeoutSeconds: 5
-```
-{{% /tab %}}
-{{< /tabs >}}
-
-<!--
-The scope field specifies if only cluster-scoped resources ("Cluster") or namespace-scoped
-resources ("Namespaced") will match this rule. "*" means that there are no scope restrictions.
+{{< note >}}
+<!-- 
+You must replace the `<CA_BUNDLE>` in the above example by a valid CA bundle
+which is a PEM-encoded CA bundle for validating the webhook's server certificate.
 -->
-scope 字段指定是仅集群范围的资源（Cluster）还是名字空间范围的资源资源（Namespaced）将与此规则匹配。`*` 表示没有范围限制。
+你必须在以上示例中将 `<CA_BUNDLE>` 替换为一个有效的 VA 证书包，
+这是一个用 PEM 编码的 CA 证书包，用于校验 Webhook 的服务器证书。
+{{< /note >}}
+
+<!-- 
+The `scope` field specifies if only cluster-scoped resources ("Cluster") or namespace-scoped
+resources ("Namespaced") will match this rule. "&lowast;" means that there are no scope restrictions.
+-->
+scope 字段指定是仅集群范围的资源（Cluster）还是名字空间范围的资源资源（Namespaced）将与此规则匹配。
+`*` 表示没有范围限制。
 
 <!--
 When using `clientConfig.service`, the server cert must be valid for
@@ -236,45 +223,44 @@ When using `clientConfig.service`, the server cert must be valid for
 {{< /note >}}
 
 <!--
-Default timeout for a webhook call is 10 seconds for webhooks registered created using `admissionregistration.k8s.io/v1`,
-and 30 seconds for webhooks created using `admissionregistration.k8s.io/v1beta1`. Starting in kubernetes 1.14 you
-can set the timeout and it is encouraged to use a small timeout for webhooks.
+Default timeout for a webhook call is 10 seconds,
+You can set the `timeout` and it is encouraged to use a short timeout for webhooks.
 If the webhook call times out, the request is handled according to the webhook's
 failure policy.
 -->
 {{< note >}}
-对于使用 `admissionregistration.k8s.io/v1` 创建的 webhook 而言，其 webhook 调用的默认超时是 10 秒；
-对于使用 `admissionregistration.k8s.io/v1beta1` 创建的 webhook 而言，其默认超时是 30 秒。
-从 kubernetes 1.14 开始，可以设置超时。建议对 webhooks 设置较短的超时时间。
+Webhook 调用的默认超时是 10 秒，你可以设置 `timeout` 并建议对 webhook 设置较短的超时时间。
 如果 webhook 调用超时，则根据 webhook 的失败策略处理请求。
 {{< /note >}}
 
 <!--
-When an apiserver receives a request that matches one of the `rules`, the
-apiserver sends an `admissionReview` request to webhook as specified in the
+When an API server receives a request that matches one of the `rules`, the
+API server sends an `admissionReview` request to webhook as specified in the
 `clientConfig`.
 
 After you create the webhook configuration, the system will take a few seconds
 to honor the new configuration.
 -->
-当 apiserver 收到与 `rules` 相匹配的请求时，apiserver 按照 `clientConfig` 中指定的方式向 webhook 发送一个 `admissionReview` 请求。
+当一个 API 服务器收到与 `rules` 相匹配的请求时，
+该 API 服务器将按照 `clientConfig` 中指定的方式向 webhook 发送一个 `admissionReview` 请求。
 
-创建 webhook 配置后，系统将花费几秒钟使新配置生效。
+创建 Webhook 配置后，系统将花费几秒钟使新配置生效。
 
 <!--
-### Authenticate apiservers
+### Authenticate API servers
 -->
-### 对 apiservers 进行身份认证 {#authenticate-apiservers}
+### 对 API 服务器进行身份认证 {#authenticate-apiservers}
 
 <!--
 If your admission webhooks require authentication, you can configure the
-apiservers to use basic auth, bearer token, or a cert to authenticate itself to
+API servers to use basic auth, bearer token, or a cert to authenticate itself to
 the webhooks. There are three steps to complete the configuration.
 -->
-如果你的 webhook 需要身份验证，则可以将 apiserver 配置为使用基本身份验证、持有者令牌或证书来向 webhook 提供身份证明。完成此配置需要三个步骤。
+如果你的 Webhook 需要身份验证，则可以将 API 服务器配置为使用基本身份验证、持有者令牌或证书来向
+Webhook 提供身份证明。完成此配置需要三个步骤。
 
 <!--
-* When starting the apiserver, specify the location of the admission control
+* When starting the API server, specify the location of the admission control
   configuration file via the `--admission-control-config-file` flag.
 
 * In the admission control configuration file, specify where the
@@ -283,19 +269,12 @@ the webhooks. There are three steps to complete the configuration.
   (yes, the same schema that's used by kubectl), so the field name is
   `kubeConfigFile`. Here is an example admission control configuration file:
 -->
-* 启动 apiserver 时，通过 `--admission-control-config-file` 参数指定准入控制配置文件的位置。
+* 启动 API 服务器时，通过 `--admission-control-config-file` 参数指定准入控制配置文件的位置。
 
 * 在准入控制配置文件中，指定 MutatingAdmissionWebhook 控制器和 ValidatingAdmissionWebhook 控制器应该读取凭据的位置。
 凭证存储在 kubeConfig 文件中（是​​的，与 kubectl 使用的模式相同），因此字段名称为 `kubeConfigFile`。
 以下是一个准入控制配置文件示例：
 
-<!--
-# Deprecated in v1.17 in favor of apiserver.config.k8s.io/v1
-# Deprecated in v1.17 in favor of apiserver.config.k8s.io/v1, kind=WebhookAdmissionConfiguration
-# Deprecated in v1.17 in favor of apiserver.config.k8s.io/v1, kind=WebhookAdmissionConfiguration
--->
-
-
 {{< tabs name="admissionconfiguration_example1" >}}
 {{% tab name="apiserver.config.k8s.io/v1" %}}
 ```yaml
@@ -315,6 +294,7 @@ plugins:
 ```
 {{% /tab %}}
 {{% tab name="apiserver.k8s.io/v1alpha1" %}}
+
 ```yaml
 # 1.17 中被淘汰，推荐使用 apiserver.config.k8s.io/v1
 apiVersion: apiserver.k8s.io/v1alpha1
@@ -333,17 +313,19 @@ plugins:
     kind: WebhookAdmission
     kubeConfigFile: "<path-to-kubeconfig-file>"
 ```
+
 {{% /tab %}}
 {{< /tabs >}}
 
 <!--
 For more information about `AdmissionConfiguration`, see the
-[AdmissionConfiguration schema](https://github.com/kubernetes/kubernetes/blob/v1.17.0/staging/src/k8s.io/apiserver/pkg/apis/apiserver/v1/types.go#L27).
+[AdmissionConfiguration (v1) reference](/docs/reference/config-api/apiserver-webhookadmission.v1/).
 See the [webhook configuration](#webhook-configuration) section for details about each config field.
 
 * In the kubeConfig file, provide the credentials:
 -->
-有关 `AdmissionConfiguration` 的更多信息，请参见 [AdmissionConfiguration schema](https://github.com/kubernetes/kubernetes/blob/v1.17.0/staging/src/k8s.io/apiserver/pkg/apis/apiserver/v1/types.go#L27)。
+有关 `AdmissionConfiguration` 的更多信息，请参见
+[AdmissionConfiguration (v1) reference](/docs/reference/config-api/apiserver-webhookadmission.v1/)。
 有关每个配置字段的详细信息，请参见 [webhook 配置](#webhook-配置)部分。
 
 * 在 kubeConfig 文件中，提供证书凭据：
@@ -394,14 +376,14 @@ See the [webhook configuration](#webhook-configuration) section for details abou
         token: "<token>"
     ```
 <!--
-Of course you need to set up the webhook server to handle these authentications.
+Of course you need to set up the webhook server to handle these authentication requests.
 -->
-当然，你需要设置 webhook 服务器来处理这些身份验证。
+当然，你需要设置 Webhook 服务器来处理这些身份验证请求。
 
 <!--
 ### Request
 
-Webhooks are sent a POST request, with `Content-Type: application/json`,
+Webhooks are sent as POST request, with `Content-Type: application/json`,
 with an `AdmissionReview` API object in the `admission.k8s.io` API group
 serialized to JSON as the body.
 
@@ -411,50 +393,26 @@ with the `admissionReviewVersions` field in their configuration:
 
 ### 请求 {#request}
 
-向 Webhook 发送 POST 请求时，请设置 `Content-Type: application/json` 并对 `admission.k8s.io`  API 组中的 `AdmissionReview` 对象进行序列化，将所得到的 JSON 作为请求的主体。
+Webhook 发送 POST 请求时，请设置 `Content-Type: application/json` 并对 `admission.k8s.io`  API 组中的 `AdmissionReview` 对象进行序列化，将所得到的 JSON 作为请求的主体。
 
 Webhook 可以在配置中的 `admissionReviewVersions` 字段指定可接受的 `AdmissionReview` 对象版本：
 
-{{< tabs name="ValidatingWebhookConfiguration_admissionReviewVersions" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
-...
 webhooks:
 - name: my-webhook.example.com
   admissionReviewVersions: ["v1", "v1beta1"]
-  ...
 ```
 
+
 <!--
-`admissionReviewVersions` is a required field when creating
-`admissionregistration.k8s.io/v1` webhook configurations.
+`admissionReviewVersions` is a required field when creating webhook configurations.
 Webhooks are required to support at least one `AdmissionReview`
 version understood by the current and previous API server.
 -->
-创建 `admissionregistration.k8s.io/v1` webhook 配置时，`admissionReviewVersions` 是必填字段。
-Webhook 必须支持至少一个当前和以前的 apiserver 都可以解析的 `AdmissionReview` 版本。
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# v1.16 中被淘汰，推荐使用 admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: ValidatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  admissionReviewVersions: ["v1beta1"]
-  ...
-```
-
-<!--
-If no `admissionReviewVersions` are specified, the default when creating
-`admissionregistration.k8s.io/v1beta1` webhook configurations is `v1beta1`.
--->
-如果未指定 `admissionReviewVersions`，则创建 `admissionregistration.k8s.io/v1beta1` Webhook 配置时的默认值为 `v1beta1`。
-{{% /tab %}}
-{{< /tabs >}}
+创建 webhook 配置时，`admissionReviewVersions` 是必填字段。
+Webhook 必须支持至少一个当前和以前的 API 服务器都可以解析的 `AdmissionReview` 版本。
 
 <!--
 API servers send the first `AdmissionReview` version in the `admissionReviewVersions` list they support.
@@ -471,145 +429,100 @@ API 服务器将发送的是 `admissionReviewVersions` 列表中所支持的第
 
 此示例显示了 `AdmissionReview` 对象中包含的数据，该数据用于请求更新 `apps/v1` `Deployment` 的 `scale` 子资源：
 
-{{< tabs name="AdmissionReview_request" >}}
-{{% tab name="admission.k8s.io/v1" %}}
 ```yaml
-{
-  "apiVersion": "admission.k8s.io/v1",
-  "kind": "AdmissionReview",
-  "request": {
-    # 唯一标识此准入回调的随机 uid
-    "uid": "705ab4f5-6393-11e8-b7cc-42010a800002",
+apiVersion: admission.k8s.io/v1
+kind: AdmissionReview
+request:
+  # 唯一标识此准入回调的随机 uid
+  uid: 705ab4f5-6393-11e8-b7cc-42010a800002
 
-    # 传入完全正确的 group/version/kind 对象
-    "kind": {"group":"autoscaling","version":"v1","kind":"Scale"},
-    # 修改 resource 的完全正确的的 group/version/kind
-    "resource": {"group":"apps","version":"v1","resource":"deployments"},
-    # subResource（如果请求是针对 subResource 的）
-    "subResource": "scale",
+  # 传入完全正确的 group/version/kind 对象
+  kind:
+    group: autoscaling
+    version: v1
+    kind: Scale
 
-    # 在对 API 服务器的原始请求中，传入对象的标准 group/version/kind
-    # 仅当 webhook 指定 `matchPolicy: Equivalent` 且将对 API 服务器的原始请求转换为 webhook 注册的版本时，这才与 `kind` 不同。
-    "requestKind": {"group":"autoscaling","version":"v1","kind":"Scale"},
-    # 在对 API 服务器的原始请求中正在修改的资源的标准 group/version/kind
-    # 仅当 webhook 指定了 `matchPolicy：Equivalent` 并且将对 API 服务器的原始请求转换为 webhook 注册的版本时，这才与 `resource` 不同。
-    "requestResource": {"group":"apps","version":"v1","resource":"deployments"},
-    # subResource（如果请求是针对 subResource 的）
-    # 仅当 webhook 指定了 `matchPolicy：Equivalent` 并且将对 API 服务器的原始请求转换为该 webhook 注册的版本时，这才与 `subResource` 不同。
-    "requestSubResource": "scale",
+  # 修改 resource 的完全正确的的 group/version/kind
+  resource:
+    group: apps
+    version: v1
+    resource: deployments
 
-    # 被修改资源的名称
-    "name": "my-deployment",
-    # 如果资源是属于名字空间（或者是名字空间对象），则这是被修改的资源的名字空间
-    "namespace": "my-namespace",
+  # subResource（如果请求是针对 subResource 的）
+  subResource: scale
 
-    # 操作可以是 CREATE、UPDATE、DELETE 或 CONNECT
-    "operation": "UPDATE",
+  # 在对 API 服务器的原始请求中，传入对象的标准 group/version/kind
+  # 仅当 webhook 指定 `matchPolicy: Equivalent` 且将对 API 服务器的原始请求
+  # 转换为 webhook 注册的版本时，这才与 `kind` 不同。
+  requestKind:
+    group: autoscaling
+    version: v1
+    kind: Scale
 
-    "userInfo": {
-      # 向 API 服务器发出请求的经过身份验证的用户的用户名
-      "username": "admin",
-      # 向 API 服务器发出请求的经过身份验证的用户的 UID
-      "uid": "014fbff9a07c",
-      # 向 API 服务器发出请求的经过身份验证的用户的组成员身份
-      "groups": ["system:authenticated","my-admin-group"],
-      # 向 API 服务器发出请求的用户相关的任意附加信息
-      # 该字段由 API 服务器身份验证层填充，并且如果 webhook 执行了任何 SubjectAccessReview 检查，则应将其包括在内。
-      "extra": {
-        "some-key":["some-value1", "some-value2"]
-      }
-    },
+  # 在对 API 服务器的原始请求中正在修改的资源的标准 group/version/kind
+  # 仅当 webhook 指定了 `matchPolicy：Equivalent` 并且将对 API 服务器的原始请求转换为
+  # webhook 注册的版本时，这才与 `resource` 不同。
+  requestResource:
+    group: apps
+    version: v1
+    resource: deployments
 
-    # object 是被接纳的新对象。
-    # 对于 DELETE 操作，它为 null。
-    "object": {"apiVersion":"autoscaling/v1","kind":"Scale",...},
-    # oldObject 是现有对象。
-    # 对于 CREATE 和 CONNECT 操作，它为 null。
-    "oldObject": {"apiVersion":"autoscaling/v1","kind":"Scale",...},
-    # options 包含要接受的操作的选项，例如 meta.k8s.io/v CreateOptions、UpdateOptions 或 DeleteOptions。
-    # 对于 CONNECT 操作，它为 null。
-    "options": {"apiVersion":"meta.k8s.io/v1","kind":"UpdateOptions",...},
+  # subResource（如果请求是针对 subResource 的）
+  # 仅当 webhook 指定了 `matchPolicy：Equivalent` 并且将对
+  # API 服务器的原始请求转换为该 webhook 注册的版本时，这才与 `subResource` 不同。
+  requestSubResource: scale
 
-    # dryRun 表示 API 请求正在以 `dryrun` 模式运行，并且将不会保留。
-    # 带有副作用的 Webhook 应该避免在 dryRun 为 true 时激活这些副作用。
-    # 有关更多详细信息，请参见 http://k8s.io/docs/reference/using-api/api-concepts/#make-a-dry-run-request
-    "dryRun": false
-  }
-}
+  # 被修改资源的名称
+  name: my-deployment
+
+  # 如果资源是属于名字空间（或者是名字空间对象），则这是被修改的资源的名字空间
+  namespace: my-namespace
+
+  # 操作可以是 CREATE、UPDATE、DELETE 或 CONNECT
+  operation: UPDATE
+
+  userInfo:
+    # 向 API 服务器发出请求的经过身份验证的用户的用户名
+    username: admin
+
+    # 向 API 服务器发出请求的经过身份验证的用户的 UID
+    uid: 014fbff9a07c
+
+    # Group memberships of the authenticated user making the request to the API server向 API 服务器发出请求的经过身份验证的用户的组成员身份oups:
+      - system:authenticated
+      - my-admin-group
+    # 向 API 服务器发出请求的用户相关的任意附加信息
+    # 该字段由 API 服务器身份验证层填充，并且如果 webhook 执行了任何
+    # SubjectAccessReview 检查，则应将其包括在内。
+    extra:
+      some-key:
+        - some-value1
+        - some-value2
+
+  # object 是被接纳的新对象。
+  # 对于 DELETE 操作，它为 null。
+  object:
+    apiVersion: autoscaling/v1
+    kind: Scale
+
+  # oldObject 是现有对象。
+  # 对于 CREATE 和 CONNECT 操作，它为 null。
+  oldObject:
+    apiVersion: autoscaling/v1
+    kind: Scale
+
+  # options 包含要接受的操作的选项，例如 meta.k8s.io/v CreateOptions、UpdateOptions 或 DeleteOptions。
+  # 对于 CONNECT 操作，它为 null。
+  options:
+    apiVersion: meta.k8s.io/v1
+    kind: UpdateOptions
+
+  # dryRun 表示 API 请求正在以 `dryrun` 模式运行，并且将不会保留。
+  # 带有副作用的 Webhook 应该避免在 dryRun 为 true 时激活这些副作用。
+  # 有关更多详细信息，请参见 http://k8s.io/docs/reference/using-api/api-concepts/#make-a-dry-run-request
+  dryRun: False
 ```
-{{% /tab %}}
-{{% tab name="admission.k8s.io/v1beta1" %}}
-```yaml
-{
-  # v1.16 中被废弃，推荐使用 admission.k8s.io/v1
-  "apiVersion": "admission.k8s.io/v1beta1",
-  "kind": "AdmissionReview",
-  "request": {
-    # 唯一标识此准入回调的随机 uid
-    "uid": "705ab4f5-6393-11e8-b7cc-42010a800002",
 
-    # 传入完全正确的 group/version/kind 对象
-    "kind": {"group":"autoscaling","version":"v1","kind":"Scale"},
-    # 修改 resource 的完全正确的的 group/version/kind
-    "resource": {"group":"apps","version":"v1","resource":"deployments"},
-    # subResource（如果请求是针对 subResource 的）
-    "subResource": "scale",
-
-    # 在对 API 服务器的原始请求中，传入对象的标准 group/version/kind。
-    # 仅当 Webhook 指定了 `matchPolicy：Equivalent` 并且将对 API 服务器的原始请求转换为该 Webhook 注册的版本时，这与 `kind` 不同。
-    # 仅由 v1.15+ API 服务器发送。
-    "requestKind": {"group":"autoscaling","version":"v1","kind":"Scale"},
-    # 在对 API 服务器的原始请求中正在修改的资源的标准 group/version/kind
-    # 仅当 webhook 指定了 `matchPolicy：Equivalent` 并且将对 API 服务器的原始请求转换为 webhook 注册的版本时，这才与 `resource` 不同。
-    # 仅由 v1.15+ API 服务器发送。
-    "requestResource": {"group":"apps","version":"v1","resource":"deployments"},
-    # subResource（如果请求是针对 subResource 的）
-    # 仅当 webhook 指定了 `matchPolicy：Equivalent` 并且将对 API 服务器的原始请求转换为该 webhook 注册的版本时，这才与 `subResource` 不同。
-    # 仅由 v1.15+ API 服务器发送。
-    "requestSubResource": "scale",
-
-    # 被修改资源的名称
-    "name": "my-deployment",
-    # 如果资源是属于名字空间（或者是名字空间对象），则这是被修改的资源的名字空间
-    "namespace": "my-namespace",
-
-    # 操作可以是 CREATE、UPDATE、DELETE 或 CONNECT
-    "operation": "UPDATE",
-
-    "userInfo": {
-      # 向 API 服务器发出请求的经过身份验证的用户的用户名
-      "username": "admin",
-      # 向 API 服务器发出请求的经过身份验证的用户的 UID
-      "uid": "014fbff9a07c",
-      # 向 API 服务器发出请求的经过身份验证的用户的组成员身份
-      "groups": ["system:authenticated","my-admin-group"],
-      # 向 API 服务器发出请求的用户相关的任意附加信息
-      # 该字段由 API 服务器身份验证层填充，并且如果 webhook 执行了任何 SubjectAccessReview 检查，则应将其包括在内。
-      "extra": {
-        "some-key":["some-value1", "some-value2"]
-      }
-    },
-
-    # object 是被接纳的新对象。
-    # 对于 DELETE 操作，它为 null。
-    "object": {"apiVersion":"autoscaling/v1","kind":"Scale",...},
-    # oldObject 是现有对象。
-    # 对于 CREATE 和 CONNECT 操作（对于 v1.15.0 之前版本的 API 服务器中的 DELETE 操作），它为 null。
-    "oldObject": {"apiVersion":"autoscaling/v1","kind":"Scale",...},
-    # options 包含要接受的操作的选项，例如 meta.k8s.io/v CreateOptions、UpdateOptions 或 DeleteOptions。
-    # 对于 CONNECT 操作，它为 null。
-    # 仅由 v1.15+ API 服务器发送。
-    "options": {"apiVersion":"meta.k8s.io/v1","kind":"UpdateOptions",...},
-
-    # dryRun 表示 API 请求正在以 `dryrun` 模式运行，并且将不会保留。
-    # 带有副作用的 Webhook 应该避免在 dryRun 为 true 时激活这些副作用。
-    # 有关更多详细信息，请参见 http://k8s.io/docs/reference/using-api/api-concepts/#make-a-dry-run-request
-    "dryRun": false
-  }
-}
-```
-{{% /tab %}}
-{{< /tabs >}}
 <!--
 ### Response
 -->
@@ -632,7 +545,7 @@ Example of a minimal response from a webhook to allow a request:
 -->
 `response` 至少必须包含以下字段：
 
-* `uid`，从发送到 webhook 的 `request.uid` 中复制而来
+* `uid`，从发送到 Webhook 的 `request.uid` 中复制而来
 * `allowed`，设置为 `true` 或 `false`
 
 <!--
@@ -640,8 +553,6 @@ Example of a minimal response from a webhook to allow a request:
 -->
 Webhook 允许请求的最简单响应示例：
 
-{{< tabs name="AdmissionReview_response_allow" >}}
-{{% tab name="admission.k8s.io/v1" %}}
 ```json
 {
   "apiVersion": "admission.k8s.io/v1",
@@ -652,28 +563,12 @@ Webhook 允许请求的最简单响应示例：
   }
 }
 ```
-{{% /tab %}}
-{{% tab name="admission.k8s.io/v1beta1" %}}
-```json
-{
-  "apiVersion": "admission.k8s.io/v1beta1",
-  "kind": "AdmissionReview",
-  "response": {
-    "uid": "<value from request.uid>",
-    "allowed": true
-  }
-}
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 <!--
 Example of a minimal response from a webhook to forbid a request:
 -->
 Webhook 禁止请求的最简单响应示例：
 
-{{< tabs name="AdmissionReview_response_forbid_minimal" >}}
-{{% tab name="admission.k8s.io/v1" %}}
 ```json
 {
   "apiVersion": "admission.k8s.io/v1",
@@ -684,24 +579,11 @@ Webhook 禁止请求的最简单响应示例：
   }
 }
 ```
-{{% /tab %}}
-{{% tab name="admission.k8s.io/v1beta1" %}}
-```json
-{
-  "apiVersion": "admission.k8s.io/v1beta1",
-  "kind": "AdmissionReview",
-  "response": {
-    "uid": "<value from request.uid>",
-    "allowed": false
-  }
-}
-```
-{{% /tab %}}
-{{< /tabs >}}
+
 <!--
-When rejecting a request, the webhook can customize the http code and message returned to the user using the `status` field.
+When rejecting a request, the webhook can customize the http code and message returned to the user using the `status` field. 
 The specified status object is returned to the user.
-See the [API documentation](/docs/reference/generated/kubernetes-api/v1.14/#status-v1-meta) for details about the status type.
+See the [API documentation](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#status-v1-meta) for details about the `status` type.
 Example of a response to forbid a request, customizing the HTTP status code and message presented to the user:
 -->
 当拒绝请求时，Webhook 可以使用 `status` 字段自定义 http 响应码和返回给用户的消息。
@@ -709,8 +591,6 @@ Example of a response to forbid a request, customizing the HTTP status code and
 [API 文档](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#status-v1-meta)。
 禁止请求的响应示例，它定制了向用户显示的 HTTP 状态码和消息：
 
-{{< tabs name="AdmissionReview_response_forbid_details" >}}
-{{% tab name="admission.k8s.io/v1" %}}
 ```json
 {
   "apiVersion": "admission.k8s.io/v1",
@@ -725,30 +605,12 @@ Example of a response to forbid a request, customizing the HTTP status code and
   }
 }
 ```
-{{% /tab %}}
-{{% tab name="admission.k8s.io/v1beta1" %}}
-```json
-{
-  "apiVersion": "admission.k8s.io/v1beta1",
-  "kind": "AdmissionReview",
-  "response": {
-    "uid": "<value from request.uid>",
-    "allowed": false,
-    "status": {
-      "code": 403,
-      "message": "You cannot do this because it is Tuesday and your name starts with A"
-    }
-  }
-}
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 <!--
 When allowing a request, a mutating admission webhook may optionally modify the incoming object as well.
 This is done using the `patch` and `patchType` fields in the response.
 The only currently supported `patchType` is `JSONPatch`.
-See [JSON patch](http://jsonpatch.com/) documentation for more details.
+See [JSON patch](https://jsonpatch.com/) documentation for more details.
 For `patchType: JSONPatch`, the `patch` field contains a base64-encoded array of JSON patch operations.
 -->
 当允许请求时，mutating准入 Webhook 也可以选择修改传入的对象。
@@ -771,9 +633,8 @@ Base64-encoded, this would be `W3sib3AiOiAiYWRkIiwgInBhdGgiOiAiL3NwZWMvcmVwbGljY
 <!--
 So a webhook response to add that label would be:
 -->
-因此，添加该标签的 webhook 响应为：
-{{< tabs name="AdmissionReview_response_modify" >}}
-{{% tab name="admission.k8s.io/v1" %}}
+因此，添加该标签的 Webhook 响应为：
+
 ```json
 {
   "apiVersion": "admission.k8s.io/v1",
@@ -786,22 +647,50 @@ So a webhook response to add that label would be:
   }
 }
 ```
-{{% /tab %}}
-{{% tab name="admission.k8s.io/v1beta1" %}}
+
+<!-- 
+Admission webhooks can optionally return warning messages that are returned to the requesting client in HTTP `Warning` headers with a warning code of 299. Warnings can be sent with allowed or rejected admission responses. 
+-->
+准入 Webhook 可以选择性地返回在 HTTP `Warning` 头中返回给请求客户端的警告消息，警告代码为 299。
+警告可以与允许或拒绝的准入响应一起发送。
+
+<!-- 
+If you're implementing a webhook that returns a warning:
+
+* Don't include a "Warning:" prefix in the message
+* Use warning messages to describe problems the client making the API request should correct or be aware of
+* Limit warnings to 120 characters if possible 
+-->
+如果你正在实现返回一条警告的 webhook，则：
+
+* 不要在消息中包括 "Warning:" 前缀
+* 使用警告消息描述该客户端进行 API 请求时会遇到或应意识到的问题
+* 如果可能，将警告限制为 120 个字符
+
+{{< caution >}}
+<!-- 
+Individual warning messages over 256 characters may be truncated by the API server before being returned to clients.
+If more than 4096 characters of warning messages are added (from all sources), additional warning messages are ignored. 
+-->
+超过 256 个字符的单条警告消息在返回给客户之前可能会被 API 服务器截断。
+如果超过 4096 个字符的警告消息（来自所有来源），则额外的警告消息会被忽略。
+{{< /caution >}}
+
 ```json
 {
-  "apiVersion": "admission.k8s.io/v1beta1",
+  "apiVersion": "admission.k8s.io/v1",
   "kind": "AdmissionReview",
   "response": {
     "uid": "<value from request.uid>",
     "allowed": true,
-    "patchType": "JSONPatch",
-    "patch": "W3sib3AiOiAiYWRkIiwgInBhdGgiOiAiL3NwZWMvcmVwbGljYXMiLCAidmFsdWUiOiAzfV0="
+    "warnings": [
+      "duplicate envvar entries specified with name MY_ENV",
+      "memory request less than 4MB specified for container mycontainer, which will not start successfully"
+    ]
   }
 }
 ```
-{{% /tab %}}
-{{< /tabs >}}
+
 <!--
 ## Webhook configuration
 -->
@@ -809,22 +698,23 @@ So a webhook response to add that label would be:
 
 <!--
 To register admission webhooks, create `MutatingWebhookConfiguration` or `ValidatingWebhookConfiguration` API objects.
+The name of a `MutatingWebhookConfiguration` or a `ValidatingWebhookConfiguration` object must be a valid
+[DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 
 Each configuration can contain one or more webhooks.
-If multiple webhooks are specified in a single configuration, each should be given a unique name.
-This is required in `admissionregistration.k8s.io/v1`, but strongly recommended when using `admissionregistration.k8s.io/v1beta1`,
-in order to make resulting audit logs and metrics easier to match up to active configurations.
+If multiple webhooks are specified in a single configuration, each must be given a unique name.
+This is required in order to make resulting audit logs and metrics easier to match up to active
+configurations.
 
 Each webhook defines the following things.
 -->
-要注册准入 Webhook，请创建 `MutatingWebhookConfiguration` 或
-`ValidatingWebhookConfiguration` API 对象。
+要注册准入 Webhook，请创建 `MutatingWebhookConfiguration` 或 `ValidatingWebhookConfiguration` API 对象。
+`MutatingWebhookConfiguration` 或`ValidatingWebhookConfiguration` 对象的名称必须是有效的
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
 
 每种配置可以包含一个或多个 Webhook。如果在单个配置中指定了多个
-Webhook，则应为每个 webhook 赋予一个唯一的名称。
-这在 `admissionregistration.k8s.io/v1` 中是必需的，但是在使用
-`admissionregistration.k8s.io/v1beta1` 时强烈建议使用，
-以使生成的审核日志和指标更易于与活动配置相匹配。
+Webhook，则应为每个 Webhook 赋予一个唯一的名称。
+这是必需的，以使生成的审计日志和指标更易于与激活的配置相匹配。
 
 每个 Webhook 定义以下内容。
 
@@ -849,7 +739,7 @@ Each rule specifies one or more operations, apiGroups, apiVersions, and resource
     * `"*/*"` matches all resources and subresources.
     * `"pods/*"` matches all subresources of pods.
     * `"*/status"` matches all status subresources.
-* `scope` specifies a scope to match. Valid values are `"Cluster"`, `"Namespaced"`, and `"*"`. Subresources match the scope of their parent resource. Supported in v1.14+. Default is `"*"`, matching pre-1.14 behavior.
+* `scope` specifies a scope to match. Valid values are `"Cluster"`, `"Namespaced"`, and `"*"`. Subresources match the scope of their parent resource. Default is `"*"`.
     * `"Cluster"` means that only cluster-scoped resources will match this rule (Namespace API objects are cluster-scoped).
     * `"Namespaced"` means that only namespaced resources will match this rule.
     * `"*"` means that there are no scope restrictions.
@@ -864,28 +754,27 @@ Each rule specifies one or more operations, apiGroups, apiVersions, and resource
     * `"pods/*"` 匹配 pod 的所有子资源。
     * `"*/status"` 匹配所有 status 子资源。
 * `scope` 指定要匹配的范围。有效值为 `"Cluster"`、`"Namespaced"` 和 `"*"`。
-  子资源匹配其父资源的范围。在 Kubernetes v1.14+ 版本中才被支持。
-  默认值为 `"*"`，对应 1.14 版本之前的行为。
+  子资源匹配其父资源的范围。默认值为 `"*"`。
     * `"Cluster"` 表示只有集群作用域的资源才能匹配此规则（API 对象 Namespace 是集群作用域的）。
     * `"Namespaced"` 意味着仅具有名字空间的资源才符合此规则。
-    * `"*"` 表示没有范围限制。
+    * `"*"` 表示没有作用域限制。
 
 <!--
-If an incoming request matches one of the specified operations, groups, versions, resources, and scope for any of a webhook's rules, the request is sent to the webhook.
+If an incoming request matches one of the specified `operations`, `groups`, `versions`,
+`resources`, and `scope` for any of a webhook's `rules`, the request is sent to the webhook.
 
 Here are other examples of rules that could be used to specify which resources should be intercepted.
 
 Match `CREATE` or `UPDATE` requests to `apps/v1` and `apps/v1beta1` `deployments` and `replicasets`:
 -->
-如果传入请求与任何 Webhook 规则的指定操作、组、版本、资源和范围匹配，则该请求将发送到 Webhook。
+如果传入请求与任何 Webhook `rules` 的指定 `operations`、`groups`、`versions`、
+`resources` 和 `scope` 匹配，则该请求将发送到 Webhook。
 
 以下是可用于指定应拦截哪些资源的规则的其他示例。
 
 匹配针对 `apps/v1` 和 `apps/v1beta1` 组中 `deployments` 和 `replicasets`
 资源的 `CREATE` 或 `UPDATE` 请求：
 
-{{< tabs name="ValidatingWebhookConfiguration_rules_1" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
@@ -900,130 +789,64 @@ webhooks:
     scope: "Namespaced"
   ...
 ```
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# v1.16 中被废弃，推荐使用 admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: ValidatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  rules:
-  - operations: ["CREATE", "UPDATE"]
-    apiGroups: ["apps"]
-    apiVersions: ["v1", "v1beta1"]
-    resources: ["deployments", "replicasets"]
-    scope: "Namespaced"
-  ...
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 <!--
 Match create requests for all resources (but not subresources) in all API groups and versions:
 -->
 匹配所有 API 组和版本中的所有资源（但不包括子资源）的创建请求：
 
-{{< tabs name="ValidatingWebhookConfiguration_rules_2" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
-...
 webhooks:
-- name: my-webhook.example.com
-  rules:
-  - operations: ["CREATE"]
-    apiGroups: ["*"]
-    apiVersions: ["*"]
-    resources: ["*"]
-    scope: "*"
-  ...
+  - name: my-webhook.example.com
+    rules:
+      - operations: ["CREATE"]
+        apiGroups: ["*"]
+        apiVersions: ["*"]
+        resources: ["*"]
+        scope: "*"
 ```
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# v1.16 中被废弃，推荐使用 admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: ValidatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  rules:
-  - operations: ["CREATE"]
-    apiGroups: ["*"]
-    apiVersions: ["*"]
-    resources: ["*"]
-    scope: "*"
-  ...
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 <!--
 Match update requests for all `status` subresources in all API groups and versions:
 -->
 匹配所有 API 组和版本中所有 `status` 子资源的更新请求：
 
-{{< tabs name="ValidatingWebhookConfiguration_rules_2" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
-...
 webhooks:
-- name: my-webhook.example.com
-  rules:
-  - operations: ["CREATE"]
-    apiGroups: ["*"]
-    apiVersions: ["*"]
-    resources: ["*"]
-    scope: "*"
-  ...
+  - name: my-webhook.example.com
+    rules:
+      - operations: ["UPDATE"]
+        apiGroups: ["*"]
+        apiVersions: ["*"]
+        resources: ["*/status"]
+        scope: "*"
 ```
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# v1.16 中被废弃，推荐使用 admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: ValidatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  rules:
-  - operations: ["CREATE"]
-    apiGroups: ["*"]
-    apiVersions: ["*"]
-    resources: ["*"]
-    scope: "*"
-  ...
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 <!--
 ### Matching requests: objectSelector
 -->
-### 匹配请求：objectSelector{#matching-requests-objectselector}
+### 匹配请求：objectSelector {#matching-requests-objectselector}
 
 <!--
-In v1.15+, webhooks may optionally limit which requests are intercepted based on the labels of the
+Webhooks may optionally limit which requests are intercepted based on the labels of the
 objects they would be sent, by specifying an `objectSelector`. If specified, the objectSelector
 is evaluated against both the object and oldObject that would be sent to the webhook,
 and is considered to match if either object matches the selector.
 -->
-在版本 v1.15+ 中, 通过指定 `objectSelector`，Webhook 能够根据
-可能发送的对象的标签来限制哪些请求被拦截。
+通过指定 `objectSelector`，Webhook 能够根据可能发送的对象的标签来限制哪些请求被拦截。
 如果指定，则将对 `objectSelector` 和可能发送到 Webhook 的 object 和 oldObject
 进行评估。如果两个对象之一与选择器匹配，则认为该请求已匹配。
 
 <!--
-A null object (oldObject in the case of create, or newObject in the case of delete),
+A null object (`oldObject` in the case of create, or `newObject` in the case of delete),
 or an object that cannot have labels (like a `DeploymentRollback` or a `PodProxyOptions` object)
 is not considered to match.
 -->
-空对象（对于创建操作而言为 oldObject，对于删除操作而言为 newObject），
+空对象（对于创建操作而言为 `oldObject`，对于删除操作而言为 `newObject`），
 或不能带标签的对象（例如 `DeploymentRollback` 或 `PodProxyOptions` 对象）
 被认为不匹配。
 
@@ -1039,12 +862,9 @@ This example shows a mutating webhook that would match a `CREATE` of any resourc
 这个例子展示了一个 mutating webhook，它将匹配带有标签 `foo:bar` 的任何资源的
 `CREATE` 的操作：
 
-{{< tabs name="objectSelector_example" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: MutatingWebhookConfiguration
-...
 webhooks:
 - name: my-webhook.example.com
   objectSelector:
@@ -1056,34 +876,13 @@ webhooks:
     apiVersions: ["*"]
     resources: ["*"]
     scope: "*"
-  ...
 ```
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# v1.16 中被废弃，推荐使用 admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: MutatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  objectSelector:
-    matchLabels:
-      foo: bar
-  rules:
-  - operations: ["CREATE"]
-    apiGroups: ["*"]
-    apiVersions: ["*"]
-    resources: ["*"]
-    scope: "*"
-  ...
-```
-{{% /tab %}}
-{{< /tabs >}}
+
 <!--
-See https://kubernetes.io/docs/concepts/overview/working-with-objects/labels for more examples of label selectors.
+See [labels concept](/docs/concepts/overview/working-with-objects/labels)
+for more examples of label selectors.
 -->
-有关标签选择器的更多示例，请参见[标签](/zh/docs/concepts/overview/working-with-objects/labels)。
+有关标签选择器的更多示例，请参见[标签](/zh-cn/docs/concepts/overview/working-with-objects/labels)。
 
 <!--
 ### Matching requests: namespaceSelector
@@ -1094,8 +893,8 @@ See https://kubernetes.io/docs/concepts/overview/working-with-objects/labels for
 Webhooks may optionally limit which requests for namespaced resources are intercepted,
 based on the labels of the containing namespace, by specifying a `namespaceSelector`.
 -->
-通过指定 `namespaceSelector`，Webhook 可以根据具有名字空间的资源所处的
-名字空间的标签来选择拦截哪些资源的操作。
+通过指定 `namespaceSelector`，
+Webhook 可以根据具有名字空间的资源所处的名字空间的标签来选择拦截哪些资源的操作。
 
 <!--
 The `namespaceSelector` decides whether to run the webhook on a request for a namespaced resource
@@ -1114,51 +913,23 @@ that does not have a "runlevel" label of "0" or "1":
 本例给出的修改性质的 Webhook 将匹配到对名字空间中具名字空间的资源的 `CREATE` 请求，
 前提是这些资源不含值为 "0" 或 "1" 的 "runlevel" 标签：
 
-{{< tabs name="MutatingWebhookConfiguration_namespaceSelector_1" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: MutatingWebhookConfiguration
-...
 webhooks:
-- name: my-webhook.example.com
-  namespaceSelector:
-    matchExpressions:
-    - key: runlevel
-      operator: NotIn
-      values: ["0","1"]
-  rules:
-  - operations: ["CREATE"]
-    apiGroups: ["*"]
-    apiVersions: ["*"]
-    resources: ["*"]
-    scope: "Namespaced"
-  ...
+  - name: my-webhook.example.com
+    namespaceSelector:
+      matchExpressions:
+        - key: runlevel
+          operator: NotIn
+          values: ["0","1"]
+    rules:
+      - operations: ["CREATE"]
+        apiGroups: ["*"]
+        apiVersions: ["*"]
+        resources: ["*"]
+        scope: "Namespaced"
 ```
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# v1.16 中被废弃，推荐使用 admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: MutatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  namespaceSelector:
-    matchExpressions:
-    - key: runlevel
-      operator: NotIn
-      values: ["0","1"]
-  rules:
-  - operations: ["CREATE"]
-    apiGroups: ["*"]
-    apiVersions: ["*"]
-    resources: ["*"]
-    scope: "Namespaced"
-  ...
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 <!--
 This example shows a validating webhook that matches a `CREATE` of any namespaced resource inside a namespace
@@ -1167,56 +938,30 @@ that is associated with the "environment" of "prod" or "staging":
 此示例显示了一个验证性质的 Webhook，它将匹配到对某名字空间中的任何具名字空间的资源的
 `CREATE` 请求，前提是该名字空间具有值为 "prod" 或 "staging" 的 "environment" 标签：
 
-{{< tabs name="ValidatingWebhookConfiguration_namespaceSelector_2" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
-...
 webhooks:
-- name: my-webhook.example.com
-  namespaceSelector:
-    matchExpressions:
-    - key: environment
-      operator: In
-      values: ["prod","staging"]
-  rules:
-  - operations: ["CREATE"]
-    apiGroups: ["*"]
-    apiVersions: ["*"]
-    resources: ["*"]
-    scope: "Namespaced"
-  ...
+  - name: my-webhook.example.com
+    namespaceSelector:
+      matchExpressions:
+        - key: environment
+          operator: In
+          values: ["prod","staging"]
+    rules:
+      - operations: ["CREATE"]
+        apiGroups: ["*"]
+        apiVersions: ["*"]
+        resources: ["*"]
+        scope: "Namespaced"
 ```
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# v1.16 中被废弃，推荐使用 admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: ValidatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  namespaceSelector:
-    matchExpressions:
-    - key: environment
-      operator: In
-      values: ["prod","staging"]
-  rules:
-  - operations: ["CREATE"]
-    apiGroups: ["*"]
-    apiVersions: ["*"]
-    resources: ["*"]
-    scope: "Namespaced"
-  ...
-```
-{{% /tab %}}
-{{< /tabs >}}
+
 <!--
-See https://kubernetes.io/docs/concepts/overview/working-with-objects/labels for more examples of label selectors.
+See [labels concept](/docs/concepts/overview/working-with-objects/labels)
+for more examples of label selectors.
 -->
 有关标签选择器的更多示例，请参见
-[标签](/zh/docs/concepts/overview/working-with-objects/labels)。
+[标签](/zh-cn/docs/concepts/overview/working-with-objects/labels)。
 
 <!--
 ### Matching requests: matchPolicy
@@ -1225,28 +970,24 @@ See https://kubernetes.io/docs/concepts/overview/working-with-objects/labels for
 
 <!--
 API servers can make objects available via multiple API groups or versions.
-For example, the Kubernetes API server allows creating and modifying `Deployment` objects
-via `extensions/v1beta1`, `apps/v1beta1`, `apps/v1beta2`, and `apps/v1` APIs.
 -->
 API 服务器可以通过多个 API 组或版本来提供对象。
-例如，Kubernetes API 服务器允许通过 `extensions/v1beta1`、`apps/v1beta1`、
-`apps/v1beta2` 和 `apps/v1` API 创建和修改 `Deployment` 对象。
 
 <!--
-For example, if a webhook only specified a rule for some API groups/versions (like `apiGroups:["apps"], apiVersions:["v1","v1beta1"]`),
+For example, if a webhook only specified a rule for some API groups/versions
+(like `apiGroups:["apps"], apiVersions:["v1","v1beta1"]`),
 and a request was made to modify the resource via another API group/version (like `extensions/v1beta1`),
 the request would not be sent to the webhook.
 -->
 例如，如果一个 webhook 仅为某些 API 组/版本指定了规则（例如
-`apiGroups:["apps"], apiVersions:["v1","v1beta1"]`），而修改资源的请求
-是通过另一个 API 组/版本（例如 `extensions/v1beta1`）发出的，
-该请求将不会被发送到 Webhook。
+`apiGroups:["apps"], apiVersions:["v1","v1beta1"]`），而修改资源的请求是通过另一个
+API 组/版本（例如 `extensions/v1beta1`）发出的，该请求将不会被发送到 Webhook。
 
 <!--
-In v1.15+, `matchPolicy` lets a webhook define how its `rules` are used to match incoming requests.
+The `matchPolicy` lets a webhook define how its `rules` are used to match incoming requests.
 Allowed values are `Exact` or `Equivalent`.
 -->
-在 v1.15+ 中，`matchPolicy` 允许 webhook 定义如何使用其 `rules` 匹配传入的请求。
+`matchPolicy` 允许 webhook 定义如何使用其 `rules` 匹配传入的请求。
 允许的值为 `Exact` 或 `Equivalent`。
 
 <!--
@@ -1275,16 +1016,18 @@ Webhook 继续拦截他们期望的资源。
 
 <!--
 When a resource stops being served by the API server, it is no longer considered equivalent to other versions of that resource that are still served.
-For example, deprecated `extensions/v1beta1` deployments are scheduled to stop being served by default in v1.16.
-Once that occurs, a webhook with a `apiGroups:["extensions"], apiVersions:["v1beta1"], resources:["deployments"]` rule
-would no longer intercept deployments created via `apps/v1` APIs. For that reason, webhooks should prefer registering
+For example, `extensions/v1beta1` deployments were first deprecated and then removed (in Kubernetes v1.16).
+
+Since that removal, a webhook with a `apiGroups:["extensions"], apiVersions:["v1beta1"], resources:["deployments"]` rule
+does not intercept deployments created via `apps/v1` APIs. For that reason, webhooks should prefer registering
 for stable versions of resources.
 -->
 当 API 服务器停止提供某资源时，该资源不再被视为等同于该资源的其他仍在提供服务的版本。
-例如，`extensions/v1beta1` 中的 Deployment 已被废弃，计划在 v1.16 中默认停止使用。
-在这种情况下，带有 `apiGroups:["extensions"], apiVersions:["v1beta1"], resources: ["deployments"]` 
-规则的 Webhook 将不再拦截通过 `apps/v1` API 来创建 Deployment 的请求。
-["deployments"] 规则将不再拦截通过 `apps/v1` API 创建的部署。
+例如，`extensions/v1beta1` 中的 Deployment 已被废弃，计划在 v1.16 中移除。
+
+移除后，带有 `apiGroups:["extensions"], apiVersions:["v1beta1"], resources: ["deployments"]` 
+规则的 Webhook 将不再拦截通过 `apps/v1` API 来创建的 Deployment。
+因此，Webhook 应该优先注册稳定版本的资源。
 
 <!--
 This example shows a validating webhook that intercepts modifications to deployments (no matter the API group or version),
@@ -1293,12 +1036,9 @@ and is always sent an `apps/v1` `Deployment` object:
 此示例显示了一个验证性质的 Webhook，该 Webhook 拦截对 Deployment 的修改（无论 API 组或版本是什么），
 始终会发送一个 `apps/v1` 版本的 Deployment 对象：
 
-{{< tabs name="ValidatingWebhookConfiguration_matchPolicy" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
-...
 webhooks:
 - name: my-webhook.example.com
   matchPolicy: Equivalent
@@ -1308,39 +1048,12 @@ webhooks:
     apiVersions: ["v1"]
     resources: ["deployments"]
     scope: "Namespaced"
-  ...
 ```
 
-<!--
-Admission webhooks created using `admissionregistration.k8s.io/v1` default to `Equivalent`.
+<!-- 
+The `matchPolicy` for an admission webhooks defaults to `Equivalent`. 
 -->
-使用 `admissionregistration.k8s.io/v1` 创建的 admission webhhok 默认为 `Equivalent`。
-
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# v1.16 中被废弃，推荐使用 admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: ValidatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  matchPolicy: Equivalent
-  rules:
-  - operations: ["CREATE","UPDATE","DELETE"]
-    apiGroups: ["apps"]
-    apiVersions: ["v1"]
-    resources: ["deployments"]
-    scope: "Namespaced"
-  ...
-```
-
-<!--
-Admission webhooks created using `admissionregistration.k8s.io/v1beta1` default to `Exact`.
--->
-使用 `admissionregistration.k8s.io/v1beta1` 创建的准入 Webhook 默认为 `Exact`。
-{{% /tab %}}
-{{< /tabs >}}
+准入 Webhook 所用的 `matchPolicy` 默认为 `Equivalent`。
 
 <!--
 ### Contacting the webhook
@@ -1374,24 +1087,24 @@ Webhook 可以通过 URL 或服务引用来调用，并且可以选择包含自
 <!--
 The `host` should not refer to a service running in the cluster; use
 a service reference by specifying the `service` field instead.
-The host might be resolved via external DNS in some apiservers
+The host might be resolved via external DNS in some API servers
 (e.g., `kube-apiserver` cannot resolve in-cluster DNS as that would
 be a layering violation). `host` may also be an IP address.
 -->
 `host` 不应引用集群中运行的服务；通过指定 `service` 字段来使用服务引用。
-主机可以通过某些 apiserver 中的外部 DNS 进行解析。
+主机可以通过某些 API 服务器中的外部 DNS 进行解析。
 （例如，`kube-apiserver` 无法解析集群内 DNS，因为这将违反分层规则）。`host` 也可以是 IP 地址。
 
 <!--
 Please note that using `localhost` or `127.0.0.1` as a `host` is
 risky unless you take great care to run this webhook on all hosts
 which run an apiserver which might need to make calls to this
-webhook. Such installs are likely to be non-portable, i.e., not easy
+webhook. Such installations are likely to be non-portable, i.e., not easy
 to turn up in a new cluster.
 -->
 请注意，将 `localhost` 或 `127.0.0.1` 用作 `host` 是有风险的，
 除非你非常小心地在所有运行 apiserver 的、可能需要对此 webhook 
-进行调用的主机上运行。这样的安装可能不具有可移植性，即很难在新集群中启用。
+进行调用的主机上运行。这样的安装方式可能不具有可移植性，即很难在新集群中启用。
 
 <!--
 The scheme must be "https"; the URL must begin with "https://".
@@ -1412,33 +1125,14 @@ Here is an example of a mutating webhook configured to call a URL
 这是配置为调用 URL 的修改性质的 Webhook 的示例
 （并且期望使用系统信任根证书来验证 TLS 证书，因此不指定 caBundle）：
 
-{{< tabs name="MutatingWebhookConfiguration_url" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: MutatingWebhookConfiguration
-...
 webhooks:
 - name: my-webhook.example.com
   clientConfig:
     url: "https://my-webhook.example.com:9443/my-webhook-path"
-  ...
 ```
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# v1.16 中被废弃，推荐使用 admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: MutatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  clientConfig:
-    url: "https://my-webhook.example.com:9443/my-webhook-path"
-  ...
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 <!--
 #### Service reference
@@ -1465,43 +1159,27 @@ at the subpath "/my-path", and to verify the TLS connection against the ServerNa
 "1234" 上调用服务，并使用自定义 CA 包针对 ServerName
 `my-service-name.my-service-namespace.svc` 验证 TLS 连接：
 
-{{< tabs name="MutatingWebhookConfiguration_service" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: MutatingWebhookConfiguration
-...
 webhooks:
 - name: my-webhook.example.com
   clientConfig:
-    caBundle: "Ci0tLS0tQk...<base64-encoded PEM bundle containing the CA that signed the webhook's serving certificate>...tLS0K"
+    caBundle: <CA_BUNDLE>
     service:
       namespace: my-service-namespace
       name: my-service-name
       path: /my-path
       port: 1234
-  ...
 ```
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# v1.16 中被废弃，推荐使用 admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: MutatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  clientConfig:
-    caBundle: "Ci0tLS0tQk...<base64-encoded PEM bundle containing the CA that signed the webhook's serving certificate>...tLS0K"
-    service:
-      namespace: my-service-namespace
-      name: my-service-name
-      path: /my-path
-      port: 1234
-  ...
-```
-{{% /tab %}}
-{{< /tabs >}}
+{{< note >}}
+<!-- 
+You must replace the `<CA_BUNDLE>` in the above example by a valid CA bundle
+which is a PEM-encoded CA bundle for validating the webhook's server certificate. 
+-->
+你必须在以上示例中将 `<CA_BUNDLE>` 替换为一个有效的 VA 证书包，
+这是一个用 PEM 编码的 CA 证书包，用于校验 Webhook 的服务器证书。
+{{< /note >}}
 <!--
 ### Side effects
 -->
@@ -1539,65 +1217,30 @@ or the dry-run request will not be sent to the webhook and the API request will
 
 <!--
 Webhooks indicate whether they have side effects using the `sideEffects` field in the webhook configuration:
-* `Unknown`: no information is known about the side effects of calling the webhook.
-If a request with `dryRun: true` would trigger a call to this webhook, the request will instead fail, and the webhook will not be called.
+
 * `None`: calling the webhook will have no side effects.
-* `Some`: calling the webhook will possibly have side effects.
-If a request with the dry-run attribute would trigger a call to this webhook, the request will instead fail, and the webhook will not be called.
-* `NoneOnDryRun`: calling the webhook will possibly have side effects,
-but if a request with `dryRun: true` is sent to the webhook, the webhook will suppress the side effects (the webhook is `dryRun`-aware).
+* `NoneOnDryRun`: calling the webhook will possibly have side effects, but if a request with
+  `dryRun: true` is sent to the webhook, the webhook will suppress the side effects (the webhook
+  is `dryRun`-aware).
 -->
 Webhook 使用 webhook 配置中的 `sideEffects` 字段显示它们是否有副作用：
-* `Unknown`：有关调用 Webhook 的副作用的信息是不可知的。
-如果带有 `dryRun：true` 的请求将触发对该 Webhook 的调用，则该请求将失败，并且不会调用该 Webhook。
+
 * `None`：调用 webhook 没有副作用。
-* `Some`：调用 webhook 可能会有副作用。
-  如果请求具有 `dry-run` 属性将触发对此 Webhook 的调用，
-  则该请求将会失败，并且不会调用该 Webhook。
 * `NoneOnDryRun`：调用 webhook 可能会有副作用，但是如果将带有 `dryRun: true`
   属性的请求发送到 webhook，则 webhook 将抑制副作用（该 webhook 可识别 `dryRun`）。
 
-<!--
-Allowed values:
-* In `admissionregistration.k8s.io/v1beta1`, `sideEffects` may be set to `Unknown`, `None`, `Some`, or `NoneOnDryRun`, and defaults to `Unknown`.
-* In `admissionregistration.k8s.io/v1`, `sideEffects` must be set to `None` or `NoneOnDryRun`.
--->
-允许值：
-* 在 `admissionregistration.k8s.io/v1beta1` 中，`sideEffects` 可以设置为
-  `Unknown`、`None`、`Some` 或者 `NoneOnDryRun`，并且默认值为 `Unknown`。
-* 在 `admissionregistration.k8s.io/v1` 中, `sideEffects` 必须设置为
-  `None` 或者 `NoneOnDryRun`。
-
 <!--
 Here is an example of a validating webhook indicating it has no side effects on `dryRun: true` requests:
 -->
 这是一个 validating webhook 的示例，表明它对 `dryRun: true` 请求没有副作用：
 
-{{< tabs name="ValidatingWebhookConfiguration_sideEffects" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
-...
 webhooks:
-- name: my-webhook.example.com
-  sideEffects: NoneOnDryRun
-  ...
+  - name: my-webhook.example.com
+    sideEffects: NoneOnDryRun
 ```
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# v1.16 中被废弃，推荐使用 admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: ValidatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  sideEffects: NoneOnDryRun
-  ...
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 <!--
 ### Timeouts
@@ -1627,41 +1270,18 @@ Webhook 调用或拒绝 API 调用。
 
 这是一个自定义超时设置为 2 秒的 validating Webhook 的示例：
 
-{{< tabs name="ValidatingWebhookConfiguration_timeoutSeconds" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
-...
 webhooks:
-- name: my-webhook.example.com
-  timeoutSeconds: 2
-  ...
+  - name: my-webhook.example.com
+    timeoutSeconds: 2
 ```
 
-<!--
-Admission webhooks created using `admissionregistration.k8s.io/v1` default timeouts to 10 seconds.
+<!-- 
+The timeout for an admission webhook defaults to 10 seconds. 
 -->
-使用 `admissionregistration.k8s.io/v1` 创建的准入 Webhook 默认超时为 10 秒。
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# v1.16 中被废弃，推荐使用 admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: ValidatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  timeoutSeconds: 2
-  ...
-```
-
-<!--
-Admission webhooks created using `admissionregistration.k8s.io/v1beta1` default timeouts to 30 seconds.
--->
-使用 `admissionregistration.k8s.io/v1beta1` 创建的准入 Webhook 默认超时为 30 秒。
-{{% /tab %}}
-{{< /tabs >}}
+准入 Webhook 所用的超时时间默认为 10 秒。
 
 <!--
 ### Reinvocation policy
@@ -1681,11 +1301,11 @@ run may have opinions on those new structures (like setting an `imagePullPolicy`
 （就像在所有容器上设置 `imagePullPolicy` 一样）。
 
 <!--
-In v1.15+, to allow mutating admission plugins to observe changes made by other plugins,
+To allow mutating admission plugins to observe changes made by other plugins,
 built-in mutating admission plugins are re-run if a mutating webhook modifies an object,
 and mutating webhooks can specify a `reinvocationPolicy` to control whether they are reinvoked as well.
 -->
-在 v1.15+ 中，允许修改性质的准入插件感应到其他插件所做的更改，
+要允许修改性质的准入插件感应到其他插件所做的更改，
 如果修改性质的 Webhook 修改了一个对象，则会重新运行内置的修改性质的准入插件，
 并且修改性质的 Webhook 可以指定 `reinvocationPolicy` 来控制是否也重新调用它们。
 
@@ -1725,31 +1345,13 @@ Here is an example of a mutating webhook opting into being re-invoked if later a
 -->
 这是一个修改性质的 Webhook 的示例，该 Webhook 在以后的准入插件修改对象时被重新调用：
 
-{{< tabs name="MutatingWebhookConfiguration_reinvocationPolicy" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: MutatingWebhookConfiguration
-...
 webhooks:
 - name: my-webhook.example.com
   reinvocationPolicy: IfNeeded
-  ...
 ```
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# v1.16 中被废弃，推荐使用 admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: MutatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  reinvocationPolicy: IfNeeded
-  ...
-```
-{{% /tab %}}
-{{< /tabs >}}
 
 <!--
 Mutating webhooks must be [idempotent](#idempotence), able to successfully process an object they have already admitted
@@ -1783,43 +1385,18 @@ Here is a mutating webhook configured to reject an API request if errors are enc
 
 这是一个修改性质的 webhook，配置为在调用准入 Webhook 遇到错误时拒绝 API 请求：
 
-{{< tabs name="MutatingWebhookConfiguration_failurePolicy" >}}
-{{% tab name="admissionregistration.k8s.io/v1" %}}
 ```yaml
 apiVersion: admissionregistration.k8s.io/v1
 kind: MutatingWebhookConfiguration
-...
 webhooks:
 - name: my-webhook.example.com
   failurePolicy: Fail
-  ...
 ```
 
-<!--
-Admission webhooks created using `admissionregistration.k8s.io/v1` default `failurePolicy` to `Fail`.
+<!-- 
+The default `failurePolicy` for an admission webhooks is `Fail`. 
 -->
-使用 `admissionregistration.k8s.io/v1beta1` 创建的准入 Webhook 将
-`failurePolicy` 默认设置为 `Ignore`。
-
-{{% /tab %}}
-{{% tab name="admissionregistration.k8s.io/v1beta1" %}}
-```yaml
-# v1.16 中被废弃，推荐使用 admissionregistration.k8s.io/v1
-apiVersion: admissionregistration.k8s.io/v1beta1
-kind: MutatingWebhookConfiguration
-...
-webhooks:
-- name: my-webhook.example.com
-  failurePolicy: Fail
-  ...
-```
-<!--
-Admission webhooks created using `admissionregistration.k8s.io/v1beta1` default `failurePolicy` to `Ignore`.
--->
-使用 `admissionregistration.k8s.io/v1beta1` 创建的准入 Webhook 将
-`failurePolicy` 默认设置为 `Ignore`。
-{{% /tab %}}
-{{< /tabs >}}
+准入 Webhook 所用的默认 `failurePolicy` 是 `Fail`。
 
 <!--
 ## Monitoring admission webhooks
@@ -1837,8 +1414,7 @@ monitoring mechanisms help cluster admins to answer questions like:
 3. Which webhooks are frequently rejecting API requests? What's the reason for a
    rejection?
 -->
-API 服务器提供了监视准入 Webhook 行为的方法。这些监视机制可帮助集群管理员
-回答以下问题：
+API 服务器提供了监视准入 Webhook 行为的方法。这些监视机制可帮助集群管理员回答以下问题：
 
 1. 哪个修改性质的 webhook 改变了 API 请求中的对象？
 2. 修改性质的 Webhook 对对象做了哪些更改？
@@ -1853,20 +1429,19 @@ API 服务器提供了监视准入 Webhook 行为的方法。这些监视机制
 Sometimes it's useful to know which mutating webhook mutated the object in a API request, and what change did the
 webhook apply.
 -->
-有时，了解 API 请求中的哪个修改性质的 Webhook 使对象改变以及该
-Webhook 应用了哪些更改很有用。
+有时，了解 API 请求中的哪个修改性质的 Webhook 使对象改变以及该 Webhook 应用了哪些更改很有用。
 
 <!--
-In v1.16+, kube-apiserver performs [auditing](/docs/tasks/debug-application-cluster/audit/) on each mutating webhook
-invocation. Each invocation generates an auditing annotation
-capturing if a request object is mutated by the invocation, and optionally generates an annotation capturing the applied
-patch from the webhook admission response. The annotations are set in the audit event for given request on given stage of
-its execution, which is then pre-processed according to a certain policy and written to a backend.
+The Kubernetes API server performs [auditing](/docs/tasks/debug/debug-cluster/audit/) on each
+mutating webhook invocation. Each invocation generates an auditing annotation
+capturing if a request object is mutated by the invocation, and optionally generates an annotation
+capturing the applied patch from the webhook admission response. The annotations are set in the
+audit event for given request on given stage of its execution, which is then pre-processed
+according to a certain policy and written to a backend.
 -->
-在 v1.16+ 中，kube-apiserver 针对每个修改性质的 Webhook 调用执行
-[审计](/zh/docs/tasks/debug-application-cluster/audit/)操作。
+Kubernetes API 服务器针对每个修改性质的 Webhook 调用执行[审计](/zh-cn/docs/tasks/debug/debug-cluster/audit/)操作。
 每个调用都会生成一个审计注解，记述请求对象是否发生改变，
-可选地还可以根据 webhook 的准入响应生成一个注解，记述所应用的修补。
+可选地还可以根据 Webhook 的准入响应生成一个注解，记述所应用的修补。
 针对给定请求的给定执行阶段，注解被添加到审计事件中，
 然后根据特定策略进行预处理并写入后端。
 
@@ -1877,122 +1452,124 @@ The audit level of a event determines which annotations get recorded:
 
 <!--
 - At `Metadata` audit level or higher, an annotation with key
-`mutation.webhook.admission.k8s.io/round_{round idx}_index_{order idx}` gets logged with JSON payload indicating
-a webhook gets invoked for given request and whether it mutated the object or not.
+  `mutation.webhook.admission.k8s.io/round_{round idx}_index_{order idx}` gets logged with JSON payload indicating
+  a webhook gets invoked for given request and whether it mutated the object or not.
 -->
-在 `Metadata` 或更高审计级别上，将使用 JSON 负载记录带有键名
+- 在 `Metadata` 或更高审计级别上，将使用 JSON 负载记录带有键名
 `mutation.webhook.admission.k8s.io/round_{round idx}_index_{order idx}` 的注解，
 该注解表示针对给定请求调用了 Webhook，以及该 Webhook 是否更改了对象。
 
-<!--
-For example, the following annotation gets recorded for a webhook being reinvoked. The webhook is ordered the third in the
-mutating webhook chain, and didn't mutated the request object during the invocation.
--->
-例如，对于正在被重新调用的某 Webhook，所记录的注解如下。
-Webhook 在 mutating Webhook 链中排在第三个位置，并且在调用期间未改变请求对象。
+  <!--
+  For example, the following annotation gets recorded for a webhook being reinvoked. The webhook is
+  ordered the third in the mutating webhook chain, and didn't mutated the request object during the
+  invocation.
+  -->
+  例如，对于正在被重新调用的某 Webhook，所记录的注解如下。
+  Webhook 在 mutating Webhook 链中排在第三个位置，并且在调用期间未改变请求对象。
 
-```yaml
-# 审计事件相关记录
-{
-    "kind": "Event",
-    "apiVersion": "audit.k8s.io/v1",
-    "annotations": {
-        "mutation.webhook.admission.k8s.io/round_1_index_2": "{\"configuration\":\"my-mutating-webhook-configuration.example.com\",\"webhook\":\"my-webhook.example.com\",\"mutated\": false}"
-        # 其他注解
-        ...
-    }
-    # 其他字段
-    ...
-}
-```
+  ```yaml
+  # 审计事件相关记录
+  {
+      "kind": "Event",
+      "apiVersion": "audit.k8s.io/v1",
+      "annotations": {
+          "mutation.webhook.admission.k8s.io/round_1_index_2": "{\"configuration\":\"my-mutating-webhook-configuration.example.com\",\"webhook\":\"my-webhook.example.com\",\"mutated\": false}"
+          # 其他注解
+          ...
+      }
+      # 其他字段
+      ...
+  }
+  ```
 
-```yaml
-# 反序列化的注解值
-{
-    "configuration": "my-mutating-webhook-configuration.example.com",
-    "webhook": "my-webhook.example.com",
-    "mutated": false
-}
-```
+  ```yaml
+  # 反序列化的注解值
+  {
+      "configuration": "my-mutating-webhook-configuration.example.com",
+      "webhook": "my-webhook.example.com",
+      "mutated": false
+  }
+  ```
 
-<!--
-The following annotation gets recorded for a webhook being invoked in the first round. The webhook is ordered the first in\
-the mutating webhook chain, and mutated the request object during the invocation.
--->
-对于在第一轮中调用的 Webhook，所记录的注解如下。
-Webhook 在 mutating Webhook 链中排在第一位，并在调用期间改变了请求对象。
+  <!--
+  The following annotation gets recorded for a webhook being invoked in the first round. The webhook
+  is ordered the first in the mutating webhook chain, and mutated the request object during the
+  invocation.
+  -->
+  对于在第一轮中调用的 Webhook，所记录的注解如下。
+  Webhook 在 mutating Webhook 链中排在第一位，并在调用期间改变了请求对象。
 
-```yaml
-# 审计事件相关记录
-{
-    "kind": "Event",
-    "apiVersion": "audit.k8s.io/v1",
-    "annotations": {
-        "mutation.webhook.admission.k8s.io/round_0_index_0": "{\"configuration\":\"my-mutating-webhook-configuration.example.com\",\"webhook\":\"my-webhook-always-mutate.example.com\",\"mutated\": true}"
-        # 其他注解
-        ...
-    }
-    # 其他字段
-    ...
-}
-```
+  ```yaml
+  # 审计事件相关记录
+  {
+      "kind": "Event",
+      "apiVersion": "audit.k8s.io/v1",
+      "annotations": {
+          "mutation.webhook.admission.k8s.io/round_0_index_0": "{\"configuration\":\"my-mutating-webhook-configuration.example.com\",\"webhook\":\"my-webhook-always-mutate.example.com\",\"mutated\": true}"
+          # 其他注解
+          ...
+      }
+      # 其他字段
+      ...
+  }
+  ```
 
-```yaml
-# 反序列化的注解值
-{
-    "configuration": "my-mutating-webhook-configuration.example.com",
-    "webhook": "my-webhook-always-mutate.example.com",
-    "mutated": true
-}
-```
+  ```yaml
+  # 反序列化的注解值
+  {
+      "configuration": "my-mutating-webhook-configuration.example.com",
+      "webhook": "my-webhook-always-mutate.example.com",
+      "mutated": true
+  }
+  ```
 
 <!--
 - At `Request` audit level or higher, an annotation with key
-`patch.webhook.admission.k8s.io/round_{round idx}_index_{order idx}` gets logged with JSON payload indicating
-a webhook gets invoked for given request and what patch gets applied to the request object.
+  `patch.webhook.admission.k8s.io/round_{round idx}_index_{order idx}` gets logged with JSON payload indicating
+  a webhook gets invoked for given request and what patch gets applied to the request object.
 -->
-在 `Request` 或更高审计级别上，将使用 JSON 负载记录带有键名为
-`patch.webhook.admission.k8s.io/round_{round idx}_index_{order idx}` 的注解，
-该注解表明针对给定请求调用了 Webhook 以及应用于请求对象之上的修改。
+- 在 `Request` 或更高审计级别上，将使用 JSON 负载记录带有键名为
+  `patch.webhook.admission.k8s.io/round_{round idx}_index_{order idx}` 的注解，
+  该注解表明针对给定请求调用了 Webhook 以及应用于请求对象之上的修改。
 
-<!--
-For example, the following annotation gets recorded for a webhook being reinvoked. The webhook is ordered the fourth in the
-mutating webhook chain, and responded with a JSON patch which got applied to the request object.
--->
-例如，以下是针对正在被重新调用的某 Webhook 所记录的注解。
-Webhook 在修改性质的 Webhook 链中排在第四，并在其响应中包含一个 JSON 补丁，
-该补丁已被应用于请求对象。
+  <!--
+  For example, the following annotation gets recorded for a webhook being reinvoked. The webhook is ordered the fourth in the
+  mutating webhook chain, and responded with a JSON patch which got applied to the request object.
+  -->
+  例如，以下是针对正在被重新调用的某 Webhook 所记录的注解。
+  Webhook 在修改性质的 Webhook 链中排在第四，并在其响应中包含一个 JSON 补丁，
+  该补丁已被应用于请求对象。
 
-```yaml
-# 审计事件相关记录
-{
-    "kind": "Event",
-    "apiVersion": "audit.k8s.io/v1",
-    "annotations": {
-        "patch.webhook.admission.k8s.io/round_1_index_3": "{\"configuration\":\"my-other-mutating-webhook-configuration.example.com\",\"webhook\":\"my-webhook-always-mutate.example.com\",\"patch\":[{\"op\":\"add\",\"path\":\"/data/mutation-stage\",\"value\":\"yes\"}],\"patchType\":\"JSONPatch\"}"
-        # 其他注解
-        ...
-    }
-    # 其他字段
-    ...
-}
-```
+  ```yaml
+  # 审计事件相关记录
+  {
+      "kind": "Event",
+      "apiVersion": "audit.k8s.io/v1",
+      "annotations": {
+          "patch.webhook.admission.k8s.io/round_1_index_3": "{\"configuration\":\"my-other-mutating-webhook-configuration.example.com\",\"webhook\":\"my-webhook-always-mutate.example.com\",\"patch\":[{\"op\":\"add\",\"path\":\"/data/mutation-stage\",\"value\":\"yes\"}],\"patchType\":\"JSONPatch\"}"
+          # 其他注解
+          ...
+      }
+      # 其他字段
+      ...
+  }
+  ```
 
-```yaml
-# 反序列化的注解值
-{
-    "configuration": "my-other-mutating-webhook-configuration.example.com",
-    "webhook": "my-webhook-always-mutate.example.com",
-    "patchType": "JSONPatch",
-    "patch": [
-        {
-            "op": "add",
-            "path": "/data/mutation-stage",
-            "value": "yes"
-        }
-    ]
-}
-```
+  ```yaml
+  # 反序列化的注解值
+  {
+      "configuration": "my-other-mutating-webhook-configuration.example.com",
+      "webhook": "my-webhook-always-mutate.example.com",
+      "patchType": "JSONPatch",
+      "patch": [
+          {
+              "op": "add",
+              "path": "/data/mutation-stage",
+              "value": "yes"
+          }
+      ]
+  }
+  ```
 
 <!--
 ### Admission webhook metrics
@@ -2000,11 +1577,11 @@ Webhook 在修改性质的 Webhook 链中排在第四，并在其响应中包含
 ### 准入 Webhook 度量值
 
 <!--
-Kube-apiserver exposes Prometheus metrics from the `/metrics` endpoint, which can be used for monitoring and
+The API server  exposes Prometheus metrics from the `/metrics` endpoint, which can be used for monitoring and
 diagnosing API server status. The following metrics record status related to admission webhooks.
 -->
-Kube-apiserver 从 `/metrics` 端点公开 Prometheus 指标，这些指标可用于监控和诊断
-apiserver 状态。以下指标记录了与准入 Webhook 相关的状态。
+API 服务器从 `/metrics` 端点公开 Prometheus 指标，这些指标可用于监控和诊断 API 服务器状态。
+以下指标记录了与准入 Webhook 相关的状态。
 
 <!--
 #### API server admission webhook rejection count
@@ -2270,9 +1847,9 @@ plane, exclude the `kube-system` namespace from being intercepted using a
 -->
 `kube-system` 名字空间包含由 Kubernetes 系统创建的对象，
 例如用于控制平面组件的服务账号，诸如 `kube-dns` 之类的 Pod 等。
-意外更改或拒绝 `kube-system` 名字空间中的请求可能会导致控制平面组件
-停止运行或者导致未知行为发生。
+意外更改或拒绝 `kube-system`
+名字空间中的请求可能会导致控制平面组件停止运行或者导致未知行为发生。
 如果你的准入 Webhook 不想修改 Kubernetes 控制平面的行为，请使用
-[`namespaceSelector`](#matching-requests-namespaceselector) 避免
-拦截 `kube-system` 名字空间。
+[`namespaceSelector`](#matching-requests-namespaceselector)
+避免拦截 `kube-system` 名字空间。
 
diff --git a/content/zh/docs/reference/command-line-tools-reference/kubelet-authentication-authorization.md b/content/zh-cn/docs/reference/access-authn-authz/kubelet-authn-authz.md
similarity index 88%
rename from content/zh/docs/reference/command-line-tools-reference/kubelet-authentication-authorization.md
rename to content/zh-cn/docs/reference/access-authn-authz/kubelet-authn-authz.md
index 4cd4dfb7c2..625bb0bebd 100644
--- a/content/zh/docs/reference/command-line-tools-reference/kubelet-authentication-authorization.md
+++ b/content/zh-cn/docs/reference/access-authn-authz/kubelet-authn-authz.md
@@ -1,18 +1,18 @@
 ---
 title: Kubelet 认证/鉴权
 ---
-<!-- 
+<!--
 reviewers:
 - liggitt
 title: Kubelet authentication/authorization
 -->
 
-<!-- 
-## Overview 
+<!--
+## Overview
 -->
-## 概述
+## 概述  {#overview}
 
-<!--  
+<!--
 A kubelet's HTTPS endpoint exposes APIs which give access to data of varying sensitivity,
 and allow you to perform operations with varying levels of power on the node and within containers.
 -->
@@ -20,17 +20,17 @@ kubelet 的 HTTPS 端点公开了 API，
 这些 API 可以访问敏感度不同的数据，
 并允许你在节点上和容器内以不同级别的权限执行操作。
 
-<!--  
+<!--
 This document describes how to authenticate and authorize access to the kubelet's HTTPS endpoint.
 -->
 本文档介绍了如何对 kubelet 的 HTTPS 端点的访问进行认证和鉴权。
 
-<!-- 
-## Kubelet authentication 
+<!--
+## Kubelet authentication
 -->
-## Kubelet 身份认证 
+## Kubelet 身份认证   {#kubelet-authentication}
 
-<!-- 
+<!--
 By default, requests to the kubelet's HTTPS endpoint that are not rejected by other configured
 authentication methods are treated as anonymous requests, and given a username of `system:anonymous`
 and a group of `system:unauthenticated`.
@@ -38,62 +38,62 @@ and a group of `system:unauthenticated`.
 默认情况下，未被已配置的其他身份认证方法拒绝的对 kubelet 的 HTTPS 端点的请求会被视为匿名请求，
 并被赋予 `system:anonymous` 用户名和 `system:unauthenticated` 组。
 
-<!--  
+<!--
 To disable anonymous access and send `401 Unauthorized` responses to unauthenticated requests:
 -->
 要禁用匿名访问并向未经身份认证的请求发送 `401 Unauthorized` 响应，请执行以下操作：
 
-<!-- 
-* start the kubelet with the `--anonymous-auth=false` flag 
+<!--
+* start the kubelet with the `--anonymous-auth=false` flag
 -->
 * 带 `--anonymous-auth=false` 标志启动 kubelet
 
-<!-- 
+<!--
 To enable X509 client certificate authentication to the kubelet's HTTPS endpoint:
 -->
 要对 kubelet 的 HTTPS 端点启用 X509 客户端证书认证：
 
-<!--  
+<!--
 * start the kubelet with the `--client-ca-file` flag, providing a CA bundle to verify client certificates with
 * start the apiserver with `--kubelet-client-certificate` and `--kubelet-client-key` flags
 * see the [apiserver authentication documentation](/docs/reference/access-authn-authz/authentication/#x509-client-certs) for more details
 -->
 * 带 `--client-ca-file` 标志启动 kubelet，提供一个 CA 证书包以供验证客户端证书
-* 带 `--kubelet-client-certificate` 和 `--kubelet-client-key` 标志启动 apiserver
+* 带 `--kubelet-client-certificate` 和 `--kubelet-client-key` 标志启动 API 服务器
 * 有关更多详细信息，请参见
-  [apiserver 身份验证文档](/zh/docs/reference/access-authn-authz/authentication/#x509-client-certs)
+  [API 服务器身份验证文档](/zh-cn/docs/reference/access-authn-authz/authentication/#x509-client-certs)
 
-<!--  
+<!--
 To enable API bearer tokens (including service account tokens) to be used to authenticate to the kubelet's HTTPS endpoint:
 -->
 要启用 API 持有者令牌（包括服务帐户令牌）以对 kubelet 的 HTTPS 端点进行身份验证，请执行以下操作：
 
-<!--  
+<!--
 * ensure the `authentication.k8s.io/v1beta1` API group is enabled in the API server
-* start the kubelet with the `--authentication-token-webhook` and the `--kubeconfig` flags
+* start the kubelet with the `--authentication-token-webhook` and `--kubeconfig` flags
 * the kubelet calls the `TokenReview` API on the configured API server to determine user information from bearer tokens
 -->
 * 确保在 API 服务器中启用了 `authentication.k8s.io/v1beta1` API 组
 * 带 `--authentication-token-webhook` 和 `--kubeconfig` 标志启动 kubelet
 * kubelet 调用已配置的 API 服务器上的 `TokenReview` API，以根据持有者令牌确定用户信息
 
-<!-- 
-## Kubelet authorization 
+<!--
+## Kubelet authorization
 -->
-## Kubelet 鉴权 
+## Kubelet 鉴权   {#kubelet-authorization}
 
-<!--  
+<!--
 Any request that is successfully authenticated (including an anonymous request) is then authorized. The default authorization mode is `AlwaysAllow`, which allows all requests.
 -->
-任何成功通过身份验证的请求（包括匿名请求）之后都会被鉴权。 
+任何成功通过身份验证的请求（包括匿名请求）之后都会被鉴权。
 默认的鉴权模式为 `AlwaysAllow`，它允许所有请求。
 
-<!--  
+<!--
 There are many possible reasons to subdivide access to the kubelet API:
 -->
 细分对 kubelet API 的访问权限可能有多种原因：
 
-<!--  
+<!--
 * anonymous auth is enabled, but anonymous users' ability to call the kubelet API should be limited
 * bearer token auth is enabled, but arbitrary API users' (like service accounts) ability to call the kubelet API should be limited
 * client certificate auth is enabled, but only some of the client certificates signed by the configured CA should be allowed to use the kubelet API
@@ -102,12 +102,12 @@ There are many possible reasons to subdivide access to the kubelet API:
 * 启用了持有者令牌认证，但应限制任意 API 用户（如服务帐户）调用 kubelet API 的能力
 * 启用了客户端证书身份验证，但仅应允许已配置的 CA 签名的某些客户端证书使用 kubelet API
 
-<!--  
+<!--
 To subdivide access to the kubelet API, delegate authorization to the API server:
 -->
 要细分对 kubelet API 的访问权限，请将鉴权委派给 API 服务器：
 
-<!--  
+<!--
 * ensure the `authorization.k8s.io/v1beta1` API group is enabled in the API server
 * start the kubelet with the `--authorization-mode=Webhook` and the `--kubeconfig` flags
 * the kubelet calls the `SubjectAccessReview` API on the configured API server to determine whether each request is authorized
@@ -117,19 +117,19 @@ To subdivide access to the kubelet API, delegate authorization to the API server
 * kubelet 调用已配置的 API 服务器上的 `SubjectAccessReview` API，
   以确定每个请求是否得到鉴权
 
-<!--  
+<!--
 The kubelet authorizes API requests using the same [request attributes](/docs/reference/access-authn-authz/authorization/#review-your-request-attributes) approach as the apiserver.
 -->
-kubelet 使用与 apiserver 相同的
-[请求属性](/zh/docs/reference/access-authn-authz/authorization/#review-your-request-attributes)
+kubelet 使用与 API 服务器相同的
+[请求属性](/zh-cn/docs/reference/access-authn-authz/authorization/#review-your-request-attributes)
 方法对 API 请求执行鉴权。
 
-<!--  
+<!--
 The verb is determined from the incoming request's HTTP verb:
 -->
 请求的动词根据传入请求的 HTTP 动词确定：
 
-<!-- 
+<!--
 HTTP verb | request verb
 -->
 HTTP 动词 | 请求动词
@@ -140,13 +140,13 @@ PUT       | update
 PATCH     | patch
 DELETE    | delete
 
-<!--  
+<!--
 The resource and subresource is determined from the incoming request's path:
 -->
 资源和子资源是根据传入请求的路径确定的：
 
 <!--
-Kubelet API  | resource | subresource  
+Kubelet API  | resource | subresource
 -->
 Kubelet API  | 资源 | 子资源
 -------------|----------|------------
@@ -154,20 +154,20 @@ Kubelet API  | 资源 | 子资源
 /metrics/\*   | nodes    | metrics
 /logs/\*      | nodes    | log
 /spec/\*      | nodes    | spec
-*其它所有* | nodes    | proxy
+**其它所有**  | nodes    | proxy
 
-<!--  
+<!--
 The namespace and API group attributes are always an empty string, and
 the resource name is always the name of the kubelet's `Node` API object.
 -->
 名字空间和 API 组属性始终是空字符串，
 资源名称始终是 kubelet 的 `Node` API 对象的名称。
 
-<!--  
+<!--
 When running in this mode, ensure the user identified by the `--kubelet-client-certificate` and `--kubelet-client-key`
 flags passed to the apiserver is authorized for the following attributes:
 -->
-在此模式下运行时，请确保传递给 apiserver 的由 `--kubelet-client-certificate` 和
+在此模式下运行时，请确保传递给 API 服务器的由 `--kubelet-client-certificate` 和
 `--kubelet-client-key` 标志标识的用户具有以下属性的鉴权：
 
 * verb=\*, resource=nodes, subresource=proxy
diff --git a/content/zh/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping.md b/content/zh-cn/docs/reference/access-authn-authz/kubelet-tls-bootstrapping.md
similarity index 83%
rename from content/zh/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping.md
rename to content/zh-cn/docs/reference/access-authn-authz/kubelet-tls-bootstrapping.md
index 4151e1bc99..998b34abb6 100644
--- a/content/zh/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping.md
+++ b/content/zh-cn/docs/reference/access-authn-authz/kubelet-tls-bootstrapping.md
@@ -15,35 +15,33 @@ content_type: concept
 <!-- overview -->
 
 <!--
-In a Kubernetes cluster, the components on the worker nodes - kubelet and kube-proxy - need to communicate with Kubernetes master components, specifically kube-apiserver.
+In a Kubernetes cluster, the components on the worker nodes - kubelet and kube-proxy - need to communicate with Kubernetes control plane components, specifically kube-apiserver.
 In order to ensure that communication is kept private, not interfered with, and ensure that each component of the cluster is talking to another trusted component, we strongly
 recommend using client TLS certificates on nodes.
 -->
 在一个 Kubernetes 集群中，工作节点上的组件（kubelet 和 kube-proxy）需要与
-Kubernetes 主控组件通信，尤其是 kube-apiserver。
-为了确保通信本身是私密的、不被干扰，并且确保集群的每个组件都在与另一个
-可信的组件通信，我们强烈建议使用节点上的客户端 TLS 证书。
+Kubernetes 控制平面组件通信，尤其是 kube-apiserver。
+为了确保通信本身是私密的、不被干扰，并且确保集群的每个组件都在与另一个可信的组件通信，
+我们强烈建议使用节点上的客户端 TLS 证书。
 
 <!--
 The normal process of bootstrapping these components, especially worker nodes that need certificates so they can communicate safely with kube-apiserver,
 can be a challenging process as it is often outside of the scope of Kubernetes and requires significant additional work.
 This in turn, can make it challenging to initialize or scale a cluster.
 -->
-启动引导这些组件的正常过程，尤其是需要证书来与 kube-apiserver 安全通信的
-工作节点，可能会是一个具有挑战性的过程，因为这一过程通常不受 Kubernetes 控制，
-需要不少额外工作。
+启动引导这些组件的正常过程，尤其是需要证书来与 kube-apiserver 安全通信的工作节点，
+可能会是一个具有挑战性的过程，因为这一过程通常不受 Kubernetes 控制，需要不少额外工作。
 这也使得初始化或者扩缩一个集群的操作变得具有挑战性。
 
 <!--
-In order to simplify the process, beginning in version 1.4, Kubernetes introduced a certificate request and signing API to simplify the process. The proposal can be
+In order to simplify the process, beginning in version 1.4, Kubernetes introduced a certificate request and signing API. The proposal can be
 found [here](https://github.com/kubernetes/kubernetes/pull/20439).
 
 This document describes the process of node initialization, how to set up TLS client certificate bootstrapping for
 kubelets, and how it works.
 -->
-为了简化这一过程，从 1.4 版本开始，Kubernetes 引入了一个证书请求和签名
-API 以便简化此过程。该提案可在
-[这里](https://github.com/kubernetes/kubernetes/pull/20439)看到。
+为了简化这一过程，从 1.4 版本开始，Kubernetes 引入了一个证书请求和签名 API。
+该提案可在[这里](https://github.com/kubernetes/kubernetes/pull/20439)看到。
 
 本文档描述节点初始化的过程，如何为 kubelet 配置 TLS 客户端证书启动引导，
 以及其背后的工作原理。
@@ -77,8 +75,8 @@ Note that the above process depends upon:
 * Existence of a key and certificate on the local host in the `kubeconfig`
 * The certificate having been signed by a Certificate Authority (CA) trusted by the kube-apiserver
 -->
-假定 kube-apiserver 成功地认证了 kubelet 的凭据数据，它会将 kubelet 视为
-一个合法的节点并开始将 Pods 分派给该节点。
+假定 kube-apiserver 成功地认证了 kubelet 的凭据数据，它会将 kubelet
+视为一个合法的节点并开始将 Pod 分派给该节点。
 
 注意，签名的过程依赖于：
 
@@ -89,25 +87,26 @@ Note that the above process depends upon:
 All of the following are responsibilities of whoever sets up and manages the cluster:
 
 1. Creating the CA key and certificate
-2. Distributing the CA certificate to the master nodes, where kube-apiserver is running
+2. Distributing the CA certificate to the control plane nodes, where kube-apiserver is running
 3. Creating a key and certificate for each kubelet; strongly recommended to have a unique one, with a unique CN, for each kubelet
 4. Signing the kubelet certificate using the CA key
 5. Distributing the kubelet key and signed certificate to the specific node on which the kubelet is running
-
-The TLS Bootstrapping described in this document is intended to simplify, and partially or even completely automate, steps 3 onwards, as these are the most common when initializing or scaling
-a cluster.
 -->
 负责部署和管理集群的人有以下责任：
 
 1. 创建 CA 密钥和证书
-2. 将 CA 证书发布到 kube-apiserver 运行所在的主控节点上
+2. 将 CA 证书发布到 kube-apiserver 运行所在的控制平面节点上
 3. 为每个 kubelet 创建密钥和证书；强烈建议为每个 kubelet 使用独一无二的、
    CN 取值与众不同的密钥和证书
 4. 使用 CA 密钥对 kubelet 证书签名
 5. 将 kubelet 密钥和签名的证书发布到 kubelet 运行所在的特定节点上
 
-本文中描述的 TLS 启动引导过程有意简化甚至完全自动化上述过程，尤其是
-第三步之后的操作，因为这些步骤是初始化或者扩缩集群时最常见的操作。
+<!--
+The TLS Bootstrapping described in this document is intended to simplify, and partially or even completely automate, steps 3 onwards, as these are the most common when initializing or scaling
+a cluster.
+-->
+本文中描述的 TLS 启动引导过程有意简化甚至完全自动化上述过程，
+尤其是第三步之后的操作，因为这些步骤是初始化或者扩缩集群时最常见的操作。
 
 <!--
 ### Bootstrap Initialization
@@ -132,10 +131,9 @@ In the bootstrap initialization process, the following occurs:
 9. Certificate is created for the kubelet
 -->
 1. kubelet 启动
-2. kubelet 看到自己 *没有* 对应的 `kubeconfig` 文件
+2. kubelet 看到自己**没有**对应的 `kubeconfig` 文件
 3. kubelet 搜索并发现 `bootstrap-kubeconfig` 文件
-4. kubelet 读取该启动引导文件，从中获得 API 服务器的 URL 和用途有限的
-   一个“令牌（Token）”
+4. kubelet 读取该启动引导文件，从中获得 API 服务器的 URL 和用途有限的一个“令牌（Token）”
 5. kubelet 建立与 API 服务器的连接，使用上述令牌执行身份认证
 6. kubelet 现在拥有受限制的凭据来创建和取回证书签名请求（CSR）
 7. kubelet 为自己创建一个 CSR，并将其 signerName 设置为 `kubernetes.io/kube-apiserver-client-kubelet`
@@ -191,26 +189,25 @@ In addition, you need your Kubernetes Certificate Authority (CA).
 ## Certificate Authority
 
 As without bootstrapping, you will need a Certificate Authority (CA) key and certificate. As without bootstrapping, these will be used
-to sign the kubelet certificate. As before, it is your responsibility to distribute them to master nodes.
+to sign the kubelet certificate. As before, it is your responsibility to distribute them to control plane nodes.
 -->
 ## 证书机构   {#certificate-authority}
 
-就像在没有启动引导的情况下，你会需要证书机构（CA）密钥和证书。
+就像在没有 TLS 启动引导支持的情况下，你会需要证书机构（CA）密钥和证书。
 这些数据会被用来对 kubelet 证书进行签名。
-如前所述，将证书机构密钥和证书发布到主控节点是你的责任。
+如前所述，将证书机构密钥和证书发布到控制平面节点是你的责任。
 
 <!--
-For the purposes of this document, we will assume these have been distributed to master nodes at `/var/lib/kubernetes/ca.pem` (certificate) and `/var/lib/kubernetes/ca-key.pem` (key).
+For the purposes of this document, we will assume these have been distributed to control plane nodes at `/var/lib/kubernetes/ca.pem` (certificate) and `/var/lib/kubernetes/ca-key.pem` (key).
 We will refer to these as "Kubernetes CA certificate and key".
 
 All Kubernetes components that use these certificates - kubelet, kube-apiserver, kube-controller-manager - assume the key and certificate to be PEM-encoded.
 -->
-就本文而言，我们假定这些数据被发布到主控节点上的
-`/var/lib/kubernetes/ca.pem`（证书）和
+就本文而言，我们假定这些数据被发布到控制平面节点上的 `/var/lib/kubernetes/ca.pem`（证书）和
 `/var/lib/kubernetes/ca-key.pem`（密钥）文件中。
 我们将这两个文件称作“Kubernetes CA 证书和密钥”。
-所有 Kubernetes 组件（kubelet、kube-apiserver、kube-controller-manager）都使用
-这些凭据，并假定这里的密钥和证书都是 PEM 编码的。
+所有 Kubernetes 组件（kubelet、kube-apiserver、kube-controller-manager）
+都使用这些凭据，并假定这里的密钥和证书都是 PEM 编码的。
 
 <!--
 ## kube-apiserver configuration
@@ -223,7 +220,7 @@ The kube-apiserver has several requirements to enable TLS bootstrapping:
 -->
 ## kube-apiserver 配置   {#kube-apiserver-configuration}
 
-启用 TLS 启动引导对 kube-apiserver 有若干需求：
+启用 TLS 启动引导对 kube-apiserver 有若干要求：
 
 * 能够识别对客户端证书进行签名的 CA
 * 能够对启动引导的 kubelet 执行身份认证，并将其置入 `system:bootstrappers` 组
@@ -254,8 +251,8 @@ You can use any [authenticator](/docs/reference/access-authn-authz/authenticatio
 ### 初始启动引导认证     {#initial-bootstrap-authentication}
 
 为了让启动引导的 kubelet 能够连接到 kube-apiserver 并请求证书，
-它必须首先在服务器上认证自身身份。你可以使用任何一种能够对 kubelet 执行身份认证的
-[身份认证组件](/zh/docs/reference/access-authn-authz/authentication/)。
+它必须首先在服务器上认证自身身份。你可以使用任何一种能够对 kubelet
+执行身份认证的[身份认证组件](/zh-cn/docs/reference/access-authn-authz/authentication/)。
 
 <!--
 While any authentication strategy can be used for the kubelet's initial
@@ -273,11 +270,9 @@ of provisioning.
 
 <!--
 Bootstrap tokens are a simpler and more easily managed method to authenticate kubelets, and do not require any additional flags when starting kube-apiserver.
-Using bootstrap tokens is currently __beta__ as of Kubernetes version 1.12.
 -->
 启动引导令牌是一种对 kubelet 进行身份认证的方法，相对简单且容易管理，
 且不需要在启动 kube-apiserver 时设置额外的标志。
-启动引导令牌从 Kubernetes 1.12 开始是一种 __Beta__ 功能特性。
 
 <!--
 Whichever method you choose, the requirement is that the kubelet be able to authenticate as a user with the rights to:
@@ -304,10 +299,10 @@ requests related to certificate provisioning. With RBAC in place, scoping the
 tokens to a group allows for great flexibility. For example, you could disable a
 particular bootstrap group's access when you are done provisioning the nodes.
 -->
-随着这个功能特性的逐渐成熟，你需要确保令牌绑定到某基于角色的的访问控制（RBAC）
-策略上，从而严格限制请求（使用[启动引导令牌](/zh/docs/reference/access-authn-authz/bootstrap-tokens/)）
-仅限于客户端申请提供证书。当 RBAC 被配置启用时，可以将令牌限制到某个组，从而
-提高灵活性。例如，你可以在准备节点期间禁止某特定启动引导组的访问。
+随着这个功能特性的逐渐成熟，你需要确保令牌绑定到某基于角色的访问控制（RBAC）
+策略上，从而严格限制请求（使用[启动引导令牌](/zh-cn/docs/reference/access-authn-authz/bootstrap-tokens/)）
+仅限于客户端申请提供证书。当 RBAC 被配置启用时，可以将令牌限制到某个组，
+从而提高灵活性。例如，你可以在准备节点期间禁止某特定启动引导组的访问。
 
 <!--
 #### Bootstrap tokens
@@ -317,7 +312,7 @@ and then issued to the individual kubelet. You can use a single token for an ent
 -->
 #### 启动引导令牌   {#bootstrap-tokens}
 
-启动引导令牌的细节在[这里](/zh/docs/reference/access-authn-authz/bootstrap-tokens/)
+启动引导令牌的细节在[这里](/zh-cn/docs/reference/access-authn-authz/bootstrap-tokens/)
 详述。启动引导令牌在 Kubernetes 集群中存储为 Secret 对象，被发放给各个 kubelet。
 你可以在整个集群中使用同一个令牌，也可以为每个节点发放单独的令牌。
 
@@ -340,7 +335,7 @@ for TLS bootstrapping.
 -->
 从 kubelet 的角度，所有令牌看起来都很像，没有特别的含义。
 从 kube-apiserver 服务器的角度，启动引导令牌是很特殊的。
-根据其 `type`、`namespace` 和 `name`，kube-apiserver 能够将认作特殊的令牌，
+根据其 `type`、`namespace` 和 `name`，kube-apiserver 能够将其认作特殊的令牌，
 并授予携带该令牌的任何人特殊的启动引导权限，换言之，将其视为
 `system:bootstrappers` 组的成员。这就满足了 TLS 启动引导的基本需求。
 
@@ -349,7 +344,7 @@ The details for creating the secret are available [here](/docs/reference/access-
 
 If you want to use bootstrap tokens, you must enable it on kube-apiserver with the flag:
 -->
-关于创建 Secret 的进一步细节可访问[这里](/zh/docs/reference/access-authn-authz/bootstrap-tokens/)。
+关于创建 Secret 的进一步细节可访问[这里](/zh-cn/docs/reference/access-authn-authz/bootstrap-tokens/)。
 
 如果你希望使用启动引导令牌，你必须在 kube-apiserver 上使用下面的标志启用之：
 
@@ -360,7 +355,7 @@ If you want to use bootstrap tokens, you must enable it on kube-apiserver with t
 <!--
 #### Token authentication file
 
-kube-apiserver has an ability to accept tokens as authentication.
+kube-apiserver has the ability to accept tokens as authentication.
 These tokens are arbitrary but should represent at least 128 bits of entropy derived
 from a secure random number generator (such as `/dev/urandom` on most modern Linux
 systems). There are multiple ways you can generate a token. For example:
@@ -368,8 +363,8 @@ systems). There are multiple ways you can generate a token. For example:
 #### 令牌认证文件    {#token-authentication-file}
 
 kube-apiserver 能够将令牌视作身份认证依据。
-这些令牌可以是任意数据，但必须表示为基于某安全的随机数生成器而得到的
-至少 128 位混沌数据。这里的随机数生成器可以是现代 Linux 系统上的
+这些令牌可以是任意数据，但必须表示为基于某安全的随机数生成器而得到的至少
+128 位混沌数据。这里的随机数生成器可以是现代 Linux 系统上的
 `/dev/urandom`。生成令牌的方式有很多种。例如：
 
 ```shell
@@ -382,10 +377,10 @@ will generate tokens that look like `02b50b05283e98dd0fd71db496ef01e8`.
 The token file should look like the following example, where the first three
 values can be anything and the quoted group name should be as depicted:
 -->
-上面的命令会生成类似于 `02b50b05283e98dd0fd71db496ef01e8` 这样的令牌。 
+上面的命令会生成类似于 `02b50b05283e98dd0fd71db496ef01e8` 这样的令牌。
 
-令牌文件看起来是下面的例子这样，其中前面三个值可以是任何值，用引号括起来
-的组名称则只能用例子中给的值。
+令牌文件看起来是下面的例子这样，其中前面三个值可以是任何值，
+用引号括起来的组名称则只能用例子中给的值。
 
 ```console
 02b50b05283e98dd0fd71db496ef01e8,kubelet-bootstrap,10001,"system:bootstrappers"
@@ -398,9 +393,8 @@ systemd unit file perhaps) to enable the token file.  See docs
 further details.
 -->
 向 kube-apiserver 添加 `--token-auth-file=FILENAME` 标志（或许这要对 systemd
-的单元文件作修改）以启用令牌文件。参见
-[这里](/zh/docs/reference/access-authn-authz/authentication/#static-token-file)
-的文档以了解进一步的细节。
+的单元文件作修改）以启用令牌文件。有关进一步细节的文档，
+可参见[这里](/zh-cn/docs/reference/access-authn-authz/authentication/#static-token-file)。
 
 <!--
 ### Authorize kubelet to create CSR
@@ -415,8 +409,8 @@ To do this, you only need to create a `ClusterRoleBinding` that binds the `syste
 -->
 ### 授权 kubelet 创建 CSR    {#authorize-kubelet-to-create-csr}
 
-现在启动引导节点被身份认证为 `system:bootstrapping` 组的成员，它需要被 _授权_
-创建证书签名请求（CSR）并在证书被签名之后将其取回。
+现在启动引导节点被 **身份认证** 为 `system:bootstrapping` 组的成员，
+它需要被 **授权** 创建证书签名请求（CSR）并在证书被签名之后将其取回。
 幸运的是，Kubernetes 提供了一个 `ClusterRole`，其中精确地封装了这些许可，
 `system:node-bootstrapper`。
 
@@ -447,8 +441,8 @@ the controller-manager is responsible for issuing actual signed certificates.
 -->
 ## kube-controller-manager 配置   {#kube-controller-manager-configuration}
 
-API 服务器从 kubelet 收到证书请求并对这些请求执行身份认证，但真正负责发放
-签名证书的是控制器管理器。
+API 服务器从 kubelet 收到证书请求并对这些请求执行身份认证，
+但真正负责发放签名证书的是控制器管理器（controller-manager）。
 
 <!--
 The controller-manager performs this function via a certificate-issuing control loop.
@@ -457,9 +451,9 @@ This takes the form of a
 assets on disk. Currently, all certificates issued have one year validity and a
 default set of key usages.
 -->
-控制器管理器通过一个证书发放的控制回路来执行此操作。该操作的执行方式是使用磁盘上
-的文件用 [cfssl](https://blog.cloudflare.com/introducing-cfssl/) 本地签名组件
-来完成。目前，所发放的所有证书都有一年的有效期，并设定了默认的一组密钥用法。
+控制器管理器通过一个证书发放的控制回路来执行此操作。该操作的执行方式是使用磁盘上的文件用
+[cfssl](https://blog.cloudflare.com/introducing-cfssl/) 本地签名组件来完成。
+目前，所发放的所有证书都有一年的有效期，并设定了默认的一组密钥用法。
 
 <!--
 In order for the controller-manager to sign certificates, it needs the following:
@@ -469,18 +463,18 @@ In order for the controller-manager to sign certificates, it needs the following
 -->
 为了让控制器管理器对证书签名，它需要：
 
-* 能够访问你之前所创建并分发的“Kubernetes CA 密钥和证书”
+* 能够访问你之前所创建并分发的 “Kubernetes CA 密钥和证书”
 * 启用 CSR 签名
 
 <!--
 ### Access to key and certificate
 
-As described earlier, you need to create a Kubernetes CA key and certificate, and distribute it to the master nodes.
+As described earlier, you need to create a Kubernetes CA key and certificate, and distribute it to the control plane nodes.
 These will be used by the controller-manager to sign the kubelet certificates.
 -->
 ### 访问密钥和证书   {#access-to-key-and-certificate}
 
-如前所述，你需要创建一个 Kubernetes CA 密钥和证书，并将其发布到主控节点。
+如前所述，你需要创建一个 Kubernetes CA 密钥和证书，并将其发布到控制平面节点。
 这些数据会被控制器管理器来对 kubelet 证书进行签名。
 
 <!--
@@ -493,7 +487,7 @@ To provide the Kubernetes CA key and certificate to kube-controller-manager, use
 由于这些被签名的证书反过来会被 kubelet 用来在 kube-apiserver 执行普通的
 kubelet 身份认证，很重要的一点是为控制器管理器所提供的 CA 也被 kube-apiserver
 信任用来执行身份认证。CA 密钥和证书是通过 kube-apiserver 的标志
-`--client-ca-file=FILENAME`（例如，`--client-ca-file=/var/lib/kubernetes/ca.pem`)，
+`--client-ca-file=FILENAME`（例如，`--client-ca-file=/var/lib/kubernetes/ca.pem`），
 来设定的，正如 kube-apiserver 配置节所述。
 
 要将 Kubernetes CA 密钥和证书提供给 kube-controller-manager，可使用以下标志：
@@ -503,7 +497,7 @@ kubelet 身份认证，很重要的一点是为控制器管理器所提供的 CA
 ```
 
 <!--
-For example:
+for example:
 -->
 例如：
 
@@ -539,18 +533,17 @@ There are two distinct sets of permissions:
 -->
 许可权限有两组：
 
-* `nodeclient`：如果节点在为节点创建新的证书，则该节点还没有证书。该节点
-  使用前文所列的令牌之一来执行身份认证，因此是组 `system:bootstrappers` 组
-  的成员。
+* `nodeclient`：如果节点在为节点创建新的证书，则该节点还没有证书。
+  该节点使用前文所列的令牌之一来执行身份认证，因此是组 `system:bootstrappers` 组的成员。
 * `selfnodeclient`：如果节点在对证书执行续期操作，则该节点已经拥有一个证书。
   节点持续使用现有的证书将自己认证为 `system:nodes` 组的成员。
 
 <!--
 To enable the kubelet to request and receive a new certificate, create a `ClusterRoleBinding` that binds the group in which the bootstrapping node is a member `system:bootstrappers` to the `ClusterRole` that grants it permission, `system:certificates.k8s.io:certificatesigningrequests:nodeclient`:
 -->
-要允许 kubelet 请求并接收新的证书，可以创建一个 `ClusterRoleBinding` 将启动
-引导节点所处的组 `system:bootstrappers` 绑定到为其赋予访问权限的
-`ClusterRole` `system:certificates.k8s.io:certificatesigningrequests:nodeclient`：
+要允许 kubelet 请求并接收新的证书，可以创建一个 `ClusterRoleBinding`
+将启动引导节点所处的组 `system:bootstrappers` 绑定到为其赋予访问权限的 `ClusterRole`
+`system:certificates.k8s.io:certificatesigningrequests:nodeclient`：
 
 ```yaml
 # 批复 "system:bootstrappers" 组的所有 CSR
@@ -595,18 +588,18 @@ roleRef:
 <!--
 The `csrapproving` controller that ships as part of
 [kube-controller-manager](/docs/admin/kube-controller-manager/) and is enabled
-by default. The controller uses the [`SubjectAccessReview`
-API](/docs/reference/access-authn-authz/authorization/#checking-api-access) to
+by default. The controller uses the
+[`SubjectAccessReview` API](/docs/reference/access-authn-authz/authorization/#checking-api-access) to
 determine if a given user is authorized to request a CSR, then approves based on
 the authorization outcome. To prevent conflicts with other approvers, the
 builtin approver doesn't explicitly deny CSRs. It only ignores unauthorized
 requests. The controller also prunes expired certificates as part of garbage
 collection.
 -->
-作为 [kube-controller-manager](/zh/docs/reference/generated/kube-controller-manager/)
+作为 [kube-controller-manager](/zh-cn/docs/reference/command-line-tools-reference/kube-controller-manager/)
 的一部分的 `csrapproving` 控制器是自动被启用的。
-该控制器使用 [`SubjectAccessReview` API](/zh/docs/reference/access-authn-authz/authorization/#checking-api-access)
-来确定是否某给定用户被授权请求 CSR，之后基于鉴权结果执行批复操作。
+该控制器使用 [`SubjectAccessReview` API](/zh-cn/docs/reference/access-authn-authz/authorization/#checking-api-access)
+来确定给定用户是否被授权请求 CSR，之后基于鉴权结果执行批复操作。
 为了避免与其它批复组件发生冲突，内置的批复组件不会显式地拒绝任何 CSRs。
 该组件仅是忽略未被授权的请求。
 控制器也会作为垃圾收集的一部分清除已过期的证书。
@@ -614,11 +607,11 @@ collection.
 <!--
 ## kubelet configuration
 
-Finally, with the master nodes properly set up and all of the necessary authentication and authorization in place, we can configure the kubelet.
+Finally, with the control plane nodes properly set up and all of the necessary authentication and authorization in place, we can configure the kubelet.
 -->
 ## kubelet 配置   {#kubelet-configuration}
 
-最后，当主控节点被正确配置并且所有必要的身份认证和鉴权机制都就绪时，
+最后，当控制平面节点被正确配置并且所有必要的身份认证和鉴权机制都就绪时，
 我们可以配置 kubelet。
 
 <!--
@@ -632,10 +625,9 @@ The kubelet requires the following configuration to bootstrap:
 kubelet 需要以下配置来执行启动引导：
 
 * 一个用来存储所生成的密钥和证书的路径（可选，可以使用默认配置）
-* 一个用来指向尚不存在的 `kubeconfig` 文件的路径；kubelet 会将启动引导
-  配置文件放到这个位置
-* 一个指向启动引导 `kubeconfig` 文件的路径，用来提供 API 服务器的 URL
-  和启动引导凭据，例如，启动引导令牌
+* 一个用来指向尚不存在的 `kubeconfig` 文件的路径；kubelet 会将启动引导配置文件放到这个位置
+* 一个指向启动引导 `kubeconfig` 文件的路径，用来提供 API 服务器的 URL 和启动引导凭据，
+  例如，启动引导令牌
 * 可选的：轮换证书的指令
 
 <!--
@@ -678,9 +670,8 @@ The important elements to note are:
 -->
 需要额外注意的一些因素有：
 
-* `certificate-authority`：指向 CA 文件的路径，用来对 kube-apiserver 所出示
-  的服务器证书进行验证
-* `server`： 用来访问 kube-apiserver 的 URL
+* `certificate-authority`：指向 CA 文件的路径，用来对 kube-apiserver 所出示的服务器证书进行验证
+* `server`：用来访问 kube-apiserver 的 URL
 * `token`：要使用的令牌
 
 <!--
@@ -722,9 +713,9 @@ specified by `--kubeconfig`. The certificate and key file will be placed in the
 directory specified by `--cert-dir`.
 -->
 在启动 kubelet 时，如果 `--kubeconfig` 标志所指定的文件并不存在，会使用通过标志
-`--bootstrap-kubeconfig` 所指定的启动引导 kubeconfig 配置来向 API 服务器请求
-客户端证书。在证书请求被批复并被 kubelet 收回时，一个引用所生成的密钥和所获得
-证书的 kubeconfig 文件会被写入到通过 `--kubeconfig` 所指定的文件路径下。
+`--bootstrap-kubeconfig` 所指定的启动引导 kubeconfig 配置来向 API 服务器请求客户端证书。
+在证书请求被批复并被 kubelet 收回时，一个引用所生成的密钥和所获得证书的 kubeconfig
+文件会被写入到通过 `--kubeconfig` 所指定的文件路径下。
 证书和密钥文件会被放到 `--cert-dir` 所指定的目录中。
 
 <!--
@@ -735,7 +726,7 @@ uses to authenticate to kube-apiserver.
 -->
 ### 客户和服务证书   {#client-and-serving-certificates}
 
-前文所述的内容都与 kubelet _客户端_ 证书相关，尤其是 kubelet 用来向
+前文所述的内容都与 kubelet **客户端**证书相关，尤其是 kubelet 用来向
 kube-apiserver 认证自身身份的证书。
 
 <!--
@@ -746,9 +737,8 @@ To secure these, the kubelet can do one of:
 * create self-signed key and certificate, if a key and certificate are not provided
 * request serving certificates from the cluster server, via the CSR API
 -->
-kubelet 也可以使用 _服务（Serving）_ 证书。kubelet 自身向外提供一个
-HTTPS 末端，包含若干功能特性。要保证这些末端的安全性，kubelet 可以执行以下操作
-之一：
+kubelet 也可以使用 **服务（Serving）** 证书。kubelet 自身向外提供一个 HTTPS 末端，
+包含若干功能特性。要保证这些末端的安全性，kubelet 可以执行以下操作之一：
 
 * 使用通过 `--tls-private-key-file` 和 `--tls-cert-file` 所设置的密钥和证书
 * 如果没有提供密钥和证书，则创建自签名的密钥和证书
@@ -785,9 +775,8 @@ Kubernetes v1.8 和更高版本的 kubelet 实现了对客户端证书与/或服
 certificates by creating new CSRs as its existing credentials expire. To enable
 this feature pass the following flag to the kubelet:
 -->
-`RotateKubeletClientCertificate` 会导致 kubelet 在其现有凭据即将过期时通过
-创建新的 CSR 来轮换其客户端证书。要启用此功能特性，可将下面的标志传递给
-kubelet：
+`RotateKubeletClientCertificate` 会导致 kubelet 在其现有凭据即将过期时通过创建新的
+CSR 来轮换其客户端证书。要启用此功能特性，可将下面的标志传递给 kubelet：
 
 ```
 --rotate-certificates
@@ -798,9 +787,8 @@ kubelet：
 certificate after bootstrapping its client credentials **and** to rotate that
 certificate. To enable this feature pass the following flag to the kubelet:
 -->
-`RotateKubeletServerCertificate` 会让 kubelet 在启动引导其客户端凭据之后请求
-一个服务证书 **且** 对该服务证书执行轮换操作。要启用此功能特性，将下面的标志
-传递给 kubelet：
+`RotateKubeletServerCertificate` 会让 kubelet 在启动引导其客户端凭据之后请求一个服务证书
+**且** 对该服务证书执行轮换操作。要启用此功能特性，将下面的标志传递给 kubelet：
 
 ```
 --rotate-server-certificates
@@ -814,11 +802,10 @@ reasons](https://github.com/kubernetes/community/pull/1982). To use
 `RotateKubeletServerCertificate` operators need to run a custom approving
 controller, or manually approve the serving certificate requests.
 -->
-Kubernetes 核心中所实现的 CSR 批复控制器出于
-[安全原因](https://github.com/kubernetes/community/pull/1982)
-并不会自动批复节点的 _服务_ 证书。
-要使用 `RotateKubeletServerCertificate` 功能特性，集群运维人员需要运行一个
-定制的控制器或者手动批复服务证书的请求。
+出于[安全原因](https://github.com/kubernetes/community/pull/1982)，Kubernetes 核心中所实现的
+CSR 批复控制器并不会自动批复节点的**服务**证书。
+要使用 `RotateKubeletServerCertificate` 功能特性，
+集群运维人员需要运行一个定制的控制器或者手动批复服务证书的请求。
 
 <!--
 A deployment-specific approval process for kubelet serving certificates should typically only approve CSRs which:
@@ -835,11 +822,11 @@ A deployment-specific approval process for kubelet serving certificates should t
 
 1. 由节点发出的请求（确保 `spec.username` 字段形式为 `system:node:<nodeName>`
    且 `spec.groups` 包含 `system:nodes`）
-2. 请求中包含服务证书用法（确保 `spec.usages` 中包含 `server auth`，可选地也可 
-   包含 `digital signature` 和 `key encipherment`，且不包含其它用法）
+2. 请求中包含服务证书用法（确保 `spec.usages` 中包含 `server auth`，可选地也可包含
+   `digital signature` 和 `key encipherment`，且不包含其它用法）
 3. 仅包含隶属于请求节点的 IP 和 DNS 的 `subjectAltNames`，没有 URI 和 Email
-   形式的 `subjectAltNames`（解析 `spec.request` 中的 x509 证书签名请求可以
-   检查 `subjectAltNames`）
+   形式的 `subjectAltNames`（解析 `spec.request` 中的 x509 证书签名请求可以检查
+   `subjectAltNames`）
 {{< /note >}}
 
 <!--
@@ -851,10 +838,9 @@ is part of the Kubernetes control plane and runs on every node, but may also inc
 -->
 ## 其它身份认证组件   {#other-authenticating-components}
 
-本文所描述的所有 TLS 启动引导内容都与 kubelet 相关。不过，其它组件也可能需要
-直接与 kube-apiserver 直接通信。容易想到的是 kube-proxy，同样隶属于
-Kubernetes 的控制面并且运行在所有节点之上，不过也可能包含一些其它负责
-监控或者联网的组件。
+本文所描述的所有 TLS 启动引导内容都与 kubelet 相关。不过，其它组件也可能需要直接与
+kube-apiserver 直接通信。容易想到的是 kube-proxy，同样隶属于
+Kubernetes 的控制面并且运行在所有节点之上，不过也可能包含一些其它负责监控或者联网的组件。
 
 <!--
 Like the kubelet, these other components also require a method of authenticating to kube-apiserver.
@@ -867,13 +853,12 @@ You have several options for generating these credentials:
 * The old way: Create and distribute certificates the same way you did for kubelet before TLS bootstrapping
 * DaemonSet: Since the kubelet itself is loaded on each node, and is sufficient to start base services, you can run kube-proxy and other node-specific services not as a standalone process, but rather as a daemonset in the `kube-system` namespace. Since it will be in-cluster, you can give it a proper service account with appropriate permissions to perform its activities. This may be the simplest way to configure such services.
 -->
-* 较老的方式：和 kubelet 在 TLS 启动引导之前所做的一样，用类似的方式
-  创建和分发证书
+* 较老的方式：和 kubelet 在 TLS 启动引导之前所做的一样，用类似的方式创建和分发证书。
 * DaemonSet：由于 kubelet 自身被加载到所有节点之上，并且有足够能力来启动基本服务，
   你可以运行将 kube-proxy 和其它特定节点的服务作为 `kube-system` 名字空间中的
-  DaemonSet 来执行，而不是独立的进程。由于 DaemonSet 位于集群内部，你可以为其
-  指派一个合适的服务账户，使之具有适当的访问权限来完成其使命。这也许是配置此类
-  服务的最简单的方法。
+  DaemonSet 来执行，而不是独立的进程。由于 DaemonSet 位于集群内部，
+  你可以为其指派一个合适的服务账户，使之具有适当的访问权限来完成其使命。
+  这也许是配置此类服务的最简单的方法。
 
 <!--
 ## kubectl approval
@@ -896,10 +881,10 @@ list CSRs with `kubectl get csr` and describe one in detail with `kubectl
 describe csr <name>`. An administrator can approve or deny a CSR with `kubectl
 certificate approve <name>` and `kubectl certificate deny <name>`.
 -->
-签名控制器并不会立即对所有证书请求执行签名操作。相反，它会等待这些请求被某
-具有适当特权的用户标记为 “Approved（已批准）”状态。
-这一流程有意允许由外部批复控制器来自动执行的批复，或者由控制器管理器内置的
-批复控制器来自动批复。
+签名控制器并不会立即对所有证书请求执行签名操作。相反，
+它会等待这些请求被某具有适当特权的用户标记为 “Approved（已批准）”状态。
+这一流程有意允许由外部批复控制器来自动执行的批复，
+或者由控制器管理器内置的批复控制器来自动批复。
 不过，集群管理员也可以使用 `kubectl` 来手动批准证书请求。
 管理员可以通过 `kubectl get csr` 来列举所有的 CSR，使用
 `kubectl descsribe csr <name>` 来描述某个 CSR 的细节。
diff --git a/content/zh/docs/reference/access-authn-authz/node.md b/content/zh-cn/docs/reference/access-authn-authz/node.md
similarity index 59%
rename from content/zh/docs/reference/access-authn-authz/node.md
rename to content/zh-cn/docs/reference/access-authn-authz/node.md
index dc1c86ee4f..073018b3a7 100644
--- a/content/zh/docs/reference/access-authn-authz/node.md
+++ b/content/zh-cn/docs/reference/access-authn-authz/node.md
@@ -4,7 +4,6 @@ content_type: concept
 weight: 90
 ---
 <!--
----
 reviewers:
 - timstclair
 - deads2k
@@ -13,37 +12,32 @@ reviewers:
 title: Using Node Authorization
 content_type: concept
 weight: 90
----
 -->
 
 <!-- overview -->
-节点鉴权是一种特殊用途的鉴权模式，专门对 kubelet 发出的 API 请求进行鉴权。
+
 <!--
 Node authorization is a special-purpose authorization mode that specifically authorizes API requests made by kubelets.
 -->
+节点鉴权是一种特殊用途的鉴权模式，专门对 kubelet 发出的 API 请求进行授权。
 
 
 <!-- body -->
-## 概述
+
 <!--
 ## Overview
 -->
+## 概述   {#overview}
 
-节点鉴权器允许 kubelet 执行 API 操作。包括：
 <!--
 The Node authorizer allows a kubelet to perform API operations. This includes:
 -->
+节点鉴权器允许 kubelet 执行 API 操作。包括：
 
-读取操作：
 <!--
 Read operations:
 -->
-
-* services
-* endpoints
-* nodes
-* pods
-* secrets、configmaps、pvcs 以及绑定到 kubelet 节点的与 pod 相关的持久卷
+读取操作：
 
 <!--
 * services
@@ -52,85 +46,105 @@ Read operations:
 * pods
 * secrets, configmaps, persistent volume claims and persistent volumes related to pods bound to the kubelet's node
 -->
+* services
+* endpoints
+* nodes
+* pods
+* 与绑定到 kubelet 节点的 Pod 相关的 Secret、ConfigMap、PersistentVolumeClaim 和持久卷
 
-写入操作：
 <!--
 Write operations:
 -->
-
-* 节点和节点状态（启用 `NodeRestriction` 准入插件以限制 kubelet 只能修改自己的节点）
-* Pod 和 Pod 状态 (启用 `NodeRestriction` 准入插件以限制 kubelet 只能修改绑定到自身的 Pod)
-* 事件
+写入操作：
 
 <!--
 * nodes and node status (enable the `NodeRestriction` admission plugin to limit a kubelet to modify its own node)
 * pods and pod status (enable the `NodeRestriction` admission plugin to limit a kubelet to modify pods bound to itself)
 * events
 -->
+* 节点和节点状态（启用 `NodeRestriction` 准入插件以限制 kubelet 只能修改自己的节点）
+* Pod 和 Pod 状态 (启用 `NodeRestriction` 准入插件以限制 kubelet 只能修改绑定到自身的 Pod)
+* 事件
 
-鉴权相关操作：
 <!--
 Auth-related operations:
 -->
-
-* 对于基于 TLS 的启动引导过程时使用的 certificationsigningrequests API 的读/写权限
-* 为委派的身份验证/授权检查创建 tokenreviews 和 subjectaccessreviews 的能力
+身份认证与鉴权相关的操作：
 
 <!--
-* read/write access to the certificationsigningrequests API for TLS bootstrapping
-* the ability to create tokenreviews and subjectaccessreviews for delegated authentication/authorization checks
+* read/write access to the [CertificateSigningRequests API](/docs/reference/access-authn-authz/certificate-signing-requests/) for TLS bootstrapping
+* the ability to create TokenReviews and SubjectAccessReviews for delegated authentication/authorization checks
 -->
+* 对于基于 TLS 的启动引导过程时使用的
+  [certificationsigningrequests API](/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests/)
+  的读/写权限
+* 为委派的身份验证/鉴权检查创建 TokenReview 和 SubjectAccessReview 的能力
 
-在将来的版本中，节点鉴权器可能会添加或删除权限，以确保 kubelet 具有正确操作所需的最小权限集。
 <!--
 In future releases, the node authorizer may add or remove permissions to ensure kubelets
 have the minimal set of permissions required to operate correctly.
 -->
+在将来的版本中，节点鉴权器可能会添加或删除权限，以确保 kubelet 具有正确操作所需的最小权限集。
 
-为了获得节点鉴权器的授权，kubelet 必须使用一个凭证以表示它在 `system:nodes` 组中，用户名为 `system:node:<nodeName>`。
-上述的组名和用户名格式要与 [kubelet TLS 启动引导](/zh/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/)过程中为每个 kubelet 创建的标识相匹配。
 <!--
 In order to be authorized by the Node authorizer, kubelets must use a credential that identifies them as
 being in the `system:nodes` group, with a username of `system:node:<nodeName>`.
 This group and user name format match the identity created for each kubelet as part of
-[kubelet TLS bootstrapping](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/).
+[kubelet TLS bootstrapping](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/).
 -->
+为了获得节点鉴权器的授权，kubelet 必须使用一个凭证以表示它在 `system:nodes`
+组中，用户名为 `system:node:<nodeName>`。上述的组名和用户名格式要与
+[kubelet TLS 启动引导](/zh-cn/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/)
+过程中为每个 kubelet 创建的标识相匹配。
+
+<!--
+The value of `<nodeName>` **must** match precisely the name of the node as registered by the kubelet. By default, this is the host name as provided by `hostname`, or overridden via the [kubelet option](/docs/reference/command-line-tools-reference/kubelet/) `--hostname-override`. However, when using the `--cloud-provider` kubelet option, the specific hostname may be determined by the cloud provider, ignoring the local `hostname` and the `--hostname-override` option. 
+For specifics about how the kubelet determines the hostname, see the [kubelet options reference](/docs/reference/command-line-tools-reference/kubelet/).
+-->
+`<nodeName>` 的值**必须**与 kubelet 注册的节点名称精确匹配。默认情况下，节点名称是由
+`hostname` 提供的主机名，或者通过 kubelet `--hostname-override`
+[选项](/zh-cn/docs/reference/command-line-tools-reference/kubelet/) 覆盖。
+但是，当使用 `--cloud-provider` kubelet 选项时，具体的主机名可能由云提供商确定，
+忽略本地的 `hostname` 和 `--hostname-override` 选项。有关
+kubelet 如何确定主机名的详细信息，请参阅
+[kubelet 选项参考](/zh-cn/docs/reference/command-line-tools-reference/kubelet/)。
 
-要启用节点授权器，请使用 `--authorization-mode = Node` 启动 apiserver。
 <!--
 To enable the Node authorizer, start the apiserver with `--authorization-mode=Node`.
 -->
+要启用节点鉴权器，请使用 `--authorization-mode=Node` 启动 API 服务器。
 
-要限制 kubelet 具有写入权限的 API 对象，请使用 `--enable-admission-plugins=...,NodeRestriction,...` 启动 apiserver，从而启用 [NodeRestriction](/zh/docs/reference/access-authn-authz/admission-controllers#NodeRestriction) 准入插件。
 <!--
 To limit the API objects kubelets are able to write, enable the [NodeRestriction](/docs/reference/access-authn-authz/admission-controllers#NodeRestriction) admission plugin by starting the apiserver with `--enable-admission-plugins=...,NodeRestriction,...`
- -->
+-->
+要限制 kubelet 可以写入的 API 对象，请使用
+`--enable-admission-plugins=...,NodeRestriction,...` 启动 API 服务器，从而启用
+[NodeRestriction](/zh-cn/docs/reference/access-authn-authz/admission-controllers#NodeRestriction)
+准入插件。
 
-## 迁移考虑因素
 <!--
 ## Migration considerations
 -->
+## 迁移考虑因素   {#migration-considerations}
 
-### 在 `system:nodes` 组之外的 Kubelet
 <!--
 ### Kubelets outside the `system:nodes` group
 -->
+### 在 `system:nodes` 组之外的 kubelet   {#kubelets-outside-the-system-nodes-group}
 
-`system:nodes` 组之外的 kubelet 不会被 `Node` 鉴权模式授权，并且需要继续通过当前授权它们的机制来授权。
-节点准入插件不会限制来自这些 kubelet 的请求。
 <!--
 Kubelets outside the `system:nodes` group would not be authorized by the `Node` authorization mode,
 and would need to continue to be authorized via whatever mechanism currently authorizes them.
 The node admission plugin would not restrict requests from these kubelets.
 -->
+`system:nodes` 组之外的 kubelet 不会被 `Node` 鉴权模式授权，并且需要继续通过当前授权它们的机制来授权。
+节点准入插件不会限制来自这些 kubelet 的请求。
 
-### 具有无差别用户名的 Kubelet
 <!--
 ### Kubelets with undifferentiated usernames
 -->
+### 具有无差别用户名的 kubelet   {#kubelets-with-undifferentiated-usernames}
 
-在一些部署中，kubelet 具有 `system:nodes` 组的凭证，但是无法给出它们所关联的节点的标识，因为它们没有 `system:node:...` 格式的用户名。
-这些 kubelet 不会被 `Node` 授权模式授权，并且需要继续通过当前授权它们的任何机制来授权。
 <!--
 In some deployments, kubelets have credentials that place them in the `system:nodes` group,
 but do not identify the particular node they are associated with,
@@ -138,66 +152,75 @@ because they do not have a username in the `system:node:...` format.
 These kubelets would not be authorized by the `Node` authorization mode,
 and would need to continue to be authorized via whatever mechanism currently authorizes them.
 -->
+在一些部署中，kubelet 具有 `system:nodes` 组的凭证，
+但是无法给出它们所关联的节点的标识，因为它们没有 `system:node:...` 格式的用户名。
+这些 kubelet 不会被 `Node` 鉴权模式授权，并且需要继续通过当前授权它们的任何机制来授权。
 
-因为默认的节点标识符实现不会把它当作节点身份标识，`NodeRestriction` 准入插件会忽略来自这些 kubelet 的请求。
 <!--
 The `NodeRestriction` admission plugin would ignore requests from these kubelets,
 since the default node identifier implementation would not consider that a node identity.
 -->
+因为默认的节点标识符实现不会把它当作节点身份标识，`NodeRestriction`
+准入插件会忽略来自这些 kubelet 的请求。
 
-### 相对于以前使用 RBAC 的版本的更新
 <!--
 ### Upgrades from previous versions using RBAC
 -->
+### 相对于以前使用 RBAC 的版本的更新   {#upgrades-from-previous-versions-using-rbac}
 
-升级的 1.7 之前的使用 [RBAC](/zh/docs/reference/access-authn-authz/rbac/) 的集群将继续按原样运行，因为 `system:nodes` 组绑定已经存在。
 <!--
 Upgraded pre-1.7 clusters using [RBAC](/docs/reference/access-authn-authz/rbac/) will continue functioning as-is because the `system:nodes` group binding will already exist.
 -->
+升级的 1.7 之前的使用 [RBAC](/zh-cn/docs/reference/access-authn-authz/rbac/)
+的集群将继续按原样运行，因为 `system:nodes` 组绑定已经存在。
 
-如果集群管理员希望开始使用 `Node` 鉴权器和 `NodeRestriction` 准入插件来限制节点对 API 的访问，这一需求可以通过下列操作来完成且不会影响已部署的应用：
 <!--
 If a cluster admin wishes to start using the `Node` authorizer and `NodeRestriction` admission plugin
 to limit node access to the API, that can be done non-disruptively:
- -->
+-->
+如果集群管理员希望开始使用 `Node` 鉴权器和 `NodeRestriction` 准入插件来限制节点对
+API 的访问，这一需求可以通过下列操作来完成且不会影响已部署的应用：
 
-1. 启用 `Node` 鉴权模式 (`--authorization-mode=Node,RBAC`) 和 `NodeRestriction` 准入插件
-2. 确保所有 kubelet 的凭据符合组/用户名要求
-3. 审核 apiserver 日志以确保 `Node` 鉴权器不会拒绝来自 kubelet 的请求（日志中没有持续的 `NODE DENY` 消息）
-4. 删除 `system:node` 集群角色绑定
 <!--
 1. Enable the `Node` authorization mode (`--authorization-mode=Node,RBAC`) and the `NodeRestriction` admission plugin
 2. Ensure all kubelets' credentials conform to the group/username requirements
 3. Audit apiserver logs to ensure the `Node` authorizer is not rejecting requests from kubelets (no persistent `NODE DENY` messages logged)
 4. Delete the `system:node` cluster role binding
 -->
+1. 启用 `Node` 鉴权模式 (`--authorization-mode=Node,RBAC`) 和 `NodeRestriction` 准入插件
+2. 确保所有 kubelet 的凭据符合组/用户名要求
+3. 审核 API 服务器日志以确保 `Node` 鉴权器不会拒绝来自 kubelet 的请求（日志中没有持续的 `NODE DENY` 消息）
+4. 删除 `system:node` 集群角色绑定
 
-### RBAC 节点权限
 <!--
 ### RBAC Node Permissions
 -->
+### RBAC 节点权限   {#rbac-node-permissions}
 
-在 1.6 版本中，当使用 [RBAC 鉴权模式](/zh/docs/reference/access-authn-authz/rbac/) 时，`system:nodes` 集群角色会被自动绑定到 `system:node` 组。
 <!--
 In 1.6, the `system:node` cluster role was automatically bound to the `system:nodes` group when using the [RBAC Authorization mode](/docs/reference/access-authn-authz/rbac/).
 -->
+在 1.6 版本中，当使用 [RBAC 鉴权模式](/zh-cn/docs/reference/access-authn-authz/rbac/)
+时，`system:nodes` 集群角色会被自动绑定到 `system:node` 组。
 
-在 1.7 版本中，不再推荐将 `system:nodes` 组自动绑定到 `system:node` 角色，因为节点鉴权器通过对 secret 和 configmap 访问的额外限制完成了相同的任务。
-如果同时启用了 `Node` 和 `RBAC` 授权模式，1.7 版本则不会创建 `system:nodes` 组到 `system:node` 角色的自动绑定。
 <!--
 In 1.7, the automatic binding of the `system:nodes` group to the `system:node` role is deprecated
 because the node authorizer accomplishes the same purpose with the benefit of additional restrictions
 on secret and configmap access. If the `Node` and `RBAC` authorization modes are both enabled,
 the automatic binding of the `system:nodes` group to the `system:node` role is not created in 1.7.
 -->
+在 1.7 版本中，不再推荐将 `system:nodes` 组自动绑定到 `system:node`
+角色，因为节点鉴权器通过对 Secret 和 ConfigMap 访问的额外限制完成了相同的任务。
+如果同时启用了 `Node` 和 `RBAC` 鉴权模式，1.7 版本则不会创建 `system:nodes`
+组到 `system:node` 角色的自动绑定。
 
-在 1.8 版本中，绑定将根本不会被创建。
 <!--
 In 1.8, the binding will not be created at all.
 -->
+在 1.8 版本中，绑定将根本不会被创建。
 
-使用 RBAC 时，将继续创建 `system:node` 集群角色，以便与将其他用户或组绑定到该角色的部署方法兼容。
 <!--
 When using RBAC, the `system:node` cluster role will continue to be created,
 for compatibility with deployment methods that bind other users or groups to that role.
 -->
+使用 RBAC 时，将继续创建 `system:node` 集群角色，以便与将其他用户或组绑定到该角色的部署方法兼容。
diff --git a/content/zh-cn/docs/reference/access-authn-authz/psp-to-pod-security-standards.md b/content/zh-cn/docs/reference/access-authn-authz/psp-to-pod-security-standards.md
new file mode 100644
index 0000000000..0cd54ac7f0
--- /dev/null
+++ b/content/zh-cn/docs/reference/access-authn-authz/psp-to-pod-security-standards.md
@@ -0,0 +1,339 @@
+---
+title: 从 PodSecurityPolicy 映射到 Pod 安全性标准
+content_type: concept
+weight: 95
+---
+
+<!--
+reviewers:
+- tallclair
+- liggitt
+title: Mapping PodSecurityPolicies to Pod Security Standards
+content_type: concept
+weight: 95
+-->
+
+<!-- overview -->
+
+<!--
+The tables below enumerate the configuration parameters on
+[PodSecurityPolicy](/docs/concepts/policy/pod-security-policy/) objects, whether the field mutates
+and/or validates pods, and how the configuration values map to the
+[Pod Security Standards](/docs/concepts/security/pod-security-standards/).
+-->
+下面的表格列举了 [PodSecurityPolicy](/zh-cn/docs/concepts/security/pod-security-policy/)
+对象上的配置参数，这些字段是否会变更或检查 Pod 配置，以及这些配置值如何映射到
+[Pod 安全性标准（Pod Security Standards）](/zh-cn/docs/concepts/security/pod-security-standards/)
+之上。
+
+<!--
+For each applicable parameter, the allowed values for the
+[Baseline](/docs/concepts/security/pod-security-standards/#baseline) and
+[Restricted](/docs/concepts/security/pod-security-standards/#restricted) profiles are listed.
+Anything outside the allowed values for those profiles would fall under the
+[Privileged](/docs/concepts/security/pod-security-standards/#privileged) profile. "No opinion"
+means all values are allowed under all Pod Security Standards.
+-->
+对于每个可应用的参数，表格中给出了
+[Baseline](/zh-cn/docs/concepts/security/pod-security-standards/#baseline) 和
+[Restricted](/zh-cn/docs/concepts/security/pod-security-standards/#restricted)
+配置下可接受的取值。
+对这两种配置而言不可接受的取值均归入
+[Privileged](/zh-cn/docs/concepts/security/pod-security-standards/#privileged)
+配置下。“无意见”意味着对所有 Pod 安全性标准而言所有取值都可接受。
+
+<!--
+For a step-by-step migration guide, see
+[Migrate from PodSecurityPolicy to the Built-In PodSecurity Admission Controller](/docs/tasks/configure-pod-container/migrate-from-psp/).
+-->
+如果想要了解如何一步步完成迁移，可参阅[从 PodSecurityPolicy 迁移到内置的 PodSecurity 准入控制器](/zh-cn/docs/tasks/configure-pod-container/migrate-from-psp/)。
+
+<!-- body -->
+
+<!--
+## PodSecurityPolicy Spec
+
+The fields enumerated in this table are part of the `PodSecurityPolicySpec`, which is specified
+under the `.spec` field path.
+-->
+## PodSecurityPolicy 规约   {#podsecuritypolicy-spec}
+
+下面表格中所列举的字段是 `PodSecurityPolicySpec` 的一部分，是通过 `.spec`
+字段路径来设置的。
+
+<table class="no-word-break">
+  <caption style="display:none"><!--Mapping PodSecurityPolicySpec fields to Pod Security Standards-->从 PodSecurityPolicySpec 字段映射到 Pod Security 标准</caption>
+    <tbody>
+      <tr>
+      <th><code>PodSecurityPolicySpec</code></th>
+      <th><!-- Type -->类型</th>
+      <th><!--Pod Security Standards Equivalent-->Pod 安全性标准中对应设置</th>
+    </tr>
+    <tr>
+      <td><code>privileged</code></td>
+      <td><!-- Validating -->检查性质</td>
+      <td><b>Baseline & Restricted</b>: <code>false</code> / 未定义 / nil</td>
+    </tr>
+    <tr>
+      <td><code>defaultAddCapabilities</code></td>
+      <td><!-- Mutating & Validating -->更改性质 & 检查性质</td>
+      <td><!--Requirements match <code>allowedCapabilities</code> below.-->需求满足下面的 <code>allallowedCapabilities</code></td>
+    </tr>
+    <tr>
+      <td><code>allowedCapabilities</code></td>
+      <td><!-- Validating -->检查性质</td>
+      <td>
+        <!-- p><b>Baseline</b>: subset of</p -->
+        <p><b>Baseline</b>：下面各项的子集</p>
+        <ul>
+          <li><code>AUDIT_WRITE</code></li>
+          <li><code>CHOWN</code></li>
+          <li><code>DAC_OVERRIDE</code></li>
+          <li><code>FOWNER</code></li>
+          <li><code>FSETID</code></li>
+          <li><code>KILL</code></li>
+          <li><code>MKNOD</code></li>
+          <li><code>NET_BIND_SERVICE</code></li>
+          <li><code>SETFCAP</code></li>
+          <li><code>SETGID</code></li>
+          <li><code>SETPCAP</code></li>
+          <li><code>SETUID</code></li>
+          <li><code>SYS_CHROOT</code></li>
+        </ul>
+        <!-- p><b>Restricted</b>: empty / undefined / nil OR a list containing <i>only</i> <code>NET_BIND_SERVICE</code -->
+        <p><b>Restricted</b>：空 / 未定义 / nil 或<i>仅</i>包含 <code>NET_BIND_SERVICE</code> 的列表</p>
+      </td>
+    </tr>
+    <tr>
+      <td><code>requiredDropCapabilities</code></td>
+      <td><!--Mutating & Validating-->更改性质 & 检查性质</td>
+      <td>
+        <p><b>Baseline</b><!-- : no opinion-->：无意见</p>
+        <p><b>Restricted</b><!-- : must include-->：必须包含 <code>ALL</code></p>
+      </td>
+    </tr>
+    <tr>
+      <td><code>volumes</code></td>
+      <td><!-- Validating -->检查性质</td>
+      <td>
+        <p><b>Baseline</b><!--: anything except -->除下列取值之外的任何值</p>
+        <ul>
+          <li><code>hostPath</code></li>
+          <li><code>*</code></li>
+        </ul>
+        <p><b>Restricted</b><!-- : subset of-->：下列取值的子集</p>
+        <ul>
+          <li><code>configMap</code></li>
+          <li><code>csi</code></li>
+          <li><code>downwardAPI</code></li>
+          <li><code>emptyDir</code></li>
+          <li><code>ephemeral</code></li>
+          <li><code>persistentVolumeClaim</code></li>
+          <li><code>projected</code></li>
+          <li><code>secret</code></li>
+        </ul>
+      </td>
+    </tr>
+    <tr>
+      <td><code>hostNetwork</code></td>
+      <td><!-- Validating -->检查性质</td>
+      <td><b>Baseline & Restricted</b>：<code>false</code> / 未定义 / nil</td>
+    </tr>
+    <tr>
+      <td><code>hostPorts</code></td>
+      <td><!-- Validating -->检查性质</td>
+      <td><b>Baseline & Restricted</b>：未定义 / nil / 空</td>
+    </tr>
+    <tr>
+      <td><code>hostPID</code></td>
+      <td><!-- Validating -->检查性质</td>
+      <td><b>Baseline & Restricted</b>：<code>false</code> / 未定义 / nil</td>
+    </tr>
+    <tr>
+      <td><code>hostIPC</code></td>
+      <td><!-- Validating -->检查性质</td>
+      <td><b>Baseline & Restricted</b>：<code>false</code> / 未定义 / nil</td>
+    </tr>
+    <tr>
+      <td><code>seLinux</code></td>
+      <td><!-- Mutating & Validating -->更改性质 & 检查性质</td>
+      <td>
+        <p><b>Baseline & Restricted</b>：
+        <!-- code>seLinux.rule</code> is <code>MustRunAs</code>, with the following <code>options</code-->
+        <code>seLinux.rule</code> 为 <code>MustRunAs</code>，且 <code>options</code> 如下：
+        </p>
+        <ul>
+          <!--
+          <li><code>user</code> is unset (<code>""</code> / undefined / nil)</li>
+          <li><code>role</code> is unset (<code>""</code> / undefined / nil)</li>
+          <li><code>type</code> is unset or one of: <code>container_t, container_init_t, container_kvm_t</code></li>
+          <li><code>level</code> is anything</li>
+          -->
+          <li><code>user</code> 未设置（<code>""</code> / 未定义 / nil）</li>
+          <li><code>role</code> 未设置（<code>""</code> / 未定义 / nil）</li>
+          <li><code>type</code> 未设置或者取值为 <code>container_t</code>、<code>container_init_t</code> 或 <code>container_kvm_t</code> 之一</li>
+          <li><code>level</code> 是任何取值</li>
+        </ul>
+      </td>
+    </tr>
+    <tr>
+      <td><code>runAsUser</code></td>
+      <td><!-- Mutating & Validating -->变更性质 & 检查性质</td>
+      <td>
+        <p><b>Baseline</b><!-- : Anything -->：任何取值</p>
+        <p><b>Restricted</b><!-- : <code>rule</code> is <code>MustRunAsNonRoot</code -->：<code>rule</code> 是 <code>MustRunAsNonRoot</code></p>
+      </td>
+    </tr>
+    <tr>
+      <td><code>runAsGroup</code></td>
+      <td><!-- Mutating (MustRunAs) & Validating-->变更性质（MustRunAs）& 检查性质</td>
+      <td>
+        <i><!-- No opinion -->无意见</i>
+      </td>
+    </tr>
+    <tr>
+      <td><code>supplementalGroups</code></td>
+      <td><!-- Mutating & Validating -->变更性质 & 检查性质</td>
+      <td>
+        <i><!-- No opinion -->无意见</i>
+      </td>
+    </tr>
+    <tr>
+      <td><code>fsGroup</code></td>
+      <td><!-- Mutating & Validating -->变更性质 & 验证性质</td>
+      <td>
+        <i><!-- No opinion -->无意见</i>
+      </td>
+    </tr>
+    <tr>
+      <td><code>readOnlyRootFilesystem</code></td>
+      <td><!-- Mutating & Validating -->变更性质 & 检查性质</td>
+      <td>
+        <i><!-- No opinion -->无意见</i>
+      </td>
+    </tr>
+    <tr>
+      <td><code>defaultAllowPrivilegeEscalation</code></td>
+      <td><!-- Mutating -->变更性质</td>
+      <td>
+        <i><!-- No opinion (non-validating) -->无意见（非变更性质）</i>
+      </td>
+    </tr>
+    <tr>
+      <td><code>allowPrivilegeEscalation</code></td>
+      <td><!-- Mutating & Validating -->变更性质 & 检查性质</td>
+      <td>
+        <!--
+        <p><i>Only mutating if set to <code>false</code></i></p>
+        <p><b>Baseline</b>: No opinion</p>
+        <p><b>Restricted</b>: <code>false</code></p>
+        -->
+        <p><i>只有设置为 <code>false</code> 时才执行变更动作</i></p>
+        <p><b>Baseline</b>：无意见</p>
+        <p><b>Restricted</b>：<code>false</code></p>
+      </td>
+    </tr>
+    <tr>
+      <td><code>allowedHostPaths</code></td>
+      <td><!-- Validating -->检查性质</td>
+      <td><i><!-- No opinion (volumes takes precedence)-->无意见（volumes 优先）</i></td>
+    </tr>
+    <tr>
+      <td><code>allowedFlexVolumes</code></td>
+      <td><!-- Validating -->检查性质</td>
+      <td><i><!-- No opinion (volumes takes precedence)-->无意见（volumes 优先）</i></td>
+    </tr>
+    <tr>
+      <td><code>allowedCSIDrivers</code></td>
+      <td><!-- Validating -->检查性质</td>
+      <td><i><!-- No opinion (volumes takes precedence) -->无意见（volumes 优先）</i></td>
+    </tr>
+    <tr>
+      <td><code>allowedUnsafeSysctls</code></td>
+      <td><!-- Validating -->检查性质</td>
+      <td><b>Baseline & Restricted</b>：未定义 / nil / 空</td>
+    </tr>
+    <tr>
+      <td><code>forbiddenSysctls</code></td>
+      <td><!-- Validating -->检查性质</td>
+      <td><i><!-- No opinion -->无意见</i></td>
+    </tr>
+    <tr>
+      <td><code>allowedProcMountTypes</code><br><i>(alpha feature)</i></td>
+      <td><!-- Validating -->检查性质</td>
+      <!-- td><b>Baseline & Restricted</b>: <code>["Default"]</code> OR undefined / nil / empty</td -->
+      <td><b>Baseline & Restricted</b>：<code>["Default"]</code> 或者未定义 / nil / 空</td>
+    </tr>
+    <tr>
+      <td><code>runtimeClass</code><br><code>&nbsp;.defaultRuntimeClassName</code></td>
+      <td><!-- Mutating -->变更性质</td>
+      <td><i><!-- No opinion -->无意见</i></td>
+    </tr>
+    <tr>
+      <td><code>runtimeClass</code><br><code>&nbsp;.allowedRuntimeClassNames</code></td>
+      <td><!-- Validating -->检查性质</td>
+      <td><i><!-- No opinion -->无意见</i></td>
+    </tr>
+  </tbody>
+</table>
+
+<!--
+## PodSecurityPolicy annotations
+
+The [annotations](/docs/concepts/overview/working-with-objects/annotations/) enumerated in this
+table can be specified under `.metadata.annotations` on the PodSecurityPolicy object.
+-->
+## PodSecurityPolicy 注解    {#podsecuritypolicy-annotations}
+
+下面表格中所列举的[注解](/zh-cn/docs/concepts/overview/working-with-objects/annotations/)可以通过
+`.metadata.annotations` 设置到 PodSecurityPolicy 对象之上。
+
+<table class="no-word-break">
+    <caption style="display:none"><!-- Mapping PodSecurityPolicy annotations to Pod Security Standards-->将 PodSecurityPolicy 注解映射到 Pod 安全性标准</caption>
+    <tbody>
+        <tr>
+      <th><code><!--PSP Annotation-->PSP 注解</code></th>
+      <th><!-- Type -->类型</th>
+      <th><!-- Pod Security Standards Equivalent-->Pod 安全性标准中对应设置</th>
+    </tr>
+    <tr>
+      <td><code>seccomp.security.alpha.kubernetes.io</code><br><code>/defaultProfileName</code></td>
+      <td><!-- Mutating -->变更性质</td>
+      <td><i><!-- No opinion -->无意见</i></td>
+    </tr>
+    <tr>
+      <td><code>seccomp.security.alpha.kubernetes.io</code><br><code>/allowedProfileNames</code></td>
+      <td><!-- Validating -->检查性质</td>
+      <td>
+        <!--
+        <p><b>Baseline</b>: <code>"runtime/default,"</code> <i>(Trailing comma to allow unset)</i></p>
+        <p><b>Restricted</b>: <code>"runtime/default"</code> <i>(No trailing comma)</i></p>
+        <p><i><code>localhost/*</code> values are also permitted for both Baseline & Restricted.</i></p>
+        -->
+        <p><b>Baseline</b>：<code>"runtime/default,"</code> <i>（其中尾部的逗号允许取消设置）</i></p>
+        <p><b>Restricted</b>：<code>"runtime/default"</code> <i>（没有尾部逗号）</i></p>
+        <p><i><code>localhost/*</code> 取值对于 Baseline 和 Restricted 都是可接受的</i></p>
+      </td>
+    </tr>
+    <tr>
+      <td><code>apparmor.security.beta.kubernetes.io</code><br><code>/defaultProfileName</code></td>
+      <td><!-- Mutating -->变更性质</td>
+      <td><i><!-- No opinion -->无意见</i></td>
+    </tr>
+    <tr>
+      <td><code>apparmor.security.beta.kubernetes.io</code><br><code>/allowedProfileNames</code></td>
+      <td><!-- Validating -->检查性质</td>
+      <td>
+        <!--
+        <p><b>Baseline</b>: <code>"runtime/default,"</code> <i>(Trailing comma to allow unset)</i></p>
+        <p><b>Restricted</b>: <code>"runtime/default"</code> <i>(No trailing comma)</i></p>
+        <p><i><code>localhost/*</code> values are also permitted for both Baseline & Restricted.</i></p>
+        -->
+        <p><b>Baseline</b>：<code>"runtime/default,"</code> <i>（其中尾部的逗号允许取消设置）</i></p>
+        <p><b>Restricted</b>：<code>"runtime/default"</code> <i>（没有尾部逗号）</i></p>
+        <p><i><code>localhost/*</code> 取值对于 Baseline 和 Restricted 都是可接受的</i></p>
+      </td>
+    </tr>
+  </tbody>
+</table>
+
diff --git a/content/zh/docs/reference/access-authn-authz/rbac.md b/content/zh-cn/docs/reference/access-authn-authz/rbac.md
similarity index 70%
rename from content/zh/docs/reference/access-authn-authz/rbac.md
rename to content/zh-cn/docs/reference/access-authn-authz/rbac.md
index b612a85e5f..d6c72e156a 100644
--- a/content/zh/docs/reference/access-authn-authz/rbac.md
+++ b/content/zh-cn/docs/reference/access-authn-authz/rbac.md
@@ -1,6 +1,7 @@
 ---
 title: 使用 RBAC 鉴权
 content_type: concept
+aliases: [/zh-cn/rbac/]
 weight: 70
 ---
 
@@ -11,10 +12,12 @@ reviewers:
 - liggitt
 title: Using RBAC Authorization
 content_type: concept
+aliases: [/rbac/]
 weight: 70
 -->
 
 <!-- overview -->
+
 <!--
 Role-based access control (RBAC) is a method of regulating access to computer or
 network resources based on the roles of individual users within your organization.
@@ -23,23 +26,29 @@ network resources based on the roles of individual users within your organizatio
 计算机或网络资源的访问的方法。
 
 <!-- body -->
+
 <!--
 RBAC authorization uses the `rbac.authorization.k8s.io`
-{{< glossary_tooltip text="API Group" term_id="api-group" >}} to drive authorization
+{{< glossary_tooltip text="API group" term_id="api-group" >}} to drive authorization
 decisions, allowing you to dynamically configure policies through the Kubernetes API.
 -->
 RBAC 鉴权机制使用 `rbac.authorization.k8s.io`
-{{< glossary_tooltip text="API 组" term_id="api-group" >}}
-来驱动鉴权决定，允许你通过 Kubernetes API 动态配置策略。
+{{< glossary_tooltip text="API 组" term_id="api-group" >}}来驱动鉴权决定，
+允许你通过 Kubernetes API 动态配置策略。
 
 <!--
 To enable RBAC, start the {{< glossary_tooltip text="API server" term_id="kube-apiserver" >}}
-with the `-authorization-mode` flag set to a comma-separated list that includes `RBAC`;
+with the `--authorization-mode` flag set to a comma-separated list that includes `RBAC`;
 for example:
 -->
-要启用 RBAC，在启动 {{< glossary_tooltip text="API 服务器" term_id="kube-apiserver" >}}
-时将 `--authorization-mode` 参数设置为一个逗号分隔的列表并确保其中包含 `RBAC`。
+要启用 RBAC，在启动 {{< glossary_tooltip text="API 服务器" term_id="kube-apiserver" >}}时将
+`--authorization-mode` 参数设置为一个逗号分隔的列表并确保其中包含 `RBAC`。
 
+<!--
+```shell
+kube-apiserver --authorization-mode=Example,RBAC --other-options --more-options
+```
+-->
 ```shell
 kube-apiserver --authorization-mode=Example,RBAC --<其他选项> --<其他选项>
 ```
@@ -50,15 +59,14 @@ kube-apiserver --authorization-mode=Example,RBAC --<其他选项> --<其他选
 The RBAC API declares four kinds of Kubernetes object: _Role_, _ClusterRole_,
 _RoleBinding_ and _ClusterRoleBinding_. You can
 [describe objects](/docs/concepts/overview/working-with-objects/kubernetes-objects/#understanding-kubernetes-objects),
-or amend them, using tools such as `kubectl,` just like any other Kubernetes object.
+or amend them, using tools such as `kubectl`, just like any other Kubernetes object.
 
 -->
 ## API 对象  {#api-overview}
 
-RBAC API 声明了四种 Kubernetes 对象：_Role_、_ClusterRole_、_RoleBinding_ 和
-_ClusterRoleBinding_。你可以像使用其他 Kubernetes 对象一样，
-通过类似 `kubectl` 这类工具
-[描述对象](/zh/docs/concepts/overview/working-with-objects/kubernetes-objects/#understanding-kubernetes-objects),
+RBAC API 声明了四种 Kubernetes 对象：**Role**、**ClusterRole**、**RoleBinding** 和
+**ClusterRoleBinding**。你可以像使用其他 Kubernetes 对象一样，通过类似 `kubectl`
+这类工具[描述对象](/zh-cn/docs/concepts/overview/working-with-objects/kubernetes-objects/#understanding-kubernetes-objects),
 或修补对象。
 
 {{< caution >}}
@@ -88,21 +96,20 @@ it can't be both.
 -->
 ### Role 和 ClusterRole   {#role-and-clusterole}
 
-RBAC 的 _Role_ 或 _ClusterRole_ 中包含一组代表相关权限的规则。
+RBAC 的 **Role** 或 **ClusterRole** 中包含一组代表相关权限的规则。
 这些权限是纯粹累加的（不存在拒绝某操作的规则）。
 
-Role 总是用来在某个{{< glossary_tooltip text="名字空间" term_id="namespace" >}}
-内设置访问权限；在你创建 Role 时，你必须指定该 Role 所属的名字空间。
+Role 总是用来在某个{{< glossary_tooltip text="名字空间" term_id="namespace" >}}内设置访问权限；
+在你创建 Role 时，你必须指定该 Role 所属的名字空间。
 
-与之相对，ClusterRole 则是一个集群作用域的资源。这两种资源的名字不同（Role 和
-ClusterRole）是因为 Kubernetes 对象要么是名字空间作用域的，要么是集群作用域的，
-不可两者兼具。
+与之相对，ClusterRole 则是一个集群作用域的资源。这两种资源的名字不同（Role 和 ClusterRole）
+是因为 Kubernetes 对象要么是名字空间作用域的，要么是集群作用域的，不可两者兼具。
 
 <!--
 ClusterRoles have several uses. You can use a ClusterRole to:
 
-1. define permissions on namespaced resources and be granted within individual namespace(s)
-1. define permissions on namespaced resources and be granted across all namespaces
+1. define permissions on namespaced resources and be granted access within individual namespace(s)
+1. define permissions on namespaced resources and be granted access across all namespaces
 1. define permissions on cluster-scoped resources
 
 If you want to define a role within a namespace, use a Role; if you want to define
@@ -110,8 +117,8 @@ a role cluster-wide, use a ClusterRole.
 -->
 ClusterRole 有若干用法。你可以用它来：
 
-1. 定义对某名字空间域对象的访问权限，并将在各个名字空间内完成授权；
-1. 为名字空间作用域的对象设置访问权限，并跨所有名字空间执行授权；
+1. 定义对某名字空间域对象的访问权限，并将在个别名字空间内被授予访问权限；
+1. 为名字空间作用域的对象设置访问权限，并被授予跨所有名字空间的访问权限；
 1. 为集群作用域的资源定义访问权限。
 
 如果你希望在名字空间内定义角色，应该使用 Role；
@@ -123,11 +130,24 @@ ClusterRole 有若干用法。你可以用它来：
 Here's an example Role in the "default" namespace that can be used to grant read access to
 {{< glossary_tooltip text="pods" term_id="pod" >}}:
 -->
-#### Role 示例
+#### Role 示例 {#role-example}
 
 下面是一个位于 "default" 名字空间的 Role 的示例，可用来授予对
 {{< glossary_tooltip text="pods" term_id="pod" >}} 的读访问权限：
 
+<!--
+```yaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  namespace: default
+  name: pod-reader
+rules:
+- apiGroups: [""] # "" indicates the core API group
+  resources: ["pods"]
+  verbs: ["get", "watch", "list"]
+```
+-->
 ```yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
@@ -144,23 +164,25 @@ rules:
 #### ClusterRole example
 
 A ClusterRole can be used to grant the same permissions as a Role.
-Because they are cluster-scoped, you can also use them to grant access to:
+Because ClusterRoles are cluster-scoped, you can also use them to grant access to:
 
 * cluster-scoped resources (like {{< glossary_tooltip text="nodes" term_id="node" >}})
 * non-resource endpoints (like `/healthz`)
 * namespaced resources (like Pods), across all namespaces
+
   For example: you can use a ClusterRole to allow a particular user to run
-  `kubectl get pods -all-namespaces`
+  `kubectl get pods --all-namespaces`
 -->
-###  ClusterRole 示例
+###  ClusterRole 示例 {#clusterrole-example}
 
 ClusterRole 可以和 Role 相同完成授权。
 因为 ClusterRole 属于集群范围，所以它也可以为以下资源授予访问权限：
 
-* 集群范围资源（比如 {{< glossary_tooltip text="节点（Node）" term_id="node" >}}）
+* 集群范围资源（比如{{< glossary_tooltip text="节点（Node）" term_id="node" >}}）
 * 非资源端点（比如 `/healthz`）
-* 跨名字空间访问的名字空间作用域的资源（如 Pods），比如，你可以使用
-  ClusterRole 来允许某特定用户执行 `kubectl get pods --all-namespaces`
+* 跨名字空间访问的名字空间作用域的资源（如 Pod）
+
+  比如，你可以使用 ClusterRole 来允许某特定用户执行 `kubectl get pods --all-namespaces`
 
 <!--
 Here is an example of a ClusterRole that can be used to grant read access to
@@ -171,6 +193,22 @@ or across all namespaces (depending on how it is [bound](#rolebinding-and-cluste
 {{< glossary_tooltip text="Secret" term_id="secret" >}} 授予读访问权限，
 或者跨名字空间的访问权限（取决于该角色是如何[绑定](#rolebinding-and-clusterrolebinding)的）：
 
+<!--
+```yaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  # "namespace" omitted since ClusterRoles are not namespaced
+  name: secret-reader
+rules:
+- apiGroups: [""]
+  #
+  # at the HTTP level, the name of the resource for accessing Secret
+  # objects is "secrets"
+  resources: ["secrets"]
+  verbs: ["get", "watch", "list"]
+```
+-->
 ```yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
@@ -179,7 +217,7 @@ metadata:
   name: secret-reader
 rules:
 - apiGroups: [""]
-  # 在 HTTP 层面，用来访问 Secret 对象的资源的名称为 "secrets"
+  # 在 HTTP 层面，用来访问 Secret 资源的名称为 "secrets"
   resources: ["secrets"]
   verbs: ["get", "watch", "list"]
 ```
@@ -188,8 +226,7 @@ rules:
 The name of a Role or a ClusterRole object must be a valid
 [path segment name](/docs/concepts/overview/working-with-objects/names#path-segment-names).
 -->
-Role 或 ClusterRole 对象的名称必须是合法的
-[路径区段名称](/zh/docs/concepts/overview/working-with-objects/names#path-segment-names)。
+Role 或 ClusterRole 对象的名称必须是合法的[路径区段名称](/zh-cn/docs/concepts/overview/working-with-objects/names#path-segment-names)。
 
 <!--
 ### RoleBinding and ClusterRoleBinding
@@ -220,7 +257,7 @@ RoleBinding 所在的名字空间。
 如果你希望将某  ClusterRole 绑定到集群中所有名字空间，你要使用 ClusterRoleBinding。
 
 RoleBinding 或 ClusterRoleBinding 对象的名称必须是合法的
-[路径区段名称](/zh/docs/concepts/overview/working-with-objects/names#path-segment-names)。
+[路径区段名称](/zh-cn/docs/concepts/overview/working-with-objects/names#path-segment-names)。
 
 <!--
 #### RoleBinding examples {#rolebinding-example}
@@ -234,9 +271,31 @@ This allows "jane" to read pods in the "default" namespace.
 下面的例子中的 RoleBinding 将 "pod-reader" Role 授予在 "default" 名字空间中的用户 "jane"。
 这样，用户 "jane" 就具有了读取 "default" 名字空间中 pods 的权限。
 
+<!--
 ```yaml
 apiVersion: rbac.authorization.k8s.io/v1
-# 此角色绑定允许 "jane" 读取 "default" 名字空间中的 Pods
+# This role binding allows "jane" to read pods in the "default" namespace.
+# You need to already have a Role named "pod-reader" in that namespace.
+kind: RoleBinding
+metadata:
+  name: read-pods
+  namespace: default
+subjects:
+# You can specify more than one "subject"
+- kind: User
+  name: jane # "name" is case sensitive
+  apiGroup: rbac.authorization.k8s.io
+roleRef:
+  # "roleRef" specifies the binding to a Role / ClusterRole
+  kind: Role #this must be Role or ClusterRole
+  name: pod-reader # this must match the name of the Role or ClusterRole you wish to bind to
+  apiGroup: rbac.authorization.k8s.io
+```
+-->
+```yaml
+apiVersion: rbac.authorization.k8s.io/v1
+# 此角色绑定允许 "jane" 读取 "default" 名字空间中的 Pod
+# 你需要在该命名空间中有一个名为 “pod-reader” 的 Role
 kind: RoleBinding
 metadata:
   name: read-pods
@@ -248,8 +307,8 @@ subjects:
   apiGroup: rbac.authorization.k8s.io
 roleRef:
   # "roleRef" 指定与某 Role 或 ClusterRole 的绑定关系
-  kind: Role # 此字段必须是 Role 或 ClusterRole
-  name: pod-reader     # 此字段必须与你要绑定的 Role 或 ClusterRole 的名称匹配
+  kind: Role        # 此字段必须是 Role 或 ClusterRole
+  name: pod-reader  # 此字段必须与你要绑定的 Role 或 ClusterRole 的名称匹配
   apiGroup: rbac.authorization.k8s.io
 ```
 
@@ -271,6 +330,28 @@ RoleBinding 所在名字空间的资源。这种引用使得你可以跨整个
 区分大小写）只能访问 "development" 名字空间中的 Secrets 对象，因为 RoleBinding
 所在的名字空间（由其 metadata 决定）是 "development"。
 
+<!--
+```yaml
+apiVersion: rbac.authorization.k8s.io/v1
+# This role binding allows "dave" to read secrets in the "development" namespace.
+# You need to already have a ClusterRole named "secret-reader".
+kind: RoleBinding
+metadata:
+  name: read-secrets
+  #
+  # The namespace of the RoleBinding determines where the permissions are granted.
+  # This only grants permissions within the "development" namespace.
+  namespace: development
+subjects:
+- kind: User
+  name: dave # Name is case sensitive
+  apiGroup: rbac.authorization.k8s.io
+roleRef:
+  kind: ClusterRole
+  name: secret-reader
+  apiGroup: rbac.authorization.k8s.io
+```
+-->
 ```yaml
 apiVersion: rbac.authorization.k8s.io/v1
 # 此角色绑定使得用户 "dave" 能够读取 "development" 名字空间中的 Secrets
@@ -304,15 +385,32 @@ secrets in any namespace.
 下面的 ClusterRoleBinding 允许 "manager" 组内的所有用户访问任何名字空间中的
 Secrets。
 
+<!--
 ```yaml
 apiVersion: rbac.authorization.k8s.io/v1
-# 此集群角色绑定允许 “manager” 组中的任何人访问任何名字空间中的 secrets
+# This cluster role binding allows anyone in the "manager" group to read secrets in any namespace.
 kind: ClusterRoleBinding
 metadata:
   name: read-secrets-global
 subjects:
 - kind: Group
-  name: manager # 'name' 是区分大小写的
+  name: manager # Name is case sensitive
+  apiGroup: rbac.authorization.k8s.io
+roleRef:
+  kind: ClusterRole
+  name: secret-reader
+  apiGroup: rbac.authorization.k8s.io
+```
+-->
+```yaml
+apiVersion: rbac.authorization.k8s.io/v1
+# 此集群角色绑定允许 “manager” 组中的任何人访问任何名字空间中的 Secret 资源
+kind: ClusterRoleBinding
+metadata:
+  name: read-secrets-global
+subjects:
+- kind: Group
+  name: manager      # 'name' 是区分大小写的
   apiGroup: rbac.authorization.k8s.io
 roleRef:
   kind: ClusterRole
@@ -335,20 +433,24 @@ There are two reasons for this restriction:
 这种限制有两个主要原因：
 
 <!--
+1. Making `roleRef` immutable allows granting someone `update` permission on an existing binding
+object, so that they can manage the list of subjects, without being able to change
+the role that is granted to those subjects.
+-->
+1. 将 `roleRef` 设置为不可以改变，这使得可以为用户授予对现有绑定对象的 `update` 权限，
+   这样可以让他们管理主体列表，同时不能更改被授予这些主体的角色。
+<!--
+
 1. A binding to a different role is a fundamentally different binding.
 Requiring a binding to be deleted/recreated in order to change the `roleRef`
 ensures the full list of subjects in the binding is intended to be granted
 the new role (as opposed to enabling or accidentally modifying only the roleRef
-without verifying all of the existing subjects should be given the new role's permissions).
-2. Making `roleRef` immutable allows giving `update` permission on an existing binding object
-to a user, which lets them manage the list of subjects, without being able to change the
-role that is granted to those subjects.
+without verifying all of the existing subjects should be given the new role's
+permissions).
 -->
 1. 针对不同角色的绑定是完全不一样的绑定。要求通过删除/重建绑定来更改 `roleRef`,
-   这样可以确保要赋予绑定的所有主体会被授予新的角色（而不是在允许或者不小心修改
-   了 `roleRef` 的情况下导致所有现有主体未经验证即被授予新角色对应的权限）。
-1. 将 `roleRef` 设置为不可以改变，这使得可以为用户授予对现有绑定对象的 `update` 权限，
-   这样可以让他们管理主体列表，同时不能更改被授予这些主体的角色。
+   这样可以确保要赋予绑定的所有主体会被授予新的角色（而不是在允许或者不小心修改了
+   `roleRef` 的情况下导致所有现有主体未经验证即被授予新角色对应的权限）。
 
 <!--
 The `kubectl auth reconcile` command-line utility creates or updates a manifest file containing RBAC objects,
@@ -360,7 +462,7 @@ See [command usage and examples](#kubectl-auth-reconcile) for more information.
 更多相关信息请参照[命令用法和示例](#kubectl-auth-reconcile)
 
 <!--
-### Referring to Resources
+### Referring to resources
 
 In the Kubernetes API, most resources are represented and accessed using a string representation of
 their object name, such as `pods` for a Pod. RBAC refers to resources using exactly the same
@@ -388,7 +490,7 @@ also access the `log` subresource for each of those Pods, you write:
 -->
 在这里，`pods` 对应名字空间作用域的 Pod 资源，而 `log` 是 `pods` 的子资源。
 在 RBAC 角色表达子资源时，使用斜线（`/`）来分隔资源和子资源。
-要允许某主体读取 `pods` 同时访问这些 Pod 的 `log` 子资源，你可以这么写：
+要允许某主体读取 `pods` 同时访问这些 Pod 的 `log` 子资源，你可以这样写：
 
 ```yaml
 apiVersion: rbac.authorization.k8s.io/v1
@@ -410,9 +512,10 @@ Here is an example that restricts its subject to only `get` or `update` a
 -->
 对于某些请求，也可以通过 `resourceNames` 列表按名称引用资源。
 在指定时，可以将请求限定为资源的单个实例。
-下面的例子中限制可以 "get" 和 "update" 一个名为 `my-configmap` 的
+下面的例子中限制可以 `get` 和 `update` 一个名为 `my-configmap` 的
 {{< glossary_tooltip term_id="ConfigMap" >}}：
 
+<!--
 ```yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
@@ -421,7 +524,23 @@ metadata:
   name: configmap-updater
 rules:
 - apiGroups: [""]
-  # 在 HTTP 层面，用来访问 ConfigMap 的资源的名称为 "configmaps"
+  #
+  # at the HTTP level, the name of the resource for accessing ConfigMap
+  # objects is "configmaps"
+  resources: ["configmaps"]
+  resourceNames: ["my-configmap"]
+  verbs: ["update", "get"]
+```
+-->
+```yaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  namespace: default
+  name: configmap-updater
+rules:
+- apiGroups: [""]
+  # 在 HTTP 层面，用来访问 ConfigMap 资源的名称为 "configmaps"
   resources: ["configmaps"]
   resourceNames: ["my-configmap"]
   verbs: ["update", "get"]
@@ -429,11 +548,17 @@ rules:
 
 {{< note >}}
 <!--
-You cannot restrict `create` or `deletecollection` requests by resourceName. For `create`, this
-limitation is because the object name is not known at authorization time.
+You cannot restrict `create` or `deletecollection` requests by their resource name.
+For `create`, this limitation is because the name of the new object may not be known at authorization time.
+If you restrict `list` or `watch` by resourceName, clients must include a `metadata.name` field selector in their `list` or `watch` request that matches the specified resourceName in order to be authorized.
+For example, `kubectl get configmaps --field-selector=metadata.name=my-configmap`
 -->
-你不能针对 `create` 或者 `deletecollection` 请求来实施 resourceName 限制。
-对于 `create` 操作而言，这是因为在鉴权时还不知道对象名称。
+你不能使用资源名字来限制 `create` 或者 `deletecollection` 请求。
+对于 `create` 请求而言，这是因为在鉴权时可能还不知道新对象的名字。
+如果你使用 `resourceName` 来限制 `list` 或者 `watch` 请求，
+客户端必须在它们的 `list` 或者 `watch` 请求里包含一个与指定的 `resourceName`
+匹配的 `metadata.name` 字段选择器。
+例如，`kubectl get configmaps --field-selector=metadata.name=my-configmap`
 {{< /note >}}
 
 <!--
@@ -451,13 +576,26 @@ Here is an example aggregated ClusterRole:
 ### 聚合的 ClusterRole    {#aggregated-clusterroles}
 
 你可以将若干 ClusterRole **聚合（Aggregate）** 起来，形成一个复合的 ClusterRole。
-某个控制器作为集群控制面的一部分会监视带有 `aggregationRule` 的 ClusterRole
+作为集群控制面的一部分，控制器会监视带有 `aggregationRule` 的 ClusterRole
 对象集合。`aggregationRule` 为控制器定义一个标签
 {{< glossary_tooltip text="选择算符" term_id="selector" >}}供后者匹配
 应该组合到当前 ClusterRole 的 `roles` 字段中的 ClusterRole 对象。
 
 下面是一个聚合 ClusterRole 的示例：
 
+<!--
+```yaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: monitoring
+aggregationRule:
+  clusterRoleSelectors:
+  - matchLabels:
+      rbac.example.com/aggregate-to-monitoring: "true"
+rules: [] # The control plane automatically fills in the rules
+```
+-->
 ```yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
@@ -476,11 +614,27 @@ that change triggers adding the new rules into the aggregated ClusterRole.
 Here is an example that adds rules to the "monitoring" ClusterRole, by creating another
 ClusterRole labeled `rbac.example.com/aggregate-to-monitoring: true`.
 -->
-如果你创建一个与某现有聚合 ClusterRole 的标签选择算符匹配的 ClusterRole，
+如果你创建一个与某个已存在的聚合 ClusterRole 的标签选择算符匹配的 ClusterRole，
 这一变化会触发新的规则被添加到聚合 ClusterRole 的操作。
 下面的例子中，通过创建一个标签同样为 `rbac.example.com/aggregate-to-monitoring: true`
 的 ClusterRole，新的规则可被添加到 "monitoring" ClusterRole 中。
 
+<!--
+```yaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: monitoring-endpoints
+  labels:
+    rbac.example.com/aggregate-to-monitoring: "true"
+# When you create the "monitoring-endpoints" ClusterRole,
+# the rules below will be added to the "monitoring" ClusterRole.
+rules:
+- apiGroups: [""]
+  resources: ["services", "endpoints", "pods"]
+  verbs: ["get", "list", "watch"]
+```
+-->
 ```yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
@@ -506,14 +660,42 @@ For example: the following ClusterRoles let the "admin" and "edit" default roles
 named CronTab, whereas the "view" role can perform only read actions on CronTab resources.
 You can assume that CronTab objects are named `"crontabs"` in URLs as seen by the API server.
 -->
-默认的[面向用户的角色](#default-roles-and-role-bindings) 使用 ClusterRole 聚合。
+默认的[面向用户的角色](#default-roles-and-role-bindings)使用 ClusterRole 聚合。
 这使得作为集群管理员的你可以为扩展默认规则，包括为定制资源设置规则，
 比如通过 CustomResourceDefinitions 或聚合 API 服务器提供的定制资源。
 
 例如，下面的 ClusterRoles 让默认角色 "admin" 和 "edit" 拥有管理自定义资源 "CronTabs" 的权限，
- "view" 角色对 CronTab 资源拥有读操作权限。
+"view" 角色对 CronTab 资源拥有读操作权限。
 你可以假定 CronTab 对象在 API 服务器所看到的 URL 中被命名为 `"crontabs"`。
 
+<!--
+```yaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: aggregate-cron-tabs-edit
+  labels:
+    # Add these permissions to the "admin" and "edit" default roles.
+    rbac.authorization.k8s.io/aggregate-to-admin: "true"
+    rbac.authorization.k8s.io/aggregate-to-edit: "true"
+rules:
+- apiGroups: ["stable.example.com"]
+  resources: ["crontabs"]
+  verbs: ["get", "list", "watch", "create", "update", "patch", "delete"]
+---
+kind: ClusterRole
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: aggregate-cron-tabs-view
+  labels:
+    # Add these permissions to the "view" default role.
+    rbac.authorization.k8s.io/aggregate-to-view: "true"
+rules:
+- apiGroups: ["stable.example.com"]
+  resources: ["crontabs"]
+  verbs: ["get", "list", "watch"]
+```
+-->
 ```yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
@@ -542,7 +724,7 @@ rules:
 ```
 
 <!--
-#### Role Examples
+#### Role examples
 
 The following examples are excerpts from Role or ClusterRole objects, showing only
 the `rules` section.
@@ -552,46 +734,87 @@ Allow reading `"pods"` resources in the core
 -->
 #### Role 示例   {#role-examples}
 
-以下示例均为从 Role 或 CLusterRole 对象中截取出来，我们仅展示其 `rules` 部分。
+以下示例均为从 Role 或 ClusterRole 对象中截取出来，我们仅展示其 `rules` 部分。
 
-允许读取在核心 {{< glossary_tooltip text="API 组" term_id="api-group" >}}下的
-`"Pods"`：
+允许读取在核心 {{< glossary_tooltip text="API 组" term_id="api-group" >}}下的 `"pods"`：
 
+<!--
 ```yaml
 rules:
 - apiGroups: [""]
-  # 在 HTTP 层面，用来访问 Pod 的资源的名称为 "pods"
+  #
+  # at the HTTP level, the name of the resource for accessing Pod
+  # objects is "pods"
+  resources: ["pods"]
+  verbs: ["get", "list", "watch"]
+```
+-->
+```yaml
+rules:
+- apiGroups: [""]
+  # 在 HTTP 层面，用来访问 Pod 资源的名称为 "pods"
   resources: ["pods"]
   verbs: ["get", "list", "watch"]
 ```
 
 <!--
 Allow reading/writing Deployments (at the HTTP level: objects with `"deployments"`
-in the resource part of their URL) in both the `"extensions"` and `"apps"` API groups:
+in the resource part of their URL) in the `"apps"` API groups:
 -->
-允许读/写在 "extensions" 和 "apps" API 组中的 Deployment（在 HTTP 层面，对应
-URL 中资源部分为 "deployments"）：
+允许在 `"apps"` API 组中读/写 Deployment（在 HTTP 层面，对应 URL
+中资源部分为 `"deployments"`）：
 
+<!--
 ```yaml
 rules:
-- apiGroups: ["extensions", "apps"]
+- apiGroups: ["apps"]
+  #
+  # at the HTTP level, the name of the resource for accessing Deployment
+  # objects is "deployments"
+  resources: ["deployments"]
+  verbs: ["get", "list", "watch", "create", "update", "patch", "delete"]
+```
+-->
+```yaml
+rules:
+- apiGroups: ["apps"]
+  #
+  # 在 HTTP 层面，用来访问 Deployment 资源的名称为 "deployments"
   resources: ["deployments"]
   verbs: ["get", "list", "watch", "create", "update", "patch", "delete"]
 ```
 
 <!--
 Allow reading Pods in the core API group, as well as reading or writing Job
-resources in the `"batch"` or `"extensions"` API groups:
+resources in the `"batch"` API group:
 -->
-允许读取核心 API 组中的 "pods" 和读/写 `"batch"` 或 `"extensions"` API 组中的
-"jobs"：
+允许读取核心 API 组中的 Pod 和读/写 `"batch"` API 组中的 Job 资源：
 
+<!--
 ```yaml
 rules:
 - apiGroups: [""]
+  #
+  # at the HTTP level, the name of the resource for accessing Pod
+  # objects is "pods"
   resources: ["pods"]
   verbs: ["get", "list", "watch"]
-- apiGroups: ["batch", "extensions"]
+- apiGroups: ["batch"]
+  #
+  # at the HTTP level, the name of the resource for accessing Job
+  # objects is "jobs"
+  resources: ["jobs"]
+  verbs: ["get", "list", "watch", "create", "update", "patch", "delete"]
+```
+-->
+```yaml
+rules:
+- apiGroups: [""]
+  # 在 HTTP 层面，用来访问 Pod 资源的名称为 "pods"
+  resources: ["pods"]
+  verbs: ["get", "list", "watch"]
+- apiGroups: ["batch"]
+  # 在 HTTP 层面，用来访问 Job 资源的名称为 "jobs"
   resources: ["jobs"]
   verbs: ["get", "list", "watch", "create", "update", "patch", "delete"]
 ```
@@ -600,12 +823,25 @@ rules:
 Allow reading a ConfigMap named "my-config" (must be bound with a
 RoleBinding to limit to a single ConfigMap in a single namespace):
 -->
-允许读取名称为 "my-config" 的 ConfigMap（需要通过 RoleBinding 绑定以
-限制为某名字空间中特定的 ConfigMap）：
+允许读取名称为 "my-config" 的 ConfigMap（需要通过 RoleBinding
+绑定以限制为某名字空间中特定的 ConfigMap）：
 
+<!--
 ```yaml
 rules:
 - apiGroups: [""]
+  #
+  # at the HTTP level, the name of the resource for accessing ConfigMap
+  # objects is "configmaps"
+  resources: ["configmaps"]
+  resourceNames: ["my-config"]
+  verbs: ["get"]
+```
+-->
+```yaml
+rules:
+- apiGroups: [""]
+  # 在 HTTP 层面，用来访问 ConfigMap 资源的名称为 "configmaps"
   resources: ["configmaps"]
   resourceNames: ["my-config"]
   verbs: ["get"]
@@ -616,12 +852,24 @@ Allow reading the resource `"nodes"` in the core group (because a
 Node is cluster-scoped, this must be in a ClusterRole bound with a
 ClusterRoleBinding to be effective):
 -->
-允许读取在核心组中的 "nodes" 资源（因为 `Node` 是集群作用域的，所以需要
+允许读取在核心组中的 `"nodes"` 资源（因为 `Node` 是集群作用域的，所以需要
 ClusterRole 绑定到 ClusterRoleBinding 才生效）：
 
+<!--
 ```yaml
 rules:
 - apiGroups: [""]
+  #
+  # at the HTTP level, the name of the resource for accessing Node
+  # objects is "nodes"
+  resources: ["nodes"]
+  verbs: ["get", "list", "watch"]
+```
+-->
+```yaml
+rules:
+- apiGroups: [""]
+  # 在 HTTP 层面，用来访问 Node 资源的名称为 "nodes"
   resources: ["nodes"]
   verbs: ["get", "list", "watch"]
 ```
@@ -634,14 +882,21 @@ to be effective):
 允许针对非资源端点 `/healthz` 和其子路径上发起 GET 和 POST 请求
 （必须在 ClusterRole 绑定 ClusterRoleBinding 才生效）：
 
+<!--
 ```yaml
 rules:
-  - nonResourceURLs: ["/healthz", "/healthz/*"] # nonResourceURL 中的 '*' 是一个全局通配符
-    verbs: ["get", "post"]
+- nonResourceURLs: ["/healthz", "/healthz/*"] # '*' in a nonResourceURL is a suffix glob match
+  verbs: ["get", "post"]
+```
+-->
+```yaml
+rules:
+- nonResourceURLs: ["/healthz", "/healthz/*"] # nonResourceURL 中的 '*' 是一个全局通配符
+  verbs: ["get", "post"]
 ```
 
 <!--
-### Referring to Subjects
+### Referring to subjects
 
 A RoleBinding or ClusterRoleBinding binds a role to subjects.
 Subjects can be groups, users or
@@ -655,15 +910,13 @@ so that authentication produces usernames in the format you want.
 -->
 ### 对主体的引用   {#referring-to-subjects}
 
-RoleBinding 或者 ClusterRoleBinding 可绑定角色到某 *主体（Subject）*上。
-主体可以是组，用户或者
-{{< glossary_tooltip text="服务账户" term_id="service-account" >}}。
+RoleBinding 或者 ClusterRoleBinding 可绑定角色到某 **主体（Subject）** 上。
+主体可以是组，用户或者{{< glossary_tooltip text="服务账户" term_id="service-account" >}}。
 
 Kubernetes 用字符串来表示用户名。
 用户名可以是普通的用户名，像 "alice"；或者是邮件风格的名称，如 "bob@example.com"，
-或者是以字符串形式表达的数字 ID。
-你作为 Kubernetes 管理员负责配置
-[身份认证模块](/zh/docs/reference/access-authn-authz/authentication/)
+或者是以字符串形式表达的数字 ID。你作为 Kubernetes
+管理员负责配置[身份认证模块](/zh-cn/docs/reference/access-authn-authz/authentication/)
 以便后者能够生成你所期望的格式的用户名。
 
 
@@ -675,9 +928,8 @@ accident.
 Other than this special prefix, the RBAC authorization system does not require any format
 for usernames.
 -->
-前缀 `system:` 是 Kubernetes 系统保留的，所以你要确保
-所配置的用户名或者组名不能出现上述 `system:` 前缀。
-除了对前缀的限制之外，RBAC 鉴权系统不对用户名格式作任何要求。
+前缀 `system:` 是 Kubernetes 系统保留的，所以你要确保所配置的用户名或者组名不能出现上述
+`system:` 前缀。除了对前缀的限制之外，RBAC 鉴权系统不对用户名格式作任何要求。
 {{< /caution >}}
 
 <!--
@@ -685,16 +937,15 @@ In Kubernetes, Authenticator modules provide group information.
 Groups, like users, are represented as strings, and that string has no format requirements,
 other than that the prefix `system:` is reserved.
 
-[Service Accounts](/docs/tasks/configure-pod-container/configure-service-account/) have usernames with the `system:serviceaccount:` prefix and belong
-to groups with the `system:serviceaccounts:` prefix.
+[ServiceAccounts](/docs/tasks/configure-pod-container/configure-service-account/) have names prefixed
+with `system:serviceaccount:`, and belong to groups that have names prefixed with `system:serviceaccounts:`.
 -->
-在 Kubernetes 中，鉴权模块提供用户组信息。
+在 Kubernetes 中，身份认证（Authenticator）模块提供用户组信息。
 与用户名一样，用户组名也用字符串来表示，而且对该字符串没有格式要求，
 只是不能使用保留的前缀 `system:`。
 
-[服务账户](/zh/docs/tasks/configure-pod-container/configure-service-account/)
-的用户名前缀为 `system:serviceaccount:`，属于前缀为 `system:serviceaccounts:`
-的用户组。
+[服务账户（ServiceAccount）](/zh-cn/docs/tasks/configure-pod-container/configure-service-account/)
+的用户名前缀为 `system:serviceaccount:`，属于前缀为 `system:serviceaccounts:` 的用户组。
 
 {{< note >}}
 <!--
@@ -706,7 +957,7 @@ to groups with the `system:serviceaccounts:` prefix.
 {{< /note >}}
 
 <!--
-#### Role Binding Examples
+#### RoleBinding examples {#role-binding-examples}
 
 The following examples are `RoleBinding` excerpts that only
 show the `subjects` section.
@@ -751,9 +1002,9 @@ subjects:
 ```
 
 <!--
-For all service accounts in the "qa" group in any namespace:
+For all service accounts in the "qa" namespace:
 -->
-对于任何名称空间中的 "qa" 组中所有的服务账户：
+对于 "qa" 名称空间中的所有服务账户：
 
 ```yaml
 subjects:
@@ -762,19 +1013,6 @@ subjects:
   apiGroup: rbac.authorization.k8s.io
 ```
 
-<!-- 
-For all service accounts in the "dev" group in the "development" namespace:
--->
-对于 "development" 名称空间中 "dev" 组中的所有服务帐户：
-
-```yaml
-subjects:
-- kind: Group
-  name: system:serviceaccounts:dev
-  apiGroup: rbac.authorization.k8s.io
-  namespace: development
-```
-
 <!--
 For all service accounts in any namespace:
 -->
@@ -790,7 +1028,7 @@ subjects:
 <!--
 For all authenticated users:
 -->
-对于所有已经过认证的用户：
+对于所有已经过身份认证的用户：
 
 ```yaml
 subjects:
@@ -802,7 +1040,7 @@ subjects:
 <!--
 For all unauthenticated users:
 -->
-对于所有未通过认证的用户：
+对于所有未通过身份认证的用户：
 
 ```yaml
 subjects:
@@ -834,13 +1072,12 @@ Many of these are `system:` prefixed, which indicates that the resource is direc
 managed by the cluster control plane.
 All of the default ClusterRoles and ClusterRoleBindings are labeled with `kubernetes.io/bootstrapping=rbac-defaults`.
 -->
-## 默认 Roles 和 Role Bindings
+## 默认 Roles 和 Role Bindings {#default-roles-and-role-bindings}
 
 API 服务器创建一组默认的 ClusterRole 和 ClusterRoleBinding 对象。
 这其中许多是以 `system:` 为前缀的，用以标识对应资源是直接由集群控制面管理的。
 所有的默认 ClusterRole 和 ClusterRoleBinding 都有
-`kubernetes.io/bootstrapping=rbac-defaults`
-标签。
+`kubernetes.io/bootstrapping=rbac-defaults` 标签。
 
 {{< caution >}}
 <!--
@@ -850,7 +1087,7 @@ Modifications to these resources can result in non-functional clusters.
 -->
 在修改名称包含 `system:` 前缀的 ClusterRole 和 ClusterRoleBinding
 时要格外小心。
-对这些资源的更改可能导致集群无法继续工作。
+对这些资源的更改可能导致集群无法正常运作。
 {{< /caution >}}
 
 <!--
@@ -859,7 +1096,7 @@ Modifications to these resources can result in non-functional clusters.
 At each start-up, the API server updates default cluster roles with any missing permissions,
 and updates default cluster role bindings with any missing subjects.
 This allows the cluster to repair accidental modifications, and helps to keep roles and role bindings
-up-to-date as permissions and subjects change in new releases.
+up-to-date as permissions and subjects change in new Kubernetes releases.
 
 To opt out of this reconciliation, set the `rbac.authorization.kubernetes.io/autoupdate`
 annotation on a default cluster role or rolebinding to `false`.
@@ -869,10 +1106,10 @@ Auto-reconciliation is enabled by default if the RBAC authorizer is active.
 -->
 ### 自动协商   {#auto-reconciliation}
 
-在每次启动时，API 服务器都会更新默认 ClusterRole 以添加缺失的各种权限，并更新
-默认的 ClusterRoleBinding 以增加缺失的各类主体。
-这种自动协商机制允许集群去修复一些不小心发生的修改，并且有助于保证角色和角色绑定
-在新的发行版本中有权限或主体变更时仍然保持最新。
+在每次启动时，API 服务器都会更新默认 ClusterRole 以添加缺失的各种权限，
+并更新默认的 ClusterRoleBinding 以增加缺失的各类主体。
+这种自动协商机制允许集群去修复一些不小心发生的修改，
+并且有助于保证角色和角色绑定在新的发行版本中有权限或主体变更时仍然保持最新。
 
 如果要禁止此功能，请将默认 ClusterRole 以及 ClusterRoleBinding 的
 `rbac.authorization.kubernetes.io/autoupdate` 注解设置成 `false`。
@@ -883,14 +1120,14 @@ Auto-reconciliation is enabled by default if the RBAC authorizer is active.
 <!--
 ### API discovery roles {#discovery-roles}
 
-Default role bindings authorize unauthenticated and authenticated users to read API information that is deemed safe to be publicly accessible (including CustomResourceDefinitions). To disable anonymous unauthenticated access add `--anonymous-auth=false` to the API server configuration.
+Default role bindings authorize unauthenticated and authenticated users to read API information that is deemed safe to be publicly accessible (including CustomResourceDefinitions). To disable anonymous unauthenticated access, add `--anonymous-auth=false` to the API server configuration.
 
 To view the configuration of these roles via `kubectl` run:
 -->
 ### API 发现角色  {#discovery-roles}
 
-无论是经过身份验证的还是未经过身份验证的用户，默认的角色绑定都授权他们读取被认为
-是可安全地公开访问的 API（ 包括 CustomResourceDefinitions）。
+无论是经过身份验证的还是未经过身份验证的用户，
+默认的角色绑定都授权他们读取被认为是可安全地公开访问的 API（包括 CustomResourceDefinitions）。
 如果要禁用匿名的未经过身份验证的用户访问，请在 API 服务器配置中中添加
 `--anonymous-auth=false` 的配置选项。
 
@@ -906,19 +1143,17 @@ If you edit that ClusterRole, your changes will be overwritten on API server res
 via [auto-reconciliation](#auto-reconciliation). To avoid that overwriting,
 either do not manually edit the role, or disable auto-reconciliation.
 -->
-如果你编辑该 ClusterRole，你所作的变更会被 API 服务器在重启时自动覆盖，这是通过
-[自动协商](#auto-reconciliation)机制完成的。要避免这类覆盖操作，
+如果你编辑该 ClusterRole，你所作的变更会被 API 服务器在重启时自动覆盖，
+这是通过[自动协商](#auto-reconciliation)机制完成的。要避免这类覆盖操作，
 要么不要手动编辑这些角色，要么禁止自动协商机制。
 {{< /note >}}
 
 <table>
-<caption>
 <!--
-Kubernetes RBAC API discovery roles
+<caption>Kubernetes RBAC API discovery roles</caption>
 -->
-Kubernetes RBAC API 发现角色
-</caption>
-<colgroup><col width="25%"><col width="25%"><col></colgroup>
+<caption>Kubernetes RBAC API 发现角色</caption>
+<colgroup><col style="width: 25%;" /><col style="width: 25%;" /><col /></colgroup>
 <thead>
 <tr>
 <!--
@@ -934,44 +1169,44 @@ Kubernetes RBAC API 发现角色
 <tbody>
 <tr>
 <td><b>system:basic-user</b></td>
-<!-- 
+<!--
 <td><b>system:authenticated</b> group</td>
 -->
 <td><b>system:authenticated</b> 组</td>
 <td>
-<!-- 
-Allows a user read-only access to basic information about themselves. 
-Prior to 1.14, this role was also bound to <tt>system:unauthenticated</tt> by default.
+<!--
+Allows a user read-only access to basic information about themselves.
+Prior to v1.14, this role was also bound to <tt>system:unauthenticated</tt> by default.
 -->
-允许用户以只读的方式去访问他们自己的基本信息。在 1.14 版本之前，这个角色在默认情况下也绑定在 <tt>system:unauthenticated</tt> 上。
+允许用户以只读的方式去访问他们自己的基本信息。在 v1.14 版本之前，这个角色在默认情况下也绑定在 <tt>system:unauthenticated</tt> 上。
 </td>
 </tr>
 <tr>
 <td><b>system:discovery</b></td>
-<!-- 
+<!--
 <td><b>system:authenticated</b> group</td>
 -->
 <td><b>system:authenticated</b> 组</td>
 <td>
-<!-- 
-Allows read-only access to API discovery endpoints needed to discover and negotiate an API level. 
-Prior to 1.14, this role was also bound to <tt>system:unauthenticated</tt> by default.
+<!--
+Allows read-only access to API discovery endpoints needed to discover and negotiate an API level.
+Prior to v1.14, this role was also bound to <tt>system:unauthenticated</tt> by default.
 -->
 允许以只读方式访问 API 发现端点，这些端点用来发现和协商 API 级别。
-在 1.14 版本之前，这个角色在默认情况下绑定在 <tt>system:unauthenticated</tt> 上。
+在 v1.14 版本之前，这个角色在默认情况下绑定在 <tt>system:unauthenticated</tt> 上。
 </td>
 </tr>
 <tr>
 <td><b>system:public-info-viewer</b></td>
-<!-- 
+<!--
 <td><b>system:authenticated</b> and <b>system:unauthenticated</b> groups</td>
 -->
 <td><b>system:authenticated</b> 和 <b>system:unauthenticated</b> 组</td>
 <td>
-<!-- 
+<!--
 Allows read-only access to non-sensitive information about the cluster. Introduced in Kubernetes v1.14.
 -->
-允许对集群的非敏感信息进行只读访问，它是在 1.14 版本中引入的。
+允许对集群的非敏感信息进行只读访问，此角色是在 v1.14 版本中引入的。
 </td>
 </tr>
 </tbody>
@@ -996,8 +1231,8 @@ a ClusterRole with one or more of the following labels:
 使用 ClusterRoleBinding 在集群范围内完成授权的角色（`cluster-status`）、
 以及使用 RoleBinding 在特定名字空间中授予的角色（`admin`、`edit`、`view`）。
 
-面向用户的 ClusterRole 使用 [ClusterRole 聚合](#aggregated-clusterroles)以允许管理员在
-这些 ClusterRole 上添加用于定制资源的规则。如果想要添加规则到 `admin`、`edit` 或者 `view`，
+面向用户的 ClusterRole 使用 [ClusterRole 聚合](#aggregated-clusterroles)以允许管理员在这些
+ClusterRole 上添加用于定制资源的规则。如果想要添加规则到 `admin`、`edit` 或者 `view`，
 可以创建带有以下一个或多个标签的 ClusterRole：
 
 ```yaml
@@ -1009,7 +1244,7 @@ metadata:
 ```
 
 <table>
-<colgroup><col width="25%"><col width="25%"><col></colgroup>
+<colgroup><col style="width: 25%;" /><col style="width: 25%;" /><col /></colgroup>
 <thead>
 <tr>
 <!--
@@ -1030,63 +1265,74 @@ metadata:
 -->
 <td><b>system:masters</b> 组</td>
 <td>
-<!-- 
+<!--
 Allows super-user access to perform any action on any resource.
 When used in a <b>ClusterRoleBinding</b>, it gives full control over every resource in the cluster and in all namespaces.
-When used in a <b>RoleBinding</b>, it gives full control over every resource in the rolebinding's namespace, including the namespace itself.
+When used in a <b>RoleBinding</b>, it gives full control over every resource in the role binding's namespace, including the namespace itself.
 -->
 允许超级用户在平台上的任何资源上执行所有操作。
 当在 <b>ClusterRoleBinding</b> 中使用时，可以授权对集群中以及所有名字空间中的全部资源进行完全控制。
-当在 <b>RoleBinding</b> 中使用时，可以授权控制 RoleBinding 所在名字空间中的所有资源，包括名字空间本身。
+当在 <b>RoleBinding</b> 中使用时，可以授权控制角色绑定所在名字空间中的所有资源，包括名字空间本身。
 </td>
 </tr>
 <tr>
 <td><b>admin</b></td>
-<!-- 
+<!--
 <td>None</td>
 --->
 <td>无</td>
 <td>
-<!-- 
+<!--
 Allows admin access, intended to be granted within a namespace using a <b>RoleBinding</b>.
 If used in a <b>RoleBinding</b>, allows read/write access to most resources in a namespace,
-including the ability to create roles and rolebindings within the namespace.
-It does not allow write access to resource quota or to the namespace itself.
+including the ability to create roles and role bindings within the namespace.
+This role does not allow write access to resource quota or to the namespace itself.
+This role also does not allow write access to Endpoints in clusters created
+using Kubernetes v1.22+. More information is available in the
+["Write Access for Endpoints" section](#write-access-for-endpoints).
 -->
 允许管理员访问权限，旨在使用 <b>RoleBinding</b> 在名字空间内执行授权。
+
 如果在 <b>RoleBinding</b> 中使用，则可授予对名字空间中的大多数资源的读/写权限，
 包括创建角色和角色绑定的能力。
-但是它不允许对资源配额或者名字空间本身进行写操作。
+此角色不允许对资源配额或者名字空间本身进行写操作。
+此角色也不允许对 Kubernetes v1.22+ 创建的 Endpoints 进行写操作。
+更多信息参阅 [“Endpoints 写权限”小节](#write-access-for-endpoints)。
 </td>
 </tr>
 <tr>
 <td><b>edit</b></td>
-<!-- 
+<!--
 <td>None</td>
 -->
 <td>无</td>
 <td>
-<!-- 
+<!--
 Allows read/write access to most objects in a namespace.
 This role does not allow viewing or modifying roles or role bindings.
 However, this role allows accessing Secrets and running Pods as any ServiceAccount in
 the namespace, so it can be used to gain the API access levels of any ServiceAccount in
-the namespace.
+the namespace. This role also does not allow write access to Endpoints in
+clusters created using Kubernetes v1.22+. More information is available in the
+["Write Access for Endpoints" section](#write-access-for-endpoints).
 -->
 允许对名字空间的大多数对象进行读/写操作。
-它不允许查看或者修改角色或者角色绑定。
-不过，此角色可以访问 Secret，以名字空间中任何 ServiceAccount 的身份运行 Pods，
+
+此角色不允许查看或者修改角色或者角色绑定。
+不过，此角色可以访问 Secret，以名字空间中任何 ServiceAccount 的身份运行 Pod，
 所以可以用来了解名字空间内所有服务账户的 API 访问级别。
+此角色也不允许对 Kubernetes v1.22+ 创建的 Endpoints 进行写操作。
+更多信息参阅 [“Endpoints 写操作”小节](#write-access-for-endpoints)。
 </td>
 </tr>
 <tr>
 <td><b>view</b></td>
-<!-- 
+<!--
 <td>None</td>
 -->
 <td>无</td>
 <td>
-<!-- 
+<!--
 Allows read-only access to see most objects in a namespace.
 It does not allow viewing roles or rolebindings.
 -->
@@ -1097,11 +1343,11 @@ It does not allow viewing roles or rolebindings.
 This role does not allow viewing Secrets, since reading
 the contents of Secrets enables access to ServiceAccount credentials
 in the namespace, which would allow API access as any ServiceAccount
-in the namespace (a form of privilege escalation). 
+in the namespace (a form of privilege escalation).
 -->
 此角色不允许查看 Secrets，因为读取 Secret 的内容意味着可以访问名字空间中
-ServiceAccount 的凭据信息，进而允许利用名字空间中任何 ServiceAccount 的
-身份访问 API（这是一种特权提升）。
+ServiceAccount 的凭据信息，进而允许利用名字空间中任何 ServiceAccount
+的身份访问 API（这是一种特权提升）。
 </td>
 </tr>
 </tbody>
@@ -1113,7 +1359,7 @@ ServiceAccount 的凭据信息，进而允许利用名字空间中任何 Service
 ### 核心组件角色   {#core-component-roles}
 
 <table>
-<colgroup><col width="25%"><col width="25%"><col></colgroup>
+<colgroup><col style="width: 25%;" /><col style="width: 25%;" /><col /></colgroup>
 <thead>
 <tr>
 <!--
@@ -1129,12 +1375,12 @@ ServiceAccount 的凭据信息，进而允许利用名字空间中任何 Service
 <tbody>
 <tr>
 <td><b>system:kube-scheduler</b></td>
-<!-- 
-<td><b>system:kube-scheduler</b> user</td> 
+<!--
+<td><b>system:kube-scheduler</b> user</td>
 -->
 <td><b>system:kube-scheduler</b> 用户</td>
 <td>
-<!-- 
+<!--
 Allows access to the resources required by the {{< glossary_tooltip term_id="kube-scheduler" text="scheduler" >}} component.
 -->
 允许访问 {{< glossary_tooltip term_id="kube-scheduler" text="scheduler" >}}
@@ -1143,8 +1389,8 @@ Allows access to the resources required by the {{< glossary_tooltip term_id="kub
 </tr>
 <tr>
 <td><b>system:volume-scheduler</b></td>
-<!-- 
-<td><b>system:kube-scheduler</b> user</td> 
+<!--
+<td><b>system:kube-scheduler</b> user</td>
 -->
 <td><b>system:kube-scheduler</b> 用户</td>
 <td>
@@ -1156,23 +1402,23 @@ Allows access to the volume resources required by the kube-scheduler component.
 </tr>
 <tr>
 <td><b>system:kube-controller-manager</b></td>
-<!-- 
-<td><b>system:kube-controller-manager</b> user</td> 
+<!--
+<td><b>system:kube-controller-manager</b> user</td>
 -->
 <td><b>system:kube-controller-manager</b> 用户</td>
 <td>
-<!-- 
+<!--
 Allows access to the resources required by the {{< glossary_tooltip term_id="kube-controller-manager" text="controller manager" >}} component.
 The permissions required by individual controllers are detailed in the <a href="#controller-roles">controller roles</a>.
 -->
 允许访问{{< glossary_tooltip term_id="kube-controller-manager" text="控制器管理器" >}}
 组件所需要的资源。
-各个控制回路所需要的权限在<a href="#controller-roles">控制器角色</a> 详述。
+各个控制回路所需要的权限在<a href="#controller-roles">控制器角色</a>详述。
 </td>
 </tr>
 <tr>
 <td><b>system:node</b></td>
-<!-- 
+<!--
 <td>None</td>
 -->
 <td>无</td>
@@ -1182,17 +1428,17 @@ Allows access to resources required by the kubelet, <b>including read access to
 -->
 允许访问 kubelet 所需要的资源，<b>包括对所有 Secret 的读操作和对所有 Pod 状态对象的写操作。</b>
 
-<!--  
-You should use the <a href="/docs/reference/access-authn-authz/node/">Node authorizer</a> and 
-<a href="/docs/reference/access-authn-authz/admission-controllers/#noderestriction">NodeRestriction admission plugin</a> 
+<!--
+You should use the <a href="/docs/reference/access-authn-authz/node/">Node authorizer</a> and
+<a href="/docs/reference/access-authn-authz/admission-controllers/#noderestriction">NodeRestriction admission plugin</a>
 instead of the <tt>system:node</tt> role, and allow granting API access to kubelets based on the Pods scheduled to run on them.
 -->
-你应该使用 <a href="/zh/docs/reference/access-authn-authz/node/">Node 鉴权组件</a> 和
-<a href="/zh/docs/reference/access-authn-authz/admission-controllers/#noderestriction">NodeRestriction 准入插件</a>
-而不是 <tt>system:node</tt> 角色。同时基于 kubelet 上调度执行的 Pod 来授权
+你应该使用 <a href="/zh-cn/docs/reference/access-authn-authz/node/">Node 鉴权组件</a>和
+<a href="/zh-cn/docs/reference/access-authn-authz/admission-controllers/#noderestriction">NodeRestriction 准入插件</a>而不是
+<tt>system:node</tt> 角色。同时基于 kubelet 上调度执行的 Pod 来授权
 kubelet 对 API 的访问。
 
-<!--  
+<!--
 The <tt>system:node</tt> role only exists for compatibility with Kubernetes clusters upgraded from versions prior to v1.8.
 -->
 <tt>system:node</tt> 角色的意义仅是为了与从 v1.8 之前版本升级而来的集群兼容。
@@ -1215,13 +1461,13 @@ The <tt>system:node</tt> role only exists for compatibility with Kubernetes clus
 ### 其他组件角色    {#other-component-roles}
 
 <table>
-<colgroup><col width="25%"><col width="25%"><col></colgroup>
+<colgroup><col style="width: 25%;" /><col style="width: 25%;" /><col /></colgroup>
 <thead>
 <tr>
-<!-- 
+<!--
 <th>Default ClusterRole</th>
 <th>Default ClusterRoleBinding</th>
-<th>Description</th> 
+<th>Description</th>
 -->
 <th>默认 ClusterRole</th>
 <th>默认 ClusterRoleBinding</th>
@@ -1231,12 +1477,12 @@ The <tt>system:node</tt> role only exists for compatibility with Kubernetes clus
 <tbody>
 <tr>
 <td><b>system:auth-delegator</b></td>
-<!-- 
-<td>None</td> 
+<!--
+<td>None</td>
 -->
 <td>无</td>
 <td>
-<!-- 
+<!--
 Allows delegated authentication and authorization checks.
 This is commonly used by add-on API servers for unified authentication and authorization.
 -->
@@ -1246,8 +1492,8 @@ This is commonly used by add-on API servers for unified authentication and autho
 </tr>
 <tr>
 <td><b>system:heapster</b></td>
-<!-- 
-<td>None</td> 
+<!--
+<td>None</td>
 -->
 <td>无</td>
 <td>
@@ -1259,61 +1505,61 @@ Role for the <a href="https://github.com/kubernetes/heapster">Heapster</a> compo
 </tr>
 <tr>
 <td><b>system:kube-aggregator</b></td>
-<!-- 
-<td>None</td> 
+<!--
+<td>None</td>
 -->
 <td>无</td>
-<!-- td>Role for the <a href="https://github.com/kubernetes/kube-aggregator">kube-aggregator</a> component.</td -->
+<!--
+<td>Role for the <a href="https://github.com/kubernetes/kube-aggregator">kube-aggregator</a> component.</td>
+-->
 <td>为 <a href="https://github.com/kubernetes/kube-aggregator">kube-aggregator</a> 组件定义的角色。</td>
 </tr>
 <tr>
 <td><b>system:kube-dns</b></td>
-<td>
 <!--
-<b>kube-dns</b> service account in the <b>kube-system</b> namespace</td 
+<td><b>kube-dns</b> service account in the <b>kube-system</b> namespace</td>
 -->
-在 <b>kube-system</b> 名字空间中的 <b>kube-dns</b> 服务账户</td>
+<td>在 <b>kube-system</b> 名字空间中的 <b>kube-dns</b> 服务账户</td>
 <!-- td>Role for the <a href="/docs/concepts/services-networking/dns-pod-service/">kube-dns</a> component.</td -->
-<td>为 <a href="/docs/concepts/services-networking/dns-pod-service/">kube-dns</a> 组件定义的角色。
-</td>
+<td>为 <a href="/zh-cn/docs/concepts/services-networking/dns-pod-service/">kube-dns</a> 组件定义的角色。</td>
 </tr>
 <tr>
 <td><b>system:kubelet-api-admin</b></td>
-<!-- 
-<td>None</td> 
+<!--
+<td>None</td>
 -->
 <td>无</td>
 <td>
-<!-- 
+<!--
 Allows full access to the kubelet API.
 -->
 允许 kubelet API 的完全访问权限。
 </td>
-</tr>  
+</tr>
 <tr>
 <td><b>system:node-bootstrapper</b></td>
-<!-- 
-<td>None</td> 
+<!--
+<td>None</td>
 -->
 <td>无</td>
 <td>
-<!-- 
+<!--
 Allows access to the resources required to perform
-<a href="/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/">Kubelet TLS bootstrapping</a>.
+<a href="/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/">Kubelet TLS bootstrapping</a>.
 -->
 允许访问执行
-<a href="/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/">kubelet TLS 启动引导</a>
+<a href="/zh-cn/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/">kubelet TLS 启动引导</a>
 所需要的资源。
 </td>
 </tr>
 <tr>
 <td><b>system:node-problem-detector</b></td>
-<!-- 
-<td>None</td> 
+<!--
+<td>None</td>
 -->
 <td>无</td>
 <td>
-<!-- 
+<!--
 Role for the <a href="https://github.com/kubernetes/node-problem-detector">node-problem-detector</a> component.
 -->
 为 <a href="https://github.com/kubernetes/node-problem-detector">node-problem-detector</a> 组件定义的角色。
@@ -1321,30 +1567,28 @@ Role for the <a href="https://github.com/kubernetes/node-problem-detector">node-
 </tr>
 <tr>
 <td><b>system:persistent-volume-provisioner</b></td>
-<!-- 
-<td>None</td> 
+<!--
+<td>None</td>
 -->
 <td>无</td>
 <td>
-<!-- 
-Allows access to the resources required by most <a href="/docs/concepts/storage/persistent-volumes/#provisioner">dynamic volume provisioners</a>.
+<!--
+Allows access to the resources required by most <a href="/docs/concepts/storage/persistent-volumes/#dynamic">dynamic volume provisioners</a>.
 -->
-允许访问大部分
-<a href="/docs/concepts/storage/persistent-volumes/#provisioner">动态卷驱动
-</a>
-所需要的资源。</td>
+允许访问大部分<a href="/zh-cn/docs/concepts/storage/persistent-volumes/#dynamic">动态卷驱动</a>所需要的资源。
+</td>
 </tr>
 <tr>
 <td><b>system:monitoring</b></td>
-<!-- 
+<!--
 <td><b>system:monitoring</b> group</td>
 -->
 <td><b>system:monitoring</b> 组</td>
 <td>
 <!--
-Allows read access to control-plane monitoring endpoints 
-(i.e. {{< glossary_tooltip term_id="kube-apiserver" text="kube-apiserver" >}} liveness and readiness endpoints 
-(<tt>/healthz</tt>, <tt>/livez</tt>, <tt>/readyz</tt>), the individual health-check endpoints 
+Allows read access to control-plane monitoring endpoints
+(i.e. {{< glossary_tooltip term_id="kube-apiserver" text="kube-apiserver" >}} liveness and readiness endpoints
+(<tt>/healthz</tt>, <tt>/livez</tt>, <tt>/readyz</tt>), the individual health-check endpoints
 (<tt>/healthz/*</tt>, <tt>/livez/*</tt>, <tt>/readyz/*</tt>),  and <tt>/metrics</tt>).
  Note that individual health check endpoints and the metric endpoint may expose sensitive information.
 -->
@@ -1363,23 +1607,23 @@ Allows read access to control-plane monitoring endpoints
 The Kubernetes {{< glossary_tooltip term_id="kube-controller-manager" text="controller manager" >}} runs
 {{< glossary_tooltip term_id="controller" text="controllers" >}} that are built in to the Kubernetes
 control plane.
-When invoked with `-use-service-account-credentials`, kube-controller-manager starts each controller
+When invoked with `--use-service-account-credentials`, kube-controller-manager starts each controller
 using a separate service account.
 Corresponding roles exist for each built-in controller, prefixed with `system:controller:`.
-If the controller manager is not started with `-use-service-account-credentials`, it runs all control loops
+If the controller manager is not started with `--use-service-account-credentials`, it runs all control loops
 using its own credential, which must be granted all the relevant roles.
 These roles include:
 -->
 ### 内置控制器的角色   {#controller-roles}
 
-Kubernetes {{< glossary_tooltip term_id="kube-controller-manager" text="控制器管理器" >}}
-运行内建于 Kubernetes 控制面的{{< glossary_tooltip term_id="controller" text="控制器" >}}。
-当使用 `--use-service-account-credentials` 参数启动时, kube-controller-manager
+Kubernetes {{< glossary_tooltip term_id="kube-controller-manager" text="控制器管理器" >}}运行内建于 
+Kubernetes 控制面的{{< glossary_tooltip term_id="controller" text="控制器" >}}。
+当使用 `--use-service-account-credentials` 参数启动时，kube-controller-manager
 使用单独的服务账户来启动每个控制器。
 每个内置控制器都有相应的、前缀为 `system:controller:` 的角色。
 如果控制管理器启动时未设置 `--use-service-account-credentials`，
 它使用自己的身份凭据来运行所有的控制器，该身份必须被授予所有相关的角色。
-这些角色包括:
+这些角色包括：
 
 * `system:controller:attachdetach-controller`
 * `system:controller:certificate-controller`
@@ -1410,12 +1654,12 @@ Kubernetes {{< glossary_tooltip term_id="kube-controller-manager" text="控制
 * `system:controller:ttl-controller`
 
 <!--
-## Privilege Escalation Prevention and Bootstrapping
+## Privilege escalation prevention and bootstrapping
 
 The RBAC API prevents users from escalating privileges by editing roles or role bindings.
 Because this is enforced at the API level, it applies even when the RBAC authorizer is not in use.
 -->
-## 初始化与预防权限提升
+## 初始化与预防权限提升 {#privilege-escalation-prevention-and-bootstrapping}
 
 RBAC API 会阻止用户通过编辑角色或者角色绑定来提升权限。
 由于这一点是在 API 级别实现的，所以在 RBAC 鉴权组件未启用的状态下依然可以正常工作。
@@ -1429,14 +1673,14 @@ You can only create/update a role if at least one of the following things is tru
 (cluster-wide for a ClusterRole, within the same namespace or cluster-wide for a Role).
 2. You are granted explicit permission to perform the `escalate` verb on the `roles` or `clusterroles` resource in the `rbac.authorization.k8s.io` API group.
 -->
-### 对角色创建或更新的限制
+### 对角色创建或更新的限制 {#restrictions-on-role-creation-or-update}
 
 只有在符合下列条件之一的情况下，你才能创建/更新角色:
 
 1. 你已经拥有角色中包含的所有权限，且其作用域与正被修改的对象作用域相同。
   （对 ClusterRole 而言意味着集群范围，对 Role 而言意味着相同名字空间或者集群范围）。
-2. 你被显式授权在 `rbac.authorization.k8s.io` API 组中的 `roles` 或 `clusterroles` 资源
-   使用 `escalate` 动词。
+2. 你被显式授权在 `rbac.authorization.k8s.io` API 组中的 `roles` 或 `clusterroles`
+   资源使用 `escalate` 动词。
 
 <!--
 For example, if `user-1` does not have the ability to list Secrets cluster-wide, they cannot create a ClusterRole
@@ -1465,9 +1709,9 @@ You can only create/update a role binding if you already have all the permission
 For example, if `user-1` does not have the ability to list Secrets cluster-wide, they cannot create a ClusterRoleBinding
 to a role that grants that permission. To allow a user to create/update role bindings:
 -->
-### 对角色绑定创建或更新的限制
+### 对角色绑定创建或更新的限制 {#restrictions-on-role-binding-creation-or-update}
 
-只有你已经具有了所引用的角色中包含的全部权限时，或者你被授权在所引用的角色上执行 `bind`
+只有你已经具有了所引用的角色中包含的全部权限时，**或者** 你被授权在所引用的角色上执行 `bind`
 动词时，你才可以创建或更新角色绑定。这里的权限与角色绑定的作用域相同。
 例如，如果用户 `user-1` 没有列举集群范围所有 Secret 的能力，则他不可以创建
 ClusterRoleBinding 引用授予该许可权限的角色。
@@ -1476,13 +1720,12 @@ ClusterRoleBinding 引用授予该许可权限的角色。
 <!--
 1. Grant them a role that allows them to create/update RoleBinding or ClusterRoleBinding objects, as desired.
 2. Grant them permissions needed to bind a particular role:
-    * implicitly, by giving them the permissions contained in the role.
-    * explicitly, by giving them permission to perform the `bind` verb on the particular Role (or ClusterRole).
+   * implicitly, by giving them the permissions contained in the role.
+   * explicitly, by giving them permission to perform the `bind` verb on the particular Role (or ClusterRole).
 
 For example, this ClusterRole and RoleBinding would allow `user-1` to grant other users the `admin`, `edit`, and `view` roles in the namespace `user-1-namespace`:
 -->
-1. 赋予他们一个角色，使得他们能够根据需要创建或更新 RoleBinding 或 ClusterRoleBinding
-   对象。
+1. 赋予他们一个角色，使得他们能够根据需要创建或更新 RoleBinding 或 ClusterRoleBinding 对象。
 2. 授予他们绑定某特定角色所需要的许可权限：
    * 隐式授权下，可以将角色中包含的许可权限授予他们；
    * 显式授权下，可以授权他们在特定 Role （或 ClusterRole）上执行 `bind` 动词的权限。
@@ -1490,6 +1733,37 @@ For example, this ClusterRole and RoleBinding would allow `user-1` to grant othe
 例如，下面的 ClusterRole 和 RoleBinding 将允许用户 `user-1` 把名字空间 `user-1-namespace`
 中的 `admin`、`edit` 和 `view` 角色赋予其他用户：
 
+<!--
+```yaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: role-grantor
+rules:
+- apiGroups: ["rbac.authorization.k8s.io"]
+  resources: ["rolebindings"]
+  verbs: ["create"]
+- apiGroups: ["rbac.authorization.k8s.io"]
+  resources: ["clusterroles"]
+  verbs: ["bind"]
+  # omit resourceNames to allow binding any ClusterRole
+  resourceNames: ["admin","edit","view"]
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  name: role-grantor-binding
+  namespace: user-1-namespace
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: role-grantor
+subjects:
+- apiGroup: rbac.authorization.k8s.io
+  kind: User
+  name: user-1
+```
+-->
 ```yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
@@ -1524,33 +1798,32 @@ subjects:
 When bootstrapping the first roles and role bindings, it is necessary for the initial user to grant permissions they do not yet have.
 To bootstrap initial roles and role bindings:
 
-* Use a credential with the `system:masters` group, which is bound to the `cluster-admin` super-user role by the default bindings.
-* If your API server runs with the insecure port enabled (`-insecure-port`), you can also make API calls via that port, which does not enforce authentication or authorization.
+* Use a credential with the "system:masters" group, which is bound to the "cluster-admin" super-user role by the default bindings.
+* If your API server runs with the insecure port enabled (`--insecure-port`), you can also make API calls via that port, which does not enforce authentication or authorization.
 -->
 当启动引导第一个角色和角色绑定时，需要为初始用户授予他们尚未拥有的权限。
 对初始角色和角色绑定进行初始化时需要：
 
 * 使用用户组为 `system:masters` 的凭据，该用户组由默认绑定关联到 `cluster-admin`
   这个超级用户角色。
-* 如果你的 API 服务器启动时启用了不安全端口（使用 `--insecure-port`）, 你也可以通过
-  该端口调用 API ，这样的操作会绕过身份验证或鉴权。
+* 如果你的 API 服务器启动时启用了不安全端口（使用 `--insecure-port`），
+  你也可以通过该端口调用 API，这样的操作会绕过身份验证或鉴权。
 
 <!--
-## Command-line Utilities
+## Command-line utilities
+-->
+## 一些命令行工具 {#command-line-utilities}
 
 ### `kubectl create role`
 
-Creates a `Role` object defining permissions within a single namespace. Examples:
+<!--
+Creates a Role object defining permissions within a single namespace. Examples:
 
 * Create a Role named "pod-reader" that allows users to perform `get`, `watch` and `list` on pods:
 -->
-## 一些命令行工具
-
-### `kubectl create role`
-
 创建 Role 对象，定义在某一名字空间中的权限。例如:
 
-* 创建名称为 "pod-reader" 的 Role 对象，允许用户对 Pods 执行 `get`、`watch` 和 `list` 操作：
+* 创建名称为 “pod-reader” 的 Role 对象，允许用户对 Pods 执行 `get`、`watch` 和 `list` 操作：
 
   ```shell
   kubectl create role pod-reader --verb=get --verb=list --verb=watch --resource=pods
@@ -1559,16 +1832,16 @@ Creates a `Role` object defining permissions within a single namespace. Examples
 <!--
 * Create a Role named "pod-reader" with resourceNames specified:
 -->
-* 创建名称为 "pod-reader" 的 Role 对象并指定 `resourceNames`：
+* 创建名称为 “pod-reader” 的 Role 对象并指定 `resourceNames`：
 
   ```shell
   kubectl create role pod-reader --verb=get --resource=pods --resource-name=readablepod --resource-name=anotherpod
   ```
 
 <!--
-* Create a `Role` named "foo" with apiGroups specified:
+* Create a Role named "foo" with apiGroups specified:
 -->
-* 创建名为 "foo" 的 Role 对象并指定 `apiGroups`：
+* 创建名为 “foo” 的 Role 对象并指定 `apiGroups`：
 
   ```shell
   kubectl create role foo --verb=get,list,watch --resource=replicasets.apps
@@ -1577,7 +1850,7 @@ Creates a `Role` object defining permissions within a single namespace. Examples
 <!--
 * Create a Role named "foo" with subresource permissions:
 -->
-* 创建名为 "foo" 的 Role 对象并指定子资源权限:
+* 创建名为 “foo” 的 Role 对象并指定子资源权限:
 
   ```shell
   kubectl create role foo --verb=get,list,watch --resource=pods,pods/status
@@ -1586,8 +1859,8 @@ Creates a `Role` object defining permissions within a single namespace. Examples
 <!--
 * Create a Role named "my-component-lease-holder" with permissions to get/update a resource with a specific name:
 -->
-* 创建名为 "my-component-lease-holder" 的 Role 对象，使其具有对特定名称的
-  资源执行 get/update 的权限：
+* 创建名为 “my-component-lease-holder” 的 Role 对象，使其具有对特定名称的资源执行
+  get/update 的权限：
 
   ```shell
   kubectl create role my-component-lease-holder --verb=get,list,watch,update --resource=lease --resource-name=my-component
@@ -1602,7 +1875,7 @@ Creates a ClusterRole. Examples:
 -->
 创建 ClusterRole 对象。例如：
 
-* 创建名称为 "pod-reader" 的 ClusterRole`对象，允许用户对 Pods 对象执行 `get`、
+* 创建名称为 “pod-reader” 的 ClusterRole 对象，允许用户对 Pods 对象执行 `get`、
   `watch` 和 `list` 操作：
 
   ```shell
@@ -1612,7 +1885,7 @@ Creates a ClusterRole. Examples:
 <!--
 * Create a ClusterRole named "pod-reader" with resourceNames specified:
 -->
-* 创建名为 "pod-reader" 的 ClusterRole 对象并指定 `resourceNames`：
+* 创建名为 “pod-reader” 的 ClusterRole 对象并指定 `resourceNames`：
 
   ```shell
   kubectl create clusterrole pod-reader --verb=get --resource=pods --resource-name=readablepod --resource-name=anotherpod
@@ -1621,7 +1894,7 @@ Creates a ClusterRole. Examples:
 <!--
 * Create a ClusterRole named "foo" with apiGroups specified:
 -->
-* 创建名为 "foo" 的 ClusterRole 对象并指定 `apiGroups`：
+* 创建名为 “foo” 的 ClusterRole 对象并指定 `apiGroups`：
 
   ```shell
   kubectl create clusterrole foo --verb=get,list,watch --resource=replicasets.apps
@@ -1630,7 +1903,7 @@ Creates a ClusterRole. Examples:
 <!--
 * Create a ClusterRole named "foo" with subresource permissions:
 -->
-* 创建名为 "foo" 的 ClusterRole 对象并指定子资源:
+* 创建名为 “foo” 的 ClusterRole 对象并指定子资源:
 
   ```shell
   kubectl create clusterrole foo --verb=get,list,watch --resource=pods,pods/status
@@ -1639,7 +1912,7 @@ Creates a ClusterRole. Examples:
 <!--
 * Create a ClusterRole named "foo" with nonResourceURL specified:
 -->
-* 创建名为 "foo" 的 ClusterRole 对象并指定 `nonResourceURL`：
+* 创建名为 “foo” 的 ClusterRole 对象并指定 `nonResourceURL`：
 
   ```shell
   kubectl create clusterrole "foo" --verb=get --non-resource-url=/logs/*
@@ -1648,7 +1921,7 @@ Creates a ClusterRole. Examples:
 <!--
 * Create a ClusterRole named "monitoring" with an aggregationRule specified:
 -->
-* 创建名为 "monitoring" 的 ClusterRole 对象并指定 `aggregationRule`：
+* 创建名为 “monitoring” 的 ClusterRole 对象并指定 `aggregationRule`：
 
   ```shell
   kubectl create clusterrole monitoring --aggregation-rule="rbac.example.com/aggregate-to-monitoring=true"
@@ -1663,7 +1936,7 @@ Grants a Role or ClusterRole within a specific namespace. Examples:
 -->
 在特定的名字空间中对 `Role` 或 `ClusterRole` 授权。例如：
 
-* 在名字空间 "acme" 中，将名为 `admin` 的 ClusterRole 中的权限授予名称 "bob" 的用户:
+* 在名字空间 “acme” 中，将名为 `admin` 的 ClusterRole 中的权限授予名称 “bob” 的用户:
 
   ```shell
   kubectl create rolebinding bob-admin-binding --clusterrole=admin --user=bob --namespace=acme
@@ -1672,7 +1945,7 @@ Grants a Role or ClusterRole within a specific namespace. Examples:
 <!--
 * Within the namespace "acme", grant the permissions in the "view" ClusterRole to the service account in the namespace "acme" named "myapp":
 -->
-* 在名字空间 "acme" 中，将名为 `view` 的 ClusterRole 中的权限授予名字空间 "acme"
+* 在名字空间 “acme” 中，将名为 `view` 的 ClusterRole 中的权限授予名字空间 “acme”
   中名为 `myapp` 的服务账户：
 
   ```shell
@@ -1682,8 +1955,8 @@ Grants a Role or ClusterRole within a specific namespace. Examples:
 <!--
 * Within the namespace "acme", grant the permissions in the "view" ClusterRole to a service account in the namespace "myappnamespace" named "myapp":
 -->
-* 在名字空间 "acme" 中，将名为 `view` 的 ClusterRole 对象中的权限授予名字空间
-  "myappnamespace" 中名称为 `myapp` 的服务账户：
+* 在名字空间 “acme” 中，将名为 `view` 的 ClusterRole 对象中的权限授予名字空间
+  “myappnamespace” 中名称为 `myapp` 的服务账户：
 
   ```shell
   kubectl create rolebinding myappnamespace-myapp-view-binding --clusterrole=view --serviceaccount=myappnamespace:myapp --namespace=acme
@@ -1698,8 +1971,7 @@ Grants a ClusterRole across the entire cluster (all namespaces). Examples:
 -->
 在整个集群（所有名字空间）中用 ClusterRole 授权。例如：
 
-* 在整个集群范围，将名为 `cluster-admin` 的 ClusterRole 中定义的权限授予名为
-  "root" 用户：
+* 在整个集群范围，将名为 `cluster-admin` 的 ClusterRole 中定义的权限授予名为 “root” 用户：
 
   ```shell
   kubectl create clusterrolebinding root-cluster-admin-binding --clusterrole=cluster-admin --user=root
@@ -1709,7 +1981,7 @@ Grants a ClusterRole across the entire cluster (all namespaces). Examples:
 * Across the entire cluster, grant the permissions in the "system:node-proxier" ClusterRole to a user named "system:kube-proxy":
 -->
 * 在整个集群范围内，将名为 `system:node-proxier` 的 ClusterRole 的权限授予名为
-  "system:kube-proxy" 的用户：
+  “system:kube-proxy” 的用户：
 
   ```shell
   kubectl create clusterrolebinding kube-proxy-binding --clusterrole=system:node-proxier --user=system:kube-proxy
@@ -1718,8 +1990,8 @@ Grants a ClusterRole across the entire cluster (all namespaces). Examples:
 <!--
 * Across the entire cluster, grant the permissions in the "view" ClusterRole to a service account named "myapp" in the namespace "acme":
 -->
-* 在整个集群范围内，将名为 `view` 的 ClusterRole 中定义的权限授予 "acme" 名字空间中
-  名为 "myapp" 的服务账户：
+* 在整个集群范围内，将名为 `view` 的 ClusterRole 中定义的权限授予 “acme” 名字空间中名为
+  “myapp” 的服务账户：
 
   ```shell
   kubectl create clusterrolebinding myapp-view-binding --clusterrole=view --serviceaccount=acme:myapp
@@ -1757,13 +2029,13 @@ Examples:
 * 测试应用 RBAC 对象的清单文件，显示将要进行的更改：
 
   ```shell
-  kubectl auth reconcile -f my-rbac-rules.yaml --dry-run
+  kubectl auth reconcile -f my-rbac-rules.yaml --dry-run=client
   ```
 
 <!--
 * Apply a manifest file of RBAC objects, preserving any extra permissions (in roles) and any extra subjects (in bindings):
 -->
-* 应用 RBAC 对象的清单文件，保留角色中的额外权限和绑定中的其他主体：
+* 应用 RBAC 对象的清单文件，保留角色（`roles`）中的额外权限和绑定（`bindings`）中的其他主体：
 
   ```shell
   kubectl auth reconcile -f my-rbac-rules.yaml
@@ -1772,27 +2044,23 @@ Examples:
 <!--
 * Apply a manifest file of RBAC objects, removing any extra permissions (in roles) and any extra subjects (in bindings):
 -->
-* 应用 RBAC 对象的清单文件, 删除角色中的额外权限和绑定中的其他主体：
+* 应用 RBAC 对象的清单文件，删除角色（`roles`）中的额外权限和绑定中的其他主体：
 
   ```shell
   kubectl auth reconcile -f my-rbac-rules.yaml --remove-extra-subjects --remove-extra-permissions
   ```
 
 <!--
-See the CLI help for detailed usage.
--->
-查看 CLI 帮助获取详细的用法。
-
-<!--
-## ServiceAccount Permissions
+## ServiceAccount permissions {#service-account-permissions}
 
 Default RBAC policies grant scoped permissions to control-plane components, nodes,
 and controllers, but grant *no permissions* to service accounts outside the `kube-system` namespace
 (beyond discovery permissions given to all authenticated users).
 
-This allows you to grant particular roles to particular service accounts as needed.
+This allows you to grant particular roles to particular ServiceAccounts as needed.
 Fine-grained role bindings provide greater security, but require more effort to administrate.
-Broader grants can give unnecessary (and potentially escalating) API access to service accounts, but are easier to administrate.
+Broader grants can give unnecessary (and potentially escalating) API access to
+ServiceAccounts, but are easier to administrate.
 -->
 ## 服务账户权限   {#service-account-permissions}
 
@@ -1800,9 +2068,9 @@ Broader grants can give unnecessary (and potentially escalating) API access to s
 但是不会对 `kube-system` 名字空间之外的服务账户授予权限。
 （除了授予所有已认证用户的发现权限）
 
-这使得你可以根据需要向特定服务账户授予特定权限。
+这使得你可以根据需要向特定 ServiceAccount 授予特定权限。
 细粒度的角色绑定可带来更好的安全性，但需要更多精力管理。
-粗粒度的授权可能导致服务账户被授予不必要的 API 访问权限（甚至导致潜在的权限提升），
+粗粒度的授权可能导致 ServiceAccount 被授予不必要的 API 访问权限（甚至导致潜在的权限提升），
 但更易于管理。
 
 <!--
@@ -1821,9 +2089,9 @@ In order from most secure to least secure, the approaches are:
    For example, grant read-only permission within "my-namespace" to the "my-sa" service account:
    -->
    这要求应用在其 Pod 规约中指定 `serviceAccountName`，
-   并额外创建服务账户（包括通过 API、应用程序清单、`kubectl create serviceaccount` 等）。  
+   并额外创建服务账户（包括通过 API、应用程序清单、`kubectl create serviceaccount` 等）。
 
-   例如，在名字空间 "my-namespace" 中授予服务账户 "my-sa" 只读权限：
+   例如，在名字空间 “my-namespace” 中授予服务账户 “my-sa” 只读权限：
 
    ```shell
    kubectl create rolebinding my-sa-view \
@@ -1835,25 +2103,24 @@ In order from most secure to least secure, the approaches are:
 <!--
 2. Grant a role to the "default" service account in a namespace
 -->
-2. 将角色授予某名字空间中的 "default" 服务账户
+2. 将角色授予某名字空间中的 “default” 服务账户
 
    <!--
    If an application does not specify a `serviceAccountName`, it uses the "default" service account.
+   -->
+   如果某应用没有指定 `serviceAccountName`，那么它将使用 “default” 服务账户。
 
    {{< note >}}
+   <!--
    Permissions given to the "default" service account are available to any pod
    in the namespace that does not specify a `serviceAccountName`.
+   -->
+   "default" 服务账户所具有的权限会被授予给名字空间中所有未指定 `serviceAccountName` 的 Pod。
    {{< /note >}}
 
+   <!--
    For example, grant read-only permission within "my-namespace" to the "default" service account:
    -->
-   如果某应用没有指定 `serviceAccountName`，那么它将使用 "default" 服务账户。
-
-   {{< note >}}
-   "default" 服务账户所具有的权限会被授予给名字空间中所有未指定
-   `serviceAccountName` 的 Pod。
-   {{< /note >}}
-
    例如，在名字空间 "my-namespace" 中授予服务账户 "default" 只读权限：
 
    ```shell
@@ -1868,27 +2135,26 @@ In order from most secure to least secure, the approaches are:
    "default" service account in the `kube-system` namespace.
    To allow those add-ons to run with super-user access, grant cluster-admin
    permissions to the "default" service account in the `kube-system` namespace.
-
-   {{< note >}}
-   Enabling this means the `kube-system` namespace contains Secrets
-   that grant super-user access to the API.
-   {{< /note >}}
    -->
-   许多[插件组件](/zh/docs/concepts/cluster-administration/addons/) 在 `kube-system`
-   名字空间以 "default" 服务账户运行。
+   许多[插件组件](/zh-cn/docs/concepts/cluster-administration/addons/)在 `kube-system`
+   名字空间以 “default” 服务账户运行。
    要允许这些插件组件以超级用户权限运行，需要将集群的 `cluster-admin` 权限授予
-   `kube-system` 名字空间中的 "default" 服务账户。
+   `kube-system` 名字空间中的 “default” 服务账户。
 
-   {{< note >}}
-   启用这一配置意味着在 `kube-system` 名字空间中包含以超级用户账号来访问 API
-   的 Secrets。
-   {{< /note >}}
+   {{< caution >}}
+   <!--
+   Enabling this means the `kube-system` namespace contains Secrets
+   that grant super-user access to your cluster's API.
+   -->
+   启用这一配置意味着在 `kube-system` 名字空间中包含以超级用户账号来访问集群 API 的 Secret。
+   {{< /caution >}}
 
    ```shell
    kubectl create clusterrolebinding add-on-cluster-admin \
      --clusterrole=cluster-admin \
      --serviceaccount=kube-system:default
    ```
+
 <!--
 3. Grant a role to all service accounts in a namespace
 
@@ -1902,7 +2168,7 @@ In order from most secure to least secure, the approaches are:
    如果你想要名字空间中所有应用都具有某角色，无论它们使用的什么服务账户，
    可以将角色授予该名字空间的服务账户组。
 
-   例如，在名字空间 "my-namespace" 中的只读权限授予该名字空间中的所有服务账户：
+   例如，在名字空间 “my-namespace” 中的只读权限授予该名字空间中的所有服务账户：
 
    ```shell
    kubectl create rolebinding serviceaccounts-view \
@@ -1924,7 +2190,6 @@ In order from most secure to least secure, the approaches are:
 
    例如，为集群范围的所有服务账户授予跨所有名字空间的只读权限：
 
-
    ```shell
    kubectl create clusterrolebinding serviceaccounts-view \
      --clusterrole=view \
@@ -1935,18 +2200,17 @@ In order from most secure to least secure, the approaches are:
 5. Grant super-user access to all service accounts cluster-wide (strongly discouraged)
 
    If you don't care about partitioning permissions at all, you can grant super-user access to all service accounts.
-
-   {{< warning >}}
-   This allows any application full access to your cluster, and also grants
-   any user with read access to Secrets (or the ability to create any pod)
-   full access to your cluster.
-   {{< /warning >}}
 -->
 5. 授予超级用户访问权限给集群范围内的所有服务帐户（强烈不鼓励）
 
-   如果你不关心如何区分权限，你可以将超级用户访问权限授予所有服务账户。
+   如果你不在乎如何区分权限，你可以将超级用户访问权限授予所有服务账户。
 
    {{< warning >}}
+   <!--
+   This allows any application full access to your cluster, and also grants
+   any user with read access to Secrets (or the ability to create any pod)
+   full access to your cluster.
+   -->
    这样做会允许所有应用都对你的集群拥有完全的访问权限，并将允许所有能够读取
    Secret（或创建 Pod）的用户对你的集群有完全的访问权限。
    {{< /warning >}}
@@ -1957,13 +2221,51 @@ In order from most secure to least secure, the approaches are:
      --group=system:serviceaccounts
    ```
 
+<!--
+## Write access for Endpoints
+
+Kubernetes clusters created before Kubernetes v1.22 include write access to
+Endpoints in the aggregated "edit" and "admin" roles. As a mitigation for
+[CVE-2021-25740](https://github.com/kubernetes/kubernetes/issues/103675), this
+access is not part of the aggregated roles in clusters that you create using
+Kubernetes v1.22 or later.
+-->
+## Endpoints 写权限 {#write-access-for-endpoints}
+
+在 Kubernetes v1.22 之前版本创建的集群里，
+“edit” 和 “admin” 聚合角色包含对 Endpoints 的写权限。
+作为 [CVE-2021-25740](https://github.com/kubernetes/kubernetes/issues/103675) 的缓解措施，
+此访问权限不包含在 Kubernetes 1.22 以及更高版本集群的聚合角色里。
+
+<!--
+Existing clusters that have been upgraded to Kubernetes v1.22 will not be
+subject to this change. The [CVE
+announcement](https://github.com/kubernetes/kubernetes/issues/103675) includes
+guidance for restricting this access in existing clusters.
+
+If you want new clusters to retain this level of access in the aggregated roles,
+you can create the following ClusterRole:
+-->
+升级到 Kubernetes v1.22 版本的现有集群不会包括此变化。
+[CVE 公告](https://github.com/kubernetes/kubernetes/issues/103675)包含了在现有集群里限制此访问权限的指引。
+
+如果你希望在新集群的聚合角色里保留此访问权限，你可以创建下面的 ClusterRole：
+
+{{< codenew file="access/endpoints-aggregated.yaml" >}}
+
 <!--
 ## Upgrading from ABAC
 
 Clusters that originally ran older Kubernetes versions often used
 permissive ABAC policies, including granting full API access to all
 service accounts.
+-->
+## 从 ABAC 升级 {#upgrading-from-abac}
 
+原来运行较老版本 Kubernetes 的集群通常会使用限制宽松的 ABAC 策略，
+包括授予所有服务帐户全权访问 API 的能力。
+
+<!--
 Default RBAC policies grant scoped permissions to control-plane components, nodes,
 and controllers, but grant *no permissions* to service accounts outside the `kube-system` namespace
 (beyond discovery permissions given to all authenticated users).
@@ -1971,32 +2273,25 @@ and controllers, but grant *no permissions* to service accounts outside the `kub
 While far more secure, this can be disruptive to existing workloads expecting to automatically receive API permissions.
 Here are two approaches for managing this transition:
 -->
-## 从 ABAC 升级
-
-原来运行较老版本 Kubernetes 的集群通常会使用限制宽松的 ABAC 策略，
-包括授予所有服务帐户全权访问 API 的能力。
-
 默认的 RBAC 策略为控制面组件、节点和控制器等授予有限的权限，但不会为
-`kube-system` 名字空间外的服务账户授权
-（除了授予所有认证用户的发现权限之外）。
+`kube-system` 名字空间外的服务账户授权（除了授予所有认证用户的发现权限之外）。
 
 这样做虽然安全得多，但可能会干扰期望自动获得 API 权限的现有工作负载。
 这里有两种方法来完成这种转换:
 
 <!--
-### Parallel Authorizers
+### Parallel authorizers
 
 Run both the RBAC and ABAC authorizers, and specify a policy file that contains
-[the legacy ABAC policy](/docs/reference/access-authn-authz/abac/#policy-file-format):
+the [legacy ABAC policy](/docs/reference/access-authn-authz/abac/#policy-file-format):
 -->
 ### 并行鉴权    {#parallel-authorizers}
 
-同时运行 RBAC 和 ABAC 鉴权模式, 并指定包含
-[现有的 ABAC 策略](/zh/docs/reference/access-authn-authz/abac/#policy-file-format)
-的策略文件：
+同时运行 RBAC 和 ABAC 鉴权模式，
+并指定包含[现有的 ABAC 策略](/zh-cn/docs/reference/access-authn-authz/abac/#policy-file-format)的策略文件：
 
 ```shell
---authorization-mode=RBAC,ABAC --authorization-policy-file=mypolicy.json
+--authorization-mode=...,RBAC,ABAC --authorization-policy-file=mypolicy.json
 ```
 
 <!--
@@ -2010,30 +2305,30 @@ RBAC 鉴权组件尝试对该 API 请求鉴权。如果 RBAC 也拒绝了该 API
 鉴权组件。这意味着被 RBAC 或 ABAC 策略所允许的任何请求都是被允许的请求。
 
 <!--
-When the apiserver is run with a log level of 5 or higher for the RBAC component
-(`--vmodule=rbac*=5` or `--v=5`), you can see RBAC details in the apiserver log
-(prefixed with `RBAC:`).
+When the kube-apiserver is run with a log level of 5 or higher for the RBAC component
+(`--vmodule=rbac*=5` or `--v=5`), you can see RBAC denials in the API server log
+(prefixed with `RBAC`).
 You can use that information to determine which roles need to be granted to which users, groups, or service accounts.
 -->
-如果 API 服务器启动时，RBAC 组件的日志级别为 5 或更高（`--vmodule=rbac*=5` 或 `--v=5`），
-你可以在 API 服务器的日志中看到 RBAC 的细节 （前缀 `RBAC:`）
+如果 kube-apiserver 启动时，RBAC 组件的日志级别为 5 或更高（`--vmodule=rbac*=5` 或 `--v=5`），
+你可以在 API 服务器的日志中看到 RBAC  拒绝的细节（前缀 `RBAC`）
 你可以使用这些信息来确定需要将哪些角色授予哪些用户、组或服务帐户。
 
 <!--
 Once you have [granted roles to service accounts](#service-account-permissions) and workloads
 are running with no RBAC denial messages in the server logs, you can remove the ABAC authorizer.
 -->
-一旦你[将角色授予服务账户](#service-account-permissions) ，工作负载运行时
-在服务器日志中没有出现 RBAC 拒绝消息，就可以删除 ABAC 鉴权器。
+一旦你[将角色授予服务账户](#service-account-permissions)且工作负载运行时，
+服务器日志中没有出现 RBAC 拒绝消息，就可以删除 ABAC 鉴权器。
 
 <!--
-## Permissive RBAC Permissions
+### Permissive RBAC permissions
 
-You can replicate a permissive policy using RBAC role bindings.
+You can replicate a permissive ABAC policy using RBAC role bindings.
 -->
-## 宽松的 RBAC 权限   {#permissive-rbac-permissions}
+### 宽松的 RBAC 权限   {#permissive-rbac-permissions}
 
-你可以使用 RBAC 角色绑定在多个场合使用宽松的策略。
+你可以使用 RBAC 角色绑定复制宽松的 ABAC 策略。
 
 {{< warning >}}
 <!--
@@ -2059,6 +2354,4 @@ kubectl create clusterrolebinding permissive-binding \
 After you have transitioned to use RBAC, you should adjust the access controls
 for your cluster to ensure that these meet your information security needs.
 -->
-在你完成到 RBAC 的迁移后，应该调整集群的访问控制，确保相关的策略满足你的
-信息安全需求。
-
+在你完成到 RBAC 的迁移后，应该调整集群的访问控制，确保相关的策略满足你的信息安全需求。
diff --git a/content/zh/docs/reference/access-authn-authz/service-accounts-admin.md b/content/zh-cn/docs/reference/access-authn-authz/service-accounts-admin.md
similarity index 88%
rename from content/zh/docs/reference/access-authn-authz/service-accounts-admin.md
rename to content/zh-cn/docs/reference/access-authn-authz/service-accounts-admin.md
index 451c8d4b3b..74af35317d 100644
--- a/content/zh/docs/reference/access-authn-authz/service-accounts-admin.md
+++ b/content/zh-cn/docs/reference/access-authn-authz/service-accounts-admin.md
@@ -17,14 +17,14 @@ weight: 50
 
 <!-- overview -->
 <!--
-This is a Cluster Administrator guide to service accounts. You should be familiar with 
+This is a Cluster Administrator guide to service accounts. You should be familiar with
 [configuring Kubernetes service accounts](/docs/tasks/configure-pod-container/configure-service-account/).
 
 Support for authorization and user accounts is planned but incomplete. Sometimes
 incomplete features are referred to in order to better describe service accounts.
 -->
 这是一篇针对服务账号的集群管理员指南。你应该熟悉
-[配置 Kubernetes 服务账号](/zh/docs/tasks/configure-pod-container/configure-service-account/)。
+[配置 Kubernetes 服务账号](/zh-cn/docs/tasks/configure-pod-container/configure-service-account/)。
 
 对鉴权和用户账号的支持已在规划中，当前并不完备。
 为了更好地描述服务账号，有时这些不完善的特性也会被提及。
@@ -56,16 +56,15 @@ Kubernetes 区分用户账号和服务账号的概念，主要基于以下原因
   accounts for components of that system. Because service accounts can be created
   without many constraints and have namespaced names, such config is portable.
 -->
-- 用户账号是针对人而言的。 服务账号是针对运行在 Pod 中的进程而言的。
-- 用户账号是全局性的。其名称跨集群中名字空间唯一的。服务账号是名字空间作用域的。
+- 用户账号是针对人而言的。而服务账号是针对运行在 Pod 中的进程而言的。
+- 用户账号是全局性的。其名称在某集群中的所有名字空间中必须是唯一的。服务账号是名字空间作用域的。
 - 通常情况下，集群的用户账号可能会从企业数据库进行同步，其创建需要特殊权限，
   并且涉及到复杂的业务流程。
-  服务账号创建有意做得更轻量，允许集群用户为了具体的任务创建服务账号 
-  以遵从权限最小化原则。
+  服务账号创建有意做得更轻量，允许集群用户为了具体的任务创建服务账号以遵从权限最小化原则。
 - 对人员和服务账号审计所考虑的因素可能不同。
-- 针对复杂系统的配置包可能包含系统组件相关的各种服务账号的定义。因为服务账号
-  的创建约束不多并且有名字空间域的名称，这种配置是很轻量的。
-
+- 针对复杂系统的配置包可能包含系统组件相关的各种服务账号的定义。
+  因为服务账号的创建约束不多并且有名字空间域的名称，这种配置是很轻量的。
+  
 <!--
 ## Service account automation
 
@@ -77,7 +76,7 @@ Three separate components cooperate to implement the automation around service a
 -->
 ## 服务账号的自动化   {#service-account-automation}
 
-三个独立组件协作完成服务账号相关的自动化：
+以下三个独立组件协作完成服务账号相关的自动化：
 
 - `ServiceAccount` 准入控制器
 - Token 控制器
@@ -95,11 +94,11 @@ It acts synchronously to modify pods as they are created or updated. When this p
 ### ServiceAccount 准入控制器   {#serviceaccount-admission-controller}
 
 对 Pod 的改动通过一个被称为
-[准入控制器](/zh/docs/reference/access-authn-authz/admission-controllers/)
+[准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/)
 的插件来实现。它是 API 服务器的一部分。
 当 Pod 被创建或更新时，它会同步地修改 Pod。
-如果该插件处于激活状态（在大多数发行版中都是默认激活的），当 Pod 被创建
-或更新时它会进行以下操作：
+如果该插件处于激活状态（在大多数发行版中都是默认激活的），
+当 Pod 被创建或更新时它会进行以下操作：
 
 <!--
 1. If the pod does not have a `ServiceAccount` set, it sets the `ServiceAccount` to `default`.
@@ -120,9 +119,9 @@ It acts synchronously to modify pods as they are created or updated. When this p
 1. 如果前一步中为服务账号令牌创建了卷，则为 Pod 中的每个容器添加一个
    `volumeSource`，挂载在其 `/var/run/secrets/kubernetes.io/serviceaccount`
    目录下。
-1. 如果 Pod 不包含 `imagePullSecrets` 设置，将 `ServiceAccount` 所引用
-   的服务账号中的 `imagePullSecrets` 信息添加到 Pod 中。
-
+1. 如果 Pod 不包含 `imagePullSecrets` 设置，将 `ServiceAccount`
+   所引用的服务账号中的 `imagePullSecrets` 信息添加到 Pod 中。
+   
 <!--
 #### Bound Service Account Token Volume
 -->
@@ -133,9 +132,8 @@ It acts synchronously to modify pods as they are created or updated. When this p
 <!--
 The ServiceAccount admission controller will add the following projected volume instead of a Secret-based volume for the non-expiring service account token created by Token Controller.
 -->
-当 `BoundServiceAccountTokenVolume`
-ServiceAccount 准入控制器将添加如下投射卷，而不是为令牌控制器
-所生成的不过期的服务账号令牌而创建的基于 Secret 的卷。
+ServiceAccount 准入控制器将添加如下投射卷，
+而不是为令牌控制器所生成的不过期的服务账号令牌而创建的基于 Secret 的卷。
 
 ```yaml
 - name: kube-api-access-<随机后缀>
@@ -143,7 +141,7 @@ ServiceAccount 准入控制器将添加如下投射卷，而不是为令牌控
     defaultMode: 420 # 0644
     sources:
       - serviceAccountToken:
-          expirationSeconds: 3600
+          expirationSeconds: 3607
           path: token
       - configMap:
           items:
@@ -162,7 +160,7 @@ ServiceAccount 准入控制器将添加如下投射卷，而不是为令牌控
 This projected volume consists of three sources:
 
 1. A ServiceAccountToken acquired from kube-apiserver via TokenRequest API. It will expire after 1 hour by default or when the pod is deleted. It is bound to the pod and has kube-apiserver as the audience.
-1. A ConfigMap containing a CA bundle used for verifying connections to the kube-apiserver. This feature depends on the `RootCAConfigMap` feature gate, which publishes a "kube-root-ca.crt" ConfigMap to every namespace. `RootCAConfigMap` feature gate is graduated to GA in 1.21 and default to true. (This feature will be removed from --feature-gate arg in 1.22).
+1. A ConfigMap containing a CA bundle used for verifying connections to the kube-apiserver. This feature depends on the `RootCAConfigMap` feature gate, which publishes a "kube-root-ca.crt" ConfigMap to every namespace. `RootCAConfigMap` feature gate is graduated to GA in 1.21 and default to true. (This flag will be removed from --feature-gate arg in 1.22)
 1. A DownwardAPI that references the namespace of the pod.
 -->
 此投射卷有三个数据源：
@@ -180,7 +178,7 @@ This projected volume consists of three sources:
 <!--
 See more details about [projected volumes](/docs/tasks/configure-pod-container/configure-projected-volume-storage/).
 -->
-参阅[投射卷](/zh/docs/tasks/configure-pod-container/configure-projected-volume-storage/)
+参阅[投射卷](/zh-cn/docs/tasks/configure-pod-container/configure-projected-volume-storage/)
 了解进一步的细节。
 
 <!--
@@ -252,7 +250,7 @@ type: kubernetes.io/service-account-token
 ```
 
 ```shell
-kubectl create -f ./secret.json
+kubectl create -f ./secret.yaml
 kubectl describe secret mysecretname
 ```
 
@@ -273,6 +271,6 @@ ensures a ServiceAccount named "default" exists in every active namespace.
 -->
 ### 服务账号控制器   {#serviceaccount-controller}
 
-服务账号控制器管理各名字空间下的 ServiceAccount 对象，并且保证每个活跃的
-名字空间下存在一个名为 "default" 的 ServiceAccount。
+服务账号控制器管理各名字空间下的 ServiceAccount 对象，
+并且保证每个活跃的名字空间下存在一个名为 "default" 的 ServiceAccount。
 
diff --git a/content/zh/docs/reference/access-authn-authz/webhook.md b/content/zh-cn/docs/reference/access-authn-authz/webhook.md
similarity index 75%
rename from content/zh/docs/reference/access-authn-authz/webhook.md
rename to content/zh-cn/docs/reference/access-authn-authz/webhook.md
index 8cfdc91592..564eee2978 100644
--- a/content/zh/docs/reference/access-authn-authz/webhook.md
+++ b/content/zh-cn/docs/reference/access-authn-authz/webhook.md
@@ -1,15 +1,9 @@
 ---
-reviewers:
-- erictune
-- lavalamp
-- deads2k
-- liggitt
 title: Webhook 模式
 content_type: concept
 weight: 95
 ---
 <!--
----
 reviewers:
 - erictune
 - lavalamp
@@ -18,17 +12,19 @@ reviewers:
 title: Webhook Mode
 content_type: concept
 weight: 95
----
 -->
 
 <!-- overview -->
+
 <!--
 A WebHook is an HTTP callback: an HTTP POST that occurs when something happens; a simple event-notification via HTTP POST. A web application implementing WebHooks will POST a message to a URL when certain things happen.
 -->
-WebHook 是一种 HTTP 回调：某些条件下触发的 HTTP POST 请求；通过 HTTP POST 发送的简单事件通知。一个基于 web 应用实现的 WebHook 会在特定事件发生时把消息发送给特定的 URL。
+WebHook 是一种 HTTP 回调：某些条件下触发的 HTTP POST 请求；通过 HTTP POST
+发送的简单事件通知。一个基于 web 应用实现的 WebHook 会在特定事件发生时把消息发送给特定的 URL。
 
 
 <!-- body -->
+
 <!--
 When specified, mode `Webhook` causes Kubernetes to query an outside REST
 service when determining user privileges.
@@ -38,20 +34,23 @@ service when determining user privileges.
 <!--
 ## Configuration File Format
 -->
-## 配置文件格式
+## 配置文件格式 {#configuration-file-format}
 
 <!--
 Mode `Webhook` requires a file for HTTP configuration, specify by the
 `--authorization-webhook-config-file=SOME_FILENAME` flag.
 -->
-`Webhook` 模式需要一个 HTTP 配置文件，通过 `--authorization-webhook-config-file=SOME_FILENAME` 的参数声明。
+`Webhook` 模式需要一个 HTTP 配置文件，通过
+`--authorization-webhook-config-file=SOME_FILENAME` 的参数声明。
 
 <!--
 The configuration file uses the [kubeconfig](/docs/tasks/access-application-cluster/configure-access-multiple-clusters/)
 file format. Within the file "users" refers to the API Server webhook and
 "clusters" refers to the remote service.
 -->
-配置文件的格式使用 [kubeconfig](/zh/docs/tasks/access-application-cluster/configure-access-multiple-clusters/)。在文件中，"users" 代表着 API 服务器的 webhook，而 "cluster" 代表着远程服务。
+配置文件的格式使用
+[kubeconfig](/zh-cn/docs/tasks/access-application-cluster/configure-access-multiple-clusters/)。
+在该文件中，“users” 代表着 API 服务器的 webhook，而 “cluster” 代表着远程服务。
 
 <!--
 A configuration example which uses HTTPS client auth:
@@ -122,7 +121,7 @@ contexts:
 <!--
 ## Request Payloads
 -->
-## 请求载荷
+## 请求载荷 {#request-payloads}
 
 <!--
 When faced with an authorization decision, the API Server POSTs a JSON-
@@ -131,7 +130,8 @@ action. This object contains fields describing the user attempting to make the
 request, and either details about the resource being accessed or requests
 attributes.
 -->
-在做认证决策时，API 服务器会 POST 一个 JSON 序列化的 `authorization.k8s.io/v1beta1` `SubjectAccessReview` 对象来描述这个动作。这个对象包含了描述用户请求的字段，同时也包含了需要被访问资源或请求特征的具体信息。
+在做认证决策时，API 服务器会 POST 一个 JSON 序列化的 `authorization.k8s.io/v1beta1` `SubjectAccessReview`
+对象来描述这个动作。这个对象包含了描述用户请求的字段，同时也包含了需要被访问资源或请求特征的具体信息。
 
 <!--
 Note that webhook API objects are subject to the same [versioning compatibility rules](/docs/concepts/overview/kubernetes-api/)
@@ -140,7 +140,10 @@ compatibility promises for beta objects and check the "apiVersion" field of the
 request to ensure correct deserialization. Additionally, the API Server must
 enable the `authorization.k8s.io/v1beta1` API extensions group (`--runtime-config=authorization.k8s.io/v1beta1=true`).
 -->
-需要注意的是 webhook API 对象与其他 Kubernetes API 对象一样都同样都服从[版本兼容规则](/zh/docs/concepts/overview/kubernetes-api/)。实施人员应该了解 beta 对象的更宽松的兼容性承诺，同时确认请求的 "apiVersion" 字段能被正确地反序列化。此外，API 服务器还必须启用 `authorization.k8s.io/v1beta1` API 扩展组 (`--runtime-config=authorization.k8s.io/v1beta1=true`)。
+需要注意的是 webhook API 对象与其他 Kubernetes API
+对象一样都同样都遵从[版本兼容规则](/zh-cn/docs/concepts/overview/kubernetes-api/)。
+实施人员应该了解 beta 对象的更宽松的兼容性承诺，同时确认请求的 "apiVersion" 字段能被正确地反序列化。
+此外，API 服务器还必须启用 `authorization.k8s.io/v1beta1` API 扩展组 (`--runtime-config=authorization.k8s.io/v1beta1=true`)。
 
 <!--
 An example request body:
@@ -173,6 +176,7 @@ the request and respond to either allow or disallow access. The response body's
 `spec` field is ignored and may be omitted. A permissive response would return:
 -->
 期待远程服务填充请求的 `status` 字段并响应允许或禁止访问。响应主体的 `spec` 字段被忽略，可以省略。允许的响应将返回:
+
 ```json
 {
   "apiVersion": "authorization.k8s.io/v1beta1",
@@ -195,7 +199,8 @@ authorizers are configured, they are given a chance to allow the request.
 If there are no other authorizers, or none of them allow the request, the
 request is forbidden. The webhook would return:
 -->
-在大多数情况下，第一种方法是首选方法，它指示授权 webhook 不允许或对请求"无意见"，但是，如果配置了其他授权者，则可以给他们机会允许请求。如果没有其他授权者，或者没有一个授权者，则该请求被禁止。webhook 将返回:
+在大多数情况下，第一种方法是首选方法，它指示授权 webhook 不允许或对请求 “无意见”。
+但是，如果配置了其他授权者，则可以给他们机会允许请求。如果没有其他授权者，或者没有一个授权者，则该请求被禁止。webhook 将返回：
 
 ```json
 {
@@ -214,7 +219,7 @@ configured authorizers. This should only be used by webhooks that have
 detailed knowledge of the full authorizer configuration of the cluster.
 The webhook would return:
 -->
-第二种方法立即拒绝其他配置的授权者进行短路评估。仅应由对集群的完整授权者配置有详细了解的 webhook 使用。webhook 将返回:
+第二种方法立即拒绝其他配置的授权者进行短路评估。仅应由对集群的完整授权者配置有详细了解的 webhook 使用。webhook 将返回：
 
 ```json
 {
@@ -252,20 +257,22 @@ Access to non-resource paths are sent as:
 ```
 
 <!--
-Non-resource paths include: `/api`, `/apis`, `/metrics`, `/resetMetrics`,
-`/logs`, `/debug`, `/healthz`, `/swagger-ui/`, `/swaggerapi/`, `/ui`, and
+Non-resource paths include: `/api`, `/apis`, `/metrics`,
+`/logs`, `/debug`, `/healthz`, `/livez`, `/openapi/v2`, `/readyz`, and
 `/version.` Clients require access to `/api`, `/api/*`, `/apis`, `/apis/*`,
 and `/version` to discover what resources and versions are present on the server.
 Access to other non-resource paths can be disallowed without restricting access
 to the REST api.
 -->
-非资源类的路径包括：`/api`, `/apis`, `/metrics`, `/resetMetrics`,
-`/logs`, `/debug`, `/healthz`, `/swagger-ui/`, `/swaggerapi/`, `/ui`, 和
-`/version`。客户端需要访问 `/api`, `/api/*`, `/apis`, `/apis/*`, 和 `/version` 以便
+非资源类的路径包括：`/api`、`/apis`、`/metrics`、`/logs`、`/debug`、
+`/healthz`、`/livez`、`/openapi/v2`、`/readyz`、和 `/version`。
+客户端需要访问 `/api`、`/api/*`、`/apis`、`/apis/*` 和 `/version` 以便
 能发现服务器上有什么资源和版本。对于其他非资源类的路径访问在没有 REST API 访问限制的情况下拒绝。
 
 <!--
 For further documentation refer to the authorization.v1beta1 API objects and
-[webhook.go](https://github.com/kubernetes/kubernetes/blob/{{< param "githubbranch" >}}/staging/src/k8s.io/apiserver/plugin/pkg/authorizer/webhook/webhook.go).
+[webhook.go](https://github.com/kubernetes/kubernetes/blob/master/staging/src/k8s.io/apiserver/plugin/pkg/authorizer/webhook/webhook.go).
 -->
-更多信息可以参考 authorization.v1beta1 API 对象和[webhook.go](https://github.com/kubernetes/kubernetes/blob/{{< param "githubbranch" >}}/staging/src/k8s.io/apiserver/plugin/pkg/authorizer/webhook/webhook.go)。
+更多信息可以参考 authorization.v1beta1 API 对象和
+[webhook.go](https://github.com/kubernetes/kubernetes/blob/master/staging/src/k8s.io/apiserver/plugin/pkg/authorizer/webhook/webhook.go)。
+
diff --git a/content/zh/docs/reference/command-line-tools-reference/_index.md b/content/zh-cn/docs/reference/command-line-tools-reference/_index.md
similarity index 100%
rename from content/zh/docs/reference/command-line-tools-reference/_index.md
rename to content/zh-cn/docs/reference/command-line-tools-reference/_index.md
diff --git a/content/zh/docs/reference/command-line-tools-reference/feature-gates.md b/content/zh-cn/docs/reference/command-line-tools-reference/feature-gates.md
similarity index 63%
rename from content/zh/docs/reference/command-line-tools-reference/feature-gates.md
rename to content/zh-cn/docs/reference/command-line-tools-reference/feature-gates.md
index dd038fccaf..5957e2f779 100644
--- a/content/zh/docs/reference/command-line-tools-reference/feature-gates.md
+++ b/content/zh-cn/docs/reference/command-line-tools-reference/feature-gates.md
@@ -36,16 +36,17 @@ Feature gates are a set of key=value pairs that describe Kubernetes features.
 You can turn these features on or off using the `--feature-gates` command line flag
 on each Kubernetes component.
 -->
-## 概述
+## 概述 {#overview}
 
 特性门控是描述 Kubernetes 特性的一组键值对。你可以在 Kubernetes 的各个组件中使用
-`--feature-gates` flag 来启用或禁用这些特性。
+`--feature-gates` 标志来启用或禁用这些特性。
 
 <!--
 Each Kubernetes component lets you enable or disable a set of feature gates that
 are relevant to that component.
 Use `-h` flag to see a full set of feature gates for all components.
-To set feature gates for a component, such as kubelet, use the `--feature-gates` flag assigned to a list of feature pairs:
+To set feature gates for a component, such as kubelet, use the `--feature-gates`
+flag assigned to a list of feature pairs:
 -->
 每个 Kubernetes 组件都支持启用或禁用与该组件相关的一组特性门控。
 使用 `-h` 参数来查看所有组件支持的完整特性门控。
@@ -53,7 +54,7 @@ To set feature gates for a component, such as kubelet, use the `--feature-gates`
 传递一个特性设置键值对列表：
 
 ```shell
---feature-gates="...,GracefulNodeShutdown=true"
+--feature-gates=...,GracefulNodeShutdown=true
 ```
 
 <!--
@@ -101,153 +102,154 @@ different Kubernetes components.
 |---------|---------|-------|---------------|---------------|
 | `APIListChunking` | `false` | Alpha | 1.8 | 1.8 |
 | `APIListChunking` | `true` | Beta | 1.9 | |
-| `APIPriorityAndFairness` | `false` | Alpha | 1.17 | 1.19 |
+| `APIPriorityAndFairness` | `false` | Alpha | 1.18 | 1.19 |
 | `APIPriorityAndFairness` | `true` | Beta | 1.20 | |
 | `APIResponseCompression` | `false` | Alpha | 1.7 | 1.15 |
 | `APIResponseCompression` | `true` | Beta | 1.16 | |
 | `APIServerIdentity` | `false` | Alpha | 1.20 | |
 | `APIServerTracing` | `false` | Alpha | 1.22 | |
 | `AllowInsecureBackendProxy` | `true` | Beta | 1.17 | |
-| `AnyVolumeDataSource` | `false` | Alpha | 1.18 | |
+| `AnyVolumeDataSource` | `false` | Alpha | 1.18 | 1.23 |
+| `AnyVolumeDataSource` | `true` | Beta | 1.24 | |
 | `AppArmor` | `true` | Beta | 1.4 | |
-| `ControllerManagerLeaderMigration` | `false` | Alpha | 1.21 | |
 | `CPUManager` | `false` | Alpha | 1.8 | 1.9 |
 | `CPUManager` | `true` | Beta | 1.10 | |
-| `CPUManagerPolicyOptions` | `false` | Alpha | 1.22 | |
+| `CPUManagerPolicyAlphaOptions` | `false` | Alpha | 1.23 | |
+| `CPUManagerPolicyBetaOptions` | `true` | Beta | 1.23 | |
+| `CPUManagerPolicyOptions` | `false` | Alpha | 1.22 | 1.22 |
+| `CPUManagerPolicyOptions` | `true` | Beta | 1.23 | |
 | `CSIInlineVolume` | `false` | Alpha | 1.15 | 1.15 |
 | `CSIInlineVolume` | `true` | Beta | 1.16 | - |
 | `CSIMigration` | `false` | Alpha | 1.14 | 1.16 |
 | `CSIMigration` | `true` | Beta | 1.17 | |
-| `CSIMigrationAWS` | `false` | Alpha | 1.14 | |
-| `CSIMigrationAWS` | `false` | Beta | 1.17 | |
-| `CSIMigrationAzureDisk` | `false` | Alpha | 1.15 | 1.18 |
-| `CSIMigrationAzureDisk` | `false` | Beta | 1.19 | |
+| `CSIMigrationAWS` | `false` | Alpha | 1.14 | 1.16 |
+| `CSIMigrationAWS` | `false` | Beta | 1.17 | 1.22 |
+| `CSIMigrationAWS` | `true` | Beta | 1.23 | |
 | `CSIMigrationAzureFile` | `false` | Alpha | 1.15 | 1.19 |
-| `CSIMigrationAzureFile` | `false` | Beta | 1.21 | |
+| `CSIMigrationAzureFile` | `false` | Beta | 1.21 | 1.23 |
+| `CSIMigrationAzureFile` | `true` | Beta | 1.24 | |
 | `CSIMigrationGCE` | `false` | Alpha | 1.14 | 1.16 |
-| `CSIMigrationGCE` | `false` | Beta | 1.17 | |
-| `CSIMigrationOpenStack` | `false` | Alpha | 1.14 | 1.17 |
-| `CSIMigrationOpenStack` | `true` | Beta | 1.18 | |
+| `CSIMigrationGCE` | `false` | Beta | 1.17 | 1.22 |
+| `CSIMigrationGCE` | `true` | Beta | 1.23 | |
 | `CSIMigrationvSphere` | `false` | Beta | 1.19 | |
-| `CSIStorageCapacity` | `false` | Alpha | 1.19 | 1.20 |
-| `CSIStorageCapacity` | `true` | Beta | 1.21 | |
-| `CSIVolumeFSGroupPolicy` | `false` | Alpha | 1.19 | 1.19 |
-| `CSIVolumeFSGroupPolicy` | `true` | Beta | 1.20 | |
+| `CSIMigrationPortworx` | `false` | Alpha | 1.23 | |
+| `csiMigrationRBD` | `false` | Alpha | 1.23 | |
 | `CSIVolumeHealth` | `false` | Alpha | 1.21 | |
-| `CSRDuration` | `true` | Beta | 1.22 | |
-| `ConfigurableFSGroupPolicy` | `false` | Alpha | 1.18 | 1.19 |
-| `ConfigurableFSGroupPolicy` | `true` | Beta | 1.20 | |
-| `ControllerManagerLeaderMigration` | `false` | Alpha | 1.21 | 1.21 |
-| `ControllerManagerLeaderMigration` | `true` | Beta | 1.22 | |
+| `ContextualLogging` | `false` | Alpha | 1.24 | |
 | `CustomCPUCFSQuotaPeriod` | `false` | Alpha | 1.12 | |
+| `CustomResourceValidationExpressions` | `false` | Alpha | 1.23 | |
 | `DaemonSetUpdateSurge` | `false` | Alpha | 1.21 | 1.21 |
 | `DaemonSetUpdateSurge` | `true` | Beta | 1.22 | |
-| `DefaultPodTopologySpread` | `false` | Alpha | 1.19 | 1.19 |
-| `DefaultPodTopologySpread` | `true` | Beta | 1.20 | |
-| `DelegateFSGroupToCSIDriver` | `false` | Alpha | 1.22 | |
+| `DelegateFSGroupToCSIDriver` | `false` | Alpha | 1.22 | 1.22 |
+| `DelegateFSGroupToCSIDriver` | `true` | Beta | 1.23 | |
 | `DevicePlugins` | `false` | Alpha | 1.8 | 1.9 |
 | `DevicePlugins` | `true` | Beta | 1.10 | |
 | `DisableAcceleratorUsageMetrics` | `false` | Alpha | 1.19 | 1.19 |
 | `DisableAcceleratorUsageMetrics` | `true` | Beta | 1.20 | |
 | `DisableCloudProviders` | `false` | Alpha | 1.22 | |
+| `DisableKubeletCloudCredentialProviders` | `false` | Alpha | 1.23 | |
 | `DownwardAPIHugePages` | `false` | Alpha | 1.20 | 1.20 |
-| `DownwardAPIHugePages` | `false` | Beta | 1.21 | |
-| `EfficientWatchResumption` | `false` | Alpha | 1.20 | 1.20 |
-| `EfficientWatchResumption` | `true` | Beta | 1.21 | |
+| `DownwardAPIHugePages` | `false` | Beta | 1.21 | 1.21 |
+| `DownwardAPIHugePages` | `true` | Beta | 1.22 | |
 | `EndpointSliceTerminatingCondition` | `false` | Alpha | 1.20 | 1.21 |
 | `EndpointSliceTerminatingCondition` | `true` | Beta | 1.22 | |
-| `EphemeralContainers` | `false` | Alpha | 1.16 | |
-| `ExpandCSIVolumes` | `false` | Alpha | 1.14 | 1.15 |
-| `ExpandCSIVolumes` | `true` | Beta | 1.16 | |
+| `EphemeralContainers` | `false` | Alpha | 1.16 | 1.22 |
+| `EphemeralContainers` | `true` | Beta | 1.23 | |
 | `ExpandedDNSConfig` | `false` | Alpha | 1.22 | |
-| `ExpandInUsePersistentVolumes` | `false` | Alpha | 1.11 | 1.14 |
-| `ExpandInUsePersistentVolumes` | `true` | Beta | 1.15 | |
-| `ExpandPersistentVolumes` | `false` | Alpha | 1.8 | 1.10 |
-| `ExpandPersistentVolumes` | `true` | Beta | 1.11 | |
 | `ExperimentalHostUserNamespaceDefaulting` | `false` | Beta | 1.5 | |
-| `GenericEphemeralVolume` | `false` | Alpha | 1.19 | 1.20 |
-| `GenericEphemeralVolume` | `true` | Beta | 1.21 | |
 | `GracefulNodeShutdown` | `false` | Alpha | 1.20 | 1.20 |
 | `GracefulNodeShutdown` | `true` | Beta | 1.21 | |
+| `GracefulNodeShutdownBasedOnPodPriority` | `false` | Alpha | 1.23 | 1.23 |
+| `GracefulNodeShutdownBasedOnPodPriority` | `true` | Beta | 1.24 | |
+| `GRPCContainerProbe` | `false` | Alpha | 1.23 | 1.23 |
+| `GRPCContainerProbe` | `true` | Beta | 1.24 | |
+| `HonorPVReclaimPolicy` | `false` | Alpha | 1.23 |  |
 | `HPAContainerMetrics` | `false` | Alpha | 1.20 | |
 | `HPAScaleToZero` | `false` | Alpha | 1.16 | |
-| `IndexedJob` | `false` | Alpha | 1.21 | 1.21 |
-| `IndexedJob` | `true` | Beta | 1.22 | |
-| `JobTrackingWithFinalizers` | `false` | Alpha | 1.22 | |
-| `IngressClassNamespacedParams` | `false` | Alpha | 1.21 | 1.21 |
-| `IngressClassNamespacedParams` | `true` | Beta | 1.22 | |
+| `IdentifyPodOS` | `false` | Alpha | 1.23 | 1.23 |
+| `IdentifyPodOS` | `true` | Beta | 1.24 | |
 | `InTreePluginAWSUnregister` | `false` | Alpha | 1.21 | |
 | `InTreePluginAzureDiskUnregister` | `false` | Alpha | 1.21 | |
 | `InTreePluginAzureFileUnregister` | `false` | Alpha | 1.21 | |
 | `InTreePluginGCEUnregister` | `false` | Alpha | 1.21 | |
 | `InTreePluginOpenStackUnregister` | `false` | Alpha | 1.21 | |
+| `InTreePluginPortworxUnregister` | `false` | Alpha | 1.23 | |
+| `InTreePluginRBDUnregister` | `false` | Alpha | 1.23 | |
 | `InTreePluginvSphereUnregister` | `false` | Alpha | 1.21 | |
-| `IPv6DualStack` | `false` | Alpha | 1.15 | 1.20 |
-| `IPv6DualStack` | `true` | Beta | 1.21 | |
-| `JobTrackingWithFinalizers` | `false` | Alpha | 1.22 | |
-| `KubeletCredentialProviders` | `false` | Alpha | 1.20 | |
+| `JobMutableNodeSchedulingDirectives` | `true` | Beta | 1.23 | |
+| `JobReadyPods` | `false` | Alpha | 1.23 | 1.23 |
+| `JobReadyPods` | `true` | Beta | 1.24 | |
+| `JobTrackingWithFinalizers` | `false` | Alpha | 1.22 | 1.22 |
+| `JobTrackingWithFinalizers` | `true` | Beta | 1.23 | 1.23 |
+| `JobTrackingWithFinalizers` | `false` | Beta | 1.24 | |
+| `KubeletCredentialProviders` | `false` | Alpha | 1.20 | 1.23 |
+| `KubeletCredentialProviders` | `true` | Beta | 1.24 | |
+| `KubeletInUserNamespace` | `false` | Alpha | 1.22 | |
+| `KubeletPodResources` | `false` | Alpha | 1.13 | 1.14 |
+| `KubeletPodResources` | `true` | Beta | 1.15 | |
+| `KubeletPodResourcesGetAllocatable` | `false` | Alpha | 1.21 | 1.22 |
+| `KubeletPodResourcesGetAllocatable` | `true` | Beta | 1.23 | |
 | `LocalStorageCapacityIsolation` | `false` | Alpha | 1.7 | 1.9 |
 | `LocalStorageCapacityIsolation` | `true` | Beta | 1.10 | |
 | `LocalStorageCapacityIsolationFSQuotaMonitoring` | `false` | Alpha | 1.15 | |
 | `LogarithmicScaleDown` | `false` | Alpha | 1.21 | 1.21 |
 | `LogarithmicScaleDown` | `true` | Beta | 1.22 | |
-| `KubeletInUserNamespace` | `false` | Alpha | 1.22 | |
-| `KubeletPodResourcesGetAllocatable` | `false` | Alpha | 1.21 | |
+| `MaxUnavailableStatefulSet` | `false` | Alpha | 1.24 | |
 | `MemoryManager` | `false` | Alpha | 1.21 | 1.21 |
 | `MemoryManager` | `true` | Beta | 1.22 | |
 | `MemoryQoS` | `false` | Alpha | 1.22 | |
-| `MixedProtocolLBService` | `false` | Alpha | 1.20 | |
+| `MinDomainsInPodTopologySpread` | `false` | Alpha | 1.24 | |
+| `MixedProtocolLBService` | `false` | Alpha | 1.20 | 1.23 |
+| `MixedProtocolLBService` | `true` | Beta | 1.24 | |
 | `NetworkPolicyEndPort` | `false` | Alpha | 1.21 | 1.21 |
 | `NetworkPolicyEndPort` | `true` | Beta | 1.22 |  |
+| `NetworkPolicyStatus` | `false` | Alpha | 1.24 |  |
 | `NodeSwap` | `false` | Alpha | 1.22 | |
-| `NonPreemptingPriority` | `false` | Alpha | 1.15 | 1.18 |
-| `NonPreemptingPriority` | `true` | Beta | 1.19 | |
+| `NodeOutOfServiceVolumeDetach` | `false` | Alpha | 1.24 | |
+| `OpenAPIEnums` | `false` | Alpha | 1.23 | 1.23 |
+| `OpenAPIEnums` | `true` | Beta | 1.24 | |
+| `OpenAPIV3` | `false` | Alpha | 1.23 | 1.23 |
+| `OpenAPIV3` | `true` | Beta | 1.24 | |
+| `PodAndContainerStatsFromCRI` | `false` | Alpha | 1.23 | |
 | `PodDeletionCost` | `false` | Alpha | 1.21 | 1.21 |
 | `PodDeletionCost` | `true` | Beta | 1.22 | |
-| `PodAffinityNamespaceSelector` | `false` | Alpha | 1.21 | 1.21 |
-| `PodAffinityNamespaceSelector` | `true` | Beta | 1.22 | |
-| `PodOverhead` | `false` | Alpha | 1.16 | 1.17 |
-| `PodOverhead` | `true` | Beta | 1.18 | |
-| `PodSecurity` | `false` | Alpha | 1.22 | |
-| `PreferNominatedNode` | `false` | Alpha | 1.21 | 1.21 |
-| `PreferNominatedNode` | `true` | Beta | 1.22 | |
+| `PodSecurity` | `false` | Alpha | 1.22 | 1.22 |
+| `PodSecurity` | `true` | Beta | 1.23 | |
 | `ProbeTerminationGracePeriod` | `false` | Alpha | 1.21 | 1.21 |
 | `ProbeTerminationGracePeriod` | `false` | Beta | 1.22 | |
 | `ProcMountType` | `false` | Alpha | 1.12 | |
 | `ProxyTerminatingEndpoints` | `false` | Alpha | 1.22 | |
 | `QOSReserved` | `false` | Alpha | 1.11 | |
 | `ReadWriteOncePod` | `false` | Alpha | 1.22 | |
+| `RecoverVolumeExpansionFailure` | `false` | Alpha | 1.23 | |
 | `RemainingItemCount` | `false` | Alpha | 1.15 | 1.15 |
 | `RemainingItemCount` | `true` | Beta | 1.16 | |
-| `RemoveSelfLink` | `false` | Alpha | 1.16 | 1.19 |
-| `RemoveSelfLink` | `true` | Beta | 1.20 | |
 | `RotateKubeletServerCertificate` | `false` | Alpha | 1.7 | 1.11 |
 | `RotateKubeletServerCertificate` | `true` | Beta | 1.12 | |
 | `SeccompDefault` | `false` | Alpha | 1.22 | |
+| `ServerSideFieldValidation` | `false` | Alpha | 1.23 | - |
 | `ServiceInternalTrafficPolicy` | `false` | Alpha | 1.21 | 1.21 |
 | `ServiceInternalTrafficPolicy` | `true` | Beta | 1.22 | |
-| `ServiceLBNodePortControl` | `false` | Alpha | 1.20 | 1.21 |
-| `ServiceLBNodePortControl` | `true` | Beta | 1.22 | |
-| `ServiceLoadBalancerClass` | `false` | Alpha | 1.21 | 1.21 |
-| `ServiceLoadBalancerClass` | `true` | Beta | 1.22 | |
+| `ServiceIPStaticSubrange` | `false` | Alpha | 1.24 | |
 | `SizeMemoryBackedVolumes` | `false` | Alpha | 1.20 | 1.21 |
 | `SizeMemoryBackedVolumes` | `true` | Beta | 1.22 | |
-| `StatefulSetMinReadySeconds` | `false` | Alpha | 1.22 | |
+| `StatefulSetAutoDeletePVC` | `false` | Alpha | 1.22 | |
+| `StatefulSetMinReadySeconds` | `false` | Alpha | 1.22 | 1.22 |
+| `StatefulSetMinReadySeconds` | `true` | Beta | 1.23 | |
 | `StorageVersionAPI` | `false` | Alpha | 1.20 | |
 | `StorageVersionHash` | `false` | Alpha | 1.14 | 1.14 |
 | `StorageVersionHash` | `true` | Beta | 1.15 | |
-| `SuspendJob` | `false` | Alpha | 1.21 | 1.21 |
-| `SuspendJob` | `true` | Beta | 1.22 | |
-| `TTLAfterFinished` | `false` | Alpha | 1.12 | 1.20 |
-| `TTLAfterFinished` | `true` | Beta | 1.21 | |
-| `TopologyAwareHints` | `false` | Alpha | 1.21 | |
+| `TopologyAwareHints` | `false` | Alpha | 1.21 | 1.22 |
+| `TopologyAwareHints` | `false` | Beta | 1.23 | 1.23 |
+| `TopologyAwareHints` | `true` | Beta | 1.24 | |
 | `TopologyManager` | `false` | Alpha | 1.16 | 1.17 |
 | `TopologyManager` | `true` | Beta | 1.18 | |
 | `VolumeCapacityPriority` | `false` | Alpha | 1.21 | - |
 | `WinDSR` | `false` | Alpha | 1.14 | |
 | `WinOverlay` | `false` | Alpha | 1.14 | 1.19 |
 | `WinOverlay` | `true` | Beta | 1.20 | |
-| `WindowsHostProcessContainers` | `false` | Alpha | 1.22 | |
+| `WindowsHostProcessContainers` | `false` | Alpha | 1.22 | 1.22 |
+| `WindowsHostProcessContainers` | `true` | Beta | 1.23 | |
 {{< /table >}}
 
 <!--
@@ -285,6 +287,12 @@ different Kubernetes components.
 | `BoundServiceAccountTokenVolume` | `false` | Alpha | 1.13 | 1.20 |
 | `BoundServiceAccountTokenVolume` | `true` | Beta | 1.21 | 1.21 |
 | `BoundServiceAccountTokenVolume` | `true` | GA | 1.22 | - |
+| `ConfigurableFSGroupPolicy` | `false` | Alpha | 1.18 | 1.19 |
+| `ConfigurableFSGroupPolicy` | `true` | Beta | 1.20 | 1.22 |
+| `ConfigurableFSGroupPolicy` | `true` | GA | 1.23 | - |
+| `ControllerManagerLeaderMigration` | `false` | Alpha | 1.21 | 1.21 |
+| `ControllerManagerLeaderMigration` | `true` | Beta | 1.22 | 1.23 |
+| `ControllerManagerLeaderMigration` | `true` | GA | 1.24 | - |
 | `CRIContainerLogRotation` | `false` | Alpha | 1.10 | 1.10 |
 | `CRIContainerLogRotation` | `true` | Beta | 1.11 | 1.20 |
 | `CRIContainerLogRotation` | `true` | GA | 1.21 | - |
@@ -293,31 +301,47 @@ different Kubernetes components.
 | `CSIBlockVolume` | `true` | GA | 1.18 | - |
 | `CSIDriverRegistry` | `false` | Alpha | 1.12 | 1.13 |
 | `CSIDriverRegistry` | `true` | Beta | 1.14 | 1.17 |
-| `CSIDriverRegistry` | `true` | GA | 1.18 | |
+| `CSIDriverRegistry` | `true` | GA | 1.18 | - |
 | `CSIMigrationAWSComplete` | `false` | Alpha | 1.17 | 1.20 |
 | `CSIMigrationAWSComplete` | - | Deprecated | 1.21 | - |
+| `CSIMigrationAzureDisk` | `false` | Alpha | 1.15 | 1.18 |
+| `CSIMigrationAzureDisk` | `false` | Beta | 1.19 | 1.22 |
+| `CSIMigrationAzureDisk` | `true` | Beta | 1.23 | 1.23 |
+| `CSIMigrationAzureDisk` | `true` | GA | 1.24 | |
 | `CSIMigrationAzureDiskComplete` | `false` | Alpha | 1.17 | 1.20 |
 | `CSIMigrationAzureDiskComplete` | - | Deprecated | 1.21 | - |
 | `CSIMigrationAzureFileComplete` | `false` | Alpha | 1.17 | 1.20 |
 | `CSIMigrationAzureFileComplete` | - | Deprecated |  1.21 | - |
 | `CSIMigrationGCEComplete` | `false` | Alpha | 1.17 | 1.20 |
 | `CSIMigrationGCEComplete` | - | Deprecated | 1.21 | - |
+| `CSIMigrationOpenStack` | `false` | Alpha | 1.14 | 1.17 |
+| `CSIMigrationOpenStack` | `true` | Beta | 1.18 | 1.23 |
+| `CSIMigrationOpenStack` | `true` | GA | 1.24 | |
 | `CSIMigrationOpenStackComplete` | `false` | Alpha | 1.17 | 1.20 |
 | `CSIMigrationOpenStackComplete` | - | Deprecated | 1.21 | - |
 | `CSIMigrationvSphereComplete` | `false` | Beta | 1.19 | 1.21 |
 | `CSIMigrationvSphereComplete` | - | Deprecated | 1.22 | - |
 | `CSINodeInfo` | `false` | Alpha | 1.12 | 1.13 |
 | `CSINodeInfo` | `true` | Beta | 1.14 | 1.16 |
-| `CSINodeInfo` | `true` | GA | 1.17 | |
+| `CSINodeInfo` | `true` | GA | 1.17 | - |
 | `CSIPersistentVolume` | `false` | Alpha | 1.9 | 1.9 |
 | `CSIPersistentVolume` | `true` | Beta | 1.10 | 1.12 |
 | `CSIPersistentVolume` | `true` | GA | 1.13 | - |
 | `CSIServiceAccountToken` | `false` | Alpha | 1.20 | 1.20 |
 | `CSIServiceAccountToken` | `true` | Beta | 1.21 | 1.21 |
-| `CSIServiceAccountToken` | `true` | GA | 1.22 | |
+| `CSIServiceAccountToken` | `true` | GA | 1.22 | - |
+| `CSIStorageCapacity` | `false` | Alpha | 1.19 | 1.20 |
+| `CSIStorageCapacity` | `true` | Beta | 1.21 | 1.23 |
+| `CSIStorageCapacity` | `true` | GA | 1.24 | - |
+| `CSIVolumeFSGroupPolicy` | `false` | Alpha | 1.19 | 1.19 |
+| `CSIVolumeFSGroupPolicy` | `true` | Beta | 1.20 | 1.22 |
+| `CSIVolumeFSGroupPolicy` | `true` | GA | 1.23 | |
+| `CSRDuration` | `true` | Beta | 1.22 | 1.23 |
+| `CSRDuration` | `true` | GA | 1.24 | - |
 | `CronJobControllerV2` | `false` | Alpha | 1.20 | 1.20 |
 | `CronJobControllerV2` | `true` | Beta | 1.21 | 1.21 |
 | `CronJobControllerV2` | `true` | GA | 1.22 | - |
+| `CronJobTimeZone` | `false` | Alpha | 1.24 | |
 | `CustomPodDNS` | `false` | Alpha | 1.9 | 1.9 |
 | `CustomPodDNS` | `true` | Beta| 1.10 | 1.13 |
 | `CustomPodDNS` | `true` | GA | 1.14 | - |
@@ -336,6 +360,9 @@ different Kubernetes components.
 | `CustomResourceWebhookConversion` | `false` | Alpha | 1.13 | 1.14 |
 | `CustomResourceWebhookConversion` | `true` | Beta | 1.15 | 1.15 |
 | `CustomResourceWebhookConversion` | `true` | GA | 1.16 | - |
+| `DefaultPodTopologySpread` | `false` | Alpha | 1.19 | 1.19 |
+| `DefaultPodTopologySpread` | `true` | Beta | 1.20 | 1.23 |
+| `DefaultPodTopologySpread` | `true` | GA | 1.24 | - |
 | `DryRun` | `false` | Alpha | 1.12 | 1.12 |
 | `DryRun` | `true` | Beta | 1.13 | 1.18 |
 | `DryRun` | `true` | GA | 1.19 | - |
@@ -346,46 +373,64 @@ different Kubernetes components.
 | `DynamicKubeletConfig` | `false` | Deprecated | 1.22 | - |
 | `DynamicProvisioningScheduling` | `false` | Alpha | 1.11 | 1.11 |
 | `DynamicProvisioningScheduling` | - | Deprecated| 1.12 | - |
-| `DynamicKubeletConfig` | `false` | Alpha | 1.4 | 1.10 |
-| `DynamicKubeletConfig` | `true` | Beta | 1.11 | 1.21 |
-| `DynamicKubeletConfig` | `false` | Deprecated | 1.22 | - |
 | `DynamicVolumeProvisioning` | `true` | Alpha | 1.3 | 1.7 |
 | `DynamicVolumeProvisioning` | `true` | GA | 1.8 | - |
+| `EfficientWatchResumption` | `false` | Alpha | 1.20 | 1.20 |
+| `EfficientWatchResumption` | `true` | Beta | 1.21 | 1.23 |
+| `EfficientWatchResumption` | `true` | GA | 1.24 | - |
 | `EnableAggregatedDiscoveryTimeout` | `true` | Deprecated | 1.16 | - |
 | `EnableEquivalenceClassCache` | `false` | Alpha | 1.8 | 1.14 |
 | `EnableEquivalenceClassCache` | - | Deprecated | 1.15 | - |
 | `EndpointSlice` | `false` | Alpha | 1.16 | 1.16 |
 | `EndpointSlice` | `false` | Beta | 1.17 | 1.17 |
 | `EndpointSlice` | `true` | Beta | 1.18 | 1.20 |
-| `EndpointSlice` | `true` | GA | 1.21 | -  |
+| `EndpointSlice` | `true` | GA | 1.21 | - |
 | `EndpointSliceNodeName` | `false` | Alpha | 1.20 | 1.20 |
 | `EndpointSliceNodeName` | `true` | GA | 1.21 | - |
 | `EndpointSliceProxying` | `false` | Alpha | 1.18 | 1.18 |
 | `EndpointSliceProxying` | `true` | Beta | 1.19 | 1.21 |
 | `EndpointSliceProxying` | `true` | GA | 1.22 | - |
-| `ExperimentalCriticalPodAnnotation` | `false` | Alpha | 1.5 | 1.12 |
-| `ExperimentalCriticalPodAnnotation` | `false` | Deprecated | 1.13 | - |
 | `EvenPodsSpread` | `false` | Alpha | 1.16 | 1.17 |
 | `EvenPodsSpread` | `true` | Beta | 1.18 | 1.18 |
 | `EvenPodsSpread` | `true` | GA | 1.19 | - |
 | `ExecProbeTimeout` | `true` | GA | 1.20 | - |
+| `ExpandCSIVolumes` | `false` | Alpha | 1.14 | 1.15 |
+| `ExpandCSIVolumes` | `true` | Beta | 1.16 | 1.23 |
+| `ExpandCSIVolumes` | `true` | GA | 1.24 | - |
+| `ExpandInUsePersistentVolumes` | `false` | Alpha | 1.11 | 1.14 |
+| `ExpandInUsePersistentVolumes` | `true` | Beta | 1.15 | 1.23 |
+| `ExpandInUsePersistentVolumes` | `true` | GA | 1.24 | - |
+| `ExpandPersistentVolumes` | `false` | Alpha | 1.8 | 1.10 |
+| `ExpandPersistentVolumes` | `true` | Beta | 1.11 | 1.23 |
+| `ExpandPersistentVolumes` | `true` | GA | 1.24 |- |
+| `ExperimentalCriticalPodAnnotation` | `false` | Alpha | 1.5 | 1.12 |
+| `ExperimentalCriticalPodAnnotation` | `false` | Deprecated | 1.13 | - |
 | `ExternalPolicyForExternalIP` | `true` | GA | 1.18 | - |
 | `GCERegionalPersistentDisk` | `true` | Beta | 1.10 | 1.12 |
 | `GCERegionalPersistentDisk` | `true` | GA | 1.13 | - |
+| `GenericEphemeralVolume` | `false` | Alpha | 1.19 | 1.20 |
+| `GenericEphemeralVolume` | `true` | Beta | 1.21 | 1.22 |
+| `GenericEphemeralVolume` | `true` | GA | 1.23 | - |
 | `HugePageStorageMediumSize` | `false` | Alpha | 1.18 | 1.18 |
 | `HugePageStorageMediumSize` | `true` | Beta | 1.19 | 1.21 |
 | `HugePageStorageMediumSize` | `true` | GA | 1.22 | - |
 | `HugePages` | `false` | Alpha | 1.8 | 1.9 |
 | `HugePages` | `true` | Beta| 1.10 | 1.13 |
 | `HugePages` | `true` | GA | 1.14 | - |
-| `HugePageStorageMediumSize` | `false` | Alpha | 1.18 | 1.18 |
-| `HugePageStorageMediumSize` | `true` | Beta | 1.19 | 1.21 |
-| `HugePageStorageMediumSize` | `true` | GA | 1.22 | - |
 | `HyperVContainer` | `false` | Alpha | 1.10 | 1.19 |
 | `HyperVContainer` | `false` | Deprecated | 1.20 | - |
+| `IPv6DualStack` | `false` | Alpha | 1.15 | 1.20 |
+| `IPv6DualStack` | `true` | Beta | 1.21 | 1.22 |
+| `IPv6DualStack` | `true` | GA | 1.23 | - |
 | `ImmutableEphemeralVolumes` | `false` | Alpha | 1.18 | 1.18 |
 | `ImmutableEphemeralVolumes` | `true` | Beta | 1.19 | 1.20 |
 | `ImmutableEphemeralVolumes` | `true` | GA | 1.21 | |
+| `IndexedJob` | `false` | Alpha | 1.21 | 1.21 |
+| `IndexedJob` | `true` | Beta | 1.22 | 1.23 |
+| `IndexedJob` | `true` | GA | 1.24 | - |
+| `IngressClassNamespacedParams` | `false` | Alpha | 1.21 | 1.21 |
+| `IngressClassNamespacedParams` | `true` | Beta | 1.22 | 1.22 |
+| `IngressClassNamespacedParams` | `true` | GA | 1.23 | - |
 | `Initializers` | `false` | Alpha | 1.7 | 1.13 |
 | `Initializers` | - | Deprecated | 1.14 | - |
 | `KubeletConfigFile` | `false` | Alpha | 1.8 | 1.9 |
@@ -393,33 +438,40 @@ different Kubernetes components.
 | `KubeletPluginsWatcher` | `false` | Alpha | 1.11 | 1.11 |
 | `KubeletPluginsWatcher` | `true` | Beta | 1.12 | 1.12 |
 | `KubeletPluginsWatcher` | `true` | GA | 1.13 | - |
-| `KubeletPodResources` | `false` | Alpha | 1.13 | 1.14 |
-| `KubeletPodResources` | `true` | Beta | 1.15 | |
-| `KubeletPodResources` | `true` | GA | 1.20 | |
 | `LegacyNodeRoleBehavior` | `false` | Alpha | 1.16 | 1.18 |
 | `LegacyNodeRoleBehavior` | `true` | Beta | 1.19 | 1.20 |
 | `LegacyNodeRoleBehavior` | `false` | GA | 1.21 | - |
+| `LegacyServiceAccountTokenNoAutoGeneration` | `true` | Beta | 1.24 | |
 | `MountContainers` | `false` | Alpha | 1.9 | 1.16 |
 | `MountContainers` | `false` | Deprecated | 1.17 | - |
 | `MountPropagation` | `false` | Alpha | 1.8 | 1.9 |
 | `MountPropagation` | `true` | Beta | 1.10 | 1.11 |
 | `MountPropagation` | `true` | GA | 1.12 | - |
+| `NamespaceDefaultLabelName` | `true` | Beta | 1.21 | 1.21 |
+| `NamespaceDefaultLabelName` | `true` | GA | 1.22 | - |
 | `NodeDisruptionExclusion` | `false` | Alpha | 1.16 | 1.18 |
 | `NodeDisruptionExclusion` | `true` | Beta | 1.19 | 1.20 |
 | `NodeDisruptionExclusion` | `true` | GA | 1.21 | - |
 | `NodeLease` | `false` | Alpha | 1.12 | 1.13 |
 | `NodeLease` | `true` | Beta | 1.14 | 1.16 |
 | `NodeLease` | `true` | GA | 1.17 | - |
-| `NamespaceDefaultLabelName` | `true` | Beta | 1.21 | 1.21 |
-| `NamespaceDefaultLabelName` | `true` | GA | 1.22 | - |
+| `NonPreemptingPriority` | `false` | Alpha | 1.15 | 1.18 |
+| `NonPreemptingPriority` | `true` | Beta | 1.19 | 1.23 |
+| `NonPreemptingPriority` | `true` | GA | 1.24 | - |
 | `PVCProtection` | `false` | Alpha | 1.9 | 1.9 |
 | `PVCProtection` | - | Deprecated | 1.10 | - |
 | `PersistentLocalVolumes` | `false` | Alpha | 1.7 | 1.9 |
 | `PersistentLocalVolumes` | `true` | Beta | 1.10 | 1.13 |
 | `PersistentLocalVolumes` | `true` | GA | 1.14 | - |
+| `PodAffinityNamespaceSelector` | `false` | Alpha | 1.21 | 1.21 |
+| `PodAffinityNamespaceSelector` | `true` | Beta | 1.22 | 1.23 |
+| `PodAffinityNamespaceSelector` | `true` | GA | 1.24 | - |
 | `PodDisruptionBudget` | `false` | Alpha | 1.3 | 1.4 |
 | `PodDisruptionBudget` | `true` | Beta | 1.5 | 1.20 |
 | `PodDisruptionBudget` | `true` | GA | 1.21 | - |
+| `PodOverhead` | `false` | Alpha | 1.16 | 1.17 |
+| `PodOverhead` | `true` | Beta | 1.18 | 1.23 |
+| `PodOverhead` | `true` | GA | 1.24 | - |
 | `PodPriority` | `false` | Alpha | 1.8 | 1.10 |
 | `PodPriority` | `true` | Beta | 1.11 | 1.13 |
 | `PodPriority` | `true` | GA | 1.14 | - |
@@ -429,8 +481,14 @@ different Kubernetes components.
 | `PodShareProcessNamespace` | `false` | Alpha | 1.10 | 1.11 |
 | `PodShareProcessNamespace` | `true` | Beta | 1.12 | 1.16 |
 | `PodShareProcessNamespace` | `true` | GA | 1.17 | - |
+| `PreferNominatedNode` | `false` | Alpha | 1.21 | 1.21 |
+| `PreferNominatedNode` | `true` | Beta | 1.22 | 1.23 |
+| `PreferNominatedNode` | `true` | GA | 1.24 | - |
+| `RemoveSelfLink` | `false` | Alpha | 1.16 | 1.19 |
+| `RemoveSelfLink` | `true` | Beta | 1.20 | 1.23 |
+| `RemoveSelfLink` | `true` | GA | 1.24 | - |
 | `RequestManagement` | `false` | Alpha | 1.15 | 1.16 |
-| `RequestManagement` | - | Derecated | 1.17 | - |
+| `RequestManagement` | - | Deprecated | 1.17 | - |
 | `ResourceLimitsPriorityFunction` | `false` | Alpha | 1.9 | 1.18 |
 | `ResourceLimitsPriorityFunction` | - | Deprecated | 1.19 | - |
 | `ResourceQuotaScopeSelectors` | `false` | Alpha | 1.11 | 1.11 |
@@ -464,6 +522,12 @@ different Kubernetes components.
 | `ServiceAppProtocol` | `false` | Alpha | 1.18 | 1.18 |
 | `ServiceAppProtocol` | `true` | Beta | 1.19 | 1.19 |
 | `ServiceAppProtocol` | `true` | GA | 1.20 | - |
+| `ServiceLBNodePortControl` | `false` | Alpha | 1.20 | 1.21 |
+| `ServiceLBNodePortControl` | `true` | Beta | 1.22 | 1.23 |
+| `ServiceLBNodePortControl` | `true` | GA | 1.24 | - |
+| `ServiceLoadBalancerClass` | `false` | Alpha | 1.21 | 1.21 |
+| `ServiceLoadBalancerClass` | `true` | Beta | 1.22 | 1.23 |
+| `ServiceLoadBalancerClass` | `true` | GA | 1.24 | - |
 | `ServiceLoadBalancerFinalizer` | `false` | Alpha | 1.15 | 1.15 |
 | `ServiceLoadBalancerFinalizer` | `true` | Beta | 1.16 | 1.16 |
 | `ServiceLoadBalancerFinalizer` | `true` | GA | 1.17 | - |
@@ -494,8 +558,14 @@ different Kubernetes components.
 | `SupportPodPidsLimit` | `false` | Alpha | 1.10 | 1.13 |
 | `SupportPodPidsLimit` | `true` | Beta | 1.14 | 1.19 |
 | `SupportPodPidsLimit` | `true` | GA | 1.20 | - |
+| `SuspendJob` | `false` | Alpha | 1.21 | 1.21 |
+| `SuspendJob` | `true` | Beta | 1.22 | 1.23 |
+| `SuspendJob` | `true` | GA | 1.24 | - |
 | `Sysctls` | `true` | Beta | 1.11 | 1.20 |
-| `Sysctls` | `true` | GA | 1.21 | |
+| `Sysctls` | `true` | GA | 1.21 | - |
+| `TTLAfterFinished` | `false` | Alpha | 1.12 | 1.20 |
+| `TTLAfterFinished` | `true` | Beta | 1.21 | 1.22 |
+| `TTLAfterFinished` | `true` | GA | 1.23 | - |
 | `TaintBasedEvictions` | `false` | Alpha | 1.6 | 1.12 |
 | `TaintBasedEvictions` | `true` | Beta | 1.13 | 1.17 |
 | `TaintBasedEvictions` | `true` | GA | 1.18 | - |
@@ -535,7 +605,6 @@ different Kubernetes components.
 | `WindowsGMSA` | `false` | Alpha | 1.14 | 1.15 |
 | `WindowsGMSA` | `true` | Beta | 1.16 | 1.17 |
 | `WindowsGMSA` | `true` | GA | 1.18 | - |
-| `WindowsHostProcessContainers` | `false` | Alpha | 1.22 |
 | `WindowsRunAsUserName` | `false` | Alpha | 1.16 | 1.16 |
 | `WindowsRunAsUserName` | `true` | Beta | 1.17 | 1.17 |
 | `WindowsRunAsUserName` | `true` | GA | 1.18 | - |
@@ -555,9 +624,9 @@ A feature can be in *Alpha*, *Beta* or *GA* stage.
 An *Alpha* feature means:
 -->
 
-处于 *Alpha* 、*Beta* 、 *GA* 阶段的特性。
+处于 **Alpha** 、**Beta** 、 **GA** 阶段的特性。
 
-*Alpha* 特性代表：
+**Alpha** 特性代表：
 
 <!--
 * Disabled by default.
@@ -576,7 +645,7 @@ An *Alpha* feature means:
 <!--
 A *Beta* feature means:
 -->
-*Beta* 特性代表：
+**Beta** 特性代表：
 
 <!--
 * Enabled by default.
@@ -602,14 +671,14 @@ A *Beta* feature means:
 Please do try *Beta* features and give feedback on them!
 After they exit beta, it may not be practical for us to make more changes.
 -->
-请试用 *Beta* 特性并提供相关反馈！
+请试用 **Beta** 特性并提供相关反馈！
 一旦特性结束 Beta 状态，我们就不太可能再对特性进行大幅修改。
 {{< /note >}}
 
 <!--
 A *General Availability* (GA) feature is also referred to as a *stable* feature. It means:
 -->
-*General Availability* (GA) 特性也称为 *稳定* 特性，*GA* 特性代表着：
+**General Availability** (GA) 特性也称为 **稳定** 特性，**GA** 特性代表着：
 
 <!--
 * The feature is always enabled; you cannot disable it.
@@ -626,7 +695,7 @@ A *General Availability* (GA) feature is also referred to as a *stable* feature.
 Each feature gate is designed for enabling/disabling a specific feature:
 -->
 
-### 特性门控列表
+### 特性门控列表 {#feature-gates}
 
 每个特性门控均用于启用或禁用某个特定的特性：
 
@@ -645,8 +714,11 @@ Each feature gate is designed for enabling/disabling a specific feature:
 - `APIServerIdentity`：为集群中的每个 API 服务器赋予一个 ID。
 - `APIServerTracing`: 为集群中的每个 API 服务器添加对分布式跟踪的支持。
 <!--
-- `Accelerators`: Enable Nvidia GPU support when using Docker
-- `AdvancedAuditing`: Enable [advanced auditing](/docs/tasks/debug-application-cluster/audit/#advanced-audit)
+- `Accelerators`: Provided an early form of plugin to enable Nvidia GPU support when using
+  Docker Engine; no longer available. See
+  [Device Plugins](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/) for
+  an alternative.
+- `AdvancedAuditing`: Enable [advanced auditing](/docs/tasks/debug/debug-cluster/audit/#advanced-audit)
 - `AffinityInAnnotations`: Enable setting
   [Pod affinity or anti-affinity](/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity).
 - `AllowExtTrafficLocalEndpoints`: Enable a service to route external requests to node local endpoints.
@@ -654,46 +726,50 @@ Each feature gate is designed for enabling/disabling a specific feature:
   kubelets on Pod log requests.
 - `AnyVolumeDataSource`: Enable use of any custom resource as the `DataSource` of a
   {{< glossary_tooltip text="PVC" term_id="persistent-volume-claim" >}}.
-- `AppArmor`: Enable AppArmor based mandatory access control on Linux nodes when using Docker.
-   See [AppArmor Tutorial](/docs/tutorials/clusters/apparmor/) for more details.
+- `AppArmor`: Enable use of AppArmor mandatory access control for Pods running on Linux nodes.
+  See [AppArmor Tutorial](/docs/tutorials/security/apparmor/) for more details.
 -->
-- `Accelerators`：使用 Docker 时启用 Nvidia GPU 支持。
-- `AdvancedAuditing`：启用[高级审计功能](/zh/docs/tasks/debug-application-cluster/audit/#advanced-audit)。
-- `AffinityInAnnotations`：启用 [Pod 亲和或反亲和](/zh/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity)。
+- `Accelerators`：使用 Docker Engine 时启用 Nvidia GPU 支持。这一特性不再提供。
+  关于替代方案，请参阅[设备插件](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)。
+- `AdvancedAuditing`：启用[高级审计功能](/zh-cn/docs/tasks/debug/debug-cluster/audit/#advanced-audit)。
+- `AffinityInAnnotations`：启用 [Pod 亲和或反亲和](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity)。
 - `AllowExtTrafficLocalEndpoints`：启用服务用于将外部请求路由到节点本地终端。
 - `AllowInsecureBackendProxy`：允许用户在执行 Pod 日志访问请求时跳过 TLS 验证。
 - `AnyVolumeDataSource`: 允许使用任何自定义的资源来做作为
   {{< glossary_tooltip text="PVC" term_id="persistent-volume-claim" >}} 中的 `DataSource`.
-- `AppArmor`：使用 Docker 时，在 Linux 节点上启用基于 AppArmor 机制的强制访问控制。
-  请参见 [AppArmor 教程](/zh/docs/tutorials/clusters/apparmor/) 获取详细信息。
+- `AppArmor`：在 Linux 节点上为 Pod 启用 AppArmor 机制的强制访问控制。
+  请参见 [AppArmor 教程](/zh-cn/docs/tutorials/security/apparmor/)获取详细信息。
 <!--
 - `AttachVolumeLimit`: Enable volume plugins to report limits on number of volumes
   that can be attached to a node.
-  See [dynamic volume limits](/docs/concepts/storage/storage-limits/#dynamic-volume-limits) for more details.
-- `BalanceAttachedNodeVolumes`: Include volume count on node to be considered for balanced resource allocation
-  while scheduling. A node which has closer CPU, memory utilization, and volume count is favored by the scheduler
-  while making decisions.
+  See [dynamic volume limits](/docs/concepts/storage/storage-limits/#dynamic-volume-limits)
+  for more details.
+- `BalanceAttachedNodeVolumes`: Include volume count on node to be considered for
+  balanced resource allocation while scheduling. A node which has closer CPU,
+  memory utilization, and volume count is favored by the scheduler while making decisions.
 - `BlockVolume`: Enable the definition and consumption of raw block devices in Pods.
   See [Raw Block Volume Support](/docs/concepts/storage/persistent-volumes/#raw-block-volume-support)
-   for more details.
-- `BoundServiceAccountTokenVolume`: Migrate ServiceAccount volumes to use a projected volume consisting of a
-  ServiceAccountTokenVolumeProjection. Cluster admins can use metric `serviceaccount_stale_tokens_total` to
-  monitor workloads that are depending on the extended tokens. If there are no such workloads, turn off
-  extended tokens by starting `kube-apiserver` with flag `--service-account-extend-token-expiration=false`.
+  for more details.
+- `BoundServiceAccountTokenVolume`: Migrate ServiceAccount volumes to use a projected volume
+  consisting of a ServiceAccountTokenVolumeProjection. Cluster admins can use metric
+  `serviceaccount_stale_tokens_total` to monitor workloads that are depending on the extended
+  tokens. If there are no such workloads, turn off extended tokens by starting `kube-apiserver` with
+  flag `--service-account-extend-token-expiration=false`.
   Check [Bound Service Account Tokens](https://github.com/kubernetes/enhancements/blob/master/keps/sig-auth/1205-bound-service-account-tokens/README.md)
   for more details.
-- `ControllerManagerLeaderMigration`: Enables Leader Migration for 
-  [kube-controller-manager](/docs/tasks/administer-cluster/controller-manager-leader-migration/#initial-leader-migration-configuration) and 
-  [cloud-controller-manager](/docs/tasks/administer-cluster/controller-manager-leader-migration/#deploy-cloud-controller-manager) which allows a cluster operator to live migrate 
-  controllers from the kube-controller-manager into an external controller-manager 
+- `ControllerManagerLeaderMigration`: Enables Leader Migration for
+  [kube-controller-manager](/docs/tasks/administer-cluster/controller-manager-leader-migration/#initial-leader-migration-configuration) and
+  [cloud-controller-manager](/docs/tasks/administer-cluster/controller-manager-leader-migration/#deploy-cloud-controller-manager)
+  which allows a cluster operator to live migrate
+  controllers from the kube-controller-manager into an external controller-manager
   (e.g. the cloud-controller-manager) in an HA cluster without downtime.
 -->
 - `AttachVolumeLimit`：启用卷插件用于报告可连接到节点的卷数限制。有关更多详细信息，请参阅
-  [动态卷限制](/zh/docs/concepts/storage/storage-limits/#dynamic-volume-limits)。
+  [动态卷限制](/zh-cn/docs/concepts/storage/storage-limits/#dynamic-volume-limits)。
 - `BalanceAttachedNodeVolumes`：在进行平衡资源分配的调度时，考虑节点上的卷数。
   调度器在决策时会优先考虑 CPU、内存利用率和卷数更近的节点。
 - `BlockVolume`：在 Pod 中启用原始块设备的定义和使用。有关更多详细信息，请参见
-  [原始块卷支持](/zh/docs/concepts/storage/persistent-volumes/#raw-block-volume-support)。
+  [原始块卷支持](/zh-cn/docs/concepts/storage/persistent-volumes/#raw-block-volume-support)。
 - `BoundServiceAccountTokenVolume`：迁移 ServiceAccount 卷以使用由
   ServiceAccountTokenVolumeProjection 组成的投射卷。集群管理员可以使用
   `serviceaccount_stale_tokens_total` 度量值来监控依赖于扩展令牌的负载。
@@ -702,42 +778,65 @@ Each feature gate is designed for enabling/disabling a specific feature:
   [绑定服务账号令牌](https://github.com/kubernetes/enhancements/blob/master/keps/sig-auth/1205-bound-service-account-tokens/README.md)
   获取更多详细信息。
 - `ControllerManagerLeaderMigration`: 为 
-  [kube-controller-manager](/zh/docs/tasks/administer-cluster/controller-manager-leader-migration/#initial-leader-migration-configuration) 和 
-  [cloud-controller-manager](/zh/docs/tasks/administer-cluster/controller-manager-leader-migration/#deploy-cloud-controller-manager) 
+  [kube-controller-manager](/zh-cn/docs/tasks/administer-cluster/controller-manager-leader-migration/#initial-leader-migration-configuration) 和 
+  [cloud-controller-manager](/zh-cn/docs/tasks/administer-cluster/controller-manager-leader-migration/#deploy-cloud-controller-manager) 
   启用 Leader 迁移，它允许集群管理者在没有停机的高可用集群环境下，实时
   把 kube-controller-manager 迁移迁移到外部的 controller-manager (例如 cloud-controller-manager) 中。
 <!--
 - `CPUManager`: Enable container level CPU affinity support, see
   [CPU Management Policies](/docs/tasks/administer-cluster/cpu-management-policies/).
+- `CPUManagerPolicyAlphaOptions`: This allows fine-tuning of CPUManager policies,
+  experimental, Alpha-quality options
+  This feature gate guards *a group* of CPUManager options whose quality level is alpha.
+  This feature gate will never graduate to beta or stable.
+- `CPUManagerPolicyBetaOptions`: This allows fine-tuning of CPUManager policies,
+  experimental, Beta-quality options
+  This feature gate guards *a group* of CPUManager options whose quality level is beta.
+  This feature gate will never graduate to stable.
 - `CPUManagerPolicyOptions`: Allow fine-tuning of CPUManager policies.
-- `CRIContainerLogRotation`: Enable container log rotation for CRI container runtime. The default max size of a log file is 10MB and the
-  default max number of log files allowed for a container is 5. These values can be configured in the kubelet config.
-  See the [logging at node level](/docs/concepts/cluster-administration/logging/#logging-at-the-node-level) documentation for more details.
+-->
+- `CPUManager`：启用容器级别的 CPU 亲和性支持，有关更多详细信息，请参见
+  [CPU 管理策略](/zh-cn/docs/tasks/administer-cluster/cpu-management-policies/)。
+- `CPUManagerPolicyAlphaOptions`：允许对 CPUManager 策略进行微调，针对试验性的、
+  alpha 质量级别的选项。
+  此特性门控用来保护一组质量级别为 alpha 的 CPUManager 选项。
+  此特性门控永远不会被升级为 beta 或者稳定版本。
+- `CPUManagerPolicyBetaOptions`：允许对 CPUManager 策略进行微调，针对试验性的、
+  beta 质量级别的选项。
+  此特性门控用来保护一组质量级别为 beta 的 CPUManager 选项。
+  此特性门控永远不会被升级为稳定版本。
+- `CPUManagerPolicyOptions`: 允许微调 CPU 管理策略。
+<!--
+- `CRIContainerLogRotation`: Enable container log rotation for CRI container runtime.
+  The default max size of a log file is 10MB and the default max number of
+  log files allowed for a container is 5.
+  These values can be configured in the kubelet config.
+  See [logging at node level](/docs/concepts/cluster-administration/logging/#logging-at-the-node-level)
+  for more details.
 - `CSIBlockVolume`: Enable external CSI volume drivers to support block storage.
-  See the [`csi` raw block volume support](/docs/concepts/storage/volumes/#csi-raw-block-volume-support)
-  documentation for more details.
+  See [`csi` raw block volume support](/docs/concepts/storage/volumes/#csi-raw-block-volume-support)
+  for more details.
 - `CSIDriverRegistry`: Enable all logic related to the CSIDriver API object in
   csi.storage.k8s.io.
 - `CSIInlineVolume`: Enable CSI Inline volumes support for pods.
 - `CSIMigration`: Enables shims and translation logic to route volume
   operations from in-tree plugins to corresponding pre-installed CSI plugins
 -->
-- `CPUManager`：启用容器级别的 CPU 亲和性支持，有关更多详细信息，请参见
-  [CPU 管理策略](/zh/docs/tasks/administer-cluster/cpu-management-policies/)。
 - `CRIContainerLogRotation`：为 CRI 容器运行时启用容器日志轮换。日志文件的默认最大大小为
   10MB，缺省情况下，一个容器允许的最大日志文件数为5。这些值可以在kubelet配置中配置。
-    更多细节请参见 [日志架构](/zh/docs/concepts/cluster-administration/logging/#logging-at-the-node-level)。
-- `CPUManagerPolicyOptions`: 允许微调 CPU 管理策略。
+  更多细节请参见[日志架构](/zh-cn/docs/concepts/cluster-administration/logging/#logging-at-the-node-level)。
 - `CSIBlockVolume`：启用外部 CSI 卷驱动程序用于支持块存储。有关更多详细信息，请参见
-  [`csi` 原始块卷支持](/zh/docs/concepts/storage/volumes/#csi-raw-block-volume-support)。
+  [`csi` 原始块卷支持](/zh-cn/docs/concepts/storage/volumes/#csi-raw-block-volume-support)。
 - `CSIDriverRegistry`：在 csi.storage.k8s.io 中启用与 CSIDriver API 对象有关的所有逻辑。
 - `CSIInlineVolume`：为 Pod 启用 CSI 内联卷支持。
 - `CSIMigration`：确保封装和转换逻辑能够将卷操作从内嵌插件路由到相应的预安装 CSI 插件。
 <!--
 - `CSIMigrationAWS`: Enables shims and translation logic to route volume
   operations from the AWS-EBS in-tree plugin to EBS CSI plugin. Supports
-  falling back to in-tree EBS plugin if a node does not have EBS CSI plugin
-  installed and configured. Requires CSIMigration feature flag enabled.
+  falling back to in-tree EBS plugin for mount operations to nodes that have
+  the feature disabled or that do not have EBS CSI plugin installed and
+  configured. Does not support falling back for provision operations, for those
+  the CSI plugin must be installed and configured.
 - `CSIMigrationAWSComplete`: Stops registering the EBS in-tree plugin in
   kubelet and volume controllers and enables shims and translation logic to
   route volume operations from the AWS-EBS in-tree plugin to EBS CSI plugin.
@@ -745,30 +844,37 @@ Each feature gate is designed for enabling/disabling a specific feature:
   plugin installed and configured on all nodes in the cluster. This flag has
   been deprecated in favor of the `InTreePluginAWSUnregister` feature flag
   which prevents the registration of in-tree EBS plugin.
+-->
+- `CSIMigrationAWS`：确保填充和转换逻辑能够将卷操作从 AWS-EBS 内嵌插件路由到 EBS CSI 插件。
+  如果节点禁用了此特性门控或者未安装和配置 EBS CSI 插件，支持回退到内嵌 EBS 插件
+  来执行卷挂载操作。不支持回退到这些插件来执行卷制备操作，因为需要安装并配置 CSI 插件。
+- `CSIMigrationAWSComplete`：停止在 kubelet 和卷控制器中注册 EBS 内嵌插件，
+  并启用填充和转换逻辑将卷操作从 AWS-EBS 内嵌插件路由到 EBS CSI 插件。
+  这需要启用 CSIMigration 和 CSIMigrationAWS 特性标志，并在集群中的所有节点上安装和配置
+  EBS CSI 插件。该特性标志已被废弃，取而代之的是 `InTreePluginAWSUnregister` ，
+  后者会阻止注册 EBS 内嵌插件。
+<!--
 - `CSIMigrationAzureDisk`: Enables shims and translation logic to route volume
   operations from the Azure-Disk in-tree plugin to AzureDisk CSI plugin.
-  Supports falling back to in-tree AzureDisk plugin if a node does not have
-  AzureDisk CSI plugin installed and configured. Requires CSIMigration feature
-  flag enabled.
+  Supports falling back to in-tree AzureDisk plugin for mount operations to
+  nodes that have the feature disabled or that do not have AzureDisk CSI plugin
+  installed and configured. Does not support falling back for provision
+  operations, for those the CSI plugin must be installed and configured.
+  Requires CSIMigration feature flag enabled.
 - `CSIMigrationAzureDiskComplete`: Stops registering the Azure-Disk in-tree
   plugin in kubelet and volume controllers and enables shims and translation
   logic to route volume operations from the Azure-Disk in-tree plugin to
   AzureDisk CSI plugin. Requires CSIMigration and CSIMigrationAzureDisk feature
   flags enabled and AzureDisk CSI plugin installed and configured on all nodes
   in the cluster. This flag has been deprecated in favor of the
-  `InTreePluginAzureFileUnregister` feature flag which prevents the registration
-   of in-tree AzureFile plugin.
+  `InTreePluginAzureDiskUnregister` feature flag which prevents the registration
+  of in-tree AzureDisk plugin.
 -->
-- `CSIMigrationAWS`：确保填充和转换逻辑能够将卷操作从 AWS-EBS 内嵌插件路由到 EBS CSI 插件。
-  如果节点未安装和配置 EBS CSI 插件，则支持回退到内嵌 EBS 插件。
-  这需要启用 CSIMigration 特性标志。
-- `CSIMigrationAWSComplete`：停止在 kubelet 和卷控制器中注册 EBS 内嵌插件，
-  并启用 shims 和转换逻辑将卷操作从AWS-EBS 内嵌插件路由到 EBS CSI 插件。
-  这需要启用 CSIMigration 和 CSIMigrationAWS 特性标志，并在集群中的所有节点上安装和配置
-  EBS CSI 插件。该特性标志已被废弃，取而代之的是 `InTreePluginAWSUnregister` ，这会阻止注册 EBS 内嵌插件。
-- `CSIMigrationAzureDisk`：确保填充和转换逻辑能够将卷操作从 Azure 磁盘内嵌插件路由到
-  Azure 磁盘 CSI 插件。如果节点未安装和配置 AzureDisk CSI 插件，
-  支持回退到内建 AzureDisk 插件。这需要启用 CSIMigration 特性标志。
+- `CSIMigrationAzureDisk`：确保填充和转换逻辑能够将卷操作从 AzureDisk 内嵌插件路由到
+  Azure 磁盘 CSI 插件。对于禁用了此特性的节点或者没有安装并配置 AzureDisk CSI
+  插件的节点，支持回退到内嵌（in-tree）AzureDisk 插件来执行磁盘挂载操作。
+  不支持回退到内嵌插件来执行磁盘制备操作，因为对应的 CSI 插件必须已安装且正确配置。
+  此特性需要启用 CSIMigration 特性标志。
 - `CSIMigrationAzureDiskComplete`：停止在 kubelet 和卷控制器中注册 Azure 磁盘内嵌插件，
   并启用 shims 和转换逻辑以将卷操作从 Azure 磁盘内嵌插件路由到 AzureDisk CSI 插件。
   这需要启用 CSIMigration 和 CSIMigrationAzureDisk 特性标志，
@@ -777,20 +883,25 @@ Each feature gate is designed for enabling/disabling a specific feature:
 <!--
 - `CSIMigrationAzureFile`: Enables shims and translation logic to route volume
   operations from the Azure-File in-tree plugin to AzureFile CSI plugin.
-  Supports falling back to in-tree AzureFile plugin if a node does not have
-  AzureFile CSI plugin installed and configured. Requires CSIMigration feature
-  flag enabled.
+  Supports falling back to in-tree AzureFile plugin for mount operations to
+  nodes that have the feature disabled or that do not have AzureFile CSI plugin
+  installed and configured. Does not support falling back for provision
+  operations, for those the CSI plugin must be installed and configured.
+  Requires CSIMigration feature flag enabled.
 - `CSIMigrationAzureFileComplete`: Stops registering the Azure-File in-tree
   plugin in kubelet and volume controllers and enables shims and translation
   logic to route volume operations from the Azure-File in-tree plugin to
   AzureFile CSI plugin. Requires CSIMigration and CSIMigrationAzureFile feature
   flags  enabled and AzureFile CSI plugin installed and configured on all nodes
   in the cluster. This flag has been deprecated in favor of the
-  `InTreePluginAzureFileUnregister` feature flag which prevents the registration of in-tree AzureFile plugin.
+  `InTreePluginAzureFileUnregister` feature flag which prevents the registration
+   of in-tree AzureFile plugin.
 -->
-- `CSIMigrationAzureFile`：确保封装和转换逻辑能够将卷操作从 Azure 文件内嵌插件路由到
-  Azure 文件 CSI 插件。如果节点未安装和配置 AzureFile CSI 插件，
-  支持回退到内嵌 AzureFile 插件。这需要启用 CSIMigration 特性标志。
+- `CSIMigrationAzureFile`：确保封装和转换逻辑能够将卷操作从 AzureFile 内嵌插件路由到
+  AzureFile CSI 插件。对于禁用了此特性的节点或者没有安装并配置 AzureFile CSI
+  插件的节点，支持回退到内嵌（in-tree）AzureFile 插件来执行卷挂载操作。
+  不支持回退到内嵌插件来执行卷制备操作，因为对应的 CSI 插件必须已安装且正确配置。
+  此特性需要启用 CSIMigration 特性标志。
 - `CSIMigrationAzureFileComplete`：停止在 kubelet 和卷控制器中注册 Azure-File 内嵌插件，
   并启用 shims 和转换逻辑以将卷操作从 Azure-File 内嵌插件路由到 AzureFile CSI 插件。
   这需要启用 CSIMigration 和 CSIMigrationAzureFile 特性标志，
@@ -799,18 +910,24 @@ Each feature gate is designed for enabling/disabling a specific feature:
 <!--
 - `CSIMigrationGCE`: Enables shims and translation logic to route volume
   operations from the GCE-PD in-tree plugin to PD CSI plugin. Supports falling
-  back to in-tree GCE plugin if a node does not have PD CSI plugin installed and
-  configured. Requires CSIMigration feature flag enabled.
+  back to in-tree GCE plugin for mount operations to nodes that have the
+  feature disabled or that do not have PD CSI plugin installed and configured.
+  Does not support falling back for provision operations, for those the CSI
+  plugin must be installed and configured. Requires CSIMigration feature flag
+  enabled.
 - `CSIMigrationGCEComplete`: Stops registering the GCE-PD in-tree plugin in
   kubelet and volume controllers and enables shims and translation logic to
   route volume operations from the GCE-PD in-tree plugin to PD CSI plugin.
   Requires CSIMigration and CSIMigrationGCE feature flags enabled and PD CSI
   plugin installed and configured on all nodes in the cluster. This flag has
-  been deprecated in favor of the `InTreePluginGCEUnregister` feature flag which prevents the registration of in-tree GCE PD plugin.
+  been deprecated in favor of the `InTreePluginGCEUnregister` feature flag which
+  prevents the registration of in-tree GCE PD plugin.
 -->
-- `CSIMigrationGCE`：启用 shims 和转换逻辑，将卷操作从 GCE-PD 内嵌插件路由到
-  PD CSI 插件。如果节点未安装和配置 PD CSI 插件，支持回退到内嵌 GCE 插件。
-  这需要启用 CSIMigration 特性标志。
+- `CSIMigrationGCE`：启用填充和转换逻辑，将卷操作从 GCE-PD 内嵌插件路由到
+  PD CSI 插件。对于禁用了此特性的节点或者没有安装并配置 PD CSI 插件的节点，
+  支持回退到内嵌（in-tree）GCE 插件来执行挂载操作。
+  不支持回退到内嵌插件来执行制备操作，因为对应的 CSI 插件必须已安装且正确配置。
+  此特性需要启用 CSIMigration 特性标志。
 - `CSIMigrationGCEComplete`：停止在 kubelet 和卷控制器中注册 GCE-PD 内嵌插件，
   并启用 shims 和转换逻辑以将卷操作从 GCE-PD 内嵌插件路由到 PD CSI 插件。
   这需要启用 CSIMigration 和 CSIMigrationGCE 特性标志，并在集群中的所有节点上
@@ -819,47 +936,78 @@ Each feature gate is designed for enabling/disabling a specific feature:
 <!--
 - `CSIMigrationOpenStack`: Enables shims and translation logic to route volume
   operations from the Cinder in-tree plugin to Cinder CSI plugin. Supports
-  falling back to in-tree Cinder plugin if a node does not have Cinder CSI
-  plugin installed and configured. Requires CSIMigration feature flag enabled.
+  falling back to in-tree Cinder plugin for mount operations to nodes that have
+  the feature disabled or that do not have Cinder CSI plugin installed and
+  configured. Does not support falling back for provision operations, for those
+  the CSI plugin must be installed and configured. Requires CSIMigration
+  feature flag enabled.
 - `CSIMigrationOpenStackComplete`: Stops registering the Cinder in-tree plugin in
   kubelet and volume controllers and enables shims and translation logic to route
   volume operations from the Cinder in-tree plugin to Cinder CSI plugin.
   Requires CSIMigration and CSIMigrationOpenStack feature flags enabled and Cinder
   CSI plugin installed and configured on all nodes in the cluster. This flag has
-  been deprecated in favor of the `InTreePluginOpenStackUnregister` feature flag which prevents the registration of in-tree openstack cinder plugin.
+  been deprecated in favor of the `InTreePluginOpenStackUnregister` feature flag
+  which prevents the registration of in-tree openstack cinder plugin.
 -->
 - `CSIMigrationOpenStack`：确保填充和转换逻辑能够将卷操作从 Cinder 内嵌插件路由到
-  Cinder CSI 插件。如果节点未安装和配置 Cinder CSI 插件，支持回退到内嵌 Cinder 插件。
-  这需要启用 CSIMigration 特性标志。
+  Cinder CSI 插件。对于禁用了此特性的节点或者没有安装并配置 Cinder CSI 插件的节点，
+  支持回退到内嵌（in-tree）Cinder 插件来执行挂载操作。
+  不支持回退到内嵌插件来执行制备操作，因为对应的 CSI 插件必须已安装且正确配置。
+  此磁特性需要启用 CSIMigration 特性标志。
 - `CSIMigrationOpenStackComplete`：停止在 kubelet 和卷控制器中注册 Cinder 内嵌插件，
-  并启用 shims 和转换逻辑将卷操作从 Cinder 内嵌插件路由到 Cinder CSI 插件。
+  并启用填充和转换逻辑将卷操作从 Cinder 内嵌插件路由到 Cinder CSI 插件。
   这需要启用 CSIMigration 和 CSIMigrationOpenStack 特性标志，并在集群中的所有节点上
-  安装和配置 Cinder CSI 插件。该特性标志已被废弃，取而代之的是
-  能防止注册内嵌 openstack cinder 插件的 `InTreePluginOpenStackUnregister` 特性标志。
+  安装和配置 Cinder CSI 插件。该特性标志已被弃用，取而代之的是
+  能防止注册内嵌 OpenStack Cinder 插件的 `InTreePluginOpenStackUnregister` 特性标志。
+<!--
+- `csiMigrationRBD`: Enables shims and translation logic to route volume
+  operations from the RBD in-tree plugin to Ceph RBD CSI plugin. Requires
+  CSIMigration and csiMigrationRBD feature flags enabled and Ceph CSI plugin
+  installed and configured in the cluster. This flag has been deprecated in
+  favor of the `InTreePluginRBDUnregister` feature flag which prevents the registration of
+  in-tree RBD plugin.
+-->
+- `csiMigrationRBD`：启用填充和转换逻辑，将卷操作从 RBD 的内嵌插件路由到 Ceph RBD
+  CSI 插件。此特性要求 CSIMigration 和 csiMigrationRBD 特性标志均被启用，
+  且集群中安装并配置了 Ceph CSI 插件。此标志已被弃用，以鼓励使用
+  `InTreePluginRBDUnregister` 特性标志。后者会禁止注册内嵌的 RBD 插件。
 <!--
 - `CSIMigrationvSphere`: Enables shims and translation logic to route volume operations
-  from the vSphere in-tree plugin to vSphere CSI plugin.
-  Supports falling back to in-tree vSphere plugin if a node does not have vSphere
-  CSI plugin installed and configured. Requires CSIMigration feature flag enabled.
+  from the vSphere in-tree plugin to vSphere CSI plugin. Supports falling back
+  to in-tree vSphere plugin for mount operations to nodes that have the feature
+  disabled or that do not have vSphere CSI plugin installed and configured.
+  Does not support falling back for provision operations, for those the CSI
+  plugin must be installed and configured. Requires CSIMigration feature flag
+  enabled.
 - `CSIMigrationvSphereComplete`: Stops registering the vSphere in-tree plugin in kubelet
   and volume controllers and enables shims and translation logic to route volume operations
   from the vSphere in-tree plugin to vSphere CSI plugin. Requires CSIMigration and
   CSIMigrationvSphere feature flags enabled and vSphere CSI plugin installed and
   configured on all nodes in the cluster. This flag has been deprecated in favor
-  of the `InTreePluginvSphereUnregister` feature flag which prevents the registration of in-tree vsphere plugin.
+  of the `InTreePluginvSphereUnregister` feature flag which prevents the
+  registration of in-tree vsphere plugin.
 -->
 - `CSIMigrationvSphere`: 允许封装和转换逻辑将卷操作从 vSphere 内嵌插件路由到
-  vSphere CSI 插件。如果节点未安装和配置 vSphere CSI 插件，则支持回退到
-  vSphere 内嵌插件。这需要启用 CSIMigration 特性标志。
+  vSphere CSI 插件。如果节点禁用了此特性门控或者未安装和配置 vSphere CSI 插件，
+  则支持回退到 vSphere 内嵌插件来执行挂载操作。
+  不支持回退到内嵌插件来执行制备操作，因为对应的 CSI 插件必须已安装且正确配置。
+  这需要启用 CSIMigration 特性标志。
 - `CSIMigrationvSphereComplete`: 停止在 kubelet 和卷控制器中注册 vSphere 内嵌插件，
-  并启用 shims 和转换逻辑以将卷操作从 vSphere 内嵌插件路由到 vSphere CSI 插件。
+  并启用填充和转换逻辑以将卷操作从 vSphere 内嵌插件路由到 vSphere CSI 插件。
   这需要启用 CSIMigration 和 CSIMigrationvSphere 特性标志，并在集群中的所有节点上
   安装和配置 vSphere CSI 插件。该特性标志已被废弃，取而代之的是
   能防止注册内嵌 vsphere 插件的 `InTreePluginvSphereUnregister` 特性标志。
 <!--
-- `CSINodeInfo`: Enable all logic related to the CSINodeInfo API object in csi.storage.k8s.io.
+- `CSIMigrationPortworx`: Enables shims and translation logic to route volume operations
+  from the Portworx in-tree plugin to Portworx CSI plugin.
+  Requires Portworx CSI driver to be installed and configured in the cluster.
+-->
+- `CSIMigrationPortworx`：启用填充和转换逻辑，将卷操作从 Portworx 内嵌插件路由到
+  Portworx CSI 插件。需要在集群中安装并配置 Portworx CSI 插件.
+<!--
+- `CSINodeInfo`: Enable all logic related to the CSINodeInfo API object in `csi.storage.k8s.io`.
 - `CSIPersistentVolume`: Enable discovering and mounting volumes provisioned through a
-  [CSI (Container Storage Interface)](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/storage/container-storage-interface.md)
+  [CSI (Container Storage Interface)](https://git.k8s.io/design-proposals-archive/storage/container-storage-interface.md)
   compatible volume plugin.
 - `CSIServiceAccountToken`: Enable CSI drivers to receive the pods' service account token
   that they mount volumes for. See
@@ -869,16 +1017,16 @@ Each feature gate is designed for enabling/disabling a specific feature:
   [Storage Capacity](/docs/concepts/storage/storage-capacity/).
   Check the [`csi` volume type](/docs/concepts/storage/volumes/#csi) documentation for more details.
 -->
-- `CSINodeInfo`：在 csi.storage.k8s.io 中启用与 CSINodeInfo API 对象有关的所有逻辑。
+- `CSINodeInfo`：在 `csi.storage.k8s.io` 中启用与 CSINodeInfo API 对象有关的所有逻辑。
 - `CSIPersistentVolume`：启用发现和挂载通过
-  [CSI（容器存储接口）](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/storage/container-storage-interface.md)
+  [CSI（容器存储接口）](https://git.k8s.io/design-proposals-archive/storage/container-storage-interface.md)
   兼容卷插件配置的卷。
 - `CSIServiceAccountToken`: 允许 CSI 驱动接收挂载卷目标 Pods 的服务账户令牌。
   参阅[令牌请求（Token Requests）](https://kubernetes-csi.github.io/docs/token-requests.html)。
 - `CSIStorageCapacity`: 使 CSI 驱动程序可以发布存储容量信息，并使 Kubernetes
   调度程序在调度 Pod 时使用该信息。参见
-  [存储容量](/zh/docs/concepts/storage/storage-capacity/)。
-  详情请参见 [`csi` 卷类型](/zh/docs/concepts/storage/volumes/#csi)。
+  [存储容量](/zh-cn/docs/concepts/storage/storage-capacity/)。
+  详情请参见 [`csi` 卷类型](/zh-cn/docs/concepts/storage/volumes/#csi)。
 <!--
 - `CSIVolumeFSGroupPolicy`: Allows CSIDrivers to use the `fsGroupPolicy` field.
   This field controls whether volumes created by a CSIDriver support volume ownership
@@ -890,29 +1038,48 @@ Each feature gate is designed for enabling/disabling a specific feature:
   for fsGroups when mounting a volume in a Pod. See
   [Configure volume permission and ownership change policy for Pods](/docs/tasks/configure-pod-container/security-context/#configure-volume-permission-and-ownership-change-policy-for-pods)
   for more details.
+- `ContextualLogging`: When you enable this feature gate, Kubernetes components that support
+   contextual logging add extra detail to log output.
 - `ControllerManagerLeaderMigration`: Enables leader migration for
   `kube-controller-manager` and `cloud-controller-manager`.
 - `CronJobControllerV2`: Use an alternative implementation of the
   {{< glossary_tooltip text="CronJob" term_id="cronjob" >}} controller. Otherwise,
   version 1 of the same controller is selected.
+- `CronJobTimeZone`: Allow the use of the `timeZone` optional field in [CronJobs](/docs/concepts/workloads/controllers/cron-jobs/)
 -->
-- `CSIVolumeFSGroupPolicy`: 允许 CSIDrivers 使用 `fsGroupPolicy` 字段. 
+- `CSIVolumeFSGroupPolicy`：允许 CSIDrivers 使用 `fsGroupPolicy` 字段. 
   该字段能控制由 CSIDriver 创建的卷在挂载这些卷时是否支持卷所有权和权限修改。
-- `CSIVolumeHealth`: 启用对节点上的 CSI volume 运行状况监控的支持
-- `CSRDuration`: 允许客户端来通过请求 Kubernetes CSR API 签署的证书的持续时间。
+- `CSIVolumeHealth`：启用对节点上的 CSI volume 运行状况监控的支持
+- `CSRDuration`：允许客户端来通过请求 Kubernetes CSR API 签署的证书的持续时间。
 - `ConfigurableFSGroupPolicy`：在 Pod 中挂载卷时，允许用户为 fsGroup
   配置卷访问权限和属主变更策略。请参见
-  [为 Pod 配置卷访问权限和属主变更策略](/zh/docs/tasks/configure-pod-container/security-context/#configure-volume-permission-and-ownership-change-policy-for-pods)。
-- `ControllerManagerLeaderMigration`: 为 `kube-controller-manager` 和 `cloud-controller-manager`
-  开启 leader 迁移功能。
+  [为 Pod 配置卷访问权限和属主变更策略](/zh-cn/docs/tasks/configure-pod-container/security-context/#configure-volume-permission-and-ownership-change-policy-for-pods)。
+- `ContextualLogging`：当你启用这个特性门控，支持日志上下文记录的 Kubernetes
+  组件会为日志输出添加额外的详细内容。
+- `ControllerManagerLeaderMigration`：为 `kube-controller-manager` 和 `cloud-controller-manager`
+  开启领导者迁移功能。
 - `CronJobControllerV2`：使用 {{< glossary_tooltip text="CronJob" term_id="cronjob" >}}
   控制器的一种替代实现。否则，系统会选择同一控制器的 v1 版本。
+- `CronJobTimeZone`：允许在 [CronJobs](/zh-cn/docs/concepts/workloads/controllers/cron-jobs/) 中使用 `timeZone` 可选字段。
 <!--
 - `CustomCPUCFSQuotaPeriod`: Enable nodes to change `cpuCFSQuotaPeriod` in
   [kubelet config](/docs/tasks/administer-cluster/kubelet-config-file/).
+- `CustomResourceValidationExpressions`: Enable expression language validation in CRD
+  which will validate customer resource based on validation rules written in
+  the `x-kubernetes-validations` extension.
 - `CustomPodDNS`: Enable customizing the DNS settings for a Pod using its `dnsConfig` property.
-   Check [Pod's DNS Config](/docs/concepts/services-networking/dns-pod-service/#pods-dns-config)
-   for more details.
+  Check [Pod's DNS Config](/docs/concepts/services-networking/dns-pod-service/#pods-dns-config)
+  for more details.
+-->
+- `CustomCPUCFSQuotaPeriod`：使节点能够更改
+  [kubelet 配置](/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/)
+  中的 `cpuCFSQuotaPeriod`。
+- `CustomResourceValidationExpressions`：启用 CRD 中的表达式语言合法性检查，
+  基于 `x-kubernetes-validations` 扩展中所书写的合法性检查规则来验证定制资源。
+- `CustomPodDNS`：允许使用 Pod 的 `dnsConfig` 属性自定义其 DNS 设置。
+  更多详细信息，请参见
+  [Pod 的 DNS 配置](/zh-cn/docs/concepts/services-networking/dns-pod-service/#pods-dns-config)。
+<!--
 - `CustomResourceDefaulting`: Enable CRD support for default values in OpenAPI v3 validation schemas.
 - `CustomResourcePublishOpenAPI`: Enables publishing of CRD OpenAPI specs.
 - `CustomResourceSubresources`: Enable `/status` and `/scale` subresources
@@ -923,28 +1090,24 @@ Each feature gate is designed for enabling/disabling a specific feature:
   on resources created from [CustomResourceDefinition](/docs/concepts/extend-kubernetes/api-extension/custom-resources/).
 - `DaemonSetUpdateSurge`: Enables the DaemonSet workloads to maintain
   availability during update per node.
+  See [Perform a Rolling Update on a DaemonSet](/docs/tasks/manage-daemon/update-daemon-set/).
 -->
-- `CustomCPUCFSQuotaPeriod`：使节点能够更改
-  [kubelet 配置](/zh/docs/tasks/administer-cluster/kubelet-config-file/).
-  中的 `cpuCFSQuotaPeriod`。
-- `CustomPodDNS`：允许使用 Pod 的 `dnsConfig` 属性自定义其 DNS 设置。
-  更多详细信息，请参见
-  [Pod 的 DNS 配置](/zh/docs/concepts/services-networking/dns-pod-service/#pods-dns-config)。
 - `CustomResourceDefaulting`：为 CRD 启用在其 OpenAPI v3 验证模式中提供默认值的支持。
 - `CustomResourcePublishOpenAPI`：启用 CRD OpenAPI 规范的发布。
 - `CustomResourceSubresources`：对于用
-  [CustomResourceDefinition](/zh/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
+  [CustomResourceDefinition](/zh-cn/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
   创建的资源启用其 `/status` 和 `/scale` 子资源。
 - `CustomResourceValidation`：对于用
-  [CustomResourceDefinition](/zh/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
+  [CustomResourceDefinition](/zh-cn/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
   创建的资源启用基于模式的验证。
 - `CustomResourceWebhookConversion`：对于用
-  [CustomResourceDefinition](/zh/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
+  [CustomResourceDefinition](/zh-cn/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
   创建的资源启用基于 Webhook 的转换。
 - `DaemonSetUpdateSurge`: 使 DaemonSet 工作负载在每个节点的更新期间保持可用性。
+  参阅[对 DaemonSet 执行滚动更新](/zh-cn/docs/tasks/manage-daemon/update-daemon-set/)。
 <!--
 - `DefaultPodTopologySpread`: Enables the use of `PodTopologySpread` scheduling plugin to do
-  [default spreading](/docs/concepts/workloads/pods/pod-topology-spread-constraints/#internal-default-constraints).
+  [default spreading](/docs/concepts/scheduling-eviction/topology-spread-constraints/#internal-default-constraints).
 - `DelegateFSGroupToCSIDriver`: If supported by the CSI driver, delegates the
   role of applying `fsGroup` from a Pod's `securityContext` to the driver by
   passing `fsGroup` through the NodeStageVolume and NodePublishVolume CSI calls.
@@ -952,38 +1115,44 @@ Each feature gate is designed for enabling/disabling a specific feature:
   based resource provisioning on nodes.
 - `DisableAcceleratorUsageMetrics`:
   [Disable accelerator metrics collected by the kubelet](/docs/concepts/cluster-administration/system-metrics/#disable-accelerator-metrics).
+-->
+- `DefaultPodTopologySpread`: 启用 `PodTopologySpread` 调度插件来完成
+  [默认的调度传播](/zh-cn/docs/concepts/scheduling-eviction/topology-spread-constraints/#internal-default-constraints).
+- `DelegateFSGroupToCSIDriver`: 如果 CSI 驱动程序支持，则通过 NodeStageVolume 和
+  NodePublishVolume CSI 调用传递 `fsGroup` ，将应用 `fsGroup` 从 Pod 的
+  `securityContext` 的角色委托给驱动。
+- `DevicePlugins`：在节点上启用基于
+  [设备插件](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)
+  的资源制备。
+- `DisableAcceleratorUsageMetrics`： 
+  [禁用 kubelet 收集加速器指标](/zh-cn/docs/concepts/cluster-administration/system-metrics/#disable-accelerator-metrics).
+<!--
 - `DisableCloudProviders`: Disables any functionality in `kube-apiserver`,
   `kube-controller-manager` and `kubelet` related to the `--cloud-provider`
   component flag.
+- `DisableKubeletCloudCredentialProviders`: Disable the in-tree functionality in kubelet
+  to authenticate to a cloud provider container registry for image pull credentials.
 - `DownwardAPIHugePages`: Enables usage of hugepages in
   [downward API](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information).
 - `DryRun`: Enable server-side [dry run](/docs/reference/using-api/api-concepts/#dry-run) requests
   so that validation, merging, and mutation can be tested without committing.
 - `DynamicAuditing`: Used to enable dynamic auditing before v1.19.
 -->
-- `DefaultPodTopologySpread`: 启用 `PodTopologySpread` 调度插件来完成
-  [默认的调度传播](/zh/docs/concepts/workloads/pods/pod-topology-spread-constraints/#internal-default-constraints).
-- `DelegateFSGroupToCSIDriver`: 如果 CSI 驱动程序支持，则通过 NodeStageVolume 和
-  NodePublishVolume CSI 调用传递 `fsGroup` ，将应用 `fsGroup` 从 Pod 的
-  `securityContext` 的角色委托给驱动。
-- `DevicePlugins`：在节点上启用基于
-  [设备插件](/zh/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)的
-  资源制备。
-- `DisableAcceleratorUsageMetrics`： 
-  [禁用 kubelet 收集加速器指标](/zh/docs/concepts/cluster-administration/system-metrics/#disable-accelerator-metrics).
-- `DisableCloudProviders`: 禁用 `kube-apiserver`，
-  `kube-controller-manager` 和 `kubelet` 组件的 `--cloud-provider` 标志相关
-  的所有功能。
+- `DisableCloudProviders`: 禁用 `kube-apiserver`，`kube-controller-manager` 和
+  `kubelet` 组件的 `--cloud-provider` 标志相关的所有功能。
+- `DisableKubeletCloudCredentialProviders`：禁用 kubelet 中为拉取镜像内置的凭据机制，
+  该凭据用于向某云提供商的容器镜像仓库执行身份认证。
 - `DownwardAPIHugePages`：允许在
-  [下行（Downward）API](/zh/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information)
+  [下行（Downward）API](/zh-cn/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information)
   中使用巨页信息。
 - `DryRun`：启用在服务器端对请求进行
-  [彩排（Dry Run）](/zh/docs/reference/using-api/api-concepts/#dry-run)，
+  [试运行（Dry Run）](/zh-cn/docs/reference/using-api/api-concepts/#dry-run)，
   以便测试验证、合并和修改，同时避免提交更改。
 - `DynamicAuditing`：在 v1.19 版本前用于启用动态审计。
 <!--
-- `DynamicKubeletConfig`: Enable the dynamic configuration of kubelet. See
-  [Reconfigure kubelet](/docs/tasks/administer-cluster/reconfigure-kubelet/).
+- `DynamicKubeletConfig`: Enable the dynamic configuration of kubelet. The
+  feature is no longer supported outside of supported skew policy. The feature
+  gate was removed from kubelet in 1.24. See [Reconfigure kubelet](/docs/tasks/administer-cluster/reconfigure-kubelet/).
 - `DynamicProvisioningScheduling`: Extend the default scheduler to be aware of
   volume topology and handle PV provisioning.
   This feature is superseded by the `VolumeScheduling` feature completely in v1.12.
@@ -995,36 +1164,36 @@ Each feature gate is designed for enabling/disabling a specific feature:
 - `EnableAggregatedDiscoveryTimeout`: Enable the five second
   timeout on aggregated discovery calls.
 -->
-- `DynamicKubeletConfig`：启用 kubelet 的动态配置。请参阅
-  [重新配置 kubelet](/zh/docs/tasks/administer-cluster/reconfigure-kubelet/)。
+- `DynamicKubeletConfig`：启用 kubelet 的动态配置。
+  除偏差策略场景外，不再支持该功能。该特性门控在 kubelet 1.24 版本中已被移除。
+  请参阅[重新配置 kubelet](/zh-cn/docs/tasks/administer-cluster/reconfigure-kubelet/)。
 - `DynamicProvisioningScheduling`：扩展默认调度器以了解卷拓扑并处理 PV 配置。
   此特性已在 v1.12 中完全被 `VolumeScheduling` 特性取代。
-- `DynamicVolumeProvisioning`：启用持久化卷到 Pod 的
-  [动态预配置](/zh/docs/concepts/storage/dynamic-provisioning/)。
-- `EfficientWatchResumption`：允许从存储发起的 bookmark（进度通知）事件被
-  通知到用户。此特性仅适用于 watch 操作。
+- `DynamicVolumeProvisioning`：启用持久化卷到 Pod
+  的[动态预配置](/zh-cn/docs/concepts/storage/dynamic-provisioning/)。
+- `EfficientWatchResumption`：允许从存储发起的 bookmark（进度通知）事件被通知到用户。
+  此特性仅适用于 watch 操作。
 - `EnableAggregatedDiscoveryTimeout`：对聚集的发现调用启用五秒钟超时设置。
 <!--
 - `EnableEquivalenceClassCache`: Enable the scheduler to cache equivalence of
   nodes when scheduling Pods.
 - `EndpointSlice`: Enables EndpointSlices for more scalable and extensible
-   network endpoints. See [Enabling EndpointSlices](/docs/tasks/administer-cluster/enabling-endpointslices/).
+   network endpoints. See [Enabling EndpointSlices](/docs/concepts/services-networking/endpoint-slices/).
 - `EndpointSliceNodeName`: Enables EndpointSlice `nodeName` field.
 - `EndpointSliceProxying`: When enabled, kube-proxy running
    on Linux will use EndpointSlices as the primary data source instead of
    Endpoints, enabling scalability and performance improvements. See
-   [Enabling Endpoint Slices](/docs/tasks/administer-cluster/enabling-endpointslices/).
+   [Enabling Endpoint Slices](/docs/concepts/services-networking/endpoint-slices/).
 - `EndpointSliceTerminatingCondition`: Enables EndpointSlice `terminating` and `serving`
    condition fields.
 -->
 - `EnableEquivalenceClassCache`：调度 Pod 时，使 scheduler 缓存节点的等效项。
 - `EndpointSlice`：启用 EndpointSlice 以实现可扩缩性和可扩展性更好的网络端点。
-   参阅[启用 EndpointSlice](/zh/docs/tasks/administer-cluster/enabling-endpointslices/)。
+   参阅[启用 EndpointSlice](/zh-cn/docs/concepts/services-networking/endpoint-slices/)。
 - `EndpointSliceNodeName`：允许使用 EndpointSlice 的 `nodeName` 字段。
 - `EndpointSliceProxying`：启用此特性门控时，Linux 上运行的 kube-proxy 会使用
-   EndpointSlices 而不是 Endpoints 作为其主要数据源，从而使得可扩缩性和性能
-   提升成为可能。参阅
-   [启用 EndpointSlice](/zh/docs/tasks/administer-cluster/enabling-endpointslices/)。
+  EndpointSlices 而不是 Endpoints 作为其主要数据源，从而使得可扩缩性和性能提升成为可能。
+  参阅[启用 EndpointSlice](/zh-cn/docs/concepts/services-networking/endpoint-slices/)。
 - `EndpointSliceTerminatingCondition`：允许使用 EndpointSlice 的 `terminating` 和
   `serving` 状况字段。
 <!--
@@ -1032,7 +1201,7 @@ Each feature gate is designed for enabling/disabling a specific feature:
   {{< glossary_tooltip text="ephemeral containers" term_id="ephemeral-container" >}}
   to running pods.
 - `EvenPodsSpread`: Enable pods to be scheduled evenly across topology domains. See
-  [Pod Topology Spread Constraints](/docs/concepts/workloads/pods/pod-topology-spread-constraints/).
+  [Pod Topology Spread Constraints](/docs/concepts/scheduling-eviction/topology-spread-constraints/).
 - `ExecProbeTimeout`: Ensure kubelet respects exec probe timeouts.
   This feature gate exists in case any of your existing workloads depend on a
   now-corrected fault where Kubernetes ignored exec probe timeouts. See
@@ -1042,15 +1211,16 @@ Each feature gate is designed for enabling/disabling a specific feature:
   {{< glossary_tooltip text="临时容器" term_id="ephemeral-container" >}}
   到正在运行的 Pod 的特性。
 - `EvenPodsSpread`：使 Pod 能够在拓扑域之间平衡调度。请参阅
-  [Pod 拓扑扩展约束](/zh/docs/concepts/workloads/pods/pod-topology-spread-constraints/)。
+  [Pod 拓扑扩展约束](/zh-cn/docs/concepts/scheduling-eviction/topology-spread-constraints/)。
 - `ExecProbeTimeout`：确保 kubelet 会遵从 exec 探针的超时值设置。
   此特性门控的主要目的是方便你处理现有的、依赖于已被修复的缺陷的工作负载；
   该缺陷导致 Kubernetes 会忽略 exec 探针的超时值设置。
-  参阅[就绪态探针](/zh/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes).
+  参阅[就绪态探针](/zh-cn/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes).
 <!--
 - `ExpandCSIVolumes`: Enable the expanding of CSI volumes.
 - `ExpandedDNSConfig`: Enable kubelet and kube-apiserver to allow more DNS
-  search paths and longer list of DNS search paths. See
+  search paths and longer list of DNS search paths. This feature requires container
+  runtime support(Containerd: v1.5.6 or higher, CRI-O: v1.22 or higher). See
   [Expanded DNS Configuration](/docs/concepts/services-networking/dns-pod-service/#expanded-dns-configuration).
 - `ExpandInUsePersistentVolumes`: Enable expanding in-use PVCs. See
   [Resizing an in-use PersistentVolumeClaim](/docs/concepts/storage/persistent-volumes/#resizing-an-in-use-persistentvolumeclaim).
@@ -1062,22 +1232,24 @@ Each feature gate is designed for enabling/disabling a specific feature:
 -->
 - `ExpandCSIVolumes`: 启用扩展 CSI 卷。
 - `ExpandedDNSConfig`: 在 kubelet 和 kube-apiserver 上启用后，
-  允许更多的 DNS 搜索域和搜索域列表。 参阅
-  [扩展 DNS 配置](/zh/docs/concepts/services-networking/dns-pod-service/#expanded-dns-configuration).
+  允许使用更多的 DNS 搜索域和搜索域列表。此功能特性需要容器运行时
+  （Containerd：v1.5.6 或更高，CRI-O：v1.22 或更高）的支持。参阅
+  [扩展 DNS 配置](/zh-cn/docs/concepts/services-networking/dns-pod-service/#expanded-dns-configuration).
 - `ExpandInUsePersistentVolumes`：启用扩充使用中的 PVC 的尺寸。请查阅
-  [调整使用中的 PersistentVolumeClaim 的大小](/zh/docs/concepts/storage/persistent-volumes/#resizing-an-in-use-persistentvolumeclaim)。
+  [调整使用中的 PersistentVolumeClaim 的大小](/zh-cn/docs/concepts/storage/persistent-volumes/#resizing-an-in-use-persistentvolumeclaim)。
 - `ExpandPersistentVolumes`：允许扩充持久卷。请查阅
-  [扩展持久卷申领](/zh/docs/concepts/storage/persistent-volumes/#expanding-persistent-volumes-claims)。
-- `ExperimentalCriticalPodAnnotation`：启用将特定 Pod 注解为 *critical* 的方式，用于
-  [确保其被调度](/zh/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/)。
+  [扩展持久卷申领](/zh-cn/docs/concepts/storage/persistent-volumes/#expanding-persistent-volumes-claims)。
+- `ExperimentalCriticalPodAnnotation`：启用将特定 Pod 注解为 **critical** 的方式，用于
+  [确保其被调度](/zh-cn/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/)。
   从 v1.13 开始已弃用此特性，转而使用 Pod 优先级和抢占功能。
 <!--
 - `ExperimentalHostUserNamespaceDefaulting`: Enabling the defaulting user
-   namespace to host. This is for containers that are using other host namespaces,
-   host mounts, or containers that are privileged or using specific non-namespaced
-   capabilities (e.g. `MKNODE`, `SYS_MODULE` etc.). This should only be enabled
-   if user namespace remapping is enabled in the Docker daemon.
-- `ExternalPolicyForExternalIP`: Fix a bug where ExternalTrafficPolicy is not applied to Service ExternalIPs.
+  namespace to host. This is for containers that are using other host namespaces,
+  host mounts, or containers that are privileged or using specific non-namespaced
+  capabilities (e.g. `MKNODE`, `SYS_MODULE` etc.). This should only be enabled
+  if user namespace remapping is enabled in the Docker daemon.
+- `ExternalPolicyForExternalIP`: Fix a bug where ExternalTrafficPolicy is not
+  applied to Service ExternalIPs.
 - `GCERegionalPersistentDisk`: Enable the regional PD feature on GCE.
 - `GenericEphemeralVolume`: Enables ephemeral, inline volumes that support all features
   of normal volumes (can be provided by third-party storage vendors, storage capacity tracking,
@@ -1093,16 +1265,34 @@ Each feature gate is designed for enabling/disabling a specific feature:
   这适用于使用其他主机名字空间、主机安装的容器，或具有特权或使用特定的非名字空间功能
   （例如 MKNODE、SYS_MODULE 等）的容器。
   如果在 Docker 守护程序中启用了用户名字空间重新映射，则启用此选项。
-- `ExternalPolicyForExternalIP`： 修复 ExternalPolicyForExternalIP 没有应用于 Service ExternalIPs 的 bug。
+- `ExternalPolicyForExternalIP`： 修复 ExternalPolicyForExternalIP 没有应用于
+  Service ExternalIPs 的缺陷。
 - `GCERegionalPersistentDisk`：在 GCE 上启用带地理区域信息的 PD 特性。
 - `GenericEphemeralVolume`：启用支持临时的内联卷，这些卷支持普通卷
-  （可以由第三方存储供应商提供、存储容量跟踪、从快照还原等等）的所有功能。请参见
-  [临时卷](/zh/docs/concepts/storage/ephemeral-volumes/)。
+  （可以由第三方存储供应商提供、存储容量跟踪、从快照还原等等）的所有功能。
+  请参见[临时卷](/zh-cn/docs/concepts/storage/ephemeral-volumes/)。
 - `GracefulNodeShutdown`：在 kubelet 中启用体面地关闭节点的支持。
-  在系统关闭时，kubelet 会尝试监测该事件并体面地终止节点上运行的 Pods。参阅
-  [体面地关闭节点](/zh/docs/concepts/architecture/nodes/#graceful-node-shutdown)
+  在系统关闭时，kubelet 会尝试监测该事件并体面地终止节点上运行的 Pods。
+  参阅[体面地关闭节点](/zh-cn/docs/concepts/architecture/nodes/#graceful-node-shutdown)
   以了解更多细节。
 <!--
+- `GracefulNodeShutdownBasedOnPodPriority`: Enables the kubelet to check Pod priorities
+  when shutting down a node gracefully.
+- `GRPCContainerProbe`: Enables the gRPC probe method for {Liveness,Readiness,Startup}Probe.
+  See [Configure Liveness, Readiness and Startup Probes](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#define-a-grpc-liveness-probe).
+- `HonorPVReclaimPolicy`: Honor persistent volume reclaim policy when it is `Delete` irrespective of PV-PVC deletion ordering.
+  For more details, check the
+  [PersistentVolume deletion protection finalizer](/docs/concepts/storage/persistent-volumes/#persistentvolume-deletion-protection-finalizer)
+  documentation.
+-->
+- `GracefulNodeShutdownBasedOnPodPriority`：允许 kubelet 在体面终止节点时检查
+  Pod 的优先级。
+- `GRPCContainerProbe`：为 LivenessProbe、ReadinessProbe、StartupProbe 启用 gRPC 探针。
+  参阅[配置活跃态、就绪态和启动探针](/zh-cn/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#define-a-grpc-liveness-probe)。
+- `HonorPVReclaimPolicy`：无论 PV 和 PVC 的删除顺序如何，当持久卷申领的策略为 `Delete`
+  时，确保这种策略得到处理。
+  更多详细信息，请参阅 [PersistentVolume 删除保护 finalizer](/zh-cn/docs/concepts/storage/persistent-volumes/#persistentvolume-deletion-protection-finalizer)文档。
+<!--
 - `HPAContainerMetrics`: Enable the `HorizontalPodAutoscaler` to scale based on
   metrics from individual containers in target pods.
 - `HPAScaleToZero`: Enables setting `minReplicas` to 0 for `HorizontalPodAutoscaler`
@@ -1111,32 +1301,69 @@ Each feature gate is designed for enabling/disabling a specific feature:
   [huge pages](/docs/tasks/manage-hugepages/scheduling-hugepages/).
 - `HugePageStorageMediumSize`: Enable support for multiple sizes pre-allocated
   [huge pages](/docs/tasks/manage-hugepages/scheduling-hugepages/).
+- `HyperVContainer`: Enable
+  [Hyper-V isolation](https://docs.microsoft.com/en-us/virtualization/windowscontainers/manage-containers/hyperv-container)
+  for Windows containers.
 -->
 - `HPAContainerMetrics`：允许 `HorizontalPodAutoscaler` 基于目标 Pods 中各容器
   的度量值来执行扩缩操作。
 - `HPAScaleToZero`：使用自定义指标或外部指标时，可将 `HorizontalPodAutoscaler`
   资源的 `minReplicas` 设置为 0。
 - `HugePages`：启用分配和使用预分配的
-  [巨页资源](/zh/docs/tasks/manage-hugepages/scheduling-hugepages/)。
+  [巨页资源](/zh-cn/docs/tasks/manage-hugepages/scheduling-hugepages/)。
 - `HugePageStorageMediumSize`：启用支持多种大小的预分配
-  [巨页资源](/zh/docs/tasks/manage-hugepages/scheduling-hugepages/)。
-
+  [巨页资源](/zh-cn/docs/tasks/manage-hugepages/scheduling-hugepages/)。
+- `HyperVContainer`：为 Windows 容器启用
+  [Hyper-V 隔离](https://docs.microsoft.com/en-us/virtualization/windowscontainers/manage-containers/hyperv-container)。
 <!--
-- `HyperVContainer`: Enable
-  [Hyper-V isolation](https://docs.microsoft.com/en-us/virtualization/windowscontainers/manage-containers/hyperv-container)
-  for Windows containers.
+- `IdentifyPodOS`: Allows the Pod OS field to be specified. This helps in identifying
+  the OS of the pod authoritatively during the API server admission time.
+  In Kubernetes {{< skew currentVersion >}}, the allowed values for the `pod.spec.os.name`
+  are `windows` and `linux`.
 - `ImmutableEphemeralVolumes`: Allows for marking individual Secrets and ConfigMaps as
   immutable for better safety and performance.
+- `IndexedJob`: Allows the [Job](/docs/concepts/workloads/controllers/job/)
+  controller to manage Pod completions per completion index.
+- `IngressClassNamespacedParams`: Allow namespace-scoped parameters reference in
+  `IngressClass` resource. This feature adds two fields - `Scope` and `Namespace`
+  to `IngressClass.spec.parameters`.
+- `Initializers`: Allow asynchronous coordination of object creation using the
+  Initializers admission plugin.
 - `InTreePluginAWSUnregister`: Stops registering the aws-ebs in-tree plugin in kubelet
   and volume controllers.
 - `InTreePluginAzureDiskUnregister`: Stops registering the azuredisk in-tree plugin in kubelet
   and volume controllers.
 - `InTreePluginAzureFileUnregister`: Stops registering the azurefile in-tree plugin in kubelet
   and volume controllers.
+-->
+- `IdentifyPodOS`：允许设置 Pod 的 OS 字段。这一设置有助于在 API 服务器准入期间确定性地辨识
+  Pod 的 OS。在 Kubernetes {{< skew currentVersion >}} 中，`pod.spec.os.name` 可选的值包括
+  `windows` 和 `linux`。
+- `ImmutableEphemeralVolumes`：允许将各个 Secret 和 ConfigMap 标记为不可变更的，
+  以提高安全性和性能。
+- `IndexedJob`：允许 [Job](/zh-cn/docs/concepts/workloads/controllers/job/)
+   控制器来管理每个完成索引的 Pod 完成。
+- `IngressClassNamespacedParams`：允许在 `IngressClass` 资源中使用命名空间范围的参数引用。
+  此功能为 `IngressClass.spec.parameters` 添加了两个字段 - `scope` 和 `namespace`。
+- `Initializers`：允许使用 Intializers 准入插件来异步协调对象创建操作。
+- `InTreePluginAWSUnregister`: 在 kubelet 和卷控制器上关闭注册 aws-ebs 内嵌插件。
+- `InTreePluginAzureDiskUnregister`: 在 kubelet 和卷控制器上关闭注册 azuredisk 内嵌插件。
+- `InTreePluginAzureFileUnregister`: 在 kubelet 和卷控制器上关闭注册 azurefile 内嵌插件。
+<!--
 - `InTreePluginGCEUnregister`: Stops registering the gce-pd in-tree plugin in kubelet
   and volume controllers.
 - `InTreePluginOpenStackUnregister`: Stops registering the OpenStack cinder in-tree plugin in kubelet
   and volume controllers.
+- `InTreePluginPortworxUnregister`: Stops registering the Portworx in-tree plugin in kubelet
+  and volume controllers.
+- `InTreePluginRBDUnregister`: Stops registering the RBD in-tree plugin in kubelet
+  and volume controllers.
+-->
+- `InTreePluginGCEUnregister`: 在 kubelet 和卷控制器上关闭注册 gce-pd 内嵌插件。
+- `InTreePluginOpenStackUnregister`: 在 kubelet 和卷控制器上关闭注册 OpenStack cinder 内嵌插件。
+- `InTreePluginPortworxUnregister`: 在 kubelet 和卷控制器上关闭注册 Portworx 内嵌插件。
+- `InTreePluginRBDUnregister`: 在 kubelet 和卷控制器上关闭注册 RBD 内嵌插件。
+<!--
 - `InTreePluginvSphereUnregister`: Stops registering the vSphere in-tree plugin in kubelet
   and volume controllers.
 - `IndexedJob`: Allows the [Job](/docs/concepts/workloads/controllers/job/)
@@ -1146,69 +1373,89 @@ Each feature gate is designed for enabling/disabling a specific feature:
   to `IngressClass.spec.parameters`.
 - `Initializers`: Allow asynchronous coordination of object creation using the
   Initializers admission plugin.
+-->
+- `InTreePluginvSphereUnregister`: 在 kubelet 和卷控制器上关闭注册 vSphere 内嵌插件。
+- `IndexedJob`：允许 [Job](/zh-cn/docs/concepts/workloads/controllers/job/)
+  控制器根据完成索引来管理 Pod 完成。
+- `IngressClassNamespacedParams`：允许在 `IngressClass` 资源中引用命名空间范围的参数。
+  该特性增加了两个字段 —— `scope`、`namespace` 到 `IngressClass.spec.parameters`。
+- `Initializers`： 使用 Initializers 准入插件允许异步协调对象创建。
+<!--
 - `IPv6DualStack`: Enable [dual stack](/docs/concepts/services-networking/dual-stack/)
   support for IPv6.
+- `JobMutableNodeSchedulingDirectives`: Allows updating node scheduling directives in
+  the pod template of [Job](/docs/concepts/workloads/controllers/job).
+- `JobReadyPods`: Enables tracking the number of Pods that have a `Ready`
+  [condition](/docs/concepts/scheduling-eviction/lifecycle/#pod-conditions).
+  The count of `Ready` pods is recorded in the
+  [status](/docs/reference/kubernetes-api/workload-resources/job-v1/#JobStatus)
+  of a [Job](/docs/concepts/workloads/controllers/job) status.
+-->
+- `IPv6DualStack`：启用[双协议栈](/zh-cn/docs/concepts/services-networking/dual-stack/)
+  以支持 IPv6。
+- `JobMutableNodeSchedulingDirectives`：允许在 [Job](/docs/concepts/workloads/controllers/job)
+  的 Pod 模板中更新节点调度指令。 
+- `JobReadyPods`：允许跟踪[状况](/zh-cn/docs/concepts/scheduling-eviction/lifecycle/#pod-conditions)为
+  `Ready` 的 Pod 的个数。`Ready` 的 Pod 记录在
+  [Job](/zh-cn/docs/concepts/workloads/controllers/job) 对象的
+  [status](/docs/reference/kubernetes-api/workload-resources/job-v1/#JobStatus) 字段中。
+<!--
 - `JobTrackingWithFinalizers`: Enables tracking [Job](/docs/concepts/workloads/controllers/job)
   completions without relying on Pods remaining in the cluster indefinitely.
   The Job controller uses Pod finalizers and a field in the Job status to keep
   track of the finished Pods to count towards completion.
-- `KubeletConfigFile`: Enable loading kubelet configuration 
-  from a file specified using a config file.
+- `KubeletConfigFile`: Enable loading kubelet configuration from
+  a file specified using a config file.
   See [setting kubelet parameters via a config file](/docs/tasks/administer-cluster/kubelet-config-file/)
   for more details.
-- `KubeletCredentialProviders`: Enable kubelet exec credential providers for image pull credentials.
-- `KubeletInUserNamespace`: Enables support for running kubelet in a {{<glossary_tooltip text="user namespace" term_id="userns">}}.
+-->
+- `JobTrackingWithFinalizers`: 启用跟踪 [Job](/zh-cn/docs/concepts/workloads/controllers/job)
+  完成情况，而不是永远从集群剩余 Pod 来获取信息判断完成情况。Job 控制器使用
+  Pod finalizers 和 Job 状态中的一个字段来跟踪已完成的 Pod 以计算完成。
+- `KubeletConfigFile`：启用从使用配置文件指定的文件中加载 kubelet 配置。
+  有关更多详细信息，请参见
+  [通过配置文件设置 kubelet 参数](/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/)。
+<!--
+- `KubeletCredentialProviders`: Enable kubelet exec credential providers for
+  image pull credentials.
+- `KubeletInUserNamespace`: Enables support for running kubelet in a
+  {{<glossary_tooltip text="user namespace" term_id="userns">}}.
    See [Running Kubernetes Node Components as a Non-root User](/docs/tasks/administer-cluster/kubelet-in-userns/).
 - `KubeletPluginsWatcher`: Enable probe-based plugin watcher utility to enable kubelet
   to discover plugins such as [CSI volume drivers](/docs/concepts/storage/volumes/#csi).
 -->
-- `HyperVContainer`：为 Windows 容器启用
-  [Hyper-V 隔离](https://docs.microsoft.com/en-us/virtualization/windowscontainers/manage-containers/hyperv-container)。
-- `ImmutableEphemeralVolumes`：允许将各个 Secret 和 ConfigMap 标记为不可变更的，
-  以提高安全性和性能。
-- `InTreePluginAWSUnregister`: 在 kubelet 和 卷控制器上关闭注册 aws-ebs 内嵌插件。
-- `InTreePluginAzureDiskUnregister`: 在 kubelet 和 卷控制器上关闭注册 azuredisk 内嵌插件。
-- `InTreePluginAzureFileUnregister`: 在 kubelet 和 卷控制器上关闭注册 azurefile 内嵌插件。
-- `InTreePluginGCEUnregister`: 在 kubelet 和 卷控制器上关闭注册 gce-pd 内嵌插件。
-- `InTreePluginOpenStackUnregister`: 在 kubelet 和 卷控制器上关闭注册 OpenStack cinder 内嵌插件。
-- `InTreePluginvSphereUnregister`: 在 kubelet 和 卷控制器上关闭注册 vSphere 内嵌插件。
-- `IndexedJob`：允许 [Job](/zh/docs/concepts/workloads/controllers/job/) 控制器按每个完成的索引去管理 Pod 完成。
-- `IngressClassNamespacedParams`：允许引用命名空间范围的参数引用 `IngressClass`资源。该特性增加了两个字段 —— `Scope` 和 `Namespace` 到 `IngressClass.spec.parameters`。
-- `Initializers`： 使用 Initializers 准入插件允许异步协调对象创建。
-- `IPv6DualStack`：启用 [双协议栈](/zh/docs/concepts/services-networking/dual-stack/)
-  以支持 IPv6。
-- `JobTrackingWithFinalizers`: 启用跟踪 [Job](/zh/docs/concepts/workloads/controllers/job)
-  完成情况，而不是永远从集群剩余 pod 来获取信息判断完成情况。Job 控制器使
-  用 Pod finalizers 和 Job 状态中的一个字段来跟踪已完成的 Pod 以计算完成。
-- `KubeletConfigFile`：启用从使用配置文件指定的文件中加载 kubelet 配置。
-  有关更多详细信息，请参见
-  [通过配置文件设置 kubelet 参数](/zh/docs/tasks/administer-cluster/kubelet-config-file/)。
-- `KubeletCredentialProviders`：允许使用 kubelet exec 凭据提供程序来设置
-  镜像拉取凭据。
-- `KubeletInUserNamespace`: 支持在 {{<glossary_tooltip text="user namespace" term_id="userns">}} 里运行 kubelet 。
-   请参见 [使用非 Root 用户来运行 Kubernetes 节点组件](/zh/docs/tasks/administer-cluster/kubelet-in-userns/).
-- `KubeletPluginsWatcher`：启用基于探针的插件监视应用程序，使 kubelet 能够发现
-  类似 [CSI 卷驱动程序](/zh/docs/concepts/storage/volumes/#csi)这类插件。
+- `KubeletCredentialProviders`：允许使用 kubelet exec 凭据提供程序来设置镜像拉取凭据。
+- `KubeletInUserNamespace`: 支持在{{<glossary_tooltip text="用户名字空间" term_id="userns">}}
+  里运行 kubelet 。
+  请参见[使用非 Root 用户来运行 Kubernetes 节点组件](/zh-cn/docs/tasks/administer-cluster/kubelet-in-userns/)。
+- `KubeletPluginsWatcher`：启用基于探针的插件监视应用程序，使 kubelet 能够发现类似
+  [CSI 卷驱动程序](/zh-cn/docs/concepts/storage/volumes/#csi)这类插件。
 <!--
 - `KubeletPodResources`: Enable the kubelet's pod resources gRPC endpoint. See
   [Support Device Monitoring](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/606-compute-device-assignment/README.md)
   for more details.
-- `KubeletPodResourcesGetAllocatable`: Enable the kubelet's pod resources `GetAllocatableResources` functionality.
-  This API augments the [resource allocation reporting](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/#monitoring-device-plugin-resources)
-  with informations about the allocatable resources, enabling clients to properly track the free compute resources on a node.
+- `KubeletPodResourcesGetAllocatable`: Enable the kubelet's pod resources
+  `GetAllocatableResources` functionality. This API augments the
+  [resource allocation reporting](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/#monitoring-device-plugin-resources)
+  with informations about the allocatable resources, enabling clients to properly
+  track the free compute resources on a node.
 - `LegacyNodeRoleBehavior`: When disabled, legacy behavior in service load balancers and
   node disruption will ignore the `node-role.kubernetes.io/master` label in favor of the
   feature-specific labels provided by `NodeDisruptionExclusion` and `ServiceNodeExclusion`.
+- `LegacyServiceAccountTokenNoAutoGeneration`: Stop auto-generation of Secret-based
+  [service account tokens](/docs/reference/access-authn-authz/authentication/#service-account-tokens).
 -->
-- `KubeletPodResources`：启用 kubelet 上 Pod 资源 GRPC 端点。更多详细信息，请参见
-  [支持设备监控](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/compute-device-assignment.md)。
-- `KubeletPodResourcesGetAllocatable`：启用 kubelet 的 pod 资源
-  的 `GetAllocatableResources` 功能。
-  该 API 增强了[资源分配报告]（/zh/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/#monitoring-device-plugin-resources）
+- `KubeletPodResources`：启用 kubelet 上 Pod 资源 GRPC 端点。更多详细信息，
+  请参见[支持设备监控](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/compute-device-assignment.md)。
+- `KubeletPodResourcesGetAllocatable`：启用 kubelet 的 pod 资源的
+  `GetAllocatableResources` 功能。
+  该 API 增强了[资源分配报告](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/#monitoring-device-plugin-resources)
   包含有关可分配资源的信息，使客户端能够正确跟踪节点上的可用计算资源。
-- `LegacyNodeRoleBehavior`：禁用此门控时，服务负载均衡器中和节点干扰中的原先行为
-  会忽略 `node-role.kubernetes.io/master` 标签，使用 `NodeDisruptionExclusion` 和
+- `LegacyNodeRoleBehavior`：禁用此门控时，服务负载均衡器中和节点干扰中的原先行为会忽略
+  `node-role.kubernetes.io/master` 标签，使用 `NodeDisruptionExclusion` 和
   `ServiceNodeExclusion` 对应特性所提供的标签。
+- `LegacyServiceAccountTokenNoAutoGeneration`：停止基于 Secret 的自动生成
+  [服务账号令牌](/zh-cn/docs/reference/access-authn-authz/authentication/#service-account-tokens).
 <!--
 - `LocalStorageCapacityIsolation`: Enable the consumption of
   [local ephemeral storage](/docs/concepts/configuration/manage-resources-containers/)
@@ -1221,83 +1468,122 @@ Each feature gate is designed for enabling/disabling a specific feature:
   supports project quotas and they are enabled, use project quotas to monitor
   [emptyDir volume](/docs/concepts/storage/volumes/#emptydir) storage consumption rather than
   filesystem walk for better performance and accuracy.
-- `LogarithmicScaleDown`: Enable semi-random selection of pods to evict on controller scaledown
-  based on logarithmic bucketing of pod timestamps.
-- `MemoryManager`: Allows setting memory affinity for a container based on
-  NUMA topology.
-- `MemoryQoS`: Enable memory protection and usage throttle on pod / container using cgroup v2 memory controller.
-- `MixedProtocolLBService`: Enable using different protocols in the same `LoadBalancer` type
-  Service instance.
-- `MountContainers`: Enable using utility containers on host as
-  the volume mounter.
 -->
 - `LocalStorageCapacityIsolation`：允许使用
-  [本地临时存储](/zh/docs/concepts/configuration/manage-resources-containers/)
-  以及 [emptyDir 卷](/zh/docs/concepts/storage/volumes/#emptydir) 的 `sizeLimit` 属性。
+  [本地临时存储](/zh-cn/docs/concepts/configuration/manage-resources-containers/)
+  以及 [emptyDir 卷](/zh-cn/docs/concepts/storage/volumes/#emptydir)的 `sizeLimit` 属性。
 - `LocalStorageCapacityIsolationFSQuotaMonitoring`：如果
-  [本地临时存储](/zh/docs/concepts/configuration/manage-resources-containers/)
-  启用了 `LocalStorageCapacityIsolation`，并且
-  [emptyDir 卷](/zh/docs/concepts/storage/volumes/#emptydir)
-  的后备文件系统支持项目配额，并且启用了这些配额，将使用项目配额来监视
-  [emptyDir 卷](/zh/docs/concepts/storage/volumes/#emptydir)的存储消耗
-  而不是遍历文件系统，以此获得更好的性能和准确性。
-- `LogarithmicScaleDown`：启用 Pod 的半随机（semi-random）选择，控制器将根据 Pod 时间戳的对数桶按比例缩小去驱逐 Pod。
-- `MemoryManager`: 允许基于 NUMA 拓扑为容器设置内存亲和性。
-- `MemoryQoS`: 使用 cgroup v2 内存控制器在 pod / 容器上启用内存保护和使用限制。
-- `MixedProtocolLBService`：允许在同一 `LoadBalancer` 类型的 Service 实例中使用不同
-  的协议。
+  [本地临时存储](/zh-cn/docs/concepts/configuration/manage-resources-containers/)启用了
+  `LocalStorageCapacityIsolation`，并且
+  [emptyDir 卷](/zh-cn/docs/concepts/storage/volumes/#emptydir)的后备文件系统支持项目配额，
+  并且启用了这些配额，将使用项目配额来监视
+  [emptyDir 卷](/zh-cn/docs/concepts/storage/volumes/#emptydir)的存储消耗而不是遍历文件系统，
+  以此获得更好的性能和准确性。
+<!--
+- `LogarithmicScaleDown`: Enable semi-random selection of pods to evict on controller scaledown
+  based on logarithmic bucketing of pod timestamps.
+- `MaxUnavailableStatefulSet`: Enables setting the `maxUnavailable` field for the
+  [rolling update strategy](/docs/concepts/workloads/controllers/statefulset/#rolling-updates)
+  of a StatefulSet. The field specifies the maximum number of Pods
+  that can be unavailable during the update.
+- `MemoryManager`: Allows setting memory affinity for a container based on
+  NUMA topology.
+- `MemoryQoS`: Enable memory protection and usage throttle on pod / container using
+  cgroup v2 memory controller.
+- `MinDomainsInPodTopologySpread`: Enable `minDomains` in Pod
+  [topology spread constraints](/docs/concepts/scheduling-eviction/topology-spread-constraints/).
+- `MixedProtocolLBService`: Enable using different protocols in the same `LoadBalancer` type
+  Service instance.
+- `MountContainers`: Enable using utility containers on host as the volume mounter.
+-->
+- `LogarithmicScaleDown`：启用 Pod 的半随机（semi-random）选择，控制器将根据 Pod
+  时间戳的对数桶按比例缩小去驱逐 Pod。
+- `MaxUnavailableStatefulSet`：启用为 StatefulSet
+  的[滚动更新策略](/zh-cn/docs/concepts/workloads/controllers/statefulset/#rolling-updates)设置
+  `maxUnavailable` 字段。该字段指定更新过程中不可用 Pod 个数的上限。
+- `MemoryManager`：允许基于 NUMA 拓扑为容器设置内存亲和性。
+- `MemoryQoS`：使用 cgroup v2 内存控制器在 pod / 容器上启用内存保护和使用限制。
+- `MinDomainsInPodTopologySpread`：启用 Pod 的 `minDomains`
+  [拓扑分布约束](/zh-cn/docs/concepts/scheduling-eviction/topology-spread-constraints/).
+- `MixedProtocolLBService`：允许在同一 `LoadBalancer` 类型的 Service 实例中使用不同的协议。
 - `MountContainers`：允许使用主机上的工具容器作为卷挂载程序。
 <!--
 - `MountPropagation`: Enable sharing volume mounted by one container to other containers or pods.
   For more details, please see [mount propagation](/docs/concepts/storage/volumes/#mount-propagation).
-- `NamespaceDefaultLabelName`: Configure the API Server to set an immutable {{< glossary_tooltip text="label" term_id="label" >}}
-  `kubernetes.io/metadata.name` on all namespaces, containing the namespace name.
-- `NetworkPolicyEndPort`: Enable use of the field `endPort` in NetworkPolicy objects, allowing the selection of a port range instead of a single port.
-- `NodeDisruptionExclusion`: Enable use of the node label `node.kubernetes.io/exclude-disruption`
+- `NamespaceDefaultLabelName`: Configure the API Server to set an immutable
+  {{< glossary_tooltip text="label" term_id="label" >}} `kubernetes.io/metadata.name`
+  on all namespaces, containing the namespace name.
+- `NetworkPolicyEndPort`: Enable use of the field `endPort` in NetworkPolicy objects,
+  allowing the selection of a port range instead of a single port.
+- `NetworkPolicyStatus`: Enable the `status` subresource for NetworkPolicy objects.
+- `NodeDisruptionExclusion`: Enable use of the Node label `node.kubernetes.io/exclude-disruption`
   which prevents nodes from being evacuated during zone failures.
 - `NodeLease`: Enable the new Lease API to report node heartbeats, which could be used as a node health signal.
+-->
+- `MountPropagation`：启用将一个容器安装的共享卷共享到其他容器或 Pod。
+  更多详细信息，请参见[挂载传播](/zh-cn/docs/concepts/storage/volumes/#mount-propagation)。
+- `NamespaceDefaultLabelName`：配置 API 服务器以在所有名字空间上设置一个不可变的
+  {{< glossary_tooltip text="标签" term_id="label" >}} `kubernetes.io/metadata.name`，
+  也包括名字空间。
+- `NetworkPolicyEndPort`：在 NetworkPolicy 对象中启用 `endPort` 以允许选择端口范围而不是单个端口。
+- `NetworkPolicyStatus`：为 NetworkPolicy 对象启用 `status` 子资源。
+- `NodeDisruptionExclusion`：启用节点标签 `node.kubernetes.io/exclude-disruption`，
+  以防止在可用区发生故障期间驱逐节点。
+- `NodeLease`：启用新的 Lease（租期）API 以报告节点心跳，可用作节点运行状况信号。
+<!--
+- `NodeOutOfServiceVolumeDetach`: When a Node is marked out-of-service using the
+  `node.kubernetes.io/out-of-service` taint, Pods on the node will be forcefully deleted
+   if they can not tolerate this taint, and the volume detach operations for Pods terminating
+   on the node will happen immediately. The deleted Pods can recover quickly on different nodes.
 - `NodeSwap`: Enable the kubelet to allocate swap memory for Kubernetes workloads on a node.
   Must be used with `KubeletConfiguration.failSwapOn` set to false.
   For more details, please see [swap memory](/docs/concepts/architecture/nodes/#swap-memory)
 - `NonPreemptingPriority`: Enable `preemptionPolicy` field for PriorityClass and Pod.
-- `PVCProtection`: Enable the prevention of a PersistentVolumeClaim (PVC) from
-  being deleted when it is still used by any Pod.
-- `PodDeletionCost`: Enable the [Pod Deletion Cost](/docs/content/en/docs/concepts/workloads/controllers/replicaset/#pod-deletion-cost)
+- `OpenAPIEnums`: Enables populating "enum" fields of OpenAPI schemas in the
+  spec returned from the API server.
+- `OpenAPIV3`: Enables the API server to publish OpenAPI v3.
+-->
+- `NodeOutOfServiceVolumeDetach`：当使用 `node.kubernetes.io/out-of-service`
+  污点将节点标记为停止服务时，节点上不能容忍这个污点的 Pod 将被强制删除，
+  并且该在节点上被终止的 Pod 将立即进行卷分离操作。
+- `NodeSwap`: 启用 kubelet 为节点上的 Kubernetes 工作负载分配交换内存的能力。
+  必须将 `KubeletConfiguration.failSwapOn` 设置为 false 的情况下才能使用。
+  更多详细信息，请参见[交换内存](/zh-cn/docs/concepts/architecture/nodes/#swap-memory)。
+- `NonPreemptingPriority`：为 PriorityClass 和 Pod 启用 `preemptionPolicy` 选项。
+- `OpenAPIEnums`：允许在从 API 服务器返回的 spec 中填充 OpenAPI 模式的 "enum" 字段。
+- `OpenAPIV3`：允许 API 服务器发布 OpenAPI V3。
+<!--
+- `PodDeletionCost`: Enable the [Pod Deletion Cost](/docs/concepts/workloads/controllers/replicaset/#pod-deletion-cost)
    feature which allows users to influence ReplicaSet downscaling order.
 - `PersistentLocalVolumes`: Enable the usage of `local` volume type in Pods.
   Pod affinity has to be specified if requesting a `local` volume.
+- `PodAndContainerStatsFromCRI`: Configure the kubelet to gather container and
+  pod stats from the CRI container runtime rather than gathering them from cAdvisor.
 - `PodDisruptionBudget`: Enable the [PodDisruptionBudget](/docs/tasks/run-application/configure-pdb/) feature.
-- `PodAffinityNamespaceSelector`: Enable the [Pod Affinity Namespace Selector](/docs/concepts/scheduling-eviction/assign-pod-node/#namespace-selector)
-  and [CrossNamespacePodAffinity](/docs/concepts/policy/resource-quotas/#cross-namespace-pod-affinity-quota) quota scope features.
+- `PodAffinityNamespaceSelector`: Enable the
+  [Pod Affinity Namespace Selector](/docs/concepts/scheduling-eviction/assign-pod-node/#namespace-selector)
+  and [CrossNamespacePodAffinity](/docs/concepts/policy/resource-quotas/#cross-namespace-pod-affinity-quota)
+  quota scope features.
 - `PodOverhead`: Enable the [PodOverhead](/docs/concepts/scheduling-eviction/pod-overhead/)
   feature to account for pod overheads.
 -->
-- `MountPropagation`：启用将一个容器安装的共享卷共享到其他容器或 Pod。
-  更多详细信息，请参见[挂载传播](/zh/docs/concepts/storage/volumes/#mount-propagation)。
-- `NamespaceDefaultLabelName`：配置 API 服务器以在所有名字空间上设置一个不可变的 {{< glossary_tooltip text="label" term_id="label" >}} 
-   `kubernetes.io/metadata.name`，也包括名字空间。
-- `NodeDisruptionExclusion`：启用节点标签 `node.kubernetes.io/exclude-disruption`，
-  以防止在可用区发生故障期间驱逐节点。
-- `NodeLease`：启用新的 Lease（租期）API 以报告节点心跳，可用作节点运行状况信号。
-- `NodeSwap`: 启用 kubelet 为节点上的 Kubernetes 工作负载分配交换内存的能力。
-  必须将 `KubeletConfiguration.failSwapOn` 设置为 false 的情况下才能使用。
-  更多详细信息，请参见 [交换内存](/zh/docs/concepts/architecture/nodes/#swap-memory)。
-- `NonPreemptingPriority`：为 PriorityClass 和 Pod 启用 `preemptionPolicy` 选项。
-- `PVCProtection`：启用防止仍被某 Pod 使用的 PVC 被删除的特性。
-- `PodDeletionCost`：启用 [Pod 删除成本](/zh/docs/concepts/workloads/controllers/replicaset/#pod-deletion-cost) 功能。
+- `PodDeletionCost`：启用 [Pod 删除成本](/zh-cn/docs/concepts/workloads/controllers/replicaset/#pod-deletion-cost)功能。
   该功能使用户可以影响 ReplicaSet 的降序顺序。
 - `PersistentLocalVolumes`：允许在 Pod 中使用 `local（本地）` 卷类型。
   如果请求 `local` 卷，则必须指定 Pod 亲和性属性。
-- `PodDisruptionBudget`：启用 [PodDisruptionBudget](/zh/docs/tasks/run-application/configure-pdb/) 特性。
-- `PodAffinityNamespaceSelector`：启用 [Pod 亲和性名称空间选择器](/zh/docs/concepts/scheduling-eviction/assign-pod-node/#namespace-selector)
-   和 [CrossNamespacePodAffinity](/zh/docs/concepts/policy/resource-quotas/#cross-namespace-pod-affinity-quota) 资源配额功能。
-- `PodOverhead`：启用 [PodOverhead](/zh/docs/concepts/scheduling-eviction/pod-overhead/)
+- `PodAndContainerStatsFromCRI`：配置 kubelet 从容器和 CRI 容器运行时收集 Pod 统计信息，
+   不建议从 cAdvisor 收集统计信息。
+- `PodDisruptionBudget`：启用 [PodDisruptionBudget](/zh-cn/docs/tasks/run-application/configure-pdb/) 特性。
+- `PodAffinityNamespaceSelector`：启用 [Pod 亲和性名称空间选择器](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/#namespace-selector)
+  和 [CrossNamespacePodAffinity](/zh-cn/docs/concepts/policy/resource-quotas/#cross-namespace-pod-affinity-quota)
+  资源配额功能。
+- `PodOverhead`：启用 [PodOverhead](/zh-cn/docs/concepts/scheduling-eviction/pod-overhead/)
   特性以考虑 Pod 开销。
 <!--
 - `PodPriority`: Enable the descheduling and preemption of Pods based on their
   [priorities](/docs/concepts/scheduling-eviction/pod-priority-preemption/).
 - `PodReadinessGates`: Enable the setting of `PodReadinessGate` field for extending
-  Pod readiness evaluation.  See [Pod readiness gate](/docs/concepts/workloads/pods/pod-lifecycle/#pod-readiness-gate)
+  Pod readiness evaluation. See [Pod readiness gate](/docs/concepts/scheduling-eviction/lifecycle/#pod-readiness-gate)
   for more details.
 - `PodSecurity`: Enables the `PodSecurity` admission plugin.
 - `PodShareProcessNamespace`: Enable the setting of `shareProcessNamespace` in a Pod for sharing
@@ -1306,51 +1592,73 @@ Each feature gate is designed for enabling/disabling a specific feature:
 - `PreferNominatedNode`: This flag tells the scheduler whether the nominated
   nodes will be checked first before looping through all the other nodes in
   the cluster.
+-->
+- `PodPriority`：启用根据[优先级](/zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption/)
+  的 Pod 调度和抢占。
+- `PodReadinessGates`：启用 `podReadinessGate` 字段的设置以扩展 Pod 准备状态评估。
+  有关更多详细信息，请参见
+  [Pod 就绪状态判别](/zh-cn/docs/concepts/scheduling-eviction/lifecycle/#pod-readiness-gate)。
+- `PodSecurity`: 开启 `PodSecurity` 准入控制插件。
+- `PodShareProcessNamespace`：在 Pod 中启用 `shareProcessNamespace` 的设置，
+  以便在 Pod 中运行的容器之间共享同一进程名字空间。更多详细信息，请参见
+  [在 Pod 中的容器间共享同一进程名字空间](/zh-cn/docs/tasks/configure-pod-container/share-process-namespace/)。
+- `PreferNominatedNode`: 这个标志告诉调度器在循环遍历集群中的所有其他节点之前，
+  是否首先检查指定的节点。
+<!--
 - `ProbeTerminationGracePeriod`: Enable [setting probe-level
   `terminationGracePeriodSeconds`](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#probe-level-terminationgraceperiodseconds)
-   on pods.  See the [enhancement proposal](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2238-liveness-probe-grace-period) for more details.
+  on pods. See the [enhancement proposal](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2238-liveness-probe-grace-period)
+  for more details.
 - `ProcMountType`: Enables control over the type proc mounts for containers
   by setting the `procMount` field of a SecurityContext.
 - `ProxyTerminatingEndpoints`: Enable the kube-proxy to handle terminating
   endpoints when `ExternalTrafficPolicy=Local`.
+- `PVCProtection`: Enable the prevention of a PersistentVolumeClaim (PVC) from
+  being deleted when it is still used by any Pod.
 - `QOSReserved`: Allows resource reservations at the QoS level preventing pods
   at lower QoS levels from bursting into resources requested at higher QoS levels
   (memory only for now).
 - `ReadWriteOncePod`: Enables the usage of `ReadWriteOncePod` PersistentVolume
   access mode.
-- `RemainingItemCount`: Allow the API servers to show a count of remaining
-  items in the response to a
-  [chunking list request](/docs/reference/using-api/api-concepts/#retrieving-large-results-sets-in-chunks).
 -->
-- `PodPriority`：根据 [优先级](/zh/docs/concepts/scheduling-eviction/pod-priority-preemption/)
-  启用 Pod 的调度和抢占。
-- `PodReadinessGates`：启用 `podReadinessGate` 字段的设置以扩展 Pod 准备状态评估。
-  有关更多详细信息，请参见
-  [Pod 就绪状态判别](/zh/docs/concepts/workloads/pods/pod-lifecycle/#pod-readiness-gate)。
-- `PodSecurity`: 开启 `PodSecurity` 准入控制插件。
-- `PodShareProcessNamespace`：在 Pod 中启用 `shareProcessNamespace` 的设置，
-  以便在 Pod 中运行的容器之间共享同一进程名字空间。更多详细信息，请参见
-  [在 Pod 中的容器间共享同一进程名字空间](/zh/docs/tasks/configure-pod-container/share-process-namespace/)。
-- `PreferNominatedNode`: 这个标志告诉调度器在循环遍历集群中的所有其他节点
-  之前，是否首先检查指定的节点。
-- `ProbeTerminationGracePeriod`：在 Pod 上 启用 
-  [设置探测器级别 `terminationGracePeriodSeconds`](/zh/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#probe-level-terminationgraceperiodseconds)。
-  有关更多信息，请参见 [enhancement proposal](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2238-liveness-probe-grace-period)。
-- `ProcMountType`：允许容器通过设置 SecurityContext 的 `procMount` 字段来控制
-  对 proc 文件系统的挂载方式。
+- `ProbeTerminationGracePeriod`：在 Pod 上启用 
+  [设置探测器级别 `terminationGracePeriodSeconds`](/zh-cn/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#probe-level-terminationgraceperiodseconds)。
+  有关更多信息，请参见[改进提案](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2238-liveness-probe-grace-period)。
+- `ProcMountType`：允许容器通过设置 SecurityContext 的 `procMount` 字段来控制对
+  proc 文件系统的挂载方式。
 - `ProxyTerminatingEndpoints`: 当 `ExternalTrafficPolicy=Local` 时，
   允许 kube-proxy 来处理终止过程中的端点。
+- `PVCProtection`：当 PersistentVolumeClaim (PVC) 仍然在 Pod 使用时被删除，启用保护。
 - `QOSReserved`：允许在 QoS 级别进行资源预留，以防止处于较低 QoS 级别的 Pod
   突发进入处于较高 QoS 级别的请求资源（目前仅适用于内存）。
 - `ReadWriteOncePod`: 允许使用 `ReadWriteOncePod` 访问模式的 PersistentVolume。
-- `RemainingItemCount`：允许 API 服务器在
-  [分块列表请求](/zh/docs/reference/using-api/api-concepts/#retrieving-large-results-sets-in-chunks)
-  的响应中显示剩余条目的个数。
 <!--
-- `RemoveSelfLink`: Deprecates and removes `selfLink` from ObjectMeta and
-  ListMeta.
+- `RecoverVolumeExpansionFailure`: Enables users to edit their PVCs to smaller
+  sizes so as they can recover from previously issued volume expansion failures.
+  See [Recovering from Failure when Expanding Volumes](/docs/concepts/storage/persistent-volumes/#recovering-from-failure-when-expanding-volumes)
+  for more details.
+- `RemainingItemCount`: Allow the API servers to show a count of remaining
+  items in the response to a
+  [chunking list request](/docs/reference/using-api/api-concepts/#retrieving-large-results-sets-in-chunks).
+- `RemoveSelfLink`: Sets the `.metadata.selfLink` field to blank (empty string) for all
+  objects and collections. This field has been deprecated since the Kubernetes v1.16
+  release. When this feature is enabled, the `.metadata.selfLink` field remains part of
+  the Kubernetes API, but is always unset.
 - `RequestManagement`: Enables managing request concurrency with prioritization and fairness
   at each API server. Deprecated by `APIPriorityAndFairness` since 1.17.
+-->
+- `RecoverVolumeExpansionFailure`：允许用户编辑其 PVC 来缩小其尺寸，
+  从而从之前卷扩容发生的失败中恢复。更多细节可参见
+  [从卷扩容失效中恢复](/zh-cn/docs/concepts/storage/persistent-volumes/#recovering-from-failure-when-expanding-volumes)。
+- `RemainingItemCount`：允许 API 服务器在
+  [分块列表请求](/zh-cn/docs/reference/using-api/api-concepts/#retrieving-large-results-sets-in-chunks)
+  的响应中显示剩余条目的个数。
+- `RemoveSelfLink`：将所有对象和集合的 `.metadata.selfLink` 字段设置为空（空字符串）。
+  该字段自 Kubernetes v1.16 版本以来已被弃用。
+  启用此功能后，`.metadata.selfLink` 字段仍然是 Kubernetes API 的一部分，但始终未设置。
+- `RequestManagement`：允许在每个 API 服务器上通过优先级和公平性管理请求并发性。
+  自 1.17 以来已被 `APIPriorityAndFairness` 替代。
+<!--
 - `ResourceLimitsPriorityFunction`: Enable a scheduler priority function that
   assigns a lowest possible score of 1 to a node that satisfies at least one of
   the input Pod's cpu and memory limits. The intent is to break ties between
@@ -1363,52 +1671,60 @@ Each feature gate is designed for enabling/disabling a specific feature:
   [Bound Service Account Tokens](https://github.com/kubernetes/enhancements/blob/master/keps/sig-auth/1205-bound-service-account-tokens/README.md)
   for more details.
 -->
-- `RemoveSelfLink`：将 ObjectMeta 和 ListMeta 中的 `selfLink` 字段废弃并删除。
-- `RequestManagement`：允许在每个 API 服务器上通过优先级和公平性管理请求并发性。
-  自 1.17 以来已被 `APIPriorityAndFairness` 弃用。
 - `ResourceLimitsPriorityFunction`：启用某调度器优先级函数，
   该函数将最低得分 1 指派给至少满足输入 Pod 的 CPU 和内存限制之一的节点，
   目的是打破得分相同的节点之间的关联。
 - `ResourceQuotaScopeSelectors`：启用资源配额范围选择器。
 - `RootCAConfigMap`：配置 `kube-controller-manager`，使之发布一个名为 `kube-root-ca.crt`
-  的 {{< glossary_tooltip text="ConfigMap" term_id="configmap" >}}，到
-  所有名字空间中。该 ConfigMap 包含用来验证与 kube-apiserver 之间连接的
-  CA 证书包。参阅
-  [绑定服务账户令牌](https://github.com/kubernetes/enhancements/blob/master/keps/sig-auth/1205-bound-service-account-tokens/README.md)
+  的 {{< glossary_tooltip text="ConfigMap" term_id="configmap" >}}，
+  到所有名字空间中。该 ConfigMap 包含用来验证与 kube-apiserver 之间连接的 CA 证书包。
+  参阅[绑定服务账户令牌](https://github.com/kubernetes/enhancements/blob/master/keps/sig-auth/1205-bound-service-account-tokens/README.md)
   以了解更多细节。
 <!--
 - `RotateKubeletClientCertificate`: Enable the rotation of the client TLS certificate on the kubelet.
-  See [kubelet configuration](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/#kubelet-configuration) for more details.
+  See [kubelet configuration](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/#kubelet-configuration)
+  for more details.
 - `RotateKubeletServerCertificate`: Enable the rotation of the server TLS certificate on the kubelet.
-  See [kubelet configuration](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/#kubelet-configuration)
+  See [kubelet configuration](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/#kubelet-configuration)
   for more details.
 - `RunAsGroup`: Enable control over the primary group ID set on the init
   processes of containers.
+-->
+- `RotateKubeletClientCertificate`：在 kubelet 上启用客户端 TLS 证书的轮换。
+  更多详细信息，请参见
+  [kubelet 配置](/zh-cn/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/#kubelet-configuration)。
+- `RotateKubeletServerCertificate`：在 kubelet 上启用服务器 TLS 证书的轮换。
+  更多详细信息，请参见
+  [kubelet 配置](/zh-cn/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/#kubelet-configuration)。
+- `RunAsGroup`：启用对容器初始化过程中设置的主要组 ID 的控制。
+<!--
 - `RuntimeClass`: Enable the [RuntimeClass](/docs/concepts/containers/runtime-class/) feature
   for selecting container runtime configurations.
 - `ScheduleDaemonSetPods`: Enable DaemonSet Pods to be scheduled by the default scheduler
   instead of the DaemonSet controller.
--->
-- `RotateKubeletClientCertificate`：在 kubelet 上启用客户端 TLS 证书的轮换。
-  更多详细信息，请参见
-  [kubelet 配置](/zh/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/#kubelet-configuration)。
-- `RotateKubeletServerCertificate`：在 kubelet 上启用服务器 TLS 证书的轮换。
-  更多详细信息，请参见
-  [kubelet 配置](/zh/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/#kubelet-configuration)。
-- `RunAsGroup`：启用对容器初始化过程中设置的主要组 ID 的控制。
-- `RuntimeClass`：启用 [RuntimeClass](/zh/docs/concepts/containers/runtime-class/)
-  特性用于选择容器运行时配置。
-- `ScheduleDaemonSetPods`：启用 DaemonSet Pods 由默认调度程序而不是
-  DaemonSet 控制器进行调度。
-<!--
 - `SCTPSupport`: Enables the _SCTP_ `protocol` value in Pod, Service,
   Endpoints, EndpointSlice, and NetworkPolicy definitions.
-- `SeccompDefault`: Enables the use of `RuntimeDefault` as the default seccomp profile for all workloads.
+- `SeccompDefault`: Enables the use of `RuntimeDefault` as the default seccomp profile
+  for all workloads.
   The seccomp profile is specified in the `securityContext` of a Pod and/or a Container.
 - `SelectorIndex`: Allows label and field based indexes in API server watch
   cache to accelerate list operations.
+-->
+- `RuntimeClass`：启用 [RuntimeClass](/zh-cn/docs/concepts/containers/runtime-class/)
+  特性用于选择容器运行时配置。
+- `ScheduleDaemonSetPods`：启用 DaemonSet Pods 由默认调度程序而不是
+  DaemonSet 控制器进行调度。
+- `SCTPSupport`：在 Pod、Service、Endpoints、NetworkPolicy 定义中允许将 'SCTP'
+  用作 `protocol` 值。
+- `SeccompDefault`: 允许将所有工作负载的默认  seccomp 配置文件为 `RuntimeDefault`。
+  seccomp 配置在 Pod 或者容器的 `securityContext` 字段中指定。
+- `SelectorIndex`: 允许使用 API 服务器的 watch 缓存中基于标签和字段的索引来加速 list 操作。
+<!--
 - `ServerSideApply`: Enables the [Sever Side Apply (SSA)](/docs/reference/using-api/server-side-apply/)
   feature on the API Server.
+- `ServerSideFieldValidation`: Enables server-side field validation. This means the validation
+  of resource schema is performed at the API server side rather than the client side
+  (for example, the `kubectl create` or `kubectl apply` command line).
 - `ServiceAccountIssuerDiscovery`: Enable OIDC discovery endpoints (issuer and
   JWKS URLs) for the service account issuer in the API server. See
   [Configure Service Accounts for Pods](/docs/tasks/configure-pod-container/configure-service-account/#service-account-issuer-discovery)
@@ -1416,27 +1732,23 @@ Each feature gate is designed for enabling/disabling a specific feature:
 - `ServiceAppProtocol`: Enables the `appProtocol` field on Services and Endpoints.
 - `ServiceInternalTrafficPolicy`: Enables the `internalTrafficPolicy` field on Services
 - `ServiceLBNodePortControl`: Enables the `allocateLoadBalancerNodePorts` field on Services.
-- `ServiceLoadBalancerClass`: Enables the `loadBalancerClass` field on Services. See
-  [Specifying class of load balancer implementation](/docs/concepts/services-networking/service/#load-balancer-class) for more details.
-- `ServiceLoadBalancerFinalizer`: Enable finalizer protection for Service load balancers.
 -->
-- `SCTPSupport`：在 Pod、Service、Endpoints、NetworkPolicy 定义中
-  允许将 _SCTP_ 用作 `protocol` 值。
-- `SeccompDefault`: 允许将所有工作负载的默认  seccomp 配置文件为 `RuntimeDefault`。
-  seccomp 配置在 Pod 或者容器的 `securityContext` 字段中指定。
-- `SelectorIndex`: 允许在 API 服务器 watch 的缓存中基于标签和字段的索引来加速 list 的操作。
 - `ServerSideApply`：在 API 服务器上启用
-  [服务器端应用（SSA）](/zh/docs/reference/using-api/server-side-apply/) 。
+  [服务器端应用（SSA）](/zh-cn/docs/reference/using-api/server-side-apply/) 。
+- `ServerSideFieldValidation`：启用服务器端字段验证。
+  这意味着验证资源模式在 API 服务器端而不是客户端执行
+  （例如，`kubectl create` 或 `kubectl apply` 命令行）。
 - `ServiceAccountIssuerDiscovery`：在 API 服务器中为服务帐户颁发者启用 OIDC 发现端点
   （颁发者和 JWKS URL）。详情参见
-  [为 Pod 配置服务账户](/zh/docs/tasks/configure-pod-container/configure-service-account/#service-account-issuer-discovery) 。
+  [为 Pod 配置服务账户](/zh-cn/docs/tasks/configure-pod-container/configure-service-account/#service-account-issuer-discovery) 。
 - `ServiceAppProtocol`：为 Service 和 Endpoints 启用 `appProtocol` 字段。
 - `ServiceInternalTrafficPolicy`：为服务启用 `internalTrafficPolicy` 字段。
 - `ServiceLBNodePortControl`：为服务启用 `allocateLoadBalancerNodePorts` 字段。
- `ServiceLoadBalancerClass`: 为服务启用 `loadBalancerClass` 字段。 
-  有关更多信息，请参见 [负载均衡器类的定义 implementation](/zh/docs/concepts/services-networking/service/#load-balancer-class)。
-- `ServiceLoadBalancerFinalizer`：为服务负载均衡启用终结器（finalizers）保护。
 <!--
+- `ServiceLoadBalancerClass`: Enables the `loadBalancerClass` field on Services. See
+  [Specifying class of load balancer implementation](/docs/concepts/services-networking/service/#load-balancer-class)
+  for more details.
+- `ServiceLoadBalancerFinalizer`: Enable finalizer protection for Service load balancers.
 - `ServiceNodeExclusion`: Enable the exclusion of nodes from load balancers
   created by a cloud provider. A node is eligible for exclusion if labelled with
   "`node.kubernetes.io/exclude-from-external-load-balancers`".
@@ -1444,28 +1756,44 @@ Each feature gate is designed for enabling/disabling a specific feature:
   topology of the cluster. See
   [ServiceTopology](/docs/concepts/services-networking/service-topology/)
   for more details.
+- `ServiceIPStaticSubrange`: Enables a strategy for Services ClusterIP allocations, whereby the
+  ClusterIP range is subdivided. Dynamic allocated ClusterIP addresses will be allocated preferently
+  from the upper range allowing users to assign static ClusterIPs from the lower range with a low
+  risk of collision. See
+  [Avoiding collisions](/docs/concepts/services-networking/service/#avoiding-collisions)
+  for more details.
+-->
+- `ServiceLoadBalancerClass`: 为服务启用 `loadBalancerClass` 字段。 
+  有关更多信息，请参见[指定负载均衡器实现类](/zh-cn/docs/concepts/services-networking/service/#load-balancer-class)。
+- `ServiceLoadBalancerFinalizer`：为服务负载均衡启用终结器（finalizers）保护。
+- `ServiceNodeExclusion`：启用从云提供商创建的负载均衡中排除节点。
+  如果节点标记有 `node.kubernetes.io/exclude-from-external-load-balancers`，
+  标签，则可以排除该节点。
+- `ServiceTopology`：启用服务拓扑可以让一个服务基于集群的节点拓扑进行流量路由。
+  有关更多详细信息，请参见[服务拓扑](/zh-cn/docs/concepts/services-networking/service-topology/)。
+- `ServiceIPStaticSubrange`：启用服务 ClusterIP 分配策略，从而细分 ClusterIP 范围。
+  动态分配的 ClusterIP 地址将优先从较高范围分配，以低冲突风险允许用户从较低范围分配静态 ClusterIP。
+  更多详细信息请参阅[避免冲突](/zh-cn/docs/concepts/services-networking/service/#avoiding-collisions)
+<!--
 - `SetHostnameAsFQDN`: Enable the ability of setting Fully Qualified Domain
   Name(FQDN) as the hostname of a pod. See
   [Pod's `setHostnameAsFQDN` field](/docs/concepts/services-networking/dns-pod-service/#pod-sethostnameasfqdn-field).
 - `SizeMemoryBackedVolumes`: Enable kubelets to determine the size limit for
   memory-backed volumes (mainly `emptyDir` volumes).
--->
-- `ServiceNodeExclusion`：启用从云提供商创建的负载均衡中排除节点。
-  如果节点标记有 `node.kubernetes.io/exclude-from-external-load-balancers`，
-  标签，则可以排除该节点。
-- `ServiceTopology`：启用服务拓扑可以让一个服务基于集群的节点拓扑进行流量路由。
-  有关更多详细信息，请参见
-  [服务拓扑](/zh/docs/concepts/services-networking/service-topology/)。
-- `SetHostnameAsFQDN`：启用将全限定域名（FQDN）设置为 Pod 主机名的功能。
-  请参见[为 Pod 设置 `setHostnameAsFQDN` 字段](/zh/docs/concepts/services-networking/dns-pod-service/#pod-sethostnameasfqdn-field)。
-- `SizeMemoryBackedVolumes`：允许 kubelet 检查基于内存制备的卷的尺寸约束
-  （目前主要针对 `emptyDir` 卷）。
-<!--
 - `StartupProbe`: Enable the
-  [startup](/docs/concepts/workloads/pods/pod-lifecycle/#when-should-you-use-a-startup-probe)
+  [startup](/docs/concepts/scheduling-eviction/lifecycle/#when-should-you-use-a-startup-probe)
   probe in the kubelet.
 - `StatefulSetMinReadySeconds`: Allows `minReadySeconds` to be respected by
   the StatefulSet controller.
+-->
+- `SetHostnameAsFQDN`：启用将全限定域名（FQDN）设置为 Pod 主机名的功能。
+  请参见[为 Pod 设置 `setHostnameAsFQDN` 字段](/zh-cn/docs/concepts/services-networking/dns-pod-service/#pod-sethostnameasfqdn-field)。
+- `SizeMemoryBackedVolumes`：允许 kubelet 检查基于内存制备的卷的尺寸约束
+  （目前主要针对 `emptyDir` 卷）。
+- `StartupProbe`：在 kubelet 中启用
+  [启动探针](/zh-cn/docs/concepts/scheduling-eviction/lifecycle/#when-should-you-use-a-startup-probe)。
+- `StatefulSetMinReadySeconds`: 允许 StatefulSet 控制器采纳 `minReadySeconds` 设置。
+<!--
 - `StorageObjectInUseProtection`: Postpone the deletion of PersistentVolume or
   PersistentVolumeClaim objects if they are still being used.
 - `StorageVersionAPI`: Enable the
@@ -1473,12 +1801,9 @@ Each feature gate is designed for enabling/disabling a specific feature:
 - `StorageVersionHash`: Allow API servers to expose the storage version hash in the
   discovery.
 - `StreamingProxyRedirects`: Instructs the API server to intercept (and follow)
-   redirects from the backend (kubelet) for streaming requests.
+  redirects from the backend (kubelet) for streaming requests.
   Examples of streaming requests include the `exec`, `attach` and `port-forward` requests.
 -->
-- `StartupProbe`：在 kubelet 中启用
-  [启动探针](/zh/docs/concepts/workloads/pods/pod-lifecycle/#when-should-you-use-a-startup-probe)。
-- `StatefulSetMinReadySeconds`: 允许 StatefulSet 控制器采纳 `minReadySeconds` 设置。
 - `StorageObjectInUseProtection`：如果仍在使用 PersistentVolume 或
   PersistentVolumeClaim 对象，则将其删除操作推迟。
 - `StorageVersionAPI`: 启用
@@ -1496,28 +1821,31 @@ Each feature gate is designed for enabling/disabling a specific feature:
   will be reserved for the system as a whole and for Kubernetes system daemons
   respectively.
 - `SupportPodPidsLimit`: Enable the support to limiting PIDs in Pods.
+-->
+- `SupportIPVSProxyMode`：启用使用 IPVS 提供集群内服务负载平衡。更多详细信息，请参见
+  [服务代理](/zh-cn/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies)。
+- `SupportNodePidsLimit`：启用支持，限制节点上的 PID 用量。
+  `--system-reserved` 和 `--kube-reserved` 中的参数 `pid=<数值>` 可以分别用来
+  设定为整个系统所预留的进程 ID 个数和为 Kubernetes 系统守护进程预留的进程 ID 个数。
+- `SupportPodPidsLimit`：启用支持限制 Pod 中的进程 PID。
+<!--
 - `SuspendJob`: Enable support to suspend and resume Jobs. See
   [the Jobs docs](/docs/concepts/workloads/controllers/job/) for
   more details.
 - `Sysctls`: Enable support for namespaced kernel parameters (sysctls) that can be
   set for each pod. See
   [sysctls](/docs/tasks/administer-cluster/sysctl-cluster/) for more details.
--->
-- `SupportIPVSProxyMode`：启用使用 IPVS 提供内服务负载平衡。更多详细信息，请参见
-  [服务代理](/zh/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies)。
-- `SupportNodePidsLimit`：启用支持，限制节点上的 PID 用量。
-  `--system-reserved` 和 `--kube-reserved` 中的参数 `pid=<数值>` 可以分别用来
-  设定为整个系统所预留的进程 ID 个数和为 Kubernetes 系统守护进程预留的进程
-  ID 个数。
-- `SupportPodPidsLimit`：启用支持限制 Pod 中的进程 PID。
-- `SuspendJob`： 启用支持以暂停和恢复作业。 更多详细信息，请参见
-  [Jobs 文档](zh//docs/concepts/workloads/controllers/job/)。
-- `Sysctls`：允许为每个 Pod 设置的名字空间内核参数（sysctls）。
-  更多详细信息，请参见 [sysctls](/zh/docs/tasks/administer-cluster/sysctl-cluster/)。
-<!--
 - `TTLAfterFinished`: Allow a
   [TTL controller](/docs/concepts/workloads/controllers/ttlafterfinished/)
   to clean up resources after they finish execution.
+-->
+- `SuspendJob`： 启用支持以暂停和恢复作业。 更多详细信息，请参见
+  [Jobs 文档](/zh-cn/docs/concepts/workloads/controllers/job/)。
+- `Sysctls`：允许为每个 Pod 设置的名字空间内核参数（sysctls）。
+  更多详细信息，请参见 [sysctls](/zh-cn/docs/tasks/administer-cluster/sysctl-cluster/)。
+- `TTLAfterFinished`：资源完成执行后，允许
+  [TTL 控制器](/zh-cn/docs/concepts/workloads/controllers/ttlafterfinished/)清理资源。
+<!--
 - `TaintBasedEvictions`: Enable evicting pods from nodes based on taints on Nodes
   and tolerations on Pods.
   See [taints and tolerations](/docs/concepts/scheduling-eviction/taint-and-toleration/)
@@ -1527,6 +1855,16 @@ Each feature gate is designed for enabling/disabling a specific feature:
 - `TokenRequest`: Enable the `TokenRequest` endpoint on service account resources.
 - `TokenRequestProjection`: Enable the injection of service account tokens into a
   Pod through a [`projected` volume](/docs/concepts/storage/volumes/#projected).
+-->
+- `TaintBasedEvictions`：根据节点上的污点和 Pod 上的容忍度启用从节点驱逐 Pod 的特性。
+  更多详细信息可参见[污点和容忍度](/zh-cn/docs/concepts/scheduling-eviction/taint-and-toleration/)。
+- `TaintNodesByCondition`：根据[节点状况](/zh-cn/docs/concepts/scheduling-eviction/taint-and-toleration/)
+  启用自动为节点标记污点。
+- `TokenRequest`：在服务帐户资源上启用 `TokenRequest` 端点。
+- `TokenRequestProjection`：启用通过
+  [`projected` 卷](/zh-cn/docs/concepts/storage/volumes/#projected)
+  将服务帐户令牌注入到 Pod 中的特性。
+<!--
 - `TopologyAwareHints`: Enables topology aware routing based on topology hints
   in EndpointSlices. See [Topology Aware
   Hints](/docs/concepts/services-networking/topology-aware-hints/) for more
@@ -1534,25 +1872,17 @@ Each feature gate is designed for enabling/disabling a specific feature:
 - `TopologyManager`: Enable a mechanism to coordinate fine-grained hardware resource
   assignments for different components in Kubernetes. See
   [Control Topology Management Policies on a node](/docs/tasks/administer-cluster/topology-manager/).
--->
-- `TTLAfterFinished`：资源完成执行后，允许
-  [TTL 控制器](/zh/docs/concepts/workloads/controllers/ttlafterfinished/)清理资源。
-- `TaintBasedEvictions`：根据节点上的污点和 Pod 上的容忍度启用从节点驱逐 Pod 的特性。
-  更多详细信息可参见[污点和容忍度](/zh/docs/concepts/scheduling-eviction/taint-and-toleration/)。
-- `TaintNodesByCondition`：根据[节点状况](/zh/docs/concepts/scheduling-eviction/taint-and-toleration/)
-  启用自动为节点标记污点。
-- `TokenRequest`：在服务帐户资源上启用 `TokenRequest` 端点。
-- `TokenRequestProjection`：启用通过
-  [`projected` 卷](/zh/docs/concepts/storage/volumes/#projected)
-  将服务帐户令牌注入到 Pod 中的特性。
-- `TopologyAwareHints`： 在 EndpointSlices 中启用基于拓扑提示的拓扑感知路由。
-  更多详细信息可参见[Topology Aware Hints](/zh/docs/concepts/services-networking/topology-aware-hints/)
-- `TopologyManager`：启用一种机制来协调 Kubernetes 不同组件的细粒度硬件资源分配。
-  详见[控制节点上的拓扑管理策略](/zh/docs/tasks/administer-cluster/topology-manager/)。
-<!--
 - `ValidateProxyRedirects`: This flag controls whether the API server should
   validate that redirects are only followed to the same host. Only used if the
   `StreamingProxyRedirects` flag is enabled.
+-->
+- `TopologyAwareHints`： 在 EndpointSlices 中启用基于拓扑提示的拓扑感知路由。
+  更多详细信息可参见[拓扑感知提示](/zh-cn/docs/concepts/services-networking/topology-aware-hints/)。
+- `TopologyManager`：启用一种机制来协调 Kubernetes 不同组件的细粒度硬件资源分配。
+  详见[控制节点上的拓扑管理策略](/zh-cn/docs/tasks/administer-cluster/topology-manager/)。
+- `ValidateProxyRedirects`： 这个标志控制 API 服务器是否应该验证只跟随到相同的主机的重定向。
+  仅在启用 `StreamingProxyRedirects` 标志时被使用。
+<!--
 - `VolumeCapacityPriority`: Enable support for prioritizing nodes in different
   topologies based on available PV capacity.
 - `VolumePVCDataSource`: Enable support for specifying an existing PVC as a DataSource.
@@ -1563,13 +1893,11 @@ Each feature gate is designed for enabling/disabling a specific feature:
 - `VolumeSnapshotDataSource`: Enable volume snapshot data source support.
 - `VolumeSubpath`: Allow mounting a subpath of a volume in a container.
 -->
-- `ValidateProxyRedirects`： 这个标志控制 API 服务器是否应该验证只跟随到相同的主机的重定向。
-  仅在启用 `StreamingProxyRedirects` 标志时被使用。
 - `VolumeCapacityPriority`: 基于可用 PV 容量的拓扑，启用对不同节点的优先级支持。
 - `VolumePVCDataSource`：启用对将现有 PVC 指定数据源的支持。
 - `VolumeScheduling`：启用卷拓扑感知调度，并使 PersistentVolumeClaim（PVC）
   绑定能够了解调度决策；当与 PersistentLocalVolumes 特性门控一起使用时，
-  还允许使用 [`local`](/zh/docs/concepts/storage/volumes/#local) 卷类型。
+  还允许使用 [`local`](/zh-cn/docs/concepts/storage/volumes/#local) 卷类型。
 - `VolumeSnapshotDataSource`：启用卷快照数据源支持。
 - `VolumeSubpath`： 允许在容器中挂载卷的子路径。
 <!--
@@ -1579,38 +1907,49 @@ Each feature gate is designed for enabling/disabling a specific feature:
 - `WatchBookmark`: Enable support for watch bookmark events.
 - `WinDSR`: Allows kube-proxy to create DSR loadbalancers for Windows.
 - `WinOverlay`: Allows kube-proxy to run in overlay mode for Windows.
+-->
+- `VolumeSubpathEnvExpansion`：启用 `subPathExpr` 字段用于在 `subPath` 中展开环境变量。
+- `WarningHeaders`：允许在 API 响应中发送警告头部。
+- `WatchBookmark`：启用对 watch 操作中 bookmark 事件的支持。
+- `WinDSR`：允许 kube-proxy 为 Windows 创建 DSR 负载均衡。
+- `WinOverlay`：允许在 Windows 的覆盖网络模式下运行 kube-proxy 。
+<!--
 - `WindowsEndpointSliceProxying`: When enabled, kube-proxy running on Windows
   will use EndpointSlices as the primary data source instead of Endpoints,
   enabling scalability and performance improvements. See
-  [Enabling Endpoint Slices](/docs/concepts/administer-cluster/enabling-endpointslices/).
+  [Enabling Endpoint Slices](/docs/concepts/services-networking/endpoint-slices/).
 - `WindowsGMSA`: Enables passing of GMSA credential specs from pods to container runtimes.
 - `WindowsHostProcessContainers`: Enables support for Windows HostProcess containers.
 - `WindowsRunAsUserName` : Enable support for running applications in Windows containers
   with as a non-default user. See
   [Configuring RunAsUserName](/docs/tasks/configure-pod-container/configure-runasusername)
   for more details.
+  
 -->
-- `VolumeSubpathEnvExpansion`：启用 `subPathExpr` 字段用于将环境变量在 `subPath`
-  中展开。
-- `WarningHeaders`：允许在 API 响应中发送警告头部。
-- `WatchBookmark`：启用对 watch 操作中 bookmark 事件的支持。
-- `WinDSR`：允许 kube-proxy 为 Windows 创建 DSR 负载均衡。
-- `WinOverlay`：允许 kube-proxy 在 Windows 的覆盖网络模式下运行。
 - `WindowsEndpointSliceProxying`: 当启用时，运行在 Windows 上的 kube-proxy
   将使用 EndpointSlices 而不是 Endpoints 作为主要数据源，从而实现可伸缩性和并改进性能。 
-  详情请参见[启用端点切片](/zh/docs/tasks/administer-cluster/enabling-endpointslices/).
+  详情请参见[启用端点切片](/zh-cn/docs/concepts/services-networking/endpoint-slices/).
 - `WindowsGMSA`：允许将 GMSA 凭据规范从 Pod 传递到容器运行时。
 - `WindowsHostProcessContainers`: 启用对 Windows HostProcess 容器的支持。
 - `WindowsRunAsUserName`：提供使用非默认用户在 Windows 容器中运行应用程序的支持。
   详情请参见
-  [配置 RunAsUserName](/zh/docs/tasks/configure-pod-container/configure-runasusername)。
+  [配置 RunAsUserName](/zh-cn/docs/tasks/configure-pod-container/configure-runasusername)。
 
 ## {{% heading "whatsnext" %}}
 
 <!--
 * The [deprecation policy](/docs/reference/using-api/deprecation-policy/) for Kubernetes explains
   the project's approach to removing features and components.
+* Since Kubernetes 1.24, new beta APIs are not enabled by default.  When enabling a beta
+  feature, you will also need to enable any associated API resources.
+  For example, to enable a particular resource like
+  `storage.k8s.io/v1beta1/csistoragecapacities`, set `--runtime-config=storage.k8s.io/v1beta1/csistoragecapacities`.
+  See [API Versioning](/docs/reference/using-api/#api-versioning) for more details on the command line flags.
 -->
-* Kubernetes 的[弃用策略](/zh/docs/reference/using-api/deprecation-policy/)
+* Kubernetes 的[弃用策略](/zh-cn/docs/reference/using-api/deprecation-policy/)
   介绍了项目针对已移除特性和组件的处理方法。
-
+* 从 Kubernetes 1.24 开始，默认不启用新的 beta API。
+  启用 beta 功能时，还需要启用所有关联的 API 资源。
+  例如：要启用一个特定资源，如 `storage.k8s.io/v1beta1/csistoragecapacities`，
+  请设置 `--runtime-config=storage.k8s.io/v1beta1/csistoragecapacities`。
+  有关命令行标志的更多详细信息，请参阅 [API 版本控制](/zh-cn/docs/reference/using-api/#api-versioning)。
diff --git a/content/zh/docs/reference/command-line-tools-reference/kube-apiserver.md b/content/zh-cn/docs/reference/command-line-tools-reference/kube-apiserver.md
similarity index 80%
rename from content/zh/docs/reference/command-line-tools-reference/kube-apiserver.md
rename to content/zh-cn/docs/reference/command-line-tools-reference/kube-apiserver.md
index 96d0229b43..26bef87ba7 100644
--- a/content/zh/docs/reference/command-line-tools-reference/kube-apiserver.md
+++ b/content/zh-cn/docs/reference/command-line-tools-reference/kube-apiserver.md
@@ -10,7 +10,7 @@ The file is auto-generated from the Go source code of the component using a gene
 [generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
 to generate the reference documentation, please read
 [Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
-To update the reference conent, please follow the 
+To update the reference conent, please follow the
 [Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
 guide. You can file document formatting bugs against the
 [reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
@@ -18,15 +18,15 @@ guide. You can file document formatting bugs against the
 
 ## {{% heading "synopsis" %}}
 
-
-<!-- 
+<!--
 The Kubernetes API server validates and configures data
 for the api objects which include pods, services, replicationcontrollers, and
 others. The API Server services REST operations and provides the frontend to the
 cluster's shared state through which all other components interact.
 -->
+
 Kubernetes API 服务器验证并配置 API 对象的数据，
-这些对象包括 pods、services、replicationcontrollers 等。 
+这些对象包括 pods、services、replicationcontrollers 等。
 API 服务器为 REST 操作提供服务，并为集群的共享状态提供前端，
 所有其他组件都通过该前端进行交互。
 
@@ -43,18 +43,6 @@ kube-apiserver [flags]
 </colgroup>
 <tbody>
 
-<tr>
-<td colspan="2">--add-dir-header</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If true, adds the file directory to the header of the log messages
--->
-<p>如果为 true，则将文件目录添加到日志消息的标题中</p>
-</td>
-</tr>
-
 <tr>
 <td colspan="2">--admission-control-config-file string</td>
 </tr>
@@ -96,12 +84,11 @@ the host's default interface will be used.
 The map from metric-label to value allow-list of this label. The key's format is &lt;MetricName&gt;,&lt;LabelName&gt;. The value's format is &lt;allowed_value&gt;,&lt;allowed_value&gt;...e.g. metric1,label1='v1,v2,v3', metric1,label2='v1,v2,v3' metric2,label1='v1,v2,v3'.
 -->
 允许使用的指标标签到指标值的映射列表。键的格式为 &lt;MetricName&gt;,&lt;LabelName&gt;.
-值的格式为 &lt;allowed_value&gt;,&lt;allowed_value&gt;...。 
+值的格式为 &lt;allowed_value&gt;,&lt;allowed_value&gt;...。
 例如：<code>metric1,label1='v1,v2,v3', metric1,label2='v1,v2,v3' metric2,label1='v1,v2,v3'</code>。
 </p></td>
 </tr>
 
-
 <tr>
 <td colspan="2">--allow-privileged</td>
 </tr>
@@ -110,19 +97,7 @@ The map from metric-label to value allow-list of this label. The key's format is
 <!--
 If true, allow privileged containers. [default=false]
 -->
-如果为 true, 将允许特权容器。[默认值=false]
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--alsologtostderr</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-log to standard error as well as files
--->
-在向文件输出日志的同时，也将日志写到标准输出。
+如果为 true，将允许特权容器。[默认值=false]
 </td>
 </tr>
 
@@ -156,27 +131,13 @@ of these audiences. If the --service-account-issuer flag is configured
 and this flag is not, this field defaults to a single element list 
 containing the issuer URL.
 -->
-API 的标识符。 
-服务帐户令牌验证者将验证针对 API 使用的令牌是否已绑定到这些受众中的至少一个。 
+API 的标识符。
+服务帐户令牌验证者将验证针对 API 使用的令牌是否已绑定到这些受众中的至少一个。
 如果配置了 <code>--service-account-issuer</code> 标志，但未配置此标志，
 则此字段默认为包含发布者 URL 的单个元素列表。
 </td>
 </tr>
 
-<tr>
-<td colspan="2">--apiserver-count int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：1</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The number of apiservers running in the cluster, must be a positive number. 
-(In use when --endpoint-reconciler-type=master-count is enabled.)
--->
-集群中运行的 API 服务器数量，必须为正数。
-（在启用 --endpoint-reconciler-type=master-count 时使用。）
-</td>
-</tr>
-
 <tr>
 <td colspan="2">--audit-log-batch-buffer-size int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：10000</td>
 </tr>
@@ -299,9 +260,10 @@ The maximum number of days to retain old audit log files based on the timestamp
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The maximum number of old audit log files to retain.
+The maximum number of old audit log files to retain. Setting a value of 0 will mean there's no restriction on the number of files.
 -->
 要保留的旧的审计日志文件个数上限。
+将值设置为 0 表示对文件个数没有限制。
 </td>
 </tr>
 
@@ -630,7 +592,7 @@ The API version of the authentication.k8s.io TokenReview to send to and expect f
 </tr>
 
 <tr>
-<td colspan="2">--authorization-mode stringSlice&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值："AlwaysAllow"</td>
+<td colspan="2">--authorization-mode strings&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值："AlwaysAllow"</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
@@ -837,7 +799,7 @@ CORS 允许的来源清单，以逗号分隔。
 <!--
 Indicates the tolerationSeconds of the toleration for notReady:NoExecute that is added by default to every pod that does not already have such a toleration.
 -->
-对污点 NotReady:NoExecute 的容忍时长（以秒计）。 
+对污点 NotReady:NoExecute 的容忍时长（以秒计）。
 默认情况下这一容忍度会被添加到尚未具有此容忍度的每个 pod 中。
 </td>
 </tr>
@@ -871,7 +833,7 @@ that do not have a default watch size set.
 </tr>
 
 <tr>
-<td colspan="2">--delete-collection-workers int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值： 1</td>
+<td colspan="2">--delete-collection-workers int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：1</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
@@ -890,10 +852,10 @@ Number of workers spawned for DeleteCollection call. These are used to speed up
 
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-admission plugins that should be disabled although they are in the default enabled plugins list (NamespaceLifecycle, LimitRanger, ServiceAccount, TaintNodesByCondition, Priority, DefaultTolerationSeconds, DefaultStorageClass, StorageObjectInUseProtection, PersistentVolumeClaimResize, RuntimeClass, CertificateApproval, CertificateSigning, CertificateSubjectRestriction, DefaultIngressClass, MutatingAdmissionWebhook, ValidatingAdmissionWebhook, ResourceQuota). Comma-delimited list of admission plugins: AlwaysAdmit, AlwaysDeny, AlwaysPullImages, CertificateApproval, CertificateSigning, CertificateSubjectRestriction, DefaultIngressClass, DefaultStorageClass, DefaultTolerationSeconds, DenyServiceExternalIPs, EventRateLimit, ExtendedResourceToleration, ImagePolicyWebhook, LimitPodHardAntiAffinityTopology, LimitRanger, MutatingAdmissionWebhook, NamespaceAutoProvision, NamespaceExists, NamespaceLifecycle, NodeRestriction, OwnerReferencesPermissionEnforcement, PersistentVolumeClaimResize, PersistentVolumeLabel, PodNodeSelector, PodSecurityPolicy, PodTolerationRestriction, Priority, ResourceQuota, RuntimeClass, SecurityContextDeny, ServiceAccount, StorageObjectInUseProtection, TaintNodesByCondition, ValidatingAdmissionWebhook. The order of plugins in this flag does not matter.
+admission plugins that should be disabled although they are in the default enabled plugins list (NamespaceLifecycle, LimitRanger, ServiceAccount, TaintNodesByCondition, PodSecurity, Priority, DefaultTolerationSeconds, DefaultStorageClass, StorageObjectInUseProtection, PersistentVolumeClaimResize, RuntimeClass, CertificateApproval, CertificateSigning, CertificateSubjectRestriction, DefaultIngressClass, MutatingAdmissionWebhook, ValidatingAdmissionWebhook, ResourceQuota). Comma-delimited list of admission plugins: AlwaysAdmit, AlwaysDeny, AlwaysPullImages, CertificateApproval, CertificateSigning, CertificateSubjectRestriction, DefaultIngressClass, DefaultStorageClass, DefaultTolerationSeconds, DenyServiceExternalIPs, EventRateLimit, ExtendedResourceToleration, ImagePolicyWebhook, LimitPodHardAntiAffinityTopology, LimitRanger, MutatingAdmissionWebhook, NamespaceAutoProvision, NamespaceExists, NamespaceLifecycle, NodeRestriction, OwnerReferencesPermissionEnforcement, PersistentVolumeClaimResize, PersistentVolumeLabel, PodNodeSelector, PodSecurity, PodSecurityPolicy, PodTolerationRestriction, Priority, ResourceQuota, RuntimeClass, SecurityContextDeny, ServiceAccount, StorageObjectInUseProtection, TaintNodesByCondition, ValidatingAdmissionWebhook. The order of plugins in this flag does not matter.
 -->
-尽管位于默认启用的插件列表中（NamespaceLifecycle、LimitRanger、ServiceAccount、TaintNodesByCondition、Priority、DefaultTolerationSeconds、DefaultStorageClass、StorageObjectInUseProtection、PersistentVolumeClaimResize、RuntimeClass、CertificateApproval、CertificateSigning、CertificateSubjectRestriction、DefaultIngressClass、MutatingAdmissionWebhook、ValidatingAdmissionWebhook、ResourceQuota）仍须被禁用的插件。
-<br/>取值为逗号分隔的准入插件列表：AlwaysAdmit、AlwaysDeny、AlwaysPullImages、CertificateApproval、CertificateSigning、CertificateSubjectRestriction、DefaultIngressClass、DefaultStorageClass、DefaultTolerationSeconds、DenyServiceExternalIPs、EventRateLimit、ExtendedResourceToleration、ImagePolicyWebhook、LimitPodHardAntiAffinityTopology、LimitRanger、MutatingAdmissionWebhook、NamespaceAutoProvision、NamespaceExists、NamespaceLifecycle、NodeRestriction、OwnerReferencesPermissionEnforcement、PersistentVolumeClaimResize、PersistentVolumeLabel、PodNodeSelector、PodSecurityPolicy、PodTolerationRestriction、Priority、ResourceQuota、RuntimeClass、SecurityContextDeny、ServiceAccount、StorageObjectInUseProtection、TaintNodesByCondition、ValidatingAdmissionWebhook。
+尽管位于默认启用的插件列表中（NamespaceLifecycle、LimitRanger、ServiceAccount、TaintNodesByCondition、PodSecurity、Priority、DefaultTolerationSeconds、DefaultStorageClass、StorageObjectInUseProtection、PersistentVolumeClaimResize、RuntimeClass、CertificateApproval、CertificateSigning、CertificateSubjectRestriction、DefaultIngressClass、MutatingAdmissionWebhook、ValidatingAdmissionWebhook、ResourceQuota）仍须被禁用的插件。
+<br/>取值为逗号分隔的准入插件列表：AlwaysAdmit、AlwaysDeny、AlwaysPullImages、CertificateApproval、CertificateSigning、CertificateSubjectRestriction、DefaultIngressClass、DefaultStorageClass、DefaultTolerationSeconds、DenyServiceExternalIPs、EventRateLimit、ExtendedResourceToleration、ImagePolicyWebhook、LimitPodHardAntiAffinityTopology、LimitRanger、MutatingAdmissionWebhook、NamespaceAutoProvision、NamespaceExists、NamespaceLifecycle、NodeRestriction、OwnerReferencesPermissionEnforcement、PersistentVolumeClaimResize、PersistentVolumeLabel、PodNodeSelector、PodSecurity、PodSecurityPolicy、PodTolerationRestriction、Priority、ResourceQuota、RuntimeClass、SecurityContextDeny、ServiceAccount、StorageObjectInUseProtection、TaintNodesByCondition、ValidatingAdmissionWebhook。
 <br/>该标志中插件的顺序无关紧要。
 </td>
 </tr>
@@ -912,7 +874,6 @@ This flag provides an escape hatch for misbehaving metrics. You must provide the
 </td>
 </tr>
 
-
 <tr>
 <td colspan="2">--egress-selector-config-file string</td>
 </tr>
@@ -926,19 +887,19 @@ File with apiserver egress selector configuration.
 </tr>
 
 <tr>
-<td colspan="2">--enable-admission-plugins stringSlice</td>
+<td colspan="2">--enable-admission-plugins strings</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
 admission plugins that should be enabled in addition to default enabled ones (
-NamespaceLifecycle, LimitRanger, ServiceAccount, TaintNodesByCondition, Priority, DefaultTolerationSeconds, DefaultStorageClass, StorageObjectInUseProtection, PersistentVolumeClaimResize, RuntimeClass, CertificateApproval, CertificateSigning, CertificateSubjectRestriction, DefaultIngressClass, MutatingAdmissionWebhook, ValidatingAdmissionWebhook, ResourceQuota).
+NamespaceLifecycle, LimitRanger, ServiceAccount, TaintNodesByCondition, PodSecurity, Priority, DefaultTolerationSeconds, DefaultStorageClass, StorageObjectInUseProtection, PersistentVolumeClaimResize, RuntimeClass, CertificateApproval, CertificateSigning, CertificateSubjectRestriction, DefaultIngressClass, MutatingAdmissionWebhook, ValidatingAdmissionWebhook, ResourceQuota).
 Comma-delimited list of admission plugins:
-AlwaysAdmit, AlwaysDeny, AlwaysPullImages, CertificateApproval, CertificateSigning, CertificateSubjectRestriction, DefaultIngressClass, DefaultStorageClass, DefaultTolerationSeconds, DenyServiceExternalIPs, EventRateLimit, ExtendedResourceToleration, ImagePolicyWebhook, LimitPodHardAntiAffinityTopology, LimitRanger, MutatingAdmissionWebhook, NamespaceAutoProvision, NamespaceExists, NamespaceLifecycle, NodeRestriction, OwnerReferencesPermissionEnforcement, PersistentVolumeClaimResize, PersistentVolumeLabel, PodNodeSelector, PodSecurityPolicy, PodTolerationRestriction, Priority, ResourceQuota, RuntimeClass, SecurityContextDeny, ServiceAccount, StorageObjectInUseProtection, TaintNodesByCondition, ValidatingAdmissionWebhook.
+AlwaysAdmit, AlwaysDeny, AlwaysPullImages, CertificateApproval, CertificateSigning, CertificateSubjectRestriction, DefaultIngressClass, DefaultStorageClass, DefaultTolerationSeconds, DenyServiceExternalIPs, EventRateLimit, ExtendedResourceToleration, ImagePolicyWebhook, LimitPodHardAntiAffinityTopology, LimitRanger, MutatingAdmissionWebhook, NamespaceAutoProvision, NamespaceExists, NamespaceLifecycle, NodeRestriction, OwnerReferencesPermissionEnforcement, PersistentVolumeClaimResize, PersistentVolumeLabel, PodNodeSelector, PodSecurity, PodSecurityPolicy, PodTolerationRestriction, Priority, ResourceQuota, RuntimeClass, SecurityContextDeny, ServiceAccount, StorageObjectInUseProtection, TaintNodesByCondition, ValidatingAdmissionWebhook.
 The order of plugins in this flag does not matter.
 -->
-除了默认启用的插件（NamespaceLifecycle、LimitRanger、ServiceAccount、TaintNodesByCondition、Priority、DefaultTolerationSeconds、DefaultStorageClass、StorageObjectInUseProtection、PersistentVolumeClaimResize、RuntimeClass、CertificateApproval、CertificateSigning、CertificateSubjectRestriction、DefaultIngressClass、MutatingAdmissionWebhook、ValidatingAdmissionWebhook、ResourceQuota）之外要启用的插件
-</br>取值为逗号分隔的准入插件列表：AlwaysAdmit、AlwaysDeny、AlwaysPullImages、CertificateApproval、CertificateSigning、CertificateSubjectRestriction、DefaultIngressClass、DefaultStorageClass、DefaultTolerationSeconds、DenyServiceExternalIPs、EventRateLimit、ExtendedResourceToleration、ImagePolicyWebhook、LimitPodHardAntiAffinityTopology、LimitRanger、MutatingAdmissionWebhook、NamespaceAutoProvision、NamespaceExists、NamespaceLifecycle、NodeRestriction、OwnerReferencesPermissionEnforcement、PersistentVolumeClaimResize、PersistentVolumeLabel、PodNodeSelector、PodSecurityPolicy、PodTolerationRestriction、Priority、ResourceQuota、RuntimeClass、SecurityContextDeny、ServiceAccount、StorageObjectInUseProtection、TaintNodesByCondition、ValidatingAdmissionWebhook
+除了默认启用的插件（NamespaceLifecycle、LimitRanger、ServiceAccount、TaintNodesByCondition、PodSecurity、Priority、DefaultTolerationSeconds、DefaultStorageClass、StorageObjectInUseProtection、PersistentVolumeClaimResize、RuntimeClass、CertificateApproval、CertificateSigning、CertificateSubjectRestriction、DefaultIngressClass、MutatingAdmissionWebhook、ValidatingAdmissionWebhook、ResourceQuota）之外要启用的插件
+</br>取值为逗号分隔的准入插件列表：AlwaysAdmit、AlwaysDeny、AlwaysPullImages、CertificateApproval、CertificateSigning、CertificateSubjectRestriction、DefaultIngressClass、DefaultStorageClass、DefaultTolerationSeconds、DenyServiceExternalIPs、EventRateLimit、ExtendedResourceToleration、ImagePolicyWebhook、LimitPodHardAntiAffinityTopology、LimitRanger、MutatingAdmissionWebhook、NamespaceAutoProvision、NamespaceExists、NamespaceLifecycle、NodeRestriction、OwnerReferencesPermissionEnforcement、PersistentVolumeClaimResize、PersistentVolumeLabel、PodNodeSelector、PodSecurity、PodSecurityPolicy、PodTolerationRestriction、Priority、ResourceQuota、RuntimeClass、SecurityContextDeny、ServiceAccount、StorageObjectInUseProtection、TaintNodesByCondition、ValidatingAdmissionWebhook
 <br/>该标志中插件的顺序无关紧要。
 </td>
 </tr>
@@ -1015,9 +976,10 @@ The file containing configuration for encryption providers to be used for storin
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Use an endpoint reconciler (master-count, lease, none)
+Use an endpoint reconciler (master-count, lease, none) master-count is deprecated, and will be removed in a future version.
 -->
 使用端点协调器（<code>master-count</code>、<code>lease</code> 或 <code>none</code>）。
+<code>master-count</code> 已弃用，并将在未来版本中删除。
 </td>
 </tr>
 
@@ -1159,18 +1121,6 @@ Amount of time to retain events.
 </td>
 </tr>
 
-<tr>
-<td colspan="2">--experimental-logging-sanitization</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--[Experimental] When enabled prevents logging of fields tagged as sensitive (passwords, keys, tokens).<br/>Runtime log sanitization may introduce significant computation overhead and therefore should not be enabled in production.
--->
-[试验性功能] 启用此标志时，被标记为敏感的字段（密码、密钥、令牌）都不会被日志输出。<br/>
-运行时的日志清理可能会引入相当程度的计算开销，因此不应该在产品环境中启用。
-</td>
-</tr>
-
 <tr>
 <td colspan="2">--external-hostname string</td>
 </tr>
@@ -1195,196 +1145,204 @@ APIListChunking=true|false (BETA - default=true)<br/>
 APIPriorityAndFairness=true|false (BETA - default=true)<br/>
 APIResponseCompression=true|false (BETA - default=true)<br/>
 APIServerIdentity=true|false (ALPHA - default=false)<br/>
+APIServerTracing=true|false (ALPHA - default=false)<br/>
 AllAlpha=true|false (ALPHA - default=false)<br/>
 AllBeta=true|false (BETA - default=false)<br/>
-AnyVolumeDataSource=true|false (ALPHA - default=false)<br/>
+AnyVolumeDataSource=true|false (BETA - default=true)<br/>
 AppArmor=true|false (BETA - default=true)<br/>
-BalanceAttachedNodeVolumes=true|false (ALPHA - default=false)<br/>
-BoundServiceAccountTokenVolume=true|false (BETA - default=true)<br/>
 CPUManager=true|false (BETA - default=true)<br/>
+CPUManagerPolicyAlphaOptions=true|false (ALPHA - default=false)<br>
+CPUManagerPolicyBetaOptions=true|false (BETA - default=true)<br/>
+CPUManagerPolicyOptions=true|false (BETA - default=true)<br/>
 CSIInlineVolume=true|false (BETA - default=true)<br/>
 CSIMigration=true|false (BETA - default=true)<br/>
-CSIMigrationAWS=true|false (BETA - default=false)<br/>
-CSIMigrationAzureDisk=true|false (BETA - default=false)<br/>
-CSIMigrationAzureFile=true|false (BETA - default=false)<br/>
-CSIMigrationGCE=true|false (BETA - default=false)<br/>
-CSIMigrationOpenStack=true|false (BETA - default=true)<br/>
+CSIMigrationAWS=true|false (BETA - default=true)<br/>
+CSIMigrationAzureFile=true|false (BETA - default=true)<br/>
+CSIMigrationGCE=true|false (BETA - default=true)<br/>
+CSIMigrationPortworx=true|false (ALPHA - default=false)<br/>
+CSIMigrationRBD=true|false (ALPHA - default=false)<br/>
 CSIMigrationvSphere=true|false (BETA - default=false)<br/>
-CSIMigrationvSphereComplete=true|false (BETA - default=false)<br/>
-CSIServiceAccountToken=true|false (BETA - default=true)<br/>
-CSIStorageCapacity=true|false (BETA - default=true)<br/>
-CSIVolumeFSGroupPolicy=true|false (BETA - default=true)<br/>
 CSIVolumeHealth=true|false (ALPHA - default=false)<br/>
-ConfigurableFSGroupPolicy=true|false (BETA - default=true)<br/>
-ControllerManagerLeaderMigration=true|false (ALPHA - default=false)<br/>
-CronJobControllerV2=true|false (BETA - default=true)<br/>
+ContextualLogging=true|false (ALPHA - default=false)<br/>
+CronJobTimeZone=true|false (ALPHA - default=false)<br/>
 CustomCPUCFSQuotaPeriod=true|false (ALPHA - default=false)<br/>
-DaemonSetUpdateSurge=true|false (ALPHA - default=false)<br/>
-DefaultPodTopologySpread=true|false (BETA - default=true)<br/>
+CustomResourceValidationExpressions=true|false (ALPHA - default=false)<br/>
+DaemonSetUpdateSurge=true|false (BETA - default=true)<br/>
+DelegateFSGroupToCSIDriver=true|false (BETA - default=true)<br/>
 DevicePlugins=true|false (BETA - default=true)<br/>
 DisableAcceleratorUsageMetrics=true|false (BETA - default=true)<br/>
-DownwardAPIHugePages=true|false (BETA - default=false)<br/>
-DynamicKubeletConfig=true|false (BETA - default=true)<br/>
-EfficientWatchResumption=true|false (BETA - default=true)<br/>
-EndpointSliceProxying=true|false (BETA - default=true)<br/>
-EndpointSliceTerminatingCondition=true|false (ALPHA - default=false)<br/>
-EphemeralContainers=true|false (ALPHA - default=false)<br/>
-ExpandCSIVolumes=true|false (BETA - default=true)<br/>
-ExpandInUsePersistentVolumes=true|false (BETA - default=true)<br/>
-ExpandPersistentVolumes=true|false (BETA - default=true)<br/>
+DisableCloudProviders=true|false (ALPHA - default=false)<br/>
+DisableKubeletCloudCredentialProviders=true|false (ALPHA - default=false)<br/>
+DownwardAPIHugePages=true|false (BETA - default=true)<br/>
+EndpointSliceTerminatingCondition=true|false (BETA - default=true)<br/>
+EphemeralContainers=true|false (BETA - default=true)<br/>
+ExpandedDNSConfig=true|false (ALPHA - default=false)<br/>
 ExperimentalHostUserNamespaceDefaulting=true|false (BETA - default=false)<br/>
-GenericEphemeralVolume=true|false (BETA - default=true)<br/>
+GRPCContainerProbe=true|false (BETA - default=true)<br/>
 GracefulNodeShutdown=true|false (BETA - default=true)<br/>
+GracefulNodeShutdownBasedOnPodPriority=true|false (BETA - default=true)<br/>
 HPAContainerMetrics=true|false (ALPHA - default=false)<br/>
 HPAScaleToZero=true|false (ALPHA - default=false)<br/>
-HugePageStorageMediumSize=true|false (BETA - default=true)<br/>
-IPv6DualStack=true|false (BETA - default=true)<br/>
+HonorPVReclaimPolicy=true|false (ALPHA - default=false)<br/>
+IdentifyPodOS=true|false (BETA - default=true)<br/>
 InTreePluginAWSUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginAzureDiskUnregister=true|false (ALPHA - default=false)<br/>
-InTreePluginAzureFileUnregister=true|false (ALPHA - default=false)<br/>
-InTreePluginGCEUnregister=true|false (ALPHA - default=false)<br/>
+InTreePluginAzureFileUnregister=true|false (ALPHA - default=false)<br/>I
+nTreePluginGCEUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginOpenStackUnregister=true|false (ALPHA - default=false)<br/>
+InTreePluginPortworxUnregister=true|false (ALPHA - default=false)<br/>
+InTreePluginRBDUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginvSphereUnregister=true|false (ALPHA - default=false)<br/>
-IndexedJob=true|false (ALPHA - default=false)<br/>
-IngressClassNamespacedParams=true|false (ALPHA - default=false)<br/>
-KubeletCredentialProviders=true|false (ALPHA - default=false)<br/>
+JobMutableNodeSchedulingDirectives=true|false (BETA - default=true)<br/>
+JobReadyPods=true|false (BETA - default=true)<br/>
+JobTrackingWithFinalizers=true|false (BETA - default=false)<br/>
+KubeletCredentialProviders=true|false (BETA - default=true)<br/>
+KubeletInUserNamespace=true|false (ALPHA - default=false)<br/>
 KubeletPodResources=true|false (BETA - default=true)<br/>
-KubeletPodResourcesGetAllocatable=true|false (ALPHA - default=false)<br/>
+KubeletPodResourcesGetAllocatable=true|false (BETA - default=true)<br/>
+LegacyServiceAccountTokenNoAutoGeneration=true|false (BETA - default=true)<br/>
 LocalStorageCapacityIsolation=true|false (BETA - default=true)<br/>
 LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - default=false)<br/>
-LogarithmicScaleDown=true|false (ALPHA - default=false)<br/>
-MemoryManager=true|false (ALPHA - default=false)<br/>
-MixedProtocolLBService=true|false (ALPHA - default=false)<br/>
-NamespaceDefaultLabelName=true|false (BETA - default=true)<br/>
-NetworkPolicyEndPort=true|false (ALPHA - default=false)<br/>
-NonPreemptingPriority=true|false (BETA - default=true)<br/>
-PodAffinityNamespaceSelector=true|false (ALPHA - default=false)<br/>
-PodDeletionCost=true|false (ALPHA - default=false)<br/>
-PodOverhead=true|false (BETA - default=true)<br/>
-PreferNominatedNode=true|false (ALPHA - default=false)<br/>
-ProbeTerminationGracePeriod=true|false (ALPHA - default=false)<br/>
+LogarithmicScaleDown=true|false (BETA - default=true)<br/>
+MaxUnavailableStatefulSet=true|false (ALPHA - default=false)<br/>
+MemoryManager=true|false (BETA - default=true)<br/>
+MemoryQoS=true|false (ALPHA - default=false)<br/>
+MinDomainsInPodTopologySpread=true|false (ALPHA - default=false)<br/>
+MixedProtocolLBService=true|false (BETA - default=true)<br/>
+NetworkPolicyEndPort=true|false (BETA - default=true)<br/>
+NetworkPolicyStatus=true|false (ALPHA - default=false)<br/>
+NodeOutOfServiceVolumeDetach=true|false (ALPHA - default=false)<br/>
+NodeSwap=true|false (ALPHA - default=false)<br/>
+OpenAPIEnums=true|false (BETA - default=true)<br/>
+OpenAPIV3=true|false (BETA - default=true)<br/>
+PodAndContainerStatsFromCRI=true|false (ALPHA - default=false)<br/>
+PodDeletionCost=true|false (BETA - default=true)<br/>
+PodSecurity=true|false (BETA - default=true)<br/>
+ProbeTerminationGracePeriod=true|false (BETA - default=false)<br/>
 ProcMountType=true|false (ALPHA - default=false)<br/>
+ProxyTerminatingEndpoints=true|false (ALPHA - default=false)<br/>
 QOSReserved=true|false (ALPHA - default=false)<br/>
+ReadWriteOncePod=true|false (ALPHA - default=false)<br/>
+RecoverVolumeExpansionFailure=true|false (ALPHA - default=false)<br/>
 RemainingItemCount=true|false (BETA - default=true)<br/>
-RemoveSelfLink=true|false (BETA - default=true)<br/>
 RotateKubeletServerCertificate=true|false (BETA - default=true)<br/>
-ServerSideApply=true|false (BETA - default=true)<br/>
-ServiceInternalTrafficPolicy=true|false (ALPHA - default=false)<br/>
-ServiceLBNodePortControl=true|false (ALPHA - default=false)<br/>
-ServiceLoadBalancerClass=true|false (ALPHA - default=false)<br/>
-ServiceTopology=true|false (ALPHA - default=false)<br/>
-SetHostnameAsFQDN=true|false (BETA - default=true)<br/>
-SizeMemoryBackedVolumes=true|false (ALPHA - default=false)<br/>
+SeccompDefault=true|false (ALPHA - default=false)<br/>
+ServerSideFieldValidation=true|false (ALPHA - default=false)<br/>
+ServiceIPStaticSubrange=true|false (ALPHA - default=false)<br/>
+ServiceInternalTrafficPolicy=true|false (BETA - default=true)<br/>
+SizeMemoryBackedVolumes=true|false (BETA - default=true)<br/>
+StatefulSetAutoDeletePVC=true|false (ALPHA - default=false)<br/>
+StatefulSetMinReadySeconds=true|false (BETA - default=true)<br/>
 StorageVersionAPI=true|false (ALPHA - default=false)<br/>
 StorageVersionHash=true|false (BETA - default=true)<br/>
-SuspendJob=true|false (ALPHA - default=false)<br/>
-TTLAfterFinished=true|false (BETA - default=true)<br/>
-TopologyAwareHints=true|false (ALPHA - default=false)<br/>
+TopologyAwareHints=true|false (BETA - default=true)<br/>
 TopologyManager=true|false (BETA - default=true)<br/>
-ValidateProxyRedirects=true|false (BETA - default=true)<br/>
 VolumeCapacityPriority=true|false (ALPHA - default=false)<br/>
-WarningHeaders=true|false (BETA - default=true)<br/>
 WinDSR=true|false (ALPHA - default=false)<br/>
 WinOverlay=true|false (BETA - default=true)<br/>
-WindowsEndpointSliceProxying=true|false (BETA - default=true)
+WindowsHostProcessContainers=true|false (BETA - default=true)
 -->
 <p>一组 key=value 对，用来描述测试性/试验性功能的特性门控。可选项有：
 APIListChunking=true|false (BETA - 默认值=true)<br/>
 APIPriorityAndFairness=true|false (BETA - 默认值=true)<br/>
 APIResponseCompression=true|false (BETA - 默认值=true)<br/>
 APIServerIdentity=true|false (ALPHA - 默认值=false)<br/>
+APIServerTracing=true|false (ALPHA - 默认值=false)<br/>
 AllAlpha=true|false (ALPHA - 默认值=false)<br/>
 AllBeta=true|false (BETA - 默认值=false)<br/>
-AnyVolumeDataSource=true|false (ALPHA - 默认值=false)<br/>
+AnyVolumeDataSource=true|false (BETA - 默认值=true)<br/>
 AppArmor=true|false (BETA - 默认值=true)<br/>
-BalanceAttachedNodeVolumes=true|false (ALPHA - 默认值=false)<br/>
-BoundServiceAccountTokenVolume=true|false (BETA - 默认值=true)<br/>
 CPUManager=true|false (BETA - 默认值=true)<br/>
+CPUManagerPolicyAlphaOptions=true|false (ALPHA - 默认值=false)<br>
+CPUManagerPolicyBetaOptions=true|false (BETA - 默认值=true)<br/>
+CPUManagerPolicyOptions=true|false (BETA - 默认值=true)<br/>
 CSIInlineVolume=true|false (BETA - 默认值=true)<br/>
 CSIMigration=true|false (BETA - 默认值=true)<br/>
-CSIMigrationAWS=true|false (BETA - 默认值=false)<br/>
-CSIMigrationAzureDisk=true|false (BETA - 默认值=false)<br/>
-CSIMigrationAzureFile=true|false (BETA - 默认值=false)<br/>
-CSIMigrationGCE=true|false (BETA - 默认值=false)<br/>
-CSIMigrationOpenStack=true|false (BETA - 默认值=true)<br/>
+CSIMigrationAWS=true|false (BETA - 默认值=true)<br/>
+CSIMigrationAzureFile=true|false (BETA - 默认值=true)<br/>
+CSIMigrationGCE=true|false (BETA - 默认值=true)<br/>
+CSIMigrationPortworx=true|false (ALPHA - 默认值=false)<br/>
+CSIMigrationRBD=true|false (ALPHA - 默认值=false)<br/>
 CSIMigrationvSphere=true|false (BETA - 默认值=false)<br/>
-CSIMigrationvSphereComplete=true|false (BETA - 默认值=false)<br/>
-CSIServiceAccountToken=true|false (BETA - 默认值=true)<br/>
-CSIStorageCapacity=true|false (BETA - 默认值=true)<br/>
-CSIVolumeFSGroupPolicy=true|false (BETA - 默认值=true)<br/>
 CSIVolumeHealth=true|false (ALPHA - 默认值=false)<br/>
-ConfigurableFSGroupPolicy=true|false (BETA - 默认值=true)<br/>
-ControllerManagerLeaderMigration=true|false (ALPHA - 默认值=false)<br/>
-CronJobControllerV2=true|false (BETA - 默认值=true)<br/>
+ContextualLogging=true|false (ALPHA - 默认值=false)<br/>
+CronJobTimeZone=true|false (ALPHA - 默认值=false)<br/>
 CustomCPUCFSQuotaPeriod=true|false (ALPHA - 默认值=false)<br/>
-DaemonSetUpdateSurge=true|false (ALPHA - 默认值=false)<br/>
-DefaultPodTopologySpread=true|false (BETA - 默认值=true)<br/>
+CustomResourceValidationExpressions=true|false (ALPHA - 默认值=false)<br/>
+DaemonSetUpdateSurge=true|false (BETA - 默认值=true)<br/>
+DelegateFSGroupToCSIDriver=true|false (BETA - 默认值=true)<br/>
 DevicePlugins=true|false (BETA - 默认值=true)<br/>
 DisableAcceleratorUsageMetrics=true|false (BETA - 默认值=true)<br/>
-DownwardAPIHugePages=true|false (BETA - 默认值=false)<br/>
-DynamicKubeletConfig=true|false (BETA - 默认值=true)<br/>
-EfficientWatchResumption=true|false (BETA - 默认值=true)<br/>
-EndpointSliceProxying=true|false (BETA - 默认值=true)<br/>
-EndpointSliceTerminatingCondition=true|false (ALPHA - 默认值=false)<br/>
-EphemeralContainers=true|false (ALPHA - 默认值=false)<br/>
-ExpandCSIVolumes=true|false (BETA - 默认值=true)<br/>
-ExpandInUsePersistentVolumes=true|false (BETA - 默认值=true)<br/>
-ExpandPersistentVolumes=true|false (BETA - 默认值=true)<br/>
-ExperimentalHostUserNamespace默认值ing=true|false (BETA - 默认值=false)<br/>
-GenericEphemeralVolume=true|false (BETA - 默认值=true)<br/>
+DisableCloudProviders=true|false (ALPHA - 默认值=false)<br/>
+DisableKubeletCloudCredentialProviders=true|false (ALPHA - 默认值=false)<br/>
+DownwardAPIHugePages=true|false (BETA - 默认值=true)<br/>
+EndpointSliceTerminatingCondition=true|false (BETA - 默认值=true)<br/>
+EphemeralContainers=true|false (BETA - 默认值=true)<br/>
+ExpandedDNSConfig=true|false (ALPHA - 默认值=false)<br/>
+ExperimentalHostUserNamespaceDefaulting=true|false (BETA - 默认值=false)<br/>
+GRPCContainerProbe=true|false (BETA - 默认值=true)<br/>
 GracefulNodeShutdown=true|false (BETA - 默认值=true)<br/>
+GracefulNodeShutdownBasedOnPodPriority=true|false (BETA - 默认值=true)<br/>
 HPAContainerMetrics=true|false (ALPHA - 默认值=false)<br/>
 HPAScaleToZero=true|false (ALPHA - 默认值=false)<br/>
-HugePageStorageMediumSize=true|false (BETA - 默认值=true)<br/>
-IPv6DualStack=true|false (BETA - 默认值=true)<br/>
+HonorPVReclaimPolicy=true|false (ALPHA - 默认值=false)<br/>
+IdentifyPodOS=true|false (BETA - 默认值=true)<br/>
 InTreePluginAWSUnregister=true|false (ALPHA - 默认值=false)<br/>
 InTreePluginAzureDiskUnregister=true|false (ALPHA - 默认值=false)<br/>
-InTreePluginAzureFileUnregister=true|false (ALPHA - 默认值=false)<br/>
-InTreePluginGCEUnregister=true|false (ALPHA - 默认值=false)<br/>
+InTreePluginAzureFileUnregister=true|false (ALPHA - 默认值=false)<br/>I
+nTreePluginGCEUnregister=true|false (ALPHA - 默认值=false)<br/>
 InTreePluginOpenStackUnregister=true|false (ALPHA - 默认值=false)<br/>
+InTreePluginPortworxUnregister=true|false (ALPHA - 默认值=false)<br/>
+InTreePluginRBDUnregister=true|false (ALPHA - 默认值=false)<br/>
 InTreePluginvSphereUnregister=true|false (ALPHA - 默认值=false)<br/>
-IndexedJob=true|false (ALPHA - 默认值=false)<br/>
-IngressClassNamespacedParams=true|false (ALPHA - 默认值=false)<br/>
-KubeletCredentialProviders=true|false (ALPHA - 默认值=false)<br/>
+JobMutableNodeSchedulingDirectives=true|false (BETA - 默认值=true)<br/>
+JobReadyPods=true|false (BETA - 默认值=true)<br/>
+JobTrackingWithFinalizers=true|false (BETA - 默认值=false)<br/>
+KubeletCredentialProviders=true|false (BETA - 默认值=true)<br/>
+KubeletInUserNamespace=true|false (ALPHA - 默认值=false)<br/>
 KubeletPodResources=true|false (BETA - 默认值=true)<br/>
-KubeletPodResourcesGetAllocatable=true|false (ALPHA - 默认值=false)<br/>
+KubeletPodResourcesGetAllocatable=true|false (BETA - 默认值=true)<br/>
+LegacyServiceAccountTokenNoAutoGeneration=true|false (BETA - 默认值=true)<br/>
 LocalStorageCapacityIsolation=true|false (BETA - 默认值=true)<br/>
 LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - 默认值=false)<br/>
-LogarithmicScaleDown=true|false (ALPHA - 默认值=false)<br/>
-MemoryManager=true|false (ALPHA - 默认值=false)<br/>
-MixedProtocolLBService=true|false (ALPHA - 默认值=false)<br/>
-NamespaceDefaultLabelName=true|false (BETA - 默认值=true)<br/>
-NetworkPolicyEndPort=true|false (ALPHA - 默认值=false)<br/>
-NonPreemptingPriority=true|false (BETA - 默认值=true)<br/>
-PodAffinityNamespaceSelector=true|false (ALPHA - 默认值=false)<br/>
-PodDeletionCost=true|false (ALPHA - 默认值=false)<br/>
-PodOverhead=true|false (BETA - 默认值=true)<br/>
-PreferNominatedNode=true|false (ALPHA - 默认值=false)<br/>
-ProbeTerminationGracePeriod=true|false (ALPHA - 默认值=false)<br/>
+LogarithmicScaleDown=true|false (BETA - 默认值=true)<br/>
+MaxUnavailableStatefulSet=true|false (ALPHA - 默认值=false)<br/>
+MemoryManager=true|false (BETA - 默认值=true)<br/>
+MemoryQoS=true|false (ALPHA - 默认值=false)<br/>
+MinDomainsInPodTopologySpread=true|false (ALPHA - 默认值=false)<br/>
+MixedProtocolLBService=true|false (BETA - 默认值=true)<br/>
+NetworkPolicyEndPort=true|false (BETA - 默认值=true)<br/>
+NetworkPolicyStatus=true|false (ALPHA - 默认值=false)<br/>
+NodeOutOfServiceVolumeDetach=true|false (ALPHA - 默认值=false)<br/>
+NodeSwap=true|false (ALPHA - 默认值=false)<br/>
+OpenAPIEnums=true|false (BETA - 默认值=true)<br/>
+OpenAPIV3=true|false (BETA - 默认值=true)<br/>
+PodAndContainerStatsFromCRI=true|false (ALPHA - 默认值=false)<br/>
+PodDeletionCost=true|false (BETA - 默认值=true)<br/>
+PodSecurity=true|false (BETA - 默认值=true)<br/>
+ProbeTerminationGracePeriod=true|false (BETA - 默认值=false)<br/>
 ProcMountType=true|false (ALPHA - 默认值=false)<br/>
+ProxyTerminatingEndpoints=true|false (ALPHA - 默认值=false)<br/>
 QOSReserved=true|false (ALPHA - 默认值=false)<br/>
+ReadWriteOncePod=true|false (ALPHA - 默认值=false)<br/>
+RecoverVolumeExpansionFailure=true|false (ALPHA - 默认值=false)<br/>
 RemainingItemCount=true|false (BETA - 默认值=true)<br/>
-RemoveSelfLink=true|false (BETA - 默认值=true)<br/>
 RotateKubeletServerCertificate=true|false (BETA - 默认值=true)<br/>
-ServerSideApply=true|false (BETA - 默认值=true)<br/>
-ServiceInternalTrafficPolicy=true|false (ALPHA - 默认值=false)<br/>
-ServiceLBNodePortControl=true|false (ALPHA - 默认值=false)<br/>
-ServiceLoadBalancerClass=true|false (ALPHA - 默认值=false)<br/>
-ServiceTopology=true|false (ALPHA - 默认值=false)<br/>
-SetHostnameAsFQDN=true|false (BETA - 默认值=true)<br/>
-SizeMemoryBackedVolumes=true|false (ALPHA - 默认值=false)<br/>
+Seccomp默认值=true|false (ALPHA - 默认值=false)<br/>
+ServerSideFieldValidation=true|false (ALPHA - 默认值=false)<br/>
+ServiceIPStaticSubrange=true|false (ALPHA - 默认值=false)<br/>
+ServiceInternalTrafficPolicy=true|false (BETA - 默认值=true)<br/>
+SizeMemoryBackedVolumes=true|false (BETA - 默认值=true)<br/>
+StatefulSetAutoDeletePVC=true|false (ALPHA - 默认值=false)<br/>
+StatefulSetMinReadySeconds=true|false (BETA - 默认值=true)<br/>
 StorageVersionAPI=true|false (ALPHA - 默认值=false)<br/>
 StorageVersionHash=true|false (BETA - 默认值=true)<br/>
-SuspendJob=true|false (ALPHA - 默认值=false)<br/>
-TTLAfterFinished=true|false (BETA - 默认值=true)<br/>
-TopologyAwareHints=true|false (ALPHA - 默认值=false)<br/>
+TopologyAwareHints=true|false (BETA - 默认值=true)<br/>
 TopologyManager=true|false (BETA - 默认值=true)<br/>
-ValidateProxyRedirects=true|false (BETA - 默认值=true)<br/>
 VolumeCapacityPriority=true|false (ALPHA - 默认值=false)<br/>
-WarningHeaders=true|false (BETA - 默认值=true)<br/>
 WinDSR=true|false (ALPHA - 默认值=false)<br/>
 WinOverlay=true|false (BETA - 默认值=true)<br/>
-WindowsEndpointSliceProxying=true|false (BETA - 默认值=true)</p>
+WindowsHostProcessContainers=true|false (BETA - 默认值=true)</p>
 </td>
 </tr>
 
@@ -1405,10 +1363,10 @@ Max is .02 (1/50 requests); .001 (1/1000) is a recommended starting point.
 -->
 为防止 HTTP/2 客户端卡在单个 API 服务器上，可启用随机关闭连接（GOAWAY）。
 客户端的其他运行中请求将不会受到影响，并且客户端将重新连接，
-可能会在再次通过负载平衡器后登陆到其他 API 服务器上。 
-此参数设置将发送 GOAWAY 的请求的比例。 
-具有单个 API 服务器或不使用负载平衡器的群集不应启用此功能。 
-最小值为0（关闭），最大值为 .02（1/50 请求）； 建议使用 .001（1/1000）。
+可能会在再次通过负载平衡器后登陆到其他 API 服务器上。
+此参数设置将发送 GOAWAY 的请求的比例。
+具有单个 API 服务器或不使用负载平衡器的集群不应启用此功能。
+最小值为0（关闭），最大值为 .02（1/50 请求）；建议使用 .001（1/1000）。
 </td>
 </tr>
 
@@ -1571,56 +1529,6 @@ post-start hooks will complete successfully and therefore return true.
 </td>
 </tr>
 
-<tr>
-<td colspan="2">--log-backtrace-at traceLocation&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：<tt>:0</tt></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-when logging hits line file:N, emit a stack trace
--->
-当日志机制执行到'文件 :N'时，生成堆栈跟踪。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--log-dir string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If non-empty, write log files in this directory
--->
-如果为非空，则在此目录中写入日志文件。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--log-file string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If non-empty, use this log file
--->
-如果为非空，使用此值作为日志文件。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--log-file-max-size uint&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：1800</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Defines the maximum size a log file can grow to. Unit is megabytes. 
-If the value is 0, the maximum file size is unlimited.
--->
-定义日志文件可以增长到的最大大小。单位为兆字节。
-如果值为 0，则最大文件大小为无限制。
-</td>
-</tr>
-
 <tr>
 <td colspan="2">--log-flush-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：5s</td>
 </tr>
@@ -1639,26 +1547,14 @@ Maximum number of seconds between log flushes
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Sets the log format. Permitted formats: "json", "text".<br/>Non-default formats don't honor these flags: --add_dir_header, --alsologtostderr, --log_backtrace_at, --log_dir, --log_file, --log_file_max_size, --logtostderr, --one_output, --skip_headers, --skip_log_headers, --stderrthreshold, --vmodule, --log-flush-frequency.<br/>Non-default choices are currently alpha and subject to change without warning.
+Sets the log format. Permitted formats: &quot;text&quot;.<br/>Non-default formats don't honor these flags: --add-dir-header, --alsologtostderr, --log-backtrace-at, --log-dir, --log-file, --log-file-max-size, --logtostderr, --one-output, --skip-headers, --skip-log-headers, --stderrthreshold, --vmodule.<br/>Non-default choices are currently alpha and subject to change without warning.
 -->
-设置日志格式。允许的格式："json"，"json"。<br/>
-非默认格式不支持以下标志：<code>--add-dir-header</code>、<code>--alsologtostderr</code>、<code>--log-backtrace-at</code>、<code>--log-dir</code>、<code>--log-file</code>、<code>--log-file-max-size</code>、<code>--logtostderr</code>、<code>--one-output</code>、<code>-skip-headers</code>、<code>-skip-log-headers</code>、<code>--stderrthreshold</code>、<code>-vmodule</code> 和 <code>--log-flush-frequency</code>。<br/>
+设置日志格式。允许的格式：&quot;text&quot;。<br/>
+非默认格式不支持以下标志：<code>--add-dir-header</code>、<code>--alsologtostderr</code>、<code>--log-backtrace-at</code>、<code>--log-dir</code>、<code>--log-file</code>、<code>--log-file-max-size</code>、<code>--logtostderr</code>、<code>--one-output</code>、<code>-skip-headers</code>、<code>-skip-log-headers</code>、<code>--stderrthreshold</code>、<code>-vmodule</code>。<br/>
 当前非默认选择为 alpha，会随时更改而不会发出警告。
 </td>
 </tr>
 
-<tr>
-<td colspan="2">--logtostderr&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：true</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-log to standard error instead of files
--->
-在标准错误而不是文件中输出日志记录。
-</td>
-</tr>
-
 <tr>
 <td colspan="2">--master-service-namespace string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值："default"</td>
 </tr>
@@ -1690,12 +1586,11 @@ If non-zero, throttle each user connection to this number of bytes/sec. Currentl
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The maximum number of mutating requests in flight at a given time. 
-When the server exceeds this, it rejects requests. Zero for no limit.
+This and --max-requests-inflight are summed to determine the server's total concurrency limit (which must be positive) if --enable-priority-and-fairness is true.
+Otherwise, this flag limits the maximum number of mutating requests in flight, or a zero value disables the limit completely.
 -->
-在给定时间内进行中变更类型请求的最大个数。
-当超过该值时，服务将拒绝所有请求。
-零表示无限制。
+如果 --enable-priority-and-fairness 为 true，那么此值和 --max-requests-inflight 的和将确定服务器的总并发限制（必须是正数）。
+否则，该值限制进行中变更类型请求的最大个数，零表示无限制。
 </td>
 </tr>
 
@@ -1705,12 +1600,11 @@ When the server exceeds this, it rejects requests. Zero for no limit.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The maximum number of non-mutating requests in flight at a given time. 
-When the server exceeds this, it rejects requests. Zero for no limit.
+This and --max-mutating-requests-inflight are summed to determine the server's total concurrency limit (which must be positive) if --enable-priority-and-fairness is true.
+Otherwise, this flag limits the maximum number of non-mutating requests in flight, or a zero value disables the limit completely.
 -->
-在给定时间内进行中非变更类型请求的最大数量。
-当超过该值时，服务将拒绝所有请求。
-零表示无限制。
+如果 --enable-priority-and-fairness 为 true，那么此值和 --max-mutating-requests-inflight 的和将确定服务器的总并发限制（必须是正数）。
+否则，该值限制进行中非变更类型请求的最大个数，零表示无限制。
 </td>
 </tr>
 
@@ -1823,11 +1717,11 @@ Repeat this flag to specify multiple claims.
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
 Comma-separated list of allowed JOSE asymmetric signing algorithms. 
-JWTs with a 'alg' header value not in this list will be rejected. 
+JWTs with a supported 'alg' header values are: RS256, RS384, RS512, ES256, ES384, ES512, PS256, PS384, PS512.
 Values are defined by RFC 7518 https://tools.ietf.org/html/rfc7518#section-3.1.
 -->
 允许的 JOSE 非对称签名算法的逗号分隔列表。
-若 JWT 所带的 "alg" 标头值不在列表中，则该 JWT 将被拒绝。
+具有收支持 "alg" 标头值的 JWTs 有：RS256、RS384、RS512、ES256、ES384、ES512、PS256、PS384、PS512。
 取值依据 RFC 7518 https://tools.ietf.org/html/rfc7518#section-3.1 定义。
 </td>
 </tr>
@@ -1865,20 +1759,7 @@ If not provided, username claims other than 'email' are prefixed
 </tr>
 
 <tr>
-<td colspan="2">--one-output</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If true, only write logs to their native severity level (vs also writing to each lower severity level
--->
-此标志为真时，日志只会被写入到其原生的严重性级别中（而不是同时写到所有较低
-严重性级别中）。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--permit-address-sharing&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：false</td>
+<td colspan="2">--permit-address-sharing</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
@@ -1891,7 +1772,7 @@ If true, only write logs to their native severity level (vs also writing to each
 </tr>
 
 <tr>
-<td colspan="2">--permit-port-sharing&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：false</td>
+<td colspan="2">--permit-port-sharing</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
@@ -1966,7 +1847,7 @@ open before timing it out. This is the default request timeout for
 requests but may be overridden by flags such as --min-request-timeout 
 for specific types of requests.
 -->
-可选字段，指示处理程序在超时之前必须保持打开请求的持续时间。 
+可选字段，指示处理程序在超时之前必须保持打开请求的持续时间。
 这是请求的默认请求超时，但对于特定类型的请求，可能会被
 <code>--min-request-timeout</code>等标志覆盖。
 </td>
@@ -2102,7 +1983,7 @@ If this flag is enabled, admission injected tokens would be extended up to
 </tr>
 
 <tr>
-<td colspan="2">--service-account-issuer string</td>
+<td colspan="2">--service-account-issuer strings</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
@@ -2116,16 +1997,19 @@ comply with the OpenID spec: https://openid.net/specs/openid-connect-discovery-1
 In practice, this means that service-account-issuer must be an https URL. 
 It is also highly recommended that this URL be capable of serving OpenID 
 discovery documents at {service-account-issuer}/.well-known/openid-configuration.
+When this flag is specified multiple times, the first is used to generate tokens
+and all are used to determine which issuers are accepted.
 -->
 服务帐号令牌颁发者的标识符。
 颁发者将在已办法令牌的 "iss" 声明中检查此标识符。
 此值为字符串或 URI。
 如果根据 OpenID Discovery 1.0 规范检查此选项不是有效的 URI，则即使特性门控设置为 true，
-ServiceAccountIssuerDiscovery 功能也将保持禁用状态。 
-强烈建议该值符合 OpenID 规范：https://openid.net/specs/openid-connect-discovery-1_0.html。 
-实践中，这意味着 service-account-issuer 取值必须是 HTTPS URL。 
+ServiceAccountIssuerDiscovery 功能也将保持禁用状态。
+强烈建议该值符合 OpenID 规范： https://openid.net/specs/openid-connect-discovery-1_0.html 。
+实践中，这意味着 service-account-issuer 取值必须是 HTTPS URL。
 还强烈建议此 URL 能够在 {service-account-issuer}/.well-known/openid-configuration
 处提供 OpenID 发现文档。
+当此值被多次指定时，第一次的值用于生成令牌，所有的值用于确定接受哪些发行人。
 </td>
 </tr>
 
@@ -2138,13 +2022,11 @@ ServiceAccountIssuerDiscovery 功能也将保持禁用状态。
 Overrides the URI for the JSON Web Key Set in the discovery doc served at 
 /.well-known/openid-configuration. This flag is useful if the discovery 
 docand key set are served to relying parties from a URL other than the 
-API server's external (as auto-detected or overridden with external-hostname). 
-Only valid if the ServiceAccountIssuerDiscovery feature gate is enabled.
+API server's external (as auto-detected or overridden with external-hostname).
 -->
 覆盖 <code>/.well-known/openid-configuration</code> 提供的发现文档中 JSON Web 密钥集的 URI。
 如果发现文档和密钥集是通过 API 服务器外部
 （而非自动检测到或被外部主机名覆盖）之外的 URL 提供给依赖方的，则此标志很有用。
-仅在启用 ServiceAccountIssuerDiscovery 特性门控的情况下有效。
 </td>
 </tr>
 
@@ -2158,12 +2040,12 @@ File containing PEM-encoded x509 RSA or ECDSA private or public keys,
 used to verify ServiceAccount tokens. The specified file can contain 
 multiple keys, and the flag can be specified multiple times with 
 different files. If unspecified, --tls-private-key-file is used. 
-Must be specified when --service-account-signing-key is provided
+Must be specified when --service-account-signing-key-file is provided
 -->
 包含 PEM 编码的 x509 RSA 或 ECDSA 私钥或公钥的文件，用于验证 ServiceAccount 令牌。
 指定的文件可以包含多个键，并且可以使用不同的文件多次指定标志。
 如果未指定，则使用 <code>--tls-private-key-file</code>。
-提供 <code>--service-account-signing-key</code> 时必须指定。
+提供 <code>--service-account-signing-key-file</code> 时必须指定。
 </td>
 </tr>
 
@@ -2276,38 +2158,18 @@ This can be used to allow load balancer to stop sending traffic to this server.
 </tr>
 
 <tr>
-<td colspan="2">--skip-headers</td>
+<td colspan="2">--shutdown-send-retry-after</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-If true, avoid header prefixes in the log messages
+If true the HTTP Server will continue listening until all non long running request(s) in flight have been drained, 
+during this window all incoming requests will be rejected with a status code 429 and a 'Retry-After' response header, 
+in addition 'Connection: close' response header is set in order to tear down the TCP connection when idle.
 -->
-如果为 true，日志消息中避免标题前缀。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--skip-log-headers</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If true, avoid headers when opening log files
--->
-如果为 true，则在打开日志文件时避免标题。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--stderrthreshold int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：2</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-logs at or above this threshold go to stderr
--->
-将达到或超过此阈值的日志写到标准错误输出
+值为 true 表示 HTTP 服务器将继续监听直到耗尽所有非长时间运行的请求，
+在此期间，所有传入请求将被拒绝，状态码为 429，响应头为 &quot;Retry-After&quot;，
+此外，设置 &quot;Connection: close&quot; 响应头是为了在空闲时断开 TCP 链接。
 </td>
 </tr>
 
@@ -2347,11 +2209,10 @@ List of directives for HSTS, comma separated. If this list is empty, then HSTS d
 -->
 为 HSTS 所设置的指令列表，用逗号分隔。
 如果此列表为空，则不会添加 HSTS 指令。
-例如： 'max-age=31536000,includeSubDomains,preload'
+例如：'max-age=31536000,includeSubDomains,preload'
 </p></td>
 </tr>
 
-
 <tr>
 <td colspan="2">--tls-cert-file string</td>
 </tr>
@@ -2380,15 +2241,17 @@ the public address and saved to the directory specified by --cert-dir.
 Comma-separated list of cipher suites for the server. 
 If omitted, the default Go cipher suites will be used. 
 <br/>Preferred values:
-TLS_AES_128_GCM_SHA256, TLS_AES_256_GCM_SHA384, TLS_CHACHA20_POLY1305_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_GCM_SHA384.<br/>
+TLS_AES_128_GCM_SHA256, TLS_AES_256_GCM_SHA384, TLS_CHACHA20_POLY1305_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, 
+TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_GCM_SHA384.<br/>
 Insecure values: 
-TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_RC4_128_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_RC4_128_SHA.
+TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_RC4_128_SHA, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_RC4_128_SHA.
 -->
 服务器的密码套件的列表，以逗号分隔。如果省略，将使用默认的 Go 密码套件。
 <br/>首选值：
-TLS_AES_128_GCM_SHA256、TLS_AES_256_GCM_SHA384、TLS_CHACHA20_POLY1305_SHA256、TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA、TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256、TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA、TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384、TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305、TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256、TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA、TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA、TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256、TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA、TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384、TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305、TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256、TLS_RSA_WITH_3DES_EDE_CBC_SHA、TLS_RSA_WITH_AES_128_CBC_SHA、TLS_RSA_WITH_AES_128_GCM_SHA256、 TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_GCM_SHA384.
+TLS_AES_128_GCM_SHA256、TLS_AES_256_GCM_SHA384、TLS_CHACHA20_POLY1305_SHA256、TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA、
+TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256、TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA、TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384、TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305、TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256、TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA、TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256、TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA、TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384、TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305、TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256、TLS_RSA_WITH_AES_128_CBC_SHA、TLS_RSA_WITH_AES_128_GCM_SHA256、TLS_RSA_WITH_AES_256_CBC_SHA、TLS_RSA_WITH_AES_256_GCM_SHA384。
 不安全的值有：
-TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256、TLS_ECDHE_ECDSA_WITH_RC4_128_SHA、TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256、TLS_ECDHE_RSA_WITH_RC4_128_SHA、TLS_RSA_WITH_AES_128_CBC_SHA256、TLS_RSA_WITH_RC4_128_SHA。
+TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256、TLS_ECDHE_ECDSA_WITH_RC4_128_SHA、TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA、TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256、TLS_ECDHE_RSA_WITH_RC4_128_SHA、TLS_RSA_WITH_3DES_EDE_CBC_SHA、TLS_RSA_WITH_AES_128_CBC_SHA256、TLS_RSA_WITH_RC4_128_SHA。
 </td>
 </tr>
 
@@ -2417,7 +2280,7 @@ File containing the default x509 private key matching --tls-cert-file.
 </tr>
 
 <tr>
-<td colspan="2">--tls-sni-cert-key string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值： []</td>
+<td colspan="2">--tls-sni-cert-key string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：[]</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
@@ -2454,6 +2317,18 @@ If set, the file that will be used to secure the secure port of the API server v
 </td>
 </tr>
 
+<tr>
+<td colspan="2">--tracing-config-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+File with apiserver tracing configuration.
+-->
+包含 API 服务器跟踪配置的文件。
+</td>
+</tr>
+
 <tr>
 <td colspan="2">-v, --v int</td>
 </tr>
@@ -2479,14 +2354,15 @@ Print version information and quit
 </tr>
 
 <tr>
-<td colspan="2">--vmodule &lt;用逗号分隔的多个 'pattern=N' 配置字符串&gt;</td>
+<td colspan="2">--vmodule pattern=N,...</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
 comma-separated list of pattern=N settings for file-filtered logging
+(only works for text log format)
 -->
-以逗号分隔的 <code>pattern=N</code> 设置列表，用于文件过滤的日志记录。
+以逗号分隔的 <code>pattern=N</code> 设置列表，用于文件过滤的日志记录（仅适用于 text 日志格式）。
 </td>
 </tr>
 
@@ -2532,4 +2408,3 @@ heuristics, others default to default-watch-cache-size
 
 </tbody>
 </table>
-
diff --git a/content/zh/docs/reference/command-line-tools-reference/kube-controller-manager.md b/content/zh-cn/docs/reference/command-line-tools-reference/kube-controller-manager.md
similarity index 78%
rename from content/zh/docs/reference/command-line-tools-reference/kube-controller-manager.md
rename to content/zh-cn/docs/reference/command-line-tools-reference/kube-controller-manager.md
index 7cb8e9778d..4e761a8e22 100644
--- a/content/zh/docs/reference/command-line-tools-reference/kube-controller-manager.md
+++ b/content/zh-cn/docs/reference/command-line-tools-reference/kube-controller-manager.md
@@ -2,21 +2,8 @@
 title: kube-controller-manager
 content_type: tool-reference
 weight: 30
-auto_generated: true
 ---
 
-<!--
-The file is auto-generated from the Go source code of the component using a generic
-[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
-to generate the reference documentation, please read
-[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
-To update the reference conent, please follow the 
-[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
-guide. You can file document formatting bugs against the
-[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
--->
-
-
 ## {{% heading "synopsis" %}}
 
 <!--
@@ -48,18 +35,6 @@ kube-controller-manager [flags]
 </colgroup>
 <tbody>
 
-<tr>
-<td colspan="2">--add-dir-header</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If true, adds the file directory to the header of the log messages
--->
-若为 true，将文件目录添加到日志消息的头部。
-</td>
-</tr>
-
 <tr>
 <td colspan="2">--allocate-node-cidrs</td>
 </tr>
@@ -73,7 +48,7 @@ Should CIDRs for Pods be allocated and set on the cloud provider.
 </tr>
 
 <tr>
-<td colspan="2">--allow-metric-labels stringToString&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：""</td>
+<td colspan="2">--allow-metric-labels stringToString&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：[]</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
@@ -83,24 +58,12 @@ The map from metric-label to value allow-list of this label. The key's format is
 -->
 从度量值标签到准许值列表的映射。键名的格式为&lt;MetricName&gt;,&lt;LabelName&gt;。
 准许值的格式为&lt;allowed_value&gt;,&lt;allowed_value&gt;...。
-例如，<code>metric1,label1='v1,v2,v3', metric1,label2='v1,v2,v3'
+例如，<code>metric1,label1='v1,v2,v3', metric1,label2='v1,v2,v3',
 metric2,label='v1,v2,v3'</code>。
 </p>
 </td>
 </tr>
 
-<tr>
-<td colspan="2">--alsologtostderr</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-log to standard error as well as files
--->
-在向文件输出日志的同时，也将日志写到标准输出。
-</td>
-</tr>
-
 <tr>
 <td colspan="2">--attach-detach-reconcile-sync-period duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：1m0s</td>
 </tr>
@@ -110,7 +73,7 @@ log to standard error as well as files
 The reconciler sync wait time between volume attach detach. This duration must be larger than one second, and increasing this value from the default may allow for volumes to be mismatched with pods.
 -->
 协调器（reconciler）在相邻两次对存储卷进行挂载和解除挂载操作之间的等待时间。
-此时长必须长于 1 秒钟。此值设置为大于默认值时，可能导致存储卷无法与 Pods 匹配。
+此时长必须长于 1 秒钟。此值设置为大于默认值时，可能导致存储卷无法与 Pod 匹配。
 </td>
 </tr>
 
@@ -122,9 +85,9 @@ The reconciler sync wait time between volume attach detach. This duration must b
 <!--
 kubeconfig file pointing at the 'core' kubernetes server with enough rights to create tokenreviews.authentication.k8s.io. This is optional. If empty, all token requests are considered to be anonymous and no client CA is looked up in the cluster.
 -->
-此标志值为一个 kubeconfig 文件的路径名。该文件中包含与某 Kubernetes “核心” 
+此标志值为一个 kubeconfig 文件的路径名。该文件中包含与某 Kubernetes “核心”
 服务器相关的信息，并支持足够的权限以创建 tokenreviews.authentication.k8s.io。
-此选项是可选的。如果设置为空值，所有令牌请求都会被认作匿名请求，
+此选项是可选的。如果设置为空值，则所有令牌请求都会被认作匿名请求，
 Kubernetes 也不再在集群中查找客户端的 CA 证书信息。
 </td>
 </tr>
@@ -137,8 +100,8 @@ Kubernetes 也不再在集群中查找客户端的 CA 证书信息。
 <!--
 If false, the authentication-kubeconfig will be used to lookup missing authentication configuration from the cluster.
 -->
-此值为 false 时，通过 authentication-kubeconfig 参数所指定的文件会被用来
-检索集群中缺失的身份认证配置信息。
+此值为 false 时，通过 authentication-kubeconfig
+参数所指定的文件会被用来检索集群中缺失的身份认证配置信息。
 </td>
 </tr>
 
@@ -232,7 +195,7 @@ Path to the file containing Azure container registry configuration information.
 </tr>
 
 <tr>
-<td colspan="2">--bind-address ip&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：0.0.0.0</td>
+<td colspan="2">--bind-address string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：0.0.0.0</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
@@ -280,8 +243,8 @@ Type of CIDR allocator to use
 If set, any request presenting a client certificate signed by one of the authorities in the client-ca-file is authenticated with an identity corresponding to the CommonName of the client certificate.
 -->
 如果设置了此标志，对于所有能够提供客户端证书的请求，若该证书由
-<code>--client-ca-file</code> 中所给机构之一签署，则该请求会被
-成功认证为客户端证书中 CommonName 所标识的实体。
+<code>--client-ca-file</code> 中所给机构之一签署，
+则该请求会被成功认证为客户端证书中 CommonName 所标识的实体。
 </td>
 </tr>
 
@@ -317,7 +280,7 @@ The provider for cloud services. Empty string for no provider.
 <!--
 CIDR Range for Pods in cluster. Requires --allocate-node-cidrs to be true
 -->
-集群中 Pods 的 CIDR 范围。要求 <code>--allocate-node-cidrs</code> 标志为 true。
+集群中 Pod 的 CIDR 范围。要求 <code>--allocate-node-cidrs</code> 标志为 true。
 </td>
 </tr>
 
@@ -342,7 +305,7 @@ The instance prefix for the cluster.
 Filename containing a PEM-encoded X509 CA certificate used to issue cluster-scoped certificates.  If specified, no more specific --cluster-signing-* flag may be specified.
 -->
 包含 PEM 编码格式的 X509 CA 证书的文件名。该证书用来发放集群范围的证书。
-如果设置了此标志，则不能指定更具体的<code>--cluster-signing-*</code> 标志。
+如果设置了此标志，则不能指定更具体的 <code>--cluster-signing-*</code> 标志。
 </td>
 </tr>
 
@@ -352,9 +315,10 @@ Filename containing a PEM-encoded X509 CA certificate used to issue cluster-scop
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!-- 
-The length of duration signed certificates will be given. 
+The max length of duration signed certificates will be given.
+Individual CSRs may request shorter certs by setting spec.expirationSeconds.
 -->
-所签名证书的有效期限。
+所签名证书的有效期限。每个 CSR 可以通过设置 <code>spec.expirationSeconds</code> 来请求更短的证书。
 </td>
 </tr>
 
@@ -381,7 +345,7 @@ If specified, no more specific --cluster-signing-* flag may be specified.
 Filename containing a PEM-encoded X509 CA certificate used to issue certificates for the kubernetes.io/kube-apiserver-client signer.  If specified, --cluster-signing-{cert,key}-file must not be set.
 -->
 包含 PEM 编码的 X509 CA 证书的文件名，
-该证书用于为 kubernetes.io/kube-apiserver-client 签署者颁发证书。 
+该证书用于为 kubernetes.io/kube-apiserver-client 签署者颁发证书。
 如果指定，则不得设置 <code>--cluster-signing-{cert,key}-file</code>。
 </td>
 </tr>
@@ -395,7 +359,7 @@ Filename containing a PEM-encoded X509 CA certificate used to issue certificates
 Filename containing a PEM-encoded RSA or ECDSA private key used to sign certificates for the kubernetes.io/kube-apiserver-client signer.  If specified, --cluster-signing-{cert,key}-file must not be set.
 -->
 包含 PEM 编码的 RSA 或 ECDSA 私钥的文件名，
-该私钥用于为 kubernetes.io/kube-apiserver-client 签署者签名证书。 
+该私钥用于为 kubernetes.io/kube-apiserver-client 签署者签名证书。
 如果指定，则不得设置 <code>--cluster-signing-{cert,key}-file</code>。
 </td>
 </tr>
@@ -409,7 +373,7 @@ Filename containing a PEM-encoded RSA or ECDSA private key used to sign certific
 Filename containing a PEM-encoded X509 CA certificate used to issue certificates for the kubernetes.io/kube-apiserver-client-kubelet signer.  If specified, --cluster-signing-{cert,key}-file must not be set.
 -->
 包含 PEM 编码的 X509 CA 证书的文件名，
-该证书用于为 kubernetes.io/kube-apiserver-client-kubelet 签署者颁发证书。 
+该证书用于为 kubernetes.io/kube-apiserver-client-kubelet 签署者颁发证书。
 如果指定，则不得设置 <code>--cluster-signing-{cert,key}-file</code>。
 </td>
 </tr>
@@ -510,6 +474,19 @@ The number of endpoint syncing operations that will be done concurrently. Larger
 </td>
 </tr>
 
+<tr>
+<td colspan="2">--concurrent-ephemeralvolume-syncs int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：5</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The number of ephemeral volume syncing operations that will be done concurrently. Larger number = faster ephemeral volume updating, but more CPU (and network) load
+-->
+可以并发执行的 EphemeralVolume 同步操作个数。数值越大意味着更快的 EphemeralVolume 更新操作，
+同时也意味着更大的 CPU （和网络）压力。
+</td>
+</tr>
+
 <tr>
 <td colspan="2">--concurrent-gc-syncs int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：20</td>
 </tr>
@@ -675,32 +652,20 @@ Interval between starting controller managers.
 </tr>
 
 <tr>
-<td colspan="2">--controllers strings&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：<code>[*]</code></td>
+<td colspan="2">--controllers strings&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：<code>*</code></td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
 A list of controllers to enable. '*' enables all on-by-default controllers, 'foo' enables the controller named 'foo', '-foo' disables the controller named 'foo'.<br/>All controllers: attachdetach, bootstrapsigner, cloud-node-lifecycle, clusterrole-aggregation, cronjob, csrapproving, csrcleaner, csrsigning, daemonset, deployment, disruption, endpoint, endpointslice, endpointslicemirroring, ephemeral-volume, garbagecollector, horizontalpodautoscaling, job, namespace, nodeipam, nodelifecycle, persistentvolume-binder, persistentvolume-expander, podgc, pv-protection, pvc-protection, replicaset, replicationcontroller, resourcequota, root-ca-cert-publisher, route, service, serviceaccount, serviceaccount-token, statefulset, tokencleaner, ttl, ttl-after-finished<br/>Disabled-by-default controllers: bootstrapsigner, tokencleaner
 -->
-要启用的控制器列表。<code>\*</code> 表示启用所有默认启用的控制器；
+要启用的控制器列表。<code>*</code> 表示启用所有默认启用的控制器；
 <code>foo</code> 启用名为 foo 的控制器；
 <code>-foo</code> 表示禁用名为 foo 的控制器。<br/>
 控制器的全集：attachdetach、bootstrapsigner、cloud-node-lifecycle、clusterrole-aggregation、cronjob、csrapproving、csrcleaner、csrsigning、daemonset、deployment、disruption、endpoint、endpointslice、endpointslicemirroring、ephemeral-volume、garbagecollector、horizontalpodautoscaling、job、namespace、nodeipam、nodelifecycle、persistentvolume-binder、persistentvolume-expander、podgc、pv-protection、pvc-protection、replicaset、replicationcontroller、resourcequota、root-ca-cert-publisher、route、service、serviceaccount、serviceaccount-token、statefulset、tokencleaner、ttl、ttl-after-finished<br/>
 默认禁用的控制器有：bootstrapsigner 和 tokencleaner。</td>
 </tr>
 
-<tr>
-<td colspan="2">--deployment-controller-sync-period duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：30s</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Period for syncing the deployments.
--->
-Deployment 资源的同步周期。
-</td>
-</tr>
-
 <tr>
 <td colspan="2">--disable-attach-detach-reconcile-sync</td>
 </tr>
@@ -722,13 +687,11 @@ Disable volume attach detach reconciler sync. Disabling this may cause volumes t
 <!--
 This flag provides an escape hatch for misbehaving metrics. You must provide the fully qualified metric name in order to disable it. Disclaimer: disabling metrics is higher in precedence than showing hidden metrics.
 -->
-此标志提供对行为异常的度量值的防控措施。你必须提供度量值的
-完全限定名称才能将其禁用。<B>声明</B>：禁用度量值的操作比显示隐藏度量值
-的操作优先级高。
+此标志提供对行为异常的度量值的防控措施。你必须提供度量值的完全限定名称才能将其禁用。
+<B>声明</B>：禁用度量值的操作比显示隐藏度量值的操作优先级高。
 </p></td>
 </tr>
 
-
 <tr>
 <td colspan="2">--enable-dynamic-provisioning&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：true</td>
 </tr>
@@ -763,7 +726,7 @@ Enable HostPath PV provisioning when running without a cloud provider. This allo
 -->
 在没有云驱动程序的情况下，启用 HostPath 持久卷的制备。
 此参数便于对卷供应功能进行开发和测试。HostPath 卷的制备并非受支持的功能特性，
-在多节点的集群中也无法工作，因此除了开发和测试环境中不应使用。
+在多节点的集群中也无法工作，因此除了开发和测试环境中不应使用 HostPath 卷的制备。
 </td>
 </tr>
 
@@ -779,7 +742,6 @@ Whether to enable controller leader migration.
 </p></td>
 </tr>
 
-
 <tr>
 <td colspan="2">--enable-taint-manager&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：true</td>
 </tr>
@@ -788,8 +750,8 @@ Whether to enable controller leader migration.
 <!--
 WARNING: Beta feature. If set to true enables NoExecute Taints and will evict all not-tolerating Pod running on Nodes tainted with this kind of Taints.
 -->
-警告：此为Beta 阶段特性。设置为 true 时会启用 NoExecute 污点，
-并在所有标记了此污点的节点上逐出所有无法忍受该污点的 Pods。
+警告：此为 Beta 阶段特性。设置为 true 时会启用 NoExecute 污点，
+并在所有标记了此污点的节点上驱逐所有无法忍受该污点的 Pod。
 </td>
 </tr>
 
@@ -801,7 +763,7 @@ WARNING: Beta feature. If set to true enables NoExecute Taints and will evict al
 <!--
 The length of endpoint updates batching period. Processing of pod changes will be delayed by this duration to join them with potential upcoming updates and reduce the overall number of endpoints updates. Larger number = higher endpoint programming latency, but lower number of endpoints revision generated
 -->
-端点（Endpoint）批量更新周期时长。对 Pods 变更的处理会被延迟，
+端点（Endpoint）批量更新周期时长。对 Pod 变更的处理会被延迟，
 以便将其与即将到来的更新操作合并，从而减少端点更新操作次数。
 较大的数值意味着端点更新的迟滞时间会增长，也意味着所生成的端点版本个数会变少。
 </td>
@@ -815,25 +777,12 @@ The length of endpoint updates batching period. Processing of pod changes will b
 <!--
 The length of endpoint slice updates batching period. Processing of pod changes will be delayed by this duration to join them with potential upcoming updates and reduce the overall number of endpoints updates. Larger number = higher endpoint programming latency, but lower number of endpoints revision generated
 -->
-端点片段（Endpoint Slice）批量更新周期时长。对 Pods 变更的处理会被延迟，
+端点片段（Endpoint Slice）批量更新周期时长。对 Pod 变更的处理会被延迟，
 以便将其与即将到来的更新操作合并，从而减少端点更新操作次数。
 较大的数值意味着端点更新的迟滞时间会增长，也意味着所生成的端点版本个数会变少。
 </td>
 </tr>
 
-<tr>
-<td colspan="2">--experimental-logging-sanitization</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-[Experimental] When enabled prevents logging of fields tagged as sensitive (passwords, keys, tokens).<br/>Runtime log sanitization may introduce significant computation overhead and therefore should not be enabled in production.
--->
-[试验性功能] 当启用此标志时，被标记为敏感的字段（密码、密钥、令牌）不会被日志输出。<br/>
-运行时的日志清理操作可能会引入相当程度的计算开销，因此不应在生产环境中启用。
-</td>
-</tr>
-
 <tr>
 <td colspan="2">--external-cloud-volume-plugin string</td>
 </tr>
@@ -843,8 +792,8 @@ The length of endpoint slice updates batching period. Processing of pod changes
 The plugin to use when cloud provider is set to external. Can be empty, should only be set when cloud-provider is external. Currently used to allow node and volume controllers to work for in tree cloud providers.
 -->
 当云驱动程序设置为 external 时要使用的插件名称。此字符串可以为空。
-只能在云驱动程序为 external 时设置。目前用来保证节点控制器和卷控制器能够
-在三种云驱动上正常工作。
+只能在云驱动程序为 external 时设置。
+目前用来保证节点控制器和卷控制器能够在三种云驱动上正常工作。
 </td>
 </tr>
 
@@ -860,196 +809,204 @@ APIListChunking=true|false (BETA - default=true)<br/>
 APIPriorityAndFairness=true|false (BETA - default=true)<br/>
 APIResponseCompression=true|false (BETA - default=true)<br/>
 APIServerIdentity=true|false (ALPHA - default=false)<br/>
+APIServerTracing=true|false (ALPHA - default=false)<br/>
 AllAlpha=true|false (ALPHA - default=false)<br/>
 AllBeta=true|false (BETA - default=false)<br/>
-AnyVolumeDataSource=true|false (ALPHA - default=false)<br/>
+AnyVolumeDataSource=true|false (BETA - default=true)<br/>
 AppArmor=true|false (BETA - default=true)<br/>
-BalanceAttachedNodeVolumes=true|false (ALPHA - default=false)<br/>
-BoundServiceAccountTokenVolume=true|false (BETA - default=true)<br/>
 CPUManager=true|false (BETA - default=true)<br/>
+CPUManagerPolicyAlphaOptions=true|false (ALPHA - default=false)<br/>
+CPUManagerPolicyBetaOptions=true|false (BETA - default=true)<br/>
+CPUManagerPolicyOptions=true|false (BETA - default=true)<br/>
 CSIInlineVolume=true|false (BETA - default=true)<br/>
 CSIMigration=true|false (BETA - default=true)<br/>
-CSIMigrationAWS=true|false (BETA - default=false)<br/>
-CSIMigrationAzureDisk=true|false (BETA - default=false)<br/>
-CSIMigrationAzureFile=true|false (BETA - default=false)<br/>
-CSIMigrationGCE=true|false (BETA - default=false)<br/>
-CSIMigrationOpenStack=true|false (BETA - default=true)<br/>
+CSIMigrationAWS=true|false (BETA - default=true)<br/>
+CSIMigrationAzureFile=true|false (BETA - default=true)<br/>
+CSIMigrationGCE=true|false (BETA - default=true)<br/>
+CSIMigrationPortworx=true|false (ALPHA - default=false)<br/>
+CSIMigrationRBD=true|false (ALPHA - default=false)<br/>
 CSIMigrationvSphere=true|false (BETA - default=false)<br/>
-CSIMigrationvSphereComplete=true|false (BETA - default=false)<br/>
-CSIServiceAccountToken=true|false (BETA - default=true)<br/>
-CSIStorageCapacity=true|false (BETA - default=true)<br/>
-CSIVolumeFSGroupPolicy=true|false (BETA - default=true)<br/>
 CSIVolumeHealth=true|false (ALPHA - default=false)<br/>
-ConfigurableFSGroupPolicy=true|false (BETA - default=true)<br/>
-ControllerManagerLeaderMigration=true|false (ALPHA - default=false)<br/>
-CronJobControllerV2=true|false (BETA - default=true)<br/>
+ContextualLogging=true|false (ALPHA - default=false)<br/>
+CronJobTimeZone=true|false (ALPHA - default=false)<br/>
 CustomCPUCFSQuotaPeriod=true|false (ALPHA - default=false)<br/>
-DaemonSetUpdateSurge=true|false (ALPHA - default=false)<br/>
-DefaultPodTopologySpread=true|false (BETA - default=true)<br/>
+CustomResourceValidationExpressions=true|false (ALPHA - default=false)<br/>
+DaemonSetUpdateSurge=true|false (BETA - default=true)<br/>
+DelegateFSGroupToCSIDriver=true|false (BETA - default=true)<br/>
 DevicePlugins=true|false (BETA - default=true)<br/>
 DisableAcceleratorUsageMetrics=true|false (BETA - default=true)<br/>
-DownwardAPIHugePages=true|false (BETA - default=false)<br/>
-DynamicKubeletConfig=true|false (BETA - default=true)<br/>
-EfficientWatchResumption=true|false (BETA - default=true)<br/>
-EndpointSliceProxying=true|false (BETA - default=true)<br/>
-EndpointSliceTerminatingCondition=true|false (ALPHA - default=false)<br/>
-EphemeralContainers=true|false (ALPHA - default=false)<br/>
-ExpandCSIVolumes=true|false (BETA - default=true)<br/>
-ExpandInUsePersistentVolumes=true|false (BETA - default=true)<br/>
-ExpandPersistentVolumes=true|false (BETA - default=true)<br/>
+DisableCloudProviders=true|false (ALPHA - default=false)<br/>
+DisableKubeletCloudCredentialProviders=true|false (ALPHA - default=false)<br/>
+DownwardAPIHugePages=true|false (BETA - default=true)<br/>
+EndpointSliceTerminatingCondition=true|false (BETA - default=true)<br/>
+EphemeralContainers=true|false (BETA - default=true)<br/>
+ExpandedDNSConfig=true|false (ALPHA - default=false)<br/>
 ExperimentalHostUserNamespaceDefaulting=true|false (BETA - default=false)<br/>
-GenericEphemeralVolume=true|false (BETA - default=true)<br/>
+GRPCContainerProbe=true|false (BETA - default=true)<br/>
 GracefulNodeShutdown=true|false (BETA - default=true)<br/>
+GracefulNodeShutdownBasedOnPodPriority=true|false (BETA - default=true)<br/>
 HPAContainerMetrics=true|false (ALPHA - default=false)<br/>
 HPAScaleToZero=true|false (ALPHA - default=false)<br/>
-HugePageStorageMediumSize=true|false (BETA - default=true)<br/>
-IPv6DualStack=true|false (BETA - default=true)<br/>
+HonorPVReclaimPolicy=true|false (ALPHA - default=false)<br/>
+IdentifyPodOS=true|false (BETA - default=true)<br/>
 InTreePluginAWSUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginAzureDiskUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginAzureFileUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginGCEUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginOpenStackUnregister=true|false (ALPHA - default=false)<br/>
+InTreePluginPortworxUnregister=true|false (ALPHA - default=false)<br/>
+InTreePluginRBDUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginvSphereUnregister=true|false (ALPHA - default=false)<br/>
-IndexedJob=true|false (ALPHA - default=false)<br/>
-IngressClassNamespacedParams=true|false (ALPHA - default=false)<br/>
-KubeletCredentialProviders=true|false (ALPHA - default=false)<br/>
+JobMutableNodeSchedulingDirectives=true|false (BETA - default=true)<br/>
+JobReadyPods=true|false (BETA - default=true)<br/>
+JobTrackingWithFinalizers=true|false (BETA - default=false)<br/>
+KubeletCredentialProviders=true|false (BETA - default=true)<br/>
+KubeletInUserNamespace=true|false (ALPHA - default=false)<br/>
 KubeletPodResources=true|false (BETA - default=true)<br/>
-KubeletPodResourcesGetAllocatable=true|false (ALPHA - default=false)<br/>
+KubeletPodResourcesGetAllocatable=true|false (BETA - default=true)<br/>
+LegacyServiceAccountTokenNoAutoGeneration=true|false (BETA - default=true)<br/>
 LocalStorageCapacityIsolation=true|false (BETA - default=true)<br/>
 LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - default=false)<br/>
-LogarithmicScaleDown=true|false (ALPHA - default=false)<br/>
-MemoryManager=true|false (ALPHA - default=false)<br/>
-MixedProtocolLBService=true|false (ALPHA - default=false)<br/>
-NamespaceDefaultLabelName=true|false (BETA - default=true)<br/>
-NetworkPolicyEndPort=true|false (ALPHA - default=false)<br/>
-NonPreemptingPriority=true|false (BETA - default=true)<br/>
-PodAffinityNamespaceSelector=true|false (ALPHA - default=false)<br/>
-PodDeletionCost=true|false (ALPHA - default=false)<br/>
-PodOverhead=true|false (BETA - default=true)<br/>
-PreferNominatedNode=true|false (ALPHA - default=false)<br/>
-ProbeTerminationGracePeriod=true|false (ALPHA - default=false)<br/>
+LogarithmicScaleDown=true|false (BETA - default=true)<br/>
+MaxUnavailableStatefulSet=true|false (ALPHA - default=false)<br/>
+MemoryManager=true|false (BETA - default=true)<br/>
+MemoryQoS=true|false (ALPHA - default=false)<br/>
+MinDomainsInPodTopologySpread=true|false (ALPHA - default=false)<br/>
+MixedProtocolLBService=true|false (BETA - default=true)<br/>
+NetworkPolicyEndPort=true|false (BETA - default=true)<br/>
+NetworkPolicyStatus=true|false (ALPHA - default=false)<br/>
+NodeOutOfServiceVolumeDetach=true|false (ALPHA - default=false)<br/>
+NodeSwap=true|false (ALPHA - default=false)<br/>
+OpenAPIEnums=true|false (BETA - default=true)<br/>
+OpenAPIV3=true|false (BETA - default=true)<br/>
+PodAndContainerStatsFromCRI=true|false (ALPHA - default=false)<br/>
+PodDeletionCost=true|false (BETA - default=true)<br/>
+PodSecurity=true|false (BETA - default=true)<br/>
+ProbeTerminationGracePeriod=true|false (BETA - default=false)<br/>
 ProcMountType=true|false (ALPHA - default=false)<br/>
+ProxyTerminatingEndpoints=true|false (ALPHA - default=false)<br/>
 QOSReserved=true|false (ALPHA - default=false)<br/>
+ReadWriteOncePod=true|false (ALPHA - default=false)<br/>
+RecoverVolumeExpansionFailure=true|false (ALPHA - default=false)<br/>
 RemainingItemCount=true|false (BETA - default=true)<br/>
-RemoveSelfLink=true|false (BETA - default=true)<br/>
 RotateKubeletServerCertificate=true|false (BETA - default=true)<br/>
-ServerSideApply=true|false (BETA - default=true)<br/>
-ServiceInternalTrafficPolicy=true|false (ALPHA - default=false)<br/>
-ServiceLBNodePortControl=true|false (ALPHA - default=false)<br/>
-ServiceLoadBalancerClass=true|false (ALPHA - default=false)<br/>
-ServiceTopology=true|false (ALPHA - default=false)<br/>
-SetHostnameAsFQDN=true|false (BETA - default=true)<br/>
-SizeMemoryBackedVolumes=true|false (ALPHA - default=false)<br/>
+SeccompDefault=true|false (ALPHA - default=false)<br/>
+ServerSideFieldValidation=true|false (ALPHA - default=false)<br/>
+ServiceIPStaticSubrange=true|false (ALPHA - default=false)<br/>
+ServiceInternalTrafficPolicy=true|false (BETA - default=true)<br/>
+SizeMemoryBackedVolumes=true|false (BETA - default=true)<br/>
+StatefulSetAutoDeletePVC=true|false (ALPHA - default=false)<br/>
+StatefulSetMinReadySeconds=true|false (BETA - default=true)<br/>
 StorageVersionAPI=true|false (ALPHA - default=false)<br/>
 StorageVersionHash=true|false (BETA - default=true)<br/>
-SuspendJob=true|false (ALPHA - default=false)<br/>
-TTLAfterFinished=true|false (BETA - default=true)<br/>
-TopologyAwareHints=true|false (ALPHA - default=false)<br/>
+TopologyAwareHints=true|false (BETA - default=true)<br/>
 TopologyManager=true|false (BETA - default=true)<br/>
-ValidateProxyRedirects=true|false (BETA - default=true)<br/>
 VolumeCapacityPriority=true|false (ALPHA - default=false)<br/>
-WarningHeaders=true|false (BETA - default=true)<br/>
 WinDSR=true|false (ALPHA - default=false)<br/>
 WinOverlay=true|false (BETA - default=true)<br/>
-WindowsEndpointSliceProxying=true|false (BETA - default=true)
+WindowsHostProcessContainers=true|false (BETA - default=true)
 -->
-一组 key=value 对，用来描述测试性/试验性功能的特性门控（Feature Gate）。可选项有：
+一组 key=value 对，用来描述测试性/试验性功能的特性门控（Feature Gate）。可选项有：<br/>
 APIListChunking=true|false (BETA - 默认值=true)<br/>
 APIPriorityAndFairness=true|false (BETA - 默认值=true)<br/>
 APIResponseCompression=true|false (BETA - 默认值=true)<br/>
 APIServerIdentity=true|false (ALPHA - 默认值=false)<br/>
+APIServerTracing=true|false (ALPHA - 默认值=false)<br/>
 AllAlpha=true|false (ALPHA - 默认值=false)<br/>
 AllBeta=true|false (BETA - 默认值=false)<br/>
-AnyVolumeDataSource=true|false (ALPHA - 默认值=false)<br/>
+AnyVolumeDataSource=true|false (BETA - 默认值=true)<br/>
 AppArmor=true|false (BETA - 默认值=true)<br/>
-BalanceAttachedNodeVolumes=true|false (ALPHA - 默认值=false)<br/>
-BoundServiceAccountTokenVolume=true|false (BETA - 默认值=true)<br/>
 CPUManager=true|false (BETA - 默认值=true)<br/>
+CPUManagerPolicyAlphaOptions=true|false (ALPHA - 默认值=false)<br/>
+CPUManagerPolicyBetaOptions=true|false (BETA - 默认值=true)<br/>
+CPUManagerPolicyOptions=true|false (BETA - 默认值=true)<br/>
 CSIInlineVolume=true|false (BETA - 默认值=true)<br/>
 CSIMigration=true|false (BETA - 默认值=true)<br/>
-CSIMigrationAWS=true|false (BETA - 默认值=false)<br/>
-CSIMigrationAzureDisk=true|false (BETA - 默认值=false)<br/>
-CSIMigrationAzureFile=true|false (BETA - 默认值=false)<br/>
-CSIMigrationGCE=true|false (BETA - 默认值=false)<br/>
-CSIMigrationOpenStack=true|false (BETA - 默认值=true)<br/>
+CSIMigrationAWS=true|false (BETA - 默认值=true)<br/>
+CSIMigrationAzureFile=true|false (BETA - 默认值=true)<br/>
+CSIMigrationGCE=true|false (BETA - 默认值=true)<br/>
+CSIMigrationPortworx=true|false (ALPHA - 默认值=false)<br/>
+CSIMigrationRBD=true|false (ALPHA - 默认值=false)<br/>
 CSIMigrationvSphere=true|false (BETA - 默认值=false)<br/>
-CSIMigrationvSphereComplete=true|false (BETA - 默认值=false)<br/>
-CSIServiceAccountToken=true|false (BETA - 默认值=true)<br/>
-CSIStorageCapacity=true|false (BETA - 默认值=true)<br/>
-CSIVolumeFSGroupPolicy=true|false (BETA - 默认值=true)<br/>
 CSIVolumeHealth=true|false (ALPHA - 默认值=false)<br/>
-ConfigurableFSGroupPolicy=true|false (BETA - 默认值=true)<br/>
-ControllerManagerLeaderMigration=true|false (ALPHA - 默认值=false)<br/>
-CronJobControllerV2=true|false (BETA - 默认值=true)<br/>
+ContextualLogging=true|false (ALPHA - 默认值=false)<br/>
+CronJobTimeZone=true|false (ALPHA - 默认值=false)<br/>
 CustomCPUCFSQuotaPeriod=true|false (ALPHA - 默认值=false)<br/>
-DaemonSetUpdateSurge=true|false (ALPHA - 默认值=false)<br/>
-DefaultPodTopologySpread=true|false (BETA - 默认值=true)<br/>
+CustomResourceValidationExpressions=true|false (ALPHA - 默认值=false)<br/>
+DaemonSetUpdateSurge=true|false (BETA - 默认值=true)<br/>
+DelegateFSGroupToCSIDriver=true|false (BETA - 默认值=true)<br/>
 DevicePlugins=true|false (BETA - 默认值=true)<br/>
 DisableAcceleratorUsageMetrics=true|false (BETA - 默认值=true)<br/>
-DownwardAPIHugePages=true|false (BETA - 默认值=false)<br/>
-DynamicKubeletConfig=true|false (BETA - 默认值=true)<br/>
-EfficientWatchResumption=true|false (BETA - 默认值=true)<br/>
-EndpointSliceProxying=true|false (BETA - 默认值=true)<br/>
-EndpointSliceTerminatingCondition=true|false (ALPHA - 默认值=false)<br/>
-EphemeralContainers=true|false (ALPHA - 默认值=false)<br/>
-ExpandCSIVolumes=true|false (BETA - 默认值=true)<br/>
-ExpandInUsePersistentVolumes=true|false (BETA - 默认值=true)<br/>
-ExpandPersistentVolumes=true|false (BETA - 默认值=true)<br/>
+DisableCloudProviders=true|false (ALPHA - 默认值=false)<br/>
+DisableKubeletCloudCredentialProviders=true|false (ALPHA - 默认值=false)<br/>
+DownwardAPIHugePages=true|false (BETA - 默认值=true)<br/>
+EndpointSliceTerminatingCondition=true|false (BETA - 默认值=true)<br/>
+EphemeralContainers=true|false (BETA - 默认值=true)<br/>
+ExpandedDNSConfig=true|false (ALPHA - 默认值=false)<br/>
 ExperimentalHostUserNamespaceDefaulting=true|false (BETA - 默认值=false)<br/>
-GenericEphemeralVolume=true|false (BETA - 默认值=true)<br/>
+GRPCContainerProbe=true|false (BETA - 默认值=true)<br/>
 GracefulNodeShutdown=true|false (BETA - 默认值=true)<br/>
+GracefulNodeShutdownBasedOnPodPriority=true|false (BETA - 默认值=true)<br/>
 HPAContainerMetrics=true|false (ALPHA - 默认值=false)<br/>
 HPAScaleToZero=true|false (ALPHA - 默认值=false)<br/>
-HugePageStorageMediumSize=true|false (BETA - 默认值=true)<br/>
-IPv6DualStack=true|false (BETA - 默认值=true)<br/>
+HonorPVReclaimPolicy=true|false (ALPHA - 默认值=false)<br/>
+IdentifyPodOS=true|false (BETA - 默认值=true)<br/>
 InTreePluginAWSUnregister=true|false (ALPHA - 默认值=false)<br/>
 InTreePluginAzureDiskUnregister=true|false (ALPHA - 默认值=false)<br/>
 InTreePluginAzureFileUnregister=true|false (ALPHA - 默认值=false)<br/>
 InTreePluginGCEUnregister=true|false (ALPHA - 默认值=false)<br/>
 InTreePluginOpenStackUnregister=true|false (ALPHA - 默认值=false)<br/>
+InTreePluginPortworxUnregister=true|false (ALPHA - 默认值=false)<br/>
+InTreePluginRBDUnregister=true|false (ALPHA - 默认值=false)<br/>
 InTreePluginvSphereUnregister=true|false (ALPHA - 默认值=false)<br/>
-IndexedJob=true|false (ALPHA - 默认值=false)<br/>
-IngressClassNamespacedParams=true|false (ALPHA - 默认值=false)<br/>
-KubeletCredentialProviders=true|false (ALPHA - 默认值=false)<br/>
+JobMutableNodeSchedulingDirectives=true|false (BETA - 默认值=true)<br/>
+JobReadyPods=true|false (BETA - 默认值=true)<br/>
+JobTrackingWithFinalizers=true|false (BETA - 默认值=false)<br/>
+KubeletCredentialProviders=true|false (BETA - 默认值=true)<br/>
+KubeletInUserNamespace=true|false (ALPHA - 默认值=false)<br/>
 KubeletPodResources=true|false (BETA - 默认值=true)<br/>
-KubeletPodResourcesGetAllocatable=true|false (ALPHA - 默认值=false)<br/>
+KubeletPodResourcesGetAllocatable=true|false (BETA - 默认值=true)<br/>
+LegacyServiceAccountTokenNoAutoGeneration=true|false (BETA - 默认值=true)<br/>
 LocalStorageCapacityIsolation=true|false (BETA - 默认值=true)<br/>
 LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - 默认值=false)<br/>
-LogarithmicScaleDown=true|false (ALPHA - 默认值=false)<br/>
-MemoryManager=true|false (ALPHA - 默认值=false)<br/>
-MixedProtocolLBService=true|false (ALPHA - 默认值=false)<br/>
-NamespaceDefaultLabelName=true|false (BETA - 默认值=true)<br/>
-NetworkPolicyEndPort=true|false (ALPHA - 默认值=false)<br/>
-NonPreemptingPriority=true|false (BETA - 默认值=true)<br/>
-PodAffinityNamespaceSelector=true|false (ALPHA - 默认值=false)<br/>
-PodDeletionCost=true|false (ALPHA - 默认值=false)<br/>
-PodOverhead=true|false (BETA - 默认值=true)<br/>
-PreferNominatedNode=true|false (ALPHA - 默认值=false)<br/>
-ProbeTerminationGracePeriod=true|false (ALPHA - 默认值=false)<br/>
+LogarithmicScaleDown=true|false (BETA - 默认值=true)<br/>
+MaxUnavailableStatefulSet=true|false (ALPHA - 默认值=false)<br/>
+MemoryManager=true|false (BETA - 默认值=true)<br/>
+MemoryQoS=true|false (ALPHA - 默认值=false)<br/>
+MinDomainsInPodTopologySpread=true|false (ALPHA - 默认值=false)<br/>
+MixedProtocolLBService=true|false (BETA - 默认值=true)<br/>
+NetworkPolicyEndPort=true|false (BETA - 默认值=true)<br/>
+NetworkPolicyStatus=true|false (ALPHA - 默认值=false)<br/>
+NodeOutOfServiceVolumeDetach=true|false (ALPHA - 默认值=false)<br/>
+NodeSwap=true|false (ALPHA - 默认值=false)<br/>
+OpenAPIEnums=true|false (BETA - 默认值=true)<br/>
+OpenAPIV3=true|false (BETA - 默认值=true)<br/>
+PodAndContainerStatsFromCRI=true|false (ALPHA - 默认值=false)<br/>
+PodDeletionCost=true|false (BETA - 默认值=true)<br/>
+PodSecurity=true|false (BETA - 默认值=true)<br/>
+ProbeTerminationGracePeriod=true|false (BETA - 默认值=false)<br/>
 ProcMountType=true|false (ALPHA - 默认值=false)<br/>
+ProxyTerminatingEndpoints=true|false (ALPHA - 默认值=false)<br/>
 QOSReserved=true|false (ALPHA - 默认值=false)<br/>
+ReadWriteOncePod=true|false (ALPHA - 默认值=false)<br/>
+RecoverVolumeExpansionFailure=true|false (ALPHA - 默认值=false)<br/>
 RemainingItemCount=true|false (BETA - 默认值=true)<br/>
-RemoveSelfLink=true|false (BETA - 默认值=true)<br/>
 RotateKubeletServerCertificate=true|false (BETA - 默认值=true)<br/>
-ServerSideApply=true|false (BETA - 默认值=true)<br/>
-ServiceInternalTrafficPolicy=true|false (ALPHA - 默认值=false)<br/>
-ServiceLBNodePortControl=true|false (ALPHA - 默认值=false)<br/>
-ServiceLoadBalancerClass=true|false (ALPHA - 默认值=false)<br/>
-ServiceTopology=true|false (ALPHA - 默认值=false)<br/>
-SetHostnameAsFQDN=true|false (BETA - 默认值=true)<br/>
-SizeMemoryBackedVolumes=true|false (ALPHA - 默认值=false)<br/>
+SeccompDefault=true|false (ALPHA - 默认值=false)<br/>
+ServerSideFieldValidation=true|false (ALPHA - 默认值=false)<br/>
+ServiceIPStaticSubrange=true|false (ALPHA - 默认值=false)<br/>
+ServiceInternalTrafficPolicy=true|false (BETA - 默认值=true)<br/>
+SizeMemoryBackedVolumes=true|false (BETA - 默认值=true)<br/>
+StatefulSetAutoDeletePVC=true|false (ALPHA - 默认值=false)<br/>
+StatefulSetMinReadySeconds=true|false (BETA - 默认值=true)<br/>
 StorageVersionAPI=true|false (ALPHA - 默认值=false)<br/>
 StorageVersionHash=true|false (BETA - 默认值=true)<br/>
-SuspendJob=true|false (ALPHA - 默认值=false)<br/>
-TTLAfterFinished=true|false (BETA - 默认值=true)<br/>
-TopologyAwareHints=true|false (ALPHA - 默认值=false)<br/>
+TopologyAwareHints=true|false (BETA - 默认值=true)<br/>
 TopologyManager=true|false (BETA - 默认值=true)<br/>
-ValidateProxyRedirects=true|false (BETA - 默认值=true)<br/>
 VolumeCapacityPriority=true|false (ALPHA - 默认值=false)<br/>
-WarningHeaders=true|false (BETA - 默认值=true)<br/>
 WinDSR=true|false (ALPHA - 默认值=false)<br/>
 WinOverlay=true|false (BETA - 默认值=true)<br/>
-WindowsEndpointSliceProxying=true|false (BETA - 默认值=true)
+WindowsHostProcessContainers=true|false (BETA - 默认值=true)
 </p>
 </td>
 </tr>
@@ -1098,8 +1055,8 @@ Pod 启动之后可以忽略 CPU 采样值的时长。
 <!--
 The period for which autoscaler will look backwards and not scale down below any recommendation it made during that period.
 -->
-自动扩缩程序的回溯时长。自动扩缩器不会基于在给定的时长内所建议的规模
-对负载执行规模缩小的操作。
+自动扩缩程序的回溯时长。
+自动扩缩程序不会基于在给定的时长内所建议的规模对负载执行缩容操作。
 </td>
 </tr>
 
@@ -1123,7 +1080,7 @@ Pod 启动之后，在此值所给定的时长内，就绪状态的变化都不
 <!--
 The period for syncing the number of pods in horizontal pod autoscaler.
 -->
-水平 Pod 扩缩器对 Pods 数目执行同步操作的周期。
+水平 Pod 扩缩器对 Pod 数目执行同步操作的周期。
 </td>
 </tr>
 
@@ -1178,7 +1135,7 @@ Content type of requests sent to apiserver.
 </tr>
 
 <tr>
-<td colspan="2">--kube-api-qps float32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：20</td>
+<td colspan="2">--kube-api-qps float&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：20</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
@@ -1209,8 +1166,9 @@ Path to kubeconfig file with authorization and master location information.
 <!--
 Number of nodes from which NodeController treats the cluster as large for the eviction logic purposes. --secondary-node-eviction-rate is implicitly overridden to 0 for clusters this size or smaller.
 -->
-节点控制器在执行 Pod 逐出操作逻辑时，基于此标志所设置的节点个数阈值来判断
-所在集群是否为大规模集群。当集群规模小于等于此规模时，
+节点控制器在执行 Pod 驱逐操作逻辑时，
+基于此标志所设置的节点个数阈值来判断所在集群是否为大规模集群。
+当集群规模小于等于此规模时，
 <code>--secondary-node-eviction-rate</code> 会被隐式重设为 0。
 </td>
 </tr>
@@ -1236,10 +1194,11 @@ Start a leader election client and gain leadership before executing the main loo
 <!--
 The duration that non-leader candidates will wait after observing a leadership renewal until attempting to acquire leadership of a led but unrenewed leader slot. This is effectively the maximum duration that a leader can be stopped before it is replaced by another candidate. This is only applicable if leader election is enabled.
 -->
-对于未获得领导者身份的节点，在探测到领导者身份需要更迭时需要等待
-此标志所设置的时长，才能尝试去获得曾经是领导者但尚未续约的席位。
-本质上，这个时长也是现有领导者节点在被其他候选节点替代之前可以停止
-的最长时长。只有集群启用了领导者选举机制时，此标志才起作用。
+对于未获得领导者身份的节点，
+在探测到领导者身份需要更迭时需要等待此标志所设置的时长，
+才能尝试去获得曾经是领导者但尚未续约的席位。本质上，
+这个时长也是现有领导者节点在被其他候选节点替代之前可以停止的最长时长。
+只有集群启用了领导者选举机制时，此标志才起作用。
 </td>
 </tr>
 
@@ -1264,10 +1223,10 @@ The interval between attempts by the acting master to renew a leadership slot be
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The type of resource object that is used for locking during leader election. Supported options are 'endpoints', 'configmaps', 'leases', 'endpointsleases' and 'configmapsleases'.
+The type of resource object that is used for locking during leader election. Supported options are 'leases', 'endpointsleases' and 'configmapsleases'.
 -->
-在领导者选举期间用于锁定的资源对象的类型。 支持的选项为 "endpoints"、
-"configmaps"、"leases"、"endpointsleases" 和 "configmapsleases"。
+在领导者选举期间用于锁定的资源对象的类型。 支持的选项为
+<code>leases</code>、<code>endpointsleases</code> 和 <code>configmapsleases</code>。
 </td>
 </tr>
 
@@ -1323,56 +1282,6 @@ Path to the config file for controller leader migration, or empty to use the val
 </p></td>
 </tr>
 
-
-<tr>
-<td colspan="2">--log-backtrace-at traceLocation&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：<code>:0</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-when logging hits line file:N, emit a stack trace
--->
-当执行到 <code>file:N</code> 所给的文件和代码行时，日志机制会生成一个调用栈快照。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--log-dir string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If non-empty, write log files in this directory.
--->
-此标志为非空字符串时，日志文件会写入到所给的目录中。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--log-file string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If non-empty, use this log file
--->
-此标志为非空字符串时，意味着日志会写入到所给的文件中。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--log-file-max-size uint&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：1800</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Defines the maximum size a log file can grow to. Unit is megabytes. If the value is 0, the maximum file size is unlimited.
--->
-定义日志文件大小的上限。单位是兆字节（MB）。
-若此值为 0，则不对日志文件尺寸进行约束。
-</td>
-</tr>
-
 <tr>
 <td colspan="2">--log-flush-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：5s</td>
 </tr>
@@ -1391,31 +1300,19 @@ Maximum number of seconds between log flushes
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Sets the log format. Permitted formats: "json", "text".<br/>Non-default formats don't honor these flags: --add_dir_header, --alsologtostderr, --log_backtrace_at, --log_dir, --log_file, --log_file_max_size, --logtostderr, --one_output, --skip_headers, --skip_log_headers, --stderrthreshold, --vmodule, --log-flush-frequency.<br/>Non-default choices are currently alpha and subject to change without warning.
+Sets the log format. Permitted formats: &quot;text&quot;.<br/>Non-default formats don't honor these flags: --add-dir-header, --alsologtostderr, --log-backtrace-at, --log-dir, --log-file, --log-file-max-size, --logtostderr, --one-output, --skip-headers, --skip-log-headers, --stderrthreshold, --vmodule.<br/>Non-default choices are currently alpha and subject to change without warning.
 -->
-设置日志格式。允许的格式："text"，"json"。
+设置日志格式。允许的格式：&quot;text&quot;。
 <br/>非默认格式不支持以下标志：<code>--add-dir-header</code>、
-<code>--alsologtostderr</code>》、<code>--log-backtrace-at</code>、
+<code>--alsologtostderr</code>、<code>--log-backtrace-at</code>、
 <code>--log-dir</code>、<code>--log-file</code>、<code>--log-file-max-size</code>、
 <code>--logtostderr</code>、<code>--one-output</code>、<code>--skip-headers</code>、
 <code>--skip-log-headers</code>、<code>--stderrthreshold</code>、
-<code>--vmodule</code>、<code>--log-flush-frequency</code>。
+<code>--vmodule</code>。
 <br/>当前非默认选项为 Alpha 阶段，如有更改，恕不另行通知。
 </td>
 </tr>
 
-<tr>
-<td colspan="2">--logtostderr&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：true</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-log to standard error instead of files
--->
-将日志写出到标准错误输出（stderr）而不是写入到日志文件。
-</td>
-</tr>
-
 <tr>
 <td colspan="2">--master string</td>
 </tr>
@@ -1489,10 +1386,10 @@ EndpointSlice 更改的处理将延迟此持续时间，
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The maximum number of endpoints that will be added to an EndpointSlice by the EndpointSliceMirroring controller. More endpoints per slice will result in less endpoint slices, but larger resources.
+The maximum number of endpoints that will be added to an EndpointSlice by the EndpointSliceMirroring controller. More endpoints per slice will result in less endpoint slices, but larger resources. Defaults to 100.
 -->
 EndpointSliceMirroring 控制器将添加到 EndpointSlice 的最大端点数。
-每个分片的端点越多，端点分片越少，但资源越大。
+每个分片的端点越多，端点分片越少，但资源越大。默认为 100。
 </td>
 </tr>
 
@@ -1545,17 +1442,17 @@ Mask size for IPv6 node cidr in dual-stack cluster. Default is 64.
 </tr>
 
 <tr>
-<td colspan="2">--node-eviction-rate float32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：0.1</td>
+<td colspan="2">--node-eviction-rate float&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：0.1</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
 Number of nodes per second on which pods are deleted in case of node failure when a zone is healthy (see --unhealthy-zone-threshold for definition of healthy/unhealthy). Zone refers to entire cluster in non-multizone clusters.
 -->
-当某区域变得不健康，节点失效时，每秒钟可以从此标志所设定的节点
-个数上删除 Pods。请参阅 <code>--unhealthy-zone-threshold</code> 
-以了解“健康”的判定标准。这里的区域（zone）在集群并不跨多个区域时
-指的是整个集群。
+当某区域健康时，在节点故障的情况下每秒删除 Pods 的节点数。
+请参阅 <code>--unhealthy-zone-threshold</code>
+以了解“健康”的判定标准。
+这里的区域（zone）在集群并不跨多个区域时指的是整个集群。
 </td>
 </tr>
 
@@ -1598,29 +1495,17 @@ Amount of time which we allow starting Node to be unresponsive before marking it
 </td>
 </tr>
 
-<tr>
-<td colspan="2">--one-output</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If true, only write logs to their native severity level (vs also writing to each lower severity level
--->
-如果此标志为 true，则仅将日志写入其自身的严重性级别（而不是同时写入更低的严重性级别中）。
-</td>
-</tr>
-
 <tr>
 <td colspan="2">--permit-address-sharing</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
 <!--
-If true, SO_REUSEADDR will be used when binding the port. This allows binding to wildcard IPs like 0.0.0.0 and specific IPs in parallel, and it avoids waiting for the kernel to release sockets in TIME_WAIT state.
+If true, SO_REUSEADDR will be used when binding the port. This allows binding to wildcard IPs like 0.0.0.0 and specific IPs in parallel, and it avoids waiting for the kernel to release sockets in TIME_WAIT state. [default=false]
 -->
 如果此标志为 true，则在绑定端口时使用 <code>SO_REUSEADDR</code>。
 这就意味着可以同时绑定到 <code>0.0.0.0</code> 和特定的 IP 地址，
-并且避免等待内核释放处于 <code>TIME_WAITE</code> 状态的套接字。
+并且避免等待内核释放处于 <code>TIME_WAITE</code> 状态的套接字。[默认值=false]。
 </p></td>
 </tr>
 
@@ -1634,7 +1519,7 @@ If true, SO_REUSEADDR will be used when binding the port. This allows binding to
 If true, SO_REUSEPORT will be used when binding the port, which allows more than one instance to bind on the same address and port. [default=false]
 -->
 如果为 true，则在绑定端口时将使用 <code>SO_REUSEPORT</code>，
-这允许多个实例在同一地址和端口上进行绑定。
+这允许多个实例在同一地址和端口上进行绑定。[默认值=false]。
 </td>
 </tr>
 
@@ -1646,7 +1531,7 @@ If true, SO_REUSEPORT will be used when binding the port, which allows more than
 <!--
 The grace period for deleting pods on failed nodes.
 -->
-在失效的节点上删除 Pods 时为其预留的宽限期。
+在失效的节点上删除 Pod 时为其预留的宽限期。
 </td>
 </tr>
 
@@ -1670,8 +1555,8 @@ Enable profiling via web interface host:port/debug/pprof/
 <!--
 the increment of time added per Gi to ActiveDeadlineSeconds for an NFS scrubber pod
 -->
-NFS 清洗 Pod 在清洗用过的卷时，根据此标志所设置的秒数，为每清洗 1 GiB 数据
-增加对应超时时长，作为 activeDeadlineSeconds。
+NFS 清洗 Pod 在清洗用过的卷时，根据此标志所设置的秒数，
+为每清洗 1 GiB 数据增加对应超时时长，作为 activeDeadlineSeconds。
 </td>
 </tr>
 
@@ -1708,7 +1593,7 @@ NFS 回收器 Pod 要使用的 activeDeadlineSeconds 参数下限。
 <!--
 The file path to a pod definition used as a template for HostPath persistent volume recycling. This is for development and testing only and will not work in a multi-node cluster.
 -->
-对 HostPath 持久卷进行回收利用时，用作模版的 Pod 定义文件所在路径。
+对 HostPath 持久卷进行回收利用时，用作模板的 Pod 定义文件所在路径。
 此标志仅用于开发和测试目的，不适合多节点集群中使用。
 </td>
 </tr>
@@ -1719,9 +1604,9 @@ The file path to a pod definition used as a template for HostPath persistent vol
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The file path to a pod definition used as a template for HostPath persistent volume recycling. This is for development and testing only and will not work in a multi-node cluster.
+The file path to a pod definition used as a template for NFS persistent volume recycling
 -->
-对 NFS 卷执行回收利用时，用作模版的 Pod 定义文件所在路径。
+对 NFS 卷执行回收利用时，用作模板的 Pod 定义文件所在路径。
 </td>
 </tr>
 
@@ -1756,7 +1641,8 @@ The period for syncing persistent volumes and persistent volume claims
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-List of client certificate common names to allow to provide usernames in headers specified by --requestheader-username-headers. If empty, any client certificate validated by the authorities in --requestheader-client-ca-file is allowed.-->
+List of client certificate common names to allow to provide usernames in headers specified by --requestheader-username-headers. If empty, any client certificate validated by the authorities in --requestheader-client-ca-file is allowed.
+-->
 标志值是客户端证书中的 Common Names 列表。其中所列的名称可以通过
 <code>--requestheader-username-headers</code> 所设置的 HTTP 头部来提供用户名。
 如果此标志值为空表，则被 <code>--requestheader-client-ca-file</code>
@@ -1859,7 +1745,7 @@ The period for reconciling routes created for Nodes by cloud provider.
 <!--
 Number of nodes per second on which pods are deleted in case of node failure when a zone is unhealthy (see --unhealthy-zone-threshold for definition of healthy/unhealthy). Zone refers to entire cluster in non-multizone clusters. This value is implicitly overridden to 0 if the cluster size is smaller than --large-cluster-size-threshold.
 -->
-当区域不健康，节点失效时，每秒钟从此标志所给的节点个数上删除 Pods。
+当一个区域不健康造成节点失效时，每秒钟从此标志所给的节点上删除 Pod 的节点个数。
 参见 <code>--unhealthy-zone-threshold</code> 以了解“健康与否”的判定标准。
 在只有一个区域的集群中，区域指的是整个集群。如果集群规模小于
 <code>--large-cluster-size-threshold</code> 所设置的节点个数时，
@@ -1918,42 +1804,6 @@ The previous version for which you want to show hidden metrics. Only the previou
 </td>
 </tr>
 
-<tr>
-<td colspan="2">--skip-headers</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If true, avoid header prefixes in the log messages
--->
-若此标志为 true，则在日志消息中避免写入头部前缀信息。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--skip-log-headers</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If true, avoid headers when opening log files
--->
-若此标志为 true，则在写入日志文件时避免写入头部信息。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--stderrthreshold severity&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：2</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-logs at or above this threshold go to stderr
--->
-等于或大于此阈值的日志信息会被写入到标准错误输出（stderr）。
-</td>
-</tr>
-
 <tr>
 <td colspan="2">--terminated-pod-gc-threshold int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：12500</td>
 </tr>
@@ -1962,8 +1812,8 @@ logs at or above this threshold go to stderr
 <!--
 Number of terminated pods that can exist before the terminated pod garbage collector starts deleting terminated pods. If &lt;= 0, the terminated pod garbage collector is disabled.
 -->
-在已终止 Pods 垃圾收集器删除已终止 Pods 之前，可以保留的已删除
-Pods 的个数上限。若此值小于等于 0，则相当于禁止垃圾回收已终止的 Pods。
+在已终止 Pod 垃圾收集器删除已终止 Pod 之前，可以保留的已终止 Pod 的个数上限。
+若此值小于等于 0，则相当于禁止垃圾回收已终止的 Pod。
 </td>
 </tr>
 
@@ -1989,11 +1839,11 @@ File containing the default x509 Certificate for HTTPS. (CA cert, if any, concat
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Comma-separated list of cipher suites for the server. If omitted, the default Go cipher suites will be used.<br/>Preferred values: TLS_AES_128_GCM_SHA256, TLS_AES_256_GCM_SHA384, TLS_CHACHA20_POLY1305_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_GCM_SHA384.<br/>Insecure values: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_RC4_128_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_RC4_128_SHA.
+Comma-separated list of cipher suites for the server. If omitted, the default Go cipher suites will be used.<br/>Preferred values: TLS_AES_128_GCM_SHA256, TLS_AES_256_GCM_SHA384, TLS_CHACHA20_POLY1305_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_GCM_SHA384.<br/>Insecure values: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_RC4_128_SHA, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_RC4_128_SHA.
 -->
 供服务器使用的加密包的逗号分隔列表。若忽略此标志，则使用 Go 语言默认的加密包。<br/>
-可选值包括：TLS_AES_128_GCM_SHA256、TLS_AES_256_GCM_SHA384、TLS_CHACHA20_POLY1305_SHA256、TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA、TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256、TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA、TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384、TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305、TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256、TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA、TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA、TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256、TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA、TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384、TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305、TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256、TLS_RSA_WITH_3DES_EDE_CBC_SHA、TLS_RSA_WITH_AES_128_CBC_SHA、TLS_RSA_WITH_AES_128_GCM_SHA256、TLS_RSA_WITH_AES_256_CBC_SHA、TLS_RSA_WITH_AES_256_GCM_SHA384. 
-<br/>不安全的值: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256、TLS_ECDHE_ECDSA_WITH_RC4_128_SHA、TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256、TLS_ECDHE_RSA_WITH_RC4_128_SHA、TLS_RSA_WITH_AES_128_CBC_SHA256、TLS_RSA_WITH_RC4_128_SHA
+可选值包括：TLS_AES_128_GCM_SHA256、TLS_AES_256_GCM_SHA384、TLS_CHACHA20_POLY1305_SHA256、TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA、TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256、TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA、TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384、TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305、TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256、TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA、TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256、TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA、TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384、TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305、TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256、TLS_RSA_WITH_AES_128_CBC_SHA、TLS_RSA_WITH_AES_128_GCM_SHA256、TLS_RSA_WITH_AES_256_CBC_SHA、TLS_RSA_WITH_AES_256_GCM_SHA384。
+<br/>不安全的值: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256、TLS_ECDHE_ECDSA_WITH_RC4_128_SHA、TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA、TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256、TLS_ECDHE_RSA_WITH_RC4_128_SHA、TLS_RSA_WITH_3DES_EDE_CBC_SHA、TLS_RSA_WITH_AES_128_CBC_SHA256、TLS_RSA_WITH_RC4_128_SHA。
 </td>
 </tr>
 
@@ -2023,17 +1873,18 @@ File containing the default x509 private key matching --tls-cert-file.
 </tr>
 
 <tr>
-<td colspan="2">--tls-sni-cert-key namedCertKey&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：[]</td>
+<td colspan="2">--tls-sni-cert-key string</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-A pair of x509 certificate and private key file paths, optionally suffixed with a list of domain patterns which are fully qualified domain names, possibly with prefixed wildcard segments. The domain patterns also allow IP addresses, but IPs should only be used if the apiserver has visibility to the IP address requested by a client. If no domain patterns are provided, the names of the certificate are extracted. Non-wildcard matches trump over wildcard matches, explicit domain patterns trump over extracted names. For multiple key/certificate pairs, use the --tls-sni-cert-key multiple times. Examples: "example.crt,example.key" or "foo.crt,foo.key:*.foo.com,foo.com".
+A pair of x509 certificate and private key file paths, optionally suffixed with a list of domain patterns which are fully qualified domain names, possibly with prefixed wildcard segments. The domain patterns also allow IP addresses, but IPs should only be used if the apiserver has visibility to the IP address requested by a client. If no domain patterns are provided, the names of the certificate are extracted. Non-wildcard matches trump over wildcard matches, explicit domain patterns trump over extracted names. For multiple key/certificate pairs, use the --tls-sni-cert-key multiple times. Examples: &quot;example.crt,example.key&quot; or &quot;foo.crt,foo.key:*.foo.com,foo.com&quot;.
 -->
 X509 证书和私钥文件路径的耦对。作为可选项，可以添加域名模式的列表，
 其中每个域名模式都是可以带通配片段前缀的全限定域名（FQDN）。
-域名模式也可以使用 IP 地址字符串，不过只有 API 服务器在所给 IP 地址上
-对客户端可见时才可以使用 IP 地址。在未提供域名模式时，从证书中提取域名。
+域名模式也可以使用 IP 地址字符串，
+不过只有 API 服务器在所给 IP 地址上对客户端可见时才可以使用 IP 地址。
+在未提供域名模式时，从证书中提取域名。
 如果有非通配方式的匹配，则优先于通配方式的匹配；显式的域名模式优先于提取的域名。
 当存在多个密钥/证书耦对时，可以多次使用 <code>--tls-sni-cert-key</code> 标志。
 例如：<code>example.crt,example.key</code> 或 <code>foo.crt,foo.key:\*.foo.com,foo.com</code>。
@@ -2089,14 +1940,14 @@ Print version information and quit
 </tr>
 
 <tr>
-<td colspan="2">--vmodule &lt;<!--comma-separated 'pattern=N' settings-->逗号分隔的 'pattern=N' 配置值&gt;</td>
+<td colspan="2">--vmodule pattern=N,...</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Comma-separated list of pattern=N settings for file-filtered logging
+comma-separated list of pattern=N settings for file-filtered logging (only works for text log format)
 -->
-由逗号分隔的列表，每一项都是 pattern=N 格式，用来执行根据文件过滤的日志行为。
+由逗号分隔的列表，每一项都是 pattern=N 格式，用来执行根据文件过滤的日志行为（仅适用于 text 日志格式）。
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/command-line-tools-reference/kube-proxy.md b/content/zh-cn/docs/reference/command-line-tools-reference/kube-proxy.md
similarity index 62%
rename from content/zh/docs/reference/command-line-tools-reference/kube-proxy.md
rename to content/zh-cn/docs/reference/command-line-tools-reference/kube-proxy.md
index feeedae04c..3484f8c4da 100644
--- a/content/zh/docs/reference/command-line-tools-reference/kube-proxy.md
+++ b/content/zh-cn/docs/reference/command-line-tools-reference/kube-proxy.md
@@ -54,15 +54,16 @@ kube-proxy [flags]
 <tbody>
 
 <tr>
-<td colspan="2">--add-dir-header</td>
+<td colspan="2">--add_dir_header</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
 <!--
 If true, adds the file directory to the header of the log messages
 -->
-若此标志为 true，则将文件目录添加到日志消息的头部。
-</p></td>
+如果为 true，将文件目录添加到日志消息的头部
+</p>
+</td>
 </tr>
 
 <tr>
@@ -73,37 +74,24 @@ If true, adds the file directory to the header of the log messages
 <!--
 log to standard error as well as files
 -->
-将日志输出到文件时也输出到标准错误输出（stderr）。
+设置为 true 表示将日志输出到文件的同时输出到 stderr
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--bind-address string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：0.0.0.0</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
+<!--
+The IP address for the proxy server to serve on (set to '0.0.0.0' for all IPv4 interfaces and '::' for all IPv6 interfaces). This parameter is ignored if a config file is specified by --config.
+-->
+代理服务器的 IP 地址（所有 IPv4 接口设置为 “0.0.0.0”，所有 IPv6 接口设置为 “::”）。
+如果配置文件由 <code>--config</code> 指定，则忽略此参数。
 </p></td>
 </tr>
 
-<tr>
-<td colspan="2">--azure-container-registry-config string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
-<!--
-Path to the file containing Azure container registry configuration information.
--->
-包含 Azure 容器仓库配置信息的文件的路径。
-</p>
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--bind-address 0.0.0.0&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：0.0.0.0</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
-<!--
-The IP address for the proxy server to serve on (set to '0.0.0.0' for all IPv4 interfaces and '::' for all IPv6 interfaces)
--->
-代理服务器要使用的 IP 地址（设置为 '0.0.0.0' 表示要使用所有 IPv4 接口；
-设置为 '::' 表示使用所有 IPv6 接口）。
-</p>
-</td>
-</tr>
-
 <tr>
 <td colspan="2">--bind-address-hard-fail</td>
 </tr>
@@ -112,20 +100,17 @@ The IP address for the proxy server to serve on (set to '0.0.0.0' for all IPv4 i
 <!--
 If true kube-proxy will treat failure to bind to a port as fatal and exit
 -->
-若此标志为 true，kube-proxy 会将无法绑定端口的失败操作视为致命错误并退出。
+如果为 true，kube-proxy 会将无法绑定端口的失败操作视为致命错误并退出。
 </p></td>
 </tr>
 
 <tr>
-<td colspan="2">--boot-id-file string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值："/proc/sys/kernel/random/boot_id"</td>
+<td colspan="2">--boot_id_file string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值："/proc/sys/kernel/random/boot_id"</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
-<!--
-Comma-separated list of files to check for boot-id. Use the first one that exists.
--->
-用来检查 Boot-ID 的文件名，用逗号隔开。
-第一个存在的文件会被使用。
+<!-- Comma-separated list of files to check for boot-id. Use the first one that exists. -->
+逗号分隔的文件列表，用于检查 boot-id。使用第一个存在的文件。
 </p></td>
 </tr>
 
@@ -148,11 +133,14 @@ If true cleanup iptables and ipvs rules and exit.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
 <!--
-The CIDR range of pods in the cluster. When configured, traffic sent to a Service cluster IP from outside this range will be masqueraded and traffic sent from pods to an external LoadBalancer IP will be directed to the respective cluster IP instead
+The CIDR range of pods in the cluster. When configured, traffic sent to a Service cluster IP from outside this range will be masqueraded and traffic sent from pods to an external LoadBalancer IP will be directed to the respective cluster IP instead. For dual-stack clusters, a comma-separated list is accepted with at least one CIDR per IP family (IPv4 and IPv6). This parameter is ignored if a config file is specified by --config.
 -->
 集群中 Pod 的 CIDR 范围。配置后，将从该范围之外发送到服务集群 IP
-的流量被伪装，从 Pod 发送到外部 LoadBalancer IP 的流量将被重定向
-到相应的集群 IP。
+的流量被伪装，从 Pod 发送到外部 LoadBalancer IP
+的流量将被重定向到相应的集群 IP。
+对于双协议栈集群，接受一个逗号分隔的列表，
+每个 IP 协议族（IPv4 和 IPv6）至少包含一个 CIDR。
+如果配置文件由 --config 指定，则忽略此参数。
 </p>
 </td>
 </tr>
@@ -243,214 +231,225 @@ Idle timeout for established TCP connections (0 to leave as-is)
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
-<!-- Mode to use to detect local traffic -->
+<!--
+Mode to use to detect local traffic. This parameter is ignored if a config file is specified by --config.
+-->
 用于检测本地流量的模式。
+如果配置文件由 --config 指定，则忽略此参数。
 </p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--feature-gates &lt;<!--comma-separated 'key=True|False' pairs-->逗号分隔的 'key=True|False' 对’&gt;</td>
+<td colspan="2">--feature-gates &lt;<!--comma-separated 'key=True|False' pairs-->逗号分隔的 'key=True|False' 对&gt;</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
 <!--
-A set of key=value pairs that describe feature gates for alpha/experimental features. Options are:
-<br/>
+A set of key=value pairs that describe feature gates for alpha/experimental features. Options are
+:<br/>
 APIListChunking=true|false (BETA - default=true)<br/>
 APIPriorityAndFairness=true|false (BETA - default=true)<br/>
 APIResponseCompression=true|false (BETA - default=true)<br/>
 APIServerIdentity=true|false (ALPHA - default=false)<br/>
+APIServerTracing=true|false (ALPHA - default=false)<br/>
 AllAlpha=true|false (ALPHA - default=false)<br/>
 AllBeta=true|false (BETA - default=false)<br/>
-AnyVolumeDataSource=true|false (ALPHA - default=false)<br/>
+AnyVolumeDataSource=true|false (BETA - default=true)<br/>
 AppArmor=true|false (BETA - default=true)<br/>
-BalanceAttachedNodeVolumes=true|false (ALPHA - default=false)<br/>
-BoundServiceAccountTokenVolume=true|false (BETA - default=true)<br/>
 CPUManager=true|false (BETA - default=true)<br/>
+CPUManagerPolicyAlphaOptions=true|false (ALPHA - default=false)<br/>
+CPUManagerPolicyBetaOptions=true|false (BETA - default=true)<br/>
+CPUManagerPolicyOptions=true|false (BETA - default=true)<br/>
 CSIInlineVolume=true|false (BETA - default=true)<br/>
 CSIMigration=true|false (BETA - default=true)<br/>
-CSIMigrationAWS=true|false (BETA - default=false)<br/>
-CSIMigrationAzureDisk=true|false (BETA - default=false)<br/>
-CSIMigrationAzureFile=true|false (BETA - default=false)<br/>
-CSIMigrationGCE=true|false (BETA - default=false)<br/>
-CSIMigrationOpenStack=true|false (BETA - default=true)<br/>
+CSIMigrationAWS=true|false (BETA - default=true)<br/>
+CSIMigrationAzureFile=true|false (BETA - default=true)<br/>
+CSIMigrationGCE=true|false (BETA - default=true)<br/>
+CSIMigrationPortworx=true|false (ALPHA - default=false)<br/>
+CSIMigrationRBD=true|false (ALPHA - default=false)<br/>
 CSIMigrationvSphere=true|false (BETA - default=false)<br/>
-CSIMigrationvSphereComplete=true|false (BETA - default=false)<br/>
-CSIServiceAccountToken=true|false (BETA - default=true)<br/>
-CSIStorageCapacity=true|false (BETA - default=true)<br/>
-CSIVolumeFSGroupPolicy=true|false (BETA - default=true)<br/>
 CSIVolumeHealth=true|false (ALPHA - default=false)<br/>
-ConfigurableFSGroupPolicy=true|false (BETA - default=true)<br/>
-ControllerManagerLeaderMigration=true|false (ALPHA - default=false)<br/>
-CronJobControllerV2=true|false (BETA - default=true)<br/>
+CronJobTimeZone=true|false (ALPHA - default=false)<br/>
 CustomCPUCFSQuotaPeriod=true|false (ALPHA - default=false)<br/>
-DaemonSetUpdateSurge=true|false (ALPHA - default=false)<br/>
-DefaultPodTopologySpread=true|false (BETA - default=true)<br/>
+CustomResourceValidationExpressions=true|false (ALPHA - default=false)<br/>
+DaemonSetUpdateSurge=true|false (BETA - default=true)<br/>
+DelegateFSGroupToCSIDriver=true|false (BETA - default=true)<br/>
 DevicePlugins=true|false (BETA - default=true)<br/>
 DisableAcceleratorUsageMetrics=true|false (BETA - default=true)<br/>
-DownwardAPIHugePages=true|false (BETA - default=false)<br/>
-DynamicKubeletConfig=true|false (BETA - default=true)<br/>
-EfficientWatchResumption=true|false (BETA - default=true)<br/>
-EndpointSliceProxying=true|false (BETA - default=true)<br/>
-EndpointSliceTerminatingCondition=true|false (ALPHA - default=false)<br/>
-EphemeralContainers=true|false (ALPHA - default=false)<br/>
-ExpandCSIVolumes=true|false (BETA - default=true)<br/>
-ExpandInUsePersistentVolumes=true|false (BETA - default=true)<br/>
-ExpandPersistentVolumes=true|false (BETA - default=true)<br/>
+DisableCloudProviders=true|false (ALPHA - default=false)<br/>
+DisableKubeletCloudCredentialProviders=true|false (ALPHA - default=false)<br/>
+DownwardAPIHugePages=true|false (BETA - default=true)<br/>
+EndpointSliceTerminatingCondition=true|false (BETA - default=true)<br/>
+EphemeralContainers=true|false (BETA - default=true)<br/>
+ExpandedDNSConfig=true|false (ALPHA - default=false)<br/>
 ExperimentalHostUserNamespaceDefaulting=true|false (BETA - default=false)<br/>
-GenericEphemeralVolume=true|false (BETA - default=true)<br/>
+GRPCContainerProbe=true|false (BETA - default=true)<br/>
 GracefulNodeShutdown=true|false (BETA - default=true)<br/>
+GracefulNodeShutdownBasedOnPodPriority=true|false (BETA - default=true)<br/>
 HPAContainerMetrics=true|false (ALPHA - default=false)<br/>
 HPAScaleToZero=true|false (ALPHA - default=false)<br/>
-HugePageStorageMediumSize=true|false (BETA - default=true)<br/>
-IPv6DualStack=true|false (BETA - default=true)<br/>
+HonorPVReclaimPolicy=true|false (ALPHA - default=false)<br/>
+IdentifyPodOS=true|false (BETA - default=true)<br/>
 InTreePluginAWSUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginAzureDiskUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginAzureFileUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginGCEUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginOpenStackUnregister=true|false (ALPHA - default=false)<br/>
+InTreePluginPortworxUnregister=true|false (ALPHA - default=false)<br/>
+InTreePluginRBDUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginvSphereUnregister=true|false (ALPHA - default=false)<br/>
-IndexedJob=true|false (ALPHA - default=false)<br/>
-IngressClassNamespacedParams=true|false (ALPHA - default=false)<br/>
-KubeletCredentialProviders=true|false (ALPHA - default=false)<br/>
+JobMutableNodeSchedulingDirectives=true|false (BETA - default=true)<br/>
+JobReadyPods=true|false (BETA - default=true)<br/>
+JobTrackingWithFinalizers=true|false (BETA - default=false)<br/>
+KubeletCredentialProviders=true|false (BETA - default=true)<br/>
+KubeletInUserNamespace=true|false (ALPHA - default=false)<br/>
 KubeletPodResources=true|false (BETA - default=true)<br/>
-KubeletPodResourcesGetAllocatable=true|false (ALPHA - default=false)<br/>
+KubeletPodResourcesGetAllocatable=true|false (BETA - default=true)<br/>
+LegacyServiceAccountTokenNoAutoGeneration=true|false (BETA - default=true)<br/>
 LocalStorageCapacityIsolation=true|false (BETA - default=true)<br/>
 LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - default=false)<br/>
-LogarithmicScaleDown=true|false (ALPHA - default=false)<br/>
-MemoryManager=true|false (ALPHA - default=false)<br/>
-MixedProtocolLBService=true|false (ALPHA - default=false)<br/>
-NamespaceDefaultLabelName=true|false (BETA - default=true)<br/>
-NetworkPolicyEndPort=true|false (ALPHA - default=false)<br/>
-NonPreemptingPriority=true|false (BETA - default=true)<br/>
-PodAffinityNamespaceSelector=true|false (ALPHA - default=false)<br/>
-PodDeletionCost=true|false (ALPHA - default=false)<br/>
-PodOverhead=true|false (BETA - default=true)<br/>
-PreferNominatedNode=true|false (ALPHA - default=false)<br/>
-ProbeTerminationGracePeriod=true|false (ALPHA - default=false)<br/>
+LogarithmicScaleDown=true|false (BETA - default=true)<br/>
+MaxUnavailableStatefulSet=true|false (ALPHA - default=false)<br/>
+MemoryManager=true|false (BETA - default=true)<br/>
+MemoryQoS=true|false (ALPHA - default=false)<br/>
+MinDomainsInPodTopologySpread=true|false (ALPHA - default=false)<br/>
+MixedProtocolLBService=true|false (BETA - default=true)<br/>
+NetworkPolicyEndPort=true|false (BETA - default=true)<br/>
+NetworkPolicyStatus=true|false (ALPHA - default=false)<br/>
+NodeOutOfServiceVolumeDetach=true|false (ALPHA - default=false)<br/>
+NodeSwap=true|false (ALPHA - default=false)<br/>
+OpenAPIEnums=true|false (BETA - default=true)<br/>
+OpenAPIV3=true|false (BETA - default=true)<br/>
+PodAndContainerStatsFromCRI=true|false (ALPHA - default=false)<br/>
+PodDeletionCost=true|false (BETA - default=true)<br/>
+PodSecurity=true|false (BETA - default=true)<br/>
+ProbeTerminationGracePeriod=true|false (BETA - default=false)<br/>
 ProcMountType=true|false (ALPHA - default=false)<br/>
+ProxyTerminatingEndpoints=true|false (ALPHA - default=false)<br/>
 QOSReserved=true|false (ALPHA - default=false)<br/>
+ReadWriteOncePod=true|false (ALPHA - default=false)<br/>
+RecoverVolumeExpansionFailure=true|false (ALPHA - default=false)<br/>
 RemainingItemCount=true|false (BETA - default=true)<br/>
-RemoveSelfLink=true|false (BETA - default=true)<br/>
 RotateKubeletServerCertificate=true|false (BETA - default=true)<br/>
-ServerSideApply=true|false (BETA - default=true)<br/>
-ServiceInternalTrafficPolicy=true|false (ALPHA - default=false)<br/>
-ServiceLBNodePortControl=true|false (ALPHA - default=false)<br/>
-ServiceLoadBalancerClass=true|false (ALPHA - default=false)<br/>
-ServiceTopology=true|false (ALPHA - default=false)<br/>
-SetHostnameAsFQDN=true|false (BETA - default=true)<br/>
-SizeMemoryBackedVolumes=true|false (ALPHA - default=false)<br/>
+SeccompDefault=true|false (ALPHA - default=false)<br/>
+ServerSideFieldValidation=true|false (ALPHA - default=false)<br/>
+ServiceIPStaticSubrange=true|false (ALPHA - default=false)<br/>
+ServiceInternalTrafficPolicy=true|false (BETA - default=true)<br/>
+SizeMemoryBackedVolumes=true|false (BETA - default=true)<br/>
+StatefulSetAutoDeletePVC=true|false (ALPHA - default=false)<br/>
+StatefulSetMinReadySeconds=true|false (BETA - default=true)<br/>
 StorageVersionAPI=true|false (ALPHA - default=false)<br/>
 StorageVersionHash=true|false (BETA - default=true)<br/>
-SuspendJob=true|false (ALPHA - default=false)<br/>
-TTLAfterFinished=true|false (BETA - default=true)<br/>
-TopologyAwareHints=true|false (ALPHA - default=false)<br/>
+TopologyAwareHints=true|false (BETA - default=true)<br/>
 TopologyManager=true|false (BETA - default=true)<br/>
-ValidateProxyRedirects=true|false (BETA - default=true)<br/>
 VolumeCapacityPriority=true|false (ALPHA - default=false)<br/>
-WarningHeaders=true|false (BETA - default=true)<br/>
 WinDSR=true|false (ALPHA - default=false)<br/>
 WinOverlay=true|false (BETA - default=true)<br/>
-WindowsEndpointSliceProxying=true|false (BETA - default=true)
+WindowsHostProcessContainers=true|false (BETA - default=true)
+This parameter is ignored if a config file is specified by --config.
 -->
-一组键=值（key=value）对，描述了 alpha/experimental 的特征。可选项有：
+一组键=值（key=value）对，描述了 alpha/experimental 的特征。可选项有：<br/>
 APIListChunking=true|false (BETA - 默认值=true)<br/>
 APIPriorityAndFairness=true|false (BETA - 默认值=true)<br/>
 APIResponseCompression=true|false (BETA - 默认值=true)<br/>
 APIServerIdentity=true|false (ALPHA - 默认值=false)<br/>
+APIServerTracing=true|false (ALPHA - 默认值=false)<br/>
 AllAlpha=true|false (ALPHA - 默认值=false)<br/>
 AllBeta=true|false (BETA - 默认值=false)<br/>
-AnyVolumeDataSource=true|false (ALPHA - 默认值=false)<br/>
+AnyVolumeDataSource=true|false (BETA - 默认值=true)<br/>
 AppArmor=true|false (BETA - 默认值=true)<br/>
-BalanceAttachedNodeVolumes=true|false (ALPHA - 默认值=false)<br/>
-BoundServiceAccountTokenVolume=true|false (BETA - 默认值=true)<br/>
 CPUManager=true|false (BETA - 默认值=true)<br/>
+CPUManagerPolicyAlphaOptions=true|false (ALPHA - 默认值=false)<br/>
+CPUManagerPolicyBetaOptions=true|false (BETA - 默认值=true)<br/>
+CPUManagerPolicyOptions=true|false (BETA - 默认值=true)<br/>
 CSIInlineVolume=true|false (BETA - 默认值=true)<br/>
 CSIMigration=true|false (BETA - 默认值=true)<br/>
-CSIMigrationAWS=true|false (BETA - 默认值=false)<br/>
-CSIMigrationAzureDisk=true|false (BETA - 默认值=false)<br/>
-CSIMigrationAzureFile=true|false (BETA - 默认值=false)<br/>
-CSIMigrationGCE=true|false (BETA - 默认值=false)<br/>
-CSIMigrationOpenStack=true|false (BETA - 默认值=true)<br/>
+CSIMigrationAWS=true|false (BETA - 默认值=true)<br/>
+CSIMigrationAzureFile=true|false (BETA - 默认值=true)<br/>
+CSIMigrationGCE=true|false (BETA - 默认值=true)<br/>
+CSIMigrationPortworx=true|false (ALPHA - 默认值=false)<br/>
+CSIMigrationRBD=true|false (ALPHA - 默认值=false)<br/>
 CSIMigrationvSphere=true|false (BETA - 默认值=false)<br/>
-CSIMigrationvSphereComplete=true|false (BETA - 默认值=false)<br/>
-CSIServiceAccountToken=true|false (BETA - 默认值=true)<br/>
-CSIStorageCapacity=true|false (BETA - 默认值=true)<br/>
-CSIVolumeFSGroupPolicy=true|false (BETA - 默认值=true)<br/>
 CSIVolumeHealth=true|false (ALPHA - 默认值=false)<br/>
-ConfigurableFSGroupPolicy=true|false (BETA - 默认值=true)<br/>
-ControllerManagerLeaderMigration=true|false (ALPHA - 默认值=false)<br/>
-CronJobControllerV2=true|false (BETA - 默认值=true)<br/>
+CronJobTimeZone=true|false (ALPHA - 默认值=false)<br/>
 CustomCPUCFSQuotaPeriod=true|false (ALPHA - 默认值=false)<br/>
-DaemonSetUpdateSurge=true|false (ALPHA - 默认值=false)<br/>
-DefaultPodTopologySpread=true|false (BETA - 默认值=true)<br/>
+CustomResourceValidationExpressions=true|false (ALPHA - 默认值=false)<br/>
+DaemonSetUpdateSurge=true|false (BETA - 默认值=true)<br/>
+DelegateFSGroupToCSIDriver=true|false (BETA - 默认值=true)<br/>
 DevicePlugins=true|false (BETA - 默认值=true)<br/>
 DisableAcceleratorUsageMetrics=true|false (BETA - 默认值=true)<br/>
-DownwardAPIHugePages=true|false (BETA - 默认值=false)<br/>
-DynamicKubeletConfig=true|false (BETA - 默认值=true)<br/>
-EfficientWatchResumption=true|false (BETA - 默认值=true)<br/>
-EndpointSliceProxying=true|false (BETA - 默认值=true)<br/>
-EndpointSliceTerminatingCondition=true|false (ALPHA - 默认值=false)<br/>
-EphemeralContainers=true|false (ALPHA - 默认值=false)<br/>
-ExpandCSIVolumes=true|false (BETA - 默认值=true)<br/>
-ExpandInUsePersistentVolumes=true|false (BETA - 默认值=true)<br/>
-ExpandPersistentVolumes=true|false (BETA - 默认值=true)<br/>
+DisableCloudProviders=true|false (ALPHA - 默认值=false)<br/>
+DisableKubeletCloudCredentialProviders=true|false (ALPHA - 默认值=false)<br/>
+DownwardAPIHugePages=true|false (BETA - 默认值=true)<br/>
+EndpointSliceTerminatingCondition=true|false (BETA - 默认值=true)<br/>
+EphemeralContainers=true|false (BETA - 默认值=true)<br/>
+ExpandedDNSConfig=true|false (ALPHA - 默认值=false)<br/>
 ExperimentalHostUserNamespaceDefaulting=true|false (BETA - 默认值=false)<br/>
-GenericEphemeralVolume=true|false (BETA - 默认值=true)<br/>
+GRPCContainerProbe=true|false (BETA - 默认值=true)<br/>
 GracefulNodeShutdown=true|false (BETA - 默认值=true)<br/>
+GracefulNodeShutdownBasedOnPodPriority=true|false (BETA - 默认值=true)<br/>
 HPAContainerMetrics=true|false (ALPHA - 默认值=false)<br/>
 HPAScaleToZero=true|false (ALPHA - 默认值=false)<br/>
-HugePageStorageMediumSize=true|false (BETA - 默认值=true)<br/>
-IPv6DualStack=true|false (BETA - 默认值=true)<br/>
+HonorPVReclaimPolicy=true|false (ALPHA - 默认值=false)<br/>
+IdentifyPodOS=true|false (BETA - 默认值=true)<br/>
 InTreePluginAWSUnregister=true|false (ALPHA - 默认值=false)<br/>
 InTreePluginAzureDiskUnregister=true|false (ALPHA - 默认值=false)<br/>
 InTreePluginAzureFileUnregister=true|false (ALPHA - 默认值=false)<br/>
 InTreePluginGCEUnregister=true|false (ALPHA - 默认值=false)<br/>
 InTreePluginOpenStackUnregister=true|false (ALPHA - 默认值=false)<br/>
+InTreePluginPortworxUnregister=true|false (ALPHA - 默认值=false)<br/>
+InTreePluginRBDUnregister=true|false (ALPHA - 默认值=false)<br/>
 InTreePluginvSphereUnregister=true|false (ALPHA - 默认值=false)<br/>
-IndexedJob=true|false (ALPHA - 默认值=false)<br/>
-IngressClassNamespacedParams=true|false (ALPHA - 默认值=false)<br/>
-KubeletCredentialProviders=true|false (ALPHA - 默认值=false)<br/>
+JobMutableNodeSchedulingDirectives=true|false (BETA - 默认值=true)<br/>
+JobReadyPods=true|false (BETA - 默认值=true)<br/>
+JobTrackingWithFinalizers=true|false (BETA - 默认值=false)<br/>
+KubeletCredentialProviders=true|false (BETA - 默认值=true)<br/>
+KubeletInUserNamespace=true|false (ALPHA - 默认值=false)<br/>
 KubeletPodResources=true|false (BETA - 默认值=true)<br/>
-KubeletPodResourcesGetAllocatable=true|false (ALPHA - 默认值=false)<br/>
+KubeletPodResourcesGetAllocatable=true|false (BETA - 默认值=true)<br/>
+LegacyServiceAccountTokenNoAutoGeneration=true|false (BETA - 默认值=true)<br/>
 LocalStorageCapacityIsolation=true|false (BETA - 默认值=true)<br/>
 LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - 默认值=false)<br/>
-LogarithmicScaleDown=true|false (ALPHA - 默认值=false)<br/>
-MemoryManager=true|false (ALPHA - 默认值=false)<br/>
-MixedProtocolLBService=true|false (ALPHA - 默认值=false)<br/>
-NamespaceDefaultLabelName=true|false (BETA - 默认值=true)<br/>
-NetworkPolicyEndPort=true|false (ALPHA - 默认值=false)<br/>
-NonPreemptingPriority=true|false (BETA - 默认值=true)<br/>
-PodAffinityNamespaceSelector=true|false (ALPHA - 默认值=false)<br/>
-PodDeletionCost=true|false (ALPHA - 默认值=false)<br/>
-PodOverhead=true|false (BETA - 默认值=true)<br/>
-PreferNominatedNode=true|false (ALPHA - 默认值=false)<br/>
-ProbeTerminationGracePeriod=true|false (ALPHA - 默认值=false)<br/>
+LogarithmicScaleDown=true|false (BETA - 默认值=true)<br/>
+MaxUnavailableStatefulSet=true|false (ALPHA - 默认值=false)<br/>
+MemoryManager=true|false (BETA - 默认值=true)<br/>
+MemoryQoS=true|false (ALPHA - 默认值=false)<br/>
+MinDomainsInPodTopologySpread=true|false (ALPHA - 默认值=false)<br/>
+MixedProtocolLBService=true|false (BETA - 默认值=true)<br/>
+NetworkPolicyEndPort=true|false (BETA - 默认值=true)<br/>
+NetworkPolicyStatus=true|false (ALPHA - 默认值=false)<br/>
+NodeOutOfServiceVolumeDetach=true|false (ALPHA - 默认值=false)<br/>
+NodeSwap=true|false (ALPHA - 默认值=false)<br/>
+OpenAPIEnums=true|false (BETA - 默认值=true)<br/>
+OpenAPIV3=true|false (BETA - 默认值=true)<br/>
+PodAndContainerStatsFromCRI=true|false (ALPHA - 默认值=false)<br/>
+PodDeletionCost=true|false (BETA - 默认值=true)<br/>
+PodSecurity=true|false (BETA - 默认值=true)<br/>
+ProbeTerminationGracePeriod=true|false (BETA - 默认值=false)<br/>
 ProcMountType=true|false (ALPHA - 默认值=false)<br/>
+ProxyTerminatingEndpoints=true|false (ALPHA - 默认值=false)<br/>
 QOSReserved=true|false (ALPHA - 默认值=false)<br/>
+ReadWriteOncePod=true|false (ALPHA - 默认值=false)<br/>
+RecoverVolumeExpansionFailure=true|false (ALPHA - 默认值=false)<br/>
 RemainingItemCount=true|false (BETA - 默认值=true)<br/>
-RemoveSelfLink=true|false (BETA - 默认值=true)<br/>
 RotateKubeletServerCertificate=true|false (BETA - 默认值=true)<br/>
-ServerSideApply=true|false (BETA - 默认值=true)<br/>
-ServiceInternalTrafficPolicy=true|false (ALPHA - 默认值=false)<br/>
-ServiceLBNodePortControl=true|false (ALPHA - 默认值=false)<br/>
-ServiceLoadBalancerClass=true|false (ALPHA - 默认值=false)<br/>
-ServiceTopology=true|false (ALPHA - 默认值=false)<br/>
-SetHostnameAsFQDN=true|false (BETA - 默认值=true)<br/>
-SizeMemoryBackedVolumes=true|false (ALPHA - 默认值=false)<br/>
+SeccompDefault=true|false (ALPHA - 默认值=false)<br/>
+ServerSideFieldValidation=true|false (ALPHA - 默认值=false)<br/>
+ServiceIPStaticSubrange=true|false (ALPHA - 默认值=false)<br/>
+ServiceInternalTrafficPolicy=true|false (BETA - 默认值=true)<br/>
+SizeMemoryBackedVolumes=true|false (BETA - 默认值=true)<br/>
+StatefulSetAutoDeletePVC=true|false (ALPHA - 默认值=false)<br/>
+StatefulSetMinReadySeconds=true|false (BETA - 默认值=true)<br/>
 StorageVersionAPI=true|false (ALPHA - 默认值=false)<br/>
 StorageVersionHash=true|false (BETA - 默认值=true)<br/>
-SuspendJob=true|false (ALPHA - 默认值=false)<br/>
-TTLAfterFinished=true|false (BETA - 默认值=true)<br/>
-TopologyAwareHints=true|false (ALPHA - 默认值=false)<br/>
+TopologyAwareHints=true|false (BETA - 默认值=true)<br/>
 TopologyManager=true|false (BETA - 默认值=true)<br/>
-ValidateProxyRedirects=true|false (BETA - 默认值=true)<br/>
 VolumeCapacityPriority=true|false (ALPHA - 默认值=false)<br/>
-WarningHeaders=true|false (BETA - 默认值=true)<br/>
 WinDSR=true|false (ALPHA - 默认值=false)<br/>
 WinOverlay=true|false (BETA - 默认值=true)<br/>
-WindowsEndpointSliceProxying=true|false (BETA - 默认值=true)
+WindowsHostProcessContainers=true|false (BETA - 默认值=true)
+如果配置文件由 --config 指定，则忽略此参数。
 </p>
 </td>
 </tr>
@@ -461,13 +460,12 @@ WindowsEndpointSliceProxying=true|false (BETA - 默认值=true)
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
 <!--  
-The IP address with port for the health check server to serve on 
-(set to '0.0.0.0:10256' for all IPv4 interfaces and '[::]:10256' for all IPv6 interfaces). 
-Set empty to disable.
+The IP address with port for the health check server to serve on (set to '0.0.0.0:10256' for all IPv4 interfaces and '[::]:10256' for all IPv6 interfaces). Set empty to disable. This parameter is ignored if a config file is specified by --config.
 -->
 服务健康状态检查的 IP 地址和端口（设置为 '0.0.0.0:10256' 表示使用所有
 IPv4 接口，设置为 '[::]:10256' 表示使用所有 IPv6 接口）；
 设置为空则禁用。
+如果配置文件由 --config 指定，则忽略此参数。
 </p>
 </td>
 </tr>
@@ -697,72 +695,62 @@ Path to kubeconfig file with authorization information (the master location is s
 </tr>
 
 <tr>
-<td colspan="2">--log-backtrace-at &lt;<!--a string in the form 'file:N'-->形式为 'file:N' 的字符串&gt;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: :0</td>
+<td colspan="2">--log_backtrace_at &lt;<!--a string in the form 'file:N'-->“file:N” 格式的字符串&gt;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：0</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
 <!--
 when logging hits line file:N, emit a stack trace
 -->
-当日志逻辑执行到文件 file 的第 N 行时，输出调用堆栈跟踪。
+当日志命中 file:N，触发一次堆栈追踪
 </p></td>
-
 </tr>
 
 <tr>
-<td colspan="2">--log-dir string</td>
+<td colspan="2">--log_dir string</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
-<!--
-If non-empty, write log files in this directory
--->
-若此标志费控，则将日志文件写入到此标志所给的目录下。
+<!-- If non-empty, write log files in this directory -->
+如果非空，则在此目录中写入日志文件
+</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--log_file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
+<!-- If non-empty, use this log file -->
+如果非空，使用此日志文件
+</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--log_file_max_size uint&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：1800</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
+<!-- Defines the maximum size a log file can grow to. Unit is megabytes. If the value is 0, the maximum ile size is unlimited. -->
+定义日志文件可以增长到的最大大小。单位是兆字节。
+如果值为 0，则最大文件大小不受限制。
+</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--logtostderr&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：true</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<p>
+<!-- log to standard error instead of files -->
+日志输出到 stderr 而不是文件。
 </p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--log-file string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
-<!--
-If non-empty, use this log file
--->
-若此标志非空，则该字符串作为日志文件名。
-</p></td>
-</tr>
-
-<tr>
-<td colspan="2">--log-file-max-size uint&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：1800</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
-<!--
-Defines the maximum size a log file can grow to. Unit is megabytes. If the value is 0, the maximum file size is unlimited.
--->
-定义日志文件可增长到的最大尺寸。单位是兆字节（MB）。
-如果此值为 0，则最大文件大小无限制。
-</p></td>
-</tr>
-
-
-<tr>
-<td colspan="2">--log-flush-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：5s
-</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Maximum number of seconds between log flushes
--->
-两次日志刷新之间的最大秒数。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--machine-id-file string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值："/etc/machine-id,/var/lib/dbus/machine-id"</td>
+<td colspan="2">--machine_id_file string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值："/etc/machine-id,/var/lib/dbus/machine-id"</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
@@ -807,13 +795,12 @@ Kubernetes API 服务器的地址（覆盖 kubeconfig 中的相关值）。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
 <!--
-The IP address with port for the metrics server to serve on 
-(set to '0.0.0.0:10249' for all IPv4 interfaces and '[::]:10249' for all IPv6 interfaces). 
-Set empty to disable.
+The IP address with port for the metrics server to serve on (set to '0.0.0.0:10249' for all IPv4 interfaces and '[::]:10249' for all IPv6 interfaces). Set empty to disable. This parameter is ignored if a config file is specified by --config.
 -->
 metrics 服务器要使用的 IP 地址和端口
 （设置为 '0.0.0.0:10249' 则使用所有 IPv4 接口，设置为 '[::]:10249' 则使用所有 IPv6 接口）
 设置为空则禁用。
+如果配置文件由 --config 指定，则忽略此参数。
 </p>
 </td>
 </tr>
@@ -824,25 +811,23 @@ metrics 服务器要使用的 IP 地址和端口
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
 <!--
-A string slice of values which specify the addresses to use for NodePorts. Values may be valid IP blocks (e.g. 1.2.3.0/24, 1.2.3.4/32). The default empty string slice ([]) means to use all local addresses.
+A string slice of values which specify the addresses to use for NodePorts. Values may be valid IP blocks (e.g. 1.2.3.0/24, 1.2.3.4/32). The default empty string slice ([]) means to use all local addresses.This parameter is ignored if a config file is specified by --config.
 -->
 一个字符串值，指定用于 NodePort 服务的地址。
 值可以是有效的 IP 块（例如 1.2.3.0/24, 1.2.3.4/32）。
 默认的空字符串切片（[]）表示使用所有本地地址。
+如果配置文件由 --config 指定，则忽略此参数。
 </p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--one-output</td>
+<td colspan="2">--one_output</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
-<!--
-If true, only write logs to their native severity level (vs also writing to each lower severity level)
--->
-若此标志为 true，则仅将日志写入到其原本的严重性级别之下
-（而不是将其写入到所有更低严重性级别中）。
+<!-- If true, only write logs to their native severity level (vs also writing to each lower severity level) -->
+如果为 true，则仅将日志写入本地的严重性级别（而不是写入每个较低的严重性级别）
 </p></td>
 </tr>
 
@@ -852,38 +837,68 @@ If true, only write logs to their native severity level (vs also writing to each
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
 <!--
-The oom-score-adj value for kube-proxy process. Values must be within the range [-1000, 1000]
+The oom-score-adj value for kube-proxy process. Values must be within the range [-1000, 1000]. This parameter is ignored if a config file is specified by --config.
 -->
 kube-proxy 进程中的 oom-score-adj 值，必须在 [-1000,1000] 范围内。
+如果配置文件由 --config 指定，则忽略此参数。
 </p>
 </td>
 </tr>
 
+<tr>
+<td colspan="2">--pod-bridge-interface string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+A bridge interface name in the cluster. Kube-proxy considers traffic as local if originating from an interface which matches the value. This argument should be set if DetectLocalMode is set to BridgeInterface.
+-->
+集群中的一个桥接接口名称。
+Kube-proxy 将来自与该值匹配的桥接接口的流量视为本地流量。
+如果 DetectLocalMode 设置为 BridgeInterface，则应设置该参数。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--pod-interface-name-prefix string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+An interface prefix in the cluster. Kube-proxy considers traffic as local if originating from interfaces that match the given prefix. This argument should be set if DetectLocalMode is set to InterfaceNamePrefix.
+-->
+集群中的一个接口前缀。
+Kube-proxy 将来自与给定前缀匹配的接口的流量视为本地流量。
+如果 DetectLocalMode 设置为 InterfaceNamePrefix，则应设置该参数。
+</td>
+</tr>
+
 <tr>
 <td colspan="2">--profiling</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
 <!--
-If true enables profiling via web interface on /debug/pprof handler.
+If true enables profiling via web interface on /debug/pprof handler. This parameter is ignored if a config file is specified by --config.
 -->
 如果为 true，则通过 Web 接口 <code>/debug/pprof</code> 启用性能分析。
+如果配置文件由 --config 指定，则忽略此参数。
 </p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--proxy-mode string</td>
+<td colspan="2">--proxy-mode ProxyMode</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
 <!--
-Which proxy mode to use: 'userspace' (older) or 'iptables' (faster) or 'ipvs'. If blank, use the best-available proxy (currently iptables).  If the iptables proxy is selected, regardless of how, but the system's kernel or iptables versions are insufficient, this always falls back to the userspace proxy.
+Which proxy mode to use: 'iptables' (Linux-only), 'ipvs' (Linux-only), 'kernelspace' (Windows-only), or 'userspace' (Linux/Windows, deprecated). The default value is 'iptables' on Linux and 'userspace' on Windows.This parameter is ignored if a config file is specified by --config.
 -->
-使用哪种代理模式：'userspace'（较旧）或 'iptables'（较快）或 'ipvs'。
-如果为空，使用最佳可用代理（当前为 iptables）。
-如果选择了 iptables 代理（无论是否为显式设置），但系统的内核或
-iptables 版本较低，总是会回退到 userspace 代理。
+使用哪种代理模式：'iptables'（仅 Linux）、'ipvs'（仅 Linux）、'kernelspace'（仅 Linux）
+或者 'userspace'（Linux/Windows, 已弃用）。
+Linux 系统上的默认值是 'iptables'，Windows 系统上的默认值是 'userspace'。
+如果配置文件由 --config 指定，则忽略此参数。
 </p>
 </td>
 </tr>
@@ -909,38 +924,35 @@ Range of host ports (beginPort-endPort, single port or beginPort+offset, inclusi
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
 <!--  
-The previous version for which you want to show hidden metrics. Only the previous minor version is meaningful, other values will not be allowed. The format is &lt;major&gt;.&lt;minor&gt;, e.g.: '1.16'. The purpose of this format is make sure you have the opportunity to notice if the next release hides additional metrics, rather than being surprised when they are permanently removed in the release after that.
+The previous version for which you want to show hidden metrics. Only the previous minor version is meaningful, other values will not be allowed. The format is &lt;major&gt;.&lt;minor&gt;, e.g.: '1.16'. The purpose of this format is make sure you have the opportunity to notice if the next release hides additional metrics, rather than being surprised when they are permanently removed in the release after that.This parameter is ignored if a config file is specified by --config.
 -->
 要显示隐藏指标的先前版本。 
 仅先前的次要版本有意义，不允许其他值。
 格式为 &lt;major&gt;.&lt;minor&gt; ，例如：'1.16'。 
 这种格式的目的是确保你有机会注意到下一个发行版是否隐藏了其他指标，
 而不是在之后将其永久删除时感到惊讶。
+如果配置文件由 --config 指定，则忽略此参数。
 </p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--skip-headers</td>
+<td colspan="2">--skip_headers</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
-<!--
-If true, avoid header prefixes in the log messages
--->
-若此标志为 true，则避免在日志消息中包含头部前缀。
+<!-- If true, avoid header prefixes in the log messages -->
+如果为 true，则避免在日志消息中使用头部前缀
 </p></td>
 </tr>
 
 <tr>
-<td colspan="2">--skip-log-headers</td>
+<td colspan="2">--skip_log_headers</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
-<!--
-If true, avoid headers when opening log files
--->
-如果此标志为 true，则避免在打开日志文件时使用头部。
+<!-- If true, avoid headers when opening log files -->
+如果为 true，则在打开日志文件时避免使用头部
 </p></td>
 </tr>
 
@@ -949,10 +961,8 @@ If true, avoid headers when opening log files
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
-<!--
-logs at or above this threshold go to stderr
--->
-如果日志消息处于或者高于此阈值所设置的级别，则将其输出到标准错误输出（stderr）。
+<!-- logs at or above this threshold go to stderr -->
+设置严重程度达到或超过此阈值的日志输出到标准错误输出。
 </p></td>
 </tr>
 
@@ -975,10 +985,8 @@ How long an idle UDP connection will be kept open (e.g. '250ms', '2s').  Must be
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
-<!--
-number for the log level verbosity
--->
-用来设置日志详细程度的数值。
+<!-- number for the log level verbosity -->
+设置日志级别详细程度的数值。
 </p></td>
 </tr>
 
@@ -996,15 +1004,12 @@ Print version information and quit
 </tr>
 
 <tr>
-<td colspan="2">--vmodule &lt;<!--comma-separated 'pattern=N' settings-->逗号分隔的 'pattern=N' 设置’&gt;</td>
+<td colspan="2">--vmodule &lt;<!--comma-separated 'pattern=N' settings-->逗号分割的 “pattern=N” 设置&gt;</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
-<!--
-comma-separated list of pattern=N settings for file-filtered logging
--->
-用逗号分隔的列表，其中每一项为 'pattern=N' 格式。
-用来支持基于文件过滤的日志机制。
+<!-- comma-separated list of pattern=N settings for file-filtered logging -->
+以逗号分割的 pattern=N 设置的列表，用于文件过滤日志
 </p></td>
 </tr>
 
diff --git a/content/zh/docs/reference/command-line-tools-reference/kube-scheduler.md b/content/zh-cn/docs/reference/command-line-tools-reference/kube-scheduler.md
similarity index 60%
rename from content/zh/docs/reference/command-line-tools-reference/kube-scheduler.md
rename to content/zh-cn/docs/reference/command-line-tools-reference/kube-scheduler.md
index dbb9eb3cfa..530cf647ff 100644
--- a/content/zh/docs/reference/command-line-tools-reference/kube-scheduler.md
+++ b/content/zh-cn/docs/reference/command-line-tools-reference/kube-scheduler.md
@@ -2,7 +2,6 @@
 title: kube-scheduler
 content_type: tool-reference
 weight: 30
-auto_generated: true
 ---
 <!-- 
 title: kube-scheduler
@@ -27,8 +26,8 @@ Kubernetes 调度器是一个控制面进程，负责将 Pods 指派到节点上
 调度器基于约束和可用资源为调度队列中每个 Pod 确定其可合法放置的节点。
 调度器之后对所有合法的节点进行排序，将 Pod 绑定到一个合适的节点。
 在同一个集群中可以使用多个不同的调度器；kube-scheduler 是其参考实现。
-参阅[调度](/zh/docs/concepts/scheduling-eviction/)
-以获得关于调度和 kube-scheduler 组件的更多信息。
+参阅[调度](/zh-cn/docs/concepts/scheduling-eviction/)以获得关于调度和
+kube-scheduler 组件的更多信息。
 
 ```
 kube-scheduler [flags]
@@ -44,71 +43,23 @@ kube-scheduler [flags]
 </colgroup>
 <tbody>
 
-<tr>
-<td colspan="2">--add-dir-header</td>
-</tr>
-<tr><td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- 
-If true, adds the file directory to the header of the log messages
--->
-如果为 true，则将文件目录添加到日志消息的头部
-</td>
-</tr>
-
-<tr><td colspan="2">--address string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值："0.0.0.0"</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- 
-DEPRECATED: the IP address on which to listen for the --port port (set to 0.0.0.0 or :: for listening in all interfaces and IP families). See --bind-address instead. This parameter is ignored if a config file is specified in --config.
--->
-已弃用： 要监听 --port 端口的 IP 地址（将其设置为 0.0.0.0 或者 :: 用于监听所有接口和 IP族）。 
-请参阅 --bind-address。
-如果在 --config 中指定了一个配置文件，这个参数将被忽略。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--algorithm-provider string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-DEPRECATED: the scheduling algorithm provider to use, this sets the default plugins for component config profiles. Choose one of: ClusterAutoscalerProvider | DefaultProvider
--->
-已弃用： 要使用的调度算法驱动，此标志设置组件配置框架的默认插件。
-可选值：ClusterAutoscalerProvider | DefaultProvider
-</td>
-</tr>
 
 <tr>
 <td colspan="2">--allow-metric-labels stringToString&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
-<!--Default-->默认值： []</td>
+<!--Default-->默认值：[]</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
 The map from metric-label to value allow-list of this label. The key's format is &lt;MetricName&gt;,&lt;LabelName&gt;. The value's format is &lt;allowed_value&gt;,&lt;allowed_value&gt;...e.g. metric1,label1='v1,v2,v3', metric1,label2='v1,v2,v3' metric2,label1='v1,v2,v3'.
 -->
-这个键值映射表设置 度量标签 所允许设置的值。
+这个键值映射表设置度量标签所允许设置的值。
 其中键的格式是 &lt;MetricName&gt;,&lt;LabelName&gt;。
 值的格式是 &lt;allowed_value&gt;,&lt;allowed_value&gt;。
 例如：metric1,label1='v1,v2,v3', metric1,label2='v1,v2,v3' metric2,label1='v1,v2,v3'。
 </td>
 </tr>
 
-<tr>
-<td colspan="2">--alsologtostderr</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-log to standard error as well as files
--->
-日志记录到标准错误以及文件
-</td>
-</tr>
-
 <tr>
 <td colspan="2">--authentication-kubeconfig string</td>
 </tr>
@@ -168,7 +119,7 @@ If true, failures to look up missing authentication configuration from the clust
 <!--
 A list of HTTP paths to skip during authorization, i.e. these are authorized without contacting the 'core' kubernetes server.
 -->
-在授权过程中跳过的 HTTP 路径列表，即在不联系 'core'  kubernetes 服务器的情况下被授权的 HTTP 路径。
+在授权过程中跳过的 HTTP 路径列表，即在不联系 “core” kubernetes 服务器的情况下被授权的 HTTP 路径。
 </td>
 </tr>
 
@@ -194,7 +145,7 @@ Kubernetes 核心服务器的 kubeconfig 文件。这是可选的。
 <!--
 The duration to cache 'authorized' responses from the webhook authorizer.
 -->
-缓存来自 Webhook 授权者的 'authorized' 响应的持续时间。
+缓存来自 Webhook 授权者的 “authorized” 响应的持续时间。
 </td>
 </tr>
 
@@ -206,7 +157,7 @@ The duration to cache 'authorized' responses from the webhook authorizer.
 <!--
 The duration to cache 'unauthorized' responses from the webhook authorizer.
 -->
-缓存来自 Webhook 授权者的 'unauthorized' 响应的持续时间。
+缓存来自 Webhook 授权者的 “unauthorized” 响应的持续时间。
 </td>
 </tr>
 
@@ -232,7 +183,7 @@ The IP address on which to listen for the --secure-port port. The associated int
 -->
 监听 --secure-port 端口的 IP 地址。
 集群的其余部分以及 CLI/ Web 客户端必须可以访问关联的接口。
-如果为空，将使用所有接口（0.0.0.0 表示使用所有 IPv4 接口，"::" 表示使用所有 IPv6 接口）。
+如果为空，将使用所有接口（0.0.0.0 表示使用所有 IPv4 接口，“::” 表示使用所有 IPv6 接口）。
 如果为空或未指定地址 (0.0.0.0 或 ::)，所有接口将被使用。
 </td>
 </tr>
@@ -269,22 +220,14 @@ If set, any request presenting a client certificate signed by one of the authori
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path to the configuration file. The following flags can overwrite fields in this file:<br/>
---algorithm-provider<br/>
---policy-config-file<br/>
---policy-configmap<br/>
---policy-configmap-namespace
+The path to the configuration file. 
 -->
-配置文件的路径。以下标志会覆盖此文件中的值：<br/>
---algorithm-provider<br/>
---policy-config-file<br/>
---policy-configmap<br/>
---policy-configmap-namespace
+配置文件的路径。
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--contention-profiling&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default-->默认值: true</td>
+<td colspan="2">--contention-profiling&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default-->默认值：true</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
@@ -309,19 +252,6 @@ This flag provides an escape hatch for misbehaving metrics. You must provide the
 </td>
 </tr>
 
-<tr>
-<td colspan="2">--experimental-logging-sanitization</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-[Experimental] When enabled prevents logging of fields tagged as sensitive (passwords, keys, tokens).<br/>Runtime log sanitization may introduce significant computation overhead and therefore should not be enabled in production.
--->
-[试验性功能] 当启用此标志时，标记为敏感的字段（密码、密钥、令牌）等不会被日志
-输出。<br/>
-运行时的日志清理操作可能引入相当程度的计算开销，因此不应在生产环境中启用。
-</td>
-</tr>
 
 <tr>
 <td colspan="2">--feature-gates &lt;<!--comma-separated 'key=True|False' pairs-->逗号分隔的 'key=True|False' 对&gt;</td>
@@ -334,213 +264,204 @@ APIListChunking=true|false (BETA - default=true)<br/>
 APIPriorityAndFairness=true|false (BETA - default=true)<br/>
 APIResponseCompression=true|false (BETA - default=true)<br/>
 APIServerIdentity=true|false (ALPHA - default=false)<br/>
+APIServerTracing=true|false (ALPHA - default=false)<br/>
 AllAlpha=true|false (ALPHA - default=false)<br/>
 AllBeta=true|false (BETA - default=false)<br/>
-AnyVolumeDataSource=true|false (ALPHA - default=false)<br/>
+AnyVolumeDataSource=true|false (BETA - default=true)<br/>
 AppArmor=true|false (BETA - default=true)<br/>
-BalanceAttachedNodeVolumes=true|false (ALPHA - default=false)<br/>
-BoundServiceAccountTokenVolume=true|false (BETA - default=true)<br/>
 CPUManager=true|false (BETA - default=true)<br/>
+CPUManagerPolicyAlphaOptions=true|false (ALPHA - default=false)<br/>
+CPUManagerPolicyBetaOptions=true|false (BETA - default=true)<br/>
+CPUManagerPolicyOptions=true|false (BETA - default=true)<br/>
 CSIInlineVolume=true|false (BETA - default=true)<br/>
 CSIMigration=true|false (BETA - default=true)<br/>
 CSIMigrationAWS=true|false (BETA - default=false)<br/>
-CSIMigrationAzureDisk=true|false (BETA - default=false)<br/>
 CSIMigrationAzureFile=true|false (BETA - default=false)<br/>
-CSIMigrationGCE=true|false (BETA - default=false)<br/>
-CSIMigrationOpenStack=true|false (BETA - default=true)<br/>
+CSIMigrationGCE=true|false (BETA - default=true)<br/>
+CSIMigrationPortworx=true|false (ALPHA - default=false)<br/>
+CSIMigrationRBD=true|false (ALPHA - default=false)<br/>
 CSIMigrationvSphere=true|false (BETA - default=false)<br/>
-CSIMigrationvSphereComplete=true|false (BETA - default=false)<br/>
-CSIServiceAccountToken=true|false (BETA - default=true)<br/>
-CSIStorageCapacity=true|false (BETA - default=true)<br/>
-CSIVolumeFSGroupPolicy=true|false (BETA - default=true)<br/>
 CSIVolumeHealth=true|false (ALPHA - default=false)<br/>
-ConfigurableFSGroupPolicy=true|false (BETA - default=true)<br/>
-ControllerManagerLeaderMigration=true|false (ALPHA - default=false)<br/>
-CronJobControllerV2=true|false (BETA - default=true)<br/>
+ContextualLogging=true|false (ALPHA - default=false)<br/>
+CronJobTimeZone=true|false (ALPHA - default=false)<br/>
 CustomCPUCFSQuotaPeriod=true|false (ALPHA - default=false)<br/>
-DaemonSetUpdateSurge=true|false (ALPHA - default=false)<br/>
-DefaultPodTopologySpread=true|false (BETA - default=true)<br/>
+CustomResourceValidationExpressions=true|false (ALPHA - default=false)<br/>
+DaemonSetUpdateSurge=true|false (BETA - default=true)<br/>
+DelegateFSGroupToCSIDriver=true|false (BETA - default=true)<br/>
 DevicePlugins=true|false (BETA - default=true)<br/>
 DisableAcceleratorUsageMetrics=true|false (BETA - default=true)<br/>
-DownwardAPIHugePages=true|false (BETA - default=false)<br/>
-DynamicKubeletConfig=true|false (BETA - default=true)<br/>
-EfficientWatchResumption=true|false (BETA - default=true)<br/>
-EndpointSliceProxying=true|false (BETA - default=true)<br/>
-EndpointSliceTerminatingCondition=true|false (ALPHA - default=false)<br/>
-EphemeralContainers=true|false (ALPHA - default=false)<br/>
-ExpandCSIVolumes=true|false (BETA - default=true)<br/>
-ExpandInUsePersistentVolumes=true|false (BETA - default=true)<br/>
-ExpandPersistentVolumes=true|false (BETA - default=true)<br/>
+DisableCloudProviders=true|false (ALPHA - default=false)<br/>
+DisableKubeletCloudCredentialProviders=true|false (ALPHA - default=false)<br/>
+DownwardAPIHugePages=true|false (BETA - default=true)<br/>
+EndpointSliceTerminatingCondition=true|false (BETA - default=true)<br/>
+EphemeralContainers=true|false (BETA - default=true)<br/>
+ExpandedDNSConfig=true|false (ALPHA - default=false)<br/>
 ExperimentalHostUserNamespaceDefaulting=true|false (BETA - default=false)<br/>
-GenericEphemeralVolume=true|false (BETA - default=true)<br/>
+GRPCContainerProbe=true|false (BETA - default=true)<br/>
 GracefulNodeShutdown=true|false (BETA - default=true)<br/>
+GracefulNodeShutdownBasedOnPodPriority=true|false (BETA - default=true)<br/>
 HPAContainerMetrics=true|false (ALPHA - default=false)<br/>
 HPAScaleToZero=true|false (ALPHA - default=false)<br/>
-HugePageStorageMediumSize=true|false (BETA - default=true)<br/>
-IPv6DualStack=true|false (BETA - default=true)<br/>
+HonorPVReclaimPolicy=true|false (ALPHA - default=false)<br/>
+IdentifyPodOS=true|false (BETA - default=true)<br/>
 InTreePluginAWSUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginAzureDiskUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginAzureFileUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginGCEUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginOpenStackUnregister=true|false (ALPHA - default=false)<br/>
+InTreePluginPortworxUnregister=true|false (ALPHA - default=false)<br/>
+InTreePluginRBDUnregister=true|false (ALPHA - default=false)<br/>
 InTreePluginvSphereUnregister=true|false (ALPHA - default=false)<br/>
-IndexedJob=true|false (ALPHA - default=false)<br/>
-IngressClassNamespacedParams=true|false (ALPHA - default=false)<br/>
-KubeletCredentialProviders=true|false (ALPHA - default=false)<br/>
+obMutableNodeSchedulingDirectives=true|false (BETA - default=true)<br/>
+JobReadyPods=true|false (BETA - default=true)<br/>
+JobTrackingWithFinalizers=true|false (BETA - default=false)<br/>
+KubeletCredentialProviders=true|false (BETA - default=true)<br/>
+KubeletInUserNamespace=true|false (ALPHA - default=false)<br/>
 KubeletPodResources=true|false (BETA - default=true)<br/>
-KubeletPodResourcesGetAllocatable=true|false (ALPHA - default=false)<br/>
+KubeletPodResourcesGetAllocatable=true|false (BETA - default=true)<br/>
+LegacyServiceAccountTokenNoAutoGeneration=true|false (BETA - default=true)<br/>
 LocalStorageCapacityIsolation=true|false (BETA - default=true)<br/>
 LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - default=false)<br/>
-LogarithmicScaleDown=true|false (ALPHA - default=false)<br/>
-MemoryManager=true|false (ALPHA - default=false)<br/>
-MixedProtocolLBService=true|false (ALPHA - default=false)<br/>
-NamespaceDefaultLabelName=true|false (BETA - default=true)<br/>
-NetworkPolicyEndPort=true|false (ALPHA - default=false)<br/>
-NonPreemptingPriority=true|false (BETA - default=true)<br/>
-PodAffinityNamespaceSelector=true|false (ALPHA - default=false)<br/>
-PodDeletionCost=true|false (ALPHA - default=false)<br/>
-PodOverhead=true|false (BETA - default=true)<br/>
-PreferNominatedNode=true|false (ALPHA - default=false)<br/>
-ProbeTerminationGracePeriod=true|false (ALPHA - default=false)<br/>
+LogarithmicScaleDown=true|false (BETA - default=true)<br/>
+MaxUnavailableStatefulSet=true|false (ALPHA - default=false)<br/>
+MemoryManager=true|false (BETA - default=true)<br/>
+MemoryQoS=true|false (ALPHA - default=false)<br/>
+MinDomainsInPodTopologySpread=true|false (ALPHA - default=false)<br/>
+MixedProtocolLBService=true|false (BETA - default=true)<br/>
+NetworkPolicyEndPort=true|false (BETA - default=true)<br/>
+NetworkPolicyStatus=true|false (ALPHA - default=false)<br/>
+NodeOutOfServiceVolumeDetach=true|false (ALPHA - default=false)<br/>
+NodeSwap=true|false (ALPHA - default=false)<br/>
+OpenAPIEnums=true|false (BETA - default=true)<br/>
+OpenAPIV3=true|false (BETA - default=true)<br/>
+PodAndContainerStatsFromCRI=true|false (ALPHA - default=false)<br/>
+PodDeletionCost=true|false (BETA - default=true)<br/>
+PodSecurity=true|false (BETA - default=true)<br/>
+ProbeTerminationGracePeriod=true|false (BETA - default=false)<br/>
 ProcMountType=true|false (ALPHA - default=false)<br/>
+ProxyTerminatingEndpoints=true|false (ALPHA - default=false)<br/>
 QOSReserved=true|false (ALPHA - default=false)<br/>
+ReadWriteOncePod=true|false (ALPHA - default=false)<br/>
+RecoverVolumeExpansionFailure=true|false (ALPHA - default=false)<br/>
 RemainingItemCount=true|false (BETA - default=true)<br/>
-RemoveSelfLink=true|false (BETA - default=true)<br/>
 RotateKubeletServerCertificate=true|false (BETA - default=true)<br/>
-ServerSideApply=true|false (BETA - default=true)<br/>
-ServiceInternalTrafficPolicy=true|false (ALPHA - default=false)<br/>
-ServiceLBNodePortControl=true|false (ALPHA - default=false)<br/>
-ServiceLoadBalancerClass=true|false (ALPHA - default=false)<br/>
-ServiceTopology=true|false (ALPHA - default=false)<br/>
-SetHostnameAsFQDN=true|false (BETA - default=true)<br/>
-SizeMemoryBackedVolumes=true|false (ALPHA - default=false)<br/>
+SeccompDefault=true|false (ALPHA - default=false)<br/>
+ServerSideFieldValidation=true|false (ALPHA - default=false)<br/>
+ServiceIPStaticSubrange=true|false (ALPHA - default=false)<br/>
+ServiceInternalTrafficPolicy=true|false (BETA - default=true)<br/>
+SizeMemoryBackedVolumes=true|false (BETA - default=true)<br/>
+StatefulSetAutoDeletePVC=true|false (ALPHA - default=false)<br/>
+StatefulSetMinReadySeconds=true|false (BETA - default=true)<br/>
 StorageVersionAPI=true|false (ALPHA - default=false)<br/>
 StorageVersionHash=true|false (BETA - default=true)<br/>
-SuspendJob=true|false (ALPHA - default=false)<br/>
-TTLAfterFinished=true|false (BETA - default=true)<br/>
-TopologyAwareHints=true|false (ALPHA - default=false)<br/>
+TopologyAwareHints=true|false (BETA - default=true)<br/>
 TopologyManager=true|false (BETA - default=true)<br/>
-ValidateProxyRedirects=true|false (BETA - default=true)<br/>
 VolumeCapacityPriority=true|false (ALPHA - default=false)<br/>
-WarningHeaders=true|false (BETA - default=true)<br/>
 WinDSR=true|false (ALPHA - default=false)<br/>
 WinOverlay=true|false (BETA - default=true)<br/>
-WindowsEndpointSliceProxying=true|false (BETA - default=true)
+WindowsHostProcessContainers=true|false (BETA - default=true)
 -->
 一组 key=value 对，描述了 alpha/experimental 特征开关。选项包括：<br/>
-A set of key=value pairs that describe feature gates for alpha/experimental features. Options are:<br/>
-APIListChunking=true|false (BETA - 默认值=true)<br/>
-APIPriorityAndFairness=true|false (BETA - 默认值=true)<br/>
-APIResponseCompression=true|false (BETA - 默认值=true)<br/>
-APIServerIdentity=true|false (ALPHA - 默认值=false)<br/>
-AllAlpha=true|false (ALPHA - 默认值=false)<br/>
-AllBeta=true|false (BETA - 默认值=false)<br/>
-AnyVolumeDataSource=true|false (ALPHA - 默认值=false)<br/>
-AppArmor=true|false (BETA - 默认值=true)<br/>
-BalanceAttachedNodeVolumes=true|false (ALPHA - 默认值=false)<br/>
-BoundServiceAccountTokenVolume=true|false (BETA - 默认值=true)<br/>
-CPUManager=true|false (BETA - 默认值=true)<br/>
-CSIInlineVolume=true|false (BETA - 默认值=true)<br/>
-CSIMigration=true|false (BETA - 默认值=true)<br/>
-CSIMigrationAWS=true|false (BETA - 默认值=false)<br/>
-CSIMigrationAzureDisk=true|false (BETA - 默认值=false)<br/>
-CSIMigrationAzureFile=true|false (BETA - 默认值=false)<br/>
-CSIMigrationGCE=true|false (BETA - 默认值=false)<br/>
-CSIMigrationOpenStack=true|false (BETA - 默认值=true)<br/>
-CSIMigrationvSphere=true|false (BETA - 默认值=false)<br/>
-CSIMigrationvSphereComplete=true|false (BETA - 默认值=false)<br/>
-CSIServiceAccountToken=true|false (BETA - 默认值=true)<br/>
-CSIStorageCapacity=true|false (BETA - 默认值=true)<br/>
-CSIVolumeFSGroupPolicy=true|false (BETA - 默认值=true)<br/>
-CSIVolumeHealth=true|false (ALPHA - 默认值=false)<br/>
-ConfigurableFSGroupPolicy=true|false (BETA - 默认值=true)<br/>
-ControllerManagerLeaderMigration=true|false (ALPHA - 默认值=false)<br/>
-CronJobControllerV2=true|false (BETA - 默认值=true)<br/>
-CustomCPUCFSQuotaPeriod=true|false (ALPHA - 默认值=false)<br/>
-DaemonSetUpdateSurge=true|false (ALPHA - 默认值=false)<br/>
-DefaultPodTopologySpread=true|false (BETA - 默认值=true)<br/>
-DevicePlugins=true|false (BETA - 默认值=true)<br/>
-DisableAcceleratorUsageMetrics=true|false (BETA - 默认值=true)<br/>
-DownwardAPIHugePages=true|false (BETA - 默认值=false)<br/>
-DynamicKubeletConfig=true|false (BETA - 默认值=true)<br/>
-EfficientWatchResumption=true|false (BETA - 默认值=true)<br/>
-EndpointSliceProxying=true|false (BETA - 默认值=true)<br/>
-EndpointSliceTerminatingCondition=true|false (ALPHA - 默认值=false)<br/>
-EphemeralContainers=true|false (ALPHA - 默认值=false)<br/>
-ExpandCSIVolumes=true|false (BETA - 默认值=true)<br/>
-ExpandInUsePersistentVolumes=true|false (BETA - 默认值=true)<br/>
-ExpandPersistentVolumes=true|false (BETA - 默认值=true)<br/>
-ExperimentalHostUserNamespaceDefaulting=true|false (BETA - 默认值=false)<br/>
-GenericEphemeralVolume=true|false (BETA - 默认值=true)<br/>
-GracefulNodeShutdown=true|false (BETA - 默认值=true)<br/>
-HPAContainerMetrics=true|false (ALPHA - 默认值=false)<br/>
-HPAScaleToZero=true|false (ALPHA - 默认值=false)<br/>
-HugePageStorageMediumSize=true|false (BETA - 默认值=true)<br/>
-IPv6DualStack=true|false (BETA - 默认值=true)<br/>
-InTreePluginAWSUnregister=true|false (ALPHA - 默认值=false)<br/>
-InTreePluginAzureDiskUnregister=true|false (ALPHA - 默认值=false)<br/>
-InTreePluginAzureFileUnregister=true|false (ALPHA - 默认值=false)<br/>
-InTreePluginGCEUnregister=true|false (ALPHA - 默认值=false)<br/>
-InTreePluginOpenStackUnregister=true|false (ALPHA - 默认值=false)<br/>
-InTreePluginvSphereUnregister=true|false (ALPHA - 默认值=false)<br/>
-IndexedJob=true|false (ALPHA - 默认值=false)<br/>
-IngressClassNamespacedParams=true|false (ALPHA - 默认值=false)<br/>
-KubeletCredentialProviders=true|false (ALPHA - 默认值=false)<br/>
-KubeletPodResources=true|false (BETA - 默认值=true)<br/>
-KubeletPodResourcesGetAllocatable=true|false (ALPHA - 默认值=false)<br/>
-LocalStorageCapacityIsolation=true|false (BETA - 默认值=true)<br/>
-LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - 默认值=false)<br/>
-LogarithmicScaleDown=true|false (ALPHA - 默认值=false)<br/>
-MemoryManager=true|false (ALPHA - 默认值=false)<br/>
-MixedProtocolLBService=true|false (ALPHA - 默认值=false)<br/>
-NamespaceDefaultLabelName=true|false (BETA - 默认值=true)<br/>
-NetworkPolicyEndPort=true|false (ALPHA - 默认值=false)<br/>
-NonPreemptingPriority=true|false (BETA - 默认值=true)<br/>
-PodAffinityNamespaceSelector=true|false (ALPHA - 默认值=false)<br/>
-PodDeletionCost=true|false (ALPHA - 默认值=false)<br/>
-PodOverhead=true|false (BETA - 默认值=true)<br/>
-PreferNominatedNode=true|false (ALPHA - 默认值=false)<br/>
-ProbeTerminationGracePeriod=true|false (ALPHA - 默认值=false)<br/>
-ProcMountType=true|false (ALPHA - 默认值=false)<br/>
-QOSReserved=true|false (ALPHA - 默认值=false)<br/>
-RemainingItemCount=true|false (BETA - 默认值=true)<br/>
-RemoveSelfLink=true|false (BETA - 默认值=true)<br/>
-RotateKubeletServerCertificate=true|false (BETA - 默认值=true)<br/>
-ServerSideApply=true|false (BETA - 默认值=true)<br/>
-ServiceInternalTrafficPolicy=true|false (ALPHA - 默认值=false)<br/>
-ServiceLBNodePortControl=true|false (ALPHA - 默认值=false)<br/>
-ServiceLoadBalancerClass=true|false (ALPHA - 默认值=false)<br/>
-ServiceTopology=true|false (ALPHA - 默认值=false)<br/>
-SetHostnameAsFQDN=true|false (BETA - 默认值=true)<br/>
-SizeMemoryBackedVolumes=true|false (ALPHA - 默认值=false)<br/>
-StorageVersionAPI=true|false (ALPHA - 默认值=false)<br/>
-StorageVersionHash=true|false (BETA - 默认值=true)<br/>
-SuspendJob=true|false (ALPHA - 默认值=false)<br/>
-TTLAfterFinished=true|false (BETA - 默认值=true)<br/>
-TopologyAwareHints=true|false (ALPHA - 默认值=false)<br/>
-TopologyManager=true|false (BETA - 默认值=true)<br/>
-ValidateProxyRedirects=true|false (BETA - 默认值=true)<br/>
-VolumeCapacityPriority=true|false (ALPHA - 默认值=false)<br/>
-WarningHeaders=true|false (BETA - 默认值=true)<br/>
-WinDSR=true|false (ALPHA - 默认值=false)<br/>
-WinOverlay=true|false (BETA - 默认值=true)<br/>
-WindowsEndpointSliceProxying=true|false (BETA - 默认值=true)
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--hard-pod-affinity-symmetric-weight int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：1</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-DEPRECATED: RequiredDuringScheduling affinity is not symmetric, but there is an implicit PreferredDuringScheduling affinity rule corresponding to every RequiredDuringScheduling affinity rule. --hard-pod-affinity-symmetric-weight represents the weight of implicit PreferredDuringScheduling affinity rule. Must be in the range 0-100.This parameter is ignored if a config file is specified in --config.
--->
-已弃用: RequiredDuringScheduling 亲和性是不对称的，但是存在与每个
-RequiredDuringScheduling 关联性规则相对应的隐式 PreferredDuringScheduling 关联性规则。
-<code>--hard-pod-affinity-symmetric-weight</code> 代表隐式 PreferredDuringScheduling
-关联性规则的权重。权重必须在 0-100 范围内。
-如果 --config 指定了一个配置文件，那么这个参数将被忽略。
+APIListChunking=true|false (BETA - 默认值为 true)<br/>
+APIPriorityAndFairness=true|false (BETA - 默认值为 true)<br/>
+APIResponseCompression=true|false (BETA - 默认值为 true)<br/>
+APIServerIdentity=true|false (ALPHA - 默认值为 false)<br/>
+APIServerTracing=true|false (ALPHA - 默认值为 false)<br/>
+AllAlpha=true|false (ALPHA - 默认值为 false)<br/>
+AllBeta=true|false (BETA - 默认值为 false)<br/>
+AnyVolumeDataSource=true|false (BETA - 默认值为 true)<br/>
+AppArmor=true|false (BETA - 默认值为 true)<br/>
+CPUManager=true|false (BETA - 默认值为 true)<br/>
+CPUManagerPolicyAlphaOptions=true|false (ALPHA - 默认值为 false)<br/>
+CPUManagerPolicyBetaOptions=true|false (BETA - 默认值为 true)<br/>
+CPUManagerPolicyOptions=true|false (BETA - 默认值为 true)<br/>
+CSIInlineVolume=true|false (BETA - 默认值为 true)<br/>
+CSIMigration=true|false (BETA - 默认值为 true)<br/>
+CSIMigrationAWS=true|false (BETA - 默认值为 false)<br/>
+CSIMigrationAzureFile=true|false (BETA - 默认值为 false)<br/>
+CSIMigrationGCE=true|false (BETA - 默认值为 true)<br/>
+CSIMigrationPortworx=true|false (ALPHA - 默认值为 false)<br/>
+CSIMigrationRBD=true|false (ALPHA - 默认值为 false)<br/>
+CSIMigrationvSphere=true|false (BETA - 默认值为 false)<br/>
+CSIVolumeHealth=true|false (ALPHA - 默认值为 false)<br/>
+ContextualLogging=true|false (ALPHA - 默认值为 false)<br/>
+CronJobTimeZone=true|false (ALPHA - 默认值为 false)<br/>
+CustomCPUCFSQuotaPeriod=true|false (ALPHA - 默认值为 false)<br/>
+CustomResourceValidationExpressions=true|false (ALPHA - 默认值为 false)<br/>
+DaemonSetUpdateSurge=true|false (BETA - 默认值为 true)<br/>
+DelegateFSGroupToCSIDriver=true|false (BETA - 默认值为 true)<br/>
+DevicePlugins=true|false (BETA - 默认值为 true)<br/>
+DisableAcceleratorUsageMetrics=true|false (BETA - 默认值为 true)<br/>
+DisableCloudProviders=true|false (ALPHA - 默认值为 false)<br/>
+DisableKubeletCloudCredentialProviders=true|false (ALPHA - 默认值为 false)<br/>
+DownwardAPIHugePages=true|false (BETA - 默认值为 true)<br/>
+EndpointSliceTerminatingCondition=true|false (BETA - 默认值为 true)<br/>
+EphemeralContainers=true|false (BETA - 默认值为 true)<br/>
+ExpandedDNSConfig=true|false (ALPHA - 默认值为 false)<br/>
+ExperimentalHostUserNamespaceDefaulting=true|false (BETA - 默认值为 false)<br/>
+GRPCContainerProbe=true|false (BETA - 默认值为 true)<br/>
+GracefulNodeShutdown=true|false (BETA - 默认值为 true)<br/>
+GracefulNodeShutdownBasedOnPodPriority=true|false (BETA - 默认值为 true)<br/>
+HPAContainerMetrics=true|false (ALPHA - 默认值为 false)<br/>
+HPAScaleToZero=true|false (ALPHA - 默认值为 false)<br/>
+HonorPVReclaimPolicy=true|false (ALPHA - 默认值为 false)<br/>
+IdentifyPodOS=true|false (BETA - 默认值为 true)<br/>
+InTreePluginAWSUnregister=true|false (ALPHA - 默认值为 false)<br/>
+InTreePluginAzureDiskUnregister=true|false (ALPHA - 默认值为 false)<br/>
+InTreePluginAzureFileUnregister=true|false (ALPHA - 默认值为 false)<br/>
+InTreePluginGCEUnregister=true|false (ALPHA - 默认值为 false)<br/>
+InTreePluginOpenStackUnregister=true|false (ALPHA - 默认值为 false)<br/>
+InTreePluginPortworxUnregister=true|false (ALPHA - 默认值为 false)<br/>
+InTreePluginRBDUnregister=true|false (ALPHA - 默认值为 false)<br/>
+InTreePluginvSphereUnregister=true|false (ALPHA - 默认值为 false)<br/>
+obMutableNodeSchedulingDirectives=true|false (BETA - 默认值为 true)<br/>
+JobReadyPods=true|false (BETA - 默认值为 true)<br/>
+JobTrackingWithFinalizers=true|false (BETA - 默认值为 false)<br/>
+KubeletCredentialProviders=true|false (BETA - 默认值为 true)<br/>
+KubeletInUserNamespace=true|false (ALPHA - 默认值为 false)<br/>
+KubeletPodResources=true|false (BETA - 默认值为 true)<br/>
+KubeletPodResourcesGetAllocatable=true|false (BETA - 默认值为 true)<br/>
+LegacyServiceAccountTokenNoAutoGeneration=true|false (BETA - 默认值为 true)<br/>
+LocalStorageCapacityIsolation=true|false (BETA - 默认值为 true)<br/>
+LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - 默认值为 false)<br/>
+LogarithmicScaleDown=true|false (BETA - 默认值为 true)<br/>
+MaxUnavailableStatefulSet=true|false (ALPHA - 默认值为 false)<br/>
+MemoryManager=true|false (BETA - 默认值为 true)<br/>
+MemoryQoS=true|false (ALPHA - 默认值为 false)<br/>
+MinDomainsInPodTopologySpread=true|false (ALPHA - 默认值为 false)<br/>
+MixedProtocolLBService=true|false (BETA - 默认值为 true)<br/>
+NetworkPolicyEndPort=true|false (BETA - 默认值为 true)<br/>
+NetworkPolicyStatus=true|false (ALPHA - 默认值为 false)<br/>
+NodeOutOfServiceVolumeDetach=true|false (ALPHA - 默认值为 false)<br/>
+NodeSwap=true|false (ALPHA - 默认值为 false)<br/>
+OpenAPIEnums=true|false (BETA - 默认值为 true)<br/>
+OpenAPIV3=true|false (BETA - 默认值为 true)<br/>
+PodAndContainerStatsFromCRI=true|false (ALPHA - 默认值为 false)<br/>
+PodDeletionCost=true|false (BETA - 默认值为 true)<br/>
+PodSecurity=true|false (BETA - 默认值为 true)<br/>
+ProbeTerminationGracePeriod=true|false (BETA - 默认值为 false)<br/>
+ProcMountType=true|false (ALPHA - 默认值为 false)<br/>
+ProxyTerminatingEndpoints=true|false (ALPHA - 默认值为 false)<br/>
+QOSReserved=true|false (ALPHA - 默认值为 false)<br/>
+ReadWriteOncePod=true|false (ALPHA - 默认值为 false)<br/>
+RecoverVolumeExpansionFailure=true|false (ALPHA - 默认值为 false)<br/>
+RemainingItemCount=true|false (BETA - 默认值为 true)<br/>
+RotateKubeletServerCertificate=true|false (BETA - 默认值为 true)<br/>
+SeccompDefault=true|false (ALPHA - 默认值为 false)<br/>
+ServerSideFieldValidation=true|false (ALPHA - 默认值为 false)<br/>
+ServiceIPStaticSubrange=true|false (ALPHA - 默认值为 false)<br/>
+ServiceInternalTrafficPolicy=true|false (BETA - 默认值为 true)<br/>
+SizeMemoryBackedVolumes=true|false (BETA - 默认值为 true)<br/>
+StatefulSetAutoDeletePVC=true|false (ALPHA - 默认值为 false)<br/>
+StatefulSetMinReadySeconds=true|false (BETA - 默认值为 true)<br/>
+StorageVersionAPI=true|false (ALPHA - 默认值为 false)<br/>
+StorageVersionHash=true|false (BETA - 默认值为 true)<br/>
+TopologyAwareHints=true|false (BETA - 默认值为 true)<br/>
+TopologyManager=true|false (BETA - 默认值为 true)<br/>
+VolumeCapacityPriority=true|false (ALPHA - 默认值为 false)<br/>
+WinDSR=true|false (ALPHA - 默认值为 false)<br/>
+WinOverlay=true|false (BETA - 默认值为 true)<br/>
+WindowsHostProcessContainers=true|false (BETA - 默认值为 true)
 </td>
 </tr>
 
@@ -595,7 +516,7 @@ DEPRECATED: content type of requests sent to apiserver. This parameter is ignore
 </tr>
 
 <tr>
-<td colspan="2">--kube-api-qps float32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：50</td>
+<td colspan="2">--kube-api-qps float&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：50</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
@@ -666,10 +587,9 @@ The interval between attempts by the acting master to renew a leadership slot be
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The type of resource object that is used for locking during leader election. Supported options are 'endpoints', 'configmaps', 'leases', 'endpointsleases' and 'configmapsleases'.
+The type of resource object that is used for locking during leader election. Supported options are 'leases', 'endpointsleases' and 'configmapsleases'.
 -->
-在领导者选举期间用于锁定的资源对象的类型。支持的选项是 `endpoints`、
-`configmaps`、`leases`、`endpointleases` 和 `configmapsleases`。
+在领导者选举期间用于锁定的资源对象的类型。支持的选项有 `leases`、`endpointleases` 和 `configmapsleases`。
 </td>
 </tr>
 
@@ -736,55 +656,6 @@ DEPRECATED: define the namespace of the lock object. Will be removed in favor of
 </td>
 </tr>
 
-<tr>
-<td colspan="2">--log-backtrace-at &lt;a string in the form 'file:N'&gt;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
-<!--Default:-->默认值: 0</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-when logging hits line file:N, emit a stack trace
--->
-当记录命中行文件 <code>file</code> 的第 <code>N</code> 行时输出堆栈跟踪。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--log-dir string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If non-empty, write log files in this directory
--->
-如果为非空，则在此目录中写入日志文件。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--log-file string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If non-empty, use this log file
--->
-如果为非空，则使用此文件作为日志文件。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--log-file-max-size uint&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：1800</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Defines the maximum size a log file can grow to. Unit is megabytes. If the value is 0, the maximum file size is unlimited.
--->
-定义日志文件可以增长到的最大值。单位为兆字节。
-如果值为 0，则最大文件大小为无限制。
-</td>
-</tr>
 
 <tr>
 <td colspan="2">--log-flush-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：5s</td>
@@ -804,19 +675,19 @@ Maximum number of seconds between log flushes
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Sets the log format. Permitted formats: &quot;json&quot;, &quot;text&quot;.<br/>
+Sets the log format. Permitted formats: &quot;text&quot;.<br/>
 Non-default formats don't honor these flags: --add-dir-header, --alsologtostderr, --log-backtrace-at, 
 --log-dir, --log-file, --log-file-max-size, 
 --logtostderr, --one-output, --skip-headers, --skip-log-headers, 
---stderrthreshold, --vmodule, --log-flush-frequency.<br/>
+--stderrthreshold, --vmodule.<br/>
 Non-default choices are currently alpha and subject to change without warning.
 -->
-设置日志格式。可选格式：“json”，“text”。<br/>
+设置日志格式。可选格式：“text”。<br/>
 采用非默认格式时，以下标识不会生效：
 --add-dir-header, --alsologtostderr, --log-backtrace-at, 
 --log-dir, --log-file, --log-file-max-size, 
 --logtostderr, --one-output, --skip-headers, --skip-log-headers, 
---stderrthreshold, --vmodule, --log-flush-frequency.<br/>
+--stderrthreshold, --vmodule.<br/>
 非默认选项目前处于 Alpha 阶段，有可能会出现变更且无事先警告。
 </td>
 </tr>
@@ -845,18 +716,6 @@ Kubernetes API 服务器的地址（覆盖 kubeconfig 中的任何值）。
 </td>
 </tr>
 
-<tr>
-<td colspan="2">--one-output</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If true, only write logs to their native severity level (vs also writing to each lower severity level)
--->
-若此标志为 true，则日志仅写入其自身的严重性级别，而不会写入所有较低严重性级别。
-</td>
-</tr>
-
 <tr>
 <td colspan="2">--permit-address-sharing</td>
 </tr>
@@ -868,7 +727,7 @@ If true, SO_REUSEADDR will be used when binding the port. This allows binding to
 如果为 true，在绑定端口时将使用 SO_REUSEADDR。
 这将允许同时绑定诸如 0.0.0.0 这类通配符 IP和特定 IP，
 并且它避免等待内核释放处于 TIME_WAIT 状态的套接字。
-默认值： false
+默认值：false
 </td>
 </tr>
 
@@ -881,69 +740,30 @@ If true, SO_REUSEADDR will be used when binding the port. This allows binding to
 If true, SO_REUSEPORT will be used when binding the port, which allows more than one instance to bind on the same address and port. [default=false]
 -->
 如果此标志为 true，在绑定端口时会使用 SO_REUSEPORT，从而允许不止一个
-实例绑定到同一地址和端口。 
+实例绑定到同一地址和端口。
 默认值：false
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--policy-config-file string</td>
+
+<td colspan="2">--pod-max-in-unschedulable-pods-duration duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：5m0s</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-DEPRECATED: file with scheduler policy configuration. This file is used if policy ConfigMap is not provided or --use-legacy-policy-config=true. Note: The scheduler will fail if this is combined with Plugin configs
+DEPRECATED: the maximum time a pod can stay in unschedulablePods. If a pod stays in unschedulablePods for longer than this value, the pod will be moved from unschedulablePods to backoffQ or activeQ. This flag is deprecated and will be removed in 1.2.
 -->
-已弃用：包含调度器策略配置的文件。
-当策略 ConfigMap 为提供时，或者 <code>--use-legacy-policy-config=true</code> 时使用此文件。
-注意：当此标志与插件配置一起使用时，调度器会失败。
+已弃用：Pod 可以在 unschedulablePods 中停留的最长时间。
+如果 Pod 在 unschedulablePods 中停留的时间超过此值，则该 pod 将被从
+unschedulablePods 移动到 backoffQ 或 activeQ。
+此标志已弃用，将在 1.2 中删除。
+
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--policy-configmap string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-DEPRECATED: name of the ConfigMap object that contains scheduler's policy configuration. It must exist in the system namespace before scheduler initialization if --use-legacy-policy-config=false. The config must be provided as the value of an element in 'Data' map with the key='policy.cfg'. Note: The scheduler will fail if this is combined with Plugin configs
--->
-已弃用: 包含调度器策略配置的 ConfigMap 对象的名称。
-如果 --use-legacy-policy-config=false，则它必须在调度器初始化之前存在于
-系统命名空间中。配置数据必须对应 'data' 映射中键名为 'policy.cfg' 的元素的值。
-注意：如果与插件配置一起使用，调度器会失败。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--policy-configmap-namespace string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值："kube-system"</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-DEPRECATED: the namespace where policy ConfigMap is located. The kube-system namespace will be used if this is not provided or is empty. Note: The scheduler will fail if this is combined with Plugin configs
--->
-已弃用: 策略 ConfigMap 所在的名字空间。如果未提供或为空，则将使用 kube-system 名字空间。
-注意：如果与插件配置一起使用，调度器会失败。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--port int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：10251</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-DEPRECATED: the port on which to serve HTTP insecurely without authentication and authorization. If 0, don't serve plain HTTP at all. See --secure-port instead. This parameter is ignored if a config file is specified in --config.
--->
-已弃用： 在没有身份验证和鉴权的情况下不安全地为 HTTP 服务的端口。
-如果为 0，则根本不提供 HTTP。请参见 --secure-port。
-如果 --config 指定了一个配置文件，这个参数将被忽略。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--profiling&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值： true</td>
+<td colspan="2">--profiling&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：true</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
@@ -986,7 +806,7 @@ Root certificate bundle to use to verify client certificates on incoming request
 
 <tr>
 <td colspan="2">--requestheader-extra-headers-prefix strings&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
-<!--Default:-->默认值: "x-remote-extra-"</td>
+<!--Default:-->默认值："x-remote-extra-"</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
@@ -999,7 +819,7 @@ List of request header prefixes to inspect. X-Remote-Extra- is suggested.
 
 <tr>
 <td colspan="2">--requestheader-group-headers strings&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
-<!--Default:-->默认值: "x-remote-group"</td>
+<!--Default:-->默认值："x-remote-group"</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
@@ -1012,7 +832,7 @@ List of request headers to inspect for groups. X-Remote-Group is suggested.
 
 <tr>
 <td colspan="2">--requestheader-username-headers strings&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
-<!--Default:-->默认值: "x-remote-user"</td>
+<!--Default:-->默认值："x-remote-user"</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
@@ -1023,21 +843,6 @@ List of request headers to inspect for usernames. X-Remote-User is common.
 </td>
 </tr>
 
-<tr>
-<td colspan="2">--scheduler-name string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->
-默认值："default-scheduler"</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- 
-DEPRECATED: name of the scheduler, used to select which pods will be processed by this scheduler, based on pod's &quot;spec.schedulerName&quot;. This parameter is ignored if a config file is specified in --config.
--->
-已弃用: 调度器名称，用于根据 Pod 的 “spec.schedulerName” 选择此
-调度器将处理的 Pod。
-如果 --config 指定了一个配置文件，那么这个参数将被忽略
-</td>
-</tr>
-
 <tr>
 <td colspan="2">--secure-port int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：10259</td>
 </tr>
@@ -1065,41 +870,6 @@ The previous version for which you want to show hidden metrics. Only the previou
 </td>
 </tr>
 
-<tr>
-<td colspan="2">--skip-headers</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If true, avoid header prefixes in the log messages
--->
-如果为 true，日志消息中不再写入头部前缀。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--skip-log-headers</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If true, avoid headers when opening log files
--->
-如果为 true，则在打开日志文件时忽略其头部。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--stderrthreshold int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：2</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-logs at or above this threshold go to stderr
--->
-达到或超过此阈值的日志会被写入到标准错误输出。
-</td>
-</tr>
 
 <tr>
 <td colspan="2">--tls-cert-file string</td>
@@ -1109,7 +879,7 @@ logs at or above this threshold go to stderr
 <!--
 File containing the default x509 Certificate for HTTPS. (CA cert, if any, concatenated after server cert). If HTTPS serving is enabled, and --tls-cert-file and --tls-private-key-file are not provided, a self-signed certificate and key are generated for the public address and saved to the directory specified by --cert-dir.
 -->
-包含默认的 HTTPS x509 证书的文件。（CA证书（如果有）在服务器证书之后并置）。
+包含默认的 HTTPS x509 证书的文件。（如果有 CA 证书，在服务器证书之后并置）。
 如果启用了 HTTPS 服务，并且未提供 <code>--tls-cert-file</code> 和
 <code>--tls-private-key-file</code>，则会为公共地址生成一个自签名证书和密钥，
 并将其保存到 <code>--cert-dir</code> 指定的目录中。
@@ -1174,20 +944,7 @@ A pair of x509 certificate and private key file paths, optionally suffixed with
 如果未提供域名匹配模式，则提取证书名称。
 非通配符匹配优先于通配符匹配，显式域名匹配优先于提取而来的名称。
 若有多个密钥/证书对，可多次使用 <code>--tls-sni-cert-key</code>。
-例子: "example.crt,example.key" 或者 "foo.crt,foo.key:*.foo.com,foo.com"。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--use-legacy-policy-config</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-DEPRECATED: when set to true, scheduler will ignore policy ConfigMap and uses policy config file. Note: The scheduler will fail if this is combined with Plugin configs
--->
-已弃用：设置为 true 时，调度程序将忽略策略 ConfigMap 并使用策略配置文件。
-注意：当此标志与插件配置一起使用时，调度器会失败。
+例如: "example.crt,example.key" 或者 "foo.crt,foo.key:*.foo.com,foo.com"。
 </td>
 </tr>
 
@@ -1216,14 +973,14 @@ Print version information and quit
 </tr>
 
 <tr>
-<td colspan="2">--vmodule &lt;<!--comma-separated 'pattern=N' settings-->逗号分隔的 ‘模式=N’ 配置列表&gt;</td>
+<td colspan="2">--vmodule pattern=N,...</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-comma-separated list of pattern=N settings for file-filtered logging
+comma-separated list of pattern=N settings for file-filtered logging (only works for text log format)
 -->
-以逗号分隔的 ‘模式=N’ 设置列表，用于文件过滤的日志记录。
+以逗号分隔的 “pattern=N” 设置列表，用于文件过滤的日志记录（仅适用于文本日志格式）。
 </td>
 </tr>
 
@@ -1235,7 +992,7 @@ comma-separated list of pattern=N settings for file-filtered logging
 <!--
 If set, write the configuration values to this file and exit.
 -->
-如果已设置，将配置值写入此文件并退出。
+如果设置此参数，将配置值写入此文件并退出。
 </td>
 </tr>
 
@@ -1244,5 +1001,3 @@ If set, write the configuration values to this file and exit.
 
 
 
-
-
diff --git a/content/zh-cn/docs/reference/command-line-tools-reference/kubelet.md b/content/zh-cn/docs/reference/command-line-tools-reference/kubelet.md
new file mode 100644
index 0000000000..5c45115899
--- /dev/null
+++ b/content/zh-cn/docs/reference/command-line-tools-reference/kubelet.md
@@ -0,0 +1,2382 @@
+---
+title: kubelet
+content_type: tool-reference
+weight: 28
+---
+
+## {{% heading "synopsis" %}}
+
+
+<!--
+The kubelet is the primary "node agent" that runs on each node. It can
+register the node with the apiserver using one of: the hostname; a flag to
+override the hostname; or specific logic for a cloud provider.
+-->
+kubelet 是在每个 Node 节点上运行的主要 “节点代理”。它可以使用以下之一向 apiserver 注册：
+主机名（hostname）；覆盖主机名的参数；某云驱动的特定逻辑。
+
+<!--
+The kubelet works in terms of a PodSpec. A PodSpec is a YAML or JSON object
+that describes a pod. The kubelet takes a set of PodSpecs that are provided
+through various mechanisms (primarily through the apiserver) and ensures that
+the containers described in those PodSpecs are running and healthy. The
+kubelet doesn't manage containers which were not created by Kubernetes.
+-->
+kubelet 是基于 PodSpec 来工作的。每个 PodSpec 是一个描述 Pod 的 YAML 或 JSON 对象。
+kubelet 接受通过各种机制（主要是通过 apiserver）提供的一组 PodSpec，并确保这些
+PodSpec 中描述的容器处于运行状态且运行状况良好。
+kubelet 不管理不是由 Kubernetes 创建的容器。
+
+<!--
+Other than from a PodSpec from the apiserver, there are three ways that a
+container manifest can be provided to the Kubelet.
+-->
+除了来自 apiserver 的 PodSpec 之外，还可以通过以下三种方式将容器清单（manifest）提供给 kubelet。
+
+<!--
+- File: Path passed as a flag on the command line. Files under this path will be
+  monitored periodically for updates. The monitoring period is 20s by default
+  and is configurable via a flag.
+-->
+- 文件（File）：利用命令行参数传递路径。kubelet 周期性地监视此路径下的文件是否有更新。
+  监视周期默认为 20s，且可通过参数进行配置。
+
+<!--
+- HTTP endpoint: HTTP endpoint passed as a parameter on the command line. This
+  endpoint is checked every 20 seconds (also configurable with a flag).
+-->
+- HTTP 端点（HTTP endpoint）：利用命令行参数指定 HTTP 端点。
+  此端点的监视周期默认为 20 秒，也可以使用参数进行配置。
+
+<!--
+- HTTP server: The kubelet can also listen for HTTP and respond to a simple API
+  (underspec'd currently) to submit a new manifest.
+-->
+- HTTP 服务器（HTTP server）：kubelet 还可以侦听 HTTP 并响应简单的 API
+  （目前没有完整规范）来提交新的清单。
+
+```
+kubelet [flags]
+```
+
+## {{% heading "options" %}}
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--add-dir-header</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+If true, adds the file directory to the header of the log messages (DEPRECATED: will be removed in a future release, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">here</a>.)
+-->
+设置为 true 表示将文件目录添加到日志消息的头部
+（已弃用：将在未来的版本中删除，<a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">进一步了解</a>。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--address string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：0.0.0.0</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The IP address for the Kubelet to serve on (set to <code>0.0.0.0</code> for all IPv4 interfaces and <code>::</code> for all IPv6 interfaces)  (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+kubelet 用来提供服务的 IP 地址（设置为<code>0.0.0.0</code> 表示使用所有 IPv4 接口，
+设置为 <code>::</code> 表示使用所有 IPv6 接口）。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--allowed-unsafe-sysctls strings</td>
+</tr>  
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Comma-separated whitelist of unsafe sysctls or unsafe sysctl patterns (ending in <code>*</code>). Use these at your own risk. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+用逗号分隔的字符串序列设置允许使用的非安全的 sysctls 或 sysctl 模式（以 <code>*</code> 结尾）。
+使用此参数时风险自担。（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--alsologtostderr</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Log to standard error as well as files (DEPRECATED: will be removed in a future release, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">here</a>.)
+-->
+设置为 true 表示将日志输出到文件的同时输出到 stderr
+（已弃用：将在未来的版本中删除，<a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">进一步了解</a>。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--anonymous-auth&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：true</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Enables anonymous requests to the Kubelet server. Requests that are not rejected by another authentication method are treated as anonymous requests. Anonymous requests have a username of <code>system:anonymous</code>, and a group name of <code>system:unauthenticated</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+设置为 true 表示 kubelet 服务器可以接受匿名请求。未被任何认证组件拒绝的请求将被视为匿名请求。
+匿名请求的用户名为 <code>system:anonymous</code>，用户组为 <code>system:unauthenticated</code>。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--authentication-token-webhook</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Use the TokenReview API to determine authentication for bearer tokens. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+使用 <code>TokenReview</code> API 对持有者令牌进行身份认证。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--authentication-token-webhook-cache-ttl duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：<code>2m0s</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The duration to cache responses from the webhook token authenticator. (default 2m0s) (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+对 Webhook 令牌认证组件所返回的响应的缓存时间。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--authorization-mode string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Authorization mode for Kubelet server. Valid options are <code>AlwaysAllow</code> or <code>Webhook</code>. <code>Webhook</code> mode uses the <code>SubjectAccessReview</code> API to determine authorization. (default "AlwaysAllow" when <code>--config</code> flag is not provided; "Webhook" when <code>--config</code> flag presents.) (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+kubelet 服务器的鉴权模式。可选值包括：<code>AlwaysAllow</code>、<code>Webhook</code>。<code>Webhook</code> 模式使用 <code>SubjectAccessReview</code> API 鉴权。
+当 <code>--config</code> 参数未被设置时，默认值为 <code>AlwaysAllow</code>，当使用了
+<code>--config</code> 时，默认值为 <code>Webhook</code>。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--authorization-webhook-cache-authorized-ttl duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：<code>5m0s</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The duration to cache 'authorized' responses from the webhook authorizer. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+对 Webhook 认证组件所返回的 “Authorized（已授权）” 应答的缓存时间。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--authorization-webhook-cache-unauthorized-ttl duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>30s</code>-->默认值：<code>30s</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The duration to cache 'unauthorized' responses from the webhook authorizer. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+对 Webhook 认证组件所返回的 “Unauthorized（未授权）” 应答的缓存时间。
+<code>--config</code> 时，默认值为 <code>Webhook</code>。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--azure-container-registry-config string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Path to the file container Azure container registry configuration information.
+-->
+包含 Azure 容器镜像库配置信息的文件的路径。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--bootstrap-kubeconfig string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Path to a kubeconfig file that will be used to get client certificate for kubelet. If the file specified by <code>--kubeconfig</code> does not exist, the bootstrap kubeconfig is used to request a client certificate from the API server. On success, a kubeconfig file referencing the generated client certificate and key is written to the path specified by <code>--kubeconfig</code>. The client certificate and key file will be stored in the directory pointed by <code>--cert-dir</code>.
+-->
+某 kubeconfig 文件的路径，该文件将用于获取 kubelet 的客户端证书。
+如果 <code>--kubeconfig</code> 所指定的文件不存在，则使用引导所用 kubeconfig
+从 API 服务器请求客户端证书。成功后，将引用生成的客户端证书和密钥的 kubeconfig
+写入 --kubeconfig 所指定的路径。客户端证书和密钥文件将存储在 <code>--cert-dir</code>
+所指的目录。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--cert-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>/var/lib/kubelet/pki</code>-->默认值：<code>/var/lib/kubelet/pki</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The directory where the TLS certs are located. If <code>--tls-cert-file</code> and <code>--tls-private-key-file</code> are provided, this flag will be ignored.
+-->
+TLS 证书所在的目录。如果设置了 <code>--tls-cert-file</code> 和 <code>--tls-private-key-file</code>，
+则此标志将被忽略。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--cgroup-driver string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!-- Default: <code>cgroupfs</code>-->默认值：<code>cgroupfs</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Driver that the kubelet uses to manipulate cgroups on the host.  Possible values: <code>cgroupfs</code>, <code>systemd</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+kubelet 用来操作本机 cgroup 时使用的驱动程序。支持的选项包括 <code>cgroupfs</code>
+和 <code>systemd</code>。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--cgroup-root string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>''</code>-->默认值：<code>""</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Optional root cgroup to use for pods. This is handled by the container runtime on a best effort basis. Default: '', which means use the container runtime default. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+可选的选项，为 Pod 设置根 cgroup。容器运行时会尽可能使用此配置。
+默认值 <code>""</code> 意味着将使用容器运行时的默认设置。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--cgroups-per-qos&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!-- Default: <code>true</code>-->默认值：<code>true</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Enable creation of QoS cgroup hierarchy, if true top level QoS and pod cgroups are created. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+启用创建 QoS cgroup 层次结构。此值为 true 时 kubelet 为 QoS 和 Pod 创建顶级的 cgroup。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--client-ca-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+If set, any request presenting a client certificate signed by one of the authorities in the client-ca-file is authenticated with an identity corresponding to the CommonName of the client certificate. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+如果设置了此参数，则使用对应文件中机构之一检查请求中所携带的客户端证书。
+若客户端证书通过身份认证，则其对应身份为其证书中所设置的 CommonName。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--cloud-config string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The path to the cloud provider configuration file. Empty string for no configuration file. (DEPRECATED: will be removed in  1.24 or later, in favor of removing cloud providers code from Kubelet.)
+-->
+云驱动配置文件的路径。空字符串表示没有配置文件。
+已弃用：将在 1.24 或更高版本中移除，以便于从 kubelet 中去除云驱动代码。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--cloud-provider string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The provider for cloud services. Set to empty string for running with no cloud provider. If set, the cloud provider determines the name of the node (consult cloud provider documentation to determine if and how the hostname is used). (DEPRECATED: will be removed in 1.24 or later, in favor of removing cloud provider code from Kubelet.)
+-->
+云服务的提供者。设置为空字符串表示在没有云驱动的情况下运行。
+如果设置了此标志，则云驱动负责确定节点的名称（参考云提供商文档以确定是否以及如何使用主机名）。
+已弃用：将在 1.24 或更高版本中移除，以便于从 kubelet 中去除云驱动代码。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--cluster-dns strings</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Comma-separated list of DNS server IP address. This value is used for containers DNS server in case of Pods with "dnsPolicy=ClusterFirst". Note: all DNS servers appearing in the list MUST serve the same set of records otherwise name resolution within the cluster may not work correctly. There is no guarantee as to which DNS server may be contacted for name resolution. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+DNS 服务器的 IP 地址，以逗号分隔。此标志值用于 Pod 中设置了 “<code>dnsPolicy=ClusterFirst</code>”
+时为容器提供 DNS 服务。注意：列表中出现的所有 DNS 服务器必须包含相同的记录组，
+否则集群中的名称解析可能无法正常工作。至于名称解析过程中会牵涉到哪些 DNS 服务器，
+这一点无法保证。
+<code>--config</code> 时，默认值为 <code>Webhook</code>。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--cluster-domain string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Domain for this cluster. If set, kubelet will configure all containers to search this domain in addition to the host's search domains (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+集群的域名。如果设置了此值，kubelet 除了将主机的搜索域配置到所有容器之外，还会为其
+配置所搜这里指定的域名。
+<code>--config</code> 时，默认值为 <code>Webhook</code>。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--config string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The Kubelet will load its initial configuration from this file. The path may be absolute or relative; relative paths start at the Kubelet's current working directory. Omit this flag to use the built-in default configuration values. Command-line flags override configuration from this file.
+-->
+kubelet 将从此标志所指的文件中加载其初始配置。此路径可以是绝对路径，也可以是相对路径。
+相对路径按 kubelet 的当前工作目录起计。省略此参数时 kubelet 会使用内置的默认配置值。
+命令行参数会覆盖此文件中的配置。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--container-log-max-files int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 5-->默认值：5</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Set the maximum number of container log files that can be present for a container. The number must be &ge; 2. This flag can only be used with <code>--container-runtime=remote</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+设置容器的日志文件个数上限。此值必须不小于 2。
+此标志只能与 <code>--container-runtime=remote</code> 标志一起使用。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>    
+
+<tr>
+<td colspan="2">--container-log-max-size string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!-- Default: <code>10Mi</code>-->默认值：<code>10Mi</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Set the maximum size (e.g. 10Mi) of container log file before it is rotated. This flag can only be used with <code>--container-runtime=remote</code>.  (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+设置容器日志文件在轮换生成新文件时之前的最大值（例如，<code>10Mi</code>）。
+此标志只能与 <code>--container-runtime=remote</code> 标志一起使用。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--container-runtime string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>remote</code>-->默认值：<code>remote</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The container runtime to use. Possible values: <code>docker</code>, <code>remote</code>.
+-->
+要使用的容器运行时。目前支持 <code>docker<code>、</code>remote</code>。
+<!--
+(DEPRECATED: will be removed in 1.27 as the only valid value is 'remote')
+-->
+（已弃用：将会在 1.27 版本中移除，因为合法值只有 “remote”）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--container-runtime-endpoint string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The endpoint of remote runtime service. Unix Domain Sockets are supported on Linux, while npipe and tcp endpoints are supported on windows. Examples: <code>unix:///var/run/dockershim.sock</code>, <code>npipe:////./pipe/dockershim</code>.
+-->
+远程运行时服务的端点。目前支持 Linux 系统上的 UNIX 套接字和
+Windows 系统上的 npipe 和 TCP 端点。例如：
+<code>unix:///var/run/dockershim.sock</code>、
+<code>npipe:////./pipe/dockershim</code>。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--contention-profiling</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Enable lock contention profiling, if profiling is enabled (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+当启用了性能分析时，启用锁竞争分析。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--cpu-cfs-quota&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>true</code>-->默认值：<code>true</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Enable CPU CFS quota enforcement for containers that specify CPU limits (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+为设置了 CPU 限制的容器启用 CPU CFS 配额保障。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--cpu-cfs-quota-period duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>100ms</code>-->默认值：<code>100ms</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Sets CPU CFS quota period value, <code>cpu.cfs_period_us</code>, defaults to Linux Kernel default. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+设置 CPU CFS 配额周期 <code>cpu.cfs_period_us</code>。默认使用 Linux 内核所设置的默认值。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--cpu-manager-policy string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值：<code>none</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+CPU Manager policy to use. Possible values: 'none', 'static'. Default: 'none' (default "none") (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+要使用的 CPU 管理器策略。可选值包括：<code>none</code> 和 <code>static</code>。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--cpu-manager-policy-options mapStringString</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+A set of key=value CPU Manager policy options to use, to fine tune their behaviour. If not supplied, keep the default behaviour. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+一组用于微调其行为的 key=value CPU 管理器策略选项。如果未提供，请保留默认行为。 
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。 
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--cpu-manager-reconcile-period duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>10s</code>-->默认值：<code>10s</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+&lt;Warning: Alpha feature&gt; CPU Manager reconciliation period. Examples: <code>10s</code>, or <code>1m</code>. If not supplied, defaults to node status update frequency. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+&lt;警告：alpha 特性&gt; 设置 CPU 管理器的调和时间。例如：<code>10s</code> 或者 <code>1m</code>。
+如果未设置，默认使用节点状态更新频率。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--enable-controller-attach-detach&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>true</code>-->默认值：<code>true</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Enables the Attach/Detach controller to manage attachment/detachment of volumes scheduled to this node, and disables kubelet from executing any attach/detach operations. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+启用 Attach/Detach 控制器来挂接和摘除调度到该节点的卷，同时禁用 kubelet 执行挂接和摘除操作。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--enable-debugging-handlers&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>true</code>-->默认值：<code>true</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Enables server endpoints for log collection and local running of containers and commands. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+启用服务器上用于日志收集和在本地运行容器和命令的端点。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--enable-server&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!-- Default: <code>true</code>-->默认值：<code>true</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Enable the Kubelet's server. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+启用 kubelet 服务器。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--enforce-node-allocatable strings&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>pods</code>-->默认值：<code>pods</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+A comma separated list of levels of node allocatable enforcement to be enforced by kubelet. Acceptable options are <code>none</code>, <code>pods</code>, <code>system-reserved</code>, and <code>kube-reserved</code>. If the latter two options are specified, <code>--system-reserved-cgroup</code> and <code>--kube-reserved-cgroup</code> must also be set, respectively. If <code>none</code> is specified, no additional options should be set. See https://kubernetes.io/docs/tasks/administer-cluster/reserve-compute-resources/ for more details. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+用逗号分隔的列表，包含由 kubelet 强制执行的节点可分配资源级别。
+可选配置为：<code>none</code>、<code>pods</code>、<code>system-reserved</code> 和 <code>kube-reserved</code>。
+在设置 <code>system-reserved</code> 和 <code>kube-reserved</code> 这两个值时，同时要求设置
+<code>--system-reserved-cgroup</code> 和 <code>--kube-reserved-cgroup</code> 这两个参数。
+如果设置为 <code>none</code>，则不需要设置其他参数。
+<a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/reserve-compute-resources/">参考相关文档</a>。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--event-burst int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!-- Default: 10-->默认值：10</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Maximum size of a bursty event records, temporarily allows event records to burst to this number, while still not exceeding <code>--event-qps</code>. Only used if <code>--event-qps</code> &gt; 0. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+事件记录的个数的突发峰值上限，在遵从 <code>--event-qps</code> 阈值约束的前提下
+临时允许事件记录达到此数目。仅在 <code>--event-qps</code> 大于 0 时使用。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--event-qps int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 5-->默认值：5</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+If &gt; <code>0</code>, limit event creations per second to this value. If <code>0</code>, unlimited. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+设置大于 0 的值表示限制每秒可生成的事件数量。设置为 0 表示不限制。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--eviction-hard string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>imagefs.available<15%,memory.available<100Mi,nodefs.available<10%</code>-->默认值：<code>imagefs.available&lt;15%,memory.available&lt;100Mi,nodefs.available&lt;10%</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+A set of eviction thresholds (e.g. <code>memory.available<1Gi</code>) that if met would trigger a pod eviction. On a Linux node, the default value also includes <code>nodefs.inodesFree<5%</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+触发 Pod 驱逐操作的一组硬性门限（例如：<code>memory.available&lt;1Gi</code>
+（内存可用值小于 1G）设置。在 Linux 节点上，默认值还包括
+<code>nodefs.inodesFree<5%</code>。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--eviction-max-pod-grace-period int32</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Maximum allowed grace period (in seconds) to use when terminating pods in response to a soft eviction threshold being met. If negative, defer to pod specified value. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+响应满足软性驱逐阈值（Soft Eviction Threshold）而终止 Pod 时使用的最长宽限期（以秒为单位）。
+如果设置为负数，则遵循 Pod 的指定值。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--eviction-minimum-reclaim mapStringString</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+A set of minimum reclaims (e.g. <code>imagefs.available=2Gi</code>) that describes the minimum amount of resource the kubelet will reclaim when performing a pod eviction if that resource is under pressure. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+当某资源压力过大时，kubelet 将执行 Pod 驱逐操作。
+此参数设置软性驱逐操作需要回收的资源的最小数量（例如：<code>imagefs.available=2Gi</code>）。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--eviction-pressure-transition-period duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>5m0s</code>-->默认值：<code>5m0s</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Duration for which the kubelet has to wait before transitioning out of an eviction pressure condition. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+kubelet 在驱逐压力状况解除之前的最长等待时间。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--eviction-soft mapStringString</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+A set of eviction thresholds (e.g. <code>memory.available>1.5Gi</code>) that if met over a corresponding grace period would trigger a pod eviction. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+设置一组驱逐阈值（例如：<code>memory.available&lt;1.5Gi</code>）。
+如果在相应的宽限期内达到该阈值，则会触发 Pod 驱逐操作。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--eviction-soft-grace-period mapStringString</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+A set of eviction grace periods (e.g. <code>memory.available=1m30s</code>) that correspond to how long a soft eviction threshold must hold before triggering a pod eviction. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+设置一组驱逐宽限期（例如，<code>memory.available=1m30s</code>），对应于触发软性 Pod
+驱逐操作之前软性驱逐阈值所需持续的时间长短。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--exit-on-lock-contention</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Whether kubelet should exit upon lock-file contention.
+-->
+设置为 true 表示当发生锁文件竞争时 kubelet 可以退出。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--experimental-allocatable-ignore-eviction&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>false</code>-->默认值：<code>false</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+When set to <code>true</code>, Hard eviction thresholds will be ignored while calculating node allocatable. See https://kubernetes.io/docs/tasks/administer-cluster/reserve-compute-resources/ for more details. (DEPRECATED: will be removed in 1.24 or later)
+-->
+设置为 <code>true</code> 表示在计算节点可分配资源数量时忽略硬性逐出阈值设置。
+参考<a href="https://kubernetes.io/docs/tasks/administer-cluster/reserve-compute-resources/">
+相关文档</a>。
+已启用：将在 1.24 或更高版本中移除。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--experimental-kernel-memcg-notification</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+If enabled, the kubelet will integrate with the kernel memcg notification to determine if memory eviction thresholds are crossed rather than polling. This flag will be removed in 1.24 or later. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+设置为 true 表示 kubelet 将会集成内核的 memcg 通知机制而不是使用轮询机制来
+判断是否达到了内存驱逐阈值。
+此标志将在 1.24 或更高版本移除。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--experimental-mounter-path string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>mount</code>-->默认值：<code>mount</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+[Experimental] Path of mounter binary. Leave empty to use the default <code>mount</code>. (DEPRECATED: will be removed in 1.24 or later, in favor of using CSI.)
+-->
+[实验性特性] 卷挂载器（mounter）的可执行文件的路径。设置为空表示使用默认挂载器 <code>mount</code>。
+已弃用：将在 1.24 或更高版本移除以支持 CSI。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--fail-swap-on&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>true</code>-->默认值：<code>true</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Makes the Kubelet fail to start if swap is enabled on the node. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+设置为 true 表示如果主机启用了交换分区，kubelet 将直接失败。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--feature-gates mapStringBool</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+A set of <code>key=value</code> pairs that describe feature gates for alpha/experimental features. Options are:<br/>
+APIListChunking=true|false (BETA - default=true)<br/>
+APIPriorityAndFairness=true|false (BETA - default=true)<br/>
+APIResponseCompression=true|false (BETA - default=true)<br/>
+APIServerIdentity=true|false (ALPHA - default=false)<br/>
+APIServerTracing=true|false (ALPHA - default=false)<br/>
+AllAlpha=true|false (ALPHA - default=false)<br/>
+AllBeta=true|false (BETA - default=false)<br/>
+AnyVolumeDataSource=true|false (BETA - default=true)<br/>
+AppArmor=true|false (BETA - default=true)<br/>
+CPUManager=true|false (BETA - default=true)<br/>
+CPUManagerPolicyAlphaOptions=true|false (ALPHA - default=false)<br/>
+CPUManagerPolicyBetaOptions=true|false (BETA - default=true)<br/>
+CPUManagerPolicyOptions=true|false (BETA - default=true)<br/>
+CSIInlineVolume=true|false (BETA - default=true)<br/>
+CSIMigration=true|false (BETA - default=true)<br/>
+CSIMigrationAWS=true|false (BETA - default=true)<br/>
+CSIMigrationAzureFile=true|false (BETA - default=true)<br/>
+CSIMigrationGCE=true|false (BETA - default=true)<br/>
+CSIMigrationPortworx=true|false (ALPHA - default=false)<br/>
+CSIMigrationRBD=true|false (ALPHA - default=false)<br/>
+CSIMigrationvSphere=true|false (BETA - default=false)<br/>
+CSIVolumeHealth=true|false (ALPHA - default=false)<br/>
+ContextualLogging=true|false (ALPHA - default=false)<br/>
+CronJobTimeZone=true|false (ALPHA - default=false)<br/>
+CustomCPUCFSQuotaPeriod=true|false (ALPHA - default=false)<br/>
+CustomResourceValidationExpressions=true|false (ALPHA - default=false)<br/>
+DaemonSetUpdateSurge=true|false (BETA - default=true)<br/>
+DelegateFSGroupToCSIDriver=true|false (BETA - default=true)<br/>
+DevicePlugins=true|false (BETA - default=true)<br/>
+DisableAcceleratorUsageMetrics=true|false (BETA - default=true)<br/>
+DisableCloudProviders=true|false (ALPHA - default=false)<br/>
+DisableKubeletCloudCredentialProviders=true|false (ALPHA - default=false)<br/>
+DownwardAPIHugePages=true|false (BETA - default=true)<br/>
+EndpointSliceTerminatingCondition=true|false (BETA - default=true)<br/>
+EphemeralContainers=true|false (BETA - default=true)<br/>
+ExpandedDNSConfig=true|false (ALPHA - default=false)<br/>
+ExperimentalHostUserNamespaceDefaulting=true|false (BETA - default=false)<br/>
+GRPCContainerProbe=true|false (BETA - default=true)<br/>
+GracefulNodeShutdown=true|false (BETA - default=true)<br/>
+GracefulNodeShutdownBasedOnPodPriority=true|false (BETA - default=true)<br/>
+HPAContainerMetrics=true|false (ALPHA - default=false)<br/>
+HPAScaleToZero=true|false (ALPHA - default=false)<br/>
+HonorPVReclaimPolicy=true|false (ALPHA - default=false)<br/>
+IdentifyPodOS=true|false (BETA - default=true)<br/>
+InTreePluginAWSUnregister=true|false (ALPHA - default=false)<br/>
+InTreePluginAzureDiskUnregister=true|false (ALPHA - default=false)<br/>
+InTreePluginAzureFileUnregister=true|false (ALPHA - default=false)<br/>
+InTreePluginGCEUnregister=true|false (ALPHA - default=false)<br/>
+InTreePluginOpenStackUnregister=true|false (ALPHA - default=false)<br/>
+InTreePluginPortworxUnregister=true|false (ALPHA - default=false)<br/>
+InTreePluginRBDUnregister=true|false (ALPHA - default=false)<br/>
+InTreePluginvSphereUnregister=true|false (ALPHA - default=false)<br/>
+JobMutableNodeSchedulingDirectives=true|false (BETA - default=true)<br/>
+JobReadyPods=true|false (BETA - default=true)<br/>
+JobTrackingWithFinalizers=true|false (BETA - default=false)<br/>
+KubeletCredentialProviders=true|false (BETA - default=true)<br/>
+KubeletInUserNamespace=true|false (ALPHA - default=false)<br/>
+KubeletPodResources=true|false (BETA - default=true)<br/>
+KubeletPodResourcesGetAllocatable=true|false (BETA - default=true)<br/>
+LegacyServiceAccountTokenNoAutoGeneration=true|false (BETA - default=true)<br/>
+LocalStorageCapacityIsolation=true|false (BETA - default=true)<br/>
+LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - default=false)<br/>
+LogarithmicScaleDown=true|false (BETA - default=true)<br/>
+MaxUnavailableStatefulSet=true|false (ALPHA - default=false)<br/>
+MemoryManager=true|false (BETA - default=true)<br/>
+MemoryQoS=true|false (ALPHA - default=false)<br/>
+MinDomainsInPodTopologySpread=true|false (ALPHA - default=false)<br/>
+MixedProtocolLBService=true|false (BETA - default=true)<br/>
+NetworkPolicyEndPort=true|false (BETA - default=true)<br/>
+NetworkPolicyStatus=true|false (ALPHA - default=false)<br/>
+NodeOutOfServiceVolumeDetach=true|false (ALPHA - default=false)<br/>
+NodeSwap=true|false (ALPHA - default=false)<br/>
+OpenAPIEnums=true|false (BETA - default=true)<br/>
+OpenAPIV3=true|false (BETA - default=true)<br/>
+PodAndContainerStatsFromCRI=true|false (ALPHA - default=false)<br/>
+PodDeletionCost=true|false (BETA - default=true)<br/>
+PodSecurity=true|false (BETA - default=true)<br/>
+ProbeTerminationGracePeriod=true|false (BETA - default=false)<br/>
+ProcMountType=true|false (ALPHA - default=false)<br/>
+ProxyTerminatingEndpoints=true|false (ALPHA - default=false)<br/>
+QOSReserved=true|false (ALPHA - default=false)<br/>
+ReadWriteOncePod=true|false (ALPHA - default=false)<br/>
+RecoverVolumeExpansionFailure=true|false (ALPHA - default=false)<br/>
+RemainingItemCount=true|false (BETA - default=true)<br/>
+RotateKubeletServerCertificate=true|false (BETA - default=true)<br/>
+SeccompDefault=true|false (ALPHA - default=false)<br/>
+ServerSideFieldValidation=true|false (ALPHA - default=false)<br/>
+ServiceIPStaticSubrange=true|false (ALPHA - default=false)<br/>
+ServiceInternalTrafficPolicy=true|false (BETA - default=true)<br/>
+SizeMemoryBackedVolumes=true|false (BETA - default=true)<br/>
+StatefulSetAutoDeletePVC=true|false (ALPHA - default=false)<br/>
+StatefulSetMinReadySeconds=true|false (BETA - default=true)<br/>
+StorageVersionAPI=true|false (ALPHA - default=false)<br/>
+StorageVersionHash=true|false (BETA - default=true)<br/>
+TopologyAwareHints=true|false (BETA - default=true)<br/>
+TopologyManager=true|false (BETA - default=true)<br/>
+VolumeCapacityPriority=true|false (ALPHA - default=false)<br/>
+WinDSR=true|false (ALPHA - default=false)<br/>
+WinOverlay=true|false (BETA - default=true)<br/>
+WindowsHostProcessContainers=true|false (BETA - default=true)<br/>
+(DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)</td>
+-->
+用于 alpha 实验性特性的特性开关组，每个开关以 key=value 形式表示。当前可用开关包括：</br>
+APIListChunking=true|false (BETA - 默认值为 true)<br/>
+APIPriorityAndFairness=true|false (BETA - 默认值为 true)<br/>
+APIResponseCompression=true|false (BETA - 默认值为 true)<br/>
+APIServerIdentity=true|false (ALPHA - 默认值为 false)<br/>
+APIServerTracing=true|false (ALPHA - 默认值为 false)<br/>
+AllAlpha=true|false (ALPHA - 默认值为 false)<br/>
+AllBeta=true|false (BETA - 默认值为 false)<br/>
+AnyVolumeDataSource=true|false (BETA - 默认值为 true)<br/>
+AppArmor=true|false (BETA - 默认值为 true)<br/>
+CPUManager=true|false (BETA - 默认值为 true)<br/>
+CPUManagerPolicyAlphaOptions=true|false (ALPHA - 默认值为 false)<br/>
+CPUManagerPolicyBetaOptions=true|false (BETA - 默认值为 true)<br/>
+CPUManagerPolicyOptions=true|false (BETA - 默认值为 true)<br/>
+CSIInlineVolume=true|false (BETA - 默认值为 true)<br/>
+CSIMigration=true|false (BETA - 默认值为 true)<br/>
+CSIMigrationAWS=true|false (BETA - 默认值为 true)<br/>
+CSIMigrationAzureFile=true|false (BETA - 默认值为 true)<br/>
+CSIMigrationGCE=true|false (BETA - 默认值为 true)<br/>
+CSIMigrationPortworx=true|false (ALPHA - 默认值为 false)<br/>
+CSIMigrationRBD=true|false (ALPHA - 默认值为 false)<br/>
+CSIMigrationvSphere=true|false (BETA - 默认值为 false)<br/>
+CSIVolumeHealth=true|false (ALPHA - 默认值为 false)<br/>
+ContextualLogging=true|false (ALPHA - 默认值为 false)<br/>
+CronJobTimeZone=true|false (ALPHA - 默认值为 false)<br/>
+CustomCPUCFSQuotaPeriod=true|false (ALPHA - 默认值为 false)<br/>
+CustomResourceValidationExpressions=true|false (ALPHA - 默认值为 false)<br/>
+DaemonSetUpdateSurge=true|false (BETA - 默认值为 true)<br/>
+DelegateFSGroupToCSIDriver=true|false (BETA - 默认值为 true)<br/>
+DevicePlugins=true|false (BETA - 默认值为 true)<br/>
+DisableAcceleratorUsageMetrics=true|false (BETA - 默认值为 true)<br/>
+DisableCloudProviders=true|false (ALPHA - 默认值为 false)<br/>
+DisableKubeletCloudCredentialProviders=true|false (ALPHA - 默认值为 false)<br/>
+DownwardAPIHugePages=true|false (BETA - 默认值为 true)<br/>
+EndpointSliceTerminatingCondition=true|false (BETA - 默认值为 true)<br/>
+EphemeralContainers=true|false (BETA - 默认值为 true)<br/>
+ExpandedDNSConfig=true|false (ALPHA - 默认值为 false)<br/>
+ExperimentalHostUserNamespaceDefaulting=true|false (BETA - 默认值为 false)<br/>
+GRPCContainerProbe=true|false (BETA - 默认值为 true)<br/>
+GracefulNodeShutdown=true|false (BETA - 默认值为 true)<br/>
+GracefulNodeShutdownBasedOnPodPriority=true|false (BETA - 默认值为 true)<br/>
+HPAContainerMetrics=true|false (ALPHA - 默认值为 false)<br/>
+HPAScaleToZero=true|false (ALPHA - 默认值为 false)<br/>
+HonorPVReclaimPolicy=true|false (ALPHA - 默认值为 false)<br/>
+IdentifyPodOS=true|false (BETA - 默认值为 true)<br/>
+InTreePluginAWSUnregister=true|false (ALPHA - 默认值为 false)<br/>
+InTreePluginAzureDiskUnregister=true|false (ALPHA - 默认值为 false)<br/>
+InTreePluginAzureFileUnregister=true|false (ALPHA - 默认值为 false)<br/>
+InTreePluginGCEUnregister=true|false (ALPHA - 默认值为 false)<br/>
+InTreePluginOpenStackUnregister=true|false (ALPHA - 默认值为 false)<br/>
+InTreePluginPortworxUnregister=true|false (ALPHA - 默认值为 false)<br/>
+InTreePluginRBDUnregister=true|false (ALPHA - 默认值为 false)<br/>
+InTreePluginvSphereUnregister=true|false (ALPHA - 默认值为 false)<br/>
+JobMutableNodeSchedulingDirectives=true|false (BETA - 默认值为 true)<br/>
+JobReadyPods=true|false (BETA - 默认值为 true)<br/>
+JobTrackingWithFinalizers=true|false (BETA - 默认值为 false)<br/>
+KubeletCredentialProviders=true|false (BETA - 默认值为 true)<br/>
+KubeletInUserNamespace=true|false (ALPHA - 默认值为 false)<br/>
+KubeletPodResources=true|false (BETA - 默认值为 true)<br/>
+KubeletPodResourcesGetAllocatable=true|false (BETA - 默认值为 true)<br/>
+LegacyServiceAccountTokenNoAutoGeneration=true|false (BETA - 默认值为 true)<br/>
+LocalStorageCapacityIsolation=true|false (BETA - 默认值为 true)<br/>
+LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - 默认值为 false)<br/>
+LogarithmicScaleDown=true|false (BETA - 默认值为 true)<br/>
+MaxUnavailableStatefulSet=true|false (ALPHA - 默认值为 false)<br/>
+MemoryManager=true|false (BETA - 默认值为 true)<br/>
+MemoryQoS=true|false (ALPHA - 默认值为 false)<br/>
+MinDomainsInPodTopologySpread=true|false (ALPHA - 默认值为 false)<br/>
+MixedProtocolLBService=true|false (BETA - 默认值为 true)<br/>
+NetworkPolicyEndPort=true|false (BETA - 默认值为 true)<br/>
+NetworkPolicyStatus=true|false (ALPHA - 默认值为 false)<br/>
+NodeOutOfServiceVolumeDetach=true|false (ALPHA - 默认值为 false)<br/>
+NodeSwap=true|false (ALPHA - 默认值为 false)<br/>
+OpenAPIEnums=true|false (BETA - 默认值为 true)<br/>
+OpenAPIV3=true|false (BETA - 默认值为 true)<br/>
+PodAndContainerStatsFromCRI=true|false (ALPHA - 默认值为 false)<br/>
+PodDeletionCost=true|false (BETA - 默认值为 true)<br/>
+PodSecurity=true|false (BETA - 默认值为 true)<br/>
+ProbeTerminationGracePeriod=true|false (BETA - 默认值为 false)<br/>
+ProcMountType=true|false (ALPHA - 默认值为 false)<br/>
+ProxyTerminatingEndpoints=true|false (ALPHA - 默认值为 false)<br/>
+QOSReserved=true|false (ALPHA - 默认值为 false)<br/>
+ReadWriteOncePod=true|false (ALPHA - 默认值为 false)<br/>
+RecoverVolumeExpansionFailure=true|false (ALPHA - 默认值为 false)<br/>
+RemainingItemCount=true|false (BETA - 默认值为 true)<br/>
+RotateKubeletServerCertificate=true|false (BETA - 默认值为 true)<br/>
+SeccompDefault=true|false (ALPHA - 默认值为 false)<br/>
+ServerSideFieldValidation=true|false (ALPHA - 默认值为 false)<br/>
+ServiceIPStaticSubrange=true|false (ALPHA - 默认值为 false)<br/>
+ServiceInternalTrafficPolicy=true|false (BETA - 默认值为 true)<br/>
+SizeMemoryBackedVolumes=true|false (BETA - 默认值为 true)<br/>
+StatefulSetAutoDeletePVC=true|false (ALPHA - 默认值为 false)<br/>
+StatefulSetMinReadySeconds=true|false (BETA - 默认值为 true)<br/>
+StorageVersionAPI=true|false (ALPHA - 默认值为 false)<br/>
+StorageVersionHash=true|false (BETA - 默认值为 true)<br/>
+TopologyAwareHints=true|false (BETA - 默认值为 true)<br/>
+TopologyManager=true|false (BETA - 默认值为 true)<br/>
+VolumeCapacityPriority=true|false (ALPHA - 默认值为 false)<br/>
+WinDSR=true|false (ALPHA - 默认值为 false)<br/>
+WinOverlay=true|false (BETA - 默认值为 true)<br/>
+WindowsHostProcessContainers=true|false (BETA - 默认值为 true)<br/>
+已弃用: 应在 <code>--config</code> 所给的配置文件中进行设置。
+（<a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file">进一步了解</a>）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--file-check-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>20s</code>-->默认值：<code>20s</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Duration between checking config files for new data. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+检查配置文件中新数据的时间间隔。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--hairpin-mode string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>promiscuous-bridge</code>-->默认值：<code>promiscuous-bridge</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+How should the kubelet setup hairpin NAT. This allows endpoints of a Service to load balance back to themselves if they should try to access their own Service. Valid values are <code>promiscuous-bridge</code>, <code>hairpin-veth</code> and <code>none</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+设置 kubelet 执行发夹模式（hairpin）网络地址转译的方式。
+该模式允许后端端点对其自身服务的访问能够再次经由负载均衡转发回自身。
+可选项包括 <code>promiscuous-bridge</code>、<code>hairpin-veth</code> 和 <code>none</code>。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--healthz-bind-address string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>127.0.0.1</code>-->默认值：<code>127.0.0.1</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The IP address for the healthz server to serve on (set to <code>0.0.0.0</code> for all IPv4 interfaces and <code>::</code> for all IPv6 interfaces). (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+用于运行 healthz 服务器的 IP 地址（设置为 <code>0.0.0.0</code> 表示使用所有 IPv4 接口，
+设置为 <code>::</code> 表示使用所有 IPv6 接口。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--healthz-port int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 10248-->默认值：10248</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The port of the localhost healthz endpoint (set to <code>0</code> to disable). (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+本地 healthz 端点使用的端口（设置为 0 表示禁用）。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+help for kubelet
+-->
+kubelet 操作的帮助命令
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--hostname-override string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+If non-empty, will use this string as identification instead of the actual hostname. If <code>--cloud-provider</code> is set, the cloud provider determines the name of the node (consult cloud provider documentation to determine if and how the hostname is used).
+-->
+如果为非空，将使用此字符串而不是实际的主机名作为节点标识。如果设置了
+<code>--cloud-provider</code>，则云驱动将确定节点的名称
+（请查阅云服务商文档以确定是否以及如何使用主机名）。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--http-check-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>20s</code>-->默认值：<code>20s</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Duration between checking HTTP for new data. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+HTTP 服务以获取新数据的时间间隔。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--image-credential-provider-bin-dir string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The path to the directory where credential provider plugin binaries are located.
+-->
+指向凭据提供组件可执行文件所在目录的路径。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--image-credential-provider-config string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The path to the credential provider plugin config file.</td>
+-->
+指向凭据提供插件配置文件所在目录的路径。
+</tr>
+
+<tr>
+<td colspan="2">--image-gc-high-threshold int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 85-->默认值：85</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The percent of disk usage after which image garbage collection is always run. Values must be within the range [0, 100], To disable image garbage collection, set to 100.   (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+镜像垃圾回收上限。磁盘使用空间达到该百分比时，镜像垃圾回收将持续工作。
+值必须在 [0，100] 范围内。要禁用镜像垃圾回收，请设置为 100。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--image-gc-low-threshold int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 80-->默认值：80</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The percent of disk usage before which image garbage collection is never run. Lowest disk usage to garbage collect to. Values must be within the range [0, 100] and should not be larger than that of <code>--image-gc-high-threshold</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+镜像垃圾回收下限。磁盘使用空间在达到该百分比之前，镜像垃圾回收操作不会运行。
+值必须在 [0，100] 范围内，并且不得大于 <code>--image-gc-high-threshold</code>的值。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--image-service-endpoint string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+[Experimental] The endpoint of remote image service. If not specified, it will be the same with <code>--container-runtime-endpoint</code> by default. Unix Domain Socket are supported on Linux, while npipe and TCP endpoints are supported on Windows.  Examples: <code>unix:///var/run/dockershim.sock</code>, <code>npipe:////./pipe/dockershim</code>
+-->
+[实验性特性] 远程镜像服务的端点。若未设定则默认情况下使用 <code>--container-runtime-endpoint</code>
+的值。目前支持的类型包括在 Linux 系统上的 UNIX 套接字端点和 Windows 系统上的 npipe 和 TCP 端点。
+例如：<code>unix:///var/run/dockershim.sock</code>、<code>npipe:////./pipe/dockershim</code>。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--iptables-drop-bit int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 15-->默认值：15</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The bit of the <code>fwmark</code> space to mark packets for dropping. Must be within the range [0, 31]. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+标记数据包将被丢弃的 fwmark 位设置。必须在 [0，31] 范围内。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--iptables-masquerade-bit int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 14-->默认值：14</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The bit of the <code>fwmark</code> space to mark packets for SNAT. Must be within the range [0, 31]. Please match this parameter with corresponding parameter in <code>kube-proxy</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+标记数据包将进行 SNAT 的 fwmark 空间位设置。必须在 [0，31] 范围内。
+请将此参数与 <code>kube-proxy</code> 中的相应参数匹配。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--keep-terminated-pod-volumes</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Keep terminated pod volumes mounted to the node after the pod terminates. Can be useful for debugging volume related issues. (DEPRECATED: will be removed in a future version)
+-->
+设置为 true 表示 Pod 终止后仍然保留之前挂载过的卷，常用于调试与卷有关的问题。
+已弃用：将未来版本中移除。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--kernel-memcg-notification</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+If enabled, the kubelet will integrate with the kernel memcg notification to determine if memory eviction thresholds are crossed rather than polling. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+若启用，则 kubelet 将与内核中的 memcg 通知机制集成，不再使用轮询的方式来判定
+是否 Pod 达到内存驱逐阈值。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--kube-api-burst int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 10-->默认值：10</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Burst to use while talking with kubernetes apiserver. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+每秒发送到 apiserver 的突发请求数量上限。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--kube-api-content-type string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>application/vnd.kubernetes.protobuf</code>-->默认值：<code>application/vnd.kubernetes.protobuf</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Content type of requests sent to apiserver. (default "application/vnd.kubernetes.protobuf") (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+发送到 apiserver 的请求的内容类型。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--kube-api-qps int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 5-->默认值：5</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+QPS to use while talking with kubernetes API server. The number must be &gt;= 0. If 0 will use default QPS (5). Doesn't cover events and node heartbeat apis which rate limiting is controlled by a different set of flags. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+与 apiserver 通信的每秒查询个数（QPS）。
+此值必须 &gt;= 0。如果为 0，则使用默认 QPS（5）。
+不包含事件和节点心跳 api，它们的速率限制是由一组不同的标志所控制。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--kube-reserved mapStringString&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: &lt;None&gt;-->默认值：&lt;None&gt;</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+A set of <code>&lt;resource name&gt;=&lt;resource quantity&gt;</code> (e.g. <code>cpu=200m,memory=500Mi,ephemeral-storage=1Gi,pid='100'</code>) pairs that describe resources reserved for kubernetes system components. Currently <code>cpu</code>, <code>memory</code> and local <code>ephemeral-storage</code> for root file system are supported. See <a href="http://kubernetes.io/docs/user-guide/compute-resources">here</a> for more detail. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+kubernetes 系统预留的资源配置，以一组 <code>&lt;资源名称&gt;=&lt;资源数量&gt;</code> 格式表示。
+（例如：<code>cpu=200m,memory=500Mi,ephemeral-storage=1Gi,pid='100'</code>）。
+当前支持 <code>cpu</code>、<code>memory</code> 和用于根文件系统的 <code>ephemeral-storage</code>。
+请参阅<a href="https://kubernetes.io/zh-cn/docs/concepts/configuration/manage-resources-containers/">这里</a>获取更多信息。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--kube-reserved-cgroup string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>''</code>-->默认值：<code>""</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Absolute name of the top level cgroup that is used to manage kubernetes components for which compute resources were reserved via <code>--kube-reserved</code> flag. Ex. <code>/kube-reserved</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+给出某个顶层 cgroup 绝对名称，该 cgroup 用于管理通过标志 <code>--kube-reserved</code>
+为 kubernetes 组件所预留的计算资源。例如：<code>"/kube-reserved"</code>。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--kubeconfig string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Path to a kubeconfig file, specifying how to connect to the API server. Providing <code>--kubeconfig</code> enables API server mode, omitting <code>--kubeconfig</code> enables standalone mode. 
+-->
+kubeconfig 配置文件的路径，指定如何连接到 API 服务器。
+提供 <code>--kubeconfig</code> 将启用 API 服务器模式，而省略 <code>--kubeconfig</code> 将启用独立模式。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--kubelet-cgroups string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Optional absolute name of cgroups to create and run the Kubelet in. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+用于创建和运行 kubelet 的 cgroup 的绝对名称。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--lock-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<Warning: Alpha feature> The path to file for kubelet to use as a lock file.
+-->
+&lt;警告：alpha 特性&gt; kubelet 使用的锁文件的路径。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--log-backtrace-at &lt;<!--A string of format 'file:line'-->一个 “文件：行数” 格式的字符串&gt;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+<!--Default: <code>:0</code>-->默认值：<code>:0</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+When logging hits line <code><file>:<N></code>, emit a stack trace. (DEPRECATED: will be removed in a future release, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">here</a>.)
+-->
+形式为 <code>&lt;file&gt;:&lt;N&gt;</code>。
+当日志逻辑执行到命中 &lt;file&gt; 的第 &lt;N&gt; 行时，转储调用堆栈。
+（已弃用：将在未来的版本中删除，<a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">进一步了解</a>。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--log-dir string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+If non-empty, write log files in this directory. (DEPRECATED: will be removed in a future release, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">here</a>.)
+-->
+如果此值为非空，则在所指定的目录中写入日志文件。
+（已弃用：将在未来的版本中删除，<a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">进一步了解</a>。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--log-file string</td>  
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+If non-empty, use this log file. (DEPRECATED: will be removed in a future release, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">here</a>.)
+-->
+如果此值非空，使用所给字符串作为日志文件名。
+（已弃用：将在未来的版本中删除，<a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">进一步了解</a>。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--log-file-max-size uint&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 1800-->默认值：1800</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Defines the maximum size a log file can grow to. Unit is megabytes. If the value is 0, the maximum file size is unlimited. (DEPRECATED: will be removed in a future release, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">here</a>.)
+-->
+设置日志文件的最大值。单位为兆字节（M）。如果值为 0，则表示文件大小无限制。
+（已弃用：将在未来的版本中删除，<a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">进一步了解</a>。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--log-flush-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>5s</code>-->默认值：<code>5s</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Maximum number of seconds between log flushes
+-->
+两次日志刷新之间的最大秒数（默认值为 5s）。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--log-json-info-buffer-size string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>'0'</code>-->默认值：<code>'0'</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+[Experimental] In JSON format with split output streams, the info messages can be buffered for a while to increase performance. The default value of zero bytes disables buffering. The size can be specified as number of bytes (512), multiples of 1000 (1K), multiples of 1024 (2Ki), or powers of those (3M, 4G, 5Mi, 6Gi). (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+[实验性特性]在具有拆分输出流的 JSON 格式中，可以将信息消息缓冲一段时间以提高性能。
+零字节的默认值禁用缓冲。大小可以指定为字节数（512）、1000 的倍数（1K）、1024 的倍数（2Ki） 或这些（3M、4G、5Mi、6Gi）的幂。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--log-json-split-stream</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+[Experimental] In JSON format, write error messages to stderr and info messages to stdout. The default is to write a single stream to stdout. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+[实验性特性]以 JSON 格式，将错误消息写入 stderr，将 info 消息写入 stdout。
+默认是将单个流写入标准输出。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--logging-format string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>text</code>-->默认值：<code>"text"</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Sets the log format. Permitted formats: <code>text</code>, <code>json</code>.<br/>Non-default formats don't honor these flags: <code>--add-dir-header</code>, <code>--alsologtostderr</code>, <code>--log-backtrace-at</code>, <code>--log-dir</code>, <code>--log-file</code>, <code>--log-file-max-size</code>, <code>--logtostderr</code>, <code>--skip_headers</code>, <code>--skip_log_headers</code>, <code>--stderrthreshold</code>, <code>--log-flush-frequency</code>.<br/>Non-default choices are currently alpha and subject to change without warning. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+设置日志文件格式。可以设置的格式有：<code>"text"</code>、<code>"json"</code>。
+非默认的格式不会使用以下标志的配置：<code>--add-dir-header</code>、<code>--alsologtostderr</code>、
+<code>--log-backtrace-at</code>、<code>--log-dir</code>、<code>--log-file</code>,
+<code>--log-file-max-size</code>、<code>--logtostderr</code>、<code>--skip-headers</code>、
+<code>--skip-log-headers</code>、<code>--stderrthreshold</code>、<code>--log-flush-frequency</code>。
+非默认选项的其它值都应视为 Alpha 特性，将来出现更改时不会额外警告。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--logtostderr&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>true</code>-->默认值：<code>true</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+log to standard error instead of files. (DEPRECATED: will be removed in a future release, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">here</a>.)
+-->
+日志输出到 stderr 而不是文件。
+（已弃用：将会在未来的版本删除，
+<a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">进一步了解</a>。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--make-iptables-util-chains&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>true</code>-->默认值：<code>true</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+If true, kubelet will ensure <code>iptables</code> utility rules are present on host. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+设置为 true 表示 kubelet 将确保 <code>iptables</code> 规则在主机上存在。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--manifest-url string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+URL for accessing additional Pod specifications to run (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+用于访问要运行的其他 Pod 规范的 URL。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--manifest-url-header string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Comma-separated list of HTTP headers to use when accessing the URL provided to <code>--manifest-url</code>. Multiple headers with the same name will be added in the same order provided. This flag can be repeatedly invoked. For example: <code>--manifest-url-header 'a:hello,b:again,c:world' --manifest-url-header 'b:beautiful'</code> (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+取值为由 HTTP 头部组成的逗号分隔列表，在访问 <code>--manifest-url</code> 所给出的 URL 时使用。
+名称相同的多个头部将按所列的顺序添加。该参数可以多次使用。例如：
+<code>--manifest-url-header 'a:hello,b:again,c:world' --manifest-url-header 'b:beautiful'</code>。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--master-service-namespace string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>default</code>-->默认值：<code>default</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The namespace from which the kubernetes master services should be injected into pods. (DEPRECATED: This flag will be removed in a future version.)
+-->
+kubelet 向 Pod 注入 Kubernetes 主控服务信息时使用的命名空间。
+已弃用：此标志将在未来的版本中删除。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--max-open-files int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 1000000-->默认值：1000000</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Number of files that can be opened by Kubelet process. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+kubelet 进程可以打开的最大文件数量。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--max-pods int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 110-->默认值：110</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Number of Pods that can run on this Kubelet. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+此 kubelet 能运行的 Pod 最大数量。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--maximum-dead-containers int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: -1-->默认值：-1</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Maximum number of old instances of containers to retain globally. Each container takes up some disk space. To disable, set to a negative number. (DEPRECATED: Use <code>--eviction-hard</code> or <code>--eviction-soft</code> instead. Will be removed in a future version.)
+-->
+设置全局可保留的已停止容器实例个数上限。
+每个实例会占用一些磁盘空间。要禁用，请设置为负数。
+已弃用：改用 <code>--eviction-hard</code> 或 <code>--eviction-soft</code>。
+此标志将在未来的版本中删除。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--maximum-dead-containers-per-container int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 1-->默认值：1</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Maximum number of old instances to retain per container.  Each container takes up some disk space. (DEPRECATED: Use <code>--eviction-hard</code> or <code>--eviction-soft</code> instead. Will be removed in a future version.)
+-->
+每个已停止容器可以保留的的最大实例数量。每个容器占用一些磁盘空间。
+已弃用：改用 <code>--eviction-hard</code> 或 <code>--eviction-soft</code>。
+此标志将在未来的版本中删除。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--memory-manager-policy string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>None</code>-->默认值：<code>None</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Memory Manager policy to use. Possible values: <code>'None'</code>, <code>'Static'</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+内存管理器策略使用。可选值：<code>'None'</code>、<code>'Static'</code>。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--minimum-container-ttl-duration duration</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Minimum age for a finished container before it is garbage collected. Examples: <code>'300ms'</code>, <code>'10s'</code> or <code>'2h45m'</code> (DEPRECATED: Use <code>--eviction-hard</code> or <code>--eviction-soft</code> instead. Will be removed in a future version.)
+-->
+已结束的容器在被垃圾回收清理之前的最少存活时间。
+例如：<code>'300ms'</code>、<code>'10s'</code> 或者 <code>'2h45m'</code>。
+已弃用：请改用 <code>--eviction-hard</code> 或者 <code>--eviction-soft</code>。
+此标志将在未来的版本中删除。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--minimum-image-ttl-duration duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>2m0s</code>-->默认值：<code>2m0s</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Minimum age for an unused image before it is garbage collected. Examples: <code>'300ms'</code>, <code>'10s'</code> or <code>'2h45m'</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+已结束的容器在被垃圾回收清理之前的最少存活时间。
+例如：<code>'300ms'</code>、<code>'10s'</code> 或者 <code>'2h45m'</code>。
+已弃用：这个参数应该通过 Kubelet 的 <code>--config</code> 标志指定的配置文件来设置。
+（<a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--node-ip string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+IP address (or comma-separated dual-stack IP addresses) of the node. If unset, kubelet will use the node's default IPv4 address, if any, or its default IPv6 address if it has no IPv4 addresses. You can pass <code>'::'</code> to make it prefer the default IPv6 address rather than the default IPv4 address.
+-->
+节点的 IP 地址（或逗号分隔的双栈 IP 地址）。
+如果未设置，kubelet 将使用节点的默认 IPv4 地址（如果有）或默认 IPv6 地址（如果它没有 IPv4 地址）。
+你可以传值 <code>'::'</code> 使其偏向于默认的 IPv6 地址而不是默认的 IPv4 地址。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--node-labels mapStringString</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+&lt;Warning: Alpha feature&gt;Labels to add when registering the node in the cluster. Labels must be <code>key=value pairs</code> separated by <code>','</code>. Labels in the <code>'kubernetes.io'</code> namespace must begin with an allowed prefix (<code>'kubelet.kubernetes.io'</code>, <code>'node.kubernetes.io'</code>) or be in the specifically allowed set (<code>'beta.kubernetes.io/arch'</code>, <code>'beta.kubernetes.io/instance-type'</code>, <code>'beta.kubernetes.io/os'</code>, <code>'failure-domain.beta.kubernetes.io/region'</code>, <code>'failure-domain.beta.kubernetes.io/zone'</code>, <code>'kubernetes.io/arch'</code>, <code>'kubernetes.io/hostname'</code>, <code>'kubernetes.io/os'</code>, <code>'node.kubernetes.io/instance-type'</code>, <code>'topology.kubernetes.io/region'</code>, <code>'topology.kubernetes.io/zone'</code>))
+-->
+&lt;警告：alpha 特性&gt; kubelet 在集群中注册本节点时设置的标签。标签以
+<code>key=value</code> 的格式表示，多个标签以逗号分隔。名字空间 <code>kubernetes.io</code>
+中的标签必须以 <code>kubelet.kubernetes.io</code> 或 <code>node.kubernetes.io</code> 为前缀，
+或者在以下明确允许范围内：
+<code>beta.kubernetes.io/arch</code>, <code>beta.kubernetes.io/instance-type</code>,
+<code>beta.kubernetes.io/os</code>, <code>failure-domain.beta.kubernetes.io/region</code>,
+<code>failure-domain.beta.kubernetes.io/zone</code>, <code>kubernetes.io/arch</code>,
+<code>kubernetes.io/hostname</code>, <code>kubernetes.io/os</code>,
+<code>node.kubernetes.io/instance-type</code>, <code>topology.kubernetes.io/region</code>,
+<code>topology.kubernetes.io/zone</code>。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--node-status-max-images int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 50-->默认值：50</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The maximum number of images to report in <code>node.status.images</code>. If <code>-1</code> is specified, no cap will be applied. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+在 <code>node.status.images</code> 中可以报告的最大镜像数量。如果指定为 -1，则不设上限。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--node-status-update-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>10s</code>-->默认值：<code>10s</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Specifies how often kubelet posts node status to master. Note: be cautious when changing the constant, it must work with <code>nodeMonitorGracePeriod</code> in Node controller. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+指定 kubelet 向主控节点汇报节点状态的时间间隔。注意：更改此常量时请务必谨慎，
+它必须与节点控制器中的 <code>nodeMonitorGracePeriod</code> 一起使用。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--one-output</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+If true, only write logs to their native severity level (vs also writing to each lower severity level). (DEPRECATED: will be removed in a future release, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">here</a>.)
+-->
+如果设置此标志为 <code>true</code>，则仅将日志写入其原来的严重性级别中，
+而不是同时将其写入更低严重性级别中。
+已弃用：将在未来的版本中删除。
+（<a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">进一步了解</a>。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--oom-score-adj int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: -999-->默认值：-999</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The <code>oom-score-adj</code> value for kubelet process. Values must be within the range [-1000, 1000]. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+kubelet 进程的 oom-score-adj 参数值。有效范围为 <code>[-1000，1000]</code>。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--pod-cidr string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The CIDR to use for pod IP addresses, only used in standalone mode. In cluster mode, this is obtained from the master. For IPv6, the maximum number of IP's allocated is 65536 (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+用于给 Pod 分配 IP 地址的 CIDR 地址池，仅在独立运行模式下使用。
+在集群模式下，CIDR 设置是从主服务器获取的。对于 IPv6，分配的 IP 的最大数量为 65536。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--pod-infra-container-image string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>k8s.gcr.io/pause:3.2</code>-->默认值：<code>k8s.gcr.io/pause:3.2</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+ Specified image will not be pruned by the image garbage collector. When container-runtime is set to <code>docker</code>, all containers in each pod will use the network/ipc namespaces from this image. Other CRI implementations have their own configuration to set this image.
+-->
+所指定的镜像不会被镜像垃圾收集器删除。
+当容器运行环境设置为 <code>docker</code> 时，各个 Pod 中的所有容器都会
+使用此镜像中的网络和 IPC 名字空间。
+其他 CRI 实现有自己的配置来设置此镜像。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--pod-manifest-path string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Path to the directory containing static pod files to run, or the path to a single static pod file. Files starting with dots will be ignored. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+设置包含要运行的静态 Pod 的文件的路径，或单个静态 Pod 文件的路径。以点（<code>.</code>）
+开头的文件将被忽略。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--pod-max-pids int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: -1-->默认值：-1</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Set the maximum number of processes per pod. If <code>-1</code>, the kubelet defaults to the node allocatable PID capacity. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+设置每个 Pod 中的最大进程数目。如果为 -1，则 kubelet 使用节点可分配的 PID 容量作为默认值。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--pods-per-core int32</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Number of Pods per core that can run on this kubelet. The total number of pods on this kubelet cannot exceed <code>--max-pods</code>, so <code>--max-pods</code> will be used if this calculation results in a larger number of pods allowed on the kubelet. A value of <code>0</code> disables this limit. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+kubelet 在每个处理器核上可运行的 Pod 数量。此 kubelet 上的 Pod 总数不能超过
+<code>--max-pods</code> 标志值。因此，如果此计算结果导致在 kubelet 
+上允许更多数量的 Pod，则使用 <code>--max-pods</code> 值。值为 0 表示不作限制。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--port int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 10250-->默认值：10250</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The port for the kubelet to serve on. (DEPRECATED: This parameter should be set via the config file specified by the kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+kubelet 服务监听的本机端口号。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--protect-kernel-defaults</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Default kubelet behaviour for kernel tuning. If set, kubelet errors if any of kernel tunables is different than kubelet defaults. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+设置 kubelet 的默认内核调整行为。如果已设置该参数，当任何内核可调参数与
+kubelet 默认值不同时，kubelet 都会出错。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--provider-id string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Unique identifier for identifying the node in a machine database, i.e cloud provider. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+设置主机数据库（即，云驱动）中用来标识节点的唯一标识。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--qos-reserved mapStringString</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+&lt;Warning: Alpha feature&gt; A set of <code>&lt;resource name&gt;=&lt;percentage&gt;</code> (e.g. <code>memory=50%</code>) pairs that describe how pod resource requests are reserved at the QoS level. Currently only <code>memory</code> is supported. Requires the <code>QOSReserved</code> feature gate to be enabled. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+&lt;警告：alpha 特性&gt; 设置在指定的 QoS 级别预留的 Pod 资源请求，以一组
+<code>"资源名称=百分比"</code> 的形式进行设置，例如 <code>memory=50%</code>。
+当前仅支持内存（memory）。要求启用 <code>QOSReserved</code> 特性门控。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--read-only-port int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 10255-->默认值：10255</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The read-only port for the kubelet to serve on with no authentication/authorization (set to <code>0</code> to disable). (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+kubelet 可以在没有身份验证/鉴权的情况下提供只读服务的端口（设置为 0 表示禁用）。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--register-node&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>true</code>-->默认值：<code>true</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Register the node with the API server. If <code>--kubeconfig</code> is not provided, this flag is irrelevant, as the Kubelet won't have an API server to register with. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+向 API 服务器注册节点，如果未提供 <code>--kubeconfig</code>，此标志无关紧要，
+因为 Kubelet 没有 API 服务器可注册。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--register-schedulable&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>true</code>-->默认值：true</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Register the node as schedulable. Won't have any effect if <code>--register-node</code> is <code>false</code>. (DEPRECATED: will be removed in a future version)
+-->
+注册本节点为可调度的节点。当 <code>--register-node</code>标志为 false 时此设置无效。
+已弃用：此参数将在未来的版本中删除。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--register-with-taints mapStringString</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Register the node with the given list of taints (comma separated <code>&lt;key&gt;=&lt;value&gt;:&lt;effect&gt;</code>). No-op if <code>--register-node</code> is <code>false</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+设置本节点的污点标记，格式为 <code>&lt;key&gt;=&lt;value&gt;:&lt;effect&gt;</code>，
+以逗号分隔。当 <code>--register-node</code> 为 false 时此标志无效。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--registry-burst int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 10-->默认值：10</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Maximum size of a bursty pulls, temporarily allows pulls to burst to this number, while still not exceeding <code>--registry-qps</code>. Only used if <code>--registry-qps</code> is greater than 0. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+设置突发性镜像拉取的个数上限，在不超过 <code>--registration-qps</code> 设置值的前提下
+暂时允许此参数所给的镜像拉取个数。仅在 <code>--registry-qps</code> 大于 0 时使用。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--registry-qps int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 5-->默认值：5</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+If &gt; 0, limit registry pull QPS to this value.  If <code>0</code>, unlimited. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+如此值大于 0，可用来限制镜像仓库的 QPS 上限。设置为 0，表示不受限制。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--reserved-cpus string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+A comma-separated list of CPUs or CPU ranges that are reserved for system and kubernetes usage. This specific list will supersede cpu counts in <code>--system-reserved</code> and <code>--kube-reserved</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+用逗号分隔的一组 CPU 或 CPU 范围列表，给出为系统和 Kubernetes 保留使用的 CPU。
+此列表所给出的设置优先于通过 <code>--system-reserved</code> 和
+<code>--kube-reskube-reserved</code> 所保留的 CPU 个数配置。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--reserved-memory string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+A comma-separated list of memory reservations for NUMA nodes. (e.g. <code>--reserved-memory 0:memory=1Gi,hugepages-1M=2Gi --reserved-memory 1:memory=2Gi</code>). The total sum for each memory type should be equal to the sum of <code>--kube-reserved</code>, <code>--system-reserved</code> and <code>--eviction-threshold</code>. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/memory-manager/#reserved-memory-flag">here</a> for more details. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+以逗号分隔的 NUMA 节点内存预留列表。（例如 <code>--reserved-memory 0:memory=1Gi,hugepages-1M=2Gi --reserved-memory 1:memory=2Gi</code>）。
+每种内存类型的总和应该等于<code>--kube-reserved</code>、<code>--system-reserved</code>和<code>--eviction-threshold</之和 代码>。
+<a href="https://kubernetes.io/docs/tasks/administer-cluster/memory-manager/#reserved-memory-flag">了解更多详细信息。</a>
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--resolv-conf string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>/etc/resolv.conf</code>-->默认值：<code>/etc/resolv.conf</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Resolver configuration file used as the basis for the container DNS resolution configuration. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+名字解析服务的配置文件名，用作容器 DNS 解析配置的基础。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--root-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>/var/lib/kubelet</code>-->默认值：<code>/var/lib/kubelet</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Directory path for managing kubelet files (volume mounts, etc).
+-->
+设置用于管理 kubelet 文件的根目录（例如挂载卷的相关文件等）。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--rotate-certificates</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+&lt;Warning: Beta feature&gt; Auto rotate the kubelet client certificates by requesting new certificates from the <code>kube-apiserver</code> when the certificate expiration approaches. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+&lt;警告：Beta 特性&gt; 设置当客户端证书即将过期时 kubelet 自动从
+<code>kube-apiserver</code> 请求新的证书进行轮换。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--rotate-server-certificates</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Auto-request and rotate the kubelet serving certificates by requesting new certificates from the <code>kube-apiserver</code> when the certificate expiration approaches. Requires the <code>RotateKubeletServerCertificate</code> feature gate to be enabled, and approval of the submitted <code>CertificateSigningRequest</code> objects. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+当 kubelet 的服务证书即将过期时自动从 kube-apiserver 请求新的证书进行轮换。
+要求启用 <code>RotateKubeletServerCertificate</code> 特性门控，以及对提交的
+<code>CertificateSigningRequest</code> 对象进行批复（Approve）操作。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--runonce</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+If <code>true</code>, exit after spawning pods from local manifests or remote urls. Exclusive with <code>--enable-server</code> (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)<
+-->
+设置为 <code>true</code> 表示从本地清单或远程 URL 创建完 Pod 后立即退出 kubelet 进程。
+与 <code>--enable-server</code> 标志互斥。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--runtime-cgroups string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Optional absolute name of cgroups to create and run the runtime in.
+-->
+设置用于创建和运行容器运行时的 cgroup 的绝对名称。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--runtime-request-timeout duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>2m0s</code>-->默认值：<code>2m0s</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Timeout of all runtime requests except long running request - <code>pull</code>, <code>logs</code>, <code>exec</code> and <code>attach</code>. When timeout exceeded, kubelet will cancel the request, throw out an error and retry later. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+设置除了长时间运行的请求（包括 <code>pull</code>、<code>logs</code>、<code>exec</code>
+和 <code>attach</code> 等操作）之外的其他运行时请求的超时时间。
+到达超时时间时，请求会被取消，抛出一个错误并会等待重试。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--seccomp-default string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!-- 
+&lt;Warning: Alpha feature&gt; Enable the use of <code>RuntimeDefault</code> as the default seccomp profile for all workloads. The <code>SeccompDefault</code> feature gate must be enabled to allow this flag, which is disabled by default.
+-->
+&lt;警告：alpha 特性&gt; 启用 <code>RuntimeDefault</code> 作为所有工作负载的默认 seccomp 配置文件。<code>SeccompDefault</code> 特性门控必须启用以允许此标志，默认情况下禁用。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--serialize-image-pulls&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>true</code>-->默认值：<code>true</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Pull images one at a time. We recommend *not* changing the default value on nodes that run docker daemon with version &lt; 1.9 or an <code>aufs</code> storage backend. Issue #10959 has more details. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+逐一拉取镜像。建议 *不要* 在 docker 守护进程版本低于 1.9 或启用了 Aufs 存储后端的节点上
+更改默认值。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--skip-headers</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+If <code>true</code>, avoid header prefixes in the log messages. (DEPRECATED: will be removed in a future release, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">here</a>.)
+-->
+设置为 <code>true</code> 时在日志消息中去掉标头前缀。
+（已弃用：将在未来的版本中删除，<a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">进一步了解</a>。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--skip-log-headers</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+If <code>true</code>, avoid headers when opening log files. (DEPRECATED: will be removed in a future release, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">here</a>.)
+-->
+设置为 <code>true</code>，打开日志文件时去掉标头。
+（已弃用：将在未来的版本中删除，<a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">进一步了解</a>。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--stderrthreshold int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 2-->默认值：2</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+logs at or above this threshold go to stderr. (DEPRECATED: will be removed in a future release, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">here</a>.)
+-->
+设置严重程度达到或超过此阈值的日志输出到标准错误输出。
+（已弃用：将在未来的版本中删除，<a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/2845-deprecate-klog-specific-flags-in-k8s-components">进一步了解</a>。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--streaming-connection-idle-timeout duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>4h0m0s</code>-->默认值：<code>4h0m0s</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Maximum time a streaming connection can be idle before the connection is automatically closed. <code>0</code> indicates no timeout. Example: <code>5m</code>. Note: All connections to the kubelet server have a maximum duration of 4 hours.  (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+设置流连接在自动关闭之前可以空闲的最长时间。0 表示没有超时限制。
+例如：<code>5m</code>。
+注意：与 kubelet 服务器的所有连接最长持续时间为 4 小时。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--sync-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>1m0s</code>-->默认值：<code>1m0s</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Max period between synchronizing running containers and config. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+在运行中的容器与其配置之间执行同步操作的最长时间间隔。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--system-cgroups string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Optional absolute name of cgroups in which to place all non-kernel processes that are not already inside a cgroup under <code>'/'</code>. Empty for no container. Rolling back the flag requires a reboot. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+此标志值为一个 cgroup 的绝对名称，用于所有尚未放置在根目录下某 cgroup 内的非内核进程。
+空值表示不指定 cgroup。回滚该参数需要重启机器。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--system-reserved mapStringString&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: none-->默认值：无</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+A set of <code>&lt;resource name&gt;=&lt;resource quantity&gt;</code> (e.g. <code>cpu=200m,memory=500Mi,ephemeral-storage=1Gi,pid='100'</code>) pairs that describe resources reserved for non-kubernetes components. Currently only <code>cpu</code> and <code>memory</code> are supported. See <a href="http://kubernetes.io/docs/user-guide/compute-resources">here</a> for more detail. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+系统预留的资源配置，以一组 <code>资源名称=资源数量</code> 的格式表示，
+（例如：<code>cpu=200m,memory=500Mi,ephemeral-storage=1Gi,pid='100'</code>）。
+目前仅支持 <code>cpu</code> 和 <code>memory</code> 的设置。
+更多细节可参考
+<a href="http://kubernetes.io/zh-cn/docs/concepts/configuration/manage-resources-containers/">相关文档</a>。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--system-reserved-cgroup string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>''</code>-->默认值：<code>""</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Absolute name of the top level cgroup that is used to manage non-kubernetes components for which compute resources were reserved via <code>--system-reserved</code> flag. Ex. <code>/system-reserved</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+此标志给出一个顶层 cgroup 绝对名称，该 cgroup 用于管理非 kubernetes 组件，
+这些组件的计算资源通过 <code>--system-reserved</code> 标志进行预留。
+例如 <code>"/system-reserved"</code>。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--tls-cert-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+File containing x509 Certificate used for serving HTTPS (with intermediate certs, if any, concatenated after server cert). If <code>--tls-cert-file</code> and <code>--tls-private-key-file</code> are not provided, a self-signed certificate and key are generated for the public address and saved to the directory passed to <code>--cert-dir</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+包含 x509 证书的文件路径，用于 HTTPS 认证。
+如果有中间证书，则中间证书要串接在在服务器证书之后。
+如果未提供 <code>--tls-cert-file</code> 和 <code>--tls-private-key-file</code>，
+kubelet 会为公开地址生成自签名证书和密钥，并将其保存到通过
+<code>--cert-dir</code> 指定的目录中。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--tls-cipher-suites string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Comma-separated list of cipher suites for the server. If omitted, the default Go cipher suites will be used.<br/>
+Preferred values: <br/>
+`TLS_AES_128_GCM_SHA256`, `TLS_AES_256_GCM_SHA384`, `TLS_CHACHA20_POLY1305_SHA256`, `TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA`, `TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256`, `TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA`, `TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384`, `TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305`, `TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256`, `TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA`, `TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256`, `TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA`, `TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384`, `TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305`, `TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256`, `TLS_RSA_WITH_AES_128_CBC_SHA`, `TLS_RSA_WITH_AES_128_GCM_SHA256`, `TLS_RSA_WITH_AES_256_CBC_SHA`, `TLS_RSA_WITH_AES_256_GCM_SHA384`<br/>
+Insecure values:<br/>
+`TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256`, `TLS_ECDHE_ECDSA_WITH_RC4_128_SHA`, `TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA`, `TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256`, `TLS_ECDHE_RSA_WITH_RC4_128_SHA`, `TLS_RSA_WITH_3DES_EDE_CBC_SHA`, `TLS_RSA_WITH_AES_128_CBC_SHA256`, `TLS_RSA_WITH_RC4_128_SHA`.<br/>
+(DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+服务器端加密算法列表，以逗号分隔。如果不设置，则使用 Go 语言加密包的默认算法列表。<br/>
+首选算法：<br/>
+`TLS_AES_128_GCM_SHA256`, `TLS_AES_256_GCM_SHA384`, `TLS_CHACHA20_POLY1305_SHA256`, `TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA`, `TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256`, `TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA`, `TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384`, `TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305`, `TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256`, `TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA`, `TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256`, `TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA`, `TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384`, `TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305`, `TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256`, `TLS_RSA_WITH_AES_128_CBC_SHA`, `TLS_RSA_WITH_AES_128_GCM_SHA256`, `TLS_RSA_WITH_AES_256_CBC_SHA`, `TLS_RSA_WITH_AES_256_GCM_SHA384`<br/>
+不安全算法：<br/>
+`TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256`, `TLS_ECDHE_ECDSA_WITH_RC4_128_SHA`, `TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA`, `TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256`, `TLS_ECDHE_RSA_WITH_RC4_128_SHA`, `TLS_RSA_WITH_3DES_EDE_CBC_SHA`, `TLS_RSA_WITH_AES_128_CBC_SHA256`, `TLS_RSA_WITH_RC4_128_SHA`.<br/>
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--tls-min-version string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Minimum TLS version supported. Possible values: <code>VersionTLS10</code>, <code>VersionTLS11</code>, <code>VersionTLS12</code>, <code>VersionTLS13</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+设置支持的最小 TLS 版本号，可选的版本号包括：<code>VersionTLS10</code>、
+<code>VersionTLS11</code>、<code>VersionTLS12</code> 和 <code>VersionTLS13</code>。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--tls-private-key-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+File containing x509 private key matching <code>--tls-cert-file</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+包含与 <code>--tls-cert-file</code> 对应的 x509 私钥文件路径。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--topology-manager-policy string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>none</code>-->默认值：<code>none</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Topology Manager policy to use. Possible values: <code>'none'</code>, <code>'best-effort'</code>, <code>'restricted'</code>, <code>'single-numa-node'</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+设置拓扑管理策略（Topology Manager policy）。可选值包括：<code>none</code>、
+<code>best-effort</code>、<code>restricted</code> 和 <code>single-numa-node</code>。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--topology-manager-scope string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>container</code>-->默认值：<code>container</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Scope to which topology hints applied. Topology Manager collects hints from Hint Providers and applies them to defined scope to ensure the pod admission. Possible values: <code>'container'</code>, <code>'pod'</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+拓扑提示信息使用范围。拓扑管理器从提示提供者（Hints Providers）处收集提示信息，
+并将其应用到所定义的范围以确保 Pod 准入。
+可选值包括：<code>container</code>（默认）、<code>pod</code>。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">-v, --v Level</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+number for the log level verbosity
+-->
+设置 kubelet 日志级别详细程度的数值。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--version version[=true]</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Print version information and quit
+-->
+打印 kubelet 版本信息并退出。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--vmodule &lt;<!--A list of 'pattern=N' strings-->一个 “pattern=N” 格式的字符串列表&gt;</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Comma-separated list of <code>pattern=N</code> settings for file-filtered logging
+-->
+以逗号分隔的 <code>pattern=N</code> 设置列表，用于文件过滤的日志记录
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--volume-plugin-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>/usr/libexec/kubernetes/kubelet-plugins/volume/exec/</code>-->默认值：<code>/usr/libexec/kubernetes/kubelet-plugins/volume/exec/</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The full path of the directory in which to search for additional third party volume plugins. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+用来搜索第三方存储卷插件的目录。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--volume-stats-agg-period duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: <code>1m0s</code>-->默认值：<code>1m0s</code></td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Specifies interval for kubelet to calculate and cache the volume disk usage for all pods and volumes. To disable volume calculations, set to <code>0</code>. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's <code>--config</code> flag. See <a href="https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> for more information.)
+-->
+指定 kubelet 计算和缓存所有 Pod 和卷的磁盘用量总值的时间间隔。要禁用磁盘用量计算，
+请设置为 0。
+（已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
+请参阅 <a href="https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/">kubelet-config-file</a> 了解更多信息。）
+</td>
+</tr>
+</tbody>
+</table>
+
diff --git a/content/zh/docs/reference/config-api/_index.md b/content/zh-cn/docs/reference/config-api/_index.md
similarity index 100%
rename from content/zh/docs/reference/config-api/_index.md
rename to content/zh-cn/docs/reference/config-api/_index.md
diff --git a/content/zh-cn/docs/reference/config-api/apiserver-audit.v1.md b/content/zh-cn/docs/reference/config-api/apiserver-audit.v1.md
new file mode 100644
index 0000000000..920e8e0146
--- /dev/null
+++ b/content/zh-cn/docs/reference/config-api/apiserver-audit.v1.md
@@ -0,0 +1,843 @@
+---
+title: kube-apiserver Audit 配置 (v1)
+content_type: tool-reference
+package: audit.k8s.io/v1
+auto_generated: true
+---
+
+<!---
+title: kube-apiserver Audit Configuration (v1)
+content_type: tool-reference
+package: audit.k8s.io/v1
+auto_generated: true
+-->
+
+<!--
+## Resource Types 
+-->
+## 资源类型  {#resource-types}
+
+- [Event](#audit-k8s-io-v1-Event)
+- [EventList](#audit-k8s-io-v1-EventList)
+- [Policy](#audit-k8s-io-v1-Policy)
+- [PolicyList](#audit-k8s-io-v1-PolicyList)
+  
+## `Event`     {#audit-k8s-io-v1-Event}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [EventList](#audit-k8s-io-v1-EventList)
+
+<!--
+Event captures all the information that can be included in an API audit log.
+-->
+<p>
+Event 结构包含可出现在 API 审计日志中的所有信息。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>audit.k8s.io/v1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>Event</code></td></tr>
+  
+<tr><td><code>level</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#audit-k8s-io-v1-Level"><code>Level</code></a>
+</td>
+<td>
+   <!--AuditLevel at which event was generated-->
+   <p>
+   生成事件所对应的审计级别。
+   </p>
+</td>
+</tr>
+    
+<tr><td><code>auditID</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/types#UID"><code>k8s.io/apimachinery/pkg/types.UID</code></a>
+</td>
+<td>
+   <!--Unique audit ID, generated for each request.-->
+   <p>
+   为每个请求所生成的唯一审计 ID。
+   </p>
+</td>
+</tr>
+    
+<tr><td><code>stage</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#audit-k8s-io-v1-Stage"><code>Stage</code></a>
+</td>
+<td>
+   <!--Stage of the request handling when this event instance was generated.-->
+   <p>
+   生成此事件时请求的处理阶段。
+   </p>
+</td>
+</tr>
+    
+<tr><td><code>requestURI</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--RequestURI is the request URI as sent by the client to a server.-->
+   <p>
+   requestURI 是客户端发送到服务器端的请求 URI。
+   </p>
+</td>
+</tr>
+    
+  
+<tr><td><code>verb</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--Verb is the kubernetes verb associated with the request.
+   For non-resource requests, this is the lower-cased HTTP method.-->
+   <p>
+   verb 是与请求对应的 Kubernetes 动词。对于非资源请求，此字段为 HTTP 方法的小写形式。
+   </p>
+</td>
+</tr>
+    
+<tr><td><code>user</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#userinfo-v1-authentication"><code>authentication/v1.UserInfo</code></a>
+</td>
+<td>
+   <!--Authenticated user information.-->
+   <p>
+   关于认证用户的信息。
+   </p>
+</td>
+</tr>
+
+<tr><td><code>impersonatedUser</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#userinfo-v1-authentication"><code>authentication/v1.UserInfo</code></a>
+</td>
+<td>
+   <!--Impersonated user information.-->
+   <p>
+   关于所伪装（impersonated）的用户的信息。
+   </p>
+</td>
+</tr>
+
+<tr><td><code>sourceIPs</code><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--
+   Source IPs, from where the request originated and intermediate proxies.
+   The source IPs are listed from (in order):
+   -->
+   <p>
+   发起请求和中间代理的源 IP 地址。
+   源 IP 从以下（按顺序）列出：
+   </p>
+<ol>
+<li>
+<!--
+X-Forwarded-For request header IPs
+-->
+X-Forwarded-For 请求标头 IP
+</li>
+<li>
+<!--
+X-Real-Ip header, if not present in the X-Forwarded-For list
+-->
+X-Real-Ip 标头，如果 X-Forwarded-For 列表中不存在
+</li>
+<li>
+<!--
+The remote address for the connection, if it doesn't match the last
+IP in the list up to here (X-Forwarded-For or X-Real-Ip).
+Note: All but the last IP can be arbitrarily set by the client.
+-->
+连接的远程地址，如果它无法与此处列表中的最后一个 IP（X-Forwarded-For 或 X-Real-Ip）匹配。
+注意：除最后一个 IP 外的所有 IP 均可由客户端任意设置。
+</li>
+</ol>
+</td>
+</tr>
+
+
+<tr><td><code>userAgent</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--UserAgent records the user agent string reported by the client.
+   Note that the UserAgent is provided by the client, and must not be trusted.-->
+   <p>
+   userAgent 中记录客户端所报告的用户代理（User Agent）字符串。
+   注意 userAgent 信息是由客户端提供的，一定不要信任。
+   </p>
+</td>
+</tr>
+
+<tr><td><code>objectRef</code><br/>
+<a href="#audit-k8s-io-v1-ObjectReference"><code>ObjectReference</code></a>
+</td>
+<td>
+   <!-- Object reference this request is targeted at.
+   Does not apply for List-type requests, or non-resource requests.-->
+   <p>
+   此请求所指向的对象引用。对于 List 类型的请求或者非资源请求，此字段可忽略。
+   </p>
+</td>
+</tr>
+
+<tr><td><code>responseStatus</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#status-v1-meta"><code>meta/v1.Status</code></a>
+</td>
+<td>
+   <!--The response status, populated even when the ResponseObject is not a Status type.
+   For successful responses, this will only include the Code and StatusSuccess.
+   For non-status type error responses, this will be auto-populated with the error Message.-->
+   <p>
+   响应的状态，当 responseObject 不是 Status 类型时被赋值。
+   对于成功的请求，此字段仅包含 code 和 statusSuccess。
+   对于非 Status 类型的错误响应，此字段会被自动赋值为出错信息。
+   </p>
+</td>
+</tr>
+
+<tr><td><code>requestObject</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/runtime#Unknown"><code>k8s.io/apimachinery/pkg/runtime.Unknown</code></a>
+</td>
+<td>
+   <!--API object from the request, in JSON format. The RequestObject is recorded as-is in the request
+(possibly re-encoded as JSON), prior to version conversion, defaulting, admission or
+merging. It is an external versioned object type, and may not be a valid object on its own.
+Omitted for non-resource requests.  Only logged at Request Level and higher.-->
+   <p>
+   来自请求的 API 对象，以 JSON 格式呈现。requestObject 在请求中按原样记录
+   （可能会采用 JSON 重新编码），之后会进入版本转换、默认值填充、准入控制以及
+   配置信息合并等阶段。此对象为外部版本化的对象类型，甚至其自身可能并不是一个
+   合法的对象。对于非资源请求，此字段被忽略。
+   只有当审计级别为 Request 或更高的时候才会记录。 
+   </p>  
+</td>
+</tr>
+    
+  
+<tr><td><code>responseObject</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/runtime#Unknown"><code>k8s.io/apimachinery/pkg/runtime.Unknown</code></a>
+</td>
+<td>
+   <!--API object returned in the response, in JSON. The ResponseObject is recorded after conversion
+to the external type, and serialized as JSON.  Omitted for non-resource requests.  Only logged
+at Response Level.-->
+   <p>
+   响应中包含的 API 对象，以 JSON 格式呈现。requestObject 是在被转换为外部类型
+   并序列化为 JSON 格式之后才被记录的。
+   对于非资源请求，此字段会被忽略。
+   只有审计级别为 Response 时才会记录。
+   </p>
+</td>
+</tr>
+
+<tr><td><code>requestReceivedTimestamp</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#microtime-v1-meta"><code>meta/v1.MicroTime</code></a>
+</td>
+<td>
+   <!--Time the request reached the apiserver.-->
+   <p>
+   请求到达 API 服务器时的时间。
+   </p>
+</td>
+</tr>
+
+<tr><td><code>stageTimestamp</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#microtime-v1-meta"><code>meta/v1.MicroTime</code></a>
+</td>
+<td>
+   <!--Time the request reached current audit stage.-->
+   <p>
+   请求到达当前审计阶段时的时间。
+   </p>
+</td>
+</tr>
+
+<tr><td><code>annotations</code><br/>
+<code>map[string]string</code>
+</td>
+<td>
+   <!--Annotations is an unstructured key value map stored with an audit event that may be set by
+   plugins invoked in the request serving chain, including authentication, authorization and
+   admission plugins. Note that these annotations are for the audit event, and do not correspond
+   to the metadata.annotations of the submitted object. Keys should uniquely identify the informing
+   component to avoid name collisions (e.g. podsecuritypolicy.admission.k8s.io/policy). Values
+   should be short. Annotations are included in the Metadata level.-->
+   <p>
+   annotations 是一个无结构的键-值映射，其中保存的是一个审计事件。
+   该事件可以由请求处理链路上的插件来设置，包括身份认证插件、鉴权插件以及
+   准入控制插件等。
+   注意这些注解是针对审计事件本身的，与所提交的对象中的 metadata.annotations
+   之间不存在对应关系。
+   映射中的键名应该唯一性地标识生成该事件的组件，从而避免名字上的冲突
+   （例如 podsecuritypolicy.admission.k8s.io/policy）。
+   映射中的键值应该比较简洁。
+   当审计级别为 Metadata 时会包含 annotations 字段。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+    
+## `EventList`     {#audit-k8s-io-v1-EventList}
+
+<!--    
+EventList is a list of audit Events.
+-->
+<p>
+EventList 是审计事件（Event）的列表。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>apiVersion</code><br/>string</td><td><code>audit.k8s.io/v1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>EventList</code></td></tr>
+
+<tr><td><code>metadata</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#listmeta-v1-meta"><code>meta/v1.ListMeta</code></a>
+</td>
+<td>
+   <span class="text-muted"><!--No description provided.-->列表结构元数据</span>
+   </td>
+</tr>
+
+<tr><td><code>items</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#audit-k8s-io-v1-Event"><code>[]Event</code></a>
+</td>
+<td>
+   <span class="text-muted"><!--No description provided.-->事件对象列表</span>
+   </td>
+</tr>
+</tbody>
+</table>
+    
+## `Policy`     {#audit-k8s-io-v1-Policy}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [PolicyList](#audit-k8s-io-v1-PolicyList)
+
+<!--
+Policy defines the configuration of audit logging, and the rules for how different request
+categories are logged.
+-->
+<p>
+Policy 定义的是审计日志的配置以及不同类型请求的日志记录规则。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>apiVersion</code><br/>string</td><td><code>audit.k8s.io/v1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>Policy</code></td></tr>
+  
+<tr><td><code>metadata</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#objectmeta-v1-meta"><code>meta/v1.ObjectMeta</code></a>
+</td>
+<td>
+   <!--ObjectMeta is included for interoperability with API infrastructure.Refer to the Kubernetes API documentation for the fields of the <code>metadata</code> field.-->
+   <p>
+   包含 <code>metadata</code> 字段是为了便于与 API 基础设施之间实现互操作。
+   </p>
+   参考 Kubernetes API 文档了解 <code>metadata</code> 字段的详细信息。
+</td>
+</tr>
+
+<tr><td><code>rules</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#audit-k8s-io-v1-PolicyRule"><code>[]PolicyRule</code></a>
+</td>
+<td>
+   <!--Rules specify the audit Level a request should be recorded at.
+A request may match multiple rules, in which case the FIRST matching rule is used.
+The default audit level is None, but can be overridden by a catch-all rule at the end of the list.
+PolicyRules are strictly ordered.-->
+   <p>
+   字段 rules 设置请求要被记录的审计级别（level）。
+   每个请求可能会与多条规则相匹配；发生这种状况时遵从第一条匹配规则。
+   默认的审计级别是 None，不过可以在列表的末尾使用一条全抓（catch-all）规则
+   重载其设置。
+   列表中的规则（PolicyRule）是严格有序的。
+   </p>
+</td>
+</tr>
+
+<tr><td><code>omitStages</code><br/>
+<a href="#audit-k8s-io-v1-Stage"><code>[]Stage</code></a>
+</td>
+<td>
+   <!--OmitStages is a list of stages for which no events are created. Note that this can also
+   be specified per rule in which case the union of both are omitted.-->
+   <p>
+   字段 omitStages 是一个阶段（Stage）列表，其中包含无须生成事件的阶段。
+   注意这一选项也可以通过每条规则来设置。
+   审计组件最终会忽略出现在 omitStages 中阶段，也会忽略规则中的阶段。
+   </p>
+</td>
+</tr>
+
+
+<tr>
+<td>
+<code>omitManagedFields</code><br/>
+<code>bool</code>
+</td>
+<td>
+<!--
+OmitManagedFields indicates whether to omit the managed fields of the request
+and response bodies from being written to the API audit log.
+This is used as a global default - a value of 'true' will omit the managed fileds,
+otherwise the managed fields will be included in the API audit log.
+Note that this can also be specified per rule in which case the value specified
+in a rule will override the global default.
+-->
+<p>
+omitManagedFields 标明将请求和响应主体写入 API 审计日志时，是否省略其托管字段。
+此字段值用作全局默认值 - 'true' 值将省略托管字段，否则托管字段将包含在 API 审计日志中。
+请注意，也可以按规则指定此值，在这种情况下，规则中指定的值将覆盖全局默认值。
+</p>
+</td>
+</tr>
+</tbody>
+</table>
+    
+## `PolicyList`     {#audit-k8s-io-v1-PolicyList}
+
+<!--
+PolicyList is a list of audit Policies.
+-->
+<p>
+PolicyList 是由审计策略（Policy）组成的列表。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>audit.k8s.io/v1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>PolicyList</code></td></tr>
+
+<tr><td><code>metadata</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#listmeta-v1-meta"><code>meta/v1.ListMeta</code></a>
+</td>
+<td>
+   <span class="text-muted"><!--No description provided.-->列表结构元数据。</span>
+   </td>
+</tr>
+
+<tr><td><code>items</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#audit-k8s-io-v1-Policy"><code>[]Policy</code></a>
+</td>
+<td>
+   <span class="text-muted"><!--No description provided.-->策略（Policy）对象列表。</span>
+   </td>
+</tr>
+</tbody>
+</table>
+    
+## `GroupResources`     {#audit-k8s-io-v1-GroupResources}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [PolicyRule](#audit-k8s-io-v1-PolicyRule)
+
+<!--
+GroupResources represents resource kinds in an API group.
+-->
+<p>
+GroupResources 代表的是某 API 组中的资源类别。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>group</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--Group is the name of the API group that contains the resources.
+   The empty string represents the core API group.-->
+   字段 group 给出包含资源的 API 组的名称。
+   空字符串代表 <code>core</code> API 组。
+</td>
+</tr>
+
+<tr><td><code>resources</code><br/>
+<code>[]string</code>
+</td>
+<td>
+<!--
+Resources is a list of resources this rule applies to.
+For example:
+'pods' matches pods.
+'pods/log' matches the log subresource of pods.
+'&lowast;' matches all resources and their subresources.
+'pods/&lowast;' matches all subresources of pods.
+'&lowast;/scale' matches all scale subresources.
+-->
+   <p>
+   字段 resources 是此规则所适用的资源的列表。
+   </p>
+   <br/>
+   <p>
+   例如：<br/>
+   'pods' 匹配 Pods；<br/>
+   'pods/log' 匹配 Pods 的 log 子资源；<br/>
+   '&lowast;' 匹配所有资源及其子资源；<br/>
+   'pods/&lowast;' 匹配 Pods 的所有子资源；<br/>
+   '&lowast;/scale' 匹配所有的 scale 子资源。<br/><br/>
+   </p>
+
+   <!--If wildcard is present, the validation rule will ensure resources do not
+   overlap with each other.
+
+   An empty list implies all resources and subresources in this API groups apply.-->
+   <p>
+   如果存在通配符，则合法性检查逻辑会确保 resources 中的条目不会彼此重叠。
+   </p>
+   <br/>
+   <p>
+   空的列表意味着规则适用于该 API 组中的所有资源及其子资源。
+   </p>
+</td>
+</tr>
+
+<tr><td><code>resourceNames</code><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--ResourceNames is a list of resource instance names that the policy matches.
+   Using this field requires Resources to be specified.
+   An empty list implies that every instance of the resource is matched.-->
+   <p>
+   字段 resourceNames 是策略将匹配的资源实例名称列表。
+   使用此字段时，<code>resources</code> 必须指定。
+   空的 resourceNames 列表意味着资源的所有实例都会匹配到此策略。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+    
+## `Level`     {#audit-k8s-io-v1-Level}
+
+<!--    
+(Alias of `string`)
+-->
+<code>string</code> 数据类型的别名。
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [Event](#audit-k8s-io-v1-Event)
+- [PolicyRule](#audit-k8s-io-v1-PolicyRule)
+
+<!--
+Level defines the amount of information logged during auditing
+-->
+<p>
+Level 定义的是审计过程中在日志内记录的信息量。
+</p>
+
+## `ObjectReference`     {#audit-k8s-io-v1-ObjectReference}
+
+<!--    
+**Appears in:**
+-->
+**出现在：**
+
+- [Event](#audit-k8s-io-v1-Event)
+
+<!--
+ObjectReference contains enough information to let you inspect or modify the referred object.
+-->
+<p>
+ObjectReference 包含的是用来检查或修改所引用对象时将需要的全部信息。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>resource</code><br/>
+<code>string</code>
+</td>
+<td>
+   <span class="text-muted"><!--No description provided.-->资源类别。</span>
+   </td>
+</tr>
+
+<tr><td><code>namespace</code><br/>
+<code>string</code>
+</td>
+<td>
+   <span class="text-muted"><!--No description provided.-->资源对象所在名字空间。</span>
+   </td>
+</tr>
+
+<tr><td><code>name</code><br/>
+<code>string</code>
+</td>
+<td>
+   <span class="text-muted"><!--No description provided.-->资源对象名称。</span>
+   </td>
+</tr>
+
+<tr><td><code>uid</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/types#UID"><code>k8s.io/apimachinery/pkg/types.UID</code></a>
+</td>
+<td>
+   <span class="text-muted"><!--No description provided.-->资源对象的唯一标识（UID）。</span>
+   </td>
+</tr>
+
+<tr><td><code>apiGroup</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--APIGroup is the name of the API group that contains the referred object.
+   The empty string represents the core API group.-->
+   <p>
+   字段 apiGroup 给出包含所引用对象的 API 组的名称。
+   空字符串代表 <code>core</code> API 组。
+   </p>
+</td>
+</tr>
+
+<tr><td><code>apiVersion</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--APIVersion is the version of the API group that contains the referred object.-->
+   <p>
+   字段 apiVersion 是包含所引用对象的 API 组的版本。
+   </p>
+</td>
+</tr>
+
+<tr><td><code>resourceVersion</code><br/>
+<code>string</code>
+</td>
+<td>
+   <span class="text-muted"><!--No description provided.-->资源对象自身的版本值。</span>
+   </td>
+</tr>
+
+<tr><td><code>subresource</code><br/>
+<code>string</code>
+</td>
+<td>
+   <span class="text-muted"><!--No description provided.-->子资源的类别。</span>
+   </td>
+</tr>
+</tbody>
+</table>
+    
+## `PolicyRule`     {#audit-k8s-io-v1-PolicyRule}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [Policy](#audit-k8s-io-v1-Policy)
+
+<!--
+PolicyRule maps requests based off metadata to an audit Level.
+Requests must match the rules of every field (an intersection of rules).
+-->
+<p>
+PolicyRule 包含一个映射，基于元数据将请求映射到某审计级别。
+请求必须与每个字段所定义的规则都匹配（即 rules 的交集）才被视为匹配。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>level</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#audit-k8s-io-v1-Level"><code>Level</code></a>
+</td>
+<td>
+   <!--The Level that requests matching this rule are recorded at.-->
+   <p>
+   与此规则匹配的请求所对应的日志记录级别（Level）。
+   </p>
+</td>
+</tr>
+
+<tr><td><code>users</code><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--The users (by authenticated user name) this rule applies to.
+   An empty list implies every user.-->
+   <p>
+   根据身份认证所确定的用户名的列表，给出此规则所适用的用户。
+   空列表意味着适用于所有用户。
+   </p>
+</td>
+</tr>
+
+<tr><td><code>userGroups</code><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--The user groups this rule applies to. A user is considered matching
+   if it is a member of any of the UserGroups.
+   An empty list implies every user group.-->
+   <p>
+   此规则所适用的用户组的列表。如果用户是所列用户组中任一用户组的成员，则视为匹配。
+   空列表意味着适用于所有用户组。
+   </p>
+</td>
+</tr>
+
+<tr><td><code>verbs</code><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--The verbs that match this rule.
+   An empty list implies every verb.-->
+   <p>
+   此规则所适用的动词（verb）列表。
+   空列表意味着适用于所有动词。
+   </p>
+</td>
+</tr>
+
+<tr><td><code>resources</code><br/>
+<a href="#audit-k8s-io-v1-GroupResources"><code>[]GroupResources</code></a>
+</td>
+<td>
+   <!--Resources that this rule matches. An empty list implies all kinds in all API groups.-->
+   <p>
+   此规则所适用的资源类别列表。
+   空列表意味着适用于 API 组中的所有资源类别。
+   </p>
+</td>
+</tr>
+
+<tr><td><code>namespaces</code><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--Namespaces that this rule matches.
+   The empty string &quot;&quot; matches non-namespaced resources.
+   An empty list implies every namespace.-->
+   <p>
+   此规则所适用的名字空间列表。
+   空字符串（&quot;&quot;）意味着适用于非名字空间作用域的资源。
+   空列表意味着适用于所有名字空间。
+   </p>
+</td>
+</tr>
+
+<tr><td><code>nonResourceURLs</code><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--NonResourceURLs is a set of URL paths that should be audited.
+   &lowast;s are allowed, but only as the full, final step in the path.
+   Examples:
+   "/metrics" - Log requests for apiserver metrics
+   "/healthz&lowast;" - Log all health checks-->
+   <p>
+   字段 nonResourceURLs 给出一组需要被审计的 URL 路径。
+   允许使用 &lowast;，但只能作为路径中最后一个完整分段。<br/>
+   例如：<br/>
+   "/metrics" - 记录对 API 服务器度量值（metrics）的所有请求；<br/>
+   "/healthz&lowast;" - 记录所有健康检查请求。
+   </p>
+</td>
+</tr>
+
+<tr><td><code>omitStages</code><br/>
+<a href="#audit-k8s-io-v1-Stage"><code>[]Stage</code></a>
+</td>
+<td>
+   <!--OmitStages is a list of stages for which no events are created. Note that this can also
+   be specified policy wide in which case the union of both are omitted.
+   An empty list means no restrictions will apply.-->
+   <p>
+   字段 omitStages 是一个阶段（Stage）列表，针对所列的阶段服务器不会生成审计事件。
+   注意这一选项也可以在策略（Policy）级别指定。服务器审计组件会忽略
+   omitStages 中给出的阶段，也会忽略策略中给出的阶段。
+   空列表意味着不对阶段作任何限制。
+   </p>
+</td>
+</tr>
+
+
+ <tr>
+ <td><code>omitManagedFields</code><br/>
+ <code>bool</code>
+ </td>
+ <td>
+ <!--
+ OmitManagedFields indicates whether to omit the managed fields of the request
+ and response bodies from being written to the API audit log.
+ a value of 'true' will drop the managed fields from the API audit log
+ a value of 'false' indicates that the managed fileds should be included in the API audit log
+ Note that the value, if specified, in this rule will override the global default
+ If a value is not specified then the global default specified in
+ Policy.OmitManagedFields will stand.
+ -->
+ <p>
+ omitManagedFields 决定将请求和响应主体写入 API 审计日志时，是否省略其托管字段。
+ </p>
+ <ul>
+ <li>值为 'true' 将从 API 审计日志中删除托管字段</li>
+ <li>
+ 值为 'false' 表示托管字段应包含在 API 审计日志中
+ 请注意，如果指定此规则中的值将覆盖全局默认值。
+ 如果未指定，则使用 policy.omitManagedFields 中指定的全局默认值。
+ </li>
+ </ul>
+ </td>
+ </tr>
+
+</tbody>
+</table>
+
+## `Stage`     {#audit-k8s-io-v1-Stage}
+
+<!--    
+(Alias of `string`)
+-->
+<code>string</code> 数据类型的别名。
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [Event](#audit-k8s-io-v1-Event)
+- [Policy](#audit-k8s-io-v1-Policy)
+- [PolicyRule](#audit-k8s-io-v1-PolicyRule)
+
+<!--
+Stage defines the stages in request handling that audit events may be generated.
+-->
+<p>
+Stage 定义在请求处理过程中可以生成审计事件的阶段。
+</p>
+
diff --git a/content/zh-cn/docs/reference/config-api/apiserver-config.v1.md b/content/zh-cn/docs/reference/config-api/apiserver-config.v1.md
new file mode 100644
index 0000000000..87f3945431
--- /dev/null
+++ b/content/zh-cn/docs/reference/config-api/apiserver-config.v1.md
@@ -0,0 +1,112 @@
+---
+title: kube-apiserver 配置 (v1)
+content_type: tool-reference
+package: apiserver.config.k8s.io/v1
+auto_generated: true
+---
+<!--
+title: kube-apiserver Configuration (v1)
+content_type: tool-reference
+package: apiserver.config.k8s.io/v1
+auto_generated: true
+-->
+
+<!--
+<p>Package v1 is the v1 version of the API.</p>
+-->
+
+<p>v1 包中包含 API 的 v1 版本。</p>
+
+<!--
+## Resource Types
+-->
+## 资源类型
+
+- [AdmissionConfiguration](#apiserver-config-k8s-io-v1-AdmissionConfiguration)
+
+## `AdmissionConfiguration`     {#apiserver-config-k8s-io-v1-AdmissionConfiguration}
+
+<!--
+<p>AdmissionConfiguration provides versioned configuration for admission controllers.</p>
+-->
+<p>AdmissionConfiguration 为准入控制器提供版本化的配置。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>apiVersion</code><br/>string</td><td><code>apiserver.config.k8s.io/v1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>AdmissionConfiguration</code></td></tr>
+
+<tr><td><code>plugins</code><br/>
+<a href="#apiserver-config-k8s-io-v1-AdmissionPluginConfiguration"><code>[]AdmissionPluginConfiguration</code></a>
+</td>
+<td>
+  <!--
+   <p>Plugins allows specifying a configuration per admission control plugin.</p>
+   -->
+  <p><code>plugins</code> 字段允许为每个准入控制插件设置配置选项。</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
+## `AdmissionPluginConfiguration`     {#apiserver-config-k8s-io-v1-AdmissionPluginConfiguration}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [AdmissionConfiguration](#apiserver-config-k8s-io-v1-AdmissionConfiguration)
+
+<!--
+<p>AdmissionPluginConfiguration provides the configuration for a single plug-in.</p>
+-->
+<p>AdmissionPluginConfiguration 为某个插件提供配置信息。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!-- Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>name</code> <B>[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+  <!--
+   <p>Name is the name of the admission controller.
+It must match the registered admission plugin name.</p>
+  -->
+  <p><code>name</code> 是准入控制器的名称。它必须与所注册的准入插件名称匹配。</p>
+</td>
+</tr>
+
+<tr><td><code>path</code><br/>
+<code>string</code>
+</td>
+<td>
+  <!--
+  <p>Path is the path to a configuration file that contains the plugin's
+configuration</p>
+  -->
+  <p><code>path</code> 是指向包含插件配置信息的配置文件的路径。</p>
+</td>
+</tr>
+
+<tr><td><code>configuration</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/runtime#Unknown"><code>k8s.io/apimachinery/pkg/runtime.Unknown</code></a>
+</td>
+<td>
+  <!--
+   <p>Configuration is an embedded configuration object to be used as the plugin's
+configuration. If present, it will be used instead of the path to the configuration file.</p>
+  -->
+  <p><code>configuration</code> 是一个内嵌的配置对象，用来保存插件的配置信息。
+  如果存在，则使用这里的配置信息而不是指向配置文件的路径。</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
diff --git a/content/zh-cn/docs/reference/config-api/apiserver-config.v1alpha1.md b/content/zh-cn/docs/reference/config-api/apiserver-config.v1alpha1.md
new file mode 100644
index 0000000000..b399f304e3
--- /dev/null
+++ b/content/zh-cn/docs/reference/config-api/apiserver-config.v1alpha1.md
@@ -0,0 +1,447 @@
+---
+title: kube-apiserver 配置 (v1alpha1)
+content_type: tool-reference
+package: apiserver.k8s.io/v1alpha1
+auto_generated: true
+---
+<!--
+title: kube-apiserver Configuration (v1alpha1)
+content_type: tool-reference
+package: apiserver.k8s.io/v1alpha1
+auto_generated: true
+-->
+<!-- Package v1alpha1 is the v1alpha1 version of the API.-->
+<p>包 v1alpha1 包含 API 的 v1alpha1 版本。</p>
+
+<!--
+## Resource Types
+-->
+## 资源类型
+
+- [AdmissionConfiguration](#apiserver-k8s-io-v1alpha1-AdmissionConfiguration)
+- [EgressSelectorConfiguration](#apiserver-k8s-io-v1alpha1-EgressSelectorConfiguration)
+- [TracingConfiguration](#apiserver-k8s-io-v1alpha1-TracingConfiguration)
+
+## `AdmissionConfiguration`     {#apiserver-k8s-io-v1alpha1-AdmissionConfiguration}
+
+<p><!--AdmissionConfiguration provides versioned configuration for admission controllers.-->
+AdmissionConfiguration 为准入控制器提供版本化的配置信息。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>apiVersion</code><br/>string</td><td><code>apiserver.k8s.io/v1alpha1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>AdmissionConfiguration</code></td></tr>
+
+<tr><td><code>plugins</code><br/>
+<a href="#apiserver-k8s-io-v1alpha1-AdmissionPluginConfiguration"><code>[]AdmissionPluginConfiguration</code></a>
+</td>
+<td>
+   <p><!--Plugins allows specifying a configuration per admission control plugin.-->
+   <code>plugins</code> 允许用户为每个准入控制插件指定设置。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `EgressSelectorConfiguration`     {#apiserver-k8s-io-v1alpha1-EgressSelectorConfiguration}
+
+<p><!--EgressSelectorConfiguration provides versioned configuration for egress selector clients.-->
+EgressSelectorConfiguration 为 Egress 选择算符客户端提供版本化的配置选项。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>apiVersion</code><br/>string</td><td><code>apiserver.k8s.io/v1alpha1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>EgressSelectorConfiguration</code></td></tr>
+
+<tr><td><code>egressSelections</code> <B>[必需]</B><br/>
+<a href="#apiserver-k8s-io-v1alpha1-EgressSelection"><code>[]EgressSelection</code></a>
+</td>
+<td>
+   <p><!--connectionServices contains a list of egress selection client configurations-->
+   <code>connectionServices</code> 包含一组 Egress 选择算符客户端配置选项。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `TracingConfiguration`     {#apiserver-k8s-io-v1alpha1-TracingConfiguration}
+
+<p><!--TracingConfiguration provides versioned configuration for tracing clients.-->
+TracingConfiguration 为跟踪客户端提供版本化的配置信息。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>apiVersion</code><br/>string</td><td><code>apiserver.k8s.io/v1alpha1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>TracingConfiguration</code></td></tr>
+
+<tr><td><code>endpoint</code><br/>
+<code>string</code>
+</td>
+<td>
+   <p><!--
+Endpoint of the collector that's running on the control-plane node.
+The APIServer uses the egressType ControlPlane when sending data to the collector.
+The syntax is defined in https://github.com/grpc/grpc/blob/master/doc/naming.md.
+Defaults to the otlpgrpc default, localhost:4317
+The connection is insecure, and does not support TLS.
+-->
+在控制面节点上运行的采集器的端点。
+API 服务器在向采集器发送数据时将 <code>egressType</code> 设置为 ControlPlane。
+这里的语法定义在 https://github.com/grpc/grpc/blob/master/doc/naming.md。
+默认值为 otlpgrpc 的默认值，即 <code>localhost:4317</code>
+这一连接是不安全的，且不支持 TLS。
+</p>
+</td>
+</tr>
+<tr><td><code>samplingRatePerMillion</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <p><!--
+SamplingRatePerMillion is the number of samples to collect per million spans.
+Defaults to 0.-->
+   <code>samplingRatePerMillion</code> 设置每一百万个数据点中要采样的样本个数。默认值为 0。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `AdmissionPluginConfiguration`     {#apiserver-k8s-io-v1alpha1-AdmissionPluginConfiguration}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [AdmissionConfiguration](#apiserver-k8s-io-v1alpha1-AdmissionConfiguration)
+
+<p><!--AdmissionPluginConfiguration provides the configuration for a single plug-in.-->
+AdmissionPluginConfiguration 为某个插件提供配置信息。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>name</code> <B>[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p><!--Name is the name of the admission controller.
+It must match the registered admission plugin name.-->
+   <code>name</code> 是准入控制器的名称。此名称必须与所注册的准入插件名称匹配。
+   </p>
+</td>
+</tr>
+<tr><td><code>path</code><br/>
+<code>string</code>
+</td>
+<td>
+   <p><!--Path is the path to a configuration file that contains the plugin's configuration-->
+   <code>path</code> 为指向包含插件配置数据的配置文件的路径。
+   </p>
+</td>
+</tr>
+<tr><td><code>configuration</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/runtime#Unknown"><code>k8s.io/apimachinery/pkg/runtime.Unknown</code></a>
+</td>
+<td>
+   <p><!-- Configuration is an embedded configuration object to be used as the plugin's
+configuration. If present, it will be used instead of the path to the configuration file.-->
+   <code>configuration</code> 是一个嵌入的配置对象，用作插件的配置数据来源。
+   如果设置了此字段，则使用此字段而不是指向配置文件的路径。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Connection`     {#apiserver-k8s-io-v1alpha1-Connection}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [EgressSelection](#apiserver-k8s-io-v1alpha1-EgressSelection)
+
+<p><!-- Connection provides the configuration for a single egress selection client.-->
+Connection 提供某个 Egress 选择客户端的配置信息。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!-- Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>proxyProtocol</code> <B>[必需]</B><br/>
+<a href="#apiserver-k8s-io-v1alpha1-ProtocolType"><code>ProtocolType</code></a>
+</td>
+<td>
+   <p><!--Protocol is the protocol used to connect from client to the konnectivity server.-->
+   <code>proxyProtocol</code> 是客户端连接到 konnectivity 服务器所使用的协议。
+   </p>
+</td>
+</tr>
+<tr><td><code>transport</code><br/>
+<a href="#apiserver-k8s-io-v1alpha1-Transport"><code>Transport</code></a>
+</td>
+<td>
+   <p><!--Transport defines the transport configurations we use to dial to the konnectivity server.
+This is required if ProxyProtocol is HTTPConnect or GRPC.-->
+   <code>transport</code> 定义的是传输层的配置。我们使用这个配置来联系 konnectivity 服务器。
+   当 <code>proxyProtocol</code> 是 HTTPConnect 或 GRPC 时需要设置此字段。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `EgressSelection`     {#apiserver-k8s-io-v1alpha1-EgressSelection}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [EgressSelectorConfiguration](#apiserver-k8s-io-v1alpha1-EgressSelectorConfiguration)
+
+<p><!--EgressSelection provides the configuration for a single egress selection client.-->
+EgressSelection 为某个 Egress 选择客户端提供配置信息。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>name</code> <B>[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p><!--name is the name of the egress selection.
+Currently supported values are &quot;controlplane&quot;, &quot;master&quot;, &quot;etcd&quot; and &quot;cluster&quot;
+The &quot;master&quot; egress selector is deprecated in favor of &quot;controlplane&quot;-->
+  <code>name</code> 是 Egress 选择器的名称。当前支持的取值有 &quot;controlplane&quot;，
+  &quot;master&quot;，&quot;etcd&quot; 和 &quot;cluster&quot;。
+  &quot;master&quot; Egress 选择器已被弃用，推荐使用 &quot;controlplane&quot;。
+  </p>
+</td>
+</tr>
+<tr><td><code>connection</code> <B>[必需]</B><br/>
+<a href="#apiserver-k8s-io-v1alpha1-Connection"><code>Connection</code></a>
+</td>
+<td>
+   <p><!--connection is the exact information used to configure the egress selection-->
+   <code>connection</code> 是用来配置 Egress 选择器的配置信息。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ProtocolType`     {#apiserver-k8s-io-v1alpha1-ProtocolType}
+
+<!--
+(Alias of `string`)
+
+**Appears in:**
+-->
+（`string` 类型的别名）
+
+**出现在：**
+
+- [Connection](#apiserver-k8s-io-v1alpha1-Connection)
+
+<p><!--ProtocolType is a set of valid values for Connection.ProtocolType-->
+ProtocolType 是 <code>connection.protocolType</code> 的合法值集合。
+</p>
+
+## `TCPTransport`     {#apiserver-k8s-io-v1alpha1-TCPTransport}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [Transport](#apiserver-k8s-io-v1alpha1-Transport)
+
+<p><!--TCPTransport provides the information to connect to konnectivity server via TCP-->
+TCPTransport 提供使用 TCP 连接 konnectivity 服务器时需要的信息。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>url</code> <B>[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p><!--URL is the location of the konnectivity server to connect to.
+As an example it might be &quot;https://127.0.0.1:8131&quot;-->
+   <code>url</code> 是要连接的 konnectivity 服务器的位置。例如 &quot;https://127.0.0.1:8131&quot;。
+   </p>
+</td>
+</tr>
+<tr><td><code>tlsConfig</code><br/>
+<a href="#apiserver-k8s-io-v1alpha1-TLSConfig"><code>TLSConfig</code></a>
+</td>
+<td>
+   <p><!-- TLSConfig is the config needed to use TLS when connecting to konnectivity server-->
+   <code>tlsConfig</code> 是使用 TLS 来连接 konnectivity 服务器时需要的信息。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `TLSConfig`     {#apiserver-k8s-io-v1alpha1-TLSConfig}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [TCPTransport](#apiserver-k8s-io-v1alpha1-TCPTransport)
+
+
+<p><!--TLSConfig provides the authentication information to connect to konnectivity server
+Only used with TCPTransport-->
+TLSConfig 为连接 konnectivity 服务器提供身份认证信息。仅用于 TCPTransport。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>caBundle</code><br/>
+<code>string</code>
+</td>
+<td>
+   <p><!--caBundle is the file location of the CA to be used to determine trust with the konnectivity server.
+Must be absent/empty if TCPTransport.URL is prefixed with http://
+If absent while TCPTransport.URL is prefixed with https://, default to system trust roots.-->
+   <code>caBundle</code> 是指向用来确定与 konnectivity 服务器间信任欢喜的 CA 证书包的文件位置。
+   当 <code>tcpTransport.url</code> 前缀为 "http://" 时必须不设置，或者设置为空。
+   如果 <code>tcpTransport.url</code> 前缀为 "https://" 并且此字段未设置，则默认使用系统的信任根。
+   </p>
+</td>
+</tr>
+<tr><td><code>clientKey</code><br/>
+<code>string</code>
+</td>
+<td>
+   <p><!--clientKey is the file location of the client key to be used in mtls handshakes with the konnectivity server.
+Must be absent/empty if TCPTransport.URL is prefixed with http://
+Must be configured if TCPTransport.URL is prefixed with https://-->
+   <code>clientKey</code> 是与 konnectivity 服务器进行 mtls 握手时使用的客户端秘钥文件位置。
+   如果 `tcp.url` 前缀为 <code>http://</code>，必须不指定或者为空；
+   如果 `tcp.url` 前缀为 <code>https://</code>，必须设置。
+   </p>
+</td>
+</tr>
+<tr><td><code>clientCert</code><br/>
+<code>string</code>
+</td>
+<td>
+   <p><!--clientCert is the file location of the client certificate to be used in mtls handshakes with the konnectivity server.
+Must be absent/empty if TCPTransport.URL is prefixed with http://
+Must be configured if TCPTransport.URL is prefixed with https://-->
+   <code>clientCert</code> 是与 konnectivity 服务器进行 mtls 握手时使用的客户端证书文件位置。
+   如果 `tcp.url` 前缀为 <code>http://</code>，必须不指定或者为空；
+   如果 `tcp.url` 前缀为 <code>https://</code>，必须设置。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Transport`     {#apiserver-k8s-io-v1alpha1-Transport}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [Connection](#apiserver-k8s-io-v1alpha1-Connection)
+
+
+<p><!--Transport defines the transport configurations we use to dial to the konnectivity server-->
+Transport 定义联系 konnectivity 服务器时要使用的传输层配置。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>tcp</code><br/>
+<a href="#apiserver-k8s-io-v1alpha1-TCPTransport"><code>TCPTransport</code></a>
+</td>
+<td>
+   <p><!--TCP is the TCP configuration for communicating with the konnectivity server via TCP
+ProxyProtocol of GRPC is not supported with TCP transport at the moment
+Requires at least one of TCP or UDS to be set-->
+   <code>tcp</code> 包含通过 TCP 与 konnectivity 服务器通信时使用的 TCP 配置。
+   目前使用 TCP 传输时不支持 GRPC 的 <code>proxyProtocol</code>。
+   <code>tcp</code> 和 <code>uds</code> 二者至少设置一个。
+   </p>
+</td>
+</tr>
+<tr><td><code>uds</code><br/>
+<a href="#apiserver-k8s-io-v1alpha1-UDSTransport"><code>UDSTransport</code></a>
+</td>
+<td>
+   <p><!--UDS is the UDS configuration for communicating with the konnectivity server via UDS
+Requires at least one of TCP or UDS to be set-->
+   <code>uds</code> 包含通过 UDS 与 konnectivity 服务器通信时使用的 UDS 配置。
+   <code>tcp</code> 和 <code>uds</code> 二者至少设置一个。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `UDSTransport`     {#apiserver-k8s-io-v1alpha1-UDSTransport}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [Transport](#apiserver-k8s-io-v1alpha1-Transport)
+
+<p><!--UDSTransport provides the information to connect to konnectivity server via UDS-->
+UDSTransport 设置通过 UDS 连接 konnectivity 服务器时需要的信息。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+
+<tr><td><code>udsName</code> <B>[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p><!--UDSName is the name of the unix domain socket to connect to konnectivity server
+This does not use a unix:// prefix. (Eg: /etc/srv/kubernetes/konnectivity-server/konnectivity-server.socket)-->
+   <code>udsName</code> 是与 konnectivity 服务器连接时使用的 UNIX 域套接字名称。
+   字段取值不要求包含 <code>unix://</code> 前缀。
+   （例如：<code>/etc/srv/kubernetes/konnectivity-server/konnectivity-server.socket</code>）
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
diff --git a/content/zh-cn/docs/reference/config-api/apiserver-encryption.v1.md b/content/zh-cn/docs/reference/config-api/apiserver-encryption.v1.md
new file mode 100644
index 0000000000..a53b3d757d
--- /dev/null
+++ b/content/zh-cn/docs/reference/config-api/apiserver-encryption.v1.md
@@ -0,0 +1,322 @@
+---
+title: kube-apiserver 加密配置 (v1)
+content_type: tool-reference
+package: apiserver.config.k8s.io/v1
+auto_generated: true
+---
+
+<!--
+title: kube-apiserver Encryption Configuration (v1)
+content_type: tool-reference
+package: apiserver.config.k8s.io/v1
+auto_generated: true
+-->
+
+<p><!--Package v1 is the v1 version of the API.-->
+包 v1 是 API 的 v1 版本。</p>
+
+<!--
+## Resource Types
+-->
+## 资源类型
+
+- [EncryptionConfiguration](#apiserver-config-k8s-io-v1-EncryptionConfiguration)
+
+## `EncryptionConfiguration`     {#apiserver-config-k8s-io-v1-EncryptionConfiguration}
+
+<p><!--EncryptionConfiguration stores the complete configuration for encryption providers.-->
+EncryptionConfiguration 为加密驱动保存完整的配置信息。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>apiVersion</code><br/>string</td><td><code>apiserver.config.k8s.io/v1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>EncryptionConfiguration</code></td></tr>
+<tr><td><code>resources</code> <B>[必需]</B><br/>
+<a href="#apiserver-config-k8s-io-v1-ResourceConfiguration"><code>[]ResourceConfiguration</code></a>
+</td>
+<td>
+   <p><!--resources is a list containing resources, and their corresponding encryption providers.-->
+   <code>resources</code> 是一个包含资源及其对应的加密驱动的列表。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `AESConfiguration`     {#apiserver-config-k8s-io-v1-AESConfiguration}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ProviderConfiguration](#apiserver-config-k8s-io-v1-ProviderConfiguration)
+
+<p><!--AESConfiguration contains the API configuration for an AES transformer.-->
+AESConfiguration 包含 AES 转换器的 API 配置信息。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>keys</code> <B>[必需]</B><br/>
+<a href="#apiserver-config-k8s-io-v1-Key"><code>[]Key</code></a>
+</td>
+<td>
+   <p><!--keys is a list of keys to be used for creating the AES transformer.
+Each key has to be 32 bytes long for AES-CBC and 16, 24 or 32 bytes for AES-GCM.-->
+   <code>keys</code> 是一组用于创建 AES 转换器的秘钥。
+   对于 AES-CBC，每个秘钥必须是 32 字节长；对于 AES-GCM，每个秘钥可以是 16、24、32 字节长。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `IdentityConfiguration`     {#apiserver-config-k8s-io-v1-IdentityConfiguration}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ProviderConfiguration](#apiserver-config-k8s-io-v1-ProviderConfiguration)
+
+<p><!--IdentityConfiguration is an empty struct to allow identity transformer in provider configuration.-->
+IdentityConfiguration 是一个空的结构，用来支持在驱动配置中支持标识转换器。
+</p>
+
+## `KMSConfiguration`     {#apiserver-config-k8s-io-v1-KMSConfiguration}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ProviderConfiguration](#apiserver-config-k8s-io-v1-ProviderConfiguration)
+
+<p><!--KMSConfiguration contains the name, cache size and path to configuration file for a KMS based envelope transformer.-->
+KMSConfiguration 包含基于 KMS 的封套转换器的名称、缓存大小以及配置文件路径信息。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>name</code> <B>[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p><!--name is the name of the KMS plugin to be used.-->
+   <code>name</code> 是要使用的 KMS 插件名称。
+   </p>
+</td>
+</tr>
+<tr><td><code>cachesize</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <p><!--cachesize is the maximum number of secrets which are cached in memory. The default value is 1000.  Set to a negative value to disable caching.-->
+   <code>cachesize</code> 是可在内存中缓存的 Secret 数量上限。默认值是 1000。将此字段设置为负值会禁用缓存。
+   </p>
+</td>
+</tr>
+<tr><td><code>endpoint</code> <B>[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p><!--endpoint is the gRPC server listening address, for example &quot;unix:///var/run/kms-provider.sock&quot;.-->
+   <code>endpoint</code> 是 gRPC 服务器的监听地址，例如 &quot;unix:///var/run/kms-provider.sock&quot;。
+   </p>
+</td>
+</tr>
+<tr><td><code>timeout</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <p><!--timeout for gRPC calls to kms-plugin (ex. 5s). The default is 3 seconds.-->
+   对 KMS 插件执行 gRPC 调用的超时时长（例如，'5s'）。默认值为 3 秒。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Key`     {#apiserver-config-k8s-io-v1-Key}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [AESConfiguration](#apiserver-config-k8s-io-v1-AESConfiguration)
+- [SecretboxConfiguration](#apiserver-config-k8s-io-v1-SecretboxConfiguration)
+
+<p><!--Key contains name and secret of the provided key for a transformer.-->
+Key 中包含为某转换器所提供的键名和对应的私密数据。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>name</code> <B>[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p><!--name is the name of the key to be used while storing data to disk.-->
+   <code>name</code> 是在向磁盘中存储数据时使用的键名。
+   </p>
+</td>
+</tr>
+<tr><td><code>secret</code> <B>[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <p><!--secret is the actual key, encoded in base64.-->
+   <code>secret</code> 是实际的秘钥，用 base64 编码。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ProviderConfiguration`     {#apiserver-config-k8s-io-v1-ProviderConfiguration}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ResourceConfiguration](#apiserver-config-k8s-io-v1-ResourceConfiguration)
+
+<p><!--ProviderConfiguration stores the provided configuration for an encryption provider.-->
+ProviderConfiguration 为加密驱动存储配置信息。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>aesgcm</code> <B>[必需]</B><br/>
+<a href="#apiserver-config-k8s-io-v1-AESConfiguration"><code>AESConfiguration</code></a>
+</td>
+<td>
+   <p><!--aesgcm is the configuration for the AES-GCM transformer.-->
+   <code>aesgcm</code> 是用于 AES-GCM 转换器的配置。
+   </p>
+</td>
+</tr>
+<tr><td><code>aescbc</code> <B>[必需]</B><br/>
+<a href="#apiserver-config-k8s-io-v1-AESConfiguration"><code>AESConfiguration</code></a>
+</td>
+<td>
+   <p><!--aescbc is the configuration for the AES-CBC transformer.-->
+   <code>aescbc</code> 是用于 AES-CBC 转换器的配置。
+   </p>
+</td>
+</tr>
+<tr><td><code>secretbox</code> <B>[必需]</B><br/>
+<a href="#apiserver-config-k8s-io-v1-SecretboxConfiguration"><code>SecretboxConfiguration</code></a>
+</td>
+<td>
+   <p><!--secretbox is the configuration for the Secretbox based transformer.-->
+   <code>secretbox</code> 是用于基于 Secretbox 的转换器的配置。
+   </p>
+</td>
+</tr>
+<tr><td><code>identity</code> <B>[必需]</B><br/>
+<a href="#apiserver-config-k8s-io-v1-IdentityConfiguration"><code>IdentityConfiguration</code></a>
+</td>
+<td>
+   <p><!--identity is the (empty) configuration for the identity transformer.-->
+   <code>identity</code> 是用于标识转换器的配置（空）。
+   </p>
+</td>
+</tr>
+<tr><td><code>kms</code> <B>[必需]</B><br/>
+<a href="#apiserver-config-k8s-io-v1-KMSConfiguration"><code>KMSConfiguration</code></a>
+</td>
+<td>
+   <p><!--kms contains the name, cache size and path to configuration file for a KMS based envelope transformer.-->
+   <code>kms</code> 中包含用于基于 KMS 的封套转换器的名称、缓存大小以及配置文件路径信息。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ResourceConfiguration`     {#apiserver-config-k8s-io-v1-ResourceConfiguration}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [EncryptionConfiguration](#apiserver-config-k8s-io-v1-EncryptionConfiguration)
+
+<p><!--ResourceConfiguration stores per resource configuration.-->
+ResourceConfiguration 中保存资源配置。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>resources</code> <B>[必需]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+   <p><!--resources is a list of kubernetes resources which have to be encrypted.-->
+   <code>resources</code> 是必需要加密的 Kubernetes 资源的列表。
+   </p>
+</td>
+</tr>
+<tr><td><code>providers</code> <B>[必需]</B><br/>
+<a href="#apiserver-config-k8s-io-v1-ProviderConfiguration"><code>[]ProviderConfiguration</code></a>
+</td>
+<td>
+   <p><!--providers is a list of transformers to be used for reading and writing the resources to disk.  eg: aesgcm, aescbc, secretbox, identity.-->
+   <code>providers</code> 是一个转换器列表，用来将资源写入到磁盘或从磁盘上读出。
+   例如：'aesgcm'、'aescbc'、'secretbox'、'identity'。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `SecretboxConfiguration`     {#apiserver-config-k8s-io-v1-SecretboxConfiguration}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ProviderConfiguration](#apiserver-config-k8s-io-v1-ProviderConfiguration)
+
+<p><!--SecretboxConfiguration contains the API configuration for an Secretbox transformer.-->
+SecretboxConfiguration 包含用于某 Secretbox 转换器的 API 配置。
+</p>
+
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>keys</code> <B>[必需]</B><br/>
+<a href="#apiserver-config-k8s-io-v1-Key"><code>[]Key</code></a>
+</td>
+<td>
+   <p><!--keys is a list of keys to be used for creating the Secretbox transformer.
+Each key has to be 32 bytes long.-->
+   <code>keys</code> 是一个秘钥列表，用来创建 Secretbox 转换器。每个秘钥必须是 32 字节长。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
diff --git a/content/zh-cn/docs/reference/config-api/apiserver-eventratelimit.v1alpha1.md b/content/zh-cn/docs/reference/config-api/apiserver-eventratelimit.v1alpha1.md
new file mode 100644
index 0000000000..32503d37fb
--- /dev/null
+++ b/content/zh-cn/docs/reference/config-api/apiserver-eventratelimit.v1alpha1.md
@@ -0,0 +1,152 @@
+---
+title: Event Rate Limit Configuration (v1alpha1)
+content_type: tool-reference
+package: eventratelimit.admission.k8s.io/v1alpha1
+---
+
+<!--
+## Resource Types
+-->
+## 资源类型  {#resource-types}
+
+- [Configuration](#eventratelimit-admission-k8s-io-v1alpha1-Configuration)
+
+## `Configuration`     {#eventratelimit-admission-k8s-io-v1alpha1-Configuration}
+
+<!--
+<p>Configuration provides configuration for the EventRateLimit admission
+controller.</p>
+-->
+<p>Configuration 为 EventRateLimit 准入控制器提供配置数据。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>apiVersion</code><br/>string</td><td><code>eventratelimit.admission.k8s.io/v1alpha1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>Configuration</code></td></tr>
+
+<tr><td><code>limits</code> <B>[Required]</B><br/>
+<a href="#eventratelimit-admission-k8s-io-v1alpha1-Limit"><code>[]Limit</code></a>
+</td>
+<td>
+  <!--
+   <p>limits are the limits to place on event queries received.
+Limits can be placed on events received server-wide, per namespace,
+per user, and per source+object.
+At least one limit is required.</p>
+  -->
+  <p>limits 是为所接收到的事件查询设置的限制。可以针对服务器端接收到的事件设置限制，
+按逐个名字空间、逐个用户、或逐个来源+对象组合的方式均可以。
+至少需要设置一种限制。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Limit`     {#eventratelimit-admission-k8s-io-v1alpha1-Limit}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [Configuration](#eventratelimit-admission-k8s-io-v1alpha1-Configuration)
+
+<!--
+<p>Limit is the configuration for a particular limit type</p>
+-->
+<p>Limit 是为特定限制类型提供的配置数据。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>type</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#eventratelimit-admission-k8s-io-v1alpha1-LimitType"><code>LimitType</code></a>
+</td>
+<td>
+  <!--
+   <p>type is the type of limit to which this configuration applies</p>
+  -->
+  <p>type 是此配置所适用的限制的类型。</p>
+</td>
+</tr>
+<tr><td><code>qps</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+  <!--
+   <p>qps is the number of event queries per second that are allowed for this
+type of limit. The qps and burst fields are used together to determine if
+a particular event query is accepted. The qps determines how many queries
+are accepted once the burst amount of queries has been exhausted.</p>
+  -->
+   <p>qps 是针对此类型的限制每秒钟所允许的事件查询次数。qps 和 burst
+字段一起用来确定是否特定的事件查询会被接受。qps 确定的是当超出查询数量的
+burst 值时可以接受的查询个数。</p>
+</td>
+</tr>
+<tr><td><code>burst</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+  <!--
+   <p>burst is the burst number of event queries that are allowed for this type
+of limit. The qps and burst fields are used together to determine if a
+particular event query is accepted. The burst determines the maximum size
+of the allowance granted for a particular bucket. For example, if the burst
+is 10 and the qps is 3, then the admission control will accept 10 queries
+before blocking any queries. Every second, 3 more queries will be allowed.
+If some of that allowance is not used, then it will roll over to the next
+second, until the maximum allowance of 10 is reached.</p>
+  -->
+   <p>burst 是针对此类型限制的突发事件查询数量。qps 和 burst 字段一起使用可用来确定特定的事件查询是否被接受。
+burst 字段确定针对特定的事件桶（bucket）可以接受的规模上限。
+例如，如果 burst 是 10，qps 是 3，那么准入控制器会在接收 10 个查询之后阻塞所有查询。
+每秒钟可以额外允许 3 个查询。如果这一限额未被用尽，则剩余的限额会被顺延到下一秒钟，
+直到再次达到 10 个限额的上限。</p>
+</td>
+</tr>
+<tr><td><code>cacheSize</code><br/>
+<code>int32</code>
+</td>
+<td>
+  <!--
+   <p>cacheSize is the size of the LRU cache for this type of limit. If a bucket
+is evicted from the cache, then the allowance for that bucket is reset. If
+more queries are later received for an evicted bucket, then that bucket
+will re-enter the cache with a clean slate, giving that bucket a full
+allowance of burst queries.</p>
+<p>The default cache size is 4096.</p>
+<p>If limitType is 'server', then cacheSize is ignored.</p>
+  -->
+   <p>cacheSize 是此类型限制的 LRU 缓存的规模。如果某个事件桶（bucket）被从缓存中剔除，
+该事件桶所对应的限额也会被重置。如果后来再次收到针对某个已被剔除的事件桶的查询，
+则该事件桶会重新以干净的状态进入缓存，因而获得全量的突发查询配额。</p>
+  <p>默认的缓存大小是 4096。</p>
+  <p>如果 limitType 是 “server”，则 cacheSize 设置会被忽略。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `LimitType`     {#eventratelimit-admission-k8s-io-v1alpha1-LimitType}
+
+<!--
+(Alias of `string`)
+
+**Appears in:**
+-->
+（`string` 类型的别名）
+
+**出现在：**
+
+- [Limit](#eventratelimit-admission-k8s-io-v1alpha1-Limit)
+
+<!--
+<p>LimitType is the type of the limit (e.g., per-namespace)</p>
+-->
+<p>LimitType 是限制类型（例如：per-namespace）。</p>
+
+
diff --git a/content/zh-cn/docs/reference/config-api/apiserver-webhookadmission.v1.md b/content/zh-cn/docs/reference/config-api/apiserver-webhookadmission.v1.md
new file mode 100644
index 0000000000..fc19d21dde
--- /dev/null
+++ b/content/zh-cn/docs/reference/config-api/apiserver-webhookadmission.v1.md
@@ -0,0 +1,52 @@
+---
+title: WebhookAdmission 配置 (v1)
+content_type: tool-reference
+package: apiserver.config.k8s.io/v1
+auto_generated: true
+---
+
+<!--
+title: WebhookAdmission Configuration (v1)
+content_type: tool-reference
+package: apiserver.config.k8s.io/v1
+auto_generated: true
+-->
+
+<!--
+<p>Package v1 is the v1 version of the API.</p>
+
+## Resource Types 
+-->
+<p>此 API 的版本是 v1。</p>
+
+## 资源类型   {#resource-types}
+
+- [WebhookAdmission](#apiserver-config-k8s-io-v1-WebhookAdmission)
+
+## `WebhookAdmission`     {#apiserver-config-k8s-io-v1-WebhookAdmission}
+
+<!--
+<p>WebhookAdmission provides configuration for the webhook admission controller.</p>
+-->
+<p>WebhookAdmission 为 Webhook 准入控制器提供配置信息。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>apiserver.config.k8s.io/v1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>WebhookAdmission</code></td></tr>
+    
+  
+<tr><td><code>kubeConfigFile</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--<p>KubeConfigFile is the path to the kubeconfig file.</p>-->
+   <p>字段 kubeConfigFile 包含指向 kubeconfig 文件的路径。</p>
+</td>
+</tr>
+    
+</tbody>
+</table>
+
diff --git a/content/zh-cn/docs/reference/config-api/client-authentication.v1.md b/content/zh-cn/docs/reference/config-api/client-authentication.v1.md
new file mode 100644
index 0000000000..b1cf6a708b
--- /dev/null
+++ b/content/zh-cn/docs/reference/config-api/client-authentication.v1.md
@@ -0,0 +1,285 @@
+---
+title: 客户端身份认证（Client Authentication） (v1)
+content_type: tool-reference
+package: client.authentication.k8s.io/v1
+auto_generated: true
+---
+
+<!--
+title: Client Authentication (v1)
+content_type: tool-reference
+package: client.authentication.k8s.io/v1
+auto_generated: true
+-->
+
+<!--
+## Resource Types 
+-->
+## 资源类型   {#resource-types}
+
+- [ExecCredential](#client-authentication-k8s-io-v1-ExecCredential)
+  
+## `ExecCredential`     {#client-authentication-k8s-io-v1-ExecCredential}
+    
+<!--
+ExecCredential is used by exec-based plugins to communicate credentials to
+HTTP transports.
+-->
+ExecCredential 由基于 exec 的插件使用，与 HTTP 传输组件沟通凭据信息。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>client.authentication.k8s.io/v1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>ExecCredential</code></td></tr>
+    
+<tr><td><code>spec</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#client-authentication-k8s-io-v1-ExecCredentialSpec"><code>ExecCredentialSpec</code></a>
+</td>
+<td>
+   <!--Spec holds information passed to the plugin by the transport.-->
+   字段 spec 包含由 HTTP 传输组件传递给插件的信息。
+</td>
+</tr>
+
+<tr><td><code>status</code><br/>
+<a href="#client-authentication-k8s-io-v1-ExecCredentialStatus"><code>ExecCredentialStatus</code></a>
+</td>
+<td>
+   <!--Status is filled in by the plugin and holds the credentials that the transport
+   should use to contact the API.-->
+   字段 status 由插件填充，包含传输组件与 API 服务器连接时需要提供的凭据。
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Cluster`     {#client-authentication-k8s-io-v1-Cluster}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ExecCredentialSpec](#client-authentication-k8s-io-v1-ExecCredentialSpec)
+
+<!--
+Cluster contains information to allow an exec plugin to communicate
+with the kubernetes cluster being authenticated to.
+
+To ensure that this struct contains everything someone would need to communicate
+with a kubernetes cluster (just like they would via a kubeconfig), the fields
+should shadow "k8s.io/client-go/tools/clientcmd/api/v1".Cluster, with the exception
+of CertificateAuthority, since CA data will always be passed to the plugin as bytes.
+-->
+Cluster 中包含允许 exec 插件与 Kubernetes 集群进行通信身份认证时所需
+的信息。
+
+为了确保该结构体包含需要与 Kubernetes 集群进行通信的所有内容（就像通过 Kubeconfig 一样），
+除了证书授权之外，该字段应该映射到 "k8s.io/client-go/tools/clientcmd/api/v1".cluster，
+由于 CA 数据将始终以字节形式传递给插件。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>server</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--Server is the address of the kubernetes cluster (https://hostname:port).-->
+   字段 server 是 Kubernetes 集群的地址（https://hostname:port）。
+</td>
+</tr>
+
+<tr><td><code>tls-server-name</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--TLSServerName is passed to the server for SNI and is used in the client to
+   check server certificates against. If ServerName is empty, the hostname
+   used to contact the server is used.-->
+   tls-server-name 是用来提供给服务器用作 SNI 解析的，客户端以此检查服务器的证书。
+   如此字段为空，则使用链接服务器时使用的主机名。
+</td>
+</tr>
+
+<tr><td><code>insecure-skip-tls-verify</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--InsecureSkipTLSVerify skips the validity check for the server's certificate.
+   This will make your HTTPS connections insecure.-->
+   设置此字段之后，会令客户端跳过对服务器端证书的合法性检查。
+   这会使得你的 HTTPS 链接不再安全。
+</td>
+</tr>
+
+<tr><td><code>certificate-authority-data</code><br/>
+<code>[]byte</code>
+</td>
+<td>
+   <!--CAData contains PEM-encoded certificate authority certificates.
+   If empty, system roots should be used.-->
+   此字段包含 PEM 编码的证书机构（CA）证书。
+   如果为空，则使用系统的根证书。
+</td>
+</tr>
+
+<tr><td><code>proxy-url</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--ProxyURL is the URL to the proxy to be used for all requests to this
+   cluster.-->
+   此字段用来设置向集群发送所有请求时要使用的代理服务器。
+</td>
+</tr>
+
+<tr><td><code>config</code><br/>
+<a href="https://godoc.org/k8s.io/apimachinery/pkg/runtime/#RawExtension"><code>k8s.io/apimachinery/pkg/runtime.RawExtension</code></a>
+</td>
+<td>
+   <!--Config holds additional config data that is specific to the exec
+   plugin with regards to the cluster being authenticated to.
+
+   This data is sourced from the clientcmd Cluster object's
+   extensions[client.authentication.k8s.io/exec] field:
+   -->
+   <p>此字段包含一些额外的、特定于 exec 插件和所连接的集群的数据，</p>
+   <p>此字段来自于 clientcmd 集群对象的 <code>extensions[client.authentication.k8s.io/exec]</code>
+   字段：</p>
+<pre>
+clusters:
+- name: my-cluster
+  cluster:
+    ...
+    extensions:
+    - name: client.authentication.k8s.io/exec  # 针对每个集群 exec 配置所预留的扩展名称
+      extension:
+        audience: 06e3fbd18de8  # 任意配置信息
+</pre>
+
+   <!--In some environments, the user config may be exactly the same across many clusters
+   (i.e. call this exec plugin) minus some details that are specific to each cluster
+   such as the audience.  This field allows the per cluster config to be directly
+   specified with the cluster info.  Using this field to store secret data is not
+   recommended as one of the prime benefits of exec plugins is that no secrets need
+   to be stored directly in the kubeconfig.-->
+   <p>在某些环境中，用户配置可能对很多集群而言都完全一样（即调用同一个 exec 插件），
+   只是针对不同集群会有一些细节上的差异，例如 audience。
+   此字段使得特定于集群的配置可以直接使用集群信息来设置。
+   不建议使用此字段来保存 Secret 数据，因为 exec 插件的主要优势之一是不需要在
+   kubeconfig 中保存 Secret 数据。</p>
+</td>
+</tr>
+</tbody>
+</table>
+    
+## `ExecCredentialSpec`     {#client-authentication-k8s-io-v1-ExecCredentialSpec}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ExecCredential](#client-authentication-k8s-io-v1-ExecCredential)
+
+<!--
+ExecCredentialSpec holds request and runtime specific information provided by
+the transport.
+-->
+ExecCredentialSpec 保存传输组件所提供的特定于请求和运行时的信息。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>cluster</code><br/>
+<a href="#client-authentication-k8s-io-v1-Cluster"><code>Cluster</code></a>
+</td>
+<td>
+   <!--Cluster contains information to allow an exec plugin to communicate with the
+   kubernetes cluster being authenticated to. Note that Cluster is non-nil only
+   when provideClusterInfo is set to true in the exec provider config (i.e.,
+   ExecConfig.ProvideClusterInfo).-->
+   此字段中包含的信息使得 exec 插件能够与要访问的 Kubernetes 集群通信。
+   注意，cluster 字段只有在 exec 驱动的配置中 provideClusterInfo
+  （即：ExecConfig.ProvideClusterInfo）被设置为 true 时才不能为空。
+</td>
+</tr>
+
+<tr><td><code>interactive</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--Interactive declares whether stdin has been passed to this exec plugin.-->
+   此字段用来标明标准输出信息是否已传递给 exec 插件。
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ExecCredentialStatus`     {#client-authentication-k8s-io-v1-ExecCredentialStatus}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ExecCredential](#client-authentication-k8s-io-v1-ExecCredential)
+
+<!--
+ExecCredentialStatus holds credentials for the transport to use.
+
+Token and ClientKeyData are sensitive fields. This data should only be
+transmitted in-memory between client and exec plugin process. Exec plugin
+itself should at least be protected via file permissions.
+-->
+<p>ExecCredentialStatus 中包含传输组件要使用的凭据。</p>
+<p>字段 token 和 clientKeyData 都是敏感字段。此数据只能在
+客户端与 exec 插件进程之间使用内存来传递。exec 插件本身至少
+应通过文件访问许可来实施保护。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+<tr><td><code>expirationTimestamp</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#time-v1-meta"><code>meta/v1.Time</code></a>
+</td>
+<td>
+   <!--ExpirationTimestamp indicates a time when the provided credentials expire.-->
+   给出所提供的凭据到期的时间。
+</td>
+</tr>
+
+<tr><td><code>token</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--Token is a bearer token used by the client for request authentication.-->
+   客户端用做请求身份认证的持有者令牌。
+</td>
+</tr>
+
+<tr><td><code>clientCertificateData</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--PEM-encoded client TLS certificates (including intermediates, if any).-->
+   PEM 编码的客户端 TLS 证书（如果有临时证书，也会包含）。
+</td>
+</tr>
+
+<tr><td><code>clientKeyData</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--PEM-encoded private key for the above certificate.-->
+   与上述证书对应的、PEM 编码的私钥。
+</td>
+</tr>
+</tbody>
+</table>
+
diff --git a/content/zh-cn/docs/reference/config-api/client-authentication.v1beta1.md b/content/zh-cn/docs/reference/config-api/client-authentication.v1beta1.md
new file mode 100644
index 0000000000..b683ed5736
--- /dev/null
+++ b/content/zh-cn/docs/reference/config-api/client-authentication.v1beta1.md
@@ -0,0 +1,334 @@
+---
+title: 客户端身份认证（Client Authentication）(v1beta1)
+content_type: tool-reference
+package: client.authentication.k8s.io/v1beta1
+auto_generated: true
+---
+
+<!-- 
+title: Client Authentication (v1beta1)
+content_type: tool-reference
+package: client.authentication.k8s.io/v1beta1
+auto_generated: true
+-->
+
+
+<!--
+## Resource Types 
+-->
+## 资源类型   {#resource-types}
+
+
+- [ExecCredential](#client-authentication-k8s-io-v1beta1-ExecCredential)
+  
+    
+
+
+## `ExecCredential`     {#client-authentication-k8s-io-v1beta1-ExecCredential}
+    
+
+
+
+
+<!--
+ExecCredential is used by exec-based plugins to communicate credentials to
+HTTP transports.
+-->
+ExecCredential 由基于 exec 的插件使用，与 HTTP 传输组件沟通凭据信息。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>client.authentication.k8s.io/v1beta1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>ExecCredential</code></td></tr>
+    
+
+  
+  
+<tr><td><code>spec</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#client-authentication-k8s-io-v1beta1-ExecCredentialSpec"><code>ExecCredentialSpec</code></a>
+</td>
+<td>
+   <!--Spec holds information passed to the plugin by the transport.-->
+   字段 spec 包含由 HTTP 传输组件传递给插件的信息。
+</td>
+</tr>
+    
+  
+<tr><td><code>status</code><br/>
+<a href="#client-authentication-k8s-io-v1beta1-ExecCredentialStatus"><code>ExecCredentialStatus</code></a>
+</td>
+<td>
+   <!--Status is filled in by the plugin and holds the credentials that the transport
+   should use to contact the API.-->
+   字段 status 由插件填充，包含传输组件与 API 服务器连接时需要提供的凭据。
+</td>
+</tr>
+    
+  
+</tbody>
+</table>
+    
+
+
+## `Cluster`     {#client-authentication-k8s-io-v1beta1-Cluster}
+    
+
+
+
+<!--**Appears in:**-->
+**出现在：**
+
+- [ExecCredentialSpec](#client-authentication-k8s-io-v1beta1-ExecCredentialSpec)
+
+
+<!--
+Cluster contains information to allow an exec plugin to communicate
+with the kubernetes cluster being authenticated to.
+
+To ensure that this struct contains everything someone would need to communicate
+with a kubernetes cluster (just like they would via a kubeconfig), the fields
+should shadow "k8s.io/client-go/tools/clientcmd/api/v1".Cluster, with the exception
+of CertificateAuthority, since CA data will always be passed to the plugin as bytes.
+-->
+Cluster 中包含允许 exec 插件与 Kubernetes 集群进行通信身份认证时所需
+的信息。
+
+为了确保该结构体包含需要与 Kubernetes 集群进行通信的所有内容（就像通过 Kubeconfig 一样），
+该字段应该映射到 "k8s.io/client-go/tools/clientcmd/api/v1".cluster，
+除了证书授权之外，由于 CA 数据将始终以字节形式传递给插件。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+
+  
+<tr><td><code>server</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--Server is the address of the kubernetes cluster (https://hostname:port).-->
+   字段 server 是 Kubernetes 集群的地址（https://hostname:port）。
+</td>
+</tr>
+    
+  
+<tr><td><code>tls-server-name</code><br/>
+<code>string</code>
+</td>
+<td>
+<!--
+   TLSServerName is passed to the server for SNI and is used in the client to
+check server certificates against. If ServerName is empty, the hostname
+used to contact the server is used.
+-->
+   tls-server-name 是用来提供给服务器用作 SNI 解析的，客户端以此检查服务器的证书。
+   如此字段为空，则使用链接服务器时使用的主机名。
+</td>
+</tr>
+    
+  
+<tr><td><code>insecure-skip-tls-verify</code><br/>
+<code>bool</code>
+</td>
+<td>
+<!-- 
+   InsecureSkipTLSVerify skips the validity check for the server's certificate.
+This will make your HTTPS connections insecure. 
+-->
+   设置此字段之后，会令客户端跳过对服务器端证书的合法性检查。
+   这会使得你的 HTTPS 链接不再安全。
+</td>
+</tr>
+    
+  
+<tr><td><code>certificate-authority-data</code><br/>
+<code>[]byte</code>
+</td>
+<td>
+<!-- 
+   CAData contains PEM-encoded certificate authority certificates.
+If empty, system roots should be used.
+-->
+   此字段包含 PEM 编码的证书机构（CA）证书。
+   如果为空，则使用系统的根证书。
+</td>
+</tr>
+    
+  
+<tr><td><code>proxy-url</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--ProxyURL is the URL to the proxy to be used for all requests to this cluster.-->
+   此字段用来设置向集群发送所有请求时要使用的代理服务器。
+</td>
+</tr>
+    
+  
+<tr><td><code>config</code><br/>
+<a href="https://godoc.org/k8s.io/apimachinery/pkg/runtime/#RawExtension"><code>k8s.io/apimachinery/pkg/runtime.RawExtension</code></a>
+</td>
+<td>
+<!-- 
+   Config holds additional config data that is specific to the exec
+plugin with regards to the cluster being authenticated to.
+
+This data is sourced from the clientcmd Cluster object's
+extensions[client.authentication.k8s.io/exec] field: 
+-->
+   <p>此字段包含一些额外的、特定于 exec 插件和所连接的集群的数据，</p>
+   <p>此字段来自于 clientcmd 集群对象的 <code>extensions[client.authentication.k8s.io/exec]</code>
+   字段：</p>
+<pre>
+clusters:
+- name: my-cluster
+  cluster:
+    ...
+    extensions:
+    - name: client.authentication.k8s.io/exec  # 针对每个集群 exec 配置所预留的扩展名称
+      extension:
+        audience: 06e3fbd18de8  # 任意配置信息
+</pre>
+<!-- 
+In some environments, the user config may be exactly the same across many clusters
+(i.e. call this exec plugin) minus some details that are specific to each cluster
+such as the audience.  This field allows the per cluster config to be directly
+specified with the cluster info.  Using this field to store secret data is not
+recommended as one of the prime benefits of exec plugins is that no secrets need
+to be stored directly in the kubeconfig. 
+-->
+<p>在某些环境中，用户配置可能对很多集群而言都完全一样（即调用同一个 exec 插件），
+只是针对不同集群会有一些细节上的差异，例如 audience。
+此字段使得特定于集群的配置可以直接使用集群信息来设置。
+不建议使用此字段来保存 Secret 数据，因为 exec 插件的主要优势之一是不需要在
+kubeconfig 中保存 Secret 数据。</p>
+</td>
+</tr>
+    
+  
+</tbody>
+</table>
+    
+
+
+## `ExecCredentialSpec`     {#client-authentication-k8s-io-v1beta1-ExecCredentialSpec}
+    
+
+
+
+<!-- **Appears in:** -->
+**出现在：**
+
+- [ExecCredential](#client-authentication-k8s-io-v1beta1-ExecCredential)
+
+
+<!-- 
+ExecCredentialSpec holds request and runtime specific information provided by
+the transport. 
+-->
+ExecCredentialSpec 保存传输组件所提供的特定于请求和运行时的信息。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+
+  
+<tr><td><code>cluster</code><br/>
+<a href="#client-authentication-k8s-io-v1beta1-Cluster"><code>Cluster</code></a>
+</td>
+<td>
+<!-- 
+   Cluster contains information to allow an exec plugin to communicate with the
+kubernetes cluster being authenticated to. Note that Cluster is non-nil only
+when provideClusterInfo is set to true in the exec provider config (i.e.,
+ExecConfig.ProvideClusterInfo).
+-->
+   此字段中包含的信息使得 exec 插件能够与要访问的 Kubernetes 集群通信。
+   注意，cluster 字段只有在 exec 驱动的配置中 provideClusterInfo
+  （即：ExecConfig.ProvideClusterInfo）被设置为 true 时才不能为空。
+</td>
+</tr>
+    
+  
+</tbody>
+</table>
+    
+
+
+## `ExecCredentialStatus`     {#client-authentication-k8s-io-v1beta1-ExecCredentialStatus}
+    
+
+
+
+<!-- **Appears in:** -->
+**出现在：**
+
+- [ExecCredential](#client-authentication-k8s-io-v1beta1-ExecCredential)
+
+
+<!-- 
+ExecCredentialStatus holds credentials for the transport to use.
+
+Token and ClientKeyData are sensitive fields. This data should only be
+transmitted in-memory between client and exec plugin process. Exec plugin
+itself should at least be protected via file permissions.
+-->
+<p>ExecCredentialStatus 中包含传输组件要使用的凭据。</p>
+
+<p>字段 token 和 clientKeyData 都是敏感字段。
+此数据只能在客户端与 exec 插件进程之间使用内存来传递。
+exec 插件本身至少应通过文件访问许可来实施保护。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+    
+
+  
+<tr><td><code>expirationTimestamp</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.20/#time-v1-meta"><code>meta/v1.Time</code></a>
+</td>
+<td>
+   <!-- ExpirationTimestamp indicates a time when the provided credentials expire. -->
+   给出所提供的凭据到期的时间。
+</td>
+</tr>
+    
+  
+<tr><td><code>token</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!-- Token is a bearer token used by the client for request authentication. -->
+   客户端用做请求身份认证的持有者令牌。
+</td>
+</tr>
+    
+  
+<tr><td><code>clientCertificateData</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!-- PEM-encoded client TLS certificates (including intermediates, if any). -->
+   PEM 编码的客户端 TLS 证书（如果有临时证书，也会包含）。
+</td>
+</tr>
+    
+  
+<tr><td><code>clientKeyData</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!-- PEM-encoded private key for the above certificate. -->
+   与上述证书对应的、PEM 编码的私钥。
+</td>
+</tr>
+    
+  
+</tbody>
+</table>
+    
+  
diff --git a/content/zh-cn/docs/reference/config-api/imagepolicy.v1alpha1.md b/content/zh-cn/docs/reference/config-api/imagepolicy.v1alpha1.md
new file mode 100644
index 0000000000..9c02384d34
--- /dev/null
+++ b/content/zh-cn/docs/reference/config-api/imagepolicy.v1alpha1.md
@@ -0,0 +1,210 @@
+---
+title: Image Policy API (v1alpha1)
+content_type: tool-reference
+package: imagepolicy.k8s.io/v1alpha1
+---
+
+<!--
+## Resource Types
+-->
+## 资源类型   {#resource-types}
+
+- [ImageReview](#imagepolicy-k8s-io-v1alpha1-ImageReview)
+
+## `ImageReview`     {#imagepolicy-k8s-io-v1alpha1-ImageReview}
+
+<!--
+<p>ImageReview checks if the set of images in a pod are allowed.</p>
+-->
+<p>ImageReview 检查某个 Pod 中是否可以使用某些镜像。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>apiVersion</code><br/>string</td><td><code>imagepolicy.k8s.io/v1alpha1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>ImageReview</code></td></tr>
+
+<tr><td><code>metadata</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#objectmeta-v1-meta"><code>meta/v1.ObjectMeta</code></a>
+</td>
+<td>
+  <!--
+   <p>Standard object's metadata.
+More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</p>
+Refer to the Kubernetes API documentation for the fields of the <code>metadata</code> field.</td>
+  -->
+  <p>标准的对象元数据。更多信息：https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</p>
+  参阅 Kubernetes API 文档了解 <code>metadata</code> 字段的内容。
+</td>
+
+</tr>
+<tr><td><code>spec</code> <B>[必需]</B><br/>
+<a href="#imagepolicy-k8s-io-v1alpha1-ImageReviewSpec"><code>ImageReviewSpec</code></a>
+</td>
+<td>
+  <!--
+   <p>Spec holds information about the pod being evaluated</p>
+  -->
+  <p>spec 中包含与被评估的 Pod 相关的信息。</p>
+</td>
+</tr>
+<tr><td><code>status</code><br/>
+<a href="#imagepolicy-k8s-io-v1alpha1-ImageReviewStatus"><code>ImageReviewStatus</code></a>
+</td>
+<td>
+  <!--
+   <p>Status is filled in by the backend and indicates whether the pod should be allowed.</p>
+  -->
+  <p>status 由后台负责填充，用来标明 Pod 是否会被准入。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ImageReviewContainerSpec`     {#imagepolicy-k8s-io-v1alpha1-ImageReviewContainerSpec}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ImageReviewSpec](#imagepolicy-k8s-io-v1alpha1-ImageReviewSpec)
+
+<!--
+<p>ImageReviewContainerSpec is a description of a container within the pod creation request.</p>
+-->
+<p>ImageReviewContainerSpec 是对 Pod 创建请求中的某容器的描述。</p>
+
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>image</code><br/>
+<code>string</code>
+</td>
+<td>
+  <!--
+   <p>This can be in the form image:tag or image@SHA:012345679abcdef.</p>
+  -->
+  <p>此字段的格式可以是 image:tag 或 image@SHA:012345679abcdef。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ImageReviewSpec`     {#imagepolicy-k8s-io-v1alpha1-ImageReviewSpec}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ImageReview](#imagepolicy-k8s-io-v1alpha1-ImageReview)
+
+<!--
+<p>ImageReviewSpec is a description of the pod creation request.</p>
+-->
+<p>ImageReviewSpec 是对 Pod 创建请求的描述。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>containers</code><br/>
+<a href="#imagepolicy-k8s-io-v1alpha1-ImageReviewContainerSpec"><code>[]ImageReviewContainerSpec</code></a>
+</td>
+<td>
+  <!--
+   <p>Containers is a list of a subset of the information in each container of the Pod being created.</p>
+  -->
+  <p>containers 是一个列表，其中包含正被创建的 Pod 中各容器的信息子集。</p>
+</td>
+</tr>
+<tr><td><code>annotations</code><br/>
+<code>map[string]string</code>
+</td>
+<td>
+  <!--
+   <p>Annotations is a list of key-value pairs extracted from the Pod's annotations.
+It only includes keys which match the pattern <code>*.image-policy.k8s.io/*</code>.
+It is up to each webhook backend to determine how to interpret these annotations, if at all.</p>
+  -->
+  <p>annotations 是一个键值对列表，内容抽取自 Pod 的注解（annotations）。
+其中仅包含与模式 <code>*.image-policy.k8s.io/*</code> 匹配的键。
+每个 Webhook 后端要负责决定如何解释这些注解（如果有的话）。</p>
+
+</td>
+</tr>
+<tr><td><code>namespace</code><br/>
+<code>string</code>
+</td>
+<td>
+  <!--
+   <p>Namespace is the namespace the pod is being created in.</p>
+  -->
+  <p>namespace 是 Pod 创建所针对的名字空间。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ImageReviewStatus`     {#imagepolicy-k8s-io-v1alpha1-ImageReviewStatus}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ImageReview](#imagepolicy-k8s-io-v1alpha1-ImageReview)
+
+<!--
+<p>ImageReviewStatus is the result of the review for the pod creation request.</p>
+-->
+<p>ImageReviewStatus 是针对 Pod 创建请求所作的评估结果。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>allowed</code> <B>[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+  <!--
+   <p>Allowed indicates that all images were allowed to be run.</p>
+  -->
+  <p>allowed 表明所有镜像都可以被运行。</p>
+</td>
+</tr>
+<tr><td><code>reason</code><br/>
+<code>string</code>
+</td>
+<td>
+  <!--
+   <p>Reason should be empty unless Allowed is false in which case it
+may contain a short description of what is wrong.  Kubernetes
+may truncate excessively long errors when displaying to the user.</p>
+  -->
+  <p>若 <code>allowed</code> 不是 false，<code>reason</code> 应该为空。
+否则其中应包含出错信息的简短描述。Kubernetes 在向用户展示此信息时可能会截断过长的错误文字。</p>
+</td>
+</tr>
+<tr><td><code>auditAnnotations</code><br/>
+<code>map[string]string</code>
+</td>
+<td>
+  <!--
+   <p>AuditAnnotations will be added to the attributes object of the
+admission controller request using 'AddAnnotation'.  The keys should
+be prefix-less (i.e., the admission controller will add an
+appropriate prefix).</p>
+  -->
+  <p>auditAnnotations 会被通过 <code>AddAnnotation</code> 添加到准入控制器的 attributes 对象上。
+注解键应该不含前缀，换言之，准入控制器会添加合适的前缀。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
diff --git a/content/zh-cn/docs/reference/config-api/kube-proxy-config.v1alpha1.md b/content/zh-cn/docs/reference/config-api/kube-proxy-config.v1alpha1.md
new file mode 100644
index 0000000000..be58a4d51f
--- /dev/null
+++ b/content/zh-cn/docs/reference/config-api/kube-proxy-config.v1alpha1.md
@@ -0,0 +1,1183 @@
+---
+title: kube-proxy 配置 (v1alpha1)
+content_type: tool-reference
+package: kubeproxy.config.k8s.io/v1alpha1
+---
+
+<!--
+title: kube-proxy Configuration (v1alpha1)
+content_type: tool-reference
+package: kubeproxy.config.k8s.io/v1alpha1
+auto_generated: true
+-->
+
+<!--
+## Resource Types
+-->
+## 资源类型    {#resource-types}
+
+- [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
+
+## `KubeProxyConfiguration`     {#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration}
+
+<!--
+KubeProxyConfiguration contains everything necessary to configure the
+Kubernetes proxy server.
+-->
+KubeProxyConfiguration 包含用来配置 Kubernetes 代理服务器的所有配置信息。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubeproxy.config.k8s.io/v1alpha1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>KubeProxyConfiguration</code></td></tr>
+  
+<tr><td><code>featureGates</code> <B><!--[Required]-->[必需]</B><br/>
+<code>map[string]bool</code>
+</td>
+<td>
+   <!--
+   featureGates is a map of feature names to bools that enable or disable alpha/experimental features.
+   -->
+   <p><code>featureGates</code> 字段是一个功能特性名称到布尔值的映射表，
+   用来启用或者禁用测试性质的功能特性。</p>
+</td>
+</tr>
+<tr><td><code>bindAddress</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   bindAddress is the IP address for the proxy server to serve on (set to 0.0.0.0
+for all interfaces)
+   -->
+   <p><code>bindAddress</code> 字段是代理服务器提供服务时所用 IP 地址（设置为 0.0.0.0
+时意味着在所有网络接口上提供服务）。</p>
+</td>
+</tr>
+<tr><td><code>healthzBindAddress</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   healthzBindAddress is the IP address and port for the health check server to serve on,
+defaulting to 0.0.0.0:10256
+   -->
+   <p><code>healthzBindAddress</code> 字段是健康状态检查服务器提供服务时所使用的 IP 地址和端口，
+   默认设置为 '0.0.0.0:10256'。</p>
+</td>
+</tr>
+<tr><td><code>metricsBindAddress</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   metricsBindAddress is the IP address and port for the metrics server to serve on,
+defaulting to 127.0.0.1:10249 (set to 0.0.0.0 for all interfaces)
+   -->
+   <p><code>metricsBindAddress</code> 字段是指标服务器提供服务时所使用的 IP 地址和端口，
+   默认设置为 '127.0.0.1:10249'（设置为 0.0.0.0 意味着在所有接口上提供服务）。</p>
+</td>
+</tr>
+<tr><td><code>bindAddressHardFail</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   bindAddressHardFail, if true, kube-proxy will treat failure to bind to a port as fatal and exit
+   -->
+   <p><code>bindAddressHardFail</code> 字段设置为 true 时，
+   kube-proxy 将无法绑定到某端口这类问题视为致命错误并直接退出。</p>
+</td>
+</tr>
+<tr><td><code>enableProfiling</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   enableProfiling enables profiling via web interface on /debug/pprof handler.
+Profiling handlers will be handled by metrics server.
+   -->
+   <p><code>enableProfiling</code> 字段通过 '/debug/pprof' 处理程序在 Web 界面上启用性能分析。
+   性能分析处理程序将由指标服务器执行。</p>
+</td>
+</tr>
+<tr><td><code>clusterCIDR</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   clusterCIDR is the CIDR range of the pods in the cluster. It is used to
+bridge traffic coming from outside of the cluster. If not provided,
+no off-cluster bridging will be performed.
+   -->
+   <p><code>clusterCIDR</code> 字段是集群中 Pods 所使用的 CIDR 范围。
+   这一地址范围用于对来自集群外的请求流量进行桥接。
+   如果未设置，则 kube-proxy 不会对非集群内部的流量做桥接。</p>
+</td>
+</tr>
+<tr><td><code>hostnameOverride</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   hostnameOverride, if non-empty, will be used as the identity instead of the actual hostname.
+   -->
+   <p><code>hostnameOverride</code> 字段非空时，
+   所给的字符串（而不是实际的主机名）将被用作 kube-proxy 的标识。</p>
+</td>
+</tr>
+<tr><td><code>clientConnection</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#ClientConnectionConfiguration"><code>ClientConnectionConfiguration</code></a>
+</td>
+<td>
+   <!--
+   clientConnection specifies the kubeconfig file and client connection settings for the proxy
+server to use when communicating with the apiserver.
+   -->
+   <p><code>clientConnection</code> 字段给出代理服务器与 API
+   服务器通信时要使用的 kubeconfig 文件和客户端链接设置。</p>
+</td>
+</tr>
+<tr><td><code>iptables</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeproxy-config-k8s-io-v1alpha1-KubeProxyIPTablesConfiguration"><code>KubeProxyIPTablesConfiguration</code></a>
+</td>
+<td>
+   <!--
+   iptables contains iptables-related configuration options.
+   -->
+   <p><code>iptables</code> 字段字段包含与 iptables 相关的配置选项。</p>
+</td>
+</tr>
+<tr><td><code>ipvs</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeproxy-config-k8s-io-v1alpha1-KubeProxyIPVSConfiguration"><code>KubeProxyIPVSConfiguration</code></a>
+</td>
+<td>
+   <!--
+   ipvs contains ipvs-related configuration options.
+   -->
+   <p><code>ipvs</code> 字段中包含与 ipvs 相关的配置选项。</p>
+</td>
+</tr>
+<tr><td><code>oomScoreAdj</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   oomScoreAdj is the oom-score-adj value for kube-proxy process. Values must be within
+the range [-1000, 1000]
+   -->
+   <p><code>oomScoreAdj</code> 字段是为 kube-proxy 进程所设置的 oom-score-adj 值。
+   此设置值必须介于 [-1000, 1000] 范围内。</p>
+</td>
+</tr>
+<tr><td><code>mode</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeproxy-config-k8s-io-v1alpha1-ProxyMode"><code>ProxyMode</code></a>
+</td>
+<td>
+   <!--
+   mode specifies which proxy mode to use.
+   -->
+   <p><code>mode</code> 字段用来设置将使用的代理模式。</p>
+</td>
+</tr>
+<tr><td><code>portRange</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   portRange is the range of host ports (beginPort-endPort, inclusive) that may be consumed
+in order to proxy service traffic. If unspecified (0-0) then ports will be randomly chosen.
+   -->
+   <p><code>portRange</code> 字段是主机端口的范围，形式为 ‘beginPort-endPort’（包含边界），
+   用来设置代理服务所使用的端口。如果未指定（即 ‘0-0’），则代理服务会随机选择端口号。</p>
+</td>
+</tr>
+<tr><td><code>udpIdleTimeout</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--
+   udpIdleTimeout is how long an idle UDP connection will be kept open (e.g. '250ms', '2s').
+Must be greater than 0. Only applicable for proxyMode=userspace.
+   -->
+   <p><code>udpIdleTimeout</code> 字段用来设置 UDP 链接保持活跃的时长（例如，'250ms'、'2s'）。
+   此值必须大于 0。此字段仅适用于 mode 值为 'userspace' 的场合。</p>
+</td>
+</tr>
+<tr><td><code>conntrack</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConntrackConfiguration"><code>KubeProxyConntrackConfiguration</code></a>
+</td>
+<td>
+   <!--
+   conntrack contains conntrack-related configuration options.
+   -->
+   <p><code>conntrack</code> 字段包含与 conntrack 相关的配置选项。</p>
+</td>
+</tr>
+<tr><td><code>configSyncPeriod</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--
+   configSyncPeriod is how often configuration from the apiserver is refreshed. Must be greater
+than 0.
+   -->
+   <p><code>configSyncPeriod</code> 字段是从 API 服务器刷新配置的频率。此值必须大于 0。</p>
+</td>
+</tr>
+<tr><td><code>nodePortAddresses</code> <B><!--[Required]-->[必需]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--
+   nodePortAddresses is the --nodeport-addresses value for kube-proxy process. Values must be valid
+IP blocks. These values are as a parameter to select the interfaces where nodeport works.
+In case someone would like to expose a service on localhost for local visit and some other interfaces for
+particular purpose, a list of IP blocks would do that.
+If set it to "127.0.0.0/8", kube-proxy will only select the loopback interface for NodePort.
+If set it to a non-zero IP block, kube-proxy will filter that down to just the IPs that applied to the node.
+An empty string slice is meant to select all network interfaces.
+   -->
+   <p><code>nodePortAddresses</code> 字段是 kube-proxy 进程的
+   <code>--nodeport-addresses</code> 命令行参数设置。
+   此值必须是合法的 IP 段。所给的 IP 段会作为参数来选择 NodePort 类型服务所使用的接口。
+   如果有人希望将本地主机（Localhost）上的服务暴露给本地访问，
+   同时暴露在某些其他网络接口上以实现某种目标，可以使用 IP 段的列表。
+   如果此值被设置为 &quot;127.0.0.0/8&quot;，则 kube-proxy 将仅为 NodePort
+   服务选择本地回路（loopback）接口。
+   如果此值被设置为非零的 IP 段，则 kube-proxy 会对 IP 作过滤，仅使用适用于当前节点的 IP 地址。
+   空的字符串列表意味着选择所有网络接口。</p>
+</td>
+</tr>
+<tr><td><code>winkernel</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeproxy-config-k8s-io-v1alpha1-KubeProxyWinkernelConfiguration"><code>KubeProxyWinkernelConfiguration</code></a>
+</td>
+<td>
+   <!--
+   winkernel contains winkernel-related configuration options.
+   -->
+   <p><code>winkernel</code> 字段包含与 winkernel 相关的配置选项。</p>
+</td>
+</tr>
+<tr><td><code>showHiddenMetricsForVersion</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   ShowHiddenMetricsForVersion is the version for which you want to show hidden metrics.
+   -->
+   <p><code>showHiddenMetricsForVersion</code> 字段给出的是一个 Kubernetes 版本号字符串，
+   用来设置你希望显示隐藏指标的版本。</p>
+</td>
+</tr>
+<tr><td><code>detectLocalMode</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeproxy-config-k8s-io-v1alpha1-LocalMode"><code>LocalMode</code></a>
+</td>
+<td>
+   <!--
+   DetectLocalMode determines mode to use for detecting local traffic, defaults to LocalModeClusterCIDR
+   -->
+   <p><code>detectLocalMode</code> 字段用来确定检测本地流量的方式，默认为 LocalModeClusterCIDR。</p>
+</td>
+</tr>
+<tr><td><code>detectLocal</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeproxy-config-k8s-io-v1alpha1-DetectLocalConfiguration"><code>DetectLocalConfiguration</code></a>
+</td>
+<td>
+<!--
+DetectLocal contains optional configuration settings related to DetectLocalMode.
+-->
+   <p><code>detectLocal</code> 字段包含与 DetectLocalMode 相关的可选配置设置。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `DetectLocalConfiguration`     {#kubeproxy-config-k8s-io-v1alpha1-DetectLocalConfiguration}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
+
+<!--
+DetectLocalConfiguration contains optional settings related to DetectLocalMode option
+-->
+DetectLocalConfiguration 包含与 DetectLocalMode 选项相关的可选设置。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>bridgeInterface</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+<!--
+BridgeInterface is a string argument which represents a single bridge interface name.
+Kube-proxy considers traffic as local if originating from this given bridge.
+This argument should be set if DetectLocalMode is set to LocalModeBridgeInterface.
+-->
+   <p><code>bridgeInterface</code> 字段是一个表示单个桥接接口名称的字符串参数。
+   Kube-proxy 将来自这个给定桥接接口的流量视为本地流量。
+   如果 DetectLocalMode 设置为 LocalModeBridgeInterface，则应设置该参数。</p>
+</td>
+</tr>
+<tr><td><code>interfaceNamePrefix</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+<!--
+InterfaceNamePrefix is a string argument which represents a single interface prefix name.
+Kube-proxy considers traffic as local if originating from one or more interfaces which match
+the given prefix. This argument should be set if DetectLocalMode is set to LocalModeInterfaceNamePrefix.
+-->
+   <p><code>interfaceNamePrefix</code> 字段是一个表示单个接口前缀名称的字符串参数。
+   Kube-proxy 将来自一个或多个与给定前缀匹配的接口流量视为本地流量。
+   如果 DetectLocalMode 设置为 LocalModeInterfaceNamePrefix，则应设置该参数。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `KubeProxyConntrackConfiguration`     {#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConntrackConfiguration}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
+
+<!--
+KubeProxyConntrackConfiguration contains conntrack settings for
+the Kubernetes proxy server.
+-->
+KubeProxyConntrackConfiguration 包含为 Kubernetes 代理服务器提供的 conntrack 设置。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>maxPerCore</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   maxPerCore is the maximum number of NAT connections to track
+per CPU core (0 to leave the limit as-is and ignore min).
+   -->
+   <p><code>maxPerCore</code> 字段是每个 CPU 核所跟踪的 NAT 链接个数上限
+   （0 意味着保留当前上限限制并忽略 min 字段设置值）。</p>
+</td>
+</tr>
+<tr><td><code>min</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   min is the minimum value of connect-tracking records to allocate,
+regardless of conntrackMaxPerCore (set maxPerCore=0 to leave the limit as-is).
+   -->
+   <p><code>min</code> 字段给出要分配的链接跟踪记录个数下限。
+   设置此值时会忽略 maxPerCore 的值（将 maxPerCore 设置为 0 时不会调整上限值）。</p>
+</td>
+</tr>
+<tr><td><code>tcpEstablishedTimeout</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--
+   tcpEstablishedTimeout is how long an idle TCP connection will be kept open
+(e.g. '2s').  Must be greater than 0 to set.
+   -->
+   <p><code>tcpEstablishedTimeout</code> 字段给出空闲 TCP 连接的保留时间（例如，'2s'）。
+   此值必须大于 0。</p>
+</td>
+</tr>
+<tr><td><code>tcpCloseWaitTimeout</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--
+   tcpCloseWaitTimeout is how long an idle conntrack entry
+in CLOSE_WAIT state will remain in the conntrack
+table. (e.g. '60s'). Must be greater than 0 to set.
+   -->
+   <p><code>tcpCloseWaitTimeout</code> 字段用来设置空闲的、处于 CLOSE_WAIT 状态的 conntrack 条目
+   保留在 conntrack 表中的时间长度（例如，'60s'）。
+   此设置值必须大于 0。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `KubeProxyIPTablesConfiguration`     {#kubeproxy-config-k8s-io-v1alpha1-KubeProxyIPTablesConfiguration}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
+
+<!--
+KubeProxyIPTablesConfiguration contains iptables-related configuration
+details for the Kubernetes proxy server.
+-->
+KubeProxyIPTablesConfiguration 包含用于 Kubernetes 代理服务器的、与 iptables 相关的配置细节。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>masqueradeBit</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   masqueradeBit is the bit of the iptables fwmark space to use for SNAT if using
+the pure iptables proxy mode. Values must be within the range [0, 31].
+   -->
+   <p><code>masqueradeBit</code> 字段是 iptables fwmark 空间中的具体一位，
+   用来在纯 iptables 代理模式下设置 SNAT。此值必须介于 [0, 31]（含边界值）。</p>
+</td>
+</tr>
+<tr><td><code>masqueradeAll</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   masqueradeAll tells kube-proxy to SNAT everything if using the pure iptables proxy mode.
+   -->
+   <p><code>masqueradeAll</code> 字段用来通知 kube-proxy
+   在使用纯 iptables 代理模式时对所有流量执行 SNAT 操作。</p>
+</td>
+</tr>
+<tr><td><code>syncPeriod</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--
+   syncPeriod is the period that iptables rules are refreshed (e.g. '5s', '1m',
+'2h22m').  Must be greater than 0.
+   -->
+   <p><code>syncPeriod</code> 字段给出 iptables
+   规则的刷新周期（例如，'5s'、'1m'、'2h22m'）。此值必须大于 0。</p>
+</td>
+</tr>
+<tr><td><code>minSyncPeriod</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--
+   minSyncPeriod is the minimum period that iptables rules are refreshed (e.g. '5s', '1m', '2h22m').
+   -->
+   <p><code>minSyncPeriod</code> 字段给出 iptables
+   规则被刷新的最小周期（例如，'5s'、'1m'、'2h22m'）。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `KubeProxyIPVSConfiguration`     {#kubeproxy-config-k8s-io-v1alpha1-KubeProxyIPVSConfiguration}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
+
+<!--
+KubeProxyIPVSConfiguration contains ipvs-related configuration
+details for the Kubernetes proxy server.
+-->
+KubeProxyIPVSConfiguration 包含用于 Kubernetes 代理服务器的、与 ipvs 相关的配置细节。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+ 
+<tr><td><code>syncPeriod</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--
+   syncPeriod is the period that ipvs rules are refreshed (e.g. '5s', '1m',
+'2h22m').  Must be greater than 0.
+   -->
+   <p><code>syncPeriod</code> 字段给出 ipvs 规则的刷新周期（例如，'5s'、'1m'、'2h22m'）。
+   此值必须大于 0。</p>
+</td>
+</tr>
+<tr><td><code>minSyncPeriod</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--
+   minSyncPeriod is the minimum period that ipvs rules are refreshed (e.g. '5s', '1m', '2h22m').
+   -->
+   <p><code>minSyncPeriod</code> 字段给出 ipvs 规则被刷新的最小周期（例如，'5s'、'1m'、'2h22m'）。</p>
+</td>
+</tr>
+<tr><td><code>scheduler</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   ipvs scheduler
+   -->
+   <p>IPVS 调度器。</p>
+</td>
+</tr>
+<tr><td><code>excludeCIDRs</code> <B><!--[Required]-->[必需]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--
+   excludeCIDRs is a list of CIDR's which the ipvs proxier should not touch
+when cleaning up ipvs services.
+   -->
+   <p><code>excludeCIDRs</code> 字段取值为一个 CIDR 列表，ipvs 代理程序在清理 IPVS 服务时不应触碰这些 IP 地址。</p>
+</td>
+</tr>
+<tr><td><code>strictARP</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   strict ARP configure arp_ignore and arp_announce to avoid answering ARP queries
+from kube-ipvs0 interface
+   -->
+   <p><code>strictARP</code> 字段用来配置 arp_ignore 和 arp_announce，以避免（错误地）响应来自 kube-ipvs0 接口的
+   ARP 查询请求。</p>
+</td>
+</tr>
+<tr><td><code>tcpTimeout</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--
+   tcpTimeout is the timeout value used for idle IPVS TCP sessions.
+The default value is 0, which preserves the current timeout value on the system.
+   -->
+   <p><code>tcpTimeout</code> 字段是用于设置空闲 IPVS TCP 会话的超时值。
+   默认值为 0，意味着使用系统上当前的超时值设置。</p>
+</td>
+</tr>
+<tr><td><code>tcpFinTimeout</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--
+   tcpFinTimeout is the timeout value used for IPVS TCP sessions after receiving a FIN.
+The default value is 0, which preserves the current timeout value on the system.
+   -->
+   <p><code>tcpFinTimeout</code> 字段用来设置 IPVS TCP 会话在收到 FIN 之后的超时值。
+   默认值为 0，意味着使用系统上当前的超时值设置。</p>
+</td>
+</tr>
+<tr><td><code>udpTimeout</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--
+   udpTimeout is the timeout value used for IPVS UDP packets.
+The default value is 0, which preserves the current timeout value on the system.
+   -->
+   <p><code>udpTimeout</code> 字段用来设置 IPVS UDP 包的超时值。
+   默认值为 0，意味着使用系统上当前的超时值设置。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `KubeProxyWinkernelConfiguration`     {#kubeproxy-config-k8s-io-v1alpha1-KubeProxyWinkernelConfiguration}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
+
+<!--
+KubeProxyWinkernelConfiguration contains Windows/HNS settings for
+the Kubernetes proxy server.
+-->
+KubeProxyWinkernelConfiguration 包含 Kubernetes 代理服务器的 Windows/HNS 设置。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>networkName</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   networkName is the name of the network kube-proxy will use
+to create endpoints and policies
+   -->
+   <p><code>networkName</code> 字段是 kube-proxy 用来创建端点和策略的网络名称。</p>
+</td>
+</tr>
+<tr><td><code>sourceVip</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+  <!--
+   sourceVip is the IP address of the source VIP endoint used for
+NAT when loadbalancing
+   -->
+   <p><code>sourceVip</code> 字段是执行负载均衡时进行 NAT 转换所使用的源端 VIP 端点 IP 地址。</p>
+</td>
+</tr>
+<tr><td><code>enableDSR</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   enableDSR tells kube-proxy whether HNS policies should be created
+with DSR
+   -->
+   <p><code>enableDSR</code> 字段通知 kube-proxy 是否使用 DSR 来创建 HNS 策略。</p>
+</td>
+</tr>
+<tr><td><code>rootHnsEndpointName</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+<!--
+RootHnsEndpointName is the name of hnsendpoint that is attached to
+l2bridge for root network namespace
+-->
+   <p><code>rootHnsEndpointName</code>
+   字段是附加到用于根网络命名空间二层桥接的 hnsendpoint 的名称。</p>
+</td>
+</tr>
+<tr><td><code>forwardHealthCheckVip</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+<!--
+ForwardHealthCheckVip forwards service VIP for health check port on
+Windows
+-->
+   <p><code>forwardHealthCheckVip</code>
+   字段为 Windows 上的健康检查端口转发服务 VIP。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `LocalMode`     {#kubeproxy-config-k8s-io-v1alpha1-LocalMode}
+
+<!--
+(Alias of `string`)
+
+**Appears in:**
+-->
+（<code>string</code> 类型的别名）
+
+**出现在：**
+
+- [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
+
+<!--
+LocalMode represents modes to detect local traffic from the node
+-->
+LocalMode 代表的是对节点上本地流量进行检测的模式。
+
+## `ProxyMode`     {#kubeproxy-config-k8s-io-v1alpha1-ProxyMode}
+
+<!--    
+(Alias of `string`)
+
+**Appears in:**
+-->
+
+（<code>string</code> 类型的别名）
+
+**出现在：**
+
+- [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
+
+<!--
+ProxyMode represents modes used by the Kubernetes proxy server.
+
+Currently, three modes of proxy are available in Linux platform: 'userspace' (older, going to be EOL), 'iptables'
+(newer, faster), 'ipvs'(newest, better in performance and scalability).
+
+Two modes of proxy are available in Windows platform: 'userspace'(older, stable) and 'kernelspace' (newer, faster).
+-->
+ProxyMode 表示的是 Kubernetes 代理服务器所使用的模式。
+
+目前 Linux 平台上有三种可用的代理模式：'userspace'（相对较老，即将被淘汰）、
+'iptables'（相对较新，速度较快）、'ipvs'（最新，在性能和可扩缩性上表现好）。
+
+在 Windows 平台上有两种可用的代理模式：'userspace'（相对较老，但稳定）和
+'kernelspace'（相对较新，速度更快）。
+
+<!--
+In Linux platform, if proxy mode is blank, use the best-available proxy (currently iptables, but may change in the
+future). If the iptables proxy is selected, regardless of how, but the system's kernel or iptables versions are
+insufficient, this always falls back to the userspace proxy. IPVS mode will be enabled when proxy mode is set to 'ipvs',
+and the fall back path is firstly iptables and then userspace.
+-->
+在 Linux 平台上，如果代理的 mode 为空，则使用可用的最佳代理（目前是 iptables，
+将来可能会发生变化）。如果选择的是 iptables 代理（无论原因如何），但系统的内核
+或者 iptables 的版本不够高，kube-proxy 也会回退为 userspace 代理服务器所使用的模式。
+当代理的 mode 设置为 'ipvs' 时会启用 IPVS 模式，对应的回退路径是先尝试 iptables，
+最后回退到 userspace。
+
+<!--
+In Windows platform, if proxy mode is blank, use the best-available proxy (currently userspace, but may change in the
+future). If winkernel proxy is selected, regardless of how, but the Windows kernel can't support this mode of proxy,
+this always falls back to the userspace proxy.
+-->
+在 Windows 平台上，如果代理 mode 为空，则使用可用的最佳代理（目前是 userspace，
+不过将来可能会发生变化）。如果所选择的是 winkernel 代理（无论原因如何），
+但 Windows 内核不支持此代理模式，则 kube-proxy 会回退到 userspace 代理。
+
+
+## `ClientConnectionConfiguration`     {#ClientConnectionConfiguration}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerConfiguration)
+
+- [GenericControllerManagerConfiguration](#controllermanager-config-k8s-io-v1alpha1-GenericControllerManagerConfiguration)
+
+<!--
+ClientConnectionConfiguration contains details for constructing a client.
+-->
+ClientConnectionConfiguration 包含构造客户端所需要的细节信息。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>kubeconfig</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   kubeconfig is the path to a KubeConfig file.
+   -->
+   <p><code>kubeconfig</code> 字段是指向一个 KubeConfig 文件的路径。</p>
+</td>
+</tr>
+<tr><td><code>acceptContentTypes</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   acceptContentTypes defines the Accept header sent by clients when connecting to a server, overriding the
+default value of 'application/json'. This field will control all connections to the server used by a particular client.
+   -->
+   <p><code>acceptContentTypes</code> 字段定义客户端在连接到服务器时所发送的 Accept 头部字段。
+   此设置值会覆盖默认配置 'application/json'。
+   此字段会控制某特定客户端与指定服务器的所有链接。</p>
+</td>
+</tr>
+<tr><td><code>contentType</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   contentType is the content type used when sending data to the server from this client.
+   -->
+   <p><code>contentType</code> 字段是从此客户端向服务器发送数据时使用的内容类型（Content Type）。</p>
+</td>
+</tr>
+<tr><td><code>qps</code> <B><!--[Required]-->[必需]</B><br/>
+<code>float32</code>
+</td>
+<td>
+   <!--
+   qps controls the number of queries per second allowed for this connection.
+   -->
+   <p><code>qps</code> 字段控制此连接上每秒钟可以发送的查询请求个数。</p>
+</td>
+</tr>
+<tr><td><code>burst</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   burst allows extra queries to accumulate when a client is exceeding its rate.
+   -->
+   <p><code>burst</code> 字段允许客户端超出其速率限制时可以临时累积的额外查询个数。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `DebuggingConfiguration`     {#DebuggingConfiguration}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerConfiguration)
+
+- [GenericControllerManagerConfiguration](#controllermanager-config-k8s-io-v1alpha1-GenericControllerManagerConfiguration)
+
+<!--
+DebuggingConfiguration holds configuration for Debugging related features.
+-->
+DebuggingConfiguration 包含调试相关功能的配置。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>enableProfiling</code> <B>[Required]</B><br/>
+<code>bool</code>
+</td>
+<td>
+<!--
+enableProfiling enables profiling via web interface host:port/debug/pprof/
+-->
+   <p><code>enableProfiling</code> 字段通过位于 <code>host:port/debug/pprof/</code>
+   的 Web 接口启用性能分析。</p>
+</td>
+</tr>
+<tr><td><code>enableContentionProfiling</code> <B>[Required]</B><br/>
+<code>bool</code>
+</td>
+<td>
+<!--
+enableContentionProfiling enables lock contention profiling, if
+enableProfiling is true.
+-->
+   <p><code>enableContentionProfiling</code> 字段在 <code>enableProfiling</code>
+   为 true 时允许执行锁竞争分析。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `FormatOptions`     {#FormatOptions}
+    
+<!--
+**Appears in:**
+-->
+
+<!--
+FormatOptions contains options for the different logging formats.
+-->
+FormatOptions 包含不同日志记录格式的配置选项。
+
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>json</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#JSONOptions"><code>JSONOptions</code></a>
+</td>
+<td>
+   <!--
+   [Experimental] JSON contains options for logging format "json".
+   -->
+   <p>[实验特性] <code>json</code> 字段包含 &quot;JSON&quot; 日志格式的配置选项。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `JSONOptions`     {#JSONOptions}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [FormatOptions](#FormatOptions)
+
+<!--
+JSONOptions contains options for logging format "json".
+-->
+JSONOptions 包含 &quot;json&quot; 日志格式的配置选项。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>splitStream</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   [Experimental] SplitStream redirects error messages to stderr while
+info messages go to stdout, with buffering. The default is to write
+both to stdout, without buffering.
+   -->
+   <p>[实验特性] <code>splitStream</code> 字段将信息类型的信息输出到标准输出，错误信息重定向到标准
+   错误输出，并提供缓存。默认行为是将二者都输出到标准输出且不提供缓存。</p>
+</td>
+</tr>
+<tr><td><code>infoBufferSize</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/api/resource#QuantityValue"><code>k8s.io/apimachinery/pkg/api/resource.QuantityValue</code></a>
+</td>
+<td>
+   <!--
+   [Experimental] InfoBufferSize sets the size of the info stream when
+using split streams. The default is zero, which disables buffering.
+   -->
+   <p>[实验特性] <code>infoBufferSize</code> 字段设置在使用分离数据流时 info 数据流的缓冲区大小。
+   默认值为 0，意味着不提供缓存。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `LeaderElectionConfiguration`     {#LeaderElectionConfiguration}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerConfiguration)
+
+- [GenericControllerManagerConfiguration](#controllermanager-config-k8s-io-v1alpha1-GenericControllerManagerConfiguration)
+
+<!--
+LeaderElectionConfiguration defines the configuration of leader election
+clients for components that can run with leader election enabled.
+-->
+LeaderElectionConfiguration 为能够支持领导者选举的组件定义其领导者选举客户端的配置。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>leaderElect</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+<!--
+leaderElect enables a leader election client to gain leadership
+before executing the main loop. Enable this when running replicated
+components for high availability.
+-->
+   <p>
+   <code>leaderElect</code> 字段允许领导者选举客户端在进入主循环执行之前先获得领导者角色。
+   运行多副本组件时启用此功能有助于提高可用性。
+   </p>
+</td>
+</tr>
+<tr><td><code>leaseDuration</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+<!--
+leaseDuration is the duration that non-leader candidates will wait
+after observing a leadership renewal until attempting to acquire
+leadership of a led but unrenewed leader slot. This is effectively the
+maximum duration that a leader can be stopped before it is replaced
+by another candidate. This is only applicable if leader election is
+enabled.
+-->
+   <p>
+   <code>leaseDuration</code> 字段是非领导角色候选者在观察到需要领导席位更新时要等待的时间；
+   只有经过所设置时长才可以尝试去获得一个仍处于领导状态但需要被刷新的席位。
+   这里的设置值本质上意味着某个领导者在被另一个候选者替换掉之前可以停止运行的最长时长。
+   只有当启用了领导者选举时此字段有意义。
+   </p>
+</td>
+</tr>
+<tr><td><code>renewDeadline</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+<!--
+renewDeadline is the interval between attempts by the acting master to
+renew a leadership slot before it stops leading. This must be less
+than or equal to the lease duration. This is only applicable if leader
+election is enabled.
+-->
+   <p>
+   <code>renewDeadline</code> 字段设置的是当前领导者在停止扮演领导角色之前需要刷新领导状态的时间间隔。
+   此值必须小于或等于租约期限的长度。只有到启用了领导者选举时此字段才有意义。
+   </p>
+</td>
+</tr>
+<tr><td><code>retryPeriod</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+<!--
+retryPeriod is the duration the clients should wait between attempting
+acquisition and renewal of a leadership. This is only applicable if
+leader election is enabled.
+-->
+   <p>
+   <code>retryPeriod</code> 字段是客户端在连续两次尝试获得或者刷新领导状态之间需要等待的时长。
+   只有当启用了领导者选举时此字段才有意义。
+   </p>
+</td>
+</tr>
+<tr><td><code>resourceLock</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+<!--
+resourceLock indicates the resource object type that will be used to lock
+during leader election cycles.
+-->
+   <p><code>resourceLock</code> 字段给出在领导者选举期间要作为锁来使用的资源对象类型。</p>
+</td>
+</tr>
+<tr><td><code>resourceName</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+<!--
+resourceName indicates the name of resource object that will be used to lock
+during leader election cycles.
+-->
+   <p><code>resourceName</code> 字段给出在领导者选举期间要作为锁来使用的资源对象名称。</p>
+</td>
+</tr>
+<tr><td><code>resourceNamespace</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+<!--
+resourceNamespace indicates the namespace of resource object that will be used to lock
+during leader election cycles.
+-->
+   <p><code>resourceNamespace</code> 字段给出在领导者选举期间要作为锁来使用的资源对象所在名字空间。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `LoggingConfiguration`     {#LoggingConfiguration}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
+
+<!--
+LoggingConfiguration contains logging options
+Refer <a href="https://git.k8s.io/component-base/logs/api/v1/options.go">Logs Options</a> for more information.
+-->
+LoggingConfiguration 包含日志选项。
+参考 [Logs Options](https://git.k8s.io/component-base/logs/api/v1/options.go) 以了解更多信息。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>format</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+<!--
+Format Flag specifies the structure of log messages.
+default value of format is <code>text</code>
+-->
+   <p><code>format</code> 字段设置日志消息的结构。默认的格式取值为 <code>text</code>。</p>
+</td>
+</tr>
+<tr><td><code>flushFrequency</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/time#Duration"><code>time.Duration</code></a>
+</td>
+<td>
+<!--
+Maximum number of nanoseconds (i.e. 1s = 1000000000) between log
+flushes.  Ignored if the selected logging backend writes log
+messages without buffering.
+-->
+   <p>对日志进行清洗的最大间隔纳秒数（例如，1s = 1000000000）。
+   如果所选的日志后端在写入日志消息时不提供缓存，则此配置会被忽略。</p>
+</td>
+</tr>
+<tr><td><code>verbosity</code> <B><!--[Required]-->[必需]</B><br/>
+<code>uint32</code>
+</td>
+<td>
+<!--
+Verbosity is the threshold that determines which log messages are
+logged. Default is zero which logs only the most important
+messages. Higher values enable additional messages. Error messages
+are always logged.
+-->
+   <p><code>verbosity</code> 字段用来确定日志消息记录的详细程度阈值。
+   默认值为 0，意味着仅记录最重要的消息。
+   数值越大，额外的消息越多。错误消息总是被记录下来。</p>
+</td>
+</tr>
+<tr><td><code>vmodule</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#VModuleConfiguration"><code>VModuleConfiguration</code></a>
+</td>
+<td>
+<!--
+VModule overrides the verbosity threshold for individual files.
+Only supported for &quot;text&quot; log format.
+-->
+   <p><code>vmodule</code> 字段会在单个文件层面重载 verbosity 阈值的设置。
+   这一选项仅支持 &quot;text&quot; 日志格式。</p>
+</td>
+</tr>
+<tr><td><code>options</code> <B>[Required]</B><br/>
+<a href="#FormatOptions"><code>FormatOptions</code></a>
+</td>
+<td>
+<!--
+[Experimental] Options holds additional parameters that are specific
+to the different logging formats. Only the options for the selected
+format get used, but all of them get validated.
+-->
+   <p>[实验特性] <code>options</code> 字段中包含特定于不同日志格式的配置参数。
+   只有针对所选格式的选项会被使用，但是合法性检查时会查看所有选项配置。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `VModuleConfiguration`     {#VModuleConfiguration}
+   
+<!-- 
+(Alias of `[]k8s.io/component-base/config/v1alpha1.VModuleItem`)
+
+**Appears in:**
+-->
+（`[]k8s.io/component-base/config/v1alpha1.VModuleItem` 的别名）
+
+**出现在：**
+
+- [LoggingConfiguration](#LoggingConfiguration)
+
+<!--
+VModuleConfiguration is a collection of individual file names or patterns
+and the corresponding verbosity threshold.
+-->
+VModuleConfiguration 是一组文件名或文件名模式，及其对应的日志详尽程度阈值配置。
diff --git a/content/zh-cn/docs/reference/config-api/kube-scheduler-config.v1beta2.md b/content/zh-cn/docs/reference/config-api/kube-scheduler-config.v1beta2.md
new file mode 100644
index 0000000000..91a427ae40
--- /dev/null
+++ b/content/zh-cn/docs/reference/config-api/kube-scheduler-config.v1beta2.md
@@ -0,0 +1,1841 @@
+---
+title: kube-scheduler 配置 (v1beta2)
+content_type: tool-reference
+package: kubescheduler.config.k8s.io/v1beta2
+auto_generated: true
+---
+
+<!--
+title: kube-scheduler Configuration (v1beta2)
+content_type: tool-reference
+package: kubescheduler.config.k8s.io/v1beta2
+auto_generated: true
+-->
+
+<!--
+## Resource Types
+-->
+## 资源类型
+
+- [DefaultPreemptionArgs](#kubescheduler-config-k8s-io-v1beta2-DefaultPreemptionArgs)
+- [InterPodAffinityArgs](#kubescheduler-config-k8s-io-v1beta2-InterPodAffinityArgs)
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
+- [NodeAffinityArgs](#kubescheduler-config-k8s-io-v1beta2-NodeAffinityArgs)
+- [NodeResourcesBalancedAllocationArgs](#kubescheduler-config-k8s-io-v1beta2-NodeResourcesBalancedAllocationArgs)
+- [NodeResourcesFitArgs](#kubescheduler-config-k8s-io-v1beta2-NodeResourcesFitArgs)
+- [PodTopologySpreadArgs](#kubescheduler-config-k8s-io-v1beta2-PodTopologySpreadArgs)
+- [VolumeBindingArgs](#kubescheduler-config-k8s-io-v1beta2-VolumeBindingArgs)
+
+
+## `ClientConnectionConfiguration`     {#ClientConnectionConfiguration}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
+
+<!--
+ClientConnectionConfiguration contains details for constructing a client.
+-->
+<p>ClientConnectionConfiguration 中包含用来构造客户端所需的细节。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>kubeconfig</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   kubeconfig is the path to a KubeConfig file.
+   -->
+   <p>此字段为指向某 KubeConfig 文件的路径。</p>
+</td>
+</tr>
+<tr><td><code>acceptContentTypes</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   acceptContentTypes defines the Accept header sent by clients when connecting to a server, overriding the
+default value of 'application/json'. This field will control all connections to the server used by a particular client.
+   -->
+   <p><code>acceptContentTypes</code> 定义的是客户端与服务器建立连接时要发送的Accept 头部，
+   这里的设置值会覆盖默认值 "application/json"。
+   此字段会影响某特定客户端与服务器的所有连接。</p>
+</td>
+</tr>
+<tr><td><code>contentType</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   contentType is the content type used when sending data to the server from this client.
+   -->
+   <p>
+   <code>contentType</code> 包含的是此客户端向服务器发送数据时使用的内容类型（Content Type）。
+   </p>
+</td>
+</tr>
+<tr><td><code>qps</code> <B><!--[Required]-->[必需]</B><br/>
+<code>float32</code>
+</td>
+<td>
+   <!--
+   qps controls the number of queries per second allowed for this connection.
+   -->
+   <p><code>qps</code> 控制此连接允许的每秒查询次数。</p>
+</td>
+</tr>
+<tr><td><code>burst</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   burst allows extra queries to accumulate when a client is exceeding its rate.
+   -->
+   <p><code>burst</code> 允许在客户端超出其速率限制时可以累积的额外查询个数。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `DebuggingConfiguration`     {#DebuggingConfiguration}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
+
+<!--
+DebuggingConfiguration holds configuration for Debugging related features.
+-->
+<p>DebuggingConfiguration 保存与调试功能相关的配置。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>enableProfiling</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   enableProfiling enables profiling via web interface host:port/debug/pprof/
+   -->
+   <p>此字段允许通过 Web 接口 host:port/debug/pprof/ 执行性能分析。</p>
+</td>
+</tr>
+<tr><td><code>enableContentionProfiling</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   enableContentionProfiling enables lock contention profiling, if
+enableProfiling is true.
+   -->
+   <p>此字段在 <code>enableProfiling</code> 为 true 时允许执行锁竞争分析。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `FormatOptions`     {#FormatOptions}
+    
+<!--
+**Appears in:**
+-->
+
+<!--
+FormatOptions contains options for the different logging formats.
+-->
+<p>FormatOptions 中包含不同日志格式的配置选项。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>json</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#JSONOptions"><code>JSONOptions</code></a>
+</td>
+<td>
+   <!--
+   [Experimental] JSON contains options for logging format "json".
+   -->
+   <p>[实验特性] <code>json</code> 字段包含为 &quot;json&quot; 日志格式提供的配置选项。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `JSONOptions`     {#JSONOptions}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [FormatOptions](#FormatOptions)
+
+<!--
+JSONOptions contains options for logging format "json".
+-->
+<p>JSONOptions 包含为 &quot;json&quot; 日志格式所设置的配置选项。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>splitStream</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   [Experimental] SplitStream redirects error messages to stderr while
+info messages go to stdout, with buffering. The default is to write
+both to stdout, without buffering.
+   -->
+   <p>[实验特性] 此字段将错误信息重定向到标准错误输出（stderr），
+   将提示消息重定向到标准输出（stdout），并且支持缓存。
+   默认配置为将二者都输出到标准输出（stdout），且不提供缓存。</p>
+</td>
+</tr>
+<tr><td><code>infoBufferSize</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/api/resource#QuantityValue"><code>k8s.io/apimachinery/pkg/api/resource.QuantityValue</code></a>
+</td>
+<td>
+   <!--
+   [Experimental] InfoBufferSize sets the size of the info stream when
+using split streams. The default is zero, which disables buffering.
+   -->
+   <p>
+   [实验特性] <code>infoBufferSize</code> 用来在分离数据流场景是设置提示信息数据流的大小。
+   默认值为 0，意味着禁止缓存。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `LeaderElectionConfiguration`     {#LeaderElectionConfiguration}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
+
+<!--
+LeaderElectionConfiguration defines the configuration of leader election
+clients for components that can run with leader election enabled.
+-->
+<p>
+LeaderElectionConfiguration 为能够支持领导者选举的组件定义其领导者选举客户端的配置。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>leaderElect</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   leaderElect enables a leader election client to gain leadership
+before executing the main loop. Enable this when running replicated
+components for high availability.
+   -->
+   <p><code>leaderElect</code> 允许领导者选举客户端在进入主循环执行之前先获得领导者角色。
+   运行多副本组件时启用此功能有助于提高可用性。
+   </p>
+</td>
+</tr>
+<tr><td><code>leaseDuration</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--
+   leaseDuration is the duration that non-leader candidates will wait
+after observing a leadership renewal until attempting to acquire
+leadership of a led but unrenewed leader slot. This is effectively the
+maximum duration that a leader can be stopped before it is replaced
+by another candidate. This is only applicable if leader election is
+enabled.
+   -->
+   <p>
+   <code>leaseDuration</code> 是非领导角色候选者在观察到需要领导席位更新时要等待的时间；
+   只有经过所设置时长才可以尝试去获得一个仍处于领导状态但需要被刷新的席位。
+   这里的设置值本质上意味着某个领导者在被另一个候选者替换掉之前可以停止运行的最长时长。
+   只有当启用了领导者选举时此字段有意义。
+   </p>
+</td>
+</tr>
+<tr><td><code>renewDeadline</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--
+   renewDeadline is the interval between attempts by the acting master to
+renew a leadership slot before it stops leading. This must be less
+than or equal to the lease duration. This is only applicable if leader
+election is enabled.
+   -->
+   <p>
+   <code>renewDeadline</code> 设置的是当前领导者在停止扮演领导角色之前需要刷新领导状态的时间间隔。
+   此值必须小于或等于租约期限的长度。只有到启用了领导者选举时此字段才有意义。
+   </p>
+</td>
+</tr>
+<tr><td><code>retryPeriod</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--
+   retryPeriod is the duration the clients should wait between attempting
+acquisition and renewal of a leadership. This is only applicable if
+leader election is enabled.
+   -->
+   <p>
+   <code>retryPeriod</code> 是客户端在连续两次尝试获得或者刷新领导状态之间需要等待的时长。
+   只有当启用了领导者选举时此字段才有意义。
+   </p>
+</td>
+</tr>
+<tr><td><code>resourceLock</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   resourceLock indicates the resource object type that will be used to lock
+during leader election cycles.
+   -->
+   <p>此字段给出在领导者选举期间要作为锁来使用的资源对象类型。</p>
+</td>
+</tr>
+<tr><td><code>resourceName</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   resourceName indicates the name of resource object that will be used to lock
+during leader election cycles.
+   -->
+   <p>此字段给出在领导者选举期间要作为锁来使用的资源对象名称。</p>
+</td>
+</tr>
+<tr><td><code>resourceNamespace</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   resourceName indicates the namespace of resource object that will be used to lock
+during leader election cycles.
+   -->
+   <p>此字段给出在领导者选举期间要作为锁来使用的资源对象所在名字空间。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+
+## `LoggingConfiguration`     {#LoggingConfiguration}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
+
+<!--
+LoggingConfiguration contains logging options
+Refer <a href="https://github.com/kubernetes/component-base/blob/master/logs/options.go">Logs Options</a> for more information.
+-->
+<p>
+LoggingConfiguration 包含日志选项。
+参考 [Logs Options](https://github.com/kubernetes/component-base/blob/master/logs/options.go) 以了解更多信息。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>format</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+<!--
+Format Flag specifies the structure of log messages.
+default value of format is <code>text</code>
+-->
+   <p><code>format</code> 设置日志消息的结构。默认的格式取值为 <code>text</code>。</p>
+</td>
+</tr>
+<tr><td><code>flushFrequency</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/time#Duration"><code>time.Duration</code></a>
+</td>
+<td>
+<!--
+Maximum number of nanoseconds (i.e. 1s = 1000000000) between log
+flushes.  Ignored if the selected logging backend writes log
+messages without buffering.
+-->
+   <p>对日志进行清洗的最大间隔纳秒数（例如，1s = 1000000000）。
+   如果所选的日志后端在写入日志消息时不提供缓存，则此配置会被忽略。</p>
+</td>
+</tr>
+<tr><td><code>verbosity</code> <B><!--[Required]-->[必需]</B><br/>
+<code>uint32</code>
+</td>
+<td>
+<!--
+Verbosity is the threshold that determines which log messages are
+logged. Default is zero which logs only the most important
+messages. Higher values enable additional messages. Error messages
+are always logged.
+-->
+   <p><code>verbosity</code> 用来确定日志消息记录的详细程度阈值。默认值为 0，
+   意味着仅记录最重要的消息。数值越大，额外的消息越多。错误消息总是被记录下来。</p>
+</td>
+</tr>
+<tr><td><code>vmodule</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#VModuleConfiguration"><code>VModuleConfiguration</code></a>
+</td>
+<td>
+<!--
+VModule overrides the verbosity threshold for individual files.
+Only supported for &quot;text&quot; log format.
+-->
+   <p><code>vmodule</code> 会在单个文件层面重载 verbosity 阈值的设置。
+   这一选项仅支持 &quot;text&quot; 日志格式。</p>
+</td>
+</tr>
+<tr><td><code>options</code> <B>[Required]</B><br/>
+<a href="#FormatOptions"><code>FormatOptions</code></a>
+</td>
+<td>
+<!--
+[Experimental] Options holds additional parameters that are specific
+to the different logging formats. Only the options for the selected
+format get used, but all of them get validated.
+-->
+   <p>[实验特性] <code>options</code> 中包含特定于不同日志格式的配置参数。
+   只有针对所选格式的选项会被使用，但是合法性检查时会查看所有选项配置。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `VModuleConfiguration`     {#VModuleConfiguration}
+
+ <!--
+(Alias of `[]k8s.io/component-base/config/v1alpha1.VModuleItem`)
+
+**Appears in:**
+-->
+（`[]k8s.io/component-base/config/v1alpha1.VModuleItem` 的别名)
+
+**出现在：**
+
+- [LoggingConfiguration](#LoggingConfiguration)
+
+<!--
+VModuleConfiguration is a collection of individual file names or patterns
+and the corresponding verbosity threshold.
+-->
+<p>VModuleConfiguration 是一组文件名（通配符）及其对应的日志详尽程度阈值。</p>
+
+
+
+## `DefaultPreemptionArgs`     {#kubescheduler-config-k8s-io-v1beta2-DefaultPreemptionArgs}
+    
+<!--
+DefaultPreemptionArgs holds arguments used to configure the
+DefaultPreemption plugin.
+-->
+<p>DefaultPreemptionArgs 包含用来配置 DefaultPreemption 插件的参数。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta2</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>DefaultPreemptionArgs</code></td></tr>
+    
+  
+<tr><td><code>minCandidateNodesPercentage</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   MinCandidateNodesPercentage is the minimum number of candidates to
+shortlist when dry running preemption as a percentage of number of nodes.
+Must be in the range [0, 100]. Defaults to 10% of the cluster size if
+unspecified.
+   -->
+   <p>此字段为试运行抢占时 shortlist 中候选节点数的下限，数值为节点数的百分比。
+   字段值必须介于 [0, 100] 之间。未指定时默认值为整个集群规模的 10%。</p>
+</td>
+</tr>
+<tr><td><code>minCandidateNodesAbsolute</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+  <!--
+   MinCandidateNodesAbsolute is the absolute minimum number of candidates to
+shortlist. The likely number of candidates enumerated for dry running
+preemption is given by the formula:
+numCandidates = max(numNodes &lowast; minCandidateNodesPercentage, minCandidateNodesAbsolute)
+We say "likely" because there are other factors such as PDB violations
+that play a role in the number of candidates shortlisted. Must be at least
+0 nodes. Defaults to 100 nodes if unspecified.
+   -->
+   <p>此字段设置 shortlist 中候选节点的绝对下限。用于试运行抢占而列举的候选节点个数近似于通过下面的公式计算的：</p>
+   <p>候选节点数 = max(节点数 * minCandidateNodesPercentage, minCandidateNodesAbsolute)</p>
+   <p>之所以说是&quot;近似于&quot;是因为存在一些类似于 PDB 违例这种因素，会影响到进入 shortlist中候选节点的个数。
+   取值至少为 0 节点。若未设置默认为 100 节点。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `InterPodAffinityArgs`     {#kubescheduler-config-k8s-io-v1beta2-InterPodAffinityArgs}
+    
+<!--
+InterPodAffinityArgs holds arguments used to configure the InterPodAffinity plugin.
+-->
+<p>InterPodAffinityArgs 包含用来配置 InterPodAffinity 插件的参数。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta2</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>InterPodAffinityArgs</code></td></tr>
+    
+<tr><td><code>hardPodAffinityWeight</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   HardPodAffinityWeight is the scoring weight for existing pods with a
+matching hard affinity to the incoming pod.
+   -->
+   <p>此字段是一个计分权重值。针对新增的 Pod，
+   要对现存的、带有与新 Pod 匹配的硬性亲和性设置的 Pod 计算亲和性得分。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `KubeSchedulerConfiguration`     {#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration}
+    
+<!--
+KubeSchedulerConfiguration configures a scheduler
+-->
+<p>KubeSchedulerConfiguration 用来配置调度器。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta2</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>KubeSchedulerConfiguration</code></td></tr>
+  
+<tr><td><code>parallelism</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   Parallelism defines the amount of parallelism in algorithms for scheduling a Pods. Must be greater than 0. Defaults to 16
+   -->
+   <p>此字段设置为调度 Pod 而执行算法时的并发度。此值必须大于 0。
+   默认值为 16。</p>
+</td>
+</tr>
+<tr><td><code>leaderElection</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#LeaderElectionConfiguration"><code>LeaderElectionConfiguration</code></a>
+</td>
+<td>
+   <!--
+   LeaderElection defines the configuration of leader election client.
+   -->
+   <p>此字段用来定义领导者选举客户端的配置。</p>
+</td>
+</tr>
+<tr><td><code>clientConnection</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#ClientConnectionConfiguration"><code>ClientConnectionConfiguration</code></a>
+</td>
+<td>
+   <!--
+   ClientConnection specifies the kubeconfig file and client connection
+settings for the proxy server to use when communicating with the apiserver.
+   -->
+   <p>此字段为与 API 服务器通信时使用的代理服务器设置 kubeconfig 文件和客户端连接配置。</p>
+</td>
+</tr>
+<tr><td><code>healthzBindAddress</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Note: Both HealthzBindAddress and MetricsBindAddress fields are deprecated.
+Only empty address or port 0 is allowed. Anything else will fail validation.
+HealthzBindAddress is the IP address and port for the health check server to serve on.
+   -->
+   <p><code>healthzBindAddress</code> 是健康检查服务器提供服务所用的 IP 地址和端口。
+   注意：<code>healthzBindAddress</code> 和 <code>metricsBindAddress</code>这两个字段都已被弃用。
+   只可以设置空地址或者端口 0。其他设置值都无法通过合法性检查。</p>
+</td>
+</tr>
+<tr><td><code>metricsBindAddress</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   MetricsBindAddress is the IP address and port for the metrics server to serve on.
+   -->
+   <p><code>metricsBindAddress</code> 是度量值服务器提供服务所用的 IP 地址和端口。</p>
+</td>
+</tr>
+<tr><td><code>DebuggingConfiguration</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#DebuggingConfiguration"><code>DebuggingConfiguration</code></a>
+</td>
+<!--
+(Members of <code>DebuggingConfiguration</code> are embedded into this type.)
+-->
+<td>（<code>DebuggingConfiguration</code> 的成员被内嵌到此类型中）
+   <!--
+   DebuggingConfiguration holds configuration for Debugging related features
+   TODO: We might wanna make this a substruct like Debugging componentbaseconfigv1alpha1.DebuggingConfiguration
+   -->
+   <p>此字段设置与调试相关功能特性的配置。
+   TODO：我们可能想把它做成一个子结构，像调试 component-base/config/v1alpha1.DebuggingConfiguration 一样。</p>
+</td>
+</tr>
+<tr><td><code>percentageOfNodesToScore</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   PercentageOfNodesToScore is the percentage of all nodes that once found feasible
+for running a pod, the scheduler stops its search for more feasible nodes in
+the cluster. This helps improve scheduler's performance. Scheduler always tries to find
+at least "minFeasibleNodesToFind" feasible nodes no matter what the value of this flag is.
+Example: if the cluster size is 500 nodes and the value of this flag is 30,
+then scheduler stops finding further feasible nodes once it finds 150 feasible ones.
+When the value is 0, default percentage (5%--50% based on the size of the cluster) of the
+nodes will be scored.
+   -->
+   <p>此字段为所有节点的百分比，一旦调度器找到所设置比例的、能够运行 Pod 的节点，
+   则停止在集群中继续寻找更合适的节点。这一配置有助于提高调度器的性能。
+   调度器总会尝试寻找至少 &quot;minFeasibleNodesToFind&quot; 个可行节点，无论此字段的取值如何。
+   例如：当集群规模为 500 个节点，而此字段的取值为 30，
+   则调度器在找到 150 个合适的节点后会停止继续寻找合适的节点。
+   当此值为 0 时，调度器会使用默认节点数百分比（基于集群规模确定的值，在 5% 到 50% 之间）来执行打分操作。
+   </p>
+</td>
+</tr>
+<tr><td><code>podInitialBackoffSeconds</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int64</code>
+</td>
+<td>
+   <!--
+   PodInitialBackoffSeconds is the initial backoff for unschedulable pods.
+If specified, it must be greater than 0. If this value is null, the default value (1s)
+will be used.
+   -->
+   <p>此字段设置不可调度 Pod 的初始回退秒数。如果设置了此字段，其取值必须大于零。
+   若此值为 null，则使用默认值（1s）。</p>
+</td>
+</tr>
+<tr><td><code>podMaxBackoffSeconds</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int64</code>
+</td>
+<td>
+   <!--
+   PodMaxBackoffSeconds is the max backoff for unschedulable pods.
+If specified, it must be greater than podInitialBackoffSeconds. If this value is null,
+the default value (10s) will be used.
+   -->
+   <p>此字段设置不可调度的 Pod 的最大回退秒数。如果设置了此字段，
+   则其值必须大于 podInitialBackoffSeconds 字段值。如果此值设置为 null，则使用默认值（10s）。
+   </p>
+</td>
+</tr>
+<tr><td><code>profiles</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerProfile"><code>[]KubeSchedulerProfile</code></a>
+</td>
+<td>
+   <!--
+   Profiles are scheduling profiles that kube-scheduler supports. Pods can
+choose to be scheduled under a particular profile by setting its associated
+scheduler name. Pods that don't specify any scheduler name are scheduled
+with the "default-scheduler" profile, if present here.
+   -->
+   <p>此字段为 kube-scheduler 所支持的方案（profiles）。
+   Pod 可以通过设置其对应的调度器名称来选择使用特定的方案。
+   未指定调度器名称的 Pod 会使用 &quot;default-scheduler&quot; 方案来调度，如果存在的话。
+   </p>
+</td>
+</tr>
+<tr><td><code>extenders</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-Extender"><code>[]Extender</code></a>
+</td>
+<td>
+   <!--
+   Extenders are the list of scheduler extenders, each holding the values of how to communicate
+with the extender. These extenders are shared by all scheduler profiles.
+   -->
+   <p>此字段为调度器扩展模块（Extender）的列表，
+   每个元素包含如何与某扩展模块通信的配置信息。
+   所有调度器模仿会共享此扩展模块列表。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `NodeAffinityArgs`     {#kubescheduler-config-k8s-io-v1beta2-NodeAffinityArgs}
+    
+<!--
+NodeAffinityArgs holds arguments to configure the NodeAffinity plugin.
+-->
+<p>NodeAffinityArgs 中包含配置 NodeAffinity 插件的参数。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta2</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>NodeAffinityArgs</code></td></tr>
+  
+<tr><td><code>addedAffinity</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#nodeaffinity-v1-core"><code>core/v1.NodeAffinity</code></a>
+</td>
+<td>
+   <!--
+   AddedAffinity is applied to all Pods additionally to the NodeAffinity
+specified in the PodSpec. That is, Nodes need to satisfy AddedAffinity
+AND .spec.NodeAffinity. AddedAffinity is empty by default (all Nodes
+match).
+When AddedAffinity is used, some Pods with affinity requirements that match
+a specific Node (such as Daemonset Pods) might remain unschedulable.
+   -->
+   <p>
+   <code>addedAffinity</code> 会作为附加的亲和性属性添加到所有 Pod 的规约中指定的 NodeAffinity 中。
+   换言之，节点需要同时满足 addedAffinity 和 .spec.nodeAffinity。默认情况下，addedAffinity 为空（与所有节点匹配）。
+   使用了 addedAffinity 时，某些带有已经能够与某特定节点匹配的亲和性需求的
+   Pod （例如 DaemonSet Pod）可能会继续呈现不可调度状态。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `NodeResourcesBalancedAllocationArgs`     {#kubescheduler-config-k8s-io-v1beta2-NodeResourcesBalancedAllocationArgs}
+    
+<!--
+NodeResourcesBalancedAllocationArgs holds arguments used to configure NodeResourcesBalancedAllocation plugin.
+-->
+<p>NodeResourcesBalancedAllocationArgs 包含用来配置 NodeResourcesBalancedAllocation 插件的参数。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta2</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>NodeResourcesBalancedAllocationArgs</code></td></tr>
+  
+<tr><td><code>resources</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-ResourceSpec"><code>[]ResourceSpec</code></a>
+</td>
+<td>
+   <!--
+   Resources to be managed, the default is "cpu" and "memory" if not specified.
+   -->
+   <p>要管理的资源；如果未设置，则默认值为 &quot;cpu&quot; 和 &quot;memory&quot;。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `NodeResourcesFitArgs`     {#kubescheduler-config-k8s-io-v1beta2-NodeResourcesFitArgs}
+    
+<!--
+NodeResourcesFitArgs holds arguments used to configure the NodeResourcesFit plugin.
+-->
+<p>NodeResourcesFitArgs 包含用来配置 NodeResourcesFit 插件的参数。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta2</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>NodeResourcesFitArgs</code></td></tr>
+  
+<tr><td><code>ignoredResources</code> <B><!--[Required]-->[必需]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--
+   IgnoredResources is the list of resources that NodeResources fit filter
+should ignore. This doesn't apply to scoring.
+   -->
+   <p>此字段为 NodeResources 匹配过滤器要忽略的资源列表。此列表不影响节点打分。</p>
+</td>
+</tr>
+<tr><td><code>ignoredResourceGroups</code> <B><!--[Required]-->[必需]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--
+   IgnoredResourceGroups defines the list of resource groups that NodeResources fit filter should ignore.
+e.g. if group is ["example.com"], it will ignore all resource names that begin
+with "example.com", such as "example.com/aaa" and "example.com/bbb".
+A resource group name can't contain '/'. This doesn't apply to scoring.
+   -->
+   <p>此字段定义 NodeResources 匹配过滤器要忽略的资源组列表。
+   例如，如果配置值为 [&quot;example.com&quot;]，则以 &quot;example.com&quot;
+   开头的资源名（如&quot;example.com/aaa&quot; 和 &quot;example.com/bbb&quot;）都会被忽略。
+   资源组名称中不可以包含 '/'。此设置不影响节点的打分。</p>
+</td>
+</tr>
+<tr><td><code>scoringStrategy</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-ScoringStrategy"><code>ScoringStrategy</code></a>
+</td>
+<td>
+   <!--
+   ScoringStrategy selects the node resource scoring strategy.
+The default strategy is LeastAllocated with an equal "cpu" and "memory" weight.
+   -->
+   <p>此字段用来选择节点资源打分策略。默认的策略为 LeastAllocated，
+   且 &quot;cpu&quot; 和&quot;memory&quot; 的权重相同。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `PodTopologySpreadArgs`     {#kubescheduler-config-k8s-io-v1beta2-PodTopologySpreadArgs}
+    
+<!--
+PodTopologySpreadArgs holds arguments used to configure the PodTopologySpread plugin.
+-->
+<p>PodTopologySpreadArgs 包含用来配置 PodTopologySpread 插件的参数。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta2</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>PodTopologySpreadArgs</code></td></tr>
+  
+<tr><td><code>defaultConstraints</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#topologyspreadconstraint-v1-core"><code>[]core/v1.TopologySpreadConstraint</code></a>
+</td>
+<td>
+   <!--
+   DefaultConstraints defines topology spread constraints to be applied to
+Pods that don't define any in `pod.spec.topologySpreadConstraints`.
+`.defaultConstraints[&lowast;].labelSelectors` must be empty, as they are
+deduced from the Pod's membership to Services, ReplicationControllers,
+ReplicaSets or StatefulSets.
+When not empty, .defaultingType must be "List".
+   -->
+   <p>此字段针对未定义 <code>.spec.topologySpreadConstraints</code> 的 Pod，
+   为其提供拓扑分布约束。<code>.defaultConstraints[&lowast;].labelSelectors</code>必须为空，
+   因为这一信息要从 Pod 所属的 Service、ReplicationController、
+   ReplicaSet 或 StatefulSet 来推导。
+   此字段不为空时，<code>.defaultingType</code> 必须为 &quot;List&quot;。</p>
+</td>
+</tr>
+<tr><td><code>defaultingType</code><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-PodTopologySpreadConstraintsDefaulting"><code>PodTopologySpreadConstraintsDefaulting</code></a>
+</td>
+<td>
+   <!--
+   DefaultingType determines how .defaultConstraints are deduced. Can be one
+   of "System" or "List".
+   - "System": Use kubernetes defined constraints that spread Pods among
+     Nodes and Zones.
+    - "List": Use constraints defined in .defaultConstraints.
+   Defaults to "List" if feature gate DefaultPodTopologySpread is disabled
+   and to "System" if enabled.-->
+   <p>
+   <code>defaultingType</code> 决定如何推导 <code>.defaultConstraints</code>。
+   可选值为 &quot;System&quot; 或 &quot;List&quot;。
+   </p>
+   <ul>
+     <li>&quot;System&quot;：使用 Kubernetes 定义的约束，将 Pod 分布到不同节点和可用区；</li>
+     <li>&quot;List&quot;：使用 <code>.defaultConstraints</code> 中定义的约束。</li>
+   </ul>
+   <p>当特性门控 DefaultPodTopologySpread 被禁用时，默认值为 &quot;list&quot;；反之，默认值为 &quot;System&quot;。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `VolumeBindingArgs`     {#kubescheduler-config-k8s-io-v1beta2-VolumeBindingArgs}
+    
+<!--
+VolumeBindingArgs holds arguments used to configure the VolumeBinding plugin.
+-->
+<p>VolumeBindingArgs 包含用来配置 VolumeBinding 插件的参数。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta2</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>VolumeBindingArgs</code></td></tr>
+  
+<tr><td><code>bindTimeoutSeconds</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int64</code>
+</td>
+<td>
+   <!--
+   BindTimeoutSeconds is the timeout in seconds in volume binding operation.
+Value must be non-negative integer. The value zero indicates no waiting.
+If this value is nil, the default value (600) will be used.
+   -->
+   <p>此字段设置卷绑定操作的超时秒数。字段值必须是非负数。
+   取值为 0 意味着不等待。如果此值为 null，则使用默认值（600）。</p>
+</td>
+</tr>
+<tr><td><code>shape</code><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-UtilizationShapePoint"><code>[]UtilizationShapePoint</code></a>
+</td>
+<td>
+   <!--
+   Shape specifies the points defining the score function shape, which is
+used to score nodes based on the utilization of statically provisioned
+PVs. The utilization is calculated by dividing the total requested
+storage of the pod by the total capacity of feasible PVs on each node.
+Each point contains utilization (ranges from 0 to 100) and its
+associated score (ranges from 0 to 10). You can turn the priority by
+specifying different scores for different utilization numbers.
+The default shape points are:
+1) 0 for 0 utilization
+2) 10 for 100 utilization
+All points must be sorted in increasing order by utilization.
+   -->
+   <p><code>shape</code> 用来设置打分函数曲线所使用的计分点，
+   这些计分点用来基于静态制备的 PV 卷的利用率为节点打分。
+   卷的利用率是计算得来的，将 Pod 所请求的总的存储空间大小除以每个节点上可用的总的卷容量。
+   每个计分点包含利用率（范围从 0 到 100）和其对应的得分（范围从 0 到 10）。
+   你可以通过为不同的使用率值设置不同的得分来反转优先级：</p>
+   <p>默认的曲线计分点为：</p>
+   <ol>
+     <li>利用率为 0 时得分为 0；</li>
+     <li>利用率为 100 时得分为 10。</li>
+   </ol>
+   <p>所有计分点必须按利用率值的升序来排序。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Extender`     {#kubescheduler-config-k8s-io-v1beta2-Extender}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
+
+<!--
+Extender holds the parameters used to communicate with the extender. If a verb is unspecified/empty,
+it is assumed that the extender chose not to provide that extension.
+-->
+<p>Extender 包含与扩展模块（Extender）通信所用的参数。
+如果未指定 verb 或者 verb 为空，则假定对应的扩展模块选择不提供该扩展功能。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>urlPrefix</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   URLPrefix at which the extender is available
+   -->
+   <p>用来访问扩展模块的 URL 前缀。</p>
+</td>
+</tr>
+<tr><td><code>filterVerb</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Verb for the filter call, empty if not supported. This verb is appended to the URLPrefix when issuing the filter call to extender.
+   -->
+   <p>filter 调用所使用的动词，如果不支持过滤操作则为空。
+   此动词会在向扩展模块发送 filter 调用时追加到 urlPrefix 后面。</p>
+</td>
+</tr>
+<tr><td><code>preemptVerb</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Verb for the preempt call, empty if not supported. This verb is appended to the URLPrefix when issuing the preempt call to extender.
+   -->
+   <p>preempt 调用所使用的动词，如果不支持抢占操作则为空。
+   此动词会在向扩展模块发送 preempt 调用时追加到 urlPrefix 后面。</p>
+</td>
+</tr>
+<tr><td><code>prioritizeVerb</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Verb for the prioritize call, empty if not supported. This verb is appended to the URLPrefix when issuing the prioritize call to extender.
+   -->
+   <p>prioritize 调用所使用的动词，如果不支持 prioritize 操作则为空。
+   此动词会在向扩展模块发送 prioritize 调用时追加到 urlPrefix 后面。</p>
+</td>
+</tr>
+<tr><td><code>weight</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int64</code>
+</td>
+<td>
+   <!--
+   The numeric multiplier for the node scores that the prioritize call generates.
+The weight should be a positive integer
+   -->
+   <p>针对 prioritize 调用所生成的节点分数要使用的数值系数。
+   weight 值必须是正整数。</p>
+</td>
+</tr>
+<tr><td><code>bindVerb</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Verb for the bind call, empty if not supported. This verb is appended to the URLPrefix when issuing the bind call to extender.
+If this method is implemented by the extender, it is the extender's responsibility to bind the pod to apiserver. Only one extender
+can implement this function.
+   -->
+   <p>bind 调用所使用的动词，如果不支持 bind 操作则为空。
+   此动词会在向扩展模块发送 bind 调用时追加到 urlPrefix 后面。
+   如果扩展模块实现了此方法，扩展模块要负责将 Pod 绑定到 API 服务器。
+   只有一个扩展模块可以实现此函数。</p>
+</td>
+</tr>
+<tr><td><code>enableHTTPS</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   EnableHTTPS specifies whether https should be used to communicate with the extender
+   -->
+   <p>此字段设置是否需要使用 HTTPS 来与扩展模块通信。</p>
+</td>
+</tr>
+<tr><td><code>tlsConfig</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-ExtenderTLSConfig"><code>ExtenderTLSConfig</code></a>
+</td>
+<td>
+   <!--
+   TLSConfig specifies the transport layer security config
+   -->
+   <p>此字段设置传输层安全性（TLS）配置。</p>
+</td>
+</tr>
+<tr><td><code>httpTimeout</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--
+   HTTPTimeout specifies the timeout duration for a call to the extender. Filter timeout fails the scheduling of the pod. Prioritize
+timeout is ignored, k8s/other extenders priorities are used to select the node.
+   -->
+   <p>此字段给出扩展模块功能调用的超时值。filter 操作超时会导致 Pod 无法被调度。
+   prioritize 操作超时会被忽略，Kubernetes 或者其他扩展模块所给出的优先级值会被用来选择节点。
+   </p>
+</td>
+</tr>
+<tr><td><code>nodeCacheCapable</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   NodeCacheCapable specifies that the extender is capable of caching node information,
+so the scheduler should only send minimal information about the eligible nodes
+assuming that the extender already cached full details of all nodes in the cluster
+   -->
+   <p>此字段指示扩展模块可以缓存节点信息，从而调度器应该发送关于可选节点的最少信息，
+   假定扩展模块已经缓存了集群中所有节点的全部详细信息。</p>
+</td>
+</tr>
+<tr><td><code>managedResources</code><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-ExtenderManagedResource"><code>[]ExtenderManagedResource</code></a>
+</td>
+<td>
+   <!--
+   ManagedResources is a list of extended resources that are managed by
+this extender.
+- A pod will be sent to the extender on the Filter, Prioritize and Bind
+  (if the extender is the binder) phases iff the pod requests at least
+  one of the extended resources in this list. If empty or unspecified,
+  all pods will be sent to this extender.
+- If IgnoredByScheduler is set to true for a resource, kube-scheduler
+  will skip checking the resource in predicates.
+   -->
+   <p><code>managedResources</code> 是一个由此扩展模块所管理的扩展资源的列表。</p>
+   <ul>
+     <li>如果某 Pod 请求了此列表中的至少一个扩展资源，则 Pod 会在 filter、
+     prioritize 和 bind （如果扩展模块可以执行绑定操作）阶段被发送到该扩展模块。
+     若此字段为空或未设置，则所有 Pod 都会发送到此扩展模块。</li>
+     <li>如果某资源上设置了 <code>ignoredByScheduler</code> 为 true，则 kube-scheduler
+     会在断言阶段略过对该资源的检查。</li>
+   </ul>
+</td>
+</tr>
+<tr><td><code>ignorable</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   Ignorable specifies if the extender is ignorable, i.e. scheduling should not
+fail when the extender returns an error or is not reachable.
+   -->
+   <p>此字段用来设置扩展模块是否是可忽略的。
+   换言之，当扩展模块返回错误或者完全不可达时，调度操作不应失败。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ExtenderManagedResource`     {#kubescheduler-config-k8s-io-v1beta2-ExtenderManagedResource}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [Extender](#kubescheduler-config-k8s-io-v1beta2-Extender)
+
+<!--
+ExtenderManagedResource describes the arguments of extended resources
+managed by an extender.
+-->
+<p>ExtenderManagedResource 描述某扩展模块所管理的扩展资源的参数。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>name</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Name is the extended resource name.
+   -->
+   <p>扩展资源的名称。</p>
+</td>
+</tr>
+<tr><td><code>ignoredByScheduler</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   IgnoredByScheduler indicates whether kube-scheduler should ignore this
+resource when applying predicates.
+   -->
+   <p>此字段标明 kube-scheduler 是否应在应用断言时忽略此资源。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ExtenderTLSConfig`     {#kubescheduler-config-k8s-io-v1beta2-ExtenderTLSConfig}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [Extender](#kubescheduler-config-k8s-io-v1beta2-Extender)
+
+<!--
+ExtenderTLSConfig contains settings to enable TLS with extender
+-->
+<p>ExtenderTLSConfig 包含启用与扩展模块间 TLS 传输所需的配置参数。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>insecure</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   Server should be accessed without verifying the TLS certificate. For testing only.
+   -->
+   <p>访问服务器时不需要检查 TLS 证书。此配置仅针对测试用途。</p>
+</td>
+</tr>
+<tr><td><code>serverName</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   ServerName is passed to the server for SNI and is used in the client to check server
+certificates against. If ServerName is empty, the hostname used to contact the
+server is used.
+   -->
+   <p><code>serverName</code> 会被发送到服务器端，作为 SNI 标志；
+   客户端会使用此设置来检查服务器证书。
+   如果 <code>serverName</code> 为空，则会使用联系服务器时所用的主机名。
+   </p>
+</td>
+</tr>
+<tr><td><code>certFile</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Server requires TLS client certificate authentication
+   -->
+   <p>服务器端所要求的 TLS 客户端证书认证。</p>
+</td>
+</tr>
+<tr><td><code>keyFile</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Server requires TLS client certificate authentication
+   -->
+   <p>服务器端所要求的 TLS 客户端秘钥认证。</p>
+</td>
+</tr>
+<tr><td><code>caFile</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Trusted root certificates for server
+   -->
+   <p>服务器端可信任的根证书。</p>
+</td>
+</tr>
+<tr><td><code>certData</code> <B><!--[Required]-->[必需]</B><br/>
+<code>[]byte</code>
+</td>
+<td>
+   <!--
+   CertData holds PEM-encoded bytes (typically read from a client certificate file).
+CertData takes precedence over CertFile
+   -->
+   <p><code>certData</code> 包含 PEM 编码的字节流（通常从某客户端证书文件读入）。
+   此字段优先级高于 certFile 字段。</p>
+</td>
+</tr>
+<tr><td><code>keyData</code> <B><!--[Required]-->[必需]</B><br/>
+<code>[]byte</code>
+</td>
+<td>
+   <!--
+   KeyData holds PEM-encoded bytes (typically read from a client certificate key file).
+KeyData takes precedence over KeyFile
+   -->
+   <p><code>keyData</code> 包含 PEM 编码的字节流（通常从某客户端证书秘钥文件读入）。
+   此字段优先级高于 keyFile 字段。</p>
+</td>
+</tr>
+<tr><td><code>caData</code> <B><!--[Required]-->[必需]</B><br/>
+<code>[]byte</code>
+</td>
+<td>
+   <!--
+   CAData holds PEM-encoded bytes (typically read from a root certificates bundle).
+CAData takes precedence over CAFile
+   -->
+   <p><code>caData</code> 包含 PEM 编码的字节流（通常从某根证书包文件读入）。
+   此字段优先级高于 caFile 字段。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `KubeSchedulerProfile`     {#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerProfile}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
+
+<!--
+KubeSchedulerProfile is a scheduling profile.
+-->
+<p>KubeSchedulerProfile 是一个调度方案。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>schedulerName</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   schedulername is the name of the scheduler associated to this profile.
+if schedulername matches with the pod's "spec.schedulername", then the pod
+is scheduled with this profile.
+   -->
+   <p><code>schedulerName</code> 是与此调度方案相关联的调度器的名称。
+   如果 <code>schedulerName</code> 与 Pod 的 <code>spec.schedulerName</code>
+   匹配，则该 Pod 会使用此方案来调度。</p>
+</td>
+</tr>
+<tr><td><code>plugins</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-Plugins"><code>Plugins</code></a>
+</td>
+<td>
+   <!--
+   Plugins specify the set of plugins that should be enabled or disabled.
+Enabled plugins are the ones that should be enabled in addition to the
+default plugins. Disabled plugins are any of the default plugins that
+should be disabled.
+When no enabled or disabled plugin is specified for an extension point,
+default plugins for that extension point will be used if there is any.
+If a QueueSort plugin is specified, the same QueueSort Plugin and
+PluginConfig must be specified for all profiles.
+   -->
+   <p><code>plugins</code> 设置一组应该被启用或禁止的插件。
+   被启用的插件是指除了默认插件之外需要被启用的插件。
+   被禁止的插件是指需要被禁用的默认插件。</p>
+   <p>如果针对某个扩展点没有设置被启用或被禁止的插件，
+   则使用该扩展点的默认插件（如果有的话）。如果设置了 QueueSort 插件，则同一个 QueueSort
+   插件和 <code>pluginConfig</code> 要被设置到所有调度方案之上。</p>
+</td>
+</tr>
+<tr><td><code>pluginConfig</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-PluginConfig"><code>[]PluginConfig</code></a>
+</td>
+<td>
+   <!--
+   PluginConfig is an optional set of custom plugin arguments for each plugin.
+Omitting config args for a plugin is equivalent to using the default config
+for that plugin.
+   -->
+   <p><code>pluginConfig</code> 是为每个插件提供的一组可选的定制插件参数。
+   如果忽略了插件的配置参数，则意味着使用该插件的默认配置。</p>
+</td>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Plugin`     {#kubescheduler-config-k8s-io-v1beta2-Plugin}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [PluginSet](#kubescheduler-config-k8s-io-v1beta2-PluginSet)
+
+<!--
+Plugin specifies a plugin name and its weight when applicable. Weight is used only for Score plugins.
+-->
+<p>Plugin 指定插件的名称及其权重（如果适用的话）。权重仅用于评分（Score）插件。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>name</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Name defines the name of plugin
+   -->
+   <p>插件的名称。</p>
+</td>
+</tr>
+<tr><td><code>weight</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   Weight defines the weight of plugin, only used for Score plugins.
+   -->
+   <p>插件的权重；仅适用于评分（Score）插件。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `PluginConfig`     {#kubescheduler-config-k8s-io-v1beta2-PluginConfig}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeSchedulerProfile](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerProfile)
+
+<!--
+PluginConfig specifies arguments that should be passed to a plugin at the time of initialization.
+A plugin that is invoked at multiple extension points is initialized once. Args can have arbitrary structure.
+It is up to the plugin to process these Args.
+-->
+<p>PluginConfig 给出初始化阶段要传递给插件的参数。
+在多个扩展点被调用的插件仅会被初始化一次。
+参数可以是任意结构。插件负责处理这里所传的参数。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>name</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Name defines the name of plugin being configured
+   -->
+   <p><code>name</code> 是所配置的插件的名称。</p>
+</td>
+</tr>
+<tr><td><code>args</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/runtime/#RawExtension"><code>k8s.io/apimachinery/pkg/runtime.RawExtension</code></a>
+</td>
+<td>
+   <!--
+   Args defines the arguments passed to the plugins at the time of initialization. Args can have arbitrary structure.
+   -->
+   <p><code>args</code> 定义在初始化阶段要传递给插件的参数。参数可以为任意结构。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `PluginSet`     {#kubescheduler-config-k8s-io-v1beta2-PluginSet}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [Plugins](#kubescheduler-config-k8s-io-v1beta2-Plugins)
+
+<!--
+PluginSet specifies enabled and disabled plugins for an extension point.
+If an array is empty, missing, or nil, default plugins at that extension point will be used.
+-->
+<p>PluginSet 为某扩展点设置要启用或禁用的插件。
+如果数组为空，或者取值为 null，则使用该扩展点的默认插件集合。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>enabled</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-Plugin"><code>[]Plugin</code></a>
+</td>
+<td>
+   <!--
+   Enabled specifies plugins that should be enabled in addition to default plugins.
+If the default plugin is also configured in the scheduler config file, the weight of plugin will
+be overridden accordingly.
+These are called after default plugins and in the same order specified here.
+   -->
+   <p><code>enabled</code> 设置在默认插件之外要启用的插件。
+   如果在调度器的配置文件中也配置了默认插件，则对应插件的权重会被覆盖。
+   此处所设置的插件会在默认插件之后被调用，调用顺序与数组中元素顺序相同。</p>
+</td>
+</tr>
+<tr><td><code>disabled</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-Plugin"><code>[]Plugin</code></a>
+</td>
+<td>
+   <!--
+   Disabled specifies default plugins that should be disabled.
+When all default plugins need to be disabled, an array containing only one "&lowast;" should be provided.
+   -->
+   <p><code>disabled</code> 设置要被禁用的默认插件。
+   如果需要禁用所有的默认插件，应该提供仅包含一个元素 &quot;&lowast;&quot; 的数组。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Plugins`     {#kubescheduler-config-k8s-io-v1beta2-Plugins}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeSchedulerProfile](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerProfile)
+
+<!--
+Plugins include multiple extension points. When specified, the list of plugins for
+a particular extension point are the only ones enabled. If an extension point is
+omitted from the config, then the default set of plugins is used for that extension point.
+Enabled plugins are called in the order specified here, after default plugins. If they need to
+be invoked before default plugins, default plugins must be disabled and re-enabled here in desired order.
+-->
+<p>Plugins 结构中包含多个扩展点。当此结构被设置时，针对特定扩展点所启用的所有插件都在这一列表中。
+如果配置中不包含某个扩展点，则使用该扩展点的默认插件集合。
+被启用的插件的调用顺序与这里指定的顺序相同，都在默认插件之后调用。
+如果它们需要在默认插件之前调用，则需要先行禁止默认插件，之后在这里按期望的顺序重新启用。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>queueSort</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   QueueSort is a list of plugins that should be invoked when sorting pods in the scheduling queue.
+   -->
+   <p><code>queueSort</code> 是一个在对调度队列中 Pod 排序时要调用的插件列表。</p>
+</td>
+</tr>
+<tr><td><code>preFilter</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   PreFilter is a list of plugins that should be invoked at "PreFilter" extension point of the scheduling framework.
+   -->
+   <p><code>preFilter</code> 是一个在调度框架中“PreFilter（预过滤）”扩展点上要调用的插件列表。</p>
+</td>
+</tr>
+<tr><td><code>filter</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   Filter is a list of plugins that should be invoked when filtering out nodes that cannot run the Pod.
+   -->
+   <p><code>filter</code> 是一个在需要过滤掉无法运行 Pod 的节点时被调用的插件列表。</p>
+</td>
+</tr>
+<tr><td><code>postFilter</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   PostFilter is a list of plugins that are invoked after filtering phase, but only when no feasible nodes were found for the pod.
+   -->
+   <p><code>postFilter</code> 是一个在过滤阶段结束后会被调用的插件列表；
+   这里的插件只有在找不到合适的节点来运行 Pod 时才会被调用。</p>
+</td>
+</tr>
+<tr><td><code>preScore</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   PreScore is a list of plugins that are invoked before scoring.
+   -->
+   <p><code>preScore</code> 是一个在打分之前要调用的插件列表。</p>
+</td>
+</tr>
+<tr><td><code>score</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   Score is a list of plugins that should be invoked when ranking nodes that have passed the filtering phase.
+   -->
+   <p><code>score</code> 是一个在对已经通过过滤阶段的节点进行排序时调用的插件的列表。</p>
+</td>
+</tr>
+<tr><td><code>reserve</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   Reserve is a list of plugins invoked when reserving/unreserving resources
+after a node is assigned to run the pod.
+   -->
+   <p><code>reserve</code> 是一组在运行 Pod 的节点已被选定后，需要预留或者释放资源时调用的插件的列表。</p>
+</td>
+</tr>
+<tr><td><code>permit</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   Permit is a list of plugins that control binding of a Pod. These plugins can prevent or delay binding of a Pod.
+   -->
+   <p><code>permit</code> 是一个用来控制 Pod 绑定关系的插件列表。
+   这些插件可以禁止或者延迟 Pod 的绑定。</p>
+</td>
+</tr>
+<tr><td><code>preBind</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   PreBind is a list of plugins that should be invoked before a pod is bound.
+   -->
+   <p><code>preBind</code> 是一个在 Pod 被绑定到某节点之前要被调用的插件的列表。</p>
+</td>
+</tr>
+<tr><td><code>bind</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   Bind is a list of plugins that should be invoked at "Bind" extension point of the scheduling framework.
+The scheduler call these plugins in order. Scheduler skips the rest of these plugins as soon as one returns success.
+   -->
+   <p><code>bind</code> 是一个在调度框架中&quot;Bind（绑定）&quot;扩展点上要调用的插件的列表。
+   调度器按顺序调用这些插件。只要其中某个插件返回成功，则调度器就略过余下的插件。</p>
+</td>
+</tr>
+<tr><td><code>postBind</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   PostBind is a list of plugins that should be invoked after a pod is successfully bound.
+   -->
+   <p><code>postBind</code> 是一个在 Pod 已经被成功绑定之后要调用的插件的列表。</p>
+</td>
+</tr>
+<tr><td><code>multiPoint</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   MultiPoint is a simplified config section to enable plugins for all valid extension points.
+   -->
+   <p><code>multiPoint</code> 是一个简化的配置段落，用来为所有合法的扩展点启用插件。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `PodTopologySpreadConstraintsDefaulting`     {#kubescheduler-config-k8s-io-v1beta2-PodTopologySpreadConstraintsDefaulting}
+
+ <!--
+(Alias of `string`)
+
+**Appears in:**
+-->
+（`string` 类型的别名）
+
+**出现在：**
+   
+- [PodTopologySpreadArgs](#kubescheduler-config-k8s-io-v1beta2-PodTopologySpreadArgs)
+
+<!--
+PodTopologySpreadConstraintsDefaulting defines how to set default constraints
+for the PodTopologySpread plugin.
+-->
+<p>PodTopologySpreadConstraintsDefaulting 定义如何为
+PodTopologySpread 插件设置默认的约束。</p>
+
+## `RequestedToCapacityRatioParam`     {#kubescheduler-config-k8s-io-v1beta2-RequestedToCapacityRatioParam}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ScoringStrategy](#kubescheduler-config-k8s-io-v1beta2-ScoringStrategy)
+
+<!--
+RequestedToCapacityRatioParam define RequestedToCapacityRatio parameters
+-->
+<p>RequestedToCapacityRatioParam 结构定义 RequestedToCapacityRatio 的参数。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>shape</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-UtilizationShapePoint"><code>[]UtilizationShapePoint</code></a>
+</td>
+<td>
+   <!--
+   Shape is a list of points defining the scoring function shape.
+   -->
+   <p><code>shape</code> 是一个定义评分函数曲线的计分点的列表。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ResourceSpec`     {#kubescheduler-config-k8s-io-v1beta2-ResourceSpec}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [NodeResourcesBalancedAllocationArgs](#kubescheduler-config-k8s-io-v1beta2-NodeResourcesBalancedAllocationArgs)
+- [ScoringStrategy](#kubescheduler-config-k8s-io-v1beta2-ScoringStrategy)
+
+<!--
+ResourceSpec represents a single resource.
+-->
+<p>ResourceSpec 用来代表某个资源。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>name</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Name of the resource.
+   -->
+   <p>资源名称。</p>
+</td>
+</tr>
+<tr><td><code>weight</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int64</code>
+</td>
+<td>
+   <!--
+   Weight of the resource.
+   -->
+   <p>资源权重。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ScoringStrategy`     {#kubescheduler-config-k8s-io-v1beta2-ScoringStrategy}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [NodeResourcesFitArgs](#kubescheduler-config-k8s-io-v1beta2-NodeResourcesFitArgs)
+
+<!--
+ScoringStrategy define ScoringStrategyType for node resource plugin
+-->
+<p>ScoringStrategy 为节点资源插件定义 ScoringStrategyType。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>type</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-ScoringStrategyType"><code>ScoringStrategyType</code></a>
+</td>
+<td>
+   <!--
+   Type selects which strategy to run.
+   -->
+   <p><code>type</code> 用来选择要运行的策略。</p>
+</td>
+</tr>
+<tr><td><code>resources</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-ResourceSpec"><code>[]ResourceSpec</code></a>
+</td>
+<td>
+   <!--
+   Resources to consider when scoring.
+The default resource set includes "cpu" and "memory" with an equal weight.
+Allowed weights go from 1 to 100.
+Weight defaults to 1 if not specified or explicitly set to 0.
+   -->
+   <p><code>resources</code> 设置在评分时要考虑的资源。</p>
+   <p>默认的资源集合包含 &quot;cpu&quot; 和 &quot;memory&quot;，且二者权重相同。</p>
+   <p>权重的取值范围为 1 到 100。</p>
+   <p>当权重未设置或者显式设置为 0 时，意味着使用默认值 1。</p>
+</td>
+</tr>
+<tr><td><code>requestedToCapacityRatio</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta2-RequestedToCapacityRatioParam"><code>RequestedToCapacityRatioParam</code></a>
+</td>
+<td>
+   <!--
+   Arguments specific to RequestedToCapacityRatio strategy.
+   -->
+   <p>特定于 RequestedToCapacityRatio 策略的参数。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ScoringStrategyType`     {#kubescheduler-config-k8s-io-v1beta2-ScoringStrategyType}
+
+ <!--
+(Alias of `string`)
+
+**Appears in:**
+-->
+（`string` 数据类型的别名）
+
+**出现在：**
+   
+- [ScoringStrategy](#kubescheduler-config-k8s-io-v1beta2-ScoringStrategy)
+
+<!--
+ScoringStrategyType the type of scoring strategy used in NodeResourcesFit plugin.
+-->
+<p>ScoringStrategyType 是 NodeResourcesFit 插件所使用的的评分策略类型。</p>
+
+## `UtilizationShapePoint`     {#kubescheduler-config-k8s-io-v1beta2-UtilizationShapePoint}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [VolumeBindingArgs](#kubescheduler-config-k8s-io-v1beta2-VolumeBindingArgs)
+- [RequestedToCapacityRatioParam](#kubescheduler-config-k8s-io-v1beta2-RequestedToCapacityRatioParam)
+
+<!--
+UtilizationShapePoint represents single point of priority function shape.
+-->
+<p>UtilizationShapePoint 代表的是优先级函数曲线中的一个评分点。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>utilization</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   Utilization (x axis). Valid values are 0 to 100. Fully utilized node maps to 100.
+   -->
+   <p>利用率（x 轴）。合法值为 0 到 100。完全被利用的节点映射到 100。</p>
+</td>
+</tr>
+<tr><td><code>score</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   Score assigned to given utilization (y axis). Valid values are 0 to 10.
+   -->
+   <p>分配给指定利用率的分值（y 轴）。合法值为 0 到 10。</p>
+</td>
+</tr>
+</tbody>
+</table>
diff --git a/content/zh-cn/docs/reference/config-api/kube-scheduler-config.v1beta3.md b/content/zh-cn/docs/reference/config-api/kube-scheduler-config.v1beta3.md
new file mode 100644
index 0000000000..a886979a82
--- /dev/null
+++ b/content/zh-cn/docs/reference/config-api/kube-scheduler-config.v1beta3.md
@@ -0,0 +1,1861 @@
+---
+title: kube-scheduler 配置 (v1beta3)
+content_type: tool-reference
+package: kubescheduler.config.k8s.io/v1beta3
+auto_generated: true
+---
+<!--
+title: kube-scheduler Configuration (v1beta3)
+content_type: tool-reference
+package: kubescheduler.config.k8s.io/v1beta3
+auto_generated: true
+-->
+
+<!--
+## Resource Types
+-->
+## 资源类型
+
+- [DefaultPreemptionArgs](#kubescheduler-config-k8s-io-v1beta3-DefaultPreemptionArgs)
+- [InterPodAffinityArgs](#kubescheduler-config-k8s-io-v1beta3-InterPodAffinityArgs)
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerConfiguration)
+- [NodeAffinityArgs](#kubescheduler-config-k8s-io-v1beta3-NodeAffinityArgs)
+- [NodeResourcesBalancedAllocationArgs](#kubescheduler-config-k8s-io-v1beta3-NodeResourcesBalancedAllocationArgs)
+- [NodeResourcesFitArgs](#kubescheduler-config-k8s-io-v1beta3-NodeResourcesFitArgs)
+- [PodTopologySpreadArgs](#kubescheduler-config-k8s-io-v1beta3-PodTopologySpreadArgs)
+- [VolumeBindingArgs](#kubescheduler-config-k8s-io-v1beta3-VolumeBindingArgs)
+
+## `ClientConnectionConfiguration`     {#ClientConnectionConfiguration}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerConfiguration)
+
+<!--
+ClientConnectionConfiguration contains details for constructing a client.
+-->
+<p>ClientConnectionConfiguration 中包含用来构造客户端所需的细节。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>kubeconfig</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   kubeconfig is the path to a KubeConfig file.
+   -->
+   <p>此字段为指向 KubeConfig 文件的路径。</p>
+</td>
+</tr>
+<tr><td><code>acceptContentTypes</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   acceptContentTypes defines the Accept header sent by clients when connecting to a server, overriding the
+default value of 'application/json'. This field will control all connections to the server used by a particular client.
+   -->
+   <p>
+   <code>acceptContentTypes</code> 定义的是客户端与服务器建立连接时要发送的 Accept 头部，
+   这里的设置值会覆盖默认值 "application/json"。此字段会影响某特定客户端与服务器的所有连接。
+   </p>
+</td>
+</tr>
+<tr><td><code>contentType</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   contentType is the content type used when sending data to the server from this client.
+   -->
+   <p>
+   <code>contentType</code> 包含的是此客户端向服务器发送数据时使用的内容类型（Content Type）。
+   </p>
+</td>
+</tr>
+<tr><td><code>qps</code> <B><!--[Required]-->[必需]</B><br/>
+<code>float32</code>
+</td>
+<td>
+   <!--
+   qps controls the number of queries per second allowed for this connection.
+   -->
+   <p><code>qps</code> 控制此连接允许的每秒查询次数。</p>
+</td>
+</tr>
+<tr><td><code>burst</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   burst allows extra queries to accumulate when a client is exceeding its rate.
+   -->
+   <p><code>burst</code> 允许在客户端超出其速率限制时可以累积的额外查询个数。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `DebuggingConfiguration`     {#DebuggingConfiguration}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerConfiguration)
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
+
+<!--
+DebuggingConfiguration holds configuration for Debugging related features.
+-->
+<p>DebuggingConfiguration 保存与调试功能相关的配置。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>enableProfiling</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   enableProfiling enables profiling via web interface host:port/debug/pprof/
+   -->
+   <p>此字段允许通过 Web 接口 host:port/debug/pprof/ 执行性能分析。</p>
+</td>
+</tr>
+<tr><td><code>enableContentionProfiling</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   enableContentionProfiling enables lock contention profiling, if
+enableProfiling is true.
+   -->
+   <p>此字段在 <code>enableProfiling</code> 为 true 时允许执行锁竞争分析。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `FormatOptions`     {#FormatOptions}
+
+<!--
+**Appears in:**
+-->
+
+<!--
+FormatOptions contains options for the different logging formats.
+-->
+<p>FormatOptions 中包含不同日志格式的配置选项。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>json</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#JSONOptions"><code>JSONOptions</code></a>
+</td>
+<td>
+   <!--
+   [Experimental] JSON contains options for logging format &quot;json&quot;.
+   -->
+   <p>[实验特性] <code>json</code> 字段包含为 &quot;json&quot; 日志格式提供的配置选项。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `JSONOptions`     {#JSONOptions}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [FormatOptions](#FormatOptions)
+
+<!--
+JSONOptions contains options for logging format &quot;json&quot;.
+-->
+<p>JSONOptions 包含为 &quot;json&quot; 日志格式所设置的配置选项。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>splitStream</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   [Experimental] SplitStream redirects error messages to stderr while
+info messages go to stdout, with buffering. The default is to write
+both to stdout, without buffering.
+   -->
+   <p>[实验特性] 此字段将错误信息重定向到标准错误输出（stderr），
+   将提示消息重定向到标准输出（stdout），并且支持缓存。
+   默认配置为将二者都输出到标准输出（stdout），且不提供缓存。</p>
+</td>
+</tr>
+<tr><td><code>infoBufferSize</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/api/resource#QuantityValue"><code>k8s.io/apimachinery/pkg/api/resource.QuantityValue</code></a>
+</td>
+<td>
+   <!--
+   [Experimental] InfoBufferSize sets the size of the info stream when
+using split streams. The default is zero, which disables buffering.
+   -->
+   <p>
+   [实验特性] <code>infoBufferSize</code> 用来在分离数据流场景是设置提示信息数据流的大小。
+   默认值为 0，意味着禁止缓存。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `LeaderElectionConfiguration`     {#LeaderElectionConfiguration}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta2-KubeSchedulerConfiguration)
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerConfiguration)
+
+<!--
+LeaderElectionConfiguration defines the configuration of leader election
+clients for components that can run with leader election enabled.
+-->
+<p>
+LeaderElectionConfiguration 为能够支持领导者选举的组件定义其领导者选举客户端的配置。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>leaderElect</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   leaderElect enables a leader election client to gain leadership
+before executing the main loop. Enable this when running replicated
+components for high availability.
+   -->
+   <p>
+   <code>leaderElect</code> 允许领导者选举客户端在进入主循环执行之前先获得领导者角色。
+   运行多副本组件时启用此功能有助于提高可用性。
+   </p>
+</td>
+</tr>
+<tr><td><code>leaseDuration</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--
+   leaseDuration is the duration that non-leader candidates will wait
+after observing a leadership renewal until attempting to acquire
+leadership of a led but unrenewed leader slot. This is effectively the
+maximum duration that a leader can be stopped before it is replaced
+by another candidate. This is only applicable if leader election is
+enabled.
+   -->
+   <p>
+   <code>leaseDuration</code> 是非领导角色候选者在观察到需要领导席位更新时要等待的时间；
+   只有经过所设置时长才可以尝试去获得一个仍处于领导状态但需要被刷新的席位。
+   这里的设置值本质上意味着某个领导者在被另一个候选者替换掉之前可以停止运行的最长时长。
+   只有当启用了领导者选举时此字段有意义。
+   </p>
+</td>
+</tr>
+<tr><td><code>renewDeadline</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--
+   renewDeadline is the interval between attempts by the acting master to
+renew a leadership slot before it stops leading. This must be less
+than or equal to the lease duration. This is only applicable if leader
+election is enabled.
+   -->
+   <p>
+   <code>renewDeadline</code> 设置的是当前领导者在停止扮演领导角色之前需要刷新领导状态的时间间隔。
+   此值必须小于或等于租约期限的长度。只有到启用了领导者选举时此字段才有意义。
+   </p>
+</td>
+</tr>
+<tr><td><code>retryPeriod</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--
+   retryPeriod is the duration the clients should wait between attempting
+acquisition and renewal of a leadership. This is only applicable if
+leader election is enabled.
+   -->
+   <p>
+   <code>retryPeriod</code> 是客户端在连续两次尝试获得或者刷新领导状态之间需要等待的时长。
+   只有当启用了领导者选举时此字段才有意义。
+   </p>
+</td>
+</tr>
+<tr><td><code>resourceLock</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   resourceLock indicates the resource object type that will be used to lock
+during leader election cycles.
+   -->
+   <p>此字段给出在领导者选举期间要作为锁来使用的资源对象类型。</p>
+</td>
+</tr>
+<tr><td><code>resourceName</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   resourceName indicates the name of resource object that will be used to lock
+during leader election cycles.
+   -->
+   <p>此字段给出在领导者选举期间要作为锁来使用的资源对象名称。</p>
+</td>
+</tr>
+<tr><td><code>resourceNamespace</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   resourceName indicates the namespace of resource object that will be used to lock
+during leader election cycles.
+   -->
+   <p>此字段给出在领导者选举期间要作为锁来使用的资源对象所在名字空间。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `LoggingConfiguration`     {#LoggingConfiguration}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
+
+<!--
+LoggingConfiguration contains logging options
+Refer <a href="https://github.com/kubernetes/component-base/blob/master/logs/options.go">Logs Options</a> for more information.
+-->
+<p>
+LoggingConfiguration 包含日志选项。
+参考 [Logs Options](https://github.com/kubernetes/component-base/blob/master/logs/options.go) 以了解更多信息。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>format</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+<!--
+Format Flag specifies the structure of log messages.
+default value of format is <code>text</code>
+-->
+   <p><code>format</code> 设置日志消息的结构。默认的格式取值为 <code>text</code>。</p>
+</td>
+</tr>
+<tr><td><code>flushFrequency</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/time#Duration"><code>time.Duration</code></a>
+</td>
+<td>
+<!--
+Maximum number of nanoseconds (i.e. 1s = 1000000000) between log
+flushes.  Ignored if the selected logging backend writes log
+messages without buffering.
+-->
+   <p>对日志进行清洗的最大间隔纳秒数（例如，1s = 1000000000）。
+   如果所选的日志后端在写入日志消息时不提供缓存，则此配置会被忽略。</p>
+</td>
+</tr>
+<tr><td><code>verbosity</code> <B><!--[Required]-->[必需]</B><br/>
+<code>uint32</code>
+</td>
+<td>
+<!--
+Verbosity is the threshold that determines which log messages are
+logged. Default is zero which logs only the most important
+messages. Higher values enable additional messages. Error messages
+are always logged.
+-->
+   <p><code>verbosity</code> 用来确定日志消息记录的详细程度阈值。
+   默认值为 0，意味着仅记录最重要的消息。
+   数值越大，额外的消息越多。错误消息总是被记录下来。</p>
+</td>
+</tr>
+<tr><td><code>vmodule</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#VModuleConfiguration"><code>VModuleConfiguration</code></a>
+</td>
+<td>
+<!--
+VModule overrides the verbosity threshold for individual files.
+Only supported for &quot;text&quot; log format.
+-->
+   <p><code>vmodule</code> 会在单个文件层面重载 verbosity 阈值的设置。
+   这一选项仅支持 &quot;text&quot; 日志格式。</p>
+</td>
+</tr>
+<tr><td><code>options</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#FormatOptions"><code>FormatOptions</code></a>
+</td>
+<td>
+<!--
+[Experimental] Options holds additional parameters that are specific
+to the different logging formats. Only the options for the selected
+format get used, but all of them get validated.
+-->
+   <p>[实验特性] <code>options</code> 中包含特定于不同日志格式的配置参数。
+   只有针对所选格式的选项会被使用，但是合法性检查时会查看所有选项配置。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `VModuleConfiguration`     {#VModuleConfiguration}
+
+<!--
+(Alias of `[]k8s.io/component-base/config/v1alpha1.VModuleItem`)
+
+**Appears in:**
+-->
+
+（`[]k8s.io/component-base/config/v1alpha1.VModuleItem` 的别名)
+
+**出现在：**
+
+- [LoggingConfiguration](#LoggingConfiguration)
+
+<!--
+VModuleConfiguration is a collection of individual file names or patterns
+and the corresponding verbosity threshold.
+-->
+<p>VModuleConfiguration 是一组文件名（通配符）及其对应的日志详尽程度阈值。</p>
+
+## `DefaultPreemptionArgs`     {#kubescheduler-config-k8s-io-v1beta3-DefaultPreemptionArgs}
+
+<!--
+DefaultPreemptionArgs holds arguments used to configure the
+DefaultPreemption plugin.
+-->
+<p>DefaultPreemptionArgs 包含用来配置 DefaultPreemption 插件的参数。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta3</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>DefaultPreemptionArgs</code></td></tr>
+
+<tr><td><code>minCandidateNodesPercentage</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   MinCandidateNodesPercentage is the minimum number of candidates to
+shortlist when dry running preemption as a percentage of number of nodes.
+Must be in the range [0, 100]. Defaults to 10% of the cluster size if
+unspecified.
+   -->
+   <p>此字段为试运行抢占时 shortlist 中候选节点数的下限，数值为节点数的百分比。
+   字段值必须介于 [0, 100] 之间。未指定时默认值为整个集群规模的 10%。</p>
+</td>
+</tr>
+<tr><td><code>minCandidateNodesAbsolute</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   MinCandidateNodesAbsolute is the absolute minimum number of candidates to
+shortlist. The likely number of candidates enumerated for dry running
+preemption is given by the formula:
+numCandidates = max(numNodes &lowast; minCandidateNodesPercentage, minCandidateNodesAbsolute)
+We say "likely" because there are other factors such as PDB violations
+that play a role in the number of candidates shortlisted. Must be at least
+0 nodes. Defaults to 100 nodes if unspecified.
+   -->
+   <p>此字段设置 shortlist 中候选节点的绝对下限。
+   用于试运行抢占而列举的候选节点个数近似于通过下面的公式计算的：<br/>
+   候选节点数 = max(节点数 * minCandidateNodesPercentage, minCandidateNodesAbsolute)
+   之所以说是&quot;近似于&quot;是因为存在一些类似于 PDB 违例这种因素，
+   会影响到进入 shortlist中候选节点的个数。
+   取值至少为 0 节点。若未设置默认为 100 节点。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `InterPodAffinityArgs`     {#kubescheduler-config-k8s-io-v1beta3-InterPodAffinityArgs}
+
+<!--
+InterPodAffinityArgs holds arguments used to configure the InterPodAffinity plugin.
+-->
+<p>InterPodAffinityArgs 包含用来配置 InterPodAffinity 插件的参数。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta3</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>InterPodAffinityArgs</code></td></tr>
+
+<tr><td><code>hardPodAffinityWeight</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   HardPodAffinityWeight is the scoring weight for existing pods with a
+matching hard affinity to the incoming pod.
+   -->
+   <p>此字段是一个计分权重值。针对新增的 Pod，要对现存的、
+   带有与新 Pod 匹配的硬性亲和性设置的 Pods 计算亲和性得分。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `KubeSchedulerConfiguration`     {#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerConfiguration}
+
+<!--
+KubeSchedulerConfiguration configures a scheduler
+-->
+<p>KubeSchedulerConfiguration 用来配置调度器。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta3</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>KubeSchedulerConfiguration</code></td></tr>
+
+<tr><td><code>parallelism</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   Parallelism defines the amount of parallelism in algorithms for scheduling a Pods. Must be greater than 0. Defaults to 16
+   -->
+   <p>
+   此字段设置为调度 Pod 而执行算法时的并发度。此值必须大于 0。默认值为 16。
+   </p>
+</td>
+</tr>
+<tr><td><code>leaderElection</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#LeaderElectionConfiguration"><code>LeaderElectionConfiguration</code></a>
+</td>
+<td>
+   <!--
+   LeaderElection defines the configuration of leader election client.
+   -->
+   <p>此字段用来定义领导者选举客户端的配置。</p>
+</td>
+</tr>
+<tr><td><code>clientConnection</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#ClientConnectionConfiguration"><code>ClientConnectionConfiguration</code></a>
+</td>
+<td>
+   <!--
+   ClientConnection specifies the kubeconfig file and client connection
+settings for the proxy server to use when communicating with the apiserver.
+   -->
+   <p>此字段为与 API 服务器通信时使用的代理服务器设置 kubeconfig 文件和客户端连接配置。</p>
+</td>
+</tr>
+<tr><td><code>DebuggingConfiguration</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#DebuggingConfiguration"><code>DebuggingConfiguration</code></a>
+</td>
+<!--
+(Members of <code>DebuggingConfiguration</code> are embedded into this type.)
+-->
+<td>（<code>DebuggingConfiguration</code> 的成员被内嵌到此类型中）
+   <!--
+   DebuggingConfiguration holds configuration for Debugging related features
+   TODO: We might wanna make this a substruct like Debugging componentbaseconfigv1alpha1.DebuggingConfiguration
+   -->
+   <p>此字段设置与调试相关功能特性的配置。
+   TODO：我们可能想把它做成一个子结构，像调试 component-base/config/v1alpha1.DebuggingConfiguration 一样。</p>
+</td>
+</tr>
+<tr><td><code>percentageOfNodesToScore</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   PercentageOfNodesToScore is the percentage of all nodes that once found feasible
+for running a pod, the scheduler stops its search for more feasible nodes in
+the cluster. This helps improve scheduler's performance. Scheduler always tries to find
+at least "minFeasibleNodesToFind" feasible nodes no matter what the value of this flag is.
+Example: if the cluster size is 500 nodes and the value of this flag is 30,
+then scheduler stops finding further feasible nodes once it finds 150 feasible ones.
+When the value is 0, default percentage (5%--50% based on the size of the cluster) of the
+nodes will be scored.
+   -->
+   <p>
+   此字段为所有节点的百分比，一旦调度器找到所设置比例的、能够运行 Pod 的节点，
+   则停止在集群中继续寻找更合适的节点。这一配置有助于提高调度器的性能。
+   调度器总会尝试寻找至少 &quot;minFeasibleNodesToFind&quot; 个可行节点，无论此字段的取值如何。
+   例如：当集群规模为 500 个节点，而此字段的取值为 30，
+   则调度器在找到 150 个合适的节点后会停止继续寻找合适的节点。当此值为 0 时，
+   调度器会使用默认节点数百分比（基于集群规模确定的值，在 5% 到 50% 之间）来执行打分操作。
+   </p>
+</td>
+</tr>
+<tr><td><code>podInitialBackoffSeconds</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int64</code>
+</td>
+<td>
+   <!--
+   PodInitialBackoffSeconds is the initial backoff for unschedulable pods.
+If specified, it must be greater than 0. If this value is null, the default value (1s)
+will be used.
+   -->
+   <p>此字段设置不可调度 Pod 的初始回退秒数。如果设置了此字段，其取值必须大于零。
+   若此值为 null，则使用默认值（1s）。</p>
+</td>
+</tr>
+<tr><td><code>podMaxBackoffSeconds</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int64</code>
+</td>
+<td>
+   <!--
+   PodMaxBackoffSeconds is the max backoff for unschedulable pods.
+If specified, it must be greater than podInitialBackoffSeconds. If this value is null,
+the default value (10s) will be used.
+   -->
+   <p>此字段设置不可调度的 Pod 的最大回退秒数。
+   如果设置了此字段，则其值必须大于 podInitialBackoffSeconds 字段值。
+   如果此值设置为 null，则使用默认值（10s）。</p>
+</td>
+</tr>
+<tr><td><code>profiles</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerProfile"><code>[]KubeSchedulerProfile</code></a>
+</td>
+<td>
+   <!--
+   Profiles are scheduling profiles that kube-scheduler supports. Pods can
+choose to be scheduled under a particular profile by setting its associated
+scheduler name. Pods that don't specify any scheduler name are scheduled
+with the "default-scheduler" profile, if present here.
+   -->
+   <p>此字段为 kube-scheduler 所支持的方案（profiles）。
+   Pod 可以通过设置其对应的调度器名称来选择使用特定的方案。
+   未指定调度器名称的 Pod 会使用&quot;default-scheduler&quot;方案来调度，如果存在的话。
+   </p>
+</td>
+</tr>
+<tr><td><code>extenders</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-Extender"><code>[]Extender</code></a>
+</td>
+<td>
+   <!--
+   Extenders are the list of scheduler extenders, each holding the values of how to communicate
+with the extender. These extenders are shared by all scheduler profiles.
+   -->
+   <p>此字段为调度器扩展模块（Extender）的列表，
+   每个元素包含如何与某扩展模块通信的配置信息。
+   所有调度器模仿会共享此扩展模块列表。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `NodeAffinityArgs`     {#kubescheduler-config-k8s-io-v1beta3-NodeAffinityArgs}
+
+<!--
+NodeAffinityArgs holds arguments to configure the NodeAffinity plugin.
+-->
+<p>NodeAffinityArgs 中包含配置 NodeAffinity 插件的参数。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta3</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>NodeAffinityArgs</code></td></tr>
+
+<tr><td><code>addedAffinity</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#nodeaffinity-v1-core"><code>core/v1.NodeAffinity</code></a>
+</td>
+<td>
+   <!--
+   AddedAffinity is applied to all Pods additionally to the NodeAffinity
+specified in the PodSpec. That is, Nodes need to satisfy AddedAffinity
+AND .spec.NodeAffinity. AddedAffinity is empty by default (all Nodes
+match).
+When AddedAffinity is used, some Pods with affinity requirements that match
+a specific Node (such as Daemonset Pods) might remain unschedulable.
+   -->
+   <p>
+   <code>addedAffinity</code> 会作为附加的亲和性属性添加到所有 Pod 的规约中指定的 NodeAffinity 中。
+   换言之，节点需要同时满足 addedAffinity 和 .spec.nodeAffinity。
+   默认情况下，addedAffinity 为空（与所有节点匹配）。使用了 addedAffinity 时，
+   某些带有已经能够与某特定节点匹配的亲和性需求的 Pod （例如 DaemonSet Pod）可能会继续呈现不可调度状态。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `NodeResourcesBalancedAllocationArgs`     {#kubescheduler-config-k8s-io-v1beta3-NodeResourcesBalancedAllocationArgs}
+
+<!--
+NodeResourcesBalancedAllocationArgs holds arguments used to configure NodeResourcesBalancedAllocation plugin.
+-->
+<p>NodeResourcesBalancedAllocationArgs 包含用来配置 NodeResourcesBalancedAllocation 插件的参数。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta3</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>NodeResourcesBalancedAllocationArgs</code></td></tr>
+
+<tr><td><code>resources</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-ResourceSpec"><code>[]ResourceSpec</code></a>
+</td>
+<td>
+   <!--
+   Resources to be managed, the default is "cpu" and "memory" if not specified.
+   -->
+   <p>要管理的资源；如果未设置，则默认值为 &quot;cpu&quot; 和 &quot;memory&quot;。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `NodeResourcesFitArgs`     {#kubescheduler-config-k8s-io-v1beta3-NodeResourcesFitArgs}
+
+<!--
+NodeResourcesFitArgs holds arguments used to configure the NodeResourcesFit plugin.
+-->
+<p>NodeResourcesFitArgs 包含用来配置 NodeResourcesFit 插件的参数。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta3</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>NodeResourcesFitArgs</code></td></tr>
+
+<tr><td><code>ignoredResources</code> <B><!--[Required]-->[必需]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--
+   IgnoredResources is the list of resources that NodeResources fit filter
+should ignore. This doesn't apply to scoring.
+   -->
+   <p>此字段为 NodeResources 匹配过滤器要忽略的资源列表。此列表不影响节点打分。</p>
+</td>
+</tr>
+<tr><td><code>ignoredResourceGroups</code> <B><!--[Required]-->[必需]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--
+   IgnoredResourceGroups defines the list of resource groups that NodeResources fit filter should ignore.
+e.g. if group is ["example.com"], it will ignore all resource names that begin
+with "example.com", such as "example.com/aaa" and "example.com/bbb".
+A resource group name can't contain '/'. This doesn't apply to scoring.
+   -->
+   <p>此字段定义 NodeResources 匹配过滤器要忽略的资源组列表。
+   例如，如果配置值为 [&quot;example.com&quot;]，
+   则以 &quot;example.com&quot; 开头的资源名
+   （如&quot;example.com/aaa&quot; 和 &quot;example.com/bbb&quot;）都会被忽略。
+   资源组名称中不可以包含 '/'。此设置不影响节点的打分。</p>
+</td>
+</tr>
+<tr><td><code>scoringStrategy</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-ScoringStrategy"><code>ScoringStrategy</code></a>
+</td>
+<td>
+   <!--
+   ScoringStrategy selects the node resource scoring strategy.
+The default strategy is LeastAllocated with an equal "cpu" and "memory" weight.
+   -->
+   <p>此字段用来选择节点资源打分策略。默认的策略为 LeastAllocated，
+   且 &quot;cpu&quot; 和 &quot;memory&quot; 的权重相同。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `PodTopologySpreadArgs`     {#kubescheduler-config-k8s-io-v1beta3-PodTopologySpreadArgs}
+
+<!--
+PodTopologySpreadArgs holds arguments used to configure the PodTopologySpread plugin.
+-->
+<p>PodTopologySpreadArgs 包含用来配置 PodTopologySpread 插件的参数。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta3</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>PodTopologySpreadArgs</code></td></tr>
+
+<tr><td><code>defaultConstraints</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#topologyspreadconstraint-v1-core"><code>[]core/v1.TopologySpreadConstraint</code></a>
+</td>
+<td>
+   <!--
+   DefaultConstraints defines topology spread constraints to be applied to
+Pods that don't define any in `pod.spec.topologySpreadConstraints`.
+`.defaultConstraints[&lowast;].labelSelectors` must be empty, as they are
+deduced from the Pod's membership to Services, ReplicationControllers,
+ReplicaSets or StatefulSets.
+When not empty, .defaultingType must be "List".
+   -->
+   <p>此字段针对未定义 <code>.spec.topologySpreadConstraints</code> 的 Pod，
+   为其提供拓扑分布约束。<code>.defaultConstraints[&lowast;].labelSelectors</code>必须为空，
+   因为这一信息要从 Pod 所属的 Service、ReplicationController、ReplicaSet 或 StatefulSet 来推导。
+   此字段不为空时，<code>.defaultingType</code> 必须为 &quot;List&quot;。</p>
+</td>
+</tr>
+<tr><td><code>defaultingType</code><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PodTopologySpreadConstraintsDefaulting"><code>PodTopologySpreadConstraintsDefaulting</code></a>
+</td>
+<td>
+   <!--
+   DefaultingType determines how .defaultConstraints are deduced. Can be one
+of "System" or "List".
+- "System": Use kubernetes defined constraints that spread Pods among
+  Nodes and Zones.
+- "List": Use constraints defined in .defaultConstraints.
+Defaults to &quot;System&quot;.
+   -->
+   <p><code>defaultingType</code> 决定如何推导 <code>.defaultConstraints</code>。
+   可选值为 &quot;System&quot; 或 &quot;List&quot;。</p>
+   <ul>
+     <li>&quot;System&quot;：使用 Kubernetes 定义的约束，将 Pod 分布到不同节点和可用区；</li>
+     <li>&quot;List&quot;：使用 <code>.defaultConstraints</code> 中定义的约束。</li>
+   </ul>
+   <p>默认值为 "System"。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `VolumeBindingArgs`     {#kubescheduler-config-k8s-io-v1beta3-VolumeBindingArgs}
+
+<!--
+VolumeBindingArgs holds arguments used to configure the VolumeBinding plugin.
+-->
+<p>VolumeBindingArgs 包含用来配置 VolumeBinding 插件的参数。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta3</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>VolumeBindingArgs</code></td></tr>
+
+<tr><td><code>bindTimeoutSeconds</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int64</code>
+</td>
+<td>
+   <!--
+   BindTimeoutSeconds is the timeout in seconds in volume binding operation.
+Value must be non-negative integer. The value zero indicates no waiting.
+If this value is nil, the default value (600) will be used.
+   -->
+   <p>此字段设置卷绑定操作的超时秒数。字段值必须是非负数。
+   取值为 0 意味着不等待。如果此值为 null，则使用默认值（600）。</p>
+</td>
+</tr>
+<tr><td><code>shape</code><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-UtilizationShapePoint"><code>[]UtilizationShapePoint</code></a>
+</td>
+<td>
+   <!--
+   Shape specifies the points defining the score function shape, which is
+used to score nodes based on the utilization of statically provisioned
+PVs. The utilization is calculated by dividing the total requested
+storage of the pod by the total capacity of feasible PVs on each node.
+Each point contains utilization (ranges from 0 to 100) and its
+associated score (ranges from 0 to 10). You can turn the priority by
+specifying different scores for different utilization numbers.
+The default shape points are:
+1) 0 for 0 utilization
+2) 10 for 100 utilization
+All points must be sorted in increasing order by utilization.
+   -->
+   <p><code>shape</code> 用来设置打分函数曲线所使用的计分点，
+   这些计分点用来基于静态制备的 PV 卷的利用率为节点打分。
+   卷的利用率是计算得来的，
+   将 Pod 所请求的总的存储空间大小除以每个节点上可用的总的卷容量。
+   每个计分点包含利用率（范围从 0 到 100）和其对应的得分（范围从 0 到 10）。
+   你可以通过为不同的使用率值设置不同的得分来反转优先级：</p>
+   <p>默认的曲线计分点为：</p>
+   <ol>
+     <li>利用率为 0 时得分为 0；</li>
+     <li>利用率为 100 时得分为 10。</li>
+   </ol>
+   <p>所有计分点必须按利用率值的升序来排序。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Extender`     {#kubescheduler-config-k8s-io-v1beta3-Extender}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerConfiguration)
+
+<!--
+Extender holds the parameters used to communicate with the extender. If a verb is unspecified/empty,
+it is assumed that the extender chose not to provide that extension.
+-->
+<p>Extender 包含与扩展模块（Extender）通信所用的参数。
+如果未指定 verb 或者 verb 为空，则假定对应的扩展模块选择不提供该扩展功能。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>urlPrefix</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   URLPrefix at which the extender is available
+   -->
+   <p>用来访问扩展模块的 URL 前缀。</p>
+</td>
+</tr>
+<tr><td><code>filterVerb</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Verb for the filter call, empty if not supported. This verb is appended to the URLPrefix when issuing the filter call to extender.
+   -->
+   <p>filter 调用所使用的动词，如果不支持过滤操作则为空。
+   此动词会在向扩展模块发送 filter 调用时追加到 urlPrefix 后面。</p>
+</td>
+</tr>
+<tr><td><code>preemptVerb</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Verb for the preempt call, empty if not supported. This verb is appended to the URLPrefix when issuing the preempt call to extender.
+   -->
+   <p>preempt 调用所使用的动词，如果不支持过滤操作则为空。
+   此动词会在向扩展模块发送 preempt 调用时追加到 urlPrefix 后面。</p>
+</td>
+</tr>
+<tr><td><code>prioritizeVerb</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Verb for the prioritize call, empty if not supported. This verb is appended to the URLPrefix when issuing the prioritize call to extender.
+   -->
+   <p>prioritize 调用所使用的动词，如果不支持过滤操作则为空。
+   此动词会在向扩展模块发送 prioritize 调用时追加到 urlPrefix 后面。</p>
+</td>
+</tr>
+<tr><td><code>weight</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int64</code>
+</td>
+<td>
+   <!--
+   The numeric multiplier for the node scores that the prioritize call generates.
+The weight should be a positive integer
+   -->
+   <p>针对 prioritize 调用所生成的节点分数要使用的数值系数。
+   weight 值必须是正整数。</p>
+</td>
+</tr>
+<tr><td><code>bindVerb</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Verb for the bind call, empty if not supported. This verb is appended to the URLPrefix when issuing the bind call to extender.
+If this method is implemented by the extender, it is the extender's responsibility to bind the pod to apiserver. Only one extender
+can implement this function.
+   -->
+   <p>bind 调用所使用的动词，如果不支持过滤操作则为空。
+   此动词会在向扩展模块发送 bind 调用时追加到 urlPrefix 后面。
+   如果扩展模块实现了此方法，扩展模块要负责将 Pod 绑定到 API 服务器。
+   只有一个扩展模块可以实现此函数。</p>
+</td>
+</tr>
+<tr><td><code>enableHTTPS</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   EnableHTTPS specifies whether https should be used to communicate with the extender
+   -->
+   <p>此字段设置是否需要使用 HTTPS 来与扩展模块通信。</p>
+</td>
+</tr>
+<tr><td><code>tlsConfig</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-ExtenderTLSConfig"><code>ExtenderTLSConfig</code></a>
+</td>
+<td>
+   <!--
+   TLSConfig specifies the transport layer security config
+   -->
+   <p>此字段设置传输层安全性（TLS）配置。</p>
+</td>
+</tr>
+<tr><td><code>httpTimeout</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--
+   HTTPTimeout specifies the timeout duration for a call to the extender. Filter timeout fails the scheduling of the pod. Prioritize
+timeout is ignored, k8s/other extenders priorities are used to select the node.
+   -->
+   <p>此字段给出扩展模块功能调用的超时值。filter 操作超时会导致 Pod 无法被调度。
+   prioritize 操作超时会被忽略，
+   Kubernetes 或者其他扩展模块所给出的优先级值会被用来选择节点。</p>
+</td>
+</tr>
+<tr><td><code>nodeCacheCapable</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   NodeCacheCapable specifies that the extender is capable of caching node information,
+so the scheduler should only send minimal information about the eligible nodes
+assuming that the extender already cached full details of all nodes in the cluster
+   -->
+   <p>此字段指示扩展模块可以缓存节点信息，从而调度器应该发送关于可选节点的最少信息，
+   假定扩展模块已经缓存了集群中所有节点的全部详细信息。</p>
+</td>
+</tr>
+<tr><td><code>managedResources</code><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-ExtenderManagedResource"><code>[]ExtenderManagedResource</code></a>
+</td>
+<td>
+   <!--
+   ManagedResources is a list of extended resources that are managed by
+this extender.
+- A pod will be sent to the extender on the Filter, Prioritize and Bind
+  (if the extender is the binder) phases iff the pod requests at least
+  one of the extended resources in this list. If empty or unspecified,
+  all pods will be sent to this extender.
+- If IgnoredByScheduler is set to true for a resource, kube-scheduler
+  will skip checking the resource in predicates.
+   -->
+   <p><code>managedResources</code> 是一个由此扩展模块所管理的扩展资源的列表。</p>
+   <ul>
+     <li>如果某 Pod 请求了此列表中的至少一个扩展资源，则 Pod 会在 filter、
+      prioritize 和 bind （如果扩展模块可以执行绑定操作）阶段被发送到该扩展模块。</li>
+     <li>如果某资源上设置了 <code>ignoredByScheduler</code> 为 true，则 kube-scheduler
+      会在断言阶段略过对该资源的检查。</li>
+   </ul>
+</td>
+</tr>
+<tr><td><code>ignorable</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   Ignorable specifies if the extender is ignorable, i.e. scheduling should not
+fail when the extender returns an error or is not reachable.
+   -->
+   <p>此字段用来设置扩展模块是否是可忽略的。
+   换言之，当扩展模块返回错误或者完全不可达时，调度操作不应失败。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ExtenderManagedResource`     {#kubescheduler-config-k8s-io-v1beta3-ExtenderManagedResource}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [Extender](#kubescheduler-config-k8s-io-v1beta3-Extender)
+
+<!--
+ExtenderManagedResource describes the arguments of extended resources
+managed by an extender.
+-->
+<p>ExtenderManagedResource 描述某扩展模块所管理的扩展资源的参数。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>name</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Name is the extended resource name.
+   -->
+   <p>扩展资源的名称。</p>
+</td>
+</tr>
+<tr><td><code>ignoredByScheduler</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   IgnoredByScheduler indicates whether kube-scheduler should ignore this
+resource when applying predicates.
+   -->
+   <p>此字段标明 kube-scheduler 是否应在应用断言时忽略此资源。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ExtenderTLSConfig`     {#kubescheduler-config-k8s-io-v1beta3-ExtenderTLSConfig}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [Extender](#kubescheduler-config-k8s-io-v1beta3-Extender)
+
+<!--
+ExtenderTLSConfig contains settings to enable TLS with extender
+-->
+<p>ExtenderTLSConfig 包含启用与扩展模块间 TLS 传输所需的配置参数。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>insecure</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   Server should be accessed without verifying the TLS certificate. For testing only.
+   -->
+   <p>访问服务器时不需要检查 TLS 证书。此配置仅针对测试用途。</p>
+</td>
+</tr>
+<tr><td><code>serverName</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   ServerName is passed to the server for SNI and is used in the client to check server
+certificates against. If ServerName is empty, the hostname used to contact the
+server is used.
+   -->
+   <p><code>serverName</code> 会被发送到服务器端，作为 SNI 标志；
+   客户端会使用此设置来检查服务器证书。
+   如果 <code>serverName</code> 为空，则会使用联系服务器时所用的主机名。
+   </p>
+</td>
+</tr>
+<tr><td><code>certFile</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Server requires TLS client certificate authentication
+   -->
+   <p>服务器端所要求的 TLS 客户端证书认证。</p>
+</td>
+</tr>
+<tr><td><code>keyFile</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Server requires TLS client certificate authentication
+   -->
+   <p>服务器端所要求的 TLS 客户端秘钥认证。</p>
+</td>
+</tr>
+<tr><td><code>caFile</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Trusted root certificates for server
+   -->
+   <p>服务器端被信任的根证书。</p>
+</td>
+</tr>
+<tr><td><code>certData</code> <B><!--[Required]-->[必需]</B><br/>
+<code>[]byte</code>
+</td>
+<td>
+   <!--
+   CertData holds PEM-encoded bytes (typically read from a client certificate file).
+CertData takes precedence over CertFile
+   -->
+   <p><code>certData</code> 包含 PEM 编码的字节流（通常从某客户端证书文件读入）。
+   此字段优先级高于 certFile 字段。</p>
+</td>
+</tr>
+<tr><td><code>keyData</code> <B><!--[Required]-->[必需]</B><br/>
+<code>[]byte</code>
+</td>
+<td>
+   <!--
+   KeyData holds PEM-encoded bytes (typically read from a client certificate key file).
+KeyData takes precedence over KeyFile
+   -->
+   <p><code>keyData</code> 包含 PEM 编码的字节流（通常从某客户端证书秘钥文件读入）。
+   此字段优先级高于 keyFile 字段。</p>
+</td>
+</tr>
+<tr><td><code>caData</code> <B><!--[Required]-->[必需]</B><br/>
+<code>[]byte</code>
+</td>
+<td>
+   <!--
+   CAData holds PEM-encoded bytes (typically read from a root certificates bundle).
+CAData takes precedence over CAFile
+   -->
+   <p><code>caData</code> 包含 PEM 编码的字节流（通常从某根证书包文件读入）。
+   此字段优先级高于 caFile 字段。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `KubeSchedulerProfile`     {#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerProfile}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerConfiguration)
+
+<!--
+KubeSchedulerProfile is a scheduling profile.
+-->
+<p>KubeSchedulerProfile 是一个调度方案。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>schedulerName</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   schedulername is the name of the scheduler associated to this profile.
+if schedulername matches with the pod's "spec.schedulername", then the pod
+is scheduled with this profile.
+   -->
+   <p><code>schedulerName</code> 是与此调度方案相关联的调度器的名称。
+   如果 <code>schedulerName</code> 与 Pod 的 <code>spec.schedulerName</code>匹配，
+   则该 Pod 会使用此方案来调度。</p>
+</td>
+</tr>
+<tr><td><code>plugins</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-Plugins"><code>Plugins</code></a>
+</td>
+<td>
+   <!--
+   Plugins specify the set of plugins that should be enabled or disabled.
+Enabled plugins are the ones that should be enabled in addition to the
+default plugins. Disabled plugins are any of the default plugins that
+should be disabled.
+When no enabled or disabled plugin is specified for an extension point,
+default plugins for that extension point will be used if there is any.
+If a QueueSort plugin is specified, the same QueueSort Plugin and
+PluginConfig must be specified for all profiles.
+   -->
+   <p><code>plugins</code> 设置一组应该被启用或禁止的插件。
+   被启用的插件是指除了默认插件之外需要被启用的插件。
+   被禁止的插件是指需要被禁用的默认插件。</p>
+   <p>如果针对某个扩展点没有设置被启用或被禁止的插件，
+   则使用该扩展点的默认插件（如果有的话）。如果设置了 QueueSort 插件，
+   则同一个 QueueSort 插件和 <code>pluginConfig</code> 要被设置到所有调度方案之上。
+   </p>
+</td>
+</tr>
+<tr><td><code>pluginConfig</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginConfig"><code>[]PluginConfig</code></a>
+</td>
+<td>
+   <!--
+   PluginConfig is an optional set of custom plugin arguments for each plugin.
+Omitting config args for a plugin is equivalent to using the default config
+for that plugin.
+   -->
+   <p><code>pluginConfig</code> 是为每个插件提供的一组可选的定制插件参数。
+   如果忽略了插件的配置参数，则意味着使用该插件的默认配置。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Plugin`     {#kubescheduler-config-k8s-io-v1beta3-Plugin}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [PluginSet](#kubescheduler-config-k8s-io-v1beta3-PluginSet)
+
+<!--
+Plugin specifies a plugin name and its weight when applicable. Weight is used only for Score plugins.
+-->
+<p>Plugin 指定插件的名称及其权重（如果适用的话）。权重仅用于评分（Score）插件。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>name</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Name defines the name of plugin
+   -->
+   <p>插件的名称。</p>
+</td>
+</tr>
+<tr><td><code>weight</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   Weight defines the weight of plugin, only used for Score plugins.
+   -->
+   <p>插件的权重；仅适用于评分（Score）插件。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `PluginConfig`     {#kubescheduler-config-k8s-io-v1beta3-PluginConfig}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeSchedulerProfile](#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerProfile)
+
+<!--
+PluginConfig specifies arguments that should be passed to a plugin at the time of initialization.
+A plugin that is invoked at multiple extension points is initialized once. Args can have arbitrary structure.
+It is up to the plugin to process these Args.
+-->
+<p>PluginConfig 给出初始化阶段要传递给插件的参数。
+在多个扩展点被调用的插件仅会被初始化一次。
+参数可以是任意结构。插件负责处理这里所传的参数。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>name</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Name defines the name of plugin being configured
+   -->
+   <p><code>name</code> 是所配置的插件的名称。</p>
+</td>
+</tr>
+<tr><td><code>args</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/runtime/#RawExtension"><code>k8s.io/apimachinery/pkg/runtime.RawExtension</code></a>
+</td>
+<td>
+   <!--
+   Args defines the arguments passed to the plugins at the time of initialization. Args can have arbitrary structure.
+   -->
+   <p><code>args</code> 定义在初始化阶段要传递给插件的参数。参数可以为任意结构。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `PluginSet`     {#kubescheduler-config-k8s-io-v1beta3-PluginSet}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [Plugins](#kubescheduler-config-k8s-io-v1beta3-Plugins)
+
+<!--
+PluginSet specifies enabled and disabled plugins for an extension point.
+If an array is empty, missing, or nil, default plugins at that extension point will be used.
+-->
+<p>PluginSet 为某扩展点设置要启用或禁用的插件。
+如果数组为空，或者取值为 null，则使用该扩展点的默认插件集合。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>enabled</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-Plugin"><code>[]Plugin</code></a>
+</td>
+<td>
+   <!--
+   Enabled specifies plugins that should be enabled in addition to default plugins.
+If the default plugin is also configured in the scheduler config file, the weight of plugin will
+be overridden accordingly.
+These are called after default plugins and in the same order specified here.
+   -->
+   <p><code>enabled</code> 设置在默认插件之外要启用的插件。
+   如果在调度器的配置文件中也配置了默认插件，则对应插件的权重会被覆盖。
+   此处所设置的插件会在默认插件之后被调用，调用顺序与数组中元素顺序相同。</p>
+</td>
+</tr>
+<tr><td><code>disabled</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-Plugin"><code>[]Plugin</code></a>
+</td>
+<td>
+   <!--
+   Disabled specifies default plugins that should be disabled.
+When all default plugins need to be disabled, an array containing only one "&lowast;" should be provided.
+   -->
+   <p><code>disabled</code> 设置要被禁用的默认插件。
+   如果需要禁用所有的默认插件，应该提供仅包含一个元素 "&lowast;" 的数组。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Plugins`     {#kubescheduler-config-k8s-io-v1beta3-Plugins}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeSchedulerProfile](#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerProfile)
+
+<!--
+Plugins include multiple extension points. When specified, the list of plugins for
+a particular extension point are the only ones enabled. If an extension point is
+omitted from the config, then the default set of plugins is used for that extension point.
+Enabled plugins are called in the order specified here, after default plugins. If they need to
+be invoked before default plugins, default plugins must be disabled and re-enabled here in desired order.
+-->
+<p>Plugins 结构中包含多个扩展点。当此结构被设置时，
+针对特定扩展点所启用的所有插件都在这一列表中。
+如果配置中不包含某个扩展点，则使用该扩展点的默认插件集合。
+被启用的插件的调用顺序与这里指定的顺序相同，都在默认插件之后调用。
+如果它们需要在默认插件之前调用，则需要先行禁止默认插件，
+之后在这里按期望的顺序重新启用。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>queueSort</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   QueueSort is a list of plugins that should be invoked when sorting pods in the scheduling queue.
+   -->
+   <p><code>queueSort</code> 是一个在对调度队列中 Pod 排序时要调用的插件列表。</p>
+</td>
+</tr>
+<tr><td><code>preFilter</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   PreFilter is a list of plugins that should be invoked at "PreFilter" extension point of the scheduling framework.
+   -->
+   <p><code>preFilter</code> 是一个在调度框架中&quot;PreFilter（预过滤）&quot;扩展点上要
+   调用的插件列表。</p>
+</td>
+</tr>
+<tr><td><code>filter</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   Filter is a list of plugins that should be invoked when filtering out nodes that cannot run the Pod.
+   -->
+   <p><code>filter</code> 是一个在需要过滤掉无法运行 Pod 的节点时被调用的插件列表。</p>
+</td>
+</tr>
+<tr><td><code>postFilter</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   PostFilter is a list of plugins that are invoked after filtering phase, but only when no feasible nodes were found for the pod.
+   -->
+   <p><code>postFilter</code> 是一个在过滤阶段结束后会被调用的插件列表；
+   这里的插件只有在找不到合适的节点来运行 Pod 时才会被调用。</p>
+</td>
+</tr>
+<tr><td><code>preScore</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   PreScore is a list of plugins that are invoked before scoring.
+   -->
+   <p><code>preScore</code> 是一个在打分之前要调用的插件列表。</p>
+</td>
+</tr>
+<tr><td><code>score</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   Score is a list of plugins that should be invoked when ranking nodes that have passed the filtering phase.
+   -->
+   <p><code>score</code> 是一个在对已经通过过滤阶段的节点进行排序时调用的插件的列表。</p>
+</td>
+</tr>
+<tr><td><code>reserve</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   Reserve is a list of plugins invoked when reserving/unreserving resources
+after a node is assigned to run the pod.
+   -->
+   <p><code>reserve</code> 是一组在运行 Pod 的节点已被选定后，需要预留或者释放资源时调用的插件的列表。</p>
+</td>
+</tr>
+<tr><td><code>permit</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   Permit is a list of plugins that control binding of a Pod. These plugins can prevent or delay binding of a Pod.
+   -->
+   <p><code>permit</code> 是一个用来控制 Pod 绑定关系的插件列表。
+   这些插件可以禁止或者延迟 Pod 的绑定。</p>
+</td>
+</tr>
+<tr><td><code>preBind</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   PreBind is a list of plugins that should be invoked before a pod is bound.
+   -->
+   <p><code>preBind</code> 是一个在 Pod 被绑定到某节点之前要被调用的插件的列表。</p>
+</td>
+</tr>
+<tr><td><code>bind</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   Bind is a list of plugins that should be invoked at "Bind" extension point of the scheduling framework.
+The scheduler call these plugins in order. Scheduler skips the rest of these plugins as soon as one returns success.
+   -->
+   <p>
+   <code>bind</code> 是一个在调度框架中&quot;Bind（绑定）&quot;扩展点上要调用的插件的列表。
+   调度器按顺序调用这些插件。只要其中某个插件返回成功，则调度器就略过余下的插件。
+   </p>
+</td>
+</tr>
+<tr><td><code>postBind</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   PostBind is a list of plugins that should be invoked after a pod is successfully bound.
+   -->
+   <p><code>postBind</code> 是一个在 Pod 已经被成功绑定之后要调用的插件的列表。</p>
+</td>
+</tr>
+<tr><td><code>multiPoint</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-PluginSet"><code>PluginSet</code></a>
+</td>
+<td>
+   <!--
+   MultiPoint is a simplified config section to enable plugins for all valid extension points.
+Plugins enabled through MultiPoint will automatically register for every individual extension
+point the plugin has implemented. Disabling a plugin through MultiPoint disables that behavior.
+The same is true for disabling "&lowast;" through MultiPoint (no default plugins will be automatically registered).
+Plugins can still be disabled through their individual extension points.
+   -->
+   <p><code>multiPoint</code> 是一个简化的配置段落，用来为所有合法的扩展点启用插件。
+   通过 <code>multiPoint</code> 启用的插件会自动注册到插件所实现的每个独立的扩展点上。
+   通过 <code>multiPoint</code> 禁用的插件会禁用对应的操作行为。
+   通过 <code>multiPoint</code> 所禁止的 &quot;&lowast;&quot; 
+   也是如此，意味着所有默认插件都不会被自动注册。
+   插件也可以通过各个独立的扩展点来禁用。</p>
+   <!--
+In terms of precedence, plugin config follows this basic hierarchy
+  1. Specific extension points
+  2. Explicitly configured MultiPoint plugins
+  3. The set of default plugins, as MultiPoint plugins
+This implies that a higher precedence plugin will run first and overwrite any settings within MultiPoint.
+Explicitly user-configured plugins also take a higher precedence over default plugins.
+Within this hierarchy, an Enabled setting takes precedence over Disabled. For example, if a plugin is
+set in both `multiPoint.Enabled` and `multiPoint.Disabled`, the plugin will be enabled. Similarly,
+including `multiPoint.Disabled = '&lowast;'` and `multiPoint.Enabled = pluginA` will still register that specific
+plugin through MultiPoint. This follows the same behavior as all other extension point configurations.
+   -->
+   <p>就优先序而言，插件配置遵从以下基本层次：</p>
+   <ol>
+     <li>特定的扩展点；</li>
+     <li>显式配置的 <code>multiPoint</code> 插件；</li>
+     <li>默认插件的集合，以及 <code>multiPoint</code> 插件。</li>
+   </ol>
+   <p>这意味着优先序较高的插件会先被运行，并且覆盖 <code>multiPoint</code> 中的任何配置。</p>
+   <p>用户显式配置的插件也会比默认插件优先序高。</p>
+   <p>在这样的层次结构设计之下，<code>enabled</code> 的优先序高于 <code>disabled</code>。
+   例如，某插件同时出现在 <code>multiPoint.enabled</code> 和 <code>multiPoint.disalbed</code> 时，
+   该插件会被启用。类似的，
+   同时设置 <code>multiPoint.disabled = '&lowast;'</code>和 <code>multiPoint.enabled = pluginA</code> 时，
+   插件 pluginA 仍然会被注册。这一设计与所有其他扩展点的配置行为是相符的。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `PodTopologySpreadConstraintsDefaulting`     {#kubescheduler-config-k8s-io-v1beta3-PodTopologySpreadConstraintsDefaulting}
+
+<!--
+(Alias of `string`)
+
+**Appears in:**
+-->
+（`string` 类型的别名）
+
+**出现在：**
+
+- [PodTopologySpreadArgs](#kubescheduler-config-k8s-io-v1beta3-PodTopologySpreadArgs)
+
+<!--
+PodTopologySpreadConstraintsDefaulting defines how to set default constraints
+for the PodTopologySpread plugin.
+-->
+<p>PodTopologySpreadConstraintsDefaulting
+定义如何为 PodTopologySpread 插件设置默认的约束。</p>
+
+## `RequestedToCapacityRatioParam`     {#kubescheduler-config-k8s-io-v1beta3-RequestedToCapacityRatioParam}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ScoringStrategy](#kubescheduler-config-k8s-io-v1beta3-ScoringStrategy)
+
+<!--
+RequestedToCapacityRatioParam define RequestedToCapacityRatio parameters
+-->
+<p>RequestedToCapacityRatioParam 结构定义 RequestedToCapacityRatio 的参数。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>shape</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-UtilizationShapePoint"><code>[]UtilizationShapePoint</code></a>
+</td>
+<td>
+   <!--
+   Shape is a list of points defining the scoring function shape.
+   -->
+   <p><code>shape</code> 是一个定义评分函数曲线的计分点的列表。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ResourceSpec`     {#kubescheduler-config-k8s-io-v1beta3-ResourceSpec}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [NodeResourcesBalancedAllocationArgs](#kubescheduler-config-k8s-io-v1beta3-NodeResourcesBalancedAllocationArgs)
+- [ScoringStrategy](#kubescheduler-config-k8s-io-v1beta3-ScoringStrategy)
+
+<!--
+ResourceSpec represents a single resource.
+-->
+<p>ResourceSpec 用来代表某个资源。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>name</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   Name of the resource.
+   -->
+   <p>资源名称。</p>
+</td>
+</tr>
+<tr><td><code>weight</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int64</code>
+</td>
+<td>
+   <!--
+   Weight of the resource.
+   -->
+   <p>资源权重。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ScoringStrategy`     {#kubescheduler-config-k8s-io-v1beta3-ScoringStrategy}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [NodeResourcesFitArgs](#kubescheduler-config-k8s-io-v1beta3-NodeResourcesFitArgs)
+
+<!--
+ScoringStrategy define ScoringStrategyType for node resource plugin
+-->
+<p>ScoringStrategy 为节点资源插件定义 ScoringStrategyType。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>type</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-ScoringStrategyType"><code>ScoringStrategyType</code></a>
+</td>
+<td>
+   <!--
+   Type selects which strategy to run.
+   -->
+   <p><code>type</code> 用来选择要运行的策略。</p>
+</td>
+</tr>
+<tr><td><code>resources</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-ResourceSpec"><code>[]ResourceSpec</code></a>
+</td>
+<td>
+   <!--
+   Resources to consider when scoring.
+The default resource set includes "cpu" and "memory" with an equal weight.
+Allowed weights go from 1 to 100.
+Weight defaults to 1 if not specified or explicitly set to 0.
+   -->
+   <p><code>resources</code> 设置在评分时要考虑的资源。</p>
+   <p>默认的资源集合包含 &quot;cpu&quot; 和 &quot;memory&quot;，且二者权重相同。</p>
+   <p>权重的取值范围为 1 到 100。</p>
+   <p>当权重未设置或者显式设置为 0 时，意味着使用默认值 1。</p>
+</td>
+</tr>
+<tr><td><code>requestedToCapacityRatio</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubescheduler-config-k8s-io-v1beta3-RequestedToCapacityRatioParam"><code>RequestedToCapacityRatioParam</code></a>
+</td>
+<td>
+   <!--
+   Arguments specific to RequestedToCapacityRatio strategy.
+   -->
+   <p>特定于 RequestedToCapacityRatio 策略的参数。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ScoringStrategyType`     {#kubescheduler-config-k8s-io-v1beta3-ScoringStrategyType}
+
+<!--
+(Alias of `string`)
+
+**Appears in:**
+-->
+（`string` 数据类型的别名）
+
+**出现在：**
+
+- [ScoringStrategy](#kubescheduler-config-k8s-io-v1beta3-ScoringStrategy)
+
+<!--
+ScoringStrategyType the type of scoring strategy used in NodeResourcesFit plugin.
+-->
+<p>ScoringStrategyType 是 NodeResourcesFit 插件所使用的的评分策略类型。</p>
+
+## `UtilizationShapePoint`     {#kubescheduler-config-k8s-io-v1beta3-UtilizationShapePoint}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [VolumeBindingArgs](#kubescheduler-config-k8s-io-v1beta3-VolumeBindingArgs)
+- [RequestedToCapacityRatioParam](#kubescheduler-config-k8s-io-v1beta3-RequestedToCapacityRatioParam)
+
+<!--
+UtilizationShapePoint represents single point of priority function shape.
+-->
+<p>UtilizationShapePoint 代表的是优先级函数曲线中的一个评分点。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>utilization</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   Utilization (x axis). Valid values are 0 to 100. Fully utilized node maps to 100.
+   -->
+   <p>利用率（x 轴）。合法值为 0 到 100。完全被利用的节点映射到 100。</p>
+</td>
+</tr>
+<tr><td><code>score</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   Score assigned to given utilization (y axis). Valid values are 0 to 10.
+   -->
+   <p>分配给指定利用率的分值（y 轴）。合法值为 0 到 10。</p>
+</td>
+</tr>
+</tbody>
+</table>
diff --git a/content/zh-cn/docs/reference/config-api/kubeadm-config.v1beta2.md b/content/zh-cn/docs/reference/config-api/kubeadm-config.v1beta2.md
new file mode 100644
index 0000000000..eddb958265
--- /dev/null
+++ b/content/zh-cn/docs/reference/config-api/kubeadm-config.v1beta2.md
@@ -0,0 +1,1845 @@
+---
+title: kubeadm 配置 (v1beta2)
+content_type: tool-reference
+package: kubeadm.k8s.io/v1beta2
+auto_generated: true
+---
+
+<!--
+title: kubeadm Configuration (v1beta2)
+content_type: tool-reference
+package: kubeadm.k8s.io/v1beta2
+auto_generated: true
+-->
+<!--
+<h2>Overview</h2>
+<p>Package v1beta2 defines the v1beta2 version of the kubeadm configuration file format.
+This version improves on the v1beta1 format by fixing some minor issues and adding a few new fields.</p>
+<p>A list of changes since v1beta1:</p>
+-->
+<h2>概述</h2>
+
+<p>包 v1beta2 定义 kubeadm 配置文件格式的 v1beta2 版本。
+此版本改进了 v1beta1 的格式，修复了一些小问题并添加了一些新的字段。</p>
+
+<p>从 v1beta1 版本以来的变更列表：</p>
+
+<ul>
+<!--
+<li>&quot;certificateKey&quot; field is added to InitConfiguration and JoinConfiguration.</li>
+<li>&quot;ignorePreflightErrors&quot; field is added to the NodeRegistrationOptions.</li>
+<li>The JSON &quot;omitempty&quot; tag is used in a more places where appropriate.</li>
+<li>The JSON &quot;omitempty&quot; tag of the &quot;taints&quot; field (inside NodeRegistrationOptions) is removed.</li>
+-->
+<li>&quot;certificateKey&quot; 字段被添加到 InitConfiguration 和 JoinConfiguration 中。</li>
+<li>&quot;ignorePreflightErrors&quot; 字段被添加到 NodeRegistrationOptions 中。</li>
+<li>JSON 标签 &quot;omitempty&quot; 在合适的情况下被用到更多的位置。</li>
+<li>&quot;taints&quot; 字段（在 NodeRegistrationOptions）的 JSON 标签 &quot;omitempty&quot; 被去除。</li>
+</ul>
+
+<!--
+<p>See the Kubernetes 1.15 changelog for further details.</p>
+-->
+<p>参阅 Kubernetes 1.15 的变更记录以了解详细信息。</p>
+
+<!--
+<p>Migration from old kubeadm config versions</p>
+<p>Please convert your v1beta1 configuration files to v1beta2 using the &quot;kubeadm config migrate&quot; command of kubeadm v1.15.x
+(conversion from older releases of kubeadm config files requires older release of kubeadm as well e.g.</p>
+<ul>
+<li>kubeadm v1.11 should be used to migrate v1alpha1 to v1alpha2; kubeadm v1.12 should be used to translate v1alpha2 to v1alpha3;</li>
+<li>kubeadm v1.13 or v1.14 should be used to translate v1alpha3 to v1beta1)</li>
+</ul>
+-->
+<p>从老的 kubeadm 配置版本迁移：</p>
+<p>请使用 kubeadm v1.15.x 的 &quot;kubeadm config migrate&quot; 命令将 v1beta1
+版本的配置文件转换为 v1beta2。
+（从更老版本的 kubeadm 配置文件迁移需要使用更老版本的 kubeadm。例如：</p>
+<ul>
+<li>kubeadm v1.11 版本可以用来从 v1alpha1 迁移到 v1alpha2 版本；kubeadm v1.12
+可用来将 v1alpha2 转换为 v1alpha3。</li>
+<li>kubeadm v1.13 或 v1.14 可以用来将 v1alpha3 转换为 v1beta1。</li>
+</ul>
+）
+
+<!--
+<p>Nevertheless, kubeadm v1.15.x will support reading from v1beta1 version of the kubeadm config file format.</p>
+-->
+<p>尽管如此，kubeadm v1.15.x 会支持读取 v1beta1 版本的 kubeadm 配置文件格式。</p>
+
+<!--
+<h2>Basics</h2>
+<p>The preferred way to configure kubeadm is to pass an YAML configuration file with the <code>--config</code> option. Some of the
+configuration options defined in the kubeadm config file are also available as command line flags, but only
+the most common/simple use case are supported with this approach.</p>
+<p>A kubeadm config file could contain multiple configuration types separated using three dashes (<code>---</code>).</p>
+<p>kubeadm supports the following configuration types:</p>
+-->
+<h2>基础知识</h2>
+
+<p>配置 kubeadm 的推荐方式是使用 <code>--config</code> 选项向其传递一个 YAML 配置文件。
+kubeadm 配置文件中定义的某些配置选项也可以作为命令行标志来使用，
+不过这种方法所支持的都是一些最常见的、最简单的使用场景。</p>
+
+<p>一个 kubeadm 配置文件中可以包含多个配置类型，使用三根横线（<code>---</code>）作为分隔符。</p>
+
+<p>kubeadm 支持以下配置类型：</p>
+
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta2<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>InitConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta2<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>ClusterConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubelet.config.k8s.io/v1beta1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeletConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeproxy.config.k8s.io/v1alpha1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeProxyConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta2<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>JoinConfiguration<span style="color:#bbb">
+</span></pre>
+
+<!--
+<p>To print the defaults for &quot;init&quot; and &quot;join&quot; actions use the following commands:</p>
+-->
+<p>要输出 &quot;init&quot; 和 &quot;join&quot; 动作的默认值，可以使用下面的命令：</p>
+
+<pre style="background-color:#fff">kubeadm config print init-defaults
+kubeadm config print join-defaults
+</pre>
+
+<!--
+<p>The list of configuration types that must be included in a configuration file depends by the action you are
+performing (<code>init</code> or <code>join</code>) and by the configuration options you are going to use (defaults or advanced customization).</p>
+<p>If some configuration types are not provided, or provided only partially, kubeadm will use default values; defaults
+provided by kubeadm includes also enforcing consistency of values across components when required (e.g.
+<code>--cluster-cidr</code> flag on controller manager and <code>clusterCIDR</code> on kube-proxy).</p>
+-->
+<p>配置文件中必须包含的配置类型列表取决于你在执行的动作（<code>init</code> 或 <code>join</code>），
+也取决于你要使用的配置选项（默认值或者高级定制）。</p>
+
+<p>如果某些配置类型没有提供，或者仅部分提供，kubeadm 将使用默认值；
+kubeadm 所提供的默认值在必要时也会保证其在多个组件之间是一致的
+（例如控制器管理器上的 <code>--cluster-cidr</code> 参数和 kube-proxy 上的
+<code>clusterCIDR</code>）。</p>
+
+<!--
+<p>Users are always allowed to override default values, with the only exception of a small subset of setting with
+relevance for security (e.g. enforce authorization-mode Node and RBAC on API server)</p>
+<p>If the user provides a configuration types that is not expected for the action you are performing, kubeadm will
+ignore those types and print a warning.</p>
+-->
+<p>用户总是可以重载默认配置值，唯一的例外是一小部分与安全性相关联的配置
+（例如在 API 服务器上强制实施 Node 和 RBAC 鉴权模式）。</p>
+
+<p>如果用户所提供的配置类型并非你所执行的操作需要的，
+kubeadm 会忽略这些配置类型并打印警告信息。</p>
+
+<!--
+<h2>Kubeadm init configuration types</h2>
+<p>When executing kubeadm init with the <code>--config</code> option, the following configuration types could be used:
+InitConfiguration, ClusterConfiguration, KubeProxyConfiguration, KubeletConfiguration, but only one
+between InitConfiguration and ClusterConfiguration is mandatory.</p>
+-->
+<h2>kubeadm init 配置类型</h2>
+
+<p>当带有 <code>--config</code> 选项来执行 kubeadm init 命令时，可以使用下面的配置类型：
+<code>InitConfiguration</code>、<code>ClusterConfiguration</code>、<code>KubeProxyConfiguration</code>、
+<code>KubeletConfiguration</code>，但 <code>InitConfiguration</code> 和 <code>ClusterConfiguration</code>
+之间只有一个是必须提供的。</p>
+
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta2<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>InitConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">bootstrapTokens</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">nodeRegistration</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span></pre>
+
+<!--
+<p>The InitConfiguration type should be used to configure runtime settings, that in case of <code>kubeadm init</code>
+are the configuration of the bootstrap token and all the setting which are specific to the node where kubeadm
+is executed, including:</p>
+<ul>
+<li>
+<p><code>nodeRegistration</code>, that holds fields that relate to registering the new node to the cluster;
+use it to customize the node name, the CRI socket to use or any other settings that should apply to this
+node only (e.g. the node ip).</p>
+</li>
+<li>
+<p><code>apiServer</code>, that represents the endpoint of the instance of the API server to be deployed on this node;
+use it e.g. to customize the API server advertise address.</p>
+</li>
+</ul>
+-->
+<p>类型 InitConfiguration 用来配置运行时设置，就 kubeadm init 命令而言，
+包括启动引导令牌以及所有与 kubeadm 所在节点相关的设置，包括：</p>
+
+<ul>
+<li><code>nodeRegistration</code>：其中包含与向集群注册新节点相关的字段；
+使用这个类型来定制节点名称、要使用的 CRI 套接字或者其他仅对当前节点起作用的设置
+（例如节点 IP 地址）。</li>
+<li><code>apiServer</code>：代表的是要部署到此节点上的 API 服务器示例的端点；
+使用这个类型可以完成定制 API 服务器公告地址这类操作。</li>
+</ul>
+
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta2<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>ClusterConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">networking</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>...<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">etcd</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>...<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiServer</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>...<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraVolumes</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>...<span style="color:#bbb">
+</span><span style="color:#bbb"></span>...<span style="color:#bbb">
+</span></pre>
+
+<!--
+<p>The ClusterConfiguration type should be used to configure cluster-wide settings,
+including settings for:</p>
+<ul>
+<li>
+<p>Networking, that holds configuration for the networking topology of the cluster; use it e.g. to customize
+pod subnet or services subnet.</p>
+</li>
+-->
+<p>类型 <code>ClusterConfiguration</code> 用来定制集群范围的设置，具体包括以下设置：</p>
+
+<ul>
+<li><code>networking</code>：其中包含集群的网络拓扑配置。使用这一部分可以定制 Pod
+的子网或者 Service 的子网。</li>
+
+<!--
+<li>
+<p>Etcd configurations; use it e.g. to customize the local etcd or to configure the API server
+for using an external etcd cluster.</p>
+</li>
+<li>
+<p>kube-apiserver, kube-scheduler, kube-controller-manager configurations; use it to customize control-plane
+components by adding customized setting or overriding kubeadm default settings.</p>
+</li>
+-->
+<li><code>etcd</code>：etcd 数据库的配置。例如使用这个部分可以定制本地 etcd 或者配置
+API 服务器使用一个外部的 etcd 集群。</li>
+<li><code>kube-apiserver</code>、<code>kube-scheduler</code>、<code>kube-controller-manager</code>
+配置：这些部分可以通过添加定制的设置或者重载 kubeadm 的默认设置来定制控制面组件。</li>
+</ul>
+
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeproxy.config.k8s.io/v1alpha1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeProxyConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span></pre>
+
+<!--
+<p>The KubeProxyConfiguration type should be used to change the configuration passed to kube-proxy instances deployed
+in the cluster. If this object is not provided or provided only partially, kubeadm applies defaults.</p>
+<p>See https://kubernetes.io/docs/reference/command-line-tools-reference/kube-proxy/ or
+https://godoc.org/k8s.io/kube-proxy/config/v1alpha1#KubeProxyConfiguration
+for kube proxy official documentation.</p>
+-->
+<p>KubeProxyConfiguration 类型用来更改传递给在集群中部署的 kube-proxy 实例的配置。
+如果此对象没有提供，或者仅部分提供，kubeadm 将使用默认值。</p>
+
+<p>关于 kube-proxy 的官方文档，可参阅
+https://kubernetes.io/zh-cn/docs/reference/command-line-tools-reference/kube-proxy/
+或者 https://godoc.org/k8s.io/kube-proxy/config/v1alpha1#KubeProxyConfiguration。
+</p>
+
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubelet.config.k8s.io/v1beta1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeletConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span></pre>
+<!--
+<p>The KubeletConfiguration type should be used to change the configurations that will be passed to all kubelet instances
+deployed in the cluster. If this object is not provided or provided only partially, kubeadm applies defaults.</p>
+<p>See https://kubernetes.io/docs/reference/command-line-tools-reference/kubelet/ or
+https://godoc.org/k8s.io/kubelet/config/v1beta1#KubeletConfiguration
+for kubelet official documentation.</p>
+<p>Here is a fully populated example of a single YAML file containing multiple
+configuration types to be used during a <code>kubeadm init</code> run.</p>
+-->
+<p>KubeletConfiguration 类型用来更改传递给在集群中部署的 kubelet 实例的配置。
+如果此对象没有提供，或者仅部分提供，kubeadm 使用默认值。</p>
+
+<p>关于 kubelet 的官方文档，可参阅
+https://kubernetes.io/zh-cn/docs/reference/command-line-tools-reference/kubelet/
+或者
+https://godoc.org/k8s.io/kubelet/config/v1beta1#KubeletConfiguration。</p>
+
+<p>下面是一个为执行 <code>kubeadm init</code> 而提供的、包含多个配置类型的单一 YAML 文件，
+其中填充了很多部分。</p>
+
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta2<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>InitConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">bootstrapTokens</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- <span style="color:#000;font-weight:bold">token</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;9a08jv.c0izixklcxtmnze7&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">description</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;kubeadm bootstrap token&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">ttl</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;24h&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- <span style="color:#000;font-weight:bold">token</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;783bde.3f89s0fje9f38fhf&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">description</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;another bootstrap token&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">usages</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">      </span>- authentication<span style="color:#bbb">
+</span><span style="color:#bbb">      </span>- signing<span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">groups</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">      </span>- system:bootstrappers:kubeadm:default-node-token<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">nodeRegistration</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">name</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;ec2-10-100-0-1&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">criSocket</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/var/run/dockershim.sock&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">taints</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>- <span style="color:#000;font-weight:bold">key</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;kubeadmNode&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">value</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;someValue&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">effect</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;NoSchedule&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">kubeletExtraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">v</span>:<span style="color:#bbb"> </span><span style="color:#099">4</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">ignorePreflightErrors</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>- IsPrivilegedUser<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">localAPIEndpoint</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">advertiseAddress</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;10.100.0.1&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">bindPort</span>:<span style="color:#bbb"> </span><span style="color:#099">6443</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">certificateKey</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;e6a2eb8581237ab72a4f494f30285ec12a9694d750b9785706a83bfcbbbd2204&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span>---<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta2<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>ClusterConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">etcd</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#998;font-style:italic"># one of local or external</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">local</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">imageRepository</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;k8s.gcr.io&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">imageTag</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;3.2.24&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">dataDir</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/var/lib/etcd&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">extraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">listen-client-urls</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;http://10.100.0.1:2379&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">serverCertSANs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">      </span>- <span style="color:#bbb"> </span><span style="color:#d14">&#34;ec2-10-100-0-1.compute-1.amazonaws.com&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">peerCertSANs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">      </span>- <span style="color:#d14">&#34;10.100.0.1&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#998;font-style:italic"># external:</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#998;font-style:italic">#   endpoints:</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#998;font-style:italic">#     - &#34;10.100.0.1:2379&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#998;font-style:italic">#     - &#34;10.100.0.2:2379&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#998;font-style:italic">#   caFile: &#34;/etcd/kubernetes/pki/etcd/etcd-ca.crt&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#998;font-style:italic">#   certFile: &#34;/etcd/kubernetes/pki/etcd/etcd.crt&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#998;font-style:italic">#   keyFile: &#34;/etcd/kubernetes/pki/etcd/etcd.key&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">networking</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">serviceSubnet</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;10.96.0.0/16&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">podSubnet</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;10.244.0.0/24&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">dnsDomain</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;cluster.local&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kubernetesVersion</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;v1.12.0&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">controlPlaneEndpoint</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;10.100.0.1:6443&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiServer</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">authorization-mode</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;Node,RBAC&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraVolumes</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>- <span style="color:#000;font-weight:bold">name</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;some-volume&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">hostPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">mountPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-pod-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">readOnly</span>:<span style="color:#bbb"> </span><span style="color:#000;font-weight:bold">false</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">pathType</span>:<span style="color:#bbb"> </span>File<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">certSANs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>- <span style="color:#d14">&#34;10.100.1.1&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span>- <span style="color:#d14">&#34;ec2-10-100-0-1.compute-1.amazonaws.com&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">timeoutForControlPlane</span>:<span style="color:#bbb"> </span>4m0s<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">controllerManager</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">&#34;node-cidr-mask-size&#34;: </span><span style="color:#d14">&#34;20&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraVolumes</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>- <span style="color:#000;font-weight:bold">name</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;some-volume&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">hostPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">mountPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-pod-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">readOnly</span>:<span style="color:#bbb"> </span><span style="color:#000;font-weight:bold">false</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">pathType</span>:<span style="color:#bbb"> </span>File<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">scheduler</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">address</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;10.100.0.1&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraVolumes</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>- <span style="color:#000;font-weight:bold">name</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;some-volume&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">hostPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">mountPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-pod-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">readOnly</span>:<span style="color:#bbb"> </span><span style="color:#000;font-weight:bold">false</span><span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">pathType</span>:<span style="color:#bbb"> </span>File<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">certificatesDir</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/kubernetes/pki&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">imageRepository</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;k8s.gcr.io&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">useHyperKubeImage</span>:<span style="color:#bbb"> </span><span style="color:#000;font-weight:bold">false</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">clusterName</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;example-cluster&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span>---<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubelet.config.k8s.io/v1beta1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeletConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#998;font-style:italic"># kubelet specific options here</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span>---<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeproxy.config.k8s.io/v1alpha1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeProxyConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#998;font-style:italic"># kube-proxy specific options here</span><span style="color:#bbb">
+</span></pre>
+
+<!--
+<h2>Kubeadm join configuration types</h2>
+<p>When executing kubeadm join with the <code>--config</code> option, the JoinConfiguration type should be provided.</p>
+-->
+<h2> kubeadm join 配置类型</h2>
+
+<p>当带有 <code>--config</code> 选项来执行 <code>kubeadm join</code> 操作时，
+需要提供 JoinConfiguration 类型。</p>
+
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta2<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>JoinConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span></pre>
+
+<!--
+<p>The JoinConfiguration type should be used to configure runtime settings, that in case of <code>kubeadm join</code>
+are the discovery method used for accessing the cluster info and all the setting which are specific
+to the node where kubeadm is executed, including:</p>
+<ul>
+<li>
+<p><code>NodeRegistration</code>, that holds fields that relate to registering the new node to the cluster;
+use it to customize the node name, the CRI socket to use or any other settings that should apply to this
+node only (e.g. the node IP).</p>
+</li>
+<li>
+<p><code>APIEndpoint</code>, that represents the endpoint of the instance of the API server to be eventually deployed on this node.</p>
+</li>
+</ul>
+-->
+<p>JoinConfiguration 类型用来配置运行时设置，就 <code>kubeadm join</code>
+而言包括用来访问集群信息的发现方法，以及所有特定于 kubeadm 执行所在节点的设置，
+包括：</p>
+
+<ul>
+<li><code>nodeRegistration</code>：其中包含向集群注册新节点相关的配置字段；
+使用这个类型可以定制节点名称、要使用的 CRI 套接字和所有其他仅适用于当前节点的设置
+（例如节点 IP 地址）。</li>
+<li><code>apiEndpoint</code>：用来代表最终要部署到此节点上的 API
+服务器实例的端点。</li>
+</ul>
+
+<!--
+## Resource Types
+-->
+## 资源类型  {#resource-types}
+
+- [ClusterConfiguration](#kubeadm-k8s-io-v1beta2-ClusterConfiguration)
+- [ClusterStatus](#kubeadm-k8s-io-v1beta2-ClusterStatus)
+- [InitConfiguration](#kubeadm-k8s-io-v1beta2-InitConfiguration)
+- [JoinConfiguration](#kubeadm-k8s-io-v1beta2-JoinConfiguration)
+
+## `ClusterConfiguration`     {#kubeadm-k8s-io-v1beta2-ClusterConfiguration}
+    
+<!--
+<p>ClusterConfiguration contains cluster-wide configuration for a kubeadm cluster</p>
+-->
+<p>ClusterConfiguration 包含一个 kubadm 集群的集群范围配置信息。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubeadm.k8s.io/v1beta2</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>ClusterConfiguration</code></td></tr>
+    
+<tr><td><code>etcd</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-Etcd"><code>Etcd</code></a>
+</td>
+<td>
+   <!--
+   <p><code>etcd</code> holds configuration for etcd.</p>
+   -->
+   <p><code>etcd</code> 中包含 etcd 服务的配置。</p>
+</td>
+</tr>
+<tr><td><code>networking</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-Networking"><code>Networking</code></a>
+</td>
+<td>
+   <!--
+   <p><code>networking</code> holds configuration for the networking topology of the cluster.</p>
+   -->
+   <code>networking</code> 字段包含集群的网络拓扑配置。
+</td>
+</tr>
+<tr><td><code>kubernetesVersion</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>kubernetesVersion</code> is the target version of the control plane.</p>
+   -->
+   <p><code>kubernetesVersion</code> 设置控制面的目标版本。</p>
+</td>
+</tr>
+<tr><td><code>controlPlaneEndpoint</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>controlPlaneEndpoint</code> sets a stable IP address or DNS name for the control plane; it
+can be a valid IP address or a RFC-1123 DNS subdomain, both with optional TCP port.
+In case the <code>controlPlaneEndpoint</code> is not specified, the <code>advertiseAddress</code> + <code>bindPort</code>
+are used; in case the <code>controlPlaneEndpoint</code> is specified but without a TCP port,
+the <code>bindPort</code> is used.
+Possible usages are:</p>
+   -->
+   <p><code>controlPlaneEndpoint</code> 为控制面设置一个稳定的 IP 地址或 DNS 名称。
+取值可以是一个合法的 IP 地址或者 RFC-1123 形式的 DNS 子域名，二者均可以带一个可选的
+TCP 端口号。
+如果 <code>controlPlaneEndpoint</code> 未设置，则使用 <code>advertiseAddress<code>
++ <code>bindPort</code>。
+如果设置了 <code>controlPlaneEndpoint</code>，但未指定 TCP 端口号，则使用
+<code>bindPort</code>。</p>
+<p>可能的用法有：</p>
+<!--
+<ul>
+<li>In a cluster with more than one control plane instances, this field should be
+assigned the address of the external load balancer in front of the
+control plane instances.</li>
+<li>In environments with enforced node recycling, the <code>controlPlaneEndpoint</code> could
+be used for assigning a stable DNS to the control plane.</li>
+</ul>
+-->
+<ul>
+  <li>在一个包含不止一个控制面实例的集群中，
+该字段应该设置为放置在控制面实例之前的外部负载均衡器的地址。</li>
+  <li>在带有强制性节点回收的环境中，<code>controlPlaneEndpoint</code>
+可以用来为控制面设置一个稳定的 DNS。</li>
+</ul>
+</td>
+</tr>
+<tr><td><code>apiServer</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-APIServer"><code>APIServer</code></a>
+</td>
+<td>
+   <!--
+   <p><code>apiServer</code> contains extra settings for the API server.</p>
+   -->
+   <p><code>apiServer</code> 包含 API 服务器的一些额外配置。</p>
+</td>
+</tr>
+<tr><td><code>controllerManager</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-ControlPlaneComponent"><code>ControlPlaneComponent</code></a>
+</td>
+<td>
+   <!--
+   <p><code>controllerManager</code> contains extra settings for the controller manager.</p>
+   -->
+   <p><code>controllerManager</code> 中包含控制器管理器的额外配置。</p>
+</td>
+</tr>
+<tr><td><code>scheduler</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-ControlPlaneComponent"><code>ControlPlaneComponent</code></a>
+</td>
+<td>
+   <!--
+   <p><code>scheduler</code> contains extra settings for the scheduler.</p>
+   -->
+   <p><code>scheduler</code> 包含调度器的额外配置。</p>
+</td>
+</tr>
+<tr><td><code>dns</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-DNS"><code>DNS</code></a>
+</td>
+<td>
+   <!--
+   <p><code>dns</code> defines the options for the DNS add-on installed in the cluster.</p>
+   -->
+   <p><code>dns</code> 定义在集群中安装的 DNS 插件的选项。</p>
+</td>
+</tr>
+<tr><td><code>certificatesDir</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>certificatesDir</code> specifies where to store or look for all required certificates.</p>
+   -->
+   <p><code>certificatesDir</code> 设置在何处存放或者查找所需证书。</p>
+</td>
+</tr>
+<tr><td><code>imageRepository</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>imageRepository</code> sets the container registry to pull images from.
+If empty, <code>k8s.gcr.io</code> will be used by default; in case of kubernetes version is
+a CI build (kubernetes version starts with <code>ci/</code>) <code>gcr.io/k8s-staging-ci-images</code>
+is used as a default for control plane components and for kube-proxy, while
+<code>k8s.gcr.io</code> will be used for all the other images.</p>
+   -->
+   <p><code>imageRepository</code> 设置用来拉取镜像的容器仓库。
+如果此字段为空，默认使用 <code>k8s.gcr.io</code>；
+当 Kubernetes 用来执行 CI 构造时（Kubernetes 版本以 <code>ci/</code> 开头），
+将默认使用 <code>gcr.io/k8s-staging-ci-images</code> 来拉取控制面组件镜像，
+而使用 <code>k8s.gcr.io</code> 来拉取所有其他镜像。</p>
+</td>
+</tr>
+<tr><td><code>useHyperKubeImage</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   <p><code>useHyperKubeImage</code> controls if hyperkube should be used for Kubernetes components
+instead of their respective separate images.
+DEPRECATED: As <code>hyperkube</code> is itself deprecated, this fields is too. It will be
+removed in future kubeadm config versions, kubeadm will print multiple warnings
+when this set to true, and at some point it may become ignored.</p>
+   -->
+   <p><code>useHyperKubeImage</code> 控制是否使用 hyperkube 来作为Kubernetes
+组件，而不是一个个独立的镜像。
+已启用：由于 <code>hyperkube</code> 自身已被弃用，此字段也被启用。
+将被从将来的 kubeadm 配置版本中移除，kubeadm 在此字段设置为 true
+时会打印多个警告信息，并且在一些其他位置忽略此字段设置。</p>
+</td>
+</tr>
+<tr><td><code>featureGates</code> <B><!--[Required]-->[必需]</B><br/>
+<code>map[string]bool</code>
+</td>
+<td>
+   <!--
+   <p><code>featureGates</code> contains the feature gates enabled by the user.</p>
+   -->
+   <p><code>featureGates</code> 包含用户所启用的特性门控。</p>
+</td>
+</tr>
+<tr><td><code>clusterName</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p>The cluster name.</p>
+   -->
+   <p>集群名称。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ClusterStatus`     {#kubeadm-k8s-io-v1beta2-ClusterStatus}
+    
+<!--
+<p>ClusterStatus contains the cluster status. The ClusterStatus will be stored in
+the kubeadm-config ConfigMap in the cluster, and then updated by kubeadm when
+additional control plane instance joins or leaves the cluster.</p>
+-->
+<p>ClusterStatus 包含集群信息。ClusterStatus 会被保存在集群中 kubeadm-config
+ConfigMap 中，之后在新的控制面实例添加到集群或者现有控制面实例离开集群时被更新。</p>
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubeadm.k8s.io/v1beta2</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>ClusterStatus</code></td></tr>
+  
+<tr><td><code>apiEndpoints</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-APIEndpoint"><code>map[string]github.com/tengqm/kubeconfig/config/kubeadm/v1beta2.APIEndpoint</code></a>
+</td>
+<td>
+   <!--
+   <p><code>apiEndpoints</code> currently available in the cluster, one for each control
+plane/API server instance.
+The key of the map is the IP of the host's default interface.</p>
+   -->
+   <p><code>apiEndpoints</code> 为当前集群中可用的 API 端点，每个控制面实例
+（API 服务器）对应一个表项。
+映射的键名为主机默认接口的 IP 地址。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `InitConfiguration`     {#kubeadm-k8s-io-v1beta2-InitConfiguration}
+    
+<!--
+<p>InitConfiguration contains a list of elements that is specific &quot;kubeadm init&quot;-only runtime
+information.</p>
+-->
+<p>InitConfiguration 包含一组特定于 &quot;kubeadm init&quot; 的运行时元素。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubeadm.k8s.io/v1beta2</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>InitConfiguration</code></td></tr>
+    
+<tr><td><code>bootstrapTokens</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-BootstrapToken"><code>[]BootstrapToken</code></a>
+</td>
+<td>
+   <!--
+   <p><code>bootstrapTokens</code> is respected at <code>kubeadm init</code> time and describes a set of bootstrap tokens to create.
+This information IS NOT uploaded to the kubeadm cluster ConfigMap, partly because of its sensitive nature.</p>
+   -->
+   <p><code>bootstrapTokens</code> 在 <code>kubeadm init</code> 执行时会被用到，
+其中描述了一组要创建的启动引导令牌（Bootstrap Tokens）。
+这里的信息不会被上传到 kubeadm 在集群中保存的 ConfigMap 中，部分原因是由于信息本身比较敏感。</p>
+</td>
+</tr>
+<tr><td><code>nodeRegistration</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-NodeRegistrationOptions"><code>NodeRegistrationOptions</code></a>
+</td>
+<td>
+   <!--
+   <p><code>nodeRegistration</code> holds fields that relate to registering the new control-plane node to the cluster.</p>
+   -->
+   <p><code>nodeRegistration</code> 中包含与向集群中注册新的控制面节点相关的字段。</p>
+</td>
+</tr>
+<tr><td><code>localAPIEndpoint</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-APIEndpoint"><code>APIEndpoint</code></a>
+</td>
+<td>
+   <!--
+   <p><code>localAPIEndpoint</code> represents the endpoint of the API server instance that's deployed on this control plane node.
+In HA setups, this differs from <code>ClusterConfiguration.controlPlaneEndpoint</code> in the sense that ControlPlaneEndpoint
+is the global endpoint for the cluster, which then load-balances the requests to each individual API server. This
+configuration object lets you customize what IP/DNS name and port the local API server advertises it's accessible
+on. By default, kubeadm tries to auto-detect the IP of the default interface and use that, but in case that process
+fails you may set the desired value here.</p>
+   -->
+   <p><code>localAPIEndpoint</code> 所代表的是在此控制面节点上要部署的 API 服务器的端点。
+在高可用（HA）配置中，此字段与 <code>ClusterConfiguration.controlPlaneEndpoint</code>
+的取值不同：后者代表的是整个集群的全局端点，该端点上的请求会被负载均衡到每个 API 服务器。
+此配置对象允许你定制本地 API 服务器所公布的、可访问的 IP/DNS 名称和端口。
+默认情况下，kubeadm 会尝试自动检测默认接口上的 IP 并使用该地址。
+不过，如果这种检测失败，你可以在此字段中直接设置所期望的值。</p>
+</td>
+</tr>
+<tr><td><code>certificateKey</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>certificateKey</code> sets the key with which certificates and keys are encrypted prior to being uploaded in
+a secret in the cluster during the <code>uploadcerts init</code> phase.</p>
+   -->
+   <p><code>certificateKey</code> 用来设置一个秘钥，该秘钥将对 <code>uploadcerts init</code>
+阶段上传到集群中某 Secret 内的秘钥和证书加密。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `JoinConfiguration`     {#kubeadm-k8s-io-v1beta2-JoinConfiguration}
+
+<p>
+<!--
+JoinConfiguration contains elements describing a particular node.
+-->
+JoinConfiguration 包含描述特定节点的元素。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubeadm.k8s.io/v1beta2</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>JoinConfiguration</code></td></tr>
+  
+<tr><td><code>nodeRegistration</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-NodeRegistrationOptions"><code>NodeRegistrationOptions</code></a>
+</td>
+<td>
+   <!--
+   <p><code>nodeRegistration</code> holds fields that relate to registering the new
+control-plane node to the cluster</p>
+   -->
+   <code>nodeRegistration</code> 包含与向集群注册控制面节点相关的字段。
+</td>
+</tr>
+<tr><td><code>caCertPath</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>caCertPath</code> is the path to the SSL certificate authority used to
+secure comunications between a node and the control-plane.
+Defaults to &quot;/etc/kubernetes/pki/ca.crt&quot;.</p>
+   -->
+   <p><code>caCertPath</code> 是指向 SSL 证书机构的路径，
+该证书包用来加密节点与控制面之间的通信。默认值为
+&quot;/etc/kubernetes/pki/ca.crt&quot;。</p>
+</td>
+</tr>
+<tr><td><code>discovery</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-Discovery"><code>Discovery</code></a>
+</td>
+<td>
+   <!--
+   <p><code>discovery</code> specifies the options for the kubelet to use during the TLS
+bootstrap process.</p>
+   -->
+   <p><code>discovery</code> 设置 TLS 引导过程中 kubelet 要使用的选项。</p>
+</td>
+</tr>
+<tr><td><code>controlPlane</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-JoinControlPlane"><code>JoinControlPlane</code></a>
+</td>
+<td>
+   <!--
+   <p><code>controlPlane</code> defines the additional control plane instance to be deployed
+on the joining node. If nil, no additional control plane instance will be deployed.</p>
+   -->
+   <p><code>controlPlane</code> 定义要在正被加入到集群中的节点上部署的额外控制面实例。
+此字段为 null 时，不会再上面部署额外的控制面实例。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `APIEndpoint`     {#kubeadm-k8s-io-v1beta2-APIEndpoint}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ClusterStatus](#kubeadm-k8s-io-v1beta2-ClusterStatus)
+
+- [InitConfiguration](#kubeadm-k8s-io-v1beta2-InitConfiguration)
+
+- [JoinControlPlane](#kubeadm-k8s-io-v1beta2-JoinControlPlane)
+
+<p>
+<!--
+APIEndpoint struct contains elements of API server instance deployed on a node.
+-->
+APIEndpoint 结构包含某节点上部署的 API 服务器的配置元素。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>advertiseAddress</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>advertiseAddress</code> sets the IP address for the API server to advertise.</p>
+   -->
+   <p><code>advertiseAddress</code> 设置 API 服务器要公布的 IP 地址。</p>
+</td>
+</tr>
+<tr><td><code>bindPort</code> <B><!--[Required]-->[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   <p><code>bindPort</code> sets the secure port for the API Server to bind to.
+Defaults to 6443.</p>
+   -->
+   <p><code>bindPort</code> 设置 API 服务器要绑定到的安全端口。默认值为 6443。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `APIServer`     {#kubeadm-k8s-io-v1beta2-APIServer}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ClusterConfiguration](#kubeadm-k8s-io-v1beta2-ClusterConfiguration)
+
+<p>
+<!--
+APIServer holds settings necessary for API server deployments in the cluster.
+-->
+APIServer 包含集群中 API 服务器部署所必需的设置。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>ControlPlaneComponent</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-ControlPlaneComponent"><code>ControlPlaneComponent</code></a>
+</td>
+<td>
+<!--
+(Members of <code>ControlPlaneComponent</code> are embedded into this type.)
+-->
+（<code>ControlPlaneComponent</code> 结构的字段被嵌入到此类型中）
+   <span class="text-muted">
+   <!--
+   No description provided.
+   -->
+   无描述。
+   </span>
+</tr>
+<tr><td><code>certSANs</code> <B><!--[Required]-->[必需]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--
+   <p><code>certSANs</code> sets extra Subject Alternative Names (SANs) for the API Server
+signing certificate.</p>
+   -->
+   <code>certSANs</code> 设置 API 服务器签署证书所用的额外主题替代名（Subject Alternative Name，SAN）。
+</td>
+</tr>
+<tr><td><code>timeoutForControlPlane</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--
+   <p><code>timeoutForControlPlane</code> controls the timeout that we wait for the API server
+to appear.</p>
+   -->
+   <p><code>timeoutForControlPlane</code> 用来控制我们等待 API 服务器开始运行的超时时间。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `BootstrapToken`     {#kubeadm-k8s-io-v1beta2-BootstrapToken}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [InitConfiguration](#kubeadm-k8s-io-v1beta2-InitConfiguration)
+
+
+<!--p>BootstrapToken describes one bootstrap token, stored as a Secret in the cluster</p-->
+<p>BootstrapToken 描述的是一个启动引导令牌，以 Secret 形式存储在集群中。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>token</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-BootstrapTokenString"><code>BootstrapTokenString</code></a>
+</td>
+<td>
+   <!--p><code>token</code> is used for establishing bidirectional trust between nodes and control-planes.
+Used for joining nodes in the cluster.</p-->
+  <p><code>token</code> 用来在节点与控制面之间建立双向的信任关系。
+在向集群中添加节点时使用。</p>
+</td>
+</tr>
+<tr><td><code>description</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p><code>description</code> sets a human-friendly message why this token exists and what it's used
+for, so other administrators can know its purpose.</p-->
+   <p><code>description</code> 设置一个对人友好的消息，
+说明为什么此令牌会存在以及其目标用途，这样其他管理员能够知道其目的。</p>
+</td>
+</tr>
+<tr><td><code>ttl</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--p><code>ttl</code> defines the time to live for this token. Defaults to '24h'.
+<code>expires</code> and <code>ttl</code> are mutually exclusive.</p-->
+   <p><code>ttl</code> 定义此令牌的声明周期。默认为 '24h'。
+<code>expires</code> 和 <code>ttl</code> 是互斥的。</p>
+</td>
+</tr>
+<tr><td><code>expires</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#time-v1-meta"><code>meta/v1.Time</code></a>
+</td>
+<td>
+   <!--p><code>expires</code> specifies the timestamp when this token expires. Defaults to being set
+dynamically at runtime based on the <code>ttl</code>. <code>expires</code> and <code>ttl</code> are mutually exclusive.</p-->
+   <p><code>expires</code> 设置此令牌过期的时间戳。
+默认为在运行时基于<code>ttl</code>来决定。
+<code>expires</code>和<code>ttl</code>是互斥的。</p>
+</td>
+</tr>
+<tr><td><code>usages</code> <B><!--[Required]-->[必需]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--p><code>usages</code> describes the ways in which this token can be used. Can by default be used
+for establishing bidirectional trust, but that can be changed here.</p-->
+   <p><code>usages</code> 描述此令牌的可能使用方式。默认情况下，
+令牌可用于建立双向的信任关系；不过这里可以改变默认用途。</p>
+</td>
+</tr>
+<tr><td><code>groups</code> <B><!--[Required]-->[必需]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--p><code>groups</code> specifies the extra groups that this token will authenticate as when/if
+used for authentication</p-->
+   <p><code>groups</code> 设定此令牌被用于身份认证时对应的附加用户组。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `BootstrapTokenDiscovery`     {#kubeadm-k8s-io-v1beta2-BootstrapTokenDiscovery}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [Discovery](#kubeadm-k8s-io-v1beta2-Discovery)
+
+<p>
+<!--
+BootstrapTokenDiscovery is used to set the options for bootstrap token based discovery
+-->
+BootstrapTokenDiscovery 用来设置基于引导令牌的服务发现选项。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>token</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+<p>
+   <!--
+   <code>token</code> is a token used to validate cluster information fetched from the control-plane.
+   -->
+   <code>token</code> 用来验证从控制面获得的集群信息。
+</p>
+</td>
+</tr>
+<tr><td><code>apiServerEndpoint</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+<p>
+   <!--
+   <code>apiServerEndpoint</code> is an IP or domain name to the API server from which
+information will be fetched.
+   -->
+   <code>apiServerEndpoint</code> 为 API 服务器的 IP 地址或者域名，从该端点可以获得集群信息。
+</p>
+</td>
+</tr>
+<tr><td><code>caCertHashes</code> <B><!--[Required]-->[必需]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+<p>
+   <!--
+   <code>caCertHashes</code> specifies a set of public key pins to verify when token-based discovery
+is used. The root CA found during discovery must match one of these values.
+Specifying an empty set disables root CA pinning, which can be unsafe.
+Each hash is specified as &quot;<\!-- raw HTML omitted -->:<!-- raw HTML omitted --\>&quot;, where the only currently supported type is &quot;sha256&quot;. This is a hex-encoded SHA-256 hash of the Subject Public Key Info (SPKI)
+object in DER-encoded ASN.1. These hashes can be calculated using, for example, OpenSSL.
+   -->
+   <code>caCertHashes</code> 设置一组在基于令牌来发现服务时要验证的公钥指纹。
+发现过程中获得的根 CA 必须与这里的数值之一匹配。
+设置为空集合意味着禁用根 CA 指纹，因而可能是不安全的。
+每个哈希值的形式为 &quot;:&quot;，当前唯一支持的 type 为
+&quot;sha256&quot;。
+哈希值为主体公钥信息（Subject Public Key Info，SPKI）对象的 SHA-256
+哈希值（十六进制编码），形式为 DER 编码的 ASN.1。
+例如，这些哈希值可以使用 OpenSSL 来计算。
+</p>
+</td>
+</tr>
+<tr><td><code>unsafeSkipCAVerification</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   <p><code>unsafeSkipCAVerification</code> allows token-based discovery without CA verification via
+<code>caCertHashes</code>. This can weaken the security of kubeadm since other nodes can
+impersonate the control-plane.</p>
+   -->
+   <p><code>unsafeSkipCAVerification</code> 允许在使用基于令牌的服务发现时不使用
+<code>caCertHashes</code> 来执行 CA 验证。这会弱化 kubeadm 的安全性，
+因为其他节点可以伪装成控制面。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `BootstrapTokenString`     {#kubeadm-k8s-io-v1beta2-BootstrapTokenString}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [BootstrapToken](#kubeadm-k8s-io-v1beta2-BootstrapToken)
+
+<!--p>BootstrapTokenString is a token of the format abcdef.abcdef0123456789 that is used
+for both validation of the practically of the API server from a joining node's point
+of view and as an authentication method for the node in the bootstrap phase of
+&quot;kubeadm join&quot;. This token is and should be short-lived.</p-->
+<p>BootstrapTokenString 形式为 'abcdef.abcdef0123456789' 的一个令牌，
+用来从加入集群的节点角度验证 API 服务器的身份，或者 &quot;kubeadm join&quot;
+在节点启动引导是作为一种身份认证方法。
+此令牌的生命期是短暂的，并且应该如此。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>id</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--span class="text-muted">No description provided.</span-->
+   <span class="text-muted">无描述</span>
+</tr>
+<tr><td><code>secret</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--span class="text-muted">No description provided.</span-->
+   <span class="text-muted">无描述</span>
+</tr>
+</tbody>
+</table>
+
+## `ControlPlaneComponent`     {#kubeadm-k8s-io-v1beta2-ControlPlaneComponent}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ClusterConfiguration](#kubeadm-k8s-io-v1beta2-ClusterConfiguration)
+- [APIServer](#kubeadm-k8s-io-v1beta2-APIServer)
+
+<p>
+<!--
+ControlPlaneComponent holds settings common to control plane component of the cluster
+-->
+ControlPlaneComponent 中包含对集群中所有控制面组件都适用的设置。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>extraArgs</code> <B><!--[Required]-->[必需]</B><br/>
+<code>map[string]string</code>
+</td>
+<td>
+<p>
+   <!--
+   <code>extraArgs</code> is an extra set of flags to pass to a control plane component.
+A key in this map is the flag name as it appears on the command line except
+without leading dash(es).
+   -->
+   <code>extraArgs</code> 是要传递给控制面组件的一组额外的参数标志。
+此映射中的每个键对应命令行上使用的标志名称，只是没有其引导连字符。
+</p>
+</td>
+</tr>
+<tr><td><code>extraVolumes</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-HostPathMount"><code>[]HostPathMount</code></a>
+</td>
+<td>
+<p>
+   <!--
+   <code>extraVolumes</code> is an extra set of host volumes mounted to the control plane
+   component.
+   -->
+   <code>extraVolumes</code> 是一组额外被挂载到控制面组件中的主机卷。
+</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `DNS`     {#kubeadm-k8s-io-v1beta2-DNS}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ClusterConfiguration](#kubeadm-k8s-io-v1beta2-ClusterConfiguration)
+
+
+<p>
+<!--
+DNS defines the DNS addon that should be used in the cluster
+-->
+DNS 结构定义要在集群中使用的 DNS 插件。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>type</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-DNSAddOnType"><code>DNSAddOnType</code></a>
+</td>
+<td>
+   <!--
+   <p><code>type</code> defines the DNS add-on to be used.</p>
+   -->
+   <p><code>type</code> 定义要使用的 DNS 插件类型。</p>
+</td>
+</tr>
+<tr><td><code>ImageMeta</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-ImageMeta"><code>ImageMeta</code></a>
+</td>
+<td>
+<!--(Members of <code>ImageMeta</code> are embedded into this type.)-->
+（<code>ImageMeta</code> 的成员被内嵌到此类型中）。
+<p>
+   <!--
+   <code>imageMeta</code> allows to customize the image used for the DNS component.
+   -->
+   <code>imageMeta</code> 允许对 DNS 组件所使用的镜像作定制。
+</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `DNSAddOnType`     {#kubeadm-k8s-io-v1beta2-DNSAddOnType}
+
+<!--    
+(Alias of `string`)
+
+**Appears in:**
+-->
+（`string` 数据类型的别名）
+
+**出现在：**
+
+- [DNS](#kubeadm-k8s-io-v1beta2-DNS)
+
+<!--
+<p>DNSAddOnType defines string identifying DNS add-on types.</p>
+-->
+<p>DNSAddOnType 定义的是用来辨识 DNS 插件类型的字符串。</p>
+
+## `Discovery`     {#kubeadm-k8s-io-v1beta2-Discovery}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [JoinConfiguration](#kubeadm-k8s-io-v1beta2-JoinConfiguration)
+
+<p>
+<!--
+Discovery specifies the options for the kubelet to use during the TLS Bootstrap process.
+-->
+Discovery 设置 TLS 启动引导过程中 kubelet 要使用的配置选项。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>bootstrapToken</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-BootstrapTokenDiscovery"><code>BootstrapTokenDiscovery</code></a>
+</td>
+<td>
+<p>
+   <!--
+   <code>bootstrapToken</code> is used to set the options for bootstrap token based discovery.
+<code>bootstrapToken</code> and <code>file</code> are mutually exclusive.
+   -->
+   <code>bootstrapToken</code> 设置基于启动引导令牌的服务发现选项。
+<code>bootstrapToken</code> 与 <code>file</code> 是互斥的。
+</p>
+</td>
+</tr>
+<tr><td><code>file</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-FileDiscovery"><code>FileDiscovery</code></a>
+</td>
+<td>
+   <!--
+   <code>file</code> is used to specify a file or URL to a kubeconfig file from which to load
+cluster information.
+<code>bootstrapToken</code> and <code>file</code> are mutually exclusive.
+   -->
+   <code> 用来设置一个文件或者 URL 路径，指向一个 kubeconfig 文件；
+该配置文件中包含集群信息。
+<code>bootstrapToken</code> 与 <code>file</code> 是互斥的。
+</td>
+</tr>
+<tr><td><code>tlsBootstrapToken</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+<p>
+   <!--
+   <code>tlsBootstrapToken</code> is a token used for TLS bootstrapping.
+If <code>bootstrapToken</code> is set, this field is defaulted to <code>.bootstrapToken.token</code>,
+but can be overridden.
+If <code>file</code> is set, this field <strong>must be set</strong> in case the KubeConfigFile does not
+contain any other authentication information.
+   -->
+   <code>tlsBootstrapToken</code> 是 TLS 启动引导过程中使用的令牌。
+如果设置了 <code>bootstrapToken</code>，则此字段默认值为 <code>.bootstrapToken.token</code>，
+不过可以被重载。
+如果设置了 <code>file</code>，此字段<B>必须被设置</B>，以防 kubeconfig
+文件中不包含其他身份认证信息。
+</p>
+</td>
+</tr>
+<tr><td><code>timeout</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+<p>
+   <!--
+   <code>timeout</code> modifies the discovery timeout.
+   -->
+   <code>timeout</code> 用来修改发现过程的超时时长。
+</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Etcd`     {#kubeadm-k8s-io-v1beta2-Etcd}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ClusterConfiguration](#kubeadm-k8s-io-v1beta2-ClusterConfiguration)
+
+<p>
+<!--
+Etcd contains elements describing Etcd configuration.
+-->
+Etcd 包含用来描述 etcd 配置的元素。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>local</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-LocalEtcd"><code>LocalEtcd</code></a>
+</td>
+<td>
+<p>
+   <!--
+   <code>local</code> provides configuration knobs for configuring the local etcd instance.
+<code>local</code> and <code>external</code> are mutually exclusive.
+   -->
+   <code>local</code> 提供配置本地 etcd 实例的选项。<code>local</code> 和
+<code>external</code> 是互斥的。
+</p>
+</td>
+</tr>
+<tr><td><code>external</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-ExternalEtcd"><code>ExternalEtcd</code></a>
+</td>
+<td>
+<p>
+   <!--
+   <code>external</code> describes how to connect to an external etcd cluster.
+<code>local</code> and <code>external</code> are mutually exclusive.
+   -->
+   <code>external</code>描述如何连接到外部的 etcd 集群。
+<code>local</code>和<code>external</code>是互斥的。
+</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ExternalEtcd`     {#kubeadm-k8s-io-v1beta2-ExternalEtcd}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [Etcd](#kubeadm-k8s-io-v1beta2-Etcd)
+
+<p>
+<!--
+ExternalEtcd describes an external etcd cluster.
+Kubeadm has no knowledge of where certificate files live and they must be supplied.
+-->
+ExternalEtcd 描述外部 etcd 集群。
+kubeadm 不清楚证书文件的存放位置，因此必须单独提供证书信息。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>endpoints</code> <B><!--[Required]-->[必需]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--
+   <p><code>endpoints</code> of etcd members.</p>
+   -->
+   <p><code>endpoints</code> 包含一组 etcd 成员的列表。</p>
+</td>
+</tr>
+<tr><td><code>caFile</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>caFile</code> is an SSL Certificate Authority (CA) file used to secure etcd communication.
+Required if using a TLS connection.</p>
+   -->
+   <p><code>caFile</code> 是一个 SSL 证书机构（CA）文件，用来加密 etcd 通信。
+如果使用 TLS 连接，此字段为必需字段。</p>
+</td>
+</tr>
+<tr><td><code>certFile</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>certFile</code> is an SSL certification file used to secure etcd communication.
+Required if using a TLS connection.</p>
+   -->
+   <p><code>certFile</code> 是一个 SSL 证书文件，用来加密 etcd 通信。
+如果使用 TLS 连接，此字段为必需字段。</p>
+</td>
+</tr>
+<tr><td><code>keyFile</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>keyFile</code> is an SSL key file used to secure etcd communication.
+Required if using a TLS connection.</p>
+   -->
+   <p><code>keyFile</code> 是一个用来加密 etcd 通信的 SSL 秘钥文件。
+此字段在使用 TLS 连接时为必填字段。</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+
+## `FileDiscovery`     {#kubeadm-k8s-io-v1beta2-FileDiscovery}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [Discovery](#kubeadm-k8s-io-v1beta2-Discovery)
+
+<!--
+<p>FileDiscovery is used to specify a file or URL to a kubeconfig file from which to load
+cluster information.</p>
+-->
+<p>FileDiscovery 用来指定一个文件或者 URL 路径，指向一个 kubeconfig 文件；
+该配置文件可用来加载集群信息。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>kubeConfigPath</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>kubeConfigPath</code> is used to specify the actual file path or URL to the kubeconfig
+file from which to load cluster information.</p>
+   -->
+   <p><code>kubeConfigPath</code> 用来指定一个文件或者 URL 路径，指向一个 kubeconfig 文件；
+该配置文件可用来加载集群信息。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `HostPathMount`     {#kubeadm-k8s-io-v1beta2-HostPathMount}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ControlPlaneComponent](#kubeadm-k8s-io-v1beta2-ControlPlaneComponent)
+
+<!--p>HostPathMount contains elements describing volumes that are mounted from the host.</p-->
+<p>HostPathMount 包含从宿主节点挂载的卷的信息。</p-->
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>name</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p><code>name</code> of the volume inside the Pod template.</p-->
+   <p><code>name</code> 字段为卷在 Pod 模板中的名称。</p>
+</td>
+</tr>
+<tr><td><code>hostPath</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p><code>hostPath</code> is the path in the host that will be mounted inside the Pod.</p-->
+   <p><code>hostPath</code> 是要在 Pod 中挂载的卷在宿主系统上的路径。</p>
+</td>
+</tr>
+<tr><td><code>mountPath</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p><code>mountPath</code>is the path inside the Pod where hostPath volume will be mounted.</p-->
+   <p><code>mountPath</code> 是 hostPath 在 Pod 内挂载的路径。</p>
+</td>
+</tr>
+<tr><td><code>readOnly</code> <B><!--[Required]-->[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--p><code>readOnly</code> controls write access to the volume.</p-->
+   <p><code>readOnly</code> 控制卷的读写访问模式。</p>
+</td>
+</tr>
+<tr><td><code>pathType</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#hostpathtype-v1-core"><code>core/v1.HostPathType</code></a>
+</td>
+<td>
+   <!--p><code>pathType</code> is the type of the HostPath.</p-->
+   <p><code>pathType</code> 是 hostPath 的类型。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ImageMeta`     {#kubeadm-k8s-io-v1beta2-ImageMeta}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [DNS](#kubeadm-k8s-io-v1beta2-DNS)
+
+- [LocalEtcd](#kubeadm-k8s-io-v1beta2-LocalEtcd)
+
+<!--p>ImageMeta allows to customize the image used for components that are not
+originated from the Kubernetes/Kubernetes release process</p-->
+<p>ImageMeta 用来配置来源不是 Kubernetes/kubernetes
+发布过程的组件所使用的镜像。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>imageRepository</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p><code>imageRepository</code> sets the container registry to pull images from.
+If not set, the <code>imageRepository</code> defined in ClusterConfiguration will be used.</p-->
+   <p><code>imageRepository</code> 设置镜像拉取所用的容器仓库。
+若未设置，则使用 ClusterConfiguration 中的 <code>imageRepository</code>。</p>
+</td>
+</tr>
+<tr><td><code>imageTag</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p><code>imageTag</code> allows for specifying a tag for the image.
+In case this value is set, kubeadm does not change automatically the
+version of the above components during upgrades.</p-->
+   <p><code>imageTag</code> 允许用户设置镜像的标签。
+如果设置了此字段，则 kubeadm 不再在集群升级时自动更改组件的版本。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `JoinControlPlane`     {#kubeadm-k8s-io-v1beta2-JoinControlPlane}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [JoinConfiguration](#kubeadm-k8s-io-v1beta2-JoinConfiguration)
+
+<!--p>JoinControlPlane contains elements describing an additional control plane instance
+to be deployed on the joining node.</p-->
+<p>JoinControlPlane 包含在正在加入集群的节点上要部署的额外的控制面组件的设置。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>localAPIEndpoint</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-APIEndpoint"><code>APIEndpoint</code></a>
+</td>
+<td>
+   <!--
+   <p><code>localAPIEndpoint</code> represents the endpoint of the API server instance to be
+deployed on this node.</p>
+   -->
+   <p><code>localAPIEndpoint</code> 代表的是将在此节点上部署的 API 服务器实例的端点。</p>
+</td>
+</tr>
+<tr><td><code>certificateKey</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>certificateKey</code> is the key that is used for decryption of certificates after
+they are downloaded from the secret upon joining a new control plane node.
+The corresponding encryption key is in the InitConfiguration.</p>
+   -->
+   <p><code>certificateKey</code> 是在添加新的控制面节点时用来解密所下载的
+Secret 中的证书的秘钥。对应的加密秘钥在 InitConfiguration 结构中。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `LocalEtcd`     {#kubeadm-k8s-io-v1beta2-LocalEtcd}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [Etcd](#kubeadm-k8s-io-v1beta2-Etcd)
+
+<!--
+<p>LocalEtcd describes that kubeadm should run an etcd cluster locally</p>
+-->
+<p>LocalEtcd 描述的是 kubeadm 要使用的本地 etcd 集群。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>ImageMeta</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta2-ImageMeta"><code>ImageMeta</code></a>
+</td>
+<td>
+<!--
+(Members of <code>ImageMeta</code> are embedded into this type.)
+-->
+（<code>ImageMeta</code> 结构的字段被嵌入到此类型中。）
+   <!--
+   <p>ImageMeta allows to customize the container used for etcd.</p>
+   -->
+   <p>ImageMeta 允许用户为 etcd 定制要使用的容器。</p>
+</td>
+</tr>
+<tr><td><code>dataDir</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>dataDir</code> is the directory etcd will place its data.
+Defaults to &quot;/var/lib/etcd&quot;.</p>
+   -->
+   <p><code>dataDir</code> 是 etcd 用来存放数据的目录。
+默认值为  &quot;/var/lib/etcd&quot;。</p>
+</td>
+</tr>
+<tr><td><code>extraArgs</code> <B><!--[Required]-->[必需]</B><br/>
+<code>map[string]string</code>
+</td>
+<td>
+   <!--
+   <p><code>extraArgs</code> are extra arguments provided to the etcd binary when run
+inside a static pod. A key in this map is the flag name as it appears on the
+command line except without leading dash(es).</p>
+   -->
+   <p><code>extraArgs</code> 是为 etcd 可执行文件提供的额外参数，用于在静态
+pod 中运行 etcd。映射中的每一个键对应命令行上的一个标志参数，只是去掉了前置的连字符。</p>
+</td>
+</tr>
+<tr><td><code>serverCertSANs</code> <B><!--[Required]-->[必需]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--
+   <p>code>serverCertSANs</code> sets extra Subject Alternative Names (SANs) for the etcd
+server signing certificate.</p>
+   -->
+   <p><code>serverCertSANs</code> 为 etcd 服务器的签名证书设置额外的主体替代名
+（Subject Alternative Names，SAN）。</p>
+</td>
+</tr>
+<tr><td><code>peerCertSANs</code> <B><!--[Required]-->[必需]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--
+   <p><code>peerCertSANs</code> sets extra Subject Alternative Names (SANs) for the etcd peer
+signing certificate.</p>
+   -->
+   <p><code>peerCertSANs</code> 为 etcd 的对等端签名证书设置额外的主体替代名
+（Subject Alternative Names，SAN）。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Networking`     {#kubeadm-k8s-io-v1beta2-Networking}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ClusterConfiguration](#kubeadm-k8s-io-v1beta2-ClusterConfiguration)
+
+<!--
+<p>Networking contains elements describing cluster's networking configuration</p>
+-->
+<p>Networking 中包含描述集群网络配置的元素。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>serviceSubnet</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>serviceSubnet</code> is the subnet used by kubernetes Services. Defaults to &quot;10.96.0.0/12&quot;.</p>
+   -->
+   <p><code>serviceSubnet</code> 是 kubernetes 服务所使用的子网。
+默认值为 &quot;10.96.0.0/12&quot;。</p>
+</td>
+</tr>
+<tr><td><code>podSubnet</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p><code>podSubnet</code> is the subnet used by Pods.</p-->
+   <p><code>podSubnet</code> 为 Pod 所使用的子网。</p>
+</td>
+</tr>
+<tr><td><code>dnsDomain</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p><code>dnsDomain</code> is the DNS domain used by kubernetes Services. Defaults to &quot;cluster.local&quot;.</p-->
+   <p><code>dnsDomain</code> 是 kubernetes 服务所使用的 DNS 域名。
+默认值为 &quot;cluster.local&quot;。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `NodeRegistrationOptions`     {#kubeadm-k8s-io-v1beta2-NodeRegistrationOptions}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [InitConfiguration](#kubeadm-k8s-io-v1beta2-InitConfiguration)
+- [JoinConfiguration](#kubeadm-k8s-io-v1beta2-JoinConfiguration)
+
+<!--
+<p>NodeRegistrationOptions holds fields that relate to registering a new control-plane or
+node to the cluster, either via &quot;kubeadm init&quot; or &quot;kubeadm join&quot;</p>
+-->
+<p>NodeRegistrationOptions 包含向集群中注册新的控制面或节点所需要的信息；
+节点注册可能通过 &quot;kubeadm init&quot; 或 &quot;kubeadm join&quot; 完成。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>name</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>name</code> is the <code>.Metadata.Name</code> field of the Node API object that will be created in this
+<code>kubeadm init</code> or <code>kubeadm join</code> operation.
+This field is also used in the <code>CommonName</code> field of the kubelet's client certificate to
+the API server.
+Defaults to the hostname of the node if not provided.</p>
+   -->
+   <p><code>name</code> 是 Node API 对象的 <code>.Metadata.Name</code> 字段值；
+该 API 对象会在此 <code>kubeadm init</code> 或 <code>kubeadm join</code> 操作期间创建。
+在提交给 API 服务器的 kubelet 客户端证书中，此字段也用作其 <code>CommonName</code>。
+如果未指定则默认为节点的主机名。</p>
+</td>
+</tr>
+<tr><td><code>criSocket</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>criSocket</code> is used to retrieve container runtime information. This information will
+be annotated to the Node API object, for later re-use.</p>
+   -->
+   <p><code>criSocket</code> 用来读取容器运行时的信息。
+此信息会被以注解的方式添加到 Node API 对象之上，用于后续用途。</p>
+</td>
+</tr>
+<tr><td><code>taints</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#taint-v1-core"><code>[]core/v1.Taint</code></a>
+</td>
+<td>
+<!--
+   <p><code>taints</code> specifies the taints the Node API object should be registered with.
+If this field is unset, i.e. nil, in the <code>kubeadm init</code> process it will be defaulted with
+a control-plane taint for control-plane nodes. If you don't want to taint your control-plane
+node, set this field to an empty list, i.e. <code>taints: []</code>, in the YAML file. This field is
+solely used for Node registration.</p>
+-->
+   <p><code>taints</code> 设定 Node API 对象被注册时要附带的污点。
+若未设置此字段（即字段值为 null），在 <code>kubeadm init</code> 期间，默认为控制平面节点添加控制平面污点。
+如果你不想污染你的控制平面节点，可以将此字段设置为空列表（即 YAML 文件中的 <code>taints: []</code>），
+这个字段只用于节点注册。</p>
+</td>
+</tr>
+<tr><td><code>kubeletExtraArgs</code> <B><!--[Required]-->[必需]</B><br/>
+<code>map[string]string</code>
+</td>
+<td>
+   <!--
+   <p><code>kubeletExtraArgs</code> passes through extra arguments to the kubelet.
+The arguments here are passed to the kubelet command line via the environment file
+kubeadm writes at runtime for the kubelet to source.
+This overrides the generic base-level configuration in the 'kubelet-config-1.X' ConfigMap.
+Flags have higher priority when parsing. These values are local and specific to the node
+kubeadm is executing on. A key in this map is the flag name as it appears on the
+command line except without leading dash(es).</p>
+   -->
+   <p><code>kubeletExtraArgs</code> 用来向 kubelet 传递额外参数。
+这里的参数会通过 kubeadm 在运行时写入的、由 kubelet 来读取的环境文件来传递给 kubelet 命令行。
+这里的设置会覆盖掉 'kubelet-config-1.X' ConfigMap 中包含的一般性的配置。
+命令行标志在解析时优先级更高。
+这里的设置值仅作用于 kubeadm 运行所在的节点。
+映射中的每个键对应命令行中的一个标志参数，只是去掉了前置的连字符。</p>
+</td>
+</tr>
+<tr><td><code>ignorePreflightErrors</code> <B><!--[Required]-->[必需]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--
+   <p><code>ignorePreflightErrors</code> provides a list of pre-flight errors to be ignored when
+the current node is registered.</p>
+   -->
+   <p><code>ignorePreflightErrors</code> 提供一组在当前节点被注册时可以忽略掉的预检错误。</p>
+</td>
+</tr>
+</tbody>
+</table>
+  
diff --git a/content/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3.md b/content/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3.md
new file mode 100644
index 0000000000..b407a1d7ad
--- /dev/null
+++ b/content/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3.md
@@ -0,0 +1,1883 @@
+---
+title: kubeadm 配置 (v1beta3)
+content_type: tool-reference
+package: kubeadm.k8s.io/v1beta3
+auto_generated: true
+---
+
+<!--
+title: kubeadm Configuration (v1beta3)
+content_type: tool-reference
+package: kubeadm.k8s.io/v1beta3
+auto_generated: true
+-->
+
+<!--
+<h2>Overview</h2>
+<p>Package v1beta3 defines the v1beta3 version of the kubeadm configuration file format.
+This version improves on the v1beta2 format by fixing some minor issues and adding a few new fields.</p>
+<p>A list of changes since v1beta2:</p>
+-->
+<h2>概述</h2>
+
+<p>包 v1beta3 定义 kubeadm 配置文件格式的 v1beta3 版本。
+此版本改进了 v1beta2 的格式，修复了一些小问题并添加了一些新的字段。</p>
+
+<p>从 v1beta2 版本以来的变更列表：</p>
+
+<!--
+<ul>
+<li>The deprecated &quot;ClusterConfiguration.useHyperKubeImage&quot; field has been removed.
+Kubeadm no longer supports the hyperkube image.</li>
+<li>The &quot;ClusterConfiguration.DNS.Type&quot; field has been removed since CoreDNS is the only supported
+DNS server type by kubeadm.</li>
+<li>Include &quot;datapolicy&quot; tags on the fields that hold secrets.
+This would result in the field values to be omitted when API structures are printed with klog.</li>
+<li>Add &quot;InitConfiguration.SkipPhases&quot;, &quot;JoinConfiguration.SkipPhases&quot; to allow skipping
+a list of phases during kubeadm init/join command execution.</li>
+-->
+<ul>
+<li>已弃用的字段 &quot;ClusterConfiguration.useHyperKubeImage&quot; 现在被移除。
+  kubeadm 不再支持 hyperkube 镜像。</li>
+<li>字段 &quot;ClusterConfiguration.dns.type&quot; 已经被移除，因为 CoreDNS 是 kubeadm 所支持
+  的唯一 DNS 服务器类型。</li>
+<li>保存私密信息的字段现在包含了 &quot;datapolicy&quot; 标记（tag）。
+这一标记会导致 API 结构通过 klog 打印输出时，会忽略这些字段的值。</li>
+<li>添加了 &quot;InitConfiguration.skipPhases&quot;, &quot;JoinConfiguration.skipPhases&quot;，
+以允许在执行 kubeadm init/join 命令时略过某些阶段。</li>
+<!--
+<li>Add &quot;InitConfiguration.NodeRegistration.ImagePullPolicy&quot; and &quot;JoinConfiguration.NodeRegistration.ImagePullPolicy&quot;
+to allow specifying the images pull policy during kubeadm &quot;init&quot; and &quot;join&quot;.
+The value must be one of &quot;Always&quot;, &quot;Never&quot; or &quot;IfNotPresent&quot;.
+&quot;IfNotPresent&quot; is the default, which has been the existing behavior prior to this addition.</li>
+<li>Add &quot;InitConfiguration.Patches.Directory&quot;, &quot;JoinConfiguration.Patches.Directory&quot; to allow
+the user to configure a directory from which to take patches for components deployed by kubeadm.</li>
+<li>Move the BootstrapToken&lowast; API and related utilities out of the &quot;kubeadm&quot; API group to a new group
+&quot;bootstraptoken&quot;. The kubeadm API version v1beta3 no longer contains the BootstrapToken&lowast; structures.</li>
+-->
+<li>添加了 &quot;InitConfiguration.nodeRegistration.imagePullPolicy&quot; 和
+&quot;JoinConfiguration.nodeRegistration.imagePullPolicy&quot;
+以允许在 kubeadm init 和 kubeadm join 期间指定镜像拉取策略。
+这两个字段的值必须是 &quot;Always&quot;、&quot;Never&quot; 或 &quot;IfNotPresent&quot 之一。
+默认值是 &quot;IfNotPresent&quot;，也是添加此字段之前的默认行为。</li>
+<li>添加了 &quot;InitConfiguration.patches.directory&quot;,
+&quot;JoinConfiguration.patches.directory&quot; 以允许用户配置一个目录，
+kubeadm 将从该目录中提取组件的补丁包。</li>
+<li>BootstrapToken&lowast; API 和相关的工具被从 &quot;kubeadm&quot; API 组中移出，
+放到一个新的 &quot;bootstraptoken&quot; 组中。kubeadm API 版本 v1beta3 不再包含
+BootstrapToken&lowast; 结构。</li>
+</ul>
+<!--
+<p>Migration from old kubeadm config versions</p>
+<ul>
+<li>kubeadm v1.15.x and newer can be used to migrate from v1beta1 to v1beta2.</li>
+<li>kubeadm v1.22.x and newer no longer support v1beta1 and older APIs, but can be used to migrate v1beta2 to v1beta3.</li>
+</ul>
+-->
+<p>从老的 kubeadm 配置版本迁移：</p>
+<ul>
+<li>kubeadm v1.15.x 及更新的版本可以用来从 v1beta1 迁移到 v1beta2 版本；</li>
+<li>kubeadm v1.22.x 及更新的版本不再支持 v1beta1 和更老的 API，但可以用来
+从 v1beta2 迁移到 v1beta3。</li>
+</ul>
+
+<!--
+<h2>Basics</h2>
+<p>The preferred way to configure kubeadm is to pass an YAML configuration file with the <code>--config</code> option. Some of the
+configuration options defined in the kubeadm config file are also available as command line flags, but only
+the most common/simple use case are supported with this approach.</p>
+<p>A kubeadm config file could contain multiple configuration types separated using three dashes (<code>---</code>).</p>
+<p>kubeadm supports the following configuration types:</p>
+-->
+<h2>基础知识</h2>
+
+<p>配置 kubeadm 的推荐方式是使用 <code>--config</code> 选项向其传递一个 YAML 配置文件。
+kubeadm 配置文件中定义的某些配置选项也可以作为命令行标志来使用，不过这种
+方法所支持的都是一些最常见的、最简单的使用场景。</p>
+
+<p>一个 kubeadm 配置文件中可以包含多个配置类型，使用三根横线（<code>---</code>）作为分隔符。</p>
+
+<p>kubeadm 支持以下配置类型：</p>
+
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta3<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>InitConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta3<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>ClusterConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubelet.config.k8s.io/v1beta1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeletConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeproxy.config.k8s.io/v1alpha1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeProxyConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta3<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>JoinConfiguration<span style="color:#bbb">
+</span></pre>
+
+
+<!--
+<p>To print the defaults for &quot;init&quot; and &quot;join&quot; actions use the following commands:</p>
+<pre style="background-color:#fff">kubeadm config print init-defaults
+kubeadm config print join-defaults
+</pre>
+-->
+<p>要输出 &quot;init&quot; 和 &quot;join&quot; 动作的默认值，可以使用下面的命令：</p>
+
+<pre style="background-color:#fff">kubeadm config print init-defaults
+kubeadm config print join-defaults
+</pre>
+
+<!--
+<p>The list of configuration types that must be included in a configuration file depends by the action you are
+performing (<code>init</code> or <code>join</code>) and by the configuration options you are going to use (defaults or advanced
+customization).</p>
+<p>If some configuration types are not provided, or provided only partially, kubeadm will use default values; defaults
+provided by kubeadm includes also enforcing consistency of values across components when required (e.g.
+<code>--cluster-cidr</code> flag on controller manager and <code>clusterCIDR</code> on kube-proxy).</p>
+-->
+<p>配置文件中必须包含的配置类型列表取决于你在执行的动作（<code>init</code> 或 <code>join</code>），
+也取决于你要使用的配置选项（默认值或者高级定制）。</p>
+
+<p>如果某些配置类型没有提供，或者仅部分提供，kubeadm 将使用默认值；
+kubeadm 所提供的默认值在必要时也会保证其在多个组件之间是一致的
+（例如控制器管理器上的 <code>--cluster-cidr</code> 参数和 kube-proxy 上的
+<code>clusterCIDR</code>）。</p>
+
+<!--
+<p>Users are always allowed to override default values, with the only exception of a small subset of setting with
+relevance for security (e.g. enforce authorization-mode Node and RBAC on api server)</p>
+<p>If the user provides a configuration types that is not expected for the action you are performing, kubeadm will
+ignore those types and print a warning.</p>
+-->
+<p>用户总是可以重载默认配置值，唯一的例外是一小部分与安全性相关联的配置
+（例如在 API 服务器上强制实施 Node 和 RBAC 鉴权模式）。</p>
+
+<p>如果用户所提供的配置类型并非你所执行的操作需要的，kubeadm 会忽略这些配置类型
+并打印警告信息。</p>
+
+<!--
+<h2>Kubeadm init configuration types</h2>
+<p>When executing kubeadm init with the <code>--config</code> option, the following configuration types could be used:
+InitConfiguration, ClusterConfiguration, KubeProxyConfiguration, KubeletConfiguration, but only one
+between InitConfiguration and ClusterConfiguration is mandatory.</p>
+-->
+<h2>kubeadm init 配置类型</h2>
+
+<p>当带有 <code>--config</code> 选项来执行 kubeadm init 命令时，可以使用下面的配置类型：
+`InitConfiguration`、`ClusterConfiguration`、`KubeProxyConfiguration`、`KubeletConfiguration`，
+但 `InitConfiguration` 和 `ClusterConfiguration`
+之间只有一个是必须提供的。</p>
+
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta3<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>InitConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">bootstrapTokens</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">nodeRegistration</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span></pre>
+
+<!--
+<p>The InitConfiguration type should be used to configure runtime settings, that in case of kubeadm init
+are the configuration of the bootstrap token and all the setting which are specific to the node where
+kubeadm is executed, including:</p>
+<ul>
+<li>
+<p>NodeRegistration, that holds fields that relate to registering the new node to the cluster;
+use it to customize the node name, the CRI socket to use or any other settings that should apply to this
+node only (e.g. the node ip).</p>
+</li>
+<li>
+<p>LocalAPIEndpoint, that represents the endpoint of the instance of the API server to be deployed on this node;
+use it e.g. to customize the API server advertise address.</p>
+-->
+<p>类型 InitConfiguration 用来配置运行时设置，就 kubeadm init 命令而言，包括
+启动引导令牌以及所有与 kubeadm 所在节点相关的设置，包括：</p>
+
+<ul>
+<li>nodeRegistration：其中包含与向集群注册新节点相关的字段；使用这个类型来
+定制节点名称、要使用的 CRI 套接字或者其他仅对当前节点起作用的设置
+（例如节点 IP 地址）。</li>
+<li>localAPIEndpoint：代表的是要部署到此节点上的 API 服务器示例的端点；
+使用这个类型可以完成定制 API 服务器公告地址这类操作。</li>
+</ul>
+
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta3<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>ClusterConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">networking</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">etcd</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiServer</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>...<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraVolumes</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>...<span style="color:#bbb">
+</span><span style="color:#bbb"></span>...<span style="color:#bbb">
+</span></pre>
+
+<!--
+<p>The ClusterConfiguration type should be used to configure cluster-wide settings,
+including settings for:</p>
+<ul>
+<li>
+<p><code>networking</code> that holds configuration for the networking topology of the cluster; use it e.g. to customize
+Pod subnet or services subnet.</p>
+</li>
+-->
+<p>类型 `ClusterConfiguration` 用来定制集群范围的设置，具体包括以下设置：</p>
+
+<ul>
+<li><p><code>networking</code>：其中包含集群的网络拓扑配置。使用这一部分可以定制 Pod 的
+子网或者 Service 的子网。</p>
+</li>
+<!--
+<li>
+<p><code>etcd</code>: use it e.g. to customize the local etcd or to configure the API server
+for using an external etcd cluster.</p>
+</li>
+<li>
+<p>kube-apiserver, kube-scheduler, kube-controller-manager configurations; use it to customize control-plane
+components by adding customized setting or overriding kubeadm default settings.</p>
+-->
+<li>
+<p><code>etcd</code>：etcd 数据库的配置。例如使用这个部分可以定制本地 etcd 或者配置 API 服务器
+使用一个外部的 etcd 集群。</p>
+</li>
+<li>
+<p><code>kube-apiserver</code>、<code>kube-scheduler</code>、<code>kube-controller-manager</code>
+配置：这些部分可以通过添加定制的设置或者重载 kubeadm 的默认设置来定制控制面组件。</p>
+</li>
+</ul>
+
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeproxy.config.k8s.io/v1alpha1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeProxyConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span></pre>
+
+<!--
+<p>The KubeProxyConfiguration type should be used to change the configuration passed to kube-proxy instances
+deployed in the cluster. If this object is not provided or provided only partially, kubeadm applies defaults.</p>
+<p>See https://kubernetes.io/docs/reference/command-line-tools-reference/kube-proxy/ or
+https://godoc.org/k8s.io/kube-proxy/config/v1alpha1#KubeProxyConfiguration
+for kube-proxy official documentation.</p>
+-->
+<p>KubeProxyConfiguration 类型用来更改传递给在集群中部署的 kube-proxy 实例
+的配置。如果此对象没有提供，或者仅部分提供，kubeadm 使用默认值。</p>
+
+<p>关于 kube-proxy 的官方文档，可参阅
+https://kubernetes.io/zh/docs/reference/command-line-tools-reference/kube-proxy/
+或者 https://godoc.org/k8s.io/kube-proxy/config/v1alpha1#KubeProxyConfiguration。
+</p>
+
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubelet.config.k8s.io/v1beta1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeletConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span></pre>
+
+<!--
+<p>The KubeletConfiguration type should be used to change the configurations that will be passed to all kubelet instances
+deployed in the cluster. If this object is not provided or provided only partially, kubeadm applies defaults.</p>
+<p>See https://kubernetes.io/docs/reference/command-line-tools-reference/kubelet/ or
+https://godoc.org/k8s.io/kubelet/config/v1beta1#KubeletConfiguration
+for kubelet official documentation.</p>
+<p>Here is a fully populated example of a single YAML file containing multiple
+configuration types to be used during a <code>kubeadm init</code> run.</p>
+-->
+<p>KubeletConfiguration 类型用来更改传递给在集群中部署的 kubelet 实例的配置。
+如果此对象没有提供，或者仅部分提供，kubeadm 使用默认值。</p>
+
+<p>关于 kubelet 的官方文档，可参阅
+https://kubernetes.io/zh/docs/reference/command-line-tools-reference/kubelet/
+或者
+https://godoc.org/k8s.io/kubelet/config/v1beta1#KubeletConfiguration。</p>
+
+<p>下面是一个为执行 <code>kubeadm init</code> 而提供的、包含多个配置类型的单一 YAML 文件，
+其中填充了很多部分。</p>
+
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta3<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>InitConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">bootstrapTokens</span>:<span style="color:#bbb">
+</span><span style="color:#bbb"></span>- <span style="color:#000;font-weight:bold">token</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;9a08jv.c0izixklcxtmnze7&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">description</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;kubeadm bootstrap token&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">ttl</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;24h&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span>- <span style="color:#000;font-weight:bold">token</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;783bde.3f89s0fje9f38fhf&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">description</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;another bootstrap token&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">usages</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- authentication<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- signing<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">groups</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- system:bootstrappers:kubeadm:default-node-token<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">nodeRegistration</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">name</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;ec2-10-100-0-1&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">criSocket</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/var/run/dockershim.sock&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">taints</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- <span style="color:#000;font-weight:bold">key</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;kubeadmNode&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">value</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;someValue&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">effect</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;NoSchedule&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">kubeletExtraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">v</span>:<span style="color:#bbb"> </span><span style="color:#099">4</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">ignorePreflightErrors</span>:<span style="color:#bbb">
+</span><span style="color:#bbb"></span>- IsPrivilegedUser<span style="color:#bbb">
+</span><span style="color:#bbb">   </span><span style="color:#000;font-weight:bold">imagePullPolicy</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;IfNotPresent&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">localAPIEndpoint</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">advertiseAddress</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;10.100.0.1&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">bindPort</span>:<span style="color:#bbb"> </span><span style="color:#099">6443</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">certificateKey</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;e6a2eb8581237ab72a4f494f30285ec12a9694d750b9785706a83bfcbbbd2204&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"> </span><span style="color:#000;font-weight:bold">skipPhases</span>:<span style="color:#bbb">
+</span><span style="color:#bbb"> </span>- addon/kube-proxy<span style="color:#bbb">
+</span><span style="color:#bbb"></span>---<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta3<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>ClusterConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">etcd</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#998;font-style:italic"># one of local or external</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">local</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">imageRepository</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;k8s.gcr.io&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">imageTag</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;3.2.24&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">dataDir</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/var/lib/etcd&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">extraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">      </span><span style="color:#000;font-weight:bold">listen-client-urls</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;http://10.100.0.1:2379&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">serverCertSANs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>- <span style="color:#bbb"> </span><span style="color:#d14">&#34;ec2-10-100-0-1.compute-1.amazonaws.com&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">peerCertSANs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span>- <span style="color:#d14">&#34;10.100.0.1&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#998;font-style:italic"># external:</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#998;font-style:italic"># endpoints:</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#998;font-style:italic"># - &#34;10.100.0.1:2379&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#998;font-style:italic"># - &#34;10.100.0.2:2379&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#998;font-style:italic"># caFile: &#34;/etcd/kubernetes/pki/etcd/etcd-ca.crt&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#998;font-style:italic"># certFile: &#34;/etcd/kubernetes/pki/etcd/etcd.crt&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#998;font-style:italic"># keyFile: &#34;/etcd/kubernetes/pki/etcd/etcd.key&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">networking</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">serviceSubnet</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;10.96.0.0/16&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">podSubnet</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;10.244.0.0/24&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">dnsDomain</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;cluster.local&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kubernetesVersion</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;v1.21.0&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">controlPlaneEndpoint</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;10.100.0.1:6443&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiServer</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">authorization-mode</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;Node,RBAC&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraVolumes</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- <span style="color:#000;font-weight:bold">name</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;some-volume&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">hostPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">mountPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-pod-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">readOnly</span>:<span style="color:#bbb"> </span><span style="color:#000;font-weight:bold">false</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">pathType</span>:<span style="color:#bbb"> </span>File<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">certSANs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- <span style="color:#d14">&#34;10.100.1.1&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- <span style="color:#d14">&#34;ec2-10-100-0-1.compute-1.amazonaws.com&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">timeoutForControlPlane</span>:<span style="color:#bbb"> </span>4m0s<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">controllerManager</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">&#34;node-cidr-mask-size&#34;: </span><span style="color:#d14">&#34;20&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraVolumes</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- <span style="color:#000;font-weight:bold">name</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;some-volume&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">hostPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">mountPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-pod-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">readOnly</span>:<span style="color:#bbb"> </span><span style="color:#000;font-weight:bold">false</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">pathType</span>:<span style="color:#bbb"> </span>File<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">scheduler</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraArgs</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">address</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;10.100.0.1&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">  </span><span style="color:#000;font-weight:bold">extraVolumes</span>:<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>- <span style="color:#000;font-weight:bold">name</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;some-volume&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">hostPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">mountPath</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/some-pod-path&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">readOnly</span>:<span style="color:#bbb"> </span><span style="color:#000;font-weight:bold">false</span><span style="color:#bbb">
+</span><span style="color:#bbb">    </span><span style="color:#000;font-weight:bold">pathType</span>:<span style="color:#bbb"> </span>File<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">certificatesDir</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;/etc/kubernetes/pki&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">imageRepository</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;k8s.gcr.io&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">clusterName</span>:<span style="color:#bbb"> </span><span style="color:#d14">&#34;example-cluster&#34;</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span>---<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubelet.config.k8s.io/v1beta1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeletConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#998;font-style:italic"># kubelet specific options here</span><span style="color:#bbb">
+</span><span style="color:#bbb"></span>---<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeproxy.config.k8s.io/v1alpha1<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>KubeProxyConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#998;font-style:italic"># kube-proxy specific options here</span><span style="color:#bbb">
+</span></pre>
+
+<!--
+<h2>Kubeadm join configuration types</h2>
+<p>When executing <code>kubeadm join</code> with the <code>--config</code> option, the JoinConfiguration type should be provided.</p>
+-->
+<h2> kubeadm join 配置类型</h2>
+
+<p>当带有 <code>--config</code> 选项来执行 <code>kubeadm join</code> 操作时，
+需要提供 JoinConfiguration 类型。</p>
+
+<pre style="background-color:#fff"><span style="color:#000;font-weight:bold">apiVersion</span>:<span style="color:#bbb"> </span>kubeadm.k8s.io/v1beta3<span style="color:#bbb">
+</span><span style="color:#bbb"></span><span style="color:#000;font-weight:bold">kind</span>:<span style="color:#bbb"> </span>JoinConfiguration<span style="color:#bbb">
+</span><span style="color:#bbb">  </span>...<span style="color:#bbb">
+</span></pre>
+
+<!--
+<p>The JoinConfiguration type should be used to configure runtime settings, that in case of <code>kubeadm join</code>
+are the discovery method used for accessing the cluster info and all the setting which are specific
+to the node where kubeadm is executed, including:</p>
+<ul>
+<li>
+<p><code>nodeRegistration</code>, that holds fields that relate to registering the new node to the cluster;
+use it to customize the node name, the CRI socket to use or any other settings that should apply to this
+node only (e.g. the node ip).</p>
+</li>
+<li>
+<p><code>apiEndpoint</code>, that represents the endpoint of the instance of the API server to be eventually deployed on this node.</p>
+</li>
+</ul>
+-->
+<p>JoinConfiguration 类型用来配置运行时设置，就 <code>kubeadm join</code> 而言包括
+用来访问集群信息的发现方法，以及所有特定于 kubeadm 执行所在节点的设置，包括：</p>
+
+<ul>
+<li><code>nodeRegistration</code>：其中包含向集群注册新节点相关的配置字段；
+使用这个类型可以定制节点名称、用使用的 CRI 套接字和所有其他仅适用于当前节点的设置
+（例如节点 IP 地址）。</li>
+<li><code>apiEndpoint</code>：用来代表最终要部署到此节点上的 API
+服务器实例的端点。</li>
+</ul>
+
+<!--
+## Resource Types
+-->
+## 资源类型  {#resource-types}
+
+- [ClusterConfiguration](#kubeadm-k8s-io-v1beta3-ClusterConfiguration)
+- [InitConfiguration](#kubeadm-k8s-io-v1beta3-InitConfiguration)
+- [JoinConfiguration](#kubeadm-k8s-io-v1beta3-JoinConfiguration)
+
+## `ClusterConfiguration`     {#kubeadm-k8s-io-v1beta3-ClusterConfiguration}
+
+<!--
+<p>ClusterConfiguration contains cluster-wide configuration for a kubeadm cluster</p>
+-->
+<p>ClusterConfiguration 包含一个 kubadm 集群的集群范围配置信息。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubeadm.k8s.io/v1beta3</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>ClusterConfiguration</code></td></tr>
+
+<tr><td><code>etcd</code><br/>
+<a href="#kubeadm-k8s-io-v1beta3-Etcd"><code>Etcd</code></a>
+</td>
+<td>
+   <!--
+   <p><code>etcd</code> holds the configuration for etcd.</p>
+   -->
+   <p><code>etcd</code> 中包含 etcd 服务的配置。</p>
+</td>
+</tr>
+<tr><td><code>networking</code><br/>
+<a href="#kubeadm-k8s-io-v1beta3-Networking"><code>Networking</code></a>
+</td>
+<td>
+   <!--
+   <p><code>networking</code> holds configuration for the networking topology of the cluster.</p>
+   -->
+   <p><code>networking</code> 字段包含集群的网络拓扑配置。</p>
+</td>
+</tr>
+<tr><td><code>kubernetesVersion</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>kubernetesVersion</code> is the target version of the control plane.</p>
+   -->
+   <p><code>kubernetesVersion</code> 设置控制面的目标版本。</p>
+</td>
+</tr>
+<tr><td><code>controlPlaneEndpoint</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>controlPlaneEndpoint</code> sets a stable IP address or DNS name for the control plane.
+It can be a valid IP address or a RFC-1123 DNS subdomain, both with optional TCP port.
+In case the <code>controlPlaneEndpoint</code> is not specified, the <code>advertiseAddress</code> + <code>bindPort</code>
+are used; in case the <code>controlPlaneEndpoint</code> is specified but without a TCP port,
+the <code>bindPort</code> is used.
+Possible usages are:</p>
+   -->
+   <p><code>controlPlaneEndpoint</code> 为控制面设置一个稳定的 IP 地址或 DNS 名称。
+取值可以是一个合法的 IP 地址或者 RFC-1123 形式的 DNS 子域名，二者均可以带一个
+可选的 TCP 端口号。
+如果 <code>controlPlaneEndpoint</code> 未设置，则使用 <code>advertiseAddress<code>
++ <code>bindPort</code>。
+如果设置了 <code>controlPlaneEndpoint</code>，但未指定 TCP 端口号，则使用
+<code>bindPort</code>。</p>
+<p>可能的用法有：</p>
+<!--
+<ul>
+<li>In a cluster with more than one control plane instances, this field should be
+assigned the address of the external load balancer in front of the
+control plane instances.</li>
+<li>In environments with enforced node recycling, the <code>controlPlaneEndpoint</code> could
+be used for assigning a stable DNS to the control plane.</li>
+</ul>
+-->
+<ul>
+  <li>在一个包含不止一个控制面实例的集群中，该字段应该设置为放置在控制面
+实例之前的外部负载均衡器的地址。</li>
+  <li>在带有强制性节点回收的环境中，<code>controlPlaneEndpoint</code> 可以用来
+为控制面设置一个稳定的 DNS。</li>
+</ul>
+</td>
+</tr>
+<tr><td><code>apiServer</code><br/>
+<a href="#kubeadm-k8s-io-v1beta3-APIServer"><code>APIServer</code></a>
+</td>
+<td>
+   <!--
+   <p><code>apiServer</code> contains extra settings for the API server.</p>
+   -->
+   <p><code>apiServer</code> 包含 API 服务器的一些额外配置。</p>
+</td>
+</tr>
+<tr><td><code>controllerManager</code><br/>
+<a href="#kubeadm-k8s-io-v1beta3-ControlPlaneComponent"><code>ControlPlaneComponent</code></a>
+</td>
+<td>
+   <!--
+   <p><code>controllerManager</code> contains extra settings for the controller manager.</p>
+   -->
+   <p><code>controllerManager</code> 中包含控制器管理器的额外配置。</p>
+</td>
+</tr>
+<tr><td><code>scheduler</code><br/>
+<a href="#kubeadm-k8s-io-v1beta3-ControlPlaneComponent"><code>ControlPlaneComponent</code></a>
+</td>
+<td>
+   <!--
+   <p><code>scheduler</code> contains extra settings for the scheduler.</p>
+   -->
+   <p><code>scheduler</code> 包含调度器的额外配置。</p>
+</td>
+</tr>
+<tr><td><code>dns</code><br/>
+<a href="#kubeadm-k8s-io-v1beta3-DNS"><code>DNS</code></a>
+</td>
+<td>
+   <!--
+   <p><code>dns</code> defines the options for the DNS add-on installed in the cluster.</p>
+   -->
+   <p><code>dns</code> 定义在集群中安装的 DNS 插件的选项。</p>
+</td>
+</tr>
+<tr><td><code>certificatesDir</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>certificatesDir</code> specifies where to store or look for all required certificates.</p>
+   -->
+   <p><code>certificatesDir</code> 设置在何处存放或者查找所需证书。</p>
+</td>
+</tr>
+<tr><td><code>imageRepository</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>imageRepository</code> sets the container registry to pull images from.
+If empty, <code>k8s.gcr.io</code> will be used by default.
+In case of kubernetes version is a CI build (kubernetes version starts with <code>ci/</code>)
+<code>gcr.io/k8s-staging-ci-images</code> will be used as a default for control plane components
+and for kube-proxy, while <code>k8s.gcr.io</code> will be used for all the other images.</p>
+   -->
+   <p><code>imageRepository</code> 设置用来拉取镜像的容器仓库。
+如果此字段为空，默认使用 <code>k8s.gcr.io</code>。
+当 Kubernetes 用来执行 CI 构造时（Kubernetes 版本以 <code>ci/</code> 开头），
+将默认使用 <code>gcr.io/k8s-staging-ci-images</code> 来拉取控制面组件镜像，
+而使用 <code>k8s.gcr.io</code> 来拉取所有其他镜像。</p>
+</td>
+</tr>
+<tr><td><code>featureGates</code><br/>
+<code>map[string]bool</code>
+</td>
+<td>
+   <!--
+   <p><code>featureGates</code> contains the feature gates enabled by the user.</p>
+   -->
+   <p><code>featureGates</code> 包含用户所启用的特性门控。</p>
+</td>
+</tr>
+<tr><td><code>clusterName</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p>The cluster name.</p>
+   -->
+   <p>集群名称。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `InitConfiguration`     {#kubeadm-k8s-io-v1beta3-InitConfiguration}
+    
+<!--
+<p>InitConfiguration contains a list of elements that is specific &quot;kubeadm init&quot;-only runtime
+information.
+<code>kubeadm init</code>-only information. These fields are solely used the first time <code>kubeadm init</code> runs.
+After that, the information in the fields IS NOT uploaded to the <code>kubeadm-config</code> ConfigMap
+that is used by <code>kubeadm upgrade</code> for instance. These fields must be omitempty.</p>
+-->
+<p>InitConfiguration 包含一组特定于 &quot;kubeadm init&quot; 的运行时元素。
+这里的字段仅用于第一次运行 <code>kubeadm init</code> 命令。
+之后，此结构中的字段信息不会再被上传到 <code>kubeadm upgrade</code> 所要使用的
+<code>kubeadm-config</code> ConfigMap 中。
+这些字段必须设置 &quot;omitempty&quot;</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubeadm.k8s.io/v1beta3</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>InitConfiguration</code></td></tr>
+  
+<tr><td><code>bootstrapTokens</code><br/>
+<a href="#BootstrapToken"><code>[]BootstrapToken</code></a>
+</td>
+<td>
+   <!--
+   <p><code>bootstrapTokens</code> is respected at <code>kubeadm init</code> time and describes a set of Bootstrap Tokens to create.
+This information IS NOT uploaded to the kubeadm cluster configmap, partly because of its sensitive nature</p>
+   -->
+   <p><code>bootstrapTokens</code> 在 <code>kubeadm init</code> 执行时会被用到，
+其中描述了一组要创建的启动引导令牌（Bootstrap Tokens）。
+这里的信息不会被上传到 kubeadm 在集群中保存的 ConfigMap 中，部分原因是由于信息
+本身比较敏感。</p>
+</td>
+</tr>
+<tr><td><code>nodeRegistration</code><br/>
+<a href="#kubeadm-k8s-io-v1beta3-NodeRegistrationOptions"><code>NodeRegistrationOptions</code></a>
+</td>
+<td>
+   <!--
+   <p><code>nodeRegistration</code> holds fields that relate to registering the new control-plane node
+to the cluster.</p>
+   -->
+   <p><code>nodeRegistration</code> 中包含与向集群中注册新的控制面节点相关的字段。</p>
+</td>
+</tr>
+<tr><td><code>localAPIEndpoint</code><br/>
+<a href="#kubeadm-k8s-io-v1beta3-APIEndpoint"><code>APIEndpoint</code></a>
+</td>
+<td>
+   <!--
+   <p><code>localAPIEndpoint</code> represents the endpoint of the API server instance that's deployed on this
+control plane node. In HA setups, this differs from <code>ClusterConfiguration.controlPlaneEndpoint</code>
+in the sense that <code>controlPlaneEndpoint</code> is the global endpoint for the cluster, which then
+load-balances the requests to each individual API server.
+This configuration object lets you customize what IP/DNS name and port the local API server
+advertises it's accessible on. By default, kubeadm tries to auto-detect the IP of the default
+interface and use that, but in case that process fails you may set the desired value here.</p>
+   -->
+   <p><code>localAPIEndpoint</code> 所代表的的是在此控制面节点上要部署的 API 服务器
+的端点。在高可用（HA）配置中，此字段与 <code>ClusterConfiguration.controlPlaneEndpoint</code>
+的取值不同：后者代表的是整个集群的全局端点，该端点上的请求会被负载均衡到每个
+API 服务器。
+此配置对象允许你定制本地 API 服务器所公布的、可访问的 IP/DNS 名称和端口。
+默认情况下，kubeadm 会尝试自动检测默认接口上的 IP 并使用该地址。
+不过，如果这种检测失败，你可以在此字段中直接设置所期望的值。</p>
+</td>
+</tr>
+<tr><td><code>certificateKey</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>certificateKey</code> sets the key with which certificates and keys are encrypted prior to being
+uploaded in a Secret in the cluster during the <code>uploadcerts init</code> phase.</p>
+   -->
+   <p><code>certificateKey</code> 用来设置一个秘钥，该秘钥将对 <code>uploadcerts init</code>
+阶段上传到集群中某 Secret 内的秘钥和证书加密。</p>
+</td>
+</tr>
+<tr><td><code>skipPhases</code><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--
+   <p><code>skipPhases</code> is a list of phases to skip during command execution.
+The list of phases can be obtained with the <code>kubeadm init --help</code> command.
+The flag &quot;--skip-phases&quot; takes precedence over this field.</p>
+   -->
+   <p><code>skipPhases</code> 是命令执行过程中药略过的阶段（Phases）。
+通过执行命令 <code>kubeadm init --help</code> 可以获得阶段的列表。
+参数标志 &quot;--skip-phases&quot; 优先于此字段的设置。</p>
+</td>
+</tr>
+<tr><td><code>patches</code><br/>
+<a href="#kubeadm-k8s-io-v1beta3-Patches"><code>Patches</code></a>
+</td>
+<td>
+   <!--
+   <p><code>patches</code> contains options related to applying patches to components deployed by kubeadm during
+<code>kubeadm init</code>.</p>
+   -->
+   <p><code>patches</code> 包含与 <code>kubeadm init</code> 阶段 kubeadm 所部署
+的组件上要应用的补丁相关的信息。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `JoinConfiguration`     {#kubeadm-k8s-io-v1beta3-JoinConfiguration}
+
+<p>
+<!--
+JoinConfiguration contains elements describing a particular node.
+-->
+JoinConfiguration 包含描述特定节点的元素。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubeadm.k8s.io/v1beta3</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>JoinConfiguration</code></td></tr>
+
+<tr><td><code>nodeRegistration</code><br/>
+<a href="#kubeadm-k8s-io-v1beta3-NodeRegistrationOptions"><code>NodeRegistrationOptions</code></a>
+</td>
+<td>
+<p>
+   <!--
+   <code>nodeRegistration</code> holds fields that relate to registering the new
+control-plane node to the cluster.
+   -->
+   <code>nodeRegistration</code> 包含与向集群注册控制面节点相关的字段。
+</p>
+</td>
+</tr>
+<tr><td><code>caCertPath</code><br/>
+<code>string</code>
+</td>
+<td>
+<p>
+   <!--
+   <code>caCertPath</code> is the path to the SSL certificate authority used to secure
+comunications between a node and the control-plane.
+Defaults to &quot;/etc/kubernetes/pki/ca.crt&quot;.
+   -->
+   <code>caCertPath</code> 是指向 SSL 证书机构的路径，该证书包用来加密
+节点与控制面之间的通信。默认值为 &quot;/etc/kubernetes/pki/ca.crt&quot;。
+</p>
+</td>
+</tr>
+<tr><td><code>discovery</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta3-Discovery"><code>Discovery</code></a>
+</td>
+<td>
+<p>
+   <!--
+   <code>discovery</code> specifies the options for the kubelet to use during the TLS
+bootstrap process.
+   -->
+   <code>discovery</code> 设置 TLS 引导过程中 kubelet 要使用的选项。
+</p>
+</td>
+</tr>
+<tr><td><code>controlPlane</code><br/>
+<a href="#kubeadm-k8s-io-v1beta3-JoinControlPlane"><code>JoinControlPlane</code></a>
+</td>
+<td>
+<p>
+   <!--
+   <code>controlPlane</code> defines the additional control plane instance to be deployed
+on the joining node. If nil, no additional control plane instance will be deployed.
+   -->
+   <code>controlPlane</code> 定义要在正被加入到集群中的节点上部署的额外
+控制面实例。此字段为 null 时，不会再上面部署额外的控制面实例。
+</p>
+</td>
+</tr>
+<tr><td><code>skipPhases</code><br/>
+<code>[]string</code>
+</td>
+<td>
+<p>
+   <!--
+   <code>skipPhases</code> is a list of phases to skip during command execution.
+The list of phases can be obtained with the <code>kubeadm join --help</code> command.
+The flag <code>--skip-phases</code> takes precedence over this field.
+   -->
+   此字段包含在命令执行过程中要略过的阶段。通过 <code>kubeadm join --help</code>
+命令可以查看阶段的列表。参数 <code>--skip-phases</code> 优先于此字段。
+</p>
+</td>
+</tr>
+<tr><td><code>patches</code><br/>
+<a href="#kubeadm-k8s-io-v1beta3-Patches"><code>Patches</code></a>
+</td>
+<td>
+<p>
+   <!--
+   <code>patches</code> contains options related to applying patches to components deployed
+by kubeadm during <code>kubeadm join</code>.
+   -->
+   此字段包含 <code>kubeadm join</code> 阶段向 kubeadm 所部署的组件打补丁
+的选项。
+</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `APIEndpoint`     {#kubeadm-k8s-io-v1beta3-APIEndpoint}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [InitConfiguration](#kubeadm-k8s-io-v1beta3-InitConfiguration)
+
+- [JoinControlPlane](#kubeadm-k8s-io-v1beta3-JoinControlPlane)
+
+<p>
+<!--
+APIEndpoint struct contains elements of API server instance deployed on a node.
+-->
+APIEndpoint 结构包含某节点上部署的 API 服务器的配置元素。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>advertiseAddress</code><br/>
+<code>string</code>
+</td>
+<td>
+<p>
+   <!--
+   <code>advertiseAddress</code> sets the IP address for the API server to advertise.
+   -->
+   <code>advertiseAddress</code> 设置 API 服务器要公布的 IP 地址。
+</p>
+</td>
+</tr>
+<tr><td><code>bindPort</code><br/>
+<code>int32</code>
+</td>
+<td>
+<p>
+   <!--
+   <code>bindPort</code> sets the secure port for the API Server to bind to.
+Defaults to 6443.
+   -->
+   <code>bindPort</code> 设置 API 服务器要绑定到的安全端口。默认值为 6443。
+</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `APIServer`     {#kubeadm-k8s-io-v1beta3-APIServer}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ClusterConfiguration](#kubeadm-k8s-io-v1beta3-ClusterConfiguration)
+
+<p>
+<!--
+APIServer holds settings necessary for API server deployments in the cluster
+-->
+APIServer 包含集群中 API 服务器部署所必需的设置。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>ControlPlaneComponent</code> <B><!--<!--[Required]-->[必需]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta3-ControlPlaneComponent"><code>ControlPlaneComponent</code></a>
+</td>
+<td>（<code>ControlPlaneComponent</code> 结构的字段被嵌入到此类型中）
+   <span class="text-muted">无描述.</span>
+</td>
+</tr>
+<tr><td><code>certSANs</code><br/>
+<code>[]string</code>
+</td>
+<td>
+<p>
+   <!--
+   <code>certSANs</code> sets extra Subject Alternative Names (SANs) for the API Server signing certificate.
+   -->
+   <code>certSANs</code> 设置 API 服务器签署证书所用的额外主题替代名（Subject Alternative Name，SAN）。
+</p>
+</td>
+</tr>
+<tr><td><code>timeoutForControlPlane</code><br/>
+<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+<p>
+   <!--
+   <code>timeoutForControlPlane</code> controls the timeout that we wait for API server to appear.
+   -->
+   <code>timeoutForControlPlane</code> 用来控制我们等待 API 服务器开始运行的超时时间。
+</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `BootstrapTokenDiscovery`     {#kubeadm-k8s-io-v1beta3-BootstrapTokenDiscovery}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [Discovery](#kubeadm-k8s-io-v1beta3-Discovery)
+
+<p>
+<!--
+BootstrapTokenDiscovery is used to set the options for bootstrap token based discovery
+-->
+BootstrapTokenDiscovery 用来设置基于引导令牌的服务发现选项。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>token</code> <B><!--<!--[Required]-->[必需]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+<p>
+   <!--
+   <code>token</code> is a token used to validate cluster information fetched from the control-plane.
+   -->
+   <code>token</code> 用来验证从控制面获得的集群信息。
+</p>
+</td>
+</tr>
+<tr><td><code>apiServerEndpoint</code><br/>
+<code>string</code>
+</td>
+<td>
+<p>
+   <!--
+   <code>apiServerEndpoint</p> is an IP or domain name to the API server from which
+information will be fetched.
+   -->
+   <code>apiServerEndpoint</p> 为 API 服务器的 IP 地址或者域名，从该端点可以获得集群信息。
+</p>
+</td>
+</tr>
+<tr><td><code>caCertHashes</code><br/>
+<code>[]string</code>
+</td>
+<td>
+<p>
+   <!--
+   <code>caCertHashes</code> specifies a set of public key pins to verify when token-based discovery
+is used. The root CA found during discovery must match one of these values.
+Specifying an empty set disables root CA pinning, which can be unsafe.
+Each hash is specified as &quot;&lt;type&gt;:&lt;value&gt;&quot;, where the only currently supported type is
+&quot;sha256&quot;. This is a hex-encoded SHA-256 hash of the Subject Public Key Info (SPKI)
+object in DER-encoded ASN.1. These hashes can be calculated using, for example, OpenSSL.
+   -->
+   <code>caCertHashes</code> 设置一组在基于令牌来发现服务时要验证的公钥指纹。
+发现过程中获得的根 CA 必须与这里的数值之一匹配。
+设置为空集合意味着禁用根 CA 指纹，因而可能是不安全的。
+每个哈希值的形式为 "&lt;type&gt;:&lt;value&gt;"，当前唯一支持的 type 为
+&quot;sha256&quot;。
+哈希值为主体公钥信息（Subject Public Key Info，SPKI）对象的 SHA-256
+哈希值（十六进制编码），形式为 DER 编码的 ASN.1。
+例如，这些哈希值可以使用 OpenSSL 来计算。
+</p>
+</td>
+</tr>
+<tr><td><code>unsafeSkipCAVerification</code><br/>
+<code>bool</code>
+</td>
+<td>
+<p>
+   <!--
+   <code>unsafeSkipCAVerification</code> allows token-based discovery without CA verification
+via <code>caCertHashes</code>. This can weaken the security of kubeadm since other nodes can
+impersonate the control-plane.
+   -->
+   <code>unsafeSkipCAVerification</code> 允许在使用基于令牌的服务发现时
+不使用 <code>caCertHashes</code> 来执行 CA 验证。这会弱化 kubeadm 的安全性，
+因为其他节点可以伪装成控制面。
+</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ControlPlaneComponent`     {#kubeadm-k8s-io-v1beta3-ControlPlaneComponent}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ClusterConfiguration](#kubeadm-k8s-io-v1beta3-ClusterConfiguration)
+- [APIServer](#kubeadm-k8s-io-v1beta3-APIServer)
+
+<!--
+ControlPlaneComponent holds settings common to control plane component of the cluster
+-->
+<p>ControlPlaneComponent 中包含对集群中所有控制面组件都适用的设置。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>extraArgs</code><br/>
+<code>map[string]string</code>
+</td>
+<td>
+<p>
+   <!--
+   <code>extraArgs</code> is an extra set of flags to pass to the control plane component.
+A key in this map is the flag name as it appears on the command line except
+without leading dash(es).
+   -->
+   <code>extraArgs</code> 是要传递给控制面组件的一组额外的参数标志。
+此映射中的每个键对应命令行上使用的标志名称，只是没有其引导连字符。
+</p>
+</td>
+</tr>
+<tr><td><code>extraVolumes</code><br/>
+<a href="#kubeadm-k8s-io-v1beta3-HostPathMount"><code>[]HostPathMount</code></a>
+</td>
+<td>
+<p>
+   <!--
+   <code>extraVolumes</code> is an extra set of host volumes, mounted to the control plane component.
+   -->
+   <code>extraVolumes</code> 是一组额外的主机卷，需要挂载到控制面组件中。
+</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `DNS`     {#kubeadm-k8s-io-v1beta3-DNS}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ClusterConfiguration](#kubeadm-k8s-io-v1beta3-ClusterConfiguration)
+
+<!--
+DNS defines the DNS addon that should be used in the cluster
+-->
+<p>DNS 结构定义要在集群中使用的 DNS 插件。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>ImageMeta</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta3-ImageMeta"><code>ImageMeta</code></a>
+</td>
+<td>
+<!--
+(Members of <code>ImageMeta</code> are embedded into this type.)
+-->
+（<code>ImageMeta</code> 的成员被内嵌到此类型中）。
+<p>
+   <!--
+   <code>imageMeta</code> allows to customize the image used for the DNS component.
+   -->
+   <code>imageMeta</code> 允许对 DNS 组件所使用的的镜像作定制。
+</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Discovery`     {#kubeadm-k8s-io-v1beta3-Discovery}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [JoinConfiguration](#kubeadm-k8s-io-v1beta3-JoinConfiguration)
+
+<!--
+Discovery specifies the options for the kubelet to use during the TLS Bootstrap process.
+-->
+<p>Discovery 设置 TLS 启动引导过程中 kubelet 要使用的配置选项。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>bootstrapToken</code><br/>
+<a href="#kubeadm-k8s-io-v1beta3-BootstrapTokenDiscovery"><code>BootstrapTokenDiscovery</code></a>
+</td>
+<td>
+<p>
+   <!--
+   <code>bootstrapToken</code> is used to set the options for bootstrap token based discovery.
+<code>bootstrapToken</code> and <code>file</code> are mutually exclusive.
+   -->
+   <code>bootstrapToken</code> 设置基于启动引导令牌的服务发现选项。
+<code>bootstrapToken</code> 与 <code>file</code> 是互斥的。
+</p>
+</td>
+</tr>
+<tr><td><code>file</code><br/>
+<a href="#kubeadm-k8s-io-v1beta3-FileDiscovery"><code>FileDiscovery</code></a>
+</td>
+<td>
+<p>
+   <!--
+   <code>file</code> is used to specify a file or URL to a kubeconfig file from which to load
+cluster information.
+<code>bootstrapToken</code> and <code>file</code> are mutually exclusive.
+   -->
+   <code> 用来设置一个文件或者 URL 路径，指向一个 kubeconfig 文件；该配置文件
+中包含集群信息。
+<code>bootstrapToken</code> 与 <code>file</code> 是互斥的。
+</p>
+</td>
+</tr>
+<tr><td><code>tlsBootstrapToken</code><br/>
+<code>string</code>
+</td>
+<td>
+<p>
+   <!--
+   <code>tlsBootstrapToken</code> is a token used for TLS bootstrapping.
+If <code>bootstrapToken</code> is set, this field is defaulted to <code>.bootstrapToken.token</code>, but
+can be overridden. If <code>file<code> is set, this field &lowast;&lowast;must be set&lowast;&lowast; in case the KubeConfigFile
+does not contain any other authentication information
+   -->
+   <code>tlsBootstrapToken</code> 是 TLS 启动引导过程中使用的令牌。
+如果设置了 <code>bootstrapToken</code>，则此字段默认值为 <code>.bootstrapToken.token</code>，不过可以被重载。
+如果设置了 <code>file</code>，此字段<B>必须被设置</B>，以防 kubeconfig 文件
+中不包含其他身份认证信息。
+</p>
+</td>
+</tr>
+<tr><td><code>timeout</code><br/>
+<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+<p>
+   <!--
+   <code>timeout</code> modifies the discovery timeout.
+   -->
+   <code>timeout</code> 用来修改发现过程的超时时长。
+</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Etcd`     {#kubeadm-k8s-io-v1beta3-Etcd}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ClusterConfiguration](#kubeadm-k8s-io-v1beta3-ClusterConfiguration)
+
+<!--
+Etcd contains elements describing Etcd configuration.
+-->
+<p>Etcd 包含用来描述 etcd 配置的元素。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>local</code><br/>
+<a href="#kubeadm-k8s-io-v1beta3-LocalEtcd"><code>LocalEtcd</code></a>
+</td>
+<td>
+<p>
+   <!--
+   <code>local</code> provides configuration knobs for configuring the local etcd instance.
+<code>local</code> and <code>external</code> are mutually exclusive.
+   -->
+   <code>local</code> 提供配置本地 etcd 实例的选项。<code>local</code> 和
+<code>external</code> 是互斥的。
+</p>
+</td>
+</tr>
+<tr><td><code>external</code><br/>
+<a href="#kubeadm-k8s-io-v1beta3-ExternalEtcd"><code>ExternalEtcd</code></a>
+</td>
+<td>
+<p>
+   <!--
+   <code>external</code> describes how to connect to an external etcd cluster.
+<code>local</code> and <code>external</code> are mutually exclusive.
+   -->
+   <code>external</code> 描述如何连接到外部的 etcd 集群。
+<code>external</code> 是互斥的。
+</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ExternalEtcd`     {#kubeadm-k8s-io-v1beta3-ExternalEtcd}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [Etcd](#kubeadm-k8s-io-v1beta3-Etcd)
+
+<!--
+ExternalEtcd describes an external etcd cluster.
+Kubeadm has no knowledge of where certificate files live and they must be supplied.
+-->
+<p>ExternalEtcd 描述外部 etcd 集群。
+kubeadm 不清楚证书文件的存放位置，因此必须单独提供证书信息。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>endpoints</code> <B><!--[Required]-->[必需]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--
+   <p><code>endpoints</code> contains the list of etcd members.</p>
+   -->
+   <p><code>endpoints</code> 包含一组 etcd 成员的列表。</p>
+</td>
+</tr>
+<tr><td><code>caFile</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>caFile</code> is an SSL Certificate Authority (CA) file used to secure etcd communication.
+Required if using a TLS connection.</p>
+   -->
+   <p><code>caFile</code> 是一个 SSL 证书机构（CA）文件，用来加密 etcd 通信。
+如果使用 TLS 连接，此字段为必需字段。</p>
+</td>
+</tr>
+<tr><td><code>certFile</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>certFile</code> is an SSL certification file used to secure etcd communication.
+Required if using a TLS connection.</p>
+   -->
+   <p><code>certFile</code> 是一个 SSL 证书文件，用来加密 etcd 通信。
+如果使用 TLS 连接，此字段为必需字段。</p>
+</td>
+</tr>
+<tr><td><code>keyFile</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>keyFile</code> is an SSL key file used to secure etcd communication.
+Required if using a TLS connection.</p>
+   -->
+   <p><code>keyFile</code> 是一个用来加密 etcd 通信的 SSL 秘钥文件。
+此字段在使用 TLS 连接时为必填字段。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `FileDiscovery`     {#kubeadm-k8s-io-v1beta3-FileDiscovery}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [Discovery](#kubeadm-k8s-io-v1beta3-Discovery)
+
+<!--
+<p>FileDiscovery is used to specify a file or URL to a kubeconfig file from which to load
+cluster information.</p>
+-->
+<p>FileDiscovery 用来指定一个文件或者 URL 路径，指向一个 kubeconfig 文件；该配置文件
+可用来加载集群信息。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>kubeConfigPath</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p><code>kubeConfigPath</code> is used to specify the actual file path or URL to the kubeconfig
+file from which to load cluster information.</p>
+   -->
+   <p><code>kubeConfigPath</code> 用来指定一个文件或者 URL 路径，指向一个 kubeconfig 文件；
+该配置文件可用来加载集群信息。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `HostPathMount`     {#kubeadm-k8s-io-v1beta3-HostPathMount}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ControlPlaneComponent](#kubeadm-k8s-io-v1beta3-ControlPlaneComponent)
+
+<!--p>HostPathMount contains elements describing volumes that are mounted from the host.</p-->
+<p>HostPathMount 包含从宿主节点挂载的卷的信息。</p-->
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>name</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p><code>name</code> is the name of the volume inside the Pod template.</p-->
+   <p><code>name</code> 为卷在 Pod 模板中的名称。</p>
+</td>
+</tr>
+<tr><td><code>hostPath</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p><code>hostPath</code> is the path in the host that will be mounted inside the Pod.</p-->
+   <p><code>hostPath</code> 是要在 Pod 中挂载的卷在宿主系统上的路径。</p>
+</td>
+</tr>
+<tr><td><code>mountPath</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p><code>mountPath</code> is the path inside the Pod where <code>hostPath</code> will be mounted.</p-->
+   <p><code>mountPath</code> 是 <code>hostPath</code> 在 Pod 内挂载的路径。</p>
+</td>
+</tr>
+<tr><td><code>readOnly</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--p><code>readOnly</code> controls write access to the volume.</p-->
+   <p><code>readOnly</code> 控制卷的读写访问模式。</p>
+</td>
+</tr>
+<tr><td><code>pathType</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#hostpathtype-v1-core"><code>core/v1.HostPathType</code></a>
+</td>
+<td>
+   <!--p><code>pathType</code> is the type of the <code>hostPath</code>.</p-->
+   <p><code>pathType</code> 是 <code>hostPath</code> 的类型。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ImageMeta`     {#kubeadm-k8s-io-v1beta3-ImageMeta}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [DNS](#kubeadm-k8s-io-v1beta3-DNS)
+- [LocalEtcd](#kubeadm-k8s-io-v1beta3-LocalEtcd)
+
+<!--p>ImageMeta allows to customize the image used for components that are not
+originated from the Kubernetes/Kubernetes release process</p-->
+<p>ImageMeta 用来配置来源不是 Kubernetes/kubernetes
+发布过程的组件所使用的镜像。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>imageRepository</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p><code>imageRepository</code> sets the container registry to pull images from.
+If not set, the <code>imageRepository</code> defined in ClusterConfiguration will be used instead.</p-->
+   <p><code>imageRepository</code> 设置镜像拉取所用的容器仓库。
+若未设置，则使用 ClusterConfiguration 中的 <code>imageRepository</code>。</p>
+</td>
+</tr>
+<tr><td><code>imageTag</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p><code>imageTag</code> allows to specify a tag for the image.
+In case this value is set, kubeadm does not change automatically the version of
+the above components during upgrades.</p-->
+   <p><code>imageTag</code> 允许用户设置镜像的标签。
+如果设置了此字段，则 kubeadm 不再在集群升级时自动更改组件的版本。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `JoinControlPlane`     {#kubeadm-k8s-io-v1beta3-JoinControlPlane}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [JoinConfiguration](#kubeadm-k8s-io-v1beta3-JoinConfiguration)
+
+<!--p>JoinControlPlane contains elements describing an additional control plane instance
+to be deployed on the joining node.</p-->
+<p>JoinControlPlane 包含在正在加入集群的节点上要部署的额外的控制面组件的
+设置。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>localAPIEndpoint</code><br/>
+<a href="#kubeadm-k8s-io-v1beta3-APIEndpoint"><code>APIEndpoint</code></a>
+</td>
+<td>
+   <!--p><code>localAPIEndpoint</code> represents the endpoint of the API server instance to be
+deployed on this node.</p-->
+   <p><code>localAPIEndpoint</code> 代表的是将在此节点上部署的 API 服务器实例
+的端点。</p>
+</td>
+</tr>
+<tr><td><code>certificateKey</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p><code>certificateKey</code> is the key that is used for decryption of certificates after
+they are downloaded from the secret upon joining a new control plane node.
+The corresponding encryption key is in the InitConfiguration.</p-->
+   <p><code>certificateKey</code> 是在添加新的控制面节点时用来解密所下载的
+Secret 中的证书的秘钥。对应的加密秘钥在 InitConfiguration 结构中。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `LocalEtcd`     {#kubeadm-k8s-io-v1beta3-LocalEtcd}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [Etcd](#kubeadm-k8s-io-v1beta3-Etcd)
+
+<!--p>LocalEtcd describes that kubeadm should run an etcd cluster locally</p-->
+<p>LocalEtcd 描述的是 kubeadm 要使用的本地 etcd 集群。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>ImageMeta</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubeadm-k8s-io-v1beta3-ImageMeta"><code>ImageMeta</code></a>
+</td>
+<td>
+<!--
+(Members of <code>ImageMeta</code> are embedded into this type.)
+-->
+（<code>ImageMeta</code> 结构的字段被嵌入到此类型中。）
+   <!--p>ImageMeta allows to customize the container used for etcd.</p-->
+   <p>ImageMeta 允许用户为 etcd 定制要使用的容器。</p>
+</td>
+</tr>
+<tr><td><code>dataDir</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p><code>dataDir</code> is the directory etcd will place its data.
+Defaults to &quot;/var/lib/etcd&quot;.</p-->
+   <p><code>dataDir</code> 是 etcd 用来存放数据的目录。
+默认值为  &quot;/var/lib/etcd&quot;。</p>
+</td>
+</tr>
+<tr><td><code>extraArgs</code><br/>
+<code>map[string]string</code>
+</td>
+<td>
+   <!--p><code>extraArgs</code> are extra arguments provided to the etcd binary when run
+inside a static Pod. A key in this map is the flag name as it appears on the
+command line except without leading dash(es).</p-->
+   <p><code>extraArgs</code> 是为 etcd 可执行文件提供的额外参数，用于在静态
+Pod 中运行 etcd。映射中的每一个键对应命令行上的一个标志参数，只是去掉了
+前置的连字符。</p>
+</td>
+</tr>
+<tr><td><code>serverCertSANs</code><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--p><code>serverCertSANs</code> sets extra Subject Alternative Names (SANs) for the etcd
+server signing certificate.</p-->
+   <p><code>serverCertSANs</code> 为 etcd 服务器的签名证书设置额外的
+主体替代名（Subject Alternative Names，SAN）。</p>
+</td>
+</tr>
+<tr><td><code>peerCertSANs</code><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--p><code>peerCertSANs</code> sets extra Subject Alternative Names (SANs) for the etcd peer
+signing certificate.</p-->
+   <p><code>peerCertSANs</code> 为 etcd 的对等端签名证书设置额外的
+主体替代名（Subject Alternative Names，SAN）。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Networking`     {#kubeadm-k8s-io-v1beta3-Networking}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [ClusterConfiguration](#kubeadm-k8s-io-v1beta3-ClusterConfiguration)
+
+<!--p>Networking contains elements describing cluster's networking configuration</p-->
+<p>Networking 中包含描述集群网络配置的元素。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>serviceSubnet</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p><code>serviceSubnet</code> is the subnet used by Kubernetes Services. Defaults to &quot;10.96.0.0/12&quot;.</p-->
+   <p><code>serviceSubnet</code> 是 Kubernetes 服务所使用的的子网。
+默认值为 &quot;10.96.0.0/12&quot;。</p>
+</td>
+</tr>
+<tr><td><code>podSubnet</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p><code>podSubnet</code> is the subnet used by Pods.</p-->
+   <p><code>podSubnet</code> 为 Pod 所使用的子网。</p>
+</td>
+</tr>
+<tr><td><code>dnsDomain</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p><code>dnsDomain</code> is the DNS domain used by Kubernetes Services. Defaults to &quot;cluster.local&quot;.</p-->
+   <p><code>dnsDomain</code> 是 Kubernetes 服务所使用的的 DNS 域名。
+默认值为 &quot;cluster.local&quot;。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `NodeRegistrationOptions`     {#kubeadm-k8s-io-v1beta3-NodeRegistrationOptions}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [InitConfiguration](#kubeadm-k8s-io-v1beta3-InitConfiguration)
+- [JoinConfiguration](#kubeadm-k8s-io-v1beta3-JoinConfiguration)
+
+<!--p>NodeRegistrationOptions holds fields that relate to registering a new control-plane or
+node to the cluster, either via &quot;kubeadm init&quot; or &quot;kubeadm join&quot;</p-->
+<p>NodeRegistrationOptions 包含向集群中注册新的控制面或节点所需要的信息；
+节点注册可能通过 &quot;kubeadm init&quot; 或 &quot;kubeadm join&quot; 完成。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>name</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p><code>name</code> is the <code>.metadata.name</code> field of the Node API object that will be created in this
+<code>kubeadm init</code> or <code>kubeadm join</code> operation.
+This field is also used in the <code>CommonName</code> field of the kubelet's client certificate to
+the API server.
+Defaults to the hostname of the node if not provided.</p-->
+   <p><code>name</code> 是 Node API 对象的 <code>.metadata.name</code> 字段值；
+该 API 对象会在此 <code>kubeadm init</code> 或 <code>kubeadm join</code> 操作期间创建。
+在提交给 API 服务器的 kubelet 客户端证书中，此字段也用作其 <code>CommonName</code>。
+如果未指定则默认为节点的主机名。</p>
+</td>
+</tr>
+<tr><td><code>criSocket</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p><code>criSocket</code> is used to retrieve container runtime info.
+This information will be annotated to the Node API object, for later re-use</p-->
+   <p><code>criSocket</code> 用来读取容器运行时的信息。
+此信息会被以注解的方式添加到 Node API 对象至上，用于后续用途。</p>
+</td>
+</tr>
+<tr><td><code>taints</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#taint-v1-core"><code>[]core/v1.Taint</code></a>
+</td>
+<td>
+<!--
+   <p><code>taints</code> specifies the taints the Node API object should be registered with.
+If this field is unset, i.e. nil, in the <code>kubeadm init</code> process it will be defaulted
+with a control-plane taint for control-plane nodes.
+If you don't want to taint your control-plane node, set this field to an empty list,
+i.e. <code>taints: []</code> in the YAML file. This field is solely used for Node registration.</p>
+-->
+   <p><code>taints</code> 设定 Node API 对象被注册时要附带的污点。
+若未设置此字段（即字段值为 null），在 <code>kubeadm init</code> 期间，默认为控制平面节点添加控制平面污点。
+如果你不想污染你的控制平面节点，可以将此字段设置为空列表（即 YAML 文件中的 <code>taints: []</code>），
+这个字段只用于节点注册。</p>
+</td>
+</tr>
+<tr><td><code>kubeletExtraArgs</code><br/>
+<code>map[string]string</code>
+</td>
+<td>
+   <!--p><code>kubeletExtraArgs</code> passes through extra arguments to the kubelet.
+The arguments here are passed to the kubelet command line via the environment file
+kubeadm writes at runtime for the kubelet to source.
+This overrides the generic base-level configuration in the 'kubelet-config-1.X' ConfigMap.
+Flags have higher priority when parsing. These values are local and specific to the node
+kubeadm is executing on. A key in this map is the flag name as it appears on the
+command line except without leading dash(es).</p-->
+   <p><code>kubeletExtraArgs</code> 用来向 kubelet 传递额外参数。
+这里的参数会通过 kubeadm 在运行时写入的、由 kubelet 来读取的环境文件来
+传递给 kubelet 命令行。
+这里的设置会覆盖掉 'kubelet-config-1.X' ConfigMap 中包含的一般性的配置。
+命令行标志在解析时优先级更高。
+这里的设置值仅作用于 kubeadm 运行所在的节点。
+映射中的每个键对应命令行中的一个标志参数，只是去掉了前置的连字符。</p>
+</td>
+</tr>
+<tr><td><code>ignorePreflightErrors</code><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--p><code>ignorePreflightErrors</code> provides a list of pre-flight errors to be ignored when
+the current node is registered.</p-->
+   <p><code>ignorePreflightErrors</code> 提供一组在当前节点被注册时可以
+忽略掉的预检错误。</p>
+</td>
+</tr>
+<tr><td><code>imagePullPolicy</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#pullpolicy-v1-core"><code>core/v1.PullPolicy</code></a>
+</td>
+<td>
+   <!--p><code>imagePullPolicy</code> specifies the policy for image pulling during kubeadm &quot;init&quot; and
+&quot;join&quot; operations.
+The value of this field must be one of &quot;Always&quot;, &quot;IfNotPresent&quot; or &quot;Never&quot;.
+If this field is unset kubeadm will default it to &quot;IfNotPresent&quot;, or pull the required
+images if not present on the host.</p-->
+   <p><code>imagePullPolicy</code> 设定 &quot;kubeadm init&quot; 和 &quot;kubeadm join&quot;
+操作期间的镜像拉取策略。此字段的取值可以是 &quot;Always&quot;、&quot;IfNotPresent&quot; 或
+&quot;Never&quot; 之一。
+若此字段未设置，则  kubeadm 使用 &quot;IfNotPresent&quot; 作为其默认值，换言之，
+当镜像在主机上不存在时才执行拉取操作。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `Patches`     {#kubeadm-k8s-io-v1beta3-Patches}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [JoinConfiguration](#kubeadm-k8s-io-v1beta3-JoinConfiguration)
+
+<!--p>Patches contains options related to applying patches to components deployed by kubeadm.</p-->
+<p>Patches 包含要向 kubeadm 所部署的组件应用的补丁信息。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>directory</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p><code>directory</code> is a path to a directory that contains files named
+&quot;target[suffix][+patchtype].extension&quot;.
+For example, &quot;kube-apiserver0+merge.yaml&quot; or just &quot;etcd.json&quot;. &quot;target&quot; can be one of
+&quot;kube-apiserver&quot;, &quot;kube-controller-manager&quot;, &quot;kube-scheduler&quot;, &quot;etcd&quot;. &quot;patchtype&quot; can
+be one of &quot;strategic&quot; &quot;merge&quot; or &quot;json&quot; and they match the patch formats supported by
+kubectl.
+The default &quot;patchtype&quot; is &quot;strategic&quot;. &quot;extension&quot; must be either &quot;json&quot; or &quot;yaml&quot;.
+&quot;suffix&quot; is an optional string that can be used to determine which patches are applied
+first alpha-numerically.</p-->
+  <p><code>directory</code> 是指向某目录的路径，该目录中包含名为
+&quot;target[suffix][+patchtype].extension&quot; 的文件。
+例如，&quot;kube-apiserver0+merge.yaml&quot; 或者 &quot;etcd.json&quot;。
+&quot;target&quot; 可以是 &quot;kube-apiserver&quot;、&quot;kube-controller-manager&quot;、
+&quot;kube-scheduler&quot;、&quot;etcd&quot; 之一。
+&quot;patchtype&quot; 可以是 &quot;strategic&quot;、&quot;merge&quot; 或者 &quot;json&quot;，
+其取值对应 kubectl 所支持的补丁形式。
+&quot;patchtype&quot; 的默认值是 &quot;strategic&quot;。
+&quot;extension&quot; 必须是 &quot;json&quot; 或者 &quot;yaml&quot;。
+&quot;suffix&quot; 是一个可选的字符串，用来确定按字母表顺序来应用时，哪个补丁最先被应用。</p>
+</td>
+</tr>
+</tbody>
+</table>
+  
+## `BootstrapToken`     {#BootstrapToken}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [InitConfiguration](#kubeadm-k8s-io-v1beta3-InitConfiguration)
+
+<!--p>BootstrapToken describes one bootstrap token, stored as a Secret in the cluster</p-->
+<p>BootstrapToken 描述的是一个启动引导令牌，以 Secret 形式存储在集群中。</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>token</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#BootstrapTokenString"><code>BootstrapTokenString</code></a>
+</td>
+<td>
+   <!--p><code>token</code> is used for establishing bidirectional trust between nodes and control-planes.
+Used for joining nodes in the cluster.</p-->
+  <p><code>token</code> 用来在节点与控制面之间建立双向的信任关系。
+在向集群中添加节点时使用。</p>
+</td>
+</tr>
+<tr><td><code>description</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p><code>description</code> sets a human-friendly message why this token exists and what it's used
+for, so other administrators can know its purpose.</p-->
+   <p><code>description</code> 设置一个对人友好的消息，说明为什么此令牌
+会存在以及其目标用途，这样其他管理员能够知道其目的。</p>
+</td>
+</tr>
+<tr><td><code>ttl</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--p><code>ttl</code> defines the time to live for this token. Defaults to <code>24h</code>.
+<code>expires</code> and <code>ttl</code> are mutually exclusive.</p-->
+   <p><code>ttl</code> 定义此令牌的声明周期。默认为 <code>24h</code>。
+<code>expires</code> 和 <code>ttl</code> 是互斥的。</p>
+</td>
+</tr>
+<tr><td><code>expires</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#time-v1-meta"><code>meta/v1.Time</code></a>
+</td>
+<td>
+   <!--p><code>expires</code> specifies the timestamp when this token expires. Defaults to being set
+dynamically at runtime based on the <code>ttl</code>. <code>expires</code> and <code>ttl</code> are mutually exclusive.</p>-->
+   <p><code>expires</code> 设置此令牌过期的时间戳。默认为在运行时基于
+<code>ttl</code> 来决定。
+<code>expires</code> 和 <code>ttl</code> 是互斥的。</p>
+</td>
+</tr>
+<tr><td><code>usages</code><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--p><code>usages</code> describes the ways in which this token can be used. Can by default be used
+for establishing bidirectional trust, but that can be changed here.</p-->
+   <p><code>usages</code> 描述此令牌的可能使用方式。默认情况下，令牌可用于
+建立双向的信任关系；不过这里可以改变默认用途。</p>
+</td>
+</tr>
+<tr><td><code>groups</code><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--p><code>groups</code> specifies the extra groups that this token will authenticate as when/if
+used for authentication</p-->
+   <p><code>groups</code> 设定此令牌被用于身份认证时对应的附加用户组。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `BootstrapTokenString`     {#BootstrapTokenString}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [BootstrapToken](#BootstrapToken)
+
+<!--p>BootstrapTokenString is a token of the format <code>abcdef.abcdef0123456789</code> that is used
+for both validation of the practically of the API server from a joining node's point
+of view and as an authentication method for the node in the bootstrap phase of
+&quot;kubeadm join&quot;. This token is and should be short-lived.</p-->
+<p>BootstrapTokenString 形式为 <code>abcdef.abcdef0123456789</code> 的一个令牌，
+用来从加入集群的节点角度验证 API 服务器的身份，或者 &quot;kubeadm join&quot;
+在节点启动引导是作为一种身份认证方法。
+此令牌的生命期是短暂的，并且应该如此。</p>
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+  
+<tr><td><code>id</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--span class="text-muted">No description provided.</span-->
+   <span class="text-muted">无描述</span>
+   
+</td>
+</tr>
+<tr><td><code>secret</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--span class="text-muted">No description provided.</span-->
+   <span class="text-muted">无描述</span>
+</td>
+</tr>
+</tbody>
+</table>
+
diff --git a/content/zh-cn/docs/reference/config-api/kubelet-config.v1alpha1.md b/content/zh-cn/docs/reference/config-api/kubelet-config.v1alpha1.md
new file mode 100644
index 0000000000..9a62ac5ec6
--- /dev/null
+++ b/content/zh-cn/docs/reference/config-api/kubelet-config.v1alpha1.md
@@ -0,0 +1,322 @@
+---
+title: Kubelet 配置 (v1alpha1)
+content_type: tool-reference
+package: kubelet.config.k8s.io/v1alpha1
+auto_generated: true
+---
+
+<!--
+title: Kubelet Configuration (v1alpha1)
+content_type: tool-reference
+package: kubelet.config.k8s.io/v1alpha1
+auto_generated: true
+-->
+
+<!--
+## Resource Types
+-->
+## 资源类型
+
+- [CredentialProviderConfig](#kubelet-config-k8s-io-v1alpha1-CredentialProviderConfig)
+
+## `FormatOptions`     {#FormatOptions}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+<!--
+FormatOptions contains options for the different logging formats.
+-->
+FormatOptions 包含为不同类型日志格式提供的选项。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>json</code> <B>[必需]</B><br/>
+<a href="#JSONOptions"><code>JSONOptions</code></a>
+</td>
+<td>
+   <!--[Experimental] JSON contains options for logging format &quot;json&quot;.-->
+   [试验特性] <code>json</code> 中包含 &quot;json&quot; 日志格式的选项。
+</td>
+</tr>
+</tbody>
+</table>
+
+## `JSONOptions`     {#JSONOptions}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [FormatOptions](#FormatOptions)
+
+<!--
+JSONOptions contains options for logging format &quot;json&quot;.
+-->
+JSONOptions 包含用于 &quot;json&quot; 日志格式的选项。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>splitStream</code> <B>[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--[Experimental] SplitStream redirects error messages to stderr while
+info messages go to stdout, with buffering. The default is to write
+both to stdout, without buffering.-->
+  [试验特性] <code>splitStream</code> 将错误信息重定向到标准错误输出（stderr），
+将提示信息重定向到标准输出（stdout），并为二者提供缓存。默认配置是将两类信息都写出到标准输出，
+并且不提供缓存。
+</td>
+</tr>
+
+<tr><td><code>infoBufferSize</code> <B>[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/api/resource#QuantityValue"><code>k8s.io/apimachinery/pkg/api/resource.QuantityValue</code></a>
+</td>
+<td>
+   <!--[Experimental] InfoBufferSize sets the size of the info stream when
+using split streams. The default is zero, which disables buffering.-->
+  [试验特性] <code>infoBufferSize</code> 设置使用分离数据流时信息数据流的大小。
+默认值是 0，意味着禁止缓存。
+</td>
+</tr>
+</tbody>
+</table>
+
+## `VModuleConfiguration`     {#VModuleConfiguration}
+
+<!--
+(Alias of `[]k8s.io/component-base/config/v1alpha1.VModuleItem`)
+-->
+（`[]k8s.io/component-base/config/v1alpha1.VModuleItem` 的别名）
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+<!--
+VModuleConfiguration is a collection of individual file names or patterns
+and the corresponding verbosity threshold.
+-->
+VModuleConfiguration 是一个集合，其中包含一个个的文件名（或者文件名模式）
+及对应的详细程度阈值。
+
+## `CredentialProviderConfig`     {#kubelet-config-k8s-io-v1alpha1-CredentialProviderConfig}
+
+<!--
+CredentialProviderConfig is the configuration containing information about
+each exec credential provider. Kubelet reads this configuration from disk and enables
+each provider as specified by the CredentialProvider type.
+-->
+CredentialProviderConfig 包含有关每个 exec 凭据提供者的配置信息。
+Kubelet 从磁盘上读取这些配置信息，并根据 CredentialProvider 类型启用各个提供者。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubelet.config.k8s.io/v1alpha1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>CredentialProviderConfig</code></td></tr>
+<tr><td><code>providers</code> <B>[必需]</B><br/>
+<a href="#kubelet-config-k8s-io-v1alpha1-CredentialProvider"><code>[]CredentialProvider</code></a>
+</td>
+<td>
+   <!--
+providers is a list of credential provider plugins that will be enabled by the kubelet.
+Multiple providers may match against a single image, in which case credentials
+from all providers will be returned to the kubelet. If multiple providers are called
+for a single image, the results are combined. If providers return overlapping
+auth keys, the value from the provider earlier in this list is used.
+-->
+  <code>providers</code> 是一组凭据提供者插件，这些插件会被 kubelet 启用。
+多个提供者可以匹配到同一镜像上，这时，来自所有提供者的凭据信息都会返回给 kubelet。
+如果针对同一镜像调用了多个提供者，则结果会被组合起来。如果提供者返回的认证主键有重复，
+列表中先出现的提供者所返回的值将被使用。
+</td>
+</tr>
+</tbody>
+</table>
+
+## `CredentialProvider`     {#kubelet-config-k8s-io-v1alpha1-CredentialProvider}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [CredentialProviderConfig](#kubelet-config-k8s-io-v1alpha1-CredentialProviderConfig)
+
+<!--
+CredentialProvider represents an exec plugin to be invoked by the kubelet. The plugin is only
+invoked when an image being pulled matches the images handled by the plugin (see matchImages).
+-->
+CredentialProvider 代表的是要被 kubelet 调用的一个 exec 插件。
+这一插件只会在所拉取的镜像与该插件所处理的镜像匹配时才会被调用（参见 <code>matchImages</code>）。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>name</code> <B>[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--name is the required name of the credential provider. It must match the name of the
+provider executable as seen by the kubelet. The executable must be in the kubelet's
+bin directory (set by the --image-credential-provider-bin-dir flag).</td>
+-->
+  <code>name</code> 是凭据提供者的名称（必需）。此名称必须与 kubelet
+  所看到的提供者可执行文件的名称匹配。可执行文件必须位于 kubelet 的 
+  <code>bin</code> 目录（通过 <code>--image-credential-provider-bin-dir</code> 设置）下。
+</td>
+</tr>
+
+<tr><td><code>matchImages</code> <B>[必需]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--matchImages is a required list of strings used to match against images in order to
+determine if this provider should be invoked. If one of the strings matches the
+requested image from the kubelet, the plugin will be invoked and given a chance
+to provide credentials. Images are expected to contain the registry domain
+and URL path.
+Each entry in matchImages is a pattern which can optionally contain a port and a path.
+Globs can be used in the domain, but not in the port or the path. Globs are supported
+as subdomains like <code>*.k8s.io</code> or <code>k8s.*.io</code>, and top-level-domains such as <code>k8s.*</code>.
+Matching partial subdomains like <code>app*.k8s.io</code> is also supported. Each glob can only match
+a single subdomain segment, so <code>*.io</code> does not match <code>*.k8s.io</code>.
+A match exists between an image and a matchImage when all of the below are true:
+<ul>
+<li>Both contain the same number of domain parts and each part matches.</li>
+<li>The URL path of an imageMatch must be a prefix of the target image URL path.</li>
+<li>If the imageMatch contains a port, then the port must match in the image as well.</li>
+</ul>
+Example values of matchImages:
+  - 123456789.dkr.ecr.us-east-1.amazonaws.com
+  - &lowast;.azurecr.io
+  - gcr.io
+  - &lowast;.&lowast;.registry.io
+  - registry.io:8080/path
+  -->
+<p><code>matchImages</code> 是一个必须设置的字符串列表，用来匹配镜像以便确定是否要调用此提供者。
+如果字符串之一与 kubelet 所请求的镜像匹配，则此插件会被调用并给予提供凭证的机会。
+镜像应该包含镜像库域名和 URL 路径。</p>
+<p><code>matchImages</code> 中的每个条目都是一个模式字符串，其中可以包含端口号和路径。
+域名部分可以包含统配符，但端口或路径部分不可以。通配符可以用作子域名，例如
+<code>*.k8s.io</code> 或 <code>k8s.*.io</code>，以及顶级域名，如 <code>k8s.*</code>。</p>
+<p>对类似 <code>app*.k8s.io</code> 这类部分子域名的匹配也是支持的。
+每个通配符只能用来匹配一个子域名段，所以 <code>*.io</code> 不会匹配 <code>*.k8s.io</code>。</p>
+<p>镜像与 <code>matchImages</code> 之间存在匹配时，以下条件都要满足：</p>
+<ul>
+  <li>二者均包含相同个数的域名部分，并且每个域名部分都对应匹配；</li>
+  <li><code>matchImages</code> 条目中的 URL 路径部分必须是目标镜像的 URL 路径的前缀；</li>
+  <li>如果 <code>matchImages</code> 条目中包含端口号，则端口号也必须与镜像端口号匹配。</li>
+</ul>
+<p><code>matchImages</code> 的一些示例如下：</p>
+<ul>
+<li><code>123456789.dkr.ecr.us-east-1.amazonaws.com</code></li>
+<li><code>*.azurecr.io</code></li>
+<li><code>gcr.io</code></li>
+<li><code>*.*.registry.io</code></li>
+<li><code>registry.io:8080/path</code></li>
+</ul>
+</td>
+</tr>
+
+<tr><td><code>defaultCacheDuration</code> <B>[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--defaultCacheDuration is the default duration the plugin will cache credentials in-memory
+if a cache duration is not provided in the plugin response. This field is required.-->
+   <code>defaultCacheDuration</code> 是插件在内存中缓存凭据的默认时长，
+在插件响应中没有给出缓存时长时，使用这里设置的值。此字段是必需的。
+</td>
+</tr>
+
+<tr><td><code>apiVersion</code> <B>[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--Required input version of the exec CredentialProviderRequest. The returned CredentialProviderResponse
+MUST use the same encoding version as the input. Current supported values are:
+- credentialprovider.kubelet.k8s.io/v1alpha1-->
+  <p>要求 exec 插件 CredentialProviderRequest 请求的输入版本。
+  所返回的 CredentialProviderResponse 必须使用与输入相同的编码版本。当前支持的值有：</p>
+  <ul>
+    <li><code>credentialprovider.kubelet.k8s.io/v1alpha1</code></li>
+  </ul>
+</td>
+</tr>
+
+<tr><td><code>args</code><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--Arguments to pass to the command when executing it.-->
+  在执行插件可执行文件时要传递给命令的参数。
+</td>
+</tr>
+
+<tr><td><code>env</code><br/>
+<a href="#kubelet-config-k8s-io-v1alpha1-ExecEnvVar"><code>[]ExecEnvVar</code></a>
+</td>
+<td>
+   <!--Env defines additional environment variables to expose to the process. These
+are unioned with the host's environment, as well as variables client-go uses
+to pass argument to the plugin.-->
+  <code>env</code> 定义要提供给插件进程的额外的环境变量。
+这些环境变量会与主机上的其他环境变量以及 client-go 所使用的环境变量组合起来，
+一起传递给插件。
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ExecEnvVar`     {#kubelet-config-k8s-io-v1alpha1-ExecEnvVar}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [CredentialProvider](#kubelet-config-k8s-io-v1alpha1-CredentialProvider)
+
+<!--
+ExecEnvVar is used for setting environment variables when executing an exec-based
+credential plugin.
+-->
+ExecEnvVar 用来在执行基于 exec 的凭据插件时设置环境变量。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>name</code> <B>[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!-- span class="text-muted">No description provided.</span -->
+  环境变量名称。
+</td>
+</tr>
+
+<tr><td><code>value</code> <B>[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!-- span class="text-muted">No description provided.</span-->
+  环境变量取值。
+</td>
+</tr>
+</tbody>
+</table>
+
diff --git a/content/zh-cn/docs/reference/config-api/kubelet-config.v1beta1.md b/content/zh-cn/docs/reference/config-api/kubelet-config.v1beta1.md
new file mode 100644
index 0000000000..e67edb1a92
--- /dev/null
+++ b/content/zh-cn/docs/reference/config-api/kubelet-config.v1beta1.md
@@ -0,0 +1,2617 @@
+---
+title: Kubelet 配置 (v1beta1)
+content_type: tool-reference
+package: kubelet.config.k8s.io/v1beta1
+---
+
+<!--
+title: Kubelet Configuration (v1beta1)
+content_type: tool-reference
+package: kubelet.config.k8s.io/v1beta1
+auto_generated: true
+-->
+
+<!--
+## Resource Types
+-->
+## 资源类型
+
+- [CredentialProviderConfig](#kubelet-config-k8s-io-v1beta1-CredentialProviderConfig)
+- [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
+- [SerializedNodeConfigSource](#kubelet-config-k8s-io-v1beta1-SerializedNodeConfigSource)
+
+## `CredentialProviderConfig`     {#kubelet-config-k8s-io-v1beta1-CredentialProviderConfig}
+
+<!--
+CredentialProviderConfig is the configuration containing information about
+each exec credential provider. Kubelet reads this configuration from disk and enables
+each provider as specified by the CredentialProvider type.
+-->
+CredentialProviderConfig 包含有关每个 exec 凭据提供者的配置信息。
+Kubelet 从磁盘上读取这些配置信息，并根据 CredentialProvider 类型启用各个提供者。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubelet.config.k8s.io/v1beta1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>CredentialProviderConfig</code></td></tr>
+    
+  
+<tr><td><code>providers</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#kubelet-config-k8s-io-v1beta1-CredentialProvider"><code>[]CredentialProvider</code></a>
+</td>
+<td>
+<!--
+providers is a list of credential provider plugins that will be enabled by the kubelet.
+Multiple providers may match against a single image, in which case credentials
+from all providers will be returned to the kubelet. If multiple providers are called
+for a single image, the results are combined. If providers return overlapping
+auth keys, the value from the provider earlier in this list is used.
+-->
+   <p>
+   <code>providers</code> 是一组凭据提供者插件，这些插件会被 kubelet 启用。
+   多个提供者可以匹配到同一镜像上，这时，来自所有提供者的凭据信息都会返回给 kubelet。
+   如果针对同一镜像调用了多个提供者，则结果会被组合起来。如果提供者返回的认证主键有重复，
+   列表中先出现的提供者所返回的值将被使用。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `KubeletConfiguration`     {#kubelet-config-k8s-io-v1beta1-KubeletConfiguration}
+
+<!--
+KubeletConfiguration contains the configuration for the Kubelet
+-->
+KubeletConfiguration 中包含 Kubelet 的配置。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubelet.config.k8s.io/v1beta1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>KubeletConfiguration</code></td></tr>
+<tr><td><code>enableServer</code> <B>[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--enableServer enables Kubelet's secured server.
+Note: Kubelet's insecure port is controlled by the readOnlyPort option.
+Default: true-->
+  <p><code>enableServer</code> 会启用 kubelet 的安全服务器。</p>
+  <p>注意：kubelet 的不安全端口由 <code>readOnlyPort</code> 选项控制。</p>
+  <p>默认值：<code>true</code></p>
+</td>
+</tr>
+
+<tr><td><code>staticPodPath</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--staticPodPath is the path to the directory containing local (static) pods to
+run, or the path to a single static pod file.
+Default: &quot;&quot;-->
+  <p><code>staticPodPath</code> 是指向要运行的本地（静态）Pod 的目录，
+或者指向某个静态 Pod 文件的路径。</p>
+  <p>默认值：&quot;&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>syncFrequency</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--syncFrequency is the max period between synchronizing running
+containers and config.
+Default: &quot;1m&quot;-->
+  <p><code>syncFrequency</code> 是对运行中的容器和配置进行同步的最长周期。</p>
+  <p>默认值：&quot;1m&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>fileCheckFrequency</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--fileCheckFrequency is the duration between checking config files for
+new data.
+Default: &quot;20s&quot;-->
+  <p><code>fileCheckFrequency</code> 是对配置文件中新数据进行检查的时间间隔值。</p>
+  <p>默认值：&quot;20s&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>httpCheckFrequency</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+  <!--
+   httpCheckFrequency is the duration between checking http for new data.
+Default: &quot;20s&quot;
+  -->
+  <p><code>httpCheckFrequency</code> 是对 HTTP 服务器上新数据进行检查的时间间隔值。</p>
+  <p>默认值：&quot;20s&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>staticPodURL</code><br/>
+<code>string</code>
+</td>
+<td>
+  <!--staticPodURL is the URL for accessing static pods to run.
+Default: &quot;&quot;
+  -->
+  <p><code>staticPodURL</code> 是访问要运行的静态 Pod 的 URL 地址。
+  <p>默认值：&quot;&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>staticPodURLHeader</code><br/>
+<code>map[string][]string</code>
+</td>
+<td>
+   <!--
+   staticPodURLHeader is a map of slices with HTTP headers to use when accessing the podURL.
+Default: nil
+   -->
+   <p><code>staticPodURLHeader</code>是一个由字符串组成的映射表，其中包含的 HTTP
+头部信息用于访问<code>podURL</code>。</p>
+  <p>默认值：nil</p>
+</td>
+</tr>
+
+<tr><td><code>address</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   address is the IP address for the Kubelet to serve on (set to 0.0.0.0
+for all interfaces).
+Default: &quot;0.0.0.0&quot;
+   -->
+   <p><code>address</code> 是 kubelet 提供服务所用的 IP 地址（设置为 0.0.0.0
+使用所有网络接口提供服务）。</p>
+  <p>默认值：&quot;0.0.0.0&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>port</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+   port is the port for the Kubelet to serve on.
+The port number must be between 1 and 65535, inclusive.
+Default: 10250
+   -->
+   <p><code>port</code> 是 kubelet 用来提供服务所使用的端口号。
+这一端口号必须介于 1 到 65535 之间，包含 1 和 65535。</p>
+  <p>默认值：10250</p>
+</td>
+</tr>
+
+<tr><td><code>readOnlyPort</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--readOnlyPort is the read-only port for the Kubelet to serve on with
+no authentication/authorization.
+The port number must be between 1 and 65535, inclusive.
+Setting this field to 0 disables the read-only service.
+Default: 0 (disabled)
+   -->
+   <p><code>readOnlyPort</code> 是 kubelet 用来提供服务所使用的只读端口号。
+此端口上的服务不支持身份认证或鉴权。这一端口号必须介于 1 到 65535 之间，
+包含 1 和 65535。将此字段设置为 0 会禁用只读服务。</p>
+   <p>默认值：0（禁用）</p>
+</td>
+</tr>
+
+<tr><td><code>tlsCertFile</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--tlsCertFile is the file containing x509 Certificate for HTTPS. (CA cert,
+if any, concatenated after server cert). If tlsCertFile and
+tlsPrivateKeyFile are not provided, a self-signed certificate
+and key are generated for the public address and saved to the directory
+passed to the Kubelet's --cert-dir flag.
+Default:&quot;quot;
+  -->
+  <p><code>tlsCertFile</code>是包含 HTTPS 所需要的 x509 证书的文件
+（如果有 CA 证书，会串接到服务器证书之后）。如果<code>tlsCertFile</code>
+和<code>tlsPrivateKeyFile</code>都没有设置，则系统会为节点的公开地址生成自签名的证书和私钥，
+并将其保存到 kubelet <code>--cert-dir</code>参数所指定的目录下。</p>
+  <p>默认值：&quot;&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>tlsPrivateKeyFile</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--tlsPrivateKeyFile is the file containing x509 private key matching tlsCertFile.
+Default: &quot;&quot;
+   -->
+   <p><code>tlsPrivateKeyFile</code>是一个包含与<code>tlsCertFile</code>
+证书匹配的 X509 私钥的文件。</p>
+  <p>默认值：&quot;&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>tlsCipherSuites</code><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--tlsCipherSuites is the list of allowed cipher suites for the server.
+Values are from tls package constants (https://golang.org/pkg/crypto/tls/#pkg-constants).
+Default: nil
+   -->
+   <p><code>tlsCipherSuites</code>是一个字符串列表，其中包含服务器所接受的加密包名称。
+列表中的每个值来自于<code>tls</code>包中定义的常数（https://golang.org/pkg/crypto/tls/#pkg-constants）。</p>
+  <p>默认值：nil</p>
+</td>
+</tr>
+
+<tr><td><code>tlsMinVersion</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--tlsMinVersion is the minimum TLS version supported.
+Values are from tls package constants (https://golang.org/pkg/crypto/tls/#pkg-constants).
+Default: &quot;&quot;
+   -->
+   <p><code>tlsMinVersion</code>给出所支持的最小 TLS 版本。
+字段取值来自于<code>tls</code>包中的常数定义（https://golang.org/pkg/crypto/tls/#pkg-constants）。</p>
+  <p>默认值：&quot;&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>rotateCertificates</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--rotateCertificates enables client certificate rotation. The Kubelet will request a
+new certificate from the certificates.k8s.io API. This requires an approver to approve the
+certificate signing requests.
+Default: false
+   -->
+   <p><code>rotateCertificates</code>用来启用客户端证书轮换。kubelet 会调用
+<code>certificates.k8s.io</code> API 来请求新的证书。需要有一个批复人批准证书签名请求。</p>
+  <p>默认值：false</code>
+</td>
+</tr>
+
+<tr><td><code>serverTLSBootstrap</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--serverTLSBootstrap enables server certificate bootstrap. Instead of self
+signing a serving certificate, the Kubelet will request a certificate from
+the 'certificates.k8s.io' API. This requires an approver to approve the
+certificate signing requests (CSR). The RotateKubeletServerCertificate feature
+must be enabled when setting this field.
+Default: false
+   -->
+   <p><code>serverTLSBootstrap</code>用来启用服务器证书引导。系统不再使用自签名的服务证书，
+kubelet 会调用<code>certificates.k8s.io</code> API 来请求证书。
+需要有一个批复人来批准证书签名请求（CSR）。
+设置此字段时，<code>RotateKubeletServerCertificate</code>特性必须被启用。</p>
+  <p>默认值：false</p>
+</td>
+</tr>
+
+<tr><td><code>authentication</code><br/>
+<a href="#kubelet-config-k8s-io-v1beta1-KubeletAuthentication"><code>KubeletAuthentication</code></a>
+</td>
+<td>
+   <!--authentication specifies how requests to the Kubelet's server are authenticated.
+Defaults:
+  anonymous:
+    enabled: false
+  webhook:
+    enabled: true
+    cacheTTL: &quot;2m&quot;
+   -->
+   <p><code>authorization</code>设置发送给 kubelet 服务器的请求是如何进行身份认证的。</p>
+  <p>默认值：</p>
+  <pre><code>
+  anonymous:
+    enabled: false
+  webhook:
+    enabled: true
+    cacheTTL: &quot;2m&quot;
+  </code></pre>
+</td>
+</tr>
+
+<tr><td><code>authorization</code><br/>
+<a href="#kubelet-config-k8s-io-v1beta1-KubeletAuthorization"><code>KubeletAuthorization</code></a>
+</td>
+<td>
+   <!--authorization specifies how requests to the Kubelet's server are authorized.
+Defaults:
+  mode: Webhook
+  webhook:
+    cacheAuthorizedTTL: &quot;5m&quot;
+    cacheUnauthorizedTTL: &quot;30s&quot;</td>
+   -->
+   <p><code>authorization</code>设置发送给 kubelet 服务器的请求是如何进行鉴权的。</p>
+  <p>默认值：</p>
+  <pre><code>
+  mode: Webhook
+  webhook:
+    cacheAuthorizedTTL: &quot;5m&quot;
+    cacheUnauthorizedTTL: &quot;30s&quot;
+  </code></pre>
+</td>
+</tr>
+
+<tr><td><code>registryPullQPS</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--registryPullQPS is the limit of registry pulls per second.
+The value must not be a negative number.
+Setting it to 0 means no limit.
+Default: 5
+   -->
+   <p><code>registryPullQPS</code>是每秒钟可以执行的镜像仓库拉取操作限值。
+此值必须不能为负数。将其设置为 0 表示没有限值。</p>
+  <p>默认值：5</code>
+</td>
+</tr>
+
+<tr><td><code>registryBurst</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--registryBurst is the maximum size of bursty pulls, temporarily allows
+pulls to burst to this number, while still not exceeding registryPullQPS.
+The value must not be a negative number.
+Only used if registryPullQPS is greater than 0.
+Default: 10
+   -->
+   <p><code>registryBurst</code>是突发性镜像拉取的上限值，允许镜像拉取临时上升到所指定数量，
+不过仍然不超过<code>registryPullQPS</code>所设置的约束。此值必须是非负值。
+只有<code>registryPullQPS</code>参数值大于 0 时才会使用此设置。</p>
+  <p>默认值：10</p>
+</td>
+</tr>
+
+<tr><td><code>eventRecordQPS</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--eventRecordQPS is the maximum event creations per second. If 0, there
+is no limit enforced. The value cannot be a negative number.
+Default: 5
+   -->
+   <p><code>eventRecordQPS</code>设置每秒钟可创建的事件个数上限。如果此值为 0，
+则表示没有限制。此值不能设置为负数。</p>
+  <p>默认值：5</p>
+</td>
+</tr>
+
+<tr><td><code>eventBurst</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+eventBurst is the maximum size of a burst of event creations, temporarily
+allows event creations to burst to this number, while still not exceeding
+eventRecordQPS. This field canot be a negative number and it is only used
+when eventRecordQPS &gt; 0.
+Default: 10
+   -->
+   <p><code>eventBurst</code>是突发性事件创建的上限值，允许事件创建临时上升到所指定数量，
+不过仍然不超过<code>eventRecordQPS</code>所设置的约束。此值必须是非负值，
+且只有<code>eventRecordQPS</code> &gt; 0 时才会使用此设置。</p>
+  <p>默认值：10</p>
+</td>
+</tr>
+
+<tr><td><code>enableDebuggingHandlers</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--enableDebuggingHandlers enables server endpoints for log access
+and local running of containers and commands, including the exec,
+attach, logs, and portforward features.
+Default: true
+   -->
+   <p><code>enableDebuggingHandlers</code>启用服务器上用来访问日志、
+在本地运行容器和命令的端点，包括<code>exec</code>、<code>attach</code>、
+<code>logs</code>和<code>portforward</code>等功能。</p>
+  <p>默认值：true</p>
+</td>
+</tr>
+
+<tr><td><code>enableContentionProfiling</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+enableContentionProfiling enables lock contention profiling, if enableDebuggingHandlers is true.
+Default: false
+   -->
+   <p><code>enableContentionProfiling</code>用于启用锁竞争性能分析，
+仅用于<code>enableDebuggingHandlers</code>为<code>true</code>的场合。</p>
+  <p>默认值：false</code>
+</td>
+</tr>
+
+<tr><td><code>healthzPort</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--
+healthzPort is the port of the localhost healthz endpoint (set to 0 to disable).
+A valid number is between 1 and 65535.
+Default: 10248
+   -->
+   <p><code>healthzPort</code>是本地主机上提供<code>healthz</code>端点的端口
+（设置值为 0 时表示禁止）。合法值介于 1 和 65535 之间。</p>
+  <p>默认值：10248</p>
+</td>
+</tr>
+
+<tr><td><code>healthzBindAddress</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+healthzBindAddress is the IP address for the healthz server to serve on.
+Default: &quot;127.0.0.1&quot;
+   -->
+   <p><code>healthzBindAddress<code>是<code>healthz</code>服务器用来提供服务的 IP 地址。</p>
+  <p>默认值：&quot;127.0.0.1&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>oomScoreAdj</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--oomScoreAdj is The oom-score-adj value for kubelet process. Values
+must be within the range [-1000, 1000].
+Default: -999
+   -->
+   <p><code>oomScoreAdj</code> 是为 kubelet 进程设置的<code>oom-score-adj</code>值。
+所设置的取值要在 [-1000, 1000] 范围之内。</p>
+   <p>默认值：-999</p>
+</td>
+</tr>
+
+<tr><td><code>clusterDomain</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--clusterDomain is the DNS domain for this cluster. If set, kubelet will
+configure all containers to search this domain in addition to the
+host's search domains.
+Default: &quot;&quot;
+   -->
+   <p><code>clusterDomain</code>是集群的 DNS 域名。如果设置了此字段，kubelet
+会配置所有容器，使之在搜索主机的搜索域的同时也搜索这里指定的 DNS 域。</p>
+   <p>默认值：&quot;&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>clusterDNS</code><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--clusterDNS is a list of IP addresses for the cluster DNS server. If set,
+kubelet will configure all containers to use this for DNS resolution
+instead of the host's DNS servers.
+Default: nil
+  -->
+  <p><code>clusterDNS</code>是集群 DNS 服务器的 IP 地址的列表。
+如果设置了，kubelet 将会配置所有容器使用这里的 IP 地址而不是宿主系统上的 DNS
+服务器来完成 DNS 解析。
+  <p>默认值：nil</p>
+</td>
+</tr>
+
+<tr><td><code>streamingConnectionIdleTimeout</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--streamingConnectionIdleTimeout is the maximum time a streaming connection
+can be idle before the connection is automatically closed.
+Default: &quot;4h&quot;
+   -->
+   <p><code>streamingConnectionIdleTimeout</code>设置流式连接在被自动关闭之前可以空闲的最长时间。</p>
+   <p>默认值：&quot;4h&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>nodeStatusUpdateFrequency</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--nodeStatusUpdateFrequency is the frequency that kubelet computes node
+status. If node lease feature is not enabled, it is also the frequency that
+kubelet posts node status to master.
+Note: When node lease feature is not enabled, be cautious when changing the
+constant, it must work with nodeMonitorGracePeriod in nodecontroller.
+Default: &quot;10s&quot;
+   -->
+   <p><code>nodeStatusUpdateFrequency</code>是 kubelet 计算节点状态的频率。
+如果未启用节点租约特性，这一字段设置的也是 kubelet 向控制面投递节点状态的频率。</p>
+   <p>注意：如果节点租约特性未被启用，更改此参数设置时要非常小心，
+所设置的参数值必须与节点控制器的<code>nodeMonitorGracePeriod</code>协同。</p>
+   <p>默认值：&quot;10s&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>nodeStatusReportFrequency</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--nodeStatusReportFrequency is the frequency that kubelet posts node
+status to master if node status does not change. Kubelet will ignore this
+frequency and post node status immediately if any change is detected. It is
+only used when node lease feature is enabled. nodeStatusReportFrequency's
+default value is 5m. But if nodeStatusUpdateFrequency is set explicitly,
+nodeStatusReportFrequency's default value will be set to
+nodeStatusUpdateFrequency for backward compatibility.
+Default: &quot;5m&quot;
+   -->
+   <p><code>nodeStatusReportFrequency</code>是节点状态未发生变化时，kubelet
+向控制面更新节点状态的频率。如果节点状态发生变化，则 kubelet 会忽略这一频率设置，
+立即更新节点状态。</p>
+   <p>此字段仅当启用了节点租约特性时才被使用。<code>nodeStatusReportFrequency</code>
+的默认值是&quot;5m&quot;。不过，如果<code>nodeStatusUpdateFrequency</code>
+被显式设置了，则<code>nodeStatusReportFrequency</code>的默认值会等于
+<code>nodeStatusUpdateFrequency</code>值，这是为了实现向后兼容。</p>
+   <p>默认值：&quot;5m&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>nodeLeaseDurationSeconds</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--nodeLeaseDurationSeconds is the duration the Kubelet will set on its corresponding Lease.
+NodeLease provides an indicator of node health by having the Kubelet create and
+periodically renew a lease, named after the node, in the kube-node-lease namespace.
+If the lease expires, the node can be considered unhealthy.
+The lease is currently renewed every 10s, per KEP-0009. In the future, the lease renewal
+interval may be set based on the lease duration.
+The field value must be greater than 0.
+Default: 40
+   -->
+   <p><code>nodeLeaseDurationSeconds</code>是 kubelet 会在其对应的 Lease 对象上设置的时长值。
+<code>NodeLease</code>让 kubelet 来在<code>kube-node-lease</code>名字空间中创建
+按节点名称命名的租约并定期执行续约操作，并通过这种机制来了解节点健康状况。</p>
+   <p>如果租约过期，则节点可被视作不健康。根据 KEP-0009 约定，目前的租约每 10 秒钟续约一次。
+在将来，租约的续约时间间隔可能会根据租约的时长来设置。</p>
+   <p>此字段的取值必须大于零。</p>
+  <p>默认值：40</p>
+</td>
+</tr>
+
+<tr><td><code>imageMinimumGCAge</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--imageMinimumGCAge is the minimum age for an unused image before it is
+garbage collected. 
+Default: &quot;2m&quot;
+   -->
+   <p><code>imageMinimumGCAge</code>是对未使用镜像进行垃圾搜集之前允许其存在的时长。</p>
+   <p>默认值：&quot;2m&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>imageGCHighThresholdPercent</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--imageGCHighThresholdPercent is the percent of disk usage after which
+image garbage collection is always run. The percent is calculated by
+dividing this field value by 100, so this field must be between 0 and
+100, inclusive. When specified, the value must be greater than
+imageGCLowThresholdPercent.
+Default: 85
+   -->
+   <p><code>imageGCHighThresholdPercent</code>所给的是镜像的磁盘用量百分数，
+一旦镜像用量超过此阈值，则镜像垃圾收集会一直运行。百分比是用这里的值除以 100
+得到的，所以此字段取值必须介于 0 和 100 之间，包括 0 和 100。如果设置了此字段，
+则取值必须大于<code>imageGCLowThresholdPercent</code>取值。</p>
+   <p>默认值：85</p>
+</td>
+</tr>
+
+<tr><td><code>imageGCLowThresholdPercent</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--imageGCLowThresholdPercent is the percent of disk usage before which
+image garbage collection is never run. Lowest disk usage to garbage
+collect to. The percent is calculated by dividing this field value by 100,
+so the field value must be between 0 and 100, inclusive. When specified, the
+value must be less than imageGCHighThresholdPercent.
+Default: 80
+   -->
+   <p><code>imageGCLowThresholdPercent</code>所给的是镜像的磁盘用量百分数，
+镜像用量低于此阈值时不会执行镜像垃圾收集操作。垃圾收集操作也将此作为最低磁盘用量边界。
+百分比是用这里的值除以 100 得到的，所以此字段取值必须介于 0 和 100 之间，包括 0 和 100。
+如果设置了此字段，则取值必须小于<code>imageGCHighThresholdPercent</code>取值。</p>
+   <p>默认值：80</p>
+</td>
+</tr>
+
+<tr><td><code>volumeStatsAggPeriod</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--volumeStatsAggPeriod is the frequency for calculating and caching volume
+disk usage for all pods.
+Default: &quot;1m&quot;
+   -->
+   <p><code>volumeStatsAggPeriod</code>是计算和缓存所有 Pod 磁盘用量的频率。</p>
+   <p>默认值：&quot;1m&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>kubeletCgroups</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--kubeletCgroups is the absolute name of cgroups to isolate the kubelet in
+Default: &quot;&quot;
+   -->
+   <p><code>kubeletCgroups</code>是用来隔离 kubelet 的控制组（CGroup）的绝对名称。</p>
+   <p>默认值：&quot;&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>systemCgroups</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--systemCgroups is absolute name of cgroups in which to place
+all non-kernel processes that are not already in a container. Empty
+for no container. Rolling back the flag requires a reboot.
+The cgroupRoot must be specified if this field is not empty.
+Default: &quot;&qout;
+   -->
+   <p><code>systemCgroups</code>是用来放置那些未被容器化的、非内核的进程的控制组
+（CGroup）的绝对名称。设置为空字符串表示没有这类容器。回滚此字段设置需要重启节点。
+当此字段非空时，必须设置<code>cgroupRoot</code>字段。</p>
+   <p>默认值：&quot;&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>cgroupRoot</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--cgroupRoot is the root cgroup to use for pods. This is handled by the
+container runtime on a best effort basis.
+   -->
+   <p><code>cgroupRoot</code>是用来运行 Pod 的控制组（CGroup）。
+容器运行时会尽可能处理此字段的设置值。</p>
+</td>
+</tr>
+
+<tr><td><code>cgroupsPerQOS</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--cgroupsPerQOS enable QoS based CGroup hierarchy: top level CGroups for QoS classes
+and all Burstable and BestEffort Pods are brought up under their specific top level
+QoS CGroup.
+Default: true
+   -->
+   <p><code>cgroupsPerQOS</code>用来启用基于 QoS 的控制组（CGroup）层次结构：
+顶层的控制组用于不同 QoS 类，所有<code>Burstable</code>和<code>BestEffort</code> Pod
+都会被放置到对应的顶级 QoS 控制组下。</p>
+   <p>默认值：true</p>
+</td>
+</tr>
+
+<tr><td><code>cgroupDriver</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--cgroupDriver is the driver kubelet uses to manipulate CGroups on the host (cgroupfs
+or systemd).
+Default: &quot;cgroupfs&quot;
+   -->
+   <p><code>cgroupDriver</code>是 kubelet 用来操控宿主系统上控制组（CGroup）
+的驱动程序（cgroupfs 或 systemd）。</p>
+   <p>默认值：&quot;cgroupfs&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>cpuManagerPolicy</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--cpuManagerPolicy is the name of the policy to use.
+Requires the CPUManager feature gate to be enabled.
+Default: &quot;None&quot;
+   -->
+   <p><code>cpuManagerPolicy</code>是要使用的策略名称。需要启用<code>CPUManager</code>
+特性门控。</p>
+   <p>默认值：&quot;None&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>cpuManagerPolicyOptions</code><br/>
+<code>map[string]string</code>
+</td>
+<td>
+   <!--cpuManagerPolicyOptions is a set of key=value which 	allows to set extra options
+to fine tune the behaviour of the cpu manager policies.
+Requires  both the &quot;CPUManager&quot; and &quot;CPUManagerPolicyOptions&quot; feature gates to be enabled.
+Default: nil
+   -->
+   <p><code>cpuManagerPolicyOptions</code>是一组<code>key=value</code>键值映射，
+容许通过额外的选项来精细调整 CPU 管理器策略的行为。需要<code>CPUManager</code>和
+<code>CPUManagerPolicyOptions</code>两个特性门控都被启用。</p>
+   <p>默认值：nil</p>
+</td>
+</tr>
+
+<tr><td><code>cpuManagerReconcilePeriod</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--cpuManagerReconcilePeriod is the reconciliation period for the CPU Manager.
+Requires the CPUManager feature gate to be enabled.
+Default: &quot;10s&quot;
+   -->
+   <p><code>cpuManagerReconcilePeriod</code>是 CPU 管理器的协调周期时长。
+需要启用<code>CPUManager</code>特性门控。</p>
+   <p>默认值：&quot;10s&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>memoryManagerPolicy</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--memoryManagerPolicy is the name of the policy to use by memory manager.
+Requires the MemoryManager feature gate to be enabled.
+Default: &quot;none&quot;
+   -->
+   <p><code>memoryManagerPolicy</code>是内存管理器要使用的策略的名称。
+要求启用<code>MemoryManager</code>特性门控。</p>
+   <p>默认值：&quot;none&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>topologyManagerPolicy</code><br/>
+<code>string</code>
+</td>
+<td>
+  <!--
+   <p>topologyManagerPolicy is the name of the topology manager policy to use.
+Valid values include:</p>
+<ul>
+<li><code>restricted</code>: kubelet only allows pods with optimal NUMA node alignment for
+requested resources;</li>
+<li><code>best-effort</code>: kubelet will favor pods with NUMA alignment of CPU and device
+resources;</li>
+<li><code>none</code>: kubelet has no knowledge of NUMA alignment of a pod's CPU and device resources.</li>
+<li><code>single-numa-node</code>: kubelet only allows pods with a single NUMA alignment
+of CPU and device resources.</li>
+</ul>
+<p>Policies other than &quot;none&quot; require the TopologyManager feature gate to be enabled.
+Default: &quot;none&quot;</p>
+  -->
+   <p><code>topologyManagerPolicy</code>是要使用的拓扑管理器策略名称。合法值包括：</p> 
+   <ul>
+    <li><code>restricted</code>：kubelet 仅接受在所请求资源上实现最佳 NUMA 对齐的 Pod。</li>
+    <li><code>best-effort</code>：kubelet 会优选在 CPU 和设备资源上实现 NUMA 对齐的 Pod。</li>
+    <li><code>none</code>：kubelet 不了解 Pod CPU 和设备资源 NUMA 对齐需求。</li>
+    <li><code>single-numa-node</code>：kubelet 仅允许在 CPU 和设备资源上对齐到同一 NUMA 节点的 Pod。</li>
+   </ul>
+   <p>如果策略不是 &quot;none&quot;，则要求启用<code>TopologyManager</code>特性门控。</p>
+   <p>默认值：&quot;none&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>topologyManagerScope</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--
+   <p>topologyManagerScope represents the scope of topology hint generation
+that topology manager requests and hint providers generate. Valid values include:</p>
+<ul>
+<li><code>container</code>: topology policy is applied on a per-container basis.</li>
+<li><code>pod</code>: topology policy is applied on a per-pod basis.</li>
+</ul>
+<p>&quot;pod&quot; scope requires the TopologyManager feature gate to be enabled.
+Default: &quot;container&quot;</p>
+   -->
+   <p><code>topologyManagerScope</code>代表的是拓扑提示生成的范围，
+拓扑提示信息由提示提供者生成，提供给拓扑管理器。合法值包括：</p>
+   <ul>
+    <li><code>container</code>：拓扑策略是按每个容器来实施的。</li>
+    <li><code>pod</code>：拓扑策略是按每个 Pod 来实施的。</li>
+   </ul>
+   <p>&quot;pod&quot; 范围要求启用<code>TopologyManager</code>特性门控。</p>
+   <p>默认值：&quot;container&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>qosReserved</code><br/>
+<code>map[string]string</code>
+</td>
+<td>
+   <!--qosReserved is a set of resource name to percentage pairs that specify
+the minimum percentage of a resource reserved for exclusive use by the
+guaranteed QoS tier.
+Currently supported resources: &quot;memory&quot;
+Requires the QOSReserved feature gate to be enabled.
+Default: nil
+   -->
+   <p><code>qosReserved</code>是一组从资源名称到百分比值的映射，用来为<code>Guaranteed</code>
+QoS 类型的负载预留供其独占使用的资源百分比。目前支持的资源为：&quot;memory&quot;。
+需要启用<code>QOSReserved</code>特性门控。</p>
+   <p>默认值：nil</p>
+</td>
+</tr>
+
+<tr><td><code>runtimeRequestTimeout</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--runtimeRequestTimeout is the timeout for all runtime requests except long running
+requests - pull, logs, exec and attach.
+Default: &quot;2m&quot;
+   -->
+   <p><code>runtimeRequestTimeout</code>用来设置除长期运行的请求（<code>pull</code>、
+<code>logs</code>、<code>exec</code>和<code>attach</code>）之外所有运行时请求的超时时长。</p>
+   <p>默认值：&quot;2m&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>hairpinMode</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--p>hairpinMode specifies how the Kubelet should configure the container
+bridge for hairpin packets.
+Setting this flag allows endpoints in a Service to loadbalance back to
+themselves if they should try to access their own Service. Values:</p-->
+   <p><code>hairpinMode</code>设置 kubelet 如何为发夹模式数据包配置容器网桥。
+设置此字段可以让 Service 中的端点在尝试访问自身 Service 时将服务请求路由的自身。
+可选值有：</p>
+   <!--
+<li>&quot;promiscuous-bridge&quot;: make the container bridge promiscuous.</li>
+<li>&quot;hairpin-veth&quot;:       set the hairpin flag on container veth interfaces.</li>
+<li>&quot;none&quot;:               do nothing.</li>
+   -->
+   <ul>
+    <li>&quot;promiscuous-bridge&quot;：将容器网桥设置为混杂模式。</li>
+    <li>&quot;hairpin-veth&quot;：在容器的 veth 接口上设置发夹模式标记。</li>
+    <li>&quot;none&quot;：什么也不做。</li>
+   </ul>
+   <!--Generally, one must set <code>--hairpin-mode=hairpin-veth to</code> achieve hairpin NAT,
+because promiscuous-bridge assumes the existence of a container bridge named cbr0.
+Default: &quot;promiscuous-bridge&quot;
+    -->
+   <p>一般而言，用户必须设置<code>--hairpin-mode=hairpin-veth</code>才能实现发夹模式的网络地址转译
+（NAT），因为混杂模式的网桥要求存在一个名为<code>cbr0</code>的容器网桥。</p>
+   <p>默认值：&quot;promiscuous-bridge&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>maxPods</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--maxPods is the maximum number of Pods that can run on this Kubelet.
+The value must be a non-negative integer.
+Default: 110
+   -->
+   <p><code>maxPods</code>是此 kubelet 上课运行的 Pod 个数上限。此值必须为非负整数。</p>
+   <p>默认值：110</p>
+</td>
+</tr>
+
+<tr><td><code>podCIDR</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--podCIDR is the CIDR to use for pod IP addresses, only used in standalone mode.
+In cluster mode, this is obtained from the control plane.
+Default: &quot;&quot;
+   -->
+   <p><code>podCIDR</code>是用来设置 Pod IP 地址的 CIDR 值，仅用于独立部署模式。
+运行于集群模式时，这一数值会从控制面获得。</p>
+   <p>默认值：&quot;&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>podPidsLimit</code><br/>
+<code>int64</code>
+</td>
+<td>
+   <!--podPidsLimit is the maximum number of PIDs in any pod.
+Default: -1
+   -->
+   <p><code>podPidsLimit</code>是每个 Pod 中可使用的 PID 个数上限。</p>
+   <p>默认值：-1</p>
+</td>
+</tr>
+
+<tr><td><code>resolvConf</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--resolvConf is the resolver configuration file used as the basis
+for the container DNS resolution configuration.
+If set to the empty string, will override the default and effectively disable DNS lookups.
+Default: "/etc/resolv.conf"
+   -->
+   <p><code>resolvConf</code>是一个域名解析配置文件，用作容器 DNS 解析配置的基础。</p>
+   <p>如果此值设置为空字符串，则会覆盖 DNS 解析的默认配置，
+本质上相当于禁用了 DNS 查询。</p>
+   <p>默认值：&quot;/etc/resolv.conf&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>runOnce</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--runOnce causes the Kubelet to check the API server once for pods,
+run those in addition to the pods specified by static pod files, and exit.
+Default: false
+   -->
+   <p><code>runOnce</code>字段被设置时，kubelet 会咨询 API 服务器一次并获得 Pod 列表，
+运行在静态 Pod 文件中指定的 Pod 及这里所获得的 Pod，然后退出。</p>
+   <p>默认值：false</p>
+</td>
+</tr>
+
+<tr><td><code>cpuCFSQuota</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--cpuCFSQuota enables CPU CFS quota enforcement for containers that
+specify CPU limits.
+Default: true
+   -->
+   <p><code>cpuCFSQuota</code>允许为设置了 CPU 限制的容器实施 CPU CFS 配额约束。</p>
+   <p>默认值：true</p>
+</td>
+</tr>
+
+<tr><td><code>cpuCFSQuotaPeriod</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--cpuCFSQuotaPeriod is the CPU CFS quota period value, `cpu.cfs_period_us`.
+The value must be between 1 us and 1 second, inclusive.
+Requires the CustomCPUCFSQuotaPeriod feature gate to be enabled.
+Default: &quot;100ms&quot;
+   -->
+   <p><code>cpuCFSQuotaPeriod</code>设置 CPU CFS 配额周期值，<code>cpu.cfs_period_us</code>。
+此值需要介于 1 微秒和 1 秒之间，包含 1 微秒和 1 秒。
+此功能要求启用<code>CustomCPUCFSQuotaPeriod</code>特性门控被启用。</p>
+   <p>默认值：&quot;100ms&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>nodeStatusMaxImages</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--nodeStatusMaxImages caps the number of images reported in Node.status.images.
+The value must be greater than -2.
+Note: If -1 is specified, no cap will be applied. If 0 is specified, no image is returned.
+Default: 50
+   -->
+   <p><code>nodeStatusMaxImages</code>限制<code>Node.status.images</code>中报告的镜像数量。
+此值必须大于 -2。</p>
+   <p>注意：如果设置为 -1，则不会对镜像数量做限制；如果设置为 0，则不会返回任何镜像。</p>
+   <p>默认值：50</p>
+</td>
+</tr>
+
+<tr><td><code>maxOpenFiles</code><br/>
+<code>int64</code>
+</td>
+<td>
+   <!--maxOpenFiles is Number of files that can be opened by Kubelet process.
+The value must be a non-negative number.
+Default: 1000000
+   -->
+   <p><code>maxOpenFiles</code>是 kubelet 进程可以打开的文件个数。此值必须不能为负数。</p>
+   <p>默认值：1000000</p>
+</td>
+</tr>
+
+<tr><td><code>contentType</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--contentType is contentType of requests sent to apiserver.
+Default: &quot;application/vnd.kubernetes.protobuf&quot;
+   -->
+   <p><code>contentType</code>是向 API 服务器发送请求时使用的内容类型。</p>
+   <p>默认值：&quot;application/vnd.kubernetes.protobuf&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>kubeAPIQPS</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--kubeAPIQPS is the QPS to use while talking with kubernetes apiserver.
+Default: 5
+   -->
+   <p><code>kubeAPIQPS</code>设置与 Kubernetes API 服务器通信时要使用的 QPS（每秒查询数）。</p>
+   <p>默认值：5</p>
+</td>
+</tr>
+
+<tr><td><code>kubeAPIBurst</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--kubeAPIBurst is the burst to allow while talking with kubernetes API server.
+This field cannot be a negative number.
+Default: 10
+   -->
+   <p><code>kubeAPIBurst</code>设置与 Kubernetes API 服务器通信时突发的流量级别。
+此字段取值不可以是负数。</p>
+   <p>默认值：10</p>
+</td>
+</tr>
+
+<tr><td><code>serializeImagePulls</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--serializeImagePulls when enabled, tells the Kubelet to pull images one
+at a time. We recommend &lowast;not&lowast; changing the default value on nodes that
+run docker daemon with version  < 1.9 or an Aufs storage backend.
+Issue #10959 has more details.
+Default: true
+   -->
+   <p><code>serializeImagePulls</code>被启用时会通知 kubelet 每次仅拉取一个镜像。
+我们建议<em>不要</em>在所运行的 docker 守护进程版本低于 1.9、使用 aufs
+存储后端的节点上更改默认值。详细信息可参见 Issue #10959。</p>
+   <p>默认值：true</p>
+</td>
+</tr>
+
+<tr><td><code>evictionHard</code><br/>
+<code>map[string]string</code>
+</td>
+<td>
+   <!--evictionHard is a map of signal names to quantities that defines hard eviction thresholds. 
+For example: <code>{&quot;memory.available&quot;: &quot;300Mi&quot;}</code>.
+To explicitly disable, pass a 0% or 100% threshold on an arbitrary resource.
+Default:
+   memory.available:  &quot;100Mi&quot;
+   nodefs.available:  &quot;10%&quot;
+   nodefs.inodesFree: &quot;5%&quot;
+   imagefs.available: &quot;15%&quot;
+   -->
+   <p><code>evictionHard</code>是一个映射，是从信号名称到定义硬性驱逐阈值的映射。
+例如：<code>{&quot;memory.available&quot;: &quot;300Mi&quot;}</code>。
+如果希望显式地禁用，可以在任意资源上将其阈值设置为 0% 或 100%。</p>
+   <p>默认值：</p>
+   <code><pre>
+   memory.available:  &quot;100Mi&quot;
+   nodefs.available:  &quot;10%&quot;
+   nodefs.inodesFree: &quot;5%&quot;
+   imagefs.available: &quot;15%&quot;
+  </pre></code>
+</td>
+</tr>
+
+<tr><td><code>evictionSoft</code><br/>
+<code>map[string]string</code>
+</td>
+<td>
+   <!--evictionSoft is a map of signal names to quantities that defines soft eviction thresholds.
+For example: <code>{&quot;memory.available&quot;: &quot;300Mi&quot;}</code>.
+Default: nil
+   -->
+   <p><code>evictionSoft</code>是一个映射，是从信号名称到定义软性驱逐阈值的映射。
+例如：<code>{&quot;memory.available&quot;: &quot;300Mi&quot;}</code>。</p>
+   <p>默认值：nil</p>
+</td>
+</tr>
+
+<tr><td><code>evictionSoftGracePeriod</code><br/>
+<code>map[string]string</code>
+</td>
+<td>
+   <!--evictionSoftGracePeriod is a map of signal names to quantities that defines grace
+periods for each soft eviction signal. For example: <code>{&quot;memory.available&quot;: &quot;30s&quot;}</code>.
+Default: nil
+   -->
+   <p><code>evictionSoftGracePeriod</code>是一个映射，是从信号名称到每个软性驱逐信号的宽限期限。
+例如：<code>{&quot;memory.available&quot;: &quot;30s&quot;}</code>。</p>
+   <p>默认值：nil</p>
+</td>
+</tr>
+
+<tr><td><code>evictionPressureTransitionPeriod</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--evictionPressureTransitionPeriod is the duration for which the kubelet has to wait
+before transitioning out of an eviction pressure condition.
+Default: &quot;5m&quot;
+   -->
+   <p><code>evictionPressureTransitionPeriod</code>设置 kubelet
+离开驱逐压力状况之前必须要等待的时长。</p>
+   <p>默认值：&quot;5m&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>evictionMaxPodGracePeriod</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--evictionMaxPodGracePeriod is the maximum allowed grace period (in seconds) to use
+when terminating pods in response to a soft eviction threshold being met. This value
+effectively caps the Pod's terminationGracePeriodSeconds value during soft evictions.
+Note: Due to issue #64530, the behavior has a bug where this value currently just
+overrides the grace period during soft eviction, which can increase the grace
+period from what is set on the Pod. This bug will be fixed in a future release.
+Default: 0
+   -->
+   <p><code>evictionMaxPodGracePeriod</code>是指达到软性逐出阈值而引起 Pod 终止时，
+可以赋予的宽限期限最大值（按秒计）。这个值本质上限制了软性逐出事件发生时，
+Pod 可以获得的<code>terminationGracePeriodSeconds</code>。</p>
+   <p>注意：由于 Issue #64530 的原因，系统中存在一个缺陷，即此处所设置的值会在软性逐出时覆盖
+Pod 的宽限期设置，从而有可能增加 Pod 上原本设置的宽限期限时长。
+这个缺陷会在未来版本中修复。</p>
+   <p>默认值：0</p>
+</td>
+</tr>
+
+<tr><td><code>evictionMinimumReclaim</code><br/>
+<code>map[string]string</code>
+</td>
+<td>
+   <!--evictionMinimumReclaim is a map of signal names to quantities that defines minimum reclaims,
+which describe the minimum amount of a given resource the kubelet will reclaim when
+performing a pod eviction while that resource is under pressure.
+For example: <code>{&quot;imagefs.available&quot;: &quot;2Gi&quot;}</code>.
+Default: nil
+   -->
+   <p><code>evictionMinimumReclaim</code>是一个映射，定义信号名称与最小回收量数值之间的关系。
+最小回收量指的是资源压力较大而执行 Pod 驱逐操作时，kubelet 对给定资源的最小回收量。
+例如：<code>{&quot;imagefs.available&quot;: &quot;2Gi&quot;}</code>。</p>
+   <p>默认值：nil</p>
+</td>
+</tr>
+
+<tr><td><code>podsPerCore</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--podsPerCore is the maximum number of pods per core. Cannot exceed maxPods.
+The value must be a non-negative integer.
+If 0, there is no limit on the number of Pods.
+Default: 0
+   -->
+   <p><code>podsPerCore</code>设置的是每个核上 Pod 个数上限。此值不能超过<code>maxPods</code>。
+所设值必须是非负整数。如果设置为 0，则意味着对 Pod 个数没有限制。</p>
+   <p>默认值：0</p>
+</td>
+</tr>
+
+<tr><td><code>enableControllerAttachDetach</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--enableControllerAttachDetach enables the Attach/Detach controller to
+manage attachment/detachment of volumes scheduled to this node, and
+disables kubelet from executing any attach/detach operations.
+Note: attaching/detaching CSI volumes is not supported by the kubelet,
+so this option needs to be true for that use case.
+Default: true
+   -->
+   <p><code>enableControllerAttachDetach</code>用来允许 Attach/Detach
+控制器管理调度到本节点的卷的挂接（attachment）和解除挂接（detachement），
+并且禁止 kubelet 执行任何 attach/detach 操作。</p>
+   <p>注意：kubelet 不支持挂接 CSI 卷和解除挂接，
+因此对于该用例，此选项必须为 true。</p>
+   <p>默认值：true</p>
+</td>
+</tr>
+
+<tr><td><code>protectKernelDefaults</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--protectKernelDefaults, if true, causes the Kubelet to error if kernel
+flags are not as it expects. Otherwise the Kubelet will attempt to modify
+kernel flags to match its expectation.
+Default: false
+   -->
+   <p><code>protectKernelDefaults</code>设置为<code>true</code>时，会令 kubelet
+在发现内核参数与预期不符时出错退出。若此字段设置为<code>false</code>，则 kubelet
+会尝试更改内核参数以满足其预期。</p>
+   <p>默认值：false</p>
+</td>
+</tr>
+
+<tr><td><code>makeIPTablesUtilChains</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--makeIPTablesUtilChains, if true, causes the Kubelet ensures a set of iptables rules
+are present on host.
+These rules will serve as utility rules for various components, e.g. kube-proxy.
+The rules will be created based on iptablesMasqueradeBit and iptablesDropBit.
+Default: true
+   -->
+   <p><code>makeIPTablesUtilChains</code>设置为<code>true</code>时，相当于允许 kubelet
+确保一组 iptables 规则存在于宿主机上。这些规则会为不同的组件（例如 kube-proxy）
+提供工具性质的规则。它们是基于<code>iptablesMasqueradeBit</code>和<code>iptablesDropBit</code>
+来创建的。</p>
+   <p>默认值：true</p>
+</td>
+</tr>
+
+<tr><td><code>iptablesMasqueradeBit</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--iptablesMasqueradeBit is the bit of the iptables fwmark space to mark for SNAT.
+Values must be within the range [0, 31]. Must be different from other mark bits.
+Warning: Please match the value of the corresponding parameter in kube-proxy.
+TODO: clean up IPTablesMasqueradeBit in kube-proxy.
+Default: 14
+   -->
+   <p><code>iptablesMasqueradeBit</code>是 iptables fwmark 空间中用来为 SNAT
+作标记的位。此值必须介于<code>[0, 31]</code>区间，必须与其他标记位不同。</p>
+   <p>警告：请确保此值设置与 kube-proxy 中对应的参数设置取值相同。</p>
+   <p>默认值：14</p>
+</td>
+</tr>
+
+<tr><td><code>iptablesDropBit</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--iptablesDropBit is the bit of the iptables fwmark space to mark for dropping packets.
+Values must be within the range [0, 31]. Must be different from other mark bits.
+Default: 15
+   -->
+   <p><code>iptablesDropBit</code>是 iptables fwmark 空间中用来标记丢弃包的数据位。
+此值必须介于<code>[0, 31]</code>区间，必须与其他标记位不同。</p>
+   <p>默认值：15</p>
+</td>
+</tr>
+
+<tr><td><code>featureGates</code><br/>
+<code>map[string]bool</code>
+</td>
+<td>
+   <!--featureGates is a map of feature names to bools that enable or disable experimental
+features. This field modifies piecemeal the built-in default values from
+&quot;k8s.io/kubernetes/pkg/features/kube_features.go&quot;.
+Default: nil
+   -->
+   <p><code>featureGates</code>是一个从功能特性名称到布尔值的映射，用来启用或禁用实验性的功能。
+此字段可逐条更改文件 &quot;k8s.io/kubernetes/pkg/features/kube_features.go&quot;
+中所给的内置默认值。</p>
+   <p>默认值：nil</p>
+</td>
+</tr>
+
+<tr><td><code>failSwapOn</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--failSwapOn tells the Kubelet to fail to start if swap is enabled on the node.
+Default: true
+   -->
+   <p><code>failSwapOn</code>通知 kubelet 在节点上启用交换分区时拒绝启动。</p>
+   <p>默认值：true</p>
+</td>
+</tr>
+
+<tr><td><code>memorySwap</code><br/>
+<a href="#kubelet-config-k8s-io-v1beta1-MemorySwapConfiguration"><code>MemorySwapConfiguration</code></a>
+</td>
+<td>
+   <!--memorySwap configures swap memory available to container workloads.
+   -->
+   <p><code>memorySwap</code>配置容器负载可用的交换内存。</p>
+</td>
+</tr>
+
+<tr><td><code>containerLogMaxSize</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--containerLogMaxSize is a quantity defining the maximum size of the container log
+file before it is rotated. For example: &quot;5Mi&quot; or &quot;256Ki&quot;.
+Default: &quot;10Mi&quot;
+   -->
+   <p><code>containerLogMaxSize</code>是定义容器日志文件被轮转之前可以到达的最大尺寸。
+例如：&quot;5Mi&quot; 或 &quot;256Ki&quot;。</p>
+   <p>默认值：&quot;10Mi&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>containerLogMaxFiles</code><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--containerLogMaxFiles specifies the maximum number of container log files that can
+be present for a container.
+Default: 5
+   -->
+   <p><code>containerLogMaxFiles</code>设置每个容器可以存在的日志文件个数上限。</p>
+   <p>默认值：&quot;5&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>configMapAndSecretChangeDetectionStrategy</code><br/>
+<a href="#kubelet-config-k8s-io-v1beta1-ResourceChangeDetectionStrategy"><code>ResourceChangeDetectionStrategy</code></a>
+</td>
+<td>
+   <!--
+   <p>configMapAndSecretChangeDetectionStrategy is a mode in which ConfigMap and Secret
+managers are running. Valid values include:</p>
+<ul>
+<li><code>Get</code>: kubelet fetches necessary objects directly from the API server;</li>
+<li><code>Cache</code>: kubelet uses TTL cache for object fetched from the API server;</li>
+<li><code>Watch</code>: kubelet uses watches to observe changes to objects that are in its interest.</li>
+</ul>
+<p>Default: &quot;Watch&quot;</p>
+   -->
+   <p><code>configMapAndSecretChangeDetectionStrategy</code>是 ConfigMap 和 Secret
+管理器的运行模式。合法值包括：</p>
+   <ul>
+    <li><code>Get</code>：kubelet 从 API 服务器直接取回必要的对象；</li>
+    <li><code>Cache</code>：kubelet 使用 TTL 缓存来管理来自 API 服务器的对象；</li>
+    <li><code>Watch</code>：kubelet 使用 watch 操作来观察所关心的对象的变更。</li>
+    </ul>
+   <p>默认值：&quot;Watch&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>systemReserved</code><br/>
+<code>map[string]string</code>
+</td>
+<td>
+   <!--systemReserved is a set of ResourceName=ResourceQuantity (e.g. cpu=200m,memory=150G)
+pairs that describe resources reserved for non-kubernetes components.
+Currently only cpu and memory are supported.
+See http://kubernetes.io/docs/user-guide/compute-resources for more detail.
+Default: nil
+   -->
+   <p><code>systemReserved</code>是一组<code>资源名称=资源数量</code>对，
+用来描述为非 Kubernetes 组件预留的资源（例如：'cpu=200m,memory=150G'）。</p>
+   <p>目前仅支持 CPU 和内存。更多细节可参见
+   https://kubernetes.io/zh-cn/docs/concepts/configuration/manage-resources-containers/ 。</p>
+   <p>默认值：Nil</p>
+</td>
+</tr>
+
+<tr><td><code>kubeReserved</code><br/>
+<code>map[string]string</code>
+</td>
+<td>
+   <!--kubeReserved is a set of ResourceName=ResourceQuantity (e.g. cpu=200m,memory=150G) pairs
+that describe resources reserved for kubernetes system components.
+Currently cpu, memory and local storage for root file system are supported.
+See https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+for more details.
+Default: nil
+   -->
+   <p><code>kubeReserved</code>是一组<code>资源名称=资源数量</code>对，
+用来描述为 Kubernetes 系统组件预留的资源（例如：'cpu=200m,memory=150G'）。
+目前支持 CPU、内存和根文件系统的本地存储。
+更多细节可参见 https://kubernetes.io/zh/docs/concepts/configuration/manage-resources-containers/。</p>
+   <p>默认值：Nil</p>
+</td>
+</tr>
+
+<tr><td><code>reservedSystemCPUs</code> <B>[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <!--The reservedSystemCPUs option specifies the CPU list reserved for the host
+level system threads and kubernetes related threads. This provide a &quot;static&quot;
+CPU list rather than the &quot;dynamic&quot; list by systemReserved and kubeReserved.
+This option does not support systemReservedCgroup or kubeReservedCgroup.
+   -->
+   <p><code>reservedSystemCPUs</code>选项设置为宿主级系统线程和 Kubernetes
+相关线程所预留的 CPU 列表。此字段提供的是一种“静态”的 CPU 列表，而不是像
+<code>systemReserved</code>和<code>kubeReserved</code>所提供的“动态”列表。
+此选项不支持<code>systemReservedCgroup</code>或<code>kubeReservedCgroup</code>。</p>
+</td>
+</tr>
+
+<tr><td><code>showHiddenMetricsForVersion</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--showHiddenMetricsForVersion is the previous version for which you want to show
+hidden metrics.
+Only the previous minor version is meaningful, other values will not be allowed.
+The format is <code>&lt;major&gt;.&lt;minor&gt;</code>, e.g.: <code>1.16</code>.
+The purpose of this format is make sure you have the opportunity to notice
+if the next release hides additional metrics, rather than being surprised
+when they are permanently removed in the release after that.
+Default: &quot;&quot;
+   -->
+   <p><code>showHiddenMetricsForVersion<code>是你希望显示隐藏度量值的上一版本。
+只有上一个次版本是有意义的，其他值都是不允许的。
+字段值的格式为<code>&lt;major&gt;.&lt;minor&gt;</code>，例如：<code>1.16</code>。
+此格式的目的是为了确保在下一个版本中有新的度量值被隐藏时，你有机会注意到这类变化，
+而不是当这些度量值在其后的版本中彻底去除时来不及应对。</p>
+   <p>默认值：&quot;&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>systemReservedCgroup</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--systemReservedCgroup helps the kubelet identify absolute name of top level CGroup used
+to enforce <code>systemReserved</code> compute resource reservation for OS system daemons.
+Refer to <a href="https://git.k8s.io/design-proposals-archive/node/node-allocatable.md">Node Allocatable</a>
+doc for more information.
+Default: &quot;&quot;
+   -->
+   <p><code>systemReservedCgroup</code>帮助 kubelet 识别用来为 OS 系统级守护进程实施
+<code>systemReserved</code>计算资源预留时使用的顶级控制组（CGroup）。
+参考 <a href="https://git.k8s.io/design-proposals-archive/node/node-allocatable.md">Node Allocatable</a>
+以了解详细信息。</p>
+   <p>默认值：&quot;&quot;</p>
+</td>
+</tr>
+
+
+<tr><td><code>kubeReservedCgroup</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--kubeReservedCgroup helps the kubelet identify absolute name of top level CGroup used
+to enforce `KubeReserved` compute resource reservation for Kubernetes node system daemons.
+Refer to <a href="https://git.k8s.io/design-proposals-archive/node/node-allocatable.md">Node Allocatable</a>
+doc for more information.
+Default: ""
+   -->
+   <p><code>kubeReservedCgroup</code> 帮助 kubelet 识别用来为 Kubernetes 节点系统级守护进程实施
+<code>kubeReserved</code>计算资源预留时使用的顶级控制组（CGroup）。
+参阅 <a href="https://git.k8s.io/design-proposals-archive/node/node-allocatable.md">Node Allocatable</a>
+了解进一步的信息。</p>
+   <p>默认值：&quot;&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>enforceNodeAllocatable</code><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--This flag specifies the various Node Allocatable enforcements that Kubelet needs to perform.
+This flag accepts a list of options. Acceptable options are <code>none</code>, <code>pods</code>,
+<code>system-reserved</code> and <code>kube-reserved</code>.
+If <code>none</code> is specified, no other options may be specified.
+When <code>system-reserved</code> is in the list, systemReservedCgroup must be specified.
+When <code>kube-reserved</code> is in the list, kubeReservedCgroup must be specified.
+This field is supported only when <code>cgroupsPerQOS</code> is set to true.
+Refer to <a href="https://git.k8s.io/design-proposals-archive/node/node-allocatable.md">Node Allocatable</a>
+for more information.
+Default: [&quot;pods&quot;]
+   -->
+   <p>此标志设置 kubelet 需要执行的各类节点可分配资源策略。此字段接受一组选项列表。
+可接受的选项有<code>none</code>、<code>pods</code>、<code>system-reserved</code>和
+<code>kube-reserved</code>。</p>
+   <p>如果设置了<code>none</code>，则字段值中不可以包含其他选项。</p>
+   <p>如果列表中包含<code>system-reserved</code>，则必须设置<code>systemReservedCgroup</code>。</p>
+   <p>如果列表中包含<code>kube-reserved</code>，则必须设置<code>kubeReservedCgroup</code>。</p>
+   <p>这个字段只有在<code>cgroupsPerQOS</code>被设置为<code>true</code>才被支持。</p>
+   <p>参阅<a href="https://git.k8s.io/design-proposals-archive/node/node-allocatable.md">Node Allocatable</a>
+了解进一步的信息。</p>
+   <p>默认值：[&quot;pods&quot;]</p>
+</td>
+</tr>
+
+<tr><td><code>allowedUnsafeSysctls</code><br/>
+<code>[]string</code>
+</td>
+<td>
+   <!--A comma separated whitelist of unsafe sysctls or sysctl patterns (ending in <code>*</code>).
+Unsafe sysctl groups are <code>kernel.shm*</code>, <code>kernel.msg*</code>, <code>kernel.sem</code>, <code>fs.mqueue.*</code>,
+and <code>net.*</code>. For example: &quot;<code>kernel.msg*,net.ipv4.route.min_pmtu</code>&quot;
+Default: []
+  -->
+   <p>用逗号分隔的白名单列表，其中包含不安全的 sysctl 或 sysctl 模式（以<code>&lowast;</code>结尾）。
+</p>
+   <p>不安全的 sysctl 组有 <code>kernel.shm&lowast;</code>、<code>kernel.msg&lowast;</code>、
+<code>kernel.sem</code>、<code>fs.mqueue.&lowast;</code> 和<code>net.&lowast;</code>。</p>
+   <p>例如：&quot;<code>kernel.msg&lowast;,net.ipv4.route.min\_pmtu</code>&quot;</p>
+   <p>默认值：[]</p>
+</td>
+</tr>
+
+<tr><td><code>volumePluginDir</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--volumePluginDir is the full path of the directory in which to search
+for additional third party volume plugins.
+Default: &quot;/usr/libexec/kubernetes/kubelet-plugins/volume/exec/&quot;
+   -->
+   <p><code>volumePluginDir</code>是用来搜索其他第三方卷插件的目录的路径。</p>
+   <p>默认值：&quot;/usr/libexec/kubernetes/kubelet-plugins/volume/exec/&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>providerID</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--providerID, if set, sets the unique ID of the instance that an external
+provider (i.e. cloudprovider) can use to identify a specific node.
+Default: &quot;quot;
+   -->
+   <p><code>providerID</code>字段被设置时，指定的是一个外部提供者（即云驱动）实例的唯一 ID，
+该提供者可用来唯一性地标识特定节点。</p>
+   <p>默认值：&quot;&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>kernelMemcgNotification</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--kernelMemcgNotification, if set, instructs the the kubelet to integrate with the
+kernel memcg notification for determining if memory eviction thresholds are
+exceeded rather than polling.
+Default: false
+   -->
+   <p><code>kernelMemcgNotification</code>字段如果被设置了，会告知 kubelet 集成内核的
+memcg 通知机制来确定是否超出内存逐出阈值，而不是使用轮询机制来判定。</p>
+   <p>默认值：false</p>
+</td>
+</tr>
+
+<tr><td><code>logging</code> <B>[必需]</B><br/>
+<a href="#LoggingConfiguration"><code>LoggingConfiguration</code></a>
+</td>
+<td>
+   <!--logging specifies the options of logging.
+Refer to <a href="https://github.com/kubernetes/component-base/blob/master/logs/options.go">Logs Options</a>
+for more information.
+Default:
+  Format: text
+   -->
+   <p><code>logging</code>设置日志机制选项。更多的详细信息科参阅
+<a href="https://github.com/kubernetes/component-base/blob/master/logs/options.go">日志选项</a>。</p>
+   <p>默认值：</p>
+   <code><pre>Format: text</pre></code>
+</td>
+</tr>
+
+<tr><td><code>enableSystemLogHandler</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--enableSystemLogHandler enables system logs via web interface host:port/logs/
+Default: true
+   -->
+   <p><code>enableSystemLogHandler</code>用来启用通过 Web 接口 host:port/logs/
+访问系统日志的能力。</p>
+   <p>默认值：true</p>
+</td>
+</tr>
+
+<tr><td><code>shutdownGracePeriod</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--shutdownGracePeriod specifies the total duration that the node should delay the
+shutdown and total grace period for pod termination during a node shutdown.
+Default: &quot;0s&quot;
+   -->
+   <p><code>shutdownGracePeriod</code>设置节点关闭期间，节点自身需要延迟以及为
+Pod 提供的宽限期限的总时长。</p>
+   <p>默认值：&quot;0s&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>shutdownGracePeriodCriticalPods</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--shutdownGracePeriodCriticalPods specifies the duration used to terminate critical
+pods during a node shutdown. This should be less than shutdownGracePeriod.
+For example, if shutdownGracePeriod=30s, and shutdownGracePeriodCriticalPods=10s,
+during a node shutdown the first 20 seconds would be reserved for gracefully
+terminating normal pods, and the last 10 seconds would be reserved for terminating
+critical pods.
+Default: &quot;0s&quot;
+   -->
+   <p><code>shutdownGracePeriodCriticalPods</code>设置节点关闭期间用来终止关键性
+Pod 的时长。此时长要短于<code>shutdownGracePeriod</code>。
+例如，如果<code>shutdownGracePeriod=30s</code>，<code>shutdownGracePeriodCriticalPods=10s<code>，
+在节点关闭期间，前 20 秒钟被预留用来体面终止普通 Pod，后 10 秒钟用来终止关键 Pod。</p>
+   <p>默认值：&quot;0s&quot;</p>
+</td>
+</tr>
+
+<tr><td><code>shutdownGracePeriodByPodPriority</code><br/>
+<a href="#kubelet-config-k8s-io-v1beta1-ShutdownGracePeriodByPodPriority"><code>[]ShutdownGracePeriodByPodPriority</code></a>
+</td>
+<td>
+   <!--
+   shutdownGracePeriodByPodPriority specifies the shutdown grace period for Pods based
+on their associated priority class value.
+When a shutdown request is received, the Kubelet will initiate shutdown on all pods
+running on the node with a grace period that depends on the priority of the pod,
+and then wait for all pods to exit.
+Each entry in the array represents the graceful shutdown time a pod with a priority
+class value that lies in the range of that value and the next higher entry in the
+list when the node is shutting down.
+For example, to allow critical pods 10s to shutdown, priority&gt;=10000 pods 20s to
+shutdown, and all remaining pods 30s to shutdown.
+-->
+   <p><code>shutdownGracePeriodByPodPriority</code>设置基于 Pod
+相关的优先级类值而确定的体面关闭时间。当 kubelet 收到关闭请求的时候，kubelet
+会针对节点上运行的所有 Pod 发起关闭操作，这些关闭操作会根据 Pod 的优先级确定其宽限期限，
+之后 kubelet 等待所有 Pod 退出。</p>
+   <p>数组中的每个表项代表的是节点关闭时 Pod 的体面终止时间；这里的 Pod
+的优先级类介于列表中当前优先级类值和下一个表项的优先级类值之间。</p>
+   <p>例如，要赋予关键 Pod 10 秒钟时间来关闭，赋予优先级&gt;=10000 Pod 20 秒钟时间来关闭，
+赋予其余的 Pod 30 秒钟来关闭。</p>
+   <p>shutdownGracePeriodByPodPriority:</p>
+   <ul>
+   <li>priority: 2000000000
+   shutdownGracePeriodSeconds: 10</li>
+   <li>priority: 10000
+   shutdownGracePeriodSeconds: 20</li>
+   <li>priority: 0
+   shutdownGracePeriodSeconds: 30</li>
+   </ul>
+<!--
+The time the Kubelet will wait before exiting will at most be the maximum of all
+shutdownGracePeriodSeconds for each priority class range represented on the node.
+When all pods have exited or reached their grace periods, the Kubelet will release
+the shutdown inhibit lock.
+Requires the GracefulNodeShutdown feature gate to be enabled.
+This configuration must be empty if either ShutdownGracePeriod or ShutdownGracePeriodCriticalPods is set.
+Default: nil
+-->
+   <p>在退出之前，kubelet 要等待的时间上限为节点上所有优先级类的
+<code>shutdownGracePeriodSeconds</code>的最大值。
+当所有 Pod 都退出或者到达其宽限期限时，kubelet 会释放关闭防护锁。
+此功能要求<code>GracefulNodeShutdown</code>特性门控被启用。</p>
+   <p>当<code>shutdownGracePeriod</code>或<code>shutdownGracePeriodCriticalPods</code>
+被设置时，此配置字段必须为空。</p>
+   <p>默认值：nil</p>
+</td>
+</tr>
+
+<tr><td><code>reservedMemory</code><br/>
+<a href="#kubelet-config-k8s-io-v1beta1-MemoryReservation"><code>[]MemoryReservation</code></a>
+</td>
+<td>
+   <!--reservedMemory specifies a comma-separated list of memory reservations for NUMA nodes.
+The parameter makes sense only in the context of the memory manager feature.
+The memory manager will not allocate reserved memory for container workloads.
+For example, if you have a NUMA0 with 10Gi of memory and the reservedMemory was
+specified to reserve 1Gi of memory at NUMA0, the memory manager will assume that
+only 9Gi is available for allocation.
+You can specify a different amount of NUMA node and memory types.
+You can omit this parameter at all, but you should be aware that the amount of
+reserved memory from all NUMA nodes should be equal to the amount of memory specified
+by the <a href="https://kubernetes.io/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable">node allocatable</a>.
+If at least one node allocatable parameter has a non-zero value, you will need
+to specify at least one NUMA node.
+Also, avoid specifying:</p>
+<ol>
+<li>Duplicates, the same NUMA node, and memory type, but with a different value.</li>
+<li>zero limits for any memory type.</li>
+<li>NUMAs nodes IDs that do not exist under the machine.</li>
+<li>memory types except for memory and hugepages-&lt;size&gt;</li>
+</ol>
+<p>Default: nil</p>
+-->
+   <p><code>reservedMemory</code>给出一个逗号分隔的列表，为 NUMA 节点预留内存。</p>
+   <p>此参数仅在内存管理器功能特性语境下有意义。内存管理器不会为容器负载分配预留内存。
+例如，如果你的 NUMA0 节点内存为 10Gi，<code>reservedMemory</code>设置为在 NUMA0
+上预留 1Gi 内存，内存管理器会认为其上只有 9Gi 内存可供分配。</p>
+   <p>你可以设置不同数量的 NUMA 节点和内存类型。你也可以完全忽略这个字段，不过你要清楚，
+所有 NUMA 节点上预留内存的总量要等于通过
+<a href="https://kubernetes.io/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable">node allocatable</a>
+设置的内存量。</p>
+   <p>如果至少有一个节点可分配参数设置值非零，则你需要设置至少一个 NUMA 节点。</p>
+   <p>此外，避免如下设置：</p>
+   <ol>
+   <li>在配置值中存在重复项，NUMA 节点和内存类型相同，但配置值不同，这是不允许的。</li>
+   <li>为任何内存类型设置限制值为零。</li>
+   <li>NUMA 节点 ID 在宿主系统上不存在。/li>
+   <li>除<code>memory</code>和<code>hugepages-&lt;size&gt;</code>之外的内存类型。</li>
+   </ol>
+   <p>默认值：nil</p>
+</td>
+</tr>
+
+<tr><td><code>enableProfilingHandler</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--enableProfilingHandler enables profiling via web interface host:port/debug/pprof/
+Default: true
+   -->
+   <p><code>enableProfilingHandler</code>启用通过 host:port/debug/pprof/ 接口来执行性能分析。</p>
+   <p>默认值：true</p>
+</td>
+</tr>
+
+<tr><td><code>enableDebugFlagsHandler</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--enableDebugFlagsHandler enables flags endpoint via web interface host:port/debug/flags/v
+Default: true
+   -->
+   <p><code>enableDebugFlagsHandler</code>启用通过 host:port/debug/flags/v Web
+接口上的标志设置。</p>
+   <p>默认值：true</p>
+</td>
+</tr>
+
+<tr><td><code>seccompDefault</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--SeccompDefault enables the use of <code>RuntimeDefault</code> as the default seccomp profile for all workloads.
+This requires the corresponding SeccompDefault feature gate to be enabled as well.
+Default: false
+   -->
+   <p><code>seccompDefault</code>字段允许针对所有负载将<code>RuntimeDefault</code>
+设置为默认的 seccomp 配置。这一设置要求对应的<code>SeccompDefault</code>特性门控被启用。</p>
+   <p>默认值：false</p>
+</td>
+</tr>
+
+<tr><td><code>memoryThrottlingFactor</code><br/>
+<code>float64</code>
+</td>
+<td>
+   <!--MemoryThrottlingFactor specifies the factor multiplied by the memory limit or node allocatable memory
+when setting the cgroupv2 memory.high value to enforce MemoryQoS.
+Decreasing this factor will set lower high limit for container cgroups and put heavier reclaim pressure
+while increasing will put less reclaim pressure.
+See http://kep.k8s.io/2570 for more details.
+Default: 0.8
+   -->
+   <p>当设置 cgroupv2 <code>memory.high</code>以实施<code>MemoryQoS</code>特性时，
+<code>memoryThrottlingFactor</code>用来作为内存限制或节点可分配内存的系数。</p>
+   <p>减小此系数会为容器控制组设置较低的 high 限制值，从而增大回收压力；反之，
+增大此系数会降低回收压力。更多细节参见 http://kep.k8s.io/2570。</p>
+   <p>默认值：0.8</p>
+</td>
+</tr>
+
+<tr><td><code>registerWithTaints</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#taint-v1-core"><code>[]core/v1.Taint</code></a>
+</td>
+<td>
+   <!--registerWithTaints are an array of taints to add to a node object when
+the kubelet registers itself. This only takes effect when registerNode
+is true and upon the initial registration of the node.
+Default: nil
+   -->
+   <p><code>registerWithTaints</code>是一个由污点组成的数组，包含 kubelet
+注册自身时要向节点对象添加的污点。只有<code>registerNode</code>为<code>true</code>
+时才会起作用，并且仅在节点的最初注册时起作用。</p>
+   <p>默认值：nil</p>
+</td>
+</tr>
+
+<tr><td><code>registerNode</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--registerNode enables automatic registration with the apiserver.
+Default: true
+   -->
+   <p><code>registerNode</code>启用向 API 服务器的自动注册。</p>
+   <p>默认值：true</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `SerializedNodeConfigSource`     {#kubelet-config-k8s-io-v1beta1-SerializedNodeConfigSource}
+
+<!--
+SerializedNodeConfigSource allows us to serialize v1.NodeConfigSource.
+This type is used internally by the Kubelet for tracking checkpointed dynamic configs.
+It exists in the kubeletconfig API group because it is classified as a versioned input to the Kubelet.
+-->
+SerializedNodeConfigSource 允许对 `v1.NodeConfigSource` 执行序列化操作。
+这一类型供 kubelet 内部使用，以便跟踪动态配置的检查点。
+此资源存在于 kubeletconfig API 组是因为它被当做是对 kubelet 的一种版本化输入。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>apiVersion</code><br/>string</td><td><code>kubelet.config.k8s.io/v1beta1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>SerializedNodeConfigSource</code></td></tr>
+
+<tr><td><code>source</code><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#nodeconfigsource-v1-core"><code>core/v1.NodeConfigSource</code></a>
+</td>
+<td>
+   <!--source is the source that we are serializing.
+   -->
+   <p><code>source</code>是我们执行序列化的数据源。</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
+## `CredentialProvider`     {#kubelet-config-k8s-io-v1beta1-CredentialProvider}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [CredentialProviderConfig](#kubelet-config-k8s-io-v1beta1-CredentialProviderConfig)
+
+<!--
+CredentialProvider represents an exec plugin to be invoked by the kubelet. The plugin is only
+invoked when an image being pulled matches the images handled by the plugin (see matchImages).
+-->
+CredentialProvider 代表的是要被 kubelet 调用的一个 exec 插件。
+这一插件只会在所拉取的镜像与该插件所处理的镜像匹配时才会被调用（参见 <code>matchImages</code>）。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>name</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+<!--
+name is the required name of the credential provider. It must match the name of the
+provider executable as seen by the kubelet. The executable must be in the kubelet's
+bin directory (set by the --image-credential-provider-bin-dir flag).
+-->
+   <p>
+   <code>name</code> 是凭据提供者的名称（必需）。此名称必须与 kubelet
+   所看到的提供者可执行文件的名称匹配。可执行文件必须位于 kubelet 的 
+   <code>bin</code> 目录（通过 <code>--image-credential-provider-bin-dir</code> 设置）下。
+   </p>
+</td>
+</tr>
+<tr><td><code>matchImages</code> <B><!--[Required]-->[必需]</B><br/>
+<code>[]string</code>
+</td>
+<td>
+<!--
+matchImages is a required list of strings used to match against images in order to
+determine if this provider should be invoked. If one of the strings matches the
+requested image from the kubelet, the plugin will be invoked and given a chance
+to provide credentials. Images are expected to contain the registry domain
+and URL path.
+-->
+<p><code>matchImages</code> 是一个必须设置的字符串列表，用来匹配镜像以便确定是否要调用此提供者。
+如果字符串之一与 kubelet 所请求的镜像匹配，则此插件会被调用并给予提供凭证的机会。
+镜像应该包含镜像库域名和 URL 路径。</p>
+<!--
+Each entry in matchImages is a pattern which can optionally contain a port and a path.
+Globs can be used in the domain, but not in the port or the path. Globs are supported
+as subdomains like '<em>.k8s.io' or 'k8s.</em>.io', and top-level-domains such as 'k8s.<em>'.
+Matching partial subdomains like 'app</em>.k8s.io' is also supported. Each glob can only match
+a single subdomain segment, so *.io does not match *.k8s.io.
+-->
+<p><code>matchImages</code> 中的每个条目都是一个模式字符串，其中可以包含端口号和路径。
+域名部分可以包含统配符，但端口或路径部分不可以。通配符可以用作子域名，例如
+'*.k8s.io' 或 'k8s.*.io'，以及顶级域名，如 'k8s.*'。</p>
+<p>对类似 'app*.k8s.io' 这类部分子域名的匹配也是支持的。
+每个通配符只能用来匹配一个子域名段，所以 '*.io' 不会匹配 '*.k8s.io'。</p>
+<!--
+A match exists between an image and a matchImage when all of the below are true:
+-->
+<p>镜像与 <code>matchImages</code> 之间存在匹配时，以下条件都要满足：</p>
+<ul>
+<!--
+<li>Both contain the same number of domain parts and each part matches.</li>
+<li>The URL path of an imageMatch must be a prefix of the target image URL path.</li>
+<li>If the imageMatch contains a port, then the port must match in the image as well.</li>
+-->
+  <li>二者均包含相同个数的域名部分，并且每个域名部分都对应匹配；</li>
+  <li><code>matchImages</code> 条目中的 URL 路径部分必须是目标镜像的 URL 路径的前缀；</li>
+  <li>如果 <code>matchImages</code> 条目中包含端口号，则端口号也必须与镜像端口号匹配。</li>
+</ul>
+<!--
+Example values of matchImages:
+-->
+<p><code>matchImages</code> 的一些示例如下：</p>
+<ul>
+<li>123456789.dkr.ecr.us-east-1.amazonaws.com</li>
+<li>*.azurecr.io</li>
+<li>gcr.io</li>
+<li><em>.</em>.registry.io</li>
+<li>registry.io:8080/path</li>
+</ul>
+</td>
+</tr>
+<tr><td><code>defaultCacheDuration</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+<!--
+defaultCacheDuration is the default duration the plugin will cache credentials in-memory
+if a cache duration is not provided in the plugin response. This field is required.
+-->
+   <p>
+   <code>defaultCacheDuration</code> 是插件在内存中缓存凭据的默认时长，
+   在插件响应中没有给出缓存时长时，使用这里设置的值。此字段是必需的。
+   </p>
+</td>
+</tr>
+<tr><td><code>apiVersion</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+<!--
+Required input version of the exec CredentialProviderRequest. The returned CredentialProviderResponse
+MUST use the same encoding version as the input. Current supported values are:
+-->
+   <p>
+   要求 exec 插件 CredentialProviderRequest 请求的输入版本。
+   所返回的 CredentialProviderResponse 必须使用与输入相同的编码版本。当前支持的值有：
+   </p>
+<ul>
+<li>credentialprovider.kubelet.k8s.io/v1beta1</li>
+</ul>
+</td>
+</tr>
+<tr><td><code>args</code><br/>
+<code>[]string</code>
+</td>
+<td>
+<!--
+Arguments to pass to the command when executing it.
+-->
+   <p>在执行插件可执行文件时要传递给命令的参数。</p>
+</td>
+</tr>
+<tr><td><code>env</code><br/>
+<a href="#kubelet-config-k8s-io-v1beta1-ExecEnvVar"><code>[]ExecEnvVar</code></a>
+</td>
+<td>
+<!--
+Env defines additional environment variables to expose to the process. These
+are unioned with the host's environment, as well as variables client-go uses
+to pass argument to the plugin.
+-->
+   <p>
+   <code>env</code> 定义要提供给插件进程的额外的环境变量。
+   这些环境变量会与主机上的其他环境变量以及 client-go 所使用的环境变量组合起来，
+   一起传递给插件。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ExecEnvVar`     {#kubelet-config-k8s-io-v1beta1-ExecEnvVar}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [CredentialProvider](#kubelet-config-k8s-io-v1beta1-CredentialProvider)
+
+<!--
+ExecEnvVar is used for setting environment variables when executing an exec-based
+credential plugin.
+-->
+ExecEnvVar 用来在执行基于 exec 的凭据插件时设置环境变量。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>name</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <span class="text-muted">
+   <!--
+   No description provided.
+   -->
+   无描述
+   </span>
+</td>
+</tr>
+<tr><td><code>value</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+   <span class="text-muted">
+   <!--
+   No description provided.
+   -->
+   无描述
+   </span>
+</td>
+</tr>
+</tbody>
+</table>
+
+
+## `KubeletAnonymousAuthentication`     {#kubelet-config-k8s-io-v1beta1-KubeletAnonymousAuthentication}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeletAuthentication](#kubelet-config-k8s-io-v1beta1-KubeletAuthentication)
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>enabled</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--
+   <p>enabled allows anonymous requests to the kubelet server.
+Requests that are not rejected by another authentication method are treated as
+anonymous requests.
+Anonymous requests have a username of <code>system:anonymous</code>, and a group name of
+<code>system:unauthenticated</code>.</p>
+   -->
+   <p><code>enabled</code>允许匿名用户向 kubelet 服务器发送请求。
+未被其他身份认证方法拒绝的请求都会被当做匿名请求。
+匿名请求对应的用户名为<code>system:anonymous</code>，对应的用户组名为
+<code>system:unauthenticated</code>。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `KubeletAuthentication`     {#kubelet-config-k8s-io-v1beta1-KubeletAuthentication}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>x509</code><br/>
+<a href="#kubelet-config-k8s-io-v1beta1-KubeletX509Authentication"><code>KubeletX509Authentication</code></a>
+</td>
+<td>
+   <!--x509 contains settings related to x509 client certificate authentication.
+   -->
+   <p><code>x509</code>包含与 x509 客户端证书认证相关的配置。</p>
+</td>
+</tr>
+
+<tr><td><code>webhook</code><br/>
+<a href="#kubelet-config-k8s-io-v1beta1-KubeletWebhookAuthentication"><code>KubeletWebhookAuthentication</code></a>
+</td>
+<td>
+   <!--webhook contains settings related to webhook bearer token authentication.-->
+   <p><code>webhook</code>包含与 Webhook 持有者令牌认证相关的配置。</p>
+</td>
+</tr>
+
+<tr><td><code>anonymous</code><br/>
+<a href="#kubelet-config-k8s-io-v1beta1-KubeletAnonymousAuthentication"><code>KubeletAnonymousAuthentication</code></a>
+</td>
+<td>
+   <!--anonymous contains settings related to anonymous authentication.-->
+   <p><code>anonymous</code>包含与匿名身份认证相关的配置信息。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `KubeletAuthorization`     {#kubelet-config-k8s-io-v1beta1-KubeletAuthorization}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>mode</code><br/>
+<a href="#kubelet-config-k8s-io-v1beta1-KubeletAuthorizationMode"><code>KubeletAuthorizationMode</code></a>
+</td>
+<td>
+   <!--mode is the authorization mode to apply to requests to the kubelet server.
+Valid values are <code>AlwaysAllow</code> and <code>Webhook</code>.
+Webhook mode uses the SubjectAccessReview API to determine authorization.</p>
+   -->
+   <p><code>mode>是应用到 kubelet 服务器所接收到的请求上的鉴权模式。合法值包括
+<code>AlwaysAllow</code>和<code>Webhook</code>。
+Webhook 模式使用 <code>SubjectAccessReview</code> API 来确定鉴权。</p>
+</td>
+</tr>
+
+<tr><td><code>webhook</code><br/>
+<a href="#kubelet-config-k8s-io-v1beta1-KubeletWebhookAuthorization"><code>KubeletWebhookAuthorization</code></a>
+</td>
+<td>
+   <!--webhook contains settings related to Webhook authorization.-->
+   <p><code>webhook</code>包含与 Webhook 鉴权相关的配置信息。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `KubeletAuthorizationMode`     {#kubelet-config-k8s-io-v1beta1-KubeletAuthorizationMode}
+
+<!--
+(Alias of `string`)
+-->
+（`string` 类型的别名）
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeletAuthorization](#kubelet-config-k8s-io-v1beta1-KubeletAuthorization)
+
+## `KubeletWebhookAuthentication`     {#kubelet-config-k8s-io-v1beta1-KubeletWebhookAuthentication}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeletAuthentication](#kubelet-config-k8s-io-v1beta1-KubeletAuthentication)
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>enabled</code><br/>
+<code>bool</code>
+</td>
+<td>
+   <!--enabled allows bearer token authentication backed by the
+tokenreviews.authentication.k8s.io API.-->
+   <p><code>enabled</code>允许使用<code>tokenreviews.authentication.k8s.io</code>
+API 来提供持有者令牌身份认证。</p>
+</td>
+</tr>
+
+<tr><td><code>cacheTTL</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--cacheTTL enables caching of authentication results-->
+   <p><code>cacheTTL</code>启用对身份认证结果的缓存。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `KubeletWebhookAuthorization`     {#kubelet-config-k8s-io-v1beta1-KubeletWebhookAuthorization}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeletAuthorization](#kubelet-config-k8s-io-v1beta1-KubeletAuthorization)
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>cacheAuthorizedTTL</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--cacheAuthorizedTTL is the duration to cache 'authorized' responses from the
+webhook authorizer.-->
+   <p><code>cacheAuthorizedTTL</code>设置来自 Webhook 鉴权组件的 'authorized'
+响应的缓存时长。</p>
+</td>
+</tr>
+<tr><td><code>cacheUnauthorizedTTL</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+   <!--cacheUnauthorizedTTL is the duration to cache 'unauthorized' responses from
+the webhook authorizer.-->
+   <p><code>cacheUnauthorizedTTL</code>设置来自 Webhook 鉴权组件的 'unauthorized'
+响应的缓存时长。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `KubeletX509Authentication`     {#kubelet-config-k8s-io-v1beta1-KubeletX509Authentication}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeletAuthentication](#kubelet-config-k8s-io-v1beta1-KubeletAuthentication)
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>clientCAFile</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--clientCAFile is the path to a PEM-encoded certificate bundle. If set, any request
+presenting a client certificate signed by one of the authorities in the bundle
+is authenticated with a username corresponding to the CommonName,
+and groups corresponding to the Organization in the client certificate.-->
+   <p><code>clientCAFile</code>是一个指向 PEM 编发的证书包的路径。
+如果设置了此字段，则能够提供由此证书包中机构之一所签名的客户端证书的请求会被成功认证，
+并且其用户名对应于客户端证书的<code>CommonName</code>、组名对应于客户端证书的
+<code>Organization</code>。</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `MemoryReservation`     {#kubelet-config-k8s-io-v1beta1-MemoryReservation}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
+
+<!--
+MemoryReservation specifies the memory reservation of different types for each NUMA node
+-->
+MemoryReservation 为每个 NUMA 节点设置不同类型的内存预留。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>numaNode</code> <B>[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--span class="text-muted">No description provided.</span-->
+   <p>NUMA 节点</p>
+</td>
+</tr>
+
+<tr><td><code>limits</code> <B>[必需]</B><br/>
+<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.23/#resourcelist-v1-core"><code>core/v1.ResourceList</code></a>
+</td>
+<td>
+   <!--span class="text-muted">No description provided.</span-->
+   <p>资源列表</p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `MemorySwapConfiguration`     {#kubelet-config-k8s-io-v1beta1-MemorySwapConfiguration}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>swapBehavior</code><br/>
+<code>string</code>
+</td>
+<td>
+   <!--swapBehavior configures swap memory available to container workloads. May be one of
+&quot;&quot;, &quot;LimitedSwap&quot;: workload combined memory and swap usage cannot exceed pod memory limit
+&quot;UnlimitedSwap&quot;: workloads can use unlimited swap, up to the allocatable limit.
+   -->
+   <p><code>swapBehavior</code>配置容器负载可以使用的交换内存。可以是
+   <ul>
+    <li>&quot;&quot;、&quot;LimitedSwap&quot;：工作负载的内存和交换分区总用量不能超过 Pod 的内存限制；</li>
+    <li>&quot;UnlimitedSwap&quot;：工作负载可以无限制地使用交换分区，上限是可分配的约束。</li>
+   </ul>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `ResourceChangeDetectionStrategy`     {#kubelet-config-k8s-io-v1beta1-ResourceChangeDetectionStrategy}
+
+<!--
+(Alias of `string`)
+-->
+（`string` 类型的别名）
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
+
+<!--
+ResourceChangeDetectionStrategy denotes a mode in which internal
+managers (secret, configmap) are discovering object changes.
+-->
+ResourceChangeDetectionStrategy 给出的是内部管理器（ConfigMap、Secret）
+用来发现对象变化的模式。
+
+## `ShutdownGracePeriodByPodPriority`     {#kubelet-config-k8s-io-v1beta1-ShutdownGracePeriodByPodPriority}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
+
+<!--
+ShutdownGracePeriodByPodPriority specifies the shutdown grace period for Pods based on their associated priority class value
+-->
+ShutdownGracePeriodByPodPriority 基于 Pod 关联的优先级类数值来为其设置关闭宽限时间。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>priority</code> <B>[必需]</B><br/>
+<code>int32</code>
+</td>
+<td>
+   <!--priority is the priority value associated with the shutdown grace period-->
+   <p><code>priority</code>是与关闭宽限期限相关联的优先级值。</p>
+</td>
+</tr>
+
+<tr><td><code>shutdownGracePeriodSeconds</code> <B>[必需]</B><br/>
+<code>int64</code>
+</td>
+<td>
+   <!--shutdownGracePeriodSeconds is the shutdown grace period in seconds-->
+   <p><code>shutdownGracePeriodSeconds</code>是按秒数给出的关闭宽限期限。
+</td>
+</tr>
+</tbody>
+</table>
+
+## `FormatOptions`     {#FormatOptions}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [LoggingConfiguration](#LoggingConfiguration)
+
+<p>
+<!--
+FormatOptions contains options for the different logging formats.
+-->
+FormatOptions 包含为不同日志格式提供的选项。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>json</code> <B>[必需]</B><br/>
+<a href="#JSONOptions"><code>JSONOptions</code></a>
+</td>
+<td>
+   <p><!--[Experimental] JSON contains options for logging format &quot;json&quot;.-->
+   [试验功能] <code>json</code> 包含为 &quot;json&quot; 日志格式提供的选项。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `JSONOptions`     {#JSONOptions}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [FormatOptions](#FormatOptions)
+
+<p>
+<!--
+JSONOptions contains options for logging format &quot;json&quot;.
+-->
+JSONOptions 包含为 &quot;json&quot; 日志格式提供的选项。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+<tr><td><code>splitStream</code> <B>[必需]</B><br/>
+<code>bool</code>
+</td>
+<td>
+   <p>
+   <!--[Experimental] SplitStream redirects error messages to stderr while
+info messages go to stdout, with buffering. The default is to write
+both to stdout, without buffering.
+   -->
+   [试验功能] <code>splitStream</code> 将错误信息重定向到标准错误输出（stderr），
+而将提示信息重定向到标准输出（stdout），并为二者提供缓存。
+默认设置是将二者都写出到标准输出，并且不提供缓存。
+   </p>
+</td>
+</tr>
+
+<tr><td><code>infoBufferSize</code> <B>[必需]</B><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/api/resource#QuantityValue"><code>k8s.io/apimachinery/pkg/api/resource.QuantityValue</code></a>
+</td>
+<td>
+   <p>
+   <!--[Experimental] InfoBufferSize sets the size of the info stream when
+using split streams. The default is zero, which disables buffering.-->
+   [试验功能] <code>infoBufferSize</coe> 在分离数据流时用来设置提示数据流的大小。
+默认值为 0，相当于禁止缓存。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `LoggingConfiguration`     {#LoggingConfiguration}
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
+
+<!--
+LoggingConfiguration contains logging options
+Refer [Logs Options](https://github.com/kubernetes/component-base/blob/master/logs/options.go) for more information.
+-->
+LoggingConfiguration 包含日志选项。
+参考 [Logs Options](https://github.com/kubernetes/component-base/blob/master/logs/options.go)
+以了解更多信息。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+
+<tr><td><code>format</code> <B>[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+  <p>
+  <!--Format Flag specifies the structure of log messages.
+default value of format is `text`-->
+  <code>format<code> 设置日志消息的结构。默认的格式取值为 <code>text</code>。
+  </p>
+</td>
+</tr>
+
+<tr><td><code>flushFrequency</code> <B>[必需]</B><br/>
+<a href="https://pkg.go.dev/time#Duration"><code>time.Duration</code></a>
+</td>
+<td>
+  <p>
+  <!--
+   Maximum number of nanoseconds (i.e. 1s = 1000000000) between log
+   flushes.  Ignored if the selected logging backend writes log
+   messages without buffering.
+  -->
+   对日志进行清洗的最大间隔纳秒数（例如，1s = 1000000000）。
+   如果所选的日志后端在写入日志消息时不提供缓存，则此配置会被忽略。
+  </p>
+</td>
+</tr>
+
+<tr><td><code>verbosity</code> <B>[必需]</B><br/>
+<code>uint32</code>
+</td>
+<td>
+  <p>
+  <!--Verbosity is the threshold that determines which log messages are
+logged. Default is zero which logs only the most important
+messages. Higher values enable additional messages. Error messages
+are always logged.-->
+  <code>verbosity</code> 用来确定日志消息记录的详细程度阈值。默认值为 0，
+意味着仅记录最重要的消息。数值越大，额外的消息越多。出错消息总是会被记录下来。
+  </p>
+</td>
+</tr>
+
+<tr><td><code>vmodule</code> <B>[必需]</B><br/>
+<a href="#VModuleConfiguration"><code>VModuleConfiguration</code></a>
+</td>
+<td>
+  <p>
+  <!--VModule overrides the verbosity threshold for individual files.
+Only supported for &quot;text&quot; log format.-->
+  <code>vmodule</code> 会在单个文件层面重载 verbosity 阈值的设置。
+这一选项仅支持 &quot;text&quot; 日志格式。
+  </p>
+</td>
+</tr>
+
+<tr><td><code>options</code> <B>[必需]</B><br/>
+<a href="#FormatOptions"><code>FormatOptions</code></a>
+</td>
+<td>
+  <p>
+  <!--[Experimental] Options holds additional parameters that are specific
+to the different logging formats. Only the options for the selected
+format get used, but all of them get validated.-->
+  [试验功能] <code>options</code> 中包含特定于不同日志格式的配置参数。
+只有针对所选格式的选项会被使用，但是合法性检查时会查看所有选项配置。
+  </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `VModuleConfiguration`     {#VModuleConfiguration}
+
+<!--
+(Alias of `[]k8s.io/component-base/config/v1alpha1.VModuleItem`)
+-->
+（`[]k8s.io/component-base/config/v1alpha1.VModuleItem` 类型的别名）
+
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [LoggingConfiguration](#LoggingConfiguration)
+
+<!--
+VModuleConfiguration is a collection of individual file names or patterns
+and the corresponding verbosity threshold.
+-->
+VModuleConfiguration 是一个集合，其中包含一个个文件名（或文件名模式）
+及其对应的详细程度阈值。
+
diff --git a/content/zh-cn/docs/reference/config-api/kubelet-credentialprovider.v1alpha1.md b/content/zh-cn/docs/reference/config-api/kubelet-credentialprovider.v1alpha1.md
new file mode 100644
index 0000000000..cf3287b09a
--- /dev/null
+++ b/content/zh-cn/docs/reference/config-api/kubelet-credentialprovider.v1alpha1.md
@@ -0,0 +1,253 @@
+---
+title: Kubelet CredentialProvider (v1alpha1)
+content_type: tool-reference
+package: credentialprovider.kubelet.k8s.io/v1alpha1
+---
+<!--
+title: Kubelet CredentialProvider (v1alpha1)
+content_type: tool-reference
+package: credentialprovider.kubelet.k8s.io/v1alpha1
+auto_generated: true
+-->
+
+<!--
+## Resource Types
+-->
+## 资源类型   {#resource-types}
+
+- [CredentialProviderRequest](#credentialprovider-kubelet-k8s-io-v1alpha1-CredentialProviderRequest)
+- [CredentialProviderResponse](#credentialprovider-kubelet-k8s-io-v1alpha1-CredentialProviderResponse)
+
+## `CredentialProviderRequest`     {#credentialprovider-kubelet-k8s-io-v1alpha1-CredentialProviderRequest}
+
+<!--
+CredentialProviderRequest includes the image that the kubelet requires authentication for.
+Kubelet will pass this request object to the plugin via stdin. In general, plugins should
+prefer responding with the same apiVersion they were sent.
+-->
+<p>
+CredentialProviderRequest 包含 kubelet 需要进行身份验证的镜像。
+Kubelet 会通过标准输入将此请求对象传递给插件。一般来说，插件倾向于用它们所收到的相同的 apiVersion 来响应。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>credentialprovider.kubelet.k8s.io/v1alpha1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>CredentialProviderRequest</code></td></tr>
+    
+  
+<tr><td><code>image</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+<!--
+   image is the container image that is being pulled as part of the
+credential provider plugin request. Plugins may optionally parse the image
+to extract any information required to fetch credentials.
+-->
+   <p>
+   <code>image</code> 是容器镜像，作为凭据提供程序插件请求的一部分。
+   插件可以有选择地解析镜像以提取获取凭据所需的任何信息。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `CredentialProviderResponse`     {#credentialprovider-kubelet-k8s-io-v1alpha1-CredentialProviderResponse}
+
+<!--    
+CredentialProviderResponse holds credentials that the kubelet should use for the specified
+image provided in the original request. Kubelet will read the response from the plugin via stdout.
+This response should be set to the same apiVersion as CredentialProviderRequest.
+-->
+<p>
+CredentialProviderResponse 持有 kubelet 应用于原始请求中提供的指定镜像的凭据。
+kubelet 将通过标准输出读取插件的响应。此响应的 apiVersion 值应设置为与 CredentialProviderRequest 中 apiVersion 值相同。
+</p>
+
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>credentialprovider.kubelet.k8s.io/v1alpha1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>CredentialProviderResponse</code></td></tr>
+    
+  
+<tr><td><code>cacheKeyType</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#credentialprovider-kubelet-k8s-io-v1alpha1-PluginCacheKeyType"><code>PluginCacheKeyType</code></a>
+</td>
+<td>
+<!--
+cacheKeyType indiciates the type of caching key to use based on the image provided
+in the request. There are three valid values for the cache key type: Image, Registry, and
+Global. If an invalid value is specified, the response will NOT be used by the kubelet.
+-->
+   <p>
+   <code>cacheKeyType</code> 表明基于请求中所给镜像而要使用的缓存键类型。缓存键类型有三个有效值：
+   Image、Registry 和 Global。如果指定了无效值，则 kubelet 不会使用该响应。
+   </p>
+</td>
+</tr>
+<tr><td><code>cacheDuration</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+<!--
+cacheDuration indicates the duration the provided credentials should be cached for.
+The kubelet will use this field to set the in-memory cache duration for credentials
+in the AuthConfig. If null, the kubelet will use defaultCacheDuration provided in
+CredentialProviderConfig. If set to 0, the kubelet will not cache the provided AuthConfig.
+-->
+   <p>
+   <code>cacheDuration</code> 表示所提供的凭据应该被缓存的时间。kubelet 使用这个字段为
+   <code>auth</code> 中的凭据设置内存中数据的缓存时间。如果为空，kubelet 将使用 CredentialProviderConfig
+   中提供的 defaultCacheDuration。如果设置为 0，kubelet 将不会缓存所提供的 <code>auth</code> 数据。
+   </p>
+</td>
+</tr>
+<tr><td><code>auth</code><br/>
+<a href="#credentialprovider-kubelet-k8s-io-v1alpha1-AuthConfig"><code>map[string]k8s.io/kubelet/pkg/apis/credentialprovider/v1alpha1.AuthConfig</code></a>
+</td>
+<td>
+<!--
+   auth is a map containing authentication information passed into the kubelet.
+Each key is a match image string (more on this below). The corresponding authConfig value
+should be valid for all images that match against this key. A plugin should set
+this field to null if no valid credentials can be returned for the requested image.
+-->
+   <p>
+   <code>auth</code> 是一个映射，其中包含传递到 kubelet 的身份验证信息。
+   每个键都是一个匹配镜像字符串（下面将对此进行详细介绍）。相应的 authConfig 值应该对所有与此键匹配的镜像有效。
+   如果不能为请求的镜像返回有效的凭据，插件应将此字段设置为 null。
+   </p>
+<!--
+Each key in the map is a pattern which can optionally contain a port and a path.
+Globs can be used in the domain, but not in the port or the path. Globs are supported
+as subdomains like '<em>.k8s.io' or 'k8s.</em>.io', and top-level-domains such as 'k8s.<em>'.
+Matching partial subdomains like 'app</em>.k8s.io' is also supported. Each glob can only match
+a single subdomain segment, so *.io does not match *.k8s.io.
+-->
+   <p>
+   映射中每个键值都是一个正则表达式，可以选择包含端口和路径。
+   域名部分可以包含通配符，但在端口或路径中不能使用通配符。
+   支持通配符作为子域，如 <code>*.k8s.io</code> 或 <code>k8s.*.io</code>，以及顶级域，如 <code>k8s.*</code>。
+   还支持匹配部分子域，如 <code>app*.k8s.io</code>。每个通配符只能匹配一个子域段，
+   因此 <code>*.io</code> 不匹配 <code>*.k8s.io</code>。
+   </p>
+<!--
+<p>The kubelet will match images against the key when all of the below are true:</p>
+<ul>
+<li>Both contain the same number of domain parts and each part matches.</li>
+<li>The URL path of an imageMatch must be a prefix of the target image URL path.</li>
+<li>If the imageMatch contains a port, then the port must match in the image as well.</li>
+</ul>
+-->
+   <p>
+   当满足以下所有条件时，kubelet 会将镜像与键值匹配：
+   </p>
+   <ul>
+    <li>两者都包含相同数量的域部分，并且每个部分都匹配。</li>
+    <li><code>imageMatch</code> 的 URL 路径必须是目标镜像的 URL 路径的前缀。</li>
+    <li>如果 <code>imageMatch</code> 包含端口，则该端口也必须在镜像中匹配。</li>
+   </ul>
+<!--
+<p>When multiple keys are returned, the kubelet will traverse all keys in reverse order so that:</p>
+<ul>
+<li>longer keys come before shorter keys with the same prefix</li>
+<li>non-wildcard keys come before wildcard keys with the same prefix.</li>
+</ul>
+-->
+   <p>
+   当返回多个键（key）时，kubelet 会倒序遍历所有键，这样：
+   </p>
+   <ul>
+    <li>具有相同前缀的较长键位于较短键之前</li>
+    <li>具有相同前缀的非通配符键位于通配符键之前。</li>
+   </ul>
+<!--
+<p>For any given match, the kubelet will attempt an image pull with the provided credentials,
+stopping after the first successfully authenticated pull.</p>
+<p>Example keys:</p>
+-->
+   <p>
+   对于任何给定的匹配，kubelet 将尝试使用提供的凭据进行镜像拉取，并在第一次成功验证后停止拉取。
+   </p>
+   <p>键值示例：</p>
+<ul>
+<li>123456789.dkr.ecr.us-east-1.amazonaws.com</li>
+<li>*.azurecr.io</li>
+<li>gcr.io</li>
+<li><em>.</em>.registry.io</li>
+<li>registry.io:8080/path</li>
+</ul>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `AuthConfig`     {#credentialprovider-kubelet-k8s-io-v1alpha1-AuthConfig}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [CredentialProviderResponse](#credentialprovider-kubelet-k8s-io-v1alpha1-CredentialProviderResponse)
+
+<!--
+<p>AuthConfig contains authentication information for a container registry.
+Only username/password based authentication is supported today, but more authentication
+mechanisms may be added in the future.</p>
+-->
+AuthConfig 包含容器仓库的身份验证信息。目前仅支持基于用户名/密码的身份验证，但未来可能会添加更多身份验证机制。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>username</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+<!--
+   <p>username is the username used for authenticating to the container registry
+An empty username is valid.</p>
+-->
+   <p>
+   <code>username</code> 是用于向容器仓库进行身份验证的用户名。空的用户名是合法的。
+   </p>
+</td>
+</tr>
+<tr><td><code>password</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+<!--
+   <p>password is the password used for authenticating to the container registry
+An empty password is valid.</p>
+-->
+   <p>
+   <code>password</code> 是用于向容器仓库进行身份验证的密码。空密码是合法的。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `PluginCacheKeyType`     {#credentialprovider-kubelet-k8s-io-v1alpha1-PluginCacheKeyType}
+
+<!--    
+(Alias of `string`)
+
+**Appears in:**
+-->
+（<code>string</code> 数据类型的别名）
+
+**出现在：**
+
+- [CredentialProviderResponse](#credentialprovider-kubelet-k8s-io-v1alpha1-CredentialProviderResponse)
\ No newline at end of file
diff --git a/content/zh-cn/docs/reference/config-api/kubelet-credentialprovider.v1beta1.md b/content/zh-cn/docs/reference/config-api/kubelet-credentialprovider.v1beta1.md
new file mode 100644
index 0000000000..3bf2430a76
--- /dev/null
+++ b/content/zh-cn/docs/reference/config-api/kubelet-credentialprovider.v1beta1.md
@@ -0,0 +1,253 @@
+---
+title: Kubelet CredentialProvider (v1beta1)
+content_type: tool-reference
+package: credentialprovider.kubelet.k8s.io/v1beta1
+---
+<!--
+title: Kubelet CredentialProvider (v1beta1)
+content_type: tool-reference
+package: credentialprovider.kubelet.k8s.io/v1beta1
+auto_generated: true
+-->
+
+<!--
+## Resource Types
+-->
+## 资源类型   {#resource-types}
+
+- [CredentialProviderRequest](#credentialprovider-kubelet-k8s-io-v1beta1-CredentialProviderRequest)
+- [CredentialProviderResponse](#credentialprovider-kubelet-k8s-io-v1beta1-CredentialProviderResponse)
+
+## `CredentialProviderRequest`     {#credentialprovider-kubelet-k8s-io-v1beta1-CredentialProviderRequest}
+
+<!--
+CredentialProviderRequest includes the image that the kubelet requires authentication for.
+Kubelet will pass this request object to the plugin via stdin. In general, plugins should
+prefer responding with the same apiVersion they were sent.
+-->
+<p>
+CredentialProviderRequest 包含 kubelet 需要进行身份验证的镜像。
+Kubelet 会通过标准输入将此请求对象传递给插件。一般来说，插件倾向于用它们所收到的相同的 apiVersion 来响应。
+</p>
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>credentialprovider.kubelet.k8s.io/v1beta1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>CredentialProviderRequest</code></td></tr>
+    
+  
+<tr><td><code>image</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+<!--
+   image is the container image that is being pulled as part of the
+credential provider plugin request. Plugins may optionally parse the image
+to extract any information required to fetch credentials.
+-->
+   <p>
+   <code>image</code> 是容器镜像，作为凭据提供程序插件请求的一部分。
+   插件可以有选择地解析镜像以提取获取凭据所需的任何信息。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `CredentialProviderResponse`     {#credentialprovider-kubelet-k8s-io-v1beta1-CredentialProviderResponse}
+
+<!--    
+CredentialProviderResponse holds credentials that the kubelet should use for the specified
+image provided in the original request. Kubelet will read the response from the plugin via stdout.
+This response should be set to the same apiVersion as CredentialProviderRequest.
+-->
+<p>
+CredentialProviderResponse 持有 kubelet 应用于原始请求中提供的指定镜像的凭据。
+kubelet 将通过标准输出读取插件的响应。此响应的 apiVersion 值应设置为与 CredentialProviderRequest 中 apiVersion 值相同。
+</p>
+
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+<tr><td><code>apiVersion</code><br/>string</td><td><code>credentialprovider.kubelet.k8s.io/v1beta1</code></td></tr>
+<tr><td><code>kind</code><br/>string</td><td><code>CredentialProviderResponse</code></td></tr>
+    
+  
+<tr><td><code>cacheKeyType</code> <B><!--[Required]-->[必需]</B><br/>
+<a href="#credentialprovider-kubelet-k8s-io-v1beta1-PluginCacheKeyType"><code>PluginCacheKeyType</code></a>
+</td>
+<td>
+<!--
+cacheKeyType indiciates the type of caching key to use based on the image provided
+in the request. There are three valid values for the cache key type: Image, Registry, and
+Global. If an invalid value is specified, the response will NOT be used by the kubelet.
+-->
+   <p>
+   <code>cacheKeyType</code> 表明基于请求中所给镜像而要使用的缓存键类型。缓存键类型有三个有效值：
+   Image、Registry 和 Global。如果指定了无效值，则 kubelet 不会使用该响应。
+   </p>
+</td>
+</tr>
+<tr><td><code>cacheDuration</code><br/>
+<a href="https://pkg.go.dev/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
+</td>
+<td>
+<!--
+cacheDuration indicates the duration the provided credentials should be cached for.
+The kubelet will use this field to set the in-memory cache duration for credentials
+in the AuthConfig. If null, the kubelet will use defaultCacheDuration provided in
+CredentialProviderConfig. If set to 0, the kubelet will not cache the provided AuthConfig.
+-->
+   <p>
+   <code>cacheDuration</code> 表示所提供的凭据应该被缓存的时间。kubelet 使用这个字段为
+   <code>auth</code> 中的凭据设置内存中数据的缓存时间。如果为空，kubelet 将使用 CredentialProviderConfig
+   中提供的 defaultCacheDuration。如果设置为 0，kubelet 将不会缓存所提供的 <code>auth</code> 数据。
+   </p>
+</td>
+</tr>
+<tr><td><code>auth</code><br/>
+<a href="#credentialprovider-kubelet-k8s-io-v1beta1-AuthConfig"><code>map[string]k8s.io/kubelet/pkg/apis/credentialprovider/v1beta1.AuthConfig</code></a>
+</td>
+<td>
+<!--
+   auth is a map containing authentication information passed into the kubelet.
+Each key is a match image string (more on this below). The corresponding authConfig value
+should be valid for all images that match against this key. A plugin should set
+this field to null if no valid credentials can be returned for the requested image.
+-->
+   <p>
+   <code>auth</code> 是一个映射，其中包含传递到 kubelet 的身份验证信息。
+   每个键都是一个匹配镜像字符串（下面将对此进行详细介绍）。相应的 authConfig 值应该对所有与此键匹配的镜像有效。
+   如果不能为请求的镜像返回有效的凭据，插件应将此字段设置为 null。
+   </p>
+<!--
+Each key in the map is a pattern which can optionally contain a port and a path.
+Globs can be used in the domain, but not in the port or the path. Globs are supported
+as subdomains like '<em>.k8s.io' or 'k8s.</em>.io', and top-level-domains such as 'k8s.<em>'.
+Matching partial subdomains like 'app</em>.k8s.io' is also supported. Each glob can only match
+a single subdomain segment, so *.io does not match *.k8s.io.
+-->
+   <p>
+   映射中每个键值都是一个正则表达式，可以选择包含端口和路径。
+   域名部分可以包含通配符，但在端口或路径中不能使用通配符。
+   支持通配符作为子域，如 <code>*.k8s.io</code> 或 <code>k8s.*.io</code>，以及顶级域，如 <code>k8s.*</code>。
+   还支持匹配部分子域，如 <code>app*.k8s.io</code>。每个通配符只能匹配一个子域段，
+   因此 <code>*.io</code> 不匹配 <code>*.k8s.io</code>。
+   </p>
+<!--
+<p>The kubelet will match images against the key when all of the below are true:</p>
+<ul>
+<li>Both contain the same number of domain parts and each part matches.</li>
+<li>The URL path of an imageMatch must be a prefix of the target image URL path.</li>
+<li>If the imageMatch contains a port, then the port must match in the image as well.</li>
+</ul>
+-->
+   <p>
+   当满足以下所有条件时，kubelet 会将镜像与键值匹配：
+   </p>
+   <ul>
+    <li>两者都包含相同数量的域部分，并且每个部分都匹配。</li>
+    <li><code>imageMatch</code> 的 URL 路径必须是目标镜像的 URL 路径的前缀。</li>
+    <li>如果 <code>imageMatch</code> 包含端口，则该端口也必须在镜像中匹配。</li>
+   </ul>
+<!--
+<p>When multiple keys are returned, the kubelet will traverse all keys in reverse order so that:</p>
+<ul>
+<li>longer keys come before shorter keys with the same prefix</li>
+<li>non-wildcard keys come before wildcard keys with the same prefix.</li>
+</ul>
+-->
+   <p>
+   当返回多个键（key）时，kubelet 会倒序遍历所有键，这样：
+   </p>
+   <ul>
+    <li>具有相同前缀的较长键位于较短键之前</li>
+    <li>具有相同前缀的非通配符键位于通配符键之前。</li>
+   </ul>
+<!--
+<p>For any given match, the kubelet will attempt an image pull with the provided credentials,
+stopping after the first successfully authenticated pull.</p>
+<p>Example keys:</p>
+-->
+   <p>
+   对于任何给定的匹配，kubelet 将尝试使用提供的凭据进行镜像拉取，并在第一次成功验证后停止拉取。
+   </p>
+   <p>键值示例：</p>
+<ul>
+<li>123456789.dkr.ecr.us-east-1.amazonaws.com</li>
+<li>*.azurecr.io</li>
+<li>gcr.io</li>
+<li><em>.</em>.registry.io</li>
+<li>registry.io:8080/path</li>
+</ul>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `AuthConfig`     {#credentialprovider-kubelet-k8s-io-v1beta1-AuthConfig}
+    
+<!--
+**Appears in:**
+-->
+**出现在：**
+
+- [CredentialProviderResponse](#credentialprovider-kubelet-k8s-io-v1beta1-CredentialProviderResponse)
+
+<!--
+<p>AuthConfig contains authentication information for a container registry.
+Only username/password based authentication is supported today, but more authentication
+mechanisms may be added in the future.</p>
+-->
+AuthConfig 包含容器仓库的身份验证信息。目前仅支持基于用户名/密码的身份验证，但未来可能会添加更多身份验证机制。
+
+<table class="table">
+<thead><tr><th width="30%"><!--Field-->字段</th><th><!--Description-->描述</th></tr></thead>
+<tbody>
+    
+  
+<tr><td><code>username</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+<!--
+   <p>username is the username used for authenticating to the container registry
+An empty username is valid.</p>
+-->
+   <p>
+   <code>username</code> 是用于向容器仓库进行身份验证的用户名。空的用户名是合法的。
+   </p>
+</td>
+</tr>
+<tr><td><code>password</code> <B><!--[Required]-->[必需]</B><br/>
+<code>string</code>
+</td>
+<td>
+<!--
+   <p>password is the password used for authenticating to the container registry
+An empty password is valid.</p>
+-->
+   <p>
+   <code>password</code> 是用于向容器仓库进行身份验证的密码。空密码是合法的。
+   </p>
+</td>
+</tr>
+</tbody>
+</table>
+
+## `PluginCacheKeyType`     {#credentialprovider-kubelet-k8s-io-v1beta1-PluginCacheKeyType}
+
+<!--    
+(Alias of `string`)
+
+**Appears in:**
+-->
+（<code>string</code> 数据类型的别名）
+
+**出现在：**
+
+- [CredentialProviderResponse](#credentialprovider-kubelet-k8s-io-v1beta1-CredentialProviderResponse)
\ No newline at end of file
diff --git a/content/zh/docs/reference/glossary/addons.md b/content/zh-cn/docs/reference/glossary/addons.md
similarity index 72%
rename from content/zh/docs/reference/glossary/addons.md
rename to content/zh-cn/docs/reference/glossary/addons.md
index 31fc1f0098..3fd0546714 100644
--- a/content/zh/docs/reference/glossary/addons.md
+++ b/content/zh-cn/docs/reference/glossary/addons.md
@@ -2,7 +2,7 @@
 title: 附加组件（Add-ons）
 id: addons
 date: 2019-12-15
-full_link: /zh/docs/concepts/cluster-administration/addons/
+full_link: /zh-cn/docs/concepts/cluster-administration/addons/
 short_description: >
   扩展 Kubernetes 功能的资源。
 
@@ -37,4 +37,4 @@ tags:
 <!-- 
 [Installing addons](/docs/concepts/cluster-administration/addons/) explains more about using add-ons with your cluster, and lists some popular add-ons.
 -->
-[安装附加组件](/zh/docs/concepts/cluster-administration/addons/) 阐释了更多关于如何在集群内使用附加组件，并列出了一些流行的附加组件。
+[安装附加组件](/zh-cn/docs/concepts/cluster-administration/addons/) 阐释了更多关于如何在集群内使用附加组件，并列出了一些流行的附加组件。
diff --git a/content/zh/docs/reference/glossary/admission-controller.md b/content/zh-cn/docs/reference/glossary/admission-controller.md
similarity index 88%
rename from content/zh/docs/reference/glossary/admission-controller.md
rename to content/zh-cn/docs/reference/glossary/admission-controller.md
index 22567c4861..90e63e52b1 100644
--- a/content/zh/docs/reference/glossary/admission-controller.md
+++ b/content/zh-cn/docs/reference/glossary/admission-controller.md
@@ -2,7 +2,7 @@
 title: 准入控制器（Admission Controller）
 id: admission-controller
 date: 2019-06-28
-full_link: /zh/docs/reference/access-authn-authz/admission-controllers/
+full_link: /zh-cn/docs/reference/access-authn-authz/admission-controllers/
 short_description: >
  在对象持久化之前拦截 Kubernetes Api 服务器请求的一段代码
 aka:
@@ -47,4 +47,4 @@ validating controllers may not.
 准入控制器可针对 Kubernetes Api 服务器进行配置，可以执行验证，变更或两者都执行。任何准入控制器都可以拒绝访问请求。
 变更（mutating）控制器可以修改其允许的对象，验证（validating）控制器则不可以。
 
-* [Kubernetes 文档中的准入控制器](/zh/docs/reference/access-authn-authz/admission-controllers/)
\ No newline at end of file
+* [Kubernetes 文档中的准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/)
\ No newline at end of file
diff --git a/content/zh-cn/docs/reference/glossary/affinity.md b/content/zh-cn/docs/reference/glossary/affinity.md
new file mode 100644
index 0000000000..67da7e05e9
--- /dev/null
+++ b/content/zh-cn/docs/reference/glossary/affinity.md
@@ -0,0 +1,50 @@
+---
+title: 亲和性（Affinity）
+id: affinity
+date: 2019-01-11
+full_link: /zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity
+short_description: >
+     调度程序用于确定在何处放置 Pods（亲和性）的规则
+aka:
+tags:
+- fundamental
+---
+<!--
+---
+title: Affinity
+id: affinity
+date: 2019-01-11
+full_link: /docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity
+short_description: >
+     Rules used by the scheduler to determine where to place pods
+aka:
+tags:
+- fundamental
+---
+-->
+
+<!--
+In Kubernetes, _affinity_ is a set of rules that give hints to the scheduler about where to place pods.
+-->
+在 Kubernetes 中，_亲和性（affinity）_是一组规则，它们为调度程序提供在何处放置 Pods 提示信息。
+<!--more-->
+<!--
+There are two kinds of affinity:
+-->
+亲和性有两种：
+<!--
+* [node affinity](/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity)
+* [pod-to-pod affinity](/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity)
+-->
+* [节点亲和性](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity)
+* [Pod 间亲和性](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity)
+
+<!--
+The rules are defined using the Kubernetes {{< glossary_tooltip term_id="label" text="labels">}},
+and {{< glossary_tooltip term_id="selector" text="selectors">}} specified in {{< glossary_tooltip term_id="pod" text="pods" >}}, 
+and they can be either required or preferred, depending on how strictly you want the scheduler to enforce them.
+-->
+这些规则是使用 Kubernetes {{< glossary_tooltip term_id="label" text="标签">}}（label）
+和 {{< glossary_tooltip term_id="pod" text="pods" >}} 中指定的
+{{< glossary_tooltip term_id="selector" text="选择算符">}}定义的，
+这些规则可以是必需的或首选的，这取决于你希望调度程序执行它们的严格程度。
diff --git a/content/zh/docs/reference/glossary/aggregation-layer.md b/content/zh-cn/docs/reference/glossary/aggregation-layer.md
similarity index 64%
rename from content/zh/docs/reference/glossary/aggregation-layer.md
rename to content/zh-cn/docs/reference/glossary/aggregation-layer.md
index 9ad14962cf..ad2f62e8ba 100644
--- a/content/zh/docs/reference/glossary/aggregation-layer.md
+++ b/content/zh-cn/docs/reference/glossary/aggregation-layer.md
@@ -2,9 +2,9 @@
 title: 聚合层（Aggregation Layer）
 id: aggregation-layer
 date: 2018-10-08
-full_link: /zh/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/
+full_link: /zh-cn/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/
 short_description: >
-  聚合层允许您在自己的集群上安装额外的 Kubernetes 风格的 API。
+  聚合层允许你在自己的集群上安装额外的 Kubernetes 风格的 API。
 
 aka: 
 tags:
@@ -36,7 +36,7 @@ tags:
  The aggregation layer lets you install additional Kubernetes-style APIs in your cluster.
 -->
 
-聚合层允许您在自己的集群上安装额外的 Kubernetes 风格的 API。
+聚合层允许你在自己的集群上安装额外的 Kubernetes 风格的 API。
 
 <!--more-->
  
@@ -45,4 +45,5 @@ tags:
 When you've configured the {{< glossary_tooltip text="Kubernetes API Server" term_id="kube-apiserver" >}} to [support additional APIs](/docs/tasks/extend-kubernetes/configure-aggregation-layer/), you can add `APIService` objects to "claim" a URL path in the Kubernetes API.
 -->
 
-当您配置了 {{< glossary_tooltip text="Kubernetes API Server" term_id="kube-apiserver" >}} 来 [支持额外的 API](/zh/docs/tasks/extend-kubernetes/configure-aggregation-layer/)，您就可以在 Kubernetes API 中增加 `APIService` 对象来  "申领（Claim）" 一个 URL 路径。 
+当你配置了 {{< glossary_tooltip text="Kubernetes API Server" term_id="kube-apiserver" >}} 来 [支持额外的 API](/zh-cn/docs/tasks/extend-kubernetes/configure-aggregation-layer/)，
+你就可以在 Kubernetes API 中增加 `APIService` 对象来  "申领（Claim）" 一个 URL 路径。 
diff --git a/content/zh/docs/reference/glossary/annotation.md b/content/zh-cn/docs/reference/glossary/annotation.md
similarity index 94%
rename from content/zh/docs/reference/glossary/annotation.md
rename to content/zh-cn/docs/reference/glossary/annotation.md
index a305352e32..5554aafbbc 100644
--- a/content/zh/docs/reference/glossary/annotation.md
+++ b/content/zh-cn/docs/reference/glossary/annotation.md
@@ -2,7 +2,7 @@
 title: 注解（Annotation）
 id: annotation
 date: 2018-04-12
-full_link: /zh/docs/concepts/overview/working-with-objects/annotations/
+full_link: /zh-cn/docs/concepts/overview/working-with-objects/annotations/
 short_description: >
   注解是以键值对的形式给资源对象附加随机的无法标识的元数据。
 
diff --git a/content/zh/docs/reference/glossary/api-eviction.md b/content/zh-cn/docs/reference/glossary/api-eviction.md
similarity index 55%
rename from content/zh/docs/reference/glossary/api-eviction.md
rename to content/zh-cn/docs/reference/glossary/api-eviction.md
index 9ce3069879..6288b317b7 100644
--- a/content/zh/docs/reference/glossary/api-eviction.md
+++ b/content/zh-cn/docs/reference/glossary/api-eviction.md
@@ -2,34 +2,33 @@
 title: API 发起的驱逐
 id: api-eviction
 date: 2021-04-27
-full_link: /zh/docs/concepts/scheduling-eviction/pod-eviction/#api-eviction
+full_link: /zh-cn/docs/concepts/scheduling-eviction/api-eviction/
 short_description: >
   API 发起的驱逐是一个先调用 Eviction API 创建驱逐对象，再由该对象体面地中止 Pod 的过程。
 aka:
 tags:
 - operation
 ---
-
-<!-- ---
+<!--
 title: API-initiated eviction
 id: api-eviction
 date: 2021-04-27
-full_link: /docs/concepts/scheduling-eviction/pod-eviction/#api-eviction
+full_link: /docs/concepts/scheduling-eviction/api-eviction/
 short_description: >
   API-initiated eviction is the process by which you use the Eviction API to create an
   Eviction object that triggers graceful pod termination.
 aka:
 tags:
 - operation
----
 -->
+
 <!-- 
 API-initiated eviction is the process by which you use the [Eviction API](/docs/reference/generated/kubernetes-api/{{<param "version">}}/#create-eviction-pod-v1-core)
 to create an `Eviction` object that triggers graceful pod termination.
 -->
 API 发起的驱逐是一个先调用
-[Eviction API](/docs/reference/generated/kubernetes-api/{{<param "version">}}/create-eviction-pod-v1-core)
-创建驱逐对象，再由该对象体面地中止 Pod 的过程。
+[Eviction API](/docs/reference/generated/kubernetes-api/{{<param "version">}}/#create-eviction-pod-v1-core)
+创建 `Eviction` 对象，再由该对象体面地中止 Pod 的过程。
 
 <!--more-->
 
@@ -38,10 +37,21 @@ You can request eviction either by directly calling the Eviction API
 using a client of the kube-apiserver, like the `kubectl drain` command. 
 When an `Eviction` object is created, the API server terminates the Pod. 
 
-API-initiated eviction is not the same as [node-pressure eviction](/docs/concepts/scheduling-eviction/eviction/#kubelet-eviction).
+API-initiated evictions respect your configured [`PodDisruptionBudgets`](/docs/tasks/run-application/configure-pdb/)
+and [`terminationGracePeriodSeconds`](/docs/concepts/workloads/pods/pod-lifecycle#pod-termination).
+
+API-initiated eviction is not the same as [node-pressure eviction](/docs/concepts/scheduling-eviction/node-pressure-eviction/).
 -->
 你可以通过 kube-apiserver 的客户端，比如 `kubectl drain` 这样的命令，直接调用 Eviction API 发起驱逐。
-当 `Eviction` 对象创建出来之后，该对象将驱动 API 服务器终止选定的Pod。
+当 `Eviction` 对象创建出来之后，该对象将驱动 API 服务器终止选定的 Pod。
+
+API 发起的驱逐取决于你配置的 [`PodDisruptionBudgets`](/zh-cn/docs/tasks/run-application/configure-pdb/)
+和 [`terminationGracePeriodSeconds`](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle#pod-termination)。
 
 API 发起的驱逐不同于
-[节点压力引发的驱逐](/zh/docs/concepts/scheduling-eviction/eviction/#kubelet-eviction)。
+[节点压力引发的驱逐](/zh-cn/docs/concepts/scheduling-eviction/node-pressure-eviction/)。
+
+<!--
+* See [API-initiated eviction](/docs/concepts/scheduling-eviction/api-eviction/) for more information.
+-->
+* 有关详细信息，请参阅 [API 发起的驱逐](/zh-cn/docs/concepts/scheduling-eviction/api-eviction/)。
\ No newline at end of file
diff --git a/content/zh/docs/reference/glossary/api-group.md b/content/zh-cn/docs/reference/glossary/api-group.md
similarity index 86%
rename from content/zh/docs/reference/glossary/api-group.md
rename to content/zh-cn/docs/reference/glossary/api-group.md
index a219943be7..42006b5e90 100644
--- a/content/zh/docs/reference/glossary/api-group.md
+++ b/content/zh-cn/docs/reference/glossary/api-group.md
@@ -2,7 +2,7 @@
 title: API Group
 id: api-group
 date: 2019-09-02
-full_link: /zh/docs/concepts/overview/kubernetes-api/#api-groups-and-versioning
+full_link: /zh-cn/docs/concepts/overview/kubernetes-api/#api-groups-and-versioning
 short_description: >
   Kubernetes API 中的一组相关路径
 
@@ -47,4 +47,4 @@ API group 在 REST 路径和序列化对象的 `apiVersion` 字段中指定。
 <!-- 
 * Read [API Group](/docs/concepts/overview/kubernetes-api/#api-groups-and-versioning) for more information. 
 -->
-* 阅读 [API Group](/zh/docs/concepts/overview/kubernetes-api/#api-groups-and-versioning) 了解更多信息。
+* 阅读 [API Group](/zh-cn/docs/concepts/overview/kubernetes-api/#api-groups-and-versioning) 了解更多信息。
diff --git a/content/zh/docs/reference/glossary/app-container.md b/content/zh-cn/docs/reference/glossary/app-container.md
similarity index 93%
rename from content/zh/docs/reference/glossary/app-container.md
rename to content/zh-cn/docs/reference/glossary/app-container.md
index 3773e1c1b8..3980937a9d 100644
--- a/content/zh/docs/reference/glossary/app-container.md
+++ b/content/zh-cn/docs/reference/glossary/app-container.md
@@ -42,6 +42,6 @@ once the application container has started.
 If a pod doesn't have any init containers configured, all the containers in that pod are app containers.
 -->
 
-初始化容器使您可以分离对于{{< glossary_tooltip text="工作负载" term_id="workload" >}}
+初始化容器使你可以分离对于{{< glossary_tooltip text="工作负载" term_id="workload" >}}
 整体而言很重要的初始化细节，并且一旦应用容器启动，它不需要继续运行。
 如果 pod 没有配置任何初始化容器，则该 pod 中的所有容器都是应用程序容器。
\ No newline at end of file
diff --git a/content/zh/docs/reference/glossary/application-architect.md b/content/zh-cn/docs/reference/glossary/application-architect.md
similarity index 100%
rename from content/zh/docs/reference/glossary/application-architect.md
rename to content/zh-cn/docs/reference/glossary/application-architect.md
diff --git a/content/zh/docs/reference/glossary/application-developer.md b/content/zh-cn/docs/reference/glossary/application-developer.md
similarity index 100%
rename from content/zh/docs/reference/glossary/application-developer.md
rename to content/zh-cn/docs/reference/glossary/application-developer.md
diff --git a/content/zh/docs/reference/glossary/applications.md b/content/zh-cn/docs/reference/glossary/applications.md
similarity index 100%
rename from content/zh/docs/reference/glossary/applications.md
rename to content/zh-cn/docs/reference/glossary/applications.md
diff --git a/content/zh/docs/reference/glossary/approver.md b/content/zh-cn/docs/reference/glossary/approver.md
similarity index 100%
rename from content/zh/docs/reference/glossary/approver.md
rename to content/zh-cn/docs/reference/glossary/approver.md
diff --git a/content/zh-cn/docs/reference/glossary/cadvisor.md b/content/zh-cn/docs/reference/glossary/cadvisor.md
new file mode 100644
index 0000000000..8545490084
--- /dev/null
+++ b/content/zh-cn/docs/reference/glossary/cadvisor.md
@@ -0,0 +1,39 @@
+---
+title: cAdvisor
+id: cadvisor
+date: 2021-12-09
+full_link: https://github.com/google/cadvisor/
+short_description: >
+  帮助理解容器的资源用量与性能特征的工具
+
+aka:
+tags:
+- tool
+---
+
+<!--
+title: cAdvisor
+id: cadvisor
+date: 2021-12-09
+full_link: https://github.com/google/cadvisor/
+short_description: >
+  Tool that provides understanding of the resource usage and performance characteristics for containers
+aka:
+tags:
+- tool
+-->
+
+<!--
+cAdvisor (Container Advisor) provides container users an understanding of the resource usage and performance characteristics of their running {{< glossary_tooltip text="containers" term_id="container" >}}.
+-->
+cAdvisor (Container Advisor) 为容器用户提供对其运行中的{{< glossary_tooltip text="容器" term_id="container" >}}
+的资源用量和性能特征的知识。
+
+<!--more-->
+<!--
+It is a running daemon that collects, aggregates, processes, and exports information about running containers. Specifically, for each container it keeps resource isolation parameters, historical resource usage, histograms of complete historical resource usage and network statistics. This data is exported by container and machine-wide.
+-->
+cAdvisor 是一个守护进程，负责收集、聚合、处理并输出运行中容器的信息。
+具体而言，针对每个容器，该进程记录容器的资源隔离参数、历史资源用量、
+完整历史资源用量和网络统计的直方图。这些数据可以按容器或按机器层面输出。
+
diff --git a/content/zh/docs/reference/glossary/certificate.md b/content/zh-cn/docs/reference/glossary/certificate.md
similarity index 94%
rename from content/zh/docs/reference/glossary/certificate.md
rename to content/zh-cn/docs/reference/glossary/certificate.md
index 05b50e37dc..7de6715c16 100644
--- a/content/zh/docs/reference/glossary/certificate.md
+++ b/content/zh-cn/docs/reference/glossary/certificate.md
@@ -2,7 +2,7 @@
 title: 证书（Certificate）
 id: certificate
 date: 2018-04-12
-full_link: /zh/docs/tasks/tls/managing-tls-in-a-cluster/
+full_link: /zh-cn/docs/tasks/tls/managing-tls-in-a-cluster/
 short_description: >
   证书是个安全加密文件，用来确认对 Kubernetes 集群访问的合法性。
 
diff --git a/content/zh/docs/reference/glossary/cgroup.md b/content/zh-cn/docs/reference/glossary/cgroup.md
similarity index 100%
rename from content/zh/docs/reference/glossary/cgroup.md
rename to content/zh-cn/docs/reference/glossary/cgroup.md
diff --git a/content/zh/docs/reference/glossary/cidr.md b/content/zh-cn/docs/reference/glossary/cidr.md
similarity index 100%
rename from content/zh/docs/reference/glossary/cidr.md
rename to content/zh-cn/docs/reference/glossary/cidr.md
diff --git a/content/zh/docs/reference/glossary/cla.md b/content/zh-cn/docs/reference/glossary/cla.md
similarity index 100%
rename from content/zh/docs/reference/glossary/cla.md
rename to content/zh-cn/docs/reference/glossary/cla.md
diff --git a/content/zh/docs/reference/glossary/cloud-controller-manager.md b/content/zh-cn/docs/reference/glossary/cloud-controller-manager.md
similarity index 83%
rename from content/zh/docs/reference/glossary/cloud-controller-manager.md
rename to content/zh-cn/docs/reference/glossary/cloud-controller-manager.md
index 3d33b8c7fe..72c581453c 100644
--- a/content/zh/docs/reference/glossary/cloud-controller-manager.md
+++ b/content/zh-cn/docs/reference/glossary/cloud-controller-manager.md
@@ -2,7 +2,7 @@
 title: 云控制器管理器（Cloud Controller Manager）
 id: cloud-controller-manager
 date: 2018-04-12
-full_link: /zh/docs/concepts/architecture/cloud-controller/
+full_link: /zh-cn/docs/concepts/architecture/cloud-controller/
 short_description: >
   将 Kubernetes 与第三方云提供商进行集成的控制面组件。
 
@@ -33,18 +33,17 @@ that embeds cloud-specific control logic. The cloud controller manager lets you
 cluster into your cloud provider's API, and separates out the components that interact
 with that cloud platform from components that only interact with your cluster.
 -->
-云控制器管理器是指嵌入特定云的控制逻辑的
+`cloud-controller-manager` 是指嵌入特定云的控制逻辑之
 {{< glossary_tooltip text="控制平面" term_id="control-plane" >}}组件。
-云控制器管理器使得你可以将你的集群连接到云提供商的 API 之上，
+`cloud-controller-manager` 允许你将你的集群连接到云提供商的 API 之上，
 并将与该云平台交互的组件同与你的集群交互的组件分离开来。
 
 <!--more--> 
-
 <!--
 By decoupling the interoperability logic between Kubernetes and the underlying cloud
 infrastructure, the cloud-controller-manager component enables cloud providers to release
 features at a different pace compared to the main Kubernetes project.
 -->
 通过分离 Kubernetes 和底层云基础设置之间的互操作性逻辑，
-云控制器管理器组件使云提供商能够以不同于 Kubernetes 主项目的
+`cloud-controller-manager` 组件使云提供商能够以不同于 Kubernetes 主项目的
 步调发布新特征。
diff --git a/content/zh/docs/reference/glossary/cloud-provider.md b/content/zh-cn/docs/reference/glossary/cloud-provider.md
similarity index 100%
rename from content/zh/docs/reference/glossary/cloud-provider.md
rename to content/zh-cn/docs/reference/glossary/cloud-provider.md
diff --git a/content/zh/docs/reference/glossary/cluster-architect.md b/content/zh-cn/docs/reference/glossary/cluster-architect.md
similarity index 100%
rename from content/zh/docs/reference/glossary/cluster-architect.md
rename to content/zh-cn/docs/reference/glossary/cluster-architect.md
diff --git a/content/zh/docs/reference/glossary/cluster-infrastructure.md b/content/zh-cn/docs/reference/glossary/cluster-infrastructure.md
similarity index 100%
rename from content/zh/docs/reference/glossary/cluster-infrastructure.md
rename to content/zh-cn/docs/reference/glossary/cluster-infrastructure.md
diff --git a/content/zh/docs/reference/glossary/cluster-operations.md b/content/zh-cn/docs/reference/glossary/cluster-operations.md
similarity index 90%
rename from content/zh/docs/reference/glossary/cluster-operations.md
rename to content/zh-cn/docs/reference/glossary/cluster-operations.md
index 43a9bba4b0..4067984ac5 100644
--- a/content/zh/docs/reference/glossary/cluster-operations.md
+++ b/content/zh-cn/docs/reference/glossary/cluster-operations.md
@@ -38,5 +38,5 @@ scale the cluster; performing software upgrades; implementing security
 controls; adding or removing storage; configuring cluster networking;
 managing cluster-wide observability; and responding to events.
 -->															  
-群集操作工作的示例包括：部署新节点来扩容集群；执行软件升级；实施安全控制；
+集群操作工作的示例包括：部署新节点来扩容集群；执行软件升级；实施安全控制；
 添加或删除存储；配置集群网络；管理集群范围的可观测性；响应集群事件。
\ No newline at end of file
diff --git a/content/zh/docs/reference/glossary/cluster-operator.md b/content/zh-cn/docs/reference/glossary/cluster-operator.md
similarity index 100%
rename from content/zh/docs/reference/glossary/cluster-operator.md
rename to content/zh-cn/docs/reference/glossary/cluster-operator.md
diff --git a/content/zh/docs/reference/glossary/cluster.md b/content/zh-cn/docs/reference/glossary/cluster.md
similarity index 69%
rename from content/zh/docs/reference/glossary/cluster.md
rename to content/zh-cn/docs/reference/glossary/cluster.md
index 74d48ff2c2..07b79c5f96 100644
--- a/content/zh/docs/reference/glossary/cluster.md
+++ b/content/zh-cn/docs/reference/glossary/cluster.md
@@ -4,7 +4,7 @@ id: cluster
 date: 2019-06-15
 full_link: 
 short_description: >
-   集群由一组被称作节点的机器组成。这些节点上运行 Kubernetes 所管理的容器化应用。集群具有至少一个工作节点。 
+   集群由一组被称作节点的机器组成。这些节点上运行 Kubernetes 所管理的容器化应用。集群具有至少一个工作节点。
 
 aka: 
 tags:
@@ -32,8 +32,9 @@ tags:
 A set of worker machines, called {{< glossary_tooltip text="nodes" term_id="node" >}},
 that run containerized applications. Every cluster has at least one worker node.
 -->
-集群由一组被称作节点的机器组成。这些节点上运行 Kubernetes 所管理的容器化应用。集群具有至少一个工作节点。
-
+集群是由一组被称作{{< glossary_tooltip text="节点（node）" term_id="node" >}}的机器组成，
+这些节点上会运行由 Kubernetes 所管理的容器化应用。
+且每个集群至少有一个工作节点。
 <!--more-->
 <!-- 
 The worker node(s) host the {{< glossary_tooltip text="Pods" term_id="pod" >}} that are
@@ -43,5 +44,7 @@ nodes and the Pods in the cluster. In production environments, the control plane
 runs across multiple computers and a cluster usually runs multiple nodes, providing
 fault-tolerance and high availability.
 -->
-工作节点托管作为应用负载的组件的 Pod 。控制平面管理集群中的工作节点和 Pod 。
-为集群提供故障转移和高可用性，这些控制平面一般跨多主机运行，集群跨多个节点运行。
+工作节点会托管所谓的 Pods，而 Pod 就是作为应用负载的组件。
+控制平面管理集群中的工作节点和 Pods。
+为集群提供故障转移和高可用性，
+这些控制平面一般跨多主机运行，而集群也会跨多个节点运行。
diff --git a/content/zh/docs/reference/glossary/cncf.md b/content/zh-cn/docs/reference/glossary/cncf.md
similarity index 100%
rename from content/zh/docs/reference/glossary/cncf.md
rename to content/zh-cn/docs/reference/glossary/cncf.md
diff --git a/content/zh/docs/reference/glossary/cni.md b/content/zh-cn/docs/reference/glossary/cni.md
similarity index 81%
rename from content/zh/docs/reference/glossary/cni.md
rename to content/zh-cn/docs/reference/glossary/cni.md
index 64febe0215..5f87815cb5 100644
--- a/content/zh/docs/reference/glossary/cni.md
+++ b/content/zh-cn/docs/reference/glossary/cni.md
@@ -2,7 +2,7 @@
 title: 容器网络接口（CNI）
 id: cni
 date: 2018-05-25
-full_link: /zh/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/#cni
+full_link: /zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/#cni
 short_description: >
     容器网络接口 (CNI) 插件是遵循 appc/CNI 协议的一类网络插件。
 
@@ -41,4 +41,4 @@ tags:
 * For information on Kubernetes and CNI, see ["Network plugins"](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/#cni).
 -->
 
-* 想了解 Kubernetes 和 CNI 请参考 ["网络插件"](/zh/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/#cni)。
+* 想了解 Kubernetes 和 CNI 请参考 ["网络插件"](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/#cni)。
diff --git a/content/zh/docs/reference/glossary/code-contributor.md b/content/zh-cn/docs/reference/glossary/code-contributor.md
similarity index 100%
rename from content/zh/docs/reference/glossary/code-contributor.md
rename to content/zh-cn/docs/reference/glossary/code-contributor.md
diff --git a/content/zh/docs/reference/glossary/configmap.md b/content/zh-cn/docs/reference/glossary/configmap.md
similarity index 91%
rename from content/zh/docs/reference/glossary/configmap.md
rename to content/zh-cn/docs/reference/glossary/configmap.md
index be80c84f61..b90382e518 100644
--- a/content/zh/docs/reference/glossary/configmap.md
+++ b/content/zh-cn/docs/reference/glossary/configmap.md
@@ -2,7 +2,7 @@
 title: ConfigMap
 id: configmap
 date: 2018-04-12
-full_link: /zh/docs/tasks/configure-pod-container/configure-pod-configmap/
+full_link: /zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap/
 short_description: >
   ConfigMap 是一种 API 对象，用来将非机密性的数据保存到键值对中。使用时可以用作环境变量、命令行参数或者存储卷中的配置文件。
    
@@ -41,4 +41,4 @@ environment variables, command-line arguments, or as configuration files in a
 A ConfigMap allows you to decouple environment-specific configuration from your {{< glossary_tooltip text="container images" term_id="image" >}}, so that your applications are easily portable.
 -->
 
-ConfigMap 将您的环境配置信息和 {{< glossary_tooltip text="容器镜像" term_id="image" >}} 解耦，便于应用配置的修改。
+ConfigMap 将你的环境配置信息和 {{< glossary_tooltip text="容器镜像" term_id="image" >}} 解耦，便于应用配置的修改。
diff --git a/content/zh/docs/reference/glossary/container-env-variables.md b/content/zh-cn/docs/reference/glossary/container-env-variables.md
similarity index 96%
rename from content/zh/docs/reference/glossary/container-env-variables.md
rename to content/zh-cn/docs/reference/glossary/container-env-variables.md
index e8796a12bd..134b0c0c7e 100644
--- a/content/zh/docs/reference/glossary/container-env-variables.md
+++ b/content/zh-cn/docs/reference/glossary/container-env-variables.md
@@ -2,7 +2,7 @@
 title: 容器环境变量（Container Environment Variables）
 id: container-env-variables
 date: 2018-04-12
-full_link: /zh/docs/concepts/containers/container-environment/
+full_link: /zh-cn/docs/concepts/containers/container-environment/
 short_description: >
   容器环境变量提供了 name=value 形式的、运行容器化应用所必须的一些重要信息。
 
diff --git a/content/zh/docs/reference/glossary/container-lifecycle-hooks.md b/content/zh-cn/docs/reference/glossary/container-lifecycle-hooks.md
similarity index 94%
rename from content/zh/docs/reference/glossary/container-lifecycle-hooks.md
rename to content/zh-cn/docs/reference/glossary/container-lifecycle-hooks.md
index 6a43d283c9..1823b66b4c 100644
--- a/content/zh/docs/reference/glossary/container-lifecycle-hooks.md
+++ b/content/zh-cn/docs/reference/glossary/container-lifecycle-hooks.md
@@ -2,7 +2,7 @@
 title: 容器生命周期钩子（Container Lifecycle Hooks）
 id: container-lifecycle-hooks
 date: 2018-10-08
-full_link: /zh/docs/concepts/containers/container-lifecycle-hooks/
+full_link: /zh-cn/docs/concepts/containers/container-lifecycle-hooks/
 short_description: >
   生命周期钩子暴露容器管理生命周期中的事件，允许用户在事件发生时运行代码。
 
diff --git a/content/zh-cn/docs/reference/glossary/container-runtime-interface.md b/content/zh-cn/docs/reference/glossary/container-runtime-interface.md
new file mode 100644
index 0000000000..b902dc5da0
--- /dev/null
+++ b/content/zh-cn/docs/reference/glossary/container-runtime-interface.md
@@ -0,0 +1,42 @@
+---
+title: 容器运行时接口
+id: container-runtime-interface
+date: 2021-11-24
+full_link: /zh-cn/docs/concepts/architecture/cri
+short_description: >
+  kubelet 和容器运行时之间通信的主要协议。
+
+aka:
+tags:
+  - cri
+---
+
+<!--
+title: Container Runtime Interface
+id: container-runtime-interface
+date: 2021-11-24
+full_link: /docs/concepts/architecture/cri
+short_description: >
+  The main protocol for the communication between the kubelet and Container Runtime.
+
+aka:
+tags:
+  - cri
+-->
+
+<!-- The main protocol for the communication between the kubelet and Container Runtime. -->
+kubelet 和容器运行时之间通信的主要协议。
+
+<!--more-->
+
+<!-- 
+The Kubernetes Container Runtime Interface (CRI) defines the main
+[gRPC](https://grpc.io) protocol for the communication between the
+[cluster components](/docs/concepts/overview/components/#node-components)
+{{< glossary_tooltip text="kubelet" term_id="kubelet" >}} and
+{{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}.
+-->
+Kubernetes 容器运行时接口（CRI）定义了主要 [gRPC](https://grpc.io) 协议，
+用于[集群组件](/zh-cn/docs/concepts/overview/components/#node-components)
+{{< glossary_tooltip text="kubelet" term_id="kubelet" >}} 和
+{{< glossary_tooltip text="容器运行时" term_id="container-runtime" >}}。
\ No newline at end of file
diff --git a/content/zh/docs/reference/glossary/container-runtime.md b/content/zh-cn/docs/reference/glossary/container-runtime.md
similarity index 59%
rename from content/zh/docs/reference/glossary/container-runtime.md
rename to content/zh-cn/docs/reference/glossary/container-runtime.md
index badb4bcfcd..4eaf10627e 100644
--- a/content/zh/docs/reference/glossary/container-runtime.md
+++ b/content/zh-cn/docs/reference/glossary/container-runtime.md
@@ -2,7 +2,7 @@
 title: 容器运行时（Container Runtime）
 id: container-runtime
 date: 2019-06-05
-full_link: /zh/docs/setup/production-environment/container-runtimes
+full_link: /zh-cn/docs/setup/production-environment/container-runtimes
 short_description: >
  容器运行时是负责运行容器的软件。
 
@@ -35,11 +35,15 @@ tags:
 <!--more-->
 
 <!--
-Kubernetes supports several container runtimes: {{< glossary_tooltip term_id="docker">}},
+Kubernetes supports container runtimes such sa
+{{< glossary_tooltip term_id="docker">}},
 {{< glossary_tooltip term_id="containerd" >}}, {{< glossary_tooltip term_id="cri-o" >}},
-and any implementation of the [Kubernetes CRI (Container Runtime
+and any other implementation of the [Kubernetes CRI (Container Runtime
 Interface)](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-node/container-runtime-interface.md).
 -->
-Kubernetes 支持多个容器运行环境: {{< glossary_tooltip term_id="docker">}}、
-{{< glossary_tooltip term_id="containerd" >}}、{{< glossary_tooltip term_id="cri-o" >}}
-以及任何实现 [Kubernetes CRI (容器运行环境接口)](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-node/container-runtime-interface.md)。
+Kubernetes 支持许多容器运行环境，例如
+{{< glossary_tooltip term_id="docker">}}、
+{{< glossary_tooltip term_id="containerd" >}}、
+{{< glossary_tooltip term_id="cri-o" >}}
+以及 [Kubernetes CRI (容器运行环境接口)](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-node/container-runtime-interface.md)
+的其他任何实现。
\ No newline at end of file
diff --git a/content/zh/docs/reference/glossary/container.md b/content/zh-cn/docs/reference/glossary/container.md
similarity index 93%
rename from content/zh/docs/reference/glossary/container.md
rename to content/zh-cn/docs/reference/glossary/container.md
index 450a8af998..1ca18e3ca4 100644
--- a/content/zh/docs/reference/glossary/container.md
+++ b/content/zh-cn/docs/reference/glossary/container.md
@@ -2,7 +2,7 @@
 title: 容器（Container）
 id: container
 date: 2018-04-12
-full_link: /zh/docs/concepts/overview/what-is-kubernetes/#why-containers
+full_link: /zh-cn/docs/concepts/overview/what-is-kubernetes/#why-containers
 short_description: >
   容器是可移植、可执行的轻量级的镜像，镜像中包含软件及其相关依赖。
 
diff --git a/content/zh/docs/reference/glossary/containerd.md b/content/zh-cn/docs/reference/glossary/containerd.md
similarity index 100%
rename from content/zh/docs/reference/glossary/containerd.md
rename to content/zh-cn/docs/reference/glossary/containerd.md
diff --git a/content/zh/docs/reference/glossary/contributor.md b/content/zh-cn/docs/reference/glossary/contributor.md
similarity index 100%
rename from content/zh/docs/reference/glossary/contributor.md
rename to content/zh-cn/docs/reference/glossary/contributor.md
diff --git a/content/zh/docs/reference/glossary/control-plane.md b/content/zh-cn/docs/reference/glossary/control-plane.md
similarity index 99%
rename from content/zh/docs/reference/glossary/control-plane.md
rename to content/zh-cn/docs/reference/glossary/control-plane.md
index edb67bd796..80876a2510 100644
--- a/content/zh/docs/reference/glossary/control-plane.md
+++ b/content/zh-cn/docs/reference/glossary/control-plane.md
@@ -29,6 +29,8 @@ tags:
 控制平面（Control Plane）是指容器编排层，它暴露 API 和接口来定义、
 部署容器和管理容器的生命周期。
 
+<!--more-->
+
 <!--
  This layer is composed by many different components, such as (but not restricted to):
 
diff --git a/content/zh/docs/reference/glossary/controller.md b/content/zh-cn/docs/reference/glossary/controller.md
similarity index 97%
rename from content/zh/docs/reference/glossary/controller.md
rename to content/zh-cn/docs/reference/glossary/controller.md
index e60b710603..a0c0c02bce 100644
--- a/content/zh/docs/reference/glossary/controller.md
+++ b/content/zh-cn/docs/reference/glossary/controller.md
@@ -2,7 +2,7 @@
 title: 控制器（Controller）
 id: controller
 date: 2018-04-12
-full_link: /zh/docs/concepts/architecture/controller/
+full_link: /zh-cn/docs/concepts/architecture/controller/
 short_description: >
   控制器通过 apiserver 监控集群的公共状态，并致力于将当前状态转变为期望的状态。
 
diff --git a/content/zh/docs/reference/glossary/cri-o.md b/content/zh-cn/docs/reference/glossary/cri-o.md
similarity index 100%
rename from content/zh/docs/reference/glossary/cri-o.md
rename to content/zh-cn/docs/reference/glossary/cri-o.md
diff --git a/content/zh/docs/reference/glossary/cri.md b/content/zh-cn/docs/reference/glossary/cri.md
similarity index 93%
rename from content/zh/docs/reference/glossary/cri.md
rename to content/zh-cn/docs/reference/glossary/cri.md
index 8c8da979e9..24450960d0 100644
--- a/content/zh/docs/reference/glossary/cri.md
+++ b/content/zh-cn/docs/reference/glossary/cri.md
@@ -2,7 +2,7 @@
 title: 容器运行时接口（CRI）
 id: cri
 date: 2019-03-07
-full_link: /zh/docs/concepts/overview/components/#container-runtime
+full_link: /zh-cn/docs/concepts/overview/components/#container-runtime
 short_description: >
   一组与 kubelet 集成的容器运行时 API 
 
diff --git a/content/zh/docs/reference/glossary/cronjob.md b/content/zh-cn/docs/reference/glossary/cronjob.md
similarity index 84%
rename from content/zh/docs/reference/glossary/cronjob.md
rename to content/zh-cn/docs/reference/glossary/cronjob.md
index fe16d58762..487731fe31 100644
--- a/content/zh/docs/reference/glossary/cronjob.md
+++ b/content/zh-cn/docs/reference/glossary/cronjob.md
@@ -2,7 +2,7 @@
 title: 周期调度任务（CronJob）
 id: cronjob
 date: 2018-04-12
-full_link: /zh/docs/concepts/workloads/controllers/cron-jobs/
+full_link: /zh-cn/docs/concepts/workloads/controllers/cron-jobs/
 short_description: >
   周期调度的任务（作业）。
 
@@ -32,7 +32,7 @@ tags:
  Manages a [Job](/docs/concepts/workloads/controllers/job/) that runs on a periodic schedule.
 -->
 
- 管理定期运行的 [任务](/zh/docs/concepts/workloads/controllers/job/)。
+ 管理定期运行的 [任务](/zh-cn/docs/concepts/workloads/controllers/job/)。
 
 <!--more--> 
 
diff --git a/content/zh/docs/reference/glossary/csi.md b/content/zh-cn/docs/reference/glossary/csi.md
similarity index 92%
rename from content/zh/docs/reference/glossary/csi.md
rename to content/zh-cn/docs/reference/glossary/csi.md
index 89bb66cafd..d430ef3eca 100644
--- a/content/zh/docs/reference/glossary/csi.md
+++ b/content/zh-cn/docs/reference/glossary/csi.md
@@ -2,7 +2,7 @@
 title: 容器存储接口（Container Storage Interface，CSI）
 id: csi
 date: 2018-06-25
-full_link: /zh/docs/concepts/storage/volumes/#csi
+full_link: /zh-cn/docs/concepts/storage/volumes/#csi
 short_description: >
     容器存储接口 （CSI）定义了存储系统暴露给容器的标准接口。
 
@@ -48,5 +48,5 @@ CSI 允许存储驱动提供商为 Kubernetes 创建定制化的存储插件，
 [将它部署到你的集群上](https://kubernetes-csi.github.io/docs/deploying.html)。
 然后你才能创建使用该 CSI 驱动的 {{< glossary_tooltip text="Storage Class" term_id="storage-class" >}} 。
 
-* [Kubernetes 文档中关于 CSI 的描述](/zh/docs/concepts/storage/volumes/#csi)
+* [Kubernetes 文档中关于 CSI 的描述](/zh-cn/docs/concepts/storage/volumes/#csi)
 * [可用的 CSI 驱动列表](https://kubernetes-csi.github.io/docs/drivers.html)
diff --git a/content/zh/docs/reference/glossary/customresourcedefinition.md b/content/zh-cn/docs/reference/glossary/customresourcedefinition.md
similarity index 70%
rename from content/zh/docs/reference/glossary/customresourcedefinition.md
rename to content/zh-cn/docs/reference/glossary/customresourcedefinition.md
index ee0548e78d..2d63482c3e 100644
--- a/content/zh/docs/reference/glossary/customresourcedefinition.md
+++ b/content/zh-cn/docs/reference/glossary/customresourcedefinition.md
@@ -2,9 +2,9 @@
 title: CustomResourceDefinition
 id: CustomResourceDefinition
 date: 2018-04-12
-full_link: /zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/
+full_link: /zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/
 short_description: >
-  通过定制化的代码给您的 Kubernetes API 服务器增加资源对象，而无需编译完整的定制 API 服务器。
+  通过定制化的代码给你的 Kubernetes API 服务器增加资源对象，而无需编译完整的定制 API 服务器。
 
 aka: 
 tags:
@@ -33,7 +33,7 @@ tags:
  Custom code that defines a resource to add to your Kubernetes API server without building a complete custom server.
 -->
 
- 通过定制化的代码给您的 Kubernetes API 服务器增加资源对象，而无需编译完整的定制 API 服务器。
+ 通过定制化的代码给你的 Kubernetes API 服务器增加资源对象，而无需编译完整的定制 API 服务器。
 
 <!--more--> 
 
@@ -41,5 +41,6 @@ tags:
 Custom Resource Definitions let you extend the Kubernetes API for your environment if the publicly supported API resources can't meet your needs. 
 -->
 
-当 Kubernetes 公开支持的 API 资源不能满足您的需要时，定制资源对象（Custom Resource Definitions）让您可以在您的环境上扩展 Kubernetes API。
+当 Kubernetes 公开支持的 API 资源不能满足你的需要时，
+定制资源对象（Custom Resource Definitions）让你可以在你的环境上扩展 Kubernetes API。
 
diff --git a/content/zh/docs/reference/glossary/daemonset.md b/content/zh-cn/docs/reference/glossary/daemonset.md
similarity index 94%
rename from content/zh/docs/reference/glossary/daemonset.md
rename to content/zh-cn/docs/reference/glossary/daemonset.md
index 5f35ae5012..7096011743 100644
--- a/content/zh/docs/reference/glossary/daemonset.md
+++ b/content/zh-cn/docs/reference/glossary/daemonset.md
@@ -2,7 +2,7 @@
 title: DaemonSet
 id: daemonset
 date: 2018-04-12
-full_link: /zh/docs/concepts/workloads/controllers/daemonset/
+full_link: /zh-cn/docs/concepts/workloads/controllers/daemonset/
 short_description: >
   确保 Pod 的副本在集群中的一组节点上运行。
 
diff --git a/content/zh/docs/reference/glossary/data-plane.md b/content/zh-cn/docs/reference/glossary/data-plane.md
similarity index 100%
rename from content/zh/docs/reference/glossary/data-plane.md
rename to content/zh-cn/docs/reference/glossary/data-plane.md
diff --git a/content/zh/docs/reference/glossary/deployment.md b/content/zh-cn/docs/reference/glossary/deployment.md
similarity index 94%
rename from content/zh/docs/reference/glossary/deployment.md
rename to content/zh-cn/docs/reference/glossary/deployment.md
index ca52523e46..e09f680581 100644
--- a/content/zh/docs/reference/glossary/deployment.md
+++ b/content/zh-cn/docs/reference/glossary/deployment.md
@@ -2,7 +2,7 @@
 title: Deployment
 id: deployment
 date: 2018-04-12
-full_link: /zh/docs/concepts/workloads/controllers/deployment/
+full_link: /zh-cn/docs/concepts/workloads/controllers/deployment/
 short_description: >
   Deployment 是管理应用副本的 API 对象。
 
diff --git a/content/zh/docs/reference/glossary/developer.md b/content/zh-cn/docs/reference/glossary/developer.md
similarity index 100%
rename from content/zh/docs/reference/glossary/developer.md
rename to content/zh-cn/docs/reference/glossary/developer.md
diff --git a/content/zh/docs/reference/glossary/device-plugin.md b/content/zh-cn/docs/reference/glossary/device-plugin.md
similarity index 89%
rename from content/zh/docs/reference/glossary/device-plugin.md
rename to content/zh-cn/docs/reference/glossary/device-plugin.md
index 30664b8c31..9bbecf8d1d 100644
--- a/content/zh/docs/reference/glossary/device-plugin.md
+++ b/content/zh-cn/docs/reference/glossary/device-plugin.md
@@ -2,7 +2,7 @@
 title: 设备插件（Device Plugin）
 id: device-plugin
 date: 2019-02-02
-full_link: /zh/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/
+full_link: /zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/
 short_description: >
   一种软件扩展，可以使 Pod 访问由特定厂商初始化或者安装的设备。
 aka:
@@ -49,4 +49,4 @@ See
 [Device Plugins](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)
 for more information.
 -->
-更多信息请查阅[设备插件](/zh/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/) 
\ No newline at end of file
+更多信息请查阅[设备插件](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/) 
\ No newline at end of file
diff --git a/content/zh/docs/reference/glossary/disruption.md b/content/zh-cn/docs/reference/glossary/disruption.md
similarity index 73%
rename from content/zh/docs/reference/glossary/disruption.md
rename to content/zh-cn/docs/reference/glossary/disruption.md
index 2b59797a39..aa4fca945c 100644
--- a/content/zh/docs/reference/glossary/disruption.md
+++ b/content/zh-cn/docs/reference/glossary/disruption.md
@@ -2,7 +2,7 @@
 title: 干扰（Disruption）
 id: disruption
 date: 2019-09-10
-full_link: /zh/docs/concepts/workloads/pods/disruptions/
+full_link: /zh-cn/docs/concepts/workloads/pods/disruptions/
 short_description: >
    导致 Pod 服务停止的事件。
 aka:
@@ -41,7 +41,7 @@ Kubernetes terms that an _involuntary disruption_.
 
 See [Disruptions](/docs/concepts/workloads/pods/disruptions/) for more information.
  -->
-如果您作为一个集群操作人员，销毁了一个从属于某个应用的 Pod, Kubernetes 视之为 _自愿干扰（Voluntary Disruption）_。如果由于节点故障
-或者影响更大区域故障的断电导致 Pod 离线，kubernetes 视之为 _非愿干扰（Involuntary Disruption）_。
+如果你作为一个集群操作人员，销毁了一个从属于某个应用的 Pod, Kubernetes 视之为**自愿干扰（Voluntary Disruption）**。
+如果由于节点故障 或者影响更大区域故障的断电导致 Pod 离线，kubernetes 视之为**非愿干扰（Involuntary Disruption）**。
 
-更多信息请查阅[Disruptions](/zh/docs/concepts/workloads/pods/disruptions/)
\ No newline at end of file
+更多信息请查阅[Disruptions](/zh-cn/docs/concepts/workloads/pods/disruptions/)
\ No newline at end of file
diff --git a/content/zh/docs/reference/glossary/docker.md b/content/zh-cn/docs/reference/glossary/docker.md
similarity index 95%
rename from content/zh/docs/reference/glossary/docker.md
rename to content/zh-cn/docs/reference/glossary/docker.md
index bec6c834f2..78ac4c9f50 100644
--- a/content/zh/docs/reference/glossary/docker.md
+++ b/content/zh-cn/docs/reference/glossary/docker.md
@@ -2,7 +2,7 @@
 title: Docker
 id: docker
 date: 2018-04-12
-full_link: /zh/docs/reference/kubectl/docker-cli-to-kubectl/
+full_link: /zh-cn/docs/reference/kubectl/docker-cli-to-kubectl/
 short_description: >
   Docker 是一种可以提供操作系统级别虚拟化（也称作容器）的软件技术。
 
diff --git a/content/zh-cn/docs/reference/glossary/dockershim.md b/content/zh-cn/docs/reference/glossary/dockershim.md
new file mode 100644
index 0000000000..daad4679bb
--- /dev/null
+++ b/content/zh-cn/docs/reference/glossary/dockershim.md
@@ -0,0 +1,40 @@
+---
+title: Dockershim
+id: dockershim
+date: 2022-04-15
+full_link: /zh-cn/dockershim
+short_description: >
+   dockershim 是 Kubernetes v1.23 及之前版本中的一个组件，Kubernetes 系统组件通过它与 Docker Engine 通信。
+
+aka:
+tags:
+- fundamental
+---
+
+<!--
+title: Dockershim
+id: dockershim
+date: 2022-04-15
+full_link: /dockershim
+short_description: >
+   A component of Kubernetes v1.23 and earlier, which allows Kubernetes system components to communicate with Docker Engine.
+
+aka:
+tags:
+- fundamental
+-->
+
+<!--
+The dockershim is a component of Kubernetes version 1.23 and earlier. It allows the kubelet
+to communicate with {{< glossary_tooltip text="Docker Engine" term_id="docker" >}}.
+-->
+
+dockershim 是 Kubernetes v1.23 及之前版本中的一个组件。
+Kubernetes 系统组件通过它与 {{< glossary_tooltip text="Docker Engine" term_id="docker" >}} 通信。
+
+<!--more-->
+<!--
+Starting with version 1.24, dockershim has been removed from Kubernetes. For more information, see [Dockershim FAQ](/dockershim).
+-->
+从 Kubernetes v1.24 开始，dockershim 已从 Kubernetes 中移除。
+想了解更多信息，可参考[移除 Dockershim 的常见问题](/zh-cn/dockershim)。
diff --git a/content/zh/docs/reference/glossary/downstream.md b/content/zh-cn/docs/reference/glossary/downstream.md
similarity index 86%
rename from content/zh/docs/reference/glossary/downstream.md
rename to content/zh-cn/docs/reference/glossary/downstream.md
index cba0229cb9..154e1f0479 100644
--- a/content/zh/docs/reference/glossary/downstream.md
+++ b/content/zh-cn/docs/reference/glossary/downstream.md
@@ -27,7 +27,7 @@ tags:
 -->
 
 <!--
-May refer to: code in the Kubernetes ecosystem that depends upon the core Kubernetes codebase or a forked repo.
+ May refer to: code in the Kubernetes ecosystem that depends upon the core Kubernetes codebase or a forked repo.
 -->
 
 可以指：Kubernetes 生态系统中依赖于核心 Kubernetes 代码库或分支代码库的代码。
@@ -39,6 +39,6 @@ May refer to: code in the Kubernetes ecosystem that depends upon the core Kubern
 * In **GitHub** or **git**: The convention is to refer to a forked repo as *downstream*, whereas the source repo is considered *upstream*.
 -->
 
-* 在 **Kubernetes 社区**中：*下游(downstream)* 在人们交流中常用来表示那些依赖核心 Kubernetes 代码库的生态系统、代码或者第三方工具。例如，Kubernete 的一个新特性可以被*下游(downstream)* 应用采用，以提升它们的功能性。
+* 在 **Kubernetes 社区**中：*下游(downstream)* 在人们交流中常用来表示那些依赖核心 Kubernetes 代码库的生态系统、代码或者第三方工具。例如，Kubernetes 的一个新特性可以被*下游(downstream)* 应用采用，以提升它们的功能性。
 * 在 **GitHub** 或 **git** 中：约定用*下游(downstream)* 表示分支代码库，源代码库被认为是*上游(upstream)*。
 
diff --git a/content/zh-cn/docs/reference/glossary/downward-api.md b/content/zh-cn/docs/reference/glossary/downward-api.md
new file mode 100644
index 0000000000..08de310482
--- /dev/null
+++ b/content/zh-cn/docs/reference/glossary/downward-api.md
@@ -0,0 +1,56 @@
+---
+title: Downward API
+id: downward-api
+date: 2022-03-21
+short_description: >
+  将 Pod 和容器字段值暴露给容器中运行的代码的机制。
+aka:
+full_link: /docs/concepts/workloads/pods/downward-api/
+tags:
+- architecture
+---
+<!--
+title: Downward API
+id: downward-api
+date: 2022-03-21
+short_description: >
+  A mechanism to expose Pod and container field values to code running in a container.
+aka:
+full_link: /docs/concepts/workloads/pods/downward-api/
+tags:
+- architecture
+-->
+<!--
+Kubernetes' mechanism to expose Pod and container field values to code running in a container.
+-->
+Kubernetes 将 Pod 和容器字段值暴露给容器中运行的代码的机制。
+<!--more-->
+<!--
+It is sometimes useful for a container to have information about itself, without
+needing to make changes to the container code that directly couple it to Kubernetes.
+-->
+在不需要修改容器代码的前提下让容器拥有关于自身的信息是很有用的。修改代码可能使容器直接耦合到 Kubernetes。
+
+<!--
+The Kubernetes downward API allows containers to consume information about themselves
+or their context in a Kubernetes cluster. Applications in containers can have
+access to that information, without the application needing to act as a client of
+the Kubernetes API.
+-->
+Kubernetes Downward API 允许容器使用它们自己或它们在 Kubernetes 集群中所处环境的信息。
+容器中的应用程序可以访问该信息，而不需要以 Kubernetes API 客户端的形式执行操作。
+
+<!--
+There are two ways to expose Pod and container fields to a running container:
+
+- using [environment variables](/docs/tasks/inject-data-application/environment-variable-expose-pod-information/)
+- using [a `downwardAPI` volume](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/)
+
+Together, these two ways of exposing Pod and container fields are called the _downward API_.
+-->
+有两种方法可以将 Pod 和容器字段暴露给正在运行的容器：
+
+* 使用[环境变量](/zh-cn/docs/tasks/inject-data-application/environment-variable-expose-pod-information/)
+* 使用 [`downwardAPI` 卷](/zh-cn/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/)
+
+这两种暴露 Pod 和容器字段的方式统称为 **Downward API**。
\ No newline at end of file
diff --git a/content/zh/docs/reference/glossary/dynamic-volume-provisioning.md b/content/zh-cn/docs/reference/glossary/dynamic-volume-provisioning.md
similarity index 96%
rename from content/zh/docs/reference/glossary/dynamic-volume-provisioning.md
rename to content/zh-cn/docs/reference/glossary/dynamic-volume-provisioning.md
index 5606af15a4..a4f8212ba8 100644
--- a/content/zh/docs/reference/glossary/dynamic-volume-provisioning.md
+++ b/content/zh-cn/docs/reference/glossary/dynamic-volume-provisioning.md
@@ -2,7 +2,7 @@
 title: 动态卷供应（Dynamic Volume Provisioning）
 id: dynamicvolumeprovisioning
 date: 2018-04-12
-full_link: /zh/docs/concepts/storage/dynamic-provisioning/
+full_link: /zh-cn/docs/concepts/storage/dynamic-provisioning/
 short_description: >
   允许用户请求自动创建存储卷。
 
diff --git a/content/zh/docs/reference/glossary/endpoint-slice.md b/content/zh-cn/docs/reference/glossary/endpoint-slice.md
similarity index 94%
rename from content/zh/docs/reference/glossary/endpoint-slice.md
rename to content/zh-cn/docs/reference/glossary/endpoint-slice.md
index dcfc35e308..f08f9adf4b 100644
--- a/content/zh/docs/reference/glossary/endpoint-slice.md
+++ b/content/zh-cn/docs/reference/glossary/endpoint-slice.md
@@ -2,7 +2,7 @@
 title: EndpointSlice
 id: endpoint-slice
 date: 2018-04-12
-full_link: /zh/docs/concepts/services-networking/endpoint-slices/
+full_link: /zh-cn/docs/concepts/services-networking/endpoint-slices/
 short_description: >
   一种将网络端点与 Kubernetes 资源组合在一起的方法。
 
diff --git a/content/zh/docs/reference/glossary/endpoint.md b/content/zh-cn/docs/reference/glossary/endpoint.md
similarity index 100%
rename from content/zh/docs/reference/glossary/endpoint.md
rename to content/zh-cn/docs/reference/glossary/endpoint.md
diff --git a/content/zh/docs/reference/glossary/ephemeral-container.md b/content/zh-cn/docs/reference/glossary/ephemeral-container.md
similarity index 81%
rename from content/zh/docs/reference/glossary/ephemeral-container.md
rename to content/zh-cn/docs/reference/glossary/ephemeral-container.md
index d937404797..0816175899 100644
--- a/content/zh/docs/reference/glossary/ephemeral-container.md
+++ b/content/zh-cn/docs/reference/glossary/ephemeral-container.md
@@ -2,14 +2,14 @@
 title: 临时容器（Ephemeral Container）
 id: ephemeral-container
 date: 2019-08-26
-full_link: /zh/docs/concepts/workloads/pods/ephemeral-containers/
+full_link: /zh-cn/docs/concepts/workloads/pods/ephemeral-containers/
 short_description: >
-  您可以在 Pod 中临时运行的一种容器类型
+  你可以在 Pod 中临时运行的一种容器类型
 aka:
 tags:
 - fundamental
 ---
-  您可以在 {{< glossary_tooltip term_id="pod" >}} 中临时运行的一种 {{< glossary_tooltip term_id="container" >}} 类型。
+  你可以在 {{< glossary_tooltip term_id="pod" >}} 中临时运行的一种 {{< glossary_tooltip term_id="container" >}} 类型。
 
 <!--
 ---
diff --git a/content/zh/docs/reference/glossary/etcd.md b/content/zh-cn/docs/reference/glossary/etcd.md
similarity index 67%
rename from content/zh/docs/reference/glossary/etcd.md
rename to content/zh-cn/docs/reference/glossary/etcd.md
index 9dec928b29..8929d62f17 100644
--- a/content/zh/docs/reference/glossary/etcd.md
+++ b/content/zh-cn/docs/reference/glossary/etcd.md
@@ -2,7 +2,7 @@
 title: etcd
 id: etcd
 date: 2018-04-12
-full_link: /zh/docs/tasks/administer-cluster/configure-upgrade-etcd/
+full_link: /zh-cn/docs/tasks/administer-cluster/configure-upgrade-etcd/
 short_description: >
   etcd 是兼具一致性和高可用性的键值数据库，用作保存 Kubernetes 所有集群数据的后台数据库。
 
@@ -32,7 +32,7 @@ tags:
  Consistent and highly-available key value store used as Kubernetes' backing store for all cluster data.
 -->
 
-etcd 是兼具一致性和高可用性的键值数据库，可以作为保存 Kubernetes 所有集群数据的后台数据库。
+`etcd` 是兼顾一致性与高可用性的键值数据库，可以作为保存 Kubernetes 所有集群数据的后台数据库。
 
 <!--more--> 
 <!--
@@ -40,9 +40,9 @@ If your Kubernetes cluster uses etcd as its backing store, make sure you have a
 [back up](/docs/tasks/administer-cluster/configure-upgrade-etcd/#backing-up-an-etcd-cluster) plan
 for those data.
 -->	
-您的 Kubernetes 集群的 etcd 数据库通常需要有个备份计划。
+你的 Kubernetes 集群的 `etcd` 数据库通常需要有个[备份](/zh-cn/docs/tasks/administer-cluster/configure-upgrade-etcd/#backing-up-an-etcd-cluster)计划。
 <!--
 You can find in-depth information about etcd in the official [documentation](https://etcd.io/docs/).
 -->
 
-要了解 etcd 更深层次的信息，请参考 [etcd 文档](https://etcd.io/docs/)。
+如果想要更深入的了解 `etcd`，请参考 [etcd 文档](https://etcd.io/docs/)。
diff --git a/content/zh-cn/docs/reference/glossary/event.md b/content/zh-cn/docs/reference/glossary/event.md
new file mode 100644
index 0000000000..107854cf53
--- /dev/null
+++ b/content/zh-cn/docs/reference/glossary/event.md
@@ -0,0 +1,56 @@
+---
+title: 事件（Event）
+id: event
+date: 2022-01-16
+full_link: /zh-cn/docs/reference/kubernetes-api/cluster-resources/event-v1/
+short_description: >
+   对集群中某处所发生事件的报告。通常用来表述系统中某种状态变更。
+aka: 
+tags:
+- core-object
+- fundamental
+---
+
+<!--
+title: Event
+id: event
+date: 2022-01-16
+full_link: /docs/reference/kubernetes-api/cluster-resources/event-v1/
+short_description: >
+   A report of an event somewhere in the cluster. It generally denotes some state change in the system.
+aka: 
+tags:
+- core-object
+- fundamental
+-->
+
+<!--
+Each Event is a report of an event somewhere in the {{< glossary_tooltip text="cluster" term_id="cluster" >}}. 
+It generally denotes some state change in the system.
+-->
+每个 Event 是{{< glossary_tooltip text="集群" term_id="cluster" >}}中某处所发生事件的报告。
+它通常用来表述系统中的某种状态变更。
+
+<!--more-->
+
+<!--
+Events have a limited retention time and triggers and messages may evolve with time. 
+Event consumers should not rely on the timing of an event with a given reason reflecting a consistent underlying trigger, 
+or the continued existence of events with that reason. 
+-->
+事件的保留时间有限，随着时间推进，其触发方式和消息都可能发生变化。
+事件用户不应该对带有给定原因（反映下层触发源）的时间特征有任何依赖，
+也不要寄希望于该原因所造成的事件会一直存在。
+
+<!--
+Events should be treated as informative, best-effort, supplemental data.
+-->
+事件应该被视为一种告知性质的、尽力而为的、补充性质的数据。
+
+<!--
+In Kubernetes, [auditing](/docs/tasks/debug/debug-cluster/audit/) generates a different kind of
+Event record (API group `audit.k8s.io`).
+-->
+在 Kubernetes 中，[审计](/zh-cn/docs/tasks/debug/debug-cluster/audit/)
+机制会生成一种不同类别的 Event 记录（API 组为 `audit.k8s.io`）。
+
diff --git a/content/zh-cn/docs/reference/glossary/eviction.md b/content/zh-cn/docs/reference/glossary/eviction.md
new file mode 100644
index 0000000000..142b9fa602
--- /dev/null
+++ b/content/zh-cn/docs/reference/glossary/eviction.md
@@ -0,0 +1,38 @@
+---
+title: 驱逐
+id: eviction
+date: 2021-05-08
+full_link: /zh-cn/docs/concepts/scheduling-eviction/
+short_description: >
+    终止节点上一个或多个 Pod 的过程。
+aka:
+tags:
+- operation
+---
+<!--
+---
+title: Eviction
+id: eviction
+date: 2021-05-08
+full_link: /docs/concepts/scheduling-eviction/
+short_description: >
+    Process of terminating one or more Pods on Nodes
+aka:
+tags:
+- operation
+---
+-->
+<!--
+Eviction is the process of terminating one or more Pods on Nodes.
+-->
+驱逐即终止节点上一个或多个 Pod 的过程。
+<!--more-->
+<!--
+There are two kinds of eviction:
+* [Node-pressure eviction](/docs/concepts/scheduling-eviction/node-pressure-eviction/)
+* [API-initiated eviction](/docs/reference/generated/kubernetes-api/v1.23/)
+-->
+驱逐的两种类型
+* [节点压力驱逐](/zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption/)
+* [API 发起的驱逐](/docs/reference/generated/kubernetes-api/v1.23/)
+
diff --git a/content/zh/docs/reference/glossary/extensions.md b/content/zh-cn/docs/reference/glossary/extensions.md
similarity index 50%
rename from content/zh/docs/reference/glossary/extensions.md
rename to content/zh-cn/docs/reference/glossary/extensions.md
index 7c3e43cddf..a9d100f98e 100644
--- a/content/zh/docs/reference/glossary/extensions.md
+++ b/content/zh-cn/docs/reference/glossary/extensions.md
@@ -2,7 +2,7 @@
 title: 扩展组件（Extensions）
 id: Extensions
 date: 2019-02-01
-full_link: /zh/docs/concepts/extend-kubernetes/extend-cluster/#extensions
+full_link: /zh-cn/docs/concepts/extend-kubernetes/#extensions
 short_description: >
   扩展组件是扩展并与 Kubernetes 深度集成以支持新型硬件的软件组件。
 aka:
@@ -15,7 +15,7 @@ tags:
 title: Extensions
 id: Extensions
 date: 2019-02-01
-full_link: /docs/concepts/extend-kubernetes/extend-cluster/#extensions
+full_link: /docs/concepts/extend-kubernetes/#extensions
 short_description: >
   Extensions are software components that extend and deeply integrate with Kubernetes to support new types of hardware.
 
@@ -32,9 +32,9 @@ tags:
 <!--more-->
 
 <!--
-Most cluster administrators will use a hosted or distribution instance of Kubernetes. As a result, most Kubernetes users will need to install [extensions](/docs/concepts/extend-kubernetes/extend-cluster/#extensions) and fewer will need to author new ones.
+Many cluster administrators use a hosted or distribution instance of Kubernetes. These clusters come with extensions pre-installed. As a result, most Kubernetes users will not need to install [extensions](/docs/concepts/extend-kubernetes/) and even fewer users will need to author new ones. 
 -->
 
-大多数集群管理员会使用托管的 Kubernetes 或其某种发行包。因此，大多数 Kubernetes 用户将需要
-安装[扩展组件](/zh/docs/concepts/extend-kubernetes/extend-cluster/#extensions)，
-较少用户会需要编写新的扩展组件。
+许多集群管理员会使用托管的 Kubernetes 或其某种发行包，这些集群预装了扩展。
+因此，大多数 Kubernetes 用户将不需要安装[扩展组件](/zh-cn/docs/concepts/extend-kubernetes/)，
+需要编写新的扩展组件的用户就更少了。
diff --git a/content/zh-cn/docs/reference/glossary/finalizer.md b/content/zh-cn/docs/reference/glossary/finalizer.md
new file mode 100644
index 0000000000..2de7c10073
--- /dev/null
+++ b/content/zh-cn/docs/reference/glossary/finalizer.md
@@ -0,0 +1,65 @@
+---
+title: Finalizer
+id: finalizer
+date: 2021-07-07
+full_link: /zh-cn/docs/concepts/overview/working-with-objects/finalizers/
+short_description: >
+  一个带有命名空间的键，告诉 Kubernetes 等到特定的条件被满足后，
+  再完全删除被标记为删除的资源。
+aka: 
+tags:
+- fundamental
+- operation
+---
+
+<!--
+---
+title: Finalizer
+id: finalizer
+date: 2021-07-07
+full_link: /zh-cn/docs/concepts/overview/working-with-objects/finalizers/
+short_description: >
+  A namespaced key that tells Kubernetes to wait until specific conditions are met
+  before it fully deletes an object marked for deletion.
+aka: 
+tags:
+- fundamental
+- operation
+-->
+
+
+<!--
+Finalizers are namespaced keys that tell Kubernetes to wait until specific
+conditions are met before it fully deletes resources marked for deletion.
+Finalizers alert {{<glossary_tooltip text="controllers" term_id="controller">}}
+to clean up resources the deleted object owned.
+-->
+Finalizer 是带有命名空间的键，告诉 Kubernetes 等到特定的条件被满足后，
+再完全删除被标记为删除的资源。
+Finalizer 提醒{{<glossary_tooltip text="控制器" term_id="controller">}}清理被删除的对象拥有的资源。
+<!--more-->
+
+<!--
+When you tell Kubernetes to delete an object that has finalizers specified for
+it, the Kubernetes API marks the object for deletion by populating `.metadata.deletionTimestamp`,
+and returns a `202` status code (HTTP "Accepted"). The target object remains in a terminating state while the
+control plane, or other components, take the actions defined by the finalizers.
+After these actions are complete, the controller removes the relevant finalizers
+from the target object. When the `metadata.finalizers` field is empty,
+Kubernetes considers the deletion complete.
+-->
+当你告诉 Kubernetes 删除一个指定了 Finalizer 的对象时，
+Kubernetes API 通过填充 `.metadata.deletionTimestamp` 来标记要删除的对象，
+并返回`202`状态码 (HTTP "已接受") 使其进入只读状态。
+此时控制平面或其他组件会采取 Finalizer 所定义的行动，
+而目标对象仍然处于终止中（Terminating）的状态。
+这些行动完成后，控制器会删除目标对象相关的 Finalizer。
+当 `metadata.finalizers` 字段为空时，Kubernetes 认为删除已完成。
+
+<!--
+You can use finalizers to control {{<glossary_tooltip text="garbage collection" term_id="garbage-collection">}}
+of resources. For example, you can define a finalizer to clean up related resources or
+infrastructure before the controller deletes the target resource.
+-->
+你可以使用 Finalizer 控制资源的{{<glossary_tooltip text="垃圾收集" term_id="garbage-collection">}}。
+例如，你可以定义一个 Finalizer，在删除目标资源前清理相关资源或基础设施。
\ No newline at end of file
diff --git a/content/zh/docs/reference/glossary/flexvolume.md b/content/zh-cn/docs/reference/glossary/flexvolume.md
similarity index 72%
rename from content/zh/docs/reference/glossary/flexvolume.md
rename to content/zh-cn/docs/reference/glossary/flexvolume.md
index df657c62ca..c00fd05922 100644
--- a/content/zh/docs/reference/glossary/flexvolume.md
+++ b/content/zh-cn/docs/reference/glossary/flexvolume.md
@@ -2,9 +2,9 @@
 title: FlexVolume
 id: flexvolume
 date: 2018-06-25
-full_link: /zh/docs/concepts/storage/volumes/#flexvolume
+full_link: /zh-cn/docs/concepts/storage/volumes/#flexvolume
 short_description: >
-  Flexvolume 是创建树外卷插件的一种接口。
+  FlexVolume 是一个已弃用的接口，用于创建树外卷插件。
   {{< glossary_tooltip text="容器存储接口（CSI）" term_id="csi" >}}
   是比 Flexvolume 更新的接口，它解决了 Flexvolumes 的一些问题。
 
@@ -19,15 +19,15 @@ id: flexvolume
 date: 2018-06-25
 full_link: /docs/concepts/storage/volumes/#flexvolume
 short_description: >
-    FlexVolume is an interface for creating out-of-tree volume plugins. The {{< glossary_tooltip text="Container Storage Interface" term_id="csi" >}} is a newer interface which addresses several problems with FlexVolumes.
+  FlexVolume is a deprecated interface for creating out-of-tree volume plugins. The {{< glossary_tooltip text="Container Storage Interface" term_id="csi" >}} is a newer interface that addresses several problems with FlexVolume.
 aka: 
 tags:
 - storage 
 -->
 <!-- 
-FlexVolume is an interface for creating out-of-tree volume plugins. The {{< glossary_tooltip text="Container Storage Interface" term_id="csi" >}} is a newer interface which addresses several problems with FlexVolumes.
+FlexVolume is a deprecated interface for creating out-of-tree volume plugins. The {{< glossary_tooltip text="Container Storage Interface" term_id="csi" >}} is a newer interface that addresses several problems with FlexVolume.
 -->
-Flexvolume 是创建树外卷插件的一种接口。
+FlexVolume 是一个已弃用的接口，用于创建树外卷插件。
 {{< glossary_tooltip text="容器存储接口（CSI）" term_id="csi" >}}
 是比 Flexvolume 更新的接口，它解决了 Flexvolume 的一些问题。
 
@@ -47,6 +47,6 @@ FlexVolume 驱动程序的二进制文件和依赖项必须安装在主机上。
 * [More information on FlexVolumes](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-storage/flexvolume.md)
 * [Volume Plugin FAQ for Storage Vendors](https://github.com/kubernetes/community/blob/master/sig-storage/volume-plugin-faq.md) 
 -->
-* [Kubernetes 文档中的 Flexvolume](/zh/docs/concepts/storage/volumes/#flexvolume)
+* [Kubernetes 文档中的 Flexvolume](/zh-cn/docs/concepts/storage/volumes/#flexvolume)
 * [更多关于 Flexvolumes 的信息](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-storage/flexvolume.md)
 * [存储供应商的卷插件 FAQ](https://github.com/kubernetes/community/blob/master/sig-storage/volume-plugin-faq.md)
diff --git a/content/zh-cn/docs/reference/glossary/garbage-collection.md b/content/zh-cn/docs/reference/glossary/garbage-collection.md
new file mode 100644
index 0000000000..3974bc4766
--- /dev/null
+++ b/content/zh-cn/docs/reference/glossary/garbage-collection.md
@@ -0,0 +1,50 @@
+---
+title: 垃圾收集
+id: garbage-collection
+date: 2021-07-07
+full_link: /zh-cn/docs/concepts/workloads/controllers/garbage-collection/
+short_description: >
+  Kubernetes 用于清理集群资源的各种机制的统称。
+
+aka: 
+tags:
+- fundamental
+- operation
+---
+<!-- 
+title: Garbage Collection
+id: garbage-collection
+date: 2021-07-07
+full_link: /docs/concepts/workloads/controllers/garbage-collection/
+short_description: >
+  A collective term for the various mechanisms Kubernetes uses to clean up cluster
+  resources.
+
+aka: 
+tags:
+- fundamental
+- operation
+-->
+
+<!-- 
+ Garbage collection is a collective term for the various mechanisms Kubernetes uses to clean up
+ cluster resources. 
+-->
+垃圾收集是 Kubernetes 用于清理集群资源的各种机制的统称。
+
+<!--more-->
+
+<!-- 
+Kubernetes uses garbage collection to clean up resources like
+[unused containers and images](/docs/concepts/architecture/garbage-collection/#containers-images),
+[failed Pods](/docs/concepts/workloads/pods/pod-lifecycle/#pod-garbage-collection),
+[objects owned by the targeted resource](/docs/concepts/overview/working-with-objects/owners-dependents/),
+[completed Jobs](/docs/concepts/workloads/controllers/ttlafterfinished/), and resources
+that have expired or failed.
+-->
+Kubernetes 使用垃圾收集机制来清理资源，例如：
+[未使用的容器和镜像](/zh-cn/docs/concepts/architecture/garbage-collection/#containers-images)、
+[失败的 Pod](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#pod-garbage-collection)、
+[目标资源拥有的对象](/zh-cn/docs/concepts/overview/working-with-objects/owners-dependents/)、
+[已完成的 Job](/zh-cn/docs/concepts/workloads/controllers/ttlafterfinished/)、
+过期或出错的资源。
\ No newline at end of file
diff --git a/content/zh/docs/reference/glossary/helm-chart.md b/content/zh-cn/docs/reference/glossary/helm-chart.md
similarity index 100%
rename from content/zh/docs/reference/glossary/helm-chart.md
rename to content/zh-cn/docs/reference/glossary/helm-chart.md
diff --git a/content/zh/docs/reference/glossary/horizontal-pod-autoscaler.md b/content/zh-cn/docs/reference/glossary/horizontal-pod-autoscaler.md
similarity index 95%
rename from content/zh/docs/reference/glossary/horizontal-pod-autoscaler.md
rename to content/zh-cn/docs/reference/glossary/horizontal-pod-autoscaler.md
index 45e5033a5a..49b18de3ee 100644
--- a/content/zh/docs/reference/glossary/horizontal-pod-autoscaler.md
+++ b/content/zh-cn/docs/reference/glossary/horizontal-pod-autoscaler.md
@@ -2,7 +2,7 @@
 title: Pod 水平自动扩缩器（Horizontal Pod Autoscaler）
 id: horizontal-pod-autoscaler
 date: 2018-04-12
-full_link: /zh/docs/tasks/run-application/horizontal-pod-autoscale/
+full_link: /zh-cn/docs/tasks/run-application/horizontal-pod-autoscale/
 short_description: >
   Pod 水平自动扩缩器（Horizontal Pod Autoscaler）是一种 API 资源，它根据目标 CPU 利用率或自定义度量目标扩缩 Pod 副本的数量。
 
diff --git a/content/zh/docs/reference/glossary/host-aliases.md b/content/zh-cn/docs/reference/glossary/host-aliases.md
similarity index 92%
rename from content/zh/docs/reference/glossary/host-aliases.md
rename to content/zh-cn/docs/reference/glossary/host-aliases.md
index c2be10bee2..df01a76b4a 100644
--- a/content/zh/docs/reference/glossary/host-aliases.md
+++ b/content/zh-cn/docs/reference/glossary/host-aliases.md
@@ -2,7 +2,7 @@
 title: HostAliases
 id: HostAliases
 date: 2019-01-31
-full_link: /docs/reference/generated/kubernetes-api/{{< param "version" >}}/#hostalias-v1-core
+full_link: /zh-cn/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#hostalias-v1-core
 short_description: >
   主机别名 (HostAliases) 是一组 IP 地址和主机名的映射，用于注入到 Pod 内的 hosts 文件。
 
@@ -10,10 +10,7 @@ aka:
 tags:
 - operation
 ---
- 主机别名 (HostAliases) 是一组 IP 地址和主机名的映射，用于注入到 {{< glossary_tooltip text="Pod" term_id="pod" >}} 内的 hosts 文件。
-
 <!--
----
 title: HostAliases
 id: HostAliases
 date: 2019-01-31
@@ -24,9 +21,13 @@ short_description: >
 aka:
 tags:
 - operation
----
+-->
+
+<!--
  A HostAliases is a mapping between the IP address and hostname to be injected into a {{< glossary_tooltip text="Pod" term_id="pod" >}}'s hosts file.
 -->
+ 主机别名 (HostAliases) 是一组 IP 地址和主机名的映射，用于注入到 {{< glossary_tooltip text="Pod" term_id="pod" >}} 内的 hosts 文件。
+
 
 <!--more-->
 
diff --git a/content/zh/docs/reference/glossary/image.md b/content/zh-cn/docs/reference/glossary/image.md
similarity index 100%
rename from content/zh/docs/reference/glossary/image.md
rename to content/zh-cn/docs/reference/glossary/image.md
diff --git a/content/zh/docs/reference/glossary/index.md b/content/zh-cn/docs/reference/glossary/index.md
similarity index 100%
rename from content/zh/docs/reference/glossary/index.md
rename to content/zh-cn/docs/reference/glossary/index.md
diff --git a/content/zh/docs/reference/glossary/ingress.md b/content/zh-cn/docs/reference/glossary/ingress.md
similarity index 93%
rename from content/zh/docs/reference/glossary/ingress.md
rename to content/zh-cn/docs/reference/glossary/ingress.md
index 2b08741574..e48b9948a1 100644
--- a/content/zh/docs/reference/glossary/ingress.md
+++ b/content/zh-cn/docs/reference/glossary/ingress.md
@@ -2,7 +2,7 @@
 title: Ingress
 id: ingress
 date: 2018-04-12
-full_link: /zh/docs/concepts/services-networking/ingress/
+full_link: /zh-cn/docs/concepts/services-networking/ingress/
 short_description: >
   Ingress 是对集群中服务的外部访问进行管理的 API 对象，典型的访问方式是 HTTP。
 
diff --git a/content/zh/docs/reference/glossary/init-container.md b/content/zh-cn/docs/reference/glossary/init-container.md
similarity index 100%
rename from content/zh/docs/reference/glossary/init-container.md
rename to content/zh-cn/docs/reference/glossary/init-container.md
diff --git a/content/zh/docs/reference/glossary/istio.md b/content/zh-cn/docs/reference/glossary/istio.md
similarity index 77%
rename from content/zh/docs/reference/glossary/istio.md
rename to content/zh-cn/docs/reference/glossary/istio.md
index 4a3300f4f6..fd550efc9f 100644
--- a/content/zh/docs/reference/glossary/istio.md
+++ b/content/zh-cn/docs/reference/glossary/istio.md
@@ -2,9 +2,9 @@
 title: Istio
 id: istio
 date: 2018-04-12
-full_link: https://istio.io/docs/concepts/what-is-istio/
+full_link: https://istio.io/zh/docs/concepts/what-is-istio/
 short_description: >
-  Istio 是个开放平台（非 Kubernetes 特有），提供了一种统一的方式来集成微服务、管理流量、实施策略和汇总度量数据。
+  Istio 是一个（非 Kubernetes 特有的）开放平台，提供了一种统一的方式来集成微服务、管理流量、实施策略和汇总度量数据。
 aka: 
 tags:
 - networking
@@ -13,7 +13,6 @@ tags:
 ---
 
 <!--
----
 title: Istio
 id: istio
 date: 2018-04-12
@@ -26,14 +25,13 @@ tags:
 - networking
 - architecture
 - extension
----
 -->
 
 <!--
  An open platform (not Kubernetes-specific) that provides a uniform way to integrate microservices, manage traffic flow, enforce policies, and aggregate telemetry data.
 -->
 
-Istio 是个开放平台（非 Kubernetes 特有），提供了一种统一的方式来集成微服务、管理流量、实施策略和汇总度量数据。
+Istio 是一个（非 Kubernetes 特有的）开放平台，提供了一种统一的方式来集成微服务、管理流量、实施策略和汇总度量数据。
 
 <!--more--> 
 
diff --git a/content/zh/docs/reference/glossary/job.md b/content/zh-cn/docs/reference/glossary/job.md
similarity index 94%
rename from content/zh/docs/reference/glossary/job.md
rename to content/zh-cn/docs/reference/glossary/job.md
index aa557297be..220f811144 100644
--- a/content/zh/docs/reference/glossary/job.md
+++ b/content/zh-cn/docs/reference/glossary/job.md
@@ -2,7 +2,7 @@
 title: Job
 id: job
 date: 2018-04-12
-full_link: /zh/docs/concepts/workloads/controllers/job/
+full_link: /zh-cn/docs/concepts/workloads/controllers/job/
 short_description: >
   Job 是需要运行完成的确定性的或批量的任务。
 
diff --git a/content/zh/docs/reference/glossary/kops.md b/content/zh-cn/docs/reference/glossary/kops.md
similarity index 82%
rename from content/zh/docs/reference/glossary/kops.md
rename to content/zh-cn/docs/reference/glossary/kops.md
index d3241b763e..22146cf6eb 100644
--- a/content/zh/docs/reference/glossary/kops.md
+++ b/content/zh-cn/docs/reference/glossary/kops.md
@@ -37,13 +37,12 @@ kops 是一个命令行工具，可以帮助您创建、销毁、升级和维护
 <!--more--> 
 
 <!--
-{{< note >}}
 kops has general availability support only for AWS.
 Support for using kops with GCE and VMware vSphere are in alpha.
+-->	
+{{< note >}}
+注意：官方仅支持 AWS。对 GCE 和 VMware vSphere 的支持还处于 Alpha 阶段。
 {{< /note >}}
--->												   
-注意：官方仅支持 AWS，GCE 和 VMware vSphere 的支持还处于 alpha* 阶段。																
-			 
 
 <!--
 `kops` provisions your cluster with&#58;
@@ -56,11 +55,11 @@ Support for using kops with GCE and VMware vSphere are in alpha.
   * The ability to directly provision, or to generate Terraform manifests
 -->
 
-`kops` 为您的集群提供了：
+`kops` 为你的集群提供了：
 
   * 全自动化安装
   * 基于 DNS 的集群标识
-  * 自愈功能：所有组件都在自动伸缩组（Auto-Scaling Groups）中运行
+  * 自愈功能：所有组件都在自动扩缩组（Auto-Scaling Groups）中运行
   * 有限的操作系统支持 (推荐使用 Debian，支持 Ubuntu 16.04，试验性支持 CentOS & RHEL)
   * 高可用 (HA) 支持
   * 直接提供或者生成 Terraform 清单文件的能力
@@ -69,4 +68,5 @@ Support for using kops with GCE and VMware vSphere are in alpha.
 You can also build your own cluster using {{< glossary_tooltip term_id="kubeadm" >}} as a building block. `kops` builds on the kubeadm work.
 -->
 
-您也可以将自己的集群作为一个构造块，使用 {{< glossary_tooltip term_id="kubeadm" >}} 构造集群。`kops` 是建立在 kubeadm 之上的。
+你也可以将自己的集群作为一个构造块，使用 {{< glossary_tooltip term_id="kubeadm" >}} 构造集群。
+`kops` 是建立在 kubeadm 之上的。
diff --git a/content/zh-cn/docs/reference/glossary/kube-apiserver.md b/content/zh-cn/docs/reference/glossary/kube-apiserver.md
new file mode 100644
index 0000000000..7e93998ecd
--- /dev/null
+++ b/content/zh-cn/docs/reference/glossary/kube-apiserver.md
@@ -0,0 +1,48 @@
+---
+title: API 服务器
+id: kube-apiserver
+date: 2018-04-12
+full_link: /zh-cn/docs/concepts/overview/components/#kube-apiserver
+short_description: >
+  提供 Kubernetes API 服务的控制面组件。
+
+aka:
+- kube-apiserver
+tags:
+- architecture
+- fundamental
+---
+<!--
+title: API server
+id: kube-apiserver
+date: 2018-04-12
+full_link: /docs/concepts/overview/components/#kube-apiserver
+short_description: >
+  Control plane component that serves the Kubernetes API.
+
+aka:
+- kube-apiserver
+tags:
+- architecture
+- fundamental
+-->
+
+<!--
+ The API server is a component of the Kubernetes
+{{< glossary_tooltip text="control plane" term_id="control-plane" >}} that exposes the Kubernetes API.
+The API server is the front end for the Kubernetes control plane.
+-->
+API 服务器是 Kubernetes {{< glossary_tooltip text="控制平面" term_id="control-plane" >}}的组件，
+该组件负责公开了 Kubernetes API，负责处理接受请求的工作。
+API 服务器是 Kubernetes 控制平面的前端。
+
+<!--more-->
+
+<!--
+The main implementation of a Kubernetes API server is [kube-apiserver](/docs/reference/generated/kube-apiserver/).
+kube-apiserver is designed to scale horizontally&mdash;that is, it scales by deploying more instances.
+You can run several instances of kube-apiserver and balance traffic between those instances.
+-->
+Kubernetes API 服务器的主要实现是 [kube-apiserver](/zh-cn/docs/reference/command-line-tools-reference/kube-apiserver/)。
+`kube-apiserver` 设计上考虑了水平扩缩，也就是说，它可通过部署多个实例来进行扩缩。
+你可以运行 `kube-apiserver` 的多个实例，并在这些实例之间平衡流量。
diff --git a/content/zh-cn/docs/reference/glossary/kube-controller-manager.md b/content/zh-cn/docs/reference/glossary/kube-controller-manager.md
new file mode 100644
index 0000000000..132a05936b
--- /dev/null
+++ b/content/zh-cn/docs/reference/glossary/kube-controller-manager.md
@@ -0,0 +1,46 @@
+---
+title: kube-controller-manager
+id: kube-controller-manager
+date: 2018-04-12
+full_link: /zh-cn/docs/reference/command-line-tools-reference/kube-controller-manager/
+short_description: >
+  主节点上运行控制器的组件。
+
+aka: 
+tags:
+- architecture
+- fundamental
+---
+<!--
+title: kube-controller-manager
+id: kube-controller-manager
+date: 2018-04-12
+full_link: /docs/reference/command-line-tools-reference/kube-controller-manager/
+short_description: >
+  Component on the master that runs controllers.
+
+aka: 
+tags:
+- architecture
+- fundamental
+-->
+
+<!--
+ Control plane component that runs
+ {{< glossary_tooltip text="controller" term_id="controller" >}} processes.
+-->
+[kube-controller-manager](/zh-cn/docs/reference/command-line-tools-reference/kube-controller-manager/)
+是{{< glossary_tooltip text="控制平面" term_id="control-plane" >}}的组件，
+负责运行{{< glossary_tooltip text="控制器" term_id="controller" >}}进程。
+
+<!--more-->
+
+<!--
+Logically, each {{< glossary_tooltip text="controller" term_id="controller" >}}
+is a separate process, but to reduce complexity,
+they are all compiled into a single binary and run in a single process.
+--> 
+从逻辑上讲，
+每个{{< glossary_tooltip text="控制器" term_id="controller" >}}都是一个单独的进程，
+但是为了降低复杂性，它们都被编译到同一个可执行文件，并在同一个进程中运行。
+
diff --git a/content/zh-cn/docs/reference/glossary/kube-proxy.md b/content/zh-cn/docs/reference/glossary/kube-proxy.md
new file mode 100644
index 0000000000..ef7b661715
--- /dev/null
+++ b/content/zh-cn/docs/reference/glossary/kube-proxy.md
@@ -0,0 +1,53 @@
+---
+title: kube-proxy
+id: kube-proxy
+date: 2018-04-12
+full_link: /zh-cn/docs/reference/command-line-tools-reference/kube-proxy/
+short_description: >
+  `kube-proxy` 是集群中每个节点上运行的网络代理。
+
+aka:
+tags:
+- fundamental
+- networking
+---
+<!-- ---
+title: kube-proxy
+id: kube-proxy
+date: 2018-04-12
+full_link: /zh-cn/docs/reference/command-line-tools-reference/kube-proxy/
+short_description: >
+  `kube-proxy` is a network proxy that runs on each node in the cluster.
+
+aka:
+tags:
+- fundamental
+- networking
+--- -->
+ <!--
+ kube-proxy is a network proxy that runs on each
+ {{< glossary_tooltip text="node" term_id="node" >}} in your cluster,
+ implementing part of the Kubernetes
+ {{< glossary_tooltip term_id="service">}} concept.
+ -->
+[kube-proxy](/zh-cn/docs/reference/command-line-tools-reference/kube-proxy/)
+是集群中每个{{< glossary_tooltip text="节点（node）" term_id="node" >}}所上运行的网络代理，
+实现 Kubernetes {{< glossary_tooltip term_id="service">}} 概念的一部分。
+
+<!--more-->
+
+<!-- 
+[kube-proxy](/docs/reference/command-line-tools-reference/kube-proxy/)
+maintains network rules on nodes. These network rules allow network
+communication to your Pods from network sessions inside or outside of
+your cluster.
+-->
+kube-proxy 维护节点上的一些网络规则，
+这些网络规则会允许从集群内部或外部的网络会话与 Pod 进行网络通信。
+
+<!-- 
+kube-proxy uses the operating system packet filtering layer if there is one
+and it's available. Otherwise, kube-proxy forwards the traffic itself. 
+-->
+如果操作系统提供了可用的数据包过滤层，则 kube-proxy 会通过它来实现网络规则。
+否则，kube-proxy 仅做流量转发。
diff --git a/content/zh/docs/reference/glossary/kube-scheduler.md b/content/zh-cn/docs/reference/glossary/kube-scheduler.md
similarity index 60%
rename from content/zh/docs/reference/glossary/kube-scheduler.md
rename to content/zh-cn/docs/reference/glossary/kube-scheduler.md
index e855034fa2..f9c6ecdaf8 100644
--- a/content/zh/docs/reference/glossary/kube-scheduler.md
+++ b/content/zh-cn/docs/reference/glossary/kube-scheduler.md
@@ -2,7 +2,7 @@
 title: kube-scheduler
 id: kube-scheduler
 date: 2018-04-12
-full_link: /docs/reference/generated/kube-scheduler/
+full_link: /zh-cn/docs/reference/command-line-tools-reference/kube-scheduler/
 short_description: >
   控制平面组件，负责监视新创建的、未指定运行节点的 Pod，选择节点让 Pod 在上面运行。
 
@@ -17,7 +17,7 @@ tags:
 title: kube-scheduler
 id: kube-scheduler
 date: 2018-04-12
-full_link: /docs/reference/generated/kube-scheduler/
+full_link: /docs/reference/command-line-tools-reference/kube-scheduler/
 short_description: >
   Control plane component that watches for newly created pods with no assigned node, and selects a node for them to run on.
 
@@ -33,7 +33,9 @@ Control plane component that watches for newly created
 {{< glossary_tooltip term_id="node" text="node">}}, and selects a node for them
 to run on.-->
 
-  控制平面组件，负责监视新创建的、未指定运行{{< glossary_tooltip term_id="node" text="节点（node）">}}的 {{< glossary_tooltip term_id="pod" text="Pods" >}}，选择节点让 Pod 在上面运行。
+  `kube-scheduler` 是{{< glossary_tooltip text="控制平面" term_id="control-plane" >}}的组件，
+  负责监视新创建的、未指定运行{{< glossary_tooltip term_id="node" text="节点（node）">}}的 {{< glossary_tooltip term_id="pod" text="Pods" >}}，
+  并选择节点来让 Pod 在上面运行。
 
 <!--more--> 
 
@@ -41,4 +43,5 @@ to run on.-->
 Factors taken into account for scheduling decisions include individual and collective resource requirements,  hardware/software/policy constraints, affinity and anti-affinity specifications, data locality, inter-workload interference and deadlines.
 -->
 
-调度决策考虑的因素包括单个 Pod 和 Pod 集合的资源需求、硬件/软件/策略约束、亲和性和反亲和性规范、数据位置、工作负载间的干扰和最后时限。
+调度决策考虑的因素包括单个 Pod 及 Pods 集合的资源需求、软硬件及策略约束、
+亲和性及反亲和性规范、数据位置、工作负载间的干扰及最后时限。
diff --git a/content/zh/docs/reference/glossary/kubeadm.md b/content/zh-cn/docs/reference/glossary/kubeadm.md
similarity index 92%
rename from content/zh/docs/reference/glossary/kubeadm.md
rename to content/zh-cn/docs/reference/glossary/kubeadm.md
index f565376100..106edda93c 100644
--- a/content/zh/docs/reference/glossary/kubeadm.md
+++ b/content/zh-cn/docs/reference/glossary/kubeadm.md
@@ -2,7 +2,7 @@
 title: Kubeadm
 id: kubeadm
 date: 2018-04-12
-full_link: /zh/docs/setup/production-environment/tools/kubeadm/
+full_link: /zh-cn/docs/setup/production-environment/tools/kubeadm/
 short_description: >
   用来快速安装 Kubernetes 并搭建安全稳定的集群的工具。
 
diff --git a/content/zh-cn/docs/reference/glossary/kubectl.md b/content/zh-cn/docs/reference/glossary/kubectl.md
new file mode 100644
index 0000000000..c32cd0812d
--- /dev/null
+++ b/content/zh-cn/docs/reference/glossary/kubectl.md
@@ -0,0 +1,47 @@
+---
+title: Kubectl
+id: kubectl
+date: 2018-04-12
+full_link: /docs/user-guide/kubectl-overview/
+short_description: >
+  kubectl 是用来和 Kubernetes 集群进行通信的命令行工具。
+
+aka: 
+- kubectl
+tags:
+- tool
+- fundamental
+---
+
+<!--
+---
+title: Kubectl
+id: kubectl
+date: 2018-04-12
+full_link: /docs/user-guide/kubectl-overview/
+short_description: >
+  A command line tool for communicating with a Kubernetes cluster.
+
+aka: 
+- kubectl
+tags:
+- tool
+- fundamental
+---
+-->
+
+<!--
+Command line tool for communicating with a Kubernetes cluster's
+{{< glossary_tooltip text="control plane" term_id="control-plane" >}},
+using the Kubernetes API.
+-->
+
+kubectl 是使用 Kubernetes API 与 Kubernetes 
+集群的{{<glossary_tooltip text="控制面" term_id="control-plane" >}}进行通信的命令行工具。
+<!--more--> 
+
+<!--
+You can use `kubectl` to create, inspect, update, and delete Kubernetes objects.
+-->
+
+你可以使用 `kubectl` 创建、检视、更新和删除 Kubernetes 对象。
diff --git a/content/zh/docs/reference/glossary/kubelet.md b/content/zh-cn/docs/reference/glossary/kubelet.md
similarity index 75%
rename from content/zh/docs/reference/glossary/kubelet.md
rename to content/zh-cn/docs/reference/glossary/kubelet.md
index a00971e224..41b4dea14b 100644
--- a/content/zh/docs/reference/glossary/kubelet.md
+++ b/content/zh-cn/docs/reference/glossary/kubelet.md
@@ -2,14 +2,13 @@
 title: Kubelet
 id: kubelet
 date: 2018-04-12
-full_link: /docs/reference/generated/kubelet
+full_link: /zh-cn/docs/reference/generated/kubelet
 short_description: >
   一个在集群中每个节点上运行的代理。它保证容器都运行在 Pod 中。
 
-aka: 
+aka:
 tags:
 - fundamental
-- core-object
 ---
 <!--
 title: Kubelet
@@ -19,25 +18,24 @@ full_link: /docs/reference/generated/kubelet
 short_description: >
   An agent that runs on each node in the cluster. It makes sure that containers are running in a pod.
 
-aka: 
+aka:
 tags:
 - fundamental
-- core-object
 -->
 
 <!--
  An agent that runs on each {{< glossary_tooltip text="node" term_id="node" >}} in the cluster. It makes sure that {{< glossary_tooltip text="containers" term_id="container" >}} are running in a {{< glossary_tooltip text="Pod" term_id="pod" >}}.
 -->
-一个在集群中每个{{< glossary_tooltip text="节点（node）" term_id="node" >}}上运行的代理。
-它保证{{< glossary_tooltip text="容器（containers）" term_id="container" >}}都
-运行在 {{< glossary_tooltip text="Pod" term_id="pod" >}} 中。
+`kubelet` 会在集群中每个{{< glossary_tooltip text="节点（node）" term_id="node" >}}上运行。
+它保证{{< glossary_tooltip text="容器（containers）" term_id="container" >}}都运行在
+{{< glossary_tooltip text="Pod" term_id="pod" >}} 中。
 
-<!--more--> 
+<!--more-->
 
 <!--
 The kubelet takes a set of PodSpecs that are provided through various mechanisms and ensures that the containers described in those PodSpecs are running and healthy. The kubelet doesn't manage containers which were not created by Kubernetes.
 -->
-kubelet 接收一组通过各类机制提供给它的 PodSpecs，确保这些 PodSpecs
-中描述的容器处于运行状态且健康。
+kubelet 接收一组通过各类机制提供给它的 PodSpecs，
+确保这些 PodSpecs 中描述的容器处于运行状态且健康。
 kubelet 不会管理不是由 Kubernetes 创建的容器。
 
diff --git a/content/zh/docs/reference/glossary/kubernetes-api.md b/content/zh-cn/docs/reference/glossary/kubernetes-api.md
similarity index 96%
rename from content/zh/docs/reference/glossary/kubernetes-api.md
rename to content/zh-cn/docs/reference/glossary/kubernetes-api.md
index 060ddf93cd..0a6c096a42 100644
--- a/content/zh/docs/reference/glossary/kubernetes-api.md
+++ b/content/zh-cn/docs/reference/glossary/kubernetes-api.md
@@ -2,7 +2,7 @@
 title: Kubernetes API
 id: kubernetes-api
 date: 2018-04-12
-full_link: /zh/docs/concepts/overview/kubernetes-api/
+full_link: /zh-cn/docs/concepts/overview/kubernetes-api/
 short_description: >
   Kubernetes API 是通过 RESTful 接口提供 Kubernetes 功能服务并负责集群状态存储的应用程序。
 
diff --git a/content/zh/docs/reference/glossary/label.md b/content/zh-cn/docs/reference/glossary/label.md
similarity index 93%
rename from content/zh/docs/reference/glossary/label.md
rename to content/zh-cn/docs/reference/glossary/label.md
index f2c661cc44..e0654faa26 100644
--- a/content/zh/docs/reference/glossary/label.md
+++ b/content/zh-cn/docs/reference/glossary/label.md
@@ -2,7 +2,7 @@
 title: 标签（Label）
 id: label
 date: 2018-04-12
-full_link: /zh/docs/concepts/overview/working-with-objects/labels/
+full_link: /zh-cn/docs/concepts/overview/working-with-objects/labels/
 short_description: >
   用来为对象设置可标识的属性标记；这些标记对用户而言是有意义且重要的。
 
diff --git a/content/zh/docs/reference/glossary/limitrange.md b/content/zh-cn/docs/reference/glossary/limitrange.md
similarity index 100%
rename from content/zh/docs/reference/glossary/limitrange.md
rename to content/zh-cn/docs/reference/glossary/limitrange.md
diff --git a/content/zh/docs/reference/glossary/logging.md b/content/zh-cn/docs/reference/glossary/logging.md
similarity index 81%
rename from content/zh/docs/reference/glossary/logging.md
rename to content/zh-cn/docs/reference/glossary/logging.md
index 8a88fe527e..17e490de27 100644
--- a/content/zh/docs/reference/glossary/logging.md
+++ b/content/zh-cn/docs/reference/glossary/logging.md
@@ -2,7 +2,7 @@
 title: 日志（Logging）
 id: logging
 date: 2019-04-04
-full_link: /zh/docs/concepts/cluster-administration/logging/
+full_link: /zh-cn/docs/concepts/cluster-administration/logging/
 short_description: >
   日志是集群或应用程序记录的事件列表。
 
@@ -18,7 +18,7 @@ tags:
 title: Logging
 id: logging
 date: 2019-04-04
-full_link: /zh/docs/concepts/cluster-administration/logging/
+full_link: /zh-cn/docs/concepts/cluster-administration/logging/
 short_description: >
   Logs are the list of events that are logged by cluster or application.
 
@@ -36,4 +36,4 @@ tags:
 Application and systems logs can help you understand what is happening inside your cluster. The logs are particularly useful for debugging problems and monitoring cluster activity. 
 -->
 
-应用程序和系统日志可以帮助您了解集群内部发生的情况。日志对于调试问题和监视集群活动非常有用。
\ No newline at end of file
+应用程序和系统日志可以帮助你了解集群内部发生的情况。日志对于调试问题和监视集群活动非常有用。
\ No newline at end of file
diff --git a/content/zh/docs/reference/glossary/managed-service.md b/content/zh-cn/docs/reference/glossary/managed-service.md
similarity index 64%
rename from content/zh/docs/reference/glossary/managed-service.md
rename to content/zh-cn/docs/reference/glossary/managed-service.md
index 567736f091..9863824a25 100644
--- a/content/zh/docs/reference/glossary/managed-service.md
+++ b/content/zh-cn/docs/reference/glossary/managed-service.md
@@ -34,13 +34,6 @@ tags:
 <!--
 Some examples of Managed Services are AWS EC2, Azure SQL Database, and
 GCP Pub/Sub, but they can be any software offering that can be used by an application.
-[Service Catalog](/docs/concepts/extend-kubernetes/service-catalog/) provides a way to
-list, provision, and bind with Managed Services offered by
-{{< glossary_tooltip text="Service Brokers" term_id="service-broker" >}}.
 -->
 托管服务的一些例子有 AWS EC2、Azure SQL 数据库和 GCP Pub/Sub 等，
 不过它们也可以是可以被某应用使用的任何软件交付件。
-[服务目录](/zh/docs/concepts/extend-kubernetes/service-catalog/)
-提供了一种方法用来列举、制备和绑定到
-{{< glossary_tooltip text="服务代理商（Service Brokers）" term_id="service-broker" >}}
-所提供的托管服务。
diff --git a/content/zh/docs/reference/glossary/manifest.md b/content/zh-cn/docs/reference/glossary/manifest.md
similarity index 100%
rename from content/zh/docs/reference/glossary/manifest.md
rename to content/zh-cn/docs/reference/glossary/manifest.md
diff --git a/content/zh/docs/reference/glossary/master.md b/content/zh-cn/docs/reference/glossary/master.md
similarity index 100%
rename from content/zh/docs/reference/glossary/master.md
rename to content/zh-cn/docs/reference/glossary/master.md
diff --git a/content/zh/docs/reference/glossary/member.md b/content/zh-cn/docs/reference/glossary/member.md
similarity index 100%
rename from content/zh/docs/reference/glossary/member.md
rename to content/zh-cn/docs/reference/glossary/member.md
diff --git a/content/zh/docs/reference/glossary/minikube.md b/content/zh-cn/docs/reference/glossary/minikube.md
similarity index 91%
rename from content/zh/docs/reference/glossary/minikube.md
rename to content/zh-cn/docs/reference/glossary/minikube.md
index 4d834cd807..b688f96822 100644
--- a/content/zh/docs/reference/glossary/minikube.md
+++ b/content/zh-cn/docs/reference/glossary/minikube.md
@@ -44,4 +44,4 @@ You can use Minikube to
 
 Minikube 在用户计算机上的一个虚拟机内运行单节点 Kubernetes 集群。
 你可以使用 Minikube 
-[在学习环境中尝试 Kubernetes](/zh/docs/setup/learning-environment/).
+[在学习环境中尝试 Kubernetes](/zh-cn/docs/setup/learning-environment/).
diff --git a/content/zh/docs/reference/glossary/mirror-pod.md b/content/zh-cn/docs/reference/glossary/mirror-pod.md
similarity index 100%
rename from content/zh/docs/reference/glossary/mirror-pod.md
rename to content/zh-cn/docs/reference/glossary/mirror-pod.md
diff --git a/content/zh/docs/reference/glossary/name.md b/content/zh-cn/docs/reference/glossary/name.md
similarity index 93%
rename from content/zh/docs/reference/glossary/name.md
rename to content/zh-cn/docs/reference/glossary/name.md
index 6c6dd2b15c..984b85f1f7 100644
--- a/content/zh/docs/reference/glossary/name.md
+++ b/content/zh-cn/docs/reference/glossary/name.md
@@ -2,7 +2,7 @@
 title: 名称（Name）
 id: name
 date: 2018-04-12
-full_link: /zh/docs/concepts/overview/working-with-objects/names/
+full_link: /zh-cn/docs/concepts/overview/working-with-objects/names/
 short_description: >
   客户端提供的字符串，用来指代资源 URL 中的对象，如 `/api/v1/pods/some-name`。
 
diff --git a/content/zh-cn/docs/reference/glossary/namespace.md b/content/zh-cn/docs/reference/glossary/namespace.md
new file mode 100644
index 0000000000..b2033d2a03
--- /dev/null
+++ b/content/zh-cn/docs/reference/glossary/namespace.md
@@ -0,0 +1,45 @@
+---
+title: 名字空间（Namespace）
+id: namespace
+date: 2018-04-12
+full_link: /zh-cn/docs/concepts/overview/working-with-objects/namespaces/
+short_description: >
+  名字空间是 Kubernetes 用来支持隔离单个集群中的资源组的一种抽象。
+
+aka: 
+tags:
+- fundamental
+---
+
+<!--
+---
+title: Namespace
+id: namespace
+date: 2018-04-12
+full_link: /docs/concepts/overview/working-with-objects/namespaces/
+short_description: >
+  An abstraction used by Kubernetes to support isolation of groups of resources within a single cluster.
+
+aka: 
+tags:
+- fundamental
+---
+-->
+
+<!--
+ An abstraction used by Kubernetes to support isolation of groups of resources within a single {{< glossary_tooltip text="cluster" term_id="cluster" >}}.
+-->
+
+名字空间是 Kubernetes 用来支持隔离单个 {{< glossary_tooltip text="集群" term_id="cluster" >}}中的资源组的一种抽象。
+
+<!--more--> 
+
+<!--
+Namespaces are used to organize objects in a cluster and provide a way to divide cluster resources. Names of resources need to be unique within a namespace, but not across namespaces. Namespace-based scoping is applicable only for namespaced objects _(e.g. Deployments, Services, etc)_ and not for cluster-wide objects _(e.g. StorageClass, Nodes, PersistentVolumes, etc)_.
+-->
+
+名字空间用来组织集群中对象，并为集群资源划分提供了一种方法。
+同一名字空间内的资源名称必须唯一，但跨名字空间时不作要求。
+基于名字空间的作用域限定仅适用于名字空间作用域的对象（例如 Deployment、Services 等），
+而不适用于集群作用域的对象（例如 StorageClass、Node、PersistentVolume 等）。
+在一些文档里名字空间也称为命名空间。
diff --git a/content/zh/docs/reference/glossary/network-policy.md b/content/zh-cn/docs/reference/glossary/network-policy.md
similarity index 72%
rename from content/zh/docs/reference/glossary/network-policy.md
rename to content/zh-cn/docs/reference/glossary/network-policy.md
index 10cc5f6b64..69c8f50319 100644
--- a/content/zh/docs/reference/glossary/network-policy.md
+++ b/content/zh-cn/docs/reference/glossary/network-policy.md
@@ -2,7 +2,7 @@
 title: 网络策略
 id: network-policy
 date: 2018-04-12
-full_link: /zh/docs/concepts/services-networking/network-policies/
+full_link: /zh-cn/docs/concepts/services-networking/network-policies/
 short_description: >
   网络策略是一种规范，规定了允许 Pod 组之间、Pod 与其他网络端点之间以怎样的方式进行通信。
 
@@ -41,4 +41,7 @@ tags:
 Network Policies help you declaratively configure which Pods are allowed to connect to each other, which namespaces are allowed to communicate, and more specifically which port numbers to enforce each policy on. `NetworkPolicy` resources use labels to select Pods and define rules which specify what traffic is allowed to the selected Pods. Network Policies are implemented by a supported network plugin provided by a network provider. Be aware that creating a network resource without a controller to implement it will have no effect.
 -->
 
-网络策略帮助您声明式地配置允许哪些 Pod 之间接、哪些命名空间之间允许进行通信，并具体配置了哪些端口号来执行各个策略。`NetworkPolicy` 资源使用标签来选择 Pod，并定义了所选 Pod 可以接受什么样的流量。网络策略由网络提供商提供的并被 Kubernetes 支持的网络插件实现。请注意，当没有控制器实现网络资源时，创建网络资源将不会生效。
+网络策略帮助你声明式地配置允许哪些 Pod 之间、哪些命名空间之间允许进行通信，
+并具体配置了哪些端口号来执行各个策略。`NetworkPolicy` 资源使用标签来选择 Pod，
+并定义了所选 Pod 可以接受什么样的流量。网络策略由网络提供商提供的并被 Kubernetes 支持的网络插件实现。
+请注意，当没有控制器实现网络资源时，创建网络资源将不会生效。
diff --git a/content/zh/docs/reference/glossary/node-pressure-eviction.md b/content/zh-cn/docs/reference/glossary/node-pressure-eviction.md
similarity index 86%
rename from content/zh/docs/reference/glossary/node-pressure-eviction.md
rename to content/zh-cn/docs/reference/glossary/node-pressure-eviction.md
index d1336d57d2..ad2108e9d8 100644
--- a/content/zh/docs/reference/glossary/node-pressure-eviction.md
+++ b/content/zh-cn/docs/reference/glossary/node-pressure-eviction.md
@@ -2,7 +2,7 @@
 title: 节点压力驱逐
 id: node-pressure-eviction
 date: 2021-05-13
-full_link: /zh/docs/concepts/scheduling-eviction/node-pressure-eviction/
+full_link: /zh-cn/docs/concepts/scheduling-eviction/node-pressure-eviction/
 short_description: >
   节点压力驱逐是 kubelet 主动使 Pod 失败以回收节点上的资源的过程。
 aka:
@@ -45,6 +45,6 @@ kubelet 监控集群节点上的 CPU、内存、磁盘空间和文件系统 inod
 kubelet 可以主动使节点上的一个或多个 Pod 失效，以回收资源并防止饥饿。
 
 <!-- 
-Node-pressure eviction is not the same as [API-initiated eviction](/docs/concepts/scheduling-eviction/api-eviction/).
+Node-pressure eviction is not the same as [API-initiated eviction](/docs/reference/generated/kubernetes-api/v1.23/).
 -->
-节点压力驱逐不用于 [API 发起的驱逐](/zh/docs/concepts/scheduling-eviction/api-eviction/)。
+节点压力驱逐不用于 [API 发起的驱逐](/docs/reference/generated/kubernetes-api/v1.23/)。
diff --git a/content/zh/docs/reference/glossary/node.md b/content/zh-cn/docs/reference/glossary/node.md
similarity index 83%
rename from content/zh/docs/reference/glossary/node.md
rename to content/zh-cn/docs/reference/glossary/node.md
index d9ac8a9deb..5e6f73663f 100644
--- a/content/zh/docs/reference/glossary/node.md
+++ b/content/zh-cn/docs/reference/glossary/node.md
@@ -2,7 +2,7 @@
 title: 节点（Node）
 id: node
 date: 2018-04-12
-full_link: /zh/docs/concepts/architecture/nodes/
+full_link: /zh-cn/docs/concepts/architecture/nodes/
 short_description: >
   Kubernetes 中的工作机器称作节点。
 
@@ -15,7 +15,7 @@ tags:
 title: Node
 id: node
 date: 2018-04-12
-full_link: /zh/docs/concepts/architecture/nodes/
+full_link: /zh-cn/docs/concepts/architecture/nodes/
 short_description: >
   A node is a worker machine in Kubernetes.
 
@@ -38,13 +38,11 @@ In early Kubernetes versions, Nodes were called "Minions".
 -->
 工作机器可以是虚拟机也可以是物理机，取决于集群的配置。
 其上部署了运行 {{< glossary_tooltip text="Pods" term_id="pod" >}}
-所必需的本地守护进程或服务，
-并由主控组件来管理。
-节点上的的守护进程包括 {{< glossary_tooltip text="kubelet" term_id="kubelet" >}}、
+所必需的本地守护进程或服务，并由主控组件来管理。
+节点上的守护进程包括 {{< glossary_tooltip text="kubelet" term_id="kubelet" >}}、
 {{< glossary_tooltip text="kube-proxy" term_id="kube-proxy" >}}
 以及一个 {{< glossary_tooltip term_id="docker" >}} 这种
 实现了 {{< glossary_tooltip text="CRI" term_id="cri" >}}
 的容器运行时。
 
 在早期的 Kubernetes 版本中，节点也称作 "Minions"。
-
diff --git a/content/zh/docs/reference/glossary/object.md b/content/zh-cn/docs/reference/glossary/object.md
similarity index 92%
rename from content/zh/docs/reference/glossary/object.md
rename to content/zh-cn/docs/reference/glossary/object.md
index 99576b5665..0a5a07d10a 100644
--- a/content/zh/docs/reference/glossary/object.md
+++ b/content/zh-cn/docs/reference/glossary/object.md
@@ -2,7 +2,7 @@
 title: 对象（Object）
 id: object
 date: 2020-10-12
-full_link: /zh/docs/concepts/overview/working-with-objects/kubernetes-objects/#kubernetes-objects
+full_link: /zh-cn/docs/concepts/overview/working-with-objects/kubernetes-objects/#kubernetes-objects
 short_description: >
    Kubernetes 系统中的实体, 代表了集群的部分状态。
 aka: 
diff --git a/content/zh/docs/reference/glossary/operator-pattern.md b/content/zh-cn/docs/reference/glossary/operator-pattern.md
similarity index 90%
rename from content/zh/docs/reference/glossary/operator-pattern.md
rename to content/zh-cn/docs/reference/glossary/operator-pattern.md
index c6da670257..21751ab4ab 100644
--- a/content/zh/docs/reference/glossary/operator-pattern.md
+++ b/content/zh-cn/docs/reference/glossary/operator-pattern.md
@@ -2,7 +2,7 @@
 title: Operator 模式
 id: operator-pattern
 date: 2019-05-21
-full_link: /zh/docs/concepts/extend-kubernetes/operator/
+full_link: /zh-cn/docs/concepts/extend-kubernetes/operator/
 short_description: >
   一种用于管理自定义资源的专用控制器
 
@@ -28,7 +28,7 @@ The [operator pattern](/docs/concepts/extend-kubernetes/operator/) is a system
 design that links a {{< glossary_tooltip term_id="controller" >}} to one or more custom
 resources.
 -->
-[operator 模式](/zh/docs/concepts/extend-kubernetes/operator/) 是一种系统设计, 
+[operator 模式](/zh-cn/docs/concepts/extend-kubernetes/operator/) 是一种系统设计, 
 将 {{< glossary_tooltip term_id="controller" >}} 关联到一个或多个自定义资源。
 <!--more-->
 
diff --git a/content/zh/docs/reference/glossary/persistent-volume-claim.md b/content/zh-cn/docs/reference/glossary/persistent-volume-claim.md
similarity index 96%
rename from content/zh/docs/reference/glossary/persistent-volume-claim.md
rename to content/zh-cn/docs/reference/glossary/persistent-volume-claim.md
index f5ab57a3e8..4eb2e49e2b 100644
--- a/content/zh/docs/reference/glossary/persistent-volume-claim.md
+++ b/content/zh-cn/docs/reference/glossary/persistent-volume-claim.md
@@ -2,7 +2,7 @@
 title: 持久卷申领（Persistent Volume Claim）
 id: persistent-volume-claim
 date: 2018-04-12
-full_link: /zh/docs/concepts/storage/persistent-volumes/
+full_link: /zh-cn/docs/concepts/storage/persistent-volumes/
 short_description: >
   声明在持久卷中定义的存储资源，以便可以将其挂载为容器中的卷。
 
diff --git a/content/zh/docs/reference/glossary/persistent-volume.md b/content/zh-cn/docs/reference/glossary/persistent-volume.md
similarity index 96%
rename from content/zh/docs/reference/glossary/persistent-volume.md
rename to content/zh-cn/docs/reference/glossary/persistent-volume.md
index 671e3a8bf3..8bcd24d6a8 100644
--- a/content/zh/docs/reference/glossary/persistent-volume.md
+++ b/content/zh-cn/docs/reference/glossary/persistent-volume.md
@@ -2,7 +2,7 @@
 title: 持久卷（Persistent Volume）
 id: persistent-volume
 date: 2018-04-12
-full_link: /zh/docs/concepts/storage/persistent-volumes/
+full_link: /zh-cn/docs/concepts/storage/persistent-volumes/
 short_description: >
   持久卷是代表集群中一块存储空间的 API 对象。 它是通用的、可插拔的、并且不受单个 Pod 生命周期约束的持久化资源。
 
diff --git a/content/zh/docs/reference/glossary/platform-developer.md b/content/zh-cn/docs/reference/glossary/platform-developer.md
similarity index 86%
rename from content/zh/docs/reference/glossary/platform-developer.md
rename to content/zh-cn/docs/reference/glossary/platform-developer.md
index 41e8b99995..a03cf67d81 100644
--- a/content/zh/docs/reference/glossary/platform-developer.md
+++ b/content/zh-cn/docs/reference/glossary/platform-developer.md
@@ -41,8 +41,8 @@ develop extensions which are contributed to the Kubernetes community.
 Others develop closed-source commercial or site-specific extensions.
 -->
 
-平台开发人员可以使用[定制资源](/zh/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
-或[使用汇聚层扩展 Kubernetes API](/zh/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)
+平台开发人员可以使用[定制资源](/zh-cn/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
+或[使用汇聚层扩展 Kubernetes API](/zh-cn/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)
 来为其 Kubernetes 实例增加功能，特别是为其应用程序添加功能。
 一些平台开发人员也是 kubernetes {{< glossary_tooltip text="贡献者" term_id="contributor" >}}，
 他们会开发贡献给 Kubernetes 社区的扩展。
diff --git a/content/zh/docs/reference/glossary/pod-disruption-budget.md b/content/zh-cn/docs/reference/glossary/pod-disruption-budget.md
similarity index 53%
rename from content/zh/docs/reference/glossary/pod-disruption-budget.md
rename to content/zh-cn/docs/reference/glossary/pod-disruption-budget.md
index a900db749d..32077d48cd 100644
--- a/content/zh/docs/reference/glossary/pod-disruption-budget.md
+++ b/content/zh-cn/docs/reference/glossary/pod-disruption-budget.md
@@ -1,7 +1,7 @@
 ---
 id: pod-disruption-budget
 title: Pod Disruption Budget
-full-link: /zh/docs/concepts/workloads/pods/disruptions/
+full-link: /zh-cn/docs/concepts/workloads/pods/disruptions/
 date: 2019-02-12
 short_description: >
  Pod Disruption Budget 是这样一种对象：它保证在主动中断（ voluntary disruptions）时，多实例应用的 {{< glossary_tooltip text="Pod" term_id="pod" >}} 不会少于一定的数量。
@@ -35,6 +35,15 @@ tags:
 -->
 
 <!--
- A [Pod Disruption Budget](/docs/concepts/workloads/pods/disruptions/) allows an application owner to create an object for a replicated application, that ensures a certain number or percentage of Pods with an assigned label will not be voluntarily evicted at any point in time. PDBs cannot prevent an involuntary disruption, but will count against the budget.
+ A [Pod Disruption Budget](/docs/concepts/workloads/pods/disruptions/) allows an 
+ application owner to create an object for a replicated application, that ensures
+ a certain number or percentage of Pods with an assigned label will not be voluntarily
+ evicted at any point in time.
+
+ Involuntary disruptions cannot be prevented by PDBs; however they 
+ do count against the budget.
 -->
- [Pod Disruption Budget](/zh/docs/concepts/workloads/pods/disruptions/) 使应用所有者能够为多实例应用创建一个对象，来确保一定数量的具有指定标签的 Pod 在任何时候都不会被主动驱逐。 PDB 无法防止非主动的中断，但是会计入预算（budget）。
\ No newline at end of file
+ [Pod 干扰预算（Pod Disruption Budget，PDB）](/zh-cn/docs/concepts/workloads/pods/disruptions/)
+ 使应用所有者能够为多实例应用创建一个对象，来确保一定数量的具有指定标签的 Pod 在任何时候都不会被主动驱逐。
+ <!--more--> 
+PDB 无法防止非主动的中断，但是会计入预算（budget）。
diff --git a/content/zh-cn/docs/reference/glossary/pod-disruption.md b/content/zh-cn/docs/reference/glossary/pod-disruption.md
new file mode 100644
index 0000000000..39b8ce8d83
--- /dev/null
+++ b/content/zh-cn/docs/reference/glossary/pod-disruption.md
@@ -0,0 +1,50 @@
+---
+id: pod-disruption
+title: Pod 干扰
+full_link: /docs/concepts/workloads/pods/disruptions/
+date: 2021-05-12
+short_description: >
+  自愿或非自愿地终止节点上的 pod 的过程.
+
+aka:
+related:
+ - pod
+ - container
+tags:
+ - operation
+---
+
+<!--
+---
+id: pod-disruption
+title: Pod Disruption
+full_link: /docs/concepts/workloads/pods/disruptions/
+date: 2021-05-12
+short_description: >
+  The process by which Pods on Nodes are terminated either voluntarily or involuntarily.
+
+aka:
+related:
+ - pod
+ - container
+tags:
+ - operation
+---
+-->
+
+<!--
+[Pod disruption](/docs/concepts/workloads/pods/disruptions/) is the process by which 
+Pods on Nodes are terminated either voluntarily or involuntarily. 
+-->
+
+[pod 干扰](/zh-cn/docs/concepts/workloads/pods/disruptions/) 是指节点上的 pod 被自愿或非自愿终止的过程。
+
+<!--more--> 
+
+<!--
+Voluntary disruptions are started intentionally by application owners or cluster 
+administrators. Involuntary disruptions are unintentional and can be triggered by 
+unavoidable issues like Nodes running out of resources, or by accidental deletions. 
+-->
+
+自愿干扰是由应用程序所有者或集群管理员有意启动的。非自愿干扰是无意的，可能由不可避免的问题触发，如节点耗尽资源或意外删除。
diff --git a/content/zh/docs/reference/glossary/pod-lifecycle.md b/content/zh-cn/docs/reference/glossary/pod-lifecycle.md
similarity index 83%
rename from content/zh/docs/reference/glossary/pod-lifecycle.md
rename to content/zh-cn/docs/reference/glossary/pod-lifecycle.md
index d83ca39ad0..d5f592c886 100644
--- a/content/zh/docs/reference/glossary/pod-lifecycle.md
+++ b/content/zh-cn/docs/reference/glossary/pod-lifecycle.md
@@ -2,7 +2,7 @@
 title: Pod 生命周期
 id: pod-lifecycle
 date: 2019-02-17
-full-link: /zh/docs/concepts/workloads/pods/pod-lifecycle/
+full-link: /zh-cn/docs/concepts/workloads/pods/pod-lifecycle/
 related:
  - pod
  - container
@@ -36,7 +36,7 @@ A high-level summary of what phase the Pod is in within its lifecyle.
 <!--
 The [Pod Lifecycle](/docs/concepts/workloads/pods/pod-lifecycle/) is defined by the states or phases of a Pod. There are five possible Pod phases: Pending, Running, Succeeded, Failed, and Unknown. A high-level description of the Pod state is summarized in the [PodStatus](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podstatus-v1-core) `phase` field.
 -->
-[Pod 生命周期](/zh/docs/concepts/workloads/pods/pod-lifecycle/) 是关于 Pod
-处于哪个阶段的概述。包含了下面5种可能的的阶段: Running、Pending、Succeeded、
+[Pod 生命周期](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/) 是关于 Pod
+处于哪个阶段的概述。包含了下面 5 种可能的阶段: Running、Pending、Succeeded、
 Failed、Unknown。关于 Pod 的阶段的更高级描述请查阅
 [PodStatus](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podstatus-v1-core) `phase` 字段。
diff --git a/content/zh/docs/reference/glossary/pod-priority.md b/content/zh-cn/docs/reference/glossary/pod-priority.md
similarity index 59%
rename from content/zh/docs/reference/glossary/pod-priority.md
rename to content/zh-cn/docs/reference/glossary/pod-priority.md
index 149ac33ee3..1ddc48e1a8 100644
--- a/content/zh/docs/reference/glossary/pod-priority.md
+++ b/content/zh-cn/docs/reference/glossary/pod-priority.md
@@ -2,7 +2,7 @@
 title: Pod 优先级（Pod Priority）
 id: pod-priority
 date: 2019-01-31
-full_link: /zh/docs/concepts/configuration/pod-priority-preemption/#pod-priority
+full_link: /zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption/#pod-priority
 short_description: >
   Pod 优先级表示一个 Pod 相对于其他 Pod 的重要性。
 
@@ -15,7 +15,7 @@ tags:
 title: Pod Priority
 id: pod-priority
 date: 2019-01-31
-full_link: /docs/concepts/configuration/pod-priority-preemption/#pod-priority
+full_link: /docs/concepts/scheduling-eviction/pod-priority-preemption/#pod-priority
 short_description: >
   Pod Priority indicates the importance of a Pod relative to other Pods.
 
@@ -32,9 +32,9 @@ tags:
 <!--more-->
 
 <!--
-[Pod Priority](/docs/concepts/configuration/pod-priority-preemption/#pod-priority) gives the ability to set scheduling priority of a Pod to be higher and lower than other Pods — an important feature for production clusters workload.
+[Pod Priority](/docs/concepts/scheduling-eviction/pod-priority-preemption/#pod-priority) gives the ability to set scheduling priority of a Pod to be higher and lower than other Pods — an important feature for production clusters workload.
 -->
-[Pod 优先级](/zh/docs/concepts/configuration/pod-priority-preemption/#pod-priority)
+[Pod 优先级](/zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption/#pod-priority)
 允许用户为 Pod 设置高于或低于其他 Pod 的优先级 -- 这对于生产集群
 工作负载而言是一个重要的特性。
 
diff --git a/content/zh/docs/reference/glossary/pod-security-policy.md b/content/zh-cn/docs/reference/glossary/pod-security-policy.md
similarity index 69%
rename from content/zh/docs/reference/glossary/pod-security-policy.md
rename to content/zh-cn/docs/reference/glossary/pod-security-policy.md
index 5c8475292f..db49173930 100644
--- a/content/zh/docs/reference/glossary/pod-security-policy.md
+++ b/content/zh-cn/docs/reference/glossary/pod-security-policy.md
@@ -2,7 +2,7 @@
 title: Pod 安全策略
 id: pod-security-policy
 date: 2018-04-12
-full_link: /zh/docs/concepts/policy/pod-security-policy/
+full_link: /zh-cn/docs/concepts/security/pod-security-policy/
 short_description: >
   为 Pod 的创建和更新操作启用细粒度的授权。
 
@@ -17,7 +17,7 @@ tags:
 title: Pod Security Policy
 id: pod-security-policy
 date: 2018-04-12
-full_link: /docs/concepts/policy/pod-security-policy/
+full_link: /docs/concepts/security/pod-security-policy/
 short_description: >
   Enables fine-grained authorization of pod creation and updates.
 
@@ -43,4 +43,9 @@ A cluster-level resource that controls security sensitive aspects of the Pod spe
 Pod 安全策略是集群级别的资源，它控制着 Pod 规约中的安全性敏感的内容。
 `PodSecurityPolicy`对象定义了一组条件以及相关字段的默认值，Pod 运行时必须满足这些条件。Pod 安全策略控制实现上体现为一个可选的准入控制器。
 
+<!--
+PodSecurityPolicy is deprecated as of Kubernetes v1.21, and will be removed in v1.25. We recommend migrating to [Pod Security Admission](/docs/concepts/security/pod-security-admission/), or a 3rd party admission plugin.
+-->
+PodSecurityPolicy 自 Kubernetes v1.21 起已弃用，并将在 v1.25 中删除。 
+我们建议迁移到 [Pod 安全准入](/zh-cn/docs/concepts/security/pod-security-admission/)或第三方准入插件。
 
diff --git a/content/zh/docs/reference/glossary/pod.md b/content/zh-cn/docs/reference/glossary/pod.md
similarity index 95%
rename from content/zh/docs/reference/glossary/pod.md
rename to content/zh-cn/docs/reference/glossary/pod.md
index 873ec90e62..eee257a43d 100644
--- a/content/zh/docs/reference/glossary/pod.md
+++ b/content/zh-cn/docs/reference/glossary/pod.md
@@ -4,7 +4,7 @@ id: pod
 date: 2018-04-12
 full_link: /docs/concepts/workloads/pods/pod-overview/
 short_description: >
-  Pod 表示您的集群上一组正在运行的容器。
+  Pod 表示你的集群上一组正在运行的容器。
 
 aka: 
 tags:
diff --git a/content/zh/docs/reference/glossary/preemption.md b/content/zh-cn/docs/reference/glossary/preemption.md
similarity index 73%
rename from content/zh/docs/reference/glossary/preemption.md
rename to content/zh-cn/docs/reference/glossary/preemption.md
index 3475e6ab01..7875e60d0b 100644
--- a/content/zh/docs/reference/glossary/preemption.md
+++ b/content/zh-cn/docs/reference/glossary/preemption.md
@@ -2,7 +2,7 @@
 title: 抢占（Preemption）
 id: preemption
 date: 2019-01-31
-full_link: /zh/docs/concepts/configuration/pod-priority-preemption/#preemption
+full_link: /zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption/#preemption
 short_description: >
   Kubernetes 中的抢占逻辑通过驱逐节点上的低优先级 Pod 来帮助悬决的
   Pod 找到合适的节点。
@@ -16,7 +16,7 @@ tags:
 title: Preemption
 id: preemption
 date: 2019-01-31
-full_link: /docs/concepts/configuration/pod-priority-preemption/#preemption
+full_link: /docs/concepts/scheduling-eviction/pod-priority-preemption/#preemption
 short_description: >
   Preemption logic in Kubernetes helps a pending Pod to find a suitable Node by evicting low priority Pods existing on that Node.
 
@@ -34,9 +34,9 @@ Kubernetes 中的抢占逻辑通过驱逐{{< glossary_tooltip term_id="node" >}}
 <!--more-->
 
 <!--
-If a Pod cannot be scheduled, the scheduler tries to [preempt](/docs/concepts/configuration/pod-priority-preemption/#preemption) lower priority Pods to make scheduling of the pending Pod possible.
+If a Pod cannot be scheduled, the scheduler tries to [preempt](/docs/concepts/scheduling-eviction/pod-priority-preemption/#preemption) lower priority Pods to make scheduling of the pending Pod possible.
 -->
 如果一个 Pod 无法调度，调度器会尝试
-[抢占](/zh/docs/concepts/configuration/pod-priority-preemption/#preemption)
+[抢占](/zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption/#preemption)
 较低优先级的 Pod，以使得悬决的 Pod 有可能被调度。
 
diff --git a/content/zh/docs/reference/glossary/proxy.md b/content/zh-cn/docs/reference/glossary/proxy.md
similarity index 88%
rename from content/zh/docs/reference/glossary/proxy.md
rename to content/zh-cn/docs/reference/glossary/proxy.md
index c9d4ff0bea..b186dd6065 100644
--- a/content/zh/docs/reference/glossary/proxy.md
+++ b/content/zh-cn/docs/reference/glossary/proxy.md
@@ -43,7 +43,7 @@ actual server's reply to the client.
 network proxy that runs on each node in your cluster, implementing part of
 the Kubernetes {{< glossary_tooltip term_id="service">}} concept.
 -->
-[kube-proxy](/zh/docs/reference/command-line-tools-reference/kube-proxy/) 是集群中每个节点上运行的网络代理，实现了部分 Kubernetes {{< glossary_tooltip term_id="service">}} 概念。
+[kube-proxy](/zh-cn/docs/reference/command-line-tools-reference/kube-proxy/) 是集群中每个节点上运行的网络代理，实现了部分 Kubernetes {{< glossary_tooltip term_id="service">}} 概念。
 
 <!--
 You can run kube-proxy as a plain userland proxy service. If your operating
diff --git a/content/zh/docs/reference/glossary/qos-class.md b/content/zh-cn/docs/reference/glossary/qos-class.md
similarity index 100%
rename from content/zh/docs/reference/glossary/qos-class.md
rename to content/zh-cn/docs/reference/glossary/qos-class.md
diff --git a/content/zh/docs/reference/glossary/quantity.md b/content/zh-cn/docs/reference/glossary/quantity.md
similarity index 89%
rename from content/zh/docs/reference/glossary/quantity.md
rename to content/zh-cn/docs/reference/glossary/quantity.md
index 03cc80051c..bb349400ad 100644
--- a/content/zh/docs/reference/glossary/quantity.md
+++ b/content/zh-cn/docs/reference/glossary/quantity.md
@@ -17,7 +17,7 @@ id: quantity
 date: 2018-08-07
 full_link:
 short_description: >
-  A whole-number representation of small or large numbers using SI suffixes.
+  A whole-number representation of small or large numbers using [SI](https://en.wikipedia.org/wiki/International_System_of_Units) suffixes.
 
 aka: 
 tags:
@@ -27,7 +27,7 @@ tags:
 <!--
 A whole-number representation of small or large numbers using SI suffixes.
 -->
-使用全数字来表示较小数值或使用 SI 后缀表示较大数值的表示法。
+使用全数字来表示较小数值或使用 [SI](https://zh.wikipedia.org/wiki/International_System_of_Units) 后缀表示较大数值的表示法。
 
 <!--more-->
 
diff --git a/content/zh/docs/reference/glossary/rbac.md b/content/zh-cn/docs/reference/glossary/rbac.md
similarity index 90%
rename from content/zh/docs/reference/glossary/rbac.md
rename to content/zh-cn/docs/reference/glossary/rbac.md
index d0a8eaf88a..cb12f7dcef 100644
--- a/content/zh/docs/reference/glossary/rbac.md
+++ b/content/zh-cn/docs/reference/glossary/rbac.md
@@ -2,7 +2,7 @@
 title: 基于角色的访问控制（RBAC）
 id: rbac
 date: 2018-04-12
-full_link: /zh/docs/reference/access-authn-authz/rbac/
+full_link: /zh-cn/docs/reference/access-authn-authz/rbac/
 short_description: >
   管理授权决策，允许管理员通过 Kubernetes API 动态配置访问策略。
 
@@ -17,7 +17,7 @@ tags:
 title: RBAC (Role-Based Access Control)
 id: rbac
 date: 2018-04-12
-full_link: /zh/docs/reference/access-authn-authz/rbac/
+full_link: /zh-cn/docs/reference/access-authn-authz/rbac/
 short_description: >
   Manages authorization decisions, allowing admins to dynamically configure access policies through the Kubernetes API.
 
diff --git a/content/zh/docs/reference/glossary/replica-set.md b/content/zh-cn/docs/reference/glossary/replica-set.md
similarity index 89%
rename from content/zh/docs/reference/glossary/replica-set.md
rename to content/zh-cn/docs/reference/glossary/replica-set.md
index 40378c2555..14534cfdf1 100644
--- a/content/zh/docs/reference/glossary/replica-set.md
+++ b/content/zh-cn/docs/reference/glossary/replica-set.md
@@ -2,7 +2,7 @@
 title: ReplicaSet
 id: replica-set
 date: 2018-04-12
-full_link: /zh/docs/concepts/workloads/controllers/replicaset/
+full_link: /zh-cn/docs/concepts/workloads/controllers/replicaset/
 short_description: >
   ReplicaSet 是下一代副本控制器。
 
@@ -18,7 +18,7 @@ tags:
 title: ReplicaSet
 id: replica-set
 date: 2018-04-12
-full_link: /zh/docs/concepts/workloads/controllers/replicaset/
+full_link: /zh-cn/docs/concepts/workloads/controllers/replicaset/
 short_description: >
   ReplicaSet is the next-generation Replication Controller.
 
diff --git a/content/zh/docs/reference/glossary/replication-controller.md b/content/zh-cn/docs/reference/glossary/replication-controller.md
similarity index 100%
rename from content/zh/docs/reference/glossary/replication-controller.md
rename to content/zh-cn/docs/reference/glossary/replication-controller.md
diff --git a/content/zh/docs/reference/glossary/resource-quota.md b/content/zh-cn/docs/reference/glossary/resource-quota.md
similarity index 90%
rename from content/zh/docs/reference/glossary/resource-quota.md
rename to content/zh-cn/docs/reference/glossary/resource-quota.md
index 4e35800abe..2355db178c 100644
--- a/content/zh/docs/reference/glossary/resource-quota.md
+++ b/content/zh-cn/docs/reference/glossary/resource-quota.md
@@ -2,7 +2,7 @@
 title: 资源配额（Resource Quotas）
 id: resource-quota
 date: 2018-04-12
-full_link: /zh/docs/concepts/policy/resource-quotas/
+full_link: /zh-cn/docs/concepts/policy/resource-quotas/
 short_description: >
   资源配额提供了限制每个命名空间的资源消耗总和的约束。
 
@@ -18,7 +18,7 @@ tags:
 title: Resource Quotas
 id: resource-quota
 date: 2018-04-12
-full_link: /zh/docs/concepts/policy/resource-quotas/
+full_link: /zh-cn/docs/concepts/policy/resource-quotas/
 short_description: >
   Provides constraints that limit aggregate resource consumption per namespace.
 
diff --git a/content/zh/docs/reference/glossary/reviewer.md b/content/zh-cn/docs/reference/glossary/reviewer.md
similarity index 100%
rename from content/zh/docs/reference/glossary/reviewer.md
rename to content/zh-cn/docs/reference/glossary/reviewer.md
diff --git a/content/zh-cn/docs/reference/glossary/secret.md b/content/zh-cn/docs/reference/glossary/secret.md
new file mode 100644
index 0000000000..07153ab7d9
--- /dev/null
+++ b/content/zh-cn/docs/reference/glossary/secret.md
@@ -0,0 +1,47 @@
+---
+title: Secret
+id: secret
+date: 2018-04-12
+full_link: /zh-cn/docs/concepts/configuration/secret/
+short_description: >
+  Secret 用于存储敏感信息，如密码、 OAuth 令牌和 SSH 密钥。
+
+aka: 
+tags:
+- core-object
+- security
+---
+
+<!--
+---
+title: Secret
+id: secret
+date: 2018-04-12
+full_link: /docs/concepts/configuration/secret/
+short_description: >
+  Stores sensitive information, such as passwords, OAuth tokens, and ssh keys.
+
+aka: 
+tags:
+- core-object
+- security
+---
+-->
+
+<!--
+ Stores sensitive information, such as passwords, OAuth tokens, and ssh keys.
+-->
+
+ Secret 用于存储敏感信息，如密码、 OAuth 令牌和 SSH 密钥。
+
+<!--more--> 
+
+<!--
+Allows for more control over how sensitive information is used and reduces the risk of accidental exposure. Secret values are encoded as base64 strings and stored unencrypted by default, but can be configured to be [encrypted at rest](/docs/tasks/administer-cluster/encrypt-data/#ensure-all-secrets-are-encrypted). A {{< glossary_tooltip text="Pod" term_id="pod" >}} references the secret as a file in a volume mount or by the kubelet pulling images for a pod. Secrets are great for confidential data and [ConfigMaps](/docs/tasks/configure-pod-container/configure-pod-configmap/) for non-confidential data.
+-->
+
+Secret 允许用户对如何使用敏感信息进行更多的控制，并减少信息意外暴露的风险。
+默认情况下，Secret 值被编码为 base64 字符串并以非加密的形式存储，但可以配置为
+[静态加密（Encrypt at rest）](/zh-cn/docs/tasks/administer-cluster/encrypt-data/#ensure-all-secrets-are-encrypted)。
+{{< glossary_tooltip text="Pod" term_id="pod" >}} 通过挂载卷中的文件的方式引用 Secret，或者通过 kubelet 为 pod 拉取镜像时引用。
+Secret 非常适合机密数据使用，而 [ConfigMaps](/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap/) 适用于非机密数据。
diff --git a/content/zh/docs/reference/glossary/security-context.md b/content/zh-cn/docs/reference/glossary/security-context.md
similarity index 93%
rename from content/zh/docs/reference/glossary/security-context.md
rename to content/zh-cn/docs/reference/glossary/security-context.md
index 864e693735..586096ffbd 100644
--- a/content/zh/docs/reference/glossary/security-context.md
+++ b/content/zh-cn/docs/reference/glossary/security-context.md
@@ -2,7 +2,7 @@
 title: 安全上下文（Security Context）
 id: security-context
 date: 2018-04-12
-full_link: /zh/docs/tasks/configure-pod-container/security-context/
+full_link: /zh-cn/docs/tasks/configure-pod-container/security-context/
 short_description: >
   securityContext 字段定义 Pod 或容器的特权和访问控制设置，包括运行时 UID 和 GID。
 
diff --git a/content/zh/docs/reference/glossary/selector.md b/content/zh-cn/docs/reference/glossary/selector.md
similarity index 92%
rename from content/zh/docs/reference/glossary/selector.md
rename to content/zh-cn/docs/reference/glossary/selector.md
index 7a1343090f..309419fab4 100644
--- a/content/zh/docs/reference/glossary/selector.md
+++ b/content/zh-cn/docs/reference/glossary/selector.md
@@ -2,7 +2,7 @@
 title: 选择算符（Selector）
 id: selector
 date: 2018-04-12
-full_link: /zh/docs/concepts/overview/working-with-objects/labels/
+full_link: /zh-cn/docs/concepts/overview/working-with-objects/labels/
 short_description: >
   选择算符允许用户通过标签对一组资源对象进行筛选过滤。
 
diff --git a/content/zh/docs/reference/glossary/service-account.md b/content/zh-cn/docs/reference/glossary/service-account.md
similarity index 94%
rename from content/zh/docs/reference/glossary/service-account.md
rename to content/zh-cn/docs/reference/glossary/service-account.md
index e54a4ef98b..62c88b0c32 100644
--- a/content/zh/docs/reference/glossary/service-account.md
+++ b/content/zh-cn/docs/reference/glossary/service-account.md
@@ -2,7 +2,7 @@
 title: ServiceAccount
 id: service-account
 date: 2018-04-12
-full_link: /zh/docs/tasks/configure-pod-container/configure-service-account/
+full_link: /zh-cn/docs/tasks/configure-pod-container/configure-service-account/
 short_description: >
   为在 Pod 中运行的进程提供标识。
 
diff --git a/content/zh-cn/docs/reference/glossary/service-catalog.md b/content/zh-cn/docs/reference/glossary/service-catalog.md
new file mode 100644
index 0000000000..969dc425ce
--- /dev/null
+++ b/content/zh-cn/docs/reference/glossary/service-catalog.md
@@ -0,0 +1,38 @@
+---
+title: 服务目录（Service Catalog）
+id: service-catalog
+date: 2018-04-12
+full_link: 
+short_description: >
+  服务目录是一种扩展 API，它能让 Kubernetes 集群中运行的应用易于使用外部托管的软件服务，例如云供应商提供的数据仓库服务。
+  
+aka: 
+tags:
+- extension
+---
+
+<!--
+title: Service Catalog
+id: service-catalog
+date: 2018-04-12
+full_link: 
+short_description: >
+  A former extension API that enables applications running in Kubernetes clusters to easily use external managed software offerings, such as a datastore service offered by a cloud provider.
+
+aka: 
+tags:
+- extension
+-->
+
+<!--
+ A former extension API that enables applications running in Kubernetes clusters to easily use external managed software offerings, such as a datastore service offered by a cloud provider.
+-->
+服务目录是一种过去曾经存在的扩展 API，它能让 Kubernetes 集群中运行的应用易于使用外部托管的软件服务，例如云供应商提供的数据仓库服务。
+
+<!--more--> 
+
+<!--
+It provided a way to list, provision, and bind with external {{< glossary_tooltip text="Managed Services" term_id="managed-service" >}} without needing detailed knowledge about how those services would be created or managed.
+-->
+服务目录可以检索、供应并绑定外部{{< glossary_tooltip text="托管服务（Managed Services）" term_id="managed-service" >}}，
+而无需知道那些服务具体是怎样创建和托管的。
diff --git a/content/zh/docs/reference/glossary/service.md b/content/zh-cn/docs/reference/glossary/service.md
similarity index 95%
rename from content/zh/docs/reference/glossary/service.md
rename to content/zh-cn/docs/reference/glossary/service.md
index fb611558b5..7c4a3c58d6 100644
--- a/content/zh/docs/reference/glossary/service.md
+++ b/content/zh-cn/docs/reference/glossary/service.md
@@ -2,7 +2,7 @@
 title: 服务（Service）
 id: service
 date: 2018-04-12
-full_link: /zh/docs/concepts/services-networking/service/
+full_link: /zh-cn/docs/concepts/services-networking/service/
 short_description: >
   将运行在一组 Pods 上的应用程序公开为网络服务的抽象方法。
 
diff --git a/content/zh/docs/reference/glossary/shuffle-sharding.md b/content/zh-cn/docs/reference/glossary/shuffle-sharding.md
similarity index 83%
rename from content/zh/docs/reference/glossary/shuffle-sharding.md
rename to content/zh-cn/docs/reference/glossary/shuffle-sharding.md
index 4bc7f91189..494c12168a 100644
--- a/content/zh/docs/reference/glossary/shuffle-sharding.md
+++ b/content/zh-cn/docs/reference/glossary/shuffle-sharding.md
@@ -1,6 +1,6 @@
 ---
 title: 混排切片（Shuffle Sharding）
-id: shuffle-sharding
+id: shuffle sharding
 date: 2020-03-04
 full_link:
 short_description: >
@@ -40,8 +40,8 @@ We are often concerned with insulating different flows of requests
 from each other, so that a high-intensity flow does not crowd out low-intensity flows.
 A simple way to put requests into queues is to hash some
 characteristics of the request, modulo the number of queues, to get
-the index of the queue to use.  The hash function uses as input
-characteristics of the request that align with flows.  For example, in
+the index of the queue to use. The hash function uses as input
+characteristics of the request that align with flows. For example, in
 the Internet this is often the 5-tuple of source and destination
 address, protocol, and source and destination port.
 -->
@@ -57,21 +57,21 @@ address, protocol, and source and destination port.
 That simple hash-based scheme has the property that any high-intensity flow
 will crowd out all the low-intensity flows that hash to the same queue.
 Providing good insulation for a large number of flows requires a large
-number of queues, which is problematic.  Shuffle sharding is a more
+number of queues, which is problematic. Shuffle sharding is a more
 nimble technique that can do a better job of insulating the low-intensity
-flows from the high-intensity flows.  The terminology of shuffle sharding uses
+flows from the high-intensity flows. The terminology of shuffle sharding uses
 the metaphor of dealing a hand from a deck of cards; each queue is a
-metaphorical card.  The shuffle sharding technique starts with hashing
+metaphorical card. The shuffle sharding technique starts with hashing
 the flow-identifying characteristics of the request, to produce a hash
-value with dozens or more of bits.  Then the hash value is used as a
+value with dozens or more of bits. Then the hash value is used as a
 source of entropy to shuffle the deck and deal a hand of cards
-(queues).  All the dealt queues are examined, and the request is put
-into one of the examined queues with the shortest length.  With a
+(queues). All the dealt queues are examined, and the request is put
+into one of the examined queues with the shortest length. With a
 modest hand size, it does not cost much to examine all the dealt cards
 and a given low-intensity flow has a good chance to dodge the effects of a
-given high-intensity flow.  With a large hand size it is expensive to examine
+given high-intensity flow. With a large hand size it is expensive to examine
 the dealt queues and more difficult for the low-intensity flows to dodge the
-collective effects of a set of high-intensity flows.  Thus, the hand size
+collective effects of a set of high-intensity flows. Thus, the hand size
 should be chosen judiciously.
 -->
 这种简单的基于哈希的模式有一种特性，高密度的请求序列（流）会湮没那些被
diff --git a/content/zh/docs/reference/glossary/sig.md b/content/zh-cn/docs/reference/glossary/sig.md
similarity index 100%
rename from content/zh/docs/reference/glossary/sig.md
rename to content/zh-cn/docs/reference/glossary/sig.md
diff --git a/content/zh/docs/reference/glossary/statefulset.md b/content/zh-cn/docs/reference/glossary/statefulset.md
similarity index 95%
rename from content/zh/docs/reference/glossary/statefulset.md
rename to content/zh-cn/docs/reference/glossary/statefulset.md
index 6e796d9419..e94318e78a 100644
--- a/content/zh/docs/reference/glossary/statefulset.md
+++ b/content/zh-cn/docs/reference/glossary/statefulset.md
@@ -2,7 +2,7 @@
 title: StatefulSet
 id: statefulset
 date: 2018-04-12
-full_link: /zh/docs/concepts/workloads/controllers/statefulset/
+full_link: /zh-cn/docs/concepts/workloads/controllers/statefulset/
 short_description: >
   StatefulSet 用来管理某 Pod 集合的部署和扩缩，并为这些 Pod 提供持久存储和持久标识符。
 aka: 
diff --git a/content/zh/docs/reference/glossary/static-pod.md b/content/zh-cn/docs/reference/glossary/static-pod.md
similarity index 88%
rename from content/zh/docs/reference/glossary/static-pod.md
rename to content/zh-cn/docs/reference/glossary/static-pod.md
index e785a96a85..fd9103c322 100644
--- a/content/zh/docs/reference/glossary/static-pod.md
+++ b/content/zh-cn/docs/reference/glossary/static-pod.md
@@ -2,7 +2,7 @@
 title: 静态 Pod（Static Pod）
 id: static-pod
 date: 2019-02-12
-full_link: /zh/docs/tasks/configure-pod-container/static-pod/
+full_link: /zh-cn/docs/tasks/configure-pod-container/static-pod/
 short_description: >
   静态Pod（Static Pod）是指由特定节点上的 kubelet 守护进程直接管理的 Pod。
 
diff --git a/content/zh/docs/reference/glossary/storage-class.md b/content/zh-cn/docs/reference/glossary/storage-class.md
similarity index 95%
rename from content/zh/docs/reference/glossary/storage-class.md
rename to content/zh-cn/docs/reference/glossary/storage-class.md
index 1ad1834b15..b0fc008df7 100644
--- a/content/zh/docs/reference/glossary/storage-class.md
+++ b/content/zh-cn/docs/reference/glossary/storage-class.md
@@ -2,7 +2,7 @@
 title: StorageClass
 id: storageclass
 date: 2018-04-12
-full_link: /zh/docs/concepts/storage/storage-classes/
+full_link: /zh-cn/docs/concepts/storage/storage-classes/
 short_description: >
   StorageClass 是管理员用来描述可用的不同存储类型的一种方法。
 
diff --git a/content/zh/docs/reference/glossary/sysctl.md b/content/zh-cn/docs/reference/glossary/sysctl.md
similarity index 95%
rename from content/zh/docs/reference/glossary/sysctl.md
rename to content/zh-cn/docs/reference/glossary/sysctl.md
index b987583df7..1c35bc662b 100644
--- a/content/zh/docs/reference/glossary/sysctl.md
+++ b/content/zh-cn/docs/reference/glossary/sysctl.md
@@ -2,7 +2,7 @@
 title: sysctl
 id: sysctl
 date: 2019-02-12
-full_link: /zh/docs/tasks/administer-cluster/sysctl-cluster/
+full_link: /zh-cn/docs/tasks/administer-cluster/sysctl-cluster/
 short_description: >
   用于获取和设置 Unix 内核参数的接口
 
diff --git a/content/zh/docs/reference/glossary/taint.md b/content/zh-cn/docs/reference/glossary/taint.md
similarity index 95%
rename from content/zh/docs/reference/glossary/taint.md
rename to content/zh-cn/docs/reference/glossary/taint.md
index 8961ce205d..65040d6bbe 100644
--- a/content/zh/docs/reference/glossary/taint.md
+++ b/content/zh-cn/docs/reference/glossary/taint.md
@@ -2,7 +2,7 @@
 title: 污点（Taint）
 id: taint
 date: 2019-01-11
-full_link: /zh/docs/concepts/scheduling-eviction/taint-and-toleration/
+full_link: /zh-cn/docs/concepts/scheduling-eviction/taint-and-toleration/
 short_description: >
   污点是一种一个核心对象，包含三个必需的属性：key、value 和 effect。
   污点会阻止在节点或节点组上调度 Pod。
diff --git a/content/zh/docs/reference/glossary/toleration.md b/content/zh-cn/docs/reference/glossary/toleration.md
similarity index 96%
rename from content/zh/docs/reference/glossary/toleration.md
rename to content/zh-cn/docs/reference/glossary/toleration.md
index 963d75b94c..d42ff66958 100644
--- a/content/zh/docs/reference/glossary/toleration.md
+++ b/content/zh-cn/docs/reference/glossary/toleration.md
@@ -2,7 +2,7 @@
 title: 容忍度（Toleration）
 id: toleration
 date: 2019-01-11
-full_link: /zh/docs/concepts/scheduling-eviction/taint-and-toleration/
+full_link: /zh-cn/docs/concepts/scheduling-eviction/taint-and-toleration/
 short_description: >
   一个核心对象，由三个必需的属性组成：key、value 和 effect。
   容忍度允许将 Pod 调度到具有对应污点的节点或节点组上。
diff --git a/content/zh/docs/reference/glossary/uid.md b/content/zh-cn/docs/reference/glossary/uid.md
similarity index 92%
rename from content/zh/docs/reference/glossary/uid.md
rename to content/zh-cn/docs/reference/glossary/uid.md
index 74faf6d1e7..13d5433ac1 100644
--- a/content/zh/docs/reference/glossary/uid.md
+++ b/content/zh-cn/docs/reference/glossary/uid.md
@@ -2,7 +2,7 @@
 title: UID
 id: uid
 date: 2018-04-12
-full_link: /zh/docs/concepts/overview/working-with-objects/names/
+full_link: /zh-cn/docs/concepts/overview/working-with-objects/names/
 short_description: >
   由 Kubernetes 系统生成、用来唯一标识对象的字符串。
 
diff --git a/content/zh/docs/reference/glossary/upstream.md b/content/zh-cn/docs/reference/glossary/upstream.md
similarity index 100%
rename from content/zh/docs/reference/glossary/upstream.md
rename to content/zh-cn/docs/reference/glossary/upstream.md
diff --git a/content/zh-cn/docs/reference/glossary/userns.md b/content/zh-cn/docs/reference/glossary/userns.md
new file mode 100644
index 0000000000..6d4168237c
--- /dev/null
+++ b/content/zh-cn/docs/reference/glossary/userns.md
@@ -0,0 +1,56 @@
+---
+title: 用户名字空间
+id: userns
+date: 2021-07-13
+full_link: https://man7.org/linux/man-pages/man7/user_namespaces.7.html
+short_description: >
+  一种为非特权用户模拟超级用户特权的 Linux 内核功能特性。
+
+aka:
+tags:
+- security
+---
+
+<!--
+title: user namespace
+id: userns
+date: 2021-07-13
+full_link: https://man7.org/linux/man-pages/man7/user_namespaces.7.html
+short_description: >
+  A Linux kernel feature to emulate superuser privilege for unprivileged users.
+
+aka:
+tags:
+- security
+-->
+
+<!--
+A kernel feature to emulate root. Used for "rootless containers".
+-->
+用来模拟 root 用户的内核功能特性。用来支持“Rootless 容器”。
+
+<!--more-->
+
+<!--
+User namespaces are a Linux kernel feature that allows a non-root user to
+emulate superuser ("root") privileges,
+for example in order to run containers without being a superuser outside the container.
+-->
+用户名字空间（User Namespace）是一种 Linux 内核功能特性，允许非 root 用户
+模拟超级用户（"root"）的特权，例如用来运行容器却不必成为容器之外的超级用户。
+
+<!--
+User namespace is effective for mitigating damage of potential container break-out attacks.
+-->
+用户名字空间对于缓解因潜在的容器逃逸攻击而言是有效的。
+
+<!--
+In the context of user namespaces, the namespace is a Linux kernel feature, and not a
+{{< glossary_tooltip text="namespace" term_id="namespace" >}} in the Kubernetes sense
+of the term.
+-->
+在用户名字空间语境中，名字空间是 Linux 内核的功能特性而不是 Kubernetes 意义上的
+{{< glossary_tooltip text="名字空间" term_id="namespace" >}}概念。
+
+<!-- TODO: https://kinvolk.io/blog/2020/12/improving-kubernetes-and-container-security-with-user-namespaces/ -->
+
diff --git a/content/zh/docs/reference/glossary/volume-plugin.md b/content/zh-cn/docs/reference/glossary/volume-plugin.md
similarity index 94%
rename from content/zh/docs/reference/glossary/volume-plugin.md
rename to content/zh-cn/docs/reference/glossary/volume-plugin.md
index b04b8d8fbc..1071b04390 100644
--- a/content/zh/docs/reference/glossary/volume-plugin.md
+++ b/content/zh-cn/docs/reference/glossary/volume-plugin.md
@@ -40,7 +40,7 @@ tags:
 A Volume Plugin lets you attach and mount storage volumes for use by a {{< glossary_tooltip text="Pod" term_id="pod" >}}. Volume plugins can be _in tree_ or _out of tree_. _In tree_ plugins are part of the Kubernetes code repository and follow its release cycle. _Out of tree_ plugins are developed independently.
 -->
 
-卷插件让您能给 {{< glossary_tooltip text="Pod" term_id="pod" >}} 附加和挂载存储卷。
+卷插件让你能给 {{< glossary_tooltip text="Pod" term_id="pod" >}} 附加和挂载存储卷。
 卷插件既可以是 _in tree_ 也可以是 _out of tree_ 。_in tree_ 插件是 Kubernetes 代码库的一部分，
 并遵循其发布周期。而 _Out of tree_ 插件则是独立开发的。
 
diff --git a/content/zh/docs/reference/glossary/volume.md b/content/zh-cn/docs/reference/glossary/volume.md
similarity index 92%
rename from content/zh/docs/reference/glossary/volume.md
rename to content/zh-cn/docs/reference/glossary/volume.md
index 7ef39eee2f..9159e275ca 100644
--- a/content/zh/docs/reference/glossary/volume.md
+++ b/content/zh-cn/docs/reference/glossary/volume.md
@@ -2,7 +2,7 @@
 title: 卷（Volume）
 id: volume
 date: 2018-04-12
-full_link: /zh/docs/concepts/storage/volumes/
+full_link: /zh-cn/docs/concepts/storage/volumes/
 short_description: >
   包含可被 Pod 中容器访问的数据的目录。
 
@@ -47,4 +47,4 @@ A Kubernetes volume lives as long as the Pod that encloses it. Consequently, a v
 <!--
 See [storage](/docs/concepts/storage/) for more information.
 -->
-更多信息可参考[storage](/zh/docs/concepts/storage/)
\ No newline at end of file
+更多信息可参考[storage](/zh-cn/docs/concepts/storage/)
\ No newline at end of file
diff --git a/content/zh/docs/reference/glossary/wg.md b/content/zh-cn/docs/reference/glossary/wg.md
similarity index 100%
rename from content/zh/docs/reference/glossary/wg.md
rename to content/zh-cn/docs/reference/glossary/wg.md
diff --git a/content/zh/docs/reference/glossary/workload.md b/content/zh-cn/docs/reference/glossary/workload.md
similarity index 95%
rename from content/zh/docs/reference/glossary/workload.md
rename to content/zh-cn/docs/reference/glossary/workload.md
index 394b42bd1c..68cd860a83 100644
--- a/content/zh/docs/reference/glossary/workload.md
+++ b/content/zh-cn/docs/reference/glossary/workload.md
@@ -2,7 +2,7 @@
 title: 工作负载（Workload）
 id: workloads
 date: 2019-02-13
-full_link: /zh/docs/concepts/workloads/
+full_link: /zh-cn/docs/concepts/workloads/
 short_description: >
    工作负载是在 Kubernetes 上运行的应用程序。
 
diff --git a/content/zh/docs/reference/issues-security/_index.md b/content/zh-cn/docs/reference/issues-security/_index.md
similarity index 100%
rename from content/zh/docs/reference/issues-security/_index.md
rename to content/zh-cn/docs/reference/issues-security/_index.md
diff --git a/content/zh/docs/reference/issues-security/issues.md b/content/zh-cn/docs/reference/issues-security/issues.md
similarity index 86%
rename from content/zh/docs/reference/issues-security/issues.md
rename to content/zh-cn/docs/reference/issues-security/issues.md
index 23a015a519..45a248990c 100644
--- a/content/zh/docs/reference/issues-security/issues.md
+++ b/content/zh-cn/docs/reference/issues-security/issues.md
@@ -1,6 +1,7 @@
 ---
 title: Kubernetes 问题追踪
 weight: 10
+aliases: [/zh-cn/cve/, /zh-cn/cves/]
 ---
 
 <!--
@@ -13,7 +14,7 @@ aliases: [/cve/,/cves/]
 To report a security issue, please follow the [Kubernetes security disclosure process](/docs/reference/issues-security/security/#report-a-vulnerability).
 -->
 要报告安全问题，请遵循
-[Kubernetes 安全问题公开流程](/zh/docs/reference/issues-security/security/#report-a-vulnerability)。
+[Kubernetes 安全问题公开流程](/zh-cn/docs/reference/issues-security/security/#report-a-vulnerability)。
 
 <!--
 Work on Kubernetes code and public issues are tracked using [GitHub Issues](https://github.com/kubernetes/kubernetes/issues/).
@@ -29,6 +30,6 @@ Work on Kubernetes code and public issues are tracked using [GitHub Issues](http
 <!--
 Security-related announcements are sent to the [kubernetes-security-announce@googlegroups.com](https://groups.google.com/forum/#!forum/kubernetes-security-announce) mailing list.
 -->
-与安全性相关的公告请发送到
+与安全性相关的公告将发送到
 [kubernetes-security-announce@googlegroups.com](https://groups.google.com/forum/#!forum/kubernetes-security-announce)
 邮件列表。
diff --git a/content/zh-cn/docs/reference/issues-security/security.md b/content/zh-cn/docs/reference/issues-security/security.md
new file mode 100644
index 0000000000..4cdc9d07e7
--- /dev/null
+++ b/content/zh-cn/docs/reference/issues-security/security.md
@@ -0,0 +1,140 @@
+---
+title: Kubernetes 安全和信息披露
+aliases: [/zh-cn/security/]
+content_type: concept
+weight: 20
+---
+
+<!--
+title: Kubernetes Security and Disclosure Information
+aliases: [/security/]
+reviewers:
+- eparis
+- erictune
+- philips
+- jessfraz
+content_type: concept
+weight: 20
+-->
+
+<!-- overview -->
+<!--
+This page describes Kubernetes security and disclosure information.
+-->
+本页面介绍 Kubernetes 安全和信息披露相关的内容。
+
+
+<!-- body -->
+<!--
+## Security Announcements
+-->
+## 安全公告 {#security-announcements}
+
+<!--
+Join the [kubernetes-security-announce](https://groups.google.com/forum/#!forum/kubernetes-security-announce) group for emails about security and major API announcements.
+-->
+加入 [kubernetes-security-announce](https://groups.google.com/forum/#!forum/kubernetes-security-announce) 组，以获取关于安全性和主要 API 公告的电子邮件。
+
+<!--
+## Report a Vulnerability
+-->
+## 报告一个漏洞 {#report-a-vulnerability}
+
+<!--
+We're extremely grateful for security researchers and users that report vulnerabilities to the Kubernetes Open Source Community. All reports are thoroughly investigated by a set of community volunteers.
+-->
+我们非常感谢向 Kubernetes 开源社区报告漏洞的安全研究人员和用户。
+所有的报告都由社区志愿者进行彻底调查。
+
+<!--
+To make a report, submit your vulnerability to the [Kubernetes bug bounty program](https://hackerone.com/kubernetes). This allows triage and handling of the vulnerability with standardized response times.
+-->
+如需报告，请将你的漏洞提交给 [Kubernetes 漏洞赏金计划](https://hackerone.com/kubernetes)。
+这样做可以使得社区能够在标准化的响应时间内对漏洞进行分类和处理。
+
+<!--
+You can also email the private [security@kubernetes.io](mailto:security@kubernetes.io) list with the security details and the details expected for [all Kubernetes bug reports](https://github.com/kubernetes/kubernetes/blob/master/.github/ISSUE_TEMPLATE/bug-report.yaml).
+-->
+你还可以通过电子邮件向私有 [security@kubernetes.io](mailto:security@kubernetes.io)
+列表发送电子邮件，邮件中应该包含
+[所有 Kubernetes 错误报告](https://github.com/kubernetes/kubernetes/blob/master/.github/ISSUE_TEMPLATE/bug-report.yaml)
+所需的详细信息。
+
+<!--
+You may encrypt your email to this list using the GPG keys of the [Security Response Committee members](https://git.k8s.io/security/README.md#product-security-committee-psc). Encryption using GPG is NOT required to make a disclosure.
+-->
+你可以使用[安全响应委员会成员](https://git.k8s.io/security/README.md#product-security-committee-psc)的
+GPG 密钥加密你的发往邮件列表的邮件。揭示问题时不需要使用 GPG 来加密。
+
+<!--
+### When Should I Report a Vulnerability?
+-->
+### 我应该在什么时候报告漏洞？ {#when-should-i-report-a-vulnerability}
+
+<!--
+- You think you discovered a potential security vulnerability in Kubernetes
+- You are unsure how a vulnerability affects Kubernetes
+- You think you discovered a vulnerability in another project that Kubernetes depends on
+  - For projects with their own vulnerability reporting and disclosure process, please report it directly there
+-->
+- 你认为在 Kubernetes 中发现了一个潜在的安全漏洞
+- 你不确定漏洞如何影响 Kubernetes
+- 你认为你在 Kubernetes 依赖的另一个项目中发现了一个漏洞
+  - 对于具有漏洞报告和披露流程的项目，请直接在该项目处报告
+
+<!--
+### When Should I NOT Report a Vulnerability?
+-->
+### 我什么时候不应该报告漏洞？ {#when-should-i-not-report-a-vulnerability}
+
+<!--
+- You need help tuning Kubernetes components for security
+- You need help applying security related updates
+- Your issue is not security related
+-->
+- 你需要调整 Kubernetes 组件安全性的帮助
+- 你需要应用与安全相关更新的帮助
+- 你的问题与安全无关
+
+<!--
+## Security Vulnerability Response
+-->
+## 安全漏洞响应 {#security-vulnerability-response}
+
+<!--
+Each report is acknowledged and analyzed by Security Response Committee members within 3 working days. This will set off the [Security Release Process](https://git.k8s.io/security/security-release-process.md#disclosures).
+-->
+每个报告在 3 个工作日内由安全响应委员会成员确认和分析，这将启动[安全发布过程](https://git.k8s.io/sig-release/security-release-process-documentation/security-release-process.md#disclosures)。
+
+<!--
+Any vulnerability information shared with Security Response Committee stays within Kubernetes project and will not be disseminated to other projects unless it is necessary to get the issue fixed.
+-->
+与安全响应委员会共享的任何漏洞信息都保留在 Kubernetes 项目中，除非有必要修复该问题，否则不会传播到其他项目。
+
+<!--
+As the security issue moves from triage, to identified fix, to release planning we will keep the reporter updated.
+-->
+随着安全问题从分类、识别修复、发布计划等方面的进展，我们将不断更新报告。
+
+<!--
+## Public Disclosure Timing
+-->
+## 公开披露时间 {#public-disclosure-timing}
+
+<!--
+A public disclosure date is negotiated by the Kubernetes Security Response Committee and the bug submitter. We prefer to fully disclose the bug as soon as possible once a user mitigation is available.
+-->
+公开披露日期由 Kubernetes 安全响应委员会和 bug 提交者协商。
+我们倾向于在能够为用户提供缓解措施之后尽快完全披露该 bug。
+
+<!--
+It is reasonable to delay disclosure when the bug or the fix is not yet fully understood, the solution is not well-tested, or for vendor coordination.
+-->
+当 bug 或其修复还没有被完全理解，解决方案没有经过良好的测试，或者为了处理供应商协调问题时，延迟披露是合理的。
+
+<!--
+The timeframe for disclosure is from immediate (especially if it's already publicly known) to a few weeks. For a vulnerability with a straightforward mitigation, we expect report date to disclosure date to be on the order of 7 days. The Kubernetes Security Response Committee holds the final say when setting a disclosure date.
+-->
+信息披露的时间范围从即时（尤其是已经公开的）到几周不等。
+对于具有直接缓解措施的漏洞，我们希望报告日期到披露日期的间隔是 7 天。
+在设置披露日期方面，Kubernetes 安全响应委员会拥有最终决定权。
diff --git a/content/zh/docs/reference/kubectl/overview.md b/content/zh-cn/docs/reference/kubectl/_index.md
similarity index 71%
rename from content/zh/docs/reference/kubectl/overview.md
rename to content/zh-cn/docs/reference/kubectl/_index.md
index ddc83e8536..a7622142cb 100644
--- a/content/zh/docs/reference/kubectl/overview.md
+++ b/content/zh-cn/docs/reference/kubectl/_index.md
@@ -1,62 +1,75 @@
 ---
-reviewers:
-- hw-qiaolei
-title: kubectl 概述
-content_type: concept
-weight: 20
+title: 命令行工具 (kubectl)
+content_type: reference
+weight: 60
+no_list: true
 card:
   name: reference
   weight: 20
 ---
 <!--
-reviewers:
-- bgrant0607
-- hw-qiaolei
-title: Overview of kubectl
-content_type: concept
-weight: 20
+title: Command line tool (kubectl)
+content_type: reference
+weight: 60
+no_list: true
 card:
   name: reference
   weight: 20
 -->
-
 <!-- overview -->
+<!--
+{{< glossary_definition prepend="Kubernetes provides a" term_id="kubectl" length="short" >}}
+-->
+{{< glossary_definition prepend="Kubernetes 提供" term_id="kubectl" length="short" >}}
+
+<!--
+This tool is named `kubectl`.
+-->
+这个工具叫做 `kubectl`。
 
 <!--
-The kubectl command line tool lets you control Kubernetes clusters.
 For configuration, `kubectl` looks for a file named `config` in the `$HOME/.kube` directory.
 You can specify other [kubeconfig](/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
-files by setting the KUBECONFIG environment variable or by setting the
+files by setting the `KUBECONFIG` environment variable or by setting the
 [`--kubeconfig`](/docs/concepts/configuration/organize-cluster-access-kubeconfig/) flag.
 -->
-你可以使用 Kubectl 命令行工具管理 Kubernetes 集群。
-`kubectl` 在 `$HOME/.kube` 目录中查找一个名为 `config` 的配置文件。
-你可以通过设置 KUBECONFIG 环境变量或设置
-[`--kubeconfig`](/zh/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
-参数来指定其它 [kubeconfig](/zh/docs/concepts/configuration/organize-cluster-access-kubeconfig/) 文件。
+
+针对配置信息，`kubectl` 在 `$HOME/.kube` 目录中查找一个名为 `config` 的配置文件。
+你可以通过设置 `KUBECONFIG` 环境变量或设置 
+[`--kubeconfig`](/zh-cn/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
+
+参数来指定其它 [kubeconfig](/zh-cn/docs/concepts/configuration/organize-cluster-access-kubeconfig/) 文件。
 
 <!--
 This overview covers `kubectl` syntax, describes the command operations, and provides common examples.
 For details about each command, including all the supported flags and subcommands, see the
 [kubectl](/docs/reference/generated/kubectl/kubectl-commands/) reference documentation.
-For installation instructions see [installing kubectl](/docs/tasks/tools/install-kubectl/).
 -->
 本文概述了 `kubectl` 语法和命令操作描述，并提供了常见的示例。
 有关每个命令的详细信息，包括所有受支持的参数和子命令，
 请参阅 [kubectl](/docs/reference/generated/kubectl/kubectl-commands/) 参考文档。
-有关安装说明，请参见[安装 kubectl](/zh/docs/tasks/tools/install-kubectl/) 。
-
-<!-- body -->
 
+<!--
+For installation instructions, see [Installing kubectl](/docs/tasks/tools/#kubectl);
+for a quick guide, see the [cheat sheet](/docs/reference/kubectl/cheatsheet/).
+If you're used to using the `docker` command-line tool, [`kubectl` for Docker Users](/docs/reference/kubectl/docker-cli-to-kubectl/)
+explains some equivalent commands for Kubernetes.
+-->
+有关安装说明，请参见[安装 kubectl](/zh-cn/docs/tasks/tools/#kubectl)；
+如需快速指南，请参见[备忘单](/zh-cn/docs/reference/kubectl/cheatsheet/)。
+如果你更习惯使用 `docker` 命令行工具，
+[Docker 用户的 `kubectl`](/zh-cn/docs/reference/kubectl/docker-cli-to-kubectl/)
+介绍了一些 Kubernetes 的等价命令。
+
+<!-- body -->
 <!--
 ## Syntax
+
+Use the following syntax to run `kubectl` commands from your terminal window:
 -->
 ## 语法
 
-<!--
-Use the following syntax to run `kubectl` commands from your terminal window:
--->
-使用以下语法 `kubectl` 从终端窗口运行命令：
+使用以下语法从终端窗口运行 `kubectl` 命令：
 
 ```shell
 kubectl [command] [TYPE] [NAME] [flags]
@@ -68,34 +81,36 @@ where `command`, `TYPE`, `NAME`, and `flags` are:
 其中 `command`、`TYPE`、`NAME` 和 `flags` 分别是：
 
 <!--
-* `command`: Specifies the operation that you want to perform on one or more resources, for example `create`, `get`, `describe`, `delete`.
+* `command`: Specifies the operation that you want to perform on one or more resources, 
+for example `create`, `get`, `describe`, `delete`.
 
-* `TYPE`: Specifies the [resource type](#resource-types). Resource types are case-insensitive and you can specify the singular, plural, or abbreviated forms. For example, the following commands produce the same output:
+* `TYPE`: Specifies the [resource type](#resource-types). Resource types are case-insensitive and
+  you can specify the singular, plural, or abbreviated forms.
+  For example, the following commands produce the same output:
 -->
 * `command`：指定要对一个或多个资源执行的操作，例如 `create`、`get`、`describe`、`delete`。
 
-* `TYPE`：指定[资源类型](#资源类型)。资源类型不区分大小写，
-  可以指定单数、复数或缩写形式。例如，以下命令输出相同的结果:
+* `TYPE`：指定[资源类型](#resource-types)。资源类型不区分大小写，
+  可以指定单数、复数或缩写形式。例如，以下命令输出相同的结果：
 
-  ```shell
-  kubectl get pod pod1
-  kubectl get pods pod1
-  kubectl get po pod1
-  ```
+   ```shell
+   kubectl get pod pod1
+   kubectl get pods pod1
+   kubectl get po pod1
+   ```
 
 <!--
 * `NAME`: Specifies the name of the resource. Names are case-sensitive. If the name is omitted, details for all resources are displayed, for example `kubectl get pods`.
 
    When performing an operation on multiple resources, you can specify each resource by type and name or specify one or more files:
 -->
-
 * `NAME`：指定资源的名称。名称区分大小写。
-  如果省略名称，则显示所有资源的详细信息 `kubectl get pods`。
+  如果省略名称，则显示所有资源的详细信息。例如：`kubectl get pods`。
 
   在对多个资源执行操作时，你可以按类型和名称指定每个资源，或指定一个或多个文件：
 
-  <!--
-   * To specify resources by type and name:
+<!--
+  * To specify resources by type and name:
 
       * To group resources if they are all the same type:  `TYPE1 name1 name2 name<#>`.<br/>
       Example: `kubectl get pod example-pod1 example-pod2`
@@ -105,43 +120,111 @@ where `command`, `TYPE`, `NAME`, and `flags` are:
 
    * To specify resources with one or more files:  `-f file1 -f file2 -f file<#>`
 
-      * [Use YAML rather than JSON](/docs/concepts/configuration/overview/#general-configuration-tips)
-        since YAML tends to be more user-friendly, especially for configuration files.<br/>
+      * [Use YAML rather than JSON](/docs/concepts/configuration/overview/#general-configuration-tips) since YAML tends to be more user-friendly, especially for configuration files.<br/>
      Example: `kubectl get -f ./pod.yaml`
-  -->
-  * 要按类型和名称指定资源：
+-->
+ * 要按类型和名称指定资源：
 
-      * 要对所有类型相同的资源进行分组，请执行以下操作：`TYPE1 name1 name2 name<#>`。
+  * 要对所有类型相同的资源进行分组，请执行以下操作：`TYPE1 name1 name2 name<#>`。<br/>
+    例子：`kubectl get pod example-pod1 example-pod2`
 
-        例子：`kubectl get pod example-pod1 example-pod2`
+  * 分别指定多个资源类型：`TYPE1/name1 TYPE1/name2 TYPE2/name3 TYPE<#>/name<#>`。<br/>
+    例子：`kubectl get pod/example-pod1 replicationcontroller/example-rc1`
 
-      * 分别指定多个资源类型：`TYPE1/name1 TYPE1/name2 TYPE2/name3 TYPE<#>/name<#>`。
+ * 用一个或多个文件指定资源：`-f file1 -f file2 -f file<#>`
 
-        例子：`kubectl get pod/example-pod1 replicationcontroller/example-rc1`
-
-  * 用一个或多个文件指定资源：`-f file1 -f file2 -f file<#>`
-
-    * [使用 YAML 而不是 JSON](/zh/docs/concepts/configuration/overview/#general-configuration-tips)
-      因为 YAML 更容易使用，特别是用于配置文件时。
-      例子：`kubectl get -f ./pod.yaml`
+  * [使用 YAML 而不是 JSON](/zh-cn/docs/concepts/configuration/overview/#general-configuration-tips)，
+    因为 YAML 对用户更友好, 特别是对于配置文件。<br/>
+    例子：`kubectl get -f ./pod.yaml`
 
 <!--
-* `flags`: Specifies optional flags. For example, you can use the `-s` or `--server` flags to specify the address and port of the Kubernetes API server.
+* `flags`: Specifies optional flags. For example, you can use the `-s` or `--server` flags to specify the address and port of the Kubernetes API server.<br/>
 -->
-* `flags`: 指定可选的参数。例如，可以使用 `-s` 或 `-server` 参数指定
+* `flags`： 指定可选的参数。例如，可以使用 `-s` 或 `--server` 参数指定
   Kubernetes API 服务器的地址和端口。
 
-{{< caution >}}
 <!--
 Flags that you specify from the command line override default values and any corresponding environment variables.
 -->
+{{< caution >}}
 从命令行指定的参数会覆盖默认值和任何相应的环境变量。
 {{< /caution >}}
 
 <!--
 If you need help, run `kubectl help` from the terminal window.
 -->
-如果你需要帮助，从终端窗口运行 `kubectl help` 。
+如果你需要帮助，在终端窗口中运行 `kubectl help`。
+
+<!--
+## In-cluster authentication and namespace overrides
+-->
+## 集群内身份验证和命名空间覆盖
+
+<!--
+By default `kubectl` will first determine if it is running within a pod, and thus in a cluster. It starts by checking for the `KUBERNETES_SERVICE_HOST` and `KUBERNETES_SERVICE_PORT` environment variables and the existence of a service account token file at `/var/run/secrets/kubernetes.io/serviceaccount/token`. If all three are found in-cluster authentication is assumed.
+-->
+默认情况下，`kubectl` 命令首先确定它是否在 Pod 中运行，从而被视为在集群中运行。
+它首先检查 `KUBERNETES_SERVICE_HOST` 和 `KUBERNETES_SERVICE_PORT` 环境变量以及
+`/var/run/secrets/kubernetes.io/serviceaccount/token` 中是否存在服务帐户令牌文件。
+如果三个条件都被满足，则假定在集群内进行身份验证。
+
+<!--
+To maintain backwards compatibility, if the `POD_NAMESPACE` environment variable is set during in-cluster authentication it will override the default namespace from the service account token. Any manifests or tools relying on namespace defaulting will be affected by this.
+-->
+为保持向后兼容性，如果在集群内身份验证期间设置了 `POD_NAMESPACE`
+环境变量，它将覆盖服务帐户令牌中的默认命名空间。
+任何依赖默认命名空间的清单或工具都会受到影响。
+
+<!--
+**`POD_NAMESPACE` environment variable**
+-->
+**`POD_NAMESPACE` 环境变量**
+
+<!--
+If the `POD_NAMESPACE` environment variable is set, cli operations on namespaced resources will default to the variable value. For example, if the variable is set to `seattle`, `kubectl get pods` would return pods in the `seattle` namespace. This is because pods are a namespaced resource, and no namespace was provided in the command. Review the output of `kubectl api-resources` to determine if a resource is namespaced. 
+-->
+如果设置了 `POD_NAMESPACE` 环境变量，对命名空间资源的 CLI 操作对象将使用该变量值作为默认值。
+例如，如果该变量设置为 `seattle`，`kubectl get pods` 将返回 `seattle` 命名空间中的 Pod。
+这是因为 Pod 是一个命名空间资源，且命令中没有提供命名空间。
+
+<!--
+Explicit use of `--namespace <value>` overrides this behavior.
+-->
+直接使用 `--namespace <value>` 会覆盖此行为。
+
+<!--
+**How kubectl handles ServiceAccount tokens**
+-->
+**kubectl 如何处理 ServiceAccount 令牌**
+
+<!--
+If:
+* there is Kubernetes service account token file mounted at
+  `/var/run/secrets/kubernetes.io/serviceaccount/token`, and
+* the `KUBERNETES_SERVICE_HOST` environment variable is set, and
+* the `KUBERNETES_SERVICE_PORT` environment variable is set, and
+* you don't explicitly specify a namespace on the kubectl command line
+-->
+假设：
+* 有 Kubernetes 服务帐户令牌文件挂载在
+  `/var/run/secrets/kubernetes.io/serviceaccount/token` 上，并且
+* 设置了 `KUBERNETES_SERVICE_HOST` 环境变量，并且
+* 设置了 `KUBERNETES_SERVICE_PORT` 环境变量，并且
+* 你没有在 kubectl 命令行上明确指定命名空间。
+
+<!--
+then kubectl assumes it is running in your cluster. The kubectl tool looks up the
+namespace of that ServiceAccount (this is the same as the namespace of the Pod)
+and acts against that namespace. This is different from what happens outside of a
+cluster; when kubectl runs outside a cluster and you don't specify a namespace,
+the kubectl command acts against the `default` namespace.
+-->
+然后 kubectl 假定它正在你的集群中运行。
+kubectl 工具查找该 ServiceAccount 的命名空间
+（该命名空间与 Pod 的命名空间相同）并针对该命名空间进行操作。
+这与集群外运行的情况不同；
+当 kubectl 在集群外运行并且你没有指定命名空间时，
+kubectl 命令会针对 `default` 命名空间进行操作。
 
 <!--
 ## Operations
@@ -168,7 +251,7 @@ Operation       | Syntax    |       Description
 `cluster-info`    | `kubectl cluster-info [flags]` | Display endpoint information about the master and services in the cluster.
 `completion`    | `kubectl completion SHELL [options]` | Output shell completion code for the specified shell (bash or zsh).
 `config`        | `kubectl config SUBCOMMAND [flags]` | Modifies kubeconfig files. See the individual subcommands for details.
-`convert`    | `kubectl convert -f FILENAME [options]` | Convert config files between different API versions. Both YAML and JSON formats are accepted.
+`convert`    | `kubectl convert -f FILENAME [options]` | Convert config files between different API versions. Both YAML and JSON formats are accepted. Note - requires `kubectl-convert` plugin to be installed.
 `cordon`    | `kubectl cordon NODE [options]` | Mark node as unschedulable.
 `cp`    | `kubectl cp <file-spec-src> <file-spec-dest> [options]` | Copy files and directories to and from containers.
 `create`        | `kubectl create -f FILENAME [flags]` | Create one or more resources from a file or stdin.
@@ -200,7 +283,6 @@ Operation       | Syntax    |       Description
 `version`        | `kubectl version [--client] [flags]` | Display the Kubernetes version running on the client and server.
 `wait`    | <code>kubectl wait ([-f FILENAME] &#124; resource.group/resource.name &#124; resource.group [(-l label &#124; --all)]) [--for=delete&#124;--for condition=available] [options]</code> | Experimental: Wait for a specific condition on one or many resources.
 -->
-
 操作             | 语法      |       描述
 -------------------- | -------------------- | --------------------
 `alpha`    | `kubectl alpha SUBCOMMAND [flags]` | 列出与 alpha 特性对应的可用命令，这些特性在 Kubernetes 集群中默认情况下是不启用的。
@@ -208,61 +290,60 @@ Operation       | Syntax    |       Description
 `api-resources`    | `kubectl api-resources [flags]` | 列出可用的 API 资源。
 `api-versions`    | `kubectl api-versions [flags]` | 列出可用的 API 版本。
 `apply`            | `kubectl apply -f FILENAME [flags]`| 从文件或 stdin 对资源应用配置更改。
-`attach`        | `kubectl attach POD -c CONTAINER [-i] [-t] [flags]` | 附加到正在运行的容器，查看输出流或与容器（stdin）交互。
+`attach`        | `kubectl attach POD -c CONTAINER [-i] [-t] [flags]` | 挂接到正在运行的容器，查看输出流或与容器（stdin）交互。
 `auth`    | `kubectl auth [flags] [options]` | 检查授权。
-`autoscale`    | <code>kubectl autoscale (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) [--min=MINPODS] --max=MAXPODS [--cpu-percent=CPU] [flags]</code> | 自动伸缩由副本控制器管理的一组 pod。
+`autoscale`    | <code>kubectl autoscale (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) [--min=MINPODS] --max=MAXPODS [--cpu-percent=CPU] [flags]</code> | 自动扩缩由副本控制器管理的一组 pod。
 `certificate`    | `kubectl certificate SUBCOMMAND [options]` | 修改证书资源。
 `cluster-info`    | `kubectl cluster-info [flags]` | 显示有关集群中主服务器和服务的端口信息。
-`completion`    | `kubectl completion SHELL [options]` | 为指定的 shell （bash 或 zsh）输出 shell 补齐代码。
+`completion`    | `kubectl completion SHELL [options]` | 为指定的 Shell（Bash 或 Zsh）输出 Shell 补齐代码。
 `config`        | `kubectl config SUBCOMMAND [flags]` | 修改 kubeconfig 文件。有关详细信息，请参阅各个子命令。
-`convert`    | `kubectl convert -f FILENAME [options]` | 在不同的 API 版本之间转换配置文件。配置文件可以是 YAML 或 JSON 格式。
+`convert`    | `kubectl convert -f FILENAME [options]` | 在不同的 API 版本之间转换配置文件。配置文件可以是 YAML 或 JSON 格式。注意 - 需要安装 `kubectl-convert` 插件。
 `cordon`    | `kubectl cordon NODE [options]` | 将节点标记为不可调度。
-`cp`    | `kubectl cp <file-spec-src> <file-spec-dest> [options]` | 在容器之间复制文件和目录。
+`cp`    | `kubectl cp <file-spec-src> <file-spec-dest> [options]` | 从容器复制文件、目录或将文件、目录复制到容器。
 `create`        | `kubectl create -f FILENAME [flags]` | 从文件或 stdin 创建一个或多个资源。
-`delete`        | <code>kubectl delete (-f FILENAME &#124; TYPE [NAME &#124; /NAME &#124; -l label &#124; --all]) [flags]</code> | 从文件、标准输入或指定标签选择器、名称、资源选择器或资源中删除资源。
+`delete`        |  <code>kubectl delete (-f FILENAME &#124; TYPE [NAME &#124; /NAME &#124; -l label &#124; --all]) [flags]</code> |  基于文件、标准输入或通过指定标签选择器、名称、资源选择器或资源本身，删除资源。
 `describe`    | <code>kubectl describe (-f FILENAME &#124; TYPE [NAME_PREFIX &#124; /NAME &#124; -l label]) [flags]</code> | 显示一个或多个资源的详细状态。
-`diff`        | `kubectl diff -f FILENAME [flags]`| 将 live 配置和文件或标准输入做对比 (**BETA**)
+`diff`        | `kubectl diff -f FILENAME [flags]`| 在当前起作用的配置和文件或标准输之间作对比 (**BETA**)
 `drain`    | `kubectl drain NODE [options]` | 腾空节点以准备维护。
 `edit`        | <code>kubectl edit (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) [flags]</code> | 使用默认编辑器编辑和更新服务器上一个或多个资源的定义。
-`exec`        | `kubectl exec POD [-c CONTAINER] [-i] [-t] [flags] [-- COMMAND [args...]]` | 对 pod 中的容器执行命令。
-`explain`    | `kubectl explain  [--recursive=false] [flags]` | 获取多种资源的文档。例如 pod, node, service 等。
-`expose`        | <code>kubectl expose (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) [--port=port] [--protocol=TCP&#124;UDP] [--target-port=number-or-name] [--name=name] [--external-ip=external-ip-of-service] [--type=type] [flags]</code> | 将副本控制器、服务或 pod 作为新的 Kubernetes 服务暴露。
+`exec`        | `kubectl exec POD [-c CONTAINER] [-i] [-t] [flags] [-- COMMAND [args...]]` | 对 Pod 中的容器执行命令。
+`explain`    | `kubectl explain  [--recursive=false] [flags]` | 获取多种资源的文档。例如 Pod、Node、Service 等。
+`expose`        | <code>kubectl expose (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) [--port=port] [--protocol=TCP&#124;UDP] [--target-port=number-or-name] [--name=name] [--external-ip=external-ip-of-service] [--type=type] [flags]</code> | 将副本控制器、服务或 Pod 作为新的 Kubernetes 服务暴露。
 `get`        | <code>kubectl get (-f FILENAME &#124; TYPE [NAME &#124; /NAME &#124; -l label]) [--watch] [--sort-by=FIELD] [[-o &#124; --output]=OUTPUT_FORMAT] [flags]</code> | 列出一个或多个资源。
-`kustomize`    | `kubectl kustomize <dir> [flags] [options]` | 列出从 kustomization.yaml 文件中的指令生成的一组 API 资源。参数必须是包含文件的目录的路径，或者是 git 存储库 URL，其路径后缀相对于存储库根目录指定了相同的路径。
+`kustomize`    | <code>kubectl kustomize <dir> [flags] [options]` </code> | 列出从 kustomization.yaml 文件中的指令生成的一组 API 资源。参数必须是包含文件的目录的路径，或者是 git 存储库 URL，其路径后缀相对于存储库根目录指定了相同的路径。
 `label`        | <code>kubectl label (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) KEY_1=VAL_1 ... KEY_N=VAL_N [--overwrite] [--all] [--resource-version=version] [flags]</code> | 添加或更新一个或多个资源的标签。
-`logs`        | `kubectl logs POD [-c CONTAINER] [--follow] [flags]` | 在 pod 中打印容器的日志。
-`options`    | `kubectl options` | 全局命令行选项列表，适用于所有命令。
-`patch`        | <code>kubectl patch (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) --patch PATCH [flags]</code> | 使用策略合并 patch 程序更新资源的一个或多个字段。
+`logs`        | `kubectl logs POD [-c CONTAINER] [--follow] [flags]` |  打印 Pod 中容器的日志。
+`options`    | `kubectl options` | 全局命令行选项列表，这些选项适用于所有命令。
+`patch`        | <code>kubectl patch (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) --patch PATCH [flags]</code> | 使用策略合并流程更新资源的一个或多个字段。
 `plugin`    | `kubectl plugin [flags] [options]` | 提供用于与插件交互的实用程序。
-`port-forward`    | `kubectl port-forward POD [LOCAL_PORT:]REMOTE_PORT [...[LOCAL_PORT_N:]REMOTE_PORT_N] [flags]` | 将一个或多个本地端口转发到一个 pod。
-`proxy`        | `kubectl proxy [--port=PORT] [--www=static-dir] [--www-prefix=prefix] [--api-prefix=prefix] [flags]` | 运行 Kubernetes API 服务器的代理。
-`replace`        | `kubectl replace -f FILENAME` | 从文件或标准输入中替换资源。
-`rollout`    | `kubectl rollout SUBCOMMAND [options]` | 管理资源的部署。有效的资源类型包括：Deployments, DaemonSets 和 StatefulSets。
+`port-forward`    | `kubectl port-forward POD [LOCAL_PORT:]REMOTE_PORT [...[LOCAL_PORT_N:]REMOTE_PORT_N] [flags]` | 将一个或多个本地端口转发到一个 Pod。
+`proxy`        | `kubectl proxy [--port=PORT] [--www=static-dir] [--www-prefix=prefix] [--api-prefix=prefix] [flags]` | 运行访问 Kubernetes API 服务器的代理。
+`replace`        | `kubectl replace -f FILENAME` |  基于文件或标准输入替换资源。
+`rollout`    | `kubectl rollout SUBCOMMAND [options]` | 管理资源的上线。有效的资源类型包括：Deployment、 DaemonSet 和 StatefulSet。
 `run`        | <code>kubectl run NAME --image=image [--env="key=value"] [--port=port] [--dry-run=server &#124; client &#124; none] [--overrides=inline-json] [flags]</code> | 在集群上运行指定的镜像。
 `scale`        | <code>kubectl scale (-f FILENAME &#124; TYPE NAME &#124; TYPE/NAME) --replicas=COUNT [--resource-version=version] [--current-replicas=count] [flags]</code> | 更新指定副本控制器的大小。
-`set`    | `kubectl set SUBCOMMAND [options]` | 配置应用程序资源。
+`set`    | `kubectl set SUBCOMMAND [options]` | 配置应用资源。
 `taint`    | `kubectl taint NODE NAME KEY_1=VAL_1:TAINT_EFFECT_1 ... KEY_N=VAL_N:TAINT_EFFECT_N [options]` | 更新一个或多个节点上的污点。
-`top`    | `kubectl top [flags] [options]` | 显示资源（CPU/内存/存储）的使用情况。
+`top`    | `kubectl top [flags] [options]` | 显示资源（CPU、内存、存储）的使用情况。
 `uncordon`    | `kubectl uncordon NODE [options]` | 将节点标记为可调度。
 `version`        | `kubectl version [--client] [flags]` | 显示运行在客户端和服务器上的 Kubernetes 版本。
-`wait`    | <code>kubectl wait ([-f FILENAME] &#124; resource.group/resource.name &#124; resource.group [(-l label &#124; --all)]) [--for=delete&#124;--for condition=available] [options]</code> | 实验性：等待一种或多种资源的特定条件。
-
+`wait`    | <code>kubectl wait ([-f FILENAME] &#124; resource.group/resource.name &#124; resource.group [(-l label &#124; --all)]) [--for=delete&#124;--for condition=available] [options]</code> | 实验特性：等待一种或多种资源的特定状况。
 
 <!--
 To learn more about command operations, see the [kubectl](/docs/reference/kubectl/kubectl/) reference documentation.
 -->
-了解更多有关命令操作的信息，请参阅 [kubectl](/zh/docs/reference/kubectl/kubectl/) 参考文档。
+了解更多有关命令操作的信息，
+请参阅 [kubectl](/zh-cn/docs/reference/kubectl/kubectl/) 参考文档。
 
 <!--
 ## Resource types
 -->
-
 ## 资源类型
 
 <!--
-The following table includes a list of all the supported resource types and their abbreviated aliases:
+The following table includes a list of all the supported resource types and their abbreviated aliases.
 -->
-下表列出所有受支持的资源类型及其缩写别名:
+下表列出所有受支持的资源类型及其缩写别名。
 
 <!--
 (This output can be retrieved from `kubectl api-resources`, and was accurate as of Kubernetes 1.19.1.)
@@ -272,62 +353,6 @@ The following table includes a list of all the supported resource types and thei
 <!--
 | NAME | SHORTNAMES | APIGROUP | NAMESPACED | KIND |
 |---|---|---|---|---|
-| `bindings` | | | true | Binding |
-| `componentstatuses` | `cs` | | false | ComponentStatus |
-| `configmaps` | `cm` | | true | ConfigMap |
-| `endpoints` | `ep` | | true | Endpoints |
-| `events` | `ev` | | true | Event |
-| `limitranges` | `limits` | | true | LimitRange |
-| `namespaces` | `ns` | | false | Namespace |
-| `nodes` | `no` | | false | Node |
-| `persistentvolumeclaims` | `pvc` | | true | PersistentVolumeClaim |
-| `persistentvolumes` | `pv` | | false | PersistentVolume |
-| `pods` | `po` | | true | Pod |
-| `podtemplates` | | | true | PodTemplate |
-| `replicationcontrollers` | `rc` | | true | ReplicationController |
-| `resourcequotas` | `quota` | | true | ResourceQuota |
-| `secrets` | | | true | Secret |
-| `serviceaccounts` | `sa` | | true | ServiceAccount |
-| `services` | `svc` | | true | Service |
-| `mutatingwebhookconfigurations` | | admissionregistration.k8s.io | false | MutatingWebhookConfiguration |
-| `validatingwebhookconfigurations` | | admissionregistration.k8s.io | false | ValidatingWebhookConfiguration |
-| `customresourcedefinitions` | `crd,crds` | apiextensions.k8s.io | false | CustomResourceDefinition |
-| `apiservices` | | apiregistration.k8s.io | false | APIService |
-| `controllerrevisions` | | apps | true | ControllerRevision |
-| `daemonsets` | `ds` | apps | true | DaemonSet |
-| `deployments` | `deploy` | apps | true | Deployment |
-| `replicasets` | `rs` | apps | true | ReplicaSet |
-| `statefulsets` | `sts` | apps | true | StatefulSet |
-| `tokenreviews` | | authentication.k8s.io | false | TokenReview |
-| `localsubjectaccessreviews` | | authorization.k8s.io | true | LocalSubjectAccessReview |
-| `selfsubjectaccessreviews` | | authorization.k8s.io | false | SelfSubjectAccessReview |
-| `selfsubjectrulesreviews` | | authorization.k8s.io | false | SelfSubjectRulesReview |
-| `subjectaccessreviews` | | authorization.k8s.io | false | SubjectAccessReview |
-| `horizontalpodautoscalers` | `hpa` | autoscaling | true | HorizontalPodAutoscaler |
-| `cronjobs` | `cj` | batch | true | CronJob |
-| `jobs` | | batch | true | Job |
-| `certificatesigningrequests` | `csr` | certificates.k8s.io | false | CertificateSigningRequest |
-| `leases` | | coordination.k8s.io | true | Lease |
-| `endpointslices` |  | discovery.k8s.io | true | EndpointSlice |
-| `events` | `ev` | events.k8s.io | true | Event |
-| `ingresses` | `ing` | extensions | true | Ingress |
-| `flowschemas` |  | flowcontrol.apiserver.k8s.io | false | FlowSchema |
-| `prioritylevelconfigurations` |  | flowcontrol.apiserver.k8s.io | false | PriorityLevelConfiguration |
-| `ingressclasses` |  | networking.k8s.io | false | IngressClass |
-| `ingresses` | `ing` | networking.k8s.io | true | Ingress |
-| `networkpolicies` | `netpol` | networking.k8s.io | true | NetworkPolicy |
-| `runtimeclasses` |  | node.k8s.io | false | RuntimeClass |
-| `poddisruptionbudgets` | `pdb` | policy | true | PodDisruptionBudget |
-| `podsecuritypolicies` | `psp` | policy | false | PodSecurityPolicy |
-| `clusterrolebindings` | | rbac.authorization.k8s.io | false | ClusterRoleBinding |
-| `clusterroles` | | rbac.authorization.k8s.io | false | ClusterRole |
-| `rolebindings` | | rbac.authorization.k8s.io | true | RoleBinding |
-| `roles` | | rbac.authorization.k8s.io | true | Role |
-| `priorityclasses` | `pc` | scheduling.k8s.io | false | PriorityClass |
-| `csidrivers` | | storage.k8s.io | false | CSIDriver |
-| `csinodes` | | storage.k8s.io | false | CSINode |
-| `storageclasses` | `sc` | storage.k8s.io | false | StorageClass |
-| `volumeattachments` | | storage.k8s.io | false | VolumeAttachment |
 -->
 | 资源名 | 缩写名 | API 分组 | 按命名空间 | 资源类型 |
 |---|---|---|---|---|
@@ -388,7 +413,6 @@ The following table includes a list of all the supported resource types and thei
 | `storageclasses` | `sc` | storage.k8s.io | false | StorageClass |
 | `volumeattachments` | | storage.k8s.io | false | VolumeAttachment |
 
-
 <!--
 ## Output options
 -->
@@ -398,7 +422,8 @@ The following table includes a list of all the supported resource types and thei
 <!--
 Use the following sections for information about how you can format or sort the output of certain commands. For details about which commands support the various output options, see the [kubectl](/docs/reference/kubectl/kubectl/) reference documentation.
 -->
-有关如何格式化或排序某些命令的输出的信息，请使用以下部分。有关哪些命令支持各种输出选项的详细信息，请参阅[kubectl](/zh/docs/reference/kubectl/kubectl/) 参考文档。
+有关如何格式化或排序某些命令的输出的信息，请参阅以下章节。有关哪些命令支持不同输出选项的详细信息，
+请参阅 [kubectl](/zh-cn/docs/reference/kubectl/kubectl/) 参考文档。
 
 <!--
 ### Formatting output
@@ -408,7 +433,8 @@ Use the following sections for information about how you can format or sort the
 <!--
 The default output format for all `kubectl` commands is the human readable plain-text format. To output details to your terminal window in a specific format, you can add either the `-o` or `--output` flags to a supported `kubectl` command.
 -->
-所有 `kubectl` 命令的默认输出格式都是人类可读的纯文本格式。要以特定格式向终端窗口输出详细信息，可以将 `-o` 或 `--output` 参数添加到受支持的 `kubectl` 命令中。
+所有 `kubectl` 命令的默认输出格式都是人类可读的纯文本格式。要以特定格式在终端窗口输出详细信息，
+可以将 `-o` 或 `--output` 参数添加到受支持的 `kubectl` 命令中。
 
 <!--
 #### Syntax
@@ -416,13 +442,13 @@ The default output format for all `kubectl` commands is the human readable plain
 #### 语法
 
 ```shell
-kubectl [command] [TYPE] [NAME] -o=<output_format>
+kubectl [command] [TYPE] [NAME] -o <output_format>
 ```
 
 <!--
 Depending on the `kubectl` operation, the following output formats are supported:
 -->
-根据 `kubectl` 操作，支持以下输出格式：
+取决于具体的 `kubectl` 操作，支持的输出格式如下：
 
 <!--
 Output format | Description
@@ -436,18 +462,17 @@ Output format | Description
 `-o wide`     | Output in the plain-text format with any additional information. For pods, the node name is included.
 `-o yaml`     | Output a YAML formatted API object.
 -->
-Output format | Description
+输出格式  |  描述
 --------------| -----------
 `-o custom-columns=<spec>` | 使用逗号分隔的[自定义列](#custom-columns)列表打印表。
 `-o custom-columns-file=<filename>` | 使用 `<filename>` 文件中的[自定义列](#custom-columns)模板打印表。
 `-o json`     | 输出 JSON 格式的 API 对象
-`-o jsonpath=<template>` | 打印 [jsonpath](/zh/docs/reference/kubectl/jsonpath/) 表达式定义的字段
-`-o jsonpath-file=<filename>` | 打印 `<filename>` 文件中 [jsonpath](/zh/docs/reference/kubectl/jsonpath/) 表达式定义的字段。
+`-o jsonpath=<template>` | 打印 [jsonpath](/zh-cn/docs/reference/kubectl/jsonpath/) 表达式定义的字段
+`-o jsonpath-file=<filename>` | 打印 `<filename>` 文件中 [jsonpath](/zh-cn/docs/reference/kubectl/jsonpath/) 表达式定义的字段。
 `-o name`     | 仅打印资源名称而不打印任何其他内容。
-`-o wide`     | 以纯文本格式输出，包含任何附加信息。对于 pod 包含节点名。
+`-o wide`     | 以纯文本格式输出，包含所有附加信息。对于 Pod 包含节点名。
 `-o yaml`     | 输出 YAML 格式的 API 对象。
 
-
 <!--
 ##### Example
 -->
@@ -457,27 +482,29 @@ Output format | Description
 <!--
 In this example, the following command outputs the details for a single pod as a YAML formatted object:
 -->
-在此示例中，以下命令将单个 pod 的详细信息输出为 YAML 格式的对象：
+在此示例中，以下命令将单个 Pod 的详细信息输出为 YAML 格式的对象：
 
 ```shell
 kubectl get pod web-pod-13je7 -o yaml
 ```
-
 <!--
 Remember: See the [kubectl](/docs/reference/kubectl/kubectl/) reference documentation
 for details about which output format is supported by each command.
 -->
-请记住：有关每个命令支持哪种输出格式的详细信息，请参阅 [kubectl](/zh/docs/reference/kubectl/kubectl/) 参考文档。
+请记住：有关每个命令支持哪种输出格式的详细信息，
+请参阅 [kubectl](/zh-cn/docs/reference/kubectl/kubectl/) 参考文档。
 
 <!--
 #### Custom columns
 -->
-#### 自定义列
+#### 自定义列   {#custom-columns}
 
 <!--
-To define custom columns and output only the details that you want into a table, you can use the `custom-columns` option. You can choose to define the custom columns inline or use a template file: `-o=custom-columns=<spec>` or `-o=custom-columns-file=<filename>`.
+To define custom columns and output only the details that you want into a table, you can use the `custom-columns` option.
+You can choose to define the custom columns inline or use a template file: `-o custom-columns=<spec>` or `-o custom-columns-file=<filename>`.
 -->
-要定义自定义列并仅将所需的详细信息输出到表中，可以使用该 custom-columns 选项。你可以选择内联定义自定义列或使用模板文件：`-o=custom-columns=<spec>` 或 `-o=custom-columns-file=<filename>`。
+要定义自定义列并仅将所需的详细信息输出到表中，可以使用 `custom-columns` 选项。
+你可以选择内联定义自定义列或使用模板文件：`-o custom-columns=<spec>` 或 `-o custom-columns-file=<filename>`。
 
 <!--
 ##### Examples
@@ -515,7 +542,7 @@ metadata.name metadata.resourceVersion
 <!--
 The result of running either command is similar to:
 -->
-运行任何一个命令的结果类似于:
+运行这两个命令之一的结果类似于：
 
 ```shell
 NAME           RSRC
@@ -550,7 +577,7 @@ This feature is enabled by default. To disable it, add the
 <!--
 To print information about the status of a pod, use a command like the following:
 -->
-要打印有关 pod 状态的信息，请使用如下命令：
+要打印有关 Pod 状态的信息，请使用如下命令：
 
 ```shell
 kubectl get pods <pod-name> --server-print=false
@@ -574,7 +601,9 @@ pod-name   1m
 <!--
 To output objects to a sorted list in your terminal window, you can add the `--sort-by` flag to a supported `kubectl` command. Sort your objects by specifying any numeric or string field with the `--sort-by` flag. To specify a field, use a [jsonpath](/docs/reference/kubectl/jsonpath/) expression.
 -->
-要将对象排序后输出到终端窗口，可以将 `--sort-by` 参数添加到支持的 `kubectl` 命令。通过使用 `--sort-by` 参数指定任何数字或字符串字段来对对象进行排序。要指定字段，请使用 [jsonpath](/zh/docs/reference/kubectl/jsonpath/) 表达式。
+要将对象排序后输出到终端窗口，可以将 `--sort-by` 参数添加到支持的 `kubectl` 命令。
+通过使用 `--sort-by` 参数指定任何数字或字符串字段来对对象进行排序。
+要指定字段，请使用 [jsonpath](/zh-cn/docs/reference/kubectl/jsonpath/) 表达式。
 
 <!--
 #### Syntax
@@ -593,7 +622,7 @@ kubectl [command] [TYPE] [NAME] --sort-by=<jsonpath_exp>
 <!--
 To print a list of pods sorted by name, you run:
 -->
-要打印按名称排序的 pod 列表，请运行：
+要打印按名称排序的 Pod 列表，请运行：
 
 ```shell
 kubectl get pods --sort-by=.metadata.name
@@ -633,7 +662,7 @@ kubectl apply -f example-service.yaml
 # 使用 example-controller.yaml 中的定义创建 replication controller。
 kubectl apply -f example-controller.yaml
 
-# 使用 <directory> 路径下的任意 .yaml, .yml, 或 .json 文件 创建对象。
+# 使用 <directory> 路径下的任意 .yaml、.yml 或 .json 文件 创建对象。
 kubectl apply -f <directory>
 ```
 
@@ -644,18 +673,29 @@ kubectl apply -f <directory>
 
 <!--
 # List all pods in plain-text output format.
+kubectl get pods
+
 # List all pods in plain-text output format and include additional information (such as node name).
+kubectl get pods -o wide
+
 # List the replication controller with the specified name in plain-text output format. Tip: You can shorten and replace the 'replicationcontroller' resource type with the alias 'rc'.
+kubectl get replicationcontroller <rc-name>
+
 # List all replication controllers and services together in plain-text output format.
-# List all daemon sets, including uninitialized ones, in plain-text output format.
+kubectl get rc,services
+
+# List all daemon sets in plain-text output format.
+kubectl get ds
+
 # List all pods running on node server01
+kubectl get pods --field-selector=spec.nodeName=server01
 -->
 
 ```shell
-# 以纯文本输出格式列出所有 pod。
+# 以纯文本输出格式列出所有 Pod。
 kubectl get pods
 
-# 以纯文本输出格式列出所有 pod，并包含附加信息(如节点名)。
+# 以纯文本输出格式列出所有 Pod，并包含附加信息(如节点名)。
 kubectl get pods -o wide
 
 # 以纯文本输出格式列出具有指定名称的副本控制器。提示：你可以使用别名 'rc' 缩短和替换 'replicationcontroller' 资源类型。
@@ -667,7 +707,7 @@ kubectl get rc,services
 # 以纯文本输出格式列出所有守护程序集，包括未初始化的守护程序集。
 kubectl get ds --include-uninitialized
 
-# 列出在节点 server01 上运行的所有 pod
+# 列出在节点 server01 上运行的所有 Pod
 kubectl get pods --field-selector=spec.nodeName=server01
 ```
 
@@ -687,22 +727,22 @@ kubectl describe pods/<pod-name>
 # Remember: Any pods that are created by the replication controller get prefixed with the name of the replication controller.
 kubectl describe pods <rc-name>
 
-# Describe all pods, not including uninitialized ones
+# Describe all pods
 kubectl describe pods
 -->
 
 ```shell
-# 显示名称为 <node-name> 的节点的详细信息。
+# 显示名为 <pod-name> 的 Pod 的详细信息。
 kubectl describe nodes <node-name>
 
-# 显示名为 <pod-name> 的 pod 的详细信息。
+# 显示名为 <pod-name> 的 Pod 的详细信息。
 kubectl describe pods/<pod-name>
 
-# 显示由名为 <rc-name> 的副本控制器管理的所有 pod 的详细信息。
-# 记住：副本控制器创建的任何 pod 都以复制控制器的名称为前缀。
+# 显示由名为 <rc-name> 的副本控制器管理的所有 Pod 的详细信息。
+# 记住：副本控制器创建的任何 Pod 都以副本控制器的名称为前缀。
 kubectl describe pods <rc-name>
 
-# 描述所有的 pod，不包括未初始化的 pod
+# 描述所有的 Pod
 kubectl describe pods
 ```
 
@@ -719,17 +759,18 @@ API server to build a view for the user. For example, the `kubectl describe node
 command retrieves not only the information about the node, but also a summary of
 the pods running on it, the events generated for the node etc.
 -->
-`kubectl get` 命令通常用于检索同一资源类型的一个或多个资源。
-它具有丰富的参数，允许你使用 `-o` 或 `--output` 参数自定义输出格式。你可以指定 `-w` 或 `--watch` 参数以开始观察特定对象的更新。
+`kubectl get` 命令通常用于检索同一资源类别的一个或多个资源。
+它具有丰富的参数，允许你使用 `-o` 或 `--output` 参数自定义输出格式。
+你可以指定 `-w` 或 `--watch` 参数以开始监测特定对象的更新。
 `kubectl describe` 命令更侧重于描述指定资源的许多相关方面。它可以调用对 `API 服务器` 的多个 API 调用来为用户构建视图。
-例如，该 `kubectl describe node` 命令不仅检索有关节点的信息，还检索在其上运行的 pod 的摘要，为节点生成的事件等。
+例如，该 `kubectl describe node` 命令不仅检索有关节点的信息，还检索在其上运行的 Pod 的摘要，为节点生成的事件等。
 
 {{< /note >}}
 
 <!--
 `kubectl delete` - Delete resources either from a file, stdin, or specifying label selectors, names, resource selectors, or resources.
 -->
-`kubectl delete` - 从文件、stdin 或指定标签选择器、名称、资源选择器或资源中删除资源。
+`kubectl delete` - 基于文件、标准输入或通过指定标签选择器、名称、资源选择器或资源来删除资源。
 
 <!--
 ```shell
@@ -746,20 +787,20 @@ kubectl delete pods --all
 -->
 
 ```shell
-# 使用 pod.yaml 文件中指定的类型和名称删除 pod。
+# 使用 pod.yaml 文件中指定的类型和名称删除 Pod。
 kubectl delete -f pod.yaml
 
 # 删除所有带有 '<label-key>=<label-value>' 标签的 Pod 和服务。
 kubectl delete pods,services -l <label-key>=<label-value>
 
-# 删除所有 pod，包括未初始化的 pod。
+# 删除所有 Pod，包括未初始化的 Pod。
 kubectl delete pods --all
 ```
 
 <!--
 `kubectl exec` - Execute a command against a container in a pod.
 -->
-`kubectl exec` - 对 pod 中的容器执行命令。
+`kubectl exec` - 对 Pod 中的容器执行命令。
 
 <!--
 # Get output from running 'date' from pod <pod-name>. By default, output is from the first container.
@@ -773,13 +814,13 @@ kubectl exec -ti <pod-name> -- /bin/bash
 -->
 
 ```shell
-# 从 pod <pod-name> 中获取运行 'date' 的输出。默认情况下，输出来自第一个容器。
+# 从 Pod <pod-name> 中获取运行 'date' 的输出。默认情况下，输出来自第一个容器。
 kubectl exec <pod-name> -- date
 
-# 运行输出 'date' 获取在容器的 <container-name> 中 pod <pod-name> 的输出。
+# 运行输出 'date' 获取在 Pod <pod-name> 中容器 <container-name> 的输出。
 kubectl exec <pod-name> -c <container-name> -- date
 
-# 获取一个交互 TTY 并运行 /bin/bash <pod-name >。默认情况下，输出来自第一个容器。
+# 获取一个交互 TTY 并在 Pod  <pod-name> 中运行 /bin/bash。默认情况下，输出来自第一个容器。
 kubectl exec -ti <pod-name> -- /bin/bash
 ```
 
@@ -797,13 +838,34 @@ kubectl logs -f <pod-name>
 -->
 
 ```shell
-# 从 pod 返回日志快照。
+# 返回 Pod <pod-name> 的日志快照。
 kubectl logs <pod-name>
 
-# 从 pod <pod-name> 开始流式传输日志。这类似于 'tail -f' Linux 命令。
+# 从 Pod <pod-name> 开始流式传输日志。这类似于 'tail -f' Linux 命令。
 kubectl logs -f <pod-name>
 ```
 
+<!--
+`kubectl diff` - View a diff of the proposed updates to a cluster.
+
+```shell
+# Diff resources included in "pod.json".
+kubectl diff -f pod.json
+
+# Diff file read from stdin.
+cat service.yaml | kubectl diff -f -
+```
+-->
+`kubectl diff` - 查看集群建议更新的差异。
+
+```shell
+# “pod.json”中包含的差异资源。
+kubectl diff -f pod.json
+
+# 从标准输入读取的差异文件。
+cat service.yaml | kubectl diff -f -
+```
+
 <!--
 ## Examples: Creating and using plugins
 -->
@@ -820,11 +882,31 @@ Use the following set of examples to help you familiarize yourself with writing
 # create a simple plugin in any language and name the resulting executable file
 # so that it begins with the prefix "kubectl-"
 cat ./kubectl-hello
+```
+-->
+```shell
+# 用任何语言创建一个简单的插件，并为生成的可执行文件命名
+# 以前缀 "kubectl-" 开始
+cat ./kubectl-hello
+```
+
+<!--
+```shell
 #!/bin/sh
 
 # this plugin prints the words "hello world"
 echo "hello world"
 ```
+-->
+
+```shell
+#!/bin/sh
+
+# 这个插件打印单词 "hello world"
+echo "hello world"
+```
+
+<!--
 With a plugin written, let's make it executable:
 ```bash
 chmod a+x ./kubectl-hello
@@ -838,20 +920,10 @@ sudo chown root:root /usr/local/bin
 kubectl hello
 ```
 -->
-```shell
-# 用任何语言创建一个简单的插件，并为生成的可执行文件命名
-# 以前缀 "kubectl-" 开始
-cat ./kubectl-hello
-```
 
-```shell
-#!/bin/sh
-
-# 这个插件打印单词 "hello world"
-echo "hello world"
-```
 这个插件写好了，把它变成可执行的：
 ```bash
+
 sudo chmod a+x ./kubectl-hello
 
 # 并将其移动到路径中的某个位置
@@ -862,6 +934,7 @@ sudo chown root:root /usr/local/bin
 # 你可以开始使用这个插件，从 kubectl 调用它，就像它是一个常规命令一样
 kubectl hello
 ```
+
 ```
 hello world
 ```
@@ -873,7 +946,7 @@ sudo rm /usr/local/bin/kubectl-hello
 ```
 -->
 ```shell
-# 你可以"卸载"一个插件，只需从你的路径中删除它
+# 你可以"卸载"一个插件，只需从你的 $PATH 中删除它
 sudo rm /usr/local/bin/kubectl-hello
 ```
 
@@ -887,13 +960,6 @@ kubectl plugin list
 ```
 <!--
 The output is similar to:
-```
-The following kubectl-compatible plugins are available:
-
-/usr/local/bin/kubectl-hello
-/usr/local/bin/kubectl-foo
-/usr/local/bin/kubectl-bar
-```
 -->
 输出类似于：
 ```
@@ -911,23 +977,12 @@ sudo chmod -x /usr/local/bin/kubectl-foo # remove execute permission
 kubectl plugin list
 ```
 -->
-`kubectl plugin list`指令也可以向你告警哪些插件被运行，或是被其它插件覆盖了,例如:
+`kubectl plugin list` 指令也可以向你告警哪些插件被运行，或是被其它插件覆盖了，例如：
 ```shell
 sudo chmod -x /usr/local/bin/kubectl-foo # 删除执行权限
 kubectl plugin list
 ```
-<!--
-```
-The following kubectl-compatible plugins are available:
 
-/usr/local/bin/kubectl-hello
-/usr/local/bin/kubectl-foo
-  - warning: /usr/local/bin/kubectl-foo identified as a plugin, but it is not executable
-/usr/local/bin/kubectl-bar
-
-error: one plugin warning was found
-```
--->
 ```
 The following kubectl-compatible plugins are available:
 
@@ -945,10 +1000,6 @@ of the existing kubectl commands:
 -->
 你可以将插件视为在现有 kubectl 命令之上构建更复杂功能的一种方法：
 
-<!--
-```shell
-cat ./kubectl-whoami```
--->
 ```shell
 cat ./kubectl-whoami
 ```
@@ -957,7 +1008,7 @@ cat ./kubectl-whoami
 The next few examples assume that you already made `kubectl-whoami` have
 the following contents:
 -->
-接下来的几个示例假设你已经将 `kubectl-whoami` 设置为以下内容:
+接下来的几个示例假设你已经将 `kubectl-whoami` 设置为以下内容：
 
 <!--
 ```shell
@@ -979,7 +1030,7 @@ kubectl config view --template='{{ range .contexts }}{{ if eq .name "'$(kubectl
 Running the above command gives you an output containing the user for the
 current context in your KUBECONFIG file:
 -->
-运行以上命令将为你提供一个输出，其中包含 KUBECONFIG 文件中当前上下文的用户:
+运行以上命令将为你提供一个输出，其中包含 KUBECONFIG 文件中当前上下文的用户：
 
 <!--
 ```shell
@@ -1005,21 +1056,22 @@ kubectl whoami
 Current user: plugins-user
 ```
 
-<!--
-To find out more about plugins, take a look at the [example cli plugin](https://github.com/kubernetes/sample-cli-plugin).
--->
-要了解关于插件的更多信息，请查看[示例 cli 插件](https://github.com/kubernetes/sample-cli-plugin)。
-
-
-
 ## {{% heading "whatsnext" %}}
 
 
 <!--
-* Start using the [kubectl](/docs/reference/generated/kubectl/kubectl-commands/) commands.
-
-* To find out more about plugins, take a look at the [example cli plugin](https://github.com/kubernetes/sample-cli-plugin).
+* Read the `kubectl` reference documentation:
+  * the kubectl [command reference](/docs/reference/kubectl/kubectl/)
+  * the [command line arguments](/docs/reference/generated/kubectl/kubectl-commands/) reference
+* Learn about [`kubectl` usage conventions](/docs/reference/kubectl/conventions/)
+* Read about [JSONPath support](/docs/reference/kubectl/jsonpath/) in kubectl
+* Read about how to [extend kubectl with plugins](/docs/tasks/extend-kubectl/kubectl-plugins)
+  * To find out more about plugins, take a look at the [example CLI plugin](https://github.com/kubernetes/sample-cli-plugin).
 -->
-* 开始使用 [kubectl](/docs/reference/generated/kubectl/kubectl-commands/) 命令。
-
-* 查看更多[示例 cli 插件](https://github.com/kubernetes/sample-cli-plugin)。
+* 阅读 `kubectl` 参考文档：
+  * kubectl [命令参考](/zh-cn/docs/reference/kubectl/kubectl/)
+  * 参考[命令行参数](/docs/reference/generated/kubectl/kubectl-commands/)
+* 学习关于 [`kubectl` 使用约定](/zh-cn/docs/reference/kubectl/conventions/)
+* 阅读 kubectl 中的 [JSONPath 支持](/zh-cn/docs/reference/kubectl/jsonpath/)
+* 了解如何[使用插件扩展 kubectl](/zh-cn/docs/tasks/extend-kubectl/kubectl-plugins)
+  * 查看更多[示例 cli 插件](https://github.com/kubernetes/sample-cli-plugin)。
\ No newline at end of file
diff --git a/content/zh/docs/reference/kubectl/cheatsheet.md b/content/zh-cn/docs/reference/kubectl/cheatsheet.md
similarity index 79%
rename from content/zh/docs/reference/kubectl/cheatsheet.md
rename to content/zh-cn/docs/reference/kubectl/cheatsheet.md
index 97db36722b..bae31b46bb 100644
--- a/content/zh/docs/reference/kubectl/cheatsheet.md
+++ b/content/zh-cn/docs/reference/kubectl/cheatsheet.md
@@ -1,6 +1,7 @@
 ---
 title: kubectl 备忘单
 content_type: concept
+weight: 10
 card:
   name: reference
   weight: 30
@@ -12,10 +13,12 @@ reviewers:
 - krousey
 - clove
 content_type: concept
+weight: 10 # highlight it
 card:
   name: reference
   weight: 30
---- -->
+---
+-->
 
 <!-- overview -->
 
@@ -23,7 +26,7 @@ card:
 This page contains a list of commonly used `kubectl` commands and flags.
 -->
 
-本页列举了常用的 “kubectl” 命令和标志
+本页列举了常用的 `kubectl` 命令和标志。
 
 <!-- body -->
 
@@ -47,14 +50,14 @@ You can also use a shorthand alias for `kubectl` that also works with completion
 -->
 ```bash
 source <(kubectl completion bash) # 在 bash 中设置当前 shell 的自动补全，要先安装 bash-completion 包。
-echo "source <(kubectl completion bash)" >> ~/.bashrc # 在您的 bash shell 中永久的添加自动补全
+echo "source <(kubectl completion bash)" >> ~/.bashrc # 在你的 bash shell 中永久地添加自动补全
 ```
 
-您还可以为 `kubectl` 使用一个速记别名，该别名也可以与 completion 一起使用：
+你还可以在补全时为 `kubectl` 使用一个速记别名：
 
 ```bash
 alias k=kubectl
-complete -F __start_kubectl k
+complete -o default -F __start_kubectl k
 ```
 
 ### ZSH
@@ -62,25 +65,37 @@ complete -F __start_kubectl k
 <!--
 ```bash
 source <(kubectl completion zsh)  # setup autocomplete in zsh into the current shell
-echo "[[ $commands[kubectl] ]] && source <(kubectl completion zsh)" >> ~/.zshrc # add autocomplete permanently to your zsh shell
+echo '[[ $commands[kubectl] ]] && source <(kubectl completion zsh)' >> ~/.zshrc # add autocomplete permanently to your zsh shell
 ```
 -->
 ```bash
 source <(kubectl completion zsh)  # 在 zsh 中设置当前 shell 的自动补全
-echo "[[ $commands[kubectl] ]] && source <(kubectl completion zsh)" >> ~/.zshrc # 在您的 zsh shell 中永久的添加自动补全
+echo '[[ $commands[kubectl] ]] && source <(kubectl completion zsh)' >> ~/.zshrc # 在你的 zsh shell 中永久地添加自动补全
 ```
 
 <!--
-## Kubectl Context and Configuration
+### A Note on --all-namespaces
+-->
+### 关于 --all-namespaces 的一点说明
+
+<!--
+Appending `--all-namespaces` happens frequently enough where you should be aware of the  shorthand for `--all-namespaces`:
+-->
+我们经常用到 `--all-namespaces` 参数，你应该要知道它的简写：
+
+```kubectl -A```
+
+<!--
+## Kubectl context and configuration
 
 Set which Kubernetes cluster `kubectl` communicates with and modifies configuration
 information. See [Authenticating Across Clusters with kubeconfig](/docs/tasks/access-application-cluster/configure-access-multiple-clusters/) documentation for
 detailed config file information.
 -->
-##  Kubectl 上下文和配置
+## Kubectl 上下文和配置
 
 设置 `kubectl` 与哪个 Kubernetes 集群进行通信并修改配置信息。
-查看[使用 kubeconfig 跨集群授权访问](/zh/docs/tasks/access-application-cluster/configure-access-multiple-clusters/)
+查看[使用 kubeconfig 跨集群授权访问](/zh-cn/docs/tasks/access-application-cluster/configure-access-multiple-clusters/)
 文档获取配置文件详细信息。
 
 <!--
@@ -98,9 +113,14 @@ kubectl config view -o jsonpath='{.users[?(@.name == "e2e")].user.password}'
 kubectl config view -o jsonpath='{.users[].name}'    # display the first user
 kubectl config view -o jsonpath='{.users[*].name}'   # get a list of users
 kubectl config get-contexts                          # display list of contexts
-kubectl config current-context           # display the current-context
+kubectl config current-context                       # display the current-context
 kubectl config use-context my-cluster-name           # set the default context to my-cluster-name
 
+kubectl config set-cluster my-cluster-name           # set a cluster entry in the kubeconfig
+
+# configure the URL to a proxy server to use for requests made by this client in the kubeconfig
+kubectl config set-cluster my-cluster-name --proxy-url=my-proxy-url
+
 # add a new user to your kubeconf that supports basic auth
 kubectl config set-credentials kubeuser/foo.kubernetes.com --username=kubeuser --password=kubepassword
 
@@ -112,13 +132,19 @@ kubectl config set-context gce --user=cluster-admin --namespace=foo \
   && kubectl config use-context gce
 
 kubectl config unset users.foo                       # delete user foo
+
+# short alias to set/show context/namespace (only works for bash and bash-compatible shells, current context to be set before using kn to set namespace) 
+alias kx='f() { [ "$1" ] && kubectl config use-context $1 || kubectl config current-context ; } ; f'
+alias kn='f() { [ "$1" ] && kubectl config set-context --current --namespace $1 || kubectl config view --minify | grep namespace | cut -d" " -f6 ; } ; f'
 ```
 -->
 ```bash
 kubectl config view # 显示合并的 kubeconfig 配置。
 
 # 同时使用多个 kubeconfig 文件并查看合并的配置
-KUBECONFIG=~/.kube/config:~/.kube/kubconfig2 kubectl config view
+KUBECONFIG=~/.kube/config:~/.kube/kubconfig2
+
+kubectl config view
 
 # 获取 e2e 用户的密码
 kubectl config view -o jsonpath='{.users[?(@.name == "e2e")].user.password}'
@@ -129,6 +155,11 @@ kubectl config get-contexts                          # 显示上下文列表
 kubectl config current-context                       # 展示当前所处的上下文
 kubectl config use-context my-cluster-name           # 设置默认的上下文为 my-cluster-name
 
+kubectl config set-cluster my-cluster-name           # 在 kubeconfig 中设置集群条目
+
+# 在 kubeconfig 中配置代理服务器的 URL，以用于该客户端的请求
+kubectl config set-cluster my-cluster-name --proxy-url=my-proxy-url
+
 # 添加新的用户配置到 kubeconf 中，使用 basic auth 进行身份认证
 kubectl config set-credentials kubeuser/foo.kubernetes.com --username=kubeuser --password=kubepassword
 
@@ -140,6 +171,11 @@ kubectl config set-context gce --user=cluster-admin --namespace=foo \
   && kubectl config use-context gce
 
 kubectl config unset users.foo                       # 删除用户 foo
+
+# 设置或显示 context / namespace 的短别名
+# （仅适用于 bash 和 bash 兼容的 shell，在使用 kn 设置命名空间之前要先设置 current-context）
+alias kx='f() { [ "$1" ] && kubectl config use-context $1 || kubectl config current-context ; } ; f'
+alias kn='f() { [ "$1" ] && kubectl config set-context --current --namespace $1 || kubectl config view --minify | grep namespace | cut -d" " -f6 ; } ; f'
 ```
 
 <!--
@@ -147,10 +183,11 @@ kubectl config unset users.foo                       # 删除用户 foo
 `apply` manages applications through files defining Kubernetes resources. It creates and updates resources in a cluster through running `kubectl apply`. This is the recommended way of managing Kubernetes applications on production. See [Kubectl Book](https://kubectl.docs.kubernetes.io).
 -->
 ## Kubectl apply
+
 `apply` 通过定义 Kubernetes 资源的文件来管理应用。
 它通过运行 `kubectl apply` 在集群中创建和更新资源。
 这是在生产中管理 Kubernetes 应用的推荐方法。
-参见 [Kubectl 文档](https://kubectl.docs.kubernetes.io)。
+参见 [Kubectl 文档](https://kubectl.docs.kubernetes.io/zh/)。
 
 <!--
 ## Creating objects
@@ -172,10 +209,10 @@ kubectl apply -f https://git.io/vPieo          # create resource(s) from url
 kubectl create deployment nginx --image=nginx  # start a single instance of nginx
 
 # create a Job which prints "Hello World"
-kubectl create job hello --image=busybox -- echo "Hello World" 
+kubectl create job hello --image=busybox:1.28 -- echo "Hello World"
 
 # create a CronJob that prints "Hello World" every minute
-kubectl create cronjob hello --image=busybox   --schedule="*/1 * * * *" -- echo "Hello World"    
+kubectl create cronjob hello --image=busybox:1.28   --schedule="*/1 * * * *" -- echo "Hello World"
 
 kubectl explain pods                           # get the documentation for pod manifests
 
@@ -188,7 +225,7 @@ metadata:
 spec:
   containers:
   - name: busybox
-    image: busybox
+    image: busybox:1.28
     args:
     - sleep
     - "1000000"
@@ -200,7 +237,7 @@ metadata:
 spec:
   containers:
   - name: busybox
-    image: busybox
+    image: busybox:1.28
     args:
     - sleep
     - "1000"
@@ -227,10 +264,10 @@ kubectl apply -f https://git.io/vPieo         # 从 URL 中创建资源
 kubectl create deployment nginx --image=nginx # 启动单实例 nginx
 
 # 创建一个打印 “Hello World” 的 Job
-kubectl create job hello --image=busybox -- echo "Hello World" 
+kubectl create job hello --image=busybox:1.28 -- echo "Hello World" 
 
 # 创建一个打印 “Hello World” 间隔1分钟的 CronJob
-kubectl create cronjob hello --image=busybox   --schedule="*/1 * * * *" -- echo "Hello World"    
+kubectl create cronjob hello --image=busybox:1.28   --schedule="*/1 * * * *" -- echo "Hello World"    
 
 kubectl explain pods                          # 获取 pod 清单的文档说明
 
@@ -243,7 +280,7 @@ metadata:
 spec:
   containers:
   - name: busybox
-    image: busybox
+    image: busybox:1.28
     args:
     - sleep
     - "1000000"
@@ -255,7 +292,7 @@ metadata:
 spec:
   containers:
   - name: busybox
-    image: busybox
+    image: busybox:1.28
     args:
     - sleep
     - "1000"
@@ -310,9 +347,12 @@ kubectl get pods --selector=app=cassandra -o \
 kubectl get configmap myconfig \
   -o jsonpath='{.data.ca\.crt}'
 
+# Retrieve a base64 encoded value with dashes instead of underscores.
+kubectl get secret my-secret --template='{{index .data "key-name-with-dashes"}}'
+
 # Get all worker nodes (use a selector to exclude results that have a label
-# named 'node-role.kubernetes.io/master')
-kubectl get node --selector='!node-role.kubernetes.io/master'
+# named 'node-role.kubernetes.io/control-plane')
+kubectl get node --selector='!node-role.kubernetes.io/control-plane'
 
 # Get all running pods in the namespace
 kubectl get pods --field-selector=status.phase=Running
@@ -350,14 +390,17 @@ kubectl diff -f ./my-manifest.yaml
 
 # Produce a period-delimited tree of all keys returned for nodes
 # Helpful when locating a key within a complex nested JSON structure
-kubectl get nodes -o json | jq -c 'path(..)|[.[]|tostring]|join(".")'
+kubectl get nodes -o json | jq -c 'paths|join(".")'
 
 # Produce a period-delimited tree of all keys returned for pods, etc
-kubectl get pods -o json | jq -c 'path(..)|[.[]|tostring]|join(".")'
+kubectl get pods -o json | jq -c 'paths|join(".")'
 
 # Produce ENV for all pods, assuming you have a default container for the pods, default namespace and the `env` command is supported.
 # Helpful when running any supported command across all pods, not just `env`
-for pod in $(kubectl get po --output=jsonpath={.items..metadata.name}); do echo $pod && kubectl exec -it $pod env; done
+for pod in $(kubectl get po --output=jsonpath={.items..metadata.name}); do echo $pod && kubectl exec -it $pod -- env; done
+
+# Get a deployment's status subresource
+kubectl get deployment nginx-deployment --subresource=status
 ```
 -->
 ```bash
@@ -390,8 +433,11 @@ kubectl get pods --selector=app=cassandra -o \
 kubectl get configmap myconfig \
   -o jsonpath='{.data.ca\.crt}'
 
-# 获取所有工作节点（使用选择器以排除标签名称为 'node-role.kubernetes.io/master' 的结果）
-kubectl get node --selector='!node-role.kubernetes.io/master'
+# 检索一个 base64 编码的值，其中的键名应该包含减号而不是下划线。
+kubectl get secret my-secret --template='{{index .data "key-name-with-dashes"}}'
+
+# 获取所有工作节点（使用选择器以排除标签名称为 'node-role.kubernetes.io/control-plane' 的结果）
+kubectl get node --selector='!node-role.kubernetes.io/control-plane'
 
 # 获取当前命名空间中正在运行的 Pods
 kubectl get pods --field-selector=status.phase=Running
@@ -429,14 +475,17 @@ kubectl diff -f ./my-manifest.yaml
 
 # 生成一个句点分隔的树，其中包含为节点返回的所有键
 # 在复杂的嵌套JSON结构中定位键时非常有用
-kubectl get nodes -o json | jq -c 'path(..)|[.[]|tostring]|join(".")'
+kubectl get nodes -o json | jq -c 'paths|join(".")'
 
 # 生成一个句点分隔的树，其中包含为pod等返回的所有键
-kubectl get pods -o json | jq -c 'path(..)|[.[]|tostring]|join(".")'
+kubectl get pods -o json | jq -c 'paths|join(".")'
 
 # 假设你的 Pods 有默认的容器和默认的名字空间，并且支持 'env' 命令，可以使用以下脚本为所有 Pods 生成 ENV 变量。
 # 该脚本也可用于在所有的 Pods 里运行任何受支持的命令，而不仅仅是 'env'。 
-for pod in $(kubectl get po --output=jsonpath={.items..metadata.name}); do echo $pod && kubectl exec -it $pod env; done
+for pod in $(kubectl get po --output=jsonpath={.items..metadata.name}); do echo $pod && kubectl exec -it $pod -- env; done
+
+# 获取一个 Deployment 的 status 子资源
+kubectl get deployment nginx-deployment --subresource=status
 ```
 
 <!--
@@ -453,7 +502,7 @@ kubectl rollout undo deployment/frontend --to-revision=2         # Rollback to a
 kubectl rollout status -w deployment/frontend                    # Watch rolling update status of "frontend" deployment until completion
 kubectl rollout restart deployment/frontend                      # Rolling restart of the "frontend" deployment
 
-cat pod.json | kubectl replace -f -                              # Replace a pod based on the JSON passed into std
+cat pod.json | kubectl replace -f -                              # Replace a pod based on the JSON passed into stdin
 
 # Force replace, delete and then re-create the resource. Will cause a service outage.
 kubectl replace --force -f ./pod.json
@@ -512,6 +561,9 @@ kubectl patch deployment valid-deployment  --type json   -p='[{"op": "remove", "
 
 # Add a new element to a positional array
 kubectl patch sa default --type='json' -p='[{"op": "add", "path": "/secrets/1", "value": {"name": "whatever" } }]'
+
+# Update a deployment's replica count by patching it's scale subresource
+kubectl patch deployment nginx-deployment --subresource='scale' --type='merge' -p '{"spec":{"replicas":2}}'
 ```
 -->
 ```bash
@@ -529,6 +581,9 @@ kubectl patch deployment valid-deployment  --type json   -p='[{"op": "remove", "
 
 # 在带位置数组中添加元素
 kubectl patch sa default --type='json' -p='[{"op": "add", "path": "/secrets/1", "value": {"name": "whatever" } }]'
+
+# 通过修正 scale 子资源来更新 Deployment 的副本数
+kubectl patch deployment nginx-deployment --subresource='scale' --type='merge' -p '{"spec":{"replicas":2}}'
 ```
 
 <!--
@@ -576,10 +631,10 @@ kubectl scale --replicas=5 rc/foo rc/bar rc/baz                   # 伸缩多个
 ## 删除资源
 
 <!-- ```bash
-kubectl delete -f ./pod.json                                              # Delete a pod using the type and name specified in pod.json
-kubectl delete pod,service baz foo                                        # Delete pods and services with same names "baz" and "foo"
-kubectl delete pods,services -l name=myLabel                              # Delete pods and services with label name=myLabel
-kubectl -n my-ns delete pod,svc --all                                      # Delete all pods and services in namespace my-ns,
+kubectl delete -f ./pod.json                                      # Delete a pod using the type and name specified in pod.json
+kubectl delete pod,service baz foo                                # Delete pods and services with same names "baz" and "foo"
+kubectl delete pods,services -l name=myLabel                      # Delete pods and services with label name=myLabel
+kubectl -n my-ns delete pod,svc --all                             # Delete all pods and services in namespace my-ns,
 # Delete all pods matching the awk pattern1 or pattern2
 kubectl get pods  -n mynamespace --no-headers=true | awk '/pattern1|pattern2/{print $1}' | xargs  kubectl delete -n mynamespace pod
 ```
@@ -596,7 +651,7 @@ kubectl get pods  -n mynamespace --no-headers=true | awk '/pattern1|pattern2/{pr
 <!--
 ## Interacting with running Pods
 -->
-## 与运行中的 Pods 进行交互
+## 与运行中的 Pod 进行交互
 
 <!--
 ```bash
@@ -609,16 +664,15 @@ kubectl logs my-pod -c my-container --previous      # dump pod container logs (s
 kubectl logs -f my-pod                              # stream pod logs (stdout)
 kubectl logs -f my-pod -c my-container              # stream pod container logs (stdout, multi-container case)
 kubectl logs -f -l name=myLabel --all-containers    # stream all pods logs with label name=myLabel (stdout)
-kubectl run -i --tty busybox --image=busybox -- sh  # Run pod as interactive shell
-kubectl run nginx --image=nginx -n 
-mynamespace                                         # Run pod nginx in a specific namespace
+kubectl run -i --tty busybox --image=busybox:1.28 -- sh  # Run pod as interactive shell
+kubectl run nginx --image=nginx -n mynamespace      # Start a single instance of nginx pod in the namespace of mynamespace
 kubectl run nginx --image=nginx                     # Run pod nginx and write its spec into a file called pod.yaml
 --dry-run=client -o yaml > pod.yaml
 
 kubectl attach my-pod -i                            # Attach to Running Container
 kubectl port-forward my-pod 5000:6000               # Listen on port 5000 on the local machine and forward to port 6000 on my-pod
 kubectl exec my-pod -- ls /                         # Run command in existing pod (1 container case)
-kubectl exec --stdin --tty my-pod -- /bin/sh        # Interactive shell access to a running pod (1 container case) 
+kubectl exec --stdin --tty my-pod -- /bin/sh        # Interactive shell access to a running pod (1 container case)
 kubectl exec my-pod -c my-container -- ls /         # Run command in existing pod (multi-container case)
 kubectl top pod POD_NAME --containers               # Show metrics for a given pod and its containers
 kubectl top pod POD_NAME --sort-by=cpu              # Show metrics for a given pod and sort it by 'cpu' or 'memory'
@@ -634,9 +688,9 @@ kubectl logs my-pod -c my-container --previous      # 获取 Pod 中某容器的
 kubectl logs -f my-pod                              # 流式输出 Pod 的日志（标准输出）
 kubectl logs -f my-pod -c my-container              # 流式输出 Pod 容器的日志（标准输出, 多容器场景）
 kubectl logs -f -l name=myLabel --all-containers    # 流式输出含 name=myLabel 标签的 Pod 的所有日志（标准输出）
-kubectl run -i --tty busybox --image=busybox -- sh  # 以交互式 Shell 运行 Pod
-kubectl run nginx --image=nginx -n mynamespace      # 在指定名字空间中运行 nginx Pod
-kubectl run nginx --image=nginx                     # 运行 ngins Pod 并将其规约写入到名为 pod.yaml 的文件
+kubectl run -i --tty busybox --image=busybox:1.28 -- sh  # 以交互式 Shell 运行 Pod
+kubectl run nginx --image=nginx -n mynamespace      # 在 “mynamespace” 命名空间中运行单个 nginx Pod
+kubectl run nginx --image=nginx                     # 运行 nginx Pod 并将其规约写入到名为 pod.yaml 的文件
   --dry-run=client -o yaml > pod.yaml
 
 kubectl attach my-pod -i                            # 挂接到一个运行的容器中
@@ -648,6 +702,46 @@ kubectl top pod POD_NAME --containers               # 显示给定 Pod 和其中
 kubectl top pod POD_NAME --sort-by=cpu              # 显示给定 Pod 的指标并且按照 'cpu' 或者 'memory' 排序
 ```
 
+<!--
+## Copy files and directories to and from containers
+-->
+## 从容器中复制文件和目录
+
+<!--
+```bash
+kubectl cp /tmp/foo_dir my-pod:/tmp/bar_dir            # Copy /tmp/foo_dir local directory to /tmp/bar_dir in a remote pod in the current namespace
+kubectl cp /tmp/foo my-pod:/tmp/bar -c my-container    # Copy /tmp/foo local file to /tmp/bar in a remote pod in a specific container
+kubectl cp /tmp/foo my-namespace/my-pod:/tmp/bar       # Copy /tmp/foo local file to /tmp/bar in a remote pod in namespace my-namespace
+kubectl cp my-namespace/my-pod:/tmp/foo /tmp/bar       # Copy /tmp/foo from a remote pod to /tmp/bar locally
+```
+-->
+```bash
+kubectl cp /tmp/foo_dir my-pod:/tmp/bar_dir            # 将 /tmp/foo_dir 本地目录复制到远程当前命名空间中 Pod 中的 /tmp/bar_dir
+kubectl cp /tmp/foo my-pod:/tmp/bar -c my-container    # 将 /tmp/foo 本地文件复制到远程 Pod 中特定容器的 /tmp/bar 下
+kubectl cp /tmp/foo my-namespace/my-pod:/tmp/bar       # 将 /tmp/foo 本地文件复制到远程 “my-namespace” 命名空间内指定 Pod 中的 /tmp/bar
+kubectl cp my-namespace/my-pod:/tmp/foo /tmp/bar       # 将 /tmp/foo 从远程 Pod 复制到本地 /tmp/bar
+```
+
+<!--
+`kubectl cp` requires that the 'tar' binary is present in your container image. If 'tar' is not present,`kubectl cp` will fail.
+For advanced use cases, such as symlinks, wildcard expansion or file mode preservation consider using `kubectl exec`.
+-->
+{{< note >}}
+`kubectl cp` 要求容器镜像中存在 “tar” 二进制文件。如果 “tar” 不存在，`kubectl cp` 将失败。
+对于进阶用例，例如符号链接、通配符扩展或保留文件权限，请考虑使用 `kubectl exec`。
+{{< /note >}}
+
+<!--
+```bash
+tar cf - /tmp/foo | kubectl exec -i -n my-namespace my-pod -- tar xf - -C /tmp/bar           # Copy /tmp/foo local file to /tmp/bar in a remote pod in namespace my-namespace
+kubectl exec -n my-namespace my-pod -- tar cf - /tmp/foo | tar xf - -C /tmp/bar    # Copy /tmp/foo from a remote pod to /tmp/bar locally
+```
+-->
+```bash
+tar cf - /tmp/foo | kubectl exec -i -n my-namespace my-pod -- tar xf - -C /tmp/bar  # 将 /tmp/foo 本地文件复制到远程 “my-namespace” 命名空间中 pod 中的 /tmp/bar
+kubectl exec -n my-namespace my-pod -- tar cf - /tmp/foo | tar xf - -C /tmp/bar    # 将 /tmp/foo 从远程 pod 复制到本地 /tmp/bar
+```
+
 <!--
 ## Interacting with Deployments and Services
 -->
@@ -677,7 +771,7 @@ kubectl exec deploy/my-deployment -- ls                   # 在 Deployment 里
 ```
 
 <!--
-## Interacting with Nodes and Cluster
+## Interacting with Nodes and cluster
 -->
 ## 与节点和集群进行交互
 
@@ -691,6 +785,9 @@ kubectl cluster-info                                                  # Display
 kubectl cluster-info dump                                             # Dump current cluster state to stdout
 kubectl cluster-info dump --output-directory=/path/to/cluster-state   # Dump current cluster state to /path/to/cluster-state
 
+# View existing taints on which exist on current nodes.
+kubectl get nodes -o=custom-columns=NodeName:.metadata.name,TaintKey:.spec.taints[*].key,TaintValue:.spec.taints[*].value,TaintEffect:.spec.taints[*].effect
+
 # If a taint with that key and effect already exists, its value is replaced as specified.
 kubectl taint nodes foo dedicated=special-user:NoSchedule
 ```
@@ -704,6 +801,9 @@ kubectl cluster-info                                                  # 显示
 kubectl cluster-info dump                                             # 将当前集群状态转储到标准输出
 kubectl cluster-info dump --output-directory=/path/to/cluster-state   # 将当前集群状态输出到 /path/to/cluster-state
 
+# 查看当前节点上存在的现有污点。
+kubectl get nodes -o=custom-columns=NodeName:.metadata.name,TaintKey:.spec.taints[*].key,TaintValue:.spec.taints[*].value,TaintEffect:.spec.taints[*].effect
+
 # 如果已存在具有指定键和效果的污点，则替换其值为指定值。
 kubectl taint nodes foo dedicated=special-user:NoSchedule
 ```
@@ -716,7 +816,7 @@ kubectl taint nodes foo dedicated=special-user:NoSchedule
 <!--
 List all supported resource types along with their shortnames, [API group](/docs/concepts/overview/kubernetes-api/#api-groups-and-versioning), whether they are [namespaced](/docs/concepts/overview/working-with-objects/namespaces), and [Kind](/docs/concepts/overview/working-with-objects/kubernetes-objects):
 -->
-列出所支持的全部资源类型和它们的简称、[API 组](/zh/docs/concepts/overview/kubernetes-api/#api-groups-and-versioning), 是否是[名字空间作用域](/zh/docs/concepts/overview/working-with-objects/namespaces) 和 [Kind](/zh/docs/concepts/overview/working-with-objects/kubernetes-objects)。
+列出所支持的全部资源类型和它们的简称、[API 组](/zh-cn/docs/concepts/overview/kubernetes-api/#api-groups-and-versioning), 是否是[名字空间作用域](/zh-cn/docs/concepts/overview/working-with-objects/namespaces) 和 [Kind](/zh-cn/docs/concepts/overview/working-with-objects/kubernetes-objects)。
 
 ```bash
 kubectl api-resources
@@ -772,8 +872,8 @@ Output format | Description
 `-o=custom-columns=<spec>` | 使用逗号分隔的自定义列来打印表格
 `-o=custom-columns-file=<filename>` | 使用 `<filename>` 文件中的自定义列模板打印表格
 `-o=json`     | 输出 JSON 格式的 API 对象
-`-o=jsonpath=<template>` | 打印 [jsonpath](/zh/docs/reference/kubectl/jsonpath) 表达式中定义的字段
-`-o=jsonpath-file=<filename>` | 打印在 `<filename>` 文件中定义的 [jsonpath](/zh/docs/reference/kubectl/jsonpath) 表达式所指定的字段。
+`-o=jsonpath=<template>` | 打印 [jsonpath](/zh-cn/docs/reference/kubectl/jsonpath) 表达式中定义的字段
+`-o=jsonpath-file=<filename>` | 打印在 `<filename>` 文件中定义的 [jsonpath](/zh-cn/docs/reference/kubectl/jsonpath) 表达式所指定的字段。
 `-o=name`     | 仅打印资源名称而不打印其他内容
 `-o=wide`     | 以纯文本格式输出额外信息，对于 Pod 来说，输出中包含了节点名称
 `-o=yaml`     | 输出 YAML 格式的 API 对象
@@ -788,13 +888,13 @@ kubectl get pods -A -o=custom-columns='DATA:spec.containers[*].image'
 # All images running in namespace: default, grouped by Pod
 kubectl get pods --namespace default --output=custom-columns="NAME:.metadata.name,IMAGE:.spec.containers[*].image"
 
-# All images excluding "k8s.gcr.io/coredns:1.6.2"
+ # All images excluding "k8s.gcr.io/coredns:1.6.2"
 kubectl get pods -A -o=custom-columns='DATA:spec.containers[?(@.image!="k8s.gcr.io/coredns:1.6.2")].image'
 
 # All fields under metadata regardless of name
 kubectl get pods -A -o=custom-columns='DATA:metadata.*'
 
-More examples in the kubectl [reference documentation](/docs/reference/kubectl/overview/#custom-columns).
+More examples in the kubectl [reference documentation](/docs/reference/kubectl/#custom-columns).
 ```
 -->
 使用 `-o=custom-columns` 的示例：
@@ -813,7 +913,10 @@ kubectl get pods -A -o=custom-columns='DATA:spec.containers[?(@.image!="k8s.gcr.
 kubectl get pods -A -o=custom-columns='DATA:metadata.*'
 ```
 
-有关更多示例，请参看 kubectl [参考文档](/zh/docs/reference/kubectl/overview/#custom-columns)。
+<!--
+More examples in the kubectl [reference documentation](/docs/reference/kubectl/#custom-columns).
+-->
+有关更多示例，请参看 kubectl [参考文档](/zh-cn/docs/reference/kubectl/#custom-columns)。
 
 <!--
 ### Kubectl output verbosity and debugging
@@ -843,7 +946,7 @@ Verbosity | Description
 详细程度      | 描述
 --------------| -----------
 `--v=0` | 用于那些应该 *始终* 对运维人员可见的信息，因为这些信息一般很有用。
-`--v=1` | 如果您不想要看到冗余信息，此值是一个合理的默认日志级别。
+`--v=1` | 如果你不想要看到冗余信息，此值是一个合理的默认日志级别。
 `--v=2` | 输出有关服务的稳定状态的信息以及重要的日志消息，这些信息可能与系统中的重大变化有关。这是建议大多数系统设置的默认日志级别。
 `--v=3` | 包含有关系统状态变化的扩展信息。
 `--v=4` | 包含调试级别的冗余信息。
@@ -856,8 +959,7 @@ Verbosity | Description
 ## {{% heading "whatsnext" %}}
 
 <!--
-
-* Read the [kubectl overview](/docs/reference/kubectl/overview/) and learn about [JsonPath](/docs/reference/kubectl/jsonpath).
+* Read the [kubectl overview](/docs/reference/kubectl/) and learn about [JsonPath](/docs/reference/kubectl/jsonpath).
 
 * See [kubectl](/docs/reference/kubectl/kubectl/) options.
 
@@ -865,7 +967,7 @@ Verbosity | Description
 
 * See more community [kubectl cheatsheets](https://github.com/dennyzhang/cheatsheet-kubernetes-A4).
 -->
-* 参阅 [kubectl 概述](/zh/docs/reference/kubectl/overview/)，进一步了解[JsonPath](/zh/docs/reference/kubectl/jsonpath)。
-* 参阅 [kubectl](/zh/docs/reference/kubectl/kubectl/) 选项。
-* 参阅 [kubectl 使用约定](/zh/docs/reference/kubectl/conventions/)来理解如何在可复用的脚本中使用它。
+* 参阅 [kubectl 概述](/zh-cn/docs/reference/kubectl/)，进一步了解 [JsonPath](/zh-cn/docs/reference/kubectl/jsonpath)。
+* 参阅 [kubectl](/zh-cn/docs/reference/kubectl/kubectl/) 选项。
+* 参阅 [kubectl 使用约定](/zh-cn/docs/reference/kubectl/conventions/)来理解如何在可复用的脚本中使用它。
 * 查看社区中其他的 [kubectl 备忘单](https://github.com/dennyzhang/cheatsheet-kubernetes-A4)。
diff --git a/content/zh-cn/docs/reference/kubectl/conventions.md b/content/zh-cn/docs/reference/kubectl/conventions.md
new file mode 100644
index 0000000000..33332e071a
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubectl/conventions.md
@@ -0,0 +1,93 @@
+---
+title: kubectl 的用法约定
+content_type: concept
+---
+<!--
+title: kubectl Usage Conventions
+reviewers:
+- janetkuo
+content_type: concept
+-->
+
+<!-- overview -->
+<!--
+Recommended usage conventions for `kubectl`.
+-->
+`kubectl` 的推荐用法约定。
+
+
+<!-- body -->
+
+<!--
+## Using `kubectl` in Reusable Scripts
+-->
+## 在可重用脚本中使用 `kubectl` {#using-kubectl-in-reusable-scripts}
+
+<!--
+For a stable output in a script:
+-->
+对于脚本中的稳定输出：
+
+<!--
+* Request one of the machine-oriented output forms, such as `-o name`, `-o json`, `-o yaml`, `-o go-template`, or `-o jsonpath`.
+* Fully-qualify the version. For example, `jobs.v1.batch/myjob`. This will ensure that kubectl does not use its default version that can change over time.
+* Don't rely on context, preferences, or other implicit states.
+-->
+
+* 请求一个面向机器的输出格式，例如 `-o name`、`-o json`、`-o yaml`、`-o go template` 或 `-o jsonpath`。
+* 完全限定版本。例如 `jobs.v1.batch/myjob`。这将确保 kubectl 不会使用其默认版本，该版本会随着时间的推移而更改。
+* 不要依赖上下文、首选项或其他隐式状态。
+
+<!--
+## Subresources
+-->
+## 子资源    {#subresources}
+
+<!--
+* You can use the `--subresource` alpha flag for kubectl commands like `get`, `patch`,
+`edit` and `replace` to fetch and update subresources for all resources that
+support them. Currently, only the `status` and `scale` subresources are supported.
+* The API contract against a subresource is identical to a full resource. While updating the
+`status` subresource to a new value, keep in mind that the subresource could be potentially
+reconciled by a controller to a different value.
+-->
+
+* 你可以将 `--subresource` alpha 标志用于 kubectl 命令，例如 `get`、`patch`、`edit` 和 `replace`
+  来获取和更新所有支持子资源的资源的子资源。目前，仅支持 `status` 和 `scale` 子资源。
+* 针对子资源的 API 协定与完整资源相同。在更新 `status` 子资源为一个新值时，请记住，
+  子资源可能是潜在的由控制器调和为不同的值。
+
+<!--
+## Best Practices
+-->
+## 最佳实践 {#best-practices}
+
+### `kubectl run`
+
+<!--
+For `kubectl run` to satisfy infrastructure as code:
+-->
+若希望 `kubectl run` 满足基础设施即代码的要求：
+
+<!--
+* Tag the image with a version-specific tag and don't move that tag to a new version. For example, use `:v1234`, `v1.2.3`, `r03062016-1-4`, rather than `:latest` (For more information, see [Best Practices for Configuration](/docs/concepts/configuration/overview/#container-images)).
+* Check in the script for an image that is heavily parameterized.
+* Switch to configuration files checked into source control for features that are needed, but not expressible via `kubectl run` flags.
+-->
+
+* 使用特定版本的标签标记镜像，不要将该标签改为新版本。例如使用 `:v1234`、`v1.2.3`、`r03062016-1-4`，
+  而不是 `:latest`（有关详细信息，请参阅[配置的最佳实践](/zh-cn/docs/concepts/configuration/overview/#container-images))。
+* 使用基于版本控制的脚本来运行包含大量参数的镜像。
+* 对于无法通过 `kubectl run` 参数来表示的功能特性，使用基于源码控制的配置文件，以记录要使用的功能特性。
+
+<!--
+You can use the `--dry-run=client` flag to preview the object that would be sent to your cluster, without really submitting it.
+-->
+你可以使用 `--dry-run=client` 参数来预览而不真正提交即将下发到集群的对象实例：
+
+### `kubectl apply`
+
+<!--
+* You can use `kubectl apply` to create or update resources. For more information about using kubectl apply to update resources, see [Kubectl Book](https://kubectl.docs.kubernetes.io).
+-->
+* 你可以使用 `kubectl apply` 命令创建或更新资源。有关使用 kubectl apply 更新资源的详细信息，请参阅 [Kubectl 文档](https://kubectl.docs.kubernetes.io)。
diff --git a/content/zh/docs/reference/kubectl/docker-cli-to-kubectl.md b/content/zh-cn/docs/reference/kubectl/docker-cli-to-kubectl.md
similarity index 77%
rename from content/zh/docs/reference/kubectl/docker-cli-to-kubectl.md
rename to content/zh-cn/docs/reference/kubectl/docker-cli-to-kubectl.md
index a5b8789163..7a7880fc50 100644
--- a/content/zh/docs/reference/kubectl/docker-cli-to-kubectl.md
+++ b/content/zh-cn/docs/reference/kubectl/docker-cli-to-kubectl.md
@@ -1,25 +1,22 @@
 ---
 title: 适用于 Docker 用户的 kubectl
 content_type: concept
-reviewers:
-- brendandburns
-- thockin
 ---
 <!--
----
 title: kubectl for Docker Users
 content_type: concept
 reviewers:
 - brendandburns
 - thockin
----
 -->
 
 <!-- overview -->
 <!--
-You can use the Kubernetes command line tool `kubectl` to interact with the API Server. Using kubectl is straightforward if you are familiar with the Docker command line tool. However, there are a few differences between the docker commands and the kubectl commands. The following sections show a Docker sub-command and describe the equivalent `kubectl` command.
+You can use the Kubernetes command line tool `kubectl` to interact with the API Server. Using kubectl is straightforward if you are familiar with the Docker command line tool. However, there are a few differences between the Docker commands and the kubectl commands. The following sections show a Docker sub-command and describe the equivalent `kubectl` command.
 -->
-您可以使用 Kubernetes 命令行工具 `kubectl` 与 API 服务器进行交互。如果您熟悉 Docker 命令行工具，则使用 kubectl 非常简单。但是，Docker 命令和 kubectl 命令之间有一些区别。以下显示了 Docker 子命令，并描述了等效的 `kubectl` 命令。
+你可以使用 Kubernetes 命令行工具 `kubectl` 与 API 服务器进行交互。如果你熟悉 Docker 命令行工具，
+则使用 kubectl 非常简单。但是，Docker 命令和 kubectl 命令之间有一些区别。以下显示了 Docker 子命令，
+并描述了等效的 `kubectl` 命令。
 
 
 <!-- body -->
@@ -28,8 +25,12 @@ You can use the Kubernetes command line tool `kubectl` to interact with the API
 <!--
 To run an nginx Deployment and expose the Deployment, see [kubectl create deployment](/docs/reference/generated/kubectl/kubectl-commands#-em-deployment-em-).
 -->
-要运行 nginx 部署并将其暴露，请参见[kubectl create deployment](/docs/reference/generated/kubectl/kubectl-commands#-em-deployment-em-)
+要运行 nginx 部署并将其暴露，请参见 [kubectl create deployment](/docs/reference/generated/kubectl/kubectl-commands#-em-deployment-em-)
+
+<!--
 docker:
+-->
+使用 docker 命令：
 
 ```shell
 docker run -d --restart=always -e DOMAIN=cluster --name nginx-app -p 80:80 nginx
@@ -46,7 +47,10 @@ CONTAINER ID        IMAGE               COMMAND                  CREATED
 55c103fa1296        nginx               "nginx -g 'daemon of…"   9 seconds ago       Up 9 seconds        0.0.0.0:80->80/tcp   nginx-app
 ```
 
+<!--
 kubectl:
+-->
+使用 kubectl 命令：
 
 <!--
 ```shell
@@ -74,7 +78,7 @@ deployment.apps/nginx-app env updated
 <!--
 `kubectl` commands print the type and name of the resource created or mutated, which can then be used in subsequent commands. You can expose a new Service after a Deployment is created.
 -->
-`kubectl` 命令打印创建或突变资源的类型和名称，然后可以在后续命令中使用。部署后，您可以公开新服务。
+`kubectl` 命令打印创建或突变资源的类型和名称，然后可以在后续命令中使用。部署后，你可以公开新服务。
 {{< /note >}}
 
 <!--
@@ -94,12 +98,16 @@ service "nginx-http" exposed
 <!--
 By using kubectl, you can create a [Deployment](/docs/concepts/workloads/controllers/deployment/) to ensure that N pods are running nginx, where N is the number of replicas stated in the spec and defaults to 1. You can also create a [service](/docs/concepts/services-networking/service/) with a selector that matches the pod labels. For more information, see [Use a Service to Access an Application in a Cluster](/docs/tasks/access-application-cluster/service-access-application-cluster).
 -->
-在 kubectl 命令中，我们创建了一个 [Deployment](/zh/docs/concepts/workloads/controllers/deployment/)，这将保证有 N 个运行 nginx 的 pod(N 代表 spec 中声明的 replica 数，默认为 1)。我们还创建了一个 [service](/zh/docs/concepts/services-networking/service/)，其选择器与容器标签匹配。查看[使用服务访问群集中的应用程序](/zh/docs/tasks/access-application-cluster/service-access-application-cluster) 获取更多信息。
+在 kubectl 命令中，我们创建了一个 [Deployment](/zh-cn/docs/concepts/workloads/controllers/deployment/)，
+这将保证有 N 个运行 nginx 的 Pod（N 代表 spec 中声明的 replica 数，默认为 1）。
+我们还创建了一个 [service](/zh-cn/docs/concepts/services-networking/service/)，其选择器与容器标签匹配。
+查看[使用服务访问集群中的应用程序](/zh-cn/docs/tasks/access-application-cluster/service-access-application-cluster) 获取更多信息。
 
 <!--
 By default images run in the background, similar to `docker run -d ...`. To run things in the foreground, use [`kubectl run`](/docs/reference/generated/kubectl/kubectl-commands/#run) to create pod:
 -->
-默认情况下镜像会在后台运行，与 `docker run -d ...` 类似，如果您想在前台运行，使用 [`kubectl run`](/docs/reference/generated/kubectl/kubectl-commands/#run) 在前台运行 Pod:
+默认情况下镜像会在后台运行，与 `docker run -d ...` 类似，如果你想在前台运行，
+使用 [`kubectl run`](/docs/reference/generated/kubectl/kubectl-commands/#run) 在前台运行 Pod:
 
 ```shell
 kubectl run [-i] [--tty] --attach <name> --image=<image>
@@ -109,14 +117,16 @@ kubectl run [-i] [--tty] --attach <name> --image=<image>
 Unlike `docker run ...`, if you specify `--attach`, then you attach `stdin`, `stdout` and `stderr`. You cannot control which streams are attached (`docker -a ...`).
 To detach from the container, you can type the escape sequence Ctrl+P followed by Ctrl+Q.
 -->
-与 `docker run ...` 不同的是，如果指定了 `--attach` ，我们将连接到 `stdin`，`stdout` 和 `stderr`，而不能控制具体连接到哪个输出流（`docker -a ...`）。要从容器中退出，可以输入 Ctrl + P，然后按 Ctrl + Q。
+与 `docker run ...` 不同的是，如果指定了 `--attach`，我们将连接到 `stdin`，`stdout` 和 `stderr`，
+而不能控制具体连接到哪个输出流（`docker -a ...`）。要从容器中退出，可以输入 Ctrl + P，然后按 Ctrl + Q。
 
 <!--
 Because the kubectl run command starts a Deployment for the container, the Deployment restarts if you terminate the attached process by using Ctrl+C, unlike `docker run -it`.
 To destroy the Deployment and its pods you need to run `kubectl delete deployment <name>`.
 -->
-因为我们使用 Deployment 启动了容器，如果您终止连接到的进程（例如 `ctrl-c`），容器将会重启，这跟 `docker run -it` 不同。
-如果想销毁该 Deployment（和它的 pod），您需要运行 `kubectl delete deployment <name>`。
+因为我们使用 Deployment 启动了容器，如果你终止连接到的进程（例如 `ctrl-c`），容器将会重启，
+这跟 `docker run -it` 不同。如果想销毁该 Deployment（和它的 Pod），
+你需要运行 `kubectl delete deployment <name>`。
 
 ## docker ps
 
@@ -158,7 +168,8 @@ ubuntu                      0/1       Completed   0          20s
 <!--
 To attach a process that is already running in a container, see [kubectl attach](/docs/reference/generated/kubectl/kubectl-commands/#attach).
 -->
-如何连接到已经运行在容器中的进程？查看 [kubectl attach](/docs/reference/generated/kubectl/kubectl-commands/#attach)。
+如何连接到已经运行在容器中的进程？
+查看 [kubectl attach](/docs/reference/generated/kubectl/kubectl-commands/#attach)。
 
 <!--
 docker:
@@ -262,14 +273,14 @@ docker exec -ti 55c103fa1296 /bin/sh
 kubectl:
 
 ```shell
-kubectl exec -ti nginx-app-5jyvm -- /bin/sh      
+kubectl exec -ti nginx-app-5jyvm -- /bin/sh
 # exit
 ```
 
 <!--
-For more information, see [Get a Shell to a Running Container](/docs/tasks/debug-application-cluster/get-shell-running-container/).
+For more information, see [Get a Shell to a Running Container](/docs/tasks/debug/debug-application/get-shell-running-container/).
 -->
-更多信息请查看[获取运行中容器的 Shell 环境](/zh/docs/tasks/debug-application-cluster/get-shell-running-container/)。
+更多信息请查看[获取运行中容器的 Shell 环境](/zh-cn/docs/tasks/debug/debug-application/get-shell-running-container/)。
 
 ## docker logs
 
@@ -308,7 +319,10 @@ kubectl logs -f nginx-app-zibvs
 <!--
 There is a slight difference between pods and containers; by default pods do not terminate if their processes exit. Instead the pods restart the process. This is similar to the docker run option `--restart=always` with one major difference. In docker, the output for each invocation of the process is concatenated, but for Kubernetes, each invocation is separate. To see the output from a previous run in Kubernetes, do this:
 -->
-现在是时候提一下 pod 和容器之间的细微差别了；默认情况下如果 pod 中的进程退出 pod 也不会终止，相反它将会重启该进程。这类似于 docker run 时的 `--restart=always` 选项， 这是主要差别。在 docker 中，进程的每个调用的输出都是被连接起来的，但是对于 kubernetes，每个调用都是分开的。要查看以前在 kubernetes 中执行的输出，请执行以下操作：
+现在是时候提一下 Pod 和容器之间的细微差别了；默认情况下如果 Pod 中的进程退出 Pod 也不会终止，
+相反它将会重启该进程。这类似于 docker run 时的 `--restart=always` 选项，这是主要差别。
+在 docker 中，进程的每个调用的输出都是被连接起来的，但是对于 Kubernetes，每个调用都是分开的。
+要查看以前在 Kubernetes 中执行的输出，请执行以下操作：
 
 ```shell
 kubectl logs --previous nginx-app-zibvs
@@ -321,7 +335,7 @@ kubectl logs --previous nginx-app-zibvs
 <!--
 For more information, see [Logging Architecture](/docs/concepts/cluster-administration/logging/).
 -->
-查看[日志架构](/zh/docs/concepts/cluster-administration/logging/)获取更多信息。
+查看[日志架构](/zh-cn/docs/concepts/cluster-administration/logging/)获取更多信息。
 
 ## docker stop and docker rm
 
@@ -366,8 +380,8 @@ kubectl:
 kubectl get deployment nginx-app
 ```
 ```
-NAME        DESIRED   CURRENT   UP-TO-DATE   AVAILABLE   AGE
-nginx-app   1         1         1            1           2m
+NAME         READY   UP-TO-DATE   AVAILABLE   AGE
+nginx-app    1/1     1            1           2m
 ```
 
 ```shell
@@ -391,9 +405,10 @@ kubectl get po -l app=nginx-app
 
 {{< note >}}
 <!--
-When you use kubectl, you don't delete the pod directly.You have to first delete the Deployment that owns the pod. If you delete the pod directly, the Deployment recreates the pod.
+When you use kubectl, you don't delete the pod directly. You have to first delete the Deployment that owns the pod. If you delete the pod directly, the Deployment recreates the pod.
 -->
-请注意，我们不直接删除 pod。使用 kubectl 命令，我们要删除拥有该 pod 的 Deployment。如果我们直接删除 pod，Deployment 将会重新创建该 pod。
+请注意，我们不直接删除 Pod。使用 kubectl 命令，我们要删除拥有该 Pod 的 Deployment。
+如果我们直接删除 Pod，Deployment 将会重新创建该 Pod。
 {{< /note >}}
 
 ## docker login
@@ -401,7 +416,8 @@ When you use kubectl, you don't delete the pod directly.You have to first delete
 <!--
 There is no direct analog of `docker login` in kubectl. If you are interested in using Kubernetes with a private registry, see [Using a Private Registry](/docs/concepts/containers/images/#using-a-private-registry).
 -->
-在 kubectl 中没有对 `docker login` 的直接模拟。如果您有兴趣在私有镜像仓库中使用 Kubernetes，请参阅[使用私有镜像仓库](/zh/docs/concepts/containers/images/#using-a-private-registry)。
+在 kubectl 中没有对 `docker login` 的直接模拟。如果你有兴趣在私有镜像仓库中使用 Kubernetes，
+请参阅[使用私有镜像仓库](/zh-cn/docs/concepts/containers/images/#using-a-private-registry)。
 
 ## docker version
 
@@ -487,10 +503,10 @@ kubectl:
 kubectl cluster-info
 ```
 ```
-Kubernetes master is running at https://108.59.85.141
-KubeDNS is running at https://108.59.85.141/api/v1/namespaces/kube-system/services/kube-dns/proxy
-kubernetes-dashboard is running at https://108.59.85.141/api/v1/namespaces/kube-system/services/kubernetes-dashboard/proxy
-Grafana is running at https://108.59.85.141/api/v1/namespaces/kube-system/services/monitoring-grafana/proxy
-Heapster is running at https://108.59.85.141/api/v1/namespaces/kube-system/services/monitoring-heapster/proxy
-InfluxDB is running at https://108.59.85.141/api/v1/namespaces/kube-system/services/monitoring-influxdb/proxy
+Kubernetes master is running at https://203.0.113.141
+KubeDNS is running at https://203.0.113.141/api/v1/namespaces/kube-system/services/kube-dns/proxy
+kubernetes-dashboard is running at https://203.0.113.141/api/v1/namespaces/kube-system/services/kubernetes-dashboard/proxy
+Grafana is running at https://203.0.113.141/api/v1/namespaces/kube-system/services/monitoring-grafana/proxy
+Heapster is running at https://203.0.113.141/api/v1/namespaces/kube-system/services/monitoring-heapster/proxy
+InfluxDB is running at https://203.0.113.141/api/v1/namespaces/kube-system/services/monitoring-influxdb/proxy
 ```
diff --git a/content/zh/docs/reference/kubectl/jsonpath.md b/content/zh-cn/docs/reference/kubectl/jsonpath.md
similarity index 95%
rename from content/zh/docs/reference/kubectl/jsonpath.md
rename to content/zh-cn/docs/reference/kubectl/jsonpath.md
index 9d9c82b974..5f3593eefa 100644
--- a/content/zh/docs/reference/kubectl/jsonpath.md
+++ b/content/zh-cn/docs/reference/kubectl/jsonpath.md
@@ -1,21 +1,17 @@
 ---
 title: JSONPath 支持
 content_type: concept
-weight: 25
 ---
 <!--
----
 title: JSONPath Support
 content_type: concept
-weight: 25
----
 -->
 
 <!-- overview -->
 <!--
 Kubectl supports JSONPath template.
 -->
-Kubectl 支持 JSONPath 模板。
+kubectl 支持 JSONPath 模板。
 
 
 <!-- body -->
@@ -25,7 +21,8 @@ JSONPath template is composed of JSONPath expressions enclosed by curly braces {
 Kubectl uses JSONPath expressions to filter on specific fields in the JSON object and format the output.
 In addition to the original JSONPath template syntax, the following functions and syntax are valid:
 -->
-JSONPath 模板由 {} 包起来的 JSONPath 表达式组成。Kubectl 使用 JSONPath 表达式来过滤 JSON 对象中的特定字段并格式化输出。除了原始的 JSONPath 模板语法，以下函数和语法也是有效的:
+JSONPath 模板由 {} 包起来的 JSONPath 表达式组成。Kubectl 使用 JSONPath 表达式来过滤 JSON 对象中的特定字段并格式化输出。
+除了原始的 JSONPath 模板语法，以下函数和语法也是有效的:
 
 <!--
 1. Use double quotes to quote text inside JSONPath expressions.
@@ -142,8 +139,8 @@ kubectl get pods -o=jsonpath="{range .items[*]}{.metadata.name}{\"\t\"}{.status.
 {{< /note >}}
 -->
 {{< note >}}
-在 Windows 上，对于任何包含空格的 JSONPath 模板，您必须使用双引号（不是上面 bash 所示的单引号）。
-反过来，这意味着您必须在模板中的所有文字周围使用单引号或转义的双引号。
+在 Windows 上，对于任何包含空格的 JSONPath 模板，你必须使用双引号（不是上面 bash 所示的单引号）。
+反过来，这意味着你必须在模板中的所有文字周围使用单引号或转义的双引号。
 例如:
 
 ```cmd
@@ -165,7 +162,7 @@ kubectl get pods -o json | jq -r '.items[] | select(.metadata.name | test("test-
 ```
 -->
 {{< note >}}
-不支持 JSONPath 正则表达式。如需使用正则表达式进行匹配操作，您可以使用如 `jq` 之类的工具。
+不支持 JSONPath 正则表达式。如需使用正则表达式进行匹配操作，你可以使用如 `jq` 之类的工具。
 
 ```shell
 # kubectl 的 JSONpath 输出不支持正则表达式
diff --git a/content/zh/docs/reference/kubectl/kubectl-cmds.md b/content/zh-cn/docs/reference/kubectl/kubectl-cmds.md
similarity index 91%
rename from content/zh/docs/reference/kubectl/kubectl-cmds.md
rename to content/zh-cn/docs/reference/kubectl/kubectl-cmds.md
index b10d9ee45c..81370aa616 100644
--- a/content/zh/docs/reference/kubectl/kubectl-cmds.md
+++ b/content/zh-cn/docs/reference/kubectl/kubectl-cmds.md
@@ -1,9 +1,11 @@
 ---
 title: kubectl 命令
+weight: 20
 ---
 
 <!-- ---
 title: kubectl Commands
+weight: 20
 --- -->
 
 <!-- [kubectl Command Reference](/docs/reference/generated/kubectl/kubectl-commands/) -->
diff --git a/content/zh/docs/reference/kubectl/kubectl.md b/content/zh-cn/docs/reference/kubectl/kubectl.md
similarity index 96%
rename from content/zh/docs/reference/kubectl/kubectl.md
rename to content/zh-cn/docs/reference/kubectl/kubectl.md
index f6656feccc..9b591b654c 100644
--- a/content/zh/docs/reference/kubectl/kubectl.md
+++ b/content/zh-cn/docs/reference/kubectl/kubectl.md
@@ -22,9 +22,9 @@ kubectl 管理控制 Kubernetes 集群。
 
 
 <!--
-Find more information at: https://kubernetes.io/docs/reference/kubectl/overview/
+Find more information at: https://kubernetes.io/docs/reference/kubectl/
 -->
-获取更多信息，请访问 [kubectl 概述](/zh/docs/reference/kubectl/overview/)。
+获取更多信息，请访问 [kubectl 概述](/zh-cn/docs/reference/kubectl/)。
 
 ```
 kubectl [flags]
@@ -220,7 +220,7 @@ kubectl [flags]
       <!--
       If true, the server's certificate will not be checked for validity. This will make your HTTPS connections insecure
       -->
-      设置为 true，则表示不会检查服务器证书的有效性。这样会导致您的 HTTPS 连接不安全。
+      设置为 true，则表示不会检查服务器证书的有效性。这样会导致你的 HTTPS 连接不安全。
       </td>
     </tr>
     <tr>
@@ -488,9 +488,41 @@ kubectl [flags]
   </tbody>
 </table>
 
+## {{% heading "envvars" %}}
 
+<table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
 
+<tr>
+<td colspan="2">KUBECONFIG</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Path to the kubectl configuration ("kubeconfig") file. Default: "$HOME/.kube/config"
+-->
+kubectl 的配置 ("kubeconfig") 文件的路径。默认值: "$HOME/.kube/config"
+</td>
+</tr>
 
+<tr>
+<td colspan="2">KUBECTL_COMMAND_HEADERS</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+When set to false, turns off extra HTTP headers detailing invoked kubectl command (Kubernetes version v1.22 or later)
+-->
+设置为 false 时，关闭用于详细说明被调用的 kubectl 命令的额外 HTTP 标头 (Kubernetes 版本为 v1.22 或者更高)
+</td>
+</tr>
+
+</tbody>
+</table>
 
 ## {{% heading "seealso" %}}
 
@@ -593,4 +625,4 @@ kubectl [flags]
 * [kubectl top](/docs/reference/generated/kubectl/kubectl-commands#top)	 - 显示资源（CPU /内存/存储）使用率
 * [kubectl uncordon](/docs/reference/generated/kubectl/kubectl-commands#uncordon)	 - 标记节点为可调度的
 * [kubectl version](/docs/reference/generated/kubectl/kubectl-commands#version)	 - 打印客户端和服务器的版本信息
-* [kubectl wait](/docs/reference/generated/kubectl/kubectl-commands#wait)	 - 实验性：等待一个或多个资源达到某种状态
+* [kubectl wait](/docs/reference/generated/kubectl/kubectl-commands#wait)	 - 实验性：等待一个或多个资源达到某种状态
\ No newline at end of file
diff --git a/content/zh/docs/reference/kubernetes-api/_index.md b/content/zh-cn/docs/reference/kubernetes-api/_index.md
similarity index 100%
rename from content/zh/docs/reference/kubernetes-api/_index.md
rename to content/zh-cn/docs/reference/kubernetes-api/_index.md
diff --git a/content/zh-cn/docs/reference/kubernetes-api/authentication-resources/_index.md b/content/zh-cn/docs/reference/kubernetes-api/authentication-resources/_index.md
new file mode 100644
index 0000000000..fe92bc8762
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/authentication-resources/_index.md
@@ -0,0 +1,5 @@
+---
+title: "身份认证资源"
+weight: 4
+auto_generated: true
+---
diff --git a/content/zh-cn/docs/reference/kubernetes-api/authentication-resources/certificate-signing-request-v1.md b/content/zh-cn/docs/reference/kubernetes-api/authentication-resources/certificate-signing-request-v1.md
new file mode 100644
index 0000000000..9c9d6131af
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/authentication-resources/certificate-signing-request-v1.md
@@ -0,0 +1,1587 @@
+---
+api_metadata:
+  apiVersion: "certificates.k8s.io/v1"
+  import: "k8s.io/api/certificates/v1"
+  kind: "CertificateSigningRequest"
+content_type: "api_reference"
+description: "CertificateSigningRequest 对象提供了一种通过提交证书签名请求并异步批准和颁发 x509 证书的机制。"
+title: CertificateSigningRequest
+weight: 4
+---
+
+<!--
+api_metadata:
+  apiVersion: "certificates.k8s.io/v1"
+  import: "k8s.io/api/certificates/v1"
+  kind: "CertificateSigningRequest"
+content_type: "api_reference"
+description: "CertificateSigningRequest objects provide a mechanism to obtain x509 certificates by submitting a certificate signing request, and having it asynchronously approved and issued."
+title: "CertificateSigningRequest"
+weight: 4
+auto_generated: true
+-->
+
+<!--
+`apiVersion: certificates.k8s.io/v1`
+
+`import "k8s.io/api/certificates/v1"`
+-->
+`apiVersion: certificates.k8s.io/v1`
+
+`import "k8s.io/api/certificates/v1"`
+
+<!--
+## CertificateSigningRequest {#CertificateSigningRequest}
+-->
+## 证书签名请求 CertificateSigningRequest {#CertificateSigningRequest}
+
+<!--
+CertificateSigningRequest objects provide a mechanism to obtain x509 certificates by submitting a certificate signing request, and having it asynchronously approved and issued.
+
+Kubelets use this API to obtain:
+ 1. client certificates to authenticate to kube-apiserver (with the "kubernetes.io/kube-apiserver-client-kubelet" signerName).
+ 2. serving certificates for TLS endpoints kube-apiserver can connect to securely (with the "kubernetes.io/kubelet-serving" signerName).
+-->
+CertificateSigningRequest 对象提供了一种通过提交证书签名请求并异步批准和颁发 x509 证书的机制。
+
+Kubelets 使用 CertificateSigningRequest API 来获取：
+
+1. 向 kube-apiserver 进行身份认证的客户端证书（使用 “kubernetes.io/kube-apiserver-client-kubelet” signerName）。
+2. kube-apiserver 可以安全连接到 TLS 端点的服务证书（使用 “kubernetes.io/kubelet-serving” signerName）。
+
+<!--
+This API can be used to request client certificates to authenticate to kube-apiserver (with the "kubernetes.io/kube-apiserver-client" signerName), 
+or to obtain certificates from custom non-Kubernetes signers.
+-->
+此 API 可用于请求客户端证书以向 kube-apiserver 进行身份验证（使用 “kubernetes.io/kube-apiserver-client” 签名者名称），
+或从自定义非 Kubernetes 签名者那里获取证书。
+
+<!--
+<hr>
+- **apiVersion**: certificates.k8s.io/v1
+
+- **kind**: CertificateSigningRequest
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+-->
+<hr>
+
+- **apiVersion**: certificates.k8s.io/v1
+
+- **kind**: CertificateSigningRequest
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+<!--
+- **spec** (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequestSpec" >}}">
+   CertificateSigningRequestSpec</a>), required
+
+  spec contains the certificate request, and is immutable after creation. 
+  Only the request, signerName, expirationSeconds, and usages fields can be set on creation. 
+  Other fields are derived by Kubernetes and cannot be modified by users.
+-->
+- **spec** (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequestSpec" >}}">
+   CertificateSigningRequestSpec</a>)，必需
+
+  spec 包含证书请求，并且在创建后是不可变的。
+  只有 request、signerName、expirationSeconds 和 usages 字段可以在创建时设置。
+  其他字段由 Kubernetes 派生，用户无法修改。
+  
+<!--
+- **status** (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequestStatus" >}}">
+  CertificateSigningRequestStatus</a>)
+
+  status contains information about whether the request is approved or denied, and the certificate issued by the signer, 
+  or the failure condition indicating signer failure.
+-->
+- **status** (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequestStatus" >}}">
+  CertificateSigningRequestStatus</a>)
+
+  status 包含有关请求是被批准还是拒绝的信息，以及签名者颁发的证书或指示签名者失败的状况。
+
+<!--
+## CertificateSigningRequestSpec {#CertificateSigningRequestSpec}
+
+CertificateSigningRequestSpec contains the certificate request.
+-->
+## CertificateSigningRequestSpec {#CertificateSigningRequestSpec}
+
+CertificateSigningRequestSpec 包含证书请求。
+
+<hr>
+<!--
+- **request** ([]byte), required
+
+  *Atomic: will be replaced during a merge*
+  
+  request contains an x509 certificate signing request encoded in a "CERTIFICATE REQUEST" PEM block. 
+  When serialized as JSON or YAML, the data is additionally base64-encoded.
+-->
+
+- **request** ([]byte)，必需
+
+  **Atomic：将在合并期间被替换**
+
+  request 包含一个在 “CERTIFICATE REQUEST” PEM 块中编码的 x509 证书签名请求。
+  当序列化为 JSON 或 YAML 时，数据额外采用 base64 编码。
+
+<!--
+- **signerName** (string), required
+
+  signerName indicates the requested signer, and is a qualified name.
+  
+  List/watch requests for CertificateSigningRequests can filter on this field using a "spec.signerName=NAME" fieldSelector.
+-->
+- **signerName** (string)，必需
+
+  signerName 表示请求的签名者，是一个限定名。
+
+  CertificateSigningRequests 的 list/watch 请求可以使用 “spec.signerName=NAME” 字段选择器进行过滤。
+  
+  <!--
+  Well-known Kubernetes signers are:
+   1. "kubernetes.io/kube-apiserver-client": issues client certificates that can be used to authenticate to kube-apiserver.
+    Requests for this signer are never auto-approved by kube-controller-manager, 
+	can be issued by the "csrsigning" controller in kube-controller-manager.
+   2. "kubernetes.io/kube-apiserver-client-kubelet": issues client certificates that kubelets use to authenticate to kube-apiserver.
+    Requests for this signer can be auto-approved by the "csrapproving" controller in kube-controller-manager, 
+	and can be issued by the "csrsigning" controller in kube-controller-manager.
+   3. "kubernetes.io/kubelet-serving" issues serving certificates that kubelets use to serve TLS endpoints, which kube-apiserver can connect to securely.
+    Requests for this signer are never auto-approved by kube-controller-manager, 
+	and can be issued by the "csrsigning" controller in kube-controller-manager.
+  
+  More details are available at https://k8s.io/docs/reference/access-authn-authz/certificate-signing-requests/#kubernetes-signers  
+  -->
+  众所周知的 Kubernetes 签名者有：
+
+  1. “kubernetes.io/kube-apiserver-client”：颁发客户端证书，用于向 kube-apiserver 进行身份验证。
+     对此签名者的请求永远不会被 kube-controller-manager 自动批准，
+     可以由 kube-controller-manager 中的 “csrsigning” 控制器颁发。
+  2. “kubernetes.io/kube-apiserver-client-kubelet”：颁发客户端证书，kubelet 用于向 kube-apiserver 进行身份验证。
+     对此签名者的请求可以由 kube-controller-manager 中的 “csrapproving” 控制器自动批准，
+     并且可以由 kube-controller-manager 中的 “csrsigning” 控制器颁发。
+  3. “kubernetes.io/kubelet-serving” 颁发服务证书，kubelet 用于服务 TLS 端点，kube-apiserver 可以安全的连接到这些端点。
+     对此签名者的请求永远不会被 kube-controller-manager 自动批准，
+     可以由 kube-controller-manager 中的 “csrsigning” 控制器颁发。
+  
+  更多详细信息，请访问 https://kubernetes.io/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests/#kubernetes-signers
+
+  <!--
+  Custom signerNames can also be specified. The signer defines:
+   1. Trust distribution: how trust (CA bundles) are distributed.
+   2. Permitted subjects: and behavior when a disallowed subject is requested.
+   3. Required, permitted, or forbidden x509 extensions in the request 
+     (including whether subjectAltNames are allowed, which types, restrictions on allowed values) 
+     and behavior when a disallowed extension is requested.
+   4. Required, permitted, or forbidden key usages / extended key usages.
+   5. Expiration/certificate lifetime: whether it is fixed by the signer, configurable by the admin.
+   6. Whether or not requests for CA certificates are allowed.  
+  -->
+  也可以指定自定义 signerName。签名者定义如下：
+
+  1. 信任分发：信任（CA 证书包）是如何分发的。
+  2. 许可的主体：当请求不允许的主体时的行为。
+  3. 请求中必需、许可或禁止的 x509 扩展（包括是否允许 subjectAltNames、哪些类型、对允许值的限制）
+     以及请求不允许的扩展时的行为。
+  4. 必需、许可或禁止的密钥用途/扩展密钥用途。
+  5. 过期/证书生命周期：是否由签名者确定，管理员可配置。
+  6. 是否允许申请 CA 证书。
+
+<!--
+- **expirationSeconds** (int32)
+
+  expirationSeconds is the requested duration of validity of the issued certificate. 
+  The certificate signer may issue a certificate with a different validity duration so 
+  a client must check the delta between the notBefore and and notAfter fields 
+  in the issued certificate to determine the actual duration.
+-->
+- **expirationSeconds** (int32)
+
+  expirationSeconds 是所颁发证书的所请求的有效期。
+  证书签署者可以颁发具有不同有效期的证书，
+  因此客户端必须检查颁发证书中 notBefore 和 notAfter 字段之间的增量以确定实际持续时间。
+
+  <!--
+  The v1.22+ in-tree implementations of the well-known Kubernetes signers will honor this field 
+  as long as the requested duration is not greater than the maximum duration they will honor per the 
+  --cluster-signing-duration CLI flag to the Kubernetes controller manager.
+  -->
+  众所周知的 Kubernetes 签名者在 v1.22+ 版本内实现将遵守此字段，
+  只要请求的持续时间不大于最大持续时间，它们将遵守 Kubernetes 控制管理器的
+  --cluster-signing-duration CLI 标志。
+  
+  <!--
+  Certificate signers may not honor this field for various reasons:
+  
+    1. Old signer that is unaware of the field (such as the in-tree
+       implementations prior to v1.22)
+    2. Signer whose configured maximum is shorter than the requested duration
+    3. Signer whose configured minimum is longer than the requested duration
+  
+  The minimum valid value for expirationSeconds is 600, i.e. 10 minutes.  
+  -->
+  由于各种原因，证书签名者可能忽略此字段:
+
+  1. 不认识此字段的旧签名者(如 v1.22 版本之前的实现)
+  2. 配置的最大持续时间小于请求持续时间的签名者
+  3. 配置的最小持续时间大于请求持续时间的签名者
+
+  expirationSeconds 的最小有效值为 600，即 10 分钟。
+
+<!-- 
+- **extra** (map[string][]string)
+
+  extra contains extra attributes of the user that created the CertificateSigningRequest. 
+  Populated by the API server on creation and immutable.
+-->
+- **extra** (map[string][]string)
+
+  extra 包含创建 CertificateSigningRequest 的用户的额外属性。
+  在创建时由 API 服务器填充，且不可变。
+
+<!-- 
+- **groups** ([]string)
+
+  *Atomic: will be replaced during a merge*
+  
+  groups contains group membership of the user that created the CertificateSigningRequest. 
+  Populated by the API server on creation and immutable.
+-->
+- **groups** ([]string)
+
+  **Atomic：将在合并过程中被替换**
+
+  groups 包含创建 CertificateSigningRequest 的用户的组成员关系。
+  在创建时由 API 服务器填充，且不可变。
+
+<!-- 
+- **uid** (string)
+
+  uid contains the uid of the user that created the CertificateSigningRequest. 
+  Populated by the API server on creation and immutable.
+-->
+- **uid** (string)
+
+  uid 包含创建 CertificateSigningRequest 的用户的 uid 。
+  在创建时由 API 服务器填充，且不可变。
+
+<!-- 
+- **usages** ([]string)
+
+  *Atomic: will be replaced during a merge*
+  
+  usages specifies a set of key usages requested in the issued certificate.
+  
+  Requests for TLS client certificates typically request: "digital signature", "key encipherment", "client auth".
+  
+  Requests for TLS serving certificates typically request: "key encipherment", "digital signature", "server auth".
+-->
+- **usages** ([]string)
+
+  **Atomic：将在合并期间被替换**
+
+  usages 指定颁发证书中请求的一组密钥用途。
+
+  TLS 客户端证书的请求通常要求："digital signature"、"key encipherment"、"client auth"。
+
+  TLS 服务证书的请求通常要求："key encipherment"、"digital signature"、"server auth"。
+
+  <!-- 
+  Valid values are:
+   "signing", "digital signature", "content commitment",
+   "key encipherment", "key agreement", "data encipherment",
+   "cert sign", "crl sign", "encipher only", "decipher only", "any",
+   "server auth", "client auth",
+   "code signing", "email protection", "s/mime",
+   "ipsec end system", "ipsec tunnel", "ipsec user",
+   "timestamping", "ocsp signing", "microsoft sgc", "netscape sgc"
+  -->
+  有效值：
+  "signing"、"digital signature"、"content commitment"、
+  "key encipherment"、"key agreement"、"data encipherment"、
+  "cert sign"、"crl sign"、"encipher only"、"decipher only"、"any"、
+  "server auth"、"client auth"、
+  "code signing"、"email protection"、"s/mime"、
+  "ipsec end system"、"ipsec tunnel"、"ipsec user"、
+  "timestamping"、"ocsp signing"、"microsoft sgc"、"netscape sgc"。
+
+<!-- 
+- **username** (string)
+
+  username contains the name of the user that created the CertificateSigningRequest. 
+  Populated by the API server on creation and immutable.
+-->
+- **username** (string)
+  
+  username 包含创建 CertificateSigningRequest 的用户名。
+  在创建时由 API 服务器填充，且不可变。
+
+<!-- 
+## CertificateSigningRequestStatus {#CertificateSigningRequestStatus}
+
+CertificateSigningRequestStatus contains conditions used to indicate approved/denied/failed status of the request, 
+and the issued certificate.
+
+<hr>
+-->
+## CertificateSigningRequestStatus {#CertificateSigningRequestStatus}
+
+CertificateSigningRequestStatus 包含用于指示请求的批准/拒绝/失败状态和颁发证书的状况。
+
+<hr>
+
+<!-- 
+- **certificate** ([]byte)
+  *Atomic: will be replaced during a merge*
+  
+  certificate is populated with an issued certificate by the signer after an Approved condition is present. 
+  This field is set via the /status subresource. Once populated, this field is immutable.
+  
+  If the certificate signing request is denied, a condition of type "Denied" is added and this field remains empty. 
+  If the signer cannot issue the certificate, a condition of type "Failed" is added and this field remains empty.
+-->
+- **certificate** ([]byte)
+
+  **Atomic：将在合并期间被替换**
+  
+  certificate 在出现 Approved 状况后，由签名者使用已颁发的证书填充。
+  这个字段通过 /status 子资源设置。填充后，该字段将不可变。
+
+  如果证书签名请求被拒绝，则添加类型为 “Denied” 的状况，并且保持该字段为空。
+  如果签名者不能颁发证书，则添加类型为 “Failed” 的状况，并且保持该字段为空。
+
+  <!-- 
+  Validation requirements:
+   1. certificate must contain one or more PEM blocks.
+   2. All PEM blocks must have the "CERTIFICATE" label, contain no headers, and the encoded data
+    must be a BER-encoded ASN.1 Certificate structure as described in section 4 of RFC5280.
+   3. Non-PEM content may appear before or after the "CERTIFICATE" PEM blocks and is unvalidated,
+    to allow for explanatory text as described in section 5.2 of RFC7468.
+  -->
+  验证要求:
+
+  1. 证书必须包含一个或多个 PEM 块。
+  2. 所有的 PEM 块必须有 “CERTIFICATE” 标签，不包含头和编码的数据，
+     必须是由 BER 编码的 ASN.1 证书结构，如 RFC5280 第 4 节所述。
+  3. 非 PEM 内容可能出现在 “CERTIFICATE”PEM 块之前或之后，并且是未验证的，
+     允许如 RFC7468 5.2 节中描述的解释性文本。
+
+  <!-- 
+  If more than one PEM block is present, and the definition of the requested spec.signerName does not indicate otherwise, 
+  the first block is the issued certificate, and subsequent blocks should be treated as
+  intermediate certificates and presented in TLS handshakes.
+  -->
+  如果存在多个 PEM 块，并且所请求的 spec.signerName 的定义没有另外说明，
+  那么第一个块是颁发的证书，后续的块应该被视为中间证书并在 TLS 握手中呈现。
+
+  <!-- 
+  The certificate is encoded in PEM format.
+  
+  When serialized as JSON or YAML, the data is additionally base64-encoded, so it consists of:
+  
+      base64(
+      -----BEGIN CERTIFICATE-----
+      ...
+      -----END CERTIFICATE-----
+      )
+  -->
+  证书编码为 PEM 格式。
+  
+  当序列化为 JSON 或 YAML 时，数据额外采用 base64 编码，它包括:
+
+  ```
+  base64(
+      -----BEGIN CERTIFICATE-----
+      ...
+      -----END CERTIFICATE-----
+  )
+  ```
+
+<!-- 
+- **conditions** ([]CertificateSigningRequestCondition)
+  *Map: unique values on key type will be kept during a merge*
+  
+  conditions applied to the request. Known conditions are "Approved", "Denied", and "Failed".
+
+  <a name="CertificateSigningRequestCondition"></a>
+  *CertificateSigningRequestCondition describes a condition of a CertificateSigningRequest object*
+-->
+- **conditions** ([]CertificateSigningRequestCondition)
+
+  **Map：键类型的唯一值将在合并期间保留**
+  
+  应用于请求的状况。已知的状况有 "Approved"、"Denied" 与 "Failed"。
+
+  <a name="CertificateSigningRequestCondition"></a>
+  **CertificateSigningRequestCondition 描述 CertificateSigningRequest 对象的状况。**
+
+  <!-- 
+  - **conditions.status** (string), required
+
+    status of the condition, one of True, False, Unknown. Approved, Denied, and Failed conditions may not be "False" or "Unknown".
+  -->
+  - **conditions.status** (string)，必需
+  
+    状况的状态，True、False、Unknown 之一。Approved、Denied 与 Failed 的状况不可以是 "False" 或 "Unknown"。
+
+  <!-- 
+  - **conditions.type** (string), required
+    type of the condition. Known conditions are "Approved", "Denied", and "Failed".
+    
+    An "Approved" condition is added via the /approval subresource, indicating the request was approved and should be issued by the signer.
+    
+    A "Denied" condition is added via the /approval subresource, indicating the request was denied and should not be issued by the signer.
+    
+    A "Failed" condition is added via the /status subresource, indicating the signer failed to issue the certificate.
+    
+    Approved and Denied conditions are mutually exclusive. Approved, Denied, and Failed conditions cannot be removed once added.
+    
+    Only one condition of a given type is allowed.
+  -->
+  - **conditions.type** (string)，必需
+  
+    状况的类型。已知的状况是 "Approved"、"Denied" 与 "Failed"。
+    
+    通过 /approval 子资源添加 “Approved” 状况，表示请求已被批准并且应由签名者颁发。
+    
+    通过 /approval 子资源添加 “Denied” 状况，指示请求被拒绝并且不应由签名者颁发。
+    
+    通过 /status 子资源添加 “Failed” 状况，表示签名者未能颁发证书。
+    
+    Approved 和 Denied 状况是相互排斥的。Approved、Denied 和 Failed 状况一旦添加就无法删除。
+    
+    给定类型只允许设置一种状况。
+
+  <!-- 
+  - **conditions.lastTransitionTime** (Time)
+
+    lastTransitionTime is the time the condition last transitioned from one status to another. 
+	If unset, when a new condition type is added or an existing condition's status is changed, 
+	the server defaults this to the current time.
+
+    <a name="Time"></a>
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  
+	Wrappers are provided for many of the factory methods that the time package offers.*
+  -->
+
+  - **conditions.lastTransitionTime** (Time)
+  
+    lastTransitionTime 是状况上一次从一种状态转换到另一种状态的时间。
+    如果未设置，当添加新状况类型或更改现有状况的状态时，服务器默认为当前时间。
+  
+    <a name="Time"></a>
+    **Time 是 time.Time 的包装器，支持正确编码为 YAML 和 JSON。为 time 包提供的许多工厂方法提供了包装器。**
+
+  <!-- 
+  - **conditions.lastUpdateTime** (Time)
+
+    lastUpdateTime is the time of the last update to this condition
+
+    <a name="Time"></a>
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  
+	Wrappers are provided for many of the factory methods that the time package offers.*
+  -->
+  - **conditions.lastUpdateTime** (Time)
+  
+    lastUpdateTime 是该状况最后一次更新的时间。
+  
+    <a name="Time"></a>
+    **Time 是 time.Time 的包装器，支持正确编组为 YAML 和 JSON。为 time 包提供的许多工厂方法提供了包装器。**
+  
+  <!-- 
+  - **conditions.message** (string)
+
+    message contains a human readable message with details about the request state
+  -->
+  - **conditions.message** (string)
+
+    message 包含一个人类可读的消息，包含关于请求状态的详细信息。
+
+  <!-- 
+  - **conditions.reason** (string)
+
+    reason indicates a brief reason for the request state
+  -->
+  - **conditions.reason** (string)
+  
+    reason 表示请求状态的简短原因。
+
+<!-- 
+## CertificateSigningRequestList {#CertificateSigningRequestList}
+
+CertificateSigningRequestList is a collection of CertificateSigningRequest objects
+
+<hr>
+-->
+## CertificateSigningRequestList {#CertificateSigningRequestList}
+
+CertificateSigningRequestList 是 CertificateSigningRequest 对象的集合。
+
+<hr>
+
+<!-- 
+- **apiVersion**: certificates.k8s.io/v1
+
+- **kind**: CertificateSigningRequestList
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+- **items** ([]<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>), required
+
+  items is a collection of CertificateSigningRequest objects
+-->
+- **apiVersion**: certificates.k8s.io/v1
+
+- **kind**: CertificateSigningRequestList
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+- **items** ([]<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>)，必需
+
+  items 是 CertificateSigningRequest 对象的集合。
+
+<!-- 
+## Operations {#Operations}
+-->
+## 操作 {#Operations}
+
+<hr>
+
+<!-- 
+### `get` read the specified CertificateSigningRequest
+
+#### HTTP Request
+
+GET /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}
+-->
+### `get` 读取指定的 CertificateSigningRequest
+
+#### HTTP 请求
+
+GET /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}
+
+<!-- 
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the CertificateSigningRequest
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+
+  CertificateSigningRequest 的名称。
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response
+
+200 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): OK
+
+401: Unauthorized
+
+<!-- 
+### `get` read approval of the specified CertificateSigningRequest
+
+#### HTTP Request
+
+GET /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/approval
+-->
+### `get` 读取指定 CertificateSigningRequest 的批准信息
+
+#### HTTP 请求
+
+GET /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/approval
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the CertificateSigningRequest
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+
+  CertificateSigningRequest 的名称。
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): OK
+
+401: Unauthorized
+
+### `get` read status of the specified CertificateSigningRequest
+
+#### HTTP Request
+
+GET /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/status
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): OK
+
+401: Unauthorized
+
+### `get` 读取指定 CertificateSigningRequest 的状态
+
+#### HTTP 请求
+
+GET /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/status
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the CertificateSigningRequest
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+
+  CertificateSigningRequest 的名称。
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind CertificateSigningRequest
+
+#### HTTP Request
+
+GET /apis/certificates.k8s.io/v1/certificatesigningrequests
+-->
+### `list` list 或 watch CertificateSigningRequest 类型的对象
+
+#### HTTP 请求
+
+GET /apis/certificates.k8s.io/v1/certificatesigningrequests
+
+<!--
+#### Parameters
+
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+-->
+#### 参数
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+-->
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequestList" >}}">CertificateSigningRequestList</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequestList" >}}">CertificateSigningRequestList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a CertificateSigningRequest
+
+#### HTTP Request
+
+POST /apis/certificates.k8s.io/v1/certificatesigningrequests
+-->
+### `create` 创建一个 CertificateSigningRequest
+
+#### HTTP 请求
+
+POST /apis/certificates.k8s.io/v1/certificatesigningrequests
+
+<!--
+#### Parameters
+
+- **body**: <a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>, required
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): OK
+
+201 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): Created
+
+202 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): Accepted
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): OK
+
+201 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): Created
+
+202 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified CertificateSigningRequest
+
+#### HTTP Request
+
+PUT /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}
+
+#### Parameters
+-->
+### `update` 替换指定的 CertificateSigningRequest
+
+#### HTTP 请求
+
+PUT /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the CertificateSigningRequest
+
+- **body**: <a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>, required
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+- **name** (**路径参数**): string，必需
+
+  CertificateSigningRequest 的名称。
+
+- **body**: <a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): OK
+
+201 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): OK
+
+201 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): Created
+
+401: Unauthorized
+
+<!--
+### `update` replace approval of the specified CertificateSigningRequest
+
+#### HTTP Request
+
+PUT /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/approval
+
+#### Parameters
+-->
+### `update` 替换对指定 CertificateSigningRequest 的批准信息
+
+#### HTTP 请求
+
+PUT /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/approval
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the CertificateSigningRequest
+
+- **body**: <a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>, required
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+- **name** (**路径参数**): string，必需
+
+  CertificateSigningRequest 的名称。
+
+- **body**: <a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): OK
+
+201 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): OK
+
+201 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): Created
+
+401: Unauthorized
+
+<!--
+### `update` replace status of the specified CertificateSigningRequest
+
+#### HTTP Request
+
+PUT /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/status
+
+#### Parameters
+-->
+### `update` 替换指定 CertificateSigningRequest 的状态
+
+#### HTTP 请求
+
+PUT /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/status
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the CertificateSigningRequest
+
+- **body**: <a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>, required
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+- **name** (**路径参数**): string，必需
+
+  CertificateSigningRequest 的名称。
+
+- **body**: <a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>，必需
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): OK
+
+201 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): OK
+
+201 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified CertificateSigningRequest
+
+#### HTTP Request
+
+PATCH /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}
+
+#### Parameters
+-->
+### `patch` 部分更新指定的 CertificateSigningRequest
+
+#### HTTP 请求
+
+PATCH /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the CertificateSigningRequest
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **name** (**路径参数**): string，必需
+
+  CertificateSigningRequest 的名称。
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+  
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): OK
+
+201 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): OK
+
+201 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update approval of the specified CertificateSigningRequest
+
+#### HTTP Request
+
+PATCH /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/approval
+
+#### Parameters
+-->
+### `patch` 部分更新指定 CertificateSigningRequest 的批准信息
+
+#### HTTP 请求
+
+PATCH /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/approval
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the CertificateSigningRequest
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **name** (**路径参数**): string，必需
+
+  CertificateSigningRequest 的名称。
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+  
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+  
+<!--
+#### Response
+
+200 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): OK
+
+201 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): OK
+
+201 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update status of the specified CertificateSigningRequest
+
+#### HTTP Request
+
+PATCH /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/status
+
+#### Parameters
+-->
+### `patch` 部分更新指定 CertificateSigningRequest 的状态
+
+#### HTTP 请求
+
+PATCH /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/status
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the CertificateSigningRequest
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **name** (**路径参数**): string，必需
+
+  CertificateSigningRequest 的名称。
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+  
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+  
+<!--
+#### Response
+
+200 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): OK
+
+201 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): OK
+
+201 (<a href="{{< ref "../authentication-resources/certificate-signing-request-v1#CertificateSigningRequest" >}}">CertificateSigningRequest</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a CertificateSigningRequest
+
+#### HTTP Request
+
+DELETE /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}
+
+#### Parameters
+-->
+### `delete` 删除一个 CertificateSigningRequest
+
+#### HTTP 请求
+
+DELETE /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the CertificateSigningRequest
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+- **name** (**路径参数**): string，必需
+
+  CertificateSigningRequest 的名称。
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+  
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of CertificateSigningRequest
+
+#### HTTP Request
+
+DELETE /apis/certificates.k8s.io/v1/certificatesigningrequests
+
+#### Parameters
+-->
+### `deletecollection` 删除 CertificateSigningRequest 集合
+
+#### HTTP 请求
+
+DELETE /apis/certificates.k8s.io/v1/certificatesigningrequests
+
+#### 参数
+
+<!--
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+-->
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+  
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+  
+<!--
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+-->
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+  
+<!--
+#### Response
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/authentication-resources/service-account-v1.md b/content/zh-cn/docs/reference/kubernetes-api/authentication-resources/service-account-v1.md
new file mode 100644
index 0000000000..b2c44fc792
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/authentication-resources/service-account-v1.md
@@ -0,0 +1,816 @@
+---
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "ServiceAccount"
+content_type: "api_reference"
+description: "ServiceAccount 将以下内容绑定在一起：1. 用户可以理解的名称，也可能是外围系统理解的身份标识 2. 可以验证和授权的主体 3. 一组 secret。"
+title: "ServiceAccount"
+weight: 1
+auto_generated: true
+---
+
+<!--
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "ServiceAccount"
+content_type: "api_reference"
+description: "ServiceAccount binds together: * a name, understood by users, and perhaps by peripheral systems, for an identity * a principal that can be authenticated and authorized * a set of secrets."
+title: "ServiceAccount"
+weight: 1
+auto_generated: true
+-->
+
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference content, please follow the
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+`apiVersion: v1`
+
+`import "k8s.io/api/core/v1"`
+
+
+## ServiceAccount {#ServiceAccount}
+
+<!--
+ServiceAccount binds together: * a name, understood by users, and perhaps by peripheral systems, for an identity * a principal that can be authenticated and authorized * a set of secrets
+-->
+ServiceAccount 将以下内容绑定在一起：
+* 用户可以理解的名称，也可能是外围系统理解的身份标识
+* 可以验证和授权的主体
+* 一组 secret
+
+<hr>
+
+- **apiVersion**: v1
+
+
+- **kind**: ServiceAccount
+
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  <!--
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+  标准对象的元数据，更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **automountServiceAccountToken** (boolean)
+
+  <!--
+  AutomountServiceAccountToken indicates whether pods running as this service account should have an API token automatically mounted. Can be overridden at the pod level.
+  -->
+  AutomountServiceAccountToken 指示作为此服务帐户运行的 pod 是否应自动挂载 API 令牌，
+  可以在 pod 级别覆盖。
+
+- **imagePullSecrets** ([]<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
+
+  <!--
+  ImagePullSecrets is a list of references to secrets in the same namespace to use for pulling any images in pods that reference this ServiceAccount. ImagePullSecrets are distinct from Secrets because Secrets can be mounted in the pod, but ImagePullSecrets are only accessed by the kubelet. More info: https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod
+  -->
+  imagePullSecrets 是对同一命名空间中 Secret 的引用列表，用于拉取引用此 ServiceAccount 的 Pod 中的任何镜像。
+  imagePullSecrets 与 Secrets 不同，因为 Secrets 可以挂载在 Pod 中，但 imagePullSecrets 只能由 kubelet 访问。
+  更多信息： https://kubernetes.io/zh-cn/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod
+
+- **secrets** ([]<a href="{{< ref "../common-definitions/object-reference#ObjectReference" >}}">ObjectReference</a>)
+
+  <!--
+  *Patch strategy: merge on key `name`*
+
+  Secrets is a list of the secrets in the same namespace that pods running using this ServiceAccount are allowed to use. Pods are only limited to this list if this service account has a "kubernetes.io/enforce-mountable-secrets" annotation set to "true". This field should not be used to find auto-generated service account token secrets for use outside of pods. Instead, tokens can be requested directly using the TokenRequest API, or service account token secrets can be manually created. More info: https://kubernetes.io/docs/concepts/configuration/secret
+  Secrets is a list of the secrets in the same namespace that pods running using this ServiceAccount are allowed to use
+  Pods are only limited to this list if this service account has a "kubernetes.io/enforce-mountabl
+  -secrets" annotation set to "true". This field should not be used to find auto-generated service accoun
+  token secrets for use outside of pods. Instead, tokens can be requested directly using the TokenRequest API, or servic
+  account token secrets can be manually created. More info: https://kubernetes.io/docs/concepts/configuration/secret
+  -->
+  **补丁策略：基于键 `name` 合并**
+
+  Secrets 是允许使用此 ServiceAccount 运行的 pod 使用的同一命名空间中的秘密列表。
+  仅当此服务帐户的 “kubernetes.io/enforce-mountable-secrets” 注释设置为 “true” 时，Pod 才限于此列表。
+  此字段不应用于查找自动生成的服务帐户令牌机密以在 pod 之外使用。
+  相反，可以使用 TokenRequest API 直接请求令牌，或者可以手动创建服务帐户令牌 secret。
+  更多信息： https://kubernetes.io/docs/concepts/configuration/secret
+
+## ServiceAccountList {#ServiceAccountList}
+
+<!--
+ServiceAccountList is a list of ServiceAccount objects
+-->
+ServiceAccountList 是 ServiceAccount 对象的列表
+
+<hr>
+
+- **apiVersion**: v1
+
+
+- **kind**: ServiceAccountList
+
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  <!--
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+  -->
+  标准列表元数据, 更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+<!--
+- **items** ([]<a href="{{< ref "../authentication-resources/service-account-v1#ServiceAccount" >}}">ServiceAccount</a>), required
+-->
+- **items** ([]<a href="{{< ref "../authentication-resources/service-account-v1#ServiceAccount" >}}">ServiceAccount</a>), 必需
+
+  <!--
+  List of ServiceAccounts. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/
+  -->
+  ServiceAccount 列表，更多信息： https://kubernetes.io/zh-cn/docs/tasks/configure-pod-container/configure-service-account/
+
+<!--
+## Operations {#Operations}
+-->
+## 操作 {#Operations}
+
+<hr>
+
+<!--
+### `get` read the specified ServiceAccount
+
+#### HTTP Request
+-->
+### `get` 读取指定的 ServiceAccount
+
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/serviceaccounts/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+-->
+- **name** (**路径参数**): string, 必需
+
+  <!--
+  name of the ServiceAccount
+  -->
+  ServiceAccount 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authentication-resources/service-account-v1#ServiceAccount" >}}">ServiceAccount</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind ServiceAccount
+
+#### HTTP Request
+-->
+### `list` 列出或监控 ServiceAccount 类型的对象
+
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/serviceaccounts
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+-->
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!--
+- **continue** (*in query*): string
+-->
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+-->
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+<!--
+- **labelSelector** (*in query*): string
+-->
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+
+<!--
+- **limit** (*in query*): integer
+-->
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+-->
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+-->
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+-->
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+- **watch** (*in query*): boolean
+-->
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../authentication-resources/service-account-v1#ServiceAccountList" >}}">ServiceAccountList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind ServiceAccount
+
+#### HTTP Request
+-->
+### `list` 列出或监控 ServiceAccount 类型的对象
+
+#### HTTP 请求
+
+GET /api/v1/serviceaccounts
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+-->
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!--
+- **continue** (*in query*): string
+-->
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+-->
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+<!--
+- **labelSelector** (*in query*): string
+-->
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+-->
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+-->
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+-->
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+-->
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+- **watch** (*in query*): boolean
+-->
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authentication-resources/service-account-v1#ServiceAccountList" >}}">ServiceAccountList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a ServiceAccount
+
+#### HTTP Request
+-->
+### `create` 创建一个 ServiceAccount
+
+#### HTTP 请求
+
+POST /api/v1/namespaces/{namespace}/serviceaccounts
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../authentication-resources/service-account-v1#ServiceAccount" >}}">ServiceAccount</a>, required
+-->
+- **body**: <a href="{{< ref "../authentication-resources/service-account-v1#ServiceAccount" >}}">ServiceAccount</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authentication-resources/service-account-v1#ServiceAccount" >}}">ServiceAccount</a>): OK
+
+201 (<a href="{{< ref "../authentication-resources/service-account-v1#ServiceAccount" >}}">ServiceAccount</a>): Created
+
+202 (<a href="{{< ref "../authentication-resources/service-account-v1#ServiceAccount" >}}">ServiceAccount</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified ServiceAccount
+
+#### HTTP Request
+-->
+`update` 替换指定的ServiceAccount
+
+#### HTTP 请求
+
+PUT /api/v1/namespaces/{namespace}/serviceaccounts/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+-->
+- **name** (**路径参数**): string, required
+
+  name of the ServiceAccount
+
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../authentication-resources/service-account-v1#ServiceAccount" >}}">ServiceAccount</a>, required
+-->
+- **body**: <a href="{{< ref "../authentication-resources/service-account-v1#ServiceAccount" >}}">ServiceAccount</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authentication-resources/service-account-v1#ServiceAccount" >}}">ServiceAccount</a>): OK
+
+201 (<a href="{{< ref "../authentication-resources/service-account-v1#ServiceAccount" >}}">ServiceAccount</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified ServiceAccount
+
+#### HTTP Request
+-->
+`patch` 部分更新指定的 ServiceAccount
+
+#### HTTP 请求
+
+PATCH /api/v1/namespaces/{namespace}/serviceaccounts/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+-->
+- **name** (**路径参数**): string, 必需
+
+  <!--
+  name of the ServiceAccount
+  -->
+  ServiceAccount 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **force** (*in query*): boolean
+-->
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+<!--
+#### Response
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../authentication-resources/service-account-v1#ServiceAccount" >}}">ServiceAccount</a>): OK
+
+201 (<a href="{{< ref "../authentication-resources/service-account-v1#ServiceAccount" >}}">ServiceAccount</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a ServiceAccount
+
+#### HTTP Request
+-->
+### `delete` 删除一个 ServiceAccount
+#### HTTP 请求
+
+
+DELETE /api/v1/namespaces/{namespace}/serviceaccounts/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+-->
+- **name** (**路径参数**): string, 必需
+
+  <!--
+  name of the ServiceAccount
+  -->
+  ServiceAccount 的名称
+
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+-->
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authentication-resources/service-account-v1#ServiceAccount" >}}">ServiceAccount</a>): OK
+
+202 (<a href="{{< ref "../authentication-resources/service-account-v1#ServiceAccount" >}}">ServiceAccount</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of ServiceAccount
+
+#### HTTP Request
+-->
+### `deletecollection` 删除 ServiceAccount 的集合
+
+#### HTTP 请求
+
+DELETE /api/v1/namespaces/{namespace}/serviceaccounts
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **continue** (*in query*): string
+-->
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+-->
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+-->
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **labelSelector** (*in query*): string
+-->
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+-->
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **propagationPolicy** (*in query*): string
+-->
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+-->
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+-->
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+-->
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/authentication-resources/token-request-v1.md b/content/zh-cn/docs/reference/kubernetes-api/authentication-resources/token-request-v1.md
new file mode 100644
index 0000000000..5623e77427
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/authentication-resources/token-request-v1.md
@@ -0,0 +1,225 @@
+---
+api_metadata:
+  apiVersion: "authentication.k8s.io/v1"
+  import: "k8s.io/api/authentication/v1"
+  kind: "TokenRequest"
+content_type: "api_reference"
+description: "TokenRequest 为给定的服务账号请求一个令牌。"
+title: "TokenRequest"
+weight: 2
+---
+<!--
+api_metadata:
+  apiVersion: "authentication.k8s.io/v1"
+  import: "k8s.io/api/authentication/v1"
+  kind: "TokenRequest"
+content_type: "api_reference"
+description: "TokenRequest requests a token for a given service account."
+title: "TokenRequest"
+weight: 2
+auto_generated: true
+-->
+
+`apiVersion: authentication.k8s.io/v1`
+
+`import "k8s.io/api/authentication/v1"`
+
+## TokenRequest {#TokenRequest}
+<!--
+TokenRequest requests a token for a given service account.
+-->
+TokenRequest 为给定的服务账号请求一个令牌。
+
+<hr>
+
+- **apiVersion**: authentication.k8s.io/v1
+
+- **kind**: TokenRequest
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../authentication-resources/token-request-v1#TokenRequestSpec" >}}">TokenRequestSpec</a>), required
+  Spec holds information about the request being evaluated
+- **status** (<a href="{{< ref "../authentication-resources/token-request-v1#TokenRequestStatus" >}}">TokenRequestStatus</a>)
+
+  Status is filled in by the server and indicates whether the token can be authenticated.
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../authentication-resources/token-request-v1#TokenRequestSpec" >}}">TokenRequestSpec</a>)，必需
+
+  spec 包含与正被评估的请求相关的信息。
+
+- **status** (<a href="{{< ref "../authentication-resources/token-request-v1#TokenRequestStatus" >}}">TokenRequestStatus</a>)
+
+  status 由服务器填充，表示该令牌是否可用于身份认证。
+
+## TokenRequestSpec {#TokenRequestSpec}
+<!--
+TokenRequestSpec contains client provided parameters of a token request.
+-->
+TokenRequestSpec 包含客户端提供的令牌请求参数。
+
+<hr>
+
+<!--
+- **audiences** ([]string), required
+
+  Audiences are the intendend audiences of the token. A recipient of a token must identitfy themself with an identifier in the list of audiences of the token, and otherwise should reject the token. A token issued for multiple audiences may be used to authenticate against any of the audiences listed but implies a high degree of trust between the target audiences.
+-->
+- **audiences** ([]string)，必需
+  
+  audiences 是令牌预期的受众。
+  令牌的接收方必须在令牌的受众列表中用一个标识符来标识自己，否则应拒绝该令牌。
+  为多个受众签发的令牌可用于认证所列举的任意受众的身份，但这意味着目标受众彼此之间的信任程度较高。
+
+- **boundObjectRef** (BoundObjectReference)
+  
+  <!--
+  BoundObjectRef is a reference to an object that the token will be bound to. The token will only be valid for as long as the bound object exists. NOTE: The API server's TokenReview endpoint will validate the BoundObjectRef, but other audiences may not. Keep ExpirationSeconds small if you want prompt revocation.
+
+  <a name="BoundObjectReference"></a>
+  *BoundObjectReference is a reference to an object that a token is bound to.*
+  -->
+  boundObjectRef 是对令牌所绑定的一个对象的引用。该令牌只有在绑定对象存在时才有效。
+  注：API 服务器的 TokenReview 端点将校验 boundObjectRef，但其他受众可能不用这样。
+  如果你想要快速撤销，请为 expirationSeconds 设一个较小的值。
+
+  <a name="BoundObjectReference"></a>
+  **BoundObjectReference 是对令牌所绑定的一个对象的引用。**
+
+  <!--
+  - **boundObjectRef.apiVersion** (string)
+    API version of the referent.
+
+  - **boundObjectRef.kind** (string)
+    Kind of the referent. Valid kinds are 'Pod' and 'Secret'.
+
+  - **boundObjectRef.name** (string)
+    Name of the referent.
+  
+  - **boundObjectRef.uid** (string)
+    UID of the referent.
+  -->
+  - **boundObjectRef.apiVersion** (string)
+
+    引用对象的 API 版本。
+
+  - **boundObjectRef.kind** (string)
+
+    引用对象的类别。有效的类别为 “Pod” 和 “Secret”。
+
+  - **boundObjectRef.name** (string)
+
+    引用对象的名称。
+
+  - **boundObjectRef.uid** (string)
+    引用对象的 UID。
+
+<!--
+- **expirationSeconds** (int64)
+
+  ExpirationSeconds is the requested duration of validity of the request. The token issuer may return a token with a different validity duration so a client needs to check the 'expiration' field in a response.
+-->
+- **expirationSeconds** (int64)
+
+  expirationSeconds 是请求生效的持续时间。
+  令牌签发方可能返回一个生效期不同的令牌，因此客户端需要检查响应中的 “expiration” 字段。
+
+## TokenRequestStatus {#TokenRequestStatus}
+<!--
+TokenRequestStatus is the result of a token request.
+-->
+TokenRequestStatus 是一个令牌请求的结果。
+
+<hr>
+
+<!--
+- **expirationTimestamp** (Time), required
+  ExpirationTimestamp is the time of expiration of the returned token.
+
+  <a name="Time"></a>
+  *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+
+- **token** (string), required
+  Token is the opaque bearer token.
+-->
+- **expirationTimestamp** (Time)，必需
+
+  expirationTimestamp 是已返回令牌的到期时间。
+
+  <a name="Time"></a>
+  **Time 是 time.Time 的包装器，支持正确编组为 YAML 和 JSON。为 time 包提供的许多工厂方法提供了包装器。**
+
+- **token** (string)，必需
+
+  token 是不透明的持有者令牌（Bearer Token）。
+
+<!--
+## Operations {#Operations}
+<hr>
+### `create` create token of a ServiceAccount
+#### HTTP Request
+-->
+## 操作 {#Operations}
+<hr>
+
+### `create` 创建 ServiceAccount 的令牌
+#### HTTP 请求
+POST /api/v1/namespaces/{namespace}/serviceaccounts/{name}/token
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the TokenRequest
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../authentication-resources/token-request-v1#TokenRequest" >}}">TokenRequest</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+
+  TokenRequest 的名称
+
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../authentication-resources/token-request-v1#TokenRequest" >}}">TokenRequest</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../authentication-resources/token-request-v1#TokenRequest" >}}">TokenRequest</a>): OK
+
+201 (<a href="{{< ref "../authentication-resources/token-request-v1#TokenRequest" >}}">TokenRequest</a>): Created
+
+202 (<a href="{{< ref "../authentication-resources/token-request-v1#TokenRequest" >}}">TokenRequest</a>): Accepted
+
+401: Unauthorized
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/authentication-resources/token-review-v1.md b/content/zh-cn/docs/reference/kubernetes-api/authentication-resources/token-review-v1.md
new file mode 100644
index 0000000000..0ec8dc91be
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/authentication-resources/token-review-v1.md
@@ -0,0 +1,222 @@
+---
+api_metadata:
+  apiVersion: "authentication.k8s.io/v1"
+  import: "k8s.io/api/authentication/v1"
+  kind: "TokenReview"
+content_type: "api_reference"
+description: "TokenReview 尝试通过验证令牌来确认已知用户。"
+title: "TokenReview"
+weight: 3
+auto_generated: true
+---
+
+<!--
+api_metadata:
+  apiVersion: "authentication.k8s.io/v1"
+  import: "k8s.io/api/authentication/v1"
+  kind: "TokenReview"
+content_type: "api_reference"
+description: "TokenReview attempts to authenticate a token to a known user."
+title: "TokenReview"
+weight: 3
+auto_generated: true
+-->
+
+`apiVersion: authentication.k8s.io/v1`
+
+`import "k8s.io/api/authentication/v1"`
+
+<!--
+## TokenReview {#TokenReview}
+TokenReview attempts to authenticate a token to a known user. Note: TokenReview requests may be cached by the webhook token authenticator plugin in the kube-apiserver.
+-->
+## TokenReview {#TokenReview}
+
+TokenReview 尝试通过验证令牌来确认已知用户。
+注意：TokenReview 请求可能会被 kube-apiserver 中的 webhook 令牌验证器插件缓存。
+
+<hr>
+
+- **apiVersion**: authentication.k8s.io/v1
+
+
+- **kind**: TokenReview
+
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  <!--
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+  标准对象的元数据，更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../authentication-resources/token-review-v1#TokenReviewSpec" >}}">TokenReviewSpec</a>), required
+
+  <!--
+  Spec holds information about the request being evaluated
+  -->
+  spec 保存有关正在评估的请求的信息
+
+- **status** (<a href="{{< ref "../authentication-resources/token-review-v1#TokenReviewStatus" >}}">TokenReviewStatus</a>)
+
+  <!--
+  Status is filled in by the server and indicates whether the request can be authenticated.
+  -->
+  status 由服务器填写，指示请求是否可以通过身份验证。
+
+
+## TokenReviewSpec {#TokenReviewSpec}
+
+<!--
+TokenReviewSpec is a description of the token authentication request.
+-->
+TokenReviewPec 是对令牌身份验证请求的描述。
+
+<hr>
+
+- **audiences** ([]string)
+
+  <!--
+  Audiences is a list of the identifiers that the resource server presented with the token identifies as. Audience-aware token authenticators will verify that the token was intended for at least one of the audiences in this list. If no audiences are provided, the audience will default to the audience of the Kubernetes apiserver.
+  -->
+  audiences 是带有令牌的资源服务器标识为受众的标识符列表。
+  受众感知令牌身份验证器将验证令牌是否适用于此列表中的至少一个受众。
+  如果未提供受众，受众将默认为 Kubernetes API 服务器的受众。
+
+- **token** (string)
+
+  <!--
+  Token is the opaque bearer token.
+  -->
+  token 是不透明的持有者令牌（Bearer Token）。
+
+## TokenReviewStatus {#TokenReviewStatus}
+
+<!--
+TokenReviewStatus is the result of the token authentication request.
+-->
+TokenReviewStatus 是令牌认证请求的结果。
+
+<hr>
+
+- **audiences** ([]string)
+
+  <!--
+  Audiences are audience identifiers chosen by the authenticator that are compatible with both the TokenReview and token. An identifier is any identifier in the intersection of the TokenReviewSpec audiences and the token's audiences. A client of the TokenReview API that sets the spec.audiences field should validate that a compatible audience identifier is returned in the status.audiences field to ensure that the TokenReview server is audience aware. If a TokenReview returns an empty status.audience field where status.authenticated is "true", the token is valid against the audience of the Kubernetes API server.
+  -->
+  audiences 是身份验证者选择的与 TokenReview 和令牌兼容的受众标识符。标识符是
+  TokenReviewSpec 受众和令牌受众的交集中的任何标识符。设置 spec.audiences
+  字段的 TokenReview API 的客户端应验证在 status.audiences 字段中返回了兼容的受众标识符，
+  以确保 TokenReview 服务器能够识别受众。如果 TokenReview
+  返回一个空的 status.audience 字段，其中 status.authenticated 为 “true”，
+  则该令牌对 Kubernetes API 服务器的受众有效。
+
+- **authenticated** (boolean)
+  <!--
+  Authenticated indicates that the token was associated with a known user.
+  -->
+  authenticated 表示令牌与已知用户相关联。
+
+- **error** (string)
+
+  <!--
+  Error indicates that the token couldn't be checked
+  -->
+  error 表示无法检查令牌
+
+- **user** (UserInfo)
+
+  <!--
+  User is the UserInfo associated with the provided token.
+  -->
+  user 是与提供的令牌关联的 UserInfo。
+
+  <a name="UserInfo"></a>
+  <--
+  *UserInfo holds the information about the user needed to implement the user.Info interface.*
+  -->
+  **UserInfo 保存实现 user.Info 接口所需的用户信息**
+
+  - **user.extra** (map[string][]string)
+
+    <!--
+    Any additional information provided by the authenticator.
+    -->
+   验证者提供的任何附加信息。
+
+  - **user.groups** ([]string)
+
+    <!--
+    The names of groups this user is a part of.
+    -->
+   此用户所属的组的名称。
+
+  - **user.uid** (string)
+
+    <!--
+    A unique value that identifies this user across time. If this user is deleted and another user by the same name is added, they will have different UIDs.
+    -->
+   跨时间标识此用户的唯一值。如果删除此用户并添加另一个同名用户，他们将拥有不同的 UID。
+
+  - **user.username** (string)
+
+    <!--
+    The name that uniquely identifies this user among all active users.
+    -->
+   在所有活动用户中唯一标识此用户的名称。
+
+<!--
+## Operations {#Operations}
+-->
+## 操作 {#Operations}
+
+<hr>
+
+<!--
+### `create` create a TokenReview
+
+#### HTTP Request
+-->
+### `create` 创建一个TokenReview
+
+#### HTTP 请求
+
+POST /apis/authentication.k8s.io/v1/tokenreviews
+
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../authentication-resources/token-review-v1#TokenReview" >}}">TokenReview</a>, required
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../authentication-resources/token-review-v1#TokenReview" >}}">TokenReview</a>, 必需
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authentication-resources/token-review-v1#TokenReview" >}}">TokenReview</a>): OK
+
+201 (<a href="{{< ref "../authentication-resources/token-review-v1#TokenReview" >}}">TokenReview</a>): Created
+
+202 (<a href="{{< ref "../authentication-resources/token-review-v1#TokenReview" >}}">TokenReview</a>): Accepted
+
+401: Unauthorized
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/_index.md b/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/_index.md
new file mode 100644
index 0000000000..ebacd8e225
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/_index.md
@@ -0,0 +1,7 @@
+---
+title: "鉴权资源"
+weight: 5
+auto_generated: true
+---
+
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/cluster-role-binding-v1.md b/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/cluster-role-binding-v1.md
new file mode 100644
index 0000000000..fbfa9dd428
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/cluster-role-binding-v1.md
@@ -0,0 +1,619 @@
+---
+api_metadata:
+  apiVersion: "rbac.authorization.k8s.io/v1"
+  import: "k8s.io/api/rbac/v1"
+  kind: "ClusterRoleBinding"
+content_type: "api_reference"
+description: "ClusterRoleBinding 引用 ClusterRole，但不包含它。"
+title: "ClusterRoleBinding"
+weight: 6
+auto_generated: false
+---
+<!-- 
+---
+api_metadata:
+  apiVersion: "rbac.authorization.k8s.io/v1"
+  import: "k8s.io/api/rbac/v1"
+  kind: "ClusterRoleBinding"
+content_type: "api_reference"
+description: "ClusterRoleBinding references a ClusterRole, but not contain it."
+title: "ClusterRoleBinding"
+weight: 6
+auto_generated: true
+---
+-->
+<!-- 
+`apiVersion: rbac.authorization.k8s.io/v1`
+
+`import "k8s.io/api/rbac/v1"`
+-->
+`apiVersion: rbac.authorization.k8s.io/v1`
+
+`import "k8s.io/api/rbac/v1"`
+<!--
+## ClusterRoleBinding {#ClusterRoleBinding}
+ClusterRoleBinding references a ClusterRole, but not contain it.  It can reference a ClusterRole in the global namespace, and adds who information via Subject.
+-->
+## ClusterRoleBinding {#ClusterRoleBinding}
+
+ClusterRoleBinding 引用 ClusterRole，但不包含它。
+它可以引用全局命名空间中的 ClusterRole，并通过 Subject 添加主体信息。
+<!-- 
+<hr>
+- **apiVersion**: rbac.authorization.k8s.io/v1
+- **kind**: ClusterRoleBinding
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  Standard object's metadata.
+-->
+<hr>
+
+- **apiVersion**: rbac.authorization.k8s.io/v1
+
+- **kind**: ClusterRoleBinding
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  标准对象的元数据。
+<!-- 
+- **roleRef** (RoleRef), required
+  RoleRef can only reference a ClusterRole in the global namespace. If the RoleRef cannot be resolved, the Authorizer must return an error.
+  <a name="RoleRef"></a>
+  *RoleRef contains information that points to the role being used*
+  - **roleRef.apiGroup** (string), required
+    APIGroup is the group for the resource being referenced
+  - **roleRef.kind** (string), required
+    Kind is the type of resource being referenced
+  - **roleRef.name** (string), required
+    Name is the name of resource being referenced
+-->
+- **roleRef** (RoleRef)，必需
+
+  RoleRef 只能引用全局命名空间中的 ClusterRole。
+  如果无法解析 RoleRef，则 Authorizer 必定返回一个错误。
+  
+  <a name="RoleRef"></a>
+  **RoleRef 包含指向正被使用的角色的信息。**
+
+  - **roleRef.apiGroup** (string)，必需
+
+    apiGroup 是被引用资源的组
+
+  - **roleRef.kind** (string)，必需
+
+    kind 是被引用的资源的类别
+
+  - **roleRef.name** (string)，必需
+
+    name 是被引用的资源的名称
+<!-- 
+- **subjects** ([]Subject)
+  Subjects holds references to the objects the role applies to.
+  <a name="Subject"></a>
+  *Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference, or a value for non-objects such as user and group names.*
+-->
+- **subjects** ([]Subject)
+
+  Subjects 包含角色所适用的对象的引用。
+  
+  <a name="Subject"></a>
+  **Subject 包含对角色绑定所适用的对象或用户标识的引用。其中可以包含直接 API 对象的引用或非对象（如用户名和组名）的值。**
+  <!--
+  - **subjects.kind** (string), required
+    Kind of object being referenced. Values defined by this API group are "User", "Group", and "ServiceAccount". If the Authorizer does not recognized the kind value, the Authorizer should report an error.
+  - **subjects.name** (string), required
+    Name of the object being referenced. 
+  -->
+  - **subjects.kind** (string)，必需
+
+    被引用的对象的类别。这个 API 组定义的值是 `User`、`Group` 和 `ServiceAccount`。
+    如果 Authorizer 无法识别类别值，则 Authorizer 应报告一个错误。
+
+  - **subjects.name** (string)，必需
+
+    被引用的对象的名称。
+  <!-- 
+    - **subjects.apiGroup** (string)
+    APIGroup holds the API group of the referenced subject. Defaults to "" for ServiceAccount subjects. Defaults to "rbac.authorization.k8s.io" for User and Group subjects.
+  - **subjects.namespace** (string)
+    Namespace of the referenced object.  If the object kind is non-namespace, such as "User" or "Group", and this value is not empty the Authorizer should report an error.
+  -->
+  - **subjects.apiGroup** (string)
+
+    apiGroup 包含被引用主体的 API 组。对于 ServiceAccount 主体默认为 ""。
+    对于 User 和 Group 主体，默认为 "rbac.authorization.k8s.io"。
+
+  - **subjects.namespace** (string)
+
+    被引用对象的命名空间。
+    如果对象类别是 "User" 或 "Group" 等非命名空间作用域的对象且该值不为空，
+    则 Authorizer 应报告一个错误。
+<!-- 
+## ClusterRoleBindingList {#ClusterRoleBindingList}
+ClusterRoleBindingList is a collection of ClusterRoleBindings
+<hr>
+- **apiVersion**: rbac.authorization.k8s.io/v1
+- **kind**: ClusterRoleBindingList
+-->
+## ClusterRoleBindingList {#ClusterRoleBindingList}
+
+ClusterRoleBindingList 是 ClusterRoleBinding 的集合。
+
+<hr>
+
+- **apiVersion**: rbac.authorization.k8s.io/v1
+
+- **kind**: ClusterRoleBindingList
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  Standard object's metadata.
+- **items** ([]<a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBinding" >}}">ClusterRoleBinding</a>), required
+  Items is a list of ClusterRoleBindings
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  标准的对象元数据。
+
+- **items** ([]<a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBinding" >}}">ClusterRoleBinding</a>)，必需
+
+  items 是 ClusterRoleBindings 的列表。
+<!-- 
+## Operations {#Operations}
+<hr>
+-->
+## 操作 {#Operations}
+
+<hr>
+
+<!-- 
+### `get` read the specified ClusterRoleBinding
+#### HTTP Request
+-->
+### `get` 读取指定的 ClusterRoleBinding
+
+#### HTTP 请求
+
+GET /apis/rbac.authorization.k8s.io/v1/clusterrolebindings/{name}
+<!-- 
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ClusterRoleBinding
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+
+  ClusterRoleBinding 的名称
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+<!-- 
+#### Response
+200 (<a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBinding" >}}">ClusterRoleBinding</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBinding" >}}">ClusterRoleBinding</a>): OK
+
+401: Unauthorized
+<!-- 
+### `list` list or watch objects of kind ClusterRoleBinding
+#### HTTP Request
+-->
+### `list` 列出或观测类别为 ClusterRoleBinding 的对象
+
+#### HTTP 请求
+
+GET /apis/rbac.authorization.k8s.io/v1/clusterrolebindings
+<!--
+#### Parameters
+- **allowWatchBookmarks** (*in query*): boolean
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+- **continue** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+- **fieldSelector** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+- **labelSelector** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+- **limit** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+- **resourceVersion** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+- **resourceVersionMatch** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+- **timeoutSeconds** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+- **watch** (*in query*): boolean
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+#### 参数
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+<!-- 
+#### Response
+200 (<a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBindingList" >}}">ClusterRoleBindingList</a>): OK
+401: Unauthorized
+### `create` create a ClusterRoleBinding
+#### HTTP Request
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBindingList" >}}">ClusterRoleBindingList</a>): OK
+
+401: Unauthorized
+
+### `create` 创建 ClusterRoleBinding
+
+#### HTTP 请求
+
+POST /apis/rbac.authorization.k8s.io/v1/clusterrolebindings
+<!-- 
+#### Parameters
+- **body**: <a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBinding" >}}">ClusterRoleBinding</a>, required
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBinding" >}}">ClusterRoleBinding</a>，必需
+<!--
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+- **fieldManager** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+- **fieldValidation** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+<!--
+#### Response
+200 (<a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBinding" >}}">ClusterRoleBinding</a>): OK
+201 (<a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBinding" >}}">ClusterRoleBinding</a>): Created
+202 (<a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBinding" >}}">ClusterRoleBinding</a>): Accepted
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBinding" >}}">ClusterRoleBinding</a>): OK
+
+201 (<a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBinding" >}}">ClusterRoleBinding</a>): Created
+
+202 (<a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBinding" >}}">ClusterRoleBinding</a>): Accepted
+
+401: Unauthorized
+<!--
+### `update` replace the specified ClusterRoleBinding
+#### HTTP Request
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ClusterRoleBinding
+- **body**: <a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBinding" >}}">ClusterRoleBinding</a>, required
+-->
+### `update` 替换指定的 ClusterRoleBinding
+
+#### HTTP 请求
+
+PUT /apis/rbac.authorization.k8s.io/v1/clusterrolebindings/{name}
+
+#### 参数
+
+- **name** (**路径参数**): string，必需
+
+  ClusterRoleBinding 的名称
+
+- **body**: <a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBinding" >}}">ClusterRoleBinding</a>，必需
+<!--
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+- **fieldManager** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+- **fieldValidation** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+<!--
+#### Response
+200 (<a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBinding" >}}">ClusterRoleBinding</a>): OK
+
+201 (<a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBinding" >}}">ClusterRoleBinding</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBinding" >}}">ClusterRoleBinding</a>): OK
+
+201 (<a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBinding" >}}">ClusterRoleBinding</a>): Created
+
+401: Unauthorized
+<!--
+### `patch` partially update the specified ClusterRoleBinding
+#### HTTP Request
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ClusterRoleBinding
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+### `patch` 部分更新指定的 ClusterRoleBinding
+
+#### HTTP 请求
+
+PATCH /apis/rbac.authorization.k8s.io/v1/clusterrolebindings/{name}
+
+#### 参数
+
+- **name** (**路径参数**): string，必需
+
+  ClusterRoleBinding 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+<!--
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+- **fieldManager** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+- **fieldValidation** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+- **force** (*in query*): boolean
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+<!--
+#### Response
+200 (<a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBinding" >}}">ClusterRoleBinding</a>): OK
+201 (<a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBinding" >}}">ClusterRoleBinding</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBinding" >}}">ClusterRoleBinding</a>): OK
+
+201 (<a href="{{< ref "../authorization-resources/cluster-role-binding-v1#ClusterRoleBinding" >}}">ClusterRoleBinding</a>): Created
+
+401: Unauthorized
+<!--
+### `delete` delete a ClusterRoleBinding
+#### HTTP Request
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ClusterRoleBinding
+-->
+### `delete` 删除 ClusterRoleBinding
+
+#### HTTP 请求
+
+DELETE /apis/rbac.authorization.k8s.io/v1/clusterrolebindings/{name}
+
+#### 参数
+
+- **name** (**路径参数**): string，必需
+
+  ClusterRoleBinding 的名称
+<!--
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+- **gracePeriodSeconds** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+- **propagationPolicy** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+<!--
+#### Response
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+<!--
+### `deletecollection` delete collection of ClusterRoleBinding
+#### HTTP Request
+-->
+### `deletecollection` 删除 ClusterRoleBinding 的集合
+
+#### HTTP 请求
+
+DELETE /apis/rbac.authorization.k8s.io/v1/clusterrolebindings
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **continue** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+- **fieldSelector** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+- **gracePeriodSeconds** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+- **labelSelector** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+- **limit** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+- **propagationPolicy** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+- **resourceVersion** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+- **resourceVersionMatch** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+- **timeoutSeconds** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+<!--
+#### Response
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/cluster-role-v1.md b/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/cluster-role-v1.md
new file mode 100644
index 0000000000..c528d0c36f
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/cluster-role-v1.md
@@ -0,0 +1,592 @@
+---
+api_metadata:
+  apiVersion: "rbac.authorization.k8s.io/v1"
+  import: "k8s.io/api/rbac/v1"
+  kind: "ClusterRole"
+content_type: "api_reference"
+description: "ClusterRole 是一个集群级别的 PolicyRule 逻辑分组，可以被 RoleBinding 或 ClusterRoleBinding 作为一个单元引用。"  
+title: "ClusterRole" 
+weight: 5  
+auto_generated: false
+---
+<!--
+---
+api_metadata:
+  apiVersion: "rbac.authorization.k8s.io/v1"
+  import: "k8s.io/api/rbac/v1"
+  kind: "ClusterRole"
+content_type: "api_reference"
+description: "ClusterRole is a cluster level, logical grouping of PolicyRules that can be referenced as a unit by a RoleBinding or ClusterRoleBinding."
+title: "ClusterRole"
+weight: 5
+auto_generated: true
+---
+-->
+
+`apiVersion: rbac.authorization.k8s.io/v1`
+
+`import "k8s.io/api/rbac/v1"`
+<!-- 
+## ClusterRole {#ClusterRole}
+ClusterRole is a cluster level, logical grouping of PolicyRules that can be referenced as a unit by a RoleBinding or ClusterRoleBinding.
+<hr>
+-->
+## ClusterRole {#ClusterRole}
+
+ClusterRole 是一个集群级别的 PolicyRule 逻辑分组，
+可以被 RoleBinding 或 ClusterRoleBinding 作为一个单元引用。
+
+<hr>
+
+- **apiVersion**: rbac.authorization.k8s.io/v1
+
+- **kind**: ClusterRole
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+<!--
+  Standard object's metadata.
+- **aggregationRule** (AggregationRule)
+  AggregationRule is an optional field that describes how to build the Rules for this ClusterRole. If AggregationRule is set, then the Rules are controller managed and direct changes to Rules will be stomped by the controller.
+  <a name="AggregationRule"></a>
+  *AggregationRule describes how to locate ClusterRoles to aggregate into the ClusterRole*
+  - **aggregationRule.clusterRoleSelectors** ([]<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+    ClusterRoleSelectors holds a list of selectors which will be used to find ClusterRoles and create the rules. If any of the selectors match, then the ClusterRole's permissions will be added
+-->
+  标准的对象元数据。
+
+- **aggregationRule** (AggregationRule)
+  
+  aggregationRule 是一个可选字段，用于描述如何构建这个 ClusterRole 的 rules。
+  如果设置了 aggregationRule，则 rules 将由控制器管理，对 rules 的直接变更会被该控制器阻止。
+  
+  <a name="AggregationRule"></a>
+  **aggregationRule 描述如何定位并聚合其它 ClusterRole 到此 ClusterRole**
+  
+  - **aggregationRule.clusterRoleSelectors** ([]<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+    
+    clusterRoleSelectors 包含一个选择器的列表，用于查找 ClusterRole 并创建规则。
+    如果发现任何选择器匹配的 ClusterRole，将添加其对应的权限。
+<!--
+- **rules** ([]PolicyRule)
+  Rules holds all the PolicyRules for this ClusterRole
+
+  <a name="PolicyRule"></a>
+  *PolicyRule holds information that describes a policy rule, but does not contain information about who the rule applies to or which namespace the rule applies to.*
+
+  - **rules.apiGroups** ([]string)
+    APIGroups is the name of the APIGroup that contains the resources.  If multiple API groups are specified, any action requested against one of the enumerated resources in any API group will be allowed.
+
+  - **rules.resources** ([]string)
+    Resources is a list of resources this rule applies to. '*' represents all resources.
+-->
+- **rules** ([]PolicyRule)
+  
+  rules 包含了这个 ClusterRole 的所有 PolicyRule。
+  
+  <a name="PolicyRule"></a>
+  **PolicyRule 包含描述一个策略规则的信息，但不包含该规则适用于哪个主体或适用于哪个命名空间的信息。**
+  
+  - **rules.apiGroups** ([]string)
+    
+    apiGroups 是包含资源的 apiGroup 的名称。
+    如果指定了多个 API 组，则允许针对任何 API 组中的其中一个枚举资源来请求任何操作。
+  
+  - **rules.resources** ([]string)
+    
+    resources 是此规则所适用的资源的列表。“*” 表示所有资源。
+  <!--
+    - **rules.verbs** ([]string), required
+    Verbs is a list of Verbs that apply to ALL the ResourceKinds contained in this rule. '*' represents all verbs.
+
+  - **rules.resourceNames** ([]string)
+    ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.
+
+  - **rules.nonResourceURLs** ([]string)
+    NonResourceURLs is a set of partial urls that a user should have access to.  *s are allowed, but only as the full, final step in the path Since non-resource URLs are not namespaced, this field is only applicable for ClusterRoles referenced from a ClusterRoleBinding. Rules can either apply to API resources (such as "pods" or "secrets") or non-resource URL paths (such as "/api"),  but not both.
+  -->
+  - **rules.verbs** ([]string)，必需
+    
+    verbs 是适用于此规则中所包含的所有 ResourceKinds 的动作。
+    “*” 表示所有动作。
+  
+  - **rules.resourceNames** ([]string)
+    
+    resourceNames 是此规则所适用的资源名称白名单，可选。
+    空集合意味着允许所有资源。
+  
+  - **rules.nonResourceURLs** ([]string)
+    
+    nonResourceURLs 是用户应有权访问的一组部分 URL。
+    允许使用 “*”，但仅能作为路径中最后一段且必须用于完整的一段，
+    因为非资源 URL 没有划分命名空间。
+    此字段仅适用于从 ClusterRoleBinding 引用的 ClusterRole。
+    rules 可以应用到 API 资源（如 “pod” 或 “secret”）或非资源 URL 路径（如 “/api”），
+    但不能同时应用于两者。
+<!-- 
+## ClusterRoleList {#ClusterRoleList}
+
+ClusterRoleList is a collection of ClusterRoles
+-->
+## ClusterRoleList {#ClusterRoleList}
+
+ClusterRoleList 是 ClusterRole 的集合。
+
+<hr>
+
+- **apiVersion**: rbac.authorization.k8s.io/v1
+
+- **kind**: ClusterRoleList
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  <!--
+  Standard object's metadata.
+
+  - **items** ([]<a href="{{< ref "../authorization-resources/cluster-role-v1#ClusterRole" >}}">ClusterRole</a>), required
+
+    Items is a list of ClusterRoles
+  -->
+  标准的对象元数据。
+
+- **items** ([]<a href="{{< ref "../authorization-resources/cluster-role-v1#ClusterRole" >}}">ClusterRole</a>)，必需
+  
+  items 是 ClusterRole 的列表。
+<!--
+## Operations {#Operations}
+-->
+## 操作 {#Operations}
+
+<hr>
+
+<!--
+### `get` read the specified ClusterRole
+#### HTTP Request
+-->
+### `get` 读取指定的 ClusterRole
+
+#### HTTP 请求
+
+GET /apis/rbac.authorization.k8s.io/v1/clusterroles/{name}
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+  name of the ClusterRole
+
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+- **name** (路径参数): string，必需
+  
+  ClusterRole 的名称
+
+- **pretty** (查询参数): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/cluster-role-v1#ClusterRole" >}}">ClusterRole</a>): OK
+
+401: Unauthorized
+<!--
+### `list` list or watch objects of kind ClusterRole
+#### HTTP Request
+-->
+### `list` 列出或观测类别为 ClusterRole 的对象
+
+#### HTTP 请求
+
+GET /apis/rbac.authorization.k8s.io/v1/clusterroles
+<!--
+#### Parameters
+- **allowWatchBookmarks** (*in query*): boolean
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+- **continue** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+- **fieldSelector** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+- **labelSelector** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+- **limit** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+- **resourceVersion** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+- **resourceVersionMatch** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+- **timeoutSeconds** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+- **watch** (*in query*): boolean
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+#### 参数
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/cluster-role-v1#ClusterRoleList" >}}">ClusterRoleList</a>): OK
+
+401: Unauthorized
+<!--
+### `create` create a ClusterRole
+#### HTTP Request
+-->
+### `create` 创建一个 ClusterRole
+
+#### HTTP 请求
+
+POST /apis/rbac.authorization.k8s.io/v1/clusterroles
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../authorization-resources/cluster-role-v1#ClusterRole" >}}">ClusterRole</a>, required
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+- **fieldManager** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+- **fieldValidation** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../authorization-resources/cluster-role-v1#ClusterRole" >}}">ClusterRole</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/cluster-role-v1#ClusterRole" >}}">ClusterRole</a>): OK
+
+201 (<a href="{{< ref "../authorization-resources/cluster-role-v1#ClusterRole" >}}">ClusterRole</a>): Created
+
+202 (<a href="{{< ref "../authorization-resources/cluster-role-v1#ClusterRole" >}}">ClusterRole</a>): Accepted
+
+401: Unauthorized
+<!--
+### `update` replace the specified ClusterRole
+#### HTTP Request
+-->
+### `update` 替换指定的 ClusterRole
+
+#### HTTP 请求
+
+PUT /apis/rbac.authorization.k8s.io/v1/clusterroles/{name}
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ClusterRole
+- **body**: <a href="{{< ref "../authorization-resources/cluster-role-v1#ClusterRole" >}}">ClusterRole</a>, required
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+- **fieldManager** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+- **fieldValidation** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  ClusterRole 的名称
+
+- **body**: <a href="{{< ref "../authorization-resources/cluster-role-v1#ClusterRole" >}}">ClusterRole</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/cluster-role-v1#ClusterRole" >}}">ClusterRole</a>): OK
+
+201 (<a href="{{< ref "../authorization-resources/cluster-role-v1#ClusterRole" >}}">ClusterRole</a>): Created
+
+401: Unauthorized
+<!--
+### `patch` partially update the specified ClusterRole
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 ClusterRole
+
+#### HTTP 请求
+
+PATCH /apis/rbac.authorization.k8s.io/v1/clusterroles/{name}
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ClusterRole
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+- **fieldManager** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+- **fieldValidation** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+- **force** (*in query*): boolean
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  ClusterRole 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/cluster-role-v1#ClusterRole" >}}">ClusterRole</a>): OK
+
+201 (<a href="{{< ref "../authorization-resources/cluster-role-v1#ClusterRole" >}}">ClusterRole</a>): Created
+
+401: Unauthorized
+<!--
+### `delete` delete a ClusterRole
+#### HTTP Request
+-->
+### `delete` 删除一个 ClusterRole
+
+#### HTTP 请求
+
+DELETE /apis/rbac.authorization.k8s.io/v1/clusterroles/{name}
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ClusterRole
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+- **gracePeriodSeconds** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+- **propagationPolicy** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  ClusterRole 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+<!--
+### `deletecollection` delete collection of ClusterRole
+#### HTTP Request
+-->
+### `deletecollection` 删除 ClusterRole 的集合
+
+#### HTTP 请求
+
+DELETE /apis/rbac.authorization.k8s.io/v1/clusterroles
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **continue** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+- **fieldSelector** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+- **gracePeriodSeconds** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+- **labelSelector** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+- **limit** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+- **propagationPolicy** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+- **resourceVersion** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+- **resourceVersionMatch** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+- **timeoutSeconds** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
\ No newline at end of file
diff --git a/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/local-subject-access-review-v1.md b/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/local-subject-access-review-v1.md
new file mode 100644
index 0000000000..26a99fe962
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/local-subject-access-review-v1.md
@@ -0,0 +1,146 @@
+---
+api_metadata:
+  apiVersion: "authorization.k8s.io/v1"
+  import: "k8s.io/api/authorization/v1"
+  kind: "LocalSubjectAccessReview"
+content_type: "api_reference"
+description: "LocalSubjectAccessReview 检查用户或组是否可以在给定的命名空间内执行某操作。"
+title: "LocalSubjectAccessReview"
+weight: 1
+---
+<!--
+api_metadata:
+  apiVersion: "authorization.k8s.io/v1"
+  import: "k8s.io/api/authorization/v1"
+  kind: "LocalSubjectAccessReview"
+content_type: "api_reference"
+description: "LocalSubjectAccessReview checks whether or not a user or group can perform an action in a given namespace."
+title: "LocalSubjectAccessReview"
+weight: 1
+-->
+
+`apiVersion: authorization.k8s.io/v1`
+
+`import "k8s.io/api/authorization/v1"`
+
+## LocalSubjectAccessReview {#LocalSubjectAccessReview}
+<!--
+LocalSubjectAccessReview checks whether or not a user or group can perform an action in a given namespace. Having a namespace scoped resource makes it much easier to grant namespace scoped policy that includes permissions checking.
+
+<hr>
+
+- **apiVersion**: authorization.k8s.io/v1
+
+- **kind**: LocalSubjectAccessReview
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+-->
+LocalSubjectAccessReview 检查用户或组是否可以在给定的命名空间内执行某操作。
+划分命名空间范围的资源简化了命名空间范围的策略设置，例如权限检查。
+
+<hr>
+
+- **apiVersion**: authorization.k8s.io/v1
+
+- **kind**: LocalSubjectAccessReview
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  
+  标准的列表元数据。
+  更多信息：https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+<!--
+- **spec** (<a href="{{< ref "../authorization-resources/subject-access-review-v1#SubjectAccessReviewSpec" >}}">SubjectAccessReviewSpec</a>), required
+
+  Spec holds information about the request being evaluated.  spec.namespace must be equal to the namespace you made the request against.  If empty, it is defaulted.
+
+- **status** (<a href="{{< ref "../authorization-resources/subject-access-review-v1#SubjectAccessReviewStatus" >}}">SubjectAccessReviewStatus</a>)
+
+  Status is filled in by the server and indicates whether the request is allowed or not
+-->
+- **spec** (<a href="{{< ref "../authorization-resources/subject-access-review-v1#SubjectAccessReviewSpec" >}}">SubjectAccessReviewSpec</a>)，必需
+  
+  spec 包含有关正在评估的请求的信息。
+  spec.namespace 必须是你的请求所针对的命名空间。
+  如果留空，则会被设置默认值。
+
+- **status** (<a href="{{< ref "../authorization-resources/subject-access-review-v1#SubjectAccessReviewStatus" >}}">SubjectAccessReviewStatus</a>)
+  
+  status 由服务器填写，表示请求是否被允许。
+
+<!--
+## Operations {#Operations}
+
+<hr>
+
+### `create` create a LocalSubjectAccessReview
+
+#### HTTP Request
+-->
+## 操作 {#Operations}
+
+<hr>
+
+### `create` 创建 LocalSubjectAccessReview
+
+#### HTTP 请求
+
+POST /apis/authorization.k8s.io/v1/namespaces/{namespace}/localsubjectaccessreviews
+<!--
+#### Parameters
+
+- **namespace** (*in path*): string, required
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../authorization-resources/local-subject-access-review-v1#LocalSubjectAccessReview" >}}">LocalSubjectAccessReview</a>, required
+
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../authorization-resources/local-subject-access-review-v1#LocalSubjectAccessReview" >}}">LocalSubjectAccessReview</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/local-subject-access-review-v1#LocalSubjectAccessReview" >}}">LocalSubjectAccessReview</a>): OK
+
+201 (<a href="{{< ref "../authorization-resources/local-subject-access-review-v1#LocalSubjectAccessReview" >}}">LocalSubjectAccessReview</a>): Created
+
+202 (<a href="{{< ref "../authorization-resources/local-subject-access-review-v1#LocalSubjectAccessReview" >}}">LocalSubjectAccessReview</a>): Accepted
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/role-binding-v1.md b/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/role-binding-v1.md
new file mode 100644
index 0000000000..38abf1da14
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/role-binding-v1.md
@@ -0,0 +1,718 @@
+---
+api_metadata:
+  apiVersion: "rbac.authorization.k8s.io/v1"
+  import: "k8s.io/api/rbac/v1"
+  kind: "RoleBinding"
+content_type: "api_reference"
+description: "RoleBinding 引用一个角色，但不包含它。"
+title: "RoleBinding"
+weight: 8
+auto_generated: false
+---
+<!--
+---
+api_metadata:
+  apiVersion: "rbac.authorization.k8s.io/v1"
+  import: "k8s.io/api/rbac/v1"
+  kind: "RoleBinding"
+content_type: "api_reference"
+description: "RoleBinding references a role, but does not contain it."
+title: "RoleBinding"
+weight: 8
+auto_generated: true
+---
+-->
+`apiVersion: rbac.authorization.k8s.io/v1`
+
+`import "k8s.io/api/rbac/v1"`
+
+## RoleBinding {#RoleBinding}
+<!--
+RoleBinding references a role, but does not contain it.  It can reference a Role in the same namespace or a ClusterRole in the global namespace. It adds who information via Subjects and namespace information by which namespace it exists in.  RoleBindings in a given namespace only have effect in that namespace.
+-->
+RoleBinding 引用一个角色，但不包含它。
+RoleBinding 可以引用相同命名空间中的 Role 或全局命名空间中的 ClusterRole。
+RoleBinding 通过 Subjects 和所在的命名空间信息添加主体信息。
+处于给定命名空间中的 RoleBinding 仅在该命名空间中有效。
+
+<hr>
+
+- **apiVersion**: rbac.authorization.k8s.io/v1
+
+- **kind**: RoleBinding
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+<!--
+  Standard object's metadata.
+
+- **roleRef** (RoleRef), required
+
+  RoleRef can reference a Role in the current namespace or a ClusterRole in the global namespace. If the RoleRef cannot be resolved, the Authorizer must return an error.
+
+  <a name="RoleRef"></a>
+  *RoleRef contains information that points to the role being used*
+-->
+  标准的对象元数据。
+
+- **roleRef** (RoleRef)，必需
+  
+  roleRef 可以引用当前命名空间中的 Role 或全局命名空间中的 ClusterRole。
+  如果无法解析 roleRef，则 Authorizer 必定返回一个错误。
+  
+  <a name="RoleRef"></a>
+  **roleRef 包含指向正被使用的角色的信息。**
+<!--
+  - **roleRef.apiGroup** (string), required
+    APIGroup is the group for the resource being referenced
+
+  - **roleRef.kind** (string), required
+    Kind is the type of resource being referenced
+
+  - **roleRef.name** (string), required
+    Name is the name of resource being referenced
+-->  
+  - **roleRef.apiGroup** (string)，必需
+    
+    apiGroup 是被引用资源的组
+  
+  - **roleRef.kind** (string)，必需
+    
+    kind 是被引用的资源的类别
+  
+  - **roleRef.name** (string)，必需
+    
+    name 是被引用的资源的名称
+<!--
+  Subjects holds references to the objects the role applies to.
+  <a name="Subject"></a>
+  *Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference, or a value for non-objects such as user and group names.*
+
+  - **subjects.kind** (string), required
+    Kind of object being referenced. Values defined by this API group are "User", "Group", and "ServiceAccount". If the Authorizer does not recognized the kind value, the Authorizer should report an error.
+-->
+- **subjects** ([]Subject)
+  
+  subjects 包含角色所适用的对象的引用。
+  
+  <a name="Subject"></a>
+  **Subject 包含对角色绑定所适用的对象或用户标识的引用。其中可以包含直接 API 对象的引用或非对象（如用户名和组名）的值。**
+  
+  - **subjects.kind** (string)，必需
+    
+    被引用的对象的类别。
+    这个 API 组定义的值是 `User`、`Group` 和 `ServiceAccount`。
+    如果 Authorizer 无法识别类别值，则 Authorizer 应报告一个错误。
+<!--
+  - **subjects.name** (string), required
+    Name of the object being referenced.
+
+  - **subjects.apiGroup** (string)
+    APIGroup holds the API group of the referenced subject. Defaults to "" for ServiceAccount subjects. Defaults to "rbac.authorization.k8s.io" for User and Group subjects.
+
+  - **subjects.namespace** (string)
+    Namespace of the referenced object.  If the object kind is non-namespace, such as "User" or "Group", and this value is not empty the Authorizer should report an error.
+-->  
+  - **subjects.name** (string)，必需
+    
+    被引用的对象的名称。
+  
+  - **subjects.apiGroup** (string)
+    
+    apiGroup 包含被引用主体的 API 组。
+    对于 ServiceAccount 主体默认为 ""。
+    对于 User 和 Group 主体，默认为 "rbac.authorization.k8s.io"。
+  
+  - **subjects.namespace** (string)
+    
+    被引用的对象的命名空间。
+    如果对象类别是 “User” 或 “Group” 等非命名空间作用域的对象且该值不为空，
+    则 Authorizer 应报告一个错误。
+
+## RoleBindingList {#RoleBindingList}
+<!--
+RoleBindingList is a collection of RoleBindings
+-->
+RoleBindingList 是 RoleBinding 的集合。
+
+<hr>
+
+- **apiVersion**: rbac.authorization.k8s.io/v1
+
+- **kind**: RoleBindingList
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+<!--
+  Standard object's metadata.
+
+- **items** ([]<a href="{{< ref "../authorization-resources/role-binding-v1#RoleBinding" >}}">RoleBinding</a>), required
+
+  Items is a list of RoleBindings
+-->  
+  标准的对象元数据。
+
+- **items** ([]<a href="{{< ref "../authorization-resources/role-binding-v1#RoleBinding" >}}">RoleBinding</a>)，必需
+  
+  items 是 RoleBinding 的列表。
+<!--
+## Operations {#Operations}
+<hr>
+### `get` read the specified RoleBinding
+#### HTTP Request
+-->
+## 操作 {#Operations}
+
+<hr>
+
+### `get` 读取指定的 RoleBinding
+
+#### HTTP 请求
+
+GET /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings/{name}
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the RoleBinding
+
+- **namespace** (*in path*): string, required
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  RoleBinding 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/role-binding-v1#RoleBinding" >}}">RoleBinding</a>): OK
+
+401: Unauthorized
+<!--
+### `list` list or watch objects of kind RoleBinding
+#### HTTP Request
+-->
+### `list` 列出或观测类别为 RoleBinding 的对象
+
+#### HTTP 请求
+
+GET /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+- **allowWatchBookmarks** (*in query*): boolean
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+- **continue** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+- **fieldSelector** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+- **labelSelector** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+- **limit** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+- **resourceVersion** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+- **resourceVersionMatch** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+- **timeoutSeconds** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+- **watch** (*in query*): boolean
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/role-binding-v1#RoleBindingList" >}}">RoleBindingList</a>): OK
+
+401: Unauthorized
+<!--
+### `list` list or watch objects of kind RoleBinding
+#### HTTP Request
+-->
+### `list` 列出或观测类别为 RoleBinding 的对象
+
+#### HTTP 请求
+
+GET /apis/rbac.authorization.k8s.io/v1/rolebindings
+<!--
+#### Parameters
+- **allowWatchBookmarks** (*in query*): boolean
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+- **continue** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+- **fieldSelector** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+- **labelSelector** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+- **limit** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+- **resourceVersion** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+- **resourceVersionMatch** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+- **timeoutSeconds** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+- **watch** (*in query*): boolean
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+#### 参数
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/role-binding-v1#RoleBindingList" >}}">RoleBindingList</a>): OK
+
+401: Unauthorized
+<!--
+### `create` create a RoleBinding
+#### HTTP Request
+-->
+### `create` 创建 RoleBinding
+
+#### HTTP 请求
+
+POST /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+- **body**: <a href="{{< ref "../authorization-resources/role-binding-v1#RoleBinding" >}}">RoleBinding</a>, required
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+- **fieldManager** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+- **fieldValidation** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../authorization-resources/role-binding-v1#RoleBinding" >}}">RoleBinding</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/role-binding-v1#RoleBinding" >}}">RoleBinding</a>): OK
+
+201 (<a href="{{< ref "../authorization-resources/role-binding-v1#RoleBinding" >}}">RoleBinding</a>): Created
+
+202 (<a href="{{< ref "../authorization-resources/role-binding-v1#RoleBinding" >}}">RoleBinding</a>): Accepted
+
+401: Unauthorized
+<!--
+### `update` replace the specified RoleBinding
+#### HTTP Request
+-->
+### `update` 替换指定的 RoleBinding
+
+#### HTTP 请求
+
+PUT /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings/{name}
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the RoleBinding
+- **namespace** (*in path*): string, required
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+- **body**: <a href="{{< ref "../authorization-resources/role-binding-v1#RoleBinding" >}}">RoleBinding</a>, required
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+- **fieldManager** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+- **fieldValidation** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  RoleBinding 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../authorization-resources/role-binding-v1#RoleBinding" >}}">RoleBinding</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/role-binding-v1#RoleBinding" >}}">RoleBinding</a>): OK
+
+201 (<a href="{{< ref "../authorization-resources/role-binding-v1#RoleBinding" >}}">RoleBinding</a>): Created
+
+401: Unauthorized
+<!--
+### `patch` partially update the specified RoleBinding
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 RoleBinding
+
+#### HTTP 请求
+
+PATCH /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings/{name}
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the RoleBinding
+- **namespace** (*in path*): string, required
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+- **fieldManager** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+- **fieldValidation** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+- **force** (*in query*): boolean
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  RoleBinding 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/role-binding-v1#RoleBinding" >}}">RoleBinding</a>): OK
+
+201 (<a href="{{< ref "../authorization-resources/role-binding-v1#RoleBinding" >}}">RoleBinding</a>): Created
+
+401: Unauthorized
+<!--
+### `delete` delete a RoleBinding
+#### HTTP Request
+-->
+### `delete` 删除 RoleBinding
+
+#### HTTP 请求
+
+DELETE /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings/{name}
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the RoleBinding
+- **namespace** (*in path*): string, required
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+- **gracePeriodSeconds** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+- **propagationPolicy** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  RoleBinding 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+<!--
+### `deletecollection` delete collection of RoleBinding
+#### HTTP Request
+-->
+### `deletecollection` 删除 RoleBinding 的集合
+
+#### HTTP 请求
+
+DELETE /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **continue** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+- **fieldSelector** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+- **gracePeriodSeconds** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+- **labelSelector** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+- **limit** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+- **propagationPolicy** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+- **resourceVersion** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+- **resourceVersionMatch** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+- **timeoutSeconds** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
\ No newline at end of file
diff --git a/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/role-v1.md b/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/role-v1.md
new file mode 100644
index 0000000000..8b6f136299
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/role-v1.md
@@ -0,0 +1,690 @@
+---
+api_metadata:
+  apiVersion: "rbac.authorization.k8s.io/v1"
+  import: "k8s.io/api/rbac/v1"
+  kind: "Role"
+content_type: "api_reference"
+description: "Role 是一个按命名空间划分的 PolicyRule 逻辑分组，可以被 RoleBinding 作为一个单元引用。"
+title: "Role"
+weight: 7
+auto_generated: false
+---
+<!--
+---
+api_metadata:
+  apiVersion: "rbac.authorization.k8s.io/v1"
+  import: "k8s.io/api/rbac/v1"
+  kind: "Role"
+content_type: "api_reference"
+description: "Role is a namespaced, logical grouping of PolicyRules that can be referenced as a unit by a RoleBinding."
+title: "Role"
+weight: 7
+auto_generated: true
+---
+-->
+
+`apiVersion: rbac.authorization.k8s.io/v1`
+
+`import "k8s.io/api/rbac/v1"`
+
+## Role {#Role}
+<!--
+Role is a namespaced, logical grouping of PolicyRules that can be referenced as a unit by a RoleBinding.
+-->
+Role 是一个按命名空间划分的 PolicyRule 逻辑分组，可以被 RoleBinding 作为一个单元引用。
+
+<hr>
+
+- **apiVersion**: rbac.authorization.k8s.io/v1
+
+- **kind**: Role
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+<!--
+Standard object's metadata.
+
+- **rules** ([]PolicyRule)
+  Rules holds all the PolicyRules for this Role
+
+  <a name="PolicyRule"></a>
+  *PolicyRule holds information that describes a policy rule, but does not contain information about who the rule applies to or which namespace the rule applies to.*
+
+  - **rules.apiGroups** ([]string)
+    APIGroups is the name of the APIGroup that contains the resources.  If multiple API groups are specified, any action requested against one of the enumerated resources in any API group will be allowed.
+
+  - **rules.resources** ([]string)
+    Resources is a list of resources this rule applies to. '*' represents all resources.
+-->  
+  标准的对象元数据。
+
+- **rules** ([]PolicyRule)
+  
+  rules 包含了这个 Role 的所有 PolicyRule。
+  
+  <a name="PolicyRule"></a> 
+  **PolicyRule 包含描述一个策略规则的信息，但不包含该规则适用于哪个主体或适用于哪个命名空间的信息。**
+  
+  - **rules.apiGroups** ([]string)
+    
+    apiGroups 是包含资源的 apiGroup 的名称。
+    如果指定了多个 API 组，则允许对任何 API 组中的其中一个枚举资源来请求任何操作。
+  
+  - **rules.resources** ([]string)
+    
+    resources 是此规则所适用的资源的列表。
+    “*” 表示所有资源。
+<!--
+  - **rules.verbs** ([]string), required
+    Verbs is a list of Verbs that apply to ALL the ResourceKinds contained in this rule. '*' represents all verbs.
+
+  - **rules.resourceNames** ([]string)
+    ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.
+
+  - **rules.nonResourceURLs** ([]string)
+    NonResourceURLs is a set of partial urls that a user should have access to.  *s are allowed, but only as the full, final step in the path Since non-resource URLs are not namespaced, this field is only applicable for ClusterRoles referenced from a ClusterRoleBinding. Rules can either apply to API resources (such as "pods" or "secrets") or non-resource URL paths (such as "/api"),  but not both.
+-->  
+  - **rules.verbs** ([]string)，必需
+    
+    verbs 是适用于此规则中所包含的所有 ResourceKinds 的动作。
+    “*” 表示所有动作。
+  
+  - **rules.resourceNames** ([]string)
+    
+    resourceNames 是此规则所适用的资源名称白名单，可选。
+    空集合意味着允许所有资源。
+  
+  - **rules.nonResourceURLs** ([]string)
+    
+    nonResourceURLs 是用户应有权访问的一组部分 URL。
+    允许使用 “*”，但仅能作为路径中最后一段且必须用于完整的一段，
+    因为非资源 URL 没有划分命名空间。
+    此字段仅适用于从 ClusterRoleBinding 引用的 ClusterRole。
+    rules 可以应用到 API 资源（如 “pod” 或 “secret”）或非资源 URL 路径（如 “/api”），
+    但不能同时应用于两者。
+
+## RoleList {#RoleList}
+<!--
+RoleList is a collection of Roles
+-->
+RoleList 是 Role 的集合。
+
+<hr>
+
+- **apiVersion**: rbac.authorization.k8s.io/v1
+
+- **kind**: RoleList
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+<!--
+  Standard object's metadata.
+
+- **items** ([]<a href="{{< ref "../authorization-resources/role-v1#Role" >}}">Role</a>), required
+
+  Items is a list of Roles
+-->  
+  标准的对象元数据。
+
+- **items** ([]<a href="{{< ref "../authorization-resources/role-v1#Role" >}}">Role</a>)，必需
+  
+  items 是 Role 的列表。
+<!--
+## Operations {#Operations}
+<hr>
+### `get` read the specified Role
+#### HTTP Request
+-->
+## 操作 {#Operations}
+
+<hr>
+
+### `get` 读取指定的 Role
+
+#### HTTP 请求
+
+GET /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles/{name}
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the Role
+
+- **namespace** (*in path*): string, required
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  Role 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/role-v1#Role" >}}">Role</a>): OK
+
+401: Unauthorized
+<!--
+### `list` list or watch objects of kind Role
+#### HTTP Request
+-->
+### `list` 列出或观测类别为 Role 的对象
+
+#### HTTP 请求
+
+GET /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+- **allowWatchBookmarks** (*in query*): boolean
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+- **continue** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+- **fieldSelector** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+- **labelSelector** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+- **limit** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+- **resourceVersion** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+- **resourceVersionMatch** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+- **timeoutSeconds** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+- **watch** (*in query*): boolean
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/role-v1#RoleList" >}}">RoleList</a>): OK
+
+401: Unauthorized
+<!--
+### `list` list or watch objects of kind Role
+#### HTTP Request
+-->
+### `list` 列出或观测类别为 Role 的对象
+
+#### HTTP 请求
+
+GET /apis/rbac.authorization.k8s.io/v1/roles
+<!--
+#### Parameters
+- **allowWatchBookmarks** (*in query*): boolean
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+- **continue** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+- **fieldSelector** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+- **labelSelector** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+- **limit** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+- **resourceVersion** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+- **resourceVersionMatch** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+- **timeoutSeconds** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+- **watch** (*in query*): boolean
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+#### 参数
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/role-v1#RoleList" >}}">RoleList</a>): OK
+
+401: Unauthorized
+<!--
+### `create` create a Role
+#### HTTP Request
+-->
+### `create` 创建 Role
+
+#### HTTP 请求
+
+POST /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+- **body**: <a href="{{< ref "../authorization-resources/role-v1#Role" >}}">Role</a>, required
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+- **fieldManager** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+- **fieldValidation** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../authorization-resources/role-v1#Role" >}}">Role</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/role-v1#Role" >}}">Role</a>): OK
+
+201 (<a href="{{< ref "../authorization-resources/role-v1#Role" >}}">Role</a>): Created
+
+202 (<a href="{{< ref "../authorization-resources/role-v1#Role" >}}">Role</a>): Accepted
+
+401: Unauthorized
+<!--
+### `update` replace the specified Role
+#### HTTP Request
+-->
+### `update` 替换指定的 Role
+
+#### HTTP 请求
+
+PUT /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles/{name}
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the Role
+- **namespace** (*in path*): string, required
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+- **body**: <a href="{{< ref "../authorization-resources/role-v1#Role" >}}">Role</a>, required
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+- **fieldManager** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+- **fieldValidation** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  Role 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../authorization-resources/role-v1#Role" >}}">Role</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/role-v1#Role" >}}">Role</a>): OK
+
+201 (<a href="{{< ref "../authorization-resources/role-v1#Role" >}}">Role</a>): Created
+
+401: Unauthorized
+<!--
+### `patch` partially update the specified Role
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 Role
+
+#### HTTP 请求
+
+PATCH /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles/{name}
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the Role
+- **namespace** (*in path*): string, required
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+- **fieldManager** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+- **fieldValidation** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+- **force** (*in query*): boolean
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  Role 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/role-v1#Role" >}}">Role</a>): OK
+
+201 (<a href="{{< ref "../authorization-resources/role-v1#Role" >}}">Role</a>): Created
+
+401: Unauthorized
+<!--
+### `delete` delete a Role
+#### HTTP Request
+-->
+### `delete` 删除 Role
+
+#### HTTP 请求
+
+DELETE /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles/{name}
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the Role
+- **namespace** (*in path*): string, required
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+- **gracePeriodSeconds** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+- **propagationPolicy** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  Role 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+<!--
+### `deletecollection` delete collection of Role
+#### HTTP Request
+-->
+### `deletecollection` 删除 Role 的集合
+
+#### HTTP 请求
+
+DELETE /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **continue** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+- **fieldSelector** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+- **gracePeriodSeconds** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+- **labelSelector** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+- **limit** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+- **propagationPolicy** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+- **resourceVersion** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+- **resourceVersionMatch** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+- **timeoutSeconds** (*in query*): integer
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/self-subject-access-review-v1.md b/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/self-subject-access-review-v1.md
new file mode 100644
index 0000000000..6ed5ef0431
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/self-subject-access-review-v1.md
@@ -0,0 +1,230 @@
+---
+api_metadata:
+  apiVersion: "authorization.k8s.io/v1"
+  import: "k8s.io/api/authorization/v1"
+  kind: "SelfSubjectAccessReview"
+content_type: "api_reference"
+description: "SelfSubjectAccessReview 检查当前用户是否可以执行某操作。"
+title: "SelfSubjectAccessReview"
+weight: 2
+---
+<!--
+api_metadata:
+  apiVersion: "authorization.k8s.io/v1"
+  import: "k8s.io/api/authorization/v1"
+  kind: "SelfSubjectAccessReview"
+content_type: "api_reference"
+description: "SelfSubjectAccessReview checks whether or the current user can perform an action."
+title: "SelfSubjectAccessReview"
+weight: 2
+-->
+`apiVersion: authorization.k8s.io/v1`
+
+`import "k8s.io/api/authorization/v1"`
+
+## SelfSubjectAccessReview {#SelfSubjectAccessReview}
+<!--
+SelfSubjectAccessReview checks whether or the current user can perform an action.  Not filling in a spec.namespace means "in all namespaces".  Self is a special case, because users should always be able to check whether they can perform an action
+-->
+SelfSubjectAccessReview 检查当前用户是否可以执行某操作。
+不填写 spec.namespace 表示 “在所有命名空间中”。
+Self 是一个特殊情况，因为用户应始终能够检查自己是否可以执行某操作。
+
+<hr>
+
+- **apiVersion**: authorization.k8s.io/v1
+
+- **kind**: SelfSubjectAccessReview
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+- **spec** (<a href="{{< ref "../authorization-resources/self-subject-access-review-v1#SelfSubjectAccessReviewSpec" >}}">SelfSubjectAccessReviewSpec</a>), required
+  Spec holds information about the request being evaluated.  user and groups must be empty
+  Status is filled in by the server and indicates whether the request is allowed or not
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  标准的列表元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../authorization-resources/self-subject-access-review-v1#SelfSubjectAccessReviewSpec" >}}">SelfSubjectAccessReviewSpec</a>)，必需
+  
+  spec 包含有关正在评估的请求的信息。
+  user 和 group 必须为空。
+
+- **status** (<a href="{{< ref "../authorization-resources/subject-access-review-v1#SubjectAccessReviewStatus" >}}">SubjectAccessReviewStatus</a>)
+
+  status 由服务器填写，表示请求是否被允许。
+
+## SelfSubjectAccessReviewSpec {#SelfSubjectAccessReviewSpec}
+<!--
+SelfSubjectAccessReviewSpec is a description of the access request.  Exactly one of ResourceAuthorizationAttributes and NonResourceAuthorizationAttributes must be set
+-->
+SelfSubjectAccessReviewSpec 是访问请求的描述。
+resourceAuthorizationAttributes 和 nonResourceAuthorizationAttributes 二者必须设置其一，并且只能设置其一。
+
+<hr>
+<!--
+- **nonResourceAttributes** (NonResourceAttributes)
+  NonResourceAttributes describes information for a non-resource access request
+  <a name="NonResourceAttributes"></a>
+  *NonResourceAttributes includes the authorization attributes available for non-resource requests to the Authorizer interface*
+  - **nonResourceAttributes.path** (string)
+    Path is the URL path of the request
+  - **nonResourceAttributes.verb** (string)
+    Verb is the standard HTTP verb
+-->
+
+- **nonResourceAttributes** (NonResourceAttributes)
+  
+  nonResourceAttributes 描述非资源访问请求的信息。
+  
+  <a name="NonResourceAttributes"></a>
+  **nonResourceAttributes 包括提供给 Authorizer 接口进行非资源请求鉴权时所用的属性。**
+  
+  - **nonResourceAttributes.path** (string)
+    
+    path 是请求的 URL 路径。
+  
+  - **nonResourceAttributes.verb** (string)
+    
+    verb 是标准的 HTTP 动作。
+<!--
+- **resourceAttributes** (ResourceAttributes)
+  ResourceAuthorizationAttributes describes information for a resource access request
+
+  <a name="ResourceAttributes"></a>
+  *ResourceAttributes includes the authorization attributes available for resource requests to the Authorizer interface*
+
+  - **resourceAttributes.group** (string)
+    Group is the API Group of the Resource.  "*" means all.
+
+  - **resourceAttributes.name** (string)
+    Name is the name of the resource being requested for a "get" or deleted for a "delete". "" (empty) means all.
+-->
+- **resourceAttributes** (ResourceAttributes)
+  
+  resourceAuthorizationAttributes 描述资源访问请求的信息。
+  
+  <a name="ResourceAttributes"></a>
+  **resourceAttributes 包括提供给 Authorizer 接口进行资源请求鉴权时所用的属性。**
+  
+  - **resourceAttributes.group** (string)
+    
+    group 是资源的 API 组。
+    "*" 表示所有组。
+  
+  - **resourceAttributes.name** (string)
+    
+    name 是 "get" 正在请求或 "delete" 已删除的资源的名称。
+    ""（空字符串）表示所有资源。
+<!--
+  - **resourceAttributes.namespace** (string)
+    Namespace is the namespace of the action being requested.  Currently, there is no distinction between no namespace and all namespaces "" (empty) is defaulted for LocalSubjectAccessReviews "" (empty) is empty for cluster-scoped resources "" (empty) means "all" for namespace scoped resources from a SubjectAccessReview or SelfSubjectAccessReview
+
+  - **resourceAttributes.resource** (string)
+    Resource is one of the existing resource types.  "*" means all.
+-->  
+  - **resourceAttributes.namespace** (string)
+    
+    namespace 是正在请求的操作的命名空间。
+    目前，无命名空间和所有命名空间之间没有区别。
+    对于 LocalSubjectAccessReviews，默认为 ""（空字符串）。
+    对于集群范围的资源，默认为 ""（空字符串）。
+    对于来自 SubjectAccessReview 或 SelfSubjectAccessReview 的命名空间范围的资源，""（空字符串）表示 "all"（所有资源）。
+  
+  - **resourceAttributes.resource** (string)
+    
+    resource 是现有的资源类别之一。
+    "*" 表示所有资源类别。
+<!--
+  - **resourceAttributes.subresource** (string)
+    Subresource is one of the existing resource types.  "" means none.
+
+  - **resourceAttributes.verb** (string)
+    Verb is a kubernetes resource API verb, like: get, list, watch, create, update, delete, proxy.  "*" means all.
+
+  - **resourceAttributes.version** (string)
+    Version is the API Version of the Resource.  "*" means all.
+-->  
+  - **resourceAttributes.subresource** (string)
+    
+    subresource 是现有的资源类型之一。
+    "" 表示无。
+
+  - **resourceAttributes.verb** (string)
+    
+    verb 是 kubernetes 资源 API 动作，例如 get、list、watch、create、update、delete、proxy。
+    "*" 表示所有动作。
+  
+  - **resourceAttributes.version** (string)
+    
+    version 是资源的 API 版本。
+    "*" 表示所有版本。
+<!--
+## Operations {#Operations}
+
+<hr>
+
+### `create` create a SelfSubjectAccessReview
+
+#### HTTP Request
+-->
+## 操作 {#Operations}
+
+<hr>
+
+### `create` 创建 SelfSubjectAccessReview
+
+#### HTTP 请求
+
+POST /apis/authorization.k8s.io/v1/selfsubjectaccessreviews
+<!--
+#### Parameters
+
+- **body**: <a href="{{< ref "../authorization-resources/self-subject-access-review-v1#SelfSubjectAccessReview" >}}">SelfSubjectAccessReview</a>, required
+
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../authorization-resources/self-subject-access-review-v1#SelfSubjectAccessReview" >}}">SelfSubjectAccessReview</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/self-subject-access-review-v1#SelfSubjectAccessReview" >}}">SelfSubjectAccessReview</a>): OK
+
+201 (<a href="{{< ref "../authorization-resources/self-subject-access-review-v1#SelfSubjectAccessReview" >}}">SelfSubjectAccessReview</a>): Created
+
+202 (<a href="{{< ref "../authorization-resources/self-subject-access-review-v1#SelfSubjectAccessReview" >}}">SelfSubjectAccessReview</a>): Accepted
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/self-subject-rules-review-v1.md b/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/self-subject-rules-review-v1.md
new file mode 100644
index 0000000000..487f23ab28
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/self-subject-rules-review-v1.md
@@ -0,0 +1,259 @@
+---
+api_metadata:
+  apiVersion: "authorization.k8s.io/v1"
+  import: "k8s.io/api/authorization/v1"
+  kind: "SelfSubjectRulesReview"
+content_type: "api_reference"
+description: "SelfSubjectRulesReview 枚举当前用户可以在某命名空间内执行的操作集合。"
+title: "SelfSubjectRulesReview"
+weight: 3
+---
+<!--
+api_metadata:
+  apiVersion: "authorization.k8s.io/v1"
+  import: "k8s.io/api/authorization/v1"
+  kind: "SelfSubjectRulesReview"
+content_type: "api_reference"
+description: "SelfSubjectRulesReview enumerates the set of actions the current user can perform within a namespace."
+title: "SelfSubjectRulesReview"
+weight: 3
+-->
+`apiVersion: authorization.k8s.io/v1`
+
+`import "k8s.io/api/authorization/v1"`
+
+## SelfSubjectRulesReview {#SelfSubjectRulesReview}
+<!--
+SelfSubjectRulesReview enumerates the set of actions the current user can perform within a namespace. The returned list of actions may be incomplete depending on the server's authorization mode, and any errors experienced during the evaluation. SelfSubjectRulesReview should be used by UIs to show/hide actions, or to quickly let an end user reason about their permissions. It should NOT Be used by external systems to drive authorization decisions as this raises confused deputy, cache lifetime/revocation, and correctness concerns. SubjectAccessReview, and LocalAccessReview are the correct way to defer authorization decisions to the API server.
+-->
+SelfSubjectRulesReview 枚举当前用户可以在某命名空间内执行的操作集合。
+返回的操作列表可能不完整，具体取决于服务器的鉴权模式以及评估过程中遇到的任何错误。
+SelfSubjectRulesReview 应由 UI 用于显示/隐藏操作，或让最终用户尽快理解自己的权限。
+SelfSubjectRulesReview 不得被外部系统使用以驱动鉴权决策，
+因为这会引起混淆代理人（Confused deputy）、缓存有效期/吊销（Cache lifetime/revocation）和正确性问题。
+SubjectAccessReview 和 LocalAccessReview 是遵从 API 服务器所做鉴权决策的正确方式。
+
+<hr>
+
+- **apiVersion**: authorization.k8s.io/v1
+
+- **kind**: SelfSubjectRulesReview
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../authorization-resources/self-subject-rules-review-v1#SelfSubjectRulesReviewSpec" >}}">SelfSubjectRulesReviewSpec</a>), required
+
+  Spec holds information about the request being evaluated.
+-->  
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  标准的列表元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../authorization-resources/self-subject-rules-review-v1#SelfSubjectRulesReviewSpec" >}}">SelfSubjectRulesReviewSpec</a>)，必需
+  
+  spec 包含有关正在评估的请求的信息。
+<!--
+- **status** (SubjectRulesReviewStatus)
+  Status is filled in by the server and indicates the set of actions a user can perform.
+  <a name="SubjectRulesReviewStatus"></a>
+  *SubjectRulesReviewStatus contains the result of a rules check. This check can be incomplete depending on the set of authorizers the server is configured with and any errors experienced during evaluation. Because authorization rules are additive, if a rule appears in a list it's safe to assume the subject has that permission, even if that list is incomplete.*
+-->
+- **status** (SubjectRulesReviewStatus)
+  
+  status 由服务器填写，表示用户可以执行的操作的集合。
+  
+  <a name="SubjectRulesReviewStatus"></a>
+  **SubjectRulesReviewStatus 包含规则检查的结果。
+  此检查可能不完整，具体取决于服务器配置的 Authorizer 的集合以及评估期间遇到的任何错误。
+  由于鉴权规则是叠加的，所以如果某个规则出现在列表中，即使该列表不完整，也可以安全地假定该主体拥有该权限。**
+
+  <!--
+  - **status.incomplete** (boolean), required
+    Incomplete is true when the rules returned by this call are incomplete. This is most commonly encountered when an authorizer, such as an external authorizer, doesn't support rules evaluation.
+  - **status.nonResourceRules** ([]NonResourceRule), required
+    NonResourceRules is the list of actions the subject is allowed to perform on non-resources. The list ordering isn't significant, may contain duplicates, and possibly be incomplete.
+    <a name="NonResourceRule"></a>
+    *NonResourceRule holds information that describes a rule for the non-resource*
+  -->
+
+  - **status.incomplete** (boolean)，必需
+    
+    当此调用返回的规则不完整时，incomplete 结果为 true。
+    这种情况常见于 Authorizer（例如外部 Authorizer）不支持规则评估时。
+  
+  - **status.nonResourceRules** ([]NonResourceRule)，必需
+    
+    nonResourceRules 是允许主体对非资源执行路径执行的操作列表。
+    该列表顺序不重要，可以包含重复项，还可能不完整。
+    
+    <a name="NonResourceRule"></a>
+    **nonResourceRule 包含描述非资源路径的规则的信息。**
+
+    <!--
+    - **status.nonResourceRules.verbs** ([]string), required
+      Verb is a list of kubernetes non-resource API verbs, like: get, post, put, delete, patch, head, options.  "*" means all.
+    - **status.nonResourceRules.nonResourceURLs** ([]string)
+      NonResourceURLs is a set of partial urls that a user should have access to.  *s are allowed, but only as the full, final step in the path.  "*" means all. 
+    -->
+
+    - **status.nonResourceRules.verbs** ([]string)，必需
+      
+      verb 是 kubernetes 非资源 API 动作的列表，例如 get、post、put、delete、patch、head、options。
+      `*` 表示所有动作。
+    
+    - **status.nonResourceRules.nonResourceURLs** ([]string)
+      
+      nonResourceURLs 是用户应有权访问的一组部分 URL。
+      允许使用 `*`，但仅能作为路径中最后一段且必须用于完整的一段。
+      `*` 表示全部。
+      
+  <!--
+  - **status.resourceRules** ([]ResourceRule), required
+    ResourceRules is the list of actions the subject is allowed to perform on resources. The list ordering isn't significant, may contain duplicates, and possibly be incomplete.
+    <a name="ResourceRule"></a>
+    *ResourceRule is the list of actions the subject is allowed to perform on resources. The list ordering isn't significant, may contain duplicates, and possibly be incomplete.*
+    - **status.resourceRules.verbs** ([]string), required
+    Verb is a list of kubernetes resource API verbs, like: get, list, watch, create, update, delete, proxy.  "*" means all. 
+  -->
+
+  - **status.resourceRules** ([]ResourceRule)，必需
+    
+    resourceRules 是允许主体对资源执行的操作的列表。
+    该列表顺序不重要，可以包含重复项，还可能不完整。
+    
+    <a name="ResourceRule"></a>
+    **resourceRule 是允许主体对资源执行的操作的列表。该列表顺序不重要，可以包含重复项，还可能不完整。**
+    
+    - **status.resourceRules.verbs** ([]string)，必需
+      
+      verb 是 kubernetes 资源 API 动作的列表，例如 get、list、watch、create、update、delete、proxy。
+      `*` 表示所有动作。
+
+    <!--
+    - **status.resourceRules.apiGroups** ([]string)
+      APIGroups is the name of the APIGroup that contains the resources.  If multiple API groups are specified, any action requested against one of the enumerated resources in any API group will be allowed.  "*" means all.
+    - **status.resourceRules.resourceNames** ([]string)
+      ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.  "*" means all.
+    - **status.resourceRules.resources** ([]string)
+      Resources is a list of resources this rule applies to.  "*" means all in the specified apiGroups.
+       "*/foo" represents the subresource 'foo' for all resources in the specified apiGroups.
+    -->
+
+    - **status.resourceRules.apiGroups** ([]string)
+      
+      apiGroups 是包含资源的 APIGroup 的名称。
+      如果指定了多个 API 组，则允许对任何 API 组中枚举的资源之一请求任何操作。
+      `*` 表示所有 APIGroup。
+    
+    - **status.resourceRules.resourceNames** ([]string)
+      
+      resourceNames 是此规则所适用的资源名称白名单，可选。
+      空集合意味着允许所有资源。
+      `*` 表示所有资源。
+    
+    - **status.resourceRules.resources** ([]string)
+      
+      resources 是此规则所适用的资源的列表。
+      `*` 表示指定 APIGroup 中的所有资源。
+      `*/foo` 表示指定 APIGroup 中所有资源的子资源 "foo"。
+
+  <!--
+  - **status.evaluationError** (string)
+    EvaluationError can appear in combination with Rules. It indicates an error occurred during rule evaluation, such as an authorizer that doesn't support rule evaluation, and that ResourceRules and/or NonResourceRules may be incomplete.
+  -->
+
+  - **status.evaluationError** (string)
+    
+    evaluationError 可以与 rules 一起出现。
+    它表示在规则评估期间发生错误，例如 Authorizer 不支持规则评估以及 resourceRules 和/或 nonResourceRules 可能不完整。
+
+## SelfSubjectRulesReviewSpec {#SelfSubjectRulesReviewSpec}
+
+<!--
+SelfSubjectRulesReviewSpec defines the specification for SelfSubjectRulesReview.
+
+<hr>
+
+- **namespace** (string)
+
+  Namespace to evaluate rules for. Required.
+-->
+SelfSubjectRulesReviewSpec 定义 SelfSubjectRulesReview 的规范。
+
+<hr>
+
+- **namespace** (string)
+  
+  namespace 是要评估规则的命名空间。
+  必需。
+
+<!--
+## Operations {#Operations}
+
+<hr>
+
+### `create` create a SelfSubjectRulesReview
+
+#### HTTP Request
+-->
+## 操作 {#Operations}
+
+<hr>
+
+### `create` 创建 SelfSubjectRulesReview
+
+#### HTTP 请求
+
+POST /apis/authorization.k8s.io/v1/selfsubjectrulesreviews
+<!--
+#### Parameters
+
+- **body**: <a href="{{< ref "../authorization-resources/self-subject-rules-review-v1#SelfSubjectRulesReview" >}}">SelfSubjectRulesReview</a>, required
+
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../authorization-resources/self-subject-rules-review-v1#SelfSubjectRulesReview" >}}">SelfSubjectRulesReview</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/self-subject-rules-review-v1#SelfSubjectRulesReview" >}}">SelfSubjectRulesReview</a>): OK
+
+201 (<a href="{{< ref "../authorization-resources/self-subject-rules-review-v1#SelfSubjectRulesReview" >}}">SelfSubjectRulesReview</a>): Created
+
+202 (<a href="{{< ref "../authorization-resources/self-subject-rules-review-v1#SelfSubjectRulesReview" >}}">SelfSubjectRulesReview</a>): Accepted
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/subject-access-review-v1.md b/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/subject-access-review-v1.md
new file mode 100644
index 0000000000..b4120827cf
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/authorization-resources/subject-access-review-v1.md
@@ -0,0 +1,301 @@
+---
+api_metadata:
+  apiVersion: "authorization.k8s.io/v1"
+  import: "k8s.io/api/authorization/v1"
+  kind: "SubjectAccessReview"
+content_type: "api_reference"
+description: "SubjectAccessReview 检查用户或组是否可以执行某操作。"
+title: "SubjectAccessReview"
+weight: 4
+---
+<!--
+api_metadata:
+  apiVersion: "authorization.k8s.io/v1"
+  import: "k8s.io/api/authorization/v1"
+  kind: "SubjectAccessReview"
+content_type: "api_reference"
+description: "SubjectAccessReview checks whether or not a user or group can perform an action."
+title: "SubjectAccessReview"
+weight: 4
+-->
+
+`apiVersion: authorization.k8s.io/v1`
+
+`import "k8s.io/api/authorization/v1"`
+
+## SubjectAccessReview {#SubjectAccessReview}
+<!--
+SubjectAccessReview checks whether or not a user or group can perform an action.
+-->
+SubjectAccessReview 检查用户或组是否可以执行某操作。
+
+<hr>
+
+- **apiVersion**: authorization.k8s.io/v1
+
+- **kind**: SubjectAccessReview
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+<!--
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+- **spec** (<a href="{{< ref "../authorization-resources/subject-access-review-v1#SubjectAccessReviewSpec" >}}">SubjectAccessReviewSpec</a>), required
+  Spec holds information about the request being evaluated
+- **status** (<a href="{{< ref "../authorization-resources/subject-access-review-v1#SubjectAccessReviewStatus" >}}">SubjectAccessReviewStatus</a>)
+  Status is filled in by the server and indicates whether the request is allowed or not
+-->  
+  标准的列表元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../authorization-resources/subject-access-review-v1#SubjectAccessReviewSpec" >}}">SubjectAccessReviewSpec</a>)，必需
+  
+  spec 包含有关正在评估的请求的信息。
+
+- **status** (<a href="{{< ref "../authorization-resources/subject-access-review-v1#SubjectAccessReviewStatus" >}}">SubjectAccessReviewStatus</a>)
+  
+  status 由服务器填写，表示请求是否被允许。
+
+## SubjectAccessReviewSpec {#SubjectAccessReviewSpec}
+<!--
+SubjectAccessReviewSpec is a description of the access request.  Exactly one of ResourceAuthorizationAttributes and NonResourceAuthorizationAttributes must be set
+-->
+SubjectAccessReviewSpec 是访问请求的描述。
+resourceAuthorizationAttributes 和 nonResourceAuthorizationAttributes 二者必须设置其一，并且只能设置其一。
+
+<hr>
+
+<!--
+- **extra** (map[string][]string)
+  Extra corresponds to the user.Info.GetExtra() method from the authenticator.  Since that is input to the authorizer it needs a reflection here.
+- **groups** ([]string)
+  Groups is the groups you're testing for.
+-->
+- **extra** (map[string][]string)
+  
+  extra 对应于来自鉴权器的 user.Info.GetExtra() 方法。
+  由于这是针对 Authorizer 的输入，所以它需要在此处反映。
+
+- **groups** ([]string)
+  
+  groups 是你正在测试的组。
+<!--
+- **nonResourceAttributes** (NonResourceAttributes)
+  NonResourceAttributes describes information for a non-resource access request
+
+  <a name="NonResourceAttributes"></a>
+  *NonResourceAttributes includes the authorization attributes available for non-resource requests to the Authorizer interface*
+
+  - **nonResourceAttributes.path** (string)
+    Path is the URL path of the request
+
+  - **nonResourceAttributes.verb** (string)
+    Verb is the standard HTTP verb
+-->
+- **nonResourceAttributes** (NonResourceAttributes)
+  
+  nonResourceAttributes 描述非资源访问请求的信息。
+  
+  <a name="NonResourceAttributes"></a> 
+  **nonResourceAttributes 包括提供给 Authorizer 接口进行非资源请求鉴权时所用的属性。**
+  
+  - **nonResourceAttributes.path** (string)
+    
+    path 是请求的 URL 路径。
+  
+  - **nonResourceAttributes.verb** (string)
+    
+    verb 是标准的 HTTP 动作。
+<!--
+- **resourceAttributes** (ResourceAttributes)
+  ResourceAuthorizationAttributes describes information for a resource access request
+
+  <a name="ResourceAttributes"></a>
+  *ResourceAttributes includes the authorization attributes available for resource requests to the Authorizer interface*
+
+  - **resourceAttributes.group** (string)
+    Group is the API Group of the Resource.  "*" means all.
+
+  - **resourceAttributes.name** (string)
+    Name is the name of the resource being requested for a "get" or deleted for a "delete". "" (empty) means all.
+-->
+- **resourceAttributes** (ResourceAttributes)
+  
+  resourceAuthorizationAttributes 描述资源访问请求的信息。
+  
+  <a name="ResourceAttributes"></a> 
+  **resourceAttributes 包括提供给 Authorizer 接口进行资源请求鉴权时所用的属性。**
+  
+  - **resourceAttributes.group** (string)
+    
+    group 是资源的 API 组。
+    "*" 表示所有资源。
+  
+  - **resourceAttributes.name** (string)
+    
+    name 是 "get" 正在请求或 "delete" 已删除的资源。
+    ""（空字符串）表示所有资源。
+<!--
+  - **resourceAttributes.namespace** (string)
+    Namespace is the namespace of the action being requested.  Currently, there is no distinction between no namespace and all namespaces "" (empty) is defaulted for LocalSubjectAccessReviews "" (empty) is empty for cluster-scoped resources "" (empty) means "all" for namespace scoped resources from a SubjectAccessReview or SelfSubjectAccessReview
+
+  - **resourceAttributes.resource** (string)
+    Resource is one of the existing resource types.  "*" means all.
+
+  - **resourceAttributes.subresource** (string)
+    Subresource is one of the existing resource types.  "" means none.
+-->  
+  - **resourceAttributes.namespace** (string)
+    
+    namespace 是正在请求的操作的命名空间。
+    目前，无命名空间和所有命名空间之间没有区别。
+    对于 LocalSubjectAccessReviews，默认为 ""（空字符串）。
+    对于集群范围的资源，默认为 ""（空字符串）。
+    对于来自 SubjectAccessReview 或 SelfSubjectAccessReview 的命名空间范围的资源，
+    ""（空字符串）表示 "all"（所有资源）。
+  
+  - **resourceAttributes.resource** (string)
+    
+    resource 是现有的资源类别之一。
+    "*" 表示所有资源类别。
+  
+  - **resourceAttributes.subresource** (string)
+    
+    subresource 是现有的资源类别之一。
+    "" 表示无子资源。
+<!--
+  - **resourceAttributes.verb** (string)
+    Verb is a kubernetes resource API verb, like: get, list, watch, create, update, delete, proxy.  "*" means all.
+
+  - **resourceAttributes.version** (string)
+    Version is the API Version of the Resource.  "*" means all.
+
+- **uid** (string)
+  UID information about the requesting user.
+
+- **user** (string)
+  User is the user you're testing for. If you specify "User" but not "Groups", then is it interpreted as "What if User were not a member of any groups
+-->  
+  - **resourceAttributes.verb** (string)
+    
+    verb 是 kubernetes 资源的 API 动作，例如 get、list、watch、create、update、delete、proxy。
+    "*" 表示所有动作。
+  
+  - **resourceAttributes.version** (string)
+    
+    version 是资源的 API 版本。
+    "*" 表示所有版本。
+
+- **uid** (string)
+  
+  有关正在请求的用户的 UID 信息。
+
+- **user** (string)
+  
+  user 是你正在测试的用户。
+  如果你指定 “user” 而不是 “groups”，它将被解读为“如果 user 不是任何组的成员，将会怎样”。
+
+## SubjectAccessReviewStatus {#SubjectAccessReviewStatus}
+
+SubjectAccessReviewStatus
+
+<hr>
+
+<!--
+- **allowed** (boolean), required
+  Allowed is required. True if the action would be allowed, false otherwise.
+
+- **denied** (boolean)
+  Denied is optional. True if the action would be denied, otherwise false. If both allowed is false and denied is false, then the authorizer has no opinion on whether to authorize the action. Denied may not be true if Allowed is true.
+-->
+- **allowed** (boolean)，必需
+  
+  allowed 是必需的。
+  如果允许该操作，则为 true，否则为 false。
+
+- **denied** (boolean)
+  
+  denied 是可选的。
+  如果拒绝该操作，则为 true，否则为 false。
+  如果 allowed 和 denied 均为 false，则 Authorizer 对是否鉴权操作没有意见。
+  如果 allowed 为 true，则 denied 不能为 true。
+<!--
+- **evaluationError** (string)
+  EvaluationError is an indication that some error occurred during the authorization check. It is entirely possible to get an error and be able to continue determine authorization status in spite of it. For instance, RBAC can be missing a role, but enough roles are still present and bound to reason about the request.
+
+- **reason** (string)
+  Reason is optional.  It indicates why a request was allowed or denied.
+-->
+- **evaluationError** (string)
+  
+  evaluationError 表示鉴权检查期间发生一些错误。
+  出现错误的情况下完全有可能继续确定鉴权状态。
+  例如，RBAC 可能缺少一个角色，但仍存在足够多的角色进行绑定，进而了解请求有关的原因。
+
+- **reason** (string)
+  
+  reason 是可选的。
+  它表示为什么允许或拒绝请求。
+<!--
+## Operations {#Operations}
+
+<hr>
+
+### `create` create a SubjectAccessReview
+
+#### HTTP Request
+-->
+## 操作 {#Operations}
+
+<hr>
+
+### `create` 创建 SubjectAccessReview
+
+#### HTTP 请求
+
+POST /apis/authorization.k8s.io/v1/subjectaccessreviews
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../authorization-resources/subject-access-review-v1#SubjectAccessReview" >}}">SubjectAccessReview</a>, required
+- **dryRun** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (*in query*): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../authorization-resources/subject-access-review-v1#SubjectAccessReview" >}}">SubjectAccessReview</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../authorization-resources/subject-access-review-v1#SubjectAccessReview" >}}">SubjectAccessReview</a>): OK
+
+201 (<a href="{{< ref "../authorization-resources/subject-access-review-v1#SubjectAccessReview" >}}">SubjectAccessReview</a>): Created
+
+202 (<a href="{{< ref "../authorization-resources/subject-access-review-v1#SubjectAccessReview" >}}">SubjectAccessReview</a>): Accepted
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/_index.md b/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/_index.md
new file mode 100644
index 0000000000..59a6eaa4f5
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/_index.md
@@ -0,0 +1,7 @@
+---
+title: "集群资源"
+weight: 8
+auto_generated: true
+---
+
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/api-service-v1.md b/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/api-service-v1.md
new file mode 100644
index 0000000000..c6c92edd6c
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/api-service-v1.md
@@ -0,0 +1,785 @@
+---
+api_metadata:
+  apiVersion: "apiregistration.k8s.io/v1"
+  import: "k8s.io/kube-aggregator/pkg/apis/apiregistration/v1"
+  kind: "APIService"
+content_type: "api_reference"
+description: "APIService 是用来表示一个特定的 GroupVersion 的服务器"
+title: "APIService"
+weight: 4
+---
+
+<!--
+api_metadata:
+  apiVersion: "apiregistration.k8s.io/v1"
+  import: "k8s.io/kube-aggregator/pkg/apis/apiregistration/v1"
+  kind: "APIService"
+content_type: "api_reference"
+description: "APIService represents a server for a particular GroupVersion."
+title: "APIService"
+weight: 4
+auto_generated: true
+-->
+
+`apiVersion: apiregistration.k8s.io/v1`
+
+`import "k8s.io/kube-aggregator/pkg/apis/apiregistration/v1"`
+
+
+## APIService {#APIService}
+
+<!--
+APIService represents a server for a particular GroupVersion. Name must be "version.group".
+-->
+APIService 是用来表示一个特定的 GroupVersion 的服务器。名称必须为 "version.group"。
+
+<hr>
+
+- **apiVersion**: apiregistration.k8s.io/v1
+
+- **kind**: APIService
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  <!--
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+  标准的对象元数据。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../cluster-resources/api-service-v1#APIServiceSpec" >}}">APIServiceSpec</a>)
+  <!--
+  Spec contains information for locating and communicating with a server
+  -->
+  spec 包含用于定位和与服务器通信的信息
+
+- **status** (<a href="{{< ref "../cluster-resources/api-service-v1#APIServiceStatus" >}}">APIServiceStatus</a>)
+  <!--
+  Status contains derived information about an API server
+  -->
+  status 包含某 API 服务器的派生信息
+
+
+## APIServiceSpec {#APIServiceSpec}
+<!--
+APIServiceSpec contains information for locating and communicating with a server. Only https is supported, though you are able to disable certificate verification.
+-->
+APIServiceSpec 包含用于定位和与服务器通信的信息。仅支持 HTTPS 协议，但是你可以禁用证书验证。
+
+<hr>
+
+- **groupPriorityMinimum** (int32)， <!--required-->必需
+  <!--
+  GroupPriorityMininum is the priority this group should have at least. Higher priority means that the group is preferred by clients over lower priority ones. Note that other versions of this group might specify even higher GroupPriorityMininum values such that the whole group gets a higher priority. The primary sort is based on GroupPriorityMinimum, ordered highest number to lowest (20 before 10). The secondary sort is based on the alphabetical comparison of the name of the object.  (v1.bar before v1.foo) We'd recommend something like: *.k8s.io (except extensions) at 18000 and PaaSes (OpenShift, Deis) are recommended to be in the 2000s
+  -->
+  groupPriorityMininum 是这个组至少应该具有的优先级。优先级高表示客户端优先选择该组。
+  请注意，该组的其他版本可能会指定更高的 groupPriorityMininum 值，使得整个组获得更高的优先级。
+  主排序基于 groupPriorityMinimum 值，从高到低排序（20 在 10 之前）。
+  次要排序基于对象名称的字母顺序（v1.bar 在 v1.foo 之前）。
+  我们建议这样配置：`*.k8s.io`（扩展除外）值设置为 18000，PaaS（OpenShift、Deis）建议值为 2000 左右。
+
+- **versionPriority** (int32)， <!--required-->必需
+  <!--
+  VersionPriority controls the ordering of this API version inside of its group.  Must be greater than zero. The primary sort is based on VersionPriority, ordered highest to lowest (20 before 10). Since it's inside of a group, the number can be small, probably in the 10s. In case of equal version priorities, the version string will be used to compute the order inside a group. If the version string is "kube-like", it will sort above non "kube-like" version strings, which are ordered lexicographically. "Kube-like" versions start with a "v", then are followed by a number (the major version), then optionally the string "alpha" or "beta" and another number (the minor version). These are sorted first by GA > beta > alpha (where GA is a version with no suffix such as beta or alpha), and then by comparing major version, then minor version. An example sorted list of versions: v10, v2, v1, v11beta2, v10beta3, v3beta1, v12alpha1, v11alpha2, foo1, foo10.
+  -->
+  versionPriority 控制该 API 版本在其组中的排序，必须大于零。主排序基于 versionPriority，
+  从高到低排序（20 在 10 之前）。因为在同一个组里，这个数字可以很小，可能是几十。
+  在版本优先级相等的情况下，版本字符串将被用来计算组内的顺序。如果版本字符串是与 Kubernetes 的版本号形式类似，
+  则它将排序在 Kubernetes 形式版本字符串之前。Kubernetes 的版本号字符串按字典顺序排列。
+  Kubernetes 版本号以 “v” 字符开头，后面是一个数字（主版本），然后是可选字符串 “alpha” 或 “beta” 和另一个数字（次要版本）。
+  它们首先按 GA > beta > alpha 排序（其中 GA 是没有 beta 或 alpha 等后缀的版本），然后比较主要版本，
+  最后是比较次要版本。版本排序列表示例：v10、v2、v1、v11beta2、v10beta3、v3beta1、v12alpha1、v11alpha2、foo1、foo10。
+
+- **caBundle** ([]byte)
+  <!--
+  *Atomic: will be replaced during a merge*
+  
+  CABundle is a PEM encoded CA bundle which will be used to validate an API server's serving certificate. If unspecified, system trust roots on the apiserver are used.
+  -->
+  **原子性：将在合并期间被替换**
+
+  caBundle 是一个 PEM 编码的 CA 包，用于验证 API 服务器的服务证书。如果未指定，
+  则使用 API 服务器上的系统根证书。
+
+- **group** (string)
+  <!--
+  Group is the API group name this server hosts
+  -->
+  group 是此服务器主机的 API 组名称。
+
+- **insecureSkipTLSVerify** (boolean)
+  <!--
+  InsecureSkipTLSVerify disables TLS certificate verification when communicating with this server. This is strongly discouraged.  You should use the CABundle instead.
+  -->
+  insecureSkipTLSVerify 代表在与此服务器通信时禁用 TLS 证书验证。强烈建议不要这样做。你应该使用 caBundle。  
+
+- **service** (ServiceReference)
+  <!--
+  Service is a reference to the service for this API server.  It must communicate on port 443. If the Service is nil, that means the handling for the API groupversion is handled locally on this server. The call will simply delegate to the normal handler chain to be fulfilled.
+  -->
+  service 是对该 API 服务器的服务的引用。它只能在端口 443 上通信。如果 service 是 nil，
+  则意味着 API groupversion 的处理是在当前服务器上本地处理的。服务调用被直接委托给正常的处理程序链来完成。
+
+  <a name="ServiceReference"></a>
+  <!--
+  *ServiceReference holds a reference to Service.legacy.k8s.io*
+  -->
+  **ServiceReference 保存对 Service.legacy.k8s.io 的一个引用。**
+
+  - **service.name** (string)
+    <!--
+    Name is the name of the service
+    -->
+    name 是服务的名称
+  
+  - **service.namespace** (string)
+    <!--
+    namespace is the namespace of the service
+    -->
+    namespace 是服务的命名空间
+  
+  - **service.port** (int32)
+    <!--
+    If specified, the port on the service that hosting webhook. Default to 443 for backward compatibility. `port` should be a valid port number (1-65535, inclusive).
+    -->
+    如果指定，则为托管 Webhook 的服务上的端口。为实现向后兼容，默认端口号为 443。
+    `port` 应该是一个有效的端口号（1-65535，包含）。
+
+- **version** (string)
+  <!--
+  Version is the API version this server hosts.  For example, "v1"
+  -->
+  version 是此服务器的 API 版本。例如：“v1”。
+
+## APIServiceStatus {#APIServiceStatus}
+
+<!--
+APIServiceStatus contains derived information about an API server
+-->
+APIServiceStatus 包含有关 API 服务器的派生信息
+
+<hr>
+
+- **conditions** ([]APIServiceCondition)
+  <!--
+  *Patch strategy: merge on key `type`*
+  
+  *Map: unique values on key type will be kept during a merge*
+  
+  Current service state of apiService.
+  -->
+  **补丁策略：基于键 `type` 合并**
+
+  **Map：合并时将保留 type 键的唯一值**
+
+  APIService 的当前服务状态。
+
+  <a name="APIServiceCondition"></a>
+  <!--
+  *APIServiceCondition describes the state of an APIService at a particular point*
+  -->
+  **APIServiceCondition 描述 APIService 在特定点的状态** 
+
+  - **conditions.status** (string)， <!--required-->必需
+    <!--
+    Status is the status of the condition. Can be True, False, Unknown.
+    -->
+    status 表示状况（Condition）的状态，取值为 True、False 或 Unknown 之一。
+  
+  - **conditions.type** (string)， <!--required-->必需
+    <!--
+    Type is the type of the condition.
+    -->
+    type 是状况的类型。
+
+  - **conditions.lastTransitionTime** (Time)
+    <!--
+    Last time the condition transitioned from one status to another.
+    -->
+    上一次发生状况状态转换的时间。
+  
+    <a name="Time"></a>
+    <!--
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+    -->
+    Time 是对 time.Time 的封装。Time 支持对 YAML 和 JSON 进行正确封包。为 time 包的许多函数方法提供了封装器。
+  
+  - **conditions.message** (string)
+    <!--
+    Human-readable message indicating details about last transition.
+    -->
+    指示上次转换的详细可读信息。  
+  
+  - **conditions.reason** (string)
+    <!--
+    Unique, one-word, CamelCase reason for the condition's last transition.
+    -->
+    表述状况上次转换原因的、驼峰格式命名的、唯一的一个词。
+  
+
+## APIServiceList {#APIServiceList}
+<!--
+APIServiceList is a list of APIService objects.
+-->
+APIServiceList 是 APIService 对象的列表。
+
+<hr>
+
+- **apiVersion**: apiregistration.k8s.io/v1
+
+- **kind**: APIServiceList
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  <!--
+  Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+  标准的列表元数据。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../cluster-resources/api-service-v1#APIService" >}}">APIService</a>)， <!--required-->必需
+  <!--
+  Items is the list of APIService
+  -->
+  items 是 APIService 的列表
+
+
+## Operations {#Operations}
+
+<hr>
+
+<!--
+### `get` read the specified APIService
+
+#### HTTP Request
+-->
+### `get` 读取指定的 APIService
+
+#### HTTP 请求
+
+GET /apis/apiregistration.k8s.io/v1/apiservices/{name}
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the APIService
+
+
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** （**路径参数**）：string，必需
+
+  APIService 名称
+
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/api-service-v1#APIService" >}}">APIService</a>): OK
+
+401: Unauthorized
+
+<!--
+### `get` read status of the specified APIService
+
+#### HTTP Request
+-->
+### `get` 读取指定 APIService 的状态
+
+#### HTTP 请求
+
+GET /apis/apiregistration.k8s.io/v1/apiservices/{name}/status
+
+<!--
+#### Parameters
+
+
+- **name** (*in path*): string, required
+
+  name of the APIService
+
+
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** （**路径参数**）：string，必需
+
+  APIService 名称
+
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/api-service-v1#APIService" >}}">APIService</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind APIService
+
+#### HTTP Request
+-->
+### `list` 列出或观察 APIService 类的对象
+
+#### HTTP 请求
+
+GET /apis/apiregistration.k8s.io/v1/apiservices
+
+<!--
+#### Parameters
+
+
+- **allowWatchBookmarks** (*in query*): boolean
+-->
+#### 参数
+
+- **allowWatchBookmarks** （**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** <!--(*in query*):-->（**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** <!--(*in query*):-->（**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** <!--(*in query*):-->（**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/api-service-v1#APIServiceList" >}}">APIServiceList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create an APIService
+
+#### HTTP Request
+-->
+### `create` 创建一个 APIService
+
+#### HTTP 请求
+
+POST /apis/apiregistration.k8s.io/v1/apiservices
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+- **body**：<a href="{{< ref "../cluster-resources/api-service-v1#APIService" >}}">APIService</a>， <!--required-->必需
+
+- **dryRun** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/api-service-v1#APIService" >}}">APIService</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/api-service-v1#APIService" >}}">APIService</a>): Created
+
+202 (<a href="{{< ref "../cluster-resources/api-service-v1#APIService" >}}">APIService</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified APIService
+
+#### HTTP Request
+-->
+### `update` 替换指定的 APIService
+
+#### HTTP 请求
+
+PUT /apis/apiregistration.k8s.io/v1/apiservices/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+- **name** <!-- (*in path*): -->（**路径参数**）：string， <!--required-->必需
+  <!--
+  name of the APIService
+  -->
+  APIService 名称
+
+- **body**：<a href="{{< ref "../cluster-resources/api-service-v1#APIService" >}}">APIService</a>， <!--required-->必需
+
+- **dryRun** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/api-service-v1#APIService" >}}">APIService</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/api-service-v1#APIService" >}}">APIService</a>): Created
+
+401: Unauthorized
+
+<!--
+### `update` replace status of the specified APIService
+
+#### HTTP Request
+-->
+### `update` 替换指定 APIService 的 status
+
+#### HTTP 请求
+
+PUT /apis/apiregistration.k8s.io/v1/apiservices/{name}/status
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the APIService
+-->
+#### 参数
+- **name**（**路径参数**）：string， 必需
+
+  APIService 名称
+
+- **body**：<a href="{{< ref "../cluster-resources/api-service-v1#APIService" >}}">APIService</a>， <!--required-->必需
+
+- **dryRun** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/api-service-v1#APIService" >}}">APIService</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/api-service-v1#APIService" >}}">APIService</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified APIService
+
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 APIService
+
+#### HTTP 请求
+
+PATCH /apis/apiregistration.k8s.io/v1/apiservices/{name}
+
+<!--
+#### Parameters
+
+
+- **name** (*in path*): string, required
+
+  name of the APIService
+-->
+#### 参数
+
+- **name**（**路径参数**）：string， 必需
+
+  APIService 名称
+
+- **body**：<a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>， <!--required-->必需
+
+- **dryRun** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** <!--(*in query*):-->（**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/api-service-v1#APIService" >}}">APIService</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/api-service-v1#APIService" >}}">APIService</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update status of the specified APIService
+
+#### HTTP Request
+-->
+### `patch` 部分更新指定 APIService 的 status
+
+#### HTTP 请求
+
+PATCH /apis/apiregistration.k8s.io/v1/apiservices/{name}/status
+
+<!--
+#### Parameters
+
+
+- **name** (*in path*): string, required
+
+  name of the APIService
+-->
+#### 参数
+
+- **name**（**路径参数**）：string， 必需
+
+  APIService 名称
+
+- **body**：<a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>， <!--required-->必需
+
+- **dryRun** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** <!--(*in query*):-->（**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/api-service-v1#APIService" >}}">APIService</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/api-service-v1#APIService" >}}">APIService</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete an APIService
+
+#### HTTP Request
+-->
+### `delete` 删除一个 APIService
+
+#### HTTP 请求
+
+DELETE /apis/apiregistration.k8s.io/v1/apiservices/{name}
+
+<!--
+#### Parameters
+
+
+- **name** (*in path*): string, required
+
+  name of the APIService
+-->
+#### 参数
+
+- **name**（**路径参数**）：string， 必需
+
+  APIService 名称
+
+- **body**：<a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** <!--(*in query*):-->（**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of APIService
+
+#### HTTP Request
+-->
+### `deletecollection` 删除 APIService 集合
+
+#### HTTP 请求
+
+DELETE /apis/apiregistration.k8s.io/v1/apiservices
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+- **body**：<a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** <!--(*in query*):-->（**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** <!--(*in query*):-->（**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** <!--(*in query*):-->（**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/binding-v1.md b/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/binding-v1.md
new file mode 100644
index 0000000000..1b23f65ee8
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/binding-v1.md
@@ -0,0 +1,222 @@
+---
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "Binding"
+content_type: "api_reference"
+description: "Binding 将一个对象与另一个对象联系起来; 例如，一个 Pod 被调度程序绑定到一个节点。"
+title: "Binding"
+weight: 9
+auto_generated: true
+---
+
+`apiVersion: v1`
+
+`import "k8s.io/api/core/v1"`
+
+
+## Binding {#Binding}
+<!--
+Binding ties one object to another; for example, a pod is bound to a node by a scheduler. Deprecated in 1.7, please use the bindings subresource of pods instead.
+-->
+Binding 将一个对象与另一个对象联系起来; 例如，一个 Pod 被调度程序绑定到一个节点。
+已在 1.7 版本弃用，请使用 Pod 的 binding 子资源。
+<hr>
+
+- **apiVersion**: v1
+
+
+- **kind**: Binding
+
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+<!--
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+-->
+  标准对象的元数据， 更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+<!--
+- **target** (<a href="{{< ref "../common-definitions/object-reference#ObjectReference" >}}">ObjectReference</a>), required
+
+  The target object that you want to bind to the standard object.
+-->
+
+- **target** (<a href="{{< ref "../common-definitions/object-reference#ObjectReference" >}}">ObjectReference</a>)， 必需
+
+  要绑定到标准对象的目标对象。
+<!--
+## Operations {#Operations}
+-->
+## 操作   {#operations}
+
+<hr>
+
+<!--
+### `create` create a Binding
+
+#### HTTP Request
+
+POST /api/v1/namespaces/{namespace}/bindings
+
+#### Parameters
+-->
+### `create` 创建一个 Binding
+
+#### HTTP 请求
+
+POST /api/v1/namespaces/{namespace}/bindings
+
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../cluster-resources/binding-v1#Binding" >}}">Binding</a>, required
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../cluster-resources/binding-v1#Binding" >}}">Binding</a>, 必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/binding-v1#Binding" >}}">Binding</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/binding-v1#Binding" >}}">Binding</a>): Created
+
+202 (<a href="{{< ref "../cluster-resources/binding-v1#Binding" >}}">Binding</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `create` create binding of a Pod
+
+#### HTTP Request
+
+POST /api/v1/namespaces/{namespace}/pods/{name}/binding
+-->
+### `create` 创建 Pod 的绑定
+
+#### HTTP 请求
+
+POST /api/v1/namespaces/{namespace}/pods/{name}/binding
+<!--
+#### Parameters
+
+
+- **name** (*in path*): string, required
+
+  name of the Binding
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../cluster-resources/binding-v1#Binding" >}}">Binding</a>, required
+-->
+#### 参数
+
+- **name** (**路径参数**): string, 必需
+
+  Binding 的名称
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../cluster-resources/binding-v1#Binding" >}}">Binding</a>, 必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/binding-v1#Binding" >}}">Binding</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/binding-v1#Binding" >}}">Binding</a>): Created
+
+202 (<a href="{{< ref "../cluster-resources/binding-v1#Binding" >}}">Binding</a>): Accepted
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/component-status-v1.md b/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/component-status-v1.md
new file mode 100644
index 0000000000..d42187e296
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/component-status-v1.md
@@ -0,0 +1,225 @@
+---
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "ComponentStatus"
+content_type: "api_reference"
+description: "ComponentStatus（和 ComponentStatusList）保存集群检验信息。"
+title: "ComponentStatus"
+weight: 10
+---
+<!--
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "ComponentStatus"
+content_type: "api_reference"
+description: "ComponentStatus (and ComponentStatusList) holds the cluster validation info."
+title: "ComponentStatus"
+weight: 10
+auto_generated: true
+-->
+
+`apiVersion: v1`
+
+`import "k8s.io/api/core/v1"`
+
+## ComponentStatus {#ComponentStatus}
+<!--
+ComponentStatus (and ComponentStatusList) holds the cluster validation info. Deprecated: This API is deprecated in v1.19+
+-->
+ComponentStatus（和 ComponentStatusList）保存集群检验信息。
+已废弃：该 API 在 v1.19 及更高版本中废弃。
+
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: ComponentStatus
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  <!--
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+  标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **conditions** ([]ComponentCondition)
+
+  <!--
+  *Patch strategy: merge on key `type`*
+  List of component conditions observed
+
+  <a name="ComponentCondition"></a>
+  *Information about the condition of a component.*
+
+  - **conditions.status** (string), required
+    Status of the condition for a component. Valid values for "Healthy": "True", "False", or "Unknown".
+  -->
+  **补丁策略：基于键 `type` 合并**
+  
+  观测到的组件状况的列表。
+
+  <a name="ComponentCondition"></a>
+  **组件状况相关信息。**
+
+  - **conditions.status** (string)，必需
+
+    组件状况的状态。“Healthy” 的有效值为：“True”、“False” 或 “Unknown”。
+
+  <!--
+  - **conditions.type** (string), required
+    Type of condition for a component. Valid value: "Healthy"
+
+  - **conditions.error** (string)
+    Condition error code for a component. For example, a health check error code.
+
+  - **conditions.message** (string)
+    Message about the condition for a component. For example, information about a health check.
+  -->
+  - **conditions.type** (string)，必需
+
+    组件状况的类型。有效值：“Healthy”
+
+  - **conditions.error** (string)
+
+    组件状况的错误码。例如，一个健康检查错误码。
+
+  - **conditions.message** (string)
+
+    组件状况相关消息。例如，有关健康检查的信息。
+
+## ComponentStatusList {#ComponentStatusList}
+<!--
+Status of all the conditions for the component as a list of ComponentStatus objects. Deprecated: This API is deprecated in v1.19+
+-->
+作为 ComponentStatus 对象列表，所有组件状况的状态。
+已废弃：该 API 在 v1.19 及更高版本中废弃。
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: ComponentStatusList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+- **items** ([]<a href="{{< ref "../cluster-resources/component-status-v1#ComponentStatus" >}}">ComponentStatus</a>), required
+  List of ComponentStatus objects.
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+- **items** ([]<a href="{{< ref "../cluster-resources/component-status-v1#ComponentStatus" >}}">ComponentStatus</a>)，必需
+
+  ComponentStatus 对象的列表。
+
+<!--
+## Operations {#Operations}
+<hr>
+### `get` read the specified ComponentStatus
+#### HTTP Request
+-->
+## 操作 {#Operations}
+<hr>
+
+### `get` 读取指定的 ComponentStatus
+#### HTTP 请求
+GET /api/v1/componentstatuses/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ComponentStatus
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+
+  ComponentStatus 的名称
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../cluster-resources/component-status-v1#ComponentStatus" >}}">ComponentStatus</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list objects of kind ComponentStatus
+#### HTTP Request
+-->
+### `list` 列出 ComponentStatus 类别的对象
+#### HTTP 请求
+GET /api/v1/componentstatuses
+
+<!--
+#### Parameters
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../cluster-resources/component-status-v1#ComponentStatusList" >}}">ComponentStatusList</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/event-v1.md b/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/event-v1.md
new file mode 100644
index 0000000000..a62915f651
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/event-v1.md
@@ -0,0 +1,935 @@
+---
+api_metadata:
+  apiVersion: "events.k8s.io/v1"
+  import: "k8s.io/api/events/v1"
+  kind: "Event"
+content_type: "api_reference"
+description: "Event 是集群中某个事件的报告。"
+title: "Event"
+weight: 3
+---
+
+<!--
+api_metadata:
+  apiVersion: "events.k8s.io/v1"
+  import: "k8s.io/api/events/v1"
+  kind: "Event"
+content_type: "api_reference"
+description: "Event is a report of an event somewhere in the cluster."
+title: "Event"
+weight: 3
+auto_generated: true
+-->
+
+`apiVersion: events.k8s.io/v1`
+
+`import "k8s.io/api/events/v1"`
+
+## Event {#Event}
+<!--
+Event is a report of an event somewhere in the cluster. It generally denotes some state change in the system.
+Events have a limited retention time and triggers and messages may evolve with time. 
+Event consumers should not rely on the timing of an event with a given Reason reflecting a consistent underlying trigger, or the continued existence of events with that Reason. 
+Events should be treated as informative, best-effort, supplemental data.
+-->
+Event 是集群中某个事件的报告。它一般表示系统的某些状态变化。
+Event 的保留时间有限，触发器和消息可能会随着时间的推移而演变。
+事件消费者不应假定给定原因的事件的时间所反映的是一致的下层触发因素，或具有该原因的事件的持续存在。
+Events 应被视为通知性质的、尽最大努力而提供的补充数据。
+
+<hr>
+
+- **apiVersion**: events.k8s.io/v1
+
+- **kind**: Event
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  <!--
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+  标准的对象元数据。更多信息: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+<!--
+- **eventTime** (MicroTime), required
+
+  eventTime is the time when this Event was first observed. It is required.
+-->
+
+- **eventTime** (MicroTime)，必需
+
+  evenTime 是该事件首次被观察到的时间。它是必需的。
+
+  <a name="MicroTime"></a>
+
+  <!--
+  *MicroTime is version of Time with microsecond level precision.*
+  -->
+  
+  **MicroTime 是微秒级精度的 Time 版本**
+
+- **action** (string)
+
+  <!--
+  action is what action was taken/failed regarding to the regarding object. It is machine-readable. This field cannot be empty for new Events and it can have at most 128 characters.
+  -->
+  action 是针对相关对象所采取的或已失败的动作。字段值是机器可读的。对于新的 Event，此字段不能为空，
+  且最多为 128 个字符。
+
+- **deprecatedCount** (int32)
+
+  <!--
+  deprecatedCount is the deprecated field assuring backward compatibility with core.v1 Event type.
+  -->
+  deprecatedCount 是确保与 core.v1 Event 类型向后兼容的已弃用字段。
+
+- **deprecatedFirstTimestamp** (Time)
+
+  <!--
+  deprecatedFirstTimestamp is the deprecated field assuring backward compatibility with core.v1 Event type.
+  -->
+  deprecatedFirstTimestamp 是确保与 core.v1 Event 类型向后兼容的已弃用字段。
+
+  <a name="Time"></a>
+  
+  <!--
+  *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+  -->
+  **Time 是对 time.Time 的封装。Time 支持对 YAML 和 JSON 进行正确封包。为 time 包的许多函数方法提供了封装器。**
+
+- **deprecatedLastTimestamp** (Time)
+
+  <!--
+  deprecatedLastTimestamp is the deprecated field assuring backward compatibility with core.v1 Event type.
+  -->
+  deprecatedLastTimestamp 是确保与 core.v1 Event 类型向后兼容的已弃用字段。
+
+  <a name="Time"></a>
+
+  <!--
+  *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+  --> 
+  **Time 是对 time.Time 的封装。Time 支持对 YAML 和 JSON 进行正确封包。为 time 包的许多函数方法提供了封装器。**
+
+- **deprecatedSource** (EventSource)
+
+  <!--
+  deprecatedSource is the deprecated field assuring backward compatibility with core.v1 Event type.
+  -->  
+  deprecatedSource 是确保与 core.v1 Event 类型向后兼容的已弃用字段。
+
+  <a name="EventSource"></a>
+  
+  <!--
+  *EventSource contains information for an event.*
+  -->
+
+  **EventSource 包含事件信息。**
+
+  - **deprecatedSource.component** (string)
+
+    <!--
+    Component from which the event is generated.
+    -->
+
+    生成事件的组件。
+
+  - **deprecatedSource.host** (string)
+
+    <!--
+    Node name on which the event is generated.
+    -->
+
+    产生事件的节点名称。
+
+- **note** (string)
+
+  <!--
+  note is a human-readable description of the status of this operation. Maximal length of the note is 1kB, but libraries should be prepared to handle values up to 64kB.
+  -->
+  node 是对该操作状态的可读描述。注释的最大长度是 1kB，但是库应该准备好处理最多 64kB 的值。
+
+- **reason** (string)
+
+  <!--
+  reason is why the action was taken. It is human-readable. This field cannot be empty for new Events and it can have at most 128 characters.
+  -->
+  reason 是采取行动的原因。它是人类可读的。对于新的 Event，此字段不能为空，且最多为128个字符。
+
+- **regarding** (<a href="{{< ref "../common-definitions/object-reference#ObjectReference" >}}">ObjectReference</a>)
+
+  <!--
+  regarding contains the object this Event is about. In most cases it's an Object reporting controller implements, e.g. ReplicaSetController implements ReplicaSets and this event is emitted because it acts on some changes in a ReplicaSet object.
+  -->
+  关于包含此 Event 所涉及的对象。在大多数情况下，所指的是报告事件的控制器所实现的一个 Object。
+  例如 ReplicaSetController 实现了 ReplicaSet，这个事件被触发是因为控制器对 ReplicaSet 对象做了一些变化。
+
+- **related** (<a href="{{< ref "../common-definitions/object-reference#ObjectReference" >}}">ObjectReference</a>)
+
+  <!--
+  related is the optional secondary object for more complex actions. E.g. when regarding object triggers a creation or deletion of related object.
+  -->
+  related 是用于更复杂操作的、可选的、从属性的对象。例如，当 regarding 对象触发 related 对象的创建或删除时。
+
+- **reportingController** (string)
+
+  <!--
+  reportingController is the name of the controller that emitted this Event, e.g. `kubernetes.io/kubelet`. This field cannot be empty for new Events.
+  -->
+  reportingController 是触发该事件的控制器的名称,例如 `kubernetes.io/kubelet`。对于新的　Event，此字段不能为空。
+
+- **reportingInstance** (string)
+
+  <!--
+  reportingInstance is the ID of the controller instance, e.g. `kubelet-xyzf`. This field cannot be empty for new Events and it can have at most 128 characters.
+  -->
+  reportingInstance 为控制器实例的 ID,例如 `kubelet-xyzf`。对于新的 Event，此字段不能为空，且最多为 128 个字符。 
+
+- **series** (EventSeries)
+
+  <!--
+  series is data about the Event series this event represents or nil if it's a singleton Event.
+  -->
+  series 是该事件代表的事件系列的数据，如果是单事件，则为 nil。
+
+  <a name="EventSeries"></a>
+
+  <!--
+  *EventSeries contain information on series of events, i.e. thing that was/is happening continuously for some time. How often to update the EventSeries is up to the event reporters. The default event reporter in "k8s.io/client-go/tools/events/event_broadcaster.go" shows how this struct is updated on heartbeats and can guide customized reporter implementations.*
+  -->
+  EventSeries 包含一系列事件的信息，即一段时间内持续发生的事情。
+  EventSeries 的更新频率由事件报告者决定。
+  默认事件报告程序在 "k8s.io/client-go/tools/events/event_broadcaster.go" 
+  展示在发生心跳时该结构如何被更新，可以指导定制的报告者实现。
+
+  <!--
+  - **series.count** (int32), required
+  -->
+
+  - **series.count** (int32)，必需
+
+    <!--
+    count is the number of occurrences in this series up to the last heartbeat time.
+    -->
+    
+    count 是到最后一次心跳时间为止在该系列中出现的次数。
+
+  <!--
+  - **series.lastObservedTime** (MicroTime), required
+
+    lastObservedTime is the time when last Event from the series was seen before last heartbeat.
+  -->
+
+  - **series.lastObservedTime** (MicroTime)，必需
+
+    lastObservedTime 是在最后一次心跳时间之前看到最后一个 Event 的时间。
+
+    <a name="MicroTime"></a>
+
+    <!--
+    *MicroTime is version of Time with microsecond level precision.*
+    -->
+
+    **MicroTime 是微秒级精度的 Time 版本。**
+
+- **type** (string)
+
+  <!--
+  type is the type of this event (Normal, Warning), new types could be added in the future. It is machine-readable. This field cannot be empty for new Events.
+  -->
+  type 是该事件的类型（Normal、Warning），未来可能会添加新的类型。字段值是机器可读的。
+  对于新的 Event，此字段不能为空。
+
+## EventList {#EventList}
+
+<!--
+EventList is a list of Event objects.
+-->
+EventList 是一个 Event 对象列表。
+
+<hr>
+
+- **apiVersion**: events.k8s.io/v1
+
+- **kind**: EventList
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  <!--
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+   标准的列表元数据。更多信息: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+<!--
+- **items** ([]<a href="{{< ref "../cluster-resources/event-v1#Event" >}}">Event</a>), required
+
+  items is a list of schema objects.
+-->
+- **items** ([]<a href="{{< ref "../cluster-resources/event-v1#Event" >}}">Event</a>)，必需
+
+  items 是模式（Schema）对象的列表。
+
+<!--
+## Operations {#Operations}
+-->
+## 操作 {#操作}
+
+<hr>
+
+<!--
+### `get` read the specified Event
+
+#### HTTP Request
+-->
+### `get` 读取特定 Event
+
+#### HTTP 请求
+
+GET /apis/events.k8s.io/v1/namespaces/{namespace}/events/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Event
+-->
+- **name** (**路径参数**)：string，必需
+
+  Event 名称
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**路径参数**)：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**路径参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/event-v1#Event" >}}">Event</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind Event
+
+#### HTTP Request
+-->
+### `list` 列出或观察事件类型对象
+
+#### HTTP 请求
+
+GET /apis/events.k8s.io/v1/namespaces/{namespace}/events
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**路径参数**)：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+-->
+- **allowWatchBookmarks** (**查询参数**)：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!--
+- **continue** (*in query*): string
+-->
+- **continue** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+-->
+- **fieldSelector** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **labelSelector** (*in query*): string
+-->
+- **labelSelector** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+-->
+- **limit** (**查询参数**)：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+-->
+- **resourceVersion** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+-->
+- **resourceVersionMatch** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+-->
+- **timeoutSeconds** (**查询参数**)：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+- **watch** (*in query*): boolean
+-->
+- **watch** (**查询参数**)：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/event-v1#EventList" >}}">EventList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind Event
+
+#### HTTP Request
+-->
+### `list` 列出或观察事件类型对象
+
+#### HTTP 请求
+
+GET /apis/events.k8s.io/v1/events
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+-->
+- **allowWatchBookmarks** (**查询参数**)：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!--
+- **continue** (*in query*): string
+-->
+- **continue** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+-->
+- **fieldSelector** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **labelSelector** (*in query*): string
+-->
+- **labelSelector** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+-->
+- **limit** (**查询参数**)：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+-->
+- **resourceVersion** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+-->
+- **resourceVersionMatch** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+-->
+- **timeoutSeconds** (**查询参数**)：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+- **watch** (*in query*): boolean
+-->
+- **watch** (**查询参数**)：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/event-v1#EventList" >}}">EventList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create an Event
+
+#### HTTP Request
+-->
+### `create` 创建一个 Event
+
+#### HTTP 请求
+
+POST /apis/events.k8s.io/v1/namespaces/{namespace}/events
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**查询参数**)：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../cluster-resources/event-v1#Event" >}}">Event</a>, required
+-->
+- **body**: <a href="{{< ref "../cluster-resources/event-v1#Event" >}}">Event</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/event-v1#Event" >}}">Event</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/event-v1#Event" >}}">Event</a>): Created
+
+202 (<a href="{{< ref "../cluster-resources/event-v1#Event" >}}">Event</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified Event
+
+#### HTTP Request
+-->
+### `update` 替换指定 Event
+
+#### HTTP 请求
+
+PUT /apis/events.k8s.io/v1/namespaces/{namespace}/events/{name}
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Event
+-->
+- **name** (**路径参数**)：string，必需
+
+  Event 名称
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**路径参数**)：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../cluster-resources/event-v1#Event" >}}">Event</a>, required
+-->
+- **body**：<a href="{{< ref "../cluster-resources/event-v1#Event" >}}">Event</a>，必需
+  
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**)：必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/event-v1#Event" >}}">Event</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/event-v1#Event" >}}">Event</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified Event
+
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 Event
+
+#### HTTP 请求
+
+PATCH /apis/events.k8s.io/v1/namespaces/{namespace}/events/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Event
+-->
+- **name** (**路径参数**)：string，必需
+
+  Event 名称
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**路径参数**)：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+  
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **force** (*in query*): boolean
+-->
+- **force** (**查询参数**)：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/event-v1#Event" >}}">Event</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/event-v1#Event" >}}">Event</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete an Event
+
+#### HTTP Request
+-->
+### `delete` 删除 Event
+
+#### HTTP 请求
+
+DELETE /apis/events.k8s.io/v1/namespaces/{namespace}/events/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Event
+-->
+- **name** (**路径参数**)：string，必需
+
+  Event 名称
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**路径参数**)：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+-->
+- **gracePeriodSeconds** (**查询参数**)：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **propagationPolicy** (*in query*): string
+-->
+- **propagationPolicy** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of Event
+
+#### HTTP Request
+-->
+### `deletecollection` 删除 Event 集合
+
+#### HTTP 请求
+
+DELETE /apis/events.k8s.io/v1/namespaces/{namespace}/events
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (*in path*)：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **continue** (*in query*): string
+-->
+- **continue** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+-->
+- **fieldSelector** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+-->
+- **gracePeriodSeconds** (**查询参数**)：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **labelSelector** (*in query*): string
+-->
+- **labelSelector** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+-->
+- **limit** (**查询参数**)：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **propagationPolicy** (*in query*): string
+-->
+- **propagationPolicy** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+-->
+- **resourceVersion** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+-->
+- **resourceVersionMatch** (*查询参数*)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+-->
+- **timeoutSeconds** (**查询参数**)：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/flow-schema-v1beta2.md b/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/flow-schema-v1beta2.md
new file mode 100644
index 0000000000..4a8a2fdcdb
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/flow-schema-v1beta2.md
@@ -0,0 +1,1120 @@
+---
+api_metadata:
+  apiVersion: "flowcontrol.apiserver.k8s.io/v1beta2"
+  import: "k8s.io/api/flowcontrol/v1beta2"
+  kind: "FlowSchema"
+content_type: "api_reference"
+description: "FlowSchema 定义一组流的模式。"
+title: "FlowSchema v1beta2"
+weight: 7
+---
+<!--
+api_metadata:
+  apiVersion: "flowcontrol.apiserver.k8s.io/v1beta2"
+  import: "k8s.io/api/flowcontrol/v1beta2"
+  kind: "FlowSchema"
+content_type: "api_reference"
+description: "FlowSchema defines the schema of a group of flows."
+title: "FlowSchema v1beta2"
+weight: 7
+auto_generated: true
+-->
+
+`apiVersion: flowcontrol.apiserver.k8s.io/v1beta2`
+
+`import "k8s.io/api/flowcontrol/v1beta2"`
+
+## FlowSchema {#FlowSchema}
+
+<!--
+FlowSchema defines the schema of a group of flows. Note that a flow is made up of a set of inbound API requests with similar attributes and is identified by a pair of strings: the name of the FlowSchema and a "flow distinguisher".
+-->
+FlowSchema 定义一组流的模式。请注意，一个流由属性类似的一组入站 API 请求组成，
+用一对字符串进行标识：FlowSchema 的名称和一个 “流区分项”。
+
+<hr>
+
+- **apiVersion**: flowcontrol.apiserver.k8s.io/v1beta2
+
+- **kind**: FlowSchema
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  `metadata` is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchemaSpec" >}}">FlowSchemaSpec</a>)
+
+  `spec` is the specification of the desired behavior of a FlowSchema. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  `metadata` 是标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchemaSpec" >}}">FlowSchemaSpec</a>)
+
+  `spec` 是 FlowSchema 预期行为的规约。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+<!--
+- **status** (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchemaStatus" >}}">FlowSchemaStatus</a>)
+
+  `status` is the current status of a FlowSchema. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+-->
+- **status** (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchemaStatus" >}}">FlowSchemaStatus</a>)
+
+  `status` 是 FlowSchema 的当前状态。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+## FlowSchemaSpec {#FlowSchemaSpec}
+
+<!--
+FlowSchemaSpec describes how the FlowSchema's specification looks like.
+-->
+FlowSchemaSpec 描述 FlowSchema 的规约看起来是怎样的。
+
+<hr>
+
+<!--
+- **priorityLevelConfiguration** (PriorityLevelConfigurationReference), required
+
+  `priorityLevelConfiguration` should reference a PriorityLevelConfiguration in the cluster. If the reference cannot be resolved, the FlowSchema will be ignored and marked as invalid in its status. Required.
+
+  <a name="PriorityLevelConfigurationReference"></a>
+  *PriorityLevelConfigurationReference contains information that points to the "request-priority" being used.*
+
+  - **priorityLevelConfiguration.name** (string), required
+
+    `name` is the name of the priority level configuration being referenced Required.
+-->
+- **priorityLevelConfiguration** (PriorityLevelConfigurationReference)，必需
+
+  `priorityLevelConfiguration` 应引用集群中的 PriorityLevelConfiguration。
+  如果此应用无法被解析，则忽略此 FlowSchema，并在其状态中将其标记为无效。必需。
+
+  <a name="PriorityLevelConfigurationReference"></a>
+  **PriorityLevelConfigurationReference 包含指向正被使用的 “request-priority” 的信息。**
+
+  - **priorityLevelConfiguration.name** (string)，必需
+
+    `name` 是正被引用的优先级配置的名称。必需。
+
+<!--
+- **distinguisherMethod** (FlowDistinguisherMethod)
+
+  `distinguisherMethod` defines how to compute the flow distinguisher for requests that match this schema. `nil` specifies that the distinguisher is disabled and thus will always be the empty string.
+
+  <a name="FlowDistinguisherMethod"></a>
+  *FlowDistinguisherMethod specifies the method of a flow distinguisher.*
+
+  - **distinguisherMethod.type** (string), required
+
+    `type` is the type of flow distinguisher method The supported types are "ByUser" and "ByNamespace". Required.
+-->
+- **distinguisherMethod** (FlowDistinguisherMethod)
+
+  `distinguisherMethod` 定义如何为匹配此模式的请求来计算流区分项。
+  `nil` 表示该区分项被禁用，且因此将始终为空字符串。
+
+  <a name="FlowDistinguisherMethod"></a>
+  **FlowDistinguisherMethod 指定流区分项的方法。**
+
+  - **distinguisherMethod.type** (string)，必需
+
+    `type` 是流区分项的类型。支持的类型为 “ByUser” 和 “ByNamespace”。必需。
+
+<!--
+- **matchingPrecedence** (int32)
+
+  `matchingPrecedence` is used to choose among the FlowSchemas that match a given request. The chosen FlowSchema is among those with the numerically lowest (which we take to be logically highest) MatchingPrecedence.  Each MatchingPrecedence value must be ranged in [1,10000]. Note that if the precedence is not specified, it will be set to 1000 as default.
+-->
+- **matchingPrecedence** (int32)
+
+  `matchingPrecedence` 用于选择与给定请求匹配的一个 FlowSchema。
+  选中的 FlowSchema 是某个 MatchingPrecedence 数值最小（我们视其为逻辑上最大）的 FlowSchema。
+  每个 MatchingPrecedence 值必须在 [1,10000] 的范围内。
+  请注意，如果未指定优先顺序，则其默认设为 1000。
+
+<!--
+- **rules** ([]PolicyRulesWithSubjects)
+
+  *Atomic: will be replaced during a merge*
+  
+  `rules` describes which requests will match this flow schema. This FlowSchema matches a request if and only if at least one member of rules matches the request. if it is an empty slice, there will be no requests matching the FlowSchema.
+
+  <a name="PolicyRulesWithSubjects"></a>
+  *PolicyRulesWithSubjects prescribes a test that applies to a request to an apiserver. The test considers the subject making the request, the verb being requested, and the resource to be acted upon. This PolicyRulesWithSubjects matches a request if and only if both (a) at least one member of subjects matches the request and (b) at least one member of resourceRules or nonResourceRules matches the request.*
+-->
+- **rules** ([]PolicyRulesWithSubjects)
+
+  **原子性：将在合并期间被替换**
+  
+  `rules` 描述哪些请求将与这个流模式匹配。只有当至少一条规则与请求匹配时，
+  才视为此 FlowSchema 与该请求匹配。如果字段值为空表，则 FlowSchema 不会与任何请求匹配。
+
+  <a name="PolicyRulesWithSubjects"></a>
+  **PolicyRulesWithSubjects 给出针对 API 服务器请求的一个测试。
+  该测试将检查发出请求的主体、所请求的动作和要操作的资源。
+  只有同时满足以下两个条件时，才表示此 PolicyRulesWithSubjects 与请求匹配：
+  (a) 至少一个主体成员与请求匹配且
+  (b) 至少 resourceRules 或 nonResourceRules 的一个成员与请求匹配。**
+
+  <!--
+  - **rules.subjects** ([]Subject), required
+
+    *Atomic: will be replaced during a merge*
+    
+    subjects is the list of normal user, serviceaccount, or group that this rule cares about. There must be at least one member in this slice. A slice that includes both the system:authenticated and system:unauthenticated user groups matches every request. Required.
+
+    <a name="Subject"></a>
+    *Subject matches the originator of a request, as identified by the request authentication system. There are three ways of matching an originator; by user, group, or service account.*
+  -->
+
+  - **rules.subjects** ([]Subject)，必需
+
+    **原子性：将在合并期间被替换**
+    
+    subjects 是此规则相关的普通用户、服务账号或组的列表。在这个列表中必须至少有一个成员。
+    同时包含 system:authenticated 和 system:unauthenticated 用户组的列表会与每个请求匹配。
+    此字段为必需。
+
+    <a name="Subject"></a>
+    **Subject 用来与匹配请求的发起方，请求的发起方由请求身份认证系统识别出来。
+    有三种方式来匹配一个发起方：按用户、按组或按服务账号。**
+
+    <!--
+    - **rules.subjects.kind** (string), required
+
+      `kind` indicates which one of the other fields is non-empty. Required
+
+    - **rules.subjects.group** (GroupSubject)
+
+      `group` matches based on user group name.
+
+      <a name="GroupSubject"></a>
+      *GroupSubject holds detailed information for group-kind subject.*
+    -->
+
+    - **rules.subjects.kind** (string)，必需
+
+      `kind` 标示其他字段中的哪个字段必须非空。必需。
+
+    - **rules.subjects.group** (GroupSubject)
+
+      `group` 根据用户组名称进行匹配。
+
+      <a name="GroupSubject"></a>
+      **GroupSubject 保存组类别主体的详细信息。**
+
+      <!--
+      - **rules.subjects.group.name** (string), required
+
+        name is the user group that matches, or "*" to match all user groups. See https://github.com/kubernetes/apiserver/blob/master/pkg/authentication/user/user.go for some well-known group names. Required.
+      -->
+
+      - **rules.subjects.group.name** (string)，必需
+
+        name 是要匹配的用户组，或使用 `*` 匹配所有用户组。有关一些广为人知的组名，请参阅
+        https://github.com/kubernetes/apiserver/blob/master/pkg/authentication/user/user.go。必需。
+    
+    <!--
+    - **rules.subjects.serviceAccount** (ServiceAccountSubject)
+
+      `serviceAccount` matches ServiceAccounts.
+
+      <a name="ServiceAccountSubject"></a>
+      *ServiceAccountSubject holds detailed information for service-account-kind subject.*
+
+      - **rules.subjects.serviceAccount.name** (string), required
+
+        `name` is the name of matching ServiceAccount objects, or "*" to match regardless of name. Required.
+
+      - **rules.subjects.serviceAccount.namespace** (string), required
+
+        `namespace` is the namespace of matching ServiceAccount objects. Required.
+    -->
+
+    - **rules.subjects.serviceAccount** (ServiceAccountSubject)
+
+      `serviceAccount` 与 ServiceAccount 对象进行匹配。
+
+      <a name="ServiceAccountSubject"></a>
+      **ServiceAccountSubject 保存服务账号类别主体的详细信息。**
+
+      - **rules.subjects.serviceAccount.name** (string)，必需
+
+        `name` 是要匹配的 ServiceAccount 对象的名称，可使用 `*` 匹配所有名称。必需。
+
+      - **rules.subjects.serviceAccount.namespace** (string)，必需
+
+        `namespace` 是要匹配的 ServiceAccount 对象的名字空间。必需。
+    
+    <!--
+    - **rules.subjects.user** (UserSubject)
+
+      `user` matches based on username.
+
+      <a name="UserSubject"></a>
+      *UserSubject holds detailed information for user-kind subject.*
+
+      - **rules.subjects.user.name** (string), required
+
+        `name` is the username that matches, or "*" to match all usernames. Required.
+    -->
+
+    - **rules.subjects.user** (UserSubject)
+
+      `user` 根据用户名进行匹配。
+
+      <a name="UserSubject"></a>
+      **UserSubject 保存用户类别主体的详细信息。**
+
+      - **rules.subjects.user.name** (string)，必需
+
+        `name` 是要匹配的用户名，可使用 `*` 匹配所有用户名。必需。
+  
+  <!--
+  - **rules.nonResourceRules** ([]NonResourcePolicyRule)
+
+    *Atomic: will be replaced during a merge*
+    
+    `nonResourceRules` is a list of NonResourcePolicyRules that identify matching requests according to their verb and the target non-resource URL.
+
+    <a name="NonResourcePolicyRule"></a>
+    *NonResourcePolicyRule is a predicate that matches non-resource requests according to their verb and the target non-resource URL. A NonResourcePolicyRule matches a request if and only if both (a) at least one member of verbs matches the request and (b) at least one member of nonResourceURLs matches the request.*
+  -->
+
+  - **rules.nonResourceRules** ([]NonResourcePolicyRule)
+
+    **原子性：将在合并期间被替换**
+    
+    `nonResourceRules` 是由 NonResourcePolicyRule 对象构成的列表，
+    根据请求的动作和目标非资源 URL 来识别匹配的请求。
+
+    <a name="NonResourcePolicyRule"></a>
+    **NonResourcePolicyRule 是根据请求的动作和目标非资源 URL 来匹配非资源请求的一种规则。
+    只有满足以下两个条件时，NonResourcePolicyRule 才会匹配一个请求：
+    (a) 至少 verbs 的一个成员与请求匹配且 (b) 至少 nonResourceURLs 的一个成员与请求匹配。**
+    
+    <!--
+    - **rules.nonResourceRules.nonResourceURLs** ([]string), required
+
+      *Set: unique values will be kept during a merge*
+      
+      `nonResourceURLs` is a set of url prefixes that a user should have access to and may not be empty. For example:
+        - "/healthz" is legal
+        - "/hea*" is illegal
+        - "/hea" is legal but matches nothing
+        - "/hea/*" also matches nothing
+        - "/healthz/*" matches all per-component health checks.
+      "*" matches all non-resource urls. if it is present, it must be the only entry. Required.
+    -->
+
+    - **rules.nonResourceRules.nonResourceURLs** ([]string)，必需
+
+      **集合：合并期间保留唯一值**
+      
+      `nonResourceURLs` 是用户有权访问的一组 URL 前缀，不可以为空。
+      此字段为必需设置的字段。例如：
+        - "/healthz" 是合法的
+        - "/hea*" 是不合法的
+        - "/hea" 是合法的但不会与任何项匹配
+        - "/hea/*" 也不会与任何项匹配
+        - "/healthz/*" 与所有组件自身的的健康检查路径匹配。
+      `*` 与所有非资源 URL 匹配。如果存在此字符，则必须是唯一的输入项。
+      必需。
+    
+    <!--
+    - **rules.nonResourceRules.verbs** ([]string), required
+
+      *Set: unique values will be kept during a merge*
+      
+      `verbs` is a list of matching verbs and may not be empty. "*" matches all verbs. If it is present, it must be the only entry. Required.
+    -->
+
+    - **rules.nonResourceRules.verbs** ([]string)，必需
+
+      **集合：在合并期间保留唯一值**
+      
+      `verbs` 是与动作匹配的列表，不可以为空。`*` 与所有动作匹配。
+      如果存在此字符，则必须是唯一的输入项。必需。
+  
+  <!--
+  - **rules.resourceRules** ([]ResourcePolicyRule)
+
+    *Atomic: will be replaced during a merge*
+    
+    `resourceRules` is a slice of ResourcePolicyRules that identify matching requests according to their verb and the target resource. At least one of `resourceRules` and `nonResourceRules` has to be non-empty.
+
+    <a name="ResourcePolicyRule"></a>
+    *ResourcePolicyRule is a predicate that matches some resource requests, testing the request's verb and the target resource. A ResourcePolicyRule matches a resource request if and only if: (a) at least one member of verbs matches the request, (b) at least one member of apiGroups matches the request, (c) at least one member of resources matches the request, and (d) either (d1) the request does not specify a namespace (i.e., `Namespace==""`) and clusterScope is true or (d2) the request specifies a namespace and least one member of namespaces matches the request's namespace.*
+  -->
+
+  - **rules.resourceRules** ([]ResourcePolicyRule)
+
+    **原子性：将在合并期间被替换**
+    
+    `resourceRules` 是 ResourcePolicyRule 对象的列表，根据请求的动作和目标资源识别匹配的请求。
+    `resourceRules` 和 `nonResourceRules` 两者必须至少有一个非空。
+
+    <a name="ResourcePolicyRule"></a>
+    **ResourcePolicyRule 是用来匹配资源请求的规则，对请求的动作和目标资源进行测试。
+    只有满足以下条件时，ResourcePolicyRule 才会与某个资源请求匹配：
+    (a) 至少 verbs 的一个成员与请求的动作匹配，
+    (b) 至少 apiGroups 的一个成员与请求的 API 组匹配，
+    (c) 至少 resources 的一个成员与请求的资源匹配，
+    (d) 要么 (d1) 请求未指定一个名字空间（即，`namespace==""`）且 clusterScope 为 true，
+    要么 (d2) 请求指定了一个名字空间，且至少 namespaces 的一个成员与请求的名字空间匹配。**
+
+    <!--
+    - **rules.resourceRules.apiGroups** ([]string), required
+
+      *Set: unique values will be kept during a merge*
+      
+      `apiGroups` is a list of matching API groups and may not be empty. "*" matches all API groups and, if present, must be the only entry. Required.
+
+    - **rules.resourceRules.resources** ([]string), required
+
+      *Set: unique values will be kept during a merge*
+      
+      `resources` is a list of matching resources (i.e., lowercase and plural) with, if desired, subresource.  For example, [ "services", "nodes/status" ].  This list may not be empty. "*" matches all resources and, if present, must be the only entry. Required.
+    -->
+
+    - **rules.resourceRules.apiGroups** ([]string)，必需
+
+      **集合：合并期间保留唯一值**
+      
+      `apiGroups` 是与 API 组匹配的列表，不可以为空。`*` 表示与所有 API 组匹配。
+      如果存在此字符，则其必须是唯一的条目。必需。
+
+    - **rules.resourceRules.resources** ([]string)，必需
+
+      **集合：合并期间保留唯一值**
+      
+      `resources` 是匹配的资源（即小写和复数）的列表，如果需要的话，还可以包括子资源。
+      例如 [ "services", "nodes/status" ]。此列表不可以为空。
+      `*` 表示与所有资源匹配。如果存在此字符，则必须是唯一的条目。必需。
+
+    <!--
+    - **rules.resourceRules.verbs** ([]string), required
+
+      *Set: unique values will be kept during a merge*
+      
+      `verbs` is a list of matching verbs and may not be empty. "*" matches all verbs and, if present, must be the only entry. Required.
+
+    - **rules.resourceRules.clusterScope** (boolean)
+
+      `clusterScope` indicates whether to match requests that do not specify a namespace (which happens either because the resource is not namespaced or the request targets all namespaces). If this field is omitted or false then the `namespaces` field must contain a non-empty list.
+    -->
+
+    - **rules.resourceRules.verbs** ([]string)，必需
+
+      **集合：合并期间保留唯一值**
+      
+      `verbs` 是匹配的动作的列表，不可以为空。`*` 表示与所有动作匹配。
+      如果存在此字符，则必须是唯一的条目。必需。
+
+    - **rules.resourceRules.clusterScope** (boolean)
+
+      `clusterScope` 表示是否与未指定名字空间
+      （出现这种情况的原因是该资源没有名字空间或请求目标面向所有名字空间）的请求匹配。
+      如果此字段被省略或为 false，则 `namespaces` 字段必须包含一个非空的列表。
+
+    <!--
+    - **rules.resourceRules.namespaces** ([]string)
+
+      *Set: unique values will be kept during a merge*
+      
+      `namespaces` is a list of target namespaces that restricts matches.  A request that specifies a target namespace matches only if either (a) this list contains that target namespace or (b) this list contains "*".  Note that "*" matches any specified namespace but does not match a request that _does not specify_ a namespace (see the `clusterScope` field for that). This list may be empty, but only if `clusterScope` is true.
+    -->
+
+    - **rules.resourceRules.namespaces** ([]string)
+
+      **集合：合并期间保留唯一值**
+      
+      `namespaces` 是限制匹配的目标的名字空间的列表。
+      指定一个目标名字空间的请求只会在以下某一个情况满足时进行匹配：
+      (a) 此列表包含该目标名字空间或 (b) 此列表包含 `*`。
+      请注意，`*` 与所指定的任何名字空间匹配，但不会与**未指定** 名字空间的请求匹配
+      （请参阅 `clusterScope` 字段）。此列表可以为空，但前提是 `clusterScope` 为 true。
+
+## FlowSchemaStatus {#FlowSchemaStatus}
+
+<!--
+FlowSchemaStatus represents the current state of a FlowSchema.
+-->
+FlowSchemaStatus 表示 FlowSchema 的当前状态。
+
+<hr>
+
+<!--
+- **conditions** ([]FlowSchemaCondition)
+
+  *Map: unique values on key type will be kept during a merge*
+  
+  `conditions` is a list of the current states of FlowSchema.
+
+  <a name="FlowSchemaCondition"></a>
+  *FlowSchemaCondition describes conditions for a FlowSchema.*
+-->
+- **conditions** ([]FlowSchemaCondition)
+
+  **Map：合并期间保留根据键 type 保留其唯一值**
+  
+  `conditions` 是 FlowSchema 当前状况的列表。
+
+  <a name="FlowSchemaCondition"></a>
+  **FlowSchemaCondition 描述 FlowSchema 的状况。**
+
+  <!--
+  - **conditions.lastTransitionTime** (Time)
+
+    `lastTransitionTime` is the last time the condition transitioned from one status to another.
+
+    <a name="Time"></a>
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+  -->
+
+  - **conditions.lastTransitionTime** (Time)
+
+    `lastTransitionTime` 是状况上一次从一个状态转换为另一个状态的时间。
+
+    <a name="Time"></a>
+    **Time 是对 time.Time 的封装。Time 支持对 YAML 和 JSON 进行正确封包。
+    为 time 包的许多函数方法提供了封装器。**
+
+  <!--
+  - **conditions.message** (string)
+
+    `message` is a human-readable message indicating details about last transition.
+
+  - **conditions.reason** (string)
+
+    `reason` is a unique, one-word, CamelCase reason for the condition's last transition.
+  -->
+
+  - **conditions.message** (string)
+
+    `message` 是一条人类可读的消息，表示上一次转换有关的详细信息。
+
+  - **conditions.reason** (string)
+
+    `reason` 是状况上次转换原因的、驼峰格式命名的、唯一的一个词。
+  
+  <!--
+  - **conditions.status** (string)
+
+    `status` is the status of the condition. Can be True, False, Unknown. Required.
+
+  - **conditions.type** (string)
+
+    `type` is the type of the condition. Required.
+  -->
+
+  - **conditions.status** (string)
+
+    `status` 是状况的状态。可以是 True、False、Unknown。必需。
+
+  - **conditions.type** (string)
+
+    `type` 是状况的类型。必需。
+
+## FlowSchemaList {#FlowSchemaList}
+
+<!--
+FlowSchemaList is a list of FlowSchema objects.
+-->
+FlowSchemaList 是 FlowSchema 对象的列表。
+
+<hr>
+
+- **apiVersion**: flowcontrol.apiserver.k8s.io/v1beta2
+
+- **kind**: FlowSchemaList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  `metadata` is the standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>), required
+
+  `items` is a list of FlowSchemas.
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  `metadata` 是标准的列表元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>)，必需
+
+  `items` 是 FlowSchemas 的列表。
+
+<!--
+## Operations {#Operations}
+<hr>
+### `get` read the specified FlowSchema
+#### HTTP Request
+-->
+## 操作 {#Operations}
+
+<hr>
+
+### `get` 读取指定的 FlowSchema
+
+#### HTTP 请求
+
+GET /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the FlowSchema
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+
+  FlowSchema 的名称
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): OK
+
+401: Unauthorized
+
+<!--
+### `get` read status of the specified FlowSchema
+#### HTTP Request
+-->
+### `get` 读取指定 FlowSchema 的状态
+
+#### HTTP 请求
+
+GET /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the FlowSchema
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+
+  FlowSchema 的名称
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind FlowSchema
+#### HTTP Request
+-->
+### `list` 列出或监视 FlowSchema 类别的对象
+
+#### HTTP 请求
+
+GET /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas
+
+<!--
+#### Parameters
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchemaList" >}}">FlowSchemaList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a FlowSchema
+#### HTTP Request
+-->
+### `create` 创建 FlowSchema
+
+#### HTTP 请求
+
+POST /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas
+
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): Created
+
+202 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified FlowSchema
+#### HTTP Request
+-->
+### `update` 替换指定的 FlowSchema
+
+#### HTTP 请求
+
+PUT /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the FlowSchema
+- **body**: <a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+
+  FlowSchema 的名称
+
+- **body**: <a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): Created
+
+401: Unauthorized
+
+<!--
+### `update` replace status of the specified FlowSchema
+#### HTTP Request
+-->
+### `update` 替换指定的 FlowSchema 的状态
+
+#### HTTP 请求
+
+PUT /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the FlowSchema
+- **body**: <a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+
+  FlowSchema 的名称
+
+- **body**: <a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified FlowSchema
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 FlowSchema
+
+#### HTTP 请求
+
+PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the FlowSchema
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+
+  FlowSchema 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update status of the specified FlowSchema
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 FlowSchema 的状态
+
+#### HTTP 请求
+
+PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the FlowSchema
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+
+  FlowSchema 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/flow-schema-v1beta2#FlowSchema" >}}">FlowSchema</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a FlowSchema
+#### HTTP Request
+-->
+### `delete` 删除 FlowSchema
+
+#### HTTP 请求
+
+DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the FlowSchema
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+
+  FlowSchema 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of FlowSchema
+#### HTTP Request
+-->
+### `deletecollection` 删除 FlowSchema 的集合
+
+#### HTTP 请求
+
+DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas
+
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **continue** (*in query*): string
+- **dryRun** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/lease-v1.md b/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/lease-v1.md
new file mode 100644
index 0000000000..425cfcab7f
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/lease-v1.md
@@ -0,0 +1,1073 @@
+---
+api_metadata:
+  apiVersion: "coordination.k8s.io/v1"
+  import: "k8s.io/api/coordination/v1"
+  kind: "Lease"
+content_type: "api_reference"
+description: "Lease defines a lease concept."
+title: "Lease"
+weight: 5
+---
+
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference content, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+`apiVersion: coordination.k8s.io/v1`
+
+`import "k8s.io/api/coordination/v1"`
+
+
+## Lease {#Lease}
+<!--
+Lease defines a lease concept.
+-->
+Lease 定义了租约的概念。
+<hr>
+
+- **apiVersion**: coordination.k8s.io/v1
+
+
+- **kind**: Lease
+
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+<!--
+  More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+-->
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../cluster-resources/lease-v1#LeaseSpec" >}}">LeaseSpec</a>)
+
+<!--
+  Specification of the Lease. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+-->
+  Lease 规范。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+
+
+
+## LeaseSpec {#LeaseSpec}
+
+<!--
+LeaseSpec is a specification of a Lease.
+-->
+LeaseSpec 是一个 Lease 的规范。
+
+<hr>
+
+<!--
+- **acquireTime** (MicroTime)
+
+  acquireTime is a time when the current lease was acquired.
+
+  <a name="MicroTime"></a>
+  *MicroTime is version of Time with microsecond level precision.*
+
+- **holderIdentity** (string)
+
+  holderIdentity contains the identity of the holder of a current lease.
+
+- **leaseDurationSeconds** (int32)
+
+  leaseDurationSeconds is a duration that candidates for a lease need to wait to force acquire it. This is measure against time of last observed RenewTime.
+
+- **leaseTransitions** (int32)
+
+  leaseTransitions is the number of transitions of a lease between holders.
+
+- **renewTime** (MicroTime)
+
+  renewTime is a time when the current holder of a lease has last updated the lease.
+
+  <a name="MicroTime"></a>
+  *MicroTime is version of Time with microsecond level precision.*
+-->
+- **acquireTime** (MicroTime)
+
+  acquireTime 是当前租约被获取的时间。
+  
+  <a name="MicroTime"></a>
+  **MicroTime 是微秒级精确时间的版本。**
+
+- **holderIdentity** (string)
+
+  holderIdentity 包含当前租约持有人的身份。
+
+- **leaseDurationSeconds** (int32)
+
+  leaseDurationSeconds 是租约候选人需要等待强制获取租约的持续时间。这是相对于上次观察到的更新时间的度量。
+
+- **leaseTransitions** (int32)
+
+  LeasetTransitions 是租约持有人之间的转换次数。
+
+- **renewTime** (MicroTime)
+
+  renewTime 是当前租约持有人上次更新租约的时间。
+
+  <a name="MicroTime"></a>
+  **MicroTime 是具有微秒级精度的时间版本。**
+
+
+
+
+## LeaseList {#LeaseList}
+
+<!--
+LeaseList is a list of Lease objects.
+-->
+LeaseList 是 Lease 对象的列表。
+
+<hr>
+
+- **apiVersion**: coordination.k8s.io/v1
+
+
+- **kind**: LeaseList
+
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+<!--
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+-->
+   标准列表元数据。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../cluster-resources/lease-v1#Lease" >}}">Lease</a>), required
+
+<!--
+  Items is a list of schema objects.
+-->
+  Items 是架构对象的列表。
+
+
+
+<!--
+## Operations {#Operations}
+-->
+## 操作   {#operations}
+
+
+<hr>
+
+
+
+
+
+<!--
+### `get` read the specified Lease
+
+#### HTTP Request
+
+GET /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases/{name}
+
+#### Parameters
+-->
+### `get` 读取指定的租赁
+
+#### HTTP 请求
+
+GET /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Lease
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **name** (**路径参数**): string, 必需
+
+  Lease 名称
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/lease-v1#Lease" >}}">Lease</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind Lease
+
+#### HTTP Request
+
+GET /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases
+-->
+### `list` 列出或监视 Lease 类对象
+
+#### HTTP 请求
+
+GET /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases
+
+<!--
+#### Parameters
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+#### 参数
+
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/lease-v1#LeaseList" >}}">LeaseList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind Lease
+
+#### HTTP Request
+-->
+### `list` 列出或监视 Lease 类对象
+
+#### HTTP 请求
+
+GET /apis/coordination.k8s.io/v1/leases
+
+<!--
+#### Parameters
+
+
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+#### 参数
+
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../cluster-resources/lease-v1#LeaseList" >}}">LeaseList</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../cluster-resources/lease-v1#LeaseList" >}}">LeaseList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a Lease
+
+#### HTTP Request
+
+POST /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases
+-->
+### `create` 创建 Lease
+
+#### HTTP 请求
+
+POST /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases
+
+<!--
+#### Parameters
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../cluster-resources/lease-v1#Lease" >}}">Lease</a>, required
+
+  
+
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../cluster-resources/lease-v1#Lease" >}}">Lease</a>, 必需
+
+  
+
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../cluster-resources/lease-v1#Lease" >}}">Lease</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/lease-v1#Lease" >}}">Lease</a>): Created
+
+202 (<a href="{{< ref "../cluster-resources/lease-v1#Lease" >}}">Lease</a>): Accepted
+
+401: Unauthorized
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../cluster-resources/lease-v1#Lease" >}}">Lease</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/lease-v1#Lease" >}}">Lease</a>): Created
+
+202 (<a href="{{< ref "../cluster-resources/lease-v1#Lease" >}}">Lease</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified Lease
+
+#### HTTP Request
+
+PUT /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases/{name}
+-->
+### `update` 替换指定的 Lease
+
+#### HTTP 请求
+
+PUT /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases/{name}
+<!--
+#### Parameters
+
+
+- **name** (*in path*): string, required
+
+  name of the Lease
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../cluster-resources/lease-v1#Lease" >}}">Lease</a>, required
+
+  
+
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+
+- **name** (**路径参数**): string, 必需
+
+  租贷名称
+
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../cluster-resources/lease-v1#Lease" >}}">Lease</a>, 必需
+
+  
+
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../cluster-resources/lease-v1#Lease" >}}">Lease</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/lease-v1#Lease" >}}">Lease</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../cluster-resources/lease-v1#Lease" >}}">Lease</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/lease-v1#Lease" >}}">Lease</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified Lease
+
+#### HTTP Request
+
+PATCH /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases/{name}
+-->
+### `patch` 部分更新指定的 Lease
+
+#### HTTP 请求
+
+PATCH /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases/{name}
+<!--
+#### Parameters
+
+
+- **name** (*in path*): string, required
+
+  name of the Lease
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+
+  
+
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+#### 参数
+
+
+- **name** (**路径参数**): string, 必需
+
+  租贷名称
+
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, 必需
+
+  
+
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../cluster-resources/lease-v1#Lease" >}}">Lease</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/lease-v1#Lease" >}}">Lease</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../cluster-resources/lease-v1#Lease" >}}">Lease</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/lease-v1#Lease" >}}">Lease</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a Lease
+
+#### HTTP Request
+
+DELETE /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases/{name}
+-->
+### `delete` 删除一个 Lease
+
+#### HTTP 请求
+
+DELETE /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases/{name}
+<!--
+#### Parameters
+
+
+- **name** (*in path*): string, required
+
+  name of the Lease
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+  
+
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+#### 参数
+
+
+- **name** (**路径参数**): string, 必需
+
+  租贷的名称
+
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+  
+
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of Lease
+
+#### HTTP Request
+
+DELETE /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases
+-->
+### `deletecollection` 删除 Lease 收款
+
+#### HTTP 请求
+
+DELETE /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases
+<!--
+#### Parameters
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+  
+
+
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+-->
+#### 参数
+
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+  
+
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/namespace-v1.md b/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/namespace-v1.md
new file mode 100644
index 0000000000..dc0e8d4ef2
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/namespace-v1.md
@@ -0,0 +1,839 @@
+---
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "Namespace"
+content_type: "api_reference"
+description: "Namespace 为名字提供作用域。"
+title: "Namespace"
+weight: 2
+---
+
+<!--
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "Namespace"
+content_type: "api_reference"
+description: "Namespace provides a scope for Names."
+title: "Namespace"
+weight: 2
+auto_generated: true
+-->
+
+`apiVersion: v1`
+
+`import "k8s.io/api/core/v1"`
+
+## Namespace {#Namespace}
+<!--
+Namespace provides a scope for Names. Use of multiple namespaces is optional.
+-->
+Namespace 为名字提供作用域。使用多个命名空间是可选的。
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: Namespace
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  <!--
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+  标准的对象元数据。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../cluster-resources/namespace-v1#NamespaceSpec" >}}">NamespaceSpec</a>)
+  <!--
+  Spec defines the behavior of the Namespace. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+  -->
+  spec 定义了 Namespace 的行为。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+- **status** (<a href="{{< ref "../cluster-resources/namespace-v1#NamespaceStatus" >}}">NamespaceStatus</a>)
+  <!--
+  Status describes the current status of a Namespace. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+  -->
+  status 描述了当前 Namespace 的状态。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+## NamespaceSpec {#NamespaceSpec}
+<!--
+NamespaceSpec describes the attributes on a Namespace.
+-->
+NamespaceSpec 用于描述 Namespace 的属性。
+
+<hr>
+
+- **finalizers** ([]string)
+  <!--
+  Finalizers is an opaque list of values that must be empty to permanently remove object from storage. More info: https://kubernetes.io/docs/tasks/administer-cluster/namespaces/
+  -->
+
+  finalizers 是一个不透明的值列表，只有此列表为空时才能从存储中永久删除对象。 更多信息： https://kubernetes.io/docs/tasks/administer-cluster/namespaces/
+
+## NamespaceStatus {#NamespaceStatus}
+<!--
+NamespaceStatus is information about the current status of a Namespace.
+-->
+NamespaceStatus 表示 Namespace 的当前状态信息。
+<hr>
+
+- **conditions** ([]NamespaceCondition)
+  <!--
+  *Patch strategy: merge on key `type`*
+  
+  Represents the latest available observations of a namespace's current state.
+  -->
+  **补丁策略：基于 `type` 健合并**
+  
+  表示命名空间当前状态的最新可用状况。
+
+  <a name="NamespaceCondition"></a>
+  <!--
+  *NamespaceCondition contains details about state of namespace.*
+
+  - **conditions.status** (string), required
+
+    Status of the condition, one of True, False, Unknown.
+  -->
+  **NamespaceCondition 包含命名空间状态的详细信息。**
+
+  - **conditions.status** (string)，必需
+
+    状况（condition）的状态，取值为 True、False 或 Unknown 之一。
+  <!--
+  - **conditions.type** (string), required
+
+    Type of namespace controller condition.
+    
+  - **conditions.lastTransitionTime** (Time)
+  -->
+  - **conditions.type** (string), 必需
+
+    命名空间控制器状况的类型。
+    
+  - **conditions.lastTransitionTime** (Time)
+
+    <a name="Time"></a>
+    <!--
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+    -->
+    **Time 是对 time.Time 的封装。Time 支持对 YAML 和 JSON 进行正确封包。为 time 包的许多函数方法提供了封装器。**
+
+  - **conditions.message** (string)
+
+  - **conditions.reason** (string)
+
+- **phase** (string)
+
+  <!--
+  Phase is the current lifecycle phase of the namespace. More info: https://kubernetes.io/docs/tasks/administer-cluster/namespaces/
+  -->
+  phase 是命名空间的当前生命周期阶段。更多信息： https://kubernetes.io/docs/tasks/administer-cluster/namespaces/
+
+## NamespaceList {#NamespaceList}
+<!--
+NamespaceList is a list of Namespaces.
+-->
+NamespaceList 是一个命名空间列表。
+<hr>
+
+- **apiVersion**: v1
+
+
+- **kind**: NamespaceList
+
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  <!--
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+  -->
+  标准的列表元数据。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+<!--
+- **items** ([]<a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>), required
+-->
+
+- **items** ([]<a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>)，必需
+
+  <!--
+  Items is the list of Namespace objects in the list. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
+  -->
+  items 是列表中的 Namespace 对象列表。更多信息： https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
+
+<!--
+## Operations {#Operations}
+-->
+
+## 操作 {#Operations}
+
+<!--
+### `get` read the specified Namespace
+
+#### HTTP Request
+
+GET /api/v1/namespaces/{name}
+
+#### Parameters
+-->
+<hr>
+
+### `get` 读取指定的 Namespace
+
+#### HTTP 请求
+
+GET /api/v1/namespaces/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Namespace
+
+- **pretty** (*in query*): string
+-->
+- **name** (**路径参数**)：string，必需
+
+  Namespace 的名称
+
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>)：OK
+
+401：Unauthorized
+
+<!--
+### `get` read status of the specified Namespace
+
+#### HTTP Request
+
+GET /api/v1/namespaces/{name}/status
+
+#### Parameters
+-->
+### `get` 读取指定 Namespace 的状态
+
+#### HTTP 请求
+
+GET /api/v1/namespaces/{name}/status
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Namespace
+-->
+- **name** (**路径参数**)：string，必需
+
+  Namespace 的名称
+<!--
+- **pretty** (*in query*): string
+-->
+
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>)：OK
+
+401：Unauthorized
+
+<!--
+### `list` list or watch objects of kind Namespace
+
+#### HTTP Request
+
+GET /api/v1/namespaces
+
+#### Parameters
+-->
+### `list` 列出或者检查类别为 Namespace 的对象
+
+#### HTTP 请求
+
+GET /api/v1/namespaces
+
+#### 参数
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+-->
+- **allowWatchBookmarks** (**查询参数**)：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!--
+- **continue** (*in query*): string
+-->
+- **continue** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+-->
+- **fieldSelector** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **labelSelector** (*in query*): string
+-->
+- **labelSelector** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+-->
+- **limit** (**查询参数**)：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+-->
+- **resourceVersion** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+-->
+- **resourceVersionMatch** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+-->
+- **timeoutSeconds** (**查询参数**)：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+- **watch** (*in query*): boolean
+-->
+- **watch** (**查询参数**)：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/namespace-v1#NamespaceList" >}}">NamespaceList</a>)：OK
+
+401：Unauthorized
+
+<!--
+### `create` create a Namespace
+
+#### HTTP Request
+
+POST /api/v1/namespaces
+
+#### Parameters
+-->
+### `create` 创建一个 Namespace
+
+#### HTTP 请求
+
+POST /api/v1/namespaces
+
+#### 参数
+<!--
+- **body**: <a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>, required
+-->
+- **body**: <a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*):string
+-->
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>)：OK
+
+201 (<a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>)：Created
+
+202 (<a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>)：Accepted
+
+401：Unauthorized
+
+<!--
+### `update` replace the specified Namespace
+
+#### HTTP Request
+
+PUT /api/v1/namespaces/{name}
+
+#### Parameters
+-->
+### `update` 替换指定的 Namespace
+
+#### HTTP 请求
+
+PUT /api/v1/namespaces/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Namespace
+
+- **body**: <a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>, required
+-->
+- **name** (**路径参数**)：string，必需
+
+  Namespace 的名称
+
+- **body**: <a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>， 必需
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>)：OK
+
+201 (<a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>)：Created
+
+401：Unauthorized
+
+<!--
+### `update` replace finalize of the specified Namespace
+
+#### HTTP Request
+
+PUT /api/v1/namespaces/{name}/finalize
+
+#### Parameters
+-->
+### `update` 替换指定 Namespace 的终结器
+
+#### HTTP 请求
+
+PUT /api/v1/namespaces/{name}/finalize
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Namespace
+
+- **body**: <a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>, required
+-->
+- **name** (**路径参数**)：string，必需
+
+  Namespace 的名称
+
+- **body**: <a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>)：OK
+
+201 (<a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>)：Created
+
+401：Unauthorized
+
+<!--
+### `update` replace status of the specified Namespace
+
+#### HTTP Request
+
+PUT /api/v1/namespaces/{name}/status
+
+#### Parameters
+-->
+### `update` 替换指定 Namespace 的状态
+
+#### HTTP 请求
+
+PUT /api/v1/namespaces/{name}/status
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Namespace
+
+- **body**: <a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>, required
+-->
+- **name** (**路径阐述**)：string，必需
+
+  Namespace 的名称
+
+- **body**: <a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>，必需  
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>)：OK
+
+201 (<a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>)：Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified Namespace
+
+#### HTTP Request
+
+PATCH /api/v1/namespaces/{name}
+
+#### Parameters
+-->
+### `patch` 部分更新指定的 Namespace
+
+#### HTTP 请求
+
+PATCH /api/v1/namespaces/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Namespace
+-->
+- **name** (**路径参数**)：string，必需
+
+  Namespace 的名称
+
+<!--
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+  
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **force** (*in query*): boolean
+-->
+- **force** (**查询参数**)：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>)：OK
+
+201 (<a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>)：Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update status of the specified Namespace
+
+#### HTTP Request
+
+PATCH /api/v1/namespaces/{name}/status
+
+#### Parameters
+-->
+### `patch` 部分更新指定 Namespace 的状态
+
+#### HTTP 请求
+
+PATCH /api/v1/namespaces/{name}/status
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Namespace
+-->
+- **name** (**路径参数**)：string，必需
+
+  Namespace 的名称
+
+<!--
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+  
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **force** (*in query*): boolean
+-->
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>)：OK
+
+201 (<a href="{{< ref "../cluster-resources/namespace-v1#Namespace" >}}">Namespace</a>)：Created
+
+401：Unauthorized
+
+<!--
+### `delete` delete a Namespace
+
+#### HTTP Request
+
+DELETE /api/v1/namespaces/{name}
+
+#### Parameters
+-->
+### `delete` 删除一个 Namespace
+
+#### HTTP 请求
+
+DELETE /api/v1/namespaces/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Namespace
+-->
+- **name** (**路径参数**)：string，必需
+
+  Namespace 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+-->
+- **gracePeriodSeconds** (*查询参数*)：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **propagationPolicy** (*in query*): string
+-->
+- **propagationPolicy** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>)：OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>)：Accepted
+
+401：Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/node-v1.md b/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/node-v1.md
new file mode 100644
index 0000000000..51b3684117
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/node-v1.md
@@ -0,0 +1,1567 @@
+---
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "Node"
+content_type: "api_reference"
+description: "Node 是 Kubernetes 中的工作节点。"
+title: "Node"
+weight: 1
+---
+
+<!-- 
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "Node"
+content_type: "api_reference"
+description: "Node is a worker node in Kubernetes."
+title: "Node"
+weight: 1
+-->
+
+`apiVersion: v1`
+
+`import "k8s.io/api/core/v1"`
+
+## Node {#Node}
+
+<!-- 
+Node is a worker node in Kubernetes. Each node will have a unique identifier in the cache (i.e. in etcd). 
+-->
+
+Node 是 Kubernetes 中的工作节点。
+每个节点在缓存中（即在 etcd 中）都有一个唯一的标识符。
+
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: Node
+
+<!-- 
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata 
+-->
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  标准的对象元数据。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata 。
+
+<!-- 
+- **spec** (<a href="{{< ref "../cluster-resources/node-v1#NodeSpec" >}}">NodeSpec</a>)
+
+  Spec defines the behavior of a node. https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status 
+-->
+
+- **spec** (<a href="{{< ref "../cluster-resources/node-v1#NodeSpec" >}}">NodeSpec</a>)
+
+  spec 定义节点的行为。
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status 。
+
+<!-- 
+- **status** (<a href="{{< ref "../cluster-resources/node-v1#NodeStatus" >}}">NodeStatus</a>)
+
+  Most recently observed status of the node. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status 
+-->
+
+- **status** (<a href="{{< ref "../cluster-resources/node-v1#NodeStatus" >}}">NodeStatus</a>)
+
+  此节点的最近观测状态。由系统填充。只读。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status 。
+
+## NodeSpec {#NodeSpec}
+
+<!-- 
+NodeSpec describes the attributes that a node is created with. 
+-->
+
+NodeSpec 描述了创建节点时使用的属性。
+
+<hr>
+
+- **configSource** (NodeConfigSource)
+
+  <!-- 
+  Deprecated: Previously used to specify the source of the node's configuration for the DynamicKubeletConfig feature. This feature is removed from Kubelets as of 1.24 and will be fully removed in 1.26. 
+  -->
+
+  已弃用：以前用于为 DynamicKubeletConfig 功能指定节点配置的来源。
+  自 1.24 的版本起，此功能已从 Kubelets 中移除，并将在 1.26 的版本中完全移除。
+
+  <a name="NodeConfigSource"></a>
+  <!-- 
+  *NodeConfigSource specifies a source of node configuration. Exactly one subfield (excluding metadata) must be non-nil. This API is deprecated since 1.22* 
+  -->
+
+  **NodeConfigSource 指定节点配置的来源。指定一个子字段（不包括元数据）必须为非空。此 API 自 1.22的版本起已被弃用**
+
+  - **configSource.configMap** (ConfigMapNodeConfigSource)
+
+    <!-- 
+    ConfigMap is a reference to a Node's ConfigMap 
+    -->
+
+    configMap 是对 Node 的 ConfigMap 的引用。
+
+    <a name="ConfigMapNodeConfigSource"></a>
+    <!-- 
+    *ConfigMapNodeConfigSource contains the information to reference a ConfigMap as a config source for the Node. This API is deprecated since 1.22: https://git.k8s.io/enhancements/keps/sig-node/281-dynamic-kubelet-configuration* 
+    -->
+
+    ConfigMapNodeConfigSource 包含引用某 ConfigMap 作为节点配置源的信息。
+    此 API 自 1.22 版本起已被弃用： https://git.k8s.io/enhancements/keps/sig-node/281-dynamic-kubelet-configuration
+
+    <!-- 
+    - **configSource.configMap.kubeletConfigKey** (string), required
+
+      KubeletConfigKey declares which key of the referenced ConfigMap corresponds to the KubeletConfiguration structure This field is required in all cases. 
+    -->
+
+    - **configSource.configMap.kubeletConfigKey** (string), 必需
+
+      kubeletConfigKey 声明所引用的 ConfigMap 的哪个键对应于 KubeletConfiguration 结构体，
+      该字段在所有情况下都是必需的。
+
+    <!-- 
+    - **configSource.configMap.name** (string), required
+
+      Name is the metadata.name of the referenced ConfigMap. This field is required in all cases. 
+    -->
+
+    - **configSource.configMap.name** (string), 必需
+
+      name 是被引用的 ConfigMap 的 metadata.name。
+      此字段在所有情况下都是必需的。
+
+    <!-- 
+    - **configSource.configMap.namespace** (string), required
+
+      Namespace is the metadata.namespace of the referenced ConfigMap. This field is required in all cases. 
+    -->
+
+    - **configSource.configMap.namespace** (string), 必需
+
+      namespace 是所引用的 ConfigMap 的 metadata.namespace。
+      此字段在所有情况下都是必需的。
+
+    - **configSource.configMap.resourceVersion** (string)
+
+      <!-- 
+      ResourceVersion is the metadata.ResourceVersion of the referenced ConfigMap. This field is forbidden in Node.Spec, and required in Node.Status. 
+      -->
+
+      resourceVersion 是所引用的 ConfigMap 的 metadata.resourceVersion。
+      该字段在 Node.spec 中是禁止的，在 Node.status 中是必需的。
+
+    - **configSource.configMap.uid** (string)
+
+      <!-- 
+      UID is the metadata.UID of the referenced ConfigMap. This field is forbidden in Node.Spec, and required in Node.Status. -->
+
+      uid 是所引用的 ConfigMap 的 metadata.uid。
+      该字段在 Node.spec 中是禁止的，在 Node.status 中是必需的。
+
+- **externalID** (string)
+
+  <!-- 
+  Deprecated. Not all kubelets will set this field. Remove field after 1.13. see: https://issues.k8s.io/61966 
+  -->
+
+  已弃用。并非所有 kubelet 都会设置此字段。
+  1.13 的版本之后会删除该字段。见： https://issues.k8s.io/61966 。
+
+- **podCIDR** (string)
+
+  <!-- 
+  PodCIDR represents the pod IP range assigned to the node. 
+  -->
+
+  podCIDR 表示分配给节点的 Pod IP 范围。
+
+- **podCIDRs** ([]string)
+
+  <!-- 
+  podCIDRs represents the IP ranges assigned to the node for usage by Pods on that node. If this field is specified, the 0th entry must match the podCIDR field. It may contain at most 1 value for each of IPv4 and IPv6. 
+  -->
+
+  podCIDRs 表示分配给节点以供该节点上的 Pod 使用的 IP 范围。
+  如果指定了该字段，则第 0 个条目必须与 podCIDR 字段匹配。
+  对于 IPv4 和 IPv6，它最多可以包含 1 个值。
+
+- **providerID** (string)
+
+  <!-- 
+  ID of the node assigned by the cloud provider in the format: \<ProviderName>://\<ProviderSpecificNodeID> 
+  -->
+
+  云提供商分配的节点ID，格式为：\<ProviderName>://\<ProviderSpecificNodeID>
+
+- **taints** ([]Taint)
+
+  <!-- 
+  If specified, the node's taints. 
+  -->
+
+  如果设置了，则为节点的污点。
+
+  <a name="Taint"></a>
+  <!-- 
+  *The node this Taint is attached to has the "effect" on any pod that does not tolerate the Taint.* 
+  -->
+
+  **此污点附加到的节点对任何不容忍污点的 Pod 都有 “影响”。**
+
+  <!-- 
+  - **taints.effect** (string), required
+
+    Required. The effect of the taint on pods that do not tolerate the taint. Valid effects are NoSchedule, PreferNoSchedule and NoExecute. 
+  -->
+
+  - **taints.effect** (string), 必需
+
+   必需的。污点对不容忍污点的 Pod 的影响。合法的 effect 值有 NoSchedule、PreferNoSchedule 和 NoExecute。
+
+  <!-- 
+  - **taints.key** (string), required
+
+    Required. The taint key to be applied to a node.
+  -->
+
+  - **taints.key** (string), 必需
+
+    必需的。被应用到节点上的污点的键。
+
+  - **taints.timeAdded** (Time)
+
+    <!-- 
+    TimeAdded represents the time at which the taint was added. It is only written for NoExecute taints. 
+    -->
+
+    timeAdded 表示添加污点的时间。它仅适用于 NoExecute 的污点。
+
+    <a name="Time"></a>
+    <!-- 
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.* 
+    -->
+
+    Time 是 time.Time 的包装器，它支持对 YAML 和 JSON 的正确编组。
+    time 包的许多工厂方法提供了包装器。
+
+  - **taints.value** (string)
+
+    <!-- 
+    The taint value corresponding to the taint key. 
+    -->
+
+    与污点键对应的污点值。
+
+- **unschedulable** (boolean)
+
+  <!-- 
+  Unschedulable controls node schedulability of new pods. By default, node is schedulable. More info: https://kubernetes.io/docs/concepts/nodes/node/#manual-node-administration 
+  -->
+
+  unschedulable 控制新 Pod 的节点可调度性。
+  默认情况下，节点是可调度的。
+  更多信息： https://kubernetes.io/docs/concepts/nodes/node/#manual-node-administration 。
+
+## NodeStatus {#NodeStatus}
+
+<!-- 
+NodeStatus is information about the current status of a node. 
+-->
+
+NodeStatus 是有关节点当前状态的信息。
+
+<hr>
+
+- **addresses** ([]NodeAddress)
+
+  <!-- 
+  *Patch strategy: merge on key `type`*
+  
+  List of addresses reachable to the node. Queried from cloud provider, if available. More info: https://kubernetes.io/docs/concepts/nodes/node/#addresses Note: This field is declared as mergeable, but the merge key is not sufficiently unique, which can cause data corruption when it is merged. Callers should instead use a full-replacement patch. See http://pr.k8s.io/79391 for an example. 
+  -->
+
+  **补丁策略：根据 `type` 键执行合并操作**
+
+  节点可到达的地址列表。从云提供商处查询（如果有）。
+  更多信息： https://kubernetes.io/docs/concepts/nodes/node/#addresses 。
+  注意：该字段声明为可合并，但合并键不够唯一，合并时可能导致数据损坏。
+  调用者应改为使用完全替换性质的补丁操作。
+  有关示例，请参见 http://pr.k8s.io/79391。
+
+  <a name="NodeAddress"></a>
+  <!-- 
+  *NodeAddress contains information for the node's address.* 
+  -->
+
+  **NodeAddress 包含节点地址的信息。**
+
+  <!-- 
+  - **addresses.address** (string), required
+
+    The node address. 
+  -->
+
+  - **addresses.address** (string), 必需
+
+    节点地址。
+
+  <!-- 
+  - **addresses.type** (string), required
+
+    Node address type, one of Hostname, ExternalIP or InternalIP. 
+  -->
+
+  - **addresses.type** (string), 必需
+
+    节点地址类型，Hostname、ExternalIP 或 InternalIP 之一。
+   
+- **allocatable** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+  <!-- 
+  Allocatable represents the resources of a node that are available for scheduling. Defaults to Capacity. 
+  -->
+
+  allocatable 表示节点的可用于调度的资源。默认为容量。
+
+- **capacity** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+  <!-- 
+  Capacity represents the total resources of a node. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#capacity 
+  -->
+
+  capacity 代表一个节点的总资源。
+  更多信息： https://kubernetes.io/docs/concepts/storage/persistent-volumes#capacity 。
+
+- **conditions** ([]NodeCondition)
+
+  <!-- 
+  *Patch strategy: merge on key `type`*
+  
+  Conditions is an array of current observed node conditions. More info: https://kubernetes.io/docs/concepts/nodes/node/#condition 
+  -->
+
+  **补丁策略：根据 `type` 键执行合并操作**
+
+  conditions 是当前观测到的节点状况的数组。
+  更多信息： https://kubernetes.io/docs/concepts/nodes/node/#condition 。
+
+  <a name="NodeCondition"></a>
+  <!-- 
+  *NodeCondition contains condition information for a node.* 
+  -->
+
+  **NodeCondition 包含节点状况的信息。**
+
+  <!-- 
+  - **conditions.status** (string), required
+
+    Status of the condition, one of True, False, Unknown.
+  -->
+
+  - **conditions.status** (string), 必需
+
+    状况的状态为 True、False、Unknown 之一。
+  
+  <!-- 
+  - **conditions.type** (string), required
+
+    Type of node condition. 
+  -->
+
+  - **conditions.type** (string), 必需
+
+    节点状况的类型。
+
+  - **conditions.lastHeartbeatTime** (Time)
+
+    <!-- 
+    Last time we got an update on a given condition. 
+    -->
+
+    给定状况最近一次更新的时间。
+
+    <a name="Time"></a>
+    <!-- 
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.* 
+    -->
+
+    Time 是 time.Time 的包装器，它支持对 YAML 和 JSON 的正确编组。
+    time 包的许多工厂方法提供了包装器。
+
+  - **conditions.lastTransitionTime** (Time)
+
+    <!-- 
+    Last time the condition transit from one status to another. 
+    -->
+
+    状况最近一次从一种状态转换到另一种状态的时间。
+
+    <a name="Time"></a>
+    <!-- 
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.* 
+    -->
+
+    Time 是 time.Time 的包装器，它支持对 YAML 和 JSON 的正确编组。
+    time 包的许多工厂方法提供了包装器。
+
+  - **conditions.message** (string)
+
+    <!-- 
+    Human readable message indicating details about last transition. 
+    -->
+
+    指示有关上次转换详细信息的人类可读消息。
+
+  - **conditions.reason** (string)
+
+    <!-- 
+    (brief) reason for the condition's last transition. 
+    -->
+
+    （简要）状况最后一次转换的原因。
+
+- **config** (NodeConfigStatus)
+
+  <!-- 
+  Status of the config assigned to the node via the dynamic Kubelet config feature. 
+  -->
+
+  通过动态 Kubelet 配置功能分配给节点的配置状态。
+
+  <a name="NodeConfigStatus"></a>
+  <!-- 
+  *NodeConfigStatus describes the status of the config assigned by Node.Spec.ConfigSource.* 
+  -->
+
+  **NodeConfigStatus 描述了由 Node.spec.configSource 分配的配置的状态。**
+
+  - **config.active** (NodeConfigSource)
+
+    <!-- 
+    Active reports the checkpointed config the node is actively using. Active will represent either the current version of the Assigned config, or the current LastKnownGood config, depending on whether attempting to use the Assigned config results in an error. 
+    -->
+
+    active 报告节点正在使用的检查点配置。
+    active 将代表已分配配置的当前版本或当前 LastKnownGood 配置，具体取决于尝试使用已分配配置是否会导致错误。
+
+    <a name="NodeConfigSource"></a>
+    <!-- 
+    *NodeConfigSource specifies a source of node configuration. Exactly one subfield (excluding metadata) must be non-nil. This API is deprecated since 1.22* 
+    -->
+
+    **NodeConfigSource 指定节点配置的来源。指定一个子字段（不包括元数据）必须为非空。此 API 自 1.22 版本起已弃用**
+
+    - **config.active.configMap** (ConfigMapNodeConfigSource)
+
+      <!-- 
+      ConfigMap is a reference to a Node's ConfigMap 
+      -->
+
+      configMap 是对 Node 的 ConfigMap 的引用。
+
+      <a name="ConfigMapNodeConfigSource"></a>
+      <!-- 
+      *ConfigMapNodeConfigSource contains the information to reference a ConfigMap as a config source for the Node. This API is deprecated since 1.22: https://git.k8s.io/enhancements/keps/sig-node/281-dynamic-kubelet-configuration* 
+      -->
+
+      ConfigMapNodeConfigSource 包含引用某 ConfigMap 作为节点配置源的信息。
+      此 API 自 1.22 版本起已被弃用： https://git.k8s.io/enhancements/keps/sig-node/281-dynamic-kubelet-configuration。
+
+      <!-- 
+      - **config.active.configMap.kubeletConfigKey** (string), required
+
+        KubeletConfigKey declares which key of the referenced ConfigMap corresponds to the KubeletConfiguration structure This field is required in all cases. 
+      -->
+
+      - **config.active.configMap.kubeletConfigKey** (string), 必需
+
+        kubeletConfigKey 声明所引用的 ConfigMap 的哪个键对应于 KubeletConfiguration 结构体，
+        该字段在所有情况下都是必需的。
+
+      <!-- 
+      - **config.active.configMap.name** (string), required
+
+        Name is the metadata.name of the referenced ConfigMap. This field is required in all cases. 
+      -->
+
+      - **config.active.configMap.name** (string), 必需
+
+        name 是所引用的 ConfigMap 的 metadata.name。
+        此字段在所有情况下都是必需的。
+
+      <!-- 
+      - **config.active.configMap.namespace** (string), required
+
+        Namespace is the metadata.namespace of the referenced ConfigMap. This field is required in all cases. 
+      -->
+
+      - **config.active.configMap.namespace** (string), 必需
+
+        namespace 是所引用的 ConfigMap 的 metadata.namespace。
+        此字段在所有情况下都是必需的。
+
+      - **config.active.configMap.resourceVersion** (string)
+
+        <!-- 
+        ResourceVersion is the metadata.ResourceVersion of the referenced ConfigMap. This field is forbidden in Node.Spec, and required in Node.Status. 
+        -->
+
+        resourceVersion 是所引用的 ConfigMap 的 metadata.resourceVersion。
+        该字段在 Node.spec 中是禁止的，在 Node.status 中是必需的。
+
+      - **config.active.configMap.uid** (string)
+
+        <!-- 
+        UID is the metadata.UID of the referenced ConfigMap. This field is forbidden in Node.Spec, and required in Node.Status. -->
+
+        uid 是所引用的 ConfigMap 的 metadata.uid。
+        该字段在 Node.spec 中是禁止的，在 Node.status 中是必需的。
+
+  - **config.assigned** (NodeConfigSource)
+
+    <!-- 
+    Assigned reports the checkpointed config the node will try to use. When Node.Spec.ConfigSource is updated, the node checkpoints the associated config payload to local disk, along with a record indicating intended config. The node refers to this record to choose its config checkpoint, and reports this record in Assigned. Assigned only updates in the status after the record has been checkpointed to disk. When the Kubelet is restarted, it tries to make the Assigned config the Active config by loading and validating the checkpointed payload identified by Assigned. 
+    -->
+
+    assigned 字段报告节点将尝试使用的检查点配置。
+    当 Node.spec.configSource 被更新时，节点将所关联的配置负载及指示预期配置的记录通过检查点操作加载到本地磁盘。
+    节点参考这条记录来选择它的配置检查点，并在 assigned 中报告这条记录。
+    仅在记录被保存到磁盘后才会更新 status 中的 assigned。
+    当 kubelet 重新启动时，它会尝试通过加载和验证由 assigned 标识的检查点有效负载来使 assigned 配置成为 active 配置。
+
+    <a name="NodeConfigSource"></a>
+    <!-- 
+    *NodeConfigSource specifies a source of node configuration. Exactly one subfield (excluding metadata) must be non-nil. This API is deprecated since 1.22* 
+    -->
+
+    **NodeConfigSource 指定节点配置的来源。指定一个子字段（不包括元数据）必须为非空。此 API 自 1.22 版本起已弃用**
+
+    - **config.assigned.configMap** (ConfigMapNodeConfigSource)
+
+      <!-- 
+      ConfigMap is a reference to a Node's ConfigMap 
+      -->
+
+      configMap 是对 Node 的 ConfigMap 的引用。
+
+      <a name="ConfigMapNodeConfigSource"></a>
+      <!-- 
+      *ConfigMapNodeConfigSource contains the information to reference a ConfigMap as a config source for the Node. This API is deprecated since 1.22: https://git.k8s.io/enhancements/keps/sig-node/281-dynamic-kubelet-configuration* 
+      -->
+
+      ConfigMapNodeConfigSource 包含引用某 ConfigMap 为节点配置源的信息。
+      此 API 自 1.22 版本起已被弃用： https://git.k8s.io/enhancements/keps/sig-node/281-dynamic-kubelet-configuration。
+
+      <!-- 
+      - **config.assigned.configMap.kubeletConfigKey** (string), required
+
+        KubeletConfigKey declares which key of the referenced ConfigMap corresponds to the KubeletConfiguration structure This field is required in all cases. 
+      -->
+
+      - **config.assigned.configMap.kubeletConfigKey** (string), 必需
+
+        kubeletConfigKey 声明所引用的 ConfigMap 的哪个键对应于 KubeletConfiguration 结构体，
+        该字段在所有情况下都是必需的。
+
+      <!-- 
+      - **config.assigned.configMap.name** (string), required
+
+        Name is the metadata.name of the referenced ConfigMap. This field is required in all cases. 
+      -->
+
+      - **config.assigned.configMap.name** (string), 必需
+
+        name 是所引用的 ConfigMap 的 metadata.name。
+        此字段在所有情况下都是必需的。
+
+      <!-- 
+      - **config.assigned.configMap.namespace** (string), required
+
+        Namespace is the metadata.namespace of the referenced ConfigMap. This field is required in all cases. 
+      -->
+
+      - **config.assigned.configMap.namespace** (string), 必需
+
+        namespace 是所引用的 ConfigMap 的 metadata.namespace。
+        此字段在所有情况下都是必需的。
+
+      - **config.assigned.configMap.resourceVersion** (string)
+
+        <!-- 
+        ResourceVersion is the metadata.ResourceVersion of the referenced ConfigMap. This field is forbidden in Node.Spec, and required in Node.Status. 
+        -->
+
+        resourceVersion 是所引用的 ConfigMap 的 metadata.resourceVersion。
+        该字段在 Node.spec 中是禁止的，在 Node.status 中是必需的。
+
+      - **config.assigned.configMap.uid** (string)
+
+        <!-- 
+        UID is the metadata.UID of the referenced ConfigMap. This field is forbidden in Node.Spec, and required in Node.Status. -->
+
+        uid 是所引用的 ConfigMap 的 metadata.uid。
+        该字段在 Node.spec 中是禁止的，在 Node.status 中是必需的。
+
+  - **config.error** (string)
+
+    <!-- 
+    Error describes any problems reconciling the Spec.ConfigSource to the Active config. Errors may occur, for example, attempting to checkpoint Spec.ConfigSource to the local Assigned record, attempting to checkpoint the payload associated with Spec.ConfigSource, attempting to load or validate the Assigned config, etc. Errors may occur at different points while syncing config. Earlier errors (e.g. download or checkpointing errors) will not result in a rollback to LastKnownGood, and may resolve across Kubelet retries. Later errors (e.g. loading or validating a checkpointed config) will result in a rollback to LastKnownGood. In the latter case, it is usually possible to resolve the error by fixing the config assigned in Spec.ConfigSource. You can find additional information for debugging by searching the error message in the Kubelet log. Error is a human-readable description of the error state; machines can check whether or not Error is empty, but should not rely on the stability of the Error text across Kubelet versions. 
+    -->
+
+    error 描述了在 spec.configSource 与活动配置间协调时发生的所有问题。
+    可能会发生的情况，例如，尝试将 spec.configSource 通过检查点操作复制到到本地 assigned 记录时，
+    尝试对与 spec.configSource 关联的有效负载执行检查点操作，尝试加​​载或验证 assigned 的配置时。
+    同步配置时可能会在不同位置发生错误，较早的错误（例如下载或检查点错误）不会导致回滚到 LastKnownGood，
+    并且可能会在 Kubelet 重试后解决。
+    后期发生的错误（例如加载或验证检查点配置）将导致回滚到 LastKnownGood。
+    在后一种情况下，通常可以通过修复 spec.sonfigSource 中 assigned 配置来解决错误。
+    你可以通过在 Kubelet 日志中搜索错误消息来找到更多的调试信息。
+    error 是错误状态的人类可读描述；机器可以检查 error 是否为空，但不应依赖跨 Kubelet 版本的 error 文本的稳定性。
+
+  - **config.lastKnownGood** (NodeConfigSource)
+    
+    <!-- 
+    LastKnownGood reports the checkpointed config the node will fall back to when it encounters an error attempting to use the Assigned config. The Assigned config becomes the LastKnownGood config when the node determines that the Assigned config is stable and correct. This is currently implemented as a 10-minute soak period starting when the local record of Assigned config is updated. If the Assigned config is Active at the end of this period, it becomes the LastKnownGood. Note that if Spec.ConfigSource is reset to nil (use local defaults), the LastKnownGood is also immediately reset to nil, because the local default config is always assumed good. You should not make assumptions about the node's method of determining config stability and correctness, as this may change or become configurable in the future. 
+    -->
+
+    lastKnownGood 报告节点在尝试使用 assigned 配置时遇到错误时将回退到的检查点配置。
+    当节点确定 assigned 配置稳定且正确时，assigned 配置会成为 lastKnownGood 配置。
+    这当前实施为从更新分配配置的本地记录开始的 10 分钟浸泡期。
+    如果在此期间结束时分配的配置依旧处于活动状态，则它将成为 lastKnownGood。
+    请注意，如果 spec.configSource 重置为 nil（使用本地默认值），
+    LastKnownGood 也会立即重置为 nil，因为始终假定本地默认配置是好的。
+    你不应该对节点确定配置稳定性和正确性的方法做出假设，因为这可能会在将来发生变化或变得可配置。
+
+    <a name="NodeConfigSource"></a>
+    <!-- 
+    *NodeConfigSource specifies a source of node configuration. Exactly one subfield (excluding metadata) must be non-nil. This API is deprecated since 1.22* 
+    -->
+
+    **NodeConfigSource 指定节点配置的来源。指定一个子字段（不包括元数据）必须为非空。此 API 自 1.22 版本起已弃用**
+
+    - **config.lastKnownGood.configMap** (ConfigMapNodeConfigSource)
+
+      <!-- 
+      ConfigMap is a reference to a Node's ConfigMap 
+      -->
+
+      configMap 是对 Node 的 ConfigMap 的引用。
+
+      <a name="ConfigMapNodeConfigSource"></a>
+      <!-- 
+      *ConfigMapNodeConfigSource contains the information to reference a ConfigMap as a config source for the Node. This API is deprecated since 1.22: https://git.k8s.io/enhancements/keps/sig-node/281-dynamic-kubelet-configuration* 
+      -->
+
+      ConfigMapNodeConfigSource 包含引用某 ConfigMap 作为节点配置源的信息。
+      此 API 自 1.22 版本起已被弃用： https://git.k8s.io/enhancements/keps/sig-node/281-dynamic-kubelet-configuration 。
+
+      <!-- 
+      - **config.lastKnownGood.configMap.kubeletConfigKey** (string), required
+
+        KubeletConfigKey declares which key of the referenced ConfigMap corresponds to the KubeletConfiguration structure This field is required in all cases. 
+      -->
+
+      - **config.lastKnownGood.configMap.kubeletConfigKey** (string), 必需
+
+        kubeletConfigKey 声明所引用的 ConfigMap 的哪个键对应于 KubeletConfiguration 结构体，
+        该字段在所有情况下都是必需的。
+
+      <!-- 
+      - **config.lastKnownGood.configMap.name** (string), required
+
+        Name is the metadata.name of the referenced ConfigMap. This field is required in all cases. 
+      -->
+
+      - **config.lastKnownGood.configMap.name** (string), 必需
+
+        name 是所引用的 ConfigMap 的 metadata.name。 
+        此字段在所有情况下都是必需的。
+
+      <!-- 
+      - **config.lastKnownGood.configMap.namespace** (string), required
+
+        Namespace is the metadata.namespace of the referenced ConfigMap. This field is required in all cases. 
+      -->
+
+      - **config.lastKnownGood.configMap.namespace** (string), 必需
+
+       namespace 是所引用的 ConfigMap 的 metadata.namespace。 
+       此字段在所有情况下都是必需的。
+
+      - **config.lastKnownGood.configMap.resourceVersion** (string)
+
+        <!-- 
+        ResourceVersion is the metadata.ResourceVersion of the referenced ConfigMap. This field is forbidden in Node.Spec, and required in Node.Status. 
+        -->
+
+        resourceVersion 是所引用的 ConfigMap 的 metadata.resourceVersion。
+        该字段在 Node.spec 中是禁止的，在 Node.status 中是必需的。
+
+      - **config.lastKnownGood.configMap.uid** (string)
+
+        <!-- 
+        UID is the metadata.UID of the referenced ConfigMap. This field is forbidden in Node.Spec, and required in Node.Status. -->
+
+        uid 是所引用的 ConfigMap 的 metadata.uid。
+        该字段在 Node.spec 中是禁止的，在 Node.status 中是必需的。
+
+- **daemonEndpoints** (NodeDaemonEndpoints)
+
+  <!-- 
+  Endpoints of daemons running on the Node. 
+  -->
+
+  在节点上运行的守护进程的端点。
+
+  <a name="NodeDaemonEndpoints"></a>
+  <!-- 
+  *NodeDaemonEndpoints lists ports opened by daemons running on the Node.* 
+  -->
+
+  **NodeDaemonEndpoints 列出了节点上运行的守护进程打开的端口。**
+
+  - **daemonEndpoints.kubeletEndpoint** (DaemonEndpoint)
+
+    <!-- 
+    Endpoint on which Kubelet is listening. 
+    -->
+
+    Kubelet 正在侦听的端点。
+
+    <a name="DaemonEndpoint"></a>
+    <!-- 
+    *DaemonEndpoint contains information about a single Daemon endpoint.* 
+    -->
+
+    **DaemonEndpoint 包含有关单个 Daemon 端点的信息。**
+
+    <!-- 
+    - **daemonEndpoints.kubeletEndpoint.Port** (int32), required
+
+      Port number of the given endpoint. 
+    -->
+
+    - **daemonEndpoints.kubeletEndpoint.Port** (int32), 必需
+
+      给定端点的端口号。
+
+- **images** ([]ContainerImage)
+
+  <!-- 
+  List of container images on this node 
+  -->
+
+  该节点上的容器镜像列表。
+
+  <a name="ContainerImage"></a>
+  <!-- 
+  *Describe a container image* 
+  -->
+
+  **描述一个容器镜像**
+
+  - **images.names** ([]string)
+
+    <!-- 
+    Names by which this image is known. e.g. ["k8s.gcr.io/hyperkube:v1.0.7", "dockerhub.io/google_containers/hyperkube:v1.0.7"] -->
+
+    已知此镜像的名称。 
+    例如 ["k8s.gcr.io/hyperkube:v1.0.7", "dockerhub.io/google_containers/hyperkube:v1.0.7"]
+
+  - **images.sizeBytes** (int64)
+
+    <!-- 
+    The size of the image in bytes. 
+    -->
+
+    镜像的大小（以字节为单位）。
+
+- **nodeInfo** (NodeSystemInfo)
+
+  <!-- 
+  Set of ids/uuids to uniquely identify the node. More info: https://kubernetes.io/docs/concepts/nodes/node/#info 
+  -->
+
+  用于唯一标识节点的 ids/uuids 集。
+  更多信息： https://kubernetes.io/docs/concepts/nodes/node/#info 。
+
+  <a name="NodeSystemInfo"></a>
+  <!-- 
+  *NodeSystemInfo is a set of ids/uuids to uniquely identify the node.* 
+  -->
+
+  **NodeSystemInfo 是一组用于唯一标识节点的 ids/uuids。**
+
+  <!-- 
+  - **nodeInfo.architecture** (string), required
+
+    The Architecture reported by the node 
+  -->
+
+  - **nodeInfo.architecture** (string), 必需
+
+    节点报告的 architecture。
+
+  <!-- 
+  - **nodeInfo.bootID** (string), required
+
+    Boot ID reported by the node. 
+  -->
+
+  - **nodeInfo.bootID** (string), 必需
+
+   节点报告的 bootID。
+
+  <!-- 
+  - **nodeInfo.containerRuntimeVersion** (string), required
+
+    ContainerRuntime Version reported by the node through runtime remote API (e.g. containerd://1.4.2). 
+  -->
+
+  - **nodeInfo.containerRuntimeVersion** (string), 必需
+
+    节点通过运行时远程 API 报告的 ContainerRuntime 版本（例如 containerd://1.4.2）。
+
+  <!-- 
+  - **nodeInfo.kernelVersion** (string), required
+
+    Kernel Version reported by the node from 'uname -r' (e.g. 3.16.0-0.bpo.4-amd64). 
+  -->
+
+  - **nodeInfo.kernelVersion** (string), 必需
+
+    节点来自 “uname -r” 报告的内核版本（例如 3.16.0-0.bpo.4-amd64）。
+
+  <!-- 
+  - **nodeInfo.kubeProxyVersion** (string), required
+
+    KubeProxy Version reported by the node. 
+  -->
+
+  - **nodeInfo.kubeProxyVersion** (string), 必需
+
+    节点报告的 KubeProxy 版本。
+
+  <!-- 
+  - **nodeInfo.kubeletVersion** (string), required
+
+    Kubelet Version reported by the node. 
+  -->
+
+  - **nodeInfo.kubeletVersion** (string), 必需
+
+    节点报告的 Kubelet 版本。
+
+  <!-- 
+  - **nodeInfo.machineID** (string), required
+
+    MachineID reported by the node. For unique machine identification in the cluster this field is preferred. Learn more from man(5) machine-id: http://man7.org/linux/man-pages/man5/machine-id.5.html 
+  -->
+
+  - **nodeInfo.machineID** (string), 必需
+
+    节点上报的 machineID。
+    对于集群中的唯一机器标识，此字段是首选。
+    从 man(5) machine-id 了解更多信息： http://man7.org/linux/man-pages/man5/machine-id.5.html 。
+
+  <!-- 
+  - **nodeInfo.operatingSystem** (string), required
+
+    The Operating System reported by the node 
+  -->
+
+  - **nodeInfo.operatingSystem** (string), 必需
+
+   节点上报的操作系统。
+
+  <!-- 
+  - **nodeInfo.osImage** (string), required
+
+    OS Image reported by the node from /etc/os-release (e.g. Debian GNU/Linux 7 (wheezy)). 
+  -->
+
+  - **nodeInfo.osImage** (string), 必需
+
+    节点从 /etc/os-release 报告的操作系统映像（例如 Debian GNU/Linux 7 (wheezy)）。
+
+  <!-- 
+  - **nodeInfo.systemUUID** (string), required
+
+    SystemUUID reported by the node. For unique machine identification MachineID is preferred. This field is specific to Red Hat hosts https://access.redhat.com/documentation/en-us/red_hat_subscription_management/1/html/rhsm/uuid 
+  -->
+
+  - **nodeInfo.systemUUID** (string), 必需
+
+    节点报告的 systemUUID。
+    对于唯一的机器标识 MachineID 是首选。 
+    此字段特定于 Red Hat 主机 https://access.redhat.com/documentation/en-us/red_hat_subscription_management/1/html/rhsm/uuid 。
+
+- **phase** (string)
+
+  <!-- 
+  NodePhase is the recently observed lifecycle phase of the node. More info: https://kubernetes.io/docs/concepts/nodes/node/#phase The field is never populated, and now is deprecated. 
+  -->
+
+  NodePhase 是最近观测到的节点的生命周期阶段。
+  更多信息： https://kubernetes.io/docs/concepts/nodes/node/#phase 该字段从未填充，现在已被弃用。
+
+- **volumesAttached** ([]AttachedVolume)
+
+  <!-- 
+  List of volumes that are attached to the node. 
+  -->
+
+  附加到节点的卷的列表。
+
+  <a name="AttachedVolume"></a>
+  <!-- 
+  *AttachedVolume describes a volume attached to a node* 
+  -->
+
+  **AttachedVolume 描述附加到节点的卷**
+
+  <!-- 
+  - **volumesAttached.devicePath** (string), required
+
+    DevicePath represents the device path where the volume should be available 
+  -->
+
+   - **volumesAttached.devicePath** (string), 必需
+
+    devicePath 表示卷应该可用的设备路径。
+
+  <!-- 
+  - **volumesAttached.name** (string), required
+
+    Name of the attached volume 
+  -->
+
+  - **volumesAttached.name** (string), 必需
+
+    附加卷的名称。
+
+- **volumesInUse** ([]string)
+
+  <!-- 
+  List of attachable volumes in use (mounted) by the node. 
+  -->
+
+  节点正在使用（安装）的可附加卷的列表。
+
+## NodeList {#NodeList}
+
+<!-- 
+NodeList is the whole list of all Nodes which have been registered with master. 
+-->
+
+NodeList 是已注册到 master 的所有节点的完整列表。
+
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: NodeList
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  <!-- 
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds 
+  -->
+
+  标准的列表元数据。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds 。
+
+<!-- 
+- **items** ([]<a href="{{< ref "../cluster-resources/node-v1#Node" >}}">Node</a>), required
+
+  List of nodes
+-->
+
+- **items** ([]<a href="{{< ref "../cluster-resources/node-v1#Node" >}}">Node</a>), 必需
+
+  节点的列表。
+
+<!-- 
+## Operations {#Operations}
+<hr>
+### `get` read the specified Node
+#### HTTP Request
+GET /api/v1/nodes/{name}
+#### Parameters 
+-->
+
+## 操作 {#Operations}
+
+<hr>
+
+### `get` 读取指定节点
+
+#### HTTP 请求
+
+GET /api/v1/nodes/{name}
+
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+  name of the Node 
+- **pretty** (*in query*): string
+#### Response 
+-->
+
+- **name** (**路径参数**): string, 必需
+
+  节点的名称。
+
+- **pretty** (**路径参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+#### 响应 
+
+200 (<a href="{{< ref "../cluster-resources/node-v1#Node" >}}">Node</a>): OK
+
+401: Unauthorized
+
+<!-- 
+### `get` read status of the specified Node
+#### HTTP Request
+GET /api/v1/nodes/{name}/status
+#### Parameters 
+-->
+
+### `get` 读取指定节点的状态
+
+#### HTTP 请求
+
+GET /api/v1/nodes/{name}/status
+
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+  name of the Node
+- **pretty** (*in query*): string
+#### Response 
+-->
+
+- **name** (**路径参数**): string, 必需
+
+  节点的名称。
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/node-v1#Node" >}}">Node</a>): OK
+
+401: Unauthorized
+
+<!-- 
+### `list` list or watch objects of kind Node
+#### HTTP Request
+GET /api/v1/nodes
+#### Parameters
+-->
+
+### `list` 列出或监视节点类型的对象
+
+#### HTTP 请求
+
+GET /api/v1/nodes
+
+#### 参数
+
+<!-- 
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+#### Response
+-->
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/node-v1#NodeList" >}}">NodeList</a>): OK
+
+401: Unauthorized
+
+<!-- 
+### `create` create a Node
+#### HTTP Request
+POST /api/v1/nodes
+#### Parameters 
+-->
+
+### `create` 创建一个节点
+
+#### HTTP 请求
+
+POST /api/v1/nodes
+
+#### 参数
+
+<!-- 
+- **body**: <a href="{{< ref "../cluster-resources/node-v1#Node" >}}">Node</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+#### Response 
+-->
+
+- **body**: <a href="{{< ref "../cluster-resources/node-v1#Node" >}}">Node</a>, 必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/node-v1#Node" >}}">Node</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/node-v1#Node" >}}">Node</a>): Created
+
+202 (<a href="{{< ref "../cluster-resources/node-v1#Node" >}}">Node</a>): Accepted
+
+401: Unauthorized
+
+<!-- 
+### `update` replace the specified Node
+#### HTTP Request
+PUT /api/v1/nodes/{name}
+#### Parameters 
+-->
+
+### `update` 替换指定节点
+
+#### HTTP 请求
+
+PUT /api/v1/nodes/{name}
+
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+  name of the Node
+- **body**: <a href="{{< ref "../cluster-resources/node-v1#Node" >}}">Node</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+#### Response 
+-->
+
+- **name** (**路径参数**): string, 必需
+
+  节点的名称。
+
+- **body**: <a href="{{< ref "../cluster-resources/node-v1#Node" >}}">Node</a>, 必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/node-v1#Node" >}}">Node</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/node-v1#Node" >}}">Node</a>): Created
+
+401: Unauthorized
+
+<!-- 
+### `update` replace status of the specified Node
+
+#### HTTP Request
+
+PUT /api/v1/nodes/{name}/status
+
+#### Parameters 
+-->
+
+### `update` 替换指定节点的状态
+
+#### HTTP 请求
+
+PUT /api/v1/nodes/{name}/status
+
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+  name of the Node
+- **body**: <a href="{{< ref "../cluster-resources/node-v1#Node" >}}">Node</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+#### Response 
+-->
+
+- **name** (**路径参数**): string, 必需
+
+  节点的名称。
+
+- **body**: <a href="{{< ref "../cluster-resources/node-v1#Node" >}}">Node</a>, 必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/node-v1#Node" >}}">Node</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/node-v1#Node" >}}">Node</a>): Created
+
+401: Unauthorized
+
+<!-- 
+### `patch` partially update the specified Node
+#### HTTP Request
+PATCH /api/v1/nodes/{name}
+#### Parameters 
+-->
+
+### `patch` 部分更新指定节点
+
+#### HTTP 请求
+
+PATCH /api/v1/nodes/{name}
+
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+  name of the Node
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+#### Response 
+-->
+
+- **name** (**路径参数**): string, 必需
+
+  节点的名称。
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, 必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/node-v1#Node" >}}">Node</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/node-v1#Node" >}}">Node</a>): Created
+
+401: Unauthorized
+
+<!-- 
+### `patch` partially update status of the specified Node
+#### HTTP Request
+PATCH /api/v1/nodes/{name}/status
+#### Parameters 
+-->
+
+### `patch` 部分更新指定节点的状态
+
+#### HTTP 请求
+
+PATCH /api/v1/nodes/{name}/status
+
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+  name of the Node
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+#### Response 
+-->
+
+- **name** (**路径参数**): string, 必需
+
+  节点的名称。
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, 必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/node-v1#Node" >}}">Node</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/node-v1#Node" >}}">Node</a>): Created
+
+401: Unauthorized
+
+<!-- 
+### `delete` delete a Node
+#### HTTP Request
+DELETE /api/v1/nodes/{name}
+#### Parameters 
+-->
+
+### `delete` 删除一个节点
+
+#### HTTP 请求
+
+DELETE /api/v1/nodes/{name}
+
+#### 参数
+
+<!-- - **name** (*in path*): string, required
+  name of the Node
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+#### Response 
+-->
+
+- **name** (**路径参数**): string, 必需
+
+  节点的名称。
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!-- 
+### `deletecollection` delete collection of Node
+#### HTTP Request
+DELETE /api/v1/nodes
+#### Parameters 
+-->
+
+### `deletecollection` 删除节点的集合
+
+#### HTTP 请求
+
+DELETE /api/v1/nodes
+
+#### 参数
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!-- 
+- **continue** (*in query*): string
+- **dryRun** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+#### Response
+-->
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/priority-level-configuration-v1beta2.md b/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/priority-level-configuration-v1beta2.md
new file mode 100644
index 0000000000..9158974c82
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/priority-level-configuration-v1beta2.md
@@ -0,0 +1,890 @@
+---
+api_metadata:
+  apiVersion: "flowcontrol.apiserver.k8s.io/v1beta2"
+  import: "k8s.io/api/flowcontrol/v1beta2"
+  kind: "PriorityLevelConfiguration"
+content_type: "api_reference"
+description: "PriorityLevelConfiguration 表示一个优先级的配置。"
+title: "PriorityLevelConfiguration v1beta2"
+weight: 8
+---
+<!--
+api_metadata:
+  apiVersion: "flowcontrol.apiserver.k8s.io/v1beta2"
+  import: "k8s.io/api/flowcontrol/v1beta2"
+  kind: "PriorityLevelConfiguration"
+content_type: "api_reference"
+description: "PriorityLevelConfiguration represents the configuration of a priority level."
+title: "PriorityLevelConfiguration v1beta2"
+weight: 8
+auto_generated: true
+-->
+
+`apiVersion: flowcontrol.apiserver.k8s.io/v1beta2`
+
+`import "k8s.io/api/flowcontrol/v1beta2"`
+
+## PriorityLevelConfiguration {#PriorityLevelConfiguration}
+
+<!--
+PriorityLevelConfiguration represents the configuration of a priority level.
+-->
+PriorityLevelConfiguration 表示一个优先级的配置。
+
+<hr>
+
+- **apiVersion**: flowcontrol.apiserver.k8s.io/v1beta2
+
+- **kind**: PriorityLevelConfiguration
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  `metadata` is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfigurationSpec" >}}">PriorityLevelConfigurationSpec</a>)
+
+  `spec` is the specification of the desired behavior of a "request-priority". More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  
+  `metadata` 是标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfigurationSpec" >}}">PriorityLevelConfigurationSpec</a>)
+  
+  `spec` 是 “request-priority” 预期行为的规约。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+<!--
+- **status** (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfigurationStatus" >}}">PriorityLevelConfigurationStatus</a>)
+
+  `status` is the current status of a "request-priority". More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+-->
+- **status** (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfigurationStatus" >}}">PriorityLevelConfigurationStatus</a>)
+  
+  `status` 是 “请求优先级” 的当前状况。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+## PriorityLevelConfigurationSpec {#PriorityLevelConfigurationSpec}
+
+<!--
+PriorityLevelConfigurationSpec specifies the configuration of a priority level.
+-->
+PriorityLevelConfigurationSpec 指定一个优先级的配置。
+
+<hr>
+
+<!--
+- **type** (string), required
+
+  `type` indicates whether this priority level is subject to limitation on request execution.  A value of `"Exempt"` means that requests of this priority level are not subject to a limit (and thus are never queued) and do not detract from the capacity made available to other priority levels.  A value of `"Limited"` means that (a) requests of this priority level _are_ subject to limits and (b) some of the server's limited capacity is made available exclusively to this priority level. Required.
+-->
+- **type** (string)，必需
+  
+  `type` 指示此优先级是否遵从有关请求执行的限制。
+  取值为 `"Exempt"` 意味着此优先级的请求不遵从某个限制（且因此从不排队）且不会减损其他优先级可用的容量。
+  取值为 `"Limited"` 意味着 (a) 此优先级的请求遵从这些限制且
+  (b) 服务器某些受限的容量仅可用于此优先级。必需。
+
+<!--
+- **limited** (LimitedPriorityLevelConfiguration)
+
+  `limited` specifies how requests are handled for a Limited priority level. This field must be non-empty if and only if `type` is `"Limited"`.
+
+  <a name="LimitedPriorityLevelConfiguration"></a>
+  *LimitedPriorityLevelConfiguration specifies how to handle requests that are subject to limits. It addresses two issues:
+   * How are requests for this priority level limited?
+   * What should be done with requests that exceed the limit?*
+-->
+- **limited** (LimitedPriorityLevelConfiguration)
+  
+  `limited` 指定如何为某个受限的优先级处理请求。
+  当且仅当 `type` 是 `"Limited"` 时，此字段必须为非空。
+  
+  <a name="LimitedPriorityLevelConfiguration"></a>
+  LimitedPriorityLevelConfiguration 指定如何处理需要被限制的请求。它解决两个问题：
+  * 如何限制此优先级的请求？
+  * 应如何处理超出此限制的请求？
+  
+  <!--
+  - **limited.assuredConcurrencyShares** (int32)
+
+    `assuredConcurrencyShares` (ACS) configures the execution limit, which is a limit on the number of requests of this priority level that may be exeucting at a given time.  ACS must be a positive number. The server's concurrency limit (SCL) is divided among the concurrency-controlled priority levels in proportion to their assured concurrency shares. This produces the assured concurrency value (ACV) --- the number of requests that may be executing at a time --- for each such priority level:
+  -->
+  
+  - **limited.assuredConcurrencyShares** (int32)
+    
+    `assuredConcurrencyShares` (ACS) 配置执行限制，这是在给定时间可以执行的、此优先级的请求数量的限制。
+    ACS 必须是一个正数。服务器的并发限制（SCL）数量按其保证的并发份额划分到并发能力受限的各个优先级中。
+    这一计算会为所有这种优先级分别生成其确定的并发值（ACV），即一次可以执行的请求数量：
+    
+    ```
+    ACV(l) = ceil( SCL * ACS(l) / ( sum[priority levels k] ACS(k) ) )
+    ```
+    <!--
+    bigger numbers of ACS mean more reserved concurrent requests (at the expense of every other PL). This field has a default value of 30.
+    -->
+
+    较大的 ACS 值意味着（以影响所有其他优先级为代价）保留更多的并发请求。此字段的默认值为 30。
+  
+  <!--
+  - **limited.limitResponse** (LimitResponse)
+
+    `limitResponse` indicates what to do with requests that can not be executed right now
+
+    <a name="LimitResponse"></a>
+    *LimitResponse defines how to handle requests that can not be executed right now.*
+  -->
+
+  - **limited.limitResponse** (LimitResponse)
+    
+    `limitResponse` 指示如何处理当前无法立即执行的请求。
+    
+    <a name="LimitResponse"></a>
+    **LimitResponse 定义如何处理当前无法立即执行的请求。**
+    
+    <!--
+    - **limited.limitResponse.type** (string), required
+
+      `type` is "Queue" or "Reject". "Queue" means that requests that can not be executed upon arrival are held in a queue until they can be executed or a queuing limit is reached. "Reject" means that requests that can not be executed upon arrival are rejected. Required.
+    -->
+
+    - **limited.limitResponse.type** (string)，必需
+      
+      `type` 是 “Queue” 或 “Reject”。此字段必须设置。
+      “Queue” 意味着在到达时无法被执行的请求可以被放到队列中，直到它们被执行或者队列长度超出限制为止。
+      “Reject” 意味着到达时无法执行的请求将被拒绝。
+    
+    <!--
+    - **limited.limitResponse.queuing** (QueuingConfiguration)
+
+      `queuing` holds the configuration parameters for queuing. This field may be non-empty only if `type` is `"Queue"`.
+
+      <a name="QueuingConfiguration"></a>
+      *QueuingConfiguration holds the configuration parameters for queuing*
+    -->
+
+    - **limited.limitResponse.queuing** (QueuingConfiguration)
+      
+      `queuing` 包含排队所用的配置参数。只有 `type` 是 `"Queue"` 时，此字段才可以为非空。
+      
+      <a name="QueuingConfiguration"></a>
+      **QueuingConfiguration 保存排队所用的配置参数。**
+      
+      <!--
+      - **limited.limitResponse.queuing.handSize** (int32)
+
+        `handSize` is a small positive number that configures the shuffle sharding of requests into queues.  When enqueuing a request at this priority level the request's flow identifier (a string pair) is hashed and the hash value is used to shuffle the list of queues and deal a hand of the size specified here.  The request is put into one of the shortest queues in that hand. `handSize` must be no larger than `queues`, and should be significantly smaller (so that a few heavy flows do not saturate most of the queues).  See the user-facing documentation for more extensive guidance on setting this field.  This field has a default value of 8.
+      -->
+
+      - **limited.limitResponse.queuing.handSize** (int32)
+        
+        `handSize` 是一个小的正数，用于配置如何将请求随机分片到队列中。
+        当以该优先级将请求排队时，将对请求的流标识符（字符串对）进行哈希计算，
+        该哈希值用于打乱队列队列的列表，并处理此处指定的一批请求。
+        请求被放入这一批次中最短的队列中。
+        `handSize` 不得大于 `queues`，并且应该明显更小（以便几个大的流量不会使大多数队列饱和）。
+        有关设置此字段的更多详细指导，请参阅面向用户的文档。此字段的默认值为 8。
+      
+      <!--
+      - **limited.limitResponse.queuing.queueLengthLimit** (int32)
+
+        `queueLengthLimit` is the maximum number of requests allowed to be waiting in a given queue of this priority level at a time; excess requests are rejected.  This value must be positive.  If not specified, it will be defaulted to 50.
+
+      - **limited.limitResponse.queuing.queues** (int32)
+
+        `queues` is the number of queues for this priority level. The queues exist independently at each apiserver. The value must be positive.  Setting it to 1 effectively precludes shufflesharding and thus makes the distinguisher method of associated flow schemas irrelevant.  This field has a default value of 64.
+      -->
+
+      - **limited.limitResponse.queuing.queueLengthLimit** (int32)
+        
+        `queueLengthLimit` 是任意时刻允许在此优先级的给定队列中等待的请求数上限；
+        额外的请求将被拒绝。
+        此值必须是正数。如果未指定，则默认为 50。
+      
+      - **limited.limitResponse.queuing.queues** (int32)
+        
+        `queues` 是这个优先级的队列数。此队列在每个 API 服务器上独立存在。此值必须是正数。
+        将其设置为 1 相当于禁止了混洗分片操作，进而使得对相关流模式的区分方法不再有意义。
+        此字段的默认值为 64。
+
+## PriorityLevelConfigurationStatus {#PriorityLevelConfigurationStatus}
+
+<!--
+PriorityLevelConfigurationStatus represents the current state of a "request-priority".
+-->
+PriorityLevelConfigurationStatus 表示 “请求优先级” 的当前状况。
+
+<hr>
+
+<!--
+- **conditions** ([]PriorityLevelConfigurationCondition)
+
+  *Map: unique values on key type will be kept during a merge*
+  
+  `conditions` is the current state of "request-priority".
+
+  <a name="PriorityLevelConfigurationCondition"></a>
+  *PriorityLevelConfigurationCondition defines the condition of priority level.*
+-->
+- **conditions** ([]PriorityLevelConfigurationCondition)
+  
+  **Map：合并期间保留根据键 type 保留其唯一值**
+  
+  `conditions` 是 “请求优先级” 的当前状况。
+  
+  <a name="PriorityLevelConfigurationCondition"></a>
+  **PriorityLevelConfigurationCondition 定义优先级的状况。**
+  
+  <!--
+  - **conditions.lastTransitionTime** (Time)
+
+    `lastTransitionTime` is the last time the condition transitioned from one status to another.
+
+    <a name="Time"></a>
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+  -->
+
+  - **conditions.lastTransitionTime** (Time)
+    
+    `lastTransitionTime` 是状况上次从一个状态转换为另一个状态的时间。
+    
+    <a name="Time"></a>
+    **Time 是对 time.Time 的封装。Time 支持对 YAML 和 JSON 进行正确封包。
+    为 time 包的许多函数方法提供了封装器。**
+  
+  <!--
+  - **conditions.message** (string)
+
+    `message` is a human-readable message indicating details about last transition.
+
+  - **conditions.reason** (string)
+
+    `reason` is a unique, one-word, CamelCase reason for the condition's last transition.
+  -->
+
+  - **conditions.message** (string)
+    
+    `message` 是人类可读的消息，指示有关上次转换的详细信息。
+  
+  - **conditions.reason** (string)
+    
+    `reason` 是状况上次转换原因的、驼峰格式命名的、唯一的一个词。
+  
+  <!--
+  - **conditions.status** (string)
+
+    `status` is the status of the condition. Can be True, False, Unknown. Required.
+
+  - **conditions.type** (string)
+
+    `type` is the type of the condition. Required.
+  -->
+
+  - **conditions.status** (string)
+    
+    `status` 表示状况的状态，取值为 True、False 或 Unknown 之一。必需。
+  
+  - **conditions.type** (string)
+    
+    `type` 表示状况的类型，必需。
+
+## PriorityLevelConfigurationList {#PriorityLevelConfigurationList}
+
+<!--
+PriorityLevelConfigurationList is a list of PriorityLevelConfiguration objects.
+-->
+PriorityLevelConfigurationList 是 PriorityLevelConfiguration 对象的列表。
+
+<hr>
+
+- **apiVersion**: flowcontrol.apiserver.k8s.io/v1beta2
+
+- **kind**: PriorityLevelConfigurationList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  `metadata` is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>), required
+
+  `items` is a list of request-priorities.
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  
+  `metadata` 是标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>)，必需
+  
+  `items` 是请求优先级设置的列表。
+
+<!--
+## Operations {#Operations}
+<hr>
+### `get` read the specified PriorityLevelConfiguration
+#### HTTP Request
+-->
+## 操作 {#Operations}
+
+<hr>
+
+### `get` 读取指定的 PriorityLevelConfiguration
+
+#### HTTP 请求
+
+GET /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PriorityLevelConfiguration
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  PriorityLevelConfiguration 的名称
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): OK
+
+401: Unauthorized
+
+<!--
+### `get` read status of the specified PriorityLevelConfiguration
+#### HTTP Request
+-->
+### `get` 读取指定的 PriorityLevelConfiguration 的状态
+
+#### HTTP 请求
+
+GET /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PriorityLevelConfiguration
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  PriorityLevelConfiguration 的名称
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind PriorityLevelConfiguration
+#### HTTP Request
+-->
+### `list` 列出或监视 PriorityLevelConfiguration 类别的对象
+
+#### HTTP 请求
+
+GET /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations
+
+<!--
+#### Parameters
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfigurationList" >}}">PriorityLevelConfigurationList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a PriorityLevelConfiguration
+#### HTTP Request
+-->
+### `create` 创建 PriorityLevelConfiguration
+
+#### HTTP 请求
+
+POST /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations
+
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): Created
+
+202 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified PriorityLevelConfiguration
+#### HTTP Request
+-->
+### `update` 替换指定的 PriorityLevelConfiguration
+
+#### HTTP 请求
+
+PUT /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PriorityLevelConfiguration
+- **body**: <a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  PriorityLevelConfiguration 的名称
+
+- **body**: <a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): Created
+
+401: Unauthorized
+
+<!--
+### `update` replace status of the specified PriorityLevelConfiguration
+#### HTTP Request
+-->
+### `update` 替换指定的 PriorityLevelConfiguration 的状态
+
+#### HTTP 请求
+
+PUT /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PriorityLevelConfiguration
+- **body**: <a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  PriorityLevelConfiguration 的名称
+
+- **body**: <a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified PriorityLevelConfiguration
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 PriorityLevelConfiguration
+
+#### HTTP 请求
+
+PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PriorityLevelConfiguration
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  PriorityLevelConfiguration 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update status of the specified PriorityLevelConfiguration
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 PriorityLevelConfiguration 的状态
+
+#### HTTP 请求
+
+PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PriorityLevelConfiguration
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  PriorityLevelConfiguration 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/priority-level-configuration-v1beta2#PriorityLevelConfiguration" >}}">PriorityLevelConfiguration</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a PriorityLevelConfiguration
+#### HTTP Request
+-->
+### `delete` 删除 PriorityLevelConfiguration
+
+#### HTTP 请求
+
+DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PriorityLevelConfiguration
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  PriorityLevelConfiguration 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of PriorityLevelConfiguration
+#### HTTP Request
+-->
+### `deletecollection` 删除 PriorityLevelConfiguration 的集合
+
+#### HTTP 请求
+
+DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations
+
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **continue** (*in query*): string
+- **dryRun** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/runtime-class-v1.md b/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/runtime-class-v1.md
new file mode 100644
index 0000000000..9054b8a692
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/cluster-resources/runtime-class-v1.md
@@ -0,0 +1,593 @@
+---
+api_metadata:
+  apiVersion: "node.k8s.io/v1"
+  import: "k8s.io/api/node/v1"
+  kind: "RuntimeClass"
+content_type: "api_reference"
+description: "RuntimeClass 定义集群中支持的容器运行时类。"
+title: "RuntimeClass"
+weight: 6
+---
+<!--
+api_metadata:
+  apiVersion: "node.k8s.io/v1"
+  import: "k8s.io/api/node/v1"
+  kind: "RuntimeClass"
+content_type: "api_reference"
+description: "RuntimeClass defines a class of container runtime supported in the cluster."
+title: "RuntimeClass"
+weight: 6
+auto_generated: true
+-->
+`apiVersion: node.k8s.io/v1`
+
+`import "k8s.io/api/node/v1"`
+
+## RuntimeClass {#RuntimeClass}
+<!--
+RuntimeClass defines a class of container runtime supported in the cluster. The RuntimeClass is used to determine which container runtime is used to run all containers in a pod. RuntimeClasses are manually defined by a user or cluster provisioner, and referenced in the PodSpec. The Kubelet is responsible for resolving the RuntimeClassName reference before running the pod.  For more details, see https://kubernetes.io/docs/concepts/containers/runtime-class/
+-->
+RuntimeClass 定义集群中支持的容器运行时类。
+RuntimeClass 用于确定哪个容器运行时用于运行某 Pod 中的所有容器。
+RuntimeClass 由用户或集群制备程序手动定义，并在 PodSpec 中引用。
+Kubelet 负责在运行 Pod 之前解析 RuntimeClassName 引用。
+有关更多详细信息，请参阅
+https://kubernetes.io/zh-cn/docs/concepts/containers/runtime-class/
+
+<hr>
+
+- **apiVersion**: node.k8s.io/v1
+
+- **kind**: RuntimeClass
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **handler** (string), required
+  Handler specifies the underlying runtime and configuration that the CRI implementation will use to handle pods of this class. The possible values are specific to the node & CRI configuration.  It is assumed that all handlers are available on every node, and handlers of the same name are equivalent on every node. For example, a handler called "runc" might specify that the runc OCI runtime (using native Linux containers) will be used to run the containers in a pod. The Handler must be lowercase, conform to the DNS Label (RFC 1123) requirements, and is immutable.
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **handler** (string)，必需
+
+  handler 指定底层运行时和配置，在 CRI 实现过程中将使用这些运行时和配置来处理这个类的 Pod。
+  可能的值特定于节点和 CRI 配置。
+  假定所有 handler 可用于每个节点上，且同一名称的 handler 在所有节点上是等效的。
+  例如，一个名为 “runc” 的 handler 可能指定 runc OCI 运行时将（使用原生 Linux 容器）
+  用于运行 Pod 中的容器。该 handler 必须采用小写，遵从 DNS Label (RFC 1123) 要求，且是不可变更的。
+
+<!--
+- **overhead** (Overhead)
+  Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. For more details, see
+   https://kubernetes.io/docs/concepts/scheduling-eviction/pod-overhead/
+
+  <a name="Overhead"></a>
+  *Overhead structure represents the resource overhead associated with running a pod.*
+-->
+- **overhead** (Overhead)
+
+  overhead 表示运行给定 RuntimeClass 的 Pod 时所关联的资源开销。有关更多详细信息，请参阅
+  https://kubernetes.io/zh-cn/docs/concepts/scheduling-eviction/pod-overhead/
+
+  <a name="Overhead"></a>
+  **Overhead 结构表示运行一个 Pod 所关联的资源开销。**
+  
+  <!--
+  - **overhead.podFixed** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+    
+    PodFixed represents the fixed resource overhead associated with running a pod.
+  -->
+  
+  - **overhead.podFixed** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+    podFixed 表示与运行一个 Pod 所关联的资源开销。
+
+<!--
+- **scheduling** (Scheduling)
+  Scheduling holds the scheduling constraints to ensure that pods running with this RuntimeClass are scheduled to nodes that support it. If scheduling is nil, this RuntimeClass is assumed to be supported by all nodes.
+
+  <a name="Scheduling"></a>
+  *Scheduling specifies the scheduling constraints for nodes supporting a RuntimeClass.*
+-->
+- **scheduling** (Scheduling)
+
+  scheduling 包含调度约束，这些约束用来确保以这个 RuntimeClass 运行的 Pod 被调度到支持此运行时类的节点。
+  如果 scheduling 设为空，则假定所有节点支持此 RuntimeClass。
+
+  <a name="Scheduling"></a>
+  **Scheduling 指定支持 RuntimeClass 的节点的调度约束。**
+
+  <!--
+  - **scheduling.nodeSelector** (map[string]string)
+    nodeSelector lists labels that must be present on nodes that support this RuntimeClass. Pods using this RuntimeClass can only be scheduled to a node matched by this selector. The RuntimeClass nodeSelector is merged with a pod's existing nodeSelector. Any conflicts will cause the pod to be rejected in admission.
+  -->
+  
+  - **scheduling.nodeSelector** (map[string]string)
+
+    nodeSelector 列出支持此 RuntimeClass 的节点上必须存在的标签。
+    使用此 RuntimeClass 的 Pod 只能调度到与这个选择算符匹配的节点上。
+    RuntimeClass nodeSelector 与 Pod 现有的 nodeSelector 合并。
+    任何冲突均会使得该 Pod 在准入时被拒绝。
+  
+  <!--
+  - **scheduling.tolerations** ([]Toleration)
+    *Atomic: will be replaced during a merge*
+    
+    tolerations are appended (excluding duplicates) to pods running with this RuntimeClass during admission, effectively unioning the set of nodes tolerated by the pod and the RuntimeClass.
+
+    <a name="Toleration"></a>
+    *The pod this Toleration is attached to tolerates any taint that matches the triple <key,value,effect> using the matching operator <operator>.*
+  -->
+  
+  - **scheduling.tolerations** ([]Toleration)
+
+    **原子性：将在合并期间被替换**
+    
+    tolerations 在准入期间追加到以此 RuntimeClass 运行的 Pod（不包括重复项）上，
+    本质上是求取 Pod 和 RuntimeClass 所容忍的节点并集。
+
+    <a name="Toleration"></a>
+    **附加此容忍度的 Pod 将容忍用匹配运算符 `operator` 运算后与三元组
+    `<key,value,effect>` 匹配的任何污点。**
+
+    <!--
+    - **scheduling.tolerations.key** (string)
+      Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.
+
+    - **scheduling.tolerations.operator** (string)
+      Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.
+    -->
+    
+    - **scheduling.tolerations.key** (string)
+
+      key 是容忍度所应用到的污点键。空意味着匹配所有污点键。
+      如果键为空，则运算符必须为 Exists；这个组合意味着匹配所有值和所有键。
+
+    - **scheduling.tolerations.operator** (string)
+
+      operator 表示一个键与值的关系。有效的运算符为 Exists 和 Equal。默认为 Equal。
+      Exists 等价于将值设置为通配符的情况，因此一个 Pod 可以容忍特定类别的所有污点。
+    
+    <!--
+    - **scheduling.tolerations.value** (string)
+      Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.
+
+    - **scheduling.tolerations.effect** (string)
+      Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.
+    
+    - **scheduling.tolerations.tolerationSeconds** (int64)
+      TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.
+    -->
+    
+    - **scheduling.tolerations.value** (string)
+
+      value 是容忍度匹配到的污点值。如果运算符为 Exists，则值应为空，否则就是一个普通字符串。
+
+    - **scheduling.tolerations.effect** (string)
+
+      effect 表示匹配度污点效果。空意味着匹配所有污点效果。
+      当指定值时，允许的值为 NoSchedule、PreferNoSchedule 或 NoExecute。
+      
+    - **scheduling.tolerations.tolerationSeconds** (int64)
+
+      tolerationSeconds 表示容忍度容忍污点的时间段（必须是 NoExecute 的效果，否则忽略此字段）。
+      默认情况下，不设置此字段，这意味着永远容忍污点（不驱逐）。零和负值将被系统视为 0（立即驱逐）。
+
+## RuntimeClassList {#RuntimeClassList}
+<!--
+RuntimeClassList is a list of RuntimeClass objects.
+-->
+RuntimeClassList 是 RuntimeClass 对象的列表。
+
+<hr>
+
+- **apiVersion**: node.k8s.io/v1
+
+- **kind**: RuntimeClassList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../cluster-resources/runtime-class-v1#RuntimeClass" >}}">RuntimeClass</a>), required
+  Items is a list of schema objects.
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../cluster-resources/runtime-class-v1#RuntimeClass" >}}">RuntimeClass</a>)，必需
+
+  items 是 schema 对象的列表。
+
+<!--
+## Operations {#Operations}
+### `get` read the specified RuntimeClass
+#### HTTP Request
+-->
+## 操作 {#Operations}
+<hr>
+
+### `get` 读取指定的 RuntimeClass
+#### HTTP 请求
+GET /apis/node.k8s.io/v1/runtimeclasses/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the RuntimeClass
+- **pretty** (*in query*): string
+-->
+##### 参数
+- **name** (**路径参数**): string，必需
+
+  RuntimeClass 的名称
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../cluster-resources/runtime-class-v1#RuntimeClass" >}}">RuntimeClass</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind RuntimeClass
+#### HTTP Request
+-->
+### `list` 列出或监视 RuntimeClass 类别的对象
+#### HTTP 请求
+GET /apis/node.k8s.io/v1/runtimeclasses
+
+<!--
+#### Parameters
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+##### 参数
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../cluster-resources/runtime-class-v1#RuntimeClassList" >}}">RuntimeClassList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a RuntimeClass
+#### HTTP Request
+-->
+### `create` 创建 RuntimeClass
+#### HTTP 请求
+POST /apis/node.k8s.io/v1/runtimeclasses
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../cluster-resources/runtime-class-v1#RuntimeClass" >}}">RuntimeClass</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+##### 参数
+- **body**: <a href="{{< ref "../cluster-resources/runtime-class-v1#RuntimeClass" >}}">RuntimeClass</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../cluster-resources/runtime-class-v1#RuntimeClass" >}}">RuntimeClass</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/runtime-class-v1#RuntimeClass" >}}">RuntimeClass</a>): Created
+
+202 (<a href="{{< ref "../cluster-resources/runtime-class-v1#RuntimeClass" >}}">RuntimeClass</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified RuntimeClass
+#### HTTP Request
+-->
+### `update` 替换指定的 RuntimeClass
+#### HTTP 请求
+PUT /apis/node.k8s.io/v1/runtimeclasses/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the RuntimeClass
+- **body**: <a href="{{< ref "../cluster-resources/runtime-class-v1#RuntimeClass" >}}">RuntimeClass</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+##### 参数
+- **name** (**路径参数**): string，必需
+
+  RuntimeClass 的名称
+
+- **body**: <a href="{{< ref "../cluster-resources/runtime-class-v1#RuntimeClass" >}}">RuntimeClass</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../cluster-resources/runtime-class-v1#RuntimeClass" >}}">RuntimeClass</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/runtime-class-v1#RuntimeClass" >}}">RuntimeClass</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified RuntimeClass
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 RuntimeClass
+#### HTTP 请求
+PATCH /apis/node.k8s.io/v1/runtimeclasses/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the RuntimeClass
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+##### 参数
+- **name** (**路径参数**): string，必需
+
+  RuntimeClass 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../cluster-resources/runtime-class-v1#RuntimeClass" >}}">RuntimeClass</a>): OK
+
+201 (<a href="{{< ref "../cluster-resources/runtime-class-v1#RuntimeClass" >}}">RuntimeClass</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a RuntimeClass
+#### HTTP Request
+-->
+### `delete` 删除 RuntimeClass
+#### HTTP 请求
+DELETE /apis/node.k8s.io/v1/runtimeclasses/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the RuntimeClass
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+-->
+##### 参数
+- **name** (**路径参数**): string，必需
+
+  RuntimeClass 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of RuntimeClass
+#### HTTP Request
+-->
+### `deletecollection` 删除 RuntimeClass 的集合
+#### HTTP 请求
+DELETE /apis/node.k8s.io/v1/runtimeclasses
+
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **continue** (*in query*): string
+- **dryRun** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+-->
+##### 参数
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/common-definitions/_index.md b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/_index.md
new file mode 100644
index 0000000000..372df75c58
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/_index.md
@@ -0,0 +1,5 @@
+---
+title: "公共定义"
+weight: 9
+---
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/common-definitions/delete-options.md b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/delete-options.md
new file mode 100644
index 0000000000..b1790035e3
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/delete-options.md
@@ -0,0 +1,139 @@
+---
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/apimachinery/pkg/apis/meta/v1"
+  kind: "DeleteOptions"
+content_type: "api_reference"
+description: "删除 API 对象时可以提供 DeleteOptions。"
+title: "DeleteOptions"
+weight: 1
+auto_generated: true
+---
+
+<!--
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/apimachinery/pkg/apis/meta/v1"
+  kind: "DeleteOptions"
+content_type: "api_reference"
+description: "DeleteOptions may be provided when deleting an API object."
+title: "DeleteOptions"
+weight: 1
+auto_generated: true
+-->
+
+`import "k8s.io/apimachinery/pkg/apis/meta/v1"`
+
+<!--DeleteOptions may be provided when deleting an API object.-->
+删除 API 对象时可以提供 DeleteOptions。
+
+<hr>
+
+<!--
+- **apiVersion** (string)
+
+  APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
+-->
+
+- **apiVersion** (string)
+
+  `APIVersion` 定义对象表示的版本化模式。
+  服务器应将已识别的模式转换为最新的内部值，并可能拒绝无法识别的值。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
+
+<!--
+- **dryRun** ([]string)
+
+  When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed
+-->
+
+- **dryRun** ([]string)
+
+  该值如果存在，则表示不应保留修改。
+  无效或无法识别的 `dryRun` 指令将导致错误响应并且不会进一步处理请求。有效值为：
+
+   - `All`：处理所有试运行阶段（Dry Run Stages）
+
+<!--
+- **gracePeriodSeconds** (int64)
+
+  The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.
+-->
+
+- **gracePeriodSeconds** (int64)
+
+  表示对象被删除之前的持续时间（以秒为单位）。
+  值必须是非负整数。零值表示立即删除。如果此值为 `nil`，则将使用指定类型的默认宽限期。如果未指定，则为每个对象的默认值。
+
+<!--
+- **kind** (string)
+
+  Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+-->
+
+- **kind** (string)
+
+  `kind` 是一个字符串值，表示此对象代表的 REST 资源。
+  服务器可以从客户端提交请求的端点推断出此值。此值无法更新，是驼峰的格式。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds 。
+
+<!--
+- **orphanDependents** (boolean)
+
+  Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.
+-->
+
+- **orphanDependents** (boolean)
+
+  已弃用：该字段将在 1.7 中弃用，请使用 `propagationPolicy` 字段。
+  该字段表示依赖对象是否应该是孤儿。如果为 true/false，对象的 finalizers 列表中会被添加上或者移除掉 “orphan” 终结器（Finalizer）。
+  可以设置此字段或者设置 `propagationPolicy` 字段，但不能同时设置以上两个字段。
+
+<!--
+- **preconditions** (Preconditions)
+
+  Must be fulfilled before a deletion is carried out. If not possible, a 409 Conflict status will be returned.
+
+  <a name="Preconditions"></a>
+  *Preconditions must be fulfilled before an operation (update, delete, etc.) is carried out.*
+
+  - **preconditions.resourceVersion** (string)
+
+    Specifies the target ResourceVersion
+
+  - **preconditions.uid** (string)
+
+    Specifies the target UID.
+-->
+
+- **preconditions** (Preconditions)
+
+  先决条件必须在执行删除之前完成。如果无法满足这些条件，将返回 409（冲突）状态。
+
+  <a name="Preconditions"></a>
+  *执行操作（更新、删除等）之前必须满足先决条件。*
+
+  - **preconditions.resourceVersion** (string)
+
+    指定目标资源版本（resourceVersion）。
+
+  - **preconditions.uid** (string)
+
+    指定目标 UID。
+
+<!--
+- **propagationPolicy** (string)
+
+  Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.
+-->
+
+- **propagationPolicy** (string)
+
+  表示是否以及如何执行垃圾收集。可以设置此字段或 `orphanDependents` 字段，但不能同时设置二者。
+  默认策略由 `metadata.finalizers` 中现有终结器（Finalizer）集合和特定资源的默认策略决定。
+  可接受的值为：`Orphan` - 令依赖对象成为孤儿对象；`Background` - 允许垃圾收集器在后台删除依赖项；`Foreground` - 一个级联策略，前台删除所有依赖项。
+
+
+
+
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/common-definitions/label-selector.md b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/label-selector.md
new file mode 100644
index 0000000000..0097baf971
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/label-selector.md
@@ -0,0 +1,106 @@
+---
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/apimachinery/pkg/apis/meta/v1"
+  kind: "LabelSelector"
+content_type: "api_reference"
+description: "标签选择器是对一组资源的标签查询。"
+title: "LabelSelector"
+weight: 2
+auto_generated: true
+---
+
+<!--
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/apimachinery/pkg/apis/meta/v1"
+  kind: "LabelSelector"
+content_type: "api_reference"
+description: "A label selector is a label query over a set of resources."
+title: "LabelSelector"
+weight: 2
+-->
+
+`import "k8s.io/apimachinery/pkg/apis/meta/v1"`
+
+<!-- 
+A label selector is a label query over a set of resources. The result of matchLabels and matchExpressions are ANDed. An empty label selector matches all objects. A null label selector matches no objects.
+-->
+
+标签选择器是对一组资源的标签查询。
+
+`matchLabels` 和 `matchExpressions` 的结果按逻辑与的关系组合。
+一个 `empty` 标签选择器匹配所有对象。一个 `null` 标签选择器不匹配任何对象。
+
+<hr>
+
+  <!--
+   - **matchExpressions** ([]LabelSelectorRequirement)
+   
+   matchExpressions is a list of label selector requirements. The requirements are ANDed. 
+   
+   <a name="LabelSelectorRequirement"></a> 
+  *A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.*
+  -->
+
+- **matchExpressions** ([]LabelSelectorRequirement)
+  
+   `matchExpressions` 是标签选择器要求的列表，这些要求的结果按逻辑与的关系来计算。
+   
+   <a name="LabelSelectorRequirement"></a> 
+   *标签选择器要求是包含值、键和关联键和值的运算符的选择器。*
+ 
+    <!-- 
+       - **matchExpressions.key** (string), required
+       *Patch strategy: merge on key `key`* 
+       key is the label key that the selector applies to.
+    -->
+
+  - **matchExpressions.key** (string)， 必填
+
+    *补丁策略：按照键 `key` 合并*    
+    
+    `key` 是选择器应用的标签键。
+  
+   <!-- 
+       - **matchExpressions.operator** (string), required
+       operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.        
+   -->
+   
+  - **matchExpressions.operator** (string)，必填
+ 
+    `operator` 表示键与一组值的关系。有效的运算符包括 `In`、`NotIn`、`Exists` 和 `DoesNotExist`。
+    
+  <!--
+  - **matchExpressions.values** ([]string)
+
+    values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.
+  -->
+   
+  - **matchExpressions.values** ([]string)
+  
+    `values` 是一个字符串值数组。如果运算符为 `In` 或 `NotIn`，则 `values` 数组必须为非空。
+    
+    如果运算符是 `Exists` 或 `DoesNotExist`，则 `values` 数组必须为空。
+    
+    该数组在策略性合并补丁（Strategic Merge Patch）期间被替换。
+  
+<!--
+- **matchLabels** (map[string]string)
+
+  matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is "key", the operator is "In", and the values array contains only "value". The requirements are ANDed.
+-->
+  
+ - **matchLabels** (map[string]string)
+  
+    `matchLabels` 是 {`key`,`value`} 键值对的映射。
+    
+    `matchLabels` 映射中的单个 {`key`,`value`} 键值对相当于 `matchExpressions` 的一个元素，其键字段为 `key`，运算符为 `In`，`values` 数组仅包含 `value`。
+    
+    所表达的需求最终要按逻辑与的关系组合。
+   
+
+
+
+
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/common-definitions/list-meta.md b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/list-meta.md
new file mode 100644
index 0000000000..a196b4f8ac
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/list-meta.md
@@ -0,0 +1,89 @@
+---
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/apimachinery/pkg/apis/meta/v1"
+  kind: "ListMeta"
+content_type: "api_reference"
+description: "ListMeta 描述了合成资源必须具有的元数据，包括列表和各种状态对象。"
+title: "ListMeta"
+weight: 3
+auto_generated: true
+---
+
+<!--
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/apimachinery/pkg/apis/meta/v1"
+  kind: "ListMeta"
+content_type: "api_reference"
+description: "ListMeta describes metadata that synthetic resources must have, including lists and various status objects."
+title: "ListMeta"
+weight: 3
+auto_generated: true
+-->
+
+
+`import "k8s.io/apimachinery/pkg/apis/meta/v1"`
+
+<!--
+ListMeta describes metadata that synthetic resources must have, including lists and various status objects. A resource may have only one of {ObjectMeta, ListMeta}.
+-->
+`ListMeta` 描述了合成资源必须具有的元数据，包括列表和各种状态对象。
+一个资源仅能有 `{ObjectMeta, ListMeta}` 中的一个。
+
+<hr>
+
+<!--
+- **continue** (string)
+
+  continue may be set if the user set a limit on the number of items returned, and indicates that the server has more data available. The value is opaque and may be used to issue another request to the endpoint that served this list to retrieve the next set of available objects. Continuing a consistent list may not be possible if the server configuration has changed or more than a few minutes have passed. The resourceVersion field returned when using this continue value will be identical to the value in the first response, unless you have received this token from an error message.
+-->
+
+- **continue** (string)
+
+  如果用户对返回的条目数量设置了限制，则 `continue` 可能被设置，表示服务器有更多可用的数据。
+  该值是不透明的，可用于向提供此列表服务的端点发出另一个请求，以检索下一组可用的对象。
+  如果服务器配置已更改或时间已过去几分钟，则可能无法继续提供一致的列表。
+  除非你在错误消息中收到此令牌（token），否则使用此 `continue` 值时返回的 `resourceVersion` 
+  字段应该和第一个响应中的值是相同的。
+
+<!--
+- **remainingItemCount** (int64)
+
+  remainingItemCount is the number of subsequent items in the list which are not included in this list response. If the list request contained label or field selectors, then the number of remaining items is unknown and the field will be left unset and omitted during serialization. If the list is complete (either because it is not chunking or because this is the last chunk), then there are no more remaining items and this field will be left unset and omitted during serialization. Servers older than v1.15 do not set this field. The intended use of the remainingItemCount is *estimating* the size of a collection. Clients should not rely on the remainingItemCount to be set or to be exact.
+-->
+
+- **remainingItemCount** (int64)
+
+  `remainingItemCount` 是列表中未包含在此列表响应中的后续项目的数量。
+  如果列表请求包含标签或字段选择器，则剩余项目的数量是未知的，并且在序列化期间该字段将保持未设置和省略。
+  如果列表是完整的（因为它没有分块或者这是最后一个块），那么就没有剩余的项目，并且在序列化过程中该字段将保持未设置和省略。
+  早于 v1.15 的服务器不设置此字段。`remainingItemCount` 的预期用途是*估计*集合的大小。
+  客户端不应依赖于设置准确的 `remainingItemCount`。
+
+<!--
+- **resourceVersion** (string)
+
+  String that identifies the server's internal version of this object that can be used by clients to determine when objects have changed. Value must be treated as opaque by clients and passed unmodified back to the server. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency
+-->
+
+- **resourceVersion** (string)
+
+  标识该对象的服务器内部版本的字符串，客户端可以用该字段来确定对象何时被更改。
+  该值对客户端是不透明的，并且应该原样传回给服务器。该值由系统填充，只读。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency 。
+
+<!--
+  Deprecated: selfLink is a legacy read-only field that is no longer populated by the system.
+-->
+
+- **selfLink** (string)
+  
+  selfLink 表示此对象的 URL，由系统填充，只读。
+  
+  已弃用：selfLink 是一个遗留的只读字段，不再由系统填充。
+
+
+
+
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/common-definitions/local-object-reference.md b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/local-object-reference.md
new file mode 100644
index 0000000000..80b46ad9a8
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/local-object-reference.md
@@ -0,0 +1,46 @@
+---
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/api/core/v1"
+  kind: "LocalObjectReference"
+content_type: "api_reference"
+description: "LocalObjectReference 包含足够的信息，可以让你在同一命名空间内找到引用的对象。"
+title: "LocalObjectReference"
+weight: 4
+auto_generated: true
+---
+
+<!--
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/api/core/v1"
+  kind: "LocalObjectReference"
+content_type: "api_reference"
+description: "LocalObjectReference contains enough information to let you locate the referenced object inside the same namespace."
+title: "LocalObjectReference"
+weight: 4
+auto_generated: true
+-->
+
+`import "k8s.io/api/core/v1"`
+
+<!--
+LocalObjectReference contains enough information to let you locate the referenced object inside the same namespace.
+-->
+LocalObjectReference 包含足够的信息，可以让你在同一命名空间（namespace）内找到引用的对象。
+
+<hr>
+
+<!--
+- **name** (string)
+
+  Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+-->
+- **name** (string)
+
+  被引用者的名称。
+  更多信息: https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/names/#names。
+
+
+
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/common-definitions/node-selector-requirement.md b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/node-selector-requirement.md
new file mode 100644
index 0000000000..964f6fc0e3
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/node-selector-requirement.md
@@ -0,0 +1,61 @@
+---
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/api/core/v1"
+  kind: "NodeSelectorRequirement"
+content_type: "api_reference"
+description: 节点选择算符需求是一个选择算符，其中包含值集、主键以及一个将键和值集关联起来的操作符。
+title: "NodeSelectorRequirement"
+weight: 5
+---
+
+<!---
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/api/core/v1"
+  kind: "NodeSelectorRequirement"
+content_type: "api_reference"
+description: "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values."
+title: "NodeSelectorRequirement"
+weight: 5
+auto_generated: true
+-->
+
+`import "k8s.io/api/core/v1"`
+
+<!--
+A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.
+-->
+节点选择算符需求是一个选择算符，其中包含值集、主键以及一个将键和值集关联起来的操作符。
+
+<hr>
+
+<!--
+- **key** (string), required
+
+  The label key that the selector applies to.
+
+- **operator** (string), required
+
+  Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+-->
+- **key** (string)，必需
+
+  选择算符所适用的标签主键。
+
+- **operator** (string)，必需
+
+  代表主键与值集之间的关系。合法的 operator 值包括 `In`、`NotIn`、`Exists`、`DoesNotExist`、`Gt` 和 `Lt`。
+ 
+<!--
+- **values** ([]string)
+
+  An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.
+-->
+- **values** ([]string)
+
+  一个由字符串值组成的数组。如果 operator 是 `In` 或 `NotIn`，则 values 数组不能为空。
+  如果 operator 为 `Exists` 或 `DoesNotExist`，则 values 数组只能为空。
+  如果 operator 为 `Gt` 或 `Lt`，则 values 数组只能包含一个元素，并且该元素会被解释为整数。
+  在执行策略性合并补丁操作时，此数组会被整体替换。
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/common-definitions/object-field-selector.md b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/object-field-selector.md
new file mode 100644
index 0000000000..536c9b7f86
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/object-field-selector.md
@@ -0,0 +1,54 @@
+---
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/api/core/v1"
+  kind: "ObjectFieldSelector"
+content_type: "api_reference"
+description: "ObjectFieldSelector 选择对象的 APIVersioned 字段。"
+title: "ObjectFieldSelector"
+weight: 6
+auto_generated: true
+---
+
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference content, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+
+`import "k8s.io/api/core/v1"`
+
+<!--
+ObjectFieldSelector selects an APIVersioned field of an object.
+-->
+ObjectFieldSelector 选择对象的 APIVersioned 字段。
+<!--
+<hr>
+
+- **fieldPath** (string), required
+
+  Path of the field to select in the specified API version.
+
+- **apiVersion** (string)
+
+  Version of the schema the FieldPath is written in terms of, defaults to "v1".
+-->
+<hr>
+
+
+- **fieldPath** (string), 必需的
+
+  在指定 API 版本中要选择的字段的路径。
+
+- **apiVersion** (string)
+
+  `fieldPath` 写入时所使用的模式版本，默认为 "v1"。
+
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/common-definitions/object-meta.md b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/object-meta.md
new file mode 100644
index 0000000000..1d7cf6c7f4
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/object-meta.md
@@ -0,0 +1,401 @@
+---
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/apimachinery/pkg/apis/meta/v1"
+  kind: "ObjectMeta"
+content_type: "api_reference"
+description: "ObjectMeta 是所有持久化资源必须具有的元数据，其中包括用户必须创建的所有对象。"
+title: "ObjectMeta"
+weight: 7
+auto_generated: true
+---
+
+<!-- 
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/apimachinery/pkg/apis/meta/v1"
+  kind: "ObjectMeta"
+content_type: "api_reference"
+description: "ObjectMeta is metadata that all persisted resources must have, which includes all objects users must create."
+title: "ObjectMeta"
+weight: 7
+auto_generated: true
+-->
+
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference content, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+
+`import "k8s.io/apimachinery/pkg/apis/meta/v1"`
+
+
+<!-- 
+ObjectMeta is metadata that all persisted resources must have, which includes all objects users must create.
+-->
+ObjectMeta 是所有持久化资源必须具有的元数据，其中包括用户必须创建的所有对象。
+
+<hr>
+
+- **name** (string)
+
+  <!-- 
+  Name must be unique within a namespace. Is required when creating resources, although some resources may allow a client to request the generation of an appropriate name automatically. Name is primarily intended for creation idempotence and configuration definition. Cannot be updated. More info: http://kubernetes.io/docs/user-guide/identifiers#names
+  -->
+  name 在命名空间内必须是唯一的。创建资源时需要，尽管某些资源可能允许客户端请求自动地生成适当的名称。
+  名称主要用于创建幂等性和配置定义。无法更新。
+  更多信息： http://kubernetes.io/docs/user-guide/identifiers#names
+
+
+- **generateName** (string)
+
+  <!-- 
+  GenerateName is an optional prefix, used by the server, to generate a unique name ONLY IF the Name field has not been provided. If this field is used, the name returned to the client will be different than the name passed. This value will also be combined with a unique suffix. The provided value has the same validation rules as the Name field, and may be truncated by the length of the suffix required to make the value unique on the server.
+  -->
+  generateName 是一个可选前缀，由服务器使用，**仅在**未提供 name 字段时生成唯一名称。
+  如果使用此字段，则返回给客户端的名称将与传递的名称不同。该值还将与唯一的后缀组合。
+  提供的值与 name 字段具有相同的验证规则，并且可能会根据所需的后缀长度被截断，以使该值在服务器上唯一。
+  
+  <!-- 
+  If this field is specified and the generated name exists, the server will NOT return a 409 - instead, it will either return 201 Created or 500 with Reason ServerTimeout indicating a unique name could not be found in the time allotted, and the client should retry (optionally after the time indicated in the Retry-After header).
+  
+  Applied only if Name is not specified. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#idempotency
+  -->
+  如果指定了此字段并且生成的名称存在，则服务器将不会返回 409 ——相反，它将返回 201 Created 或 500，
+  原因是 ServerTimeout 指示在分配的时间内找不到唯一名称，客户端应重试（可选，在 Retry-After 标头中指定的时间之后）。
+  
+  仅在未指定 name 时应用。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#idempotency
+
+- **namespace** (string)
+
+  <!-- 
+  Namespace defines the space within which each name must be unique. An empty namespace is equivalent to the "default" namespace, but "default" is the canonical representation. Not all objects are required to be scoped to a namespace - the value of this field for those objects will be empty.
+  
+  Must be a DNS_LABEL. Cannot be updated. More info: http://kubernetes.io/docs/user-guide/namespaces
+  -->
+  namespace 定义了一个值空间，其中每个名称必须唯一。空命名空间相当于 “default” 命名空间，但 “default” 是规范表示。
+  并非所有对象都需要限定在命名空间中——这些对象的此字段的值将为空。
+  
+  必须是 DNS_LABEL。无法更新。更多信息： http://kubernetes.io/docs/user-guide/namespaces
+
+- **labels** (map[string]string)
+
+  <!-- 
+  Map of string keys and values that can be used to organize and categorize (scope and select) objects. May match selectors of replication controllers and services. More info: http://kubernetes.io/docs/user-guide/labels
+  -->
+  可用于组织和分类（确定范围和选择）对象的字符串键和值的映射。
+  可以匹配 ReplicationControllers 和 Service 的选择器。更多信息： http://kubernetes.io/docs/user-guide/labels
+
+- **annotations** (map[string]string)
+
+  <!-- 
+  Annotations is an unstructured key value map stored with a resource that may be set by external tools to store and retrieve arbitrary metadata. They are not queryable and should be preserved when modifying objects. More info: http://kubernetes.io/docs/user-guide/annotations
+  -->
+  annotations 是一个非结构化的键值映射，存储在资源中，可以由外部工具设置以存储和检索任意元数据。
+  它们不可查询，在修改对象时应保留。更多信息： http://kubernetes.io/docs/user-guide/annotations
+
+
+<!-- ### System {#System} -->
+### 系统字段 {#System}
+
+
+- **finalizers** ([]string)
+
+  <!-- 
+  Must be empty before the object is deleted from the registry. Each entry is an identifier for the responsible component that will remove the entry from the list. If the deletionTimestamp of the object is non-nil, entries in this list can only be removed. Finalizers may be processed and removed in any order.  Order is NOT enforced because it introduces significant risk of stuck finalizers. finalizers is a shared field, any actor with permission can reorder it. If the finalizer list is processed in order, then this can lead to a situation in which the component responsible for the first finalizer in the list is waiting for a signal (field value, external system, or other) produced by a component responsible for a finalizer later in the list, resulting in a deadlock. Without enforced ordering finalizers are free to order amongst themselves and are not vulnerable to ordering changes in the list.
+  -->
+  在从注册表中删除对象之前该字段必须为空。
+  每个条目都是负责的组件的标识符，各组件将从列表中删除自己对应的条目。
+  如果对象的 deletionTimestamp 非空，则只能删除此列表中的条目。
+  终结器可以按任何顺序处理和删除。**没有**按照顺序执行，
+  因为它引入了终结器卡住的重大风险。finalizers 是一个共享字段，
+  任何有权限的参与者都可以对其进行重新排序。如果按顺序处理终结器列表，
+  那么这可能导致列表中第一个负责终结器的组件正在等待列表中靠后负责终结器的组件产生的信号（字段值、外部系统或其他），
+  从而导致死锁。在没有强制排序的情况下，终结者可以在它们之间自由排序，
+  并且不容易受到列表中排序更改的影响。
+
+- **managedFields** ([]ManagedFieldsEntry)
+
+  <!-- 
+  ManagedFields maps workflow-id and version to the set of fields that are managed by that workflow. This is mostly for internal housekeeping, and users typically shouldn't need to set or understand this field. A workflow can be the user's name, a controller's name, or the name of a specific apply path like "ci-cd". The set of fields is always in the version that the workflow used when modifying the object.
+  -->
+  managedFields 将 workflow-id 和版本映射到由该工作流管理的字段集。
+  这主要用于内部管理，用户通常不需要设置或理解该字段。
+  工作流可以是用户名、控制器名或特定应用路径的名称，如 “ci-cd”。
+  字段集始终存在于修改对象时工作流使用的版本。
+
+  <a name="ManagedFieldsEntry"></a>
+  <!-- 
+  *ManagedFieldsEntry is a workflow-id, a FieldSet and the group version of the resource that the fieldset applies to.*
+  -->
+  ManagedFieldsEntry 是一个 workflow-id，一个 FieldSet，也是该字段集适用的资源的组版本。
+
+  - **managedFields.apiVersion** (string)
+
+    <!-- 
+    APIVersion defines the version of this resource that this field set applies to. The format is "group/version" just like the top-level APIVersion field. It is necessary to track the version of a field set because it cannot be automatically converted.
+    -->
+    apiVersion 定义此字段集适用的资源的版本。
+    格式是 “group/version”，就像顶级 apiVersion 字段一样。
+    必须跟踪字段集的版本，因为它不能自动转换。
+
+  - **managedFields.fieldsType** (string)
+
+    <!-- 
+    FieldsType is the discriminator for the different fields format and version. There is currently only one possible value: "FieldsV1"
+    -->
+    FieldsType 是不同字段格式和版本的鉴别器。
+    目前只有一个可能的值：“FieldsV1”
+
+  - **managedFields.fieldsV1** (FieldsV1)
+
+    <!-- FieldsV1 holds the first JSON version format as described in the "FieldsV1" type. -->
+    FieldsV1 包含类型 “FieldsV1” 中描述的第一个 JSON 版本格式。
+
+    <a name="FieldsV1"></a>
+    <!--
+    *FieldsV1 stores a set of fields in a data structure like a Trie, in JSON format.
+    
+    Each key is either a '.' representing the field itself, and will always map to an empty set,
+    or a string representing a sub-field or item. The string will follow one of these four formats:
+    'f:<name>', where <name> is the name of a field in a struct, or key in a map
+    'v:<value>', where <value> is the exact json formatted value of a list item
+    'i:<index>', where <index> is position of a item in a list
+    'k:<keys>', where <keys> is a map of  a list item's key fields to their unique values
+    If a key maps to an empty Fields value, the field that key represents is part of the set.
+    
+    The exact format is defined in sigs.k8s.io/structured-merge-diff*
+    -->
+    FieldsV1 以 JSON 格式将一组字段存储在像 Trie 这样的数据结构中。
+    
+    每个键或是 `.` 表示字段本身，并且始终映射到一个空集，
+    或是一个表示子字段或元素的字符串。该字符串将遵循以下四种格式之一：
+    1. `f:<name>`，其中 `<name>` 是结构中字段的名称，或映射中的键
+    2. `v:<value>`，其中 `<value>` 是列表项的精确 json 格式值
+    3. `i:<index>`，其中 `<index>` 是列表中项目的位置
+    4. `k:<keys>`，其中 `<keys>` 是列表项的关键字段到其唯一值的映射
+    如果一个键映射到一个空的 Fields 值，则该键表示的字段是集合的一部分。
+    
+    确切的格式在 sigs.k8s.io/structured-merge-diff 中定义。
+
+  - **managedFields.manager** (string)
+
+    <!-- Manager is an identifier of the workflow managing these fields. -->
+    manager 是管理这些字段的工作流的标识符。
+
+  - **managedFields.operation** (string)
+
+    <!-- 
+    Operation is the type of operation which lead to this ManagedFieldsEntry being created. The only valid values for this field are 'Apply' and 'Update'.
+    -->
+    operation 是导致创建此 managedFields 表项的操作类型。
+    此字段的仅有合法值是 “Apply” 和 “Update”。
+
+  - **managedFields.subresource** (string)
+
+    <!-- 
+    Subresource is the name of the subresource used to update that object, or empty string if the object was updated through the main resource. The value of this field is used to distinguish between managers, even if they share the same name. For example, a status update will be distinct from a regular update using the same manager name. Note that the APIVersion field is not related to the Subresource field and it always corresponds to the version of the main resource.
+    -->
+    subresource 是用于更新该对象的子资源的名称，如果对象是通过主资源更新的，则为空字符串。
+    该字段的值用于区分管理者，即使他们共享相同的名称。例如，状态更新将不同于使用相同管理者名称的常规更新。
+    请注意，apiVersion 字段与 subresource 字段无关，它始终对应于主资源的版本。
+
+  - **managedFields.time** (Time)
+
+    <!-- 
+    Time is timestamp of when these fields were set. It should always be empty if Operation is 'Apply'
+    -->
+    time 是设置这些字段的时间戳。如果 operation 为 “Apply”，则它应始终为空
+
+    <a name="Time"></a>
+    <!-- 
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+    -->
+    time 是 time.Time 的包装类，支持正确地序列化为 YAML 和 JSON。
+    为 time 包提供的许多工厂方法提供了包装类。
+
+
+- **ownerReferences** ([]OwnerReference)
+
+  <!-- 
+  *Patch strategy: merge on key `uid`*
+  
+  List of objects depended by this object. If ALL objects in the list have been deleted, this object will be garbage collected. If this object is managed by a controller, then an entry in this list will point to this controller, with the controller field set to true. There cannot be more than one managing controller.
+  -->
+  补丁策略：在键 `uid` 上执行合并操作
+
+  此对象所依赖的对象列表。如果列表中的所有对象都已被删除，则该对象将被垃圾回收。
+  如果此对象由控制器管理，则此列表中的条目将指向此控制器，controller 字段设置为 true。
+  管理控制器不能超过一个。
+
+
+  <a name="OwnerReference"></a>
+  <!-- 
+  *OwnerReference contains enough information to let you identify an owning object. An owning object must be in the same namespace as the dependent, or be cluster-scoped, so there is no namespace field.*
+  -->
+  OwnerReference 包含足够可以让你识别拥有对象的信息。
+  拥有对象必须与依赖对象位于同一命名空间中，或者是集群作用域的，因此没有命名空间字段。
+
+  - **ownerReferences.apiVersion** (string)，<!-- required -->必选
+    <!-- API version of the referent. -->
+    被引用资源的 API 版本。
+
+  - **ownerReferences.kind** (string)，<!-- required -->必选
+
+    <!-- Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds -->
+    被引用资源的类别。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+  - **ownerReferences.name** (string)，<!-- required -->必选
+
+    <!-- Name of the referent. More info: http://kubernetes.io/docs/user-guide/identifiers#names -->
+    被引用资源的名称。更多信息： http://kubernetes.io/docs/user-guide/identifiers#names
+
+  - **ownerReferences.uid** (string)，<!-- required -->必选
+
+    <!-- UID of the referent. More info: http://kubernetes.io/docs/user-guide/identifiers#uids -->
+    被引用资源的 uid。更多信息： http://kubernetes.io/docs/user-guide/identifiers#uids
+
+  - **ownerReferences.blockOwnerDeletion** (boolean)
+
+    <!-- 
+    If true, AND if the owner has the "foregroundDeletion" finalizer, then the owner cannot be deleted from the key-value store until this reference is removed. Defaults to false. To set this field, a user needs "delete" permission of the owner, otherwise 422 (Unprocessable Entity) will be returned.
+    -->
+    如果为 true，**并且**如果所有者具有 “foregroundDeletion” 终结器，
+    则在删除此引用之前，无法从键值存储中删除所有者。
+    默认为 false。要设置此字段，用户需要所有者的 “delete” 权限，
+    否则将返回 422 (Unprocessable Entity)。
+
+  - **ownerReferences.controller** (boolean)
+
+    <!-- If true, this reference points to the managing controller. -->
+    如果为 true，则此引用指向管理的控制器。
+
+<!-- ### Read-only {#Read-only} -->
+### 只读字段 {#Read-only}
+
+
+- **creationTimestamp** (Time)
+
+  <!-- 
+  CreationTimestamp is a timestamp representing the server time when this object was created. It is not guaranteed to be set in happens-before order across separate operations. Clients may not set this value. It is represented in RFC3339 form and is in UTC.
+  
+  Populated by the system. Read-only. Null for lists. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+  creationTimestamp 是一个时间戳，表示创建此对象时的服务器时间。
+  不能保证在单独的操作中按发生前的顺序设置。
+  客户端不得设置此值。它以 RFC3339 形式表示，并采用 UTC。
+  
+  由系统填充。只读。列表为空。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+  <a name="Time"></a>
+  <!-- 
+  *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+  -->
+  time 是 time.Time 的包装类，支持正确地序列化为 YAML 和 JSON。
+  为 time 包提供的许多工厂方法提供了包装类。
+
+- **deletionGracePeriodSeconds** (int64)
+
+  <!-- 
+  Number of seconds allowed for this object to gracefully terminate before it will be removed from the system. Only set when deletionTimestamp is also set. May only be shortened. Read-only.
+  -->
+  此对象从系统中删除之前允许正常终止的秒数。
+  仅当设置了 deletionTimestamp 时才设置。
+  只能缩短。只读。
+
+- **deletionTimestamp** (Time)
+
+  <!-- 
+  DeletionTimestamp is RFC 3339 date and time at which this resource will be deleted. This field is set by the server when a graceful deletion is requested by the user, and is not directly settable by a client. The resource is expected to be deleted (no longer visible from resource lists, and not reachable by name) after the time in this field, once the finalizers list is empty. As long as the finalizers list contains items, deletion is blocked. Once the deletionTimestamp is set, this value may not be unset or be set further into the future, although it may be shortened or the resource may be deleted prior to this time. For example, a user may request that a pod is deleted in 30 seconds. The Kubelet will react by sending a graceful termination signal to the containers in the pod. After that 30 seconds, the Kubelet will send a hard termination signal (SIGKILL) to the container and after cleanup, remove the pod from the API. In the presence of network partitions, this object may still exist after this timestamp, until an administrator or automated process can determine the resource is fully terminated. If not set, graceful deletion of the object has not been requested.
+  
+  Populated by the system when a graceful deletion is requested. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+  deletionTimestamp 是删除此资源的 RFC 3339 日期和时间。
+  该字段在用户请求优雅删除时由服务器设置，客户端不能直接设置。
+  一旦 finalizers 列表为空，该资源预计将在此字段中的时间之后被删除
+  （不再从资源列表中可见，并且无法通过名称访问）。
+  只要 finalizers 列表包含项目，就阻止删除。一旦设置了 deletionTimestamp，
+  该值可能不会被取消设置或在未来进一步设置，尽管它可能会缩短或在此时间之前可能会删除资源。
+  例如，用户可能要求在 30 秒内删除一个 Pod。
+  Kubelet 将通过向 Pod 中的容器发送优雅的终止信号来做出反应。
+  30 秒后，Kubelet 将向容器发送硬终止信号（SIGKILL），
+  并在清理后从 API 中删除 Pod。在网络存在分区的情况下，
+  此对象可能在此时间戳之后仍然存在，直到管理员或自动化进程可以确定资源已完全终止。
+  如果未设置，则未请求优雅删除该对象。
+  
+  请求优雅删除时由系统填充。只读。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+  <a name="Time"></a>
+  <!-- 
+  *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+  -->
+  “Time 是 time.Time 的包装类，支持正确地序列化为 YAML 和 JSON。
+  为 time 包提供的许多工厂方法提供了包装类。”
+
+- **generation** (int64)
+
+  <!-- 
+  A sequence number representing a specific generation of the desired state. Populated by the system. Read-only.
+  -->
+  表示期望状态的特定生成的序列号。由系统填充。只读。
+
+- **resourceVersion** (string)
+
+  <!-- 
+  An opaque value that represents the internal version of this object that can be used by clients to determine when objects have changed. May be used for optimistic concurrency, change detection, and the watch operation on a resource or set of resources. Clients must treat these values as opaque and passed unmodified back to the server. They may only be valid for a particular resource or set of resources.
+  
+  Populated by the system. Read-only. Value must be treated as opaque by clients and . More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency
+  -->
+  一个不透明的值，表示此对象的内部版本，客户端可以使用该值来确定对象是否已被更改。
+  可用于乐观并发、变更检测以及对资源或资源集的监听操作。
+  客户端必须将这些值视为不透明的，且未更改地传回服务器。
+  它们可能仅对特定资源或一组资源有效。
+  
+  由系统填充。只读。客户端必须将值视为不透明。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency
+
+- **selfLink** (string)
+
+  <!-- 
+  SelfLink is a URL representing this object. Populated by the system. Read-only.
+  
+  DEPRECATED Kubernetes will stop propagating this field in 1.20 release and the field is planned to be removed in 1.21 release.
+  -->
+  selfLink 是表示此对象的 URL。由系统填充。只读。
+  
+  **已弃用**。Kubernetes 将在 1.20 版本中停止传播该字段，并计划在 1.21 版本中删除该字段。
+
+- **uid** (string)
+
+  <!-- 
+  UID is the unique in time and space value for this object. It is typically generated by the server on successful creation of a resource and is not allowed to change on PUT operations.
+  
+  Populated by the system. Read-only. More info: http://kubernetes.io/docs/user-guide/identifiers#uids
+  -->
+  UID 是该对象在时间和空间上的唯一值。它通常由服务器在成功创建资源时生成，并且不允许使用 PUT 操作更改。
+  
+  由系统填充。只读。更多信息： http://kubernetes.io/docs/user-guide/identifiers#uids
+
+<!-- ### Ignored {#Ignored} -->
+### 忽略字段 {#Ignored}
+
+
+- **clusterName** (string)
+
+  <!-- 
+  Deprecated: ClusterName is a legacy field that was always cleared by the system and never used; it will be removed completely in 1.25.
+  The name in the go struct is changed to help clients detect accidental use.
+  -->
+  已弃用：clusterName 是一个总是被系统清除并且从未使用过的遗留字段；它将在 1.25 中完全删除。
+  go 结构体中的对应字段名称已更改，以帮助客户端检测意外使用。
+
+
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/common-definitions/object-reference.md b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/object-reference.md
new file mode 100644
index 0000000000..03280cceda
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/object-reference.md
@@ -0,0 +1,111 @@
+---
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/api/core/v1"
+  kind: "ObjectReference"
+content_type: "api_reference"
+description: "ObjectReference 包含足够的信息，可以让你检查或修改引用的对象。"
+title: "ObjectReference"
+weight: 8
+auto_generated: true
+---
+<!--
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/api/core/v1"
+  kind: "ObjectReference"
+content_type: "api_reference"
+description: "ObjectReference contains enough information to let you inspect or modify the referred object."
+title: "ObjectReference"
+weight: 8
+auto_generated: true
+-->
+
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference content, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+
+`import "k8s.io/api/core/v1"`
+
+<!--
+ObjectReference contains enough information to let you inspect or modify the referred object.
+
+<hr>
+-->
+
+ObjectReference包含足够的信息，允许你检查或修改引用的对象。
+
+<hr>
+
+
+<!--
+- **apiVersion** (string)
+
+  API version of the referent.
+
+- **fieldPath** (string)
+
+  If referring to a piece of an object instead of an entire object, this string should contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2]. For example, if the object reference is to a container within a pod, this would take on a value like: "spec.containers{name}" (where "name" refers to the name of the container that triggered the event) or if no container name is specified "spec.containers[2]" (container with index 2 in this pod). This syntax is chosen only to have some well-defined way of referencing a part of an object.
+
+- **kind** (string)
+
+  Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+- **name** (string)
+
+  Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+
+- **namespace** (string)
+
+  Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
+
+- **resourceVersion** (string)
+
+  Specific resourceVersion to which this reference is made, if any. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency
+
+- **uid** (string)
+
+  UID of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids
+-->
+
+- **apiVersion** (string)
+
+  被引用者的 API 版本。
+
+- **fieldPath** (string)
+
+  如果引用的是对象的某个对象是整个对象，则该字符串而不是应包含的 JSON/Go 字段有效访问语句，
+  例如 `desiredState.manifest.containers[ 2 ]`。例如，如果对象引用针对的是 Pod 中的一个容器，
+  此字段取值类似于：`spec.containers{name}`（`name` 指触发的容器的名称），
+  或者如果没有指定容器名称，`spec.containers[ 2 ]`（此 Pod 中索引为 2 的容器）。
+  选择这种只是为了有一些定义好的语法来引用对象的部分。
+
+- **kind** (string)
+
+  被引用者的类别（kind）。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+- **name** (string)
+
+  被引用对象的名称。更多信息： https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+
+- **namespace** (string)
+
+  被引用对象的名字空间。更多信息： https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
+
+- **resourceVersion** (string)
+
+  被引用对象的特定资源版本（如果有）。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency
+
+- **uid** (string)
+
+  被引用对象的UID。更多信息： https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/common-definitions/patch.md b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/patch.md
new file mode 100644
index 0000000000..365055d526
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/patch.md
@@ -0,0 +1,49 @@
+---
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/apimachinery/pkg/apis/meta/v1"
+  kind: "Patch"
+content_type: "api_reference"
+description: "提供 Patch 是为了给 Kubernetes PATCH 请求正文提供一个具体的名称和类型。"
+title: "Patch"
+weight: 9
+auto_generated: true
+---
+
+<!-- 
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/apimachinery/pkg/apis/meta/v1"
+  kind: "Patch"
+content_type: "api_reference"
+description: "Patch is provided to give a concrete name and type to the Kubernetes PATCH request body."
+title: "Patch"
+weight: 9
+auto_generated: true
+-->
+
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference content, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+
+`import "k8s.io/apimachinery/pkg/apis/meta/v1"`
+
+
+<!-- Patch is provided to give a concrete name and type to the Kubernetes PATCH request body. -->
+提供 Patch 是为了给 Kubernetes PATCH 请求正文提供一个具体的名称和类型。
+
+<hr>
+
+
+
+
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/common-definitions/quantity.md b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/quantity.md
new file mode 100644
index 0000000000..82d129c4ad
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/quantity.md
@@ -0,0 +1,135 @@
+---
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/apimachinery/pkg/api/resource"
+  kind: "Quantity"
+content_type: "api_reference"
+description: "数量（Quantity）是数字的定点表示。"
+title: "Quantity"
+weight: 10
+auto_generated: true
+---
+
+<!-- 
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/apimachinery/pkg/api/resource"
+  kind: "Quantity"
+content_type: "api_reference"
+description: "Quantity is a fixed-point representation of a number."
+title: "Quantity"
+weight: 10
+auto_generated: true
+-->
+
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference content, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+
+`import "k8s.io/apimachinery/pkg/api/resource"`
+
+
+<!-- 
+Quantity is a fixed-point representation of a number. 
+It provides convenient marshaling/unmarshaling in JSON and YAML, 
+in addition to String() and AsInt64() accessors.
+
+The serialization format is:
+-->
+数量（Quantity）是数字的定点表示。
+除了 String() 和 AsInt64() 的访问接口之外，
+它以 JSON 和 YAML形式提供方便的打包和解包方法。
+
+序列化格式如下：
+
+<!-- 
+\<quantity>        ::= \<signedNumber>\<suffix>
+  (Note that \<suffix> may be empty, from the "" case in \<decimalSI>.)
+\<digit>           ::= 0 | 1 | ... | 9 
+\<digits>          ::= \<digit> | \<digit>\<digits> 
+\<number>          ::= \<digits> | \<digits>.\<digits> | \<digits>. | .\<digits> 
+\<sign>            ::= "+" | "-" 
+\<signedNumber>    ::= \<number> | \<sign>\<number> 
+\<suffix>          ::= \<binarySI> | \<decimalExponent> | \<decimalSI> 
+\<binarySI>        ::= Ki | Mi | Gi | Ti | Pi | Ei
+  (International System of units; See: http://physics.nist.gov/cuu/Units/binary.html)
+\<decimalSI>       ::= m | "" | k | M | G | T | P | E
+  (Note that 1024 = 1Ki but 1000 = 1k; I didn't choose the capitalization.)
+\<decimalExponent> ::= "e" \<signedNumber> | "E" \<signedNumber>
+-->
+```
+<quantity>        ::= <signedNumber><suffix>
+  (注意 <suffix> 可能为空，例如 <decimalSI> 的 "" 情形。) </br>
+<digit>           ::= 0 | 1 | ... | 9 </br>
+<digits>          ::= <digit> | <digit><digits> </br>
+<number>          ::= <digits> | <digits>.<digits> | <digits>. | .<digits> </br>
+<sign>            ::= "+" | "-" </br>
+<signedNumber>    ::= <number> | <sign><number> </br>
+<suffix>          ::= <binarySI> | <decimalExponent> | <decimalSI> </br>
+<binarySI>        ::= Ki | Mi | Gi | Ti | Pi | Ei 
+  (国际单位制度；查阅： http://physics.nist.gov/cuu/Units/binary.html)</br>
+<decimalSI>       ::= m | "" | k | M | G | T | P | E 
+  (注意，1024 = 1ki 但 1000 = 1k；我没有选择大写。) </br>
+<decimalExponent> ::= "e" <signedNumber> | "E" <signedNumber> </br>
+```
+
+
+<!-- 
+No matter which of the three exponent forms is used, no quantity may represent a number greater than 2^63-1 in magnitude, nor may it have more than 3 decimal places. Numbers larger or more precise will be capped or rounded up. (E.g.: 0.1m will rounded up to 1m.) This may be extended in the future if we require larger or smaller quantities.
+
+When a Quantity is parsed from a string, it will remember the type of suffix it had, and will use the same type again when it is serialized.
+-->
+无论使用三种指数形式中哪一种，没有数量可以表示大于 2<sup>63</sup>-1 的数，也不可能超过 3 个小数位。
+更大或更精确的数字将被截断或向上取整。（例如：0.1m 将向上取整为 1m。）
+如果将来我们需要更大或更小的数量，可能会扩展。
+
+当从字符串解析数量时，它将记住它具有的后缀类型，并且在序列化时将再次使用相同类型。
+
+<!-- 
+Before serializing, Quantity will be put in "canonical form". 
+This means that Exponent/suffix will be adjusted up or down (with a corresponding increase or decrease in Mantissa) such that:
+  a. No precision is lost
+  b. No fractional digits will be emitted
+  c. The exponent (or suffix) is as large as possible.
+The sign will be omitted unless the number is negative.
+-->
+在序列化之前，数量将以“规范形式”放置。这意味着指数或者后缀将被向上或向下调整（尾数相应增加或减少），并确保：
+  1. 没有精度丢失
+  2. 不会输出小数数字
+  3. 指数（或后缀）尽可能大。
+除非数量是负数，否则将省略正负号。
+
+<!-- 
+Examples:
+  1.5 will be serialized as "1500m"
+  1.5Gi will be serialized as "1536Mi"
+-->
+例如：
+  - 1.5 将会被序列化成 “1500m”
+  - 1.5Gi 将会被序列化成 “1536Mi”
+
+<!-- 
+Note that the quantity will NEVER be internally represented by a floating point number. 
+That is the whole point of this exercise.
+
+Non-canonical values will still parse as long as they are well formed, 
+but will be re-emitted in their canonical form. (So always use canonical form, or don't diff.)
+
+This format is intended to make it difficult to use these numbers without writing some sort of special handling code in the hopes that that will cause implementors to also use a fixed point implementation.
+-->
+请注意，数量永远**不会**在内部以浮点数表示。这是本设计的重中之重。
+
+只要它们格式正确，非规范值仍将解析，但将以其规范形式重新输出。（所以应该总是使用规范形式，否则不要执行 diff 比较。）
+
+这种格式旨在使得很难在不撰写某种特殊处理代码的情况下使用这些数字，进而希望实现者也使用定点实现。
+
+<hr>
diff --git a/content/zh-cn/docs/reference/kubernetes-api/common-definitions/resource-field-selector.md b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/resource-field-selector.md
new file mode 100644
index 0000000000..e77543e25f
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/resource-field-selector.md
@@ -0,0 +1,62 @@
+---
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/api/core/v1"
+  kind: "ResourceFieldSelector"
+content_type: "api_reference"
+description: "ResourceFieldSelector 表示容器资源（CPU，内存）及其输出格式。"
+title: "ResourceFieldSelector"
+weight: 11
+auto_generated: true
+---
+
+<!-- 
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/api/core/v1"
+  kind: "ResourceFieldSelector"
+content_type: "api_reference"
+description: "ResourceFieldSelector represents container resources (cpu, memory) and their output format."
+title: "ResourceFieldSelector"
+weight: 11
+auto_generated: true
+-->
+
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference content, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+
+`import "k8s.io/api/core/v1"`
+
+
+<!-- ResourceFieldSelector represents container resources (cpu, memory) and their output format -->
+ResourceFieldSelector 表示容器资源（CPU，内存）及其输出格式。
+
+<hr>
+
+- **resource** (string), 必选
+
+  <!-- Required: resource to select -->
+  必选：选择的资源
+
+- **containerName** (string)
+
+  <!-- Container name: required for volumes, optional for env vars -->
+  容器名称：对卷必选，对环境变量可选
+
+- **divisor** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+  <!-- Specifies the output format of the exposed resources, defaults to "1" -->
+  指定所曝光资源的输出格式，默认值为“1”
+
+
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/common-definitions/status.md b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/status.md
new file mode 100644
index 0000000000..0d3a6de1b6
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/status.md
@@ -0,0 +1,208 @@
+---
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/apimachinery/pkg/apis/meta/v1"
+  kind: "Status"
+content_type: "api_reference"
+description: "状态（Status）是不返回其他对象的调用的返回值。"
+title: "Status"
+weight: 12
+auto_generated: true
+---
+
+<!--
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/apimachinery/pkg/apis/meta/v1"
+  kind: "Status"
+content_type: "api_reference"
+description: "Status is a return value for calls that don't return other objects."
+title: "Status"
+weight: 12
+auto_generated: true
+-->
+
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference content, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+
+`import "k8s.io/apimachinery/pkg/apis/meta/v1"`
+
+
+<!-- Status is a return value for calls that don't return other objects. -->
+状态（Status）是不返回其他对象的调用的返回值。
+
+<hr>
+
+- **apiVersion** (string)
+
+  <!--
+  APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources 
+  -->
+
+  APIVersion 定义对象表示的版本化模式。
+  服务器应将已识别的模式转换为最新的内部值，并可能拒绝无法识别的值。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
+
+- **code** (int32)
+
+  <!-- Suggested HTTP return code for this status, 0 if not set. -->
+  此状态的建议 HTTP 返回代码，如果未设置，则为 0。
+
+- **details** (StatusDetails)
+
+  <!--
+  Extended data associated with the reason.  Each reason may define its own extended details. 
+  This field is optional and the data returned is not guaranteed to conform to any schema except that defined by the reason type.
+  -->
+  与原因（Reason）相关的扩展数据。每个原因都可以定义自己的扩展细节。
+  此字段是可选的，并且不保证返回的数据符合任何模式，除非由原因类型定义。
+
+  <a name="StatusDetails"></a>
+  <!--
+  *StatusDetails is a set of additional properties that MAY be set by the server to provide additional information about a response. 
+  The Reason field of a Status object defines what attributes will be set. 
+  Clients must ignore fields that do not match the defined type of each attribute, 
+  and should assume that any attribute may be empty, invalid, or under defined.* 
+  -->
+  *StatusDetails 是一组附加属性，可以由服务器设置以提供有关响应的附加信息。*
+  *状态对象的原因字段定义将设置哪些属性。*
+  *客户端必须忽略与每个属性的定义类型不匹配的字段，并且应该假定任何属性可能为空、无效或未定义。*
+
+  - **details.causes** ([]StatusCause)
+
+    <!--
+    The Causes array includes more details associated with the StatusReason failure. 
+    Not all StatusReasons may provide detailed causes. 
+    -->
+    Causes 数组包含与 StatusReason 故障相关的更多详细信息。
+    并非所有 StatusReasons 都可以提供详细的原因。
+
+    <a name="StatusCause"></a>
+    <!--
+    *StatusCause provides more information about an api.Status failure, including cases when multiple errors are encountered.*
+    -->
+    *StatusCause 提供有关 api.Status 失败的更多信息，包括遇到多个错误的情况。*
+
+    - **details.causes.field** (string)
+
+      <!--
+      The field of the resource that has caused this error, as named by its JSON serialization. 
+      May include dot and postfix notation for nested attributes. Arrays are zero-indexed.  
+      Fields may appear more than once in an array of causes due to fields having multiple errors. Optional.
+      -->
+      导致此错误的资源字段，由其 JSON 序列化命名。
+      可能包括嵌套属性的点和后缀表示法。数组是从零开始索引的。
+      由于字段有多个错误，字段可能会在一系列原因中出现多次。可选。
+
+      <!--
+      Examples:
+        "name" - the field "name" on the current resource
+        "items[0].name" - the field "name" on the first array entry in "items"
+      -->
+      示例：
+        - “name”：当前资源上的字段 “name”
+        - “items[0].name”：“items” 中第一个数组条目上的字段 “name”
+
+    - **details.causes.message** (string)
+
+      <!-- A human-readable description of the cause of the error.  This field may be presented as-is to a reader. -->
+      对错误原因的可读描述。该字段可以按原样呈现给读者。
+
+    - **details.causes.reason** (string)
+
+      <!-- A machine-readable description of the cause of the error. If this value is empty there is no information available. -->
+      错误原因的机器可读描述。如果此值为空，则没有可用信息。
+
+  - **details.group** (string)
+
+    <!-- The group attribute of the resource associated with the status StatusReason. -->
+    与状态 StatusReason 关联的资源的组属性。
+
+  - **details.kind** (string)
+
+    <!--
+    The kind attribute of the resource associated with the status StatusReason. 
+    On some operations may differ from the requested resource Kind. 
+    More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+    -->
+    与状态 StatusReason 关联的资源的种类属性。
+    在某些操作上可能与请求的资源种类不同。
+    更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+  - **details.name** (string)
+
+    <!-- The name attribute of the resource associated with the status StatusReason (when there is a single name which can be described). -->
+    与状态 StatusReason 关联的资源的名称属性（当有一个可以描述的名称时）。
+
+  - **details.retryAfterSeconds** (int32)
+
+    <!--
+    If specified, the time in seconds before the operation should be retried. 
+    Some errors may indicate the client must take an alternate action - 
+    for those errors this field may indicate how long to wait before taking the alternate action.
+    -->
+    如果指定，则应重试操作前的时间（以秒为单位）。
+    一些错误可能表明客户端必须采取替代操作——对于这些错误，此字段可能指示在采取替代操作之前等待多长时间。
+
+  - **details.uid** (string)
+
+    <!--
+    UID of the resource. (when there is a single resource which can be described). 
+    More info: http://kubernetes.io/docs/user-guide/identifiers#uids 
+    -->
+    资源的 UID（当有单个可以描述的资源时）。
+    更多信息： http://kubernetes.io/docs/user-guide/identifiers#uids
+
+- **kind** (string)
+
+  <!--
+   Kind is a string value representing the REST resource this object represents. 
+   Servers may infer this from the endpoint the client submits requests to. 
+   Cannot be updated. In CamelCase.
+   More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+  -->
+  Kind 是一个字符串值，表示此对象表示的 REST 资源。
+  服务器可以从客户端提交请求的端点推断出这一点。
+  无法更新。驼峰式规则。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+- **message** (string)
+
+  <!-- A human-readable description of the status of this operation. -->
+  此操作状态的人类可读描述。
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  <!-- Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds -->
+  标准列表元数据。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+
+- **reason** (string)
+
+  <!--
+  A machine-readable description of why this operation is in the "Failure" status. 
+  If this value is empty there is no information available. 
+  A Reason clarifies an HTTP status code but does not override it.
+  -->
+  机器可读的说明，说明此操作为何处于“失败”状态。
+  如果此值为空，则没有可用信息。
+  Reason 澄清了 HTTP 状态代码，但不会覆盖它。
+
+- **status** (string)
+
+  <!--
+  Status of the operation. One of: "Success" or "Failure". More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+  -->
+  操作状态。“Success”或“Failure” 之一。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
diff --git a/content/zh-cn/docs/reference/kubernetes-api/common-definitions/typed-local-object-reference.md b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/typed-local-object-reference.md
new file mode 100644
index 0000000000..fead44fe99
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/common-definitions/typed-local-object-reference.md
@@ -0,0 +1,79 @@
+---
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/api/core/v1"
+  kind: "TypedLocalObjectReference"
+content_type: "api_reference"
+description: "TypedLocalObjectReference 包含足够的信息，可以让你在同一个名称空间中定位指定类型的引用对象。"
+title: "TypedLocalObjectReference"
+weight: 13
+auto_generated: true
+---
+<!--
+---
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/api/core/v1"
+  kind: "TypedLocalObjectReference"
+content_type: "api_reference"
+description: "TypedLocalObjectReference contains enough information to let you locate the typed referenced object inside the same namespace."
+title: "TypedLocalObjectReference"
+weight: 13
+auto_generated: true
+---
+-->
+
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference content, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+
+`import "k8s.io/api/core/v1"`
+
+<!--
+TypedLocalObjectReference contains enough information to let you locate the typed referenced object inside the same namespace.
+-->
+
+TypedLocalObjectReference 包含足够的信息，可以让你在同一个名称空间中定位特定类型的引用对象。
+<!--
+<hr>
+
+- **kind** (string), required
+
+  Kind is the type of resource being referenced
+
+- **name** (string), required
+
+  Name is the name of resource being referenced
+
+- **apiGroup** (string)
+
+  APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.
+-->
+
+<hr>
+
+- **kind** (string), 必需
+
+  Kind 是被引用的资源的类型
+
+- **name** (string), 必需
+
+  Name 是被引用的资源的名称
+
+- **apiGroup** (string)
+
+  APIGroup 是被引用资源的组。如果不指定 APIGroup，则指定的 Kind 必须在核心 API 组中。对于任何其它第三方类型，都需要 APIGroup。
+
+
+
+
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/common-parameters/common-parameters.md b/content/zh-cn/docs/reference/kubernetes-api/common-parameters/common-parameters.md
new file mode 100644
index 0000000000..f53524eb9d
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/common-parameters/common-parameters.md
@@ -0,0 +1,246 @@
+---
+api_metadata:
+  apiVersion: ""
+  import: ""
+  kind: "Common Parameters"
+content_type: "api_reference"
+description: ""
+title: "常用参数"
+weight: 10
+auto_generated: true
+---
+
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference content, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+
+
+## allowWatchBookmarks {#allowWatchBookmarks}
+<!--
+allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.
+
+<hr>
+-->
+allowWatchBookmarks 字段请求类型为 BOOKMARK 的监视事件。
+没有实现书签的服务器可能会忽略这个标志，并根据服务器的判断发送书签。
+客户端不应该假设书签会在任何特定的时间间隔返回，也不应该假设服务器会在会话期间发送任何书签事件。
+如果当前请求不是 watch 请求，则忽略该字段。
+<hr>
+
+## continue {#continue}
+<!--
+The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. 
+-->
+当需要从服务器检索更多结果时，应该设置 continue 选项。由于这个值是服务器定义的，
+客户端只能使用先前查询结果中具有相同查询参数的 continue 值(continue值除外)，
+服务器可能拒绝它识别不到的 continue 值。
+如果指定的 continue 值不再有效，无论是由于过期(通常是 5 到 15 分钟)
+还是服务器上的配置更改，服务器将响应 "410 ResourceExpired" 错误和一个 continue 令牌。
+<!--
+If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".
+-->
+如果客户端需要一个一致的列表，它必须在没有 continue 字段的情况下重新发起 list 请求。
+否则，客户端可能会发送另一个带有 410 错误令牌的 list 请求，服务器将响应从下一个键开始的列表，
+但列表数据来自最新的快照，这与之前
+的列表结果不一致。第一个列表请求之后的对象创建，修改，或删除的对象将被包含在响应中，
+只要他们的键是在“下一个键”之后。
+<!--
+This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.
+-->
+当 watch 字段为 true 时，不支持此字段。客户端可以从服务器返回的最后一个 resourceVersion 值开始监视，就不会错过任何修改。
+<hr>
+
+## dryRun {#dryRun}
+<!--
+When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed
+<hr>
+-->
+表示不应该持久化所请求的修改。无效或无法识别的 dryRun 指令将导致错误响应，
+并且服务器不再对请求进行进一步处理。有效值为:
+- All: 将处理所有的演练阶段
+<hr>
+
+## fieldManager {#fieldManager}
+<!--
+fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.
+<hr>
+-->
+fieldManager 是与进行这些更改的参与者或实体相关联的名称。
+长度小于或128个字符且仅包含可打印字符，如 https://golang.org/pkg/unicode/#IsPrint 所定义。
+<hr>
+
+## fieldSelector {#fieldSelector}
+<!--
+A selector to restrict the list of returned objects by their fields. Defaults to everything.
+<hr>
+-->
+根据返回对象的字段限制返回对象列表的选择器。默认为返回所有字段。
+<hr>
+
+## fieldValidation {#fieldValidation}
+
+<!--
+fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled.
+-->
+fieldValidation 指示服务器如何处理请求（POST/PUT/PATCH）中包含未知或重复字段的对象，
+前提是 `ServerSideFieldValidation` 特性门控也已启用。
+<!--
+Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled.
+-->
+有效值为：
+- Ignore：这将忽略从对象中默默删除的所有未知字段，并将忽略除解码器遇到的最后一个重复字段之外的所有字段。
+  这是在 v1.23 之前的默认行为，也是当 `ServerSideFieldValidation` 特性门控被禁用时的默认行为。
+<!--
+- Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled.
+-->
+- Warn：这将针对从对象中删除的各个未知字段以及所遇到的各个重复字段，分别通过标准警告响应头发出警告。
+  如果没有其他错误，请求仍然会成功，并且只会保留所有重复字段中的最后一个。
+  这是启用 `ServerSideFieldValidation` 特性门控时的默认值。
+<!--
+- Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.
+-->
+- Strict：如果从对象中删除任何未知字段，或者存在任何重复字段，将使请求失败并返回 BadRequest 错误。
+
+<hr>
+
+## force {#force}
+<!--
+Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.
+<hr>
+-->
+Force 将“强制”应用请求。这意味着用户将重新获得他人拥有的冲突领域。
+对于非应用补丁请求，Force 标志必须不设置。
+<hr>
+
+## gracePeriodSeconds {#gracePeriodSeconds}
+<!--
+The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.
+<hr>
+-->
+删除对象前的持续时间(秒数)。值必须为非负整数。取值为 0 表示立即删除。
+如果该值为 nil，将使用指定类型的默认宽限期。如果没有指定，默认为每个对象的设置值。0 表示立即删除。
+<hr>
+
+## labelSelector {#labelSelector}
+<!--
+A selector to restrict the list of returned objects by their labels. Defaults to everything.
+<hr>
+-->
+通过标签限制返回对象列表的选择器。默认为返回所有对象。
+<hr>
+
+## limit {#limit}
+<!--
+limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results.
+-->
+limit 是一个列表调用返回的最大响应数。如果有更多的条目，服务器会将列表元数据上的 
+'continue' 字段设置为一个值，该值可以用于相同的初始查询来检索下一组结果。
+<!--
+Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.
+-->
+设置 limit 可能会在所有请求的对象被过滤掉的情况下返回少于请求的条目数量(下限为零)，
+并且客户端应该只根据 continue 字段是否存在来确定是否有更多的结果可用。
+服务器可能选择不支持 limit 参数，并将返回所有可用的结果。
+如果指定了 limit 并且 continue 字段为空，客户端可能会认为没有更多的结果可用。
+如果 watch 为 true，则不支持此字段。
+<!--
+The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests.
+-->
+服务器保证在使用 continue 时返回的对象将与不带 limit 的列表调用相同，——
+也就是说，在发出第一个请求后所创建、修改或删除的对象将不包含在任何后续的继续请求中。 
+<!--
+This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.
+<hr>
+-->
+这有时被称为一致性快照，确保使用 limit 的客户端在分块接收非常大的结果的客户端能够看到所有可能的对象。
+如果对象在分块列表期间被更新，则返回计算第一个列表结果时存在的对象版本。
+<hr>
+
+## namespace {#namespace}
+<!--
+object name and auth scope, such as for teams and projects
+<hr>
+-->
+
+对象名称和身份验证范围，例如用于团队和项目。
+<hr>
+
+## pretty {#pretty}
+<!--
+If 'true', then the output is pretty printed.
+<hr>
+-->
+
+如果设置为 'true' ，那么输出是规范的打印。
+
+<hr>
+
+## propagationPolicy {#propagationPolicy}
+<!--
+Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.
+<hr>
+-->
+该字段决定是否以及如何执行垃圾收集。可以设置此字段或 OrphanDependents，但不能同时设置。
+默认策略由 metadata.finalizers 和特定资源的默认策略设置决定。可接受的值是：
+- 'Orphan'：孤立依赖项；
+- 'Background'：允许垃圾回收器后台删除依赖；
+- 'Foreground'：一个级联策略，前台删除所有依赖项。
+<hr>
+
+## resourceVersion {#resourceVersion}
+<!--
+resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.
+
+Defaults to unset
+<hr>
+-->
+resourceVersion 对请求所针对的资源版本设置约束。
+详情请参见 https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions。
+
+默认不设置
+<hr>
+
+## resourceVersionMatch {#resourceVersionMatch}
+<!--
+resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.
+
+Defaults to unset
+<hr>
+-->
+resourceVersionMatch 字段决定如何将 resourceVersion 应用于列表调用。
+强烈建议对设置了 resourceVersion 的列表调用设置 resourceVersion 匹配，
+具体请参见 https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions。
+
+默认不设置
+
+<hr>
+
+## timeoutSeconds {#timeoutSeconds}
+<!--
+Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.
+<hr>
+-->
+list/watch 调用的超时秒数。这选项限制调用的持续时间，无论是否有活动。
+<hr>
+
+## watch {#watch}
+<!--
+Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.
+<hr>
+-->
+监视对所述资源的更改，并将其这类变更以添加、更新和删除通知流的形式返回。指定 resourceVersion。
+
+<hr>
+
+
+
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/_index.md b/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/_index.md
new file mode 100644
index 0000000000..df1ea40f98
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/_index.md
@@ -0,0 +1,7 @@
+---
+title: "配置和存储资源"
+weight: 3
+auto_generated: true
+---
+
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/config-map-v1.md b/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/config-map-v1.md
new file mode 100644
index 0000000000..30a998ce96
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/config-map-v1.md
@@ -0,0 +1,649 @@
+---
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "ConfigMap"
+content_type: "api_reference"
+description: "ConfigMap 包含供 Pod 使用的配置数据。"
+title: "ConfigMap"
+weight: 1
+---
+<!--
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "ConfigMap"
+content_type: "api_reference"
+description: "ConfigMap holds configuration data for pods to consume."
+title: "ConfigMap"
+weight: 1
+-->
+
+`apiVersion: v1`
+
+`import "k8s.io/api/core/v1"`
+
+## ConfigMap {#ConfigMap}
+
+<!--
+ConfigMap holds configuration data for pods to consume.
+-->
+ConfigMap 包含供 Pod 使用的配置数据。
+
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: ConfigMap
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  
+  标准的对象元数据。
+  更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+<!--
+- **binaryData** (map[string][]byte)
+
+  BinaryData contains the binary data. Each key must consist of alphanumeric characters, '-', '_' or '.'. BinaryData can contain byte sequences that are not in the UTF-8 range. The keys stored in BinaryData must not overlap with the ones in the Data field, this is enforced during validation process. Using this field will require 1.10+ apiserver and kubelet.
+-->
+- **binaryData** (map[string][]byte)
+  
+  binaryData 包含二进制数据。
+  每个键必须由字母、数字、“-”、“_” 或 “.” 组成。
+  binaryData 可以包含不在 UTF-8 范围中的字节序列。
+  binaryData 中存储的键不得与 data 字段中的键重叠，这在验证过程中是强制要求。
+  使用此字段需要 apiserver 和 kubelet 的版本高于 1.10。
+
+<!--
+- **data** (map[string]string)
+
+  Data contains the configuration data. Each key must consist of alphanumeric characters, '-', '_' or '.'. Values with non-UTF-8 byte sequences must use the BinaryData field. The keys stored in Data must not overlap with the keys in the BinaryData field, this is enforced during validation process.
+
+- **immutable** (boolean)
+
+  Immutable, if set to true, ensures that data stored in the ConfigMap cannot be updated (only object metadata can be modified). If not set to true, the field can be modified at any time. Defaulted to nil.
+-->
+- **data** (map[string]string)
+  
+  data 包含配置数据。
+  每个键必须由字母、数字、“-”、“_” 或 “.” 组成。
+  如果值包含非 UTF-8 字节序列，则必须使用 binaryData 字段。
+  data 中存储的键不得与 binaryData 字段中的键重叠，这在验证过程中是强制要求。
+
+- **immutable** (boolean)
+  
+  如果 immutable 设为 true，
+  则确保不会更新 ConfigMap 中存储的数据（只能修改对象元数据）。
+  如果未设为 true，则可以随时修改此字段。
+  默认为 nil。
+
+## ConfigMapList {#ConfigMapList}
+
+<!--
+ConfigMapList is a resource containing a list of ConfigMap objects.
+-->
+ConfigMapList 是包含 ConfigMap 对象列表的资源。
+
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: ConfigMapList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../config-and-storage-resources/config-map-v1#ConfigMap" >}}">ConfigMap</a>), required
+  Items is the list of ConfigMaps.
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  
+  更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../config-and-storage-resources/config-map-v1#ConfigMap" >}}">ConfigMap</a>)，必需
+  
+  items 是 ConfigMap 的列表。
+
+<!--
+## Operations {#Operations}
+<hr>
+### `get` read the specified ConfigMap
+
+#### HTTP Request
+-->
+## 操作 {#Operations}
+
+<hr>
+
+### `get` 读取指定的 ConfigMap
+
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/configmaps/{name}
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+  name of the ConfigMap
+
+- **namespace** (*in path*): string, required
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  ConfigMap 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/config-map-v1#ConfigMap" >}}">ConfigMap</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind ConfigMap
+
+#### HTTP Request
+-->
+### `list` 列出或观测类别为 ConfigMap 的对象
+
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/configmaps
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/config-map-v1#ConfigMapList" >}}">ConfigMapList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind ConfigMap
+
+#### HTTP Request
+-->
+### `list` 列出或观测类别为 ConfigMap 的对象
+
+#### HTTP 请求
+
+GET /api/v1/configmaps
+
+<!--
+#### Parameters
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/config-map-v1#ConfigMapList" >}}">ConfigMapList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a ConfigMap
+
+#### HTTP Request
+-->
+### `create` 创建 ConfigMap
+
+#### HTTP 请求
+
+POST /api/v1/namespaces/{namespace}/configmaps
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../config-and-storage-resources/config-map-v1#ConfigMap" >}}">ConfigMap</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../config-and-storage-resources/config-map-v1#ConfigMap" >}}">ConfigMap</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/config-map-v1#ConfigMap" >}}">ConfigMap</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/config-map-v1#ConfigMap" >}}">ConfigMap</a>): Created
+
+202 (<a href="{{< ref "../config-and-storage-resources/config-map-v1#ConfigMap" >}}">ConfigMap</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified ConfigMap
+
+#### HTTP Request
+-->
+### `update` 替换指定的 ConfigMap
+
+#### HTTP 请求
+
+PUT /api/v1/namespaces/{namespace}/configmaps/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ConfigMap
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../config-and-storage-resources/config-map-v1#ConfigMap" >}}">ConfigMap</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  ConfigMap 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../config-and-storage-resources/config-map-v1#ConfigMap" >}}">ConfigMap</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/config-map-v1#ConfigMap" >}}">ConfigMap</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/config-map-v1#ConfigMap" >}}">ConfigMap</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified ConfigMap
+
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 ConfigMap
+
+#### HTTP 请求
+
+PATCH /api/v1/namespaces/{namespace}/configmaps/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ConfigMap
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  ConfigMap 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/config-map-v1#ConfigMap" >}}">ConfigMap</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/config-map-v1#ConfigMap" >}}">ConfigMap</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a ConfigMap
+
+#### HTTP Request
+-->
+### `delete` 删除 ConfigMap
+
+#### HTTP 请求
+
+DELETE /api/v1/namespaces/{namespace}/configmaps/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ConfigMap
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  ConfigMap 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of ConfigMap
+
+#### HTTP Request
+-->
+### `deletecollection` 删除 ConfigMap 的集合
+
+#### HTTP 请求
+
+DELETE /api/v1/namespaces/{namespace}/configmaps
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **continue** (*in query*): string
+- **dryRun** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/csi-driver-v1.md b/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/csi-driver-v1.md
new file mode 100644
index 0000000000..29011ebe89
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/csi-driver-v1.md
@@ -0,0 +1,718 @@
+---
+api_metadata:
+  apiVersion: "storage.k8s.io/v1"
+  import: "k8s.io/api/storage/v1"
+  kind: "CSIDriver"
+content_type: "api_reference"
+description: "CSIDriver 抓取集群上部署的容器存储接口（CSI）卷驱动有关的信息。"
+title: "CSIDriver"
+weight: 8
+---
+<!--
+api_metadata:
+  apiVersion: "storage.k8s.io/v1"
+  import: "k8s.io/api/storage/v1"
+  kind: "CSIDriver"
+content_type: "api_reference"
+description: "CSIDriver captures information about a Container Storage Interface (CSI) volume driver deployed on the cluster."
+title: "CSIDriver"
+weight: 8
+-->
+
+`apiVersion: storage.k8s.io/v1`
+
+`import "k8s.io/api/storage/v1"`
+
+## CSIDriver {#CSIDriver}
+
+<!--
+CSIDriver captures information about a Container Storage Interface (CSI) volume driver deployed on the cluster. Kubernetes attach detach controller uses this object to determine whether attach is required. Kubelet uses this object to determine whether pod information needs to be passed on mount. CSIDriver objects are non-namespaced.
+-->
+CSIDriver 抓取集群上部署的容器存储接口（CSI）卷驱动有关的信息。
+Kubernetes 挂接/解除挂接控制器使用此对象来决定是否需要挂接。
+Kubelet 使用此对象决定挂载时是否需要传递 Pod 信息。
+CSIDriver 对象未划分命名空间。
+
+<hr>
+
+- **apiVersion**: storage.k8s.io/v1
+
+- **kind**: CSIDriver
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  Standard object metadata. metadata.Name indicates the name of the CSI driver that this object refers to; it MUST be the same name returned by the CSI GetPluginName() call for that driver. The driver name must be 63 characters or less, beginning and ending with an alphanumeric character ([a-z0-9A-Z]) with dashes (-), dots (.), and alphanumerics between. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../config-and-storage-resources/csi-driver-v1#CSIDriverSpec" >}}">CSIDriverSpec</a>), required
+  Specification of the CSI Driver.
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  
+  标准的对象元数据。
+  `metadata.name` 表示此对象引用的 CSI 驱动的名称；
+  它必须与该驱动的 CSI GetPluginName() 调用返回的名称相同。
+  驱动名称不得超过 63 个字符，以字母、数字（[a-z0-9A-Z]）开头和结尾，
+  中间可包含短划线（-）、英文句点（.）、字母和数字。
+  更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../config-and-storage-resources/csi-driver-v1#CSIDriverSpec" >}}">CSIDriverSpec</a>)，必需
+  
+  CSI 驱动的规约。
+
+## CSIDriverSpec {#CSIDriverSpec}
+
+<!--
+CSIDriverSpec is the specification of a CSIDriver.
+-->
+CSIDriverSpec 是 CSIDriver 的规约。
+
+<hr>
+
+<!--
+- **attachRequired** (boolean)
+  attachRequired indicates this CSI volume driver requires an attach operation (because it implements the CSI ControllerPublishVolume() method), and that the Kubernetes attach detach controller should call the attach volume interface which checks the volumeattachment status and waits until the volume is attached before proceeding to mounting. The CSI external-attacher coordinates with CSI volume driver and updates the volumeattachment status when the attach operation is complete. If the CSIDriverRegistry feature gate is enabled and the value is specified to false, the attach operation will be skipped. Otherwise the attach operation will be called.
+  
+  This field is immutable.
+-->
+- **attachRequired** (boolean)
+  
+  attachRequired 表示这个 CSI 卷驱动需要挂接操作
+  （因为它实现了 CSI ControllerPublishVolume() 方法），
+  Kubernetes 挂接/解除挂接控制器应调用挂接卷接口，
+  以检查卷挂接（volumeattachment）状态并在继续挂载之前等待卷被挂接。
+  CSI 外部挂接器与 CSI 卷驱动配合使用，并在挂接操作完成时更新 volumeattachment 状态。
+  如果 CSIDriverRegistry 特性门控被启用且此值指定为 false，将跳过挂接操作。
+  否则将调用挂接操作。
+  
+  此字段不可变更。
+
+<!--
+- **fsGroupPolicy** (string)
+  Defines if the underlying volume supports changing ownership and permission of the volume before being mounted. Refer to the specific FSGroupPolicy values for additional details.
+  
+  This field is immutable.
+  
+  Defaults to ReadWriteOnceWithFSType, which will examine each volume to determine if Kubernetes should modify ownership and permissions of the volume. With the default policy the defined fsGroup will only be applied if a fstype is defined and the volume's access mode contains ReadWriteOnce.
+-->
+- **fsGroupPolicy** (string)
+  
+  定义底层卷是否支持在挂载之前更改卷的所有权和权限。
+  有关更多详细信息，请参考特定的 FSGroupPolicy 值。
+  
+  此字段不可变更。
+  
+  默认为 ReadWriteOnceWithFSType，这会检查每个卷，以决定 Kubernetes 是否应修改卷的所有权和权限。
+  采用默认策略时，如果定义了 fstype 且卷的访问模式包含 ReadWriteOnce，将仅应用定义的 fsGroup。
+
+<!--
+- **podInfoOnMount** (boolean)
+  If set to true, podInfoOnMount indicates this CSI volume driver requires additional pod information (like podName, podUID, etc.) during mount operations. If set to false, pod information will not be passed on mount. Default is false. The CSI driver specifies podInfoOnMount as part of driver deployment. If true, Kubelet will pass pod information as VolumeContext in the CSI NodePublishVolume() calls. The CSI driver is responsible for parsing and validating the information passed in as VolumeContext. The following VolumeConext will be passed if podInfoOnMount is set to true. This list might grow, but the prefix will be used. "csi.storage.k8s.io/pod.name": pod.Name "csi.storage.k8s.io/pod.namespace": pod.Namespace "csi.storage.k8s.io/pod.uid": string(pod.UID) "csi.storage.k8s.io/ephemeral": "true" if the volume is an ephemeral inline volume defined by a CSIVolumeSource, otherwise "false"
+  
+  "csi.storage.k8s.io/ephemeral" is a new feature in Kubernetes 1.16. It is only required for drivers which support both the "Persistent" and "Ephemeral" VolumeLifecycleMode. Other drivers can leave pod info disabled and/or ignore this field. As Kubernetes 1.15 doesn't support this field, drivers can only support one mode when deployed on such a cluster and the deployment determines which mode that is, for example via a command line parameter of the driver.
+  
+  This field is immutable.
+-->
+- **podInfoOnMount** (boolean)
+  
+  如果设为 true，则 podInfoOnMount 表示在挂载操作期间这个 CSI 卷需要更多的 Pod 信息（例如 podName 和 podUID 等）。
+  如果设为 false，则挂载时将不传递 Pod 信息。
+  默认为 false。
+  CSI 驱动将 podInfoOnMount 指定为驱动部署的一部分。
+  如果为 true，Kubelet 将在 CSI NodePublishVolume() 调用中作为 VolumeContext 传递 Pod 信息。
+  CSI 驱动负责解析和校验作为 VolumeContext 传递进来的信息。
+  如果 podInfoOnMount 设为 true，将传递以下 VolumeConext。
+  此列表可能变大，但将使用前缀。
+  - "csi.storage.k8s.io/pod.name": pod.name
+  - "csi.storage.k8s.io/pod.namespace": pod.namespace
+  - "csi.storage.k8s.io/pod.uid": string(pod.UID)
+  - "csi.storage.k8s.io/ephemeral":
+    如果此卷是 CSIVolumeSource 定义的一个临时内联卷，则为 “true”，否则为 “false”
+  
+  “csi.storage.k8s.io/ephemeral” 是 Kubernetes 1.16 中一个新的功能特性。
+  只有同时支持 “Persistent” 和 “Ephemeral” VolumeLifecycleMode 的驱动，此字段才是必需的。
+  其他驱动可以保持禁用 Pod 信息或忽略此字段。
+  由于 Kubernetes 1.15 不支持此字段，所以在这类集群上部署驱动时，只能支持一种模式。
+  该部署就决定了是哪种模式，例如通过驱动的命令行参数。
+  
+  此字段不可变更。
+
+<!--
+- **requiresRepublish** (boolean)
+  RequiresRepublish indicates the CSI driver wants `NodePublishVolume` being periodically called to reflect any possible change in the mounted volume. This field defaults to false.
+  
+  Note: After a successful initial NodePublishVolume call, subsequent calls to NodePublishVolume should only update the contents of the volume. New mount points will not be seen by a running container.
+-->
+- **requiresRepublish** (boolean)
+  
+  requiresRepublish 表示 CSI 驱动想要 `NodePublishVolume` 被周期性地调用，
+  以反映已挂载卷中的任何可能的变化。
+  此字段默认为 false。
+  
+  注：成功完成对 NodePublishVolume 的初始调用后，对 NodePublishVolume 的后续调用只应更新卷的内容。
+  新的挂载点将不会被运行的容器察觉。
+
+<!--
+- **storageCapacity** (boolean)
+  If set to true, storageCapacity indicates that the CSI volume driver wants pod scheduling to consider the storage capacity that the driver deployment will report by creating CSIStorageCapacity objects with capacity information.
+  
+  The check can be enabled immediately when deploying a driver. In that case, provisioning new volumes with late binding will pause until the driver deployment has published some suitable CSIStorageCapacity object.
+  
+  Alternatively, the driver can be deployed with the field unset or false and it can be flipped later when storage capacity information has been published.
+  
+  This field was immutable in Kubernetes \<= 1.22 and now is mutable.
+-->
+- **storageCapacity** (boolean)
+  
+  如果设为 true，则 storageCapacity 表示 CSI 卷驱动希望 Pod 调度时考虑存储容量，
+  驱动部署将通过创建包含容量信息的 CSIStorageCapacity 对象来报告该存储容量。
+  
+  部署驱动时可以立即启用这个检查。
+  这种情况下，只有此驱动部署已发布某些合适的 CSIStorageCapacity 对象，
+  才会继续制备新的卷，然后进行绑定。
+  
+  换言之，可以在未设置此字段或此字段为 false 的情况下部署驱动，
+  并且可以在发布存储容量信息后再修改此字段。
+  
+  此字段在 Kubernetes 1.22 及更早版本中不可变更，但现在可以变更。
+
+<!--
+- **tokenRequests** ([]TokenRequest)
+  *Atomic: will be replaced during a merge*
+  
+  TokenRequests indicates the CSI driver needs pods' service account tokens it is mounting volume for to do necessary authentication. Kubelet will pass the tokens in VolumeContext in the CSI NodePublishVolume calls. The CSI driver should parse and validate the following VolumeContext: "csi.storage.k8s.io/
+  
+  Note: Audience in each TokenRequest should be different and at most one token is empty string. To receive a new token after expiry, RequiresRepublish can be used to trigger NodePublishVolume periodically.
+  <a name="TokenRequest"></a>
+  *TokenRequest contains parameters of a service account token.*
+-->
+- **tokenRequests** ([]TokenRequest)
+  
+  **原子性：将在合并期间被替换**
+  
+  tokenRequests 表示 CSI 驱动需要供挂载卷所用的 Pod 的服务帐户令牌，进行必要的鉴权。
+  Kubelet 将在 CSI NodePublishVolume 调用中传递 VolumeContext 中的令牌。
+  CSI 驱动应解析和校验以下 VolumeContext：
+
+  ```
+  "csi.storage.k8s.io/serviceAccount.tokens": {
+    "<audience>": {
+      "token": <token>,
+      "expirationTimestamp": <expiration timestamp in RFC3339>,
+    },
+    ...
+  }
+  ```
+
+  注：每个 tokenRequest 中的受众应该不同，且最多有一个令牌是空字符串。
+  要在令牌过期后接收一个新的令牌，requiresRepublish 可用于周期性地触发 NodePublishVolume。
+  
+  <a name="TokenRequest"></a>
+  **tokenRequest 包含一个服务帐户令牌的参数。**
+
+<!--
+  - **tokenRequests.audience** (string), required
+
+    Audience is the intended audience of the token in "TokenRequestSpec". It will default to the audiences of kube apiserver.
+
+  - **tokenRequests.expirationSeconds** (int64)
+
+    ExpirationSeconds is the duration of validity of the token in "TokenRequestSpec". It has the same default value of "ExpirationSeconds" in "TokenRequestSpec".
+-->  
+  - **tokenRequests.audience** (string)，必需
+    
+    audience 是 “TokenRequestSpec” 中令牌的目标受众。
+    它默认为 kube apiserver 的受众。
+  
+  - **tokenRequests.expirationSeconds** (int64)
+    
+    expirationSeconds 是 “TokenRequestSpec” 中令牌的有效期。
+    它具有与 “TokenRequestSpec” 中 “expirationSeconds” 相同的默认值。
+
+<!--
+- **volumeLifecycleModes** ([]string)
+
+  *Set: unique values will be kept during a merge*
+  
+  volumeLifecycleModes defines what kind of volumes this CSI volume driver supports. The default if the list is empty is "Persistent", which is the usage defined by the CSI specification and implemented in Kubernetes via the usual PV/PVC mechanism. The other mode is "Ephemeral". In this mode, volumes are defined inline inside the pod spec with CSIVolumeSource and their lifecycle is tied to the lifecycle of that pod. A driver has to be aware of this because it is only going to get a NodePublishVolume call for such a volume. For more information about implementing this mode, see https://kubernetes-csi.github.io/docs/ephemeral-local-volumes.html A driver can support one or more of these modes and more modes may be added in the future. This field is beta.
+  
+  This field is immutable.
+-->
+- **volumeLifecycleModes** ([]string)
+  
+  **集合：唯一值将在合并期间被保留**
+  
+  volumeLifecycleModes 定义这个 CSI 卷驱动支持哪种类别的卷。
+  如果列表为空，则默认值为 “Persistent”，这是 CSI 规范定义的用法，
+  并通过常用的 PV/PVC 机制在 Kubernetes 中实现。
+  另一种模式是 “Ephemeral”。
+  在这种模式下，在 Pod 规约中用 CSIVolumeSource 以内联方式定义卷，其生命周期与该 Pod 的生命周期相关联。
+  驱动必须感知到这一点，因为只有针对这种卷才会接收到 NodePublishVolume 调用。
+  有关实现此模式的更多信息，请参阅
+  https://kubernetes-csi.github.io/docs/ephemeral-local-volumes.html。
+  驱动可以支持其中一种或多种模式，将来可能会添加更多模式。
+  此字段处于 beta 阶段。
+  
+  此字段不可变更。
+
+## CSIDriverList {#CSIDriverList}
+
+<!--
+CSIDriverList is a collection of CSIDriver objects.
+-->
+CSIDriverList 是 CSIDriver 对象的集合。
+
+<hr>
+
+- **apiVersion**: storage.k8s.io/v1
+
+- **kind**: CSIDriverList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../config-and-storage-resources/csi-driver-v1#CSIDriver" >}}">CSIDriver</a>), required
+
+  items is the list of CSIDriver
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  
+  标准的列表元数据。
+  更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../config-and-storage-resources/csi-driver-v1#CSIDriver" >}}">CSIDriver</a>)，必需
+  
+  items 是 CSIDriver 的列表。
+
+<!--
+## Operations {#Operations}
+
+<hr>
+
+### `get` read the specified CSIDriver
+
+#### HTTP Request
+-->
+## 操作 {#Operations}
+
+<hr>
+
+### `get` 读取指定的 CSIDriver
+
+#### HTTP 请求
+
+GET /apis/storage.k8s.io/v1/csidrivers/{name}
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the CSIDriver
+
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  CSIDriver 的名称
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/csi-driver-v1#CSIDriver" >}}">CSIDriver</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind CSIDriver
+
+#### HTTP Request
+-->
+### `list` 列出或观测类别为 CSIDriver 的对象
+
+#### HTTP 请求
+
+GET /apis/storage.k8s.io/v1/csidrivers
+
+<!--
+#### Parameters
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/csi-driver-v1#CSIDriverList" >}}">CSIDriverList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a CSIDriver
+
+#### HTTP Request
+-->
+### `create` 创建 CSIDriver
+
+#### HTTP 请求
+
+POST /apis/storage.k8s.io/v1/csidrivers
+
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../config-and-storage-resources/csi-driver-v1#CSIDriver" >}}">CSIDriver</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../config-and-storage-resources/csi-driver-v1#CSIDriver" >}}">CSIDriver</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/csi-driver-v1#CSIDriver" >}}">CSIDriver</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/csi-driver-v1#CSIDriver" >}}">CSIDriver</a>): Created
+
+202 (<a href="{{< ref "../config-and-storage-resources/csi-driver-v1#CSIDriver" >}}">CSIDriver</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified CSIDriver
+
+#### HTTP Request
+-->
+### `update` 替换指定的 CSIDriver
+
+#### HTTP 请求
+
+PUT /apis/storage.k8s.io/v1/csidrivers/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the CSIDriver
+- **body**: <a href="{{< ref "../config-and-storage-resources/csi-driver-v1#CSIDriver" >}}">CSIDriver</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  CSIDriver 的名称
+
+- **body**: <a href="{{< ref "../config-and-storage-resources/csi-driver-v1#CSIDriver" >}}">CSIDriver</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/csi-driver-v1#CSIDriver" >}}">CSIDriver</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/csi-driver-v1#CSIDriver" >}}">CSIDriver</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified CSIDriver
+
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 CSIDriver
+
+#### HTTP 请求
+
+PATCH /apis/storage.k8s.io/v1/csidrivers/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the CSIDriver
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  CSIDriver 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/csi-driver-v1#CSIDriver" >}}">CSIDriver</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/csi-driver-v1#CSIDriver" >}}">CSIDriver</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a CSIDriver
+
+#### HTTP Request
+-->
+### `delete` 删除 CSIDriver
+
+#### HTTP 请求
+
+DELETE /apis/storage.k8s.io/v1/csidrivers/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the CSIDriver
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  CSIDriver 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/csi-driver-v1#CSIDriver" >}}">CSIDriver</a>): OK
+
+202 (<a href="{{< ref "../config-and-storage-resources/csi-driver-v1#CSIDriver" >}}">CSIDriver</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of CSIDriver
+
+#### HTTP Request
+-->
+### `deletecollection` 删除 CSIDriver 的集合
+
+#### HTTP 请求
+
+DELETE /apis/storage.k8s.io/v1/csidrivers
+
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **continue** (*in query*): string
+- **dryRun** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/csi-node-v1.md b/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/csi-node-v1.md
new file mode 100644
index 0000000000..a05152e1c5
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/csi-node-v1.md
@@ -0,0 +1,566 @@
+---
+api_metadata:
+  apiVersion: "storage.k8s.io/v1"
+  import: "k8s.io/api/storage/v1"
+  kind: "CSINode"
+content_type: "api_reference"
+description: "CSINode 包含节点上安装的所有 CSI 驱动有关的信息。"
+title: "CSINode"
+weight: 9
+---
+<!--
+api_metadata:
+  apiVersion: "storage.k8s.io/v1"
+  import: "k8s.io/api/storage/v1"
+  kind: "CSINode"
+content_type: "api_reference"
+description: "CSINode holds information about all CSI drivers installed on a node."
+title: "CSINode"
+weight: 9
+-->
+
+`apiVersion: storage.k8s.io/v1`
+
+`import "k8s.io/api/storage/v1"`
+
+## CSINode {#CSINode}
+<!--
+CSINode holds information about all CSI drivers installed on a node. CSI drivers do not need to create the CSINode object directly. As long as they use the node-driver-registrar sidecar container, the kubelet will automatically populate the CSINode object for the CSI driver as part of kubelet plugin registration. CSINode has the same name as a node. If the object is missing, it means either there are no CSI Drivers available on the node, or the Kubelet version is low enough that it doesn't create this object. CSINode has an OwnerReference that points to the corresponding node object.
+-->
+CSINode 包含节点上安装的所有 CSI 驱动有关的信息。CSI 驱动不需要直接创建 CSINode 对象。
+只要这些驱动使用 node-driver-registrar 边车容器，kubelet 就会自动为 CSI 驱动填充 CSINode 对象，
+作为 kubelet 插件注册操作的一部分。CSINode 的名称与节点名称相同。
+如果不存在此对象，则说明该节点上没有可用的 CSI 驱动或 Kubelet 版本太低无法创建该对象。
+CSINode 包含指向相应节点对象的 OwnerReference。
+
+<hr>
+
+- **apiVersion**: storage.k8s.io/v1
+
+- **kind**: CSINode
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  metadata.name must be the Kubernetes node name.
+
+- **spec** (<a href="{{< ref "../config-and-storage-resources/csi-node-v1#CSINodeSpec" >}}">CSINodeSpec</a>), required
+  spec is the specification of CSINode
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  metadata.name 必须是 Kubernetes 节点的名称。
+
+- **spec** (<a href="{{< ref "../config-and-storage-resources/csi-node-v1#CSINodeSpec" >}}">CSINodeSpec</a>)，必需
+
+  spec 是 CSINode 的规约。
+
+## CSINodeSpec {#CSINodeSpec}
+<!--
+CSINodeSpec holds information about the specification of all CSI drivers installed on a node
+-->
+CSINodeSpec 包含一个节点上安装的所有 CSI 驱动规约有关的信息。
+
+<hr>
+
+<!--
+- **drivers** ([]CSINodeDriver), required
+
+  *Patch strategy: merge on key `name`*
+  
+  drivers is a list of information of all CSI Drivers existing on a node. If all drivers in the list are uninstalled, this can become empty.
+
+  <a name="CSINodeDriver"></a>
+  *CSINodeDriver holds information about the specification of one CSI driver installed on a node*
+
+  - **drivers.name** (string), required
+
+    This is the name of the CSI driver that this object refers to. This MUST be the same name returned by the CSI GetPluginName() call for that driver.
+-->
+- **drivers** ([]CSINodeDriver)，必需
+
+  **补丁策略：按照键 `name` 合并**
+  
+  drivers 是节点上存在的所有 CSI 驱动的信息列表。如果列表中的所有驱动均被卸载，则此字段可以为空。
+  
+  <a name="CSINodeDriver"></a>
+  **CSINodeDriver 包含一个节点上安装的一个 CSI 驱动规约有关的信息。**
+  
+  - **drivers.name** (string)，必需
+
+    这是该对象引用的 CSI 驱动的名称。此字段值必须是针对该驱动由 CSI GetPluginName() 调用返回的相同名称。
+
+<!--
+  - **drivers.nodeID** (string), required
+    nodeID of the node from the driver point of view. This field enables Kubernetes to communicate with storage systems that do not share the same nomenclature for nodes. For example, Kubernetes may refer to a given node as "node1", but the storage system may refer to the same node as "nodeA". When Kubernetes issues a command to the storage system to attach a volume to a specific node, it can use this field to refer to the node name using the ID that the storage system will understand, e.g. "nodeA" instead of "node1". This field is required.
+-->  
+  - **drivers.nodeID** (string)，必需
+
+    从驱动角度来看，这是节点的 nodeID。
+    对于未与节点共享相同命名法的存储系统，此字段使得 Kubernetes 能够与之进行通信。
+    例如，Kubernetes 可能将给定节点视为 "node1"，但存储系统可以将同一节点视为 "nodeA"。
+    当 Kubernetes 向存储系统发出一条命令将一个卷挂接到特定的节点时，
+    它可以藉此字段使用存储系统所理解的 ID 引用节点名称，例如使用 “nodeA” 而不是 “node1”。
+    此字段是必需的。
+
+<!--
+  - **drivers.allocatable** (VolumeNodeResources)
+    allocatable represents the volume resources of a node that are available for scheduling. This field is beta.
+
+    <a name="VolumeNodeResources"></a>
+    *VolumeNodeResources is a set of resource limits for scheduling of volumes.*
+
+    - **drivers.allocatable.count** (int32)
+      Maximum number of unique volumes managed by the CSI driver that can be used on a node. A volume that is both attached and mounted on a node is considered to be used once, not twice. The same rule applies for a unique volume that is shared among multiple pods on the same node. If this field is not specified, then the supported number of volumes on this node is unbounded.
+-->  
+  - **drivers.allocatable** (VolumeNodeResources)
+
+    allocatable 表示一个节点上可供调度的卷资源。此字段处于 beta 阶段。
+    
+    <a name="VolumeNodeResources"></a>
+    **VolumeNodeResources 是调度卷时所用的一组资源限制。**
+    
+    - **drivers.allocatable.count** (int32)
+
+      这是一个节点上可使用的、由 CSI 驱动管理的独立卷个数的上限。
+      挂接并挂载到一个节点上的卷被视为被使用一次，不是两次。
+      相同的规则适用于同一个节点上多个 Pod 之间共享的同一个卷。
+      如果未指定此字段，则该节点上支持的卷数量是无限的。
+
+<!--
+  - **drivers.topologyKeys** ([]string)
+
+    topologyKeys is the list of keys supported by the driver. When a driver is initialized on a cluster, it provides a set of topology keys that it understands (e.g. "company.com/zone", "company.com/region"). When a driver is initialized on a node, it provides the same topology keys along with values. Kubelet will expose these topology keys as labels on its own node object. When Kubernetes does topology aware provisioning, it can use this list to determine which labels it should retrieve from the node object and pass back to the driver. It is possible for different nodes to use different topology keys. This can be empty if driver does not support topology.
+-->  
+  - **drivers.topologyKeys** ([]string)
+
+    topologyKeys 是驱动支持的键的列表。
+    在集群上初始化一个驱动时，该驱动将提供一组自己理解的拓扑键
+    （例如 “company.com/zone”、“company.com/region”）。
+    在一个节点上初始化一个驱动时，该驱动将提供相同的拓扑键和值。
+    Kubelet 将在其自己的节点对象上将这些拓扑键暴露为标签。
+    当 Kubernetes 进行拓扑感知的制备时，可以使用此列表决定应从节点对象中检索哪些标签并传回驱动。
+    不同的节点可以使用不同的拓扑键。
+    如果驱动不支持拓扑，则此字段可以为空。
+
+## CSINodeList {#CSINodeList}
+<!--
+CSINodeList is a collection of CSINode objects.
+-->
+CSINodeList 是 CSINode 对象的集合。
+
+<hr>
+
+- **apiVersion**: storage.k8s.io/v1
+
+- **kind**: CSINodeList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../config-and-storage-resources/csi-node-v1#CSINode" >}}">CSINode</a>), required
+  items is the list of CSINode
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  标准的列表元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../config-and-storage-resources/csi-node-v1#CSINode" >}}">CSINode</a>)，必需
+
+  items 是 CSINode 的列表。
+
+<!--
+## Operations {#Operations}
+<hr>
+### `get` read the specified CSINode
+#### HTTP Request
+-->
+## 操作 {#Operations}
+
+<hr>
+
+### `get` 读取指定的 CSINode
+#### HTTP 请求
+
+GET /apis/storage.k8s.io/v1/csinodes/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the CSINode
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+
+  CSINode 的名称
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/csi-node-v1#CSINode" >}}">CSINode</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind CSINode
+#### HTTP Request
+-->
+### `list` 列出或观测类别为 CSINode 的对象
+#### HTTP 请求
+
+GET /apis/storage.k8s.io/v1/csinodes
+
+<!--
+#### Parameters
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/csi-node-v1#CSINodeList" >}}">CSINodeList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a CSINode
+#### HTTP Request
+-->
+### `create` 创建 CSINode
+#### HTTP 请求
+
+POST /apis/storage.k8s.io/v1/csinodes
+
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../config-and-storage-resources/csi-node-v1#CSINode" >}}">CSINode</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **body**: <a href="{{< ref "../config-and-storage-resources/csi-node-v1#CSINode" >}}">CSINode</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/csi-node-v1#CSINode" >}}">CSINode</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/csi-node-v1#CSINode" >}}">CSINode</a>): Created
+
+202 (<a href="{{< ref "../config-and-storage-resources/csi-node-v1#CSINode" >}}">CSINode</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified CSINode
+#### HTTP Request
+-->
+### `update` 替换指定的 CSINode
+#### HTTP 请求
+
+PUT /apis/storage.k8s.io/v1/csinodes/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the CSINode
+- **body**: <a href="{{< ref "../config-and-storage-resources/csi-node-v1#CSINode" >}}">CSINode</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+
+  CSINode 的名称
+
+- **body**: <a href="{{< ref "../config-and-storage-resources/csi-node-v1#CSINode" >}}">CSINode</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/csi-node-v1#CSINode" >}}">CSINode</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/csi-node-v1#CSINode" >}}">CSINode</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified CSINode
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 CSINode
+#### HTTP 请求
+
+PATCH /apis/storage.k8s.io/v1/csinodes/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the CSINode
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+
+  CSINode 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/csi-node-v1#CSINode" >}}">CSINode</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/csi-node-v1#CSINode" >}}">CSINode</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a CSINode
+#### HTTP Request
+-->
+### `delete` 删除 CSINode
+#### HTTP 请求
+DELETE /apis/storage.k8s.io/v1/csinodes/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the CSINode
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+
+  CSINode 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/csi-node-v1#CSINode" >}}">CSINode</a>): OK
+
+202 (<a href="{{< ref "../config-and-storage-resources/csi-node-v1#CSINode" >}}">CSINode</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of CSINode
+#### HTTP Request
+-->
+### `deletecollection` 删除 CSINode 的集合
+#### HTTP 请求
+DELETE /apis/storage.k8s.io/v1/csinodes
+
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **continue** (*in query*): string
+- **dryRun** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+-->
+#### 参数
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
\ No newline at end of file
diff --git a/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/csi-storage-capacity-v1.md b/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/csi-storage-capacity-v1.md
new file mode 100644
index 0000000000..37fb580127
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/csi-storage-capacity-v1.md
@@ -0,0 +1,685 @@
+---
+api_metadata:
+  apiVersion: "storage.k8s.io/v1"
+  import: "k8s.io/api/storage/v1"
+  kind: "CSIStorageCapacity"
+content_type: "api_reference"
+description: "CSIStorageCapacity 存储一个 CSI GetCapacity 调用的结果。"
+title: "CSIStorageCapacity"
+weight: 10
+---
+<!--
+api_metadata:
+  apiVersion: "storage.k8s.io/v1"
+  import: "k8s.io/api/storage/v1"
+  kind: "CSIStorageCapacity"
+content_type: "api_reference"
+description: "CSIStorageCapacity stores the result of one CSI GetCapacity call."
+title: "CSIStorageCapacity"
+weight: 10
+-->
+
+`apiVersion: storage.k8s.io/v1`
+
+`import "k8s.io/api/storage/v1"`
+
+## CSIStorageCapacity {#CSIStorageCapacity}
+
+<!--
+CSIStorageCapacity stores the result of one CSI GetCapacity call. For a given StorageClass, this describes the available capacity in a particular topology segment.  This can be used when considering where to instantiate new PersistentVolumes.
+For example this can express things like: - StorageClass "standard" has "1234 GiB" available in "topology.kubernetes.io/zone=us-east1" - StorageClass "localssd" has "10 GiB" available in "kubernetes.io/hostname=knode-abc123"
+The following three cases all imply that no capacity is available for a certain combination: - no object exists with suitable topology and storage class name - such an object exists, but the capacity is unset - such an object exists, but the capacity is zero
+-->
+CSIStorageCapacity 存储一个 CSI GetCapacity 调用的结果。
+对于给定的 StorageClass，此结构描述了特定拓扑段中可用的容量。
+当考虑在哪里实例化新的 PersistentVolume 时可以使用此项。
+
+例如，此结构可以描述如下内容：
+
+- “standard” 的 StorageClass 容量为 “1234 GiB”，可用于 “topology.kubernetes.io/zone=us-east1”
+- “localssd” 的 StorageClass 容量为 “10 GiB”，可用于 “kubernetes.io/hostname=knode-abc123”
+
+以下三种情况均暗示了某些组合没有可用的容量：
+
+- 不存在拓扑和存储类名称合适的对象  
+- 这种对象存在，但容量未设置  
+- 这种对象存在，但容量为零
+
+<!--
+The producer of these objects can decide which approach is more suitable.
+They are consumed by the kube-scheduler when a CSI driver opts into capacity-aware scheduling with CSIDriverSpec.StorageCapacity. The scheduler compares the MaximumVolumeSize against the requested size of pending volumes to filter out unsuitable nodes. If MaximumVolumeSize is unset, it falls back to a comparison against the less precise Capacity. If that is also unset, the scheduler assumes that capacity is insufficient and tries some other node.
+-->
+这些对象的制作方可以决定哪种方法更合适。
+
+当 CSI 驱动选择使用 CSIDriverSpec.StorageCapacity 进行容量感知调度时，kube-scheduler 会使用这些对象。
+该调度器将 MaximumVolumeSize 与 pending 卷的请求大小进行比较，以过滤掉不合适的节点。
+如果未设置 MaximumVolumeSize，则回退为与不太精确的容量（Capacity）进行比较。
+如果还是未设置，则该调度器假定容量不足并尝试某些其他节点。
+
+<hr>
+
+- **apiVersion**: storage.k8s.io/v1
+
+- **kind**: CSIStorageCapacity
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  Standard object's metadata. The name has no particular meaning. It must be be a DNS subdomain (dots allowed, 253 characters). To ensure that there are no conflicts with other CSI drivers on the cluster, the recommendation is to use csisc-\<uuid>, a generated name, or a reverse-domain name which ends with the unique CSI driver name.
+  Objects are namespaced.
+  More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  
+  标准的对象元数据。
+  此名称没有特定的含义。
+  它必须是 DNS 子域名（允许英文句点，最多 253 个字符）。
+  为了确保与集群上的其他 CSI 驱动没有冲突，建议使用一个生成的名称 csisc-\<uuid>，
+  或使用以唯一 CSI 驱动名称结尾的反向域名。
+  
+  这些对象是有命名空间的。
+  
+  更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+<!--
+- **storageClassName** (string), required
+  The name of the StorageClass that the reported capacity applies to. It must meet the same requirements as the name of a StorageClass object (non-empty, DNS subdomain). If that object no longer exists, the CSIStorageCapacity object is obsolete and should be removed by its creator. This field is immutable.
+- **capacity** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+  Capacity is the value reported by the CSI driver in its GetCapacityResponse for a GetCapacityRequest with topology and parameters that match the previous fields.
+  The semantic is currently (CSI spec 1.2) defined as: The available capacity, in bytes, of the storage that can be used to provision volumes. If not set, that information is currently unavailable.
+-->
+- **storageClassName** (string)，必需
+  
+  这是已报告容量所应用到的 StorageClass 的名称。
+  它必须满足与 StorageClass 对象名称相同的要求（非空，DNS 子域名）。
+  如果该对象不再存在，则 CSIStorageCapacity 对象将被废弃且应由创建者移除。
+  此字段不可变更。
+
+- **capacity** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+  
+  capacity 是 CSI 驱动在其 GetCapacityResponse 中为 GetCapacityRequest 报告的值，其拓扑和参数与之前的字段匹配。
+  
+  该语义目前（CSI 规范 1.2）定义为：可用于制备卷的可用存储容量（单位为字节）。
+  如果未设置，则该信息目前不可用。
+
+<!--
+- **maximumVolumeSize** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+  MaximumVolumeSize is the value reported by the CSI driver in its GetCapacityResponse for a GetCapacityRequest with topology and parameters that match the previous fields.
+  This is defined since CSI spec 1.4.0 as the largest size that may be used in a CreateVolumeRequest.capacity_range.required_bytes field to create a volume with the same parameters as those in GetCapacityRequest. The corresponding value in the Kubernetes API is ResourceRequirements.Requests in a volume claim.
+-->
+- **maximumVolumeSize** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+  
+  maximumVolumeSize 是 CSI 驱动在其 GetCapacityResponse 中为 GetCapacityRequest 报告的值，其拓扑和参数与之前的字段匹配。
+  
+  自从 CSI 规范 1.4.0 起，这定义为 `CreateVolumeRequest.capacity_range.required_bytes` 字段中可以使用的最大值，
+  以便用 GetCapacityRequest 中相同的参数创建一个卷。
+  Kubernetes API 中的相应值是卷声明中的 ResourceRequirements.Requests。
+
+<!--
+- **nodeTopology** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+  NodeTopology defines which nodes have access to the storage for which capacity was reported. If not set, the storage is not accessible from any node in the cluster. If empty, the storage is accessible from all nodes. This field is immutable.
+-->
+- **nodeTopology** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+  
+  nodeTopology 定义了哪些节点有权访问已报告容量的存储。
+  如果未设置，则不能从集群中的任意节点访问此存储。
+  如果留空，则可以从所有节点访问此存储。此字段不可变更。
+
+## CSIStorageCapacityList {#CSIStorageCapacityList}
+
+<!--
+CSIStorageCapacityList is a collection of CSIStorageCapacity objects.
+-->
+CSIStorageCapacityList 是 CSIStorageCapacity 对象的集合。
+
+<hr>
+
+- **apiVersion**: storage.k8s.io/v1
+
+- **kind**: CSIStorageCapacityList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+- **items** ([]<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>), required
+  *Map: unique values on key name will be kept during a merge*
+  Items is the list of CSIStorageCapacity objects.
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  
+  标准的列表元数据。
+  更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>)，必需
+  
+  **映射：有关键名称的唯一值将在合并期间被保留**
+  
+  items 是 CSIStorageCapacity 对象的列表。
+
+<!--
+## Operations {#Operations}
+<hr>
+### `get` read the specified CSIStorageCapacity
+#### HTTP Request
+-->
+## 操作 {#Operations}
+
+<hr>
+
+### `get` 读取指定的 CSIStorageCapacity
+
+#### HTTP 请求
+
+GET /apis/storage.k8s.io/v1/namespaces/{namespace}/csistoragecapacities/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the CSIStorageCapacity
+- **namespace** (*in path*): string, required
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  CSIStorageCapacity 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind CSIStorageCapacity
+#### HTTP Request
+-->
+### `list` 列出或观测类别为 CSIStorageCapacity 的对象
+
+#### HTTP 请求
+
+GET /apis/storage.k8s.io/v1/namespaces/{namespace}/csistoragecapacities
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacityList" >}}">CSIStorageCapacityList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind CSIStorageCapacity
+#### HTTP Request
+-->
+### `list` 列出或观测类别为 CSIStorageCapacity 的对象
+
+#### HTTP 请求
+
+GET /apis/storage.k8s.io/v1/csistoragecapacities
+
+<!--
+#### Parameters
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacityList" >}}">CSIStorageCapacityList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a CSIStorageCapacity
+#### HTTP Request
+-->
+### `create` 创建 CSIStorageCapacity
+
+#### HTTP 请求
+
+POST /apis/storage.k8s.io/v1/namespaces/{namespace}/csistoragecapacities
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): Created
+
+202 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified CSIStorageCapacity
+#### HTTP Request
+-->
+### `update` 替换指定的 CSIStorageCapacity
+
+#### HTTP 请求
+
+PUT /apis/storage.k8s.io/v1/namespaces/{namespace}/csistoragecapacities/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the CSIStorageCapacity
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  CSIStorageCapacity 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified CSIStorageCapacity
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 CSIStorageCapacity
+
+#### HTTP 请求
+
+PATCH /apis/storage.k8s.io/v1/namespaces/{namespace}/csistoragecapacities/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the CSIStorageCapacity
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  CSIStorageCapacity 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/csi-storage-capacity-v1#CSIStorageCapacity" >}}">CSIStorageCapacity</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a CSIStorageCapacity
+#### HTTP Request
+-->
+### `delete` 删除 CSIStorageCapacity
+
+#### HTTP 请求
+
+DELETE /apis/storage.k8s.io/v1/namespaces/{namespace}/csistoragecapacities/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the CSIStorageCapacity
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  CSIStorageCapacity 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of CSIStorageCapacity
+#### HTTP Request
+-->
+### `deletecollection` 删除 CSIStorageCapacity 的集合
+
+#### HTTP 请求
+
+DELETE /apis/storage.k8s.io/v1/namespaces/{namespace}/csistoragecapacities
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **continue** (*in query*): string
+- **dryRun** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-claim-v1.md b/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-claim-v1.md
new file mode 100644
index 0000000000..cfe2fd37ab
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-claim-v1.md
@@ -0,0 +1,993 @@
+---
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "PersistentVolumeClaim"
+content_type: "api_reference"
+description: "PersistentVolumeClaim 是用户针对一个持久卷的请求和申领。"
+title: "PersistentVolumeClaim"
+weight: 4
+---
+<!--
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "PersistentVolumeClaim"
+content_type: "api_reference"
+description: "PersistentVolumeClaim is a user's request for and claim to a persistent volume."
+title: "PersistentVolumeClaim"
+weight: 4
+-->
+
+`apiVersion: v1`
+
+`import "k8s.io/api/core/v1"`
+
+## PersistentVolumeClaim {#PersistentVolumeClaim}
+<!--
+PersistentVolumeClaim is a user's request for and claim to a persistent volume
+-->
+PersistentVolumeClaim 是用户针对一个持久卷的请求和申领。
+
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: PersistentVolumeClaim
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaimSpec" >}}">PersistentVolumeClaimSpec</a>)
+  spec defines the desired characteristics of a volume requested by a pod author. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  
+  标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaimSpec" >}}">PersistentVolumeClaimSpec</a>)
+  
+  spec 定义 Pod 作者所请求的卷的预期特征。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+
+<!--
+- **status** (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaimStatus" >}}">PersistentVolumeClaimStatus</a>)
+  status represents the current information/status of a persistent volume claim. Read-only. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+-->
+- **status** (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaimStatus" >}}">PersistentVolumeClaimStatus</a>)
+  
+  status 表示一个持久卷申领的当前信息/状态。只读。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+
+## PersistentVolumeClaimSpec {#PersistentVolumeClaimSpec}
+<!--
+PersistentVolumeClaimSpec describes the common attributes of storage devices and allows a Source for provider-specific attributes
+<hr>
+- **accessModes** ([]string)
+  accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
+
+- **selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+  selector is a label query over volumes to consider for binding.
+-->
+PersistentVolumeClaimSpec 描述存储设备的常用参数，并支持通过 source 来设置特定于提供商的属性。
+
+<hr>
+
+- **accessModes** ([]string)
+  
+  accessModes 包含卷应具备的预期访问模式。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/persistent-volumes#access-modes-1
+
+- **selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+  
+  selector 是在绑定时对卷进行选择所执行的标签查询。
+
+<!--
+- **resources** (ResourceRequirements)
+  resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources
+
+  <a name="ResourceRequirements"></a>
+  *ResourceRequirements describes the compute resource requirements.*
+
+  - **resources.limits** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+    Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+  - **resources.requests** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+    Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+-->
+- **resources** (ResourceRequirements)
+  
+  resources 表示卷应拥有的最小资源。
+  如果启用了 RecoverVolumeExpansionFailure 功能特性，则允许用户指定这些资源要求，
+  此值必须低于之前的值，但必须高于申领的状态字段中记录的容量。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/persistent-volumes#resources
+  
+  <a name="ResourceRequirements"></a> 
+  **ResourceRequirements 描述计算资源要求。**
+  
+  - **resources.limits** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+    
+    limits 描述允许的最大计算资源量。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/configuration/manage-resources-containers/
+  
+  - **resources.requests** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+    
+    requests 描述所需的最小计算资源量。
+    如果针对容器省略 requests，则在显式指定的情况下默认为 limits，否则为具体实现所定义的值。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/configuration/manage-resources-containers/
+
+<!--
+- **volumeName** (string)
+  volumeName is the binding reference to the PersistentVolume backing this claim.
+
+- **storageClassName** (string)
+  storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
+
+- **volumeMode** (string)
+  volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.
+-->
+- **volumeName** (string)
+  
+  volumeName 是对此申领所对应的 PersistentVolume 的绑定引用。
+
+- **storageClassName** (string)
+  
+  storageClassName 是此申领所要求的 StorageClass 名称。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/persistent-volumes#class-1
+
+- **volumeMode** (string)
+  
+  volumeMode 定义申领需要哪种类别的卷。当申领规约中未包含此字段时，意味着取值为 Filesystem。
+
+<!--
+### Alpha level
+
+- **dataSource** (<a href="{{< ref "../common-definitions/typed-local-object-reference#TypedLocalObjectReference" >}}">TypedLocalObjectReference</a>)
+
+  dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field.
+-->
+### Alpha 级别
+- **dataSource** (<a href="{{< ref "../common-definitions/typed-local-object-reference#TypedLocalObjectReference" >}}">TypedLocalObjectReference</a>)
+  
+  dataSource 字段可用于二选一：
+
+  * 现有的 VolumeSnapshot 对象（snapshot.storage.k8s.io/VolumeSnapshot）
+
+  * 现有的 PVC (PersistentVolumeClaim)
+  
+  如果制备器或外部控制器可以支持指定的数据源，则它将根据指定数据源的内容创建新的卷。
+  如果 AnyVolumeDataSource 特性门控被启用，此字段的内容将始终与 dataSourceRef 字段内容相同。
+
+<!--
+- **dataSourceRef** (<a href="{{< ref "../common-definitions/typed-local-object-reference#TypedLocalObjectReference" >}}">TypedLocalObjectReference</a>)
+
+  dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef
+    allows any non-core object, as well as PersistentVolumeClaim objects.
+  * While DataSource ignores disallowed values (dropping them), DataSourceRef
+    preserves all values, and generates an error if a disallowed value is
+    specified.
+  (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.
+-->
+- **dataSourceRef** (<a href="{{< ref "../common-definitions/typed-local-object-reference#TypedLocalObjectReference" >}}">TypedLocalObjectReference</a>)
+  
+  dataSourceRef 指定一个对象，当需要非空卷时，可以使用它来为卷填充数据。
+  此字段值可以是来自非空 API 组（非核心对象）的一个本地对象，或一个 PersistentVolumeClaim 对象。
+  如果设置了此字段，则仅当所指定对象的类型与所安装的某些卷填充器或动态制备器匹配时，卷绑定才会成功。
+  此字段将替换 dataSource 字段的功能，因此如果两个字段非空，其取值必须相同。
+  为了向后兼容，如果其中一个字段为空且另一个字段非空，
+  则两个字段（dataSource 和 dataSourceRef）将被自动设为相同的值。
+  dataSource 和 dataSourceRef 之间有两个重要的区别：
+
+  * dataSource 仅允许两个特定类型的对象，而 dataSourceRef 允许设置任何非核心对象以及 PersistentVolumeClaim 对象。
+  
+  * dataSource 忽略不允许的值（这类值会被丢弃），dataSourceRef 保留所有值并在指定不允许的值时产生错误。
+  
+  （Beta）使用此字段需要启用 AnyVolumeDataSource 特性门控。
+
+## PersistentVolumeClaimStatus {#PersistentVolumeClaimStatus}
+<!--
+PersistentVolumeClaimStatus is the current status of a persistent volume claim.
+
+<hr>
+
+- **accessModes** ([]string)
+  accessModes contains the actual access modes the volume backing the PVC has. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
+-->
+PersistentVolumeClaimStatus 是持久卷申领的当前状态。
+
+<hr>
+
+- **accessModes** ([]string)
+  
+  accessModes 包含支持 PVC 的卷所具有的实际访问模式。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/persistent-volumes#access-modes-1
+
+<!--
+- **allocatedResources** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+  allocatedResources is the storage resource within AllocatedResources tracks the capacity allocated to a PVC. It may be larger than the actual capacity when a volume expansion operation is requested. For storage quota, the larger value from allocatedResources and PVC.spec.resources is used. If allocatedResources is not set, PVC.spec.resources alone is used for quota calculation. If a volume expansion capacity request is lowered, allocatedResources is only lowered if there are no expansion operations in progress and if the actual volume capacity is equal or lower than the requested capacity. This is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.
+-->
+- **allocatedResources** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+  
+  allocatedResources 跟踪分配给 PVC 的容量。
+  当出现卷扩充操作请求时，此字段可能大于实际的容量。
+  就存储配额而言，将使用 allocatedResources 和 PVC.spec.resources 二者中的更大值。
+  如果未设置 allocatedResources，则 PVC.spec.resources 单独用于配额计算。
+  如果减小一个卷扩充容量请求，则仅当没有正在进行的扩充操作且实际卷容量等于或小于请求的容量时，
+  才会减小 allocatedResources。
+  这是一个 Alpha 字段，需要启用 RecoverVolumeExpansionFailure 功能特性。
+
+<!--
+- **capacity** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+  capacity represents the actual resources of the underlying volume.
+-->
+- **capacity** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+  
+  capacity 表示底层卷的实际资源。
+
+<!--
+- **conditions** ([]PersistentVolumeClaimCondition)
+  *Patch strategy: merge on key `type`*
+  
+  conditions is the current Condition of persistent volume claim. If underlying persistent volume is being resized then the Condition will be set to 'ResizeStarted'.
+
+  <a name="PersistentVolumeClaimCondition"></a>
+  *PersistentVolumeClaimCondition contails details about state of pvc*
+-->
+- **conditions** ([]PersistentVolumeClaimCondition)
+  
+  **补丁策略：按照键 `type` 合并**
+  
+  conditions 是持久卷声明的当前的状况。
+  如果正在调整底层持久卷的大小，则状况将被设为 “ResizeStarted”。
+  
+  <a name="PersistentVolumeClaimCondition"></a> 
+  **PersistentVolumeClaimCondition 包含有关 PVC 状态的详细信息。**
+
+<!--
+  - **conditions.status** (string), required
+  - **conditions.type** (string), required
+  - **conditions.lastProbeTime** (Time)
+    lastProbeTime is the time we probed the condition.
+
+    <a name="Time"></a>
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+-->  
+  - **conditions.status** (string)，必需
+  
+  - **conditions.type** (string)，必需
+  
+  - **conditions.lastProbeTime** (Time)
+    
+    lastProbeTime 是我们探测 PVC 状况的时间。
+    
+    <a name="Time"></a> 
+    **Time 是 time.Time 的包装类，支持正确地序列化为 YAML 和 JSON。
+    为 time 包提供的许多工厂方法提供了包装类。**
+
+<!--
+  - **conditions.lastTransitionTime** (Time)
+    lastTransitionTime is the time the condition transitioned from one status to another.
+
+    <a name="Time"></a>
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+
+  - **conditions.message** (string)
+    message is the human-readable message indicating details about last transition.
+
+  - **conditions.reason** (string)
+    reason is a unique, this should be a short, machine understandable string that gives the reason for condition's last transition. If it reports "ResizeStarted" that means the underlying persistent volume is being resized.
+-->  
+  - **conditions.lastTransitionTime** (Time)
+    
+    lastTransitionTime 是状况从一个状态转换为另一个状态的时间。
+    
+    <a name="Time"></a> 
+    **Time 是 time.Time 的包装类，支持正确地序列化为 YAML 和 JSON。
+    为 time 包提供的许多工厂方法提供了包装类。**
+  
+  - **conditions.message** (string)
+    
+    message 是人类可读的消息，指示有关上一次转换的详细信息。
+  
+  - **conditions.reason** (string)
+    
+    reason 是唯一的，它应该是一个机器可理解的简短字符串，指明上次状况转换的原因。
+    如果它报告 “ResizeStarted”，则意味着正在调整底层持久卷的大小。
+
+<!--
+- **phase** (string)
+  phase represents the current phase of PersistentVolumeClaim.
+  
+- **resizeStatus** (string)
+  resizeStatus stores status of resize operation. ResizeStatus is not set by default but when expansion is complete resizeStatus is set to empty string by resize controller or kubelet. This is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.
+-->
+- **phase** (string)
+  
+  phase 表示 PersistentVolumeClaim 的当前阶段。
+
+- **resizeStatus** (string)
+  
+  resizeStatus 存储大小调整操作的状态。默认不设置 resizeStatus，但在扩充完成时，
+  resizeStatus 将由大小调整控制器或 kubelet 设为空。
+  这是一个 Alpha 字段，需要启用 RecoverVolumeExpansionFailure 功能特性。
+
+## PersistentVolumeClaimList {#PersistentVolumeClaimList}
+<!--
+PersistentVolumeClaimList is a list of PersistentVolumeClaim items.
+-->
+PersistentVolumeClaimList 是 PersistentVolumeClaim 各项的列表。
+
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: PersistentVolumeClaimList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+- **items** ([]<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>), required
+  items is a list of persistent volume claims. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  
+  标准的列表元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+- **items** ([]<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>)，必需
+  
+  items 是持久卷申领的列表。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+
+<!--
+## Operations {#Operations}
+<hr>
+### `get` read the specified PersistentVolumeClaim
+#### HTTP Request
+-->
+## 操作 {#Operations}
+<hr>
+
+### `get` 读取指定的 PersistentVolumeClaim
+#### HTTP 请求
+GET /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PersistentVolumeClaim
+- **namespace** (*in path*): string, required
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+  
+  PersistentVolumeClaim 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>): OK
+
+401: Unauthorized
+
+<!--
+### `get` read status of the specified PersistentVolumeClaim
+#### HTTP Request
+-->
+### `get` 读取指定的 PersistentVolumeClaim 的状态
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PersistentVolumeClaim
+- **namespace** (*in path*): string, required
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+  
+  PersistentVolumeClaim 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind PersistentVolumeClaim
+#### HTTP Request
+-->
+### `list` 列出或观测类别为 PersistentVolumeClaim 的对象
+#### HTTP 请求
+GET /api/v1/namespaces/{namespace}/persistentvolumeclaims
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaimList" >}}">PersistentVolumeClaimList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind PersistentVolumeClaim
+#### HTTP Request
+-->
+### `list` 列出或观测类别为 PersistentVolumeClaim 的对象
+#### HTTP 请求
+GET /api/v1/persistentvolumeclaims
+
+<!--
+#### Parameters
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+- **allowWatchBookmarks** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaimList" >}}">PersistentVolumeClaimList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a PersistentVolumeClaim
+#### HTTP Request
+-->
+### `create` 创建 PersistentVolumeClaim
+#### HTTP 请求
+POST /api/v1/namespaces/{namespace}/persistentvolumeclaims
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>): Created
+
+202 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified PersistentVolumeClaim
+#### HTTP Request
+-->
+### `update` 替换指定的 PersistentVolumeClaim
+#### HTTP 请求
+PUT /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PersistentVolumeClaim
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+  
+  PersistentVolumeClaim 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>): Created
+
+401: Unauthorized
+
+<!--
+### `update` replace status of the specified PersistentVolumeClaim
+#### HTTP Request
+-->
+### `update` 替换指定的 PersistentVolumeClaim 的状态
+#### HTTP 请求
+PUT /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PersistentVolumeClaim
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+  
+  PersistentVolumeClaim 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified PersistentVolumeClaim
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 PersistentVolumeClaim
+#### HTTP 请求
+PATCH /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PersistentVolumeClaim
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+  
+  PersistentVolumeClaim 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update status of the specified PersistentVolumeClaim
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 PersistentVolumeClaim 的状态
+#### HTTP 请求
+PATCH /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PersistentVolumeClaim
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+  
+  PersistentVolumeClaim 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a PersistentVolumeClaim
+#### HTTP Request
+-->
+### `delete` 删除 PersistentVolumeClaim
+#### HTTP 请求
+DELETE /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PersistentVolumeClaim
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+  
+  PersistentVolumeClaim 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>): OK
+
+202 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of PersistentVolumeClaim
+#### HTTP Request
+-->
+### `deletecollection` 删除 PersistentVolumeClaim 的集合
+#### HTTP 请求
+DELETE /api/v1/namespaces/{namespace}/persistentvolumeclaims
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **continue** (*in query*): string
+- **dryRun** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+-->
+#### 参数
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-v1.md b/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-v1.md
new file mode 100644
index 0000000000..32cdd21d49
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-v1.md
@@ -0,0 +1,2180 @@
+---
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "PersistentVolume"
+content_type: "api_reference"
+description: "PersistentVolume (PV) 是管理员制备的一个存储资源。"
+title: "PersistentVolume"
+weight: 5
+---
+<!--
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "PersistentVolume"
+content_type: "api_reference"
+description: "PersistentVolume (PV) is a storage resource provisioned by an administrator."
+title: "PersistentVolume"
+weight: 5
+-->
+
+`apiVersion: v1`
+
+`import "k8s.io/api/core/v1"`
+
+## PersistentVolume {#PersistentVolume}
+<!--
+PersistentVolume (PV) is a storage resource provisioned by an administrator. It is analogous to a node. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes
+-->
+PersistentVolume (PV) 是管理员制备的一个存储资源。它类似于一个节点。更多信息：
+https://kubernetes.io/zh-cn/docs/concepts/storage/persistent-volumes
+
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: PersistentVolume
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolumeSpec" >}}">PersistentVolumeSpec</a>)
+  spec defines a specification of a persistent volume owned by the cluster. Provisioned by an administrator. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistent-volumes
+
+- **status** (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolumeStatus" >}}">PersistentVolumeStatus</a>)
+  status represents the current information/status for the persistent volume. Populated by the system. Read-only. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistent-volumes
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolumeSpec" >}}">PersistentVolumeSpec</a>)
+
+  spec 定义了集群所拥有的持久卷的规约。由管理员进行制备。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/persistent-volumes#persistent-volumes
+
+- **status** (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolumeStatus" >}}">PersistentVolumeStatus</a>)
+
+  status 表示持久卷的当前信息/状态。该值由系统填充，只读。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/persistent-volumes#persistent-volumes
+
+## PersistentVolumeSpec {#PersistentVolumeSpec}
+<!--
+PersistentVolumeSpec is the specification of a persistent volume.
+-->
+PersistentVolumeSpec 是持久卷的规约。
+
+<hr>
+
+<!--
+- **accessModes** ([]string)
+  accessModes contains all ways the volume can be mounted. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes
+
+- **capacity** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+  capacity is the description of the persistent volume's resources and capacity. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#capacity
+-->
+- **accessModes** ([]string)
+
+  accessModes 包含可以挂载卷的所有方式。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/persistent-volumes#access-modes
+
+- **capacity** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+  capacity 描述持久卷的资源和容量。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/persistent-volumes#capacity
+
+<!--
+- **claimRef** (<a href="{{< ref "../common-definitions/object-reference#ObjectReference" >}}">ObjectReference</a>)
+  claimRef is part of a bi-directional binding between PersistentVolume and PersistentVolumeClaim. Expected to be non-nil when bound. claim.VolumeName is the authoritative bind between PV and PVC. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#binding
+
+- **mountOptions** ([]string)
+  mountOptions is the list of mount options, e.g. ["ro", "soft"]. Not validated - mount will simply fail if one is invalid. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes/#mount-options
+-->
+- **claimRef** (<a href="{{< ref "../common-definitions/object-reference#ObjectReference" >}}">ObjectReference</a>)
+
+  claimRef 是 PersistentVolume 和 PersistentVolumeClaim 之间双向绑定的一部分。
+  预期在绑定时为非空。claim.VolumeName 是在 PV 和 PVC 间绑定关系的正式确认。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/persistent-volumes#binding
+
+- **mountOptions** ([]string)
+
+  mountOptions 是挂载选项的列表，例如 ["ro", "soft"]。
+  针对此字段无合法性检查——如果某选项无效，则只是挂载会失败。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/persistent-volumes/#mount-options
+
+<!--
+- **nodeAffinity** (VolumeNodeAffinity)
+  nodeAffinity defines constraints that limit what nodes this volume can be accessed from. This field influences the scheduling of pods that use this volume.
+
+  <a name="VolumeNodeAffinity"></a>
+  *VolumeNodeAffinity defines constraints that limit what nodes this volume can be accessed from.*
+-->
+- **nodeAffinity** (VolumeNodeAffinity)
+
+  nodeAffinity 定义可以从哪些节点访问此卷的约束限制。此字段会影响调度使用此卷的 Pod。
+  
+  <a name="VolumeNodeAffinity"></a> 
+  **VolumeNodeAffinity 定义可以从哪些节点访问此卷的约束限制。**
+
+<!--
+  - **nodeAffinity.required** (NodeSelector)
+    required specifies hard node constraints that must be met.
+
+    <a name="NodeSelector"></a>
+    *A node selector represents the union of the results of one or more label queries over a set of nodes; that is, it represents the OR of the selectors represented by the node selector terms.*
+
+    - **nodeAffinity.required.nodeSelectorTerms** ([]NodeSelectorTerm), required
+      Required. A list of node selector terms. The terms are ORed.
+      <a name="NodeSelectorTerm"></a>
+      *A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.*
+
+      - **nodeAffinity.required.nodeSelectorTerms.matchExpressions** ([]<a href="{{< ref "../common-definitions/node-selector-requirement#NodeSelectorRequirement" >}}">NodeSelectorRequirement</a>)
+        A list of node selector requirements by node's labels.
+
+      - **nodeAffinity.required.nodeSelectorTerms.matchFields** ([]<a href="{{< ref "../common-definitions/node-selector-requirement#NodeSelectorRequirement" >}}">NodeSelectorRequirement</a>)
+        A list of node selector requirements by node's fields.
+-->  
+  - **nodeAffinity.required** (NodeSelector)
+
+    required 指定必须满足的硬性节点约束。
+    
+    <a name="NodeSelector"></a> 
+    **节点选择器表示在一组节点上一个或多个标签查询结果的并集；
+    也就是说，它表示由节点选择器条件表示的选择器的逻辑或计算结果。**
+    
+    - **nodeAffinity.required.nodeSelectorTerms** ([]NodeSelectorTerm)，必需
+
+      必需。节点选择器条件的列表。这些条件是逻辑或的计算结果。
+      
+      <a name="NodeSelectorTerm"></a>
+      **一个 null 或空的节点选择器条件不会与任何对象匹配。这些条件会按逻辑与的关系来计算。
+      TopologySelectorTerm 类别实现了 NodeSelectorTerm 的子集。**
+      
+      - **nodeAffinity.required.nodeSelectorTerms.matchExpressions** ([]<a href="{{< ref "../common-definitions/node-selector-requirement#NodeSelectorRequirement" >}}">NodeSelectorRequirement</a>)
+
+        基于节点标签所设置的节点选择器要求的列表。
+      
+      - **nodeAffinity.required.nodeSelectorTerms.matchFields** ([]<a href="{{< ref "../common-definitions/node-selector-requirement#NodeSelectorRequirement" >}}">NodeSelectorRequirement</a>)
+
+        基于节点字段所设置的节点选择器要求的列表。
+
+<!--
+- **persistentVolumeReclaimPolicy** (string)
+
+  persistentVolumeReclaimPolicy defines what happens to a persistent volume when released from its claim. Valid options are Retain (default for manually created PersistentVolumes), Delete (default for dynamically provisioned PersistentVolumes), and Recycle (deprecated). Recycle must be supported by the volume plugin underlying this PersistentVolume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#reclaiming
+-->
+- **persistentVolumeReclaimPolicy** (string)
+
+  persistentVolumeReclaimPolicy 定义当从持久卷声明释放持久卷时会发生什么。
+  有效的选项为 Retain（手动创建 PersistentVolumes 所用的默认值）、
+  Delete（动态制备 PersistentVolumes 所用的默认值）和 Recycle（已弃用）。
+  Recycle 选项必须被 PersistentVolume 下层的卷插件所支持才行。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/persistent-volumes#reclaiming
+
+<!--
+- **storageClassName** (string)
+  storageClassName is the name of StorageClass to which this persistent volume belongs. Empty value means that this volume does not belong to any StorageClass.
+
+- **volumeMode** (string)
+  volumeMode defines if a volume is intended to be used with a formatted filesystem or to remain in raw block state. Value of Filesystem is implied when not included in spec.
+-->
+- **storageClassName** (string)
+
+  storageClassName 是这个持久卷所属于的 StorageClass 的名称。
+  空值意味着此卷不属于任何 StorageClass。
+
+- **volumeMode** (string)
+
+  volumeMode 定义一个卷是带着已格式化的文件系统来使用还是保持在原始块状态来使用。
+  当 spec 中未包含此字段时，意味着取值为 Filesystem。
+
+### Local
+<!--
+- **hostPath** (HostPathVolumeSource)
+  hostPath represents a directory on the host. Provisioned by a developer or tester. This is useful for single-node development and testing only! On-host storage is not supported in any way and WILL NOT WORK in a multi-node cluster. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+
+  <a name="HostPathVolumeSource"></a>
+  *Represents a host path mapped into a pod. Host path volumes do not support ownership management or SELinux relabeling.*
+
+  - **hostPath.path** (string), required
+    path of the directory on the host. If the path is a symlink, it will follow the link to the real path. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+
+  - **hostPath.type** (string)
+    type for HostPath Volume Defaults to "" More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+-->
+- **hostPath** (HostPathVolumeSource)
+
+  hostPath 表示主机上的目录，由开发或测试人员进行制备。hostPath 仅对单节点开发和测试有用！
+  不会以任何方式支持主机存储（On-host storage），并且**不能用于**多节点集群中。
+  更多信息： https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#hostpath
+  
+  <a name="HostPathVolumeSource"></a> 
+  **表示映射到 Pod 中的主机路径。主机路径卷不支持所有权管理或 SELinux 重新打标签。**
+  
+  - **hostPath.path** (string)，必需
+
+    目录在主机上的路径。如果该路径是一个符号链接，则它将沿着链接指向真实路径。
+    更多信息： https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#hostpath
+  
+  - **hostPath.type** (string)
+
+    HostPath 卷的类型。默认为 ""。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#hostpath
+
+<!--
+- **local** (LocalVolumeSource)
+  local represents directly-attached storage with node affinity
+
+  <a name="LocalVolumeSource"></a>
+  *Local represents directly-attached storage with node affinity (Beta feature)*
+
+  - **local.path** (string), required
+    path of the full path to the volume on the node. It can be either a directory or block device (disk, partition, ...).
+
+  - **local.fsType** (string)
+    fsType is the filesystem type to mount. It applies only when the Path is a block device. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". The default value is to auto-select a filesystem if unspecified.
+-->
+- **local** (LocalVolumeSource)
+
+  local 表示具有节点亲和性的直连式存储。
+  
+  <a name="LocalVolumeSource"></a> 
+  **local 表示具有节点亲和性的直连式存储（Beta 特性）。**
+  
+  - **local.path** (string)，必需
+
+    指向节点上卷的完整路径。它可以是一个目录或块设备（磁盘、分区...）。
+  
+  - **local.fsType** (string)
+
+    fsType 是要挂载的文件系统类型。它仅适用于 path 是一个块设备的情况。
+    必须是主机操作系统所支持的文件系统类型之一。例如 “ext4”、“xfs”、“ntfs”。
+    在未指定的情况下，默认值是自动选择一个文件系统。
+
+<!--
+### Persistent volumes
+- **awsElasticBlockStore** (AWSElasticBlockStoreVolumeSource)
+  awsElasticBlockStore represents an AWS Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+
+  <a name="AWSElasticBlockStoreVolumeSource"></a>
+  *Represents a Persistent Disk resource in AWS.
+  
+  An AWS EBS disk must exist before mounting to a container. The disk must also be in the same AWS zone as the kubelet. An AWS EBS disk can only be mounted as read/write once. AWS EBS volumes support ownership management and SELinux relabeling.*
+-->
+### 持久卷 {#persistent-volumes}
+- **awsElasticBlockStore** (AWSElasticBlockStoreVolumeSource)
+  
+  awsElasticBlockStore 表示挂接到 kubelet 的主机随后暴露给 Pod 的一个 AWS Disk 资源。
+  更多信息： https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#awselasticblockstore
+  
+  <a name="AWSElasticBlockStoreVolumeSource"></a>
+  **表示 AWS 上的 Persistent Disk 资源。挂载到一个容器之前 AWS EBS 磁盘必须存在。
+  该磁盘还必须与 kubelet 位于相同的 AWS 区域中。AWS EBS 磁盘只能以读/写一次进行挂载。
+  AWS EBS 卷支持所有权管理和 SELinux 重新打标签。**
+
+<!--
+  - **awsElasticBlockStore.volumeID** (string), required
+    volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume). More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+
+  - **awsElasticBlockStore.fsType** (string)
+    fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+
+  - **awsElasticBlockStore.partition** (int32)
+    partition is the partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as "1". Similarly, the volume partition for /dev/sda is "0" (or you can leave the property empty).
+
+  - **awsElasticBlockStore.readOnly** (boolean)
+    readOnly value true will force the readOnly setting in VolumeMounts. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+-->  
+  - **awsElasticBlockStore.volumeID** (string)，必需
+
+    volumeID 是 AWS（Amazon EBS 卷）中持久磁盘资源的唯一 ID。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#awselasticblockstore
+  
+  - **awsElasticBlockStore.fsType** (string)
+
+    fsType 是你要挂载的卷的文件系统类型。提示：确保主机操作系统支持此文件系统类型。
+    例如：“ext4”、“xfs”、“ntfs”。如果未指定，则隐式推断为“ext4”。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#awselasticblockstore
+  
+  - **awsElasticBlockStore.partition** (int32)
+
+    partition 是你要挂载的卷中的分区。如果省略，则默认为按卷名称进行挂载。
+    例如：对于卷 /dev/sda1，将分区指定为 “1”。
+    类似地，/dev/sda 的卷分区为 “0”（或可以将属性留空）。
+  
+  - **awsElasticBlockStore.readOnly** (boolean)
+
+    readOnly 值为 true 将在 VolumeMounts 中强制设置 readOnly。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#awselasticblockstore
+
+<!--
+- **azureDisk** (AzureDiskVolumeSource)
+  azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.
+
+  <a name="AzureDiskVolumeSource"></a>
+  *AzureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.*
+-->
+- **azureDisk** (AzureDiskVolumeSource)
+
+  azureDisk 表示主机上挂载的 Azure Data Disk 并绑定挂载到 Pod 上。
+  
+  <a name="AzureDiskVolumeSource"></a>
+  **azureDisk 表示主机上挂载的 Azure Data Disk 并绑定挂载到 Pod 上。**
+
+<!--
+  - **azureDisk.diskName** (string), required
+    diskName is the Name of the data disk in the blob storage
+
+  - **azureDisk.diskURI** (string), required
+    diskURI is the URI of data disk in the blob storage
+
+  - **azureDisk.cachingMode** (string)
+    cachingMode is the Host Caching mode: None, Read Only, Read Write.
+
+  - **azureDisk.fsType** (string)
+    fsType is Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+
+  - **azureDisk.kind** (string)
+    kind expected values are Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared
+
+  - **azureDisk.readOnly** (boolean)
+    readOnly Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+-->  
+  - **azureDisk.diskName** (string)，必需
+
+    diskName 是 Blob 存储中数据盘的名称。
+  
+  - **azureDisk.diskURI** (string)，必需
+
+    diskURI 是 Blob 存储中数据盘的 URI。
+  
+  - **azureDisk.cachingMode** (string)
+
+    cachingMode 是主机缓存（Host Caching）模式：None、Read Only、Read Write。
+  
+  - **azureDisk.fsType** (string)
+
+    fsType 是要挂载的文件系统类型。必须是主机操作系统所支持的文件系统类型之一。
+    例如 “ext4”、“xfs”、“ntfs”。如果未指定，则隐式推断为 “ext4”。
+  
+  - **azureDisk.kind** (string)
+
+    kind 预期值包括：
+    - Shared：每个存储帐户多个 Blob 磁盘；
+    - Dedicated：每个存储帐户单个 Blob 磁盘；
+    - Managed：azure 托管的数据盘（仅托管的可用性集合中）。
+    默认为 Shared。
+  
+  - **azureDisk.readOnly** (boolean)
+
+    readOnly 默认为 false（读/写）。此处 readOnly 将在 VolumeMounts 中强制设置 readOnly。
+
+<!--
+- **azureFile** (AzureFilePersistentVolumeSource)
+  azureFile represents an Azure File Service mount on the host and bind mount to the pod.
+  <a name="AzureFilePersistentVolumeSource"></a>
+  *AzureFile represents an Azure File Service mount on the host and bind mount to the pod.*
+
+  - **azureFile.secretName** (string), required
+    secretName is the name of secret that contains Azure Storage Account Name and Key
+
+  - **azureFile.shareName** (string), required
+    shareName is the azure Share Name
+
+  - **azureFile.readOnly** (boolean)
+    readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+
+  - **azureFile.secretNamespace** (string)
+    secretNamespace is the namespace of the secret that contains Azure Storage Account Name and Key default is the same as the Pod
+-->
+- **azureFile** (AzureFilePersistentVolumeSource)
+
+  azureDisk 表示主机上挂载的 Azure File Service 并绑定挂载到 Pod 上。
+  
+  <a name="AzureFilePersistentVolumeSource"></a> 
+  **azureFile 表示主机上挂载的 Azure File Service 并绑定挂载到 Pod 上。**
+  
+  - **azureFile.secretName** (string)，必需
+
+    secretName 是包含 Azure 存储账号名称和主键的 Secret 的名称。
+  
+  - **azureFile.shareName** (string)，必需
+
+    shareName 是 azure Share Name。
+  
+  - **azureFile.readOnly** (boolean)
+
+    readOnly 默认为 false（读/写）。此处 readOnly 将在 VolumeMounts 中强制设置 readOnly。
+  
+  - **azureFile.secretNamespace** (string)
+
+    secretNamespace 是包含 Azure 存储账号名称和主键的 Secret 的名字空间，默认与 Pod 相同。
+
+<!--
+- **cephfs** (CephFSPersistentVolumeSource)
+  cephFS represents a Ceph FS mount on the host that shares a pod's lifetime
+
+  <a name="CephFSPersistentVolumeSource"></a>
+  *Represents a Ceph Filesystem mount that lasts the lifetime of a pod Cephfs volumes do not support ownership management or SELinux relabeling.*
+-->
+- **cephfs** (CephFSPersistentVolumeSource)
+
+  cephfs 表示在主机上挂载的 Ceph FS，该文件系统挂载与 Pod 的生命周期相同。
+  
+  <a name="CephFSPersistentVolumeSource"></a> 
+  **表示在 Pod 的生命周期内持续的 Ceph Filesystem 挂载。cephfs 卷不支持所有权管理或 SELinux 重新打标签。**
+
+<!--
+  - **cephfs.monitors** ([]string), required
+    monitors is Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+
+  - **cephfs.path** (string)
+    path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /
+
+  - **cephfs.readOnly** (boolean)
+    readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+
+  - **cephfs.secretFile** (string)
+    secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+-->  
+  - **cephfs.monitors** ([]string)，必需
+
+    monitors 是必需的。monitors 是 Ceph 监测的集合。更多信息：
+    https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+  
+  - **cephfs.path** (string)
+
+    path 是可选的。用作挂载的根，而不是完整的 Ceph 树，默认为 /。
+  
+  - **cephfs.readOnly** (boolean)
+
+    readOnly 是可选的。默认为 false（读/写）。此处 readOnly 将在 VolumeMounts 中强制设置 readOnly。
+    更多信息： https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+  
+  - **cephfs.secretFile** (string)
+
+    secretFile 是可选的。secretFile 是 user 对应的密钥环的路径，默认为 /etc/ceph/user.secret。
+    更多信息： https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+
+<!--
+  - **cephfs.secretRef** (SecretReference)
+    secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+
+    <a name="SecretReference"></a>
+    *SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace*
+
+    - **cephfs.secretRef.name** (string)
+      name is unique within a namespace to reference a secret resource.
+
+    - **cephfs.secretRef.namespace** (string)
+      namespace defines the space within which the secret name must be unique.
+
+  - **cephfs.user** (string)
+    user is Optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+-->  
+  - **cephfs.secretRef** (SecretReference)
+
+    secretRef 是可选的。secretRef 是针对用户到身份认证 Secret 的引用，默认为空。更多信息：
+    https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+    
+    <a name="SecretReference"></a> 
+    **SecretReference 表示对某 Secret 的引用，其中包含足够的信息来访问任何名字空间中的 Secret。**
+    
+    - **cephfs.secretRef.name** (string)
+
+      name 在名字空间内是唯一的，以引用一个 Secret 资源。
+    
+    - **cephfs.secretRef.namespace** (string)
+
+      namespace 指定一个名字空间，Secret 名称在该名字空间中必须唯一。
+  
+  - **cephfs.user** (string)
+
+    user 是可选的。user 是 rados 用户名，默认为 admin。更多信息：
+    https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+
+<!--
+- **cinder** (CinderPersistentVolumeSource)
+  cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+
+  <a name="CinderPersistentVolumeSource"></a>
+  *Represents a cinder volume resource in Openstack. A Cinder volume must exist before mounting to a container. The volume must also be in the same region as the kubelet. Cinder volumes support ownership management and SELinux relabeling.*
+-->
+- **cinder** (CinderPersistentVolumeSource)
+
+  cinder 表示 kubelet 主机上挂接和挂载的 Cinder 卷。更多信息：
+  https://examples.k8s.io/mysql-cinder-pd/README.md
+  
+  <a name="CinderPersistentVolumeSource"></a> 
+  **表示 OpenStack 中的一个 Cinder 卷资源。挂载到一个容器之前 Cinder 卷必须已经存在。
+  该卷还必须与 kubelet 位于相同的地区中。cinder 卷支持所有权管理和 SELinux 重新打标签。**
+
+<!--
+  - **cinder.volumeID** (string), required
+    volumeID used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+
+  - **cinder.fsType** (string)
+    fsType Filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+
+  - **cinder.readOnly** (boolean)
+    readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+-->  
+  - **cinder.volumeID** (string)，必需
+
+    volumeID 用于标识 Cinder 中的卷。更多信息：
+    https://examples.k8s.io/mysql-cinder-pd/README.md
+  
+  - **cinder.fsType** (string)
+
+    fsType 是要挂载的文件系统类型。必须是主机操作系统支持的文件系统类型。
+    例如：“ext4”、“xfs”、“ntfs”。如果未指定，则隐式推断为 “ext4”。更多信息：
+    https://examples.k8s.io/mysql-cinder-pd/README.md
+  
+  - **cinder.readOnly** (boolean)
+
+    readOnly 是可选的。默认为 false（读/写）。
+    此处 readOnly 将在 VolumeMounts 中强制设置 readOnly。更多信息：
+    https://examples.k8s.io/mysql-cinder-pd/README.md
+
+<!--
+  - **cinder.secretRef** (SecretReference)
+    secretRef is Optional: points to a secret object containing parameters used to connect to OpenStack.
+
+    <a name="SecretReference"></a>
+    *SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace*
+
+    - **cinder.secretRef.name** (string)
+      name is unique within a namespace to reference a secret resource.
+
+    - **cinder.secretRef.namespace** (string)
+      namespace defines the space within which the secret name must be unique.
+-->  
+  - **cinder.secretRef** (SecretReference)
+
+    secretRef 是可选的。指向 Secret 对象，内含的参数用于连接到 OpenStack。
+    
+    <a name="SecretReference"></a> 
+    **SecretReference 表示对某 Secret 的引用，其中包含足够的信息来访问任何名字空间中的 Secret。**
+    
+    - **cinder.secretRef.name** (string)
+
+      name 在名字空间内是唯一的，以引用一个 Secret 资源。
+    
+    - **cinder.secretRef.namespace** (string)
+
+      namespace 指定一个名字空间，Secret 名称在该名字空间中必须唯一。
+
+<!--
+- **csi** (CSIPersistentVolumeSource)
+  csi represents storage that is handled by an external CSI driver (Beta feature).
+
+  <a name="CSIPersistentVolumeSource"></a>
+  *Represents storage that is managed by an external CSI volume driver (Beta feature)*
+
+  - **csi.driver** (string), required
+    driver is the name of the driver to use for this volume. Required.
+
+  - **csi.volumeHandle** (string), required
+    volumeHandle is the unique volume name returned by the CSI volume plugin’s CreateVolume to refer to the volume on all subsequent calls. Required.
+-->
+- **csi** (CSIPersistentVolumeSource)
+
+  csi 表示由一个外部 CSI 驱动处理的存储（Beta 特性）。
+  
+  <a name="CSIPersistentVolumeSource"></a> 
+  **表示由一个外部 CSI 卷驱动管理的存储（Beta 特性）。**
+  
+  - **csi.driver** (string)，必需
+
+    driver 是此卷所使用的驱动的名称。必需。
+  
+  - **csi.volumeHandle** (string)，必需
+
+    volumeHandle 是 CSI 卷插件的 CreateVolume 所返回的唯一卷名称，用于在所有后续调用中引用此卷。必需。
+
+<!--
+  - **csi.controllerExpandSecretRef** (SecretReference)
+    controllerExpandSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI ControllerExpandVolume call. This is an alpha field and requires enabling ExpandCSIVolumes feature gate. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.
+
+    <a name="SecretReference"></a>
+    *SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace*
+
+    - **csi.controllerExpandSecretRef.name** (string)
+      name is unique within a namespace to reference a secret resource.
+
+    - **csi.controllerExpandSecretRef.namespace** (string)
+      namespace defines the space within which the secret name must be unique.
+-->  
+  - **csi.controllerExpandSecretRef** (SecretReference)
+
+    controllerExpandSecretRef 是对包含敏感信息的 Secret 对象的引用，
+    该 Secret 会被传递到 CSI 驱动以完成 CSI ControllerExpandVolume 调用。
+    这是一个 Alpha 字段，需要启用 ExpandCSIVolumes 特性门控。
+    此字段是可选的，且如果不需要 Secret，则此字段可以为空。
+    如果 Secret 对象包含多个 Secret，则所有 Secret 被传递。
+    
+    <a name="SecretReference"></a> 
+    **SecretReference 表示对某 Secret 的引用，其中包含足够的信息来访问任何名字空间中的 Secret。**
+    
+    - **csi.controllerExpandSecretRef.name** (string)
+
+      name 在名字空间内是唯一的，以引用一个 Secret 资源。
+    
+    - **csi.controllerExpandSecretRef.namespace** (string)
+
+      namespace 指定一个名字空间，Secret 名称在该名字空间中必须唯一。
+
+<!--
+  - **csi.controllerPublishSecretRef** (SecretReference)
+    controllerPublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI ControllerPublishVolume and ControllerUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.
+
+    <a name="SecretReference"></a>
+    *SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace*
+
+    - **csi.controllerPublishSecretRef.name** (string)
+      name is unique within a namespace to reference a secret resource.
+
+    - **csi.controllerPublishSecretRef.namespace** (string)
+      namespace defines the space within which the secret name must be unique.
+-->  
+  - **csi.controllerPublishSecretRef** (SecretReference)
+
+    controllerPublishSecretRef 是对包含敏感信息的 Secret 对象的引用，
+    该 Secret 会被传递到 CSI 驱动以完成 CSI ControllerPublishVolume 和 ControllerUnpublishVolume 调用。
+    此字段是可选的，且如果不需要 Secret，则此字段可以为空。
+    如果 Secret 对象包含多个 Secret，则所有 Secret 被传递。
+    
+    <a name="SecretReference"></a> 
+    **SecretReference 表示对某 Secret 的引用，其中包含足够的信息来访问任何名字空间中的 Secret。**
+    
+    - **csi.controllerPublishSecretRef.name** (string)
+
+      name 在名字空间内是唯一的，以引用一个 Secret 资源。
+    
+    - **csi.controllerPublishSecretRef.namespace** (string)
+
+      namespace 指定一个名字空间，Secret 名称在该名字空间中必须唯一。
+
+<!--
+  - **csi.fsType** (string)
+    fsType to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs".
+
+  - **csi.nodePublishSecretRef** (SecretReference)
+    nodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.
+
+    <a name="SecretReference"></a>
+    *SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace*
+
+    - **csi.nodePublishSecretRef.name** (string)
+      name is unique within a namespace to reference a secret resource.
+
+    - **csi.nodePublishSecretRef.namespace** (string)
+      namespace defines the space within which the secret name must be unique.
+-->  
+  - **csi.fsType** (string)
+
+    要挂载的 fsType。必须是主机操作系统所支持的文件系统类型之一。例如 “ext4”、“xfs”、“ntfs”。
+  
+  - **csi.nodePublishSecretRef** (SecretReference)
+
+    nodePublishSecretRef 是对包含敏感信息的 Secret 对象的引用，
+    从而传递到 CSI 驱动以完成 CSI NodePublishVolume 和 NodeUnpublishVolume 调用。
+    此字段是可选的，且如果不需要 Secret，则此字段可以为空。
+    如果 Secret 对象包含多个 Secret，则所有 Secret 被传递。
+    
+    <a name="SecretReference"></a> 
+    **SecretReference 表示对某 Secret 的引用，其中包含足够的信息来访问任何名字空间中的 Secret。**
+    
+    - **csi.nodePublishSecretRef.name** (string)
+
+      name 在名字空间内是唯一的，以引用一个 Secret 资源。
+    
+    - **csi.nodePublishSecretRef.namespace** (string)
+
+      namespace 指定一个名字空间，Secret 名称在该名字空间中必须唯一。
+<!--
+  - **csi.nodeStageSecretRef** (SecretReference)
+    nodeStageSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodeStageVolume and NodeStageVolume and NodeUnstageVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.
+
+    <a name="SecretReference"></a>
+    *SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace*
+
+    - **csi.nodeStageSecretRef.name** (string)
+      name is unique within a namespace to reference a secret resource.
+
+    - **csi.nodeStageSecretRef.namespace** (string)
+      namespace defines the space within which the secret name must be unique.
+-->  
+  - **csi.nodeStageSecretRef** (SecretReference)
+
+    nodeStageSecretRef 是对包含敏感信息的 Secret 对象的引用，
+    从而传递到 CSI 驱动以完成 CSI NodeStageVolume、NodeStageVolume 和 NodeUnstageVolume 调用。
+    此字段是可选的，且如果不需要 Secret，则此字段可以为空。
+    如果 Secret 对象包含多个 Secret，则所有 Secret 被传递。
+    
+    <a name="SecretReference"></a> 
+    **SecretReference 表示对某 Secret 的引用，其中包含足够的信息来访问任何名字空间中的 Secret。**
+    
+    - **csi.nodeStageSecretRef.name** (string)
+
+      name 在名字空间内是唯一的，以引用一个 Secret 资源。
+    
+    - **csi.nodeStageSecretRef.namespace** (string)
+
+      namespace 指定一个名字空间，Secret 名称在该名字空间中必须唯一。
+
+<!--
+  - **csi.readOnly** (boolean)
+    readOnly value to pass to ControllerPublishVolumeRequest. Defaults to false (read/write).
+
+  - **csi.volumeAttributes** (map[string]string)
+    volumeAttributes of the volume to publish.
+-->  
+  - **csi.readOnly** (boolean)
+
+    传递到 ControllerPublishVolumeRequest 的 readOnly 值。默认为 false（读/写）。
+  
+  - **csi.volumeAttributes** (map[string]string)
+
+    要发布的卷的 volumeAttributes。
+
+<!--
+- **fc** (FCVolumeSource)
+  fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.
+
+  <a name="FCVolumeSource"></a>
+  *Represents a Fibre Channel volume. Fibre Channel volumes can only be mounted as read/write once. Fibre Channel volumes support ownership management and SELinux relabeling.*
+-->
+- **fc** (FCVolumeSource)
+
+  fc 表示挂接到 kubelet 的主机并随后暴露给 Pod 的一个光纤通道（FC）资源。
+  
+  <a name="FCVolumeSource"></a> 
+  **表示光纤通道卷。光纤通道卷只能以读/写一次进行挂载。光纤通道卷支持所有权管理和 SELinux 重新打标签。**
+
+<!--
+  - **fc.fsType** (string)
+    fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+
+  - **fc.lun** (int32)
+    lun is Optional: FC target lun number
+
+  - **fc.readOnly** (boolean)
+    readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+
+  - **fc.targetWWNs** ([]string)
+    targetWWNs is Optional: FC target worldwide names (WWNs)
+
+  - **fc.wwids** ([]string)
+    wwids Optional: FC volume world wide identifiers (wwids) Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.
+-->  
+  - **fc.fsType** (string)
+
+    fsType 是要挂载的文件系统类型。必须是主机操作系统所支持的文件系统类型之一。
+    例如 “ext4”、“xfs”、“ntfs”。如果未指定，则隐式推断为 “ext4”。
+  
+  - **fc.lun** (int32)
+
+    lun 是可选的。FC 目标 lun 编号。
+  
+  - **fc.readOnly** (boolean)
+
+    readOnly 是可选的。默认为 false（读/写）。
+    此处 readOnly 将在 VolumeMounts 中强制设置 readOnly。
+  
+  - **fc.targetWWNs** ([]string)
+
+    targetWWNs 是可选的。FC 目标全球名称（WWN）。
+  
+  - **fc.wwids** ([]string)
+
+    wwids 是可选的。FC 卷全球识别号（wwids）。
+    必须设置 wwids 或 targetWWNs 及 lun 的组合，但不能同时设置两者。
+
+<!--
+- **flexVolume** (FlexPersistentVolumeSource)
+  flexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin.
+
+  <a name="FlexPersistentVolumeSource"></a>
+  *FlexPersistentVolumeSource represents a generic persistent volume resource that is provisioned/attached using an exec based plugin.*
+-->
+- **flexVolume** (FlexPersistentVolumeSource)
+
+  flexVolume 表示使用基于 exec 的插件制备/挂接的通用卷资源。
+  
+  <a name="FlexPersistentVolumeSource"></a>
+  **FlexPersistentVolumeSource 表示使用基于 exec 的插件制备/挂接的通用持久卷资源。**
+
+<!--
+  - **flexVolume.driver** (string), required
+    driver is the name of the driver to use for this volume.
+
+  - **flexVolume.fsType** (string)
+    fsType is the Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". The default filesystem depends on FlexVolume script.
+
+  - **flexVolume.options** (map[string]string)
+    options is Optional: this field holds extra command options if any.
+
+  - **flexVolume.readOnly** (boolean)
+    readOnly is Optional: defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+-->  
+  - **flexVolume.driver** (string)，必需
+
+    driver 是此卷所使用的驱动的名称。
+  
+  - **flexVolume.fsType** (string)
+
+    fsType 是要挂载的文件系统类型。必须是主机操作系统所支持的文件系统类型之一。
+    例如 “ext4”、“xfs”、“ntfs”。默认的文件系统取决于 flexVolume 脚本。
+  
+  - **flexVolume.options** (map[string]string)
+
+    options 是可选的。此字段包含额外的命令选项（如果有）。
+  
+  - **flexVolume.readOnly** (boolean)
+
+    readOnly 是可选的。默认为 false（读/写）。
+    此处 readOnly 将在 VolumeMounts 中强制设置 readOnly。
+
+<!--
+  - **flexVolume.secretRef** (SecretReference)
+    secretRef is Optional: SecretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts.
+
+    <a name="SecretReference"></a>
+    *SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace*
+
+    - **flexVolume.secretRef.name** (string)
+      name is unique within a namespace to reference a secret resource.
+
+    - **flexVolume.secretRef.namespace** (string)
+      namespace defines the space within which the secret name must be unique.
+-->  
+  - **flexVolume.secretRef** (SecretReference)
+
+    secretRef 是可选的。secretRef 是对包含敏感信息的 Secret 对象的引用，从而传递到插件脚本。
+    如果未指定 Secret 对象，则此字段可以为空。如果 Secret 对象包含多个 Secret，则所有 Secret 被传递到插件脚本。
+    
+    <a name="SecretReference"></a> 
+    **SecretReference 表示对某 Secret 的引用，其中包含足够的信息来访问任何名字空间中的 Secret。**
+    
+    - **flexVolume.secretRef.name** (string)
+
+      name 在名字空间内是唯一的，以引用一个 Secret 资源。
+    
+    - **flexVolume.secretRef.namespace** (string)
+
+      namespace 指定一个名字空间，Secret 名称在该名字空间中必须唯一。
+
+<!--
+- **flocker** (FlockerVolumeSource)
+  flocker represents a Flocker volume attached to a kubelet's host machine and exposed to the pod for its usage. This depends on the Flocker control service being running
+
+  <a name="FlockerVolumeSource"></a>
+  *Represents a Flocker volume mounted by the Flocker agent. One and only one of datasetName and datasetUUID should be set. Flocker volumes do not support ownership management or SELinux relabeling.*
+
+  - **flocker.datasetName** (string)
+    datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker should be considered as deprecated
+
+  - **flocker.datasetUUID** (string)
+    datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset
+-->
+- **flocker** (FlockerVolumeSource)
+
+  flocker 表示挂接到 kubelet 的主机并暴露给 Pod 供其使用的 Flocker 卷。
+  这取决于所运行的 Flocker 控制服务。
+  
+  <a name="FlockerVolumeSource"></a> 
+  **表示 Flocker 代理挂载的 Flocker 卷。应设置且仅设置 datasetName 和 datasetUUID 中的一个。
+  Flocker 卷不支持所有权管理或 SELinux 重新打标签。**
+  
+  - **flocker.datasetName** (string)
+
+    datasetName 是存储为元数据的数据集的名称。针对 Flocker 有关数据集的名称应视为已弃用。
+  
+  - **flocker.datasetUUID** (string)
+
+    datasetUUID 是数据集的 UUID。这是 Flocker 数据集的唯一标识符。
+
+<!--
+- **gcePersistentDisk** (GCEPersistentDiskVolumeSource)
+  gcePersistentDisk represents a GCE Disk resource that is attached to a kubelet's host machine and then exposed to the pod. Provisioned by an admin. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+
+  <a name="GCEPersistentDiskVolumeSource"></a>
+  *Represents a Persistent Disk resource in Google Compute Engine.
+  
+  A GCE PD must exist before mounting to a container. The disk must also be in the same GCE project and zone as the kubelet. A GCE PD can only be mounted as read/write once or read-only many times. GCE PDs support ownership management and SELinux relabeling.*
+-->
+- **gcePersistentDisk** (GCEPersistentDiskVolumeSource)
+
+  gcePersistentDisk 表示挂接到 kubelet 的主机随后暴露给 Pod 的一个 GCE Disk 资源。
+  由管理员进行制备。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#gcepersistentdisk
+  
+  <a name="GCEPersistentDiskVolumeSource"></a> 
+  **表示 Google 计算引擎中的 Persistent Disk 资源。挂载到一个容器之前 GCE PD 必须存在。
+  该磁盘还必须与 kubelet 位于相同的 GCE 项目和区域中。GCE PD 只能挂载为读/写一次或只读多次。
+  GCE PD 支持所有权管理和 SELinux 重新打标签。**
+
+<!--
+  - **gcePersistentDisk.pdName** (string), required
+    pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+
+  - **gcePersistentDisk.fsType** (string)
+    fsType is filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+
+  - **gcePersistentDisk.partition** (int32)
+    partition is the partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as "1". Similarly, the volume partition for /dev/sda is "0" (or you can leave the property empty). More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+
+  - **gcePersistentDisk.readOnly** (boolean)
+    readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+-->  
+  - **gcePersistentDisk.pdName** (string)，必需
+
+    pdName 是 GCE 中 PD 资源的唯一名称。用于标识 GCE 中的磁盘。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#gcepersistentdisk
+  
+  - **gcePersistentDisk.fsType** (string)
+
+    fsType 是你要挂载的卷的文件系统类型。提示：确保主机操作系统支持此文件系统类型。
+    例如：“ext4”、“xfs”、“ntfs”。如果未指定，则隐式推断为 “ext4”。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#gcepersistentdisk
+  
+  - **gcePersistentDisk.partition** (int32)
+
+    partition 是你要挂载的卷中的分区。如果省略，则默认为按卷名称进行挂载。
+    例如：对于卷 /dev/sda1，将分区指定为 “1”。类似地，/dev/sda 的卷分区为 “0”（或可以将属性留空）。
+    更多信息： https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#gcepersistentdisk
+  
+  - **gcePersistentDisk.readOnly** (boolean)
+
+    此处 readOnly 将在 VolumeMounts 中强制设置 readOnly。默认为 false。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#gcepersistentdisk
+
+<!--
+- **glusterfs** (GlusterfsPersistentVolumeSource)
+  glusterfs represents a Glusterfs volume that is attached to a host and exposed to the pod. Provisioned by an admin. More info: https://examples.k8s.io/volumes/glusterfs/README.md
+
+  <a name="GlusterfsPersistentVolumeSource"></a>
+  *Represents a Glusterfs mount that lasts the lifetime of a pod. Glusterfs volumes do not support ownership management or SELinux relabeling.*
+-->
+- **glusterfs** (GlusterfsPersistentVolumeSource)
+
+  glusterfs 表示挂接到主机并暴露给 Pod 的 Glusterfs 卷。由管理员进行制备。更多信息：
+  https://examples.k8s.io/volumes/glusterfs/README.md
+  
+  <a name="GlusterfsPersistentVolumeSource"></a> 
+  **表示与 Pod 生命周期相同的 Glusterfs 挂载。Glusterfs 卷不支持所有权管理或 SELinux 重新打标签。**
+
+<!--
+  - **glusterfs.endpoints** (string), required
+    endpoints is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+
+  - **glusterfs.path** (string), required
+    path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+
+  - **glusterfs.endpointsNamespace** (string)
+    endpointsNamespace is the namespace that contains Glusterfs endpoint. If this field is empty, the EndpointNamespace defaults to the same namespace as the bound PVC. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+
+  - **glusterfs.readOnly** (boolean)
+    readOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+-->  
+  - **glusterfs.endpoints** (string)，必需
+
+    endpoints 是详细说明 Glusterfs 拓扑的端点名称。更多信息：
+    https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+  
+  - **glusterfs.path** (string)，必需
+
+    path 是 Glusterfs 卷路径。更多信息：
+    https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+  
+  - **glusterfs.endpointsNamespace** (string)
+
+    endpointsNamespace 是包含 Glusterfs 端点的名字空间。
+    如果此字段为空，则 EndpointNamespace 默认为与绑定的 PVC 相同的名字空间。
+    更多信息： https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+  
+  - **glusterfs.readOnly** (boolean)
+
+    此处 readOnly 将强制使用只读权限挂载 Glusterfs 卷。默认为 false。更多信息：
+    https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+
+<!--
+- **iscsi** (ISCSIPersistentVolumeSource)
+  iscsi represents an ISCSI Disk resource that is attached to a kubelet's host machine and then exposed to the pod. Provisioned by an admin.
+
+  <a name="ISCSIPersistentVolumeSource"></a>
+  *ISCSIPersistentVolumeSource represents an ISCSI disk. ISCSI volumes can only be mounted as read/write once. ISCSI volumes support ownership management and SELinux relabeling.*
+-->
+- **iscsi** (ISCSIPersistentVolumeSource)
+
+  iscsi 表示挂接到 kubelet 的主机随后暴露给 Pod 的一个 ISCSI Disk 资源。由管理员进行制备。
+  
+  <a name="ISCSIPersistentVolumeSource"></a> 
+  **ISCSIPersistentVolumeSource 表示一个 ISCSI 磁盘。ISCSI 卷只能以读/写一次进行挂载。ISCSI 卷支持所有权管理和 SELinux 重新打标签。**
+
+<!--
+  - **iscsi.iqn** (string), required
+    iqn is Target iSCSI Qualified Name.
+
+  - **iscsi.lun** (int32), required
+    lun is iSCSI Target Lun number.
+
+  - **iscsi.targetPortal** (string), required
+    targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
+-->  
+  - **iscsi.iqn** (string)，必需
+
+    iqn 是目标 iSCSI 限定名称（Target iSCSI Qualified Name）。
+  
+  - **iscsi.lun** (int32)，必需
+
+    lun 是 iSCSI 目标逻辑单元号（iSCSI Target Lun）。
+  
+  - **iscsi.targetPortal** (string)，必需
+
+    targetPortal 是 iSCSI 目标门户（iSCSI Target Portal）。
+    如果不是默认端口（通常是 TCP 端口 860 和 3260），则 Portal 为 IP 或 ip_addr:port。
+
+<!--
+  - **iscsi.chapAuthDiscovery** (boolean)
+    chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication
+
+  - **iscsi.chapAuthSession** (boolean)
+    chapAuthSession defines whether support iSCSI Session CHAP authentication
+
+  - **iscsi.fsType** (string)
+    fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi
+-->  
+  - **iscsi.chapAuthDiscovery** (boolean)
+
+    chapAuthDiscovery 定义是否支持 iSCSI Discovery CHAP 身份认证。
+  
+  - **iscsi.chapAuthSession** (boolean)
+
+    chapAuthSession 定义是否支持 iSCSI Session CHAP 身份认证。
+  
+  - **iscsi.fsType** (string)
+
+    fsType 是你要挂载的卷的文件系统类型。提示：确保主机操作系统支持此文件系统类型。
+    例如：“ext4”、“xfs”、“ntfs”。如果未指定，则隐式推断为 “ext4”。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#iscsi
+
+<!--
+  - **iscsi.initiatorName** (string)
+    initiatorName is the custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface \<target portal>:\<volume name> will be created for the connection.
+
+  - **iscsi.iscsiInterface** (string)
+    iscsiInterface is the interface Name that uses an iSCSI transport. Defaults to 'default' (tcp).
+
+  - **iscsi.portals** ([]string)
+    portals is the iSCSI Target Portal List. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
+
+  - **iscsi.readOnly** (boolean)
+    readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.
+-->  
+  - **iscsi.initiatorName** (string)
+
+    initiatorName 是自定义的 iSCSI 发起程序名称（iSCSI Initiator Name）。
+    如果同时用 iscsiInterface 指定 initiatorName，将为连接创建新的 iSCSI 接口 \<目标门户>:\<卷名称>。
+  
+  - **iscsi.iscsiInterface** (string)
+
+    iscsiInterface 是使用 iSCSI 传输的接口名称。默认为 “default”（tcp）。
+  
+  - **iscsi.portals** ([]string)
+
+    portals 是 iSCSI 目标门户列表（iSCSI Target Portal List）。
+    如果不是默认端口（通常是 TCP 端口 860 和 3260），则 Portal 为 IP 或 ip_addr:port。
+  
+  - **iscsi.readOnly** (boolean)
+
+    此处 readOnly 将在 VolumeMounts 中强制设置 readOnly。默认为 false。
+
+<!--
+  - **iscsi.secretRef** (SecretReference)
+    secretRef is the CHAP Secret for iSCSI target and initiator authentication
+
+    <a name="SecretReference"></a>
+    *SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace*
+
+    - **iscsi.secretRef.name** (string)
+      name is unique within a namespace to reference a secret resource.
+
+    - **iscsi.secretRef.namespace** (string)
+      namespace defines the space within which the secret name must be unique.
+-->  
+  - **iscsi.secretRef** (SecretReference)
+
+    secretRef 是 iSCSI 目标和发起程序身份认证所用的 CHAP Secret。
+    
+    <a name="SecretReference"></a> 
+    **SecretReference 表示对某 Secret 的引用，其中包含足够的信息来访问任何名字空间中的 Secret。**
+    
+    - **iscsi.secretRef.name** (string)
+
+      name 在名字空间内是唯一的，以引用一个 Secret 资源。
+    
+    - **iscsi.secretRef.namespace** (string)
+
+      namespace 指定一个名字空间，Secret 名称在该名字空间中必须唯一。
+
+<!--
+- **nfs** (NFSVolumeSource)
+  nfs represents an NFS mount on the host. Provisioned by an admin. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+
+  <a name="NFSVolumeSource"></a>
+  *Represents an NFS mount that lasts the lifetime of a pod. NFS volumes do not support ownership management or SELinux relabeling.*
+
+  - **nfs.path** (string), required
+    path that is exported by the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+
+  - **nfs.server** (string), required
+    server is the hostname or IP address of the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+
+  - **nfs.readOnly** (boolean)
+    readOnly here will force the NFS export to be mounted with read-only permissions. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+-->
+- **nfs** (NFSVolumeSource)
+
+  nfs 表示主机上挂载的 NFS。由管理员进行制备。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#nfs
+  
+  <a name="NFSVolumeSource"></a> 
+  **表示 Pod 的生命周期内持续的 NFS 挂载。NFS 卷不支持所有权管理或 SELinux 重新打标签。**
+  
+  - **nfs.path** (string)，必需
+
+    path 是由 NFS 服务器导出的路径。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#nfs
+  
+  - **nfs.server** (string)，必需
+
+    server 是 NFS 服务器的主机名或 IP 地址。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#nfs
+  
+  - **nfs.readOnly** (boolean)
+
+    此处 readOnly 将强制使用只读权限挂载 NFS 导出。默认为 false。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#nfs
+
+<!--
+- **photonPersistentDisk** (PhotonPersistentDiskVolumeSource)
+  photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine
+
+  <a name="PhotonPersistentDiskVolumeSource"></a>
+  *Represents a Photon Controller persistent disk resource.*
+
+  - **photonPersistentDisk.pdID** (string), required
+    pdID is the ID that identifies Photon Controller persistent disk
+
+  - **photonPersistentDisk.fsType** (string)
+    fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+-->
+- **photonPersistentDisk** (PhotonPersistentDiskVolumeSource)
+
+  photonPersistentDisk 表示 kubelet 主机上挂接和挂载的 PhotonController 持久磁盘。
+  
+  <a name="PhotonPersistentDiskVolumeSource"></a>
+  **表示 Photon Controller 持久磁盘资源。**
+  
+  - **photonPersistentDisk.pdID** (string)，必需
+
+    pdID 是标识 Photon Controller 持久磁盘的 ID。
+  
+  - **photonPersistentDisk.fsType** (string)
+
+    fsType 是要挂载的文件系统类型。必须是主机操作系统所支持的文件系统类型之一。
+    例如 “ext4”、“xfs”、“ntfs”。如果未指定，则隐式推断为 “ext4”。
+
+<!--
+- **portworxVolume** (PortworxVolumeSource)
+  portworxVolume represents a portworx volume attached and mounted on kubelets host machine
+
+  <a name="PortworxVolumeSource"></a>
+  *PortworxVolumeSource represents a Portworx volume resource.*
+
+  - **portworxVolume.volumeID** (string), required
+    volumeID uniquely identifies a Portworx volume
+
+  - **portworxVolume.fsType** (string)
+    fSType represents the filesystem type to mount Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs". Implicitly inferred to be "ext4" if unspecified.
+
+  - **portworxVolume.readOnly** (boolean)
+    readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+-->
+- **portworxVolume** (PortworxVolumeSource)
+
+  portworxVolume 表示 kubelet 主机上挂接和挂载的 portworx 卷。
+  
+  <a name="PortworxVolumeSource"></a>
+  **PortworxVolumeSource 表示 Portworx 卷资源。**
+  
+  - **portworxVolume.volumeID** (string)，必需
+
+    volumeID 唯一标识 Portworx 卷。
+  
+  - **portworxVolume.fsType** (string)
+
+    fSType 表示要挂载的文件系统类型。必须是主机操作系统所支持的文件系统类型之一。
+    例如 “ext4”、“xfs”。如果未指定，则隐式推断为 “ext4”。
+  
+  - **portworxVolume.readOnly** (boolean)
+
+    readOnly 默认为 false（读/写）。此处 readOnly 将在 VolumeMounts 中强制设置 readOnly。
+
+<!--
+- **quobyte** (QuobyteVolumeSource)
+  quobyte represents a Quobyte mount on the host that shares a pod's lifetime
+
+  <a name="QuobyteVolumeSource"></a>
+  *Represents a Quobyte mount that lasts the lifetime of a pod. Quobyte volumes do not support ownership management or SELinux relabeling.*
+
+  - **quobyte.registry** (string), required
+    registry represents a single or multiple Quobyte Registry services specified as a string as host:port pair (multiple entries are separated with commas) which acts as the central registry for volumes
+
+  - **quobyte.volume** (string), required
+    volume is a string that references an already created Quobyte volume by name.
+-->
+- **quobyte** (QuobyteVolumeSource)
+
+  quobyte 表示在共享 Pod 生命周期的主机上挂载的 Quobyte。
+  
+  <a name="QuobyteVolumeSource"></a>
+  **表示在 Pod 的生命周期内持续的 Quobyte 挂载。Quobyte 卷不支持所有权管理或 SELinux 重新打标签。**
+  
+  - **quobyte.registry** (string)，必需
+
+    registry 表示将一个或多个 Quobyte Registry 服务指定为 host:port 
+    对的字符串形式（多个条目用英文逗号分隔），用作卷的中央注册表。
+  
+  - **quobyte.volume** (string)，必需
+
+    volume 是一个字符串，通过名称引用已创建的 Quobyte 卷。
+
+<!--
+  - **quobyte.group** (string)
+    group to map volume access to Default is no group
+
+  - **quobyte.readOnly** (boolean)
+    readOnly here will force the Quobyte volume to be mounted with read-only permissions. Defaults to false.
+
+  - **quobyte.tenant** (string)
+    tenant owning the given Quobyte volume in the Backend Used with dynamically provisioned Quobyte volumes, value is set by the plugin
+
+  - **quobyte.user** (string)
+    user to map volume access to Defaults to serivceaccount user
+-->  
+  - **quobyte.group** (string)
+
+    group 是将卷访问映射到的组。默认为无组。
+  
+  - **quobyte.readOnly** (boolean)
+
+    此处 readOnly 将强制使用只读权限挂载 Quobyte 卷。默认为 false。
+  
+  - **quobyte.tenant** (string)
+
+    后台中拥有给定 Quobyte 卷的租户。用于动态制备的 Quobyte 卷，其值由插件设置。
+  
+  - **quobyte.user** (string)
+
+    user 是将卷访问映射到的用户。默认为 serivceaccount 用户。
+
+<!--
+- **rbd** (RBDPersistentVolumeSource)
+  rbd represents a Rados Block Device mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md
+
+  <a name="RBDPersistentVolumeSource"></a>
+  *Represents a Rados Block Device mount that lasts the lifetime of a pod. RBD volumes support ownership management and SELinux relabeling.*
+
+  - **rbd.image** (string), required
+    image is the rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+
+  - **rbd.monitors** ([]string), required
+    monitors is a collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+-->
+- **rbd** (RBDPersistentVolumeSource)
+
+  rbd 表示主机上挂载的 Rados 块设备，其生命周期与 Pod 生命周期相同。更多信息：
+  https://examples.k8s.io/volumes/rbd/README.md
+  
+  <a name="RBDPersistentVolumeSource"></a> 
+  **表示在 Pod 的生命周期内一直存在的 Rados 块设备挂载。RBD 卷支持所有权管理和 SELinux 重新打标签。**
+  
+  - **rbd.image** (string)，必需
+
+    image 是 rados 镜像名称。更多信息：
+    https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+  
+  - **rbd.monitors** ([]string)，必需
+
+    monitors 是 Ceph 监测的集合。更多信息：
+    https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+
+<!--
+  - **rbd.fsType** (string)
+    fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd
+
+  - **rbd.keyring** (string)
+    keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+
+  - **rbd.pool** (string)
+    pool is the rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+
+  - **rbd.readOnly** (boolean)
+    readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+-->  
+  - **rbd.fsType** (string)
+
+    fsType 是你要挂载的卷的文件系统类型。提示：确保主机操作系统支持此文件系统类型。
+    例如：“ext4”、“xfs”、“ntfs”。如果未指定，则隐式推断为 “ext4”。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#rbd
+  
+  - **rbd.keyring** (string)
+
+    keyring 是给定用户的密钥环的路径。默认为 /etc/ceph/keyring。更多信息：
+    https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+  
+  - **rbd.pool** (string)
+
+    pool 是 rados 池名称。默认为 rbd。更多信息：
+    https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+   
+  - **rbd.readOnly** (boolean)
+
+    此处 readOnly 将在 VolumeMounts 中强制设置 readOnly。默认为 false。更多信息：
+    https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+
+<!--
+  - **rbd.secretRef** (SecretReference)
+    secretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+
+    <a name="SecretReference"></a>
+    *SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace*
+
+    - **rbd.secretRef.name** (string)
+      name is unique within a namespace to reference a secret resource.
+
+    - **rbd.secretRef.namespace** (string)
+      namespace defines the space within which the secret name must be unique.
+  
+  - **rbd.user** (string)
+    user is the rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+-->  
+  - **rbd.secretRef** (SecretReference)
+
+    secretRef 是针对 RBDUser 的身份认证 Secret 的名称。如果提供，则重载 keyring。默认为 nil。
+    更多信息： https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+    
+    <a name="SecretReference"></a> 
+    **SecretReference 表示对某 Secret 的引用，其中包含足够的信息来访问任何名字空间中的 Secret。**
+    
+    - **rbd.secretRef.name** (string)
+
+      name 在名字空间内是唯一的，以引用一个 Secret 资源。
+    
+    - **rbd.secretRef.namespace** (string)
+
+      namespace 指定一个名字空间，Secret 名称在该名字空间中必须唯一。
+  
+  - **rbd.user** (string)
+
+    user 是 rados 用户名。默认为 admin。更多信息：
+    https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+
+<!--
+- **scaleIO** (ScaleIOPersistentVolumeSource)
+  scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.
+
+  <a name="ScaleIOPersistentVolumeSource"></a>
+  *ScaleIOPersistentVolumeSource represents a persistent ScaleIO volume*
+
+  - **scaleIO.gateway** (string), required
+    gateway is the host address of the ScaleIO API Gateway.
+-->
+- **scaleIO** (ScaleIOPersistentVolumeSource)
+
+  scaleIO 表示 Kubernetes 节点上挂接和挂载的 ScaleIO 持久卷。
+  
+  <a name="ScaleIOPersistentVolumeSource"></a> 
+  **ScaleIOPersistentVolumeSource 表示一个 ScaleIO 持久卷。**
+  
+  - **scaleIO.gateway** (string)，必需
+
+    gateway 是 ScaleIO API 网关的主机地址。
+
+<!--
+  - **scaleIO.secretRef** (SecretReference), required
+    secretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail.
+
+    <a name="SecretReference"></a>
+    *SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace*
+
+    - **scaleIO.secretRef.name** (string)
+      name is unique within a namespace to reference a secret resource.
+
+    - **scaleIO.secretRef.namespace** (string)
+      namespace defines the space within which the secret name must be unique.
+-->  
+  - **scaleIO.secretRef** (SecretReference)，必需
+
+    secretRef 引用包含 ScaleIO 用户和其他敏感信息的 Secret。如果未提供此项，则 Login 操作将失败。
+    
+    <a name="SecretReference"></a> 
+    **SecretReference 表示对某 Secret 的引用，其中包含足够的信息来访问任何名字空间中的 Secret。**
+    
+    - **scaleIO.secretRef.name** (string)
+
+      name 在名字空间内是唯一的，以引用一个 Secret 资源。
+    
+    - **scaleIO.secretRef.namespace** (string)
+
+      namespace 指定一个名字空间，Secret 名称在该名字空间中必须唯一。
+
+<!--
+  - **scaleIO.system** (string), required
+    system is the name of the storage system as configured in ScaleIO.
+
+  - **scaleIO.fsType** (string)
+    fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Default is "xfs"
+
+  - **scaleIO.protectionDomain** (string)
+    protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.
+
+  - **scaleIO.readOnly** (boolean)
+    readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+-->  
+  - **scaleIO.system** (string)，必需
+
+    system 是 ScaleIO 中所配置的存储系统的名称。
+  
+  - **scaleIO.fsType** (string)
+
+    fsType 是要挂载的文件系统类型。必须是主机操作系统所支持的文件系统类型之一。
+    例如 “ext4”、“xfs”、“ntfs”。默认为 “xfs”。
+  
+  - **scaleIO.protectionDomain** (string)
+
+    protectionDomain 是 ScaleIO 保护域（ScaleIO Protection Domain）的名称，用于已配置的存储。
+  
+  - **scaleIO.readOnly** (boolean)
+
+    readOnly 默认为 false（读/写）。此处 readOnly 将在 VolumeMounts 中强制设置 readOnly。
+
+<!--
+  - **scaleIO.sslEnabled** (boolean)
+    sslEnabled is the flag to enable/disable SSL communication with Gateway, default false
+
+  - **scaleIO.storageMode** (string)
+    storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.
+
+  - **scaleIO.storagePool** (string)
+    storagePool is the ScaleIO Storage Pool associated with the protection domain.
+
+  - **scaleIO.volumeName** (string)
+    volumeName is the name of a volume already created in the ScaleIO system that is associated with this volume source.
+-->  
+  - **scaleIO.sslEnabled** (boolean)
+
+    sslEnabled 是启用/禁用与网关（Gateway）进行 SSL 通信的标志，默认为 false。
+  
+  - **scaleIO.storageMode** (string)
+
+    storageMode 指示卷所用的存储应是 ThickProvisioned 或 ThinProvisioned。
+    默认为 ThinProvisioned。
+  
+  - **scaleIO.storagePool** (string)
+
+    storagePool 是与保护域关联的 ScaleIO Storage Pool。
+  
+  - **scaleIO.volumeName** (string)
+
+    volumeName 是在与此卷源关联的 ScaleIO 系统中已创建的卷的名称。
+
+<!--
+- **storageos** (StorageOSPersistentVolumeSource)
+  storageOS represents a StorageOS volume that is attached to the kubelet's host machine and mounted into the pod More info: https://examples.k8s.io/volumes/storageos/README.md
+
+  <a name="StorageOSPersistentVolumeSource"></a>
+  *Represents a StorageOS persistent volume resource.*
+
+  - **storageos.fsType** (string)
+    fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+
+  - **storageos.readOnly** (boolean)
+    readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+-->
+- **storageos** (StorageOSPersistentVolumeSource)
+
+  storageOS 表示一个 StorageOS 卷，该卷被挂接到 kubelet 的主机并挂载到 Pod 中。更多信息：
+  https://examples.k8s.io/volumes/storageos/README.md
+  
+  <a name="StorageOSPersistentVolumeSource"></a>
+  **表示 StorageOS 持久卷资源。**
+  
+  - **storageos.fsType** (string)
+
+    fsType 是要挂载的文件系统类型。必须是主机操作系统所支持的文件系统类型之一。
+    例如 “ext4”、“xfs”、“ntfs”。如果未指定，则隐式推断为 “ext4”。
+  
+  - **storageos.readOnly** (boolean)
+
+    readOnly 默认为 false（读/写）。此处 readOnly 将在 VolumeMounts 中强制设置 readOnly。
+
+<!--
+  - **storageos.secretRef** (<a href="{{< ref "../common-definitions/object-reference#ObjectReference" >}}">ObjectReference</a>)
+    secretRef specifies the secret to use for obtaining the StorageOS API credentials.  If not specified, default values will be attempted.
+
+  - **storageos.volumeName** (string)
+    volumeName is the human-readable name of the StorageOS volume.  Volume names are only unique within a namespace.
+
+  - **storageos.volumeNamespace** (string)
+    volumeNamespace specifies the scope of the volume within StorageOS.  If no namespace is specified then the Pod's namespace will be used.  This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to "default" if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.
+-->  
+  - **storageos.secretRef** (<a href="{{< ref "../common-definitions/object-reference#ObjectReference" >}}">ObjectReference</a>)
+
+    secretRef 指定用于获取 StorageOS API 凭据的 Secret。如果未指定，则将尝试使用默认值。
+  
+  - **storageos.volumeName** (string)
+
+    volumeName 是 StorageOS 卷的人类可读名称。这些卷名称在一个名字空间内是唯一的。
+  
+  - **storageos.volumeNamespace** (string)
+
+    volumeNamespace 指定 StorageOS 内卷的作用域。如果未指定名字空间，则将使用 Pod 的名字空间。
+    这一字段的存在允许 Kubernetes 中名称作用域与 StorageOS 进行映射，实现更紧密的集成。
+    将 volumeName 设为任何名称均可以重载默认的行为。
+    如果你未在 StorageOS 内使用名字空间，则设为 “default”。
+    StorageOS 内预先不存在的名字空间会被创建。
+
+<!--
+- **vsphereVolume** (VsphereVirtualDiskVolumeSource)
+  vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine
+
+  <a name="VsphereVirtualDiskVolumeSource"></a>
+  *Represents a vSphere volume resource.*
+
+  - **vsphereVolume.volumePath** (string), required
+    volumePath is the path that identifies vSphere volume vmdk
+
+  - **vsphereVolume.fsType** (string)
+    fsType is filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+
+  - **vsphereVolume.storagePolicyID** (string)
+    storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.
+
+  - **vsphereVolume.storagePolicyName** (string)
+    storagePolicyName is the storage Policy Based Management (SPBM) profile name.
+-->
+- **vsphereVolume** (VsphereVirtualDiskVolumeSource)
+
+  vsphereVolume 表示 kubelet 主机上挂接和挂载的 vSphere 卷。
+  
+  <a name="VsphereVirtualDiskVolumeSource"></a> 
+  **表示 vSphere 卷资源。**
+  
+  - **vsphereVolume.volumePath** (string)，必需
+
+    volumePath 是标识 vSphere 卷 vmdk 的路径。
+  
+  - **vsphereVolume.fsType** (string)
+
+    fsType 是要挂载的文件系统类型。必须是主机操作系统所支持的文件系统类型之一。
+    例如 “ext4”、“xfs”、“ntfs”。如果未指定，则隐式推断为 “ext4”。
+  
+  - **vsphereVolume.storagePolicyID** (string)
+
+    storagePolicyID 是与 StoragePolicyName 关联的基于存储策略的管理（SPBM）配置文件 ID。
+  
+  - **vsphereVolume.storagePolicyName** (string)
+
+    storagePolicyName 是基于存储策略的管理（SPBM）配置文件名称。
+
+## PersistentVolumeStatus {#PersistentVolumeStatus}
+<!--
+PersistentVolumeStatus is the current status of a persistent volume.
+-->
+PersistentVolumeStatus 是持久卷的当前状态。
+
+<hr>
+
+<!--
+- **message** (string)
+  message is a human-readable message indicating details about why the volume is in this state.
+
+- **phase** (string)
+  phase indicates if a volume is available, bound to a claim, or released by a claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#phase
+  
+- **reason** (string)
+  reason is a brief CamelCase string that describes any failure and is meant for machine parsing and tidy display in the CLI.
+-->
+- **message** (string)
+
+  message 是一条人类可读的消息，指明有关卷为何处于此状态的详细信息。
+
+- **phase** (string)
+
+  phase 表示一个卷是否可用，是否绑定到一个 PVC 或是否由某个 PVC 释放。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/persistent-volumes#phase
+
+- **reason** (string)
+
+  reason 是一个描述任何故障的简短 CamelCase 字符串，用于机器解析并在 CLI 中整齐地显示。
+
+## PersistentVolumeList {#PersistentVolumeList}
+<!--
+PersistentVolumeList is a list of PersistentVolume items.
+-->
+PersistentVolumeList 是 PersistentVolume 各项的列表。
+
+<hr>
+
+- **apiVersion**: v1
+- **kind**: PersistentVolumeList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+- **items** ([]<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>), required
+  items is a list of persistent volumes. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  标准的列表元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+- **items** ([]<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>)，必需
+
+  items 是持久卷的列表。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/persistent-volumes
+
+<!--
+## Operations {#Operations}
+### `get` read the specified PersistentVolume
+#### HTTP Request
+-->
+## 操作 {#Operations}
+
+<hr>
+
+### `get` 读取指定的 PersistentVolume
+#### HTTP 请求
+GET /api/v1/persistentvolumes/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PersistentVolume
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+
+  PersistentVolume 的名称
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>): OK
+
+401: Unauthorized
+
+<!--
+### `get` read status of the specified PersistentVolume
+#### HTTP Request
+-->
+### `get` 读取指定的 PersistentVolume 的状态
+#### HTTP 请求
+GET /api/v1/persistentvolumes/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PersistentVolume
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+
+  PersistentVolume 的名称
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind PersistentVolume
+#### HTTP Request
+-->
+### `list` 列出或观测类别为 PersistentVolume 的对象
+#### HTTP 请求
+GET /api/v1/persistentvolumes
+
+<!--
+#### Parameters
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolumeList" >}}">PersistentVolumeList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a PersistentVolume
+#### HTTP Request
+-->
+### `create` 创建 PersistentVolume
+#### HTTP 请求
+POST /api/v1/persistentvolumes
+
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **body**: <a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>，必需
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>): Created
+
+202 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified PersistentVolume
+#### HTTP Request
+-->
+### `update` 替换指定的 PersistentVolume
+#### HTTP 请求
+PUT /api/v1/persistentvolumes/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PersistentVolume
+- **body**: <a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+
+  PersistentVolume 的名称
+
+- **body**: <a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>): Created
+
+401: Unauthorized
+
+<!--
+### `update` replace status of the specified PersistentVolume
+#### HTTP Request
+-->
+### `update` 替换指定的 PersistentVolume 的状态
+#### HTTP 请求
+PUT /api/v1/persistentvolumes/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PersistentVolume
+- **body**: <a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+
+  PersistentVolume 的名称
+
+- **body**: <a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified PersistentVolume
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 PersistentVolume
+#### HTTP 请求
+PATCH /api/v1/persistentvolumes/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PersistentVolume
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+
+  PersistentVolume 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update status of the specified PersistentVolume
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 PersistentVolume 的状态
+#### HTTP 请求
+PATCH /api/v1/persistentvolumes/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PersistentVolume
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+
+  PersistentVolume 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a PersistentVolume
+#### HTTP Request
+-->
+### `delete` 删除 PersistentVolume
+#### HTTP 请求
+DELETE /api/v1/persistentvolumes/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PersistentVolume
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+
+  PersistentVolume 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>): OK
+
+202 (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolume" >}}">PersistentVolume</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of PersistentVolume
+#### HTTP Request
+-->
+### `deletecollection` 删除 PersistentVolume 的集合
+#### HTTP 请求
+DELETE /api/v1/persistentvolumes
+
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **continue** (*in query*): string
+- **dryRun** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+-->
+#### 参数
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/secret-v1.md b/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/secret-v1.md
new file mode 100644
index 0000000000..18251f251d
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/secret-v1.md
@@ -0,0 +1,657 @@
+---
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "Secret"
+content_type: "api_reference"
+description: "Secret 包含某些类别的秘密数据。"
+title: "Secret"
+weight: 2
+---
+<!--
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "Secret"
+content_type: "api_reference"
+description: "Secret holds secret data of a certain type."
+title: "Secret"
+weight: 2
+-->
+
+`apiVersion: v1`
+
+`import "k8s.io/api/core/v1"`
+
+## Secret {#Secret}
+<!--
+Secret holds secret data of a certain type. The total bytes of the values in the Data field must be less than MaxSecretSize bytes.
+-->
+Secret 包含某些类别的秘密数据。
+data 字段值的总字节必须小于 MaxSecretSize 字节。
+
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: Secret
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **data** (map[string][]byte)
+  Data contains the secret data. Each key must consist of alphanumeric characters, '-', '_' or '.'. The serialized form of the secret data is a base64 encoded string, representing the arbitrary (possibly non-string) data value here. Described in https://tools.ietf.org/html/rfc4648#section-4
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  
+  标准的对象元数据。
+  更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **data** (map[string][]byte)
+  
+  data 包含秘密数据。
+  每个键必须由字母、数字、“-”、“_” 或 “.” 组成。
+  秘密数据的序列化格式是 base64 编码的字符串，表示此处的任意（可能是非字符串）数据值。
+  请参阅 https://tools.ietf.org/html/rfc4648#section-4
+
+<!--
+- **immutable** (boolean)
+  Immutable, if set to true, ensures that data stored in the Secret cannot be updated (only object metadata can be modified). If not set to true, the field can be modified at any time. Defaulted to nil.
+
+- **stringData** (map[string]string)
+  stringData allows specifying non-binary secret data in string form. It is provided as a write-only input field for convenience. All keys and values are merged into the data field on write, overwriting any existing values. The stringData field is never output when reading from the API.
+
+- **type** (string)
+  Used to facilitate programmatic handling of secret data. More info: https://kubernetes.io/docs/concepts/configuration/secret/#secret-types
+-->
+- **immutable** (boolean)
+  
+  如果 immutable 设为 true，则确保不会更新 Secret 中存储的数据（只能修改对象元数据）。
+  如果未设为 true，则可以随时修改此字段。
+  默认为 nil。
+
+- **stringData** (map[string]string)
+  
+  stringData 允许指定字符串格式的非二进制秘密数据。
+  为了方便起见，它作为只写输入字段提供。
+  写入时将所有键和值合并到 data 字段，且覆盖任何现有的值。
+  从 API 读取时绝不会输出 stringData 字段。
+
+- **type** (string)
+  
+  用于满足程序化方式处理秘密数据。
+  更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/configuration/secret/#secret-types
+
+## SecretList {#SecretList}
+
+<!--
+SecretList is a list of Secret.
+-->
+SecretList 是 Secret 的列表。
+
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: SecretList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+- **items** ([]<a href="{{< ref "../config-and-storage-resources/secret-v1#Secret" >}}">Secret</a>), required
+
+  Items is a list of secret objects. More info: https://kubernetes.io/docs/concepts/configuration/secret
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  
+  标准的列表元数据。
+  更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+- **items** ([]<a href="{{< ref "../config-and-storage-resources/secret-v1#Secret" >}}">Secret</a>)，必需
+  
+  items 是 Secret 对象的列表。
+  更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/configuration/secret
+
+<!--
+## Operations {#Operations}
+
+<hr>
+
+### `get` read the specified Secret
+
+#### HTTP Request
+-->
+## 操作 {#Operations}
+
+<hr>
+
+### `get` 读取指定的 Secret
+
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/secrets/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the Secret
+- **namespace** (*in path*): string, required
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  Secret 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/secret-v1#Secret" >}}">Secret</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind Secret
+
+#### HTTP Request
+-->
+### `list` 列出或观测类别为 Secret 的对象
+
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/secrets
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/secret-v1#SecretList" >}}">SecretList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind Secret
+
+#### HTTP Request
+-->
+### `list` 列出或观测类别为 Secret 的对象
+
+#### HTTP 请求
+
+GET /api/v1/secrets
+
+<!--
+#### Parameters
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/secret-v1#SecretList" >}}">SecretList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a Secret
+
+#### HTTP Request
+-->
+### `create` 创建 Secret
+
+#### HTTP 请求
+
+POST /api/v1/namespaces/{namespace}/secrets
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../config-and-storage-resources/secret-v1#Secret" >}}">Secret</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../config-and-storage-resources/secret-v1#Secret" >}}">Secret</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/secret-v1#Secret" >}}">Secret</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/secret-v1#Secret" >}}">Secret</a>): Created
+
+202 (<a href="{{< ref "../config-and-storage-resources/secret-v1#Secret" >}}">Secret</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified Secret
+
+#### HTTP Request
+-->
+### `update` 替换指定的 Secret
+
+#### HTTP 请求
+
+PUT /api/v1/namespaces/{namespace}/secrets/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the Secret
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../config-and-storage-resources/secret-v1#Secret" >}}">Secret</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  Secret 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../config-and-storage-resources/secret-v1#Secret" >}}">Secret</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/secret-v1#Secret" >}}">Secret</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/secret-v1#Secret" >}}">Secret</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified Secret
+
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 Secret
+
+#### HTTP 请求
+
+PATCH /api/v1/namespaces/{namespace}/secrets/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the Secret
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  Secret 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../config-and-storage-resources/secret-v1#Secret" >}}">Secret</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/secret-v1#Secret" >}}">Secret</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a Secret
+
+#### HTTP Request
+-->
+### `delete` 删除 Secret
+
+#### HTTP 请求
+
+DELETE /api/v1/namespaces/{namespace}/secrets/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the Secret
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  Secret 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of Secret
+
+#### HTTP Request
+-->
+### `deletecollection` 删除 Secret 的集合
+
+#### HTTP 请求
+
+DELETE /api/v1/namespaces/{namespace}/secrets
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **continue** (*in query*): string
+- **dryRun** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/storage-class-v1.md b/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/storage-class-v1.md
new file mode 100644
index 0000000000..4837dfeb35
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/storage-class-v1.md
@@ -0,0 +1,561 @@
+---
+api_metadata:
+  apiVersion: "storage.k8s.io/v1"
+  import: "k8s.io/api/storage/v1"
+  kind: "StorageClass"
+content_type: "api_reference"
+description: "StorageClass 为可以动态制备 PersistentVolume 的存储类描述参数。"
+title: "StorageClass"
+weight: 6
+---
+<!--
+api_metadata:
+  apiVersion: "storage.k8s.io/v1"
+  import: "k8s.io/api/storage/v1"
+  kind: "StorageClass"
+content_type: "api_reference"
+description: "StorageClass describes the parameters for a class of storage for which PersistentVolumes can be dynamically provisioned."
+title: "StorageClass"
+weight: 6
+-->
+
+`apiVersion: storage.k8s.io/v1`
+
+`import "k8s.io/api/storage/v1"`
+
+## StorageClass {#StorageClass}
+<!--
+StorageClass describes the parameters for a class of storage for which PersistentVolumes can be dynamically provisioned.
+
+StorageClasses are non-namespaced; the name of the storage class according to etcd is in ObjectMeta.Name.
+-->
+StorageClass 为可以动态制备 PersistentVolume 的存储类描述参数。
+
+StorageClass 是不受名字空间作用域限制的；按照 etcd 设定的存储类的名称位于 ObjectMeta.Name 中。
+
+<hr>
+
+- **apiVersion**: storage.k8s.io/v1
+
+- **kind**: StorageClass
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **provisioner** (string), required
+  Provisioner indicates the type of the provisioner.
+
+- **allowVolumeExpansion** (boolean)
+  AllowVolumeExpansion shows whether the storage class allow volume expand
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **provisioner** (string)，必需
+
+  provisioner 表示制备器的类别。
+
+- **allowVolumeExpansion** (boolean)
+
+  allowVolumeExpansion 显示存储类是否允许卷扩充。
+
+<!--
+- **allowedTopologies** ([]TopologySelectorTerm)
+  *Atomic: will be replaced during a merge*
+
+  Restrict the node topologies where volumes can be dynamically provisioned. Each volume plugin defines its own supported topology specifications. An empty TopologySelectorTerm list means there is no topology restriction. This field is only honored by servers that enable the VolumeScheduling feature.
+  
+  <a name="TopologySelectorTerm"></a>
+  *A topology selector term represents the result of label queries. A null or empty topology selector term matches no objects. The requirements of them are ANDed. It provides a subset of functionality as NodeSelectorTerm. This is an alpha feature and may change in the future.*
+-->
+- **allowedTopologies** ([]TopologySelectorTerm)
+
+  **原子性：将在合并期间被替换**
+  
+  限制可以动态制备卷的节点拓扑。每个卷插件定义其自己支持的拓扑规约。
+  空的 TopologySelectorTerm 列表意味着没有拓扑限制。
+  只有启用 VolumeScheduling 功能特性的服务器才能使用此字段。
+  
+  <a name="TopologySelectorTerm"></a> 
+  **拓扑选择器条件表示标签查询的结果。
+  一个 null 或空的拓扑选择器条件不会匹配任何对象。各个条件的要求按逻辑与的关系来计算。
+  此选择器作为 NodeSelectorTerm 所提供功能的子集。此功能为 Alpha 特性，将来可能会变更。**
+
+<!--
+  - **allowedTopologies.matchLabelExpressions** ([]TopologySelectorLabelRequirement)
+    A list of topology selector requirements by labels.
+    <a name="TopologySelectorLabelRequirement"></a>
+    *A topology selector requirement is a selector that matches given label. This is an alpha feature and may change in the future.*
+
+    - **allowedTopologies.matchLabelExpressions.key** (string), required
+      The label key that the selector applies to.
+    - **allowedTopologies.matchLabelExpressions.values** ([]string), required
+      An array of string values. One value must match the label to be selected. Each entry in Values is ORed.
+-->  
+  - **allowedTopologies.matchLabelExpressions** ([]TopologySelectorLabelRequirement)
+
+    按标签设置的拓扑选择器要求的列表。
+    
+    <a name="TopologySelectorLabelRequirement"></a> 
+    **拓扑选择器要求是与给定标签匹配的一个选择器。此功能为 Alpha 特性，将来可能会变更。**
+    
+    - **allowedTopologies.matchLabelExpressions.key** (string)，必需
+
+      选择器所针对的标签键。
+    
+    - **allowedTopologies.matchLabelExpressions.values** ([]string)，必需
+
+      字符串数组。一个值必须与要选择的标签匹配。values 中的每个条目按逻辑或的关系来计算。
+
+<!--
+- **mountOptions** ([]string)
+  Dynamically provisioned PersistentVolumes of this storage class are created with these mountOptions, e.g. ["ro", "soft"]. Not validated - mount of the PVs will simply fail if one is invalid.
+
+- **parameters** (map[string]string)
+  Parameters holds the parameters for the provisioner that should create volumes of this storage class.
+-->
+- **mountOptions** ([]string)
+
+  此存储类动态制备的 PersistentVolume 用这些 mountOptions（例如 ["ro", "soft"]）进行创建。
+  系统对选项作检查——如果有一个选项无效，则这些 PV 的挂载将失败。
+
+- **parameters** (map[string]string)
+
+  parameters 包含应创建此存储类卷的制备器的参数。
+
+<!--
+- **reclaimPolicy** (string)
+  Dynamically provisioned PersistentVolumes of this storage class are created with this reclaimPolicy. Defaults to Delete.
+
+- **volumeBindingMode** (string)
+  VolumeBindingMode indicates how PersistentVolumeClaims should be provisioned and bound.  When unset, VolumeBindingImmediate is used. This field is only honored by servers that enable the VolumeScheduling feature.
+-->
+- **reclaimPolicy** (string)
+
+  此存储类动态制备的 PersistentVolume 用这个 reclaimPolicy 进行创建。默认为 Delete。
+
+- **volumeBindingMode** (string)
+
+  volumeBindingMode 指示应该如何制备和绑定 PersistentVolumeClaim。
+  未设置时，将使用 VolumeBindingImmediate。
+  只有启用 VolumeScheduling 功能特性的服务器才能使用此字段。
+
+## StorageClassList {#StorageClassList}
+<!--
+StorageClassList is a collection of storage classes.
+-->
+StorageClassList 是存储类的集合。
+
+<hr>
+
+- **apiVersion**: storage.k8s.io/v1
+
+- **kind**: StorageClassList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../config-and-storage-resources/storage-class-v1#StorageClass" >}}">StorageClass</a>), required
+  Items is the list of StorageClasses
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  标准的列表元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../config-and-storage-resources/storage-class-v1#StorageClass" >}}">StorageClass</a>)，必需
+
+  items 是 StorageClass 的列表。
+
+<!--
+## Operations {#Operations}
+### `get` read the specified StorageClass
+#### HTTP Request
+-->
+## 操作 {#Operations}
+
+<hr>
+
+### `get` 读取指定的 StorageClass
+#### HTTP 请求
+GET /apis/storage.k8s.io/v1/storageclasses/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the StorageClass
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+
+  StorageClass 的名称
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/storage-class-v1#StorageClass" >}}">StorageClass</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind StorageClass
+#### HTTP Request
+-->
+### `list` 列出或观测类别为 StorageClass 的对象
+#### HTTP 请求
+GET /apis/storage.k8s.io/v1/storageclasses
+
+<!--
+#### Parameters
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/storage-class-v1#StorageClassList" >}}">StorageClassList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a StorageClass
+#### HTTP Request
+-->
+### `create` 创建 StorageClass
+#### HTTP 请求
+POST /apis/storage.k8s.io/v1/storageclasses
+
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../config-and-storage-resources/storage-class-v1#StorageClass" >}}">StorageClass</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **body**: <a href="{{< ref "../config-and-storage-resources/storage-class-v1#StorageClass" >}}">StorageClass</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/storage-class-v1#StorageClass" >}}">StorageClass</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/storage-class-v1#StorageClass" >}}">StorageClass</a>): Created
+
+202 (<a href="{{< ref "../config-and-storage-resources/storage-class-v1#StorageClass" >}}">StorageClass</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified StorageClass
+#### HTTP Request
+-->
+### `update` 替换指定的 StorageClass
+#### HTTP 请求
+PUT /apis/storage.k8s.io/v1/storageclasses/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the StorageClass
+- **body**: <a href="{{< ref "../config-and-storage-resources/storage-class-v1#StorageClass" >}}">StorageClass</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+
+  StorageClass 的名称
+
+- **body**: <a href="{{< ref "../config-and-storage-resources/storage-class-v1#StorageClass" >}}">StorageClass</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/storage-class-v1#StorageClass" >}}">StorageClass</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/storage-class-v1#StorageClass" >}}">StorageClass</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified StorageClass
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 StorageClass
+#### HTTP 请求
+PATCH /apis/storage.k8s.io/v1/storageclasses/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the StorageClass
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+
+  StorageClass 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/storage-class-v1#StorageClass" >}}">StorageClass</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/storage-class-v1#StorageClass" >}}">StorageClass</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a StorageClass
+#### HTTP Request
+-->
+### `delete` 删除 StorageClass
+#### HTTP 请求
+DELETE /apis/storage.k8s.io/v1/storageclasses/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the StorageClass
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+
+  StorageClass 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/storage-class-v1#StorageClass" >}}">StorageClass</a>): OK
+
+202 (<a href="{{< ref "../config-and-storage-resources/storage-class-v1#StorageClass" >}}">StorageClass</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of StorageClass
+#### HTTP Request
+-->
+### `deletecollection` 删除 StorageClass 的集合
+#### HTTP 请求
+DELETE /apis/storage.k8s.io/v1/storageclasses
+
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **continue** (*in query*): string
+- **dryRun** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+-->
+#### 参数
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/volume-attachment-v1.md b/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/volume-attachment-v1.md
new file mode 100644
index 0000000000..ef5a7772d0
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/volume-attachment-v1.md
@@ -0,0 +1,690 @@
+---
+api_metadata:
+  apiVersion: "storage.k8s.io/v1"
+  import: "k8s.io/api/storage/v1"
+  kind: "VolumeAttachment"
+content_type: "api_reference"
+description: "VolumeAttachment 抓取将指定卷挂接到指定节点或从指定节点解除挂接指定卷的意图。"
+title: "VolumeAttachment"
+weight: 7
+---
+<!--
+api_metadata:
+  apiVersion: "storage.k8s.io/v1"
+  import: "k8s.io/api/storage/v1"
+  kind: "VolumeAttachment"
+content_type: "api_reference"
+description: "VolumeAttachment captures the intent to attach or detach the specified volume to/from the specified node."
+title: "VolumeAttachment"
+weight: 7
+-->
+
+`apiVersion: storage.k8s.io/v1`
+
+`import "k8s.io/api/storage/v1"`
+
+## VolumeAttachment {#VolumeAttachment}
+<!--
+VolumeAttachment captures the intent to attach or detach the specified volume to/from the specified node.
+
+VolumeAttachment objects are non-namespaced.
+-->
+VolumeAttachment 抓取将指定卷挂接到指定节点或从指定节点解除挂接指定卷的意图。
+
+VolumeAttachment 对象未划分命名空间。
+
+<hr>
+
+- **apiVersion**: storage.k8s.io/v1
+- **kind**: VolumeAttachment
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  Standard object metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachmentSpec" >}}">VolumeAttachmentSpec</a>), required
+  Specification of the desired attach/detach volume behavior. Populated by the Kubernetes system.
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachmentSpec" >}}">VolumeAttachmentSpec</a>)，必需
+  期望的挂接/解除挂接卷行为的规约。由 Kubernetes 系统填充。
+
+<!--
+- **status** (<a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachmentStatus" >}}">VolumeAttachmentStatus</a>)
+  Status of the VolumeAttachment request. Populated by the entity completing the attach or detach operation, i.e. the external-attacher.
+-->
+- **status** (<a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachmentStatus" >}}">VolumeAttachmentStatus</a>)
+  VolumeAttachment 请求的状态。由完成挂接或解除挂接操作的实体（即外部挂接器）进行填充。
+
+## VolumeAttachmentSpec {#VolumeAttachmentSpec}
+<!--
+VolumeAttachmentSpec is the specification of a VolumeAttachment request.
+-->
+VolumeAttachmentSpec 是 VolumeAttachment 请求的规约。
+
+<hr>
+
+<!--
+- **attacher** (string), required
+  Attacher indicates the name of the volume driver that MUST handle this request. This is the name returned by GetPluginName().
+
+- **nodeName** (string), required
+  The node that the volume should be attached to.
+-->
+- **attacher** (string)，必需
+  attacher 表示必须处理此请求的卷驱动的名称。这是由 GetPluginName() 返回的名称。
+
+- **nodeName** (string)，必需
+  卷应挂接到的节点。
+
+<!--
+- **source** (VolumeAttachmentSource), required
+  Source represents the volume that should be attached.
+
+  <a name="VolumeAttachmentSource"></a>
+  *VolumeAttachmentSource represents a volume that should be attached. Right now only PersistenVolumes can be attached via external attacher, in future we may allow also inline volumes in pods. Exactly one member can be set.*
+
+  - **source.inlineVolumeSpec** (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolumeSpec" >}}">PersistentVolumeSpec</a>)
+    inlineVolumeSpec contains all the information necessary to attach a persistent volume defined by a pod's inline VolumeSource. This field is populated only for the CSIMigration feature. It contains translated fields from a pod's inline VolumeSource to a PersistentVolumeSpec. This field is beta-level and is only honored by servers that enabled the CSIMigration feature.
+
+  - **source.persistentVolumeName** (string)
+    Name of the persistent volume to attach.
+-->
+- **source** (VolumeAttachmentSource)，必需
+  source 表示应挂接的卷。
+  
+  <a name="VolumeAttachmentSource"></a>
+  **VolumeAttachmentSource 表示应挂接的卷。现在只能通过外部挂接器挂接 PersistenVolume，
+  将来我们可能还允许 Pod 中的内联卷。只能设置一个成员。**
+  
+  - **source.inlineVolumeSpec** (<a href="{{< ref "../config-and-storage-resources/persistent-volume-v1#PersistentVolumeSpec" >}}">PersistentVolumeSpec</a>)
+    
+    inlineVolumeSpec 包含挂接由 Pod 的内联 VolumeSource 定义的持久卷时所有必需的信息。
+    仅为 CSIMigation 功能填充此字段。
+    它包含从 Pod 的内联 VolumeSource 转换为 PersistentVolumeSpec 的字段。
+    此字段处于 beta 阶段，且只有启用 CSIMigration 功能的服务器才能使用此字段。
+  
+  - **source.persistentVolumeName** (string)
+    要挂接的持久卷的名称。
+
+## VolumeAttachmentStatus {#VolumeAttachmentStatus}
+<!--
+VolumeAttachmentStatus is the status of a VolumeAttachment request.
+- **attached** (boolean), required
+  Indicates the volume is successfully attached. This field must only be set by the entity completing the attach operation, i.e. the external-attacher.
+-->
+VolumeAttachmentStatus 是 VolumeAttachment 请求的状态。
+
+<hr>
+
+- **attached** (boolean)，必需
+  表示卷被成功挂接。此字段只能由完成挂接操作的实体（例如外部挂接器）进行设置。
+
+<!--
+- **attachError** (VolumeError)
+  The last error encountered during attach operation, if any. This field must only be set by the entity completing the attach operation, i.e. the external-attacher.
+
+  <a name="VolumeError"></a>
+  *VolumeError captures an error encountered during a volume operation.*
+
+  - **attachError.message** (string)
+    String detailing the error encountered during Attach or Detach operation. This string may be logged, so it should not contain sensitive information.
+
+  - **attachError.time** (Time)
+    Time the error was encountered.
+
+    <a name="Time"></a>
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+-->
+- **attachError** (VolumeError)
+  挂接操作期间遇到的最后一个错误，如果有。
+  此字段只能由完成挂接操作的实体（例如外部挂接器）进行设置。
+  
+  <a name="VolumeError"></a> 
+  **VolumeError 抓取卷操作期间遇到的一个错误。**
+  
+  - **attachError.message** (string)
+    此字符串详细说明挂接或解除挂接操作期间遇到的错误。
+    此字符串可以放入日志，因此它不应包含敏感信息。
+  
+  - **attachError.time** (Time)
+    遇到错误的时间。
+    
+    <a name="Time"></a> 
+    **time 是 time.Time 的包装类，支持正确地序列化为 YAML 和 JSON。
+    为 time 包提供的许多工厂方法提供了包装类。**
+
+<!--
+- **attachmentMetadata** (map[string]string)
+  Upon successful attach, this field is populated with any information returned by the attach operation that must be passed into subsequent WaitForAttach or Mount calls. This field must only be set by the entity completing the attach operation, i.e. the external-attacher.
+-->
+- **attachmentMetadata** (map[string]string)
+  成功挂接时，此字段将由挂接操作返回的任何信息进行填充，
+  这些信息必须传递到后续的 WaitForAttach 或 Mount 调用中。
+  此字段只能由完成挂接操作的实体（例如外部挂接器）进行设置。
+
+<!--
+- **detachError** (VolumeError)
+  The last error encountered during detach operation, if any. This field must only be set by the entity completing the detach operation, i.e. the external-attacher.
+
+  <a name="VolumeError"></a>
+  *VolumeError captures an error encountered during a volume operation.*
+
+  - **detachError.message** (string)
+    String detailing the error encountered during Attach or Detach operation. This string may be logged, so it should not contain sensitive information.
+
+  - **detachError.time** (Time)
+    Time the error was encountered.
+
+    <a name="Time"></a>
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+-->
+- **detachError** (VolumeError)
+  解除挂接操作期间遇到的最后一个错误，如果有。
+  此字段只能由完成解除挂接操作的实体（例如外部挂接器）进行设置。
+  
+  <a name="VolumeError"></a> 
+  **VolumeError 抓取卷操作期间遇到的一个错误。**
+  
+  - **detachError.message** (string)
+    此字符串详细说明挂接或解除挂接操作期间遇到的错误。
+    此字符串可以放入日志，因此它不应包含敏感信息。
+  
+  - **detachError.time** (Time)
+    遇到错误的时间。
+    
+    <a name="Time"></a> 
+    **time 是 time.Time 的包装类，支持正确地序列化为 YAML 和 JSON。
+    为 time 包提供的许多工厂方法提供了包装类。**
+
+## VolumeAttachmentList {#VolumeAttachmentList}
+<!--
+VolumeAttachmentList is a collection of VolumeAttachment objects.
+-->
+VolumeAttachmentList 是 VolumeAttachment 对象的集合。
+
+<hr>
+
+- **apiVersion**: storage.k8s.io/v1
+- **kind**: VolumeAttachmentList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>), required
+  Items is the list of VolumeAttachments
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  标准的列表元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>)，必需
+  items 是 VolumeAttachment 的列表。
+
+<!--
+## Operations {#Operations}
+### `get` read the specified VolumeAttachment
+#### HTTP Request
+-->
+## 操作 {#Operations}
+<hr>
+
+### `get` 读取指定的 VolumeAttachment
+#### HTTP 请求
+
+GET /apis/storage.k8s.io/v1/volumeattachments/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the VolumeAttachment
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+  VolumeAttachment 的名称
+
+- **pretty** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>): OK
+
+401: Unauthorized
+
+<!--
+### `get` read status of the specified VolumeAttachment
+#### HTTP Request
+-->
+### `get` 读取指定的 VolumeAttachment 的状态
+#### HTTP 请求
+GET /apis/storage.k8s.io/v1/volumeattachments/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the VolumeAttachment
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+  VolumeAttachment 的名称
+
+- **pretty** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind VolumeAttachment
+#### HTTP Request
+-->
+### `list` 列出或观测类别为 VolumeAttachment 的对象
+#### HTTP 请求
+GET /apis/storage.k8s.io/v1/volumeattachments
+
+<!--
+#### Parameters
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+- **allowWatchBookmarks** (**查询参数**): boolean
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachmentList" >}}">VolumeAttachmentList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a VolumeAttachment
+#### HTTP Request
+-->
+### `create` 创建 VolumeAttachment
+#### HTTP 请求
+POST /apis/storage.k8s.io/v1/volumeattachments
+
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **body**: <a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>，必需
+- **dryRun** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>): Created
+
+202 (<a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified VolumeAttachment
+#### HTTP Request
+-->
+### `update` 替换指定的 VolumeAttachment
+#### HTTP 请求
+PUT /apis/storage.k8s.io/v1/volumeattachments/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the VolumeAttachment
+- **body**: <a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+  VolumeAttachment 的名称
+
+- **body**: <a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>，必需
+- **dryRun** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>): Created
+
+401: Unauthorized
+
+<!--
+### `update` replace status of the specified VolumeAttachment
+#### HTTP Request
+-->
+### `update` 替换指定的 VolumeAttachment 的状态
+#### HTTP 请求
+PUT /apis/storage.k8s.io/v1/volumeattachments/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the VolumeAttachment
+- **body**: <a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+  VolumeAttachment 的名称
+
+- **body**: <a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>，必需
+- **dryRun** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified VolumeAttachment
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 VolumeAttachment
+#### HTTP 请求
+PATCH /apis/storage.k8s.io/v1/volumeattachments/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the VolumeAttachment
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+  VolumeAttachment 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+- **dryRun** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update status of the specified VolumeAttachment
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 VolumeAttachment 的状态
+#### HTTP 请求
+PATCH /apis/storage.k8s.io/v1/volumeattachments/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the VolumeAttachment
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+  VolumeAttachment 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+- **dryRun** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>): OK
+
+201 (<a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a VolumeAttachment
+#### HTTP Request
+-->
+### `delete` 删除 VolumeAttachment
+#### HTTP 请求
+DELETE /apis/storage.k8s.io/v1/volumeattachments/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the VolumeAttachment
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+-->
+#### 参数
+- **name** (**路径参数**): string，必需
+  VolumeAttachment 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>): OK
+
+202 (<a href="{{< ref "../config-and-storage-resources/volume-attachment-v1#VolumeAttachment" >}}">VolumeAttachment</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of VolumeAttachment
+#### HTTP Request
+-->
+### `deletecollection` 删除 VolumeAttachment 的集合
+#### HTTP 请求
+DELETE /apis/storage.k8s.io/v1/volumeattachments
+
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **continue** (*in query*): string
+- **dryRun** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+-->
+#### 参数
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **continue** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/volume.md b/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/volume.md
new file mode 100755
index 0000000000..5b5f3eb352
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/config-and-storage-resources/volume.md
@@ -0,0 +1,1785 @@
+---
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/api/core/v1"
+  kind: "Volume"
+content_type: "api_reference"
+description: "Volume 表示 Pod 中一个有名字的卷，可以由 Pod 中的任意容器进行访问。"
+title: "Volume"
+weight: 3
+---
+<!--
+api_metadata:
+  apiVersion: ""
+  import: "k8s.io/api/core/v1"
+  kind: "Volume"
+content_type: "api_reference"
+description: "Volume represents a named volume in a pod that may be accessed by any container in the pod."
+title: "Volume"
+weight: 3
+auto_generated: true
+-->
+
+`import "k8s.io/api/core/v1"`
+
+## Volume {#Volume}
+<!--
+Volume represents a named volume in a pod that may be accessed by any container in the pod.
+-->
+Volume 表示 Pod 中一个有名字的卷，可以由 Pod 中的任意容器进行访问。
+
+<hr>
+
+<!--
+- **name** (string), required
+  name of the volume. Must be a DNS_LABEL and unique within the pod. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+-->
+- **name** (string)，必需
+  
+  卷的名称。必须是 DNS_LABEL 且在 Pod 内是唯一的。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/names/#names
+
+<!--
+### Exposed Persistent volumes
+- **persistentVolumeClaim** (PersistentVolumeClaimVolumeSource)
+  persistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+
+  <a name="PersistentVolumeClaimVolumeSource"></a>
+  *PersistentVolumeClaimVolumeSource references the user's PVC in the same namespace. This volume finds the bound PV and mounts that volume for the pod. A PersistentVolumeClaimVolumeSource is, essentially, a wrapper around another type of volume that is owned by someone else (the system).*
+-->
+### 暴露的持久卷 {#exposed-persistent-volumes}
+- **persistentVolumeClaim** (PersistentVolumeClaimVolumeSource)
+  
+  persistentVolumeClaimVolumeSource 表示对同一名字空间中 PersistentVolumeClaim 的引用。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+  
+  <a name="PersistentVolumeClaimVolumeSource"></a>
+  **PersistentVolumeClaimVolumeSource 引用同一名字空间中用户的 PVC。
+  此卷找到绑定的 PV 并为 Pod 挂载这个 PV 卷。
+  PersistentVolumeClaimVolumeSource 本质上是其他人（或系统）拥有的另一类卷的包装类。**
+  
+  <!--
+  - **persistentVolumeClaim.claimName** (string), required
+    claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+
+  - **persistentVolumeClaim.readOnly** (boolean)
+    readOnly Will force the ReadOnly setting in VolumeMounts. Default false.
+  -->
+  - **persistentVolumeClaim.claimName** (string)，必需
+    
+    claimName 是与使用此卷的 Pod 位于同一名字空间中的 PersistentVolumeClaim 的名称。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+  
+  - **persistentVolumeClaim.readOnly** (boolean)
+    
+    readOnly 将在卷挂载中强制设置 readOnly 属性。默认为 false。
+
+<!--
+### Projections
+- **configMap** (ConfigMapVolumeSource)
+  configMap represents a configMap that should populate this volume
+
+  <a name="ConfigMapVolumeSource"></a>
+  *Adapts a ConfigMap into a volume.
+  The contents of the target ConfigMap's Data field will be presented in a volume as files using the keys in the Data field as the file names, unless the items element is populated with specific mappings of keys to paths. ConfigMap volumes support ownership management and SELinux relabeling.*
+-->
+### 投射 {#projections}
+- **configMap** (ConfigMapVolumeSource)
+  
+  configMap 表示应填充此卷的 configMap。
+  
+  <a name="ConfigMapVolumeSource"></a>
+  **将 ConfigMap 适配到一个卷中。目标 ConfigMap 的 data 字段的内容将以文件的形式呈现在一个卷中，
+  使用 data 字段中的键名作为文件名，除非 items 元素中已经填充了由键名到路径的特定映射。
+  ConfigMap 卷支持所有权管理和 SELinux 重新打标签。**
+  
+  <!--
+  - **configMap.name** (string)
+    Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+
+  - **configMap.optional** (boolean)
+    optional specify whether the ConfigMap or its keys must be defined
+  -->
+  - **configMap.name** (string)
+    
+    被引用资源的名称。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/names/#names
+  
+  - **configMap.optional** (boolean)
+    
+    optional 指定是否所引用的 ConfigMap 或其键必须已经被定义。
+  <!--
+  - **configMap.defaultMode** (int32)
+    defaultMode is optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+
+  - **configMap.items** ([]<a href="{{< ref "../config-and-storage-resources/volume#KeyToPath" >}}">KeyToPath</a>)
+    items if unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.
+  -->  
+  - **configMap.defaultMode** (int32)
+    
+    defaultMode 是可选的：默认情况下，模式位用于为已创建的文件设置权限。
+    必须是 0000 到 0777 之间的八进制值或 0 到 511 之间的十进制值。
+    YAML 既接受八进制值也接受十进制值，JSON 针对模式位需要十进制值。此字段默认为 0644。
+    路径内的目录不受此设置的影响。这可能与影响文件模式的其他选项（如 fsGroup）有冲突，且结果可以是其他模式位也被设置。
+  
+  - **configMap.items** ([]<a href="{{< ref "../config-and-storage-resources/volume#KeyToPath" >}}">KeyToPath</a>)
+    
+    如果未指定 items，则所引用的 ConfigMap 的 data 字段中的每个键值对将作为一个文件被投射到卷中，
+    这个文件的名称是键名，而文件的内容是键的取值。
+    如果指定 items，则所列出的键将被投射到指定的路径中，且不会显示未列出的键。
+    如果指定的键不在 ConfigMap 中，则卷设置将出错，除非对应的键被标记为可选。
+    路径必须是相对路径，不能包含 “..” 路径，也不能以 “..” 开头。
+<!--
+- **secret** (SecretVolumeSource)
+  secret represents a secret that should populate this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
+
+  <a name="SecretVolumeSource"></a>
+  *Adapts a Secret into a volume.
+  The contents of the target Secret's Data field will be presented in a volume as files using the keys in the Data field as the file names. Secret volumes support ownership management and SELinux relabeling.*
+-->
+- **secret** (SecretVolumeSource)
+  
+  secret 表示用来填充此卷的 Secret。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#secret
+  
+  <a name="SecretVolumeSource"></a> 
+  **将 Secret 适配到一个卷中。
+  目标 Secret 的 data 字段的内容将以文件的形式呈现在一个卷中，使用 data 字段中的键名作为文件名。
+  Secret 卷支持所有权管理和 SELinux 重新打标签。**
+  
+  <!--
+  - **secret.secretName** (string)
+    secretName is the name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
+
+  - **secret.optional** (boolean)
+    optional field specify whether the Secret or its keys must be defined
+  -->
+  - **secret.secretName** (string)
+    
+    secretName 是要使用的、位于 Pod 的名字空间中的 Secret 名称。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#secret
+  
+  - **secret.optional** (boolean)
+    
+    optional 字段指定是否 Secret 或其键必须已经定义。
+
+  <!--
+  - **secret.defaultMode** (int32)
+    defaultMode is Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+
+  - **secret.items** ([]<a href="{{< ref "../config-and-storage-resources/volume#KeyToPath" >}}">KeyToPath</a>)
+    items If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.
+  -->  
+  - **secret.defaultMode** (int32)
+    
+    defaultMode 是可选的：默认情况下，模式位用于为已创建的文件设置权限。
+    必须是 0000 到 0777 之间的八进制值或 0 到 511 之间的十进制值。
+    YAML 既接受八进制值也接受十进制值，JSON 针对模式位需要十进制值。此字段默认为 0644。
+    路径内的目录不受此设置的影响。
+    这可能与影响文件模式的其他选项（如 fsGroup）有冲突，且结果可以是其他模式位也被设置。
+  
+  - **secret.items** ([]<a href="{{< ref "../config-and-storage-resources/volume#KeyToPath" >}}">KeyToPath</a>)
+    
+    如果未指定 items，则所引用的 Secret 的 data 字段中的每个键值对将作为一个文件被投射到卷中，
+    这个文件的名称是键名，而文件的内容是键的取值。
+    如果指定 items，则所列出的键将被投射到指定的路径中，且不会显示未列出的键。
+    如果指定的键不在 Secret 中，则卷设置将出错，除非对应的键被标记为可选。
+    路径必须是相对路径，不能包含 “..” 路径，也不能以 “..” 开头。
+
+<!--
+- **downwardAPI** (DownwardAPIVolumeSource)
+  downwardAPI represents downward API about the pod that should populate this volume
+
+  <a name="DownwardAPIVolumeSource"></a>
+  *DownwardAPIVolumeSource represents a volume containing downward API info. Downward API volumes support ownership management and SELinux relabeling.*
+-->
+- **downwardAPI** (DownwardAPIVolumeSource)
+  
+  downwardAPI 表示有关 Pod 的 Downward API，用来填充此卷。
+  
+  <a name="DownwardAPIVolumeSource"></a> 
+  **DownwardAPIVolumeSource 表示包含 Downward API 信息的一个卷。Downward API 卷支持所有权管理和 SELinux 重新打标签。**
+  
+  <!--
+  - **downwardAPI.defaultMode** (int32)
+    Optional: mode bits to use on created files by default. Must be a Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+
+  - **downwardAPI.items** ([]<a href="{{< ref "../config-and-storage-resources/volume#DownwardAPIVolumeFile" >}}">DownwardAPIVolumeFile</a>)
+    Items is a list of downward API volume file
+  -->
+  - **downwardAPI.defaultMode** (int32)
+    
+    可选：默认情况下，模式位用于已创建的文件。
+    必须是可选的：默认情况下，模式位用于为已创建的文件设置权限。
+    必须是 0000 到 0777 之间的八进制值或 0 到 511 之间的十进制值。
+    YAML 既接受八进制值也接受十进制值，JSON 针对模式位需要十进制值。此字段默认为 0644。
+    路径内的目录不受此设置的影响。这可能与影响文件模式的其他选项（如 fsGroup）有冲突，且结果可以是其他模式位也被设置。
+  
+  - **downwardAPI.items** ([]<a href="{{< ref "../config-and-storage-resources/volume#DownwardAPIVolumeFile" >}}">DownwardAPIVolumeFile</a>)
+    
+    items 是 Downward API 卷文件的列表。
+
+<!--
+- **projected** (ProjectedVolumeSource)
+  projected items for all in one resources secrets, configmaps, and downward API
+
+  <a name="ProjectedVolumeSource"></a>
+  *Represents a projected volume source*
+
+  - **projected.defaultMode** (int32)
+    defaultMode are the mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+-->
+- **projected** (ProjectedVolumeSource)
+  
+  这是供 Secret、ConfigMap 和 Downward API 等所有资源使用的投射项。
+  
+  <a name="ProjectedVolumeSource"></a>
+  **表示一个投射的卷源。**
+  
+  - **projected.defaultMode** (int32)
+    
+    defaultMode 是默认情况下用于为已创建的文件设置权限的模式位。
+    必须是 0000 到 0777 之间的八进制值或 0 到 511 之间的十进制值。
+    YAML 既接受八进制值也接受十进制值，JSON 针对模式位需要十进制值。
+    路径内的目录不受此设置的影响。
+    这可能与影响文件模式的其他选项（如 fsGroup）有冲突，且结果可以是其他模式位也被设置。
+
+ <!--
+ - **projected.sources** ([]VolumeProjection)
+    sources is the list of volume projections
+
+    <a name="VolumeProjection"></a>
+    *Projection that may be projected along with other supported volume types*
+
+    - **projected.sources.configMap** (ConfigMapProjection)
+      configMap information about the configMap data to project
+
+      <a name="ConfigMapProjection"></a>
+      *Adapts a ConfigMap into a projected volume.
+      The contents of the target ConfigMap's Data field will be presented in a projected volume as files using the keys in the Data field as the file names, unless the items element is populated with specific mappings of keys to paths. Note that this is identical to a configmap volume source without the default mode.*
+ -->  
+  - **projected.sources** ([]VolumeProjection)
+    
+    sources 是卷投射的列表。
+    
+    <a name="VolumeProjection"></a> 
+    **这里的投射项目可能与其他受支持的卷类型一起进行投射。**
+    
+    - **projected.sources.configMap** (ConfigMapProjection)
+      
+      与要投射的 ConfigMap 数据有关的 ConfigMap 信息。
+      
+      <a name="ConfigMapProjection"></a> 
+      **将 ConfigMap 适配到一个投射的卷中。
+      目标 ConfigMap 的 Data 字段的内容将以文件的形式呈现在一个被投射的卷中，
+      使用 data 字段中的键名作为文件名，除非 items 元素中已经填充了由键名到路径的特定映射。
+      请注意，这等同于没有默认模式的 ConfigMap 卷源。**
+
+      <!--
+      - **projected.sources.configMap.name** (string)
+        Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+
+      - **projected.sources.configMap.optional** (boolean)
+        optional specify whether the ConfigMap or its keys must be defined
+      -->      
+      - **projected.sources.configMap.name** (string)
+        
+        被引用资源的名称。更多信息：
+        https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/names/#names
+      
+      - **projected.sources.configMap.optional** (boolean)
+        
+        optional 指定是否所引用的 ConfigMap 或其键必须已经被定义。
+      
+      <!--
+      - **projected.sources.configMap.items** ([]<a href="{{< ref "../config-and-storage-resources/volume#KeyToPath" >}}">KeyToPath</a>)
+        items if unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.
+      -->
+      - **projected.sources.configMap.items** ([]<a href="{{< ref "../config-and-storage-resources/volume#KeyToPath" >}}">KeyToPath</a>)
+        
+        如果未指定 items，则所引用的 ConfigMap 的 data 字段中的每个键值对将作为一个文件被投射到卷中，
+        这个文件的名称是键名，而文件的内容是键的取值。
+        如果指定 items，则所列出的键将被投射到指定的路径中，且不会显示未列出的键。
+        如果指定的键不在 ConfigMap 中，则卷设置将出错，除非对应的键被标记为可选。
+        路径必须是相对路径，不能包含 “..” 路径，也不能以 “..” 开头。
+
+    <!--
+    - **projected.sources.downwardAPI** (DownwardAPIProjection)
+      downwardAPI information about the downwardAPI data to project
+
+      <a name="DownwardAPIProjection"></a>
+      *Represents downward API info for projecting into a projected volume. Note that this is identical to a downwardAPI volume source without the default mode.*
+
+      - **projected.sources.downwardAPI.items** ([]<a href="{{< ref "../config-and-storage-resources/volume#DownwardAPIVolumeFile" >}}">DownwardAPIVolumeFile</a>)
+        Items is a list of DownwardAPIVolume file
+    -->    
+    - **projected.sources.downwardAPI** (DownwardAPIProjection)
+      
+      与要投射的 downward API 数据有关的 downward API 信息。
+      
+      <a name="DownwardAPIProjection"></a> 
+      **表示投射到投射卷的 Downward API 信息。请注意，这等同于没有默认模式的 downwardAPI 卷源。**
+      
+      - **projected.sources.downwardAPI.items** ([]<a href="{{< ref "../config-and-storage-resources/volume#DownwardAPIVolumeFile" >}}">DownwardAPIVolumeFile</a>)
+        
+        items 是 DownwardAPIVolume 文件的列表。
+
+    <!--
+    - **projected.sources.secret** (SecretProjection)
+      secret information about the secret data to project
+
+      <a name="SecretProjection"></a>
+      *Adapts a secret into a projected volume.
+      
+      The contents of the target Secret's Data field will be presented in a projected volume as files using the keys in the Data field as the file names. Note that this is identical to a secret volume source without the default mode.*
+
+      - **projected.sources.secret.name** (string)
+        Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+      -->    
+    - **projected.sources.secret** (SecretProjection)
+      
+      与要投射的 Secret 数据有关的 Secret 信息。
+      
+      <a name="SecretProjection"></a> 
+      **将 Secret 适配到一个投射卷中。
+      目标 Secret 的 data 字段的内容将以文件的形式呈现在一个投射卷中，使用 data 字段中的键名作为文件名。
+      请注意，这等同于没有默认模式的 Secret 卷源。**
+      
+      - **projected.sources.secret.name** (string)
+        
+        被引用资源的名称。更多信息：
+        https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/names/#names
+      
+      <!--
+      - **projected.sources.secret.optional** (boolean)
+        optional field specify whether the Secret or its key must be defined
+
+      - **projected.sources.secret.items** ([]<a href="{{< ref "../config-and-storage-resources/volume#KeyToPath" >}}">KeyToPath</a>)
+        items if unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.
+      -->
+      - **projected.sources.secret.optional** (boolean)
+        
+        optional 字段指定是否 Secret 或其键必须已经定义。
+      
+      - **projected.sources.secret.items** ([]<a href="{{< ref "../config-and-storage-resources/volume#KeyToPath" >}}">KeyToPath</a>)
+        
+        如果未指定 items，则所引用的 Secret 的 data 字段中的每个键值对将作为一个文件被投射到卷中，
+        这个文件的名称是键名，而文件的内容是键的取值。
+        如果指定 items，则所列出的键将被投射到指定的路径中，且不会显示未列出的键。
+        如果指定的键不在 Secret 中，则卷设置将出错，除非对应的键被标记为可选。
+        路径必须是相对路径，不能包含 “..” 路径，也不能以 “..” 开头。
+    <!--
+    - **projected.sources.serviceAccountToken** (ServiceAccountTokenProjection)
+      serviceAccountToken is information about the serviceAccountToken data to project
+
+      <a name="ServiceAccountTokenProjection"></a>
+      *ServiceAccountTokenProjection represents a projected service account token volume. This projection can be used to insert a service account token into the pods runtime filesystem for use against APIs (Kubernetes API Server or otherwise).*
+
+      - **projected.sources.serviceAccountToken.path** (string), required
+        path is the path relative to the mount point of the file to project the token into.
+    -->    
+    - **projected.sources.serviceAccountToken** (ServiceAccountTokenProjection)
+      
+      serviceAccountToken 是与要投射的服务账号令牌数据有关的信息。
+      
+      <a name="ServiceAccountTokenProjection"></a> 
+      **ServiceAccountTokenProjection 表示一个投射的服务账号令牌卷。
+      这种投射可用于将服务账号令牌插入到 Pod 运行时文件系统，供访问 API（Kubernetes API Server 或其他）使用。**
+      
+      - **projected.sources.serviceAccountToken.path** (string)，必需
+        
+        path 是相对于令牌投射目标文件的挂载点的路径。
+      
+      <!--
+      - **projected.sources.serviceAccountToken.audience** (string)
+        audience is the intended audience of the token. A recipient of a token must identify itself with an identifier specified in the audience of the token, and otherwise should reject the token. The audience defaults to the identifier of the apiserver.
+
+      - **projected.sources.serviceAccountToken.expirationSeconds** (int64)
+        expirationSeconds is the requested duration of validity of the service account token. As the token approaches expiration, the kubelet volume plugin will proactively rotate the service account token. The kubelet will start trying to rotate the token if the token is older than 80 percent of its time to live or if the token is older than 24 hours.Defaults to 1 hour and must be at least 10 minutes.
+      -->
+      - **projected.sources.serviceAccountToken.audience** (string)
+        
+        audience 是令牌的目标受众。
+        令牌的接收方必须用令牌受众中指定的一个标识符来标识自己，否则应拒绝此令牌。
+        受众默认为 apiserver 的标识符。
+      
+      - **projected.sources.serviceAccountToken.expirationSeconds** (int64)
+        
+        expirationSeconds 是所请求的服务账号令牌的有效期。
+        当令牌即将到期时，kubelet 卷插件将主动轮换服务账号令牌。
+        如果令牌超过其生存时间的 80% 或令牌超过 24 小时，kubelet 将开始尝试轮换令牌。
+        默认为 1 小时且必须至少为 10 分钟。
+
+<!--
+### Local / Temporary Directory
+- **emptyDir** (EmptyDirVolumeSource)
+  emptyDir represents a temporary directory that shares a pod's lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
+
+  <a name="EmptyDirVolumeSource"></a>
+  *Represents an empty directory for a pod. Empty directory volumes support ownership management and SELinux relabeling.*
+
+  - **emptyDir.medium** (string)
+    medium represents what type of storage medium should back this directory. The default is "" which means to use the node's default medium. Must be an empty string (default) or Memory. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
+-->
+### 本地/临时目录 {#local-temporary-directory}
+- **emptyDir** (EmptyDirVolumeSource)
+  
+  emptyDir 表示与 Pod 生命周期相同的临时目录。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#emptydir
+  
+  <a name="EmptyDirVolumeSource"></a> 
+  **表示供 Pod 使用的一个空目录。空目录卷支持所有权管理和 SELinux 重新打标签。**
+  
+  - **emptyDir.medium** (string)
+    
+    medium 表示此目录应使用哪种类别的存储介质。默认为 ""，这意味着使用节点的默认介质。
+    必须是空字符串（默认值）或 Memory。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#emptydir
+  
+  <!--
+  - **emptyDir.sizeLimit** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+    sizeLimit is the total amount of local storage required for this EmptyDir volume. The size limit is also applicable for memory medium. The maximum usage on memory medium EmptyDir would be the minimum value between the SizeLimit specified here and the sum of memory limits of all containers in a pod. The default is nil which means that the limit is undefined. More info: http://kubernetes.io/docs/user-guide/volumes#emptydir
+  -->
+  - **emptyDir.sizeLimit** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+    
+    sizeLimit 是这个 EmptyDir 卷所需的本地存储总量。这个大小限制也适用于内存介质。
+    EmptyDir 的内存介质最大使用量将是此处指定的 sizeLimit 与 Pod 中所有容器内存限制总和这两个值之间的最小值。
+    默认为 nil，这意味着限制未被定义。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes/#emptydir
+
+<!--
+- **hostPath** (HostPathVolumeSource)
+  hostPath represents a pre-existing file or directory on the host machine that is directly exposed to the container. This is generally used for system agents or other privileged things that are allowed to see the host machine. Most containers will NOT need this. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+
+  <a name="HostPathVolumeSource"></a>
+  *Represents a host path mapped into a pod. Host path volumes do not support ownership management or SELinux relabeling.*
+-->
+- **hostPath** (HostPathVolumeSource)
+  
+  hostPath 表示主机上预先存在的文件或目录，它们将被直接暴露给容器。
+  这种卷通常用于系统代理或允许查看主机的其他特权操作。大多数容器**不需要**这种卷。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#hostpath
+  
+  <a name="HostPathVolumeSource"></a> 
+  **表示映射到 Pod 中的主机路径。主机路径卷不支持所有权管理或 SELinux 重新打标签。**
+  
+  <!--
+  - **hostPath.path** (string), required
+    path of the directory on the host. If the path is a symlink, it will follow the link to the real path. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+
+  - **hostPath.type** (string)
+    type for HostPath Volume Defaults to "" More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+  -->
+  - **hostPath.path** (string)，必需
+    
+    目录在主机上的路径。如果该路径是一个符号链接，则它将沿着链接指向真实路径。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#hostpath
+  
+  - **hostPath.type** (string)
+    
+    HostPath 卷的类型。默认为 ""。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#hostpath
+
+<!--
+### Persistent volumes
+- **awsElasticBlockStore** (AWSElasticBlockStoreVolumeSource)
+  awsElasticBlockStore represents an AWS Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+
+  <a name="AWSElasticBlockStoreVolumeSource"></a>
+  *Represents a Persistent Disk resource in AWS.
+  
+  An AWS EBS disk must exist before mounting to a container. The disk must also be in the same AWS zone as the kubelet. An AWS EBS disk can only be mounted as read/write once. AWS EBS volumes support ownership management and SELinux relabeling.*
+-->
+### 持久卷 {#persistent-volumes}
+- **awsElasticBlockStore** (AWSElasticBlockStoreVolumeSource)
+  
+  awsElasticBlockStore 表示挂接到 kubelet 的主机随后暴露给 Pod 的一个 AWS Disk 资源。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#awselasticblockstore
+  
+  <a name="AWSElasticBlockStoreVolumeSource"></a> 
+  **表示 AWS 上的 Persistent Disk 资源。挂载到一个容器之前 AWS EBS 磁盘必须存在。
+  该磁盘还必须与 kubelet 位于相同的 AWS 区域中。AWS EBS 磁盘只能以读/写一次进行挂载。
+  AWS EBS 卷支持所有权管理和 SELinux 重新打标签。**
+
+  <!--
+  - **awsElasticBlockStore.volumeID** (string), required
+    volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume). More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+
+  - **awsElasticBlockStore.fsType** (string)
+    fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+  -->  
+  - **awsElasticBlockStore.volumeID** (string)，必需
+    
+    volumeID 是 AWS（Amazon EBS 卷）中持久磁盘资源的唯一 ID。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#awselasticblockstore
+
+  - **awsElasticBlockStore.fsType** (string)
+    
+    fsType 是你要挂载的卷的文件系统类型。提示：确保主机操作系统支持此文件系统类型。
+    例如：“ext4”、“xfs”、“ntfs”。如果未指定，则隐式推断为 “ext4”。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#awselasticblockstore
+  
+  <!--
+  - **awsElasticBlockStore.partition** (int32)
+    partition is the partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as "1". Similarly, the volume partition for /dev/sda is "0" (or you can leave the property empty).
+
+  - **awsElasticBlockStore.readOnly** (boolean)
+    readOnly value true will force the readOnly setting in VolumeMounts. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+  -->
+  - **awsElasticBlockStore.partition** (int32)
+    
+    partition 是你要挂载的卷中的分区。如果省略，则默认为按卷名称进行挂载。例如：对于卷 /dev/sda1，
+    将分区指定为 “1”。类似地，/dev/sda 的卷分区为 “0”（或可以将属性留空）。
+  
+  - **awsElasticBlockStore.readOnly** (boolean)
+    
+    readOnly 值为 true 将使得卷挂载被强制设置为 readOnly。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#awselasticblockstore
+
+<!--
+- **azureDisk** (AzureDiskVolumeSource)
+  azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.
+
+  <a name="AzureDiskVolumeSource"></a>
+  *AzureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.*
+-->
+- **azureDisk** (AzureDiskVolumeSource)
+  
+  azureDisk 表示挂载到主机上并绑定挂载到 Pod 上的 Azure 数据盘。
+  
+  <a name="AzureDiskVolumeSource"></a>
+  **azureDisk 表示挂载到主机上并绑定挂载到 Pod 上的 Azure 数据盘。**
+  
+  <!--
+  - **azureDisk.diskName** (string), required
+    diskName is the Name of the data disk in the blob storage
+
+  - **azureDisk.diskURI** (string), required
+    diskURI is the URI of data disk in the blob storage
+
+  - **azureDisk.cachingMode** (string)
+    cachingMode is the Host Caching mode: None, Read Only, Read Write.
+  -->
+  - **azureDisk.diskName** (string)，必需
+    
+    diskName 是 Blob 存储中数据盘的名称。
+  
+  - **azureDisk.diskURI** (string)，必需
+    
+    diskURI 是 Blob 存储中数据盘的 URI。
+  
+  - **azureDisk.cachingMode** (string)
+    
+    cachingMode 是主机缓存（Host Caching）模式：None、Read Only、Read Write。
+
+  <!--
+  - **azureDisk.fsType** (string)
+    fsType is Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+
+  - **azureDisk.kind** (string)
+    kind expected values are Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared
+
+  - **azureDisk.readOnly** (boolean)
+    readOnly Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+  -->  
+  - **azureDisk.fsType** (string)
+    
+    fsType 是要挂载的文件系统类型。必须是主机操作系统所支持的文件系统类型之一。
+    例如 “ext4”、“xfs”、“ntfs”。如果未指定，则隐式推断为 “ext4”。
+  
+  - **azureDisk.kind** (string)
+    
+    kind 预期值包括：
+
+    - Shared：每个存储帐户多个 Blob 磁盘；
+    - Dedicated：每个存储帐户单个 Blob 磁盘；
+    - Managed：azure 托管的数据盘（仅托管的可用性集合中）。
+    
+    默认为 Shared。
+  
+  - **azureDisk.readOnly** (boolean)
+    
+    readOnly 默认为 false（读/写）。此处的 readOnly 将强制设置卷挂载中的 readOnly 属性。
+
+<!--
+- **azureFile** (AzureFileVolumeSource)
+  azureFile represents an Azure File Service mount on the host and bind mount to the pod.
+
+  <a name="AzureFileVolumeSource"></a>
+  *AzureFile represents an Azure File Service mount on the host and bind mount to the pod.*
+-->
+- **azureFile** (AzureFileVolumeSource)
+  
+  azureDisk 表示挂载到主机上并绑定挂载到 Pod 上的 Azure File Service。
+  
+  <a name="AzureFileVolumeSource"></a> 
+  **azureFile 表示挂载到主机上并绑定挂载到 Pod 上的 Azure File Service。**
+  
+  <!--
+  - **azureFile.secretName** (string), required
+    secretName is the  name of secret that contains Azure Storage Account Name and Key
+
+  - **azureFile.shareName** (string), required
+    shareName is the azure share Name
+
+  - **azureFile.readOnly** (boolean)
+    readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+  -->
+  - **azureFile.secretName** (string)，必需
+    
+    secretName 是包含 Azure 存储账号名称和主键的 Secret 的名称。
+  
+  - **azureFile.shareName** (string)，必需
+    
+    shareName 是 Azure 共享名称。
+  
+  - **azureFile.readOnly** (boolean)
+    
+    readOnly 默认为 false（读/写）。此处的 readOnly 将强制设置卷挂载中的 readOnly 属性。
+
+<!--
+- **cephfs** (CephFSVolumeSource)
+  cephFS represents a Ceph FS mount on the host that shares a pod's lifetime
+
+  <a name="CephFSVolumeSource"></a>
+  *Represents a Ceph Filesystem mount that lasts the lifetime of a pod Cephfs volumes do not support ownership management or SELinux relabeling.*
+
+  - **cephfs.monitors** ([]string), required
+    monitors is Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+-->
+- **cephfs** (CephFSVolumeSource)
+  
+  cephfs 表示在主机上挂载的 Ceph FS，该文件系统挂载与 Pod 的生命周期相同。
+  
+  <a name="CephFSVolumeSource"></a> 
+  **表示在 Pod 的生命周期内持续的 Ceph Filesystem 挂载。cephfs 卷不支持所有权管理或 SELinux 重新打标签。**
+  
+  - **cephfs.monitors** ([]string)，必需
+    
+    monitors 是必需的。monitors 是 Ceph 监测的集合。更多信息：
+    https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+  
+  <!--
+  - **cephfs.path** (string)
+    path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /
+
+  - **cephfs.readOnly** (boolean)
+    readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+  -->
+  - **cephfs.path** (string)
+    
+    path 是可选的。用作挂载的根，而不是挂载完整的 Ceph 树，默认为 “/”。
+  
+  - **cephfs.readOnly** (boolean)
+    
+    readOnly 是可选的。默认为 false（读/写）。
+    此处的 readOnly 将强制设置卷挂载中的 readOnly 属性。更多信息：
+    https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+
+  <!--
+  - **cephfs.secretFile** (string)
+    secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+
+  - **cephfs.secretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
+    secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+
+  - **cephfs.user** (string)
+    user is optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+  -->  
+  - **cephfs.secretFile** (string)
+    
+    secretFile 是可选的。secretFile 是 User 对应的密钥环的路径，默认为 /etc/ceph/user.secret。更多信息：
+    https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+  
+  - **cephfs.secretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
+    
+    secretRef 是可选的。secretRef 是针对用户的身份认证 Secret 的引用，默认为空。更多信息：
+    https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+  
+  - **cephfs.user** (string)
+    
+    user 是可选的。user 是 rados 用户名，默认为 admin。更多信息：
+    https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+
+<!--
+- **cinder** (CinderVolumeSource)
+  cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+
+  <a name="CinderVolumeSource"></a>
+  *Represents a cinder volume resource in Openstack. A Cinder volume must exist before mounting to a container. The volume must also be in the same region as the kubelet. Cinder volumes support ownership management and SELinux relabeling.*
+
+  - **cinder.volumeID** (string), required
+    volumeID used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+-->
+- **cinder** (CinderVolumeSource)
+  
+  cinder 表示 kubelet 主机上挂接和挂载的 Cinder 卷。更多信息：
+  https://examples.k8s.io/mysql-cinder-pd/README.md
+  
+  <a name="CinderVolumeSource"></a> 
+  **表示 Openstack 中的一个 Cinder 卷资源。挂载到一个容器之前 Cinder 卷必须已经存在。
+  该卷还必须与 kubelet 位于相同的地区中。cinder 卷支持所有权管理和 SELinux 重新打标签。**
+  
+  - **cinder.volumeID** (string)，必需
+    
+    volumeID 用于标识 Cinder 中的卷。更多信息：
+    https://examples.k8s.io/mysql-cinder-pd/README.md
+
+  <!--
+  - **cinder.fsType** (string)
+    fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+
+  - **cinder.readOnly** (boolean)
+    readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+
+  - **cinder.secretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
+    secretRef is optional: points to a secret object containing parameters used to connect to OpenStack.
+  -->  
+  - **cinder.fsType** (string)
+    
+    fsType 是要挂载的文件系统类型。必须是主机操作系统所支持的文件系统类型之一。例如：“ext4”、“xfs”、“ntfs”。
+    如果未指定，则隐式推断为“ext4”。更多信息：
+    https://examples.k8s.io/mysql-cinder-pd/README.md
+  
+  - **cinder.readOnly** (boolean)
+    
+    readOnly 默认为 false（读/写）。此处的 readOnly 将强制设置卷挂载中的 readOnly 属性。
+    更多信息： https://examples.k8s.io/mysql-cinder-pd/README.md
+  
+  - **cinder.secretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
+    
+    secretRef 是可选的。指向 Secret 对象，内含的参数用于连接到 OpenStack。
+
+<!--
+- **csi** (CSIVolumeSource)
+  csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).
+
+  <a name="CSIVolumeSource"></a>
+  *Represents a source location of a volume to mount, managed by an external CSI driver*
+
+  - **csi.driver** (string), required
+    driver is the name of the CSI driver that handles this volume. Consult with your admin for the correct name as registered in the cluster.
+
+  - **csi.fsType** (string)
+    fsType to mount. Ex. "ext4", "xfs", "ntfs". If not provided, the empty value is passed to the associated CSI driver which will determine the default filesystem to apply.
+-->
+- **csi** (CSIVolumeSource)
+  
+  csi 表示由某个外部容器存储接口（Container Storage Interface，CSI）驱动处理的临时存储（Beta 特性）。
+  
+  <a name="CSIVolumeSource"></a> 
+  **表示要挂载的卷的源位置，由外部 CSI 驱动进行管理。**
+  
+  - **csi.driver** (string)，必需
+    
+    driver 是处理此卷的 CSI 驱动的名称。咨询你的管理员以获取在集群中注册的正确名称。
+  
+  - **csi.fsType** (string)
+    
+    要挂载的 fsType。例如 “ext4”、“xfs”、“ntfs”。
+    如果未提供，则将空值传递给关联的 CSI 驱动，以便决定要应用的默认文件系统。
+
+  <!--
+  - **csi.nodePublishSecretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
+    nodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and  may be empty if no secret is required. If the secret object contains more than one secret, all secret references are passed.
+
+  - **csi.readOnly** (boolean)
+    readOnly specifies a read-only configuration for the volume. Defaults to false (read/write).
+
+  - **csi.volumeAttributes** (map[string]string)
+    volumeAttributes stores driver-specific properties that are passed to the CSI driver. Consult your driver's documentation for supported values.
+  -->  
+  - **csi.nodePublishSecretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
+    
+    nodePublishSecretRef 是对包含敏感信息的 Secret 对象的引用，
+    该 Secret 对象将被传递到 CSI 驱动以完成 CSI NodePublishVolume 和 NodeUnpublishVolume 调用。
+    此字段是可选的，如果不需要 Secret，则此字段可以为空。
+    如果 Secret 对象包含多个 Secret，则所有 Secret 引用将被传递。
+  
+  - **csi.readOnly** (boolean)
+    
+    readOnly 指定供卷使用的只读配置。默认为 false（读/写）。
+  
+  - **csi.volumeAttributes** (map[string]string)
+    
+    volumeAttributes 存储传递给 CSI 驱动且特定于驱动的属性。查阅你的驱动文档，了解支持的值。
+
+<!--
+- **fc** (FCVolumeSource)
+  fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.
+
+  <a name="FCVolumeSource"></a>
+  *Represents a Fibre Channel volume. Fibre Channel volumes can only be mounted as read/write once. Fibre Channel volumes support ownership management and SELinux relabeling.*
+-->
+- **fc** (FCVolumeSource)
+  
+  fc 表示挂接到 kubelet 的主机随后暴露给 Pod 的一个 Fibre Channel 资源。
+  
+  <a name="FCVolumeSource"></a>
+  **表示 Fibre Channel 卷。Fibre Channel 卷只能以读/写一次进行挂载。
+  Fibre Channel 卷支持所有权管理和 SELinux 重新打标签。**
+  
+  <!--
+  - **fc.fsType** (string)
+    fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+
+  - **fc.lun** (int32)
+    lun is Optional: FC target lun number
+  -->
+  - **fc.fsType** (string)
+    
+    fsType 是要挂载的文件系统类型。必须是主机操作系统所支持的文件系统类型之一。
+    例如 “ext4”、“xfs”、“ntfs”。如果未指定，则隐式推断为 “ext4”。
+  
+  - **fc.lun** (int32)
+    
+    lun 是可选的：FC 目标 lun 编号。
+
+  <!--
+  - **fc.readOnly** (boolean)
+    readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+
+  - **fc.targetWWNs** ([]string)
+    targetWWNs is Optional: FC target worldwide names (WWNs)
+
+  - **fc.wwids** ([]string)
+    wwids Optional: FC volume world wide identifiers (wwids) Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.
+  -->  
+  - **fc.readOnly** (boolean)
+    
+    readOnly 是可选的。默认为 false（读/写）。此处的 readOnly 将强制设置卷挂载中的 readOnly 属性。
+  
+  - **fc.targetWWNs** ([]string)
+    
+    targetWWNs 是可选的。FC 目标全球名称（WWN）。
+  
+  - **fc.wwids** ([]string)
+    
+    wwids 是可选的。FC 卷全球识别号（wwids）。
+    必须设置 wwids 或 targetWWNs 及 lun 的组合，但不能同时设置两者。
+
+<!--
+- **flexVolume** (FlexVolumeSource)
+  flexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin.
+
+  <a name="FlexVolumeSource"></a>
+  *FlexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin.*
+
+  - **flexVolume.driver** (string), required
+    driver is the name of the driver to use for this volume.
+
+  - **flexVolume.fsType** (string)
+    fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". The default filesystem depends on FlexVolume script.
+-->
+- **flexVolume** (FlexVolumeSource)
+  
+  flexVolume 表示使用基于 exec 的插件制备/挂接的通用卷资源。
+  
+  <a name="FlexVolumeSource"></a> 
+  **flexVolume 表示使用基于 exec 的插件制备/挂接的通用卷资源。**
+  
+  - **flexVolume.driver** (string)，必需
+    
+    driver 是供此卷使用的驱动的名称。
+  
+  - **flexVolume.fsType** (string)
+    
+    fsType 是要挂载的文件系统类型。必须是主机操作系统所支持的文件系统类型之一。例如 “ext4”、“xfs”、“ntfs”。
+    默认的文件系统取决于 flexVolume 脚本。
+
+  <!--
+  - **flexVolume.options** (map[string]string)
+    options is Optional: this field holds extra command options if any.
+
+  - **flexVolume.readOnly** (boolean)
+    readOnly is Optional: defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+
+  - **flexVolume.secretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
+    secretRef is Optional: secretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts.
+  -->  
+  - **flexVolume.options** (map[string]string)
+    
+    options 是可选的。此字段包含额外的命令选项（如果有）。
+  
+  - **flexVolume.readOnly** (boolean)
+    
+    readOnly 是可选的。默认为 false（读/写）。此处的 readOnly 将强制设置卷挂载中的 readOnly 属性。
+  
+  - **flexVolume.secretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
+    
+    secretRef 是可选的。secretRef 是对包含敏感信息的 Secret 对象的引用，该 Secret 会被传递到插件脚本。
+    如果未指定 Secret 对象，则此字段可以为空。如果 Secret 对象包含多个 Secret，则所有 Secret 被传递到插件脚本。
+
+<!--
+- **flocker** (FlockerVolumeSource)
+  flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running
+
+  <a name="FlockerVolumeSource"></a>
+  *Represents a Flocker volume mounted by the Flocker agent. One and only one of datasetName and datasetUUID should be set. Flocker volumes do not support ownership management or SELinux relabeling.*
+
+  - **flocker.datasetName** (string)
+    datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker should be considered as deprecated
+
+  - **flocker.datasetUUID** (string)
+    datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset
+-->
+- **flocker** (FlockerVolumeSource)
+  
+  flocker 表示挂接到一个 kubelet 主机的 Flocker 卷。Flocker 卷依赖于正在运行的 Flocker 控制服务。
+  
+  <a name="FlockerVolumeSource"></a> 
+  **表示 Flocker 代理挂载的 Flocker 卷。应设置一个且仅设置 datasetName 和 datasetUUID 中的一个。
+  Flocker 卷不支持所有权管理或 SELinux 重新打标签。**
+  
+  - **flocker.datasetName** (string)
+    
+    datasetName 是存储为元数据的数据集的名称。Flocker 数据集的名称应视为已弃用。
+  
+  - **flocker.datasetUUID** (string)
+    
+    datasetUUID 是数据集的 UUID。这是 Flocker 数据集的唯一标识符。
+
+<!--
+- **gcePersistentDisk** (GCEPersistentDiskVolumeSource)
+  gcePersistentDisk represents a GCE Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+
+  <a name="GCEPersistentDiskVolumeSource"></a>
+  *Represents a Persistent Disk resource in Google Compute Engine.
+  
+  A GCE PD must exist before mounting to a container. The disk must also be in the same GCE project and zone as the kubelet. A GCE PD can only be mounted as read/write once or read-only many times. GCE PDs support ownership management and SELinux relabeling.*
+-->
+- **gcePersistentDisk** (GCEPersistentDiskVolumeSource)
+  
+  gcePersistentDisk 表示挂接到 kubelet 的主机随后暴露给 Pod 的一个 GCE Disk 资源。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#gcepersistentdisk
+  
+  <a name="GCEPersistentDiskVolumeSource"></a>
+  **表示 Google Compute Engine 中的 Persistent Disk 资源。
+  挂载到一个容器之前 GCE PD 必须已经存在。该磁盘还必须与 kubelet 位于相同的 GCE 项目和区域中。
+  GCE PD 只能挂载为读/写一次或只读多次。GCE PD 支持所有权管理和 SELinux 重新打标签。**
+
+  <!--
+  - **gcePersistentDisk.pdName** (string), required
+    pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+  
+  - **gcePersistentDisk.fsType** (string)
+    fsType is filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+  -->  
+  - **gcePersistentDisk.pdName** (string)，必需
+    
+    pdName 是 GCE 中 PD 资源的唯一名称。用于标识 GCE 中的磁盘。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#gcepersistentdisk
+
+  - **gcePersistentDisk.fsType** (string)
+    
+    fsType 是你要挂载的卷的文件系统类型。提示：确保主机操作系统支持此文件系统类型。
+    例如：“ext4”、“xfs”、“ntfs”。如果未指定，则隐式推断为“ext4”。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#gcepersistentdisk
+  
+  <!--
+  - **gcePersistentDisk.partition** (int32)
+    partition is the partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as "1". Similarly, the volume partition for /dev/sda is "0" (or you can leave the property empty). More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+
+  - **gcePersistentDisk.readOnly** (boolean)
+    readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+  -->
+  - **gcePersistentDisk.partition** (int32)
+    
+    partition 是你要挂载的卷中的分区。如果省略，则默认为按卷名称进行挂载。
+    例如：对于卷 /dev/sda1，将分区指定为 “1”。类似地，/dev/sda 的卷分区为 “0”（或可以将属性留空）。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#gcepersistentdisk
+  
+  - **gcePersistentDisk.readOnly** (boolean)
+    
+    此处的 readOnly 将强制设置卷挂载中的 readOnly 属性。默认为 false。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#gcepersistentdisk
+
+<!--
+- **glusterfs** (GlusterfsVolumeSource)
+  glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/glusterfs/README.md
+
+  <a name="GlusterfsVolumeSource"></a>
+  *Represents a Glusterfs mount that lasts the lifetime of a pod. Glusterfs volumes do not support ownership management or SELinux relabeling.*
+-->
+- **glusterfs** (GlusterfsVolumeSource)
+  
+  glusterfs 表示在与 Pod 共享生命周期的主机上挂载的 Glusterfs。更多信息：
+  https://examples.k8s.io/volumes/glusterfs/README.md
+  
+  <a name="GlusterfsVolumeSource"></a> 
+  **表示在 Pod 的生命周期内持续的 Glusterfs 挂载。glusterfs 卷不支持所有权管理或 SELinux 重新打标签。**
+  
+  <!--
+  - **glusterfs.endpoints** (string), required
+    endpoints is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+
+  - **glusterfs.path** (string), required
+    path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+
+  - **glusterfs.readOnly** (boolean)
+    readOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+  -->
+  - **glusterfs.endpoints** (string)，必需
+    
+    endpoints 是详细说明 Glusterfs 拓扑的端点名称。更多信息：
+    https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+  
+  - **glusterfs.path** (string)，必需
+    
+    path 是 Glusterfs 卷路径。更多信息：
+    https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+  
+  - **glusterfs.readOnly** (boolean)
+    
+    此处 readOnly 将强制使用只读权限挂载 Glusterfs 卷。默认为 false。更多信息：
+    https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+
+<!--
+- **iscsi** (ISCSIVolumeSource)
+  iscsi represents an ISCSI Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://examples.k8s.io/volumes/iscsi/README.md
+
+  <a name="ISCSIVolumeSource"></a>
+  *Represents an ISCSI disk. ISCSI volumes can only be mounted as read/write once. ISCSI volumes support ownership management and SELinux relabeling.*
+-->
+- **iscsi** (ISCSIVolumeSource)
+  
+  iscsi 表示挂接到 kubelet 的主机随后暴露给 Pod 的一个 ISCSI Disk 资源。更多信息：
+  https://examples.k8s.io/volumes/iscsi/README.md
+  
+  <a name="ISCSIVolumeSource"></a> 
+  **表示一个 ISCSI 磁盘。ISCSI 卷只能以读/写一次进行挂载。ISCSI 卷支持所有权管理和 SELinux 重新打标签。**
+  
+  <!--
+  - **iscsi.iqn** (string), required
+    iqn is the target iSCSI Qualified Name.
+
+  - **iscsi.lun** (int32), required
+    lun represents iSCSI Target Lun number.
+
+  - **iscsi.targetPortal** (string), required
+    targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
+  -->
+  - **iscsi.iqn** (string)，必需
+    
+    iqn 是目标 iSCSI 限定名称。
+  
+  - **iscsi.lun** (int32)，必需
+    
+    lun 表示 iSCSI 目标逻辑单元号。
+  
+  - **iscsi.targetPortal** (string)，必需
+    
+    targetPortal 是 iSCSI 目标门户。
+    如果不是默认端口（通常是 TCP 端口 860 和 3260），则 Portal 为 IP 或 ip_addr:port。
+
+  <!--
+  - **iscsi.chapAuthDiscovery** (boolean)
+    chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication
+
+  - **iscsi.chapAuthSession** (boolean)
+    chapAuthSession defines whether support iSCSI Session CHAP authentication
+  -->  
+  - **iscsi.chapAuthDiscovery** (boolean)
+    
+    chapAuthDiscovery 定义是否支持 iSCSI Discovery CHAP 身份认证。
+  
+  - **iscsi.chapAuthSession** (boolean)
+    
+    chapAuthSession 定义是否支持 iSCSI Session CHAP 身份认证。
+  
+  <!--
+  - **iscsi.fsType** (string)
+    fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi
+
+  - **iscsi.initiatorName** (string)
+    initiatorName is the custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface \<target portal>:\<volume name> will be created for the connection.
+  -->
+  - **iscsi.fsType** (string)
+    
+    fsType 是你要挂载的卷的文件系统类型。提示：确保主机操作系统支持此文件系统类型。
+    例如：“ext4”、“xfs”、“ntfs”。如果未指定，则隐式推断为 “ext4”。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#iscsi
+  
+  - **iscsi.initiatorName** (string)
+    
+    initiatorName 是自定义的 iSCSI 发起程序名称（iSCSI Initiator Name）。
+    如果同时用 iscsiInterface 指定 initiatorName，将为连接创建新的 iSCSI 接口 \<目标门户>:\<卷名称>。
+
+  <!--
+  - **iscsi.iscsiInterface** (string)
+    iscsiInterface is the interface Name that uses an iSCSI transport. Defaults to 'default' (tcp).
+
+  - **iscsi.portals** ([]string)
+    portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
+  -->  
+  - **iscsi.iscsiInterface** (string)
+    
+    iscsiInterface 是使用 iSCSI 传输的接口名称。默认为 “default”（tcp）。
+  
+  - **iscsi.portals** ([]string)
+    
+    portals 是 iSCSI 目标门户列表（iSCSI Target Portal List）。
+    如果不是默认端口（通常是 TCP 端口 860 和 3260），则 Portal 为 IP 或 ip_addr:port。
+  
+  <!--
+  - **iscsi.readOnly** (boolean)
+    readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.
+
+  - **iscsi.secretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
+    secretRef is the CHAP Secret for iSCSI target and initiator authentication
+  -->
+  - **iscsi.readOnly** (boolean)
+    
+    此处的 readOnly 将强制设置卷挂载中的 readOnly 属性。默认为 false。
+  
+  - **iscsi.secretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
+    
+    secretRef 是 iSCSI 目标和发起程序身份认证所用的 CHAP Secret。
+
+<!--
+- **nfs** (NFSVolumeSource)
+  nfs represents an NFS mount on the host that shares a pod's lifetime More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+
+  <a name="NFSVolumeSource"></a>
+  *Represents an NFS mount that lasts the lifetime of a pod. NFS volumes do not support ownership management or SELinux relabeling.*
+
+  - **nfs.path** (string), required
+    path that is exported by the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+-->
+- **nfs** (NFSVolumeSource)
+  
+  nfs 表示在主机上挂载的 NFS，其生命周期与 Pod 相同。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#nfs
+  
+  <a name="NFSVolumeSource"></a>
+  **表示 Pod 的生命周期内一直存在的 NFS 挂载。NFS 卷不支持所有权管理或 SELinux 重新打标签。**
+  
+  - **nfs.path** (string)，必需
+    
+    path 是由 NFS 服务器导出的路径。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#nfs
+  
+  <!--
+  - **nfs.server** (string), required
+    server is the hostname or IP address of the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+
+  - **nfs.readOnly** (boolean)
+    readOnly here will force the NFS export to be mounted with read-only permissions. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+  -->
+  - **nfs.server** (string)，必需
+    
+    server 是 NFS 服务器的主机名或 IP 地址。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#nfs
+  
+  - **nfs.readOnly** (boolean)
+    
+    此处 readOnly 将强制使用只读权限挂载 NFS 导出。默认为 false。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#nfs
+
+<!--
+- **photonPersistentDisk** (PhotonPersistentDiskVolumeSource)
+  photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine
+
+  <a name="PhotonPersistentDiskVolumeSource"></a>
+  *Represents a Photon Controller persistent disk resource.*
+
+  - **photonPersistentDisk.pdID** (string), required
+    pdID is the ID that identifies Photon Controller persistent disk
+
+  - **photonPersistentDisk.fsType** (string)
+    fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+-->
+- **photonPersistentDisk** (PhotonPersistentDiskVolumeSource)
+  
+  photonPersistentDisk 表示 kubelet 主机上挂接和挂载的 PhotonController 持久磁盘。
+  
+  <a name="PhotonPersistentDiskVolumeSource"></a> 
+  **表示 Photon Controller 持久磁盘资源。**
+  
+  - **photonPersistentDisk.pdID** (string)，必需
+    
+    pdID 是标识 Photon Controller 持久磁盘的 ID。
+  
+  - **photonPersistentDisk.fsType** (string)
+    
+    fsType 是要挂载的文件系统类型。必须是主机操作系统所支持的文件系统类型之一。
+    例如 “ext4”、“xfs”、“ntfs”。如果未指定，则隐式推断为 “ext4”。
+
+<!--
+- **portworxVolume** (PortworxVolumeSource)
+  portworxVolume represents a portworx volume attached and mounted on kubelets host machine
+
+  <a name="PortworxVolumeSource"></a>
+  *PortworxVolumeSource represents a Portworx volume resource.*
+
+  - **portworxVolume.volumeID** (string), required
+    volumeID uniquely identifies a Portworx volume
+-->
+- **portworxVolume** (PortworxVolumeSource)
+  
+  portworxVolume 表示 kubelet 主机上挂接和挂载的 portworx 卷。
+  
+  <a name="PortworxVolumeSource"></a> 
+  **PortworxVolumeSource 表示 Portworx 卷资源。**
+  
+  - **portworxVolume.volumeID** (string)，必需
+    
+    volumeID 唯一标识 Portworx 卷。
+  
+  <!--
+  - **portworxVolume.fsType** (string)
+    fSType represents the filesystem type to mount Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs". Implicitly inferred to be "ext4" if unspecified.
+
+  - **portworxVolume.readOnly** (boolean)
+    readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+  -->
+  - **portworxVolume.fsType** (string)
+    
+    fSType 表示要挂载的文件系统类型。必须是主机操作系统支持的文件系统类型。例如 “ext4”、“xfs”。
+    如果未指定，则隐式推断为 “ext4”。
+  
+  - **portworxVolume.readOnly** (boolean)
+    
+    readOnly 默认为 false（读/写）。此处的 readOnly 将强制设置卷挂载中的 readOnly 属性。
+
+<!--
+- **quobyte** (QuobyteVolumeSource)
+  quobyte represents a Quobyte mount on the host that shares a pod's lifetime
+
+  <a name="QuobyteVolumeSource"></a>
+  *Represents a Quobyte mount that lasts the lifetime of a pod. Quobyte volumes do not support ownership management or SELinux relabeling.*
+-->
+- **quobyte** (QuobyteVolumeSource)
+  
+  quobyte 表示在共享 Pod 生命周期的主机上挂载的 Quobyte。
+  
+  <a name="QuobyteVolumeSource"></a> 
+  **表示在 Pod 的生命周期内持续的 Quobyte 挂载。Quobyte 卷不支持所有权管理或 SELinux 重新打标签。**
+  
+  <!--
+  - **quobyte.registry** (string), required
+    registry represents a single or multiple Quobyte Registry services specified as a string as host:port pair (multiple entries are separated with commas) which acts as the central registry for volumes
+
+  - **quobyte.volume** (string), required
+    volume is a string that references an already created Quobyte volume by name.
+
+  - **quobyte.group** (string)
+    group to map volume access to Default is no group
+  -->
+  - **quobyte.registry** (string)，必需
+    
+    registry 表示将一个或多个 Quobyte Registry 服务指定为 host:port 对的字符串形式
+    （多个条目用英文逗号分隔），用作卷的中央注册表。
+  
+  - **quobyte.volume** (string)，必需
+    
+    volume 是按名称引用已创建的 Quobyte 卷的字符串。
+  
+  - **quobyte.group** (string)
+    
+    group 是将卷访问映射到的组。默认为无组。
+
+  <!--
+  - **quobyte.readOnly** (boolean)
+    readOnly here will force the Quobyte volume to be mounted with read-only permissions. Defaults to false.
+
+  - **quobyte.tenant** (string)
+    tenant owning the given Quobyte volume in the Backend Used with dynamically provisioned Quobyte volumes, value is set by the plugin
+
+  - **quobyte.user** (string)
+    user to map volume access to Defaults to serivceaccount user
+  -->  
+  - **quobyte.readOnly** (boolean)
+    
+    此处 readOnly 将强制使用只读权限挂载 Quobyte 卷。默认为 false。
+  
+  - **quobyte.tenant** (string)
+    
+    tenant 拥有 Backend Used 中给定的 Quobyte 卷，随动态制备的 Quobyte 卷一起使用，值由插件设置。
+  
+  - **quobyte.user** (string)
+    
+    user 是将卷访问映射到的用户。默认为 serivceaccount 用户。
+
+<!--
+- **rbd** (RBDVolumeSource)
+  rbd represents a Rados Block Device mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md
+
+  <a name="RBDVolumeSource"></a>
+  *Represents a Rados Block Device mount that lasts the lifetime of a pod. RBD volumes support ownership management and SELinux relabeling.*
+
+  - **rbd.image** (string), required
+    image is the rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+-->
+- **rbd** (RBDVolumeSource)
+  
+  rbd 表示在共享 Pod 生命周期的主机上挂载的 Rados Block Device。更多信息：
+  https://examples.k8s.io/volumes/rbd/README.md
+  
+  <a name="RBDVolumeSource"></a> 
+  **表示在 Pod 的生命周期内持续的 Rados Block Device 挂载。RBD 卷支持所有权管理和 SELinux 重新打标签。**
+  
+  - **rbd.image** (string)，必需
+    
+    image 是 rados 镜像名称。更多信息：
+    https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+  
+  <!--
+  - **rbd.monitors** ([]string), required
+    monitors is a collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+
+  - **rbd.fsType** (string)
+    fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd
+  -->
+  - **rbd.monitors** ([]string)，必需
+    
+    monitors 是 Ceph 监测的集合。更多信息：
+    https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+  
+  - **rbd.fsType** (string)
+    
+    fsType 是你要挂载的卷的文件系统类型。提示：确保主机操作系统支持此文件系统类型。
+    例如：“ext4”、“xfs”、“ntfs”。如果未指定，则隐式推断为 “ext4”。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/storage/volumes#rbd
+
+  <!--
+  - **rbd.keyring** (string)
+    keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+
+  - **rbd.pool** (string)
+    pool is the rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+
+  - **rbd.readOnly** (boolean)
+    readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+  -->  
+  - **rbd.keyring** (string)
+    
+    keyring 是 RBDUser 密钥环的路径。默认为 /etc/ceph/keyring。更多信息：
+    https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+  
+  - **rbd.pool** (string)
+    
+    pool 是 rados 池名称。默认为 rbd。更多信息：
+    https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+  
+  - **rbd.readOnly** (boolean)
+    
+    此处的 readOnly 将强制设置卷挂载中的 readOnly 属性。默认为 false。更多信息：
+    https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+  
+  <!--
+  - **rbd.secretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
+    secretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+
+  - **rbd.user** (string)
+    user is the rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+  -->
+  - **rbd.secretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
+    
+    secretRef 是 RBDUser 的身份认证 Secret 的名称。如果提供，则重载 keyring。默认为 nil。更多信息：
+    https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+  
+  - **rbd.user** (string)
+    
+    user 是 rados 用户名。默认为 admin。更多信息：
+    https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+
+<!--
+- **scaleIO** (ScaleIOVolumeSource)
+  scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.
+
+  <a name="ScaleIOVolumeSource"></a>
+  *ScaleIOVolumeSource represents a persistent ScaleIO volume*
+
+  - **scaleIO.gateway** (string), required
+    gateway is the host address of the ScaleIO API Gateway.
+-->
+- **scaleIO** (ScaleIOVolumeSource)
+  
+  scaleIO 表示 Kubernetes 节点上挂接和挂载的 ScaleIO 持久卷。
+  
+  <a name="ScaleIOVolumeSource"></a> 
+  **ScaleIOVolumeSource 表示一个 ScaleIO 持久卷。**
+  
+  - **scaleIO.gateway** (string)，必需
+    
+    gateway 是 ScaleIO API 网关的主机地址。
+  
+  <!--
+  - **scaleIO.secretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>), required
+    secretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail.
+
+  - **scaleIO.system** (string), required
+    system is the name of the storage system as configured in ScaleIO.
+
+  - **scaleIO.fsType** (string)
+    fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Default is "xfs".
+  -->
+  - **scaleIO.secretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)，必需
+    
+    secretRef 引用到 ScaleIO 用户的 Secret 和其他敏感信息。如果未提供此项，则 Login 操作将失败。
+  
+  - **scaleIO.system** (string)，必需
+    
+    system 是存储系统的名称，与 ScaleIO 中的配置相同。
+  
+  - **scaleIO.fsType** (string)
+    
+    fsType 是要挂载的文件系统类型。必须是主机操作系统所支持的文件系统类型之一。例如 “ext4”、“xfs”、“ntfs”。默认为 “xfs”。
+
+  <!--
+  - **scaleIO.protectionDomain** (string)
+    protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.
+
+  - **scaleIO.readOnly** (boolean)
+    readOnly Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+
+  - **scaleIO.sslEnabled** (boolean)
+    sslEnabled Flag enable/disable SSL communication with Gateway, default false
+  -->  
+  - **scaleIO.protectionDomain** (string)
+    
+    protectionDomain 是 ScaleIO 保护域（ScaleIO Protection Domain）的名称，用于已配置的存储。
+  
+  - **scaleIO.readOnly** (boolean)
+    
+    readOnly 默认为 false（读/写）。此处的 readOnly 将强制设置卷挂载中的 readOnly 属性。
+  
+  - **scaleIO.sslEnabled** (boolean)
+    
+    sslEnabled 标志启用/禁用与网关的 SSL 通信，默认为 false。
+  
+  <!--
+  - **scaleIO.storageMode** (string)
+    storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.
+
+  - **scaleIO.storagePool** (string)
+    storagePool is the ScaleIO Storage Pool associated with the protection domain.
+
+  - **scaleIO.volumeName** (string)
+    volumeName is the name of a volume already created in the ScaleIO system that is associated with this volume source.
+  -->
+  - **scaleIO.storageMode** (string)
+    
+    storageMode 指示卷所用的存储应是 ThickProvisioned 或 ThinProvisioned。默认为 ThinProvisioned。
+  
+  - **scaleIO.storagePool** (string)
+    
+    storagePool 是与保护域关联的 ScaleIO Storage Pool。
+  
+  - **scaleIO.volumeName** (string)
+    
+    volumeName 是在与此卷源关联的 ScaleIO 系统中已创建的卷的名称。
+
+<!--
+- **storageos** (StorageOSVolumeSource)
+  storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.
+
+  <a name="StorageOSVolumeSource"></a>
+  *Represents a StorageOS persistent volume resource.*
+
+  - **storageos.fsType** (string)
+    fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+-->
+- **storageos** (StorageOSVolumeSource)
+  
+  storageOS 表示 Kubernetes 节点上挂接和挂载的 StorageOS 卷。
+  
+  <a name="StorageOSVolumeSource"></a> 
+  **表示 StorageOS 持久卷资源。**
+  
+  - **storageos.fsType** (string)
+    
+    fsType 是要挂载的文件系统类型。必须是主机操作系统所支持的文件系统类型之一。
+    例如 “ext4”、“xfs”、“ntfs”。如果未指定，则隐式推断为 “ext4”。
+  
+  <!--
+  - **storageos.readOnly** (boolean)
+    readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+
+  - **storageos.secretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
+    secretRef specifies the secret to use for obtaining the StorageOS API credentials.  If not specified, default values will be attempted.
+  -->
+  - **storageos.readOnly** (boolean)
+    
+    readOnly 默认为 false（读/写）。此处的 readOnly 将强制设置卷挂载中的 readOnly 属性。
+  
+  - **storageos.secretRef** (<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
+    
+    secretRef 指定用于获取 StorageOS API 凭据的 Secret。如果未指定，则将尝试使用默认值。
+
+  <!--
+  - **storageos.volumeName** (string)
+    volumeName is the human-readable name of the StorageOS volume.  Volume names are only unique within a namespace.
+
+  - **storageos.volumeNamespace** (string)
+    volumeNamespace specifies the scope of the volume within StorageOS.  If no namespace is specified then the Pod's namespace will be used.  This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to "default" if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.
+  -->  
+  - **storageos.volumeName** (string)
+    
+    volumeName 是 StorageOS 卷的人类可读名称。这些卷名称在一个名字空间内是唯一的。
+  
+  - **storageos.volumeNamespace** (string)
+    
+    volumeNamespace 指定 StorageOS 内卷的作用域。如果未指定名字空间，则将使用 Pod 的名字空间。
+    这个设置使得 Kubernetes 的名字作用域可以在 StorageOS 内进行映射，实现更紧密的集成。
+    将 volumeName 设为任何名称以重载默认的行为。如果你未在 StorageOS 内使用名字空间，则设为“default”。
+    将创建 StorageOS 内预先不存在的名字空间。
+
+<!--
+- **vsphereVolume** (VsphereVirtualDiskVolumeSource)
+  vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine
+
+  <a name="VsphereVirtualDiskVolumeSource"></a>
+  *Represents a vSphere volume resource.*
+
+  - **vsphereVolume.volumePath** (string), required
+    volumePath is the path that identifies vSphere volume vmdk
+-->
+- **vsphereVolume** (VsphereVirtualDiskVolumeSource)
+  
+  vsphereVolume 表示 kubelet 主机上挂接和挂载的 vSphere 卷。
+  
+  <a name="VsphereVirtualDiskVolumeSource"></a>
+  **表示 vSphere 卷资源。**
+  
+  - **vsphereVolume.volumePath** (string)，必需
+    
+    volumePath 是标识 vSphere 卷 vmdk 的路径。
+  
+  <!--
+  - **vsphereVolume.fsType** (string)
+    fsType is filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+
+  - **vsphereVolume.storagePolicyID** (string)
+    storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.
+
+  - **vsphereVolume.storagePolicyName** (string)
+    storagePolicyName is the storage Policy Based Management (SPBM) profile name.
+  -->
+  - **vsphereVolume.fsType** (string)
+    
+    fsType 是要挂载的文件系统类型。必须是主机操作系统所支持的文件系统类型之一。
+    例如 “ext4”、“xfs”、“ntfs”。如果未指定，则隐式推断为 “ext4”。
+  
+  - **vsphereVolume.storagePolicyID** (string)
+    
+    storagePolicyID 是与 StoragePolicyName 关联的基于存储策略的管理（SPBM）配置文件 ID。
+  
+  - **vsphereVolume.storagePolicyName** (string)
+    
+    storagePolicyName 是基于存储策略的管理（SPBM）配置文件名称。
+
+<!--
+### Alpha level
+- **ephemeral** (EphemeralVolumeSource)
+  ephemeral represents a volume that is handled by a cluster storage driver. The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts, and deleted when the pod is removed.
+  
+  Use this if: a) the volume is only needed while the pod runs, b) features of normal volumes like restoring from snapshot or capacity
+     tracking are needed,
+  c) the storage driver is specified through a storage class, and d) the storage driver supports dynamic volume provisioning through
+     a PersistentVolumeClaim (see EphemeralVolumeSource for more
+     information on the connection between this volume type
+     and PersistentVolumeClaim).
+-->
+### Alpha 级别 {#alpha-level}
+- **ephemeral** (EphemeralVolumeSource)
+  
+  ephemeral 表示由一个集群存储驱动处理的卷。此卷的生命周期与定义其的 Pod 相关联。
+  Pod 启动前创建此卷，Pod 移除时删除此卷。
+  
+  使用此字段的情形包括：
+  a) 仅在 pod 运行时才需要此卷，
+  b) 需要从快照恢复或容量跟踪等正常卷的功能特性，
+  c) 通过存储类指定存储驱动，以及
+  d) 存储驱动支持通过 PersistentVolumeClaim 进行动态卷制备（有关此卷类型和 PersistentVolumeClaim 之间连接的更多信息，请参考 EphemeralVolumeSource）。
+
+<!--
+  Use PersistentVolumeClaim or one of the vendor-specific APIs for volumes that persist for longer than the lifecycle of an individual pod.
+  
+  Use CSI for light-weight local ephemeral volumes if the CSI driver is meant to be used that way - see the documentation of the driver for more information.
+  
+  A pod can use both types of ephemeral volumes and persistent volumes at the same time.
+
+  <a name="EphemeralVolumeSource"></a>
+  *Represents an ephemeral volume that is handled by a normal storage driver.*
+-->  
+  对于持续时间超过单个 Pod 生命周期的卷，使用 PersistentVolumeClaim 或某种特定于供应商的 API。
+  
+  如果打算以这种方式使用 CSI 驱动，则将 CSI 用于轻量级本地临时卷。更多的相关信息，请参考驱动文档。
+  
+  一个 Pod 可以同时使用临时卷和持久卷这两种类别的卷。
+  
+  <a name="EphemeralVolumeSource"></a>
+  **表示由一个正常存储驱动处理的临时卷。**
+
+  <!--
+  - **ephemeral.volumeClaimTemplate** (PersistentVolumeClaimTemplate)
+
+    Will be used to create a stand-alone PVC to provision the volume. The pod in which this EphemeralVolumeSource is embedded will be the owner of the PVC, i.e. the PVC will be deleted together with the pod.  The name of the PVC will be `\<pod name>-\<volume name>` where `\<volume name>` is the name from the `PodSpec.Volumes` array entry. Pod validation will reject the pod if the concatenated name is not valid for a PVC (for example, too long).
+    
+    An existing PVC with that name that is not owned by the pod will *not* be used for the pod to avoid using an unrelated volume by mistake. Starting the pod is then blocked until the unrelated PVC is removed. If such a pre-created PVC is meant to be used by the pod, the PVC has to updated with an owner reference to the pod once the pod exists. Normally this should not be necessary, but it may be useful when manually reconstructing a broken cluster.
+  -->  
+  - **ephemeral.volumeClaimTemplate** (PersistentVolumeClaimTemplate)
+    
+    将用于创建独立的 PVC 以制备卷。
+    嵌入了 EphemeralVolumeSource 的 Pod 将是 PVC 的所有者，即 PVC 将与 Pod 一起删除。
+    PVC 的名称将是 `<pod 名称>-<卷名称>`，其中 `<卷名称>` 是来自 `PodSpec.Volumes` 数组条目的名称。
+    如果串联的名称对于 PVC 无效（例如太长），则 Pod 验证将拒绝该 Pod。
+    
+    如果具有此名称的 PVC 不属于 Pod，则这个 PVC 将不会用于此 Pod，以避免错误地使用不相关的卷。
+    如果出现这种情况，Pod 的启动操作会被阻塞直到不相关的 PVC 被移除。
+    如果 Pod 准备使用这样一个预先创建的 PVC ，那么一旦此 Pod 出现，就必须更新 PVC，
+    将其属主引用指向该 Pod。通常没有必要这样做，但这对手动重构损坏的集群时可能很有用。
+
+    <!--
+    This field is read-only and no changes will be made by Kubernetes to the PVC after it has been created.
+    
+    Required, must not be nil.
+
+    <a name="PersistentVolumeClaimTemplate"></a>
+    *PersistentVolumeClaimTemplate is used to produce PersistentVolumeClaim objects as part of an EphemeralVolumeSource.*
+    -->    
+    此字段是只读的，PVC 被创建后 Kubernetes 不会对其进行任何更改。
+    
+    必需，不能为 nil。
+    
+    <a name="PersistentVolumeClaimTemplate"></a> 
+    **PersistentVolumeClaimTemplate 用于作为 EphemeralVolumeSource 的一部分生成 PersistentVolumeClaim 对象。**
+    
+    <!--
+    - **ephemeral.volumeClaimTemplate.spec** (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaimSpec" >}}">PersistentVolumeClaimSpec</a>), required
+
+      The specification for the PersistentVolumeClaim. The entire content is copied unchanged into the PVC that gets created from this template. The same fields as in a PersistentVolumeClaim are also valid here.
+
+    - **ephemeral.volumeClaimTemplate.metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+      May contain labels and annotations that will be copied into the PVC when creating it. No other fields are allowed and will be rejected during validation.
+    -->
+    - **ephemeral.volumeClaimTemplate.spec** (<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaimSpec" >}}">PersistentVolumeClaimSpec</a>)，必需
+      
+      PersistentVolumeClaim 的规约。整个规约的内容将被原封不动地复制到从此模板创建的 PVC 中。
+      与 PersistentVolumeClaim 相同的字段在此处也有效。
+    
+    - **ephemeral.volumeClaimTemplate.metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+      
+      可能包含一些标签和注解，在创建 PVC 时，这些数据会被复制到 PVC 中。在验证期间，其他字段都不允许设置进而被拒绝。
+
+<!--
+### Deprecated
+- **gitRepo** (GitRepoVolumeSource)
+  gitRepo represents a git repository at a particular revision. DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod's container.
+
+  <a name="GitRepoVolumeSource"></a>
+  *Represents a volume that is populated with the contents of a git repository. Git repo volumes do not support ownership management. Git repo volumes support SELinux relabeling.
+  
+  DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod's container.*
+-->
+### 已弃用 {#deprecated}
+- **gitRepo** (GitRepoVolumeSource)
+  
+  gitRepo 表示特定修订版本的 git 仓库。（注意：GitRepo 已被弃用。）如果与为某容器提速 Git 仓库，
+  可以先将 emptyDir 挂载到 InitContainer 上，由后者使用 git 克隆仓库，然后将 emptyDir 挂载到 Pod 的容器中。
+  
+  <a name="GitRepoVolumeSource"></a> 
+  **表示用 Git 仓库的内容进行填充的一个卷。Git 仓库卷不支持所有权管理。Git 仓库卷支持 SELinux 重新打标签。
+  （注意：GitRepo 已被弃用。）如果与为某容器提速 Git 仓库，
+  可以先将 emptyDir 挂载到 InitContainer 上，由后者使用 git 克隆仓库，然后将 emptyDir 挂载到 Pod 的容器中。**
+
+  <!--
+  - **gitRepo.repository** (string), required
+    repository is the URL
+
+  - **gitRepo.directory** (string)
+    directory is the target directory name. Must not contain or start with '..'.  If '.' is supplied, the volume directory will be the git repository.  Otherwise, if specified, the volume will contain the git repository in the subdirectory with the given name.
+
+  - **gitRepo.revision** (string)
+    revision is the commit hash for the specified revision.
+  -->  
+  - **gitRepo.repository** (string)，必需
+    
+    repository 是仓库的 URL。
+  
+  - **gitRepo.directory** (string)
+    
+    directory 是目标目录的名称。不得包含 “..” 或以 “..” 开头。如果提供了 “.”，则卷目录将是 Git 仓库。
+    否则，如果指定，卷将用给定名称的子目录中存放 Git 仓库。
+  
+  - **gitRepo.revision** (string)
+    
+    revision 是指定修订版本的提交哈希值。
+
+## DownwardAPIVolumeFile {#DownwardAPIVolumeFile}
+<!--
+DownwardAPIVolumeFile represents information to create the file containing the pod field
+<hr>
+- **path** (string), required
+  Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'
+
+- **fieldRef** (<a href="{{< ref "../common-definitions/object-field-selector#ObjectFieldSelector" >}}">ObjectFieldSelector</a>)
+  Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.
+-->
+DownwardAPIVolumeFile 表示创建包含 Pod 字段的文件的信息。
+
+<hr>
+
+- **path** (string)，必需
+  
+  必需。path 是要创建的文件的相对路径名称。不得使用绝对路径，也不得包含 “..” 路径。
+  必须用 UTF-8 进行编码。相对路径的第一项不得用 “..” 开头。
+
+- **fieldRef** (<a href="{{< ref "../common-definitions/object-field-selector#ObjectFieldSelector" >}}">ObjectFieldSelector</a>)
+  
+  必需。选择 Pod 的字段：仅支持注解、标签、名称和名字空间。
+
+<!--
+- **mode** (int32)
+  Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+
+- **resourceFieldRef** (<a href="{{< ref "../common-definitions/resource-field-selector#ResourceFieldSelector" >}}">ResourceFieldSelector</a>)
+  Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.
+-->
+- **mode** (int32)
+  
+  可选：模式位用于设置文件的权限，必须是 0000 到 0777 之间的八进制值或 0 到 511 之间的十进制值。
+  YAML 既接受八进制值也接受十进制值，JSON 针对模式位需要十进制值。
+  如果未指定，则将使用卷 defaultMode。
+  这可能与影响文件模式的其他选项（如 fsGroup）有冲突，且结果可以是其他模式位也被设置。
+
+- **resourceFieldRef** (<a href="{{< ref "../common-definitions/resource-field-selector#ResourceFieldSelector" >}}">ResourceFieldSelector</a>)
+  
+  选择容器的资源：目前仅支持资源限制与请求（limits.cpu、limits.memory、requests.cpu 和 requests.memory）。
+
+## KeyToPath {#KeyToPath}
+
+<!--
+Maps a string key to a path within a volume.
+<hr>
+- **key** (string), required
+  key is the key to project.
+
+- **path** (string), required
+  path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+-->
+将一个字符串键映射到卷中的一个路径。
+
+<hr>
+
+- **key** (string)，必需
+  
+  key 是要投射的键。
+
+- **path** (string)，必需
+  
+  path 是将键映射到的文件的相对路径。不能是绝对路径。不能包含路径元素 “..”。不能以字符串 “..” 开头。
+
+<!--
+- **mode** (int32)
+  mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+-->
+- **mode** (int32)
+  
+  mode 是可选的：模式位用于为文件设置权限。必须是 0000 到 0777 之间的八进制值或 0 到 511 之间的十进制值。
+  YAML 既接受八进制值也接受十进制值，JSON 针对模式位需要十进制值。
+  如果未指定，则将使用卷 defaultMode。
+  这可能与影响文件模式的其他选项（如 fsGroup）有冲突，且结果可以是其他模式位也被设置。
diff --git a/content/zh-cn/docs/reference/kubernetes-api/extend-resources/_index.md b/content/zh-cn/docs/reference/kubernetes-api/extend-resources/_index.md
new file mode 100644
index 0000000000..de42eb4957
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/extend-resources/_index.md
@@ -0,0 +1,8 @@
+---
+title: "扩展资源"
+weight: 7
+auto_generated: true
+---
+
+
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/extend-resources/custom-resource-definition-v1.md b/content/zh-cn/docs/reference/kubernetes-api/extend-resources/custom-resource-definition-v1.md
new file mode 100644
index 0000000000..f0bba86822
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/extend-resources/custom-resource-definition-v1.md
@@ -0,0 +1,1736 @@
+---
+api_metadata:
+  apiVersion: "apiextensions.k8s.io/v1"
+  import: "k8s.io/apiextensions-apiserver/pkg/apis/apiextensions/v1"
+  kind: "CustomResourceDefinition"
+content_type: "api_reference"
+description: "CustomResourceDefinition 表示应在 API 服务器上公开的资源。"
+title: "CustomResourceDefinition"
+weight: 1
+---
+<!--
+api_metadata:
+  apiVersion: "apiextensions.k8s.io/v1"
+  import: "k8s.io/apiextensions-apiserver/pkg/apis/apiextensions/v1"
+  kind: "CustomResourceDefinition"
+content_type: "api_reference"
+description: "CustomResourceDefinition represents a resource that should be exposed on the API server."
+title: "CustomResourceDefinition"
+weight: 1
+auto_generated: true
+-->
+
+`apiVersion: apiextensions.k8s.io/v1`
+
+`import "k8s.io/apiextensions-apiserver/pkg/apis/apiextensions/v1"`
+
+## CustomResourceDefinition {#CustomResourceDefinition}
+
+<!--
+CustomResourceDefinition represents a resource that should be exposed on the API server.  Its name MUST be in the format \<.spec.name>.\<.spec.group>.
+-->
+CustomResourceDefinition 表示应在 API 服务器上公开的资源。其名称必须采用 `<.spec.name>.<.spec.group>` 格式。
+
+<hr>
+
+- **apiVersion**: apiextensions.k8s.io/v1
+
+- **kind**: CustomResourceDefinition
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  <!--
+  Standard object's metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+  标准的对象元数据，更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinitionSpec" >}}">CustomResourceDefinitionSpec</a>), <!--required-->必需
+  <!--
+  spec describes how the user wants the resources to appear
+  -->
+  spec 描述了用户希望资源的呈现方式
+
+- **status** (<a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinitionStatus" >}}">CustomResourceDefinitionStatus</a>)
+  <!--
+  status indicates the actual state of the CustomResourceDefinition
+  -->
+  status 表示 CustomResourceDefinition 的实际状态
+
+## CustomResourceDefinitionSpec {#CustomResourceDefinitionSpec}
+
+<!--
+CustomResourceDefinitionSpec describes how a user wants their resource to appear
+-->
+CustomResourceDefinitionSpec 描述了用户希望资源的呈现方式
+
+<hr>
+
+<!--
+- **group** (string), required
+
+  group is the API group of the defined custom resource. The custom resources are served under `/apis/\<group>/...`. Must match the name of the CustomResourceDefinition (in the form `\<names.plural>.\<group>`).
+-->
+- **group** (string)，必需
+
+  group 是自定义资源的 API 组。自定义资源在 `/apis/<group>/...` 下提供。
+  必须与 CustomResourceDefinition 的名称匹配（格式为 `<names.plural>.<group>`）。
+
+<!--
+- **names** (CustomResourceDefinitionNames), required
+
+  names specify the resource and kind names for the custom resource.
+-->
+
+- **names** (CustomResourceDefinitionNames)，必需
+
+  names 表示自定义资源的资源和种类名称。
+
+  <a name="CustomResourceDefinitionNames"></a>
+  <!--
+  *CustomResourceDefinitionNames indicates the names to serve this CustomResourceDefinition*
+
+  - **names.kind** (string), required
+
+    kind is the serialized kind of the resource. It is normally CamelCase and singular. Custom resource instances will use this value as the `kind` attribute in API calls.
+  -->
+  **CustomResourceDefinitionNames 表示提供此 CustomResourceDefinition 资源的名称**
+
+  - **names.kind** (string)，必需
+
+    kind 是资源的序列化类型。它通常是驼峰命名的单数形式。自定义资源实例将使用此值作为 API 调用中的 `kind` 属性。
+
+  <!--
+  - **names.plural** (string), required
+
+    plural is the plural name of the resource to serve. The custom resources are served under `/apis/\<group>/\<version>/.../\<plural>`. Must match the name of the CustomResourceDefinition (in the form `\<names.plural>.\<group>`). Must be all lowercase.
+  -->
+
+  - **names.plural** (string)，必需
+
+    plural 是所提供的资源的复数名称，自定义资源在 `/apis/<group>/<version>/.../<plural>` 下提供。
+    必须与 CustomResourceDefinition 的名称匹配（格式为 `<names.plural>.<group>`）。必须全部小写。
+
+  - **names.categories** ([]string)
+
+    <!--
+    categories is a list of grouped resources this custom resource belongs to (e.g. 'all'). This is published in API discovery documents, and used by clients to support invocations like `kubectl get all`.
+    -->
+
+    categories 是自定义资源所属的分组资源列表（例如 'all'）。
+    它在 API 发现文档中发布，并支持客户端像 `kubectl get all` 这样的调用。
+
+  - **names.listKind** (string)
+
+    <!--
+    listKind is the serialized kind of the list for this resource. Defaults to "`kind`List".
+    -->
+
+    listKind 是此资源列表的序列化类型。默认为 "`kind`List"。
+
+  - **names.shortNames** ([]string)
+
+    <!--
+    shortNames are short names for the resource, exposed in API discovery documents, and used by clients to support invocations like `kubectl get \<shortname>`. It must be all lowercase.
+    -->
+
+    shortNames 是资源的短名称，在 API 发现文档中公开，并支持客户端调用，如 `kubectl get <shortname>`。必须全部小写。
+
+  - **names.singular** (string)
+
+    <!--
+    singular is the singular name of the resource. It must be all lowercase. Defaults to lowercased `kind`.
+    -->
+
+    singular 是资源的单数名称。必须全部小写。默认为小写 `kind`。
+
+<!--  
+- **scope** (string), required
+
+  scope indicates whether the defined custom resource is cluster- or namespace-scoped. Allowed values are `Cluster` and `Namespaced`.
+-->
+
+- **scope** (string)，必需
+  
+  scope 表示自定义资源是群集作用域还是命名空间作用域。允许的值为 `Cluster` 和 `Namespaced`。
+
+<!--
+- **versions** ([]CustomResourceDefinitionVersion), required
+
+  versions is the list of all API versions of the defined custom resource. Version names are used to compute the order in which served versions are listed in API discovery. If the version string is "kube-like", it will sort above non "kube-like" version strings, which are ordered lexicographically. "Kube-like" versions start with a "v", then are followed by a number (the major version), then optionally the string "alpha" or "beta" and another number (the minor version). These are sorted first by GA > beta > alpha (where GA is a version with no suffix such as beta or alpha), and then by comparing major version, then minor version. An example sorted list of versions: v10, v2, v1, v11beta2, v10beta3, v3beta1, v12alpha1, v11alpha2, foo1, foo10.
+-->
+
+- **versions** ([]CustomResourceDefinitionVersion)，必需
+
+  versions 是自定义资源的所有 API 版本的列表。版本名称用于计算服务版本在 API 发现中列出的顺序。
+  如果版本字符串是与 Kubernetes 的版本号形式类似，则它将排序在非 Kubernetes 形式版本字符串之前。
+  Kubernetes 的版本号字符串按字典顺序排列。Kubernetes 版本号以 “v” 字符开头，
+  后面是一个数字（主版本），然后是可选字符串 “alpha” 或 “beta” 和另一个数字（次要版本）。
+  它们首先按 GA > beta > alpha 排序（其中 GA 是没有 beta 或 alpha 等后缀的版本），然后比较主要版本，
+  最后是比较次要版本。版本排序列表示例：v10、v2、v1、v11beta2、v10beta3、v3beta1、v12alpha1、v11alpha2、foo1、foo10。
+
+  <a name="CustomResourceDefinitionVersion"></a>
+  <!--
+  *CustomResourceDefinitionVersion describes a version for CRD.*
+
+  - **versions.name** (string), required
+
+    name is the version name, e.g. “v1”, “v2beta1”, etc. The custom resources are served under this version at `/apis/\<group>/\<version>/...` if `served` is true.
+  -->
+  **CustomResourceDefinitionVersion 描述 CRD 的一个版本**
+
+  - **versions.name** (string)，必需
+
+    name 是版本名称，例如 “v1”、“v2beta1” 等。如果 `served` 是 true，自定义资源在
+    `/apis/<group>/<version>/...` 版本下提供。
+
+  <!--
+  - **versions.served** (boolean), required
+
+    served is a flag enabling/disabling this version from being served via REST APIs
+  -->
+
+  - **versions.served** (boolean)，必需
+
+    served 是用于启用/禁用该版本通过 REST API 提供服务的标志
+
+  <!--
+  - **versions.storage** (boolean), required
+
+    storage indicates this version should be used when persisting custom resources to storage. There must be exactly one version with storage=true.
+  -->
+
+  - **versions.storage** (boolean)，必需
+
+    storage 表示在将自定义资源持久保存到存储时应使用此版本。有且仅有一个版本的 storage=true。
+
+  - **versions.additionalPrinterColumns** ([]CustomResourceColumnDefinition)
+
+    <!--
+    additionalPrinterColumns specifies additional columns returned in Table output. See https://kubernetes.io/docs/reference/using-api/api-concepts/#receiving-resources-as-tables for details. If no columns are specified, a single column displaying the age of the custom resource is used.
+    -->
+
+    additionalPrinterColumns 表示在表输出中返回的附加列。
+    有关详细信息，请参阅 https://kubernetes.io/zh-cn/docs/reference/using-api/api-concepts/#receiving-resources-as-tables。
+    如果没有指定列，则显示自定义资源存活时间（AGE）列。
+  
+    <a name="CustomResourceColumnDefinition"></a>
+    <!--
+    *CustomResourceColumnDefinition specifies a column for server side printing.*
+
+    - **versions.additionalPrinterColumns.jsonPath** (string), required
+
+      jsonPath is a simple JSON path (i.e. with array notation) which is evaluated against each custom resource to produce the value for this column.
+    -->
+
+    **CustomResourceColumnDefinition 指定用于服务器端打印的列。**
+
+    - **versions.additionalPrinterColumns.jsonPath** (string)，必需
+
+      jsonPath 是一个简单的 JSON 路径（使用数组表示法），它对每个自定义资源进行评估，以生成该列的值。
+
+    <!--
+    - **versions.additionalPrinterColumns.name** (string), required
+
+      name is a human readable name for the column.
+    -->
+
+    - **versions.additionalPrinterColumns.name** (string)，必需
+
+      name 是便于阅读的列名称
+
+    <!--
+    - **versions.additionalPrinterColumns.type** (string), required
+
+      type is an OpenAPI type definition for this column. See https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md#data-types for details.
+    -->
+
+    - **versions.additionalPrinterColumns.type** (string)，必需
+
+      type 是此列的 OpenAPI 类型定义。有关详细信息，
+      请参阅 https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md#data-types
+
+    - **versions.additionalPrinterColumns.description** (string)
+
+      <!--
+      description is a human readable description of this column.
+      -->
+
+      description 是该列的可读性描述 
+
+    - **versions.additionalPrinterColumns.format** (string)
+
+      <!--
+      format is an optional OpenAPI type definition for this column. The 'name' format is applied to the primary identifier column to assist in clients identifying column is the resource name. See https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md#data-types for details.
+      -->
+
+      format 是这个列的可选 OpenAPI 类型定义。'name' 格式应用于主标识符列，以帮助客户端识别列是资源名称。
+      有关详细信息，请参阅 https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md#data-types。
+
+    - **versions.additionalPrinterColumns.priority** (int32)
+
+      <!--
+      priority is an integer defining the relative importance of this column compared to others. Lower numbers are considered higher priority. Columns that may be omitted in limited space scenarios should be given a priority greater than 0.
+      -->
+
+      priority 是一个定义此列相对于其他列的相对重要性的整数。数字越低，优先级越高。
+      在空间有限的情况下，可以省略的列的优先级应大于 0。 
+
+  - **versions.deprecated** (boolean)
+
+    <!--
+    deprecated indicates this version of the custom resource API is deprecated. When set to true, API requests to this version receive a warning header in the server response. Defaults to false.
+    -->
+
+    deprecated 表示此版本的自定义资源 API 已弃用。设置为 true 时，对此版本的 API
+    请求会在服务器响应头信息中带有警告（warning）信息。此值默认为 false。
+
+  - **versions.deprecationWarning** (string)
+
+    <!--
+    deprecationWarning overrides the default warning returned to API clients. May only be set when `deprecated` is true. The default warning indicates this version is deprecated and recommends use of the newest served version of equal or greater stability, if one exists.
+    -->
+
+    deprecationWarning 会覆盖返回给 API 客户端的默认警告。只能在 `deprecated` 为 true 时设置。
+    默认警告表示此版本已弃用，建议使用最新的同等或更高稳定性版本（如果存在）。
+
+  - **versions.schema** (CustomResourceValidation)
+
+    <!--
+    schema describes the schema used for validation, pruning, and defaulting of this version of the custom resource.
+    -->
+
+    schema 描述了用于验证、精简和默认此版本的自定义资源的模式。  
+
+    <a name="CustomResourceValidation"></a>
+    <!--
+    *CustomResourceValidation is a list of validation methods for CustomResources.*
+    -->
+
+    **CustomResourceValidation 是 CustomResources 的验证方法列表。**  
+
+    - **versions.schema.openAPIV3Schema** (<a href="{{< ref "../extend-resources/custom-resource-definition-v1#JSONSchemaProps" >}}">JSONSchemaProps</a>)
+
+      <!--
+      openAPIV3Schema is the OpenAPI v3 schema to use for validation and pruning.
+      -->
+
+      openAPIV3Schema 是用于验证和精简的 OpenAPI v3 模式。    
+
+  - **versions.subresources** (CustomResourceSubresources)
+
+    <!--
+    subresources specify what subresources this version of the defined custom resource have.
+    -->
+
+    subresources 指定此版本已定义的自定义资源具有哪些子资源。  
+
+    <a name="CustomResourceSubresources"></a>
+    <!--
+    *CustomResourceSubresources defines the status and scale subresources for CustomResources.*
+    -->
+
+    **CustomResourceSubresources 定义了 CustomResources 子资源的状态和规模。**  
+
+    - **versions.subresources.scale** (CustomResourceSubresourceScale)
+
+      <!--
+      scale indicates the custom resource should serve a `/scale` subresource that returns an `autoscaling/v1` Scale object.
+      -->
+
+      scale 表示自定义资源应该提供一个 `/scale` 子资源，该子资源返回一个 `autoscaling/v1` Scale 对象。
+
+      <a name="CustomResourceSubresourceScale"></a>
+      <!--
+      *CustomResourceSubresourceScale defines how to serve the scale subresource for CustomResources.*
+
+      - **versions.subresources.scale.specReplicasPath** (string), required
+
+        specReplicasPath defines the JSON path inside of a custom resource that corresponds to Scale `spec.replicas`. Only JSON paths without the array notation are allowed. Must be a JSON Path under `.spec`. If there is no value under the given path in the custom resource, the `/scale` subresource will return an error on GET.
+      -->
+
+      **CustomResourceSubresourceScale 定义了如何为 CustomResources 的 scale 子资源提供服务。**
+
+      - **versions.subresources.scale.specReplicasPath** (string)，必需
+
+        specReplicasPath 定义对应于 Scale 的自定义资源内的 JSON 路径 `spec.replicas`。
+        只允许没有数组表示法的 JSON 路径。必须是 `.spec` 下的 JSON 路径。
+        如果自定义资源中的给定路径下没有值，那么 GET `/scale` 子资源将返回错误。
+
+      <!--
+      - **versions.subresources.scale.statusReplicasPath** (string), required
+
+        statusReplicasPath defines the JSON path inside of a custom resource that corresponds to Scale `status.replicas`. Only JSON paths without the array notation are allowed. Must be a JSON Path under `.status`. If there is no value under the given path in the custom resource, the `status.replicas` value in the `/scale` subresource will default to 0.
+      -->
+
+      - **versions.subresources.scale.statusReplicasPath** (string)，必需
+
+        statusReplicasPath 定义对应于 Scale 的自定义资源内的 JSON 路径 `status.replicas`。
+        只允许不带数组表示法的 JSON 路径。必须是 `.status` 下的 JSON 路径。
+        如果自定义资源中给定路径下没有值，则 `/scale` 子资源中的 `status.replicas` 值将默认为 0。
+
+      - **versions.subresources.scale.labelSelectorPath** (string)
+
+        <!--
+        labelSelectorPath defines the JSON path inside of a custom resource that corresponds to Scale `status.selector`. Only JSON paths without the array notation are allowed. Must be a JSON Path under `.status` or `.spec`. Must be set to work with HorizontalPodAutoscaler. The field pointed by this JSON path must be a string field (not a complex selector struct) which contains a serialized label selector in string form. More info: https://kubernetes.io/docs/tasks/access-kubernetes-api/custom-resources/custom-resource-definitions#scale-subresource If there is no value under the given path in the custom resource, the `status.selector` value in the `/scale` subresource will default to the empty string.
+        -->
+
+        labelSelectorPath 定义对应于 Scale 的自定义资源内的 JSON 路径 `status.selector`。
+        只允许不带数组表示法的 JSON 路径。必须是 `.status` 或 `.spec` 下的路径。
+        必须设置为与 HorizontalPodAutoscaler 一起使用。
+        此 JSON 路径指向的字段必须是字符串字段（不是复杂的选择器结构），其中包含字符串形式的序列化标签选择器。
+        更多信息： https://kubernetes.io/zh-cn/docs/tasks/access-kubernetes-api/custom-resources/custom-resource-definitions#scale-subresource。
+        如果自定义资源中给定路径下没有值，则 `/scale` 子资源中的 `status.selector` 默认值为空字符串。
+
+    - **versions.subresources.status** (CustomResourceSubresourceStatus)
+
+      <!--
+      status indicates the custom resource should serve a `/status` subresource. When enabled: 1. requests to the custom resource primary endpoint ignore changes to the `status` stanza of the object. 2. requests to the custom resource `/status` subresource ignore changes to anything other than the `status` stanza of the object.
+      -->
+
+      status 表示自定义资源应该为 `/status` 子资源服务。当启用时：
+
+      1. 对自定义资源主端点的请求会忽略对对象的 `status` 节的改变；
+      2. 对自定义资源 `/status` 子资源的请求忽略对对象的 `status` 节以外的任何变化。
+
+      <a name="CustomResourceSubresourceStatus"></a>
+      <!--
+      *CustomResourceSubresourceStatus defines how to serve the status subresource for CustomResources. Status is represented by the `.status` JSON path inside of a CustomResource. When set, * exposes a /status subresource for the custom resource * PUT requests to the /status subresource take a custom resource object, and ignore changes to anything except the status stanza * PUT/POST/PATCH requests to the custom resource ignore changes to the status stanza*
+      -->
+
+      CustomResourceSubresourceStatus 定义了如何为自定义资源提供 status 子资源。
+      状态由 CustomResource 中的 `.status` JSON 路径表示。设置后，
+
+      * 为自定义资源提供一个 `/status` 子资源。
+      * 向 `/status` 子资源发出的 PUT 请求时，需要提供自定义资源对象，服务器端会忽略对 status 节以外的任何内容更改。
+      * 对自定义资源的 PUT/POST/PATCH 请求会忽略对 status 节的更改。
+
+- **conversion** (CustomResourceConversion)
+
+  <!--
+  conversion defines conversion settings for the CRD.
+  -->
+  conversion 定义了 CRD 的转换设置。
+
+  <a name="CustomResourceConversion"></a>
+  <!--
+  *CustomResourceConversion describes how to convert different versions of a CR.*
+
+  - **conversion.strategy** (string), required
+
+    strategy specifies how custom resources are converted between versions. Allowed values are: - `None`: The converter only change the apiVersion and would not touch any other field in the custom resource. - `Webhook`: API Server will call to an external webhook to do the conversion. Additional information
+      is needed for this option. This requires spec.preserveUnknownFields to be false, and spec.conversion.webhook to be set.
+  -->
+
+  **CustomResourceConversion 描述了如何转换不同版本的自定义资源。**
+
+  - **conversion.strategy** (string)，必需
+
+    strategy 指定如何在版本之间转换自定义资源。允许的值为：
+
+    - `None`：转换器仅更改 apiVersion 并且不会触及自定义资源中的任何其他字段。
+    - `Webhook`：API 服务器将调用外部 Webhook 进行转换。此选项需要其他信息。这要求
+       spec.preserveUnknownFields 为 false，并且设置 spec.conversion.webhook。
+
+  - **conversion.webhook** (WebhookConversion)
+
+    <!--
+    webhook describes how to call the conversion webhook. Required when `strategy` is set to `Webhook`.
+    -->
+
+    webhook 描述了如何调用转换 Webhook。当 `strategy` 设置为 `Webhook` 时有效。
+
+    <a name="WebhookConversion"></a>
+    <!--
+    *WebhookConversion describes how to call a conversion webhook*
+
+    - **conversion.webhook.conversionReviewVersions** ([]string), required
+
+      conversionReviewVersions is an ordered list of preferred `ConversionReview` versions the Webhook expects. The API server will use the first version in the list which it supports. If none of the versions specified in this list are supported by API server, conversion will fail for the custom resource. If a persisted Webhook configuration specifies allowed versions and does not include any versions known to the API Server, calls to the webhook will fail.
+    -->
+
+    **WebhookConversion 描述了如何调用转换 Webhook**
+
+    - **conversion.webhook.conversionReviewVersions** ([]string)，必需
+
+      conversionReviewVersions 是 Webhook 期望的 `ConversionReview` 版本的有序列表。
+      API 服务器将使用它支持的列表中的第一个版本。如果 API 服务器不支持此列表中指定的版本，则自定义资源的转换将失败。
+      如果持久化的 Webhook 配置指定了允许的版本但其中不包括 API 服务器所了解的任何版本，则对 Webhook 的调用将失败。
+
+    - **conversion.webhook.clientConfig** (WebhookClientConfig)
+
+      <!--
+      clientConfig is the instructions for how to call the webhook if strategy is `Webhook`.
+      -->
+
+      如果 strategy 是 `Webhook`， 那么 clientConfig 是关于如何调用 Webhook 的说明。
+
+      <a name="WebhookClientConfig"></a>
+      <!--
+      *WebhookClientConfig contains the information to make a TLS connection with the webhook.*
+      -->
+
+      **WebhookClientConfig 包含与 Webhook 建立 TLS 连接的信息。**
+
+      - **conversion.webhook.clientConfig.caBundle** ([]byte)
+
+        <!--
+        caBundle is a PEM encoded CA bundle which will be used to validate the webhook's server certificate. If unspecified, system trust roots on the apiserver are used.
+        -->
+
+        caBundle 是一个 PEM 编码的 CA 包，用于验证 Webhook 服务器的服务证书。
+        如果未指定，则使用 API 服务器上的系统根证书。
+
+      - **conversion.webhook.clientConfig.service** (ServiceReference)
+
+        <!--
+        service is a reference to the service for this webhook. Either service or url must be specified.
+        
+        If the webhook is running within the cluster, then you should use `service`.
+        -->
+
+        service 是对此 Webhook 服务的引用。必须指定 service 或 url 字段之一。
+
+        如果在集群中运行 Webhook，那么你应该使用 `service`。
+
+        <a name="ServiceReference"></a>
+        <!--
+        *ServiceReference holds a reference to Service.legacy.k8s.io*
+
+        - **conversion.webhook.clientConfig.service.name** (string), required
+
+          name is the name of the service. Required
+        -->
+
+        **ServiceReference 保存对 Service.legacy.k8s.io 的一个引用。**
+
+        - **conversion.webhook.clientConfig.service.name** (string)，必需
+
+          name 是服务的名称。必需。
+
+        <!--
+        - **conversion.webhook.clientConfig.service.namespace** (string), required
+
+          namespace is the namespace of the service. Required
+        -->
+
+        - **conversion.webhook.clientConfig.service.namespace** (string)，必需
+
+          namespace 是服务的命名空间。必需。
+
+        - **conversion.webhook.clientConfig.service.path** (string)
+
+          <!--
+          path is an optional URL path at which the webhook will be contacted.
+          -->
+
+          path 是一个可选的 URL 路径，Webhook 将通过该路径联系服务。
+
+        - **conversion.webhook.clientConfig.service.port** (int32)
+
+          <!--
+          port is an optional service port at which the webhook will be contacted. `port` should be a valid port number (1-65535, inclusive). Defaults to 443 for backward compatibility.
+          -->
+
+          port 是 Webhook 联系的可选服务端口。`port` 应该是一个有效的端口号（1-65535，包含）。
+          为实现向后兼容，默认端口号为 443。
+
+      - **conversion.webhook.clientConfig.url** (string)
+
+        <!--
+        url gives the location of the webhook, in standard URL form (`scheme://host:port/path`). Exactly one of `url` or `service` must be specified.
+        -->
+
+        url 以标准 URL 的形式（`scheme://host:port/path`）给出 Webhook 的位置。`url` 或 `service` 必须指定一个且只能指定一个。
+
+        <!--
+        The `host` should not refer to a service running in the cluster; use the `service` field instead. The host might be resolved via external DNS in some apiservers (e.g., `kube-apiserver` cannot resolve in-cluster DNS as that would be a layering violation). `host` may also be an IP address.
+        -->
+
+        `host` 不应引用集群中运行的服务；若使用集群内服务应改为使用 `service` 字段。
+        host 值可能会通过外部 DNS 解析（例如，`kube-apiserver` 无法解析集群内 DNS，因为这将违反分层规则）。
+        `host` 也可能是 IP 地址。
+
+        <!--
+        Please note that using `localhost` or `127.0.0.1` as a `host` is risky unless you take great care to run this webhook on all hosts which run an apiserver which might need to make calls to this webhook. Such installs are likely to be non-portable, i.e., not easy to turn up in a new cluster.
+        -->
+
+        请注意，使用 `localhost` 或 `127.0.0.1` 作为 `host` 是有风险的，
+        除非你非常小心地在所有运行 API 服务器的主机上运行这个 Webhook，因为这些 API 服务器可能需要调用这个 Webhook。
+        这样的安装可能是不可移植的，也就是说，不容易在一个新的集群中复现。
+
+        <!--
+        The scheme must be "https"; the URL must begin with "https://".
+        
+        A path is optional, and if present may be any string permissible in a URL. You may use the path to pass an arbitrary string to the webhook, for example, a cluster identifier.
+        
+        Attempting to use a user or basic auth e.g. "user:password@" is not allowed. Fragments ("#...") and query parameters ("?...") are not allowed, either.
+        -->
+
+        scheme 必须是 "https"；URL 必须以 "https://" 开头。
+
+        路径（path）是可选的，如果存在，则可以是 URL 中允许的任何字符串。
+        你可以使用路径传递一个任意字符串给 Webhook，例如，一个集群标识符。
+
+        不允许使用用户或基本认证，例如 "user:password@"，是不允许的。片段（"#..."）和查询参数（"?..."）也是不允许的。
+
+- **preserveUnknownFields** (boolean)
+
+  <!--
+  preserveUnknownFields indicates that object fields which are not specified in the OpenAPI schema should be preserved when persisting to storage. apiVersion, kind, metadata and known fields inside metadata are always preserved. This field is deprecated in favor of setting `x-preserve-unknown-fields` to true in `spec.versions[*].schema.openAPIV3Schema`. See https://kubernetes.io/docs/tasks/access-kubernetes-api/custom-resources/custom-resource-definitions/#pruning-versus-preserving-unknown-fields for details.
+  -->
+
+  preserveUnknownFields 表示将对象写入持久性存储时应保留 OpenAPI 模式中未规定的对象字段。
+  apiVersion、kind、元数据（metadata）和元数据中的已知字段始终保留。不推荐使用此字段，而建议在
+  `spec.versions[*].schema.openAPIV3Schema` 中设置 `x-preserve-unknown-fields` 为 true。
+  更多详细信息参见： https://kubernetes.io/zh-cn/docs/tasks/access-kubernetes-api/custom-resources/custom-resource-definitions/#pruning-versus-preserving-unknown-fields
+
+## JSONSchemaProps {#JSONSchemaProps}
+
+<!--
+JSONSchemaProps is a JSON-Schema following Specification Draft 4 (http://json-schema.org/).
+-->
+JSONSchemaProps 是JSON 模式（JSON-Schema），遵循其规范草案第 4 版 （http://json-schema.org/）。
+
+<hr>
+
+- **$ref** (string)
+
+- **$schema** (string)
+
+- **additionalItems** (JSONSchemaPropsOrBool)
+
+  <a name="JSONSchemaPropsOrBool"></a>
+  <!--
+  *JSONSchemaPropsOrBool represents JSONSchemaProps or a boolean value. Defaults to true for the boolean property.*
+  -->
+  **JSONSchemaPropsOrBool 表示 JSONSchemaProps 或布尔值。布尔属性默认为 true。**
+
+- **additionalProperties** (JSONSchemaPropsOrBool)
+
+  <a name="JSONSchemaPropsOrBool"></a>
+  <!--
+  *JSONSchemaPropsOrBool represents JSONSchemaProps or a boolean value. Defaults to true for the boolean property.*
+  -->
+  **JSONSchemaPropsOrBool 表示 JSONSchemaProps 或布尔值。布尔属性默认为 true。**  
+
+- **allOf** ([]<a href="{{< ref "../extend-resources/custom-resource-definition-v1#JSONSchemaProps" >}}">JSONSchemaProps</a>)
+
+- **anyOf** ([]<a href="{{< ref "../extend-resources/custom-resource-definition-v1#JSONSchemaProps" >}}">JSONSchemaProps</a>)
+
+- **default** (JSON)
+
+  <!--
+  default is a default value for undefined object fields. Defaulting is a beta feature under the CustomResourceDefaulting feature gate. Defaulting requires spec.preserveUnknownFields to be false.
+  -->
+  default 是未定义对象字段的默认值。设置默认值操作是 CustomResourceDefaulting 特性门控所控制的一个 Beta 特性。
+  应用默认值设置时要求 spec.preserveUnknownFields 为 false。
+
+  <a name="JSON"></a>
+  <!--
+  *JSON represents any valid JSON value. These types are supported: bool, int64, float64, string, []interface{}, map[string]interface{} and nil.*
+  -->
+  **JSON 表示任何有效的 JSON 值。支持以下类型：bool、int64、float64、string、[]interface{}、map[string]interface{} 和 nil。** 
+
+- **definitions** (map[string]<a href="{{< ref "../extend-resources/custom-resource-definition-v1#JSONSchemaProps" >}}">JSONSchemaProps</a>)
+
+- **dependencies** (map[string]JSONSchemaPropsOrStringArray)
+
+  <a name="JSONSchemaPropsOrStringArray"></a>
+  <!--
+  *JSONSchemaPropsOrStringArray represents a JSONSchemaProps or a string array.*
+  -->
+  **JSONSchemaPropsOrStringArray 表示 JSONSchemaProps 或字符串数组。** 
+
+- **description** (string)
+
+- **enum** ([]JSON)
+
+  <a name="JSON"></a>
+  <!--
+  *JSON represents any valid JSON value. These types are supported: bool, int64, float64, string, []interface{}, map[string]interface{} and nil.*
+  -->
+  **JSON 表示任何有效的 JSON 值。支持以下类型：bool、int64、float64、string、[]interface{}、map[string]interface{} 和 nil。**
+
+- **example** (JSON)
+
+  <a name="JSON"></a>
+  <!--
+  *JSON represents any valid JSON value. These types are supported: bool, int64, float64, string, []interface{}, map[string]interface{} and nil.*
+  -->
+  **JSON 表示任何有效的 JSON 值。支持以下类型：bool、int64、float64、string、[]interface{}、map[string]interface{} 和 nil。**
+
+- **exclusiveMaximum** (boolean)
+
+- **exclusiveMinimum** (boolean)
+
+- **externalDocs** (ExternalDocumentation)
+
+  <a name="ExternalDocumentation"></a>
+  <!--
+  *ExternalDocumentation allows referencing an external resource for extended documentation.*
+  -->
+  **ExternalDocumentation 允许引用外部资源作为扩展文档。**
+
+  - **externalDocs.description** (string)
+
+  - **externalDocs.url** (string)
+
+- **format** (string)
+
+  <!--
+  format is an OpenAPI v3 format string. Unknown formats are ignored. The following formats are validated:
+
+  - bsonobjectid: a bson object ID, i.e. a 24 characters hex string - uri: an URI as parsed by Golang net/url.ParseRequestURI - email: an email address as parsed by Golang net/mail.ParseAddress - hostname: a valid representation for an Internet host name, as defined by RFC 1034, section 3.1 [RFC1034]. - ipv4: an IPv4 IP as parsed by Golang net.ParseIP - ipv6: an IPv6 IP as parsed by Golang net.ParseIP - cidr: a CIDR as parsed by Golang net.ParseCIDR - mac: a MAC address as parsed by Golang net.ParseMAC - uuid: an UUID that allows uppercase defined by the regex (?i)^[0-9a-f]{8}-?[0-9a-f]{4}-?[0-9a-f]{4}-?[0-9a-f]{4}-?[0-9a-f]{12}$ - uuid3: an UUID3 that allows uppercase defined by the regex (?i)^[0-9a-f]{8}-?[0-9a-f]{4}-?3[0-9a-f]{3}-?[0-9a-f]{4}-?[0-9a-f]{12}$ - uuid4: an UUID4 that allows uppercase defined by the regex (?i)^[0-9a-f]{8}-?[0-9a-f]{4}-?4[0-9a-f]{3}-?[89ab][0-9a-f]{3}-?[0-9a-f]{12}$ - uuid5: an UUID5 that allows uppercase defined by the regex (?i)^[0-9a-f]{8}-?[0-9a-f]{4}-?5[0-9a-f]{3}-?[89ab][0-9a-f]{3}-?[0-9a-f]{12}$ - isbn: an ISBN10 or ISBN13 number string like "0321751043" or "978-0321751041" - isbn10: an ISBN10 number string like "0321751043" - isbn13: an ISBN13 number string like "978-0321751041" - creditcard: a credit card number defined by the regex ^(?:4[0-9]{12}(?:[0-9]{3})?|5[1-5][0-9]{14}|6(?:011|5[0-9][0-9])[0-9]{12}|3[47][0-9]{13}|3(?:0[0-5]|[68][0-9])[0-9]{11}|(?:2131|1800|35\d{3})\d{11})$ with any non digit characters mixed in - ssn: a U.S. social security number following the regex ^\d{3}[- ]?\d{2}[- ]?\d{4}$ - hexcolor: an hexadecimal color code like "#FFFFFF: following the regex ^#?([0-9a-fA-F]{3}|[0-9a-fA-F]{6})$ - rgbcolor: an RGB color code like rgb like "rgb(255,255,2559" - byte: base64 encoded binary data - password: any kind of string - date: a date string like "2006-01-02" as defined by full-date in RFC3339 - duration: a duration string like "22 ns" as parsed by Golang time.ParseDuration or compatible with Scala duration format - datetime: a date time string like "2014-12-15T19:30:20.000Z" as defined by date-time in RFC3339.
+  -->
+  format 是 OpenAPI v3 格式字符串。未知格式将被忽略。以下格式会被验证合法性：
+
+  - bsonobjectid：一个 bson 对象的 ID，即一个 24 个字符的十六进制字符串
+  - uri：由 Go 语言 net/url.ParseRequestURI 解析得到的 URI
+  - email：由 Go 语言 net/mail.ParseAddress 解析得到的电子邮件地址
+  - hostname：互联网主机名的有效表示，由 RFC 1034 第 3.1 节 [RFC1034] 定义
+  - ipv4：由 Go 语言 net.ParseIP 解析得到的 IPv4 协议的 IP
+  - ipv6：由 Go 语言 net.ParseIP 解析得到的 IPv6 协议的 IP
+  - cidr: 由 Go 语言 net.ParseCIDR 解析得到的 CIDR
+  - mac：由 Go 语言 net.ParseMAC 解析得到的一个 MAC 地址
+  - uuid：UUID，允许大写字母，满足正则表达式 (?i)^[0-9a-f]{8}-?[0-9a-f]{4}-?[0-9a-f]{4}-?[0-9a-f]{4}-?[0-9a-f]{12}$
+  - uuid3：UUID3，允许大写字母，满足正则表达式 (?i)^[0-9a-f]{8}-?[0-9a-f]{4}-?3[0-9a-f]{3}-?[0-9a-f]{4}-?[0-9a-f]{12}$
+  - uuid4：UUID4，允许大写字母，满足正则表达式 (?i)^[0-9a-f]{8}-?[0-9a-f]{4}-?4[0-9a-f]{3}-?[89ab][0-9a-f]{3}-?[0-9a-f]{12}$
+  - uuid5：UUID5，允许大写字母，满足正则表达式 (?i)^[0-9a-f]{8}-?[0-9a-f]{4}-?5[0-9a-f]{3}-?[89ab][0-9a-f]{3}-?[0-9a-f]{12}$
+  - isbn：一个 ISBN10 或 ISBN13 数字字符串，如 "0321751043" 或 "978-0321751041"
+  - isbn10：一个 ISBN10 数字字符串，如 "0321751043"
+  - isbn13: 一个 ISBN13 号码字符串，如 "978-0321751041"
+  - creditcard：信用卡号码，满足正则表达式 ^(?:4[0-9]{12}(?:[0-9]{3})?|5[1-5][0-9]{14}|6(?:011|5[0-9][0-9])[0-9]{12}|3[47][0-9]{13}|3(?:0[0-5]|[68][0-9])[0-9]{11}|(?:2131|1800|35\d{3})\d{11})$，其中混合任意非数字字符
+  - ssn：美国社会安全号码，满足正则表达式 ^\d{3}[- ]?\d{2}[- ]?\d{4}$
+  - hexcolor：一个十六进制的颜色编码，如 "#FFFFFF"，满足正则表达式 ^#?([0-9a-fA-F]{3}|[0-9a-fA-F]{6})$
+  - rgbcolor：一个 RGB 颜色编码 例如 "rgb(255,255,255)"
+  - byte：base64 编码的二进制数据
+  - password: 任何类型的字符串
+  - date：类似 "2006-01-02" 的日期字符串，由 RFC3339 中的完整日期定义
+  - duration：由 Go 语言 time.ParseDuration 解析的持续时长字符串，如 "22 ns"，或与 Scala 持续时间格式兼容。
+  - datetime：一个日期时间字符串，如 "2014-12-15T19:30:20.000Z"，由 RFC3339 中的 date-time 定义。
+
+- **id** (string)
+
+- **items** (JSONSchemaPropsOrArray)
+
+  <a name="JSONSchemaPropsOrArray"></a>
+  <!--
+  *JSONSchemaPropsOrArray represents a value that can either be a JSONSchemaProps or an array of JSONSchemaProps. Mainly here for serialization purposes.*
+  -->
+  **JSONSchemaPropsOrArray 表示可以是 JSONSchemaProps 或 JSONSchemaProps 数组的值。这里目的主要用于序列化。**  
+
+- **maxItems** (int64)
+
+- **maxLength** (int64)
+
+- **maxProperties** (int64)
+
+- **maximum** (double)
+
+- **minItems** (int64)
+
+- **minLength** (int64)
+
+- **minProperties** (int64)
+
+- **minimum** (double)
+
+- **multipleOf** (double)
+
+- **not** (<a href="{{< ref "../extend-resources/custom-resource-definition-v1#JSONSchemaProps" >}}">JSONSchemaProps</a>)
+
+- **nullable** (boolean)
+
+- **oneOf** ([]<a href="{{< ref "../extend-resources/custom-resource-definition-v1#JSONSchemaProps" >}}">JSONSchemaProps</a>)
+
+- **pattern** (string)
+
+- **patternProperties** (map[string]<a href="{{< ref "../extend-resources/custom-resource-definition-v1#JSONSchemaProps" >}}">JSONSchemaProps</a>)
+
+- **properties** (map[string]<a href="{{< ref "../extend-resources/custom-resource-definition-v1#JSONSchemaProps" >}}">JSONSchemaProps</a>)
+
+- **required** ([]string)
+
+- **title** (string)
+
+- **type** (string)
+
+- **uniqueItems** (boolean)
+
+- **x-kubernetes-embedded-resource** (boolean)
+
+  <!--
+  x-kubernetes-embedded-resource defines that the value is an embedded Kubernetes runtime.Object, with TypeMeta and ObjectMeta. The type must be object. It is allowed to further restrict the embedded object. kind, apiVersion and metadata are validated automatically. x-kubernetes-preserve-unknown-fields is allowed to be true, but does not have to be if the object is fully specified (up to kind, apiVersion, metadata).
+  -->
+  x-kubernetes-embedded-resource 定义该值是一个嵌入式 Kubernetes runtime.Object，具有 TypeMeta 和 ObjectMeta。
+  类型必须是对象。允许进一步限制嵌入对象。会自动验证 kind、apiVersion 和 metadata 等字段值。
+  x-kubernetes-preserve-unknown-fields 允许为 true，但如果对象已完全指定
+  （除 kind、apiVersion、metadata 之外），则不必为 true。
+
+- **x-kubernetes-int-or-string** (boolean)
+
+  <!--
+  x-kubernetes-int-or-string specifies that this value is either an integer or a string. If this is true, an empty type is allowed and type as child of anyOf is permitted if following one of the following patterns:
+  -->
+  x-kubernetes-int-or-string 指定此值是整数或字符串。如果为 true，则允许使用空类型，
+  并且如果遵循以下模式之一，则允许作为 anyOf 的子类型：
+
+  1) anyOf:
+     - type: integer
+     - type: string
+  2) allOf:
+     - anyOf:
+       - type: integer
+       - type: string
+     <!--
+     - ... zero or more
+     -->
+
+     - （可以有选择地包含其他类型）
+
+- **x-kubernetes-list-map-keys** ([]string)
+
+  <!--
+  x-kubernetes-list-map-keys annotates an array with the x-kubernetes-list-type `map` by specifying the keys used as the index of the map.
+  
+  This tag MUST only be used on lists that have the "x-kubernetes-list-type" extension set to "map". Also, the values specified for this attribute must be a scalar typed field of the child structure (no nesting is supported).
+  
+  The properties specified must either be required or have a default value, to ensure those properties are present for all list items.
+  -->
+  X-kubernetes-list-map-keys 通过指定用作 map 索引的键来使用 x-kubernetes-list-type `map` 注解数组。
+
+  这个标签必须只用于 "x-kubernetes-list-type" 扩展设置为 "map" 的列表。
+  而且，为这个属性指定的值必须是子结构的标量类型的字段（不支持嵌套）。
+
+  指定的属性必须是必需的或具有默认值，以确保所有列表项都存在这些属性。
+
+- **x-kubernetes-list-type** (string)
+
+  <!--
+  x-kubernetes-list-type annotates an array to further describe its topology. This extension must only be used on lists and may have 3 possible values:
+  -->
+  x-kubernetes-list-type 注解一个数组以进一步描述其拓扑。此扩展名只能用于列表，并且可能有 3 个可能的值：  
+
+  <!--
+  1) `atomic`: the list is treated as a single entity, like a scalar.
+       Atomic lists will be entirely replaced when updated. This extension
+       may be used on any type of list (struct, scalar, ...).
+  2) `set`:
+       Sets are lists that must not have multiple items with the same value. Each
+       value must be a scalar, an object with x-kubernetes-map-type `atomic` or an
+       array with x-kubernetes-list-type `atomic`.
+  3) `map`:
+       These lists are like maps in that their elements have a non-index key
+       used to identify them. Order is preserved upon merge. The map tag
+       must only be used on a list with elements of type object.
+  Defaults to atomic for arrays.
+  -->
+
+  1. `atomic`：
+        列表被视为单个实体，就像标量一样。原子列表在更新时将被完全替换。这个扩展可以用于任何类型的列表（结构，标量，…）。
+  2. `set`：
+        set 是不能有多个具有相同值的列表。每个值必须是标量、具有 x-kubernetes-map-type
+        `atomic` 的对象或具有 x-kubernetes-list-type `atomic` 的数组。
+  3. `map`：
+     这些列表类似于映射表，因为它们的元素具有用于标识它们的非索引键。合并时保留顺序。
+     map 标记只能用于元数类型为 object 的列表。
+  数组默认为原子数组。
+
+- **x-kubernetes-map-type** (string)
+
+  <!--
+  x-kubernetes-map-type annotates an object to further describe its topology. This extension must only be used when type is object and may have 2 possible values:
+  -->
+  x-kubernetes-map-type 注解一个对象以进一步描述其拓扑。此扩展只能在 type 为 object 时使用，并且可能有 2 个可能的值：  
+
+  <!--
+  1) `granular`:
+       These maps are actual maps (key-value pairs) and each fields are independent
+       from each other (they can each be manipulated by separate actors). This is
+       the default behaviour for all maps.
+  2) `atomic`: the list is treated as a single entity, like a scalar.
+       Atomic maps will be entirely replaced when updated.
+  -->
+
+  1) `granular`：
+        这些 map 是真实的映射（键值对），每个字段都是相互独立的（它们都可以由不同的角色来操作）。
+        这是所有 map 的默认行为。
+  2) `atomic`：map 被视为单个实体，就像标量一样。原子 map 更新后将被完全替换。
+
+- **x-kubernetes-preserve-unknown-fields** (boolean)
+
+  <!--
+  x-kubernetes-preserve-unknown-fields stops the API server decoding step from pruning fields which are not specified in the validation schema. This affects fields recursively, but switches back to normal pruning behaviour if nested properties or additionalProperties are specified in the schema. This can either be true or undefined. False is forbidden.
+  -->
+
+  x-kubernetes-preserve-unknown-fields 针对未在验证模式中指定的字段，禁止 API 服务器的解码步骤剪除这些字段。
+  这一设置对字段的影响是递归的，但在模式中指定了嵌套 properties 或 additionalProperties 时，会切换回正常的字段剪除行为。
+  该值可为 true 或 undefined，不能为 false。
+
+- **x-kubernetes-validations** ([]ValidationRule)
+
+  <!--
+  *Patch strategy: merge on key `rule`*
+  
+  *Map: unique values on key rule will be kept during a merge*
+  
+  x-kubernetes-validations describes a list of validation rules written in the CEL expression language. This field is an alpha-level. Using this field requires the feature gate `CustomResourceValidationExpressions` to be enabled.
+  -->
+
+  **补丁策略：基于键 `rule` 合并**
+
+  **Map：合并时将保留 rule 键的唯一值**
+
+  x-kubernetes-validations 描述了用 CEL 表达式语言编写的验证规则列表。此字段是 Alpha 级别。
+  使用此字段需要启用 `CustomResourceValidationExpressions` 特性门控。
+
+  <a name="ValidationRule"></a>
+  <!--
+  *ValidationRule describes a validation rule written in the CEL expression language.*
+
+  - **x-kubernetes-validations.rule** (string), required
+  -->
+
+  **ValidationRule 描述用 CEL 表达式语言编写的验证规则。**
+
+  - **x-kubernetes-validations.rule** (string)，必需
+
+    <!--
+    Rule represents the expression which will be evaluated by CEL. ref: https://github.com/google/cel-spec The Rule is scoped to the location of the x-kubernetes-validations extension in the schema. The `self` variable in the CEL expression is bound to the scoped value. Example: - Rule scoped to the root of a resource with a status subresource: {"rule": "self.status.actual \<= self.spec.maxDesired"}
+    -->
+
+    rule 表示将由 CEL 评估的表达式。参考： https://github.com/google/cel-spec。
+    rule 的作用域为模式中的 x-kubernetes-validation 扩展所在的位置。CEL 表达式中的 `self` 与作用域值绑定。
+    例子：rule 的作用域是一个具有状态子资源的资源根：{"rule": "self.status.actual \<= self.spec.maxDesired"}。
+
+    <!--
+    If the Rule is scoped to an object with properties, the accessible properties of the object are field selectable via `self.field` and field presence can be checked via `has(self.field)`. Null valued fields are treated as absent fields in CEL expressions. If the Rule is scoped to an object with additionalProperties (i.e. a map) the value of the map are accessible via `self[mapKey]`, map containment can be checked via `mapKey in self` and all entries of the map are accessible via CEL macros and functions such as `self.all(...)`. If the Rule is scoped to an array, the elements of the array are accessible via `self[i]` and also by macros and functions. If the Rule is scoped to a scalar, `self` is bound to the scalar value. Examples: - Rule scoped to a map of objects: {"rule": "self.components['Widget'].priority \< 10"} - Rule scoped to a list of integers: {"rule": "self.values.all(value, value >= 0 && value \< 100)"} - Rule scoped to a string value: {"rule": "self.startsWith('kube')"}
+    -->
+
+    如果 rule 的作用域是一个带有属性的对象，那么该对象的可访问属性是通过 `self` 进行字段选择的，
+    并且可以通过 `has(self.field)` 来检查字段是否存在。在 CEL 表达式中，Null 字段被视为不存在的字段。
+    如果该 rule 的作用域是一个带有附加属性的对象（例如一个 map），那么该 map 的值可以通过
+    `self[mapKey]`来访问，map 是否包含某主键可以通过 `mapKey in self` 来检查。
+    map 中的所有条目都可以通过 CEL 宏和函数（如 `self.all(...)`）访问。
+    如果 rule 的作用域是一个数组，数组的元素可以通过 `self[i]` 访问，也可以通过宏和函数访问。
+    如果 rule 的作用域为标量，`self` 绑定到标量值。举例：
+
+    - rule 作用域为对象映射：{"rule": "self.components['Widget'].priority \< 10"}
+    - rule 作用域为整数列表：{"rule": "self.values.all(value, value >= 0 && value \< 100)"}
+    - rule 作用域为字符串值：{"rule": "self.startsWith('kube')"}
+
+    <!--
+    The `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the object and from any x-kubernetes-embedded-resource annotated objects. No other metadata properties are accessible.
+    -->
+
+    `apiVersion`, `kind`, `metadata.name` 和 `metadata.generateName` 总是可以从对象的根和任何带
+    x-kubernetes-embedded-resource 注解的对象访问。其他元数据属性都无法访问。
+
+    <!--
+    Unknown data preserved in custom resources via x-kubernetes-preserve-unknown-fields is not accessible in CEL expressions. This includes: - Unknown field values that are preserved by object schemas with x-kubernetes-preserve-unknown-fields. - Object properties where the property schema is of an "unknown type". An "unknown type" is recursively defined as:
+      - A schema with no type and x-kubernetes-preserve-unknown-fields set to true
+      - An array where the items schema is of an "unknown type"
+      - An object where the additionalProperties schema is of an "unknown type"
+    -->
+
+    在 CEL 表达式中无法访问通过 x-kubernetes-preserve-unknown-fields 保存在自定义资源中的未知数据。
+    这包括：
+
+    - 由包含 x-kubernetes-preserve-unknown-fields 的对象模式所保留的未知字段值；
+    - 属性模式为 "未知类型" 的对象属性。"未知类型" 递归定义为：
+
+      - 没有设置 type 但 x-kubernetes-preserve-unknown-fields 设置为 true 的模式。
+      - 条目模式为"未知类型"的数组。
+      - additionalProperties 模式为"未知类型"的对象。
+
+    <!--
+    Only property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible. Accessible property names are escaped according to the following rules when accessed in the expression: - '__' escapes to '__underscores__' - '.' escapes to '__dot__' - '-' escapes to '__dash__' - '/' escapes to '__slash__' - Property names that exactly match a CEL RESERVED keyword escape to '__{keyword}__'. The keywords are:
+        "true", "false", "null", "in", "as", "break", "const", "continue", "else", "for", "function", "if",
+        "import", "let", "loop", "package", "namespace", "return".
+    Examples:
+      - Rule accessing a property named "namespace": {"rule": "self.__namespace__ > 0"}
+      - Rule accessing a property named "x-prop": {"rule": "self.x__dash__prop > 0"}
+      - Rule accessing a property named "redact__d": {"rule": "self.redact__underscores__d > 0"}
+    -->
+
+    只有名称符合正则表达式 `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*`  的属性才可被访问。
+    在表达式中访问属性时，可访问的属性名称根据以下规则进行转义：
+
+    - '__' 转义为 '__underscores__'
+    - '.' 转义为 '__dot__'
+    - '-' 转义为 '__dash__'
+    - '/' 转义为 '__slash__'
+    - 恰好匹配 CEL 保留关键字的属性名称转义为 '__{keyword}__' 。这里的关键字具体包括：
+        "true"，"false"，"null"，"in"，"as"，"break"，"const"，"continue"，"else"，"for"，"function"，"if"，
+        "import"，"let"，"loop"，"package"，"namespace"，"return"。
+    举例：
+
+      - 规则访问名为 "namespace" 的属性：`{"rule": "self.__namespace__ > 0"}`
+      - 规则访问名为 "x-prop" 的属性：`{"rule": "self.x__dash__prop > 0"}`
+      - 规则访问名为 "redact__d" 的属性：`{"rule": "self.redact__underscores__d > 0"}`
+
+    <!--
+    Equality on arrays with x-kubernetes-list-type of 'set' or 'map' ignores element order, i.e. [1, 2] == [2, 1]. Concatenation on arrays with x-kubernetes-list-type use the semantics of the list type:
+    - 'set': `X + Y` performs a union where the array positions of all elements in `X` are preserved and
+      non-intersecting elements in `Y` are appended, retaining their partial order.
+    - 'map': `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values
+      are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with
+      non-intersecting keys are appended, retaining their partial order.
+    -->
+
+    对 x-kubernetes-list-type 为 'set' 或 'map' 的数组进行比较时忽略元素顺序，如：[1, 2] == [2, 1]。
+    使用 x-kubernetes-list-type 对数组进行串接使用下列类型的语义：
+
+    - 'set'：`X + Y` 执行合并，其中 `X` 保留所有元素的数组位置，并附加不相交的元素 `Y`，保留其局部顺序。
+    - 'map'：`X + Y` 执行合并，保留 `X` 中所有键的数组位置，但当 `X` 和 `Y` 的键集相交时，会被 `Y` 中的值覆盖。
+      添加 `Y` 中具有不相交键的元素，保持其局顺序。
+
+  - **x-kubernetes-validations.message** (string)
+
+    <!--
+    Message represents the message displayed when validation fails. The message is required if the Rule contains line breaks. The message must not contain line breaks. If unset, the message is "failed rule: {Rule}". e.g. "must be a URL with the host matching spec.host"
+    -->
+
+    message 表示验证失败时显示的消息。如果规则包含换行符，则需要该消息。消息不能包含换行符。
+    如果未设置，则消息为 "failed rule: {Rule}"，如："must be a URL with the host matching spec.host"
+
+## CustomResourceDefinitionStatus {#CustomResourceDefinitionStatus}
+<!--
+CustomResourceDefinitionStatus indicates the state of the CustomResourceDefinition
+-->
+CustomResourceDefinitionStatus 表示 CustomResourceDefinition 的状态
+
+<hr>
+
+- **acceptedNames** (CustomResourceDefinitionNames)
+
+  <!--
+  acceptedNames are the names that are actually being used to serve discovery. They may be different than the names in spec.
+  -->
+
+  acceptedNames 是实际用于服务发现的名称。它们可能与规约（spec）中的名称不同。
+
+  <a name="CustomResourceDefinitionNames"></a>
+  <!--
+  *CustomResourceDefinitionNames indicates the names to serve this CustomResourceDefinition*
+
+  - **acceptedNames.kind** (string), required
+
+    kind is the serialized kind of the resource. It is normally CamelCase and singular. Custom resource instances will use this value as the `kind` attribute in API calls.
+  -->
+
+  **CustomResourceDefinitionNames 表示提供此 CustomResourceDefinition 资源的名称**
+
+  - **acceptedNames.kind** (string)，必需
+
+    kind 是资源的序列化类型。它通常是驼峰命名的单数形式。自定义资源实例将使用此值作为 API 调用中的 `kind` 属性。
+
+  <!--
+  - **acceptedNames.plural** (string), required
+
+    plural is the plural name of the resource to serve. The custom resources are served under `/apis/\<group>/\<version>/.../\<plural>`. Must match the name of the CustomResourceDefinition (in the form `\<names.plural>.\<group>`). Must be all lowercase.
+  -->
+
+  - **acceptedNames.plural** (string), required
+
+    plural 是所提供的资源的复数名称，自定义资源在 `/apis/<group>/<version>/.../<plural>` 下提供。
+    必须与 CustomResourceDefinition 的名称匹配（格式为 `<names.plural>.<group>`）。必须全部小写。
+
+  - **acceptedNames.categories** ([]string)
+
+    <!--
+    categories is a list of grouped resources this custom resource belongs to (e.g. 'all'). This is published in API discovery documents, and used by clients to support invocations like `kubectl get all`.
+    -->
+
+    categories 是此自定义资源所属的分组资源列表（例如 'all'）。
+    它在 API 发现文档中发布，并被客户端用于支持像 `kubectl get all` 这样的调用。
+
+  - **acceptedNames.listKind** (string)
+
+    <!--
+    listKind is the serialized kind of the list for this resource. Defaults to "`kind`List".
+    -->
+
+    listKind 是此资源列表的序列化类型。默认为 "`<kind>List`"。  
+
+  - **acceptedNames.shortNames** ([]string)
+
+    <!--
+    shortNames are short names for the resource, exposed in API discovery documents, and used by clients to support invocations like `kubectl get \<shortname>`. It must be all lowercase.
+    -->
+
+    shortNames 是资源的短名称，在 API 发现文档中公开，并支持客户端调用，如 `kubectl get <shortname>`。必须全部小写。  
+
+  - **acceptedNames.singular** (string)
+
+    <!--
+    singular is the singular name of the resource. It must be all lowercase. Defaults to lowercased `kind`.
+    -->
+
+    singular 是资源的单数名称。必须全部小写。默认为小写形式的 `kind`。
+
+- **conditions** ([]CustomResourceDefinitionCondition)
+
+  <!--
+  *Map: unique values on key type will be kept during a merge*
+  
+  conditions indicate state for particular aspects of a CustomResourceDefinition
+  -->
+
+  **Map：合并时将保留 type 键的唯一值**
+
+  conditions 表示 CustomResourceDefinition 特定方面的状态
+
+  <a name="CustomResourceDefinitionCondition"></a>
+  <!--
+  *CustomResourceDefinitionCondition contains details for the current condition of this pod.*
+
+  - **conditions.status** (string), required
+
+    status is the status of the condition. Can be True, False, Unknown.
+  -->
+
+  **CustomResourceDefinitionCondition 包含此 Pod 当前状况的详细信息。**
+
+  - **conditions.status** (string)，必需
+
+    status 表示状况（Condition）的状态，取值为 True、False 或 Unknown 之一。
+
+  <!--
+  - **conditions.type** (string), required
+
+    type is the type of the condition. Types include Established, NamesAccepted and Terminating.
+  -->
+
+  - **conditions.type** (string)，必需
+
+    type 是状况的类型。类型包括：Established、NamesAccepted 和 Terminating。
+
+  - **conditions.lastTransitionTime** (Time)
+
+    <!--
+    lastTransitionTime last time the condition transitioned from one status to another.
+    -->
+
+    lastTransitionTime 是上一次发生状况状态转换的时间。
+
+    <a name="Time"></a>
+    <!--
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+    -->
+
+    **Time 是对 time.Time 的封装。Time 支持对 YAML 和 JSON 进行正确封包。为 time 包的许多函数方法提供了封装器。**
+
+  - **conditions.message** (string)
+
+    <!--
+    message is a human-readable message indicating details about last transition.
+    -->
+
+    message 是有关上次转换的详细可读信息。
+
+  - **conditions.reason** (string)
+
+    <!--
+    reason is a unique, one-word, CamelCase reason for the condition's last transition.
+    -->
+
+    reason 表述状况上次转换原因的、驼峰格式命名的、唯一的一个词。
+
+- **storedVersions** ([]string)
+
+  <!--
+  storedVersions lists all versions of CustomResources that were ever persisted. Tracking these versions allows a migration path for stored versions in etcd. The field is mutable so a migration controller can finish a migration to another version (ensuring no old objects are left in storage), and then remove the rest of the versions from this list. Versions may not be removed from `spec.versions` while they exist in this list.
+  -->
+
+  storedVersions 列出了曾经被持久化的所有 CustomResources 版本。跟踪这些版本可以为 etcd 中的存储版本提供迁移路径。
+  该字段是可变的，因此迁移控制器可以完成到另一个版本的迁移（确保存储中没有遗留旧对象），然后从该列表中删除其余版本。
+  当版本在此列表中时，则不能从 `spec.versions` 中删除。
+
+## CustomResourceDefinitionList {#CustomResourceDefinitionList}
+<!--
+CustomResourceDefinitionList is a list of CustomResourceDefinition objects.
+-->
+CustomResourceDefinitionList 是 CustomResourceDefinition 对象的列表。
+
+<hr>
+
+<!--
+- **items** ([]<a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinition" >}}">CustomResourceDefinition</a>), required
+
+  items list individual CustomResourceDefinition objects
+-->
+
+- **items** ([]<a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinition" >}}">CustomResourceDefinition</a>)，必需
+
+  items 列出单个 CustomResourceDefinition 对象
+
+- **apiVersion** (string)
+
+  <!--
+  APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
+  -->
+
+  apiVersion 定义对象表示的版本化模式。服务器应将已识别的模式转换为最新的内部值，并可能拒绝未识别的值。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
+
+- **kind** (string)
+
+  <!--
+  Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+  -->
+
+  kind 是一个字符串值，表示该对象所表示的 REST 资源。服务器可以从客户端提交请求的端点推断出 REST 资源。不能被更新。驼峰命名。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  <!--
+  Standard object's metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+
+  标准的对象元数据，更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+## Operations {#Operations}
+
+<hr>
+
+<!--
+### `get` read the specified CustomResourceDefinition
+
+#### HTTP Request
+-->
+### `get` 读取指定的 CustomResourceDefinition
+
+#### HTTP 请求
+
+GET /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the CustomResourceDefinition
+-->
+#### 参数
+
+- **name** （**路径参数**）：string，必需
+
+  CustomResourceDefinition 的名称
+
+- **pretty** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinition" >}}">CustomResourceDefinition</a>): OK
+
+401: Unauthorized
+
+<!--
+### `get` read status of the specified CustomResourceDefinition
+
+#### HTTP Request
+-->
+### `get` 读取指定 CustomResourceDefinition 的状态
+
+#### HTTP 请求
+
+GET /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}/status
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the CustomResourceDefinition
+-->
+#### 参数
+
+- **name** （**路径参数**）：string，必需
+
+  CustomResourceDefinition 的名称
+
+- **pretty** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinition" >}}">CustomResourceDefinition</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind CustomResourceDefinition
+
+#### HTTP Request
+-->
+### `list` 列出或观察 CustomResourceDefinition 类型的对象
+
+#### HTTP 请求
+
+GET /apis/apiextensions.k8s.io/v1/customresourcedefinitions
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+- **allowWatchBookmarks** <!--(*in query*):-->（**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** <!--(*in query*):-->（**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** <!--(*in query*):-->（**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** <!--(*in query*):-->（**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinitionList" >}}">CustomResourceDefinitionList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a CustomResourceDefinition
+
+#### HTTP Request
+-->
+### `create` 创建一个 CustomResourceDefinition
+
+#### HTTP 请求
+
+POST /apis/apiextensions.k8s.io/v1/customresourcedefinitions
+
+<!--
+#### Parameters
+
+- **body**: <a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinition" >}}">CustomResourceDefinition</a>, required
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinition" >}}">CustomResourceDefinition</a>，必需
+
+- **dryRun** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinition" >}}">CustomResourceDefinition</a>): OK
+
+201 (<a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinition" >}}">CustomResourceDefinition</a>): Created
+
+202 (<a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinition" >}}">CustomResourceDefinition</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified CustomResourceDefinition
+
+#### HTTP Request
+-->
+### `update` 替换指定的 CustomResourceDefinition
+
+#### HTTP 请求
+
+PUT /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the CustomResourceDefinition
+
+- **body**: <a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinition" >}}">CustomResourceDefinition</a>, required
+-->
+#### 参数
+
+- **name** （**路径参数**）：string，必需
+
+  CustomResourceDefinition 的名称
+
+- **body**: <a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinition" >}}">CustomResourceDefinition</a>，必需
+
+- **dryRun** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinition" >}}">CustomResourceDefinition</a>): OK
+
+201 (<a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinition" >}}">CustomResourceDefinition</a>): Created
+
+401: Unauthorized
+
+<!--
+### `update` replace status of the specified CustomResourceDefinition
+
+#### HTTP Request
+-->
+### `update` 替换指定 CustomResourceDefinition 的状态
+
+#### HTTP 请求
+
+PUT /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}/status
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the CustomResourceDefinition
+
+- **body**: <a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinition" >}}">CustomResourceDefinition</a>, required
+-->
+#### 参数
+
+- **name** （**路径参数**）：string，必需
+
+  CustomResourceDefinition 的名称
+
+- **body**: <a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinition" >}}">CustomResourceDefinition</a>，必需
+
+- **dryRun** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinition" >}}">CustomResourceDefinition</a>): OK
+
+201 (<a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinition" >}}">CustomResourceDefinition</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified CustomResourceDefinition
+
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 CustomResourceDefinition
+
+#### HTTP 请求
+
+PATCH /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the CustomResourceDefinition
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+#### 参数
+
+- **name** （**路径参数**）：string，必需
+
+  CustomResourceDefinition 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** <!--(*in query*):-->（**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty**<!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinition" >}}">CustomResourceDefinition</a>): OK
+
+201 (<a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinition" >}}">CustomResourceDefinition</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update status of the specified CustomResourceDefinition
+
+#### HTTP Request
+-->
+### `patch` 部分更新指定 CustomResourceDefinition 的状态
+
+#### HTTP 请求
+
+PATCH /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}/status
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the CustomResourceDefinition
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+#### 参数
+
+- **name** （**路径参数**）：string，必需
+
+  CustomResourceDefinition 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** <!--(*in query*):-->（**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinition" >}}">CustomResourceDefinition</a>): OK
+
+201 (<a href="{{< ref "../extend-resources/custom-resource-definition-v1#CustomResourceDefinition" >}}">CustomResourceDefinition</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a CustomResourceDefinition
+
+#### HTTP Request
+-->
+### `delete` 删除一个 CustomResourceDefinition
+
+#### HTTP 请求
+
+DELETE /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the CustomResourceDefinition
+-->
+#### 参数
+
+- **name** （**路径参数**）：string，必需
+  
+  CustomResourceDefinition 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** <!--(*in query*):-->（**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of CustomResourceDefinition
+
+#### HTTP Request
+-->
+### `deletecollection` 删除 CustomResourceDefinition 的集合
+
+#### HTTP 请求
+
+DELETE /apis/apiextensions.k8s.io/v1/customresourcedefinitions
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** <!--(*in query*):-->（**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** <!--(*in query*):-->（**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** <!--(*in query*):-->（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** <!--(*in query*):-->（**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/extend-resources/mutating-webhook-configuration-v1.md b/content/zh-cn/docs/reference/kubernetes-api/extend-resources/mutating-webhook-configuration-v1.md
new file mode 100644
index 0000000000..fc66eac31a
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/extend-resources/mutating-webhook-configuration-v1.md
@@ -0,0 +1,1135 @@
+---
+api_metadata:
+apiVersion: "admissionregistration.k8s.io/v1"
+import: "k8s.io/api/admissionregistration/v1"
+kind: "MutatingWebhookConfiguration"
+content_type: "api_reference"
+description: "MutatingWebhookConfiguration 描述准入 Webhook 的配置，该 Webhook 可在更改对象的情况下接受或拒绝对象请求"
+title: "MutatingWebhookConfiguration"
+weight: 2
+---
+
+<!-- 
+api_metadata:
+  apiVersion: "admissionregistration.k8s.io/v1"
+  import: "k8s.io/api/admissionregistration/v1"
+  kind: "MutatingWebhookConfiguration"
+content_type: "api_reference"
+description: "MutatingWebhookConfiguration describes the configuration of and admission webhook that accept or reject and object without changing it."
+title: "MutatingWebhookConfiguration"
+weight: 3
+-->
+
+`apiVersion: admissionregistration.k8s.io/v1`
+
+`import "k8s.io/api/admissionregistration/v1"`
+
+## MutatingWebhookConfiguration {#MutatingWebhookConfiguration}
+
+<!-- 
+MutatingWebhookConfiguration describes the configuration of and admission webhook that accept or reject and may change the object.
+-->
+
+MutatingWebhookConfiguration 描述准入 Webhook 的配置，该 Webhook 可接受或拒绝对象请求，并且可能变更对象。
+
+<hr>
+
+- **apiVersion**: admissionregistration.k8s.io/v1
+
+- **kind**: MutatingWebhookConfiguration
+
+<!-- 
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  Standard object metadata; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata. 
+-->
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  标准的对象元数据，更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata。
+
+<!-- 
+- **webhooks** ([]MutatingWebhook)
+
+  *Patch strategy: merge on key `name`*
+  
+  Webhooks is a list of webhooks and the affected resources and operations.
+
+  <a name="MutatingWebhook"></a>
+  *MutatingWebhook describes an admission webhook and the resources and operations it applies to.* 
+-->
+
+- **webhooks** ([]MutatingWebhook)
+
+  **补丁策略：根据 `name` 键执行合并操作**
+
+  webhooks 是 Webhook 及其所影响的资源和操作的列表。
+
+  <a name="MutatingWebhook"></a>
+  **MutatingWebhook 描述了一个准入 Webhook 及其适用的资源和操作。**
+
+  <!-- 
+  - **webhooks.admissionReviewVersions** ([]string), required
+
+    AdmissionReviewVersions is an ordered list of preferred `AdmissionReview` versions the Webhook expects. API server will try to use first version in the list which it supports. If none of the versions specified in this list supported by API server, validation will fail for this object. If a persisted webhook configuration specifies allowed versions and does not include any versions known to the API Server, calls to the webhook will fail and be subject to the failure policy. 
+  -->
+
+  - **webhooks.admissionReviewVersions** ([]string), 必需
+
+    admissionReviewVersions 是 Webhook 期望的 `AdmissionReview` 版本的优选顺序列表。
+    API 服务器将尝试使用它所支持的版本列表中的第一个版本。如果 API 服务器不支持此列表中设置的任何版本，则此对象将验证失败。
+    如果持久化的 Webhook 配置指定了所允许的版本，但其中不包括 API 服务器所知道的任何版本，
+    则对 Webhook 的调用将失败并根据失败策略进行处理。
+
+  <!-- 
+  - **webhooks.clientConfig** (WebhookClientConfig), required
+
+    ClientConfig defines how to communicate with the hook. Required
+
+    <a name="WebhookClientConfig"></a>
+    *WebhookClientConfig contains the information to make a TLS connection with the webhook* 
+  -->
+
+  - **webhooks.clientConfig** (WebhookClientConfig), 必需
+
+    clientConfig 定义了如何与 Webhook 通信。必需。
+
+    <a name="WebhookClientConfig"></a>
+    **WebhookClientConfig 包含与 Webhook 建立 TLS 连接的信息**
+
+      <!-- 
+      - **webhooks.clientConfig.caBundle** ([]byte)
+
+        `caBundle` is a PEM encoded CA bundle which will be used to validate the webhook's server certificate. If unspecified, system trust roots on the apiserver are used. 
+      -->
+
+    - **webhooks.clientConfig.caBundle** ([]byte)
+
+      `caBundle` 是一个 PEM 编码的 CA 包，将用于验证 Webhook 的服务证书。如果未指定，则使用 apiserver 上的系统信任根。
+
+    <!-- 
+    - **webhooks.clientConfig.service** (ServiceReference)
+
+      `service` is a reference to the service for this webhook. Either `service` or `url` must be specified.
+      
+      If the webhook is running within the cluster, then you should use `service`.
+
+      <a name="ServiceReference"></a>
+      *ServiceReference holds a reference to Service.legacy.k8s.io* 
+    -->
+
+    - **webhooks.clientConfig.service** (ServiceReference)
+
+      `service` 是对此 Webhook 的服务的引用。必须指定 `service` 或 `url` 之一。
+
+      如果 Webhook 在集群中运行，那么你应该使用 `service`。
+
+      <a name="ServiceReference"></a>
+      **ServiceReference 包含对 Service.legacy.k8s.io 的引用**
+
+        <!-- 
+        - **webhooks.clientConfig.service.name** (string), required
+
+          `name` is the name of the service. Required 
+        -->
+
+      - **webhooks.clientConfig.service.name** (string), 必需
+
+        `name` 是服务的名称。必需。
+
+      <!-- 
+      - **webhooks.clientConfig.service.namespace** (string), required
+
+        `namespace` is the namespace of the service. Required 
+      -->
+
+      - **webhooks.clientConfig.service.namespace** (string), 必需
+
+        `namespace` 是服务的命名空间。必需。
+
+      <!-- 
+      - **webhooks.clientConfig.service.path** (string)
+
+        `path` is an optional URL path which will be sent in any request to this service. 
+      -->
+
+      - **webhooks.clientConfig.service.path** (string)
+
+        `path` 是一个可选的 URL 路径，在针对此服务的所有请求中都会发送此路径。
+
+      <!-- 
+      - **webhooks.clientConfig.service.port** (int32)
+
+        If specified, the port on the service that hosting webhook. Default to 443 for backward compatibility. `port` should be a valid port number (1-65535, inclusive). 
+      -->
+
+      - **webhooks.clientConfig.service.port** (int32)
+
+        如果指定了，则为托管 Webhook 的服务上的端口。默认为 443 以实现向后兼容。
+        `port` 应该是一个有效的端口号（包括 1-65535）。
+
+    <!-- 
+    - **webhooks.clientConfig.url** (string)
+
+      `url` gives the location of the webhook, in standard URL form (`scheme://host:port/path`). Exactly one of `url` or `service` must be specified.
+      
+      The `host` should not refer to a service running in the cluster; use the `service` field instead. The host might be resolved via external DNS in some apiservers (e.g., `kube-apiserver` cannot resolve in-cluster DNS as that would be a layering violation). `host` may also be an IP address.
+      
+      Please note that using `localhost` or `127.0.0.1` as a `host` is risky unless you take great care to run this webhook on all hosts which run an apiserver which might need to make calls to this webhook. Such installs are likely to be non-portable, i.e., not easy to turn up in a new cluster.
+      
+      The scheme must be "https"; the URL must begin with "https://".
+      
+      A path is optional, and if present may be any string permissible in a URL. You may use the path to pass an arbitrary string to the webhook, for example, a cluster identifier.
+      
+      Attempting to use a user or basic auth e.g. "user:password@" is not allowed. Fragments ("#...") and query parameters ("?...") are not allowed, either. 
+    -->
+
+    - **webhooks.clientConfig.url** (string)
+
+      `url` 以标准 URL 形式（`scheme://host:port/path`）给出了 Webhook 的位置。必须指定 `url` 或 `service` 中的一个。
+
+      `host` 不能用来引用集群中运行的服务；这种情况应改用 `service` 字段。在某些 API 服务器上，可能会通过外部 DNS 解析 `host` 值。
+      （例如，`kube-apiserver` 无法解析集群内 DNS，因为这会违反分层原理）。`host` 也可以是 IP 地址。
+
+      请注意，使用 `localhost` 或 `127.0.0.1` 作为 `host` 是有风险的，除非你非常小心地在运行 apiserver 的所有主机上运行此 Webhook，
+      而这些 API 服务器可能需要调用此 Webhook。此类部署可能是不可移植的，即不容易在新集群中重复安装。
+
+      该方案必须是 “https”；URL 必须以 “https://” 开头。
+
+      路径是可选的，如果存在，可以是 URL 中允许的任何字符串。你可以使用路径将任意字符串传递给 Webhook，例如集群标识符。
+
+      不允许使用用户或基本身份验证，例如不允许使用 “user:password@”。
+      不允许使用片段（“#...”）和查询参数（“?...”）。
+
+  <!-- 
+  - **webhooks.name** (string), required
+
+    The name of the admission webhook. Name should be fully qualified, e.g., imagepolicy.kubernetes.io, where "imagepolicy" is the name of the webhook, and kubernetes.io is the name of the organization. Required. 
+  -->
+
+  - **webhooks.name** (string), 必需
+
+    准入 Webhook 的名称。应该是完全限定的名称，例如 imagepolicy.kubernetes.io，其中 “imagepolicy” 是 Webhook 的名称，
+    kubernetes.io 是组织的名称。必需。
+
+  <!-- 
+  - **webhooks.sideEffects** (string), required
+
+    SideEffects states whether this webhook has side effects. Acceptable values are: None, NoneOnDryRun (webhooks created via v1beta1 may also specify Some or Unknown). Webhooks with side effects MUST implement a reconciliation system, since a request may be rejected by a future step in the admission chain and the side effects therefore need to be undone. Requests with the dryRun attribute will be auto-rejected if they match a webhook with sideEffects == Unknown or Some. 
+  -->
+
+  - **webhooks.sideEffects** (string), 必需
+
+    sideEffects 说明此 Webhook 是否有副作用。可接受的值为：None、NoneOnDryRun（通过 v1beta1 创建的 Webhook 也可以指定 Some 或 Unknown）。
+    具有副作用的 Webhook 必须实现协调系统，因为请求可能会被准入链中的未来步骤拒绝，因此需要能够撤消副作用。
+    如果请求与带有 sideEffects == Unknown 或 Some 的 Webhook 匹配，则带有 dryRun 属性的请求将被自动拒绝。
+
+  <!-- 
+  - **webhooks.failurePolicy** (string)
+
+    FailurePolicy defines how unrecognized errors from the admission endpoint are handled - allowed values are Ignore or Fail. Defaults to Fail. 
+  -->
+
+  - **webhooks.failurePolicy** (string)
+
+    failurePolicy 定义如何处理来自准入端点的无法识别的错误 - 允许的值是 Ignore 或 Fail。默认为 Fail。
+
+  <!-- 
+  - **webhooks.matchPolicy** (string)
+
+    matchPolicy defines how the "rules" list is used to match incoming requests. Allowed values are "Exact" or "Equivalent".
+    
+    - Exact: match a request only if it exactly matches a specified rule. For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, but "rules" only included `apiGroups:["apps"], apiVersions:["v1"], resources: ["deployments"]`, a request to apps/v1beta1 or extensions/v1beta1 would not be sent to the webhook.
+    
+    - Equivalent: match a request if modifies a resource listed in rules, even via another API group or version. For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, and "rules" only included `apiGroups:["apps"], apiVersions:["v1"], resources: ["deployments"]`, a request to apps/v1beta1 or extensions/v1beta1 would be converted to apps/v1 and sent to the webhook.
+    
+    Defaults to "Equivalent" 
+  -->
+
+  - **webhooks.matchPolicy** (string)
+
+    matchPolicy 定义了如何使用 “rules” 列表来匹配传入的请求。允许的值为 “Exact” 或 “Equivalent”。
+
+    - Exact: 仅当请求与指定规则完全匹配时才匹配请求。
+      例如，如果可以通过 apps/v1、apps/v1beta1 和 extensions/v1beta1 修改 deployments 资源，
+      但 “rules” 仅包含 `apiGroups:["apps"]、apiVersions:["v1"]、resources:["deployments"]`，
+      对 apps/v1beta1 或 extensions/v1beta1 的请求不会被发送到 Webhook。
+
+    - Equivalent: 如果针对的资源包含在 “rules” 中，即使请求是通过另一个 API 组或版本提交，也会匹配。
+      例如，如果可以通过 apps/v1、apps/v1beta1 和 extensions/v1beta1 修改 deployments 资源，
+      并且 “rules” 仅包含 `apiGroups:["apps"]、apiVersions:["v1"]、resources:["deployments "]`，
+      对 apps/v1beta1 或 extensions/v1beta1 的请求将被转换为 apps/v1 并发送到 Webhook。
+
+    默认为 “Equivalent”。
+
+  - **webhooks.namespaceSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+    <!-- 
+    NamespaceSelector decides whether to run the webhook on an object based on whether the namespace for that object matches the selector. If the object itself is a namespace, the matching is performed on object.metadata.labels. If the object is another cluster scoped resource, it never skips the webhook.
+
+    For example, to run the webhook on any objects whose namespace is not associated with "runlevel" of "0" or "1";  you will set the selector as follows: "namespaceSelector": {
+    -->
+
+    namespaceSelector 根据对象的命名空间是否与 selector 匹配来决定是否在该对象上运行 Webhook。
+    如果对象本身是 Namespace，则针对 object.metadata.labels 执行匹配。
+    如果对象是其他集群作用域资源，则永远不会跳过 Webhook 的匹配动作。
+
+    例如，为了针对 “runlevel” 不为 “0” 或 “1” 的名字空间中的所有对象运行 Webhook；
+    你可以按如下方式设置 selector :
+    ```
+    "namespaceSelector": {
+      "matchExpressions": [
+        {
+          "key": "runlevel",
+          "operator": "NotIn",
+          "values": [
+            "0",
+            "1"
+          ]
+        }
+      ]
+    }
+    ```
+    <!-- 
+    If instead you want to only run the webhook on any objects whose namespace is associated with the "environment" of "prod" or "staging"; you will set the selector as follows: "namespaceSelector": {
+    -->
+    
+    相反，如果你只想针对 “environment” 为 “prod” 或 “staging” 的名字空间中的对象运行 Webhook；
+    你可以按如下方式设置 selector:
+    ```
+    "namespaceSelector": {
+      "matchExpressions": [
+        {
+          "key": "environment",
+          "operator": "In",
+          "values": [
+            "prod",
+            "staging"
+          ]
+        }
+      ]
+    }
+    ```
+    <!-- 
+    See https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ for more examples of label selectors.
+
+    Default to the empty LabelSelector, which matches everything.  
+    -->
+
+    有关标签选择算符的更多示例，请参阅
+    https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/labels。
+
+    默认为空的 LabelSelector，匹配所有对象。
+
+  <!-- 
+  - **webhooks.objectSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+    ObjectSelector decides whether to run the webhook based on if the object has matching labels. objectSelector is evaluated against both the oldObject and newObject that would be sent to the webhook, and is considered to match if either object matches the selector. A null object (oldObject in the case of create, or newObject in the case of delete) or an object that cannot have labels (like a DeploymentRollback or a PodProxyOptions object) is not considered to match. Use the object selector only if the webhook is opt-in, because end users may skip the admission webhook by setting the labels. Default to the empty LabelSelector, which matches everything. 
+  -->
+
+  - **webhooks.objectSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+    objectSelector 根据对象是否具有匹配的标签来决定是否运行 Webhook。
+    objectSelector 针对将被发送到 Webhook 的 oldObject 和 newObject 进行评估，如果任一对象与选择器匹配，则视为匹配。
+    空对象（create 时为 oldObject，delete 时为 newObject）或不能有标签的对象（如 DeploymentRollback 或 PodProxyOptions 对象）
+    认为是不匹配的。
+    仅当 Webhook 支持时才能使用对象选择器，因为最终用户可以通过设置标签来跳过准入 Webhook。
+    默认为空的 LabelSelector，匹配所有内容。
+  
+
+  - **webhooks.reinvocationPolicy** (string)
+
+    <!-- 
+    reinvocationPolicy indicates whether this webhook should be called multiple times as part of a single admission evaluation. Allowed values are "Never" and "IfNeeded".
+
+        Never: the webhook will not be called more than once in a single admission evaluation.
+    
+    IfNeeded: the webhook will be called at least one additional time as part of the admission evaluation if the object being admitted is modified by other admission plugins after the initial webhook call. Webhooks that specify this option *must* be idempotent, able to process objects they previously admitted. Note: * the number of additional invocations is not guaranteed to be exactly one. * if additional invocations result in further modifications to the object, webhooks are not guaranteed to be invoked again. * webhooks that use this option may be reordered to minimize the number of additional invocations. * to validate an object after all mutations are guaranteed complete, use a validating admission webhook instead.
+    
+    Defaults to "Never". 
+    -->
+
+    reinvocationPolicy 表示这个 Webhook 是否可以被多次调用，作为一次准入评估的一部分。可取值有 “Never” 和 “IfNeeded”。
+
+    - Never: 在一次录取评估中，Webhook 被调用的次数不会超过一次。
+    - IfNeeded：如果被录取的对象在被最初的 Webhook 调用后又被其他录取插件修改，
+      那么该 Webhook 将至少被额外调用一次作为录取评估的一部分。
+      指定此选项的 Webhook  **必须**是幂等的，能够处理它们之前承认的对象。
+      注意：**不保证额外调用的次数正好为1。**
+      如果额外的调用导致对对象的进一步修改，Webhook 不保证会再次被调用。
+      **使用该选项的 Webhook 可能会被重新排序，以最小化额外调用的数量。**
+      在保证所有的变更都完成后验证一个对象，使用验证性质的准入 Webhook 代替。
+
+    默认值为 “Never” 。
+
+  <!-- 
+  - **webhooks.rules** ([]RuleWithOperations)
+
+    Rules describes what operations on what resources/subresources the webhook cares about. The webhook cares about an operation if it matches _any_ Rule. However, in order to prevent ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks from putting the cluster in a state which cannot be recovered from without completely disabling the plugin, ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks are never called on admission requests for ValidatingWebhookConfiguration and MutatingWebhookConfiguration objects.
+
+    <a name="RuleWithOperations"></a>
+    *RuleWithOperations is a tuple of Operations and Resources. It is recommended to make sure that all the tuple expansions are valid.*
+  -->
+
+  - **webhooks.rules** ([]RuleWithOperations)
+
+    rules 描述了 Webhook 关心的资源/子资源上有哪些操作。Webhook 关心操作是否匹配**任何**rules。
+    但是，为了防止 ValidatingAdmissionWebhooks 和 ValidatingAdmissionWebhooks 将集群置于只能完全禁用插件才能恢复的状态，
+    ValidatingAdmissionWebhooks 和 ValidatingAdmissionWebhooks 永远不会在处理 ValidatingWebhookConfiguration
+    和 ValidatingWebhookConfiguration 对象的准入请求被调用。
+
+    <a name="RuleWithOperations"></a>
+    **RuleWithOperations 是操作和资源的元组。建议确保所有元组组合都是有效的。**
+
+    <!-- 
+    - **webhooks.rules.apiGroups** ([]string)
+
+      APIGroups is the API groups the resources belong to. '*' is all groups. If '*' is present, the length of the slice must be one. Required. 
+    -->
+
+    - **webhooks.rules.apiGroups** ([]string)
+
+      apiGroups 是资源所属的 API 组列表。`*` 是所有组。
+      如果存在 `*`，则列表的长度必须为 1。必需。
+
+    <!-- 
+    - **webhooks.rules.apiVersions** ([]string)
+
+      APIVersions is the API versions the resources belong to. '*' is all versions. If '*' is present, the length of the slice must be one. Required. 
+    -->
+
+    - **webhooks.rules.apiVersions** ([]string)
+
+      apiVersions 是资源所属的 API 版本列表。`*` 是所有版本。
+      如果存在 `*`，则列表的长度必须为 1。必需。
+
+    <!-- 
+    - **webhooks.rules.operations** ([]string)
+
+      Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or * for all of those operations and any future admission operations that are added. If '*' is present, the length of the slice must be one. Required. 
+    -->
+
+    - **webhooks.rules.operations** ([]string)
+
+      operations 是准入 Webhook 所关心的操作 —— CREATE、UPDATE、DELETE、CONNECT
+      或用来指代所有已知操作以及将来可能添加的准入操作的 `*`。
+      如果存在 `*`，则列表的长度必须为 1。必需。
+
+    <!-- 
+    - **webhooks.rules.resources** ([]string)
+
+      Resources is a list of resources this rule applies to.
+      
+      For example: 'pods' means pods. 'pods/log' means the log subresource of pods. '*' means all resources, but not subresources. 'pods/*' means all subresources of pods. '*/scale' means all scale subresources. '*/*' means all resources and their subresources.
+      
+      If wildcard is present, the validation rule will ensure resources do not overlap with each other.
+      
+      Depending on the enclosing object, subresources might not be allowed. Required. 
+    -->
+
+    - **webhooks.rules.resources** ([]string)
+
+      resources 是此规则适用的资源列表。
+
+      - `pods` 表示 pods，'pods/log' 表示 pods 的日志子资源。`*` 表示所有资源，但不是子资源。
+      - `pods/*` 表示 pods 的所有子资源,
+      - `*/scale` 表示所有 scale 子资源,
+      - `*/*` 表示所有资源及其子资源。
+
+      如果存在通配符，则验证规则将确保资源不会相互重叠。
+
+      根据所指定的对象，可能不允许使用子资源。必需。
+
+    <!-- 
+    - **webhooks.rules.scope** (string)
+
+      scope specifies the scope of this rule. Valid values are "Cluster", "Namespaced", and "*" "Cluster" means that only cluster-scoped resources will match this rule. Namespace API objects are cluster-scoped. "Namespaced" means that only namespaced resources will match this rule. "*" means that there are no scope restrictions. Subresources match the scope of their parent resource. Default is "*".
+    -->
+
+    - **webhooks.rules.scope** (string)
+
+      scope 指定此规则的范围。有效值为 “Cluster”, “Namespaced” 和 “*”。
+      “Cluster” 表示只有集群范围的资源才会匹配此规则。
+      Namespace API 对象是集群范围的。
+      “Namespaced” 意味着只有命名空间作用域的资源会匹配此规则。
+      “*” 表示没有范围限制。
+      子资源与其父资源的作用域相同。默认为 “*”。
+
+  <!-- 
+  - **webhooks.timeoutSeconds** (int32)
+
+    TimeoutSeconds specifies the timeout for this webhook. After the timeout passes, the webhook call will be ignored or the API call will fail based on the failure policy. The timeout value must be between 1 and 30 seconds. Default to 10 seconds. 
+  -->
+
+  - **webhooks.timeoutSeconds** (int32)
+
+    timeoutSeconds 指定此 Webhook 的超时时间。
+    超时后，Webhook 的调用将被忽略或 API 调用将根据失败策略失败。
+    超时值必须在 1 到 30 秒之间。默认为 10 秒。
+
+## MutatingWebhookConfigurationList {#MutatingWebhookConfigurationList}
+
+<!-- 
+MutatingWebhookConfigurationList is a list of MutatingWebhookConfiguration. 
+-->
+MutatingWebhookConfigurationList 是 MutatingWebhookConfiguration 的列表。
+
+<hr>
+
+- **apiVersion**: admissionregistration.k8s.io/v1
+
+- **kind**: MutatingWebhookConfigurationList
+
+<!-- 
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds 
+-->
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  标准的对象元数据，更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds。
+
+<!-- 
+- **items** ([]<a href="{{< ref "../extend-resources/mutating-webhook-configuration-v1#MutatingWebhookConfiguration" >}}">MutatingWebhookConfiguration</a>), required
+
+  List of MutatingWebhookConfiguration. 
+-->
+
+- **items** ([]<a href="{{< ref "../extend-resources/mutating-webhook-configuration-v1#MutatingWebhookConfiguration" >}}">MutatingWebhookConfiguration</a>), 必需
+
+  MutatingWebhookConfiguration 列表。
+
+<!-- 
+## Operations {#Operations}  
+-->
+## 操作   {#operations}
+
+<hr>
+
+<!-- 
+### `get` read the specified MutatingWebhookConfiguration
+
+#### HTTP Request 
+-->
+### `get` 读取指定的 MutatingWebhookConfiguration
+
+#### HTTP 请求
+
+GET /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations/{name}
+
+<!-- 
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the MutatingWebhookConfiguration 
+-->
+#### 参数
+
+- **name** (**路径参数**): string, 必需
+
+  MutatingWebhookConfiguration 的名称。
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+ 
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../extend-resources/mutating-webhook-configuration-v1#MutatingWebhookConfiguration" >}}">MutatingWebhookConfiguration</a>): OK
+
+401: Unauthorized
+
+<!-- 
+### `list` list or watch objects of kind MutatingWebhookConfiguration
+
+#### HTTP Request
+-->
+### `list` 列出或观察 MutatingWebhookConfiguration 类型的对象
+
+#### HTTP 请求
+
+GET /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations
+
+<!-- 
+#### Parameters
+
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a> 
+-->
+#### 参数
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!-- 
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a> 
+-->
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!-- 
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a> 
+-->
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!-- 
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a> 
+-->
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!-- 
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a> 
+-->
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a> 
+-->
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a> 
+-->
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!-- 
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a> 
+-->
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!-- 
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a> 
+-->
+
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../extend-resources/mutating-webhook-configuration-v1#MutatingWebhookConfigurationList" >}}">MutatingWebhookConfigurationList</a>): OK
+
+401: Unauthorized
+
+<!-- 
+### `create` create a MutatingWebhookConfiguration
+
+#### HTTP Request
+-->
+### `create` 创建一个 MutatingWebhookConfiguration
+
+#### HTTP 请求
+
+POST /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations
+
+<!-- 
+#### Parameters
+
+- **body**: <a href="{{< ref "../extend-resources/mutating-webhook-configuration-v1#MutatingWebhookConfiguration" >}}">MutatingWebhookConfiguration</a>, required
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../extend-resources/mutating-webhook-configuration-v1#MutatingWebhookConfiguration" >}}">MutatingWebhookConfiguration</a>, 必需
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a> 
+-->
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!-- 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a> 
+-->
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../extend-resources/mutating-webhook-configuration-v1#MutatingWebhookConfiguration" >}}">MutatingWebhookConfiguration</a>): OK
+
+201 (<a href="{{< ref "../extend-resources/mutating-webhook-configuration-v1#MutatingWebhookConfiguration" >}}">MutatingWebhookConfiguration</a>): Created
+
+202 (<a href="{{< ref "../extend-resources/mutating-webhook-configuration-v1#MutatingWebhookConfiguration" >}}">MutatingWebhookConfiguration</a>): Accepted
+
+401: Unauthorized
+
+<!-- 
+### `update` replace the specified MutatingWebhookConfiguration
+
+#### HTTP Request 
+-->
+### `update` 替换指定的 MutatingWebhookConfiguration
+
+#### HTTP 请求
+
+PUT /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations/{name}
+
+<!-- 
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the MutatingWebhookConfiguration 
+-->
+#### 参数
+
+- **name** (**路径参数**): string, 必需
+
+  MutatingWebhookConfiguration 的名称。
+
+<!-- 
+- **body**: <a href="{{< ref "../extend-resources/mutating-webhook-configuration-v1#MutatingWebhookConfiguration" >}}">MutatingWebhookConfiguration</a>, required
+-->
+
+- **body**: <a href="{{< ref "../extend-resources/mutating-webhook-configuration-v1#MutatingWebhookConfiguration" >}}">MutatingWebhookConfiguration</a>, 必需
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a> 
+-->
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!-- 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+-->
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../extend-resources/mutating-webhook-configuration-v1#MutatingWebhookConfiguration" >}}">MutatingWebhookConfiguration</a>): OK
+
+201 (<a href="{{< ref "../extend-resources/mutating-webhook-configuration-v1#MutatingWebhookConfiguration" >}}">MutatingWebhookConfiguration</a>): Created
+
+401: Unauthorized
+
+<!-- 
+### `patch` partially update the specified MutatingWebhookConfiguration
+
+#### HTTP Request 
+-->
+### `patch` 部分更新指定的 MutatingWebhookConfiguration
+
+#### HTTP 请求
+
+PATCH /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations/{name}
+
+<!-- 
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the MutatingWebhookConfiguration 
+-->
+#### 参数
+
+- **name** (**路径参数**): string, 必需
+
+  MutatingWebhookConfiguration 的名称。
+
+<!-- 
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, 必需
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!-- 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a> 
+-->
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!-- 
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a> 
+-->
+
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../extend-resources/mutating-webhook-configuration-v1#MutatingWebhookConfiguration" >}}">MutatingWebhookConfiguration</a>): OK
+
+201 (<a href="{{< ref "../extend-resources/mutating-webhook-configuration-v1#MutatingWebhookConfiguration" >}}">MutatingWebhookConfiguration</a>): Created
+
+401: Unauthorized
+
+<!-- 
+### `delete` delete a MutatingWebhookConfiguration
+
+#### HTTP Request 
+-->
+### `delete` 删除 MutatingWebhookConfiguration
+
+#### HTTP 请求
+
+DELETE /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations/{name}
+
+<!-- 
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the MutatingWebhookConfiguration 
+-->
+#### 参数
+
+- **name** (**路径参数**): string, 必需
+
+  MutatingWebhookConfiguration 的名称。
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a> 
+-->
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a> 
+-->
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!-- 
+### `deletecollection` delete collection of MutatingWebhookConfiguration
+
+#### HTTP Request 
+-->
+### `deletecollection` 删除 MutatingWebhookConfiguration 的集合
+
+#### HTTP 请求
+
+DELETE /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations
+
+<!-- 
+#### Parameters
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!-- 
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a> 
+-->
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a> 
+-->
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!-- 
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a> 
+-->
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!-- 
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a> 
+-->
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!-- 
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a> 
+-->
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a> 
+-->
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!-- 
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a> 
+-->
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!-- 
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a> 
+-->
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!-- 
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a> 
+-->
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
\ No newline at end of file
diff --git a/content/zh-cn/docs/reference/kubernetes-api/extend-resources/validating-webhook-configuration-v1.md b/content/zh-cn/docs/reference/kubernetes-api/extend-resources/validating-webhook-configuration-v1.md
new file mode 100644
index 0000000000..2349041146
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/extend-resources/validating-webhook-configuration-v1.md
@@ -0,0 +1,1102 @@
+---
+api_metadata:
+  apiVersion: "admissionregistration.k8s.io/v1"
+  import: "k8s.io/api/admissionregistration/v1"
+  kind: "ValidatingWebhookConfiguration"
+content_type: "api_reference"
+description: "ValidatingWebhookConfiguration 描述准入 Webhook 的配置，该 Webhook 可在不更改对象的情况下接受或拒绝对象请求"
+title: "ValidatingWebhookConfiguration"
+weight: 3
+---
+
+<!-- 
+api_metadata:
+  apiVersion: "admissionregistration.k8s.io/v1"
+  import: "k8s.io/api/admissionregistration/v1"
+  kind: "ValidatingWebhookConfiguration"
+content_type: "api_reference"
+description: "ValidatingWebhookConfiguration describes the configuration of and admission webhook that accept or reject and object without changing it."
+title: "ValidatingWebhookConfiguration"
+weight: 3
+-->
+
+`apiVersion: admissionregistration.k8s.io/v1`
+
+`import "k8s.io/api/admissionregistration/v1"`
+
+## ValidatingWebhookConfiguration {#validatingWebhookConfiguration}
+
+<!-- 
+ValidatingWebhookConfiguration describes the configuration of and admission webhook that accept or reject and object without changing it.
+-->
+ValidatingWebhookConfiguration 描述准入 Webhook 的配置，该 Webhook 可在不更改对象的情况下接受或拒绝对象请求。
+
+<hr>
+
+- **apiVersion**: admissionregistration.k8s.io/v1
+
+- **kind**: ValidatingWebhookConfiguration
+
+<!-- 
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  Standard object metadata; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata. 
+-->
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  标准的对象元数据，更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata。
+
+<!-- 
+- **webhooks** ([]ValidatingWebhook)
+
+  *Patch strategy: merge on key `name`*
+  
+  Webhooks is a list of webhooks and the affected resources and operations.
+
+  <a name="ValidatingWebhook"></a>
+  *ValidatingWebhook describes an admission webhook and the resources and operations it applies to.* 
+-->
+
+- **webhooks** ([]ValidatingWebhook)
+
+  **补丁策略：根据 `name` 键执行合并操作**
+  
+  webhooks 是 Webhook 以及受影响的资源和操作的列表。
+
+  <a name="ValidatingWebhook"></a>
+  **ValidatingWebhook 描述了一个准入 Webhook 及其适用的资源和操作。**
+
+  <!-- 
+  - **webhooks.admissionReviewVersions** ([]string), required
+
+    AdmissionReviewVersions is an ordered list of preferred `AdmissionReview` versions the Webhook expects. API server will try to use first version in the list which it supports. If none of the versions specified in this list supported by API server, validation will fail for this object. If a persisted webhook configuration specifies allowed versions and does not include any versions known to the API Server, calls to the webhook will fail and be subject to the failure policy. 
+  -->
+
+  - **webhooks.admissionReviewVersions** ([]string), 必需
+
+    admissionReviewVersions 是 Webhook 期望的首选 `AdmissionReview` 版本的有序列表。 
+    API 服务器将尝试使用它支持的列表中的第一个版本。如果 API 服务器不支持此列表中指定的版本，则此对象将验证失败。 
+    如果持久化的 Webhook 配置指定了允许的版本，并且不包括 API 服务器已知的任何版本，则对 Webhook 的调用将失败并受失败策略的约束。
+
+  <!-- 
+  - **webhooks.clientConfig** (WebhookClientConfig), required
+
+    ClientConfig defines how to communicate with the hook. Required
+
+    <a name="WebhookClientConfig"></a>
+    *WebhookClientConfig contains the information to make a TLS connection with the webhook* 
+  -->
+
+  - **webhooks.clientConfig** (WebhookClientConfig), 必需
+
+    clientConfig 定义了如何与 Webhook 通信。必需。
+
+    <a name="WebhookClientConfig"></a>
+    **WebhookClientConfig 包含与 Webhook 建立 TLS 连接的信息**
+
+    <!-- 
+    - **webhooks.clientConfig.caBundle** ([]byte)
+
+      `caBundle` is a PEM encoded CA bundle which will be used to validate the webhook's server certificate. If unspecified, system trust roots on the apiserver are used. 
+    -->
+
+    - **webhooks.clientConfig.caBundle** ([]byte)
+
+      `caBundle` 是一个 PEM 编码的 CA 包，将用于验证 Webhook 的服务证书。如果未指定，则使用 apiserver 上的系统信任根。
+
+    <!-- 
+    - **webhooks.clientConfig.service** (ServiceReference)
+
+      `service` is a reference to the service for this webhook. Either `service` or `url` must be specified.
+      
+      If the webhook is rungg within the cluster, then you should use `service`.
+
+      <a name="ServiceReference"></a>
+      *ServiceReference holds a reference to Service.legacy.k8s.io* 
+    -->
+
+    - **webhooks.clientConfig.service** (ServiceReference)
+
+      `service` 是对此 Webhook 服务的引用。必须指定 `service` 或 `url`。
+      
+       如果 Webhook 在集群中运行，那么你应该使用 `service`。
+
+      <a name="ServiceReference"></a>
+      **ServiceReference 持有对 Service.legacy.k8s.io 的引用**
+
+      <!-- 
+      - **webhooks.clientConfig.service.name** (string), required
+
+        `name` is the name of the service. Required 
+      -->
+
+      - **webhooks.clientConfig.service.name** (string), 必需
+
+        `name` 是服务的名称。必需。
+
+      <!-- 
+      - **webhooks.clientConfig.service.namespace** (string), required
+
+        `namespace` is the namespace of the service. Required 
+      -->
+
+      - **webhooks.clientConfig.service.namespace** (string), 必需
+
+        `namespace` 是服务的命名空间。必需。
+
+      <!-- 
+      - **webhooks.clientConfig.service.path** (string)
+
+        `path` is an optional URL path which will be sent in any request to this service. 
+      -->
+
+      - **webhooks.clientConfig.service.path** (string)
+
+        `path` 是一个可选的 URL 路径，它将发送任何请求到此服务。
+
+      <!-- 
+      - **webhooks.clientConfig.service.port** (int32)
+
+        If specified, the port on the service that hosting webhook. Default to 443 for backward compatibility. `port` should be a valid port number (1-65535, inclusive). 
+      -->
+      
+      - **webhooks.clientConfig.service.port** (int32)
+
+        如果指定，则为托管 Webhook 的服务上的端口。默认为 443 以实现向后兼容性。`port` 应该是一个有效的端口号（包括 1-65535）。
+
+    <!-- 
+    - **webhooks.clientConfig.url** (string)
+
+      `url` gives the location of the webhook, in standard URL form (`scheme://host:port/path`). Exactly one of `url` or `service` must be specified.
+      
+      The `host` should not refer to a service running in the cluster; use the `service` field instead. The host might be resolved via external DNS in some apiservers (e.g., `kube-apiserver` cannot resolve in-cluster DNS as that would be a layering violation). `host` may also be an IP address.
+      
+      Please note that using `localhost` or `127.0.0.1` as a `host` is risky unless you take great care to run this webhook on all hosts which run an apiserver which might need to make calls to this webhook. Such installs are likely to be non-portable, i.e., not easy to turn up in a new cluster.
+      
+      The scheme must be "https"; the URL must begin with "https://".
+      
+      A path is optional, and if present may be any string permissible in a URL. You may use the path to pass an arbitrary string to the webhook, for example, a cluster identifier.
+      
+      Attempting to use a user or basic auth e.g. "user:password@" is not allowed. Fragments ("#...") and query parameters ("?...") are not allowed, either. 
+    -->
+
+    - **webhooks.clientConfig.url** (string)
+
+      `url` 以标准 URL 形式（`scheme://host:port/path`）给出了 Webhook 的位置。必须指定 `url` 或 `service` 中的一个。
+      
+      `host` 不应指代在集群中运行的服务；请改用 `service` 字段。在某些 apiserver 中，可能会通过外部 DNS 解析 `host`。
+      （例如，`kube-apiserver` 无法解析集群内 DNS，因为这会违反分层原理）。`host` 也可以是 IP 地址。
+      
+      请注意，使用 `localhost` 或 `127.0.0.1` 作为 `host` 是有风险的，除非你非常小心地在运行 apiserver 的所有主机上运行此 Webhook，
+      而这些 API 服务器可能需要调用此 Webhook。此类部署可能是不可移植的，即不容易在新集群中重复安装。
+      
+      该方案必须是 “https”；URL 必须以 “https://” 开头。
+      
+      路径是可选的，如果存在，可以是 URL 中允许的任何字符串。你可以使用路径将任意字符串传递给 Webhook，例如集群标识符。
+      
+      不允许使用用户或基本身份验证，例如不允许使用 “user:password@”。
+      不允许使用片段（“#...”）和查询参数（“?...”）。
+
+  <!-- 
+  - **webhooks.name** (string), required
+
+    The name of the admission webhook. Name should be fully qualified, e.g., imagepolicy.kubernetes.io, where "imagepolicy" is the name of the webhook, and kubernetes.io is the name of the organization. Required. 
+  -->
+
+  - **webhooks.name** (string), 必需
+
+    准入 Webhook 的名称。应该是完全限定的名称，例如 imagepolicy.kubernetes.io，其中 “imagepolicy” 是 Webhook 的名称，
+    kubernetes.io 是组织的名称。必需。
+
+  <!-- 
+  - **webhooks.sideEffects** (string), required
+
+    SideEffects states whether this webhook has side effects. Acceptable values are: None, NoneOnDryRun (webhooks created via v1beta1 may also specify Some or Unknown). Webhooks with side effects MUST implement a reconciliation system, since a request may be rejected by a future step in the admission chain and the side effects therefore need to be undone. Requests with the dryRun attribute will be auto-rejected if they match a webhook with sideEffects == Unknown or Some. 
+  -->
+
+  - **webhooks.sideEffects** (string), 必需
+
+   sideEffects 说明此 Webhook 是否有副作用。可接受的值为：None、NoneOnDryRun（通过 v1beta1 创建的 Webhook 也可以指定 Some 或 Unknown）。
+   具有副作用的 Webhook 必须实现协调系统，因为请求可能会被准入链中的未来步骤拒绝，因此需要能够撤消副作用。 
+   如果请求与带有 sideEffects == Unknown 或 Some 的 Webhook 匹配，则带有 dryRun 属性的请求将被自动拒绝。
+
+  <!-- 
+  - **webhooks.failurePolicy** (string)
+
+    FailurePolicy defines how unrecognized errors from the admission endpoint are handled - allowed values are Ignore or Fail. Defaults to Fail. 
+  -->
+
+  - **webhooks.failurePolicy** (string)
+
+    failurePolicy 定义了如何处理来自准入端点的无法识别的错误 - 允许的值是 Ignore 或 Fail。默认为 Fail。
+
+  <!-- 
+  - **webhooks.matchPolicy** (string)
+
+    matchPolicy defines how the "rules" list is used to match incoming requests. Allowed values are "Exact" or "Equivalent".
+    
+    - Exact: match a request only if it exactly matches a specified rule. For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, but "rules" only included `apiGroups:["apps"], apiVersions:["v1"], resources: ["deployments"]`, a request to apps/v1beta1 or extensions/v1beta1 would not be sent to the webhook.
+    
+    - Equivalent: match a request if modifies a resource listed in rules, even via another API group or version. For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, and "rules" only included `apiGroups:["apps"], apiVersions:["v1"], resources: ["deployments"]`, a request to apps/v1beta1 or extensions/v1beta1 would be converted to apps/v1 and sent to the webhook.
+    
+    Defaults to "Equivalent" 
+  -->
+
+  - **webhooks.matchPolicy** (string)
+
+    matchPolicy 定义了如何使用 "rules" 列表来匹配传入的请求。允许的值为 "Exact" 或 "Equivalent"。
+
+    - Exact: 仅当请求与指定规则完全匹配时才匹配请求。
+    例如，如果可以通过 apps/v1、apps/v1beta1 和 extensions/v1beta1 修改 deployments 资源，
+    但 “rules” 仅包含 `apiGroups:["apps"]、apiVersions:["v1"]、resources:["deployments "]`，
+    对 apps/v1beta1 或 extensions/v1beta1 的请求不会被发送到 Webhook。
+
+    - Equivalent: 如果针对的资源包含在 “rules” 中，即使是通过另一个 API 组或版本，也视作匹配请求。 
+    例如，如果可以通过 apps/v1、apps/v1beta1 和 extensions/v1beta1 修改 deployments 资源，
+    并且 “rules” 仅包含 `apiGroups:["apps"]、apiVersions:["v1"]、resources:["deployments "]`，
+    对 apps/v1beta1 或 extensions/v1beta1 的请求将被转换为 apps/v1 并发送到 Webhook。
+    
+    默认为 “Equivalent”。
+ 
+  - **webhooks.namespaceSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+    <!-- 
+    NamespaceSelector decides whether to run the webhook on an object based on whether the namespace for that object matches the selector. If the object itself is a namespace, the matching is performed on object.metadata.labels. If the object is another cluster scoped resource, it never skips the webhook.
+    
+    For example, to run the webhook on any objects whose namespace is not associated with "runlevel" of "0" or "1";  you will set the selector as follows:   
+    -->
+    namespaceSelector 根据对象的命名空间是否与 selector 匹配来决定是否在该对象上运行 Webhook。 
+    如果对象本身是命名空间，则在 object.metadata.labels 上执行匹配。
+    如果对象是另一个集群范围的资源，则永远不会跳过 Webhook 执行匹配。
+    
+    例如，在命名空间与 “0” 或 “1” 的 “runlevel” 不关联的任何对象上运行 Webhook；
+    你可以按如下方式设置 selector : 
+    ```
+    "namespaceSelector": {
+      "matchExpressions": [
+        {
+          "key": "runlevel",
+          "operator": "NotIn",
+          "values": [
+            "0",
+            "1"
+          ]
+        }
+      ]
+    }
+    ```
+    <!-- 
+    If instead you want to only run the webhook on any objects whose namespace is associated with the "environment" of "prod" or "staging"; you will set the selector as follows:  
+    -->
+    相反，如果你只想在命名空间与 “prod” 或 “staging” 的 “environment” 相关联的对象上运行 Webhook；
+    你可以按如下方式设置 selector:
+    ```
+    "namespaceSelector": {
+      "matchExpressions": [
+        {
+          "key": "environment",
+          "operator": "In",
+          "values": [
+            "prod",
+            "staging"
+          ]
+        }
+      ]
+    }
+    ```
+    <!-- 
+    See https://kubernetes.io/docs/concepts/overview/working-with-objects/labels for more examples of label selectors.
+    
+    Default to the empty LabelSelector, which matches everything.  
+    -->
+    有关标签选择算符的更多示例，请参阅 
+    https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/labels。
+
+    默认为空的 LabelSelector，匹配所有对象。
+   
+  <!-- 
+  - **webhooks.objectSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+    ObjectSelector decides whether to run the webhook based on if the object has matching labels. objectSelector is evaluated against both the oldObject and newObject that would be sent to the webhook, and is considered to match if either object matches the selector. A null object (oldObject in the case of create, or newObject in the case of delete) or an object that cannot have labels (like a DeploymentRollback or a PodProxyOptions object) is not considered to match. Use the object selector only if the webhook is opt-in, because end users may skip the admission webhook by setting the labels. Default to the empty LabelSelector, which matches everything. 
+  -->
+
+  - **webhooks.objectSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+    objectSelector 根据对象是否具有匹配的标签来决定是否运行 Webhook。 
+    objectSelector 针对将被发送到 Webhook 的 oldObject 和 newObject 进行评估，如果任一对象与选择器匹配，则视为匹配。 
+    空对象（create 时为 oldObject，delete 时为 newObject）或不能有标签的对象（如 DeploymentRollback 或 PodProxyOptions 对象）
+    认为是不匹配的。 
+    仅当 Webhook 支持时才能使用对象选择器，因为最终用户可以通过设置标签来跳过准入 webhook。
+    默认为空的 LabelSelector，匹配所有内容。
+
+  <!-- 
+  - **webhooks.rules** ([]RuleWithOperations)
+
+    Rules describes what operations on what resources/subresources the webhook cares about. The webhook cares about an operation if it matches _any_ Rule. However, in order to prevent ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks from putting the cluster in a state which cannot be recovered from without completely disabling the plugin, ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks are never called on admission requests for ValidatingWebhookConfiguration and MutatingWebhookConfiguration objects. 
+
+    <a name="RuleWithOperations"></a>
+    *RuleWithOperations is a tuple of Operations and Resources. It is recommended to make sure that all the tuple expansions are valid.*
+  -->
+
+  - **webhooks.rules** ([]RuleWithOperations)
+
+    rules 描述了 Webhook 关心的资源/子资源上有哪些操作。Webhook 关心操作是否匹配**任何**rules。
+    但是，为了防止 ValidatingAdmissionWebhooks 和 MutatingAdmissionWebhooks 将集群置于只能完全禁用插件才能恢复的状态，
+    ValidatingAdmissionWebhooks 和 MutatingAdmissionWebhooks 永远不会在处理 ValidatingWebhookConfiguration 
+    和 MutatingWebhookConfiguration 对象的准入请求被调用。
+
+    <a name="RuleWithOperations"></a>
+    **RuleWithOperations 是操作和资源的元组。建议确保所有元组组合都是有效的。**
+
+    <!-- 
+    - **webhooks.rules.apiGroups** ([]string)
+
+      APIGroups is the API groups the resources belong to. '*' is all groups. If '*' is present, the length of the slice must be one. Required. 
+    -->
+
+    - **webhooks.rules.apiGroups** ([]string)
+
+      apiGroups 是资源所属的 API 组列表。'*' 是所有组。
+      如果存在 '*'，则列表的长度必须为 1。必需。
+
+    <!-- 
+    - **webhooks.rules.apiVersions** ([]string)
+
+      APIVersions is the API versions the resources belong to. '*' is all versions. If '*' is present, the length of the slice must be one. Required. 
+    -->
+
+    - **webhooks.rules.apiVersions** ([]string)
+
+      apiVersions 是资源所属的 API 版本列表。'*' 是所有版本。 
+      如果存在 '*'，则列表的长度必须为 1。必需。
+
+    <!-- 
+    - **webhooks.rules.operations** ([]string)
+
+      Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or * for all of those operations and any future admission operations that are added. If '*' is present, the length of the slice must be one. Required. 
+    -->
+
+    - **webhooks.rules.operations** ([]string)
+
+      operations 是准入 Webhook 所关心的操作 —— CREATE、UPDATE、DELETE、CONNECT
+      或用来指代所有已知操作以及将来可能添加的准入操作的 `*`。
+      如果存在 '*'，则列表的长度必须为 1。必需。
+
+    <!-- 
+    - **webhooks.rules.resources** ([]string)
+
+      Resources is a list of resources this rule applies to.
+      
+      For example: 'pods' means pods. 'pods/log' means the log subresource of pods. '*' means all resources, but not subresources. 'pods/*' means all subresources of pods. '*/scale' means all scale subresources. '*/*' means all resources and their subresources.
+      
+      If wildcard is present, the validation rule will ensure resources do not overlap with each other.
+      
+      Depending on the enclosing object, subresources might not be allowed. Required. 
+    -->
+
+    - **webhooks.rules.resources** ([]string)
+
+      resources 是此规则适用的资源列表。
+      
+      'pods' 表示 pods，'pods/log' 表示 pods 的日志子资源。'*' 表示所有资源，但不是子资源。
+      'pods/*' 表示 pods 的所有子资源, 
+      '*/scale' 表示所有 scale 子资源,
+      '*/*' 表示所有资源及其子资源。
+      
+      如果存在通配符，则验证规则将确保资源不会相互重叠。
+
+      根据所指定的对象，可能不允许使用子资源。必需。
+
+    <!-- 
+    - **webhooks.rules.scope** (string)
+
+      scope specifies the scope of this rule. Valid values are "Cluster", "Namespaced", and "*" "Cluster" means that only cluster-scoped resources will match this rule. Namespace API objects are cluster-scoped. "Namespaced" means that only namespaced resources will match this rule. "*" means that there are no scope restrictions. Subresources match the scope of their parent resource. Default is "*".
+    -->
+
+    - **webhooks.rules.scope** (string)
+
+      scope 指定此规则的范围。有效值为 "Cluster", "Namespaced" 和 "*"。
+      "Cluster" 表示只有集群范围的资源才会匹配此规则。 
+      Namespace API 对象是集群范围的。
+      "Namespaced" 意味着只有命名空间作用域的资源会匹配此规则。
+      "*" 表示没有范围限制。 
+      子资源与其父资源的作用域相同。默认为 "*"。
+
+  <!-- 
+  - **webhooks.timeoutSeconds** (int32)
+
+    TimeoutSeconds specifies the timeout for this webhook. After the timeout passes, the webhook call will be ignored or the API call will fail based on the failure policy. The timeout value must be between 1 and 30 seconds. Default to 10 seconds. 
+  -->
+
+  - **webhooks.timeoutSeconds** (int32)
+
+    timeoutSeconds 指定此 Webhook 的超时时间。超时后，Webhook 的调用将被忽略或 API 调用将根据失败策略失败。 
+    超时值必须在 1 到 30 秒之间。默认为 10 秒。
+
+## ValidatingWebhookConfigurationList {#ValidatingWebhookConfigurationList}
+
+<!-- 
+ValidatingWebhookConfigurationList is a list of ValidatingWebhookConfiguration. 
+-->
+ValidatingWebhookConfigurationList 是 ValidatingWebhookConfiguration 的列表。
+
+<hr>
+
+- **apiVersion**: admissionregistration.k8s.io/v1
+
+- **kind**: ValidatingWebhookConfigurationList
+
+<!-- 
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds 
+-->
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  标准的对象元数据，更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds。
+
+<!-- 
+- **items** ([]<a href="{{< ref "../extend-resources/validating-webhook-configuration-v1#ValidatingWebhookConfiguration" >}}">ValidatingWebhookConfiguration</a>), required
+
+  List of ValidatingWebhookConfiguration. 
+-->
+
+- **items** ([]<a href="{{< ref "../extend-resources/validating-webhook-configuration-v1#ValidatingWebhookConfiguration" >}}">ValidatingWebhookConfiguration</a>), 必需
+
+  ValidatingWebhookConfiguration 列表。
+
+<!-- 
+## Operations {#Operations}  
+-->
+## 操作   {#operations}
+
+<hr>
+
+<!-- 
+### `get` read the specified ValidatingWebhookConfiguration
+
+#### HTTP Request 
+-->
+### `get` 读取指定的 ValidatingWebhookConfiguration
+
+#### HTTP 请求
+
+GET /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations/{name}
+
+<!-- 
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the ValidatingWebhookConfiguration 
+-->
+#### 参数
+
+- **name** (**路径参数**): string, 必需
+
+  ValidatingWebhookConfiguration 的名称。
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+ 
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../extend-resources/validating-webhook-configuration-v1#ValidatingWebhookConfiguration" >}}">ValidatingWebhookConfiguration</a>): OK
+
+401: Unauthorized
+
+<!-- 
+### `list` list or watch objects of kind ValidatingWebhookConfiguration
+
+#### HTTP Request
+-->
+### `list` 列出或观察 ValidatingWebhookConfiguration 类型的对象
+
+#### HTTP 请求
+
+GET /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations
+
+<!-- 
+#### Parameters
+
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a> 
+-->
+#### 参数
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!-- 
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a> 
+-->
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!-- 
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a> 
+-->
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!-- 
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a> 
+-->
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!-- 
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a> 
+-->
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a> 
+-->
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a> 
+-->
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!-- 
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a> 
+-->
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!-- 
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a> 
+-->
+
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../extend-resources/validating-webhook-configuration-v1#ValidatingWebhookConfigurationList" >}}">ValidatingWebhookConfigurationList</a>): OK
+
+401: Unauthorized
+
+<!-- 
+### `create` create a ValidatingWebhookConfiguration
+
+#### HTTP Request
+-->
+### `create` 创建一个 ValidatingWebhookConfiguration
+
+#### HTTP 请求
+
+POST /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations
+
+<!-- 
+#### Parameters
+
+- **body**: <a href="{{< ref "../extend-resources/validating-webhook-configuration-v1#ValidatingWebhookConfiguration" >}}">ValidatingWebhookConfiguration</a>, required 
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../extend-resources/validating-webhook-configuration-v1#ValidatingWebhookConfiguration" >}}">ValidatingWebhookConfiguration</a>, 必需
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a> 
+-->
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!-- 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a> 
+-->
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../extend-resources/validating-webhook-configuration-v1#ValidatingWebhookConfiguration" >}}">ValidatingWebhookConfiguration</a>): OK
+
+201 (<a href="{{< ref "../extend-resources/validating-webhook-configuration-v1#ValidatingWebhookConfiguration" >}}">ValidatingWebhookConfiguration</a>): Created
+
+202 (<a href="{{< ref "../extend-resources/validating-webhook-configuration-v1#ValidatingWebhookConfiguration" >}}">ValidatingWebhookConfiguration</a>): Accepted
+
+401: Unauthorized
+
+<!-- 
+### `update` replace the specified ValidatingWebhookConfiguration
+
+#### HTTP Request 
+-->
+### `update` 替换指定的 ValidatingWebhookConfiguration
+
+#### HTTP 请求
+
+PUT /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations/{name}
+
+<!-- 
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the ValidatingWebhookConfiguration 
+-->
+#### 参数
+
+- **name** (**路径参数**): string, 必需
+
+  ValidatingWebhookConfiguration 的名称。
+
+<!-- 
+- **body**: <a href="{{< ref "../extend-resources/validating-webhook-configuration-v1#ValidatingWebhookConfiguration" >}}">ValidatingWebhookConfiguration</a>, required 
+-->
+
+- **body**: <a href="{{< ref "../extend-resources/validating-webhook-configuration-v1#ValidatingWebhookConfiguration" >}}">ValidatingWebhookConfiguration</a>, 必需
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a> 
+-->
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!-- 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+-->
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../extend-resources/validating-webhook-configuration-v1#ValidatingWebhookConfiguration" >}}">ValidatingWebhookConfiguration</a>): OK
+
+201 (<a href="{{< ref "../extend-resources/validating-webhook-configuration-v1#ValidatingWebhookConfiguration" >}}">ValidatingWebhookConfiguration</a>): Created
+
+401: Unauthorized
+
+<!-- 
+### `patch` partially update the specified ValidatingWebhookConfiguration
+
+#### HTTP Request 
+-->
+### `patch` 部分更新指定的 ValidatingWebhookConfiguration
+
+#### HTTP 请求
+
+PATCH /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations/{name}
+
+<!-- 
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the ValidatingWebhookConfiguration 
+-->
+#### 参数
+
+- **name** (**路径参数**): string, 必需
+
+  ValidatingWebhookConfiguration 的名称。
+
+<!-- 
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required 
+-->
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, 必需
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!-- 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a> 
+-->
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!-- 
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a> 
+-->
+
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../extend-resources/validating-webhook-configuration-v1#ValidatingWebhookConfiguration" >}}">ValidatingWebhookConfiguration</a>): OK
+
+201 (<a href="{{< ref "../extend-resources/validating-webhook-configuration-v1#ValidatingWebhookConfiguration" >}}">ValidatingWebhookConfiguration</a>): Created
+
+401: Unauthorized
+
+<!-- 
+### `delete` delete a ValidatingWebhookConfiguration
+
+#### HTTP Request 
+-->
+### `delete` 删除 ValidatingWebhookConfiguration
+
+#### HTTP 请求
+
+DELETE /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations/{name}
+
+<!-- 
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the ValidatingWebhookConfiguration 
+-->
+#### 参数
+
+- **name** (**路径参数**): string, 必需
+
+  ValidatingWebhookConfiguration 的名称。
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a> 
+-->
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a> 
+-->
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!-- 
+### `deletecollection` delete collection of ValidatingWebhookConfiguration
+
+#### HTTP Request 
+-->
+### `deletecollection` 删除 ValidatingWebhookConfiguration 的集合
+
+#### HTTP 请求
+
+DELETE /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations
+
+<!-- 
+#### Parameters
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!-- 
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a> 
+-->
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a> 
+-->
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!-- 
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a> 
+-->
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!-- 
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a> 
+-->
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!-- 
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a> 
+-->
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a> 
+-->
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!-- 
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a> 
+-->
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!-- 
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a> 
+-->
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!-- 
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a> 
+-->
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
\ No newline at end of file
diff --git a/content/zh-cn/docs/reference/kubernetes-api/policy-resources/_index.md b/content/zh-cn/docs/reference/kubernetes-api/policy-resources/_index.md
new file mode 100644
index 0000000000..71adda0968
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/policy-resources/_index.md
@@ -0,0 +1,7 @@
+---
+title: "策略资源"
+weight: 6
+auto_generated: true
+---
+
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/policy-resources/limit-range-v1.md b/content/zh-cn/docs/reference/kubernetes-api/policy-resources/limit-range-v1.md
new file mode 100644
index 0000000000..1ee5af68a3
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/policy-resources/limit-range-v1.md
@@ -0,0 +1,658 @@
+---
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "LimitRange"
+content_type: "api_reference"
+description: "LimitRange 设置名字空间中每个资源类别的资源用量限制。"
+title: "LimitRange"
+weight: 1
+---
+<!--
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "LimitRange"
+content_type: "api_reference"
+description: "LimitRange sets resource usage limits for each kind of resource in a Namespace."
+title: "LimitRange"
+weight: 1
+auto_generated: true
+-->
+
+`apiVersion: v1`
+
+`import "k8s.io/api/core/v1"`
+
+## LimitRange {#LimitRange}
+<!--
+LimitRange sets resource usage limits for each kind of resource in a Namespace.
+-->
+LimitRange 设置名字空间中每个资源类别的资源用量限制。
+
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: LimitRange
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../policy-resources/limit-range-v1#LimitRangeSpec" >}}">LimitRangeSpec</a>)
+  Spec defines the limits enforced. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../policy-resources/limit-range-v1#LimitRangeSpec" >}}">LimitRangeSpec</a>)
+
+  spec 定义强制执行的限制。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+## LimitRangeSpec {#LimitRangeSpec}
+
+<!--
+LimitRangeSpec defines a min/max usage limit for resources that match on kind.
+-->
+LimitRangeSpec 定义与类别匹配的资源的最小/最大使用限制。
+
+<hr>
+
+<!--
+- **limits** ([]LimitRangeItem), required
+  Limits is the list of LimitRangeItem objects that are enforced.
+
+  <a name="LimitRangeItem"></a>
+  *LimitRangeItem defines a min/max usage limit for any resource that matches on kind.*
+
+  - **limits.type** (string), required
+    Type of resource that this limit applies to.
+-->
+- **limits** ([]LimitRangeItem)，必需
+
+  limits 是强制执行的 LimitRangeItem 对象的列表。
+
+  <a name="LimitRangeItem"></a>
+  **LimitRangeItem 定义与类别匹配的任意资源的最小/最大使用限制。**
+
+  - **limits.type** (string)，必需
+
+    此限制应用到的资源的类型。
+
+  <!--
+  - **limits.default** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+    Default resource requirement limit value by resource name if resource limit is omitted.
+
+  - **limits.defaultRequest** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+    DefaultRequest is the default resource requirement request value by resource name if resource request is omitted.
+
+  - **limits.max** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+    Max usage constraints on this kind by resource name.
+  -->
+
+  - **limits.default** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+    资源限制被省略时按资源名称设定的默认资源要求限制值。
+
+  - **limits.defaultRequest** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+    defaultRequest 是资源请求被省略时按资源名称设定的默认资源要求请求值。
+
+  - **limits.max** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+    按资源名称针对这种类别的最大使用约束。
+
+  <!--
+  - **limits.maxLimitRequestRatio** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+    MaxLimitRequestRatio if specified, the named resource must have a request and limit that are both non-zero where limit divided by request is less than or equal to the enumerated value; this represents the max burst for the named resource.
+
+  - **limits.min** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+    Min usage constraints on this kind by resource name.
+  -->
+
+  - **limits.maxLimitRequestRatio** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+    如果指定 maxLimitRequestRatio，则所指定的资源必须设置非零的请求和限制值，
+    且限制除以请求小于或等于这里列举的值；此属性用来表示所指定资源的最大突发用量。
+
+  - **limits.min** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+    按资源名称区分的，针对这种类别对象的最小用量约束。
+
+## LimitRangeList {#LimitRangeList}
+
+<!--
+LimitRangeList is a list of LimitRange items.
+-->
+LimitRangeList 是 LimitRange 项的列表。
+
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: LimitRangeList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+- **items** ([]<a href="{{< ref "../policy-resources/limit-range-v1#LimitRange" >}}">LimitRange</a>), required
+  Items is a list of LimitRange objects. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  标准的列表元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+- **items** ([]<a href="{{< ref "../policy-resources/limit-range-v1#LimitRange" >}}">LimitRange</a>)，必需
+
+  items 是 LimitRange 对象的列表。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/configuration/manage-resources-containers/
+
+<!--
+## Operations {#Operations}
+<hr>
+### `get` read the specified LimitRange
+#### HTTP Request
+-->
+## 操作 {#Operations}
+<hr>
+
+### `get` 读取指定的 LimitRange
+#### HTTP 请求
+GET /api/v1/namespaces/{namespace}/limitranges/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the LimitRange
+- **namespace** (*in path*): string, required
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+
+  LimitRange 的名称
+
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../policy-resources/limit-range-v1#LimitRange" >}}">LimitRange</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind LimitRange
+#### HTTP Request
+-->
+### `list` 列出或监视 LimitRange 类别的对象
+#### HTTP 请求
+GET /api/v1/namespaces/{namespace}/limitranges
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../policy-resources/limit-range-v1#LimitRangeList" >}}">LimitRangeList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind LimitRange
+#### HTTP Request
+-->
+### `list` 列出或监视 LimitRange 类别的对象
+#### HTTP 请求
+GET /api/v1/limitranges
+
+<!--
+#### Parameters
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/limit-range-v1#LimitRangeList" >}}">LimitRangeList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a LimitRange
+#### HTTP Request
+-->
+### `create` 创建 LimitRange
+#### HTTP 请求
+POST /api/v1/namespaces/{namespace}/limitranges
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../policy-resources/limit-range-v1#LimitRange" >}}">LimitRange</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../policy-resources/limit-range-v1#LimitRange" >}}">LimitRange</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../policy-resources/limit-range-v1#LimitRange" >}}">LimitRange</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/limit-range-v1#LimitRange" >}}">LimitRange</a>): Created
+
+202 (<a href="{{< ref "../policy-resources/limit-range-v1#LimitRange" >}}">LimitRange</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified LimitRange
+#### HTTP Request
+-->
+### `update` 替换指定的 LimitRange
+#### HTTP 请求
+PUT /api/v1/namespaces/{namespace}/limitranges/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the LimitRange
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../policy-resources/limit-range-v1#LimitRange" >}}">LimitRange</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+
+  LimitRange 的名称
+
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../policy-resources/limit-range-v1#LimitRange" >}}">LimitRange</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../policy-resources/limit-range-v1#LimitRange" >}}">LimitRange</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/limit-range-v1#LimitRange" >}}">LimitRange</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified LimitRange
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 LimitRange
+#### HTTP 请求
+PATCH /api/v1/namespaces/{namespace}/limitranges/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the LimitRange
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+
+  LimitRange 的名称
+
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../policy-resources/limit-range-v1#LimitRange" >}}">LimitRange</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/limit-range-v1#LimitRange" >}}">LimitRange</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a LimitRange
+#### HTTP Request
+-->
+### `delete` 删除 LimitRange
+#### HTTP 请求
+DELETE /api/v1/namespaces/{namespace}/limitranges/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the LimitRange
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+
+  LimitRange 的名称
+
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of LimitRange
+#### HTTP Request
+-->
+### `deletecollection` 删除 LimitRange 的集合
+#### HTTP 请求
+DELETE /api/v1/namespaces/{namespace}/limitranges
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **continue** (*in query*): string
+- **dryRun** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/policy-resources/network-policy-v1.md b/content/zh-cn/docs/reference/kubernetes-api/policy-resources/network-policy-v1.md
new file mode 100644
index 0000000000..aeb49ad674
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/policy-resources/network-policy-v1.md
@@ -0,0 +1,1551 @@
+---
+api_metadata:
+  apiVersion: "networking.k8s.io/v1"
+  import: "k8s.io/api/networking/v1"
+  kind: "NetworkPolicy"
+content_type: "api_reference"
+description: "NetworkPolicy 描述针对一组 Pod 所允许的网络流量。"
+title: "NetworkPolicy"
+weight: 3
+---
+<!--
+api_metadata:
+  apiVersion: "networking.k8s.io/v1"
+  import: "k8s.io/api/networking/v1"
+  kind: "NetworkPolicy"
+content_type: "api_reference"
+description: "NetworkPolicy describes what network traffic is allowed for a set of Pods."
+title: "NetworkPolicy"
+weight: 3
+auto_generated: true
+-->
+
+`apiVersion: networking.k8s.io/v1`
+
+`import "k8s.io/api/networking/v1"`
+
+
+## NetworkPolicy {#NetworkPolicy}
+
+<!--
+NetworkPolicy describes what network traffic is allowed for a set of Pods
+-->
+NetworkPolicy 描述针对一组 Pod 所允许的网络流量。
+
+<hr>
+
+- **apiVersion**: networking.k8s.io/v1
+
+- **kind**: NetworkPolicy
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  <!--
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+  标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicySpec" >}}">NetworkPolicySpec</a>)
+  <!--
+  Specification of the desired behavior for this NetworkPolicy.
+  -->
+  spec 定义特定网络策略所需的所有信息.
+
+- **status** (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicyStatus" >}}">NetworkPolicyStatus</a>)
+  <!--
+  Status is the current state of the NetworkPolicy. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+  -->
+  status 是 NetworkPolicy 的当前状态。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+## NetworkPolicySpec {#NetworkPolicySpec}
+
+<!--
+NetworkPolicySpec provides the specification of a NetworkPolicy
+-->
+NetworkPolicySpec 定义特定 NetworkPolicy 所需的所有信息.
+
+<hr>
+
+<!--
+- **podSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>), required
+
+  Selects the pods to which this NetworkPolicy object applies. The array of ingress rules is applied to any pods selected by this field. Multiple network policies can select the same set of pods. In this case, the ingress rules for each are combined additively. This field is NOT optional and follows standard label selector semantics. An empty podSelector matches all pods in this namespace.
+-->
+- **podSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)， 必需
+  
+  podSelector 选择此网络策略所适用的一组 Pod。一组 Ingress 入口策略将应用于此字段选择的所有 Pod。
+  多个网络策略可以选择同一组 Pod。
+  在这种情况下，这些列表条目的 Ingress 规则效果会被叠加。 此字段不是可选的，并且遵循标准标签选择算符语义。 
+  空值的 podSelector 匹配此命名空间中的所有 Pod。
+
+<!--
+- **policyTypes** ([]string)
+
+  List of rule types that the NetworkPolicy relates to. Valid options are ["Ingress"], ["Egress"], or ["Ingress", "Egress"]. If this field is not specified, it will default based on the existence of Ingress or Egress rules; policies that contain an Egress section are assumed to affect Egress, and all policies (whether or not they contain an Ingress section) are assumed to affect Ingress. If you want to write an egress-only policy, you must explicitly specify policyTypes [ "Egress" ]. Likewise, if you want to write a policy that specifies that no egress is allowed, you must specify a policyTypes value that include "Egress" (since such a policy would not include an Egress section and would otherwise default to just [ "Ingress" ]). This field is beta-level in 1.8
+-->
+- **policyTypes** ([]string)
+
+  NetworkPolicy 相关的规则类型列表。 有效选项为 `[“Ingress”]`，`[“Egress”]` 或 `[“Ingress”， “Egress”]`。 
+  如果不指定此字段，则默认值取决是否存在 Ingress 或 Egress 规则；规则里包含 Egress 部分的策略将会影响出站流量，
+  并且所有策略（无论它们是否包含 Ingress 部分）都将会影响 入站流量。
+  如果要仅定义出站流量策略，则必须明确指定 `[ "Egress" ]`。
+  同样，如果要定义一个指定拒绝所有出站流量的策略，则必须指定一个包含 “Egress” 的 policyTypes 值
+  （因为这样不包含 Egress 部分的策略，将会被默认为只有 [ "Ingress" ] )。 此字段在 1.8 中为 Beta。
+  
+<!--
+- **ingress** ([]NetworkPolicyIngressRule)
+
+  List of ingress rules to be applied to the selected pods. Traffic is allowed to a pod if there are no NetworkPolicies selecting the pod (and cluster policy otherwise allows the traffic), OR if the traffic source is the pod's local node, OR if the traffic matches at least one ingress rule across all of the NetworkPolicy objects whose podSelector matches the pod. If this field is empty then this NetworkPolicy does not allow any traffic (and serves solely to ensure that the pods it selects are isolated by default)
+
+  <a name="NetworkPolicyIngressRule"></a>
+  *NetworkPolicyIngressRule describes a particular set of traffic that is allowed to the pods matched by a NetworkPolicySpec's podSelector. The traffic must match both ports and from.*
+-->
+- **ingress** ([]NetworkPolicyIngressRule)
+
+  定义所选 Pod 的入站规则列表。在没有被任何 NetworkPolicy 选择到 Pod 的情况下（同时假定集群策略允许对应流量），
+  或者如果流量源是 Pod 的本地节点，或者流量与所有 NetworkPolicy 中的至少一个入站规则（Ingress) 匹配，
+  则进入 Pod 的流量是被允许的。如果此字段为空，则此 NetworkPolicy 不允许任何入站流量
+  （这种设置用来确保它所选择的 Pod 在默认情况下是被隔离的）。
+
+  <a name="NetworkPolicyIngressRule"></a>
+  **NetworkPolicyIngressRule 定义 NetworkPolicySpec 的 podSelector 所选 Pod 的入站规则的白名单列表，
+  流量必须同时匹配 ports 和 from 。**
+  
+  <!--
+  - **ingress.from** ([]NetworkPolicyPeer)
+
+    List of sources which should be able to access the pods selected for this rule. Items in this list are combined using a logical OR operation. If this field is empty or missing, this rule matches all sources (traffic not restricted by source). If this field is present and contains at least one item, this rule allows traffic only if the traffic matches at least one item in the from list.
+
+    <a name="NetworkPolicyPeer"></a>
+    *NetworkPolicyPeer describes a peer to allow traffic to/from. Only certain combinations of fields are allowed*
+  -->
+
+  - **ingress.from** ([]NetworkPolicyPeer)
+
+    流量来源列表，列表中的来源可以访问被此规则选中的 Pod。此列表中的流量来源使用逻辑或操作进行组合。
+    如果此字段为空值或缺失（未设置），
+    则此规则匹配所有流量来源（也即允许所有入站流量）。如果此字段存在并且至少包含一项来源，则仅当流量与来自列表中的至少一项匹配时，
+    此规则才允许流量访问被选中的 Pod 集合。
+
+    <a name="NetworkPolicyPeer"></a>
+    **NetworkPolicyPeer 描述了允许进出流量的对等点。 这个参数只允许某些字段组合** 
+  
+    <!--
+    - **ingress.from.ipBlock** (IPBlock)
+
+      IPBlock defines policy on a particular IPBlock. If this field is set then neither of the other fields can be.
+
+      <a name="IPBlock"></a>
+      *IPBlock describes a particular CIDR (Ex. "192.168.1.1/24","2001:db9::/64") that is allowed to the pods matched by a NetworkPolicySpec's podSelector. The except entry describes CIDRs that should not be included within this rule.*
+    -->  
+
+    - **ingress.from.ipBlock** (IPBlock)
+
+      IPBlock 针对特定的 IP CIDR 范围设置策略。如果设置了此字段，则不可以设置其他字段。
+
+      <a name="IPBlock"></a>
+      IPBlock 定义一个特定的 CIDR 范围（例如 `192.168.1.1/24`、`2001:db9::/64`），
+      来自这个 IP 范围的流量来源将会被允许访问与 NetworkPolicySpec 的 podSelector 匹配的 Pod 集合。 
+      except 字段则设置应排除在此规则之外的 CIDR 范围。
+
+      <!--
+      - **ingress.from.ipBlock.cidr** (string), required
+
+        CIDR is a string representing the IP Block Valid examples are "192.168.1.1/24" or "2001:db9::/64"
+
+      - **ingress.from.ipBlock.except** ([]string)
+
+        Except is a slice of CIDRs that should not be included within an IP Block Valid examples are "192.168.1.1/24" or "2001:db9::/64" Except values will be rejected if they are outside the CIDR range
+      -->
+      
+      - **ingress.from.ipBlock.cidr** (string), 必需
+
+        CIDR 是指定 IP 组块的字符串， 例如 `"192.168.1.1/24"` 或 `"2001:db9::/64"`。
+
+      - **ingress.from.ipBlock.except** ([]string)
+
+        except 是一个由 CIDR 范围组成的列表，其中指定的 CIDR 都应排除在此 IP 区块范围之外。
+        例如 `"192.168.1.1/24"` 或 `"2001:db9::/64"`。
+        如果 except 字段的值超出 ipBlock.cidr 的范围则被视为无效策略。
+
+    <!--
+    - **ingress.from.namespaceSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+      Selects Namespaces using cluster-scoped labels. This field follows standard label selector semantics; if present but empty, it selects all namespaces.
+      
+      If PodSelector is also set, then the NetworkPolicyPeer as a whole selects the Pods matching PodSelector in the Namespaces selected by NamespaceSelector. Otherwise it selects all Pods in the Namespaces selected by NamespaceSelector.
+    -->
+
+    - **ingress.from.namespaceSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+      此选择器使用集群范围标签来选择特定的 Namespace。此字段遵循标准标签选择算符语义；
+      如果此字段存在但为空值，则会选择所有名字空间。
+      
+      如果 podSelector 也被定义了, 那么 NetworkPolicyPeer 将选择那些同时满足 namespaceSelector 所选名字空间下
+      和 podSelector 规则匹配的 Pod。
+      反之选择 namespaceSelector 所选名字空间下所有的 Pod。  
+
+    <!--
+    - **ingress.from.podSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+      This is a label selector which selects Pods. This field follows standard label selector semantics; if present but empty, it selects all pods.
+      
+      If NamespaceSelector is also set, then the NetworkPolicyPeer as a whole selects the Pods matching PodSelector in the Namespaces selected by NamespaceSelector. Otherwise it selects the Pods matching PodSelector in the policy's own Namespace.
+    -->
+
+    - **ingress.from.podSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+      这个标签选择算符负责选择 Pod。该字段遵循标准标签选择算符语义；如果字段存在但为空值，则选择所有 Pod。
+
+      如果 namespaceSelector 也被定义，那么 NetworkPolicyPeer 将选择那些同时满足 namespaceSelector 定义的名字空间下
+      和 podSelector 规则匹配的 Pod。
+      反之会在策略所在的名字空间中选择与 podSelector 匹配的 Pod。
+
+  <!--
+  - **ingress.ports** ([]NetworkPolicyPort)
+
+    List of ports which should be made accessible on the pods selected for this rule. Each item in this list is combined using a logical OR. If this field is empty or missing, this rule matches all ports (traffic not restricted by port). If this field is present and contains at least one item, then this rule allows traffic only if the traffic matches at least one port in the list.
+
+    <a name="NetworkPolicyPort"></a>
+    *NetworkPolicyPort describes a port to allow traffic on*
+  -->
+
+  - **ingress.ports** ([]NetworkPolicyPort)
+
+    定义在此规则选中的 Pod 上应可访问的端口列表。此列表中的个项目使用逻辑或操作组合。如果此字段为空或缺失，
+    则此规则匹配所有端口（进入流量可访问任何端口）。
+    如果此字段存在并且包含至少一个有效值，则此规则仅在流量至少匹配列表中的一个端口时才允许访问。
+
+    <a name="NetworkPolicyPort"></a>
+    **NetworkPolicyPort 定义可以连接的端口**
+
+    <!--
+    - **ingress.ports.port** (IntOrString)
+
+      The port on the given protocol. This can either be a numerical or named port on a pod. If this field is not provided, this matches all port names and numbers. If present, only traffic on the specified protocol AND port will be matched.
+
+      <a name="IntOrString"></a>
+      *IntOrString is a type that can hold an int32 or a string.  When used in JSON or YAML marshalling and unmarshalling, it produces or consumes the inner type.  This allows you to have, for example, a JSON field that can accept a name or number.*
+    -->
+
+    - **ingress.ports.port** (IntOrString)
+
+      给定协议上的端口。字段值可以是 Pod 上的数字或命名端口。如果未提供此字段，则匹配所有端口名和端口号。 
+      如果定义了，则仅允许对给定的协议和端口的入口流量。
+
+      <a name="IntOrString"></a>
+      IntOrString 是一种可以包含 int32 或字符串值的类型。在 JSON 或 YAML 编组和解组中使用时，它会生成或使用内部类型。 
+      例如，这允许你拥有一个可以接受名称或数字的 JSON 字段。
+
+    <!--
+    - **ingress.ports.endPort** (int32)
+
+      If set, indicates that the range of ports from port to endPort, inclusive, should be allowed by the policy. This field cannot be defined if the port field is not defined or if the port field is defined as a named (string) port. The endPort must be equal or greater than port. This feature is in Beta state and is enabled by default. It can be disabled using the Feature Gate "NetworkPolicyEndPort".
+
+    - **ingress.ports.protocol** (string)
+
+      The protocol (TCP, UDP, or SCTP) which traffic must match. If not specified, this field defaults to TCP.
+    -->
+
+    - **ingress.ports.endPort** (int32)
+
+      如果设置了此字段，则表明策略应该允许 port 与 endPort 之间（包含二者）的所有端口。
+      如果未定义 port 或将 port 字段值为命名端口（字符串），则不可以使用 endPort 。 
+      endPort 必须等于或大于 port 值。此功能是 Beta 阶段，默认启用。可以使用 “NetworkPolicyEndPort” 特性门控来禁用 endPort 。
+
+    - **ingress.ports.protocol** (string)
+
+      流量必须匹配的网络协议（TCP、UDP 或 SCTP）。如果未指定，此字段默认为 TCP。
+
+<!--
+- **egress** ([]NetworkPolicyEgressRule)
+
+  List of egress rules to be applied to the selected pods. Outgoing traffic is allowed if there are no NetworkPolicies selecting the pod (and cluster policy otherwise allows the traffic), OR if the traffic matches at least one egress rule across all of the NetworkPolicy objects whose podSelector matches the pod. If this field is empty then this NetworkPolicy limits all outgoing traffic (and serves solely to ensure that the pods it selects are isolated by default). This field is beta-level in 1.8
+
+  <a name="NetworkPolicyEgressRule"></a>
+  *NetworkPolicyEgressRule describes a particular set of traffic that is allowed out of pods matched by a NetworkPolicySpec's podSelector. The traffic must match both ports and to. This type is beta-level in 1.8*
+-->
+
+- **egress** ([]NetworkPolicyEgressRule)
+
+  egress 定义所选 Pod 的出站规则的列表。如果没有 NetworkPolicy 选中指定 Pod（并且其他集群策略也允许出口流量），
+  或者在所有通过 podSelector 选中了某 Pod 的 NetworkPolicy 中，至少有一条出站规则与出站流量匹配，
+  则该 Pod 的出站流量是被允许的。
+  如果此字段为空，则此 NetworkPolicy 拒绝所有出站流量（这策略可以确保它所选中的 Pod 在默认情况下是被隔离的）。 
+  egress 字段在 1.8 中为 Beta 级别。
+
+  <a name="NetworkPolicyEgressRule"></a>
+  NetworkPolicyEgressRule 针对被 NetworkPolicySpec 的 podSelector 所选中 Pod，描述其被允许的出站流量。
+  流量必须同时匹配 ports 和 to 设置。此类型在 1.8 中为 Beta 级别。
+
+  <!--
+  - **egress.to** ([]NetworkPolicyPeer)
+
+    List of destinations for outgoing traffic of pods selected for this rule. Items in this list are combined using a logical OR operation. If this field is empty or missing, this rule matches all destinations (traffic not restricted by destination). If this field is present and contains at least one item, this rule allows traffic only if the traffic matches at least one item in the to list.
+
+    <a name="NetworkPolicyPeer"></a>
+    *NetworkPolicyPeer describes a peer to allow traffic to/from. Only certain combinations of fields are allowed*
+  -->
+
+  - **egress.to** ([]NetworkPolicyPeer)
+
+    针对此规则所选择的 Pod 的出口流量的目的地列表。此列表中的目的地使用逻辑或操作进行组合。 如果此字段为空或缺失，
+    则此规则匹配所有目的地（流量不受目的地限制）。 如果此字段存在且至少包含一项目的地，则仅当流量与目标列表中的至少一个匹配时，
+    此规则才允许出口流量。
+
+    <a name="NetworkPolicyPeer"></a>
+    **NetworkPolicyPeer 描述允许进出流量的对等点。这个对象只允许某些字段组合。** 
+
+    <!--
+    - **egress.to.ipBlock** (IPBlock)
+
+      IPBlock defines policy on a particular IPBlock. If this field is set then neither of the other fields can be.
+
+      <a name="IPBlock"></a>
+      *IPBlock describes a particular CIDR (Ex. "192.168.1.1/24","2001:db9::/64") that is allowed to the pods matched by a NetworkPolicySpec's podSelector. The except entry describes CIDRs that should not be included within this rule.*
+    -->
+
+    - **egress.to.ipBlock** (IPBlock)
+
+      ipBlock 针对特定的 IP 区块定义策略。如果设置了此字段，则其他不可以设置其他字段。
+
+      <a name="IPBlock"></a>
+      IPBlock 描述一个特定的 CIDR 范围（例如 `192.168.1.1/24`、`2001:db9::/64`），
+      与 NetworkPolicySpec 的 podSelector 匹配的 Pod 将被允许连接到这个 IP 范围，作为其出口流量目的地。 
+      except 字段则设置了不被此规则影响的 CIDR 范围。
+
+      <!--
+      - **egress.to.ipBlock.cidr** (string), required
+
+        CIDR is a string representing the IP Block Valid examples are "192.168.1.1/24" or "2001:db9::/64"
+
+      - **egress.to.ipBlock.except** ([]string)
+
+        Except is a slice of CIDRs that should not be included within an IP Block Valid examples are "192.168.1.1/24" or "2001:db9::/64" Except values will be rejected if they are outside the CIDR range
+      -->
+
+      - **egress.to.ipBlock.cidr** (string), 必需
+
+        CIDR 是用来表达 IP 组块的字符串，例如 `"192.168.1.1/24"` 或 `"2001:db9::/64"`。
+
+      - **egress.to.ipBlock.except** ([]string)
+
+        except 定义不应包含在 ipBlock 内的 CIDR 范围列表。例如 `"192.168.1.1/24"` 或 `"2001:db9::/64"`。
+        如果 except 的值超出 ipBlock.cidr 的范围则被拒绝。
+
+    <!--
+    - **egress.to.namespaceSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+      Selects Namespaces using cluster-scoped labels. This field follows standard label selector semantics; if present but empty, it selects all namespaces.
+      
+      If PodSelector is also set, then the NetworkPolicyPeer as a whole selects the Pods matching PodSelector in the Namespaces selected by NamespaceSelector. Otherwise it selects all Pods in the Namespaces selected by NamespaceSelector.
+    -->
+
+    - **egress.to.namespaceSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+      此选择算符使用集群范围标签来选择特定的名字空间。该字段遵循标准标签选择算符语义；如果字段存在但为空值，那会选择所有名字空间。
+      
+      如果 egress.to.podSelector 也被定义了, 那么 NetworkPolicyPeer 将选择那些同时满足 namespaceSelector 指定的名字空间下
+      和 podSelector 规则匹配的 Pod。
+      反之选择 namespaceSelector 指定的名字空间下所有的 Pod。
+
+    <!--
+    - **egress.to.podSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+      This is a label selector which selects Pods. This field follows standard label selector semantics; if present but empty, it selects all pods.
+      
+      If NamespaceSelector is also set, then the NetworkPolicyPeer as a whole selects the Pods matching PodSelector in the Namespaces selected by NamespaceSelector. Otherwise it selects the Pods matching PodSelector in the policy's own Namespace.
+    -->
+
+    - **egress.to.podSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+      这个标签选择器负责选择一组 Pod。该字段遵循标准标签选择算符语义； 如果字段存在但为空值，则选择所有 Pod。
+
+      如果 egress.to.namespaceSelector 也被定义，则 NetworkPolicyPeer 将选择 namespaceSelector 所指定的名字空间下
+      和 podSelector 规则匹配的 Pod。
+      反之会在策略所属的名字空间中选择与 podSelector 匹配的 Pod。
+
+  <!--
+  - **egress.ports** ([]NetworkPolicyPort)
+
+    List of destination ports for outgoing traffic. Each item in this list is combined using a logical OR. If this field is empty or missing, this rule matches all ports (traffic not restricted by port). If this field is present and contains at least one item, then this rule allows traffic only if the traffic matches at least one port in the list.
+
+    <a name="NetworkPolicyPort"></a>
+    *NetworkPolicyPort describes a port to allow traffic on*
+  -->
+
+  - **egress.ports** ([]NetworkPolicyPort)
+
+    出站流量目的地的端口列表。此列表中的各个项目使用逻辑或操作进行组合。如果此字段为空或缺失，
+    则此规则匹配所有端口（可访问出口流量目的地的任何端口）。 如果此字段存在并且包含至少一个有效值，
+    则此规则仅在流量与列表中的至少一个端口匹配时才允许访问。
+
+    <a name="NetworkPolicyPort"></a>
+    **NetworkPolicyPort 定义出口流量目的地的端口**
+
+    <!--
+    - **egress.ports.port** (IntOrString)
+
+      The port on the given protocol. This can either be a numerical or named port on a pod. If this field is not provided, this matches all port names and numbers. If present, only traffic on the specified protocol AND port will be matched.
+
+      <a name="IntOrString"></a>
+      *IntOrString is a type that can hold an int32 or a string.  When used in JSON or YAML marshalling and unmarshalling, it produces or consumes the inner type.  This allows you to have, for example, a JSON field that can accept a name or number.*
+
+    - **egress.ports.endPort** (int32)
+
+      If set, indicates that the range of ports from port to endPort, inclusive, should be allowed by the policy. This field cannot be defined if the port field is not defined or if the port field is defined as a named (string) port. The endPort must be equal or greater than port. This feature is in Beta state and is enabled by default. It can be disabled using the Feature Gate "NetworkPolicyEndPort".
+
+    - **egress.ports.protocol** (string)
+
+      The protocol (TCP, UDP, or SCTP) which traffic must match. If not specified, this field defaults to TCP.
+    -->
+
+    - **egress.ports.port** (IntOrString)
+
+      给定协议上的端口。字段值可以是 Pod 上的数字或命名端口。如果未提供此字段，则匹配所有端口名和端口号。 
+      如果定义此字段，则仅允许针对给定的协议和端口的出站流量。
+
+      <a name="IntOrString"></a>
+      IntOrString 是一种可以包含 int32 或字符串值的类型。在 JSON 或 YAML 编组和解组中使用时，它会生成或使用内部类型。 
+      例如，这允许你拥有一个可以接受名称或数字的 JSON 字段。
+
+    - **egress.ports.endPort** (int32)
+
+      如果设置了 endPort，则用来指定策略所允许的从 port 到 endPort 的端口范围（包含边界值）。
+      如果未设置 port 或 port 字段值为端口名称（字符串），则不可以指定 endPort。 
+      endPort 必须等于或大于 port 值。此功能是 Beta 阶段，默认被启用。可以使用 “NetworkPolicyEndPort” 特性门控来禁用 endPort 。
+
+    - **egress.ports.protocol** (string)
+
+      流量必须匹配的网络协议（TCP、UDP 或 SCTP）。如果未指定，此字段默认为 TCP。
+
+## NetworkPolicyStatus {#NetworkPolicyStatus}
+
+<!--
+NetworkPolicyStatus describe the current state of the NetworkPolicy.
+-->
+
+NetworkPolicyStatus 描述有关此 NetworkPolicy 的当前状态。
+
+<hr>
+
+<!--
+- **conditions** ([]Condition)
+
+  *Patch strategy: merge on key `type`*
+  
+  *Map: unique values on key type will be kept during a merge*
+  
+  Conditions holds an array of metav1.Condition that describe the state of the NetworkPolicy. Current service state
+
+  <a name="Condition"></a>
+  *Condition contains details for one aspect of the current state of this API Resource.*
+-->
+
+- **conditions** ([]Condition)
+
+  **补丁策略：根据 `type` 键执行合并操作**
+  
+  **Map：键 type 的唯一值将在合并期间被保留**
+  
+  conditions 包含描述此 NetworkPolicy 状态的 metav1.Condition 数组，即当前服务状态。
+
+  <a name="Condition"></a>
+  **Condition 包含此 API 资源当前状态的一个方面的详细信息。** 
+
+  <!--
+  - **conditions.lastTransitionTime** (Time), required
+
+    lastTransitionTime is the last time the condition transitioned from one status to another. This should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.
+
+    <a name="Time"></a>
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+  -->
+
+  - **conditions.lastTransitionTime** (Time), 必需
+
+    lastTransitionTime 是状况最近一次从一种状态转换到另一种状态的时间。
+    这种变化通常出现在下层状况发生变化的时候。如果无法了解下层状况变化，使用 API 字段更改的时间也是可以接受的。
+
+    <a name="Time"></a>
+    Time 是 time.Time 的包装器，它支持对 YAML 和 JSON 的正确编组。
+    time 包的许多工厂方法提供了包装器。
+
+  <!-- 
+  - **conditions.message** (string), required
+
+    message is a human readable message indicating details about the transition. This may be an empty string. 
+  -->
+
+  - **conditions.message** (string), 必需
+
+    message 是一条人类可读的消息，指示有关转换的详细信息。它可能是一个空字符串。
+
+  <!-- 
+  - **conditions.reason** (string), required
+
+    reason contains a programmatic identifier indicating the reason for the condition's last transition. Producers of specific condition types may define expected values and meanings for this field, and whether the values are considered a guaranteed API. The value should be a CamelCase string. This field may not be empty. 
+  -->
+
+  - **conditions.reason** (string), 必需
+
+    reason 包含一个程序标识符，指示状况最后一次转换的原因。
+    特定状况类型的生产者可以定义该字段的预期值和含义，以及这些值是否可被视为有保证的 API。
+    该值应该是 CamelCase 字符串。此字段不能为空。
+
+  <!-- 
+  - **conditions.status** (string), required
+
+    status of the condition, one of True, False, Unknown. 
+  -->
+
+  - **conditions.status** (string), 必需
+
+    状况的状态为 True、False、Unknown 之一。
+
+  <!-- 
+  - **conditions.type** (string), required
+
+    type of condition in CamelCase or in foo.example.com/CamelCase. 
+  -->
+
+  - **conditions.type** (string), 必需
+
+    CamelCase 或 foo.example.com/CamelCase 形式的状况类型。
+
+  <!-- 
+  - **conditions.observedGeneration** (int64)
+
+    observedGeneration represents the .metadata.generation that the condition was set based upon. For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date with respect to the current state of the instance. 
+  -->
+
+  - **conditions.observedGeneration** (int64)
+
+    observedGeneration 表示设置状况时所基于的 `.metadata.generation`。
+    例如，如果 `.metadata.generation` 当前为 12，但 `.status.conditions[x].observedGeneration` 为 9，
+    则状况相对于实例的当前状态已过期。
+
+
+## NetworkPolicyList {#NetworkPolicyList}
+
+<!--
+NetworkPolicyList is a list of NetworkPolicy objects.
+-->
+
+NetworkPolicyList 是 NetworkPolicy 的集合。
+
+<hr>
+
+- **apiVersion**: networking.k8s.io/v1
+
+
+- **kind**: NetworkPolicyList
+
+
+<!-- 
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata 
+-->
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  标准的对象元数据。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata。
+
+<!--
+- **items** ([]<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>), required
+
+  Items is a list of schema objects.
+-->
+
+- **items** ([]<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>), 必需
+
+  items 是 NetworkPolicy 的列表。
+
+
+## 操作 {#Operations}
+
+<hr>
+
+<!--
+### `get` read the specified NetworkPolicy
+
+#### HTTP Request
+-->
+
+### `get` 读取指定的 NetworkPolicy
+
+#### HTTP 请求
+
+GET /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+
+  name of the NetworkPolicy 
+-->
+- **name** (**路径参数**): string, 必需
+
+  NetworkPolicy 的名称。
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>): OK
+
+401: Unauthorized
+
+<!--
+### `get` read status of the specified NetworkPolicy
+
+#### HTTP Request
+-->
+
+### `get` 读取指定的 NetworkPolicy 的状态
+
+GET /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}/status
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+
+  name of the NetworkPolicy 
+-->
+- **name** (**路径参数**): string, 必需
+
+  NetworkPolicy 的名称。
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind NetworkPolicy
+
+#### HTTP Request
+-->
+
+### `list` 列出或监视 NetworkPolicy 类型的对象
+
+#### HTTP 请求
+
+GET /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!-- 
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a> 
+-->
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!-- 
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a> 
+-->
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!-- - **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a> 
+-->
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!-- 
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a> 
+-->
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!-- 
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a> 
+-->
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a> 
+-->
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!-- 
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a> 
+-->
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!-- 
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a> 
+-->
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!-- 
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a> 
+-->
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicyList" >}}">NetworkPolicyList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind NetworkPolicy
+
+#### HTTP Request
+-->
+
+### `list` 列出或监视 NetworkPolicy 类
+
+#### HTTP Request
+
+GET /apis/networking.k8s.io/v1/networkpolicies
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a> 
+-->
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!-- 
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a> 
+-->
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!-- - **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a> 
+-->
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!-- 
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a> 
+-->
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!-- 
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a> 
+-->
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a> 
+-->
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+
+<!-- 
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a> 
+-->
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!-- 
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a> 
+-->
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!-- 
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a> 
+-->
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicyList" >}}">NetworkPolicyList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a NetworkPolicy
+
+#### HTTP Request
+-->
+
+### `create` 创建 NetworkPolicy
+
+#### HTTP 请求
+
+POST /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+- **body**: <a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>, 必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>): Created
+
+202 (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified NetworkPolicy
+
+#### HTTP Request
+-->
+
+### `update` 替换指定的 NetworkPolicy
+
+#### HTTP 请求
+
+PUT /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+
+  name of the NetworkPolicy 
+-->
+- **name** (**路径参数**): string, 必需
+
+  NetworkPolicy 的名称。
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>, 必需
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **body**: <a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>, 必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>): Created
+
+401: Unauthorized
+
+<!--
+### `update` replace status of the specified NetworkPolicy
+
+#### HTTP Request
+-->
+### `update` 替换指定的 NetworkPolicy 的状态
+
+#### HTTP 请求
+
+PUT /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}/status
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+
+  name of the NetworkPolicy 
+-->
+- **name** (**路径参数**): string, 必需
+
+  NetworkPolicy 的名称。
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>, 必需
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **body**: <a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>, 必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified NetworkPolicy
+
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 NetworkPolicy
+
+#### HTTP 请求
+
+PATCH /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+
+  name of the NetworkPolicy 
+-->
+- **name** (**路径参数**): string, 必需
+
+  NetworkPolicy 的名称。
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, 必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update status of the specified NetworkPolicy
+
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 NetworkPolicy 的状态
+
+#### HTTP 请求
+
+PATCH /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}/status
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+
+  name of the NetworkPolicy 
+-->
+- **name** (**路径参数**): string, 必需
+
+  NetworkPolicy 的名称。
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, 必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/network-policy-v1#NetworkPolicy" >}}">NetworkPolicy</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a NetworkPolicy
+
+#### HTTP Request
+-->
+### `delete` 删除 NetworkPolicy
+
+#### HTTP 请求
+
+DELETE /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the NetworkPolicy
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+- **name** (**路径参数**): string, 必需
+
+  name of the NetworkPolicy
+
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of NetworkPolicy
+
+#### HTTP Request
+-->
+### `deletecollection` 删除 NetworkPolicy 的集合
+
+#### HTTP 请求
+
+DELETE /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+s
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+  
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/policy-resources/pod-disruption-budget-v1.md b/content/zh-cn/docs/reference/kubernetes-api/policy-resources/pod-disruption-budget-v1.md
new file mode 100644
index 0000000000..9590a2f649
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/policy-resources/pod-disruption-budget-v1.md
@@ -0,0 +1,1347 @@
+---
+api_metadata:
+  apiVersion: "policy/v1"
+  import: "k8s.io/api/policy/v1"
+  kind: "PodDisruptionBudget"
+content_type: "api_reference"
+description: "PodDisruptionBudget 是一个对象，用于定义可能对一组 Pod 造成的最大干扰。"
+title: "PodDisruptionBudget"
+weight: 4
+---
+
+<!-- 
+api_metadata:
+  apiVersion: "policy/v1"
+  import: "k8s.io/api/policy/v1"
+  kind: "PodDisruptionBudget"
+content_type: "api_reference"
+description: "PodDisruptionBudget is an object to define the max disruption that can be caused to a collection of pods."
+title: "PodDisruptionBudget"
+weight: 4
+-->
+
+`apiVersion: policy/v1`
+
+`import "k8s.io/api/policy/v1"`
+
+## PodDisruptionBudget {#PodDisruptionBudget}
+
+<!-- 
+PodDisruptionBudget is an object to define the max disruption that can be caused to a collection of pods 
+-->
+PodDisruptionBudget 是一个对象，用于定义可能对一组 Pod 造成的最大干扰。
+
+<hr>
+
+- **apiVersion**: policy/v1
+
+- **kind**: PodDisruptionBudget
+
+<!-- 
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata 
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  标准的对象元数据。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata。
+
+<!-- 
+- **spec** (<a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudgetSpec" >}}">PodDisruptionBudgetSpec</a>)
+
+  Specification of the desired behavior of the PodDisruptionBudget. 
+-->
+- **spec** (<a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudgetSpec" >}}">PodDisruptionBudgetSpec</a>)
+
+  PodDisruptionBudget 预期行为的规约。
+
+<!-- 
+- **status** (<a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudgetStatus" >}}">PodDisruptionBudgetStatus</a>)
+
+  Most recently observed status of the PodDisruptionBudget. 
+-->
+
+- **status** (<a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudgetStatus" >}}">PodDisruptionBudgetStatus</a>)
+
+  此 PodDisruptionBudget 的最近观测状态。
+
+## PodDisruptionBudgetSpec {#PodDisruptionBudgetSpec}
+
+<!-- 
+PodDisruptionBudgetSpec is a description of a PodDisruptionBudget. 
+-->
+PodDisruptionBudgetSpec 是对 PodDisruptionBudget 的描述。
+
+<hr>
+
+<!-- 
+- **maxUnavailable** (IntOrString)
+
+  An eviction is allowed if at most "maxUnavailable" pods selected by "selector" are unavailable after the eviction, i.e. even in absence of the evicted pod. For example, one can prevent all voluntary evictions by specifying 0. This is a mutually exclusive setting with "minAvailable".
+
+  <a name="IntOrString"></a>
+  *IntOrString is a type that can hold an int32 or a string.  When used in JSON or YAML marshalling and unmarshalling, it produces or consumes the inner type.  This allows you to have, for example, a JSON field that can accept a name or number.* 
+-->
+
+- **maxUnavailable** (IntOrString)
+
+  如果 “selector” 所选中的 Pod 中最多有 “maxUnavailable” Pod 在驱逐后不可用（即去掉被驱逐的 Pod 之后），则允许驱逐。
+  例如，可以通过将此字段设置为 0 来阻止所有自愿驱逐。此字段是与 “minAvailable” 互斥的设置。
+
+  <a name="IntOrString"></a>
+  IntOrString 是一种可以包含 int32 或字符串数值的类型。在 JSON 或 YAML 编组和解组时，
+  会生成或使用内部类型。例如，此类型允许你定义一个可以接受名称或数字的 JSON 字段。
+
+<!-- 
+- **minAvailable** (IntOrString)
+
+  An eviction is allowed if at least "minAvailable" pods selected by "selector" will still be available after the eviction, i.e. even in the absence of the evicted pod.  So for example you can prevent all voluntary evictions by specifying "100%".
+
+  <a name="IntOrString"></a>
+  *IntOrString is a type that can hold an int32 or a string.  When used in JSON or YAML marshalling and unmarshalling, it produces or consumes the inner type.  This allows you to have, for example, a JSON field that can accept a name or number.* 
+-->
+
+- **minAvailable** (IntOrString)
+
+  如果 “selector” 所选中的 Pod 中，至少 “minAvailable” 个 Pod 在驱逐后仍然可用（即去掉被驱逐的 Pod 之后），则允许驱逐。
+  因此，你可以通过将此字段设置为 “100%” 来禁止所有自愿驱逐。
+
+  <a name="IntOrString"></a>
+  IntOrString 是一种可以包含 int32 或字符串数值的类型。在 JSON 或 YAML 编组和解组时，
+  会生成或使用内部类型。例如，此类型允许你定义一个可以接受名称或数字的 JSON 字段。
+
+<!-- 
+- **selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+  Label query over pods whose evictions are managed by the disruption budget. A null selector will match no pods, while an empty ({}) selector will select all pods within the namespace. 
+-->
+
+- **selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+  标签查询，用来选择其驱逐由干扰预算来管理的 Pod 集合。
+  选择算符为 null 时将不会匹配任何 Pod，而空 ({}) 选择算符将选中名字空间内的所有 Pod。
+
+## PodDisruptionBudgetStatus {#PodDisruptionBudgetStatus}
+
+<!-- 
+PodDisruptionBudgetStatus represents information about the status of a PodDisruptionBudget. Status may trail the actual state of a system.
+-->
+PodDisruptionBudgetStatus 表示有关此 PodDisruptionBudget 状态的信息。状态可能会反映系统的实际状态。
+
+<hr>
+
+<!-- 
+- **currentHealthy** (int32), required
+
+  current number of healthy pods 
+-->
+
+- **currentHealthy** (int32), 必需
+
+  当前健康 Pod 的数量。
+
+<!-- 
+- **desiredHealthy** (int32), required
+
+  minimum desired number of healthy pods 
+-->
+
+- **desiredHealthy** (int32), 必需
+
+  健康 Pod 的最小期望值。
+
+<!-- 
+- **disruptionsAllowed** (int32), required
+
+  Number of pod disruptions that are currently allowed. 
+-->
+
+- **disruptionsAllowed** (int32), 必需 
+  
+  当前允许的 Pod 干扰计数。
+
+- **conditions** ([]Condition)
+
+  <!-- 
+  *Patch strategy: merge on key `type`*
+  
+  *Map: unique values on key type will be kept during a merge*
+  
+  Conditions contain conditions for PDB. The disruption controller sets the DisruptionAllowed condition. The following are known values for the reason field (additional reasons could be added in the future): 
+  - SyncFailed: The controller encountered an error and wasn't able to compute
+                the number of allowed disruptions. Therefore no disruptions are
+                allowed and the status of the condition will be False. 
+  - InsufficientPods: The number of pods are either at or below the number
+                      required by the PodDisruptionBudget. No disruptions are
+                      allowed and the status of the condition will be False.
+  - SufficientPods: There are more pods than required by the PodDisruptionBudget.
+                    The condition will be True, and the number of allowed
+                    disruptions are provided by the disruptionsAllowed property. 
+  -->
+
+  **补丁策略：根据 `type` 键执行合并操作**
+  
+  **Map：键 type 的唯一值将在合并期间被保留**
+  
+  conditions 包含 PDB 的状况。干扰控制器会设置 DisruptionAllowed 状况。
+  以下是 reason 字段的已知值（将来可能会添加其他原因）：
+  
+  - SyncFailed：控制器遇到错误并且无法计算允许的干扰计数。因此不允许任何干扰，且状况的状态将变为 False。
+  - InsufficientPods：Pod 的数量只能小于或等于 PodDisruptionBudget 要求的数量。
+    不允许任何干扰，且状况的状态将是 False。
+  - SufficientPods：Pod 个数超出 PodDisruptionBudget 所要求的阈值。
+    此状况为 True 时，基于 disruptsAllowed 属性确定所允许的干扰数目。
+
+  <!-- 
+  <a name="Condition"></a>
+  *Condition contains details for one aspect of the current state of this API Resource.* 
+  -->
+
+  <a name="Condition"></a>
+  Condition 包含此 API 资源当前状态的一个方面的详细信息。
+
+  <!-- 
+  - **conditions.lastTransitionTime** (Time), required
+
+    lastTransitionTime is the last time the condition transitioned from one status to another. This should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.
+
+    <a name="Time"></a>
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.* 
+  -->
+
+  - **conditions.lastTransitionTime** (Time), 必需
+
+    lastTransitionTime 是状况最近一次从一种状态转换到另一种状态的时间。
+    这种变化通常出现在下层状况发生变化的时候。如果无法了解下层状况变化，使用 API 字段更改的时间也是可以接受的。
+
+    <a name="Time"></a>
+    Time 是 time.Time 的包装器，它支持对 YAML 和 JSON 的正确编组。
+    time 包的许多工厂方法提供了包装器。
+
+  <!-- 
+  - **conditions.message** (string), required
+
+    message is a human readable message indicating details about the transition. This may be an empty string. 
+  -->
+
+  - **conditions.message** (string), 必需
+
+    message 是一条人类可读的消息，指示有关转换的详细信息。它可能是一个空字符串。
+
+  <!-- 
+  - **conditions.reason** (string), required
+
+    reason contains a programmatic identifier indicating the reason for the condition's last transition. Producers of specific condition types may define expected values and meanings for this field, and whether the values are considered a guaranteed API. The value should be a CamelCase string. This field may not be empty. 
+  -->
+
+  - **conditions.reason** (string), 必需
+
+    reason 包含一个程序标识符，指示状况最后一次转换的原因。
+    特定状况类型的生产者可以定义该字段的预期值和含义，以及这些值是否可被视为有保证的 API。
+    该值应该是 CamelCase 字符串。此字段不能为空。
+
+  <!-- 
+  - **conditions.status** (string), required
+
+    status of the condition, one of True, False, Unknown. 
+  -->
+
+  - **conditions.status** (string), 必需
+
+    状况的状态为 True、False、Unknown 之一。
+
+  <!-- 
+  - **conditions.type** (string), required
+
+    type of condition in CamelCase or in foo.example.com/CamelCase. 
+  -->
+
+  - **conditions.type** (string), 必需
+
+    CamelCase 或 foo.example.com/CamelCase 形式的状况类型。
+
+  <!-- 
+  - **conditions.observedGeneration** (int64)
+
+    observedGeneration represents the .metadata.generation that the condition was set based upon. For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date with respect to the current state of the instance. 
+  -->
+
+  - **conditions.observedGeneration** (int64)
+
+    observedGeneration 表示设置状况时所基于的 .metadata.generation。
+    例如，如果 .metadata.generation 当前为 12，但 .status.conditions[x].observedGeneration 为 9，
+    则状况相对于实例的当前状态已过期。
+
+<!-- 
+- **disruptedPods** (map[string]Time)
+
+  DisruptedPods contains information about pods whose eviction was processed by the API server eviction subresource handler but has not yet been observed by the PodDisruptionBudget controller. A pod will be in this map from the time when the API server processed the eviction request to the time when the pod is seen by PDB controller as having been marked for deletion (or after a timeout). The key in the map is the name of the pod and the value is the time when the API server processed the eviction request. If the deletion didn't occur and a pod is still there it will be removed from the list automatically by PodDisruptionBudget controller after some time. If everything goes smooth this map should be empty for the most of the time. Large number of entries in the map may indicate problems with pod deletions. 
+-->
+
+- **disruptedPods** (map[string]Time)
+
+  disruptedPods 包含有关 Pod 的一些信息，这些 Pod 的驱逐操作已由 API 服务器上的 eviction 子资源处理程序处理,
+  但尚未被 PodDisruptionBudget 控制器观察到。
+  从 API 服务器处理驱逐请求到 PDB 控制器看到该 Pod 已标记为删除（或超时后），Pod 将记录在此映射中。
+  映射中的键名是 Pod 的名称，键值是 API 服务器处理驱逐请求的时间。
+  如果删除没有发生并且 Pod 仍然存在，PodDisruptionBudget 控制器将在一段时间后自动将 Pod 从列表中删除。
+  如果一切顺利，此映射大部分时间应该是空的。映射中的存在大量条目可能表明 Pod 删除存在问题。
+
+  <a name="Time"></a>
+  <!-- 
+  *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.* 
+  -->
+  Time 是 time.Time 的包装器，它支持对 YAML 和 JSON 的正确编组。
+  time 包的许多工厂方法提供了包装器。
+
+<!-- 
+- **observedGeneration** (int64)
+
+  Most recent generation observed when updating this PDB status. DisruptionsAllowed and other status information is valid only if observedGeneration equals to PDB's object generation. 
+-->
+
+- **observedGeneration** (int64)
+
+  更新此 PDB 状态时观察到的最新一代。
+  DisruptionsAllowed 和其他状态信息仅在 observedGeneration 等于 PDB 的对象的代数时才有效。
+
+## PodDisruptionBudgetList {#PodDisruptionBudgetList}
+
+<!-- 
+PodDisruptionBudgetList is a collection of PodDisruptionBudgets. 
+-->
+
+PodDisruptionBudgetList 是 PodDisruptionBudget 的集合。
+
+<hr>
+
+- **apiVersion**: policy/v1
+
+- **kind**: PodDisruptionBudgetList
+
+<!-- 
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata 
+-->
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  标准的对象元数据。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata。
+
+<!-- 
+- **items** ([]<a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudget" >}}">PodDisruptionBudget</a>), required
+
+  Items is a list of PodDisruptionBudgets 
+-->
+- **items** ([]<a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudget" >}}">PodDisruptionBudget</a>), 必需
+
+  items 是 PodDisruptionBudgets 的列表。
+
+<!-- 
+## Operations {#Operations} 
+-->
+
+## 操作 {#Operations}
+
+<hr>
+
+<!-- 
+### `get` read the specified PodDisruptionBudget
+
+#### HTTP Request 
+-->
+
+### `get` 读取指定的 PodDisruptionBudget
+
+#### HTTP 请求
+
+GET /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+
+  name of the PodDisruptionBudget 
+-->
+- **name** (**路径参数**): string, 必需
+
+  PodDisruptionBudget 的名称。
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudget" >}}">PodDisruptionBudget</a>): OK
+
+401: Unauthorized
+
+<!-- 
+### `get` read status of the specified PodDisruptionBudget
+
+#### HTTP Request 
+-->
+### `get` 读取指定 PodDisruptionBudget 的状态
+
+#### HTTP 请求
+
+GET /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}/status
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+
+  name of the PodDisruptionBudget 
+-->
+- **name** (**路径参数**): string, 必需
+
+  PodDisruptionBudget 的名称。
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+响应
+
+200 (<a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudget" >}}">PodDisruptionBudget</a>): OK
+
+401: Unauthorized
+
+<!-- 
+### `list` list or watch objects of kind PodDisruptionBudget
+
+#### HTTP Request 
+-->
+### `list` 列出或监视 PodDisruptionBudget 类型的对象
+
+#### HTTP 请求
+
+GET /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!-- 
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a> 
+-->
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!-- 
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a> 
+-->
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!-- - **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a> 
+-->
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!-- 
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a> 
+-->
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!-- 
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a> 
+-->
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a> 
+-->
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!-- 
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a> 
+-->
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!-- 
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a> 
+-->
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!-- 
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a> 
+-->
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudgetList" >}}">PodDisruptionBudgetList</a>): OK
+
+401: Unauthorized
+
+<!-- 
+### `list` list or watch objects of kind PodDisruptionBudget
+
+#### HTTP Request 
+-->
+### `list` 列出或监视 PodDisruptionBudget 类型的对象
+
+#### HTTP 请求
+
+GET /apis/policy/v1/poddisruptionbudgets
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a> 
+-->
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!-- 
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a> 
+-->
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!-- 
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+-->
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!-- 
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a> 
+-->
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!-- 
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a> 
+-->
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a> 
+-->
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!-- 
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a> 
+-->
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!-- 
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a> 
+-->
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!-- 
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a> 
+-->
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudgetList" >}}">PodDisruptionBudgetList</a>): OK
+
+401: Unauthorized
+
+<!-- 
+### `create` create a PodDisruptionBudget
+
+#### HTTP Request 
+-->
+### `create` 创建一个 PodDisruptionBudget
+#### HTTP 请求
+
+POST /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!-- 
+- **body**: <a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudget" >}}">PodDisruptionBudget</a>, required 
+-->
+- **body**: <a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudget" >}}">PodDisruptionBudget</a>, 
+必需
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a> 
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!-- 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a> 
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudget" >}}">PodDisruptionBudget</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudget" >}}">PodDisruptionBudget</a>): Created
+
+202 (<a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudget" >}}">PodDisruptionBudget</a>): Accepted
+
+401: Unauthorized
+
+<!-- 
+### `update` replace the specified PodDisruptionBudget
+
+#### HTTP Request 
+-->
+### `update` 替换指定的 PodDisruptionBudget
+
+#### HTTP 请求
+
+PUT /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+
+  name of the PodDisruptionBudget 
+-->
+- **name** (**路径参数**): string, 必需
+
+  PodDisruptionBudget 的名称。
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!-- 
+- **body**: <a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudget" >}}">PodDisruptionBudget</a>, required 
+-->
+- **body**: <a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudget" >}}">PodDisruptionBudget</a>, 
+必需
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a> 
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a> 
+
+<!-- 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a> 
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!-- 
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudget" >}}">PodDisruptionBudget</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudget" >}}">PodDisruptionBudget</a>): Created
+
+401: Unauthorized
+
+<!-- 
+### `update` replace status of the specified PodDisruptionBudget
+
+#### HTTP Request 
+-->
+### `update` 替换指定 PodDisruptionBudget 的状态
+
+#### HTTP 请求
+
+PUT /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}/status
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+
+  name of the PodDisruptionBudget
+-->
+- **name** (**路径参数**): string, 必需
+
+  PodDisruptionBudget 的名称。
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!-- 
+- **body**: <a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudget" >}}">PodDisruptionBudget</a>, required 
+-->
+- **body**: <a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudget" >}}">PodDisruptionBudget</a>, 
+必需
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</
+
+<!-- 
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a> 
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!-- 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a> 
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!-- 
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudget" >}}">PodDisruptionBudget</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudget" >}}">PodDisruptionBudget</a>): Created
+
+401: Unauthorized
+
+<!-- 
+### `patch` partially update the specified PodDisruptionBudget
+
+#### HTTP Request 
+-->
+### `patch` 部分更新指定的 PodDisruptionBudget
+#### HTTP 请求
+
+PATCH /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+
+  name of the PodDisruptionBudget 
+-->
+- **name** (**路径参数**): string, 必需
+
+  PodDisruptionBudget 的名称
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+<!-- 
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required 
+-->
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, 必需
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a> 
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!-- 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a> 
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!-- 
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a> 
+-->
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudget" >}}">PodDisruptionBudget</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudget" >}}">PodDisruptionBudget</a>): Created
+
+401: Unauthorized
+
+<!-- 
+### `patch` partially update status of the specified PodDisruptionBudget
+
+#### HTTP Request 
+-->
+### `patch` 部分更新指定 PodDisruptionBudget 的状态
+#### HTTP 请求
+
+PATCH /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}/status
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+
+  name of the PodDisruptionBudget 
+-->
+- **name** (**路径参数**): string, 必需
+
+  PodDisruptionBudget 的名称。
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!-- 
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required 
+-->
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, 必需
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a> 
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!-- 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a> 
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a> 
+-->
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudget" >}}">PodDisruptionBudget</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/pod-disruption-budget-v1#PodDisruptionBudget" >}}">PodDisruptionBudget</a>): Created
+
+401: Unauthorized
+
+<!-- 
+### `delete` delete a PodDisruptionBudget
+
+#### HTTP Request 
+-->
+### `delete` 删除 PodDisruptionBudget
+
+#### HTTP 请求
+
+DELETE /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+
+  name of the PodDisruptionBudget 
+-->
+- **name** (**路径参数**): string, 必需
+
+  PodDisruptionBudget 的名称。
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a> 
+-->
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a> 
+-->
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!-- 
+### `deletecollection` delete collection of PodDisruptionBudget
+
+#### HTTP Request 
+-->
+### `deletecollection` 删除 PodDisruptionBudget 的集合
+
+#### HTTP Request
+
+DELETE /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!-- 
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a> 
+-->
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a> 
+-->
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!-- 
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a> 
+-->
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!-- 
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+-->
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!-- 
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+-->
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a> 
+-->
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!-- 
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+-->
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!-- 
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a> 
+-->
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!-- 
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a> 
+-->
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/policy-resources/pod-security-policy-v1beta1.md b/content/zh-cn/docs/reference/kubernetes-api/policy-resources/pod-security-policy-v1beta1.md
new file mode 100644
index 0000000000..5817459bc2
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/policy-resources/pod-security-policy-v1beta1.md
@@ -0,0 +1,1091 @@
+---
+api_metadata:
+  apiVersion: "policy/v1beta1"
+  import: "k8s.io/api/policy/v1beta1"
+  kind: "PodSecurityPolicy"
+content_type: "api_reference"
+description: "PodSecurityPolicy 对影响到安全上下文的请求能力进行治理，而安全上下文可以应用到 Pod 和容器上。"
+title: "PodSecurityPolicy v1beta1"
+weight: 5
+---
+<!--
+api_metadata:
+  apiVersion: "policy/v1beta1"
+  import: "k8s.io/api/policy/v1beta1"
+  kind: "PodSecurityPolicy"
+content_type: "api_reference"
+description: "PodSecurityPolicy governs the ability to make requests that affect the Security Context that will be applied to a pod and container."
+title: "PodSecurityPolicy v1beta1"
+weight: 5
+auto_generated: true
+-->
+
+`apiVersion: policy/v1beta1`
+
+`import "k8s.io/api/policy/v1beta1"`
+
+## PodSecurityPolicy {#PodSecurityPolicy}
+
+<!--
+PodSecurityPolicy governs the ability to make requests that affect the Security Context that will be applied to a pod and container. Deprecated in 1.21.
+-->
+PodSecurityPolicy 对影响到安全上下文的请求能力进行治理，而安全上下文可以应用到 Pod 和容器上。
+在 1.21 中已被弃用。
+
+<hr>
+
+- **apiVersion**: policy/v1beta1
+
+- **kind**: PodSecurityPolicy
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../policy-resources/pod-security-policy-v1beta1#PodSecurityPolicySpec" >}}">PodSecurityPolicySpec</a>)
+  spec defines the policy enforced.
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  
+  标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../policy-resources/pod-security-policy-v1beta1#PodSecurityPolicySpec" >}}">PodSecurityPolicySpec</a>)
+  
+  spec 定义强制执行的策略。
+
+## PodSecurityPolicySpec {#PodSecurityPolicySpec}
+
+<!--
+PodSecurityPolicySpec defines the policy enforced.
+-->
+PodSecurityPolicySpec 定义强制执行的策略。
+
+<hr>
+
+<!--
+- **runAsUser** (RunAsUserStrategyOptions), required
+  runAsUser is the strategy that will dictate the allowable RunAsUser values that may be set.
+
+  <a name="RunAsUserStrategyOptions"></a>
+  *RunAsUserStrategyOptions defines the strategy type and any options used to create the strategy.*
+-->
+- **runAsUser** (RunAsUserStrategyOptions)，必需
+  
+  runAsUser 是一种策略，它将规定允许为 runAsUser 设置的值。
+  
+  <a name="RunAsUserStrategyOptions"></a> 
+  **RunAsUserStrategyOptions 定义策略类型和用于创建该策略的任意选项。**
+  
+  <!--
+  - **runAsUser.rule** (string), required
+    rule is the strategy that will dictate the allowable RunAsUser values that may be set.
+
+  - **runAsUser.ranges** ([]IDRange)
+    ranges are the allowed ranges of uids that may be used. If you would like to force a single uid then supply a single range with the same start and end. Required for MustRunAs.
+
+    <a name="IDRange"></a>
+    *IDRange provides a min/max of an allowed range of IDs.*
+  -->
+
+  - **runAsUser.rule** (string)，必需
+    
+    rule 是一种策略，它将规定允许为 runAsUser 设置的值。
+  
+  - **runAsUser.ranges** ([]IDRange)
+    
+    ranges 是可以使用的 UID 的允许范围。
+    如果你要强制使用某个确定 UID，则应提供起点值和终点值相同的范围设定。
+    对于 mustRunAs 而言是必需的。
+    
+    <a name="IDRange"></a> 
+    **IDRange 提供了 ID 的最小/最大允许范围。**
+    
+    <!--
+    - **runAsUser.ranges.max** (int64), required
+      max is the end of the range, inclusive.
+
+    - **runAsUser.ranges.min** (int64), required
+      min is the start of the range, inclusive.
+    -->
+
+    - **runAsUser.ranges.max** (int64)，必需
+      
+      max 是范围的终点，该值包含在此范围内。
+    
+    - **runAsUser.ranges.min** (int64)，必需
+      
+      min 是范围的起点，该值包含在此范围内。
+
+<!--
+- **runAsGroup** (RunAsGroupStrategyOptions)
+  RunAsGroup is the strategy that will dictate the allowable RunAsGroup values that may be set. If this field is omitted, the pod's RunAsGroup can take any value. This field requires the RunAsGroup feature gate to be enabled.
+
+  <a name="RunAsGroupStrategyOptions"></a>
+  *RunAsGroupStrategyOptions defines the strategy type and any options used to create the strategy.*
+-->
+- **runAsGroup** (RunAsGroupStrategyOptions)
+  
+  runAsGroup 是一种策略，它将规定可以为 runAsGroup 设置的值。
+  如果省略此字段，则 Pod 的 runAsGroup 可以取任何值。
+  此字段要求启用 `RunAsGroup` 特性门控。
+  
+  <a name="RunAsGroupStrategyOptions"></a> 
+  **RunAsGroupStrategyOptions 定义策略类型和用于创建该策略的任意选项。**
+  
+  <!--
+  - **runAsGroup.rule** (string), required
+    rule is the strategy that will dictate the allowable RunAsGroup values that may be set.
+
+  - **runAsGroup.ranges** ([]IDRange)
+    ranges are the allowed ranges of gids that may be used. If you would like to force a single gid then supply a single range with the same start and end. Required for MustRunAs.
+
+    <a name="IDRange"></a>
+    *IDRange provides a min/max of an allowed range of IDs.*
+  -->
+
+  - **runAsGroup.rule** (string)，必需
+    
+    rule 是一种策略，它将规定可以为 runAsGroup 设置的值。
+  
+  - **runAsGroup.ranges** ([]IDRange)
+    
+    ranges 是可以使用的 GID 的范围。
+    如果你要强制使用某个确定的 GID，则可提供起点和终点相同的范围设定。
+    对于 mustRunAs 而言是必需的。
+    
+    <a name="IDRange"></a> 
+    **IDRange 提供了 ID 的最小/最大允许范围。**
+    
+    <!--
+    - **runAsGroup.ranges.max** (int64), required
+      max is the end of the range, inclusive.
+
+    - **runAsGroup.ranges.min** (int64), required
+      min is the start of the range, inclusive.
+    -->
+    
+    - **runAsGroup.ranges.max** (int64)，必需
+      
+      max 是范围的终点，该值包含在此范围内。
+    
+    - **runAsGroup.ranges.min** (int64)，必需
+      
+      min 是范围的起点，该值包含在此范围内。
+
+<!--
+- **fsGroup** (FSGroupStrategyOptions), required
+  fsGroup is the strategy that will dictate what fs group is used by the SecurityContext.
+
+  <a name="FSGroupStrategyOptions"></a>
+  *FSGroupStrategyOptions defines the strategy type and options used to create the strategy.*
+-->
+- **fsGroup** (FSGroupStrategyOptions)，必需
+  
+  fsGroup 是一种策略，它将规定 SecurityContext 将使用哪个 fs 组。
+  
+  <a name="FSGroupStrategyOptions"></a> 
+  **FSGroupStrategyOptions 定义策略类型和用于创建该策略的任意选项。**
+  
+  <!--
+  - **fsGroup.ranges** ([]IDRange)
+    ranges are the allowed ranges of fs groups.  If you would like to force a single fs group then supply a single range with the same start and end. Required for MustRunAs.
+
+    <a name="IDRange"></a>
+    *IDRange provides a min/max of an allowed range of IDs.*
+  -->
+
+  - **fsGroup.ranges** ([]IDRange)
+    
+    ranges 是 fs 组的允许范围。
+    如果你要强制使用某个确定的 fs 组，则应提供起点和终点相同的范围设定。
+    对于 mustRunAs 而言是必需的。
+    
+    <a name="IDRange"></a>
+    **IDRange 提供了 ID 的最小/最大允许范围。**
+    
+    <!--
+    - **fsGroup.ranges.max** (int64), required
+      max is the end of the range, inclusive.
+
+    - **fsGroup.ranges.min** (int64), required
+      min is the start of the range, inclusive.
+    -->
+
+    - **fsGroup.ranges.max** (int64)，必需
+      
+      max 是范围的终点，该值包含在此范围内。
+    
+    - **fsGroup.ranges.min** (int64)，必需
+      
+      min 是范围的起点，该值包含在此范围内。
+  
+  <!--
+  - **fsGroup.rule** (string)
+
+    rule is the strategy that will dictate what FSGroup is used in the SecurityContext.
+  -->
+
+  - **fsGroup.rule** (string)
+    
+    rule 是一种策略，它将规定 SecurityContext 中使用哪个 FSGroup。
+
+<!--
+- **supplementalGroups** (SupplementalGroupsStrategyOptions), required
+  supplementalGroups is the strategy that will dictate what supplemental groups are used by the SecurityContext.
+
+  <a name="SupplementalGroupsStrategyOptions"></a>
+  *SupplementalGroupsStrategyOptions defines the strategy type and options used to create the strategy.*
+-->
+- **supplementalGroups** (SupplementalGroupsStrategyOptions)，必需
+  
+  supplementalGroups 是一种策略，它将规定 SecurityContext 将使用哪个补充组。
+  
+  <a name="SupplementalGroupsStrategyOptions"></a> 
+  **SupplementalGroupsStrategyOptions 定义策略类型和用于创建该策略的任意选项。**
+  
+  <!--
+  - **supplementalGroups.ranges** ([]IDRange)
+    ranges are the allowed ranges of supplemental groups.  If you would like to force a single supplemental group then supply a single range with the same start and end. Required for MustRunAs.
+
+    <a name="IDRange"></a>
+    *IDRange provides a min/max of an allowed range of IDs.*
+  -->
+
+  - **supplementalGroups.ranges** ([]IDRange)
+    
+    ranges 是补充组的允许范围。
+    如果你要强制使用固定的某个补充组，则应提供起点和终点相同的范围设定。
+    对于 mustRunAs 而言是必需的。
+    
+    <a name="IDRange"></a>
+    **IDRange 提供了 ID 的最小/最大允许范围。**
+    
+    <!--
+    - **supplementalGroups.ranges.max** (int64), required
+      max is the end of the range, inclusive.
+
+    - **supplementalGroups.ranges.min** (int64), required
+      min is the start of the range, inclusive.
+    -->
+
+    - **supplementalGroups.ranges.max** (int64)，必需
+      
+      max 是范围的终点，该值包含在此范围内。
+    
+    - **supplementalGroups.ranges.min** (int64)，必需
+      
+      min 是范围的起点，该值包含在此范围内。
+  
+  <!--
+  - **supplementalGroups.rule** (string)
+
+    rule is the strategy that will dictate what supplemental groups is used in the SecurityContext.
+  -->
+
+  - **supplementalGroups.rule** (string)
+    
+    rule 是一种策略，它将规定 SecurityContext 中使用哪个补充组。
+
+<!--
+- **seLinux** (SELinuxStrategyOptions), required
+  seLinux is the strategy that will dictate the allowable labels that may be set.
+
+  <a name="SELinuxStrategyOptions"></a>
+  *SELinuxStrategyOptions defines the strategy type and any options used to create the strategy.*
+-->
+- **seLinux** (SELinuxStrategyOptions)，必需
+  
+  seLinux 是一种策略，它将规定可以设置的标签集合。
+  
+  <a name="SELinuxStrategyOptions"></a> 
+  **SELinuxStrategyOptions 定义策略类型和用于创建该策略的任意选项。**
+
+  <!--
+  - **seLinux.rule** (string), required
+
+    rule is the strategy that will dictate the allowable labels that may be set.
+
+  - **seLinux.seLinuxOptions** (SELinuxOptions)
+
+    seLinuxOptions required to run as; required for MustRunAs More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
+
+    <a name="SELinuxOptions"></a>
+    *SELinuxOptions are the labels to be applied to the container*
+  -->  
+
+  - **seLinux.rule** (string)，必需
+    
+    rule 是一种策略，它将规定可以设置的标签集合。
+  
+  - **seLinux.seLinuxOptions** (SELinuxOptions)
+    
+    seLinuxOptions 是运行所必需的。对于 mustRunAs 而言是必需的。更多信息：
+    https://kubernetes.io/zh-cn/docs/tasks/configure-pod-container/security-context/
+    
+    <a name="SELinuxOptions"></a>
+    **SELinuxOptions 是应用到容器的标签。**
+    
+    <!--
+    - **seLinux.seLinuxOptions.level** (string)
+      Level is SELinux level label that applies to the container.
+
+    - **seLinux.seLinuxOptions.role** (string)
+      Role is a SELinux role label that applies to the container.
+
+    - **seLinux.seLinuxOptions.type** (string)
+      Type is a SELinux type label that applies to the container.
+
+    - **seLinux.seLinuxOptions.user** (string)
+      User is a SELinux user label that applies to the container.
+    -->
+    
+    - **seLinux.seLinuxOptions.level** (string)
+      
+      level 是应用到容器的 SELinux 级别标签。
+    
+    - **seLinux.seLinuxOptions.role** (string)
+      
+      role 是应用到容器的 SELinux 角色标签。
+    
+    - **seLinux.seLinuxOptions.type** (string)
+      
+      type 是应用到容器的 SELinux 类型标签。
+    
+    - **seLinux.seLinuxOptions.user** (string)
+      
+      user 是应用到容器的 SELinux 用户标签。
+
+<!--
+- **readOnlyRootFilesystem** (boolean)
+  readOnlyRootFilesystem when set to true will force containers to run with a read only root file system.  If the container specifically requests to run with a non-read only root file system the PSP should deny the pod. If set to false the container may run with a read only root file system if it wishes but it will not be forced to.
+
+- **privileged** (boolean)
+  privileged determines if a pod can request to be run as privileged.
+-->
+- **readOnlyRootFilesystem** (boolean)
+  
+  readOnlyRootFilesystem 设为 true 时将强制容器使用只读根文件系统来运行。
+  如果容器明确请求以非只读根文件系统来运行，则 PSP 应拒绝该 Pod。
+  如果设置为 false，则如果愿意，容器可以以只读根文件系统来运行，但不是必须使用只读根文件系统。
+
+- **privileged** (boolean)
+  
+  privileged 决定 Pod 是否可以请求以特权模式运行。
+
+<!--
+- **allowPrivilegeEscalation** (boolean)
+  allowPrivilegeEscalation determines if a pod can request to allow privilege escalation. If unspecified, defaults to true.
+
+- **defaultAllowPrivilegeEscalation** (boolean)
+  defaultAllowPrivilegeEscalation controls the default setting for whether a process can gain more privileges than its parent process.
+-->
+- **allowPrivilegeEscalation** (boolean)
+  
+  allowPrivilegeEscalation 决定 Pod 是否可以请求允许提升特权。如果未指定，则默认为 true。
+
+- **defaultAllowPrivilegeEscalation** (boolean)
+  
+  defaultAllowPrivilegeEscalation 控制一个进程是否可以获得比其父进程更多权限的默认设置。
+
+<!--
+- **allowedCSIDrivers** ([]AllowedCSIDriver)
+  AllowedCSIDrivers is an allowlist of inline CSI drivers that must be explicitly set to be embedded within a pod spec. An empty value indicates that any CSI driver can be used for inline ephemeral volumes. This is a beta field, and is only honored if the API server enables the CSIInlineVolume feature gate.
+
+  <a name="AllowedCSIDriver"></a>
+  *AllowedCSIDriver represents a single inline CSI Driver that is allowed to be used.*
+-->
+- **allowedCSIDrivers** ([]AllowedCSIDriver)
+  
+  allowedCSIDrivers 是允许使用的内联 CSI 驱动列表，这些驱动必须被显式嵌入到 Pod 规约中。
+  空值表示任何 CSI 驱动都可以用于内联临时卷。这是一个 beta 字段，
+  只有 API 服务器启用 CSIInlineVolume 特性门控，才会使用此字段。
+  
+  <a name="AllowedCSIDriver"></a>
+  **AllowedCSIDriver 表示允许使用的单个内联 CSI 驱动。**
+
+  <!--
+  - **allowedCSIDrivers.name** (string), required
+    Name is the registered name of the CSI driver
+  -->  
+  
+  - **allowedCSIDrivers.name** (string)，必需
+    
+    name 是 CSI 驱动的注册名称。
+
+<!--
+- **allowedCapabilities** ([]string)
+  allowedCapabilities is a list of capabilities that can be requested to add to the container. Capabilities in this field may be added at the pod author's discretion. You must not list a capability in both allowedCapabilities and requiredDropCapabilities.
+
+- **requiredDropCapabilities** ([]string)
+  requiredDropCapabilities are the capabilities that will be dropped from the container.  These are required to be dropped and cannot be added.
+-->
+- **allowedCapabilities** ([]string)
+  
+  allowedCapabilities 是可以请求添加到容器的权能列表。
+  这个字段中的权能可以由 Pod 作者自行添加。
+  你不得同时在 allowedCapabilities 和 requiredDropCapabilities 中列出同一个权能。
+
+- **requiredDropCapabilities** ([]string)
+  
+  requiredDropCapabilities 是将从容器中丢弃的权能。这些权能需要被丢弃，且不能添加。
+
+<!--
+- **defaultAddCapabilities** ([]string)
+
+  defaultAddCapabilities is the default set of capabilities that will be added to the container unless the pod spec specifically drops the capability.  You may not list a capability in both defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly allowed, and need not be included in the allowedCapabilities list.
+-->
+- **defaultAddCapabilities** ([]string)
+  
+  defaultAddCapabilities 是默认被添加到容器的权能集，除非 Pod 规约特意丢弃该权能。
+  你不可以同时在 defaultAddCapabilities 和 requiredDropCapabilities 中列出同一个权能。
+  此处添加的权能是被隐式允许的，不必包括在 allowedCapabilities 列表中。
+
+<!--
+- **allowedFlexVolumes** ([]AllowedFlexVolume)
+  allowedFlexVolumes is an allowlist of Flexvolumes.  Empty or nil indicates that all Flexvolumes may be used.  This parameter is effective only when the usage of the Flexvolumes is allowed in the "volumes" field.
+
+  <a name="AllowedFlexVolume"></a>
+  *AllowedFlexVolume represents a single Flexvolume that is allowed to be used.*
+-->
+- **allowedFlexVolumes** ([]AllowedFlexVolume)
+  
+  allowedFlexVolumes 是允许设置的 FlexVolume 卷的列表。
+  空或 nil 值表示可以使用所有 FlexVolume。
+  只有在 “volumes” 字段中允许使用 Flexvolume 卷时，此参数才有效。
+  
+  <a name="AllowedFlexVolume"></a> 
+  **AllowedFlexVolume 表示允许使用的单个 Flexvolume。**
+  
+  <!--
+  - **allowedFlexVolumes.driver** (string), required
+    driver is the name of the Flexvolume driver.
+  -->
+
+  - **allowedFlexVolumes.driver** (string)，必需
+    
+    driver 是 FlexVolume 驱动的名称。
+
+<!--
+- **allowedHostPaths** ([]AllowedHostPath)
+  allowedHostPaths is an allowlist of host paths. Empty indicates that all host paths may be used.
+
+  <a name="AllowedHostPath"></a>
+  *AllowedHostPath defines the host volume conditions that will be enabled by a policy for pods to use. It requires the path prefix to be defined.*
+-->
+- **allowedHostPaths** ([]AllowedHostPath)
+  
+  allowedHostPaths 是允许使用的主机路径的列表。空表示可以使用所有主机路径。
+  
+  <a name="AllowedHostPath"></a> 
+  **allowedHostPath 定义将按 Pod 使用的策略启用的主机卷条件。它要求定义路径前缀。**
+
+  <!--
+  - **allowedHostPaths.pathPrefix** (string)
+    pathPrefix is the path prefix that the host volume must match. It does not support `*`. Trailing slashes are trimmed when validating the path prefix with a host path.
+    
+    Examples: `/foo` would allow `/foo`, `/foo/` and `/foo/bar` `/foo` would not allow `/food` or `/etc/foo`
+  -->
+
+  - **allowedHostPaths.pathPrefix** (string)
+    
+    pathPrefix 是主机卷必须匹配的路径前缀。
+    此字段不支持 `*`。使用主机路径检验路径前缀时，会裁剪掉尾部的斜线。
+    
+    例如：`/foo` 将允许 `/foo`、`/foo/` 和 `/foo/bar`。
+    `/foo` 将不允许 `/food` 或 `/etc/foo`。
+  
+  <!--
+  - **allowedHostPaths.readOnly** (boolean)
+    when set to true, will allow host volumes matching the pathPrefix only if all volume mounts are readOnly.
+  -->
+
+  - **allowedHostPaths.readOnly** (boolean)
+    
+    当设置为 true 时，仅当所有与 pathPrefix 匹配的主机卷的卷挂载均为 readOnly 时，才允许使用。
+
+<!--
+- **allowedProcMountTypes** ([]string)
+
+  AllowedProcMountTypes is an allowlist of allowed ProcMountTypes. Empty or nil indicates that only the DefaultProcMountType may be used. This requires the ProcMountType feature flag to be enabled.
+-->
+- **allowedProcMountTypes** ([]string)
+  
+  AllowedProcMountTypes 是允许使用的 ProcMountType 的列表。
+  空表或 nil 表示仅可以使用 DefaultProcMountType。
+  此字段要求启用 ProcMountType 特性门控。
+
+<!--
+- **allowedUnsafeSysctls** ([]string)
+  allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed. Kubelet has to allowlist all allowed unsafe sysctls explicitly to avoid rejection.
+  
+  Examples: e.g. "foo/*" allows "foo/bar", "foo/baz", etc. e.g. "foo.*" allows "foo.bar", "foo.baz", etc.
+-->
+- **allowedUnsafeSysctls** ([]string)
+  
+  allowedUnsafeSysctls 是明确允许的不安全 sysctl 的列表，默认为空。
+  每个条目要么是一个普通的 sysctl 名称，要么以 “*” 结尾，
+  在后面这种情况下字符串值被视为所允许的 sysctl 的前缀。
+  单个 `*` 意味着允许所有不安全的 sysctl。
+  Kubelet 必须显式列出所有被允许的、不安全的 sysctl，以防被拒绝。
+  
+  例如 `foo/*` 允许 `foo/bar`、`foo/baz` 等。
+  例如 `foo.*` 允许 `foo.bar`、`foo.baz` 等。
+
+<!--
+- **forbiddenSysctls** ([]string)
+  forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.
+  
+  Examples: e.g. "foo/*" forbids "foo/bar", "foo/baz", etc. e.g. "foo.*" forbids "foo.bar", "foo.baz", etc.
+-->
+- **forbiddenSysctls** ([]string)
+  
+  forbiddenSysctls 是被明确禁止的 sysctl 的列表，默认为空。
+  每个条目要么是一个普通的 sysctl 名称，要么以 `*` 结尾，
+  以 `*` 结尾的字符串值表示被禁止的 sysctl 的前缀。
+  单个 `*` 意味着禁止所有 sysctl。
+  
+  例如 `foo/*` 禁止 `foo/bar`、`foo/baz` 等。
+  例如 `foo.*` 禁止 `foo.bar`、`foo.baz` 等。
+
+<!--
+- **hostIPC** (boolean)
+  hostIPC determines if the policy allows the use of HostIPC in the pod spec.
+
+- **hostNetwork** (boolean)
+  hostNetwork determines if the policy allows the use of HostNetwork in the pod spec.
+
+- **hostPID** (boolean)
+  hostPID determines if the policy allows the use of HostPID in the pod spec.
+-->
+- **hostIPC** (boolean)
+  
+  hostIPC 决定此策略是否允许在 Pod 规约中使用 hostIPC。
+
+- **hostNetwork** (boolean)
+  
+  hostNetwork 决定此策略是否允许在 Pod 规约中使用 hostNetwork。
+
+- **hostPID** (boolean)
+  
+  hostPID 决定此策略是否允许在 Pod 规约中使用 hostPID。
+
+<!--
+- **hostPorts** ([]HostPortRange)
+  hostPorts determines which host port ranges are allowed to be exposed.
+
+  <a name="HostPortRange"></a>
+  *HostPortRange defines a range of host ports that will be enabled by a policy for pods to use.  It requires both the start and end to be defined.*
+-->
+- **hostPorts** ([]HostPortRange)
+  
+  hostPorts 决定允许暴露哪些主机端口范围。
+  
+  <a name="HostPortRange"></a> 
+  **HostPortRange 定义将按 Pod 使用的策略启用的主机端口范围。它要求同时定义起点和终点。**
+  
+  <!--
+  - **hostPorts.max** (int32), required
+    max is the end of the range, inclusive.
+
+  - **hostPorts.min** (int32), required
+    min is the start of the range, inclusive.
+  -->
+
+  - **hostPorts.max** (int32)，必需
+    
+    max 是范围的终点，该值包含在此范围内。
+  
+  - **hostPorts.min** (int32)，必需
+    
+    min 是范围的起点，该值包含在此范围内。
+
+<!--
+- **runtimeClass** (RuntimeClassStrategyOptions)
+  runtimeClass is the strategy that will dictate the allowable RuntimeClasses for a pod. If this field is omitted, the pod's runtimeClassName field is unrestricted. Enforcement of this field depends on the RuntimeClass feature gate being enabled.
+
+  <a name="RuntimeClassStrategyOptions"></a>
+  *RuntimeClassStrategyOptions define the strategy that will dictate the allowable RuntimeClasses for a pod.*
+-->
+- **runtimeClass** (RuntimeClassStrategyOptions)
+  
+  runtimeClass 是一种策略，它将规定 Pod 所被允许的 RuntimeClass。
+  如果省略此字段，则 Pod 的 runtimeClassName 将不受限制。
+  该字段的实施取决于被启用的 RuntimeClass 特性门控。
+  
+  <a name="RuntimeClassStrategyOptions"></a>
+  **RuntimeClassStrategyOptions 定义一种策略，它将规定 Pod 所被允许的 RuntimeClass。**
+  
+  <!--
+  - **runtimeClass.allowedRuntimeClassNames** ([]string), required
+    allowedRuntimeClassNames is an allowlist of RuntimeClass names that may be specified on a pod. A value of "*" means that any RuntimeClass name is allowed, and must be the only item in the list. An empty list requires the RuntimeClassName field to be unset.
+
+  - **runtimeClass.defaultRuntimeClassName** (string)
+    defaultRuntimeClassName is the default RuntimeClassName to set on the pod. The default MUST be allowed by the allowedRuntimeClassNames list. A value of nil does not mutate the Pod.
+  -->
+
+  - **runtimeClass.allowedRuntimeClassNames** ([]string)，必需
+    
+    allowedRuntimeClassNames 是可以在 Pod 中指定的 runtimeClass 名称的列表。
+    `*` 值意味着允许任何 runtimeClass 值，并且如果设置了 `*`，则它必须是唯一的列表项。
+    空列表要求不能设置 runtimeClassName 字段。
+  
+  - **runtimeClass.defaultRuntimeClassName** (string)
+    
+    defaultRuntimeClassName 是要在 Pod 中设置的默认 runtimeClassName。
+    该默认值必须被 allowedRuntimeClassNames 列表所允许。nil 值不会改变 Pod 设置。
+
+<!--
+- **volumes** ([]string)
+  volumes is an allowlist of volume plugins. Empty indicates that no volumes may be used. To allow all volumes you may use '*'.
+-->
+- **volumes** ([]string)
+  
+  volumes 是所允许的卷插件的列表。空的列表意味着不可以使用卷。要允许所有卷，你可以使用 `*`。
+
+## PodSecurityPolicyList {#PodSecurityPolicyList}
+
+<!--
+PodSecurityPolicyList is a list of PodSecurityPolicy objects.
+-->
+PodSecurityPolicyList 是 PodSecurityPolicy 对象的列表。
+
+<hr>
+
+- **apiVersion**: policy/v1beta1
+
+- **kind**: PodSecurityPolicyList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../policy-resources/pod-security-policy-v1beta1#PodSecurityPolicy" >}}">PodSecurityPolicy</a>), required
+  items is a list of schema objects.
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  
+  标准的列表元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../policy-resources/pod-security-policy-v1beta1#PodSecurityPolicy" >}}">PodSecurityPolicy</a>)，必需
+  
+  items 是 PodSecurityPolicy 对象的列表。
+
+<!--
+## Operations {#Operations}
+<hr>
+### `get` read the specified PodSecurityPolicy
+#### HTTP Request
+-->
+## 操作 {#Operations}
+
+<hr>
+
+### `get` 读取指定的 PodSecurityPolicy
+
+#### HTTP 请求
+
+GET /apis/policy/v1beta1/podsecuritypolicies/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PodSecurityPolicy
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  PodSecurityPolicy 的名称
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/pod-security-policy-v1beta1#PodSecurityPolicy" >}}">PodSecurityPolicy</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind PodSecurityPolicy
+#### HTTP Request
+-->
+### `list` 列出或监视 PodSecurityPolicy 类别的对象
+
+#### HTTP 请求
+
+GET /apis/policy/v1beta1/podsecuritypolicies
+
+<!--
+#### Parameters
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/pod-security-policy-v1beta1#PodSecurityPolicyList" >}}">PodSecurityPolicyList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a PodSecurityPolicy
+#### HTTP Request
+-->
+### `create` 创建 PodSecurityPolicy
+
+#### HTTP 请求
+
+POST /apis/policy/v1beta1/podsecuritypolicies
+
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../policy-resources/pod-security-policy-v1beta1#PodSecurityPolicy" >}}">PodSecurityPolicy</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../policy-resources/pod-security-policy-v1beta1#PodSecurityPolicy" >}}">PodSecurityPolicy</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/pod-security-policy-v1beta1#PodSecurityPolicy" >}}">PodSecurityPolicy</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/pod-security-policy-v1beta1#PodSecurityPolicy" >}}">PodSecurityPolicy</a>): Created
+
+202 (<a href="{{< ref "../policy-resources/pod-security-policy-v1beta1#PodSecurityPolicy" >}}">PodSecurityPolicy</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified PodSecurityPolicy
+#### HTTP Request
+-->
+### `update` 替换指定的 PodSecurityPolicy
+
+#### HTTP 请求
+
+PUT /apis/policy/v1beta1/podsecuritypolicies/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PodSecurityPolicy
+- **body**: <a href="{{< ref "../policy-resources/pod-security-policy-v1beta1#PodSecurityPolicy" >}}">PodSecurityPolicy</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  PodSecurityPolicy 的名称
+
+- **body**: <a href="{{< ref "../policy-resources/pod-security-policy-v1beta1#PodSecurityPolicy" >}}">PodSecurityPolicy</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/pod-security-policy-v1beta1#PodSecurityPolicy" >}}">PodSecurityPolicy</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/pod-security-policy-v1beta1#PodSecurityPolicy" >}}">PodSecurityPolicy</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified PodSecurityPolicy
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 PodSecurityPolicy
+
+#### HTTP 请求
+
+PATCH /apis/policy/v1beta1/podsecuritypolicies/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PodSecurityPolicy
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  PodSecurityPolicy 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/pod-security-policy-v1beta1#PodSecurityPolicy" >}}">PodSecurityPolicy</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/pod-security-policy-v1beta1#PodSecurityPolicy" >}}">PodSecurityPolicy</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a PodSecurityPolicy
+#### HTTP Request
+-->
+### `delete` 删除 PodSecurityPolicy
+
+#### HTTP 请求
+
+DELETE /apis/policy/v1beta1/podsecuritypolicies/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the PodSecurityPolicy
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  PodSecurityPolicy 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/pod-security-policy-v1beta1#PodSecurityPolicy" >}}">PodSecurityPolicy</a>): OK
+
+202 (<a href="{{< ref "../policy-resources/pod-security-policy-v1beta1#PodSecurityPolicy" >}}">PodSecurityPolicy</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of PodSecurityPolicy
+#### HTTP Request
+-->
+### `deletecollection` 删除 PodSecurityPolicy 的集合
+
+#### HTTP 请求
+
+DELETE /apis/policy/v1beta1/podsecuritypolicies
+
+<!--
+#### Parameters
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **continue** (*in query*): string
+- **dryRun** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/policy-resources/resource-quota-v1.md b/content/zh-cn/docs/reference/kubernetes-api/policy-resources/resource-quota-v1.md
new file mode 100644
index 0000000000..044e865468
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/policy-resources/resource-quota-v1.md
@@ -0,0 +1,832 @@
+---
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "ResourceQuota"
+content_type: "api_reference"
+description: "ResourceQuota 设置每个命名空间强制执行的聚合配额限制。"
+title: "ResourceQuota"
+weight: 2
+---
+
+<!-- a
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "ResourceQuota"
+content_type: "api_reference"
+description: "ResourceQuota sets aggregate quota restrictions enforced per namespace."
+title: "ResourceQuota"
+weight: 2
+auto_generated: true 
+-->
+
+`apiVersion: v1`
+
+`import "k8s.io/api/core/v1"`
+
+## ResourceQuota {#ResourceQuota}
+
+<!-- 
+ResourceQuota sets aggregate quota restrictions enforced per namespace 
+-->
+ResourceQuota 设置每个命名空间强制执行的聚合配额限制。
+
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: ResourceQuota
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  <!-- 
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+
+  标准的对象元数据。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuotaSpec" >}}">ResourceQuotaSpec</a>)
+
+  <!-- 
+  Spec defines the desired quota. https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+  -->
+
+  spec 定义所需的配额。
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+- **status** (<a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuotaStatus" >}}">ResourceQuotaStatus</a>)
+
+  <!-- 
+  Status defines the actual enforced quota and its current usage. https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+  -->
+
+  status 定义实际执行的配额及其当前使用情况。
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+## ResourceQuotaSpec {#ResourceQuotaSpec}
+
+ResourceQuotaSpec 定义为 Quota 强制执行所需的硬限制。
+
+<hr>
+
+- **hard** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+  <!-- 
+  hard is the set of desired hard limits for each named resource. More info: https://kubernetes.io/docs/concepts/policy/resource-quotas/
+  -->
+
+  hard 是每种指定资源所需的硬性限制集合。
+  更多信息： https://kubernetes.io/docs/concepts/policy/resource-quotas/
+
+- **scopeSelector** (ScopeSelector)
+
+  <!-- 
+  scopeSelector is also a collection of filters like scopes that must match each object tracked by a quota but expressed using ScopeSelectorOperator in combination with possible values. For a resource to match, both scopes AND scopeSelector (if specified in spec), must be matched. 
+  -->
+
+  scopeSelector 也是一组过滤器的集合，和 scopes 类似，
+  必须匹配配额所跟踪的每个对象，但使用 ScopeSelectorOperator 结合可能的值来表示。
+  对于要匹配的资源，必须同时匹配 scopes 和 scopeSelector（如果在 spec 中设置了的话）。
+
+  <a name="ScopeSelector"></a>
+  <!-- 
+  *A scope selector represents the AND of the selectors represented by the scoped-resource selector requirements.* 
+  -->
+
+  scope 选择算符表示的是由限定范围的资源选择算符进行 **逻辑与** 计算得出的结果。
+
+  - **scopeSelector.matchExpressions** ([]ScopedResourceSelectorRequirement)
+
+    <!-- 
+    A list of scope selector requirements by scope of the resources. 
+    -->
+
+    按资源范围划分的范围选择算符需求列表。
+
+    <a name="ScopedResourceSelectorRequirement"></a>
+    <!-- 
+    *A scoped-resource selector requirement is a selector that contains values, a scope name, and an operator that relates the scope name and values.* 
+    -->
+
+    限定范围的资源选择算符需求是一种选择算符，包含值、范围名称和将二者关联起来的运算符。
+
+    - **scopeSelector.matchExpressions.operator** (string)，必需
+
+      <!-- 
+      Represents a scope's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. 
+      -->
+
+      表示范围与一组值之间的关系。有效的运算符为 In、NotIn、Exists、DoesNotExist。
+
+    - **scopeSelector.matchExpressions.scopeName** (string)，必需
+
+      <!-- 
+      The name of the scope that the selector applies to. 
+      -->
+
+      选择器所适用的范围的名称。
+
+    - **scopeSelector.matchExpressions.values** ([]string)
+
+      <!-- 
+      An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch. 
+      -->
+
+      字符串值数组。
+      如果操作符是 In 或 NotIn，values 数组必须是非空的。
+      如果操作符是 Exists 或 DoesNotExist，values 数组必须为空。
+      该数组将在策略性合并补丁操作期间被替换。
+
+- **scopes** ([]string)
+
+  <!-- 
+  A collection of filters that must match each object tracked by a quota. If not specified, the quota matches all objects. 
+  -->
+
+  一个匹配被配额跟踪的所有对象的过滤器集合。
+  如果没有指定，则默认匹配所有对象。
+
+## ResourceQuotaStatus {#ResourceQuotaStatus}
+
+<!-- 
+ResourceQuotaStatus defines the enforced hard limits and observed use. 
+-->
+ResourceQuotaStatus 定义硬性限制和观测到的用量。
+
+<hr>
+
+- **hard** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+  <!-- 
+  Hard is the set of enforced hard limits for each named resource. More info: https://kubernetes.io/docs/concepts/policy/resource-quotas/ 
+  -->
+
+  hard 是每种指定资源所强制实施的硬性限制集合。
+  更多信息： https://kubernetes.io/docs/concepts/policy/resource-quotas/
+
+- **used** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+  <!-- 
+  Used is the current observed total usage of the resource in the namespace. 
+  -->
+
+  used 是当前命名空间中所观察到的资源总用量。
+
+## ResourceQuotaList {#ResourceQuotaList}
+
+<!-- 
+ResourceQuotaList is a list of ResourceQuota items. 
+-->
+ResourceQuotaList 是 ResourceQuota 列表。
+
+<hr>
+
+- **apiVersion**：v1
+
+- **kind**：ResourceQuotaList
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  <!-- 
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds 
+  -->
+
+  标准列表元数据。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+- **items** ([]<a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuota" >}}">ResourceQuota</a>)，必需
+
+  <!-- 
+  Items is a list of ResourceQuota objects. More info: https://kubernetes.io/docs/concepts/policy/resource-quotas/ 
+  -->
+
+  items 是 ResourceQuota 对象的列表。
+  更多信息： https://kubernetes.io/docs/concepts/policy/resource-quotas/
+
+<!--
+## Operations {#Operations}
+-->
+## 操作 {#Operations}
+
+<hr>
+
+<!-- 
+### `get` read the specified ResourceQuota 
+-->
+### `get` 读取指定的 ResourceQuota
+
+<!-- 
+#### HTTP Request 
+-->
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/resourcequotas/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+- **name** （**路径参数**）: string, 必需
+
+  ResourceQuota 的名称
+
+- **namespace** （**路径参数**）: string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuota" >}}">ResourceQuota</a>): OK
+
+401: Unauthorized
+
+<!-- 
+### `get` read status of the specified ResourceQuota 
+-->
+### `get` 读取指定的 ResourceQuota 的状态
+
+<!-- 
+#### HTTP Request 
+-->
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/resourcequotas/{name}/status
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+- **name** （**路径参数**）: string, 必需
+
+  ResourceQuota 的名称
+
+- **namespace** （**路径参数**）: string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuota" >}}">ResourceQuota</a>): OK
+
+401: Unauthorized
+
+<!-- 
+### `list` list or watch objects of kind ResourceQuota 
+-->
+### `list` 列出或监视 ResourceQuota 类别的对象
+
+<!-- 
+#### HTTP Request 
+-->
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/resourcequotas
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+- **namespace** （**路径参数**）: string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **allowWatchBookmarks** （**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** （**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** （**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** （**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuotaList" >}}">ResourceQuotaList</a>): OK
+
+401: Unauthorized
+
+<!-- 
+### `list` list or watch objects of kind ResourceQuota 
+-->
+### `list` 列出或监视 ResourceQuota 类别的对象
+
+<!-- 
+#### HTTP Request 
+-->
+#### HTTP 请求
+
+GET /api/v1/resourcequotas
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+- **allowWatchBookmarks** （**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** （**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** （**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** （**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuotaList" >}}">ResourceQuotaList</a>): OK
+
+401: Unauthorized
+
+<!-- 
+### `create` create a ResourceQuota 
+-->
+### `create` 创建一个 ResourceQuota
+
+<!-- 
+#### HTTP Request 
+-->
+#### HTTP 请求
+
+POST /api/v1/namespaces/{namespace}/resourcequotas
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+- **namespace** （**路径参数**）: string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuota" >}}">ResourceQuota</a>, 必需
+
+- **dryRun** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuota" >}}">ResourceQuota</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuota" >}}">ResourceQuota</a>): Created
+
+202 (<a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuota" >}}">ResourceQuota</a>): Accepted
+
+401: Unauthorized
+
+<!-- 
+### `update` replace the specified ResourceQuota 
+-->
+### `update` 更新指定的 ResourceQuota
+
+<!-- 
+#### HTTP Request 
+-->
+#### HTTP 请求
+
+PUT /api/v1/namespaces/{namespace}/resourcequotas/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+- **name** （**路径参数**）: string, 必需
+
+  ResourceQuota 的名称
+
+- **namespace** （**路径参数**）: string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuota" >}}">ResourceQuota</a>, 必需
+
+- **dryRun** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuota" >}}">ResourceQuota</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuota" >}}">ResourceQuota</a>): Created
+
+401: Unauthorized
+
+<!-- 
+### `update` replace status of the specified ResourceQuota 
+-->
+### `update` 更新指定 ResourceQuota 的状态
+
+<!-- 
+#### HTTP Request 
+-->
+#### HTTP 请求
+
+PUT /api/v1/namespaces/{namespace}/resourcequotas/{name}/status
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+- **name** （**路径参数**）: string, 必需
+
+  ResourceQuota 的名称
+
+- **namespace** （**路径参数**）: string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuota" >}}">ResourceQuota</a>, 必需
+
+- **dryRun** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuota" >}}">ResourceQuota</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuota" >}}">ResourceQuota</a>): Created
+
+401: Unauthorized
+
+<!-- 
+### `patch` partially update the specified ResourceQuota 
+-->
+### `patch` 部分更新指定的 ResourceQuota
+
+<!-- 
+#### HTTP Request 
+-->
+#### HTTP 请求
+
+PATCH /api/v1/namespaces/{namespace}/resourcequotas/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+- **name** （**路径参数**）: string, 必需
+
+  ResourceQuota 的名称
+
+- **namespace** （**路径参数**）: string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, 必需
+
+- **dryRun** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** （**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuota" >}}">ResourceQuota</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuota" >}}">ResourceQuota</a>): Created
+
+401: Unauthorized
+
+<!-- 
+### `patch` partially update status of the specified ResourceQuota 
+-->
+### `patch` 部分更新指定 ResourceQuota 的状态
+
+<!-- 
+#### HTTP Request 
+-->
+#### HTTP 请求
+
+PATCH /api/v1/namespaces/{namespace}/resourcequotas/{name}/status
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+- **name** （**路径参数**）: string, 必需
+
+  ResourceQuota 的名称
+
+- **namespace** （**路径参数**）: string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, 必需
+
+- **dryRun** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** （**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuota" >}}">ResourceQuota</a>): OK
+
+201 (<a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuota" >}}">ResourceQuota</a>): Created
+
+401: Unauthorized
+
+<!-- 
+### `delete` delete a ResourceQuota 
+-->
+### `delete` 删除 ResourceQuota
+
+<!-- 
+#### HTTP Request 
+-->
+#### HTTP 请求
+
+DELETE /api/v1/namespaces/{namespace}/resourcequotas/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+- **name** （**路径参数**）: string, 必需
+
+  ResourceQuota 的名称
+
+- **namespace** （**路径参数**）: string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** （**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuota" >}}">ResourceQuota</a>): OK
+
+202 (<a href="{{< ref "../policy-resources/resource-quota-v1#ResourceQuota" >}}">ResourceQuota</a>): Accepted
+
+401: Unauthorized
+
+<!-- 
+### `deletecollection` delete collection of ResourceQuota 
+-->
+### `deletecollection` 删除 ResourceQuota 的集合
+
+<!-- 
+#### HTTP Request 
+-->
+#### HTTP 请求
+
+DELETE /api/v1/namespaces/{namespace}/resourcequotas
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+- **namespace** （**路径参数**）: string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** （**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** （**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** （**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/service-resources/_index.md b/content/zh-cn/docs/reference/kubernetes-api/service-resources/_index.md
new file mode 100644
index 0000000000..83967dd848
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/service-resources/_index.md
@@ -0,0 +1,7 @@
+---
+title: "Service 资源"
+weight: 2
+auto_generated: true
+---
+
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/service-resources/endpoint-slice-v1.md b/content/zh-cn/docs/reference/kubernetes-api/service-resources/endpoint-slice-v1.md
new file mode 100644
index 0000000000..28dd358393
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/service-resources/endpoint-slice-v1.md
@@ -0,0 +1,942 @@
+---
+api_metadata:
+  apiVersion: "discovery.k8s.io/v1"
+  import: "k8s.io/api/discovery/v1"
+  kind: "EndpointSlice"
+content_type: "api_reference"
+description: "EndpointSlice 是实现某 Service 的端点的子集."
+title: "EndpointSlice"
+weight: 3
+---
+
+<!--
+description: "EndpointSlice represents a subset of the endpoints that implement a service."
+-->
+
+`apiVersion: discovery.k8s.io/v1`
+
+`import "k8s.io/api/discovery/v1"`
+
+## EndpointSlice {#EndpointSlice}
+
+<!--
+EndpointSlice represents a subset of the endpoints that implement a service. For a given service there may be multiple EndpointSlice objects, selected by labels, which must be joined to produce the full set of endpoints.
+-->
+EndpointSlice 是实现某 Service 的端点的子集。一个 Service 可以有多个 EndpointSlice 对象与之对应，
+必须将所有的 EndpointSlice 拼接起来才能形成一套完整的端点集合。Service 通过标签来选择 EndpointSlice。
+
+<hr>
+
+- **apiVersion**: discovery.k8s.io/v1
+
+- **kind**: EndpointSlice
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  <!--
+  Standard object's metadata.
+  -->
+  标准的对象元数据。
+
+- **addressType** (string), <!--required-->必需
+  
+  <!--
+  addressType specifies the type of address carried by this EndpointSlice. All addresses in this slice must be the same type. This field is immutable after creation.
+  -->
+  addressType 指定当前 EndpointSlice 携带的地址类型。一个 EndpointSlice 只能携带同一类型的地址。
+  EndpointSlice 对象创建完成后不可以再更改 addressType 字段。
+  
+  <!--
+  The following address types are currently supported: * IPv4: Represents an IPv4 Address. * IPv6: Represents an IPv6 Address. * FQDN: Represents a Fully Qualified Domain Name.
+  -->  
+  目前支持的地址类型为：
+
+  * IPv4：表示 IPv4 地址。
+  * IPv6：表示 IPv6 地址。
+  * FQDN：表示完全限定域名。
+
+- **endpoints** ([]Endpoint), <!--required-->必需
+
+  <!--
+  *Atomic: will be replaced during a merge*
+  -->
+  **原子性：合并期间将被替换**
+
+  <!--
+  endpoints is a list of unique endpoints in this slice. Each slice may include a maximum of 1000 endpoints.
+  -->
+  endpoints 是当前 EndpointSlice 中一组唯一的端点。每个 EndpointSlice 最多可以包含 1000 个端点。
+
+  <a name="Endpoint"></a>
+
+  <!--
+  *Endpoint represents a single logical "backend" implementing a service.*
+  -->
+  **端点是实现某 Service 的一个逻辑“后端”。**
+
+  - **endpoints.addresses** ([]string), <!--required-->必需
+    
+    <!--
+    *Set: unique values will be kept during a merge*
+    -->
+    
+    **集合：不重复的值在合并期间会被保留**
+
+    <!--
+    addresses of this endpoint. The contents of this field are interpreted according to the corresponding EndpointSlice addressType field. Consumers must handle different types of addresses in the context of their own capabilities. This must contain at least one address but no more than 100. These are all assumed to be fungible and clients may choose to only use the first element. Refer to: https://issue.k8s.io/106267
+    -->
+    
+    本端点的地址。此字段的内容会根据对应的 EndpointSlice addressType 字段的值进行解释。
+    消费者必须根据自身能力处理不同类型的地址。此字段必须至少包含 1 个地址，最多不超过 100 个地址。
+    假定这些地址都是可替换的，而且客户端也可能选择只用第一个元素。参阅： https://issue.k8s.io/106267
+
+  - **endpoints.conditions** (EndpointConditions)
+
+    <!--
+    conditions contains information about the current status of the endpoint.
+    -->
+    
+    conditions 包含和本端点当前状态有关的信息。
+
+    <a name="EndpointConditions"></a>
+
+    <!--
+    *EndpointConditions represents the current condition of an endpoint.*
+    -->
+    
+    **EndpointConditions 是端点的当前状况。**
+
+    - **endpoints.conditions.ready** (boolean)  
+      
+      <!--
+      ready indicates that this endpoint is prepared to receive traffic, according to whatever system is managing the endpoint. A nil value indicates an unknown state. In most cases consumers should interpret this unknown state as ready. For compatibility reasons, ready should never be "true" for terminating endpoints.
+      -->
+      
+      ready 说明此端点已经准备好根据相关的系统映射接收流量。nil 值表示状态未知。
+      在大多数情况下，消费者应将这种未知状态视为就绪（ready）。
+      考虑到兼容性，对于正在结束状态下的端点，永远不能将 ready 设置为“true”。
+
+    - **endpoints.conditions.serving** (boolean)
+      
+      <!--
+      erving is identical to ready except that it is set regardless of the terminating state of endpoints. This condition should be set to true for a ready endpoint that is terminating. If nil, consumers should defer to the ready condition. This field can be enabled with the EndpointSliceTerminatingCondition feature gate.
+      -->
+      
+      serving 和 ready 非常相似。唯一的不同在于,
+      即便某端点的状态为 Terminating 也可以设置 serving。
+      对于处在终止过程中的就绪端点，此状况应被设置为 “true”。
+      如果设置为 nil，则消费者应该以 ready 值为准。
+      可以在 EndpointSliceTerminatingCondition 特性开关中启用此字段。
+
+    - **endpoints.conditions.terminating** (boolean)
+      
+      <!--
+      terminating indicates that this endpoint is terminating. A nil value indicates an unknown state. Consumers should interpret this unknown state to mean that the endpoint is not terminating. This field can be enabled with the EndpointSliceTerminatingCondition feature gate.
+      -->
+      
+      terminating 说明当前端点正在终止过程中。nil 值表示状态未知。
+      消费者应将这种未知状态视为端点并不处于终止过程中。
+      可以通过 EndpointSliceTerminatingCondition 特性门控启用此字段。
+
+  - **endpoints.deprecatedTopology** (map[string]string)
+    
+    <!--
+    deprecatedTopology contains topology information part of the v1beta1 API. This field is deprecated, and will be removed when the v1beta1 API is removed (no sooner than kubernetes v1.24). While this field can hold values, it is not writable through the v1 API, and any attempts to write to it will be silently ignored. Topology information can be found in the zone and nodeName fields instead.
+    -->
+    
+    deprecatedTopology 包含 v1beta1 API 的拓扑信息部分。目前已经弃用了此字段，
+    移除 v1beta1 API 时（不早于 Kubernetes v1.24）会一起移除此字段。
+    此字段目前仍然可以存储值，但是不能通过 v1 API 写入数据。
+    向此字段写入数据的任何尝试都会被忽略，并且不会通知用户。
+    移除此字段后，可以在 zone 和 nodeName 字段中查看拓扑信息。
+
+  - **endpoints.hints** (EndpointHints)
+
+    <!--
+    hints contains information associated with how an endpoint should be consumed.
+    -->
+    
+    hints 是关于应该如何使用某端点的提示信息。
+
+    <a name="EndpointHints"></a>
+
+    <!--
+    *EndpointHints provides hints describing how an endpoint should be consumed.*
+    -->
+    
+    **EndpointHints 提供应该如何使用某端点的提示信息。**
+
+    - **endpoints.hints.forZones** ([]ForZone)
+
+      <!--
+      *Atomic: will be replaced during a merge*
+      -->
+      
+      **原子性：合并期间将被替换**
+
+      <!--
+      forZones indicates the zone(s) this endpoint should be consumed by to enable topology aware routing.
+      -->
+      
+      forZones 表示应该由哪个可用区调用此端点从才能激活拓扑感知路由。
+
+      <a name="ForZone"></a>
+
+      <!--
+      *ForZone provides information about which zones should consume this endpoint.*
+      -->
+      
+      **ForZone 指示应该由哪些可用区调度此端点。**
+
+      - **endpoints.hints.forZones.name** (string), <!--required-->必需
+
+        <!--
+        name represents the name of the zone.
+        -->
+        
+        name 代表可用区的名称。
+
+  - **endpoints.hostname** (string)
+
+    <!--
+    hostname of this endpoint. This field may be used by consumers of endpoints to distinguish endpoints from each other (e.g. in DNS names). Multiple endpoints which use the same hostname should be considered fungible (e.g. multiple A values in DNS). Must be lowercase and pass DNS Label (RFC 1123) validation.
+    -->
+    
+    此端点的主机名称。端点的使用者可以通过此字段区分各个端点（例如，通过 DNS 域名）。
+    使用同一主机名称的多个端点应被视为可替换（例如，DNS 中的多个 A 记录）。
+    必须为小写字母，并且需要通过 DNS Label (RFC 1123) 验证。
+
+  - **endpoints.nodeName** (string)
+
+    <!--
+    nodeName represents the name of the Node hosting this endpoint. This can be used to determine endpoints local to a Node. This field can be enabled with the EndpointSliceNodeName feature gate.
+    -->
+    
+    nodeName 是托管此端点的 Node 的名称，使用 nodeName 可以决定 Node 本地有哪些端点。
+    可以通过 EndpointSliceNodeName 特性门控启用此字段。
+
+  - **endpoints.targetRef** (<a href="{{< ref "../common-definitions/object-reference#ObjectReference" >}}">ObjectReference</a>)
+
+    <!--
+    targetRef is a reference to a Kubernetes object that represents this endpoint.
+    -->
+    
+    targetRef 是对代表此端点的 Kubernetes 对象的引用。
+
+  - **endpoints.zone** (string)
+
+    <!--
+    zone is the name of the Zone this endpoint exists in.
+    -->
+    
+    zone 是此端点所在的可用区（Zone）的名称。
+
+- **ports** ([]EndpointPort)
+
+  <!--
+  *Atomic: will be replaced during a merge*
+  -->
+  
+  **原子性：合并期间会被替代**
+  
+  <!--
+  ports specifies the list of network ports exposed by each endpoint in this slice. Each port must have a unique name. When ports is empty, it indicates that there are no defined ports. When a port is defined with a nil port value, it indicates "all ports". Each slice may include a maximum of 100 ports.
+  -->
+  
+  ports 列出了当前 EndpointSlice 中各个端点所暴露的网络端口。每个端口的名称不得重复。
+  当 ports 列表为空时，表示没有已经指定暴露哪些端口。如果端口值被定义为 nil，表示暴露“所有端口”。
+  每个 EndpointSlice 最多可以包含 100 个端口。
+
+  <a name="EndpointPort"></a>
+
+  <!--
+  *EndpointPort represents a Port used by an EndpointSlice*
+  -->
+  
+  **EndpointPort 是 EndpointSlice 使用的端口。**
+
+  - **ports.port** (int32)
+
+    <!--
+    The port number of the endpoint. If this is not specified, ports are not restricted and must be interpreted in the context of the specific consumer.
+    -->
+    
+    端点的端口号。如果未指定，就不限制端口，且必须根据消费者的具体环境进行解释。
+
+  - **ports.protocol** (string)
+
+    <!--
+    The IP protocol for this port. Must be UDP, TCP, or SCTP. Default is TCP.
+    -->
+    
+    此端口的 IP 协议。必须为 UDP、TCP 或 SCTP。默认为 TCP。
+
+  - **ports.name** (string)
+
+    <!--
+    The name of this port. All ports in an EndpointSlice must have a unique name. If the EndpointSlice is dervied from a Kubernetes service, this corresponds to the Service.ports[].name. Name must either be an empty string or pass DNS_LABEL validation: * must be no more than 63 characters long. * must consist of lower case alphanumeric characters or '-'. * must start and end with an alphanumeric character. Default is empty string.
+    -->
+    
+    此端口的名称。EndpointSlice 中所有端口的名称都不得重复。
+    如果 EndpointSlice 是基于 Kubernetes Service 创建的，
+    那么此端口的名称和 Service.ports[].name 字段的值一致。默认为空字符串。
+    名称必须是空字符串，或者必须通过 DNS_LABEL 验证：
+    
+    * 最多包含 63 个字符。
+    * 必须包含英文小写字母或'-'。
+    * 必须以字母开头并以字母结尾。
+
+  - **ports.appProtocol** (string)
+
+    <!--
+    The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and https://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.-->
+    
+    此端口的应用层协议。此字段遵循标准的 Kubernetes Label 句法。
+    不带前缀的名称是 IANA 标准服务的保留名称（参见 RFC-6335 和 https://www.iana.org/assignments/service-names）。
+    非标准协议应该使用带前缀的名称，例如 mycompany.com/my-custom-protocol。
+
+## EndpointSliceList {#EndpointSliceList}
+
+<!--
+EndpointSliceList represents a list of endpoint slices
+-->
+EndpointSliceList 是 EndpointSlice 的列表。
+
+<hr>
+
+- **apiVersion**: discovery.k8s.io/v1
+
+- **kind**: EndpointSliceList
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  <!--
+  Standard list metadata.
+  -->
+  标准的列表元数据
+
+- **items** ([]<a href="{{< ref "../service-resources/endpoint-slice-v1#EndpointSlice" >}}">EndpointSlice</a>), <!--required-->必需
+
+  <!--
+  List of endpoint slices
+  -->
+  EndpointSlice 列表
+
+<!--
+## Operations {#Operations}
+-->
+## 操作 {#操作}
+
+<hr>
+
+<!--
+### `get` read the specified EndpointSlice
+-->
+### `get` 读取指定的 EndpointSlice
+
+<!--#### HTTP Request-->
+#### HTTP 请求
+
+GET /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices/{name}
+
+<!--#### Parameters-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+-->
+- **name** (**路径参数**): string, 必需
+
+  <!--
+  name of the EndpointSlice
+  -->
+  EndpointSlice 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--#### Response-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/endpoint-slice-v1#EndpointSlice" >}}">EndpointSlice</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind EndpointSlice
+-->
+### `list` 列举或监测 EndpointSlice 类别的对象
+
+<!--
+#### HTTP Request
+-->
+#### HTTP 请求
+
+GET /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices
+
+<!--#### Parameters-->
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+-->
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!--
+- **continue** (*in query*): string
+-->
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+-->
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **labelSelector** (*in query*): string
+-->
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+-->
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+-->
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+-->
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+-->
+- **timeoutSeconds** (*查询参数*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+- **watch** (*in query*): boolean
+-->
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--#### Response-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/endpoint-slice-v1#EndpointSliceList" >}}">EndpointSliceList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind EndpointSlice
+-->
+### `list` 列举或监测 EndpointSlice 类别的对象
+
+<!--#### HTTP Request-->
+#### HTTP 请求
+
+GET /apis/discovery.k8s.io/v1/endpointslices
+
+<!--#### Parameters-->
+#### 参数
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+-->
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!--
+- **continue** (*in query*): string
+-->
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+-->
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **labelSelector** (*in query*): string
+-->
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+-->
+- **limit** (**查询参数**): integer
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+-->
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+-->
+- **resourceVersionMatch** (*查询参数*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+-->
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+- **watch** (*in query*): boolean
+-->
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--#### Response-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/endpoint-slice-v1#EndpointSliceList" >}}">EndpointSliceList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create an EndpointSlice
+-->
+### `create` 创建 EndpointSlice
+
+<!--#### HTTP Request-->
+#### HTTP 请求
+
+POST /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices
+
+<!--#### Parameters-->
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../service-resources/endpoint-slice-v1#EndpointSlice" >}}">EndpointSlice</a>, <!--required-->必需
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--#### Response-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/endpoint-slice-v1#EndpointSlice" >}}">EndpointSlice</a>): OK
+
+201 (<a href="{{< ref "../service-resources/endpoint-slice-v1#EndpointSlice" >}}">EndpointSlice</a>): Created
+
+202 (<a href="{{< ref "../service-resources/endpoint-slice-v1#EndpointSlice" >}}">EndpointSlice</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified EndpointSlice
+-->
+### `update` 替换指定的 EndpointSlice
+
+<!--#### HTTP Request-->
+#### HTTP 请求
+
+PUT /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices/{name}
+
+<!--#### Parameters-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+-->
+- **name** (**路径参数**): string, 必需
+
+  <!--
+  name of the EndpointSlice
+  -->
+  EndpointSlice 的名称
+
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../service-resources/endpoint-slice-v1#EndpointSlice" >}}">EndpointSlice</a>,<!-- required-->必需
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** (**查询参数**): string-
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--#### Response-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/endpoint-slice-v1#EndpointSlice" >}}">EndpointSlice</a>): OK
+
+201 (<a href="{{< ref "../service-resources/endpoint-slice-v1#EndpointSlice" >}}">EndpointSlice</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified EndpointSlice
+-->
+### `patch` 部分更新指定的 EndpointSlice
+
+<!--#### HTTP Request-->
+#### HTTP 请求
+
+PATCH /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices/{name}
+
+<!--#### Parameters-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+-->
+- **name** (**路径参数**): string, 必需
+
+  <!--name of the EndpointSlice-->
+  EndpointSlice 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, <!--required-->必需
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **force** (*in query*): boolean
+-->
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--#### Response-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/endpoint-slice-v1#EndpointSlice" >}}">EndpointSlice</a>): OK
+
+201 (<a href="{{< ref "../service-resources/endpoint-slice-v1#EndpointSlice" >}}">EndpointSlice</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete an EndpointSlice
+-->
+### `delete` 删除 EndpointSlice
+
+<!--#### HTTP Request-->
+#### HTTP 请求
+
+DELETE /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices/{name}
+
+<!--#### Parameters-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+-->
+- **name** (**路径参数**): string, 必需
+
+  <!--
+  name of the EndpointSlice
+  -->
+  EndpointSlice 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+-->
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **propagationPolicy** (*in query*): string
+-->
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--#### Response-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of EndpointSlice
+-->
+### `deletecollection` 删除 EndpointSlice 的集合
+
+<!--#### HTTP Request-->
+#### HTTP 请求
+
+DELETE /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices
+
+<!--#### Parameters-->
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **continue** (*in query*): string
+-->
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+-->
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+-->
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **labelSelector** (*in query*): string
+-->
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+-->
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **propagationPolicy** (*in query*): string
+-->
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+-->
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+-->
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+-->
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--#### Response-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/service-resources/endpoints-v1.md b/content/zh-cn/docs/reference/kubernetes-api/service-resources/endpoints-v1.md
new file mode 100644
index 0000000000..381f163b79
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/service-resources/endpoints-v1.md
@@ -0,0 +1,1045 @@
+---
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "Endpoints"
+content_type: "api_reference"
+description: "Endpoints 是实现实际服务的端点的集合。"
+title: "Endpoints"
+weight: 2
+---
+<!--
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "Endpoints"
+content_type: "api_reference"
+description: "Endpoints is a collection of endpoints that implement the actual service."
+title: "Endpoints"
+weight: 2
+auto_generated: true
+-->
+
+`apiVersion: v1`
+
+`import "k8s.io/api/core/v1"`
+
+## Endpoints {#Endpoints}
+
+<!--
+Endpoints is a collection of endpoints that implement the actual service. Example:
+  Name: "mysvc",
+  Subsets: [
+    {
+      Addresses: [{"ip": "10.10.1.1"}, {"ip": "10.10.2.2"}],
+      Ports: [{"name": "a", "port": 8675}, {"name": "b", "port": 309}]
+    },
+    {
+      Addresses: [{"ip": "10.10.3.3"}],
+      Ports: [{"name": "a", "port": 93}, {"name": "b", "port": 76}]
+    },
+ ]
+-->
+Endpoints 是实现实际服务的端点的集合。举例:
+
+```
+Name: "mysvc",
+Subsets: [
+  {
+    Addresses: [{"ip": "10.10.1.1"}, {"ip": "10.10.2.2"}],
+    Ports: [{"name": "a", "port": 8675}, {"name": "b", "port": 309}]
+  },
+  {
+    Addresses: [{"ip": "10.10.3.3"}],
+    Ports: [{"name": "a", "port": 93}, {"name": "b", "port": 76}]
+  },
+]
+```
+
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: Endpoints
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  <!--
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+  标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **subsets** ([]EndpointSubset)
+
+  <!--
+  The set of all endpoints is the union of all subsets. Addresses are placed into subsets according to the IPs they share. A single address with multiple ports, some of which are ready and some of which are not (because they come from different containers) will result in the address being displayed in different subsets for the different ports. No address will appear in both Addresses and NotReadyAddresses in the same subset. Sets of addresses and ports that comprise a service.
+  -->
+  所有端点的集合是所有 subsets 的并集。不同地址会根据其 IP 地址被放入不同子集。
+  对于具有多个端口的单个地址，如果其中一些端口已就绪，而另一些端口未就绪（因为它们来自不同的容器），
+  将导致地址显示在不同端口的不同子集中。
+  任何地址都不可以同时出现在 addresses 和 notReadyAddress 中的相同子集内。
+
+  <!--
+  <a name="EndpointSubset"></a>
+  *EndpointSubset is a group of addresses with a common set of ports. The expanded set of endpoints is the Cartesian product of Addresses x Ports. For example, given:
+    {
+      Addresses: [{"ip": "10.10.1.1"}, {"ip": "10.10.2.2"}],
+      Ports:     [{"name": "a", "port": 8675}, {"name": "b", "port": 309}]
+    }
+  The resulting set of endpoints can be viewed as:
+      a: [ 10.10.1.1:8675, 10.10.2.2:8675 ],
+      b: [ 10.10.1.1:309, 10.10.2.2:309 ]*
+  -->
+  <a name="EndpointSubset"></a>
+  **EndpointSubset 是一组具有公共端口集的地址。扩展的端点集是 addresses 和 ports 的笛卡尔乘积。例如假设：**
+
+  ```
+    {
+      Addresses: [{"ip": "10.10.1.1"}, {"ip": "10.10.2.2"}],
+      Ports:     [{"name": "a", "port": 8675}, {"name": "b", "port": 309}]
+    }
+  ```
+
+  则最终的端点集可以看作:
+
+  ```
+      a: [ 10.10.1.1:8675, 10.10.2.2:8675 ],
+      b: [ 10.10.1.1:309, 10.10.2.2:309 ]
+  ```
+
+  - **subsets.addresses** ([]EndpointAddress)
+  
+    <!--
+    IP addresses which offer the related ports that are marked as ready. These endpoints should be considered safe for load balancers and clients to utilize.
+    -->
+
+    提供标记为就绪的相关端口的 IP 地址。
+    这些端点应该被认为是负载均衡器和客户端可以安全使用的。
+
+    <!--
+    <a name="EndpointAddress"></a>
+    *EndpointAddress is a tuple that describes single IP address.*
+    -->
+
+    <a name="EndpointAddress"></a>
+    **EndpointAddress 是描述单个 IP 地址的元组。**
+
+    <!--
+    - **subsets.addresses.ip** (string), required
+  
+      The IP of this endpoint. May not be loopback (127.0.0.0/8), link-local (169.254.0.0/16), or link-local multicast ((224.0.0.0/24). IPv6 is also accepted but not fully supported on all platforms. Also, certain kubernetes components, like kube-proxy, are not IPv6 ready.
+    -->
+
+    - **subsets.addresses.ip** (string), 必需
+
+      端点的 IP。不可以是本地回路（127.0.0.0/8）、链路本地（169.254.0.0/16）或链路本地多播（224.0.0.0/24）地址。
+      IPv6 也被接受，但并非在所有平台上都完全支持。
+      此外，诸如 kube-proxy 等某些 Kubernetes 组件还没有准备好支持 IPv6。
+
+    - **subsets.addresses.hostname** (string)
+      
+      <!--
+      The Hostname of this endpoint
+      -->
+
+      端点主机名称。
+
+    - **subsets.addresses.nodeName** (string)
+      
+      <!--
+      Optional: Node hosting this endpoint. This can be used to determine endpoints local to a node.
+      -->
+
+      可选：承载此端点的节点。此字段可用于确定一个节点的本地端点。
+
+    - **subsets.addresses.targetRef** (<a href="{{< ref "../common-definitions/object-reference#ObjectReference" >}}">ObjectReference</a>)
+
+      <!--
+      Reference to object providing the endpoint.
+      -->
+
+      对提供端点的对象的引用。
+            
+  - **subsets.notReadyAddresses** ([]EndpointAddress)
+
+    <!--
+    IP addresses which offer the related ports but are not currently marked as ready because they have not yet finished starting, have recently failed a readiness check, or have recently failed a liveness check.
+
+    <a name="EndpointAddress"></a>
+    *EndpointAddress is a tuple that describes single IP address.*
+    -->
+
+    提供相关端口但由于尚未完成启动、最近未通过就绪态检查或最近未通过活跃性检查而被标记为当前未就绪的 IP 地址。
+    <a name="EndpointAddress"></a>
+    **EndpointAddress 是描述单个 IP 地址的元组。**
+
+    <!--
+    - **subsets.notReadyAddresses.ip** (string), required
+
+      The IP of this endpoint. May not be loopback (127.0.0.0/8), link-local (169.254.0.0/16), or link-local multicast ((224.0.0.0/24). IPv6 is also accepted but not fully supported on all platforms. Also, certain kubernetes components, like kube-proxy, are not IPv6 ready.
+    -->
+
+    - **subsets.notReadyAddresses.ip** (string), 必需
+
+      端点的 IP。不可以是本地环路（127.0.0.0/8）、链路本地（169.254.0.0/16）或链路本地多播（224.0.0.0/24）地址。
+      IPv6 也被接受，但并非在所有平台上都完全支持。
+      此外，诸如 kube-proxy 等某些 Kubernetes 组件还没有准备好支持 IPv6。
+
+    - **subsets.notReadyAddresses.hostname** (string)
+
+      <!--
+      The Hostname of this endpoint
+      -->
+
+      端点主机名称。
+
+    - **subsets.notReadyAddresses.nodeName** (string)
+    
+      <!--
+      Optional: Node hosting this endpoint. This can be used to determine endpoints local to a node.
+      -->
+
+      可选：承载此端点的节点。此字段可用于确定节点的本地端点。
+
+    - **subsets.notReadyAddresses.targetRef** (<a href="{{< ref "../common-definitions/object-reference#ObjectReference" >}}">ObjectReference</a>)
+
+      <!--
+      Reference to object providing the endpoint.
+      -->
+
+      对提供端点的对象的引用。
+
+  - **subsets.ports** ([]EndpointPort)
+
+    <!--
+    Port numbers available on the related IP addresses.
+    -->
+
+    相关 IP 地址上可用的端口号。
+    
+    <!--
+    <a name="EndpointPort"></a>
+    *EndpointPort is a tuple that describes a single port.*
+    -->
+
+    <a name="EndpointPort"></a>
+    **EndpointAddress 是描述单个 IP 地址的元组。**
+
+    <!--    
+    - **subsets.ports.port** (int32), required
+
+      The port number of the endpoint.
+    -->
+
+    - **subsets.ports.port** (int32), 必需
+
+      端点的端口号。
+
+    - **subsets.ports.protocol** (string)
+
+      <!--
+      The IP protocol for this port. Must be UDP, TCP, or SCTP. Default is TCP.
+      -->
+
+      此端口的 IP 协议。必须是 UDP、TCP 或 SCTP。默认值为 TCP。
+      
+    - **subsets.ports.name** (string)
+    
+      <!--
+      The name of this port.  This must match the 'name' field in the corresponding ServicePort. Must be a DNS_LABEL. Optional only if one port is defined.
+      -->
+
+      端口的名称。此字段必须与相应 ServicePort 中的 `name` 字段匹配。必须是 DNS_LABEL。
+      仅当定义了一个端口时才可选。
+
+    - **subsets.ports.appProtocol** (string)
+      
+      <!--
+      The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and https://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.
+      -->
+
+      端口的应用程序协议。此字段遵循标准的 Kubernetes 标签语法。
+      未加前缀的名称保留给 IANA 标准服务名称（遵循 RFC-6335 和 https://www.iana.org/assignments/service-names)。
+      非标准协议应使用带前缀名称，如 `mycompany.com/my-custom-protocol`。
+
+## EndpointsList {#EndpointsList}
+
+<!--
+EndpointsList is a list of endpoints.
+-->
+EndpointsList 是端点列表。
+
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: EndpointsList
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  <!--
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+  -->
+  标准的列表元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+<!--
+- **items** ([]<a href="{{< ref "../service-resources/endpoints-v1#Endpoints" >}}">Endpoints</a>), required
+
+  List of endpoints.
+
+## Operations {#Operations}
+-->
+- **items** ([]<a href="{{< ref "../service-resources/endpoints-v1#Endpoints" >}}">Endpoints</a>), 必需
+
+  端点列表。 
+
+## 操作 {#Operations}
+
+<hr>
+
+<!--
+### `get` read the specified Endpoints
+
+#### HTTP Request
+
+GET /api/v1/namespaces/{namespace}/endpoints/{name}
+
+#### Parameters
+-->
+### `get` 读取指定的 Endpoints
+
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/endpoints/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Endpoints
+-->
+- **name** (**路径参数**)：string，必需
+
+  Endpoints 的名称。
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**路径参数**)：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/endpoints-v1#Endpoints" >}}">Endpoints</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind Endpoints
+
+#### HTTP Request
+
+GET /api/v1/namespaces/{namespace}/endpoints
+
+#### Parameters
+-->
+### `list` 列出或监测 Endpoints 类型的对象
+
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/endpoints
+
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**路径参数**)：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+-->
+- **allowWatchBookmarks** (**查询参数**)：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!--
+- **continue** (*in query*): string
+-->
+- **continue** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+-->
+- **fieldSelector** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **labelSelector** (*in query*): string
+-->
+- **labelSelector** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+-->
+- **limit** (**查询参数**)：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+-->
+- **resourceVersion** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+-->
+- **resourceVersionMatch** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+-->
+- **timeoutSeconds** (**查询参数**)：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+- **watch** (*in query*): boolean
+-->
+- **watch** (**查询参数**)：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../service-resources/endpoints-v1#EndpointsList" >}}">EndpointsList</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/endpoints-v1#EndpointsList" >}}">EndpointsList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind Endpoints
+
+#### HTTP Request
+
+GET /api/v1/endpoints
+
+#### Parameters
+-->
+### `list` 列出或监测 Endpoints 类型的对象
+
+#### HTTP 请求
+
+GET /api/v1/endpoints
+
+#### 参数
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+-->
+- **allowWatchBookmarks** (**查询参数**)：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+-->
+- **fieldSelector** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **limit** (**查询参数**)：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+-->
+- **resourceVersion** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+- **timeoutSeconds** (**查询参数**)：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**)：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/endpoints-v1#EndpointsList" >}}">EndpointsList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create Endpoints
+
+#### HTTP Request
+
+POST /api/v1/namespaces/{namespace}/endpoints
+
+#### Parameters
+-->
+### `create` 创建 Endpoints
+
+#### HTTP 请求
+
+POST /api/v1/namespaces/{namespace}/endpoints
+
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../service-resources/endpoints-v1#Endpoints" >}}">Endpoints</a>, required
+-->
+ - **namespace** (**路径参数**)：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../service-resources/endpoints-v1#Endpoints" >}}">Endpoints</a>, 必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **dryRun** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **fieldValidation** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/endpoints-v1#Endpoints" >}}">Endpoints</a>): OK
+
+201 (<a href="{{< ref "../service-resources/endpoints-v1#Endpoints" >}}">Endpoints</a>): Created
+
+202 (<a href="{{< ref "../service-resources/endpoints-v1#Endpoints" >}}">Endpoints</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified Endpoints
+
+#### HTTP Request
+
+PUT /api/v1/namespaces/{namespace}/endpoints/{name}
+
+#### Parameters
+-->
+### `update` 替换指定的 Endpoints
+
+#### HTTP 请求
+
+PUT /api/v1/namespaces/{namespace}/endpoints/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+ 
+  name of the Endpoints
+-->
+- **name** (**路径参数**)：string，必需
+ 
+  Endpoints 名称
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** (**路径参数**)：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../service-resources/endpoints-v1#Endpoints" >}}">Endpoints</a>, required
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **dryRun** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **fieldValidation** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../service-resources/endpoints-v1#Endpoints" >}}">Endpoints</a>): OK
+
+201 (<a href="{{< ref "../service-resources/endpoints-v1#Endpoints" >}}">Endpoints</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/endpoints-v1#Endpoints" >}}">Endpoints</a>): OK
+
+201 (<a href="{{< ref "../service-resources/endpoints-v1#Endpoints" >}}">Endpoints</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified Endpoints
+
+#### HTTP Request
+
+PATCH /api/v1/namespaces/{namespace}/endpoints/{name}
+
+#### Parameters
+-->
+### `patch` 部分更新指定的 Endpoints
+
+#### HTTP 请求
+
+PATCH /api/v1/namespaces/{namespace}/endpoints/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Endpoints
+-->
+- **name** (**路径参数**)：string，必需
+
+  Endpoints名称
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+- **namespace** (**路径参数**)：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, 必需
+  
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **dryRun** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+-->
+- **fieldValidation** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**)：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/endpoints-v1#Endpoints" >}}">Endpoints</a>): OK
+
+201 (<a href="{{< ref "../service-resources/endpoints-v1#Endpoints" >}}">Endpoints</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete Endpoints
+
+#### HTTP Request
+
+DELETE /api/v1/namespaces/{namespace}/endpoints/{name}
+
+#### Parameters
+-->
+### `delete` 删除 Endpoints
+
+#### HTTP 请求
+
+DELETE /api/v1/namespaces/{namespace}/endpoints/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Endpoints
+-->
+- **name** (**路径参数**)：string，必需
+
+  Endpoints 名称
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** (**路径参数**)：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+- **dryRun** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+-->
+- **gracePeriodSeconds** (**查询参数**)：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+- **propagationPolicy** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of Endpoints
+
+#### HTTP Request
+
+DELETE /api/v1/namespaces/{namespace}/endpoints
+
+#### Parameters
+-->
+### `deletecollection` 删除 Endpoints 组
+
+#### HTTP 请求
+
+DELETE /api/v1/namespaces/{namespace}/endpoints
+
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+-->
+- **namespace** (**路径参数**)：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+  
+<!--
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+-->
+- **continue** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+- **dryRun** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+-->
+- **fieldSelector** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+-->
+- **gracePeriodSeconds** (**查询参数**)：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+-->
+- **labelSelector** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+-->
+- **limit** (**查询参数**)：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+- **propagationPolicy** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+-->
+- **resourceVersion** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+-->
+- **resourceVersionMatch** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+-->
+- **timeoutSeconds** (**查询参数**)：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/service-resources/ingress-class-v1.md b/content/zh-cn/docs/reference/kubernetes-api/service-resources/ingress-class-v1.md
new file mode 100644
index 0000000000..81f308cbaf
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/service-resources/ingress-class-v1.md
@@ -0,0 +1,687 @@
+---
+api_metadata:
+  apiVersion: "networking.k8s.io/v1"
+  import: "k8s.io/api/networking/v1"
+  kind: "IngressClass"
+content_type: "api_reference"
+description: "IngressClass 代表 Ingress 的类，被 Ingress 的规约引用。"
+title: "IngressClass"
+weight: 5
+---
+
+<!--
+api_metadata:
+  apiVersion: "networking.k8s.io/v1"
+  import: "k8s.io/api/networking/v1"
+  kind: "IngressClass"
+content_type: "api_reference"
+description: "IngressClass represents the class of the Ingress, referenced by the Ingress Spec."
+title: "IngressClass"
+weight: 5
+auto_generated: true
+-->
+
+`apiVersion: networking.k8s.io/v1`
+
+`import "k8s.io/api/networking/v1"`
+
+<!--
+## IngressClass {#IngressClass}
+
+IngressClass represents the class of the Ingress, referenced by the Ingress Spec. The `ingressclass.kubernetes.io/is-default-class` annotation can be used to indicate that an IngressClass should be considered default. When a single IngressClass resource has this annotation set to true, new Ingress resources without a class specified will be assigned this default class.
+-->
+## IngressClass {#IngressClass}
+
+IngressClass 代表 Ingress 的类，被 Ingress 的规约引用。
+`ingressclass.kubernetes.io/is-default-class`
+注解可以用来标明一个 IngressClass 应该被视为默认的 Ingress 类。
+当某个 IngressClass 资源将此注解设置为 true 时，
+没有指定类的新 Ingress 资源将被分配到此默认类。
+
+<hr>
+
+- **apiVersion**: networking.k8s.io/v1
+
+- **kind**: IngressClass
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  <!--
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+  标准的列表元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../service-resources/ingress-class-v1#IngressClassSpec" >}}">IngressClassSpec</a>)
+
+  <!--
+  Spec is the desired state of the IngressClass. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+  -->
+  spec 是 IngressClass 的期望状态。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+## IngressClassSpec {#IngressClassSpec}
+
+<!--
+IngressClassSpec provides information about the class of an Ingress.
+-->
+IngressClassSpec 提供有关 Ingress 类的信息。
+
+<hr>
+
+- **controller** (string)
+
+  <!--
+  Controller refers to the name of the controller that should handle this class. This allows for different "flavors" that are controlled by the same controller. For example, you may have different Parameters for the same implementing controller. This should be specified as a domain-prefixed path no more than 250 characters in length, e.g. "acme.io/ingress-controller". This field is immutable.
+  -->
+  controller 是指应该处理此类的控制器名称。
+  这允许由同一控制器控制不同“口味”。例如，对于同一个实现的控制器你可能有不同的参数。
+  此字段应该指定为长度不超过 250 个字符的域前缀路径，例如 “acme.io/ingress-controller”。
+  该字段是不可变的。
+
+- **parameters** (IngressClassParametersReference)
+
+  <!--
+  Parameters is a link to a custom resource containing additional configuration for the controller. This is optional if the controller does not require extra parameters.
+  -->
+  parameters 是指向控制器中包含额外配置的自定义资源的链接。
+  如果控制器不需要额外的属性，这是可选的。
+
+  <a name="IngressClassParametersReference"></a>
+  <!--
+  *IngressClassParametersReference identifies an API object. This can be used to specify a cluster or namespace-scoped resource.*
+  -->
+  **IngressClassParametersReference 标识一个 API 对象。这可以用来指定一个集群或者命名空间范围的资源**
+
+  <!--
+  - **parameters.kind** (string), required
+
+    Kind is the type of resource being referenced.
+  -->
+
+  - **parameters.kind** (string)，必需
+    
+    kind 是被引用资源的类型。
+
+  <!--
+  - **parameters.name** (string), required
+
+    Name is the name of resource being referenced.
+  -->
+
+  - **parameters.name** (string)，必需
+
+    name 是被引用资源的名称。
+
+  - **parameters.apiGroup** (string)
+    <!--
+    APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.
+    -->
+
+    apiGroup 是被引用资源的组。
+    如果未指定 apiGroup，则被指定的 kind 必须在核心 API 组中。
+    对于任何其他第三方类型，apiGroup 是必需的。
+
+  - **parameters.namespace** (string)
+    <!--
+    Namespace is the namespace of the resource being referenced. This field is required when scope is set to "Namespace" and must be unset when scope is set to "Cluster".
+    -->
+
+    namespace 是被引用资源的命名空间。
+    当范围被设置为 “namespace” 时，此字段是必需的；
+    当范围被设置为 “Cluster” 时，此字段必须不设置。
+
+  - **parameters.scope** (string)
+    <!--
+    Scope represents if this refers to a cluster or namespace scoped resource. This may be set to "Cluster" (default) or "Namespace".
+    -->
+
+    scope 表示是否引用集群或者命名空间范围的资源。
+    这可以设置为“集群”（默认）或者“命名空间”。
+
+## IngressClassList {#IngressClassList}
+
+<!--
+IngressClassList is a collection of IngressClasses.
+-->
+IngressClassList 是 IngressClasses 的集合。
+
+<hr>
+
+- **apiVersion**: networking.k8s.io/v1
+
+- **kind**: IngressClassList
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  <!--
+  Standard list metadata.
+  -->
+  标准的列表元数据。
+
+<!--
+- **items** ([]<a href="{{< ref "../service-resources/ingress-class-v1#IngressClass" >}}">IngressClass</a>), required
+
+  Items is the list of IngressClasses.
+-->
+- **items** ([]<a href="{{< ref "../service-resources/ingress-class-v1#IngressClass" >}}">IngressClass</a>)，必需
+
+  items 是 IngressClasses 的列表。
+
+<!--
+## Operations {#Operations}
+-->
+## 操作 {#Operations}
+
+<hr>
+
+<!--
+### `get` read the specified IngressClass
+
+#### HTTP Request
+-->
+### `get` 读取指定的 IngressClass
+
+#### HTTP 请求
+
+GET /apis/networking.k8s.io/v1/ingressclasses/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the IngressClass
+-->
+- **name** （**路径参数**）：string，必需
+
+  IngressClass 的名称
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/ingress-class-v1#IngressClass" >}}">IngressClass</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind IngressClass
+#### HTTP Request
+-->
+### `list` 列出或监视 IngressClass 类型的对象
+
+#### HTTP 请求
+
+GET /apis/networking.k8s.io/v1/ingressclasses
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+-->
+- **allowWatchBookmarks** （**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!--
+- **continue** (*in query*): string
+-->
+- **continue** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+-->
+- **fieldSelector** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **labelSelector** (*in query*): string
+-->
+- **labelSelector** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+-->
+- **limit** （**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+-->
+- **resourceVersion** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+-->
+- **resourceVersionMatch** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+-->
+- **timeoutSeconds** （**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+- **watch** (*in query*): boolean
+-->
+- **watch** （**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/ingress-class-v1#IngressClassList" >}}">IngressClassList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create an IngressClass
+
+#### HTTP Request
+-->
+### `create` 创建一个 IngressClass
+
+#### HTTP 请求
+
+POST /apis/networking.k8s.io/v1/ingressclasses
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **body**: <a href="{{< ref "../service-resources/ingress-class-v1#IngressClass" >}}">IngressClass</a>, required
+-->
+- **body**: <a href="{{< ref "../service-resources/ingress-class-v1#IngressClass" >}}">IngressClass</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/ingress-class-v1#IngressClass" >}}">IngressClass</a>): OK
+
+201 (<a href="{{< ref "../service-resources/ingress-class-v1#IngressClass" >}}">IngressClass</a>): Created
+
+202 (<a href="{{< ref "../service-resources/ingress-class-v1#IngressClass" >}}">IngressClass</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified IngressClass
+
+#### HTTP Request
+-->
+### `update` 替换指定的 IngressClass
+
+#### HTTP 请求
+
+PUT /apis/networking.k8s.io/v1/ingressclasses/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the IngressClass
+-->
+- **name** （**路径参数**）：string，必需
+
+  IngressClass 的名称
+
+<!--
+- **body**: <a href="{{< ref "../service-resources/ingress-class-v1#IngressClass" >}}">IngressClass</a>, required
+-->
+- **body**: <a href="{{< ref "../service-resources/ingress-class-v1#IngressClass" >}}">IngressClass</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/ingress-class-v1#IngressClass" >}}">IngressClass</a>): OK
+
+201 (<a href="{{< ref "../service-resources/ingress-class-v1#IngressClass" >}}">IngressClass</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified IngressClass
+
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 IngressClass
+
+#### HTTP 请求
+
+PATCH /apis/networking.k8s.io/v1/ingressclasses/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the IngressClass
+-->
+- **name** （**路径参数**）：string，必需
+
+  IngressClass 的名称
+
+<!--
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **force** (*in query*): boolean
+-->
+- **force** （**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/ingress-class-v1#IngressClass" >}}">IngressClass</a>): OK
+
+201 (<a href="{{< ref "../service-resources/ingress-class-v1#IngressClass" >}}">IngressClass</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete an IngressClass
+
+#### HTTP Request
+-->
+### `delete` 删除一个 IngressClass
+
+#### HTTP 请求
+
+DELETE /apis/networking.k8s.io/v1/ingressclasses/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the IngressClass
+-->
+- **name** （**路径参数**）：string，必需
+
+  IngressClass 的名称
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+-->
+- **gracePeriodSeconds** （**查询字符串**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **propagationPolicy** (*in query*): string
+-->
+- **propagationPolicy** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of IngressClass
+
+#### HTTP Request
+-->
+### `deletecollection` 删除 IngressClass 的集合
+
+DELETE /apis/networking.k8s.io/v1/ingressclasses
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **continue** (*in query*): string
+-->
+- **continue** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+-->
+- **fieldSelector** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+-->
+- **gracePeriodSeconds** （**查询字符串**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **labelSelector** (*in query*): string
+-->
+- **labelSelector** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+-->
+- **limit** （**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **propagationPolicy** (*in query*): string
+-->
+- **propagationPolicy** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+-->
+- **resourceVersion** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+-->
+- **resourceVersionMatch** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+-->
+- **timeoutSeconds** （**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/service-resources/ingress-v1.md b/content/zh-cn/docs/reference/kubernetes-api/service-resources/ingress-v1.md
new file mode 100644
index 0000000000..f85398fbfb
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/service-resources/ingress-v1.md
@@ -0,0 +1,1427 @@
+---
+api_metadata:
+  apiVersion: "networking.k8s.io/v1"
+  import: "k8s.io/api/networking/v1"
+  kind: "Ingress"
+content_type: "api_reference"
+description: "Ingress 是允许入站连接到达后端定义的端点的规则集合。"
+title: "Ingress"
+weight: 4
+---
+<!--
+api_metadata:
+  apiVersion: "networking.k8s.io/v1"
+  import: "k8s.io/api/networking/v1"
+  kind: "Ingress"
+content_type: "api_reference"
+description: "Ingress is a collection of rules that allow inbound connections to reach the endpoints defined by a backend."
+title: "Ingress"
+weight: 4
+auto_generated: true
+-->
+
+`apiVersion: networking.k8s.io/v1`
+
+`import "k8s.io/api/networking/v1"`
+
+<!--
+## Ingress {#Ingress}
+
+Ingress is a collection of rules that allow inbound connections to reach the endpoints defined by a backend. An Ingress can be configured to give services externally-reachable urls, load balance traffic, terminate SSL, offer name based virtual hosting etc.
+-->
+## Ingress {#Ingress}
+
+Ingress 是允许入站连接到达后端定义的端点的规则集合。
+Ingress 可以配置为向服务提供外部可访问的 URL、负载均衡流量、终止 SSL、提供基于名称的虚拟主机等。
+
+<hr>
+
+- **apiVersion**: networking.k8s.io/v1
+
+- **kind**: Ingress
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  
+  <!--
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+  标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../service-resources/ingress-v1#IngressSpec" >}}">IngressSpec</a>)
+
+  <!--
+  Spec is the desired state of the Ingress. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+  -->
+
+  spec 是 Ingress 的预期状态。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+- **status** (<a href="{{< ref "../service-resources/ingress-v1#IngressStatus" >}}">IngressStatus</a>)
+
+  <!--
+  Status is the current state of the Ingress. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+  -->
+
+  status 是 Ingress 的当前状态。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+## IngressSpec {#IngressSpec}
+
+<!--
+IngressSpec describes the Ingress the user wishes to exist.
+-->
+IngressSpec 描述用户希望存在的 Ingress。
+
+<hr>
+
+- **defaultBackend** (<a href="{{< ref "../service-resources/ingress-v1#IngressBackend" >}}">IngressBackend</a>)
+
+  <!--
+  DefaultBackend is the backend that should handle requests that don't match any rule. If Rules are not specified, DefaultBackend must be specified. If DefaultBackend is not set, the handling of requests that do not match any of the rules will be up to the Ingress controller.
+  -->
+
+  defaultBackend 是负责处理与任何规则都不匹配的请求的后端。
+  如果未指定 rules，则必须指定 defaultBackend。
+  如果未设置 defaultBackend，则不符合任何 rules 的请求的处理将由 Ingress 控制器决定。
+
+- **ingressClassName** (string)
+
+  <!--
+  IngressClassName is the name of the IngressClass cluster resource. The associated IngressClass defines which controller will implement the resource. This replaces the deprecated `kubernetes.io/ingress.class` annotation. For backwards compatibility, when that annotation is set, it must be given precedence over this field. The controller may emit a warning if the field and annotation have different values. Implementations of this API should ignore Ingresses without a class specified. An IngressClass resource may be marked as default, which can be used to set a default value for this field. For more information, refer to the IngressClass documentation.
+  -->
+
+  ingressClassName 是 IngressClass 集群资源的名称。关联的 Ingress 类定义了将实际实现 Ingress 资源的控制器。
+  这一字段将取代不再推荐使用的 `kubernetes.io/ingress.class` 注解。
+  为了向后兼容，当设置了该注解时，注解必须优先于此字段。如果字段和注解具有不同的值，控制器可能会发出警告。
+  此 API 的实现应忽略未指定类的 Ingress 资源。IngressClass 资源可被标记为 default，用来设置此字段的默认值。
+  有关更多信息，请参阅 IngressClass 文档。
+
+- **rules** ([]IngressRule)
+
+  <!--
+  *Atomic: will be replaced during a merge*
+  
+  A list of host rules used to configure the Ingress. If unspecified, or no rule matches, all traffic is sent to the default backend.
+  -->
+
+  **Atomic: 将在合并期间被替换**
+  
+  用于配置 Ingress 的主机规则列表。如果未指定或没有规则匹配，则所有流量都将发送到默认后端。
+
+  <!--
+  <a name="IngressRule"></a>
+  *IngressRule represents the rules mapping the paths under a specified host to the related backend services. Incoming requests are first evaluated for a host match, then routed to the backend associated with the matching IngressRuleValue.*
+  -->
+
+  <a name="IngressRule"></a>
+  **IngressRule 表示将指定主机下的路径映射到相关后端服务的规则。
+  传入请求首先评估主机匹配，然后路由到与匹配的 IngressRuleValue 关联的后端。**
+
+  - **rules.host** (string)
+
+    <!--
+    Host is the fully qualified domain name of a network host, as defined by RFC 3986. Note the following deviations from the "host" part of the URI as defined in RFC 3986: 1. IPs are not allowed. Currently an IngressRuleValue can only apply to
+       the IP in the Spec of the parent Ingress.
+    2. The `:` delimiter is not respected because ports are not allowed.
+    	  Currently the port of an Ingress is implicitly :80 for http and
+    	  :443 for https.
+    Both these may change in the future. Incoming requests are matched against the host before the IngressRuleValue. If the host is unspecified, the Ingress routes all traffic based on the specified IngressRuleValue.
+    -->
+    
+    host 是 RFC 3986 定义的网络主机的完全限定域名。请注意以下与 RFC 3986 中定义的 URI 的 “host” 部分的偏差：
+
+    1. 不允许 IP。当前 IngressRuleValue 只能应用于父 Ingress Spec 中的 IP。
+    2. 由于不允许使用端口，因此不理会 “:” 分隔符。
+       当前 Ingress 的端口隐式为：
+
+       - `:80` 用于 http
+       - `:443` 用于 https
+
+    这两种情况在未来都可能发生变化。入站请求在通过 IngressRuleValue 处理之前先进行 host 匹配。
+    如果主机未指定，Ingress 将根据指定的 IngressRuleValue 规则路由所有流量。
+
+    <!--
+    Host can be "precise" which is a domain name without the terminating dot of a network host (e.g. "foo.bar.com") or "wildcard", which is a domain name prefixed with a single wildcard label (e.g. "*.foo.com"). The wildcard character '*' must appear by itself as the first DNS label and matches only a single label. You cannot have a wildcard label by itself (e.g. Host == "*"). Requests will be matched against the Host field in the following way: 1. If Host is precise, the request matches this rule if the http host header is equal to Host. 2. If Host is a wildcard, then the request matches this rule if the http host header is to equal to the suffix (removing the first label) of the wildcard rule.
+    -->
+
+    host 可以是 “精确“ 的，设置为一个不含终止句点的网络主机域名（例如 “foo.bar.com” ），
+    也可以是一个 “通配符”，设置为以单个通配符标签为前缀的域名（例如 “*.foo.com”）。
+    通配符 “*” 必须单独显示为第一个 DNS 标签，并且仅与单个标签匹配。
+    你不能单独使用通配符作为标签（例如，Host=“*”）。请求将按以下方式与主机字段匹配：
+
+    1. 如果 host 是精确匹配的，则如果 http `Host` 标头等于 host 值，则请求与此规则匹配。
+    2. 如果 host 是用通配符给出的，那么如果 HTTP `Host` 标头与通配符规则的后缀（删除第一个标签）相同，
+       则请求与此规则匹配。
+
+  - **rules.http** (HTTPIngressRuleValue)
+
+    <!--
+    <a name="HTTPIngressRuleValue"></a>
+    *HTTPIngressRuleValue is a list of http selectors pointing to backends. In the example: http://<host>/<path>?<searchpart> -> backend where where parts of the url correspond to RFC 3986, this resource will be used to match against everything after the last '/' and before the first '?' or '#'.*
+    -->
+
+    <a name="HTTPIngressRuleValue"></a>
+    **HTTPIngressRuleValue 是指向后端的 http 选择算符列表。例如 `http://<host>/<path>?<searchpart> -> 后端`，
+    其中 `url` 的部分对应于 RFC 3986，此资源将用于匹配最后一个 “/” 之后和第一个 “?” 之前的所有内容或 “#”。**
+
+    <!--
+    - **rules.http.paths** ([]HTTPIngressPath), required
+    -->
+
+    - **rules.http.paths** ([]HTTPIngressPath)，必需
+
+      <!--
+      *Atomic: will be replaced during a merge*
+      
+      A collection of paths that map requests to backends.
+
+      <a name="HTTPIngressPath"></a>
+      *HTTPIngressPath associates a path with a backend. Incoming urls matching the path are forwarded to the backend.*
+      -->
+
+      **Atomic: 将在合并期间被替换**
+      
+      将请求映射到后端的路径集合。
+
+      <a name="HTTPIngressPath"></a>
+      **HTTPIngressPath 将路径与后端关联。与路径匹配的传入 URL 将转发到后端。**
+
+      <!--
+      - **rules.http.paths.backend** (<a href="{{< ref "../service-resources/ingress-v1#IngressBackend" >}}">IngressBackend</a>), required
+
+        Backend defines the referenced service endpoint to which the traffic will be forwarded to.
+      -->
+
+      - **rules.http.paths.backend** (<a href="{{< ref "../service-resources/ingress-v1#IngressBackend" >}}">IngressBackend</a>)，必需
+
+        backend 定义将流量转发到的引用服务端点。
+
+      <!--
+      - **rules.http.paths.pathType** (string), required
+      -->
+
+      - **rules.http.paths.pathType** (string)，必需
+
+        <!--
+        PathType determines the interpretation of the Path matching. PathType can be one of the following values: * Exact: Matches the URL path exactly. * Prefix: Matches based on a URL path prefix split by '/'. Matching is
+          done on a path element by element basis. A path element refers is the
+          list of labels in the path split by the '/' separator. A request is a
+          match for path p if every p is an element-wise prefix of p of the
+          request path. Note that if the last element of the path is a substring
+          of the last element in request path, it is not a match (e.g. /foo/bar
+          matches /foo/bar/baz, but does not match /foo/barbaz).
+        * ImplementationSpecific: Interpretation of the Path matching is up to
+          the IngressClass. Implementations can treat this as a separate PathType
+          or treat it identically to Prefix or Exact path types.
+        Implementations are required to support all path types.
+        -->
+
+        pathType 决定如何解释 path 匹配。pathType 可以是以下值之一：
+
+        * `Exact`：与 URL 路径完全匹配。
+        * `Prefix`：根据按 “/” 拆分的 URL 路径前缀进行匹配。
+
+          匹配是按路径元素逐个元素完成。路径元素引用的是路径中由“/”分隔符拆分的标签列表。
+          如果每个 p 都是请求路径 p 的元素前缀，则请求与路径 p 匹配。
+          请注意，如果路径的最后一个元素是请求路径中的最后一个元素的子字符串，则匹配不成功
+          （例如 `/foo/bar` 匹配 `/foo/bar/baz`，但不匹配 `/foo/barbaz`）。
+        * ImplementationSpecific：路径匹配的解释取决于 IngressClass。
+          实现可以将其视为单独的路径类型，也可以将其视为前缀或确切的路径类型。
+          实现需要支持所有路径类型。
+
+      - **rules.http.paths.path** (string)
+
+        <!--
+        Path is matched against the path of an incoming request. Currently it can contain characters disallowed from the conventional "path" part of a URL as defined by RFC 3986. Paths must begin with a '/' and must be present when using PathType with value "Exact" or "Prefix".
+        -->
+
+        path 要与传入请求的路径进行匹配。
+        目前，它可以包含 RFC 3986 定义的 URL 的常规 “路径” 部分所不允许的字符。
+        路径必须以 “/” 开头，并且在 pathType 值为 “Exact” 或 “Prefix” 时必须存在。
+
+- **tls** ([]IngressTLS)
+
+  <!--
+  *Atomic: will be replaced during a merge*
+  
+  TLS configuration. Currently the Ingress only supports a single TLS port, 443. If multiple members of this list specify different hosts, they will be multiplexed on the same port according to the hostname specified through the SNI TLS extension, if the ingress controller fulfilling the ingress supports SNI.
+  -->
+  
+  **Atomic: 将在合并期间被替换**
+  
+  TLS 配置。目前，Ingress 仅支持一个 TLS 端口 443。
+  如果此列表的多个成员指定了不同的主机，如果实现 Ingress 的 Ingress 控制器支持 SNI，
+  则它们将根据通过 SNI TLS 扩展指定的主机名在同一端口上多路复用。
+
+  <!--
+  <a name="IngressTLS"></a>
+  *IngressTLS describes the transport layer security associated with an Ingress.*
+  -->
+
+  <a name="IngressTLS"></a>
+  **IngressTLS 描述与 Ingress 相关的传输层安全性。**
+
+  - **tls.hosts** ([]string)
+
+    <!--
+    *Atomic: will be replaced during a merge*
+    
+    Hosts are a list of hosts included in the TLS certificate. The values in this list must match the name/s used in the tlsSecret. Defaults to the wildcard host setting for the loadbalancer controller fulfilling this Ingress, if left unspecified.
+    -->
+
+    **Atomic: 将在合并期间被替换**
+    
+    hosts 是 TLS 证书中包含的主机列表。
+    此列表中的值必须与 tlsSecret 中使用的名称匹配。
+    默认为实现此 Ingress 的负载均衡控制器的通配符主机设置（如果未指定）。
+
+  - **tls.secretName** (string)
+    
+    <!--
+    SecretName is the name of the secret used to terminate TLS traffic on port 443. Field is left optional to allow TLS routing based on SNI hostname alone. If the SNI host in a listener conflicts with the "Host" header field used by an IngressRule, the SNI host is used for termination and value of the Host header is used for routing.
+    -->
+
+    secretName 是用于终止端口 443 上 TLS 通信的 Secret 的名称。
+    字段是可选的，以允许仅基于 SNI 主机名的 TLS 路由。
+    如果侦听器中的 SNI 主机与入口规则使用的 “Host” 标头字段冲突，则 SNI 主机用于终止，Host 标头的值用于路由。
+
+<!--
+## IngressBackend {#IngressBackend}
+
+IngressBackend describes all endpoints for a given service and port.
+-->
+## IngressBackend {#IngressBackend}
+
+IngressBackend 描述给定服务和端口的所有端点。
+
+<hr>
+
+<!--
+- **resource** (<a href="{{< ref "../common-definitions/typed-local-object-reference#TypedLocalObjectReference" >}}">TypedLocalObjectReference</a>)
+
+  Resource is an ObjectRef to another Kubernetes resource in the namespace of the Ingress object. If resource is specified, a service.Name and service.Port must not be specified. This is a mutually exclusive setting with "Service".
+-->
+
+- **resource** (<a href="{{< ref "../common-definitions/typed-local-object-reference#TypedLocalObjectReference" >}}">TypedLocalObjectReference</a>)
+
+  resource 是对 Ingress 对象所在命名空间中另一个 Kubernetes 资源的引用。
+  如果指定了 resource，则不得指定 service.name 和 service.port。
+  此字段是一个与 `service` 互斥的设置。
+
+- **service** (IngressServiceBackend)
+
+  <!--
+  Service references a Service as a Backend. This is a mutually exclusive setting with "Resource".
+
+  <a name="IngressServiceBackend"></a>
+  *IngressServiceBackend references a Kubernetes Service as a Backend.*
+  -->
+  
+  service 引用一个 Service 作为后端。此字段是一个与 `resource` 互斥的设置。
+
+  <a name="IngressServiceBackend"></a>
+  **IngressServiceBackend 引用一个 Kubernetes Service 作为后端。**
+  
+  <!--
+  - **service.name** (string), required
+  -->
+  - **service.name** (string)，必需  
+    
+    <!--
+    Name is the referenced service. The service must exist in the same namespace as the Ingress object.
+    -->
+
+    name 是引用的服务。服务必须与 Ingress 对象位于同一命名空间中。
+
+  <!--
+  - **service.port** (ServiceBackendPort)
+
+    Port of the referenced service. A port name or port number is required for a IngressServiceBackend.
+
+    <a name="ServiceBackendPort"></a>
+    *ServiceBackendPort is the service port being referenced.*
+  -->
+  
+  - **service.port** (ServiceBackendPort)
+
+    所引用的服务的端口。IngressServiceBackend 需要端口名或端口号。
+
+    <a name="ServiceBackendPort"></a>
+    **ServiceBackendPort 是被引用的服务的端口。**
+    
+    - **service.port.name** (string)
+      
+      <!--
+      Name is the name of the port on the Service. This is a mutually exclusive setting with "Number".
+      -->
+
+      name 是服务上的端口名称。此字段是一个与 `number` 互斥的设置。
+
+    - **service.port.number** (int32)
+
+      <!--
+      Number is the numerical port number (e.g. 80) on the Service. This is a mutually exclusive setting with "Name".
+      -->
+
+      number 是服务上的数字形式端口号（例如 80）。此字段是一个与 `name` 互斥的设置。
+
+<!--
+## IngressStatus {#IngressStatus}
+
+IngressStatus describe the current state of the Ingress.
+
+<hr>
+-->
+## IngressStatus {#IngressStatus}
+
+IngressStatus 描述 Ingress 的当前状态。
+
+<hr>
+
+- **loadBalancer** (LoadBalancerStatus)
+
+  <!--
+  LoadBalancer contains the current status of the load-balancer.
+
+  <a name="LoadBalancerStatus"></a>
+  *LoadBalancerStatus represents the status of a load-balancer.*
+  -->
+
+  loadBalancer 包含负载均衡器的当前状态。
+
+  <a name="LoadBalancerStatus"></a>
+  **LoadBalancerStatus 表示负载均衡器的状态。**
+
+  - **loadBalancer.ingress** ([]LoadBalancerIngress)
+
+    <!--
+    Ingress is a list containing ingress points for the load-balancer. Traffic intended for the service should be sent to these ingress points.
+
+    <a name="LoadBalancerIngress"></a>
+    *LoadBalancerIngress represents the status of a load-balancer ingress point: traffic intended for the service should be sent to an ingress point.*
+    -->
+
+    ingress 是一个包含负载均衡器入口点的列表。用于服务的流量应发送到这些入口点。
+
+    <a name="LoadBalancerIngress"></a>
+    **LoadBalancerIngress 表示负载均衡器入口点的状态：用于服务的流量应发送到入口点。**
+
+    - **loadBalancer.ingress.hostname** (string)
+
+      <!--
+      Hostname is set for load-balancer ingress points that are DNS based (typically AWS load-balancers)
+      -->
+
+      hostname 是为基于 DNS 的负载平衡器（通常为 AWS 负载平衡器）入口点所设置的主机名。
+
+    - **loadBalancer.ingress.ip** (string)
+
+      <!--
+      IP is set for load-balancer ingress points that are IP based (typically GCE or OpenStack load-balancers)
+      -->
+
+      ip 是为基于 IP 的负载平衡器（通常为 GCE 或 OpenStack 负载平衡器）入口点设置的 IP。
+
+    - **loadBalancer.ingress.ports** ([]PortStatus)
+
+      <!--
+      *Atomic: will be replaced during a merge*
+      
+      Ports is a list of records of service ports If used, every port defined in the service should have an entry in it
+      -->
+
+      **Atomic: 将在合并期间被替换**
+      
+      ports 是服务端口的记录列表。如果使用了此字段，服务中定义的每个端口中都应该有一个条目与之对应。
+
+      <!--
+      - **loadBalancer.ingress.ports.port** (int32), required
+      -->
+
+      - **loadBalancer.ingress.ports.port** (int32)，必需
+        
+        <!--
+        Port is the port number of the service port of which status is recorded here
+        -->
+
+        port 在此是所记录状态对应的服务端口的端口号。
+
+      <!--  
+      - **loadBalancer.ingress.ports.protocol** (string), required
+      -->
+
+      - **loadBalancer.ingress.ports.protocol** (string)，必需
+        
+        <!--
+        Protocol is the protocol of the service port of which status is recorded here The supported values are: "TCP", "UDP", "SCTP"
+        -->
+
+        protocol 是服务端口的协议，其状态记录在此。支持的值为：“TCP”、“UDP”、“SCTP”。
+
+      - **loadBalancer.ingress.ports.error** (string)
+
+        <!--
+        Error is to record the problem with the service port The format of the error shall comply with the following rules: - built-in error values shall be specified in this file and those shall use
+          CamelCase names
+        - cloud provider specific error values must have names that comply with the
+          format foo.example.com/CamelCase.
+        -->
+
+        error 用来记录服务端口的问题。错误的格式应符合以下规则：
+
+        - 应在此文件中指定内置错误码，并且错误码应使用驼峰法命名。
+        - 特定于云驱动的错误码名称必须符合 `foo.example.com/CamelCase` 格式。
+
+<!--
+## IngressList {#IngressList}
+
+IngressList is a collection of Ingress.
+
+-->
+## IngressList {#IngressList}
+
+IngressList 是 Ingress 的集合。
+
+<!--
+- **items** ([]<a href="{{< ref "../service-resources/ingress-v1#Ingress" >}}">Ingress</a>), required
+
+  Items is the list of Ingress.
+-->
+
+<hr>
+
+- **items** ([]<a href="{{< ref "../service-resources/ingress-v1#Ingress" >}}">Ingress</a>)，必需
+
+  items 是 Ingress 的列表。
+
+<!--
+- **apiVersion** (string)
+
+  APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
+-->
+
+- **apiVersion** (string)
+
+  apiVersion 定义对象表示的版本化模式。
+  服务器应将已识别的架构转换为最新的内部值，并且可能会拒绝未识别的值。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
+
+- **kind** (string)
+
+  <!--
+  Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+  -->
+
+  kind 是一个字符串值，表示此对象所表示的 REST 资源。
+  服务器可以从客户端向其提交请求的端点推断出这一点。不能被更新。采用驼峰编码。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  
+  <!--
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+
+  标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+## 操作 {#Operations}
+
+<hr>
+
+<!--
+### `get` read the specified Ingress
+
+#### HTTP Request
+
+GET /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}
+
+#### Parameters
+-->
+### `get` 读取指定的 Ingress
+
+#### HTTP 请求
+
+GET /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Ingress
+-->
+- **name** (**路径参数**)：string，必需
+
+  Ingress 的名称。
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **namespace** (**路径参数**)：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/ingress-v1#Ingress" >}}">Ingress</a>): OK
+
+401: Unauthorized
+
+<!--
+### `get` read status of the specified Ingress
+
+#### HTTP Request
+
+GET /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}/status
+
+#### Parameters
+-->
+### `get` 读取指定 Ingress 状态
+
+#### HTTP 请求
+
+GET /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}/status
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Ingress
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **name** (**路径参数**)：string，必需
+
+  Ingress 的名称。
+
+- **namespace** (**路径参数**)：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/ingress-v1#Ingress" >}}">Ingress</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind Ingress
+
+#### HTTP Request
+
+GET /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses
+
+#### Parameters
+-->
+### `list` 列出或监测 Ingress 类型对象
+
+#### HTTP 请求
+
+GET /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses
+
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** (**路径参数**)：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+-->
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!--
+- **continue** (*in query*): string
+-->
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+-->
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **labelSelector** (*in query*): string
+-->
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+-->
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+-->
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+-->
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+-->
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+- **watch** (*in query*): boolean
+-->
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/ingress-v1#IngressList" >}}">IngressList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind Ingress
+
+#### HTTP Request
+
+GET /apis/networking.k8s.io/v1/ingresses
+
+#### Parameters
+-->
+### `list` 列出或监测 Ingress 类型对象
+
+#### HTTP 请求
+
+GET /apis/networking.k8s.io/v1/ingresses
+
+#### 参数
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+-->
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!--
+- **continue** (*in query*): string
+-->
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+-->
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **labelSelector** (*in query*): string
+-->
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+-->
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+-->
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!-->
+- **resourceVersionMatch** (*in query*): string
+-->
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+-->
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+- **watch** (*in query*): boolean
+-->
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../service-resources/ingress-v1#IngressList" >}}">IngressList</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/ingress-v1#IngressList" >}}">IngressList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create an Ingress
+
+#### HTTP Request
+
+POST /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses
+
+#### Parameters
+-->
+### `create` 创建一个 Ingress
+
+#### HTTP 请求
+
+POST /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses
+
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../service-resources/ingress-v1#Ingress" >}}">Ingress</a>, required
+-->
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../service-resources/ingress-v1#Ingress" >}}">Ingress</a>，必需
+  
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/ingress-v1#Ingress" >}}">Ingress</a>): OK
+
+201 (<a href="{{< ref "../service-resources/ingress-v1#Ingress" >}}">Ingress</a>): Created
+
+202 (<a href="{{< ref "../service-resources/ingress-v1#Ingress" >}}">Ingress</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified Ingress
+
+#### HTTP Request
+
+PUT /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}
+
+#### Parameters
+-->
+### `update` 替换指定的 Ingress
+
+#### HTTP 请求
+
+PUT /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Ingress
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../service-resources/ingress-v1#Ingress" >}}">Ingress</a>, required
+-->
+- **name** (**路径参数**): string，必需
+
+  Ingress 的名称。
+
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../service-resources/ingress-v1#Ingress" >}}">Ingress</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/ingress-v1#Ingress" >}}">Ingress</a>): OK
+
+201 (<a href="{{< ref "../service-resources/ingress-v1#Ingress" >}}">Ingress</a>): Created
+
+401: Unauthorized
+
+<!--
+### `update` replace status of the specified Ingress
+
+#### HTTP Request
+
+PUT /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}/status
+
+#### Parameters
+-->
+### `update` 替换指定 Ingress 的状态
+
+#### HTTP 请求
+
+PUT /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}/status
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Ingress
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../service-resources/ingress-v1#Ingress" >}}">Ingress</a>, required
+-->
+- **name** (**路径参数**)：string，必需
+
+  Ingress 的名称。
+
+- **namespace** (**路径参数**)：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../service-resources/ingress-v1#Ingress" >}}">Ingress</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/ingress-v1#Ingress" >}}">Ingress</a>): OK
+
+201 (<a href="{{< ref "../service-resources/ingress-v1#Ingress" >}}">Ingress</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified Ingress
+
+#### HTTP Request
+
+PATCH /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}
+
+#### Parameters
+-->
+### `patch` 部分更新指定的 Ingress
+
+#### HTTP 请求
+
+PATCH /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Ingress
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+- **name** (**路径参数**)：string，必需
+
+  Ingress 的名称。
+
+- **namespace** (**路径参数**)：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **force** (*in query*): boolean
+-->
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/ingress-v1#Ingress" >}}">Ingress</a>): OK
+
+201 (<a href="{{< ref "../service-resources/ingress-v1#Ingress" >}}">Ingress</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update status of the specified Ingress
+
+#### HTTP Request
+
+PATCH /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}/status
+
+#### Parameters
+-->
+### `patch` 部分更新指定 Ingress 的状态
+
+#### HTTP 请求
+
+PATCH /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}/status
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Ingress
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+- **name** (**路径参数**)：string，必需
+
+  Ingress 的名称。
+
+- **namespace** (**路径参数**)：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **force** (*in query*): boolean
+-->
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../service-resources/ingress-v1#Ingress" >}}">Ingress</a>): OK
+
+201 (<a href="{{< ref "../service-resources/ingress-v1#Ingress" >}}">Ingress</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete an Ingress
+
+#### HTTP Request
+
+DELETE /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}
+
+#### Parameters
+-->
+### `delete` 删除一个 Ingress
+
+#### HTTP 请求
+
+DELETE /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Ingress
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+-->
+- **name** (**路径参数**)：string，必需
+
+  Ingress 的名称。
+
+- **namespace** (**路径参数**)：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a> 
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+-->
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **propagationPolicy** (*in query*): string
+-->
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of Ingress
+
+#### HTTP Request
+
+DELETE /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses
+
+#### Parameters
+-->
+### `deletecollection` 删除 Ingress 的集合
+
+#### HTTP 请求
+
+DELETE /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses
+
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+-->
+- **namespace** (**路径参数**)：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--  
+- **continue** (*in query*): string
+-->
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+-->
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+-->
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **labelSelector** (*in query*): string
+-->
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+-->
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **propagationPolicy** (*in query*): string
+-->
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+-->
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+-->
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+-->
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/service-resources/service-v1.md b/content/zh-cn/docs/reference/kubernetes-api/service-resources/service-v1.md
new file mode 100644
index 0000000000..c1a068698c
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/service-resources/service-v1.md
@@ -0,0 +1,1377 @@
+---
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "Service"
+content_type: "api_reference"
+description: "Service 是软件服务（例如 mysql）的命名抽象，包含代理要侦听的本地端口（例如 3306）和一个选择算符，选择算符用来确定哪些 Pod 将响应通过代理发送的请求。"
+title: Service
+weight: 1
+---
+
+<!--
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "Service"
+content_type: "api_reference"
+description: "Service is a named abstraction of software service (for example, mysql) consisting of local port (for example 3306) that the proxy listens on, and the selector that determines which pods will answer requests sent through the proxy."
+title: "Service"
+weight: 1
+auto_generated: true
+-->
+
+`apiVersion: v1`
+
+`import "k8s.io/api/core/v1”`
+
+## Service {#Service}
+<!--
+Service is a named abstraction of software service (for example, mysql) consisting of local port (for example 3306) that the proxy listens on, and the selector that determines which pods will answer requests sent through the proxy.
+-->
+
+Service 是软件服务（例如 mysql）的命名抽象，包含代理要侦听的本地端口（例如 3306）和一个选择算符，
+选择算符用来确定哪些 Pod 将响应通过代理发送的请求。
+
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: Service
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  <!--
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+
+  标准的对象元数据。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../service-resources/service-v1#ServiceSpec" >}}">ServiceSpec</a>)
+
+  <!--
+  Spec defines the behavior of a service. https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+  -->
+
+  spec 定义 Service 的行为。https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+- **status**（<a href="{{< ref "../service-resources/service-v1#ServiceStatus" >}}">ServiceStatus</a>）
+
+  <!--
+  Most recently observed status of the service. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+  -->
+
+  最近观察到的 Service 状态。由系统填充。只读。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+## ServiceSpec {#ServiceSpec}
+
+<!-- 
+ServiceSpec describes the attributes that a user creates on a service. 
+-->
+ServiceSpec 描述用户在服务上创建的属性。
+
+<hr>
+
+- **selector** (map[string]string)
+
+  <!-- 
+  Route service traffic to pods with label keys and values matching this selector. If empty or not present, the service is assumed to have an external process managing its endpoints, which Kubernetes will not modify. Only applies to types ClusterIP, NodePort, and LoadBalancer. Ignored if type is ExternalName. More info: https://kubernetes.io/docs/concepts/services-networking/service/ 
+  -->
+
+  将 Service 流量路由到具有与此 selector 匹配的标签键值对的 Pod。
+  如果为空或不存在，则假定该服务有一个外部进程管理其端点，Kubernetes 不会修改该端点。
+  仅适用于 ClusterIP、NodePort 和 LoadBalancer 类型。如果类型为 ExternalName，则忽略。
+  更多信息： https://kubernetes.io/docs/concepts/services-networking/service/
+
+- **ports** ([]ServicePort)
+
+  <!-- 
+  *Patch strategy: merge on key `port`*
+  
+  *Map: unique values on keys `port, protocol` will be kept during a merge*
+  
+  The list of ports that are exposed by this service. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies
+  -->
+
+  **Patch strategy：基于键 `type` 合并**
+
+  **Map：合并时将保留 type 键的唯一值**
+
+  此 Service 公开的端口列表。
+  更多信息： https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies
+
+  <a name="ServicePort"></a>
+
+  <!-- 
+  *ServicePort contains information on service's port.*
+  -->
+
+  **ServicePort 包含有关 ServicePort 的信息。**
+
+  <!-- 
+  - **ports.port** (int32), required
+    The port that will be exposed by this service.
+  -->
+
+  - **ports.port** (int32)，必需
+
+    Service 将公开的端口。
+
+  <!--
+  - **ports.targetPort** (IntOrString)
+
+    Number or name of the port to access on the pods targeted by the service. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME. If this is a string, it will be looked up as a named port in the target Pod's container ports. If this is not specified, the value of the 'port' field is used (an identity map). This field is ignored for services with clusterIP=None, and should be omitted or set equal to the 'port' field. More info: https://kubernetes.io/docs/concepts/services-networking/service/#defining-a-service
+  -->
+
+  - **ports.targetPort** (IntOrString)
+
+    在 Service 所针对的 Pod 上要访问的端口号或名称。
+    编号必须在 1 到 65535 的范围内。名称必须是 IANA_SVC_NAME。
+    如果此值是一个字符串，将在目标 Pod 的容器端口中作为命名端口进行查找。
+    如果未指定字段，则使用 "port” 字段的值（直接映射）。
+    对于 clusterIP 为 None 的服务，此字段将被忽略，
+    应忽略不设或设置为 "port” 字段的取值。
+    更多信息： https://kubernetes.io/docs/concepts/services-networking/service/#defining-a-service
+
+    <a name="IntOrString"></a>
+
+    <!-- 
+    *IntOrString is a type that can hold an int32 or a string.  When used in JSON or YAML marshalling and unmarshalling, it produces or consumes the inner type.  This allows you to have, for example, a JSON field that can accept a name or number.* 
+    -->
+
+    IntOrString 是一种可以保存 int32 或字符串的类型。
+    在 JSON 或 YAML 编组和解组中使用时，它会生成或使用内部类型。
+    例如，这允许您拥有一个可以接受名称或数字的 JSON 字段。
+
+  - **ports.protocol** (string)
+
+    <!-- 
+    The IP protocol for this port. Supports "TCP", "UDP", and "SCTP". Default is TCP. 
+    -->
+
+    此端口的 IP 协议。支持 “TCP”、“UDP” 和 “SCTP”。默认为 TCP。
+
+  - **ports.name** (string)
+
+    <!-- 
+    The name of this port within the service. This must be a DNS_LABEL. All ports within a ServiceSpec must have unique names. When considering the endpoints for a Service, this must match the 'name' field in the EndpointPort. Optional if only one ServicePort is defined on this service. 
+    -->
+
+    Service 中此端口的名称。这必须是 DNS_LABEL。
+    ServiceSpec 中的所有端口的名称都必须唯一。
+    在考虑 Service 的端点时，这一字段值必须与 EndpointPort 中的 `name` 字段相同。
+    如果此服务上仅定义一个 ServicePort，则为此字段为可选。
+
+  - **ports.nodePort** (int32)
+
+    <!-- 
+    The port on each node on which this service is exposed when type is NodePort or LoadBalancer.  Usually assigned by the system. If a value is specified, in-range, and not in use it will be used, otherwise the operation will fail.  If not specified, a port will be allocated if this Service requires one.  If this field is specified when creating a Service which does not need it, creation will fail. This field will be wiped when updating a Service to no longer need it (e.g. changing type from NodePort to ClusterIP). More info: https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport 
+    -->
+
+    当类型为 NodePort 或 LoadBalancer 时，Service 公开在节点上的端口，
+    通常由系统分配。如果指定了一个在范围内且未使用的值，则将使用该值，否则操作将失败。
+    如果在创建的 Service 需要该端口时未指定该字段，则会分配端口。
+    如果在创建不需要该端口的 Service时指定了该字段，则会创建失败。
+    当更新 Service 时，如果不再需要此字段（例如，将类型从 NodePort 更改为 ClusterIP），这个字段将被擦除。
+    更多信息： https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport
+
+  - **ports.appProtocol** (string)
+
+    <!-- 
+    The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and https://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol. 
+    -->
+
+    此端口的应用协议，遵循标准的 Kubernetes 标签语法，无前缀名称按照 IANA 标准服务名称
+    （参见 RFC-6335 和 https://www.iana.org/assignments/service-names）。
+    非标准协议应该使用前缀名称，如 mycompany.com/my-custom-protocol。
+
+- **type** (string)
+
+  <!-- 
+  type determines how the Service is exposed. Defaults to ClusterIP. Valid options are ExternalName, ClusterIP, NodePort, and LoadBalancer. "ClusterIP" allocates a cluster-internal IP address for load-balancing to endpoints. Endpoints are determined by the selector or if that is not specified, by manual construction of an Endpoints object or EndpointSlice objects. If clusterIP is "None", no virtual IP is allocated and the endpoints are published as a set of endpoints rather than a virtual IP. "NodePort" builds on ClusterIP and allocates a port on every node which routes to the same endpoints as the clusterIP. "LoadBalancer" builds on NodePort and creates an external load-balancer (if supported in the current cloud) which routes to the same endpoints as the clusterIP. "ExternalName" aliases this service to the specified externalName. Several other fields do not apply to ExternalName services. More info: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types 
+  -->
+
+  type 确定 Service 的公开方式。默认为 ClusterIP。
+  有效选项为 ExternalName、ClusterIP、NodePort 和 LoadBalancer。
+  “ClusterIP” 为端点分配一个集群内部 IP 地址用于负载均衡。
+  Endpoints 由 selector 确定，如果未设置 selector，则需要通过手动构造 Endpoints 或 EndpointSlice 的对象来确定。
+  如果 clusterIP 为 “None”，则不分配虚拟 IP，并且 Endpoints 作为一组端点而不是虚拟 IP 发布。
+  “NodePort” 建立在 ClusterIP 之上，并在每个节点上分配一个端口，该端口路由到与 clusterIP 相同的 Endpoints。
+  “LoadBalancer” 基于 NodePort 构建并创建一个外部负载均衡器（如果当前云支持），该负载均衡器路由到与 clusterIP 相同的 Endpoints。
+  “externalName” 将此 Service 别名为指定的 externalName。其他几个字段不适用于 ExternalName Service。
+  更多信息： https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types
+
+- **ipFamilies** ([]string)
+
+  <!-- 
+  *Atomic: will be replaced during a merge* 
+  -->
+
+  **原子: 将在合并期间被替换**
+
+  <!-- 
+  IPFamilies is a list of IP families (e.g. IPv4, IPv6) assigned to this service. This field is usually assigned automatically based on cluster configuration and the ipFamilyPolicy field. If this field is specified manually, the requested family is available in the cluster, and ipFamilyPolicy allows it, it will be used; otherwise creation of the service will fail. This field is conditionally mutable: it allows for adding or removing a secondary IP family, but it does not allow changing the primary IP family of the Service. Valid values are "IPv4" and "IPv6".  This field only applies to Services of types ClusterIP, NodePort, and LoadBalancer, and does apply to "headless" services. This field will be wiped when updating a Service to type ExternalName. 
+  -->
+
+  iPFamilies 是分配给此服务的 IP 协议（例如 IPv4、IPv6）的列表。
+  该字段通常根据集群配置和 ipFamilyPolicy 字段自动设置。
+  如果手动指定该字段，且请求的协议在集群中可用，且 ipFamilyPolicy 允许，则使用；否则服务创建将失败。
+  该字段修改是有条件的：它允许添加或删除辅助 IP 协议，但不允许更改服务的主要 IP 协议。
+  有效值为 “IPv4” 和 “IPv6”。
+  该字段仅适用于 ClusterIP、NodePort 和 LoadBalancer 类型的服务，并且确实可用于“无头”服务。
+  更新服务设置类型为 ExternalName 时，该字段将被擦除。
+
+  <!--
+  This field may hold a maximum of two entries (dual-stack families, in either order).  These families must correspond to the values of the clusterIPs field, if specified. Both clusterIPs and ipFamilies are governed by the ipFamilyPolicy field. 
+  -->
+
+  该字段最多可以包含两个条目（双栈系列，按任意顺序）。
+  如果指定，这些协议栈必须对应于 clusterIPs 字段的值。
+  clusterIP 和 ipFamilies 都由 ipFamilyPolicy 字段管理。
+
+- **ipFamilyPolicy** (string)
+
+  <!-- 
+  IPFamilyPolicy represents the dual-stack-ness requested or required by this Service. If there is no value provided, then this field will be set to SingleStack. Services can be "SingleStack" (a single IP family), "PreferDualStack" (two IP families on dual-stack configured clusters or a single IP family on single-stack clusters), or "RequireDualStack" (two IP families on dual-stack configured clusters, otherwise fail). The ipFamilies and clusterIPs fields depend on the value of this field. This field will be wiped when updating a service to type ExternalName. 
+  -->
+
+  iPFamilyPolicy 表示此服务请求或要求的双栈特性。
+  如果没有提供值，则此字段将被设置为 SingleStack。
+  服务可以是 “SingleStack”（单个 IP 协议）、
+  “PreferDualStack”（双栈配置集群上的两个 IP 协议或单栈集群上的单个 IP 协议）
+  或 “RequireDualStack”（双栈上的两个 IP 协议配置的集群，否则失败）。
+  ipFamilies 和 clusterIPs 字段取决于此字段的值。
+  更新服务设置类型为 ExternalName 时，此字段将被擦除。
+
+
+- **clusterIP** (string)
+
+  <!-- 
+  clusterIP is the IP address of the service and is usually assigned randomly. If an address is specified manually, is in-range (as per system configuration), and is not in use, it will be allocated to the service; otherwise creation of the service will fail. This field may not be changed through updates unless the type field is also being changed to ExternalName (which requires this field to be blank) or the type field is being changed from ExternalName (in which case this field may optionally be specified, as describe above).  Valid values are "None", empty string (""), or a valid IP address. Setting this to "None" makes a "headless service" (no virtual IP), which is useful when direct endpoint connections are preferred and proxying is not required.  Only applies to types ClusterIP, NodePort, and LoadBalancer. If this field is specified when creating a Service of type ExternalName, creation will fail. This field will be wiped when updating a Service to type ExternalName. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies 
+  -->
+
+  clusterIP 是服务的 IP 地址，通常是随机分配的。
+  如果地址是手动指定的，在范围内（根据系统配置），且没有被使用，它将被分配给服务，否则创建服务将失败。
+  clusterIP 一般不会被更改，除非 type 被更改为 ExternalName
+  （ExternalName 需要 clusterIP 为空）或 type 已经是 ExternalName 时，可以更改 clusterIP（在这种情况下，可以选择指定此字段）。
+  可选值 “None”、空字符串 (“”) 或有效的 IP 地址。
+  clusterIP 为 “None” 时会生成“无头服务”（无虚拟 IP），这在首选直接 Endpoint 连接且不需要代理时很有用。
+  仅适用于 ClusterIP、NodePort、和 LoadBalancer 类型的服务。
+  如果在创建 ExternalName 类型的 Service 时指定了 clusterIP，则创建将失败。
+  更新 Service type 为 ExternalName 时，clusterIP 会被移除。
+  更多信息： https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies
+
+- **clusterIPs** ([]string)
+
+  <!-- 
+  *Atomic: will be replaced during a merge* 
+  -->
+  **原子: 将在合并期间被替换**
+
+  <!-- 
+  ClusterIPs is a list of IP addresses assigned to this service, and are usually assigned randomly.  If an address is specified manually, is in-range (as per system configuration), and is not in use, it will be allocated to the service; otherwise creation of the service will fail. This field may not be changed through updates unless the type field is also being changed to ExternalName (which requires this field to be empty) or the type field is being changed from ExternalName (in which case this field may optionally be specified, as describe above).  Valid values are "None", empty string (""), or a valid IP address.  Setting this to "None" makes a "headless service" (no virtual IP), which is useful when direct endpoint connections are preferred and proxying is not required.  Only applies to types ClusterIP, NodePort, and LoadBalancer. If this field is specified when creating a Service of type ExternalName, creation will fail. This field will be wiped when updating a Service to type ExternalName.  If this field is not specified, it will be initialized from the clusterIP field.  If this field is specified, clients must ensure that clusterIPs[0] and clusterIP have the same value.
+  -->
+
+  clusterIPs 是分配给该 Service 的 IP 地址列表，通常是随机分配的。
+  如果地址是手动指定的，在范围内（根据系统配置），且没有被使用，它将被分配给 Service；否则创建 Service 失败。
+  clusterIP 一般不会被更改，除非 type 被更改为 ExternalName
+  （ExternalName 需要 clusterIPs 为空）或 type 已经是 ExternalName 时，可以更改 clusterIPs（在这种情况下，可以选择指定此字段）。
+  可选值 “None”、空字符串 (“”) 或有效的 IP 地址。
+  clusterIPs 为 “None” 时会生成“无头服务”（无虚拟 IP），这在首选直接 Endpoint 连接且不需要代理时很有用。
+  适用于 ClusterIP、NodePort、和 LoadBalancer 类型的服务。
+  如果在创建 ExternalName 类型的 Service 时指定了 clusterIPs，则会创建失败。
+  更新 Service type 为 ExternalName 时，该字段将被移除。如果未指定此字段，则将从 clusterIP 字段初始化。
+  如果指定 clusterIPs，客户端必须确保 clusterIPs[0] 和 clusterIP 一致。
+
+  <!-- 
+  This field may hold a maximum of two entries (dual-stack IPs, in either order). These IPs must correspond to the values of the ipFamilies field. Both clusterIPs and ipFamilies are governed by the ipFamilyPolicy field. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies 
+  -->
+
+  clusterIPs 最多可包含两个条目（双栈系列，按任意顺序）。
+  这些 IP 必须与 ipFamilies 的值相对应。
+  clusterIP 和 ipFamilies 都由 ipFamilyPolicy 管理。
+  更多信息： https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies
+
+- **externalIPs** ([]string)
+
+  <!-- 
+  externalIPs is a list of IP addresses for which nodes in the cluster will also accept traffic for this service.  These IPs are not managed by Kubernetes.  The user is responsible for ensuring that traffic arrives at a node with this IP.  A common example is external load-balancers that are not part of the Kubernetes system. 
+  -->
+
+  externalIPs 是一个 IP 列表，集群中的节点会为此 Service 接收针对这些 IP 地址的流量。
+  这些 IP 不被 Kubernetes 管理。用户需要确保流量可以到达具有此 IP 的节点。
+  一个常见的例子是不属于 Kubernetes 系统的外部负载均衡器。
+
+- **sessionAffinity** (string)
+
+  <!-- 
+  Supports "ClientIP" and "None". Used to maintain session affinity. Enable client IP based session affinity. Must be ClientIP or None. Defaults to None. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies 
+  -->
+
+  支持 “ClientIP” 和 “None”。用于维护会话亲和性。
+  启用基于客户端 IP 的会话亲和性。必须是 ClientIP 或 None。默认为 None。
+  更多信息： https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies
+
+- **loadBalancerIP** (string)
+
+  <!-- 
+  Only applies to Service Type: LoadBalancer. This feature depends on whether the underlying cloud-provider supports specifying the loadBalancerIP when a load balancer is created. This field will be ignored if the cloud-provider does not support the feature. Deprecated: This field was under-specified and its meaning varies across implementations, and it cannot support dual-stack. As of Kubernetes v1.24, users are encouraged to use implementation-specific annotations when available. This field may be removed in a future API version. 
+  -->
+
+  仅适用于服务类型: LoadBalancer。此功能取决于底层云提供商是否支持负载均衡器。
+  如果云提供商不支持该功能，该字段将被忽略。
+  已弃用: 该字段信息不足，且其含义因实现而异，而且不支持双栈。
+  从 Kubernetes v1.24 开始，鼓励用户在可用时使用特定于实现的注释。在未来的 API 版本中可能会删除此字段。
+
+- **loadBalancerSourceRanges** ([]string)
+
+  <!-- 
+  If specified and supported by the platform, this will restrict traffic through the cloud-provider load-balancer will be restricted to the specified client IPs. This field will be ignored if the cloud-provider does not support the feature." More info: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/ 
+  -->
+
+  如果设置了此字段并且被平台支持，将限制通过云厂商的负载均衡器的流量到指定的客户端 IP。
+  如果云提供商不支持该功能，该字段将被忽略。
+  更多信息： https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/
+
+- **loadBalancerClass** (string)
+
+  <!-- 
+  loadBalancerClass is the class of the load balancer implementation this Service belongs to. If specified, the value of this field must be a label-style identifier, with an optional prefix, e.g. "internal-vip" or "example.com/internal-vip". Unprefixed names are reserved for end-users. This field can only be set when the Service type is 'LoadBalancer'. If not set, the default load balancer implementation is used, today this is typically done through the cloud provider integration, but should apply for any default implementation. If set, it is assumed that a load balancer implementation is watching for Services with a matching class. Any default load balancer implementation (e.g. cloud providers) should ignore Services that set this field. This field can only be set when creating or updating a Service to type 'LoadBalancer'. Once set, it can not be changed. This field will be wiped when a service is updated to a non 'LoadBalancer' type.
+  -->
+
+  loadBalancerClass 是此 Service 所属的负载均衡器实现的类。
+  如果设置了此字段，则字段值必须是标签风格的标识符，带有可选前缀，例如 ”internal-vip” 或 “example.com/internal-vip”。
+  无前缀名称是为最终用户保留的。该字段只能在 Service 类型为 “LoadBalancer” 时设置。
+  如果未设置此字段，则使用默认负载均衡器实现。默认负载均衡器现在通常通过云提供商集成完成，但应适用于任何默认实现。
+  如果设置了此字段，则假定负载均衡器实现正在监测具有对应负载均衡器类的 Service。
+  任何默认负载均衡器实现（例如云提供商）都应忽略设置此字段的 Service。
+  只有在创建或更新的 Service 的 type 为 “LoadBalancer” 时，才可设置此字段。
+  一经设定，不可更改。当 Service 的 type 更新为 “LoadBalancer” 之外的其他类型时，此字段将被移除。
+
+- **externalName** (string)
+
+  <!-- 
+  externalName is the external reference that discovery mechanisms will return as an alias for this service (e.g. a DNS CNAME record). No proxying will be involved.  Must be a lowercase RFC-1123 hostname (https://tools.ietf.org/html/rfc1123) and requires `type` to be "ExternalName". 
+  -->
+
+  externalName 是发现机制将返回的外部引用，作为此服务的别名（例如 DNS CNAME 记录）。
+  不涉及代理。必须是小写的 RFC-1123 主机名 (https://tools.ietf.org/html/rfc1123)，
+  并且要求 `type` 为 “ExternalName”。
+
+- **externalTrafficPolicy** (string)
+
+  <!-- 
+  externalTrafficPolicy denotes if this Service desires to route external traffic to node-local or cluster-wide endpoints. "Local" preserves the client source IP and avoids a second hop for LoadBalancer and Nodeport type services, but risks potentially imbalanced traffic spreading. "Cluster" obscures the client source IP and may cause a second hop to another node, but should have good overall load-spreading. 
+  -->
+  externalTrafficPolicy 表示此 Service 是否希望将外部流量路由到节点本地或集群范围的 Endpoint。
+  字段值 “Local” 保留客户端 IP 并可避免 LoadBalancer 和 Nodeport 类型 Service 的第二跳，但存在潜在流量传播不平衡的风险。
+  字段值 “Cluster” 则会掩盖客户端源 IP，可能会导致第二次跳转到另一个节点，但整体流量负载分布较好。
+
+- **internalTrafficPolicy** (string)
+
+  <!-- 
+  InternalTrafficPolicy specifies if the cluster internal traffic should be routed to all endpoints or node-local endpoints only. "Cluster" routes internal traffic to a Service to all endpoints. "Local" routes traffic to node-local endpoints only, traffic is dropped if no node-local endpoints are ready. The default value is "Cluster". 
+  -->
+  internalTrafficPolicy 指定是将集群内部流量路由到所有端点还是仅路由到节点本地的端点。
+  字段值 “Cluster” 将 Service 的内部流量路由到所有端点。
+  字段值 ”Local” 意味着仅将流量路由到节点本地的端点；如果节点本地端点未准备好，则丢弃流量。
+  默认值为 “Cluster”。
+
+- **healthCheckNodePort** (int32)
+
+  <!-- 
+  healthCheckNodePort specifies the healthcheck nodePort for the service. This only applies when type is set to LoadBalancer and externalTrafficPolicy is set to Local. If a value is specified, is in-range, and is not in use, it will be used.  If not specified, a value will be automatically allocated.  External systems (e.g. load-balancers) can use this port to determine if a given node holds endpoints for this service or not.  If this field is specified when creating a Service which does not need it, creation will fail. This field will be wiped when updating a Service to no longer need it (e.g. changing type). 
+  -->
+  healthCheckNodePort 指定 Service 的健康检查节点端口。
+  仅适用于 type 为 LoadBalancer 且 externalTrafficPolicy 设置为 Local 的情况。
+  如果为此字段设定了一个值，该值在合法范围内且没有被使用，则使用所指定的值。
+  如果未设置此字段，则自动分配字段值。外部系统（例如负载平衡器）可以使用此端口来确定给定节点是否拥有此服务的端点。
+  在创建不需要 healthCheckNodePort 的 Service 时指定了此字段，则 Service 创建会失败。
+  要移除 healthCheckNodePort，需要更改 Service 的 type。
+
+- **publishNotReadyAddresses** (boolean)
+
+  <!-- 
+  publishNotReadyAddresses indicates that any agent which deals with endpoints for this Service should disregard any indications of ready/not-ready. The primary use case for setting this field is for a StatefulSet's Headless Service to propagate SRV DNS records for its Pods for the purpose of peer discovery. The Kubernetes controllers that generate Endpoints and EndpointSlice resources for Services interpret this to mean that all endpoints are considered "ready" even if the Pods themselves are not. Agents which consume only Kubernetes generated endpoints through the Endpoints or EndpointSlice resources can safely assume this behavior. 
+  -->
+
+  publishNotReadyAddresses 表示任何处理此 Service 端点的代理都应忽略任何准备就绪/未准备就绪的指示。
+  设置此字段的主要场景是为 StatefulSet 的服务提供支持，使之能够为其 Pod 传播 SRV DNS 记录，以实现对等发现。
+  为 Service 生成 Endpoints 和 EndpointSlice 资源的 Kubernetes 控制器对字段的解读是，
+  即使 Pod 本身还没有准备好，所有端点都可被视为 “已就绪”。
+  对于代理而言，如果仅使用 Kubernetes 通过 Endpoints 或 EndpointSlice 资源所生成的端点，
+  则可以安全地假设这种行为。
+
+- **sessionAffinityConfig** (SessionAffinityConfig)
+
+  <!-- 
+  sessionAffinityConfig contains the configurations of session affinity. 
+  -->
+  sessionAffinityConfig 包含会话亲和性的配置。
+
+  <a name="SessionAffinityConfig"></a>
+
+  <!-- 
+  *SessionAffinityConfig represents the configurations of session affinity.* 
+  -->
+  **SessionAffinityConfig 表示会话亲和性的配置。**
+
+  - **sessionAffinityConfig.clientIP** (ClientIPConfig)
+
+    <!-- 
+    clientIP contains the configurations of Client IP based session affinity. 
+    -->
+    
+    clientIP 包含基于客户端 IP 的会话亲和性的配置。
+
+    <a name="ClientIPConfig"></a>
+  
+    <!-- 
+    *ClientIPConfig represents the configurations of Client IP based session affinity.* 
+    -->
+
+    ClientIPConfig 表示基于客户端 IP 的会话亲和性的配置。
+
+    - **sessionAffinityConfig.clientIP.timeoutSeconds** (int32)
+
+      <!-- 
+      timeoutSeconds specifies the seconds of ClientIP type session sticky time. The value must be >0 && \<=86400(for 1 day) if ServiceAffinity == "ClientIP". Default value is 10800(for 3 hours). 
+      -->
+
+      timeoutSeconds 指定 ClientIP 类型会话的维系时间秒数。
+      如果 ServiceAffinity == "ClientIP"，则该值必须 >0 && <=86400（1 天）。默认值为 10800（3 小时）。
+
+- **allocateLoadBalancerNodePorts** (boolean)
+
+  <!-- 
+  allocateLoadBalancerNodePorts defines if NodePorts will be automatically allocated for services with type LoadBalancer.  Default is "true". It may be set to "false" if the cluster load-balancer does not rely on NodePorts.  If the caller requests specific NodePorts (by specifying a value), those requests will be respected, regardless of this field. This field may only be set for services with type LoadBalancer and will be cleared if the type is changed to any other type. 
+  -->
+
+  allocateLoadBalancerNodePorts 定义了是否会自动为 LoadBalancer 类型的 Service 分配 NodePort。默认为 true。
+  如果集群负载均衡器不依赖 NodePort，则可以设置此字段为 false。
+  如果调用者（通过指定一个值）请求特定的 NodePort，则无论此字段如何，都会接受这些请求。
+  该字段只能设置在 type 为 LoadBalancer 的 Service 上，如果 type 更改为任何其他类型，该字段将被移除。
+
+## ServiceStatus {#ServiceStatus}
+
+<!-- 
+ServiceStatus represents the current status of a service. 
+-->
+ServiceStatus 表示 Service 的当前状态。
+
+<hr>
+
+- **conditions** ([]Condition)
+
+  <!-- 
+  *Patch strategy: merge on key `type`*
+
+  *Map: unique values on key type will be kept during a merge*
+
+  Current service state 
+  -->
+
+  **Patch strategy: 在 `type` 上合并**
+
+  **Map: 键类型的唯一值将在合并期间保留**
+
+  服务的当前状态。
+
+  <a name="Condition"></a>
+
+  <!-- 
+  *Condition contains details for one aspect of the current state of this API Resource.* 
+  -->
+
+  **condition 包含此 API 资源某一方面当前的状态详细信息。**
+
+  <!--
+  - **conditions.lastTransitionTime**（Time）, required
+    
+    lastTransitionTime is the last time the condition transitioned from one status to another. This should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable. 
+  -->
+  
+  - **conditions.lastTransitionTime**（Time），必需
+
+    lastTransitionTime 是状况最近一次状态转化的时间。
+    变化应该发生在下层状况发生变化的时候。如果不知道下层状况发生变化的时间，
+    那么使用 API 字段更改的时间是可以接受的。
+
+    <a name="Time"></a>
+  
+    <!-- 
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.* 
+    -->
+
+    Time 是 time.Time 的包装类，支持正确地序列化为 YAML 和 JSON。
+    为 time 包提供的许多工厂方法提供了包装类。
+
+  <!-- 
+  - **conditions.message** (string), required
+  -->
+
+  - **conditions.message** (string)，必需
+
+    <!-- 
+    message is a human readable message indicating details about the transition. This may be an empty string. 
+    -->
+
+    message 是人类可读的消息，有关转换的详细信息，可以是空字符串。
+
+  <!-- 
+  - **conditions.reason** (string), required
+  -->
+
+  - **conditions.reason** (string)，必需
+
+    <!-- 
+    reason contains a programmatic identifier indicating the reason for the condition's last transition. Producers of specific condition types may define expected values and meanings for this field, and whether the values are considered a guaranteed API. The value should be a CamelCase string. This field may not be empty. 
+    -->
+  
+    reason 包含一个程序标识符，指示 condition 最后一次转换的原因。
+    特定条件类型的生产者可以定义该字段的预期值和含义，以及这些值是否被视为有保证的 API。
+    该值应该是 CamelCase 字符串且不能为空。
+
+  <!-- 
+  - **conditions.status** (string), required
+  -->
+
+  - **conditions.status** (string)，必需
+
+    <!-- 
+    status of the condition, one of True, False, Unknown. 
+    -->
+
+    condition 的状态，True、False、Unknown 之一。
+
+  <!-- 
+  - **conditions.type** (string), required
+  -->
+
+  - **conditions.type** (string)，必需
+
+    <!-- 
+    type of condition in CamelCase or in foo.example.com/CamelCase. 
+    -->
+
+    CamelCase 或 foo.example.com/CamelCase 中的条件类型。
+
+  - **conditions.observedGeneration** (int64)
+
+    <!-- 
+    observedGeneration represents the .metadata.generation that the condition was set based upon. For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date with respect to the current state of the instance. 
+    -->
+
+    observedGeneration 表示设置 condition 基于的 .metadata.generation 的过期次数。
+    例如，如果 .metadata.generation 当前为 12，但 .status.conditions[x].observedGeneration 为 9，
+    则 condition 相对于实例的当前状态已过期。
+
+- **loadBalancer** (LoadBalancerStatus)
+
+  <!-- 
+  LoadBalancer contains the current status of the load-balancer, if one is present. 
+  -->
+
+  loadBalancer 包含负载均衡器的当前状态（如果存在）。
+
+  <a name="LoadBalancerStatus"></a>
+
+  <!-- 
+  *LoadBalancerStatus represents the status of a load-balancer.* 
+  -->
+
+  **LoadBalancerStatus 表示负载均衡器的状态。**
+
+  - **loadBalancer.ingress** ([]LoadBalancerIngress)
+
+    <!-- 
+    Ingress is a list containing ingress points for the load-balancer. Traffic intended for the service should be sent to these ingress points. 
+    -->
+  
+    ingress 是一个包含负载均衡器 Ingress 点的列表。Service 的流量需要被发送到这些 Ingress 点。
+
+    <a name="LoadBalancerIngress"></a>
+  
+    <!-- 
+    *LoadBalancerIngress represents the status of a load-balancer ingress point: traffic intended for the service should be sent to an ingress point.* 
+    -->
+
+    **LoadBalancerIngress 表示负载平衡器入口点的状态: 用于服务的流量是否被发送到入口点。**
+
+    - **loadBalancer.ingress.hostname** (string)
+
+      <!-- 
+      Hostname is set for load-balancer ingress points that are DNS based (typically AWS load-balancers)     
+      -->
+
+      hostname 是为基于 DNS 的负载均衡器 Ingress 点（通常是 AWS 负载均衡器）设置的。
+
+    - **loadBalancer.ingress.ip** (string)
+
+      <!-- 
+      IP is set for load-balancer ingress points that are IP based (typically GCE or OpenStack load-balancers) 
+      -->
+
+      ip 是为基于 IP 的负载均衡器 Ingress 点（通常是 GCE 或 OpenStack 负载均衡器）设置的。
+
+    - **loadBalancer.ingress.ports** ([]PortStatus)
+
+      <!-- 
+      *Atomic: will be replaced during a merge* 
+      -->
+
+      **Atomic: 将在合并期间被替换**
+
+      <!-- 
+      Ports is a list of records of service ports If used, every port defined in the service should have an entry in it       -->
+
+      ports 是 Service 的端口列表。如果设置了此字段，Service 中定义的每个端口都应该在此列表中。
+
+      <a name="PortStatus"></a>
+
+      <!-- 
+      - **loadBalancer.ingress.ports.port** (string), required
+      -->
+
+      - **loadBalancer.ingress.ports.port** (int32)，必需
+
+        <!-- 
+        Port is the port number of the service port of which status is recorded here
+        -->
+
+        port 是所记录的服务端口状态的端口号。
+
+      <!-- 
+      - **loadBalancer.ingress.ports.protocol** (string), required
+      -->
+
+      - **loadBalancer.ingress.ports.protocol** (string)，必需
+
+        <!-- 
+        Protocol is the protocol of the service port of which status is recorded here The supported values are: "TCP", "UDP", "SCTP"
+        -->
+
+        protocol 是所记录的服务端口状态的协议。支持的值为：“TCP”、”UDP”、“SCTP”。
+
+      - **loadBalancer.ingress.ports.error** (string)
+
+        <!-- 
+        Error is to record the problem with the service port The format of the error shall comply with the following rules: - built-in error values shall be specified in this file and those shall use
+          CamelCase names
+        - cloud provider specific error values must have names that comply with the
+          format foo.example.com/CamelCase. 
+        -->
+
+        error 是记录 Service 端口的问题。
+        错误的格式应符合以下规则:  
+        - 内置错误原因应在此文件中指定，应使用 CamelCase 名称。
+        - 云提供商特定错误原因的名称必须符合格式 foo.example.com/CamelCase。
+
+## ServiceList {#ServiceList}
+
+<!-- 
+ServiceList holds a list of services. 
+-->
+
+ServiceList 包含一个 Service 列表。
+
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: Service 列表
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  <!-- 
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds 
+  -->
+  标准列表元数据。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+<!-- 
+- **items**（[]<a href="{{< ref "../service-resources/service-v1#Service" >}}">Service</a>）, required
+-->
+
+- **items**（[]<a href="{{< ref "../service-resources/service-v1#Service" >}}">Service</a>），必需
+
+  <!-- 
+  List of services 
+  -->
+
+  Service 列表
+
+<!-- 
+## Operations {#Operations}
+-->
+
+## 操作  {#operations}
+
+<hr>
+
+<!--
+### `get` read the specified Service
+
+#### HTTP Request
+-->
+
+### `get` 读取指定的 Service
+
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/services/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+- **name** (**查询参数**)：string，必需
+
+  <!-- 
+  name of the Service 
+  -->
+  Service 名称
+
+- **namespace**（**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+
+#### 响应
+
+200（<a href="{{< ref "../service-resources/service-v1#Service" >}}">Service</a>）: OK
+
+401: Unauthorized
+
+<!-- 
+### `get` read status of the specified Service
+
+#### HTTP Request 
+-->
+
+### `get` 读取指定 Service 的状态
+
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/services/{name}/status
+
+<!--
+#### Parameters
+-->
+
+#### 参数
+
+- **name** (**路径参数**)：string，必需
+
+  <!-- 
+  name of the Service 
+  -->
+
+  Service 名称
+
+- **namespace**（**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+
+#### 响应
+
+200（<a href="{{< ref "../service-resources/service-v1#Service" >}}">Service</a>）: OK
+
+401: Unauthorized
+
+<!-- 
+### `list` list or watch objects of kind Service
+
+#### HTTP Request 
+-->
+
+### `list` 列出或监测 Service 类型的对象
+
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/services
+
+<!--
+#### Parameters
+-->
+
+#### 参数
+
+- **namespace**（**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **allowWatchBookmarks**（**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit**（**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds**（**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch**（**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+
+#### 响应
+
+200（<a href="{{< ref "../service-resources/service-v1#ServiceList" >}}">ServiceList</a>）: OK
+
+401: Unauthorized
+
+<!-- 
+### `list` list or watch objects of kind Service
+
+#### HTTP Request 
+-->
+
+### `list` 列出或监测 Service 类型的对象
+
+#### HTTP 请求
+
+GET /api/v1/services
+
+<!--
+#### Parameters
+-->
+
+#### 参数
+
+- **allowWatchBookmarks**（**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit**（**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds**（**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch**（**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+
+#### 响应
+
+200（<a href="{{< ref "../service-resources/service-v1#ServiceList" >}}">ServiceList</a>）: OK
+
+401: Unauthorized
+
+<!-- 
+### `create` create a Service
+
+#### HTTP Request 
+-->
+
+### `create` 创建一个 Service
+
+#### HTTP 请求
+
+POST /api/v1/namespaces/{namespace}/services
+
+<!--
+#### Parameters
+-->
+
+#### 参数
+
+- **namespace**（**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../service-resources/service-v1#Service" >}}">Service</a>，必需
+
+- **dryRun**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+
+#### 响应
+
+200（<a href="{{< ref "../service-resources/service-v1#Service" >}}">Service</a>）: OK
+
+201（<a href="{{< ref "../service-resources/service-v1#Service" >}}">Service</a>）: Created
+
+202（<a href="{{< ref "../service-resources/service-v1#Service" >}}">Service</a>）: Accepted
+
+401: Unauthorized
+
+<!-- 
+### `update` replace the specified Service
+
+#### HTTP Request 
+-->
+
+### `update` 替换指定的 Service
+
+#### HTTP 请求
+
+PUT /api/v1/namespaces/{namespace}/services/{name}
+
+<!--
+#### Parameters
+-->
+
+#### 参数
+
+- **name** (**路径参数**)：string，必需
+
+  <!-- 
+  name of the Service 
+  -->
+
+  Service 名称
+
+- **namespace**（**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../service-resources/service-v1#Service" >}}">Service</a>，必需
+
+- **dryRun**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+
+#### 响应
+
+200（<a href="{{< ref "../service-resources/service-v1#Service" >}}">Service</a>）: OK
+
+201（<a href="{{< ref "../service-resources/service-v1#Service" >}}">Service</a>）: Created
+
+401: Unauthorized
+
+<!-- 
+### `update` replace status of the specified Service
+
+#### HTTP Request 
+-->
+
+### `update` 替换指定 Service 的状态
+
+#### HTTP 请求
+
+PUT /api/v1/namespaces/{namespace}/services/{name}/status
+
+<!--
+#### Parameters
+-->
+
+#### 参数
+
+- **name** (**路径参数**)：string，必需
+
+  <!--
+  name of the Service 
+  -->
+
+  Service 名称
+
+- **namespace**（**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../service-resources/service-v1#Service" >}}">Service</a>，必需
+
+- **dryRun**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+
+#### 响应
+
+200（<a href="{{< ref "../service-resources/service-v1#Service" >}}">Service</a>）: OK
+
+201（<a href="{{< ref "../service-resources/service-v1#Service" >}}">Service</a>）: Created
+
+401: Unauthorized
+
+<!-- 
+### `patch` partially update the specified Service
+
+#### HTTP Request 
+-->
+
+### `patch` 部分更新指定的 Service
+
+#### HTTP 请求
+
+PATCH /api/v1/namespaces/{namespace}/services/{name}
+
+<!--
+#### Parameters
+-->
+
+#### 参数
+
+- **name** (**路径参数**)：string，必需
+
+  <!-- 
+  name of the Service 
+  -->
+
+  Service 名称
+
+- **namespace**（**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force**（**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+
+#### 响应
+
+200（<a href="{{< ref "../service-resources/service-v1#Service" >}}">Service</a>）: OK
+
+201（<a href="{{< ref "../service-resources/service-v1#Service" >}}">Service</a>）: Created
+
+401: Unauthorized
+
+<!-- 
+### `patch` partially update status of the specified Service
+
+#### HTTP Request
+-->
+### `patch` 部分更新指定 Service 的状态
+
+#### HTTP 请求
+
+PATCH /api/v1/namespaces/{namespace}/services/{name}/status
+
+<!--
+#### Parameters
+-->
+
+#### 参数
+
+- **name** (**路径参数**)：string，必需
+
+  <!-- 
+  name of the Service 
+  -->
+
+  Service 名称
+
+- **namespace**（**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force**（**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+
+#### 响应
+
+200（<a href="{{< ref "../service-resources/service-v1#Service" >}}">Service</a>）: OK
+
+201（<a href="{{< ref "../service-resources/service-v1#Service" >}}">Service</a>）: Created
+
+401: Unauthorized
+
+<!-- 
+### `delete` delete a Service
+
+#### HTTP Request 
+-->
+
+### `delete` 删除 Service
+
+#### HTTP 请求
+
+DELETE /api/v1/namespaces/{namespace}/services/{name}
+
+<!--
+#### Parameters
+-->
+
+#### 参数
+
+- **name** (**路径参数**)：string，必需
+
+  <!-- 
+  name of the Service 
+  -->
+
+  Service 名称
+
+- **namespace**（**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **正文**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds**（**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+
+#### 响应
+
+200（<a href="{{< ref "../service-resources/service-v1#Service" >}}">Service</a>）: OK
+
+202（<a href="{{< ref "../service-resources/service-v1#Service" >}}">Service</a>）: Accepted
+
+401: Unauthorized
+
+<!-- 
+### `deletecollection` delete collection of Service
+
+#### HTTP Request 
+-->
+
+### `deletecollection` 删除 Service 集合
+
+#### HTTP 请求
+
+DELETE /api/v1/namespaces/{namespace}/services
+
+<!--
+#### Parameters
+-->
+
+#### 参数
+
+- **namespace**（**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds**（**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit**（**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch**（**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds**（**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+
+#### 响应
+
+200（<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>）: OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/workload-resources/_index.md b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/_index.md
new file mode 100644
index 0000000000..bafb086f60
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/_index.md
@@ -0,0 +1,6 @@
+---
+title: "工作负载资源"
+weight: 1
+auto_generated: true
+---
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/workload-resources/controller-revision-v1.md b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/controller-revision-v1.md
new file mode 100644
index 0000000000..69b44a1b7a
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/controller-revision-v1.md
@@ -0,0 +1,1076 @@
+---
+api_metadata:
+  apiVersion: "apps/v1"
+  import: "k8s.io/api/apps/v1"
+  kind: "ControllerRevision"
+content_type: "api_reference"
+description: "ControllerRevision 实现了状态数据的不可变快照。"
+title: "ControllerRevision"
+weight: 7
+---
+
+<!--
+api_metadata:
+  apiVersion: "apps/v1"
+  import: "k8s.io/api/apps/v1"
+  kind: "ControllerRevision"
+content_type: "api_reference"
+description: "ControllerRevision implements an immutable snapshot of state data."
+title: "ControllerRevision"
+weight: 7
+auto_generated: true
+-->
+
+`apiVersion: apps/v1`
+
+`import "k8s.io/api/apps/v1"`
+
+<!-- 
+## ControllerRevision {#ControllerRevision 
+-->
+## ControllerRevision {#ControllerRevision}
+
+<!--
+ControllerRevision implements an immutable snapshot of state data.
+Clients are responsible for serializing and deserializing the objects that contain their internal state.
+Once a ControllerRevision has been successfully created, it can not be updated. 
+The API Server will fail validation of all requests that attempt to mutate the Data field.
+ControllerRevisions may, however, be deleted. Note that, due to its use by both the DaemonSet and StatefulSet controllers for update and rollback,
+this object is beta. However, it may be subject to name and representation changes in future releases, and clients should not depend on its stability.
+It is primarily for internal use by controllers.
+
+<hr>
+-->
+ControllerRevision 实现了状态数据的不可变快照。
+客户端负责序列化和反序列化对象，包含对象内部状态。
+成功创建 ControllerRevision 后，将无法对其进行更新。
+API 服务器将无法成功验证所有尝试改变 data 字段的请求。
+但是，可以删除 ControllerRevisions。
+请注意，由于 DaemonSet 和 StatefulSet 控制器都使用它来进行更新和回滚，所以这个对象是 beta 版。
+但是，它可能会在未来版本中更改名称和表示形式，客户不应依赖其稳定性。
+它主要供控制器内部使用。
+
+<hr>
+
+<!--
+- **apiVersion**: apps/v1
+-->
+- **apiVersion**: apps/v1
+
+<!--
+- **kind**: ControllerRevision
+-->
+- **kind**: ControllerRevision
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+<!--
+- **revision** (int64), required
+
+  Revision indicates the revision of the state represented by Data.
+-->
+- **revision** (int64)，必需
+
+  revision 表示 data 表示的状态的修订。
+
+<!--
+- **data** (RawExtension)
+
+  Data is the serialized representation of the state.
+-->
+- **data** (RawExtension)
+
+  data 是状态的序列化表示。
+  
+  <!--
+  <a name="RawExtension"></a>
+    *RawExtension is used to hold extensions in external versions.
+  -->
+  <a name="RawExtension"></a>
+  **RawExtension 用于以外部版本来保存扩展数据。**
+  
+  <!--
+  To use this, make a field which has RawExtension as its type in your external, versioned struct, and Object in your internal struct. You also need to register your various plugin types.
+  -->
+  要使用它，请生成一个字段，在外部、版本化结构中以 RawExtension 作为其类型，在内部结构中以 Object 作为其类型。
+  
+  <!--
+  // Internal package: type MyAPIObject struct {
+    	runtime.TypeMeta `json:",inline"`
+    	MyPlugin runtime.Object `json:"myPlugin"`
+    } type PluginA struct {
+    	AOption string `json:"aOption"`
+    }
+  -->
+  内部包：
+
+  ```go
+  type MyAPIObject struct {  
+  	runtime.TypeMeta `json:",inline"`   
+  	MyPlugin runtime.Object `json:"myPlugin"`  
+  }       
+  type PluginA struct {  
+  	AOption string `json:"aOption"`  
+  }
+  ```
+  
+  <!--
+  // External package: type MyAPIObject struct {
+    	runtime.TypeMeta `json:",inline"`
+    	MyPlugin runtime.RawExtension `json:"myPlugin"`
+    } type PluginA struct {
+    	AOption string `json:"aOption"`
+    }
+  -->
+  外部包：
+
+  ```go
+  type MyAPIObject struct {  
+  	runtime.TypeMeta `json:",inline"`  
+  	MyPlugin runtime.RawExtension `json:"myPlugin"`    
+  }   
+  type PluginA struct {  
+  	AOption string `json:"aOption"`  
+  }
+  ```
+  
+  <!--
+  // On the wire, the JSON will look something like this: {
+    	"kind":"MyAPIObject",
+    	"apiVersion":"v1",
+    	"myPlugin": {
+    		"kind":"PluginA",
+    		"aOption":"foo",
+    	},
+    }
+  -->
+  在网络上，JSON 看起来像这样：
+  ```json
+  {  
+  	"kind":"MyAPIObject",  
+  	"apiVersion":"v1",  
+  	"myPlugin": {  
+  		"kind":"PluginA",  
+  		"aOption":"foo",  
+  	},  
+  }
+  ```
+  
+  <!--
+  So what happens? Decode first uses json or yaml to unmarshal the serialized data into your external MyAPIObject. That causes the raw JSON to be stored, but not unpacked. The next step is to copy (using pkg/conversion) into the internal struct. The runtime package's DefaultScheme has conversion functions installed which will unpack the JSON stored in RawExtension, turning it into the correct object type, and storing it in the Object. (TODO: In the case where the object is of an unknown type, a runtime.Unknown object will be created and stored.)*
+  -->
+  那么会发生什么？
+  解码首先使用 json 或 yaml 将序列化数据解组到你的外部 MyAPIObject 中。
+  这会导致原始 JSON 被存储下来，但不会被解包。
+  下一步是复制（使用 pkg/conversion）到内部结构中。
+  runtime 包的 DefaultScheme 安装了转换函数，它将解析存储在 RawExtension 中的 JSON，
+  将其转换为正确的对象类型，并将其存储在 Object 中。
+  （TODO：如果对象是未知类型，将创建并存储一个 `runtime.Unknown`对象。）
+
+<!--
+## ControllerRevisionList {#ControllerRevisionList}
+
+ControllerRevisionList is a resource containing a list of ControllerRevision objects.
+
+<hr>
+-->
+## ControllerRevisionList {#ControllerRevisionList}
+
+ControllerRevisionList 是一个包含 ControllerRevision 对象列表的资源。
+
+<hr>
+
+<!--
+- **apiVersion**: apps/v1
+-->
+- **apiVersion**: apps/v1
+
+<!--
+- **kind**: ControllerRevisionList
+-->
+- **kind**: ControllerRevisionList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+<!--
+- **items** ([]<a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevision" >}}">ControllerRevision</a>), required
+
+  Items is the list of ControllerRevisions
+-->
+- **items** ([]<a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevision" >}}">ControllerRevision</a>)，必需
+
+  items 是 ControllerRevisions 的列表
+
+<!--
+## Operations {#Operations}
+
+<hr>
+-->
+## 操作 {#Operations}
+
+<hr>
+
+<!--
+### `get` read the specified ControllerRevision
+-->
+### `get` 读取特定的 ControllerRevision
+
+<!--
+#### HTTP Request
+
+GET /apis/apps/v1/namespaces/{namespace}/controllerrevisions/{name}
+-->
+#### HTTP 请求
+
+GET /apis/apps/v1/namespaces/{namespace}/controllerrevisions/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the ControllerRevision
+-->
+- **name** （**路径参数**）：string，必需
+
+  ControllerRevision 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevision" >}}">ControllerRevision</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevision" >}}">ControllerRevision</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind ControllerRevision
+-->
+### `list` 列出或监视 ControllerRevision 类别的对象
+
+<!--
+#### HTTP Request
+
+GET /apis/apps/v1/namespaces/{namespace}/controllerrevisions
+-->
+#### HTTP 请求
+
+GET /apis/apps/v1/namespaces/{namespace}/controllerrevisions
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+-->
+- **allowWatchBookmarks** （**查询参数**）： boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!--
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+-->
+- **continue** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+-->
+- **fieldSelector** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+-->
+- **labelSelector** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+-->
+- **limit** (**查询参数**)): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+-->
+- **resourceVersion** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+-->
+- **resourceVersionMatch** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+-->
+- **timeoutSeconds** （**查询参数**）： integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+- **watch** （**查询参数**）： boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevisionList" >}}">ControllerRevisionList</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevisionList" >}}">ControllerRevisionList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind ControllerRevision
+-->
+### `list` 列出或监视 ControllerRevision 类别的对象
+
+<!--
+#### HTTP Request
+
+GET /apis/apps/v1/controllerrevisions
+-->
+#### HTTP 请求
+
+GET /apis/apps/v1/controllerrevisions
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+-->
+- **allowWatchBookmarks** （**查询参数**）： boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!--
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+-->
+- **continue** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+-->
+- **fieldSelector** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+-->
+- **labelSelector** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+-->
+- **limit** （**查询参数**）： integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+-->
+- **resourceVersion** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+-->
+- **resourceVersionMatch** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+-->
+- **timeoutSeconds** （**查询参数**）： integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+- **watch** （**查询参数**）： boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevisionList" >}}">ControllerRevisionList</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevisionList" >}}">ControllerRevisionList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a ControllerRevision
+-->
+### `create` 创建一个 ControllerRevision
+
+<!--
+#### HTTP Request
+
+POST /apis/apps/v1/namespaces/{namespace}/controllerrevisions
+-->
+#### HTTP 请求
+
+POST /apis/apps/v1/namespaces/{namespace}/controllerrevisions
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevision" >}}">ControllerRevision</a>, required
+-->
+- **body**: <a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevision" >}}">ControllerRevision</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->  
+- **dryRun** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **fieldManager** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+-->
+- **fieldValidation** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevision" >}}">ControllerRevision</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevision" >}}">ControllerRevision</a>): Created
+
+202 (<a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevision" >}}">ControllerRevision</a>): Accepted
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevision" >}}">ControllerRevision</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevision" >}}">ControllerRevision</a>): Created
+
+202 (<a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevision" >}}">ControllerRevision</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified ControllerRevision
+-->
+### `update` 替换特定的 ControllerRevision
+
+<!--
+#### HTTP Request
+
+PUT /apis/apps/v1/namespaces/{namespace}/controllerrevisions/{name}
+-->
+#### HTTP 参数
+
+PUT /apis/apps/v1/namespaces/{namespace}/controllerrevisions/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the ControllerRevision
+-->
+- **name** （**路径参数**）：string，必需
+
+  ControllerRevision 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevision" >}}">ControllerRevision</a>, required
+-->
+- **body**: <a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevision" >}}">ControllerRevision</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+- **dryRun** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **fieldManager** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+-->
+- **fieldValidation** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevision" >}}">ControllerRevision</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevision" >}}">ControllerRevision</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevision" >}}">ControllerRevision</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevision" >}}">ControllerRevision</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified ControllerRevision
+-->
+### `patch` 部分更新特定的 ControllerRevision
+
+<!--
+#### HTTP Request
+
+PATCH /apis/apps/v1/namespaces/{namespace}/controllerrevisions/{name}
+-->
+#### HTTP 请求
+
+PATCH /apis/apps/v1/namespaces/{namespace}/controllerrevisions/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the ControllerRevision
+-->
+- **name** （**路径参数**）：string，必需
+
+  ControllerRevision 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+- **dryRun** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **fieldManager** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+-->
+- **fieldValidation** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+-->
+- **force** （**查询参数**）： boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevision" >}}">ControllerRevision</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevision" >}}">ControllerRevision</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevision" >}}">ControllerRevision</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/controller-revision-v1#ControllerRevision" >}}">ControllerRevision</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a ControllerRevision
+-->
+### `delete` 删除一个 ControllerRevision
+
+<!--
+#### HTTP Request
+
+DELETE /apis/apps/v1/namespaces/{namespace}/controllerrevisions/{name}
+-->
+#### HTTP 请求
+
+DELETE /apis/apps/v1/namespaces/{namespace}/controllerrevisions/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the ControllerRevision
+-->
+- **name** （**路径参数**）：string，必需
+
+  ControllerRevision 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+-->
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->  
+- **dryRun** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+-->
+- **gracePeriodSeconds** （**查询参数**）： integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+- **propagationPolicy** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of ControllerRevision
+-->
+### `deletecollection` 删除 ControllerRevision 集合
+
+<!--
+#### HTTP Request
+
+DELETE /apis/apps/v1/namespaces/{namespace}/controllerrevisions
+-->
+#### HTTP 请求
+
+DELETE /apis/apps/v1/namespaces/{namespace}/controllerrevisions
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+-->
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+-->  
+- **continue** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+- **dryRun** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+-->
+- **fieldSelector** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+-->
+- **gracePeriodSeconds** （**查询参数**）： integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+-->
+- **labelSelector** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+-->
+- **limit** （**查询参数**）： integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+- **propagationPolicy** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+-->
+- **resourceVersion** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+-->
+- **resourceVersionMatch** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+-->
+- **timeoutSeconds** （**查询参数**）： integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/workload-resources/cron-job-v1.md b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/cron-job-v1.md
new file mode 100644
index 0000000000..d19f2fcb4f
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/cron-job-v1.md
@@ -0,0 +1,1489 @@
+---
+api_metadata:
+  apiVersion: "batch/v1"
+  import: "k8s.io/api/batch/v1"
+  kind: "CronJob"
+content_type: "api_reference"
+description: "CronJob 代表单个定时作业 (Cron Job) 的配置。"
+title: "CronJob"
+weight: 10
+---
+
+<!--
+api_metadata:
+apiVersion: "batch/v1"
+import: "k8s.io/api/batch/v1"
+kind: "CronJob"
+content_type: "api_reference"
+description: "CronJob represents the configuration of a single cron job."
+title: "CronJob"
+weight: 10
+auto_generated: true
+-->
+
+`apiVersion: batch/v1`
+
+`import "k8s.io/api/batch/v1"`
+
+## CronJob {#CronJob}
+
+<!--
+CronJob represents the configuration of a single cron job.
+-->
+CronJob 代表单个定时作业（Cron Job) 的配置。
+
+<hr>
+
+- **apiVersion**: batch/v1
+
+
+- **kind**: CronJob
+
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  <!--
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+  标准的对象元数据。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../workload-resources/cron-job-v1#CronJobSpec" >}}">CronJobSpec</a>)
+
+  <!--
+  Specification of the desired behavior of a cron job, including the schedule. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+  -->
+  定时作业的预期行为的规约，包括排期表（Schedule）。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+- **status** (<a href="{{< ref "../workload-resources/cron-job-v1#CronJobStatus" >}}">CronJobStatus</a>)
+
+  <!--
+  Current status of a cron job. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+  -->
+  定时作业的当前状态。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+## CronJobSpec {#CronJobSpec}
+
+<!--
+CronJobSpec describes how the job execution will look like and when it will actually run.
+-->
+
+CronJobSpec 描述了作业的执行方式和实际将运行的时间。
+
+<hr>
+
+<!--
+- **jobTemplate** (JobTemplateSpec), 必需
+
+  Specifies the job that will be created when executing a CronJob.
+-->
+
+- **jobTemplate** (JobTemplateSpec), 必需
+
+  指定执行 CronJob 时将创建的作业。
+
+  <!--
+  <a name="JobTemplateSpec"></a>
+  *JobTemplateSpec describes the data a Job should have when created from a template*
+  -->
+
+  <a name="JobTemplateSpec"></a>
+  **JobTemplateSpec 描述了从模板创建作业时应具有的数据**
+
+  <!--
+  - **jobTemplate.metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+    Standard object's metadata of the jobs created from this template. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+
+  - **jobTemplate.metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+    从此模板创建的作业的标准对象元数据。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  
+  <!--
+  - **jobTemplate.spec** (<a href="{{< ref "../workload-resources/job-v1#JobSpec" >}}">JobSpec</a>)
+
+    Specification of the desired behavior of the job. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+  -->
+
+  - **jobTemplate.spec** (<a href="{{< ref "../workload-resources/job-v1#JobSpec" >}}">JobSpec</a>)
+
+    对作业的预期行为的规约。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+  
+<!--
+- **schedule** (string), required
+
+  The schedule in Cron format, see https://en.wikipedia.org/wiki/Cron.
+-->
+
+- **schedule** (string), 必需
+
+  Cron 格式的排期表，请参阅 https://en.wikipedia.org/wiki/Cron.
+  
+<!--
+- **timeZone** (string)
+
+  The time zone for the given schedule, see https://en.wikipedia.org/wiki/List_of_tz_database_time_zones. If not specified, this will rely on the time zone of the kube-controller-manager process. ALPHA: This field is in alpha and must be enabled via the `CronJobTimeZone` feature gate.
+-->
+
+- **timeZone** (string)
+
+  给定时间表的时区，请参阅 https://en.wikipedia.org/wiki/List_of_tz_database_time_zones。 
+  如果未指定，这将取决于 kube-controller-manager 进程的时区。 ALPHA：此字段处于 alpha 状态，必须通过 "CronJobTimeZone" 功能门启用。
+
+<!--
+- **concurrencyPolicy** (string)
+
+  Specifies how to treat concurrent executions of a Job. Valid values are: - "Allow" (default): allows CronJobs to run concurrently; - "Forbid": forbids concurrent runs, skipping next run if previous run hasn't finished yet; - "Replace": cancels currently running job and replaces it with a new one
+-->
+
+- **concurrencyPolicy** (string)
+
+  指定如何处理作业的并发执行。 有效值为： 
+
+  - "Allow" (默认)：允许 CronJobs 并发运行； 
+  - "Forbid"：禁止并发运行，如果上一次运行尚未完成则跳过下一次运行； 
+  - "Replace"：取消当前正在运行的作业并将其替换为新作业
+
+<!--
+- **startingDeadlineSeconds** (int64)
+
+  Optional deadline in seconds for starting the job if it misses scheduled time for any reason.  Missed jobs executions will be counted as failed ones.
+-->
+
+- **startingDeadlineSeconds** (int64)
+
+  可选字段。当作业因为某种原因错过预定时间时，设定作业的启动截止时间（秒）。错过排期的作业将被视为失败的作业。
+
+<!--
+- **suspend** (boolean)
+
+  This flag tells the controller to suspend subsequent executions, it does not apply to already started executions.  Defaults to false.
+-->
+
+- **suspend** (boolean)
+
+  这个标志告诉控制器暂停后续的执行，它不适用于已经开始的执行。默认为 false。
+
+<!--
+- **successfulJobsHistoryLimit** (int32)
+
+  The number of successful finished jobs to retain. Value must be non-negative integer. Defaults to 3.
+-->
+
+- **successfulJobsHistoryLimit** (int32)
+
+  要保留的成功完成作业数。值必须是非负整数。默认值为 3。
+
+<!--
+- **failedJobsHistoryLimit** (int32)
+
+  The number of failed finished jobs to retain. Value must be non-negative integer. Defaults to 1.
+-->
+
+- **failedJobsHistoryLimit** (int32)
+
+  要保留的以失败状态结束的作业个数。值必须是非负整数。默认值为 1。
+
+
+## CronJobStatus {#CronJobStatus}
+
+<!--
+CronJobStatus represents the current state of a cron job.
+
+<hr>
+
+-->
+CronJobStatus 表示某个定时作业的当前状态。
+
+<hr>
+
+<!--
+- **active** ([]<a href="{{< ref "../common-definitions/object-reference#ObjectReference" >}}">ObjectReference</a>)
+
+  *Atomic: will be replaced during a merge*
+
+  A list of pointers to currently running jobs.
+-->
+- **active** ([]<a href="{{< ref "../common-definitions/object-reference#ObjectReference" >}}">ObjectReference</a>)
+
+  **Atomic: 将在合并过程中被替换**
+
+  指向当前正在运行的作业的指针列表。
+
+<!--
+- **lastScheduleTime** (Time)
+
+  Information when was the last time the job was successfully scheduled.
+
+  <a name="Time"></a>
+  *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+-->
+- **lastScheduleTime** (Time)
+
+  上次成功调度作业的时间信息。
+
+  <a name="Time"></a>
+  **Time 是对 time.Time 的封装，它支持对 YAML 和 JSON 的正确编排。为 time 包提供的许多工厂方法模式提供了包装器。**
+
+<!--
+- **lastSuccessfulTime** (Time)
+
+  Information when was the last time the job successfully completed.
+
+  <a name="Time"></a>
+  *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+-->
+- **lastSuccessfulTime** (Time)
+
+  上次成功完成作业的时间信息。
+
+  <a name="Time"></a>
+  **Time 是对 time.Time 的封装，它支持对 YAML 和 JSON 的正确编排。为 time 包提供的许多工厂方法模式提供了包装器。**
+
+
+## CronJobList {#CronJobList}
+
+<!--
+CronJobList is a collection of cron jobs.
+
+<hr>
+-->
+CronJobList 是定时作业的集合。
+
+<hr>
+
+- **apiVersion**: batch/v1
+
+
+- **kind**: CronJobList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  标准列表元数据。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+<!--
+- **items** ([]<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>), required
+
+  items is the list of CronJobs.
+-->
+- **items** ([]<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>), required
+
+  items 是 CronJobs 的列表。
+
+
+<!--
+## Operations {#Operations}
+-->
+## 操作 {#操作}
+
+<hr>
+
+<!--
+### `get` read the specified CronJob
+
+#### HTTP Request
+
+GET /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}
+
+#### Parameters
+-->
+
+### `get` 查看指定的 CronJob
+
+#### HTTP 请求
+
+GET /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the CronJob
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **name** (**路径参数**): string, 必需
+
+  CronJob 的名称
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+
+#### 响应
+
+<!--
+200 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): OK
+
+401: Unauthorized
+-->
+
+200 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): OK
+
+401: Unauthorized
+
+<!--
+### `get` read status of the specified CronJob
+
+#### HTTP Request
+
+GET /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}/status
+
+#### Parameters
+
+-->
+
+### `get` 查看指定 CronJob 的状态
+
+#### HTTP 请求
+
+GET /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}/status
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the CronJob
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **name** (**路径参数**): string, 必需
+
+  CronJob 的名称
+
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): OK
+
+401: Unauthorized
+-->
+
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind CronJob
+
+#### HTTP Request
+
+GET /apis/batch/v1/namespaces/{namespace}/cronjobs
+
+#### Parameters
+-->
+
+### `list` 查看或监视 CronJob 类别的对象
+
+#### HTTP 请求
+
+GET /apis/batch/v1/namespaces/{namespace}/cronjobs
+
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+-->
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!--
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+-->
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+-->
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+-->
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+-->
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+-->
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+-->
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+-->
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJobList" >}}">CronJobList</a>): OK
+
+401: Unauthorized
+-->
+
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJobList" >}}">CronJobList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind CronJob
+
+#### HTTP Request
+
+GET /apis/batch/v1/cronjobs
+
+#### Parameters
+-->
+
+### `list` 查看或监视 CronJob 类型的对象
+
+#### HTTP 请求
+
+GET /apis/batch/v1/cronjobs
+
+#### 参数
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+-->
+
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!--
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+-->
+
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+-->
+
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+-->
+
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+-->
+
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+-->
+
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+-->
+
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+-->
+
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJobList" >}}">CronJobList</a>): OK
+
+401: Unauthorized
+-->
+
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJobList" >}}">CronJobList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a CronJob
+
+#### HTTP Request
+
+POST /apis/batch/v1/namespaces/{namespace}/cronjobs
+
+#### Parameters
+-->
+
+### `create` 创建一个 CronJob
+
+#### HTTP 请求
+
+POST /apis/batch/v1/namespaces/{namespace}/cronjobs
+
+#### 参数
+
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>, required
+-->
+
+- **body**: <a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>, 必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+-->
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): Created
+
+202 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): Accepted
+
+401: Unauthorized
+-->
+
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): Created
+
+202 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified CronJob
+
+#### HTTP Request
+
+PUT /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}
+
+#### Parameters
+-->
+
+### `update` 替换指定的 CronJob
+
+#### HTTP 请求
+
+PUT /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the CronJob
+-->
+
+- **name** (**路径参数**): string, 必需
+
+  CronJob 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>, required
+-->
+
+- **body**: <a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>, 必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+-->
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): Created
+
+401: Unauthorized
+-->
+
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): Created
+
+401: Unauthorized
+
+<!--
+### `update` replace status of the specified CronJob
+
+#### HTTP Request
+
+PUT /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}/status
+
+#### Parameters
+-->
+
+### `update` 替换指定 CronJob 的状态
+
+#### HTTP 请求
+
+PUT /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}/status
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the CronJob
+-->
+
+- **name** (**路径参数**): string, 必需
+
+  CronJob 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>, required
+-->
+
+- **body**: <a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>, 必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+-->
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): Created
+
+401: Unauthorized
+-->
+
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified CronJob
+
+#### HTTP Request
+
+PATCH /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}
+
+#### Parameters
+-->
+
+### `patch` 部分更新指定的 CronJob
+
+#### HTTP 请求
+
+PATCH /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the CronJob
+- 
+-->
+
+- **name** (**路径参数**): string, 必需
+
+  CronJob 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, 必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+-->
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+-->
+
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): Created
+
+401: Unauthorized
+-->
+
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update status of the specified CronJob
+
+#### HTTP Request
+
+PATCH /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}/status
+
+#### Parameters
+-->
+
+### `patch` 部分更新指定 CronJob 的状态
+
+#### HTTP 请求
+
+PATCH /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}/status
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the CronJob
+-->
+
+- **name** (**路径参数**): string, 必需
+
+  CronJob 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, 必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+
+- **dryRun** (**参数参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+
+- **fieldManager** (**参数参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+-->
+
+- **fieldValidation** (**参数参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+-->
+
+- **force** (**参数参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **pretty** (**参数参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): Created
+
+401: Unauthorized
+-->
+
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/cron-job-v1#CronJob" >}}">CronJob</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a CronJob
+
+#### HTTP Request
+
+DELETE /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}
+
+#### Parameters
+-->
+
+### `delete` 删除一个 CronJob
+
+#### HTTP 请求
+
+DELETE /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the CronJob
+-->
+
+- **name** (**路径参数**): string, 必需
+
+  CronJob 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+-->
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+-->
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+-->
+
+#### 响应
+
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of CronJob
+
+#### HTTP Request
+
+DELETE /apis/batch/v1/namespaces/{namespace}/cronjobs
+
+#### Parameters
+-->
+
+### `deletecollection` 删除一组 CronJob
+
+#### HTTP 请求
+
+DELETE /apis/batch/v1/namespaces/{namespace}/cronjobs
+
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+-->
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+-->
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+-->
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+-->
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+-->
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+-->
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+-->
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+-->
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+-->
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+-->
+
+#### 响应
+
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/workload-resources/daemon-set-v1.md b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/daemon-set-v1.md
new file mode 100644
index 0000000000..38b246f7ea
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/daemon-set-v1.md
@@ -0,0 +1,1600 @@
+---
+api_metadata:
+  apiVersion: "apps/v1"
+  import: "k8s.io/api/apps/v1"
+  kind: "DaemonSet"
+content_type: "api_reference"
+description: "DaemonSet 表示守护程序集的配置。"
+title: "DaemonSet"
+weight: 8
+---
+
+<!--
+api_metadata:
+apiVersion: "apps/v1"
+import: "k8s.io/api/apps/v1"
+kind: "DaemonSet"
+content_type: "api_reference"
+description: "DaemonSet represents the configuration of a daemon set."
+title: "DaemonSet"
+weight: 8
+auto_generated: true
+-->
+
+
+`apiVersion: apps/v1`
+
+`import "k8s.io/api/apps/v1"`
+
+<!--
+## DaemonSet {#DaemonSet}
+
+DaemonSet represents the configuration of a daemon set.
+-->
+## DaemonSet {#DaemonSet}
+
+DaemonSet 表示守护程序集的配置。
+
+<hr>
+
+- **apiVersion**: apps/v1
+
+
+- **kind**: DaemonSet
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  标准的对象元数据。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+<!--
+- **spec** (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSetSpec" >}}">DaemonSetSpec</a>)
+
+  The desired behavior of this daemon set. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+-->
+- **spec** (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSetSpec" >}}">DaemonSetSpec</a>)
+
+  此守护程序集的预期行为。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+<!--
+- **status** (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSetStatus" >}}">DaemonSetStatus</a>)
+
+  The current status of this daemon set. This data may be out of date by some window of time. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+-->
+- **status** (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSetStatus" >}}">DaemonSetStatus</a>)
+
+  此守护程序集的当前状态。此数据可能已经过时一段时间。由系统填充。
+  只读。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+
+<!--
+## DaemonSetSpec {#DaemonSetSpec}
+
+DaemonSetSpec is the specification of a daemon set.
+-->
+## DaemonSetSpec {#DaemonSetSpec}
+
+DaemonSetSpec 是守护程序集的规约。
+
+<hr>
+
+<!--
+- **selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>), required
+
+  A label query over pods that are managed by the daemon set. Must match in order to be controlled. It must match the pod template's labels. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors
+-->
+- **selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>), 必需
+
+  对由守护程序集管理的 Pod 的标签查询。Pod 必须匹配此查询才能被此 DaemonSet 控制。
+  查询条件必须与 Pod 模板的标签匹配。
+  更多信息： https://kubernetes.io/zh-cn/concepts/overview/working-with-objects/labels/#label-selectors
+
+<!--
+- **template** (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplateSpec" >}}">PodTemplateSpec</a>), required
+
+  An object that describes the pod that will be created. The DaemonSet will create exactly one copy of this pod on every node that matches the template's node selector (or on every node if no node selector is specified). More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#pod-template
+-->
+- **template** (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplateSpec" >}}">PodTemplateSpec</a>), 必需
+
+  描述将要创建的 Pod 的对象。DaemonSet 将在与模板的节点选择器匹配的每个节点上
+ （如果未指定节点选择器，则在每个节点上）准确创建此 Pod 的副本。
+  更多信息： https://kubernetes.io/zh-cn/concepts/workloads/controllers/replicationcontroller#pod-template
+
+<!--
+- **minReadySeconds** (int32)
+
+  The minimum number of seconds for which a newly created DaemonSet pod should be ready without any of its container crashing, for it to be considered available. Defaults to 0 (pod will be considered available as soon as it is ready).
+-->
+- **minReadySeconds** (int32)
+
+  新建的 DaemonSet Pod 应该在没有任何容器崩溃的情况下处于就绪状态的最小秒数，这样它才会被认为是可用的。默认为 0（Pod 准备就绪后将被视为可用）。
+
+<!--
+- **updateStrategy** (DaemonSetUpdateStrategy)
+
+  An update strategy to replace existing DaemonSet pods with new pods.
+-->
+- **updateStrategy** (DaemonSetUpdateStrategy)
+
+  用新 Pod 替换现有 DaemonSet Pod 的更新策略。
+
+  <!--
+  <a name="DaemonSetUpdateStrategy"></a>
+  *DaemonSetUpdateStrategy is a struct used to control the update strategy for a DaemonSet.*
+  -->
+  <a name="DaemonSetUpdateStrategy"></a>
+  **DaemonSetUpdateStrategy 是一个结构体，用于控制 DaemonSet 的更新策略。**
+
+  <!--
+  - **updateStrategy.type** (string)
+
+    Type of daemon set update. Can be "RollingUpdate" or "OnDelete". Default is RollingUpdate.
+  -->
+  
+  - **updateStrategy.type** (string)
+
+    守护程序集更新的类型。可以是 "RollingUpdate" 或 "OnDelete"。默认为 RollingUpdate。
+
+  <!-- 
+  - **updateStrategy.rollingUpdate** (RollingUpdateDaemonSet)
+
+    Rolling update config params. Present only if type = "RollingUpdate".
+  -->
+  
+  - **updateStrategy.rollingUpdate** (RollingUpdateDaemonSet)
+
+    滚动更新配置参数。仅在 type 值为 "RollingUpdate" 时出现。
+    
+    <!-- 
+    <a name="RollingUpdateDaemonSet"></a>
+    *Spec to control the desired behavior of daemon set rolling update.*
+    -->
+  
+    **用于控制守护程序集滚动更新的预期行为的规约。** 
+    
+    <!-- 
+    - **updateStrategy.rollingUpdate.maxSurge** (IntOrString)
+
+      The maximum number of nodes with an existing available DaemonSet pod that can have an updated DaemonSet pod during during an update. Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). This can not be 0 if MaxUnavailable is 0. Absolute number is calculated from percentage by rounding up to a minimum of 1. Default value is 0. Example: when this is set to 30%, at most 30% of the total number of nodes that should be running the daemon pod (i.e. status.desiredNumberScheduled) can have their a new pod created before the old pod is marked as deleted. The update starts by launching new pods on 30% of nodes. Once an updated pod is available (Ready for at least minReadySeconds) the old DaemonSet pod on that node is marked deleted. If the old pod becomes unavailable for any reason (Ready transitions to false, is evicted, or is drained) an updated pod is immediatedly created on that node without considering surge limits. Allowing surge implies the possibility that the resources consumed by the daemonset on any given node can double if the readiness check fails, and so resource intensive daemonsets should take into account that they may cause evictions during disruption. This is beta field and enabled/disabled by DaemonSetUpdateSurge feature gate.
+    -->
+    
+    - **updateStrategy.rollingUpdate.maxSurge** (IntOrString)
+
+      对于拥有可用 DaemonSet Pod 的节点而言，在更新期间可以拥有更新后的 DaemonSet Pod 的最大节点数。
+      属性值可以是绝对数量（例如：5）或所需 Pod 的百分比（例如：10%）。
+      如果 maxUnavailable 为 0，则该值不能为 0。绝对数是通过四舍五入从百分比计算得出的，最小值为 1。
+      默认值为 0。示例：当设置为 30% 时，最多为节点总数的 30% 节点上应该运行守护程序 Pod（即 status.desiredNumberScheduled）
+      可以在旧 Pod 标记为已删除之前创建一个新 Pod。更新首先在 30% 的节点上启动新的 Pod。
+      一旦更新的 Pod 可用（就绪时长至少 minReadySeconds 秒），该节点上的旧 DaemonSet pod 就会被标记为已删除。
+      如果旧 Pod 因任何原因变得不可用（Ready 转换为 false、被驱逐或节点被腾空），
+      则会立即在该节点上创建更新的 Pod，而不考虑激增限制。
+      允许激增意味着如果就绪检查失败，任何给定节点上的守护程序集消耗的资源可能会翻倍，
+      因此资源密集型守护程序集应该考虑到它们可能会在中断期间导致驱逐。
+      此字段是 Beta 字段，由 DaemonSetUpdateSurge 特性门启用/禁用。
+  
+      <!-- 
+      <a name="IntOrString"></a>
+      *IntOrString is a type that can hold an int32 or a string.  When used in JSON or YAML marshalling and unmarshalling, it produces or consumes the inner type.  This allows you to have, for example, a JSON field that can accept a name or number.*
+      -->
+      
+      **IntOrString 是一种可以容纳 int32 或字符串的类型。在 JSON 或 YAML 编组和解组中使用时，它会生成或使用内部类型。
+      例如，这允许你拥有一个可以接受名称或数字的 JSON 字段。**
+
+    <!-- 
+    - **updateStrategy.rollingUpdate.maxUnavailable** (IntOrString)
+
+      The maximum number of DaemonSet pods that can be unavailable during the update. Value can be an absolute number (ex: 5) or a percentage of total number of DaemonSet pods at the start of the update (ex: 10%). Absolute number is calculated from percentage by rounding up. This cannot be 0 if MaxSurge is 0 Default value is 1. Example: when this is set to 30%, at most 30% of the total number of nodes that should be running the daemon pod (i.e. status.desiredNumberScheduled) can have their pods stopped for an update at any given time. The update starts by stopping at most 30% of those DaemonSet pods and then brings up new DaemonSet pods in their place. Once the new pods are available, it then proceeds onto other DaemonSet pods, thus ensuring that at least 70% of original number of DaemonSet pods are available at all times during the update.
+    -->
+    
+    - **updateStrategy.rollingUpdate.maxUnavailable** (IntOrString)
+
+      更新期间不可用的 DaemonSet Pod 的最大数量。值可以是绝对数（例如：5）或更新开始时 DaemonSet Pod 总数的百分比（例如：10%）。
+      绝对数是通过四舍五入的百分比计算得出的。如果 maxSurge 为 0，则此值不能为 0 默认值为 1。
+      例如：当设置为 30% 时，最多节点总数 30% 的、应该运行守护程序的节点总数（即 status.desiredNumberScheduled）
+      可以在任何给定时间停止更新。更新首先停止最多 30% 的 DaemonSet Pod，
+      然后在它们的位置启动新的 DaemonSet Pod。
+      一旦新的 Pod 可用，它就会继续处理其他 DaemonSet Pod，从而确保在更新期间至少 70% 的原始 DaemonSet Pod 数量始终可用。
+      
+      <!-- 
+      <a name="IntOrString"></a>
+      *IntOrString is a type that can hold an int32 or a string.  When used in JSON or YAML marshalling and unmarshalling, it produces or consumes the inner type.  This allows you to have, for example, a JSON field that can accept a name or number.*
+      -->
+     
+      **IntOrString 是一种可以保存 int32 或字符串的类型。在 JSON 或 YAML 编组和解组中使用时，它会生成或使用内部类型。例如，这允许你拥有一个可以接受名称或数字的 JSON 字段。**
+
+<!-- 
+- **revisionHistoryLimit** (int32)
+
+  The number of old history to retain to allow rollback. This is a pointer to distinguish between explicit zero and not specified. Defaults to 10.
+-->
+- **revisionHistoryLimit** (int32)
+
+  用来允许回滚而保留的旧历史记录的数量。此字段是个指针，用来区分明确的零值和未指定的指针。默认值是 10。
+
+
+<!--
+## DaemonSetStatus {#DaemonSetStatus}
+
+DaemonSetStatus represents the current status of a daemon set.
+-->
+## DaemonSetStatus {#DaemonSetStatus}
+
+DaemonSetStatus 表示守护程进程的当前状态。
+
+<hr>
+
+<!--
+- **numberReady** (int32), required
+
+  numberReady is the number of nodes that should be running the daemon pod and have one or more of the daemon pod running with a Ready Condition.
+-->
+- **numberReady** (int32),必需
+
+  numberReady 是应该运行守护进程 Pod 并且有一个或多个 DaemonSet Pod 以就绪条件运行的节点数。
+
+<!--
+- **numberAvailable** (int32)
+
+  The number of nodes that should be running the daemon pod and have one or more of the daemon pod running and available (ready for at least spec.minReadySeconds)
+-->
+- **numberAvailable** (int32)
+
+  应该运行守护进程 Pod 并有一个或多个守护进程 Pod 正在运行和可用（就绪时长超过 spec.minReadySeconds）的节点数量。
+
+<!--
+- **numberUnavailable** (int32)
+
+  The number of nodes that should be running the daemon pod and have none of the daemon pod running and available (ready for at least spec.minReadySeconds)
+-->
+- **numberUnavailable** (int32)
+
+  应该运行守护进程 Pod 并且没有任何守护进程 Pod 正在运行且可用（至少已就绪 spec.minReadySeconds 秒）的节点数。  
+
+<!--
+- **numberMisscheduled** (int32), required
+
+  The number of nodes that are running the daemon pod, but are not supposed to run the daemon pod. More info: https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/
+-->
+- **numberMisscheduled** (int32),必需
+
+  正在运行守护进程 Pod，但不应该运行守护进程 Pod 的节点数量。更多信息： https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/
+
+<!--
+- **desiredNumberScheduled** (int32), required
+
+  The total number of nodes that should be running the daemon pod (including nodes correctly running the daemon pod). More info: https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/
+-->
+- **desiredNumberScheduled** (int32),必需
+
+  应该运行守护进程 Pod 的节点总数（包括正确运行守护进程 Pod 的节点）。更多信息： https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/
+
+<!--
+- **currentNumberScheduled** (int32), required
+
+  The number of nodes that are running at least 1 daemon pod and are supposed to run the daemon pod. More info: https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/
+-->
+- **currentNumberScheduled** (int32),必需
+
+  运行至少 1 个守护进程 Pod 并且应该运行守护进程 Pod 的节点数。多信息： https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/
+
+<!--
+- **updatedNumberScheduled** (int32)
+
+  The total number of nodes that are running updated daemon pod
+-->
+- **updatedNumberScheduled** (int32)
+
+  正在运行更新后的守护进程 Pod 的节点总数。
+
+<!--
+- **collisionCount** (int32)
+
+  Count of hash collisions for the DaemonSet. The DaemonSet controller uses this field as a collision avoidance mechanism when it needs to create the name for the newest ControllerRevision.
+-->
+- **collisionCount** (int32)
+
+  DaemonSet 的哈希冲突计数。DaemonSet 控制器在需要为最新的 ControllerRevision 创建名称时使用此字段作为避免冲突的机制。
+
+<!--
+- **conditions** ([]DaemonSetCondition)
+
+  *Patch strategy: merge on key `type`*
+-->
+- **conditions** ([]DaemonSetCondition)
+
+  **补丁策略：根据 `type` 键合并**
+
+  <!--  
+  Represents the latest available observations of a DaemonSet's current state.
+
+  <a name="DaemonSetCondition"></a>
+  *DaemonSetCondition describes the state of a DaemonSet at a certain point.*
+  -->
+  表示 DaemonSet 当前状态的最新可用观测信息。
+
+  <a name="DaemonSetCondition"></a>
+  **DaemonSet Condition 描述了 DaemonSet 在某一时刻的状态。**
+
+  <!--
+  - **conditions.status** (string), required
+
+    Status of the condition, one of True, False, Unknown.
+
+  - **conditions.type** (string), required
+
+    Type of DaemonSet condition.
+  -->
+  
+  - **conditions.status** (string),必需
+
+    状况的状态，True、False、Unknown 之一。
+
+  - **conditions.type** (string),必需
+
+    DaemonSet 状况的类型。
+
+  <!--
+  - **conditions.lastTransitionTime** (Time)
+
+    Last time the condition transitioned from one status to another. 
+  -->
+  
+  - **conditions.lastTransitionTime** (Time)
+
+    状况上次从一种状态转换到另一种状态的时间。
+    <!--
+    <a name="Time"></a>
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+    -->
+    
+    **Time 是对 time.Time 的封装，支持正确编码为 YAML 和 JSON。time 包为许多工厂方法提供了封装器。**
+  
+  <!--
+  - **conditions.message** (string)
+
+    A human readable message indicating details about the transition.
+  -->
+  
+  - **conditions.message** (string)
+  
+    一条人类可读的消息，指示有关转换的详细信息。
+  
+  <!--
+  - **conditions.reason** (string)
+
+    The reason for the condition's last transition.
+  -->
+  
+  - **conditions.reason** (string)
+
+    状况最后一次转换的原因。
+  
+<!--
+- **observedGeneration** (int64)
+
+  The most recent generation observed by the daemon set controller.
+-->
+
+- **observedGeneration** (int64)
+
+  守护进程集控制器观察到的最新一代。
+
+
+<!--
+## DaemonSetList {#DaemonSetList}
+
+DaemonSetList is a collection of daemon sets.
+-->
+
+## DaemonSetList {#DaemonSetList}
+
+DaemonSetList 是守护进程集的集合。
+
+<hr>
+
+- **apiVersion**: apps/v1
+
+
+- **kind**: DaemonSetList
+
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>), required
+
+  A list of daemon sets.
+-->
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  标准列表元数据。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>), 必需
+
+  DaemonSet 的列表。
+
+
+## Operations {#Operations}
+
+<hr>
+
+<!--
+### `get` read the specified DaemonSet
+
+#### HTTP Request
+
+GET /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}
+
+#### Parameters
+-->
+### `get` 读取指定的 DaemonSet
+
+#### HTTP 请求
+
+GET /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the DaemonSet
+-->
+- **name** (**路径参数**): string, 必需
+
+  DaemonSet 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): OK
+
+401: 未授权
+
+<!--
+### `get` read status of the specified DaemonSet
+
+#### HTTP Request
+
+GET /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}/status
+
+#### Parameters
+-->
+### `get` 读取指定的 DaemonSet 的状态
+
+#### HTTP 请求
+
+GET /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}/status
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the DaemonSet
+-->
+- **name** (**路径参数**): string, 必需
+
+  DaemonSet 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): OK
+
+401: 未授权
+
+<!--
+### `list` list or watch objects of kind DaemonSet
+
+#### HTTP Request
+
+GET /apis/apps/v1/namespaces/{namespace}/daemonsets
+
+#### Parameters
+-->
+### `list` 列表或查看 DaemonSet 类型的对象
+
+#### HTTP 请求
+
+GET /apis/apps/v1/namespaces/{namespace}/daemonsets
+
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+-->
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **allowWatchBookmarks** (**路径参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+-->
+
+- **allowWatchBookmarks** (**路径参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+-->
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+-->
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSetList" >}}">DaemonSetList</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSetList" >}}">DaemonSetList</a>): OK
+
+401: 未授权
+
+<!--
+### `list` list or watch objects of kind DaemonSet
+
+#### HTTP Request
+
+GET /apis/apps/v1/daemonsets
+
+#### Parameters
+-->
+### `list` 列表或查看 DaemonSet 类型的对象
+
+#### HTTP 请求
+
+GET /apis/apps/v1/daemonsets
+
+#### 参数
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+-->
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+-->
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+-->
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSetList" >}}">DaemonSetList</a>): OK
+
+401: Unauthorized
+-->
+
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSetList" >}}">DaemonSetList</a>): OK
+
+401: 未授权
+
+<!--
+### `create` create a DaemonSet
+
+#### HTTP Request
+
+POST /apis/apps/v1/namespaces/{namespace}/daemonsets
+
+#### Parameters
+-->
+### `create` 创建一个 DaemonSet
+
+#### HTTP 请求
+
+POST /apis/apps/v1/namespaces/{namespace}/daemonsets
+
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>, required
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>, 必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): Created
+
+202 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): Accepted
+
+401: Unauthorized
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): 创建完成
+
+202 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): 已接受
+
+401: 未授权
+
+<!--
+### `update` replace the specified DaemonSet
+
+#### HTTP Request
+
+PUT /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}
+
+#### Parameters
+-->
+### `update` 替换指定的 DaemonSet
+
+#### HTTP 请求
+
+PUT /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the DaemonSet
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>, required
+-->
+- **name** (**路径参数**): string,必需
+
+  DaemonSet 的名称
+
+
+- **namespace** (**路径参数**): string,必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>,必需  
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): 已创建
+
+401: 未授权
+
+<!--
+### `update` replace status of the specified DaemonSet
+
+#### HTTP Request
+
+PUT /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}/status
+
+#### Parameters
+-->
+### `update` 替换指定 DaemonSet 的状态
+
+#### HTTP 请求
+
+PUT /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}/status
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the DaemonSet
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>, required
+-->
+- **name** (**路径参数**): string, 必需
+
+  DaemonSet 的名称
+
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>, 必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): 已创建
+
+401: 未授权
+
+<!--
+### `patch` partially update the specified DaemonSet
+
+#### HTTP Request
+
+PATCH /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}
+
+#### Parameters
+-->
+### `patch` 部分更新指定的 DaemonSet
+
+#### HTTP 请求
+
+PATCH /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the DaemonSet
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+
+- **name** (**路径参数**): string, 必需
+
+  DaemonSet 的名称
+
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, 必需
+  
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+-->
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **force** **查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): 已创建
+
+401: 未授权
+
+<!--
+### `patch` partially update status of the specified DaemonSet
+
+#### HTTP Request
+
+PATCH /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}/status
+
+#### Parameters
+-->
+### `patch` 部分更新指定 DaemonSet 的状态
+
+#### HTTP 请求
+
+PATCH /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}/status
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the DaemonSet
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+- **name** (**路径参数**): string, 必需
+
+  DaemonSet 的名称
+
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, 必需 
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+-->
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/daemon-set-v1#DaemonSet" >}}">DaemonSet</a>): 已创建
+
+401: 未授权
+
+<!--
+### `delete` delete a DaemonSet
+
+#### HTTP Request
+
+DELETE /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}
+
+#### Parameters
+-->
+### `delete` 删除一个 DaemonSet
+
+#### HTTP 请求
+
+DELETE /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the DaemonSet
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **name** (**路径参数**): string,必需
+
+  DaemonSet 的名称
+
+
+- **namespace** (**路径参数**): string,必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+-->
+
+#### 响应
+
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): 已接受
+
+401: 未授权
+
+<!--
+### `deletecollection` delete collection of DaemonSet
+
+#### HTTP Request
+
+DELETE /apis/apps/v1/namespaces/{namespace}/daemonsets
+
+#### Parameters
+-->
+### `deletecollection` 删除 DaemonSet 的集合
+
+#### HTTP 请求
+
+DELETE /apis/apps/v1/namespaces/{namespace}/daemonsets
+
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+-->
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+-->
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+-->
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+-->
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: 未授权
\ No newline at end of file
diff --git a/content/zh-cn/docs/reference/kubernetes-api/workload-resources/deployment-v1.md b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/deployment-v1.md
new file mode 100644
index 0000000000..746ede656f
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/deployment-v1.md
@@ -0,0 +1,1107 @@
+---
+api_metadata:
+  apiVersion: "apps/v1"
+  import: "k8s.io/api/apps/v1"
+  kind: "Deployment"
+content_type: "api_reference"
+description: "Deployment 使得 Pod 和 ReplicaSet 能够进行声明式更新。"
+title: "Deployment"
+weight: 5
+---
+<!--
+api_metadata:
+  apiVersion: "apps/v1"
+  import: "k8s.io/api/apps/v1"
+  kind: "Deployment"
+content_type: "api_reference"
+description: "Deployment enables declarative updates for Pods and ReplicaSets."
+title: "Deployment"
+weight: 5
+auto_generated: true
+-->
+
+`apiVersion: apps/v1`
+
+`import "k8s.io/api/apps/v1"`
+
+## Deployment {#Deployment}
+
+<!--
+Deployment enables declarative updates for Pods and ReplicaSets.
+-->
+Deployment 使得 Pod 和 ReplicaSet 能够进行声明式更新。
+
+<hr>
+
+- **apiVersion**: apps/v1
+
+- **kind**: Deployment
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../workload-resources/deployment-v1#DeploymentSpec" >}}">DeploymentSpec</a>)
+
+  Specification of the desired behavior of the Deployment.
+
+- **status** (<a href="{{< ref "../workload-resources/deployment-v1#DeploymentStatus" >}}">DeploymentStatus</a>)
+
+  Most recently observed status of the Deployment.
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  
+  标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../workload-resources/deployment-v1#DeploymentSpec" >}}">DeploymentSpec</a>)
+  
+  Deployment 预期行为的规约。
+
+- **status** (<a href="{{< ref "../workload-resources/deployment-v1#DeploymentStatus" >}}">DeploymentStatus</a>)
+  
+  最近观测到的 Deployment 状态。
+
+## DeploymentSpec {#DeploymentSpec}
+
+<!--
+DeploymentSpec is the specification of the desired behavior of the Deployment.
+-->
+DeploymentSpec 定义 Deployment 预期行为的规约。
+
+<hr>
+
+<!--
+- **selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>), required
+
+  Label selector for pods. Existing ReplicaSets whose pods are selected by this will be the ones affected by this deployment. It must match the pod template's labels.
+
+- **template** (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplateSpec" >}}">PodTemplateSpec</a>), required
+
+  Template describes the pods that will be created.
+-->
+- **selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)，必需
+  
+  供 Pod 所用的标签选择算符。通过此字段选择现有 ReplicaSet 的 Pod 集合，
+  被选中的 ReplicaSet 将受到这个 Deployment 的影响。此字段必须与 Pod 模板的标签匹配。
+
+- **template** (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplateSpec" >}}">PodTemplateSpec</a>)，必需
+  
+  template 描述将要创建的 Pod。
+
+<!--
+- **replicas** (int32)
+
+  Number of desired pods. This is a pointer to distinguish between explicit zero and not specified. Defaults to 1.
+
+- **minReadySeconds** (int32)
+
+  Minimum number of seconds for which a newly created pod should be ready without any of its container crashing, for it to be considered available. Defaults to 0 (pod will be considered available as soon as it is ready)
+-->
+- **replicas** (int32)
+  
+  预期 Pod 的数量。这是一个指针，用于辨别显式零和未指定的值。默认为 1。
+
+- **minReadySeconds** (int32)
+  
+  新建的 Pod 在没有任何容器崩溃的情况下就绪并被系统视为可用的最短秒数。
+  默认为 0（Pod 就绪后即被视为可用）。
+
+<!--
+- **strategy** (DeploymentStrategy)
+
+  *Patch strategy: retainKeys*
+  
+  The deployment strategy to use to replace existing pods with new ones.
+
+  <a name="DeploymentStrategy"></a>
+  *DeploymentStrategy describes how to replace existing pods with new ones.*
+-->
+- **strategy** (DeploymentStrategy)
+  
+  **补丁策略：retainKeys**
+  
+  将现有 Pod 替换为新 Pod 时所用的部署策略。
+  
+  <a name="DeploymentStrategy"></a>
+  **DeploymentStrategy 描述如何将现有 Pod 替换为新 Pod。**
+  
+  <!--
+  - **strategy.type** (string)
+
+    Type of deployment. Can be "Recreate" or "RollingUpdate". Default is RollingUpdate.
+    
+  - **strategy.rollingUpdate** (RollingUpdateDeployment)
+
+    Rolling update config params. Present only if DeploymentStrategyType = RollingUpdate.
+
+    <a name="RollingUpdateDeployment"></a>
+    *Spec to control the desired behavior of rolling update.*
+  -->
+
+  - **strategy.type** (string)
+    
+    部署的类型。取值可以是 “Recreate” 或 “RollingUpdate”。默认为 RollingUpdate。
+  
+  - **strategy.rollingUpdate** (RollingUpdateDeployment)
+    
+    滚动更新这些配置参数。仅当 type = RollingUpdate 时才出现。
+    
+    <a name="RollingUpdateDeployment"></a>
+    **控制滚动更新预期行为的规约。**
+    
+    <!--
+    - **strategy.rollingUpdate.maxSurge** (IntOrString)
+
+      The maximum number of pods that can be scheduled above the desired number of pods. Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). This can not be 0 if MaxUnavailable is 0. Absolute number is calculated from percentage by rounding up. Defaults to 25%. Example: when this is set to 30%, the new ReplicaSet can be scaled up immediately when the rolling update starts, such that the total number of old and new pods do not exceed 130% of desired pods. Once old pods have been killed, new ReplicaSet can be scaled up further, ensuring that total number of pods running at any time during the update is at most 130% of desired pods.
+
+      <a name="IntOrString"></a>
+      *IntOrString is a type that can hold an int32 or a string.  When used in JSON or YAML marshalling and unmarshalling, it produces or consumes the inner type.  This allows you to have, for example, a JSON field that can accept a name or number.*
+    -->
+
+    - **strategy.rollingUpdate.maxSurge** (IntOrString)
+      
+      超出预期的 Pod 数量之后可以调度的最大 Pod 数量。该值可以是一个绝对数（例如：
+      5）或一个预期 Pod 的百分比（例如：10%）。如果 MaxUnavailable 为 0，则此字段不能为 0。
+      通过向上取整计算得出一个百分比绝对数。默认为 25%。例如：当此值设为 30% 时，
+      如果滚动更新启动，则可以立即对 ReplicaSet 扩容，从而使得新旧 Pod 总数不超过预期 Pod 数量的 130%。
+      一旦旧 Pod 被杀死，则可以再次对新的 ReplicaSet 扩容，
+      确保更新期间任何时间运行的 Pod 总数最多为预期 Pod 数量的 130%。
+      
+      <a name="IntOrString"></a>
+      **IntOrString 是可以保存 int32 或字符串的一个类型。
+      当用于 JSON 或 YAML 编组和取消编组时，它会产生或消费内部类型。
+      例如，这允许你拥有一个可以接受名称或数值的 JSON 字段。**
+    
+    <!--
+    - **strategy.rollingUpdate.maxUnavailable** (IntOrString)
+
+      The maximum number of pods that can be unavailable during the update. Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). Absolute number is calculated from percentage by rounding down. This can not be 0 if MaxSurge is 0. Defaults to 25%. Example: when this is set to 30%, the old ReplicaSet can be scaled down to 70% of desired pods immediately when the rolling update starts. Once new pods are ready, old ReplicaSet can be scaled down further, followed by scaling up the new ReplicaSet, ensuring that the total number of pods available at all times during the update is at least 70% of desired pods.
+
+      <a name="IntOrString"></a>
+      *IntOrString is a type that can hold an int32 or a string.  When used in JSON or YAML marshalling and unmarshalling, it produces or consumes the inner type.  This allows you to have, for example, a JSON field that can accept a name or number.*
+    -->
+
+    - **strategy.rollingUpdate.maxUnavailable** (IntOrString)
+      
+      更新期间可能不可用的最大 Pod 数量。该值可以是一个绝对数（例如：
+      5）或一个预期 Pod 的百分比（例如：10%）。通过向下取整计算得出一个百分比绝对数。
+      如果 MaxSurge 为 0，则此字段不能为 0。默认为 25%。
+      例如：当此字段设为 30%，则在滚动更新启动时 ReplicaSet 可以立即缩容为预期 Pod 数量的 70%。
+      一旦新的 Pod 就绪，ReplicaSet 可以再次缩容，接下来对新的 ReplicaSet 扩容，
+      确保更新期间任何时间可用的 Pod 总数至少是预期 Pod 数量的 70%。
+      
+      <a name="IntOrString"></a>
+      **IntOrString 是可以保存 int32 或字符串的一个类型。
+      当用于 JSON 或 YAML 编组和取消编组时，它会产生或消费内部类型。
+      例如，这允许你拥有一个可以接受名称或数值的 JSON 字段。**
+
+<!--
+- **revisionHistoryLimit** (int32)
+
+  The number of old ReplicaSets to retain to allow rollback. This is a pointer to distinguish between explicit zero and not specified. Defaults to 10.
+
+- **progressDeadlineSeconds** (int32)
+
+  The maximum time in seconds for a deployment to make progress before it is considered to be failed. The deployment controller will continue to process failed deployments and a condition with a ProgressDeadlineExceeded reason will be surfaced in the deployment status. Note that progress will not be estimated during the time a deployment is paused. Defaults to 600s.
+
+- **paused** (boolean)
+
+  Indicates that the deployment is paused.
+-->
+- **revisionHistoryLimit** (int32)
+  
+  保留允许回滚的旧 ReplicaSet 的数量。这是一个指针，用于辨别显式零和未指定的值。默认为 10。
+
+- **progressDeadlineSeconds** (int32)
+  
+  Deployment 在被视为失败之前取得进展的最大秒数。Deployment 控制器将继续处理失败的部署，
+  原因为 ProgressDeadlineExceeded 的状况将被显示在 Deployment 状态中。
+  请注意，在 Deployment 暂停期间将不会估算进度。默认为 600s。
+
+- **paused** (boolean)
+  
+  指示部署被暂停。
+
+## DeploymentStatus {#DeploymentStatus}
+
+<!--
+DeploymentStatus is the most recently observed status of the Deployment.
+-->
+DeploymentStatus 是最近观测到的 Deployment 状态。
+
+<hr>
+
+<!--
+- **replicas** (int32)
+
+  Total number of non-terminated pods targeted by this deployment (their labels match the selector).
+
+- **availableReplicas** (int32)
+
+  Total number of available pods (ready for at least minReadySeconds) targeted by this deployment.
+
+- **readyReplicas** (int32)
+
+  readyReplicas is the number of pods targeted by this Deployment with a Ready Condition.
+-->
+- **replicas** (int32)
+  
+  此部署所针对的（其标签与选择算符匹配）未终止 Pod 的总数。
+
+- **availableReplicas** (int32)
+  
+  此部署针对的可用（至少 minReadySeconds 才能就绪）的 Pod 总数。
+
+- **readyReplicas** (int32)
+  
+  readyReplicas 是此 Deployment 在就绪状况下处理的目标 Pod 数量。
+
+<!--
+- **unavailableReplicas** (int32)
+
+  Total number of unavailable pods targeted by this deployment. This is the total number of pods that are still required for the deployment to have 100% available capacity. They may either be pods that are running but not yet available or pods that still have not been created.
+-->
+- **unavailableReplicas** (int32)
+  
+  此部署针对的不可用 Pod 总数。这是 Deployment 具有 100% 可用容量时仍然必需的 Pod 总数。
+  它们可能是正在运行但还不可用的 Pod，也可能是尚未创建的 Pod。
+
+<!--
+- **updatedReplicas** (int32)
+
+  Total number of non-terminated pods targeted by this deployment that have the desired template spec.
+
+- **collisionCount** (int32)
+
+  Count of hash collisions for the Deployment. The Deployment controller uses this field as a collision avoidance mechanism when it needs to create the name for the newest ReplicaSet.
+-->
+- **updatedReplicas** (int32)
+  
+  此 Deployment 所针对的未终止 Pod 的总数，这些 Pod 采用了预期的模板规约。
+
+- **collisionCount** (int32)
+  
+  供 Deployment 所用的哈希冲突计数。
+  Deployment 控制器在需要为最新的 ReplicaSet 创建名称时将此字段用作冲突预防机制。
+
+<!--
+- **conditions** ([]DeploymentCondition)
+
+  *Patch strategy: merge on key `type`*
+  
+  Represents the latest available observations of a deployment's current state.
+
+  <a name="DeploymentCondition"></a>
+  *DeploymentCondition describes the state of a deployment at a certain point.*
+-->
+- **conditions** ([]DeploymentCondition)
+  
+  **补丁策略：按照键 `type` 合并**
+  
+  表示 Deployment 当前状态的最新可用观测值。
+  
+  <a name="DeploymentCondition"></a>
+  **DeploymentCondition 描述某个点的部署状态。**
+  
+  <!--
+  - **conditions.status** (string), required
+
+    Status of the condition, one of True, False, Unknown.
+
+  - **conditions.type** (string), required
+
+    Type of deployment condition.
+  -->
+
+  - **conditions.status** (string)，必需
+    
+    状况的状态，取值为 True、False 或 Unknown 之一。
+  
+  - **conditions.type** (string)，必需
+    
+    Deployment 状况的类型。
+  
+  <!--
+  - **conditions.lastTransitionTime** (Time)
+
+    Last time the condition transitioned from one status to another.
+
+    <a name="Time"></a>
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+  -->
+
+  - **conditions.lastTransitionTime** (Time)
+    
+    状况上次从一个状态转换为另一个状态的时间。
+    
+    <a name="Time"></a>
+    **Time 是对 time.Time 的封装。Time 支持对 YAML 和 JSON 进行正确封包。
+    为 time 包的许多函数方法提供了封装器。**
+  
+  <!--
+  - **conditions.lastUpdateTime** (Time)
+
+    The last time this condition was updated.
+
+    <a name="Time"></a>
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+  -->
+
+  - **conditions.lastUpdateTime** (Time)
+    
+    上次更新此状况的时间。
+    
+    <a name="Time"></a> 
+    **Time 是对 time.Time 的封装。Time 支持对 YAML 和 JSON 进行正确封包。
+    为 time 包的许多函数方法提供了封装器。**
+  
+  <!--
+  - **conditions.message** (string)
+
+    A human readable message indicating details about the transition.
+
+  - **conditions.reason** (string)
+
+    The reason for the condition's last transition.
+  -->
+
+  - **conditions.message** (string)
+    
+    这是一条人类可读的消息，指示有关上次转换的详细信息。
+  
+  - **conditions.reason** (string)
+    
+    状况上次转换的原因。
+
+<!--
+- **observedGeneration** (int64)
+
+  The generation observed by the deployment controller.
+-->
+- **observedGeneration** (int64)
+  
+  Deployment 控制器观测到的代数（Generation）。
+
+## DeploymentList {#DeploymentList}
+
+<!--
+DeploymentList is a list of Deployments.
+-->
+DeploymentList 是 Deployment 的列表。
+
+<hr>
+
+- **apiVersion**: apps/v1
+
+- **kind**: DeploymentList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  Standard list metadata.
+
+- **items** ([]<a href="{{< ref "../workload-resources/deployment-v1#Deployment" >}}">Deployment</a>), required
+
+  Items is the list of Deployments.
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  
+  标准的列表元数据。
+
+- **items** ([]<a href="{{< ref "../workload-resources/deployment-v1#Deployment" >}}">Deployment</a>)，必需
+  
+  items 是 Deployment 的列表。
+
+<!--
+## Operations {#Operations}
+<hr>
+### `get` read the specified Deployment
+#### HTTP Request
+-->
+## 操作 {#Operations}
+
+<hr>
+
+### `get` 读取指定的 Deployment
+
+#### HTTP 请求
+
+GET /apis/apps/v1/namespaces/{namespace}/deployments/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the Deployment
+- **namespace** (*in path*): string, required
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  Deployment 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/deployment-v1#Deployment" >}}">Deployment</a>): OK
+
+401: Unauthorized
+
+<!--
+### `get` read status of the specified Deployment
+#### HTTP Request
+-->
+### `get` 读取指定的 Deployment 的状态
+
+#### HTTP 请求
+
+GET /apis/apps/v1/namespaces/{namespace}/deployments/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the Deployment
+- **namespace** (*in path*): string, required
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  Deployment 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/deployment-v1#Deployment" >}}">Deployment</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind Deployment
+#### HTTP Request
+-->
+### `list` 列出或监视 Deployment 类别的对象
+
+#### HTTP 请求
+
+GET /apis/apps/v1/namespaces/{namespace}/deployments
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/deployment-v1#DeploymentList" >}}">DeploymentList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind Deployment
+#### HTTP Request
+-->
+### `list` 列出或监视 Deployment 类别的对象
+
+#### HTTP 请求
+
+GET /apis/apps/v1/deployments
+
+<!--
+#### Parameters
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/deployment-v1#DeploymentList" >}}">DeploymentList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a Deployment
+#### HTTP Request
+-->
+### `create` 创建 Deployment
+
+#### HTTP 请求
+
+POST /apis/apps/v1/namespaces/{namespace}/deployments
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../workload-resources/deployment-v1#Deployment" >}}">Deployment</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../workload-resources/deployment-v1#Deployment" >}}">Deployment</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/deployment-v1#Deployment" >}}">Deployment</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/deployment-v1#Deployment" >}}">Deployment</a>): Created
+
+202 (<a href="{{< ref "../workload-resources/deployment-v1#Deployment" >}}">Deployment</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified Deployment
+#### HTTP Request
+-->
+### `update` 替换指定的 Deployment
+
+#### HTTP 请求
+
+PUT /apis/apps/v1/namespaces/{namespace}/deployments/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the Deployment
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../workload-resources/deployment-v1#Deployment" >}}">Deployment</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  Deployment 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../workload-resources/deployment-v1#Deployment" >}}">Deployment</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/deployment-v1#Deployment" >}}">Deployment</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/deployment-v1#Deployment" >}}">Deployment</a>): Created
+
+401: Unauthorized
+
+<!--
+### `update` replace status of the specified Deployment
+#### HTTP Request
+-->
+### `update` 替换指定的 Deployment 的状态
+
+#### HTTP 请求
+
+PUT /apis/apps/v1/namespaces/{namespace}/deployments/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the Deployment
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../workload-resources/deployment-v1#Deployment" >}}">Deployment</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  Deployment 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../workload-resources/deployment-v1#Deployment" >}}">Deployment</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/deployment-v1#Deployment" >}}">Deployment</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/deployment-v1#Deployment" >}}">Deployment</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified Deployment
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 Deployment
+
+#### HTTP 请求
+
+PATCH /apis/apps/v1/namespaces/{namespace}/deployments/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the Deployment
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  Deployment 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/deployment-v1#Deployment" >}}">Deployment</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/deployment-v1#Deployment" >}}">Deployment</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update status of the specified Deployment
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 Deployment 的状态
+
+#### HTTP 请求
+
+PATCH /apis/apps/v1/namespaces/{namespace}/deployments/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the Deployment
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  Deployment 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/deployment-v1#Deployment" >}}">Deployment</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/deployment-v1#Deployment" >}}">Deployment</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a Deployment
+#### HTTP Request
+-->
+### `delete` 删除 Deployment
+
+#### HTTP 请求
+
+DELETE /apis/apps/v1/namespaces/{namespace}/deployments/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the Deployment
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  Deployment 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of Deployment
+#### HTTP Request
+-->
+### `deletecollection` 删除 Deployment 的集合
+
+#### HTTP 请求
+
+DELETE /apis/apps/v1/namespaces/{namespace}/deployments
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **continue** (*in query*): string
+- **dryRun** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v1.md b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v1.md
new file mode 100644
index 0000000000..d93b2a6fbe
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v1.md
@@ -0,0 +1,1384 @@
+---
+api_metadata:
+  apiVersion: "autoscaling/v1"
+  import: "k8s.io/api/autoscaling/v1"
+  kind: "HorizontalPodAutoscaler"
+content_type: "api_reference"
+description: "水平 Pod 自动缩放器的配置。"
+title: "HorizontalPodAutoscaler"
+weight: 11
+---
+
+<--
+api_metadata:
+  apiVersion: "autoscaling/v1"
+  import: "k8s.io/api/autoscaling/v1"
+  kind: "HorizontalPodAutoscaler"
+content_type: "api_reference"
+description: "configuration of a horizontal pod autoscaler."
+title: "HorizontalPodAutoscaler"
+weight: 11
+auto_generated: true
+-->
+
+`apiVersion: autoscaling/v1`
+
+`import "k8s.io/api/autoscaling/v1"`
+
+<!--
+## HorizontalPodAutoscaler {#HorizontalPodAutoscaler}
+
+configuration of a horizontal pod autoscaler.
+
+<hr>
+-->
+## HorizontalPodAutoscaler {#HorizontalPodAutoscaler}
+
+水平 Pod 自动缩放器的配置。
+
+<hr>
+
+<!--
+- **apiVersion**: autoscaling/v1
+
+
+- **kind**: HorizontalPodAutoscaler
+-->
+- **apiVersion**: autoscaling/v1
+
+- **kind**: HorizontalPodAutoscaler
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  Standard object metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  标准的对象元数据。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+<!--
+- **spec** (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscalerSpec" >}}">HorizontalPodAutoscalerSpec</a>)
+
+  behaviour of autoscaler. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.
+-->
+- **spec** (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscalerSpec" >}}">HorizontalPodAutoscalerSpec</a>)
+
+  自动缩放器的规约。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.
+
+<!--
+- **status** (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscalerStatus" >}}">HorizontalPodAutoscalerStatus</a>)
+
+  current information about the autoscaler.
+-->
+- **status** (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscalerStatus" >}}">HorizontalPodAutoscalerStatus</a>)
+
+  自动缩放器的当前信息。
+
+<!--
+## HorizontalPodAutoscalerSpec {#HorizontalPodAutoscalerSpec}
+
+specification of a horizontal pod autoscaler.
+
+<hr>
+-->
+## HorizontalPodAutoscalerSpec {#HorizontalPodAutoscalerSpec}
+
+水平 Pod 自动缩放器的规约。
+
+<hr>
+
+<!--
+- **maxReplicas** (int32), required
+
+  upper limit for the number of pods that can be set by the autoscaler; cannot be smaller than MinReplicas.
+-->
+- **maxReplicas** (int32)，必填
+
+  自动扩缩器可以设置的 Pod 数量上限；
+  不能小于 minReplicas。
+
+<!--
+- **scaleTargetRef** (CrossVersionObjectReference), required
+
+  reference to scaled resource; horizontal pod autoscaler will learn the current resource consumption and will set the desired number of pods by using its Scale subresource.
+-->
+- **scaleTargetRef** (CrossVersionObjectReference)，必填
+
+  对被扩缩资源的引用；
+  水平 Pod 自动缩放器将了解当前的资源消耗，并使用其 scale 子资源设置所需的 Pod 数量。
+  
+  <!--
+  <a name="CrossVersionObjectReference"></a>
+  *CrossVersionObjectReference contains enough information to let you identify the referred resource.*
+  -->
+  <a name="CrossVersionObjectReference"></a>
+  **CrossVersionObjectReference 包含足够的信息来让你识别出所引用的资源。**
+
+  <!--
+  - **scaleTargetRef.kind** (string), required
+
+    Kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds"
+  -->
+  
+  - **scaleTargetRef.kind** (string)，必填
+
+    被引用对象的类别；
+    更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds"
+
+  <!--
+  - **scaleTargetRef.name** (string), required
+
+    Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names  
+  -->
+  
+  - **scaleTargetRef.name** (string)，必填
+
+    被引用对象的名称；
+    更多信息： http://kubernetes.io/docs/user-guide/identifiers#names
+
+  <!--
+    - **scaleTargetRef.apiVersion** (string)
+  
+      API version of the referent
+  -->
+  
+  - **scaleTargetRef.apiVersion** (string)
+
+    被引用对象的 API 版本。
+
+<!--
+- **minReplicas** (int32)
+
+  minReplicas is the lower limit for the number of replicas to which the autoscaler can scale down.  It defaults to 1 pod. 
+  minReplicas is allowed to be 0 if the alpha feature gate HPAScaleToZero is enabled and at least one Object or External metric is configured.  
+  Scaling is active as long as at least one metric value is available.
+-->
+- **minReplicas** (int32)
+
+  minReplicas 是自动缩放器可以缩减的副本数的下限。
+  它默认为 1 个 Pod。
+  如果启用了 alpha 特性门禁 HPAScaleToZero 并且配置了至少一个 Object 或 External 度量标准，
+  则 minReplicas 允许为 0。
+  只要至少有一个度量值可用，缩放就处于活动状态。
+
+<!--
+- **targetCPUUtilizationPercentage** (int32)
+
+  target average CPU utilization (represented as a percentage of requested CPU) over all the pods; 
+  if not specified the default autoscaling policy will be used.
+-->
+- **targetCPUUtilizationPercentage** (int32)
+
+  所有 Pod 的目标平均 CPU 利用率（以请求 CPU 的百分比表示）；
+  如果未指定，将使用默认的自动缩放策略。
+
+<!--
+## HorizontalPodAutoscalerStatus {#HorizontalPodAutoscalerStatus}
+
+current status of a horizontal pod autoscaler
+
+<hr>
+-->
+## HorizontalPodAutoscalerStatus {#HorizontalPodAutoscalerStatus}
+
+水平 Pod 自动缩放器的当前状态
+
+<hr>
+
+<!--
+- **currentReplicas** (int32), required
+
+  current number of replicas of pods managed by this autoscaler.
+-->
+- **currentReplicas** (int32)，必填
+
+  此自动缩放器管理的 Pod 的当前副本数。
+
+<!--
+- **desiredReplicas** (int32), required
+
+  desired number of replicas of pods managed by this autoscaler.
+-->
+- **desiredReplicas** (int32)，必填
+
+  此自动缩放器管理的 Pod 副本的所需数量。
+
+<!--
+- **currentCPUUtilizationPercentage** (int32)
+
+  current average CPU utilization over all pods, represented as a percentage of requested CPU, e.g. 70 means that an average pod is using now 70% of its requested CPU.
+-->
+- **currentCPUUtilizationPercentage** (int32)
+
+  当前所有 Pod 的平均 CPU 利用率，
+  以请求 CPU 的百分比表示，
+  例如：70 表示平均 Pod 现在正在使用其请求 CPU 的 70%。
+
+<!--
+- **lastScaleTime** (Time)
+
+  last time the HorizontalPodAutoscaler scaled the number of pods; used by the autoscaler to control how often the number of pods is changed.
+-->
+- **lastScaleTime** (Time)
+
+  上次 HorizontalPodAutoscaler 缩放 Pod 的数量；
+  自动缩放器用它来控制 Pod 数量的更改频率。
+  
+  <!--
+  <a name="Time"></a>
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+  -->
+  <a name="Time"></a>
+  **Time 是 time.Time 的包装类，支持正确地序列化为 YAML 和 JSON。
+    为 time 包提供的许多工厂方法提供了包装类。**
+
+<!--
+- **observedGeneration** (int64)
+
+  most recent generation observed by this autoscaler.
+-->
+- **observedGeneration** (int64)
+
+  此自动缩放器观察到的最新一代。
+
+<!--
+## HorizontalPodAutoscalerList {#HorizontalPodAutoscalerList}
+
+list of horizontal pod autoscaler objects.
+
+<hr>
+-->
+## HorizontalPodAutoscalerList {#HorizontalPodAutoscalerList}
+
+水平 Pod 自动缩放器对象列表。
+
+<hr>
+
+<!--
+- **apiVersion**: autoscaling/v1
+
+- **kind**: HorizontalPodAutoscalerList
+-->
+- **apiVersion**: autoscaling/v1
+
+- **kind**: HorizontalPodAutoscalerList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  Standard list metadata.
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  标准的列表元数据。
+
+<!--
+- **items** ([]<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>), required
+
+  list of horizontal pod autoscaler objects.
+-->
+- **items** ([]<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>), required
+
+  水平 Pod 自动缩放器对象的列表。
+
+<!--
+## Operations {#Operations}
+
+<hr>
+-->
+## 操作 {#Operations}
+
+<hr>
+
+<!--
+### `get` read the specified HorizontalPodAutoscaler
+-->
+### `get` 读取特定的 HorizontalPodAutoscaler
+
+<!--
+#### HTTP Request
+
+GET /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}
+-->
+#### HTTP 请求
+
+GET /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+-->
+- **name** （**路径参数**）: string，必填
+
+  HorizontalPodAutoscaler 的名称。
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必填
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+401: Unauthorized
+
+<!--
+### `get` read status of the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+
+GET /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}/status
+-->
+### `get` 读取特定 HorizontalPodAutoscaler 的状态
+
+#### HTTP 请求
+
+GET /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}/status
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+-->
+- **name** （**路径参数**）: string，必填
+
+  HorizontalPodAutoscaler 的名称。
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必填
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind HorizontalPodAutoscaler
+-->
+### `list` 列出或监视 HorizontalPodAutoscaler 类别的对象
+
+<!--
+#### HTTP Request
+
+GET /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers
+-->
+#### HTTP 参数
+
+GET /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必填
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+-->
+- **allowWatchBookmarks** （**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!--
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+-->
+- **continue** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+-->
+- **fieldSelector** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+-->
+- **labelSelector** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+-->
+- **limit** （**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+-->
+- **resourceVersion** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+-->
+- **resourceVersionMatch** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+-->
+- **timeoutSeconds** (*查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+- **watch** （**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscalerList" >}}">HorizontalPodAutoscalerList</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscalerList" >}}">HorizontalPodAutoscalerList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind HorizontalPodAutoscaler
+
+#### HTTP Request
+
+GET /apis/autoscaling/v1/horizontalpodautoscalers
+-->
+### `list` 列出或监视 HorizontalPodAutoscaler 类别的对象
+
+#### HTTP 请求
+
+GET /apis/autoscaling/v1/horizontalpodautoscalers
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+-->
+- **allowWatchBookmarks** （**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!--
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+-->
+- **continue** (*查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+-->
+- **fieldSelector** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+-->
+- **labelSelector** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+-->
+- **limit** （**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+-->
+- **resourceVersion** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+-->
+- **resourceVersionMatch** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+-->
+- **timeoutSeconds** （**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+- **watch** （**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscalerList" >}}">HorizontalPodAutoscalerList</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscalerList" >}}">HorizontalPodAutoscalerList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a HorizontalPodAutoscaler
+
+#### HTTP Request
+
+POST /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers
+-->
+### `create` 创建一个 HorizontalPodAutoscaler
+
+#### HTTP 请求
+
+POST /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必填
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>, required
+-->
+- **body**: <a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>，必填
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->  
+- **dryRun** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **fieldManager** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+-->
+- **fieldValidation** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+202 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Accepted
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+202 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+
+PUT /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}
+-->
+### `update` 替换特定的 HorizontalPodAutoscaler
+
+#### HTTP 请求
+
+PUT /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+-->
+- **name** （**路径参数**）: string，必填
+
+  HorizontalPodAutoscaler 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必填
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>, required
+-->
+- **body**: <a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>，必填
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+- **dryRun** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **fieldManager** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+-->
+- **fieldValidation** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+401: Unauthorized
+
+<!--
+### `update` replace status of the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+
+PUT /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}/status
+-->
+### `update` 替换特定 HorizontalPodAutoscaler 的状态
+
+#### HTTP 请求
+
+PUT /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}/status
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+-->
+- **name** （**路径参数**）: string，必填
+
+  HorizontalPodAutoscaler 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必填
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>, required
+-->
+- **body**: <a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>，必填
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+- **dryRun** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **fieldManager** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+-->
+- **fieldValidation** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+
+PATCH /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}
+-->
+### `patch` 部分更新特定的 HorizontalPodAutoscaler
+
+#### HTTP 请求
+
+PATCH /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+-->
+- **name** （**路径参数**）: string，必填
+
+  HorizontalPodAutoscaler 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必填
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必填
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->  
+- **dryRun** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **fieldManager** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+-->
+- **fieldValidation** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+-->
+- **force** （**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update status of the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+
+PATCH /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}/status
+-->
+### `patch` 部分更新特定 HorizontalPodAutoscaler 的状态
+
+#### HTTP 请求
+
+PATCH /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}/status
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+-->
+- **name** （**路径参数**）: string，必填
+
+  HorizontalPodAutoscaler 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必填
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必填
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->  
+- **dryRun** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **fieldManager** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+-->
+- **fieldValidation** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+-->
+- **force** （**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v1#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a HorizontalPodAutoscaler
+
+#### HTTP Request
+
+DELETE /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}
+-->
+### `delete` 删除一个 HorizontalPodAutoscaler
+
+#### HTTP 请求
+
+DELETE /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+-->
+- **name** （**路径参数**）: string，必填
+
+  HorizontalPodAutoscaler 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必填
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+-->
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+- **dryRun** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+-->
+- **gracePeriodSeconds** （**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+- **propagationPolicy** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of HorizontalPodAutoscaler
+
+#### HTTP Request
+
+DELETE /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers
+-->
+### `deletecollection` 删除 HorizontalPodAutoscaler 的集合
+
+#### HTTP 请求
+
+DELETE /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必填
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+-->
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+-->  
+- **continue** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+- **dryRun** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+-->
+- **fieldSelector** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+-->
+- **gracePeriodSeconds** （**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+-->
+- **labelSelector** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+-->
+- **limit** （**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+- **propagationPolicy** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+-->
+- **resourceVersion** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+-->
+- **resourceVersionMatch** （**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+-->
+- **timeoutSeconds** （**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
\ No newline at end of file
diff --git a/content/zh-cn/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v2.md b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v2.md
new file mode 100644
index 0000000000..a54c2b996c
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v2.md
@@ -0,0 +1,2359 @@
+---
+api_metadata:
+  apiVersion: "autoscaling/v2"
+  import: "k8s.io/api/autoscaling/v2"
+  kind: "HorizontalPodAutoscaler"
+content_type: "api_reference"
+description: "HorizontalPodAutoscaler 是水平 Pod 自动扩缩器的配置，它根据指定的指标自动管理实现 scale 子资源的任何资源的副本数。"
+title: "HorizontalPodAutoscaler"
+weight: 12
+---
+<!--
+api_metadata:
+  apiVersion: "autoscaling/v2"
+  import: "k8s.io/api/autoscaling/v2"
+  kind: "HorizontalPodAutoscaler"
+content_type: "api_reference"
+description: "HorizontalPodAutoscaler is the configuration for a horizontal pod autoscaler, which automatically manages the replica count of any resource implementing the scale subresource based on the metrics specified."
+title: "HorizontalPodAutoscaler"
+weight: 12
+auto_generated: true
+-->
+
+`apiVersion: autoscaling/v2`
+
+`import "k8s.io/api/autoscaling/v2"`
+
+
+## HorizontalPodAutoscaler {#HorizontalPodAutoscaler}
+
+<!--
+HorizontalPodAutoscaler is the configuration for a horizontal pod autoscaler, which automatically manages the replica count of any resource implementing the scale subresource based on the metrics specified.
+-->
+HorizontalPodAutoscaler 是水平 Pod 自动扩缩器的配置，
+它根据指定的指标自动管理实现 scale 子资源的任何资源的副本数。
+
+<hr>
+
+- **apiVersion**: autoscaling/v2
+
+- **kind**: HorizontalPodAutoscaler
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  <!--
+  metadata is the standard object metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+  
+  metadata 是标准的对象元数据。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscalerSpec" >}}">HorizontalPodAutoscalerSpec</a>)
+
+  <!--
+  spec is the specification for the behaviour of the autoscaler. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.
+  -->
+  
+  spec 是自动扩缩器行为的规约。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.
+
+- **status** (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscalerStatus" >}}">HorizontalPodAutoscalerStatus</a>)
+  
+  <!--
+  status is the current information about the autoscaler.
+  -->
+  
+  status 是自动扩缩器的当前信息。
+
+## HorizontalPodAutoscalerSpec {#HorizontalPodAutoscalerSpec}
+
+<!--
+HorizontalPodAutoscalerSpec describes the desired functionality of the HorizontalPodAutoscaler.
+-->
+HorizontalPodAutoscalerSpec 描述了 HorizontalPodAutoscaler 预期的功能。
+
+<hr>
+
+<!--
+- **maxReplicas** (int32), required
+
+  maxReplicas is the upper limit for the number of replicas to which the autoscaler can scale up. It cannot be less that minReplicas.
+-->
+
+- **maxReplicas** (int32)，必需
+
+  maxReplicas 是自动扩缩器可以扩容的副本数的上限。不能小于 minReplicas。
+
+<!--
+- **scaleTargetRef** (CrossVersionObjectReference), required
+
+  scaleTargetRef points to the target resource to scale, and is used to the pods for which metrics should be collected, as well as to actually change the replica count.
+-->
+
+- **scaleTargetRef** (CrossVersionObjectReference)，必需
+
+  scaleTargetRef 指向要扩缩的目标资源，用于收集 Pod 的相关指标信息以及实际更改的副本数。
+
+  <a name="CrossVersionObjectReference"></a>
+
+  <!--
+  *CrossVersionObjectReference contains enough information to let you identify the referred resource.*
+
+  - **scaleTargetRef.kind** (string), required
+
+    Kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds"
+  -->
+  
+  **CrossVersionObjectReference 包含足够的信息来让你识别出所引用的资源。**
+
+  - **scaleTargetRef.kind** (string)，必需
+
+    被引用对象的类别；更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds"
+
+  <!--
+  - **scaleTargetRef.name** (string), required
+
+    Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names
+  -->
+
+  - **scaleTargetRef.name** (string)，必需
+
+    被引用对象的名称；更多信息： https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/names/#names
+
+  <!--
+  - **scaleTargetRef.apiVersion** (string)
+
+    API version of the referent
+  -->
+  
+  - **scaleTargetRef.apiVersion** (string)
+
+    被引用对象的 API 版本。
+
+<!--
+- **minReplicas** (int32)
+
+  minReplicas is the lower limit for the number of replicas to which the autoscaler can scale down.  It defaults to 1 pod.  minReplicas is allowed to be 0 if the alpha feature gate HPAScaleToZero is enabled and at least one Object or External metric is configured.  Scaling is active as long as at least one metric value is available.
+-->
+
+- **minReplicas** (int32)
+
+  minReplicas 是自动扩缩器可以缩减的副本数的下限。它默认为 1 个 Pod。
+  如果启用了 Alpha 特性门控 HPAScaleToZero 并且配置了至少一个 Object 或 External 度量指标，
+  则 minReplicas 允许为 0。只要至少有一个度量值可用，扩缩就处于活动状态。
+
+<!--
+- **behavior** (HorizontalPodAutoscalerBehavior)
+
+  behavior configures the scaling behavior of the target in both Up and Down directions (scaleUp and scaleDown fields respectively). If not set, the default HPAScalingRules for scale up and scale down are used.
+-->
+
+- **behavior** (HorizontalPodAutoscalerBehavior)
+
+  behavior 配置目标在扩容（Up）和缩容（Down）两个方向的扩缩行为（分别用 scaleUp 和 scaleDown 字段）。
+  如果未设置，则会使用默认的 HPAScalingRules 进行扩缩容。
+
+  <a name="HorizontalPodAutoscalerBehavior"></a>
+
+  <!--
+  *HorizontalPodAutoscalerBehavior configures the scaling behavior of the target in both Up and Down directions (scaleUp and scaleDown fields respectively).*
+
+  - **behavior.scaleDown** (HPAScalingRules)
+
+    scaleDown is scaling policy for scaling Down. If not set, the default value is to allow to scale down to minReplicas pods, with a 300 second stabilization window (i.e., the highest recommendation for the last 300sec is used).
+  -->
+  
+  **HorizontalPodAutoscalerBehavior 配置目标在扩容（Up）和缩容（Down）两个方向的扩缩行为
+  （分别用 scaleUp 和 scaleDown 字段）。**
+
+  - **behavior.scaleDown** (HPAScalingRules)
+
+    scaleDown 是缩容策略。如果未设置，则默认值允许缩减到 minReplicas 数量的 Pod，
+    具有 300 秒的稳定窗口（使用最近 300 秒的最高推荐值）。
+
+    <a name="HPAScalingRules"></a>
+  
+    <!--
+    *HPAScalingRules configures the scaling behavior for one direction. These Rules are applied after calculating DesiredReplicas from metrics for the HPA. They can limit the scaling velocity by specifying scaling policies. They can prevent flapping by specifying the stabilization window, so that the number of replicas is not set instantly, instead, the safest value from the stabilization window is chosen.*
+
+    - **behavior.scaleDown.policies** ([]HPAScalingPolicy)
+
+      *Atomic: will be replaced during a merge*
+      
+      policies is a list of potential scaling polices which can be used during scaling. At least one policy must be specified, otherwise the HPAScalingRules will be discarded as invalid
+    -->
+    
+    HPAScalingRules 为一个方向配置扩缩行为。在根据 HPA 的指标计算 desiredReplicas 后应用这些规则。
+    可以通过指定扩缩策略来限制扩缩速度。可以通过指定稳定窗口来防止抖动，
+    因此不会立即设置副本数，而是选择稳定窗口中最安全的值。 
+
+    - **behavior.scaleDown.policies** ([]HPAScalingPolicy)
+    
+      **原子性：将在合并时被替换**
+
+      policies 是可在扩缩容过程中使用的潜在扩缩策略的列表。必须至少指定一个策略，否则 HPAScalingRules 将被视为无效而丢弃。
+  
+      <a name="HPAScalingPolicy"></a>
+
+      <!--
+      *HPAScalingPolicy is a single policy which must hold true for a specified past interval.*
+
+      - **behavior.scaleDown.policies.type** (string), required
+
+        Type is used to specify the scaling policy.
+      -->
+      
+      **HPAScalingPolicy 是一个单一的策略，它必须在指定的过去时间间隔内保持为 true。**
+
+      - **behavior.scaleDown.policies.type** (string)，必需
+
+        type 用于指定扩缩策略。
+      
+      <!--
+      - **behavior.scaleDown.policies.value** (int32), required
+
+        Value contains the amount of change which is permitted by the policy. It must be greater than zero
+      -->
+      
+      - **behavior.scaleDown.policies.value** (int32)，必需
+
+        value 包含策略允许的更改量。它必须大于零。
+  
+      <!--
+      - **behavior.scaleDown.policies.periodSeconds** (int32), required
+
+        PeriodSeconds specifies the window of time for which the policy should hold true. PeriodSeconds must be greater than zero and less than or equal to 1800 (30 min).
+      -->
+      
+      - **behavior.scaleDown.policies.periodSeconds** (int32)，必需
+
+        periodSeconds 表示策略应该保持为 true 的时间窗口长度。
+        periodSeconds 必须大于零且小于或等于 1800（30 分钟）。
+  
+    <!--
+    - **behavior.scaleDown.selectPolicy** (string)
+
+      selectPolicy is used to specify which policy should be used. If not set, the default value Max is used.
+    -->
+    
+    - **behavior.scaleDown.selectPolicy** (string)
+
+      selectPolicy 用于指定应该使用哪个策略。如果未设置，则使用默认值 Max。
+
+    <!--  
+    - **behavior.scaleDown.stabilizationWindowSeconds** (int32)
+
+      StabilizationWindowSeconds is the number of seconds for which past recommendations should be considered while scaling up or scaling down. StabilizationWindowSeconds must be greater than or equal to zero and less than or equal to 3600 (one hour). If not set, use the default values: - For scale up: 0 (i.e. no stabilization is done). - For scale down: 300 (i.e. the stabilization window is 300 seconds long).
+    -->
+    
+    - **behavior.scaleDown.stabilizationWindowSeconds** (int32)
+
+      stabilizationWindowSeconds 是在扩缩容时应考虑的之前建议的秒数。stabilizationWindowSeconds
+      必须大于或等于零且小于或等于 3600（一小时）。如果未设置，则使用默认值：
+
+      - 扩容：0（不设置稳定窗口）。
+      - 缩容：300（即稳定窗口为 300 秒）。
+  
+  <!--
+  - **behavior.scaleUp** (HPAScalingRules)
+
+    scaleUp is scaling policy for scaling Up. If not set, the default value is the higher of:
+      * increase no more than 4 pods per 60 seconds
+      * double the number of pods per 60 seconds
+    No stabilization is used.
+  -->
+  
+  - **behavior.scaleUp** (HPAScalingRules)
+
+    scaleUp 是用于扩容的扩缩策略。如果未设置，则默认值为以下值中的较高者：
+
+      * 每 60 秒增加不超过 4 个 Pod
+      * 每 60 秒 Pod 数量翻倍
+
+    不使用稳定窗口。
+
+    <a name="HPAScalingRules"></a>
+  
+    <!--
+    *HPAScalingRules configures the scaling behavior for one direction. These Rules are applied after calculating DesiredReplicas from metrics for the HPA. They can limit the scaling velocity by specifying scaling policies. They can prevent flapping by specifying the stabilization window, so that the number of replicas is not set instantly, instead, the safest value from the stabilization window is chosen.*
+
+    - **behavior.scaleUp.policies** ([]HPAScalingPolicy)
+
+      *Atomic: will be replaced during a merge*
+      
+      policies is a list of potential scaling polices which can be used during scaling. At least one policy must be specified, otherwise the HPAScalingRules will be discarded as invalid
+    -->
+    
+    HPAScalingRules 为一个方向配置扩缩行为。在根据 HPA 的指标计算 desiredReplicas 后应用这些规则。
+    可以通过指定扩缩策略来限制扩缩速度。可以通过指定稳定窗口来防止抖动，
+    因此不会立即设置副本数，而是选择稳定窗口中最安全的值。
+
+    - **behavior.scaleUp.policies** ([]HPAScalingPolicy)
+
+      **原子性：将在合并时被替换**
+
+      policies 是可在扩缩容过程中使用的潜在扩缩策略的列表。必须至少指定一个策略，否则 HPAScalingRules 将被视为无效而丢弃。
+
+      <a name="HPAScalingPolicy"></a>
+    
+      <!--
+      *HPAScalingPolicy is a single policy which must hold true for a specified past interval.*
+
+      - **behavior.scaleUp.policies.type** (string), required
+
+        Type is used to specify the scaling policy.
+      -->
+      
+      **HPAScalingPolicy 是一个单一的策略，它必须在指定的过去时间间隔内保持为 true。**
+
+      - **behavior.scaleUp.policies.type** (string)，必需
+
+        type 用于指定扩缩策略。
+      
+      <!--
+      - **behavior.scaleUp.policies.value** (int32), required
+
+        Value contains the amount of change which is permitted by the policy. It must be greater than zero
+      -->
+      
+      - **behavior.scaleUp.policies.value** (int32)，必需
+
+        value 包含策略允许的更改量。它必须大于零。
+      
+      <!--
+      - **behavior.scaleUp.policies.periodSeconds** (int32), required
+
+        PeriodSeconds specifies the window of time for which the policy should hold true. PeriodSeconds must be greater than zero and less than or equal to 1800 (30 min).
+      -->
+      
+      - **behavior.scaleUp.policies.periodSeconds** (int32)，必需
+
+        periodSeconds 表示策略应该保持为 true 的时间窗口长度。
+        periodSeconds 必须大于零且小于或等于 1800（30 分钟）。
+
+    <!--
+    - **behavior.scaleUp.selectPolicy** (string)
+
+      selectPolicy is used to specify which policy should be used. If not set, the default value Max is used.
+    -->
+    
+    - **behavior.scaleUp.selectPolicy** (string)
+
+      selectPolicy 用于指定应该使用哪个策略。如果未设置，则使用默认值 Max。
+    
+    <!--
+    - **behavior.scaleUp.stabilizationWindowSeconds** (int32)
+
+      StabilizationWindowSeconds is the number of seconds for which past recommendations should be considered while scaling up or scaling down. StabilizationWindowSeconds must be greater than or equal to zero and less than or equal to 3600 (one hour). If not set, use the default values: - For scale up: 0 (i.e. no stabilization is done). - For scale down: 300 (i.e. the stabilization window is 300 seconds long).
+    -->
+    
+    - **behavior.scaleUp.stabilizationWindowSeconds** (int32)
+
+      stabilizationWindowSeconds 是在扩缩容时应考虑的之前建议的秒数。stabilizationWindowSeconds
+      必须大于或等于零且小于或等于 3600（一小时）。如果未设置，则使用默认值：
+
+      - 扩容：0（不设置稳定窗口）。
+      - 缩容：300（即稳定窗口为 300 秒）。
+
+<!--
+- **metrics** ([]MetricSpec)
+
+  *Atomic: will be replaced during a merge*
+  
+  metrics contains the specifications for which to use to calculate the desired replica count (the maximum replica count across all metrics will be used).  The desired replica count is calculated multiplying the ratio between the target value and the current value by the current number of pods.  Ergo, metrics used must decrease as the pod count is increased, and vice-versa.  See the individual metric source types for more information about how each type of metric must respond. If not set, the default metric will be set to 80% average CPU utilization.
+-->
+
+- **metrics** ([]MetricSpec)
+
+  **原子性：将在合并时被替换**
+
+  metrics 包含用于计算预期副本数的规约（将使用所有指标的最大副本数）。
+  预期副本数是通过将目标值与当前值之间的比率乘以当前 Pod 数来计算的。
+  因此，使用的指标必须随着 Pod 数量的增加而减少，反之亦然。
+  有关每种类别的指标必须如何响应的更多信息，请参阅各个指标源类别。
+  如果未设置，默认指标将设置为 80% 的平均 CPU 利用率。
+
+  <a name="MetricSpec"></a>
+
+  <!--
+  *MetricSpec specifies how to scale based on a single metric (only `type` and one other matching field should be set at once).*
+
+  - **metrics.type** (string), required
+
+    type is the type of metric source.  It should be one of "ContainerResource", "External", "Object", "Pods" or "Resource", each mapping to a matching field in the object. Note: "ContainerResource" type is available on when the feature-gate HPAContainerMetrics is enabled
+  -->
+  
+  **MetricSpec 指定如何基于单个指标进行扩缩容（一次只能设置 `type` 和一个其他匹配字段）** 
+
+  - **metrics.type** (string)，必需
+
+    type 是指标源的类别。它取值是 “ContainerResource”、“External”、“Object”、“Pods” 或 “Resource” 之一，
+    每个类别映射到对象中的一个对应的字段。注意：“ContainerResource” 类别在特性门控 HPAContainerMetrics 启用时可用。
+
+  <!--
+  - **metrics.containerResource** (ContainerResourceMetricSource)
+
+    containerResource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing a single container in each pod of the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source. This is an alpha feature and can be enabled by the HPAContainerMetrics feature flag.
+  -->
+  
+  - **metrics.containerResource** (ContainerResourceMetricSource)  
+
+    containerResource 是指 Kubernetes 已知的资源指标（例如在请求和限制中指定的那些），
+    描述当前扩缩目标中每个 Pod 中的单个容器（例如 CPU 或内存）。
+    此类指标内置于 Kubernetes 中，在使用 “pods” 源的、按 Pod 计算的普通指标之外，还具有一些特殊的扩缩选项。
+    这是一个 Alpha 特性，可以通过 HPAContainerMetrics 特性标志启用。
+
+    <a name="ContainerResourceMetricSource"></a>
+  
+    <!--
+    *ContainerResourceMetricSource indicates how to scale on a resource metric known to Kubernetes, as specified in requests and limits, describing each pod in the current scale target (e.g. CPU or memory).  The values will be averaged together before being compared to the target.  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source.  Only one "target" type should be set.*
+
+    - **metrics.containerResource.container** (string), required
+
+      container is the name of the container in the pods of the scaling target
+    -->
+    
+    ContainerResourceMetricSource 指示如何根据请求和限制中指定的 Kubernetes 已知的资源指标进行扩缩容，
+    此结构描述当前扩缩目标中的每个 Pod（例如 CPU 或内存）。在与目标值比较之前，这些值先计算平均值。
+    此类指标内置于 Kubernetes 中，并且在使用 “Pods” 源的、按 Pod 统计的普通指标之外支持一些特殊的扩缩选项。
+    只应设置一种 “target” 类别。 
+
+    - **metrics.containerResource.container** (string)，必需
+
+      container 是扩缩目标的 Pod 中容器的名称。
+
+    <!--
+    - **metrics.containerResource.name** (string), required
+
+      name is the name of the resource in question.
+    -->
+    
+    - **metrics.containerResource.name** (string)，必需
+
+      name 是相关资源的名称。
+  
+    <!--
+    - **metrics.containerResource.target** (MetricTarget), required
+
+      target specifies the target value for the given metric
+    -->
+    
+    - **metrics.containerResource.target** (MetricTarget)，必需
+
+      target 指定给定指标的目标值。
+  
+      <a name="MetricTarget"></a>
+    
+      <!--
+      *MetricTarget defines the target value, average value, or average utilization of a specific metric*
+
+      - **metrics.containerResource.target.type** (string), required
+
+        type represents whether the metric type is Utilization, Value, or AverageValue
+      -->
+      
+      **MetricTarget 定义特定指标的目标值、平均值或平均利用率**
+
+      - **metrics.containerResource.target.type** (string)，必需
+
+        type 表示指标类别是 `Utilization`、`Value` 或 `AverageValue`。
+  
+      <!--
+      - **metrics.containerResource.target.averageUtilization** (int32)
+
+        averageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods. Currently only valid for Resource metric source type
+      -->
+      
+      - **metrics.containerResource.target.averageUtilization** (int32)
+
+        averageUtilization 是跨所有相关 Pod 的资源指标均值的目标值，
+        表示为 Pod 资源请求值的百分比。目前仅对 “Resource” 指标源类别有效。
+      
+      <!--
+      - **metrics.containerResource.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the target value of the average of the metric across all relevant pods (as a quantity)
+      -->
+      
+      - **metrics.containerResource.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        是跨所有相关 Pod 的指标均值的目标值（以数量形式给出）。
+  
+      <!--
+      - **metrics.containerResource.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the target value of the metric (as a quantity).
+      -->
+      
+      - **metrics.containerResource.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value 是指标的目标值（以数量形式给出）。
+  
+  <!--
+  - **metrics.external** (ExternalMetricSource)
+
+    external refers to a global metric that is not associated with any Kubernetes object. It allows autoscaling based on information coming from components running outside of cluster (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).
+  -->
+  
+  - **metrics.external** (ExternalMetricSource)
+
+    external 指的是不与任何 Kubernetes 对象关联的全局指标。
+    这一字段允许基于来自集群外部运行的组件（例如云消息服务中的队列长度，或来自运行在集群外部的负载均衡器的 QPS）的信息进行自动扩缩容。
+
+    <a name="ExternalMetricSource"></a>
+  
+    <!--
+    *ExternalMetricSource indicates how to scale on a metric not associated with any Kubernetes object (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).*
+
+    - **metrics.external.metric** (MetricIdentifier), required
+
+      metric identifies the target metric by name and selector
+    -->
+    
+    ExternalMetricSource 指示如何基于 Kubernetes 对象无关的指标
+    （例如云消息传递服务中的队列长度，或来自集群外部运行的负载均衡器的 QPS）执行扩缩操作。
+
+    - **metrics.external.metric** (MetricIdentifier)，必需
+
+      metric 通过名称和选择算符识别目标指标。
+  
+      <a name="MetricIdentifier"></a>
+    
+      <!--
+      *MetricIdentifier defines the name and optionally selector for a metric*
+
+      - **metrics.external.metric.name** (string), required
+
+        name is the name of the given metric
+      -->
+      
+      **MetricIdentifier 定义指标的名称和可选的选择算符**
+
+      - **metrics.external.metric.name** (string)，必需
+
+        name 是给定指标的名称。
+      
+      <!--
+      - **metrics.external.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.
+      -->
+      
+      - **metrics.external.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector 是给定指标的标准 Kubernetes 标签选择算符的字符串编码形式。
+        设置后，它作为附加参数传递给指标服务器，以获取更具体的指标范围。
+        未设置时，仅 metricName 参数将用于收集指标。
+  
+    <!--
+    - **metrics.external.target** (MetricTarget), required
+
+      target specifies the target value for the given metric
+    -->
+    
+    - **metrics.external.target** (MetricTarget)，必需
+
+      target 指定给定指标的目标值。
+  
+      <a name="MetricTarget"></a>
+    
+      <!--
+      *MetricTarget defines the target value, average value, or average utilization of a specific metric*
+
+      - **metrics.external.target.type** (string), required
+
+        type represents whether the metric type is Utilization, Value, or AverageValue
+      -->
+      
+      **MetricTarget 定义特定指标的目标值、平均值或平均利用率**
+
+      - **metrics.external.target.type** (string)，必需
+
+        type 表示指标类别是 `Utilization`、`Value` 或 `AverageValue`。
+  
+      <!--
+      - **metrics.external.target.averageUtilization** (int32)
+
+        averageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods. Currently only valid for Resource metric source type
+      -->
+      
+      - **metrics.external.target.averageUtilization** (int32)
+
+        averageUtilization 是跨所有相关 Pod 得到的资源指标均值的目标值，
+        表示为 Pod 资源请求值的百分比。目前仅对 “Resource” 指标源类别有效。
+  
+      <!--
+      - **metrics.external.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the target value of the average of the metric across all relevant pods (as a quantity)
+      -->
+      
+      - **metrics.external.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue 是跨所有相关 Pod 得到的指标均值的目标值（以数量形式给出）。
+
+      <!--
+      - **metrics.external.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the target value of the metric (as a quantity).
+      -->
+      
+      - **metrics.external.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value 是指标的目标值（以数量形式给出）。
+
+  <!--
+  - **metrics.object** (ObjectMetricSource)
+
+    object refers to a metric describing a single kubernetes object (for example, hits-per-second on an Ingress object).
+  -->
+  
+  - **metrics.object** (ObjectMetricSource)
+
+    object 是指描述单个 Kubernetes 对象的指标（例如，Ingress 对象上的 `hits-per-second`）。
+
+    <a name="ObjectMetricSource"></a>
+  
+    <!--
+    *ObjectMetricSource indicates how to scale on a metric describing a kubernetes object (for example, hits-per-second on an Ingress object).*
+
+    - **metrics.object.describedObject** (CrossVersionObjectReference), required
+
+      describedObject specifies the descriptions of a object,such as kind,name apiVersion
+    -->
+    
+    **ObjectMetricSource 表示如何根据描述 Kubernetes 对象的指标进行扩缩容（例如，Ingress 对象的 `hits-per-second`）**
+
+    - **metrics.object.describedObject** (CrossVersionObjectReference)，必需
+
+      describeObject 表示对象的描述，如对象的 `kind`、`name`、`apiVersion`。
+  
+      <a name="CrossVersionObjectReference"></a>
+    
+      <!--
+      *CrossVersionObjectReference contains enough information to let you identify the referred resource.*
+
+      - **metrics.object.describedObject.kind** (string), required
+
+        Kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds"
+      -->
+      
+      **CrossVersionObjectReference 包含足够的信息来让你识别所引用的资源。**
+
+      - **metrics.object.describedObject.kind** (string)，必需
+
+        被引用对象的类别；更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds"。
+  
+      <!--
+      - **metrics.object.describedObject.name** (string), required
+
+        Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names
+      -->
+      
+      - **metrics.object.describedObject.name** (string)，必需
+      
+        被引用对象的名称；更多信息： https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/names/#names
+  
+      <!--
+      - **metrics.object.describedObject.apiVersion** (string)
+
+        API version of the referent
+      -->
+      
+      - **metrics.object.describedObject.apiVersion** (string)
+      
+        被引用对象的 API 版本。
+      
+    <!--
+    - **metrics.object.metric** (MetricIdentifier), required
+
+      metric identifies the target metric by name and selector
+    -->
+    
+    - **metrics.object.metric** (MetricIdentifier)，必需
+
+      metric 通过名称和选择算符识别目标指标。
+  
+      <a name="MetricIdentifier"></a>
+    
+      <!--
+      *MetricIdentifier defines the name and optionally selector for a metric*
+
+      - **metrics.object.metric.name** (string), required
+
+        name is the name of the given metric
+      -->
+      
+      **MetricIdentifier 定义指标的名称和可选的选择算符**
+
+      - **metrics.object.metric.name** (string)，必需
+
+        name 是给定指标的名称。 
+  
+      <!--
+      - **metrics.object.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.
+      -->
+      
+      - **metrics.object.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector 是给定指标的标准 Kubernetes 标签选择算符的字符串编码形式。
+        设置后，它作为附加参数传递给指标服务器，以获取更具体的指标范围。
+        未设置时，仅 metricName 参数将用于收集指标。
+
+    <!--
+    - **metrics.object.target** (MetricTarget), required
+
+      target specifies the target value for the given metric
+    -->
+    
+    - **metrics.object.target** (MetricTarget)，必需
+
+      target 表示给定指标的目标值。
+  
+      <a name="MetricTarget"></a>
+    
+      <!--
+      *MetricTarget defines the target value, average value, or average utilization of a specific metric*
+
+      - **metrics.object.target.type** (string), required
+
+        type represents whether the metric type is Utilization, Value, or AverageValue
+      -->
+      
+      **MetricTarget 定义特定指标的目标值、平均值或平均利用率**
+
+      - **metrics.object.target.type** (string)，必需
+
+        type 表示指标类别是 `Utilization`、`Value` 或 `AverageValue`。
+  
+      <!--
+      - **metrics.object.target.averageUtilization** (int32)
+
+        averageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods. Currently only valid for Resource metric source type
+      -->
+      
+      - **metrics.object.target.averageUtilization** (int32)
+
+        averageUtilization 是跨所有相关 Pod 得出的资源指标均值的目标值，
+        表示为 Pod 资源请求值的百分比。目前仅对 “Resource” 指标源类别有效。
+  
+      <!--
+      - **metrics.object.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the target value of the average of the metric across all relevant pods (as a quantity)
+      -->
+      
+      - **metrics.object.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue 是跨所有 Pod 得出的指标均值的目标值（以数量形式给出）。
+
+      <!--
+      - **metrics.object.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the target value of the metric (as a quantity).
+      -->
+      
+      - **metrics.object.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value 是指标的目标值（以数量形式给出）。
+
+  <!--
+  - **metrics.pods** (PodsMetricSource)
+
+    pods refers to a metric describing each pod in the current scale target (for example, transactions-processed-per-second).  The values will be averaged together before being compared to the target value.
+  -->
+  
+  - **metrics.pods** (PodsMetricSource)
+
+    pods 是指描述当前扩缩目标中每个 Pod 的指标（例如，`transactions-processed-per-second`）。
+    在与目标值进行比较之前，这些指标值将被平均。
+
+    <a name="PodsMetricSource"></a>
+  
+    <!--
+    *PodsMetricSource indicates how to scale on a metric describing each pod in the current scale target (for example, transactions-processed-per-second). The values will be averaged together before being compared to the target value.*
+
+    - **metrics.pods.metric** (MetricIdentifier), required
+
+      metric identifies the target metric by name and selector
+    -->
+    
+    PodsMetricSource 表示如何根据描述当前扩缩目标中每个 Pod 的指标进行扩缩容（例如，`transactions-processed-per-second`）。
+    在与目标值进行比较之前，这些指标值将被平均。 
+
+    - **metrics.pods.metric** (MetricIdentifier)，必需
+
+      metric 通过名称和选择算符识别目标指标。
+
+      <a name="MetricIdentifier"></a>
+    
+      <!--
+      *MetricIdentifier defines the name and optionally selector for a metric*
+
+      - **metrics.pods.metric.name** (string), required
+
+        name is the name of the given metric
+      -->
+      
+      **MetricIdentifier 定义指标的名称和可选的选择算符**
+
+      - **metrics.pods.metric.name** (string)，必需
+
+        name 是给定指标的名称。
+   
+      <!--
+      - **metrics.pods.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.
+      -->
+      
+      - **metrics.pods.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector 是给定指标的标准 Kubernetes 标签选择算符的字符串编码形式。
+        设置后，它作为附加参数传递给指标服务器，以获取更具体的指标范围。
+        未设置时，仅 metricName 参数将用于收集指标。
+
+    <!--
+    - **metrics.pods.target** (MetricTarget), required
+
+      target specifies the target value for the given metric
+    -->
+    
+    - **metrics.pods.target** (MetricTarget)，必需
+
+      target 表示给定指标的目标值。
+  
+      <a name="MetricTarget"></a>
+    
+      <!--
+      *MetricTarget defines the target value, average value, or average utilization of a specific metric*
+
+      - **metrics.pods.target.type** (string), required
+
+        type represents whether the metric type is Utilization, Value, or AverageValue
+      -->
+      
+      **MetricTarget 定义特定指标的目标值、平均值或平均利用率**
+
+      - **metrics.pods.target.type** (string)，必需
+
+        type 表示指标类别是 `Utilization`、`Value` 或 `AverageValue`。
+  
+      <!--
+      - **metrics.pods.target.averageUtilization** (int32)
+
+        averageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods. Currently only valid for Resource metric source type
+      -->
+      
+      - **metrics.pods.target.averageUtilization** (int32)
+
+        averageUtilization 是跨所有相关 Pod 得出的资源指标均值的目标值，
+        表示为 Pod 资源请求值的百分比。目前仅对 “Resource” 指标源类别有效。
+  
+      <!--
+      - **metrics.pods.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the target value of the average of the metric across all relevant pods (as a quantity)
+      -->
+      
+      - **metrics.pods.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue 是跨所有 Pod 得出的指标均值的目标值（以数量形式给出）。
+
+      <!--
+      - **metrics.pods.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the target value of the metric (as a quantity).
+      -->
+      
+      - **metrics.pods.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value 是指标的目标值（以数量形式给出）。
+
+  <!--
+  - **metrics.resource** (ResourceMetricSource)
+
+    resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source.
+  -->
+  
+  - **metrics.resource** (ResourceMetricSource)
+
+    resource 是指 Kubernetes 已知的资源指标（例如在请求和限制中指定的那些），
+    此结构描述当前扩缩目标中的每个 Pod（例如 CPU 或内存）。此类指标内置于 Kubernetes 中，
+    并且在使用 “Pods” 源的、按 Pod 统计的普通指标之外支持一些特殊的扩缩选项。
+
+    <a name="ResourceMetricSource"></a>
+  
+    <!--
+    *ResourceMetricSource indicates how to scale on a resource metric known to Kubernetes, as specified in requests and limits, describing each pod in the current scale target (e.g. CPU or memory).  The values will be averaged together before being compared to the target.  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source.  Only one "target" type should be set.*
+
+    - **metrics.resource.name** (string), required
+
+      name is the name of the resource in question.
+    -->
+    
+    ResourceMetricSource 指示如何根据请求和限制中指定的 Kubernetes 已知的资源指标进行扩缩容，
+    此结构描述当前扩缩目标中的每个 Pod（例如 CPU 或内存）。在与目标值比较之前，这些指标值将被平均。
+    此类指标内置于 Kubernetes 中，并且在使用 “Pods” 源的、按 Pod 统计的普通指标之外支持一些特殊的扩缩选项。
+    只应设置一种 “target” 类别。
+
+    - **metrics.resource.name** (string)，必需
+
+      name 是相关资源的名称。
+    
+    <!--
+    - **metrics.resource.target** (MetricTarget), required
+
+      target specifies the target value for the given metric
+    -->
+    
+    - **metrics.resource.target** (MetricTarget)，必需
+
+      target 指定给定指标的目标值。
+  
+      <a name="MetricTarget"></a>
+    
+      <!--
+      *MetricTarget defines the target value, average value, or average utilization of a specific metric*
+
+      - **metrics.resource.target.type** (string), required
+
+        type represents whether the metric type is Utilization, Value, or AverageValue
+      -->
+      
+      **MetricTarget 定义特定指标的目标值、平均值或平均利用率**
+
+      - **metrics.resource.target.type** (string)，必需
+
+        type 表示指标类别是 `Utilization`、`Value` 或 `AverageValue`。
+  
+      <!--
+      - **metrics.resource.target.averageUtilization** (int32)
+
+        averageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods. Currently only valid for Resource metric source type
+      -->
+      
+      - **metrics.resource.target.averageUtilization** (int32)
+
+        averageUtilization 是跨所有相关 Pod 得出的资源指标均值的目标值，
+        表示为 Pod 资源请求值的百分比。目前仅对 “Resource” 指标源类别有效。
+  
+      <!--
+      - **metrics.resource.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the target value of the average of the metric across all relevant pods (as a quantity)
+      -->
+      
+      - **metrics.resource.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue 是跨所有 Pod 得出的指标均值的目标值（以数量形式给出）。
+
+      <!--
+      - **metrics.resource.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the target value of the metric (as a quantity).
+      -->
+      
+      - **metrics.resource.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value 是指标的目标值（以数量形式给出）。
+
+## HorizontalPodAutoscalerStatus {#HorizontalPodAutoscalerStatus}
+
+<!--
+HorizontalPodAutoscalerStatus describes the current status of a horizontal pod autoscaler.
+-->
+HorizontalPodAutoscalerStatus 描述了水平 Pod 自动扩缩器的当前状态。
+
+<hr>
+
+<!--
+- **desiredReplicas** (int32), required
+
+  desiredReplicas is the desired number of replicas of pods managed by this autoscaler, as last calculated by the autoscaler.
+-->
+
+- **desiredReplicas** (int32)，必需
+
+  desiredReplicas 是此自动扩缩器管理的 Pod 的所期望的副本数，由自动扩缩器最后计算。
+
+<!--
+- **conditions** ([]HorizontalPodAutoscalerCondition)
+
+  *Patch strategy: merge on key `type`*
+  
+  *Map: unique values on key type will be kept during a merge*
+  
+  conditions is the set of conditions required for this autoscaler to scale its target, and indicates whether or not those conditions are met.
+-->
+
+- **conditions** ([]HorizontalPodAutoscalerCondition)
+
+  **补丁策略：基于键 `type` 合并**
+
+  **Map：合并时将保留 type 键的唯一值**
+
+  conditions 是此自动扩缩器扩缩其目标所需的一组条件，并指示是否满足这些条件。
+
+  <a name="HorizontalPodAutoscalerCondition"></a>
+
+  <!--
+  *HorizontalPodAutoscalerCondition describes the state of a HorizontalPodAutoscaler at a certain point.*
+
+  - **conditions.status** (string), required
+
+    status is the status of the condition (True, False, Unknown)
+  -->
+  
+  **HorizontalPodAutoscalerCondition 描述 HorizontalPodAutoscaler 在某一时间点的状态。**
+
+  - **conditions.status** (string)，必需
+
+    status 是状况的状态（True、False、Unknown）。
+  
+  <!--
+  - **conditions.type** (string), required
+
+    type describes the current condition
+  -->
+  
+  - **conditions.type** (string)，必需
+
+    type 描述当前状况。
+
+  <!--
+  - **conditions.lastTransitionTime** (Time)
+
+    lastTransitionTime is the last time the condition transitioned from one status to another
+  -->
+  
+  - **conditions.lastTransitionTime** (Time)
+
+    lastTransitionTime 是状况最近一次从一种状态转换到另一种状态的时间。
+
+    <a name="Time"></a>
+    <!--
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+    -->
+    
+    **Time 是对 time.Time 的封装。Time 支持对 YAML 和 JSON 进行正确封包。为 time 包的许多函数方法提供了封装器。**  
+  
+  <!--
+  - **conditions.message** (string)
+
+    message is a human-readable explanation containing details about the transition
+  -->
+  
+  - **conditions.message** (string)
+
+    message 是一个包含有关转换的可读的详细信息。
+
+  <!--
+  - **conditions.reason** (string)
+
+    reason is the reason for the condition's last transition.
+  -->
+  
+  - **conditions.reason** (string)
+
+    reason 是状况最后一次转换的原因。
+
+<!--
+- **currentMetrics** ([]MetricStatus)
+
+  *Atomic: will be replaced during a merge*
+  
+  currentMetrics is the last read state of the metrics used by this autoscaler.
+-->
+
+- **currentMetrics** ([]MetricStatus)
+  
+  **原子性：将在合并期间被替换**
+
+  currentMetrics 是此自动扩缩器使用的指标的最后读取状态。
+
+  <a name="MetricStatus"></a>
+
+  <!--
+  *MetricStatus describes the last-read state of a single metric.*
+
+  - **currentMetrics.type** (string), required
+
+    type is the type of metric source.  It will be one of "ContainerResource", "External", "Object", "Pods" or "Resource", each corresponds to a matching field in the object. Note: "ContainerResource" type is available on when the feature-gate HPAContainerMetrics is enabled
+  -->
+  
+  **MetricStatus 描述了单个指标的最后读取状态。**
+
+  - **currentMetrics.type** (string)，必需
+
+    type 是指标源的类别。它取值是 “ContainerResource”、“External”、“Object”、“Pods” 或 “Resource” 之一，
+    每个类别映射到对象中的一个对应的字段。注意：“ContainerResource” 类别在特性门控 HPAContainerMetrics 启用时可用。
+
+  <!--
+  - **currentMetrics.containerResource** (ContainerResourceMetricStatus)
+
+    container resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing a single container in each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source.
+  -->
+  
+  - **currentMetrics.containerResource** (ContainerResourceMetricStatus)
+
+    containerResource 是指 Kubernetes 已知的一种资源指标（例如在请求和限制中指定的那些），
+    描述当前扩缩目标中每个 Pod 中的单个容器（例如 CPU 或内存）。
+    此类指标内置于 Kubernetes 中，并且在使用 "Pods" 源的、按 Pod 统计的普通指标之外支持一些特殊的扩缩选项。
+
+    <a name="ContainerResourceMetricStatus"></a>
+  
+    <!--
+    *ContainerResourceMetricStatus indicates the current value of a resource metric known to Kubernetes, as specified in requests and limits, describing a single container in each pod in the current scale target (e.g. CPU or memory).  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source.*
+
+    - **currentMetrics.containerResource.container** (string), required
+
+      Container is the name of the container in the pods of the scaling target
+    -->
+
+    ContainerResourceMetricStatus 指示如何根据请求和限制中指定的 Kubernetes 已知的资源指标进行扩缩容，
+    此结构描述当前扩缩目标中的每个 Pod（例如 CPU 或内存）。此类指标内置于 Kubernetes 中，
+    并且在使用 “Pods” 源的、按 Pod 统计的普通指标之外支持一些特殊的扩缩选项。
+
+    - **currentMetrics.containerResource.container** (string)，必需
+
+      container 是扩缩目标的 Pod 中的容器名称。
+  
+    <!--
+    - **currentMetrics.containerResource.current** (MetricValueStatus), required
+
+      current contains the current value for the given metric
+    -->
+    
+    - **currentMetrics.containerResource.current** (MetricValueStatus)，必需
+
+      current 包含给定指标的当前值。
+  
+      <a name="MetricValueStatus"></a>
+    
+      <!--
+      *MetricValueStatus holds the current value for a metric*
+
+      - **currentMetrics.containerResource.current.averageUtilization** (int32)
+
+        currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.
+      -->
+      
+      **MetricValueStatus 保存指标的当前值**
+
+      - **currentMetrics.containerResource.current.averageUtilization** (int32)
+
+        averageUtilization 是跨所有相关 Pod 得出的资源指标均值的当前值，表示为 Pod 资源请求值的百分比。
+  
+      <!--
+      - **currentMetrics.containerResource.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the current value of the average of the metric across all relevant pods (as a quantity)
+      -->
+      
+      - **currentMetrics.containerResource.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue 是跨所有相关 Pod 的指标均值的当前值（以数量形式给出）。
+
+      <!--
+      - **currentMetrics.containerResource.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the current value of the metric (as a quantity).
+      -->
+      
+      - **currentMetrics.containerResource.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value 是指标的当前值（以数量形式给出）。
+
+    <!--
+    - **currentMetrics.containerResource.name** (string), required
+
+      Name is the name of the resource in question.
+    -->
+    
+    - **currentMetrics.containerResource.name** (string)，必需
+
+      name 是相关资源的名称。
+  
+  <!--
+  - **currentMetrics.external** (ExternalMetricStatus)
+
+    external refers to a global metric that is not associated with any Kubernetes object. It allows autoscaling based on information coming from components running outside of cluster (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).
+  -->
+  
+  - **currentMetrics.external** (ExternalMetricStatus)
+
+    external 指的是不与任何 Kubernetes 对象关联的全局指标。这一字段允许基于来自集群外部运行的组件
+    （例如云消息服务中的队列长度，或来自集群外部运行的负载均衡器的 QPS）的信息进行自动扩缩。
+
+    <a name="ExternalMetricStatus"></a>
+  
+    <!--
+    *ExternalMetricStatus indicates the current value of a global metric not associated with any Kubernetes object.*
+
+    - **currentMetrics.external.current** (MetricValueStatus), required
+
+      current contains the current value for the given metric
+    -->
+    
+    **ExternalMetricStatus 表示与任何 Kubernetes 对象无关的全局指标的当前值。**
+
+    - **currentMetrics.external.current** (MetricValueStatus)，必需
+
+      current 包含给定指标的当前值。
+  
+      <a name="MetricValueStatus"></a>
+    
+      <!--
+      *MetricValueStatus holds the current value for a metric*
+
+      - **currentMetrics.external.current.averageUtilization** (int32)
+
+        currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.
+      -->
+      
+      **MetricValueStatus 保存指标的当前值**
+
+      - **currentMetrics.external.current.averageUtilization** (int32)
+
+        averageUtilization 是跨所有相关 Pod 得出的资源指标均值的当前值，表示为 Pod 资源请求值的百分比。
+      
+      <!--
+      - **currentMetrics.external.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the current value of the average of the metric across all relevant pods (as a quantity)
+      -->
+      
+      - **currentMetrics.external.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue 是跨所有相关 Pod 的指标均值的当前值（以数量形式给出）。
+
+      <!--
+      - **currentMetrics.external.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the current value of the metric (as a quantity).
+      -->
+      
+      - **currentMetrics.external.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value 是指标的当前值（以数量形式给出）。
+
+    <!--
+    - **currentMetrics.external.metric** (MetricIdentifier), required
+
+      metric identifies the target metric by name and selector
+    -->
+    
+    - **currentMetrics.external.metric** (MetricIdentifier)，必需
+
+      metric 通过名称和选择算符识别目标指标。
+  
+      <a name="MetricIdentifier"></a>
+    
+      <!--
+      *MetricIdentifier defines the name and optionally selector for a metric*
+
+      - **currentMetrics.external.metric.name** (string), required
+
+        name is the name of the given metric
+      -->
+      
+      **MetricIdentifier 定义指标的名称和可选的选择算符**
+
+      - **currentMetrics.external.metric.name** (string)，必需
+
+        name 是给定指标的名称。
+  
+      <!--
+      - **currentMetrics.external.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.
+      -->
+      
+      - **currentMetrics.external.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector 是给定指标的标准 Kubernetes 标签选择算符的字符串编码形式。
+        设置后，它作为附加参数传递给指标服务器，以获取更具体的指标范围。
+        未设置时，仅 metricName 参数将用于收集指标。
+
+  <!--
+  - **currentMetrics.object** (ObjectMetricStatus)
+
+    object refers to a metric describing a single kubernetes object (for example, hits-per-second on an Ingress object).
+  -->
+  
+  - **currentMetrics.object** (ObjectMetricStatus)
+
+    object 是指描述单个 Kubernetes 对象的指标（例如，Ingress 对象的 `hits-per-second`）。
+
+    <a name="ObjectMetricStatus"></a>
+  
+    <!--
+    *ObjectMetricStatus indicates the current value of a metric describing a kubernetes object (for example, hits-per-second on an Ingress object).*
+
+    - **currentMetrics.object.current** (MetricValueStatus), required
+
+      current contains the current value for the given metric
+    -->
+    
+    **ObjectMetricStatus 表示描述 Kubernetes 对象的指标的当前值（例如，Ingress 对象的 `hits-per-second`）。**
+
+    - **currentMetrics.object.current** (MetricValueStatus)，必需
+
+      current 包含给定指标的当前值。
+  
+      <a name="MetricValueStatus"></a>
+    
+      <!--
+      *MetricValueStatus holds the current value for a metric*
+
+      - **currentMetrics.object.current.averageUtilization** (int32)
+
+        currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.
+      -->
+      
+      **MetricValueStatus 保存指标的当前值**
+
+      - **currentMetrics.object.current.averageUtilization** (int32)
+
+        averageUtilization 是跨所有相关 Pod 得出的资源指标均值的当前值，表示为 Pod 资源请求值的百分比。
+  
+      <!--
+      - **currentMetrics.object.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the current value of the average of the metric across all relevant pods (as a quantity)
+      -->
+      
+      - **currentMetrics.object.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue 是跨所有相关 Pod 的指标均值的当前值（以数量形式给出）。
+
+      <!--
+      - **currentMetrics.object.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the current value of the metric (as a quantity).
+      -->
+      
+      - **currentMetrics.object.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value 是指标的当前值（以数量形式给出）。
+
+    <!--
+    - **currentMetrics.object.describedObject** (CrossVersionObjectReference), required
+
+      DescribedObject specifies the descriptions of a object,such as kind,name apiVersion
+    -->
+    
+    - **currentMetrics.object.describedObject** (CrossVersionObjectReference)，必需
+
+      describeObject 表示对象的描述，如对象的 `kind`、`name`、`apiVersion`。
+  
+      <a name="CrossVersionObjectReference"></a>
+    
+      <!--
+      *CrossVersionObjectReference contains enough information to let you identify the referred resource.*
+
+      - **currentMetrics.object.describedObject.kind** (string), required
+
+        Kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds"
+      -->
+      
+      **CrossVersionObjectReference 包含足够的信息来让你识别所引用的资源。**
+
+      - **currentMetrics.object.describedObject.kind** (string)，必需
+
+        被引用对象的类别；更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds"
+  
+      <!--
+      - **currentMetrics.object.describedObject.name** (string), required
+
+        Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names
+      -->
+      
+      - **currentMetrics.object.describedObject.name** (string)，必需
+
+        被引用对象的名称；更多信息： https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/names/#names
+  
+      <!--
+      - **currentMetrics.object.describedObject.apiVersion** (string)
+
+        API version of the referent
+      -->
+      
+      - **currentMetrics.object.describedObject.apiVersion** (string)
+
+        被引用对象的 API 版本。
+  
+    <!--
+    - **currentMetrics.object.metric** (MetricIdentifier), required
+
+      metric identifies the target metric by name and selector
+    -->
+    
+    - **currentMetrics.object.metric** (MetricIdentifier)，必需
+
+      metric 通过名称和选择算符识别目标指标。
+  
+      <a name="MetricIdentifier"></a>
+    
+      <!--
+      *MetricIdentifier defines the name and optionally selector for a metric*
+
+      - **currentMetrics.object.metric.name** (string), required
+
+        name is the name of the given metric
+      -->
+      
+      **MetricIdentifier 定义指标的名称和可选的选择算符**
+
+      - **currentMetrics.object.metric.name** (string)，必需
+
+        name 是给定指标的名称。
+
+      <!--  
+      - **currentMetrics.object.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.
+      -->
+      
+      - **currentMetrics.object.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector 是给定指标的标准 Kubernetes 标签选择算符的字符串编码形式。
+        设置后，它作为附加参数传递给指标服务器，以获取更具体的指标范围。
+        未设置时，仅 metricName 参数将用于收集指标。
+
+  <!--
+  - **currentMetrics.pods** (PodsMetricStatus)
+
+    pods refers to a metric describing each pod in the current scale target (for example, transactions-processed-per-second).  The values will be averaged together before being compared to the target value.
+  -->
+  
+  - **currentMetrics.pods** (PodsMetricStatus)
+
+    pods 是指描述当前扩缩目标中每个 Pod 的指标（例如，`transactions-processed-per-second`）。
+    在与目标值进行比较之前，这些指标值将被平均。
+
+    <a name="PodsMetricStatus"></a>
+  
+    <!--
+    *PodsMetricStatus indicates the current value of a metric describing each pod in the current scale target (for example, transactions-processed-per-second).*
+
+    - **currentMetrics.pods.current** (MetricValueStatus), required
+
+      current contains the current value for the given metric
+    -->
+    
+    **PodsMetricStatus 表示描述当前扩缩目标中每个 Pod 的指标的当前值（例如，`transactions-processed-per-second`）。**
+
+    - **currentMetrics.pods.current** (MetricValueStatus)，必需
+
+      current 包含给定指标的当前值。
+  
+      <a name="MetricValueStatus"></a>
+    
+      <!--
+      *MetricValueStatus holds the current value for a metric*
+
+      - **currentMetrics.pods.current.averageUtilization** (int32)
+
+        currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.
+      -->
+      
+      **MetricValueStatus 保存指标的当前值**
+
+      - **currentMetrics.pods.current.averageUtilization** (int32)
+
+        averageUtilization 是跨所有相关 Pod 得出的资源指标均值的当前值，表示为 Pod 资源请求值的百分比。
+  
+      <!--
+      - **currentMetrics.pods.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the current value of the average of the metric across all relevant pods (as a quantity)
+      -->
+      
+      - **currentMetrics.pods.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue 是跨所有相关 Pod 的指标均值的当前值（以数量形式给出）。
+
+      <!--
+      - **currentMetrics.pods.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the current value of the metric (as a quantity).
+      -->
+      
+      - **currentMetrics.pods.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value 是指标的当前值（以数量形式给出）。
+    
+    <!--
+    - **currentMetrics.pods.metric** (MetricIdentifier), required
+
+      metric identifies the target metric by name and selector
+    -->
+    
+    - **currentMetrics.pods.metric** (MetricIdentifier)，必需
+
+      metric 通过名称和选择算符识别目标指标。
+  
+      <a name="MetricIdentifier"></a>
+    
+      <!--
+      *MetricIdentifier defines the name and optionally selector for a metric*
+
+      - **currentMetrics.pods.metric.name** (string), required
+
+        name is the name of the given metric
+      -->
+      
+      **MetricIdentifier 定义指标的名称和可选的选择算符**
+
+      - **currentMetrics.pods.metric.name** (string)，必需
+
+        name 是给定指标的名称。
+  
+      <!--
+      - **currentMetrics.pods.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.
+      -->
+      
+      - **currentMetrics.pods.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector 是给定指标的标准 Kubernetes 标签选择算符的字符串编码形式。
+        设置后，它作为附加参数传递给指标服务器，以获取更具体的指标范围。
+        未设置时，仅 metricName 参数将用于收集指标。
+
+  <!--
+  - **currentMetrics.resource** (ResourceMetricStatus)
+
+    resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source.
+  -->
+  
+  - **currentMetrics.resource** (ResourceMetricStatus)
+
+    resource 是指 Kubernetes 已知的资源指标（例如在请求和限制中指定的那些），
+    此结构描述当前扩缩目标中的每个 Pod（例如 CPU 或内存）。此类指标内置于 Kubernetes 中，
+    并且在使用 “Pods” 源的、按 Pod 统计的普通指标之外支持一些特殊的扩缩选项。
+
+    <a name="ResourceMetricStatus"></a>
+  
+    <!--
+    *ResourceMetricStatus indicates the current value of a resource metric known to Kubernetes, as specified in requests and limits, describing each pod in the current scale target (e.g. CPU or memory).  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source.*
+
+    - **currentMetrics.resource.current** (MetricValueStatus), required
+
+      current contains the current value for the given metric
+    -->
+    
+    ResourceMetricSource 指示如何根据请求和限制中指定的 Kubernetes 已知的资源指标进行扩缩容，
+    此结构描述当前扩缩目标中的每个 Pod（例如 CPU 或内存）。在与目标值比较之前，这些指标值将被平均。
+    此类指标内置于 Kubernetes 中，并且在使用 “Pods” 源的、按 Pod 统计的普通指标之外支持一些特殊的扩缩选项。
+
+    - **currentMetrics.resource.current** (MetricValueStatus)，必需
+
+      current 包含给定指标的当前值。
+  
+      <a name="MetricValueStatus"></a>
+    
+      <!--
+      *MetricValueStatus holds the current value for a metric*
+
+      - **currentMetrics.resource.current.averageUtilization** (int32)
+
+        currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.
+      -->
+      
+      **MetricValueStatus 保存指标的当前值**
+
+      - **currentMetrics.resource.current.averageUtilization** (int32)
+
+        averageUtilization 是跨所有相关 Pod 得出的资源指标均值的当前值，
+        表示为 Pod 资源请求值的百分比。
+  
+      <!--
+      - **currentMetrics.resource.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the current value of the average of the metric across all relevant pods (as a quantity)
+      -->
+      
+      - **currentMetrics.resource.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue 是跨所有相关 Pod 的指标均值的当前值（以数量形式给出）。
+
+      <!--
+      - **currentMetrics.resource.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the current value of the metric (as a quantity).
+      -->
+      
+      - **currentMetrics.resource.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value 是指标的当前值（以数量形式给出）。
+
+    <!--
+    - **currentMetrics.resource.name** (string), required
+
+      Name is the name of the resource in question.
+    -->
+    
+    - **currentMetrics.resource.name** (string)，必需
+
+      name 是相关资源的名称。
+
+<!--
+- **currentReplicas** (int32)
+
+  currentReplicas is current number of replicas of pods managed by this autoscaler, as last seen by the autoscaler.
+-->
+
+- **currentReplicas** (int32)
+
+  currentReplicas 是此自动扩缩器管理的 Pod 的当前副本数，如自动扩缩器最后一次看到的那样。
+
+<!--
+- **lastScaleTime** (Time)
+
+  lastScaleTime is the last time the HorizontalPodAutoscaler scaled the number of pods, used by the autoscaler to control how often the number of pods is changed.
+-->
+
+- **lastScaleTime** (Time)
+
+  lastScaleTime 是 HorizontalPodAutoscaler 上次扩缩 Pod 数量的时间，自动扩缩器使用它来控制更改 Pod 数量的频率。
+
+  <a name="Time"></a>
+
+  <!--
+  *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+  -->
+  
+  **Time 是对 time.Time 的封装。Time 支持对 YAML 和 JSON 进行正确封包。为 time 包的许多函数方法提供了封装器。**
+
+<!--
+- **observedGeneration** (int64)
+
+  observedGeneration is the most recent generation observed by this autoscaler.
+-->
+
+- **observedGeneration** (int64)
+
+  observedGeneration 是此自动扩缩器观察到的最新一代。
+
+## HorizontalPodAutoscalerList {#HorizontalPodAutoscalerList}
+
+<!--
+HorizontalPodAutoscalerList is a list of horizontal pod autoscaler objects.
+-->
+HorizontalPodAutoscalerList 是水平 Pod 自动扩缩器对象列表。
+
+<hr>
+
+- **apiVersion**: autoscaling/v2
+
+- **kind**: HorizontalPodAutoscalerList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  metadata is the standard list metadata.
+-->
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  metadata 是标准的列表元数据。
+
+<!--
+- **items** ([]<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>), required
+
+  items is the list of horizontal pod autoscaler objects.
+-->
+
+- **items** ([]<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>)，必需
+
+  items 是水平 Pod 自动扩缩器对象的列表。
+
+## Operations {#Operations}
+
+<hr>
+
+<!--
+### `get` read the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+-->
+### `get` 读取指定的 HorizontalPodAutoscaler
+
+#### HTTP 请求
+
+GET /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+-->
+#### 参数
+
+- **name** （**路径参数**）: string，必需
+
+  HorizontalPodAutoscaler 的名称。
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+401: Unauthorized
+
+<!--
+### `get` read status of the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+-->
+### `get` 读取指定 HorizontalPodAutoscaler 的状态
+
+#### HTTP 请求
+
+GET /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}/status
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+-->
+#### 参数
+
+- **name** （**路径参数**）: string，必需
+
+  HorizontalPodAutoscaler 的名称。
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind HorizontalPodAutoscaler
+
+#### HTTP Request
+-->
+### `list` 列出或观察 HorizontalPodAutoscaler 类别的对象
+
+#### HTTP 请求
+
+GET /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers
+
+<!--
+#### Parameters
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+#### 参数
+
+- **namespace** （**路径参数**）: string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **allowWatchBookmarks** <!--(*in query*)-->（**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** <!--(*in query*)-->（**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** <!--(*in query*)-->（**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** <!--(*in query*)-->（**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscalerList" >}}">HorizontalPodAutoscalerList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind HorizontalPodAutoscaler
+
+#### HTTP Request
+-->
+### `list` 列出或观察 HorizontalPodAutoscaler 类别的对象
+
+#### HTTP 请求
+
+GET /apis/autoscaling/v2/horizontalpodautoscalers
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+- **allowWatchBookmarks** <!--(*in query*)-->（**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** <!--(*in query*)-->（**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** <!--(*in query*)-->（**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** <!--(*in query*)-->（**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscalerList" >}}">HorizontalPodAutoscalerList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a HorizontalPodAutoscaler
+
+#### HTTP Request
+-->
+### `create` 创建一个 HorizontalPodAutoscaler
+
+#### HTTP 请求
+
+POST /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers
+
+<!--
+#### Parameters
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+#### 参数
+
+- **namespace** （**路径参数**）: string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>，<!--required-->必需
+
+- **dryRun** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+202 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+-->
+### `update` 替换指定的 HorizontalPodAutoscaler
+
+#### HTTP 请求
+
+PUT /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+-->
+#### 参数
+
+- **name** （**路径参数**）: string，必需
+
+  HorizontalPodAutoscaler 的名称。
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>，<!--required-->必需
+
+- **dryRun** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+401: Unauthorized
+
+<!--
+### `update` replace status of the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+-->
+### `update` 替换指定 HorizontalPodAutoscaler 的状态
+
+#### HTTP 请求
+
+PUT /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}/status
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+-->
+#### 参数
+
+- **name** （**路径参数**）: string，必需
+
+  HorizontalPodAutoscaler 的名称。
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>，<!--required-->必需
+
+- **dryRun** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 HorizontalPodAutoscaler
+
+#### HTTP 请求
+
+PATCH /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+-->
+#### 参数
+
+- **name** （**路径参数**）: string，必需
+
+  HorizontalPodAutoscaler 的名称。
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，<!--required-->必需
+
+- **dryRun** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** <!--(*in query*)-->（**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update status of the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+-->
+### `patch` 部分更新指定 HorizontalPodAutoscaler 的状态
+
+#### HTTP 请求
+
+PATCH /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}/status
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+-->
+#### 参数
+
+- **name** （**路径参数**）: string，必需
+
+  HorizontalPodAutoscaler 的名称。
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，<!--required-->必需
+
+- **dryRun** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** <!--(*in query*)-->（**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a HorizontalPodAutoscaler
+
+#### HTTP Request
+-->
+### `delete` 删除一个 HorizontalPodAutoscaler
+
+#### HTTP 请求
+
+DELETE /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+-->
+#### 参数
+
+- **name** （**路径参数**）: string，必需
+
+  HorizontalPodAutoscaler 的名称。
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** <!--(*in query*)-->（**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of HorizontalPodAutoscaler
+
+#### HTTP Request
+-->
+### `deletecollection` 删除 HorizontalPodAutoscaler 的集合
+
+#### HTTP 请求
+
+DELETE /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers
+
+<!--
+#### Parameters
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+#### 参数
+
+- **namespace** （**路径参数**）: string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** <!--(*in query*)-->（**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** <!--(*in query*)-->（**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** <!--(*in query*)-->（**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v2beta2.md b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v2beta2.md
new file mode 100644
index 0000000000..b8ac14288a
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v2beta2.md
@@ -0,0 +1,2327 @@
+---
+api_metadata:
+  apiVersion: "autoscaling/v2beta2"
+  import: "k8s.io/api/autoscaling/v2beta2"
+  kind: "HorizontalPodAutoscaler"
+content_type: "api_reference"
+description: "HorizontalPodAutoscaler 是水平 Pod 自动扩缩器的配置，它根据指定的指标自动管理实现 scale 子资源的任何资源的副本数。"
+title: "HorizontalPodAutoscaler v2beta2"
+weight: 13
+---
+<!--
+api_metadata:
+  apiVersion: "autoscaling/v2beta2"
+  import: "k8s.io/api/autoscaling/v2beta2"
+  kind: "HorizontalPodAutoscaler"
+content_type: "api_reference"
+description: "HorizontalPodAutoscaler is the configuration for a horizontal pod autoscaler, which automatically manages the replica count of any resource implementing the scale subresource based on the metrics specified."
+title: "HorizontalPodAutoscaler v2beta2"
+weight: 13
+auto_generated: true
+-->
+
+`apiVersion: autoscaling/v2beta2`
+
+`import "k8s.io/api/autoscaling/v2beta2"`
+
+
+## HorizontalPodAutoscaler {#HorizontalPodAutoscaler}
+
+<!--
+HorizontalPodAutoscaler is the configuration for a horizontal pod autoscaler, which automatically manages the replica count of any resource implementing the scale subresource based on the metrics specified.
+-->
+HorizontalPodAutoscaler 是水平 Pod 自动扩缩器的配置，
+它根据指定的指标自动管理实现 scale 子资源的任何资源的副本数。
+
+<hr>
+
+- **apiVersion**: autoscaling/v2beta2
+
+- **kind**: HorizontalPodAutoscaler
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  <!--
+  metadata is the standard object metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+  
+  metadata 是标准的对象元数据。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2beta2#HorizontalPodAutoscalerSpec" >}}">HorizontalPodAutoscalerSpec</a>)
+
+  <!--
+  spec is the specification for the behaviour of the autoscaler. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.
+  -->
+  
+  spec 是自动扩缩器行为的规约。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.
+
+- **status** (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2beta2#HorizontalPodAutoscalerStatus" >}}">HorizontalPodAutoscalerStatus</a>)
+  
+  <!--
+  status is the current information about the autoscaler.
+  -->
+  
+  status 是自动扩缩器的当前信息。
+
+## HorizontalPodAutoscalerSpec {#HorizontalPodAutoscalerSpec}
+
+<!--
+HorizontalPodAutoscalerSpec describes the desired functionality of the HorizontalPodAutoscaler.
+-->
+HorizontalPodAutoscalerSpec 描述了 HorizontalPodAutoscaler 预期的功能。
+
+<hr>
+
+<!--
+- **maxReplicas** (int32), required
+
+  maxReplicas is the upper limit for the number of replicas to which the autoscaler can scale up. It cannot be less that minReplicas.
+-->
+
+- **maxReplicas** (int32)，必需
+
+  maxReplicas 是自动扩缩器可以扩容的副本数的上限。不能小于 minReplicas。
+
+<!--
+- **scaleTargetRef** (CrossVersionObjectReference), required
+
+  scaleTargetRef points to the target resource to scale, and is used to the pods for which metrics should be collected, as well as to actually change the replica count.
+-->
+
+- **scaleTargetRef** (CrossVersionObjectReference)，必需
+
+  scaleTargetRef 指向要扩缩的目标资源，用于收集 Pod 的相关指标信息以及实际更改的副本数。
+
+  <a name="CrossVersionObjectReference"></a>
+
+  <!--
+  *CrossVersionObjectReference contains enough information to let you identify the referred resource.*
+
+  - **scaleTargetRef.kind** (string), required
+
+    Kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds"
+  -->
+  
+  **CrossVersionObjectReference 包含足够的信息来让你识别出所引用的资源。**
+
+  - **scaleTargetRef.kind** (string)，必需
+
+    被引用对象的类别；更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds"
+
+  <!--
+  - **scaleTargetRef.name** (string), required
+
+    Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names
+  -->
+
+  - **scaleTargetRef.name** (string)，必需
+
+    被引用对象的名称；更多信息： https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/names/#names
+
+  <!--
+  - **scaleTargetRef.apiVersion** (string)
+
+    API version of the referent
+  -->
+  
+  - **scaleTargetRef.apiVersion** (string)
+
+    被引用对象的 API 版本。
+
+<!--
+- **minReplicas** (int32)
+
+  minReplicas is the lower limit for the number of replicas to which the autoscaler can scale down.  It defaults to 1 pod.  minReplicas is allowed to be 0 if the alpha feature gate HPAScaleToZero is enabled and at least one Object or External metric is configured.  Scaling is active as long as at least one metric value is available.
+-->
+
+- **minReplicas** (int32)
+
+  minReplicas 是自动扩缩器可以缩减的副本数的下限。它默认为 1 个 Pod。
+  如果启用了 Alpha 特性门控 HPAScaleToZero 并且配置了至少一个 Object 或 External 度量指标，
+  则 minReplicas 允许为 0。只要至少有一个度量值可用，扩缩就处于活动状态。
+
+<!--
+- **behavior** (HorizontalPodAutoscalerBehavior)
+
+  behavior configures the scaling behavior of the target in both Up and Down directions (scaleUp and scaleDown fields respectively). If not set, the default HPAScalingRules for scale up and scale down are used.
+-->
+
+- **behavior** (HorizontalPodAutoscalerBehavior)
+
+  behavior 配置目标在扩容（Up）和缩容（Down）两个方向的扩缩行为（分别用 scaleUp 和 scaleDown 字段）。
+  如果未设置，则会使用默认的 HPAScalingRules 进行扩缩容。
+
+  <a name="HorizontalPodAutoscalerBehavior"></a>
+
+  <!--
+  *HorizontalPodAutoscalerBehavior configures the scaling behavior of the target in both Up and Down directions (scaleUp and scaleDown fields respectively).*
+
+  - **behavior.scaleDown** (HPAScalingRules)
+
+    scaleDown is scaling policy for scaling Down. If not set, the default value is to allow to scale down to minReplicas pods, with a 300 second stabilization window (i.e., the highest recommendation for the last 300sec is used).
+  -->
+  
+  **HorizontalPodAutoscalerBehavior 配置目标在扩容（Up）和缩容（Down）两个方向的扩缩行为
+  （分别用 scaleUp 和 scaleDown 字段）。**
+
+  - **behavior.scaleDown** (HPAScalingRules)
+
+    scaleDown 是缩容策略。如果未设置，则默认值允许缩减到 minReplicas 数量的 Pod，
+    具有 300 秒的稳定窗口（使用最近 300 秒的最高推荐值）。
+
+    <a name="HPAScalingRules"></a>
+  
+    <!--
+    *HPAScalingRules configures the scaling behavior for one direction. These Rules are applied after calculating DesiredReplicas from metrics for the HPA. They can limit the scaling velocity by specifying scaling policies. They can prevent flapping by specifying the stabilization window, so that the number of replicas is not set instantly, instead, the safest value from the stabilization window is chosen.*
+
+    - **behavior.scaleDown.policies** ([]HPAScalingPolicy)
+      
+      policies is a list of potential scaling polices which can be used during scaling. At least one policy must be specified, otherwise the HPAScalingRules will be discarded as invalid
+    -->
+    
+    HPAScalingRules 为一个方向配置扩缩行为。在根据 HPA 的指标计算 desiredReplicas 后应用这些规则。
+    可以通过指定扩缩策略来限制扩缩速度。可以通过指定稳定窗口来防止抖动，
+    因此不会立即设置副本数，而是选择稳定窗口中最安全的值。 
+
+    - **behavior.scaleDown.policies** ([]HPAScalingPolicy)
+
+      policies 是可在扩缩容过程中使用的潜在扩缩策略的列表。必须至少指定一个策略，否则 HPAScalingRules 将被视为无效而丢弃。
+  
+      <a name="HPAScalingPolicy"></a>
+
+      <!--
+      *HPAScalingPolicy is a single policy which must hold true for a specified past interval.*
+
+      - **behavior.scaleDown.policies.type** (string), required
+
+        Type is used to specify the scaling policy.
+      -->
+      
+      **HPAScalingPolicy 是一个单一的策略，它必须在指定的过去时间间隔内保持为 true。**
+
+      - **behavior.scaleDown.policies.type** (string)，必需
+
+        type 用于指定扩缩策略。
+      
+      <!--
+      - **behavior.scaleDown.policies.value** (int32), required
+
+        Value contains the amount of change which is permitted by the policy. It must be greater than zero
+      -->
+      
+      - **behavior.scaleDown.policies.value** (int32)，必需
+
+        value 包含策略允许的更改量。它必须大于零。
+  
+      <!--
+      - **behavior.scaleDown.policies.periodSeconds** (int32), required
+
+        PeriodSeconds specifies the window of time for which the policy should hold true. PeriodSeconds must be greater than zero and less than or equal to 1800 (30 min).
+      -->
+      
+      - **behavior.scaleDown.policies.periodSeconds** (int32)，必需
+
+        periodSeconds 表示策略应该保持为 true 的时间窗口长度。
+        periodSeconds 必须大于零且小于或等于 1800（30 分钟）。
+  
+    <!--
+    - **behavior.scaleDown.selectPolicy** (string)
+
+      selectPolicy is used to specify which policy should be used. If not set, the default value MaxPolicySelect is used.
+    -->
+    
+    - **behavior.scaleDown.selectPolicy** (string)
+
+      selectPolicy 用于指定应该使用哪个策略。如果未设置，则使用默认值 MaxPolicySelect。
+
+    <!--  
+    - **behavior.scaleDown.stabilizationWindowSeconds** (int32)
+
+      StabilizationWindowSeconds is the number of seconds for which past recommendations should be considered while scaling up or scaling down. StabilizationWindowSeconds must be greater than or equal to zero and less than or equal to 3600 (one hour). If not set, use the default values: - For scale up: 0 (i.e. no stabilization is done). - For scale down: 300 (i.e. the stabilization window is 300 seconds long).
+    -->
+    
+    - **behavior.scaleDown.stabilizationWindowSeconds** (int32)
+
+      stabilizationWindowSeconds 是在扩缩容时应考虑的之前建议的秒数。stabilizationWindowSeconds
+      必须大于或等于零且小于或等于 3600（一小时）。如果未设置，则使用默认值：
+
+      - 扩容：0（不设置稳定窗口）。
+      - 缩容：300（即稳定窗口为 300 秒）。
+  
+  <!--
+  - **behavior.scaleUp** (HPAScalingRules)
+
+    scaleUp is scaling policy for scaling Up. If not set, the default value is the higher of:
+      * increase no more than 4 pods per 60 seconds
+      * double the number of pods per 60 seconds
+    No stabilization is used.
+  -->
+  
+  - **behavior.scaleUp** (HPAScalingRules)
+
+    scaleUp 是用于扩容的扩缩策略。如果未设置，则默认值为以下值中的较高者：
+
+      * 每 60 秒增加不超过 4 个 Pod
+      * 每 60 秒 Pod 数量翻倍
+
+    不使用稳定窗口。
+
+    <a name="HPAScalingRules"></a>
+  
+    <!--
+    *HPAScalingRules configures the scaling behavior for one direction. These Rules are applied after calculating DesiredReplicas from metrics for the HPA. They can limit the scaling velocity by specifying scaling policies. They can prevent flapping by specifying the stabilization window, so that the number of replicas is not set instantly, instead, the safest value from the stabilization window is chosen.*
+
+    - **behavior.scaleUp.policies** ([]HPAScalingPolicy)
+      
+      policies is a list of potential scaling polices which can be used during scaling. At least one policy must be specified, otherwise the HPAScalingRules will be discarded as invalid
+    -->
+    
+    HPAScalingRules 为一个方向配置扩缩行为。在根据 HPA 的指标计算 desiredReplicas 后应用这些规则。
+    可以通过指定扩缩策略来限制扩缩速度。可以通过指定稳定窗口来防止抖动，
+    因此不会立即设置副本数，而是选择稳定窗口中最安全的值。
+
+    - **behavior.scaleUp.policies** ([]HPAScalingPolicy)
+
+      policies 是可在扩缩容过程中使用的潜在扩缩策略的列表。必须至少指定一个策略，否则 HPAScalingRules 将被视为无效而丢弃。
+
+      <a name="HPAScalingPolicy"></a>
+    
+      <!--
+      *HPAScalingPolicy is a single policy which must hold true for a specified past interval.*
+
+      - **behavior.scaleUp.policies.type** (string), required
+
+        Type is used to specify the scaling policy.
+      -->
+      
+      **HPAScalingPolicy 是一个单一的策略，它必须在指定的过去时间间隔内保持为 true。**
+
+      - **behavior.scaleUp.policies.type** (string)，必需
+
+        type 用于指定扩缩策略。
+      
+      <!--
+      - **behavior.scaleUp.policies.value** (int32), required
+
+        Value contains the amount of change which is permitted by the policy. It must be greater than zero
+      -->
+      
+      - **behavior.scaleUp.policies.value** (int32)，必需
+
+        value 包含策略允许的更改量。它必须大于零。
+      
+      <!--
+      - **behavior.scaleUp.policies.periodSeconds** (int32), required
+
+        PeriodSeconds specifies the window of time for which the policy should hold true. PeriodSeconds must be greater than zero and less than or equal to 1800 (30 min).
+      -->
+      
+      - **behavior.scaleUp.policies.periodSeconds** (int32)，必需
+
+        periodSeconds 表示策略应该保持为 true 的时间窗口长度。
+        periodSeconds 必须大于零且小于或等于 1800（30 分钟）。
+
+    <!--
+    - **behavior.scaleUp.selectPolicy** (string)
+
+      selectPolicy is used to specify which policy should be used. If not set, the default value MaxPolicySelect is used.
+    -->
+    
+    - **behavior.scaleUp.selectPolicy** (string)
+
+      selectPolicy 用于指定应该使用哪个策略。如果未设置，则使用默认值 MaxPolicySelect。
+    
+    <!--
+    - **behavior.scaleUp.stabilizationWindowSeconds** (int32)
+
+      StabilizationWindowSeconds is the number of seconds for which past recommendations should be considered while scaling up or scaling down. StabilizationWindowSeconds must be greater than or equal to zero and less than or equal to 3600 (one hour). If not set, use the default values: - For scale up: 0 (i.e. no stabilization is done). - For scale down: 300 (i.e. the stabilization window is 300 seconds long).
+    -->
+    
+    - **behavior.scaleUp.stabilizationWindowSeconds** (int32)
+
+      stabilizationWindowSeconds 是在扩缩容时应考虑的之前建议的秒数。stabilizationWindowSeconds
+      必须大于或等于零且小于或等于 3600（一小时）。如果未设置，则使用默认值：
+
+      - 扩容：0（不设置稳定窗口）。
+      - 缩容：300（即稳定窗口为 300 秒）。
+
+<!--
+- **metrics** ([]MetricSpec)
+  
+  metrics contains the specifications for which to use to calculate the desired replica count (the maximum replica count across all metrics will be used).  The desired replica count is calculated multiplying the ratio between the target value and the current value by the current number of pods.  Ergo, metrics used must decrease as the pod count is increased, and vice-versa.  See the individual metric source types for more information about how each type of metric must respond. If not set, the default metric will be set to 80% average CPU utilization.
+-->
+
+- **metrics** ([]MetricSpec)
+
+  metrics 包含用于计算预期副本数的规约（将使用所有指标的最大副本数）。
+  预期副本数是通过将目标值与当前值之间的比率乘以当前 Pod 数来计算的。
+  因此，使用的指标必须随着 Pod 数量的增加而减少，反之亦然。
+  有关每种类别的指标必须如何响应的更多信息，请参阅各个指标源类别。
+  如果未设置，默认指标将设置为 80% 的平均 CPU 利用率。
+
+  <a name="MetricSpec"></a>
+
+  <!--
+  *MetricSpec specifies how to scale based on a single metric (only `type` and one other matching field should be set at once).*
+
+  - **metrics.type** (string), required
+
+    type is the type of metric source.  It should be one of "ContainerResource", "External", "Object", "Pods" or "Resource", each mapping to a matching field in the object. Note: "ContainerResource" type is available on when the feature-gate HPAContainerMetrics is enabled
+  -->
+  
+  **MetricSpec 指定如何基于单个指标进行扩缩容（一次只能设置 `type` 和一个其他匹配字段）** 
+
+  - **metrics.type** (string)，必需
+
+    type 是指标源的类别。它取值是 “ContainerResource”、“External”、“Object”、“Pods” 或 “Resource” 之一，
+    每个类别映射到对象中的一个对应的字段。注意：“ContainerResource” 类别在特性门控 HPAContainerMetrics 启用时可用。
+
+  <!--
+  - **metrics.containerResource** (ContainerResourceMetricSource)
+
+    container resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing a single container in each pod of the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source. This is an alpha feature and can be enabled by the HPAContainerMetrics feature flag.
+  -->
+  
+  - **metrics.containerResource** (ContainerResourceMetricSource)  
+
+    containerResource 是指 Kubernetes 已知的资源指标（例如在请求和限制中指定的那些），
+    描述当前扩缩目标中每个 Pod 中的单个容器（例如 CPU 或内存）。
+    此类指标内置于 Kubernetes 中，在使用 “pods” 源的、按 Pod 计算的普通指标之外，还具有一些特殊的扩缩选项。
+    这是一个 Alpha 特性，可以通过 HPAContainerMetrics 特性标志启用。
+
+    <a name="ContainerResourceMetricSource"></a>
+  
+    <!--
+    *ContainerResourceMetricSource indicates how to scale on a resource metric known to Kubernetes, as specified in requests and limits, describing each pod in the current scale target (e.g. CPU or memory).  The values will be averaged together before being compared to the target.  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source.  Only one "target" type should be set.*
+
+    - **metrics.containerResource.container** (string), required
+
+      container is the name of the container in the pods of the scaling target
+    -->
+    
+    ContainerResourceMetricSource 指示如何根据请求和限制中指定的 Kubernetes 已知的资源指标进行扩缩容，
+    此结构描述当前扩缩目标中的每个 Pod（例如 CPU 或内存）。在与目标值比较之前，这些值先计算平均值。
+    此类指标内置于 Kubernetes 中，并且在使用 “Pods” 源的、按 Pod 统计的普通指标之外支持一些特殊的扩缩选项。
+    只应设置一种 “target” 类别。 
+
+    - **metrics.containerResource.container** (string)，必需
+
+      container 是扩缩目标的 Pod 中容器的名称。
+
+    <!--
+    - **metrics.containerResource.name** (string), required
+
+      name is the name of the resource in question.
+    -->
+    
+    - **metrics.containerResource.name** (string)，必需
+
+      name 是相关资源的名称。
+  
+    <!--
+    - **metrics.containerResource.target** (MetricTarget), required
+
+      target specifies the target value for the given metric
+    -->
+    
+    - **metrics.containerResource.target** (MetricTarget)，必需
+
+      target 指定给定指标的目标值。
+  
+      <a name="MetricTarget"></a>
+    
+      <!--
+      *MetricTarget defines the target value, average value, or average utilization of a specific metric*
+
+      - **metrics.containerResource.target.type** (string), required
+
+        type represents whether the metric type is Utilization, Value, or AverageValue
+      -->
+      
+      **MetricTarget 定义特定指标的目标值、平均值或平均利用率**
+
+      - **metrics.containerResource.target.type** (string)，必需
+
+        type 表示指标类别是 `Utilization`、`Value` 或 `AverageValue`。
+  
+      <!--
+      - **metrics.containerResource.target.averageUtilization** (int32)
+
+        averageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods. Currently only valid for Resource metric source type
+      -->
+      
+      - **metrics.containerResource.target.averageUtilization** (int32)
+
+        averageUtilization 是跨所有相关 Pod 的资源指标均值的目标值，
+        表示为 Pod 资源请求值的百分比。目前仅对 “Resource” 指标源类别有效。
+      
+      <!--
+      - **metrics.containerResource.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the target value of the average of the metric across all relevant pods (as a quantity)
+      -->
+      
+      - **metrics.containerResource.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        是跨所有相关 Pod 的指标均值的目标值（以数量形式给出）。
+  
+      <!--
+      - **metrics.containerResource.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the target value of the metric (as a quantity).
+      -->
+      
+      - **metrics.containerResource.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value 是指标的目标值（以数量形式给出）。
+  
+  <!--
+  - **metrics.external** (ExternalMetricSource)
+
+    external refers to a global metric that is not associated with any Kubernetes object. It allows autoscaling based on information coming from components running outside of cluster (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).
+  -->
+  
+  - **metrics.external** (ExternalMetricSource)
+
+    external 指的是不与任何 Kubernetes 对象关联的全局指标。
+    这一字段允许基于来自集群外部运行的组件（例如云消息服务中的队列长度，或来自运行在集群外部的负载均衡器的 QPS）的信息进行自动扩缩容。
+
+    <a name="ExternalMetricSource"></a>
+  
+    <!--
+    *ExternalMetricSource indicates how to scale on a metric not associated with any Kubernetes object (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).*
+
+    - **metrics.external.metric** (MetricIdentifier), required
+
+      metric identifies the target metric by name and selector
+    -->
+    
+    ExternalMetricSource 指示如何基于 Kubernetes 对象无关的指标
+    （例如云消息传递服务中的队列长度，或来自集群外部运行的负载均衡器的 QPS）执行扩缩操作。
+
+    - **metrics.external.metric** (MetricIdentifier)，必需
+
+      metric 通过名称和选择算符识别目标指标。
+  
+      <a name="MetricIdentifier"></a>
+    
+      <!--
+      *MetricIdentifier defines the name and optionally selector for a metric*
+
+      - **metrics.external.metric.name** (string), required
+
+        name is the name of the given metric
+      -->
+      
+      **MetricIdentifier 定义指标的名称和可选的选择算符**
+
+      - **metrics.external.metric.name** (string)，必需
+
+        name 是给定指标的名称。
+      
+      <!--
+      - **metrics.external.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.
+      -->
+      
+      - **metrics.external.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector 是给定指标的标准 Kubernetes 标签选择算符的字符串编码形式。
+        设置后，它作为附加参数传递给指标服务器，以获取更具体的指标范围。
+        未设置时，仅 metricName 参数将用于收集指标。
+  
+    <!--
+    - **metrics.external.target** (MetricTarget), required
+
+      target specifies the target value for the given metric
+    -->
+    
+    - **metrics.external.target** (MetricTarget)，必需
+
+      target 指定给定指标的目标值。
+  
+      <a name="MetricTarget"></a>
+    
+      <!--
+      *MetricTarget defines the target value, average value, or average utilization of a specific metric*
+
+      - **metrics.external.target.type** (string), required
+
+        type represents whether the metric type is Utilization, Value, or AverageValue
+      -->
+      
+      **MetricTarget 定义特定指标的目标值、平均值或平均利用率**
+
+      - **metrics.external.target.type** (string)，必需
+
+        type 表示指标类别是 `Utilization`、`Value` 或 `AverageValue`。
+  
+      <!--
+      - **metrics.external.target.averageUtilization** (int32)
+
+        averageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods. Currently only valid for Resource metric source type
+      -->
+      
+      - **metrics.external.target.averageUtilization** (int32)
+
+        averageUtilization 是跨所有相关 Pod 得到的资源指标均值的目标值，
+        表示为 Pod 资源请求值的百分比。目前仅对 “Resource” 指标源类别有效。
+  
+      <!--
+      - **metrics.external.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the target value of the average of the metric across all relevant pods (as a quantity)
+      -->
+      
+      - **metrics.external.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue 是跨所有相关 Pod 得到的指标均值的目标值（以数量形式给出）。
+
+      <!--
+      - **metrics.external.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the target value of the metric (as a quantity).
+      -->
+      
+      - **metrics.external.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value 是指标的目标值（以数量形式给出）。
+
+  <!--
+  - **metrics.object** (ObjectMetricSource)
+
+    object refers to a metric describing a single kubernetes object (for example, hits-per-second on an Ingress object).
+  -->
+  
+  - **metrics.object** (ObjectMetricSource)
+
+    object 是指描述单个 Kubernetes 对象的指标（例如，Ingress 对象上的 `hits-per-second`）。
+
+    <a name="ObjectMetricSource"></a>
+  
+    <!--
+    *ObjectMetricSource indicates how to scale on a metric describing a kubernetes object (for example, hits-per-second on an Ingress object).*
+
+    - **metrics.object.describedObject** (CrossVersionObjectReference), required
+    -->
+    
+    **ObjectMetricSource 表示如何根据描述 Kubernetes 对象的指标进行扩缩容（例如，Ingress 对象的 `hits-per-second`）**
+
+    - **metrics.object.describedObject** (CrossVersionObjectReference)，必需
+  
+      <a name="CrossVersionObjectReference"></a>
+    
+      <!--
+      *CrossVersionObjectReference contains enough information to let you identify the referred resource.*
+
+      - **metrics.object.describedObject.kind** (string), required
+
+        Kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds"
+      -->
+      
+      **CrossVersionObjectReference 包含足够的信息来让你识别所引用的资源。**
+
+      - **metrics.object.describedObject.kind** (string)，必需
+
+        被引用对象的类别；更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds"。
+  
+      <!--
+      - **metrics.object.describedObject.name** (string), required
+
+        Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names
+      -->
+      
+      - **metrics.object.describedObject.name** (string)，必需
+      
+        被引用对象的名称；更多信息： https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/names/#names
+  
+      <!--
+      - **metrics.object.describedObject.apiVersion** (string)
+
+        API version of the referent
+      -->
+      
+      - **metrics.object.describedObject.apiVersion** (string)
+      
+        被引用对象的 API 版本。
+      
+    <!--
+    - **metrics.object.metric** (MetricIdentifier), required
+
+      metric identifies the target metric by name and selector
+    -->
+    
+    - **metrics.object.metric** (MetricIdentifier)，必需
+
+      metric 通过名称和选择算符识别目标指标。
+  
+      <a name="MetricIdentifier"></a>
+    
+      <!--
+      *MetricIdentifier defines the name and optionally selector for a metric*
+
+      - **metrics.object.metric.name** (string), required
+
+        name is the name of the given metric
+      -->
+      
+      **MetricIdentifier 定义指标的名称和可选的选择算符**
+
+      - **metrics.object.metric.name** (string)，必需
+
+        name 是给定指标的名称。 
+  
+      <!--
+      - **metrics.object.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.
+      -->
+      
+      - **metrics.object.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector 是给定指标的标准 Kubernetes 标签选择算符的字符串编码形式。
+        设置后，它作为附加参数传递给指标服务器，以获取更具体的指标范围。
+        未设置时，仅 metricName 参数将用于收集指标。
+
+    <!--
+    - **metrics.object.target** (MetricTarget), required
+
+      target specifies the target value for the given metric
+    -->
+    
+    - **metrics.object.target** (MetricTarget)，必需
+
+      target 表示给定指标的目标值。
+  
+      <a name="MetricTarget"></a>
+    
+      <!--
+      *MetricTarget defines the target value, average value, or average utilization of a specific metric*
+
+      - **metrics.object.target.type** (string), required
+
+        type represents whether the metric type is Utilization, Value, or AverageValue
+      -->
+      
+      **MetricTarget 定义特定指标的目标值、平均值或平均利用率**
+
+      - **metrics.object.target.type** (string)，必需
+
+        type 表示指标类别是 `Utilization`、`Value` 或 `AverageValue`。
+  
+      <!--
+      - **metrics.object.target.averageUtilization** (int32)
+
+        averageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods. Currently only valid for Resource metric source type
+      -->
+      
+      - **metrics.object.target.averageUtilization** (int32)
+
+        averageUtilization 是跨所有相关 Pod 得出的资源指标均值的目标值，
+        表示为 Pod 资源请求值的百分比。目前仅对 “Resource” 指标源类别有效。
+  
+      <!--
+      - **metrics.object.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the target value of the average of the metric across all relevant pods (as a quantity)
+      -->
+      
+      - **metrics.object.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue 是跨所有 Pod 得出的指标均值的目标值（以数量形式给出）。
+
+      <!--
+      - **metrics.object.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the target value of the metric (as a quantity).
+      -->
+      
+      - **metrics.object.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value 是指标的目标值（以数量形式给出）。
+
+  <!--
+  - **metrics.pods** (PodsMetricSource)
+
+    pods refers to a metric describing each pod in the current scale target (for example, transactions-processed-per-second).  The values will be averaged together before being compared to the target value.
+  -->
+  
+  - **metrics.pods** (PodsMetricSource)
+
+    pods 是指描述当前扩缩目标中每个 Pod 的指标（例如，`transactions-processed-per-second`）。
+    在与目标值进行比较之前，这些指标值将被平均。
+
+    <a name="PodsMetricSource"></a>
+  
+    <!--
+    *PodsMetricSource indicates how to scale on a metric describing each pod in the current scale target (for example, transactions-processed-per-second). The values will be averaged together before being compared to the target value.*
+
+    - **metrics.pods.metric** (MetricIdentifier), required
+
+      metric identifies the target metric by name and selector
+    -->
+    
+    PodsMetricSource 表示如何根据描述当前扩缩目标中每个 Pod 的指标进行扩缩容（例如，`transactions-processed-per-second`）。
+    在与目标值进行比较之前，这些指标值将被平均。 
+
+    - **metrics.pods.metric** (MetricIdentifier)，必需
+
+      metric 通过名称和选择算符识别目标指标。
+
+      <a name="MetricIdentifier"></a>
+    
+      <!--
+      *MetricIdentifier defines the name and optionally selector for a metric*
+
+      - **metrics.pods.metric.name** (string), required
+
+        name is the name of the given metric
+      -->
+      
+      **MetricIdentifier 定义指标的名称和可选的选择算符**
+
+      - **metrics.pods.metric.name** (string)，必需
+
+        name 是给定指标的名称。
+   
+      <!--
+      - **metrics.pods.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.
+      -->
+      
+      - **metrics.pods.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector 是给定指标的标准 Kubernetes 标签选择算符的字符串编码形式。
+        设置后，它作为附加参数传递给指标服务器，以获取更具体的指标范围。
+        未设置时，仅 metricName 参数将用于收集指标。
+
+    <!--
+    - **metrics.pods.target** (MetricTarget), required
+
+      target specifies the target value for the given metric
+    -->
+    
+    - **metrics.pods.target** (MetricTarget)，必需
+
+      target 表示给定指标的目标值。
+  
+      <a name="MetricTarget"></a>
+    
+      <!--
+      *MetricTarget defines the target value, average value, or average utilization of a specific metric*
+
+      - **metrics.pods.target.type** (string), required
+
+        type represents whether the metric type is Utilization, Value, or AverageValue
+      -->
+      
+      **MetricTarget 定义特定指标的目标值、平均值或平均利用率**
+
+      - **metrics.pods.target.type** (string)，必需
+
+        type 表示指标类别是 `Utilization`、`Value` 或 `AverageValue`。
+  
+      <!--
+      - **metrics.pods.target.averageUtilization** (int32)
+
+        averageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods. Currently only valid for Resource metric source type
+      -->
+      
+      - **metrics.pods.target.averageUtilization** (int32)
+
+        averageUtilization 是跨所有相关 Pod 得出的资源指标均值的目标值，
+        表示为 Pod 资源请求值的百分比。目前仅对 “Resource” 指标源类别有效。
+  
+      <!--
+      - **metrics.pods.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the target value of the average of the metric across all relevant pods (as a quantity)
+      -->
+      
+      - **metrics.pods.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue 是跨所有 Pod 得出的指标均值的目标值（以数量形式给出）。
+
+      <!--
+      - **metrics.pods.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the target value of the metric (as a quantity).
+      -->
+      
+      - **metrics.pods.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value 是指标的目标值（以数量形式给出）。
+
+  <!--
+  - **metrics.resource** (ResourceMetricSource)
+
+    resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source.
+  -->
+  
+  - **metrics.resource** (ResourceMetricSource)
+
+    resource 是指 Kubernetes 已知的资源指标（例如在请求和限制中指定的那些），
+    此结构描述当前扩缩目标中的每个 Pod（例如 CPU 或内存）。此类指标内置于 Kubernetes 中，
+    并且在使用 “Pods” 源的、按 Pod 统计的普通指标之外支持一些特殊的扩缩选项。
+
+    <a name="ResourceMetricSource"></a>
+  
+    <!--
+    *ResourceMetricSource indicates how to scale on a resource metric known to Kubernetes, as specified in requests and limits, describing each pod in the current scale target (e.g. CPU or memory).  The values will be averaged together before being compared to the target.  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source.  Only one "target" type should be set.*
+
+    - **metrics.resource.name** (string), required
+
+      name is the name of the resource in question.
+    -->
+    
+    ResourceMetricSource 指示如何根据请求和限制中指定的 Kubernetes 已知的资源指标进行扩缩容，
+    此结构描述当前扩缩目标中的每个 Pod（例如 CPU 或内存）。在与目标值比较之前，这些指标值将被平均。
+    此类指标内置于 Kubernetes 中，并且在使用 “Pods” 源的、按 Pod 统计的普通指标之外支持一些特殊的扩缩选项。
+    只应设置一种 “target” 类别。
+
+    - **metrics.resource.name** (string)，必需
+
+      name 是相关资源的名称。
+    
+    <!--
+    - **metrics.resource.target** (MetricTarget), required
+
+      target specifies the target value for the given metric
+    -->
+    
+    - **metrics.resource.target** (MetricTarget)，必需
+
+      target 指定给定指标的目标值。
+  
+      <a name="MetricTarget"></a>
+    
+      <!--
+      *MetricTarget defines the target value, average value, or average utilization of a specific metric*
+
+      - **metrics.resource.target.type** (string), required
+
+        type represents whether the metric type is Utilization, Value, or AverageValue
+      -->
+      
+      **MetricTarget 定义特定指标的目标值、平均值或平均利用率**
+
+      - **metrics.resource.target.type** (string)，必需
+
+        type 表示指标类别是 `Utilization`、`Value` 或 `AverageValue`。
+  
+      <!--
+      - **metrics.resource.target.averageUtilization** (int32)
+
+        averageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods. Currently only valid for Resource metric source type
+      -->
+      
+      - **metrics.resource.target.averageUtilization** (int32)
+
+        averageUtilization 是跨所有相关 Pod 得出的资源指标均值的目标值，
+        表示为 Pod 资源请求值的百分比。目前仅对 “Resource” 指标源类别有效。
+  
+      <!--
+      - **metrics.resource.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the target value of the average of the metric across all relevant pods (as a quantity)
+      -->
+      
+      - **metrics.resource.target.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue 是跨所有 Pod 得出的指标均值的目标值（以数量形式给出）。
+
+      <!--
+      - **metrics.resource.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the target value of the metric (as a quantity).
+      -->
+      
+      - **metrics.resource.target.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value 是指标的目标值（以数量形式给出）。
+
+## HorizontalPodAutoscalerStatus {#HorizontalPodAutoscalerStatus}
+
+<!--
+HorizontalPodAutoscalerStatus describes the current status of a horizontal pod autoscaler.
+-->
+HorizontalPodAutoscalerStatus 描述了水平 Pod 自动扩缩器的当前状态。
+
+<hr>
+
+<!--
+- **currentReplicas** (int32), required
+
+  currentReplicas is current number of replicas of pods managed by this autoscaler, as last seen by the autoscaler.
+-->
+
+- **currentReplicas** (int32)，必需
+
+  currentReplicas 是此自动扩缩器管理的 Pod 的当前副本数，如自动扩缩器最后一次看到的那样。
+
+<!--
+- **desiredReplicas** (int32), required
+
+  desiredReplicas is the desired number of replicas of pods managed by this autoscaler, as last calculated by the autoscaler.
+-->
+
+- **desiredReplicas** (int32)，必需
+
+  desiredReplicas 是此自动扩缩器管理的 Pod 的所期望的副本数，由自动扩缩器最后计算。
+
+<!--
+- **conditions** ([]HorizontalPodAutoscalerCondition)
+  
+  conditions is the set of conditions required for this autoscaler to scale its target, and indicates whether or not those conditions are met.
+-->
+
+- **conditions** ([]HorizontalPodAutoscalerCondition)
+
+  conditions 是此自动扩缩器扩缩其目标所需的一组条件，并指示是否满足这些条件。
+
+  <a name="HorizontalPodAutoscalerCondition"></a>
+
+  <!--
+  *HorizontalPodAutoscalerCondition describes the state of a HorizontalPodAutoscaler at a certain point.*
+
+  - **conditions.status** (string), required
+
+    status is the status of the condition (True, False, Unknown)
+  -->
+  
+  **HorizontalPodAutoscalerCondition 描述 HorizontalPodAutoscaler 在某一时间点的状态。**
+
+  - **conditions.status** (string)，必需
+
+    status 是状况的状态（True、False、Unknown）。
+  
+  <!--
+  - **conditions.type** (string), required
+
+    type describes the current condition
+  -->
+  
+  - **conditions.type** (string)，必需
+
+    type 描述当前状况。
+
+  <!--
+  - **conditions.lastTransitionTime** (Time)
+
+    lastTransitionTime is the last time the condition transitioned from one status to another
+  -->
+  
+  - **conditions.lastTransitionTime** (Time)
+
+    lastTransitionTime 是状况最近一次从一种状态转换到另一种状态的时间。
+
+    <a name="Time"></a>
+    <!--
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+    -->
+    
+    **Time 是对 time.Time 的封装。Time 支持对 YAML 和 JSON 进行正确封包。为 time 包的许多函数方法提供了封装器。**  
+  
+  <!--
+  - **conditions.message** (string)
+
+    message is a human-readable explanation containing details about the transition
+  -->
+  
+  - **conditions.message** (string)
+
+    message 是一个包含有关转换的可读的详细信息。
+
+  <!--
+  - **conditions.reason** (string)
+
+    reason is the reason for the condition's last transition.
+  -->
+  
+  - **conditions.reason** (string)
+
+    reason 是状况最后一次转换的原因。
+
+<!--
+- **currentMetrics** ([]MetricStatus)
+  
+  currentMetrics is the last read state of the metrics used by this autoscaler.
+-->
+
+- **currentMetrics** ([]MetricStatus)
+
+  currentMetrics 是此自动扩缩器使用的指标的最后读取状态。
+
+  <a name="MetricStatus"></a>
+
+  <!--
+  *MetricStatus describes the last-read state of a single metric.*
+
+  - **currentMetrics.type** (string), required
+
+    type is the type of metric source.  It will be one of "ContainerResource", "External", "Object", "Pods" or "Resource", each corresponds to a matching field in the object. Note: "ContainerResource" type is available on when the feature-gate HPAContainerMetrics is enabled
+  -->
+  
+  **MetricStatus 描述了单个指标的最后读取状态。**
+
+  - **currentMetrics.type** (string)，必需
+
+    type 是指标源的类别。它取值是 “ContainerResource”、“External”、“Object”、“Pods” 或 “Resource” 之一，
+    每个类别映射到对象中的一个对应的字段。注意：“ContainerResource” 类别在特性门控 HPAContainerMetrics 启用时可用。
+
+  <!--
+  - **currentMetrics.containerResource** (ContainerResourceMetricStatus)
+
+    container resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing a single container in each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source.
+  -->
+  
+  - **currentMetrics.containerResource** (ContainerResourceMetricStatus)
+
+    containerResource 是指 Kubernetes 已知的一种资源指标（例如在请求和限制中指定的那些），
+    描述当前扩缩目标中每个 Pod 中的单个容器（例如 CPU 或内存）。
+    此类指标内置于 Kubernetes 中，并且在使用 "Pods" 源的、按 Pod 统计的普通指标之外支持一些特殊的扩缩选项。
+
+    <a name="ContainerResourceMetricStatus"></a>
+  
+    <!--
+    *ContainerResourceMetricStatus indicates the current value of a resource metric known to Kubernetes, as specified in requests and limits, describing a single container in each pod in the current scale target (e.g. CPU or memory).  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source.*
+
+    - **currentMetrics.containerResource.container** (string), required
+
+      Container is the name of the container in the pods of the scaling target
+    -->
+
+    ContainerResourceMetricStatus 指示如何根据请求和限制中指定的 Kubernetes 已知的资源指标进行扩缩容，
+    此结构描述当前扩缩目标中的每个 Pod（例如 CPU 或内存）。此类指标内置于 Kubernetes 中，
+    并且在使用 “Pods” 源的、按 Pod 统计的普通指标之外支持一些特殊的扩缩选项。
+
+    - **currentMetrics.containerResource.container** (string)，必需
+
+      container 是扩缩目标的 Pod 中的容器名称。
+  
+    <!--
+    - **currentMetrics.containerResource.current** (MetricValueStatus), required
+
+      current contains the current value for the given metric
+    -->
+    
+    - **currentMetrics.containerResource.current** (MetricValueStatus)，必需
+
+      current 包含给定指标的当前值。
+  
+      <a name="MetricValueStatus"></a>
+    
+      <!--
+      *MetricValueStatus holds the current value for a metric*
+
+      - **currentMetrics.containerResource.current.averageUtilization** (int32)
+
+        currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.
+      -->
+      
+      **MetricValueStatus 保存指标的当前值**
+
+      - **currentMetrics.containerResource.current.averageUtilization** (int32)
+
+        averageUtilization 是跨所有相关 Pod 得出的资源指标均值的当前值，表示为 Pod 资源请求值的百分比。
+  
+      <!--
+      - **currentMetrics.containerResource.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the current value of the average of the metric across all relevant pods (as a quantity)
+      -->
+      
+      - **currentMetrics.containerResource.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue 是跨所有相关 Pod 的指标均值的当前值（以数量形式给出）。
+
+      <!--
+      - **currentMetrics.containerResource.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the current value of the metric (as a quantity).
+      -->
+      
+      - **currentMetrics.containerResource.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value 是指标的当前值（以数量形式给出）。
+
+    <!--
+    - **currentMetrics.containerResource.name** (string), required
+
+      Name is the name of the resource in question.
+    -->
+    
+    - **currentMetrics.containerResource.name** (string)，必需
+
+      name 是相关资源的名称。
+  
+  <!--
+  - **currentMetrics.external** (ExternalMetricStatus)
+
+    external refers to a global metric that is not associated with any Kubernetes object. It allows autoscaling based on information coming from components running outside of cluster (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).
+  -->
+  
+  - **currentMetrics.external** (ExternalMetricStatus)
+
+    external 指的是不与任何 Kubernetes 对象关联的全局指标。这一字段允许基于来自集群外部运行的组件
+    （例如云消息服务中的队列长度，或来自集群外部运行的负载均衡器的 QPS）的信息进行自动扩缩。
+
+    <a name="ExternalMetricStatus"></a>
+  
+    <!--
+    *ExternalMetricStatus indicates the current value of a global metric not associated with any Kubernetes object.*
+
+    - **currentMetrics.external.current** (MetricValueStatus), required
+
+      current contains the current value for the given metric
+    -->
+    
+    **ExternalMetricStatus 表示与任何 Kubernetes 对象无关的全局指标的当前值。**
+
+    - **currentMetrics.external.current** (MetricValueStatus)，必需
+
+      current 包含给定指标的当前值。
+  
+      <a name="MetricValueStatus"></a>
+    
+      <!--
+      *MetricValueStatus holds the current value for a metric*
+
+      - **currentMetrics.external.current.averageUtilization** (int32)
+
+        currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.
+      -->
+      
+      **MetricValueStatus 保存指标的当前值**
+
+      - **currentMetrics.external.current.averageUtilization** (int32)
+
+        averageUtilization 是跨所有相关 Pod 得出的资源指标均值的当前值，表示为 Pod 资源请求值的百分比。
+      
+      <!--
+      - **currentMetrics.external.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the current value of the average of the metric across all relevant pods (as a quantity)
+      -->
+      
+      - **currentMetrics.external.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue 是跨所有相关 Pod 的指标均值的当前值（以数量形式给出）。
+
+      <!--
+      - **currentMetrics.external.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the current value of the metric (as a quantity).
+      -->
+      
+      - **currentMetrics.external.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value 是指标的当前值（以数量形式给出）。
+
+    <!--
+    - **currentMetrics.external.metric** (MetricIdentifier), required
+
+      metric identifies the target metric by name and selector
+    -->
+    
+    - **currentMetrics.external.metric** (MetricIdentifier)，必需
+
+      metric 通过名称和选择算符识别目标指标。
+  
+      <a name="MetricIdentifier"></a>
+    
+      <!--
+      *MetricIdentifier defines the name and optionally selector for a metric*
+
+      - **currentMetrics.external.metric.name** (string), required
+
+        name is the name of the given metric
+      -->
+      
+      **MetricIdentifier 定义指标的名称和可选的选择算符**
+
+      - **currentMetrics.external.metric.name** (string)，必需
+
+        name 是给定指标的名称。
+  
+      <!--
+      - **currentMetrics.external.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.
+      -->
+      
+      - **currentMetrics.external.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector 是给定指标的标准 Kubernetes 标签选择算符的字符串编码形式。
+        设置后，它作为附加参数传递给指标服务器，以获取更具体的指标范围。
+        未设置时，仅 metricName 参数将用于收集指标。
+
+  <!--
+  - **currentMetrics.object** (ObjectMetricStatus)
+
+    object refers to a metric describing a single kubernetes object (for example, hits-per-second on an Ingress object).
+  -->
+  
+  - **currentMetrics.object** (ObjectMetricStatus)
+
+    object 是指描述单个 Kubernetes 对象的指标（例如，Ingress 对象的 `hits-per-second`）。
+
+    <a name="ObjectMetricStatus"></a>
+  
+    <!--
+    *ObjectMetricStatus indicates the current value of a metric describing a kubernetes object (for example, hits-per-second on an Ingress object).*
+
+    - **currentMetrics.object.current** (MetricValueStatus), required
+
+      current contains the current value for the given metric
+    -->
+    
+    **ObjectMetricStatus 表示描述 Kubernetes 对象的指标的当前值（例如，Ingress 对象的 `hits-per-second`）。**
+
+    - **currentMetrics.object.current** (MetricValueStatus)，必需
+
+      current 包含给定指标的当前值。
+  
+      <a name="MetricValueStatus"></a>
+    
+      <!--
+      *MetricValueStatus holds the current value for a metric*
+
+      - **currentMetrics.object.current.averageUtilization** (int32)
+
+        currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.
+      -->
+      
+      **MetricValueStatus 保存指标的当前值**
+
+      - **currentMetrics.object.current.averageUtilization** (int32)
+
+        averageUtilization 是跨所有相关 Pod 得出的资源指标均值的当前值，表示为 Pod 资源请求值的百分比。
+  
+      <!--
+      - **currentMetrics.object.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the current value of the average of the metric across all relevant pods (as a quantity)
+      -->
+      
+      - **currentMetrics.object.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue 是跨所有相关 Pod 的指标均值的当前值（以数量形式给出）。
+
+      <!--
+      - **currentMetrics.object.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the current value of the metric (as a quantity).
+      -->
+      
+      - **currentMetrics.object.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value 是指标的当前值（以数量形式给出）。
+
+    <!--
+    - **currentMetrics.object.describedObject** (CrossVersionObjectReference), required
+    -->
+    
+    - **currentMetrics.object.describedObject** (CrossVersionObjectReference)，必需
+  
+      <a name="CrossVersionObjectReference"></a>
+    
+      <!--
+      *CrossVersionObjectReference contains enough information to let you identify the referred resource.*
+
+      - **currentMetrics.object.describedObject.kind** (string), required
+
+        Kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds"
+      -->
+      
+      **CrossVersionObjectReference 包含足够的信息来让你识别所引用的资源。**
+
+      - **currentMetrics.object.describedObject.kind** (string)，必需
+
+        被引用对象的类别；更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds"
+  
+      <!--
+      - **currentMetrics.object.describedObject.name** (string), required
+
+        Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names
+      -->
+      
+      - **currentMetrics.object.describedObject.name** (string)，必需
+
+        被引用对象的名称；更多信息： https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/names/#names
+  
+      <!--
+      - **currentMetrics.object.describedObject.apiVersion** (string)
+
+        API version of the referent
+      -->
+      
+      - **currentMetrics.object.describedObject.apiVersion** (string)
+
+        被引用对象的 API 版本。
+  
+    <!--
+    - **currentMetrics.object.metric** (MetricIdentifier), required
+
+      metric identifies the target metric by name and selector
+    -->
+    
+    - **currentMetrics.object.metric** (MetricIdentifier)，必需
+
+      metric 通过名称和选择算符识别目标指标。
+  
+      <a name="MetricIdentifier"></a>
+    
+      <!--
+      *MetricIdentifier defines the name and optionally selector for a metric*
+
+      - **currentMetrics.object.metric.name** (string), required
+
+        name is the name of the given metric
+      -->
+      
+      **MetricIdentifier 定义指标的名称和可选的选择算符**
+
+      - **currentMetrics.object.metric.name** (string)，必需
+
+        name 是给定指标的名称。
+
+      <!--  
+      - **currentMetrics.object.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.
+      -->
+      
+      - **currentMetrics.object.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector 是给定指标的标准 Kubernetes 标签选择算符的字符串编码形式。
+        设置后，它作为附加参数传递给指标服务器，以获取更具体的指标范围。
+        未设置时，仅 metricName 参数将用于收集指标。
+
+  <!--
+  - **currentMetrics.pods** (PodsMetricStatus)
+
+    pods refers to a metric describing each pod in the current scale target (for example, transactions-processed-per-second).  The values will be averaged together before being compared to the target value.
+  -->
+  
+  - **currentMetrics.pods** (PodsMetricStatus)
+
+    pods 是指描述当前扩缩目标中每个 Pod 的指标（例如，`transactions-processed-per-second`）。
+    在与目标值进行比较之前，这些指标值将被平均。
+
+    <a name="PodsMetricStatus"></a>
+  
+    <!--
+    *PodsMetricStatus indicates the current value of a metric describing each pod in the current scale target (for example, transactions-processed-per-second).*
+
+    - **currentMetrics.pods.current** (MetricValueStatus), required
+
+      current contains the current value for the given metric
+    -->
+    
+    **PodsMetricStatus 表示描述当前扩缩目标中每个 Pod 的指标的当前值（例如，`transactions-processed-per-second`）。**
+
+    - **currentMetrics.pods.current** (MetricValueStatus)，必需
+
+      current 包含给定指标的当前值。
+  
+      <a name="MetricValueStatus"></a>
+    
+      <!--
+      *MetricValueStatus holds the current value for a metric*
+
+      - **currentMetrics.pods.current.averageUtilization** (int32)
+
+        currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.
+      -->
+      
+      **MetricValueStatus 保存指标的当前值**
+
+      - **currentMetrics.pods.current.averageUtilization** (int32)
+
+        averageUtilization 是跨所有相关 Pod 得出的资源指标均值的当前值，表示为 Pod 资源请求值的百分比。
+  
+      <!--
+      - **currentMetrics.pods.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the current value of the average of the metric across all relevant pods (as a quantity)
+      -->
+      
+      - **currentMetrics.pods.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue 是跨所有相关 Pod 的指标均值的当前值（以数量形式给出）。
+
+      <!--
+      - **currentMetrics.pods.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the current value of the metric (as a quantity).
+      -->
+      
+      - **currentMetrics.pods.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value 是指标的当前值（以数量形式给出）。
+    
+    <!--
+    - **currentMetrics.pods.metric** (MetricIdentifier), required
+
+      metric identifies the target metric by name and selector
+    -->
+    
+    - **currentMetrics.pods.metric** (MetricIdentifier)，必需
+
+      metric 通过名称和选择算符识别目标指标。
+  
+      <a name="MetricIdentifier"></a>
+    
+      <!--
+      *MetricIdentifier defines the name and optionally selector for a metric*
+
+      - **currentMetrics.pods.metric.name** (string), required
+
+        name is the name of the given metric
+      -->
+      
+      **MetricIdentifier 定义指标的名称和可选的选择算符**
+
+      - **currentMetrics.pods.metric.name** (string)，必需
+
+        name 是给定指标的名称。
+  
+      <!--
+      - **currentMetrics.pods.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.
+      -->
+      
+      - **currentMetrics.pods.metric.selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+        selector 是给定指标的标准 Kubernetes 标签选择算符的字符串编码形式。
+        设置后，它作为附加参数传递给指标服务器，以获取更具体的指标范围。
+        未设置时，仅 metricName 参数将用于收集指标。
+
+  <!--
+  - **currentMetrics.resource** (ResourceMetricStatus)
+
+    resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source.
+  -->
+  
+  - **currentMetrics.resource** (ResourceMetricStatus)
+
+    resource 是指 Kubernetes 已知的资源指标（例如在请求和限制中指定的那些），
+    此结构描述当前扩缩目标中的每个 Pod（例如 CPU 或内存）。此类指标内置于 Kubernetes 中，
+    并且在使用 “Pods” 源的、按 Pod 统计的普通指标之外支持一些特殊的扩缩选项。
+
+    <a name="ResourceMetricStatus"></a>
+  
+    <!--
+    *ResourceMetricStatus indicates the current value of a resource metric known to Kubernetes, as specified in requests and limits, describing each pod in the current scale target (e.g. CPU or memory).  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the "pods" source.*
+
+    - **currentMetrics.resource.current** (MetricValueStatus), required
+
+      current contains the current value for the given metric
+    -->
+    
+    ResourceMetricSource 指示如何根据请求和限制中指定的 Kubernetes 已知的资源指标进行扩缩容，
+    此结构描述当前扩缩目标中的每个 Pod（例如 CPU 或内存）。在与目标值比较之前，这些指标值将被平均。
+    此类指标内置于 Kubernetes 中，并且在使用 “Pods” 源的、按 Pod 统计的普通指标之外支持一些特殊的扩缩选项。
+
+    - **currentMetrics.resource.current** (MetricValueStatus)，必需
+
+      current 包含给定指标的当前值。
+  
+      <a name="MetricValueStatus"></a>
+    
+      <!--
+      *MetricValueStatus holds the current value for a metric*
+
+      - **currentMetrics.resource.current.averageUtilization** (int32)
+
+        currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.
+      -->
+      
+      **MetricValueStatus 保存指标的当前值**
+
+      - **currentMetrics.resource.current.averageUtilization** (int32)
+
+        averageUtilization 是跨所有相关 Pod 得出的资源指标均值的当前值，
+        表示为 Pod 资源请求值的百分比。
+  
+      <!--
+      - **currentMetrics.resource.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue is the current value of the average of the metric across all relevant pods (as a quantity)
+      -->
+      
+      - **currentMetrics.resource.current.averageValue** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        averageValue 是跨所有相关 Pod 的指标均值的当前值（以数量形式给出）。
+
+      <!--
+      - **currentMetrics.resource.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value is the current value of the metric (as a quantity).
+      -->
+      
+      - **currentMetrics.resource.current.value** (<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+        value 是指标的当前值（以数量形式给出）。
+
+    <!--
+    - **currentMetrics.resource.name** (string), required
+
+      Name is the name of the resource in question.
+    -->
+    
+    - **currentMetrics.resource.name** (string)，必需
+
+      name 是相关资源的名称。
+
+<!--
+- **lastScaleTime** (Time)
+
+  lastScaleTime is the last time the HorizontalPodAutoscaler scaled the number of pods, used by the autoscaler to control how often the number of pods is changed.
+-->
+
+- **lastScaleTime** (Time)
+
+  lastScaleTime 是 HorizontalPodAutoscaler 上次扩缩 Pod 数量的时间，自动扩缩器使用它来控制更改 Pod 数量的频率。
+
+  <a name="Time"></a>
+
+  <!--
+  *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+  -->
+  
+  **Time 是对 time.Time 的封装。Time 支持对 YAML 和 JSON 进行正确封包。为 time 包的许多函数方法提供了封装器。**
+
+<!--
+- **observedGeneration** (int64)
+
+  observedGeneration is the most recent generation observed by this autoscaler.
+-->
+
+- **observedGeneration** (int64)
+
+  observedGeneration 是此自动扩缩器观察到的最新一代。
+
+## HorizontalPodAutoscalerList {#HorizontalPodAutoscalerList}
+
+<!--
+HorizontalPodAutoscalerList is a list of horizontal pod autoscaler objects.
+-->
+HorizontalPodAutoscalerList 是水平 Pod 自动扩缩器对象列表。
+
+<hr>
+
+- **apiVersion**: autoscaling/v2beta2
+
+- **kind**: HorizontalPodAutoscalerList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  metadata is the standard list metadata.
+-->
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  metadata 是标准的列表元数据。
+
+<!--
+- **items** ([]<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2beta2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>), required
+
+  items is the list of horizontal pod autoscaler objects.
+-->
+
+- **items** ([]<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2beta2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>)，必需
+
+  items 是水平 Pod 自动扩缩器对象的列表。
+
+## Operations {#Operations}
+
+<hr>
+
+<!--
+### `get` read the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+-->
+### `get` 读取指定的 HorizontalPodAutoscaler
+
+#### HTTP 请求
+
+GET /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{name}
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+-->
+#### 参数
+
+- **name** （**路径参数**）: string，必需
+
+  HorizontalPodAutoscaler 的名称。
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2beta2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+401: Unauthorized
+
+<!--
+### `get` read status of the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+-->
+### `get` 读取指定 HorizontalPodAutoscaler 的状态
+
+#### HTTP 请求
+
+GET /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{name}/status
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+-->
+#### 参数
+
+- **name** （**路径参数**）: string，必需
+
+  HorizontalPodAutoscaler 的名称。
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2beta2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind HorizontalPodAutoscaler
+
+#### HTTP Request
+-->
+### `list` 列出或观察 HorizontalPodAutoscaler 类别的对象
+
+#### HTTP 请求
+
+GET /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers
+
+<!--
+#### Parameters
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+#### 参数
+
+- **namespace** （**路径参数**）: string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **allowWatchBookmarks** <!--(*in query*)-->（**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** <!--(*in query*)-->（**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** <!--(*in query*)-->（**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** <!--(*in query*)-->（**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2beta2#HorizontalPodAutoscalerList" >}}">HorizontalPodAutoscalerList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind HorizontalPodAutoscaler
+
+#### HTTP Request
+-->
+### `list` 列出或观察 HorizontalPodAutoscaler 类别的对象
+
+#### HTTP 请求
+
+GET /apis/autoscaling/v2beta2/horizontalpodautoscalers
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+- **allowWatchBookmarks** <!--(*in query*)-->（**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** <!--(*in query*)-->（**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** <!--(*in query*)-->（**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** <!--(*in query*)-->（**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2beta2#HorizontalPodAutoscalerList" >}}">HorizontalPodAutoscalerList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a HorizontalPodAutoscaler
+
+#### HTTP Request
+-->
+### `create` 创建一个 HorizontalPodAutoscaler
+
+#### HTTP 请求
+
+POST /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers
+
+<!--
+#### Parameters
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+#### 参数
+
+- **namespace** （**路径参数**）: string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2beta2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>，<!--required-->必需
+
+- **dryRun** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2beta2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2beta2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+202 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2beta2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+-->
+### `update` 替换指定的 HorizontalPodAutoscaler
+
+#### HTTP 请求
+
+PUT /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{name}
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+-->
+#### 参数
+
+- **name** （**路径参数**）: string，必需
+
+  HorizontalPodAutoscaler 的名称。
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2beta2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>，<!--required-->必需
+
+- **dryRun** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2beta2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2beta2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+401: Unauthorized
+
+<!--
+### `update` replace status of the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+-->
+### `update` 替换指定 HorizontalPodAutoscaler 的状态
+
+#### HTTP 请求
+
+PUT /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{name}/status
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+-->
+#### 参数
+
+- **name** （**路径参数**）: string，必需
+
+  HorizontalPodAutoscaler 的名称。
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2beta2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>，<!--required-->必需
+
+- **dryRun** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2beta2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2beta2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 HorizontalPodAutoscaler
+
+#### HTTP 请求
+
+PATCH /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{name}
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+-->
+#### 参数
+
+- **name** （**路径参数**）: string，必需
+
+  HorizontalPodAutoscaler 的名称。
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，<!--required-->必需
+
+- **dryRun** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** <!--(*in query*)-->（**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2beta2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2beta2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update status of the specified HorizontalPodAutoscaler
+
+#### HTTP Request
+-->
+### `patch` 部分更新指定 HorizontalPodAutoscaler 的状态
+
+#### HTTP 请求
+
+PATCH /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{name}/status
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+-->
+#### 参数
+
+- **name** （**路径参数**）: string，必需
+
+  HorizontalPodAutoscaler 的名称。
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，<!--required-->必需
+
+- **dryRun** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** <!--(*in query*)-->（**查询参数**）: boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2beta2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/horizontal-pod-autoscaler-v2beta2#HorizontalPodAutoscaler" >}}">HorizontalPodAutoscaler</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a HorizontalPodAutoscaler
+
+#### HTTP Request
+-->
+### `delete` 删除一个 HorizontalPodAutoscaler
+
+#### HTTP 请求
+
+DELETE /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{name}
+
+<!--
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the HorizontalPodAutoscaler
+-->
+#### 参数
+
+- **name** （**路径参数**）: string，必需
+
+  HorizontalPodAutoscaler 的名称。
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+- **namespace** （**路径参数**）: string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** <!--(*in query*)-->（**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of HorizontalPodAutoscaler
+
+#### HTTP Request
+-->
+### `deletecollection` 删除 HorizontalPodAutoscaler 的集合
+
+#### HTTP 请求
+
+DELETE /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers
+
+<!--
+#### Parameters
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+#### 参数
+
+- **namespace** （**路径参数**）: string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** <!--(*in query*)-->（**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** <!--(*in query*)-->（**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** <!--(*in query*)-->（**查询参数**）: string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** <!--(*in query*)-->（**查询参数**）: integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/workload-resources/job-v1.md b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/job-v1.md
new file mode 100644
index 0000000000..e13f9909be
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/job-v1.md
@@ -0,0 +1,1668 @@
+---
+api_metadata:
+apiVersion: "batch/v1"
+import: "k8s.io/api/batch/v1"
+kind: "Job"
+content_type: "api_reference"
+description: "Job 表示单个作业的配置。"
+title: "Job"
+weight: 9
+---
+
+<!--
+api_metadata:
+apiVersion: "batch/v1"
+import: "k8s.io/api/batch/v1"
+kind: "Job"
+content_type: "api_reference"
+description: "Job represents the configuration of a single job."
+title: "Job"
+weight: 9
+auto_generated: true
+-->
+
+`apiVersion: batch/v1`
+
+`import "k8s.io/api/batch/v1"`
+
+## Job {#Job}
+
+<!--
+Job represents the configuration of a single job.
+-->
+Job 表示单个作业的配置。
+
+<hr>
+
+- **apiVersion**: batch/v1
+
+
+- **kind**: Job
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  标准的对象元数据。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+<!--
+- **spec** (<a href="{{< ref "../workload-resources/job-v1#JobSpec" >}}">JobSpec</a>)
+
+  Specification of the desired behavior of a job. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+-->
+- **spec** (<a href="{{< ref "../workload-resources/job-v1#JobSpec" >}}">JobSpec</a>)
+
+  作业的预期行为的规约。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+<!--
+- **status** (<a href="{{< ref "../workload-resources/job-v1#JobStatus" >}}">JobStatus</a>)
+
+  Current status of a job. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+-->
+- **status** (<a href="{{< ref "../workload-resources/job-v1#JobStatus" >}}">JobStatus</a>)
+
+  作业的当前状态。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+
+## JobSpec {#JobSpec}
+
+<!--
+JobSpec describes how the job execution will look like.
+-->
+JobSpec 描述了作业执行的情况。
+
+<hr>
+
+### Replicas
+
+
+<!--
+- **template** (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplateSpec" >}}">PodTemplateSpec</a>), required
+
+  Describes the pod that will be created when executing a job. More info: https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/
+
+- **parallelism** (int32)
+
+  Specifies the maximum desired number of pods the job should run at any given time. The actual number of pods running in steady state will be less than this number when ((.spec.completions - .status.successful) \< .spec.parallelism), i.e. when the work left to do is less than max parallelism. More info: https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/
+-->
+- **template** (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplateSpec" >}}">PodTemplateSpec</a>), 必需
+
+  描述执行作业时将创建的 Pod。更多信息： https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/
+
+- **parallelism** (int32)
+
+  指定作业应在任何给定时刻预期运行的 Pod 个数上限。
+  当(.spec.completions - .status.successful) \< .spec.parallelism 时，
+  即当剩余的工作小于最大并行度时，在稳定状态下运行的 Pod 的实际数量将小于此数量。
+  更多信息： https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/
+
+### Lifecycle
+
+
+<!--
+- **completions** (int32)
+
+  Specifies the desired number of successfully finished pods the job should be run with.  Setting to nil means that the success of any pod signals the success of all pods, and allows parallelism to have any positive value.  Setting to 1 means that parallelism is limited to 1 and the success of that pod signals the success of the job. More info: https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/
+-->
+- **completions** (int32)
+
+  指定作业应该运行并预期成功完成的 Pod 个数。设置为 nil 意味着任何 Pod 的成功都标识着所有 Pod 的成功，
+  并允许 parallelism 设置为任何正值。设置为 1 意味着并行性被限制为 1，并且该 Pod 的成功标志着作业的成功。更多信息：
+  https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/
+
+<!--
+- **completionMode** (string)
+
+  CompletionMode specifies how Pod completions are tracked. It can be `NonIndexed` (default) or `Indexed`.
+
+  `NonIndexed` means that the Job is considered complete when there have been .spec.completions successfully completed Pods. Each Pod completion is homologous to each other.
+-->
+- **completionMode** (string)
+
+  completionMode 指定如何跟踪 Pod 完成情况。它可以是 `NonIndexed` （默认） 或者 `Indexed`。
+
+  `NonIndexed` 表示当有 `.spec.completions` 个成功完成的 Pod 时，认为 Job 完成。每个 Pod 完成都是彼此同源的。
+
+  <!--
+  `Indexed` means that the Pods of a Job get an associated completion index from 0 to (.spec.completions - 1), available in the annotation batch.kubernetes.io/job-completion-index. The Job is considered complete when there is one successfully completed Pod for each index. When value is `Indexed`, .spec.completions must be specified and `.spec.parallelism` must be less than or equal to 10^5. In addition, The Pod name takes the form `$(job-name)-$(index)-$(random-string)`, the Pod hostname takes the form `$(job-name)-$(index)`.
+  -->
+  `Indexed` 意味着 Job 的各个 Pod 会获得对应的完成索引值，从 0 到（`.spec.completions - 1`），可在注解
+"batch.kubernetes.io/job-completion-index" 中找到。当每个索引都对应有一个成功完成的 Pod 时，
+该作业被认为是完成的。
+当值为 `Indexed` 时，必须指定 `.spec.completions` 并且 `.spec.parallelism` 必须小于或等于 10^5。
+此外，Pod 名称采用 `$(job-name)-$(index)-$(random-string)` 的形式，Pod 主机名采用
+`$(job-name)-$(index)` 的形式。
+
+  <!--
+  More completion modes can be added in the future. If the Job controller observes a mode that it doesn't recognize, which is possible during upgrades due to version skew, the controller skips updates for the Job.
+  -->
+  将来可能添加更多的完成模式。如果 Job 控制器发现它无法识别的模式
+  （这种情况在升级期间由于版本偏差可能发生），则控制器会跳过 Job 的更新。
+
+<!--
+- **backoffLimit** (int32)
+
+  Specifies the number of retries before marking this job failed. Defaults to 6
+
+- **activeDeadlineSeconds** (int64)
+
+  Specifies the duration in seconds relative to the startTime that the job may be continuously active before the system tries to terminate it; value must be positive integer. If a Job is suspended (at creation or through an update), this timer will effectively be stopped and reset when the Job is resumed again.
+-->
+- **backoffLimit** (int32)
+
+  指定标记此作业失败之前的重试次数。默认值为 6。
+
+- **activeDeadlineSeconds** (int64)
+
+  系统尝试终止作业之前作业可以持续活跃的持续时间（秒），时间长度是相对于 startTime 的；
+  字段值必须为正整数。如果作业被挂起（在创建期间或因更新而挂起），
+  则当作业再次恢复时，此计时器会被停止并重置。
+
+<!--
+- **ttlSecondsAfterFinished** (int32)
+
+  ttlSecondsAfterFinished limits the lifetime of a Job that has finished execution (either Complete or Failed). If this field is set, ttlSecondsAfterFinished after the Job finishes, it is eligible to be automatically deleted. When the Job is being deleted, its lifecycle guarantees (e.g. finalizers) will be honored. If this field is unset, the Job won't be automatically deleted. If this field is set to zero, the Job becomes eligible to be deleted immediately after it finishes.
+-->
+- **ttlSecondsAfterFinished** (int32)
+
+  ttlSecondsAfterFinished 限制已完成执行（完成或失败）的作业的生命周期。如果设置了这个字段，
+  在 Job 完成 ttlSecondsAfterFinished 秒之后，就可以被自动删除。
+  当 Job 被删除时，它的生命周期保证（例如终结器）会被考察。
+  如果未设置此字段，则作业不会被自动删除。如果此字段设置为零，则作业在完成后即可立即删除。
+
+<!--
+- **suspend** (boolean)
+
+  Suspend specifies whether the Job controller should create Pods or not. If a Job is created with suspend set to true, no Pods are created by the Job controller. If a Job is suspended after creation (i.e. the flag goes from false to true), the Job controller will delete all active Pods associated with this Job. Users must design their workload to gracefully handle this. Suspending a Job will reset the StartTime field of the Job, effectively resetting the ActiveDeadlineSeconds timer too. Defaults to false.
+-->
+- **suspend** (boolean)
+
+  suspend 指定 Job 控制器是否应该创建 Pod。如果创建 Job 时将 suspend 设置为 true，则 Job 控制器不会创建任何 Pod。
+  如果 Job 在创建后被挂起（即标志从 false 变为 true），则 Job 控制器将删除与该 Job 关联的所有活动 Pod。
+  用户必须设计他们的工作负载来优雅地处理这个问题。暂停 Job 将重置 Job 的 startTime 字段，
+  也会重置 ActiveDeadlineSeconds 计时器。默认为 false。
+
+### Selector
+
+
+<!--
+- **selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+  A label query over pods that should match the pod count. Normally, the system sets this field for you. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors
+
+- **manualSelector** (boolean)
+
+  manualSelector controls generation of pod labels and pod selectors. Leave `manualSelector` unset unless you are certain what you are doing. When false or unset, the system pick labels unique to this job and appends those labels to the pod template.  When true, the user is responsible for picking unique labels and specifying the selector.  Failure to pick a unique label may cause this and other jobs to not function correctly.  However, You may see `manualSelector=true` in jobs that were created with the old `extensions/v1beta1` API. More info: https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/#specifying-your-own-pod-selector
+-->
+- **selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+  对应与 Pod 计数匹配的 Pod 的标签查询。通常，系统会为你设置此字段。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/labels/#label-selectors
+
+- **manualSelector** (boolean)
+
+  manualSelector 控制 Pod 标签和 Pod 选择器的生成。除非你确定你在做什么，否则不要设置 `manualSelector`。
+  当此字段为 false 或未设置时，系统会选择此 Pod 唯一的标签并将这些标签附加到 Pod 模板。
+  当此字段为 true 时，用户负责选择唯一标签并指定选择器。
+  未能选择唯一标签可能会导致此作业和其他作业无法正常运行。
+  但是，你可能会在使用旧的 `extensions/v1beta1` API 创建的作业中看到 `manualSelector=true`。
+  更多信息： https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/#specifying-your-own-pod-selector
+
+## JobStatus {#JobStatus}
+
+
+<!--
+JobStatus represents the current state of a Job.
+-->
+JobStatus 表示 Job 的当前状态。
+
+<hr>
+
+<!--
+- **startTime** (Time)
+
+  Represents time when the job controller started processing a job. When a Job is created in the suspended state, this field is not set until the first time it is resumed. This field is reset every time a Job is resumed from suspension. It is represented in RFC3339 form and is in UTC.
+
+  <a name="Time"></a>
+  *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+-->
+- **startTime** (Time)
+
+  表示作业控制器开始处理作业的时间。在挂起状态下创建 Job 时，直到第一次恢复时才会设置此字段。
+  每次从暂停中恢复作业时都会重置此字段。它表示为 RFC3339 格式的 UTC 时间。
+
+
+  **Time 是 time.Time 的包装器，支持正确编码为 YAML 和 JSON。time 包提供的许多工厂方法都提供了包装器。**
+
+<!--
+- **completionTime** (Time)
+
+  Represents time when the job was completed. It is not guaranteed to be set in happens-before order across separate operations. It is represented in RFC3339 form and is in UTC. The completion time is only set when the job finishes successfully.
+
+  <a name="Time"></a>
+  *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+-->
+- **completionTime** (Time)
+
+  表示作业完成的时间。不能保证对多个独立操作按发生的先后顺序设置。此字段表示为 RFC3339 格式的 UTC 时间。
+  仅当作业成功完成时才设置完成时间。
+
+  **Time 是 time.Time 的包装器，支持正确编码为 YAML 和 JSON。time 包提供的许多工厂方法都提供了包装器。**
+
+<!--
+- **active** (int32)
+
+  The number of pending and running pods.
+
+- **failed** (int32)
+
+  The number of pods which reached phase Failed.
+
+- **succeeded** (int32)
+
+  The number of pods which reached phase Succeeded.
+-->
+- **active** (int32)
+
+  待处理和正在运行的 Pod 的数量。
+
+- **failed** (int32)
+
+  进入 Failed 阶段的 Pod 数量。
+
+- **succeeded** (int32)
+
+  进入 Succeeded 阶段的 Pod 数量。
+<!--
+- **completedIndexes** (string)
+
+  CompletedIndexes holds the completed indexes when .spec.completionMode = "Indexed" in a text format. The indexes are represented as decimal integers separated by commas. The numbers are listed in increasing order. Three or more consecutive numbers are compressed and represented by the first and last element of the series, separated by a hyphen. For example, if the completed indexes are 1, 3, 4, 5 and 7, they are represented as "1,3-5,7".
+-->
+- **completedIndexes** (string)
+
+  completedIndexes 以文本格式保存 `.spec.completionMode` 设置为 `"Indexed"` 的 Pod 已完成的索引。
+  索引用十进制整数表示，用逗号分隔。数字是按递增的顺序排列的。三个或更多的连续数字被压缩，
+  用系列的第一个和最后一个元素表示，用连字符分开。例如，如果完成的索引是 1、3、4、5 和 7，则表示为 "1、3-5、7"。
+
+<!--
+- **conditions** ([]JobCondition)
+
+  *Patch strategy: merge on key `type`*
+
+  *Atomic: will be replaced during a merge*
+
+  The latest available observations of an object's current state. When a Job fails, one of the conditions will have type "Failed" and status true. When a Job is suspended, one of the conditions will have type "Suspended" and status true; when the Job is resumed, the status of this condition will become false. When a Job is completed, one of the conditions will have type "Complete" and status true. More info: https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/
+
+  <a name="JobCondition"></a>
+  *JobCondition describes current state of a job.*
+-->
+- **conditions** ([]JobCondition)
+
+  **补丁策略：根据 `type` 键合并**
+
+  **原子：在合并过程中，将被替换。**
+
+  对象当前状态的最新可用观察结果。当作业失败时，其中一个状况的类型为 “Failed”，状态为 true。
+  当作业被暂停时，其中一个状况的类型为 “Suspended”，状态为true；当作业被恢复时，该状况的状态将变为 false。
+  作业完成时，其中一个状况的类型为 "Complete"，状态为 true。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/workloads/controllers/jobs-run-to-completion/
+
+  <a name="JobCondition"></a>
+  **JobCondition 描述作业的当前状况。**
+
+  <!--
+  - **conditions.status** (string), required
+
+    Status of the condition, one of True, False, Unknown.
+
+  - **conditions.type** (string), required
+
+    Type of job condition, Complete or Failed.
+
+  - **conditions.lastProbeTime** (Time)
+
+    Last time the condition was checked.
+  -->
+
+  - **conditions.status** (string), 必需
+
+    状况的状态，True、False、Unknown 之一。
+
+  - **conditions.type** (string), 必需
+
+    作业状况的类型，Completed 或 Failed。
+
+  - **conditions.lastProbeTime** (Time)
+
+    最后一次探测的时间。
+
+    <!--
+    <a name="Time"></a>
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+    -->
+    
+    **Time 是对 time.Time 的封装，支持正确编码为 YAML 和 JSON。我们为 time 包提供的许多工厂方法提供了封装器。**
+
+  <!--
+  - **conditions.lastTransitionTime** (Time)
+
+    Last time the condition transit from one status to another.
+  -->
+
+  - **conditions.lastTransitionTime** (Time)
+
+    上一次从一种状况转换到另一种状况的时间。
+
+    <!--
+    <a name="Time"></a>
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+    -->
+
+    **Time 是 time.Time 的包装器，支持正确编码为 YAML 和 JSON。time 包提供的许多工厂方法都提供了包装器。**
+
+  <!--
+  - **conditions.message** (string)
+
+    Human readable message indicating details about last transition.
+
+  - **conditions.reason** (string)
+
+    (brief) reason for the condition's last transition. 
+  -->
+
+  - **conditions.message** (string)
+
+    表示上次转换信息的人类可读消息。
+
+  - **conditions.reason** (string)
+
+    状况最后一次转换的（简要）原因
+
+<!--
+- **uncountedTerminatedPods** (UncountedTerminatedPods)
+
+  UncountedTerminatedPods holds the UIDs of Pods that have terminated but the job controller hasn't yet accounted for in the status counters.
+
+  The job controller creates pods with a finalizer. When a pod terminates (succeeded or failed), the controller does three steps to account for it in the job status: (1) Add the pod UID to the arrays in this field. (2) Remove the pod finalizer. (3) Remove the pod UID from the arrays while increasing the corresponding
+  counter.
+-->
+
+- **uncountedTerminatedPods** (UncountedTerminatedPods)
+
+  UncountedTerminatedPods 保存已终止但尚未被作业控制器纳入状态计数器中的 Pod 的 UID 的集合。
+
+  作业控制器所创建 Pod 带有终结器。当 Pod 终止（成功或失败）时，控制器将执行三个步骤以在作业状态中对其进行说明：
+  （1）将 Pod UID 添加到此字段的列表中。（2）去掉 Pod 中的终结器。（3）从数组中删除 Pod UID，同时为相应的计数器加一。
+
+  <!--
+  This field is beta-level. The job controller only makes use of this field when the feature gate JobTrackingWithFinalizers is enabled (enabled by default). Old jobs might not be tracked using this field, in which case the field remains null.
+
+  <a name="UncountedTerminatedPods"></a>
+  *UncountedTerminatedPods holds UIDs of Pods that have terminated but haven't been accounted in Job status counters.*
+  -->
+  此字段为 Beta 级别。作业控制器仅在启用特性门控 JobTrackingWithFinalizers 时使用此字段（默认启用）。
+  使用此字段可能无法跟踪旧作业，在这种情况下，该字段保持为空。
+
+  <a name="UncountedTerminatedPods"></a>
+  **UncountedTerminatedPods 持有已经终止的 Pod 的 UID，但还没有被计入工作状态计数器中。**
+
+  <!--
+  - **uncountedTerminatedPods.failed** ([]string)
+
+    *Set: unique values will be kept during a merge*
+
+    Failed holds UIDs of failed Pods.
+  -->
+
+  - **uncountedTerminatedPods.failed** ([]string)
+
+    **Set: 在合并过程中，唯一的值将被保留**
+
+    failed 字段包含已失败 Pod 的 UID。
+
+  <!--
+  - **uncountedTerminatedPods.succeeded** ([]string)
+
+    *Set: unique values will be kept during a merge*
+
+    Succeeded holds UIDs of succeeded Pods.
+  -->
+
+  - **uncountedTerminatedPods.succeeded** ([]string)
+
+    **Set: 在合并过程中，唯一的值将被保留**
+
+    succeeded 包含已成功的 Pod 的 UID。
+
+<!--
+### Alpha level
+-->
+
+
+### Alpha 级别
+
+<!--
+- **ready** (int32)
+
+  The number of pods which have a Ready condition.
+
+  This field is beta-level. The job controller populates the field when the feature gate JobReadyPods is enabled (enabled by default).
+-->
+
+- **ready** (int32)
+
+  状况为 Ready 的 Pod 数量。
+
+  此字段为 Beta 级别。当特性门控 JobReadyPods 启用（默认启用）时，作业控制器会填充该字段。
+
+## JobList {#JobList}
+
+<!--
+JobList is a collection of jobs.
+-->
+JobList 是 Job 的集合。
+
+<hr>
+
+- **apiVersion**: batch/v1
+
+
+- **kind**: JobList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **items** ([]<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>), required
+
+  items is the list of Jobs.
+-->
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  标准列表元数据。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+
+- **items** ([]<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>), required
+
+  items 是 Job 对象的列表。
+
+<!--
+## Operations {#Operations}
+-->
+
+## 操作 {#Operations}
+
+<hr>
+
+<!--
+### `get` read the specified Job
+
+#### HTTP Request
+
+GET /apis/batch/v1/namespaces/{namespace}/jobs/{name}
+
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the Job
+-->
+### `get` 读取指定的 Job
+
+#### HTTP 请求
+
+GET /apis/batch/v1/namespaces/{namespace}/jobs/{name}
+
+#### 参数
+
+- **name** (**路径参数**)：string，必需
+
+  Job 的名字。
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): OK
+
+401: Unauthorized
+
+
+### `get` read status of the specified Job
+
+#### HTTP Request
+
+GET /apis/batch/v1/namespaces/{namespace}/jobs/{name}/status
+
+#### Parameters
+-->
+
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): OK
+
+401: Unauthorized
+
+### `get` 读取指定作业的状态
+
+#### HTTP 请求
+
+GET /apis/batch/v1/namespaces/{namespace}/jobs/{name}/status
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Job
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **name** (**路径参数**): string, 必需
+
+  Job 的名称。
+
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): OK
+
+401: Unauthorized
+
+
+### `list` list or watch objects of kind Job
+
+#### HTTP Request
+
+GET /apis/batch/v1/namespaces/{namespace}/jobs
+
+#### Parameters
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): OK
+
+401: Unauthorized
+
+### `list` 列举或监测 Job 类别的对象
+
+#### HTTP 请求
+
+GET /apis/batch/v1/namespaces/{namespace}/jobs
+
+#### 参数
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+-->
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+-->
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+-->
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/job-v1#JobList" >}}">JobList</a>): OK
+
+401: Unauthorized
+
+
+### `list` list or watch objects of kind Job
+
+#### HTTP Request
+
+GET /apis/batch/v1/jobs
+
+#### Parameters
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/job-v1#JobList" >}}">JobList</a>): OK
+
+401: Unauthorized
+
+### `list` 列举或监测 Job 类别的对象
+
+#### HTTP 请求
+
+GET /apis/batch/v1/jobs
+
+#### 参数
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+-->
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+-->
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+-->
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/job-v1#JobList" >}}">JobList</a>): OK
+
+401: Unauthorized
+
+
+### `create` create a Job
+
+#### HTTP Request
+
+POST /apis/batch/v1/namespaces/{namespace}/jobs
+
+#### Parameters
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>, required
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/job-v1#JobList" >}}">JobList</a>): OK
+
+401: Unauthorized
+
+### `create` 创建一个 Job
+
+#### HTTP 请求
+
+POST /apis/batch/v1/namespaces/{namespace}/jobs
+
+#### 参数
+
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>, 必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): Created
+
+202 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): Accepted
+
+401: Unauthorized
+
+
+### `update` replace the specified Job
+
+#### HTTP Request
+
+PUT /apis/batch/v1/namespaces/{namespace}/jobs/{name}
+
+#### Parameters
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): Created
+
+202 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): Accepted
+
+401: Unauthorized
+
+
+### `update` 替换指定的 Job
+
+#### HTTP 请求
+
+PUT /apis/batch/v1/namespaces/{namespace}/jobs/{name}
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Job
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>, required
+-->
+
+- **name** (**路径参数**): string, 必需
+
+  Job 的名称。
+
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>, 必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): Created
+
+401: Unauthorized
+
+
+### `update` replace status of the specified Job
+
+#### HTTP Request
+
+PUT /apis/batch/v1/namespaces/{namespace}/jobs/{name}/status
+
+#### Parameters
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): Created
+
+401: Unauthorized
+
+
+### `update` 替换指定 Job 的状态
+
+#### HTTP 请求
+
+PUT /apis/batch/v1/namespaces/{namespace}/jobs/{name}/status
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Job
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>, required
+-->
+
+- **name** (**路径参数**): string, 必需
+
+  Job 的名字
+
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>, 必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): Created
+
+401: Unauthorized
+
+
+### `patch` partially update the specified Job
+
+#### HTTP Request
+
+PATCH /apis/batch/v1/namespaces/{namespace}/jobs/{name}
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): Created
+
+401: Unauthorized
+
+
+### `patch` 部分更新指定的 Job
+
+#### HTTP 请求
+
+PATCH /apis/batch/v1/namespaces/{namespace}/jobs/{name}
+
+<!--
+#### Parameters
+
+
+- **name** (*in path*): string, required
+
+  name of the Job
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+#### 参数
+
+
+- **name** (**路径参数**): string, 必需
+
+  Job 的名称。
+
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, 必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+-->
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): Created
+
+401: Unauthorized
+
+
+### `patch` partially update status of the specified Job
+
+#### HTTP Request
+
+PATCH /apis/batch/v1/namespaces/{namespace}/jobs/{name}/status
+
+#### Parameters
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): Created
+
+401: Unauthorized
+
+### `patch` 部分更新指定 Job 的状态
+
+#### HTTP 请求
+
+PATCH /apis/batch/v1/namespaces/{namespace}/jobs/{name}/status
+
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Job
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+
+- **name** (**路径参数**): string, 必需
+
+  Job 的名称。
+
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, 必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+-->
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): Created
+
+401: Unauthorized
+
+
+### `delete` delete a Job
+
+#### HTTP Request
+
+DELETE /apis/batch/v1/namespaces/{namespace}/jobs/{name}
+
+#### Parameters
+
+- **name** (*in path*): string, required
+
+  name of the Job
+
+
+- **namespace** (*in path*): string, required
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/job-v1#Job" >}}">Job</a>): Created
+
+401: Unauthorized
+
+
+### `delete` 删除一个 Job
+
+#### HTTP 请求
+
+DELETE /apis/batch/v1/namespaces/{namespace}/jobs/{name}
+
+#### 参数
+
+
+- **name** (**路径参数**): string, 必需
+
+  Job的名称
+
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+-->
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+
+### `deletecollection` delete collection of Job
+
+#### HTTP Request
+
+DELETE /apis/batch/v1/namespaces/{namespace}/jobs
+
+#### Parameters
+
+
+- **namespace** (*in path*): string, required
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+### `deletecollection` 删除 Job 的集合
+
+#### HTTP 请求
+
+DELETE /apis/batch/v1/namespaces/{namespace}/jobs
+
+#### 参数
+
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+-->
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+-->
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+-->
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+-->
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-template-v1.md b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-template-v1.md
new file mode 100644
index 0000000000..8cf52bffe6
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-template-v1.md
@@ -0,0 +1,779 @@
+---
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "PodTemplate"
+content_type: "api_reference"
+description: "PodTemplate 描述一种模板，用来为预定义的 Pod 生成副本。"
+title: "PodTemplate"
+weight: 2
+---
+
+<!--
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "PodTemplate"
+content_type: "api_reference"
+description: "PodTemplate describes a template for creating copies of a predefined pod."
+title: "PodTemplate"
+weight: 2
+auto_generated: true
+-->
+
+`apiVersion: v1`
+
+`import "k8s.io/api/core/v1"`
+
+## PodTemplate {#PodTemplate}
+
+<!--
+PodTemplate describes a template for creating copies of a predefined pod.
+-->
+PodTemplate 描述一种模板，用来为预定义的 Pod 生成副本。
+
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: PodTemplate
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  <!--
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+  标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **template** (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplateSpec" >}}">PodTemplateSpec</a>)
+
+  <!--
+  Template defines the pods that will be created from this pod template. https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+  -->
+  template 定义将基于此 Pod 模板所创建的 Pod。
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+## PodTemplateSpec {#PodTemplateSpec}
+
+<!--
+PodTemplateSpec describes the data a pod should have when created from a template
+-->
+PodTemplateSpec 描述基于某模板所创建的 Pod 所应具有的数据。
+
+<hr>
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  <!--
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+  -->
+  标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../workload-resources/pod-v1#PodSpec" >}}">PodSpec</a>)
+
+  <!--
+  Specification of the desired behavior of the pod. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+  -->
+  Pod 预期行为的规约。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+## PodTemplateList {#PodTemplateList}
+
+<!--
+PodTemplateList is a list of PodTemplates.
+-->
+PodTemplateList 是 PodTemplate 对象的列表。
+
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: PodTemplateList
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  <!--
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+  -->
+  标准的列表元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+<!--
+- **items** ([]<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplate" >}}">PodTemplate</a>), required
+-->
+- **items** ([]<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplate" >}}">PodTemplate</a>)，必需
+
+  <!--
+  List of pod templates
+  -->
+  PodTemplate 对象列表。
+
+<!--
+## Operations {#Operations}
+
+<hr>
+-->
+## 操作 {#Operations}
+
+<hr>
+
+<!--
+### `get` read the specified PodTemplate
+
+#### HTTP Request
+-->
+### `get` 读取指定的 PodTemplate
+
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/podtemplates/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the PodTemplate
+-->
+- **name** （**路径参数**）：string，必需
+
+  PodTemplate 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** （**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplate" >}}">PodTemplate</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind PodTemplate
+
+#### HTTP Request
+-->
+### `list` 列出或监视 PodTemplate 类型的对象
+
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/podtemplates
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** （**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+-->
+- **allowWatchBookmarks** （**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!--
+- **continue** (*in query*): string
+-->
+- **continue** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+-->
+- **fieldSelector** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **labelSelector** (*in query*): string
+-->
+- **labelSelector** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+-->
+- **limit** （**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+-->
+- **resourceVersion** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+-->
+- **resourceVersion** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+-->
+- **timeoutSeconds** （**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+- **watch** (*in query*): boolean
+-->
+- **watch** （**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplateList" >}}">PodTemplateList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind PodTemplate
+
+#### HTTP Request
+-->
+### `list` 列出或监视 PodTemplate 类型的对象
+
+#### HTTP 请求
+
+GET /api/v1/podtemplates
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+-->
+- **allowWatchBookmarks** （**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!--
+- **continue** (*in query*): string
+-->
+- **continue** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+-->
+- **fieldSelector** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **labelSelector** (*in query*): string
+-->
+- **labelSelector** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+-->
+- **limit** （**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+-->
+- **resourceVersion** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+-->
+- **resourceVersionMatch** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+-->
+- **timeoutSeconds** （**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+- **watch** (*in query*): boolean
+-->
+- **watch** （**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplateList" >}}">PodTemplateList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a PodTemplate
+
+#### HTTP Request
+-->
+### `create` 创建一个 PodTemplate
+
+#### HTTP 请求
+
+POST /api/v1/namespaces/{namespace}/podtemplates
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** （**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../workload-resources/pod-template-v1#PodTemplate" >}}">PodTemplate</a>, required
+-->
+- **body**: <a href="{{< ref "../workload-resources/pod-template-v1#PodTemplate" >}}">PodTemplate</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplate" >}}">PodTemplate</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplate" >}}">PodTemplate</a>): Created
+
+202 (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplate" >}}">PodTemplate</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified PodTemplate
+
+#### HTTP Request
+-->
+### `update` 替换指定的 PodTemplate
+
+#### HTTP 请求
+
+PUT /api/v1/namespaces/{namespace}/podtemplates/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the PodTemplate
+-->
+- **name** （**路径参数**）：string，必需
+
+  PodTemplate 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** （**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../workload-resources/pod-template-v1#PodTemplate" >}}">PodTemplate</a>, required
+-->
+- **body**: <a href="{{< ref "../workload-resources/pod-template-v1#PodTemplate" >}}">PodTemplate</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplate" >}}">PodTemplate</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplate" >}}">PodTemplate</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified PodTemplate
+
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 PodTemplate
+
+#### HTTP 请求
+
+PATCH /api/v1/namespaces/{namespace}/podtemplates/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the PodTemplate
+-->
+- **name** （**路径参数**）：string，必需
+
+  PodTemplate 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** （**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!--
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+-->
+- **fieldManager** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+-->
+- **fieldValidation** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **force** (*in query*): boolean
+-->
+- **force** （**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplate" >}}">PodTemplate</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplate" >}}">PodTemplate</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a PodTemplate
+
+#### HTTP Request
+-->
+### `delete` 删除一个 PodTemplate
+
+#### HTTP 请求
+
+DELETE /api/v1/namespaces/{namespace}/podtemplates/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the PodTemplate
+-->
+- **name** （**路径参数**）：string，必需
+
+  PodTemplate 的名称
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** （**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+-->
+- **gracePeriodSeconds** （**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **propagationPolicy** (*in query*): string
+-->
+- **propagationPolicy** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplate" >}}">PodTemplate</a>): OK
+
+202 (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplate" >}}">PodTemplate</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of PodTemplate
+
+#### HTTP Request
+-->
+### `deletecollection` 删除 PodTemplate 的集合
+
+#### HTTP 请求
+
+DELETE /api/v1/namespaces/{namespace}/podtemplates
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+-->
+- **namespace** （**路径参数**）：string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **continue** (*in query*): string
+-->
+- **continue** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **dryRun** (*in query*): string
+-->
+- **dryRun** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+-->
+- **fieldSelector** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+-->
+- **gracePeriodSeconds** （**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **labelSelector** (*in query*): string
+-->
+- **labelSelector** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+-->
+- **limit** （**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **propagationPolicy** (*in query*): string
+-->
+- **propagationPolicy** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+-->
+- **resourceVersion** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+-->
+- **resourceVersionMatch** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+-->
+- **timeoutSeconds** （**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1.md b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1.md
new file mode 100644
index 0000000000..1e64fd7b0a
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1.md
@@ -0,0 +1,6944 @@
+---
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "Pod"
+content_type: "api_reference"
+description: "Pod 是可以在主机上运行的容器的集合。"
+title: "Pod"
+weight: 1
+---
+<!--
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "Pod"
+content_type: "api_reference"
+description: "Pod is a collection of containers that can run on a host."
+title: "Pod"
+weight: 1
+auto_generated: true
+-->
+
+`apiVersion: v1`
+
+`import "k8s.io/api/core/v1"`
+
+## Pod {#Pod}
+
+<!--
+Pod is a collection of containers that can run on a host. This resource is created by clients and scheduled onto hosts.
+-->
+Pod 是可以在主机上运行的容器的集合。此资源由客户端创建并调度到主机上。
+
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: Pod
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+<!--
+- **spec** (<a href="{{< ref "../workload-resources/pod-v1#PodSpec" >}}">PodSpec</a>)
+
+  Specification of the desired behavior of the pod. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+-->
+- **spec** (<a href="{{< ref "../workload-resources/pod-v1#PodSpec" >}}">PodSpec</a>)
+
+  对 Pod 预期行为的规约。更多信息： 
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+<!--
+- **status** (<a href="{{< ref "../workload-resources/pod-v1#PodStatus" >}}">PodStatus</a>)
+
+  Most recently observed status of the pod. This data may not be up to date. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+-->
+- **status** (<a href="{{< ref "../workload-resources/pod-v1#PodStatus" >}}">PodStatus</a>)
+  
+  最近观察到的 Pod 状态。这些数据可能不是最新的。由系统填充。只读。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+## PodSpec {#PodSpec}
+
+<!--
+PodSpec is a description of a pod.
+-->
+PodSpec 是对 Pod 的描述。
+
+<hr>
+
+<!--
+### Containers
+-->
+### 容器  {#containers}
+
+<!--
+- **containers** ([]<a href="{{< ref "../workload-resources/pod-v1#Container" >}}">Container</a>), required
+
+  *Patch strategy: merge on key `name`*
+  
+  List of containers belonging to the pod. Containers cannot currently be added or removed. There must be at least one container in a Pod. Cannot be updated.
+-->
+- **containers** ([]<a href="{{< ref "../workload-resources/pod-v1#Container" >}}">Container</a>)，必需
+
+  **补丁策略：基于 `name` 键合并**
+  
+  属于 Pod 的容器列表。当前无法添加或删除容器。Pod 中必须至少有一个容器。无法更新。
+
+<!--
+- **initContainers** ([]<a href="{{< ref "../workload-resources/pod-v1#Container" >}}">Container</a>)
+
+  *Patch strategy: merge on key `name`*
+  
+  List of initialization containers belonging to the pod. Init containers are executed in order prior to containers being started. If any init container fails, the pod is considered to have failed and is handled according to its restartPolicy. The name for an init container or normal container must be unique among all containers. Init containers may not have Lifecycle actions, Readiness probes, Liveness probes, or Startup probes. The resourceRequirements of an init container are taken into account during scheduling by finding the highest request/limit for each resource type, and then using the max of of that value or the sum of the normal containers. Limits are applied to init containers in a similar fashion. Init containers cannot currently be added or removed. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/init-containers/
+-->
+- **initContainers** ([]<a href="{{< ref "../workload-resources/pod-v1#Container" >}}">Container</a>)
+
+  **补丁策略：基于 `name` 键合并**
+
+  属于 Pod 的 Init 容器列表。Init 容器在容器启动之前按顺序执行。
+  如果任何一个 Init 容器发生故障，则认为该 Pod 失败，并根据其 restartPolicy 处理。
+  Init 容器或普通容器的名称在所有容器中必须是唯一的。
+  Init 容器不可以有生命周期操作、就绪态探针、存活态探针或启动探针。
+  在调度过程中会考虑 Init 容器的资源需求，方法是查找每种资源类型的最高请求/限制，
+  然后使用该值的最大值或正常容器的资源请求的总和。
+  对资源限制以类似的方式应用于 Init 容器。当前无法添加或删除 Init 容器。无法更新。更多信息： 
+  https://kubernetes.io/zh-cn/docs/concepts/workloads/pods/init-containers/
+
+<!--
+- **imagePullSecrets** ([]<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
+
+  *Patch strategy: merge on key `name`*
+  
+  ImagePullSecrets is an optional list of references to secrets in the same namespace to use for pulling any of the images used by this PodSpec. If specified, these secrets will be passed to individual puller implementations for them to use. More info: https://kubernetes.io/docs/concepts/containers/images#specifying-imagepullsecrets-on-a-pod
+-->
+- **imagePullSecrets** ([]<a href="{{< ref "../common-definitions/local-object-reference#LocalObjectReference" >}}">LocalObjectReference</a>)
+
+  **补丁策略：基于 `name` 键合并**
+
+  imagePullSecrets 是对同一名字空间中 Secret 的引用的列表，用于拉取此 Pod 规约中使用的任何镜像，此字段可选。
+  如果指定，这些 Secret 将被传递给各个镜像拉取组件（Puller）实现供其使用。更多信息： 
+  https://kubernetes.io/zh-cn/docs/concepts/containers/images#specifying-imagepullsecrets-on-a-pod
+
+<!--
+- **enableServiceLinks** (boolean)
+
+  EnableServiceLinks indicates whether information about services should be injected into pod's environment variables, matching the syntax of Docker links. Optional: Defaults to true.
+-->
+- **enableServiceLinks** (boolean)
+
+  enableServiceLinks 指示是否应将有关服务的信息注入到 Pod 的环境变量中，服务连接的语法与
+  Docker links 的语法相匹配。可选。默认为 true。
+
+<!--
+- **os** (PodOS)
+
+  Specifies the OS of the containers in the pod. Some pod and container fields are restricted if this is set.
+  
+  If the OS field is set to linux, the following fields must be unset: -securityContext.windowsOptions
+-->
+- **os** (PodOS)
+
+  指定 Pod 中容器的操作系统。如果设置了此属性，则某些 Pod 和容器字段会受到限制。
+  
+  如果 os 字段设置为 `linux`，则必须不能设置以下字段：
+  
+  - `securityContext.windowsOptions`
+
+  <!--
+  If the OS field is set to windows, following fields must be unset: - spec.hostPID - spec.hostIPC - spec.securityContext.seLinuxOptions - spec.securityContext.seccompProfile - spec.securityContext.fsGroup - spec.securityContext.fsGroupChangePolicy - spec.securityContext.sysctls - spec.shareProcessNamespace - spec.securityContext.runAsUser - spec.securityContext.runAsGroup - spec.securityContext.supplementalGroups - spec.containers[*].securityContext.seLinuxOptions - spec.containers[*].securityContext.seccompProfile - spec.containers[*].securityContext.capabilities - spec.containers[*].securityContext.readOnlyRootFilesystem - spec.containers[*].securityContext.privileged - spec.containers[*].securityContext.allowPrivilegeEscalation - spec.containers[*].securityContext.procMount - spec.containers[*].securityContext.runAsUser - spec.containers[*].securityContext.runAsGroup This is a beta field and requires the IdentifyPodOS feature
+
+  -->
+  如果 os 字段设置为 `windows`，则必须不能设置以下字段：
+
+  - `spec.hostPID`
+  - `spec.hostIPC`
+  - `spec.securityContext.seLinuxOptions`
+  - `spec.securityContext.seccompProfile`
+  - `spec.securityContext.fsGroup`
+  - `spec.securityContext.fsGroupChangePolicy`
+  - `spec.securityContext.sysctls`
+  - `spec.shareProcessNamespace`
+  - `spec.securityContext.runAsUser`
+  - `spec.securityContext.runAsGroup`
+  - `spec.securityContext.supplementalGroups`
+  - `spec.containers[*].securityContext.seLinuxOptions`
+  - `spec.containers[*].securityContext.seccompProfile`
+  - `spec.containers[*].securityContext.capabilities`
+  - `spec.containers[*].securityContext.readOnlyRootFilesystem`
+  - `spec.containers[*].securityContext.privileged`
+  - `spec.containers[*].securityContext.allowPrivilegeEscalation`
+  - `spec.containers[*].securityContext.procMount`
+  - `spec.containers[*].securityContext.runAsUser`
+  - `spec.containers[*].securityContext.runAsGroup`
+  
+  此字段为 Beta 字段，需要启用 `IdentifyPodOS` 特性门控。
+  
+  <a name="PodOS"></a>
+  <!--
+  *PodOS defines the OS parameters of a pod.*
+  -->
+  **PodOS 定义一个 Pod 的操作系统参数。**
+
+  <!--
+  - **os.name** (string), required
+
+    Name is the name of the operating system. The currently supported values are linux and windows. Additional value may be defined in future and can be one of: https://github.com/opencontainers/runtime-spec/blob/master/config.md#platform-specific-configuration Clients should expect to handle additional values and treat unrecognized values in this field as os: null
+  -->
+
+  - **os.name** (string)，必需
+
+    name 是操作系统的名称。当前支持的值是 `linux` 和 `windows`。
+    将来可能会定义附加值，并且可以是以下之一：
+    https://github.com/opencontainers/runtime-spec/blob/master/config.md#platform-specific-configuration
+    客户端应该期望处理附加值并将此字段无法识别时视其为 `os: null`。
+
+<!--
+### Volumes
+-->
+### 卷
+
+<!--
+- **volumes** ([]<a href="{{< ref "../config-and-storage-resources/volume#Volume" >}}">Volume</a>)
+
+  *Patch strategies: retainKeys, merge on key `name`*
+  
+  List of volumes that can be mounted by containers belonging to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes
+-->
+- **volumes** ([]<a href="{{< ref "../config-and-storage-resources/volume#Volume" >}}">Volume</a>)
+
+  **补丁策略：retainKeys，基于键 `name` 合并**
+  
+  可以由属于 Pod 的容器挂载的卷列表。更多信息： 
+  https://kubernetes.io/zh-cn/docs/concepts/storage/volumes
+
+<!--
+### Scheduling
+-->
+### 调度
+
+<!--
+- **nodeSelector** (map[string]string)
+
+  NodeSelector is a selector which must be true for the pod to fit on a node. Selector which must match a node's labels for the pod to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
+-->
+- **nodeSelector** (map[string]string)
+
+  nodeSelector 是一个选择算符，这些算符必须取值为 true 才能认为 Pod 适合在节点上运行。
+  选择算符必须与节点的标签匹配，以便在该节点上调度 Pod。更多信息： 
+  https://kubernetes.io/zh-cn/docs/concepts/configuration/assign-pod-node/
+
+<!--
+- **nodeName** (string)
+
+  NodeName is a request to schedule this pod onto a specific node. If it is non-empty, the scheduler simply schedules this pod onto that node, assuming that it fits resource requirements.
+-->
+- **nodeName** (string)
+
+  nodeName 是将此 Pod 调度到特定节点的请求。
+  如果字段值不为空，调度器只是直接将这个 Pod 调度到所指定节点上，假设节点符合资源要求。
+
+<!--
+- **affinity** (Affinity)
+
+  If specified, the pod's scheduling constraints
+
+  *Affinity is a group of affinity scheduling rules.*
+-->
+- **affinity** (Affinity)
+
+  如果指定了，则作为 Pod 的调度约束。
+
+  <a name="Affinity"></a>
+  **Affinity 是一组亲和性调度规则。**
+
+  <!--
+  - **affinity.nodeAffinity** (<a href="{{< ref "../workload-resources/pod-v1#NodeAffinity" >}}">NodeAffinity</a>)
+
+    Describes node affinity scheduling rules for the pod.
+
+  - **affinity.podAffinity** (<a href="{{< ref "../workload-resources/pod-v1#PodAffinity" >}}">PodAffinity</a>)
+
+    Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).
+
+  - **affinity.podAntiAffinity** (<a href="{{< ref "../workload-resources/pod-v1#PodAntiAffinity" >}}">PodAntiAffinity</a>)
+
+    Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).
+  -->
+
+  - **affinity.nodeAffinity** (<a href="{{< ref "../workload-resources/pod-v1#NodeAffinity" >}}">NodeAffinity</a>)
+
+    描述 Pod 的节点亲和性调度规则。
+
+  - **affinity.podAffinity** (<a href="{{< ref "../workload-resources/pod-v1#PodAffinity" >}}">PodAffinity</a>)
+
+    描述 Pod 亲和性调度规则（例如，将此 Pod 与其他一些 Pod 放在同一节点、区域等）。
+
+  - **affinity.podAntiAffinity** (<a href="{{< ref "../workload-resources/pod-v1#PodAntiAffinity" >}}">PodAntiAffinity</a>)
+
+    描述 Pod 反亲和性调度规则（例如，避免将此 Pod 与其他一些 Pod 放在相同的节点、区域等）。
+
+<!--
+- **tolerations** ([]Toleration)
+
+  If specified, the pod's tolerations.
+
+  *The pod this Toleration is attached to tolerates any taint that matches the triple <key,value,effect> using the matching operator <operator>.*
+-->
+- **tolerations** ([]Toleration)
+
+  如果设置了此字段，则作为 Pod 的容忍度。
+
+  <a name="Toleration"></a>
+  **这个 Toleration 所附加到的 Pod 能够容忍任何使用匹配运算符 `<operator>` 匹配三元组 `<key,value,effect>` 所得到的污点。**
+
+  <!--
+  - **tolerations.key** (string)
+
+    Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.
+  -->
+
+  - **tolerations.key** (string)
+
+    key 是容忍度所适用的污点的键名。此字段为空意味着匹配所有的污点键。
+    如果 key 为空，则 operator 必须为 `Exists`；这种组合意味着匹配所有值和所有键。
+    
+  <!--
+  - **tolerations.operator** (string)
+
+    Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.
+  -->
+
+  - **tolerations.operator** (string)
+
+    operator 表示 key 与 value 之间的关系。有效的 operator 取值是 `Exists` 和 `Equal`。默认为 `Equal`。
+    `Exists` 相当于 value 为某种通配符，因此 Pod 可以容忍特定类别的所有污点。
+
+  <!--
+  - **tolerations.value** (string)
+
+    Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.
+  -->
+
+  - **tolerations.value** (string)
+
+    value 是容忍度所匹配的污点值。如果 operator 为 `Exists`，则此 value 值应该为空，
+    否则 value 值应该是一个正常的字符串。
+
+  <!--
+  - **tolerations.effect** (string)
+
+    Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.
+  -->
+
+  - **tolerations.effect** (string)
+
+    effect 指示要匹配的污点效果。空值意味著匹配所有污点效果。如果要设置此字段，允许的值为
+    `NoSchedule`、`PreferNoSchedule` 和 `NoExecute` 之一。
+
+  <!--
+  - **tolerations.tolerationSeconds** (int64)
+
+    TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.
+  -->
+
+  - **tolerations.tolerationSeconds** (int64)
+
+    tolerationSeconds 表示容忍度（effect 必须是 `NoExecute`，否则此字段被忽略）容忍污点的时间长度。
+    默认情况下，此字段未被设置，这意味着会一直能够容忍对应污点（不会发生驱逐操作）。
+    零值和负值会被系统当做 0 值处理（立即触发驱逐）。
+
+<!--
+- **schedulerName** (string)
+
+  If specified, the pod will be dispatched by specified scheduler. If not specified, the pod will be dispatched by default scheduler.
+-->
+- **schedulerName** (string)
+
+  如果设置了此字段，则 Pod 将由指定的调度器调度。如果未指定，则使用默认调度器来调度 Pod。
+
+<!--
+- **runtimeClassName** (string)
+
+  RuntimeClassName refers to a RuntimeClass object in the node.k8s.io group, which should be used to run this pod.  If no RuntimeClass resource matches the named class, the pod will not be run. If unset or empty, the "legacy" RuntimeClass will be used, which is an implicit class with an empty definition that uses the default runtime handler. More info: https://git.k8s.io/enhancements/keps/sig-node/585-runtime-class
+-->
+- **runtimeClassName** (string)
+
+  runtimeClassName 引用 `node.k8s.io` 组中的一个 RuntimeClass 对象，该 RuntimeClass 将被用来运行这个 Pod。
+  如果没有 RuntimeClass 资源与所设置的类匹配，则 Pod 将不会运行。
+  如果此字段未设置或为空，将使用 "旧版" RuntimeClass。
+  "旧版" RuntimeClass 可以视作一个隐式的运行时类，其定义为空，会使用默认运行时处理程序。
+  更多信息：
+  https://git.k8s.io/enhancements/keps/sig-node/585-runtime-class
+
+<!--
+- **priorityClassName** (string)
+
+  If specified, indicates the pod's priority. "system-node-critical" and "system-cluster-critical" are two special keywords which indicate the highest priorities with the former being the highest priority. Any other name must be defined by creating a PriorityClass object with that name. If not specified, the pod priority will be default or zero if there is no default.
+-->
+- **priorityClassName** (string)
+
+  如果设置了此字段，则用来标明 Pod 的优先级。
+  `"system-node-critical"` 和 `"system-cluster-critical"` 是两个特殊关键字，
+  分别用来表示两个最高优先级，前者优先级更高一些。
+  任何其他名称都必须通过创建具有该名称的 PriorityClass 对象来定义。
+  如果未指定此字段，则 Pod 优先级将为默认值。如果没有默认值，则为零。
+
+<!--
+- **priority** (int32)
+
+  The priority value. Various system components use this field to find the priority of the pod. When Priority Admission Controller is enabled, it prevents users from setting this field. The admission controller populates this field from PriorityClassName. The higher the value, the higher the priority.
+-->
+- **priority** (int32)
+
+  优先级值。各种系统组件使用该字段来确定 Pod 的优先级。当启用 Priority 准入控制器时，
+  该控制器会阻止用户设置此字段。准入控制器基于 priorityClassName 设置来填充此字段。
+  字段值越高，优先级越高。
+
+<!--
+- **topologySpreadConstraints** ([]TopologySpreadConstraint)
+
+  *Patch strategy: merge on key `topologyKey`*
+  
+  *Map: unique values on keys `topologyKey, whenUnsatisfiable` will be kept during a merge*
+  
+  TopologySpreadConstraints describes how a group of pods ought to spread across topology domains. Scheduler will schedule pods in a way which abides by the constraints. All topologySpreadConstraints are ANDed.
+
+  *TopologySpreadConstraint specifies how to spread matching pods among the given topology.*
+-->
+- **topologySpreadConstraints** ([]TopologySpreadConstraint)
+
+  **补丁策略：基于 `topologyKey` 键合并**
+  
+  **映射：`topologyKey, whenUnsatisfiable` 键组合的唯一值 將在合并期间保留**
+  
+  TopologySpreadConstraints 描述一组 Pod 应该如何跨拓扑域来分布。调度器将以遵从此约束的方式来调度 Pod。
+  所有 topologySpreadConstraints 条目会通过逻辑与操作进行组合。
+
+  <a name="TopologySpreadConstraint"></a>
+  **TopologySpreadConstraint 指定如何在规定的拓扑下分布匹配的 Pod。**
+
+  <!--
+  - **topologySpreadConstraints.maxSkew** (int32), required
+
+    MaxSkew describes the degree to which pods may be unevenly distributed. When `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | |  P P  |  P P  |   P   | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.
+  -->
+
+  - **topologySpreadConstraints.maxSkew** (int32)，必需
+
+    maxSkew 描述 Pod 可能分布不均衡的程度。当 `whenUnsatisfiable=DoNotSchedule` 时，
+    此字段值是目标拓扑中匹配的 Pod 数量与全局最小值之间的最大允许差值。
+    全局最小值是候选域中匹配 Pod 的最小数量，如果候选域的数量小于 `minDomains`，则为零。
+    例如，在一个包含三个可用区的集群中，maxSkew 设置为 1，具有相同 `labelSelector` 的 Pod 分布为 2/2/1：
+    在这种情况下，全局最小值为 1。
+
+    ```
+    | zone1 | zone2 | zone3 |
+    | PP    | PP    |  P    |
+    ```
+
+    - 如果 maxSkew 为 1，传入的 Pod 只能调度到 "zone3"，变成 2/2/2；
+      将其调度到 "zone1"（"zone2"）将使"zone1"（"zone2"）上的实际偏差（Actual Skew）为 3-1，进而违反
+      maxSkew 限制（1）。 
+    - 如果 maxSkew 为 2，则可以将传入的 Pod 调度到任何区域。
+
+    当 `whenUnsatisfiable=ScheduleAnyway` 时，此字段被用来给满足此约束的拓扑域更高的优先级。
+
+    此字段是一个必填字段。默认值为 1，不允许为 0。
+
+  <!--
+  - **topologySpreadConstraints.topologyKey** (string), required
+
+    TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each \<key, value> as a "bucket", and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes match the node selector. e.g. If TopologyKey is "kubernetes.io/hostname", each Node is a domain of that topology. And, if TopologyKey is "topology.kubernetes.io/zone", each zone is a domain of that topology. It's a required field.
+  -->
+
+  - **topologySpreadConstraints.topologyKey** (string)，必需
+
+    topologyKey 是节点标签的键名。如果节点的标签中包含此键名且键值亦相同，则被认为在相同的拓扑域中。
+    我们将每个 `<键, 值>` 视为一个 "桶（Bucket）"，并尝试将数量均衡的 Pod 放入每个桶中。
+    我们定义域（Domain）为拓扑域的特定实例。此外，我们定义候选域（Eligible Domain）为其节点与节点选择算符匹配的域。
+    例如，如果 topologyKey 是 `"kubernetes.io/hostname"`，则每个 Node 都是该拓扑的域。
+    而如果 topologyKey 是 `"topology.kubernetes.io/zone"`，则每个区域都是该拓扑的一个域。
+    这是一个必填字段。
+
+  <!--
+  - **topologySpreadConstraints.whenUnsatisfiable** (string), required
+
+    WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location,
+      but giving higher precedence to topologies that would help reduce the
+      skew.
+    A constraint is considered "Unsatisfiable" for an incoming pod if and only if every possible node assignment for that pod would violate "MaxSkew" on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P |   P   |   P   | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.
+  -->
+
+  - **topologySpreadConstraints.whenUnsatisfiable** (string)，必需
+
+    whenUnsatisfiable 表示如果 Pod 不满足分布约束，如何处理它。 
+
+    - `DoNotSchedule`（默认）：告诉调度器不要调度它。 
+    - `ScheduleAnyway`：告诉调度器将 Pod 调度到任何位置，但给予能够降低偏差的拓扑更高的优先级。
+
+    当且仅当该 Pod 的每个可能的节点分配都会违反某些拓扑对应的 "maxSkew" 时，
+    才认为传入 Pod 的约束是 "不可满足的"。
+
+    例如，在一个包含三个区域的集群中，maxSkew 设置为 1，具有相同 labelSelector 的 Pod 分布为 3/1/1：
+
+    ```
+    | zone1 | zone2 | zone3 |
+    | P P P | P     | P     |
+    ```
+
+    如果 whenUnsatisfiable 设置为 `DoNotSchedule`，则传入的 Pod 只能调度到 "zone2"（"zone3"），
+    Pod 分布变成 3/2/1（3/1/2），因为 "zone2"（"zone3"）上的实际偏差（Actual Skew） 为 2-1，
+    满足 maxSkew 约束（1）。
+    换句话说，集群仍然可以不平衡，但调度器不会使其**更加地**不平衡。
+
+    这是一个必填字段。
+
+  <!--
+  - **topologySpreadConstraints.labelSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+    LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain.
+  -->
+
+  - **topologySpreadConstraints.labelSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+    labelSelector 用于识别匹配的 Pod。对匹配此标签选择算符的 Pod 进行计数，
+    以确定其相应拓扑域中的 Pod 数量。
+
+  <!--
+  - **topologySpreadConstraints.minDomains** (int32)
+
+    MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats "global minimum" as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule.
+    
+    For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | |  P P  |  P P  |  P P  | The number of domains is less than 5(MinDomains), so "global minimum" is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew.
+    
+    This is an alpha field and requires enabling MinDomainsInPodTopologySpread feature gate.
+  -->
+
+  - **topologySpreadConstraints.minDomains** (int32)
+
+    minDomains 表示符合条件的域的最小数量。当符合拓扑键的候选域个数小于 minDomains 时，
+    Pod 拓扑分布特性会将 "全局最小值" 视为 0，然后进行偏差的计算。
+    当匹配拓扑键的候选域的数量等于或大于 minDomains 时，此字段的值对调度没有影响。
+    因此，当候选域的数量少于 minDomains 时，调度程序不会将超过 maxSkew 个 Pods 调度到这些域。
+    如果字段值为 nil，所表达的约束为 minDomains 等于 1。
+    字段的有效值为大于 0 的整数。当字段值不为 nil 时，whenUnsatisfiable 必须为 `DoNotSchedule`。
+    
+    例如，在一个包含三个区域的集群中，maxSkew 设置为 2，minDomains 设置为 5，具有相同 labelSelector
+    的 Pod 分布为 2/2/2：
+
+    ```
+    | zone1 | zone2 | zone3 |
+    | PP    | PP    | PP    |
+    ```
+
+    域的数量小于 5（minDomains 取值），因此"全局最小值"被视为 0。
+    在这种情况下，无法调度具有相同 labelSelector 的新 Pod，因为如果基于新 Pod 计算的偏差值将为
+    3（3-0）。将这个 Pod 调度到三个区域中的任何一个，都会违反 maxSkew 约束。
+    
+    此字段是一个 Alpha 字段，需要启用 MinDomainsInPodTopologySpread 特性门控。
+
+<!--
+### Lifecycle
+-->
+
+### 生命周期
+
+<!--
+- **restartPolicy** (string)
+
+  Restart policy for all containers within the pod. One of Always, OnFailure, Never. Default to Always. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy
+-->
+- **restartPolicy** (string)
+
+  Pod 内所有容器的重启策略。`Always`、`OnFailure`、`Never` 之一。默认为 `Always`。更多信息： 
+  https://kubernetes.io/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy
+
+<!--
+- **terminationGracePeriodSeconds** (int64)
+
+  Optional duration in seconds the pod needs to terminate gracefully. May be decreased in delete request. Value must be non-negative integer. The value zero indicates stop immediately via the kill signal (no opportunity to shut down). If this value is nil, the default grace period will be used instead. The grace period is the duration in seconds after the processes running in the pod are sent a termination signal and the time when the processes are forcibly halted with a kill signal. Set this value longer than the expected cleanup time for your process. Defaults to 30 seconds.
+-->
+- **terminationGracePeriodSeconds** (int64)
+
+  可选字段，表示 Pod 需要体面终止的所需的时长（以秒为单位）。字段值可以在删除请求中减少。
+  字段值必须是非负整数。零值表示收到 kill 信号则立即停止（没有机会关闭）。
+  如果此值为 nil，则将使用默认宽限期。
+  宽限期是从 Pod 中运行的进程收到终止信号后，到进程被 kill 信号强制停止之前，Pod 可以继续存在的时间（以秒为单位）。
+  应该将此值设置为比你的进程的预期清理时间更长。默认为 30 秒。
+
+<!--
+- **activeDeadlineSeconds** (int64)
+
+  Optional duration in seconds the pod may be active on the node relative to StartTime before the system will actively try to mark it failed and kill associated containers. Value must be a positive integer.
+-->
+- **activeDeadlineSeconds** (int64)
+
+  在系统将主动尝试将此 Pod 标记为已失败并杀死相关容器之前，Pod 可能在节点上活跃的时长；
+  市场计算基于 startTime 计算间（以秒为单位）。字段值必须是正整数。
+
+<!--
+- **readinessGates** ([]PodReadinessGate)
+
+  If specified, all readiness gates will be evaluated for pod readiness. A pod is ready when all its containers are ready AND all conditions specified in the readiness gates have status equal to "True" More info: https://git.k8s.io/enhancements/keps/sig-network/580-pod-readiness-gates
+
+  *PodReadinessGate contains the reference to a pod condition*
+-->
+- **readinessGate** ([]PodReadinessGate)
+
+  如果设置了此字段，则将评估所有就绪门控（Readiness Gate）以确定 Pod 就绪状况。
+  当所有容器都已就绪，并且就绪门控中指定的所有状况的 status 都为 "true" 时，Pod 被视为就绪。
+  更多信息： https://git.k8s.io/enhancements/keps/sig-network/580-pod-readiness-gates
+
+  <a name="PodReadinessGate"></a>
+  **PodReadinessGate 包含对 Pod 状况的引用**
+
+  <!--
+  - **readinessGates.conditionType** (string), required
+
+    ConditionType refers to a condition in the pod's condition list with matching type.
+  -->
+
+  - **readinessGates.conditionType** (string)，必需
+
+    conditionType 是指 Pod 的状况列表中类型匹配的状况。
+
+<!--
+### Hostname and Name resolution
+-->
+### 主机名和名称解析
+
+<!--
+- **hostname** (string)
+
+  Specifies the hostname of the Pod If not specified, the pod's hostname will be set to a system-defined value.
+-->
+- **hostname**  (string)
+
+  指定 Pod 的主机名。如果此字段未指定，则 Pod 的主机名将设置为系统定义的值。
+
+<!--
+- **setHostnameAsFQDN** (boolean)
+
+  If true the pod's hostname will be configured as the pod's FQDN, rather than the leaf name (the default). In Linux containers, this means setting the FQDN in the hostname field of the kernel (the nodename field of struct utsname). In Windows containers, this means setting the registry value of hostname for the registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters to FQDN. If a pod does not have FQDN, this has no effect. Default to false.
+-->
+- **setHostnameAsFQDN** (boolean)
+
+  如果为 true，则 Pod 的主机名将配置为 Pod 的 FQDN，而不是叶名称（默认值）。
+  在 Linux 容器中，这意味着将内核的 hostname 字段（struct utsname 的 nodename 字段）设置为 FQDN。
+  在 Windows 容器中，这意味着将注册表项 `HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters`
+  的 hostname 键设置为 FQDN。如果 Pod 没有 FQDN，则此字段不起作用。
+  默认为 false。
+
+<!--
+- **subdomain** (string)
+
+  If specified, the fully qualified Pod hostname will be "\<hostname>.\<subdomain>.\<pod namespace>.svc.\<cluster domain>". If not specified, the pod will not have a domainname at all.
+-->
+- **subdomain** (string)
+
+  如果设置了此字段，则完全限定的 Pod 主机名将是 `<hostname>.<subdomain>.<Pod 名字空间>.svc.<集群域名>`。
+  如果未设置此字段，则该 Pod 将没有域名。
+
+<!--
+- **hostAliases** ([]HostAlias)
+
+  *Patch strategy: merge on key `ip`*
+  
+  HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts file if specified. This is only valid for non-hostNetwork pods.
+
+  *HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the pod's hosts file.*
+-->
+- **hostAliases** ([]HostAlias)
+
+  **补丁策略：基于 `ip` 键合并**
+  
+  hostAliases 是一个可选的列表属性，包含要被注入到 Pod 的 hosts 文件中的主机和 IP 地址。
+  这仅对非 hostNetwork Pod 有效。
+
+  <a name="HostAlias"></a>
+  **HostAlias 结构保存 IP 和主机名之间的映射，这些映射将作为 Pod 的 hosts 文件中的条目注入。**
+
+  <!--
+  - **hostAliases.hostnames** ([]string)
+
+    Hostnames for the above IP address.
+
+  - **hostAliases.ip** (string)
+
+    IP address of the host file entry.
+  -->
+
+  - **hostAliases.hostnames** ([]string)
+
+    指定 IP 地址对应的主机名。
+
+  - **hostAliases.ip** (string)
+
+    主机文件条目的 IP 地址。
+
+<!--
+- **dnsConfig** (PodDNSConfig)
+
+  Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.
+-->
+- **dnsConfig** (PodDNSConfig)
+
+  指定 Pod 的 DNS 参数。此处指定的参数将被合并到基于 dnsPolicy 生成的 DNS 配置中。
+
+  <a name="PodDNSConfig"></a>
+  <!--
+  PodDNSConfig defines the DNS parameters of a pod in addition to those generated from DNSPolicy.
+  -->
+  **PodDNSConfig 定义 Pod 的 DNS 参数，这些参数独立于基于 dnsPolicy 生成的参数。**
+
+  <!--
+  - **dnsConfig.nameservers** ([]string)
+
+    A list of DNS name server IP addresses. This will be appended to the base nameservers generated from DNSPolicy. Duplicated nameservers will be removed.
+  -->
+
+  - **dnsConfig.nameservers** ([]string)
+
+    DNS 名字服务器的 IP 地址列表。此列表将被追加到基于 dnsPolicy 生成的基本名字服务器列表。
+    重复的名字服务器将被删除。
+
+  <!--
+  - **dnsConfig.options** ([]PodDNSConfigOption)
+
+    A list of DNS resolver options. This will be merged with the base options generated from DNSPolicy. Duplicated entries will be removed. Resolution options given in Options will override those that appear in the base DNSPolicy.
+  -->
+
+  - **dnsConfig.options** ([]PodDNSConfigOption)
+
+    DNS 解析器选项列表。此处的选项将与基于 dnsPolicy 所生成的基本选项合并。重复的条目将被删除。
+    options 中所给出的解析选项将覆盖基本 dnsPolicy 中出现的对应选项。
+
+    <a name="PodDNSConfigOption"></a>
+    <!--
+    *PodDNSConfigOption defines DNS resolver options of a pod.*
+    -->
+
+    **PodDNSConfigOption 定义 Pod 的 DNS 解析器选项。**
+
+    <!--
+    - **dnsConfig.options.name** (string)
+
+      Required.
+
+    - **dnsConfig.options.value** (string)
+    -->
+
+    - **dnsConfig.options.name** (string)
+
+      必需字段。
+
+    - **dnsConfig.options.value** (string)
+
+      选项取值。
+
+  <!--
+  - **dnsConfig.searches** ([]string)
+
+    A list of DNS search domains for host-name lookup. This will be appended to the base search paths generated from DNSPolicy. Duplicated search paths will be removed.
+  -->
+
+  - **dnsConfig.searches** ([]string)
+
+    用于主机名查找的 DNS 搜索域列表。这一列表将被追加到基于 dnsPolicy 生成的基本搜索路径列表。
+    重复的搜索路径将被删除。
+
+<!--
+- **dnsPolicy** (string)
+
+  Set DNS policy for the pod. Defaults to "ClusterFirst". Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. To have DNS options set along with hostNetwork, you have to specify DNS policy explicitly to 'ClusterFirstWithHostNet'.
+-->
+- **dnsPolicy** (string)
+
+  为 Pod 设置 DNS 策略。默认为 `"ClusterFirst"`。
+  有效值为 `"ClusterFirstWithHostNet"`、`"ClusterFirst"`、`"Default"` 或 `"None"`。 
+  dnsConfig 字段中给出的 DNS 参数将与使用 dnsPolicy 字段所选择的策略合并。
+  要针对 hostNetwork 的 Pod 设置 DNS 选项，你必须将 DNS 策略显式设置为 `"ClusterFirstWithHostNet"`。
+
+<!--
+### Hosts namespaces
+-->
+### 主机名字空间
+
+<!--
+- **hostNetwork** (boolean)
+
+  Host networking requested for this pod. Use the host's network namespace. If this option is set, the ports that will be used must be specified. Default to false.
+
+- **hostPID** (boolean)
+
+  Use the host's pid namespace. Optional: Default to false.
+-->
+- **hostNetwork** (boolean)
+
+  为此 Pod 请求主机层面联网支持。使用主机的网络名字空间。
+  如果设置了此选项，则必须指定将使用的端口。默认为 false。
+
+- **hostPID** (boolean)
+
+  使用主机的 PID 名字空间。可选：默认为 false。
+
+<!--
+- **hostIPC** (boolean)
+
+  Use the host's ipc namespace. Optional: Default to false.
+
+- **shareProcessNamespace** (boolean)
+
+  Share a single process namespace between all of the containers in a pod. When this is set containers will be able to view and signal processes from other containers in the same pod, and the first process in each container will not be assigned PID 1. HostPID and ShareProcessNamespace cannot both be set. Optional: Default to false.
+-->
+- **hostIPC** (boolean)
+
+  使用主机的 IPC 名字空间。可选：默认为 false。
+
+- **shareProcessNamespace** (boolean)
+
+  在 Pod 中的所有容器之间共享单个进程名字空间。设置了此字段之后，容器将能够查看来自同一 Pod 中其他容器的进程并发出信号，
+  并且每个容器中的第一个进程不会被分配 PID 1。`hostPID` 和 `shareProcessNamespace` 不能同时设置。
+  可选：默认为 false。
+
+<!--
+### Service account
+-->
+### 服务账号
+
+<!--
+- **serviceAccountName** (string)
+
+  ServiceAccountName is the name of the ServiceAccount to use to run this pod. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/
+
+- **automountServiceAccountToken** (boolean)
+
+  AutomountServiceAccountToken indicates whether a service account token should be automatically mounted.
+-->
+- **serviceAccountName** (string)
+
+  serviceAccountName 是用于运行此 Pod 的服务账号的名称。更多信息： 
+  https://kubernetes.io/zh-cn/docs/tasks/configure-pod-container/configure-service-account/
+
+- **automountServiceAccountToken** (boolean)
+
+  automountServiceAccountToken 指示是否应自动挂载服务帐户令牌。
+
+<!--
+### Security context
+-->
+### 安全上下文
+
+<!--
+- **securityContext** (PodSecurityContext)
+
+  SecurityContext holds pod-level security attributes and common container settings. Optional: Defaults to empty.  See type description for default values of each field.
+-->
+
+- **securityContext** (PodSecurityContext)
+
+  SecurityContext 包含 Pod 级别的安全属性和常见的容器设置。
+  可选：默认为空。每个字段的默认值见类型描述。
+
+  <!--
+  PodSecurityContext holds pod-level security attributes and common container settings. Some fields are also present in container.securityContext.  Field values of container.securityContext take precedence over field values of PodSecurityContext.
+  -->
+
+  <a name="PodSecurityContext"></a>
+  PodSecurityContext 包含 Pod 级别的安全属性和常用容器设置。
+  一些字段也存在于 `container.securityContext` 中。`container.securityContext`
+  中的字段值优先于 PodSecurityContext 的字段值。
+
+  <!--
+  - **securityContext.runAsUser** (int64)
+
+    The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container. Note that this field cannot be set when spec.os.name is windows.
+  -->
+
+  - **securityContext.runAsUser** (int64)
+
+    运行容器进程入口点（Entrypoint）的 UID。如果未指定，则默认为镜像元数据中指定的用户。
+    也可以在 SecurityContext 中设置。
+    如果同时在 SecurityContext 和 PodSecurityContext 中设置，则在对应容器中所设置的 SecurityContext 值优先。
+    注意，`spec.os.name` 为 "windows" 时不能设置此字段。
+
+  <!--
+  - **securityContext.runAsNonRoot** (boolean)
+
+    Indicates that the container must run as a non-root user. If true, the Kubelet will validate the image at runtime to ensure that it does not run as UID 0 (root) and fail to start the container if it does. If unset or false, no such validation will be performed. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.
+  -->
+
+  - **securityContext.runAsNonRoot** (boolean)
+
+    指示容器必须以非 root 用户身份运行。如果为 true，kubelet 将在运行时验证镜像，
+    以确保它不会以 UID 0（root）身份运行。如果镜像中确实使用 root 账号启动，则容器无法被启动。
+    如果此字段未设置或为 false，则不会执行此类验证。也可以在 SecurityContext 中设置。
+    如果同时在 SecurityContext 和 PodSecurityContext 中设置，则在 SecurityContext 中指定的值优先。
+
+  <!--
+  - **securityContext.runAsGroup** (int64)
+
+    The GID to run the entrypoint of the container process. Uses runtime default if unset. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container. Note that this field cannot be set when spec.os.name is windows.
+  -->
+
+  - **securityContext.runAsGroup** (int64)
+
+    运行容器进程入口点（Entrypoint）的 GID。如果未设置，则使用运行时的默认值。
+    也可以在 SecurityContext 中设置。如果同时在 SecurityContext 和 PodSecurityContext 中设置，
+    则在对应容器中设置的 SecurityContext 值优先。
+    注意，`spec.os.name` 为 "windows" 时不能设置该字段。
+
+  <!--
+  - **securityContext.supplementalGroups** ([]int64)
+
+    A list of groups applied to the first process run in each container, in addition to the container's primary GID.  If unspecified, no groups will be added to any container. Note that this field cannot be set when spec.os.name is windows.
+  -->
+
+  - **securityContext.supplementalGroups** ([]int64)
+
+    在容器的主 GID 之外，应用于每个容器中运行的第一个进程的组列表。
+    如果未设置此字段，则不会向任何容器添加额外的组。
+    注意，`spec.os.name` 为 "windows" 时不能设置此字段。
+
+  <!--
+  - **securityContext.fsGroup** (int64)
+
+    A special supplemental group that applies to all containers in a pod. Some volume types allow the Kubelet to change the ownership of that volume to be owned by the pod:
+    
+    1. The owning GID will be the FSGroup 2. The setgid bit is set (new files created in the volume will be owned by FSGroup) 3. The permission bits are OR'd with rw-rw----
+    
+    If unset, the Kubelet will not modify the ownership and permissions of any volume. Note that this field cannot be set when spec.os.name is windows.
+  -->
+
+  - **securityContext.fsGroup** (int64)
+
+    应用到 Pod 中所有容器的特殊补充组。某些卷类型允许 kubelet 将该卷的所有权更改为由 Pod 拥有：
+    
+    1. 文件系统的属主 GID 将是 fsGroup 字段值
+    2. `setgid` 位已设置（在卷中创建的新文件将归 fsGroup 所有）
+    3. 权限位将与 `rw-rw----` 进行按位或操作
+    
+    如果未设置此字段，kubelet 不会修改任何卷的所有权和权限。
+    注意，`spec.os.name` 为 "windows" 时不能设置此字段。
+
+  <!--
+  - **securityContext.fsGroupChangePolicy** (string)
+
+    fsGroupChangePolicy defines behavior of changing ownership and permission of the volume before being exposed inside Pod. This field will only apply to volume types which support fsGroup based ownership(and permissions). It will have no effect on ephemeral volume types such as: secret, configmaps and emptydir. Valid values are "OnRootMismatch" and "Always". If not specified, "Always" is used. Note that this field cannot be set when spec.os.name is windows.
+  -->
+
+  - **securityContext.fsGroupChangePolicy** (string)
+
+    fsGroupChangePolicy 定义了在卷被在 Pod 中暴露之前更改其属主和权限的行为。
+    此字段仅适用于支持基于 fsGroup 的属主权（和权限）的卷类型。它不会影响临时卷类型，
+    例如：`secret`、`configmap` 和 `emptydir`。
+    有效值为 `"OnRootMismatch"` 和 `"Always"`。如果未设置，则使用 `"Always"`。
+    注意，`spec.os.name` 为 "windows" 时不能设置此字段。
+
+  <!--
+  - **securityContext.seccompProfile** (SeccompProfile)
+
+    The seccomp options to use by the containers in this pod. Note that this field cannot be set when spec.os.name is windows.
+  -->
+
+  - **securityContext.seccompProfile** (SeccompProfile)
+
+    此 Pod 中的容器使用的 seccomp 选项。注意，`spec.os.name` 为 "windows" 时不能设置此字段。
+
+    <!--
+    SeccompProfile defines a pod/container's seccomp profile settings. Only one profile source may be set.
+    -->
+
+    **SeccompProfile 定义 Pod 或容器的 seccomp 配置文件设置。只能设置一个配置文件源。**
+
+    <!--
+    - **securityContext.seccompProfile.type** (string), required
+
+      type indicates which kind of seccomp profile will be applied. Valid options are:
+      
+      Localhost - a profile defined in a file on the node should be used. RuntimeDefault - the container runtime default profile should be used. Unconfined - no profile should be applied.
+    -->
+
+    - **securityContext.seccompProfile.type** (string)，必需
+
+      type 标明将应用哪种 seccomp 配置文件。有效的选项有：
+
+      - `Localhost` - 应使用在节点上的文件中定义的配置文件。
+      - `RuntimeDefault` - 应使用容器运行时默认配置文件。
+      - `Unconfined` - 不应应用任何配置文件。
+
+    <!--
+    - **securityContext.seccompProfile.localhostProfile** (string)
+
+      localhostProfile indicates a profile defined in a file on the node should be used. The profile must be preconfigured on the node to work. Must be a descending path, relative to the kubelet's configured seccomp profile location. Must only be set if type is "Localhost".
+    -->
+
+    - **securityContext.seccompProfile.localhostProfile** (string)
+
+      localhostProfile 指示应使用在节点上的文件中定义的配置文件。该配置文件必须在节点上预先配置才能工作。
+      必须是相对于 kubelet 配置的 seccomp 配置文件位置的下降路径。
+      仅当 type 为 `"Localhost"` 时才必须设置。
+
+  <!--
+  - **securityContext.seLinuxOptions** (SELinuxOptions)
+
+    The SELinux context to be applied to all containers. If unspecified, the container runtime will allocate a random SELinux context for each container.  May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container. Note that this field cannot be set when spec.os.name is windows.
+  -->
+
+  - **securityContext.seLinuxOptions** (SELinuxOptions)
+
+    应用于所有容器的 SELinux 上下文。如果未设置，容器运行时将为每个容器分配一个随机 SELinux 上下文。
+    也可以在 SecurityContext 中设置。
+    如果同时在 SecurityContext 和 PodSecurityContext 中设置，则在对应容器中设置的 SecurityContext 值优先。
+    注意，`spec.os.name` 为 "windows" 时不能设置该字段。
+
+    <!--
+    SELinuxOptions are the labels to be applied to the container
+    -->
+
+    <a name="SELinuxOptions"></a>
+    **SELinuxOptions 是要应用于容器的标签**
+
+    <!--
+    - **securityContext.seLinuxOptions.level** (string)
+
+      Level is SELinux level label that applies to the container.
+
+    - **securityContext.seLinuxOptions.role** (string)
+
+      Role is a SELinux role label that applies to the container.
+
+    - **securityContext.seLinuxOptions.type** (string)
+
+      Type is a SELinux type label that applies to the container.
+
+    - **securityContext.seLinuxOptions.user** (string)
+
+      User is a SELinux user label that applies to the container.
+    -->
+
+    - **securityContext.seLinuxOptions.level** (string)
+
+      level 是应用于容器的 SELinux 级别标签。
+
+    - **securityContext.seLinuxOptions.role** (string)
+
+      role 是应用于容器的 SELinux 角色标签。
+
+    - **securityContext.seLinuxOptions.type** (string)
+
+      type 是适用于容器的 SELinux 类型标签。
+
+    - **securityContext.seLinuxOptions.user** (string)
+
+      user 是应用于容器的 SELinux 用户标签。
+
+  <!--
+  - **securityContext.sysctls** ([]Sysctl)
+
+    Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported sysctls (by the container runtime) might fail to launch. Note that this field cannot be set when spec.os.name is windows.
+  -->
+
+  - **securityContext.sysctls** ([]Sysctl)
+
+    sysctls 包含用于 Pod 的名字空间 sysctl 列表。具有不受（容器运行时）支持的 sysctl 的 Pod 可能无法启动。
+    注意，`spec.os.name` 为 "windows" 时不能设置此字段。
+
+    <!--
+    Sysctl defines a kernel parameter to be set
+    -->
+
+    <a name="Sysctl"></a>
+    **Sysctl 定义要设置的内核参数**
+
+    <!--
+    - **securityContext.sysctls.name** (string), required
+
+      Name of a property to set
+
+    - **securityContext.sysctls.value** (string), required
+
+      Value of a property to set
+    -->
+
+    - **securityContext.sysctls.name** (string)，必需
+
+      要设置的属性的名称。
+
+    - **securityContext.sysctls.value** (string)，必需
+
+      要设置的属性值。
+
+  <!--
+  - **securityContext.windowsOptions** (WindowsSecurityContextOptions)
+
+    The Windows specific settings applied to all containers. If unspecified, the options within a container's SecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is linux.
+  -->
+
+  - **securityContext.windowsOptions** (WindowsSecurityContextOptions)
+
+    要应用到所有容器上的、特定于 Windows 的设置。
+    如果未设置此字段，将使用容器的 SecurityContext 中的选项。
+    如果同时在 SecurityContext 和 PodSecurityContext 中设置，则在 SecurityContext 中指定的值优先。
+    注意，`spec.os.name` 为 "linux" 时不能设置该字段。
+
+    <!--
+    WindowsSecurityContextOptions contain Windows-specific options and credentials.
+    -->
+
+    <a name="WindowsSecurityContextOptions"></a>
+    **WindowsSecurityContextOptions 包含特定于 Windows 的选项和凭据。**
+
+    <!--
+    - **securityContext.windowsOptions.gmsaCredentialSpec** (string)
+
+      GMSACredentialSpec is where the GMSA admission webhook (https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the GMSA credential spec named by the GMSACredentialSpecName field.
+
+    - **securityContext.windowsOptions.gmsaCredentialSpecName** (string)
+
+      GMSACredentialSpecName is the name of the GMSA credential spec to use.
+    -->
+
+    - **securityContext.windowsOptions.gmsaCredentialSpec** (string)
+
+      gmsaCredentialSpec 是 [GMSA 准入 Webhook](https://github.com/kubernetes-sigs/windows-gmsa)
+      内嵌由 gmsaCredentialSpecName 字段所指定的 GMSA 凭证规约内容的地方。
+
+    - **securityContext.windowsOptions.gmsaCredentialSpecName** (string)
+
+      gmsaCredentialSpecName 是要使用的 GMSA 凭证规约的名称。
+
+    <!--
+    - **securityContext.windowsOptions.hostProcess** (boolean)
+
+      HostProcess determines if a container should be run as a 'Host Process' container. This field is alpha-level and will only be honored by components that enable the WindowsHostProcessContainers feature flag. Setting this field without the feature flag will result in errors when validating the Pod. All of a Pod's containers must have the same effective HostProcess value (it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).  In addition, if HostProcess is true then HostNetwork must also be set to true.
+    -->
+
+    - **securityContext.windowsOptions.hostProcess** (boolean)
+
+      hostProcess 确定容器是否应作为"主机进程"容器运行。
+      此字段是 Alpha 级别的，只有启用 WindowsHostProcessContainers 特性门控的组件才会理解此字段。
+      在不启用该功能门控的前提下设置了此字段，将导致验证 Pod 时发生错误。
+      一个 Pod 的所有容器必须具有相同的有效 hostProcess 值（不允许混合设置了 hostProcess
+      的容器和未设置 hostProcess 容器）。
+      此外，如果 hostProcess 为 true，则 hostNetwork 也必须设置为 true。
+
+    <!--
+    - **securityContext.windowsOptions.runAsUserName** (string)
+
+      The UserName in Windows to run the entrypoint of the container process. Defaults to the user specified in image metadata if unspecified. May also be set in PodSecurityContext. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.
+    -->
+
+    - **securityContext.windowsOptions.runAsUserName** (string)
+
+      Windows 中用来运行容器进程入口点的用户名。如果未设置，则默认为镜像元数据中指定的用户。
+      也可以在 PodSecurityContext 中设置。
+      如果同时在 SecurityContext 和 PodSecurityContext 中设置，则在 SecurityContext 中指定的值优先。
+
+<!--
+### Beta level
+-->
+
+### Beta 级别
+
+<!--
+- **ephemeralContainers** ([]<a href="{{< ref "../workload-resources/pod-v1#EphemeralContainer" >}}">EphemeralContainer</a>)
+
+  *Patch strategy: merge on key `name`*
+  
+  List of ephemeral containers run in this pod. Ephemeral containers may be run in an existing pod to perform user-initiated actions such as debugging. This list cannot be specified when creating a pod, and it cannot be modified by updating the pod spec. In order to add an ephemeral container to an existing pod, use the pod's ephemeralcontainers subresource. This field is beta-level and available on clusters that haven't disabled the EphemeralContainers feature gate.
+-->
+
+- **ephemeralContainers** ([]<a href="{{< ref "../workload-resources/pod-v1#EphemeralContainer" >}}">EphemeralContainer</a>)
+
+  **补丁策略：基于 `name` 键合并**
+  
+  在此 Pod 中运行的临时容器列表。临时容器可以在现有的 Pod 中运行，以执行用户发起的操作，例如调试。
+  此列表在创建 Pod 时不能指定，也不能通过更新 Pod 规约来修改。
+  要将临时容器添加到现有 Pod，请使用 Pod 的 `ephemeralcontainers` 子资源。
+  此字段是 Beta 级别的，可在尚未禁用 EphemeralContainers 特性门控的集群上使用。
+
+<!--
+- **preemptionPolicy** (string)
+
+  PreemptionPolicy is the Policy for preempting pods with lower priority. One of Never, PreemptLowerPriority. Defaults to PreemptLowerPriority if unset.
+-->
+
+- **preemptionPolicy** (string)
+
+  PreemptionPolicy 是用来抢占优先级较低的 Pod 的策略。取值为 `"Never"`、`"PreemptLowerPriority"` 之一。
+  如果未设置，则默认为 `"PreemptLowerPriority"`。
+
+<!--
+- **overhead** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+  Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. This field will be autopopulated at admission time by the RuntimeClass admission controller. If the RuntimeClass admission controller is enabled, overhead must not be set in Pod create requests. The RuntimeClass admission controller will reject Pod create requests which have the overhead already set. If RuntimeClass is configured and selected in the PodSpec, Overhead will be set to the value defined in the corresponding RuntimeClass, otherwise it will remain unset and treated as zero. More info: https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.md
+-->
+
+- **overhead** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+  overhead 表示与用指定 RuntimeClass 运行 Pod 相关的资源开销。该字段将由 RuntimeClass 准入控制器在准入时自动填充。
+  如果启用了 RuntimeClass 准入控制器，则不得在 Pod 创建请求中设置 overhead 字段。
+  RuntimeClass 准入控制器将拒绝已设置 overhead 字段的 Pod 创建请求。
+  如果在 Pod 规约中配置并选择了 RuntimeClass，overhead 字段将被设置为对应 RuntimeClass
+  中定义的值，否则将保持未设置并视为零。更多信息：
+  https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.md
+
+<!--
+### Deprecated
+
+- **serviceAccount** (string)
+
+  DeprecatedServiceAccount is a depreciated alias for ServiceAccountName. Deprecated: Use serviceAccountName instead.
+-->
+
+### 已弃用的
+
+- **serviceAccount** (string)
+
+  deprecatedServiceAccount 是 serviceAccountName 的弃用别名。此字段已被弃用：应改用 serviceAccountName。
+
+<!--
+## Container {#Container}
+
+A single application container that you want to run within a pod.
+
+- **name** (string), required
+
+  Name of the container specified as a DNS_LABEL. Each container in a pod must have a unique name (DNS_LABEL). Cannot be updated.
+-->
+
+## Container
+
+要在 Pod 中运行的单个应用容器。
+
+<hr>
+
+- **name** (string)，必需
+
+  指定为 DNS_LABEL 的容器的名称。Pod 中的每个容器都必须有一个唯一的名称 (DNS_LABEL)。无法更新。
+
+<!--
+### Image
+-->
+### 镜像 {#image}
+
+<!--
+- **image** (string)
+
+  Container image name. More info: https://kubernetes.io/docs/concepts/containers/images This field is optional to allow higher level config management to default or override container images in workload controllers like Deployments and StatefulSets.
+
+- **imagePullPolicy** (string)
+
+  Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images
+-->
+
+- **image** (string)
+
+  容器镜像名称。更多信息： https://kubernetes.io/zh-cn/docs/concepts/containers/images。
+  此字段是可选的，以允许更高层的配置管理进行默认设置或覆盖工作负载控制器（如 Deployment 和 StatefulSets）
+  中的容器镜像。
+
+- **imagePullPolicy** (string)
+
+  镜像拉取策略。`"Always"`、`"Never"`、`"IfNotPresent"` 之一。如果指定了 `:latest` 标签，则默认为 `"Always"`，
+  否则默认为 `"IfNotPresent"`。无法更新。更多信息： 
+  https://kubernetes.io/zh-cn/docs/concepts/containers/images#updating-images
+
+<!--
+### Entrypoint
+-->
+
+### Entrypoint
+
+<!--
+- **command** ([]string)
+
+  Entrypoint array. Not executed within a shell. The container image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. "$$(VAR_NAME)" will produce the string literal "$(VAR_NAME)". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
+-->
+
+- **command** ([]string)
+
+  入口点数组。不在 Shell 中执行。如果未提供，则使用容器镜像的 `ENTRYPOINT`。
+  变量引用 `$(VAR_NAME)` 使用容器的环境进行扩展。如果无法解析变量，则输入字符串中的引用将保持不变。
+  `$$` 被简化为 `$`，这允许转义 `$(VAR_NAME)` 语法：即 `"$$(VAR_NAME)" ` 将产生字符串字面值 `"$(VAR_NAME)"`。
+  无论变量是否存在，转义引用都不会被扩展。无法更新。更多信息： 
+  https://kubernetes.io/zh-cn/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
+
+<!--
+- **args** ([]string)
+
+  Arguments to the entrypoint. The container image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. "$$(VAR_NAME)" will produce the string literal "$(VAR_NAME)". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
+-->
+
+- **args** ([]string)
+
+  entrypoint 的参数。如果未提供，则使用容器镜像的 `CMD` 设置。变量引用 `$(VAR_NAME)` 使用容器的环境进行扩展。
+  如果无法解析变量，则输入字符串中的引用将保持不变。`$$` 被简化为 `$`，这允许转义 `$(VAR_NAME)` 语法：
+  即 `"$$(VAR_NAME)"` 将产生字符串字面值 `"$(VAR_NAME)"`。无论变量是否存在，转义引用都不会被扩展。无法更新。
+  更多信息： 
+  https://kubernetes.io/zh-cn/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
+
+<!--
+- **workingDir** (string)
+
+  Container's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.
+-->
+
+- **workingDir** (string)
+
+  容器的工作目录。如果未指定，将使用容器运行时的默认值，默认值可能在容器镜像中配置。无法更新。
+
+<!---
+### Ports
+-->
+
+### 端口
+
+<!--
+- **ports** ([]ContainerPort)
+
+  *Patch strategy: merge on key `containerPort`*
+  
+  *Map: unique values on keys `containerPort, protocol` will be kept during a merge*
+  
+  List of ports to expose from the container. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default "0.0.0.0" address inside a container will be accessible from the network. Cannot be updated.
+
+  *ContainerPort represents a network port in a single container.*
+-->
+
+- **ports**（[]ContainerPort）
+
+  **补丁策略：基于 `containerPort` 键合并**
+  
+  **映射：键 `containerPort, protocol` 组合的唯一值将在合并期间保留**
+  
+  要从容器公开的端口列表。在此处公开端口可为系统提供有关容器使用的网络连接的附加信息，但主要是信息性的。
+  此处不指定端口不会阻止该端口被暴露。
+  任何侦听容器内默认 `"0.0.0.0"` 地址的端口都可以从网络访问。无法更新。
+
+  <a name="ContainerPort"></a>
+  **ContainerPort 表示单个容器中的网络端口。**
+
+  <!--
+  - **ports.containerPort** (int32), required
+
+    Number of port to expose on the pod's IP address. This must be a valid port number, 0 \< x \< 65536.
+
+  - **ports.hostIP** (string)
+
+    What host IP to bind the external port to.
+  -->
+
+  - **ports.containerPort** (int32)，必需
+
+    要在 Pod 的 IP 地址上公开的端口号。这必须是有效的端口号，0 \< x \< 65536。
+
+  - **ports.hostIP** (string)
+
+    绑定外部端口的主机 IP。
+
+  <!--
+  - **ports.hostPort** (int32)
+
+    Number of port to expose on the host. If specified, this must be a valid port number, 0 \< x \< 65536. If HostNetwork is specified, this must match ContainerPort. Most containers do not need this.
+
+  - **ports.name** (string)
+
+    If specified, this must be an IANA_SVC_NAME and unique within the pod. Each named port in a pod must have a unique name. Name for the port that can be referred to by services.
+  -->
+
+  - **ports.hostPort** (int32)
+
+    要在主机上公开的端口号。如果指定，此字段必须是一个有效的端口号，0 \< x \< 65536。
+    如果设置了 hostNetwork，此字段值必须与 containerPort 匹配。大多数容器不需要设置此字段。
+
+  - **ports.name** (string)
+
+    如果设置此字段，这必须是 IANA_SVC_NAME 并且在 Pod 中唯一。
+    Pod 中的每个命名端口都必须具有唯一的名称。服务可以引用的端口的名称。
+
+  <!--
+  - **ports.protocol** (string)
+
+    Protocol for port. Must be UDP, TCP, or SCTP. Defaults to "TCP".
+  -->
+
+  - **ports.protocol** (string)
+
+    端口协议。必须是 `UDP`、`TCP` 或 `SCTP`。默认为 `TCP`。
+
+<!--
+### Environment variables
+-->
+
+### 环境变量
+
+<!--
+- **env** ([]EnvVar)
+
+  *Patch strategy: merge on key `name`*
+  
+  List of environment variables to set in the container. Cannot be updated.
+-->
+
+- **env**（[]EnvVar）
+
+  **补丁策略：基于 `name` 键合并**
+  
+  要在容器中设置的环境变量列表。无法更新。
+
+  <!--
+  *EnvVar represents an environment variable present in a Container.*
+  -->
+  <a name="EnvVar"></a>
+  **EnvVar 表示容器中存在的环境变量。**
+
+  <!--
+  - **env.name** (string), required
+
+    Name of the environment variable. Must be a C_IDENTIFIER.
+  -->
+
+  - **env.name** (string)，必需
+
+    环境变量的名称。必须是 C_IDENTIFIER。
+
+  <!--
+  - **env.value** (string)
+
+    Variable references $(VAR_NAME) are expanded using the previously defined environment variables in the container and any service environment variables. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. "$$(VAR_NAME)" will produce the string literal "$(VAR_NAME)". Escaped references will never be expanded, regardless of whether the variable exists or not. Defaults to "".
+  -->
+
+  - **env.value** (string)
+
+    变量引用 `$(VAR_NAME)` 使用容器中先前定义的环境变量和任何服务环境变量进行扩展。
+    如果无法解析变量，则输入字符串中的引用将保持不变。
+    `$$` 会被简化为 `$`，这允许转义 `$(VAR_NAME)` 语法：即 `"$$(VAR_NAME)"` 将产生字符串字面值 `"$(VAR_NAME)"`。
+    无论变量是否存在，转义引用都不会被扩展。默认为 ""。
+
+  <!--
+  - **env.valueFrom** (EnvVarSource)
+
+    Source for the environment variable's value. Cannot be used if value is not empty.
+  -->
+
+  - **env.valueFrom** (EnvVarSource)
+
+    环境变量值的来源。如果 value 值不为空，则不能使用。
+
+    <!--
+    *EnvVarSource represents a source for the value of an EnvVar.*
+    -->
+
+    **EnvVarSource 表示 envVar 值的来源。**
+
+    <!--
+    - **env.valueFrom.configMapKeyRef** (ConfigMapKeySelector)
+
+      Selects a key of a ConfigMap.
+    -->
+
+    - **env.valueFrom.configMapKeyRef** (ConfigMapKeySelector)
+
+      选择某个 ConfigMap 的一个主键。
+
+      <!--
+      - **env.valueFrom.configMapKeyRef.key** (string), required
+
+        The key to select.
+
+      - **env.valueFrom.configMapKeyRef.name** (string)
+
+        Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+
+      - **env.valueFrom.configMapKeyRef.optional** (boolean)
+
+        Specify whether the ConfigMap or its key must be defined
+      -->
+
+      - **env.valueFrom.configMapKeyRef.key** (string)，必需
+
+        要选择的主键。
+
+      - **env.valueFrom.configMapKeyRef.name** (string)
+
+        被引用者的名称。更多信息： 
+        https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/names/#names
+
+      - **env.valueFrom.configMapKeyRef.optional** (boolean)
+
+        指定 ConfigMap 或其主键是否必须已经定义。
+
+    <!--
+    - **env.valueFrom.fieldRef** (<a href="{{< ref "../common-definitions/object-field-selector#ObjectFieldSelector" >}}">ObjectFieldSelector</a>)
+
+      Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['\<KEY>']`, `metadata.annotations['\<KEY>']`, spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.
+    -->
+
+    - **env.valueFrom.fieldRef** (<a href="{{< ref "../common-definitions/object-field-selector#ObjectFieldSelector" >}}">ObjectFieldSelector</a>)
+
+      选择 Pod 的一个字段：支持 `metadata.name`、`metadata.namespace`、`metadata.labels['<KEY>']`、
+      `metadata.annotations['<KEY>']`、`spec.nodeName`、`spec.serviceAccountName`、`status.hostIP`
+      `status.podIP`、`status.podIPs`。
+
+    <!--
+    - **env.valueFrom.resourceFieldRef** (<a href="{{< ref "../common-definitions/resource-field-selector#ResourceFieldSelector" >}}">ResourceFieldSelector</a>)
+
+      Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.
+    -->
+
+    - **env.valueFrom.resourceFieldRef** (<a href="{{< ref "../common-definitions/resource-field-selector#ResourceFieldSelector" >}}">ResourceFieldSelector</a>)
+
+      选择容器的资源：目前仅支持资源限制和请求（`limits.cpu`、`limits.memory`、`limits.ephemeral-storage`、
+      `requests.cpu`、`requests.memory` 和 `requests.ephemeral-storage`）。
+
+    <!--
+    - **env.valueFrom.secretKeyRef** (SecretKeySelector)
+
+      Selects a key of a secret in the pod's namespace
+    -->
+
+    - **env.valueFrom.secretKeyRef** (SecretKeySelector)
+
+      在 Pod 的名字空间中选择 Secret 的主键。
+
+      <a name="SecretKeySelector"></a>
+      <!--
+      *SecretKeySelector selects a key of a Secret.*
+      -->
+
+      **SecretKeySelector 选择一个 Secret 的主键。**
+
+      <!--
+      - **env.valueFrom.secretKeyRef.key** (string), required
+
+        The key of the secret to select from.  Must be a valid secret key.
+
+      - **env.valueFrom.secretKeyRef.name** (string)
+
+        Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+
+      - **env.valueFrom.secretKeyRef.optional** (boolean)
+
+        Specify whether the Secret or its key must be defined
+      -->
+
+      - **env.valueFrom.secretKeyRef.key** (string)，必需
+
+        要选择的 Secret 的主键。必须是有效的主键。
+
+      - **env.valueFrom.secretKeyRef.name** (string)
+
+        被引用 Secret 的名称。更多信息： 
+        https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/names/#names
+
+      - **env.valueFrom.secretKeyRef.optional** (boolean)
+
+        指定 Secret 或其主键是否必须已经定义。
+
+<!--
+- **envFrom** ([]EnvFromSource)
+
+  List of sources to populate environment variables in the container. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.
+
+-->
+- **envFrom** ([]EnvFromSource)
+
+  用来在容器中填充环境变量的数据源列表。在源中定义的键必须是 C_IDENTIFIER。
+  容器启动时，所有无效主键都将作为事件报告。
+  当一个键存在于多个源中时，与最后一个来源关联的值将优先。
+  由 env 定义的条目中，与此处键名重复者，以 env 中定义为准。无法更新。
+
+  <!--
+  *EnvFromSource represents the source of a set of ConfigMaps*
+  -->
+  <a name="EnvFromSource"></a>
+  **EnvFromSource 表示一组 ConfigMaps 的来源**
+
+  <!--
+  - **envFrom.configMapRef** (ConfigMapEnvSource)
+
+    The ConfigMap to select from
+
+    <a name="ConfigMapEnvSource"></a>
+    *ConfigMapEnvSource selects a ConfigMap to populate the environment variables with.
+    
+    The contents of the target ConfigMap's Data field will represent the key-value pairs as environment variables.*
+  -->
+
+  - **envFrom.configMapRef** (ConfigMapEnvSource)
+
+    要从中选择主键的 ConfigMap。
+
+    <a name="ConfigMapEnvSource"></a>
+    ConfigMapEnvSource 选择一个 ConfigMap 来填充环境变量。目标 ConfigMap 的
+    data 字段的内容将键值对表示为环境变量。
+
+    <!--
+    - **envFrom.configMapRef.name** (string)
+
+      Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+
+    - **envFrom.configMapRef.optional** (boolean)
+
+      Specify whether the ConfigMap must be defined
+    -->
+
+    - **envFrom.configMapRef.name** (string)
+
+      被引用的 ConfigMap 的名称。更多信息：
+      https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/names/#names
+
+    - **envFrom.configMapRef.optional** (boolean)
+
+      指定 ConfigMap 是否必须已经定义。
+
+  <!--
+  - **envFrom.prefix** (string)
+
+    An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.
+
+  - **envFrom.secretRef** (SecretEnvSource)
+
+    The Secret to select from
+
+    <a name="SecretEnvSource"></a>
+    *SecretEnvSource selects a Secret to populate the environment variables with.
+    
+    The contents of the target Secret's Data field will represent the key-value pairs as environment variables.*
+  -->
+
+  - **envFrom.prefix** (string)
+
+    附加到 ConfigMap 中每个键名之前的可选标识符。必须是 C_IDENTIFIER。
+
+  - **envFrom.secretRef** (SecretEnvSource)
+
+    要从中选择主键的 Secret。
+
+    SecretEnvSource 选择一个 Secret 来填充环境变量。
+    目标 Secret 的 data 字段的内容将键值对表示为环境变量。
+
+    <!--
+    - **envFrom.secretRef.name** (string)
+
+      Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+
+    - **envFrom.secretRef.optional** (boolean)
+
+      Specify whether the Secret must be defined
+    -->
+
+    - **envFrom.secretRef.name** (string)
+
+      被引用 Secret 的名称。更多信息： 
+      https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/names/#names
+
+    - **envFrom.secretRef.optional** (boolean)
+
+      指定 Secret 是否必须已经定义。
+
+<!--
+### Volumes
+-->
+
+### 卷
+
+<!--
+- **volumeMounts** ([]VolumeMount)
+
+  *Patch strategy: merge on key `mountPath`*
+  
+  Pod volumes to mount into the container's filesystem. Cannot be updated.
+
+  <a name="VolumeMount"></a>
+  *VolumeMount describes a mounting of a Volume within a container.*
+-->
+
+- **volumeMounts** ([]VolumeMount)
+
+  **补丁策略：基于 `mountPath` 键合并**
+  
+  要挂载到容器文件系统中的 Pod 卷。无法更新。
+
+  VolumeMount 描述在容器中安装卷。
+
+  <!--
+  - **volumeMounts.mountPath** (string), required
+
+    Path within the container at which the volume should be mounted.  Must not contain ':'.
+
+  - **volumeMounts.name** (string), required
+
+    This must match the Name of a Volume.
+
+  - **volumeMounts.mountPropagation** (string)
+
+    mountPropagation determines how mounts are propagated from the host to container and the other way around. When not set, MountPropagationNone is used. This field is beta in 1.10.
+  -->
+
+  - **volumeMounts.mountPath** (string)，必需
+
+    容器内卷的挂载路径。不得包含 ':'。
+
+  - **volumeMounts.name** (string)，必需
+
+    此字段必须与卷的名称匹配。
+
+  - **volumeMounts.mountPropagation** (string)
+
+    mountPropagation 确定挂载如何从主机传播到容器，及如何反向传播。
+    如果未设置，则使用 `MountPropagationNone`。该字段在 1.10 中是 Beta 版。
+
+  <!--
+  - **volumeMounts.readOnly** (boolean)
+
+    Mounted read-only if true, read-write otherwise (false or unspecified). Defaults to false.
+
+  - **volumeMounts.subPath** (string)
+
+    Path within the volume from which the container's volume should be mounted. Defaults to "" (volume's root).
+
+  - **volumeMounts.subPathExpr** (string)
+
+    Expanded path within the volume from which the container's volume should be mounted. Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment. Defaults to "" (volume's root). SubPathExpr and SubPath are mutually exclusive.
+  -->
+
+  - **volumeMounts.readOnly** (boolean)
+
+    如果为 true，则以只读方式挂载，否则（false 或未设置）以读写方式挂载。默认为 false。
+
+  - **volumeMounts.subPath** (boolean)
+
+    卷中的路径，容器中的卷应该这一路径安装。默认为 ""（卷的根）。
+
+  - **volumeMounts.subPathExpr** (string)
+
+    应安装容器卷的卷内的扩展路径。行为类似于 subPath，但环境变量引用 `$(VAR_NAME)`
+    使用容器的环境进行扩展。默认为 ""（卷的根）。`subPathExpr` 和 `subPath` 是互斥的。
+
+<!--
+- **volumeDevices** ([]VolumeDevice)
+
+  *Patch strategy: merge on key `devicePath`*
+  
+  volumeDevices is the list of block devices to be used by the container.
+
+  <a name="VolumeDevice"></a>
+  *volumeDevice describes a mapping of a raw block device within a container.*
+-->
+
+- **volumeDevices** ([]VolumeDevice)
+
+  **补丁策略：基于 `devicePath` 键合并**
+  
+  volumeDevices 是容器要使用的块设备列表。
+
+  <a name="VolumeDevice"></a>
+  volumeDevice 描述了容器内原始块设备的映射。
+
+  <!--
+  - **volumeDevices.devicePath** (string), required
+
+    devicePath is the path inside of the container that the device will be mapped to.
+
+  - **volumeDevices.name** (string), required
+
+    name must match the name of a persistentVolumeClaim in the pod
+  -->
+
+  - **volumeDevices.devicePath** (string)，必需
+
+    devicePath 是设备将被映射到的容器内的路径。
+
+  - **volumeDevices.name** (string)，必需
+
+    name 必须与 Pod 中的 persistentVolumeClaim 的名称匹配
+
+<!--
+### Resources
+-->
+
+### 资源
+
+<!--
+- **resources** (ResourceRequirements)
+
+  Compute Resources required by this container. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+  <a name="ResourceRequirements"></a>
+  *ResourceRequirements describes the compute resource requirements.*
+-->
+
+- **resources**（ResourceRequirements）
+
+  此容器所需的计算资源。无法更新。更多信息： 
+  https://kubernetes.io/zh-cn/docs/concepts/configuration/manage-resources-containers/
+
+  ResourceRequirements 描述计算资源需求。
+
+  <!--
+  - **resources.limits** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+    Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+  - **resources.requests** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+    Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+  -->
+
+  - **resources.limits** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+    limits 描述所允许的最大计算资源用量。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/configuration/manage-resources-containers/
+
+  - **resources.requests** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+    requests 描述所需的最小计算资源量。如果容器省略了 requests，但明确设定了 limits，
+    则 requests 默认值为 limits 值，否则为实现定义的值。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/configuration/manage-resources-containers/
+
+<!--
+### Lifecycle
+-->
+### 生命周期
+
+<!--
+- **lifecycle**  (Lifecycle)
+
+  Actions that the management system should take in response to container lifecycle events. Cannot be updated.
+
+  <a name="Lifecycle"></a>
+  *Lifecycle describes actions that the management system should take in response to container lifecycle events. For the PostStart and PreStop lifecycle handlers, management of the container blocks until the action is complete, unless the container process fails, in which case the handler is aborted.*
+-->
+
+- **lifecycle** (Lifecycle)
+
+  管理系统应对容器生命周期事件采取的行动。无法更新。
+
+  Lifecycle 描述管理系统为响应容器生命周期事件应采取的行动。
+  对于 postStart 和 preStop 生命周期处理程序，容器的管理会阻塞，直到操作完成，
+  除非容器进程失败，在这种情况下处理程序被中止。
+
+  <!--
+  - **lifecycle.postStart** (<a href="{{< ref "../workload-resources/pod-v1#LifecycleHandler" >}}">LifecycleHandler</a>)
+
+    PostStart is called immediately after a container is created. If the handler fails, the container is terminated and restarted according to its restart policy. Other management of the container blocks until the hook completes. More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks
+  -->
+
+  - **lifecycle.postStart** (<a href="{{< ref "../workload-resources/pod-v1#LifecycleHandler" >}}">LifecycleHandler</a>)
+
+    创建容器后立即调用 postStart。如果处理程序失败，则容器将根据其重新启动策略终止并重新启动。
+    容器的其他管理阻塞直到钩子完成。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/containers/container-lifecycle-hooks/#container-hooks
+
+  <!--
+  - **lifecycle.preStop** (<a href="{{< ref "../workload-resources/pod-v1#LifecycleHandler" >}}">LifecycleHandler</a>)
+
+    PreStop is called immediately before a container is terminated due to an API request or management event such as liveness/startup probe failure, preemption, resource contention, etc. The handler is not called if the container crashes or exits. The Pod's termination grace period countdown begins before the PreStop hook is executed. Regardless of the outcome of the handler, the container will eventually terminate within the Pod's termination grace period (unless delayed by finalizers). Other management of the container blocks until the hook completes or until the termination grace period is reached. More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks
+  -->
+
+  - **lifecycle.preStop** (<a href="{{< ref "../workload-resources/pod-v1#LifecycleHandler" >}}">LifecycleHandler</a>)
+
+    preStop 在容器因 API 请求或管理事件（如存活态探针/启动探针失败、抢占、资源争用等）而终止之前立即调用。
+    如果容器崩溃或退出，则不会调用处理程序。Pod 的终止宽限期倒计时在 preStop 钩子执行之前开始。
+    无论处理程序的结果如何，容器最终都会在 Pod 的终止宽限期内终止（除非被终结器延迟）。
+    容器的其他管理会阻塞，直到钩子完成或达到终止宽限期。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/containers/container-lifecycle-hooks/#container-hooks
+
+<!--
+- **terminationMessagePath** (string)
+
+  Optional: Path at which the file to which the container's termination message will be written is mounted into the container's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.
+-->
+
+- **terminationMessagePath** (string)
+
+  可选字段。挂载到容器文件系统的一个路径，容器终止消息写入到该路径下的文件中。
+  写入的消息旨在成为简短的最终状态，例如断言失败消息。如果大于 4096 字节，将被节点截断。
+  所有容器的总消息长度将限制为 12 KB。默认为 `/dev/termination-log`。无法更新。
+
+<!--
+- **terminationMessagePolicy** (string)
+
+  Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the container status message on both success and failure. FallbackToLogsOnError will use the last chunk of container log output if the termination message file is empty and the container exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.
+-->
+- **terminationMessagePolicy** (string)
+
+  指示应如何填充终止消息。字段值 `File` 将使用 terminateMessagePath 的内容来填充成功和失败的容器状态消息。
+  如果终止消息文件为空并且容器因错误退出，`FallbackToLogsOnError` 将使用容器日志输出的最后一块。
+  日志输出限制为 2048 字节或 80 行，以较小者为准。默认为 `File`。无法更新。
+
+<!--
+- **livenessProbe** (<a href="{{< ref "../workload-resources/pod-v1#Probe" >}}">Probe</a>)
+
+  Periodic probe of container liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
+-->
+- **livenessProbe** (<a href="{{< ref "../workload-resources/pod-v1#Probe" >}}">Probe</a>)
+
+  定期探针容器活跃度。如果探针失败，容器将重新启动。无法更新。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/workloads/pods/pod-lifecycle#container-probes
+
+<!--
+- **readinessProbe** (<a href="{{< ref "../workload-resources/pod-v1#Probe" >}}">Probe</a>)
+
+  Periodic probe of container service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
+-->
+- **readinessProbe** (<a href="{{< ref "../workload-resources/pod-v1#Probe" >}}">Probe</a>)
+
+  定期探测容器服务就绪情况。如果探针失败，容器将被从服务端点中删除。无法更新。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/workloads/pods/pod-lifecycle#container-probes
+
+<!--
+- **startupProbe** (<a href="{{< ref "../workload-resources/pod-v1#Probe" >}}">Probe</a>)
+
+  StartupProbe indicates that the Pod has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
+-->
+- **startupProbe** (<a href="{{< ref "../workload-resources/pod-v1#Probe" >}}">Probe</a>)
+
+  startupProbe 表示 Pod 已成功初始化。如果设置了此字段，则此探针成功完成之前不会执行其他探针。
+  如果这个探针失败，Pod 会重新启动，就像存活态探针失败一样。
+  这可用于在 Pod 生命周期开始时提供不同的探针参数，此时加载数据或预热缓存可能需要比稳态操作期间更长的时间。
+  这无法更新。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/workloads/pods/pod-lifecycle#container-probes
+
+<!--
+### Security Context
+-->
+### 安全上下文
+
+<!--
+- **securityContext** (SecurityContext)
+
+  SecurityContext defines the security options the container should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
+
+  <a name="SecurityContext"></a>
+  *SecurityContext holds security configuration that will be applied to a container. Some fields are present in both SecurityContext and PodSecurityContext.  When both are set, the values in SecurityContext take precedence.*
+-->
+- **securityContext** (SecurityContext)
+
+  SecurityContext 定义了容器应该运行的安全选项。如果设置，SecurityContext 的字段将覆盖
+  PodSecurityContext 的等效字段。更多信息：
+  https://kubernetes.io/zh-cn/docs/tasks/configure-pod-container/security-context/
+
+  SecurityContext 保存将应用于容器的安全配置。某些字段在 SecurityContext 和 PodSecurityContext 中都存在。
+  当两者都设置时，SecurityContext 中的值优先。
+
+  <!--
+  - **securityContext.runAsUser** (int64)
+
+    The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.
+  -->
+
+  - **securityContext.runAsUser** (int64)
+
+    运行容器进程入口点的 UID。如果未指定，则默认为镜像元数据中指定的用户。
+    也可以在 PodSecurityContext 中设置。
+    如果同时在 SecurityContext 和 PodSecurityContext 中设置，则在 SecurityContext 中指定的值优先。
+    注意，`spec.os.name` 为 "windows" 时不能设置该字段。
+
+  <!--
+  - **securityContext.runAsNonRoot** (boolean)
+
+    Indicates that the container must run as a non-root user. If true, the Kubelet will validate the image at runtime to ensure that it does not run as UID 0 (root) and fail to start the container if it does. If unset or false, no such validation will be performed. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.
+  -->
+
+  - **securityContext.runAsNonRoot** (boolean)
+
+    指示容器必须以非 root 用户身份运行。
+    如果为 true，kubelet 将在运行时验证镜像，以确保它不会以 UID 0（root）身份运行，如果是，则无法启动容器。
+    如果未设置或为 false，则不会执行此类验证。也可以在 PodSecurityContext 中设置。
+    如果同时在 SecurityContext 和 PodSecurityContext 中设置，则在 SecurityContext 中指定的值优先。
+
+  <!--
+  - **securityContext.runAsGroup** (int64)
+
+    The GID to run the entrypoint of the container process. Uses runtime default if unset. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.
+  -->
+
+  - **securityContext.runAsGroup** (int64)
+
+    运行容器进程入口点的 GID。如果未设置，则使用运行时默认值。也可以在 PodSecurityContext 中设置。
+    如果同时在 SecurityContext 和 PodSecurityContext 中设置，则在 SecurityContext 中指定的值优先。
+    注意，`spec.os.name` 为 "windows" 时不能设置该字段。
+
+  <!--
+  - **securityContext.readOnlyRootFilesystem** (boolean)
+
+    Whether this container has a read-only root filesystem. Default is false. Note that this field cannot be set when spec.os.name is windows.
+  -->
+
+  - **securityContext.readOnlyRootFilesystem** (boolean)
+
+    此容器是否具有只读根文件系统。默认为 false。注意，`spec.os.name` 为 "windows" 时不能设置该字段。
+
+  <!--
+  - **securityContext.procMount** (string)
+
+    procMount denotes the type of proc mount to use for the containers. The default is DefaultProcMount which uses the container runtime defaults for readonly paths and masked paths. This requires the ProcMountType feature flag to be enabled. Note that this field cannot be set when spec.os.name is windows.
+  -->
+
+  - **securityContext.procMount** (string)
+
+    procMount 表示用于容器的 proc 挂载类型。默认值为 `DefaultProcMount`，
+    它针对只读路径和掩码路径使用容器运行时的默认值。此字段需要启用 ProcMountType 特性门控。
+    注意，`spec.os.name` 为 "windows" 时不能设置此字段。
+
+  <!--
+  - **securityContext.privileged** (boolean)
+
+    Run container in privileged mode. Processes in privileged containers are essentially equivalent to root on the host. Defaults to false. Note that this field cannot be set when spec.os.name is windows.
+  -->
+
+  - **securityContext.privileged** (boolean)
+
+    以特权模式运行容器。特权容器中的进程本质上等同于主机上的 root。默认为 false。
+    注意，`spec.os.name` 为 "windows" 时不能设置此字段。
+
+  <!--
+  - **securityContext.allowPrivilegeEscalation** (boolean)
+
+    AllowPrivilegeEscalation controls whether a process can gain more privileges than its parent process. This bool directly controls if the no_new_privs flag will be set on the container process. AllowPrivilegeEscalation is true always when the container is: 1) run as Privileged 2) has CAP_SYS_ADMIN Note that this field cannot be set when spec.os.name is windows.
+  -->
+
+  - **securityContext.allowPrivilegeEscalation** (boolean)
+
+    allowPrivilegeEscalation 控制进程是否可以获得比其父进程更多的权限。此布尔值直接控制是否在容器进程上设置
+    `no_new_privs` 标志。allowPrivilegeEscalation 在容器处于以下状态时始终为 true：
+
+    1. 以特权身份运行
+    2. 具有 `CAP_SYS_ADMIN`
+
+    请注意，当 `spec.os.name` 为 "windows" 时，无法设置此字段。
+
+  <!--
+  - **securityContext.capabilities** (Capabilities)
+
+    The capabilities to add/drop when running containers. Defaults to the default set of capabilities granted by the container runtime. Note that this field cannot be set when spec.os.name is windows.
+
+    <a name="Capabilities"></a>
+
+    *Adds and removes POSIX capabilities from running containers.*
+
+    - **securityContext.capabilities.add** ([]string)
+
+      Added capabilities
+
+    - **securityContext.capabilities.drop** ([]string)
+
+      Removed capabilities
+  -->
+
+  - **securityContext.capabilities** (Capabilities)
+
+    运行容器时添加或放弃的权能（Capabilities）。默认为容器运行时所授予的权能集合。
+    注意，`spec.os.name` 为 "windows" 时不能设置此字段。
+
+    **在运行中的容器中添加和放弃 POSIX 权能。**
+
+    - **securityContext.capabilities.add** ([]string)
+
+      新增权能。
+
+    - **securityContext.capabilities.drop** ([]string)
+
+      放弃权能。
+
+  <!--
+  - **securityContext.seccompProfile** (SeccompProfile)
+
+    The seccomp options to use by this container. If seccomp options are provided at both the pod & container level, the container options override the pod options. Note that this field cannot be set when spec.os.name is windows.
+
+    <a name="SeccompProfile"></a>
+    *SeccompProfile defines a pod/container's seccomp profile settings. Only one profile source may be set.*
+  -->
+
+  - **securityContext.seccompProfile** (SeccompProfile)
+
+    此容器使用的 seccomp 选项。如果在 Pod 和容器级别都提供了 seccomp 选项，则容器级别的选项会覆盖 Pod 级别的选项设置。
+    注意，`spec.os.name` 为 "windows" 时不能设置此字段。
+
+    **SeccompProfile 定义 Pod 或容器的 seccomp 配置文件设置。只能设置一个配置文件源。**
+
+    <!--
+    - **securityContext.seccompProfile.type** (string), required
+
+      type indicates which kind of seccomp profile will be applied. Valid options are:
+      
+      Localhost - a profile defined in a file on the node should be used. RuntimeDefault - the container runtime default profile should be used. Unconfined - no profile should be applied.
+    --> 
+
+    - **securityContext.seccompProfile.type** (string)，必需
+
+      type 指示应用哪种 seccomp 配置文件。有效的选项有：
+      
+      - `Localhost` - 应使用在节点上的文件中定义的配置文件。
+      - `RuntimeDefault` - 应使用容器运行时的默认配置文件。
+      - `Unconfined` - 不应用任何配置文件。
+     
+    <!--
+    - **securityContext.seccompProfile.localhostProfile** (string)
+
+      localhostProfile indicates a profile defined in a file on the node should be used. The profile must be preconfigured on the node to work. Must be a descending path, relative to the kubelet's configured seccomp profile location. Must only be set if type is "Localhost".
+    -->
+
+    - **securityContext.seccompProfile.localhostProfile** (string)
+
+      localhostProfile 指示应使用的在节点上的文件，文件中定义了配置文件。
+      该配置文件必须在节点上先行配置才能使用。
+      必须是相对于 kubelet 所配置的 seccomp 配置文件位置下的下级路径。
+      仅当 type 为 "Localhost" 时才必须设置。
+
+  <!--
+  - **securityContext.seLinuxOptions** (SELinuxOptions)
+
+    The SELinux context to be applied to the container. If unspecified, the container runtime will allocate a random SELinux context for each container.  May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.
+
+    <a name="SELinuxOptions"></a>
+    *SELinuxOptions are the labels to be applied to the container*
+  -->
+
+  - **securityContext.seLinuxOptions** (SELinuxOptions)
+
+    要应用到容器上的 SELinux 上下文。如果未设置此字段，容器运行时将为每个容器分配一个随机的 SELinux 上下文。
+    也可以在 PodSecurityContext 中设置。如果同时在 SecurityContext 和 PodSecurityContext 中设置，
+    则在 SecurityContext 中指定的值优先。注意，`spec.os.name` 为 "windows" 时不能设置此字段。
+
+    <a name="SELinuxOptions"></a>
+    **SELinuxOptions 是要应用到容器上的标签。**
+
+    <!--
+    - **securityContext.seLinuxOptions.level** (string)
+
+      Level is SELinux level label that applies to the container.
+
+    - **securityContext.seLinuxOptions.role** (string)
+
+      Role is a SELinux role label that applies to the container.
+
+    - **securityContext.seLinuxOptions.type** (string)
+
+      Type is a SELinux type label that applies to the container.
+
+    - **securityContext.seLinuxOptions.user** (string)
+
+      User is a SELinux user label that applies to the container.
+    -->
+
+    - **securityContext.seLinuxOptions.level** （string）
+
+      level 是应用于容器的 SELinux 级别标签。 
+
+    - **securityContext.seLinuxOptions.role** （string）
+
+      role 是应用于容器的 SELinux 角色标签。 
+
+    - **securityContext.seLinuxOptions.type** （string）
+
+      type 是适用于容器的 SELinux 类型标签。 
+
+    - **securityContext.seLinuxOptions.user** （string）
+
+      user 是应用于容器的 SELinux 用户标签。 
+
+  <!--
+  - **securityContext.windowsOptions** （WindowsSecurityContextOptions）
+
+    The Windows specific settings applied to all containers. If unspecified, the options from the PodSecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is linux.
+
+    <a name="WindowsSecurityContextOptions"></a>
+    *WindowsSecurityContextOptions contain Windows-specific options and credentials.*
+  -->
+
+  - **securityContext.windowsOptions** （WindowsSecurityContextOptions）
+
+    要应用于所有容器上的特定于 Windows 的设置。如果未指定，将使用 PodSecurityContext 中的选项。 
+    如果同时在 SecurityContext 和 PodSecurityContext 中设置，则在 SecurityContext 中指定的值优先。 
+    注意，`spec.os.name` 为 "linux" 时不能设置此字段。 
+
+    <a name="WindowsSecurityContextOptions"></a>
+    **WindowsSecurityContextOptions 包含特定于 Windows 的选项和凭据。**
+
+    <!--
+    - **securityContext.windowsOptions.gmsaCredentialSpec** （string）
+
+      GMSACredentialSpec is where the GMSA admission webhook (https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the GMSA credential spec named by the GMSACredentialSpecName field.
+
+    - **securityContext.windowsOptions.gmsaCredentialSpecName** （string）
+
+      GMSACredentialSpecName is the name of the GMSA credential spec to use.
+    -->
+
+    - **securityContext.windowsOptions.gmsaCredentialSpec** （string）
+
+      gmsaCredentialSpec 是 [GMSA 准入 Webhook](https://github.com/kubernetes-sigs/windows-gmsa)
+      内嵌由 gmsaCredentialSpecName 字段所指定的 GMSA 凭证规约的内容的地方。 
+
+    <!--
+    - **securityContext.windowsOptions.hostProcess** （boolean）
+
+      HostProcess determines if a container should be run as a 'Host Process' container. This field is alpha-level and will only be honored by components that enable the WindowsHostProcessContainers feature flag. Setting this field without the feature flag will result in errors when validating the Pod. All of a Pod's containers must have the same effective HostProcess value (it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).  In addition, if HostProcess is true then HostNetwork must also be set to true.
+    -->
+
+    - **securityContext.windowsOptions.hostProcess** （boolean）
+
+      hostProcess 确定容器是否应作为 "主机进程" 容器运行。
+      此字段是 Alpha 级别的，只有启用 WindowsHostProcessContainers 特性门控的组件才会处理。 
+      设置此字段而不启用特性门控是，在验证 Pod 时将发生错误。 
+      一个 Pod 的所有容器必须具有相同的有效 hostProcess 值（不允许混合设置了 hostProcess 容器和未设置 hostProcess 的容器）。 
+      此外，如果 hostProcess 为 true，则 hostNetwork 也必须设置为 true。 
+
+    <!--
+    - **securityContext.windowsOptions.runAsUserName** （string）
+
+      The UserName in Windows to run the entrypoint of the container process. Defaults to the user specified in image metadata if unspecified. May also be set in PodSecurityContext. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.
+    -->
+
+    - **securityContext.windowsOptions.runAsUserName** （string）
+
+      Windows 中运行容器进程入口点的用户名。如果未指定，则默认为镜像元数据中指定的用户。 
+      也可以在 PodSecurityContext 中设置。 
+      如果同时在 SecurityContext 和 PodSecurityContext 中设置，则在 SecurityContext 中指定的值优先。 
+
+<!--
+### Debugging
+-->
+### 调试
+
+<!--
+- **stdin** (boolean)
+
+  Whether this container should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the container will always result in EOF. Default is false.
+-->
+- **stdin** （boolean）
+
+  此容器是否应在容器运行时为 stdin 分配缓冲区。如果未设置，从容器中的 stdin 读取将始终导致 EOF。 
+  默认为 false。 
+
+<!--
+- **stdinOnce** (boolean)
+
+  Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the container is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false
+-->
+- **stdinOnce** （boolean）
+
+  容器运行时是否应在某个 attach 打开 stdin 通道后关闭它。当 stdin 为 true 时，stdin 流将在多个 attach 会话中保持打开状态。 
+  如果 stdinOnce 设置为 true，则 stdin 在容器启动时打开，在第一个客户端连接到 stdin 之前为空，
+  然后保持打开并接受数据，直到客户端断开连接，此时 stdin 关闭并保持关闭直到容器重新启动。 
+  如果此标志为 false，则从 stdin 读取的容器进程将永远不会收到 EOF。 默认为 false。 
+
+## EphemeralContainer {#EphemeralContainer}
+
+<!--
+An EphemeralContainer is a temporary container that you may add to an existing Pod for user-initiated activities such as debugging. Ephemeral containers have no resource or scheduling guarantees, and they will not be restarted when they exit or when a Pod is removed or restarted. The kubelet may evict a Pod if an ephemeral container causes the Pod to exceed its resource allocation.
+
+To add an ephemeral container, use the ephemeralcontainers subresource of an existing Pod. Ephemeral containers may not be removed or restarted.
+
+This is a beta feature available on clusters that haven't disabled the EphemeralContainers feature gate.
+-->
+EphemeralContainer 是一个临时容器，你可以将其添加到现有 Pod 以用于用户发起的活动，例如调试。 
+临时容器没有资源或调度保证，它们在退出或 Pod 被移除或重新启动时不会重新启动。 
+如果临时容器导致 Pod 超出其资源分配，kubelet 可能会驱逐 Pod。 
+
+要添加临时容器，请使用现有 Pod 的 `ephemeralcontainers` 子资源。临时容器不能被删除或重新启动。 
+
+这是未禁用 EphemeralContainers 特性门控的集群上可用的 Beta 功能。 
+
+<hr>
+
+<!--
+- **name** (string), required
+
+  Name of the ephemeral container specified as a DNS_LABEL. This name must be unique among all containers, init containers and ephemeral containers.
+-->
+- **name** (string)，必需
+
+  以 DNS_LABEL 形式设置的临时容器的名称。此名称在所有容器、Init 容器和临时容器中必须是唯一的。 
+
+<!--
+- **targetContainerName** (string)
+
+  If set, the name of the container from PodSpec that this ephemeral container targets. The ephemeral container will be run in the namespaces (IPC, PID, etc) of this container. If not set then the ephemeral container uses the namespaces configured in the Pod spec.
+  
+  The container runtime must implement support for this feature. If the runtime does not support namespace targeting then the result of setting this field is undefined.
+-->
+- **targetContainerName** (string)
+
+  如果设置，则为 Pod 规约中此临时容器所针对的容器的名称。临时容器将在该容器的名字空间（IPC、PID 等）中运行。 
+  如果未设置，则临时容器使用 Pod 规约中配置的名字空间。 
+  
+  容器运行时必须实现对此功能的支持。如果运行时不支持名字空间定位，则设置此字段的结果是未定义的。 
+
+<!--
+### Image
+-->
+### 镜像
+
+<!--
+- **image** (string)
+
+  Container image name. More info: https://kubernetes.io/docs/concepts/containers/images
+-->
+- **image** (string)
+
+  容器镜像名称。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/containers/images
+
+<!--
+- **imagePullPolicy** (string)
+
+  Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images
+-->
+- **imagePullPolicy** (string)
+
+  镜像拉取策略。取值为 `Always`、`Never`、`IfNotPresent` 之一。
+  如果指定了 `:latest` 标签，则默认为 `Always`，否则默认为 `IfNotPresent`。 
+  无法更新。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/containers/images#updating-images
+
+<!--
+### Entrypoint
+-->
+### 入口点
+
+<!--
+- **command** ([]string)
+
+  Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. "$$(VAR_NAME)" will produce the string literal "$(VAR_NAME)". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
+-->
+- **command** ([]string)
+
+  入口点数组。不在 Shell 中执行。如果未提供，则使用镜像的 `ENTRYPOINT`。 
+  变量引用 `$(VAR_NAME)` 使用容器的环境进行扩展。如果无法解析变量，则输入字符串中的引用将保持不变。 
+  `$$` 被简化为 `$`，这允许转义 `$(VAR_NAME)` 语法：即 `"$$(VAR_NAME)"` 将产生字符串字面值 `"$(VAR_NAME)"`。
+  无论变量是否存在，转义引用都不会被扩展。无法更新。更多信息：
+  https://kubernetes.io/zh-cn/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
+
+<!--
+- **args** ([]string)
+
+  Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. "$$(VAR_NAME)" will produce the string literal "$(VAR_NAME)". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
+-->
+- **args** （[]string）
+
+  entrypoint 的参数。如果未提供，则使用镜像的 `CMD`。
+  变量引用 `$(VAR_NAME)` 使用容器的环境进行扩展。如果无法解析变量，则输入字符串中的引用将保持不变。 
+  `$$` 被简化为 `$`，这允许转义 `$(VAR_NAME)` 语法：即 `"$$(VAR_NAME)"` 将产生字符串字面值 `"$(VAR_NAME)"`。
+  无论变量是否存在，转义引用都不会被扩展。无法更新。更多信息：
+  https://kubernetes.io/zh-cn/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
+
+<!--
+- **workingDir** (string)
+
+  Container's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.
+-->
+- **workingDir** (string)
+
+  容器的工作目录。如果未指定，将使用容器运行时的默认值，默认值可能在容器镜像中配置。无法更新。 
+
+<!--
+### Environment variables
+-->
+### 环境变量
+
+<!--
+- **env** ([]EnvVar)
+
+  *Patch strategy: merge on key `name`*
+  
+  List of environment variables to set in the container. Cannot be updated.
+
+  <a name="EnvVar"></a>
+  *EnvVar represents an environment variable present in a Container.*
+-->
+- **env**（[]EnvVar）
+
+  **补丁策略：基于 `name` 键合并**
+  
+  要在容器中设置的环境变量列表。无法更新。 
+
+  <a name="EnvVar"></a>
+  **EnvVar 表示容器中存在的环境变量。**
+
+  <!--
+  - **env.name** (string), required
+
+    Name of the environment variable. Must be a C_IDENTIFIER.
+
+  - **env.value** (string)
+
+    Variable references $(VAR_NAME) are expanded using the previously defined environment variables in the container and any service environment variables. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. "$$(VAR_NAME)" will produce the string literal "$(VAR_NAME)". Escaped references will never be expanded, regardless of whether the variable exists or not. Defaults to "".
+  -->
+
+  - **env.name** (string)，必需
+
+    环境变量的名称。必须是 C_IDENTIFIER。 
+
+  - **env.value** (string)
+
+    变量引用 `$(VAR_NAME)` 使用容器中先前定义的环境变量和任何服务环境变量进行扩展。 
+    如果无法解析变量，则输入字符串中的引用将保持不变。 
+    `$$` 被简化为 `$`，这允许转义 `$(VAR_NAME)` 语法：即 `"$$(VAR_NAME)"` 将产生字符串字面值 `"$(VAR_NAME)"`。
+    无论变量是否存在，转义引用都不会被扩展。默认为 ""。 
+
+  <!--
+  - **env.valueFrom** (EnvVarSource)
+
+    Source for the environment variable's value. Cannot be used if value is not empty.
+
+    <a name="EnvVarSource"></a>
+    *EnvVarSource represents a source for the value of an EnvVar.*
+  -->
+
+  - **env.valueFrom** （EnvVarSource）
+
+    环境变量值的来源。如果取值不为空，则不能使用。
+
+    **EnvVarSource 表示 envVar 值的源。**
+
+    <!--
+    - **env.valueFrom.configMapKeyRef** (ConfigMapKeySelector)
+
+      Selects a key of a ConfigMap.
+
+      <a name="ConfigMapKeySelector"></a>
+      *Selects a key from a ConfigMap.*
+    -->
+
+    - **env.valueFrom.configMapKeyRef** （ConfigMapKeySelector）
+
+      选择 ConfigMap 的主键。
+
+      <a name="ConfigMapKeySelector"></a>
+      **选择 ConfigMap 的主键。**
+
+      <!--
+      - **env.valueFrom.configMapKeyRef.key** (string), required
+
+        The key to select.
+
+      - **env.valueFrom.configMapKeyRef.name** (string)
+
+        Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+      -->
+
+      - **env.valueFrom.configMapKeyRef.key** (string)，必需
+
+        选择的主键。
+
+      - **env.valueFrom.configMapKeyRef.name**（string）
+
+        所引用 ConfigMap 的名称。更多信息：
+        https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/names/#names
+
+      <!--
+      - **env.valueFrom.configMapKeyRef.optional** (boolean)
+
+        Specify whether the ConfigMap or its key must be defined
+      -->
+
+      - **env.valueFrom.configMapKeyRef.optional** （boolean）
+
+        指定是否 ConfigMap 或其键必须已经被定义。
+
+    <!--
+    - **env.valueFrom.fieldRef** (<a href="{{< ref "../common-definitions/object-field-selector#ObjectFieldSelector" >}}">ObjectFieldSelector</a>)
+
+      Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['\<KEY>']`, `metadata.annotations['\<KEY>']`, spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.
+    -->
+
+    - **env.valueFrom.fieldRef** （<a href="{{< ref "../common-definitions/object-field-selector#ObjectFieldSelector" >}}">ObjectFieldSelector</a>）
+
+      选择 Pod 的一个字段：支持 `metadata.name`、`metadata.namespace`、`metadata.labels['<KEY>']`、
+      `metadata.annotations['<KEY>']`、`spec.nodeName`、`spec.serviceAccountName`、`status.hostIP`、
+      `status.podIP`、`status.podIPs`。
+
+    <!--
+    - **env.valueFrom.resourceFieldRef** (<a href="{{< ref "../common-definitions/resource-field-selector#ResourceFieldSelector" >}}">ResourceFieldSelector</a>)
+
+      Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.
+    -->
+
+    - **env.valueFrom.resourceFieldRef** （<a href="{{< ref "../common-definitions/resource-field-selector#ResourceFieldSelector" >}}">ResourceFieldSelector</a>）
+
+      选择容器的资源：当前仅支持资源限制和请求（`limits.cpu`、`limits.memory`、`limits.ephemeral-storage`、
+      `requests.cpu`、`requests.memory` 和 `requests.ephemeral-storage`）。
+
+    <!--
+    - **env.valueFrom.secretKeyRef** (SecretKeySelector)
+
+      Selects a key of a secret in the pod's namespace
+
+      <a name="SecretKeySelector"></a>
+      *SecretKeySelector selects a key of a Secret.*
+    -->
+
+    - **env.valueFrom.secretKeyRef** （SecretKeySelector）
+
+      在 Pod 的名字空间中选择某 Secret 的主键。
+
+      <a name="SecretKeySelector"></a>
+      **SecretKeySelector 选择某 Secret 的主键。**
+
+      <!--
+      - **env.valueFrom.secretKeyRef.key** (string), required
+
+        The key of the secret to select from.  Must be a valid secret key.
+
+      - **env.valueFrom.secretKeyRef.name** (string)
+
+        Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+
+      - **env.valueFrom.secretKeyRef.optional** (boolean)
+
+        Specify whether the Secret or its key must be defined
+      -->
+
+      - **env.valueFrom.secretKeyRef.key** (string)，必需
+
+        要从 Secret 中选择的主键。必须是有效的主键。
+
+      - **env.valueFrom.secretKeyRef.name**（string）
+
+        被引用 Secret 名称。更多信息：
+        https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/names/#names
+
+      - **env.valueFrom.secretKeyRef.optional** （boolean）
+
+        指定 Secret 或其主键是否必须已经定义。
+
+<!--
+- **envFrom** （[]EnvFromSource）
+
+  List of sources to populate environment variables in the container. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.
+
+  <a name="EnvFromSource"></a>
+  *EnvFromSource represents the source of a set of ConfigMaps*
+-->
+- **envFrom** （[]EnvFromSource）
+
+  在容器中填充环境变量的来源列表。在来源中定义的键名必须是 C_IDENTIFIER。
+  容器启动时，所有无效键都将作为事件报告。当一个键存在于多个来源中时，与最后一个来源关联的值将优先。 
+  如果有重复主键，env 中定义的值将优先。无法更新。 
+
+  <a name="EnvFromSource"></a>
+  **EnvFromSource 表示一组 ConfigMap 来源**
+
+  <!--
+  - **envFrom.configMapRef** (ConfigMapEnvSource)
+
+    The ConfigMap to select from
+
+    <a name="ConfigMapEnvSource"></a>
+    *ConfigMapEnvSource selects a ConfigMap to populate the environment variables with.
+    
+    The contents of the target ConfigMap's Data field will represent the key-value pairs as environment variables.*
+  -->
+
+  - **envFrom.configMapRef** （ConfigMapEnvSource）
+
+    要从中选择的 ConfigMap。
+
+    <a name="ConfigMapEnvSource"></a>
+    **ConfigMapEnvSource 选择一个 ConfigMap 来填充环境变量。目标 ConfigMap 的 data 字段的内容将键值对表示为环境变量。**
+
+    <!--
+    - **envFrom.configMapRef.name** (string)
+
+      Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+
+    - **envFrom.configMapRef.optional** (boolean)
+
+      Specify whether the ConfigMap must be defined
+    -->
+
+    - **envFrom.configMapRef.name**（string）
+
+      被引用的 ConfigMap 名称。更多信息：
+      https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/names/#names
+
+    - **envFrom.configMapRef.optional** （boolean）
+
+      指定所引用的 ConfigMap 是否必须已经定义。
+
+  <!--
+  - **envFrom.prefix** (string)
+
+    An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.
+  -->
+
+  - **envFrom.prefix** （string）
+
+    要在 ConfigMap 中的每个键前面附加的可选标识符。必须是C_IDENTIFIER。
+
+  <!--
+  - **envFrom.secretRef** (SecretEnvSource)
+
+    The Secret to select from
+
+    <a name="SecretEnvSource"></a>
+    *SecretEnvSource selects a Secret to populate the environment variables with.
+    
+    The contents of the target Secret's Data field will represent the key-value pairs as environment variables.*
+  -->
+
+  - **envFrom.secretRef** （SecretEnvSource）
+
+    可供选择的 Secret。
+
+    <a name="SecretEnvSource"></a>
+    **SecretEnvSource 选择一个 Secret 来填充环境变量。目标 Secret 的 data 字段的内容将键值对表示为环境变量。**
+
+    <!--
+    - **envFrom.secretRef.name** (string)
+
+      Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+
+    - **envFrom.secretRef.optional** (boolean)
+
+      Specify whether the Secret must be defined
+    -->
+
+    - **envFrom.secretRef.name**（string）
+
+      被引用 ConfigMap 的名称。更多信息：
+      https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/names/#names
+
+    - **envFrom.secretRef.optional** （boolean）
+
+      指定是否 Secret 必须已经被定义。
+
+<!--
+### Volumes
+-->
+### 卷
+
+<!--
+- **volumeMounts** ([]VolumeMount)
+
+  *Patch strategy: merge on key `mountPath`*
+  
+  Pod volumes to mount into the container's filesystem. Subpath mounts are not allowed for ephemeral containers. Cannot be updated.
+
+  <a name="VolumeMount"></a>
+  *VolumeMount describes a mounting of a Volume within a container.*
+-->
+
+- **volumeMounts** ([]VolumeMount)
+
+  **补丁策略：基于 `mountPath` 键合并**
+  
+  要挂载到容器文件系统中的 Pod 卷。临时容器不允许子路径挂载。无法更新。 
+
+  **VolumeMount 描述在容器中卷的挂载。**
+
+  <!--
+  - **volumeMounts.mountPath** (string), required
+
+    Path within the container at which the volume should be mounted.  Must not contain ':'.
+
+  - **volumeMounts.name** (string), required
+
+    This must match the Name of a Volume.
+  -->
+
+  - **volumeMounts.mountPath** (string)，必需
+
+    容器内应安装卷的路径。不得包含 ':'。 
+
+  - **volumeMounts.name** (string)，必需
+
+    此字段必须与卷的名称匹配。 
+
+  <!--
+  - **volumeMounts.mountPropagation** (string)
+
+    mountPropagation determines how mounts are propagated from the host to container and the other way around. When not set, MountPropagationNone is used. This field is beta in 1.10.
+
+  - **volumeMounts.readOnly** (boolean)
+
+    Mounted read-only if true, read-write otherwise (false or unspecified). Defaults to false.
+  -->
+
+  - **volumeMounts.mountPropagation** （string）
+
+    mountPropagation 确定装载如何从主机传播到容器，及反向传播选项。
+    如果未设置，则使用 `None`。此字段在 1.10 中为 Beta 字段。
+
+  - **volumeMounts.readOnly** （boolean）
+
+    如果为 true，则挂载卷为只读，否则为读写（false 或未指定）。默认值为 false。
+
+  <!--
+  - **volumeMounts.subPath** (string)
+
+    Path within the volume from which the container's volume should be mounted. Defaults to "" (volume's root).
+
+  - **volumeMounts.subPathExpr** (string)
+
+    Expanded path within the volume from which the container's volume should be mounted. Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment. Defaults to "" (volume's root). SubPathExpr and SubPath are mutually exclusive.
+  -->
+
+  - **volumeMounts.subPath** （string）
+
+    卷中的路径名，应该从该路径挂在容器的卷。默认为 "" （卷的根）。 
+
+  - **volumeMounts.subPathExpr** （string）
+
+    应安装容器卷的卷内的扩展路径。行为类似于 `subPath`，但环境变量引用 `$(VAR_NAME)`
+    使用容器的环境进行扩展。默认为 ""（卷的根）。`subPathExpr` 和 `SubPath` 是互斥的。 
+
+<!--
+- **volumeDevices** ([]VolumeDevice)
+
+  *Patch strategy: merge on key `devicePath`*
+  
+  volumeDevices is the list of block devices to be used by the container.
+
+  <a name="VolumeDevice"></a>
+  *volumeDevice describes a mapping of a raw block device within a container.*
+-->
+- **volumeDevices** ([]VolumeDevice)
+
+  **补丁策略：基于 `devicePath` 键合并**
+  
+  volumeDevices 是容器要使用的块设备列表。 
+
+  <a name="VolumeDevice"></a>
+  **volumeDevice 描述容器内原始块设备的映射。**
+
+  <!--
+  - **volumeDevices.devicePath** (string), required
+
+    devicePath is the path inside of the container that the device will be mapped to.
+
+  - **volumeDevices.name** (string), required
+
+    name must match the name of a persistentVolumeClaim in the pod
+  -->
+
+  - **volumeDevices.devicePath** (string)，必需
+
+    devicePath 是设备将被映射到的容器内的路径。 
+
+  - **volumeDevices.name** (string)，必需
+
+    name 必须与 Pod 中的 persistentVolumeClaim 的名称匹配。
+
+<!--
+### 生命周期
+-->
+### 生命周期
+
+<!--
+- **terminationMessagePath** (string)
+
+  Optional: Path at which the file to which the container's termination message will be written is mounted into the container's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.
+-->
+- **terminationMessagePath** (string)
+
+  可选字段。挂载到容器文件系统的路径，用于写入容器终止消息的文件。
+  写入的消息旨在成为简短的最终状态，例如断言失败消息。如果超出 4096 字节，将被节点截断。
+  所有容器的总消息长度将限制为 12 KB。 默认为 `/dev/termination-log`。无法更新。 
+
+<!--
+- **terminationMessagePolicy** (string)
+
+  Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the container status message on both success and failure. FallbackToLogsOnError will use the last chunk of container log output if the termination message file is empty and the container exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.
+-->
+- **terminationMessagePolicy** (string)
+
+  指示应如何填充终止消息。字段值为 `File` 表示将使用 `terminateMessagePath`
+  的内容来填充成功和失败的容器状态消息。
+  如果终止消息文件为空并且容器因错误退出，字段值 `FallbackToLogsOnError`
+  表示将使用容器日志输出的最后一块。日志输出限制为 2048 字节或 80 行，以较小者为准。
+  默认为 `File`。无法更新。
+
+
+<!--
+### Debugging
+-->
+### 调试
+
+<!--
+- **stdin** (boolean)
+
+  Whether this container should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the container will always result in EOF. Default is false.
+-->
+- **stdin** （boolean）
+
+  是否应在容器运行时内为此容器 stdin 分配缓冲区。
+  如果未设置，从容器中的 stdin 读数据将始终导致 EOF。默认为 false。
+
+<!--
+- **stdinOnce** (boolean)
+
+  Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the container is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false
+-->
+- **stdinOnce** （boolean）
+
+  容器运行时是否应在某个 attach 操作打开 stdin 通道后关闭它。
+  当 stdin 为 true 时，stdin 流将在多个 attach 会话中保持打开状态。
+  如果 stdinOnce 设置为 true，则 stdin 在容器启动时打开，在第一个客户端连接到 stdin 之前为空，
+  然后保持打开并接受数据，直到客户端断开连接，此时 stdin 关闭并保持关闭直到容器重新启动。
+  如果此标志为 false，则从 stdin 读取的容器进程将永远不会收到 EOF。默认为 false。
+
+<!--
+- **tty** (boolean)
+
+  Whether this container should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.
+-->
+- **tty** (boolean)
+
+  这个容器是否应该为自己分配一个 TTY，也需要 stdin 为 true。默认为 false。
+
+<!--
+### 安全上下文
+-->
+### 安全上下文
+
+<!--
+- **securityContext** (SecurityContext)
+
+  Optional: SecurityContext defines the security options the ephemeral container should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.
+
+  <a name="SecurityContext"></a>
+  *SecurityContext holds security configuration that will be applied to a container. Some fields are present in both SecurityContext and PodSecurityContext.  When both are set, the values in SecurityContext take precedence.*
+-->
+- **securityContext** (SecurityContext)
+
+  可选字段。securityContext 定义了运行临时容器的安全选项。
+  如果设置了此字段，SecurityContext 的字段将覆盖 PodSecurityContext 的等效字段。
+
+  SecurityContext 保存将应用于容器的安全配置。
+  一些字段在 SecurityContext 和 PodSecurityContext 中都存在。
+  当两者都设置时，SecurityContext 中的值优先。
+
+  <!--
+  - **securityContext.runAsUser** (int64)
+
+    The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.
+  -->
+
+  - **securityContext.runAsUser** （int64）
+
+    运行容器进程入口点的 UID。如果未指定，则默认为镜像元数据中指定的用户。
+    也可以在 PodSecurityContext 中设置。如果同时在 SecurityContext 和 PodSecurityContext
+    中设置，则在 SecurityContext 中指定的值优先。 
+    注意，`spec.os.name` 为 "windows" 时不能设置该字段。 
+
+  <!--
+  - **securityContext.runAsNonRoot** (boolean)
+
+    Indicates that the container must run as a non-root user. If true, the Kubelet will validate the image at runtime to ensure that it does not run as UID 0 (root) and fail to start the container if it does. If unset or false, no such validation will be performed. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.
+  -->
+
+  - **securityContext.runAsNonRoot** （boolean）
+
+    指示容器必须以非 root 用户身份运行。如果为 true，Kubelet 将在运行时验证镜像，
+    以确保它不会以 UID 0（root）身份运行，如果是，则无法启动容器。 
+    如果未设置或为 false，则不会执行此类验证。也可以在 PodSecurityContext 中设置。
+    如果同时在 SecurityContext 和 PodSecurityContext 中设置，则在 SecurityContext
+    中指定的值优先。 
+
+  <!--
+  - **securityContext.runAsGroup** (int64)
+
+    The GID to run the entrypoint of the container process. Uses runtime default if unset. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.
+  -->
+
+  - **securityContext.runAsGroup** （int64）
+
+    运行容器进程入口点的 GID。如果未设置，则使用运行时默认值。也可以在 PodSecurityContext 中设置。 
+    如果同时在 SecurityContext 和 PodSecurityContext 中设置，则在 SecurityContext
+    中指定的值优先。注意，`spec.os.name` 为 "windows" 时不能设置该字段。 
+
+  <!--
+  - **securityContext.readOnlyRootFilesystem** (boolean)
+
+    Whether this container has a read-only root filesystem. Default is false. Note that this field cannot be set when spec.os.name is windows.
+  -->
+
+  - **securityContext.readOnlyRootFilesystem** （boolean）
+
+    此容器是否具有只读根文件系统。
+    默认为 false。 注意，`spec.os.name` 为 "windows" 时不能设置该字段。 
+
+  <!--
+  - **securityContext.procMount** (string)
+
+    procMount denotes the type of proc mount to use for the containers. The default is DefaultProcMount which uses the container runtime defaults for readonly paths and masked paths. This requires the ProcMountType feature flag to be enabled. Note that this field cannot be set when spec.os.name is windows.
+  -->
+
+  - **securityContext.procMount** （string）
+
+    procMount 表示用于容器的 proc 挂载类型。默认值为 DefaultProcMount，
+    它将容器运行时默认值用于只读路径和掩码路径。这需要启用 ProcMountType 特性门控。
+    注意，`spec.os.name` 为 "windows" 时不能设置该字段。 
+
+  <!--
+  - **securityContext.privileged** (boolean)
+
+    Run container in privileged mode. Processes in privileged containers are essentially equivalent to root on the host. Defaults to false. Note that this field cannot be set when spec.os.name is windows.
+  -->
+
+  - **securityContext.privileged** （boolean）
+
+    以特权模式运行容器。特权容器中的进程本质上等同于主机上的 root。 默认为 false。
+    注意，`spec.os.name` 为 "windows" 时不能设置该字段。
+
+  <!--
+  - **securityContext.allowPrivilegeEscalation** (boolean)
+
+    AllowPrivilegeEscalation controls whether a process can gain more privileges than its parent process. This bool directly controls if the no_new_privs flag will be set on the container process. AllowPrivilegeEscalation is true always when the container is: 1) run as Privileged 2) has CAP_SYS_ADMIN Note that this field cannot be set when spec.os.name is windows.
+  -->
+
+  - **securityContext.allowPrivilegeEscalation** （boolean）
+
+    allowPrivilegeEscalation 控制进程是否可以获得比其父进程更多的权限。 
+    此布尔值直接控制是否在容器进程上设置 `no_new_privs` 标志。 allowPrivilegeEscalation
+    在容器处于以下状态时始终为 true：
+
+    1. 以特权身份运行
+    2. 具有 `CAP_SYS_ADMIN` 权能
+
+    请注意，当 `spec.os.name` 为 "windows" 时，无法设置此字段。 
+
+  <!--
+  - **securityContext.capabilities** (Capabilities)
+
+    The capabilities to add/drop when running containers. Defaults to the default set of capabilities granted by the container runtime. Note that this field cannot be set when spec.os.name is windows.
+
+    <a name="Capabilities"></a>
+    *Adds and removes POSIX capabilities from running containers.*
+  -->
+
+  - **securityContext.capabilities** (Capabilities)
+
+    运行容器时添加/放弃的权能。默认为容器运行时授予的默认权能集。
+    注意，`spec.os.name` 为 "windows" 时不能设置此字段。 
+
+    **在运行中的容器中添加和放弃 POSIX 权能。**
+
+    <!--
+    - **securityContext.capabilities.add** ([]string)
+
+      Added capabilities
+
+    - **securityContext.capabilities.drop** ([]string)
+
+      Removed capabilities
+    -->
+
+    - **securityContext.capabilities.add** （[]string）
+
+      新增的权能。
+
+    - **securityContext.capabilities.drop** （[]string）
+
+      放弃的权能。
+
+  <!--
+  - **securityContext.seccompProfile** (SeccompProfile)
+
+    The seccomp options to use by this container. If seccomp options are provided at both the pod & container level, the container options override the pod options. Note that this field cannot be set when spec.os.name is windows.
+
+    <a name="SeccompProfile"></a>
+    *SeccompProfile defines a pod/container's seccomp profile settings. Only one profile source may be set.*
+  -->
+
+  - **securityContext.seccompProfile** （SeccompProfile）
+
+    此容器使用的 seccomp 选项。如果在 Pod 和容器级别都提供了 seccomp 选项，
+    则容器选项会覆盖 Pod 选项。注意，`spec.os.name` 为 "windows" 时不能设置该字段。 
+
+    **SeccompProfile 定义 Pod 或容器的 seccomp 配置文件设置。只能设置一个配置文件源。**
+
+    <!--
+    - **securityContext.seccompProfile.type** (string), required
+
+      type indicates which kind of seccomp profile will be applied. Valid options are:
+      
+      Localhost - a profile defined in a file on the node should be used. RuntimeDefault - the container runtime default profile should be used. Unconfined - no profile should be applied.
+    --> 
+
+    - **securityContext.seccompProfile.type** (string)，必需
+
+      type 指示将应用哪种 seccomp 配置文件。有效的选项是：
+      
+      - `Localhost` - 应使用在节点上的文件中定义的配置文件。
+      - `RuntimeDefault` - 应使用容器运行时默认配置文件。 
+      - `Unconfined` - 不应应用任何配置文件。 
+
+    <!--
+    - **securityContext.seccompProfile.localhostProfile** (string)
+
+      localhostProfile indicates a profile defined in a file on the node should be used. The profile must be preconfigured on the node to work. Must be a descending path, relative to the kubelet's configured seccomp profile location. Must only be set if type is "Localhost".
+    -->
+     
+    - **securityContext.seccompProfile.localhostProfile** （string）
+
+      localhostProfile 指示应使用在节点上的文件中定义的配置文件。
+      该配置文件必须在节点上预先配置才能工作。 
+      必须是相对于 kubelet 配置的 seccomp 配置文件位置下的子路径。 
+      仅当 type 为 "Localhost" 时才必须设置。 
+
+  <!--
+  - **securityContext.seLinuxOptions** (SELinuxOptions)
+
+    The SELinux context to be applied to the container. If unspecified, the container runtime will allocate a random SELinux context for each container.  May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.
+
+    <a name="SELinuxOptions"></a>
+    *SELinuxOptions are the labels to be applied to the container*
+  -->
+
+  - **securityContext.seLinuxOptions** （SELinuxOptions）
+
+    要应用于容器的 SELinux 上下文。如果未指定，容器运行时将为每个容器分配一个随机
+    SELinux 上下文。也可以在 PodSecurityContext 中设置。
+    如果同时在 SecurityContext 和 PodSecurityContext 中设置，则在 SecurityContext
+    中指定的值优先。注意，`spec.os.name` 为 "windows" 时不能设置此字段。
+
+    <a name="SELinuxOptions"></a>
+    **SELinuxOptions 是要应用于容器的标签**
+
+    <!--
+    - **securityContext.seLinuxOptions.level** (string)
+
+      Level is SELinux level label that applies to the container.
+
+    - **securityContext.seLinuxOptions.role** (string)
+
+      Role is a SELinux role label that applies to the container.
+
+    - **securityContext.seLinuxOptions.type** (string)
+
+      Type is a SELinux type label that applies to the container.
+
+    - **securityContext.seLinuxOptions.user** (string)
+
+      User is a SELinux user label that applies to the container.
+    -->
+
+    - **securityContext.seLinuxOptions.level** （string）
+
+      level 是应用于容器的 SELinux 级别标签。 
+
+    - **securityContext.seLinuxOptions.role** （string）
+
+      role 是应用于容器的 SELinux 角色标签。 
+
+    - **securityContext.seLinuxOptions.type** （string）
+
+      type 是适用于容器的 SELinux 类型标签。 
+
+    - **securityContext.seLinuxOptions.user** （string）
+
+      user 是应用于容器的 SELinux 用户标签。 
+
+  <!--
+  - **securityContext.windowsOptions** (WindowsSecurityContextOptions)
+
+    The Windows specific settings applied to all containers. If unspecified, the options from the PodSecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is linux.
+
+    <a name="WindowsSecurityContextOptions"></a>
+    *WindowsSecurityContextOptions contain Windows-specific options and credentials.*
+  -->
+
+  - **securityContext.windowsOptions** （WindowsSecurityContextOptions）
+
+    要应用到所有容器上的特定于 Windows 的设置。如果未指定，将使用 PodSecurityContext 中的选项。
+    如果同时在 SecurityContext 和 PodSecurityContext 中设置，则在 SecurityContext
+    中指定的值优先。注意，`spec.os.name` 为 "linux" 时不能设置此字段。
+
+    <a name="WindowsSecurityContextOptions"></a>
+    **WindowsSecurityContextOptions 包含特定于 Windows 的选项和凭据。**
+
+    <!--
+    - **securityContext.windowsOptions.gmsaCredentialSpec** (string)
+
+      GMSACredentialSpec is where the GMSA admission webhook (https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the GMSA credential spec named by the GMSACredentialSpecName field.
+
+    - **securityContext.windowsOptions.gmsaCredentialSpecName** (string)
+
+      GMSACredentialSpecName is the name of the GMSA credential spec to use.
+    -->
+
+    - **securityContext.windowsOptions.gmsaCredentialSpec** （string）
+
+      gmsaCredentialSpec 是 [GMSA 准入 Webhook](https://github.com/kubernetes-sigs/windows-gmsa)
+      内嵌由 gmsaCredentialSpecName 字段所指定的 GMSA 凭证规约内容的地方。 
+
+    - **securityContext.windowsOptions.gmsaCredentialSpecName** （string）
+
+      gmsaCredentialSpecName 是要使用的 GMSA 凭证规约的名称。 
+
+    <!--
+    - **securityContext.windowsOptions.hostProcess** (boolean)
+
+      HostProcess determines if a container should be run as a 'Host Process' container. This field is alpha-level and will only be honored by components that enable the WindowsHostProcessContainers feature flag. Setting this field without the feature flag will result in errors when validating the Pod. All of a Pod's containers must have the same effective HostProcess value (it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).  In addition, if HostProcess is true then HostNetwork must also be set to true.
+    -->
+
+    - **securityContext.windowsOptions.hostProcess** （boolean）
+
+      hostProcess 确定容器是否应作为 "主机进程" 容器运行。此字段是 Alpha 级别的，只有启用了
+      WindowsHostProcessContainers 特性门控的组件才会处理此字段。 
+      设置此字段而未启用特性门控的话，在验证 Pod 时将引发错误。 
+      一个 Pod 的所有容器必须具有相同的有效 hostProcess 值
+      （不允许混合设置了 hostProcess 的容器和未设置 hostProcess 的容器）。 
+      此外，如果 hostProcess 为 true，则 hostNetwork 也必须设置为 true。 
+
+    <!--
+    - **securityContext.windowsOptions.runAsUserName** (string)
+
+      The UserName in Windows to run the entrypoint of the container process. Defaults to the user specified in image metadata if unspecified. May also be set in PodSecurityContext. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.
+    -->
+
+    - **securityContext.windowsOptions.runAsUserName** （string）
+
+      Windows 中运行容器进程入口点的用户名。如果未指定，则默认为镜像元数据中指定的用户。 
+      也可以在 PodSecurityContext 中设置。如果同时在 SecurityContext 和 PodSecurityContext
+      中设置，则在 SecurityContext 中指定的值优先。 
+
+<!--
+### 不允许
+-->
+### 不允许
+
+<!--
+- **ports** ([]ContainerPort)
+
+  *Patch strategy: merge on key `containerPort`*
+  
+  *Map: unique values on keys `containerPort, protocol` will be kept during a merge*
+  
+  Ports are not allowed for ephemeral containers.
+
+  <a name="ContainerPort"></a>
+  *ContainerPort represents a network port in a single container.*
+-->
+
+- **ports**（[]ContainerPort）
+
+  **补丁策略：基于 `containerPort` 键合并**
+  
+  **映射：键 `containerPort, protocol` 组合的唯一值将在合并期间保留**
+  
+  临时容器不允许使用端口。 
+
+  <a name="ContainerPort"></a>
+  **ContainerPort 表示单个容器中的网络端口。**
+
+  <!--
+  - **ports.containerPort** (int32), required
+
+    Number of port to expose on the pod's IP address. This must be a valid port number, 0 \< x \< 65536.
+
+  - **ports.hostIP** (string)
+
+    What host IP to bind the external port to.
+  -->
+
+  - **ports.containerPort** （int32），必需
+
+    要在容器的 IP 地址上公开的端口号。这必须是有效的端口号 0 \< x \< 65536。
+
+  - **ports.hostIP** （string）
+
+    要将外部端口绑定到的主机 IP。
+
+  <!--
+  - **ports.hostPort** (int32)
+
+    Number of port to expose on the host. If specified, this must be a valid port number, 0 \< x \< 65536. If HostNetwork is specified, this must match ContainerPort. Most containers do not need this.
+  -->
+
+  - **ports.hostPort** （int32）
+
+    要在主机上公开的端口号。如果设置了，则作为必须是一个有效的端口号，0 \< x \< 65536。 
+    如果指定了 hostNetwork，此值必须与 containerPort 匹配。大多数容器不需要这个配置。 
+
+  <!--
+  - **ports.name** (string)
+
+    If specified, this must be an IANA_SVC_NAME and unique within the pod. Each named port in a pod must have a unique name. Name for the port that can be referred to by services.
+
+  - **ports.protocol** (string)
+
+    Protocol for port. Must be UDP, TCP, or SCTP. Defaults to "TCP".
+  -->
+ 
+  - **ports.name**（string）
+
+    如果指定了，则作为端口的名称。必须是 IANA_SVC_NAME 并且在 Pod 中是唯一的。
+    Pod 中的每个命名端口都必须具有唯一的名称。服务可以引用的端口的名称。
+
+  - **ports.protocol** （string）
+
+    端口协议。必须是 `UDP`、`TCP` 或 `SCTP` 之一。 默认为 `TCP`。 
+
+<!--
+- **resources** (ResourceRequirements)
+
+  Resources are not allowed for ephemeral containers. Ephemeral containers use spare resources already allocated to the pod.
+
+  <a name="ResourceRequirements"></a>
+  *ResourceRequirements describes the compute resource requirements.*
+-->
+- **resources** (ResourceRequirements)
+
+  临时容器不允许使用资源。临时容器使用已分配给 Pod 的空闲资源。 
+
+  **ResourceRequirements 描述计算资源的需求。**
+
+  <!--
+  - **resources.limits** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+    Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+  -->
+
+  - **resources.limits** （map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>）
+
+    limits 描述所允许的最大计算资源量。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/configuration/manage-resources-containers/
+
+  <!--
+  - **resources.requests** (map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>)
+
+    Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+  -->
+
+  - **resources.requests** （map[string]<a href="{{< ref "../common-definitions/quantity#Quantity" >}}">Quantity</a>）
+
+    requests 描述所需的最小计算资源量。如果对容器省略了 requests，则默认其资源请求值为 limits
+    （如果已显式指定）的值，否则为实现定义的值。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/configuration/manage-resources-containers/
+
+<!--
+- **lifecycle** (Lifecycle)
+
+  Lifecycle is not allowed for ephemeral containers.
+
+  <a name="Lifecycle"></a>
+  *Lifecycle describes actions that the management system should take in response to container lifecycle events. For the PostStart and PreStop lifecycle handlers, management of the container blocks until the action is complete, unless the container process fails, in which case the handler is aborted.*
+-->
+- **lifecycle** (Lifecycle)
+
+  临时容器不允许使用生命周期。 
+
+  生命周期描述了管理系统为响应容器生命周期事件应采取的行动。
+  对于 postStart 和 preStop 生命周期处理程序，容器的管理会阻塞，直到操作完成，
+  除非容器进程失败，在这种情况下处理程序被中止。
+
+  <!--
+  - **lifecycle.postStart** (<a href="{{< ref "../workload-resources/pod-v1#LifecycleHandler" >}}">LifecycleHandler</a>)
+
+    PostStart is called immediately after a container is created. If the handler fails, the container is terminated and restarted according to its restart policy. Other management of the container blocks until the hook completes. More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks
+  -->
+
+  - **lifecycle.postStart** （<a href="{{< ref "../workload-resources/pod-v1#LifecycleHandler" >}}">LifecycleHandler</a>）
+
+    创建容器后立即调用 postStart。如果处理程序失败，则容器将根据其重新启动策略终止并重新启动。
+    容器的其他管理阻塞直到钩子完成。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/containers/container-lifecycle-hooks/#container-hooks
+
+  <!--
+  - **lifecycle.preStop** (<a href="{{< ref "../workload-resources/pod-v1#LifecycleHandler" >}}">LifecycleHandler</a>)
+
+    PreStop is called immediately before a container is terminated due to an API request or management event such as liveness/startup probe failure, preemption, resource contention, etc. The handler is not called if the container crashes or exits. The Pod's termination grace period countdown begins before the PreStop hook is executed. Regardless of the outcome of the handler, the container will eventually terminate within the Pod's termination grace period (unless delayed by finalizers). Other management of the container blocks until the hook completes or until the termination grace period is reached. More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks
+  -->
+
+  - **lifecycle.preStop** （<a href="{{< ref "../workload-resources/pod-v1#LifecycleHandler" >}}">LifecycleHandler</a>）
+
+    preStop 在容器因 API 请求或管理事件（例如：存活态探针/启动探针失败、抢占、资源争用等）
+    而终止之前立即调用。如果容器崩溃或退出，则不会调用处理程序。
+    Pod 的终止宽限期倒计时在 preStop 钩子执行之前开始。 
+    无论处理程序的结果如何，容器最终都会在 Pod 的终止宽限期内终止（除非被终结器延迟）。
+    容器的其他管理会阻塞，直到钩子完成或达到终止宽限期。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/containers/container-lifecycle-hooks/#container-hooks
+
+<!--
+- **livenessProbe** (<a href="{{< ref "../workload-resources/pod-v1#Probe" >}}">Probe</a>)
+
+  Probes are not allowed for ephemeral containers.
+
+- **readinessProbe** (<a href="{{< ref "../workload-resources/pod-v1#Probe" >}}">Probe</a>)
+
+  Probes are not allowed for ephemeral containers.
+
+- **startupProbe** (<a href="{{< ref "../workload-resources/pod-v1#Probe" >}}">Probe</a>)
+
+  Probes are not allowed for ephemeral containers.
+-->
+
+- **livenessProbe** （<a href="{{< ref "../workload-resources/pod-v1#Probe" >}}">Probe</a>）
+
+  临时容器不允许使用探针。 
+
+- **readyProbe** （<a href="{{< ref "../workload-resources/pod-v1#Probe" >}}">Probe</a>）
+
+  临时容器不允许使用探针。 
+
+- **startupProbe** （<a href="{{< ref "../workload-resources/pod-v1#Probe" >}}">Probe</a>）
+
+  临时容器不允许使用探针。 
+
+
+## LifecycleHandler {#LifecycleHandler}
+
+<!--
+LifecycleHandler defines a specific action that should be taken in a lifecycle hook. One and only one of the fields, except TCPSocket must be specified.
+-->
+LifecycleHandler 定义了应在生命周期挂钩中执行的特定操作。
+必须指定一个且只能指定一个字段，tcpSocket 除外。 
+
+<hr>
+
+<!--
+- **exec** (ExecAction)
+
+  Exec specifies the action to take.
+
+  <a name="ExecAction"></a>
+  *ExecAction describes a "run in container" action.*
+-->
+- **exec** （execAction）
+
+  Exec 指定要执行的操作。 
+
+  <a name="ExecAction"></a>
+  **ExecAction 描述了 "在容器中运行" 操作。**
+
+  <!--
+  - **exec.command** ([]string)
+
+    Command is the command line to execute inside the container, the working directory for the command  is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.
+  -->
+
+  - **exec.command** （[]string）
+
+    command 是要在容器内执行的命令行，命令的工作目录是容器文件系统中的根目录（'/'）。 
+    该命令只是被通过 `exec` 执行，而不会单独启动一个 Shell 来运行，因此传统的
+    Shell 指令（'|' 等）将不起作用。要使用某 Shell，你需要显式调用该 Shell。 
+    退出状态 0 被视为活动/健康，非零表示不健康。 
+
+<!--
+- **httpGet** (HTTPGetAction)
+
+  HTTPGet specifies the http request to perform.
+
+  <a name="HTTPGetAction"></a>
+  *HTTPGetAction describes an action based on HTTP Get requests.*
+-->
+
+- **httpGet** （HTTPGetAction）
+
+  HTTPGet 指定要执行的 HTTP 请求。
+
+  <a name="HTTPGetAction"></a>
+  **HTTPGetAction 描述基于 HTTP Get 请求的操作。**
+
+  <!--
+  - **httpGet.port** (IntOrString), required
+
+    Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.
+
+    <a name="IntOrString"></a>
+    *IntOrString is a type that can hold an int32 or a string.  When used in JSON or YAML marshalling and unmarshalling, it produces or consumes the inner type.  This allows you to have, for example, a JSON field that can accept a name or number.*
+  -->
+
+  - **httpGet.port** （IntOrString），必需
+
+    要在容器上访问的端口的名称或编号。数字必须在 1 到 65535 的范围内。名称必须是 IANA_SVC_NAME。
+
+    <a name="IntOrString"></a>
+    **IntOrString 是一种可以包含 int32 或字符串值的类型。在 JSON 或 YAML 封组和取消编组时，
+    它会生成或使用内部类型。例如，这允许你拥有一个可以接受名称或数字的 JSON 字段。**
+
+  <!--
+  - **httpGet.host** (string)
+
+    Host name to connect to, defaults to the pod IP. You probably want to set "Host" in httpHeaders instead.
+
+  - **httpGet.httpHeaders** ([]HTTPHeader)
+
+    Custom headers to set in the request. HTTP allows repeated headers.
+
+    <a name="HTTPHeader"></a>
+    *HTTPHeader describes a custom header to be used in HTTP probes*
+  -->
+
+  - **httpGet.host** （string）
+
+    要连接的主机名，默认为 Pod IP。你可能想在 `httpHeaders` 中设置 "Host"。 
+
+  - **httpGet.httpHeaders** （[]HTTPHeader）
+
+    要在请求中设置的自定义标头。HTTP 允许重复的标头。 
+
+    <a name="HTTPHeader"></a>
+    **HTTPHeader 描述了在 HTTP 探针中使用的自定义标头**
+
+    <!--
+    - **httpGet.httpHeaders.name** (string), required
+
+      The header field name
+
+    - **httpGet.httpHeaders.value** (string), required
+
+      The header field value
+    -->
+
+    - **httpGet.httpHeaders.name** (string)，必需
+
+      HTTP 头部字段名称。
+
+    - **httpGet.httpHeaders.value** (string)，必需
+
+      HTTP 头部字段取值。
+
+  <!--
+  - **httpGet.path** (string)
+
+    Path to access on the HTTP server.
+
+  - **httpGet.scheme** (string)
+
+    Scheme to use for connecting to the host. Defaults to HTTP.
+  -->
+ 
+  - **httpGet.path** （string）
+
+    HTTP 服务器上的访问路径。 
+
+  - **httpGet.scheme** （string）
+
+    用于连接到主机的方案。默认为 `HTTP`。 
+
+<!--
+- **tcpSocket** （TCPSocketAction）
+
+  Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept for the backward compatibility. There are no validation of this field and lifecycle hooks will fail in runtime when tcp handler is specified.
+
+  <a name="TCPSocketAction"></a>
+  *TCPSocketAction describes an action based on opening a socket*
+-->
+- **tcpSocket** （TCPSocketAction）
+
+  已弃用。不再支持 `tcpSocket` 作为 LifecycleHandler，但为向后兼容保留之。
+  当指定 `tcp` 处理程序时，此字段不会被验证，而生命周期回调将在运行时失败。
+
+  <a name="TCPSocketAction"></a>
+  **TCPSocketAction 描述基于打开套接字的动作。**
+
+  <!--
+  - **tcpSocket.port** (IntOrString), required
+
+    Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.
+  -->
+
+  - **tcpSocket.port** (IntOrString)，必需
+
+    容器上要访问的端口的编号或名称。端口号必须在 1 到 65535 的范围内。
+    名称必须是 IANA_SVC_NAME。 
+
+    <a name="IntOrString"></a>
+    **IntOrString 是一种可以保存 int32 或字符串值的类型。在 JSON 或 YAML 编组和解组中使用时，
+    会生成或使用内部类型。例如，这允许你拥有一个可以接受名称或数字的 JSON 字段。**
+
+  <!--
+  - **tcpSocket.host** (string)
+
+    Optional: Host name to connect to, defaults to the pod IP.
+  -->
+
+  - **tcpSocket.host** （string）
+
+    可选字段。要连接的主机名，默认为 Pod IP。 
+
+## NodeAffinity {#NodeAffinity}
+
+<!--
+Node affinity is a group of node affinity scheduling rules.
+-->
+节点亲和性是一组节点亲和性调度规则。 
+
+<hr>
+
+<!--
+- **preferredDuringSchedulingIgnoredDuringExecution** ([]PreferredSchedulingTerm)
+
+  The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding "weight" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.
+
+  <a name="PreferredSchedulingTerm"></a>
+  *An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).*
+
+-->
+
+- **preferredDuringSchedulingIgnoredDuringExecution** （[]PreferredSchedulingTerm）
+
+  调度程序会更倾向于将 Pod 调度到满足该字段指定的亲和性表达式的节点，
+  但它可能会选择违反一个或多个表达式的节点。最优选的节点是权重总和最大的节点，
+  即对于满足所有调度要求（资源请求、requiredDuringScheduling 亲和表达式等）的每个节点，
+  通过迭代该字段的元素来计算总和如果节点匹配相应的 matchExpressions，则将 "权重" 添加到总和中； 
+  具有最高总和的节点是最优选的。 
+
+  空的首选调度条件匹配所有具有隐式权重 0 的对象（即它是一个 no-op 操作）。
+  null 值的首选调度条件不匹配任何对象（即也是一个 no-op 操作）。
+
+  <!--
+  - **preferredDuringSchedulingIgnoredDuringExecution.preference** (NodeSelectorTerm), required
+
+    A node selector term, associated with the corresponding weight.
+
+    <a name="NodeSelectorTerm"></a>
+    *A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.*
+  -->
+
+  - **preferredDuringSchedulingIgnoredDuringExecution.preference** (NodeSelectorTerm)，必需
+
+    与相应权重相关联的节点选择条件。 
+
+    null 值或空值的节点选择条件不会匹配任何对象。这些条件的请求按逻辑与操作组合。
+    TopologySelectorTerm 类型实现了 NodeSelectorTerm 的一个子集。
+
+    <!--
+    - **preferredDuringSchedulingIgnoredDuringExecution.preference.matchExpressions** ([]<a href="{{< ref "../common-definitions/node-selector-requirement#NodeSelectorRequirement" >}}">NodeSelectorRequirement</a>)
+
+      A list of node selector requirements by node's labels.
+
+    - **preferredDuringSchedulingIgnoredDuringExecution.preference.matchFields** ([]<a href="{{< ref "../common-definitions/node-selector-requirement#NodeSelectorRequirement" >}}">NodeSelectorRequirement</a>)
+
+      A list of node selector requirements by node's fields.
+    -->
+
+    - **preferredDuringSchedulingIgnoredDuringExecution.preference.matchExpressions** （[]<a href="{{< ref "../common-definitions/node-selector-requirement" >}}">NodeSelectorRequirement</a>）
+
+      按节点标签列出的节点选择条件列表。 
+
+    - **preferredDuringSchedulingIgnoredDuringExecution.preference.matchFields** （[]<a href="{{< ref "../common-definitions/node-selector-requirement" >}}">NodeSelectorRequirement</a>）
+
+      按节点字段列出的节点选择要求列表。 
+
+  <!--
+  - **preferredDuringSchedulingIgnoredDuringExecution.weight** (int32), required
+
+    Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.
+  -->
+
+  - **preferredDuringSchedulingIgnoredDuringExecution.weight** (int32)，必需
+
+    与匹配相应的 nodeSelectorTerm 相关的权重，范围为 1-100。 
+
+<!--
+- **requiredDuringSchedulingIgnoredDuringExecution** (NodeSelector)
+
+  If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.
+
+  <a name="NodeSelector"></a>
+  *A node selector represents the union of the results of one or more label queries over a set of nodes; that is, it represents the OR of the selectors represented by the node selector terms.*
+-->
+
+- **requiredDuringSchedulingIgnoredDuringExecution** （NodeSelector）
+
+  如果在调度时不满足该字段指定的亲和性要求，则不会将 Pod 调度到该节点上。 
+  如果在 Pod 执行期间的某个时间点不再满足此字段指定的亲和性要求（例如：由于更新），
+  系统可能会或可能不会尝试最终将 Pod 从其节点中逐出。 
+
+  <a name="NodeSelector"></a>
+  **一个节点选择器代表一个或多个标签查询结果在一组节点上的联合；换言之，
+  它表示由节点选择器项表示的选择器的逻辑或组合。**
+
+  <!--
+  - **requiredDuringSchedulingIgnoredDuringExecution.nodeSelectorTerms** ([]NodeSelectorTerm), required
+
+    Required. A list of node selector terms. The terms are ORed.
+
+    <a name="NodeSelectorTerm"></a>
+    *A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.*
+  -->
+
+  - **requiredDuringSchedulingIgnoredDuringExecution.nodeSelectorTerms** ([]NodeSelectorTerm)，必需
+
+    必需的字段。节点选择条件列表。这些条件按逻辑或操作组合。
+
+    null 值或空值的节点选择器条件不匹配任何对象。这里的条件是按逻辑与操作组合的。
+    TopologySelectorTerm 类型实现了 NodeSelectorTerm 的一个子集。
+
+    <!--
+    - **requiredDuringSchedulingIgnoredDuringExecution.nodeSelectorTerms.matchExpressions** ([]<a href="{{< ref "../common-definitions/node-selector-requirement#NodeSelectorRequirement" >}}">NodeSelectorRequirement</a>)
+
+      A list of node selector requirements by node's labels.
+
+    - **requiredDuringSchedulingIgnoredDuringExecution.nodeSelectorTerms.matchFields** ([]<a href="{{< ref "../common-definitions/node-selector-requirement#NodeSelectorRequirement" >}}">NodeSelectorRequirement</a>)
+
+      A list of node selector requirements by node's fields.
+    -->
+
+    - **requiredDuringSchedulingIgnoredDuringExecution.nodeSelectorTerms.matchExpressions** （[]<a href="{{< ref "../common-definitions/node-selector-requirement" >}}">NodeSelectorRequirement</a>）
+
+      按节点标签列出的节点选择器需求列表。 
+
+    - **requiredDuringSchedulingIgnoredDuringExecution.nodeSelectorTerms.matchFields** （[]<a href="{{< ref "../common-definitions/node-selector-requirement" >}}">NodeSelectorRequirement</a>）
+
+      按节点字段列出的节点选择器要求列表。 
+
+## PodAntiAffinity {#PodAntiAffinity}
+
+<!--
+Pod affinity is a group of inter pod affinity scheduling rules.
+-->
+Pod 反亲和性是一组 Pod 间反亲和性调度规则。 
+
+<hr>
+
+<!--
+- **preferredDuringSchedulingIgnoredDuringExecution** ([]WeightedPodAffinityTerm)
+
+  The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding "weight" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.
+
+  <a name="WeightedPodAffinityTerm"></a>
+  *The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)*
+-->
+- **preferredDuringSchedulingIgnoredDuringExecution** ([]WeightedPodAffinityTerm)
+
+  调度器更倾向于将 Pod 调度到满足该字段指定的反亲和性表达式的节点，
+  但它可能会选择违反一个或多个表达式的节点。 
+  最优选的节点是权重总和最大的节点，即对于满足所有调度要求（资源请求、`requiredDuringScheduling`
+  反亲和性表达式等）的每个节点，通过遍历元素来计算总和如果节点具有与相应 `podAffinityTerm`
+  匹配的 Pod，则此字段并在总和中添加"权重"；具有最高加和的节点是最优选的。 
+
+  <a name="WeightedPodAffinityTerm"></a>
+  **所有匹配的 WeightedPodAffinityTerm 字段的权重都是按节点添加的，以找到最优选的节点。**
+
+  <!--
+  - **preferredDuringSchedulingIgnoredDuringExecution.podAffinityTerm** (PodAffinityTerm), required
+
+    Required. A pod affinity term, associated with the corresponding weight.
+
+    <a name="PodAffinityTerm"></a>
+    *Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key <topologyKey> matches that of any node on which a pod of the set of pods is running*
+  -->
+
+  - **preferredDuringSchedulingIgnoredDuringExecution.podAffinityTerm** (PodAffinityTerm)，必需
+
+    必需的字段。 一个 Pod 亲和性条件，与相应的权重相关联。 
+
+    <a name="PodAffinityTerm"></a>
+    定义一组 Pod（即那些与给定名字空间相关的标签选择算符匹配的 Pod 集合），
+    当前 Pod 应该与所选 Pod 集合位于同一位置（亲和性）或不位于同一位置（反亲和性），
+    其中 "在同一位置" 意味着运行在一个节点上，其键 `topologyKey` 的标签值与运行所选 Pod
+    集合中的某 Pod 的任何节点上的标签值匹配。
+
+    <!--
+    - **preferredDuringSchedulingIgnoredDuringExecution.podAffinityTerm.topologyKey** (string), required
+
+      This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.
+    -->
+
+    - **preferredDuringSchedulingIgnoredDuringExecution.podAffinityTerm.topologyKey** (string)，必需
+
+      此 Pod 应与指定名字空间中与标签选择算符匹配的 Pod 集合位于同一位置（亲和性）
+      或不位于同一位置（反亲和性），这里的 "在同一位置" 意味着运行在一个节点上，其键名为
+      `topologyKey` 的标签值与运行所选 Pod 集合中的某 Pod 的任何节点上的标签值匹配。
+      不允许使用空的 `topologyKey`。 
+
+    <!--
+    - **preferredDuringSchedulingIgnoredDuringExecution.podAffinityTerm.labelSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+      A label query over a set of resources, in this case pods.
+    -->
+
+    - **preferredDuringSchedulingIgnoredDuringExecution.podAffinityTerm.labelSelector** （<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>）
+
+      对一组资源的标签查询，在这里资源为 Pod。 
+
+    <!--
+    - **preferredDuringSchedulingIgnoredDuringExecution.podAffinityTerm.namespaceSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+      A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means "this pod's namespace". An empty selector ({}) matches all namespaces.
+    -->
+
+    - **preferredDuringSchedulingIgnoredDuringExecution.podAffinityTerm.namespaceSelector** （<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>）
+
+      对条件所适用的名字空间集合的标签查询。
+      此条件会被应用到此字段所选择的名字空间和 namespaces 字段中列出的名字空间的组合之上。 
+      选择算符为 null 和 namespaces 列表为 null 值或空表示 "此 Pod 的名字空间"。 
+      空的选择算符 ({}) 可用来匹配所有名字空间。 
+
+    <!--
+    - **preferredDuringSchedulingIgnoredDuringExecution.podAffinityTerm.namespaces** ([]string)
+
+      namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means "this pod's namespace".
+    -->
+
+    - **preferredDuringSchedulingIgnoredDuringExecution.podAffinityTerm.namespaces** （[]string）
+
+      namespaces 指定此条件所适用的名字空间，是一个静态列表。 
+      此条件会被应用到 namespaces 字段中列出的名字空间和由 namespaceSelector 选中的名字空间上。 
+      namespaces 列表为 null 或空，以及 namespaceSelector 值为 null 均表示 "此 Pod 的名字空间"。 
+
+  <!--
+  - **preferredDuringSchedulingIgnoredDuringExecution.weight** (int32), required
+
+    weight associated with matching the corresponding podAffinityTerm, in the range 1-100.
+  -->
+
+  - **preferredDuringSchedulingIgnoredDuringExecution.weight** (int32)，必需
+
+    weight 是匹配相应 `podAffinityTerm` 条件的权重，范围为 1-100。 
+
+<!--
+- **requiredDuringSchedulingIgnoredDuringExecution** ([]PodAffinityTerm)
+
+  If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.
+
+  <a name="PodAffinityTerm"></a>
+  *Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key <topologyKey> matches that of any node on which a pod of the set of pods is running*
+-->
+
+- **requiredDuringSchedulingIgnoredDuringExecution** （[]PodAffinityTerm）
+
+  如果在调度时不满足该字段指定的反亲和性要求，则该 Pod 不会被调度到该节点上。 
+  如果在 Pod 执行期间的某个时间点不再满足此字段指定的反亲和性要求（例如：由于 Pod 标签更新），
+  系统可能会或可能不会尝试最终将 Pod 从其节点中逐出。 
+  当有多个元素时，每个 `podAffinityTerm` 对应的节点列表是取其交集的，即必须满足所有条件。 
+
+  <a name="PodAffinityTerm"></a>
+  定义一组 Pod（即那些与给定名字空间相关的标签选择算符匹配的 Pod 集合），当前 Pod 应该与该
+  Pod 集合位于同一位置（亲和性）或不位于同一位置（反亲和性）。
+  这里的 "位于同一位置" 含义是运行在一个节点上。基于 `topologyKey` 字段所给的标签键名，
+  检查所选 Pod 集合中各个 Pod 所在的节点上的标签值，标签值相同则认作 "位于同一位置"。
+
+  <!--
+  - **requiredDuringSchedulingIgnoredDuringExecution.topologyKey** (string), required
+
+    This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.
+  -->
+
+  - **requiredDuringSchedulingIgnoredDuringExecution.topologyKey** (string)，必需
+
+    此 Pod 应与指定名字空间中与标签选择算符匹配的 Pod 集合位于同一位置（亲和性）
+    或不位于同一位置（反亲和性），
+    这里的 "位于同一位置" 含义是运行在一个节点上。基于 `topologyKey` 字段所给的标签键名，
+    检查所选 Pod 集合中各个 Pod 所在的节点上的标签值，标签值相同则认作 "位于同一位置"。
+    不允许使用空的 `topologyKey`。 
+
+  <!--
+  - **requiredDuringSchedulingIgnoredDuringExecution.labelSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+    A label query over a set of resources, in this case pods.
+  -->
+
+  - **requiredDuringSchedulingIgnoredDuringExecution.labelSelector** （<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>）
+
+    对一组资源的标签查询，在这里资源为 Pod。 
+
+  <!--
+  - **requiredDuringSchedulingIgnoredDuringExecution.namespaceSelector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)
+
+    A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means "this pod's namespace". An empty selector ({}) matches all namespaces.
+  -->
+
+  - **requiredDuringSchedulingIgnoredDuringExecution.namespaceSelector** （<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>）
+
+    对条件所适用的名字空间集合的标签查询。 
+    当前条件将应用于此字段选择的名字空间和 namespaces 字段中列出的名字空间。 
+    选择算符为 null 和 namespaces 列表为 null 或空值表示 “此 Pod 的名字空间”。
+    空选择算符 ({}) 能够匹配所有名字空间。 
+
+
+  <!--
+  - **requiredDuringSchedulingIgnoredDuringExecution.namespaces** ([]string)
+
+    namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means "this pod's namespace".
+  -->
+
+  - **requiredDuringSchedulingIgnoredDuringExecution.namespaces** （[]string）
+
+    namespaces 指定当前条件所适用的名字空间名称的静态列表。
+    当前条件适用于此字段中列出的名字空间和由 namespaceSelector 选中的名字空间。
+    namespaces 列表为 null 或空，以及 namespaceSelector 为 null 表示 “此 Pod 的名字空间”。
+
+
+<!--
+## Probe {#Probe}
+-->
+## 探针 {#Probe}
+
+<!--
+Probe describes a health check to be performed against a container to determine whether it is alive or ready to receive traffic.
+-->
+探针描述了要对容器执行的健康检查，以确定它是否处于活动状态或准备好接收流量。 
+
+<hr>
+
+<!--
+- **exec** (ExecAction)
+
+  Exec specifies the action to take.
+
+  <a name="ExecAction"></a>
+  *ExecAction describes a "run in container" action.*
+-->
+- **exec** （execAction）
+
+  exec 指定要执行的操作。 
+
+  <a name="ExecAction"></a>
+  **ExecAction 描述了 "在容器中运行" 操作。**
+
+  <!--
+  - **exec.command** ([]string)
+
+    Command is the command line to execute inside the container, the working directory for the command  is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.
+  -->
+
+  - **exec.command** （[]string）
+
+    command 是要在容器内执行的命令行，命令的工作目录是容器文件系统中的根目录（'/'）。
+    该命令只是通过 `exec` 执行，而不会启动 Shell，因此传统的 Shell 指令（'|' 等）将不起作用。
+    要使用某 Shell，你需要显式调用该 Shell。
+    退出状态 0 被视为存活/健康，非零表示不健康。
+
+<!--
+- **httpGet** (HTTPGetAction)
+
+  HTTPGet specifies the http request to perform.
+
+  <a name="HTTPGetAction"></a>
+  *HTTPGetAction describes an action based on HTTP Get requests.*
+-->
+- **httpGet** （HTTPGetAction）
+
+  httpGet 指定要执行的 HTTP 请求。 
+
+  <a name="HTTPGetAction"></a>
+  **HTTPGetAction 描述基于 HTTP Get 请求的操作。**
+
+  <!--
+  - **httpGet.port** (IntOrString), required
+
+    Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.
+
+    <a name="IntOrString"></a>
+    *IntOrString is a type that can hold an int32 or a string.  When used in JSON or YAML marshalling and unmarshalling, it produces or consumes the inner type.  This allows you to have, for example, a JSON field that can accept a name or number.*
+  -->
+
+  - **httpGet.port** (IntOrString)，必需
+
+    容器上要访问的端口的名称或端口号。端口号必须在 1 到 65535 内。名称必须是 IANA_SVC_NAME。 
+
+    <a name="IntOrString"></a>
+    `IntOrString` 是一种可以保存 int32 或字符串值的类型。 在 JSON 或 YAML 编组和解组时，
+    它会生成或使用内部类型。例如，这允许你拥有一个可以接受名称或数字的 JSON 字段。
+
+  <!--
+  - **httpGet.host** (string)
+
+    Host name to connect to, defaults to the pod IP. You probably want to set "Host" in httpHeaders instead.
+  -->
+
+  - **httpGet.host** （string）
+
+    要连接的主机名，默认为 Pod IP。 你可能想在 `httpHeaders` 中设置 "Host"。 
+
+  <!--
+  - **httpGet.httpHeaders** ([]HTTPHeader)
+
+    Custom headers to set in the request. HTTP allows repeated headers.
+
+    <a name="HTTPHeader"></a>
+    *HTTPHeader describes a custom header to be used in HTTP probes*
+  -->
+
+  - **httpGet.httpHeaders** （[]HTTPHeader）
+
+    要在请求中设置的自定义 HTTP 标头。HTTP 允许重复的标头。 
+
+    <a name="HTTPHeader"></a>
+    **HTTPHeader 描述了在 HTTP 探针中使用的自定义标头。**
+
+    <!--
+    - **httpGet.httpHeaders.name** (string), required
+
+      The header field name
+
+    - **httpGet.httpHeaders.value** (string), required
+
+      The header field value
+    -->
+
+    - **httpGet.httpHeaders.name** (string)，必需
+
+      HTTP 头部域名称。
+
+    - **httpGet.httpHeaders.value** (string)，必需
+
+      HTTP 头部域值。
+
+  <!--
+  - **httpGet.path** (string)
+
+    Path to access on the HTTP server.
+
+  - **httpGet.scheme** (string)
+
+    Scheme to use for connecting to the host. Defaults to HTTP.
+  -->
+ 
+  - **httpGet.path** （string）
+
+    HTTP 服务器上的访问路径。 
+
+  - **httpGet.scheme** （string）
+
+    用于连接到主机的方案。默认为 HTTP。 
+
+<!--
+- **tcpSocket** (TCPSocketAction)
+
+  TCPSocket specifies an action involving a TCP port.
+
+  <a name="TCPSocketAction"></a>
+  *TCPSocketAction describes an action based on opening a socket*
+-->
+
+- **tcpSocket** （TCPSocketAction）
+
+  tcpSocket 指定涉及 TCP 端口的操作。 
+
+  <a name="TCPSocketAction"></a>
+  **`TCPSocketAction` 描述基于打开套接字的动作。**
+
+  <!--
+  - **tcpSocket.port** (IntOrString), required
+
+    Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.
+
+    <a name="IntOrString"></a>
+    *IntOrString is a type that can hold an int32 or a string.  When used in JSON or YAML marshalling and unmarshalling, it produces or consumes the inner type.  This allows you to have, for example, a JSON field that can accept a name or number.*
+  -->
+
+  - **tcpSocket.port** (IntOrString)，必需
+
+    容器上要访问的端口的端口号或名称。端口号必须在 1 到 65535 内。名称必须是 IANA_SVC_NAME。
+
+    <a name="IntOrString"></a>
+    IntOrString 是一种可以保存 int32 或字符串的类型。在 JSON 或 YAML 编组和解组时，
+    它会生成或使用内部类型。例如，这允许你拥有一个可以接受名称或数字的 JSON 字段。
+
+  <!--
+  - **tcpSocket.host** (string)
+
+    Optional: Host name to connect to, defaults to the pod IP.
+  -->
+
+  - **tcpSocket.host** （string）
+
+    可选字段。要连接的主机名，默认为 Pod IP。 
+
+<!--
+- **initialDelaySeconds** (int32)
+
+  Number of seconds after the container has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
+-->
+- **初始延迟秒** （int32）
+
+  容器启动后启动存活态探针之前的秒数。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/workloads/pods/pod-lifecycle#container-probes
+
+<!--
+- **terminationGracePeriodSeconds** (int64)
+
+  Optional duration in seconds the pod needs to terminate gracefully upon probe failure. The grace period is the duration in seconds after the processes running in the pod are sent a termination signal and the time when the processes are forcibly halted with a kill signal. Set this value longer than the expected cleanup time for your process. If this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this value overrides the value provided by the pod spec. Value must be non-negative integer. The value zero indicates stop immediately via the kill signal (no opportunity to shut down). This is a beta field and requires enabling ProbeTerminationGracePeriod feature gate. Minimum value is 1. spec.terminationGracePeriodSeconds is used if unset.
+-->
+
+- **terminationGracePeriodSeconds** （int64）
+
+  Pod 需要在探针失败时体面终止所需的时间长度（以秒为单位），为可选字段。 
+  宽限期是 Pod 中运行的进程收到终止信号后，到进程被终止信号强制停止之前的时间长度（以秒为单位）。 
+  你应该将此值设置为比你的进程的预期清理时间更长。 
+  如果此值为 nil，则将使用 Pod 的 `terminateGracePeriodSeconds`。 
+  否则，此值将覆盖 Pod 规约中设置的值。字段值值必须是非负整数。 
+  零值表示收到终止信号立即停止（没有机会关闭）。 
+  这是一个 Beta 字段，需要启用 ProbeTerminationGracePeriod 特性门控。最小值为 1。 
+  如果未设置，则使用 `spec.terminationGracePeriodSeconds`。 
+
+<!--
+- **periodSeconds** (int32)
+
+  How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
+-->
+- **periodSeconds** (int32)
+
+  探针的执行周期（以秒为单位）。默认为 10 秒。最小值为 1。 
+
+<!--
+- **timeoutSeconds** (int32)
+
+  Number of seconds after which the probe times out. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
+-->
+- **timeoutSeconds** (int32)
+
+  探针超时的秒数。默认为 1 秒。最小值为 1。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/workloads/pods/pod-lifecycle#container-probes
+
+<!--
+- **failureThreshold** (int32)
+
+  Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
+-->
+- **failureThreshold** (int32)
+
+  探针成功后的最小连续失败次数，超出此阈值则认为探针失败。默认为 3。最小值为 1。 
+
+<!--
+- **successThreshold** (int32)
+
+  Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness and startup. Minimum value is 1.
+-->
+- **successThreshold** (int32)
+
+  探针失败后最小连续成功次数，超过此阈值才会被视为探针成功。默认为 1。
+  存活性探针和启动探针必须为 1。最小值为 1。 
+
+<!--
+- **grpc** (GRPCAction)
+
+  GRPC specifies an action involving a GRPC port. This is a beta field and requires enabling GRPCContainerProbe feature gate.
+-->
+- **grpc** （GRPCAction）
+
+  GRPC 指定涉及 GRPC 端口的操作。这是一个 Beta 字段，需要启用 GRPCContainerProbe 特性门控。
+
+  <a name="GRPCAction"></a>
+
+  <!--
+  - **grpc.port** (int32), required
+
+    Port number of the gRPC service. Number must be in the range 1 to 65535.
+
+  - **grpc.service** (string)
+
+    Service is the name of the service to place in the gRPC HealthCheckRequest (see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).
+    
+    If this is not specified, the default behavior is defined by gRPC.
+  -->
+
+  - **grpc.port** （int32），必需
+
+    gRPC 服务的端口号。数字必须在 1 到 65535 的范围内。
+
+  - **grpc.service** （string）
+
+    service 是要放置在 gRPC 运行状况检查请求中的服务的名称
+    （请参见 https://github.com/grpc/grpc/blob/master/doc/health-checking.md）。
+    
+    如果未指定，则默认行为由 gRPC 定义。
+
+
+## PodStatus {#PodStatus}
+
+<!--
+PodStatus represents information about the status of a pod. Status may trail the actual state of a system, especially if the node that hosts the pod cannot contact the control plane.
+-->
+PodStatus 表示有关 Pod 状态的信息。状态内容可能会滞后于系统的实际状态，
+尤其是在托管 Pod 的节点无法联系控制平面的情况下。 
+
+<hr>
+
+<!--
+- **nominatedNodeName** (string)
+
+  nominatedNodeName is set only when this pod preempts other pods on the node, but it cannot be scheduled right away as preemption victims receive their graceful termination periods. This field does not guarantee that the pod will be scheduled on this node. Scheduler may decide to place the pod elsewhere if other nodes become available sooner. Scheduler may also decide to give the resources on this node to a higher priority pod that is created after preemption. As a result, this field may be different than PodSpec.nodeName when the pod is scheduled.
+-->
+- **nominatedNodeName** (string)
+
+  仅当此 Pod 抢占节点上的其他 Pod 时才设置 `nominatedNodeName`，
+  但抢占操作的受害者会有体面终止期限，因此此 Pod 无法立即被调度。 
+  此字段不保证 Pod 会在该节点上调度。 
+  如果其他节点更早进入可用状态，调度器可能会决定将 Pod 放置在其他地方。
+  调度器也可能决定将此节点上的资源分配给优先级更高的、在抢占操作之后创建的 Pod。 
+  因此，当 Pod 被调度时，该字段可能与 Pod 规约中的 nodeName 不同。 
+
+<!--
+- **hostIP** (string)
+
+  IP address of the host to which the pod is assigned. Empty if not yet scheduled.
+-->
+- **hostIP** (string)
+
+  Pod 被调度到的主机的 IP 地址。如果尚未被调度，则为字段为空。 
+
+<!--
+- **startTime** (Time)
+
+  RFC 3339 date and time at which the object was acknowledged by the Kubelet. This is before the Kubelet pulled the container image(s) for the pod.
+
+  <a name="Time"></a>
+  *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+-->
+- **startTime** (Time)
+
+  kubelet 确认 Pod 对象的日期和时间，格式遵从 RFC 3339。
+  此时间点处于 kubelet 为 Pod 拉取容器镜像之前。 
+
+  Time 是 `time.Time` 的包装器，支持正确编组为 YAML 和 JSON。
+  time 包所提供的许多工厂方法都有包装器。
+
+<!--
+- **phase** (string)
+
+  The phase of a Pod is a simple, high-level summary of where the Pod is in its lifecycle. The conditions array, the reason and message fields, and the individual container status arrays contain more detail about the pod's status. There are five possible phase values:
+  
+  Pending: The pod has been accepted by the Kubernetes system, but one or more of the container images has not been created. This includes time before being scheduled as well as time spent downloading images over the network, which could take a while. Running: The pod has been bound to a node, and all of the containers have been created. At least one container is still running, or is in the process of starting or restarting. Succeeded: All containers in the pod have terminated in success, and will not be restarted. Failed: All containers in the pod have terminated, and at least one container has terminated in failure. The container either exited with non-zero status or was terminated by the system. Unknown: For some reason the state of the pod could not be obtained, typically due to an error in communicating with the host of the pod.
+-->  
+- **phase** (string)
+
+  Pod 的 phase 是对 Pod 在其生命周期中所处位置的简单、高级摘要。
+  conditions 数组、reason 和 message 字段以及各个容器的 status 数组包含有关 Pod
+  状态的进一步详细信息。phase 的取值有五种可能性：
+  
+  - `Pending`：Pod 已被 Kubernetes 系统接受，但尚未创建容器镜像。
+   这包括 Pod 被调度之前的时间以及通过网络下载镜像所花费的时间。
+  - `Running`：Pod 已经被绑定到某个节点，并且所有的容器都已经创建完毕。至少有一个容器仍在运行，或者正在启动或重新启动过程中。
+  - `Succeeded`：Pod 中的所有容器都已成功终止，不会重新启动。
+  - `Failed`：Pod 中的所有容器都已终止，并且至少有一个容器因故障而终止。
+    容器要么以非零状态退出，要么被系统终止。 
+  - `Unknown`：由于某种原因无法获取 Pod 的状态，通常是由于与 Pod 的主机通信时出错。 
+  
+  更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/workloads/pods/pod-lifecycle#pod-phase
+
+<!--
+- **message** (string)
+
+  A human readable message indicating details about why the pod is in this condition.
+
+- **reason** (string)
+
+  A brief CamelCase message indicating details about why the pod is in this state. e.g. 'Evicted'
+
+- **podIP** (string)
+
+  IP address allocated to the pod. Routable at least within the cluster. Empty if not yet allocated.
+-->
+- **message** (string)
+
+   一条人类可读的消息，标示有关 Pod 为何处于这种情况的详细信息。 
+
+- **reason** (string)
+
+   一条简短的驼峰式命名的消息，指示有关 Pod 为何处于此状态的详细信息。例如 'Evicted'。
+
+
+- **podIP** （string）
+
+   分配给 Pod 的 IP 地址。至少在集群内可路由。如果尚未分配则为空。 
+
+<!--
+- **podIPs** ([]PodIP)
+
+  *Patch strategy: merge on key `ip`*
+  
+  podIPs holds the IP addresses allocated to the pod. If this field is specified, the 0th entry must match the podIP field. Pods may be allocated at most 1 value for each of IPv4 and IPv6. This list is empty if no IPs have been allocated yet.
+
+  <a name="PodIP"></a>
+  *IP address information for entries in the (plural) PodIPs field. Each entry includes:
+     IP: An IP address allocated to the pod. Routable at least within the cluster.*
+-->
+- **podIPs** （[]PodIP）
+
+  **补丁策略：基于 `ip` 键合并**
+  
+  podIPs 保存分配给 Pod 的 IP 地址。如果指定了该字段，则第 0 个条目必须与 podIP 字段值匹配。 
+  Pod 最多可以为 IPv4 和 IPv6 各分配 1 个值。如果尚未分配 IP，则此列表为空。 
+
+  <a name="PodIP"></a>
+  podIPs 字段中每个条目的 IP 地址信息。每个条目都包含 `ip` 字段，给出分配给 Pod 的 IP 地址。
+  该 IP 地址至少在集群内可路由。
+
+  <!--
+  - **podIPs.ip** (string)
+
+    ip is an IP address (IPv4 or IPv6) assigned to the pod
+  -->
+
+  - **podIP.ip** （string）
+
+     ip 是分配给 Pod 的 IP 地址（IPv4 或 IPv6）。
+
+<!--
+- **conditions** ([]PodCondition)
+
+  *Patch strategy: merge on key `type`*
+  
+  Current service state of pod. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-conditions
+
+  <a name="PodCondition"></a>
+  *PodCondition contains details for the current condition of this pod.*
+-->
+- **conditions** ([]PodCondition)
+
+   **补丁策略：基于 `ip` 键合并**
+  
+   Pod 的当前服务状态。更多信息：
+   https://kubernetes.io/zh-cn/docs/concepts/workloads/pods/pod-lifecycle#pod-conditions
+
+  <a name="PodCondition"></a>
+   **PodCondition 包含此 Pod 当前状况的详细信息。**
+
+  <!--
+  - **conditions.status** (string), required
+
+    Status is the status of the condition. Can be True, False, Unknown. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-conditions
+
+  - **conditions.type** (string), required
+
+    Type is the type of the condition. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-conditions
+  -->
+   - **conditions.status** (string)，必需
+
+    status 是 condition 的状态。可以是 `True`、`False`、`Unknown` 之一。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/workloads/pods/pod-lifecycle#pod-conditions
+
+  - **conditions.type** (string)，必需
+
+    type 是 condition 的类型。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/workloads/pods/pod-lifecycle#pod-conditions
+
+  <!--
+  - **conditions.lastProbeTime** (Time)
+
+    Last time we probed the condition.
+
+    <a name="Time"></a>
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+  -->
+
+  - **conditions.lastProbeTime** (Time)
+
+    上次探测 Pod 状况的时间。
+
+    Time 是 `time.Time` 的包装器，支持正确编组为 YAML 和 JSON。
+    time 包所提供的许多工厂方法都有包装器。
+
+  <!--
+  - **conditions.lastTransitionTime** (Time)
+
+    Last time the condition transitioned from one status to another.
+
+    <a name="Time"></a>
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+  -->
+
+  - **conditions.lastTransitionTime** (Time)
+
+    上次 Pod 状况从一种状态变为另一种状态的时间。
+
+    Time 是 `time.Time` 的包装器，支持正确编组为 YAML 和 JSON。
+    time 包所提供的许多工厂方法都有包装器。
+
+  <!--
+  - **conditions.message** (string)
+
+    Human-readable message indicating details about last transition.
+
+  - **conditions.reason** (string)
+
+    Unique, one-word, CamelCase reason for the condition's last transition.
+  -->
+
+  - **conditions.message** (string)
+
+    标示有关上次状况变化的详细信息的、人类可读的消息。 
+
+  - **conditions.reason** (string)
+
+    condition 最近一次变化的唯一、一个单词、驼峰式命名原因。 
+
+<!--
+- **qosClass** (string)
+
+  The Quality of Service (QOS) classification assigned to the pod based on resource requirements See PodQOSClass type for available QOS classes More info: https://git.k8s.io/design-proposals-archive/node/resource-qos.md
+-->
+- **qosClass** （string）
+
+   根据资源要求分配给 Pod 的服务质量 (QOS) 分类。有关可用的 QOS 类，请参阅 PodQOSClass 类型。 
+   更多信息： https://git.k8s.io/design-proposals-archive/node/resource-qos.md
+
+<!--
+- **initContainerStatuses** ([]ContainerStatus)
+
+  The list has one entry per init container in the manifest. The most recent successful init container will have ready = true, the most recently started container will have startTime set. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-and-container-status
+
+  <a name="ContainerStatus"></a>
+  *ContainerStatus contains details for the current status of this container.*
+-->
+
+- **initContainerStatuses** （[]ContainerStatus）
+
+  该列表在清单中的每个 Init 容器中都有一个条目。最近成功的 Init 容器会将 ready 设置为 true，
+  最近启动的容器将设置 startTime。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/workloads/pods/pod-lifecycle#pod-and-container-status
+
+  **ContainerStatus 包含此容器当前状态的详细信息。**
+
+  <!--
+  - **initContainerStatuses.name** (string), required
+
+    This must be a DNS_LABEL. Each container in a pod must have a unique name. Cannot be updated.
+
+  - **initContainerStatuses.image** (string), required
+
+    The image the container is running. More info: https://kubernetes.io/docs/concepts/containers/images.
+  -->
+
+  - **initContainerStatuses.name** (string)，必需
+
+    此字段值必须是 DNS_LABEL。Pod 中的每个容器都必须具有唯一的名称。无法更新。 
+
+  - **initContainerStatuses.image** (string)，必需
+
+    容器中正在运行的镜像。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/containers/images。
+
+  <!--
+  - **initContainerStatuses.imageID** (string), required
+
+    ImageID of the container's image.
+
+  - **initContainerStatuses.containerID** (string)
+
+    Container's ID in the format '\<type>://\<container_id>'.
+  -->
+
+  - **initContainerStatuses.imageID** (string)，必需
+
+    容器镜像的镜像 ID。 
+
+  - **initContainerStatuses.containerID** （string）
+
+    格式为 `<type>://<container_id>` 的容器 ID。 
+
+  <!--
+  - **initContainerStatuses.state** (ContainerState)
+
+    Details about the container's current condition.
+
+    <a name="ContainerState"></a>
+    *ContainerState holds a possible state of container. Only one of its members may be specified. If none of them is specified, the default one is ContainerStateWaiting.*
+  -->
+
+  - **initContainerStatuses.state** （ContainerState）
+
+    有关容器当前状况的详细信息。
+
+    ContainerState 中保存容器的可能状态。只能设置其成员之一。如果其中所有字段都未设置，
+    则默认为 ContainerStateWaiting。
+
+    <!--
+    - **initContainerStatuses.state.running** (ContainerStateRunning)
+
+      Details about a running container
+
+      <a name="ContainerStateRunning"></a>
+      *ContainerStateRunning is a running state of a container.*
+    -->
+
+    - **initContainerStatuses.state.running** （ContainerStateRunning）
+
+      有关正在运行的容器的详细信息。
+
+      **ContainerStateRunning 是容器的运行状态。**
+
+      <!--
+      - **initContainerStatuses.state.running.startedAt** (Time)
+
+        Time at which the container was last (re-)started
+
+        <a name="Time"></a>
+        *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+      -->
+
+      - **initContainerStatuses.state.running.startedAt** （Time）
+
+        容器上次（重新）启动的时间。
+
+        Time 是 `time.Time` 的包装器，支持正确编组为 YAML 和 JSON。
+        time 包所提供的许多工厂方法都有包装器。
+
+    <!--
+    - **initContainerStatuses.state.terminated** (ContainerStateTerminated)
+
+      Details about a terminated container
+
+      <a name="ContainerStateTerminated"></a>
+      *ContainerStateTerminated is a terminated state of a container.*
+    -->
+
+    - **initContainerStatuses.state.terminated** （ContainerStateTerminated）
+
+      有关已终止容器的详细信息。
+
+      **ContainerStateTerminated 是容器的终止状态。**
+
+      <!--
+      - **initContainerStatuses.state.terminated.containerID** (string)
+
+        Container's ID in the format '\<type>://\<container_id>'
+
+      - **initContainerStatuses.state.terminated.exitCode** (int32), required
+
+        Exit status from the last termination of the container
+      -->
+
+      - **initContainerStatuses.state.terminated.containerID** （string）
+
+        容器的 ID，格式为 `"<类型>://<container_id>"`。
+
+      - **initContainerStatuses.state.terminated.exitCode** （int32），必需
+
+        容器上次终止时的退出状态
+
+      <!--
+      - **initContainerStatuses.state.terminated.startedAt** (Time)
+
+        Time at which previous execution of the container started
+
+        <a name="Time"></a>
+        *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+      -->
+
+      - **initContainerStatuses.state.terminated.startedAt** （Time）
+
+        容器上次执行时的开始时间。
+
+        Time 是 `time.Time` 的包装器，支持正确编组为 YAML 和 JSON。
+        time 包所提供的许多工厂方法都有包装器。
+
+      <!--
+      - **initContainerStatuses.state.terminated.finishedAt** (Time)
+
+        Time at which the container last terminated
+
+        <a name="Time"></a>
+        *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+      -->
+
+      - **initContainerStatuses.state.terminated.finishedAt** （Time）
+
+        容器上次终止的时间。
+
+        Time 是 `time.Time` 的包装器，支持正确编组为 YAML 和 JSON。
+        time 包所提供的许多工厂方法都有包装器。
+
+      <!--
+      - **initContainerStatuses.state.terminated.message** (string)
+
+        Message regarding the last termination of the container
+
+      - **initContainerStatuses.state.terminated.reason** (string)
+
+        (brief) reason from the last termination of the container
+
+      - **initContainerStatuses.state.terminated.signal** (int32)
+
+        Signal from the last termination of the container
+      -->
+
+      - **initContainerStatuses.state.terminated.message** （string）
+
+        有关容器上次终止的消息。
+
+      - **initContainerStatuses.state.terminated.reason** （string）
+
+        容器最后一次终止的（简要）原因。
+
+      - **initContainerStatuses.state.terminated.signal** （int32）
+
+        容器最后一次终止的信号。
+
+    <!--
+    - **initContainerStatuses.state.waiting** (ContainerStateWaiting)
+
+      Details about a waiting container
+
+      <a name="ContainerStateWaiting"></a>
+      *ContainerStateWaiting is a waiting state of a container.*
+    -->
+
+    - **initContainerStatuses.state.waiting** （ContainerStateWaiting）
+
+      有关等待状态容器的详细信息。
+
+      **容器状态等待是容器的等待状态。**
+
+      <!--
+      - **initContainerStatuses.state.waiting.message** (string)
+
+        Message regarding why the container is not yet running.
+
+      - **initContainerStatuses.state.waiting.reason** (string)
+
+        (brief) reason the container is not yet running.
+      -->
+
+      - **initContainerStatuses.state.waiting.message** （string）
+
+        有关容器尚未运行的原因的消息。
+
+      - **initContainerStatuses.state.waiting.reason** （string）
+
+        容器尚未运行的（简要）原因。
+
+  <!--
+  - **initContainerStatuses.lastState** (ContainerState)
+
+    Details about the container's last termination condition.
+
+    <a name="ContainerState"></a>
+    *ContainerState holds a possible state of container. Only one of its members may be specified. If none of them is specified, the default one is ContainerStateWaiting.*
+  -->
+
+  - **initContainerStatuses.lastState** （ContainerState）
+
+    有关容器上次终止状况的详细信息。
+
+    ContainerState 保存容器的可能状态。只能设置其成员之一。如果未设置任何成员，
+    则默认为 ContainerStateWaiting。
+
+    <!--
+    - **initContainerStatuses.lastState.running** (ContainerStateRunning)
+
+      Details about a running container
+
+      <a name="ContainerStateRunning"></a>
+      *ContainerStateRunning is a running state of a container.*
+    -->
+
+    - **initContainerStatuses.lastState.running** （ContainerStateRunning）
+
+      有关正在运行的容器的详细信息
+
+      **ContainerStateRunning 是容器的运行状态。**
+
+      <!--
+      - **initContainerStatuses.lastState.running.startedAt** (Time)
+
+        Time at which the container was last (re-)started
+
+        <a name="Time"></a>
+        *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+      -->
+
+      - **initContainerStatuses.lastState.running.startedAt** （Time）
+
+        容器上次（重新）启动的时间
+
+        Time 是 `time.Time` 的包装器，支持正确编组为 YAML 和 JSON。
+        time 包所提供的许多工厂方法都有包装器。
+
+    <!--
+    - **initContainerStatuses.lastState.terminated** (ContainerStateTerminated)
+
+      Details about a terminated container
+
+      <a name="ContainerStateTerminated"></a>
+      *ContainerStateTerminated is a terminated state of a container.*
+    -->
+
+    - **initContainerStatuses.lastState.terminated** （ContainerStateTerminated）
+
+      有关已终止容器的详细信息。
+
+      **ContainerStateTerminated 是容器的终止状态。**
+
+      <!--
+      - **initContainerStatuses.lastState.terminated.containerID** (string)
+
+        Container's ID in the format '\<type>://\<container_id>'
+
+      - **initContainerStatuses.lastState.terminated.exitCode** (int32), required
+
+        Exit status from the last termination of the container
+      -->
+
+      - **initContainerStatuses.lastState.terminated.containerID** （string）
+
+        容器的 ID，格式为 `"<类型>://<container_id>"`。
+
+      - **initContainerStatuses.lastState.terminated.exitCode** （int32），必需
+
+        容器上次终止的退出状态码。
+
+      <!--
+      - **initContainerStatuses.lastState.terminated.startedAt** (Time)
+
+        Time at which previous execution of the container started
+
+        <a name="Time"></a>
+        *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+      -->
+
+      - **initContainerStatuses.lastState.terminated.startedAt** （Time）
+
+        容器上次执行的开始时间。
+
+        Time 是 `time.Time` 的包装器，支持正确编组为 YAML 和 JSON。
+        time 包所提供的许多工厂方法都有包装器。
+
+      <!--
+      - **initContainerStatuses.lastState.terminated.finishedAt** (Time)
+
+        Time at which the container last terminated
+
+        <a name="Time"></a>
+        *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+      -->
+
+      - **initContainerStatuses.lastState.terminated.finishedAt** （Time）
+
+        容器上次终止的时间。
+
+        Time 是 `time.Time` 的包装器，支持正确编组为 YAML 和 JSON。
+        time 包所提供的许多工厂方法都有包装器。
+
+      <!--
+      - **initContainerStatuses.lastState.terminated.message** (string)
+
+        Message regarding the last termination of the container
+
+      - **initContainerStatuses.lastState.terminated.reason** (string)
+
+        (brief) reason from the last termination of the container
+
+      - **initContainerStatuses.lastState.terminated.signal** (int32)
+
+        Signal from the last termination of the container
+      -->
+
+      - **initContainerStatuses.lastState.terminated.message** （string）
+
+        有关容器上次终止的消息。
+
+      - **initContainerStatuses.lastState.terminated.reason** （string）
+
+        容器最后一次终止的（简要）原因。
+
+      - **initContainerStatuses.lastState.terminated.signal** （int32）
+
+        容器最后一次终止的信号。
+
+    <!--
+    - **initContainerStatuses.lastState.waiting** (ContainerStateWaiting)
+
+      Details about a waiting container
+
+      <a name="ContainerStateWaiting"></a>
+      *ContainerStateWaiting is a waiting state of a container.*
+    -->
+
+    - **initContainerStatuses.lastState.waiting** （ContainerStateWaiting）
+
+      有关等待状态的容器的详细信息。
+
+      **ContainerStateWaiting 是容器的等待状态。**
+
+      <!--
+      - **initContainerStatuses.lastState.waiting.message** (string)
+
+        Message regarding why the container is not yet running.
+
+      - **initContainerStatuses.lastState.waiting.reason** (string)
+
+        (brief) reason the container is not yet running.
+      -->
+
+      - **initContainerStatuses.lastState.waiting.message** （string）
+
+        关于容器尚未运行的原因的消息。 
+
+      - **initContainerStatuses.lastState.waiting.reason** （string）
+
+        容器尚未运行的（简要）原因。 
+
+  <!--
+  - **initContainerStatuses.ready** (boolean), required
+
+    Specifies whether the container has passed its readiness probe.
+
+  - **initContainerStatuses.restartCount** (int32), required
+
+    The number of times the container has been restarted.
+  -->
+
+  - **initContainerStatuses.ready** （boolean），必需
+
+    指定容器是否已通过其就绪态探测。
+
+  - **initContainerStatuses.restartCount** （int32），必需
+
+    容器重新启动的次数。
+
+  <!--
+  - **initContainerStatuses.started** (boolean)
+
+    Specifies whether the container has passed its startup probe. Initialized as false, becomes true after startupProbe is considered successful. Resets to false when the container is restarted, or if kubelet loses state temporarily. Is always true when no startupProbe is defined.
+  -->
+
+  - **initContainerStatuses.started** （boolean）
+
+    指定容器是否已通过其启动探测。初始化为 false，在 startupProbe 成功之后变为 true。
+    在容器重新启动时，或者如果 kubelet 暂时失去状态时重置为 false。
+    在未定义启动探测器时始终为 true。
+
+<!--
+- **containerStatuses** ([]ContainerStatus)
+
+  The list has one entry per container in the manifest. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-and-container-status
+
+  <a name="ContainerStatus"></a>
+  *ContainerStatus contains details for the current status of this container.*
+-->
+- **containerStatuses** （[]ContainerStatus）
+
+  该列表中针对清单中的每个容器都有一个条目。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/workloads/pods/pod-lifecycle#pod-and-container-status
+
+  **ContainerStatus 包含此容器当前状态的详细信息。**
+
+  <!--
+  - **containerStatuses.name** (string), required
+
+    This must be a DNS_LABEL. Each container in a pod must have a unique name. Cannot be updated.
+
+  - **containerStatuses.image** (string), required
+
+    The image the container is running. More info: https://kubernetes.io/docs/concepts/containers/images.
+  -->
+
+  - **containerStatuses.name**（string），必需
+
+    此字段必须是一个 DNS_LABEL。Pod 中的每个容器都必须具有唯一的名称。无法更新。
+
+  - **containerStatuses.image** （string），必需
+
+    容器正在运行的镜像。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/containers/images。
+
+  <!--
+  - **containerStatuses.imageID** (string), required
+
+    ImageID of the container's image.
+
+  - **containerStatuses.containerID** (string)
+
+    Container's ID in the format '\<type>://\<container_id>'.
+  -->
+
+  - **containerStatuses.imageID** （string），必需
+
+    容器镜像的镜像 ID。
+
+  - **containerStatuses.containerID** （string）
+
+    容器的 ID，格式为 `"<类型>://<container_id>"`。
+
+  <!--
+  - **containerStatuses.state** (ContainerState)
+
+    Details about the container's current condition.
+
+    <a name="ContainerState"></a>
+    *ContainerState holds a possible state of container. Only one of its members may be specified. If none of them is specified, the default one is ContainerStateWaiting.*
+  -->
+
+  - **containerStatuses.state** （ContainerState）
+
+    有关容器当前状况的详细信息。
+
+    ContainerStatuses 保存容器的可能状态。只能设置其中一个成员。如果所有成员都未设置，
+    则默认为 ContainerStateWaiting。
+
+    <!--
+    - **containerStatuses.state.running** (ContainerStateRunning)
+
+      Details about a running container
+
+      <a name="ContainerStateRunning"></a>
+      *ContainerStateRunning is a running state of a container.*
+    -->
+
+    - **containerStatuses.state.running** （ContainerStateRunning）
+
+      有关正在运行的容器的详细信息。
+
+      **ContainerStateRunning 是容器的运行状态。**
+
+      <!--
+      - **containerStatuses.state.running.startedAt** (Time)
+
+        Time at which the container was last (re-)started
+
+        <a name="Time"></a>
+        *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+      -->
+
+      - **containerStatuses.state.running.startedAt** （Time）
+
+        容器上次（重新）启动的时间。
+
+        Time 是 `time.Time` 的包装器，支持正确编组为 YAML 和 JSON。
+        time 包所提供的许多工厂方法都有包装器。
+
+    <!--
+    - **containerStatuses.state.terminated** (ContainerStateTerminated)
+
+      Details about a terminated container
+
+      <a name="ContainerStateTerminated"></a>
+      *ContainerStateTerminated is a terminated state of a container.*
+    -->
+
+    - **containerStatuses.state.terminated** （ContainerStateTerminated）
+
+      有关已终止容器的详细信息。
+
+      **ContainerStateTerminated 是容器的终止状态。**
+
+      <!--
+      - **containerStatuses.state.terminated.containerID** (string)
+
+        Container's ID in the format '\<type>://\<container_id>'
+
+      - **containerStatuses.state.terminated.exitCode** (int32), required
+
+        Exit status from the last termination of the container
+      -->
+
+      - **containerStatuses.state.terminated.containerID** （string）
+
+        容器的 ID，格式为 `"<类型>://<container_id>"`。
+
+      - **containerStatuses.state.terminated.exitCode** （int32），必需
+
+        容器上次终止的退出状态码。
+
+      <!--
+      - **containerStatuses.state.terminated.startedAt** (Time)
+
+        Time at which previous execution of the container started
+
+        <a name="Time"></a>
+        *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+      -->
+
+      - **containerStatuses.state.terminated.startedAt** （Time）
+
+        容器上次执行的开始时间。
+
+        Time 是 `time.Time` 的包装器，支持正确编组为 YAML 和 JSON。
+        time 包所提供的许多工厂方法都有包装器。
+
+      <!--
+      - **containerStatuses.state.terminated.finishat** （Time）
+
+        容器上次终止的时间。
+
+        Time 是 `time.Time` 的包装器，支持正确编组为 YAML 和 JSON。
+        time 包所提供的许多工厂方法都有包装器。
+
+      <!--
+      - **containerStatuses.state.terminated.message** (string)
+
+        Message regarding the last termination of the container
+
+      - **containerStatuses.state.terminated.reason** (string)
+
+        (brief) reason from the last termination of the container
+
+      - **containerStatuses.state.terminated.signal** (int32)
+
+        Signal from the last termination of the container
+      -->
+
+      - **containerStatuses.state.terminated.message** （string）
+
+        有关容器上次终止的消息。
+
+      - **containerStatuses.state.terminated.reason** （string）
+
+        容器最后一次终止的（简要）原因
+
+      - **containerStatuses.state.terminated.signal** （int32）
+
+        容器最后一次终止的信号。
+
+    <!--
+    - **containerStatuses.state.waiting** (ContainerStateWaiting)
+
+      Details about a waiting container
+
+      <a name="ContainerStateWaiting"></a>
+      *ContainerStateWaiting is a waiting state of a container.*
+    -->
+
+    - **containerStatuses.state.waiting** （ContainerStateWaiting）
+
+      有关等待容器的详细信息。
+
+      **ContainerStateWaiting 是容器的等待状态。**
+
+      <!--
+      - **containerStatuses.state.waiting.message** (string)
+
+        Message regarding why the container is not yet running.
+
+      - **containerStatuses.state.waiting.reason** (string)
+
+        (brief) reason the container is not yet running.
+      -->
+
+      - **containerStatuses.state.waiting.message** （string）
+
+        关于容器尚未运行的原因的消息。 
+
+      - **containerStatuses.state.waiting.reason** （string）
+
+        容器尚未运行的（简要）原因。 
+
+  <!--
+  - **containerStatuses.lastState** (ContainerState)
+
+    Details about the container's last termination condition.
+
+    <a name="ContainerState"></a>
+    *ContainerState holds a possible state of container. Only one of its members may be specified. If none of them is specified, the default one is ContainerStateWaiting.*
+  -->
+
+  - **containerStatuses.lastState** （ContainerState）
+
+    有关容器上次终止状况的详细信息。
+
+    容器状态保存容器的可能状态。只能设置一个成员。如果所有成员都未设置，
+    则默认为 ContainerStateWaiting。
+
+    <!--
+    - **containerStatuses.lastState.running** (ContainerStateRunning)
+
+      Details about a running container
+
+      <a name="ContainerStateRunning"></a>
+      *ContainerStateRunning is a running state of a container.*
+    -->
+
+    - **containerStatuses.lastState.running** （ContainerStateRunning）
+
+      有关正在运行的容器的详细信息。
+
+      **ContainerStateRunning 是容器的运行状态。**
+
+      <!--
+      - **containerStatuses.lastState.running.startedAt** (Time)
+
+        Time at which the container was last (re-)started
+
+        <a name="Time"></a>
+        *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+      -->
+
+      - **containerStatuses.lastState.running.startedAt** （Time）
+
+        容器上次（重新）启动的时间。
+
+        Time 是 `time.Time` 的包装器，支持正确编组为 YAML 和 JSON。
+        time 包所提供的许多工厂方法都有包装器。
+
+    <!--
+    - **containerStatuses.lastState.terminated** (ContainerStateTerminated)
+
+      Details about a terminated container
+
+      <a name="ContainerStateTerminated"></a>
+      *ContainerStateTerminated is a terminated state of a container.*
+    -->
+
+    - **containerStatuses.lastState.terminated** （ContainerStateTerminated）
+
+      有关已终止容器的详细信息。
+
+      **ContainerStateTerminated 是容器的终止状态。**
+
+      <!--
+      - **containerStatuses.lastState.terminated.containerID** (string)
+
+        Container's ID in the format '\<type>://\<container_id>'
+
+      - **containerStatuses.lastState.terminated.exitCode** (int32), required
+
+        Exit status from the last termination of the container
+      -->
+
+      - **containerStatuses.lastState.terminated.containerID** （string）
+
+        格式为 `<type>://<container_id>` 的容器 ID。
+
+      - **containerStatuses.lastState.terminated.exitCode** (int32)，必需
+
+        容器最后终止的退出状态码。
+
+      <!--
+      - **containerStatuses.lastState.terminated.startedAt** (Time)
+
+        Time at which previous execution of the container started
+
+        <a name="Time"></a>
+        *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+      -->
+
+      - **containerStatuses.lastState.terminated.startedAt** （Time）
+
+        容器上次执行时的开始时间。
+
+        Time 是 `time.Time` 的包装器，支持正确编组为 YAML 和 JSON。
+        time 包所提供的许多工厂方法都有包装器。
+
+      <!--
+      - **containerStatuses.lastState.terminated.finishedAt** (Time)
+
+        Time at which the container last terminated
+
+        <a name="Time"></a>
+        *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+      -->
+
+      - **containerStatuses.lastState.terminated.finishedAt** （Time）
+
+        容器上次终止的时间。
+
+        Time 是 `time.Time` 的包装器，支持正确编组为 YAML 和 JSON。
+        time 包所提供的许多工厂方法都有包装器。
+
+      <!--
+      - **containerStatuses.lastState.terminated.message** (string)
+
+        Message regarding the last termination of the container
+
+      - **containerStatuses.lastState.terminated.reason** (string)
+
+        (brief) reason from the last termination of the container
+
+      - **containerStatuses.lastState.terminated.signal** (int32)
+
+        Signal from the last termination of the container
+      -->
+
+      - **containerStatuses.lastState.terminated.message** （string）
+
+        关于容器上次终止的消息。
+
+      - **containerStatuses.lastState.terminated.reason** （string）
+
+        容器上次终止的（简要）原因
+
+      - **containerStatuses.lastState.terminated.signal** （int32）
+
+        容器上次终止的信号。
+
+    <!--
+    - **containerStatuses.lastState.waiting** (ContainerStateWaiting)
+
+      Details about a waiting container
+
+      <a name="ContainerStateWaiting"></a>
+      *ContainerStateWaiting is a waiting state of a container.*
+    -->
+
+    - **containerStatuses.lastState.waiting** （ContainerStateWaiting）
+
+      有关等待容器的详细信息。
+
+      **ContainerStateWaiting 是容器的等待状态。**
+
+      <!--
+      - **containerStatuses.lastState.waiting.message** (string)
+
+        Message regarding why the container is not yet running.
+
+      - **containerStatuses.lastState.waiting.reason** (string)
+
+        (brief) reason the container is not yet running.
+      -->
+
+      - **containerStatuses.lastState.waiting.message** （string）
+
+        关于容器尚未运行的原因的消息。 
+
+      - **containerStatuses.lastState.waiting.reason** （string）
+
+        容器尚未运行的（简要）原因。
+
+  <!--
+  - **containerStatuses.ready** (boolean), required
+
+    Specifies whether the container has passed its readiness probe.
+
+  - **containerStatuses.restartCount** (int32), required
+
+    The number of times the container has been restarted.
+  -->
+
+  - **containerStatuses.ready** (boolean)，必需
+
+    指定容器是否已通过其就绪态探针。 
+
+  - **containerStatuses.restartCount** (int32)，必需
+
+    容器重启的次数。 
+
+  <!--
+  - **containerStatuses.started** (boolean)
+
+    Specifies whether the container has passed its startup probe. Initialized as false, becomes true after startupProbe is considered successful. Resets to false when the container is restarted, or if kubelet loses state temporarily. Is always true when no startupProbe is defined.
+  -->
+
+  - **containerStatuses.started** （boolean）
+
+    指定容器是否已通过其启动探针探测。初始化为 false，startupProbe 被认为成功后变为 true。 
+    当容器重新启动或 kubelet 暂时丢失状态时重置为 false。 
+    未定义启动探针时始终为 true。 
+
+<!--
+- **ephemeralContainerStatuses** ([]ContainerStatus)
+
+  Status for any ephemeral containers that have run in this pod. This field is beta-level and available on clusters that haven't disabled the EphemeralContainers feature gate.
+
+  <a name="ContainerStatus"></a>
+  *ContainerStatus contains details for the current status of this container.*
+-->
+- **ephemeralContainerStatuses** （[]ContainerStatus）
+
+  已在此 Pod 中运行的任何临时容器的状态。 
+  此字段是 Beta 级别的，可在尚未禁用 `EphemeralContainers` 特性门控的集群上使用。 
+
+  **ContainerStatus 包含此容器当前状态的详细信息。**
+
+  <!--
+  - **ephemeralContainerStatuses.name** (string), required
+
+    This must be a DNS_LABEL. Each container in a pod must have a unique name. Cannot be updated.
+
+  - **ephemeralContainerStatuses.image** (string), required
+
+    The image the container is running. More info: https://kubernetes.io/docs/concepts/containers/images.
+  -->
+
+  - **ephemeralContainerStatuses.name** (string)，必需
+
+    字段值必须是 DNS_LABEL。Pod 中的每个容器都必须具有唯一的名称。无法更新。 
+
+  - **ephemeralContainerStatuses.image** (string)，必需
+
+    容器正在运行的镜像。更多信息：
+    https://kubernetes.io/zh-cn/docs/concepts/containers/images。
+
+  <!--
+  - **ephemeralContainerStatuses.imageID** (string), required
+
+    ImageID of the container's image.
+
+  - **ephemeralContainerStatuses.containerID** (string)
+
+    Container's ID in the format '\<type>://\<container_id>'.
+  -->
+
+  - **ephemeralContainerStatuses.imageID** (string)，必需
+
+    容器镜像的镜像 ID。 
+
+  - **ephemeralContainerStatuses.containerID** （string）
+
+    格式为 `<type>://<container_id>` 的容器 ID。 
+
+  <!--
+  - **ephemeralContainerStatuses.state** (ContainerState)
+
+    Details about the container's current condition.
+
+    <a name="ContainerState"></a>
+    *ContainerState holds a possible state of container. Only one of its members may be specified. If none of them is specified, the default one is ContainerStateWaiting.*
+-->
+  - **ephemeralContainerStatuses.state** （ContainerState）
+
+    有关容器当前状况的详细信息。 
+
+    ContainerState 保存容器的可能状态。只能设置其中一个成员。如果所有成员都未设置，
+    则默认为 ContainerStateWaiting。
+
+    <!--
+    - **ephemeralContainerStatuses.state.running** (ContainerStateRunning)
+
+      Details about a running container
+
+      <a name="ContainerStateRunning"></a>
+      *ContainerStateRunning is a running state of a container.*
+    -->
+
+    - **ephemeralContainerStatuses.state.running** （ContainerStateRunning）
+
+      有关正在运行的容器的详细信息
+
+      **ContainerStateRunning 是容器的运行状态。**
+
+      <!--
+      - **ephemeralContainerStatuses.state.running.startedAt** (Time)
+
+        Time at which the container was last (re-)started
+
+        <a name="Time"></a>
+        *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+      -->
+
+      - **ephemeralContainerStatuses.state.running.startedAt** （Time）
+
+        容器上次（重新）启动的时间。
+
+        Time 是 `time.Time` 的包装器，支持正确编组为 YAML 和 JSON。
+        time 包所提供的许多工厂方法都有包装器。
+
+    <!--
+    - **ephemeralContainerStatuses.state.terminated** (ContainerStateTerminated)
+
+      Details about a terminated container
+
+      <a name="ContainerStateTerminated"></a>
+      *ContainerStateTerminated is a terminated state of a container.*
+    -->
+
+    - **ephemeralContainerStatuses.state.terminated** （ContainerStateTerminated）
+
+      有关已终止容器的详细信息。
+
+      **ContainerStateTerminated 是容器的终止状态。**
+
+      <!--
+      - **ephemeralContainerStatuses.state.terminated.containerID** (string)
+
+        Container's ID in the format '\<type>://\<container_id>'
+
+      - **ephemeralContainerStatuses.state.terminated.exitCode** (int32), required
+
+        Exit status from the last termination of the container
+      -->
+
+      - **ephemeralContainerStatuses.state.terminated.containerID** （string）
+
+        格式为 `<type>://<container_id>` 的容器 ID。
+
+      - **ephemeralContainerStatuses.state.terminated.exitCode** (int32)，必需
+
+        容器上次终止的退出状态码。
+
+      <!--
+      - **ephemeralContainerStatuses.state.terminated.startedAt** (Time)
+
+        Time at which previous execution of the container started
+
+        <a name="Time"></a>
+        *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+      -->
+
+      - **ephemeralContainerStatuses.state.terminated.startedAt** （Time）
+
+        容器上次执行的开始时间。
+
+        Time 是 `time.Time` 的包装器，支持正确编组为 YAML 和 JSON。
+        time 包所提供的许多工厂方法都有包装器。
+
+      <!--
+      - **ephemeralContainerStatuses.state.terminated.finishedAt** (Time)
+
+        Time at which the container last terminated
+
+        <a name="Time"></a>
+        *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+      -->
+
+      - **ephemeralContainerStatuses.state.terminated.finishat** （Time）
+
+        容器上次终止的时间。
+
+        Time 是 `time.Time` 的包装器，支持正确编组为 YAML 和 JSON。
+        time 包所提供的许多工厂方法都有包装器。
+
+      <!--
+      - **ephemeralContainerStatuses.state.terminated.message** (string)
+
+        Message regarding the last termination of the container
+
+      - **ephemeralContainerStatuses.state.terminated.reason** (string)
+
+        (brief) reason from the last termination of the container
+
+      - **ephemeralContainerStatuses.state.terminated.signal** (int32)
+
+        Signal from the last termination of the container
+      -->
+
+      - **ephemeralContainerStatuses.state.terminated.message** （string）
+
+        关于容器上次终止的消息。
+
+      - **ephemeralContainerStatuses.state.terminated.reason** （string）
+
+        容器上次终止的（简要）原因
+
+      - **ephemeralContainerStatuses.state.terminated.signal** （int32）
+
+        容器上次终止的信号
+
+    <!--
+    - **ephemeralContainerStatuses.state.waiting** (ContainerStateWaiting)
+
+      Details about a waiting container
+
+      <a name="ContainerStateWaiting"></a>
+      *ContainerStateWaiting is a waiting state of a container.*
+    -->
+
+    - **ephemeralContainerStatuses.state.waiting** （ContainerStateWaiting）
+
+      有关等待容器的详细信息。
+
+      **ContainerStateWaiting 是容器的等待状态。**
+
+      <!--
+      - **ephemeralContainerStatuses.state.waiting.message** (string)
+
+        Message regarding why the container is not yet running.
+
+      - **ephemeralContainerStatuses.state.waiting.reason** (string)
+
+        (brief) reason the container is not yet running.
+      -->
+
+      - **ephemeralContainerStatuses.state.waiting.message** （string）
+
+        关于容器尚未运行的原因的消息。 
+
+      - **ephemeralContainerStatuses.state.waiting.reason** （string）
+
+        容器尚未运行的（简要）原因。 
+
+  <!--
+  - **ephemeralContainerStatuses.lastState** (ContainerState)
+
+    Details about the container's last termination condition.
+
+    <a name="ContainerState"></a>
+    *ContainerState holds a possible state of container. Only one of its members may be specified. If none of them is specified, the default one is ContainerStateWaiting.*
+-->
+  - **ephemeralContainerStatuses.lastState** （ContainerState）
+
+    有关容器的上次终止状况的详细信息。 
+
+    ContainerState 保存容器的可能状态。只能设置其中一个成员。如果所有成员都未设置，
+    则默认为 `ContainerStateWaiting`。
+
+    <!--
+    - **ephemeralContainerStatuses.lastState.running** (ContainerStateRunning)
+
+      Details about a running container
+
+      <a name="ContainerStateRunning"></a>
+      *ContainerStateRunning is a running state of a container.*
+    -->
+
+    - **ephemeralContainerStatuses.lastState.running** （ContainerStateRunning）
+
+      有关正在运行的容器的详细信息。
+
+      **ContainerStateRunning 是容器的运行状态。**
+
+      <!--
+      - **ephemeralContainerStatuses.lastState.running.startedAt** (Time)
+
+        Time at which the container was last (re-)started
+
+        <a name="Time"></a>
+        *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+      -->
+
+      - **ephemeralContainerStatuses.lastState.running.startedAt** （Time）
+
+        容器上次（重新）启动的时间。
+
+        Time 是 `time.Time` 的包装器，支持正确编组为 YAML 和 JSON。
+        time 包所提供的许多工厂方法都有包装器。
+
+    <!--
+    - **ephemeralContainerStatuses.lastState.terminated** (ContainerStateTerminated)
+
+      Details about a terminated container
+
+      <a name="ContainerStateTerminated"></a>
+      *ContainerStateTerminated is a terminated state of a container.*
+    -->
+
+    - **ephemeralContainerStatuses.lastState.terminated** （ContainerStateTerminated）
+
+      有关已终止容器的详细信息。
+
+      **`ContainerStateTerminated` 是容器的终止状态。**
+
+      <!--
+      - **ephemeralContainerStatuses.lastState.terminated.containerID** (string)
+
+        Container's ID in the format '\<type>://\<container_id>'
+
+      - **ephemeralContainerStatuses.lastState.terminated.exitCode** (int32), required
+
+        Exit status from the last termination of the container
+      -->
+
+      - **ephemeralContainerStatuses.lastState.terminated.containerID** （string）
+
+        格式为 `<type>://<container_id>` 的容器 ID。
+
+      - **ephemeralContainerStatuses.lastState.terminated.exitCode** (int32)，必需
+
+        容器上次终止时的退出状态码。
+
+      <!--
+      - **ephemeralContainerStatuses.state.terminated.startedAt** (Time)
+
+        Time at which previous execution of the container started
+
+        <a name="Time"></a>
+        *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+      -->
+
+      - **ephemeralContainerStatuses.lastState.terminated.startedAt** （Time）
+
+        容器上次执行的开始时间。
+
+        Time 是 `time.Time` 的包装器，支持正确编组为 YAML 和 JSON。
+        time 包所提供的许多工厂方法都有包装器。
+
+      <!--
+      - **ephemeralContainerStatuses.state.terminated.finishedAt** (Time)
+
+        Time at which the container last terminated
+
+        <a name="Time"></a>
+        *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+      -->
+
+      - **ephemeralContainerStatuses.lastState.terminated.finishedAt** （Time）
+
+        容器上次终止的时间。
+
+        Time 是 `time.Time` 的包装器，支持正确编组为 YAML 和 JSON。
+        time 包所提供的许多工厂方法都有包装器。
+
+      <!--
+      - **ephemeralContainerStatuses.state.terminated.message** (string)
+
+        Message regarding the last termination of the container
+
+      - **ephemeralContainerStatuses.state.terminated.reason** (string)
+
+        (brief) reason from the last termination of the container
+
+      - **ephemeralContainerStatuses.state.terminated.signal** (int32)
+
+        Signal from the last termination of the container
+      -->
+
+      - **ephemeralContainerStatuses.lastState.terminated.message** （string）
+
+        关于容器上次终止的消息。
+
+      - **ephemeralContainerStatuses.lastState.terminated.reason** （string）
+
+        容器上次终止的（简要）原因。
+
+      - **ephemeralContainerStatuses.lastState.terminated.signal** （int32）
+
+        容器上次终止的信号。
+
+    <!--
+    - **ephemeralContainerStatuses.state.waiting** (ContainerStateWaiting)
+
+      Details about a waiting container
+
+      <a name="ContainerStateWaiting"></a>
+      *ContainerStateWaiting is a waiting state of a container.*
+    -->
+
+    - **ephemeralContainerStatuses.lastState.waiting** （ContainerStateWaiting）
+
+      有关等待状态容器的详细信息。
+
+      **ContainerStateWaiting 是容器的等待状态。**
+
+      <!--
+      - **ephemeralContainerStatuses.state.waiting.message** (string)
+
+        Message regarding why the container is not yet running.
+
+      - **ephemeralContainerStatuses.state.waiting.reason** (string)
+
+        (brief) reason the container is not yet running.
+      -->
+
+      - **ephemeralContainerStatuses.lastState.waiting.message** （string）
+
+        关于容器尚未运行的原因的消息。 
+
+      - **ephemeralContainerStatuses.lastState.waiting.reason** （string）
+
+        容器尚未运行的（简要）原因。 
+
+  <!--
+  - **ephemeralContainerStatuses.ready** (boolean), required
+
+    Specifies whether the container has passed its readiness probe.
+
+  - **ephemeralContainerStatuses.restartCount** (int32), required
+
+    The number of times the container has been restarted.
+  -->
+
+  - **ephemeralContainerStatuses.ready** （boolean），必需
+
+    指定容器是否已通过其就绪态探测。
+
+  - **ephemeralContainerStatuses.restartCount** （int32），必需
+
+    容器重新启动的次数。
+
+  <!--
+  - **ephemeralContainerStatuses.started** (boolean)
+
+    Specifies whether the container has passed its startup probe. Initialized as false, becomes true after startupProbe is considered successful. Resets to false when the container is restarted, or if kubelet loses state temporarily. Is always true when no startupProbe is defined.
+  -->
+
+  - **ephemeralContainerStatuses.started** （boolean）
+
+    指定容器是否已通过其启动探测。初始化为 false，在 startProbe 成功之后变为 true。
+    在容器重新启动时或者 kubelet 暂时失去状态时重置为 false。
+    在未定义 startupProbe 时始终为 true。
+
+## PodList {#PodList}
+
+<!--
+PodList 是 Pod 的列表。
+-->
+PodList 是 Pod 的列表。 
+
+<hr>
+
+<!--
+- **items** ([]<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>), required
+
+  List of pods. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md
+-->
+- **items** （[]<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>），必需
+
+  Pod 列表。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md
+
+<!--
+- **apiVersion** (string)
+
+  APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
+-->
+- **apiVersion** （string）
+
+  apiVersion 定义对象表示的版本化模式。服务器应将已识别的模式转换为最新的内部值，
+  并可能拒绝无法识别的值。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
+
+<!--
+- **kind** (string)
+
+  Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+-->
+- **kind**（string）
+
+  kind 是一个字符串值，表示此对象表示的 REST 资源。服务器可以从客户端提交请求的端点推断出资源类别。 
+  无法更新。采用驼峰式命名。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+-->
+- **metadata** （<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>）
+
+  标准的列表元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+<!--
+## 操作 {#Operations}
+-->
+## 操作 {#Operations}
+
+<hr>
+
+<!--
+### `get` read the specified Pod
+-->
+### `get` 读取指定的 Pod
+
+<!--
+#### HTTP Request
+-->
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/pods/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Pod
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **name** (**路径参数**): string，必需
+
+  Pod 的名称
+
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>): OK
+
+401: Unauthorized
+
+<!--
+### `get` read ephemeralcontainers of the specified Pod
+-->
+### `get` 读取指定 Pod 的 ephemeralcontainers
+
+<!--
+#### HTTP Request
+-->
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/pods/{name}/ephemeralcontainers
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Pod
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **name** (**路径参数**): string，必需
+
+  Pod 的名称
+
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>): OK
+
+401: Unauthorized
+
+<!--
+### `get` read log of the specified Pod
+-->
+
+### `get` 读取指定 Pod 的日志
+
+<!--
+#### HTTP Request
+-->
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/pods/{name}/log
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Pod
+
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **container** (*in query*): string
+
+  The container for which to stream logs. Defaults to only container if there is one container in the pod.
+-->
+- **name** (**路径参数**): string，必需
+
+  Pod 的名称。
+
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **container** (**查询参数**): string
+
+  为其流式传输日志的容器。如果 Pod 中有一个容器，则默认为仅容器。
+
+<!--
+- **follow** (*in query*): boolean
+
+  Follow the log stream of the pod. Defaults to false.
+
+
+- **insecureSkipTLSVerifyBackend** (*in query*): boolean
+
+  insecureSkipTLSVerifyBackend indicates that the apiserver should not confirm the validity of the serving certificate of the backend it is connecting to.  This will make the HTTPS connection between the apiserver and the backend insecure. This means the apiserver cannot verify the log data it is receiving came from the real kubelet.  If the kubelet is configured to verify the apiserver's TLS credentials, it does not mean the connection to the real kubelet is vulnerable to a man in the middle attack (e.g. an attacker could not intercept the actual log data coming from the real kubelet).
+-->
+- **follow** (**查询参数**)：boolean
+
+  跟踪 Pod 的日志流。默认为 false。
+
+- **insecureSkipTLSVerifyBackend** (**查询参数**)：boolean
+
+  `insecureSkipTLSVerifyBackend` 表示 API 服务器不应确认它所连接的后端的服务证书的有效性。
+  这将使 API 服务器和后端之间的 HTTPS 连接不安全。
+  这意味着 API 服务器无法验证它接收到的日志数据是否来自真正的 kubelet。
+  如果 kubelet 配置为验证 API 服务器的 TLS 凭据，这并不意味着与真实 kubelet
+  的连接容易受到中间人攻击（例如，攻击者无法拦截来自真实 kubelet 的实际日志数据）。
+
+<!--
+- **limitBytes** (*in query*): integer
+
+  If set, the number of bytes to read from the server before terminating the log output. This may not display a complete final line of logging, and may return slightly more or slightly less than the specified limit.
+
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **limitBytes** (**查询参数**): integer
+
+  如果设置，则表示在终止日志输出之前从服务器读取的字节数。
+  设置此参数可能导致无法显示完整的最后一行日志记录，并且可能返回略多于或略小于指定限制。
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **previous** (*in query*): boolean
+
+  Return previous terminated container logs. Defaults to false.
+
+- **sinceSeconds** (*in query*): integer
+
+  A relative time in seconds before the current time from which to show logs. If this value precedes the time a pod was started, only logs since the pod start will be returned. If this value is in the future, no logs will be returned. Only one of sinceSeconds or sinceTime may be specified.
+-->
+- **previous** (**查询参数**)：boolean
+
+  返回之前终止了的容器的日志。默认为 false。
+
+- **sinceSeconds** (**查询参数**): integer
+
+  显示日志的当前时间之前的相对时间（以秒为单位）。如果此值早于 Pod 启动时间，
+  则仅返回自 Pod 启动以来的日志。如果此值是将来的值，则不会返回任何日志。
+  只能指定 `sinceSeconds` 或 `sinceTime` 之一。
+
+<!--
+- **tailLines** (*in query*): integer
+
+  If set, the number of lines from the end of the logs to show. If not specified, logs are shown from the creation of the container or sinceSeconds or sinceTime
+
+- **timestamps** (*in query*): boolean
+
+  If true, add an RFC3339 or RFC3339Nano timestamp at the beginning of every line of log output. Defaults to false.
+-->
+- **tailLines** (**查询参数**): integer
+
+  如果设置，则从日志末尾开始显示的行数。如果未指定，则从容器创建或 `sinceSeconds` 或
+  `sinceTime` 时刻显示日志。
+
+- **timestamps** (**查询参数**)：boolean
+
+  如果为 true，则在每行日志输出的开头添加 RFC3339 或 RFC3339Nano 时间戳。默认为 false。
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (string): OK
+
+401: Unauthorized
+
+<!--
+### `get` read status of the specified Pod
+-->
+### `get` 读取指定 Pod 的状态
+
+<!--
+#### HTTP Request
+-->
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/pods/{name}/status
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Pod
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **name** (**路径参数**): string，必需
+
+  Pod 的名称
+
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind Pod
+-->
+### `list` 列出或观察 Pod 种类的对象
+
+<!--
+#### HTTP Request
+-->
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/pods
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+-->
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **allowWatchBookmarks** (**查询参数**)：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+-->
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**)：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+
+200 (<a href="{{< ref "../workload-resources/pod-v1#PodList" >}}">PodList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind Pod
+-->
+### `list` 列出或观察 Pod 种类的对象
+
+<!--
+#### HTTP Request
+-->
+#### HTTP 请求
+
+GET /api/v1/pods
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+-->
+- **allowWatchBookmarks** (**查询参数**)：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+-->
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+
+- **timeoutSeconds** (**查询参数**)：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**)：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/pod-v1#PodList" >}}">PodList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a Pod
+-->
+### `create` 创建一个 Pod
+<!--
+#### HTTP Request
+-->
+#### HTTP 请求
+
+POST /api/v1/namespaces/{namespace}/pods
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>, required
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**：<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>，必需
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>): Created
+
+202 (<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified Pod
+-->
+### `update` 替换指定的 Pod
+
+<!--
+#### HTTP Request
+-->
+#### HTTP 请求
+
+PUT /api/v1/namespaces/{namespace}/pods/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Pod
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>, required
+-->
+- **name** (**路径参数**): string，必需
+
+  Pod 的名称。
+
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**：<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>): Created
+
+401: Unauthorized
+
+<!--
+### `update` replace ephemeralcontainers of the specified Pod
+-->
+### `update` 替换指定 Pod 的 ephemeralcontainers
+
+<!--
+#### HTTP Request
+-->
+#### HTTP 请求
+
+PUT /api/v1/namespaces/{namespace}/pods/{name}/ephemeralcontainers
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Pod
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>, required
+-->
+- **name** (**路径参数**): string，必需
+
+  Pod 的名称
+
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**：<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>): Created
+
+401: Unauthorized
+
+<!--
+### `update` replace status of the specified Pod
+-->
+### `update` 替换指定 Pod 的状态
+
+<!--
+#### HTTP Request
+-->
+#### HTTP 请求
+
+PUT /api/v1/namespaces/{namespace}/pods/{name}/status
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Pod
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>, required
+-->
+- **name** (**路径参数**): string，必需
+
+  Pod 的名称
+
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**：<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>，必需
+
+<!--  
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified Pod
+-->
+### `patch` 部分更新指定 Pod
+
+<!--
+#### HTTP Request
+-->
+#### HTTP 请求
+
+PATCH /api/v1/namespaces/{namespace}/pods/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Pod
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+- **name** (**路径参数**): string，必需
+
+  Pod 的名称
+
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**：<a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**)：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update ephemeralcontainers of the specified Pod
+-->
+### `patch` 部分更新指定 Pod 的 ephemeralcontainers
+
+<!--
+#### HTTP Request
+-->
+#### HTTP 请求
+
+PATCH /api/v1/namespaces/{namespace}/pods/{name}/ephemeralcontainers
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Pod
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+- **name** (**路径参数**): string，必需
+
+  Pod 的名称。
+
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**：<a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **dryRun** (**查询参数**): string
+
+   <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**)：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update status of the specified Pod
+-->
+### `patch` 部分更新指定 Pod 的状态
+
+<!--
+#### HTTP Request
+-->
+#### HTTP 请求
+
+PATCH /api/v1/namespaces/{namespace}/pods/{name}/status
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Pod
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+- **name** (**路径参数**): string，必需
+
+  Pod 的名称。
+
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**：<a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**)：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**)：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a Pod
+-->
+### `delete` 删除一个 Pod
+
+<!--
+#### HTTP Request
+-->
+#### HTTP 请求
+
+DELETE /api/v1/namespaces/{namespace}/pods/{name}
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the Pod
+
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+-->
+- **name** (**路径参数**): string，必需
+
+  Pod 的名称。
+
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**：<a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>): OK
+
+202 (<a href="{{< ref "../workload-resources/pod-v1#Pod" >}}">Pod</a>): Accepted
+
+401: Unauthorize
+
+<!--
+### `deletecollection` delete collection of Pod
+-->
+### `deletecollection` 删除 Pod 的集合
+
+<!--
+#### HTTP Request
+-->
+#### HTTP 请求
+
+DELETE /api/v1/namespaces/{namespace}/pods
+
+<!--
+#### Parameters
+-->
+#### 参数
+
+<!--
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+-->
+- **namespace** (**路径参数**): string，必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**：<a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+-->
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+-->
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+-->
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+-->
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+
diff --git a/content/zh-cn/docs/reference/kubernetes-api/workload-resources/priority-class-v1.md b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/priority-class-v1.md
new file mode 100644
index 0000000000..dd9fd11373
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/priority-class-v1.md
@@ -0,0 +1,810 @@
+---
+api_metadata:
+  apiVersion: "scheduling.k8s.io/v1"
+  import: "k8s.io/api/scheduling/v1"
+  kind: "PriorityClass"
+content_type: "api_reference"
+description: "PriorityClass 定义了从优先级类名到优先级数值的映射。"
+title: "PriorityClass"
+weight: 14
+auto_generated: false
+---
+
+<!--
+api_metadata:
+  apiVersion: "scheduling.k8s.io/v1"
+  import: "k8s.io/api/scheduling/v1"
+  kind: "PriorityClass"
+content_type: "api_reference"
+description: "PriorityClass defines mapping from a priority class name to the priority integer value."
+title: "PriorityClass"
+weight: 14
+auto_generated: true
+-->
+
+
+`apiVersion: scheduling.k8s.io/v1`
+
+`import "k8s.io/api/scheduling/v1"`
+
+<!--
+## PriorityClass {#PriorityClass}
+-->
+## PriorityClass {#PriorityClass}
+
+<!-- 
+PriorityClass defines mapping from a priority class name to the priority integer value. The value can be any valid integer.
+
+<hr>
+ -->
+PriorityClass 定义了从优先级类名到优先级数值的映射。
+该值可以是任何有效的整数。
+
+<hr>
+
+<!--
+ - **apiVersion**: scheduling.k8s.io/v1
+-->
+- **apiVersion**: scheduling.k8s.io/v1
+
+<!-- 
+- **kind**: PriorityClass 
+-->
+- **kind**: PriorityClass
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  标准对象的元数据。
+  更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+<!--
+- **value** (int32), required
+
+  The value of this priority class. This is the actual priority that pods receive when they have the name of this class in their pod spec.
+-->
+- **value** （int32），必需
+
+  此优先级的值。这是 Pod 在其 Pod 规约中有此类名称时收到的实际优先级。
+
+<!--
+- **description** (string)
+
+  description is an arbitrary string that usually provides guidelines on when this priority class should be used.
+-->
+- **description** (string)
+
+  description 是一个任意字符串，通常提供有关何时应使用此优先级的指南。
+
+<!--
+- **globalDefault** (boolean)
+
+  globalDefault specifies whether this PriorityClass should be considered as the default priority for pods that do not have any priority class. Only one PriorityClass can be marked as `globalDefault`. However, if more than one PriorityClasses exists with their `globalDefault` field set to true, the smallest value of such global default PriorityClasses will be used as the default priority.
+-->
+- **globalDefault** (boolean)
+
+  globalDefault 指定是否应将此 PriorityClass 视为没有任何优先级类的 Pod 的默认优先级。
+  只有一个 PriorityClass 可以标记为 `globalDefault`。
+  但是，如果存在多个 PriorityClasses 且其 `globalDefault` 字段设置为 true，
+  则将使用此类全局默认 PriorityClasses 的最小值作为默认优先级。
+  
+<!--
+- **preemptionPolicy** (string)
+
+  PreemptionPolicy is the Policy for preempting pods with lower priority. One of Never, PreemptLowerPriority. Defaults to PreemptLowerPriority if unset.
+-->  
+- **preemptionPolicy** (string)
+
+  PreemptionPolicy 是抢占优先级较低的 Pod 的策略。
+  可选值：Never、PreemptLowerPriority。
+  如果未设置，则默认为 PreemptLowerPriority。
+
+<!--
+## PriorityClassList {#PriorityClassList}
+
+PriorityClassList is a collection of priority classes.
+
+<hr>
+-->
+## PriorityClassList {#PriorityClassList}
+
+PriorityClassList 是优先级类的集合。
+
+<hr>
+
+<!-- 
+- **apiVersion**: scheduling.k8s.io/v1 
+-->
+- **apiVersion**: scheduling.k8s.io/v1
+
+<!-- 
+- **kind**: PriorityClassList 
+-->
+- **kind**: PriorityClassList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  标准列表元数据。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+<!--
+- **items** ([]<a href="{{< ref "../workload-resources/priority-class-v1#PriorityClass" >}}">PriorityClass</a>), required
+
+  items is the list of PriorityClasses
+-->
+- **items** ([]<a href="{{< ref "../workload-resources/priority-class-v1#PriorityClass" >}}">PriorityClass</a>)，必需
+
+  items 是 PriorityClasses 的列表
+
+<!--
+## Operations {#Operations}
+
+<hr>
+-->
+## 操作 {#Operations}
+
+<hr>
+
+<!-- 
+### `get` read the specified PriorityClass 
+-->
+### `get` 读取特定的 PriorityClass
+
+<!-- 
+#### HTTP Request
+
+GET /apis/scheduling.k8s.io/v1/priorityclasses/{name}
+ -->
+#### HTTP 请求
+
+GET /apis/scheduling.k8s.io/v1/priorityclasses/{name}
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the PriorityClass
+-->
+- **name** （**路径参数**）: string，必需
+
+  PriorityClass 名称
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../workload-resources/priority-class-v1#PriorityClass" >}}">PriorityClass</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/priority-class-v1#PriorityClass" >}}">PriorityClass</a>): OK
+
+401: Unauthorized
+
+<!-- 
+### `list` list or watch objects of kind PriorityClass
+ -->
+### `list` 列出或观察 PriorityClass类的对象
+
+<!-- 
+#### HTTP Request
+
+GET /apis/scheduling.k8s.io/v1/priorityclasses
+-->
+#### HTTP 请求
+
+GET /apis/scheduling.k8s.io/v1/priorityclasses
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!--
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+-->
+- **allowWatchBookmarks** （**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!--
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+-->
+- **continue** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+-->
+- **fieldSelector** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+-->
+- **labelSelector** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+-->
+- **limit** （**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+-->
+- **resourceVersion** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+-->
+- **resourceVersionMatch** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+-->
+- **timeoutSeconds** （**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+-->
+- **watch** （**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../workload-resources/priority-class-v1#PriorityClassList" >}}">PriorityClassList</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/priority-class-v1#PriorityClassList" >}}">PriorityClassList</a>): OK
+
+401: Unauthorized
+
+<!-- 
+### `create` create a PriorityClass 
+-->
+### `create` 创建一个 PriorityClass
+
+<!--
+#### HTTP Request
+
+POST /apis/scheduling.k8s.io/v1/priorityclasses
+-->
+#### HTTP 请求
+
+POST /apis/scheduling.k8s.io/v1/priorityclasses
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!--
+- **body**: <a href="{{< ref "../workload-resources/priority-class-v1#PriorityClass" >}}">PriorityClass</a>, required
+-->
+- **body**: <a href="{{< ref "../workload-resources/priority-class-v1#PriorityClass" >}}">PriorityClass</a>，必需
+  
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+- **dryRun** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **fieldManager** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+-->
+- **fieldValidation** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../workload-resources/priority-class-v1#PriorityClass" >}}">PriorityClass</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/priority-class-v1#PriorityClass" >}}">PriorityClass</a>): Created
+
+202 (<a href="{{< ref "../workload-resources/priority-class-v1#PriorityClass" >}}">PriorityClass</a>): Accepted
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/priority-class-v1#PriorityClass" >}}">PriorityClass</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/priority-class-v1#PriorityClass" >}}">PriorityClass</a>): Created
+
+202 (<a href="{{< ref "../workload-resources/priority-class-v1#PriorityClass" >}}">PriorityClass</a>): Accepted
+
+401: Unauthorized
+
+<!-- 
+### `update` replace the specified PriorityClass
+-->
+### `update` 替换指定的 PriorityClass
+
+<!--
+#### HTTP Request
+
+PUT /apis/scheduling.k8s.io/v1/priorityclasses/{name}
+-->
+#### HTTP 请求
+
+PUT /apis/scheduling.k8s.io/v1/priorityclasses/{name}
+
+<!--  
+#### Parameters 
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the PriorityClass
+-->
+- **name** （**路径参数**）: string，必需
+
+  PriorityClass 名称
+
+<!--
+- **body**: <a href="{{< ref "../workload-resources/priority-class-v1#PriorityClass" >}}">PriorityClass</a>, required
+-->
+- **body**: <a href="{{< ref "../workload-resources/priority-class-v1#PriorityClass" >}}">PriorityClass</a>，必需
+ 
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+- **dryRun** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **fieldManager** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+-->
+- **fieldValidation** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../workload-resources/priority-class-v1#PriorityClass" >}}">PriorityClass</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/priority-class-v1#PriorityClass" >}}">PriorityClass</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/priority-class-v1#PriorityClass" >}}">PriorityClass</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/priority-class-v1#PriorityClass" >}}">PriorityClass</a>): Created
+
+401: Unauthorized
+
+
+<!-- 
+### `patch` partially update the specified PriorityClass  
+-->
+### `patch` 部分更新特定的 PriorityClass
+
+<!--
+#### HTTP Request
+
+PATCH /apis/scheduling.k8s.io/v1/priorityclasses/{name}
+-->
+#### HTTP 请求
+
+PATCH /apis/scheduling.k8s.io/v1/priorityclasses/{name}
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the PriorityClass
+-->
+- **name** （**路径参数**）: string，必需
+
+  PriorityClass 名称
+
+<!--
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+-->
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+- **dryRun** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **fieldManager** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!--
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+-->
+- **fieldValidation** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!--
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+-->
+- **force** （**查询参数**）：boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../workload-resources/priority-class-v1#PriorityClass" >}}">PriorityClass</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/priority-class-v1#PriorityClass" >}}">PriorityClass</a>): Created
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/priority-class-v1#PriorityClass" >}}">PriorityClass</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/priority-class-v1#PriorityClass" >}}">PriorityClass</a>): Created
+
+401: Unauthorized
+
+<!-- 
+### `delete` delete a PriorityClass 
+-->
+### `delete` 删除一个 PriorityClass
+
+<!--
+#### HTTP Request
+
+DELETE /apis/scheduling.k8s.io/v1/priorityclasses/{name}
+-->
+#### HTTP 请求
+
+DELETE /apis/scheduling.k8s.io/v1/priorityclasses/{name}
+
+<!-- #### 
+Parameters 
+--->
+#### 参数
+
+<!--
+- **name** (*in path*): string, required
+
+  name of the PriorityClass
+-->
+- **name** （**路径参数**）: string，必需
+
+  PriorityClass 名称。
+
+<!--
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+-->
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+- **dryRun** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+-->
+- **gracePeriodSeconds** （**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+- **propagationPolicy** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!-- 
+### `deletecollection` delete collection of PriorityClass 
+-->
+### `deletecollection` 删除 PriorityClass 集合
+
+<!--
+#### HTTP Request
+
+DELETE /apis/scheduling.k8s.io/v1/priorityclasses
+-->
+#### HTTP 请求
+
+DELETE /apis/scheduling.k8s.io/v1/priorityclasses
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- - **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a> -->
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!--
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+-->
+- **continue** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!--
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+-->
+- **dryRun** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!--
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+-->
+- **fieldSelector** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!--
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+-->
+- **gracePeriodSeconds** （**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!--
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+-->
+- **labelSelector** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!--
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+-->
+- **limit** （**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!--
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+-->
+- **pretty** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+-->
+- **propagationPolicy** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+-->
+- **resourceVersion** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!--
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+-->
+- **resourceVersionMatch** （**查询参数**）：string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!--
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+-->
+- **timeoutSeconds** （**查询参数**）：integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/workload-resources/replica-set-v1.md b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/replica-set-v1.md
new file mode 100644
index 0000000000..8a07eaac44
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/replica-set-v1.md
@@ -0,0 +1,979 @@
+---
+api_metadata:
+  apiVersion: "apps/v1"
+  import: "k8s.io/api/apps/v1"
+  kind: "ReplicaSet"
+content_type: "api_reference"
+description: "ReplicaSet 确保在任何给定的时刻都在运行指定数量的 Pod 副本。"
+title: "ReplicaSet"
+weight: 4
+---
+<!--
+api_metadata:
+  apiVersion: "apps/v1"
+  import: "k8s.io/api/apps/v1"
+  kind: "ReplicaSet"
+content_type: "api_reference"
+description: "ReplicaSet ensures that a specified number of pod replicas are running at any given time."
+title: "ReplicaSet"
+weight: 4
+auto_generated: true
+-->
+
+`apiVersion: apps/v1`
+
+`import "k8s.io/api/apps/v1"`
+
+## ReplicaSet {#ReplicaSet}
+
+<!--
+ReplicaSet ensures that a specified number of pod replicas are running at any given time.
+-->
+ReplicaSet 确保在任何给定的时刻都在运行指定数量的 Pod 副本。
+
+<hr>
+
+- **apiVersion**: apps/v1
+
+- **kind**: ReplicaSet
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  If the Labels of a ReplicaSet are empty, they are defaulted to be the same as the Pod(s) that the ReplicaSet manages. Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSetSpec" >}}">ReplicaSetSpec</a>)
+
+  Spec defines the specification of the desired behavior of the ReplicaSet. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  
+  如果 ReplicaSet 的标签为空，则这些标签默认为与 ReplicaSet 管理的 Pod 相同。
+  标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSetSpec" >}}">ReplicaSetSpec</a>)
+  
+  spec 定义 ReplicaSet 预期行为的规约。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+<!--
+- **status** (<a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSetStatus" >}}">ReplicaSetStatus</a>)
+
+  Status is the most recently observed status of the ReplicaSet. This data may be out of date by some window of time. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+-->
+- **status** (<a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSetStatus" >}}">ReplicaSetStatus</a>)
+  
+  status 是最近观测到的 ReplicaSet 状态。此数据可能在某个时间窗之后过期。
+  该值由系统填充，只读。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+## ReplicaSetSpec {#ReplicaSetSpec}
+
+<!--
+ReplicaSetSpec is the specification of a ReplicaSet.
+-->
+ReplicaSetSpec 是 ReplicaSet 的规约。
+
+<hr>
+
+<!--
+- **selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>), required
+
+  Selector is a label query over pods that should match the replica count. Label keys and values that must match in order to be controlled by this replica set. It must match the pod template's labels. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors
+
+- **template** (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplateSpec" >}}">PodTemplateSpec</a>)
+
+  Template is the object that describes the pod that will be created if insufficient replicas are detected. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#pod-template
+-->
+- **selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>)，必需
+  
+  selector 是针对 Pod 的标签查询，应与副本计数匹配。标签的主键和取值必须匹配，
+  以便由这个 ReplicaSet 进行控制。它必须与 Pod 模板的标签匹配。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/labels/#label-selectors
+
+- **template** (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplateSpec" >}}">PodTemplateSpec</a>)
+  
+  template 是描述 Pod 的一个对象，将在检测到副本不足时创建此对象。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/workloads/controllers/replicationcontroller#pod-template
+
+<!--
+- **replicas** (int32)
+
+  Replicas is the number of desired replicas. This is a pointer to distinguish between explicit zero and unspecified. Defaults to 1. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller/#what-is-a-replicationcontroller
+
+- **minReadySeconds** (int32)
+
+  Minimum number of seconds for which a newly created pod should be ready without any of its container crashing, for it to be considered available. Defaults to 0 (pod will be considered available as soon as it is ready)
+-->
+- **replicas** (int32)
+  
+  replicas 是预期副本的数量。这是一个指针，用于辨别显式零和未指定的值。默认为 1。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/workloads/controllers/replicationcontroller/#what-is-a-replicationcontroller
+
+- **minReadySeconds** (int32)
+  
+  新建的 Pod 在没有任何容器崩溃的情况下就绪并被系统视为可用的最短秒数。
+  默认为 0（Pod 就绪后即被视为可用）。
+
+## ReplicaSetStatus {#ReplicaSetStatus}
+
+<!--
+ReplicaSetStatus represents the current status of a ReplicaSet.
+-->
+ReplicaSetStatus 表示 ReplicaSet 的当前状态。
+
+<hr>
+
+<!--
+- **replicas** (int32), required
+
+  Replicas is the most recently oberved number of replicas. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller/#what-is-a-replicationcontroller
+
+- **availableReplicas** (int32)
+
+  The number of available replicas (ready for at least minReadySeconds) for this replica set.
+-->
+- **replicas** (int32)，必需
+  
+  replicas 是最近观测到的副本数量。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/workloads/controllers/replicationcontroller/#what-is-a-replicationcontroller
+
+- **availableReplicas** (int32)
+  
+  此副本集可用副本（至少 minReadySeconds 才能就绪）的数量。
+
+<!--
+- **readyReplicas** (int32)
+
+  readyReplicas is the number of pods targeted by this ReplicaSet with a Ready Condition.
+
+- **fullyLabeledReplicas** (int32)
+
+  The number of pods that have labels matching the labels of the pod template of the replicaset.
+-->
+- **readyReplicas** (int32)
+  
+  readyReplicas 是此 ReplicaSet 在就绪状况下处理的目标 Pod 数量。
+
+- **fullyLabeledReplicas** (int32)
+  
+  标签与 ReplicaSet 的 Pod 模板标签匹配的 Pod 数量。
+
+<!--
+- **conditions** ([]ReplicaSetCondition)
+
+  *Patch strategy: merge on key `type`*
+  
+  Represents the latest available observations of a replica set's current state.
+
+  <a name="ReplicaSetCondition"></a>
+  *ReplicaSetCondition describes the state of a replica set at a certain point.*
+-->
+- **conditions** ([]ReplicaSetCondition)
+  
+  **补丁策略：按照键 `type` 合并**
+  
+  表示副本集当前状态的最新可用观测值。
+  
+  <a name="ReplicaSetCondition"></a> 
+  **ReplicaSetCondition 描述某个点的副本集状态。**
+  
+  <!--
+  - **conditions.status** (string), required
+
+    Status of the condition, one of True, False, Unknown.
+
+  - **conditions.type** (string), required
+
+    Type of replica set condition.
+  -->
+
+  - **conditions.status** (string)，必需
+    
+    状况的状态，取值为 True、False 或 Unknown 之一。
+  
+  - **conditions.type** (string)，必需
+    
+    副本集状况的类型。
+  
+  <!--
+  - **conditions.lastTransitionTime** (Time)
+
+    The last time the condition transitioned from one status to another.
+
+    <a name="Time"></a>
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+  -->
+
+  - **conditions.lastTransitionTime** (Time)
+    
+    状况上次从一个状态转换为另一个状态的时间。
+    
+    <a name="Time"></a>
+    **Time 是对 time.Time 的封装。Time 支持对 YAML 和 JSON 进行正确封包。
+    为 time 包的许多函数方法提供了封装器。**
+  
+  <!--
+  - **conditions.message** (string)
+
+    A human readable message indicating details about the transition.
+
+  - **conditions.reason** (string)
+
+    The reason for the condition's last transition.
+  -->
+
+  - **conditions.message** (string)
+    
+    这是一条人类可读的消息，指示有关上次转换的详细信息。
+  
+  - **conditions.reason** (string)
+    
+    状况上次转换的原因。
+
+<!--
+- **observedGeneration** (int64)
+
+  ObservedGeneration reflects the generation of the most recently observed ReplicaSet.
+-->
+- **observedGeneration** (int64)
+  
+  observedGeneration 反映了最近观测到的 ReplicaSet 生成情况。
+
+## ReplicaSetList {#ReplicaSetList}
+
+<!--
+ReplicaSetList is a collection of ReplicaSets.
+-->
+ReplicaSetList 是多个 ReplicaSet 的集合。
+
+<hr>
+
+- **apiVersion**: apps/v1
+
+- **kind**: ReplicaSetList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+- **items** ([]<a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSet" >}}">ReplicaSet</a>), required
+
+  List of ReplicaSets. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  
+  标准的列表元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+- **items** ([]<a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSet" >}}">ReplicaSet</a>)，必需
+  
+  ReplicaSet 的列表。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/workloads/controllers/replicationcontroller
+
+<!--
+## Operations {#Operations}
+
+<hr>
+
+### `get` read the specified ReplicaSet
+
+#### HTTP Request
+-->
+## 操作 {#Operations}
+
+<hr>
+
+### `get` 读取指定的 ReplicaSet
+
+#### HTTP 请求
+
+GET /apis/apps/v1/namespaces/{namespace}/replicasets/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ReplicaSet
+- **namespace** (*in path*): string, required
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  ReplicaSet 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSet" >}}">ReplicaSet</a>): OK
+
+401: Unauthorized
+
+<!--
+### `get` read status of the specified ReplicaSet
+
+#### HTTP Request
+-->
+### `get` 读取指定的 ReplicaSet 的状态
+
+#### HTTP 请求
+
+GET /apis/apps/v1/namespaces/{namespace}/replicasets/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ReplicaSet
+- **namespace** (*in path*): string, required
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  ReplicaSet 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSet" >}}">ReplicaSet</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind ReplicaSet
+
+#### HTTP Request
+-->
+### `list` 列出或监视 ReplicaSet 类别的对象
+
+#### HTTP 请求
+
+GET /apis/apps/v1/namespaces/{namespace}/replicasets
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSetList" >}}">ReplicaSetList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind ReplicaSet
+
+#### HTTP Request
+-->
+### `list` 列出或监视 ReplicaSet 类别的对象
+
+#### HTTP 请求
+
+GET /apis/apps/v1/replicasets
+
+<!--
+#### Parameters
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSetList" >}}">ReplicaSetList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a ReplicaSet
+
+#### HTTP Request
+-->
+### `create` 创建 ReplicaSet
+
+#### HTTP 请求
+
+POST /apis/apps/v1/namespaces/{namespace}/replicasets
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSet" >}}">ReplicaSet</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSet" >}}">ReplicaSet</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSet" >}}">ReplicaSet</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSet" >}}">ReplicaSet</a>): Created
+
+202 (<a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSet" >}}">ReplicaSet</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified ReplicaSet
+
+#### HTTP Request
+-->
+### `update` 替换指定的 ReplicaSet
+
+#### HTTP 请求
+
+PUT /apis/apps/v1/namespaces/{namespace}/replicasets/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ReplicaSet
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSet" >}}">ReplicaSet</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  ReplicaSet 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSet" >}}">ReplicaSet</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSet" >}}">ReplicaSet</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSet" >}}">ReplicaSet</a>): Created
+
+401: Unauthorized
+
+<!--
+### `update` replace status of the specified ReplicaSet
+
+#### HTTP Request
+-->
+### `update` 替换指定的 ReplicaSet 的状态
+
+#### HTTP 请求
+
+PUT /apis/apps/v1/namespaces/{namespace}/replicasets/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ReplicaSet
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSet" >}}">ReplicaSet</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  ReplicaSet 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSet" >}}">ReplicaSet</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSet" >}}">ReplicaSet</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSet" >}}">ReplicaSet</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified ReplicaSet
+
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 ReplicaSet
+
+#### HTTP 请求
+
+PATCH /apis/apps/v1/namespaces/{namespace}/replicasets/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ReplicaSet
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  ReplicaSet 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSet" >}}">ReplicaSet</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSet" >}}">ReplicaSet</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update status of the specified ReplicaSet
+
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 ReplicaSet 的状态
+
+#### HTTP 请求
+
+PATCH /apis/apps/v1/namespaces/{namespace}/replicasets/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ReplicaSet
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  ReplicaSet 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSet" >}}">ReplicaSet</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/replica-set-v1#ReplicaSet" >}}">ReplicaSet</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a ReplicaSet
+
+#### HTTP Request
+-->
+### `delete` 删除 ReplicaSet
+
+#### HTTP 请求
+
+DELETE /apis/apps/v1/namespaces/{namespace}/replicasets/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ReplicaSet
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  ReplicaSet 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of ReplicaSet
+
+#### HTTP Request
+-->
+### `deletecollection` 删除 ReplicaSet 的集合
+
+#### HTTP 请求
+
+DELETE /apis/apps/v1/namespaces/{namespace}/replicasets
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **continue** (*in query*): string
+- **dryRun** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/workload-resources/replication-controller-v1.md b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/replication-controller-v1.md
new file mode 100644
index 0000000000..ba4baaccb9
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/replication-controller-v1.md
@@ -0,0 +1,969 @@
+---
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "ReplicationController"
+content_type: "api_reference"
+description: "ReplicationController 表示一个副本控制器的配置。"
+title: "ReplicationController"
+weight: 3
+---
+<!--
+api_metadata:
+  apiVersion: "v1"
+  import: "k8s.io/api/core/v1"
+  kind: "ReplicationController"
+content_type: "api_reference"
+description: "ReplicationController represents the configuration of a replication controller."
+title: "ReplicationController"
+weight: 3
+auto_generated: true
+-->
+
+`apiVersion: v1`
+
+`import "k8s.io/api/core/v1"`
+
+## ReplicationController {#ReplicationController}
+
+<!--
+ReplicationController represents the configuration of a replication controller.
+-->
+ReplicationController 表示一个副本控制器的配置。
+
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: ReplicationController
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  If the Labels of a ReplicationController are empty, they are defaulted to be the same as the Pod(s) that the replication controller manages. Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationControllerSpec" >}}">ReplicationControllerSpec</a>)
+
+  Spec defines the specification of the desired behavior of the replication controller. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+  
+  如果 ReplicationController 的标签为空，则这些标签默认为与副本控制器管理的 Pod 相同。
+  标准的对象元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+- **spec** (<a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationControllerSpec" >}}">ReplicationControllerSpec</a>)
+  
+  spec 定义副本控制器预期行为的规约。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+<!--
+- **status** (<a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationControllerStatus" >}}">ReplicationControllerStatus</a>)
+
+  Status is the most recently observed status of the replication controller. This data may be out of date by some window of time. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+-->
+- **status** (<a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationControllerStatus" >}}">ReplicationControllerStatus</a>)
+  
+  status 是最近观测到的副本控制器的状态。此数据可能在某个时间窗之后过期。
+  该值由系统填充，只读。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status
+
+## ReplicationControllerSpec {#ReplicationControllerSpec}
+
+<!--
+ReplicationControllerSpec is the specification of a replication controller.
+-->
+ReplicationControllerSpec 表示一个副本控制器的规约。
+
+<hr>
+
+<!--
+- **selector** (map[string]string)
+
+  Selector is a label query over pods that should match the Replicas count. If Selector is empty, it is defaulted to the labels present on the Pod template. Label keys and values that must match in order to be controlled by this replication controller, if empty defaulted to labels on Pod template. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors
+
+- **template** (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplateSpec" >}}">PodTemplateSpec</a>)
+
+  Template is the object that describes the pod that will be created if insufficient replicas are detected. This takes precedence over a TemplateRef. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#pod-template
+-->
+- **selector** (map[string]string)
+  
+  selector 是针对 Pod 的标签查询，符合条件的 Pod 个数应与 replicas 匹配。
+  如果 selector 为空，则默认为出现在 Pod 模板中的标签。
+  如果置空以表示默认使用 Pod 模板中的标签，则标签的主键和取值必须匹配，以便由这个副本控制器进行控制。
+  更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/overview/working-with-objects/labels/#label-selectors
+
+- **template** (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplateSpec" >}}">PodTemplateSpec</a>)
+  
+  template 是描述 Pod 的一个对象，将在检测到副本不足时创建此对象。
+  此字段优先于 templateRef。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/workloads/controllers/replicationcontroller#pod-template
+
+<!--
+- **replicas** (int32)
+
+  Replicas is the number of desired replicas. This is a pointer to distinguish between explicit zero and unspecified. Defaults to 1. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#what-is-a-replicationcontroller
+
+- **minReadySeconds** (int32)
+
+  Minimum number of seconds for which a newly created pod should be ready without any of its container crashing, for it to be considered available. Defaults to 0 (pod will be considered available as soon as it is ready)
+-->
+- **replicas** (int32)
+  
+  replicas 是预期副本的数量。这是一个指针，用于辨别显式零和未指定的值。默认为 1。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/workloads/controllers/replicationcontroller#what-is-a-replicationcontroller
+
+- **minReadySeconds** (int32)
+  
+  新建的 Pod 在没有任何容器崩溃的情况下就绪并被系统视为可用的最短秒数。
+  默认为 0（Pod 就绪后即被视为可用）。
+
+## ReplicationControllerStatus {#ReplicationControllerStatus}
+
+<!--
+ReplicationControllerStatus represents the current status of a replication controller.
+-->
+ReplicationControllerStatus 表示一个副本控制器的当前状态。
+
+<hr>
+
+<!--
+- **replicas** (int32), required
+
+  Replicas is the most recently oberved number of replicas. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#what-is-a-replicationcontroller
+
+- **availableReplicas** (int32)
+
+  The number of available replicas (ready for at least minReadySeconds) for this replication controller.
+-->
+- **replicas** (int32)，必需
+  
+  replicas 是最近观测到的副本数量。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/workloads/controllers/replicationcontroller#what-is-a-replicationcontroller
+
+- **availableReplicas** (int32)
+  
+  这个副本控制器可用副本（至少 minReadySeconds 才能就绪）的数量。
+
+<!--
+- **readyReplicas** (int32)
+
+  The number of ready replicas for this replication controller.
+
+- **fullyLabeledReplicas** (int32)
+
+  The number of pods that have labels matching the labels of the pod template of the replication controller.
+-->
+- **readyReplicas** (int32)
+  
+  此副本控制器所用的就绪副本的数量。
+
+- **fullyLabeledReplicas** (int32)
+  
+  标签与副本控制器的 Pod 模板标签匹配的 Pod 数量。
+
+<!--
+- **conditions** ([]ReplicationControllerCondition)
+
+  *Patch strategy: merge on key `type`*
+  
+  Represents the latest available observations of a replication controller's current state.
+
+  <a name="ReplicationControllerCondition"></a>
+  *ReplicationControllerCondition describes the state of a replication controller at a certain point.*
+-->
+- **conditions** ([]ReplicationControllerCondition)
+  
+  **补丁策略：按照键 `type` 合并**
+  
+  表示副本控制器当前状态的最新可用观测值。
+  
+  <a name="ReplicationControllerCondition"></a>
+  **ReplicationControllerCondition 描述某个点的副本控制器的状态。**
+  
+  <!--
+  - **conditions.status** (string), required
+
+    Status of the condition, one of True, False, Unknown.
+
+  - **conditions.type** (string), required
+
+    Type of replication controller condition.
+  -->
+
+  - **conditions.status** (string)，必需
+    
+    状况的状态，取值为 True、False 或 Unknown 之一。
+  
+  - **conditions.type** (string)，必需
+    
+    副本控制器状况的类型。
+  
+  <!--
+  - **conditions.lastTransitionTime** (Time)
+
+    The last time the condition transitioned from one status to another.
+
+    <a name="Time"></a>
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.*
+  -->
+
+  - **conditions.lastTransitionTime** (Time)
+    
+    状况上次从一个状态转换为另一个状态的时间。
+    
+    <a name="Time"></a>
+    **Time 是对 time.Time 的封装。Time 支持对 YAML 和 JSON 进行正确封包。
+    为 time 包的许多函数方法提供了封装器。**
+  
+  <!--
+  - **conditions.message** (string)
+
+    A human readable message indicating details about the transition.
+
+  - **conditions.reason** (string)
+
+    The reason for the condition's last transition.
+  -->
+  - **conditions.message** (string)
+    
+    这是一条人类可读的消息，指示有关上次转换的详细信息。
+  
+  - **conditions.reason** (string)
+    
+    状况上次转换的原因。
+
+<!--
+- **observedGeneration** (int64)
+
+  ObservedGeneration reflects the generation of the most recently observed replication controller.
+
+## ReplicationControllerList {#ReplicationControllerList}
+
+ReplicationControllerList is a collection of replication controllers.
+-->
+- **observedGeneration** (int64)
+  
+  observedGeneration 反映了最近观测到的副本控制器的生成情况。
+
+## ReplicationControllerList {#ReplicationControllerList}
+
+ReplicationControllerList 是副本控制器的集合。
+
+<hr>
+
+- **apiVersion**: v1
+
+- **kind**: ReplicationControllerList
+
+<!--
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+- **items** ([]<a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationController" >}}">ReplicationController</a>), required
+
+  List of replication controllers. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller
+-->
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+  
+  标准的列表元数据。更多信息：
+  https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+
+- **items** ([]<a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationController" >}}">ReplicationController</a>)，必需
+  
+  副本控制器的列表。更多信息：
+  https://kubernetes.io/zh-cn/docs/concepts/workloads/controllers/replicationcontroller
+
+<!--
+## Operations {#Operations}
+<hr>
+### `get` read the specified ReplicationController
+#### HTTP Request
+-->
+## 操作 {#Operations}
+
+<hr>
+
+### `get` 读取指定的 ReplicationController
+
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/replicationcontrollers/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ReplicationController
+- **namespace** (*in path*): string, required
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  ReplicationController 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationController" >}}">ReplicationController</a>): OK
+
+401: Unauthorized
+
+<!--
+### `get` read status of the specified ReplicationController
+#### HTTP Request
+-->
+### `get` 读取指定的 ReplicationController 的状态
+
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/replicationcontrollers/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ReplicationController
+- **namespace** (*in path*): string, required
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  ReplicationController 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationController" >}}">ReplicationController</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind ReplicationController
+#### HTTP Request
+-->
+### `list` 列出或监视 ReplicationController 类别的对象
+
+#### HTTP 请求
+
+GET /api/v1/namespaces/{namespace}/replicationcontrollers
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationControllerList" >}}">ReplicationControllerList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `list` list or watch objects of kind ReplicationController
+#### HTTP Request
+-->
+### `list` 列出或监视 ReplicationController 类别的对象
+
+#### HTTP 请求
+
+GET /api/v1/replicationcontrollers
+
+<!--
+#### Parameters
+- **allowWatchBookmarks** (*in query*): boolean
+- **continue** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+- **watch** (*in query*): boolean
+-->
+#### 参数
+
+- **allowWatchBookmarks** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+- **watch** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationControllerList" >}}">ReplicationControllerList</a>): OK
+
+401: Unauthorized
+
+<!--
+### `create` create a ReplicationController
+#### HTTP Request
+-->
+### `create` 创建 ReplicationController
+
+#### HTTP 请求
+
+POST /api/v1/namespaces/{namespace}/replicationcontrollers
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationController" >}}">ReplicationController</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationController" >}}">ReplicationController</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationController" >}}">ReplicationController</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationController" >}}">ReplicationController</a>): Created
+
+202 (<a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationController" >}}">ReplicationController</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `update` replace the specified ReplicationController
+#### HTTP Request
+-->
+### `update` 替换指定的 ReplicationController
+
+#### HTTP 请求
+
+PUT /api/v1/namespaces/{namespace}/replicationcontrollers/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ReplicationController
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationController" >}}">ReplicationController</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  ReplicationController 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationController" >}}">ReplicationController</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationController" >}}">ReplicationController</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationController" >}}">ReplicationController</a>): Created
+
+401: Unauthorized
+
+<!--
+### `update` replace status of the specified ReplicationController
+#### HTTP Request
+-->
+### `update` 替换指定的 ReplicationController 的状态
+
+#### HTTP 请求
+
+PUT /api/v1/namespaces/{namespace}/replicationcontrollers/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ReplicationController
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationController" >}}">ReplicationController</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  ReplicationController 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationController" >}}">ReplicationController</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationController" >}}">ReplicationController</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationController" >}}">ReplicationController</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update the specified ReplicationController
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 ReplicationController
+
+#### HTTP 请求
+
+PATCH /api/v1/namespaces/{namespace}/replicationcontrollers/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ReplicationController
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  ReplicationController 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationController" >}}">ReplicationController</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationController" >}}">ReplicationController</a>): Created
+
+401: Unauthorized
+
+<!--
+### `patch` partially update status of the specified ReplicationController
+#### HTTP Request
+-->
+### `patch` 部分更新指定的 ReplicationController 的状态
+
+#### HTTP 请求
+
+PATCH /api/v1/namespaces/{namespace}/replicationcontrollers/{name}/status
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ReplicationController
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required
+- **dryRun** (*in query*): string
+- **fieldManager** (*in query*): string
+- **fieldValidation** (*in query*): string
+- **force** (*in query*): boolean
+- **pretty** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  ReplicationController 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>，必需
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldManager** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+- **fieldValidation** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+- **force** (**查询参数**): boolean
+  
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationController" >}}">ReplicationController</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/replication-controller-v1#ReplicationController" >}}">ReplicationController</a>): Created
+
+401: Unauthorized
+
+<!--
+### `delete` delete a ReplicationController
+#### HTTP Request
+-->
+### `delete` 删除 ReplicationController
+
+#### HTTP 请求
+
+DELETE /api/v1/namespaces/{namespace}/replicationcontrollers/{name}
+
+<!--
+#### Parameters
+- **name** (*in path*): string, required
+  name of the ReplicationController
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **dryRun** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+-->
+#### 参数
+
+- **name** (**路径参数**): string，必需
+  
+  ReplicationController 的名称
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!--
+### `deletecollection` delete collection of ReplicationController
+#### HTTP Request
+-->
+### `deletecollection` 删除 ReplicationController 的集合
+
+#### HTTP 请求
+
+DELETE /api/v1/namespaces/{namespace}/replicationcontrollers
+
+<!--
+#### Parameters
+- **namespace** (*in path*): string, required
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+- **continue** (*in query*): string
+- **dryRun** (*in query*): string
+- **fieldSelector** (*in query*): string
+- **gracePeriodSeconds** (*in query*): integer
+- **labelSelector** (*in query*): string
+- **limit** (*in query*): integer
+- **pretty** (*in query*): string
+- **propagationPolicy** (*in query*): string
+- **resourceVersion** (*in query*): string
+- **resourceVersionMatch** (*in query*): string
+- **timeoutSeconds** (*in query*): integer
+-->
+#### 参数
+
+- **namespace** (**路径参数**): string，必需
+  
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+- **continue** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+- **dryRun** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+- **fieldSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+- **gracePeriodSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+- **labelSelector** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+- **limit** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+- **pretty** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+- **propagationPolicy** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+- **resourceVersion** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+- **resourceVersionMatch** (**查询参数**): string
+  
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+- **timeoutSeconds** (**查询参数**): integer
+  
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!--
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
diff --git a/content/zh-cn/docs/reference/kubernetes-api/workload-resources/stateful-set-v1.md b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/stateful-set-v1.md
new file mode 100644
index 0000000000..fd168657d8
--- /dev/null
+++ b/content/zh-cn/docs/reference/kubernetes-api/workload-resources/stateful-set-v1.md
@@ -0,0 +1,1432 @@
+---
+api_metadata:
+  apiVersion: "apps/v1"
+  import: "k8s.io/api/apps/v1"
+  kind: "StatefulSet"
+content_type: "api_reference"
+description: "StatefulSet 表示一组具有一致身份的 Pod"
+title: "StatefulSet"
+weight: 6
+auto_generated: true
+---
+
+<!-- 
+api_metadata:
+  apiVersion: "apps/v1"
+  import: "k8s.io/api/apps/v1"
+  kind: "StatefulSet"
+content_type: "api_reference"
+description: "StatefulSet represents a set of pods with consistent identities."
+title: "StatefulSet"
+weight: 6
+auto_generated: true
+-->
+
+`apiVersion: apps/v1`
+
+`import "k8s.io/api/apps/v1"`
+
+## StatefulSet {#StatefulSet}
+<!-- 
+StatefulSet represents a set of pods with consistent identities. Identities are defined as:
+ - Network: A single stable DNS and hostname.
+ - Storage: As many VolumeClaims as requested.
+The StatefulSet guarantees that a given network identity will always map to the same storage identity. 
+-->
+StatefulSet 表示一组具有一致身份的 Pod。身份定义为：
+ - 网络：一个稳定的 DNS 和主机名。
+ - 存储：根据要求提供尽可能多的 VolumeClaims。
+StatefulSet 保证给定的网络身份将始终映射到相同的存储身份。
+<hr>
+
+- **apiVersion**: apps/v1
+
+- **kind**: StatefulSet
+
+- **metadata** (<a href="{{< ref "../common-definitions/object-meta#ObjectMeta" >}}">ObjectMeta</a>)
+
+  <!-- 
+  Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata 
+  -->
+  标准的对象元数据。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata。
+
+- **spec** (<a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSetSpec" >}}">StatefulSetSpec</a>)
+
+  <!-- 
+  Spec defines the desired identities of pods in this set. 
+  -->
+  spec 定义集合中 Pod 的预期身份。
+
+- **status** (<a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSetStatus" >}}">StatefulSetStatus</a>)
+
+  <!-- 
+  Status is the current status of Pods in this StatefulSet. This data may be out of date by some window of time. 
+  -->
+  status 是 StatefulSet 中 Pod 的当前状态，此数据可能会在某个时间窗口内过时。
+
+## StatefulSetSpec {#StatefulSetSpec}
+
+<!--
+A StatefulSetSpec is the specification of a StatefulSet. 
+-->
+StatefulSetSpec 是 StatefulSet 的规约。
+
+<hr>
+
+<!-- 
+- **serviceName** (string), required
+
+  serviceName is the name of the service that governs this StatefulSet. This service must exist before the StatefulSet, and is responsible for the network identity of the set. Pods get DNS/hostnames that follow the pattern: pod-specific-string.serviceName.default.svc.cluster.local where "pod-specific-string" is managed by the StatefulSet controller.  
+-->
+- **serviceName** (string), 必需
+
+  serviceName 是管理此 StatefulSet 服务的名称。
+  该服务必须在 StatefulSet 之前即已存在，并负责该集合的网络标识。 
+  Pod 会获得符合以下模式的 DNS/主机名： pod-specific-string.serviceName.default.svc.cluster.local。
+  其中 “pod-specific-string” 由 StatefulSet 控制器管理。
+
+<!-- 
+- **selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>), required
+
+  selector is a label query over pods that should match the replica count. It must match the pod template's labels. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors
+-->
+- **selector** (<a href="{{< ref "../common-definitions/label-selector#LabelSelector" >}}">LabelSelector</a>), 必需
+
+  selector 是对 Pod 的标签查询，查询结果应该匹配副本个数。
+  此选择算符必须与 Pod 模板中的 labels 匹配。
+  更多信息： https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors
+
+<!-- 
+- **template** (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplateSpec" >}}">PodTemplateSpec</a>), required
+
+  template is the object that describes the pod that will be created if insufficient replicas are detected. Each pod stamped out by the StatefulSet will fulfill this Template, but have a unique identity from the rest of the StatefulSet.  
+-->
+- **template** (<a href="{{< ref "../workload-resources/pod-template-v1#PodTemplateSpec" >}}">PodTemplateSpec</a>), 必需
+
+  template 是用来描述 Pod 的对象，检测到副本不足时将创建所描述的 Pod。 
+  经由 StatefulSet 创建的每个 Pod 都将满足这个模板，但与 StatefulSet 的其余 Pod 相比，每个 Pod 具有唯一的标识。
+
+<!-- 
+- **replicas** (int32)
+
+  replicas is the desired number of replicas of the given Template. These are replicas in the sense that they are instantiations of the same Template, but individual replicas also have a consistent identity. 
+  If unspecified, defaults to 1.  
+-->
+- **replicas** (int32)
+ 
+  replicas 是给定模板的所需的副本数。之所以称作副本，是因为它们是相同模板的实例，
+  不过各个副本也具有一致的身份。如果未指定，则默认为 1。
+
+<!-- 
+- **updateStrategy** (StatefulSetUpdateStrategy)
+
+  updateStrategy indicates the StatefulSetUpdateStrategy that will be employed to update Pods in the StatefulSet when a revision is made to Template. 
+-->
+- **updateStrategy** (StatefulSetUpdateStrategy)
+
+  updateStrategy 是一个 StatefulSetUpdateStrategy，表示当对 template 进行修订时，用何种策略更新 StatefulSet 中的 Pod 集合。
+
+  <a name="StatefulSetUpdateStrategy"></a>
+
+  <!-- 
+  *StatefulSetUpdateStrategy indicates the strategy that the StatefulSet controller will use to perform updates. It includes any additional parameters necessary to perform the update for the indicated strategy.*
+  -->
+
+  **StatefulSetUpdateStrategy 表示 StatefulSet 控制器将用于执行更新的策略。其中包括为指定策略执行更新所需的额外参数。**
+
+  - **updateStrategy.type** (string)
+
+  - **updateStrategy.rollingUpdate** (RollingUpdateStatefulSetStrategy)
+
+    <!-- 
+    RollingUpdate is used to communicate parameters when Type is RollingUpdateStatefulSetStrategyType. 
+    -->
+
+    当 type 为 RollingUpdate 时，使用 rollingUpdate 来传递参数。
+
+    <a name="RollingUpdateStatefulSetStrategy"></a>
+
+    <!--
+    *RollingUpdateStatefulSetStrategy is used to communicate parameter for RollingUpdateStatefulSetStrategyType.* 
+    -->
+
+    **RollingUpdateStatefulSetStrategy 用于为 rollingUpdate 类型的更新传递参数。**
+
+    - **updateStrategy.rollingUpdate.maxUnavailable** (IntOrString)
+
+      <!-- 
+      The maximum number of pods that can be unavailable during the update. Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). Absolute number is calculated from percentage by rounding up. This can not be 0. Defaults to 1. This field is alpha-level and is only honored by servers that enable the MaxUnavailableStatefulSet feature. The field applies to all pods in the range 0 to Replicas-1. That means if there is any unavailable pod in the range 0 to Replicas-1, it will be counted towards MaxUnavailable. 
+      -->
+
+      更新期间不可用的 Pod 个数上限。取值可以是绝对数量（例如：5）或所需 Pod 的百分比（例如：10%）。
+      绝对数是通过四舍五入的百分比计算得出的。不能为 0，默认为 1。
+      此字段为 Alpha 级别，仅被启用 MaxUnavailableStatefulSet 特性的服务器支持。
+      此字段适用于 0 到 replicas-1 范围内的所有 Pod。这意味着如果在 0 到 replicas-1 范围内有任何不可用的 Pod，
+      这些 Pod 将被计入 maxUnavailable 中。
+
+      <a name="IntOrString"></a>
+
+      <!-- 
+      *IntOrString is a type that can hold an int32 or a string.  When used in JSON or YAML marshalling and unmarshalling, it produces or consumes the inner type.  This allows you to have, for example, a JSON field that can accept a name or number.* 
+      -->
+
+      **IntOrString 是一种可以包含 int32 或字符串数值的类型。在 JSON 或 YAML 编组和解组时，**
+      **会生成或使用内部类型。例如，此类型允许你定义一个可以接受名称或数字的 JSON 字段。**
+
+    - **updateStrategy.rollingUpdate.partition** (int32)
+
+      <!-- 
+      Partition indicates the ordinal at which the StatefulSet should be partitioned for updates. During a rolling update, all pods from ordinal Replicas-1 to Partition are updated. All pods from ordinal Partition-1 to 0 remain untouched. This is helpful in being able to do a canary based deployment. The default value is 0.
+      -->
+
+      partition 表示 StatefulSet 应该被分区进行更新时的序数。
+      在滚动更新期间，序数在 replicas-1 和 partition 之间的所有 Pod 都会被更新。
+      序数在 partition-1 和 0 之间的所有 Pod 保持不变。
+      这一属性有助于进行金丝雀部署。默认值为 0。
+
+- **podManagementPolicy** (string)
+
+  <!-- 
+  podManagementPolicy controls how pods are created during initial scale up, when replacing pods on nodes, or when scaling down. The default policy is `OrderedReady`, where pods are created in increasing order (pod-0, then pod-1, etc) and the controller will wait until each pod is ready before continuing. When scaling down, the pods are removed in the opposite order. The alternative policy is `Parallel` which will create pods in parallel to match the desired scale without waiting, and on scale down will delete all pods at once. 
+  -->
+
+  podManagementPolicy 控制在初始规模扩展期间、替换节点上的 Pod 或缩减集合规模时如何创建 Pod。
+  默认策略是 “OrderedReady”，各个 Pod 按升序创建的（pod-0，然后是pod-1 等），
+  控制器将等到每个 Pod 都准备就绪后再继续。缩小集合规模时，Pod 会以相反的顺序移除。
+  另一种策略是 “Parallel”，意味着并行创建 Pod 以达到预期的规模而无需等待，并且在缩小规模时将立即删除所有 Pod。
+  
+- **revisionHistoryLimit** (int32)
+
+  <!-- 
+  revisionHistoryLimit is the maximum number of revisions that will be maintained in the StatefulSet's revision history. The revision history consists of all revisions not represented by a currently applied StatefulSetSpec version. The default value is 10. 
+  -->
+
+  revisionHistoryLimit 是在 StatefulSet 的修订历史中维护的修订个数上限。
+  修订历史中包含并非由当前所应用的 StatefulSetSpec 版本未表示的所有修订版本。默认值为 10。
+
+- **volumeClaimTemplates** ([]<a href="{{< ref "../config-and-storage-resources/persistent-volume-claim-v1#PersistentVolumeClaim" >}}">PersistentVolumeClaim</a>)
+
+  <!-- 
+  volumeClaimTemplates is a list of claims that pods are allowed to reference. The StatefulSet controller is responsible for mapping network identities to claims in a way that maintains the identity of a pod. Every claim in this list must have at least one matching (by name) volumeMount in one container in the template. A claim in this list takes precedence over any volumes in the template, with the same name.
+  -->
+
+  volumeClaimTemplates 是允许 Pod 引用的申领列表。
+  StatefulSet controller 负责以维持 Pod 身份不变的方式将网络身份映射到申领之上。
+  此列表中的每个申领至少必须在模板的某个容器中存在匹配的（按 name 匹配）volumeMount。
+  此列表中的申领优先于模板中具有相同名称的所有卷。
+
+- **minReadySeconds** (int32)
+
+  <!-- 
+  Minimum number of seconds for which a newly created pod should be ready without any of its container crashing for it to be considered available. Defaults to 0 (pod will be considered available as soon as it is ready) This is an alpha field and requires enabling StatefulSetMinReadySeconds feature gate. 
+  -->
+
+  新创建的 Pod 应准备就绪（其任何容器都未崩溃）的最小秒数，以使其被视为可用。
+  默认为 0（Pod 准备就绪后将被视为可用）。
+  这是一个 Alpha 字段，需要启用 StatefulSetMinReadySeconds 特性门控。
+
+- **persistentVolumeClaimRetentionPolicy** (StatefulSetPersistentVolumeClaimRetentionPolicy)
+
+  <!--
+  persistentVolumeClaimRetentionPolicy describes the lifecycle of persistent volume claims created from volumeClaimTemplates. By default, all persistent volume claims are created as needed and retained until manually deleted. This policy allows the lifecycle to be altered, for example by deleting persistent volume claims when their stateful set is deleted, or when their pod is scaled down. This requires the StatefulSetAutoDeletePVC feature gate to be enabled, which is alpha.  +optional 
+  -->
+
+  persistentVolumeClaimRetentionPolicy 描述从 VolumeClaimTemplates 创建的持久卷申领的生命周期。
+  默认情况下，所有持久卷申领都根据需要创建并被保留到手动删除。
+  此策略允许更改申领的生命周期，例如在 StatefulSet 被删除或其中 Pod 集合被缩容时删除持久卷申领。
+  此属性需要启用 StatefulSetAutoDeletePVC 特性门控。特性处于 Alpha 阶段。可选。
+
+  <a name="StatefulSetPersistentVolumeClaimRetentionPolicy"></a>
+
+  <!-- 
+  *StatefulSetPersistentVolumeClaimRetentionPolicy describes the policy used for PVCs created from the StatefulSet VolumeClaimTemplates.* 
+  -->
+
+  **StatefulSetPersistentVolumeClaimRetentionPolicy 描述了用于从 StatefulSet VolumeClaimTemplate 创建的 PVC 的策略**
+
+  - **persistentVolumeClaimRetentionPolicy.whenDeleted** (string)
+
+    <!-- 
+    WhenDeleted specifies what happens to PVCs created from StatefulSet VolumeClaimTemplates when the StatefulSet is deleted. The default policy of `Retain` causes PVCs to not be affected by StatefulSet deletion. The `Delete` policy causes those PVCs to be deleted. 
+    -->
+
+    whenDeleted 指定当 StatefulSet 被删除时，基于 StatefulSet VolumeClaimTemplates 所创建的 PVC 会发生什么。
+    默认策略 `Retain` 使 PVC 不受 StatefulSet 被删除的影响。`Delete` 策略会导致这些 PVC 也被删除。
+
+  - **persistentVolumeClaimRetentionPolicy.whenScaled** (string)
+
+    <!--
+    WhenScaled specifies what happens to PVCs created from StatefulSet VolumeClaimTemplates when the StatefulSet is scaled down. The default policy of `Retain` causes PVCs to not be affected by a scaledown. The `Delete` policy causes the associated PVCs for any excess pods above the replica count to be deleted. 
+    -->
+
+    whenScaled 指定当 StatefulSet 缩容时，基于 StatefulSet volumeClaimTemplates 创建的 PVC 会发生什么。
+    默认策略 `Retain` 使 PVC 不受缩容影响。 `Delete` 策略会导致超出副本个数的所有的多余 Pod 所关联的 PVC 被删除。
+
+## StatefulSetStatus {#StatefulSetStatus}
+
+<!-- 
+StatefulSetStatus represents the current state of a StatefulSet. 
+-->
+StatefulSetStatus 表示 StatefulSet 的当前状态。
+
+<hr>
+
+<!-- 
+- **replicas** (int32), required
+
+  replicas is the number of Pods created by the StatefulSet controller.  
+-->
+- **replicas** (int32), 必需
+
+  replicas 是 StatefulSet 控制器创建的 Pod 个数。
+
+- **readyReplicas** (int32)
+
+  <!-- 
+  readyReplicas is the number of pods created for this StatefulSet with a Ready Condition. 
+  -->
+  readyReplicas 是为此 StatefulSet 创建的、状况为 Ready 的 Pod 个数。
+
+- **currentReplicas** (int32)
+
+  <!-- 
+  currentReplicas is the number of Pods created by the StatefulSet controller from the StatefulSet version indicated by currentRevision. 
+  -->
+  currentReplicas 是 StatefulSet 控制器根据 currentReplicas 所指的 StatefulSet 版本创建的 Pod 个数。
+
+- **updatedReplicas** (int32)
+
+  <!-- 
+  updatedReplicas is the number of Pods created by the StatefulSet controller from the StatefulSet version indicated by updateRevision.
+  -->
+  updatedReplicas 是 StatefulSet 控制器根据 updateRevision 所指的 StatefulSet 版本创建的 Pod 个数。
+
+- **availableReplicas** (int32)
+
+  <!-- 
+  Total number of available pods (ready for at least minReadySeconds) targeted by this statefulset. This is a beta field and enabled/disabled by StatefulSetMinReadySeconds feature gate. 
+  -->
+  此 StatefulSet 所对应的可用 Pod 总数（就绪时长至少为 minReadySeconds）。
+  这是一个 Beta 字段，由 StatefulSetMinReadySeconds 特性门控启用/禁用。
+
+- **collisionCount** (int32)
+
+  <!-- 
+  collisionCount is the count of hash collisions for the StatefulSet. The StatefulSet controller uses this field as a collision avoidance mechanism when it needs to create the name for the newest ControllerRevision. 
+  -->
+  collisionCount 是 StatefulSet 的哈希冲突计数。
+  StatefulSet controller 在需要为最新的 controllerRevision 创建名称时使用此字段作为避免冲突的机制。
+
+- **conditions** ([]StatefulSetCondition)
+
+  <!-- 
+  *Patch strategy: merge on key `type`* 
+  -->
+  **补丁策略：根据 `type` 键执行合并操作**
+
+  <!-- 
+  Represents the latest available observations of a statefulset's current state. 
+  -->
+  表示 StatefulSet 当前状态的最新可用观察结果。
+
+  <a name="StatefulSetCondition"></a>
+  <!-- 
+  *StatefulSetCondition describes the state of a statefulset at a certain point.* 
+  -->
+  **StatefulSetCondition 描述了 StatefulSet 在某个点的状态。**
+
+  <!-- 
+  - **conditions.status** (string), required
+
+    Status of the condition, one of True, False, Unknown.  
+  -->
+
+  - **conditions.status** (string), 必需
+
+    状况的状态为 True、False、Unknown 之一。
+
+  <!-- 
+  - **conditions.type** (string), required
+
+    Type of statefulset condition.   
+  -->
+
+  - **conditions.type** (string), 必需
+
+    StatefulSet 状况的类型。
+
+  - **conditions.lastTransitionTime** (Time)
+
+    <!-- 
+    Last time the condition transitioned from one status to another. 
+    -->
+
+    最近一次状况从一种状态转换到另一种状态的时间。
+
+    <a name="Time"></a>
+    <!-- 
+    *Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.* 
+    -->
+
+    **Time 是 time.Time 的包装器，它支持对 YAML 和 JSON 的正确编组。**
+    **time 包的许多工厂方法提供了包装器。**
+
+  - **conditions.message** (string)
+
+    <!-- 
+    A human readable message indicating details about the transition. 
+    -->
+
+    一条人类可读的消息，指示有关转换的详细信息。
+
+  - **conditions.reason** (string)
+
+    <!-- 
+    The reason for the condition's last transition. 
+    -->
+
+    状况最后一次转换的原因。
+
+- **currentRevision** (string)
+
+  <!-- 
+  currentRevision, if not empty, indicates the version of the StatefulSet used to generate Pods in the sequence [0,currentReplicas). 
+  -->
+
+  currentRevision，如果不为空，表示用于在序列 [0,currentReplicas) 之间生成 Pod 的 StatefulSet 的版本。
+
+- **updateRevision** (string)
+
+  <!-- 
+  updateRevision, if not empty, indicates the version of the StatefulSet used to generate Pods in the sequence [replicas-updatedReplicas,replicas) 
+  -->
+
+  updateRevision，如果不为空，表示用于在序列 [replicas-updatedReplicas,replicas) 之间生成 Pod 的 StatefulSet 的版本。
+
+- **observedGeneration** (int64)
+
+  <!-- 
+  observedGeneration is the most recent generation observed for this StatefulSet. It corresponds to the StatefulSet's generation, which is updated on mutation by the API Server. 
+  -->
+
+  observedGeneration 是 StatefulSet 的最新一代。它对应于 StatefulSet 的代数，由 API 服务器在变更时更新。
+
+## StatefulSetList {#StatefulSetList}
+
+<!-- 
+StatefulSetList is a collection of StatefulSets. 
+-->
+
+StatefulSetList 是 StatefulSet 的集合。
+
+<hr>
+
+- **apiVersion**: apps/v1
+
+- **kind**: StatefulSetList
+
+- **metadata** (<a href="{{< ref "../common-definitions/list-meta#ListMeta" >}}">ListMeta</a>)
+
+  <!-- 
+  Standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata 
+  -->
+
+  标准的对象元数据。更多信息： https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+
+<!-- 
+- **items** ([]<a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSet" >}}">StatefulSet</a>), required
+
+  Items is the list of stateful sets.  
+-->
+
+- **items** ([]<a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSet" >}}">StatefulSet</a>), 必需
+
+  items 是 StatefulSet 的列表。
+
+<!-- 
+## Operations {#Operations} 
+-->
+## 操作   {#operations}
+
+<hr>
+
+<!-- 
+### `get` read the specified StatefulSet 
+#### HTTP Request
+-->
+### `get` 读取指定的 StatefulSet
+#### HTTP 请求
+
+GET /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+
+  name of the StatefulSet  
+-->
+- **name** (**路径参数**): string, 必需
+
+  StatefulSet 的名称。
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSet" >}}">StatefulSet</a>): OK
+
+401: Unauthorized
+
+<!-- 
+### `get` read status of the specified StatefulSet 
+#### HTTP Request 
+-->
+### `get` 读取指定 StatefulSet 的状态
+#### HTTP 请求
+
+GET /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}/status
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+
+  name of the StatefulSet  
+-->
+- **name** (**路径参数**): string, 必需
+
+  StatefulSet 的名称。
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSet" >}}">StatefulSet</a>): OK
+
+401: Unauthorized
+
+<!-- 
+### `list` list or watch objects of kind StatefulSet 
+#### HTTP Request 
+-->
+### `list` 列出或监视 StatefulSet 类型的对象
+#### HTTP 请求
+
+GET /apis/apps/v1/namespaces/{namespace}/statefulsets
+
+<!-- 
+#### Parameters
+-->
+#### 参数
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+
+<!-- 
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a> 
+-->
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a> 
+
+<!-- 
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a> 
+-->
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a> 
+
+<!-- 
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a> 
+-->
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!-- 
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a> 
+-->
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a> 
+
+<!-- 
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a> 
+-->
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a> 
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+-->
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!-- 
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a> 
+-->
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a> 
+
+<!-- 
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a> 
+-->
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a> 
+
+<!-- 
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a> 
+-->
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a> 
+
+<!-- 
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSetList" >}}">StatefulSetList</a>): OK
+
+401: Unauthorized
+
+<!-- 
+### `list` list or watch objects of kind StatefulSet
+#### HTTP Request
+-->
+### `list` 列出或监视 StatefulSet 类型的对象
+#### HTTP 请求
+
+GET /apis/apps/v1/statefulsets
+
+<!-- 
+#### Parameters
+-->
+#### 参数
+
+<!-- 
+- **allowWatchBookmarks** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a> 
+-->
+- **allowWatchBookmarks** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#allowWatchBookmarks" >}}">allowWatchBookmarks</a>
+
+<!-- 
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a> 
+-->
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a>
+
+<!-- 
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a> 
+-->
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!-- 
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a> 
+-->
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a> 
+
+<!-- 
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a> 
+-->
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+
+<!-- 
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a> 
+-->
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!-- 
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a> 
+-->
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a> 
+
+<!-- 
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a> 
+-->
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a> 
+
+<!-- 
+- **watch** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a> 
+-->
+- **watch** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#watch" >}}">watch</a> 
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSetList" >}}">StatefulSetList</a>): OK
+
+401: Unauthorized
+
+<!-- 
+### `create` create a StatefulSet
+#### HTTP Request 
+-->
+### `create` 创建一个 StatefulSet
+#### HTTP 请求
+
+POST /apis/apps/v1/namespaces/{namespace}/statefulsets
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!-- 
+- **body**: <a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSet" >}}">StatefulSet</a>, required 
+-->
+- **body**: <a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSet" >}}">StatefulSet</a>, 必需
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a> 
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!-- 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a> 
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+  - **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSet" >}}">StatefulSet</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSet" >}}">StatefulSet</a>): Created
+
+202 (<a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSet" >}}">StatefulSet</a>): Accepted
+
+401: Unauthorized
+
+<!-- 
+### `update` replace the specified StatefulSet
+#### HTTP Request 
+-->
+### `update` 替换指定的 StatefulSet
+#### HTTP 请求
+
+PUT /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+
+  name of the StatefulSet 
+-->
+- **name** (**路径参数**): string, 必需
+
+  StatefulSet 的名称 。
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!-- 
+- **body**: <a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSet" >}}">StatefulSet</a>, required 
+-->
+- **body**: <a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSet" >}}">StatefulSet</a>, 必需
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!-- 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a> 
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a> 
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSet" >}}">StatefulSet</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSet" >}}">StatefulSet</a>): Created
+
+401: Unauthorized
+
+<!-- 
+### `update` replace status of the specified StatefulSet
+#### HTTP Request 
+-->
+### `update` 替换指定 StatefulSet 的状态
+#### HTTP 请求
+
+PUT /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}/status
+
+<!-- 
+#### Parameters
+-->
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+
+  name of the StatefulSet 
+-->
+- **name** (**路径参数**): string, 必需
+
+  StatefulSet 的名称。
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+
+<!-- 
+- **body**: <a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSet" >}}">StatefulSet</a>, required 
+-->
+- **body**: <a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSet" >}}">StatefulSet</a>, 必需
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a> 
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a> 
+
+<!-- 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a> 
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSet" >}}">StatefulSet</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSet" >}}">StatefulSet</a>): Created
+
+401: Unauthorized
+
+<!-- 
+### `patch` partially update the specified StatefulSet
+#### HTTP Request 
+-->
+### `patch` 部分更新指定的 StatefulSet
+#### HTTP 请求
+
+PATCH /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}
+
+<!-- 
+#### Parameters
+-->
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+
+  name of the StatefulSet  
+-->
+- **name** (**路径参数**): string, 必需
+
+  StatefulSet 的名称。
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+  -->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!-- 
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required 
+-->
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, 必需
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a> 
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a> 
+
+<!-- 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a> 
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!-- 
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a> 
+-->
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSet" >}}">StatefulSet</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSet" >}}">StatefulSet</a>): Created
+
+401: Unauthorized
+
+<!-- 
+### `patch` partially update status of the specified StatefulSet
+#### HTTP Request 
+-->
+### `patch` 部分更新指定 StatefulSet 的状态
+#### HTTP 请求
+
+PATCH /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}/status
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+ 
+  name of the StatefulSet  
+-->
+- **name** (**路径参数**): string, 必需
+
+  StatefulSet 的名称。
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+<!-- 
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, required 
+-->
+- **body**: <a href="{{< ref "../common-definitions/patch#Patch" >}}">Patch</a>, 必需
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **fieldManager** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a> 
+-->
+- **fieldManager** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldManager" >}}">fieldManager</a>
+
+<!-- 
+- **fieldValidation** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a> 
+-->
+- **fieldValidation** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldValidation" >}}">fieldValidation</a>
+
+<!-- 
+- **force** (*in query*): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a> 
+-->
+- **force** (**查询参数**): boolean
+
+  <a href="{{< ref "../common-parameters/common-parameters#force" >}}">force</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSet" >}}">StatefulSet</a>): OK
+
+201 (<a href="{{< ref "../workload-resources/stateful-set-v1#StatefulSet" >}}">StatefulSet</a>): Created
+
+401: Unauthorized
+
+<!-- 
+### `delete` delete a StatefulSet
+#### HTTP Request 
+-->
+### `delete` 删除一个 StatefulSet
+#### HTTP 请求
+
+DELETE /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **name** (*in path*): string, required
+
+  name of the StatefulSet 
+-->
+- **name** (**路径参数**): string, 必需
+
+  StatefulSet 的名称。
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a> 
+-->
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a> 
+-->
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+202 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): Accepted
+
+401: Unauthorized
+
+<!-- 
+### `deletecollection` delete collection of StatefulSet
+#### HTTP Request 
+-->
+### `deletecollection` 删除 StatefulSet 的集合
+#### HTTP 请求
+
+DELETE /apis/apps/v1/namespaces/{namespace}/statefulsets
+
+<!-- 
+#### Parameters 
+-->
+#### 参数
+
+<!-- 
+- **namespace** (*in path*): string, required
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a> 
+-->
+- **namespace** (**路径参数**): string, 必需
+
+  <a href="{{< ref "../common-parameters/common-parameters#namespace" >}}">namespace</a>
+
+- **body**: <a href="{{< ref "../common-definitions/delete-options#DeleteOptions" >}}">DeleteOptions</a>
+
+<!-- 
+- **continue** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a> 
+-->
+- **continue** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#continue" >}}">continue</a> 
+
+<!-- 
+- **dryRun** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a> 
+-->
+- **dryRun** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#dryRun" >}}">dryRun</a>
+
+<!-- 
+- **fieldSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+-->
+- **fieldSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#fieldSelector" >}}">fieldSelector</a>
+
+<!-- 
+- **gracePeriodSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a> 
+-->
+- **gracePeriodSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#gracePeriodSeconds" >}}">gracePeriodSeconds</a>
+
+<!-- 
+- **labelSelector** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a> 
+-->
+- **labelSelector** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#labelSelector" >}}">labelSelector</a>
+
+<!-- 
+- **limit** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a> 
+-->
+- **limit** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#limit" >}}">limit</a>
+
+<!-- 
+- **pretty** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a> 
+-->
+- **pretty** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#pretty" >}}">pretty</a>
+
+<!-- 
+- **propagationPolicy** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a> 
+-->
+- **propagationPolicy** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#propagationPolicy" >}}">propagationPolicy</a>
+
+<!-- 
+- **resourceVersion** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a> 
+-->
+- **resourceVersion** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersion" >}}">resourceVersion</a>
+
+<!-- 
+- **resourceVersionMatch** (*in query*): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a> 
+-->
+- **resourceVersionMatch** (**查询参数**): string
+
+  <a href="{{< ref "../common-parameters/common-parameters#resourceVersionMatch" >}}">resourceVersionMatch</a>
+
+<!-- 
+- **timeoutSeconds** (*in query*): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a> 
+-->
+- **timeoutSeconds** (**查询参数**): integer
+
+  <a href="{{< ref "../common-parameters/common-parameters#timeoutSeconds" >}}">timeoutSeconds</a>
+
+<!-- 
+#### Response 
+-->
+#### 响应
+
+200 (<a href="{{< ref "../common-definitions/status#Status" >}}">Status</a>): OK
+
+401: Unauthorized
+
diff --git a/content/zh-cn/docs/reference/labels-annotations-taints/_index.md b/content/zh-cn/docs/reference/labels-annotations-taints/_index.md
new file mode 100644
index 0000000000..340a03536d
--- /dev/null
+++ b/content/zh-cn/docs/reference/labels-annotations-taints/_index.md
@@ -0,0 +1,1480 @@
+---
+title: 众所周知的标签、注解和污点
+content_type: concept
+weight: 20
+no_list: true
+---
+
+<!--
+title: Well-Known Labels, Annotations and Taints
+content_type: concept
+weight: 20
+no_list: true
+-->
+
+<!-- overview -->
+<!--
+Kubernetes reserves all labels and annotations in the kubernetes.io namespace.
+
+This document serves both as a reference to the values and as a coordination point for assigning values.
+-->
+Kubernetes 将所有标签和注解保留在 kubernetes.io Namespace中。
+
+本文档既可作为值的参考，也可作为分配值的协调点。
+
+<!-- body -->
+<!--
+## Labels, annotations and taints used on API objects
+
+### app.kubernetes.io/component
+
+Example: `app.kubernetes.io/component=database`
+
+Used on: All Objects
+
+The component within the architecture.
+
+One of the [recommended labels](/docs/concepts/overview/working-with-objects/common-labels/#labels).
+-->
+## API 对象上使用的标签、注解和污点
+
+### app.kubernetes.io/component
+
+例子: `app.kubernetes.io/component=database`
+
+用于: 所有对象
+
+架构中的组件。
+
+[推荐标签](/zh-cn/docs/concepts/overview/working-with-objects/common-labels/#labels)之一。
+
+<!-- ### app.kubernetes.io/created-by
+
+Example: `app.kubernetes.io/created-by=controller-manager`
+
+Used on: All Objects
+
+The controller/user who created this resource.
+
+One of the [recommended labels](/docs/concepts/overview/working-with-objects/common-labels/#labels). -->
+### app.kubernetes.io/created-by
+
+示例：`app.kubernetes.io/created-by=controller-manager`
+
+用于：所有对象
+
+创建此资源的控制器/用户。
+
+[推荐标签](/zh-cn/docs/concepts/overview/working-with-objects/common-labels/#labels)之一。
+
+<!-- ### app.kubernetes.io/instance
+
+Example: `app.kubernetes.io/instance=mysql-abcxzy`
+
+Used on: All Objects
+
+A unique name identifying the instance of an application.
+
+One of the [recommended labels](/docs/concepts/overview/working-with-objects/common-labels/#labels). -->
+### app.kubernetes.io/instance
+
+示例：`app.kubernetes.io/instance=mysql-abcxzy`
+
+用于：所有对象
+
+标识应用实例的唯一名称。
+
+[推荐标签](/zh-cn/docs/concepts/overview/working-with-objects/common-labels/#labels)之一。
+
+<!-- ### app.kubernetes.io/managed-by
+
+Example: `app.kubernetes.io/managed-by=helm`
+
+Used on: All Objects
+
+The tool being used to manage the operation of an application.
+
+One of the [recommended labels](/docs/concepts/overview/working-with-objects/common-labels/#labels). -->
+### app.kubernetes.io/managed-by
+
+示例：`app.kubernetes.io/managed-by=helm`
+
+用于：所有对象
+
+用于管理应用操作的工具。
+
+[推荐标签](/zh-cn/docs/concepts/overview/working-with-objects/common-labels/#labels)之一。
+
+<!-- ### app.kubernetes.io/name
+
+Example: `app.kubernetes.io/name=mysql`
+
+Used on: All Objects
+
+The name of the application.
+
+One of the [recommended labels](/docs/concepts/overview/working-with-objects/common-labels/#labels). -->
+
+### app.kubernetes.io/name
+
+示例：`app.kubernetes.io/name=mysql`
+
+用于：所有对象
+
+应用的名称。
+
+[推荐标签](/zh-cn/docs/concepts/overview/working-with-objects/common-labels/#labels)之一。
+
+<!-- ### app.kubernetes.io/part-of
+
+Example: `app.kubernetes.io/part-of=wordpress`
+
+Used on: All Objects
+
+The name of a higher level application this one is part of.
+
+One of the [recommended labels](/docs/concepts/overview/working-with-objects/common-labels/#labels). -->
+### app.kubernetes.io/part-of
+
+示例：`app.kubernetes.io/part-of=wordpress`
+
+用于：所有对象
+
+此应用所属的更高级别应用的名称。
+
+[推荐标签](/zh-cn/docs/concepts/overview/working-with-objects/common-labels/#labels)之一。
+
+<!-- ### app.kubernetes.io/version
+
+Example: `app.kubernetes.io/version="5.7.21"`
+
+Used on: All Objects
+
+The current version of the application (e.g., a semantic version, revision hash, etc.).
+
+One of the [recommended labels](/docs/concepts/overview/working-with-objects/common-labels/#labels). -->
+### app.kubernetes.io/version
+
+示例：`app.kubernetes.io/version="5.7.21"`
+
+用于：所有对象
+
+应用的当前版本（例如，语义版本、修订哈希等）。
+
+[推荐标签](/zh-cn/docs/concepts/overview/working-with-objects/common-labels/#labels)之一。
+
+<!-- 
+### kubernetes.io/arch
+
+Example: `kubernetes.io/arch=amd64`
+
+Used on: Node
+
+The Kubelet populates this with `runtime.GOARCH` as defined by Go. This can be handy if you are mixing arm and x86 nodes. -->
+
+### kubernetes.io/arch {#kubernetes-io-arch}
+
+例子：`kubernetes.io/arch=amd64`
+
+用于：Node
+
+Kubelet 使用 Go 定义的 `runtime.GOARCH` 填充它。如果你混合使用 ARM 和 X86 节点，这会很方便。
+<!--
+### kubernetes.io/os
+
+Example: `kubernetes.io/os=linux`
+
+Used on: Node
+
+The Kubelet populates this with `runtime.GOOS` as defined by Go. This can be handy if you are mixing operating systems in your cluster (for example: mixing Linux and Windows nodes).
+-->
+### kubernetes.io/os {#kubernetes-io-os}
+
+例子：`kubernetes.io/os=linux`
+
+用于：Node
+
+Kubelet 使用 Go 定义的 `runtime.GOOS` 填充它。如果你在集群中混合使用操作系统（例如：混合 Linux 和 Windows 节点），这会很方便。
+<!--
+### kubernetes.io/metadata.name
+
+Example: `kubernetes.io/metadata.name=mynamespace`
+
+Used on: Namespaces
+
+The Kubernetes API server (part of the {{< glossary_tooltip text="control plane" term_id="control-plane" >}}) 
+sets this label on all namespaces. The label value is set
+to the name of the namespace. You can't change this label's value. 
+
+This is useful if you want to target a specific namespace with a label
+{{< glossary_tooltip text="selector" term_id="selector" >}}.
+-->
+### kubernetes.io/metadata.name {#kubernetes-io-metadata-name}
+
+例子：`kubernetes.io/metadata.name=mynamespace`
+
+用于：Namespace
+
+Kubernetes API 服务器（{{<glossary_tooltip text="控制平面" term_id="control-plane" >}} 的一部分）在所有 Namespace 上设置此标签。
+标签值被设置 Namespace 的名称。你无法更改此标签的值。
+
+如果你想使用标签{{<glossary_tooltip text="选择器" term_id="selector" >}}定位特定 Namespace，这很有用。
+<!--
+### beta.kubernetes.io/arch (deprecated)
+
+This label has been deprecated. Please use `kubernetes.io/arch` instead.
+
+### beta.kubernetes.io/os (deprecated)
+
+This label has been deprecated. Please use `kubernetes.io/os` instead.
+-->
+### beta.kubernetes.io/arch (已弃用) {#beta-kubernetes-io-arch}
+
+此标签已被弃用。请改用 `kubernetes.io/arch`。
+
+### beta.kubernetes.io/os (已弃用) {#beta-kubernetes-io-os}
+
+此标签已被弃用。请改用 `kubernetes.io/os`。
+
+<!--
+### kubernetes.io/hostname {#kubernetesiohostname}
+
+Example: `kubernetes.io/hostname=ip-172-20-114-199.ec2.internal`
+
+Used on: Node
+
+The Kubelet populates this label with the hostname. Note that the hostname can be changed from the "actual" hostname by passing the `--hostname-override` flag to the `kubelet`.
+
+This label is also used as part of the topology hierarchy.  See [topology.kubernetes.io/zone](#topologykubernetesiozone) for more information.
+-->
+### kubernetes.io/hostname {#kubernetesiohostname}
+
+例子：`kubernetes.io/hostname=ip-172-20-114-199.ec2.internal`
+
+用于：Node
+
+Kubelet 使用主机名填充此标签。请注意，可以通过将 `--hostname-override` 标志传递给 `kubelet` 来替代“实际”主机名。
+
+此标签也用作拓扑层次结构的一部分。有关详细信息，请参阅 [topology.kubernetes.io/zone](#topologykubernetesiozone)。
+
+<!--
+### kubernetes.io/change-cause {#change-cause}
+
+Example: `kubernetes.io/change-cause=kubectl edit --record deployment foo`
+
+Used on: All Objects
+
+This annotation is a best guess at why something was changed. 
+
+It is populated when adding `--record` to a `kubectl` command that may change an object.
+-->
+### kubernetes.io/change-cause {#change-cause}
+
+例子：`kubernetes.io/change-cause=kubectl edit --record deployment foo`
+
+用于：所有对象
+
+此注解是对某些事物发生变更的原因的最佳猜测。
+
+将 `--record` 添加到可能会更改对象的 `kubectl` 命令时会填充它。
+
+<!--
+### kubernetes.io/description {#description}
+
+Example: `kubernetes.io/description: "Description of K8s object."`
+
+Used on: All Objects
+
+This annotation is used for describing specific behaviour of given object.
+-->
+### kubernetes.io/description {#description}
+
+例子：`kubernetes.io/description: "Description of K8s object."`
+
+用于：所有对象
+
+此注解用于描述给定对象的特定行为。
+
+<!--
+### kubernetes.io/enforce-mountable-secrets {#enforce-mountable-secrets}
+
+Example: `kubernetes.io/enforce-mountable-secrets: "true"`
+
+Used on: ServiceAccount
+
+The value for this annotation must be **true** to take effect. This annotation indicates that pods running as this service account may only reference Secret API objects specified in the service account's `secrets` field.
+-->
+### kubernetes.io/enforce-mountable-secrets {#enforce-mountable-secrets}
+
+例子：`kubernetes.io/enforce-mountable-secrets: "true"`
+
+用于：ServiceAccount
+
+此注解的值必须为 **true** 才能生效。此注解表示作为此服务帐户运行的 Pod 只能引用在服务帐户的 `secrets` 字段中指定的 Secret API 对象。
+
+<!--
+### controller.kubernetes.io/pod-deletion-cost {#pod-deletion-cost}
+
+Example: `controller.kubernetes.io/pod-deletion-cost=10`
+
+Used on: Pod
+
+This annotation is used to set [Pod Deletion Cost](/docs/concepts/workloads/controllers/replicaset/#pod-deletion-cost)
+which allows users to influence ReplicaSet downscaling order. The annotation parses into an `int32` type.
+-->
+### controller.kubernetes.io/pod-deletion-cost {#pod-deletion-cost}
+
+例子：`controller.kubernetes.io/pod-deletion-cost=10`
+
+用于：Pod
+
+该注解用于设置 [Pod 删除成本](/zh-cn/docs/concepts/workloads/controllers/replicaset/#pod-deletion-cost)允许用户影响 ReplicaSet 缩减顺序。注解解析为 `int32` 类型。
+
+<!-- 
+### kubernetes.io/ingress-bandwidth
+
+Ingress traffic shaping annotation is an experimental feature.
+If you want to enable traffic shaping support, you must add the `bandwidth` plugin to your CNI configuration file (default `/etc/cni/net.d`) and
+ensure that the binary is included in your CNI bin dir (default `/opt/cni/bin`).
+
+Example: `kubernetes.io/ingress-bandwidth: 10M`
+
+Used on: Pod
+
+You can apply quality-of-service traffic shaping to a pod and effectively limit its available bandwidth.
+Ingress traffic (to the pod) is handled by shaping queued packets to effectively handle data.
+To limit the bandwidth on a pod, write an object definition JSON file and specify the data traffic
+speed using `kubernetes.io/ingress-bandwidth` annotation. The unit used for specifying ingress
+rate is bits per second, as a [Quantity](/docs/reference/kubernetes-api/common-definitions/quantity/).
+For example, `10M` means 10 megabits per second. 
+-->
+
+### kubernetes.io/ingress-bandwidth
+
+{{< note >}}
+入站流量控制注解是一项实验性功能。
+如果要启用流量控制支持，必须将 `bandwidth` 插件添加到 CNI 配置文件（默认为`/etc/cni/net.d`）
+并确保二进制文件包含在你的 CNI bin 目录中（默认为`/opt/cni/bin`）。
+{{< /note >}}
+
+示例：`kubernetes.io/ingress-bandwidth: 10M`
+
+用于：Pod
+
+你可以对 Pod 应用服务质量流量控制并有效限制其可用带宽。
+入站流量（到 Pod）通过控制排队的数据包来处理，以有效地处理数据。
+要限制 Pod 的带宽，请编写对象定义 JSON 文件并使用 `kubernetes.io/ingress-bandwidth`
+注解指定数据流量速度。用于指定入站的速率单位是每秒，
+作为[量纲（Quantity）](/zh-cn/docs/reference/kubernetes-api/common-definitions/quantity/)。
+例如，`10M` 表示每秒 10 兆比特。
+
+<!-- 
+### kubernetes.io/egress-bandwidth
+
+Egress traffic shaping annotation is an experimental feature.
+If you want to enable traffic shaping support, you must add the `bandwidth` plugin to your CNI configuration file (default `/etc/cni/net.d`) and
+ensure that the binary is included in your CNI bin dir (default `/opt/cni/bin`).
+
+Example: `kubernetes.io/egress-bandwidth: 10M`
+
+Used on: Pod
+
+Egress traffic (from the pod) is handled by policing, which simply drops packets in excess of the configured rate.
+The limits you place on a pod do not affect the bandwidth of other pods.
+To limit the bandwidth on a pod, write an object definition JSON file and specify the data traffic
+speed using `kubernetes.io/egress-bandwidth` annotation. The unit used for specifying egress
+rate is bits per second, as a [Quantity](/docs/reference/kubernetes-api/common-definitions/quantity/).
+For example, `10M` means 10 megabits per second. 
+-->
+
+### kubernetes.io/egress-bandwidth
+
+{{< note >}}
+出站流量控制注解是一项实验性功能。
+如果要启用流量控制支持，必须将 `bandwidth` 插件添加到 CNI 配置文件（默认为`/etc/cni/net.d`）
+并确保二进制文件包含在你的 CNI bin 目录中（默认为`/opt/cni/bin`）。
+{{< /note >}}
+
+示例：`kubernetes.io/egress-bandwidth: 10M`
+
+用于：Pod
+
+出站流量（来自 pod）由策略控制，策略只是丢弃超过配置速率的数据包。
+你为一个 Pod 所设置的限制不会影响其他 Pod 的带宽。
+要限制 Pod 的带宽，请编写对象定义 JSON 文件并使用 `kubernetes.io/egress-bandwidth` 注解指定数据流量速度。
+用于指定出站的速率单位是每秒比特数，
+以[量纲（Quantity）](/zh-cn/docs/reference/kubernetes-api/common-definitions/quantity/)的形式给出。
+例如，`10M` 表示每秒 10 兆比特。
+
+<!-- ### beta.kubernetes.io/instance-type (deprecated) -->
+### beta.kubernetes.io/instance-type (已弃用) {#beta-kubernetes-io-instance-type}
+
+<!--
+Starting in v1.17, this label is deprecated in favor of [node.kubernetes.io/instance-type](#nodekubernetesioinstance-type).
+-->
+{{< note >}} 从 v1.17 开始，此标签已弃用，取而代之的是 [node.kubernetes.io/instance-type](#nodekubernetesioinstance-type)。 {{< /note >}}
+
+<!--
+### node.kubernetes.io/instance-type {#nodekubernetesioinstance-type}
+
+Example: `node.kubernetes.io/instance-type=m3.medium`
+
+Used on: Node
+
+The Kubelet populates this with the instance type as defined by the `cloudprovider`.
+This will be set only if you are using a `cloudprovider`. This setting is handy
+if you want to target certain workloads to certain instance types, but typically you want
+to rely on the Kubernetes scheduler to perform resource-based scheduling. You should aim to schedule based on properties rather than on instance types (for example: require a GPU, instead of requiring a `g2.2xlarge`).
+-->
+### node.kubernetes.io/instance-type {#nodekubernetesioinstance-type}
+
+例子：`node.kubernetes.io/instance-type=m3.medium`
+
+用于：Node
+
+Kubelet 使用 `cloudprovider` 定义的实例类型填充它。
+仅当你使用 `cloudprovider` 时才会设置此项。如果你希望将某些工作负载定位到某些实例类型，则此设置非常方便，但通常你希望依靠 Kubernetes 调度程序来执行基于资源的调度。
+你应该基于属性而不是实例类型来调度（例如：需要 GPU，而不是需要 `g2.2xlarge`）。
+
+<!--
+### failure-domain.beta.kubernetes.io/region (deprecated) {#failure-domainbetakubernetesioregion}
+
+See [topology.kubernetes.io/region](#topologykubernetesioregion).
+-->
+### failure-domain.beta.kubernetes.io/region (已弃用) {#failure-domainbetakubernetesioregion}
+
+请参阅 [topology.kubernetes.io/region](#topologykubernetesioregion)。
+
+<!--
+Starting in v1.17, this label is deprecated in favor of [topology.kubernetes.io/region](#topologykubernetesioregion).
+-->
+{{< note >}} 从 v1.17 开始，此标签已弃用，取而代之的是 [topology.kubernetes.io/region](#topologykubernetesioregion)。 {{</note>}}
+
+<!--
+### failure-domain.beta.kubernetes.io/zone (deprecated) {#failure-domainbetakubernetesiozone}
+
+See [topology.kubernetes.io/zone](#topologykubernetesiozone).
+-->
+### failure-domain.beta.kubernetes.io/zone (已弃用) {#failure-domainbetakubernetesiozone}
+
+请参阅 [topology.kubernetes.io/zone](#topologykubernetesiozone)。
+
+<!--
+Starting in v1.17, this label is deprecated in favor of [topology.kubernetes.io/zone](#topologykubernetesiozone). 
+-->
+{{< note >}} 从 v1.17 开始，此标签已弃用，取而代之的是 [topology.kubernetes.io/zone](#topologykubernetesiozone)。 {{</note>}}
+
+<!--
+### statefulset.kubernetes.io/pod-name {#statefulsetkubernetesiopod-name}
+
+Example:
+
+`statefulset.kubernetes.io/pod-name=mystatefulset-7`
+
+When a StatefulSet controller creates a Pod for the StatefulSet, the control plane
+sets this label on that Pod. The value of the label is the name of the Pod being created.
+
+See [Pod Name Label](/docs/concepts/workloads/controllers/statefulset/#pod-name-label) in the
+StatefulSet topic for more details.
+-->
+### statefulset.kubernetes.io/pod-name {#statefulsetkubernetesiopod-name}
+
+例子：`statefulset.kubernetes.io/pod-name=mystatefulset-7`
+
+当 StatefulSet 控制器为 StatefulSet 创建 Pod 时，控制平面会在该 Pod 上设置此标签。标签的值是正在创建的 Pod 的名称。
+
+有关详细信息，请参阅 StatefulSet 主题中的 [Pod 名称标签](/zh-cn/docs/concepts/workloads/controllers/statefulset/#pod-name-label)。
+
+<!--
+### topology.kubernetes.io/region {#topologykubernetesioregion}
+
+Example:
+
+`topology.kubernetes.io/region=us-east-1`
+
+See [topology.kubernetes.io/zone](#topologykubernetesiozone).
+-->
+### topology.kubernetes.io/region {#topologykubernetesioregion}
+
+例子：`topology.kubernetes.io/region=us-east-1`
+
+请参阅 [topology.kubernetes.io/zone](#topologykubernetesiozone)。
+
+<!--
+### topology.kubernetes.io/zone {#topologykubernetesiozone}
+
+Example:
+
+`topology.kubernetes.io/zone=us-east-1c`
+
+Used on: Node、PersistentVolume
+
+On Node: The `kubelet` or the external `cloud-controller-manager` populates this with the information as provided by the `cloudprovider`.  This will be set only if you are using a `cloudprovider`. However, you should consider setting this on nodes if it makes sense in your topology.
+
+On PersistentVolume: topology-aware volume provisioners will automatically set node affinity constraints on `PersistentVolumes`.
+
+A zone represents a logical failure domain.  It is common for Kubernetes clusters to span multiple zones for increased availability.  While the exact definition of a zone is left to infrastructure implementations, common properties of a zone include very low network latency within a zone, no-cost network traffic within a zone, and failure independence from other zones.  For example, nodes within a zone might share a network switch, but nodes in different zones should not.
+
+A region represents a larger domain, made up of one or more zones.  It is uncommon for Kubernetes clusters to span multiple regions,  While the exact definition of a zone or region is left to infrastructure implementations, common properties of a region include higher network latency between them than within them, non-zero cost for network traffic between them, and failure independence from other zones or regions.  For example, nodes within a region might share power infrastructure (e.g. a UPS or generator), but nodes in different regions typically would not.
+
+-->
+### topology.kubernetes.io/zone {#topologykubernetesiozone}
+
+例子：`topology.kubernetes.io/zone=us-east-1c`
+
+用于：Node、PersistentVolume
+
+在 Node 上：`kubelet` 或外部 `cloud-controller-manager` 使用 `cloudprovider` 提供的信息填充它。仅当你使用 `cloudprovider` 时才会设置此项。
+但是，如果它在你的拓扑中有意义，你应该考虑在 Node 上设置它。
+
+在 PersistentVolume 上：拓扑感知卷配置器将自动在 `PersistentVolume` 上设置 Node 亲和性约束。
+
+一个 Zone 代表一个逻辑故障域。Kubernetes 集群通常跨越多个 Zone 以提高可用性。虽然 Zone 的确切定义留给基础设施实现，
+但 Zone 的常见属性包括 Zone 内非常低的网络延迟、Zone 内的免费网络流量以及与其他 Zone 的故障独立性。
+例如，一个 Zone 内的 Node 可能共享一个网络交换机，但不同 Zone 中的 Node 无法共享交换机。
+
+一个 Region 代表一个更大的域，由一个或多个 Zone 组成。Kubernetes 集群跨多个 Region 并不常见，虽然 Zone 或 Region 的确切定义留给基础设施实现，
+但 Region 的共同属性包括它们之间的网络延迟比它们内部更高，它们之间的网络流量成本非零，以及与其他 Zone 或 Region 的故障独立性。
+例如，一个 Region 内的 Node 可能共享电力基础设施（例如 UPS 或发电机），但不同 Region 的 Node 通常不会共享电力基础设施。
+
+<!--
+Kubernetes makes a few assumptions about the structure of zones and regions:
+1) regions and zones are hierarchical: zones are strict subsets of regions and no zone can be in 2 regions
+2) zone names are unique across regions; for example region "africa-east-1" might be comprised of zones "africa-east-1a" and "africa-east-1b"
+-->
+Kubernetes 对 Zone 和 Region 的结构做了一些假设：
+
+1. Zone 和 Region 是分层的：Zone 是 Region 的严格子集，没有 Zone 可以在两个 Region 中；
+
+2. Zone 名称跨 Region 是唯一的；例如，Region “africa-east-1” 可能由 Zone “africa-east-1a” 和 “africa-east-1b” 组成。
+
+<!--
+It should be safe to assume that topology labels do not change.  Even though labels are strictly mutable, consumers of them can assume that a given node is not going to be moved between zones without being destroyed and recreated.
+-->
+你可以大胆假设拓扑标签不会改变。尽管严格地讲标签是可变的，但节点的用户可以假设给定
+节点只能通过销毁和重新创建才能完成 Zone 间移动。
+
+<!--
+Kubernetes can use this information in various ways.  For example, the scheduler automatically tries to spread the Pods in a ReplicaSet across nodes in a single-zone cluster (to reduce the impact of node failures, see [kubernetes.io/hostname](#kubernetesiohostname)). With multiple-zone clusters, this spreading behavior also applies to zones (to reduce the impact of zone failures). This is achieved via _SelectorSpreadPriority_.
+-->
+Kubernetes 可以通过多种方式使用这些信息。例如，调度程序会自动尝试将 ReplicaSet 中的 Pod
+分布在单 Zone 集群中的多个节点上（以便减少节点故障的影响，请参阅 [kubernetes.io/hostname](#kubernetesiohostname)）。
+对于多 Zone 集群，这种分布行为也适用于 Zone（以减少 Zone 故障的影响）。
+Zone 级别的 Pod 分布是通过 _SelectorSpreadPriority_ 实现的。
+
+<!--
+_SelectorSpreadPriority_ is a best effort placement. If the zones in your cluster are heterogeneous (for example: different numbers of nodes, different types of nodes, or different pod resource requirements), this placement might prevent equal spreading of your Pods across zones. If desired, you can use homogenous zones (same number and types of nodes) to reduce the probability of unequal spreading.
+-->
+_SelectorSpreadPriority_ 是一个尽力而为的放置机制。如果集群中的 Zone 是异构的
+（例如：节点数量不同、节点类型不同或 Pod 资源需求有别等），这种放置机制可能会让你的
+Pod 无法实现跨 Zone 均匀分布。
+如果需要，你可以使用同质 Zone（节点数量和类型均相同）来减少不均匀分布的可能性。
+
+<!--
+The scheduler (through the _VolumeZonePredicate_ predicate) also will ensure that Pods, that claim a given volume, are only placed into the same zone as that volume. Volumes cannot be attached across zones.
+-->
+调度程序还将（通过 _VolumeZonePredicate_ 条件）确保申领给定卷的 Pod 仅被放置在与该卷相同的 Zone 中。
+卷不能跨 Zone 挂接。
+
+<!--
+If `PersistentVolumeLabel` does not support automatic labeling of your PersistentVolumes, you should consider
+adding the labels manually (or adding support for `PersistentVolumeLabel`). With `PersistentVolumeLabel`, the scheduler prevents Pods from mounting volumes in a different zone. If your infrastructure doesn't have this constraint, you don't need to add the zone labels to the volumes at all.
+-->
+你应该考虑手动添加标签（或添加对 `PersistentVolumeLabel` 的支持）。
+基于 `PersistentVolumeLabel`，调度程序可以防止 Pod 挂载来自其他 Zone 的卷。如果你的基础架构没有此限制，则不需要将 Zone 标签添加到卷上。
+
+<!--
+### volume.beta.kubernetes.io/storage-provisioner (deprecated)
+
+Example: `volume.beta.kubernetes.io/storage-provisioner: k8s.io/minikube-hostpath`
+
+Used on: PersistentVolumeClaim
+
+This annotation has been deprecated.
+-->
+### volume.beta.kubernetes.io/storage-provisioner (已弃用) {#volume-beta-kubernetes-io-storage-provisioner}
+
+例子：`volume.beta.kubernetes.io/storage-provisioner: k8s.io/minikube-hostpath`
+
+用于：PersistentVolumeClaim
+
+此注解已被弃用。
+
+<!--
+### volume.kubernetes.io/storage-provisioner
+
+Used on: PersistentVolumeClaim
+
+This annotation will be added to dynamic provisioning required PVC.
+-->
+### volume.kubernetes.io/storage-provisioner {#volume-kubernetes-io-storage-provisioner}
+
+用于：PersistentVolumeClaim
+
+此注解将被添加到根据需要动态制备的 PVC 上。
+
+<!--
+### node.kubernetes.io/windows-build {#nodekubernetesiowindows-build}
+
+Example: `node.kubernetes.io/windows-build=10.0.17763`
+
+Used on: Node
+
+When the kubelet is running on Microsoft Windows, it automatically labels its node to record the version of Windows Server in use.
+
+The label's value is in the format "MajorVersion.MinorVersion.BuildNumber".
+-->
+### node.kubernetes.io/windows-build {#nodekubernetesiowindows-build}
+
+例子：`node.kubernetes.io/windows-build=10.0.17763`
+
+用于：Node
+
+当 kubelet 在 Microsoft Windows 上运行时，它会自动标记其所在节点以记录所使用的 Windows Server 的版本。
+
+标签的值采用 “MajorVersion.MinorVersion.BuildNumber” 格式。
+
+<!--
+### service.kubernetes.io/headless {#servicekubernetesioheadless}
+
+Example: `service.kubernetes.io/headless=""`
+
+Used on: Service
+
+The control plane adds this label to an Endpoints object when the owning Service is headless.
+-->
+### service.kubernetes.io/headless {#servicekubernetesioheadless}
+
+例子：`service.kubernetes.io/headless=""`
+
+用于：Service
+
+当拥有的 Service 是无头类型时，控制平面将此标签添加到 Endpoints 对象。
+
+<!--
+### kubernetes.io/service-name {#kubernetesioservice-name}
+
+Example: `kubernetes.io/service-name="nginx"`
+
+Used on: Service
+
+Kubernetes uses this label to differentiate multiple Services. Used currently for `ELB`(Elastic Load Balancer) only.
+-->
+### kubernetes.io/service-name {#kubernetesioservice-name}
+
+例子：`kubernetes.io/service-name="nginx"`
+
+用于：Service
+
+Kubernetes 使用这个标签来区分多个服务。目前仅用于 `ELB` （弹性负载均衡器）。
+
+<!-- 
+### kubernetes.io/service-account.name
+
+Example: `kubernetes.io/service-account.name: "sa-name"`
+
+Used on: Secret
+
+This annotation records the {{< glossary_tooltip term_id="name" text="name">}} of the
+ServiceAccount that the token (stored in the Secret of type `kubernetes.io/service-account-token`) represents.
+-->
+### kubernetes.io/service-account.name
+
+示例：`kubernetes.io/service-account.name: "sa-name"`
+
+用于：Secret
+
+这个注解记录了令牌（存储在 `kubernetes.io/service-account-token` 类型的 Secret 中）所代表的
+ServiceAccount 的{{<glossary_tooltip term_id="name" text="名称">}}。
+
+<!-- 
+### kubernetes.io/service-account.uid
+
+Example: `kubernetes.io/service-account.uid: da68f9c6-9d26-11e7-b84e-002dc52800da`
+
+Used on: Secret
+
+This annotation records the {{< glossary_tooltip term_id="uid" text="unique ID" >}} of the
+ServiceAccount that the token (stored in the Secret of type `kubernetes.io/service-account-token`) represents.
+-->
+### kubernetes.io/service-account.uid
+
+示例：`kubernetes.io/service-account.uid: da68f9c6-9d26-11e7-b84e-002dc52800da`
+
+用于：Secret
+
+该注解记录了令牌（存储在 `kubernetes.io/service-account-token` 类型的 Secret 中）所代表的
+ServiceAccount 的{{<glossary_tooltip term_id="uid" text="唯一 ID" >}}。
+
+<!--
+### endpointslice.kubernetes.io/managed-by {#endpointslicekubernetesiomanaged-by}
+
+Example: `endpointslice.kubernetes.io/managed-by="controller"`
+
+Used on: EndpointSlices
+
+The label is used to indicate the controller or entity that manages an EndpointSlice. This label aims to enable different EndpointSlice objects to be managed by different controllers or entities within the same cluster.
+-->
+### endpointslice.kubernetes.io/managed-by {#endpointslicekubernetesiomanaged-by}
+
+例子：`endpointslice.kubernetes.io/managed-by="controller"`
+
+用于：EndpointSlice
+
+用于标示管理 EndpointSlice 的控制器或实体。该标签旨在使不同的 EndpointSlice
+对象能够由同一集群内的不同控制器或实体管理。
+
+<!--
+### endpointslice.kubernetes.io/skip-mirror {#endpointslicekubernetesioskip-mirror}
+
+Example: `endpointslice.kubernetes.io/skip-mirror="true"`
+
+Used on: Endpoints
+
+The label can be set to `"true"` on an Endpoints resource to indicate that the EndpointSliceMirroring controller should not mirror this resource with EndpointSlices.
+-->
+### endpointslice.kubernetes.io/skip-mirror {#endpointslicekubernetesioskip-mirror}
+
+例子：`endpointslice.kubernetes.io/skip-mirror="true"`
+
+用于：Endpoints
+
+可以在 Endpoints 资源上将此标签设置为 `"true"`，以指示 EndpointSliceMirroring
+控制器不应使用 EndpointSlice 镜像此 Endpoints 资源。
+
+<!--
+### service.kubernetes.io/service-proxy-name {#servicekubernetesioservice-proxy-name}
+
+Example: `service.kubernetes.io/service-proxy-name="foo-bar"`
+
+Used on: Service
+
+The kube-proxy has this label for custom proxy, which delegates service control to custom proxy.
+-->
+### service.kubernetes.io/service-proxy-name {#servicekubernetesioservice-proxy-name}
+
+例子：`service.kubernetes.io/service-proxy-name="foo-bar"`
+
+用于：Service
+
+kube-proxy 自定义代理会使用这个标签，它将服务控制委托给自定义代理。
+
+<!--
+### experimental.windows.kubernetes.io/isolation-type (deprecated) {#experimental-windows-kubernetes-io-isolation-type}
+
+Example: `experimental.windows.kubernetes.io/isolation-type: "hyperv"`
+
+Used on: Pod
+
+The annotation is used to run Windows containers with Hyper-V isolation. To use Hyper-V isolation feature and create a Hyper-V isolated container, the kubelet should be started with feature gates HyperVContainer=true and the Pod should include the annotation experimental.windows.kubernetes.io/isolation-type=hyperv.
+-->
+### experimental.windows.kubernetes.io/isolation-type (已弃用) {#experimental-windows-kubernetes-io-isolation-type}
+
+例子：`experimental.windows.kubernetes.io/isolation-type: "hyperv"`
+
+用于：Pod
+
+注解用于运行具有 Hyper-V 隔离的 Windows 容器。要使用 Hyper-V 隔离功能并创建 Hyper-V
+隔离容器，kubelet 启动时应该需要设置特性门控 HyperVContainer=true。
+
+<!--
+You can only set this annotation on Pods that have a single container.
+Starting from v1.20, this annotation is deprecated. Experimental Hyper-V support was removed in 1.21.
+-->
+{{< note >}}
+你只能在具有单个容器的 Pod 上设置此注解。
+从 v1.20 开始，此注解已弃用。1.21 中删除了实验性 Hyper-V 支持。
+{{</note>}}
+
+<!--
+### ingressclass.kubernetes.io/is-default-class
+
+Example: `ingressclass.kubernetes.io/is-default-class: "true"`
+
+Used on: IngressClass
+
+When a single IngressClass resource has this annotation set to `"true"`, new Ingress resource without a class specified will be assigned this default class.
+-->
+### ingressclass.kubernetes.io/is-default-class {#ingressclass-kubernetes-io-is-default-class}
+
+例子：`ingressclass.kubernetes.io/is-default-class: "true"`
+
+用于：IngressClass
+
+当单个 IngressClass 资源将此注解设置为 `"true"`时，新的未指定 Ingress 类的 Ingress
+资源将被设置为此默认类。
+
+<!--
+### kubernetes.io/ingress.class (deprecated)
+
+Starting in v1.18, this annotation is deprecated in favor of `spec.ingressClassName`.
+-->
+### kubernetes.io/ingress.class (已弃用) {#kubernetes-io-ingress-class}
+
+{{< note >}}
+从 v1.18 开始，不推荐使用此注解以鼓励使用 `spec.ingressClassName`。
+{{</note>}}
+
+<!--
+### storageclass.kubernetes.io/is-default-class
+
+Example: `storageclass.kubernetes.io/is-default-class=true`
+
+Used on: StorageClass
+
+When a single StorageClass resource has this annotation set to `"true"`, new PersistentVolumeClaim
+resource without a class specified will be assigned this default class.
+-->
+### storageclass.kubernetes.io/is-default-class {#storageclass-kubernetes-io-is-default-class}
+
+例子：`storageclass.kubernetes.io/is-default-class=true`
+
+用于：StorageClass
+
+当单个 StorageClass 资源将此注解设置为 `"true"` 时，新的未指定存储类的 PersistentVolumeClaim
+资源将被设置为此默认类。
+
+<!--
+### alpha.kubernetes.io/provided-node-ip
+
+Example: `alpha.kubernetes.io/provided-node-ip: "10.0.0.1"`
+
+Used on: Node
+
+The kubelet can set this annotation on a Node to denote its configured IPv4 address.
+
+When kubelet is started with the "external" cloud provider, it sets this annotation on the Node to denote an IP address set from the command line flag (`--node-ip`). This IP is verified with the cloud provider as valid by the cloud-controller-manager.
+-->
+### alpha.kubernetes.io/provided-node-ip {#alpha-kubernetes-io-provided-node-ip}
+
+例子：`alpha.kubernetes.io/provided-node-ip: "10.0.0.1"`
+
+用于：Node
+
+kubelet 可以在 Node 上设置此注解来表示其配置的 IPv4 地址。
+
+当使用“外部”云驱动启动时，kubelet 会在 Node 上设置此注解以表示从命令行标志 ( `--node-ip` ) 设置的 IP 地址。
+云控制器管理器通过云驱动验证此 IP 是否有效。
+
+<!--
+### batch.kubernetes.io/job-completion-index
+
+Example: `batch.kubernetes.io/job-completion-index: "3"`
+
+Used on: Pod
+
+The Job controller in the kube-controller-manager sets this annotation for Pods
+created with Indexed [completion mode](/docs/concepts/workloads/controllers/job/#completion-mode).
+-->
+### batch.kubernetes.io/job-completion-index {#batch-kubernetes-io-job-completion-index}
+
+例子：`batch.kubernetes.io/job-completion-index: "3"`
+
+用于：Pod
+
+kube-controller-manager 中的 Job 控制器为使用 Indexed
+[完成模式](/zh-cn/docs/concepts/workloads/controllers/job/#completion-mode)创建的 Pod
+设置此注解。
+
+<!--
+### kubectl.kubernetes.io/default-container
+
+Example: `kubectl.kubernetes.io/default-container: "front-end-app"`
+
+The value of the annotation is the container name that is default for this Pod. For example, `kubectl logs` or `kubectl exec` without `-c` or `--container` flag will use this default container.
+-->
+### kubectl.kubernetes.io/default-container {#kubectl-kubernetes-io-default-container}
+
+例子：`kubectl.kubernetes.io/default-container: "front-end-app"`
+
+此注解的值是此 Pod 的默认容器名称。例如，未指定 `-c` 或 `--container` 标志时执行
+`kubectl logs` 或 `kubectl exec` 命令将使用此默认容器。
+
+<!--
+### endpoints.kubernetes.io/over-capacity
+
+Example: `endpoints.kubernetes.io/over-capacity:truncated`
+
+Used on: Endpoints
+
+In Kubernetes clusters v1.22 (or later), the Endpoints controller adds this annotation to an Endpoints resource if it has more than 1000 endpoints. The annotation indicates that the Endpoints resource is over capacity and the number of endpoints has been truncated to 1000.
+-->
+### endpoints.kubernetes.io/over-capacity {#endpoints-kubernetes-io-over-capacity}
+
+例子：`endpoints.kubernetes.io/over-capacity:truncated`
+
+用于：Endpoints
+
+在 Kubernetes 集群 v1.22（或更高版本）中，如果 Endpoints 资源超过 1000 个，Endpoints
+控制器会将此注解添加到 Endpoints 资源。
+注解表示 Endpoints 资源已超出容量，并且已将 Endpoints 数截断为 1000。
+
+<!--
+### batch.kubernetes.io/job-tracking
+
+Example: `batch.kubernetes.io/job-tracking: ""`
+
+Used on: Jobs
+
+The presence of this annotation on a Job indicates that the control plane is
+[tracking the Job status using finalizers](/docs/concepts/workloads/controllers/job/#job-tracking-with-finalizers).
+You should **not** manually add or remove this annotation.
+-->
+### batch.kubernetes.io/job-tracking {#batch-kubernetes-io-job-tracking}
+
+例子：`batch.kubernetes.io/job-tracking: ""`
+
+用于：Job
+
+Job 上存在此注解表明控制平面正在[使用 Finalizer 追踪 Job](/zh-cn/docs/concepts/workloads/controllers/job/#job-tracking-with-finalizers)。
+你 **不** 可以手动添加或删除此注解。
+
+<!--
+### scheduler.alpha.kubernetes.io/preferAvoidPods (deprecated) {#scheduleralphakubernetesio-preferavoidpods}
+
+Used on: Nodes
+
+This annotation requires the [NodePreferAvoidPods scheduling plugin](/docs/reference/scheduling/config/#scheduling-plugins)
+to be enabled. The plugin is deprecated since Kubernetes 1.22.
+Use [Taints and Tolerations](/docs/concepts/scheduling-eviction/taint-and-toleration/) instead.
+
+**The taints listed below are always used on Nodes**
+-->
+### scheduler.alpha.kubernetes.io/preferAvoidPods (deprecated) {#scheduleralphakubernetesio-preferavoidpods}
+
+用于：Node
+
+此注解需要启用 [NodePreferAvoidPods 调度插件](/zh-cn/docs/reference/scheduling/config/#scheduling-plugins)。
+该插件自 Kubernetes 1.22 起已被弃用。
+请改用[污点和容忍度](/zh-cn/docs/concepts/scheduling-eviction/taint-and-toleration/)。
+
+**下面列出的污点总是在 Node 上使用**
+
+<!--
+### node.kubernetes.io/not-ready
+
+Example: `node.kubernetes.io/not-ready:NoExecute`
+
+The node controller detects whether a node is ready by monitoring its health and adds or removes this taint accordingly.
+
+### node.kubernetes.io/unreachable
+
+Example: `node.kubernetes.io/unreachable:NoExecute`
+
+The node controller adds the taint to a node corresponding to the [NodeCondition](/docs/concepts/architecture/nodes/#condition) `Ready` being `Unknown`.
+-->
+### node.kubernetes.io/not-ready {#node-kubernetes-io-not-ready}
+
+例子：`node.kubernetes.io/not-ready:NoExecute`
+
+Node 控制器通过监控 Node 的健康状况来检测 Node 是否准备就绪，并相应地添加或删除此污点。
+
+### node.kubernetes.io/unreachable {#node-kubernetes-io-unreachable}
+
+例子：`node.kubernetes.io/unreachable:NoExecute`
+
+Node 控制器将此污点添加到对应[节点状况](/zh-cn/docs/concepts/architecture/nodes/#condition) `Ready`
+为 `Unknown` 的 Node 上。
+
+<!--
+### node.kubernetes.io/unschedulable
+
+Example: `node.kubernetes.io/unschedulable:NoSchedule`
+
+The taint will be added to a node when initializing the node to avoid race condition.
+-->
+### node.kubernetes.io/unschedulable {#node-kubernetes-io-unschedulable}
+
+例子：`node.kubernetes.io/unschedulable:NoSchedule`
+
+在初始化 Node 期间，为避免竞争条件，此污点将被添加到 Node 上。
+
+<!--
+### node.kubernetes.io/memory-pressure
+
+Example: `node.kubernetes.io/memory-pressure:NoSchedule`
+
+The kubelet detects memory pressure based on `memory.available` and `allocatableMemory.available` observed on a Node. The observed values are then compared to the corresponding thresholds that can be set on the kubelet to determine if the Node condition and taint should be added/removed.
+-->
+### node.kubernetes.io/memory-pressure {#node-kubernetes-io-memory-pressure}
+
+例子：`node.kubernetes.io/memory-pressure:NoSchedule`
+
+kubelet 根据在 Node 上观察到的 `memory.available` 和 `allocatableMemory.available` 检测内存压力。
+然后将观察到的值与可以在 kubelet 上设置的相应阈值进行比较，以确定是否应添加/删除 Node 状况和污点。
+
+<!--
+### node.kubernetes.io/disk-pressure
+
+Example: `node.kubernetes.io/disk-pressure:NoSchedule`
+
+The kubelet detects disk pressure based on `imagefs.available`, `imagefs.inodesFree`, `nodefs.available` and `nodefs.inodesFree`(Linux only) observed on a Node. The observed values are then compared to the corresponding thresholds that can be set on the kubelet to determine if the Node condition and taint should be added/removed.
+-->
+### node.kubernetes.io/disk-pressure {#node-kubernetes-io-disk-pressure}
+
+例子：`node.kubernetes.io/disk-pressure:NoSchedule`
+
+kubelet 根据在 Node 上观察到的 `imagefs.available`、`imagefs.inodesFree`、`nodefs.available` 和 `nodefs.inodesFree`（仅限 Linux ）检测磁盘压力。
+然后将观察到的值与可以在 kubelet 上设置的相应阈值进行比较，以确定是否应添加/删除 Node 状况和污点。
+
+<!--
+### node.kubernetes.io/network-unavailable
+
+Example: `node.kubernetes.io/network-unavailable:NoSchedule`
+
+This is initially set by the kubelet when the cloud provider used indicates a requirement for additional network configuration. Only when the route on the cloud is configured properly will the taint be removed by the cloud provider.
+-->
+### node.kubernetes.io/network-unavailable {#node-kubernetes-io-network-unavailable}
+
+例子：`node.kubernetes.io/network-unavailable:NoSchedule`
+
+当使用的云驱动指示需要额外的网络配置时，此注解最初由 kubelet 设置。
+只有云上的路由被正确地配置了，此污点才会被云驱动移除
+
+<!--
+### node.kubernetes.io/pid-pressure
+
+Example: `node.kubernetes.io/pid-pressure:NoSchedule`
+
+The kubelet checks D-value of the size of `/proc/sys/kernel/pid_max` and the PIDs consumed by Kubernetes on a node to get the number of available PIDs that referred to as the `pid.available` metric. The metric is then compared to the corresponding threshold that can be set on the kubelet to determine if the node condition and taint should be added/removed.
+-->
+### node.kubernetes.io/pid-pressure {#node-kubernetes-io-pid-pressure}
+
+例子：`node.kubernetes.io/pid-pressure:NoSchedule`
+
+kubelet 检查 `/proc/sys/kernel/pid_max` 大小的 D 值和 Kubernetes 在 Node 上消耗的 PID，
+以获取可用 PID 数量，并将其作为 `pid.available` 指标值。
+然后该指标与在 kubelet 上设置的相应阈值进行比较，以确定是否应该添加/删除 Node 状况和污点。
+
+### node.kubernetes.io/out-of-service
+<!--
+Example: `node.kubernetes.io/out-of-service:NoExecute`
+A user can manually add the taint to a Node marking it out-of-service. If the `NodeOutOfServiceVolumeDetach` 
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled on
+`kube-controller-manager`, and a Node is marked out-of-service with this taint, the pods on the node will be forcefully deleted if there are no matching tolerations on it and volume detach operations for the pods terminating on the node will happen immediately. This allows the Pods on the out-of-service node to recover quickly on a different node.
+-->
+例子：`node.kubernetes.io/out-of-service:NoExecute`
+
+用户可以手动将污点添加到节点，将其标记为停止服务。
+如果 `kube-controller-manager` 上启用了 `NodeOutOfServiceVolumeDetach`
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)，
+并且一个节点被这个污点标记为停止服务，如果节点上的 Pod 没有对应的容忍度，
+这类 Pod 将被强制删除，并且，针对在节点上被终止 Pod 的卷分离操作将被立即执行。
+
+{{< caution >}}
+<!--
+Refer to
+[Non-graceful node shutdown](/docs/concepts/architecture/nodes/#non-graceful-node-shutdown)
+for further details about when and how to use this taint.
+-->
+有关何时以及如何使用此污点的更多详细信息，请参阅[非正常节点关闭](/zh-cn/docs/concepts/architecture/nodes/#non-graceful-node-shutdown)。
+{{< /caution >}}
+
+<!--
+### node.cloudprovider.kubernetes.io/uninitialized
+
+Example: `node.cloudprovider.kubernetes.io/uninitialized:NoSchedule`
+
+Sets this taint on a node to mark it as unusable, when kubelet is started with the "external" cloud provider, until a controller from the cloud-controller-manager initializes this node, and then removes the taint.
+-->
+### node.cloudprovider.kubernetes.io/uninitialized {#node-cloudprovider-kubernetes-io-shutdown}
+
+例子：`node.cloudprovider.kubernetes.io/uninitialized:NoSchedule`
+
+在使用“外部”云驱动启动 kubelet 时，在 Node 上设置此污点以将其标记为不可用，直到来自
+cloud-controller-manager 的控制器初始化此 Node，然后移除污点。
+
+<!--
+### node.cloudprovider.kubernetes.io/shutdown
+
+Example: `node.cloudprovider.kubernetes.io/shutdown:NoSchedule`
+
+If a Node is in a cloud provider specified shutdown state, the Node gets tainted accordingly with `node.cloudprovider.kubernetes.io/shutdown` and the taint effect of `NoSchedule`.
+-->
+### node.cloudprovider.kubernetes.io/shutdown {#node-cloudprovider-kubernetes-io-shutdown}
+
+例子：`node.cloudprovider.kubernetes.io/shutdown:NoSchedule`
+
+如果 Node 处于云驱动所指定的关闭状态，则 Node 会相应地被设置污点，对应的污点和效果为
+`node.cloudprovider.kubernetes.io/shutdown` 和 `NoSchedule`。
+
+<!--
+### pod-security.kubernetes.io/enforce
+
+Example: `pod-security.kubernetes.io/enforce: baseline`
+
+Used on: Namespace
+
+Value **must** be one of `privileged`, `baseline`, or `restricted` which correspond to
+[Pod Security Standard](/docs/concepts/security/pod-security-standards) levels. Specifically,
+the `enforce` label _prohibits_ the creation of any Pod in the labeled Namespace which does not meet
+the requirements outlined in the indicated level.
+
+See [Enforcing Pod Security at the Namespace Level](/docs/concepts/security/pod-security-admission)
+for more information.
+-->
+### pod-security.kubernetes.io/enforce {#pod-security-kubernetes-io-enforce}
+
+例子：`pod-security.kubernetes.io/enforce: baseline`
+
+用于：Namespace
+
+值**必须**是 `privileged`、`baseline` 或 `restricted` 之一，它们对应于
+[Pod 安全标准](/zh-cn/docs/concepts/security/pod-security-standards) 级别。
+特别地，`enforce` 标签 **禁止** 在带标签的 Namespace 中创建任何不符合指示级别要求的 Pod。
+
+请请参阅[在名字空间级别实施 Pod 安全性](/zh-cn/docs/concepts/security/pod-security-admission)了解更多信息。
+
+<!--
+### pod-security.kubernetes.io/enforce-version
+
+Example: `pod-security.kubernetes.io/enforce-version: {{< skew currentVersion >}}`
+
+Used on: Namespace
+
+Value **must** be `latest` or a valid Kubernetes version in the format `v<MAJOR>.<MINOR>`.
+This determines the version of the [Pod Security Standard](/docs/concepts/security/pod-security-standards) 
+policies to apply when validating a submitted Pod.
+
+See [Enforcing Pod Security at the Namespace Level](/docs/concepts/security/pod-security-admission)
+for more information.
+-->
+### pod-security.kubernetes.io/enforce-version {#pod-security-kubernetes-io-enforce-version}
+
+例子：`pod-security.kubernetes.io/enforce-version: {{< skew currentVersion >}}`
+
+用于：Namespace
+
+值**必须**是 `latest` 或格式为 `v<MAJOR>.<MINOR>` 的有效 Kubernetes 版本。
+此注解决定了在验证提交的 Pod 时要应用的 [Pod 安全标准](/zh-cn/docs/concepts/security/pod-security-standards)策略的版本。
+
+请参阅[在名字空间级别实施 Pod 安全性](/zh-cn/docs/concepts/security/pod-security-admission)了解更多信息。
+
+<!--
+### pod-security.kubernetes.io/audit
+
+Example: `pod-security.kubernetes.io/audit: baseline`
+
+Used on: Namespace
+
+Value **must** be one of `privileged`, `baseline`, or `restricted` which correspond to
+[Pod Security Standard](/docs/concepts/security/pod-security-standards) levels. Specifically,
+the `audit` label does not prevent the creation of a Pod in the labeled Namespace which does not meet
+the requirements outlined in the indicated level, but adds an audit annotation to that Pod.
+
+See [Enforcing Pod Security at the Namespace Level](/docs/concepts/security/pod-security-admission)
+for more information.
+-->
+### pod-security.kubernetes.io/audit {#pod-security-kubernetes-io-audit}
+
+例子：`pod-security.kubernetes.io/audit: baseline`
+
+用于：Namespace
+
+值**必须**是与 [Pod 安全标准](/zh-cn/docs/concepts/security/pod-security-standards) 级别相对应的
+`privileged`、`baseline` 或 `restricted` 之一。
+具体来说，`audit` 标签不会阻止在带标签的 Namespace 中创建不符合指示级别要求的 Pod，
+但会向该 Pod 添加审计注解。
+
+请参阅[在名字空间级别实施 Pod 安全性](/zh-cn/docs/concepts/security/pod-security-admission)了解更多信息。
+
+<!--
+### pod-security.kubernetes.io/audit-version
+
+Example: `pod-security.kubernetes.io/audit-version: {{< skew currentVersion >}}`
+
+Used on: Namespace
+
+Value **must** be `latest` or a valid Kubernetes version in the format `v<MAJOR>.<MINOR>`.
+This determines the version of the [Pod Security Standard](/docs/concepts/security/pod-security-standards) 
+policies to apply when validating a submitted Pod.
+
+See [Enforcing Pod Security at the Namespace Level](/docs/concepts/security/pod-security-admission)
+for more information.
+-->
+### pod-security.kubernetes.io/audit-version {#pod-security-kubernetes-io-audit-version}
+
+例子：`pod-security.kubernetes.io/audit-version: {{< skew currentVersion >}}`
+
+用于：Namespace
+
+值**必须**是 `latest` 或格式为 `v<MAJOR>.<MINOR>` 的有效 Kubernetes 版本。
+此注解决定了在验证提交的 Pod 时要应用的  [Pod 安全标准](/zh-cn/docs/concepts/security/pod-security-standards)策略的版本。
+
+请参阅[在名字空间级别实施 Pod 安全性](/zh-cn/docs/concepts/security/pod-security-admission)了解更多信息。
+
+<!--
+### pod-security.kubernetes.io/warn
+
+Example: `pod-security.kubernetes.io/warn: baseline`
+
+Used on: Namespace
+
+Value **must** be one of `privileged`, `baseline`, or `restricted` which correspond to
+[Pod Security Standard](/docs/concepts/security/pod-security-standards) levels. Specifically,
+the `warn` label does not prevent the creation of a Pod in the labeled Namespace which does not meet the 
+requirements outlined in the indicated level, but returns a warning to the user after doing so.
+Note that warnings are also displayed when creating or updating objects that contain Pod templates,
+such as Deployments, Jobs, StatefulSets, etc.
+
+See [Enforcing Pod Security at the Namespace Level](/docs/concepts/security/pod-security-admission)
+for more information.
+-->
+### pod-security.kubernetes.io/warn {#pod-security-kubernetes-io-warn}
+
+例子：`pod-security.kubernetes.io/warn: baseline`
+
+用于：Namespace
+
+值**必须**是与 [Pod 安全标准](/zh-cn/docs/concepts/security/pod-security-standards)级别相对应的
+`privileged`、`baseline` 或 `restricted` 之一。特别地，
+`warn` 标签不会阻止在带标签的 Namespace 中创建不符合指示级别概述要求的 Pod，但会在这样做后向用户返回警告。
+请注意，在创建或更新包含 Pod 模板的对象时也会显示警告，例如 Deployment、Jobs、StatefulSets 等。
+
+请参阅[在名字空间级别实施 Pod 安全性](/zh-cn/docs/concepts/security/pod-security-admission)了解更多信息。
+
+<!--
+### pod-security.kubernetes.io/warn-version
+
+Example: `pod-security.kubernetes.io/warn-version: {{< skew currentVersion >}}`
+
+Used on: Namespace
+
+Value **must** be `latest` or a valid Kubernetes version in the format `v<MAJOR>.<MINOR>`.
+This determines the version of the [Pod Security Standard](/docs/concepts/security/pod-security-standards)
+policies to apply when validating a submitted Pod. Note that warnings are also displayed when creating
+or updating objects that contain Pod templates, such as Deployments, Jobs, StatefulSets, etc.
+
+See [Enforcing Pod Security at the Namespace Level](/docs/concepts/security/pod-security-admission)
+for more information.
+-->
+### pod-security.kubernetes.io/warn-version {#pod-security-kubernetes-io-warn-version}
+
+例子：`pod-security.kubernetes.io/warn-version: {{< skew currentVersion >}}`
+
+用于：Namespace
+
+值**必须**是 `latest` 或格式为 `v<MAJOR>.<MINOR>` 的有效 Kubernetes 版本。
+此注解决定了在验证提交的 Pod 时要应用的 [Pod 安全标准](/zh-cn/docs/concepts/security/pod-security-standards)策略的版本。
+请注意，在创建或更新包含 Pod 模板的对象时也会显示警告，
+例如 Deployment、Jobs、StatefulSets 等。
+
+请参阅[在名字空间级别实施 Pod 安全性](/zh-cn/docs/concepts/security/pod-security-admission)了解更多信息。
+
+
+<!--
+### kubernetes.io/psp (deprecated) {#kubernetes-io-psp}
+
+Example: `kubernetes.io/psp: restricted`
+
+This annotation is only relevant if you are using [PodSecurityPolicies](/docs/concepts/security/pod-security-policy/).
+
+When the PodSecurityPolicy admission controller admits a Pod, the admission controller
+modifies the Pod to have this annotation.
+The value of the annotation is the name of the PodSecurityPolicy that was used for validation.
+
+-->
+
+### kubernetes.io/psp（已弃用） {#kubernetes-io-psp}
+
+例如：`kubernetes.io/psp: restricted`
+
+这个注解只在你使用 [PodSecurityPolicies](/zh-cn/docs/concepts/security/pod-security-policy/) 时才有意义。
+
+当 PodSecurityPolicy 准入控制器接受一个 Pod 时，会修改该 Pod，
+并给这个 Pod 添加此注解。
+注解的值是用来对 Pod 进行验证检查的 PodSecurityPolicy 的名称。
+
+<!--
+### seccomp.security.alpha.kubernetes.io/pod (deprecated) {#seccomp-security-alpha-kubernetes-io-pod}
+
+This annotation has been deprecated since Kubernetes v1.19 and will become non-functional in v1.25.
+To specify security settings for a Pod, include the `securityContext` field in the Pod specification.
+The [`securityContext`](/docs/reference/kubernetes-api/workload-resources/pod-v1/#security-context) field within a Pod's `.spec` defines pod-level security attributes.
+When you [specify the security context for a Pod](/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-pod),
+the settings you specify apply to all containers in that Pod.
+-->
+### seccomp.security.alpha.kubernetes.io/pod (已弃用) {#seccomp-security-alpha-kubernetes-io-pod}
+
+此注解自 Kubernetes v1.19 起已被弃用，将在 v1.25 中失效。
+要为 Pod 指定安全设置，请在 Pod 规范中包含 `securityContext` 字段。
+Pod 的 `.spec` 中的 [`securityContext`](/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1/#security-context)
+字段定义了 Pod 级别的安全属性。
+你[为 Pod 设置安全上下文](/zh-cn/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-pod) 时，
+你所给出的设置适用于该 Pod 中的所有容器。
+
+<!--
+### container.seccomp.security.alpha.kubernetes.io/[NAME] {#container-seccomp-security-alpha-kubernetes-io}
+
+This annotation has been deprecated since Kubernetes v1.19 and will become non-functional in v1.25.
+The tutorial [Restrict a Container's Syscalls with seccomp](/docs/tutorials/security/seccomp/) takes
+you through the steps you follow to apply a seccomp profile to a Pod or to one of
+its containers. That tutorial covers the supported mechanism for configuring seccomp in Kubernetes,
+based on setting `securityContext` within the Pod's `.spec`.
+-->
+### container.seccomp.security.alpha.kubernetes.io/[NAME] {#container-seccomp-security-alpha-kubernetes-io}
+
+此注解自 Kubernetes v1.19 起已被弃用，将在 v1.25 中失效。
+教程[使用 seccomp 限制容器的系统调用](/zh-cn/docs/tutorials/security/seccomp/)将引导你完成将
+seccomp 配置文件应用于 Pod 或其容器的步骤。
+该教程介绍了在 Kubernetes 中配置 seccomp 的支持机制，基于在 Pod 的 `.spec` 中设置 `securityContext`。
+
+### snapshot.storage.kubernetes.io/allowVolumeModeChange
+<!--
+Example: `snapshot.storage.kubernetes.io/allowVolumeModeChange: "true"`
+Used on: VolumeSnapshotContent
+-->
+例子：`snapshot.storage.kubernetes.io/allowVolumeModeChange: "true"`
+
+用于：VolumeSnapshotContent
+
+<!--
+Value can either be `true` or `false`.
+This determines whether a user can modify the mode of the source volume when a
+{{< glossary_tooltip text="PersistentVolumeClaim" term_id="persistent-volume-claim" >}} is being created from a VolumeSnapshot.
+Refer to [Converting the volume mode of a Snapshot](/docs/concepts/storage/volume-snapshots/#convert-volume-mode) and the [Kubernetes CSI Developer Documentation](https://kubernetes-csi.github.io/docs/) for more information.
+-->
+值可以是 `true` 或者 `false`。
+这决定了当从 VolumeSnapshot 创建 {{< glossary_tooltip text="PersistentVolumeClaim" term_id="persistent-volume-claim" >}}
+时，用户是否可以修改源卷的模式。
+更多信息请参阅[转换快照的卷模式](/zh-cn/docs/concepts/storage/volume-snapshots/#convert-volume-mode)和
+[Kubernetes CSI 开发者文档](https://kubernetes-csi.github.io/docs/)。
+
+<!--
+## Annotations used for audit
+
+- [`authorization.k8s.io/decision`](/docs/reference/labels-annotations-taints/audit-annotations/#authorization-k8s-io-decision)
+- [`authorization.k8s.io/reason`](/docs/reference/labels-annotations-taints/audit-annotations/#authorization-k8s-io-reason)
+- [`insecure-sha1.invalid-cert.kubernetes.io/$hostname`](/docs/reference/labels-annotations-taints/audit-annotations/#insecure-sha1-invalid-cert-kubernetes-io-hostname)
+- [`missing-san.invalid-cert.kubernetes.io/$hostname`](/docs/reference/labels-annotations-taints/audit-annotations/#missing-san-invalid-cert-kubernetes-io-hostname)
+- [`pod-security.kubernetes.io/audit-violations`](/docs/reference/labels-annotations-taints/audit-annotations/#pod-security-kubernetes-io-audit-violations)
+- [`pod-security.kubernetes.io/enforce-policy`](/docs/reference/labels-annotations-taints/audit-annotations/#pod-security-kubernetes-io-enforce-policy)
+- [`pod-security.kubernetes.io/exempt`](/docs/reference/labels-annotations-taints/audit-annotations/#pod-security-kubernetes-io-exempt)
+
+See more details on the [Audit Annotations](/docs/reference/labels-annotations-taints/audit-annotations/) page.
+-->
+## 用于审计的注解    {#annonations-used-for-audit}
+
+- [`authorization.k8s.io/decision`](/zh-cn/docs/reference/labels-annotations-taints/audit-annotations/#authorization-k8s-io-decision)
+- [`authorization.k8s.io/reason`](/zh-cn/docs/reference/labels-annotations-taints/audit-annotations/#authorization-k8s-io-reason)
+- [`insecure-sha1.invalid-cert.kubernetes.io/$hostname`](/zh-cn/docs/reference/labels-annotations-taints/audit-annotations/#insecure-sha1-invalid-cert-kubernetes-io-hostname)
+- [`missing-san.invalid-cert.kubernetes.io/$hostname`](/zh-cn/docs/reference/labels-annotations-taints/audit-annotations/#missing-san-invalid-cert-kubernetes-io-hostname)
+- [`pod-security.kubernetes.io/audit-violations`](/zh-cn/docs/reference/labels-annotations-taints/audit-annotations/#pod-security-kubernetes-io-audit-violations)
+- [`pod-security.kubernetes.io/enforce-policy`](/zh-cn/docs/reference/labels-annotations-taints/audit-annotations/#pod-security-kubernetes-io-enforce-policy)
+- [`pod-security.kubernetes.io/exempt`](/zh-cn/docs/reference/labels-annotations-taints/audit-annotations/#pod-security-kubernetes-io-exempt)
+
+在[审计注解](/zh-cn/docs/reference/labels-annotations-taints/audit-annotations/)页面上查看更多详细信息。
+
+## kubeadm
+
+### kubeadm.alpha.kubernetes.io/cri-socket
+
+<!--
+Example: `kubeadm.alpha.kubernetes.io/cri-socket: unix:///run/containerd/container.sock`
+Used on: Node
+-->
+例子：`kubeadm.alpha.kubernetes.io/cri-socket: unix:///run/containerd/container.sock`
+
+用于：Node
+
+<!--
+Annotation that kubeadm uses to preserve the CRI socket information given to kubeadm at `init`/`join` time for later use.
+kubeadm annotates the Node object with this information. The annotation remains "alpha", since ideally this should be a field in KubeletConfiguration instead.
+-->
+kubeadm 用来保存 `init`/`join` 时提供给 kubeadm 以后使用的 CRI 套接字信息的注解。
+kubeadm 使用此信息为 Node 对象设置注解。
+此注解仍然是 “alpha” 阶段，因为理论上这应该是 KubeletConfiguration 中的一个字段。
+
+### kubeadm.kubernetes.io/etcd.advertise-client-urls
+
+<!--
+Example: `kubeadm.kubernetes.io/etcd.advertise-client-urls: https://172.17.0.18:2379`
+Used on: Pod
+-->
+例子：`kubeadm.kubernetes.io/etcd.advertise-client-urls: https://172.17.0.18:2379`
+
+用于：Pod
+
+<!--
+Annotation that kubeadm places on locally managed etcd pods to keep track of a list of URLs where etcd clients should connect to. This is used mainly for etcd cluster health check purposes.
+-->
+kubeadm 为本地管理的 etcd Pod 设置的注解，用来跟踪 etcd 客户端应连接到的 URL 列表。
+这主要用于 etcd 集群健康检查目的。
+
+### kubeadm.kubernetes.io/kube-apiserver.advertise-address.endpoint
+
+<!--
+Example: `kubeadm.kubernetes.io/kube-apiserver.advertise-address.endpoint: https//172.17.0.18:6443`
+Used on: Pod
+-->
+例子：`kubeadm.kubernetes.io/kube-apiserver.advertise-address.endpoint: https//172.17.0.18:6443`
+
+用于：Pod
+
+<!--
+Annotation that kubeadm places on locally managed kube-apiserver pods to keep track of the exposed advertise address/port endpoint for that API server instance.
+-->
+kubeadm 为本地管理的 kube-apiserver Pod 设置的注解，用以跟踪该 API 服务器实例的公开宣告地址/端口端点。
+
+### kubeadm.kubernetes.io/component-config.hash
+
+<!--
+Used on: ConfigMap
+Example: `kubeadm.kubernetes.io/component-config.hash: 2c26b46b68ffc68ff99b453c1d30413413422d706483bfa0f98a5e886266e7ae`
+-->
+例子：`kubeadm.kubernetes.io/component-config.hash: 2c26b46b68ffc68ff99b453c1d30413413422d706483bfa0f98a5e886266e7ae`
+
+用于：ConfigMap
+
+<!--
+Annotation that kubeadm places on ConfigMaps that it manages for configuring components. It contains a hash (SHA-256) used to determine if the user has applied settings different from the kubeadm defaults for a particular component.
+-->
+kubeadm 为它所管理的 ConfigMaps 设置的注解，用于配置组件。它包含一个哈希（SHA-256）值，
+用于确定用户是否应用了不同于特定组件的 kubeadm 默认设置的设置。
+
+### node-role.kubernetes.io/control-plane
+
+<!--
+Used on: Node
+
+Label that kubeadm applies on the control plane nodes that it manages.
+-->
+用于：Node
+
+kubeadm 在其管理的控制平面节点上应用的标签。
+
+### node-role.kubernetes.io/control-plane
+
+<!--
+Used on: Node
+
+Example: `node-role.kubernetes.io/control-plane:NoSchedule`
+-->
+例子：`node-role.kubernetes.io/control-plane:NoSchedule`
+
+用于：Node
+
+<!--
+Taint that kubeadm applies on control plane nodes to allow only critical workloads to schedule on them.
+-->
+kubeadm 应用在控制平面节点上的污点，仅允许在其上调度关键工作负载。
+
+### node-role.kubernetes.io/master
+
+<!--
+Used on: Node
+
+Example: `node-role.kubernetes.io/master:NoSchedule`
+-->
+例子：`node-role.kubernetes.io/master:NoSchedule`
+
+用于：Node
+
+<!--
+Taint that kubeadm applies on control plane nodes to allow only critical workloads to schedule on them.
+Starting in v1.20, this taint is deprecated in favor of `node-role.kubernetes.io/control-plane` and will be removed in v1.25.
+-->
+kubeadm 应用在控制平面节点上的污点，仅允许在其上调度关键工作负载。
+{{< note >}}
+从 v1.20 开始，此污点已弃用，并将在 v1.25 中将其删除，取而代之的是 `node-role.kubernetes.io/control-plane`。
+{{< /note >}}
\ No newline at end of file
diff --git a/content/zh-cn/docs/reference/labels-annotations-taints/audit-annotations.md b/content/zh-cn/docs/reference/labels-annotations-taints/audit-annotations.md
new file mode 100644
index 0000000000..d5c2345a61
--- /dev/null
+++ b/content/zh-cn/docs/reference/labels-annotations-taints/audit-annotations.md
@@ -0,0 +1,204 @@
+---
+title: "审计注解"
+weight: 1
+---
+<!--
+title: "Audit Annotations"
+weight: 1
+-->
+
+<!-- overview -->
+<!--
+This page serves as a reference for the audit annotations of the kubernetes.io
+namespace. These annotations apply to `Event` object from API group
+`audit.k8s.io`.
+-->
+该页面作为 kubernetes.io 名字空间的审计注解的参考。这些注解适用于 API 组 `audit.k8s.io` 中的 `Event` 对象。
+
+<!--
+The following annotations are not used within the Kubernetes API. When you
+[enable auditing](/docs/tasks/debug/debug-cluster/audit/) in your cluster,
+audit event data is written using `Event` from API group `audit.k8s.io`.
+The annotations apply to audit events. Audit events are different from objects in the
+[Event API](/docs/reference/kubernetes-api/cluster-resources/event-v1/) (API group
+`events.k8s.io`).
+-->
+{{< note >}}
+Kubernetes API 中不使用以下注解。当你在集群中[启用审计](/zh-cn/docs/tasks/debug/debug-cluster/audit/)时，
+审计事件数据将使用 API 组 `audit.k8s.io` 中的 `Event` 写入。
+注解适用于审计事件。审计事件不同于[事件 API ](/zh-cn/docs/reference/kubernetes-api/cluster-resources/event-v1/)
+（API 组 `events.k8s.io`）中的对象。
+{{</note>}}
+
+<!-- body -->
+<!--
+## pod-security.kubernetes.io/exempt
+
+Example: `pod-security.kubernetes.io/exempt: namespace`
+
+Value **must** be one of `user`, `namespace`, or `runtimeClass` which correspond to
+[Pod Security Exemption](/docs/concepts/security/pod-security-admission/#exemptions)
+dimensions. This annotation indicates on which dimension was based the exemption
+from the PodSecurity enforcement.
+-->
+## pod-security.kubernetes.io/exempt {#pod-security-kubernetes-io-exempt}
+
+例子：`pod-security.kubernetes.io/exempt: namespace`
+
+值**必须**是对应于 [Pod 安全豁免](/zh-cn/docs/concepts/security/pod-security-admission/#exemptions)维度的 
+`user`、`namespace` 或 `runtimeClass` 之一。
+此注解指示 PodSecurity 基于哪个维度的强制豁免执行。
+
+<!--
+## pod-security.kubernetes.io/enforce-policy
+
+Example: `pod-security.kubernetes.io/enforce-policy: restricted:latest`
+
+Value **must** be `privileged:<version>`, `baseline:<version>`,
+`restricted:<version>` which correspond to [Pod Security
+Standard](/docs/concepts/security/pod-security-standards) levels accompanied by
+a version which **must** be `latest` or a valid Kubernetes version in the format
+`v<MAJOR>.<MINOR>`. This annotations informs about the enforcement level that
+allowed or denied the pod during PodSecurity admission.
+
+See [Pod Security Standards](/docs/concepts/security/pod-security-standards/)
+for more information.
+-->
+## pod-security.kubernetes.io/enforce-policy {#pod-security-kubernetes-io-enforce-policy}
+
+例子：`pod-security.kubernetes.io/enforce-policy: restricted:latest`
+
+值**必须**是对应于 [Pod 安全标准](/zh-cn/docs/concepts/security/pod-security-standards) 级别的
+`privileged:<版本>`、`baseline:<版本>`、`restricted:<版本>`，
+关联的版本**必须**是 `latest` 或格式为 `v<MAJOR>.<MINOR>` 的有效 Kubernetes 版本。
+此注解通知有关在 PodSecurity 准入期间允许或拒绝 Pod 的执行级别。
+
+有关详细信息，请参阅 [Pod 安全标准](/zh-cn/docs/concepts/security/pod-security-standards/)。
+
+<!--
+## pod-security.kubernetes.io/audit-violations
+
+Example:  `pod-security.kubernetes.io/audit-violations: would violate
+PodSecurity "restricted:latest": allowPrivilegeEscalation != false (container
+"example" must set securityContext.allowPrivilegeEscalation=false), ...`
+
+Value details an audit policy violation, it contains the
+[Pod Security Standard](/docs/concepts/security/pod-security-standards/) level
+that was transgressed as well as the specific policies on the fields that were
+violated from the PodSecurity enforcement.
+
+See [Pod Security Standards](/docs/concepts/security/pod-security-standards/)
+for more information.
+-->
+## pod-security.kubernetes.io/audit-violations {#pod-security-kubernetes-io-audit-violations}
+
+例子：`pod-security.kubernetes.io/audit-violations: would violate
+PodSecurity "restricted:latest": allowPrivilegeEscalation != false (container
+"example" must set securityContext.allowPrivilegeEscalation=false), ...`
+
+注解值给出审计策略违规的详细说明，它包含所违反的 [Pod 安全标准](/zh-cn/docs/concepts/security/pod-security-standards/)级别以及
+PodSecurity 执行中违反的特定策略及对应字段。
+
+有关详细信息，请参阅 [Pod 安全标准](/zh-cn/docs/concepts/security/pod-security-standards/)。
+
+<!--
+## authorization.k8s.io/decision
+
+Example: `authorization.k8s.io/decision: "forbid"`
+
+This annotation indicates whether or not a request was authorized in Kubernetes audit logs.
+
+See [Auditing](/docs/tasks/debug/debug-cluster/audit/) for more information.
+-->
+## authorization.k8s.io/decision {#authorization-k8s-io-decision}
+
+例子：`authorization.k8s.io/decision: "forbid"`
+
+此注解在 Kubernetes 审计日志中表示请求是否获得授权。
+
+有关详细信息，请参阅[审计](/zh-cn/docs/tasks/debug/debug-cluster/audit/)。
+
+<!--
+## authorization.k8s.io/reason
+
+Example: `authorization.k8s.io/reason: "Human-readable reason for the decision"`
+
+This annotation gives reason for the [decision](#authorization-k8s-io-decision) in Kubernetes audit logs.
+
+See [Auditing](/docs/tasks/debug/debug-cluster/audit/) for more information.
+-->
+## authorization.k8s.io/reason {#authorization-k8s-io-reason}
+
+例子：`authorization.k8s.io/reason: "Human-readable reason for the decision"`
+
+此注解给出了 Kubernetes 审计日志中 [decision](#authorization-k8s-io-decision) 的原因。
+
+有关详细信息，请参阅[审计](/zh-cn/docs/tasks/debug/debug-cluster/audit/)。
+
+## missing-san.invalid-cert.kubernetes.io/$hostname
+
+<!--
+Example: `missing-san.invalid-cert.kubernetes.io/example-svc.example-namespace.svc: "relies on a legacy Common Name field instead of the SAN extension for subject validation"`
+
+Used by Kubernetes version v1.24 and later
+-->
+例子：`missing-san.invalid-cert.kubernetes.io/example-svc.example-namespace.svc: "relies on a legacy Common Name field instead of the SAN extension for subject validation"`
+
+由 Kubernetes v1.24 及更高版本使用
+
+<!--
+This annotation indicates a webhook or aggregated API server
+is using an invalid certificate that is missing `subjectAltNames`.
+Support for these certificates was disabled by default in Kubernetes 1.19,
+and removed in Kubernetes 1.23.
+-->
+此注解表示 webhook 或聚合 API 服务器正在使用缺少 `subjectAltNames` 的无效证书。
+Kubernetes 1.19 已经默认禁用，且 Kubernetes 1.23 已经移除对这些证书的支持。
+
+<!--
+Requests to endpoints using these certificates will fail.
+Services using these certificates should replace them as soon as possible
+to avoid disruption when running in Kubernetes 1.23+ environments.
+-->
+使用这些证书向端点发出的请求将失败。
+使用这些证书的服务应尽快替换它们，以避免在 Kubernetes 1.23+ 环境中运行时中断。
+
+<!--
+There's more information about this in the Go documentation:
+[X.509 CommonName deprecation](https://go.dev/doc/go1.15#commonname).
+-->
+Go 文档中有更多关于此的信息：
+[X.509 CommonName 弃用](https://go.dev/doc/go1.15#commonname)。
+
+## insecure-sha1.invalid-cert.kubernetes.io/$hostname
+
+<!--
+Example: `insecure-sha1.invalid-cert.kubernetes.io/example-svc.example-namespace.svc: "uses an insecure SHA-1 signature"`
+Used by Kubernetes version v1.24 and later
+-->
+
+例子：`insecure-sha1.invalid-cert.kubernetes.io/example-svc.example-namespace.svc: "uses an insecure SHA-1 signature"`
+
+由 Kubernetes v1.24 及更高版本使用
+
+<!--
+This annotation indicates a webhook or aggregated API server
+is using an insecure certificate signed with a SHA-1 hash.
+Support for these insecure certificates is disabled by default in Kubernetes 1.24,
+and will be removed in a future release.
+-->
+此注解表示 webhook 或聚合 API 服务器正在使用使用 SHA-1 签名的不安全证书。
+Kubernetes 1.24 已经默认禁用，并将在未来的版本中删除对这些证书的支持。
+
+<!--
+Services using these certificates should replace them as soon as possible,
+to ensure connections are secured properly and to avoid disruption in future releases.
+-->
+使用这些证书的服务应尽快替换它们，以确保正确保护连接并避免在未来版本中出现中断。
+
+<!--
+There's more information about this in the Go documentation:
+[Rejecting SHA-1 certificates](https://go.dev/doc/go1.18#sha1).
+-->
+Go 文档中有更多关于此的信息：
+[拒绝 SHA-1 证书](https://go.dev/doc/go1.18#sha1)。
diff --git a/content/zh-cn/docs/reference/node/_index.md b/content/zh-cn/docs/reference/node/_index.md
new file mode 100644
index 0000000000..fa14be0a6c
--- /dev/null
+++ b/content/zh-cn/docs/reference/node/_index.md
@@ -0,0 +1,9 @@
+---
+title: 节点参考信息
+weight: 40
+---
+
+<!-- 
+title: Node Reference Information
+weight: 40
+-->
diff --git a/content/zh-cn/docs/reference/node/topics-on-dockershim-and-cri-compatible-runtimes.md b/content/zh-cn/docs/reference/node/topics-on-dockershim-and-cri-compatible-runtimes.md
new file mode 100644
index 0000000000..af1072c844
--- /dev/null
+++ b/content/zh-cn/docs/reference/node/topics-on-dockershim-and-cri-compatible-runtimes.md
@@ -0,0 +1,99 @@
+---
+title: 关于 dockershim 移除和使用兼容 CRI 运行时的文章
+content_type: reference
+weight: 20
+---
+
+<!-- 
+title: Articles on dockershim Removal and on Using CRI-compatible Runtimes
+content_type: reference
+weight: 20
+-->
+
+<!-- overview -->
+<!-- 
+This is a list of articles and other pages that are either
+about the Kubernetes' deprecation and removal of _dockershim_,
+or about using CRI-compatible container runtimes, in connection
+with that removal.
+-->
+这是关于 Kubernetes 弃用和删除 “dockershim”
+或使用兼容 CRI 的容器运行时相关的文章和其他页面的列表，
+<!-- body -->
+
+<!-- 
+## Kubernetes project
+
+* Kubernetes blog: [Dockershim Removal FAQ](/blog/2022/02/17/dockershim-faq/) (originally published 2022/02/17)
+
+* Kubernetes blog: [Kubernetes is Moving on From Dockershim: Commitments and Next Steps](/blog/2022/01/07/kubernetes-is-moving-on-from-dockershim/) (published 2022/01/07)
+
+* Kubernetes blog: [Dockershim removal is coming. Are you ready?](/blog/2021/11/12/are-you-ready-for-dockershim-removal/) (published 2021/11/12)
+
+* Kubernetes documentation: [Migrating from dockershim](/docs/tasks/administer-cluster/migrating-from-dockershim/)
+
+* Kubernetes documentation: [Container runtimes](/docs/setup/production-environment/container-runtimes/)
+
+* Kubernetes enhancement proposal: [KEP-2221: Removing dockershim from kubelet](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/2221-remove-dockershim/README.md)
+
+* Kubernetes enhancement proposal issue: [Removing dockershim from kubelet](https://github.com/kubernetes/enhancements/issues/2221) (_k/enhancements#2221_)
+-->
+
+## Kubernetes 项目 {#kubernetes-project}
+
+* Kubernetes 博客：[Dockershim 弃用常见问题解答](/zh-cn/blog/2022/02/17/dockershim-faq/)（最初发表于 2022/02/17）
+
+* Kubernetes 博客：[Kubernetes 即将移除 Dockershim：承诺和下一步](/blog/2022/01/07/kubernetes-is-moving-on-from-dockershim/)（发表于 2022/01/07）
+
+* Kubernetes 博客：[移除 Dockershim 即将到来。你准备好了吗？](/zh-cn/blog/2021/11/12/are-you-ready-for-dockershim-removal/)（发表于  2021/11/12）
+
+* Kubernetes 文档：[从 dockershim 迁移](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/)
+
+* Kubernetes 文档：[容器运行时](/zh-cn/docs/setup/production-environment/container-runtimes/)
+
+* Kubernetes 增强建议：[KEP-2221: 从 kubelet 中删除 dockershim](https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/2221-remove-dockershim/README.md)
+
+* Kubernetes 增强提问：[从 kubelet 中删除 dockershim](https://github.com/kubernetes/enhancements/issues/2221)（“k/enhancements#2221”）
+
+<!--
+You can provide feedback via the GitHub issue [**Dockershim removal feedback & issues**](https://github.com/kubernetes/kubernetes/issues/106917).
+-->
+你可以通过 GitHub 问题
+[**Dockershim 删除反馈和问题**](https://github.com/kubernetes/kubernetes/issues/106917) 提供反馈。
+
+<!-- 
+## External sources {#third-party}
+
+* Amazon Web Services EKS documentation: [Dockershim deprecation](https://docs.aws.amazon.com/eks/latest/userguide/dockershim-deprecation.html)
+
+* CNCF conference video: [Lessons Learned Migrating Kubernetes from Docker to containerd Runtime](https://www.youtube.com/watch?v=uDOu6rK4yOk) (Ana Caylin, at KubeCon Europe 2019)
+
+* Docker.com blog: [What developers need to know about Docker, Docker Engine, and Kubernetes v1.20](https://www.docker.com/blog/what-developers-need-to-know-about-docker-docker-engine-and-kubernetes-v1-20/) (published 2020/12/04)
+
+* "_Google Open Source_" channel on YouTube: [Learn Kubernetes with Google - Migrating from Dockershim to Containerd](https://youtu.be/fl7_4hjT52g)
+
+* Microsoft Apps on Azure blog: [Dockershim deprecation and AKS](https://techcommunity.microsoft.com/t5/apps-on-azure-blog/dockershim-deprecation-and-aks/ba-p/3055902) (published 2022/01/21)
+
+* Mirantis blog: [The Future of Dockershim is cri-dockerd](https://www.mirantis.com/blog/the-future-of-dockershim-is-cri-dockerd/) (published 2021/04/21)
+
+* Mirantis: [Mirantis/cri-dockerd](https://github.com/Mirantis/cri-dockerd) Git repository (on GitHub)
+
+* Tripwire: [How Dockershim’s Forthcoming Deprecation Affects Your Kubernetes](https://www.tripwire.com/state-of-security/security-data-protection/cloud/how-dockershim-forthcoming-deprecation-affects-your-kubernetes/)
+-->
+## 外部来源 {#third-party}
+
+* Amazon 网络服务 EKS 文档：[Dockershim 弃用](https://docs.aws.amazon.com/eks/latest/userguide/dockershim-deprecation.html)
+
+* CNCF会议视频：[将 Kubernetes 从 Docker 迁移到 containerd 运行时的经验教训](https://www.docker.com/blog/what-developers-need-to-know-about-docker-docker-engine-and-kubernetes-v1-20/)（Ana Caylin，在 KubeCon Europe 2019）
+
+* Docker.com 博客：[开发人员需要了解的关于 Docker、Docker Engine 和 Kubernetes v1.20 的哪些知识](https://www.docker.com/blog/what-developers-need-to-know-about-docker-docker-engine-and-kubernetes-v1-20/)（发表于 2020/12/04）
+
+* YouTube 上的“Google 开源”频道：[与 Google 一起学习 Kubernetes - 从 Dockershim 迁移到 Containerd](https://youtu.be/fl7_4hjT52g)
+
+* Azure 博客上的 Microsoft 应用：[Dockershim 弃用和 AKS](https://techcommunity.microsoft.com/t5/apps-on-azure-blog/dockershim-deprecation-and-aks/ba-p/3055902)（发表于 2022/01/21）
+
+* Mirantis 博客：[Dockershim 的未来是 cri-dockerd](https://www.mirantis.com/blog/the-future-of-dockershim-is-cri-dockerd/)（发表于 2021/04/21）
+
+* Mirantis: [Mirantis/cri-dockerd](https://github.com/Mirantis/cri-dockerd) Git 仓库（在 GitHub 上）
+
+* Tripwire：[Dockershim 即将弃用如何影响你的 Kubernetes](https://www.tripwire.com/state-of-security/security-data-protection/cloud/how-dockershim-forthcoming-deprecation-affects-your-kubernetes/)
diff --git a/content/zh-cn/docs/reference/ports-and-protocols.md b/content/zh-cn/docs/reference/ports-and-protocols.md
new file mode 100644
index 0000000000..4bd3aab5d5
--- /dev/null
+++ b/content/zh-cn/docs/reference/ports-and-protocols.md
@@ -0,0 +1,77 @@
+---
+title: 端口和协议
+content_type: reference
+weight: 50
+---
+<!--
+---
+title: Ports and Protocols
+content_type: reference
+weight: 50
+---
+-->
+
+<!--
+When running Kubernetes in an environment with strict network boundaries, such 
+as on-premises datacenter with physical network firewalls or Virtual 
+Networks in Public Cloud, it is useful to be aware of the ports and protocols 
+used by Kubernetes components
+-->
+当你在一个有严格网络边界的环境里运行 Kubernetes，例如拥有物理网络防火墙或者拥有公有云中虚拟网络的自有数据中心，了解 Kubernetes 组件使用了哪些端口和协议是非常有用的。
+
+<!--
+## Control plane
+
+| Protocol | Direction | Port Range | Purpose                 | Used By                   |
+|----------|-----------|------------|-------------------------|---------------------------|
+| TCP      | Inbound   | 6443       | Kubernetes API server   | All                       |
+| TCP      | Inbound   | 2379-2380  | etcd server client API  | kube-apiserver, etcd      |
+| TCP      | Inbound   | 10250      | Kubelet API             | Self, Control plane       |
+| TCP      | Inbound   | 10259      | kube-scheduler          | Self                      |
+| TCP      | Inbound   | 10257      | kube-controller-manager | Self                      |
+
+Although etcd ports are included in control plane section, you can also host your own
+etcd cluster externally or on custom ports. 
+-->
+## 控制面  {#control-plane}
+
+| 协议     | 方向      | 端口范围     | 目的                     | 使用者                     |
+|----------|-----------|------------|-------------------------|---------------------------|
+| TCP      | 入站       | 6443       | Kubernetes API server   | 所有                       |
+| TCP      | 入站       | 2379-2380  | etcd server client API  | kube-apiserver, etcd      |
+| TCP      | 入站       | 10250      | Kubelet API             | 自身, 控制面                |
+| TCP      | 入站       | 10259      | kube-scheduler          | 自身                       |
+| TCP      | 入站       | 10257      | kube-controller-manager | 自身                       |
+
+尽管 etcd 的端口也列举在控制面的部分，但你也可以在外部自己托管 etcd 集群或者自定义端口。
+
+<!--
+## Worker node(s) {#node}
+
+| Protocol | Direction | Port Range  | Purpose               | Used By                 |
+|----------|-----------|-------------|-----------------------|-------------------------|
+| TCP      | Inbound   | 10250       | Kubelet API           | Self, Control plane     |
+| TCP      | Inbound   | 30000-32767 | NodePort Services†    | All                     |
+
+† Default port range for [NodePort Services](/docs/concepts/services-networking/service/).
+
+All default port numbers can be overridden. When custom ports are used those 
+ports need to be open instead of defaults mentioned here. 
+
+One common example is API server port that is sometimes switched
+to 443. Alternatively, the default port is kept as is and API server is put 
+behind a load balancer that listens on 443 and routes the requests to API server
+on the default port.
+-->
+## 工作节点  {#node}
+
+| 协议     | 方向      | 端口范围     | 目的                     | 使用者                  |
+|----------|-----------|-------------|-----------------------|-------------------------|
+| TCP      | 入站       | 10250       | Kubelet API           | 自身, 控制面             |
+| TCP      | 入站       | 30000-32767 | NodePort Services†    | 所有                    |
+
+† [NodePort Services](/zh-cn/docs/concepts/services-networking/service/)的默认端口范围。
+
+所有默认端口都可以重新配置。当使用自定义的端口时，你需要打开这些端口来代替这里提到的默认端口。
+
+一个常见的例子是 API 服务器的端口有时会配置为443。或者你也可以使用默认端口，把 API 服务器放到一个监听443 端口的负载均衡器后面，并且路由所有请求到 API 服务器的默认端口。
diff --git a/content/zh/docs/reference/scheduling/_index.md b/content/zh-cn/docs/reference/scheduling/_index.md
similarity index 100%
rename from content/zh/docs/reference/scheduling/_index.md
rename to content/zh-cn/docs/reference/scheduling/_index.md
diff --git a/content/zh-cn/docs/reference/scheduling/config.md b/content/zh-cn/docs/reference/scheduling/config.md
new file mode 100644
index 0000000000..b79b23e2e9
--- /dev/null
+++ b/content/zh-cn/docs/reference/scheduling/config.md
@@ -0,0 +1,823 @@
+---
+title: 调度器配置
+content_type: concept
+weight: 20
+---
+<!--
+title: Scheduler Configuration
+content_type: concept
+weight: 20
+-->
+{{< feature-state for_k8s_version="v1.19" state="beta" >}}
+
+<!--
+You can customize the behavior of the `kube-scheduler` by writing a configuration
+file and passing its path as a command line argument.
+-->
+你可以通过编写配置文件，并将其路径传给 `kube-scheduler` 的命令行参数，定制 `kube-scheduler` 的行为。
+
+<!-- overview -->
+
+<!-- body -->
+<!--
+A scheduling Profile allows you to configure the different stages of scheduling
+in the {{< glossary_tooltip text="kube-scheduler" term_id="kube-scheduler" >}}.
+Each stage is exposed in an extension point. Plugins provide scheduling behaviors
+by implementing one or more of these extension points.
+-->
+调度模板（Profile）允许你配置 {{< glossary_tooltip text="kube-scheduler" term_id="kube-scheduler" >}}
+中的不同调度阶段。每个阶段都暴露于某个扩展点中。插件通过实现一个或多个扩展点来提供调度行为。
+
+<!--
+You can specify scheduling profiles by running `kube-scheduler --config <filename>`,
+using the 
+KubeSchedulerConfiguration ([v1beta2](/docs/reference/config-api/kube-scheduler-config.v1beta2/)
+or [v1beta3](/docs/reference/config-api/kube-scheduler-config.v1beta3/))
+struct.
+-->
+你可以通过运行 `kube-scheduler --config <filename>` 来设置调度模板，
+使用 KubeSchedulerConfiguration （[v1beta2](/zh-cn/docs/reference/config-api/kube-scheduler-config.v1beta2/)
+或者 [v1beta3](/zh-cn/docs/reference/config-api/kube-scheduler-config.v1beta3/)） 结构体。
+
+<!-- A minimal configuration looks as follows: -->
+最简单的配置如下：
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta2
+kind: KubeSchedulerConfiguration
+clientConnection:
+  kubeconfig: /etc/srv/kubernetes/kube-scheduler/kubeconfig
+```
+
+<!-- ## Profiles -->
+## 配置文件    {#profiles}
+
+<!--  
+A scheduling Profile allows you to configure the different stages of scheduling
+in the {{< glossary_tooltip text="kube-scheduler" term_id="kube-scheduler" >}}.
+Each stage is exposed in an [extension point](#extension-points).
+[Plugins](#scheduling-plugins) provide scheduling behaviors by implementing one
+or more of these extension points.
+-->
+通过调度配置文件，你可以配置 {{< glossary_tooltip text="kube-scheduler" term_id="kube-scheduler" >}} 在不同阶段的调度行为。
+每个阶段都在一个[扩展点](#extension-points)中公开。
+[调度插件](#scheduling-plugins)通过实现一个或多个扩展点，来提供调度行为。
+
+<!--  
+You can configure a single instance of `kube-scheduler` to run
+[multiple profiles](#multiple-profiles).
+-->
+你可以配置同一 `kube-scheduler` 实例使用[多个配置文件](#multiple-profiles)。
+
+<!-- ### Extension points -->
+### 扩展点    {#extensions-points}
+
+<!--  
+Scheduling happens in a series of stages that are exposed through the following
+extension points:
+-->
+调度行为发生在一系列阶段中，这些阶段是通过以下扩展点公开的：
+
+<!--  
+1. `queueSort`: These plugins provide an ordering function that is used to
+   sort pending Pods in the scheduling queue. Exactly one queue sort plugin
+   may be enabled at a time.
+-->
+1. `queueSort`：这些插件对调度队列中的悬决的 Pod 排序。
+   一次只能启用一个队列排序插件。
+<!--
+2. `preFilter`: These plugins are used to pre-process or check information
+   about a Pod or the cluster before filtering. They can mark a pod as
+   unschedulable.
+ -->
+2. `preFilter`：这些插件用于在过滤之前预处理或检查 Pod 或集群的信息。
+   它们可以将 Pod 标记为不可调度。
+<!--
+3. `filter`: These plugins are the equivalent of Predicates in a scheduling
+   Policy and are used to filter out nodes that can not run the Pod. Filters
+   are called in the configured order. A pod is marked as unschedulable if no
+   nodes pass all the filters.
+-->
+3. `filter`：这些插件相当于调度策略中的断言（Predicates），用于过滤不能运行 Pod 的节点。
+   过滤器的调用顺序是可配置的。
+   如果没有一个节点通过所有过滤器的筛选，Pod 将会被标记为不可调度。
+<!--
+4. `postFilter`: These plugins are called in their configured order when no
+   feasible nodes were found for the pod. If any `postFilter` plugin marks the
+   Pod _schedulable_, the remaining plugins are not called.
+--> 
+4. `postFilter`：当无法为 Pod 找到可用节点时，按照这些插件的配置顺序调用他们。
+   如果任何 `postFilter` 插件将 Pod 标记为“可调度”，则不会调用其余插件。
+<!--
+1. `preScore`: This is an informational extension point that can be used
+   for doing pre-scoring work.
+-->
+5. `preScore`：这是一个信息扩展点，可用于预打分工作。
+<!--  
+6. `score`: These plugins provide a score to each node that has passed the
+   filtering phase. The scheduler will then select the node with the highest
+   weighted scores sum.
+-->
+6. `score`：这些插件给通过筛选阶段的节点打分。调度器会选择得分最高的节点。
+<!--  
+7. `reserve`: This is an informational extension point that notifies plugins
+   when resources have been reserved for a given Pod. Plugins also implement an
+   `Unreserve` call that gets called in the case of failure during or after
+   `Reserve`.
+-->
+7. `reserve`：这是一个信息扩展点，当资源已经预留给 Pod 时，会通知插件。
+   这些插件还实现了 `Unreserve` 接口，在 `Reserve` 期间或之后出现故障时调用。
+<!-- 8. `permit`: These plugins can prevent or delay the binding of a Pod. -->
+8. `permit`：这些插件可以阻止或延迟 Pod 绑定。
+<!-- 9. `preBind`: These plugins perform any work required before a Pod is bound.-->
+9. `preBind`：这些插件在 Pod 绑定节点之前执行。
+<!--  
+10. `bind`: The plugins bind a Pod to a Node. Bind plugins are called in order
+   and once one has done the binding, the remaining plugins are skipped. At
+   least one bind plugin is required.
+-->
+10. `bind`：这个插件将 Pod 与节点绑定。绑定插件是按顺序调用的，只要有一个插件完成了绑定，其余插件都会跳过。绑定插件至少需要一个。
+<!--
+11. `postBind`: This is an informational extension point that is called after
+   a Pod has been bound.
+-->
+11. `postBind`：这是一个信息扩展点，在 Pod 绑定了节点之后调用。
+<!--
+12. `multiPoint`: This is a config-only field that allows plugins to be enabled
+    or disabled for all of their applicable extension points simultaneously.
+-->
+12. `multiPoint`：这是一个仅配置字段，允许同时为所有适用的扩展点启用或禁用插件。
+
+<!--
+For each extension point, you could disable specific [default plugins](#scheduling-plugins)
+or enable your own. For example:
+-->
+对每个扩展点，你可以禁用[默认插件](#scheduling-plugins)或者是启用自己的插件，例如：
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta2
+kind: KubeSchedulerConfiguration
+profiles:
+  - plugins:
+      score:
+        disabled:
+        - name: PodTopologySpread
+        enabled:
+        - name: MyCustomPluginA
+          weight: 2
+        - name: MyCustomPluginB
+          weight: 1
+```
+
+<!--
+You can use `*` as name in the disabled array to disable all default plugins
+for that extension point. This can also be used to rearrange plugins order, if
+desired.
+-->
+你可以在 `disabled` 数组中使用 `*` 禁用该扩展点的所有默认插件。
+如果需要，这个字段也可以用来对插件重新顺序。
+
+<!-- ### Scheduling plugins -->
+### 调度插件   {#scheduling-plugins}
+
+<!--  
+The following plugins, enabled by default, implement one or more of these
+extension points:
+-->
+下面默认启用的插件实现了一个或多个扩展点：
+
+<!--  
+- `ImageLocality`: Favors nodes that already have the container images that the
+  Pod runs.
+  Extension points: `score`.
+-->
+- `ImageLocality`：选择已经存在 Pod 运行所需容器镜像的节点。
+
+  实现的扩展点：`score`。
+<!--  
+- `TaintToleration`: Implements
+  [taints and tolerations](/docs/concepts/scheduling-eviction/taint-and-toleration/).
+  Implements extension points: `filter`, `prescore`, `score`.
+-->
+- `TaintToleration`：实现了[污点和容忍](/zh-cn/docs/concepts/scheduling-eviction/taint-and-toleration/)。
+
+  实现的扩展点：`filter`，`prescore`，`score`。
+<!--  
+- `NodeName`: Checks if a Pod spec node name matches the current node.
+  Extension points: `filter`.
+-->
+- `NodeName`：检查 Pod 指定的节点名称与当前节点是否匹配。
+
+  实现的扩展点：`filter`。
+<!--  
+- `NodePorts`: Checks if a node has free ports for the requested Pod ports.
+  Extension points: `preFilter`, `filter`.
+-->
+- `NodePorts`：检查 Pod 请求的端口在节点上是否可用。
+
+  实现的扩展点：`preFilter`，`filter`。
+
+<!--  
+- `NodeAffinity`: Implements
+  [node selectors](/docs/concepts/scheduling-eviction/assign-pod-node/#nodeselector)
+  and [node affinity](/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity).
+  Extension points: `filter`, `score`.
+-->
+- `NodeAffinity`：实现了[节点选择器](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/#nodeselector)
+  和[节点亲和性](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity)。
+
+  实现的扩展点：`filter`，`score`.
+<!--  
+- `PodTopologySpread`: Implements
+  [Pod topology spread](/docs/concepts/scheduling-eviction/topology-spread-constraints/).
+  Extension points: `preFilter`, `filter`, `preScore`, `score`.
+-->
+- `PodTopologySpread`：实现了 [Pod 拓扑分布](/zh-cn/docs/concepts/scheduling-eviction/topology-spread-constraints/)。
+
+  实现的扩展点：`preFilter`，`filter`，`preScore`，`score`。
+<!--  
+- `NodeUnschedulable`: Filters out nodes that have `.spec.unschedulable` set to
+  true.
+  Extension points: `filter`.
+-->
+- `NodeUnschedulable`：过滤 `.spec.unschedulable` 值为 true 的节点。
+
+  实现的扩展点：`filter`。
+<!--  
+- `NodeResourcesFit`: Checks if the node has all the resources that the Pod is
+  requesting. The score can use one of three strategies: `LeastAllocated`
+  (default), `MostAllocated` and `RequestedToCapacityRatio`.
+  Extension points: `preFilter`, `filter`, `score`.
+-->
+- `NodeResourcesFit`：检查节点是否拥有 Pod 请求的所有资源。
+  得分可以使用以下三种策略之一：`LeastAllocated`（默认）、`MostAllocated`
+  和 `RequestedToCapacityRatio`。
+
+  实现的扩展点：`preFilter`，`filter`，`score`。
+<!--  
+- `NodeResourcesBalancedAllocation`: Favors nodes that would obtain a more
+  balanced resource usage if the Pod is scheduled there.
+  Extension points: `score`.
+-->
+- `NodeResourcesBalancedAllocation`：调度 Pod 时，选择资源使用更为均衡的节点。
+
+  实现的扩展点：`score`。
+
+<!--  
+- `VolumeBinding`: Checks if the node has or if it can bind the requested
+  {{< glossary_tooltip text="volumes" term_id="volume" >}}.
+  Extension points: `preFilter`, `filter`, `reserve`, `preBind`, `score`.
+  {{< note >}}
+  `score` extension point is enabled when `VolumeCapacityPriority` feature is
+  enabled. It prioritizes the smallest PVs that can fit the requested volume
+  size.
+  {{< /note >}}
+-->
+- `VolumeBinding`：检查节点是否有请求的卷，或是否可以绑定请求的卷。
+  实现的扩展点: `preFilter`、`filter`、`reserve`、`preBind` 和 `score`。
+  {{< note >}}
+  当 `VolumeCapacityPriority` 特性被启用时，`score` 扩展点也被启用。
+  它优先考虑可以满足所需卷大小的最小 PV。
+  {{< /note >}}
+  
+<!--
+- `VolumeRestrictions`: Checks that volumes mounted in the node satisfy
+  restrictions that are specific to the volume provider.
+  Extension points: `filter`.
+-->
+- `VolumeRestrictions`：检查挂载到节点上的卷是否满足卷提供程序的限制。
+
+  实现的扩展点：`filter`。
+<!--  
+- `VolumeZone`: Checks that volumes requested satisfy any zone requirements they
+  might have.
+  Extension points: `filter`.
+-->
+- `VolumeZone`：检查请求的卷是否在任何区域都满足。
+
+  实现的扩展点：`filter`。
+<!--
+- `NodeVolumeLimits`: Checks that CSI volume limits can be satisfied for the
+  node.
+  Extension points: `filter`.
+-->
+- `NodeVolumeLimits`：检查该节点是否满足 CSI 卷限制。
+
+  实现的扩展点：`filter`。
+<!--  
+- `EBSLimits`: Checks that AWS EBS volume limits can be satisfied for the node.
+  Extension points: `filter`.
+-->
+- `EBSLimits`：检查节点是否满足 AWS EBS 卷限制。
+
+  实现的扩展点：`filter`。
+<!--  
+- `GCEPDLimits`: Checks that GCP-PD volume limits can be satisfied for the node.
+  Extension points: `filter`.
+-->
+- `GCEPDLimits`：检查该节点是否满足 GCP-PD 卷限制。
+
+  实现的扩展点：`filter`。
+<!--  
+- `AzureDiskLimits`: Checks that Azure disk volume limits can be satisfied for
+  the node.
+  Extension points: `filter`.
+-->
+- `AzureDiskLimits`：检查该节点是否满足 Azure 卷限制。
+
+  实现的扩展点：`filter`。
+<!--  
+- `InterPodAffinity`: Implements
+  [inter-Pod affinity and anti-affinity](/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity).
+  Extension points: `preFilter`, `filter`, `preScore`, `score`.
+-->
+- `InterPodAffinity`：实现 [Pod 间亲和性与反亲和性](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity)。
+
+  实现的扩展点：`preFilter`，`filter`，`preScore`，`score`。
+<!--  
+- `PrioritySort`: Provides the default priority based sorting.
+  Extension points: `queueSort`.
+-->
+- `PrioritySort`：提供默认的基于优先级的排序。
+
+  实现的扩展点：`queueSort`。
+<!--  
+- `DefaultBinder`: Provides the default binding mechanism.
+  Extension points: `bind`.
+-->
+- `DefaultBinder`：提供默认的绑定机制。
+
+  实现的扩展点：`bind`。
+<!--  
+- `DefaultPreemption`: Provides the default preemption mechanism.
+  Extension points: `PostFilter`.
+-->
+- `DefaultPreemption`：提供默认的抢占机制。
+
+  实现的扩展点：`postFilter`。
+
+<!--  
+You can also enable the following plugins, through the component config APIs,
+that are not enabled by default:
+-->
+你也可以通过组件配置 API 启用以下插件（默认不启用）:
+
+<!--
+- `SelectorSpread`: Favors spreading across nodes for Pods that belong to
+  {{< glossary_tooltip text="Services" term_id="service" >}},
+  {{< glossary_tooltip text="ReplicaSets" term_id="replica-set" >}} and
+  {{< glossary_tooltip text="StatefulSets" term_id="statefulset" >}}.
+  Extension points: `preScore`, `score`.
+-->
+- `SelectorSpread`：偏向把属于
+  {{< glossary_tooltip text="Services" term_id="service" >}}，
+  {{< glossary_tooltip text="ReplicaSets" term_id="replica-set" >}} 和
+  {{< glossary_tooltip text="StatefulSets" term_id="statefulset" >}} 的 Pod 跨节点分布。
+
+  实现的扩展点：`preScore`，`score`。
+
+<!--
+- `CinderLimits`: Checks that [OpenStack Cinder](https://docs.openstack.org/cinder/)
+  volume limits can be satisfied for the node.
+  Extension points: `filter`.
+-->
+- `CinderLimits`：检查是否可以满足节点的 [OpenStack Cinder](https://docs.openstack.org/cinder/)
+卷限制
+
+
+### 多配置文件    {#multiple-profiles}
+
+<!--  
+You can configure `kube-scheduler` to run more than one profile.
+Each profile has an associated scheduler name and can have a different set of
+plugins configured in its [extension points](#extension-points).
+-->
+你可以配置 `kube-scheduler` 运行多个配置文件。
+每个配置文件都有一个关联的调度器名称，并且可以在其扩展点中配置一组不同的插件。
+
+<!--  
+With the following sample configuration, the scheduler will run with two
+profiles: one with the default plugins and one with all scoring plugins
+disabled.
+-->
+使用下面的配置样例，调度器将运行两个配置文件：一个使用默认插件，另一个禁用所有打分插件。
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta2
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: default-scheduler
+  - schedulerName: no-scoring-scheduler
+    plugins:
+      preScore:
+        disabled:
+        - name: '*'
+      score:
+        disabled:
+        - name: '*'
+```
+
+<!--  
+Pods that want to be scheduled according to a specific profile can include
+the corresponding scheduler name in its `.spec.schedulerName`.
+-->
+对于那些希望根据特定配置文件来进行调度的 Pod，可以在 `.spec.schedulerName` 字段指定相应的调度器名称。
+
+<!--  
+By default, one profile with the scheduler name `default-scheduler` is created.
+This profile includes the default plugins described above. When declaring more
+than one profile, a unique scheduler name for each of them is required.
+-->
+默认情况下，将创建一个调度器名为 `default-scheduler` 的配置文件。
+这个配置文件包括上面描述的所有默认插件。
+声明多个配置文件时，每个配置文件中调度器名称必须唯一。
+
+<!--  
+If a Pod doesn't specify a scheduler name, kube-apiserver will set it to
+`default-scheduler`. Therefore, a profile with this scheduler name should exist
+to get those pods scheduled.
+-->
+如果 Pod 未指定调度器名称，kube-apiserver 将会把调度器名设置为 `default-scheduler`。
+因此，应该存在一个调度器名为 `default-scheduler` 的配置文件来调度这些 Pod。
+
+{{< note >}}
+<!--  
+Pod's scheduling events have `.spec.schedulerName` as the ReportingController.
+Events for leader election use the scheduler name of the first profile in the
+list.
+-->
+Pod 的调度事件把 `.spec.schedulerName` 字段值作为 ReportingController。
+领导者选举事件使用列表中第一个配置文件的调度器名称。
+{{< /note >}}
+
+{{< note >}}
+<!--  
+All profiles must use the same plugin in the queueSort extension point and have
+the same configuration parameters (if applicable). This is because the scheduler
+only has one pending pods queue.
+-->
+所有配置文件必须在 queueSort 扩展点使用相同的插件，并具有相同的配置参数（如果适用）。
+这是因为调度器只有一个保存 pending 状态 Pod 的队列。
+
+{{< /note >}}
+
+<!--
+### Plugins that apply to multiple extension points {#multipoint}
+-->
+
+### 应用于多个扩展点的插件 {#multipoint}
+
+<!--
+Starting from `kubescheduler.config.k8s.io/v1beta3`, there is an additional field in the
+profile config, `multiPoint`, which allows for easily enabling or disabling a plugin
+across several extension points. The intent of `multiPoint` config is to simplify the
+configuration needed for users and administrators when using custom profiles.
+-->
+从 `kubescheduler.config.k8s.io/v1beta3` 开始，配置文件配置中有一个附加字段 `multiPoint`，它允许跨多个扩展点轻松启用或禁用插件。
+`multiPoint` 配置的目的是简化用户和管理员在使用自定义配置文件时所需的配置。
+
+<!--
+Consider a plugin, `MyPlugin`, which implements the `preScore`, `score`, `preFilter`,
+and `filter` extension points. To enable `MyPlugin` for all its available extension
+points, the profile config looks like:
+-->
+
+考虑一个插件，`MyPlugin`，它实现了 `preScore`、`score`、`preFilter` 和 `filter` 扩展点。
+要为其所有可用的扩展点启用 `MyPlugin`，配置文件配置如下所示：
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: multipoint-scheduler
+    plugins:
+      multiPoint:
+        enabled:
+        - name: MyPlugin
+```
+
+<!--
+This would equate to manually enabling `MyPlugin` for all of its extension
+points, like so:
+-->
+
+这相当于为所有扩展点手动启用 `MyPlugin`，如下所示：
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: non-multipoint-scheduler
+    plugins:
+      preScore:
+        enabled:
+        - name: MyPlugin
+      score:
+        enabled:
+        - name: MyPlugin
+      preFilter:
+        enabled:
+        - name: MyPlugin
+      filter:
+        enabled:
+        - name: MyPlugin
+```
+
+<!--
+One benefit of using `multiPoint` here is that if `MyPlugin` implements another
+extension point in the future, the `multiPoint` config will automatically enable it
+for the new extension.
+-->
+
+在这里使用 `multiPoint` 的一个好处是，如果 `MyPlugin` 将来实现另一个扩展点，`multiPoint` 配置将自动为新扩展启用它。
+
+<!--
+Specific extension points can be excluded from `MultiPoint` expansion using
+the `disabled` field for that extension point. This works with disabling default
+plugins, non-default plugins, or with the wildcard (`'*'`) to disable all plugins.
+An example of this, disabling `Score` and `PreScore`, would be:
+-->
+
+可以使用该扩展点的 `disabled` 字段将特定扩展点从 `MultiPoint` 扩展中排除。 
+这适用于禁用默认插件、非默认插件或使用通配符 (`'*'`) 来禁用所有插件。 
+禁用 `Score` 和 `PreScore` 的一个例子是：
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: non-multipoint-scheduler
+    plugins:
+      multiPoint:
+        enabled:
+        - name: 'MyPlugin'
+      preScore:
+        disabled:
+        - name: '*'
+      score:
+        disabled:
+        - name: '*'
+```
+
+<!--
+In `v1beta3`, all [default plugins](#scheduling-plugins) are enabled internally through `MultiPoint`.
+However, individual extension points are still available to allow flexible
+reconfiguration of the default values (such as ordering and Score weights). For
+example, consider two Score plugins `DefaultScore1` and `DefaultScore2`, each with
+a weight of `1`. They can be reordered with different weights like so:
+-->
+
+在 `v1beta3` 中，所有 [默认插件](#scheduling-plugins) 都通过 `MultiPoint` 在内部启用。 
+但是，仍然可以使用单独的扩展点来灵活地重新配置默认值（例如排序和分数权重）。 
+例如，考虑两个Score插件 `DefaultScore1` 和 `DefaultScore2` ，每个插件的权重为 `1` 。 
+它们可以用不同的权重重新排序，如下所示：
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: multipoint-scheduler
+    plugins:
+      score:
+        enabled:
+        - name: 'DefaultScore2'
+          weight: 5
+```
+
+<!--
+In this example, it's unnecessary to specify the plugins in `MultiPoint` explicitly
+because they are default plugins. And the only plugin specified in `Score` is `DefaultScore2`.
+This is because plugins set through specific extension points will always take precedence
+over `MultiPoint` plugins. So, this snippet essentially re-orders the two plugins
+without needing to specify both of them.
+-->
+
+在这个例子中，没有必要在 `MultiPoint` 中明确指定插件，因为它们是默认插件。 
+`Score` 中指定的唯一插件是 `DefaultScore2`。 
+这是因为通过特定扩展点设置的插件将始终优先于 `MultiPoint` 插件。 
+因此，此代码段实质上重新排序了这两个插件，而无需同时指定它们。
+
+
+<!--
+The general hierarchy for precedence when configuring `MultiPoint` plugins is as follows:
+-->
+配置 `MultiPoint` 插件时优先级的一般层次结构如下：
+
+<!--
+1. Specific extension points run first, and their settings override whatever is set elsewhere
+-->
+1. 特定的扩展点首先运行，它们的设置会覆盖其他地方的设置
+   
+<!--2. Plugins manually configured through `MultiPoint` and their settings
+-->
+2. 通过 `MultiPoint` 手动配置的插件及其设置
+   
+<!--3. Default plugins and their default settings 
+-->
+3. 默认插件及其默认设置
+
+<!--
+To demonstrate the above hierarchy, the following example is based on these plugins:
+-->
+为了演示上述层次结构，以下示例基于这些插件：
+|插件|扩展点|
+|---|---|
+|`DefaultQueueSort`|`QueueSort`|
+|`CustomQueueSort`|`QueueSort`|
+|`DefaultPlugin1`|`Score`, `Filter`|
+|`DefaultPlugin2`|`Score`|
+|`CustomPlugin1`|`Score`, `Filter`|
+|`CustomPlugin2`|`Score`, `Filter`|
+
+<!--
+A valid sample configuration for these plugins would be:
+-->
+这些插件的一个有效示例配置是：
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta3
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: multipoint-scheduler
+    plugins:
+      multiPoint:
+        enabled:
+        - name: 'CustomQueueSort'
+        - name: 'CustomPlugin1'
+          weight: 3
+        - name: 'CustomPlugin2'
+        disabled:
+        - name: 'DefaultQueueSort'
+      filter:
+        disabled:
+        - name: 'DefaultPlugin1'
+      score:
+        enabled:
+        - name: 'DefaultPlugin2'
+```
+
+<!--
+Note that there is no error for re-declaring a `MultiPoint` plugin in a specific
+extension point. The re-declaration is ignored (and logged), as specific extension points
+take precedence.
+-->
+请注意，在特定扩展点中重新声明 `MultiPoint` 插件不会出错。 
+重新声明被忽略（并记录），因为特定的扩展点优先。
+
+<!--
+Besides keeping most of the config in one spot, this sample does a few things:
+-->
+
+除了将大部分配置保存在一个位置之外，此示例还做了一些事情：
+
+<!--
+* Enables the custom `queueSort` plugin and disables the default one
+* Enables `CustomPlugin1` and `CustomPlugin2`, which will run first for all of their extension points
+* Disables `DefaultPlugin1`, but only for `filter`
+* Reorders `DefaultPlugin2` to run first in `score` (even before the custom plugins)
+-->
+* 启用自定义 `queueSort` 插件并禁用默认插件
+
+* 启用 `CustomPlugin1` 和 `CustomPlugin2`，这将首先为它们的所有扩展点运行
+
+* 禁用 `DefaultPlugin1`，但仅适用于 `filter`
+
+* 重新排序 `DefaultPlugin2` 以在 `score` 中首先运行（甚至在自定义插件之前）
+
+<!--
+In versions of the config before `v1beta3`, without `multiPoint`, the above snippet would equate to this:
+-->
+在 `v1beta3` 之前的配置版本中，没有 `multiPoint`，上面的代码片段等同于：
+
+```yaml
+apiVersion: kubescheduler.config.k8s.io/v1beta2
+kind: KubeSchedulerConfiguration
+profiles:
+  - schedulerName: multipoint-scheduler
+    plugins:
+
+      # Disable the default QueueSort plugin
+      queueSort:
+        enabled:
+        - name: 'CustomQueueSort'
+        disabled:
+        - name: 'DefaultQueueSort'
+
+      # Enable custom Filter plugins
+      filter:
+        enabled:
+        - name: 'CustomPlugin1'
+        - name: 'CustomPlugin2'
+        - name: 'DefaultPlugin2'
+        disabled:
+        - name: 'DefaultPlugin1'
+
+      # Enable and reorder custom score plugins
+      score:
+        enabled:
+        - name: 'DefaultPlugin2'
+          weight: 1
+        - name: 'DefaultPlugin1'
+          weight: 3
+```
+
+<!--
+While this is a complicated example, it demonstrates the flexibility of `MultiPoint` config
+as well as its seamless integration with the existing methods for configuring extension points.
+-->
+
+虽然这是一个复杂的例子，但它展示了 `MultiPoint` 配置的灵活性以及它与配置扩展点的现有方法的无缝集成。
+
+<!--
+## Scheduler configuration migrations
+-->
+
+## 调度程序配置迁移   {#scheduler-configuration-migrations}
+{{< tabs name="tab_with_md" >}}
+{{% tab name="v1beta1 → v1beta2" %}}
+<!--
+* With the v1beta2 configuration version, you can use a new score extension for the
+  `NodeResourcesFit` plugin.
+  The new extension combines the functionalities of the `NodeResourcesLeastAllocated`,
+  `NodeResourcesMostAllocated` and `RequestedToCapacityRatio` plugins.
+  For example, if you previously used the `NodeResourcesMostAllocated` plugin, you
+  would instead use `NodeResourcesFit` (enabled by default) and add a `pluginConfig`
+  with a `scoreStrategy` that is similar to:
+-->
+* 在 v1beta2 配置版本中，你可以为 `NodeResourcesFit` 插件使用新的 score 扩展。
+ 新的扩展结合了 `NodeResourcesLeastAllocated`、`NodeResourcesMostAllocated` 和 `RequestedToCapacityRatio` 插件的功能。 
+ 例如，如果你之前使用了 `NodeResourcesMostAllocated` 插件，
+ 则可以改用 `NodeResourcesFit`（默认启用）并添加一个 `pluginConfig` 和 `scoreStrategy`，类似于：
+
+  ```yaml
+  apiVersion: kubescheduler.config.k8s.io/v1beta2
+  kind: KubeSchedulerConfiguration
+  profiles:
+  - pluginConfig:
+    - args:
+        scoringStrategy:
+          resources:
+          - name: cpu
+            weight: 1
+          type: MostAllocated
+      name: NodeResourcesFit
+  ```
+
+<!--
+* The scheduler plugin `NodeLabel` is deprecated; instead, use the [`NodeAffinity`](/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity) plugin (enabled by default) to achieve similar behavior.
+-->
+* 调度器插件 `NodeLabel` 已弃用；
+  相反，要使用 [`NodeAffinity`](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity) 
+  插件（默认启用）来实现类似的行为。
+
+<!--
+* The scheduler plugin `ServiceAffinity` is deprecated; instead, use the [`InterPodAffinity`](/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity) plugin (enabled by default) to achieve similar behavior.
+-->
+* 调度程序插件 `ServiceAffinity` 已弃用；
+  相反，使用 [`InterPodAffinity`](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity) 
+  插件（默认启用）来实现类似的行为。
+  
+<!--
+* The scheduler plugin `NodePreferAvoidPods` is deprecated; instead, use [node taints](/docs/concepts/scheduling-eviction/taint-and-toleration/) to achieve similar behavior.
+-->
+* 调度器插件 `NodePreferAvoidPods` 已弃用；
+  相反，使用 [节点污点](/zh-cn/docs/concepts/scheduling-eviction/taint-and-toleration/) 来实现类似的行为。
+
+<!--
+* A plugin enabled in a v1beta2 configuration file takes precedence over the default configuration for that plugin.
+-->
+* 在 v1beta2 配置文件中启用的插件优先于该插件的默认配置。
+
+<!--
+* Invalid `host` or `port` configured for scheduler healthz and metrics bind address will cause validation failure.
+-->
+* 调度器的健康检查和审计的绑定地址，所配置的 `host` 或 `port` 无效将导致验证失败。
+
+{{% /tab %}}
+
+{{% tab name="v1beta2 → v1beta3" %}}
+<!--
+* Three plugins' weight are increased by default:
+  * `InterPodAffinity` from 1 to 2
+  * `NodeAffinity` from 1 to 2
+  * `TaintToleration` from 1 to 3
+-->
+* 默认增加三个插件的权重：
+  * `InterPodAffinity` 从 1 到 2
+  * `NodeAffinity` 从 1 到 2
+  * `TaintToleration` 从 1 到 3
+{{% /tab %}}
+{{< /tabs >}}
+
+## {{% heading "whatsnext" %}}
+
+<!--  
+* Read the [kube-scheduler reference](/docs/reference/command-line-tools-reference/kube-scheduler/)
+* Learn about [scheduling](/docs/concepts/scheduling-eviction/kube-scheduler/)
+* Read the [kube-scheduler configuration (v1beta2)](/docs/reference/config-api/kube-scheduler-config.v1beta2/) reference
+* Read the [kube-scheduler configuration (v1beta3)](/docs/reference/config-api/kube-scheduler-config.v1beta3/) reference
+-->
+* 阅读 [kube-scheduler 参考](/zh-cn/docs/reference/command-line-tools-reference/kube-scheduler/)
+* 了解[调度](/zh-cn/docs/concepts/scheduling-eviction/kube-scheduler/)
+* 阅读 [kube-scheduler 配置 (v1beta2)](/zh-cn/docs/reference/config-api/kube-scheduler-config.v1beta2/) 参考
+* 阅读 [kube-scheduler 配置 (v1beta3)](/zh-cn/docs/reference/config-api/kube-scheduler-config.v1beta3/) 参考
diff --git a/content/zh-cn/docs/reference/scheduling/policies.md b/content/zh-cn/docs/reference/scheduling/policies.md
new file mode 100644
index 0000000000..89905d3bb2
--- /dev/null
+++ b/content/zh-cn/docs/reference/scheduling/policies.md
@@ -0,0 +1,42 @@
+---
+title: 调度策略
+content_type: concept
+sitemap:
+  priority: 0.2 # Scheduling priorities are deprecated
+---
+
+<!--
+title: Scheduling Policies
+content_type: concept
+sitemap:
+  priority: 0.2 # Scheduling priorities are deprecated
+-->
+
+<!-- overview -->
+<!--
+In Kubernetes versions before v1.23, a scheduling policy can be used to specify the *predicates* and *priorities* process. For example, you can set a scheduling policy by
+running `kube-scheduler --policy-config-file <filename>` or `kube-scheduler --policy-configmap <ConfigMap>`.
+
+This scheduling policy is not supported since Kubernetes v1.23. Associated flags `policy-config-file`, `policy-configmap`, `policy-configmap-namespace` and `use-legacy-policy-config` are also not supported. Instead, use the [Scheduler Configuration](/docs/reference/scheduling/config/) to achieve similar behavior.
+-->
+
+在 Kubernetes v1.23 版本之前，可以使用调度策略来指定 *predicates* 和 *priorities* 进程。
+例如，可以通过运行 `kube-scheduler --policy-config-file <filename>` 或者
+ `kube-scheduler --policy-configmap <ConfigMap>` 设置调度策略。
+
+但是从 Kubernetes v1.23 版本开始，不再支持这种调度策略。
+同样地也不支持相关的 `policy-config-file`、 `policy-configmap`、 `policy-configmap-namespace` 以及 `use-legacy-policy-config` 标志。
+你可以通过使用 [调度配置](/zh-cn/docs/reference/scheduling/config/)来实现类似的行为。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* Learn about [scheduling](/docs/concepts/scheduling-eviction/kube-scheduler/)
+* Learn about [kube-scheduler Configuration](/docs/reference/scheduling/config/)
+* Read the [kube-scheduler configuration reference (v1beta3)](/zh-cn/docs/reference/config-api/kube-scheduler-config.v1beta3/)
+-->
+
+* 了解 [调度](/zh-cn/docs/concepts/scheduling-eviction/kube-scheduler/)。
+* 了解 [kube-scheduler 配置](/zh-cn/docs/reference/scheduling/config/)。
+* 阅读 [kube-scheduler 配置参考(v1beta3)](/zh-cn/docs/reference/config-api/kube-scheduler-config.v1beta3/)。
+
diff --git a/content/zh/docs/reference/setup-tools/_index.md b/content/zh-cn/docs/reference/setup-tools/_index.md
similarity index 100%
rename from content/zh/docs/reference/setup-tools/_index.md
rename to content/zh-cn/docs/reference/setup-tools/_index.md
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/_index.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/_index.md
similarity index 82%
rename from content/zh/docs/reference/setup-tools/kubeadm/_index.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/_index.md
index fcb5542a29..36e69e2342 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/_index.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/_index.md
@@ -40,7 +40,7 @@ Instead, we expect higher-level and more tailored tooling to be built on top of
 To install kubeadm, see the [installation guide](/docs/setup/production-environment/tools/kubeadm/install-kubeadm).
 -->
 要安装 kubeadm, 请查阅
-[安装指南](/zh/docs/setup/production-environment/tools/kubeadm/install-kubeadm/).
+[安装指南](/zh-cn/docs/setup/production-environment/tools/kubeadm/install-kubeadm/).
 
 ## {{% heading "whatsnext" %}}
 
@@ -56,24 +56,24 @@ To install kubeadm, see the [installation guide](/docs/setup/production-environm
 * [kubeadm version](/docs/reference/setup-tools/kubeadm/kubeadm-version) to print the kubeadm version
 * [kubeadm alpha](/docs/reference/setup-tools/kubeadm/kubeadm-alpha) to preview a set of features made available for gathering feedback from the community
  -->
-* [kubeadm init](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init)
+* [kubeadm init](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init)
   用于搭建控制平面节点
-* [kubeadm join](/zh/docs/reference/setup-tools/kubeadm/kubeadm-join)
+* [kubeadm join](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-join)
   用于搭建工作节点并将其加入到集群中
-* [kubeadm upgrade](/zh/docs/reference/setup-tools/kubeadm/kubeadm-upgrade)
+* [kubeadm upgrade](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-upgrade)
   用于升级 Kubernetes 集群到新版本
-* [kubeadm config](/zh/docs/reference/setup-tools/kubeadm/kubeadm-config)
+* [kubeadm config](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-config)
   如果你使用了 v1.7.x 或更低版本的 kubeadm 版本初始化你的集群，则使用
   `kubeadm upgrade` 来配置你的集群
-* [kubeadm token](/zh/docs/reference/setup-tools/kubeadm/kubeadm-token)
+* [kubeadm token](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-token)
   用于管理 `kubeadm join` 使用的令牌
-* [kubeadm reset](/zh/docs/reference/setup-tools/kubeadm/kubeadm-reset)
+* [kubeadm reset](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-reset)
   用于恢复通过 `kubeadm init` 或者 `kubeadm join` 命令对节点进行的任何变更
-* [kubeadm certs](/zh/docs/reference/setup-tools/kubeadm/kubeadm-certs)
+* [kubeadm certs](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-certs)
   用于管理 Kubernetes 证书
 * [kubeadm kubeconfig](/docs/reference/setup-tools/kubeadm/kubeadm-kubeconfig)
   用于管理 kubeconfig 文件
-* [kubeadm version](/zh/docs/reference/setup-tools/kubeadm/kubeadm-version)
+* [kubeadm version](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-version)
   用于打印 kubeadm 的版本信息
-* [kubeadm alpha](/zh/docs/reference/setup-tools/kubeadm/kubeadm-alpha)
+* [kubeadm alpha](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-alpha)
   用于预览一组可用于收集社区反馈的特性
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/README.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/README.md
similarity index 53%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/README.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/README.md
index b718c7ef34..c7321f582d 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/README.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/README.md
@@ -1 +1 @@
-此目录下的所有文件都是从其他仓库自动生成的。 **不要人工编辑它们。 您必须在上游仓库中编辑它们**
+此目录下的所有文件都是从其他仓库自动生成的。 **不要人工编辑它们。 你必须在上游仓库中编辑它们**
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/_index.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/_index.md
similarity index 100%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/_index.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/_index.md
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm.md
similarity index 92%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm.md
index 8ebdeb3c1d..7e07147a3f 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm.md
@@ -1,8 +1,11 @@
 
 <!-- 
+kubeadm: easily bootstrap a secure Kubernetes cluster
+
 ### Synopsis 
 -->
 
+kubeadm: 轻松创建一个安全的 Kubernetes 集群
 ### 摘要
 
 <!--
@@ -37,7 +40,7 @@ Example usage:
     (where your workloads, like Pods and Deployments run). 
 -->
 
-创建一个有两台机器的集群，包含一个主节点（用来控制集群），和一个工作节点（运行您的工作负载，像 Pod 和 Deployment）。
+创建一个有两台机器的集群，包含一个主节点（用来控制集群），和一个工作节点（运行你的工作负载，像 Pod 和 Deployment）。
 
 <!--
     ┌──────────────────────────────────────────────────────────┐
@@ -69,7 +72,7 @@ Example usage:
 └──────────────────────────────────────────────────────────┘
 ```
 
-您可以重复第二步，向集群添加更多机器。
+你可以重复第二步，向集群添加更多机器。
 
 <!-- 
 ### Options 
@@ -90,9 +93,9 @@ Example usage:
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for kubeadm
+<p>help for kubeadm</p>
 -->
-kubeadm 操作的帮助信息 
+<p>kubeadm 操作的帮助信息<p>
 </td>
 </tr>
 
@@ -102,9 +105,9 @@ kubeadm 操作的帮助信息
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 指向 '真实' 宿主机根文件系统的路径。
+<p>[实验] 指向 '真实' 宿主机根文件系统的路径。<p>
 </td>
 </tr>
 
diff --git a/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs.md
new file mode 100644
index 0000000000..15278730f5
--- /dev/null
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs.md
@@ -0,0 +1,73 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Commands related to handling kubernetes certificates
+-->
+处理 Kubernetes 证书的相关命令
+
+<!--
+### Synopsis
+-->
+### 概要
+
+<!--
+Commands related to handling kubernetes certificates
+-->
+处理 Kubernetes 证书相关的命令
+
+<!--
+### Options
+-->
+### 选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<!-- td></td><td style="line-height: 130%; word-wrap: break-word;"><p>help for certs</p></td -->
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><!-- help for certs--><p>certs 命令的帮助</p></td>
+</tr>
+
+</tbody>
+</table>
+
+<!--
+### Options inherited from parent commands
+-->
+### 继承于父命令的选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<!-- td></td><td style="line-height: 130%; word-wrap: break-word;"><p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p></td -->
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>[实验] 到'真实'主机根文件系统的路径。</p></td>
+</tr>
+
+</tbody>
+</table>
+
+
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_certificate-key.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_certificate-key.md
similarity index 69%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_certificate-key.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_certificate-key.md
index b008e44b38..ab4f4b5356 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_certificate-key.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_certificate-key.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Generate certificate keys
+-->
+生成证书密钥
 
 <!--
 ### Synopsis
@@ -37,10 +52,12 @@ kubeadm certs certificate-key [flags]
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
+<p>
 <!--
 help for certificate-key
 -->
 certificate-key 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -64,10 +81,12 @@ certificate-key 操作的帮助命令
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
+<p>
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
diff --git a/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_check-expiration.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_check-expiration.md
new file mode 100644
index 0000000000..5cff01b9f7
--- /dev/null
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_check-expiration.md
@@ -0,0 +1,130 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Check certificates expiration for a Kubernetes cluster 
+-->
+为一个 Kubernetes 集群检查证书的到期时间
+
+<!--
+### Synopsis
+-->
+### 概要
+
+<!-- 
+Checks expiration for the certificates in the local PKI managed by kubeadm.
+-->
+检查 kubeadm 管理的本地 PKI 中证书的到期时间。
+
+```
+kubeadm certs check-expiration [flags]
+```
+
+<!--
+### Options
+-->
+### 选项 
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<!--
+<td colspan="2">--cert-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/kubernetes/pki"</td> 
+-->
+<td colspan="2">--cert-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值: "/etc/kubernetes/pki"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!-- 
+<p>The path where to save the certificates</p> 
+-->
+<p>保存证书的路径</p> 
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--config string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!-- 
+<p>Path to a kubeadm configuration file.</p> 
+-->
+<p>kubeadm 配置文件的路径</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!-- 
+<p>help for check-expiration</p> 
+-->
+<p>check-expiration 的帮助命令</p> 
+</td>
+</tr>
+
+<tr>
+<td colspan="2">
+<!-- 
+--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/kubernetes/admin.conf" 
+-->
+--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认为: "/etc/kubernetes/admin.conf"
+</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!-- 
+<p>The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.</p> 
+-->
+<p>在和集群连接时使用该 kubeconfig 文件。
+如果该标志没有设置，那么将会在一些标准的位置去搜索存在的 kubeconfig 文件。</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
+<!--
+### Options inherited from parent commands
+-->
+### 继承于父命令的选项 
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!-- 
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
+ -->
+<p>[实验] 到'真实'主机根文件系统的路径。</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
+
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_generate-csr.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_generate-csr.md
similarity index 70%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_generate-csr.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_generate-csr.md
index 03dcc9298b..30a7f0995c 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_generate-csr.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_generate-csr.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Generate keys and certificate signing requests
+-->
+生成密钥和证书签名请求
 
 <!-- ### Synopsis -->
 ### 概要
@@ -13,7 +28,7 @@ Generates keys and certificate signing requests (CSRs) for all the certificates
 This command is designed for use in [Kubeadm External CA Mode](https://kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/#external-ca-mode). It generates CSRs which you can then submit to your external certificate authority for signing.
 -->
 此命令设计用于
-[Kubeadm 外部 CA 模式](https://kubernetes.io/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/#external-ca-mode)。 
+[Kubeadm 外部 CA 模式](https://kubernetes.io/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/#external-ca-mode)。 
 它生成你可以提交给外部证书颁发机构进行签名的 CSR。
 
 <!--  
@@ -60,7 +75,7 @@ kubeadm certs generate-csr --kubeconfig-dir /tmp/etc-k8s --cert-dir /tmp/etc-k8s
 </tr>
 <tr>
 <!-- td></td><td style="line-height: 130%; word-wrap: break-word;">The path where to save the certificates</td-->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">保存证书的路径</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>保存证书的路径</p></td>
 </tr>
 
 <tr>
@@ -68,7 +83,7 @@ kubeadm certs generate-csr --kubeconfig-dir /tmp/etc-k8s --cert-dir /tmp/etc-k8s
 </tr>
 <tr>
 <!-- td></td><td style="line-height: 130%; word-wrap: break-word;">Path to a kubeadm configuration file.</td -->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">kubeadm 配置文件的路径。</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>kubeadm 配置文件的路径。</p></td>
 </tr>
 
 <tr>
@@ -76,7 +91,7 @@ kubeadm certs generate-csr --kubeconfig-dir /tmp/etc-k8s --cert-dir /tmp/etc-k8s
 </tr>
 <tr>
 <!-- td></td><td style="line-height: 130%; word-wrap: break-word;">help for generate-csr</td -->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">generate-csr 命令的帮助</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>generate-csr 命令的帮助</p></td>
 </tr>
 
 <tr>
@@ -85,7 +100,7 @@ kubeadm certs generate-csr --kubeconfig-dir /tmp/etc-k8s --cert-dir /tmp/etc-k8s
 </tr>
 <tr>
 <!-- td></td><td style="line-height: 130%; word-wrap: break-word;">The path where to save the kubeconfig file.</td-->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">保存 kubeconfig 文件的路径。</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>保存 kubeconfig 文件的路径。</p></td>
 </tr>
 
 </tbody>
@@ -108,9 +123,8 @@ kubeadm certs generate-csr --kubeconfig-dir /tmp/etc-k8s --cert-dir /tmp/etc-k8s
 </tr>
 <tr>
 <!-- <td></td><td style="line-height: 130%; word-wrap: break-word;">[EXPERIMENTAL] The path to the 'real' host root filesystem.</td> -->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">[实验] 到'真实'主机根文件系统的路径。</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>[实验] 到'真实'主机根文件系统的路径。</p></td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew.md
similarity index 61%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew.md
index 58fff42d32..d8102a19ce 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Renew certificates for a Kubernetes cluster
+-->
+为 Kubernetes 集群更新证书
 
 <!--
 ### Synopsis
@@ -30,10 +45,12 @@ kubeadm certs renew [flags]
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
+<p>
 <!--
 help for renew
 -->
 renew 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -58,10 +75,12 @@ renew 操作的帮助命令
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
+<p>
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_admin.conf.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_admin.conf.md
similarity index 68%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_admin.conf.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_admin.conf.md
index d770d8438d..de9376b6ab 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_admin.conf.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_admin.conf.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Renew the certificate embedded in the kubeconfig file for the admin to use and for kubeadm itself 
+-->
+续订 kubeconfig 文件中嵌入的证书，供管理员 和 kubeadm 自身使用。
 
 <!--
 ### Synopsis
@@ -51,9 +66,9 @@ kubeadm certs renew admin.conf [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save the certificates.
+<p>The path where to save the certificates</p>
 -->
-保存证书的路径。
+<p>保存证书的路径。</p>
 </td>
 </tr>
 
@@ -62,30 +77,8 @@ The path where to save the certificates.
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- Path to a kubeadm configuration file.  -->
-kubeadm 配置文件的路径。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--csr-dir string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- The path to output the CSRs and private keys to -->
-CSR 和私钥的输出路径
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--csr-only</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Create CSRs instead of generating certificates
--->
-创建 CSR 而不是生成证书
+<!-- <p>Path to a kubeadm configuration file.</p> -->
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -94,8 +87,8 @@ Create CSRs instead of generating certificates
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- help for admin.conf -->
-admin.conf 子操作的帮助命令
+<!-- <p>help for admin.conf</p> -->
+<p>admin.conf 子操作的帮助命令</p>
 </td>
 </tr>
 
@@ -104,9 +97,9 @@ admin.conf 子操作的帮助命令
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.  -->
-与集群通信时使用的 kubeconfig 文件。
-如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。
+<!-- <p>The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.</p>  -->
+<p>与集群通信时使用的 kubeconfig 文件。
+如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。</p>
 </td>
 </tr>
 
@@ -143,9 +136,9 @@ Use the Kubernetes certificate API to renew certificates
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_all.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_all.md
similarity index 63%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_all.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_all.md
index 2ac56da0dd..28a9fbd42f 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_all.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_all.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Renew all available certificates 
+-->
+续订所有可用证书
 
 <!--
 ### Synopsis
@@ -36,9 +51,9 @@ kubeadm certs renew all [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save and store the certificates.
+<p>The path where to save and store the certificates.</p>
 -->
-存储证书的路径。
+<p>存储证书的路径。</p>
 </td>
 </tr>
 
@@ -48,33 +63,9 @@ The path where to save and store the certificates.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to a kubeadm configuration file.
+<p>Path to a kubeadm configuration file.</p>
 -->
-kubeadm 配置文件的路径。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--csr-dir string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The path to output the CSRs and private keys to
--->
-输出 CSR 和私钥的路径
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--csr-only</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Create CSRs instead of generating certificates
--->
-创建 CSR 而不是生成证书
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -84,9 +75,9 @@ Create CSRs instead of generating certificates
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for all
+<p>help for all</p>
 -->
-all 操作的帮助命令
+<p>all 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -101,10 +92,10 @@ all 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
+<p>The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.</p>
 -->
-与集群通信时使用的 kubeconfig 文件。
-如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。
+<p>与集群通信时使用的 kubeconfig 文件。
+如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。</p>
 </td>
 </tr>
 
@@ -141,9 +132,9 @@ Use the Kubernetes certificate API to renew certificates
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_apiserver-etcd-client.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_apiserver-etcd-client.md
similarity index 67%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_apiserver-etcd-client.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_apiserver-etcd-client.md
index 2e5c428da3..235206573c 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_apiserver-etcd-client.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_apiserver-etcd-client.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Renew the certificate the apiserver uses to access etcd 
+-->
+续订 apiserver 用于访问 etcd 的证书
 
 <!-- 
 ### Synopsis
@@ -49,8 +64,10 @@ kubeadm certs renew apiserver-etcd-client [flags]
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- The path where to save and store the certificates.  -->
-存储证书的路径。
+<!-- 
+<p>The path where to save and store the certificates.</p>
+-->
+<p>存储证书的路径。</p>
 </td>
 </tr>
 
@@ -59,28 +76,10 @@ kubeadm certs renew apiserver-etcd-client [flags]
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- Path to a kubeadm configuration file.  -->
-kubeadm 配置文件的路径。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--csr-dir string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- The path to output the CSRs and private keys to -->
-输出 CSR 和私钥的路径
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--csr-only</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- Create CSRs instead of generating certificates -->
-创建 CSR 而不是生成证书
+<!-- 
+<p>Path to a kubeadm configuration file.</p>  
+-->
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -89,8 +88,10 @@ kubeadm 配置文件的路径。
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- help for apiserver-etcd-client -->
-apiserver-etcd-client 操作的帮助命令
+<!-- 
+<p>help for apiserver-etcd-client</p>
+-->
+<p>apiserver-etcd-client 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -105,20 +106,10 @@ apiserver-etcd-client 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
+<p>The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.</p>
 -->
-与集群通信时使用的 kubeconfig 文件。
-如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--use-api</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- Use the Kubernetes certificate API to renew certificates -->
-使用 Kubernetes 证书 API 续订证书
+<p>与集群通信时使用的 kubeconfig 文件。
+如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。</p>
 </td>
 </tr>
 
@@ -144,8 +135,10 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- [EXPERIMENTAL] The path to the 'real' host root filesystem.  -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<!-- 
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
+-->
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_apiserver-kubelet-client.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_apiserver-kubelet-client.md
similarity index 70%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_apiserver-kubelet-client.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_apiserver-kubelet-client.md
index 9b1d8127b9..4272890db4 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_apiserver-kubelet-client.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_apiserver-kubelet-client.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Renew the certificate for the API server to connect to kubelet 
+-->
+续订 apiserver 用于连接 kubelet 的证书。
 
 <!-- 
 ### Synopsis
@@ -52,9 +67,9 @@ kubeadm certs renew apiserver-kubelet-client [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save and store the certificates.
+<p>The path where to save and store the certificates.</p>
 -->
-存储证书的路径。
+<p>存储证书的路径。</p>
 </td>
 </tr>
 
@@ -64,33 +79,9 @@ The path where to save and store the certificates.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to a kubeadm configuration file.
+<p>Path to a kubeadm configuration file.</p>
 -->
-kubeadm 配置文件的路径。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--csr-dir string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The path to output the CSRs and private keys to
--->
-输出 CSR 和私钥的路径
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--csr-only</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Create CSRs instead of generating certificates
--->
-创建 CSR 而不是生成证书
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -100,9 +91,9 @@ Create CSRs instead of generating certificates
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for apiserver-kubelet-client
+<p>help for apiserver-kubelet-client</p>
 -->
-apiserver-kubelet-client 操作的帮助命令
+<p>apiserver-kubelet-client 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -117,10 +108,10 @@ apiserver-kubelet-client 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
+<p>The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.</p>
 -->
-与集群通信时使用的 kubeconfig 文件。
-如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。
+<p>与集群通信时使用的 kubeconfig 文件。
+如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。</p>
 </td>
 </tr>
 
@@ -157,9 +148,9 @@ Use the Kubernetes certificate API to renew certificates
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_apiserver.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_apiserver.md
similarity index 73%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_apiserver.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_apiserver.md
index a2e2e2c915..345147be14 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_apiserver.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_apiserver.md
@@ -1,3 +1,19 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+<!--
+Renew the certificate for serving the Kubernetes API
+-->
+续订用于提供 Kubernetes API 的证书
 
 <!--
 ### Synopsis
@@ -12,7 +28,6 @@ Renew the certificate for serving the Kubernetes API.
 <!--
 Renewals run unconditionally, regardless of certificate expiration date; extra attributes such as SANs will be based on the existing file/certificates, there is no need to resupply them.
 -->
-
 无论证书的到期日期如何，续订都会无条件地进行；SAN 等额外属性将基于现有文件/证书，因此无需重新提供它们。
 
 <!--
@@ -22,7 +37,7 @@ Renewal by default tries to use the certificate authority in the local PKI manag
 可以使用 K8s 证书 API 进行证书更新，或者作为最后一个选择来生成 CSR 请求。
 
 <!--
-After renewal, in order to make changes effective, is is required to restart control-plane components and eventually re-distribute the renewed certificate in case the file is used elsewhere.
+After renewal, in order to make changes effective, is required to restart control-plane components and eventually re-distribute the renewed certificate in case the file is used elsewhere.
 -->
 续订后，为了使更改生效，需要重新启动控制平面组件，并最终重新分发更新的证书，以防文件在其他地方使用。
 
@@ -55,7 +70,9 @@ kubeadm certs renew apiserver [flags]
 <!--
 The path where to save the certificates.
 -->
+<p>
 保存证书的路径。
+</p>
 </td>
 </tr>
 
@@ -67,31 +84,9 @@ The path where to save the certificates.
 <!--
 Path to a kubeadm configuration file.
 -->
+<p>
 kubeadm 配置文件的路径。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--csr-dir string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;"> 
-<!--
-The path to output the CSRs and private keys to
--->
-CSR 和私钥的输出路径
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--csr-only</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Create CSRs instead of generating certificates
--->
-创建 CSR 而不是生成证书
+</p>
 </td>
 </tr>
 
@@ -103,37 +98,26 @@ Create CSRs instead of generating certificates
 <!--
 help for apiserver
 -->
+<p>
 apiserver 子操作的帮助命令
+</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">
-<!--
---kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/kubernetes/admin.conf"
--->
+<td colspan="2"><!-- --kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/kubernetes/admin.conf" -->
 --kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值："/etc/kubernetes/admin.conf"
 </td>
 </tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
--->
-与集群通信时使用的 kubeconfig 文件。
-如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。
-</td>
-</tr>
 
 <tr>
-<td colspan="2">--use-api</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Use the Kubernetes certificate API to renew certificates
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><!--
+The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
 -->
-使用 Kubernetes 证书 API 续订证书
+<p>
+与集群通信时使用的 kubeconfig 文件。
+如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。
+</p>
 </td>
 </tr>
 
@@ -143,7 +127,6 @@ Use the Kubernetes certificate API to renew certificates
 <!--
 ### Options inherited from parent commands
 -->
-
 ### 从父命令继承的选项
 
    <table style="width: 100%; table-layout: fixed;">
@@ -161,10 +144,11 @@ Use the Kubernetes certificate API to renew certificates
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_controller-manager.conf.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_controller-manager.conf.md
similarity index 69%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_controller-manager.conf.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_controller-manager.conf.md
index a4d974bb52..9285782b4b 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_controller-manager.conf.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_controller-manager.conf.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Renew the certificate embedded in the kubeconfig file for the controller manager to use 
+-->
+续订 kubeconfig 文件中嵌入的证书，以供控制器管理器（Controller Manager）使用。
 
 <!--
 ### Synopsis
@@ -52,9 +67,9 @@ kubeadm alpha renew controller-manager.conf [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save the certificates.
+<p>The path where to save the certificates.</p>
 -->
-保存证书的路径。
+<p>保存证书的路径。</p>
 </td>
 </tr>
 
@@ -64,33 +79,9 @@ The path where to save the certificates.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to a kubeadm configuration file.
+<p>Path to a kubeadm configuration file.</p>
 -->
-kubeadm 配置文件的路径。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--csr-dir string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The path to output the CSRs and private keys to
--->
-CSR 和私钥的输出路径
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--csr-only</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Create CSRs instead of generating certificates
--->
-创建 CSR 而不是生成证书
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -100,9 +91,9 @@ Create CSRs instead of generating certificates
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for controller-manager.conf
+<p>help for controller-manager.conf</p>
 -->
-controller-manager.conf 操作的帮助命令
+<p>controller-manager.conf 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -117,10 +108,10 @@ controller-manager.conf 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
+<p>The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.</p>
 -->
-与集群通信时使用的 kubeconfig 文件。
-如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。
+<p>与集群通信时使用的 kubeconfig 文件。
+如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。</p>
 </td>
 </tr>
 
@@ -157,9 +148,9 @@ Use the Kubernetes certificate API to renew certificates
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-healthcheck-client.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-healthcheck-client.md
similarity index 78%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-healthcheck-client.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-healthcheck-client.md
index 44f59cffa0..bb417a018e 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-healthcheck-client.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-healthcheck-client.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Renew the certificate for liveness probes to healthcheck etcd
+-->
+续订存活态探针的证书，用于对 etcd 执行健康检查
 
 <!--
 ### Synopsis
@@ -21,7 +36,7 @@ Renewal by default tries to use the certificate authority in the local PKI manag
 也可以使用 K8s certificate API 进行证书续订，或者（作为最后一种选择）生成 CSR 请求。
 
 <!--
-After renewal, in order to make changes effective, is is required to restart control-plane components and eventually re-distribute the renewed certificate in case the file is used elsewhere.
+After renewal, in order to make changes effective, is required to restart control-plane components and eventually re-distribute the renewed certificate in case the file is used elsewhere.
 -->
 续订后，为了使更改生效，需要重新启动控制平面组件，并最终重新分发更新的证书，以防证书文件在其他地方使用。
 
@@ -54,7 +69,9 @@ kubeadm certs renew etcd-healthcheck-client [flags]
 <!--
 The path where to save the certificates.
 -->
+<p>
 保存证书的路径。
+</p>
 </td>
 </tr>
 
@@ -66,33 +83,10 @@ The path where to save the certificates.
 <!--
 Path to a kubeadm configuration file.
 -->
+<p>
 kubeadm 配置文件的路径。
+</p>
 </td>
-</tr>
-
-<tr>
-<td colspan="2">--csr-dir string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The path to output the CSRs and private keys to
--->
-CSR 和私钥的输出路径
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--csr-only</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Create CSRs instead of generating certificates
--->
-创建 CSR 而不是生成证书
-</td>
-</tr>
 
 <tr>
 <td colspan="2">-h, --help</td>
@@ -102,7 +96,9 @@ Create CSRs instead of generating certificates
 <!--
 help for etcd-healthcheck-client
 -->
+<p>
 etcd-healthcheck-client 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -119,20 +115,10 @@ etcd-healthcheck-client 操作的帮助命令
 <!--
 The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
 -->
+<p>
 与集群通信时使用的 kubeconfig 文件。
 如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--use-api</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Use the Kubernetes certificate API to renew certificates
--->
-使用 Kubernetes 证书 API 续订证书
+</p>
 </td>
 </tr>
 
@@ -159,10 +145,11 @@ Use the Kubernetes certificate API to renew certificates
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-peer.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-peer.md
similarity index 82%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-peer.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-peer.md
index 55264306eb..1207467a3f 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-peer.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-peer.md
@@ -1,3 +1,19 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+<!--
+Renew the certificate for etcd nodes to communicate with each other
+-->
+续订 etcd 节点间用来相互通信的证书
 
 <!--
 ### Synopsis
@@ -54,7 +70,9 @@ kubeadm certs renew etcd-peer [flags]
 <!--
 The path where to save the certificates.
 -->
+<p>
 保存证书的路径。
+</p>
 </td>
 </tr>
 
@@ -66,31 +84,9 @@ The path where to save the certificates.
 <!--
 Path to a kubeadm configuration file.
 -->
+<p>
 kubeadm 配置文件的路径。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--csr-dir string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The path to output the CSRs and private keys to
--->
-CSR 和私钥的输出路径
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--csr-only</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Create CSRs instead of generating certificates
--->
-创建 CSR 而不是生成证书
+</p>
 </td>
 </tr>
 
@@ -119,22 +115,16 @@ etcd-peer 操作的帮助命令
 <!--
 The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
 -->
+<p>
 与集群通信时使用的 kubeconfig 文件。
 如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。
+</p>
 </td>
 </tr>
 
 <tr>
 <td colspan="2">--use-api</td>
 </tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Use the Kubernetes certificate API to renew certificates
--->
-使用 Kubernetes 证书 API 续订证书
-</td>
-</tr>
 
 </tbody>
 </table>
@@ -159,10 +149,11 @@ Use the Kubernetes certificate API to renew certificates
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-server.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-server.md
similarity index 78%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-server.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-server.md
index 237c9d3f44..2b82842544 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-server.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_etcd-server.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Renew the certificate for serving etcd
+-->
+续订用于提供 etcd 服务的证书
 
 <!--
 ### Synopsis
@@ -21,7 +36,7 @@ Renewal by default tries to use the certificate authority in the local PKI manag
 可以使用 K8s 证书 API 进行证书续订，或者作为最后一种选择来生成 CSR 请求。
 
 <!--
-After renewal, in order to make changes effective, is is required to restart control-plane components and eventually re-distribute the renewed certificate in case the file is used elsewhere.
+After renewal, in order to make changes effective, is required to restart control-plane components and eventually re-distribute the renewed certificate in case the file is used elsewhere.
 -->
 续订后，为了使更改生效，需要重新启动控制平面组件，并最终重新分发更新的证书，以防文件在其他地方使用。
 
@@ -54,7 +69,9 @@ kubeadm certs renew etcd-server [flags]
 <!--
 The path where to save the certificates.
 -->
+<p>
 保存证书的路径。
+</p>
 </td>
 </tr>
 
@@ -66,31 +83,9 @@ The path where to save the certificates.
 <!--
 Path to a kubeadm configuration file.
 -->
+<p>
 kubeadm 配置文件的路径。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--csr-dir string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The path to output the CSRs and private keys to
--->
-CSR 和私钥的输出路径
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--csr-only</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Create CSRs instead of generating certificates
--->
-创建 CSR 而不是生成证书
+</p>
 </td>
 </tr>
 
@@ -102,7 +97,9 @@ Create CSRs instead of generating certificates
 <!--
 help for etcd-server
 -->
+<p>
 etcd-server 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -119,22 +116,16 @@ etcd-server 操作的帮助命令
 <!--
 The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
 -->
+<p>
 与集群通信时使用的 kubeconfig 文件。
 如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。
+</p>
 </td>
 </tr>
 
 <tr>
 <td colspan="2">--use-api</td>
 </tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Use the Kubernetes certificate API to renew certificates
--->
-使用 Kubernetes 证书 API 续订证书
-</td>
-</tr>
 
 </tbody>
 </table>
@@ -142,7 +133,6 @@ Use the Kubernetes certificate API to renew certificates
 <!--
 ### Options inherited from parent commands
 -->
-
 ### 从父命令继承的选项
 
    <table style="width: 100%; table-layout: fixed;">
@@ -160,10 +150,11 @@ Use the Kubernetes certificate API to renew certificates
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_front-proxy-client.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_front-proxy-client.md
similarity index 70%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_front-proxy-client.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_front-proxy-client.md
index 7dac9e30d2..ca748f5482 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_front-proxy-client.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_front-proxy-client.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Renew the certificate for the front proxy client 
+-->
+为前端代理客户端续订证书。
 
 <!--
 ### Synopsis
@@ -48,9 +63,9 @@ kubeadm certs renew front-proxy-client [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save the certificates
+<p>The path where to save the certificates</p>
 -->
-存储证书的路径。
+<p>存储证书的路径。</p>
 </td>
 </tr>
 
@@ -60,33 +75,9 @@ The path where to save the certificates
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to a kubeadm configuration file.
+<p>Path to a kubeadm configuration file.</p>
 -->
-kubeadm 配置文件的路径。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--csr-dir string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The path to output the CSRs and private keys to
--->
-输出 CSR 和私钥的路径
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--csr-only</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Create CSRs instead of generating certificates
--->
-创建 CSR 而不是生成证书
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -96,9 +87,9 @@ Create CSRs instead of generating certificates
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for front-proxy-client
+<p>help for front-proxy-client</p>
 -->
-front-proxy-client 操作的帮助命令
+<p>front-proxy-client 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -113,10 +104,10 @@ front-proxy-client 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
+<p>The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.</p>
 -->
-与集群通信时使用的 kubeconfig 文件。
-如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。
+<p>与集群通信时使用的 kubeconfig 文件。
+如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。</p>
 </td>
 </tr>
 
@@ -153,9 +144,9 @@ Use the Kubernetes certificate API to renew certificates
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_scheduler.conf.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_scheduler.conf.md
similarity index 68%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_scheduler.conf.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_scheduler.conf.md
index 9898202f48..33a13fb95c 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_scheduler.conf.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_renew_scheduler.conf.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Renew the certificate embedded in the kubeconfig file for the scheduler manager to use 
+-->
+续订 kubeconfig 文件中嵌入的证书，以供调度管理器使用
 
 <!--
 ### Synopsis
@@ -52,9 +67,9 @@ kubeadm certs renew scheduler.conf [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save the certificates.
+<p>The path where to save the certificates.</p>
 -->
-保存证书的路径。
+<p>保存证书的路径。</p>
 </td>
 </tr>
 
@@ -64,33 +79,9 @@ The path where to save the certificates.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to a kubeadm configuration file.
+<p>Path to a kubeadm configuration file.</p>
 -->
-kubeadm 配置文件的路径。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--csr-dir string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The path to output the CSRs and private keys to
--->
-CSR 和私钥的输出路径
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--csr-only</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Create CSRs instead of generating certificates
--->
-创建 CSR 而不是生成证书
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -100,9 +91,9 @@ Create CSRs instead of generating certificates
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for scheduler.conf
+<p>help for scheduler.conf</p>
 -->
-scheduler.conf 操作的帮助命令
+<p>scheduler.conf 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -117,22 +108,10 @@ scheduler.conf 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
+<p>The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.</p>
 -->
-与集群通信时使用的 kubeconfig 文件。
-如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--use-api</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Use the Kubernetes certificate API to renew certificates
--->
-使用 Kubernetes 证书 API 续订证书
+<p>与集群通信时使用的 kubeconfig 文件。
+如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。</p>
 </td>
 </tr>
 
@@ -157,9 +136,9 @@ Use the Kubernetes certificate API to renew certificates
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_completion.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_completion.md
similarity index 82%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_completion.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_completion.md
index 7f57fa22d4..73979c0424 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_completion.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_completion.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Output shell completion code for the specified shell (bash or zsh)
+-->
+为指定 Shell（Bash 或 Zsh） 输出 Shell 补全代码
 
 <!--
 ### Synopsis
@@ -46,7 +61,7 @@ If bash-completion is not installed on Linux, please install the 'bash-completio
 via your distribution's package manager.
 -->
 
-如果在 Linux 上没有安装 bash-completion，请通过您的发行版的包管理器安装 `bash-completion` 软件包。
+如果在 Linux 上没有安装 bash-completion，请通过你的发行版的包管理器安装 `bash-completion` 软件包。
 
 <!--
 Note for zsh users: [1] zsh completions are only supported in versions of zsh &gt;= 5.2
@@ -118,7 +133,9 @@ source <(kubeadm completion zsh)
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!-- help for completion -->
+<p>
 completion 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -146,7 +163,9 @@ completion 操作的帮助命令
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config.md
similarity index 63%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config.md
index 3d15456c8d..b45cb94f1c 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Manage configuration for a kubeadm cluster persisted in a ConfigMap in the cluster 
+-->
+管理持久化在 ConfigMap 中的 kubeadm 集群的配置
 
 <!--
 ### Synopsis
@@ -41,8 +56,10 @@ kubeadm config [flags]
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- help for config -->
-config 操作的帮助命令
+<!-- 
+<p>help for config</p>
+-->
+<p>config 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -56,10 +73,11 @@ config 操作的帮助命令
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- The kubeconfig file to use when talking to the cluster.
-If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
+<!-- 
+<p>The kubeconfig file to use when talking to the cluster.
+If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.</p>
 -->
-用于和集群通信的 kubeconfig 文件。如果它没有被设置，那么 kubeadm 将会搜索一个已经存在于标准路径的 kubeconfig 文件
+<p>用于和集群通信的 kubeconfig 文件。如果它没有被设置，那么 kubeadm 将会搜索一个已经存在于标准路径的 kubeconfig 文件
 </td>
 </tr>
 
@@ -84,8 +102,10 @@ If the flag is not set, a set of standard locations can be searched for an exist
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- [EXPERIMENTAL] The path to the 'real' host root filesystem.  -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<!-- 
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>  
+-->
+<p>[实验] 到 '真实' 主机根文件系统的路径。
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images.md
similarity index 70%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images.md
index 6177ab80c1..ae7f5ac3f1 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Interact with container images used by kubeadm
+-->
+与 kubeadm 使用的容器镜像交互
 
 <!--
 ### Synopsis
@@ -36,7 +51,9 @@ kubeadm config images [flags]
 <!--
 help for images
 -->
+<p>
 images 的帮助命令
+</p>
 </td>
 </tr>
 
@@ -47,7 +64,6 @@ images 的帮助命令
 <!--
 ### Options inherited from parent commands
 -->
-
 ### 从父命令继承的选项
 
    <table style="width: 100%; table-layout: fixed;">
@@ -70,7 +86,9 @@ images 的帮助命令
 <!--
 The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
 -->
+<p>
 用于和集群通信的 kubeconfig 文件。如果它没有被设置，那么 kubeadm 将会搜索一个已经存在于标准路径的 kubeconfig 文件。
+</p>
 </td>
 </tr>
 
@@ -82,7 +100,9 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images_list.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images_list.md
similarity index 63%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images_list.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images_list.md
index 861f3a6a66..1f8db00a51 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images_list.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images_list.md
@@ -1,15 +1,36 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+<!--
+该文件是使用通用[生成器](https://github.com/kubernetes-sigs/reference-docs/) 从组件的 Go 源代码自动生成的。
+要了解如何生成参考文档，请阅读[参与参考文档](/docs/contribute/generate-ref-docs/)。
+要更新参考内容，请按照[贡献上游](/docs/contribute/generate-ref-docs/contribute-upstream/) 指导。
+你可以针对[参考文献](https://github.com/kubernetes-sigs/reference-docs/) 项目归档文档格式错误。
+-->
 
 <!--
+
+<!--
+Print a list of images kubeadm will use. The configuration file is used in case any images or image repositories are customized
+-->
+打印 kubeadm 要使用的镜像列表。配置文件用于自定义镜像或镜像存储库
+
 ### Synopsis
 -->
 
 ### 概要
 
 <!--
-Print a list of images kubeadm will use. The configuration file is used in case any images or image repositories are customized.
+Print a list of images kubeadm will use. The configuration file is used in case any images or image repositories are customized
 -->
-
-打印 kubeadm 要使用的镜像列表。配置文件用于自定义任何镜像或镜像存储库。
+打印 kubeadm 要使用的镜像列表。配置文件用于自定义镜像或镜像存储库
 
 ```
 kubeadm config images list [flags]
@@ -39,23 +60,10 @@ kubeadm config images list [flags]
 <!-- 
 If true, ignore any errors in templates when a field or map key is missing in the template. Only applies to golang and jsonpath output formats.
 -->
+<p>
 如果设置为 true，则在模板中缺少字段或哈希表的键时忽略模板中的任何错误。
 仅适用于 golang 和 jsonpath 输出格式。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">
-<!-- -o, --experimental-output string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "text" -->
--o, --experimental-output string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值："text"
-</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--  
-Output format. One of: text|json|yaml|go-template|go-template-file|template|templatefile|jsonpath|jsonpath-as-json|jsonpath-file.
--->
-输出格式：text|json|yaml|go-template|go-template-file|template|templatefile|jsonpath|jsonpath-as-json|jsonpath-file 其中之一
+</p>
 </td>
 </tr>
 
@@ -67,9 +75,28 @@ Output format. One of: text|json|yaml|go-template|go-template-file|template|temp
 <!--
 Path to a kubeadm configuration file.
 -->
+<p>
 kubeadm 配置文件的路径。
+</p>
 </td>
 </tr>
+<tr>
+<td colspan="2">
+<!-- -o, --experimental-output string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "text" -->
+-o, --experimental-output string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值："text"
+</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--  
+Output format. One of: text|json|yaml|go-template|go-template-file|template|templatefile|jsonpath|jsonpath-as-json|jsonpath-file.
+-->
+<p>
+输出格式：text|json|yaml|go-template|go-template-file|template|templatefile|jsonpath|jsonpath-as-json|jsonpath-file 其中之一
+</p>
+</td>
+</tr>
+
 
 <tr>
 <td colspan="2">--feature-gates string</td>
@@ -77,12 +104,14 @@ kubeadm 配置文件的路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-A set of key=value pairs that describe feature gates for various features. Options are:<br/>IPv6DualStack=true|false (ALPHA - default=false)
+A set of key=value pairs that describe feature gates for various features. Options are:<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)<br/>UnversionedKubeletConfigMap=true|false (BETA - default=true)
 -->
+<p>
 一组键值对（key=value），用于描述各种特征。选项是：
-<br/>Auditing=true|false (ALPHA - 默认=false)
-<br/>CoreDNS=true|false (默认=true)
-<br/>DynamicKubeletConfig=true|false (BETA - 默认=false)
+<br/>PublicKeysECDSA=true|false (ALPHA - 默认=false)
+<br/>RootlessControlPlane=true|false (ALPHA - 默认=false)
+<br/>UnversionedKubeletConfigMap=true|false (BETA - 默认=true)
+</p>
 </td>
 </tr>
 
@@ -94,7 +123,9 @@ A set of key=value pairs that describe feature gates for various features. Optio
 <!--
 help for list
 -->
+<p>
 list 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -107,14 +138,16 @@ list 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!-- Choose a container registry to pull control plane images from -->
+<p>
 选择要从中拉取控制平面镜像的容器仓库
+</p>
 </td>
 </tr>
 
 <tr>
 <td colspan="2">
 <!--
---image-repository string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "k8s.gcr.io"
+--kubernetes-version string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "stable-1"
 -->
 --kubernetes-version string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值："stable-1"
 </td>
@@ -122,9 +155,30 @@ list 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Choose a container registry to pull control plane images from
+Choose a specific Kubernetes version for the control plane.
 -->
+<p>
 为控制平面选择一个特定的 Kubernetes 版本
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">
+<!--
+--show-managed-fields
+-->
+--show-managed-fields
+</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+If true, keep the managedFields when printing objects in JSON or YAML format.
+-->
+<p>
+如果为 true，则在以 JSON 或 YAML 格式打印对象时保留 managedFields。
+</p>
 </td>
 </tr>
 
@@ -135,7 +189,6 @@ Choose a container registry to pull control plane images from
 <!--
 ### Options inherited from parent commands
 -->
-
 ### 从父命令继承的选项
 
    <table style="width: 100%; table-layout: fixed;">
@@ -158,7 +211,9 @@ Choose a container registry to pull control plane images from
 <!--
 The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
 -->
+<p>
 用于和集群通信的 kubeconfig 文件。如果它没有被设置，那么 kubeadm 将会搜索一个已经存在于标准路径的 kubeconfig 文件。
+</p>
 </td>
 </tr>
 
@@ -170,7 +225,9 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images_pull.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images_pull.md
similarity index 68%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images_pull.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images_pull.md
index a95cda878c..b134747c62 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images_pull.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_images_pull.md
@@ -1,3 +1,24 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+<!--
+该文件是使用通用[生成器](https://github.com/kubernetes-sigs/reference-docs/) 从组件的 Go 源代码自动生成的。
+要了解如何生成参考文档，请阅读[参与参考文档](/docs/contribute/generate-ref-docs/)。
+要更新参考内容，请按照[贡献上游](/docs/contribute/generate-ref-docs/contribute-upstream/) 指导。
+你可以针对[参考文献](https://github.com/kubernetes-sigs/reference-docs/) 项目归档文档格式错误。
+-->
+
+<!--
+Pull images used by kubeadm
+-->
+拉取 kubeadm 使用的镜像。
 
 <!--
 ### Synopsis
@@ -36,7 +57,9 @@ kubeadm config images pull [flags]
 <!--
 Path to a kubeadm configuration file.
 -->
+<p>
 kubeadm 配置文件的路径。
+</p>
 </td>
 </tr>
 
@@ -48,7 +71,9 @@ kubeadm 配置文件的路径。
 <!--
 Path to the CRI socket to connect. If empty kubeadm will try to auto-detect this value; use this option only if you have more than one CRI installed or if you have non-standard CRI socket.
 -->
+<p>
 要连接的 CRI 套接字的路径。如果为空，则 kubeadm 将尝试自动检测此值；仅当安装了多个 CRI 或具有非标准 CRI 插槽时，才使用此选项。
+</p>
 </td>
 </tr>
 
@@ -58,9 +83,12 @@ Path to the CRI socket to connect. If empty kubeadm will try to auto-detect this
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-A set of key=value pairs that describe feature gates for various features. Options are:<br/>IPv6DualStack=true|false (ALPHA - default=false)
+A set of key=value pairs that describe feature gates for various features. Options are:<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)<br/>UnversionedKubeletConfigMap=true|false (BETA - default=true)
 -->
-一系列键值对（key=value），用于描述各种特征。可选项是：<br/>IPv6DualStack=true|false (ALPHA - 默认值=false)
+一系列键值对（key=value），用于描述各种特征。可选项是：
+<br/>PublicKeysECDSA=true|false (ALPHA - 默认值=false)
+<br/>RootlessControlPlane=true|false (ALPHA - 默认值=false)
+<br/>UnversionedKubeletConfigMap=true|false (BETA - 默认值=true)
 </td>
 </tr>
 
@@ -72,7 +100,9 @@ A set of key=value pairs that describe feature gates for various features. Optio
 <!--
 help for pull
 -->
+<p>
 pull 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -89,7 +119,9 @@ pull 操作的帮助命令
 <!--
 Choose a container registry to pull control plane images from
 -->
+<p>
 选择用于拉取控制平面镜像的容器仓库
+</p>
 </td>
 </tr>
 
@@ -106,7 +138,9 @@ Choose a container registry to pull control plane images from
 <!--
 Choose a specific Kubernetes version for the control plane.
 -->
+<p>
 为控制平面选择一个特定的 Kubernetes 版本。
+</p>
 </td>
 </tr>
 
@@ -139,7 +173,9 @@ Choose a specific Kubernetes version for the control plane.
 <!--
 The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
 -->
+<p>
 用于和集群通信的 kubeconfig 文件。如果它没有被设置，那么 kubeadm 将会搜索一个已经存在于标准路径的 kubeconfig 文件。
+</p>
 </td>
 </tr>
 
@@ -151,7 +187,9 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_migrate.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_migrate.md
similarity index 58%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_migrate.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_migrate.md
index 7d1ae11ea0..df70d06637 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_migrate.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_migrate.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Read an older version of the kubeadm configuration API types from a file, and output the similar config object for the newer version 
+-->
+从文件中读取旧版本的 kubeadm 配置的 API 类型，并为新版本输出类似的配置对象
 
 <!--
 ### Synopsis
@@ -9,12 +24,11 @@
 This command lets you convert configuration objects of older versions to the latest supported version,
 locally in the CLI tool without ever touching anything in the cluster.
 In this version of kubeadm, the following API versions are supported:
-- kubeadm.k8s.io/v1beta2
+- kubeadm.k8s.io/v1beta3
 -->
 
 此命令允许您在 CLI 工具中将本地旧版本的配置对象转换为最新支持的版本，而无需变更集群中的任何内容。在此版本的 kubeadm 中，支持以下 API 版本：
-
-- kubeadm.k8s.io/v1beta2
+- kubeadm.k8s.io/v1beta3
 
 <!--
 Further, kubeadm can only write out config of version "kubeadm.k8s.io/v1beta2", but read both types.
@@ -55,8 +69,10 @@ kubeadm config migrate [flags]
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- help for migrate -->
-migrate 操作的帮助信息
+<!-- 
+<p>help for migrate</p> 
+-->
+<p>migrate 操作的帮助信息</p>
 </td>
 </tr>
 
@@ -66,9 +82,9 @@ migrate 操作的帮助信息
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to the resulting equivalent kubeadm config file using the new API version. Optional, if not specified output will be sent to STDOUT.
+<p>Path to the resulting equivalent kubeadm config file using the new API version. Optional, if not specified output will be sent to STDOUT.</p>
 -->
-使用新的 API 版本生成的 kubeadm 配置文件的路径。这个路径是可选的。如果没有指定，输出将被写到 stdout。
+<p>使用新的 API 版本生成的 kubeadm 配置文件的路径。这个路径是可选的。如果没有指定，输出将被写到 stdout。</p>
 </td>
 </tr>
 
@@ -78,9 +94,9 @@ Path to the resulting equivalent kubeadm config file using the new API version.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to the kubeadm config file that is using an old API version and should be converted. This flag is mandatory.
+<p>Path to the kubeadm config file that is using an old API version and should be converted. This flag is mandatory.</p>
 -->
-使用旧 API 版本且应转换的 kubeadm 配置文件的路径。此参数是必需的。
+<p>使用旧 API 版本且应转换的 kubeadm 配置文件的路径。此参数是必需的。</p>
 </td>
 </tr>
 
@@ -109,9 +125,9 @@ Path to the kubeadm config file that is using an old API version and should be c
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
+<p>The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.</p>
 -->
-用于和集群通信的 kubeconfig 文件。如果未设置，那么 kubeadm 将会搜索一个已经存在于标准路径的 kubeconfig 文件。
+<p>用于和集群通信的 kubeconfig 文件。如果未设置，那么 kubeadm 将会搜索一个已经存在于标准路径的 kubeconfig 文件。</p>
 </td>
 </tr>
 
@@ -120,8 +136,10 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- [EXPERIMENTAL] The path to the 'real' host root filesystem.  -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<!-- 
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>  
+-->
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_print.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_print.md
similarity index 91%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_print.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_print.md
index 9132e3a04b..145bf61fa5 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_print.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_print.md
@@ -21,10 +21,10 @@ Print configuration
 
 <!--
 This command prints configurations for subcommands provided.
-For details, see: https://godoc.org/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta2
+For details, see: https://pkg.go.dev/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm#section-directories
 -->
 此命令打印子命令所提供的配置信息。
-相关细节可参阅 https://godoc.org/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta2
+相关细节可参阅: https://pkg.go.dev/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm#section-directories
 
 ```
 kubeadm config print [flags]
diff --git a/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_print_init-defaults.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_print_init-defaults.md
new file mode 100644
index 0000000000..0ae02abb63
--- /dev/null
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_print_init-defaults.md
@@ -0,0 +1,123 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Print default init configuration, that can be used for 'kubeadm init' 
+-->
+打印用于 'kubeadm init' 的默认 init 配置
+
+<!--
+### Synopsis
+-->
+### 概要
+
+<!--
+This command prints objects such as the default init configuration that is used for 'kubeadm init'.
+-->
+
+此命令打印对象，例如用于 'kubeadm init' 的默认 init 配置对象。
+
+<!--
+<p>Note that sensitive values like the Bootstrap Token fields are replaced with placeholder values like "abcdef.0123456789abcdef" in order to pass validation but
+not perform the real computation for creating a token.
+-->
+
+<p>请注意，Bootstrap Token 字段之类的敏感值已替换为 "abcdef.0123456789abcdef" 之类的占位符值以通过验证，但不执行创建令牌的实际计算。
+
+```
+kubeadm config print init-defaults [flags]
+```
+
+<!--
+### Options
+-->
+
+### 选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--component-configs strings</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>A comma-separated list for component config API objects to print the default values for. Available values: [KubeProxyConfiguration KubeletConfiguration]. If this flag is not set, no component configs will be printed.</p>
+-->
+<p>组件配置 API 对象的逗号分隔列表，打印其默认值。可用值：[KubeProxyConfiguration KubeletConfiguration]。如果未设置此参数，则不会打印任何组件配置。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>help for init-defaults</p>
+-->
+<p>init-defaults 操作的帮助命令</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
+<!--
+### Options inherited from parent commands
+-->
+
+### 从父命令继承的选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">
+<!--
+--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/kubernetes/admin.conf"
+-->
+--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值："/etc/kubernetes/admin.conf"
+</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.</p>
+-->
+<p>与集群通信时使用的 kubeconfig 文件。如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
+-->
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_print_join-defaults.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_print_join-defaults.md
similarity index 70%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_print_join-defaults.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_print_join-defaults.md
index 6b63d74216..3e69e53bf3 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_print_join-defaults.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_print_join-defaults.md
@@ -1,3 +1,19 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+<!--
+Print default join configuration, that can be used for 'kubeadm join'
+-->
+打印默认的节点添加配置，该配置可用于 'kubeadm join' 命令
 
 <!--
 ### Synopsis
@@ -12,12 +28,12 @@ This command prints objects such as the default join configuration that is used
 此命令打印对象，例如用于 'kubeadm join' 的默认 join 配置对象。
 
 <!--
-Note that sensitive values like the Bootstrap Token fields are replaced with placeholder values like {"abcdef.0123456789abcdef" "" "nil" &lt;nil&gt; [] []} in order to pass validation but
+Note that sensitive values like the Bootstrap Token fields are replaced with placeholder values like "abcdef.0123456789abcdef" in order to pass validation but
 not perform the real computation for creating a token.
 -->
 
-请注意，诸如启动引导令牌字段之类的敏感值已替换为 {"abcdef.0123456789abcdef" "" "nil" &lt;nil&gt; [] []}
-之类的占位符值以通过验证，但不执行创建令牌的实际计算。
+请注意，诸如启动引导令牌字段之类的敏感值已替换为 "abcdef.0123456789abcdef" 之类的占位符值以通过验证，
+但不执行创建令牌的实际计算。
 
 ```
 kubeadm config print join-defaults [flags]
@@ -37,14 +53,16 @@ kubeadm config print join-defaults [flags]
 <tbody>
 
 <tr>
-<td colspan="2">--component-configs stringSlice</td>
+<td colspan="2">--component-configs strings/td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
 A comma-separated list for component config API objects to print the default values for. Available values: [KubeProxyConfiguration KubeletConfiguration]. If this flag is not set, no component configs will be printed.
 -->
+<p>
 组件配置 API 对象的逗号分隔列表，打印其默认值。可用值：[KubeProxyConfiguration KubeletConfiguration]。如果未设置此参数，则不会打印任何组件配置。
+</p>
 </td>
 </tr>
 
@@ -56,7 +74,9 @@ A comma-separated list for component config API objects to print the default val
 <!--
 help for join-defaults
 -->
+<p>
 join-defaults 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -89,7 +109,9 @@ join-defaults 操作的帮助命令
 <!--
 The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
 -->
+<p>
 与集群通信时使用的 kubeconfig 文件。如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。
+</p>
 </td>
 </tr>
 
@@ -101,7 +123,9 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init.md
similarity index 78%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init.md
index 8c40707100..96e8756504 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Run this command in order to set up the Kubernetes control plane
+-->
+运行此命令以安装 Kubernetes 控制平面。
 
 <!--
 ### Synopsis 
@@ -81,7 +96,9 @@ kubeadm init [flags]
 <!--
 The IP address the API Server will advertise it's listening on. If not set the default network interface will be used.
 -->
+<p>
 API 服务器所公布的其正在监听的 IP 地址。如果未设置，则使用默认网络接口。
+</p>
 </td>
 </tr>
 
@@ -98,19 +115,23 @@ API 服务器所公布的其正在监听的 IP 地址。如果未设置，则使
 <!--
 Port for the API Server to bind to.
 -->
+<p>
 API 服务器绑定的端口。
+</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--apiserver-cert-extra-sans stringSlice</td>
+<td colspan="2">--apiserver-cert-extra-sans strings</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
 Optional extra Subject Alternative Names (SANs) to use for the API Server serving certificate. Can be both IP addresses and DNS names.
 -->
+<p>
 用于 API Server 服务证书的可选附加主题备用名称（SAN）。可以是 IP 地址和 DNS 名称。
+</p>
 </td>
 </tr>
 
@@ -127,7 +148,9 @@ Optional extra Subject Alternative Names (SANs) to use for the API Server servin
 <!--
 The path where to save and store the certificates.
 -->
+<p>
 保存和存储证书的路径。
+</p>
 </td>
 </tr>
 
@@ -139,7 +162,9 @@ The path where to save and store the certificates.
 <!--
 Key used to encrypt the control-plane certificates in the kubeadm-certs Secret.
 -->
+<p>
 用于加密 kubeadm-certs Secret 中的控制平面证书的密钥。
+</p>
 </td>
 </tr>
 
@@ -151,7 +176,9 @@ Key used to encrypt the control-plane certificates in the kubeadm-certs Secret.
 <!--
 Path to a kubeadm configuration file.
 -->
+<p>
 kubeadm 配置文件的路径。
+</p>
 </td>
 </tr>
 
@@ -163,7 +190,9 @@ kubeadm 配置文件的路径。
 <!--
 Specify a stable IP address or DNS name for the control plane.
 -->
+<p>
 为控制平面指定一个稳定的 IP 地址或 DNS 名称。
+</p>
 </td>
 </tr>
 
@@ -175,7 +204,9 @@ Specify a stable IP address or DNS name for the control plane.
 <!--
 Path to the CRI socket to connect. If empty kubeadm will try to auto-detect this value; use this option only if you have more than one CRI installed or if you have non-standard CRI socket.
 -->
+<p>
 要连接的 CRI 套接字的路径。如果为空，则 kubeadm 将尝试自动检测此值；仅当安装了多个 CRI 或具有非标准 CRI 插槽时，才使用此选项。
+</p>
 </td>
 </tr>
 
@@ -187,23 +218,9 @@ Path to the CRI socket to connect. If empty kubeadm will try to auto-detect this
 <!--
 Don't apply any changes; just output what would be done.
 -->
+<p>
 不要应用任何更改；只是输出将要执行的操作。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--experimental-patches string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--  
-Path to a directory that contains files named "target[suffix][+patchtype].extension". For example, "kube-apiserver0+merge.yaml" or just "etcd.json". "patchtype" can be one of "strategic", "merge" or "json" and they match the patch formats supported by kubectl. The default "patchtype" is "strategic". "extension" must be either "json" or "yaml". "suffix" is an optional string that can be used to determine which patches are applied first alpha-numerically.
--->
-包含名为 "target[suffix][+patchtype].extension" 的文件的目录路径。
-例如，"kube-apiserver0+merge.yaml" 或仅仅是 "etcd.json"。
-"patchtype" 可以是 "strategic"、"merge" 或 "json" 之一，并且它们与 kubectl 支持的补丁格式匹配。
-默认的 "patchtype" 为 "strategic"。 "extension" 必须为 "json" 或 "yaml"。 
-"suffix" 是一个可选字符串，可用于确定首先按字母顺序应用哪些补丁。
+</p>
 </td>
 </tr>
 
@@ -213,9 +230,12 @@ Path to a directory that contains files named "target[suffix][+patchtype].extens
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-A set of key=value pairs that describe feature gates for various features. Options are:<br/>IPv6DualStack=true|false (ALPHA - default=false)
+A set of key=value pairs that describe feature gates for various features. Options are:<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)<br/>UnversionedKubeletConfigMap=true|false (BETA - default=true)
 -->
-一组用来描述各种功能特性的键值（key=value）对。选项是：<br/>IPv6DualStack=true|false (ALPHA - default=false)
+一组用来描述各种功能特性的键值（key=value）对。选项是：
+<br/>PublicKeysECDSA=true|false (ALPHA - 默认值=false)
+<br/>RootlessControlPlane=true|false (ALPHA - 默认值=false)
+<br/>UnversionedKubeletConfigMap=true|false (BETA - 默认值=true)
 </td>
 </tr>
 
@@ -227,19 +247,23 @@ A set of key=value pairs that describe feature gates for various features. Optio
 <!--
 help for init
 -->
+<p>
 init 操作的帮助命令
+</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--ignore-preflight-errors stringSlice</td>
+<td colspan="2">--ignore-preflight-errors strings</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
 A list of checks whose errors will be shown as warnings. Example: 'IsPrivilegedUser,Swap'. Value 'all' ignores errors from all checks.
 -->
+<p>
 错误将显示为警告的检查列表；例如：'IsPrivilegedUser,Swap'。取值为 'all' 时将忽略检查中的所有错误。
+</p>
 </td>
 </tr>
 
@@ -256,7 +280,9 @@ A list of checks whose errors will be shown as warnings. Example: 'IsPrivilegedU
 <!--
 Choose a container registry to pull control plane images from
 -->
+<p>
 选择用于拉取控制平面镜像的容器仓库
+</p>
 </td>
 </tr>
 
@@ -273,7 +299,9 @@ Choose a container registry to pull control plane images from
 <!--
 Choose a specific Kubernetes version for the control plane.
 -->
+<p>
 为控制平面选择一个特定的 Kubernetes 版本。
+</p>
 </td>
 </tr>
 
@@ -285,7 +313,30 @@ Choose a specific Kubernetes version for the control plane.
 <!--
 Specify the node name.
 -->
+<p>
 指定节点的名称。
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--patches string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Path to a directory that contains files named &quot;target[suffix][+patchtype].extension&quot;. For example, &quot;kube-apiserver0+merge.yaml&quot; or just &quot;etcd.json&quot;. &quot;target&quot; can be one of &quot;kube-apiserver&quot;, &quot;kube-controller-manager&quot;, &quot;kube-scheduler&quot;, &quot;etcd&quot;. &quot;patchtype&quot; can be one of &quot;strategic&quot;, &quot;merge&quot; or &quot;json&quot; and they match the patch formats supported by kubectl. The default &quot;patchtype&quot; is &quot;strategic&quot;. &quot;extension&quot; must be either &quot;json&quot; or &quot;yaml&quot;. &quot;suffix&quot; is an optional string that can be used to determine which patches are applied first alpha-numerically.
+-->
+<p>
+它包含名为 &quot;target[suffix][+patchtype].extension&quot; 的文件的目录的路径。
+例如，&quot;kube-apiserver0+merge.yaml&quot;或仅仅是 &quot;etcd.json&quot;。
+&quot;target&quot; 可以是 &quot;kube-apiserver&quot;、&quot;kube-controller-manager&quot;、&quot;kube-scheduler&quot;、&quot;etcd&quot; 之一。
+&quot;patchtype&quot; 可以是 &quot;strategic&quot;、&quot;merge&quot; 或者 &quot;json&quot; 之一，
+并且它们与 kubectl 支持的补丁格式相同。
+默认的 &quot;patchtype&quot; 是 &quot;strategic&quot;。
+&quot;extension&quot; 必须是&quot;json&quot; 或&quot;yaml&quot;。
+&quot;suffix&quot; 是一个可选字符串，可用于确定首先按字母顺序应用哪些补丁。
+</p>
 </td>
 </tr>
 
@@ -297,7 +348,9 @@ Specify the node name.
 <!--
 Specify range of IP addresses for the pod network. If set, the control plane will automatically allocate CIDRs for every node.
 -->
+<p>
 指明 pod 网络可以使用的 IP 地址段。如果设置了这个参数，控制平面将会为每一个节点自动分配 CIDRs。
+</p>
 </td>
 </tr>
 
@@ -314,7 +367,9 @@ Specify range of IP addresses for the pod network. If set, the control plane wil
 <!--
 Use alternative range of IP address for service VIPs.
 -->
+<p>
 为服务的虚拟 IP 地址另外指定 IP 地址段
+</p>
 </td>
 </tr>
 
@@ -329,9 +384,9 @@ Use alternative range of IP address for service VIPs.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Use alternative domain for services, e.g. "myorg.internal".
+Use alternative domain for services, e.g. &quot;myorg.internal&quot;.
 -->
-为服务另外指定域名，例如："myorg.internal"。
+为服务另外指定域名，例如：&quot;myorg.internal&quot;。
 </td>
 </tr>
 
@@ -343,19 +398,23 @@ Use alternative domain for services, e.g. "myorg.internal".
 <!--
 Don't print the key used to encrypt the control-plane certificates.
 -->
+<p>
 不要打印用于加密控制平面证书的密钥。
+</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--skip-phases stringSlice</td>
+<td colspan="2">--skip-phases strings</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
 List of phases to be skipped
 -->
+<p>
 要跳过的阶段列表
+</p>
 </td>
 </tr>
 
@@ -367,7 +426,9 @@ List of phases to be skipped
 <!--
 Skip printing of the default bootstrap token generated by 'kubeadm init'.
 -->
+<p>
 跳过打印 'kubeadm init' 生成的默认引导令牌。
+</p>
 </td>
 </tr>
 
@@ -377,9 +438,11 @@ Skip printing of the default bootstrap token generated by 'kubeadm init'.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The token to use for establishing bidirectional trust between nodes and control-plane nodes. The format is [a-z0-9]{6}\.[a-z0-9]{16} - e.g. abcdef.0123456789abcdef
+The token to use for establishing bidirectional trust between nodes and control-plane nodes. The format is [a-z0-9]{6}.[a-z0-9]{16} - e.g. abcdef.0123456789abcdef
 -->
-这个令牌用于建立控制平面节点与工作节点间的双向通信。格式为 [a-z0-9]{6}\.[a-z0-9]{16} - 示例：abcdef.0123456789abcdef
+<p>
+这个令牌用于建立控制平面节点与工作节点间的双向通信。格式为 [a-z0-9]{6}.[a-z0-9]{16} - 示例：abcdef.0123456789abcdef
+</p>
 </td>
 </tr>
 
@@ -396,7 +459,9 @@ The token to use for establishing bidirectional trust between nodes and control-
 <!--
 The duration before the token is automatically deleted (e.g. 1s, 2m, 3h). If set to '0', the token will never expire
 -->
+<p>
 令牌被自动删除之前的持续时间（例如 1 s，2 m，3 h）。如果设置为 '0'，则令牌将永不过期
+</p>
 </td>
 </tr>
 
@@ -408,7 +473,9 @@ The duration before the token is automatically deleted (e.g. 1s, 2m, 3h). If set
 <!--
 Upload control-plane certificates to the kubeadm-certs Secret.
 -->
+<p>
 将控制平面证书上传到 kubeadm-certs Secret。
+</p>
 </td>
 </tr>
 
@@ -436,7 +503,9 @@ Upload control-plane certificates to the kubeadm-certs Secret.
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
diff --git a/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase.md
new file mode 100644
index 0000000000..2b74059aef
--- /dev/null
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase.md
@@ -0,0 +1,84 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Use this command to invoke single phase of the init workflow
+-->
+使用此命令可以调用 init 工作流程的单个阶段
+
+<!--
+### Synopsis
+-->
+
+### 概要
+
+<!--
+Use this command to invoke single phase of the init workflow
+-->
+
+使用此命令可以调用 init 工作流程的单个阶段
+
+<!--
+### Options
+-->
+
+### 选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!-- 
+<p>help for phase</p>
+-->
+<p>phase 操作的帮助命令</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
+<!--
+### Options inherited from parent commands
+-->
+
+### 继承于父命令的选择项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
+-->
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon.md
similarity index 61%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon.md
index 5a6b5bda67..43d750eb5a 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Install required addons for passing conformance tests
+-->
+安装必要的插件以通过一致性测试
 
 <!--
 ### Synopsis
@@ -36,7 +51,9 @@ kubeadm init phase addon [flags]
 <!--
 help for addon
 -->
+<p>
 addon 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -64,10 +81,11 @@ addon 操作的帮助命令
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_all.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_all.md
similarity index 79%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_all.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_all.md
index 54063fcc5c..acf37745a2 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_all.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_all.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Install all the addons
+-->
+安装所有插件
 
 <!--
 ### Synopsis
@@ -36,7 +51,9 @@ kubeadm init phase addon all [flags]
 <!--
 The IP address the API Server will advertise it's listening on. If not set the default network interface will be used.
 -->
+<p>
 API 服务器所公布的其正在监听的 IP 地址。如果未设置，则将使用默认网络接口。
+</p>
 </td>
 </tr>
 
@@ -53,7 +70,9 @@ API 服务器所公布的其正在监听的 IP 地址。如果未设置，则将
 <!--
 Port for the API Server to bind to.
 -->
+<p>
 API 服务器绑定的端口。
+</p>
 </td>
 </tr>
 
@@ -65,7 +84,9 @@ API 服务器绑定的端口。
 <!--
 Path to a kubeadm configuration file.
 -->
+<p>
 kubeadm 配置文件的路径。
+</p>
 </td>
 </tr>
 
@@ -77,7 +98,9 @@ kubeadm 配置文件的路径。
 <!--
 Specify a stable IP address or DNS name for the control plane.
 -->
+<p>
 为控制平面指定一个稳定的 IP 地址或 DNS 名称。
+</p>
 </td>
 </tr>
 
@@ -87,9 +110,12 @@ Specify a stable IP address or DNS name for the control plane.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-A set of key=value pairs that describe feature gates for various features. Options are:<br/>IPv6DualStack=true|false (ALPHA - default=false)
+A set of key=value pairs that describe feature gates for various features. Options are:<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)<br/>UnversionedKubeletConfigMap=true|false (BETA - default=true)
 -->
-一组键值对（key=value），描述了各种特征。选项包括：<br/>IPv6DualStack=true|false (ALPHA - 默认值=false)
+一组键值对（key=value），描述了各种特征。选项包括：
+<br/>PublicKeysECDSA=true|false (ALPHA - 默认值=false)
+<br/>RootlessControlPlane=true|false (ALPHA - 默认值=false)
+<br/>UnversionedKubeletConfigMap=true|false (BETA - 默认值=true)
 </td>
 </tr>
 
@@ -100,7 +126,10 @@ A set of key=value pairs that describe feature gates for various features. Optio
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
 help for all
+-->
+<p>
 all 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -117,7 +146,9 @@ all 操作的帮助命令
 <!--
 Choose a container registry to pull control plane images from
 -->
+<p>
 选择用于拉取控制平面镜像的容器仓库
+</p>
 </td>
 </tr>
 
@@ -134,7 +165,9 @@ Choose a container registry to pull control plane images from
 <!--
 The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
 -->
+<p>
 与集群通信时使用的 kubeconfig 文件。如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。
+</p>
 </td>
 </tr>
 
@@ -151,7 +184,9 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 <!--
 Choose a specific Kubernetes version for the control plane.
 -->
+<p>
 为控制平面选择特定的 Kubernetes 版本。
+</p>
 </td>
 </tr>
 
@@ -163,7 +198,9 @@ Choose a specific Kubernetes version for the control plane.
 <!--
 Specify range of IP addresses for the pod network. If set, the control plane will automatically allocate CIDRs for every node.
 -->
+<p>
 指定 Pod 网络的 IP 地址范围。如果已设置，控制平面将自动为每个节点分配 CIDR。
+</p>
 </td>
 </tr>
 
@@ -180,7 +217,9 @@ Specify range of IP addresses for the pod network. If set, the control plane wil
 <!--
 Use alternative range of IP address for service VIPs.
 -->
+<p>
 为服务 VIP 使用 IP 地址的其他范围。
+</p>
 </td>
 </tr>
 
@@ -195,9 +234,9 @@ Use alternative range of IP address for service VIPs.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Use alternative domain for services, e.g. "myorg.internal".
+Use alternative domain for services, e.g. &quot;myorg.internal&quot;.
 -->
-为服务使用其他域名，例如 "myorg.internal"。
+为服务使用其他域名，例如 &quot;myorg.internal&quot;。
 </td>
 </tr>
 
@@ -225,7 +264,9 @@ Use alternative domain for services, e.g. "myorg.internal".
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_coredns.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_coredns.md
similarity index 83%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_coredns.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_coredns.md
index 03650503b6..558fed355a 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_coredns.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_coredns.md
@@ -1,3 +1,7 @@
+<!--
+Install the CoreDNS addon to a Kubernetes cluster
+-->
+将 CoreDNS 插件安装到 Kubernetes 集群
 
 <!--
 ### Synopsis
@@ -34,9 +38,11 @@ kubeadm init phase addon coredns [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to kubeadm config file.
+Path to a kubeadm configuration file.
 -->
+<p>
 kubeadm 配置文件的路径。
+</p>
 </td>
 </tr>
 
@@ -46,9 +52,14 @@ kubeadm 配置文件的路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-A set of key=value pairs that describe feature gates for various features. Options are:<br/>IPv6DualStack=true|false (ALPHA - default=false)
+A set of key=value pairs that describe feature gates for various features. Options are:<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)<br/>UnversionedKubeletConfigMap=true|false (BETA - default=true)
 -->
-一组用来描述各种功能特性的键值（key=value）对。选项是：<br/>IPv6DualStack=true|false (ALPHA - 默认值=false)
+<p>
+一组用来描述各种功能特性的键值（key=value）对。选项是：
+<br/>PublicKeysECDSA=true|false (ALPHA - 默认值=false)
+<br/>RootlessControlPlane=true|false (ALPHA - 默认值=false)
+<br/>UnversionedKubeletConfigMap=true|false (BETA - 默认值=true)
+</p>
 </td>
 </tr>
 
@@ -58,7 +69,9 @@ A set of key=value pairs that describe feature gates for various features. Optio
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!-- help for coredns -->
+<p>
 coredns 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -75,7 +88,9 @@ coredns 操作的帮助命令
 <!--
 Choose a container registry to pull control plane images from
 -->
+<p>
 选择用于拉取控制平面镜像的容器仓库
+</p>
 </td>
 </tr>
 
@@ -92,7 +107,9 @@ Choose a container registry to pull control plane images from
 <!--
 The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
 -->
+<p>
 与集群通信时使用的 kubeconfig 文件。如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。
+</p>
 </td>
 </tr>
 
@@ -107,7 +124,9 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!-- Choose a specific Kubernetes version for the control plane.  -->
+<p>
 为控制平面选择特定的 Kubernetes 版本。
+</p>
 </td>
 </tr>
 
@@ -122,7 +141,9 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!-- Use alternative range of IP address for service VIPs.  -->
+<p>
 为服务 VIP 选择 IP 地址范围。
+</p>
 </td>
 </tr>
 
@@ -136,8 +157,10 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- Use alternative domain for services, e.g. "myorg.internal".  -->
-服务使用其它的域名，例如："myorg.internal"。
+<!-- Use alternative domain for services, e.g. &quot;myorg.internal&quot;.  -->
+<p>
+为服务使用其它域名，例如：&quot;myorg.internal&quot;。
+</p>
 </td>
 </tr>
 
@@ -167,7 +190,9 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_kube-proxy.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_kube-proxy.md
similarity index 54%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_kube-proxy.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_kube-proxy.md
index 4698ee4b32..ca63db2de4 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_kube-proxy.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_addon_kube-proxy.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Install the kube-proxy addon to a Kubernetes cluster 
+-->
+将 kube-proxy 插件安装到 Kubernetes 集群
 
 <!--
 ### Synopsis
@@ -34,9 +49,9 @@ kubeadm init phase addon kube-proxy [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The IP address the API Server will advertise it's listening on. If not set the default network interface will be used.
+<p>The IP address the API Server will advertise it's listening on. If not set the default network interface will be used.</p>
 -->
-API 服务器所公布的其正在监听的 IP 地址。如果未设置，则将使用默认网络接口。
+<p>API 服务器所公布的其正在监听的 IP 地址。如果未设置，则将使用默认网络接口。</p>
 </td>
 </tr>
 
@@ -51,9 +66,9 @@ API 服务器所公布的其正在监听的 IP 地址。如果未设置，则将
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Port for the API Server to bind to.
+<p>Port for the API Server to bind to.</p>
 -->
-API 服务器绑定的端口。
+<p>API 服务器绑定的端口。</p>
 </td>
 </tr>
 
@@ -63,9 +78,9 @@ API 服务器绑定的端口。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to kubeadm config file.
+<p>Path to kubeadm config file.</p>
 -->
-kubeadm 配置文件的路径。
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -75,9 +90,9 @@ kubeadm 配置文件的路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Specify a stable IP address or DNS name for the control plane.
+<p>Specify a stable IP address or DNS name for the control plane.</p>
 -->
-为控制平面指定一个稳定的 IP 地址或 DNS 名称。
+<p>为控制平面指定一个稳定的 IP 地址或 DNS 名称。</p>
 </td>
 </tr>
 
@@ -87,9 +102,9 @@ Specify a stable IP address or DNS name for the control plane.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for kube-proxy
+<p>help for kube-proxy</p>
 -->
-kube-proxy 操作的帮助命令
+<p>kube-proxy 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -104,9 +119,9 @@ kube-proxy 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Choose a container registry to pull control plane images from
+<p>Choose a container registry to pull control plane images from</p>
 -->
-选择用于拉取控制平面镜像的容器仓库
+<p>选择用于拉取控制平面镜像的容器仓库</p>
 </td>
 </tr>
 
@@ -121,9 +136,9 @@ Choose a container registry to pull control plane images from
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
+<p>The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.</p>
 -->
-与集群通信时使用的 kubeconfig 文件。如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。
+<p>与集群通信时使用的 kubeconfig 文件。如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。</p>
 </td>
 </tr>
 
@@ -138,9 +153,9 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Choose a specific Kubernetes version for the control plane.
+<p>Choose a specific Kubernetes version for the control plane.</p>
 -->
-为控制平面选择特定的 Kubernetes 版本。
+<p>为控制平面选择特定的 Kubernetes 版本。</p>
 </td>
 </tr>
 
@@ -150,9 +165,9 @@ Choose a specific Kubernetes version for the control plane.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Specify range of IP addresses for the pod network. If set, the control plane will automatically allocate CIDRs for every node.
+<p>Specify range of IP addresses for the pod network. If set, the control plane will automatically allocate CIDRs for every node.</p>
 -->
-指定 Pod 网络的 IP 地址范围。如果已设置，控制平面将自动为每个节点分配 CIDR。
+<p>指定 Pod 网络的 IP 地址范围。如果已设置，控制平面将自动为每个节点分配 CIDR。</p>
 </td>
 </tr>
 
@@ -178,9 +193,9 @@ Specify range of IP addresses for the pod network. If set, the control plane wil
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_bootstrap-token.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_bootstrap-token.md
similarity index 60%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_bootstrap-token.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_bootstrap-token.md
index 2ea181aac1..5c77af3735 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_bootstrap-token.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_bootstrap-token.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Generates bootstrap tokens used to join a node to a cluster 
+-->
+生成用于将节点加入集群的引导令牌
 
 <!--
 ### Synopsis
@@ -55,9 +70,9 @@ kubeadm init phase bootstrap-token
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to a kubeadm configuration file.
+<p>Path to a kubeadm configuration file.</p>
 -->
-kubeadm 配置文件的路径。
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -67,9 +82,9 @@ kubeadm 配置文件的路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for bootstrap-token
+<p>help for bootstrap-token</p>
 -->
-bootstrap-token 操作的帮助命令
+<p>bootstrap-token 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -84,9 +99,9 @@ bootstrap-token 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
+<p>The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.</p>
 -->
-用于和集群通信的 kubeconfig 文件。如果它没有被设置，那么 kubeadm 将会搜索一个已经存在于标准路径的 kubeconfig 文件。
+<p>用于和集群通信的 kubeconfig 文件。如果它没有被设置，那么 kubeadm 将会搜索一个已经存在于标准路径的 kubeconfig 文件。</p>
 </td>
 </tr>
 
@@ -96,9 +111,9 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Skip printing of the default bootstrap token generated by 'kubeadm init'.
+<p>Skip printing of the default bootstrap token generated by 'kubeadm init'.</p>
 -->
-跳过打印 'kubeadm init' 生成的默认引导令牌。
+<p>跳过打印 'kubeadm init' 生成的默认引导令牌。</p>
 </td>
 </tr>
 
@@ -124,9 +139,9 @@ Skip printing of the default bootstrap token generated by 'kubeadm init'.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs.md
similarity index 63%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs.md
index 55ed922514..b916704f79 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Certificate generation
+-->
+证书生成
 
 <!--
 ### Synopsis
@@ -36,7 +51,9 @@ kubeadm init phase certs [flags]
 <!--
 help for certs
 -->
+<p>
 certs 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -64,7 +81,9 @@ certs 操作的帮助命令
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_all.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_all.md
similarity index 55%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_all.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_all.md
index f56cec6086..38a7fb842d 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_all.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_all.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Generate all certificates 
+-->
+生成所有证书
 
 <!--
 ### Synopsis
@@ -8,7 +23,6 @@
 <!--
 Generate all certificates
 -->
-
 生成所有证书
 
 ```
@@ -34,21 +48,21 @@ kubeadm init phase certs all [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The IP address the API Server will advertise it's listening on. If not set the default network interface will be used.
+<p>The IP address the API Server will advertise it's listening on. If not set the default network interface will be used.</p>
 -->
-API 服务器所公布的其正在监听的 IP 地址。如果未设置，将使用默认网络接口。
+<p>API 服务器所公布的其正在监听的 IP 地址。如果未设置，将使用默认网络接口。</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--apiserver-cert-extra-sans stringSlice</td>
+<td colspan="2">--apiserver-cert-extra-sans strings</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Optional extra Subject Alternative Names (SANs) to use for the API Server serving certificate. Can be both IP addresses and DNS names.
+<p>Optional extra Subject Alternative Names (SANs) to use for the API Server serving certificate. Can be both IP addresses and DNS names.</p>
 -->
-用于 API 服务器服务证书的可选额外替代名称（SAN）。可以同时使用 IP 地址和 DNS 名称。
+<p>用于 API 服务器服务证书的可选额外替代名称（SAN）。可以同时使用 IP 地址和 DNS 名称。</p>
 </td>
 </tr>
 
@@ -63,9 +77,9 @@ Optional extra Subject Alternative Names (SANs) to use for the API Server servin
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save and store the certificates.
+<p>The path where to save and store the certificates.</p>
 -->
-证书的存储路径。
+<p>证书的存储路径。</p>
 </td>
 </tr>
 
@@ -75,9 +89,9 @@ The path where to save and store the certificates.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to a kubeadm configuration file.
+<p>Path to a kubeadm configuration file.</p>
 -->
-kubeadm 配置文件的路径。
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -87,9 +101,9 @@ kubeadm 配置文件的路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Specify a stable IP address or DNS name for the control plane.
+<p>Specify a stable IP address or DNS name for the control plane.</p>
 -->
-为控制平面指定一个稳定的 IP 地址或 DNS 名称。
+<p>为控制平面指定一个稳定的 IP 地址或 DNS 名称。</p>
 </td>
 </tr>
 
@@ -99,9 +113,9 @@ Specify a stable IP address or DNS name for the control plane.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for all
+<p>help for all</p>
 -->
-all 操作的帮助命令 
+<p>all 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -116,9 +130,9 @@ all 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Choose a specific Kubernetes version for the control plane.
+<p>Choose a specific Kubernetes version for the control plane.</p>
 -->
-为控制平面选择特定的 Kubernetes 版本。
+<p>为控制平面选择特定的 Kubernetes 版本。</p>
 </td>
 </tr>
 
@@ -133,9 +147,9 @@ Choose a specific Kubernetes version for the control plane.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Use alternative range of IP address for service VIPs.
+<p>Use alternative range of IP address for service VIPs.</p>
 -->
-VIP 服务使用其它的 IP 地址范围。
+<p>VIP 服务使用其它的 IP 地址范围。</p>
 </td>
 </tr>
 
@@ -150,9 +164,9 @@ VIP 服务使用其它的 IP 地址范围。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Use alternative domain for services, e.g. "myorg.internal".
+<p>Use alternative domain for services, e.g. "myorg.internal".</p>
 -->
-服务使用其它的域名，例如："myorg.internal"。
+<p>服务使用其它的域名，例如："myorg.internal"。</p>
 </td>
 </tr>
 
@@ -178,9 +192,9 @@ Use alternative domain for services, e.g. "myorg.internal".
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_apiserver-etcd-client.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_apiserver-etcd-client.md
similarity index 58%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_apiserver-etcd-client.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_apiserver-etcd-client.md
index 00444ac3f4..d3035731f4 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_apiserver-etcd-client.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_apiserver-etcd-client.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Generate the certificate the apiserver uses to access etcd 
+-->
+生成 apiserver 用来访问 etcd 的证书
 
 <!--
 ### Synopsis
@@ -6,10 +21,10 @@
 ### 概要
 
 <!--
-Generate the certificate the apiserver uses to access etcd, and save them into apiserver-etcd-client.cert and apiserver-etcd-client.key files.
+Generate the certificate the apiserver uses to access etcd, and save them into apiserver-etcd-client.crt and apiserver-etcd-client.key files.
 -->
 
-生成 apiserver 用于访问 etcd 的证书，并将其保存到 apiserver-etcd-client.cert 和 apiserver-etcd-client.key 文件中。
+生成 apiserver 用于访问 etcd 的证书，并将其保存到 apiserver-etcd-client.crt 和 apiserver-etcd-client.key 文件中。
 
 <!--
 If both files already exist, kubeadm skips the generation step and existing files will be used.
@@ -50,8 +65,10 @@ kubeadm init phase certs apiserver-etcd-client [flags]
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- The path where to save and store the certificates.  -->
-证书的存储路径。
+<!-- 
+<p>The path where to save and store the certificates.</p>
+-->
+<p>证书的存储路径。</p>
 </td>
 </tr>
 
@@ -60,8 +77,10 @@ kubeadm init phase certs apiserver-etcd-client [flags]
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- Path to a kubeadm configuration file.  -->
-kubeadm 配置文件的路径。
+<!-- 
+<p>Path to a kubeadm configuration file.</p>
+-->
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -70,8 +89,10 @@ kubeadm 配置文件的路径。
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- help for apiserver-etcd-client -->
-apiserver-etcd-client 操作的帮助命令
+<!-- 
+<p>help for apiserver-etcd-client</p>
+-->
+<p>apiserver-etcd-client 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -84,9 +105,9 @@ apiserver-etcd-client 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Choose a specific Kubernetes version for the control plane.
+<p>Choose a specific Kubernetes version for the control plane.</p>
 -->
-为控制平面指定特定的 Kubernetes 版本。
+<p>为控制平面指定特定的 Kubernetes 版本。</p>
 </td>
 </tr>
 
@@ -111,8 +132,10 @@ Choose a specific Kubernetes version for the control plane.
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- [EXPERIMENTAL] The path to the 'real' host root filesystem. -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<!-- 
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
+-->
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_apiserver-kubelet-client.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_apiserver-kubelet-client.md
similarity index 58%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_apiserver-kubelet-client.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_apiserver-kubelet-client.md
index 49b2749c06..696f564c6a 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_apiserver-kubelet-client.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_apiserver-kubelet-client.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Generate the certificate for the API server to connect to kubelet 
+-->
+生成供 API 服务器连接 kubelet 的证书
 
 <!-- 
 ### Synopsis
@@ -6,10 +21,9 @@
 ### 概要
 
 <!--
-Generate the certificate for the API server to connect to kubelet, and save them into apiserver-kubelet-client.cert and apiserver-kubelet-client.key files.
+Generate the certificate for the API server to connect to kubelet, and save them into apiserver-kubelet-client.crt and apiserver-kubelet-client.key files.
 -->
-
-生成供 API 服务器连接 kubelet 的证书，并将其保存到 apiserver-kubelet-client.cert 和 apiserver-kubelet-client.key 文件中。
+生成供 API 服务器连接 kubelet 的证书，并将其保存到 apiserver-kubelet-client.crt 和 apiserver-kubelet-client.key 文件中。
 
 <!--
 If both files already exist, kubeadm skips the generation step and existing files will be used.
@@ -51,9 +65,9 @@ kubeadm init phase certs apiserver-kubelet-client [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save and store the certificates.
+<p>The path where to save and store the certificates.</p>
 -->
-存储证书的路径。
+<p>存储证书的路径。</p>
 </td>
 </tr>
 
@@ -63,9 +77,9 @@ The path where to save and store the certificates.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to a kubeadm configuration file.
+<p>Path to a kubeadm configuration file.</p>
 -->
-kubeadm 配置文件路径。
+<p>kubeadm 配置文件路径。</p>
 </td>
 </tr>
 
@@ -75,9 +89,9 @@ kubeadm 配置文件路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for apiserver-kubelet-client
+<p>help for apiserver-kubelet-client</p>
 -->
-apiserver-kubelet-client 操作的帮助命令
+<p>apiserver-kubelet-client 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -92,9 +106,9 @@ apiserver-kubelet-client 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Choose a specific Kubernetes version for the control plane.
+<p>Choose a specific Kubernetes version for the control plane.</p>
 -->
-为控制平面指定特定的 Kubernetes 版本。
+<p>为控制平面指定特定的 Kubernetes 版本。</p>
 </td>
 </tr>
 
@@ -120,9 +134,9 @@ Choose a specific Kubernetes version for the control plane.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 指向宿主机上的 '实际' 根文件系统的路径。
+<p>[实验] 指向宿主机上的 '实际' 根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_apiserver.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_apiserver.md
similarity index 57%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_apiserver.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_apiserver.md
index 1b096a7424..84a86e32d3 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_apiserver.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_apiserver.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Generate the certificate for serving the Kubernetes API 
+-->
+生成用于服务 Kubernetes API 的证书
 
 <!--
 ### Synopsis
@@ -6,16 +21,10 @@
 ### 概要
 
 <!--
-Generate the certificate for serving the Kubernetes API, and save them into apiserver.cert and apiserver.key files.
+Generate the certificate for serving the Kubernetes API, and save them into apiserver.crt and apiserver.key files.
 -->
+生成用于服务 Kubernetes API 的证书，并将其保存到 apiserver.crt 和 apiserver.key 文件中。
 
-生成用于服务 Kubernetes API 的证书，并将其保存到 apiserver.cert 和 apiserver.key 文件中。
-
-<!--
-Default SANs are kubernetes, kubernetes.default, kubernetes.default.svc, kubernetes.default.svc.cluster.local, 10.96.0.1, 127.0.0.1
--->
-
-默认 SAN 是 kubernetes、kubernetes.default、kubernetes.default.svc、kubernetes.default.svc.cluster.local、10.96.0.1、127.0.0.1。
 
 <!--
 If both files already exist, kubeadm skips the generation step and existing files will be used.
@@ -52,21 +61,21 @@ kubeadm init phase certs apiserver [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The IP address the API Server will advertise it's listening on. If not set the default network interface will be used.
+<p>The IP address the API Server will advertise it's listening on. If not set the default network interface will be used.</p>
 -->
-API 服务器所公布的其正在监听的 IP 地址。如果未设置，则使用默认的网络接口。
+<p>API 服务器所公布的其正在监听的 IP 地址。如果未设置，则使用默认的网络接口。</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--apiserver-cert-extra-sans stringSlice</td>
+<td colspan="2">--apiserver-cert-extra-sans strings</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Optional extra Subject Alternative Names (SANs) to use for the API Server serving certificate. Can be both IP addresses and DNS names.
+<p>Optional extra Subject Alternative Names (SANs) to use for the API Server serving certificate. Can be both IP addresses and DNS names.</p>
 -->
-用于 API Server 服务证书的可选附加主体备用名称（SAN）。可以是 IP 地址和 DNS 名称。
+<p>用于 API Server 服务证书的可选附加主体备用名称（SAN）。可以是 IP 地址和 DNS 名称。</p>
 </td>
 </tr>
 
@@ -81,9 +90,9 @@ Optional extra Subject Alternative Names (SANs) to use for the API Server servin
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save and store the certificates.
+<p>The path where to save and store the certificates.</p>
 -->
-证书的存储路径。
+<p>证书的存储路径。</p>
 </td>
 </tr>
 
@@ -93,9 +102,9 @@ The path where to save and store the certificates.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to a kubeadm configuration file.
+<p>Path to a kubeadm configuration file.</p>
 -->
-kubeadm 配置文件的路径。
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -105,9 +114,9 @@ kubeadm 配置文件的路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Specify a stable IP address or DNS name for the control plane.
+<p>Specify a stable IP address or DNS name for the control plane.</p>
 -->
-为控制平面指定一个稳定的 IP 地址或 DNS 名称。
+<p>为控制平面指定一个稳定的 IP 地址或 DNS 名称。</p>
 </td>
 </tr>
 
@@ -117,9 +126,9 @@ Specify a stable IP address or DNS name for the control plane.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for apiserver
+<p>help for apiserver</p>
 -->
-apiserver 操作的帮助命令
+<p>apiserver 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -134,9 +143,9 @@ apiserver 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Choose a specific Kubernetes version for the control plane.
+<p>Choose a specific Kubernetes version for the control plane.</p>
 -->
-为控制平面指定特定的 Kubernetes 版本。
+<p>为控制平面指定特定的 Kubernetes 版本。</p>
 </td>
 </tr>
 
@@ -151,9 +160,9 @@ Choose a specific Kubernetes version for the control plane.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Use alternative range of IP address for service VIPs.
+<p>Use alternative range of IP address for service VIPs.</p>
 -->
-指定服务 VIP 可使用的其他 IP 地址段。
+<p>指定服务 VIP 可使用的其他 IP 地址段。</p>
 </td>
 </tr>
 
@@ -168,9 +177,9 @@ Use alternative range of IP address for service VIPs.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Use alternative domain for services, e.g. "myorg.internal".
+<p>Use alternative domain for services, e.g. "myorg.internal".</p>
 -->
-为服务使用其他域名，例如 "myorg.internal"。
+<p>为服务使用其他域名，例如 "myorg.internal"。</p>
 </td>
 </tr>
 
@@ -196,9 +205,9 @@ Use alternative domain for services, e.g. "myorg.internal".
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_ca.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_ca.md
similarity index 56%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_ca.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_ca.md
index 3b24c3d0b4..71a091342a 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_ca.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_ca.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Generate the self-signed Kubernetes CA to provision identities for other Kubernetes components 
+-->
+生成自签名的 Kubernetes CA 以便为其他 Kubernetes 组件提供身份标识
 
 <!--
 ### Synopsis
@@ -6,21 +21,18 @@
 ### 概要
 
 <!--
-Generate the self-signed Kubernetes CA to provision identities for other Kubernetes components, and save them into ca.cert and ca.key files.
+Generate the self-signed Kubernetes CA to provision identities for other Kubernetes components, and save them into ca.crt and ca.key files.
 -->
-
-生成自签名的 Kubernetes CA 以提供其他 Kubernetes 组件的身份，并将其保存到 ca.cert 和 ca.key 文件中。
+生成自签名的 Kubernetes CA 以便为其他 Kubernetes 组件提供身份标识，并将其保存到 ca.crt 和 ca.key 文件中。
 
 <!--
 If both files already exist, kubeadm skips the generation step and existing files will be used.
 -->
-
 如果两个文件都已存在，则 kubeadm 将跳过生成步骤，使用现有文件。
 
 <!--
 Alpha Disclaimer: this command is currently alpha.
 -->
-
 Alpha 免责声明：此命令当前为 Alpha 功能。
 
 ```
@@ -51,9 +63,9 @@ kubeadm init phase certs ca [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save and store the certificates.
+<p>The path where to save and store the certificates.</p>
 -->
-证书的存储路径。
+<p>证书的存储路径。</p>
 </td>
 </tr>
 
@@ -63,9 +75,9 @@ The path where to save and store the certificates.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to a kubeadm configuration file.
+<p>Path to a kubeadm configuration file.</p>
 -->
-kubeadm 配置文件的路径。
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -75,9 +87,9 @@ kubeadm 配置文件的路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for ca
+<p>help for ca</p>
 -->
-ca 操作的帮助命令
+<p>ca 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -92,9 +104,9 @@ ca 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Choose a specific Kubernetes version for the control plane.
+<p>Choose a specific Kubernetes version for the control plane.</p>
 -->
-为控制平面选择特定的 Kubernetes 版本。
+<p>为控制平面选择特定的 Kubernetes 版本。</p>
 </td>
 </tr>
 
@@ -120,9 +132,9 @@ Choose a specific Kubernetes version for the control plane.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </td>
 </tr>
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-ca.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-ca.md
similarity index 74%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-ca.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-ca.md
index b5d159496c..319e415cb0 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-ca.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-ca.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Generate the self-signed CA to provision identities for etcd
+-->
+生成用于为 etcd 设置身份的自签名 CA
 
 <!--
 ### Synopsis
@@ -6,10 +21,10 @@
 ### 概要
 
 <!--
-Generate the self-signed CA to provision identities for etcd, and save them into etcd/ca.cert and etcd/ca.key files.
+Generate the self-signed CA to provision identities for etcd, and save them into etcd/ca.crt and etcd/ca.key files.
 -->
 
-生成用于为 etcd 设置身份的自签名 CA，并将其保存到 etcd/ca.cert 和 etcd/ca.key 文件中。
+生成用于为 etcd 设置身份的自签名 CA，并将其保存到 etcd/ca.crt 和 etcd/ca.key 文件中。
 
 <!--
 If both files already exist, kubeadm skips the generation step and existing files will be used.
@@ -53,7 +68,9 @@ kubeadm init phase certs etcd-ca [flags]
 <!--
 The path where to save and store the certificates.
 -->
+<p>
 证书的存储路径。
+</p>
 </td>
 </tr>
 
@@ -65,7 +82,9 @@ The path where to save and store the certificates.
 <!--
 Path to a kubeadm configuration file.
 -->
+<p>
 kubeadm 配置文件的路径。
+</p>
 </td>
 </tr>
 
@@ -77,7 +96,9 @@ kubeadm 配置文件的路径。
 <!--
 help for etcd-ca
 -->
+<p>
 etcd-ca 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -94,7 +115,9 @@ etcd-ca 操作的帮助命令
 <!--
 Choose a specific Kubernetes version for the control plane.
 -->
+<p>
 为控制平面选择特定的 Kubernetes 版本。
+</p>
 </td>
 </tr>
 
@@ -122,10 +145,11 @@ Choose a specific Kubernetes version for the control plane.
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-healthcheck-client.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-healthcheck-client.md
similarity index 58%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-healthcheck-client.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-healthcheck-client.md
index 706d70614e..804dc02f75 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-healthcheck-client.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-healthcheck-client.md
@@ -1,3 +1,19 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+<!-- 
+Generate the certificate for liveness probes to healthcheck etcd 
+-->
+生成用于 etcd 健康检查的活跃性探针的证书
 
 <!--
 ### Synopsis
@@ -6,21 +22,18 @@
 ### 概要
 
 <!--
-Generate the certificate for liveness probes to healthcheck etcd, and save them into etcd/healthcheck-client.cert and etcd/healthcheck-client.key files.
+Generate the certificate for liveness probes to healthcheck etcd, and save them into etcd/healthcheck-client.crt and etcd/healthcheck-client.key files
 -->
-
-生成用于 etcd 健康检查的活跃性探针的证书，并将其保存到 healthcheck-client.cert 和 etcd/healthcheck-client.key 文件中。
+生成用于 etcd 健康检查的活跃性探针的证书，并将其保存到 etcd/healthcheck-client.crt 和 etcd/healthcheck-client.key 文件中。
 
 <!--
 If both files already exist, kubeadm skips the generation step and existing files will be used.
 -->
-
 如果两个文件都已存在，则 kubeadm 将跳过生成步骤，使用现有文件。
 
 <!--
 Alpha Disclaimer: this command is currently alpha.
 -->
-
 Alpha 免责声明：此命令当前为 alpha 功能。
 
 ```
@@ -51,9 +64,9 @@ kubeadm init phase certs etcd-healthcheck-client [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save and store the certificates.
+<p>The path where to save and store the certificates.</p>
 -->
-证书存储的路径。
+<p>证书存储的路径。</p>
 </td>
 </tr>
 
@@ -63,9 +76,9 @@ The path where to save and store the certificates.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to a kubeadm configuration file.
+<p>Path to a kubeadm configuration file.</p>
 -->
-kubeadm 配置文件的路径。
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -75,9 +88,9 @@ kubeadm 配置文件的路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for etcd-healthcheck-client
+<p>help for etcd-healthcheck-client</p>
 -->
-etcd-healthcheck-client 操作的帮助命令
+<p>etcd-healthcheck-client 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -92,9 +105,9 @@ etcd-healthcheck-client 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Choose a specific Kubernetes version for the control plane.
+<p>Choose a specific Kubernetes version for the control plane.</p>
 -->
-为控制平面选择特定的 Kubernetes 版本。
+<p>为控制平面选择特定的 Kubernetes 版本。</p>
 </td>
 </tr>
 
@@ -120,9 +133,9 @@ Choose a specific Kubernetes version for the control plane.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-peer.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-peer.md
similarity index 60%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-peer.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-peer.md
index 9933975b92..4a4ec4fd19 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-peer.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-peer.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Generate the certificate for etcd nodes to communicate with each other 
+-->
+生成 etcd 节点相互通信的证书
 
 <!-- 
 ### Synopsis
@@ -6,10 +21,10 @@
 ### 概要
 
 <!--
-Generate the certificate for etcd nodes to communicate with each other, and save them into etcd/peer.cert and etcd/peer.key files.
+Generate the certificate for etcd nodes to communicate with each other, and save them into etcd/peer.crt and etcd/peer.key files.
 -->
 
-生成 etcd 节点相互通信的证书，并将其保存到 etcd/peer.cert 和 etcd/peer.key 文件中。
+生成 etcd 节点相互通信的证书，并将其保存到 etcd/peer.crt 和 etcd/peer.key 文件中。
 
 <!--
 Default SANs are localhost, 127.0.0.1, 127.0.0.1, ::1
@@ -56,8 +71,10 @@ kubeadm init phase certs etcd-peer [flags]
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- The path where to save and store the certificates.  -->
-保存和存储证书的路径。
+<!-- 
+<p>The path where to save and store the certificates.</p>  
+-->
+<p>保存和存储证书的路径。</p>
 </td>
 </tr>
 
@@ -66,8 +83,10 @@ kubeadm init phase certs etcd-peer [flags]
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- Path to kubeadm configuration file.  -->
-kubeadm 配置文件的路径。
+<!-- 
+<p>Path to kubeadm configuration file.</p>
+-->
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -76,8 +95,10 @@ kubeadm 配置文件的路径。
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- help for etcd-peer -->
-etcd-peer 操作的帮助命令
+<!-- 
+<p>help for etcd-peer</p> 
+-->
+<p>etcd-peer 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -91,8 +112,10 @@ etcd-peer 操作的帮助命令
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- Choose a specific Kubernetes version for the control plane.  -->
-为控制平面指定特定的 Kubernetes 版本。
+<!-- 
+<p>Choose a specific Kubernetes version for the control plane.</p>  
+-->
+<p>为控制平面指定特定的 Kubernetes 版本。</p>
 </td>
 </tr>
 
@@ -118,9 +141,9 @@ etcd-peer 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-server.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-server.md
similarity index 78%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-server.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-server.md
index 0f5fb4726e..c669e2d0ee 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-server.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_etcd-server.md
@@ -6,9 +6,9 @@
 
 
 <!--
-Generate the certificate for serving etcd, and save them into etcd/server.cert and etcd/server.key files.
+Generate the certificate for serving etcd, and save them into etcd/server.crt and etcd/server.key files.
 -->
-生成用于提供 etcd 服务的证书，并将其保存到 etcd/server.cert 和 etcd/server.key 文件中。
+生成用于提供 etcd 服务的证书，并将其保存到 etcd/server.crt 和 etcd/server.key 文件中。
 
 <!--
 Default SANs are localhost, 127.0.0.1, 127.0.0.1, ::1
@@ -52,9 +52,9 @@ kubeadm init phase certs etcd-server [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save and store the certificates.
+<p>The path where to save and store the certificates.</p>
 -->
-保存和存储证书的路径。
+<p>保存和存储证书的路径。<p>
 </td>
 </tr>
 
@@ -64,9 +64,9 @@ The path where to save and store the certificates.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to kubeadm configuration file.
+<p>Path to a kubeadm configuration file.</p>
 -->
-kubeadm 配置文件的路径。
+<p>kubeadm 配置文件的路径。<p>
 </td>
 </tr>
 
@@ -76,9 +76,9 @@ kubeadm 配置文件的路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for etcd-server
+<p>help for etcd-server</p>
 -->
-etcd-server 操作的帮助命令
+<p>etcd-server 操作的帮助命令<p>
 </td>
 </tr>
 
@@ -93,9 +93,9 @@ etcd-server 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Choose a specific Kubernetes version for the control plane.
+<p>Choose a specific Kubernetes version for the control plane.</p>
 -->
-为控制平面指定特定的 Kubernetes 版本。
+<p>为控制平面指定特定的 Kubernetes 版本。<p>
 </td>
 </tr>
 
@@ -122,9 +122,9 @@ Choose a specific Kubernetes version for the control plane.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。<p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_front-proxy-ca.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_front-proxy-ca.md
similarity index 63%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_front-proxy-ca.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_front-proxy-ca.md
index 3baed70fba..94b30d7ca2 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_front-proxy-ca.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_front-proxy-ca.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Generate the self-signed CA to provision identities for front proxy 
+-->
+生成自签名 CA 来提供前端代理的身份
 
 <!--
 ### Synopsis
@@ -51,9 +66,9 @@ kubeadm init phase certs front-proxy-ca [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save and store the certificates.
+<p>The path where to save and store the certificates.</p>
 -->
-存储证书的路径。
+<p>存储证书的路径。</p>
 </td>
 </tr>
 
@@ -63,9 +78,9 @@ The path where to save and store the certificates.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to a kubeadm configuration file.
+<p>Path to a kubeadm configuration file.</p>
 -->
-kubeadm 配置文件的路径。
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -75,9 +90,9 @@ kubeadm 配置文件的路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for front-proxy-ca
+<p>help for front-proxy-ca</p>
 -->
-front-proxy-ca 操作的帮助命令
+<p>front-proxy-ca 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -92,9 +107,9 @@ front-proxy-ca 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Choose a specific Kubernetes version for the control plane.
+<p>Choose a specific Kubernetes version for the control plane.</p>
 -->
-为控制平面选择特定的 Kubernetes 版本。
+<p>为控制平面选择特定的 Kubernetes 版本。</p>
 </td>
 </tr>
 
@@ -120,9 +135,9 @@ Choose a specific Kubernetes version for the control plane.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_front-proxy-client.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_front-proxy-client.md
similarity index 59%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_front-proxy-client.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_front-proxy-client.md
index fb39d4a6cf..e2dba21e7e 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_front-proxy-client.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_front-proxy-client.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Generate the certificate for the front proxy client 
+-->
+为前端代理客户端生成证书
 
 <!--
 ### Synopsis
@@ -6,12 +21,12 @@
 ### 概要
 
 <!--
-Generate the certificate for the front proxy client, and save them into front-proxy-client.cert and front-proxy-client.key files.
+Generate the certificate for the front proxy client, and save them into front-proxy-client.crt and front-proxy-client.key files.
 If both files already exist, kubeadm skips the generation step and existing files will be used.
 Alpha Disclaimer: this command is currently alpha.
 -->
 
-为前端代理客户端生成证书，并将其保存到 front-proxy-client.cert 和 front-proxy-client.key 文件中。
+为前端代理客户端生成证书，并将其保存到 front-proxy-client.crt 和 front-proxy-client.key 文件中。
 如果两个文件都已存在，kubeadm 将跳过生成步骤并将使用现有文件。
 Alpha 免责声明：此命令目前是 alpha 阶段。
 
@@ -42,9 +57,9 @@ kubeadm init phase certs front-proxy-client [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save and store the certificates.
+<p>The path where to save and store the certificates.</p>
 -->
-存储证书的路径。
+<p>存储证书的路径。</p>
 </td>
 </tr>
 
@@ -54,9 +69,9 @@ The path where to save and store the certificates.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to a kubeadm configuration file.
+<p>Path to a kubeadm configuration file.</p>
 -->
-kubeadm 配置文件的路径。
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -66,9 +81,9 @@ kubeadm 配置文件的路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for front-proxy-client
+<p>help for front-proxy-client</p>
 -->
-front-proxy-client 操作的帮助命令
+<p>front-proxy-client 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -83,9 +98,9 @@ front-proxy-client 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Choose a specific Kubernetes version for the control plane.
+<p>Choose a specific Kubernetes version for the control plane.</p>
 -->
-为控制平面选择特定的 Kubernetes 版本。
+<p>为控制平面选择特定的 Kubernetes 版本。</p>
 </td>
 </tr>
 
@@ -111,9 +126,9 @@ Choose a specific Kubernetes version for the control plane.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_sa.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_sa.md
similarity index 62%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_sa.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_sa.md
index 4b5cde8362..42ca96025d 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_sa.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_certs_sa.md
@@ -1,3 +1,19 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+<!--
+Generate a private key for signing service account tokens along with its public key
+-->
+生成用来签署服务账号令牌的私钥及其公钥
 
 <!--
 ### Synopsis
@@ -8,20 +24,21 @@
 <!--
 Generate the private key for signing service account tokens along with its public key, and save them into sa.key and sa.pub files. If both files already exist, kubeadm skips the generation step and existing files will be used.
 -->
-
-生成用于签名 service account 令牌的私钥及其公钥，并将其保存到 sa.key 和 sa.pub 文件中。如果两个文件都已存在，则 kubeadm 会跳过生成步骤，而将使用现有文件。
+生成用来签署服务账号令牌的私钥及其公钥，并将其保存到 sa.key 和 sa.pub 文件中。
+如果两个文件都已存在，则 kubeadm 会跳过生成步骤，而将使用现有文件。
 
 <!--
 Alpha Disclaimer: this command is currently alpha.
 -->
-
 Alpha 免责声明：此命令当前为 alpha 阶段。
 
 ```
 kubeadm init phase certs sa [flags]
 ```
 
-<!-- ### Options -->
+<!--
+### Options
+-->
 
 ### 选项
 
@@ -45,7 +62,9 @@ kubeadm init phase certs sa [flags]
 <!--
 The path where to save and store the certificates.
 -->
+<p>
 保存和存储证书的路径。
+</p>
 </td>
 </tr>
 
@@ -57,7 +76,9 @@ The path where to save and store the certificates.
 <!--
 help for sa
 -->
+<p>
 sa 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -67,7 +88,6 @@ sa 操作的帮助命令
 <!--
 ### Options inherited from parent commands
 -->
-
 ### 继承于父命令的选项
 
    <table style="width: 100%; table-layout: fixed;">
@@ -85,10 +105,11 @@ sa 操作的帮助命令
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane.md
similarity index 50%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane.md
index 61320596e6..683327985a 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Generate all static Pod manifest files necessary to establish the control plane 
+-->
+生成建立控制平面所需的静态 Pod 清单文件
 
 <!-- 
 ### Synopsis
@@ -33,8 +48,10 @@ kubeadm init phase control-plane [flags]
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- help for control-plane -->
-control-plane 操作的帮助命令
+<!-- 
+<p>help for control-plane</p> 
+-->
+<p>control-plane 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -59,8 +76,10 @@ control-plane 操作的帮助命令
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- [EXPERIMENTAL] The path to the 'real' host root filesystem.  -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<!-- 
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>  
+-->
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </td>
 </tr>
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_all.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_all.md
similarity index 69%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_all.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_all.md
index c4eb30e987..437f1e68cc 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_all.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_all.md
@@ -1,3 +1,7 @@
+<!--
+Generate all static Pod manifest files
+-->
+生成所有静态 Pod 清单文件
 
 <!--
 ### Synopsis
@@ -53,7 +57,9 @@ kubeadm init phase control-plane all --config config.yaml
 <!--
 The IP address the API Server will advertise it's listening on. If not set the default network interface will be used.
 -->
+<p>
 API 服务器所公布的其正在监听的 IP 地址。如果未设置，将使用默认的网络接口。
+</p>
 </td>
 </tr>
 
@@ -66,20 +72,24 @@ API 服务器所公布的其正在监听的 IP 地址。如果未设置，将使
 <!--
 Port for the API Server to bind to.
 -->
+<p>
 API 服务器要绑定的端口。
+</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--apiserver-extra-args mapStringString</td>
+<td colspan="2">--apiserver-extra-args &lt;<!--comma-separated 'key=value' pairs-->逗号分割的 'key=value' 对&gt;</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
 A set of extra flags to pass to the API Server or override default ones in form of &lt;flagname&gt;=&lt;value&gt;
 -->
+<p>
 形式为 &lt;flagname&gt;=&lt;value&gt; 的一组额外参数，用来传递给 API 服务器，
 或者覆盖其默认配置值
+</p>
 </td>
 </tr>
 
@@ -96,7 +106,9 @@ A set of extra flags to pass to the API Server or override default ones in form
 <!--
 The path where to save and store the certificates.
 -->
+<p>
 存储证书的路径。
+</p>
 </td>
 </tr>
 
@@ -108,7 +120,9 @@ The path where to save and store the certificates.
 <!--
 Path to a kubeadm configuration file.
 -->
+<p>
 kubeadm 配置文件的路径。
+</p>
 </td>
 </tr>
 
@@ -120,37 +134,36 @@ kubeadm 配置文件的路径。
 <!--
 Specify a stable IP address or DNS name for the control plane.
 -->
+<p>
 为控制平面选择一个稳定的 IP 地址或者 DNS 名称。
+</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--controller-manager-extra-args mapStringString</td>
+<td colspan="2">--controller-manager-extra-args &lt;<!--comma-separated 'key=value' pairs-->逗号分割的 'key=value' 对&gt;</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
 A set of extra flags to pass to the Controller Manager or override default ones in form of &lt;flagname&gt;=&lt;value&gt;
 -->
+<p>
 一组形式为 &lt;flagname&gt;=&lt;value&gt; 的额外参数，用来传递给控制管理器（Controller Manager）
 或覆盖其默认设置值
+</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--experimental-patches string</td>
+<td colspan="2">--dry-run</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to a directory that contains files named "target[suffix][+patchtype].extension". For example, "kube-apiserver0+merge.yaml" or just "etcd.json". "patchtype" can be one of "strategic", "merge" or "json" and they match the patch formats supported by kubectl. The default "patchtype" is "strategic". "extension" must be either "json" or "yaml". "suffix" is an optional string that can be used to determine which patches are applied first alpha-numerically.
+Don't apply any changes; just output what would be done.
 -->
-包含名为 "target[suffix][+patchtype].extension" 的文件的目录。
-例如，"kube-apiserver0+merge.yaml" 或者 "etcd.json"。
-"patchtype" 可以是 "strategic"、"merge" 或 "json" 之一，分别与 kubectl
-所支持的 patch 格式相匹配。默认的 "patchtype" 是 "strategic"。
-"extension" 必须是 "json" 或 "yaml"。
-"suffix" 是一个可选的字符串，用来确定按字母顺序排序时首先应用哪些 patch。
+不要应用任何变更；只是输出将要执行的操作。
 </td>
 </tr>
 
@@ -160,11 +173,14 @@ Path to a directory that contains files named "target[suffix][+patchtype].extens
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-A set of key=value pairs that describe feature gates for various features. Options are:<br/>IPv6DualStack=true|false (ALPHA - default=false)<br/>PublicKeysECDSA=true|false (ALPHA - default=false)
+A set of key=value pairs that describe feature gates for various features. Options are:<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)<br/>UnversionedKubeletConfigMap=true|false (BETA - default=true)
 -->
+<p>
 一组用来描述各种特性门控的键值（key=value）对。选项是：
-<br/>IPv6DualStack=true|false (ALPHA - 默认=false)
-<br/>PublicKeysECDSA=true|false (ALPHA - 默认=false)
+<br/>PublicKeysECDSA=true|false (ALPHA - 默认值=false)
+<br/>RootlessControlPlane=true|false (ALPHA - 默认值=false)
+<br/>UnversionedKubeletConfigMap=true|false (BETA - 默认值=true)
+</p>
 </td>
 </tr>
 
@@ -176,7 +192,9 @@ A set of key=value pairs that describe feature gates for various features. Optio
 <!--
 help for all
 -->
+<p>
 all 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -193,7 +211,9 @@ all 操作的帮助命令
 <!--
 Choose a container registry to pull control plane images from
 -->
+<p>
 选择用于拉取控制平面镜像的容器仓库
+</p>
 </td>
 </tr>
 
@@ -210,7 +230,30 @@ Choose a container registry to pull control plane images from
 <!--
 Choose a specific Kubernetes version for the control plane.
 -->
+<p>
 为控制平面选择指定的 Kubernetes 版本。
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--patches string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Path to a directory that contains files named &quot;target[suffix][+patchtype].extension&quot;. For example, &quot;kube-apiserver0+merge.yaml&quot; or just &quot;etcd.json&quot;. &quot;target&quot; can be one of &quot;kube-apiserver&quot;, &quot;kube-controller-manager&quot;, &quot;kube-scheduler&quot;, &quot;etcd&quot;. &quot;patchtype&quot; can be one of &quot;strategic&quot;, &quot;merge&quot; or &quot;json&quot; and they match the patch formats supported by kubectl. The default &quot;patchtype&quot; is &quot;strategic&quot;. &quot;extension&quot; must be either &quot;json&quot; or &quot;yaml&quot;. &quot;suffix&quot; is an optional string that can be used to determine which patches are applied first alpha-numerically.
+-->
+<p>
+包含名为 &quot;target[suffix][+patchtype].extension&quot; 的文件的目录的路径。
+例如，&quot;kube-apiserver0+merge.yaml&quot;或仅仅是 &quot;etcd.json&quot;。
+&quot;target&quot; 可以是 &quot;kube-apiserver&quot;、&quot;kube-controller-manager&quot;、&quot;kube-scheduler&quot;、&quot;etcd&quot; 之一。
+&quot;patchtype&quot; 可以是 &quot;strategic&quot;、&quot;merge&quot; 或者 &quot;json&quot; 之一，
+并且它们与 kubectl 支持的补丁格式相同。
+默认的 &quot;patchtype&quot; 是 &quot;strategic&quot;。
+&quot;extension&quot; 必须是&quot;json&quot; 或&quot;yaml&quot;。
+&quot;suffix&quot; 是一个可选字符串，可用于确定首先按字母顺序应用哪些补丁。
+</p>
 </td>
 </tr>
 
@@ -222,22 +265,26 @@ Choose a specific Kubernetes version for the control plane.
 <!--
 Specify range of IP addresses for the pod network. If set, the control plane will automatically allocate CIDRs for every node.
 -->
+<p>
 指定 Pod 网络的 IP 地址范围。如果设置了此标志，控制平面将自动地为每个节点分配 CIDR。
+</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--scheduler-extra-args mapStringString</td>
+<td colspan="2">--scheduler-extra-args &lt;<!--comma-separated 'key=value' pairs-->逗号分割的 'key=value' 对&gt;</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
 A set of extra flags to pass to the Scheduler or override default ones in form of &lt;flagname&gt;=&lt;value&gt;
 -->
+<p>
 一组形式为 &lt;flagname&gt;=&lt;value&gt; 的额外参数，用来传递给调度器（Scheduler）
 或覆盖其默认设置值
 
 传递给调度器（scheduler）一组额外的参数或者以 &lt;flagname&gt;=&lt;value&gt; 形式覆盖其默认值。
+<p>
 </td>
 </tr>
 
@@ -254,7 +301,9 @@ A set of extra flags to pass to the Scheduler or override default ones in form o
 <!--
 Use alternative range of IP address for service VIPs.
 -->
+<p>
 为服务 VIP 选择 IP 地址范围。
+</p>
 </td>
 </tr>
 
@@ -281,7 +330,9 @@ Use alternative range of IP address for service VIPs.
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 指向 '真实' 宿主机的根文件系统的路径。
+</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_apiserver.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_apiserver.md
similarity index 64%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_apiserver.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_apiserver.md
index 39d9316717..4b3c97d923 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_apiserver.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_apiserver.md
@@ -1,3 +1,8 @@
+<!--
+Generates the kube-apiserver static Pod manifest
+-->
+生成 kube-apiserver 静态 Pod 清单
+
 <!-- 
 ### Synopsis 
 -->
@@ -32,7 +37,9 @@ kubeadm init phase control-plane apiserver [flags]
 <!--
 The IP address the API Server will advertise it's listening on. If not set the default network interface will be used.
 -->
+<p>
 API 服务器所公布的其正在监听的 IP 地址。如果未设置，将使用默认网络接口。
+</p>
 </td>
 </tr>
 
@@ -49,20 +56,24 @@ API 服务器所公布的其正在监听的 IP 地址。如果未设置，将使
 <!--
 Port for the API Server to bind to.
 -->
+<p>
 要绑定到 API 服务器的端口。
+</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--apiserver-extra-args mapStringString</td>
+<td colspan="2">--apiserver-extra-args <!--&lt;comma-separated 'key=value' pairs&gt;-->&lt;逗号分隔的 'key=value' 对&gt;</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
 A set of extra flags to pass to the API Server or override default ones in form of &lt;flagname&gt;=&lt;value&gt;
 -->
+<p>
 一组 &lt;flagname&gt;=&lt;value&gt; 形式的额外参数，用来传递给 API 服务器
 或者覆盖其默认参数配置
+</p>
 </td>
 </tr>
 
@@ -79,7 +90,9 @@ A set of extra flags to pass to the API Server or override default ones in form
 <!--
 The path where to save and store the certificates.
 -->
+<p>
 保存和存储证书的路径。
+</p>
 </td>
 </tr>
 
@@ -91,7 +104,9 @@ The path where to save and store the certificates.
 <!--
 Path to a kubeadm configuration file.
 -->
+<p>
 kubeadm 配置文件的路径。
+</p>
 </td>
 </tr>
 
@@ -103,21 +118,24 @@ kubeadm 配置文件的路径。
 <!--
 Specify a stable IP address or DNS name for the control plane.
 -->
+<p>
 为控制平面指定一个稳定的 IP 地址或 DNS 名称。
+</p>
 </td>
 </tr>
-
+<tr>
+<td colspan="2">--dry-run</td>
+</tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--Path to a directory that contains files named "target[suffix][+patchtype].extension". For example, "kube-apiserver0+merge.yaml" or just "etcd.json". "patchtype" can be one of "strategic", "merge" or "json" and they match the patch formats supported by kubectl. The default "patchtype" is "strategic". "extension" must be either "json" or "yaml". "suffix" is an optional string that can be used to determine which patches are applied first alpha-numerically.-->
-包含名为 "target[suffix][+patchtype].extension" 的文件的目录。
-例如，"kube-apiserver0+merge.yaml" 或者 "etcd.json"。
-"patchtype" 可以是 "strategic"、"merge" 或 "json" 之一，分别与 kubectl
-所支持的 patch 格式相匹配。默认的 "patchtype" 是 "strategic"。
-"extension" 必须是 "json" 或 "yaml"。
-"suffix" 是一个可选的字符串，用来确定按字母顺序排序时首先应用哪些 patch。
+<!--
+Don't apply any changes; just output what would be done.
+-->
+<p>
+不要应用任何更改；只是输出将要执行的操作。
+</p>
 </td>
-</tr>
+ </tr>
 
 <tr>
 <td colspan="2">--feature-gates string</td>
@@ -125,11 +143,14 @@ Specify a stable IP address or DNS name for the control plane.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-A set of key=value pairs that describe feature gates for various features. Options are:<br/>IPv6DualStack=true|false (ALPHA - default=false)<br/>PublicKeysECDSA=true|false (ALPHA - default=false)
+A set of key=value pairs that describe feature gates for various features. Options are:<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)<br/>UnversionedKubeletConfigMap=true|false (BETA - default=true)
 -->
+<p>
 一组键值对，用于描述各种功能特性的特性门控。选项是：
-<br/>IPv6DualStack=true|false (ALPHA - 默认=false)
-<br/>PublicKeysECDSA=true|false (ALPHA - 默认=false)
+<br/>PublicKeysECDSA=true|false (ALPHA - 默认值=false)
+<br/>RootlessControlPlane=true|false (ALPHA - 默认值=false)
+<br/>UnversionedKubeletConfigMap=true|false (BETA - 默认值=true)
+</p>
 </td>
 </tr>
 
@@ -141,7 +162,9 @@ A set of key=value pairs that describe feature gates for various features. Optio
 <!--
 help for apiserver
 -->
+<p>
 apiserver 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -158,7 +181,9 @@ apiserver 操作的帮助命令
 <!--
 Choose a container registry to pull control plane images from
 -->
+<p>
 选择要从中拉取控制平面镜像的容器仓库
+</p>
 </td>
 </tr>
 
@@ -175,7 +200,30 @@ Choose a container registry to pull control plane images from
 <!--
 Choose a specific Kubernetes version for the control plane.
 -->
+<p>
 为控制平面选择特定的 Kubernetes 版本
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--patches string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Path to a directory that contains files named &quot;target[suffix][+patchtype].extension&quot;. For example, &quot;kube-apiserver0+merge.yaml&quot; or just &quot;etcd.json&quot;. &quot;target&quot; can be one of &quot;kube-apiserver&quot;, &quot;kube-controller-manager&quot;, &quot;kube-scheduler&quot;, &quot;etcd&quot;. &quot;patchtype&quot; can be one of &quot;strategic&quot;, &quot;merge&quot; or &quot;json&quot; and they match the patch formats supported by kubectl. The default &quot;patchtype&quot; is &quot;strategic&quot;. &quot;extension&quot; must be either &quot;json&quot; or &quot;yaml&quot;. &quot;suffix&quot; is an optional string that can be used to determine which patches are applied first alpha-numerically.
+-->
+<p>
+包含名为 &quot;target[suffix][+patchtype].extension&quot; 的文件的目录的路径。
+例如，&quot;kube-apiserver0+merge.yaml&quot;或仅仅是 &quot;etcd.json&quot;。
+&quot;target&quot; 可以是 &quot;kube-apiserver&quot;、&quot;kube-controller-manager&quot;、&quot;kube-scheduler&quot;、&quot;etcd&quot; 之一。
+&quot;patchtype&quot; 可以是 &quot;strategic&quot;、&quot;merge&quot; 或者 &quot;json&quot; 之一，
+并且它们与 kubectl 支持的补丁格式相同。
+默认的 &quot;patchtype&quot; 是 &quot;strategic&quot;。
+&quot;extension&quot; 必须是&quot;json&quot; 或&quot;yaml&quot;。
+&quot;suffix&quot; 是一个可选字符串，可用于确定首先按字母顺序应用哪些补丁。
+</p>
 </td>
 </tr>
 
@@ -192,7 +240,9 @@ Choose a specific Kubernetes version for the control plane.
 <!--
 Use alternative range of IP address for service VIPs.
 -->
+<p>
 指定服务 VIP 使用 IP 地址的其他范围。
+</p>
 </td>
 </tr>
 
@@ -221,7 +271,9 @@ Use alternative range of IP address for service VIPs.
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统路径。
+</p>
 </td>
 </tr>
 
diff --git a/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_controller-manager.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_controller-manager.md
new file mode 100644
index 0000000000..ed54d6d8e5
--- /dev/null
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_controller-manager.md
@@ -0,0 +1,197 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Generates the kube-controller-manager static Pod manifest 
+-->
+生成 kube-controller-manager 静态 Pod 清单
+
+<!--
+### Synopsis
+-->
+### 概要
+
+<!--
+Generates the kube-controller-manager static Pod manifest
+-->
+生成 kube-controller-manager 静态 Pod 清单
+
+```
+kubeadm init phase control-plane controller-manager [flags]
+```
+
+<!--
+### Options
+-->
+### 选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<!-- td colspan="2">--cert-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/kubernetes/pki"</td -->
+<td colspan="2">--cert-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值："/etc/kubernetes/pki"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>The path where to save and store the certificates.</p>
+-->
+<p>存储证书的路径。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--config string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Path to a kubeadm configuration file.</p>
+-->
+<p>kubeadm 配置文件的路径。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--controller-manager-extra-args &lt;comma-separated 'key=value' pairs&gt;</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>A set of extra flags to pass to the Controller Manager or override default ones in form of &lt;flagname&gt;=&lt;value&gt;</p>
+-->
+<p>一组 &lt;flagname&gt;=&lt; 形式的额外参数，传递给控制器管理器（Controller Manager）
+或者覆盖其默认配置值</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--dry-run</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
+<!-- 
+Don't apply any changes; just output what would be done. 
+-->
+不应用任何变更，仅输出将要执行的操作
+</p></td>
+</tr>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>help for controller-manager</p>
+-->
+<p>controller-manager 操作的帮助命令</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">
+<!--
+--image-repository string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "k8s.gcr.io"
+-->
+--image-repository string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值："k8s.gcr.io"
+</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Choose a container registry to pull control plane images from</p>
+-->
+<p>选择要从中拉取控制平面镜像的容器仓库</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">
+<!--
+--kubernetes-version string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "stable-1"
+-->
+--kubernetes-version string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值："stable-1"
+</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Choose a specific Kubernetes version for the control plane.</p>
+-->
+<p>为控制平面选择特定的 Kubernetes 版本。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--patches string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Path to a directory that contains files named "target[suffix][+patchtype].extension". For example, "kube-apiserver0+merge.yaml" or just "etcd.json". "patchtype" can be one of "strategic", "merge" or "json" and they match the patch formats supported by kubectl. The default "patchtype" is "strategic". "extension" must be either "json" or "yaml". "suffix" is an optional string that can be used to determine which patches are applied first alpha-numerically.</p>
+-->
+<p>包含名为 "target[suffix][+patchtype].extension" 的文件的目录。
+例如，"kube-apiserver0+merge.yaml" 或者 "etcd.json"。
+"patchtype" 可以是 "strategic"、"merge" 或 "json" 之一，分别与 kubectl
+所支持的 patch 格式相匹配。默认的 "patchtype" 是 "strategic"。
+"extension" 必须是 "json" 或 "yaml"。
+"suffix" 是一个可选的字符串，用来确定按字母顺序排序时首先应用哪些 patch。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--pod-network-cidr string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Specify range of IP addresses for the pod network. If set, the control plane will automatically allocate CIDRs for every node.</p>
+-->
+<p>指定 Pod 网络的 IP 地址范围。如果设置，控制平面将自动为每个节点分配 CIDR。</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
+<!--
+### Options inherited from parent commands
+-->
+### 从父命令继承的选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
+-->
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_scheduler.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_scheduler.md
similarity index 59%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_scheduler.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_scheduler.md
index ce801ff399..3b10963776 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_scheduler.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_scheduler.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Generates the kube-scheduler static Pod manifest
+-->
+生成 kube-scheduler 静态 Pod 清单
 
 <!-- 
 ### Synopsis
@@ -36,9 +51,9 @@ kubeadm init phase control-plane scheduler [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save and store the certificates.
+<p>The path where to save and store the certificates.</p>
 -->
-存储证书的路径。
+<p>存储证书的路径。</p>
 </td>
 </tr>
 
@@ -48,25 +63,21 @@ The path where to save and store the certificates.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to a kubeadm configuration file.
+<p>Path to a kubeadm configuration file.</p>
 -->
-kubeadm 配置文件的路径。
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--experimental-patches string</td>
+<td colspan="2">--dry-run</td>
 </tr>
-
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--Path to a directory that contains files named "target[suffix][+patchtype].extension". For example, "kube-apiserver0+merge.yaml" or just "etcd.json". "patchtype" can be one of "strategic", "merge" or "json" and they match the patch formats supported by kubectl. The default "patchtype" is "strategic". "extension" must be either "json" or "yaml". "suffix" is an optional string that can be used to determine which patches are applied first alpha-numerically.-->
-包含名为 "target[suffix][+patchtype].extension" 的文件的目录。
-例如，"kube-apiserver0+merge.yaml" 或者 "etcd.json"。
-"patchtype" 可以是 "strategic"、"merge" 或 "json" 之一，分别与 kubectl
-所支持的 patch 格式相匹配。默认的 "patchtype" 是 "strategic"。
-"extension" 必须是 "json" 或 "yaml"。
-"suffix" 是一个可选的字符串，用来确定按字母顺序排序时首先应用哪些 patch。
+<!--
+<p>Don't apply any changes; just output what would be done.</p>
+-->
+<p>不应用任何变更；仅仅输出将会变更的内容</p>
 </td>
 </tr>
 
@@ -76,9 +87,9 @@ kubeadm 配置文件的路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for scheduler
+<p>help for scheduler</p>
 -->
-scheduler 操作的帮助命令
+<p>scheduler 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -93,9 +104,9 @@ scheduler 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Choose a container registry to pull control plane images from
+<p>Choose a container registry to pull control plane images from</p>
 -->
-选择要从中拉取控制平面镜像的容器仓库
+<p>选择要从中拉取控制平面镜像的容器仓库</p>
 </td>
 </tr>
 
@@ -110,22 +121,42 @@ Choose a container registry to pull control plane images from
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Choose a specific Kubernetes version for the control plane.
+<p>Choose a specific Kubernetes version for the control plane.</p>
 -->
-为控制平面选择特定的 Kubernetes 版本。
+<p>为控制平面选择特定的 Kubernetes 版本。</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--scheduler-extra-args mapStringString</td>
+<td colspan="2">--patches string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--Path to a directory that contains files named "target[suffix][+patchtype].extension". For example, "kube-apiserver0+merge.yaml" or just "etcd.json". "patchtype" can be one of "strategic", "merge" or "json" and they match the patch formats supported by kubectl. The default "patchtype" is "strategic". "extension" must be either "json" or "yaml". "suffix" is an optional string that can be used to determine which patches are applied first alpha-numerically.-->
+包含名为 "target[suffix][+patchtype].extension" 的文件的目录。
+例如，"kube-apiserver0+merge.yaml" 或者 "etcd.json"。
+"patchtype" 可以是 "strategic"、"merge" 或 "json" 之一，分别与 kubectl
+所支持的 patch 格式相匹配。默认的 "patchtype" 是 "strategic"。
+"extension" 必须是 "json" 或 "yaml"。
+"suffix" 是一个可选的字符串，用来确定按字母顺序排序时首先应用哪些 patch。
+</td>
+</tr>
+
+<tr>
+<td colspan="2">
+<!-- 
+--scheduler-extra-args &lt;comma-separated 'key=value' pairs&gt; 
+-->
+--scheduler-extra-args &lt;逗号分隔的 'key=value' 键值对&gt;
+</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-A set of extra flags to pass to the Scheduler or override default ones in form of &lt;flagname&gt;=&lt;value&gt;
+<p>A set of extra flags to pass to the Scheduler or override default ones in form of &lt;flagname&gt;=&lt;value&gt;</p>
 -->
-一组 &lt;flagname&gt;=&lt;value&gt; 形式的额外参数，用来传递给调度器
-或者覆盖其默认参数配置
+<p>一组 &lt;flagname&gt;=&lt;value&gt; 形式的额外参数，用来传递给调度器
+或者覆盖其默认参数配置</p>
 </td>
 </tr>
 
@@ -150,9 +181,9 @@ A set of extra flags to pass to the Scheduler or override default ones in form o
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_etcd.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_etcd.md
similarity index 61%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_etcd.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_etcd.md
index 6091ee177d..38b30b3491 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_etcd.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_etcd.md
@@ -1,3 +1,19 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+<!-- 
+Generate static Pod manifest file for local etcd 
+-->
+为本地 etcd 生成静态 Pod 的清单文件
 
 <!--
 ### Synopsis
@@ -33,8 +49,10 @@ kubeadm init phase etcd [flags]
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
+<p>
 <!-- help for etcd -->
 etcd 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -59,10 +77,12 @@ etcd 操作的帮助命令
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
+<p>
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_etcd_local.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_etcd_local.md
similarity index 57%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_etcd_local.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_etcd_local.md
index 0a09b80c86..e046168998 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_etcd_local.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_etcd_local.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Generate the static Pod manifest file for a local, single-node local etcd instance 
+-->
+为本地单节点 etcd 实例生成静态 Pod 清单文件
 
 <!--
 ### Synopsis
@@ -59,8 +74,10 @@ kubeadm init phase etcd local --config config.yaml
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- The path where to save and store the certificates.  -->
-存储证书的路径。
+<!-- 
+<p>The path where to save and store the certificates.</p>  
+-->
+<p>存储证书的路径。</p>
 </td>
 </tr>
 
@@ -69,24 +86,10 @@ kubeadm init phase etcd local --config config.yaml
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- Path to a kubeadm configuration file.  -->
-kubeadm 配置文件的路径。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--experimental-patches string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--  
-Path to a directory that contains files named "target[suffix][+patchtype].extension". For example, "kube-apiserver0+merge.yaml" or just "etcd.json". "patchtype" can be one of "strategic", "merge" or "json" and they match the patch formats supported by kubectl. The default "patchtype" is "strategic". "extension" must be either "json" or "yaml". "suffix" is an optional string that can be used to determine which patches are applied first alpha-numerically.
+<!-- 
+<p>Path to a kubeadm configuration file.</p>  
 -->
-包含名为 "target[suffix][+patchtype].extension" 的文件的目录的路径。
-例如，"kube-apiserver0+merge.yaml" 或仅仅是 "etcd.json"。
-"patchtype" 可以是 "strategic"、"merge" 或 "json" 之一，并且它们与 kubectl 支持的补丁格式匹配。
-默认的 "patchtype" 为 "strategic"。 "extension" 必须为 "json" 或 "yaml"。 
-"suffix" 是一个可选字符串，可用于确定首先按字母顺序应用哪些补丁。
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -95,8 +98,10 @@ Path to a directory that contains files named "target[suffix][+patchtype].extens
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- help for local -->
-local 操作的帮助命令
+<!-- 
+<p>help for local</p> 
+-->
+<p>local 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -110,8 +115,26 @@ local 操作的帮助命令
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- Choose a container registry to pull control plane images from -->
-选择要从中拉取控制平面镜像的容器仓库
+<!-- 
+<p>Choose a container registry to pull control plane images from</p> 
+-->
+<p>选择要从中拉取控制平面镜像的容器仓库</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--patches string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--  
+<p>Path to a directory that contains files named "target[suffix][+patchtype].extension". For example, "kube-apiserver0+merge.yaml" or just "etcd.json". "patchtype" can be one of "strategic", "merge" or "json" and they match the patch formats supported by kubectl. The default "patchtype" is "strategic". "extension" must be either "json" or "yaml". "suffix" is an optional string that can be used to determine which patches are applied first alpha-numerically.</p>
+-->
+<p>包含名为 "target[suffix][+patchtype].extension" 的文件的目录的路径。
+例如，"kube-apiserver0+merge.yaml" 或仅仅是 "etcd.json"。
+"patchtype" 可以是 "strategic"、"merge" 或 "json" 之一，并且它们与 kubectl 支持的补丁格式匹配。
+默认的 "patchtype" 为 "strategic"。 "extension" 必须为 "json" 或 "yaml"。 
+"suffix" 是一个可选字符串，可用于确定首先按字母顺序应用哪些补丁。</p>
 </td>
 </tr>
 
@@ -136,8 +159,10 @@ local 操作的帮助命令
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- [EXPERIMENTAL] The path to the 'real' host root filesystem.  -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<!-- 
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>  
+-->
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig.md
similarity index 50%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig.md
index 0a5eaf2f99..753f6fd0bd 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Generate all kubeconfig files necessary to establish the control plane and the admin kubeconfig file 
+-->
+生成所有建立控制平面和管理员（admin）所需的 kubeconfig 文件
 
 <!-- 
 ### Synopsis
@@ -34,9 +49,9 @@ kubeadm init phase kubeconfig [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for kubeconfig
+<p>help for kubeconfig</p>
 -->
-kubeconfig 操作的帮助命令
+<p>kubeconfig 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -62,9 +77,9 @@ kubeconfig 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_admin.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_admin.md
similarity index 59%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_admin.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_admin.md
index 2384f2f9c0..2521e85e9f 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_admin.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_admin.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Generate a kubeconfig file for the admin to use and for kubeadm itself 
+-->
+为管理员（admin）和 kubeadm 本身生成 kubeconfig 文件
 
 <!-- 
 ### Synopsis
@@ -34,9 +49,9 @@ kubeadm init phase kubeconfig admin [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The IP address the API Server will advertise it's listening on. If not set the default network interface will be used.
+<p>The IP address the API Server will advertise it's listening on. If not set the default network interface will be used.</p>
 -->
-API 服务器所公布的其正在监听的 IP 地址。如果未设置，则使用默认的网络接口。
+<p>API 服务器所公布的其正在监听的 IP 地址。如果未设置，则使用默认的网络接口。</p>
 </td>
 </tr>
 
@@ -51,9 +66,9 @@ API 服务器所公布的其正在监听的 IP 地址。如果未设置，则使
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Port for the API Server to bind to.
+<p>Port for the API Server to bind to.</p>
 -->
-要绑定到 API 服务器的端口。
+<p>要绑定到 API 服务器的端口。</p>
 </td>
 </tr>
 
@@ -68,9 +83,9 @@ Port for the API Server to bind to.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save and store the certificates.
+<p>The path where to save and store the certificates.</p>
 -->
-保存和存储证书的路径。
+<p>保存和存储证书的路径。</p>
 </td>
 </tr>
 
@@ -80,9 +95,9 @@ The path where to save and store the certificates.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to kubeadm configuration file.
+<p>Path to kubeadm configuration file.</p>
 -->
-kubeadm 配置文件的路径。
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -92,9 +107,9 @@ kubeadm 配置文件的路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Specify a stable IP address or DNS name for the control plane.
+<p>Specify a stable IP address or DNS name for the control plane.</p>
 -->
-为控制平面指定一个稳定的 IP 地址或 DNS 名称。
+<p>为控制平面指定一个稳定的 IP 地址或 DNS 名称。</p>
 </td>
 </tr>
 
@@ -104,9 +119,9 @@ Specify a stable IP address or DNS name for the control plane.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for admin
+<p>help for admin</p>
 -->
-admin 操作的帮助命令
+<p>admin 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -121,9 +136,9 @@ admin 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save the kubeconfig file.
+<p>The path where to save the kubeconfig file.</p>
 -->
-kubeconfig 文件的保存路径。
+<p>kubeconfig 文件的保存路径。</p>
 </td>
 </tr>
 
@@ -138,9 +153,9 @@ kubeconfig 文件的保存路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Choose a specific Kubernetes version for the control plane.
+<p>Choose a specific Kubernetes version for the control plane.</p>
 -->
-为控制平面指定特定的 Kubernetes 版本。
+<p>为控制平面指定特定的 Kubernetes 版本。</p>
 </td>
 </tr>
 
@@ -166,9 +181,9 @@ Choose a specific Kubernetes version for the control plane.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_all.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_all.md
similarity index 83%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_all.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_all.md
index b1d34aca1e..72ef16dbd9 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_all.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_all.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Generate all kubeconfig files
+-->
+生成所有 kubeconfig 文件
 
 <!-- 
 ### Synopsis
@@ -8,7 +23,6 @@
 <!--
 Generate all kubeconfig files
 -->
-
 生成所有 kubeconfig 文件
 
 ```
@@ -36,7 +50,9 @@ kubeadm init phase kubeconfig all [flags]
 <!--
 The IP address the API Server will advertise it's listening on. If not set the default network interface will be used.
 -->
+<p>
 API 服务器所公布的其正在监听的 IP 地址。如果没有设置，将使用默认的网络接口。
+</p>
 </td>
 </tr>
 
@@ -53,7 +69,9 @@ API 服务器所公布的其正在监听的 IP 地址。如果没有设置，将
 <!--
 Port for the API Server to bind to.
 -->
+<p>
 要绑定到 API 服务器的端口。
+</p>
 </td>
 </tr>
 
@@ -70,7 +88,9 @@ Port for the API Server to bind to.
 <!--
 The path where to save and store the certificates.
 -->
+<p>
 保存和存储证书的路径。
+</p>
 </td>
 </tr>
 
@@ -82,7 +102,9 @@ The path where to save and store the certificates.
 <!--
 Path to kubeadm configuration file.
 -->
+<p>
 kubeadm 配置文件的路径。
+</p>
 </td>
 </tr>
 
@@ -94,7 +116,9 @@ kubeadm 配置文件的路径。
 <!--
 Specify a stable IP address or DNS name for the control plane.
 -->
+<p>
 为控制平面指定一个稳定的 IP 地址或 DNS 名称。
+</p>
 </td>
 </tr>
 
@@ -106,7 +130,9 @@ Specify a stable IP address or DNS name for the control plane.
 <!--
 help for all
 -->
+<p>
 all 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -123,7 +149,9 @@ all 操作的帮助命令
 <!--
 The path where to save the kubeconfig file.
 -->
+<p>
 kubeconfig 文件的保存路径。
+</p>
 </td>
 </tr>
 
@@ -140,7 +168,9 @@ kubeconfig 文件的保存路径。
 <!--
 Choose a specific Kubernetes version for the control plane.
 -->
+<p>
 为控制平面指定特定的 Kubernetes 版本。
+</p>
 </td>
 </tr>
 
@@ -152,7 +182,9 @@ Choose a specific Kubernetes version for the control plane.
 <!--
 Specify the node name.
 -->
+<p>
 指定节点名称。
+</p>
 </td>
 </tr>
 
@@ -162,7 +194,6 @@ Specify the node name.
 <!--
 ### Options inherited from parent commands
 -->
-
 ### 继承于父命令的选项
 
    <table style="width: 100%; table-layout: fixed;">
@@ -180,10 +211,11 @@ Specify the node name.
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_controller-manager.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_controller-manager.md
similarity index 59%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_controller-manager.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_controller-manager.md
index 0ba7a636c3..a5c2db1235 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_controller-manager.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_controller-manager.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Generate a kubeconfig file for the controller manager to use 
+-->
+生成控制器管理器要使用的 kubeconfig 文件
 
 <!--
 ### Synopsis
@@ -34,9 +49,9 @@ kubeadm init phase kubeconfig controller-manager [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The IP address the API Server will advertise it's listening on. If not set the default network interface will be used.
+<p>The IP address the API Server will advertise it's listening on. If not set the default network interface will be used.</p>
 -->
-API 服务器所公布的其正在监听的 IP 地址。如果未设置，则使用默认的网络接口。
+<p>API 服务器所公布的其正在监听的 IP 地址。如果未设置，则使用默认的网络接口。</p>
 </td>
 </tr>
 
@@ -51,9 +66,9 @@ API 服务器所公布的其正在监听的 IP 地址。如果未设置，则使
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Port for the API Server to bind to.
+<p>Port for the API Server to bind to.</p>
 -->
-要绑定到 API 服务器的端口。
+<p>要绑定到 API 服务器的端口。</p>
 </td>
 </tr>
 
@@ -68,9 +83,9 @@ Port for the API Server to bind to.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save and store the certificates.
+<p>The path where to save and store the certificates.</p>
 -->
-保存和存储证书的路径。
+<p>保存和存储证书的路径。</p>
 </td>
 </tr>
 
@@ -80,9 +95,9 @@ The path where to save and store the certificates.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to kubeadm configuration file.
+<p>Path to kubeadm configuration file.</p>
 -->
-kubeadm 配置文件的路径。
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 <tr>
@@ -92,9 +107,9 @@ kubeadm 配置文件的路径。
 </tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Specify a stable IP address or DNS name for the control plane.
+<p>Specify a stable IP address or DNS name for the control plane.</p>
 -->
-为控制平面指定一个稳定的 IP 地址或 DNS 名称。
+<p>为控制平面指定一个稳定的 IP 地址或 DNS 名称。</p>
 </td>
 </tr>    
 
@@ -104,9 +119,9 @@ Specify a stable IP address or DNS name for the control plane.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;"> 
 <!--
-help for controller-manager
+<p>help for controller-manager</p>
 -->
-controller-manager 操作的帮助命令
+<p>controller-manager 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -121,9 +136,9 @@ controller-manager 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save the kubeconfig file.
+<p>The path where to save the kubeconfig file.</p>
 -->
-kubeconfig 文件的保存路径。
+<p>kubeconfig 文件的保存路径。</p>
 </td>
 </tr>
 
@@ -138,9 +153,9 @@ kubeconfig 文件的保存路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Choose a specific Kubernetes version for the control plane.
+<p>Choose a specific Kubernetes version for the control plane.</p>
 -->
-为控制平面指定特定的 Kubernetes 版本。
+<p>为控制平面指定特定的 Kubernetes 版本。</p>
 </td>
 </tr>
 </tbody>
@@ -165,9 +180,9 @@ Choose a specific Kubernetes version for the control plane.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_kubelet.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_kubelet.md
similarity index 61%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_kubelet.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_kubelet.md
index b95587803d..ae4dc9bddb 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_kubelet.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_kubelet.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Generate a kubeconfig file for the kubelet to use *only* for cluster bootstrapping purposes
+-->
+为 kubelet 生成一个 kubeconfig 文件，*仅仅*用于集群引导目的
 
 <!--
 ### Synopsis
@@ -39,9 +54,9 @@ kubeadm init phase kubeconfig kubelet [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The IP address the API Server will advertise it's listening on. If not set the default network interface will be used.
+<p>The IP address the API Server will advertise it's listening on. If not set the default network interface will be used.</p>
 -->
-API 服务器所公布的其正在监听的 IP 地址。如果未设置，则使用默认的网络接口。
+<p>API 服务器所公布的其正在监听的 IP 地址。如果未设置，则使用默认的网络接口。</p>
 </td>
 </tr>
 
@@ -56,9 +71,9 @@ API 服务器所公布的其正在监听的 IP 地址。如果未设置，则使
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Port for the API Server to bind to.
+<p>Port for the API Server to bind to.</p>
 -->
-要绑定到 API 服务器的端口。
+<p>要绑定到 API 服务器的端口。</p>
 </td>
 </tr>
 
@@ -73,9 +88,9 @@ Port for the API Server to bind to.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save and store the certificates.
+<p>The path where to save and store the certificates.</p>
 -->
-保存和存储证书的路径。
+<p>保存和存储证书的路径。</p>
 </td>
 </tr>
 
@@ -85,9 +100,9 @@ The path where to save and store the certificates.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to kubeadm configuration file.
+<p>Path to kubeadm configuration file.</p>
 -->
-kubeadm 配置文件的路径。
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -97,9 +112,9 @@ kubeadm 配置文件的路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Specify a stable IP address or DNS name for the control plane.
+<p>Specify a stable IP address or DNS name for the control plane.</p>
 -->
-为控制平面指定一个稳定的 IP 地址或 DNS 名称。
+<p>为控制平面指定一个稳定的 IP 地址或 DNS 名称。</p>
 </td>
 </tr>
 
@@ -109,9 +124,9 @@ Specify a stable IP address or DNS name for the control plane.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for kubelet
+<p>help for kubelet</p>
 -->
-kubelet 操作的帮助命令
+<p>kubelet 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -126,9 +141,9 @@ kubelet 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save the kubeconfig file.
+<p>The path where to save the kubeconfig file.</p>
 -->
-kubeconfig 文件的保存路径。
+<p>kubeconfig 文件的保存路径。</p>
 </td>
 </tr>
 
@@ -143,9 +158,9 @@ kubeconfig 文件的保存路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Choose a specific Kubernetes version for the control plane.
+<p>Choose a specific Kubernetes version for the control plane.</p>
 -->
-为控制平面选择特定的 Kubernetes 版本。
+<p>为控制平面选择特定的 Kubernetes 版本。</p>
 </td>
 </tr>
 
@@ -155,9 +170,9 @@ Choose a specific Kubernetes version for the control plane.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Specify the node name.
+<p>Specify the node name.</p>
 -->
-指定节点的名称。
+<p>指定节点的名称。</p>
 </td>
 </tr>
 
@@ -183,9 +198,9 @@ Specify the node name.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_scheduler.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_scheduler.md
similarity index 59%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_scheduler.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_scheduler.md
index 452247b6de..38d951e51a 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_scheduler.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubeconfig_scheduler.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Generate a kubeconfig file for the scheduler to use 
+-->
+生成调度器使用的 kubeconfig 文件
 
 <!--
 ### Synopsis
@@ -34,9 +49,9 @@ kubeadm init phase kubeconfig scheduler [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The IP address the API Server will advertise it's listening on. If not set the default network interface will be used.
+<p>The IP address the API Server will advertise it's listening on. If not set the default network interface will be used.</p>
 -->
-API 服务器所公布的其正在监听的 IP 地址。如果未设置，则使用默认的网络接口。
+<p>API 服务器所公布的其正在监听的 IP 地址。如果未设置，则使用默认的网络接口。</p>
 </td>
 </tr>
 
@@ -51,9 +66,9 @@ API 服务器所公布的其正在监听的 IP 地址。如果未设置，则使
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Port for the API Server to bind to.
+<p>Port for the API Server to bind to.</p>
 -->
-要绑定到 API 服务器的端口。
+<p>要绑定到 API 服务器的端口。</p>
 </td>
 </tr>
 
@@ -68,9 +83,9 @@ Port for the API Server to bind to.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save and store the certificates.
+<p>The path where to save and store the certificates.</p>
 -->
-保存和存储证书的路径。
+<p>保存和存储证书的路径。</p>
 </td>
 </tr>
 
@@ -80,9 +95,9 @@ The path where to save and store the certificates.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to kubeadm configuration file.
+<p>Path to kubeadm configuration file.</p>
 -->
-kubeadm 配置文件的路径。
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -92,9 +107,9 @@ kubeadm 配置文件的路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Specify a stable IP address or DNS name for the control plane.
+<p>Specify a stable IP address or DNS name for the control plane.</p>
 -->
-为控制平面指定一个稳定的 IP 地址或 DNS 名称。
+<p>为控制平面指定一个稳定的 IP 地址或 DNS 名称。</p>
 </td>
 </tr>
 
@@ -104,9 +119,9 @@ Specify a stable IP address or DNS name for the control plane.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for scheduler
+<p>help for scheduler</p>
 -->
-scheduler 操作的帮助命令
+<p>scheduler 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -121,9 +136,9 @@ scheduler 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The path where to save the kubeconfig file.
+<p>The path where to save the kubeconfig file.</p>
 -->
-kubeconfig 文件的保存路径。
+<p>kubeconfig 文件的保存路径。</p>
 </td>
 </tr>
 
@@ -138,9 +153,9 @@ kubeconfig 文件的保存路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Choose a specific Kubernetes version for the control plane.
+<p>Choose a specific Kubernetes version for the control plane.</p>
 -->
-为控制平面指定特定的 Kubernetes 版本。
+<p>为控制平面指定特定的 Kubernetes 版本。</p>
 </td>
 </tr>
 
@@ -166,9 +181,9 @@ Choose a specific Kubernetes version for the control plane.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-finalize.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-finalize.md
similarity index 50%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-finalize.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-finalize.md
index 644a8c604e..3b13b77dd5 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-finalize.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-finalize.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Updates settings relevant to the kubelet after TLS bootstrap 
+-->
+TLS 引导后更新与 kubelet 相关的设置
 
 <!-- ### Synopsis -->
 ### 概要
@@ -37,8 +52,8 @@ kubeadm init phase kubelet-finalize [flags]
 <td colspan="2">-h, --help</td>
 </tr>
 <tr>
-<!-- <td></td><td style="line-height: 130%; word-wrap: break-word;">help for kubelet-finalize</td> -->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">kubelet-finalize 操作的帮助命令</td>
+<!-- <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>help for kubelet-finalize</p></td> -->
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>kubelet-finalize 操作的帮助命令</p></td>
 </tr>
 
 </tbody>
@@ -60,8 +75,8 @@ kubeadm init phase kubelet-finalize [flags]
 <td colspan="2">--rootfs string</td>
 </tr>
 <tr>
-<!-- <td></td><td style="line-height: 130%; word-wrap: break-word;">[EXPERIMENTAL] The path to the 'real' host root filesystem.</td> -->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">[实验] 到'真实'主机根文件系统的路径。</td>
+<!-- <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p></td> -->
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>[实验] 到'真实'主机根文件系统的路径。</p></td>
 </tr>
 
 </tbody>
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-finalize_all.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-finalize_all.md
similarity index 56%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-finalize_all.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-finalize_all.md
index d99d6036a1..71bc1e0d89 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-finalize_all.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-finalize_all.md
@@ -1,10 +1,27 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Run all kubelet-finalize phases
+-->
+运行 kubelet-finalize 的所有阶段
 
 <!-- ### Synopsis -->
 ### 概要
 
 
-<!-- Run all kubelet-finalize phases -->
-运行所有 kubelet-finalize 阶段
+<!--
+Run all kubelet-finalize phases
+-->
+运行 kubelet-finalize 的所有阶段
 
 ```
 kubeadm init phase kubelet-finalize all [flags]
@@ -40,7 +57,7 @@ kubeadm init phase kubelet-finalize all [flags]
 </tr>
 <tr>
 <!-- <td></td><td style="line-height: 130%; word-wrap: break-word;">The path where to save and store the certificates.</td> -->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">保存和存储证书的路径。</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>保存和存储证书的路径。</p></td>
 </tr>
 
 <tr>
@@ -48,7 +65,7 @@ kubeadm init phase kubelet-finalize all [flags]
 </tr>
 <tr>
 <!-- <td></td><td style="line-height: 130%; word-wrap: break-word;">Path to a kubeadm configuration file.</td> -->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">kubeadm 配置文件的路径。</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>kubeadm 配置文件的路径。</p></td>
 </tr>
 
 <tr>
@@ -56,7 +73,7 @@ kubeadm init phase kubelet-finalize all [flags]
 </tr>
 <tr>
 <!-- <td></td><td style="line-height: 130%; word-wrap: break-word;">help for all</td> -->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">all 操作的帮助命令</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>all 操作的帮助命令</p></td>
 </tr>
 
 </tbody>
@@ -79,11 +96,8 @@ kubeadm init phase kubelet-finalize all [flags]
 </tr>
 <tr>
 <!-- <td></td><td style="line-height: 130%; word-wrap: break-word;">[EXPERIMENTAL] The path to the 'real' host root filesystem.</td> -->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">[实验] 到'真实'主机根文件系统的路径。</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>[实验] 到'真实'主机根文件系统的路径。</p></td>
 </tr>
 
 </tbody>
 </table>
-
-
-
diff --git a/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-finalize_experimental-cert-rotation.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-finalize_experimental-cert-rotation.md
new file mode 100644
index 0000000000..ef3c0ae99a
--- /dev/null
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-finalize_experimental-cert-rotation.md
@@ -0,0 +1,88 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Enable kubelet client certificate rotation 
+-->
+启用 kubelet 客户端证书轮换
+
+<!-- ### Synopsis -->
+### 概要
+
+<!-- Enable kubelet client certificate rotation -->
+启用 kubelet 客户端证书轮换
+
+```
+kubeadm init phase kubelet-finalize experimental-cert-rotation [flags]
+```
+
+<!-- ### Options -->
+### 选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--cert-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/kubernetes/pki"</td>
+</tr>
+<tr>
+<!-- <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The path where to save and store the certificates.</p></td> -->
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>保存和存储证书的路径。</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--config string</td>
+</tr>
+<tr>
+<!-- <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Path to a kubeadm configuration file.</p></td> -->
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>kubeadm 配置文件的路径。</p></td>
+</tr>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<!-- <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>help for experimental-cert-rotation</p></td> -->
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>experimental-cert-rotation 操作的帮助命令</p></td>
+</tr>
+
+</tbody>
+</table>
+
+
+
+<!-- ### Options inherited from parent commands -->
+### 继承于父命令的选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<!-- <td></td><td style="line-height: 130%; word-wrap: break-word;"><p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p></td> -->
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>[实验] 到'真实'主机根文件系统的路径。</p></td>
+</tr>
+
+</tbody>
+</table>
+
+
+
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-start.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-start.md
similarity index 77%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-start.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-start.md
index 2e1e2a8dae..2067c9711e 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-start.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-start.md
@@ -1,3 +1,19 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+<!--
+Write kubelet settings and (re)start the kubelet
+-->
+编写 kubelet 配置并（重新）启动 kubelet
 
 <!-- 
 ### Synopsis
@@ -51,7 +67,9 @@ kubeadm init phase kubelet-start --config config.yaml
 <!--
 Path to a kubeadm configuration file.
 -->
+<p>
 kubeadm 配置文件的路径。
+</p>
 </td>
 </tr>
 
@@ -63,7 +81,9 @@ kubeadm 配置文件的路径。
 <!--
 Path to the CRI socket to connect. If empty kubeadm will try to auto-detect this value; use this option only if you have more than one CRI installed or if you have non-standard CRI socket.
 -->
+<p>
 连接到 CRI 套接字的路径。如果为空，则 kubeadm 将尝试自动检测该值；仅当安装了多个 CRI 或具有非标准 CRI 套接字时，才使用此选项。
+</p>
 </td>
 </tr>
 
@@ -75,7 +95,9 @@ Path to the CRI socket to connect. If empty kubeadm will try to auto-detect this
 <!--
 help for kubelet-start
 -->
+<p>
 kubelet-start 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -87,7 +109,9 @@ kubelet-start 操作的帮助命令
 <!--
 Specify the node name.
 -->
+<p>
 指定节点名称。
+</p>
 </td>
 </tr>
 
@@ -115,10 +139,11 @@ Specify the node name.
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_mark-control-plane.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_mark-control-plane.md
similarity index 60%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_mark-control-plane.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_mark-control-plane.md
index 25cd3de7f7..0ddec0c498 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_mark-control-plane.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_mark-control-plane.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Mark a node as a control-plane 
+-->
+标记节点为控制平面节点
 
 <!--
 ### Synopsis
@@ -26,7 +41,7 @@ kubeadm init phase mark-control-plane [flags]
 
 ```
 # 将控制平面标签和污点应用于当前节点，其功能等效于 kubeadm init执行的操作。
-kubeadm init phase mark-control-plane --config config.yml
+kubeadm init phase mark-control-plane --config config.yaml
 
 # 将控制平面标签和污点应用于特定节点
 kubeadm init phase mark-control-plane --node-name myNode
@@ -51,9 +66,9 @@ kubeadm init phase mark-control-plane --node-name myNode
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to a kubeadm configuration file.
+<p>Path to a kubeadm configuration file.</p>
 -->
-kubeadm 配置文件的路径。
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -63,9 +78,9 @@ kubeadm 配置文件的路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for mark-control-plane
+<p>help for mark-control-plane</p>
 -->
-mark-control-plane 操作的帮助命令
+<p>mark-control-plane 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -75,9 +90,9 @@ mark-control-plane 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Specify the node name.
+<p>Specify the node name.</p>
 -->
-指定节点名称。
+<p>指定节点名称。</p>
 </td>
 </tr>
 
@@ -103,9 +118,9 @@ Specify the node name.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_preflight.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_preflight.md
similarity index 70%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_preflight.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_preflight.md
index 55d36d7c85..d7c3d4225d 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_preflight.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_preflight.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Run pre-flight checks
+-->
+运行启动检查
 
 <!-- 
 ### Synopsis
@@ -27,7 +42,7 @@ kubeadm init phase preflight [flags]
 
 ```
 # 使用配置文件对 kubeadm init 进行启动检查。
-kubeadm init phase preflight --config kubeadm-config.yml
+kubeadm init phase preflight --config kubeadm-config.yaml
 ```
 
 <!-- 
@@ -51,7 +66,9 @@ kubeadm init phase preflight --config kubeadm-config.yml
 <!--
 Path to a kubeadm configuration file.
 -->
+<p>
 kubeadm 配置文件的路径。
+</p>
 </td>
 </tr>
 
@@ -63,19 +80,23 @@ kubeadm 配置文件的路径。
 <!--
 help for preflight
 -->
+<p>
 preflight 操作的帮助命令
+</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--ignore-preflight-errors stringSlice</td>
+<td colspan="2">--ignore-preflight-errors strings</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
 A list of checks whose errors will be shown as warnings. Example: 'IsPrivilegedUser,Swap'. Value 'all' ignores errors from all checks.
 -->
+<p>
 错误将显示为警告的检查列表：例如：'IsPrivilegedUser,Swap'。取值为 'all' 时将忽略检查中的所有错误。
+</p>
 </td>
 </tr>
 
@@ -103,10 +124,11 @@ A list of checks whose errors will be shown as warnings. Example: 'IsPrivilegedU
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-certs.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-certs.md
similarity index 80%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-certs.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-certs.md
index bf88802947..fc7b1e50ef 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-certs.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-certs.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Upload certificates to kubeadm-certs
+-->
+将证书上传到 kubeadm-certs
 
 <!-- 
 ### Synopsis
@@ -33,7 +48,9 @@ kubeadm init phase upload-certs [flags]
 <!--
 Key used to encrypt the control-plane certificates in the kubeadm-certs Secret.
 -->
+<p>
 用于加密 kubeadm-certs Secret 中的控制平面证书的密钥。
+</p>
 </td>
 </tr>
 
@@ -45,7 +62,9 @@ Key used to encrypt the control-plane certificates in the kubeadm-certs Secret.
 <!--
 Path to a kubeadm configuration file.
 -->
+<p>
 kubeadm 配置文件的路径。
+</p>
 </td>
 </tr>
 
@@ -57,7 +76,9 @@ kubeadm 配置文件的路径。
 <!--
 help for upload-certs
 -->
+<p>
 upload-certs 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -68,8 +89,10 @@ upload-certs 操作的帮助命令
 <tr>
 <!-- td></td><td style="line-height: 130%; word-wrap: break-word;">The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.</td -->
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
+<p>
 用来与集群通信的 kubeconfig 文件。
 如果此标志未设置，则可以在一组标准的位置搜索现有的 kubeconfig 文件。
+</p>
 </td>
 </tr>
 
@@ -81,7 +104,9 @@ upload-certs 操作的帮助命令
 <!--
 Don't print the key used to encrypt the control-plane certificates.
 -->
+<p>
 不要打印输出用于加密控制平面证书的密钥。
+</p>
 </td>
 </tr>
 
@@ -93,7 +118,9 @@ Don't print the key used to encrypt the control-plane certificates.
 <!--
 Upload control-plane certificates to the kubeadm-certs Secret.
 -->
+<p>
 将控制平面证书上传到 kubeadm-certs Secret。
+</p>
 </td>
 </tr>
 
@@ -120,10 +147,11 @@ Upload control-plane certificates to the kubeadm-certs Secret.
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config.md
similarity index 51%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config.md
index dc424bd24e..0447fc428c 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Upload the kubeadm and kubelet configuration to a ConfigMap
+-->
+上传 kubeadm 和 kubelet 配置到 ConfigMap 中
 
 <!--
 ### Synopsis
@@ -34,9 +49,9 @@ kubeadm init phase upload-config [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for upload-config
+<p>help for upload-config</p>
 -->
-upload-config 操作的帮助命令
+<p>upload-config 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -62,9 +77,9 @@ upload-config 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_all.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_all.md
similarity index 71%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_all.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_all.md
index e994273193..350255ca98 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_all.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_all.md
@@ -1,3 +1,19 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+<!--
+Upload all configuration to a config map
+-->
+将所有配置上传到 ConfigMap
 
 <!-- 
 ### Synopsis
@@ -34,9 +50,13 @@ kubeadm init phase upload-config all [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
+<p>
 Path to a kubeadm configuration file.
+</p>
 -->
+<p>
 kubeadm 配置文件的路径。
+</p>
 </td>
 </td>
 </tr>
@@ -47,9 +67,13 @@ kubeadm 配置文件的路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
+<p>
 help for all
+</p>
 -->
+<p>
 all 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -58,15 +82,21 @@ all 操作的帮助命令
 <!--
 --kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/kubernetes/admin.conf"
 -->
+<p>
 --kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值："/etc/kubernetes/admin.conf"
+</p>
 </td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
+<p>
 The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
+</p>
 -->
+<p>
 与集群通信时使用的 kubeconfig 文件。如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。
+</p>
 </td>
 </tr>
 
@@ -92,12 +122,15 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
+<p>
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
+</p>
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_kubeadm.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_kubeadm.md
similarity index 77%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_kubeadm.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_kubeadm.md
index e6155a1d9f..14a4f268f9 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_kubeadm.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_kubeadm.md
@@ -1,4 +1,19 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
 
+
+<!--
+Upload the kubeadm ClusterConfiguration to a ConfigMap
+-->
+将 kubeadm ClusterConfiguration 上传到 ConfigMap
 <!-- 
 ### Synopsis
 -->
@@ -58,7 +73,9 @@ kubeadm init phase upload-config --config=myConfig.yaml
 <!--
 Path to a kubeadm configuration file.
 -->
+<p>
 kubeadm 配置文件的路径。
+</p>
 </td>
 </tr>
 
@@ -70,7 +87,9 @@ kubeadm 配置文件的路径。
 <!--
 help for kubeadm
 -->
+<p>
 kubeadm 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -87,7 +106,9 @@ kubeadm 操作的帮助命令
 <!--
 The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
 -->
+<p>
 与集群通信时使用的 kubeconfig 文件。如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。
+</p>
 </td>
 </tr>
 
@@ -115,10 +136,11 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_kubelet.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_kubelet.md
similarity index 82%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_kubelet.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_kubelet.md
index 29ece2c447..7da17d36a6 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_kubelet.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_upload-config_kubelet.md
@@ -1,3 +1,7 @@
+<!--
+Upload the kubelet component config to a ConfigMap
+-->
+将 kubelet 组件配置上传到 ConfigMap
 
 <!--
 ### Synopsis
@@ -6,11 +10,10 @@
 ### 概要
 
 <!--
-Upload kubelet configuration extracted from the kubeadm InitConfiguration object to a ConfigMap of the form kubelet-config-1.X in the cluster, where X is the minor version of the current (API Server) Kubernetes version.
+Upload the kubelet configuration extracted from the kubeadm InitConfiguration object to a kubelet-config ConfigMap in the cluster
 -->
 
-将从 kubeadm InitConfiguration 对象提取的 kubelet 配置上传到集群中 kubelet-config-1.X 形式的
-ConfigMap，其中 X 是当前（API 服务器）Kubernetes 版本的次要版本。
+将从 kubeadm InitConfiguration 对象提取的 kubelet 配置上传到集群中的 kubelet-config ConfigMap
 
 ```
 kubeadm init phase upload-config kubelet [flags]
@@ -53,7 +56,9 @@ kubeadm init phase upload-config kubelet --config kubeadm.yaml
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!-- Path to a kubeadm configuration file.  -->
+<p>
 到 kubeadm 配置文件的路径。
+</p>
 </td>
 </tr>
 
@@ -63,7 +68,9 @@ kubeadm init phase upload-config kubelet --config kubeadm.yaml
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!-- help for kubelet -->
+<p>
 kubelet 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -77,7 +84,9 @@ kubelet 操作的帮助命令
 <!--
 The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
 -->
+<p>
 与集群通信时使用的 kubeconfig 文件。如果未设置该标签，则可以通过一组标准路径来寻找已有的 kubeconfig 文件。
+</p>
 </td>
 </tr>
 
@@ -105,7 +114,9 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join.md
similarity index 64%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join.md
index e113203a1a..e341577329 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Run this on any machine you wish to join an existing cluster 
+-->
+在你希望加入现有集群的任何机器上运行它
 
 <!--
 ### Synopsis
@@ -98,7 +113,7 @@ control-plane-prepare  Prepare the machine for serving a control plane
 kubelet-start          Write kubelet settings, certificates and (re)start the kubelet
 control-plane-join     Join a machine as a control plane instance
   /etcd                  Add a new local etcd member
-  /update-status         Register the new control-plane node into the ClusterStatus maintained in the kubeadm-config ConfigMap
+  /update-status         Register the new control-plane node into the ClusterStatus maintained in the kubeadm-config ConfigMap (DEPRECATED)
   /mark-control-plane    Mark a node as a control-plane
 ```
 
@@ -123,9 +138,9 @@ kubeadm join [api-server-endpoint] [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-If the node should host a new control plane instance, the IP address the API Server will advertise it's listening on. If not set the default network interface will be used.
+<p>If the node should host a new control plane instance, the IP address the API Server will advertise it's listening on. If not set the default network interface will be used.</p>
 -->
-如果该节点托管一个新的控制平面实例，则 API 服务器将公布其正在侦听的 IP 地址。如果未设置，则使用默认网络接口。
+<p>如果该节点托管一个新的控制平面实例，则 API 服务器将公布其正在侦听的 IP 地址。如果未设置，则使用默认网络接口。</p>
 </td>
 </tr>
 
@@ -140,9 +155,9 @@ If the node should host a new control plane instance, the IP address the API Ser
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-If the node should host a new control plane instance, the port for the API Server to bind to.
+<p>If the node should host a new control plane instance, the port for the API Server to bind to.</p>
 -->
-如果节点应该托管新的控制平面实例，则为 API 服务器要绑定的端口。
+<p>如果节点应该托管新的控制平面实例，则为 API 服务器要绑定的端口。</p>
 </td>
 </tr>
 
@@ -152,9 +167,9 @@ If the node should host a new control plane instance, the port for the API Serve
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Use this key to decrypt the certificate secrets uploaded by init.
+<p>Use this key to decrypt the certificate secrets uploaded by init.</p>
 -->
-使用此密钥可以解密由 init 上传的证书 secret。
+<p>使用此密钥可以解密由 init 上传的证书 secret。</p>
 </td>
 </tr>
 
@@ -164,9 +179,9 @@ Use this key to decrypt the certificate secrets uploaded by init.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to kubeadm config file.
+<p>Path to kubeadm config file.</p>
 -->
-kubeadm 配置文件的路径。
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -176,9 +191,9 @@ kubeadm 配置文件的路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Create a new control plane instance on this node
+<p>Create a new control plane instance on this node</p>
 -->
-在此节点上创建一个新的控制平面实例
+<p>在此节点上创建一个新的控制平面实例</p>
 </td>
 </tr>
 
@@ -188,9 +203,9 @@ Create a new control plane instance on this node
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to the CRI socket to connect. If empty kubeadm will try to auto-detect this value; use this option only if you have more than one CRI installed or if you have non-standard CRI socket.
+<p>Path to the CRI socket to connect. If empty kubeadm will try to auto-detect this value; use this option only if you have more than one CRI installed or if you have non-standard CRI socket.</p>
 -->
-要连接的 CRI 套接字的路径。如果为空，则 kubeadm 将尝试自动检测此值；仅当安装了多个 CRI 或具有非标准 CRI 插槽时，才使用此选项。
+<p>要连接的 CRI 套接字的路径。如果为空，则 kubeadm 将尝试自动检测此值；仅当安装了多个 CRI 或具有非标准 CRI 插槽时，才使用此选项。</p>
 </td>
 </tr>
 
@@ -200,9 +215,9 @@ Path to the CRI socket to connect. If empty kubeadm will try to auto-detect this
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-For file-based discovery, a file or URL from which to load cluster information.
+<p>For file-based discovery, a file or URL from which to load cluster information.</p>
 -->
-对于基于文件的发现，给出用于加载集群信息的文件或者 URL。
+<p>对于基于文件的发现，给出用于加载集群信息的文件或者 URL。</p>
 </td>
 </tr>
 
@@ -212,9 +227,9 @@ For file-based discovery, a file or URL from which to load cluster information.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-For token-based discovery, the token used to validate cluster information fetched from the API server.
+<p>For token-based discovery, the token used to validate cluster information fetched from the API server.</p>
 -->
-对于基于令牌的发现，该令牌用于验证从 API 服务器获取的集群信息。
+<p>对于基于令牌的发现，该令牌用于验证从 API 服务器获取的集群信息。</p>
 </td>
 </tr>
 
@@ -224,9 +239,9 @@ For token-based discovery, the token used to validate cluster information fetche
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-For token-based discovery, validate that the root CA public key matches this hash (format: "&lt;type&gt;:&lt;value&gt;").
+<p>For token-based discovery, validate that the root CA public key matches this hash (format: "&lt;type&gt;:&lt;value&gt;").</p>
 -->
-对基于令牌的发现，验证根 CA 公钥是否与此哈希匹配 (格式: "&lt;type&gt;:&lt;value&gt;")。
+<p>对基于令牌的发现，验证根 CA 公钥是否与此哈希匹配 (格式: "&lt;type&gt;:&lt;value&gt;")。</p>
 </td>
 </tr>
 
@@ -236,26 +251,22 @@ For token-based discovery, validate that the root CA public key matches this has
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-For token-based discovery, allow joining without --discovery-token-ca-cert-hash pinning.
+<p>For token-based discovery, allow joining without --discovery-token-ca-cert-hash pinning.</p>
 -->
-对于基于令牌的发现，允许在未关联 --discovery-token-ca-cert-hash 参数的情况下添加节点。
+<p>对于基于令牌的发现，允许在未关联 --discovery-token-ca-cert-hash 参数的情况下添加节点。</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--experimental-patches string</td>
+<td colspan="2">--dry-run</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--  
-Path to a directory that contains files named "target[suffix][+patchtype].extension". For example, "kube-apiserver0+merge.yaml" or just "etcd.json". "patchtype" can be one of "strategic", "merge" or "json" and they match the patch formats supported by kubectl. The default "patchtype" is "strategic". "extension" must be either "json" or "yaml". "suffix" is an optional string that can be used to determine which patches are applied first alpha-numerically.
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
+<!-- 
+Don't apply any changes; just output what would be done. 
 -->
-包含名为 "target[suffix][+patchtype].extension" 的文件的目录的路径。
-例如，"kube-apiserver0+merge.yaml" 或仅仅是 "etcd.json"。
-"patchtype" 可以是 "strategic"、"merge" 或 "json" 之一，并且它们与 kubectl 支持的补丁格式匹配。
-默认的 "patchtype" 为 "strategic"。 "extension" 必须为 "json" 或 "yaml"。 
-"suffix" 是一个可选字符串，可用于确定首先按字母顺序应用哪些补丁。
-</td>
+不会应用任何改动，仅仅输出那些将变动的地方。
+</p></td>
 </tr>
 
 <tr>
@@ -264,21 +275,21 @@ Path to a directory that contains files named "target[suffix][+patchtype].extens
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for join
+<p>help for join</p>
 -->
-join 操作的帮助命令
+<p>join 操作的帮助命令</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--ignore-preflight-errors stringSlice</td>
+<td colspan="2">--ignore-preflight-errors strings</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-A list of checks whose errors will be shown as warnings. Example: 'IsPrivilegedUser,Swap'. Value 'all' ignores errors from all checks.
+<p>A list of checks whose errors will be shown as warnings. Example: 'IsPrivilegedUser,Swap'. Value 'all' ignores errors from all checks.</p>
 -->
-错误将显示为警告的检查列表；例如：'IsPrivilegedUser,Swap'。取值为 'all' 时将忽略检查中的所有错误。
+<p>错误将显示为警告的检查列表；例如：'IsPrivilegedUser,Swap'。取值为 'all' 时将忽略检查中的所有错误。</p>
 </td>
 </tr>
 
@@ -288,21 +299,37 @@ A list of checks whose errors will be shown as warnings. Example: 'IsPrivilegedU
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Specify the node name.
+<p>Specify the node name.</p>
 -->
-指定节点的名称
+<p>指定节点的名称</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--skip-phases stringSlice</td>
+<td colspan="2">--patches string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--  
+<p>Path to a directory that contains files named "target[suffix][+patchtype].extension". For example, "kube-apiserver0+merge.yaml" or just "etcd.json". "patchtype" can be one of "strategic", "merge" or "json" and they match the patch formats supported by kubectl. The default "patchtype" is "strategic". "extension" must be either "json" or "yaml". "suffix" is an optional string that can be used to determine which patches are applied first alpha-numerically.</p>
+-->
+<p>包含名为 "target[suffix][+patchtype].extension" 的文件的目录的路径。
+例如，"kube-apiserver0+merge.yaml" 或仅仅是 "etcd.json"。
+"patchtype" 可以是 "strategic"、"merge" 或 "json" 之一，并且它们与 kubectl 支持的补丁格式匹配。
+默认的 "patchtype" 为 "strategic"。 "extension" 必须为 "json" 或 "yaml"。 
+"suffix" 是一个可选字符串，可用于确定首先按字母顺序应用哪些补丁。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--skip-phases strings</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-List of phases to be skipped
+<p>List of phases to be skipped</p>
 -->
-要跳过的阶段列表
+<p>要跳过的阶段列表</p>
 </td>
 </tr>
 
@@ -312,9 +339,9 @@ List of phases to be skipped
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Specify the token used to temporarily authenticate with the Kubernetes Control Plane while joining the node.
+<p>Specify the token used to temporarily authenticate with the Kubernetes Control Plane while joining the node.</p>
 -->
-指定在加入节点时用于临时通过 Kubernetes 控制平面进行身份验证的令牌。
+<p>指定在加入节点时用于临时通过 Kubernetes 控制平面进行身份验证的令牌。</p>
 </td>
 </tr>
 
@@ -324,9 +351,9 @@ Specify the token used to temporarily authenticate with the Kubernetes Control P
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Use this token for both discovery-token and tls-bootstrap-token when those values are not provided.
+<p>Use this token for both discovery-token and tls-bootstrap-token when those values are not provided.</p>
 -->
-如果未提供这些值，则将它们用于 discovery-token 令牌和 tls-bootstrap 令牌。
+<p>如果未提供这些值，则将它们用于 discovery-token 令牌和 tls-bootstrap 令牌。</p>
 </td>
 </tr>
 
@@ -353,9 +380,9 @@ Use this token for both discovery-token and tls-bootstrap-token when those value
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 指向 '真实' 宿主机根文件系统的路径。
+<p>[实验] 指向 '真实' 宿主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase.md
new file mode 100644
index 0000000000..1fea4a45f4
--- /dev/null
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase.md
@@ -0,0 +1,84 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Use this command to invoke single phase of the join workflow 
+-->
+使用此命令来调用 `join` 工作流程的某个阶段
+
+<!--
+### Synopsis
+-->
+
+### 概要
+
+<!--
+Use this command to invoke single phase of the join workflow
+-->
+
+使用此命令来调用 `join` 工作流程的某个阶段
+
+<!--
+### Options
+-->
+
+### 选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!-- 
+<p>help for phase</p> 
+-->
+<p>phase 操作的帮助命令</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
+<!--
+### Options inherited from parent commands
+-->
+
+### 从父命令中继承的选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!-- 
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>  
+-->
+<p>[实验] 指向 '真实' 宿主机根文件系统的路径。</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join.md
similarity index 65%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join.md
index 51fe587053..a2872f1b47 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Join a machine as a control plane instance
+-->
+添加作为控制平面实例的机器
 
 <!--
 ### Synopsis
@@ -54,7 +69,9 @@ kubeadm join phase control-plane-join all
 <!--
 help for control-plane-join
 -->
+<p>
 control-plane-join 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -82,10 +99,11 @@ control-plane-join 操作的帮助命令
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_all.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_all.md
new file mode 100644
index 0000000000..85334ea94c
--- /dev/null
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_all.md
@@ -0,0 +1,162 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Join a machine as a control plane instance
+-->
+添加作为控制平面实例的机器
+
+<!--
+### Synopsis
+-->
+
+### 概要
+
+<!--
+Join a machine as a control plane instance
+-->
+添加作为控制平面实例的机器
+
+```
+kubeadm join phase control-plane-join all [flags]
+```
+
+<!--
+### Options
+-->
+### 选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--apiserver-advertise-address string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+If the node should host a new control plane instance, the IP address the API Server will advertise it's listening on. If not set the default network interface will be used.
+-->
+<p>
+如果该节点托管一个新的控制平面实例，则 API 服务器将公布其正在侦听的 IP 地址。如果未设置，则使用默认网络接口。
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--config string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Path to kubeadm config file.
+-->
+<p>
+kubeadm 配置文件的路径。
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--control-plane</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Create a new control plane instance on this node
+-->
+<p>
+在此节点上创建一个新的控制平面实例
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+help for all
+-->
+<p>
+all 操作的帮助命令      
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--node-name string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Specify the node name.
+-->
+<p>
+指定节点名称。
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--patches string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
+<!--
+Path to a directory that contains files named &quot;target[suffix][+patchtype].extension&quot;. For example, &quot;kube-apiserver0+merge.yaml&quot; or just &quot;etcd.json&quot;. &quot;target&quot; can be one of &quot;kube-apiserver&quot;, &quot;kube-controller-manager&quot;, &quot;kube-scheduler&quot;, &quot;etcd&quot;. &quot;patchtype&quot; can be one of &quot;strategic&quot;, &quot;merge&quot; or &quot;json&quot; and they match the patch formats supported by kubectl. The default &quot;patchtype&quot; is &quot;strategic&quot;. &quot;extension&quot; must be either &quot;json&quot; or &quot;yaml&quot;. &quot;suffix&quot; is an optional string that can be used to determine which patches are applied first alpha-numerically.
+-->
+包含名为 “target[suffix][+patchtype].extension” 的文件的目录的路径。
+例如，“kube-apiserver0+merge.yaml” 或只是 “etcd.json”。
+“target” 可以是 “kube-apiserver”、“kube-controller-manager”、“kube-scheduler”、“etcd” 之一。
+“patchtype” 可以是 “strategic”、“merge” 或 “json”，它们匹配 kubectl 支持的补丁格式。
+默认的 “patchtype” 是 “strategic”。“extension” 必须是 “json” 或 “yaml”。
+“suffix” 是一个可选字符串，可用于基于字母数字顺序确定首先应用哪些补丁。
+</p></td>
+</tr>
+
+</tbody>
+</table>
+
+<!--
+### Options inherited from parent commands
+-->
+
+### 从父命令继承的选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+[EXPERIMENTAL] The path to the 'real' host root filesystem.
+-->
+<p>
+[实验] 到 '真实' 主机根文件系统的路径。
+</p>
+</td>
+</tr>
+
+</tbody>
+</table>
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_etcd.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_etcd.md
similarity index 50%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_etcd.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_etcd.md
index 196f9f6840..f354483970 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_etcd.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_etcd.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Add a new local etcd member
+-->
+添加一个新的本地 etcd 成员
 
 <!--
 ### Synopsis
@@ -36,7 +51,9 @@ kubeadm join phase control-plane-join etcd [flags]
 <!--
 If the node should host a new control plane instance, the IP address the API Server will advertise it's listening on. If not set the default network interface will be used.
 -->
+<p>
 如果该节点托管一个新的控制平面实例，则 API 服务器将公布其正在侦听的 IP 地址。如果未设置，则使用默认网络接口。
+</p>
 </td>
 </tr>
 
@@ -48,7 +65,9 @@ If the node should host a new control plane instance, the IP address the API Ser
 <!--
 Path to kubeadm configuration file.
 -->
+<p>
 kubeadm 配置文件的路径。
+</p>
 </td>
 </tr>
 
@@ -60,23 +79,9 @@ kubeadm 配置文件的路径。
 <!--
 Create a new control plane instance on this node
 -->
+<p>
 在此节点上创建一个新的控制平面实例
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--experimental-patches string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--  
-Path to a directory that contains files named "target[suffix][+patchtype].extension". For example, "kube-apiserver0+merge.yaml" or just "etcd.json". "patchtype" can be one of "strategic", "merge" or "json" and they match the patch formats supported by kubectl. The default "patchtype" is "strategic". "extension" must be either "json" or "yaml". "suffix" is an optional string that can be used to determine which patches are applied first alpha-numerically.
--->
-包含名为 "target[suffix][+patchtype].extension" 的文件的目录的路径。
-例如，"kube-apiserver0+merge.yaml" 或仅仅是 "etcd.json"。
-"patchtype" 可以是"strategic"、"merge" 或 "json" 之一，并且它们与 kubectl 支持的补丁格式匹配。
-默认的 "patchtype" 为 "strategic"。 "extension" 必须为 "json" 或 "yaml"。 
-"suffix" 是一个可选字符串，可用于确定首先按字母顺序应用哪些补丁。
+</p>
 </td>
 </tr>
 
@@ -88,7 +93,9 @@ Path to a directory that contains files named "target[suffix][+patchtype].extens
 <!--
 help for etcd
 -->
+<p>
 etcd 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -100,9 +107,25 @@ etcd 操作的帮助命令
 <!--
 Specify the node name.
 -->
+<p>
 指定节点的名称
+</p>
 </td>
 </tr>
+<tr>
+<td colspan="2">--patches string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
+<!-- Path to a directory that contains files named &quot;target[suffix][+patchtype].extension&quot;. For example, &quot;kube-apiserver0+merge.yaml&quot; or just &quot;etcd.json&quot;. &quot;target&quot; can be one of &quot;kube-apiserver&quot;, &quot;kube-controller-manager&quot;, &quot;kube-scheduler&quot;, &quot;etcd&quot;. &quot;patchtype&quot; can be one of &quot;strategic&quot;, &quot;merge&quot; or &quot;json&quot; and they match the patch formats supported by kubectl. The default &quot;patchtype&quot; is &quot;strategic&quot;. &quot;extension&quot; must be either &quot;json&quot; or &quot;yaml&quot;. &quot;suffix&quot; is an optional string that can be used to determine which patches are applied first alpha-numerically. -->
+包含名为 “target[suffix][+patchtype].extension” 的文件的目录的路径。
+例如，“kube-apiserver0+merge.yaml” 或只是 “etcd.json”。
+“target” 可以是 “kube-apiserver”、“kube-controller-manager”、“kube-scheduler”、“etcd” 之一。
+“patchtype” 可以是 “strategic”、“merge” 或 “json”，它们匹配 kubectl 支持的补丁格式。
+默认的 “patchtype” 是 “strategic”。“extension” 必须是 “json” 或 “yaml”。
+“suffix” 是一个可选字符串，可用于基于字母数字顺序确定首先应用哪些补丁。
+</p></td>
+</tr>
 
 </tbody>
 </table>
@@ -128,7 +151,9 @@ Specify the node name.
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 到 '真实' 主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_mark-control-plane.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_mark-control-plane.md
similarity index 52%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_mark-control-plane.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_mark-control-plane.md
index 3ce1d641a5..ad52e01bbb 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_mark-control-plane.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_mark-control-plane.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Mark a node as a control-plane 
+-->
+将节点标记为控制平面节点
 
 <!--
 ### Synopsis
@@ -9,7 +24,7 @@
 Mark a node as a control-plane
 -->
 
-将 Node 节点标记为控制平面节点
+将节点标记为控制平面节点
 
 ```
 kubeadm join phase control-plane-join mark-control-plane [flags]
@@ -34,9 +49,9 @@ kubeadm join phase control-plane-join mark-control-plane [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Path to kubeadm configuration file.
+<p>Path to kubeadm configuration file.</p>
 -->
-kubeadm 配置文件的路径。
+<p>kubeadm 配置文件的路径。</p>
 </td>
 </tr>
 
@@ -46,9 +61,9 @@ kubeadm 配置文件的路径。
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Create a new control plane instance on this node
+<p>Create a new control plane instance on this node</p>
 -->
-在此节点上创建一个新的控制平面实例
+<p>在此节点上创建一个新的控制平面实例</p>
 </td>
 </tr>
 
@@ -58,9 +73,9 @@ Create a new control plane instance on this node
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for mark-control-plane
+<p>help for mark-control-plane</p>
 -->
-mark-control-plane 操作的帮助命令
+<p>mark-control-plane 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -70,9 +85,9 @@ mark-control-plane 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-Specify the node name.
+<p>Specify the node name.</p>
 -->
-指定节点的名称
+<p>指定节点的名称。</p>
 </td>
 </tr>
 
@@ -98,9 +113,9 @@ Specify the node name.
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 到 '真实' 主机根文件系统的路径。
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_update-status.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_update-status.md
new file mode 100644
index 0000000000..22df0e47a8
--- /dev/null
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_update-status.md
@@ -0,0 +1,138 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Register the new control-plane node into the ClusterStatus maintained in the kubeadm-config ConfigMap (DEPRECATED) 
+-->
+将新的控制平面节点注册到 kubeadm-config ConfigMap 维护的 ClusterStatus 中（已弃用）
+
+<!-- 
+### Synopsis 
+-->
+
+## 概要
+
+<!-- 
+Register the new control-plane node into the ClusterStatus maintained in the kubeadm-config ConfigMap (DEPRECATED)
+-->
+
+将新的控制平面节点注册到 kubeadm-config ConfigMap 维护的 ClusterStatus 中（已弃用）
+
+```
+kubeadm join phase control-plane-join update-status [flags]
+```
+
+<!-- 
+### Options 
+-->
+
+### 选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--apiserver-advertise-address string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>If the node should host a new control plane instance, the IP address the API Server will advertise it's listening on. If not set the default network interface will be used.</p>
+-->
+<p>如果该节点托管一个新的控制平面实例，则 API 服务器将公布其正在侦听的 IP 地址。如果未设置，则使用默认网络接口。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--config string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!-- 
+<p>Path to kubeadm config file.</p>  
+-->
+<p>kubeadm 配置文件的路径。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--control-plane</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!-- 
+<p>Create a new control plane instance on this node</p> 
+-->
+<p>在此节点上创建一个新的控制平面实例</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!-- 
+<p>help for update-status</p> 
+-->
+<p>update-status 操作的帮助命令</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--node-name string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!-- 
+<p>Specify the node name.</p>  
+-->
+<p>指定节点名称。</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
+
+
+<!--
+### Options inherited from parent commands
+-->
+
+### 从父命令中继承的选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!-- 
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>  
+-->
+<p>[实验] 到 '真实' 主机根文件系统的路径。</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare.md
similarity index 65%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare.md
index 76025d8d72..b932b05540 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare.md
@@ -1,3 +1,19 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+<!--
+Prepare the machine for serving a control plane
+-->
+准备为控制平面服务的机器
 
 <!--
 ### Synopsis
@@ -50,7 +66,9 @@ kubeadm join phase control-plane-prepare all
 <!--
 help for control-plane-prepare
 -->
+<p>
 control-plane-prepare 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -78,10 +96,11 @@ control-plane-prepare 操作的帮助命令
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 指向 '真实' 宿主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_all.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_all.md
similarity index 69%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_all.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_all.md
index 7a75089abb..e9ea15e302 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_all.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_all.md
@@ -1,3 +1,19 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+<!--
+Prepare the machine for serving a control plane
+-->
+准备为控制平面服务的机器
 
 <!--
 ### Synopsis
@@ -36,7 +52,9 @@ kubeadm join phase control-plane-prepare all [api-server-endpoint] [flags]
 <!--
 If the node should host a new control plane instance, the IP address the API Server will advertise it's listening on. If not set the default network interface will be used.
 -->
+<p>
 如果该节点托管一个新的控制平面实例，则 API 服务器将公布其正在侦听的 IP 地址。如果未设置，则使用默认网络接口。
+</p>
 </td>
 </tr>
 
@@ -53,7 +71,9 @@ If the node should host a new control plane instance, the IP address the API Ser
 <!--
 If the node should host a new control plane instance, the port for the API Server to bind to.
 -->
+<p>
 如果该节点托管一个新的控制平面实例，则为 API 服务器要绑定的端口。
+</p>
 </td>
 </tr>
 
@@ -65,7 +85,9 @@ If the node should host a new control plane instance, the port for the API Serve
 <!--
 Use this key to decrypt the certificate secrets uploaded by init.
 -->
+<p>
 使用此密钥解密由 init 上传的证书 secrets。
+</p>
 </td>
 </tr>
 
@@ -77,7 +99,9 @@ Use this key to decrypt the certificate secrets uploaded by init.
 <!--
 Path to kubeadm config file.
 -->
+<p>
 kubeadm 配置文件的路径。
+</p>
 </td>
 </tr>
 
@@ -89,7 +113,9 @@ kubeadm 配置文件的路径。
 <!--
 Create a new control plane instance on this node
 -->
+<p>
 在此节点上创建一个新的控制平面实例
+</p>
 </td>
 </tr>
 
@@ -101,7 +127,9 @@ Create a new control plane instance on this node
 <!--
 For file-based discovery, a file or URL from which to load cluster information.
 -->
+<p>
 对于基于文件的发现，给出用于加载集群信息的文件或者 URL。
+</p>
 </td>
 </tr>
 
@@ -113,19 +141,23 @@ For file-based discovery, a file or URL from which to load cluster information.
 <!--
 For token-based discovery, the token used to validate cluster information fetched from the API server.
 -->
+<p>
 对于基于令牌的发现，该令牌用于验证从 API 服务器获取的集群信息。
+</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--discovery-token-ca-cert-hash stringSlice</td>
+<td colspan="2">--discovery-token-ca-cert-hash strings</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
 For token-based discovery, validate that the root CA public key matches this hash (format: "&lt;type&gt;:&lt;value&gt;").
 -->
+<p>
 对于基于令牌的发现，请验证根 CA 公钥是否匹配此哈希值（格式："&lt;type&gt;:&lt;value&gt;"）。
+</p>
 </td>
 </tr>
 
@@ -137,23 +169,9 @@ For token-based discovery, validate that the root CA public key matches this has
 <!--
 For token-based discovery, allow joining without --discovery-token-ca-cert-hash pinning.
 -->
+<p>
 对于基于令牌的发现，允许在未关联 --discovery-token-ca-cert-hash 参数的情况下添加节点。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--experimental-patches string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--  
-Path to a directory that contains files named "target[suffix][+patchtype].extension". For example, "kube-apiserver0+merge.yaml" or just "etcd.json". "patchtype" can be one of "strategic", "merge" or "json" and they match the patch formats supported by kubectl. The default "patchtype" is "strategic". "extension" must be either "json" or "yaml". "suffix" is an optional string that can be used to determine which patches are applied first alpha-numerically.
--->
-包含名为 "target[suffix][+patchtype].extension" 的文件的目录的路径。
-例如，"kube-apiserver0+merge.yaml" 或仅仅是 "etcd.json"。
-"patchtype" 可以是 "strategic"、"merge" 或 "json" 之一，并且它们与 kubectl 支持的补丁格式匹配。
-默认的 "patchtype" 为 "strategic"。 "extension" 必须为 "json" 或 "yaml"。 
-"suffix" 是一个可选字符串，可用于确定首先按字母顺序应用哪些补丁。
+</p>
 </td>
 </tr>
 
@@ -177,7 +195,28 @@ all 操作的帮助命令
 <!--
 Specify the node name.
 -->
+<p>
 指定节点名称。
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--patches string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--  
+Path to a directory that contains files named &quot;target[suffix][+patchtype].extension&quot;. For example, &quot;kube-apiserver0+merge.yaml&quot; or just &quot;etcd.json&quot;. &quot;target&quot; can be one of &quot;kube-apiserver&quot;, &quot;kube-controller-manager&quot;, &quot;kube-scheduler&quot;, &quot;etcd&quot;. &quot;patchtype&quot; can be one of &quot;strategic&quot;, &quot;merge&quot; or &quot;json&quot; and they match the patch formats supported by kubectl. The default &quot;patchtype&quot; is &quot;strategic&quot;. &quot;extension&quot; must be either &quot;json&quot; or &quot;yaml&quot;. &quot;suffix&quot; is an optional string that can be used to determine which patches are applied first alpha-numerically.
+-->
+<p>
+包含名为 “target[suffix][+patchtype].extension” 的文件的目录的路径。
+例如，“kube-apiserver0+merge.yaml” 或只是 “etcd.json”。
+“target” 可以是 “kube-apiserver”、“kube-controller-manager”、“kube-scheduler”、“etcd” 之一。
+“patchtype” 可以是 “strategic”、“merge” 或 “json”，它们匹配 kubectl 支持的补丁格式。
+默认的 “patchtype” 是 “strategic”。“extension” 必须是 “json” 或 “yaml”。
+“suffix” 是一个可选字符串，可用于基于字母数字顺序确定首先应用哪些补丁。
+</p>
 </td>
 </tr>
 
@@ -189,7 +228,9 @@ Specify the node name.
 <!--
 Specify the token used to temporarily authenticate with the Kubernetes Control Plane while joining the node.
 -->
+<p>
 指定在加入节点时用于临时通过 Kubernetes 控制平面进行身份验证的令牌。
+</p>
 </td>
 </tr>
 
@@ -201,17 +242,19 @@ Specify the token used to temporarily authenticate with the Kubernetes Control P
 <!--
 Use this token for both discovery-token and tls-bootstrap-token when those values are not provided.
 -->
+<p>
 如果未提供这些值，则将它们用于 discovery-token 令牌和 tls-bootstrap 令牌。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
 
+
 <!--
 ### Options inherited from parent commands
 -->
-
 ### 从父命令继承的选项
 
    <table style="width: 100%; table-layout: fixed;">
@@ -229,10 +272,11 @@ Use this token for both discovery-token and tls-bootstrap-token when those value
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 指向 '真实' 宿主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_certs.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_certs.md
similarity index 83%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_certs.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_certs.md
index fb823d616c..9ff8a9cbf4 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_certs.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_certs.md
@@ -1,3 +1,19 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+<!--
+Generate the certificates for the new control plane components
+-->
+为新的控制平面组件生成证书
 
 <!--
 ### Synopsis
@@ -8,7 +24,6 @@
 <!--
 Generate the certificates for the new control plane components
 -->
-
 为新的控制平面组件生成证书
 
 ```
@@ -18,7 +33,6 @@ kubeadm join phase control-plane-prepare certs [api-server-endpoint] [flags]
 <!--
 ### Options
 -->
-
 ### 选项
 
    <table style="width: 100%; table-layout: fixed;">
@@ -36,7 +50,9 @@ kubeadm join phase control-plane-prepare certs [api-server-endpoint] [flags]
 <!--
 If the node should host a new control plane instance, the IP address the API Server will advertise it's listening on. If not set the default network interface will be used.
 -->
+<p>
 如果该节点托管一个新的控制平面实例，则 API 服务器将公布其正在侦听的 IP 地址。如果未设置，则使用默认网络接口。
+</p>
 </td>
 </tr>
 
@@ -48,7 +64,9 @@ If the node should host a new control plane instance, the IP address the API Ser
 <!--
 Path to kubeadm config file.
 -->
+<p>
 kubeadm 配置文件的路径。
+</p>
 </td>
 </tr>
 
@@ -60,7 +78,9 @@ kubeadm 配置文件的路径。
 <!--
 Create a new control plane instance on this node
 -->
+<p>
 在此节点上创建一个新的控制平面实例
+</p>
 </td>
 </tr>
 
@@ -72,7 +92,9 @@ Create a new control plane instance on this node
 <!--
 For file-based discovery, a file or URL from which to load cluster information.
 -->
+<p>
 对于基于文件的发现，给出用于加载集群信息的文件或者 URL。
+</p>
 </td>
 </tr>
 
@@ -84,19 +106,23 @@ For file-based discovery, a file or URL from which to load cluster information.
 <!--
 For token-based discovery, the token used to validate cluster information fetched from the API server.
 -->
+<p>
 对于基于令牌的发现，该令牌用于验证从 API 服务器获取的集群信息。
+</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--discovery-token-ca-cert-hash stringSlice</td>
+<td colspan="2">--discovery-token-ca-cert-hash strings</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
 For token-based discovery, validate that the root CA public key matches this hash (format: "&lt;type&gt;:&lt;value&gt;").
 -->
+<p>
 对于基于令牌的发现，请验证根 CA 公钥是否匹配此哈希值（格式："&lt;type&gt;:&lt;value&gt;"）。
+</p>
 </td>
 </tr>
 
@@ -108,7 +134,9 @@ For token-based discovery, validate that the root CA public key matches this has
 <!--
 For token-based discovery, allow joining without --discovery-token-ca-cert-hash pinning.
 -->
+<p>
 对于基于令牌的发现，允许在未关联 --discovery-token-ca-cert-hash 参数的情况下添加节点。
+</p>
 </td>
 </tr>
 
@@ -120,7 +148,9 @@ For token-based discovery, allow joining without --discovery-token-ca-cert-hash
 <!--
 help for certs
 -->
+<p>
 certs 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -132,7 +162,9 @@ certs 操作的帮助命令
 <!--
 Specify the node name.
 -->
+<p>
 指定节点名称。
+</p>
 </td>
 </tr>
 
@@ -144,7 +176,9 @@ Specify the node name.
 <!--
 Specify the token used to temporarily authenticate with the Kubernetes Control Plane while joining the node.
 -->
+<p>
 指定在加入节点时用于临时通过 Kubernetes 控制平面进行身份验证的令牌。
+</p>
 </td>
 </tr>
 
@@ -156,7 +190,9 @@ Specify the token used to temporarily authenticate with the Kubernetes Control P
 <!--
 Use this token for both discovery-token and tls-bootstrap-token when those values are not provided.
 -->
+<p>
 如果未提供这些值，则将它们用于 discovery-token 令牌和 tls-bootstrap 令牌。
+</p>
 </td>
 </tr>
 
@@ -166,7 +202,6 @@ Use this token for both discovery-token and tls-bootstrap-token when those value
 <!--
 ### Options inherited from parent commands
 -->
-
 ### 从父命令继承的选项
 
    <table style="width: 100%; table-layout: fixed;">
@@ -184,10 +219,11 @@ Use this token for both discovery-token and tls-bootstrap-token when those value
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 指向 '真实' 宿主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_control-plane.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_control-plane.md
new file mode 100644
index 0000000000..98528e9cfc
--- /dev/null
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_control-plane.md
@@ -0,0 +1,157 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Generate the manifests for the new control plane components 
+-->
+为新的控制平面组件生成清单
+
+<!--
+### Synopsis
+-->
+
+### 概要
+
+<!--
+Generate the manifests for the new control plane components
+-->
+
+为新的控制平面组件生成清单（manifest）
+
+```
+kubeadm join phase control-plane-prepare control-plane [flags]
+```
+
+<!--
+### Options
+-->
+
+### 选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--apiserver-advertise-address string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>If the node should host a new control plane instance, the IP address the API Server will advertise it's listening on. If not set the default network interface will be used.</p>
+-->
+<p>对于将要托管新的控制平面实例的节点，指定 API 服务器将公布的其正在侦听的 IP 地址。如果未设置，则使用默认网络接口。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">
+<!--
+--apiserver-bind-port int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 6443
+-->
+--apiserver-bind-port int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值：6443
+</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>If the node should host a new control plane instance, the port for the API Server to bind to.</p>
+-->
+<p>针对将要托管新的控制平面实例的节点，设置 API 服务器要绑定的端口。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--config string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Path to kubeadm config file.</p>
+-->
+<p>kubeadm 配置文件的路径。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--control-plane</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Create a new control plane instance on this node</p>
+-->
+<p>在此节点上创建一个新的控制平面实例</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>help for control-plane</p>
+-->
+<p>control-plane 操作的帮助命令</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--patches string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--  
+<p>Path to a directory that contains files named "target[suffix][+patchtype].extension". For example, "kube-apiserver0+merge.yaml" or just "etcd.json". "patchtype" can be one of "strategic", "merge" or "json" and they match the patch formats supported by kubectl. The default "patchtype" is "strategic". "extension" must be either "json" or "yaml". "suffix" is an optional string that can be used to determine which patches are applied first alpha-numerically.</p>
+-->
+<p>包含名为 "target[suffix][+patchtype].extension" 的文件的目录的路径。
+例如，"kube-apiserver0+merge.yaml" 或仅仅是 "etcd.json"。
+"patchtype" 可以是 "strategic"、"merge" 或 "json" 之一，并且它们与 kubectl 支持的补丁格式匹配。
+默认的 "patchtype" 为 "strategic"。 "extension" 必须为 "json" 或 "yaml"。 
+"suffix" 是一个可选字符串，可用于确定首先按字母顺序应用哪些补丁。</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
+<!--
+### Options inherited from parent commands
+-->
+
+### 从父命令中继承的选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
+-->
+<p>[实验] 指向 '真实' 宿主机根文件系统的路径。</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
diff --git a/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_download-certs.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_download-certs.md
new file mode 100644
index 0000000000..a0d501c29e
--- /dev/null
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_download-certs.md
@@ -0,0 +1,196 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+[EXPERIMENTAL] Download certificates shared among control-plane nodes from the kubeadm-certs Secret 
+-->
+[实验]从 kubeadm-certs Secret 下载控制平面节点之间共享的证书
+
+<!--
+### Synopsis
+-->
+
+### 概要
+
+<!--
+[EXPERIMENTAL] Download certificates shared among control-plane nodes from the kubeadm-certs Secret
+-->
+
+[实验]从 kubeadm-certs Secret 下载控制平面节点之间共享的证书
+
+```
+kubeadm join phase control-plane-prepare download-certs [api-server-endpoint] [flags]
+```
+
+<!--
+### Options
+-->
+
+### 选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--certificate-key string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Use this key to decrypt the certificate secrets uploaded by init.</p>
+-->
+<p>使用此密钥可以解密由 init 上传的证书 secret。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--config string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Path to kubeadm config file.</p>
+-->
+<p>kubeadm 配置文件的路径。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--control-plane</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Create a new control plane instance on this node</p>
+-->
+<p>在此节点上创建一个新的控制平面实例</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--discovery-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>For file-based discovery, a file or URL from which to load cluster information.</p>
+-->
+<p>对于基于文件的发现，给出用于加载集群信息的文件或者 URL。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--discovery-token string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>For token-based discovery, the token used to validate cluster information fetched from the API server.</p>
+-->
+<p>对于基于令牌的发现，该令牌用于验证从 API 服务器获取的集群信息。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--discovery-token-ca-cert-hash stringSlice</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>For token-based discovery, validate that the root CA public key matches this hash (format: "&lt;type&gt;:&lt;value&gt;").</p>
+-->
+<p>对于基于令牌的发现，请验证根 CA 公钥是否匹配此哈希值（格式："&lt;type&gt;:&lt;value&gt;"）。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--discovery-token-unsafe-skip-ca-verification</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>For token-based discovery, allow joining without --discovery-token-ca-cert-hash pinning.</p>
+-->
+<p>对于基于令牌的发现，允许在未关联 --discovery-token-ca-cert-hash 参数的情况下添加节点。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>help for download-certs</p>
+-->
+<p>download-certs 操作的帮助命令</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--tls-bootstrap-token string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Specify the token used to temporarily authenticate with the Kubernetes Control Plane while joining the node.</p>
+-->
+<p>指定在加入节点时用于临时通过 Kubernetes 控制平面进行身份验证的令牌。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--token string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Use this token for both discovery-token and tls-bootstrap-token when those values are not provided.</p>
+-->
+<p>如果未提供这些值，则将它们用于 discovery-token 令牌和 tls-bootstrap 令牌。</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
+<!--
+### Options inherited from parent commands
+-->
+
+### 从父命令中继承的选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
+-->
+<p>[实验] 指向 '真实' 宿主机根文件系统的路径。</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
diff --git a/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_kubeconfig.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_kubeconfig.md
new file mode 100644
index 0000000000..449f477df5
--- /dev/null
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_kubeconfig.md
@@ -0,0 +1,195 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Generate the kubeconfig for the new control plane components 
+-->
+为新的控制平面组件生成 kubeconfig
+
+<!--
+### Synopsis
+-->
+### 概要
+
+<!--
+Generate the kubeconfig for the new control plane components
+-->
+
+为新的控制平面组件生成 kubeconfig
+
+```
+kubeadm join phase control-plane-prepare kubeconfig [api-server-endpoint] [flags]
+```
+
+<!--
+### Options
+-->
+
+### 选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--certificate-key string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Use this key to decrypt the certificate secrets uploaded by init.</p>
+-->
+<p>使用此密钥可以解密由 init 上传的证书 secret。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--config string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Path to kubeadm config file.</p>
+-->
+<p>kubeadm 配置文件的路径。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--control-plane</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Create a new control plane instance on this node</p>
+-->
+<p>在此节点上创建一个新的控制平面实例</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--discovery-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>For file-based discovery, a file or URL from which to load cluster information.</p>
+-->
+<p>对于基于文件的发现，给出用于加载集群信息的文件或者 URL。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--discovery-token string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>For token-based discovery, the token used to validate cluster information fetched from the API server.</p>
+-->
+<p>对于基于令牌的发现，该令牌用于验证从 API 服务器获取的集群信息。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--discovery-token-ca-cert-hash stringSlice</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>For token-based discovery, validate that the root CA public key matches this hash (format: "&lt;type&gt;:&lt;value&gt;").</p>
+-->
+<p>对于基于令牌的发现，请验证根 CA 公钥是否匹配此哈希值（格式："&lt;type&gt;:&lt;value&gt;"）。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--discovery-token-unsafe-skip-ca-verification</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>For token-based discovery, allow joining without --discovery-token-ca-cert-hash pinning.</p>
+-->
+<p>对于基于令牌的发现，允许在未关联 --discovery-token-ca-cert-hash 参数的情况下添加节点。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>help for kubeconfig</p>
+-->
+<p>kubeconfig 操作的帮助命令</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--tls-bootstrap-token string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Specify the token used to temporarily authenticate with the Kubernetes Control Plane while joining the node.</p>
+-->
+<p>指定在加入节点时用于临时通过 Kubernetes 控制平面进行身份验证的令牌。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--token string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Use this token for both discovery-token and tls-bootstrap-token when those values are not provided.</p>
+-->
+<p>如果未提供这些值，则将它们用于 discovery-token 令牌和 tls-bootstrap 令牌。</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
+<!--
+### Options inherited from parent commands
+-->
+
+### 从父命令中继承的选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
+-->
+<p>[实验] 指向 '真实' 宿主机根文件系统的路径。</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_kubelet-start.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_kubelet-start.md
similarity index 84%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_kubelet-start.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_kubelet-start.md
index ca95429a96..19379e86ce 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_kubelet-start.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_kubelet-start.md
@@ -1,3 +1,19 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+<!--
+Write kubelet settings, certificates and (re)start the kubelet
+-->
+配置 Kubelet、证书并（重新）启动 Kubelet
 
 <!--
 ### Synopsis
@@ -48,7 +64,9 @@ kubeadm 配置文件的路径。
 <!--
 Path to the CRI socket to connect. If empty kubeadm will try to auto-detect this value; use this option only if you have more than one CRI installed or if you have non-standard CRI socket.
 -->
+<p>
 提供给 CRI 套接字建立连接的路径。如果为空，则 kubeadm 将尝试自动检测该值；仅当安装了多个 CRI 或具有非标准 CRI 套接字时，才使用此选项。
+</p>
 </td>
 </tr>
 
@@ -57,11 +75,12 @@ Path to the CRI socket to connect. If empty kubeadm will try to auto-detect this
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-For file-based discovery, a file or URL from which to load cluster information.
 <!--
 For file-based discovery, a file or URL from which to load cluster information.
 -->
+<p>
 对于基于文件的发现，给出用于加载集群信息的文件或者 URL。
+</p>
 </td>
 </tr>
 
@@ -73,7 +92,9 @@ For file-based discovery, a file or URL from which to load cluster information.
 <!--
 For token-based discovery, the token used to validate cluster information fetched from the API server.
 -->
+<p>
 对于基于令牌的发现，该令牌用于验证从 API 服务器获取的集群信息。
+</p>
 </td>
 </tr>
 
@@ -85,7 +106,9 @@ For token-based discovery, the token used to validate cluster information fetche
 <!--
 For token-based discovery, validate that the root CA public key matches this hash (format: "&lt;type&gt;:&lt;value&gt;").
 -->
+<p>
 对于基于令牌的发现，验证根 CA 公钥是否匹配此哈希值（格式："&lt;type&gt;:&lt;value&gt;"）。
+</p>
 </td>
 </tr>
 
@@ -97,7 +120,9 @@ For token-based discovery, validate that the root CA public key matches this has
 <!--
 For token-based discovery, allow joining without --discovery-token-ca-cert-hash pinning.
 -->
+<p>
 对于基于令牌的发现，允许在未关联 --discovery-token-ca-cert-hash 参数的情况下添加节点。
+</p>
 </td>
 </tr>
 
@@ -109,7 +134,9 @@ For token-based discovery, allow joining without --discovery-token-ca-cert-hash
 <!--
 help for kubelet-start
 -->
+<p>
 kubelet-start 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -121,7 +148,9 @@ kubelet-start 操作的帮助命令
 <!--
 Specify the node name.
 -->
+<p>
 指定节点名称。
+</p>
 </td>
 </tr>
 
@@ -133,7 +162,9 @@ Specify the node name.
 <!--
 Specify the token used to temporarily authenticate with the Kubernetes Control Plane while joining the node.
 -->
+<p>
 指定在加入节点时用于临时通过 Kubernetes 控制平面进行身份验证的令牌。
+</p>
 </td>
 </tr>
 
@@ -145,7 +176,9 @@ Specify the token used to temporarily authenticate with the Kubernetes Control P
 <!--
 Use this token for both discovery-token and tls-bootstrap-token when those values are not provided.
 -->
+<p>
 如果未提供这些值，则将它们用于 discovery-token 令牌和 tls-bootstrap 令牌。
+</p>
 </td>
 </tr>
 
@@ -173,10 +206,11 @@ Use this token for both discovery-token and tls-bootstrap-token when those value
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 指向 '真实' 宿主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_preflight.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_preflight.md
new file mode 100644
index 0000000000..77951cba33
--- /dev/null
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_preflight.md
@@ -0,0 +1,273 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Run join pre-flight checks 
+-->
+运行 join 命令前检查
+
+<!--
+### Synopsis
+-->
+
+### 概要
+
+<!--
+Run pre-flight checks for kubeadm join.
+-->
+
+运行 kubeadm join 命令添加节点前检查。
+
+```
+kubeadm join phase preflight [api-server-endpoint] [flags]
+```
+
+<!--
+### Examples
+# Run join pre-flight checks using a config file.
+-->
+
+### 示例
+
+```
+# 使用配置文件运行 kubeadm join 命令添加节点前检查。
+kubeadm join phase preflight --config kubeadm-config.yaml
+```
+
+<!--
+### Options
+-->
+
+### 选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--apiserver-advertise-address string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>If the node should host a new control plane instance, the IP address the API Server will advertise it's listening on. If not set the default network interface will be used.</p>
+-->
+<p>对于将要托管新的控制平面实例的节点，指定 API 服务器将公布的其正在侦听的 IP 地址。如果未设置，则使用默认网络接口。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">
+<!--
+--apiserver-bind-port int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 6443
+-->
+--apiserver-bind-port int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值：6443
+</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>If the node should host a new control plane instance, the port for the API Server to bind to.</p>
+-->
+<p>针对将要托管新的控制平面实例的节点，设置 API 服务器要绑定的端口。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--certificate-key string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Use this key to decrypt the certificate secrets uploaded by init.</p>
+-->
+<p>使用此密钥可以解密由 `init` 操作上传的证书 secret。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--config string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Path to kubeadm config file.</p>
+-->
+<p>kubeadm 配置文件的路径。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--control-plane</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Create a new control plane instance on this node</p>
+-->
+<p>在此节点上创建一个新的控制平面实例</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--cri-socket string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Path to the CRI socket to connect. If empty kubeadm will try to auto-detect this value; use this option only if you have more than one CRI installed or if you have non-standard CRI socket.</p>
+-->
+<p>提供给 CRI 套接字建立连接的路径。如果为空，则 kubeadm 将尝试自动检测该值；仅当安装了多个 CRI 或具有非标准 CRI 套接字时，才使用此选项。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--discovery-file string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>For file-based discovery, a file or URL from which to load cluster information.</p>
+-->
+<p>对于基于文件的发现，给出用于加载集群信息的文件或者 URL。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--discovery-token string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>For token-based discovery, the token used to validate cluster information fetched from the API server.</p>
+-->
+<p>对于基于令牌的发现，该令牌用于验证从 API 服务器获取的集群信息。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--discovery-token-ca-cert-hash strings</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>For token-based discovery, validate that the root CA public key matches this hash (format: "&lt;type&gt;:&lt;value&gt;").</p>
+-->
+<p>对于基于令牌的发现，验证根 CA 公钥是否匹配此哈希值（格式："&lt;type&gt;:&lt;value&gt;"）。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--discovery-token-unsafe-skip-ca-verification</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>For token-based discovery, allow joining without --discovery-token-ca-cert-hash pinning.</p>
+-->
+<p>对于基于令牌的发现，允许在未关联 --discovery-token-ca-cert-hash 参数的情况下添加节点。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>help for preflight</p>
+-->
+<p>preflight 操作的帮助命令</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--ignore-preflight-errors stringSlice</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>A list of checks whose errors will be shown as warnings. Example: 'IsPrivilegedUser,Swap'. Value 'all' ignores errors from all checks.</p>
+-->
+<p>错误将显示为警告的检查列表；例如：'IsPrivilegedUser,Swap'。取值为 'all' 时将忽略检查中的所有错误。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--node-name string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Specify the node name.</p>
+-->
+<p>指定节点名称。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--tls-bootstrap-token string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Specify the token used to temporarily authenticate with the Kubernetes Control Plane while joining the node.</p>
+-->
+<p>指定在加入节点时用于临时通过 Kubernetes 控制平面进行身份验证的令牌。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--token string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Use this token for both discovery-token and tls-bootstrap-token when those values are not provided.</p>
+-->
+<p>如果未提供这些值，则将它们用于 discovery-token 令牌和 tls-bootstrap 令牌。</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
+<!--
+### Options inherited from parent commands
+-->
+
+### 从父命令继承的选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
+-->
+<p>[实验] 指向 '真实' 宿主机根文件系统的路径。</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_alpha_kubeconfig.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_kubeconfig.md
similarity index 50%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_alpha_kubeconfig.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_kubeconfig.md
index b5168e2cb1..323fddd39e 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_alpha_kubeconfig.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_kubeconfig.md
@@ -1,27 +1,32 @@
-
 <!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+<!--
+Kubeconfig file utilities
+
 ### Synopsis
--->
 
-### 概要
-
-<!--
 Kubeconfig file utilities.
--->
 
-kubeconfig 文件应用程序。
-
-<!-- Alpha Disclaimer: this command is currently alpha.  -->
-
-Alpha 免责声明：此命令当前为 alpha 功能。
-
-<!--
 ### Options
 -->
 
+Kubeconfig 文件工具。
+
+### 概要
+
+kubeconfig 文件工具。
+
 ### 选项
 
-   <table style="width: 100%; table-layout: fixed;">
+<table style="width: 100%; table-layout: fixed;">
 <colgroup>
 <col span="1" style="width: 10px;" />
 <col span="1" />
@@ -41,11 +46,12 @@ kubeconfig 操作的帮助命令
 </tbody>
 </table>
 
-<!-- ### Options inherited from parent commands -->
-
+<!--
+### Options inherited from parent commands
+-->
 ### 从父命令继承的选项
 
-   <table style="width: 100%; table-layout: fixed;">
+<table style="width: 100%; table-layout: fixed;">
 <colgroup>
 <col span="1" style="width: 10px;" />
 <col span="1" />
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_alpha_kubeconfig_user.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_kubeconfig_user.md
similarity index 64%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_alpha_kubeconfig_user.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_kubeconfig_user.md
index daa5b679e2..e178c5e50a 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_alpha_kubeconfig_user.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_kubeconfig_user.md
@@ -1,25 +1,33 @@
-
 <!--
-### Synopsis
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
 -->
-### 概要
 
 <!--
+Output a kubeconfig file for an additional user
+
+### Synopsis
+
 Output a kubeconfig file for an additional user.
 -->
-为其他用户输出 kubeconfig 文件。
+为其他用户输出一个 kubeconfig 文件。
 
-<!--
-Alpha Disclaimer: this command is currently alpha.
--->
-Alpha 免责声明：此命令当前为 Alpha 功能。
+### 概要
+
+为其他用户输出一个 kubeconfig 文件。
 
 ```
 kubeadm alpha kubeconfig user [flags]
 ```
 
 <!--
-### Examples # Output a kubeconfig file for an additional user named foo
+### Examples
 
 ```
   # Output a kubeconfig file for an additional user named foo using a kubeadm config file bar
@@ -30,7 +38,7 @@ kubeadm alpha kubeconfig user [flags]
 
 ```
 # 使用名为 bar 的 kubeadm 配置文件为名为 foo 的另一用户输出 kubeconfig 文件
-kubeadm alpha kubeconfig user --client-name=foo --config=bar
+kubeadm kubeconfig user --client-name=foo --config=bar
 ```
 
 <!--
@@ -82,7 +90,7 @@ user 操作的帮助命令
 </tr>
 
 <tr>
-<td colspan="2">--org stringSlice</td>
+<td colspan="2">--org strings</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
@@ -102,10 +110,21 @@ The orgnizations of the client certificate. It will be used as the O if client c
 <!--
 The token that should be used as the authentication mechanism for this kubeconfig, instead of client certificates
 -->
-应该用此 kubeconfig 的身份验证机制的令牌，而不是客户端证书
+应该用此令牌做为 kubeconfig 的身份验证机制，而不是客户端证书
 </td>
 </tr>
 
+<tr>
+<td colspan="2">--validity-period duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 8760h0m0s</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><!--The validity period of the client certificate. It is an offset from the current time.-->
+<p>
+客户证书的合法期限。所设置值为相对当前时间的偏移。
+</p></td>
+</tr>
+
+
 </tbody>
 </table>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset.md
similarity index 75%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset.md
index 2144a512db..1864e5554c 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset.md
@@ -1,3 +1,19 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Performs a best effort revert of changes made to this host by 'kubeadm init' or 'kubeadm join'
+-->
+尽最大努力还原通过 'kubeadm init' 或者 'kubeadm join' 操作对主机所作的更改
+
 <!--
 ### Synopsis
 -->
@@ -7,8 +23,7 @@
 <!--
 Performs a best effort revert of changes made to this host by 'kubeadm init' or 'kubeadm join'
 -->
-
-尽最大努力还原通过 'kubeadm init' 或者 'kubeadm join' 操作对主机所做的更改
+尽最大努力还原通过 'kubeadm init' 或者 'kubeadm join' 操作对主机所作的更改
 
 <!--
 The "reset" command executes the following phases:
@@ -53,7 +68,9 @@ kubeadm reset [flags]
 <!--
 The path to the directory where the certificates are stored. If specified, clean this directory.
 -->
+<p>
 存储证书的目录路径。如果已指定，则需要清空此目录。
+</p>
 </td>
 </tr>
 
@@ -61,11 +78,31 @@ The path to the directory where the certificates are stored. If specified, clean
 <td colspan="2">--cri-socket string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
 <!--
 Path to the CRI socket to connect. If empty kubeadm will try to auto-detect this value; use this option only if you have more than one CRI installed or if you have non-standard CRI socket.
 -->
 要连接的 CRI 套接字的路径。如果为空，则 kubeadm 将尝试自动检测此值；仅当安装了多个CRI 或具有非标准 CRI 插槽时，才使用此选项。
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--dry-run</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<p>
+<!--
+Don't apply any changes; just output what would be done.
+-->
+不要应用任何更改；只需输出将要做什么。
+</p>
+</td>
+
+
+
+
 </td>
 </tr>
 
@@ -74,10 +111,12 @@ Path to the CRI socket to connect. If empty kubeadm will try to auto-detect this
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
+<p>
 <!--
 Reset the node without prompting for confirmation.
 -->
 在不提示确认的情况下重置节点。
+</p>
 </td>
 </tr>
 
@@ -86,49 +125,59 @@ Reset the node without prompting for confirmation.
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
+<p>
 <!--
 help for reset
 -->
 reset 操作的帮助命令
+</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--ignore-preflight-errors stringSlice</td>
+<td colspan="2">--ignore-preflight-errors strings</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
+<p>
 <!--
 A list of checks whose errors will be shown as warnings. Example: 'IsPrivilegedUser,Swap'. Value 'all' ignores errors from all checks.
 -->
 错误将显示为警告的检查列表；例如：'IsPrivilegedUser,Swap'。取值为 'all' 时将忽略检查中的所有错误。
+</p>
 </td>
 </tr>
 
 <tr>
 <td colspan="2">
+<p>
 <!--
 --kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/kubernetes/admin.conf"
 -->
 --kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值："/etc/kubernetes/admin.conf"
+</p>
 </td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
+<p>
 <!--
 The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
 -->
 与集群通信时使用的 kubeconfig 文件。如果未设置该标志，则可以在一组标准位置中搜索现有的 kubeconfig 文件。
+</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--skip-phases stringSlice</td>
+<td colspan="2">--skip-phases strings</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
+<p>
 <!-- List of phases to be skipped -->
 要跳过的阶段列表
+</p>
 </td>
 </tr>
 
@@ -155,13 +204,14 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
+<p>
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
 [实验] 指向 '真实' 宿主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase.md
similarity index 59%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase.md
index 9b02623ecc..2f4e06c7e2 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Use this command to invoke single phase of the reset workflow
+-->
+使用此命令来调用 `reset` 工作流程的某个阶段
 
 <!--
 ### Synopsis
@@ -32,7 +47,9 @@ Use this command to invoke single phase of the reset workflow
 <!--
 help for phase
 -->
+<p>
 phase 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -60,7 +77,9 @@ phase 操作的帮助命令
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 指向 '真实' 宿主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_cleanup-node.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_cleanup-node.md
similarity index 74%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_cleanup-node.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_cleanup-node.md
index 99584e4875..dc2993b580 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_cleanup-node.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_cleanup-node.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Run cleanup node.
+-->
+执行 cleanup node（清理节点）操作。
 
 <!--
 ### Synopsis
@@ -8,7 +23,6 @@
 <!--
 Run cleanup node.
 -->
-
 执行 cleanup node（清理节点）操作。
 
 ```
@@ -18,7 +32,6 @@ kubeadm reset phase cleanup-node [flags]
 <!--
 ### Options
 -->
-
 ### 选项
 
    <table style="width: 100%; table-layout: fixed;">
@@ -41,7 +54,9 @@ kubeadm reset phase cleanup-node [flags]
 <!--
 The path to the directory where the certificates are stored. If specified, clean this directory.
 -->
+<p>
 存储证书的目录路径。如果已指定，则需要清空此目录。
+</p>
 </td>
 </tr>
 
@@ -53,7 +68,9 @@ The path to the directory where the certificates are stored. If specified, clean
 <!--
 Path to the CRI socket to connect. If empty kubeadm will try to auto-detect this value; use this option only if you have more than one CRI installed or if you have non-standard CRI socket.
 -->
+<p>
 要连接的 CRI 套接字的路径。如果为空，则 kubeadm 将尝试自动检测此值；仅当安装了多个CRI 或具有非标准 CRI 插槽时，才使用此选项。
+</p>
 </td>
 </tr>
 
@@ -65,7 +82,9 @@ Path to the CRI socket to connect. If empty kubeadm will try to auto-detect this
 <!--
 help for cleanup-node
 -->
+<p>
 cleanup-node 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -75,7 +94,6 @@ cleanup-node 操作的帮助命令
 <!--
 ### Options inherited from parent commands
 -->
-
 ### 从父命令继承的选项
 
    <table style="width: 100%; table-layout: fixed;">
@@ -93,10 +111,11 @@ cleanup-node 操作的帮助命令
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 指向 '真实' 宿主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_preflight.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_preflight.md
new file mode 100644
index 0000000000..acce31aaca
--- /dev/null
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_preflight.md
@@ -0,0 +1,112 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Run reset pre-flight checks 
+-->
+运行重置启动前检查
+
+<!--
+### Synopsis
+-->
+
+### 概要
+
+<!--
+Run pre-flight checks for kubeadm reset.
+-->
+
+kubeadm reset（重置）前运行启动前检查。
+
+```
+kubeadm reset phase preflight [flags]
+```
+
+<!--
+### Options
+-->
+
+### 选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">-f, --force</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>Reset the node without prompting for confirmation.</p>
+-->
+<p>在不提示确认的情况下重置节点。</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>help for preflight</p>
+-->
+<p>preflight 操作的帮助命令</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--ignore-preflight-errors strings</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>A list of checks whose errors will be shown as warnings. Example: 'IsPrivilegedUser,Swap'. Value 'all' ignores errors from all checks.</p>
+-->
+<p>错误将显示为警告的检查列表；例如：'IsPrivilegedUser,Swap'。取值为 'all' 时将忽略检查中的所有错误。</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
+<!--
+### Options inherited from parent commands
+-->
+
+### 从父命令继承的选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
+-->
+<p>[实验] 指向 '真实' 宿主机根文件系统的路径。</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
diff --git a/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_remove-etcd-member.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_remove-etcd-member.md
new file mode 100644
index 0000000000..8b69953efd
--- /dev/null
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_remove-etcd-member.md
@@ -0,0 +1,98 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Remove a local etcd member.
+-->
+删除本地 etcd 成员
+
+<!--
+### Synopsis
+-->
+
+### 概要
+
+<!--
+Remove a local etcd member for a control plane node.
+-->
+删除控制平面节点的本地 etcd 成员
+
+```
+kubeadm reset phase remove-etcd-member [flags]
+```
+
+<!--
+### Options
+-->
+
+### 选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<p>
+<!-- help for remove-etcd-member -->
+remove-etcd-member 的帮助信息
+</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值："/etc/kubernetes/admin.conf"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<p>
+<!-- The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file. -->
+与集群通信时使用的 Kubeconfig 文件。如果未设置该标志，则可以在默认位置中查找现有的 Kubeconfig 文件。
+</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
+
+<!--
+### Options inherited from parent commands
+-->
+
+### 从父命令继承的选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<p>
+<!-- [EXPERIMENTAL] The path to the 'real' host root filesystem.-->
+[实验] 到'真实'主机根文件系统的路径。
+</p>
+</td>
+</tr>
+
+</tbody>
+</table>
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_token.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_token.md
similarity index 85%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_token.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_token.md
index 7c2449a36d..8f74110366 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_token.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_token.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Manage bootstrap tokens
+-->
+管理引导令牌
 
 <!--
 ### Synopsis
@@ -47,7 +62,7 @@ You can read more about bootstrap tokens here:
   /docs/admin/bootstrap-tokens/
 -->
 
-您可以在此处阅读有关引导令牌（bootstrap token）的更多信息：
+你可以在此处阅读有关引导令牌（bootstrap token）的更多信息：
   /docs/admin/bootstrap-tokens/
 
 ```
@@ -78,7 +93,9 @@ kubeadm token [flags]
 <!--
 Whether to enable dry-run mode or not
 -->
+<p>
 是否启用 `dry-run` 模式
+</p>
 </td>
 </tr>
 
@@ -93,7 +110,9 @@ Whether to enable dry-run mode or not
 <!--
 help for token
 -->
+<p>
 token 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -113,7 +132,9 @@ token 操作的帮助命令
 <!--
 The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
 -->
+<p>
 与集群通信时使用的 kubeconfig 文件。如果未设置，则搜索一组标准位置以查找现有 kubeconfig 文件。
+</p>
 </td>
 </tr>
 
@@ -140,10 +161,11 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 指向 '真实' 宿主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_create.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_create.md
similarity index 77%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_create.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_create.md
index 3142fa5d49..472cab153c 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_create.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_create.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Create bootstrap tokens on the server
+-->
+在服务器上创建引导令牌
 
 <!--
 ### Synopsis
@@ -15,7 +30,7 @@ If no [token] is given, kubeadm will generate a random token instead.
 -->
 
 这个命令将为你创建一个引导令牌。
-您可以设置此令牌的用途，"有效时间" 和可选的人性化的描述。
+你可以设置此令牌的用途，"有效时间" 和可选的人性化的描述。
 
 这里的 [token] 是指将要生成的实际令牌。
 该令牌应该是一个通过安全机制生成的随机令牌，形式为 "[a-z0-9]{6}.[a-z0-9]{16}"。
@@ -38,6 +53,19 @@ kubeadm token create [token]
 </colgroup>
 <tbody>
 
+<tr>
+<td colspan="2">--certificate-key string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
+<!--
+When used together with '--print-join-command', print the full 'kubeadm join' flag needed to join the cluster as a control-plane. To create a new certificate key you must use 'kubeadm init phase upload-certs --upload-certs'.
+-->
+当与 “--print-join-command” 一起使用时，打印作为控制平面加入集群时所需的所有 “kubeadm join” 标志。
+要创建新的证书密钥，你必须使用 “kubeadm init phase upload-certs --upload-certs”。
+</p></td>
+</tr>
+
 <tr>
 <td colspan="2">--config string</td>
 </tr>
@@ -46,7 +74,9 @@ kubeadm token create [token]
 <!--
 Path to a kubeadm configuration file.
 -->
+<p>
 kubeadm 配置文件的路径。
+</p>
 </td>
 </tr>
 
@@ -58,7 +88,9 @@ kubeadm 配置文件的路径。
 <!--
 A human friendly description of how this token is used.
 -->
+<p>
 针对令牌用途的人性化的描述。
+</p>
 </td>
 </tr>
 
@@ -67,7 +99,9 @@ A human friendly description of how this token is used.
 <!--
 --groups stringSlice&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: [system:bootstrappers:kubeadm:default-node-token]
 -->
+<p>
 --groups stringSlice&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值：[system:bootstrappers:kubeadm:default-node-token]
+</p>
 </td>
 </tr>
 <tr>
@@ -75,7 +109,9 @@ A human friendly description of how this token is used.
 <!--
 Extra groups that this token will authenticate as when used for authentication. Must match "\\Asystem:bootstrappers:[a-z0-9:-]{0,255}[a-z0-9]\\z"
 -->
+<p>
 此令牌用于身份验证时将进行身份验证的其他组。必须匹配  "\\Asystem:bootstrappers:[a-z0-9:-]{0,255}[a-z0-9]\\z"
+</p>
 </td>
 </tr>
 
@@ -87,7 +123,9 @@ Extra groups that this token will authenticate as when used for authentication.
 <!--
 help for create
 -->
+<p>
 create 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -99,7 +137,9 @@ create 操作的帮助命令
 <!--
 Instead of printing only the token, print the full 'kubeadm join' flag needed to join the cluster using the token.
 -->
+<p>
 不仅仅打印令牌，而是打印使用令牌加入集群所需的完整 'kubeadm join' 参数。
+</p>
 </td>
 </tr>
 
@@ -116,7 +156,9 @@ Instead of printing only the token, print the full 'kubeadm join' flag needed to
 <!--
 The duration before the token is automatically deleted (e.g. 1s, 2m, 3h). If set to '0', the token will never expire
 -->
+<p>
 令牌有效时间，超过该时间令牌被自动删除。(例如： 1s, 2m, 3h)。如果设置为 '0'，令牌将永远不过期。
+</p>
 </td>
 </tr>
 
@@ -133,7 +175,9 @@ The duration before the token is automatically deleted (e.g. 1s, 2m, 3h). If set
 <!--
 Describes the ways in which this token can be used. You can pass --usages multiple times or provide a comma separated list of options. Valid options: [signing,authentication]
 -->
+<p>
 描述可以使用此令牌的方式。你可以多次使用 `--usages` 或者提供一个以逗号分隔的选项列表。合法选项有: [signing,authentication]
+</p>
 </td>
 </tr>
 
@@ -143,7 +187,6 @@ Describes the ways in which this token can be used. You can pass --usages multip
 <!--
 ### Options inherited from parent commands
 -->
-
 ### 从父命令继承的选项
 
    <table style="width: 100%; table-layout: fixed;">
@@ -161,7 +204,9 @@ Describes the ways in which this token can be used. You can pass --usages multip
 <!--
 Whether to enable dry-run mode or not
 -->
+<p>
 是否启用 `dry-run` 运行模式
+</p>
 </td>
 </tr>
 
@@ -178,7 +223,9 @@ Whether to enable dry-run mode or not
 <!--
 The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
 -->
+<p>
 用于和集群通信的 KubeConfig 文件。如果它没有被设置，那么 kubeadm 将会搜索一个已经存在于标准路径的 KubeConfig 文件。
+</p>
 </td>
 </tr>
 
@@ -190,7 +237,9 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 指向 '真实' 宿主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_delete.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_delete.md
similarity index 73%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_delete.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_delete.md
index 97e7e6008d..5ffa750d5d 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_delete.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_delete.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Delete bootstrap tokens on the server
+-->
+删除服务器上的引导令牌
 
 <!--
 ### Synopsis
@@ -14,7 +29,7 @@ Token ID of the form "[a-z0-9]{6}" to delete.
 
 这个命令将为你删除指定的引导令牌列表。
 
-`[token-value]` 是要删除的 "[a-z0-9]{6}.[a-z0-9]{16}" 形式的完整令牌或者是 "[a-z0-9]{6}" 形式的的令牌 ID。
+`[token-value]` 是要删除的 "[a-z0-9]{6}.[a-z0-9]{16}" 形式的完整令牌或者是 "[a-z0-9]{6}" 形式的令牌 ID。
 
 ```
 kubeadm token delete [token-value] ...
@@ -41,7 +56,9 @@ kubeadm token delete [token-value] ...
 <!--
 help for delete
 -->
+<p>
 delete 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -69,7 +86,9 @@ delete 操作的帮助命令
 <!--
 Whether to enable dry-run mode or not
 -->
+<p>
 是否启用 `dry-run` 运行模式
+</p>
 </td>
 </tr>
 
@@ -86,7 +105,9 @@ Whether to enable dry-run mode or not
 <!--
 The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
 -->
+<p>
 用于和集群通信的 KubeConfig 文件。如果它没有被设置，那么 kubeadm 将会搜索一个已经存在于标准路径的 KubeConfig 文件。
+</p>
 </td>
 </tr>
 
@@ -98,10 +119,11 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 指向 '真实' 宿主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_generate.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_generate.md
similarity index 59%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_generate.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_generate.md
index c91bb69ae8..da02baf36f 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_generate.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_generate.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Generate and print a bootstrap token, but do not create it on the server 
+-->
+生成并打印一个引导令牌，但不要在服务器上创建它
 
 <!--
 ### Synopsis
@@ -44,9 +59,9 @@ kubeadm token generate [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for generate
+<p>help for generate</p>
 -->
-generate 操作的帮助命令
+<p>generate 操作的帮助命令</p>
 </td>
 </tr>
 
@@ -71,8 +86,11 @@ generate 操作的帮助命令
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- Whether to enable dry-run mode or not -->
-是否启用 `dry-run` 运行模式</td>
+<!-- 
+<p>Whether to enable dry-run mode or not</p> 
+-->
+<p>是否启用 `dry-run` 运行模式</p>
+</td>
 </tr>
 
 <tr>
@@ -86,9 +104,9 @@ generate 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
+<p>The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.</p>
 -->
-用于和集群通信的 KubeConfig 文件。如果它没有被设置，那么 kubeadm 将会搜索一个已经存在于标准路径的 KubeConfig 文件。
+<p>用于和集群通信的 KubeConfig 文件。如果它没有被设置，那么 kubeadm 将会搜索一个已经存在于标准路径的 KubeConfig 文件。</p>
 </td>
 </tr>
 
@@ -97,8 +115,10 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- [EXPERIMENTAL] The path to the 'real' host root filesystem.  -->
-[实验] 指向 '真实' 宿主机根文件系统的路径。
+<!-- 
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>  
+-->
+<p>[实验] 指向 '真实' 宿主机根文件系统的路径。</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_list.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_list.md
similarity index 73%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_list.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_list.md
index de796ebe3a..a300297317 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_list.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_token_list.md
@@ -1,3 +1,19 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+List bootstrap tokens on the server
+-->
+列出服务器上的引导令牌
+
 <!--
 ### Synopsis
 -->
@@ -8,7 +24,7 @@
 This command will list all bootstrap tokens for you.
 -->
 
-此命令将为您列出所有的引导令牌。
+此命令将为你列出所有的引导令牌。
 
 ```
 kubeadm token list [flags]
@@ -38,8 +54,10 @@ kubeadm token list [flags]
 <!-- 
 If true, ignore any errors in templates when a field or map key is missing in the template. Only applies to golang and jsonpath output formats.
 -->
+<p>
 如果设置为 true，则在模板中缺少字段或哈希表的键时忽略模板中的任何错误。
 仅适用于 golang 和 jsonpath 输出格式。
+</p>
 </td>
 </tr>
 
@@ -54,7 +72,9 @@ If true, ignore any errors in templates when a field or map key is missing in th
 <!--  
 Output format. One of: text|json|yaml|go-template|go-template-file|template|templatefile|jsonpath|jsonpath-as-json|jsonpath-file.
 -->
+<p>
 输出格式：text|json|yaml|go-template|go-template-file|template|templatefile|jsonpath|jsonpath-as-json|jsonpath-file 其中之一
+</p>
 </td>
 </tr>
 
@@ -64,7 +84,21 @@ Output format. One of: text|json|yaml|go-template|go-template-file|template|temp
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!-- help for list -->
+<p>
 list 操作的帮助命令
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--show-managed-fields</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<p>
+<!-- If true, keep the managedFields when printing objects in JSON or YAML format. -->
+如果为 true，则在以 JSON 或 YAML 格式打印对象时保留 managedFields。
+</p>
 </td>
 </tr>
 
@@ -90,8 +124,10 @@ list 操作的帮助命令
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
+<p>
 <!-- Whether to enable dry-run mode or not -->
 是否启用 `dry-run` 模式
+</p>
 </td>
 </tr>
 
@@ -108,7 +144,9 @@ list 操作的帮助命令
 <!--
 The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
 -->
+<p>
 用于和集群通信的 kubeconfig 文件。如果它没有被设置，那么 kubeadm 将会搜索一个已经存在于标准路径的 kubeconfig 文件。
+</p>
 </td>
 </tr>
 
@@ -118,7 +156,9 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!-- [EXPERIMENTAL] The path to the 'real' host root filesystem.  -->
+<p>
 [实验] 指向 '真实' 宿主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade.md
similarity index 73%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade.md
index d03885437f..b1a6499f94 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade.md
@@ -1,3 +1,8 @@
+<!-- 
+Upgrade your cluster smoothly to a newer version with this command 
+-->
+
+此命令能将集群平滑升级到新版本
 
 <!--
 ### Synopsis
@@ -34,9 +39,9 @@ kubeadm upgrade [flags]
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-help for upgrade
+<p>help for upgrade</p>
 -->
-upgrade 操作的帮助命令
+<p>upgrade 操作的帮助命令<p>
 </td>
 </tr>
 
@@ -62,9 +67,9 @@ upgrade 操作的帮助命令
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
+<p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p>
 -->
-[实验] 指向 '真实' 宿主机根文件系统的路径。
+<p>[实验] 指向 '真实' 宿主机根文件系统的路径。<p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_apply.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_apply.md
similarity index 70%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_apply.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_apply.md
index e31467b0c5..9c99b280ee 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_apply.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_apply.md
@@ -1,3 +1,7 @@
+<!--
+Upgrade your Kubernetes cluster to the specified version
+-->
+将 Kubernetes 集群升级到指定版本
 
 <!--
 ### Synopsis
@@ -36,7 +40,9 @@ kubeadm upgrade apply [version]
 <!--
 Show unstable versions of Kubernetes as an upgrade alternative and allow upgrading to an alpha/beta/release candidate versions of Kubernetes.
 -->
+<p>
 显示 Kubernetes 的不稳定版本作为升级替代方案，并允许升级到 Kubernetes 的 alpha/beta 或 RC 版本。
+</p>
 </td>
 </tr>
 
@@ -48,7 +54,9 @@ Show unstable versions of Kubernetes as an upgrade alternative and allow upgradi
 <!--
 Show release candidate versions of Kubernetes as an upgrade alternative and allow upgrading to a release candidate versions of Kubernetes.
 -->
+<p>
 显示 Kubernetes 的候选版本作为升级替代方案，并允许升级到 Kubernetes 的 RC 版本。
+</p>
 </td>
 </tr>
 
@@ -60,7 +68,9 @@ Show release candidate versions of Kubernetes as an upgrade alternative and allo
 <!--
 Perform the renewal of certificates used by component changed during upgrades.
 -->
+<p>
 执行升级期间更改的组件所使用的证书的更新。
+</p>
 </td>
 </tr>
 
@@ -72,7 +82,9 @@ Perform the renewal of certificates used by component changed during upgrades.
 <!--
 Path to a kubeadm configuration file.
 -->
+<p>
 kubeadm 配置文件的路径。
+</p>
 </td>
 </tr>
 
@@ -84,7 +96,9 @@ kubeadm 配置文件的路径。
 <!--
 Do not change any state, just output what actions would be performed.
 -->
+<p>
 不要更改任何状态，只输出要执行的操作。
+</p>
 </td>
 </tr>
 
@@ -101,23 +115,9 @@ Do not change any state, just output what actions would be performed.
 <!--
 Perform the upgrade of etcd.
 -->
+<p>
 执行 etcd 的升级。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--experimental-patches string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--  
-Path to a directory that contains files named "target[suffix][+patchtype].extension". For example, "kube-apiserver0+merge.yaml" or just "etcd.json". "patchtype" can be one of "strategic", "merge" or "json" and they match the patch formats supported by kubectl. The default "patchtype" is "strategic". "extension" must be either "json" or "yaml". "suffix" is an optional string that can be used to determine which patches are applied first alpha-numerically.
--->
-包含名为 "target[suffix][+patchtype].extension" 的文件的目录的路径。
-例如，"kube-apiserver0+merge.yaml" 或仅仅是 "etcd.json"。
-"patchtype" 可以是 "strategic"、"merge" 或 "json" 之一，并且它们与 kubectl 支持的补丁格式匹配。
-默认的 "patchtype" 为 "strategic"。 "extension" 必须为 "json" 或 "yaml"。 
-"suffix" 是一个可选字符串，可用于确定首先按字母顺序应用哪些补丁。
+</p>
 </td>
 </tr>
 
@@ -127,11 +127,14 @@ Path to a directory that contains files named "target[suffix][+patchtype].extens
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
-A set of key=value pairs that describe feature gates for various features. Options are:<br/>IPv6DualStack=true|false (ALPHA - default=false)
+A set of key=value pairs that describe feature gates for various features. Options are:<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)<br/>UnversionedKubeletConfigMap=true|false (BETA - default=true)
 -->
+<p>
 一组键值对，用于描述各种功能。选项包括：
-<br/>IPv6DualStack=true|false (ALPHA - 默认=false)
-<br/>PublicKeysECDSA=true|false (ALPHA - 默认=false)
+<br/>PublicKeysECDSA=true|false (ALPHA - 默认值=false
+<br/>RootlessControlPlane=true|false (ALPHA - 默认值=false)
+<br/>UnversionedKubeletConfigMap=true|false (BETA - 默认值=true)
+</p>
 </td>
 </tr>
 
@@ -143,7 +146,9 @@ A set of key=value pairs that describe feature gates for various features. Optio
 <!--
 Force upgrading although some requirements might not be met. This also implies non-interactive mode.
 -->
+<p>
 强制升级，但可能无法满足某些要求。这也意味着非交互模式。
+</p>
 </td>
 </tr>
 
@@ -155,19 +160,23 @@ Force upgrading although some requirements might not be met. This also implies n
 <!--
 help for apply
 -->
+<p>
 apply 操作的帮助命令
+</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--ignore-preflight-errors stringSlice</td>
+<td colspan="2">-ignore-preflight-errors strings</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
 A list of checks whose errors will be shown as warnings. Example: 'IsPrivilegedUser,Swap'. Value 'all' ignores errors from all checks.
 -->
+<p>
 错误将显示为警告的检查列表；例如：'IsPrivilegedUser,Swap'。取值为 'all' 时将忽略检查中的所有错误。
+</p>
 </td>
 </tr>
 
@@ -184,7 +193,30 @@ A list of checks whose errors will be shown as warnings. Example: 'IsPrivilegedU
 <!--
 The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
 -->
+<p>
 与集群通信时使用的 kubeconfig 文件。如果未设置标志，则在相关目录下搜索以查找现有 kubeconfig 文件。
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--patches string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Path to a directory that contains files named &quot;target[suffix][+patchtype].extension&quot;. For example, &quot;kube-apiserver0+merge.yaml&quot; or just &quot;etcd.json&quot;. &quot;target&quot; can be one of &quot;kube-apiserver&quot;, &quot;kube-controller-manager&quot;, &quot;kube-scheduler&quot;, &quot;etcd&quot;. &quot;patchtype&quot; can be one of &quot;strategic&quot;, &quot;merge&quot; or &quot;json&quot; and they match the patch formats supported by kubectl. The default &quot;patchtype&quot; is &quot;strategic&quot;. &quot;extension&quot; must be either &quot;json&quot; or &quot;yaml&quot;. &quot;suffix&quot; is an optional string that can be used to determine which patches are applied first alpha-numerically.
+-->
+<p>
+包含名为 &quot;target[suffix][+patchtype].extension&quot; 的文件的目录的路径。
+例如，&quot;kube-apiserver0+merge.yaml&quot;或仅仅是 &quot;etcd.json&quot;。
+&quot;target&quot; 可以是 &quot;kube-apiserver&quot;、&quot;kube-controller-manager&quot;、&quot;kube-scheduler&quot;、&quot;etcd&quot; 之一。
+&quot;patchtype&quot; 可以是 &quot;strategic&quot;、&quot;merge&quot; 或者 &quot;json&quot; 之一，
+并且它们与 kubectl 支持的补丁格式相同。
+默认的 &quot;patchtype&quot; 是 &quot;strategic&quot;。
+&quot;extension&quot; 必须是&quot;json&quot; 或&quot;yaml&quot;。
+&quot;suffix&quot; 是一个可选字符串，可用于确定首先按字母顺序应用哪些补丁。
+</p>
 </td>
 </tr>
 
@@ -196,7 +228,9 @@ The kubeconfig file to use when talking to the cluster. If the flag is not set,
 <!--
 Specifies whether the configuration file that will be used in the upgrade should be printed or not.
 -->
+<p>
 指定是否应打印将在升级中使用的配置文件。
+</p>
 </td>
 </tr>
 
@@ -208,7 +242,9 @@ Specifies whether the configuration file that will be used in the upgrade should
 <!--
 Perform the upgrade and do not prompt for confirmation (non-interactive mode).
 -->
+<p>
 执行升级，不提示确认（非交互模式）。
+</p>
 </td>
 </tr>
 
@@ -236,7 +272,9 @@ Perform the upgrade and do not prompt for confirmation (non-interactive mode).
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 指向 '真实' 宿主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_diff.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_diff.md
similarity index 64%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_diff.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_diff.md
index 62c1fd2152..e57e36ffb8 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_diff.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_diff.md
@@ -1,6 +1,21 @@
 <!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
 
 
+<!--
+Show what differences would be applied to existing static pod manifests. See also: kubeadm upgrade apply --dry-run
+-->
+显示哪些差异将被应用于现有的静态 pod 资源清单。参考: kubeadm upgrade apply --dry-run
+
+<!--
 ### Synopsis
 
 
@@ -49,7 +64,7 @@ kubeadm upgrade diff [version] [flags]
 <td colspan="2">--api-server-manifest string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值："/etc/kubernetes/manifests/kube-apiserver.yaml"</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">API服务器清单的路径</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>API服务器清单的路径</p></td>
 </tr>
 <!--
 <tr>
@@ -63,14 +78,14 @@ kubeadm upgrade diff [version] [flags]
 <td colspan="2">--config string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">kubeadm 配置文件的路径</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>kubeadm 配置文件的路径</p></td>
 </tr>
 <!--
 <tr>
 <td colspan="2">-c, --context-lines int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 3</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">How many lines of context in the diff</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>How many lines of context in the diff</p></td>
 </tr>
 -->
 <tr>
@@ -91,7 +106,7 @@ kubeadm upgrade diff [version] [flags]
 <td colspan="2">--controller-manager-manifest string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值： "/etc/kubernetes/manifests/kube-controller-manager.yaml"</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">控制器清单的路径</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>控制器清单的路径</p></td>
 </tr>
 <!--
 <tr>
@@ -105,21 +120,21 @@ kubeadm upgrade diff [version] [flags]
 <td colspan="2">-h, --help</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">帮助</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>帮助</p></td>
 </tr>
 <!--
 <tr>
 <td colspan="2">--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/kubernetes/admin.conf"</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.</p></td>
 </tr>
 -->
 <tr>
 <td colspan="2">--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值："/etc/kubernetes/admin.conf"</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">与集群通信时使用的 kubeconfig 文件，如果标志是未设置，则可以在一组标准位置中搜索现有的 kubeconfig 文件。</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>与集群通信时使用的 kubeconfig 文件，如果标志是未设置，则可以在一组标准位置中搜索现有的 kubeconfig 文件。</p></td>
 </tr>
 <!--
 <tr>
@@ -136,7 +151,7 @@ kubeadm upgrade diff [version] [flags]
 <td colspan="2">--scheduler-manifest string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值："/etc/kubernetes/manifests/kube-scheduler.yaml"</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">调度程序清单的路径</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>调度程序清单的路径</p></td>
 </tr>
 
 </tbody>
@@ -177,9 +192,8 @@ kubeadm upgrade diff [version] [flags]
 <td colspan="2">--rootfs string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">[EXPERIMENTAL] “真实”主机根文件系统的路径。</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>[EXPERIMENTAL] “真实”主机根文件系统的路径。</p></td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node.md
similarity index 52%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node.md
index 7f5320214f..c40d02317d 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Upgrade commands for a node in the cluster
+-->
+升级集群中某个节点的命令
 
 <!--
 ### Synopsis
@@ -8,7 +23,6 @@
 <!--
 Upgrade commands for a node in the cluster
 -->
-
 升级集群中某个节点的命令
 
 <!--
@@ -49,14 +63,16 @@ kubeadm upgrade node [flags]
 <tbody>
 
 <tr>
-<td colspan="2">--certificate-renewal</td>
+<td colspan="2">--certificate-renewal&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default-->默认值: true</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
 Perform the renewal of certificates used by component changed during upgrades.
 -->
+<p>
 对升级期间变化的组件所使用的证书执行更新。
+</p>
 </td>
 </tr>
 
@@ -69,7 +85,9 @@ Perform the renewal of certificates used by component changed during upgrades.
 <!--
 Do not change any state, just output the actions that would be performed.
 -->
+<p>
 不更改任何状态，只输出将要执行的操作。
+</p>
 </td>
 </tr>
 
@@ -84,23 +102,9 @@ Do not change any state, just output the actions that would be performed.
 <!--
 Perform the upgrade of etcd.
 -->
+<p>
 执行 etcd 的升级。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--experimental-patches string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--  
-Path to a directory that contains files named "target[suffix][+patchtype].extension". For example, "kube-apiserver0+merge.yaml" or just "etcd.json". "patchtype" can be one of "strategic", "merge" or "json" and they match the patch formats supported by kubectl. The default "patchtype" is "strategic". "extension" must be either "json" or "yaml". "suffix" is an optional string that can be used to determine which patches are applied first alpha-numerically.
--->
-包含名为 "target[suffix][+patchtype].extension" 的文件的目录的路径。
-例如，"kube-apiserver0+merge.yaml" 或仅仅是 "etcd.json"。
-"patchtype" 可以是 "strategic"、"merge" 或 "json" 之一，并且它们与 kubectl 支持的补丁格式匹配。
-默认的 "patchtype" 为 "strategic"。 "extension" 必须为 "json" 或 "yaml"。 
-"suffix" 是一个可选字符串，可用于确定首先按字母顺序应用哪些补丁。
+</p>
 </td>
 </tr>
 
@@ -112,10 +116,23 @@ Path to a directory that contains files named "target[suffix][+patchtype].extens
 <!--
 help for node
 -->
+<p>
 node 操作的帮助命令
+</p>
 </td>
 </tr>
 
+<tr>
+<td colspan="2">--ignore-preflight-errors strings</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
+<!-- A list of checks whose errors will be shown as warnings. Example: 'IsPrivilegedUser,Swap'. Value 'all' ignores errors from all checks. -->
+其错误将显示为警告的检查列表。示例：'IsPrivilegedUser,Swap'。 值 'all' 忽略所有检查中的错误。
+</p></td>
+</tr>
+
+
 <tr>
 <!-- 
 <td colspan="2">--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/kubernetes/admin.conf"</td>
@@ -127,31 +144,41 @@ node 操作的帮助命令
 <!--
 The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
 -->
+<p>
 用于与集群交互的 kubeconfig 文件。如果参数未指定，将从一系列标准位置检索存在的 kubeconfig 文件。
+</p>
 </td>
 </tr>
 
 <tr>
-<td colspan="2">--kubelet-version string</td>
+<td colspan="2">--patches string</td>
 </tr>
 <tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The *desired* version for the kubelet config after the upgrade. If not specified, the KubernetesVersion from the kubeadm-config ConfigMap will be used
--->
-升级后 *期望的* kubelet 配置版本。如未指定，将使用 kubeadm-config ConfigMap 中的 KubernetesVersion
-</td>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>
+<!-- Path to a directory that contains files named &quot;target[suffix][+patchtype].extension&quot;. For example, &quot;kube-apiserver0+merge.yaml&quot; or just &quot;etcd.json&quot;. &quot;target&quot; can be one of &quot;kube-apiserver&quot;, &quot;kube-controller-manager&quot;, &quot;kube-scheduler&quot;, &quot;etcd&quot;. &quot;patchtype&quot; can be one of &quot;strategic&quot;, &quot;merge&quot; or &quot;json&quot; and they match the patch formats supported by kubectl. The default &quot;patchtype&quot; is &quot;strategic&quot;. &quot;extension&quot; must be either &quot;json&quot; or &quot;yaml&quot;. &quot;suffix&quot; is an optional string that can be used to determine which patches are applied first alpha-numerically. -->
+包含名为 &quot;target[suffix][+patchtype].extension&quot; 的文件的目录的路径。
+例如，&quot;kube-apiserver0+merge.yaml&quot;或仅仅是 &quot;etcd.json&quot;。
+&quot;target&quot; 可以是 &quot;kube-apiserver&quot;、&quot;kube-controller-manager&quot;、&quot;kube-scheduler&quot;、&quot;etcd&quot; 之一。
+&quot;patchtype&quot; 可以是 &quot;strategic&quot;、&quot;merge&quot; 或者 &quot;json&quot; 之一，
+并且它们与 kubectl 支持的补丁格式相同。
+默认的 &quot;patchtype&quot; 是 &quot;strategic&quot;。
+&quot;extension&quot; 必须是&quot;json&quot; 或&quot;yaml&quot;。
+&quot;suffix&quot; 是一个可选字符串，可用于确定首先按字母顺序应用哪些补丁。
+</p></td>
+</tr>
 </tr>
 
 <tr>
-<td colspan="2">--skip-phases stringSlice</td>
+<td colspan="2">--skip-phases strings</td>
 </tr>
 <tr>
 <td></td><td style="line-height: 130%; word-wrap: break-word;">
 <!--
 List of phases to be skipped
 -->
+<p>
 要跳过的阶段的列表
+</p>
 </td>
 </tr>
 
@@ -179,10 +206,11 @@ List of phases to be skipped
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 指向 '真实' 宿主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
 </tbody>
 </table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase.md
similarity index 59%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase.md
index 3ce963a024..6f75dfa88f 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase.md
@@ -1,3 +1,18 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Use this command to invoke single phase of the node workflow
+-->
+使用此命令调用 node 工作流的某个阶段
 
 <!--
 ### Synopsis
@@ -32,7 +47,9 @@ Use this command to invoke single phase of the node workflow
 <!--
 help for phase
 -->
+<p>
 phase 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -59,7 +76,9 @@ phase 操作的帮助命令
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 指向 '真实' 宿主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
diff --git a/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_control-plane.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_control-plane.md
new file mode 100644
index 0000000000..f69ec4a67e
--- /dev/null
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_control-plane.md
@@ -0,0 +1,154 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!-- 
+Upgrade the control plane instance deployed on this node, if any 
+-->
+升级部署在此节点上的控制平面实例，如果有的话
+
+<!--
+### Synopsis
+-->
+
+### 概要
+
+<!--
+Upgrade the control plane instance deployed on this node, if any
+-->
+
+升级部署在此节点上的控制平面实例，如果有的话
+
+```
+kubeadm upgrade node phase control-plane [flags]
+```
+
+<!--
+### Options
+-->
+
+### 选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--certificate-renewal</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>更新在升级期间变更的组件使用的证书。</p></td>
+</tr>
+<!-- 
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Perform the renewal of certificates used by component changed during upgrades.</p></td>
+-->
+
+<tr>
+<td colspan="2">--dry-run</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>不改变任何状态，只输出将要执行的动作。</p></td>
+</tr>
+<!--
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Do not change any state, just output the actions that would be performed.</p></td>
+-->
+
+<tr>
+<td colspan="2">--etcd-upgrade&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值: true</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>执行 etcd 的升级。</p></td>
+</tr>
+<!--
+<td colspan="2">--etcd-upgrade&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: true</td> 
+-->
+
+<!--
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>Perform the upgrade of etcd.</p></td>
+-->
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>control-plane 的帮助信息</p></td>
+</tr>
+
+<!--
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>help for control-plane</p></td>
+-->
+
+<tr>
+<td colspan="2">--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值: "/etc/kubernetes/admin.conf"</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>用于和集群通信的 KubeConfig 文件。如果它没有被设置，那么 kubeadm 将会搜索一个已经存在于标准路径的 KubeConfig 文件。</p></td>
+</tr>
+
+<!--
+<td colspan="2">--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/kubernetes/admin.conf"</td>
+-->
+
+<!--
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.</p></td>
+-->
+
+<tr>
+<td colspan="2">--patches string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--  
+Path to a directory that contains files named "target[suffix][+patchtype].extension". For example, "kube-apiserver0+merge.yaml" or just "etcd.json". "patchtype" can be one of "strategic", "merge" or "json" and they match the patch formats supported by kubectl. The default "patchtype" is "strategic". "extension" must be either "json" or "yaml". "suffix" is an optional string that can be used to determine which patches are applied first alpha-numerically.
+-->
+包含名为 "target[suffix][+patchtype].extension" 的文件的目录的路径。
+例如，"kube-apiserver0+merge.yaml" 或仅仅是 "etcd.json"。
+"patchtype" 可以是 "strategic"、"merge" 或 "json" 之一，并且它们与 kubectl 支持的补丁格式匹配。
+默认的 "patchtype" 为 "strategic"。 "extension" 必须为 "json" 或 "yaml"。 
+"suffix" 是一个可选字符串，可用于确定首先按字母顺序应用哪些补丁。
+</td>
+</tr>
+
+</tbody>
+</table>
+
+
+
+<!--
+### Options inherited from parent commands
+-->
+
+### 从父命令继承的选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>[实验] 到'真实'主机根文件系统的路径。</p></td>
+</tr>
+<!--
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>[EXPERIMENTAL] The path to the 'real' host root filesystem.</p></td>
+-->
+
+</tbody>
+</table>
+
+
+
diff --git a/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_kubelet-config.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_kubelet-config.md
new file mode 100644
index 0000000000..30ca0fd8e8
--- /dev/null
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_kubelet-config.md
@@ -0,0 +1,113 @@
+<!--
+Upgrade the kubelet configuration for this node
+-->
+升级此节点的 kubelet 配置
+
+<!-- ### Synopsis -->
+
+### 概要
+
+<!--
+Download the kubelet configuration from the kubelet-config ConfigMap stored in the cluster
+-->
+
+从集群中 ConfigMap kubelet-config 下载 kubelet 配置
+
+```
+kubeadm upgrade node phase kubelet-config [flags]
+```
+
+<!--
+### Options
+-->
+
+### 选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--dry-run</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Do not change any state, just output the actions that would be performed.
+-->
+<p>
+不改变任何状态，只输出将要执行的操作
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+help for kubelet-config
+-->
+<p>
+kubelet-config 操作的帮助信息
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">
+<!--
+--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/kubernetes/admin.conf"
+-->
+--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值："/etc/kubernetes/admin.conf"
+</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
+-->
+<p>
+用于和集群通信的 KubeConfig 文件。如果它没有被设置，那么 kubeadm 将会搜索一个已经存在于标准路径的 KubeConfig 文件。
+</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
+
+### 从父命令继承的选项
+
+<!--
+### Options inherited from parent commands
+-->
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+[EXPERIMENTAL] The path to the 'real' host root filesystem.
+-->
+<p>
+[实验] 到'真实'主机根文件系统的路径。
+</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
diff --git a/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_preflight.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_preflight.md
new file mode 100644
index 0000000000..47c7903ac0
--- /dev/null
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_preflight.md
@@ -0,0 +1,85 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+<!--
+Run upgrade node pre-flight checks
+-->
+执行升级节点的预检
+
+<!-- ### Synopsis -->
+### 概要
+
+
+<!-- Run pre-flight checks for kubeadm upgrade node. -->
+
+执行 kubeadm 升级节点的预检。
+
+```
+kubeadm upgrade node phase preflight [flags]
+```
+
+<!--
+### Options
+-->
+### 选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<!-- <td></td><td style="line-height: 130%; word-wrap: break-word;">help for preflight</td> -->
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>preflight 操作的帮助命令</p></td>
+</tr>
+
+<tr>
+<td colspan="2">--ignore-preflight-errors strings</td>
+</tr>
+<tr>
+<!-- 
+<td></td><td style="line-height: 130%; word-wrap: break-word;">A list of checks whose errors will be shown as warnings. Example: 'IsPrivilegedUser,Swap'. Value 'all' ignores errors from all checks.</td> 
+-->
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>错误将显示为警告的检查清单。示例：'IsPrivilegedUser,Swap'。值为'all'表示忽略所有检查的错误。</p></td>
+</tr>
+
+</tbody>
+</table>
+
+
+
+<!--
+### Options inherited from parent commands
+-->
+### 继承于父命令的选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<!-- <td></td><td style="line-height: 130%; word-wrap: break-word;">[EXPERIMENTAL] The path to the 'real' host root filesystem.</td> -->
+<td></td><td style="line-height: 130%; word-wrap: break-word;"><p>[实验] 到'真实'主机根文件系统的路径。</p></td>
+</tr>
+
+</tbody>
+</table>
diff --git a/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_plan.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_plan.md
new file mode 100644
index 0000000000..c94439f428
--- /dev/null
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_plan.md
@@ -0,0 +1,177 @@
+<!--
+### Synopsis
+
+Check which versions are available to upgrade to and validate whether your current cluster is upgradeable. To skip the internet check, pass in the optional [version] parameter
+-->
+### 概述
+
+检查可升级到哪些版本，并验证你当前的集群是否可升级。 要跳过互联网检查，请传递可选的 [version] 参数 
+
+```
+kubeadm upgrade plan [version] [flags]
+```
+
+<!--
+### Options
+-->
+### 选项
+
+<table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--allow-experimental-upgrades</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Show unstable versions of Kubernetes as an upgrade alternative and allow upgrading to an alpha/beta/release candidate versions of Kubernetes.
+-->
+<p>
+显示不稳定版本的 Kubernetes 作为升级替代方案，并允许升级到 Kubernetes 的 Alpha/Beta/发行候选版本。
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--allow-release-candidate-upgrades</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Show release candidate versions of Kubernetes as an upgrade alternative and allow upgrading to a release candidate versions of Kubernetes.
+-->
+<p>
+显示 Kubernetes 的发行候选版本作为升级选择，并允许升级到 Kubernetes 的发行候选版本。
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--config string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Path to a kubeadm configuration file.
+-->
+<p>
+配置文件的路径。
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--feature-gates string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+A set of key=value pairs that describe feature gates for various features. Options are:<br/>PublicKeysECDSA=true|false (ALPHA - default=false)<br/>RootlessControlPlane=true|false (ALPHA - default=false)<br/>UnversionedKubeletConfigMap=true|false (BETA - default=true)
+-->
+<p>
+一组描述各种特征特性门控的键值对。选项有：
+<br/>PublicKeysECDSA=true|false (ALPHA - 默认值=false)
+<br/>RootlessControlPlane=true|false (ALPHA - 默认值=false)
+<br/>UnversionedKubeletConfigMap=true|false (BETA - 默认值=true)
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">-h, --help</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+help for plan
+-->
+<p>
+plan 的帮助信息
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--ignore-preflight-errors strings</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+A list of checks whose errors will be shown as warnings. Example: 'IsPrivilegedUser,Swap'. Value 'all' ignores errors from all checks.
+-->
+<p>
+其错误将显示为警告的检查列表。 例如：'IsPrivilegedUser,Swap'。 值 'all' 忽略所有检查错误。
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">
+<!--
+--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/kubernetes/admin.conf"
+-->
+--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值："/etc/kubernetes/admin.conf"
+</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
+-->
+<p>
+与集群通信时使用的 kubeconfig 文件。如果标志为未设置，则可以在一组标准位置中搜索现有的 kubeconfig 文件。
+</p>
+</td>
+</tr>
+
+<tr>
+<td colspan="2">--print-config</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+Specifies whether the configuration file that will be used in the upgrade should be printed or not.
+-->
+<p>
+指定是否打印将在升级中使用的配置文件。
+</p>
+</td>
+</tr>
+
+</tbody>
+</table>
+
+
+<!--
+### Options inherited from parent commands
+-->
+### 从父命令继承的选项
+
+   <table style="width: 100%; table-layout: fixed;">
+<colgroup>
+<col span="1" style="width: 10px;" />
+<col span="1" />
+</colgroup>
+<tbody>
+
+<tr>
+<td colspan="2">--rootfs string</td>
+</tr>
+<tr>
+<td></td><td style="line-height: 130%; word-wrap: break-word;">
+<!--
+[EXPERIMENTAL] The path to the 'real' host root filesystem.
+-->
+<p>
+[EXPERIMENTAL] “真实”主机根文件系统的路径。
+</p>
+</td>
+</tr>
+
+</tbody>
+</table>
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_version.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_version.md
similarity index 65%
rename from content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_version.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_version.md
index 86e8805ad1..48baeb90b0 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_version.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/generated/kubeadm_version.md
@@ -1,3 +1,20 @@
+<!--
+The file is auto-generated from the Go source code of the component using a generic
+[generator](https://github.com/kubernetes-sigs/reference-docs/). To learn how
+to generate the reference documentation, please read
+[Contributing to the reference documentation](/docs/contribute/generate-ref-docs/).
+To update the reference conent, please follow the 
+[Contributing upstream](/docs/contribute/generate-ref-docs/contribute-upstream/)
+guide. You can file document formatting bugs against the
+[reference-docs](https://github.com/kubernetes-sigs/reference-docs/) project.
+-->
+
+
+<!--
+Print the version of kubeadm
+-->
+打印 kubeadm 的版本
+
 <!--
 ### Synopsis
 -->
@@ -7,7 +24,6 @@
 <!--
 Print the version of kubeadm
 -->
-
 打印 kubeadm 的版本
 
 ```
@@ -35,7 +51,9 @@ kubeadm version [flags]
 <!--
 help for version
 -->
+<p>
 version 操作的帮助命令
+</p>
 </td>
 </tr>
 
@@ -47,7 +65,9 @@ version 操作的帮助命令
 <!--
 Output format; available options are 'yaml', 'json' and 'short'
 -->
+<p>
 输出格式；可用的选项有 'yaml', 'json' 和 'short'
+</p>
 </td>
 </tr>
 
@@ -75,7 +95,9 @@ Output format; available options are 'yaml', 'json' and 'short'
 <!--
 [EXPERIMENTAL] The path to the 'real' host root filesystem.
 -->
+<p>
 [实验] 指向 '真实' 宿主机根文件系统的路径。
+</p>
 </td>
 </tr>
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/implementation-details.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/implementation-details.md
similarity index 78%
rename from content/zh/docs/reference/setup-tools/kubeadm/implementation-details.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/implementation-details.md
index 3e3fe80b89..82e317ca60 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/implementation-details.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/implementation-details.md
@@ -20,7 +20,7 @@ weight: 100
 However, it might not be obvious _how_ kubeadm does that.
 -->
 `kubeadm init` 和 `kubeadm join` 结合在一起提供了良好的用户体验，因为从头开始创建实践最佳而配置最基本的 Kubernetes 集群。
-但是，kubeadm _如何_ 做到这一点可能并不明显。
+但是，kubeadm **如何** 做到这一点可能并不明显。
 
 <!-- 
 This document provides additional details on what happen under the hood, 
@@ -69,7 +69,7 @@ with the aim of sharing knowledge on Kubernetes cluster best practices.
   - `kubectl apply -f <所选网络.yaml>`
   - `kubeadm join --token <令牌> <端点>:<端口>`
 - **可扩展的**：
-  - _不_ 应偏向任何特定的网络提供商。不涉及配置集群网络
+  - **不** 应偏向任何特定的网络提供商，不涉及配置集群网络
   - 应该可以使用配置文件来自定义各种参数
 
 <!--
@@ -88,8 +88,8 @@ kubeadm 使用了一组有限的常量值。
 The Kubernetes directory `/etc/kubernetes` is a constant in the application, since it is clearly the given path
 in a majority of cases, and the most intuitive location; other constants paths and file names are:
 -->
-Kubernetes 目录 `/etc/kubernetes` 在应用程序中是一个常量，因为在大多数情况下
-它显然是给定的路径，并且是最直观的位置；其他路径常量和文件名有：
+Kubernetes 目录 `/etc/kubernetes` 在应用程序中是一个常量，
+因为在大多数情况下它显然是给定的路径，并且是最直观的位置；其他路径常量和文件名有：
 
 <!--  
 - `/etc/kubernetes/manifests` as the path where kubelet should look for static Pod manifests. Names of static Pod manifests are:
@@ -116,18 +116,18 @@ Kubernetes 目录 `/etc/kubernetes` 在应用程序中是一个常量，因为
   - `kube-controller-manager.yaml`
   - `kube-scheduler.yaml`
 - `/etc/kubernetes/` 作为带有控制平面组件身份标识的 kubeconfig 文件的路径。kubeconfig 文件的名称为：
-  - `kubelet.conf` (在 TLS 引导时名称为 `bootstrap-kubelet.conf` )
+  - `kubelet.conf` (在 TLS 引导时名称为 `bootstrap-kubelet.conf`)
   - `controller-manager.conf`
   - `scheduler.conf`
   - `admin.conf` 用于集群管理员和 kubeadm 本身
 - 证书和密钥文件的名称：
-  - `ca.crt`, `ca.key` 用于 Kubernetes 证书颁发机构
-  - `apiserver.crt`, `apiserver.key` 用于 API 服务器证书
-  - `apiserver-kubelet-client.crt`, `apiserver-kubelet-client.key`
+  - `ca.crt`、`ca.key` 用于 Kubernetes 证书颁发机构
+  - `apiserver.crt`、`apiserver.key` 用于 API 服务器证书
+  - `apiserver-kubelet-client.crt`、`apiserver-kubelet-client.key`
     用于 API 服务器安全地连接到 kubelet 的客户端证书
-  - `sa.pub`, `sa.key` 用于控制器管理器签署 ServiceAccount 时使用的密钥
-  - `front-proxy-ca.crt`, `front-proxy-ca.key` 用于前端代理证书颁发机构
-  - `front-proxy-client.crt`, `front-proxy-client.key` 用于前端代理客户端
+  - `sa.pub`、`sa.key` 用于控制器管理器签署 ServiceAccount 时使用的密钥
+  - `front-proxy-ca.crt`、`front-proxy-ca.key` 用于前端代理证书颁发机构
+  - `front-proxy-client.crt`、`front-proxy-client.key` 用于前端代理客户端
 
 <!--
 ## kubeadm init workflow internal design
@@ -138,16 +138,15 @@ Kubernetes 目录 `/etc/kubernetes` 在应用程序中是一个常量，因为
 The `kubeadm init` [internal workflow](/docs/reference/setup-tools/kubeadm/kubeadm-init/#init-workflow) consists of a sequence of atomic work tasks to perform,
 as described in `kubeadm init`.
 -->
-`kubeadm init` [内部工作流程](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init/#init-workflow)
+`kubeadm init` [内部工作流程](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init/#init-workflow)
 包含一系列要执行的原子性工作任务，如 `kubeadm init` 中所述。
 
 <!--  
 The [`kubeadm init phase`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/) command allows users to invoke each task individually, and ultimately offers a reusable and composable API/toolbox that can be used by other Kubernetes bootstrap tools, by any IT automation tool or by an advanced user for creating custom clusters.
 -->
-[`kubeadm init phase`](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/)
+[`kubeadm init phase`](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/)
 命令允许用户分别调用每个任务，并最终提供可重用且可组合的 API 或工具箱，
-其他 Kubernetes 引导工具、任何 IT 自动化工具和高级用户都可以使用它来
-创建自定义集群。
+其他 Kubernetes 引导工具、任何 IT 自动化工具和高级用户都可以使用它来创建自定义集群。
 
 <!--
 ### Preflight checks
@@ -156,23 +155,18 @@ The [`kubeadm init phase`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phas
 
 <!-- 
 Kubeadm executes a set of preflight checks before starting the init, with the aim to verify preconditions and avoid common cluster startup problems.
-The user can skip specific preflight checks or all of them with the `--ignore-preflight-errors` option. 
+The user can skip specific preflight checks or all of them with the `--ignore-preflight-errors` option.
 -->
 Kubeadm 在启动 init 之前执行一组预检，目的是验证先决条件并避免常见的集群启动问题。
-用户可以使用 `--ignore-preflight-errors` 选项跳过特定的预检查或全部检查。
+用户可以使用 `--ignore-preflight-errors` 选项跳过特定的预检或全部检查。
 
 <!--  
 - [warning] If the Kubernetes version to use (specified with the `--kubernetes-version` flag) is at least one minor version higher than the kubeadm CLI version.
 - Kubernetes system requirements:
   - if running on linux:
     - [error] if Kernel is older than the minimum required version
-    - [error] if required cgroups subsystem aren't in set up
-  - if using docker:
-    - [warning/error] if Docker service does not exist, if it is disabled, if it is not active.
-    - [error] if Docker endpoint does not exist or does not work
-    - [warning] if docker version is not in the list of validated docker versions
-  - If using other cri engine:
-    - [error] if crictl socket does not answer
+    - [error] if required cgroups subsystem aren't set up
+- [error] if the CRI endpoint does not answer
 -->
 - [警告] 如果要使用的 Kubernetes 版本（由 `--kubernetes-version` 标志指定）比 kubeadm CLI
   版本至少高一个小版本。
@@ -180,12 +174,7 @@ Kubeadm 在启动 init 之前执行一组预检，目的是验证先决条件并
   - 如果在 linux上运行：
     - [错误] 如果内核早于最低要求的版本
     - [错误] 如果未设置所需的 cgroups 子系统
-  - 如果使用 docker：
-    - [警告/错误] 如果 Docker 服务不存在、被禁用或未激活。
-    - [错误] 如果 Docker 端点不存在或不起作用
-    - [警告] 如果 docker 版本不在经过验证的 docker 版本列表中
-  - 如果使用其他 cri 引擎：
-    - [错误] 如果 crictl 套接字未应答
+- [错误] 如果 CRI 端点未应答
 <!--  
 - [error] if user is not root
 - [error] if the machine hostname is not a valid DNS subdomain
@@ -210,7 +199,7 @@ Kubeadm 在启动 init 之前执行一组预检，目的是验证先决条件并
 - [错误] 如果机器主机名不是有效的 DNS 子域
 - [警告] 如果通过网络查找无法访问主机名
 - [错误] 如果 kubelet 版本低于 kubeadm 支持的最低 kubelet 版本（当前小版本 -1）
-- [错误] 如果 kubelet 版本比所需的控制平面板版本至少高一个小（不支持的版本偏斜）
+- [错误] 如果 kubelet 版本比所需的控制平面板版本至少高一个小版本（不支持的版本偏差）
 - [警告] 如果 kubelet 服务不存在或已被禁用
 - [警告] 如果 firewalld 处于活动状态
 - [错误] 如果 API ​​服务器绑定的端口或 10250/10251/10252 端口已被占用
@@ -253,7 +242,7 @@ Kubeadm 在启动 init 之前执行一组预检，目的是验证先决条件并
 <!--  
 1. Preflight checks can be invoked individually with the [`kubeadm init phase preflight`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-preflight) command
 -->
-1. 可以使用 [`kubeadm init phase preflight`](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-preflight)
+1. 可以使用 [`kubeadm init phase preflight`](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-preflight)
    命令单独触发预检。
 
 <!--
@@ -265,7 +254,7 @@ Kubeadm 在启动 init 之前执行一组预检，目的是验证先决条件并
 Kubeadm 生成用于不同目的的证书和私钥对：
 
 <!-- 
- - A self signed certificate authority for the Kubernetes cluster saved into `ca.crt` file and `ca.key` private key file 
+ - A self signed certificate authority for the Kubernetes cluster saved into `ca.crt` file and `ca.key` private key file
  - A serving certificate for the API server, generated using `ca.crt` as the CA, and saved into `apiserver.crt` file with
    its private key `apiserver.key`. This certificate should contain following alternative names:
      - The Kubernetes service's internal clusterIP (the first address in the services CIDR, e.g. `10.96.0.1` if service subnet is `10.96.0.0/12`)
@@ -278,22 +267,22 @@ Kubeadm 生成用于不同目的的证书和私钥对：
    This certificate should be in the `system:masters` organization
  - A private key for signing ServiceAccount Tokens saved into `sa.key` file along with its public key `sa.pub`
  - A certificate authority for the front proxy saved into `front-proxy-ca.crt` file with its key `front-proxy-ca.key`
- - A client cert for the front proxy client, generated using `front-proxy-ca.crt` as the CA and saved into `front-proxy-client.crt` file
+ - A client cert for the front proxy client, generate using `front-proxy-ca.crt` as the CA and saved into `front-proxy-client.crt` file
    with its private key`front-proxy-client.key`
 -->
 - Kubernetes 集群的自签名证书颁发机构会保存到 `ca.crt` 文件和 `ca.key` 私钥文件中
 - 用于 API 服务器的服务证书，使用 `ca.crt` 作为 CA 生成，并将证书保存到 `apiserver.crt`
-  文件中，私钥保存到 `apiserver.key` 文件中
+  文件中，私钥保存到 `apiserver.key` 文件中。
   该证书应包含以下备用名称：
 
   - Kubernetes 服务的内部 clusterIP（服务 CIDR 的第一个地址。
     例如：如果服务的子网是 `10.96.0.0/12`，则为 `10.96.0.1`）
   - Kubernetes DNS 名称，例如：如果 `--service-dns-domain` 标志值是 `cluster.local`，
     则为 `kubernetes.default.svc.cluster.local`；
-    加上默认的 DNS 名称 `kubernetes.default.svc`、`kubernetes.default` 和 `kubernetes`，
+    加上默认的 DNS 名称 `kubernetes.default.svc`、`kubernetes.default` 和 `kubernetes`
   - 节点名称
   - `--apiserver-advertise-address`
-  - 用户指定的其他备用名称 
+  - 用户指定的其他备用名称
 
 - 用于 API 服务器安全连接到 kubelet 的客户端证书，使用 `ca.crt` 作为 CA 生成，
   并保存到 `apiserver-kubelet-client.crt`，私钥保存到 `apiserver-kubelet-client.key`
@@ -305,7 +294,7 @@ Kubeadm 生成用于不同目的的证书和私钥对：
   `front-proxy-client.crt` 文件中，私钥保存到 `front-proxy-client.key` 文件中
 
 <!-- 
-Certificates are stored by default in `/etc/kubernetes/pki`, but this directory is configurable using the `--cert-dir` flag. 
+Certificates are stored by default in `/etc/kubernetes/pki`, but this directory is configurable using the `--cert-dir` flag.
 -->
 证书默认情况下存储在 `/etc/kubernetes/pki` 中，但是该目录可以使用 `--cert-dir` 标志进行配置。
 
@@ -331,16 +320,16 @@ Please note that:
    并且跳过给定证书的生成阶段。
    这意味着用户可以将现有的 CA 复制到 `/etc/kubernetes/pki/ca.{crt,key}`，
    kubeadm 将使用这些文件对其余证书进行签名。
-   请参阅[使用自定义证书](/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-certs#custom-certificates)。
+   请参阅[使用自定义证书](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-certs#custom-certificates)。
 2. 仅对 CA 来说，如果所有其他证书和 kubeconfig 文件都已就位，则可以只提供 `ca.crt` 文件，
    而不提供 `ca.key` 文件。
    kubeadm 能够识别出这种情况并启用 ExternalCA，这也意味着了控制器管理器中的
-   `csrsigner` 控制器将不会启动
+   `csrsigner` 控制器将不会启动。
 3. 如果 kubeadm 在
-   [外部 CA 模式](/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-certs#external-ca-mode)
-   下运行，所有证书必须由用户提供，因为 kubeadm 无法自行生成它们。
-4. 如果在 `--dry-run` 模式下执行 kubeadm，证书文件将写入一个临时文件夹中
-5. 可以使用 [`kubeadm init phase certs all`](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-certs) 
+   [外部 CA 模式](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-certs#external-ca-mode)
+   下运行，所有证书必须由用户提供，因为 kubeadm 无法自行生成证书。
+4. 如果在 `--dry-run` 模式下执行 kubeadm，证书文件将写入一个临时文件夹中。
+5. 可以使用 [`kubeadm init phase certs all`](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-certs)
    命令单独生成证书。
 
 <!--
@@ -368,18 +357,18 @@ by default [RBAC core components roles](/docs/reference/access-authn-authz/rbac/
   在此文件中，有一个引导令牌或内嵌的客户端证书，向集群表明此节点身份。
   此客户端证书应：
 
-  - 根据[节点鉴权](/zh/docs/reference/access-authn-authz/node/)模块的要求，属于 `system:nodes` 组织
+  - 根据[节点鉴权](/zh-cn/docs/reference/access-authn-authz/node/)模块的要求，属于 `system:nodes` 组织
   - 具有通用名称（CN）：`system:node:<小写主机名>`
 
 - 控制器管理器的 kubeconfig 文件 —— `/etc/kubernetes/controller-manager.conf`；
   在此文件中嵌入了一个具有控制器管理器身份标识的客户端证书。
   此客户端证书应具有 CN：`system:kube-controller-manager`，
-  该 CN 由 [RBAC 核心组件角色](/zh/docs/reference/access-authn-authz/rbac/#core-component-roles)
+  该 CN 由 [RBAC 核心组件角色](/zh-cn/docs/reference/access-authn-authz/rbac/#core-component-roles)
   默认定义的。
 
 - 调度器的 kubeconfig 文件 —— `/etc/kubernetes/scheduler.conf`；
   此文件中嵌入了具有调度器身份标识的客户端证书。此客户端证书应具有 CN：`system:kube-scheduler`，
-  该 CN 由 [RBAC 核心组件角色](/zh/docs/reference/access-authn-authz/rbac/#core-component-roles)
+  该 CN 由 [RBAC 核心组件角色](/zh-cn/docs/reference/access-authn-authz/rbac/#core-component-roles)
   默认定义的。
 
 <!-- 
@@ -393,7 +382,7 @@ CN. Kubeadm uses the `kubernetes-admin` CN.
 `/etc/kubernetes/admin.conf` 文件中。
 此处的 admin 定义为正在管理集群并希望完全控制集群（**root**）的实际人员。
 内嵌的 admin 客户端证书应是  `system:masters` 组织的成员，
-这一组织名由默认的 [RBAC 面向用户的角色绑定](/zh/docs/reference/access-authn-authz/rbac/#user-facing-roles)
+这一组织名由默认的 [RBAC 面向用户的角色绑定](/zh-cn/docs/reference/access-authn-authz/rbac/#user-facing-roles)
 定义。它还应包括一个 CN。kubeadm 使用 `kubernetes-admin` CN。
 
 <!-- Please note that: -->
@@ -408,12 +397,12 @@ CN. Kubeadm uses the `kubernetes-admin` CN.
 -->
 1. `ca.crt` 证书内嵌在所有 kubeconfig 文件中。
 2. 如果给定的 kubeconfig 文件存在且其内容经过评估符合上述规范，则 kubeadm 将使用现有文件，
-   并跳过给定 kubeconfig 的生成阶段
-3. 如果 kubeadm 以 [ExternalCA 模式](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init/#external-ca-mode)
-   运行，则所有必需的 kubeconfig 也必须由用户提供，因为 kubeadm 不能自己生成
-4. 如果在 `--dry-run` 模式下执行 kubeadm，则 kubeconfig 文件将写入一个临时文件夹中
+   并跳过给定 kubeconfig 的生成阶段。
+3. 如果 kubeadm 以 [ExternalCA 模式](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init/#external-ca-mode)
+   运行，则所有必需的 kubeconfig 也必须由用户提供，因为 kubeadm 不能自己生成。
+4. 如果在 `--dry-run` 模式下执行 kubeadm，则 kubeconfig 文件将写入一个临时文件夹中。
 5. 可以使用
-   [`kubeadm init phase kubeconfig all`](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-kubeconfig)
+   [`kubeadm init phase kubeconfig all`](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-kubeconfig)
    命令分别生成 kubeconfig 文件。
 
 <!--
@@ -447,12 +436,12 @@ Kubelet 启动后会监视这个目录以便创建 Pod。
 - 所有静态 Pod 均使用 `system-node-critical` 优先级
 - 所有静态 Pod 都设置了 `hostNetwork:true`，使得控制平面在配置网络之前启动；结果导致：
 
-  * 控制器管理器和调度器用来调用 API 服务器的地址为 127.0.0.1。
+  * 控制器管理器和调度器用来调用 API 服务器的地址为 `127.0.0.1`
   * 如果使用本地 etcd 服务器，则 `etcd-servers` 地址将设置为 `127.0.0.1:2379`
 
 - 同时为控制器管理器和调度器启用了领导者选举
 - 控制器管理器和调度器将引用 kubeconfig 文件及其各自的唯一标识
-- 如[将自定义参数传递给控制平面组件](/zh/docs/setup/production-environment/tools/kubeadm/control-plane-flags/)
+- 如[将自定义参数传递给控制平面组件](/zh-cn/docs/setup/production-environment/tools/kubeadm/control-plane-flags/)
   中所述，所有静态 Pod 都会获得用户指定的额外标志
 - 所有静态 Pod 都会获得用户指定的额外卷（主机路径）
 
@@ -461,14 +450,14 @@ Kubelet 启动后会监视这个目录以便创建 Pod。
 
 <!--  
 1. All images will be pulled from k8s.gcr.io by default. See [using custom images](/docs/reference/setup-tools/kubeadm/kubeadm-init/#custom-images) for customizing the image repository
-2. In case of kubeadm is executed in the `-dry-run` mode, static Pods files are written in a temporary folder
+2. In case of kubeadm is executed in the `--dry-run` mode, static Pods files are written in a temporary folder
 3. Static Pod manifest generation for control plane components can be invoked individually with the [`kubeadm init phase control-plane all`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-control-plane) command
 -->
-1. 所有镜像默认从 k8s.gcr.io 拉取。 
+1. 所有镜像默认从 k8s.gcr.io 拉取。
    关于自定义镜像仓库，请参阅
-   [使用自定义镜像](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init/#custom-images)。
+   [使用自定义镜像](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init/#custom-images)。
 2. 如果在 `--dry-run` 模式下执行 kubeadm，则静态 Pod 文件写入一个临时文件夹中。
-3. 可以使用 [`kubeadm init phase control-plane all`](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-control-plane) 
+3. 可以使用 [`kubeadm init phase control-plane all`](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-control-plane)
    命令分别生成主控组件的静态 Pod 清单。
 
 <!--
@@ -493,7 +482,7 @@ API 服务器的静态 Pod 清单会受到用户提供的以下参数的影响:
   如果未提供，则这些值默认为机器上默认网络接口的 IP 地址和 6443 端口。
 - `service-cluster-ip-range` 给 service 使用
 - 如果指定了外部 etcd 服务器，则应指定 `etcd-servers` 地址和相关的 TLS 设置
-  （`etcd-cafile`，`etcd-certfile`，`etcd-keyfile`）；
+  （`etcd-cafile`、`etcd-certfile`、`etcd-keyfile`）；
   如果未提供外部 etcd 服务器，则将使用本地 etcd（通过主机网络）
 - 如果指定了云提供商，则配置相应的 `--cloud-provider`，如果该路径存在，则配置 `--cloud-config`
   （这是实验性的，是 Alpha 版本，将在以后的版本中删除）
@@ -504,13 +493,13 @@ API 服务器的静态 Pod 清单会受到用户提供的以下参数的影响:
 <!--  
  - `--insecure-port=0` to avoid insecure connections to the api server
  - `--enable-bootstrap-token-auth=true` to enable the `BootstrapTokenAuthenticator` authentication module.
-   See [TLS Bootstrapping](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/) for more details
+   See [TLS Bootstrapping](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/) for more details
  - `--allow-privileged` to `true` (required e.g. by kube proxy)
  - `--requestheader-client-ca-file` to `front-proxy-ca.crt`
 -->
 - `--insecure-port=0` 禁止到 API 服务器不安全的连接
 - `--enable-bootstrap-token-auth=true` 启用 `BootstrapTokenAuthenticator` 身份验证模块。
-  更多细节请参见 [TLS 引导](/zh/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/)。
+  更多细节请参见 [TLS 引导](/zh-cn/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/)。
 - `--allow-privileged` 设为 `true`（诸如 kube-proxy 这些组件有此要求）
 - `--requestheader-client-ca-file` 设为 `front-proxy-ca.crt`
 
@@ -529,21 +518,21 @@ API 服务器的静态 Pod 清单会受到用户提供的以下参数的影响:
       (e.g. only pods on this node)
 -->
 - `--enable-admission-plugins` 设为：
-  - [`NamespaceLifecycle`](/zh/docs/reference/access-authn-authz/admission-controllers/#namespacelifecycle) 
+  - [`NamespaceLifecycle`](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#namespacelifecycle)
     例如，避免删除系统保留的名字空间
-  - [`LimitRanger`](/zh/docs/reference/access-authn-authz/admission-controllers/#limitranger) 和
-    [`ResourceQuota`](/zh/docs/reference/access-authn-authz/admission-controllers/#resourcequota)
+  - [`LimitRanger`](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#limitranger) 和
+    [`ResourceQuota`](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#resourcequota)
     对名字空间实施限制
-  - [`ServiceAccount`](/zh/docs/reference/access-authn-authz/admission-controllers/#serviceaccount)
+  - [`ServiceAccount`](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#serviceaccount)
     实施服务账户自动化
-  - [`PersistentVolumeLabel`](/zh/docs/reference/access-authn-authz/admission-controllers/#persistentvolumelabel) 
+  - [`PersistentVolumeLabel`](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#persistentvolumelabel)
     将区域（Region）或区（Zone）标签附加到由云提供商定义的 PersistentVolumes
     （此准入控制器已被弃用并将在以后的版本中删除）。
     如果未明确选择使用 `gce` 或 `aws` 作为云提供商，则默认情况下，v1.9 以后的版本 kubeadm 都不会部署。
-  - [`DefaultStorageClass`](/zh/docs/reference/access-authn-authz/admission-controllers/#defaultstorageclass) 
+  - [`DefaultStorageClass`](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#defaultstorageclass)
     在 `PersistentVolumeClaim` 对象上强制使用默认存储类型
-  - [`DefaultTolerationSeconds`](/zh/docs/reference/access-authn-authz/admission-controllers/#defaulttolerationseconds)
-  - [`NodeRestriction`](/zh/docs/reference/access-authn-authz/admission-controllers/#noderestriction) 
+  - [`DefaultTolerationSeconds`](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#defaulttolerationseconds)
+  - [`NodeRestriction`](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#noderestriction)
     限制 kubelet 可以修改的内容（例如，仅此节点上的 pod）
 <!--
  - `--kubelet-preferred-address-types` to `InternalIP,ExternalIP,Hostname;` this makes `kubectl logs` and other API server-kubelet
@@ -564,7 +553,7 @@ API 服务器的静态 Pod 清单会受到用户提供的以下参数的影响:
     - `--requestheader-extra-headers-prefix=X-Remote-Extra-`
     - `--requestheader-allowed-names=front-proxy-client`
 -->
-- `--kubelet-preferred-address-types` 设为 `InternalIP,ExternalIP,Hostname;` 
+- `--kubelet-preferred-address-types` 设为 `InternalIP,ExternalIP,Hostname;`
   这使得在节点的主机名无法解析的环境中，`kubectl log` 和 API 服务器与 kubelet
   的其他通信可以工作
 - 使用在前面步骤中生成的证书的标志：
@@ -580,7 +569,7 @@ API 服务器的静态 Pod 清单会受到用户提供的以下参数的影响:
   - `--proxy-client-key-file` 设为 `front-proxy-client.key`
 
 - 其他用于保护前端代理（
-  [API 聚合层](/zh/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)）
+  [API 聚合层](/zh-cn/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)）
   通信的标志:
 
   - `--requestheader-username-headers=X-Remote-User`
@@ -594,7 +583,7 @@ API 服务器的静态 Pod 清单会受到用户提供的以下参数的影响:
 #### 控制器管理器  {#controller-manager}
 
 <!-- 
-The static Pod manifest for the controller-manager is affected by following parameters provided by the users: 
+The static Pod manifest for the controller manager is affected by following parameters provided by the users: 
 -->
 控制器管理器的静态 Pod 清单受用户提供的以下参数的影响:
 
@@ -606,8 +595,8 @@ The static Pod manifest for the controller-manager is affected by following para
  - If a cloud provider is specified, the corresponding `--cloud-provider` is specified, together with the  `--cloud-config` path
    if such configuration file exists (this is experimental, alpha and will be removed in a future version)
 -->
-- 如果调用 kubeadm 时指定了 `--pod-network-cidr` 参数，则可以通过以下方式启用
-  某些 CNI 网络插件所需的子网管理器功能：
+- 如果调用 kubeadm 时指定了 `--pod-network-cidr` 参数，
+  则可以通过以下方式启用某些 CNI 网络插件所需的子网管理器功能：
   - 设置 `--allocate-node-cidrs=true`
   - 根据给定 CIDR 设置 `--cluster-cidr` 和 `--node-cidr-mask-size` 标志
 - 如果指定了云提供商，则指定相应的 `--cloud-provider`，如果存在这样的配置文件，
@@ -618,7 +607,7 @@ The static Pod manifest for the controller-manager is affected by following para
 
 <!--  
  - `--controllers` enabling all the default controllers plus `BootstrapSigner` and `TokenCleaner` controllers for TLS bootstrap.
-   See [TLS Bootstrapping](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/) for more details
+   See [TLS Bootstrapping](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/) for more details
  - `--use-service-account-credentials` to `true`
  - Flags for using certificates generated in previous steps:
     - `--root-ca-file` to `ca.crt`
@@ -628,7 +617,7 @@ The static Pod manifest for the controller-manager is affected by following para
 -->
 - `--controllers` 为 TLS 引导程序启用所有默认控制器以及 `BootstrapSigner` 和
   `TokenCleaner` 控制器。详细信息请参阅
-  [TLS 引导](/zh/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/)
+  [TLS 引导](/zh-cn/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/)
 - `--use-service-account-credentials` 设为 `true`
 - 使用先前步骤中生成的证书的标志：
 
@@ -676,57 +665,11 @@ a local etcd instance running in a Pod with following attributes:
 3. Static Pod manifest generation for local etcd can be invoked individually with the [`kubeadm init phase etcd local`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-etcd) command
 -->
 1. etcd 镜像默认从 `k8s.gcr.io` 拉取。有关自定义镜像仓库，请参阅
-   [使用自定义镜像](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init/#custom-images)。
+   [使用自定义镜像](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init/#custom-images)。
 2. 如果 kubeadm 以 `--dry-run` 模式执行，etcd 静态 Pod 清单将写入一个临时文件夹。
 3. 可以使用
-   ['kubeadm init phase etcd local'](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-etcd)
-   命令单独为本地 etcd 生成静态 Pod 清单
-
-<!--
-### Optional Dynamic Kubelet Configuration
--->
-### 可选的动态 Kubelet 配置  {#optional-dynamic-kubelet-configuration}
-
-<!--  
-To use this functionality call `kubeadm alpha kubelet config enable-dynamic`. It writes the kubelet init configuration
-into `/var/lib/kubelet/config/init/kubelet` file.
--->
-要使用这个功能，请执行 `kubeadm alpha kubelet config enable-dynamic`。
-它将 kubelet 的初始化配置写入 `/var/lib/kubelet/config/init/kubelet` 文件。
-
-<!--  
-The init configuration is used for starting the kubelet on this specific node, providing an alternative for the kubelet drop-in file;
-such configuration will be replaced by the kubelet base configuration as described in following steps.
-See [set Kubelet parameters via a config file](/docs/tasks/administer-cluster/kubelet-config-file) for additional information.
--->
-初始化配置用于在这个特定节点上启动 kubelet，从而为 kubelet 插件文件提供了
-一种替代方法。如以下步骤中所述，这种配置将由 kubelet 基本配置所替代。
-请参阅[通过配置文件设置 Kubelet 参数](/zh/docs/tasks/administer-cluster/kubelet-config-file)
-了解更多信息。
-
-<!-- Please note that: -->
-请注意：
-
-<!--  
-1. To make dynamic kubelet configuration work, flag `--dynamic-config-dir=/var/lib/kubelet/config/dynamic` should be specified
-   in `/etc/systemd/system/kubelet.service.d/10-kubeadm.conf`
-1. The kubelet configuration can be changed by passing a `KubeletConfiguration` object to `kubeadm init` or `kubeadm join` by using
-   a configuration file `--config some-file.yaml`. The `KubeletConfiguration` object can be separated from other objects such
-   as `InitConfiguration` using the `---` separator. For more details have a look at the `kubeadm config print-default` command.
--->
-1. 要使动态 kubelet 配置生效，应在 `/etc/systemd/system/kubelet.service.d/10-kubeadm.conf`
-   中指定 `--dynamic-config-dir=/var/lib/kubelet/config/dynamic` 标志。
-1. 通过使用配置文件 `--config some-file.yaml` 将 `KubeletConfiguration` 对象传递给
-   `kubeadm init` 或 `kubeadm join` 来更改 kubelet 配置。
-   可以使用 `---` 分隔符将 `KubeletConfiguration` 对象与其他对象（例如 `InitConfiguration`）
-   分开。更多的详细信息，请查看 `kubeadm config print-default` 命令。
-
-<!--
-For more details about the `KubeletConfiguration` struct, take a look at the
-[`KubeletConfiguration` reference](/docs/reference/config-api/kubelet-config.v1beta1/).
--->
-有关 `KubeletConfiguration` 结构的详细信息，可参阅
-[`KubeletConfiguration` 参考文档](/docs/reference/config-api/kubelet-config.v1beta1/)。
+   ['kubeadm init phase etcd local'](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-etcd)
+   命令单独为本地 etcd 生成静态 Pod 清单。
 
 <!--
 ### Wait for the control plane to come up
@@ -738,7 +681,7 @@ kubeadm waits (upto 4m0s) until `localhost:6443/healthz` (kube-apiserver livenes
 deadlock conditions, kubeadm fails fast if `localhost:10255/healthz` (kubelet liveness) or
 `localhost:10255/healthz/syncloop` (kubelet readiness) don't return `ok` within 40s and 60s respectively.
 -->
-kubeadm 等待（最多 4m0s），直到 `localhost:6443/healthz`（kube-apiserver 存活）返回 `ok`。 
+kubeadm 等待（最多 4m0s），直到 `localhost:6443/healthz`（kube-apiserver 存活）返回 `ok`。
 但是为了检测死锁条件，如果 `localhost:10255/healthz`（kubelet 存活）或
 `localhost:10255/healthz/syncloop`（kubelet 就绪）未能在 40s 和 60s 内未返回 `ok`，
 则 kubeadm 会快速失败。
@@ -750,30 +693,6 @@ After the control plane is up, kubeadm completes the tasks described in followin
 kubeadm 依靠 kubelet 拉取控制平面镜像并将其作为静态 Pod 正确运行。
 控制平面启动后，kubeadm 将完成以下段落中描述的任务。
 
-<!--
-### (optional) Write base kubelet configuration
--->
-### （可选）编写基本 kubelet 配置  {#write-base-kubelet-configuration}
-
-{{< feature-state for_k8s_version="v1.11" state="beta" >}}
-
-<!--
-If kubeadm is invoked with `--feature-gates=DynamicKubeletConfig`:
--->
-如果带 `--feature-gates=DynamicKubeletConfig` 参数调用 kubeadm，则 kubeadm：
-
-<!--  
-1. Write the kubelet base configuration into the `kubelet-base-config-v1.9` ConfigMap in the `kube-system` namespace
-2. Creates RBAC rules for granting read access to that ConfigMap to all bootstrap tokens and all kubelet instances
-   (that is `system:bootstrappers:kubeadm:default-node-token` and `system:nodes` groups)
-3. Enable the dynamic kubelet configuration feature for the initial control-plane node by pointing `Node.spec.configSource` to the newly-created ConfigMap
--->
-1. 将 kubelet 基本配置写入 `kube-system` 名字空间的 `kubelet-base-config-v1.9` ConfigMap 中。
-2. 创建 RBAC 规则，以授予对所有引导令牌和所有 kubelet 实例对该 ConfigMap 的读取访问权限
-  （即 `system:bootstrappers:kubeadm:default-node-token` 组和 `system:nodes` 组）
-3. 通过将 `Node.spec.configSource` 指向新创建的 ConfigMap，为初始控制平面节点启用动态
-   kubelet 配置功能。
-
 <!--
 ### Save the kubeadm ClusterConfiguration in a ConfigMap for later reference
 -->
@@ -801,7 +720,7 @@ state and make new decisions based on that data.
 -->
 1. 在保存 ClusterConfiguration 之前，从配置中删除令牌等敏感信息。
 2. 可以使用
-   [`kubeadm init phase upload-config`](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-upload-config) 
+   [`kubeadm init phase upload-config`](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-upload-config)
    命令单独上传主控节点配置。
 
 <!--
@@ -815,19 +734,21 @@ As soon as the control plane is available, kubeadm executes following actions:
 一旦控制平面可用，kubeadm 将执行以下操作：
 
 <!-- 
-- Labels the node as control-plane with `node-role.kubernetes.io/master=""`
-- Taints the node with `node-role.kubernetes.io/master:NoSchedule`
+- Labels the node as control-plane with `node-role.kubernetes.io/control-plane=""`
+- Taints the node with `node-role.kubernetes.io/master:NoSchedule` and `node-role.kubernetes.io/control-plane:NoSchedule`
 -->
-- 给节点打上 `node-role.kubernetes.io/master=""` 标签，标记其为控制平面
-- 给节点打上 `node-role.kubernetes.io/master:NoSchedule` 污点
+- 给节点打上 `node-role.kubernetes.io/control-plane=""` 标签，标记其为控制平面
+- 给节点打上 `node-role.kubernetes.io/master:NoSchedule` 和 `node-role.kubernetes.io/control-plane:NoSchedule` 污点
 
 <!-- Please note that: -->
 请注意：
 
 <!-- 
+1. The `node-role.kubernetes.io/master` taint is deprecated and will be removed in kubeadm version 1.25
 1. Mark control-plane phase can be invoked individually with the [`kubeadm init phase mark-control-plane`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-mark-control-plane) command
 -->
-1. 可以使用 [`kubeadm init phase mark-control-plane`](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-mark-control-plane) 
+1. `node-role.kubernetes.io/master` 污点是已废弃的，将会在 kubeadm 1.25 版本中移除
+1. 可以使用 [`kubeadm init phase mark-control-plane`](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-mark-control-plane)
   命令单独触发控制平面标记
 
 <!--
@@ -840,17 +761,16 @@ Kubeadm uses [Authenticating with Bootstrap Tokens](/docs/reference/access-authn
 existing cluster; for more details see also [design proposal](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/cluster-lifecycle/bootstrap-discovery.md).
 -->
 
-Kubeadm 使用[引导令牌认证](/zh/docs/reference/access-authn-authz/bootstrap-tokens/)
+Kubeadm 使用[引导令牌认证](/zh-cn/docs/reference/access-authn-authz/bootstrap-tokens/)
 将新节点连接到现有集群；
 更多的详细信息，请参见
-[设计提案](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/cluster-lifecycle/bootstrap-discovery.md)。
+[设计提案](https://github.com/kubernetes/design-proposals-archive/blob/main/cluster-lifecycle/bootstrap-discovery.md)。
 
 <!-- 
 `kubeadm init` ensures that everything is properly configured for this process, and this includes following steps as well as
 setting API server and controller flags as already described in previous paragraphs.
 -->
-`kubeadm init` 确保为该过程正确配置了所有内容，这包括以下步骤以及设置 API 服务器
-和控制器标志，如前几段所述。
+`kubeadm init` 确保为该过程正确配置了所有内容，这包括以下步骤以及设置 API 服务器和控制器标志，如前几段所述。
 
 <!-- Please note that: -->
 请注意：
@@ -860,7 +780,7 @@ setting API server and controller flags as already described in previous paragra
    command, executing all the configuration steps described in following paragraphs; alternatively, each step can be invoked individually
 -->
 1. 可以使用
-   [`kubeadm init phase bootstrap-token`](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-bootstrap-token) 
+   [`kubeadm init phase bootstrap-token`](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-bootstrap-token)
    命令配置节点的 TLS 引导，执行以下段落中描述的所有配置步骤；
    或者每个步骤都单独触发。
 
@@ -892,9 +812,9 @@ Please note that:
 -->
 1. 由 `kubeadm init` 创建的默认令牌将用于在 TLS 引导过程中验证临时用户；
    这些用户会成为 `system:bootstrappers:kubeadm:default-node-token` 组的成员。
-2. 令牌的有效期有限，默认为 24 小时（间隔可以通过 `-token-ttl` 标志进行更改）
-3. 可以使用 [`kubeadm token`](/zh/docs/reference/setup-tools/kubeadm/kubeadm-token/)
-   命令创建其他令牌，这些令牌还提供其他有用的令牌管理功能
+2. 令牌的有效期有限，默认为 24 小时（间隔可以通过 `-token-ttl` 标志进行更改）。
+3. 可以使用 [`kubeadm token`](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-token/)
+   命令创建其他令牌，这些令牌还提供其他有用的令牌管理功能。
 
 <!--
 #### Allow joining nodes to call CSR API
@@ -904,8 +824,7 @@ Please note that:
 <!--
 Kubeadm ensures that users in  `system:bootstrappers:kubeadm:default-node-token` group are able to access the certificate signing API.
 -->
-Kubeadm 确保 `system:bootstrappers:kubeadm:default-node-token` 组中的用户
-能够访问证书签名 API。
+Kubeadm 确保 `system:bootstrappers:kubeadm:default-node-token` 组中的用户能够访问证书签名 API。
 
 <!-- 
 This is implemented by creating a ClusterRoleBinding named `kubeadm:kubelet-bootstrap` between the group above and the default
@@ -949,8 +868,7 @@ POST permission to `/apis/certificates.k8s.io/certificatesigningrequests/nodecli
 Kubeadm ensures that certificate rotation is enabled for nodes, and that new certificate request for nodes will get its CSR request
 automatically approved by the csrapprover controller. 
 -->
-Kubeadm 确保节点启用了证书轮换，csrapprover 控制器将自动批准节点的
-新证书的 CSR 请求。
+Kubeadm 确保节点启用了证书轮换，csrapprover 控制器将自动批准节点的新证书的 CSR 请求。
 
 <!-- 
 This is implemented by creating ClusterRoleBinding named `kubeadm:node-autoapprove-certificate-rotation` between the  `system:nodes` group
@@ -988,10 +906,10 @@ Please note that:
 to the internet; worst-case scenario here is a DoS attack where an attacker uses all the in-flight requests the kube-apiserver
 can handle to serving the `cluster-info` ConfigMap.
 -->
-1. 对 `cluster-info` ConfigMap 的访问 _不受_ 速率限制。
+1. 对 `cluster-info` ConfigMap 的访问 **不受** 速率限制。
    如果你把 API 服务器暴露到外网，这可能是一个问题，也可能不是；
-   这里最坏的情况是 DoS 攻击，攻击者使用 kube-apiserver 能够处理的所有动态请求
-   来为 `cluster-info` ConfigMap 提供服务。
+   这里最坏的情况是 DoS 攻击，攻击者使用 kube-apiserver 能够处理的所有动态请求来为
+   `cluster-info` ConfigMap 提供服务。
 
 <!--
 ### Install addons
@@ -1012,7 +930,7 @@ Please note that:
 1. This phase can be invoked individually with the [`kubeadm init phase addon all`](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-addon) command. 
 -->
 1. 此步骤可以调用
-   ['kubeadm init phase addon all'](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-addon)
+   ['kubeadm init phase addon all'](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-addon)
    命令单独执行。
 
 <!--
@@ -1046,7 +964,7 @@ A ServiceAccount for `kube-proxy` is created in the `kube-system` namespace; the
 -->
 - CoreDNS 服务的名称为 `kube-dns`。这样做是为了防止当用户将集群 DNS 从 kube-dns
   切换到 CoreDNS 时出现服务中断。`--config` 方法在
-  [这里](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-addon)
+  [这里](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-addon)
   有描述。
 - 在 `kube-system` 名字空间中创建 CoreDNS 的 ServiceAccount
 - `coredns` 的 ServiceAccount 绑定了 `system:coredns` ClusterRole 中的特权
@@ -1077,8 +995,8 @@ This is split into discovery (having the Node trust the Kubernetes Master) and T
 <!-- 
 see [Authenticating with Bootstrap Tokens](/docs/reference/access-authn-authz/bootstrap-tokens/) or the corresponding [design proposal](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/cluster-lifecycle/bootstrap-discovery.md). 
 -->
-请参阅[使用引导令牌进行身份验证](/zh/docs/reference/access-authn-authz/bootstrap-tokens/)
-或相应的[设计提案](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/cluster-lifecycle/bootstrap-discovery.md)。
+请参阅[使用引导令牌进行身份验证](/zh-cn/docs/reference/access-authn-authz/bootstrap-tokens/)
+或相应的[设计提案](https://github.com/kubernetes/design-proposals-archive/blob/main/cluster-lifecycle/bootstrap-discovery.md)。
 
 <!--
 ### Preflight checks
@@ -1096,18 +1014,16 @@ cluster startup problems.
 
 <!--  
 1. `kubeadm join` preflight checks are basically a subset `kubeadm init` preflight checks
-1. Starting from 1.9, kubeadm provides better support for CRI-generic functionality; in that case, docker specific controls
-   are skipped or replaced by similar controls for crictl.
+1. Starting from 1.24, kubeadm uses crictl to communicate to all known CRI endpoints.
 1. Starting from 1.9, kubeadm provides support for joining nodes running on Windows; in that case, linux specific controls are skipped.
 1. In any case the user can skip specific preflight checks (or eventually all preflight checks) with the `--ignore-preflight-errors` option.
 -->
 1. `kubeadm join` 预检基本上是 `kubeadm init` 预检的一个子集
-2. 从 1.9 开始，kubeadm 为 CRI 通用的功能提供了更好的支持；在这种情况下，
-   Docker 特定的控制参数将跳过或替换为 crictl 中与之相似的控制参数。
+2. 从 1.24 开始，kubeadm 使用 crictl 与所有已知的 CRI 端点进行通信。
 3. 从 1.9 开始，kubeadm 支持加入在 Windows 上运行的节点；在这种情况下，
    将跳过 Linux 特定的控制参数。
-4. 在任何情况下，用户都可以通过 `--ignore-preflight-errors` 选项跳过
-   特定的预检（或者进而跳过所有预检）。
+4. 在任何情况下，用户都可以通过 `--ignore-preflight-errors`
+   选项跳过特定的预检（或者进而跳过所有预检）。
 
 <!--
 ### Discovery cluster-info
@@ -1147,13 +1063,13 @@ the cluster CA certificates from the  `cluster-info` ConfigMap in the `kube-publ
   - As a additional validation, the CA certificate is retrieved via secure connection and then compared with the CA retrieved initially
 -->
 - 首先，通过不安全连接检索 CA 证书（这是可能的，因为 `kubeadm init` 授予
-  `system:unauthenticated` 的用户对 `cluster-info` 访问权限）
+  `system:unauthenticated` 的用户对 `cluster-info` 访问权限）。
 - 然后 CA 证书通过以下验证步骤：
   - 基本验证：使用令牌 ID 而不是 JWT 签名
   - 公钥验证：使用提供的 `--discovery-token-ca-cert-hash`。这个值来自 `kubeadm init` 的输出，
     或者可以使用标准工具计算（哈希值是按 RFC7469 中主体公钥信息（SPKI）对象的字节计算的）
     `--discovery-token-ca-cert-hash` 标志可以重复多次，以允许多个公钥。
-  - 作为附加验证，通过安全连接检索 CA 证书，然后与初始检索的 CA 进行比较
+  - 作为附加验证，通过安全连接检索 CA 证书，然后与初始检索的 CA 进行比较。
 
 <!-- Please note that: -->
 请注意：
@@ -1174,8 +1090,7 @@ the cluster CA certificates from the  `cluster-info` ConfigMap in the `kube-publ
 If `kubeadm join` is invoked with `--discovery-file`, file discovery is used; this file can be a local file or downloaded via an HTTPS URL; in case of HTTPS, the host installed CA bundle is used to verify the connection. 
 -->
 如果带 `--discovery-file` 参数调用 `kubeadm join`，则使用文件发现功能；
-该文件可以是本地文件或通过 HTTPS URL 下载；对于 HTTPS，主机安装的 CA 包
-用于验证连接。
+该文件可以是本地文件或通过 HTTPS URL 下载；对于 HTTPS，主机安装的 CA 包用于验证连接。
 
 <!--  
 With file discovery, the cluster CA certificates is provided into the file itself; in fact, the discovery file is a kubeconfig
@@ -1184,7 +1099,7 @@ when the connection with the cluster is established, kubeadm try to access the `
 -->
 通过文件发现，集群 CA 证书是文件本身提供；事实上，这个发现文件是一个 kubeconfig 文件，
 只设置了 `server` 和 `certificate-authority-data` 属性，
-如 [`kubeadm join`](/zh/docs/reference/setup-tools/kubeadm/kubeadm-join/#file-or-https-based-discovery)
+如 [`kubeadm join`](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-join/#file-or-https-based-discovery)
 参考文档中所述，当与集群建立连接时，kubeadm 尝试访问 `cluster-info` ConfigMap，
 如果可用，就使用它。
 
@@ -1203,8 +1118,8 @@ TLS 引导。
 The TLS bootstrap mechanism uses the shared token to temporarily authenticate with the Kubernetes API server to submit a certificate
 signing request (CSR) for a locally created key pair.
 -->
-TLS 引导机制使用共享令牌对 Kubernetes API 服务器进行临时身份验证，以便
-为本地创建的密钥对提交证书签名请求（CSR）。
+TLS 引导机制使用共享令牌对 Kubernetes API 服务器进行临时身份验证，
+以便为本地创建的密钥对提交证书签名请求（CSR）。
 
 <!--  
 The request is then automatically approved and the operation completes saving `ca.crt` file and `kubelet.conf` file to be used
@@ -1229,36 +1144,3 @@ kubelet 加入集群，同时删除 `bootstrap-kubelet.conf`。
   该成员在 `kubeadm init` 过程中被授予对 CSR API 的访问权
 - 根据 `kubeadm init` 过程的配置，自动 CSR 审批由 csrapprover 控制器管理
 
-<!--
-### (optional) Write init kubelet configuration
--->
-### （可选）写入初始的 kubelet 配置  {#write-init-kubelet-configuration}
-
-{{< feature-state for_k8s_version="v1.11" state="beta" >}}
-
-<!--
-If kubeadm is invoked with `--feature-gates=DynamicKubeletConfig`:
--->
-如果带 `--feature-gates=DynamicKubeletConfig` 参数调用 kubeadm，则 kubeadm：
-
-<!--  
-1. Read the kubelet base configuration from the `kubelet-base-config-v1.x` ConfigMap in the `kube-system` namespace  using the
-   Bootstrap Token credentials, and write it to disk as kubelet init configuration file  `/var/lib/kubelet/config/init/kubelet`
-2. As soon as kubelet starts with the Node's own credential (`/etc/kubernetes/kubelet.conf`), update current node configuration
-   specifying that the source for the node/kubelet configuration is the above ConfigMap.
--->
-1. 使用引导令牌凭证从 `kube-system` 名字空间中 ConfigMap `kubelet-base-config-v1.x`
-   中读取 kubelet 基本配置，
-   并将其作为 kubelet 初始配置文件 `/var/lib/kubelet/config/init/kubelet` 写入磁盘。
-2. 一旦 kubelet 开始使用节点自己的凭据（`/etc/kubernetes/kubelet.conf`），
-   就更新当前节点配置，指定该节点或 kubelet 配置来自上述 ConfigMap。
-
-<!-- Please note that: -->
-请注意：
-
-<!-- 
-1. To make dynamic kubelet configuration work, flag `--dynamic-config-dir=/var/lib/kubelet/config/dynamic` should be specified in `/etc/systemd/system/kubelet.service.d/10-kubeadm.conf` 
--->
-1. 要使动态 kubelet 配置生效，应在 `/etc/systemd/system/kubelet.service.d/10-kubeadm.conf`
-   中指定 `--dynamic-config-dir=/var/lib/kubelet/config/dynamic` 标志。
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-alpha.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-alpha.md
similarity index 84%
rename from content/zh/docs/reference/setup-tools/kubeadm/kubeadm-alpha.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-alpha.md
index 3276fd9acc..350f907bb1 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-alpha.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-alpha.md
@@ -31,12 +31,12 @@ Currently there are no experimental commands under `kubeadm alpha`.
 * [kubeadm reset](/docs/reference/setup-tools/kubeadm/kubeadm-reset/) to revert any changes made to this host by `kubeadm init` or `kubeadm join`
 -->
 * 用来启动引导 Kubernetes 控制平面节点的
-  [kubeadm init](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init/)
+  [kubeadm init](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init/)
   命令
 * 用来将节点连接到集群的
-  [kubeadm join](/zh/docs/reference/setup-tools/kubeadm/kubeadm-join/) 
+  [kubeadm join](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-join/) 
   命令
 * 用来还原 `kubeadm init` 或 `kubeadm join` 操作对主机所做的任何更改的
-  [kubeadm reset](/zh/docs/reference/setup-tools/kubeadm/kubeadm-reset/)
+  [kubeadm reset](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-reset/)
   命令
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-certs.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-certs.md
similarity index 86%
rename from content/zh/docs/reference/setup-tools/kubeadm/kubeadm-certs.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-certs.md
index 9f790c9383..627bff0ddc 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-certs.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-certs.md
@@ -10,7 +10,7 @@ For more details on how these commands can be used, see
 [Certificate Management with kubeadm](/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/).
 -->
 `kubeadm certs` 提供管理证书的工具。关于如何使用这些命令的细节，可参见
-[使用 kubeadm 管理证书](/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/)。
+[使用 kubeadm 管理证书](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/)。
 
 ## kubeadm certs {#cmd-certs}
 
@@ -31,7 +31,7 @@ For more details see [Manual certificate renewal](/docs/tasks/administer-cluster
 -->
 你可以使用 `all` 子命令来续订所有 Kubernetes 证书，也可以选择性地续订部分证书。
 更多的相关细节，可参见
-[手动续订证书](/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/#manual-certificate-renewal)。
+[手动续订证书](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/#manual-certificate-renewal)。
 
 {{< tabs name="tab-certs-renew" >}}
 {{< tab name="renew" include="generated/kubeadm_certs_renew.md" />}}
@@ -57,8 +57,8 @@ and [`kubeadm join`](/docs/reference/setup-tools/kubeadm/kubeadm-join)
 to enable the automatic copy of certificates when joining additional control-plane nodes.
 -->
 此命令可用来生成一个新的控制面证书密钥。密钥可以作为 `--certificate-key`
-标志的取值传递给 [`kubeadm init`](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init)
-和 [`kubeadm join`](/zh/docs/reference/setup-tools/kubeadm/kubeadm-join)
+标志的取值传递给 [`kubeadm init`](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init)
+和 [`kubeadm join`](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-join)
 命令，从而在添加新的控制面节点时能够自动完成证书复制。
 
 {{< tabs name="tab-certs-certificate-key" >}}
@@ -74,7 +74,7 @@ For more details see
 -->
 此命令检查 kubeadm 所管理的本地 PKI 中的证书是否以及何时过期。
 更多的相关细节，可参见
-[检查证书过期](/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/#check-certificate-expiration)。
+[检查证书过期](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/#check-certificate-expiration)。
 
 
 {{< tabs name="tab-certs-check-expiration" >}}
@@ -102,12 +102,12 @@ The user can then sign the CSRs with a CA of their choice.
 * [kubeadm reset](/docs/reference/setup-tools/kubeadm/kubeadm-reset/) to revert any changes made to this host by `kubeadm init` or `kubeadm join`
 -->
 * 用来启动引导 Kubernetes 控制面节点的
-  [kubeadm init](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init/)
+  [kubeadm init](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init/)
   命令
 * 用来将节点连接到集群的
-  [kubeadm join](/zh/docs/reference/setup-tools/kubeadm/kubeadm-join/)
+  [kubeadm join](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-join/)
   命令
 * 用来回滚 `kubeadm init` 或 `kubeadm join` 对当前主机所做修改的
-  [kubeadm reset](/zh/docs/reference/setup-tools/kubeadm/kubeadm-reset/)
+  [kubeadm reset](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-reset/)
   命令
 
diff --git a/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-config.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-config.md
new file mode 100644
index 0000000000..0d12828260
--- /dev/null
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-config.md
@@ -0,0 +1,90 @@
+---
+title: kubeadm config
+content_type: concept
+weight: 50
+---
+
+<!-- overview -->
+<!--
+During `kubeadm init`, kubeadm uploads the `ClusterConfiguration` object to your cluster
+in a ConfigMap called `kubeadm-config` in the `kube-system` namespace. This configuration is then read during
+`kubeadm join`, `kubeadm reset` and `kubeadm upgrade`.
+-->
+在 `kubeadm init` 执行期间，kubeadm 将 `ClusterConfiguration` 对象上传
+到你的集群的 `kube-system` 名字空间下名为 `kubeadm-config` 的 ConfigMap 对象中。
+然后在 `kubeadm join`、`kubeadm reset` 和 `kubeadm upgrade` 执行期间读取此配置。 
+
+<!--
+You can use `kubeadm config print` to print the default static configuration that kubeadm
+uses for `kubeadm init` and `kubeadm join`.
+-->
+你可以使用 `kubeadm config print` 命令打印默认静态配置，
+kubeadm 运行 `kubeadm init` and `kubeadm join` 时将使用此配置。
+
+<!-- 
+The output of the command is meant to serve as an example. You must manually edit the output
+of this command to adapt to your setup. Remove the fields that you are not certain about and kubeadm
+will try to default them on runtime by examining the host. 
+-->
+{{< note >}}
+此命令的输出旨在作为示例。你必须手动编辑此命令的输出来适配你的设置。
+删除你不确定的字段，kubeadm 将通过检查主机来尝试在运行时给它们设默认值。
+{{< /note >}}
+
+<!--
+For more information on `init` and `join` navigate to
+[Using kubeadm init with a configuration file](/docs/reference/setup-tools/kubeadm/kubeadm-init/#config-file)
+or [Using kubeadm join with a configuration file](/docs/reference/setup-tools/kubeadm/kubeadm-join/#config-file).
+-->
+更多有关 `init` 和 `join` 的信息请浏览[使用带配置文件的 kubeadm init](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init/#config-file)
+或[使用带配置文件的 kubeadm join](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-join/#config-file)。
+
+<!--
+For more information on using the kubeadm configuration API navigate to
+[Customizing components with the kubeadm API](/docs/setup/production-environment/tools/kubeadm/control-plane-flags).
+-->
+有关使用 kubeadm 的配置 API 的更多信息，
+请浏览[使用 kubeadm API 来自定义组件](/zh-cn/docs/setup/production-environment/tools/kubeadm/control-plane-flags)。
+
+<!-- 
+You can use `kubeadm config migrate` to convert your old configuration files that contain a deprecated
+API version to a newer, supported API version. 
+-->
+你可以使用 `kubeadm config migrate` 来转换旧配置文件，
+把其中已弃用的 API 版本更新为受支持的 API 版本。
+
+<!-- 
+`kubeadm config images list` and `kubeadm config images pull` can be used to list and pull the images
+that kubeadm requires. 
+-->
+`kubeadm config images list` 和 `kubeadm config images pull` 可以用来列出和拉取 kubeadm 所需的镜像。
+
+<!-- body -->
+## kubeadm config print {#cmd-config-print}
+{{< include "generated/kubeadm_config_print.md" >}}
+
+## kubeadm config print init-defaults {#cmd-config-print-init-defaults}
+{{< include "generated/kubeadm_config_print_init-defaults.md" >}}
+
+## kubeadm config print join-defaults {#cmd-config-print-join-defaults}
+{{< include "generated/kubeadm_config_print_join-defaults.md" >}}
+
+## kubeadm config migrate {#cmd-config-migrate}
+{{< include "generated/kubeadm_config_migrate.md" >}}
+
+## kubeadm config images list {#cmd-config-images-list}
+{{< include "generated/kubeadm_config_images_list.md" >}}
+
+## kubeadm config images pull {#cmd-config-images-pull}
+{{< include "generated/kubeadm_config_images_pull.md" >}}
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* [kubeadm upgrade](/docs/reference/setup-tools/kubeadm/kubeadm-upgrade/) to upgrade a Kubernetes cluster to a newer version
+-->
+
+* [kubeadm upgrade](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-upgrade/)
+  将 Kubernetes 集群升级到更新版本 [kubeadm upgrade]
+
+
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-init-phase.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init-phase.md
similarity index 84%
rename from content/zh/docs/reference/setup-tools/kubeadm/kubeadm-init-phase.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init-phase.md
index 86664ff8d6..86884dd852 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-init-phase.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init-phase.md
@@ -21,7 +21,7 @@ if you wish to apply customization.
 `kubeadm init phase` is consistent with the [kubeadm init workflow](/docs/reference/setup-tools/kubeadm/kubeadm-init/#init-workflow),
 and behind the scene both use the same code.
 -->
-`kubeadm init phase` 与 [kubeadm init 工作流](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init/#init-workflow)
+`kubeadm init phase` 与 [kubeadm init 工作流](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init/#init-workflow)
 一致，后台都使用相同的代码。
 
 <!--
@@ -46,7 +46,7 @@ Using this command you can execute preflight checks on a control-plane node.
 <!--
 This phase will write the kubelet configuration file and environment file and then start the kubelet.
 -->
-此阶段将检查 kubelet 配置文件和环境文件，然后启动 kubelet。
+此阶段将写入 kubelet 配置文件和环境文件，然后启动 kubelet。
 
 {{< tabs name="tab-kubelet-start" >}}
 {{< tab name="kubelet-start" include="generated/kubeadm_init_phase_kubelet-start.md" />}}
@@ -88,7 +88,6 @@ You can create all required kubeconfig files by calling the `all` subcommand or
 -->
 可以通过调用 `all` 子命令来创建所有必需的 kubeconfig 文件，或者分别调用它们。
 
-
 {{< tabs name="tab-kubeconfig" >}}
 {{< tab name="kubeconfig" include="generated/kubeadm_init_phase_kubeconfig.md" />}}
 {{< tab name="all" include="generated/kubeadm_init_phase_kubeconfig_all.md" />}}
@@ -116,7 +115,6 @@ Using this phase you can create all required static Pod files for the control pl
 {{< tab name="scheduler" include="generated/kubeadm_init_phase_control-plane_scheduler.md" />}}
 {{< /tabs >}}
 
-
 <!--
 ## kubeadm init phase etcd {#cmd-phase-etcd}
 -->
@@ -125,14 +123,13 @@ Using this phase you can create all required static Pod files for the control pl
 <!--
 Use the following phase to create a local etcd instance based on a static Pod file.
 -->
-根据静态 Pod 文件，使用以下阶段创建本地 etcd 实例。
+根据静态 Pod 文件，使用以下阶段创建一个本地 etcd 实例。
 
 {{< tabs name="tab-etcd" >}}
 {{< tab name="etcd" include="generated/kubeadm_init_phase_etcd.md" />}}
 {{< tab name="local" include="generated/kubeadm_init_phase_etcd_local.md" />}}
 {{< /tabs >}}
 
-
 <!--
 ## kubeadm init phase upload-config {#cmd-phase-upload-config}
 -->
@@ -142,8 +139,8 @@ Use the following phase to create a local etcd instance based on a static Pod fi
 You can use this command to upload the kubeadm configuration to your cluster.
 Alternatively, you can use [kubeadm config](/docs/reference/setup-tools/kubeadm/kubeadm-config/).
 -->
-可以使用此命令将 kubeadm 配置文件上传到集群。或者使用
-[kubeadm config](/zh/docs/reference/setup-tools/kubeadm/kubeadm-config/)。
+可以使用此命令将 kubeadm 配置上传到集群。或者使用
+[kubeadm config](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-config/)。
 
 {{< tabs name="upload-config" >}}
 {{< tab name="upload-config" include="generated/kubeadm_init_phase_upload-config.md" />}}
@@ -152,7 +149,6 @@ Alternatively, you can use [kubeadm config](/docs/reference/setup-tools/kubeadm/
 {{< tab name="kubelet" include="generated/kubeadm_init_phase_upload-config_kubelet.md" />}}
 {{< /tabs >}}
 
-
 <!--
 ## kubeadm init phase upload-certs {#cmd-phase-upload-certs}
 -->
@@ -168,23 +164,21 @@ By default the certs and encryption key expire after two hours.
 {{< tab name="upload-certs" include="generated/kubeadm_init_phase_upload-certs.md" />}}
 {{< /tabs >}}
 
-
 <!--
 ## kubeadm init phase mark-control-plane {#cmd-phase-mark-control-plane}
 -->
 ## kubeadm init phase mark-control-plane {#cmd-phase-mark-control-plane}
 
 <!--
-Use the following phase to label and taint the node with the `node-role.kubernetes.io/master=""` key-value pair.
+Use the following phase to label and taint the node as a control plane node.
 -->
-使用以下阶段来给具有 `node-role.kubernetes.io/master=""` 键值对的节点
+使用以下阶段来给作为控制平面的节点
 打标签（label）和记录污点（taint）。
 
 {{< tabs name="tab-mark-control-plane" >}}
 {{< tab name="mark-control-plane" include="generated/kubeadm_init_phase_mark-control-plane.md" />}}
 {{< /tabs >}}
 
-
 <!--
 ## kubeadm init phase bootstrap-token {#cmd-phase-bootstrap-token}
 -->
@@ -199,7 +193,7 @@ Use the following phase to configure bootstrap tokens.
 {{< tab name="bootstrap-token" include="generated/kubeadm_init_phase_bootstrap-token.md" />}}
 {{< /tabs >}}
 
-## kubeadm init phase kubelet-finialize {#cmd-phase-kubelet-finalize-all}
+## kubeadm init phase kubelet-finalize {#cmd-phase-kubelet-finalize-all}
 
 <!-- 
 Use the following phase to update settings relevant to the kubelet after TLS
@@ -210,9 +204,9 @@ phases.
 你可以使用 `all` 子命令来运行所有 `kubelet-finalize` 阶段。
 
 {{< tabs name="tab-kubelet-finalize" >}}
-{{< tab name="kublet-finalize" include="generated/kubeadm_init_phase_kubelet-finalize.md" />}}
-{{< tab name="kublet-finalize-all" include="generated/kubeadm_init_phase_kubelet-finalize_all.md" />}}
-{{< tab name="kublet-finalize-cert-rotation" include="generated/kubeadm_init_phase_kubelet-finalize_experimental-cert-rotation.md" />}}
+{{< tab name="kubelet-finalize" include="generated/kubeadm_init_phase_kubelet-finalize.md" />}}
+{{< tab name="kubelet-finalize-all" include="generated/kubeadm_init_phase_kubelet-finalize_all.md" />}}
+{{< tab name="kubelet-finalize-cert-rotation" include="generated/kubeadm_init_phase_kubelet-finalize_experimental-cert-rotation.md" />}}
 {{< /tabs >}}
 
 <!--
@@ -234,11 +228,11 @@ install them selectively.
 {{< /tabs >}}
 
 <!--
-For more details on each field in the `v1beta2` configuration you can navigate to our
-[API reference pages.] (https://godoc.org/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta2)
+For more details on each field in the `v1beta3` configuration you can navigate to our
+[API reference pages.](/docs/reference/config-api/kubeadm-config.v1beta3/)
 -->
-有关 `v1beta2` 配置中每个字段的更多详细信息，可以访问
-[API](https://godoc.org/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta2)。
+有关 `v1beta3` 配置中每个字段的更多详细信息，可以访问
+[API](/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3/)。
 
 ## {{% heading "whatsnext" %}}
 
@@ -248,11 +242,11 @@ For more details on each field in the `v1beta2` configuration you can navigate t
 * [kubeadm reset](/docs/reference/setup-tools/kubeadm/kubeadm-reset/) to revert any changes made to this host by `kubeadm init` or `kubeadm join`
 * [kubeadm alpha](/docs/reference/setup-tools/kubeadm/kubeadm-alpha/) to try experimental functionality
 -->
-* [kubeadm init](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init/)
+* [kubeadm init](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init/)
   引导 Kubernetes 控制平面节点
-* [kubeadm join](/zh/docs/reference/setup-tools/kubeadm/kubeadm-join/)
+* [kubeadm join](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-join/)
   将节点加入到集群
-* [kubeadm reset](/zh/docs/reference/setup-tools/kubeadm/kubeadm-reset/)
+* [kubeadm reset](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-reset/)
   恢复通过 `kubeadm init` 或 `kubeadm join` 操作对主机所做的任何更改
-* [kubeadm alpha](/zh/docs/reference/setup-tools/kubeadm/kubeadm-alpha/)
+* [kubeadm alpha](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-alpha/)
   尝试实验性功能
diff --git a/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init.md
new file mode 100644
index 0000000000..a79b72afc7
--- /dev/null
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init.md
@@ -0,0 +1,699 @@
+---
+title: kubeadm init
+content_type: concept
+weight: 20
+---
+
+<!--
+reviewers:
+- luxas
+- jbeda
+title: kubeadm init
+content_type: concept
+weight: 20
+-->
+
+<!-- overview -->
+
+<!--
+This command initializes a Kubernetes control-plane node.
+-->
+此命令初始化一个 Kubernetes 控制平面节点。
+
+<!-- body -->
+
+{{< include "generated/kubeadm_init.md" >}}
+
+<!--
+### Init workflow {#init-workflow}
+-->
+### Init 命令的工作流程 {#init-workflow}
+
+<!--
+`kubeadm init` bootstraps a Kubernetes control-plane node by executing the
+following steps:
+-->
+`kubeadm init` 命令通过执行下列步骤来启动一个 Kubernetes 控制平面节点。
+
+<!--
+1. Runs a series of pre-flight checks to validate the system state
+   before making changes. Some checks only trigger warnings, others are
+   considered errors and will exit kubeadm until the problem is corrected or the
+   user specifies `--ignore-preflight-errors=<list-of-errors>`.
+-->
+1. 在做出变更前运行一系列的预检项来验证系统状态。一些检查项目仅仅触发警告，
+   其它的则会被视为错误并且退出 kubeadm，除非问题得到解决或者用户指定了
+   `--ignore-preflight-errors=<错误列表>` 参数。
+
+<!--
+1. Generates a self-signed CA to set up identities for each component in the cluster. The user can provide their
+   own CA cert and/or key by dropping it in the cert directory configured via `--cert-dir`
+   (`/etc/kubernetes/pki` by default).
+   The APIServer certs will have additional SAN entries for any `--apiserver-cert-extra-sans` arguments, lowercased if necessary.
+-->
+2. 生成一个自签名的 CA 证书来为集群中的每一个组件建立身份标识。
+   用户可以通过将其放入 `--cert-dir` 配置的证书目录中（默认为 `/etc/kubernetes/pki`）
+   来提供他们自己的 CA 证书以及/或者密钥。
+   APIServer 证书将为任何 `--apiserver-cert-extra-sans` 参数值提供附加的 SAN 条目，必要时将其小写。
+
+<!--
+1. Writes kubeconfig files in `/etc/kubernetes/`  for
+   the kubelet, the controller-manager and the scheduler to use to connect to the
+   API server, each with its own identity, as well as an additional
+   kubeconfig file for administration named `admin.conf`.
+-->
+3. 将 kubeconfig 文件写入 `/etc/kubernetes/` 目录以便 kubelet、控制器管理器和调度器用来连接到
+   API 服务器，它们每一个都有自己的身份标识，同时生成一个名为 `admin.conf` 的独立的 kubeconfig
+   文件，用于管理操作。
+
+<!--
+1. Generates static Pod manifests for the API server,
+   controller-manager and scheduler. In case an external etcd is not provided,
+   an additional static Pod manifest is generated for etcd.
+
+   Static Pod manifests are written to `/etc/kubernetes/manifests`; the kubelet
+   watches this directory for Pods to create on startup.
+
+   Once control plane Pods are up and running, the `kubeadm init` sequence can continue.
+-->
+4. 为 API 服务器、控制器管理器和调度器生成静态 Pod 的清单文件。假使没有提供一个外部的 etcd
+   服务的话，也会为 etcd 生成一份额外的静态 Pod 清单文件。
+
+   静态 Pod 的清单文件被写入到 `/etc/kubernetes/manifests` 目录；
+   kubelet 会监视这个目录以便在系统启动的时候创建 Pod。
+
+   一旦控制平面的 Pod 都运行起来，`kubeadm init` 的工作流程就继续往下执行。
+
+<!--
+1. Apply labels and taints to the control-plane node so that no additional workloads will
+   run there.
+-->
+5. 对控制平面节点应用标签和污点标记以便不会在它上面运行其它的工作负载。
+
+<!--
+1. Generates the token that additional nodes can use to register
+   themselves with a control-plane in the future. Optionally, the user can provide a
+   token via `--token`, as described in the
+   [kubeadm token](/docs/reference/setup-tools/kubeadm/kubeadm-token/) docs.
+-->
+6. 生成令牌，将来其他节点可使用该令牌向控制平面注册自己。
+   如 [kubeadm token](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-token/) 文档所述，
+   用户可以选择通过 `--token` 提供令牌。
+
+<!--
+1. Makes all the necessary configurations for allowing node joining with the
+   [Bootstrap Tokens](/docs/reference/access-authn-authz/bootstrap-tokens/) and
+   [TLS Bootstrap](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/)
+   mechanism:
+
+   - Write a ConfigMap for making available all the information required
+     for joining, and set up related RBAC access rules.
+
+   - Let Bootstrap Tokens access the CSR signing API.
+
+   - Configure auto-approval for new CSR requests.
+
+   See [kubeadm join](/docs/reference/setup-tools/kubeadm/kubeadm-join/) for additional info.
+-->
+7. 为了使得节点能够遵照[启动引导令牌](/zh-cn/docs/reference/access-authn-authz/bootstrap-tokens/)
+   和 [TLS 启动引导](/zh-cn/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/)
+   这两份文档中描述的机制加入到集群中，kubeadm 会执行所有的必要配置：
+
+   - 创建一个 ConfigMap 提供添加集群节点所需的信息，并为该 ConfigMap 设置相关的 RBAC 访问规则。
+
+   - 允许启动引导令牌访问 CSR 签名 API。
+
+   - 配置自动签发新的 CSR 请求。
+
+   更多相关信息，请查看 [kubeadm join](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-join/)。
+   
+<!-- 
+1. Installs a DNS server (CoreDNS) and the kube-proxy addon components via the API server.
+   In Kubernetes version 1.11 and later CoreDNS is the default DNS server.
+   Please note that although the DNS server is deployed, it will not be scheduled until CNI is installed.
+-->
+8. 通过 API 服务器安装一个 DNS 服务器 (CoreDNS) 和 kube-proxy 附加组件。
+   在 Kubernetes 版本 1.11 和更高版本中，CoreDNS 是默认的 DNS 服务器。
+   请注意，尽管已部署 DNS 服务器，但直到安装 CNI 时才调度它。
+
+   {{< warning >}}
+   <!--
+   kube-dns usage with kubeadm is deprecated as of v1.18 and is removed in v1.21.
+   -->
+   从 v1.18 开始，在 kubeadm 中使用 kube-dns 的支持已被废弃，并已在 v1.21 版本中移除。
+   {{< /warning >}}
+
+<!--
+### Using init phases with kubeadm {#init-phases}
+
+Kubeadm allows you to create a control-plane node in phases using the `kubeadm init phase` command.
+-->
+### 在 kubeadm 中使用 init 阶段  {#init-phases}
+
+Kubeadm 允许你使用 `kubeadm init phase` 命令分阶段创建控制平面节点。
+
+<!--
+To view the ordered list of phases and sub-phases you can call `kubeadm init -help`. The list will be located at the top of the help screen and each phase will have a description next to it.
+Note that by calling `kubeadm init` all of the phases and sub-phases will be executed in this exact order.
+-->
+要查看阶段和子阶段的有序列表，可以调用 `kubeadm init --help`。
+该列表将位于帮助屏幕的顶部，每个阶段旁边都有一个描述。
+注意，通过调用 `kubeadm init`，所有阶段和子阶段都将按照此确切顺序执行。
+
+<!--
+Some phases have unique flags, so if you want to have a look at the list of available options add `-help`, for example:
+-->
+某些阶段具有唯一的标志，因此，如果要查看可用选项的列表，请添加 `--help`，例如：
+
+```shell
+sudo kubeadm init phase control-plane controller-manager --help
+```
+
+<!--
+You can also use `--help` to see the list of sub-phases for a certain parent phase:
+-->
+你也可以使用 `--help` 查看特定父阶段的子阶段列表：
+
+```shell
+sudo kubeadm init phase control-plane --help
+```
+
+<!--
+`kubeadm init` also exposes a flag called `--skip-phases` that can be used to skip certain phases.
+The flag accepts a list of phase names and the names can be taken from the above ordered list.
+-->
+`kubeadm init` 还公开了一个名为 `--skip-phases` 的参数，该参数可用于跳过某些阶段。
+参数接受阶段名称列表，并且这些名称可以从上面的有序列表中获取。
+
+<!--
+An example:
+-->
+例如：
+
+<!--
+# you can now modify the control plane and etcd manifest files
+-->
+```shell
+sudo kubeadm init phase control-plane all --config=configfile.yaml
+sudo kubeadm init phase etcd local --config=configfile.yaml
+# 你现在可以修改控制平面和 etcd 清单文件
+sudo kubeadm init --skip-phases=control-plane,etcd --config=configfile.yaml
+```
+
+<!--
+What this example would do is write the manifest files for the control plane and etcd in
+`/etc/kubernetes/manifests` based on the configuration in `configfile.yaml`. This allows you to
+modify the files and then skip these phases using `--skip-phases`. By calling the last command you
+will create a control plane node with the custom manifest files.
+-->
+该示例将执行的操作是基于 `configfile.yaml` 中的配置在 `/etc/kubernetes/manifests`
+中写入控制平面和 etcd 的清单文件。
+这允许你修改文件，然后使用 `--skip-phases` 跳过这些阶段。
+通过调用最后一个命令，你将使用自定义清单文件创建一个控制平面节点。
+
+{{< feature-state for_k8s_version="v1.22" state="beta" >}}
+
+<!-- 
+Alternatively, you can use the `skipPhases` field under `InitConfiguration`.
+-->
+或者，你可以使用 `InitConfiguration` 下的 `skipPhases` 字段。
+
+<!--
+### Using kubeadm init with a configuration file {#config-file}
+-->
+### 结合一份配置文件来使用 kubeadm init {#config-file}
+
+{{< caution >}}
+<!--
+The config file is still considered beta and may change in future versions.
+-->
+配置文件的功能仍然处于 alpha 状态并且在将来的版本中可能会改变。
+{{< /caution >}}
+
+<!--
+It's possible to configure `kubeadm init` with a configuration file instead of command
+line flags, and some more advanced features may only be available as
+configuration file options. This file is passed using the `--config` flag and it must
+contain a `ClusterConfiguration` structure and optionally more structures separated by `---\n`
+Mixing `--config` with others flags may not be allowed in some cases.
+-->
+通过一份配置文件而不是使用命令行参数来配置 `kubeadm init` 命令是可能的，
+但是一些更加高级的功能只能够通过配置文件设定。
+这份配置文件通过 `--config` 选项参数指定的，
+它必须包含 `ClusterConfiguration` 结构，并可能包含更多由 `---\n` 分隔的结构。
+在某些情况下，可能不允许将 `--config` 与其他标志混合使用。
+
+<!--
+The default configuration can be printed out using the
+[kubeadm config print](/docs/reference/setup-tools/kubeadm/kubeadm-config/) command.
+
+If your configuration is not using the latest version it is **recommended** that you migrate using
+the [kubeadm config migrate](/docs/reference/setup-tools/kubeadm/kubeadm-config/) command.
+
+For more information on the fields and usage of the configuration you can navigate to our
+[API reference page](/docs/reference/config-api/kubeadm-config.v1beta3/).
+-->
+可以使用 [kubeadm config print](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-config/)
+命令打印出默认配置。
+
+如果你的配置没有使用最新版本，
+**推荐**使用 [kubeadm config migrate](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-config/)
+命令进行迁移。
+
+关于配置的字段和用法的更多信息，你可以访问 [API 参考页面](/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3/)。
+
+<!-- 
+### Using kubeadm init with feature gates {#feature-gates} 
+-->
+### 使用 kubeadm init 时设置特性门控 {#feature-gates}
+
+<!-- 
+Kubeadm supports a set of feature gates that are unique to kubeadm and can only be applied
+during cluster creation with `kubeadm init`. These features can control the behavior
+of the cluster. Feature gates are removed after a feature graduates to GA.
+-->
+Kubeadm 支持一组独有的特性门控，只能在 `kubeadm init` 创建集群期间使用。
+这些特性可以控制集群的行为。特性门控会在毕业到 GA 后被移除。
+
+<!-- 
+To pass a feature gate you can either use the `--feature-gates` flag for
+`kubeadm init`, or you can add items into the `featureGates` field when you pass
+a [configuration file](/docs/reference/config-api/kubeadm-config.v1beta3/#kubeadm-k8s-io-v1beta3-ClusterConfiguration)
+using `--config`.
+-->
+你可以使用 `--feature-gates` 标志来为 `kubeadm init` 设置特性门控，
+或者你可以在用 `--config` 传递[配置文件](/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3/#kubeadm-k8s-io-v1beta3-ClusterConfiguration)
+时添加条目到 `featureGates` 字段中。
+
+<!-- 
+Passing [feature gates for core Kubernetes components](/docs/reference/command-line-tools-reference/feature-gates)
+directly to kubeadm is not supported. Instead, it is possible to pass them by
+[Customizing components with the kubeadm API](/docs/setup/production-environment/tools/kubeadm/control-plane-flags/).
+-->
+直接传递 [Kubernetes 核心组件的特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates)给 kubeadm 是不支持的。
+相反，可以通过[使用 kubeadm API 的自定义组件](/zh-cn/docs/setup/production-environment/tools/kubeadm/control-plane-flags/)来传递。
+
+<!-- 
+List of feature gates: 
+-->
+特性门控的列表：
+
+{{< table caption="kubeadm 特性门控" >}}
+特性 | 默认值 | Alpha | Beta
+:-------|:--------|:------|:-----
+`PublicKeysECDSA` | `false` | 1.19 | -
+`RootlessControlPlane` | `false` | 1.22 | -
+`UnversionedKubeletConfigMap` | `true` | 1.22 | 1.23
+{{< /table >}}
+
+{{< note >}}
+<!-- 
+Once a feature gate goes GA it is removed from this list as its value becomes locked to `true` by default. 
+-->
+一旦特性门控变成了 GA，那它将会从这个列表中移除，因为它的值会被默认锁定为 `true`。
+{{< /note >}}
+
+<!-- 
+Feature gate descriptions: 
+-->
+特性门控的描述：
+
+<!-- 
+`PublicKeysECDSA`
+: Can be used to create a cluster that uses ECDSA certificates instead of the default RSA algorithm.
+Renewal of existing ECDSA certificates is also supported using `kubeadm certs renew`, but you cannot
+switch between the RSA and ECDSA algorithms on the fly or during upgrades.
+-->
+`PublicKeysECDSA`
+: 可用于创建集群时使用 ECDSA 证书而不是默认 RSA 算法。
+支持用 `kubeadm certs renew` 更新现有 ECDSA 证书，
+但你不能在集群运行期间或升级期间切换 RSA 和 ECDSA 算法。
+
+<!-- 
+`RootlessControlPlane`
+: Setting this flag configures the kubeadm deployed control plane component static Pod containers
+for `kube-apiserver`, `kube-controller-manager`, `kube-scheduler` and `etcd` to run as non-root users.
+If the flag is not set, those components run as root. You can change the value of this feature gate before
+you upgrade to a newer version of Kubernetes.
+-->
+`RootlessControlPlane`
+: 设置此标志来配置 kubeadm 所部署的控制平面组件中的静态 Pod 容器
+`kube-apiserver`、`kube-controller-manager`、`kube-scheduler` 和 `etcd` 以非 root 用户身份运行。
+如果未设置该标志，则这些组件以 root 身份运行。
+你可以在升级到更新版本的 Kubernetes 之前更改此特性门控的值。
+
+<!-- 
+`UnversionedKubeletConfigMap`
+: This flag controls the name of the {{< glossary_tooltip text="ConfigMap" term_id="configmap" >}} where kubeadm stores
+kubelet configuration data. With this flag not specified or set to `true`, the ConfigMap is named `kubelet-config`.
+If you set this flag to `false`, the name of the ConfigMap includes the major and minor version for Kubernetes
+(for example: `kubelet-config-{{< skew currentVersion >}}`). Kubeadm ensures that RBAC rules for reading and writing
+that ConfigMap are appropriate for the value you set. When kubeadm writes this ConfigMap (during `kubeadm init`
+or `kubeadm upgrade apply`), kubeadm respects the value of `UnversionedKubeletConfigMap`. When reading that ConfigMap
+(during `kubeadm join`, `kubeadm reset`, `kubeadm upgrade ...`), kubeadm attempts to use unversioned ConfigMap name first;
+if that does not succeed, kubeadm falls back to using the legacy (versioned) name for that ConfigMap.
+-->
+`UnversionedKubeletConfigMap`
+: 此标志控制 kubeadm 存储 kubelet 配置数据的 {{<glossary_tooltip text="ConfigMap" term_id="configmap" >}} 的名称。
+在未指定此标志或设置为 `true` 的情况下，此 ConfigMap 被命名为 `kubelet-config`。
+如果将此标志设置为 `false`，则此 ConfigMap 的名称会包括 Kubernetes 的主要版本和次要版本（例如：`kubelet-config-{{< skew currentVersion >}}`）。
+Kubeadm 会确保用于读写 ConfigMap 的 RBAC 规则适合你设置的值。
+当 kubeadm 写入此 ConfigMap 时（在 `kubeadm init` 或 `kubeadm upgrade apply` 期间），
+kubeadm 根据 `UnversionedKubeletConfigMap` 的设置值来执行操作。
+当读取此 ConfigMap 时（在 `kubeadm join`、`kubeadm reset`、`kubeadm upgrade ...` 期间），
+kubeadm 尝试首先使用无版本（后缀）的 ConfigMap 名称；
+如果不成功，kubeadm 将回退到使用该 ConfigMap 的旧（带版本号的）名称。
+
+{{< note >}}
+<!-- 
+Setting `UnversionedKubeletConfigMap` to `false` is supported but **deprecated**. 
+-->
+设置 `UnversionedKubeletConfigMap` 为 `false` 是被支持的特性，但该特性**已被弃用**。
+{{< /note >}}
+
+<!--
+### Adding kube-proxy parameters {#kube-proxy}
+
+For information about kube-proxy parameters in the kubeadm configuration see:
+- [kube-proxy reference](/docs/reference/config-api/kube-proxy-config.v1alpha1/)
+
+For information about enabling IPVS mode with kubeadm see:
+- [IPVS](https://github.com/kubernetes/kubernetes/blob/master/pkg/proxy/ipvs/README.md)
+-->
+### 添加 kube-proxy 参数 {#kube-proxy}
+
+kubeadm 配置中有关 kube-proxy 的说明请查看：
+
+- [kube-proxy 参考](/zh-cn/docs/reference/config-api/kube-proxy-config.v1alpha1/)
+
+使用 kubeadm 启用 IPVS 模式的说明请查看：
+
+- [IPVS](https://github.com/kubernetes/kubernetes/blob/master/pkg/proxy/ipvs/README.md)
+
+<!--
+### Passing custom flags to control plane components {#control-plane-flags}
+
+For information about passing flags to control plane components see:
+- [control-plane-flags](/docs/setup/production-environment/tools/kubeadm/control-plane-flags/)
+-->
+### 向控制平面组件传递自定义的命令行参数 {#control-plane-flags}
+
+有关向控制平面组件传递命令行参数的说明请查看：
+
+- [控制平面命令行参数](/zh-cn/docs/setup/production-environment/tools/kubeadm/control-plane-flags/)
+
+<!--
+### Running kubeadm without an Internet connection {#without-internet-connection}
+
+For running kubeadm without an Internet connection you have to pre-pull the required control-plane images.
+
+You can list and pull the images using the `kubeadm config images` sub-command:
+-->
+### 在没有互联网连接的情况下运行 kubeadm {#without-internet-connection}
+
+要在没有互联网连接的情况下运行 kubeadm，你必须提前拉取所需的控制平面镜像。
+
+你可以使用 `kubeadm config images` 子命令列出并拉取镜像：
+
+```shell
+kubeadm config images list
+kubeadm config images pull
+```
+
+<!-- 
+You can pass `--config` to the above commands with a [kubeadm configuration file](#config-file)
+to control the `kubernetesVersion` and `imageRepository` fields.
+-->
+你可以通过 `--config` 把 [kubeadm 配置文件](#config-file) 传递给上述命令来控制
+`kubernetesVersion` 和 `imageRepository` 字段。
+
+<!-- 
+All default `k8s.gcr.io` images that kubeadm requires support multiple architectures. 
+-->
+kubeadm 需要的所有默认 `k8s.gcr.io` 镜像都支持多种硬件体系结构。
+
+<!--
+### Using custom images {#custom-images}
+
+By default, kubeadm pulls images from `k8s.gcr.io`. If the
+requested Kubernetes version is a CI label (such as `ci/latest`)
+`gcr.io/k8s-staging-ci-images` is used.
+-->
+### 使用自定义的镜像 {#custom-images}
+
+默认情况下，kubeadm 会从 `k8s.gcr.io` 仓库拉取镜像。如果请求的 Kubernetes 版本是 CI 标签
+（例如 `ci/latest`），则使用 `gcr.io/k8s-staging-ci-images`。
+
+<!--
+You can override this behavior by using [kubeadm with a configuration file](#config-file).
+Allowed customization are:
+
+* To provide `kubernetesVersion` which affects the version of the images.
+* To provide an alternative `imageRepository` to be used instead of
+  `k8s.gcr.io`.
+* To provide a specific `imageRepository` and `imageTag` for etcd or CoreDNS.
+-->
+你可以通过使用[带有配置文件的 kubeadm](#config-file) 来重写此操作。
+允许的自定义功能有：
+
+* 提供影响镜像版本的 `kubernetesVersion`。
+* 使用其他的 `imageRepository` 来代替 `k8s.gcr.io`。
+* 为 etcd 或 CoreDNS 提供特定的 `imageRepository` 和 `imageTag`。
+
+<!-- 
+Image paths between the default `k8s.gcr.io` and a custom repository specified using
+`imageRepository` may differ for backwards compatibility reasons. For example,
+one image might have a subpath at `k8s.gcr.io/subpath/image`, but be defaulted
+to `my.customrepository.io/image` when using a custom repository.
+-->
+由于向后兼容的原因，使用 `imageRepository` 所指定的定制镜像库可能与默认的
+`k8s.gcr.io` 镜像路径不同。例如，某镜像的子路径可能是 `k8s.gcr.io/subpath/image`，
+但使用自定义仓库时默认为 `my.customrepository.io/image`。
+
+<!-- 
+To ensure you push the images to your custom repository in paths that kubeadm
+can consume, you must:
+-->
+确保将镜像推送到 kubeadm 可以使用的自定义仓库的路径中，你必须：
+
+<!-- 
+* Pull images from the defaults paths at `k8s.gcr.io` using `kubeadm config images {list|pull}`.
+* Push images to the paths from `kubeadm config images list --config=config.yaml`,
+where `config.yaml` contains the custom `imageRepository`, and/or `imageTag`
+for etcd and CoreDNS.
+* Pass the same `config.yaml` to `kubeadm init`.
+-->
+* 使用 `kubeadm config images {list|pull}` 从 `k8s.gcr.io` 的默认路径中拉取镜像。
+* 将镜像推送到 `kubeadm config images list --config=config.yaml` 的路径，
+  其中 `config.yaml` 包含自定义的 `imageRepository` 和/或用于 etcd 和 CoreDNS 的 `imageTag`。
+* 将相同的 `config.yaml` 传递给 `kubeadm init`。
+
+<!--
+#### Custom sandbox (pause) images {#custom-pause-image}
+
+To set a custom image for these you need to configure this in your 
+{{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}
+to use the image.
+Consult the documentation for your container runtime to find out how to change this setting;
+for selected container runtimes, you can also find advice within the
+[Container Runtimes](/docs/setup/production-environment/container-runtimes/) topic.
+-->
+#### 定制沙箱（pause）镜像  {#custom-pause-image}
+
+如果需要为这些组件设置定制的镜像，你需要在你的{{< glossary_tooltip text="容器运行时" term_id="container-runtime" >}}
+中完成一些配置。参阅你的容器运行时的文档以了解如何改变此设置。
+对于某些容器运行时而言，
+你可以在[容器运行时](/zh-cn/docs/setup/production-environment/container-runtimes/)主题下找到一些建议。
+
+<!--
+### Uploading control-plane certificates to the cluster
+
+By adding the flag `--upload-certs` to `kubeadm init` you can temporary upload
+the control-plane certificates to a Secret in the cluster. Please note that this Secret
+will expire automatically after 2 hours. The certificates are encrypted using
+a 32byte key that can be specified using `--certificate-key`. The same key can be used
+to download the certificates when additional control-plane nodes are joining, by passing
+`--control-plane` and `--certificate-key` to `kubeadm join`.
+-->
+### 将控制平面证书上传到集群  {#uploading-control-plane-certificates-to-the-cluster}
+
+通过将参数 `--upload-certs` 添加到 `kubeadm init`，你可以将控制平面证书临时上传到集群中的 Secret。
+请注意，此 Secret 将在 2 小时后自动过期。这些证书使用 32 字节密钥加密，可以使用 `--certificate-key` 指定该密钥。
+通过将 `--control-plane` 和 `--certificate-key` 传递给 `kubeadm join`，
+可以在添加其他控制平面节点时使用相同的密钥下载证书。
+
+<!--
+The following phase command can be used to re-upload the certificates after expiration:
+-->
+以下阶段命令可用于证书到期后重新上传证书：
+
+```shell
+kubeadm init phase upload-certs --upload-certs --certificate-key=SOME_VALUE --config=SOME_YAML_FILE
+```
+
+<!--
+If the flag `--certificate-key` is not passed to `kubeadm init` and
+`kubeadm init phase upload-certs` a new key will be generated automatically.
+
+The following command can be used to generate a new key on demand:
+-->
+如果未将参数 `--certificate-key` 传递给 `kubeadm init` 和 `kubeadm init phase upload-certs`，
+则会自动生成一个新密钥。
+
+以下命令可用于按需生成新密钥：
+
+```shell
+kubeadm certs certificate-key
+```
+
+<!--
+### Certificate management with kubeadm
+
+For detailed information on certificate management with kubeadm see
+[Certificate Management with kubeadm](/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/).
+The document includes information about using external CA, custom certificates
+and certificate renewal.
+-->
+### 使用 kubeadm 管理证书  {#certificate-management-with-kubeadm}
+
+有关使用 kubeadm 进行证书管理的详细信息，
+请参阅[使用 kubeadm 进行证书管理](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/)。
+该文档包括有关使用外部 CA、自定义证书和证书续订的信息。
+
+<!--
+### Managing the kubeadm drop-in file for the kubelet {#kubelet-drop-in}
+
+The `kubeadm` package ships with a configuration file for running the `kubelet` by `systemd`.
+Note that the kubeadm CLI never touches this drop-in file. This drop-in file is part of the kubeadm
+DEB/RPM package.
+-->
+### 管理 kubeadm 为 kubelet 提供的 systemd 配置文件 {#kubelet-drop-in}
+
+`kubeadm` 包自带了关于 `systemd` 如何运行 `kubelet` 的配置文件。
+请注意 `kubeadm` 客户端命令行工具永远不会修改这份 `systemd` 配置文件。
+这份 `systemd` 配置文件属于 kubeadm DEB/RPM 包。
+
+<!--
+For further information, see [Managing the kubeadm drop-in file for systemd](/docs/setup/production-environment/tools/kubeadm/kubelet-integration/#the-kubelet-drop-in-file-for-systemd).
+-->
+有关更多信息，请阅读[管理 systemd 的 kubeadm 内嵌文件](/zh-cn/docs/setup/production-environment/tools/kubeadm/kubelet-integration/#the-kubelet-drop-in-file-for-systemd)。
+
+<!--
+### Use kubeadm with CRI runtimes
+
+By default kubeadm attempts to detect your container runtime. For more details on this detection,
+see the [kubeadm CRI installation guide](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#installing-runtime).
+-->
+### 结合 CRI 运行时使用 kubeadm   {#use-kubeadm-with-cri-runtimes}
+
+默认情况下，kubeadm 尝试检测你的容器运行环境。有关此检测的更多详细信息，请参见
+[kubeadm CRI 安装指南](/zh-cn/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#installing-runtime)。
+
+<!--
+### Setting the node name
+
+By default, `kubeadm` assigns a node name based on a machine's host address.
+You can override this setting with the `--node-name` flag.
+The flag passes the appropriate [`--hostname-override`](/docs/reference/command-line-tools-reference/kubelet/#options)
+value to the kubelet.
+-->
+### 设置节点的名称  {#setting-the-node-name}
+
+默认情况下，`kubeadm` 基于机器的主机地址分配一个节点名称。你可以使用 `--node-name` 参数覆盖此设置。
+此标识将合适的 [`--hostname-override`](/zh-cn/docs/reference/command-line-tools-reference/kubelet/#options)
+值传递给 kubelet。
+
+<!--
+Be aware that overriding the hostname can
+[interfere with cloud providers](https://github.com/kubernetes/website/pull/8873).
+-->
+要注意，重载主机名可能会[与云驱动发生冲突](https://github.com/kubernetes/website/pull/8873)。
+
+<!--
+### Automating kubeadm
+
+Rather than copying the token you obtained from `kubeadm init` to each node, as
+in the [basic kubeadm tutorial](/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/),
+you can parallelize the token distribution for easier automation. To implement this automation,
+you must know the IP address that the control-plane node will have after it is started, or use a
+DNS name or an address of a load balancer.
+-->
+### kubeadm 自动化   {#automating-kubeadm}
+
+除了像文档
+[kubeadm 基础教程](/zh-cn/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/)中所描述的那样，
+将从 `kubeadm init` 取得的令牌复制到每个节点，你还可以并行地分发令牌以实现更简单的自动化。
+要实现自动化，你必须知道控制平面节点启动后将拥有的 IP 地址，或使用 DNS 名称或负载均衡器的地址。
+
+<!--
+1. Generate a token. This token must have the form  `<6 character string>.<16
+   character string>`. More formally, it must match the regex:
+   `[a-z0-9]{6}\.[a-z0-9]{16}`.
+
+   kubeadm can generate a token for you:
+-->
+1. 生成一个令牌。这个令牌必须采用的格式为：`<6 个字符的字符串>.<16 个字符的字符串>`。
+   更加正式的说法是，它必须符合正则表达式：`[a-z0-9]{6}\.[a-z0-9]{16}`。
+   
+   kubeadm 可以为你生成一个令牌：
+
+   ```shell
+   kubeadm token generate
+   ```
+
+<!--
+1. Start both the control-plane node and the worker nodes concurrently with this token.
+   As they come up they should find each other and form the cluster.  The same
+   `--token` argument can be used on both `kubeadm init` and `kubeadm join`.
+-->
+2. 使用这个令牌同时启动控制平面节点和工作节点。这些节点一旦运行起来应该就会互相寻找对方并且形成集群。
+   同样的 `--token` 参数可以同时用于 `kubeadm init` 和 `kubeadm join` 命令。
+
+<!--
+1. Similar can be done for `--certificate-key` when joining additional control-plane
+   nodes. The key can be generated using:
+-->
+3. 当接入其他控制平面节点时，可以对 `--certificate-key` 执行类似的操作。可以使用以下方式生成密钥：
+
+   ```shell
+   kubeadm certs certificate-key
+   ```
+
+<!--
+Once the cluster is up, you can grab the admin credentials from the control-plane node
+at `/etc/kubernetes/admin.conf` and use that to talk to the cluster.
+-->
+一旦集群启动起来，你就可以从控制平面节点的 `/etc/kubernetes/admin.conf` 文件获取管理凭证，
+并使用这个凭证同集群通信。
+
+<!--
+Note that this style of bootstrap has some relaxed security guarantees because
+it does not allow the root CA hash to be validated with
+`--discovery-token-ca-cert-hash` (since it's not generated when the nodes are
+provisioned). For details, see the [kubeadm join](/docs/reference/setup-tools/kubeadm/kubeadm-join/).
+-->
+注意这种搭建集群的方式在安全保证上会有一些宽松，因为这种方式不允许使用
+`--discovery-token-ca-cert-hash` 来验证根 CA 的哈希值
+（因为当配置节点的时候，它还没有被生成）。
+更多信息请参阅 [kubeadm join](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-join/) 文档。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* [kubeadm init phase](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/) to understand more about
+  `kubeadm init` phases
+* [kubeadm join](/docs/reference/setup-tools/kubeadm/kubeadm-join/) to bootstrap a Kubernetes
+  worker node and join it to the cluster
+* [kubeadm upgrade](/docs/reference/setup-tools/kubeadm/kubeadm-upgrade/) to upgrade a Kubernetes
+  cluster to a newer version
+* [kubeadm reset](/docs/reference/setup-tools/kubeadm/kubeadm-reset/) to revert any changes made
+  to this host by `kubeadm init` or `kubeadm join`
+-->
+* 进一步阅读了解 [kubeadm init 阶段](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/)
+* [kubeadm join](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-join/)
+  启动一个 Kubernetes 工作节点并且将其加入到集群
+* [kubeadm upgrade](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-upgrade/)
+  将 Kubernetes 集群升级到新版本
+* [kubeadm reset](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-reset/)
+  恢复 `kubeadm init` 或 `kubeadm join` 命令对节点所作的变更
+
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-join-phase.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-join-phase.md
similarity index 91%
rename from content/zh/docs/reference/setup-tools/kubeadm/kubeadm-join-phase.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-join-phase.md
index 9ecb549aa3..3f2c81f2df 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-join-phase.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-join-phase.md
@@ -21,7 +21,7 @@ if you wish to apply customization.
 and behind the scene both use the same code.
 -->
 `kubeadm join phase` 与
-[kubeadm join 工作流程](/zh/docs/reference/setup-tools/kubeadm/kubeadm-join/#join-workflow)
+[kubeadm join 工作流程](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-join/#join-workflow)
 一致，后台都使用相同的代码。
 
 ## kubeadm join phase {#cmd-join-phase}
@@ -91,11 +91,11 @@ Using this phase you can join a node as a control-plane instance.
 * [kubeadm reset](/docs/reference/setup-tools/kubeadm/kubeadm-reset/) to revert any changes made to this host by `kubeadm init` or `kubeadm join`
 * [kubeadm alpha](/docs/reference/setup-tools/kubeadm/kubeadm-alpha/) to try experimental functionality
 -->
-* [kubeadm init](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init/)
+* [kubeadm init](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init/)
   引导 Kubernetes 控制平面节点
-* [kubeadm join](/zh/docs/reference/setup-tools/kubeadm/kubeadm-join/)
+* [kubeadm join](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-join/)
   将节点添加到集群
-* [kubeadm reset](/zh/docs/reference/setup-tools/kubeadm/kubeadm-reset/)
+* [kubeadm reset](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-reset/)
   恢复通过 `kubeadm init` 或 `kubeadm join` 操作对主机所做的任何更改
-* [kubeadm alpha](/zh/docs/reference/setup-tools/kubeadm/kubeadm-alpha/)
+* [kubeadm alpha](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-alpha/)
   尝试实验性功能
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-join.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-join.md
similarity index 71%
rename from content/zh/docs/reference/setup-tools/kubeadm/kubeadm-join.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-join.md
index e01ff5eea0..51003b2415 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-join.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-join.md
@@ -1,12 +1,17 @@
 ---
+title: kubeadm join
+content_type: concept
+weight: 30
+---
+<!--
 reviewers:
-- mikedanese
 - luxas
 - jbeda
 title: kubeadm join
 content_type: concept
 weight: 30
----
+-->
+
 <!-- overview -->
 <!--
 This command initializes a Kubernetes worker node and joins it to the cluster.
@@ -22,12 +27,12 @@ This command initializes a Kubernetes worker node and joins it to the cluster.
 -->
 ### join 工作流 {#join-workflow}
 
-<!--  
-`kubeadm join` bootstraps a Kubernetes worker node and joins it to the cluster.
-This action consists of the following steps:
+<!--
+`kubeadm join` bootstraps a Kubernetes worker node or a control-plane node and adds it to the cluster.
+This action consists of the following steps for worker nodes:
 -->
-`kubeadm join` 初始化 Kubernetes 工作节点并将其加入集群。
-该操作过程包含下面几个步骤：
+`kubeadm join` 初始化 Kubernetes 工作节点或控制平面节点并将其添加到集群中。
+对于工作节点，该操作包括以下步骤：
 
 <!--
 1. kubeadm downloads necessary cluster information from the API server.
@@ -39,7 +44,7 @@ This action consists of the following steps:
    默认情况下，它使用引导令牌和 CA 密钥哈希来验证数据的真实性。
    也可以通过文件或 URL 直接发现根 CA。
 
-<!--  
+<!--
 1. Once the cluster information is known, kubelet can start the TLS bootstrapping
    process.
 
@@ -48,17 +53,17 @@ This action consists of the following steps:
    default the control plane signs this CSR request automatically.
 -->
 2. 一旦知道集群信息，kubelet 就可以开始 TLS 引导过程。
-   
+
    TLS 引导程序使用共享令牌与 Kubernetes API 服务器进行临时的身份验证，以提交证书签名请求 (CSR)；
    默认情况下，控制平面自动对该 CSR 请求进行签名。
 
-<!-- 
+<!--
 1. Finally, kubeadm configures the local kubelet to connect to the API
    server with the definitive identity assigned to the node.
 -->
 3. 最后，kubeadm 配置本地 kubelet 使用分配给节点的确定标识连接到 API 服务器。
 
-<!-- 
+<!--
 For control-plane nodes additional steps are performed:
 
 1. Downloading certificates shared among control-plane nodes from the cluster
@@ -67,8 +72,6 @@ For control-plane nodes additional steps are performed:
 1. Generating control-plane component manifests, certificates and kubeconfig.
 
 1. Adding new local etcd member.
-
-1. Adding this node to the ClusterStatus of the kubeadm cluster.
 -->
 对于控制平面节点，执行额外的步骤：
 
@@ -78,28 +81,26 @@ For control-plane nodes additional steps are performed:
 
 1. 添加新的本地 etcd 成员。
 
-1. 将此节点添加到 kubeadm 集群的 ClusterStatus。
-
-<!-- 
+<!--
 ### Using join phases with kubeadm {#join-phases}
 -->
 ### 使用 kubeadm 的 join phase 命令 {#join-phases}
 
-<!-- 
+<!--
 Kubeadm allows you join a node to the cluster in phases using `kubeadm join phase`.
 -->
 Kubeadm 允许你使用 `kubeadm join phase` 分阶段将节点加入集群。
 
-<!--  
+<!--
 To view the ordered list of phases and sub-phases you can call `kubeadm join --help`. The list will be located
 at the top of the help screen and each phase will have a description next to it.
 Note that by calling `kubeadm join` all of the phases and sub-phases will be executed in this exact order.
 -->
-要查看阶段和子阶段的有序列表，可以调用 `kubeadm join --help`。 
+要查看阶段和子阶段的有序列表，可以调用 `kubeadm join --help`。
 该列表将位于帮助屏幕的顶部，每个阶段旁边都有一个描述。
 注意，通过调用 `kubeadm join`，所有阶段和子阶段都将按照此确切顺序执行。
 
-<!--  
+<!--
 Some phases have unique flags, so if you want to have a look at the list of available options add `--help`, for example:
 -->
 有些阶段具有唯一的标志，因此，如果要查看可用选项列表，请添加 `--help`，例如：
@@ -108,13 +109,13 @@ Some phases have unique flags, so if you want to have a look at the list of avai
 kubeadm join phase kubelet-start --help
 ```
 
-<!-- 
+<!--
 Similar to the [kubeadm init phase](/docs/reference/setup-tools/kubeadm/kubeadm-init/#init-phases)
 command, `kubeadm join phase` allows you to skip a list of phases using the `--skip-phases` flag.
 
 For example:
 -->
-类似于 [kubeadm init phase](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init/#init-phases)命令，
+类似于 [kubeadm init phase](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init/#init-phases) 命令，
 `kubeadm join phase` 允许你使用 `--skip-phases` 标志跳过阶段列表。
 
 例如：
@@ -123,12 +124,19 @@ For example:
 sudo kubeadm join --skip-phases=preflight --config=config.yaml
 ```
 
+{{< feature-state for_k8s_version="v1.22" state="beta" >}}
+
+<!--
+Alternatively, you can use the `skipPhases` field in `JoinConfiguration`.
+-->
+或者，你可以使用 `JoinConfiguration` 中的 `skipPhases` 字段。
+
 <!--
 ### Discovering what cluster CA to trust
 -->
-### 发现要信任的集群 CA
+### 发现要信任的集群 CA {#discovering-what-cluster-ca-to-trust}
 
-<!-- 
+<!--
 The kubeadm discovery has several options, each with security tradeoffs.
 The right method for your environment depends on how you provision nodes and the
 security expectations you have about your network and node lifecycles.
@@ -140,16 +148,16 @@ Kubeadm 的发现有几个选项，每个选项都有安全性上的优缺点。
 <!--
 #### Token-based discovery with CA pinning
 -->
-#### 带 CA 锁定模式的基于令牌的发现
+#### 带 CA 锁定模式的基于令牌的发现 {#token-based-discovery-with-ca-pinning}
 
-<!-- 
-This is the default mode in Kubernetes 1.8 and above. In this mode, kubeadm downloads
+<!--
+This is the default mode in kubeadm. In this mode, kubeadm downloads
 the cluster configuration (including root CA) and validates it using the token
 as well as validating that the root CA public key matches the provided hash and
 that the API server certificate is valid under the root CA.
 -->
-这是 Kubernetes 1.8 及以上版本中的默认模式。
-在这种模式下，kubeadm 下载集群配置（包括根CA）并使用令牌验证它，
+这是 kubeadm 的默认模式。
+在这种模式下，kubeadm 下载集群配置（包括根 CA）并使用令牌验证它，
 并且会验证根 CA 的公钥与所提供的哈希是否匹配，
 以及 API 服务器证书在根 CA 下是否有效。
 
@@ -159,7 +167,7 @@ The CA key hash has the format `sha256:<hex_encoded_hash>`. By default, the hash
 CA 键哈希格式为 `sha256:<hex_encoded_hash>`。
 默认情况下，在 `kubeadm init` 最后打印的 `kubeadm join` 命令
 或者 `kubeadm token create --print-join-command` 的输出信息中返回哈希值。
-它使用标准格式 (请参考 [RFC7469](https://tools.ietf.org/html/rfc7469#section-2.4)) 
+它使用标准格式（请参考 [RFC7469](https://tools.ietf.org/html/rfc7469#section-2.4)）
 并且也能通过第三方工具或者制备系统进行计算。
 例如，使用 OpenSSL CLI：
 
@@ -168,7 +176,7 @@ openssl x509 -pubkey -in /etc/kubernetes/pki/ca.crt | openssl rsa -pubin -outfor
 ```
 
 <!--
-**Example `kubeadm join` command:**
+**Example `kubeadm join` commands:**
 -->
 **`kubeadm join` 命令示例**
 
@@ -190,7 +198,7 @@ For control-plane nodes:
 kubeadm join --discovery-token abcdef.1234567890abcdef --discovery-token-ca-cert-hash sha256:1234..cdef --control-plane 1.2.3.4:6443
 ```
 
-<!-- 
+<!--
 You can also call `join` for a control-plane node with `--certificate-key` to copy certificates to this node,
 if the `kubeadm init` command was called with `--upload-certs`.
 -->
@@ -201,52 +209,52 @@ if the `kubeadm init` command was called with `--upload-certs`.
 <!--
 **Advantages:**
 
- - Allows bootstrapping nodes to securely discover a root of trust for the
-   master even if other worker nodes or the network are compromised.
+- Allows bootstrapping nodes to securely discover a root of trust for the
+  control-plane node even if other worker nodes or the network are compromised.
 
- - Convenient to execute manually since all of the information required fits
-   into a single `kubeadm join` command.
+- Convenient to execute manually since all of the information required fits
+  into a single `kubeadm join` command.
 -->
 
 **优势：**
 
-- 允许引导节点安全地发现主节点的信任根，即使其他工作节点或网络受到损害。
+- 允许引导节点安全地发现控制平面节点的信任根，即使其他工作节点或网络受到损害。
 
 - 方便手动执行，因为所需的所有信息都可放到一个 `kubeadm join` 命令中。
 
-<!-- 
+<!--
 **Disadvantages:**
 
-- The CA hash is not normally known until the master has been provisioned,
+- The CA hash is not normally known until the control-plane node has been provisioned,
   which can make it more difficult to build automated provisioning tools that
   use kubeadm. By generating your CA in beforehand, you may workaround this
-  limitation though.
+  limitation.
 -->
 
 **劣势：**
 
-- CA 哈希通常在主节点被提供之前是不知道的，这使得构建使用 kubeadm 的自动化配置工具更加困难。
-  通过预先生成CA，你可以解除这个限制。
+- CA 哈希通常在控制平面节点被提供之前是不知道的，这使得构建使用 kubeadm 的自动化配置工具更加困难。
+  通过预先生成 CA，你可以解除这个限制。
 
-<!--   
+<!--
 #### Token-based discovery without CA pinning
 -->
-#### 无 CA 锁定模式的基于令牌的发现
+#### 无 CA 锁定模式的基于令牌的发现 {#token-based-discovery-without-ca-pinning}
 
-<!--  
-_This was the default in Kubernetes 1.7 and earlier_, but comes with some
-important caveats. This mode relies only on the symmetric token to sign
+<!--
+This mode relies only on the symmetric token to sign
 (HMAC-SHA256) the discovery information that establishes the root of trust for
-the master. It's still possible in Kubernetes 1.8 and above using the
-`--discovery-token-unsafe-skip-ca-verification` flag, but you should consider
+the control-plane. To use the mode the joining nodes must skip the hash validation of the
+CA public key, using `--discovery-token-unsafe-skip-ca-verification`. You should consider
 using one of the other modes if possible.
 
 **Example `kubeadm join` command:**
 -->
-_这是 Kubernetes 1.7 和早期版本_中的默认设置；使用时要注意一些重要的补充说明。
-此模式仅依赖于对称令牌来签名(HMAC-SHA256)发现信息，这些发现信息为主节点建立信任根。
-在 Kubernetes 1.8 及以上版本中仍然可以使用 `--discovery-token-unsafe-skip-ca-verification`
-参数，但是如果可能的话，你应该考虑使用一种其他模式。
+此模式仅依靠对称令牌来签署 (HMAC-SHA256) 为控制平面建立信任根的发现信息。
+要使用该模式，加入节点必须使用
+`--discovery-token-unsafe-skip-ca-verification`
+跳过 CA 公钥的哈希验证。
+如果可以，你应该考虑使用其他模式。
 
 **`kubeadm join` 命令示例**
 
@@ -259,7 +267,7 @@ kubeadm join --token abcdef.1234567890abcdef --discovery-token-unsafe-skip-ca-ve
 
 - Still protects against many network-level attacks.
 
-- The token can be generated ahead of time and shared with the master and
+- The token can be generated ahead of time and shared with the control-plane node and
   worker nodes, which can then bootstrap in parallel without coordination. This
   allows it to be used in many provisioning scenarios.
 -->
@@ -268,7 +276,7 @@ kubeadm join --token abcdef.1234567890abcdef --discovery-token-unsafe-skip-ca-ve
 
 - 仍然可以防止许多网络级攻击。
 
-- 可以提前生成令牌并与主节点和工作节点共享，这样主节点和工作节点就可以并行引导而无需协调。
+- 可以提前生成令牌并与控制平面节点和工作节点共享，这样控制平面节点和工作节点就可以并行引导而无需协调。
   这允许它在许多配置场景中使用。
 
 <!--
@@ -276,22 +284,22 @@ kubeadm join --token abcdef.1234567890abcdef --discovery-token-unsafe-skip-ca-ve
 
 - If an attacker is able to steal a bootstrap token via some vulnerability,
   they can use that token (along with network-level access) to impersonate the
-  master to other bootstrapping nodes. This may or may not be an appropriate
+  control-plane node to other bootstrapping nodes. This may or may not be an appropriate
   tradeoff in your environment.
 -->
 
 **劣势**
 
 - 如果攻击者能够通过某些漏洞窃取引导令牌，那么他们可以使用该令牌（连同网络级访问）
-  为其它处于引导过程中的节点提供假冒的主节点。
+  为其它处于引导过程中的节点提供假冒的控制平面节点。
   在你的环境中，这可能是一个适当的折衷方法，也可能不是。
 
 <!--
 #### File or HTTPS-based discovery
 -->
-#### 基于 HTTPS 或文件发现
+#### 基于 HTTPS 或文件发现 {#file-or-https-based-discovery}
 
-<!-- 
+<!--
 This provides an out-of-band way to establish a root of trust between the control-plane node
 and bootstrapping nodes. Consider using this mode if you are building automated provisioning
 using kubeadm. The format of the discovery file is a regular Kubernetes
@@ -299,10 +307,10 @@ using kubeadm. The format of the discovery file is a regular Kubernetes
 
 In case the discovery file does not contain credentials, the TLS discovery token will be used.
 -->
-这种方案提供了一种带外方式在主节点和引导节点之间建立信任根。
+这种方案提供了一种带外方式在控制平面节点和引导节点之间建立信任根。
 如果使用 kubeadm 构建自动配置，请考虑使用此模式。
 发现文件的格式为常规的 Kubernetes
-[kubeconfig](/zh/docs/tasks/access-application-cluster/configure-access-multiple-clusters/) 文件。
+[kubeconfig](/zh-cn/docs/tasks/access-application-cluster/configure-access-multiple-clusters/) 文件。
 
 如果发现文件不包含凭据，则将使用 TLS 发现令牌。
 
@@ -311,42 +319,47 @@ In case the discovery file does not contain credentials, the TLS discovery token
 -->
 **`kubeadm join` 命令示例：**
 
-- `kubeadm join --discovery-file path/to/file.conf` （本地文件）
+<!--
+- `kubeadm join --discovery-file path/to/file.conf` (local file)
 
-- `kubeadm join --discovery-file https://url/file.conf` (远程 HTTPS URL)
+- `kubeadm join --discovery-file https://url/file.conf` (remote HTTPS URL)
+-->
+- `kubeadm join --discovery-file path/to/file.conf`（本地文件）
+
+- `kubeadm join --discovery-file https://url/file.conf`（远程 HTTPS URL）
 
 <!--
 **Advantages:**
 
 - Allows bootstrapping nodes to securely discover a root of trust for the
-  master even if the network or other worker nodes are compromised.
+  control-plane node even if the network or other worker nodes are compromised.
 -->
 
 **优势：**
 
-- 允许引导节点安全地发现主节点的信任根，即使网络或其他工作节点受到损害。
+- 允许引导节点安全地发现控制平面节点的信任根，即使网络或其他工作节点受到损害。
 
 <!--
 **Disadvantages:**
 
 - Requires that you have some way to carry the discovery information from
-  the master to the bootstrapping nodes. This might be possible, for example,
-  via your cloud provider or provisioning tool. The information in this file is
-  not secret, but HTTPS or equivalent is required to ensure its integrity.
+  the control-plane node to the bootstrapping nodes. If the discovery file contains credentials
+  you must keep it secret and transfer it over a secure channel. This might be possible with your
+  cloud provider or provisioning tool.
 -->
 
 **劣势：**
 
-- 要求你有某种方法将发现信息从主节点传送到引导节点。
-  例如，这可以通过云提供商或驱动工具实现。
-  该文件中的信息不是加密的，而是需要 HTTPS 或等效文件来保证其完整性。
+- 要求你有某种方法将发现信息从控制平面节点传送到引导节点。
+  如果发现文件包含凭据，你必须对其保密并通过安全通道进行传输。
+  这可能通过你的云提供商或供应工具来实现。
 
 <!--
 ### Securing your installation even more {#securing-more}
 -->
 ### 确保你的安装更加安全 {#securing-more}
 
-<!-- 
+<!--
 The defaults for kubeadm may not work for everyone. This section documents how to tighten up a kubeadm installation
 at the cost of some usability.
 -->
@@ -356,9 +369,9 @@ Kubeadm 的默认值可能不适用于所有人。
 <!--
 #### Turning off auto-approval of node client certificates
 -->
-#### 关闭节点客户端证书的自动批准
+#### 关闭节点客户端证书的自动批准 {#turning-off-auto-approval-of-node-client-certificates}
 
-<!-- 
+<!--
 By default, there is a CSR auto-approver enabled that basically approves any client certificate request
 for a kubelet when a Bootstrap Token was used when authenticating. If you don't want the cluster to
 automatically approve kubelet client certs, you can turn it off by executing this command:
@@ -417,30 +430,29 @@ NAME                                                   AGE       REQUESTOR
 node-csr-c69HXe7aYcqkS1bKmH4faEnHAWxn6i2bHZ2mD04jZyQ   1m        system:bootstrap:878f07   Approved,Issued
 ```
 
-<!--  
+<!--
 This forces the workflow that `kubeadm join` will only succeed if `kubectl certificate approve` has been run.
 -->
-这迫使工作流只有在运行了 kubectl 证书批准后，kubeadm join 才能成功。
+这迫使工作流只有在运行了 `kubectl certificate approve` 后，`kubeadm join` 才能成功。
 
 <!--
 #### Turning off public access to the cluster-info ConfigMap
 -->
-#### 关闭对集群信息 ConfigMap 的公开访问
+#### 关闭对集群信息 ConfigMap 的公开访问 {#turning-off-public-access-to-the-cluster-info-configmap}
 
-<!-- 
+<!--
 In order to achieve the joining flow using the token as the only piece of validation information, a
- ConfigMap with some data needed for validation of the master's identity is exposed publicly by
+ ConfigMap with some data needed for validation of the control-plane node's identity is exposed publicly by
 default. While there is no private data in this ConfigMap, some users might wish to turn
 it off regardless. Doing so will disable the ability to use the `--discovery-token` flag of the
 `kubeadm join` flow. Here are the steps to do so:
 -->
-为了实现使用令牌作为唯一验证信息的加入工作流，默认情况下会公开带有验证主节点标识
-所需数据的 ConfigMap。
+为了实现使用令牌作为唯一验证信息的加入工作流，默认情况下会公开带有验证控制平面节点标识所需数据的 ConfigMap。
 虽然此 ConfigMap 中没有私有数据，但一些用户可能希望无论如何都关闭它。
 这样做需要禁用 `kubeadm join` 工作流的 `--discovery-token` 参数。
 以下是实现步骤：
 
-<!-- 
+<!--
 * Fetch the `cluster-info` file from the API Server:
 -->
 * 从 API 服务器获取 `cluster-info` 文件：
@@ -485,16 +497,18 @@ users: []
 <!--
 These commands should be run after `kubeadm init` but before `kubeadm join`.
 -->
-这些命令应该在执行 `kubeadm init` 之后、在`kubeadm join` 之前执行。
+这些命令应该在执行 `kubeadm init` 之后、在 `kubeadm join` 之前执行。
 
-<!-- 
+<!--
 ### Using kubeadm join with a configuration file {#config-file}
 -->
-### 使用带有配置文件的 kubeadm join
+### 使用带有配置文件的 kubeadm join {#config-file}
 
 {{< caution >}}
-<!--The config file is still considered alpha and may change in future versions.-->
-配置文件目前是 alpha 功能，在将来的版本中可能会变动。
+<!--
+The config file is still considered beta and may change in future versions.
+-->
+配置文件目前是 beta 功能，在将来的版本中可能会变动。
 {{< /caution >}}
 
 <!--
@@ -504,43 +518,43 @@ configuration file options. This file is passed using the `--config` flag and it
 contain a `JoinConfiguration` structure. Mixing `--config` with others flags may not be
 allowed in some cases.
 -->
-可以用配置文件替代命令行参数的方法配置 `kubeadm join`，一些高级功能也只有在使用配置文件时才可选用。
+可以用配置文件替代命令行参数的方法配置 `kubeadm join`，一些进阶功能也只有在使用配置文件时才可选用。
 该文件通过 `--config` 参数来传递，并且文件中必须包含 `JoinConfiguration` 结构。
 在某些情况下，不允许将 `--config` 与其他标志混合使用。
 
-<!--  
+<!--
 The default configuration can be printed out using the
 [kubeadm config print](/docs/reference/setup-tools/kubeadm/kubeadm-config/) command.
 
 If your configuration is not using the latest version it is **recommended** that you migrate using
 the [kubeadm config migrate](/docs/reference/setup-tools/kubeadm/kubeadm-config/) command.
 -->
-使用 [kubeadm config print](/zh/docs/reference/setup-tools/kubeadm/kubeadm-config/)
+使用 [kubeadm config print](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-config/)
 命令可以打印默认配置。
 
 如果你的配置没有使用最新版本，
-**推荐**使用 [kubeadm config migrate](/zh/docs/reference/setup-tools/kubeadm/kubeadm-config/)
+**推荐**使用 [kubeadm config migrate](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-config/)
 命令转换。
 
 <!--
-For more information on the fields and usage of the configuration you can navigate to our API reference
-page and pick a version from [the list](https://godoc.org/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm#pkg-subdirectories).
+For more information on the fields and usage of the configuration you can navigate to our
+[API reference](/docs/reference/config-api/kubeadm-config.v1beta3/).
 -->
-有关配置的字段和用法的更多信息，你可以导航到我们的 API 参考页
-并从[列表]中选择一个版本(https://godoc.org/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm#pkg-subdirectories)。
+有关配置的字段和用法的更多信息，你可以导航到我们的
+[API 参考页](/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3/)。
 
 
 ## {{% heading "whatsnext" %}}
 
 <!--
-* [kubeadm init](/docs/reference/setup-tools/kubeadm/kubeadm-init/) to bootstrap a Kubernetes master node
+* [kubeadm init](/docs/reference/setup-tools/kubeadm/kubeadm-init/) to bootstrap a Kubernetes control-plane node
 * [kubeadm token](/docs/reference/setup-tools/kubeadm/kubeadm-token/) to manage tokens for `kubeadm join`
 * [kubeadm reset](/docs/reference/setup-tools/kubeadm/kubeadm-reset/) to revert any changes made to this host by `kubeadm init` or `kubeadm join`
 -->
-* [kubeadm init](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init/)
-  初始化 Kubernetes 主节点
-* [kubeadm token](/zh/docs/reference/setup-tools/kubeadm/kubeadm-token/)
+* [kubeadm init](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init/)
+  初始化 Kubernetes 控制平面节点
+* [kubeadm token](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-token/)
   管理 `kubeadm join` 的令牌
-* [kubeadm reset](/zh/docs/reference/setup-tools/kubeadm/kubeadm-reset/)
+* [kubeadm reset](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-reset/)
   将 `kubeadm init` 或 `kubeadm join` 对主机的更改恢复到之前状态
 
diff --git a/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-kubeconfig.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-kubeconfig.md
new file mode 100644
index 0000000000..e911fe1a7b
--- /dev/null
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-kubeconfig.md
@@ -0,0 +1,33 @@
+---
+title: kubeadm kubeconfig
+content_type: concept
+weight: 90
+---
+
+<!--
+`kubeadm kubeconfig` provides utilities for managing kubeconfig files.
+
+For examples on how to use `kubeadm kubeconfig user` see
+[Generating kubeconfig files for additional users](/docs/tasks/administer-cluster/kubeadm/kubeadm-certs#kubeconfig-additional-users).
+-->
+`kubeadm kubeconfig` 提供用来管理 kubeconfig 文件的工具。
+
+如果希望查看如何使用 `kubeadm kubeconfig user` 的示例，请参阅
+[为其他用户生成 kubeconfig 文件](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-certs#kubeconfig-additional-users).
+
+## kubeadm kubeconfig {#cmd-kubeconfig}
+
+{{< tabs name="tab-kubeconfig" >}}
+{{< tab name="overview" include="generated/kubeadm_kubeconfig.md" />}}
+{{< /tabs >}}
+
+## kubeadm kubeconfig user {#cmd-kubeconfig-user}
+
+<!--
+This command can be used to output a kubeconfig file for an additional user.
+-->
+此命令可用来为其他用户生成一个 kubeconfig 文件。
+
+{{< tabs name="tab-kubeconfig-user" >}}
+{{< tab name="user" include="generated/kubeadm_kubeconfig_user.md" />}}
+{{< /tabs >}}
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-reset-phase.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-reset-phase.md
similarity index 76%
rename from content/zh/docs/reference/setup-tools/kubeadm/kubeadm-reset-phase.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-reset-phase.md
index 8d0f84af56..134b18f91e 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-reset-phase.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-reset-phase.md
@@ -23,7 +23,7 @@ if you wish to apply customization.
 and behind the scene both use the same code.
 -->
 `kubeadm reset phase` 与
-[kubeadm reset 工作流程](/zh/docs/reference/setup-tools/kubeadm/kubeadm-reset/#reset-workflow)
+[kubeadm reset 工作流程](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-reset/#reset-workflow)
 一致，后台都使用相同的代码。
 
 ## kubeadm reset phase {#cmd-reset-phase}
@@ -43,20 +43,6 @@ Using this phase you can execute preflight checks on a node that is being reset.
 {{< tab name="preflight" include="generated/kubeadm_reset_phase_preflight.md" />}}
 {{< /tabs >}}
 
-<!--
-## kubeadm reset phase update-cluster-status
--->
-## kubeadm reset phase update-cluster-status {#cmd-reset-phase-update-cluster-status}
-
-<!--
-Using this phase you can remove this control-plane node from the ClusterStatus object.
--->
-使用此阶段，你可以从 ClusterStatus 对象中删除此控制平面节点。
-
-{{< tabs name="tab-update-cluster-status" >}}
-{{< tab name="update-cluster-status" include="generated/kubeadm_reset_phase_update-cluster-status.md" />}}
-{{< /tabs >}}
-
 <!--
 ## kubeadm reset phase remove-etcd-member
 -->
@@ -93,11 +79,11 @@ Using this phase you can perform cleanup on this node.
 * [kubeadm reset](/docs/reference/setup-tools/kubeadm/kubeadm-reset/) to revert any changes made to this host by `kubeadm init` or `kubeadm join`
 * [kubeadm alpha](/docs/reference/setup-tools/kubeadm/kubeadm-alpha/) to try experimental functionality
 -->
-* [kubeadm init](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init/)
+* [kubeadm init](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init/)
   引导 Kubernetes 控制平面节点
-* [kubeadm join](/zh/docs/reference/setup-tools/kubeadm/kubeadm-join/)
+* [kubeadm join](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-join/)
   将节点添加到集群
-* [kubeadm reset](/zh/docs/reference/setup-tools/kubeadm/kubeadm-reset/)
+* [kubeadm reset](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-reset/)
   恢复通过 `kubeadm init` 或 `kubeadm join` 操作对主机所做的任何更改
-* [kubeadm alpha](/zh/docs/reference/setup-tools/kubeadm/kubeadm-alpha/)
+* [kubeadm alpha](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-alpha/)
   尝试实验性功能
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-reset.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-reset.md
similarity index 74%
rename from content/zh/docs/reference/setup-tools/kubeadm/kubeadm-reset.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-reset.md
index 3df205658d..5143c8f111 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-reset.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-reset.md
@@ -26,10 +26,10 @@ weight: 60
 
 <!-- `kubeadm reset` is responsible for cleaning up a node local file system from files that were created using
 the `kubeadm init` or `kubeadm join` commands. For control-plane nodes `reset` also removes the local stacked
-etcd member of this node from the etcd cluster and also removes this node's information from the kubeadm
-`ClusterStatus` object. `ClusterStatus` is a kubeadm managed Kubernetes API object that holds a list of kube-apiserver endpoints. -->
-`kubeadm reset` 负责从使用 `kubeadm init` 或 `kubeadm join` 命令创建的文件中清除节点本地文件系统。对于控制平面节点，`reset` 还从 etcd 集群中删除该节点的本地 etcd 堆成员，还从 kubeadm `ClusterStatus` 对象中删除该节点的信息。
-`ClusterStatus` 是一个 kubeadm 管理的 Kubernetes API 对象，该对象包含 kube-apiserver 端点列表。
+etcd member of this node from the etcd cluster.
+-->
+`kubeadm reset` 负责从使用 `kubeadm init` 或 `kubeadm join` 命令创建的文件中清除节点本地文件系统。
+对于控制平面节点，`reset` 还从 etcd 集群中删除该节点的本地 etcd Stacked 部署的成员。
 
 <!-- `kubeadm reset phase` can be used to execute the separate phases of the above workflow.
 To skip a list of phases you can use the `--skip-phases` flag, which works in a similar way to
@@ -58,6 +58,6 @@ etcdctl del "" --prefix
 
 <!-- * [kubeadm init](/docs/reference/setup-tools/kubeadm/kubeadm-init/) to bootstrap a Kubernetes control-plane node
 * [kubeadm join](/docs/reference/setup-tools/kubeadm/kubeadm-join/) to bootstrap a Kubernetes worker node and join it to the cluster -->
-* 参考 [kubeadm init](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init/) 来初始化 Kubernetes 主节点。
-* 参考 [kubeadm join](/zh/docs/reference/setup-tools/kubeadm/kubeadm-join/) 来初始化 Kubernetes 工作节点并加入集群。
+* 参考 [kubeadm init](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init/) 来初始化 Kubernetes 主节点。
+* 参考 [kubeadm join](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-join/) 来初始化 Kubernetes 工作节点并加入集群。
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-token.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-token.md
similarity index 80%
rename from content/zh/docs/reference/setup-tools/kubeadm/kubeadm-token.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-token.md
index 4409371db7..cfb95bc700 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-token.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-token.md
@@ -22,7 +22,7 @@ Bootstrap tokens are used for establishing bidirectional trust between a node jo
 the cluster and a master node, as described in [authenticating with bootstrap tokens](/docs/reference/access-authn-authz/bootstrap-tokens/).
 -->
 
-如[使用引导令牌进行身份验证](/zh/docs/reference/access-authn-authz/bootstrap-tokens/)所描述的，引导令牌用于在即将加入集群的节点和主节点间建立双向认证。
+如[使用引导令牌进行身份验证](/zh-cn/docs/reference/access-authn-authz/bootstrap-tokens/)所描述的，引导令牌用于在即将加入集群的节点和主节点间建立双向认证。
 
 <!--
 `kubeadm init` creates an initial token with a 24-hour TTL. The following commands allow you to manage
@@ -52,4 +52,4 @@ such a token and also to create and manage new ones.
 <!--
 * [kubeadm join](/docs/reference/setup-tools/kubeadm/kubeadm-join/) to bootstrap a Kubernetes worker node and join it to the cluster
 -->
-* [kubeadm join](/zh/docs/reference/setup-tools/kubeadm/kubeadm-join/) 引导 Kubernetes 工作节点并将其加入集群
+* [kubeadm join](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-join/) 引导 Kubernetes 工作节点并将其加入集群
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-upgrade-phase.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-upgrade-phase.md
similarity index 77%
rename from content/zh/docs/reference/setup-tools/kubeadm/kubeadm-upgrade-phase.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-upgrade-phase.md
index 1b970b5097..4fdbb38d40 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-upgrade-phase.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-upgrade-phase.md
@@ -41,8 +41,8 @@ be called on a primary control-plane node.
 * [kubeadm upgrade](/docs/reference/setup-tools/kubeadm/kubeadm-upgrade/) to upgrade a kubeadm node
 * [kubeadm alpha](/docs/reference/setup-tools/kubeadm/kubeadm-alpha/) to try experimental functionality
 -->
-* [kubeadm init](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init/) 引导一个 Kubernetes 控制平面节点
-* [kubeadm join](/zh/docs/reference/setup-tools/kubeadm/kubeadm-join/) 将节点加入到集群
-* [kubeadm reset](/zh/docs/reference/setup-tools/kubeadm/kubeadm-reset/) 还原 `kubeadm init` 或 `kubeadm join` 命令对主机所做的任何更改
-* [kubeadm upgrade](/zh/docs/reference/setup-tools/kubeadm/kubeadm-upgrade/) 升级 kubeadm 节点
-* [kubeadm alpha](/zh/docs/reference/setup-tools/kubeadm/kubeadm-alpha/) 尝试实验性功能
+* [kubeadm init](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init/) 引导一个 Kubernetes 控制平面节点
+* [kubeadm join](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-join/) 将节点加入到集群
+* [kubeadm reset](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-reset/) 还原 `kubeadm init` 或 `kubeadm join` 命令对主机所做的任何更改
+* [kubeadm upgrade](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-upgrade/) 升级 kubeadm 节点
+* [kubeadm alpha](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-alpha/) 尝试实验性功能
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-upgrade.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-upgrade.md
similarity index 89%
rename from content/zh/docs/reference/setup-tools/kubeadm/kubeadm-upgrade.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-upgrade.md
index 0faea8865c..283bde562f 100644
--- a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-upgrade.md
+++ b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-upgrade.md
@@ -27,10 +27,10 @@ behind one command, with support for both planning an upgrade and actually perfo
 ## kubeadm upgrade 指南
 
 <!--
-The steps for performing a upgrade using kubeadm are outlined in [this document](/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/).
+The steps for performing an upgrade using kubeadm are outlined in [this document](/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/).
 For older versions of kubeadm, please refer to older documentation sets of the Kubernetes website.
 -->
-[本文档](/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)概述
+[本文档](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)概述
 使用 kubeadm 执行升级的步骤。
 与 kubeadm 旧版本相关的文档，请参阅 Kubernetes 网站的旧版文档。
 
@@ -48,7 +48,7 @@ renewal see the [certificate management documentation](/docs/tasks/administer-cl
 在 Kubernetes v1.15.0 和更高版本中，`kubeadm upgrade apply` 和 `kubeadm upgrade node`
 也将自动续订该节点上的 kubeadm 托管证书，包括存储在 kubeconfig 文件中的证书。
 要选择退出，可以传递参数 `--certificate-renewal=false`。
-有关证书续订的更多详细信息请参见[证书管理文档](/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-certs)。
+有关证书续订的更多详细信息请参见[证书管理文档](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-certs)。
 
 
 {{< note >}}
@@ -81,6 +81,6 @@ reports of unexpected results.
 * [kubeadm config](/docs/reference/setup-tools/kubeadm/kubeadm-config/) if you initialized your cluster using kubeadm v1.7.x or lower, to configure your cluster for `kubeadm upgrade`
 -->
 * 如果你使用 kubeadm v1.7.x 或更低版本初始化集群，则可以参考
-  [kubeadm 配置](/zh/docs/reference/setup-tools/kubeadm/kubeadm-config/)
+  [kubeadm 配置](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-config/)
   配置集群用于 `kubeadm upgrade`。
 
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-version.md b/content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-version.md
similarity index 100%
rename from content/zh/docs/reference/setup-tools/kubeadm/kubeadm-version.md
rename to content/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-version.md
diff --git a/content/zh/docs/reference/tools/_index.md b/content/zh-cn/docs/reference/tools/_index.md
similarity index 51%
rename from content/zh/docs/reference/tools/_index.md
rename to content/zh-cn/docs/reference/tools/_index.md
index 2b7fefbe32..6dab3ddb63 100644
--- a/content/zh/docs/reference/tools/_index.md
+++ b/content/zh-cn/docs/reference/tools/_index.md
@@ -16,24 +16,22 @@ no_list: true
 
 <!-- overview -->
 <!-- 
-Kubernetes contains several built-in tools to help you work with the Kubernetes system.
+Kubernetes contains several tools to help you work with the Kubernetes system.
 -->
-Kubernetes 包含多个内置工具来帮助你使用 Kubernetes 系统。
+Kubernetes 包含多种工具来帮助你使用 Kubernetes 系统。
 
 
 <!-- body -->
 
 <!--  
-## Minikube
-
-[`minikube`](https://minikube.sigs.k8s.io/docs/) is a tool that
-runs a single-node Kubernetes cluster locally on your workstation for
-development and testing purposes.
+[`crictl`](https://github.com/kubernetes-sigs/cri-tools) is a command-line
+interface for inspecting and debugging {{<glossary_tooltip term_id="cri" text="CRI">}}-compatible
+container runtimes.
 -->
-## Minikube
+## crictl
 
-[`minikube`](https://minikube.sigs.k8s.io/docs/)
-是一种在你的工作站上本地运行单节点 Kubernetes 集群的工具，用于开发和测试。
+[`crictl`](https://github.com/kubernetes-sigs/cri-tools)
+是用于检查和调试兼容 {{<glossary_tooltip term_id="cri" text="CRI">}} 的容器运行时的命令行接口。
 
 <!-- 
 ## Dashboard
@@ -43,7 +41,7 @@ to a Kubernetes cluster, troubleshoot them, and manage the cluster and its resou
 -->
 ## 仪表盘
 
-[`Dashboard`](/zh/docs/tasks/access-application-cluster/web-ui-dashboard/)，
+[`Dashboard`](/zh-cn/docs/tasks/access-application-cluster/web-ui-dashboard/)，
 基于 Web 的 Kubernetes 用户界面，
 允许你将容器化的应用程序部署到 Kubernetes 集群，
 对它们进行故障排查，并管理集群及其资源本身。
@@ -51,13 +49,14 @@ to a Kubernetes cluster, troubleshoot them, and manage the cluster and its resou
 <!-- 
 ## Helm
 
-[`Kubernetes Helm`](https://github.com/kubernetes/helm) is a tool for managing packages of pre-configured
-Kubernetes resources, aka Kubernetes charts.
+[Helm](https://helm.sh/) is a tool for managing packages of pre-configured
+Kubernetes resources. These packages are known as _Helm charts_.
 -->
 ## Helm
+{{% thirdparty-content single="true" %}}
 
-[`Kubernetes Helm`](https://github.com/kubernetes/helm)
-是一个用于管理预配置 Kubernetes 资源包的工具，也就是 Kubernetes 图表。
+[Helm](https://helm.sh/)
+是一个用于管理预配置 Kubernetes 资源包的工具。这些包被称为“Helm 图表”。
 
 <!-- 
 Use Helm to:
@@ -98,4 +97,46 @@ Use Kompose to:
 
 * 将 Docker Compose 文件翻译成 Kubernetes 对象
 * 从本地 Docker 开发转到通过 Kubernetes 管理你的应用程序
-* 转换 Docker Compose v1 或 v2 版本的 `yaml` 文件或[分布式应用程序包](https://docs.docker.com/compose/bundles/)
\ No newline at end of file
+* 转换 Docker Compose v1 或 v2 版本的 `yaml` 文件或[分布式应用程序包](https://docs.docker.com/compose/bundles/)
+
+## Kui
+
+<!--
+[`Kui`](https://github.com/kubernetes-sigs/kui) is a GUI tool that takes your normal
+`kubectl` command line requests and responds with graphics.
+-->
+[`Kui`](https://github.com/kubernetes-sigs/kui)
+是一个接受你标准的 `kubectl` 命令行请求并以图形响应的 GUI 工具。
+
+<!--
+Kui takes the normal `kubectl` command line requests and responds with graphics. Instead 
+of ASCII tables, Kui provides a GUI rendering with tables that you can sort.
+-->
+Kui 接受标准的 `kubectl` 命令行工具并以图形响应。
+Kui 提供包含可排序表格的 GUI 渲染，而不是 ASCII 表格。
+
+<!--
+Kui lets you:
+
+* Directly click on long, auto-generated resource names instead of copying and pasting
+* Type in `kubectl` commands and see them execute, even sometimes faster than `kubectl` itself
+* Query a {{< glossary_tooltip text="Job" term_id="job">}} and see its execution rendered
+  as a waterfall diagram
+* Click through resources in your cluster using a tabbed UI 
+-->
+Kui 让你能够：
+
+* 直接点击长的、自动生成的资源名称，而不是复制和粘贴
+* 输入 `kubectl` 命令并查看它们的执行，有时甚至比 `kubectl` 本身更快
+* 查询 {{<glossary_tooltip text="Job" term_id="job">}} 并查看其执行渲染为瀑布图
+* 使用选项卡式 UI 在集群中单击资源
+
+## Minikube
+
+<!--
+[`minikube`](https://minikube.sigs.k8s.io/docs/) is a tool that
+runs a single-node Kubernetes cluster locally on your workstation for
+development and testing purposes.
+-->
+[`minikube`](https://minikube.sigs.k8s.io/docs/)
+是一种在你的工作站上本地运行单节点 Kubernetes 集群的工具，用于开发和测试。
\ No newline at end of file
diff --git a/content/zh-cn/docs/reference/tools/map-crictl-dockercli.md b/content/zh-cn/docs/reference/tools/map-crictl-dockercli.md
new file mode 100644
index 0000000000..470c30b528
--- /dev/null
+++ b/content/zh-cn/docs/reference/tools/map-crictl-dockercli.md
@@ -0,0 +1,151 @@
+---
+title: 从 Docker 命令行映射到 crictl
+content_type: reference
+---
+
+<!--
+title: Mapping from dockercli to crictl
+content_type: reference
+-->
+
+{{% thirdparty-content %}}
+
+{{<note>}}
+<!--
+This page is deprecated and will be removed in Kubernetes 1.27.
+-->
+此页面已被废弃，将在 Kubernetes 1.27 版本删除。
+{{</note>}}
+
+<!--
+`crictl` is a command-line interface for {{<glossary_tooltip term_id="cri" text="CRI">}}-compatible container runtimes.
+You can use it to inspect and debug container runtimes and applications on a
+Kubernetes node. `crictl` and its source are hosted in the
+[cri-tools](https://github.com/kubernetes-sigs/cri-tools) repository.
+-->
+`crictl` 是兼容 {{<glossary_tooltip term_id="cri" text="CRI">}}的容器运行时的一种命令行接口。
+你可以使用它来在 Kubernetes 节点上检视和调试容器运行时和应用。
+`crictl` 及其源代码都托管在
+[cri-tools](https://github.com/kubernetes-sigs/cri-tools) 仓库中。
+
+<!--
+This page provides a reference for mapping common commands for the `docker`
+command-line tool into the equivalent commands for `crictl`.
+-->
+本页面提供一份参考资料，用来将 `docker` 命令行工具的常用命令映射到
+`crictl` 的等价命令。
+
+<!--
+## Mapping from docker CLI to crictl
+-->
+## 从 docker 命令行映射到 crictl   {#mapping-from-docker-cli-to-crictl}
+
+<!--
+The exact versions for the mapping table are for `docker` CLI v1.40 and `crictl`
+v1.19.0. This list is not exhaustive. For example, it doesn't include
+experimental `docker` CLI commands.
+-->
+映射表格中列举的确切版本是 `docker` 命令行的 v1.40 版本和 `crictl` 的 v1.19.0 版本。
+这一列表不是完备的。例如，其中并未包含实验性质的 `docker` 命令。
+
+{{< note >}}
+<!--
+The output format of `crictl` is similar to `docker` CLI, despite some missing
+columns for some CLI. Make sure to check output for the specific command if your
+command output is being parsed programmatically.
+-->
+`crictl` 的输出格式类似于 `docker` 命令行，只是对于某些命令而言会有部分列缺失。
+如果你的命令输出会被程序解析，请确保你认真查看了对应的命令输出。
+{{< /note >}}
+
+<!--
+### Retrieve debugging information
+-->
+### 获得调试信息   {#retrieve-debugging-information}
+
+{{< table caption="docker 命令行与 crictl 的映射 - 获得调试信息" >}}
+<!--docker CLI | crictl | Description | Unsupported Features
+-- | -- | -- | --
+`attach` | `attach` | Attach to a running container | `--detach-keys`, `--sig-proxy`
+`exec` | `exec` | Run a command in a running container | `--privileged`, `--user`, `--detach-keys`
+`images` | `images` | List images |  
+`info` | `info` | Display system-wide information |  
+`inspect` | `inspect`, `inspecti` | Return low-level information on a container, image or task |  
+`logs` | `logs` | Fetch the logs of a container | `--details`
+`ps` | `ps` | List containers |  
+`stats` | `stats` | Display a live stream of container(s) resource usage statistics | Column: NET/BLOCK I/O, PIDs
+`version` | `version` | Show the runtime (Docker, ContainerD, or others) version information |  
+-->
+docker CLI | crictl | 描述 | 不支持的功能
+-- | -- | -- | --
+`attach` | `attach` | 挂接到某运行中的容器 | `--detach-keys`, `--sig-proxy`
+`exec` | `exec` | 在运行中的容器内执行命令 | `--privileged`, `--user`, `--detach-keys`
+`images` | `images` | 列举镜像 |  
+`info` | `info` | 显示系统范围的信息 |  
+`inspect` | `inspect`, `inspecti` | 返回容器、镜像或任务的底层信息 |  
+`logs` | `logs` | 取回容器的日志数据  | `--details`
+`ps` | `ps` | 列举容器  |  
+`stats` | `stats` | 显示容器资源用量统计的动态数据流 | 列：NET/BLOCK I/O、PIDs
+`version` | `version` | 显示运行时（Docker、ContainerD 或其他）的版本信息 | 
+{{< /table >}}
+
+<!--
+### Perform Changes
+-->
+### 执行变更    {#perform-changes}
+
+{{< table caption="docker 命令行与 crictl 的映射 - 执行变更" >}}
+<!--
+docker cli | crictl | Description | Unsupported Features
+-- | -- | -- | --
+`create` | `create` | Create a new container |  
+`kill` | `stop` (timeout = 0) | Kill one or more running container | `--signal`
+`pull` | `pull` | Pull an image or a repository from a registry | `--all-tags`, `--disable-content-trust`
+`rm` | `rm` | Remove one or more containers |  
+`rmi` | `rmi` | Remove one or more images |  
+`run` | `run` | Run a command in a new container |  
+`start` | `start` | Start one or more stopped containers | `--detach-keys`
+`stop` | `stop` | Stop one or more running containers |  
+`update` | `update` | Update configuration of one or more containers | `--restart`, `--blkio-weight` and some other resource limit not supported by CRI.
+-->
+docker CLI | crictl | 描述 | 不支持的功能
+-- | -- | -- | --
+`create` | `create` | 创建一个新容器 |  
+`kill` | `stop` (超时值为 0) | 杀死一个或多个运行中的容器 | `--signal`
+`pull` | `pull` | 从某镜像库拉取镜像或仓库 | `--all-tags`, `--disable-content-trust`
+`rm` | `rm` | 移除一个或者多个容器 |  
+`rmi` | `rmi` | 移除一个或者多个镜像 |  
+`run` | `run` | 在一个新的容器中执行命令 |  
+`start` | `start` | 启动一个或多个已停止的容器 | `--detach-keys`
+`stop` | `stop` | 停止一个或多个运行中的容器 |  
+`update` | `update` | 更新一个或多个容器的配置 | `--restart`、`--blkio-weight` 以 CRI 所不支持的资源约束
+{{< /table >}}
+
+<!--
+### Supported only in crictl
+-->
+### 仅被 crictl 支持的命令   {#supported-only-in-crictl}
+
+{{< table caption="docker 命令行与 crictl 的映射 - 仅被 crictl 支持的命令" >}}
+<!--
+crictl | Description
+-- | --
+`imagefsinfo` | Return image filesystem info
+`inspectp` | Display the status of one or more pods
+`port-forward` | Forward local port to a pod
+`pods` | List pods
+`runp` | Run a new pod
+`rmp` | Remove one or more pods
+`stopp` | Stop one or more running pods
+-->
+crictl | 描述
+-- | --
+`imagefsinfo` | 返回镜像文件系统信息
+`inspectp` | 显示一个或多个 Pod 的状态
+`port-forward` | 将本地端口转发到 Pod
+`pods` | 列举 Pod
+`runp` | 运行一个新的 Pod
+`rmp` | 删除一个或多个 Pod
+`stopp` | 停止一个或多个运行中的 Pod
+{{< /table >}}
+
diff --git a/content/zh/docs/reference/using-api/_index.md b/content/zh-cn/docs/reference/using-api/_index.md
similarity index 91%
rename from content/zh/docs/reference/using-api/_index.md
rename to content/zh-cn/docs/reference/using-api/_index.md
index 837adf9dc6..e4a7b86e5c 100644
--- a/content/zh/docs/reference/using-api/_index.md
+++ b/content/zh-cn/docs/reference/using-api/_index.md
@@ -40,8 +40,8 @@ For general background information, read
 describes how clients can authenticate to the Kubernetes API server, and how their
 requests are authorized.
 -->
-如需了解一般背景信息，请查阅 [Kubernetes API](/zh/docs/concepts/overview/kubernetes-api/)。
-[Kubernetes API 控制访问](/zh/docs/concepts/security/controlling-access/)描述了客户端如何
+如需了解一般背景信息，请查阅 [Kubernetes API](/zh-cn/docs/concepts/overview/kubernetes-api/)。
+[Kubernetes API 控制访问](/zh-cn/docs/concepts/security/controlling-access/)描述了客户端如何
 向 Kubernetes API 服务器进行身份认证以及他们的请求如何被鉴权。
 
 
@@ -59,11 +59,11 @@ JSON 和 Protobuf 序列化模式遵循相同的模式更改原则。
 
 <!--
 The API versioning and software versioning are indirectly related.
-The [API and release versioning proposal](https://git.k8s.io/community/contributors/design-proposals/release/versioning.md)
+The [API and release versioning proposal](https://git.k8s.io/sig-release/release-engineering/versioning.md)
 describes the relationship between API versioning and software versioning.
 -->
 API 版本控制和软件版本控制是间接相关的。
-[API 和发布版本控制提案](https://git.k8s.io/community/contributors/design-proposals/release/versioning.md)
+[API 和发布版本控制提案](https://git.k8s.io/sig-release/release-engineering/versioning.md)
 描述了 API 版本控制和软件版本控制间的关系。
 
 <!--
@@ -152,12 +152,12 @@ Here's a summary of each level:
 ## API 组
 
 <!--
-[API groups](https://git.k8s.io/community/contributors/design-proposals/api-machinery/api-group.md)
+[API groups](https://git.k8s.io/design-proposals-archive/api-machinery/api-group.md)
 make it easier to extend the Kubernetes API.
 The API group is specified in a REST path and in the `apiVersion` field of a
 serialized object.
 -->
-[API 组](https://git.k8s.io/community/contributors/design-proposals/api-machinery/api-group.md)
+[API 组](https://git.k8s.io/design-proposals-archive/api-machinery/api-group.md)
 能够简化对 Kubernetes API 的扩展。
 API 组信息出现在REST 路径中，也出现在序列化对象的 `apiVersion` 字段中。
 
@@ -191,6 +191,7 @@ part is omitted, it is treated as if `=true` is specified. For example:
 
  - to disable `batch/v1`, set `--runtime-config=batch/v1=false`
  - to enable `batch/v2alpha1`, set `--runtime-config=batch/v2alpha1`
+ - to enable a specific version of an API, such as `storage.k8s.io/v1beta1/csistoragecapacities`, set `--runtime-config=storage.k8s.io/v1beta1/csistoragecapacities` 
 -->
 ## 启用或禁用 API 组   {#enabling-or-disabling}
 资源和 API 组是在默认情况下被启用的。
@@ -200,6 +201,8 @@ part is omitted, it is treated as if `=true` is specified. For example:
 例如：
  - 禁用 `batch/v1`， 对应参数设置 `--runtime-config=batch/v1=false`
  - 启用 `batch/v2alpha1`， 对应参数设置 `--runtime-config=batch/v2alpha1`
+ - 要启用特定版本的 API，如 `storage.k8s.io/v1beta1/csistoragecapacities`，可以设置
+   `--runtime-config=storage.k8s.io/v1beta1/csistoragecapacities`
 
 <!--
 When you enable or disable groups or resources, you need to restart the API
diff --git a/content/zh-cn/docs/reference/using-api/api-concepts.md b/content/zh-cn/docs/reference/using-api/api-concepts.md
new file mode 100644
index 0000000000..2523de7e0b
--- /dev/null
+++ b/content/zh-cn/docs/reference/using-api/api-concepts.md
@@ -0,0 +1,1631 @@
+---
+title: Kubernetes API 概念
+content_type: concept
+weight: 20
+---
+<!--
+title: Kubernetes API Concepts
+reviewers:
+- smarterclayton
+- lavalamp
+- liggitt
+content_type: concept
+weight: 20
+-->
+
+<!-- overview -->
+<!--
+The Kubernetes API is a resource-based (RESTful) programmatic interface
+provided via HTTP. It supports retrieving, creating, updating, and deleting
+primary resources via the standard HTTP verbs (POST, PUT, PATCH, DELETE,
+GET).
+
+For some resources, the API includes additional subresources that allow
+fine grained authorization (such as a separating viewing details for a Pod from
+retrieving its logs), and can accept and serve those resources in different
+representations for convenience or efficiency.
+-->
+Kubernetes API 是通过 HTTP 提供的基于资源 (RESTful) 的编程接口。
+它支持通过标准 HTTP 动词（POST、PUT、PATCH、DELETE、GET）检索、创建、更新和删除主要资源。
+
+对于某些资源，API 包括额外的子资源，允许细粒度授权（例如将 Pod 的查看详细信息与检索其日志分开），
+为了方便或者提高效率，可以以不同的表示形式接受和服务这些资源。
+
+<!--
+Kubernetes supports efficient change notifications on resources via *watches*.
+Kubernetes also provides consistent list operations so that API clients can
+effectively cache, track, and synchronize the state of resources.
+
+You can view the [API reference](/docs/reference/kubernetes-api/) online,
+or read on to learn about the API in general.
+-->
+Kubernetes 支持通过 **watchs** 实现高效的资源变更通知。
+Kubernetes 还提供了一致的列表操作，以便 API 客户端可以有效地缓存、跟踪和同步资源的状态。
+
+你可以在线查看 [API 参考](/zh-cn/docs/reference/kubernetes-api/)，
+或继续阅读以了解 API 的一般信息。
+
+<!--
+## Kubernetes API terminology {#standard-api-terminology}
+
+Kubernetes generally leverages common RESTful terminology to describe the
+API concepts:
+
+* A *resource type* is the name used in the URL (`pods`, `namespaces`, `services`)
+* All resource types have a concrete representation (their object schema) which is called a *kind*
+* A list of instances of a resource is known as a *collection*
+* A single instance of a resource type is called a *resource*, and also usually represents an *object*
+* For some resource types, the API includes one or more *sub-resources*, which are represented as URI paths below the resource
+-->
+## Kubernetes API 术语  {#standard-api-terminology}
+
+Kubernetes 通常使用常见的 RESTful 术语来描述 API 概念：
+* **资源类型（Resource Type）** 是 URL 中使用的名称（`pods`、`namespaces`、`services`）
+* 所有资源类型都有一个具体的表示（它们的对象模式），称为 **类别（Kind）**
+* 资源实例的列表称为 **集合（Collection）**
+* 资源类型的单个实例称为 **资源（Resource）**，通常也表示一个 **对象（Object）**
+* 对于某些资源类型，API 包含一个或多个 **子资源（sub-resources）**，这些子资源表示为资源下的 URI 路径
+
+<!--
+Most Kubernetes API resource types are
+[objects](/docs/concepts/overview/working-with-objects/kubernetes-objects/#kubernetes-objects):
+they represent a concrete instance of a concept on the cluster, like a
+pod or namespace. A smaller number of API resource types are *virtual* in
+that they often represent operations on objects, rather than objects, such
+as a permission check
+(use a POST with a JSON-encoded body of `SubjectAccessReview` to the
+`subjectaccessreviews` resource), or the `eviction` sub-resource of a Pod
+(used to trigger
+[API-initiated eviction](/docs/concepts/scheduling-eviction/api-eviction/)).
+-->
+大多数 Kubernetes API 资源类型都是
+[对象](/zh-cn/docs/concepts/overview/working-with-objects/kubernetes-objects/#kubernetes-objects)：
+它们代表集群上某个概念的具体实例，例如 Pod 或命名空间。
+少数 API 资源类型是 “虚拟的”，它们通常代表的是操作而非对象本身，
+例如权限检查（使用带有 JSON 编码的 `SubjectAccessReview` 主体的 POST 到 `subjectaccessreviews` 资源），
+或 Pod 的子资源 `eviction`（用于触发 [API-发起的驱逐](/zh-cn/docs/concepts/scheduling-eviction/api-eviction/)）。
+
+<!--
+### Object names
+
+All objects you can create via the API have a unique object
+{{< glossary_tooltip text="name" term_id="name" >}} to allow idempotent creation and
+retrieval, except that virtual resource types may not have unique names if they are
+not retrievable, or do not rely on idempotency.
+Within a {{< glossary_tooltip text="namespace" term_id="namespace" >}}, only one object
+of a given kind can have a given name at a time. However, if you delete the object,
+you can make a new object with the same name. Some objects are not namespaced (for
+example: Nodes), and so their names must be unique across the whole cluster.
+-->
+
+### 对象名字 {#object-names}
+
+你可以通过 API 创建的所有对象都有一个唯一的{{< glossary_tooltip text="名字" term_id="name" >}}，
+以允许幂等创建和检索，
+但如果虚拟资源类型不可检索或不依赖幂等性，则它们可能没有唯一名称。
+在{{< glossary_tooltip text="命名空间" term_id="namespace" >}}内，
+同一时刻只能有一个给定类别的对象具有给定名称。
+但是，如果你删除该对象，你可以创建一个具有相同名称的新对象。
+有些对象没有命名空间（例如：节点），因此它们的名称在整个集群中必须是唯一的。
+
+<!--
+### API verbs
+
+Almost all object resource types support the standard HTTP verbs - GET, POST, PUT, PATCH,
+and DELETE. Kubernetes also uses its own verbs, which are often written lowercase to distinguish
+them from HTTP verbs.
+
+Kubernetes uses the term **list** to describe returning a [collection](#collections) of
+resources to distinguish from retrieving a single resource which is usually called
+a **get**. If you sent an HTTP GET request with the `?watch` query parameter,
+Kubernetes calls this a **watch** and not a **get** (see
+[Efficient detection of changes](#efficient-detection-of-changes) for more details).
+
+For PUT requests, Kubernetes internally classifies these as either **create** or **update**
+based on the state of the existing object. An **update** is different from a **patch**; the
+HTTP verb for a **patch** is PATCH.
+-->
+### API 动词 {#api-verbs}
+
+几乎所有对象资源类型都支持标准 HTTP 动词 - GET、POST、PUT、PATCH 和 DELETE。
+Kubernetes 也使用自己的动词，这些动词通常写成小写，以区别于 HTTP 动词。
+
+Kubernetes 使用术语 **list** 来描述返回资源[集合](#collections)，
+以区别于通常称为 **get** 的单个资源检索。
+如果你发送带有 `?watch` 查询参数的 HTTP GET 请求，
+Kubernetes 将其称为 **watch** 而不是 **get**（有关详细信息，请参阅[快速检测更改](#efficient-detection-of-changes)）。
+
+对于 PUT 请求，Kubernetes 在内部根据现有对象的状态将它们分类为 **create** 或 **update**。
+**update** 不同于 **patch**；**patch** 的 HTTP 动词是 PATCH。
+
+<!--
+## Resource URIs
+
+All resource types are either scoped by the cluster (`/apis/GROUP/VERSION/*`) or to a
+namespace (`/apis/GROUP/VERSION/namespaces/NAMESPACE/*`). A namespace-scoped resource
+type will be deleted when its namespace is deleted and access to that resource type
+is controlled by authorization checks on the namespace scope.
+
+You can also access collections of resources (for example: listing all Nodes).
+The following paths are used to retrieve collections and resources:
+
+* Cluster-scoped resources:
+
+  * `GET /apis/GROUP/VERSION/RESOURCETYPE` - return the collection of resources of the resource type
+  * `GET /apis/GROUP/VERSION/RESOURCETYPE/NAME` - return the resource with NAME under the resource type
+
+* Namespace-scoped resources:
+
+  * `GET /apis/GROUP/VERSION/RESOURCETYPE` - return the collection of all instances of the resource type across all namespaces
+  * `GET /apis/GROUP/VERSION/namespaces/NAMESPACE/RESOURCETYPE` - return collection of all instances of the resource type in NAMESPACE
+  * `GET /apis/GROUP/VERSION/namespaces/NAMESPACE/RESOURCETYPE/NAME` - return the instance of the resource type with NAME in NAMESPACE
+-->
+## 资源 URI {#resource-uris}
+所有资源类型要么是集群作用域的（`/apis/GROUP/VERSION/*`），要么是名字空间
+作用域的（`/apis/GROUP/VERSION/namespaces/NAMESPACE/*`）。
+名字空间作用域的资源类型会在其名字空间被删除时也被删除，并且对该资源类型的
+访问是由定义在名字空间域中的授权检查来控制的。
+
+你还可以访问资源集合（例如：列出所有 Node）。以下路径用于检索集合和资源：
+
+
+* 集群作用域的资源：
+  * `GET /apis/GROUP/VERSION/RESOURCETYPE` - 返回指定资源类型的资源的集合
+  * `GET /apis/GROUP/VERSION/RESOURCETYPE/NAME` - 返回指定资源类型下名称为 NAME 的资源
+* 名字空间作用域的资源：
+  * `GET /apis/GROUP/VERSION/RESOURCETYPE` - 返回所有名字空间中指定资源类型的全部实例的集合
+  * `GET /apis/GROUP/VERSION/namespaces/NAMESPACE/RESOURCETYPE` - 返回名字空间 NAMESPACE 内给定资源类型的全部实例的集合
+  * `GET /apis/GROUP/VERSION/namespaces/NAMESPACE/RESOURCETYPE/NAME` - 返回名字空间 NAMESPACE 中给定资源类型的名称为 NAME 的实例
+
+<!--
+Since a namespace is a cluster-scoped resource type, you can retrieve the list
+(“collection”) of all namespaces with `GET /api/v1/namespaces` and details about
+a particular namespace with `GET /api/v1/namespaces/NAME`.
+-->
+由于名字空间本身是一个集群作用域的资源类型，你可以通过 `GET /api/v1/namespaces/`
+检视所有名字空间的列表（“集合”），使用 `GET /api/v1/namespaces/NAME` 查看特定名字空间的
+详细信息。
+
+<!--
+* Cluster-scoped subresource: `GET /apis/GROUP/VERSION/RESOURCETYPE/NAME/SUBRESOURCE`
+* Namespace-scoped subresource: `GET /apis/GROUP/VERSION/namespaces/NAMESPACE/RESOURCETYPE/NAME/SUBRESOURCE`
+
+The verbs supported for each subresource will differ depending on the object -
+see the [API reference](/docs/reference/kubernetes-api/) for more information. It
+is not possible to access sub-resources across multiple resources - generally a new
+virtual resource type would be used if that becomes necessary.
+-->
+* 集群作用域的子资源：`GET /apis/GROUP/VERSION/RESOURCETYPE/NAME/SUBRESOURCE`
+* 名字空间作用域的子资源：`GET /apis/GROUP/VERSION/namespaces/NAMESPACE/RESOURCETYPE/NAME/SUBRESOURCE`
+
+取决于对象是什么，每个子资源所支持的动词有所不同 - 参见 [API 文档](/zh-cn/docs/reference/kubernetes-api/)以了解更多信息。
+跨多个资源来访问其子资源是不可能的 - 如果需要这一能力，则通常意味着需要一种
+新的虚拟资源类型了。
+
+<!--
+## Efficient detection of changes
+
+The Kubernetes API allows clients to make an initial request for an object or a
+collection, and then to track changes since that initial request: a **watch**. Clients
+can send a **list** or a **get** and then make a follow-up **watch** request.
+
+To make this change tracking possible, every Kubernetes object has a `resourceVersion`
+field representing the version of that resource as stored in the underlying persistence
+layer. When retrieving a collection of resources (either namespace or cluster scoped),
+the response from the API server contains a `resourceVersion` value. The client can
+use that `resourceVersion` to initiate a **watch** against the API server.
+-->
+## 高效检测变更  {#efficient-detection-of-changes}
+
+Kubernetes API 允许客户端对对象或集合发出初始请求，然后跟踪自该初始请求以来的更改：**watch**。
+客户端可以发送 **list** 或者 **get** 请求，然后发出后续 **watch** 请求。
+
+为了使这种更改跟踪成为可能，每个 Kubernetes 对象都有一个 `resourceVersion` 字段，
+表示存储在底层持久层中的该资源的版本。在检索资源集合（命名空间或集群范围）时，
+来自 API 服务器的响应包含一个 `resourceVersion` 值。
+客户端可以使用该 `resourceVersion` 来启动对 API 服务器的 **watch**。
+
+<!--
+When you send a **watch** request, the API server responds with a stream of
+changes. These changes itemize the outcome of operations (such as **create**, **delete**,
+and **update**) that occurred after the `resourceVersion` you specified as a parameter
+to the **watch** request. The overall **watch** mechanism allows a client to fetch
+the current state and then subscribe to subsequent changes, without missing any events.
+
+If a client **watch** is disconnected then that client can start a new **watch** from
+the last returned `resourceVersion`; the client could also perform a fresh **get** /
+**list** request and begin again. See [Resource Version Semantics](#resource-versions)
+for more detail.
+
+For example:
+-->
+当你发送 **watch** 请求时，API 服务器会响应更改流。
+这些更改逐项列出了在你指定为 **watch** 请求参数的 `resourceVersion` 之后发生的操作（例如 **create**、**delete** 和 **update**）的结果。
+整个 **watch** 机制允许客户端获取当前状态，然后订阅后续更改，而不会丢失任何事件。
+
+如果客户端 **watch** 连接断开，则该客户端可以从最后返回的 `resourceVersion` 开始新的 **watch** 请求；
+客户端还可以执行新的 **get**/**list** 请求并重新开始。有关更多详细信息，请参阅[资源版本语义](#resource-versions)。
+
+例如：
+
+<!--
+1. List all of the pods in a given namespace.
+-->
+1. 列举给定名字空间中的所有 Pods：
+
+   ```console
+   GET /api/v1/namespaces/test/pods
+   ---
+   200 OK
+   Content-Type: application/json
+   {
+     "kind": "PodList",
+     "apiVersion": "v1",
+     "metadata": {"resourceVersion":"10245"},
+     "items": [...]
+   }
+   ```
+
+<!--
+2. Starting from resource version 10245, receive notifications of any API operations
+   (such as **create**, **delete**, **apply** or **update**) that affect Pods in the
+   _test_ namespace. Each change notification is a JSON document. The HTTP response body
+   (served as `application/json`) consists a series of JSON documents.
+-->
+2. 从资源版本 10245 开始，接收影响 _test_ 命名空间中 Pod 的所有 API 操作
+   （例如 **create**、**delete**、**apply** 或 **update**）的通知。
+   每个更改通知都是一个 JSON 文档。
+   HTTP 响应正文（用作 `application/json`）由一系列 JSON 文档组成。
+
+   ```
+   GET /api/v1/namespaces/test/pods?watch=1&resourceVersion=10245
+   ---
+   200 OK
+   Transfer-Encoding: chunked
+   Content-Type: application/json
+
+   {
+     "type": "ADDED",
+     "object": {"kind": "Pod", "apiVersion": "v1", "metadata": {"resourceVersion": "10596", ...}, ...}
+   }
+   {
+     "type": "MODIFIED",
+     "object": {"kind": "Pod", "apiVersion": "v1", "metadata": {"resourceVersion": "11020", ...}, ...}
+   }
+   ...
+   ```
+
+<!--
+A given Kubernetes server will only preserve a historical record of changes for a
+limited time. Clusters using etcd 3 preserve changes in the last 5 minutes by default.
+When the requested **watch** operations fail because the historical version of that
+resource is not available, clients must handle the case by recognizing the status code
+`410 Gone`, clearing their local cache, performing a new **get** or **list** operation,
+and starting the **watch** from the `resourceVersion` that was returned.
+
+For subscribing to collections, Kubernetes client libraries typically offer some form
+of standard tool for this **list**-then-**watch** logic. (In the Go client library,
+this is called a `Reflector` and is located in the `k8s.io/client-go/tools/cache` package.)
+-->
+给定的 Kubernetes 服务器只会保留一定的时间内发生的历史变更列表。
+使用 etcd3 的集群默认保存过去 5 分钟内发生的变更。
+当所请求的 **watch** 操作因为资源的历史版本不存在而失败，
+客户端必须能够处理因此而返回的状态代码 `410 Gone`，清空其本地的缓存，
+重新执行 **get** 或者 **list** 操作，
+并基于新返回的 `resourceVersion` 来开始新的 **watch** 操作。
+
+对于订阅集合，Kubernetes 客户端库通常会为 **list** -然后- **watch** 的逻辑提供某种形式的标准工具。
+（在 Go 客户端库中，这称为 `反射器（Reflector）`，位于 `k8s.io/client-go/tools/cache` 包中。）
+
+<!--
+### Watch bookmarks
+
+To mitigate the impact of short history window, the Kubernetes API provides a watch
+event named `BOOKMARK`. It is a special kind of event to mark that all changes up
+to a given `resourceVersion` the client is requesting have already been sent. The
+document representing the `BOOKMARK` event is of the type requested by the request,
+but only includes a `.metadata.resourceVersion` field. For example:
+-->
+### 监视书签  {#Watch-bookmark}
+
+为了减轻短历史窗口的影响，Kubernetes API 提供了一个名为 `BOOKMARK` 的监视事件。
+这是一种特殊的事件，用于标记客户端请求的给定 `resourceVersion` 的所有更改都已发送。
+代表 `BOOKMARK` 事件的文档属于请求所请求的类型，但仅包含一个 `.metadata.resourceVersion` 字段。例如：
+
+```console
+GET /api/v1/namespaces/test/pods?watch=1&resourceVersion=10245&allowWatchBookmarks=true
+---
+200 OK
+Transfer-Encoding: chunked
+Content-Type: application/json
+
+{
+  "type": "ADDED",
+  "object": {"kind": "Pod", "apiVersion": "v1", "metadata": {"resourceVersion": "10596", ...}, ...}
+}
+...
+{
+  "type": "BOOKMARK",
+  "object": {"kind": "Pod", "apiVersion": "v1", "metadata": {"resourceVersion": "12746"} }
+}
+```
+
+<!--
+As a client, you can request `BOOKMARK` events by setting the
+`allowWatchBookmarks=true` query parameter to a **watch** request, but you shouldn't
+assume bookmarks are returned at any specific interval, nor can clients assume that
+the API server will send any `BOOKMARK` event even when requested.
+-->
+作为客户端，你可以在 **watch** 请求中设置 `allowWatchBookmarks=true` 查询参数来请求 `BOOKMARK` 事件，
+但你不应假设书签会在任何特定时间间隔返回，即使要求时，客户端也不能假设 API 服务器会发送任何 `BOOKMARK` 事件。
+
+<!--
+## Retrieving large results sets in chunks
+-->
+## 分块检视大体量结果  {#retrieving-large-results-sets-in-chunks}
+
+{{< feature-state for_k8s_version="v1.9" state="beta" >}}
+
+<!--
+On large clusters, retrieving the collection of some resource types may result in
+very large responses that can impact the server and client. For instance, a cluster
+may have tens of thousands of Pods, each of which is equivalent to roughly 2 KiB of
+encoded JSON. Retrieving all pods across all namespaces may result in a very large
+response (10-20MB) and consume a large amount of server resources.
+-->
+在较大规模集群中，检索某些资源类型的集合可能会导致非常大的响应，从而影响服务器和客户端。
+例如，一个集群可能有数万个 Pod，每个 Pod 大约相当于 2 KiB 的编码 JSON。
+跨所有命名空间检索所有 Pod 可能会导致非常大的响应 (10-20MB) 并消耗大量服务器资源。
+
+<!--
+Provided that you don't explicitly disable the `APIListChunking`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/), the
+Kubernetes API server supports the ability to break a single large collection request
+into many smaller chunks while preserving the consistency of the total request. Each
+chunk can be returned sequentially which reduces both the total size of the request and
+allows user-oriented clients to display results incrementally to improve responsiveness.
+-->
+如果你没有明确禁用 `APIListChunking` [特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)，
+Kubernetes API 服务器支持将单个大型集合请求分解为许多较小块的能力，同时保持总请求的一致性。
+
+<!--
+You can request that the API server handles a **list** by serving single collection
+using pages (which Kubernetes calls _chunks_). To retrieve a single collection in
+chunks, two query parameters `limit` and `continue` are supported on requests against
+collections, and a response field `continue` is returned from all **list** operations
+in the collection's `metadata` field. A client should specify the maximum results they
+wish to receive in each chunk with `limit` and the server will return up to `limit`
+resources in the result and include a `continue` value if there are more resources
+in the collection.
+-->
+你可以请求 API 服务器通过使用页（Kubernetes 将其称为“块（Chunk）”）的方式来处理 **list**，
+完成单个集合的响应。
+要以块的形式检索单个集合，针对集合的请求支持两个查询参数 `limit` 和 `continue`，
+并且从集合元 `metadata` 字段中的所有 **list** 操作返回响应字段 `continue`。
+客户端应该指定他们希望在每个带有 `limit` 的块中接收的条目数上限，如果集合中有更多资源，
+服务器将在结果中返回 `limit` 资源并包含一个 `continue` 值。
+
+<!--
+As an API client, you can then pass this `continue` value to the API server on the
+next request, to instruct the server to return the next page (_chunk_) of results. By
+continuing until the server returns an empty `continue` value, you can retrieve the
+entire collection.
+-->
+作为 API 客户端，你可以在下一次请求时将 `continue` 值传递给 API 服务器，
+以指示服务器返回下一页（_块_）结果。继续下去直到服务器返回一个空的 `continue` 值，
+你可以检索整个集合。
+
+<!--
+Like a **watch** operation, a `continue` token will expire after a short amount
+of time (by default 5 minutes) and return a `410 Gone` if more results cannot be
+returned. In this case, the client will need to start from the beginning or omit the
+`limit` parameter.
+
+For example, if there are 1,253 pods on the cluster and you wants to receive chunks
+of 500 pods at a time, request those chunks as follows:
+-->
+与 **watch** 操作类似，`continue` 令牌也会在很短的时间（默认为 5 分钟）内过期，
+并在无法返回更多结果时返回 `410 Gone` 代码。
+这时，客户端需要从头开始执行上述检视操作或者忽略 `limit` 参数。
+
+例如，如果集群上有 1253 个 Pod，客户端希望每次收到包含至多 500 个 Pod 的
+数据块，它应按下面的步骤来请求数据块：
+
+<!--
+1. List all of the pods on a cluster, retrieving up to 500 pods each time.
+-->
+1. 列举集群中所有 Pod，每次接收至多 500 个 Pods：
+
+   ```console
+   GET /api/v1/pods?limit=500
+   ---
+   200 OK
+   Content-Type: application/json
+
+   {
+     "kind": "PodList",
+     "apiVersion": "v1",
+     "metadata": {
+       "resourceVersion":"10245",
+       "continue": "ENCODED_CONTINUE_TOKEN",
+       ...
+     },
+     "items": [...] // returns pods 1-500
+   }
+   ```
+<!--
+2. Continue the previous call, retrieving the next set of 500 pods.
+-->
+2. 继续前面的调用，返回下一组 500 个 Pods：
+
+   ```console
+   GET /api/v1/pods?limit=500&continue=ENCODED_CONTINUE_TOKEN
+   ---
+   200 OK
+   Content-Type: application/json
+
+   {
+     "kind": "PodList",
+     "apiVersion": "v1",
+     "metadata": {
+       "resourceVersion":"10245",
+       "continue": "ENCODED_CONTINUE_TOKEN_2",
+       ...
+     },
+     "items": [...] // returns pods 501-1000
+   }
+   ```
+
+<!--
+3. Continue the previous call, retrieving the last 253 pods.
+-->
+3. 继续前面的调用，返回最后 253 个 Pods：
+
+  ```console
+   GET /api/v1/pods?limit=500&continue=ENCODED_CONTINUE_TOKEN_2
+   ---
+   200 OK
+   Content-Type: application/json
+
+   {
+     "kind": "PodList",
+     "apiVersion": "v1",
+     "metadata": {
+       "resourceVersion":"10245",
+       "continue": "", // continue token is empty because we have reached the end of the list
+       ...
+     },
+     "items": [...] // returns pods 1001-1253
+   }
+  ```
+
+<!--
+Notice that the `resourceVersion` of the collection remains constant across each request,
+indicating the server is showing you a consistent snapshot of the pods. Pods that
+are created, updated, or deleted after version `10245` would not be shown unless
+you make a separate **list** request without the `continue` token.  This allows you
+to break large requests into smaller chunks and then perform a **watch** operation
+on the full set without missing any updates.
+-->
+请注意，集合的 `resourceVersion` 在每个请求中保持不变，
+这表明服务器正在向你显示 Pod 的一致快照。
+在版本 `10245` 之后创建、更新或删除的 Pod 将不会显示，
+除非你在没有继续令牌的情况下发出单独的 **list** 请求。
+这使你可以将大请求分成更小的块，然后对整个集合执行 **watch** 操作，而不会丢失任何更新。
+
+<!--
+`remainingItemCount` is the number of subsequent items in the collection that are not
+included in this response. If the **list** request contained label or field
+{{< glossary_tooltip text="selectors" term_id="selector">}} then the number of
+remaining items is unknown and the API server does not include a `remainingItemCount`
+field in its response.
+If the **list** is complete (either because it is not chunking, or because this is the
+last chunk), then there are no more remaining items and the API server does not include a
+`remainingItemCount` field in its response. The intended use of the `remainingItemCount`
+is estimating the size of a collection.
+-->
+`remainingItemCount` 是集合中未包含在此响应中的后续项目的数量。
+如果 **list** 请求包含标签或字段{{< glossary_tooltip text="选择器" term_id="selector">}}，
+则剩余项目的数量是未知的，并且 API 服务器在其响应中不包含 `remainingItemCount` 字段。
+如果 **list** 是完整的（因为它没有分块，或者因为这是最后一个块），没有更多的剩余项目，
+API 服务器在其响应中不包含 `remainingItemCount` 字段。
+`remainingItemCount` 的用途是估计集合的大小。
+
+<!--
+## Collections
+
+In Kubernetes terminology, the response you get from a **list** is
+a _collection_. However, Kubernetes defines concrete kinds for
+collections of different types of resource. Collections have a kind
+named for the resource kind, with `List` appended.
+
+When you query the API for a particular type, all items returned by that query are
+of that type.
+For example, when you **list** Services, the collection response
+has `kind` set to
+[`ServiceList`](/docs/reference/kubernetes-api/service-resources/service-v1/#ServiceList); each item in that collection represents a single Service. For example:
+-->
+## 集合 {#collections}
+
+在 Kubernetes 术语中，你从 **list** 中获得的响应是一个“集合（Collections）”。
+然而，Kubernetes 为不同类型资源的集合定义了具体类型。
+集合的类别名是针对资源类别的，并附加了 `List`。
+
+当你查询特定类型的 API 时，该查询返回的所有项目都属于该类型。
+例如，当你 **list** Service 对象时，集合响应的 `kind` 设置为
+[`ServiceList`](/zh-cn/docs/reference/kubernetes-api/service-resources/service-v1/#ServiceList)；
+该集合中的每个项目都代表一个 Service。例如：
+
+```
+GET /api/v1/services
+```
+```yaml
+{
+  "kind": "ServiceList",
+  "apiVersion": "v1",
+  "metadata": {
+    "resourceVersion": "2947301"
+  },
+  "items": [
+    {
+      "metadata": {
+        "name": "kubernetes",
+        "namespace": "default",
+...
+      "metadata": {
+        "name": "kube-dns",
+        "namespace": "kube-system",
+...
+```
+
+<!--
+There are dozens of collection types (such as `PodList`, `ServiceList`,
+and `NodeList`) defined in the Kubernetes API.
+You can get more information about each collection type from the
+[Kubernetes API](/docs/reference/kubernetes-api/) documentation.
+
+Some tools, such as `kubectl`, represent the Kubernetes collection
+mechanism slightly differently from the Kubernetes API itself.
+Because the output of `kubectl` might include the response from
+multiple **list** operations at the API level, `kubectl` represents
+a list of items using `kind: List`. For example:
+-->
+Kubernetes API 中定义了数十种集合类型（如 `PodList`、`ServiceList` 和 `NodeList`）。
+你可以从 [Kubernetes API](/zh-cn/docs/reference/kubernetes-api/) 文档中获取有关每种集合类型的更多信息。
+
+一些工具，例如 `kubectl`，对于 Kubernetes 集合的表现机制与 Kubernetes API 本身略有不同。
+因为 `kubectl` 的输出可能包含来自 API 级别的多个 **list** 操作的响应，
+所以 `kubectl` 使用 `kind: List` 表示项目列表。例如：
+
+```shell
+kubectl get services -A -o yaml
+```
+```yaml
+apiVersion: v1
+kind: List
+metadata:
+  resourceVersion: ""
+  selfLink: ""
+items:
+- apiVersion: v1
+  kind: Service
+  metadata:
+    creationTimestamp: "2021-06-03T14:54:12Z"
+    labels:
+      component: apiserver
+      provider: kubernetes
+    name: kubernetes
+    namespace: default
+...
+- apiVersion: v1
+  kind: Service
+  metadata:
+    annotations:
+      prometheus.io/port: "9153"
+      prometheus.io/scrape: "true"
+    creationTimestamp: "2021-06-03T14:54:14Z"
+    labels:
+      k8s-app: kube-dns
+      kubernetes.io/cluster-service: "true"
+      kubernetes.io/name: CoreDNS
+    name: kube-dns
+    namespace: kube-system
+```
+
+<!--
+Keep in mind that the Kubernetes API does not have a `kind` named `List`.
+
+`kind: List` is a client-side, internal implementation detail for processing
+collections that might be of different kinds of object. Avoid depending on
+`kind: List` in automation or other code.
+-->
+{{< note >}}
+请记住，Kubernetes API 没有名为 `List` 的 `kind`。
+
+`kind: List` 是一个客户端内部实现细节，用于处理可能属于不同类别的对象的集合。
+在自动化或其他代码中避免依赖 `kind: List`。
+{{< /note >}}
+
+<!--
+## Receiving resources as Tables
+
+When you run `kubectl get`, the default output format is a simple tabular
+representation of one or more instances of a particular resource type. In the past,
+clients were required to reproduce the tabular and describe output implemented in
+`kubectl` to perform simple lists of objects.
+A few limitations of that approach include non-trivial logic when dealing with
+certain objects. Additionally, types provided by API aggregation or third party
+resources are not known at compile time. This means that generic implementations
+had to be in place for types unrecognized by a client.
+-->
+## 以表格形式接收资源  {#receiving-resources-as-tables}
+
+当你执行 `kubectl get` 时，默认的输出格式是特定资源类型的一个或多个实例的简单表格形式。
+过去，客户端需要重复 `kubectl` 中所实现的表格输出和描述输出逻辑，以执行
+简单的对象列表操作。
+该方法的一些限制包括处理某些对象时的不可忽视逻辑。
+此外，API 聚合或第三方资源提供的类型在编译时是未知的。
+这意味着必须为客户端无法识别的类型提供通用实现。
+
+<!--
+In order to avoid potential limitations as described above, clients may request
+the Table representation of objects, delegating specific details of printing to the
+server. The Kubernetes API implements standard HTTP content type negotiation: passing
+an `Accept` header containing a value of `application/json;as=Table;g=meta.k8s.io;v=v1`
+with a `GET` call will request that the server return objects in the Table content
+type.
+
+For example, list all of the pods on a cluster in the Table format.
+-->
+为了避免上述各种潜在的局限性，客户端可以请求服务器端返回对象的表格（Table）
+表现形式，从而将打印输出的特定细节委托给服务器。
+Kubernetes API 实现标准的 HTTP 内容类型（Content Type）协商：为 `GET` 调用
+传入一个值为 `application/json;as=Table;g=meta.k8s.io;v=v1` 的 `Accept`
+头部即可请求服务器以 Table 的内容类型返回对象。
+
+例如，以 Table 格式列举集群中所有 Pods：
+
+```console
+GET /api/v1/pods
+Accept: application/json;as=Table;g=meta.k8s.io;v=v1
+---
+200 OK
+Content-Type: application/json
+
+{
+    "kind": "Table",
+    "apiVersion": "meta.k8s.io/v1",
+    ...
+    "columnDefinitions": [
+        ...
+    ]
+}
+```
+
+<!--
+For API resource types that do not have a custom Table definition known to the control
+plane, the API server returns a default Table response that consists of the resource's
+`name` and `creationTimestamp` fields.
+-->
+对于在控制平面上不存在定制的 Table 定义的 API 资源类型而言，服务器会返回
+一个默认的 Table 响应，其中包含资源的 `name` 和 `creationTimestamp` 字段。
+
+```console
+GET /apis/crd.example.com/v1alpha1/namespaces/default/resources
+---
+200 OK
+Content-Type: application/json
+...
+
+{
+    "kind": "Table",
+    "apiVersion": "meta.k8s.io/v1",
+    ...
+    "columnDefinitions": [
+        {
+            "name": "Name",
+            "type": "string",
+            ...
+        },
+        {
+            "name": "Created At",
+            "type": "date",
+            ...
+        }
+    ]
+}
+```
+
+<!--
+Not all API resource types support a Table response; for example, a
+{{< glossary_tooltip term_id="CustomResourceDefinition" text="CustomResourceDefinitions" >}}
+might not define field-to-table mappings, and an APIService that
+[extends the core Kubernetes API](/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)
+might not serve Table responses at all. If you are implementing a client that
+uses the Table information and must work against all resource types, including
+extensions, you should make requests that specify multiple content types in the
+`Accept` header. For example:
+-->
+并非所有 API 资源类型都支持 Table 响应；
+例如，{{< glossary_tooltip term_id="CustomResourceDefinition" text="CustomResourceDefinitions" >}} 可能没有定义字段到表的映射，
+[扩展核心 Kubernetes API](/zh-cn/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)
+的 APIService 可能根本不提供 Table 响应。
+如果你正在实现使用 Table 信息并且必须针对所有资源类型（包括扩展）工作的客户端，
+你应该在 `Accept` 请求头中指定多种内容类型的请求。例如：
+
+```
+Accept: application/json;as=Table;g=meta.k8s.io;v=v1, application/json
+```
+
+<!--
+## Alternate representations of resources
+
+By default, Kubernetes returns objects serialized to JSON with content type
+`application/json`. This is the default serialization format for the API. However,
+clients may request the more efficient
+[Protobuf representation](#protobuf-encoding) of these objects for better performance at scale.
+The Kubernetes API implements standard HTTP content type negotiation: passing an
+`Accept` header with a `GET` call will request that the server tries to return
+a response in your preferred media type, while sending an object in Protobuf to
+the server for a `PUT` or `POST` call means that you must set the `Content-Type`
+header appropriately.
+-->
+## 资源的其他表示形式  {#alternate-representations-of-resources}
+
+默认情况下，Kubernetes 返回序列化为 JSON 的对象，内容类型为 `application/json`。
+这是 API 的默认序列化格式。
+但是，客户端可能会使用更有效的 [Protobuf 表示](#protobuf-encoding) 请求这些对象，
+以获得更好的大规模性能。Kubernetes API 实现标准的 HTTP 内容类型协商：
+带有 `Accept` 请求头部的 `GET` 调用会请求服务器尝试以你的首选媒体类型返回响应，
+而将 Protobuf 中的对象发送到服务器以进行 `PUT` 或 `POST` 调用意味着你必须适当地设置
+`Content-Type` 请求头。
+
+<!--
+The server will return a response with a `Content-Type` header if the requested
+format is supported, or the `406 Not acceptable` error if none of the media types you
+requested are supported. All built-in resource types support the `application/json`
+media type.
+
+See the Kubernetes [API reference](/docs/reference/kubernetes-api/) for a list of
+supported content types for each API.
+
+For example:
+-->
+如果支持请求的格式，服务器将返回带有 `Content-Type` 标头的响应，
+如果不支持你请求的媒体类型，则返回 `406 Not Acceptable` 错误。
+所有内置资源类型都支持 `application/json` 媒体类型。
+
+有关每个 API 支持的内容类型列表，请参阅 Kubernetes [API 参考](/zh-cn/docs/reference/kubernetes-api/)。
+
+例如：
+
+<!--
+1. List all of the pods on a cluster in Protobuf format.
+-->
+1. 以 Protobuf 格式列举集群上的所有 Pods：
+
+   ```console
+   GET /api/v1/pods
+   Accept: application/vnd.kubernetes.protobuf
+   ---
+   200 OK
+   Content-Type: application/vnd.kubernetes.protobuf
+
+   ... binary encoded PodList object
+   ```
+
+<!--
+2. Create a pod by sending Protobuf encoded data to the server, but request a response in JSON.
+-->
+2. 通过向服务器发送 Protobuf 编码的数据创建 Pod，但请求以 JSON 形式接收响应：
+
+   ```console
+   POST /api/v1/namespaces/test/pods
+   Content-Type: application/vnd.kubernetes.protobuf
+   Accept: application/json
+   ... binary encoded Pod object
+   ---
+   200 OK
+   Content-Type: application/json
+
+   {
+     "kind": "Pod",
+     "apiVersion": "v1",
+     ...
+   }
+   ```
+
+<!--
+Not all API resource types support Protobuf; specifically, Protobuf isn't available for
+resources that are defined as
+{{< glossary_tooltip term_id="CustomResourceDefinition" text="CustomResourceDefinitions" >}}
+or are served via the
+{{< glossary_tooltip text="aggregation layer" term_id="aggregation-layer" >}}.
+As a client, if you might need to work with extension types you should specify multiple
+content types in the request `Accept` header to support fallback to JSON.
+For example:
+-->
+并非所有 API 资源类型都支持 Protobuf；具体来说，
+Protobuf 不适用于定义为 {{< glossary_tooltip term_id="CustomResourceDefinition" text="CustomResourceDefinitions" >}}
+或通过{{< glossary_tooltip text="聚合层" term_id="aggregation-layer" >}}提供服务的资源。
+作为客户端，如果你可能需要使用扩展类型，则应在请求 `Accept` 请求头中指定多种内容类型以支持回退到 JSON。
+例如：
+
+```console
+Accept: application/vnd.kubernetes.protobuf, application/json
+```
+
+<!--
+### Kubernetes Protobuf encoding {#protobuf-encoding}
+
+Kubernetes uses an envelope wrapper to encode Protobuf responses. That wrapper starts
+with a 4 byte magic number to help identify content in disk or in etcd as Protobuf
+(as opposed to JSON), and then is followed by a Protobuf encoded wrapper message, which
+describes the encoding and type of the underlying object and then contains the object.
+
+The wrapper format is:
+-->
+### Kubernetes Protobuf encoding {#protobuf-encoding}
+
+Kubernetes 使用封套形式来对 Protobuf 响应进行编码。
+封套外层由 4 个字节的特殊数字开头，便于从磁盘文件或 etcd 中辩识 Protobuf
+格式的（而不是 JSON）数据。
+接下来存放的是 Protobuf 编码的封套消息，其中描述下层对象的编码和类型，最后
+才是对象本身。
+
+封套格式如下：
+
+<!--
+```console
+A four byte magic number prefix:
+  Bytes 0-3: "k8s\x00" [0x6b, 0x38, 0x73, 0x00]
+
+An encoded Protobuf message with the following IDL:
+  message Unknown {
+    // typeMeta should have the string values for "kind" and "apiVersion" as set on the JSON object
+    optional TypeMeta typeMeta = 1;
+
+    // raw will hold the complete serialized object in protobuf. See the protobuf definitions in the client libraries for a given kind.
+    optional bytes raw = 2;
+
+    // contentEncoding is encoding used for the raw data. Unspecified means no encoding.
+    optional string contentEncoding = 3;
+
+    // contentType is the serialization method used to serialize 'raw'. Unspecified means application/vnd.kubernetes.protobuf and is usually
+    // omitted.
+    optional string contentType = 4;
+  }
+
+  message TypeMeta {
+    // apiVersion is the group/version for this type
+    optional string apiVersion = 1;
+    // kind is the name of the object schema. A protobuf definition should exist for this object.
+    optional string kind = 2;
+  }
+```
+-->
+```console
+四个字节的特殊数字前缀：
+  字节 0-3: "k8s\x00" [0x6b, 0x38, 0x73, 0x00]
+
+使用下面 IDL 来编码的 Protobuf 消息：
+  message Unknown {
+    // typeMeta 应该包含 "kind" 和 "apiVersion" 的字符串值，就像
+    // 对应的 JSON 对象中所设置的那样
+    optional TypeMeta typeMeta = 1;
+
+    // raw 中将保存用 protobuf 序列化的完整对象。
+    // 参阅客户端库中为指定 kind 所作的 protobuf 定义
+    optional bytes raw = 2;
+
+    // contentEncoding 用于 raw 数据的编码格式。未设置此值意味着没有特殊编码。
+    optional string contentEncoding = 3;
+
+    // contentType 包含 raw 数据所采用的序列化方法。
+    // 未设置此值意味着  application/vnd.kubernetes.protobuf，且通常被忽略
+    optional string contentType = 4;
+  }
+
+  message TypeMeta {
+    // apiVersion 是 type 对应的组名/版本
+    optional string apiVersion = 1;
+    // kind 是对象模式定义的名称。此对象应该存在一个 protobuf 定义。
+    optional string kind = 2;
+  }
+```
+
+<!--
+Clients that receive a response in `application/vnd.kubernetes.protobuf` that does
+not match the expected prefix should reject the response, as future versions may need
+to alter the serialization format in an incompatible way and will do so by changing
+the prefix.
+-->
+{{< note >}}
+收到 `application/vnd.kubernetes.protobuf` 格式响应的客户端在响应与预期的前缀
+不匹配时应该拒绝响应，因为将来的版本可能需要以某种不兼容的方式更改序列化格式，
+并且这种更改是通过变更前缀完成的。
+{{< /note >}}
+
+<!--
+## Resource deletion
+
+When you **delete** a resource this takes place in two phases.
+
+1. _finalization_
+2. removal
+-->
+## 资源删除  {#resource-deletion}
+
+当你 **delete** 资源时，操作将分两个阶段进行。
+
+1. 终结（finalization）
+2. 移除
+
+
+```yaml
+{
+  "kind": "ConfigMap",
+  "apiVersion": "v1",
+  "metadata": {
+    "finalizers": {"url.io/neat-finalization", "other-url.io/my-finalizer"},
+    "deletionTimestamp": nil,
+  }
+}
+```
+
+<!--
+When a client first sends a **delete** to request removal of a resource, the `.metadata.deletionTimestamp` is set to the current time.
+Once the `.metadata.deletionTimestamp` is set, external controllers that act on finalizers
+may start performing their cleanup work at any time, in any order.
+
+Order is **not** enforced between finalizers because it would introduce significant
+risk of stuck `.metadata.finalizers`.
+
+The `.metadata.finalizers` field is shared: any actor with permission can reorder it.
+If the finalizer list were processed in order, then this might lead to a situation
+in which the component responsible for the first finalizer in the list is
+waiting for some signal (field value, external system, or other) produced by a
+component responsible for a finalizer later in the list, resulting in a deadlock.
+
+Without enforced ordering, finalizers are free to order amongst themselves and are
+not vulnerable to ordering changes in the list.
+
+Once the last finalizer is removed, the resource is actually removed from etcd.
+-->
+当客户端第一次发送 **delete** 请求删除资源时，`.metadata.deletionTimestamp` 设置为当前时间。
+一旦设置了 `.metadata.deletionTimestamp`，
+作用于终结器的外部控制器可以在任何时间以任何顺序开始执行它们的清理工作。
+
+终结器之间 **不存在** 强制的执行顺序，因为这会带来卡住 `.metadata.finalizers` 的重大风险。
+
+`.metadata.finalizers` 字段是共享的：任何有权限的参与者都可以重新排序。
+如果终结器列表是按顺序处理的，那么这可能会导致这样一种情况：
+在列表中负责第一个终结器的组件正在等待列表中稍后负责终结器的组件产生的某些信号
+（字段值、外部系统或其他），从而导致死锁。
+
+如果没有强制排序，终结者可以在它们之间自由排序，并且不易受到列表中排序变化的影响。
+
+当最后一个终结器也被移除时，资源才真正从 etcd 中移除。
+
+<!--
+## Single resource API
+
+The Kubernetes API verbs **get**, **create**, **apply**, **update**, **patch**,
+**delete** and **proxy** support single resources only.
+These verbs with single resource support have no support for submitting multiple
+resources together in an ordered or unordered list or transaction.
+
+When clients (including kubectl) act on a set of resources, the client makes a series
+of single-resource API requests, then aggregates the responses if needed.
+
+By contrast, the Kubernetes API verbs **list** and **watch** allow getting multiple
+resources, and **deletecollection** allows deleting multiple resources.
+-->
+## 单个资源 API  {#single-resource-api}
+
+Kubernetes API 动词 **get**、**create**、**apply**、**update**、**patch**、**delete** 和 **proxy** 仅支持单一资源。
+这些具有单一资源支持的动词不支持在有序或无序列表或事务中一起提交多个资源。
+
+当客户端（包括 kubectl）对一组资源进行操作时，客户端会发出一系列单资源 API 请求，
+然后在需要时聚合响应。
+
+相比之下，Kubernetes API 动词 **list** 和 **watch** 允许获取多个资源，
+而 **deletecollection** 允许删除多个资源。
+
+<!--
+## Dry-run
+-->
+## 试运行  {#dry-run}
+
+{{< feature-state for_k8s_version="v1.18" state="stable" >}}
+
+<!--
+When you use HTTP verbs that can modify resources (`POST`, `PUT`, `PATCH`, and
+`DELETE`), you can submit your request in a _dry run_ mode. Dry run mode helps to
+evaluate a request through the typical request stages (admission chain, validation,
+merge conflicts) up until persisting objects to storage. The response body for the
+request is as close as possible to a non-dry-run response. Kubernetes guarantees that
+dry-run requests will not be persisted in storage or have any other side effects.
+-->
+当你使用可以修改资源的 HTTP 动词（`POST`、`PUT`、`PATCH` 和 `DELETE`）时，
+你可以在 _试运行（dry run）_ 模式下提交你的请求。
+试运行模式有助于通过典型的请求阶段（准入链、验证、合并冲突）评估请求，直到将对象持久化到存储中。
+请求的响应正文尽可能接近非试运行响应。Kubernetes 保证试运行请求不会被持久化存储或产生任何其他副作用。
+
+<!--
+### Make a dry-run request
+
+Dry-run is triggered by setting the `dryRun` query parameter. This parameter is a
+string, working as an enum, and the only accepted values are:
+
+[no value set]
+: Allow side effects. You request this with a query string such as `?dryRun`
+  or `?dryRun&pretty=true`. The response is the final object that would have been
+  persisted, or an error if the request could not be fulfilled.
+
+`All`
+: Every stage runs as normal, except for the final storage stage where side effects
+  are prevented.
+-->
+### 发起试运行请求  {#make-a-dry-run-request}
+
+通过设置 `dryRun` 查询参数触发试运行。此参数是一个字符串，用作枚举，唯一可接受的值是：
+
+[未设置值]
+: 允许副作用。你可以使用 `?dryRun` 或 `?dryRun&pretty=true` 之类的查询字符串请求此操作。
+  响应是最终会被持久化的对象，或者如果请求不能被满足则会出现一个错误。
+
+`All`
+: 每个阶段都正常运行，除了防止副作用的最终存储阶段。
+
+<!--
+When you set `?dryRun=All`, any relevant
+{{< glossary_tooltip text="admission controllers" term_id="admission-controller" >}}
+are run, validating admission controllers check the request post-mutation, merge is
+performed on `PATCH`, fields are defaulted, and schema validation occurs. The changes
+are not persisted to the underlying storage, but the final object which would have
+been persisted is still returned to the user, along with the normal status code.
+-->
+当你设置 `?dryRun=All` 时，将运行任何相关的{{< glossary_tooltip text="准入控制器" term_id="admission-controller" >}}，
+验证准入控制器检查经过变更的请求，针对 `PATCH` 请求执行合并、设置字段默认值等操作，并进行模式验证。
+更改不会持久化到底层存储，但本应持久化的最终对象仍会与正常状态代码一起返回给用户。
+
+<!--
+If the non-dry-run version of a request would trigger an admission controller that has
+side effects, the request will be failed rather than risk an unwanted side effect. All
+built in admission control plugins support dry-run. Additionally, admission webhooks can
+declare in their
+[configuration object](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#webhook-v1beta1-admissionregistration-k8s-io)
+that they do not have side effects, by setting their `sideEffects` field to `None`.
+-->
+如果请求的非试运行版本会触发具有副作用的准入控制器，则该请求将失败，而不是冒不希望的副作用的风险。
+所有内置准入控制插件都支持试运行。
+此外，准入 Webhook 还可以设置[配置对象](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#webhook-v1beta1-admissionregistration-k8s-io)
+的 `sideEffects` 字段为 `None`，借此声明它们没有副作用。
+
+<!--
+If a webhook actually does have side effects, then the `sideEffects` field should be
+set to "NoneOnDryRun". That change is appropriate provided that the webhook is also
+be modified to understand the `DryRun` field in AdmissionReview, and to prevent side
+effects on any request marked as dry runs.
+-->
+{{< note >}}
+如果 webhook 确实有副作用，则应该将 `sideEffects` 字段设置为 “NoneOnDryRun”。
+如果还修改了 webhook 以理解 AdmissionReview 中的 DryRun 字段，
+并防止对标记为试运行的任何请求产生副作用，则该更改是适当的。
+{{< /note >}}
+
+<!--
+Here is an example dry-run request that uses `?dryRun=All`:
+-->
+这是一个使用 `?dryRun=All` 的试运行请求的示例：
+
+```console
+POST /api/v1/namespaces/test/pods?dryRun=All
+Content-Type: application/json
+Accept: application/json
+```
+
+<!--
+The response would look the same as for non-dry-run request, but the values of some
+generated fields may differ.
+-->
+响应会与非试运行模式请求的响应看起来相同，只是某些生成字段的值可能会不同。
+
+<!--
+### Generated values
+
+Some values of an object are typically generated before the object is persisted. It is important not to rely upon the values of these fields set by a dry-run request, since these values will likely be different in dry-run mode from when the real request is made. Some of these fields are:
+
+* `name`: if `generateName` is set, `name` will have a unique random name
+* `creationTimestamp` / `deletionTimestamp`: records the time of creation/deletion
+* `UID`: [uniquely identifies](/docs/concepts/overview/working-with-objects/names/#uids) the object and is randomly generated (non-deterministic)
+* `resourceVersion`: tracks the persisted version of the object
+* Any field set by a mutating admission controller
+* For the `Service` resource: Ports or IP addresses that the kube-apiserver assigns to Service objects
+-->
+### 生成值  {#generated-values}
+
+对象的某些值通常是在对象被写入数据库之前生成的。很重要的一点是不要依赖试运行
+请求为这些字段所设置的值，因为试运行模式下所得到的这些值与真实请求所获得的
+值很可能不同。这类字段有：
+
+* `name`：如果设置了 `generateName` 字段，则 `name` 会获得一个唯一的随机名称
+* `creationTimestamp` / `deletionTimestamp`：记录对象的创建/删除时间
+* `UID`：[唯一标识](/zh-cn/docs/concepts/overview/working-with-objects/names/#uids)对象，
+  取值随机生成（非确定性）
+* `resourceVersion`：跟踪对象的持久化（存储）版本
+* 变更性准入控制器所设置的字段
+* 对于 `Service` 资源：`kube-apiserver` 为 `Service` 对象分配的端口和 IP 地址
+
+<!--
+### Dry-run authorization
+
+Authorization for dry-run and non-dry-run requests is identical. Thus, to make
+a dry-run request, you must be authorized to make the non-dry-run request.
+
+For example, to run a dry-run **patch** for a Deployment, you must be authorized
+to perform that **patch**. Here is an example of a rule for Kubernetes
+{{< glossary_tooltip text="RBAC" term_id="rbac">}} that allows patching
+Deployments:
+-->
+### 试运行的授权    {#dry-run-authorization}
+
+试运行和非试运行请求的鉴权是完全相同的。因此，要发起一个试运行请求，
+你必须被授权执行非试运行请求。
+
+例如，要在 Deployment 对象上试运行 **patch** 操作，你必须具有对 Deployment 执行 **patch** 操作的访问权限，
+如下面的 {{< glossary_tooltip text="RBAC" term_id="rbac">}} 规则所示：
+
+```yaml
+rules:
+- apiGroups: ["extensions", "apps"]
+  resources: ["deployments"]
+  verbs: ["patch"]
+```
+
+<!--
+See [Authorization Overview](/docs/reference/access-authn-authz/authorization/).
+-->
+参阅[鉴权概述](/zh-cn/docs/reference/access-authn-authz/authorization/)以了解鉴权细节。
+
+<!--
+## Server Side Apply
+-->
+## 服务器端应用  {#server-side-apply}
+
+<!--
+Kubernetes' [Server Side Apply](/docs/reference/using-api/server-side-apply/)
+feature allows the control plane to track managed fields for newly created objects.
+Server Side Apply provides a clear pattern for managing field conflicts,
+offers server-side `Apply` and `Update` operations, and replaces the
+client-side functionality of `kubectl apply`.
+
+The API verb for Server-Side Apply is **apply**.
+See [Server Side Apply](/docs/reference/using-api/server-side-apply/) for more details.
+-->
+Kubernetes 的[服务器端应用](/zh-cn/docs/reference/using-api/server-side-apply/)功能允许控制平面跟踪新创建对象的托管字段。
+服务端应用为管理字段冲突提供了清晰的模式，提供了服务器端 `Apply` 和 `Update` 操作，
+并替换了 `kubectl apply` 的客户端功能。
+
+服务端应用的 API 动词是 **apply**。有关详细信息，
+请参阅[服务器端应用](/zh-cn/docs/reference/using-api/server-side-apply/)。
+
+<!--
+## Resource Versions
+
+Resource versions are strings that identify the server's internal version of an
+object. Resource versions can be used by clients to determine when objects have
+changed, or to express data consistency requirements when getting, listing and
+watching resources. Resource versions must be treated as opaque by clients and passed
+unmodified back to the server.
+
+You must not assume resource versions are numeric or collatable. API clients may
+only compare two resource versions for equality (this means that you must not compare
+resource versions for greater-than or less-than relationships).
+-->
+## 资源版本   {#resource-versions}
+
+资源版本是标识服务器内部对象版本的字符串。
+客户端可以使用资源版本来确定对象何时更改，
+或者在获取、列出和监视资源时表达数据一致性要求。
+资源版本必须被客户端视为不透明的，并且未经修改地传回服务器。
+
+你不能假设资源版本是数字的或可排序的。
+API 客户端只能比较两个资源版本的相等性（这意味着你不能比较资源版本的大于或小于关系）。
+
+<!--
+### `resourceVersion` fields in metadata {#resourceversion-in-metadata}
+
+Clients find resource versions in resources, including the resources from the response
+stream for a **watch**, or when using **list** to enumerate resources.
+
+[v1.meta/ObjectMeta](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#objectmeta-v1-meta) - The `metadata.resourceVersion` of a resource instance identifies the resource version the instance was last modified at.
+
+[v1.meta/ListMeta](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#listmeta-v1-meta) - The `metadata.resourceVersion` of a resource collection (the response to a **list**) identifies the resource version at which the collection was constructed.
+-->
+### metadata 中的 `resourceVersion`  {#resourceVersion-in-metadata}
+
+客户端在资源中查找资源版本，这些资源包括来自用于 **watch** 的响应流资源，或者使用 **list** 枚举的资源。
+
+[v1.meta/ObjectMeta](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#objectmeta-v1-meta) - 资源
+的 `metadata.resourceVersion` 值标明该实例上次被更改时的资源版本。
+
+[v1.meta/ListMeta](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#listmeta-v1-meta) - 资源集合
+即 **list** 操作的响应）的 `metadata.resourceVersion` 所标明的是 list
+响应被构造时的资源版本。
+
+<!--
+### `resourceVersion` parameters in query strings {#the-resourceversion-parameter}
+
+The **get**, **list**, and **watch** operations support the `resourceVersion` parameter.
+From version v1.19, Kubernetes API servers also support the `resourceVersionMatch`
+parameter on _list_ requests.
+
+The API server interprets the `resourceVersion` parameter differently depending
+on the operation you request, and on the value of `resourceVersion`. If you set
+`resourceVersionMatch` then this also affects the way matching happens.
+-->
+### 查询字符串中的 `resourceVersion` 参数   {#the-resourceversion-parameter}
+
+**get**、**list** 和 **watch** 操作支持 `resourceVersion` 参数。
+从 v1.19 版本开始，Kubernetes API 服务器支持 **list** 请求的 `resourceVersionMatch` 参数。
+
+API 服务器根据你请求的操作和 `resourceVersion` 的值对 `resourceVersion` 参数进行不同的解释。
+如果你设置 `resourceVersionMatch` 那么这也会影响匹配发生的方式。
+
+
+<!--
+### Semantics for **get** and **list**
+
+For **get** and **list**, the semantics of `resourceVersion` are:
+
+-->
+### **get** 和 **list** 语义   {#semantics-for-get-and-list}
+
+对于 **get** 和 **list** 而言，`resourceVersion` 的语义为：
+
+**get:**
+
+<!--
+| resourceVersion unset | resourceVersion="0" | resourceVersion="{value other than 0}" |
+|-----------------------|---------------------|----------------------------------------|
+| Most Recent           | Any                 | Not older than                         |
+-->
+| resourceVersion 未设置 | resourceVersion="0" | resourceVersion="\<非零值\>" |
+|-----------------------|---------------------|----------------------------------------|
+| 最新版本               | 任何版本            | 不老于给定版本                         |
+
+
+**list:**
+
+<!--
+From version v1.19, Kubernetes API servers support the `resourceVersionMatch` parameter
+on _list_ requests. If you set both `resourceVersion` and `resourceVersionMatch`, the
+`resourceVersionMatch` parameter determines how the API server interprets
+`resourceVersion`.
+
+You should always set the `resourceVersionMatch` parameter when setting
+`resourceVersion` on a **list** request. However, be prepared to handle the case
+where the API server that responds is unaware of `resourceVersionMatch`
+and ignores it.
+-->
+从 v1.19 版本开始，Kubernetes API 服务器支持 **list** 请求的 `resourceVersionMatch` 参数。
+如果同时设置 `resourceVersion` 和 `resourceVersionMatch`，
+则 `resourceVersionMatch` 参数确定 API 服务器如何解释 `resourceVersion`。
+
+在 **list** 请求上设置 `resourceVersion` 时，你应该始终设置 `resourceVersionMatch` 参数。
+但是，请准备好处理响应的 API 服务器不知道 `resourceVersionMatch` 并忽略它的情况。
+
+<!--
+Unless you have strong consistency requirements, using `resourceVersionMatch=NotOlderThan` and
+a known `resourceVersion` is preferable since it can achieve better performance and scalability
+of your cluster than leaving `resourceVersion` and `resourceVersionMatch` unset, which requires
+quorum read to be served.
+
+Setting the `resourceVersionMatch` parameter without setting `resourceVersion` is not valid.
+
+This table explains the behavior of **list** requests with various combinations of
+`resourceVersion` and `resourceVersionMatch`:
+-->
+除非你对一致性有着非常强烈的需求，使用 `resourceVersionMatch=NotOlderThan`
+同时为 `resourceVersion` 设定一个已知值是优选的交互方式，因为与不设置
+`resourceVersion` 和 `resourceVersionMatch` 相比，这种配置可以取得更好的
+集群性能和可扩缩性。后者需要提供带票选能力的读操作。
+
+设置 `resourceVersionMatch` 参数而不设置 `resourceVersion` 参数是不合法的。
+
+下表解释了具有各种 `resourceVersion` 和 `resourceVersionMatch` 组合的 **list** 请求的行为：
+<!--
+| resourceVersionMatch param            | paging params                 | resourceVersion not set | resourceVersion="0"                       | resourceVersion="{value other than 0}" |
+|---------------------------------------|-------------------------------|-----------------------|-------------------------------------------|----------------------------------------|
+| _unset_            | _limit unset_                   | Most Recent           | Any                                       | Not older than                         |
+| _unset_            | limit=\<n\>, _continue unset_     | Most Recent           | Any                                       | Exact                                  |
+| _unset_            | limit=\<n\>, continue=\<token\> | Continue Token, Exact | Invalid, treated as Continue Token, Exact | Invalid, HTTP `400 Bad Request`        |
+| `resourceVersionMatch=Exact`        | _limit unset_                 | Invalid               | Invalid                                   | Exact                                  |
+| `resourceVersionMatch=Exact`        | limit=\<n\>, _continue unset_ | Invalid               | Invalid                                   | Exact                                  |
+| `resourceVersionMatch=NotOlderThan` | _limit unset_                 | Invalid               | Any                                       | Not older than                         |
+| `resourceVersionMatch=NotOlderThan` | limit=\<n\>, _continue unset_ | Invalid               | Any                                       | Not older than                         |
+
+{{</* /table */>}}
+-->
+
+{{< table caption="list 操作的 resourceVersionMatch 与分页参数" >}}
+
+| resourceVersionMatch 参数               | 分页参数                        | resourceVersion 未设置  | resourceVersion="0"                     | resourceVersion="\<非零值\>"     |
+|-----------------------------------------|---------------------------------|-------------------------|-----------------------------------------|----------------------------------|
+| _未设置_             | _limit 未设置_                      | 最新版本                | 任意版本                                | 不老于指定版本                   |
+| _未设置_             | limit=\<n\>, _continue 未设置_        | 最新版本                | 任意版本                                | 精确匹配                         |
+| _未设置_            | limit=\<n\>, continue=\<token\>     | 从 token 开始、精确匹配 | 非法请求，视为从 token 开始、精确匹配  | 非法请求，返回 HTTP `400 Bad Request` |
+| `resourceVersionMatch=Exact` [1]         | _limit 未设置_                      | 非法请求                | 非法请求                                | 精确匹配                         |
+| `resourceVersionMatch=Exact` [1]         | limit=\<n\>, _continue 未设置_        | 非法请求                | 非法请求                                | 精确匹配                         |
+| `resourceVersionMatch=NotOlderThan` [1]  | _limit 未设置_             | 非法请求                | 任意版本                                | 不老于指定版本                   |
+| `resourceVersionMatch=NotOlderThan` [1]  | limit=\<n\>, _continue 未设置_ | 非法请求                | 任意版本                                | 不老于指定版本                   |
+
+{{< /table >}}
+
+<!--
+If your cluster's API server does not honor the `resourceVersionMatch` parameter,
+the behavior is the same as if you did not set it.
+-->
+{{< note >}}
+如果你的集群的 API 服务器不支持 `resourceVersionMatch` 参数，
+则行为与你未设置它时相同。
+{{< /note >}}
+
+<!--
+The meaning of the **get** and **list** semantics are:
+-->
+**get** 和 **list** 的语义是：
+
+<!--
+Any
+: Return data at any resource version. The newest available resource version is preferred,
+  but strong consistency is not required; data at any resource version may be served. It is possible
+  for the request to return data at a much older resource version that the client has previously
+  observed, particularly in high availability configurations, due to partitions or stale
+  caches. Clients that cannot tolerate this should not use this semantic.
+
+Most recent
+: Return data at the most recent resource version. The returned data must be
+  consistent (in detail: served from etcd via a quorum read).
+-->
+任意版本
+: 返回任何资源版本的数据。最新可用资源版本优先，但不需要强一致性；
+  可以提供任何资源版本的数据。由于分区或过时的缓存，
+  请求可能返回客户端先前观察到的更旧资源版本的数据，特别是在高可用性配置中。
+  不能容忍这种情况的客户不应该使用这种语义。
+
+最新版本
+: 返回最新资源版本的数据。
+  返回的数据必须一致（详细说明：通过仲裁读取从 etcd 提供）。
+
+
+<!--
+Not older than
+: Return data at least as new as the provided `resourceVersion`. The newest
+  available data is preferred, but any data not older than the provided `resourceVersion` may be
+  served.  For **list** requests to servers that honor the `resourceVersionMatch` parameter, this
+  guarantees that the collection's `.metadata.resourceVersion` is not older than the requested
+  `resourceVersion`, but does not make any guarantee about the `.metadata.resourceVersion` of any
+  of the items in that collection.
+-->
+
+不老于指定版本
+: 返回数据至少与提供的 `resourceVersion` 一样新。
+  最新的可用数据是首选，但可以提供不早于提供的 `resourceVersion` 的任何数据。
+  对于对遵守 `resourceVersionMatch` 参数的服务器的 **list** 请求，
+  这保证了集合的 `.metadata.resourceVersion` 不早于请求的 `resourceVersion`，
+  但不保证该集合中任何项目的 `.metadata.resourceVersion`。
+
+<!--
+Exact
+: Return data at the exact resource version provided. If the provided `resourceVersion` is
+  unavailable, the server responds with HTTP 410 "Gone".  For **list** requests to servers that honor the
+  `resourceVersionMatch` parameter, this guarantees that the collection's `.metadata.resourceVersion`
+  is the same as the `resourceVersion` you requested in the query string. That guarantee does
+  not apply to the `.metadata.resourceVersion` of any items within that collection.
+
+Continue Token, Exact
+: Return data at the resource version of the initial paginated **list** call. The returned _continue
+  tokens_ are responsible for keeping track of the initially provided resource version for all paginated
+  **list** calls after the initial paginated **list**.
+-->
+
+精确匹配
+: 以提供的确切资源版本返回数据。如果提供的 `resourceVersion` 不可用，
+  则服务器以 HTTP 410 “Gone”响应。对于对支持 `resourceVersionMatch` 参数的服务器的 **list** 请求，
+  这可以保证集合的 `.metadata.resourceVersion` 与你在查询字符串中请求的 `resourceVersion` 相同。
+  该保证不适用于该集合中任何项目的 `.metadata.resourceVersion`。
+
+从 token 开始、精确匹配
+: 返回初始分页 **list** 调用的资源版本的数据。
+  返回的 _Continue 令牌_ 负责跟踪最初提供的资源版本，最初提供的资源版本用于在初始分页 **list** 之后的所有分页 **list** 中。
+
+<!--
+When you **list** resources and receive a collection response, the response includes the
+[metadata](/docs/reference/generated/kubernetes-api/v1.21/#listmeta-v1-meta) of the collection as
+well as [object metadata](/docs/reference/generated/kubernetes-api/v1.21/#listmeta-v1-meta)
+for each item in that collection. For individual objects found within a collection response,
+`.metadata.resourceVersion` tracks when that object was last updated, and not how up-to-date
+the object is when served.
+-->
+
+{{< note >}}
+当你 **list** 资源并收到集合响应时，
+响应包括集合的[元数据](/docs/reference/generated/kubernetes-api/v1.21/#listmeta-v1-meta)
+以及该集合中每个项目的[对象元数据](/docs/reference/generated/kubernetes-api/v1.21/#listmeta-v1-meta)。
+对于在集合响应中找到的单个对象，`.metadata.resourceVersion` 跟踪该对象的最后更新时间，
+而不是对象在服务时的最新程度。
+{{< /note >}}
+
+<!--
+When using `resourceVersionMatch=NotOlderThan` and limit is set, clients must
+handle HTTP 410 "Gone" responses. For example, the client might retry with a
+newer `resourceVersion` or fall back to `resourceVersion=""`.
+
+When using `resourceVersionMatch=Exact` and `limit` is unset, clients must
+verify that the collection's `.metadata.resourceVersion` matches
+the requested `resourceVersion`, and handle the case where it does not. For
+example, the client might fall back to a request with `limit` set.
+-->
+
+当使用 `resourceVersionMatch=NotOlderThan` 并设置了限制时，
+客户端必须处理 HTTP 410 “Gone” 响应。
+例如，客户端可能会使用更新的 `resourceVersion` 重试或回退到 `resourceVersion=""`。
+
+当使用 `resourceVersionMatch=Exact` 并且未设置限制时，
+客户端必须验证集合的 `.metadata.resourceVersion` 是否与请求的 `resourceVersion` 匹配，
+并处理不匹配的情况。例如，客户端可能会退回到设置了限制的请求。
+
+
+<!--
+### Semantics for **watch**
+
+For watch, the semantics of resource version are:
+-->
+### **watch** 语义   {#semantics-for-watch}
+
+对于 watch 操作而言，资源版本的语义如下：
+
+**watch：**
+
+<!--
+{{< table caption="resourceVersion for watch" >}}
+
+| resourceVersion unset               | resourceVersion="0"        | resourceVersion="{value other than 0}" |
+|-------------------------------------|----------------------------|----------------------------------------|
+| Get State and Start at Most Recent  | Get State and Start at Any | Start at Exact                         |
+
+{{< /table >}}
+-->
+
+{{< table caption="watch 操作的 resourceVersion 设置" >}}
+
+| resourceVersion 未设置    | resourceVersion="0"      | resourceVersion="\<非零值\>" |
+|---------------------------|--------------------------|------------------------------|
+| 读取状态并从最新版本开始  | 读取状态并从任意版本开始 | 从指定版本开始               |
+
+{{< /table >}}
+
+<!--
+The meaning of the **watch** semantics are:
+
+Get State and Start at Any
+: {{< caution >}} Watches initialized this way may return arbitrarily stale
+  data. Please review this semantic before using it, and favor the other semantics
+  where possible.
+  {{< /caution >}}
+  Start a **watch** at any resource version; the most recent resource version
+  available is preferred, but not required. Any starting resource version is
+  allowed. It is possible for the **watch** to start at a much older resource
+  version that the client has previously observed, particularly in high availability
+  configurations, due to partitions or stale caches. Clients that cannot tolerate
+  this apparent rewinding should not start a **watch** with this semantic. To
+  establish initial state, the **watch** begins with synthetic "Added" events for
+  all resource instances that exist at the starting resource version. All following
+  watch events are for all changes that occurred after the resource version the
+  **watch** started at.
+-->
+**watch** 操作语义的含义如下：
+
+读取状态并从任意版本开始
+: {{< caution >}}
+  以这种方式初始化的监视可能会返回任意陈旧的数据。
+  请在使用之前查看此语义，并尽可能支持其他语义。
+  {{< /caution >}}
+  在任何资源版本开始 **watch**；首选可用的最新资源版本，但不是必需的。允许任何起始资源版本。
+  由于分区或过时的缓存，**watch** 可能从客户端之前观察到的更旧的资源版本开始，
+  特别是在高可用性配置中。不能容忍这种明显倒带的客户不应该用这种语义启动 **watch**。
+  为了建立初始状态，**watch** 从起始资源版本中存在的所有资源实例的合成 “添加” 事件开始。
+  以下所有监视事件都针对在 **watch** 开始的资源版本之后发生的所有更改。
+
+<!--
+Get State and Start at Most Recent
+: Start a **watch** at the most recent resource version, which must be consistent
+  (in detail: served from etcd via a quorum read). To establish initial state,
+  the **watch** begins with synthetic "Added" events of all resources instances
+  that exist at the starting resource version. All following watch events are for
+  all changes that occurred after the resource version the **watch** started at.
+-->
+读取状态并从最新版本开始
+: 从最近的资源版本开始 **watch**，
+  它必须是一致的（详细说明：通过仲裁读取从 etcd 提供服务）。
+  为了建立初始状态，**watch** 从起始资源版本中存在的所有资源实例的合成 “添加” 事件开始。
+  以下所有监视事件都针对在 **watch** 开始的资源版本之后发生的所有更改。
+
+<!--
+Start at Exact
+: Start a **watch** at an exact resource version. The watch events are for all changes
+  after the provided resource version. Unlike "Get State and Start at Most Recent"
+  and "Get State and Start at Any", the **watch** is not started with synthetic
+  "Added" events for the provided resource version. The client is assumed to already
+  have the initial state at the starting resource version since the client provided
+  the resource version.
+-->
+从指定版本开始
+: 以确切的资源版本开始 **watcH**。监视事件适用于提供的资源版本之后的所有更改。
+  与 “Get State and Start at Most Recent” 和 “Get State and Start at Any” 不同，
+  **watch** 不会以所提供资源版本的合成 “添加” 事件启动。
+  由于客户端提供了资源版本，因此假定客户端已经具有起始资源版本的初始状态。
+
+<!--
+### "410 Gone" responses
+
+Servers are not required to serve all older resource versions and may return a HTTP
+`410 (Gone)` status code if a client requests a `resourceVersion` older than the
+server has retained. Clients must be able to tolerate `410 (Gone)` responses. See
+[Efficient detection of changes](#efficient-detection-of-changes) for details on
+how to handle `410 (Gone)` responses when watching resources.
+
+If you request a `resourceVersion` outside the applicable limit then, depending
+on whether a request is served from cache or not, the API server may reply with a
+`410 Gone` HTTP response.
+-->
+### "410 Gone" 响应     {#410-gone-responses}
+
+服务器不需要提供所有老的资源版本，在客户端请求的是早于服务器端所保留版本的
+`resourceVersion` 时，可以返回 HTTP `410 (Gone)` 状态码。
+客户端必须能够容忍 `410 (Gone)` 响应。
+参阅[高效检测变更](#efficient-detection-of-changes)以了解如何在监测资源时
+处理 `410 (Gone)` 响应。
+
+如果所请求的 `resourceVersion` 超出了可应用的 `limit`，那么取决于请求是否
+是通过高速缓存来满足的，API 服务器可能会返回一个 `410 Gone` HTTP 响应。
+
+<!--
+### Unavailable resource versions
+
+Servers are not required to serve unrecognized resource versions. If you request
+**list** or **get** for a resource version that the API server does not recognize,
+then the API server may either:
+
+* wait briefly for the resource version to become available, then timeout with a
+  `504 (Gateway Timeout)` if the provided resource versions does not become available
+  in a reasonable amount of time;
+* respond with a `Retry-After` response header indicating how many seconds a client
+  should wait before retrying the request.
+-->
+### 不可用的资源版本  {#unavailable-resource-versions}
+
+服务器不需要提供无法识别的资源版本。
+如果你请求了 **list** 或 **get** API 服务器无法识别的资源版本，则 API 服务器可能会：
+
+* 短暂等待资源版本可用，如果提供的资源版本在合理的时间内仍不可用，
+  则应超时并返回 `504 (Gateway Timeout)`；
+* 使用 `Retry-After` 响应标头进行响应，指示客户端在重试请求之前应等待多少秒。
+
+<!--
+If you request a resource version that an API server does not recognize, the
+kube-apiserver additionally identifies its error responses with a "Too large resource
+version" message.
+
+If you make a **watch** request for an unrecognized resource version, the API server
+may wait indefinitely (until the request timeout) for the resource version to become
+available.
+-->
+如果你请求 API 服务器无法识别的资源版本，
+kube-apiserver 还会使用 “Too large resource version” 消息额外标识其错误响应。
+
+如果你对无法识别的资源版本发出 **watch** 请求，
+API 服务器可能会无限期地等待（直到请求超时）资源版本变为可用。
\ No newline at end of file
diff --git a/content/zh/docs/reference/using-api/client-libraries.md b/content/zh-cn/docs/reference/using-api/client-libraries.md
similarity index 86%
rename from content/zh/docs/reference/using-api/client-libraries.md
rename to content/zh-cn/docs/reference/using-api/client-libraries.md
index 470328e777..bbcc33cae1 100644
--- a/content/zh/docs/reference/using-api/client-libraries.md
+++ b/content/zh-cn/docs/reference/using-api/client-libraries.md
@@ -26,9 +26,9 @@ To write applications using the [Kubernetes REST API](/docs/reference/using-api/
 you do not need to implement the API calls and request/response types yourself.
 You can use a client library for the programming language you are using.
 -->
-在使用 [Kubernetes REST API](/zh/docs/reference/using-api/) 编写应用程序时，
-您并不需要自己实现 API 调用和 “请求/响应” 类型。
-您可以根据自己的编程语言需要选择使用合适的客户端库。
+在使用 [Kubernetes REST API](/zh-cn/docs/reference/using-api/) 编写应用程序时，
+你并不需要自己实现 API 调用和 “请求/响应” 类型。
+你可以根据自己的编程语言需要选择使用合适的客户端库。
 
 <!--
 Client libraries often handle common tasks such as authentication for you.
@@ -37,9 +37,9 @@ authenticate if the API client is running inside the Kubernetes cluster, or can
 understand the [kubeconfig file](/docs/tasks/access-application-cluster/configure-access-multiple-clusters/)
 format to read the credentials and the API Server address.
 -->
-客户端库通常为您处理诸如身份验证之类的常见任务。
+客户端库通常为你处理诸如身份验证之类的常见任务。
 如果 API 客户端在 Kubernetes 集群中运行，大多数客户端库可以发现并使用 Kubernetes 服务帐户进行身份验证，
-或者能够理解 [kubeconfig 文件](/zh/docs/tasks/access-application-cluster/configure-access-multiple-clusters/)
+或者能够理解 [kubeconfig 文件](/zh-cn/docs/tasks/access-application-cluster/configure-access-multiple-clusters/)
 格式来读取凭据和 API 服务器地址。
 
 <!--
@@ -56,21 +56,27 @@ The following client libraries are officially maintained by
 <!--
 | Language | Client Library | Sample Programs |
 |----------|----------------|-----------------|
+| C          | [github.com/kubernetes-client/c](https://github.com/kubernetes-client/c/) | [browse](https://github.com/kubernetes-client/c/tree/master/examples)
 | dotnet   | [github.com/kubernetes-client/csharp](https://github.com/kubernetes-client/csharp) | [browse](https://github.com/kubernetes-client/csharp/tree/master/examples/simple)
 | Go       | [github.com/kubernetes/client-go/](https://github.com/kubernetes/client-go/) | [browse](https://github.com/kubernetes/client-go/tree/master/examples)
 | Haskell  | [github.com/kubernetes-client/haskell](https://github.com/kubernetes-client/haskell) | [browse](https://github.com/kubernetes-client/haskell/tree/master/kubernetes-client/example)
 | Java     | [github.com/kubernetes-client/java](https://github.com/kubernetes-client/java/) | [browse](https://github.com/kubernetes-client/java#installation)
 | JavaScript   | [github.com/kubernetes-client/javascript](https://github.com/kubernetes-client/javascript) | [browse](https://github.com/kubernetes-client/javascript/tree/master/examples)
+| Perl       | [github.com/kubernetes-client/perl/](https://github.com/kubernetes-client/perl/) | [browse](https://github.com/kubernetes-client/perl/tree/master/examples)
 | Python   | [github.com/kubernetes-client/python/](https://github.com/kubernetes-client/python/) | [browse](https://github.com/kubernetes-client/python/tree/master/examples)
+| Ruby       | [github.com/kubernetes-client/ruby/](https://github.com/kubernetes-client/ruby/) | [browse](https://github.com/kubernetes-client/ruby/tree/master/examples)
 -->
 |   语言  |     客户端库    |     样例程序    |
 |---------|-----------------|-----------------|
+| C       | [github.com/kubernetes-client/c](https://github.com/kubernetes-client/c/) | [浏览](https://github.com/kubernetes-client/c/tree/master/examples)
 | dotnet   | [github.com/kubernetes-client/csharp](https://github.com/kubernetes-client/csharp) | [浏览](https://github.com/kubernetes-client/csharp/tree/master/examples/simple)
 | Go       | [github.com/kubernetes/client-go/](https://github.com/kubernetes/client-go/) | [浏览](https://github.com/kubernetes/client-go/tree/master/examples)
 | Haskell  | [github.com/kubernetes-client/haskell](https://github.com/kubernetes-client/haskell) | [浏览](https://github.com/kubernetes-client/haskell/tree/master/kubernetes-client/example)
 | Java     | [github.com/kubernetes-client/java](https://github.com/kubernetes-client/java/) | [浏览](https://github.com/kubernetes-client/java#installation)
 | JavaScript   | [github.com/kubernetes-client/javascript](https://github.com/kubernetes-client/javascript) | [浏览](https://github.com/kubernetes-client/javascript/tree/master/examples)
+| Perl       | [github.com/kubernetes-client/perl/](https://github.com/kubernetes-client/perl/) | [浏览](https://github.com/kubernetes-client/perl/tree/master/examples)
 | Python   | [github.com/kubernetes-client/python/](https://github.com/kubernetes-client/python/) | [浏览](https://github.com/kubernetes-client/python/tree/master/examples)
+| Ruby       | [github.com/kubernetes-client/ruby/](https://github.com/kubernetes-client/ruby/) | [浏览](https://github.com/kubernetes-client/ruby/tree/master/examples)
 
 <!--
 ## Community-maintained client libraries
@@ -109,11 +115,11 @@ their authors, not the Kubernetes team.
 | PHP                  | [github.com/travisghansen/kubernetes-client-php](https://github.com/travisghansen/kubernetes-client-php) |
 | PHP                  | [github.com/renoki-co/php-k8s](https://github.com/renoki-co/php-k8s) |
 | Python               | [github.com/fiaas/k8s](https://github.com/fiaas/k8s) |
+| Python               | [github.com/gtsystem/lightkube](https://github.com/gtsystem/lightkube) |
 | Python               | [github.com/mnubo/kubernetes-py](https://github.com/mnubo/kubernetes-py) |
 | Python               | [github.com/tomplus/kubernetes_asyncio](https://github.com/tomplus/kubernetes_asyncio) |
 | Python               | [github.com/Frankkkkk/pykorm](https://github.com/Frankkkkk/pykorm) |
 | Ruby                 | [github.com/abonas/kubeclient](https://github.com/abonas/kubeclient) |
-| Ruby                 | [github.com/Ch00k/kuber](https://github.com/Ch00k/kuber) |
 | Ruby                 | [github.com/k8s-ruby/k8s-ruby](https://github.com/k8s-ruby/k8s-ruby) |
 | Ruby                 | [github.com/kontena/k8s-client](https://github.com/kontena/k8s-client) |
 | Rust                 | [github.com/clux/kube-rs](https://github.com/clux/kube-rs) |
@@ -121,8 +127,8 @@ their authors, not the Kubernetes team.
 | Scala                | [github.com/hagay3/skuber](https://github.com/hagay3/skuber) |
 | Scala                | [github.com/joan38/kubernetes-client](https://github.com/joan38/kubernetes-client) |
 -->
-| 语言                 | 客户端库                                  |
-| -------------------- | ---------------------------------------- |
+| 语言                   | 客户端库                                  |
+|----------------------| ---------------------------------------- |
 | Clojure              | [github.com/yanatan16/clj-kubernetes-api](https://github.com/yanatan16/clj-kubernetes-api) |
 | DotNet               | [github.com/tonnyeremin/kubernetes_gen](https://github.com/tonnyeremin/kubernetes_gen) |
 | DotNet (RestSharp)   | [github.com/masroorhasan/Kubernetes.DotNet](https://github.com/masroorhasan/Kubernetes.DotNet) |
@@ -144,11 +150,11 @@ their authors, not the Kubernetes team.
 | PHP                  | [github.com/travisghansen/kubernetes-client-php](https://github.com/travisghansen/kubernetes-client-php) |
 | PHP                  | [github.com/renoki-co/php-k8s](https://github.com/renoki-co/php-k8s) |
 | Python               | [github.com/fiaas/k8s](https://github.com/fiaas/k8s) |
+| Python               | [github.com/gtsystem/lightkube](https://github.com/gtsystem/lightkube) |
 | Python               | [github.com/mnubo/kubernetes-py](https://github.com/mnubo/kubernetes-py) |
 | Python               | [github.com/tomplus/kubernetes_asyncio](https://github.com/tomplus/kubernetes_asyncio) |
 | Python               | [github.com/Frankkkkk/pykorm](https://github.com/Frankkkkk/pykorm) |
 | Ruby                 | [github.com/abonas/kubeclient](https://github.com/abonas/kubeclient) |
-| Ruby                 | [github.com/Ch00k/kuber](https://github.com/Ch00k/kuber) |
 | Ruby                 | [github.com/k8s-ruby/k8s-ruby](https://github.com/k8s-ruby/k8s-ruby) |
 | Ruby                 | [github.com/kontena/k8s-client](https://github.com/kontena/k8s-client) |
 | Rust                 | [github.com/clux/kube-rs](https://github.com/clux/kube-rs) |
diff --git a/content/zh-cn/docs/reference/using-api/deprecation-guide.md b/content/zh-cn/docs/reference/using-api/deprecation-guide.md
new file mode 100644
index 0000000000..2d2f7476c0
--- /dev/null
+++ b/content/zh-cn/docs/reference/using-api/deprecation-guide.md
@@ -0,0 +1,767 @@
+---
+title: 已弃用 API 的迁移指南
+weight: 45
+content_type: reference
+---
+
+<!--
+reviewers:
+- liggitt
+- lavalamp
+- thockin
+- smarterclayton
+title: "Deprecated API Migration Guide"
+weight: 45
+content_type: reference
+-->
+
+<!-- overview -->
+
+<!--
+As the Kubernetes API evolves, APIs are periodically reorganized or upgraded.
+When APIs evolve, the old API is deprecated and eventually removed.
+This page contains information you need to know when migrating from
+deprecated API versions to newer and more stable API versions.
+-->
+随着 Kubernetes API 的演化，APIs 会周期性地被重组或升级。
+当 APIs 演化时，老的 API 会被弃用并被最终删除。
+本页面包含你在将已弃用 API 版本迁移到新的更稳定的 API 版本时需要了解的知识。
+
+<!-- body -->
+
+<!--
+## Removed APIs by release
+-->
+## 各发行版本中移除的 API  {#removed-apis-by-release}
+
+### v1.27
+
+<!--
+The **v1.27** release will stop serving the following deprecated API versions:
+-->
+**v1.27** 发行版本中将去除以下已弃用的 API 版本：
+
+#### CSIStorageCapacity {#csistoragecapacity-v127}
+
+<!--
+The **storage.k8s.io/v1beta1** API version of CSIStorageCapacity will no longer be served in v1.27.
+
+* Migrate manifests and API clients to use the **storage.k8s.io/v1** API version, available since v1.24.
+* All existing persisted objects are accessible via the new API
+* No notable changes
+-->
+**storage.k8s.io/v1beta1** API版本的 CSIStorageCapacity 将不再在 v1.27 提供。
+
+* 自 v1.24 版本起，迁移清单和 API 客户端使用 **storage.k8s.io/v1** API 版本
+* 所有现有的持久化对象都可以通过新的 API 访问
+* 没有需要额外注意的变更
+
+### v1.26
+
+<!--
+The **v1.26** release will stop serving the following deprecated API versions:
+-->
+**v1.26** 发行版本中将去除以下已弃用的 API 版本：
+
+<!--
+#### Flow control resources {#flowcontrol-resources-v126}
+-->
+#### 流控制资源     {#flowcontrol-resources-v126}
+
+<!--
+The **flowcontrol.apiserver.k8s.io/v1beta1** API version of FlowSchema and PriorityLevelConfiguration will no longer be served in v1.26.
+
+* Migrate manifests and API clients to use the **flowcontrol.apiserver.k8s.io/v1beta2** API version, available since v1.23.
+* All existing persisted objects are accessible via the new API
+* No notable changes
+-->
+**flowcontrol.apiserver.k8s.io/v1beta1** API 版本的 FlowSchema
+和 PriorityLevelConfiguration 将不会在 v1.26 中提供。
+
+* 迁移清单和 API 客户端使用 **flowcontrol.apiserver.k8s.io/v1beta2** API 版本，
+  此 API 从 v1.23 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+* 没有需要额外注意的变更
+
+#### HorizontalPodAutoscaler {#horizontalpodautoscaler-v126}
+
+<!--
+The **autoscaling/v2beta2** API version of HorizontalPodAutoscaler will no longer be served in v1.26.
+
+* Migrate manifests and API clients to use the **autoscaling/v2** API version, available since v1.23.
+* All existing persisted objects are accessible via the new API
+-->
+**autoscaling/v2beta2** API 版本的 HorizontalPodAutoscaler 将不会在
+v1.26 版本中提供。
+
+* 迁移清单和 API 客户端使用 **autoscaling/v2** API 版本，
+  此 API 从 v1.23 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+
+### v1.25
+
+<!--
+The **v1.25** release will stop serving the following deprecated API versions:
+-->
+**v1.25** 发行版本将停止提供以下已废弃 API 版本：
+
+#### CronJob {#cronjob-v125}
+
+<!--
+The **batch/v1beta1** API version of CronJob will no longer be served in v1.25.
+
+* Migrate manifests and API clients to use the **batch/v1** API version, available since v1.21.
+* All existing persisted objects are accessible via the new API
+* No notable changes
+-->
+**batch/v1beta1** API 版本的 CronJob 将不会在 v1.25 版本中继续提供。
+
+* 迁移清单和 API 客户端使用 **batch/v1** API 版本，此 API 从 v1.21 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+* 没有需要额外注意的变更
+
+#### EndpointSlice {#endpointslice-v125}
+
+<!--
+The **discovery.k8s.io/v1beta1** API version of EndpointSlice will no longer be served in v1.25.
+
+* Migrate manifests and API clients to use the **discovery.k8s.io/v1** API version, available since v1.21.
+* All existing persisted objects are accessible via the new API
+* Notable changes in **discovery.k8s.io/v1**:
+    * use per Endpoint `nodeName` field instead of deprecated `topology["kubernetes.io/hostname"]` field
+    * use per Endpoint `zone` field instead of deprecated `topology["topology.kubernetes.io/zone"]` field
+    * `topology` is replaced with the `deprecatedTopology` field which is not writable in v1
+-->
+**discovery.k8s.io/v1beta1** API 版本的 EndpointSlice 将不会在 v1.25 版本中继续提供。
+
+* 迁移清单和 API 客户端使用 **discovery.k8s.io/v1** API 版本，此 API 从 v1.21 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+* **discovery.k8s.io/v1** 中值得注意的变更有：
+  * 使用每个 Endpoint 的 `nodeName` 字段而不是已被弃用的
+    `topology["kubernetes.io/hostname"]` 字段；
+  * 使用每个 Endpoint 的 `zone` 字段而不是已被弃用的
+    `topology["kubernetes.io/zone"]` 字段；
+  * `topology` 字段被替换为 `deprecatedTopology`，并且在 v1 版本中不可写入。
+
+#### Event {#event-v125}
+
+<!--
+The **events.k8s.io/v1beta1** API version of Event will no longer be served in v1.25.
+
+* Migrate manifests and API clients to use the **events.k8s.io/v1** API version, available since v1.19.
+* All existing persisted objects are accessible via the new API
+-->
+**events.k8s.io/v1beta1** API 版本的 Event 将不会在 v1.25 版本中继续提供。
+
+* 迁移清单和 API 客户端使用 **events.k8s.io/v1** API 版本，此 API 从 v1.19 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+
+<!--
+* Notable changes in **events.k8s.io/v1**:
+    * `type` is limited to `Normal` and `Warning`
+    * `involvedObject` is renamed to `regarding`
+    * `action`, `reason`, `reportingController`, and `reportingInstance` are required when creating new **events.k8s.io/v1** Events
+    * use `eventTime` instead of the deprecated `firstTimestamp` field (which is renamed to `deprecatedFirstTimestamp` and not permitted in new **events.k8s.io/v1** Events)
+    * use `series.lastObservedTime` instead of the deprecated `lastTimestamp` field (which is renamed to `deprecatedLastTimestamp` and not permitted in new **events.k8s.io/v1** Events)
+    * use `series.count` instead of the deprecated `count` field (which is renamed to `deprecatedCount` and not permitted in new **events.k8s.io/v1** Events)
+    * use `reportingController` instead of the deprecated `source.component` field (which is renamed to `deprecatedSource.component` and not permitted in new **events.k8s.io/v1** Events)
+    * use `reportingInstance` instead of the deprecated `source.host` field (which is renamed to `deprecatedSource.host` and not permitted in new **events.k8s.io/v1** Events)
+-->
+* **events.k8s.io/v1** 中值得注意的变更有：
+  * `type` 字段只能设置为 `Normal` 和 `Warning` 之一；
+  * `involvedObject` 字段被更名为 `regarding`；
+  * `action`、`reason`、`reportingController` 和 `reportingInstance` 字段
+    在创建新的 **events.k8s.io/v1** 版本 Event 时都是必需的字段；
+  * 使用 `eventTime` 而不是已被弃用的 `firstTimestamp` 字段
+    （该字段已被更名为 `deprecatedFirstTimestamp`，且不允许出现在新的 **events.k8s.io/v1** Event 对象中）；
+  * 使用 `series.lastObservedTime` 而不是已被弃用的 `lastTimestamp` 字段
+    （该字段已被更名为 `deprecatedLastTimestamp`，且不允许出现在新的 **events.k8s.io/v1** Event 对象中）；
+  * 使用 `series.count` 而不是已被弃用的 `count` 字段
+    （该字段已被更名为 `deprecatedCount`，且不允许出现在新的 **events.k8s.io/v1** Event 对象中）；
+  * 使用 `reportingController` 而不是已被弃用的 `source.component` 字段
+    （该字段已被更名为 `deprecatedSource.component`，且不允许出现在新的 **events.k8s.io/v1** Event 对象中）；
+   * 使用 `reportingInstance` 而不是已被弃用的 `source.host` 字段
+    （该字段已被更名为 `deprecatedSource.host`，且不允许出现在新的 **events.k8s.io/v1** Event 对象中）。
+
+#### HorizontalPodAutoscaler {#horizontalpodautoscaler-v125}
+
+<!--
+The **autoscaling/v2beta1** API version of HorizontalPodAutoscaler will no longer be served in v1.25.
+
+* Migrate manifests and API clients to use the **autoscaling/v2** API version, available since v1.23.
+* All existing persisted objects are accessible via the new API
+-->
+**autoscaling/v2beta1** API 版本的 HorizontalPodAutoscaler 将不会在 v1.25 版本中继续提供。
+
+* 迁移清单和 API 客户端使用 **autoscaling/v2** API 版本，此 API 从 v1.23 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+
+#### PodDisruptionBudget {#poddisruptionbudget-v125}
+
+<!--
+The **policy/v1beta1** API version of PodDisruptionBudget will no longer be served in v1.25.
+
+* Migrate manifests and API clients to use the **policy/v1** API version, available since v1.21.
+* All existing persisted objects are accessible via the new API
+* Notable changes in **policy/v1**:
+  * an empty `spec.selector` (`{}`) written to a `policy/v1` PodDisruptionBudget selects all pods in the namespace (in `policy/v1beta1` an empty `spec.selector` selected no pods). An unset `spec.selector` selects no pods in either API version.
+-->
+**policy/v1beta1** API 版本的 PodDisruptionBudget 将不会在 v1.25 版本中继续提供。
+
+* 迁移清单和 API 客户端使用 **policy/v1** API 版本，此 API 从 v1.21 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+* **policy/v1** 中需要额外注意的变更有：
+  * 在 `policy/v1` 版本的 PodDisruptionBudget 中将 `spec.selector`
+    设置为空（`{}`）时会选择名字空间中的所有 Pods（在 `policy/v1beta1`
+    版本中，空的 `spec.selector` 不会选择任何 Pods）。如果 `spec.selector`
+    未设置，则在两个 API 版本下都不会选择任何 Pods。
+
+#### PodSecurityPolicy {#psp-v125}
+
+<!--
+PodSecurityPolicy in the **policy/v1beta1** API version will no longer be served in v1.25, and the PodSecurityPolicy admission controller will be removed.
+
+Migrate to [Pod Security Admission](/docs/concepts/security/pod-security-admission/)
+or a [3rd party admission webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/).
+For a migration guide, see [Migrate from PodSecurityPolicy to the Built-In PodSecurity Admission Controller](/docs/tasks/configure-pod-container/migrate-from-psp/).
+For more information on the deprecation, see [PodSecurityPolicy Deprecation: Past, Present, and Future](/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/).
+-->
+**policy/v1beta1** API 版本中的 PodSecurityPolicy 将不会在 v1.25 中提供，
+并且 PodSecurityPolicy 准入控制器也会被删除。
+
+迁移到 [Pod 安全准入](/zh-cn/docs/concepts/security/pod-security-admission/)或[第三方准入 webhook](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/)。
+有关迁移指南，请参阅[从 PodSecurityPolicy 迁移到内置 PodSecurity 准入控制器](/zh-cn/docs/tasks/configure-pod-container/migrate-from-psp/)。
+有关弃用的更多信息，请参阅 [PodSecurityPolicy 弃用：过去、现在和未来](/zh-cn/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/)。
+
+#### RuntimeClass {#runtimeclass-v125}
+
+<!--
+RuntimeClass in the **node.k8s.io/v1beta1** API version will no longer be served in v1.25.
+
+* Migrate manifests and API clients to use the **node.k8s.io/v1** API version, available since v1.20.
+* All existing persisted objects are accessible via the new API
+* No notable changes
+-->
+**node.k8s.io/v1beta1** API 版本中的 RuntimeClass 将不会在 v1.25 中提供。
+
+* 迁移清单和 API 客户端使用 **node.k8s.io/v1** API 版本，此 API 从 v1.20 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+* 没有需要额外注意的变更
+
+### v1.22
+
+<!--
+The **v1.22** release stopped serving the following deprecated API versions:
+-->
+**v1.22** 发行版本停止提供以下已废弃 API 版本：
+
+<!--
+#### Webhook resources {#webhook-resources-v122}
+-->
+#### Webhook 资源   {#webhook-resources-v122}
+
+<!--
+The **admissionregistration.k8s.io/v1beta1** API version of MutatingWebhookConfiguration and ValidatingWebhookConfiguration is no longer served as of v1.22.
+-->
+**admissionregistration.k8s.io/v1beta1** API 版本的 MutatingWebhookConfiguration
+和 ValidatingWebhookConfiguration 不在 v1.22 版本中继续提供。
+
+<!--
+* Migrate manifests and API clients to use the **admissionregistration.k8s.io/v1** API version, available since v1.16.
+* All existing persisted objects are accessible via the new APIs
+-->
+* 迁移清单和 API 客户端使用 **admissionregistration.k8s.io/v1** API 版本，
+此 API 从 v1.16 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+
+<!--
+* Notable changes:
+    * `webhooks[*].failurePolicy` default changed from `Ignore` to `Fail` for v1
+    * `webhooks[*].matchPolicy` default changed from `Exact` to `Equivalent` for v1
+    * `webhooks[*].timeoutSeconds` default changed from `30s` to `10s` for v1
+    * `webhooks[*].sideEffects` default value is removed, and the field made required, and only `None` and `NoneOnDryRun` are permitted for v1
+    * `webhooks[*].admissionReviewVersions` default value is removed and the field made required for v1 (supported versions for AdmissionReview are `v1` and `v1beta1`)
+    * `webhooks[*].name` must be unique in the list for objects created via `admissionregistration.k8s.io/v1`
+-->
+* 值得注意的变更：
+    * `webhooks[*].failurePolicy` 在 v1 版本中默认值从 `Ignore` 改为 `Fail`
+    * `webhooks[*].matchPolicy` 在 v1 版本中默认值从 `Exact` 改为 `Equivalent`
+    * `webhooks[*].timeoutSeconds` 在 v1 版本中默认值从 `30s` 改为 `10s`
+    * `webhooks[*].sideEffects` 的默认值被删除，并且该字段变为必须指定；
+      在 v1 版本中可选的值只能是 `None` 和 `NoneOnDryRun` 之一
+    * `webhooks[*].admissionReviewVersions` 的默认值被删除，在 v1
+      版本中此字段变为必须指定（AdmissionReview 的被支持版本包括 `v1` 和 `v1beta1`）
+    * `webhooks[*].name` 必须在通过 `admissionregistration.k8s.io/v1`
+      创建的对象列表中唯一
+
+#### CustomResourceDefinition {#customresourcedefinition-v122}
+
+<!--
+The **apiextensions.k8s.io/v1beta1** API version of CustomResourceDefinition is no longer served as of v1.22.
+
+* Migrate manifests and API clients to use the **apiextensions.k8s.io/v1** API version, available since v1.16.
+* All existing persisted objects are accessible via the new API
+-->
+**apiextensions.k8s.io/v1beta1** API 版本的 CustomResourceDefinition
+不在 v1.22 版本中继续提供。
+
+* 迁移清单和 API 客户端使用 **apiextensions/v1** API 版本，此 API 从 v1.16 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+<!--
+* Notable changes:
+    * `spec.scope` is no longer defaulted to `Namespaced` and must be explicitly specified
+    * `spec.version` is removed in v1; use `spec.versions` instead
+    * `spec.validation` is removed in v1; use `spec.versions[*].schema` instead
+    * `spec.subresources` is removed in v1; use `spec.versions[*].subresources` instead
+    * `spec.additionalPrinterColumns` is removed in v1; use `spec.versions[*].additionalPrinterColumns` instead
+    * `spec.conversion.webhookClientConfig` is moved to `spec.conversion.webhook.clientConfig` in v1
+-->
+* 值得注意的变更：
+    * `spec.scope` 的默认值不再是 `Namespaced`，该字段必须显式指定
+    * `spec.version` 在 v1 版本中被删除；应改用 `spec.versions`
+    * `spec.validation` 在 v1 版本中被删除；应改用 `spec.versions[*].schema`
+    * `spec.subresources` 在 v1 版本中被删除；应改用 `spec.versions[*].subresources`
+    * `spec.additionalPrinterColumns` 在 v1 版本中被删除；应改用
+      `spec.versions[*].additionalPrinterColumns`
+    * `spec.conversion.webhookClientConfig` 在 v1 版本中被移动到
+      `spec.conversion.webhook.clientConfig` 中
+    <!--
+    * `spec.conversion.conversionReviewVersions` is moved to `spec.conversion.webhook.conversionReviewVersions` in v1
+    * `spec.versions[*].schema.openAPIV3Schema` is now required when creating v1 CustomResourceDefinition objects, and must be a [structural schema](/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#specifying-a-structural-schema)
+    * `spec.preserveUnknownFields: true` is disallowed when creating v1 CustomResourceDefinition objects; it must be specified within schema definitions as `x-kubernetes-preserve-unknown-fields: true`
+    * In `additionalPrinterColumns` items, the `JSONPath` field was renamed to `jsonPath` in v1 (fixes [#66531](https://github.com/kubernetes/kubernetes/issues/66531))
+    -->
+    * `spec.conversion.conversionReviewVersions` 在 v1 版本中被移动到
+      `spec.conversion.webhook.conversionReviewVersions`
+    * `spec.versions[*].schema.openAPIV3Schema` 在创建 v1 版本的
+      CustomResourceDefinition 对象时变成必需字段，并且其取值必须是一个
+      [结构化的 Schema](/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#specifying-a-structural-schema)
+    * `spec.preserveUnknownFields: true` 在创建 v1 版本的 CustomResourceDefinition
+      对象时不允许指定；该配置必须在 Schema 定义中使用
+      `x-kubernetes-preserve-unknown-fields: true` 来设置
+    * 在 v1 版本中，`additionalPrinterColumns` 的条目中的 `JSONPath` 字段被更名为
+      `jsonPath`（补丁 [#66531](https://github.com/kubernetes/kubernetes/issues/66531)）
+
+#### APIService {#apiservice-v122}
+
+<!--
+The **apiregistration.k8s.io/v1beta1** API version of APIService is no longer served as of v1.22.
+
+* Migrate manifests and API clients to use the **apiregistration.k8s.io/v1** API version, available since v1.10.
+* All existing persisted objects are accessible via the new API
+* No notable changes
+-->
+**apiregistration/v1beta1** API 版本的 APIService 不在 v1.22 版本中继续提供。
+
+* 迁移清单和 API 客户端使用 **apiregistration.k8s.io/v1** API 版本，此 API 从
+  v1.10 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+* 没有需要额外注意的变更
+
+#### TokenReview {#tokenreview-v122}
+
+<!--
+The **authentication.k8s.io/v1beta1** API version of TokenReview is no longer served as of v1.22.
+
+* Migrate manifests and API clients to use the **authentication.k8s.io/v1** API version, available since v1.6.
+* No notable changes
+-->
+**authentication.k8s.io/v1beta1** API 版本的 TokenReview 不在 v1.22 版本中继续提供。
+
+* 迁移清单和 API 客户端使用 **authentication.k8s.io/v1** API 版本，此 API 从
+  v1.6 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+* 没有需要额外注意的变更
+
+#### SubjectAccessReview resources {#subjectaccessreview-resources-v122}
+
+<!--
+The **authorization.k8s.io/v1beta1** API version of LocalSubjectAccessReview, SelfSubjectAccessReview, SubjectAccessReview, and SelfSubjectRulesReview is no longer served as of v1.22.
+
+* Migrate manifests and API clients to use the **authorization.k8s.io/v1** API version, available since v1.6.
+* Notable changes:
+    * `spec.group` was renamed to `spec.groups` in v1 (fixes [#32709](https://github.com/kubernetes/kubernetes/issues/32709))
+-->
+**authorization.k8s.io/v1beta1** API 版本的 LocalSubjectAccessReview、
+SelfSubjectAccessReview、SubjectAccessReview、SelfSubjectRulesReview 不在 v1.22 版本中继续提供。
+
+* 迁移清单和 API 客户端使用 **authorization.k8s.io/v1** API 版本，此 API 从
+  v1.6 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+* 需要额外注意的变更：
+  * `spec.group` 在 v1 版本中被更名为 `spec.groups`
+    （补丁 [#32709](https://github.com/kubernetes/kubernetes/issues/32709)）
+
+
+#### CertificateSigningRequest {#certificatesigningrequest-v122}
+
+<!--
+The **certificates.k8s.io/v1beta1** API version of CertificateSigningRequest is no longer served as of v1.22.
+
+* Migrate manifests and API clients to use the **certificates.k8s.io/v1** API version, available since v1.19.
+* All existing persisted objects are accessible via the new API
+-->
+**certificates.k8s.io/v1beta1** API 版本的 CertificateSigningRequest 不在
+v1.22 版本中继续提供。
+
+* 迁移清单和 API 客户端使用 **certificates.k8s.io/v1** API 版本，此 API 从
+  v1.19 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+
+<!--
+* Notable changes in `certificates.k8s.io/v1`:
+    * For API clients requesting certificates:
+        * `spec.signerName` is now required (see [known Kubernetes signers](/docs/reference/access-authn-authz/certificate-signing-requests/#kubernetes-signers)), and requests for `kubernetes.io/legacy-unknown` are not allowed to be created via the `certificates.k8s.io/v1` API
+        * `spec.usages` is now required, may not contain duplicate values, and must only contain known usages
+    * For API clients approving or signing certificates:
+        * `status.conditions` may not contain duplicate types
+        * `status.conditions[*].status` is now required
+        * `status.certificate` must be PEM-encoded, and contain only `CERTIFICATE` blocks
+-->
+* `certificates.k8s.io/v1` 中需要额外注意的变更：
+  * 对于请求证书的 API 客户端而言：
+    * `spec.signerName` 现在变成必需字段（参阅
+      [已知的 Kubernetes 签署者](/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests/#kubernetes-signers)），
+      并且通过 `certificates.k8s.io/v1` API 不可以创建签署者为
+      `kubernetes.io/legacy-unknown` 的请求
+    * `spec.usages` 现在变成必需字段，其中不可以包含重复的字符串值，
+       并且只能包含已知的用法字符串
+  * 对于要批准或者签署证书的 API 客户端而言：
+    * `status.conditions` 中不可以包含重复的类型
+    * `status.conditions[*].status` 字段现在变为必需字段
+    * `status.certificate` 必须是 PEM 编码的，而且其中只能包含 `CERTIFICATE`
+      数据块
+
+#### Lease {#lease-v122}
+
+<!--
+The **coordination.k8s.io/v1beta1** API version of Lease is no longer served as of v1.22.
+
+* Migrate manifests and API clients to use the **coordination.k8s.io/v1** API version, available since v1.14.
+* All existing persisted objects are accessible via the new API
+* No notable changes
+-->
+**coordination.k8s.io/v1beta1** API 版本的 Lease 不在 v1.22 版本中继续提供。
+
+* 迁移清单和 API 客户端使用 **coordination.k8s.io/v1** API 版本，此 API 从
+  v1.14 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+* 没有需要额外注意的变更
+
+#### Ingress {#ingress-v122}
+
+<!--
+The **extensions/v1beta1** and **networking.k8s.io/v1beta1** API versions of Ingress is no longer served as of v1.22.
+
+* Migrate manifests and API clients to use the **networking.k8s.io/v1** API version, available since v1.19.
+* All existing persisted objects are accessible via the new API
+-->
+**extensions/v1beta1** 和 **networking.k8s.io/v1beta1** API 版本的 Ingress
+不在 v1.22 版本中继续提供。
+
+* 迁移清单和 API 客户端使用 **networking.k8s.io/v1** API 版本，此 API 从
+  v1.19 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+<!--
+* Notable changes:
+    * `spec.backend` is renamed to `spec.defaultBackend`
+    * The backend `serviceName` field is renamed to `service.name`
+    * Numeric backend `servicePort` fields are renamed to `service.port.number`
+    * String backend `servicePort` fields are renamed to `service.port.name`
+    * `pathType` is now required for each specified path. Options are `Prefix`, `Exact`, and `ImplementationSpecific`. To match the undefined `v1beta1` behavior, use `ImplementationSpecific`.
+-->
+* 值得注意的变更：
+    * `spec.backend` 字段被更名为 `spec.defaultBackend`
+    * 后端的  `serviceName` 字段被更名为 `service.name`
+    * 数值表示的后端 `servicePort` 字段被更名为 `service.port.number`
+    * 字符串表示的后端 `servicePort` 字段被更名为 `service.port.name`
+    * 对所有要指定的路径，`pathType` 都成为必需字段。
+      可选项为 `Prefix`、`Exact` 和 `ImplementationSpecific`。
+      要匹配 `v1beta1` 版本中未定义路径类型时的行为，可使用 `ImplementationSpecific`
+
+#### IngressClass {#ingressclass-v122}
+
+<!--
+The **networking.k8s.io/v1beta1** API version of IngressClass is no longer served as of v1.22.
+
+* Migrate manifests and API clients to use the **networking.k8s.io/v1** API version, available since v1.19.
+* All existing persisted objects are accessible via the new API
+* No notable changes
+-->
+**networking.k8s.io/v1beta1** API 版本的 IngressClass 不在 v1.22 版本中继续提供。
+
+* 迁移清单和 API 客户端使用 **networking.k8s.io/v1** API 版本，此 API 从
+  v1.19 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+* 没有需要额外注意的变更
+
+
+<!--
+#### RBAC resources  {#rbac-resources-v122}
+
+The **rbac.authorization.k8s.io/v1beta1** API version of ClusterRole, ClusterRoleBinding, Role, and RoleBinding is no longer served as of v1.22.
+
+* Migrate manifests and API clients to use the **rbac.authorization.k8s.io/v1** API version, available since v1.8.
+* All existing persisted objects are accessible via the new APIs
+* No notable changes
+-->
+#### RBAC 资源   {#rbac-resources-v122}
+
+**rbac.authorization.k8s.io/v1beta1** API 版本的 ClusterRole、ClusterRoleBinding、
+Role 和 RoleBinding 不在 v1.22 版本中继续提供。
+
+* 迁移清单和 API 客户端使用 **rbac.authorization.k8s.io/v1** API 版本，此 API 从
+  v1.8 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+* 没有需要额外注意的变更
+
+#### PriorityClass {#priorityclass-v122}
+
+<!--
+The **scheduling.k8s.io/v1beta1** API version of PriorityClass is no longer served as of v1.22.
+
+* Migrate manifests and API clients to use the **scheduling.k8s.io/v1** API version, available since v1.14.
+* All existing persisted objects are accessible via the new API
+* No notable changes
+-->
+**scheduling.k8s.io/v1beta1** API 版本的 PriorityClass 不在 v1.22 版本中继续提供。
+
+* 迁移清单和 API 客户端使用 **scheduling.k8s.io/v1** API 版本，此 API 从
+  v1.14 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+* 没有需要额外注意的变更
+
+<!--
+#### Storage resources {#storage-resources-v122}
+-->
+#### 存储资源  {#storage-resources-v122}
+
+<!--
+The **storage.k8s.io/v1beta1** API version of CSIDriver, CSINode, StorageClass, and VolumeAttachment is no longer served as of v1.22.
+
+* Migrate manifests and API clients to use the **storage.k8s.io/v1** API version
+  * CSIDriver is available in **storage.k8s.io/v1** since v1.19.
+  * CSINode is available in **storage.k8s.io/v1** since v1.17
+  * StorageClass is available in **storage.k8s.io/v1** since v1.6
+  * VolumeAttachment is available in **storage.k8s.io/v1** v1.13
+* All existing persisted objects are accessible via the new APIs
+* No notable changes
+-->
+**storage.k8s.io/v1beta1** API 版本的 CSIDriver、CSINode、StorageClass
+和 VolumeAttachment 不在 v1.22 版本中继续提供。
+
+* 迁移清单和 API 客户端使用 **storage.k8s.io/v1** API 版本
+  * CSIDriver 从 v1.19 版本开始在 **storage.k8s.io/v1** 中提供；
+  * CSINode 从 v1.17 版本开始在 **storage.k8s.io/v1** 中提供；
+  * StorageClass 从 v1.6 版本开始在 **storage.k8s.io/v1** 中提供；
+  * VolumeAttachment 从 v1.13 版本开始在 **storage.k8s.io/v1** 中提供；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+* 没有需要额外注意的变更
+
+### v1.16
+
+<!--
+The **v1.16** release stopped serving the following deprecated API versions:
+-->
+**v1.16** 发行版本停止提供以下已废弃 API 版本：
+
+#### NetworkPolicy {#networkpolicy-v116}
+
+<!--
+The **extensions/v1beta1** API version of NetworkPolicy is no longer served as of v1.16.
+
+* Migrate manifests and API clients to use the **networking.k8s.io/v1** API version, available since v1.8.
+* All existing persisted objects are accessible via the new API
+-->
+**extensions/v1beta1** API 版本的 NetworkPolicy 不在 v1.16 版本中继续提供。
+
+* 迁移清单和 API 客户端使用 **networking.k8s.io/v1** API 版本，此 API 从
+  v1.8 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+
+#### DaemonSet {#daemonset-v116}
+
+<!--
+The **extensions/v1beta1** and **apps/v1beta2** API versions of DaemonSet are no longer served as of v1.16.
+
+* Migrate manifests and API clients to use the **apps/v1** API version, available since v1.9.
+* All existing persisted objects are accessible via the new API
+-->
+**extensions/v1beta1** 和 **apps/v1beta2** API 版本的 DaemonSet 在
+v1.16 版本中不再继续提供。
+
+* 迁移清单和 API 客户端使用 **apps/v1** API 版本，此 API 从 v1.9 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+<!--
+* Notable changes:
+    * `spec.templateGeneration` is removed
+    * `spec.selector` is now required and immutable after creation; use the existing template labels as the selector for seamless upgrades
+    * `spec.updateStrategy.type` now defaults to `RollingUpdate` (the default in `extensions/v1beta1` was `OnDelete`)
+-->
+* 值得注意的变更：
+  * `spec.templateGeneration` 字段被删除
+  * `spec.selector` 现在变成必需字段，并且在对象创建之后不可变更；
+    可以将现有模板的标签作为选择算符以实现无缝迁移。
+  * `spec.updateStrategy.type` 的默认值变为 `RollingUpdate`
+    （`extensions/v1beta1` API 版本中的默认值是 `OnDelete`）。
+
+#### Deployment {#deployment-v116}
+
+<!--
+The **extensions/v1beta1**, **apps/v1beta1**, and **apps/v1beta2** API versions of Deployment are no longer served as of v1.16.
+
+* Migrate manifests and API clients to use the **apps/v1** API version, available since v1.9.
+* All existing persisted objects are accessible via the new API
+-->
+**extensions/v1beta1**、**apps/v1beta1** 和 **apps/v1beta2** API 版本的
+Deployment 在 v1.16 版本中不再继续提供。
+
+* 迁移清单和 API 客户端使用 **apps/v1** API 版本，此 API 从 v1.9 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+<!--
+* Notable changes:
+    * `spec.rollbackTo` is removed
+    * `spec.selector` is now required and immutable after creation; use the existing template labels as the selector for seamless upgrades
+    * `spec.progressDeadlineSeconds` now defaults to `600` seconds (the default in `extensions/v1beta1` was no deadline)
+    * `spec.revisionHistoryLimit` now defaults to `10` (the default in `apps/v1beta1` was `2`, the default in `extensions/v1beta1` was to retain all)
+    * `maxSurge` and `maxUnavailable` now default to `25%` (the default in `extensions/v1beta1` was `1`)
+-->
+* 值得注意的变更：
+  * `spec.rollbackTo` 字段被删除
+  * `spec.selector` 字段现在变为必需字段，并且在 Deployment 创建之后不可变更；
+    可以使用现有的模板的标签作为选择算符以实现无缝迁移。
+  * `spec.progressDeadlineSeconds` 的默认值变为 `600` 秒
+    （`extensions/v1beta1` 中的默认值是没有期限）
+  * `spec.revisionHistoryLimit` 的默认值变为 `10`
+    （`apps/v1beta1` API 版本中此字段默认值为 `2`，在`extensions/v1beta1` API
+    版本中的默认行为是保留所有历史记录）。
+  * `maxSurge` 和 `maxUnavailable` 的默认值变为 `25%`
+    （在 `extensions/v1beta1` API 版本中，这些字段的默认值是 `1`）。
+
+#### StatefulSet {#statefulset-v116}
+
+<!--
+The **apps/v1beta1** and **apps/v1beta2** API versions of StatefulSet are no longer served as of v1.16.
+
+* Migrate manifests and API clients to use the **apps/v1** API version, available since v1.9.
+* All existing persisted objects are accessible via the new API
+-->
+**apps/v1beta1** 和 **apps/v1beta2** API 版本的 StatefulSet 在 v1.16 版本中不再继续提供。
+
+* 迁移清单和 API 客户端使用 **apps/v1** API 版本，此 API 从 v1.9 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+<!--
+* Notable changes:
+    * `spec.selector` is now required and immutable after creation; use the existing template labels as the selector for seamless upgrades
+    * `spec.updateStrategy.type` now defaults to `RollingUpdate` (the default in `apps/v1beta1` was `OnDelete`)
+-->
+* 值得注意的变更：
+  * `spec.selector` 字段现在变为必需字段，并且在 StatefulSet 创建之后不可变更；
+    可以使用现有的模板的标签作为选择算符以实现无缝迁移。
+  * `spec.updateStrategy.type` 的默认值变为 `RollingUpdate`
+    （`apps/v1beta1` API 版本中的默认值是 `OnDelete`）。
+
+#### ReplicaSet {#replicaset-v116}
+
+<!--
+The **extensions/v1beta1**, **apps/v1beta1**, and **apps/v1beta2** API versions of ReplicaSet are no longer served as of v1.16.
+
+* Migrate manifests and API clients to use the **apps/v1** API version, available since v1.9.
+* All existing persisted objects are accessible via the new API
+-->
+**extensions/v1beta1**、**apps/v1beta1** 和 **apps/v1beta2** API 版本的
+ReplicaSet 在 v1.16 版本中不再继续提供。
+
+* 迁移清单和 API 客户端使用 **apps/v1** API 版本，此 API 从 v1.9 版本开始可用；
+* 所有的已保存的对象都可以通过新的 API 来访问；
+<!--
+* Notable changes:
+    * `spec.selector` is now required and immutable after creation; use the existing template labels as the selector for seamless upgrades
+-->
+* 值得注意的变更：
+  * `spec.selector` 现在变成必需字段，并且在对象创建之后不可变更；
+    可以将现有模板的标签作为选择算符以实现无缝迁移。
+
+#### PodSecurityPolicy {#psp-v116}
+
+<!--
+The **extensions/v1beta1** API version of PodSecurityPolicy is no longer served as of v1.16.
+
+* Migrate manifests and API client to use the **policy/v1beta1** API version, available since v1.10.
+* Note that the **policy/v1beta1** API version of PodSecurityPolicy will be removed in v1.25.
+-->
+**extensions/v1beta1** API 版本的 PodSecurityPolicy 在 v1.16 版本中不再继续提供。
+
+* 迁移清单和 API 客户端使用 **policy/v1beta1** API 版本，此 API 从 v1.10 版本开始可用；
+* 注意 **policy/v1beta1** API 版本的 PodSecurityPolicy 会在 v1.25 版本中移除。
+
+<!--
+## What to do
+
+### Test with deprecated APIs disabled
+-->
+## 需要做什么   {#what-to-do}
+
+### 在禁用已启用 API 的情况下执行测试
+
+<!--
+You can test your clusters by starting an API server with specific API versions disabled
+to simulate upcoming removals. Add the following flag to the API server startup arguments:
+-->
+你可以通过在启动 API 服务器时禁用特定的 API 版本来模拟即将发生的
+API 移除，从而完成测试。在 API 服务器启动参数中添加如下标志：
+
+`--runtime-config=<group>/<version>=false`
+
+<!--
+For example:
+-->
+例如：
+
+`--runtime-config=admissionregistration.k8s.io/v1beta1=false,apiextensions.k8s.io/v1beta1,...`
+
+<!--
+### Locate use of deprecated APIs
+
+Use [client warnings, metrics, and audit information available in 1.19+](/blog/2020/09/03/warnings/#deprecation-warnings)
+to locate use of deprecated APIs.
+-->
+### 定位何处使用了已弃用的 API
+
+使用 [client warnings, metrics, and audit information available in 1.19+](/blog/2020/09/03/warnings/#deprecation-warnings)
+来定位在何处使用了已弃用的 API。
+
+<!--
+### Migrate to non-deprecated APIs
+-->
+### 迁移到未被弃用的 API
+
+<!--
+* Update custom integrations and controllers to call the non-deprecated APIs
+* Change YAML files to reference the non-deprecated APIs
+-->
+* 更新自定义的集成组件和控制器，调用未被弃用的 API
+* 更改 YAML 文件引用未被弃用的 API
+
+<!--
+You can use the `kubectl-convert` command (`kubectl convert` prior to v1.20)
+to automatically convert an existing object:
+-->
+你可以用 `kubectl-convert` 命令（在 v1.20 之前是 `kubectl convert`）
+来自动转换现有对象：
+
+`kubectl-convert -f <file> --output-version <group>/<version>`.
+
+<!--
+For example, to convert an older Deployment to `apps/v1`, you can run:
+-->
+例如，要将较老的 Deployment 版本转换为 `apps/v1` 版本，你可以运行
+
+`kubectl-convert -f ./my-deployment.yaml --output-version apps/v1`
+
+<!--
+Note that this may use non-ideal default values. To learn more about a specific
+resource, check the Kubernetes [API reference](/docs/reference/kubernetes-api/).
+-->
+需要注意的是这种操作使用的默认值可能并不理想。
+要进一步了解某个特定资源，可查阅 Kubernetes [API 参考](/zh-cn/docs/reference/kubernetes-api/)。
diff --git a/content/zh/docs/reference/using-api/deprecation-policy.md b/content/zh-cn/docs/reference/using-api/deprecation-policy.md
similarity index 93%
rename from content/zh/docs/reference/using-api/deprecation-policy.md
rename to content/zh-cn/docs/reference/using-api/deprecation-policy.md
index 50d77df4cf..c570013992 100644
--- a/content/zh/docs/reference/using-api/deprecation-policy.md
+++ b/content/zh-cn/docs/reference/using-api/deprecation-policy.md
@@ -47,7 +47,7 @@ into 3 main tracks, each of which has different policies for deprecation:
 由于 Kubernetes 是一个 API 驱动的系统，API 会随着时间推移而演化，以反映
 人们对问题空间的认识的变化。Kubernetes API 实际上是一个 API 集合，其中每个
 成员称作“API 组（API Group）”，并且每个 API 组都是独立管理版本的。
-[API 版本](/zh/docs/reference/using-api/#api-versioning)会有
+[API 版本](/zh-cn/docs/reference/using-api/#api-versioning)会有
 三类，每类有不同的废弃策略：
 
 <!--
@@ -142,37 +142,41 @@ might have to add an equivalent field or represent it as an annotation.
 添加一个新的等效字段或者将其表现为一个注解。
 
 <!--
-**Rule #3: An API version in a given track may not be deprecated until a new
-API version at least as stable is released.**
+**Rule #3: An API version in a given track may not be deprecated in favor of a less stable API version.**
 
-GA API versions can replace GA API versions as well as beta and alpha API
-versions.  Beta API versions *may not* replace GA API versions.
+  * GA API versions can replace beta and alpha API versions.
+  * Beta API versions can replace earlier beta and alpha API versions, but *may not* replace GA API versions.
+  * Alpha API versions can replace earlier alpha API versions, but *may not* replace GA or beta API versions.
 -->
-**规则 #3：给定类别的 API 版本在新的、稳定性未降低的 API 版本发布之前不可被废弃。**
+**规则 #3：给定类别的 API 版本不可被弃用以支持稳定性更差的 API 版本。**
 
-一个正式发布的（GA）API 版本可替换现有的正式 API 版本或 alpha、beta API 版本。
-Beta API 版本 *不可以* 替代正式的 API 版本。
+  * 一个正式发布的（GA）API 版本可替换 beta 或 alpha API 版本。
+  * Beta API 版本可以替换早期的 beta 和 alpha API 版本，但 **不可以** 替换正式的 API 版本。
+  * Alpha API 版本可以替换早期的 alpha API 版本，但 **不可以** 替换正式的或 beta API 版本。
 
 <!--
-**Rule #4a: Other than the most recent API versions in each track, older API
-versions must be supported after their announced deprecation for a duration of
-no less than:**
+**Rule #4a: minimum API lifetime is determined by the API stability level**
 
-   * **GA: 12 months or 3 releases (whichever is longer)**
-   * **Beta: 9 months or 3 releases (whichever is longer)**
-   * **Alpha: 0 releases**
+   * **GA API versions may be marked as deprecated, but must not be removed within a major version of Kubernetes**
+   * **Beta API versions must be supported for 9 months or 3 releases (whichever is longer) after deprecation**
+   * **Alpha API versions may be removed in any release without prior deprecation notice**
 
-This covers the [maximum supported version skew of 2 releases](/docs/setup/release/version-skew-policy/).
+This ensures beta API support covers the [maximum supported version skew of 2 releases](/releases/version-skew-policy/).
 -->
-**规则 #4a：除了每类 API 版本中的最新版本，旧的 API 版本在其被宣布被废弃之后
-至少以下时长内仍需被支持：**
+**规则 #4a：最短 API 生命周期由 API 稳定性级别决定**
 
-   * **GA：12 个月或者 3 个发布版本（取其较长者）**
-   * **Beta: 9 个月或者 3 个发布版本（取其较长者）**
-   * **Alpha: 0 个发布版本**
+   * **GA API 版本可以被标记为已弃用，但不得在 Kubernetes 的主要版本中删除**
+   * **Beta API 版本必须支持 9 个月或弃用后的 3 个版本（以较长者为准）**
+   * **Alpha API 版本可能会在任何版本中被删除，不另行通知**
 
-这里也包含了关于[最大支持 2 个发布版本的版本偏差](/zh/docs/setup/release/version-skew-policy/)
-的约定。
+这确保了 beta API 支持涵盖了[最多 2 个版本的支持版本偏差](/zh-cn/releases/version-skew-policy/)。
+
+{{< note >}}
+<!--
+There are no current plans for a major version revision of Kubernetes that removes GA APIs.
+-->
+目前没有删除正式版本 API 的 Kubernetes 主要版本修订计划。
+{{< /note >}}
 
 <!--
 Until [#52185](https://github.com/kubernetes/kubernetes/issues/52185) is
@@ -206,7 +210,7 @@ objects.
 
 All of this is best illustrated by examples.  Imagine a Kubernetes release,
 version X, which introduces a new API group.  A new Kubernetes release is made
-every approximately 3 months (4 per year).  The following table describes which
+every approximately 4 months (3 per year).  The following table describes which
 API versions are supported in a series of subsequent releases.
 -->
 用户必须能够升级到 Kubernetes 新的发行版本，之后再回滚到前一个发行版本，且
@@ -215,7 +219,7 @@ API versions are supported in a series of subsequent releases.
 就对象的存储表示而言，这一点尤其是不言自明的。
 
 以上所有规则最好通过例子来说明。假定现有 Kubernetes 发行版本为 X，其中引入了
-新的 API 组。大约每隔 3 个月会有一个新的 Kubernetes 版本被发布（每年 4 个版本）。
+新的 API 组。大约每隔 4 个月会有一个新的 Kubernetes 版本被发布（每年 3 个版本）。
 下面的表格描述了在一系列后续的发布版本中哪些 API 版本是受支持的。
 
 <table>
@@ -363,9 +367,9 @@ API versions are supported in a series of subsequent releases.
       <td>
         <ul>
           <!-- li>v2beta2 is deprecated, "action required" relnote</li>
-          <li>v1 is deprecated, "action required" relnote</li -->
+          <li>v1 is deprecated in favor of v2, but will not be removed</li -->
           <li>v2beta2 已被弃用，发布说明中包含对应的 "action required（采取行动）" 说明</li>
-          <li>v1 已被弃用，发布说明中包含对应的 "action required（采取行动）" 说明</li>
+          <li>v1 已被弃用，取而代之的是 v2，但不会被删除</li>
         </ul>
       </td>
     </tr>
@@ -400,23 +404,6 @@ API versions are supported in a series of subsequent releases.
         </ul>
       </td>
     </tr>
-    <tr>
-      <td>X+16</td>
-      <!-- td>v2, v1 (deprecated)</td -->
-      <td>v2、v1（已弃用）</td>
-      <td>v2</td>
-      <td></td>
-    </tr>
-    <tr>
-      <td>X+17</td>
-      <td>v2</td>
-      <td>v2</td>
-      <td>
-        <ul>
-          <li>v1 被删除，发布说明中包含对应的 "action required（采取行动）" 说明</li>
-        </ul>
-      </td>
-    </tr>
   </tbody>
 </table>
 
@@ -448,7 +435,7 @@ Widget 资源会 X+8 发布版本之前（含 X+8）一直存在并可用。
 Starting in Kubernetes v1.19, making an API request to a deprecated REST API endpoint:
 
 1. Returns a `Warning` header (as defined in [RFC7234, Section 5.5](https://tools.ietf.org/html/rfc7234#section-5.5)) in the API response.
-2. Adds a `"k8s.io/deprecated":"true"` annotation to the [audit event](/docs/tasks/debug-application-cluster/audit/) recorded for the request.
+2. Adds a `"k8s.io/deprecated":"true"` annotation to the [audit event](/docs/tasks/debug/debug-cluster/audit/) recorded for the request.
 3. Sets an `apiserver_requested_deprecated_apis` gauge metric to `1` in the `kube-apiserver`
    process. The metric has labels for `group`, `version`, `resource`, `subresource` that can be joined
    to the `apiserver_request_total` metric, and a `removed_release` label that indicates the
@@ -463,7 +450,7 @@ Starting in Kubernetes v1.19, making an API request to a deprecated REST API end
 
 1. API 响应中会包含一个 `Warning` 头部字段（如 [RFC7234 5.5 节](https://tools.ietf.org/html/rfc7234#section-5.5)所定义）；
 2. 该请求会导致对应的 
-   [审计事件](/zh/docs/tasks/debug-application-cluster/audit/)
+   [审计事件](/zh-cn/docs/tasks/debug/debug-cluster/audit/)
    中会增加一个注解 `"k8s.io/deprecated":"true"`。
 3. `kube-apiserver` 进程的 `apiserver_requested_deprecated_apis` 度量值会被
    设置为 `1`。
diff --git a/content/zh/docs/reference/using-api/health-checks.md b/content/zh-cn/docs/reference/using-api/health-checks.md
similarity index 85%
rename from content/zh/docs/reference/using-api/health-checks.md
rename to content/zh-cn/docs/reference/using-api/health-checks.md
index 4def388ccc..a62840b2ef 100644
--- a/content/zh/docs/reference/using-api/health-checks.md
+++ b/content/zh-cn/docs/reference/using-api/health-checks.md
@@ -29,24 +29,24 @@ The Kubernetes API server provides 3 API endpoints (`healthz`, `livez` and `read
 The `healthz` endpoint is deprecated (since Kubernetes v1.16), and you should use the more specific `livez` and `readyz` endpoints instead.
 The `livez` endpoint can be used with the `--livez-grace-period` [flag](/docs/reference/command-line-tools-reference/kube-apiserver) to specify the startup duration.
 For a graceful shutdown you can specify the `--shutdown-delay-duration` [flag](/docs/reference/command-line-tools-reference/kube-apiserver) with the `/readyz` endpoint.
-Machines that check the `health`/`livez`/`readyz` of the API server should rely on the HTTP status code.
-A status code `200` indicates the API server is `healthy`/`live`/`ready`, depending of the called endpoint.
-The more verbose options shown below are intended to be used by human operators to debug their cluster or specially the state of the API server.
+Machines that check the `healthz`/`livez`/`readyz` of the API server should rely on the HTTP status code.
+A status code `200` indicates the API server is `healthy`/`live`/`ready`, depending on the called endpoint.
+The more verbose options shown below are intended to be used by human operators to debug their cluster or understand the state of the API server.
 -->
 Kubernetes API 服务器提供 3 个 API 端点（`healthz`、`livez` 和 `readyz`）来表明 API 服务器的当前状态。
 `healthz` 端点已被弃用（自 Kubernetes v1.16 起），你应该使用更为明确的 `livez` 和 `readyz` 端点。
-`livez` 端点可与 `--livez-grace-period` [标志](/zh/docs/reference/command-line-tools-reference/kube-apiserver)一起使用，来指定启动持续时间。
-为了正常关机，你可以使用 `/readyz` 端点并指定 `--shutdown-delay-duration` [标志](/zh/docs/reference/command-line-tools-reference/kube-apiserver)。
-检查 API 服务器的 `health`/`livez`/`readyz` 端点的机器应依赖于 HTTP 状态代码。
+`livez` 端点可与 `--livez-grace-period` [标志](/zh-cn/docs/reference/command-line-tools-reference/kube-apiserver)一起使用，来指定启动持续时间。
+为了正常关机，你可以使用 `/readyz` 端点并指定 `--shutdown-delay-duration` [标志](/zh-cn/docs/reference/command-line-tools-reference/kube-apiserver)。
+检查 API 服务器的 `healthz`/`livez`/`readyz` 端点的机器应依赖于 HTTP 状态代码。
 状态码 `200` 表示 API 服务器是 `healthy`、`live` 还是 `ready`，具体取决于所调用的端点。
-以下更详细的选项供操作人员使用，用来调试其集群或专门调试 API 服务器的状态。
+以下更详细的选项供操作人员使用，用来调试其集群或了解 API 服务器的状态。
 
 <!-- The following examples will show how you can interact with the health API endpoints. -->
 以下示例将显示如何与运行状况 API 端点进行交互。
 
 <!-- 
-For all endpoints you can use the `verbose` parameter to print out the checks and their status.
-This can be useful for a human operator to debug the current status of the Api server, it is not intended to be consumed by a machine:
+For all endpoints, you can use the `verbose` parameter to print out the checks and their status.
+This can be useful for a human operator to debug the current status of the API server, it is not intended to be consumed by a machine:
 -->
 对于所有端点，都可以使用 `verbose` 参数来打印检查项以及检查状态。
 这对于操作人员调试 API 服务器的当前状态很有用，这些不打算给机器使用：
@@ -130,12 +130,12 @@ healthz check passed
 {{< feature-state state="alpha" >}}
 
 <!-- 
-Each individual health check exposes an http endpoint and could can be checked individually.
+Each individual health check exposes an HTTP endpoint and can be checked individually.
 The schema for the individual health checks is `/livez/<healthcheck-name>` where `livez` and `readyz` and be used to indicate if you want to check the liveness or the readiness of the API server.
 The `<healthcheck-name>` path can be discovered using the `verbose` flag from above and take the path between `[+]` and `ok`.
 These individual health checks should not be consumed by machines but can be helpful for a human operator to debug a system:
 -->
-每个单独的健康检查都会公开一个 http 端点，并且可以单独检查。
+每个单独的健康检查都会公开一个 HTTP 端点，并且可以单独检查。
 单个运行状况检查的模式为 `/livez/<healthcheck-name>`，其中 `livez` 和 `readyz` 表明你要检查的是 API 服务器是否存活或就绪。
 `<healthcheck-name>` 的路径可以通过上面的 `verbose` 参数发现 ，并采用 `[+]` 和 `ok` 之间的路径。
 这些单独的健康检查不应由机器使用，但对于操作人员调试系统而言，是有帮助的：
diff --git a/content/zh/docs/reference/using-api/server-side-apply.md b/content/zh-cn/docs/reference/using-api/server-side-apply.md
similarity index 96%
rename from content/zh/docs/reference/using-api/server-side-apply.md
rename to content/zh-cn/docs/reference/using-api/server-side-apply.md
index aa0b3fef20..5e15982b9a 100644
--- a/content/zh/docs/reference/using-api/server-side-apply.md
+++ b/content/zh-cn/docs/reference/using-api/server-side-apply.md
@@ -4,7 +4,7 @@ content_type: concept
 weight: 25
 min-kubernetes-server-version: 1.16
 ---
-<!-- 
+<!--
 title: Server-Side Apply
 reviewers:
 - smarterclayton
@@ -18,9 +18,9 @@ min-kubernetes-server-version: 1.16
 
 <!-- overview -->
 
-{{< feature-state for_k8s_version="v1.16" state="beta" >}}
+{{< feature-state for_k8s_version="v1.22" state="stable" >}}
 
-<!-- 
+<!--
 ## Introduction
 
 Server Side Apply helps users and controllers manage their resources through
@@ -33,9 +33,9 @@ declaratively by sending their fully specified intent.
 服务器端应用协助用户、控制器通过声明式配置的方式管理他们的资源。
 客户端可以发送完整描述的目标（A fully specified intent），
 声明式地创建和/或修改
-[对象](/zh/docs/concepts/overview/working-with-objects/kubernetes-objects/)。
+[对象](/zh-cn/docs/concepts/overview/working-with-objects/kubernetes-objects/)。
 
-<!-- 
+<!--
 A fully specified intent is a partial object that only includes the fields and
 values for which the user has an opinion. That intent either creates a new
 object or is [combined](#merge-strategy), by the server, with the existing object.
@@ -48,7 +48,7 @@ The system supports multiple appliers collaborating on a single object.
 
 系统支持多个应用者（appliers）在同一个对象上开展协作。
 
-<!-- 
+<!--
 Changes to an object's fields are tracked through a "[field management](#field-management)"
 mechanism. When a field's value changes, ownership moves from its current
 manager to the manager making the change. When trying to apply an object,
@@ -65,7 +65,7 @@ transferred.
 冲突引发警告信号：此操作可能抹掉其他协作者的修改。
 冲突可以被刻意忽略，这种情况下，值将会被改写，所有权也会发生转移。
 
-<!-- 
+<!--
 If you remove a field from a configuration and apply the configuration, server
 side apply checks if there are any other field managers that also own the
 field.  If the field is not owned by any other field managers, it is either
@@ -77,7 +77,7 @@ same rule applies to associative list or map items.
 如果没有，那就从活动对象中删除该字段；如果有，那就重置为默认值。
 该规则同样适用于 list 或 map 项目。
 
-<!-- 
+<!--
 Server side apply is meant both as a replacement for the original `kubectl
 apply` and as a simpler mechanism for controllers to enact their changes.
 
@@ -89,7 +89,7 @@ for all newly created objects.
 
 如果你启用了服务器端应用，控制平面就会跟踪被所有新创建对象管理的字段。
 
-<!-- 
+<!--
 ## Field Management
 
 Compared to the `last-applied` annotation managed by `kubectl`, Server Side
@@ -106,7 +106,7 @@ field in an object also becomes available.
 这就意味着，作为服务器端应用的一个副作用，
 关于用哪一个字段管理器负责管理对象中的哪个字段的这类信息，都要对外界开放了。
 
-<!-- 
+<!--
 For a user to manage a field, in the Server Side Apply sense, means that the
 user relies on and expects the value of the field not to change. The user who
 last made an assertion about the value of a field will be recorded as the
@@ -118,13 +118,13 @@ request (if not forced, see [Conflicts](#conflicts)).
 -->
 用户管理字段这件事，在服务器端应用的场景中，意味着用户依赖并期望字段的值不要改变。
 最后一次对字段值做出断言的用户将被记录到当前字段管理器。
-这可以通过发送 `POST`、 `PUT`、 
+这可以通过发送 `POST`、 `PUT`、
 或非应用（non-apply）方式的 `PATCH` 等命令来修改字段值的方式实现，
 或通过把字段放在配置文件中，然后发送到服务器端应用的服务端点的方式实现。
 当使用服务器端应用，尝试着去改变一个被其他人管理的字段，
 会导致请求被拒绝（在没有设置强制执行时，参见[冲突](#conflicts)）。
 
-<!-- 
+<!--
 When two or more appliers set a field to the same value, they share ownership of
 that field. Any subsequent attempt to change the value of the shared field, by any of
 the appliers, results in a conflict. Shared field owners may give up ownership
@@ -139,7 +139,7 @@ A simple example of an object created by Server Side Apply could look like this:
 后续任何改变共享字段值的尝试，不管由那个应用者发起，都会导致冲突。
 共享字段的所有者可以放弃字段的所有权，这只需从配置文件中删除该字段即可。
 
-字段管理的信息存储在 `managedFields` 字段中，该字段是对象的 
+字段管理的信息存储在 `managedFields` 字段中，该字段是对象的
 [`metadata`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#objectmeta-v1-meta)
 中的一部分。
 
@@ -169,7 +169,7 @@ data:
   key: some value
 ```
 
-<!-- 
+<!--
 The above object contains a single manager in `metadata.managedFields`. The
 manager consists of basic information about the managing entity itself, like
 operation type, API version, and the fields managed by it.
@@ -184,7 +184,7 @@ the user.
 该字段由 API 服务器管理，用户不应该改动它。
 {{< /note >}}
 
-<!-- 
+<!--
 Nevertheless it is possible to change `metadata.managedFields` through an
 `Update` operation. Doing so is highly discouraged, but might be a reasonable
 option to try if, for example, the `managedFields` get into an inconsistent
@@ -202,7 +202,7 @@ The format of the `managedFields` is described in the
 [API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#fieldsv1-v1-meta)
 文档中描述。
 
-<!-- 
+<!--
 ## Conflicts
 
 A conflict is a special status error that occurs when an `Apply` operation tries
@@ -217,10 +217,11 @@ this occurs, the applier has 3 options to resolve the conflicts:
 这可以防止一个应用者不小心覆盖掉其他用户设置的值。
 冲突发生时，应用者有三种办法来解决它：
 
-<!-- 
+<!--
 * **Overwrite value, become sole manager:** If overwriting the value was
   intentional (or if the applier is an automated process like a controller) the
-  applier should set the `force` query parameter to true and make the request
+  applier should set the `force` query parameter to true (in kubectl, it can be done by
+  using the `--force-conflicts` flag with the apply command) and make the request
   again. This forces the operation to succeed, changes the value of the field,
   and removes the field from all other managers' entries in managedFields.
 
@@ -237,7 +238,8 @@ this occurs, the applier has 3 options to resolve the conflicts:
   field managers that already claimed to manage it.
 -->
 * **覆盖前值，成为唯一的管理器：** 如果打算覆盖该值（或应用者是一个自动化部件，比如控制器），
-  应用者应该设置查询参数 `force` 为 true，然后再发送一次请求。
+  应用者应该设置查询参数 `force` 为 true（在 kubectl 中，可以通过在
+  apply 命令中使用 `--force-conflicts` 标志来完成），然后再发送一次请求。
   这将强制操作成功，改变字段的值，从所有其他管理器的 managedFields 条目中删除指定字段。
 
 * **不覆盖前值，放弃管理权：** 如果应用者不再关注该字段的值，
@@ -249,7 +251,7 @@ this occurs, the applier has 3 options to resolve the conflicts:
   这样在不改变字段值的前提下，
   就实现了字段管理被应用者和所有声明了管理权的其他的字段管理器共享。
 
-<!-- 
+<!--
 ## Managers
 
 Managers identify distinct workflows that are modifying the object (especially
@@ -265,7 +267,7 @@ computed from the user-agent.
 虽然 kubectl 默认发往 `kubectl` 服务端点，但它则请求到应用的服务端点（apply endpoint）。
 对于其他的更新，它默认的是从用户代理计算得来。
 
-<!-- 
+<!--
 ## Apply and Update
 
 The two operation types considered by this feature are `Apply` (`PATCH` with
@@ -292,7 +294,7 @@ All JSON documents are valid YAML.
 所有的 JSON 文档 都是合法的 YAML。
 {{< /note >}}
 
-<!-- 
+<!--
 For instance, only the apply operation fails on conflicts while update does
 not. Also, apply operations are required to identify themselves by providing a
 `fieldManager` query parameter, while the query parameter is optional for update
@@ -335,7 +337,7 @@ data:
   key: new value
 ```
 
-<!-- 
+<!--
 In this example, a second operation was run as an `Update` by the manager called
 `kube-controller-manager`. The update changed a value in the data field which
 caused the field's management to change to the `kube-controller-manager`.
@@ -350,7 +352,7 @@ would have failed due to conflicting ownership.
 
 如果把 `update` 操作改为 `Apply`，那就会因为所有权冲突的原因，导致操作失败。
 
-<!-- 
+<!--
 ## Merge strategy
 
 The merging strategy, implemented with Server Side Apply, provides a generally
@@ -364,7 +366,7 @@ multiple actors can update the same object without causing unexpected interferen
 服务器端应用试图依据负责管理它们的主体来合并字段，而不是根据值来否决。
 这么做是为了多个主体可以更新同一个对象，且不会引起意外的相互干扰。
 
-<!-- 
+<!--
 When a user sends a "fully-specified intent" object to the Server Side Apply
 endpoint, the server merges it with the live object favoring the value in the
 applied config if it is specified in both places. If the set of items present in
@@ -381,7 +383,7 @@ merging, see
 关于合并时用来做决策的对象规格的更多信息，参见
 [sigs.k8s.io/structured-merge-diff](https://sigs.k8s.io/structured-merge-diff).
 
-<!-- 
+<!--
 A number of markers were added in Kubernetes 1.16 and 1.17, to allow API
 developers to describe the merge strategy supported by lists, maps, and
 structs. These markers can be applied to objects of the respective type,
@@ -394,7 +396,7 @@ Kubernetes 1.16 和 1.17 中添加了一些标记，
 [CRD](/docs/reference/generated/kubernetes-api/{{< param "version" >}}#jsonschemaprops-v1-apiextensions-k8s-io)
 的 OpenAPI 的模式中定义：
 
-<!-- 
+<!--
 | Golang marker | OpenAPI extension | Accepted values | Description | Introduced in |
 |---|---|---|---|---|
 | `//+listType` | `x-kubernetes-list-type` | `atomic`/`set`/`map` | Applicable to lists. `set` applies to lists that include only scalar elements. These elements must be unique. `map` applies to lists of nested types only. The key values (see `listMapKey`) must be unique in the list. `atomic` can apply to any list. If configured as `atomic`, the entire list is replaced during merge. At any point in time, a single manager owns the list. If `set` or `map`, different managers can manage entries separately. | 1.16          |
@@ -507,7 +509,7 @@ manager can then modify or delete those fields without conflict.
 `key1` 和 `key2`。因此，其他管理者可以在不引起冲突的情况下更改
 或删除这些字段。
 
-<!-- 
+<!--
 ### Custom Resources
 
 By default, Server Side Apply treats custom resources as unstructured data. All
@@ -525,12 +527,12 @@ type.
 所有的键值（keys）就像 struct 的字段一样被处理，
 所有的 list 被认为是原子性的。
 
-如果自定义资源定义（Custom Resource Definition，CRD）定义了一个 
+如果自定义资源定义（Custom Resource Definition，CRD）定义了一个
 [模式](/docs/reference/generated/kubernetes-api/{{< param "version" >}}#jsonschemaprops-v1-apiextensions-k8s-io)，
 它包含类似以前“合并策略”章节中定义过的注解，
 这些注解将在合并此类型的对象时使用。
 
-<!-- 
+<!--
 ## Using Server-Side Apply in a controller
 
 As a developer of a controller, you can use server-side apply as a way to
@@ -558,7 +560,7 @@ might not be able to resolve or act on these conflicts.
 
 强烈推荐：设置控制器在冲突时强制执行，这是因为冲突发生时，它们没有其他解决方案或措施。
 
-<!-- 
+<!--
 ## Transferring Ownership
 
 In addition to the concurrency controls provided by [conflict resolution](#conflicts),
@@ -586,7 +588,7 @@ Say a user has defined deployment with `replicas` set to the desired value:
 
 {{< codenew file="application/ssa/nginx-deployment.yaml" >}}
 
-<!-- 
+<!--
 And the user has created the deployment using server side apply like so:
 -->
 并且，用户使用服务器端应用，像这样创建 Deployment：
@@ -595,7 +597,7 @@ And the user has created the deployment using server side apply like so:
 kubectl apply -f https://k8s.io/examples/application/ssa/nginx-deployment.yaml --server-side
 ```
 
-<!-- 
+<!--
 Then later, HPA is enabled for the deployment, e.g.:
 -->
 然后，为 Deployment 启用 HPA，例如：
@@ -604,7 +606,7 @@ Then later, HPA is enabled for the deployment, e.g.:
 kubectl autoscale deployment nginx-deployment --cpu-percent=50 --min=1 --max=10
 ```
 
-<!-- 
+<!--
 Now, the user would like to remove `replicas` from their configuration, so they
 don't accidentally fight with the HPA controller. However, there is a race: it
 might take some time before HPA feels the need to adjust `replicas`, and if
@@ -616,10 +618,10 @@ is not what the user wants to happen, even temporarily.
 然而，这里存在一个竟态：
 在 HPA 需要调整 `replicas` 之前会有一个时间窗口，
 如果在 HPA 写入字段成为所有者之前，用户删除了`replicas`，
-那 API 服务器就会把 `replicas` 的值设为1， 也就是默认值。
+那 API 服务器就会把 `replicas` 的值设为 1， 也就是默认值。
 这不是用户希望发生的事情，即使是暂时的。
 
-<!-- 
+<!--
 There are two solutions:
 
 - (basic) Leave `replicas` in the configuration; when HPA eventually writes to that
@@ -644,7 +646,7 @@ First, the user defines a new configuration containing only the `replicas` field
 
 {{< codenew file="application/ssa/nginx-deployment-replicas-only.yaml" >}}
 
-<!-- 
+<!--
 The user applies that configuration using the field manager name `handover-to-hpa`:
 -->
 用户使用名为 `handover-to-hpa` 的字段管理器，应用此配置文件。
@@ -655,7 +657,7 @@ kubectl apply -f https://k8s.io/examples/application/ssa/nginx-deployment-replic
   --validate=false
 ```
 
-<!-- 
+<!--
 If the apply results in a conflict with the HPA controller, then do nothing. The
 conflict indicates the controller has claimed the field earlier in the
 process than it sometimes does.
@@ -669,7 +671,7 @@ At this point the user may remove the `replicas` field from their configuration.
 
 {{< codenew file="application/ssa/nginx-deployment-no-replicas.yaml" >}}
 
-<!-- 
+<!--
 Note that whenever the HPA controller sets the `replicas` field to a new value,
 the temporary field manager will no longer own any fields and will be
 automatically deleted. No clean up is required.
@@ -678,7 +680,7 @@ automatically deleted. No clean up is required.
 该临时字段管理器将不再拥有任何字段，会被自动删除。
 这里不需要执行清理工作。
 
-<!-- 
+<!--
 ### Transferring Ownership Between Users
 
 Users can transfer ownership of a field between each other by setting the field
@@ -694,7 +696,7 @@ complete the transfer to the other user.
 当用户共享了字段的所有权，任何一个用户可以从他的配置文件中删除该字段，
 并应用该变更，从而放弃所有权，并实现了所有权向其他用户的转移。
 
-<!-- 
+<!--
 ## Comparison with Client Side Apply
 
 A consequence of the conflict detection and resolution implemented by Server
@@ -727,7 +729,7 @@ case.
 
 另一个区别是使用客户端应用的应用者不能改变他们正在使用的 API 版本，但服务器端应用支持这个场景。
 
-<!-- 
+<!--
 ## Upgrading from client-side apply to server-side apply
 
 Client-side apply users who manage a resource with `kubectl apply` can start
@@ -741,7 +743,7 @@ using server-side apply with the following flag.
 ```shell
 kubectl apply --server-side [--dry-run=server]
 ```
-<!-- 
+<!--
 By default, field management of the object transfers from client-side apply to
 kubectl server-side apply without encountering conflicts.
 
@@ -779,7 +781,7 @@ manager for kubectl server-side apply is `kubectl`.
 kubectl apply --server-side --field-manager=my-manager [--dry-run=server]
 ```
 
-<!-- 
+<!--
 ## Downgrading from server-side apply to client-side apply
 
 If you manage a resource with `kubectl apply --server-side`,
@@ -810,7 +812,7 @@ manager for kubectl server-side apply is `kubectl`.
 kubectl apply --server-side --field-manager=my-manager [--dry-run=server]
 ```
 
-<!-- 
+<!--
 ## API Endpoint
 
 With the Server Side Apply feature enabled, the `PATCH` endpoint accepts the
@@ -827,7 +829,7 @@ have an opinion about.
 部分定义对象（partially specified objects）发送到此端点。
 当一个配置文件被应用时，它应该包含所有体现你意图的字段。
 
-<!-- 
+<!--
 ## Clearing ManagedFields
 
 It is possible to strip all managedFields from an object by overwriting them
@@ -838,9 +840,9 @@ with an empty entry. Two examples are:
 ## 清除 ManagedFields {#clearing-managedfields}
 
 可以从对象中剥离所有 managedField，
-实现方法是通过使用 `MergePatch`、 `StrategicMergePatch`、 
+实现方法是通过使用 `MergePatch`、 `StrategicMergePatch`、
 `JSONPatch`、 `Update`、以及所有的非应用方式的操作来覆盖它。
-这可以通过用空条目覆盖 managedFields 字段的方式实现。
+这可以通过用空条目覆盖 managedFields 字段的方式实现。以下是两个示例：
 
 ```console
 PATCH /api/v1/namespaces/default/configmaps/example-cm
@@ -856,7 +858,7 @@ Accept: application/json
 Data: [{"op": "replace", "path": "/metadata/managedFields", "value": [{}]}]
 ```
 
-<!-- 
+<!--
 This will overwrite the managedFields with a list containing a single empty
 entry that then results in the managedFields being stripped entirely from the
 object. Note that setting the managedFields to an empty list will not
@@ -877,7 +879,7 @@ applier takes ownership of any fields updated in the same request.
 将导致 managedFields 首先被重置，其他改变被押后处理。
 其结果是，应用者取得了同一个请求中所有字段的所有权。
 
-<!-- 
+<!--
 Server Side Apply does not correctly track ownership on
 sub-resources that don't receive the resource object type. If you are
 using Server Side Apply with such a sub-resource, the changed fields
@@ -888,20 +890,3 @@ won't be tracked.
 服务器端应用不能正确地跟踪其所有权。
 如果你对这样的子资源使用服务器端应用，变更的字段将不会被跟踪。
 {{< /caution >}}
-
-<!-- 
-## Disabling the feature
-
-Server Side Apply is a beta feature, so it is enabled by default. To turn this
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates) off,
-you need to include the `--feature-gates ServerSideApply=false` flag when
-starting `kube-apiserver`. If you have multiple `kube-apiserver` replicas, all
-should have the same flag setting.
--->
-## 禁用此功能 {#disabling-the-feature}
-
-服务器端应用是一个 Beta 版特性，默认启用。
-要关闭此[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates)，
-你需要在启动 `kube-apiserver` 时包含参数 `--feature-gates ServerSideApply=false`。
-如果你有多个 `kube-apiserver` 副本，它们的标志设置应该都相同。
-
diff --git a/content/zh/docs/setup/_index.md b/content/zh-cn/docs/setup/_index.md
similarity index 67%
rename from content/zh/docs/setup/_index.md
rename to content/zh-cn/docs/setup/_index.md
index 27b2487087..78af857c3a 100644
--- a/content/zh/docs/setup/_index.md
+++ b/content/zh-cn/docs/setup/_index.md
@@ -51,13 +51,28 @@ control, available resources, and expertise required to operate and manage a clu
 You can [download Kubernetes](/releases/download/) to deploy a Kubernetes cluster
 on a local machine, into the cloud, or for your own datacenter.
 
+Several [Kubernetes components](/docs/concepts/overview/components/) such as `kube-apiserver` or `kube-proxy` can also be
+deployed as [container images](/releases/download/#container-images) within the cluster.
+
+It is **recommended** to run Kubernetes components as container images wherever
+that is possible, and to have Kubernetes manage those components.
+Components that run containers - notably, the kubelet - can't be included in this category.
+
 If you don't want to manage a Kubernetes cluster yourself, you could pick a managed service, including
 [certified platforms](/docs/setup/production-environment/turnkey-solutions/).
 There are also other standardized and custom solutions across a wide range of cloud and
 bare metal environments.
--->。
-可以[下载 Kubernetes](/releases/download/)，在本地机器、云或你自己的数据中心上部署 Kubernetes 集群。
-如果你不想自己管理 Kubernetes 集群，则可以选择托管服务，包括[经过认证的平台](/zh/docs/setup/production-environment/turnkey-solutions/)。
+-->
+你可以[下载 Kubernetes](/zh-cn/releases/download/)，在本地机器、云或你自己的数据中心上部署 Kubernetes 集群。
+
+某些 [Kubernetes 组件](/zh-cn/docs/concepts/overview/components/)，
+比如 `kube-apiserver` 或 `kube-proxy` 等，
+可以在集群中以[容器镜像](/zh-cn/releases/download/#container-images)部署。
+
+**建议**尽可能将 Kubernetes 组件作为容器镜像运行，并且让 Kubernetes 管理这些组件。
+但是运行容器的相关组件 —— 尤其是 kubelet，不在此列。
+
+如果你不想自己管理 Kubernetes 集群，则可以选择托管服务，包括[经过认证的平台](/zh-cn/docs/setup/production-environment/turnkey-solutions/)。
 在各种云和裸机环境中，还有其他标准化和定制的解决方案。
 <!-- body -->
 
@@ -73,7 +88,7 @@ See [Install tools](/docs/tasks/tools/).
 -->
 如果正打算学习 Kubernetes，请使用 Kubernetes 社区支持
 或生态系统中的工具在本地计算机上设置 Kubernetes 集群。
-请参阅[安装工具](/zh/docs/tasks/tools/)。
+请参阅[安装工具](/zh-cn/docs/tasks/tools/)。
 
 <!--
 ## Production environment
@@ -89,11 +104,11 @@ prefer to hand off to a provider.
 For a cluster you're managing yourself, the officially supported tool
 for deploying Kubernetes is [kubeadm](/docs/setup/production-environment/tools/kubeadm/).
 -->
-在评估[生产环境](/zh/docs/setup/production-environment/)的解决方案时，
+在评估[生产环境](/zh-cn/docs/setup/production-environment/)的解决方案时，
 请考虑要自己管理 Kubernetes 集群（或相关抽象）的哪些方面，将哪些托付给提供商。
 
 对于你自己管理的集群，官方支持的用于部署 Kubernetes 的工具是 
-[kubeadm](/zh/docs/setup/production-environment/tools/kubeadm/)。
+[kubeadm](/zh-cn/docs/setup/production-environment/tools/kubeadm/)。
 
 <!--
 ## {{% heading "whatsnext" %}}
@@ -106,15 +121,16 @@ for deploying Kubernetes is [kubeadm](/docs/setup/production-environment/tools/k
 Kubernetes is designed for its {{< glossary_tooltip term_id="control-plane" text="control plane" >}} to
 run on Linux. Within your cluster you can run applications on Linux or other operating systems, including
 Windows.
-- Learn to [set up clusters with Windows nodes](/docs/setup/production-environment/windows/)
+
+- Learn to [set up clusters with Windows nodes](/docs/concepts/windows/)
 -->
 ## {{% heading "whatsnext" %}}
 
-- [下载 Kubernetes](/releases/download/)
-- 下载并[安装工具](/zh/docs/tasks/tools/)，包括 kubectl 在内
-- 为新集群选择[容器运行时](/zh/docs/setup/production-environment/container-runtimes/)
-- 了解集群设置的[最佳实践](/zh/docs/setup/best-practices/)
+- [下载 Kubernetes](/zh-cn/releases/download/)
+- 下载并[安装工具](/zh-cn/docs/tasks/tools/)，包括 kubectl 在内
+- 为新集群选择[容器运行时](/zh-cn/docs/setup/production-environment/container-runtimes/)
+- 了解集群设置的[最佳实践](/zh-cn/docs/setup/best-practices/)
 
 Kubernetes 的设计是让其{{< glossary_tooltip term_id="control-plane" text="控制平面" >}}在 Linux 上运行的。
 在集群中，你可以在 Linux 或其他操作系统（包括 Windows）上运行应用程序。
-- 学习[配置包含 Windows 节点的集群](/zh/docs/setup/production-environment/windows/)
+- 学习[配置包含 Windows 节点的集群](/zh-cn/docs/concepts/windows/)
diff --git a/content/zh/docs/setup/best-practices/_index.md b/content/zh-cn/docs/setup/best-practices/_index.md
similarity index 100%
rename from content/zh/docs/setup/best-practices/_index.md
rename to content/zh-cn/docs/setup/best-practices/_index.md
diff --git a/content/zh/docs/setup/best-practices/certificates.md b/content/zh-cn/docs/setup/best-practices/certificates.md
similarity index 57%
rename from content/zh/docs/setup/best-practices/certificates.md
rename to content/zh-cn/docs/setup/best-practices/certificates.md
index f8a79245c0..7b7b6a669b 100644
--- a/content/zh/docs/setup/best-practices/certificates.md
+++ b/content/zh-cn/docs/setup/best-practices/certificates.md
@@ -1,7 +1,5 @@
 ---
 title: PKI 证书和要求
-reviewers:
-- sig-cluster-lifecycle
 content_type: concept
 weight: 40
 ---
@@ -18,16 +16,14 @@ weight: 40
 <!--
 Kubernetes requires PKI certificates for authentication over TLS.
 If you install Kubernetes with [kubeadm](/docs/reference/setup-tools/kubeadm/), the certificates that your cluster requires are automatically generated.
-You can also generate your own certificates - for example, to keep your private keys more secure by not storing them on the API server.
+You can also generate your own certificates -- for example, to keep your private keys more secure by not storing them on the API server.
 This page explains the certificates that your cluster requires.
 -->
 Kubernetes 需要 PKI 证书才能进行基于 TLS 的身份验证。如果你是使用
-[kubeadm](/zh/docs/reference/setup-tools/kubeadm/) 安装的 Kubernetes，
+[kubeadm](/zh-cn/docs/reference/setup-tools/kubeadm/) 安装的 Kubernetes，
 则会自动生成集群所需的证书。你还可以生成自己的证书。
 例如，不将私钥存储在 API 服务器上，可以让私钥更加安全。此页面说明了集群必需的证书。
 
-
-
 <!-- body -->
 
 <!--
@@ -35,12 +31,14 @@ Kubernetes 需要 PKI 证书才能进行基于 TLS 的身份验证。如果你
 
 Kubernetes requires PKI for the following operations:
 -->
-## 集群是如何使用证书的
+## 集群是如何使用证书的    {#how-certificates-are-used-by-your-cluster}
 
 Kubernetes 需要 PKI 才能执行以下操作：
 
 <!--
 * Client certificates for the kubelet to authenticate to the API server
+* Kubelet [server certificates](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/#client-and-serving-certificates)
+  for the API server to talk to the kubelets
 * Server certificate for the API server endpoint
 * Client certificates for administrators of the cluster to authenticate to the API server
 * Client certificates for the API server to talk to the kubelets
@@ -50,20 +48,22 @@ Kubernetes 需要 PKI 才能执行以下操作：
 * Client and server certificates for the [front-proxy](/docs/tasks/extend-kubernetes/configure-aggregation-layer/)
 -->
 * Kubelet 的客户端证书，用于 API 服务器身份验证
+* Kubelet [服务端证书](/zh-cn/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/#client-and-serving-certificates)，
+  用于 API 服务器与 Kubelet 的会话
 * API 服务器端点的证书
 * 集群管理员的客户端证书，用于 API 服务器身份认证
 * API 服务器的客户端证书，用于和 Kubelet 的会话
 * API 服务器的客户端证书，用于和 etcd 的会话
 * 控制器管理器的客户端证书/kubeconfig，用于和 API 服务器的会话
 * 调度器的客户端证书/kubeconfig，用于和 API 服务器的会话
-* [前端代理](/zh/docs/tasks/extend-kubernetes/configure-aggregation-layer/) 的客户端及服务端证书
+* [前端代理](/zh-cn/docs/tasks/extend-kubernetes/configure-aggregation-layer/) 的客户端及服务端证书
 
 <!--
-`front-proxy` certificates are required only if you run kube-proxy to support [an extension API server](/docs/tasks/access-kubernetes-api/setup-extension-api-server/).
+`front-proxy` certificates are required only if you run kube-proxy to support [an extension API server](/docs/tasks/extend-kubernetes/setup-extension-api-server/).
 -->
 {{< note >}}
 只有当你运行 kube-proxy 并要支持
-[扩展 API 服务器](/zh/docs/tasks/extend-kubernetes/setup-extension-api-server/)
+[扩展 API 服务器](/zh-cn/docs/tasks/extend-kubernetes/setup-extension-api-server/)
 时，才需要 `front-proxy` 证书
 {{< /note >}}
 
@@ -75,34 +75,39 @@ etcd 还实现了双向 TLS 来对客户端和对其他对等节点进行身份
 <!--
 ## Where certificates are stored
 
-If you install Kubernetes with kubeadm, certificates are stored in `/etc/kubernetes/pki`. All paths in this documentation are relative to that directory.
+If you install Kubernetes with kubeadm, most certificates are stored in `/etc/kubernetes/pki`. All paths in this documentation are relative to that directory, with the exception of user account certificates which kubeadm places in `/etc/kubernetes`.
 -->
-## 证书存放的位置
+## 证书存放的位置    {#where-certificates-are-stored}
 
-如果你是通过 kubeadm 安装的 Kubernetes，所有证书都存放在 `/etc/kubernetes/pki` 目录下。本文所有相关的路径都是基于该路径的相对路径。
+假如通过 kubeadm 安装 Kubernetes，大多数证书都存储在 `/etc/kubernetes/pki`。
+本文档中的所有路径都是相对于该目录的，但用户账户证书除外，kubeadm 将其放在 `/etc/kubernetes` 中。
 
 <!--
 ## Configure certificates manually
 
-If you don't want kubeadm to generate the required certificates, you can create them in either of the following ways.
+If you don't want kubeadm to generate the required certificates, you can create them using a single root CA or by providing all certificates. See [Certificates](/docs/tasks/administer-cluster/certificates/) for details on creating your own certificate authority.
+See [Certificate Management with kubeadm](/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/) for more on managing certificates.
 -->
-## 手动配置证书
+## 手动配置证书    {#configure-certificates-manually}
 
-如果你不想通过 kubeadm 生成这些必需的证书，你可以通过下面两种方式之一来手动创建他们。
+如果你不想通过 kubeadm 生成这些必需的证书，你可以使用一个单一的根 CA
+来创建这些证书或者直接提供所有证书。
+参见[证书](/zh-cn/docs/tasks/administer-cluster/certificates/)以进一步了解创建自己的证书机构。
+关于管理证书的更多信息，请参见[使用 kubeadm 进行证书管理](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/)。
 
 <!--
 ### Single root CA
 
 You can create a single root CA, controlled by an administrator. This root CA can then create multiple intermediate CAs, and delegate all further creation to Kubernetes itself.
 -->
-### 单根 CA
+### 单根 CA    {#single-root-ca}
 
-你可以创建一个单根 CA，由管理员控制器它。该根 CA 可以创建多个中间 CA，并将所有进一步的创建委托给 Kubernetes。
+你可以创建由管理员控制的单根 CA。该根 CA 可以创建多个中间 CA，并将所有进一步的创建委托给 Kubernetes。
 
 <!--
 Required CAs:
 
-| 路径                    | 默认 CN                    | 描述                             |
+| path                   | Default CN                | description                      |
 |------------------------|---------------------------|----------------------------------|
 | ca.crt,key             | kubernetes-ca             | Kubernetes general CA            |
 | etcd/ca.crt,key        | etcd-ca                   | For all etcd-related functions   |
@@ -116,10 +121,24 @@ On top of the above CAs, it is also necessary to get a public/private key pair f
 |------------------------|---------------------------|----------------------------------|
 | ca.crt,key             | kubernetes-ca             | Kubernetes 通用 CA                |
 | etcd/ca.crt,key        | etcd-ca                   | 与 etcd 相关的所有功能              |
-| front-proxy-ca.crt,key | kubernetes-front-proxy-ca | 用于 [前端代理](/zh/docs/tasks/extend-kubernetes/configure-aggregation-layer/) |
+| front-proxy-ca.crt,key | kubernetes-front-proxy-ca | 用于 [前端代理](/zh-cn/docs/tasks/extend-kubernetes/configure-aggregation-layer/) |
 
 上面的 CA 之外，还需要获取用于服务账户管理的密钥对，也就是 `sa.key` 和 `sa.pub`。
 
+<!--
+The following example illustrates the CA key and certificate files shown in the previous table:
+-->
+下面的例子说明了上表中所示的 CA 密钥和证书文件。
+
+```console
+/etc/kubernetes/pki/ca.crt
+/etc/kubernetes/pki/ca.key
+/etc/kubernetes/pki/etcd/ca.crt
+/etc/kubernetes/pki/etcd/ca.key
+/etc/kubernetes/pki/front-proxy-ca.crt
+/etc/kubernetes/pki/front-proxy-ca.key
+```
+
 <!--
 ### All certificates
 
@@ -127,15 +146,26 @@ If you don't wish to copy the CA private keys to your cluster, you can generate
 
 Required certificates:
 -->
-### 所有的证书
+### 所有的证书    {#all-certificates}
 
 如果你不想将 CA 的私钥拷贝至你的集群中，你也可以自己生成全部的证书。
 
 需要这些证书：
 
-| 默认 CN                    | 父级 CA                 | O (位于 Subject 中) | 类型                                   | 主机 (SAN)                                 |
+<!--
+| Default CN                    | Parent CA                 | O (in Subject) | kind                                   | hosts (SAN)                                 |
 |-------------------------------|---------------------------|----------------|----------------------------------------|---------------------------------------------|
-| kube-etcd                     | etcd-ca                   |                | server, client                         | `localhost`, `127.0.0.1`                        |
+| kube-etcd                     | etcd-ca                   |                | server, client                         | `<hostname>`, `<Host_IP>`, `localhost`, `127.0.0.1` |
+| kube-etcd-peer                | etcd-ca                   |                | server, client                         | `<hostname>`, `<Host_IP>`, `localhost`, `127.0.0.1` |
+| kube-etcd-healthcheck-client  | etcd-ca                   |                | client                                 |                                             |
+| kube-apiserver-etcd-client    | etcd-ca                   | system:masters | client                                 |                                             |
+| kube-apiserver                | kubernetes-ca             |                | server                                 | `<hostname>`, `<Host_IP>`, `<advertise_IP>`, `[1]` |
+| kube-apiserver-kubelet-client | kubernetes-ca             | system:masters | client                                 |                                             |
+| front-proxy-client            | kubernetes-front-proxy-ca |                | client                                 |                                             |
+-->
+| 默认 CN                       | 父级 CA                   | O (位于 Subject 中) | 类型                              | 主机 (SAN)                                  |
+|-------------------------------|---------------------------|----------------|----------------------------------------|---------------------------------------------|
+| kube-etcd                     | etcd-ca                   |                | server, client                         | `<hostname>`, `<Host_IP>`, `localhost`, `127.0.0.1` |
 | kube-etcd-peer                | etcd-ca                   |                | server, client                         | `<hostname>`, `<Host_IP>`, `localhost`, `127.0.0.1` |
 | kube-etcd-healthcheck-client  | etcd-ca                   |                | client                                 |                                             |
 | kube-apiserver-etcd-client    | etcd-ca                   | system:masters | client                                 |                                             |
@@ -144,17 +174,18 @@ Required certificates:
 | front-proxy-client            | kubernetes-front-proxy-ca |                | client                                 |                                             |
 
 <!--
-[1]: any other IP or DNS name you contact your cluster on (as used by [kubeadm](/docs/reference/setup-tools/kubeadm/) the load balancer stable IP and/or DNS name, `kubernetes`, `kubernetes.default`, `kubernetes.default.svc`,
+[1]: any other IP or DNS name you contact your cluster on (as used by [kubeadm](/docs/reference/setup-tools/kubeadm/)
+the load balancer stable IP and/or DNS name, `kubernetes`, `kubernetes.default`, `kubernetes.default.svc`,
 `kubernetes.default.svc.cluster`, `kubernetes.default.svc.cluster.local`)
 
-where `kind` maps to one or more of the [x509 key usage](https://godoc.org/k8s.io/api/certificates/v1beta1#KeyUsage) types:
+where `kind` maps to one or more of the [x509 key usage](https://pkg.go.dev/k8s.io/api/certificates/v1beta1#KeyUsage) types:
 -->
 [1]: 用来连接到集群的不同 IP 或 DNS 名
-（就像 [kubeadm](/zh/docs/reference/setup-tools/kubeadm/) 为负载均衡所使用的固定
+（就像 [kubeadm](/zh-cn/docs/reference/setup-tools/kubeadm/) 为负载均衡所使用的固定
 IP 或 DNS 名，`kubernetes`、`kubernetes.default`、`kubernetes.default.svc`、
 `kubernetes.default.svc.cluster`、`kubernetes.default.svc.cluster.local`）。
 
-其中，`kind` 对应一种或多种类型的 [x509 密钥用途](https://godoc.org/k8s.io/api/certificates/v1beta1#KeyUsage)：
+其中，`kind` 对应一种或多种类型的 [x509 密钥用途](https://pkg.go.dev/k8s.io/api/certificates/v1beta1#KeyUsage)：
 
 <!--
 | kind   | Key usage                                                                       |
@@ -167,7 +198,6 @@ IP 或 DNS 名，`kubernetes`、`kubernetes.default`、`kubernetes.default.svc`
 | server | 数字签名、密钥加密、服务端认证                                                       |
 | client | 数字签名、密钥加密、客户端认证                                                       |
 
-
 {{< note >}}
 <!--
 Hosts/SAN listed above are the recommended ones for getting a working cluster; if required by a specific setup, it is possible to add additional SANs on all the server certificates.
@@ -193,12 +223,32 @@ For kubeadm users only:
 <!--
 ### Certificate paths
 
-Certificates should be placed in a recommended path (as used by [kubeadm](/docs/reference/setup-tools/kubeadm/)). Paths should be specified using the given argument regardless of location.
+Certificates should be placed in a recommended path (as used by [kubeadm](/docs/reference/setup-tools/kubeadm/)).
+Paths should be specified using the given argument regardless of location.
 -->
-### 证书路径
+### 证书路径    {#certificate-paths}
 
-证书应放置在建议的路径中（以便 [kubeadm](/zh/docs/reference/setup-tools/kubeadm/)使用）。无论使用什么位置，都应使用给定的参数指定路径。
+证书应放置在建议的路径中（以便 [kubeadm](/zh-cn/docs/reference/setup-tools/kubeadm/)
+使用）。无论使用什么位置，都应使用给定的参数指定路径。
 
+<!--
+| Default CN                   | recommended key path         | recommended cert path       | command        | key argument                 | cert argument                             |
+|------------------------------|------------------------------|-----------------------------|----------------|------------------------------|-------------------------------------------|
+| etcd-ca                      |     etcd/ca.key                         | etcd/ca.crt                 | kube-apiserver |                              | --etcd-cafile                             |
+| kube-apiserver-etcd-client   | apiserver-etcd-client.key    | apiserver-etcd-client.crt   | kube-apiserver | --etcd-keyfile               | --etcd-certfile                           |
+| kubernetes-ca                |    ca.key                          | ca.crt                      | kube-apiserver |                              | --client-ca-file                          |
+| kubernetes-ca                |    ca.key                          | ca.crt                      | kube-controller-manager | --cluster-signing-key-file      | --client-ca-file, --root-ca-file, --cluster-signing-cert-file  |
+| kube-apiserver               | apiserver.key                | apiserver.crt               | kube-apiserver | --tls-private-key-file       | --tls-cert-file                           |
+| kube-apiserver-kubelet-client|     apiserver-kubelet-client.key                         | apiserver-kubelet-client.crt| kube-apiserver | --kubelet-client-key | --kubelet-client-certificate              |
+| front-proxy-ca               |     front-proxy-ca.key                         | front-proxy-ca.crt          | kube-apiserver |                              | --requestheader-client-ca-file            |
+| front-proxy-ca               |     front-proxy-ca.key                         | front-proxy-ca.crt          | kube-controller-manager |                              | --requestheader-client-ca-file |
+| front-proxy-client           | front-proxy-client.key       | front-proxy-client.crt      | kube-apiserver | --proxy-client-key-file      | --proxy-client-cert-file                  |
+| etcd-ca                      |         etcd/ca.key                     | etcd/ca.crt                 | etcd           |                              | --trusted-ca-file, --peer-trusted-ca-file |
+| kube-etcd                    | etcd/server.key              | etcd/server.crt             | etcd           | --key-file                   | --cert-file                               |
+| kube-etcd-peer               | etcd/peer.key                | etcd/peer.crt               | etcd           | --peer-key-file              | --peer-cert-file                          |
+| etcd-ca                      |                              | etcd/ca.crt                 | etcdctl    |                              | --cacert                                  |
+| kube-etcd-healthcheck-client | etcd/healthcheck-client.key  | etcd/healthcheck-client.crt | etcdctl     | --key                        | --cert                                    |
+-->
 | 默认 CN                   | 建议的密钥路径         | 建议的证书路径       | 命令        | 密钥参数               | 证书参数                             |
 |------------------------------|------------------------------|-----------------------------|----------------|------------------------------|-------------------------------------------|
 | etcd-ca                      |     etcd/ca.key                         | etcd/ca.crt                 | kube-apiserver |                              | --etcd-cafile                             |
@@ -221,20 +271,65 @@ Same considerations apply for the service account key pair:
 -->
 注意事项同样适用于服务帐户密钥对：
 
+<!--
+| private key path             | public key path             | command                 | argument                             |
+|------------------------------|-----------------------------|-------------------------|--------------------------------------|
+|  sa.key                      |                             | kube-controller-manager | --service-account-private-key-file   |
+|                              | sa.pub                      | kube-apiserver          | --service-account-key-file           |
+-->
 | 私钥路径            | 公钥路径            | 命令                 | 参数                             |
 |------------------------------|-----------------------------|-------------------------|--------------------------------------|
 |  sa.key                      |                             | kube-controller-manager | --service-account-private-key-file              |
 |                              | sa.pub                      | kube-apiserver          | --service-account-key-file                  |
 
+<!--
+The following example illustrates the file paths [from the previous tables](/docs/setup/best-practices/certificates/#certificate-paths) you need to provide if you are generating all of your own keys and certificates:
+-->
+下面的例子展示了自行生成所有密钥和证书时所需要提供的文件路径。
+这些路径基于[前面的表格](/zh-cn/docs/setup/best-practices/certificates/#certificate-paths)。
+
+```console
+/etc/kubernetes/pki/etcd/ca.key
+/etc/kubernetes/pki/etcd/ca.crt
+/etc/kubernetes/pki/apiserver-etcd-client.key
+/etc/kubernetes/pki/apiserver-etcd-client.crt
+/etc/kubernetes/pki/ca.key
+/etc/kubernetes/pki/ca.crt
+/etc/kubernetes/pki/apiserver.key
+/etc/kubernetes/pki/apiserver.crt
+/etc/kubernetes/pki/apiserver-kubelet-client.key
+/etc/kubernetes/pki/apiserver-kubelet-client.crt
+/etc/kubernetes/pki/front-proxy-ca.key
+/etc/kubernetes/pki/front-proxy-ca.crt
+/etc/kubernetes/pki/front-proxy-client.key
+/etc/kubernetes/pki/front-proxy-client.crt
+/etc/kubernetes/pki/etcd/server.key
+/etc/kubernetes/pki/etcd/server.crt
+/etc/kubernetes/pki/etcd/peer.key
+/etc/kubernetes/pki/etcd/peer.crt
+/etc/kubernetes/pki/etcd/healthcheck-client.key
+/etc/kubernetes/pki/etcd/healthcheck-client.crt
+/etc/kubernetes/pki/sa.key
+/etc/kubernetes/pki/sa.pub
+```
+
 <!--
 ## Configure certificates for user accounts
 
 You must manually configure these administrator account and service accounts:
 -->
-## 为用户帐户配置证书
+## 为用户帐户配置证书    {#configure-certificates-for-user-accounts}
 
 你必须手动配置以下管理员帐户和服务帐户：
 
+<!--
+| filename                | credential name            | Default CN                     | O (in Subject) |
+|-------------------------|----------------------------|--------------------------------|----------------|
+| admin.conf              | default-admin              | kubernetes-admin               | system:masters |
+| kubelet.conf            | default-auth               | system:node:`<nodeName>` (see note) | system:nodes   |
+| controller-manager.conf | default-controller-manager | system:kube-controller-manager |                |
+| scheduler.conf          | default-scheduler          | system:kube-scheduler          |                |
+-->
 | 文件名                  | 凭据名称                   | 默认 CN                        | O (位于 Subject 中) |
 |-------------------------|----------------------------|--------------------------------|---------------------|
 | admin.conf              | default-admin              | kubernetes-admin               | system:masters      |
@@ -247,7 +342,7 @@ The value of `<nodeName>` for `kubelet.conf` **must** match precisely the value
 -->
 {{< note >}}
 `kubelet.conf` 中 `<nodeName>` 的值 **必须** 与 kubelet 向 apiserver 注册时提供的节点名称的值完全匹配。
-有关更多详细信息，请阅读[节点授权](/zh/docs/reference/access-authn-authz/node/)。
+有关更多详细信息，请阅读[节点授权](/zh-cn/docs/reference/access-authn-authz/node/)。
 {{< /note >}}
 
 <!--
@@ -285,3 +380,14 @@ These files are used as follows:
 | controller-manager.conf | kube-controller-manager | 必需添加到 `manifests/kube-controller-manager.yaml` 清单中               |
 | scheduler.conf          | kube-scheduler          | 必需添加到 `manifests/kube-scheduler.yaml` 清单中                        |
 
+<!--
+The following files illustrate full paths to the files listed in the previous table:
+-->
+下面是前表中所列文件的完整路径。
+
+```console
+/etc/kubernetes/admin.conf
+/etc/kubernetes/kubelet.conf
+/etc/kubernetes/controller-manager.conf
+/etc/kubernetes/scheduler.conf
+```
diff --git a/content/zh/docs/setup/best-practices/cluster-large.md b/content/zh-cn/docs/setup/best-practices/cluster-large.md
similarity index 97%
rename from content/zh/docs/setup/best-practices/cluster-large.md
rename to content/zh-cn/docs/setup/best-practices/cluster-large.md
index 7e40a387ea..fe5f53249e 100644
--- a/content/zh/docs/setup/best-practices/cluster-large.md
+++ b/content/zh-cn/docs/setup/best-practices/cluster-large.md
@@ -138,8 +138,8 @@ See [Operating etcd clusters for Kubernetes](/docs/tasks/administer-cluster/conf
 for details on configuring and managing etcd for a large cluster.
 -->
 有关为大型集群配置和管理 etcd 的详细信息，请参阅
-[为 Kubernetes 运行 etcd 集群](/zh/docs/tasks/administer-cluster/configure-upgrade-etcd/)
-和使用 [kubeadm 创建一个高可用 etcd 集群](/zh/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm/)。
+[为 Kubernetes 运行 etcd 集群](/zh-cn/docs/tasks/administer-cluster/configure-upgrade-etcd/)
+和使用 [kubeadm 创建一个高可用 etcd 集群](/zh-cn/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm/)。
 
 <!--
 ### Addon Resources
@@ -154,7 +154,7 @@ impact on other components. These resource limits apply to
 
   For example, you can set CPU and memory limits for a logging component:
 -->
-Kubernetes [资源限制](/zh/docs/concepts/configuration/manage-resources-containers/)
+Kubernetes [资源限制](/zh-cn/docs/concepts/configuration/manage-resources-containers/)
 有助于最大程度地减少内存泄漏的影响以及 Pod 和容器可能对其他组件的其他方式的影响。
 这些资源限制适用于{{< glossary_tooltip text="插件" term_id="addons" >}}资源，
 就像它们适用于应用程序工作负载一样。
diff --git a/content/zh-cn/docs/setup/best-practices/enforcing-pod-security-standards.md b/content/zh-cn/docs/setup/best-practices/enforcing-pod-security-standards.md
new file mode 100644
index 0000000000..75b1c98f7d
--- /dev/null
+++ b/content/zh-cn/docs/setup/best-practices/enforcing-pod-security-standards.md
@@ -0,0 +1,154 @@
+---
+title: 强制实施 Pod 安全性标准
+weight: 40
+---
+
+<!--
+reviewers:
+- tallclair
+- liggitt
+title: Enforcing Pod Security Standards
+weight: 40
+-->
+
+<!-- overview -->
+
+<!--
+This page provides an overview of best practices when it comes to enforcing
+[Pod Security Standards](/docs/concepts/security/pod-security-standards).
+-->
+本页提供实施 [Pod 安全标准（Pod Security Standards）](/zh-cn/docs/concepts/security/pod-security-standards)
+时的一些最佳实践。
+
+<!-- body -->
+
+<!--
+## Using the built-in Pod Security Admission Controller
+-->
+## 使用内置的 Pod 安全性准入控制器
+
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
+
+<!--
+The [Pod Security Admission Controller](/docs/reference/access-authn-authz/admission-controllers/#podsecurity)
+intends to replace the deprecated PodSecurityPolicies. 
+-->
+[Pod 安全性准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#podsecurity)
+尝试替换已被废弃的 PodSecurityPolicies。
+
+<!--
+### Configure all cluster namespaces
+-->
+### 配置所有集群名字空间    {#configure-all-cluster-namespaces}
+
+<!--
+Namespaces that lack any configuration at all should be considered significant gaps in your cluster
+security model. We recommend taking the time to analyze the types of workloads occurring in each
+namespace, and by referencing the Pod Security Standards, decide on an appropriate level for
+each of them. Unlabeled namespaces should only indicate that they've yet to be evaluated.
+-->
+完全未经配置的名字空间应该被视为集群安全模型中的重大缺陷。
+我们建议花一些时间来分析在每个名字空间中执行的负载的类型，
+并通过引用 Pod 安全性标准来确定每个负载的合适级别。
+未设置标签的名字空间应该视为尚未被评估。
+
+<!--
+In the scenario that all workloads in all namespaces have the same security requirements,
+we provide an [example](/docs/concepts/security/pod-security-admission/#applying-to-all-namespaces)
+that illustrates how the PodSecurity labels can be applied in bulk.
+-->
+针对所有名字空间中的所有负载都具有相同的安全性需求的场景，
+我们提供了一个[示例](/zh-cn/docs/concepts/security/pod-security-admission/#applying-to-all-namespaces)
+用来展示如何批量应用 Pod 安全性标签。
+
+<!--
+### Embrace the principle of least privilege
+
+In an ideal world, every pod in every namespace would meet the requirements of the `restricted`
+policy. However, this is not possible nor practical, as some workloads will require elevated
+privileges for legitimate reasons.
+-->
+### 拥抱最小特权原则
+
+在一个理想环境中，每个名字空间中的每个 Pod 都会满足 `restricted` 策略的需求。
+不过，这既不可能也不现实，某些负载会因为合理的原因而需要特权上的提升。
+
+<!--
+- Namespaces allowing `privileged` workloads should establish and enforce appropriate access controls.
+- For workloads running in those permissive namespaces, maintain documentation about their unique
+  security requirements. If at all possible, consider how those requirements could be further
+  constrained.
+-->
+- 允许 `privileged` 负载的名字空间需要建立并实施适当的访问控制机制。
+- 对于运行在特权宽松的名字空间中的负载，需要维护其独特安全性需求的文档。
+  如果可能的话，要考虑如何进一步约束这些需求。
+
+<!--
+### Adopt a multi-mode strategy
+
+The `audit` and `warn` modes of the Pod Security Standards admission controller make it easy to
+collect important security insights about your pods without breaking existing workloads.
+-->
+### 采用多种模式的策略
+
+Pod 安全性标准准入控制器的 `audit` 和 `warn` 模式（mode）
+能够在不影响现有负载的前提下，让该控制器更方便地收集关于 Pod 的重要的安全信息。
+
+<!--
+It is good practice to enable these modes for all namespaces, setting them to the _desired_ level
+and version you would eventually like to `enforce`. The warnings and audit annotations generated in
+this phase can guide you toward that state. If you expect workload authors to make changes to fit
+within the desired level, enable the `warn` mode. If you expect to use audit logs to monitor/drive
+changes to fit within the desired level, enable the `audit` mode.
+-->
+针对所有名字空间启用这些模式是一种好的实践，将它们设置为你最终打算 `enforce` 的
+ _期望的_ 级别和版本。这一阶段中所生成的警告和审计注解信息可以帮助你到达这一状态。
+如果你期望负载的作者能够作出变更以便适应期望的级别，可以启用 `warn` 模式。
+如果你希望使用审计日志了监控和驱动变更，以便负载能够适应期望的级别，可以启用 `audit` 模式。
+
+<!--
+When you have the `enforce` mode set to your desired value, these modes can still be useful in a
+few different ways:
+
+- By setting `warn` to the same level as `enforce`, clients will receive warnings when attempting
+  to create Pods (or resources that have Pod templates) that do not pass validation. This will help
+  them update those resources to become compliant.
+- In Namespaces that pin `enforce` to a specific non-latest version, setting the `audit` and `warn`
+  modes to the same level as `enforce`, but to the `latest` version, gives visibility into settings
+  that were allowed by previous versions but are not allowed per current best practices.
+-->
+当你将 `enforce` 模式设置为期望的取值时，这些模式在不同的场合下仍然是有用的：
+
+- 通过将 `warn` 设置为 `enforce` 相同的级别，客户可以在尝试创建无法通过合法检查的 Pod
+  （或者包含 Pod 模板的资源）时收到警告信息。这些信息会帮助于更新资源使其合规。
+- 在将 `enforce` 锁定到特定的非最新版本的名字空间中，将 `audit` 和 `warn`
+  模式设置为 `enforce` 一样的级别而非 `latest` 版本，
+  这样可以方便看到之前版本所允许但当前最佳实践中被禁止的设置。
+
+<!--
+## Third-party alternatives
+-->
+## 第三方替代方案     {#third-party-alternatives}
+
+{{% thirdparty-content %}}
+
+<!--
+Other alternatives for enforcing security profiles are being developed in the Kubernetes
+ecosystem:
+-->
+Kubernetes 生态系统中也有一些其他强制实施安全设置的替代方案处于开发状态中：
+
+- [Kubewarden](https://github.com/kubewarden).
+- [Kyverno](https://kyverno.io/policies/).
+- [OPA Gatekeeper](https://github.com/open-policy-agent/gatekeeper).
+
+<!--
+The decision to go with a _built-in_ solution (e.g. PodSecurity admission controller) versus a
+third-party tool is entirely dependent on your own situation. When evaluating any solution,
+trust of your supply chain is crucial. Ultimately, using _any_ of the aforementioned approaches
+will be better than doing nothing.
+-->
+采用 _内置的_ 方案（例如 PodSecurity 准入控制器）还是第三方工具，
+这一决策完全取决于你自己的情况。在评估任何解决方案时，对供应链的信任都是至关重要的。
+最终，使用前述方案中的 _任何_ 一种都好过放任自流。
+
diff --git a/content/zh/docs/setup/best-practices/multiple-zones.md b/content/zh-cn/docs/setup/best-practices/multiple-zones.md
similarity index 93%
rename from content/zh/docs/setup/best-practices/multiple-zones.md
rename to content/zh-cn/docs/setup/best-practices/multiple-zones.md
index 76dac538fc..2ad2dd4e48 100644
--- a/content/zh/docs/setup/best-practices/multiple-zones.md
+++ b/content/zh-cn/docs/setup/best-practices/multiple-zones.md
@@ -53,7 +53,7 @@ component.
 -->
 ## 控制面行为   {#control-plane-behavior}
 
-所有的[控制面组件](/zh/docs/concepts/overview/components/#control-plane-components)
+所有的[控制面组件](/zh-cn/docs/concepts/overview/components/#control-plane-components)
 都支持以一组可相互替换的资源池的形式来运行，每个组件都有多个副本。
 
 <!--
@@ -108,12 +108,12 @@ These labels can include
 -->
 节点启动时，每个节点上的 kubelet 会向 Kubernetes API 中代表该 kubelet 的 Node 对象
 添加 {{< glossary_tooltip text="标签" term_id="label" >}}。
-这些标签可能包含[区信息](/zh/docs/reference/labels-annotations-taints/#topologykubernetesiozone)。
+这些标签可能包含[区信息](/zh-cn/docs/reference/labels-annotations-taints/#topologykubernetesiozone)。
 
 <!--
 If your cluster spans multiple zones or regions, you can use node labels
 in conjunction with
-[Pod topology spread constraints](/docs/concepts/workloads/pods/pod-topology-spread-constraints/)
+[Pod topology spread constraints](/docs/concepts/scheduling-eviction/topology-spread-constraints/)
 to control how Pods are spread across your cluster among fault domains:
 regions, zones, and even specific nodes.
 These hints enable the
@@ -122,7 +122,7 @@ Pods for better expected availability, reducing the risk that a correlated
 failure affects your whole workload.
 -->
 如果你的集群跨了多个可用区或者地理区域，你可以使用节点标签，结合
-[Pod 拓扑分布约束](/zh/docs/concepts/workloads/pods/pod-topology-spread-constraints/)
+[Pod 拓扑分布约束](/zh-cn/docs/concepts/scheduling-eviction/topology-spread-constraints/)
 来控制如何在你的集群中多个失效域之间分布 Pods。这里的失效域可以是
 地理区域、可用区甚至是特定节点。
 这些提示信息使得{{< glossary_tooltip text="调度器" term_id="kube-scheduler" >}}
@@ -178,7 +178,7 @@ You can apply [node selector constraints](/docs/concepts/scheduling-eviction/ass
 to Pods that you create, as well as to Pod templates in workload resources
 such as Deployment, StatefulSet, or Job.
 -->
-你可以应用[节点选择算符约束](/zh/docs/concepts/scheduling-eviction/assign-pod-node/#nodeselector)
+你可以应用[节点选择算符约束](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/#nodeselector)
 到你所创建的 Pods 上，或者为 Deployment、StatefulSet 或 Job 这类工作负载资源
 中的 Pod 模板设置此类约束。
 
@@ -195,7 +195,7 @@ are only placed into the same zone as that volume.
 ## 跨区的存储访问
 
 当创建持久卷时，`PersistentVolumeLabel` 
-[准入控制器](/zh/docs/reference/access-authn-authz/admission-controllers/)
+[准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/)
 会自动向那些链接到特定区的 PersistentVolume 添加区标签。
 {{< glossary_tooltip text="调度器" term_id="kube-scheduler" >}}通过其
 `NoVolumeZoneConflict` 断言确保申领给定 PersistentVolume 的 Pods 只会
@@ -211,7 +211,7 @@ see [Allowed topologies](/docs/concepts/storage/storage-classes/#allowed-topolog
 你可以为 PersistentVolumeClaim 指定{{< glossary_tooltip text="StorageClass" term_id="storage-class" >}}
 以设置该类中的存储可以使用的失效域（区）。
 要了解如何配置能够感知失效域或区的 StorageClass，请参阅
-[可用的拓扑逻辑](/zh/docs/concepts/storage/storage-classes/#allowed-topologies)。
+[可用的拓扑逻辑](/zh-cn/docs/concepts/storage/storage-classes/#allowed-topologies)。
 
 <!--
 ## Networking
@@ -227,7 +227,7 @@ Check your cloud provider's documentation for details.
 ## 网络  {#networking}
 
 Kubernetes 自身不提供与可用区相关的联网配置。
-你可以使用[网络插件](/zh/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)
+你可以使用[网络插件](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)
 来配置集群的联网，该网络解决方案可能拥有一些与可用区相关的元素。
 例如，如果你的云提供商支持 `type=LoadBalancer` 的 Service，则负载均衡器
 可能仅会将请求流量发送到运行在负责处理给定连接的负载均衡器组件所在的区。
@@ -278,5 +278,5 @@ To learn how the scheduler places Pods in a cluster, honoring the configured con
 visit [Scheduling and Eviction](/docs/concepts/scheduling-eviction/).
 -->
 要了解调度器如何在集群中放置 Pods 并遵从所配置的约束，可参阅
-[调度与驱逐](/zh/docs/concepts/scheduling-eviction/)。
+[调度与驱逐](/zh-cn/docs/concepts/scheduling-eviction/)。
 
diff --git a/content/zh/docs/setup/best-practices/node-conformance.md b/content/zh-cn/docs/setup/best-practices/node-conformance.md
similarity index 56%
rename from content/zh/docs/setup/best-practices/node-conformance.md
rename to content/zh-cn/docs/setup/best-practices/node-conformance.md
index 942ff09aec..9fe0ce0d90 100644
--- a/content/zh/docs/setup/best-practices/node-conformance.md
+++ b/content/zh-cn/docs/setup/best-practices/node-conformance.md
@@ -1,16 +1,12 @@
 ---
-reviewers:
-- Random-Liu
 title: 校验节点设置
 weight: 30
 ---
 <!--
----
 reviewers:
 - Random-Liu
 title: Validate node setup
 weight: 30
----
 -->
 
 {{< toc >}}
@@ -18,13 +14,16 @@ weight: 30
 <!--
 ## Node Conformance Test
 -->
-## 节点一致性测试
+## 节点一致性测试    {#node-conformance-test}
 
 <!--
 *Node conformance test* is a containerized test framework that provides a system
-verification and functionality test for a node. 
+verification and functionality test for a node. The test validates whether the
+node meets the minimum requirements for Kubernetes; a node that passes the test
+is qualified to join a Kubernetes cluster.
 -->
-*节点一致性测试* 是一个容器化的测试框架，提供了针对节点的系统验证和功能测试。
+**节点一致性测试** 是一个容器化的测试框架，提供了针对节点的系统验证和功能测试。
+测试验证节点是否满足 Kubernetes 的最低要求；通过测试的节点有资格加入 Kubernetes 集群。
 
 <!--
 The test validates whether the node meets the minimum requirements for Kubernetes; a node that passes the testis qualified to join a Kubernetes cluster.
@@ -34,10 +33,12 @@ The test validates whether the node meets the minimum requirements for Kubernete
 <!--
 ## Node Prerequisite
 -->
-## 节点的前提条件
+## 节点的前提条件    {#node-prerequisite}
 
 <!--
-To run node conformance test, a node must satisfy the same prerequisites as astandard Kubernetes node. At a minimum, the node should have the following daemons installed:
+To run node conformance test, a node must satisfy the same prerequisites as a
+standard Kubernetes node. At a minimum, the node should have the following
+daemons installed:
 -->
 要运行节点一致性测试，节点必须满足与标准 Kubernetes 节点相同的前提条件。节点至少应安装以下守护程序：
 
@@ -51,7 +52,7 @@ To run node conformance test, a node must satisfy the same prerequisites as asta
 <!--
 ## Running Node Conformance Test
 -->
-## 运行节点一致性测试
+## 运行节点一致性测试    {#running-node-conformance-test}
 
 <!--
 To run the node conformance test, perform the following steps:
@@ -64,28 +65,31 @@ To run the node conformance test, perform the following steps:
     Because the test framework starts a local control plane to test the kubelet,
     use `http://localhost:8080` as the URL of the API server.
     There are some other kubelet command line parameters you may want to use:
-  * `--pod-cidr`: If you are using `kubenet`, you should specify an arbitrary CIDR
-    to Kubelet, for example `--pod-cidr=10.180.0.0/24`.
   * `--cloud-provider`: If you are using `--cloud-provider=gce`, you should
     remove the flag to run the test.
 -->
-1. 得出 kubelet 的 `--kubeconfig` 的值；例如：`--kubeconfig=/var/lib/kubelet/config.yaml`. 
-   由于测试框架启动了本地控制平面来测试 kubelet， 因此使用 `http://localhost:8080` 
+1. 得出 kubelet 的 `--kubeconfig` 的值；例如：`--kubeconfig=/var/lib/kubelet/config.yaml`。
+   由于测试框架启动了本地控制平面来测试 kubelet，因此使用 `http://localhost:8080`
    作为API 服务器的 URL。
    一些其他的 kubelet 命令行参数可能会被用到：
-   * `--pod-cidr`： 如果使用 `kubenet`， 需要为 Kubelet 任意指定一个 CIDR， 
-     例如 `--pod-cidr=10.180.0.0/24`。
-   * `--cloud-provider`： 如果使用 `--cloud-provider=gce`，需要移除这个参数
-     来运行测试。
+   * `--cloud-provider`：如果使用 `--cloud-provider=gce`，需要移除这个参数来运行测试。
 
 
 <!--
 2. Run the node conformance test with command:
+
+```shell
+# $CONFIG_DIR is the pod manifest path of your Kubelet.
+# $LOG_DIR is the test output path.
+sudo docker run -it --rm --privileged --net=host \
+  -v /:/rootfs -v $CONFIG_DIR:$CONFIG_DIR -v $LOG_DIR:/var/result \
+  k8s.gcr.io/node-test:0.2
+```
 -->
 2. 使用以下命令运行节点一致性测试：
 
    ```shell
-   # $CONFIG_DIR 是您 Kubelet 的 pod manifest 路径。
+   # $CONFIG_DIR 是你 Kubelet 的 pod manifest 路径。
    # $LOG_DIR 是测试的输出路径。
    sudo docker run -it --rm --privileged --net=host \
      -v /:/rootfs -v $CONFIG_DIR:$CONFIG_DIR -v $LOG_DIR:/var/result \
@@ -95,82 +99,87 @@ To run the node conformance test, perform the following steps:
 <!--
 ## Running Node Conformance Test for Other Architectures
 -->
-## 针对其他硬件体系结构运行节点一致性测试
+## 针对其他硬件体系结构运行节点一致性测试    {#running-node-conformance-test-for-other-architectures}
 
 <!--
-Kubernetes also provides node conformance test docker images for other architectures:
+Kubernetes also provides node conformance test docker images for other
+architectures:
 -->
 Kubernetes 也为其他硬件体系结构的系统提供了节点一致性测试的 Docker 镜像：
 
 <!--
-| Arch  |      Image      |      |
-| ----- | :-------------: | ---- |
-| amd64 | node-test-amd64 |      |
-| arm   |  node-test-arm  |      |
-| arm64 | node-test-arm64 |      |
+  Arch  |       Image       |
+--------|:-----------------:|
+ amd64  |  node-test-amd64  |
+  arm   |    node-test-arm  |
+ arm64  |  node-test-arm64  |
 -->
-| 架构   |      镜像        |      |
-| ----- | :-------------: | ---- |
-| amd64 | node-test-amd64 |      |
-| arm   |  node-test-arm  |      |
-| arm64 | node-test-arm64 |      |
+  架构  |       镜像        |
+--------|:-----------------:|
+ amd64  |  node-test-amd64  |
+  arm   |    node-test-arm  |
+ arm64  |  node-test-arm64  |
 
 <!--
 ## Running Selected Test
 -->
-## 运行特定的测试
+## 运行特定的测试    {#running-selected-test}
 
 <!--
-To run specific tests, overwrite the environment variable `FOCUS` with theregular expression of tests you want to run.
+To run specific tests, overwrite the environment variable `FOCUS` with the
+regular expression of tests you want to run.
 -->
-要运行特定测试，请使用您希望运行的测试的特定表达式覆盖环境变量 `FOCUS`。
+要运行特定测试，请使用你希望运行的测试的特定表达式覆盖环境变量 `FOCUS`。
 
 ```shell
 sudo docker run -it --rm --privileged --net=host \
-   -v /:/rootfs:ro -v $CONFIG_DIR:$CONFIG_DIR -v $LOG_DIR:/var/result \
-   -e FOCUS=MirrorPod \ # Only run MirrorPod test
-k8s.gcr.io/node-test:0.2
+  -v /:/rootfs:ro -v $CONFIG_DIR:$CONFIG_DIR -v $LOG_DIR:/var/result \
+  -e FOCUS=MirrorPod \ # Only run MirrorPod test
+  k8s.gcr.io/node-test:0.2
 ```
 
 <!--
-To skip specific tests, overwrite the environment variable `SKIP` with theregular expression of tests you want to skip.
+To skip specific tests, overwrite the environment variable `SKIP` with the
+regular expression of tests you want to skip.
 -->
-要跳过特定的测试，请使用您希望跳过的测试的常规表达式覆盖环境变量 `SKIP`。
+要跳过特定的测试，请使用你希望跳过的测试的常规表达式覆盖环境变量 `SKIP`。
 
 <!--
 ```shell
 sudo docker run -it --rm --privileged --net=host \
   -v /:/rootfs:ro -v $CONFIG_DIR:$CONFIG_DIR -v $LOG_DIR:/var/result \
   -e SKIP=MirrorPod \ # Run all conformance tests but skip MirrorPod test
-k8s.gcr.io/node-test:0.2
+  k8s.gcr.io/node-test:0.2
 ```
 -->
 ```shell
 sudo docker run -it --rm --privileged --net=host \
   -v /:/rootfs:ro -v $CONFIG_DIR:$CONFIG_DIR -v $LOG_DIR:/var/result \
   -e SKIP=MirrorPod \ # 运行除 MirrorPod 测试外的所有一致性测试内容
-k8s.gcr.io/node-test:0.2
+  k8s.gcr.io/node-test:0.2
 ```
 
 
 <!--
-Node conformance test is a containerized version of [node e2e test](https://github.com/kubernetes/community/blob/{{< param "githubbranch" >}}/contributors/devel/e2e-node-tests.md).
+Node conformance test is a containerized version of [node e2e test](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-node/e2e-node-tests.md).
 -->
-节点一致性测试是[节点端到端测试](https://github.com/kubernetes/community/blob/{{< param "githubbranch" >}}/contributors/devel/e2e-node-tests.md)的容器化版本。
+节点一致性测试是[节点端到端测试](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-node/e2e-node-tests.md)的容器化版本。
 <!--
 By default, it runs all conformance tests.
 -->
 默认情况下，它会运行所有一致性测试。
 
 <!--
-Theoretically, you can run any node e2e test if you configure the container andmount required volumes properly. But **it is strongly recommended to only run conformance test**, because it requires much more complex configuration to run non-conformance test.
+Theoretically, you can run any node e2e test if you configure the container and
+mount required volumes properly. But **it is strongly recommended to only run conformance
+test**, because it requires much more complex configuration to run non-conformance test.
 -->
-理论上，只要合理地配置容器和挂载所需的卷，就可以运行任何的节点端到端测试用例。 但是这里**强烈建议只运行一致性测试**，因为运行非一致性测试需要很多复杂的配置。
+理论上，只要合理地配置容器和挂载所需的卷，就可以运行任何的节点端到端测试用例。但是这里**强烈建议只运行一致性测试**，因为运行非一致性测试需要很多复杂的配置。
 
 <!--
 ## Caveats
 -->
-## 注意
+## 注意事项    {#caveats}
 
 <!--
 * The test leaves some docker images on the node, including the node conformance
@@ -180,5 +189,5 @@ Theoretically, you can run any node e2e test if you configure the container andm
   during the functionality test.
 -->
 
-* 测试会在节点上遗留一些 Docker 镜像， 包括节点一致性测试本身的镜像和功能测试相关的镜像。
+* 测试会在节点上遗留一些 Docker 镜像，包括节点一致性测试本身的镜像和功能测试相关的镜像。
 * 测试会在节点上遗留一些死的容器。这些容器是在功能测试的过程中创建的。
\ No newline at end of file
diff --git a/content/zh-cn/docs/setup/learning-environment/_index.md b/content/zh-cn/docs/setup/learning-environment/_index.md
new file mode 100644
index 0000000000..e7d409c1b6
--- /dev/null
+++ b/content/zh-cn/docs/setup/learning-environment/_index.md
@@ -0,0 +1,13 @@
+---
+title: 学习环境
+weight: 20
+---
+
+<!--
+{{/* There is a Netlify redirect from this page to /docs/tasks/tools/ */}}
+{{/* This page content only exists to provide a navigation stub */}}
+{{/* and to protect in case that redirect is one day removed. */}}
+
+{{/* If you're localizing this page, you only need to copy the front matter */}}
+{{/* and add a redirect into "/static/_redirects", for YOUR localization. */}}
+-->
diff --git a/content/zh/docs/setup/production-environment/_index.md b/content/zh-cn/docs/setup/production-environment/_index.md
similarity index 62%
rename from content/zh/docs/setup/production-environment/_index.md
rename to content/zh-cn/docs/setup/production-environment/_index.md
index b16ed481b8..4f1aa39d23 100644
--- a/content/zh/docs/setup/production-environment/_index.md
+++ b/content/zh-cn/docs/setup/production-environment/_index.md
@@ -10,7 +10,7 @@ no_list: true
 A production-quality Kubernetes cluster requires planning and preparation.
 If your Kubernetes cluster is to run critical workloads, it must be configured to be resilient.
 This page explains steps you can take to set up a production-ready cluster,
-or to uprate an existing cluster for production use.
+or to promote an existing cluster for production use.
 If you're already familiar with production setup and want the links, skip to
 [What's next](#what-s-next).
 -->
@@ -31,9 +31,8 @@ to changing demands.
 -->
 ## 生产环境考量  {#production-considerations}
 
-通常，一个生产用 Kubernetes 集群环境与个人学习、开发或测试环境所使用的
-Kubernetes 相比有更多的需求。生产环境可能需要被很多用户安全地访问，需要
-提供一致的可用性，以及能够与需求变化相适配的资源。
+通常，一个生产用 Kubernetes 集群环境与个人学习、开发或测试环境所使用的 Kubernetes 相比有更多的需求。
+生产环境可能需要被很多用户安全地访问，需要提供一致的可用性，以及能够与需求变化相适配的资源。
 
 <!--
 As you decide where you want your production Kubernetes environment to live
@@ -41,9 +40,9 @@ As you decide where you want your production Kubernetes environment to live
 on or hand to others, consider how your requirements for a Kubernetes cluster
 are influenced by the following issues:
 -->
-在你决定在何处运行你的生产用 Kubernetes 环境（在本地或者在云端），以及
-你希望承担或交由他人承担的管理工作量时，需要考察以下因素如何影响你对
-Kubernetes 集群的需求：
+在你决定在何处运行你的生产用 Kubernetes 环境（在本地或者在云端），
+以及你希望承担或交由他人承担的管理工作量时，
+需要考察以下因素如何影响你对 Kubernetes 集群的需求：
 
 <!--
 - *Availability*: A single-machine Kubernetes [learning environment](/docs/setup/#learning-environment)
@@ -53,7 +52,7 @@ has a single point of failure. Creating a highly available cluster means conside
   - Load balancing traffic to the cluster’s {{< glossary_tooltip term_id="kube-apiserver" text="API server" >}}.
   - Having enough worker nodes available, or able to quickly become available, as changing workloads warrant it.
 -->
-- *可用性*：一个单机的 Kubernetes [学习环境](/zh/docs/setup/#学习环境)
+- **可用性**：一个单机的 Kubernetes [学习环境](/zh-cn/docs/setup/#学习环境)
   具有单点失效特点。创建高可用的集群则意味着需要考虑：
   - 将控制面与工作节点分开
   - 在多个节点上提供控制面组件的副本
@@ -69,11 +68,10 @@ season or special events, you need to plan how to scale to relieve increased
 pressure from more requests to the control plane and worker nodes or scale down to reduce unused
 resources.
 -->
-- *规模*：如果你预期你的生产用 Kubernetes 环境要承受固定量的请求，
+- **规模**：如果你预期你的生产用 Kubernetes 环境要承受固定量的请求，
   你可能可以针对所需要的容量来一次性完成安装。
-  不过，如果你预期服务请求会随着时间增长，或者因为类似季节或者特殊事件的
-  原因而发生剧烈变化，你就需要规划如何处理请求上升时对控制面和工作节点
-  的压力，或者如何缩减集群规模以减少未使用资源的消耗。
+  不过，如果你预期服务请求会随着时间增长，或者因为类似季节或者特殊事件的原因而发生剧烈变化，
+  你就需要规划如何处理请求上升时对控制面和工作节点的压力，或者如何缩减集群规模以减少未使用资源的消耗。
 
 <!--
 - *Security and access management*: You have full admin privileges on your own
@@ -87,27 +85,26 @@ You can set limits on the resources that users and workloads can access
 by managing [policies](/docs/concepts/policy/) and
 [container resources](/docs/concepts/configuration/manage-resources-containers/).
 -->
-- *安全性与访问管理*：在你自己的学习环境 Kubernetes 集群上，你拥有完全的管理员特权。
-  但是针对运行着重要工作负载的共享集群，用户账户不止一两个时，就需要更细粒度
-  的方案来确定谁或者哪些主体可以访问集群资源。
-  你可以使用基于角色的访问控制（[RBAC](/zh/docs/reference/access-authn-authz/rbac/)）
-  和其他安全机制来确保用户和负载能够访问到所需要的资源，同时确保工作负载及集群
-  自身仍然是安全的。
-  你可以通过管理[策略](/zh/docs/concets/policy/)和
-  [容器资源](/zh/docs/concepts/configuration/manage-resources-containers)来
-  针对用户和工作负载所可访问的资源设置约束，
+- **安全性与访问管理**：在你自己的学习环境 Kubernetes 集群上，你拥有完全的管理员特权。
+  但是针对运行着重要工作负载的共享集群，用户账户不止一两个时，
+  就需要更细粒度的方案来确定谁或者哪些主体可以访问集群资源。
+  你可以使用基于角色的访问控制（[RBAC](/zh-cn/docs/reference/access-authn-authz/rbac/)）
+  和其他安全机制来确保用户和负载能够访问到所需要的资源，
+  同时确保工作负载及集群自身仍然是安全的。
+  你可以通过管理[策略](/zh-cn/docs/concepts/policy/)和
+  [容器资源](/zh-cn/docs/concepts/configuration/manage-resources-containers)
+  来针对用户和工作负载所可访问的资源设置约束。
 
 <!--
 Before building a Kubernetes production environment on your own, consider
 handing off some or all of this job to 
 [Turnkey Cloud Solutions](/docs/setup/production-environment/turnkey-solutions/) 
-providers or other [Kubernetes Partners](https://kubernetes.io/partners/).
+providers or other [Kubernetes Partners](/partners/).
 Options include:
 -->
-在自行构造 Kubernetes 生产环境之前，请考虑将这一任务的部分或者全部交给
-[云方案承包服务](/zh/docs/setup/production-environment/turnkey-solutions)
-提供商或者其他 [Kubernetes 合作伙伴](https://kubernetes.io/partners/)。
-选项有：
+在自行构建 Kubernetes 生产环境之前，
+请考虑将这一任务的部分或者全部交给[云方案承包服务](/zh-cn/docs/setup/production-environment/turnkey-solutions)提供商或者其他
+[Kubernetes 合作伙伴](/zh-cn/partners/)。选项有：
 
 <!--
 - *Serverless*: Just run workloads on third-party equipment without managing
@@ -122,12 +119,11 @@ upgrades when needed.
 services you may need, such as storage, container registries, authentication
 methods, and development tools.
 -->
-- *无服务*：仅是在第三方设备上运行负载，完全不必管理集群本身。你需要为
-  CPU 用量、内存和磁盘请求等付费。
-- *托管控制面*：让供应商决定集群控制面的规模和可用性，并负责打补丁和升级等操作。
-- *托管工作节点*：配置一个节点池来满足你的需要，由供应商来确保节点始终可用，
-  并在需要的时候完成升级。
-- *集成*：有一些供应商能够将 Kubernetes 与一些你可能需要的其他服务集成，
+- **无服务**：仅是在第三方设备上运行负载，完全不必管理集群本身。
+  你需要为 CPU 用量、内存和磁盘请求等付费。
+- **托管控制面**：让供应商决定集群控制面的规模和可用性，并负责打补丁和升级等操作。
+- **托管工作节点**：配置一个节点池来满足你的需要，由供应商来确保节点始终可用，并在需要的时候完成升级。
+- **集成**：有一些供应商能够将 Kubernetes 与一些你可能需要的其他服务集成，
   这类服务包括存储、容器镜像仓库、身份认证方法以及开发工具等。
 
 <!--
@@ -136,9 +132,8 @@ partners, review the following sections to evaluate your needs as they relate
 to your cluster’s *control plane*, *worker nodes*, *user access*, and
 *workload resources*.
 -->
-无论你是自行构造一个生产用 Kubernetes 集群还是与合作伙伴一起协作，请审阅
-下面章节以评估你的需求，因为这关系到你的集群的 *控制面*、*工作节点*、
-*用户访问* 以及 *负载资源*。
+无论你是自行构造一个生产用 Kubernetes 集群还是与合作伙伴一起协作，
+请审阅下面章节以评估你的需求，因为这关系到你的集群的**控制面**、**工作节点**、**用户访问**以及**负载资源**。
 
 <!--
 ## Production cluster setup
@@ -150,9 +145,8 @@ is configured to run Kubernetes pods.
 -->
 ## 生产用集群安装  {#production-cluster-setup}
 
-在生产质量的 Kubernetes 集群中，控制面用不同的方式来管理集群和可以
-分布到多个计算机上的服务。每个工作节点则代表的是一个可配置来运行
-Kubernetes Pods 的实体。
+在生产质量的 Kubernetes 集群中，控制面用不同的方式来管理集群和可以分布到多个计算机上的服务。
+每个工作节点则代表的是一个可配置来运行 Kubernetes Pod 的实体。
 
 <!--
 ### Production control plane
@@ -167,8 +161,8 @@ discarded if something goes seriously wrong, this might meet your needs.
 ### 生产用控制面  {#production-control-plane}
 
 最简单的 Kubernetes 集群中，整个控制面和工作节点服务都运行在同一台机器上。
-你可以通过添加工作节点来提升环境能力，正如
-[Kubernetes 组件](/zh/docs/concepts/overview/components/)示意图所示。
+你可以通过添加工作节点来提升环境运算能力，正如
+[Kubernetes 组件](/zh-cn/docs/concepts/overview/components/)示意图所示。
 如果只需要集群在很短的一段时间内可用，或者可以在某些事物出现严重问题时直接丢弃，
 这种配置可能符合你的需要。
 
@@ -180,9 +174,9 @@ If keeping the cluster up and running
 and ensuring that it can be repaired if something goes wrong is important,
 consider these steps:
 -->
-如果你需要一个更为持久的、高可用的集群，那么你就需要考虑扩展控制面的方式。
+如果你需要一个更为持久的、高可用的集群，那么就需要考虑扩展控制面的方式。
 根据设计，运行在一台机器上的单机控制面服务不是高可用的。
-如果保持集群处于运行状态并且需要确保在出现问题时能够被修复这点很重要，
+如果你认为保持集群的正常运行并需要确保它在出错时可以被修复是很重要的，
 可以考虑以下步骤：
 
 <!--
@@ -193,10 +187,10 @@ to learn tips for production-quality deployments using each of those deployment
 methods. Different [Container Runtimes](/docs/setup/production-environment/container-runtimes/)
 are available to use with your deployments.
 -->
-- *选择部署工具*：你可以使用类似 kubeadm、kops 和 kubespray 这类工具来部署控制面。
-  参阅[使用部署工具安装 Kubernetes](/zh/docs/setup/production-environment/tools/)
+- **选择部署工具**：你可以使用类似 kubeadm、kops 和 kubespray 这类工具来部署控制面。
+  参阅[使用部署工具安装 Kubernetes](/zh-cn/docs/setup/production-environment/tools/)
   以了解使用这类部署方法来完成生产就绪部署的技巧。
-  存在不同的[容器运行时](/zh/docs/setup/production-environment/container-runtimes/)
+  存在不同的[容器运行时](/zh-cn/docs/setup/production-environment/container-runtimes/)
   可供你的部署采用。
 <!--
 - *Manage certificates*: Secure communications between control plane services
@@ -204,19 +198,17 @@ are implemented using certificates. Certificates are automatically generated
 during deployment or you can generate them using your own certificate authority.
 See [PKI certificates and requirements](/docs/setup/best-practices/certificates/) for details.
 -->
-- *管理证书*：控制面服务之间的安全通信是通过证书来完成的。证书是在部署期间
-  自动生成的，或者你也可以使用你自己的证书机构来生成它们。
-  参阅 [PKI 证书和需求](/zh/docs/setup/best-practices/certificates/)了解细节。
+- **管理证书**：控制面服务之间的安全通信是通过证书来完成的。
+  证书是在部署期间自动生成的，或者你也可以使用自己的证书机构来生成它们。
+  参阅 [PKI 证书和需求](/zh-cn/docs/setup/best-practices/certificates/)了解细节。
 <!--
 - *Configure load balancer for apiserver*: Configure a load balancer
 to distribute external API requests to the apiserver service instances running on different nodes. See 
 [Create an External Load Balancer](/docs/tasks/access-application-cluster/create-external-load-balancer/)
 for details.
 -->
-- *为 API 服务器配置负载均衡*：配置负载均衡器来将外部的 API 请求散布给运行在
-  不同节点上的 API 服务实例。参阅
-  [创建外部负载均衡器](/zh/docs/access-application-cluster/create-external-load-balancer/)
-  了解细节。
+- **为 API 服务器配置负载均衡**：配置负载均衡器来将外部的 API 请求散布给运行在不同节点上的 API 服务实例。
+  参阅[创建外部负载均衡器](/zh-cn/docs/tasks/access-application-cluster/create-external-load-balancer/)了解细节。
 <!--
 - *Separate and backup etcd service*: The etcd services can either run on the
 same machines as other control plane services or run on separate machines, for
@@ -228,13 +220,13 @@ See [Operating etcd clusters for Kubernetes](/docs/tasks/administer-cluster/conf
 and [Set up a High Availability etcd cluster with kubeadm](/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm/)
 for details.
 -->
-- *分离并备份 etcd 服务*：etcd 服务可以运行于其他控制面服务所在的机器上，
+- **分离并备份 etcd 服务**：etcd 服务可以运行于其他控制面服务所在的机器上，
   也可以运行在不同的机器上以获得更好的安全性和可用性。
   因为 etcd 存储着集群的配置数据，应该经常性地对 etcd 数据库进行备份，
   以确保在需要的时候你可以修复该数据库。与配置和使用 etcd 相关的细节可参阅
   [etcd FAQ](/https://etcd.io/docs/v3.4/faq/)。
-  更多的细节可参阅[为 Kubernetes 运维 etcd 集群](/zh/docs/tasks/administer-cluster/configure-upgrade-etcd/)
-  和[使用 kubeadm 配置高可用的 etcd 集群](/zh/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm/)。
+  更多的细节可参阅[为 Kubernetes 运维 etcd 集群](/zh-cn/docs/tasks/administer-cluster/configure-upgrade-etcd/)
+  和[使用 kubeadm 配置高可用的 etcd 集群](/zh-cn/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm/)。
 <!--
 - *Create multiple control plane systems*: For high availability, the
 control plane should not be limited to a single machine. If the control plane
@@ -247,13 +239,12 @@ but not highly available. Some deployment tools set up [Raft](https://raft.githu
 consensus algorithm to do leader election of Kubernetes services. If the
 primary goes away, another service elects itself and take over. 
 -->
-- *创建多控制面系统*：为了实现高可用性，控制面不应被限制在一台机器上。
-  如果控制面服务是使用某 init 服务（例如 systemd）来运行的，每个服务应该
-  至少运行在三台机器上。不过，将控制面作为服务运行在 Kubernetes Pods
-  中可以确保你所请求的个数的服务始终保持可用。
+- **创建多控制面系统**：为了实现高可用性，控制面不应被限制在一台机器上。
+  如果控制面服务是使用某 init 服务（例如 systemd）来运行的，每个服务应该至少运行在三台机器上。
+  不过，将控制面作为服务运行在 Kubernetes Pod 中可以确保你所请求的个数的服务始终保持可用。
   调度器应该是可容错的，但不是高可用的。
-  某些部署工具会安装 [Raft](https://raft.github.io/) 票选算法来对 Kubernetes
-  服务执行领导者选举。如果主节点消失，另一个服务会被选中并接手相应服务。
+  某些部署工具会安装 [Raft](https://raft.github.io/) 票选算法来对 Kubernetes 服务执行领导者选举。
+  如果主节点消失，另一个服务会被选中并接手相应服务。
 <!--
 - *Span multiple zones*: If keeping your cluster available at all times is
 critical, consider creating a cluster that runs across multiple data centers,
@@ -263,12 +254,10 @@ multiple zones in the same region, it can improve the chances that your
 cluster will continue to function even if one zone becomes unavailable.
 See [Running in multiple zones](/docs/setup/best-practices/multiple-zones/) for details.
 -->
-- *跨多个可用区*：如果保持你的集群一直可用这点非常重要，可以考虑创建一个跨
-  多个数据中心的集群；在云环境中，这些数据中心被视为可用区。
-  若干个可用区在一起可构成地理区域。
-  通过将集群分散到同一区域中的多个可用区内，即使某个可用区不可用，整个集群
-  能够继续工作的机会也大大增加。
-  更多的细节可参阅[跨多个可用区运行](/zh/docs/setup/best-practices/multiple-zones/)。
+- **跨多个可用区**：如果保持你的集群一直可用这点非常重要，可以考虑创建一个跨多个数据中心的集群；
+  在云环境中，这些数据中心被视为可用区。若干个可用区在一起可构成地理区域。
+  通过将集群分散到同一区域中的多个可用区内，即使某个可用区不可用，整个集群能够继续工作的机会也大大增加。
+  更多的细节可参阅[跨多个可用区运行](/zh-cn/docs/setup/best-practices/multiple-zones/)。
 <!--
 - *Manage on-going features*: If you plan to keep your cluster over time,
 there are tasks you need to do to maintain its health and security. For example,
@@ -278,12 +267,13 @@ and [Upgrading kubeadm clusters](/docs/tasks/administer-cluster/kubeadm/kubeadm-
 See [Administer a Cluster](/docs/tasks/administer-cluster/)
 for a longer list of Kubernetes administrative tasks.
 -->
-- *管理演进中的特性*：如果你计划长时间保留你的集群，就需要执行一些维护其
-  健康和安全的任务。例如，如果你采用 kubeadm 安装的集群，则有一些可以帮助你完成
-  [证书管理](/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/)
-  和[升级 kubeadm 集群](/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade)
+- **管理演进中的特性**：如果你计划长时间保留你的集群，就需要执行一些维护其健康和安全的任务。
+  例如，如果你采用 kubeadm 安装的集群，
+  则有一些可以帮助你完成
+  [证书管理](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/)
+  和[升级 kubeadm 集群](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade)
   的指令。
-  参见[管理集群](/zh/docs/tasks/administer-cluster)了解一个 Kubernetes
+  参见[管理集群](/zh-cn/docs/tasks/administer-cluster)了解一个 Kubernetes
   管理任务的较长列表。
 
 <!--
@@ -298,16 +288,15 @@ and [Operating etcd clusters for Kubernetes](/docs/tasks/administer-cluster/conf
 See [Backing up an etcd cluster](/docs/tasks/administer-cluster/configure-upgrade-etcd/#backing-up-an-etcd-cluster)
 for information on making an etcd backup plan.
 -->
-要了解运行控制面服务时可使用的选项，可参阅
-[kube-apiserver](/zh/docs/reference/command-line-tools-reference/kube-apiserver/)、
-[kube-controller-manager](/zh/docs/reference/command-line-tools-reference/kube-controller-manager/) 和
-[kube-scheduler](/zh/docs/reference/command-line-tools-reference/kube-scheduler/)
+如要了解运行控制面服务时可使用的选项，可参阅
+[kube-apiserver](/zh-cn/docs/reference/command-line-tools-reference/kube-apiserver/)、
+[kube-controller-manager](/zh-cn/docs/reference/command-line-tools-reference/kube-controller-manager/) 和
+[kube-scheduler](/zh-cn/docs/reference/command-line-tools-reference/kube-scheduler/) 
 组件参考页面。
-如要了解高可用控制面的例子，可参阅
-[高可用拓扑结构选项](/zh/docs/setup/production-environment/tools/kubeadm/ha-topology/)、
-[使用 kubeadm 创建高可用集群](/zh/docs/setup/production-environment/tools/kubeadm/high-availability/) 以及[为 Kubernetes 运维 etcd 集群](/zh/docs/tasks/administer-cluster/configure-upgrade-etcd/)。
-关于制定 etcd 备份计划，可参阅
-[对 etcd 集群执行备份](/zh/docs/tasks/administer-cluster/configure-upgrade-etcd/#backing-up-an-etcd-cluster)。
+如要了解高可用控制面的例子，可参阅[高可用拓扑结构选项](/zh-cn/docs/setup/production-environment/tools/kubeadm/ha-topology/)、
+[使用 kubeadm 创建高可用集群](/zh-cn/docs/setup/production-environment/tools/kubeadm/high-availability/)
+以及[为 Kubernetes 运维 etcd 集群](/zh-cn/docs/tasks/administer-cluster/configure-upgrade-etcd/)。
+关于制定 etcd 备份计划，可参阅[对 etcd 集群执行备份](/zh-cn/docs/tasks/administer-cluster/configure-upgrade-etcd/#backing-up-an-etcd-cluster)。
 
 <!--
 ### Production worker nodes
@@ -318,11 +307,11 @@ control plane or have a cloud provider do it for you, you still need to
 consider how you want to manage your worker nodes (also referred to
 simply as *nodes*).  
 -->
-### 生产用工作节点
+### 生产用工作节点   {#production-worker-nodes}
 
 生产质量的工作负载需要是弹性的；它们所依赖的其他组件（例如 CoreDNS）也需要是弹性的。
 无论你是自行管理控制面还是让云供应商来管理，你都需要考虑如何管理工作节点
-（有时也简称为*节点*）。
+（有时也简称为**节点**）。
 
 <!--
 - *Configure nodes*: Nodes can be physical or virtual machines. If you want to
@@ -330,44 +319,29 @@ create and manage your own nodes, you can install a supported operating system,
 then add and run the appropriate
 [Node services](/docs/concepts/overview/components/#node-components). Consider:
 -->
-- *配置节点*：节点可以是物理机或者虚拟机。如果你希望自行创建和管理节点，
-  你可以安装一个受支持的操作系统，之后添加并运行合适的
-  [节点服务](/zh/docs/concepts/overview/components/#node-components)。
-  考虑：
+- **配置节点**：节点可以是物理机或者虚拟机。如果你希望自行创建和管理节点，
+  你可以安装一个受支持的操作系统，之后添加并运行合适的[节点服务](/zh-cn/docs/concepts/overview/components/#node-components)。考虑：
   <!--
   - The demands of your workloads when you set up nodes by having appropriate memory, CPU, and disk speed and storage capacity available.
   - Whether generic computer systems will do or you have workloads that need GPU processors, Windows nodes, or VM isolation.
   -->
-  - 在安装节点时要通过配置适当的内存、CPU 和磁盘速度、存储容量来满足
-    你的负载的需求。
-  - 是否通用的计算机系统即足够，还是你有负载需要使用 GPU 处理器、Windows 节点
-    或者 VM 隔离。
+  - 在安装节点时要通过配置适当的内存、CPU 和磁盘读写速率、存储容量来满足你的负载的需求。
+  - 是否通用的计算机系统即足够，还是你有负载需要使用 GPU 处理器、Windows 节点或者 VM 隔离。
 <!--
 - *Validate nodes*: See [Valid node setup](/docs/setup/best-practices/node-conformance/)
 for information on how to ensure that a node meets the requirements to join
 a Kubernetes cluster.
 -->
-- *验证节点*：参阅[验证节点配置](/zh/docs/setup/best-practices/node-conformance/)
-  以了解如何确保节点满足加入到 Kubernetes 集群的需求。
+- **验证节点**：参阅[验证节点配置](/zh-cn/docs/setup/best-practices/node-conformance/)以了解如何确保节点满足加入到 Kubernetes 集群的需求。
 <!--
 - *Add nodes to the cluster*: If you are managing your own cluster you can
 add nodes by setting up your own machines and either adding them manually or
 having them register themselves to the cluster’s apiserver. See the
 [Nodes](/docs/concepts/architecture/nodes/) section for information on how to set up Kubernetes to add nodes in these ways.
 -->
-- *添加节点到集群中*：如果你自行管理你的集群，你可以通过安装配置你的机器，
-  之后或者手动加入集群，或者让它们自动注册到集群的 API 服务器。参阅
-  [节点](/zh/docs/concepts/architecture/nodes/)节，了解如何配置 Kubernetes
-  以便以这些方式来添加节点。
-<!--
-- *Add Windows nodes to the cluster*: Kubernetes offers support for Windows
-worker nodes, allowing you to run workloads implemented in Windows containers. See
-[Windows in Kubernetes](/docs/setup/production-environment/windows/) for details.
--->
-- *向集群中添加 Windows 节点*：Kubernetes 提供对 Windows 工作节点的支持；
-  这使得你可以运行实现于 Windows 容器内的工作负载。参阅
-  [Kubernetes 中的 Windows](/zh/docs/setup/production-environment/windows/)
-  了解进一步的详细信息。
+- **添加节点到集群中**：如果你自行管理你的集群，你可以通过安装配置你的机器，
+  之后或者手动加入集群，或者让它们自动注册到集群的 API 服务器。
+  参阅[节点](/zh-cn/docs/concepts/architecture/nodes/)节，了解如何配置 Kubernetes 以便以这些方式来添加节点。
 <!--
 - *Scale nodes*: Have a plan for expanding the capacity your cluster will
 eventually need. See [Considerations for large clusters](/docs/setup/best-practices/cluster-large/)
@@ -375,9 +349,10 @@ to help determine how many nodes you need, based on the number of pods and
 containers you need to run. If you are managing nodes yourself, this can mean
 purchasing and installing your own physical equipment.
 -->
-- *扩缩节点*：制定一个扩充集群容量的规划，你的集群最终会需要这一能力。
-  参阅[大规模集群考察事项](/zh/docs/setup/best-practices/cluster-large/)
-  以确定你所需要的节点数；这一规模是基于你要运行的 Pod 和容器个数来确定的。
+- **扩缩节点**：制定一个扩充集群容量的规划，你的集群最终会需要这一能力。
+  参阅[大规模集群考察事项](/zh-cn/docs/setup/best-practices/cluster-large/)
+  以确定你所需要的节点数；
+  这一规模是基于你要运行的 Pod 和容器个数来确定的。
   如果你自行管理集群节点，这可能意味着要购买和安装你自己的物理设备。
 <!--
 - *Autoscale nodes*: Most cloud providers support
@@ -390,10 +365,10 @@ for how it is implemented by different cloud providers. For on-premises, there
 are some virtualization platforms that can be scripted to spin up new nodes
 based on demand.
 -->
-- *节点自动扩缩容*：大多数云供应商支持
+- **节点自动扩缩容**：大多数云供应商支持
   [集群自动扩缩器（Cluster Autoscaler）](https://github.com/kubernetes/autoscaler/tree/master/cluster-autoscaler#readme)
-  以便替换不健康的节点、根据需求来增加或缩减节点个数。参阅
-  [常见问题](https://github.com/kubernetes/autoscaler/blob/master/cluster-autoscaler/FAQ.md)
+  以便替换不健康的节点、根据需求来增加或缩减节点个数。
+  参阅[常见问题](https://github.com/kubernetes/autoscaler/blob/master/cluster-autoscaler/FAQ.md)
   了解自动扩缩器的工作方式，并参阅
   [Deployment](https://github.com/kubernetes/autoscaler/tree/master/cluster-autoscaler#deployment)
   了解不同云供应商是如何实现集群自动扩缩器的。
@@ -401,12 +376,11 @@ based on demand.
 <!--
 - *Set up node health checks*: For important workloads, you want to make sure
 that the nodes and pods running on those nodes are healthy. Using the
-[Node Problem Detector](/docs/tasks/debug-application-cluster/monitor-node-health/)
+[Node Problem Detector](/docs/tasks/debug/debug-cluster/monitor-node-health/)
 daemon, you can ensure your nodes are healthy.
 -->
-- *安装节点健康检查*：对于重要的工作负载，你会希望确保节点以及在节点上
-  运行的 Pod 处于健康状态。通过使用
-  [Node Problem Detector](/zh/docs/tasks/debug-application-cluster/monitor-node-health/)，
+- **安装节点健康检查**：对于重要的工作负载，你会希望确保节点以及在节点上运行的 Pod 处于健康状态。
+  通过使用 [Node Problem Detector](/zh-cn/docs/tasks/debug/debug-cluster/monitor-node-health/)，
   你可以确保你的节点是健康的。
 
 <!--
@@ -418,12 +392,11 @@ hundreds of people. In a learning environment or platform prototype, you might h
 administrative account for everything you do. In production, you will want
 more accounts with different levels of access to different namespaces.
 -->
-### 生产级用户环境
+### 生产级用户环境   {#production-user-management}
 
-在生产环境中，情况可能不再是你或者一小组人在访问集群，而是几十
-上百人需要访问集群。在学习环境或者平台原型环境中，你可能具有一个
-可以执行任何操作的管理账号。在生产环境中，你可需要对不同名字空间
-具有不同访问权限级别的很多账号。
+在生产环境中，情况可能不再是你或者一小组人在访问集群，而是几十上百人需要访问集群。
+在学习环境或者平台原型环境中，你可能具有一个可以执行任何操作的管理账号。
+在生产环境中，你会需要对不同名字空间具有不同访问权限级别的很多账号。
 
 <!--
 Taking on a production-quality cluster means deciding how you
@@ -433,8 +406,8 @@ cluster (authentication) and deciding if they have permissions to do what they
 are asking (authorization):
 -->
 建立一个生产级别的集群意味着你需要决定如何有选择地允许其他用户访问集群。
-具体而言，你需要选择验证尝试访问集群的人的身份标识（身份认证），并确定
-他们是否被许可执行他们所请求的操作（鉴权）：
+具体而言，你需要选择验证尝试访问集群的人的身份标识（身份认证），
+并确定他们是否被许可执行他们所请求的操作（鉴权）：
 
 <!--
 - *Authentication*: The apiserver can authenticate users using client
@@ -445,42 +418,40 @@ authentication methods, such as LDAP or Kerberos. See
 [Authentication](/docs/reference/access-authn-authz/authentication/)
 for a description of these different methods of authenticating Kubernetes users.
 -->
-- *认证（Authentication）*：API 服务器可以使用客户端证书、持有者令牌、身份
-  认证代理或者 HTTP 基本认证机制来完成身份认证操作。
-  你可以选择你要使用的认证方法。通过使用插件，API 服务器可以充分利用你所在
-  组织的现有身份认证方法，例如 LDAP 或者 Kerberos。
-  关于认证 Kubernetes 用户身份的不同方法的描述，可参阅
-  [身份认证](/zh/docs/reference/access-authn-authz/authentication/)。
+- **认证（Authentication）**：API 服务器可以使用客户端证书、持有者令牌、
+  身份认证代理或者 HTTP 基本认证机制来完成身份认证操作。
+  你可以选择你要使用的认证方法。通过使用插件，
+  API 服务器可以充分利用你所在组织的现有身份认证方法，
+  例如 LDAP 或者 Kerberos。
+  关于认证 Kubernetes 用户身份的不同方法的描述，
+  可参阅[身份认证](/zh-cn/docs/reference/access-authn-authz/authentication/)。
 <!--
 - *Authorization*: When you set out to authorize your regular users, you will probably choose between RBAC and ABAC authorization. See [Authorization Overview](/docs/reference/access-authn-authz/authorization/) to review different modes for authorizing user accounts (as well as service account access to your cluster):
 -->
-- *鉴权（Authorization）*：当你准备为一般用户执行权限判定时，你可能会需要
-  在 RBAC 和 ABAC 鉴权机制之间做出选择。参阅
-  [鉴权概述](/zh/docs/reference/access-authn-authz/authorization/)，了解
-  对用户账户（以及访问你的集群的服务账户）执行鉴权的不同模式。
+- **鉴权（Authorization）**：当你准备为一般用户执行权限判定时，
+  你可能会需要在 RBAC 和 ABAC 鉴权机制之间做出选择。
+  参阅[鉴权概述](/zh-cn/docs/reference/access-authn-authz/authorization/)，
+  了解对用户账户（以及访问你的集群的服务账户）执行鉴权的不同模式。
   <!--
   - *Role-based access control* ([RBAC](/docs/reference/access-authn-authz/rbac/)): Lets you assign access to your cluster by allowing specific sets of permissions to authenticated users. Permissions can be assigned for a specific namespace (Role) or across the entire cluster (ClusterRole). Then using RoleBindings and ClusterRoleBindings, those permissions can be attached to particular users.
   -->
-  - *基于角色的访问控制*（[RBAC](/zh/docs/reference/access-authn-authz/rbac/)）：
+  - **基于角色的访问控制**（[RBAC](/zh-cn/docs/reference/access-authn-authz/rbac/)）：
     让你通过为通过身份认证的用户授权特定的许可集合来控制集群访问。
-    访问许可可以针对某特定名字空间（Role）或者针对整个集群（CLusterRole）。
-    通过使用 RoleBinding 和 ClusterRoleBinding 对象，这些访问许可可以被
-    关联到特定的用户身上。
+    访问许可可以针对某特定名字空间（Role）或者针对整个集群（ClusterRole）。
+    通过使用 RoleBinding 和 ClusterRoleBinding 对象，这些访问许可可以被关联到特定的用户身上。
   <!--
   - *Attribute-based access control* ([ABAC](/docs/reference/access-authn-authz/abac/)): Lets you create policies based on resource attributes in the cluster and will allow or deny access based on those attributes. Each line of a policy file identifies versioning properties (apiVersion and kind) and a map of spec properties to match the subject (user or group), resource property, non-resource property (/version or /apis), and readonly. See [Examples](/docs/reference/access-authn-authz/abac/#examples) for details.
   -->
-  - *基于属性的访问控制*（[ABAC](/zh/docs/reference/access-authn-authz/abac/)）：
-    让你能够基于集群中资源的属性来创建访问控制策略，基于对应的属性来决定
-    允许还是拒绝访问。策略文件的每一行都给出版本属性（apiVersion 和 kind）
-    以及一个规约属性的映射，用来匹配主体（用户或组）、资源属性、非资源属性
-    （/version 或 /apis）和只读属性。
-    参阅[示例](/zh/docs/reference/access-authn-authz/abac/#examples)以了解细节。
+  - **基于属性的访问控制**（[ABAC](/zh-cn/docs/reference/access-authn-authz/abac/)）：
+    让你能够基于集群中资源的属性来创建访问控制策略，基于对应的属性来决定允许还是拒绝访问。
+    策略文件的每一行都给出版本属性（apiVersion 和 kind）以及一个规约属性的映射，
+    用来匹配主体（用户或组）、资源属性、非资源属性（/version 或 /apis）和只读属性。
+    参阅[示例](/zh-cn/docs/reference/access-authn-authz/abac/#examples)以了解细节。
 
 <!--
 As someone setting up authentication and authorization on your production Kubernetes cluster, here are some things to consider:
 -->
-作为在你的生产用 Kubernetes 集群中安装身份认证和鉴权机制的负责人，
-要考虑的事情如下：
+作为在你的生产用 Kubernetes 集群中安装身份认证和鉴权机制的负责人，要考虑的事情如下：
 
 <!--
 - *Set the authorization mode*: When the Kubernetes API server
@@ -489,12 +460,10 @@ starts, the supported authentication modes must be set using the *--authorizatio
 flag. For example, that flag in the *kube-adminserver.yaml* file (in */etc/kubernetes/manifests*)
 could be set to Node,RBAC. This would allow Node and RBAC authorization for authenticated requests.
 -->
-- *设置鉴权模式*：当 Kubernetes API 服务器
-  （[kube-apiserver](/docs/reference/command-line-tools-reference/kube-apiserver/)）
-  启动时，所支持的鉴权模式必须使用 `--authorization-mode` 标志配置。
-  例如，`kube-apiserver.yaml`（位于 `/etc/kubernetes/manifests` 下）中对应的
-  标志可以设置为 `Node,RBAC`。这样就会针对已完成身份认证的请求执行 Node 和 RBAC
-  鉴权。
+- **设置鉴权模式**：当 Kubernetes API 服务器（[kube-apiserver](/docs/reference/command-line-tools-reference/kube-apiserver/)）启动时，
+  所支持的鉴权模式必须使用 `--authorization-mode` 标志配置。
+  例如，`kube-apiserver.yaml`（位于 `/etc/kubernetes/manifests` 下）中对应的标志可以设置为 `Node,RBAC`。
+  这样就会针对已完成身份认证的请求执行 Node 和 RBAC 鉴权。
 <!--
 - *Create user certificates and role bindings (RBAC)*: If you are using RBAC
 authorization, users can create a CertificateSigningRequest (CSR) that can be
@@ -502,11 +471,9 @@ signed by the cluster CA. Then you can bind Roles and ClusterRoles to each user.
 See [Certificate Signing Requests](/docs/reference/access-authn-authz/certificate-signing-requests/)
 for details.
 -->
-- *创建用户证书和角色绑定（RBAC）*：如果你在使用 RBAC 鉴权，用户可以创建
-  由集群 CA 签名的 CertificateSigningRequest（CSR）。接下来你就可以将 Role
-  和 ClusterRole 绑定到每个用户身上。
-  参阅[证书签名请求](/zh/docs/reference/access-authn-authz/certificate-signing-requests/)
-  了解细节。
+- **创建用户证书和角色绑定（RBAC）**：如果你在使用 RBAC 鉴权，用户可以创建由集群 CA 签名的
+  CertificateSigningRequest（CSR）。接下来你就可以将 Role 和 ClusterRole 绑定到每个用户身上。
+  参阅[证书签名请求](/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests/)了解细节。
 <!--
 - *Create policies that combine attributes (ABAC)*: If you are using ABAC
 authorization, you can assign combinations of attributes to form policies to
@@ -514,10 +481,10 @@ authorize selected users or groups to access particular resources (such as a
 pod), namespace, or apiGroup. For more information, see
 [Examples](/docs/reference/access-authn-authz/abac/#examples).
 -->
-- *创建组合属性的策略（ABAC）*：如果你在使用 ABAC 鉴权，你可以设置属性组合
-  以构造策略对所选用户或用户组执行鉴权，判定他们是否可访问特定的资源
-  （例如 Pod）、名字空间或者 apiGroup。进一步的详细信息可参阅
-  [示例](/zh/docs/reference/access-authn-authz/abac/#examples)。
+- **创建组合属性的策略（ABAC）**：如果你在使用 ABAC 鉴权，
+  你可以设置属性组合以构造策略对所选用户或用户组执行鉴权，
+  判定他们是否可访问特定的资源（例如 Pod）、名字空间或者 apiGroup。
+  进一步的详细信息可参阅[示例](/zh-cn/docs/reference/access-authn-authz/abac/#examples)。
 <!--
 - *Consider Admission Controllers*: Additional forms of authorization for
 requests that can come in through the API server include
@@ -526,11 +493,10 @@ Webhooks and other special authorization types need to be enabled by adding
 [Admission Controllers](/docs/reference/access-authn-authz/admission-controllers/)
 to the API server.
 -->
-- *考虑准入控制器*：针对指向 API 服务器的请求的其他鉴权形式还包括
-  [Webhook 令牌认证](/zh/docs/reference/access-authn-authz/authentication/#webhook-token-authentication)。
-  Webhook 和其他特殊的鉴权类型需要通过向 API 服务器添加
-  [准入控制器](/zh/docs/reference/access-authn-authz/admission-controllers/)
-  来启用。
+- **考虑准入控制器**：针对指向 API 服务器的请求的其他鉴权形式还包括
+  [Webhook 令牌认证](/zh-cn/docs/reference/access-authn-authz/authentication/#webhook-token-authentication)。
+  Webhook 和其他特殊的鉴权类型需要通过向 API
+  服务器添加[准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/)来启用。
 
 <!--
 ## Set limits on workload resources
@@ -551,19 +517,16 @@ for details. You can also set
 [Hierarchical Namespaces](/blog/2020/08/14/introducing-hierarchical-namespaces/)
 for inheriting limits.
 -->
-- *设置名字空间限制*：为每个名字空间的内存和 CPU 设置配额。
-  参阅[管理内存、CPU 和 API 资源](/zh/docs/tasks/administer-cluster/manage-resources/)
-  以了解细节。你也可以设置
-  [层次化名字空间](/blog/2020/08/14/introducing-hierarchical-namespaces/)
-  来继承这类约束。
+- **设置名字空间限制**：为每个名字空间的内存和 CPU 设置配额。
+  参阅[管理内存、CPU 和 API 资源](/zh-cn/docs/tasks/administer-cluster/manage-resources/)以了解细节。
+  你也可以设置[层次化名字空间](/blog/2020/08/14/introducing-hierarchical-namespaces/)来继承这类约束。
 <!--
 - *Prepare for DNS demand*: If you expect workloads to massively scale up,
 your DNS service must be ready to scale up as well. See
 [Autoscale the DNS service in a Cluster](/docs/tasks/administer-cluster/dns-horizontal-autoscaling/).
 -->
-- *为 DNS 请求做准备*：如果你希望工作负载能够完成大规模扩展，你的 DNS 服务
-  也必须能够扩大规模。参阅
-  [自动扩缩集群中 DNS 服务](/zh/docs/tasks/administer-cluster/dns-horizontal-autoscaling/)。
+- **为 DNS 请求做准备**：如果你希望工作负载能够完成大规模扩展，你的 DNS 服务也必须能够扩大规模。
+  参阅[自动扩缩集群中 DNS 服务](/zh-cn/docs/tasks/administer-cluster/dns-horizontal-autoscaling/)。
 <!--
 - *Create additional service accounts*: User accounts determine what users can
 do on a cluster, while a service account defines pod access within a particular
@@ -571,28 +534,24 @@ namespace. By default, a pod takes on the default service account from its names
 See [Managing Service Accounts](/docs/reference/access-authn-authz/service-accounts-admin/)
 for information on creating a new service account. For example, you might want to:
 -->
-- *创建额外的服务账户*：用户账户决定用户可以在集群上执行的操作，服务账号则定义的
-  是在特定名字空间中 Pod 的访问权限。
-  默认情况下，Pod 使用所在名字空间中的 default 服务账号。
-  参阅[管理服务账号](/zh/docs/reference/access-authn-authz/service-accounts-admin/)
-  以了解如何创建新的服务账号。例如，你可能需要：
+- **创建额外的服务账户**：用户账户决定用户可以在集群上执行的操作，服务账号则定义的是在特定名字空间中
+  Pod 的访问权限。默认情况下，Pod 使用所在名字空间中的 default 服务账号。
+  参阅[管理服务账号](/zh-cn/docs/reference/access-authn-authz/service-accounts-admin/)以了解如何创建新的服务账号。
+  例如，你可能需要：
   <!--
   - Add secrets that a pod could use to pull images from a particular container registry. See [Configure Service Accounts for Pods](/docs/tasks/configure-pod-container/configure-service-account/) for an example.
   - Assign RBAC permissions to a service account. See [ServiceAccount permissions](/docs/reference/access-authn-authz/rbac/#service-account-permissions) for details.
   -->
   - 为 Pod 添加 Secret，以便 Pod 能够从某特定的容器镜像仓库拉取镜像。
-    参阅[为 Pod 配置服务账号](/zh/docs/tasks/configure-pod-container/configure-service-account/)
-    以获得示例。
-  - 为服务账号设置 RBAC 访问许可。参阅
-    [服务账号访问许可](/zh/docs/reference/access-authn-authz/rbac/#service-account-permissions)
-    了解细节。
+    参阅[为 Pod 配置服务账号](/zh-cn/docs/tasks/configure-pod-container/configure-service-account/)以获得示例。
+  - 为服务账号设置 RBAC 访问许可。参阅[服务账号访问许可](/zh-cn/docs/reference/access-authn-authz/rbac/#service-account-permissions)了解细节。
 
 ## {{% heading "whatsnext" %}}
 
 <!--
 - Decide if you want to build your own production Kubernetes or obtain one from
 available [Turnkey Cloud Solutions](/docs/setup/production-environment/turnkey-solutions/)
-or [Kubernetes Partners](https://kubernetes.io/partners/).
+or [Kubernetes Partners](/partners/).
 - If you choose to build your own cluster, plan how you want to
 handle [certificates](/docs/setup/best-practices/certificates/)
 and set up high availability for features such as
@@ -600,39 +559,30 @@ and set up high availability for features such as
 and the
 [API server](/docs/setup/production-environment/tools/kubeadm/ha-topology/).
 -->
-- 决定你是想自行构造自己的生产用 Kubernetes 还是从某可用的
-  [云服务外包厂商](/zh/docs/setup/production-environment/turnkey-solutions/)
-  或 [Kubernetes 合作伙伴](https://kubernetes.io/partners/)获得集群。
-- 如果你决定自行构造集群，则需要规划如何处理
-  [证书](/zh/docs/setup/best-practices/certificates/)
-  并为类似
-  [etcd](/zh/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm/)
-  和
-  [API 服务器](/zh/docs/setup/production-environment/tools/kubeadm/ha-topology/)
-  这些功能组件配置高可用能力。
+- 决定你是想自行构造自己的生产用 Kubernetes，
+  还是从某可用的[云服务外包厂商](/zh-cn/docs/setup/production-environment/turnkey-solutions/)或
+  [Kubernetes 合作伙伴](/zh-cn/partners/)获得集群。
+- 如果你决定自行构造集群，则需要规划如何处理[证书](/zh-cn/docs/setup/best-practices/certificates/)并为类似
+  [etcd](/zh-cn/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm/) 和
+  [API 服务器](/zh-cn/docs/setup/production-environment/tools/kubeadm/ha-topology/)这些功能组件配置高可用能力。
 <!--
 - Choose from [kubeadm](/docs/setup/production-environment/tools/kubeadm/), [kops](/docs/setup/production-environment/tools/kops/) or [Kubespray](/docs/setup/production-environment/tools/kubespray/)
 deployment methods.
 -->
-- 选择使用 [kubeadm](/zh/docs/setup/production-environment/tools/kubeadm/)、
-  [kops](/zh/docs/setup/production-environment/tools/kops/) 或
-  [Kubespray](/zh/docs/setup/production-environment/tools/kubespray/)
-  作为部署方法。
+- 选择使用 [kubeadm](/zh-cn/docs/setup/production-environment/tools/kubeadm/)、
+  [kops](/zh-cn/docs/setup/production-environment/tools/kops/) 或
+  [Kubespray](/zh-cn/docs/setup/production-environment/tools/kubespray/) 作为部署方法。
 <!--
 - Configure user management by determining your
 [Authentication](/docs/reference/access-authn-authz/authentication/) and
 [Authorization](/docs/reference/access-authn-authz/authorization/) methods.
 -->
-- 通过决定[身份认证](/zh/docs/reference/access-authn-authz/authentication/)和
-  [鉴权](/zh/docs/reference/access-authn-authz/authorization/)方法来配置用户管理。
+- 通过决定[身份认证](/zh-cn/docs/reference/access-authn-authz/authentication/)和[鉴权](/zh-cn/docs/reference/access-authn-authz/authorization/)方法来配置用户管理。
 <!--
 - Prepare for application workloads by setting up
 [resource limits](/docs/tasks/administer-cluster/manage-resources/),
 [DNS autoscaling](/docs/tasks/administer-cluster/dns-horizontal-autoscaling/)
 and [service accounts](/docs/reference/access-authn-authz/service-accounts-admin/).
 -->
-- 通过配置[资源限制](/zh/docs/tasks/administer-cluster/manage-resources/)、
-  [DNS 自动扩缩](/zh/docs/tasks/administer-cluster/dns-horizontal-autoscaling/)
-  和[服务账号](/zh/docs/reference/access-authn-authz/service-accounts-admin/)
-  来为应用负载作准备。
-
+- 通过配置[资源限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/)、
+  [DNS 自动扩缩](/zh-cn/docs/tasks/administer-cluster/dns-horizontal-autoscaling/)和[服务账号](/zh-cn/docs/reference/access-authn-authz/service-accounts-admin/)来为应用负载作准备。
diff --git a/content/zh-cn/docs/setup/production-environment/container-runtimes.md b/content/zh-cn/docs/setup/production-environment/container-runtimes.md
new file mode 100644
index 0000000000..da4016068a
--- /dev/null
+++ b/content/zh-cn/docs/setup/production-environment/container-runtimes.md
@@ -0,0 +1,565 @@
+---
+title: 容器运行时
+content_type: concept
+weight: 20
+---
+<!--
+reviewers:
+- vincepri
+- bart0sh
+title: Container Runtimes
+content_type: concept
+weight: 20
+-->
+
+<!-- overview -->
+
+{{% dockershim-removal %}}
+
+<!-- 
+You need to install a
+{{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}
+into each node in the cluster so that Pods can run there. This page outlines
+what is involved and describes related tasks for setting up nodes.
+ -->
+你需要在集群内每个节点上安装一个
+{{< glossary_tooltip text="容器运行时" term_id="container-runtime" >}}
+以使 Pod 可以运行在上面。本文概述了所涉及的内容并描述了与节点设置相关的任务。
+
+<!-- 
+Kubernetes {{< skew currentVersion >}} requires that you use a runtime that
+conforms with the
+{{< glossary_tooltip term_id="cri" text="Container Runtime Interface">}} (CRI).
+
+See [CRI version support](#cri-versions) for more information.
+
+This page provides an outline of how to use several common container runtimes with Kubernetes.
+-->
+Kubernetes {{< skew currentVersion >}}
+要求你使用符合{{<glossary_tooltip term_id="cri" text="容器运行时接口">}}（CRI）的运行时。
+
+有关详细信息，请参阅 [CRI 版本支持](#cri-versions)。
+本页简要介绍在 Kubernetes 中几个常见的容器运行时的用法。
+
+- [containerd](#containerd)
+- [CRI-O](#cri-o)
+- [Docker Engine](#docker)
+- [Mirantis Container Runtime](#mcr)
+
+
+{{< note >}}
+<!-- 
+Kubernetes releases before v1.24 included a direct integration with Docker Engine,
+using a component named _dockershim_. That special direct integration is no longer
+part of Kubernetes (this removal was
+[announced](/blog/2020/12/08/kubernetes-1-20-release-announcement/#dockershim-deprecation)
+as part of the v1.20 release).
+-->
+v1.24 之前的 Kubernetes 版本包括与 Docker Engine 的直接集成，使用名为 **dockershim** 的组件。 
+这种特殊的直接整合不再是 Kubernetes 的一部分
+（这次删除被作为 v1.20 发行版本的一部分[宣布](/zh-cn/blog/2020/12/08/kubernetes-1-20-release-announcement/#dockershim-deprecation)）。
+
+<!--
+You can read
+[Check whether Dockershim deprecation affects you](/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-deprecation-affects-you/)
+to understand how this removal might
+affect you. To learn about migrating from using dockershim, see
+[Migrating from dockershim](/docs/tasks/administer-cluster/migrating-from-dockershim/).
+-->
+你可以阅读[检查 Dockershim 弃用是否会影响你](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-deprecation-affects-you/) 
+以了解此删除可能会如何影响你。 
+要了解如何使用 dockershim 进行迁移，
+请参阅[从 dockershim 迁移](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/)。
+
+<!--
+If you are running a version of Kubernetes other than v{{< skew currentVersion >}},
+check the documentation for that version.
+-->
+如果你正在运行 v{{< skew currentVersion >}} 以外的 Kubernetes 版本，检查该版本的文档。
+{{< /note >}}
+
+<!-- body -->
+
+<!-- 
+## Install and configure prerequisites
+
+The following steps apply common settings for Kubernetes nodes on Linux. 
+
+You can skip a particular setting if you're certain you don't need it.
+
+For more information, see [Network Plugin Requirements](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/#network-plugin-requirements) or the documentation for your specific container runtime.
+-->
+## 安装和配置先决条件  {#install-and-configure-prerequisites}
+
+以下步骤将通用设置应用于 Linux 上的 Kubernetes 节点。
+
+如果你确定不需要某个特定设置，则可以跳过它。
+
+有关更多信息，请参阅[网络插件要求](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/#network-plugin-requirements) 
+或特定容器运行时的文档。
+
+<!-- 
+### Forwarding IPv4 and letting iptables see bridged traffic
+
+Verify that the `br_netfilter` module is loaded by running `lsmod | grep br_netfilter`. 
+
+To load it explicitly, run `sudo modprobe br_netfilter`.
+
+In order for a Linux node's iptables to correctly view bridged traffic, verify that `net.bridge.bridge-nf-call-iptables` is set to 1 in your `sysctl` config. For example: 
+-->
+### 转发 IPv4 并让 iptables 看到桥接流量
+
+通过运行 `lsmod | grep br_netfilter` 来验证 `br_netfilter` 模块是否已加载。
+
+若要显式加载此模块，请运行 `sudo modprobe br_netfilter`。
+
+为了让 Linux 节点的 iptables 能够正确查看桥接流量，请确认 `sysctl` 配置中的
+`net.bridge.bridge-nf-call-iptables` 设置为 1。例如：
+
+```bash
+cat <<EOF | sudo tee /etc/modules-load.d/k8s.conf
+overlay
+br_netfilter
+EOF
+
+sudo modprobe overlay
+sudo modprobe br_netfilter
+
+# 设置所需的 sysctl 参数，参数在重新启动后保持不变
+cat <<EOF | sudo tee /etc/sysctl.d/k8s.conf
+net.bridge.bridge-nf-call-iptables  = 1
+net.bridge.bridge-nf-call-ip6tables = 1
+net.ipv4.ip_forward                 = 1
+EOF
+
+# 应用 sysctl 参数而不重新启动
+sudo sysctl --system
+```
+
+<!--
+## Cgroup drivers
+
+On Linux, {{< glossary_tooltip text="control groups" term_id="cgroup" >}}
+are used to constrain resources that are allocated to processes.
+-->
+## Cgroup 驱动程序  {#cgroup-drivers}
+
+在 Linux 上，{{<glossary_tooltip text="控制组（CGroup）" term_id="cgroup" >}}
+用于限制分配给进程的资源。
+
+<!--
+When [systemd](https://www.freedesktop.org/wiki/Software/systemd/) is chosen as the init
+system for a Linux distribution, the init process generates and consumes a root control group
+(`cgroup`) and acts as a cgroup manager.
+Systemd has a tight integration with cgroups and allocates a cgroup per systemd unit. It's possible
+to configure your container runtime and the kubelet to use `cgroupfs`. Using `cgroupfs` alongside
+systemd means that there will be two different cgroup managers.
+-->
+当某个 Linux 系统发行版使用 [systemd](https://www.freedesktop.org/wiki/Software/systemd/)
+作为其初始化系统时，初始化进程会生成并使用一个 root 控制组（`cgroup`），并充当 cgroup 管理器。
+Systemd 与 cgroup 集成紧密，并将为每个 systemd 单元分配一个 cgroup。
+你也可以配置容器运行时和 kubelet 使用 `cgroupfs`。
+连同 systemd 一起使用 `cgroupfs` 意味着将有两个不同的 cgroup 管理器。
+
+<!--
+A single cgroup manager simplifies the view of what resources are being allocated
+and will by default have a more consistent view of the available and in-use resources.
+When there are two cgroup managers on a system, you end up with two views of those resources.
+In the field, people have reported cases where nodes that are configured to use `cgroupfs`
+for the kubelet and Docker, but `systemd` for the rest of the processes, become unstable under
+resource pressure.
+-->
+单个 cgroup 管理器将简化分配资源的视图，并且默认情况下将对可用资源和使用
+中的资源具有更一致的视图。
+当有两个管理器共存于一个系统中时，最终将对这些资源产生两种视图。
+在此领域人们已经报告过一些案例，某些节点配置让 kubelet 和 docker 使用
+`cgroupfs`，而节点上运行的其余进程则使用 systemd; 这类节点在资源压力下
+会变得不稳定。
+
+<!--
+Changing the settings such that your container runtime and kubelet use `systemd` as the cgroup driver
+stabilized the system. To configure this for Docker, set `native.cgroupdriver=systemd`.
+-->
+更改设置，令容器运行时和 kubelet 使用 `systemd` 作为 cgroup 驱动，以此使系统更为稳定。
+对于 Docker，要设置 `native.cgroupdriver=systemd` 选项。
+
+{{< caution >}}
+<!--
+Changing the cgroup driver of a Node that has joined a cluster is a sensitive operation. 
+If the kubelet has created Pods using the semantics of one cgroup driver, changing the container
+runtime to another cgroup driver can cause errors when trying to re-create the Pod sandbox
+for such existing Pods. Restarting the kubelet may not solve such errors.
+
+If you have automation that makes it feasible, replace the node with another using the updated
+configuration, or reinstall it using automation.
+-->
+注意：更改已加入集群的节点的 cgroup 驱动是一项敏感的操作。
+如果 kubelet 已经使用某 cgroup 驱动的语义创建了 pod，更改运行时以使用
+别的 cgroup 驱动，当为现有 Pods 重新创建 PodSandbox 时会产生错误。
+重启 kubelet 也可能无法解决此类问题。
+
+如果你有切实可行的自动化方案，使用其他已更新配置的节点来替换该节点，
+或者使用自动化方案来重新安装。
+{{< /caution >}}
+
+<!--
+### Cgroup version 2 {#cgroup-v2}
+
+Cgroup v2 is the next version of the cgroup Linux API.  Differently than cgroup v1, there is a single
+hierarchy instead of a different one for each controller.
+-->
+### Cgroup v2 {#cgroup-v2}
+
+Cgroup v2 是 cgroup Linux API 的下一个版本。与 cgroup v1 不同的是，
+Cgroup v2 只有一个层次结构，而不是每个控制器有一个不同的层次结构。
+
+<!--
+The new version offers several improvements over cgroup v1, some of these improvements are:
+
+- cleaner and easier to use API
+- safe sub-tree delegation to containers
+- newer features like Pressure Stall Information
+-->
+新版本对 cgroup v1 进行了多项改进，其中一些改进是：
+
+- 更简洁、更易于使用的 API
+- 可将安全子树委派给容器
+- 更新的功能，如压力失速信息（Pressure Stall Information）
+
+<!--
+Even if the kernel supports a hybrid configuration where some controllers are managed by cgroup v1
+and some others by cgroup v2, Kubernetes supports only the same cgroup version to manage all the
+controllers.
+
+If systemd doesn't use cgroup v2 by default, you can configure the system to use it by adding
+`systemd.unified_cgroup_hierarchy=1` to the kernel command line.
+-->
+尽管内核支持混合配置，即其中一些控制器由 cgroup v1 管理，另一些由 cgroup v2 管理，
+Kubernetes 仅支持使用同一 cgroup 版本来管理所有控制器。
+
+如果 systemd 默认不使用 cgroup v2，你可以通过在内核命令行中添加 
+`systemd.unified_cgroup_hierarchy=1` 来配置系统去使用它。
+
+<!-- 
+```shell
+# This example is for a Linux OS that uses the DNF package manager
+# Your system might use a different method for setting the command line
+# that the Linux kernel uses.
+sudo dnf install -y grubby && \
+  sudo grubby \
+  --update-kernel=ALL \
+  --args="systemd.unified_cgroup_hierarchy=1"
+``` 
+-->
+
+```shell
+# 此示例适用于使用 DNF 包管理器的 Linux 操作系统
+# 你的系统可能使用不同的方法来设置 Linux 内核使用的命令行。
+sudo dnf install -y grubby && \
+  sudo grubby \
+  --update-kernel=ALL \
+  --args="systemd.unified_cgroup_hierarchy=1"
+```
+
+<!--
+If you change the command line for the kernel, you must reboot the node before your
+change takes effect.
+
+There should not be any noticeable difference in the user experience when switching to cgroup v2, unless
+users are accessing the cgroup file system directly, either on the node or from within the containers.
+
+In order to use it, cgroup v2 must be supported by the CRI runtime as well.
+-->
+如果更改内核的命令行，则必须重新启动节点才能使更改生效。
+
+切换到 cgroup v2 时，用户体验不应有任何明显差异，
+除非用户直接在节点上或在容器内访问 cgroup 文件系统。
+为了使用它，CRI 运行时也必须支持 cgroup v2。
+
+<!-- 
+### Migrating to the `systemd` driver in kubeadm managed clusters
+
+If you wish to migrate to the `systemd` cgroup driver in existing kubeadm managed clusters,
+follow [configuring a cgroup driver](/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver/).
+-->
+### 将 kubeadm 托管的集群迁移到 `systemd` 驱动
+
+如果你希望将现有的由 kubeadm 管理的集群迁移到 `systemd` cgroup 驱动程序，
+请按照[配置 cgroup 驱动程序](/zh-cn/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver/)操作。
+
+<!--
+## CRI version support {#cri-versions}
+
+Your container runtime must support at least v1alpha2 of the container runtime interface.
+
+Kubernetes {{< skew currentVersion >}}  defaults to using v1 of the CRI API.
+If a container runtime does not support the v1 API, the kubelet falls back to
+using the (deprecated) v1alpha2 API instead.
+-->
+## CRI 版本支持 {#cri-versions}
+
+你的容器运行时必须至少支持容器运行时接口的 v1alpha2。
+
+Kubernetes {{< skew currentVersion >}} 默认使用 v1 的 CRI API。如果容器运行时不支持 v1 API，
+则 kubelet 会回退到使用（已弃用的）v1alpha2 API。
+
+<!-- 
+## Container runtimes
+ -->
+## 容器运行时
+
+{{% thirdparty-content %}}
+
+### containerd
+
+<!--
+This section outlines the necessary steps to use containerd as CRI runtime.
+
+Use the following commands to install Containerd on your system:
+-->
+本节概述了使用 containerd 作为 CRI 运行时的必要步骤。
+
+使用以下命令在系统上安装 Containerd：
+
+<!-- 
+Follow the instructions for [getting started with containerd](https://github.com/containerd/containerd/blob/main/docs getting-started.md). Return to this step once you've created a valid configuration file, `config.toml`. 
+ -->
+
+按照[开始使用 containerd](https://github.com/containerd/containerd/blob/main/docs/getting-started.md) 的说明进行操作。 
+创建有效的配置文件 `config.toml` 后返回此步骤。
+
+{{< tabs name="找到 config.toml 文件" >}}
+{{% tab name="Linux" %}}
+<!-- You can find this file under the path `/etc/containerd/config.toml`. -->
+你可以在路径 `/etc/containerd/config.toml` 下找到此文件。
+{{% /tab %}}
+{{% tab name="Windows" %}}
+<!-- You can find this file under the path `C:\Program Files\containerd\config.toml`. -->
+你可以在路径 `C:\Program Files\containerd\config.toml` 下找到此文件。
+{{% /tab %}}
+{{< /tabs >}}
+
+<!-- 
+On Linux the default CRI socket for containerd is `/run/containerd/containerd.sock`.
+On Windows the default CRI endpoint is `npipe://./pipe/containerd-containerd`.
+-->
+在 Linux 上，containerd 的默认 CRI 套接字是 `/run/containerd/containerd.sock`。
+在 Windows 上，默认 CRI 端点是 `npipe://./pipe/containerd-containerd`。
+
+<!--
+#### Configuring the `systemd` cgroup driver {#containerd-systemd}
+
+To use the `systemd` cgroup driver in `/etc/containerd/config.toml` with `runc`, set
+-->
+#### 配置 `systemd` cgroup 驱动程序 {#containerd-systemd}
+
+结合 `runc` 使用 `systemd` cgroup 驱动，在 `/etc/containerd/config.toml` 中设置 
+
+```
+[plugins."io.containerd.grpc.v1.cri".containerd.runtimes.runc]
+  ...
+  [plugins."io.containerd.grpc.v1.cri".containerd.runtimes.runc.options]
+    SystemdCgroup = true
+```
+
+{{< note >}}
+<!--
+If you installed containerd from a package (for example, RPM or `.deb`), you may find
+that the CRI integration plugin is disabled by default.
+
+You need CRI support enabled to use containerd with Kubernetes. Make sure that `cri`
+is not included in the`disabled_plugins` list within `/etc/containerd/config.toml`;
+if you made changes to that file, also restart `containerd`.
+-->
+如果你从软件包（例如，RPM 或者 `.deb`）中安装 containerd，你可能会发现其中默认禁止了
+CRI 集成插件。
+
+你需要启用 CRI 支持才能在 Kubernetes 集群中使用 containerd。
+要确保 `cri` 没有出现在 `/etc/containerd/config.toml` 文件中 `disabled_plugins`
+列表内。如果你更改了这个文件，也请记得要重启 `containerd`。
+{{< /note >}}
+
+<!--
+If you apply this change, make sure to restart containerd:
+-->
+如果你应用此更改，请确保重新启动 containerd：
+
+```shell
+sudo systemctl restart containerd
+```
+
+<!--
+When using kubeadm, manually configure the
+[cgroup driver for kubelet](/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver/#configuring-the-kubelet-cgroup-driver).
+-->
+当使用 kubeadm 时，请手动配置
+[kubelet 的 cgroup 驱动](/zh-cn/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver/#configuring-the-kubelet-cgroup-driver)。
+
+<!--
+#### Overriding the sandbox (pause) image {#override-pause-image-containerd}
+
+In your [containerd config](https://github.com/containerd/containerd/blob/main/docs/cri/config.md) you can overwrite the
+sandbox image by setting the following config:
+-->
+#### 重载沙箱（pause）镜像    {#override-pause-image-containerd}
+
+在你的 [containerd 配置](https://github.com/containerd/containerd/blob/main/docs/cri/config.md)中，
+你可以通过设置以下选项重载沙箱镜像：
+
+```toml
+[plugins."io.containerd.grpc.v1.cri"]
+  sandbox_image = "k8s.gcr.io/pause:3.2"
+```
+
+<!--
+You might need to restart `containerd` as well once you've updated the config file: `systemctl restart containerd`.
+-->
+一旦你更新了这个配置文件，可能就同样需要重启 `containerd`：`systemctl restart containerd`。
+
+### CRI-O
+
+<!--
+This section contains the necessary steps to install CRI-O as a container runtime.
+
+To install CRI-O, follow [CRI-O Install Instructions](https://github.com/cri-o/cri-o/blob/main/install.md#readme).
+-->
+本节包含安装 CRI-O 作为容器运行时的必要步骤。
+
+要安装 CRI-O，请按照 [CRI-O 安装说明](https://github.com/cri-o/cri-o/blob/main/install.md#readme)执行操作。
+
+<!--
+#### cgroup driver
+
+CRI-O uses the systemd cgroup driver per default, which is likely to work fine
+for you. To switch to the `cgroupfs` cgroup driver, either edit
+`/etc/crio/crio.conf` or place a drop-in configuration in
+`/etc/crio/crio.conf.d/02-cgroup-manager.conf`, for example: 
+-->
+#### cgroup 驱动程序   {#cgroup-driver}
+
+CRI-O 默认使用 systemd cgroup 驱动程序，这对你来说可能工作得很好。
+要切换到 `cgroupfs` cgroup 驱动程序，请编辑 `/etc/crio/crio.conf` 或在
+`/etc/crio/crio.conf.d/02-cgroup-manager.conf` 中放置一个插入式配置，例如：
+
+```toml
+[crio.runtime]
+conmon_cgroup = "pod"
+cgroup_manager = "cgroupfs"
+```
+
+<!--
+You should also note the changed `conmon_cgroup`, which has to be set to the value
+`pod` when using CRI-O with `cgroupfs`. It is generally necessary to keep the
+cgroup driver configuration of the kubelet (usually done via kubeadm) and CRI-O
+in sync.
+-->
+你还应该注意到 `conmon_cgroup` 被更改，当使用 CRI-O 和 `cgroupfs` 时，必须将其设置为值 `pod`。
+通常需要保持 kubelet 的 cgroup 驱动配置（通常通过 kubeadm 完成）和 CRI-O 同步。
+
+<!-- 
+For CRI-O, the CRI socket is `/var/run/crio/crio.sock` by default.
+-->
+对于 CRI-O，CRI 套接字默认为 `/var/run/crio/crio.sock`。
+
+<!--
+#### Overriding the sandbox (pause) image {#override-pause-image-cri-o}
+
+In your [CRI-O config](https://github.com/cri-o/cri-o/blob/main/docs/crio.conf.5.md) you can set the following
+config value:
+-->
+#### 重载沙箱（pause）镜像   {#override-pause-image-cri-o}
+
+在你的 [CRI-O 配置](https://github.com/cri-o/cri-o/blob/main/docs/crio.conf.5.md)中，
+你可以设置以下配置值：
+
+```toml
+[crio.image]
+pause_image="registry.k8s.io/pause:3.6"
+```
+
+<!--
+This config option supports live configuration reload to apply this change: `systemctl reload crio` or by sending
+`SIGHUP` to the `crio` process.
+-->
+这一设置选项支持动态配置重加载来应用所做变更：`systemctl reload crio`。
+也可以通过向 `crio` 进程发送 `SIGHUP` 信号来实现。
+
+### Docker Engine {#docker}
+
+{{< note >}}
+<!-- 
+These instructions assume that you are using the
+[`cri-dockerd`](https://github.com/Mirantis/cri-dockerd) adapter to integrate
+Docker Engine with Kubernetes.
+-->
+以下操作假设你使用 [`cri-dockerd`](https://github.com/Mirantis/cri-dockerd) 适配器来将
+Docker Engine 与 Kubernetes 集成。
+{{< /note >}} 
+
+<!--
+1. On each of your nodes, install Docker for your Linux distribution as per
+   [Install Docker Engine](https://docs.docker.com/engine/install/#server). 
+-->
+1. 在你的每个节点上，遵循[安装 Docker Engine](https://docs.docker.com/engine/install/#server)
+   指南为你的 Linux 发行版安装 Docker。
+
+<!-- 
+2. Install [`cri-dockerd`](https://github.com/Mirantis/cri-dockerd), following
+   the instructions in that source code repository.
+-->
+2. 按照源代码仓库中的说明安装 [`cri-dockerd`](https://github.com/Mirantis/cri-dockerd)。
+
+<!--
+For `cri-dockerd`, the CRI socket is `/run/cri-dockerd.sock` by default.
+-->
+对于 `cri-dockerd`，默认情况下，CRI 套接字是 `/run/cri-dockerd.sock`。
+
+<!-- 
+### Mirantis Container Runtime {#mcr}
+
+[Mirantis Container Runtime](https://docs.mirantis.com/mcr/20.10/overview.html) (MCR) is a commercially
+available container runtime that was formerly known as Docker Enterprise Edition.
+
+You can use Mirantis Container Runtime with Kubernetes using the open source
+[`cri-dockerd`](https://github.com/Mirantis/cri-dockerd) component, included with MCR.
+-->
+### Mirantis 容器运行时 {#mcr}
+
+[Mirantis Container Runtime](https://docs.mirantis.com/mcr/20.10/overview.html) (MCR) 
+是一种商用容器运行时，以前称为 Docker 企业版。
+你可以使用 MCR 中包含的开源 [`cri-dockerd`](https://github.com/Mirantis/cri-dockerd)
+组件将 Mirantis Container Runtime 与 Kubernetes 一起使用。
+
+<!--
+To learn more about how to install Mirantis Container Runtime,
+visit [MCR Deployment Guide](https://docs.mirantis.com/mcr/20.10/install.html). 
+-->
+要了解有关如何安装 Mirantis Container Runtime 的更多信息，
+请访问 [MCR 部署指南](https://docs.mirantis.com/mcr/20.10/install.html)。
+
+<!-- 
+Check the systemd unit named `cri-docker.socket` to find out the path to the CRI socket.
+-->
+检查名为 `cri-docker.socket` 的 systemd 单元以找出 CRI 套接字的路径。
+
+<!--
+#### Overriding the sandbox (pause) image {#override-pause-image-cri-dockerd-mcr}
+
+The `cri-dockerd` adapter accepts a command line argument for
+specifying which container image to use as the Pod infrastructure container (“pause image”).
+The command line argument to use is `--pod-infra-container-image`.
+-->
+#### 重载沙箱（pause）镜像   {#override-pause-image-cri-dockerd-mcr}
+
+`cri-dockerd` 适配器能够接受一个命令行参数是，设置用哪个容器镜像作为 Pod
+的基础设施容器（“pause 镜像”）。
+要使用的命令行参数是 `--pod-infra-container-image`。
+
+## {{% heading "whatsnext" %}}
+
+<!-- 
+As well as a container runtime, your cluster will need a working
+[network plugin](/docs/concepts/cluster-administration/networking/#how-to-implement-the-kubernetes-networking-model).
+-->
+除了容器运行时，你的集群还需要有效的[网络插件](/zh-cn/docs/concepts/cluster-administration/networking/#how-to-implement-the-kubernetes-networking-model)。
+
diff --git a/content/zh/docs/setup/production-environment/tools/_index.md b/content/zh-cn/docs/setup/production-environment/tools/_index.md
similarity index 100%
rename from content/zh/docs/setup/production-environment/tools/_index.md
rename to content/zh-cn/docs/setup/production-environment/tools/_index.md
diff --git a/content/zh/docs/setup/production-environment/tools/kops.md b/content/zh-cn/docs/setup/production-environment/tools/kops.md
similarity index 88%
rename from content/zh/docs/setup/production-environment/tools/kops.md
rename to content/zh-cn/docs/setup/production-environment/tools/kops.md
index 94b448361a..a22110c6d7 100644
--- a/content/zh/docs/setup/production-environment/tools/kops.md
+++ b/content/zh-cn/docs/setup/production-environment/tools/kops.md
@@ -28,14 +28,14 @@ kops 是一个自动化的制备系统：
 * Uses DNS to identify clusters
 * Self-healing: everything runs in Auto-Scaling Groups
 * Multiple OS support (Debian, Ubuntu 16.04 supported, CentOS & RHEL, Amazon Linux and CoreOS) - see the [images.md](https://github.com/kubernetes/kops/blob/master/docs/operations/images.md)
-* High-Availability support - see the [high_availability.md](https://github.com/kubernetes/kops/blob/master/docs/high_availability.md)
+* High-Availability support - see the [high_availability.md](https://github.com/kubernetes/kops/blob/master/docs/operations/high_availability.md)
 * Can directly provision, or generate terraform manifests - see the [terraform.md](https://github.com/kubernetes/kops/blob/master/docs/terraform.md)
 -->
 * 全自动安装流程
 * 使用 DNS 识别集群
 * 自我修复：一切都在自动扩缩组中运行
 * 支持多种操作系统（如 Debian、Ubuntu 16.04、CentOS、RHEL、Amazon Linux 和 CoreOS） - 参考 [images.md](https://github.com/kubernetes/kops/blob/master/docs/operations/images.md)
-* 支持高可用 - 参考 [high_availability.md](https://github.com/kubernetes/kops/blob/master/docs/high_availability.md)
+* 支持高可用 - 参考 [high_availability.md](https://github.com/kubernetes/kops/blob/master/docs/operations/high_availability.md)
 * 可以直接提供或者生成 terraform 清单 - 参考 [terraform.md](https://github.com/kubernetes/kops/blob/master/docs/terraform.md)
 
 ## {{% heading "prerequisites" %}}
@@ -47,12 +47,12 @@ kops 是一个自动化的制备系统：
 
 * You must have an [AWS account](https://docs.aws.amazon.com/polly/latest/dg/setting-up.html), generate [IAM keys](https://docs.aws.amazon.com/general/latest/gr/aws-sec-cred-types.html#access-keys-and-secret-access-keys) and [configure](https://docs.aws.amazon.com/cli/latest/userguide/cli-chap-configure.html#cli-quick-configuration) them. The IAM user will need [adequate permissions](https://github.com/kubernetes/kops/blob/master/docs/getting_started/aws.md#setup-iam-user).
 -->
-* 你必须安装 [kubectl](/zh/docs/tasks/tools/)。 
+* 你必须安装 [kubectl](/zh-cn/docs/tasks/tools/)。
 * 你必须安装[安装](https://github.com/kubernetes/kops#installing) `kops`
   到 64 位的（AMD64 和 Intel 64）设备架构上。
-* 你必须拥有一个 [AWS 账户](https://docs.aws.amazon.com/polly/latest/dg/setting-up.html)，
-  生成 [IAM 秘钥](https://docs.aws.amazon.com/general/latest/gr/aws-sec-cred-types.html#access-keys-and-secret-access-keys)
-  并[配置](https://docs.aws.amazon.com/cli/latest/userguide/cli-chap-configure.html#cli-quick-configuration)
+* 你必须拥有一个 [AWS 账户](https://docs.aws.amazon.com/zh_cn/polly/latest/dg/setting-up.html)，
+  生成 [IAM 秘钥](https://docs.aws.amazon.com/zh_cn/general/latest/gr/aws-sec-cred-types.html#access-keys-and-secret-access-keys)
+  并[配置](https://docs.aws.amazon.com/zh_cn/cli/latest/userguide/cli-chap-configure.html#cli-quick-configuration)
   该秘钥。IAM 用户需要[足够的权限许可](https://github.com/kubernetes/kops/blob/master/docs/getting_started/aws.md#setup-iam-user)。
 
 <!-- steps -->
@@ -172,7 +172,6 @@ Move the kops binary in to your PATH.
 -->
 将 kops 二进制文件移到 PATH 下：
 
-
 ```shell
 sudo mv kops-linux-amd64 /usr/local/bin/kops
 ```
@@ -204,7 +203,7 @@ no longer get your clusters confused, you can share clusters with your colleague
 and you can reach them without relying on remembering an IP address.
 -->
 kops 对集群名称有明显的要求：它应该是有效的 DNS 名称。这样一来，你就不会再使集群混乱，
-可以与同事明确共享集群，并且无需依赖记住 IP 地址即可访问群集。
+可以与同事明确共享集群，并且无需依赖记住 IP 地址即可访问集群。
 
 <!--
 You can, and probably should, use subdomains to divide your clusters.  As our example we will use
@@ -225,11 +224,11 @@ kops 可以与以上任何一种配合使用，因此通常你出于组织原因
 
 <!--
 Let's assume you're using `dev.example.com` as your hosted zone.  You create that hosted zone using
-the [normal process](http://docs.aws.amazon.com/Route53/latest/DeveloperGuide/CreatingNewSubdomain.html), or
+the [normal process](https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/CreatingNewSubdomain.html), or
 with a command such as `aws route53 create-hosted-zone --name dev.example.com --caller-reference 1`.
 -->
 假设你使用 `dev.example.com` 作为托管区域。你可以使用
-[正常流程](https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/CreatingNewSubdomain.html)
+[正常流程](https://docs.aws.amazon.com/zh_cn/Route53/latest/DeveloperGuide/CreatingNewSubdomain.html)
 或者使用诸如 `aws route53 create-hosted-zone --name dev.example.com --caller-reference 1`
 之类的命令来创建该托管区域。
 
@@ -323,7 +322,7 @@ kops will create the configuration for your cluster.  Note that it _only_ create
 not actually create the cloud resources - you'll do that in the next step with a `kops update cluster`.  This
 give you an opportunity to review the configuration or change it.
 -->
-kops 将为你的集群创建配置。请注意，它_仅_创建配置，实际上并没有创建云资源 - 
+kops 将为你的集群创建配置。请注意，它_仅_创建配置，实际上并没有创建云资源 -
 你将在下一步中使用 `kops update cluster` 进行配置。
 这使你有机会查看配置或进行更改。
 
@@ -349,7 +348,7 @@ set of instances, which will be registered as kubernetes nodes.  On AWS this is
 You can have several instance groups, for example if you wanted nodes that are a mix of spot and on-demand instances, or
 GPU and non-GPU instances.
 -->
-如果这是你第一次使用 kops，请花几分钟尝试一下！ 实例组是一组实例，将被注册为 kubernetes 节点。
+如果这是你第一次使用 kops，请花几分钟尝试一下！实例组是一组实例，将被注册为 kubernetes 节点。
 在 AWS 上，这是通过 auto-scaling-groups 实现的。你可以有多个实例组。
 例如，如果你想要的是混合实例和按需实例的节点，或者 GPU 和非 GPU 实例。
 
@@ -360,7 +359,7 @@ Run "kops update cluster" to create your cluster in AWS:
 -->
 ### (5/5) 在 AWS 中创建集群
 
-运行 "kops update cluster" 以在 AWS 中创建集群：
+运行 `kops update cluster` 以在 AWS 中创建集群：
 
 ```shell
 kops update cluster useast1.dev.example.com --yes
@@ -391,11 +390,11 @@ for production clusters!
 <!--
 ### Explore other add-ons
 
-See the [list of add-ons](/docs/concepts/cluster-administration/addons/) to explore other add-ons, including tools for logging, monitoring, network policy, visualization &amp; control of your Kubernetes cluster.
+See the [list of add-ons](/docs/concepts/cluster-administration/addons/) to explore other add-ons, including tools for logging, monitoring, network policy, visualization, and control of your Kubernetes cluster.
 -->
 ### 探索其他附加组件
 
-请参阅[附加组件列表](/zh/docs/concepts/cluster-administration/addons/)探索其他附加组件，
+请参阅[附加组件列表](/zh-cn/docs/concepts/cluster-administration/addons/)探索其他附加组件，
 包括用于 Kubernetes 集群的日志记录、监视、网络策略、可视化和控制的工具。
 
 <!--
@@ -410,13 +409,17 @@ See the [list of add-ons](/docs/concepts/cluster-administration/addons/) to expl
 ## {{% heading "whatsnext" %}}
 
 <!--
-* Learn more about Kubernetes [concepts](/docs/concepts/) and [`kubectl`](/docs/user-guide/kubectl-overview/).
-* Learn about `kops` [advanced usage](https://github.com/kubernetes/kops)
-* See the `kops` [docs](https://github.com/kubernetes/kops) section for tutorials, best practices and advanced configuration options.
+* Learn more about Kubernetes [concepts](/docs/concepts/) and [`kubectl`](/docs/reference/kubectl/).
+* Learn more about `kops` [advanced usage](https://kops.sigs.k8s.io/) for tutorials, best practices and advanced configuration options.
+* Follow `kops` community discussions on Slack: [community discussions](https://github.com/kubernetes/kops#other-ways-to-communicate-with-the-contributors)
 -->
-* 了解有关 Kubernetes 的[概念](/zh/docs/concepts/) 和
-  [`kubectl`](/zh/docs/reference/kubectl/overview/) 有关的更多信息。
-* 了解 `kops` [高级用法](https://github.com/kubernetes/kops)。
-* 请参阅 `kops` [文档](https://github.com/kubernetes/kops) 获取教程、
-  最佳做法和高级配置选项。
+* 了解有关 Kubernetes 的[概念](/zh-cn/docs/concepts/)和
+  [`kubectl`](/zh-cn/docs/reference/kubectl/) 的更多信息。
+* 参阅 `kops` [进阶用法](https://kops.sigs.k8s.io/)获取教程、最佳实践和进阶配置选项。
+* 通过 Slack：[社区讨论](https://github.com/kubernetes/kops#other-ways-to-communicate-with-the-contributors)
+  参与 `kops` 社区讨论。
 
+<!-- 
+* Contribute to `kops` by addressing or raising an issue [GitHub Issues](https://github.com/kubernetes/kops/issues)
+-->
+* 通过解决或提出一个 [GitHub Issue](https://github.com/kubernetes/kops/issues) 来为 `kops` 做贡献。
diff --git a/content/zh/docs/setup/production-environment/tools/kubeadm/_index.md b/content/zh-cn/docs/setup/production-environment/tools/kubeadm/_index.md
similarity index 100%
rename from content/zh/docs/setup/production-environment/tools/kubeadm/_index.md
rename to content/zh-cn/docs/setup/production-environment/tools/kubeadm/_index.md
diff --git a/content/zh/docs/setup/production-environment/tools/kubeadm/control-plane-flags.md b/content/zh-cn/docs/setup/production-environment/tools/kubeadm/control-plane-flags.md
similarity index 84%
rename from content/zh/docs/setup/production-environment/tools/kubeadm/control-plane-flags.md
rename to content/zh-cn/docs/setup/production-environment/tools/kubeadm/control-plane-flags.md
index 771888f4ab..9aaa23c7ca 100644
--- a/content/zh/docs/setup/production-environment/tools/kubeadm/control-plane-flags.md
+++ b/content/zh-cn/docs/setup/production-environment/tools/kubeadm/control-plane-flags.md
@@ -4,33 +4,31 @@ content_type: concept
 weight: 40
 ---
 <!--
----
 reviewers:
 - sig-cluster-lifecycle
 title: Customizing components with the kubeadm API
 content_type: concept
 weight: 40
----
 -->
 
 <!-- overview -->
 
 <!--
 This page covers how to customize the components that kubeadm deploys. For control plane components
-you can use flags in the `ClusteConfiguration` structure or patches per-node. For the kubelet
+you can use flags in the `ClusterConfiguration` structure or patches per-node. For the kubelet
 and kube-proxy you can use `KubeletConfiguration` and `KubeProxyConfiguration`, accordingly.
 
 All of these options are possible via the kubeadm configuration API.
 For more details on each field in the configuration you can navigate to our
-[API reference pages](https://godoc.org/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta3).
+[API reference pages](/docs/reference/config-api/kubeadm-config.v1beta3/).
 -->
 本页面介绍了如何自定义 kubeadm 部署的组件。
-你可以使用 `ClusteConfiguration` 结构中定义的参数，或者在每个节点上应用补丁来定制控制平面组件。
+你可以使用 `ClusterConfiguration` 结构中定义的参数，或者在每个节点上应用补丁来定制控制平面组件。
 你可以使用 `KubeletConfiguration` 和 `KubeProxyConfiguration` 结构分别定制 kubelet 和 kube-proxy 组件。
 
 所有这些选项都可以通过 kubeadm 配置 API 实现。
-有关配置中的每个字段的详细信息，你可以导航到我们的 
-[API 参考页面](/docs/reference/config-api/kubeadm-config.v1beta3/) 。
+有关配置中的每个字段的详细信息，你可以导航到我们的
+[API 参考页面](/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3/) 。
 
 {{< note >}}
 <!--
@@ -41,16 +39,23 @@ you can skip the default CoreDNS deployment and deploy your own variant.
 For more details on that see [Using init phases with kubeadm](/docs/reference/setup-tools/kubeadm/kubeadm-init/#init-phases).
 -->
 kubeadm 目前不支持对 CoreDNS 部署进行定制。
-你必须手动更新 `kube-system/coredns` {{< glossary_tooltip text="ConfigMap" term_id="configmap" >}} 
-并在更新后重新创建 CoreDNS {{< glossary_tooltip text="Pods" term_id="pod" >}}。
+你必须手动更新 `kube-system/coredns` {{< glossary_tooltip text="ConfigMap" term_id="configmap" >}}
+并在更新后重新创建 CoreDNS {{< glossary_tooltip text="Pod" term_id="pod" >}}。
 或者，你可以跳过默认的 CoreDNS 部署并部署你自己的 CoreDNS 变种。
-有关更多详细信息，请参阅[在 kubeadm 中使用 init phases](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init/#init-phases).
+有关更多详细信息，请参阅[在 kubeadm 中使用 init phase](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init/#init-phases).
+{{< /note >}}
+
+{{< note >}}
+<!--
+To reconfigure a cluster that has already been created see
+[Reconfiguring a kubeadm cluster](/docs/tasks/administer-cluster/kubeadm/kubeadm-reconfigure).
+-->
+
+要重新配置已创建的集群，请参阅[重新配置 kubeadm 集群](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-reconfigure)。
 {{< /note >}}
 
 <!-- body -->
 
-{{< feature-state for_k8s_version="1.12" state="stable" >}}
-
 <!--
 ## Customizing the control plane with flags in `ClusterConfiguration`
 
@@ -87,8 +92,8 @@ To override a flag for a control plane component:
 
 {{< note >}}
 <!-- 
-You can generate a `ClusterConfiguration` object with default values by running `kubeadm config print init-defaults` 
-and saving the output to a file of your choice. 
+You can generate a `ClusterConfiguration` object with default values by running `kubeadm config print init-defaults`
+and saving the output to a file of your choice.
 -->
 你可以通过运行 `kubeadm config print init-defaults` 并将输出保存到你所选的文件中，
 以默认值形式生成 `ClusterConfiguration` 对象。
@@ -102,7 +107,7 @@ on different nodes you can use [patches](#patches).
 -->
 `ClusterConfiguration` 对象目前在 kubeadm 集群中是全局的。
 这意味着你添加的任何标志都将应用于同一组件在不同节点上的所有实例。
-要在不同节点上为每个组件应用单独的配置，您可以使用[补丁](#patches)。
+要在不同节点上为每个组件应用单独的配置，你可以使用[补丁](#patches)。
 {{< /note >}}
 
 {{< note >}}
@@ -122,12 +127,13 @@ To workaround that you must use [patches](#patches).
 <!--
 For details, see the [reference documentation for kube-apiserver](/docs/reference/command-line-tools-reference/kube-apiserver/).
 -->
-有关详细信息，请参阅 [kube-apiserver 参考文档](/docs/reference/command-line-tools-reference/kube-apiserver/)。
+有关详细信息，请参阅 [kube-apiserver 参考文档](/zh-cn/docs/reference/command-line-tools-reference/kube-apiserver/)。
 
 <!--
 Example usage:
 -->
 使用示例：
+
 ```yaml
 apiVersion: kubeadm.k8s.io/v1beta3
 kind: ClusterConfiguration
@@ -147,12 +153,13 @@ apiServer:
 <!--
 For details, see the [reference documentation for kube-controller-manager](/docs/reference/command-line-tools-reference/kube-controller-manager/).
 -->
-有关详细信息，请参阅 [kube-controller-manager 参考文档](/docs/reference/command-line-tools-reference/kube-controller-manager/)。
+有关详细信息，请参阅 [kube-controller-manager 参考文档](/zh-cn/docs/reference/command-line-tools-reference/kube-controller-manager/)。
 
 <!--
 Example usage:
 -->
 使用示例：
+
 ```yaml
 apiVersion: kubeadm.k8s.io/v1beta3
 kind: ClusterConfiguration
@@ -171,12 +178,13 @@ controllerManager:
 <!--
 For details, see the [reference documentation for kube-scheduler](/docs/reference/command-line-tools-reference/kube-scheduler/).
 -->
-有关详细信息，请参阅 [kube-scheduler 参考文档](/docs/reference/command-line-tools-reference/kube-scheduler/)。
+有关详细信息，请参阅 [kube-scheduler 参考文档](/zh-cn/docs/reference/command-line-tools-reference/kube-scheduler/)。
 
 <!--
 Example usage:
 -->
 使用示例：
+
 ```yaml
 apiVersion: kubeadm.k8s.io/v1beta3
 kind: ClusterConfiguration
@@ -215,8 +223,6 @@ etcd:
 <!--
 ## Customizing the control plane with patches {#patches}
 
-{{< feature-state for_k8s_version="v1.22" state="beta" >}}
-
 Kubeadm allows you to pass a directory with patch files to `InitConfiguration` and `JoinConfiguration`
 on individual nodes. These patches can be used as the last customization step before the control
 plane component manifests are written to disk.
@@ -235,9 +241,8 @@ Kubeadm 允许将包含补丁文件的目录传递给各个节点上的 `InitCon
 ```yaml
 apiVersion: kubeadm.k8s.io/v1beta3
 kind: InitConfiguration
-nodeRegistration:
-  patches:
-    directory: /home/user/somedir
+patches:
+  directory: /home/user/somedir
 ```
 
 {{< note >}}
@@ -256,9 +261,8 @@ You can pass this file to `kubeadm join` with `--config <YOUR CONFIG YAML>`:
 ```yaml
 apiVersion: kubeadm.k8s.io/v1beta3
 kind: JoinConfiguration
-nodeRegistration:
-  patches:
-    directory: /home/user/somedir
+patches:
+  directory: /home/user/somedir
 ```
 
 <!--
@@ -266,7 +270,7 @@ The directory must contain files named `target[suffix][+patchtype].extension`.
 For example, `kube-apiserver0+merge.yaml` or just `etcd.json`.
 -->
 补丁目录必须包含名为 `target[suffix][+patchtype].extension` 的文件。
-例如，`kube-apiserver0+merge.yaml`  或只是 `etcd.json`。
+例如，`kube-apiserver0+merge.yaml` 或只是 `etcd.json`。
 
 <!--
 - `target` can be one of `kube-apiserver`, `kube-controller-manager`, `kube-scheduler` and `etcd`.
@@ -278,8 +282,8 @@ The default `patchtype` is `strategic`.
 alpha-numerically.
 -->
 - `target` 可以是 `kube-apiserver`、`kube-controller-manager`、`kube-scheduler` 和 `etcd` 之一。
-- `patchtype` 可以是 `strategy`、`merge` 或 `json` 之一，并且这些必须匹配 
-  [kubectl 支持](/zh/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch) 的补丁格式。
+- `patchtype` 可以是 `strategy`、`merge` 或 `json` 之一，并且这些必须匹配
+  [kubectl 支持](/zh-cn/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch) 的补丁格式。
   默认补丁类型是 `strategic` 的。
 - `extension` 必须是 `json` 或 `yaml`。
 - `suffix` 是一个可选字符串，可用于确定首先按字母数字应用哪些补丁。
@@ -303,7 +307,7 @@ To customize the kubelet you can add a `KubeletConfiguration` next to the `Clust
 -->
 ## 自定义 kubelet   {#customizing-the-kubelet}
 
-要自定义 kubelet，你可以在同一配置文件中的 `ClusterConfiguration` 或 `InitConfiguration` 
+要自定义 kubelet，你可以在同一配置文件中的 `ClusterConfiguration` 或 `InitConfiguration`
 之外添加一个 `KubeletConfiguration`，用 `---` 分隔。
 然后可以将此文件传递给 `kubeadm init`。
 
@@ -318,13 +322,13 @@ before using them.
 kubeadm 将相同的 `KubeletConfiguration` 配置应用于集群中的所有节点。
 要应用节点特定设置，你可以使用 `kubelet` 参数进行覆盖，方法是将它们传递到 `InitConfiguration` 和 `JoinConfiguration` 
 支持的 `nodeRegistration.kubeletExtraArgs` 字段中。一些 kubelet 参数已被弃用，
-因此在使用这些参数之前，请在 [kubelet 参考文档](/zh/docs/reference/command-line-tools-reference/kubelet) 中检查它们的状态。
+因此在使用这些参数之前，请在 [kubelet 参考文档](/zh-cn/docs/reference/command-line-tools-reference/kubelet) 中检查它们的状态。
 {{< /note >}}
 
 <!--
 For more details see [Configuring each kubelet in your cluster using kubeadm](/docs/setup/production-environment/tools/kubeadm/kubelet-integration)
 -->
-更多详情，请参阅[使用 kubeadm 配置集群中的每个 kubelet](/zh/docs/setup/production-environment/tools/kubeadm/kubelet-integration)
+更多详情，请参阅[使用 kubeadm 配置集群中的每个 kubelet](/zh-cn/docs/setup/production-environment/tools/kubeadm/kubelet-integration)
 
 <!--
 ## Customizing kube-proxy
@@ -332,14 +336,14 @@ For more details see [Configuring each kubelet in your cluster using kubeadm](/d
 To customize kube-proxy you can pass a `KubeProxyConfiguration` next your `ClusterConfiguration` or
 `InitConfiguration` to `kubeadm init` separated by `---`.
 
-For more details you can navigate to our [API reference pages](https://godoc.org/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta3).
+For more details you can navigate to our [API reference pages](/docs/reference/config-api/kubeadm-config.v1beta3/).
 -->
 ## 自定义 kube-proxy   {#customizing-kube-proxy}
 
-要自定义 kube-proxy，你可以在 `ClusterConfiguration` 或 `InitConfiguration` 之外添加一个
-由 `---` 分隔的 `KubeProxyConfiguration`， 传递给 `kubeadm init`。
+要自定义 kube-proxy，你可以在 `ClusterConfiguration` 或 `InitConfiguration`
+之外添加一个由 `---` 分隔的 `KubeProxyConfiguration`， 传递给 `kubeadm init`。
 
-可以导航到 [API 参考页面](/docs/reference/config-api/kubeadm-config.v1beta3/) 查看更多详情，
+可以导航到 [API 参考页面](/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3/)查看更多详情，
 
 {{< note >}}
 <!--
diff --git a/content/zh/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm.md b/content/zh-cn/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm.md
similarity index 61%
rename from content/zh/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm.md
rename to content/zh-cn/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm.md
index a776d6b687..0dca978174 100644
--- a/content/zh/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm.md
+++ b/content/zh-cn/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm.md
@@ -1,11 +1,8 @@
 ---
-reviewers:
-- sig-cluster-lifecycle
 title: 使用 kubeadm 创建集群
 content_type: task
 weight: 30
 ---
-
 <!--
 reviewers:
 - sig-cluster-lifecycle
@@ -17,14 +14,19 @@ weight: 30
 <!-- overview -->
 
 <!--
-<img src="https://raw.githubusercontent.com/kubernetes/kubeadm/master/logos/stacked/color/kubeadm-stacked-color.png" align="right" width="150px">Using `kubeadm`, you can create a minimum viable Kubernetes cluster that conforms to best practices. In fact, you can use `kubeadm` to set up a cluster that will pass the [Kubernetes Conformance tests](https://kubernetes.io/blog/2017/10/software-conformance-certification).
-`kubeadm` also supports other cluster
-lifecycle functions, such as [bootstrap tokens](/docs/reference/access-authn-authz/bootstrap-tokens/) and cluster upgrades.
+<img src="/images/kubeadm-stacked-color.png" align="right" width="150px"></img>
+Using `kubeadm`, you can create a minimum viable Kubernetes cluster that conforms to best practices.
+In fact, you can use `kubeadm` to set up a cluster that will pass the
+[Kubernetes Conformance tests](/blog/2017/10/software-conformance-certification/).
+`kubeadm` also supports other cluster lifecycle functions, such as
+[bootstrap tokens](/docs/reference/access-authn-authz/bootstrap-tokens/) and cluster upgrades.
 -->
-<img src="/images/kubeadm-stacked-color.png" align="right" width="150px">使用 `kubeadm`，你
-能创建一个符合最佳实践的最小化 Kubernetes 集群。事实上，你可以使用 `kubeadm` 配置一个通过 [Kubernetes 一致性测试](https://kubernetes.io/blog/2017/10/software-conformance-certification) 的集群。
+<img src="/images/kubeadm-stacked-color.png" align="right" width="150px"></img>
+使用 `kubeadm`，你能创建一个符合最佳实践的最小化 Kubernetes 集群。
+事实上，你可以使用 `kubeadm` 配置一个通过
+[Kubernetes 一致性测试](/blog/2017/10/software-conformance-certification/)的集群。
 `kubeadm` 还支持其他集群生命周期功能，
-例如 [启动引导令牌](/zh/docs/reference/access-authn-authz/bootstrap-tokens/) 和集群升级。
+例如[启动引导令牌](/zh-cn/docs/reference/access-authn-authz/bootstrap-tokens/)和集群升级。
 
 <!--
 The `kubeadm` tool is good if you need:
@@ -50,11 +52,8 @@ as Ansible or Terraform.
 一组云服务器，Raspberry Pi 等。无论是部署到云还是本地，
 你都可以将 `kubeadm` 集成到预配置系统中，例如 Ansible 或 Terraform。
 
-
-
 ## {{% heading "prerequisites" %}}
 
-
 <!--
 To follow this guide, you need:
 
@@ -69,7 +68,7 @@ To follow this guide, you need:
 
 - 一台或多台运行兼容 deb/rpm 的 Linux 操作系统的计算机；例如：Ubuntu 或 CentOS。
 - 每台机器 2 GB 以上的内存，内存不足时应用会受限制。
-- 用作控制平面节点的计算机上至少有2个 CPU。
+- 用作控制平面节点的计算机上至少有 2 个 CPU。
 - 集群中所有计算机之间具有完全的网络连接。你可以使用公共网络或专用网络。
 
 <!--
@@ -78,13 +77,13 @@ of Kubernetes that you want to use in your new cluster.
 -->
 你还需要使用可以在新集群中部署特定 Kubernetes 版本对应的 `kubeadm`。
 
-
 <!--
-[Kubernetes' version and version skew support policy](/docs/setup/release/version-skew-policy/#supported-versions) applies to `kubeadm` as well as to Kubernetes overall.
+[Kubernetes' version and version skew support policy](/docs/setup/release/version-skew-policy/#supported-versions)
+applies to `kubeadm` as well as to Kubernetes overall.
 Check that policy to learn about what versions of Kubernetes and `kubeadm`
 are supported. This page is written for Kubernetes {{< param "version" >}}.
 -->
-[Kubernetes 版本及版本倾斜支持策略](/zh/docs/setup/release/version-skew-policy/#supported-versions) 适用于 `kubeadm` 以及整个 Kubernetes。
+[Kubernetes 版本及版本偏差策略](/zh-cn/releases/version-skew-policy/#supported-versions)适用于 `kubeadm` 以及整个 Kubernetes。
 查阅该策略以了解支持哪些版本的 Kubernetes 和 `kubeadm`。
 该页面是为 Kubernetes {{< param "version" >}} 编写的。
 
@@ -103,14 +102,12 @@ Any commands under `kubeadm alpha` are, by definition, supported on an alpha lev
 根据定义，在 `kubeadm alpha` 下的所有命令均在 alpha 级别上受支持。
 {{< /note >}}
 
-
-
 <!-- steps -->
 
 <!--
 ## Objectives
 -->
-## 目标
+## 目标 {#objectives}
 
 <!--
 * Install a single control-plane Kubernetes cluster
@@ -123,39 +120,70 @@ Any commands under `kubeadm alpha` are, by definition, supported on an alpha lev
 <!--
 ## Instructions
 -->
-## 操作指南
+## 操作指南 {#instructions}
 
 <!--
-### Installing kubeadm on your hosts
+### Preparing the hosts
 -->
-### 在你的主机上安装 kubeadm
+### 主机准备 {#preparing-the-hosts}
 
 <!--
-See ["Installing kubeadm"](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/).
+Install a {{< glossary_tooltip term_id="container-runtime" text="container runtime" >}} and kubeadm on all the hosts.
+For detailed instructions and other prerequisites, see [Installing kubeadm](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/).
 -->
-查看 ["安装 kubeadm"](/zh/docs/setup/production-environment/tools/kubeadm/install-kubeadm/)。
+在所有主机上安装 {{< glossary_tooltip term_id="container-runtime" text="容器运行时" >}} 和 kubeadm。
+详细说明和其他前提条件，请参见[安装 kubeadm](/zh-cn/docs/setup/production-environment/tools/kubeadm/install-kubeadm/)。
 
 <!--
-If you have already installed kubeadm, run `apt-get update &&
-apt-get upgrade` or `yum update` to get the latest version of kubeadm.
+If you have already installed kubeadm, run
+`apt-get update && apt-get upgrade` or
+`yum update` to get the latest version of kubeadm.
 
 When you upgrade, the kubelet restarts every few seconds as it waits in a crashloop for
 kubeadm to tell it what to do. This crashloop is expected and normal.
 After you initialize your control-plane, the kubelet runs normally.
 -->
 {{< note >}}
-如果你已经安装了kubeadm，执行 `apt-get update &&
-apt-get upgrade` 或 `yum update` 以获取 kubeadm 的最新版本。
+如果你已经安装了kubeadm，执行 `apt-get update && apt-get upgrade` 或 `yum update`
+以获取 kubeadm 的最新版本。
 
 升级时，kubelet 每隔几秒钟重新启动一次，
 在 crashloop 状态中等待 kubeadm 发布指令。crashloop 状态是正常现象。
 初始化控制平面后，kubelet 将正常运行。
 {{< /note >}}
 
+<!--
+### Preparing the required container images
+-->
+### 准备所需的容器镜像 {#preparing-the-required-container-images}
+
+<!--
+This step is optional and only applies in case you wish `kubeadm init` and `kubeadm join`
+to not download the default container images which are hosted at `k8s.gcr.io`.
+
+Kubeadm has commands that can help you pre-pull the required images
+when creating a cluster without an internet connection on its nodes.
+See [Running kubeadm without an internet connection](/docs/reference/setup-tools/kubeadm/kubeadm-init#without-internet-connection)
+for more details.
+
+Kubeadm allows you to use a custom image repository for the required images.
+See [Using custom images](/docs/reference/setup-tools/kubeadm/kubeadm-init#custom-images)
+for more details.
+-->
+这个步骤是可选的，只适用于你希望 `kubeadm init` 和 `kubeadm join` 不去下载存放在 `k8s.gcr.io` 上的默认的容器镜像的情况。
+
+当你在离线的节点上创建一个集群的时候，Kubeadm 有一些命令可以帮助你预拉取所需的镜像。
+阅读[离线运行 kubeadm](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init#without-internet-connection)
+获取更多的详情。
+
+Kubeadm 允许你给所需要的镜像指定一个自定义的镜像仓库。
+阅读[使用自定义镜像](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init#custom-images)
+获取更多的详情。
+
 <!--
 ### Initializing your control-plane node
 -->
-### 初始化控制平面节点
+### 初始化控制平面节点 {#initializing-your-control-plane-node}
 
 <!--
 The control-plane node is the machine where the control plane components run, including
@@ -177,34 +205,32 @@ for all control-plane nodes. Such an endpoint can be either a DNS name or an IP
 be passed to `kubeadm init`. Depending on which
 third-party provider you choose, you might need to set the `--pod-network-cidr` to
 a provider-specific value. See [Installing a Pod network add-on](#pod-network).
-1. (Optional) Since version 1.14, `kubeadm` tries to detect the container runtime on Linux
-by using a list of well known domain socket paths. To use different container runtime or
-if there are more than one installed on the provisioned node, specify the `--cri-socket`
-argument to `kubeadm init`. See [Installing runtime](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#installing-runtime).
+-->
+1. （推荐）如果计划将单个控制平面 kubeadm 集群升级成高可用，
+   你应该指定 `--control-plane-endpoint` 为所有控制平面节点设置共享端点。
+   端点可以是负载均衡器的 DNS 名称或 IP 地址。
+1. 选择一个 Pod 网络插件，并验证是否需要为 `kubeadm init` 传递参数。
+   根据你选择的第三方网络插件，你可能需要设置 `--pod-network-cidr` 的值。
+   请参阅[安装 Pod 网络附加组件](#pod-network)。
+
+<!--
+1. (Optional) `kubeadm` tries to detect the container runtime by using a list of well
+known endpoints. To use different container runtime or if there are more than one installed
+on the provisioned node, specify the `--cri-socket` argument to `kubeadm`. See
+[Installing a runtime](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#installing-runtime).
 1. (Optional) Unless otherwise specified, `kubeadm` uses the network interface associated
 with the default gateway to set the advertise address for this particular control-plane node's API server.
 To use a different network interface, specify the `--apiserver-advertise-address=<ip-address>` argument
 to `kubeadm init`. To deploy an IPv6 Kubernetes cluster using IPv6 addressing, you
 must specify an IPv6 address, for example `--apiserver-advertise-address=fd00::101`
-1. (Optional) Run `kubeadm config images pull` prior to `kubeadm init` to verify
-connectivity to the gcr.io container image registry.
 -->
-1. （推荐）如果计划将单个控制平面 kubeadm 集群升级成高可用，
-你应该指定 `--control-plane-endpoint` 为所有控制平面节点设置共享端点。
-端点可以是负载均衡器的 DNS 名称或 IP 地址。
-1. 选择一个Pod网络插件，并验证是否需要为 `kubeadm init` 传递参数。
-根据你选择的第三方网络插件，你可能需要设置 `--pod-network-cidr` 的值。
-请参阅 [安装Pod网络附加组件](#pod-network)。
-1. （可选）从版本1.14开始，`kubeadm` 尝试使用一系列众所周知的域套接字路径来检测 Linux 上的容器运行时。
-要使用不同的容器运行时，
-或者如果在预配置的节点上安装了多个容器，请为 `kubeadm init` 指定 `--cri-socket` 参数。
-请参阅[安装运行时](/zh/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#installing-runtime)。
+1. （可选）`kubeadm` 试图通过使用已知的端点列表来检测容器运行时。
+   使用不同的容器运行时或在预配置的节点上安装了多个容器运行时，请为 `kubeadm init` 指定 `--cri-socket` 参数。
+   请参阅[安装运行时](/zh-cn/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#installing-runtime)。
 1. （可选）除非另有说明，否则 `kubeadm` 使用与默认网关关联的网络接口来设置此控制平面节点 API server 的广播地址。
-要使用其他网络接口，请为 `kubeadm init` 设置 `--apiserver-advertise-address=<ip-address>` 参数。
-要部署使用 IPv6 地址的 Kubernetes 集群，
-必须指定一个 IPv6 地址，例如 `--apiserver-advertise-address=fd00::101`
-1. （可选）在 `kubeadm init` 之前运行 `kubeadm config images pull`，以验证与 gcr.io 容器镜像仓库的连通性。
-
+   要使用其他网络接口，请为 `kubeadm init` 设置 `--apiserver-advertise-address=<ip-address>` 参数。
+   要部署使用 IPv6 地址的 Kubernetes 集群，
+   必须指定一个 IPv6 地址，例如 `--apiserver-advertise-address=fd00::101`
 
 <!--
 To initialize the control-plane node run:
@@ -218,7 +244,7 @@ kubeadm init <args>
 <!--
 ### Considerations about apiserver-advertise-address and ControlPlaneEndpoint
 -->
-### 关于 apiserver-advertise-address 和 ControlPlaneEndpoint 的注意事项
+### 关于 apiserver-advertise-address 和 ControlPlaneEndpoint 的注意事项 {#considerations-about-apiserver-advertise-address-and-controlplaneendpoint}
 
 <!--
 While `--apiserver-advertise-address` can be used to set the advertise address for this particular
@@ -240,7 +266,7 @@ Here is an example mapping:
 -->
 这是一个示例映射：
 
-```
+```console
 192.168.0.102 cluster-endpoint
 ```
 
@@ -263,22 +289,34 @@ kubeadm 不支持将没有 `--control-plane-endpoint` 参数的单个控制平
 <!--
 ### More information
 -->
-### 更多信息
+### 更多信息 {#more-information}
 
 <!--
 For more information about `kubeadm init` arguments, see the [kubeadm reference guide](/docs/reference/setup-tools/kubeadm/).
 -->
-有关 `kubeadm init` 参数的更多信息，请参见 [kubeadm 参考指南](/zh/docs/reference/setup-tools/kubeadm/)。
+有关 `kubeadm init` 参数的更多信息，请参见 [kubeadm 参考指南](/zh-cn/docs/reference/setup-tools/kubeadm/)。
 
 <!--
-To configure `kubeadm init` with a configuration file see [Using kubeadm init with a configuration file](/docs/reference/setup-tools/kubeadm/kubeadm-init/#config-file).
+To configure `kubeadm init` with a configuration file see
+[Using kubeadm init with a configuration file](/docs/reference/setup-tools/kubeadm/kubeadm-init/#config-file).
 -->
-要使用配置文件配置 `kubeadm init` 命令，请参见[带配置文件使用 kubeadm init](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init/#config-file)。
+要使用配置文件配置 `kubeadm init` 命令，
+请参见[带配置文件使用 kubeadm init](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-init/#config-file)。
 
 <!--
-To customize control plane components, including optional IPv6 assignment to liveness probe for control plane components and etcd server, provide extra arguments to each component as documented in [custom arguments](/docs/setup/production-environment/tools/kubeadm/control-plane-flags/).
+To customize control plane components, including optional IPv6 assignment to liveness probe
+for control plane components and etcd server, provide extra arguments to each component as documented in
+[custom arguments](/docs/setup/production-environment/tools/kubeadm/control-plane-flags/).
 -->
-要自定义控制平面组件，包括可选的对控制平面组件和 etcd 服务器的活动探针提供 IPv6 支持，请参阅[自定义参数](/zh/docs/setup/production-environment/tools/kubeadm/control-plane-flags/)。
+要自定义控制平面组件，包括可选的对控制平面组件和 etcd 服务器的活动探针提供 IPv6 支持，
+请参阅[自定义参数](/zh-cn/docs/setup/production-environment/tools/kubeadm/control-plane-flags/)。
+
+<!--
+To reconfigure a cluster that has already been created see
+[Reconfiguring a kubeadm cluster](/docs/tasks/administer-cluster/kubeadm/kubeadm-reconfigure).
+-->
+要重新配置一个已经创建的集群，请参见
+[重新配置一个 kubeadm 集群](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-reconfigure)。
 
 <!--
 To run `kubeadm init` again, you must first [tear down the cluster](#tear-down).
@@ -292,7 +330,6 @@ have container image support for this architecture.
 如果将具有不同架构的节点加入集群，
 请确保已部署的 DaemonSet 对这种体系结构具有容器镜像支持。
 
-
 <!--
 `kubeadm init` first runs a series of prechecks to ensure that the machine
 is ready to run Kubernetes. These prechecks expose warnings and exit on errors. `kubeadm init`
@@ -330,7 +367,6 @@ also part of the `kubeadm init` output:
 要使非 root 用户可以运行 kubectl，请运行以下命令，
 它们也是 `kubeadm init` 输出的一部分：
 
-
 ```bash
 mkdir -p $HOME/.kube
 sudo cp -i /etc/kubernetes/admin.conf $HOME/.kube/config
@@ -351,13 +387,15 @@ export KUBECONFIG=/etc/kubernetes/admin.conf
 Kubeadm signs the certificate in the `admin.conf` to have `Subject: O = system:masters, CN = kubernetes-admin`.
 `system:masters` is a break-glass, super user group that bypasses the authorization layer (e.g. RBAC).
 Do not share the `admin.conf` file with anyone and instead grant users custom permissions by generating
-them a kubeconfig file using the `kubeadm kubeconfig user` command.
+them a kubeconfig file using the `kubeadm kubeconfig user` command. For more details see
+[Generating kubeconfig files for additional users](/docs/tasks/administer-cluster/kubeadm/kubeadm-certs#kubeconfig-additional-users).
 -->
 kubeadm 对 `admin.conf` 中的证书进行签名时，将其配置为
 `Subject: O = system:masters, CN = kubernetes-admin`。
 `system:masters` 是一个例外的、超级用户组，可以绕过鉴权层（例如 RBAC）。
 不要将 `admin.conf` 文件与任何人共享，应该使用 `kubeadm kubeconfig user`
 命令为其他用户生成 kubeconfig 文件，完成对他们的定制授权。
+更多细节请参见[为其他用户生成 kubeconfig 文件](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-certs#kubeconfig-additional-users)。
 {{< /warning >}}
 
 <!--
@@ -378,8 +416,7 @@ created, and deleted with the `kubeadm token` command. See the
 这里包含的令牌是密钥。确保它的安全，
 因为拥有此令牌的任何人都可以将经过身份验证的节点添加到你的集群中。
 可以使用 `kubeadm token` 命令列出，创建和删除这些令牌。
-请参阅 [kubeadm 参考指南](/zh/docs/reference/setup-tools/kubeadm/kubeadm-token/)。
-
+请参阅 [kubeadm 参考指南](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-token/)。
 
 <!--
 ### Installing a Pod network add-on {#pod-network}
@@ -427,7 +464,7 @@ Cluster DNS (CoreDNS) will not start up before a network is installed.**
   Make sure that your Pod network plugin supports RBAC, and so do any manifests
   that you use to deploy it.
 -->
-- 默认情况下，`kubeadm` 将集群设置为使用和强制使用 [RBAC](/zh/docs/reference/access-authn-authz/rbac/)（基于角色的访问控制）。
+- 默认情况下，`kubeadm` 将集群设置为使用和强制使用 [RBAC](/zh-cn/docs/reference/access-authn-authz/rbac/)（基于角色的访问控制）。
   确保你的 Pod 网络插件支持 RBAC，以及用于部署它的 manifests 也是如此。
 
 <!--
@@ -437,7 +474,7 @@ Cluster DNS (CoreDNS) will not start up before a network is installed.**
   IPv6 support was added to CNI in [v0.6.0](https://github.com/containernetworking/cni/releases/tag/v0.6.0).
 -->
 - 如果要为集群使用 IPv6（双协议栈或仅单协议栈 IPv6 网络），
-  请确保你的Pod网络插件支持 IPv6。
+  请确保你的 Pod 网络插件支持 IPv6。
   IPv6 支持已在 CNI [v0.6.0](https://github.com/containernetworking/cni/releases/tag/v0.6.0) 版本中添加。
 {{< /caution >}}
 
@@ -456,13 +493,13 @@ kubeadm 应该是与 CNI 无关的，对 CNI 驱动进行验证目前不在我
 Several external projects provide Kubernetes Pod networks using CNI, some of which also
 support [Network Policy](/docs/concepts/services-networking/network-policies/).
 -->
-一些外部项目为 Kubernetes 提供使用 CNI 的 Pod 网络，其中一些还支持[网络策略](/zh/docs/concepts/services-networking/network-policies/)。
+一些外部项目为 Kubernetes 提供使用 CNI 的 Pod 网络，其中一些还支持[网络策略](/zh-cn/docs/concepts/services-networking/network-policies/)。
 
 <!--
 See a list of add-ons that implement the
 [Kubernetes networking model](/docs/concepts/cluster-administration/networking/#how-to-implement-the-kubernetes-networking-model).
 -->
-请参阅实现 [Kubernetes 网络模型](/zh/docs/concepts/cluster-administration/networking/#how-to-implement-the-kubernetes-networking-model) 的附加组件列表。
+请参阅实现 [Kubernetes 网络模型](/zh-cn/docs/concepts/cluster-administration/networking/#how-to-implement-the-kubernetes-networking-model)的附加组件列表。
 
 <!--
 You can install a Pod network add-on with the following command on the
@@ -484,7 +521,8 @@ Once a Pod network has been installed, you can confirm that it is working by
 checking that the CoreDNS Pod is `Running` in the output of `kubectl get pods --all-namespaces`.
 And once the CoreDNS Pod is up and running, you can continue by joining your nodes.
 -->
-安装 Pod 网络后，您可以通过在 `kubectl get pods --all-namespaces` 输出中检查 CoreDNS Pod 是否 `Running` 来确认其是否正常运行。
+安装 Pod 网络后，你可以通过在 `kubectl get pods --all-namespaces` 输出中检查
+CoreDNS Pod 是否 `Running` 来确认其是否正常运行。
 一旦 CoreDNS Pod 启用并运行，你就可以继续加入节点。
 
 <!--
@@ -492,45 +530,75 @@ If your network is not working or CoreDNS is not in the `Running` state, check o
 [troubleshooting guide](/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm/)
 for `kubeadm`.
 -->
-如果您的网络无法正常工作或CoreDNS不在“运行中”状态，请查看 `kubeadm` 的[故障排除指南](/zh/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm/)。
+如果你的网络无法正常工作或 CoreDNS 不在“运行中”状态，请查看 `kubeadm` 的
+[故障排除指南](/zh-cn/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm/)。
 
+<!--
+### Managed node labels
+-->
+
+### 托管节点标签   {#managed-node-labels}
+
+<!--
+By default, kubeadm enables the [NodeRestriction](/docs/reference/access-authn-authz/admission-controllers/#noderestriction)
+admission controller that restricts what labels can be self-applied by kubelets on node registration.
+The admission controller documentation covers what labels are permitted to be used with the kubelet `--node-labels` option.
+The `node-role.kubernetes.io/control-plane` label is such a restricted label and kubeadm manually applies it using
+a privileged client after a node has been created. To do that manually you can do the same by using `kubectl label`
+and ensure it is using a privileged kubeconfig such as the kubeadm managed `/etc/kubernetes/admin.conf`.
+-->
+默认情况下，kubeadm 启用 [NodeRestriction](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#noderestriction)
+准入控制器来限制 kubelets 在节点注册时可以应用哪些标签。准入控制器文档描述 kubelet `--node-labels` 选项允许使用哪些标签。
+其中 `node-role.kubernetes.io/control-plane` 标签就是这样一个受限制的标签，
+kubeadm 在节点创建后使用特权客户端手动应用此标签。
+你可以使用一个有特权的 kubeconfig，比如由 kubeadm 管理的 `/etc/kubernetes/admin.conf`，
+通过执行 `kubectl label` 来手动完成操作。
 
 <!--
 ### Control plane node isolation
 -->
-### 控制平面节点隔离
+### 控制平面节点隔离 {#control-plane-node-isolation}
 
 <!--
-By default, your cluster will not schedule Pods on the control-plane node for security
-reasons. If you want to be able to schedule Pods on the control-plane node, for example for a
-single-machine Kubernetes cluster for development, run:
+By default, your cluster will not schedule Pods on the control plane nodes for security
+reasons. If you want to be able to schedule Pods on the control plane nodes,
+for example for a single machine Kubernetes cluster, run:
 -->
 默认情况下，出于安全原因，你的集群不会在控制平面节点上调度 Pod。
-如果你希望能够在控制平面节点上调度 Pod，
-例如用于开发的单机 Kubernetes 集群，请运行：
+如果你希望能够在控制平面节点上调度 Pod，例如单机 Kubernetes 集群，请运行:
 
 ```bash
-kubectl taint nodes --all node-role.kubernetes.io/master-
+kubectl taint nodes --all node-role.kubernetes.io/control-plane- node-role.kubernetes.io/master-
 ```
 <!--
-With output looking something like:
+The output will look something like:
 -->
 输出看起来像：
 
-```
+```console
 node "test-01" untainted
-taint "node-role.kubernetes.io/master:" not found
-taint "node-role.kubernetes.io/master:" not found
 ```
 
 <!--
-This will remove the `node-role.kubernetes.io/master` taint from any nodes that
-have it, including the control-plane node, meaning that the scheduler will then be able
+This will remove the `node-role.kubernetes.io/control-plane` and
+`node-role.kubernetes.io/master` taints from any nodes that have them,
+including the control plane nodes, meaning that the scheduler will then be able
 to schedule Pods everywhere.
 -->
-这将从任何拥有 `node-role.kubernetes.io/master` taint 标记的节点中移除该标记，
+这将从任何拥有 `node-role.kubernetes.io/control-plane` 和
+`node-role.kubernetes.io/master` 污点的节点上移除该污点。
+
 包括控制平面节点，这意味着调度程序将能够在任何地方调度 Pods。
 
+<!--
+{{< note >}}
+The `node-role.kubernetes.io/master` taint is deprecated and kubeadm will stop using it in version 1.25.
+{{< /note >}}
+-->
+
+{{< note >}}
+`node-role.kubernetes.io/master` 污点已被废弃，kubeadm 将在 1.25 版本中停止使用它。
+{{< /note >}}
 
 <!--
 ### Joining your nodes {#join-nodes}
@@ -545,22 +613,24 @@ The nodes are where your workloads (containers and Pods, etc) run. To add new no
 <!--
 * SSH to the machine
 * Become root (e.g. `sudo su -`)
+* [Install a runtime](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#installing-runtime)
+  if needed
 * Run the command that was output by `kubeadm init`. For example:
 -->
 * SSH 到机器
 * 成为 root （例如 `sudo su -`）
-* 运行 `kubeadm init` 输出的命令。例如：
+* 必要时[安装一个运行时](/zh-cn/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#installing-runtime)
+* 运行 `kubeadm init` 输出的命令，例如：
 
-```bash
-kubeadm join --token <token> <control-plane-host>:<control-plane-port> --discovery-token-ca-cert-hash sha256:<hash>
-```
+  ```bash
+  kubeadm join --token <token> <control-plane-host>:<control-plane-port> --discovery-token-ca-cert-hash sha256:<hash>
+  ```
 
 <!--
 If you do not have the token, you can get it by running the following command on the control-plane node:
 -->
 如果没有令牌，可以通过在控制平面节点上运行以下命令来获取令牌：
 
-
 ```bash
 kubeadm token list
 ```
@@ -582,10 +652,9 @@ TOKEN                    TTL  EXPIRES              USAGES           DESCRIPTION
 By default, tokens expire after 24 hours. If you are joining a node to the cluster after the current token has expired,
 you can create a new token by running the following command on the control-plane node:
 -->
-默认情况下，令牌会在24小时后过期。如果要在当前令牌过期后将节点加入集群，
+默认情况下，令牌会在 24 小时后过期。如果要在当前令牌过期后将节点加入集群，
 则可以通过在控制平面节点上运行以下命令来创建新令牌：
 
-
 ```bash
 kubeadm token create
 ```
@@ -599,7 +668,8 @@ The output is similar to this:
 ```
 
 <!--
-If you don't have the value of `--discovery-token-ca-cert-hash`, you can get it by running the following command chain on the control-plane node:
+If you don't have the value of `--discovery-token-ca-cert-hash`, you can get it by running the
+following command chain on the control-plane node:
 -->
 如果你没有 `--discovery-token-ca-cert-hash` 的值，则可以通过在控制平面节点上执行以下命令链来获取它：
 
@@ -629,7 +699,7 @@ The output should look something like:
 -->
 输出应类似于：
 
-```
+```console
 [preflight] Running pre-flight checks
 
 ... (log output of join workflow) ...
@@ -648,10 +718,21 @@ nodes` when run on the control-plane node.
 -->
 几秒钟后，当你在控制平面节点上执行 `kubectl get nodes`，你会注意到该节点出现在输出中。
 
+<!--
+As the cluster nodes are usually initialized sequentially, the CoreDNS Pods are likely to all run
+on the first control-plane node. To provide higher availability, please rebalance the CoreDNS Pods
+with `kubectl -n kube-system rollout restart deployment coredns` after at least one new node is joined.
+-->
+{{< note >}}
+由于集群节点通常是按顺序初始化的，CoreDNS Pod 很可能都运行在第一个控制面节点上。
+为了提供更高的可用性，请在加入至少一个新节点后
+使用 `kubectl -n kube-system rollout restart deployment coredns` 命令，重新平衡这些 CoreDNS Pod。
+{{< /note >}}
+
 <!--
 ### (Optional) Controlling your cluster from machines other than the control-plane node
 -->
-### （可选）从控制平面节点以外的计算机控制集群
+### （可选）从控制平面节点以外的计算机控制集群 {#optional-controlling-your-cluster-from-machines-other-than-the-control-plane-node}
 
 <!--
 In order to get a kubectl on some other computer (e.g. laptop) to talk to your
@@ -679,8 +760,8 @@ should save to a file and distribute to your user. After that, grant
 privileges by using `kubectl create (cluster)rolebinding`.
 -->
 {{< note >}}
-上面的示例假定为 root 用户启用了SSH访问。如果不是这种情况，
-你可以使用 `scp` 将 admin.conf 文件复制给其他允许访问的用户。
+上面的示例假定为 root 用户启用了 SSH 访问。如果不是这种情况，
+你可以使用 `scp` 将 `admin.conf` 文件复制给其他允许访问的用户。
 
 admin.conf 文件为用户提供了对集群的超级用户特权。
 该文件应谨慎使用。对于普通用户，建议生成一个你为其授予特权的唯一证书。
@@ -692,7 +773,7 @@ admin.conf 文件为用户提供了对集群的超级用户特权。
 <!--
 ### (Optional) Proxying API Server to localhost
 -->
-### （可选）将API服务器代理到本地主机
+### （可选）将 API 服务器代理到本地主机 {#optional-proxying-api-server-to-localhost}
 
 <!--
 If you want to connect to the API Server from outside the cluster you can use
@@ -707,7 +788,7 @@ kubectl --kubeconfig ./admin.conf proxy
 <!--
 You can now access the API Server locally at `http://localhost:8001/api/v1`
 -->
-你现在可以在本地访问API服务器 http://localhost:8001/api/v1
+你现在可以在本地访问 API 服务器 `http://localhost:8001/api/v1`。
 
 <!--
 ## Clean up {#tear-down}
@@ -727,15 +808,14 @@ However, if you want to deprovision your cluster more cleanly, you should
 first [drain the node](/docs/reference/generated/kubectl/kubectl-commands#drain)
 and make sure that the node is empty, then deconfigure the node.
 -->
-但是，如果要更干净地取消配置群集，
+但是，如果要更干净地取消配置集群，
 则应首先[清空节点](/docs/reference/generated/kubectl/kubectl-commands#drain)并确保该节点为空，
 然后取消配置该节点。
 
-
 <!--
 ### Remove the node
 -->
-### 删除节点
+### 删除节点 {#remove-the-node}
 
 <!--
 Talking to the control-plane node with the appropriate credentials, run:
@@ -782,7 +862,7 @@ kubectl delete node <node name>
 ```
 
 <!--
-If you wish to start over simply run `kubeadm init` or `kubeadm join` with the
+If you wish to start over, run `kubeadm init` or `kubeadm join` with the
 appropriate arguments.
 -->
 如果你想重新开始，只需运行 `kubeadm init` 或 `kubeadm join` 并加上适当的参数。
@@ -790,7 +870,7 @@ appropriate arguments.
 <!--
 ### Clean up the control plane
 -->
-### 清理控制平面
+### 清理控制平面 {#clean-up-the-control-plane}
 
 <!--
 You can use `kubeadm reset` on the control plane host to trigger a best-effort
@@ -803,8 +883,7 @@ See the [`kubeadm reset`](/docs/reference/setup-tools/kubeadm/kubeadm-reset/)
 reference documentation for more information about this subcommand and its
 options.
 -->
-有关此子命令及其选项的更多信息，请参见[`kubeadm reset`](/zh/docs/reference/setup-tools/kubeadm/kubeadm-reset/)参考文档。
-
+有关此子命令及其选项的更多信息，请参见 [`kubeadm reset`](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-reset/) 参考文档。
 
 <!-- discussion -->
 
@@ -817,8 +896,8 @@ options.
 * Verify that your cluster is running properly with [Sonobuoy](https://github.com/heptio/sonobuoy)
 * <a id="lifecycle" />See [Upgrading kubeadm clusters](/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
   for details about upgrading your cluster using `kubeadm`.
-* Learn about advanced `kubeadm` usage in the [kubeadm reference documentation](/docs/reference/setup-tools/kubeadm)
-* Learn more about Kubernetes [concepts](/docs/concepts/) and [`kubectl`](/docs/reference/kubectl/overview/).
+* Learn about advanced `kubeadm` usage in the [kubeadm reference documentation](/docs/reference/setup-tools/kubeadm/)
+* Learn more about Kubernetes [concepts](/docs/concepts/) and [`kubectl`](/docs/reference/kubectl/).
 * See the [Cluster Networking](/docs/concepts/cluster-administration/networking/) page for a bigger list
   of Pod network add-ons.
 * <a id="other-addons" />See the [list of add-ons](/docs/concepts/cluster-administration/addons/) to
@@ -829,16 +908,16 @@ options.
   See [Logging Architecture](/docs/concepts/cluster-administration/logging/) for
   an overview of what is involved.
 -->
-* 使用 [Sonobuoy](https://github.com/heptio/sonobuoy) 验证集群是否正常运行
-* <a id="lifecycle" />有关使用kubeadm升级集群的详细信息，请参阅[升级 kubeadm 集群](/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)。
-* 在[kubeadm 参考文档](/zh/docs/reference/setup-tools/kubeadm)中了解有关高级 `kubeadm` 用法的信息
-* 了解有关Kubernetes[概念](/zh/docs/concepts/)和[`kubectl`](/zh/docs/reference/kubectl/overview/)的更多信息。
-* 有关Pod网络附加组件的更多列表，请参见[集群网络](/zh/docs/concepts/cluster-administration/networking/)页面。
-* <a id="other-addons" />请参阅[附加组件列表](/zh/docs/concepts/cluster-administration/addons/)以探索其他附加组件，
-  包括用于 Kubernetes 集群的日志记录，监视，网络策略，可视化和控制的工具。
+* 使用 [Sonobuoy](https://github.com/heptio/sonobuoy) 验证集群是否正常运行。
+* <a id="lifecycle"/>有关使用 kubeadm 升级集群的详细信息，请参阅[升级 kubeadm 集群](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)。
+* 在 [kubeadm 参考文档](/zh-cn/docs/reference/setup-tools/kubeadm/)中了解有关 `kubeadm` 进阶用法的信息。
+* 了解有关 Kubernetes [概念](/zh-cn/docs/concepts/)和 [`kubectl`](/zh-cn/docs/reference/kubectl/)的更多信息。
+* 有关 Pod 网络附加组件的更多列表，请参见[集群网络](/zh-cn/docs/concepts/cluster-administration/networking/)页面。
+* <a id="other-addons" />请参阅[附加组件列表](/zh-cn/docs/concepts/cluster-administration/addons/)以探索其他附加组件，
+  包括用于 Kubernetes 集群的日志记录、监视、网络策略、可视化和控制的工具。
 * 配置集群如何处理集群事件的日志以及
-   在Pods中运行的应用程序。
-  有关所涉及内容的概述，请参见[日志架构](/zh/docs/concepts/cluster-administration/logging/)。
+   在 Pod 中运行的应用程序。
+  有关所涉及内容的概述，请参见[日志架构](/zh-cn/docs/concepts/cluster-administration/logging/)。
 
 <!--
 ### Feedback {#feedback}
@@ -855,8 +934,8 @@ options.
 * SIG Cluster Lifecycle mailing list:
   [kubernetes-sig-cluster-lifecycle](https://groups.google.com/forum/#!forum/kubernetes-sig-cluster-lifecycle)
 -->
-* 有关 bugs, 访问 [kubeadm GitHub issue tracker](https://github.com/kubernetes/kubeadm/issues)
-* 有关支持, 访问
+* 有关漏洞，访问 [kubeadm GitHub issue tracker](https://github.com/kubernetes/kubeadm/issues)
+* 有关支持，访问
   [#kubeadm](https://kubernetes.slack.com/messages/kubeadm/) Slack 频道
 * General SIG 集群生命周期开发 Slack 频道:
   [#sig-cluster-lifecycle](https://kubernetes.slack.com/messages/sig-cluster-lifecycle/)
@@ -864,44 +943,133 @@ options.
 * SIG 集群生命周期邮件列表:
   [kubernetes-sig-cluster-lifecycle](https://groups.google.com/forum/#!forum/kubernetes-sig-cluster-lifecycle)
 
-
 <!--
 ## Version skew policy {#version-skew-policy}
 -->
-## 版本倾斜政策 {#version-skew-policy}
+## 版本偏差策略 {#version-skew-policy}
 
 <!--
-The `kubeadm` tool of version v{{< skew latestVersion >}} may deploy clusters with a control plane of version v{{< skew latestVersion >}} or v{{< skew prevMinorVersion >}}.
-`kubeadm` v{{< skew latestVersion >}} can also upgrade an existing kubeadm-created cluster of version v{{< skew prevMinorVersion >}}.
+While kubeadm allows version skew against some components that it manages, it is recommended that you
+match the kubeadm version with the versions of the control plane components, kube-proxy and kubelet.
 -->
-版本 v{{< skew latestVersion >}} 的kubeadm 工具可以使用版本 v{{< skew latestVersion >}} 或 v{{< skew prevMinorVersion >}} 的控制平面部署集群。kubeadm v{{< skew latestVersion >}} 还可以升级现有的 kubeadm 创建的 v{{< skew prevMinorVersion >}} 版本的集群。
+虽然 kubeadm 允许所管理的组件有一定程度的版本偏差，
+但是建议你将 kubeadm 的版本与控制平面组件、kube-proxy 和 kubelet 的版本相匹配。
 
 <!--
-Due to that we can't see into the future, kubeadm CLI v{{< skew latestVersion >}} may or may not be able to deploy v{{< skew nextMinorVersion >}} clusters.
+### kubeadm's skew against the Kubernetes version
 -->
-由于没有未来，kubeadm CLI v{{< skew latestVersion >}} 可能会或可能无法部署 v{{< skew nextMinorVersion >}} 集群。
+
+### kubeadm 中的 Kubernetes 版本偏差 {#kubeadm-s-skew-against-the-kubernetes-version}
 
 <!--
-These resources provide more information on supported version skew between kubelets and the control plane, and other Kubernetes components:
+kubeadm can be used with Kubernetes components that are the same version as kubeadm
+or one version older. The Kubernetes version can be specified to kubeadm by using the
+`--kubernetes-version` flag of `kubeadm init` or the
+[`ClusterConfiguration.kubernetesVersion`](/docs/reference/config-api/kubeadm-config.v1beta3/)
+field when using `--config`. This option will control the versions
+of kube-apiserver, kube-controller-manager, kube-scheduler and kube-proxy.
 -->
-这些资源提供了有关 kubelet 与控制平面以及其他 Kubernetes 组件之间受支持的版本倾斜的更多信息：
+kubeadm 可以与 Kubernetes 组件一起使用，这些组件的版本与 kubeadm 相同，或者比它大一个版本。
+Kubernetes 版本可以通过使用 `--kubeadm init` 的 `--kubernetes-version` 标志或使用 `--config` 时的
+[`ClusterConfiguration.kubernetesVersion`](/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3/)
+字段指定给 kubeadm。
+这个选项将控制 kube-apiserver、kube-controller-manager、kube-scheduler 和 kube-proxy 的版本。
 
 <!--
-* Kubernetes [version and version-skew policy](/docs/setup/release/version-skew-policy/)
-* Kubeadm-specific [installation guide](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#installing-kubeadm-kubelet-and-kubectl)
+Example:
+* kubeadm is at {{< skew currentVersion >}}
+* `kubernetesVersion` must be at {{< skew currentVersion >}} or {{< skew currentVersionAddMinor -1 >}}
 -->
-* Kubernetes [版本和版本偏斜政策](/zh/docs/setup/release/version-skew-policy/)
-* Kubeadm-specific [安装指南](/zh/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#installing-kubeadm-kubelet-and-kubectl)
+例子：
 
+* kubeadm 的版本为 {{< skew currentVersion >}}。
+* `kubernetesVersion` 必须为 {{< skew currentVersion >}} 或者 {{< skew currentVersionAddMinor -1 >}}。
+
+<!--
+### kubeadm's skew against the kubelet
+-->
+### kubeadm 中 kubelet 的版本偏差 {#kubeadm-s-skew-against-the-kubelet}
+
+<!--
+Similarly to the Kubernetes version, kubeadm can be used with a kubelet version that is the same
+version as kubeadm or one version older.
+-->
+与 Kubernetes 版本类似，kubeadm 可以使用与 kubeadm 相同版本的 kubelet，
+或者比 kubeadm 老一个版本的 kubelet。
+
+<!--
+Example:
+* kubeadm is at {{< skew currentVersion >}}
+* kubelet on the host must be at {{< skew currentVersion >}} or {{< skew currentVersionAddMinor -1 >}}
+-->
+例子：
+
+* kubeadm 的版本为 {{< skew currentVersion >}}。
+* 主机上的 kubelet 必须为 {{< skew currentVersion >}} 或者 {{< skew currentVersionAddMinor -1 >}}。
+
+<!--
+### kubeadm's skew against kubeadm
+-->
+### kubeadm 支持的 kubeadm 的版本偏差 {#kubeadm-s-skew-against-kubeadm}
+
+<!--
+There are certain limitations on how kubeadm commands can operate on existing nodes or whole clusters
+managed by kubeadm.
+-->
+kubeadm 命令在现有节点或由 kubeadm 管理的整个集群上的操作有一定限制。
+
+<!--
+If new nodes are joined to the cluster, the kubeadm binary used for `kubeadm join` must match
+the last version of kubeadm used to either create the cluster with `kubeadm init` or to upgrade
+the same node with `kubeadm upgrade`. Similar rules apply to the rest of the kubeadm commands
+with the exception of `kubeadm upgrade`.
+-->
+如果新的节点加入到集群中，用于 `kubeadm join` 的 kubeadm 二进制文件必须与用 `kubeadm init`
+创建集群或用 `kubeadm upgrade` 升级同一节点时所用的 kubeadm 版本一致。
+类似的规则适用于除了 `kubeadm upgrade` 以外的其他 kubeadm 命令。
+
+<!--
+Example for `kubeadm join`:
+* kubeadm version {{< skew currentVersion >}} was used to create a cluster with `kubeadm init`
+* Joining nodes must use a kubeadm binary that is at version {{< skew currentVersion >}}
+-->
+`kubeadm join` 的例子：
+
+* 使用 `kubeadm init` 创建集群时使用版本为 {{< skew currentVersion >}} 的 kubeadm。
+* 添加节点所用的 kubeadm 可执行文件为版本 {{< skew currenttVersion >}}。
+
+<!--
+Nodes that are being upgraded must use a version of kubeadm that is the same MINOR
+version or one MINOR version newer than the version of kubeadm used for managing the
+node.
+-->
+对于正在升级的节点，所使用的的 kubeadm 必须与管理该节点的 kubeadm 具有相同的
+MINOR 版本或比后者新一个 MINOR 版本。
+
+<!--
+Example for `kubeadm upgrade`:
+* kubeadm version {{< skew currentVersionAddMinor -1 >}} was used to create or upgrade the node
+* The version of kubeadm used for upgrading the node must be at {{< skew currentVersionAddMinor -1 >}}
+or {{< skew currentVersion >}}
+-->
+`kubeadm upgrade` 的例子:
+* 用于创建或升级节点的 kubeadm 版本为 {{< skew currentVersionAddMinor -1 >}}。
+* 用于升级节点的 kubeadm 版本必须为 {{< skew currentVersionAddMinor -1 >}} 或 {{< skew currentVersion >}}。
+
+<!--
+To learn more about the version skew between the different Kubernetes component see
+the [Version Skew Policy](/releases/version-skew-policy/).
+-->
+要了解更多关于不同 Kubernetes 组件之间的版本偏差，请参见
+[版本偏差策略](/zh-cn/releases/version-skew-policy/)。
 
 <!--
 ## Limitations {#limitations}
+
+### Cluster resilience {#resilience}
 -->
 ## 局限性 {#limitations}
 
-<!--
-### Cluster resilience {#resilience}
--->
 ### 集群弹性 {#resilience}
 
 <!--
@@ -909,14 +1077,13 @@ The cluster created here has a single control-plane node, with a single etcd dat
 running on it. This means that if the control-plane node fails, your cluster may lose
 data and may need to be recreated from scratch.
 -->
-
 此处创建的集群具有单个控制平面节点，运行单个 etcd 数据库。
 这意味着如果控制平面节点发生故障，你的集群可能会丢失数据并且可能需要从头开始重新创建。
 
 <!--
 Workarounds:
 -->
-解决方法:
+解决方法：
 
 <!--
 * Regularly [back up etcd](https://coreos.com/etcd/docs/latest/admin_guide.html). The
@@ -931,8 +1098,8 @@ Workarounds:
   topology that provides [high-availability](/docs/setup/production-environment/tools/kubeadm/high-availability/).
 -->
 * 使用多个控制平面节点。你可以阅读
-  [可选的高可用性拓扑](/zh/docs/setup/production-environment/tools/kubeadm/ha-topology/) 选择集群拓扑提供的
-  [高可用性](/zh/docs/setup/production-environment/tools/kubeadm/high-availability/).
+  [可选的高可用性拓扑](/zh-cn/docs/setup/production-environment/tools/kubeadm/ha-topology/)选择集群拓扑提供的
+  [高可用性](/zh-cn/docs/setup/production-environment/tools/kubeadm/high-availability/)。
 
 <!--
 ### Platform compatibility {#multi-platform}
@@ -942,9 +1109,10 @@ Workarounds:
 <!--
 kubeadm deb/rpm packages and binaries are built for amd64, arm (32-bit), arm64, ppc64le, and s390x
 following the [multi-platform
-proposal](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/multi-platform.md).
+proposal](https://git.k8s.io/design-proposals-archive/multi-platform.md).
 -->
-kubeadm deb/rpm 软件包和二进制文件是为 amd64，arm (32-bit)，arm64，ppc64le 和 s390x 构建的遵循[多平台提案](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/multi-platform.md)。
+kubeadm deb/rpm 软件包和二进制文件是为 amd64、arm (32-bit)、arm64、ppc64le 和 s390x
+构建的遵循[多平台提案](https://git.k8s.io/design-proposals-archive/multi-platform.md)。
 
 <!--
 Multiplatform container images for the control plane and addons are also supported since v1.12.
@@ -956,9 +1124,8 @@ Only some of the network providers offer solutions for all platforms. Please con
 network providers above or the documentation from each provider to figure out whether the provider
 supports your chosen platform.
 -->
-只有一些网络提供商为所有平台提供解决方案。请查阅上方的
-网络提供商清单或每个提供商的文档以确定提供商是否
-支持你选择的平台。
+只有一些网络提供商为所有平台提供解决方案。
+请查阅上方的网络提供商清单或每个提供商的文档以确定提供商是否支持你选择的平台。
 
 <!--
 ## Troubleshooting {#troubleshooting}
@@ -966,7 +1133,8 @@ supports your chosen platform.
 ## 故障排除 {#troubleshooting}
 
 <!--
-If you are running into difficulties with kubeadm, please consult our [troubleshooting docs](/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm/).
+If you are running into difficulties with kubeadm, please consult our
+[troubleshooting docs](/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm/).
 -->
-
-如果你在使用 kubeadm 时遇到困难，请查阅我们的[故障排除文档](/zh/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm/)。
+如果你在使用 kubeadm 时遇到困难，
+请查阅我们的[故障排除文档](/zh-cn/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm/)。
diff --git a/content/zh-cn/docs/setup/production-environment/tools/kubeadm/dual-stack-support.md b/content/zh-cn/docs/setup/production-environment/tools/kubeadm/dual-stack-support.md
new file mode 100644
index 0000000000..201e0e0134
--- /dev/null
+++ b/content/zh-cn/docs/setup/production-environment/tools/kubeadm/dual-stack-support.md
@@ -0,0 +1,248 @@
+---
+title: 使用 kubeadm 支持双协议栈
+content_type: task
+weight: 110
+min-kubernetes-server-version: 1.21
+---
+
+<!--
+title: Dual-stack support with kubeadm
+content_type: task
+weight: 110
+min-kubernetes-server-version: 1.21
+-->
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
+
+<!--
+Your Kubernetes cluster includes [dual-stack](/docs/concepts/services-networking/dual-stack/) networking, which means that cluster networking lets you use either address family. In a cluster, the control plane can assign both an IPv4 address and an IPv6 address to a single {{< glossary_tooltip text="Pod" term_id="pod" >}} or a {{< glossary_tooltip text="Service" term_id="service" >}}.
+-->
+你的集群包含[双协议栈](/zh-cn/docs/concepts/services-networking/dual-stack/)组网支持，
+这意味着集群网络允许你在两种地址族间任选其一。在集群中，控制面可以为同一个
+{{< glossary_tooltip text="Pod" term_id="pod" >}} 或者 {{< glossary_tooltip text="Service" term_id="service" >}}
+同时赋予 IPv4 和 IPv6 地址。
+
+<!-- body -->
+
+## {{% heading "prerequisites" %}}
+
+<!--
+You need to have installed the {{< glossary_tooltip text="kubeadm" term_id="kubeadm" >}} tool, following the steps from [Installing kubeadm](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/).
+-->
+你需要已经遵从[安装 kubeadm](/zh-cn/docs/setup/production-environment/tools/kubeadm/install-kubeadm/)
+中所给的步骤安装了 {{< glossary_tooltip text="kubeadm" term_id="kubeadm" >}} 工具。
+
+<!--
+For each server that you want to use as a {{< glossary_tooltip text="node" term_id="node" >}}, make sure it allows IPv6 forwarding. On Linux, you can set this by running run `sysctl -w net.ipv6.conf.all.forwarding=1` as the root user on each server.
+-->
+针对你要作为{{< glossary_tooltip text="节点" term_id="node" >}}使用的每台服务器，
+确保其允许 IPv6 转发。在 Linux 节点上，你可以通过以 root 用户在每台服务器上运行 
+`sysctl -w net.ipv6.conf.all.forwarding=1` 来完成设置。
+
+<!--
+You need to have an IPv4 and and IPv6 address range to use. Cluster operators typically
+use private address ranges for IPv4. For IPv6, a cluster operator typically chooses a global
+unicast address block from within `2000::/3`, using a range that is assigned to the operator.
+You don't have to route the cluster's IP address ranges to the public internet.
+
+The size of the IP address allocations should be suitable for the number of Pods and
+Services that you are planning to run.
+-->
+你需要一个可以使用的 IPv4 和 IPv6 地址范围。集群操作人员通常为 IPv4 使用
+私有地址范围。对于 IPv6，集群操作人员通常会基于分配给该操作人员的地址范围，
+从 `2000::/3` 中选择一个全局的单播地址块。你不需要将集群的 IP 地址范围路由
+到公众互联网。
+
+{{< note >}}
+<!--
+If you are upgrading an existing cluster with the `kubeadm upgrade` command,
+`kubeadm` does not support making modifications to the pod IP address range
+(“cluster CIDR”) nor to the cluster's Service address range (“Service CIDR”).
+-->
+如果你在使用 `kubeadm upgrade` 命令升级现有的集群，`kubeadm` 不允许更改 Pod
+的 IP 地址范围（“集群 CIDR”），也不允许更改集群的服务地址范围（“Service CIDR”）。
+{{< /note >}}
+
+<!--
+### Create a dual-stack cluster
+
+To create a dual-stack cluster with `kubeadm init` you can pass command line arguments
+similar to the following example:
+-->
+### 创建双协议栈集群   {#create-a-dual-stack-cluster}
+
+要使用 `kubeadm init` 创建一个双协议栈集群，你可以传递与下面的例子类似的命令行参数：
+
+```shell
+# 这里的地址范围仅作示例使用
+kubeadm init --pod-network-cidr=10.244.0.0/16,2001:db8:42:0::/56 --service-cidr=10.96.0.0/16,2001:db8:42:1::/112
+```
+
+<!--
+To make things clearer, here is an example kubeadm 
+[configuration file](/docs/reference/config-api/kubeadm-config.v1beta3/) 
+`kubeadm-config.yaml` for the primary dual-stack control plane node.
+-->
+为了更便于理解，参看下面的名为 `kubeadm-config.yaml` 的 kubeadm
+[配置文件](/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3/)，
+该文件用于双协议栈控制面的主控制节点。
+
+```yaml
+---
+apiVersion: kubeadm.k8s.io/v1beta3
+kind: ClusterConfiguration
+networking:
+  podSubnet: 10.244.0.0/16,2001:db8:42:0::/56
+  serviceSubnet: 10.96.0.0/16,2001:db8:42:1::/112
+---
+apiVersion: kubeadm.k8s.io/v1beta3
+kind: InitConfiguration
+localAPIEndpoint:
+  advertiseAddress: "10.100.0.1"
+  bindPort: 6443
+nodeRegistration:
+  kubeletExtraArgs:
+    node-ip: 10.100.0.2,fd00:1:2:3::2
+```
+
+<!--
+`advertiseAddress` in InitConfiguration specifies the IP address that the API Server will advertise it is listening on. The value of `advertiseAddress` equals the `--apiserver-advertise-address` flag of `kubeadm init`
+
+Run kubeadm to initiate the dual-stack control plane node:
+-->
+InitConfiguration 中的 `advertiseAddress` 给出 API 服务器将公告自身要监听的
+IP 地址。`advertiseAddress` 的取值与 `kubeadm init` 的标志
+`--apiserver-advertise-address` 的取值相同。
+
+运行 kubeadm 来实例化双协议栈控制面节点：
+
+```shell
+kubeadm init --config=kubeadm-config.yaml
+```
+
+<!--
+The kube-controller-manager flags `--node-cidr-mask-size-ipv4|--node-cidr-mask-size-ipv6` are set with default values. See [configure IPv4/IPv6 dual stack](/docs/concepts/services-networking/dual-stack#configure-ipv4-ipv6-dual-stack).
+-->
+kube-controller-manager 标志 `--node-cidr-mask-size-ipv4|--node-cidr-mask-size-ipv6`
+是使用默认值来设置的。参见[配置 IPv4/IPv6 双协议栈](/zh-cn/docs/concepts/services-networking/dual-stack#configure-ipv4-ipv6-dual-stack)。
+
+{{< note >}}
+<!--
+The `--apiserver-advertise-address` flag does not support dual-stack.
+-->
+标志 `--apiserver-advertise-address` 不支持双协议栈。
+{{< /note >}}
+
+<!--
+### Join a node to dual-stack cluster
+
+Before joining a node, make sure that the node has IPv6 routable network interface and allows IPv6 forwarding.
+
+Here is an example kubeadm [configuration file](/docs/reference/config-api/kubeadm-config.v1beta3/)
+`kubeadm-config.yaml` for joining a worker node to the cluster.
+-->
+### 向双协议栈集群添加节点   {#join-a-node-to-dual-stack-cluster}
+
+在添加节点之前，请确保该节点具有 IPv6 可路由的网络接口并且启用了 IPv6 转发。
+
+下面的名为 `kubeadm-config.yaml` 的 kubeadm
+[配置文件](/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3/)
+示例用于向集群中添加工作节点。
+
+```yaml
+apiVersion: kubeadm.k8s.io/v1beta3
+kind: JoinConfiguration
+discovery:
+  bootstrapToken:
+    apiServerEndpoint: 10.100.0.1:6443
+    token: "clvldh.vjjwg16ucnhp94qr"
+    caCertHashes:
+    - "sha256:a4863cde706cfc580a439f842cc65d5ef112b7b2be31628513a9881cf0d9fe0e"
+    # 请更改上面的认证信息，使之与你的集群中实际使用的令牌和 CA 证书匹配
+nodeRegistration:
+  kubeletExtraArgs:
+    node-ip: 10.100.0.3,fd00:1:2:3::3
+```
+
+<!--
+Also, here is an example kubeadm [configuration file](/docs/reference/config-api/kubeadm-config.v1beta3/)
+`kubeadm-config.yaml` for joining another control plane node to the cluster.
+-->
+下面的名为 `kubeadm-config.yaml` 的 kubeadm
+[配置文件](/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3/)
+示例用于向集群中添加另一个控制面节点。
+
+```yaml
+apiVersion: kubeadm.k8s.io/v1beta3
+kind: JoinConfiguration
+controlPlane:
+  localAPIEndpoint:
+    advertiseAddress: "10.100.0.2"
+    bindPort: 6443
+discovery:
+  bootstrapToken:
+    apiServerEndpoint: 10.100.0.1:6443
+    token: "clvldh.vjjwg16ucnhp94qr"
+    caCertHashes:
+    - "sha256:a4863cde706cfc580a439f842cc65d5ef112b7b2be31628513a9881cf0d9fe0e"
+    # 请更改上面的认证信息，使之与你的集群中实际使用的令牌和 CA 证书匹配
+nodeRegistration:
+  kubeletExtraArgs:
+    node-ip: 10.100.0.4,fd00:1:2:3::4
+```
+
+<!--
+`advertiseAddress` in JoinConfiguration.controlPlane specifies the IP address that the API Server will advertise it is listening on. The value of `advertiseAddress` equals the `--apiserver-advertise-address` flag of `kubeadm join`.
+-->
+JoinConfiguration.controlPlane 中的 `advertiseAddress` 设定 API 服务器将公告自身要监听的
+IP 地址。`advertiseAddress` 的取值与 `kubeadm join` 的标志
+`--apiserver-advertise-address` 的取值相同。
+
+```shell
+kubeadm join --config=kubeadm-config.yaml
+```
+
+<!--
+### Create a single-stack cluster
+-->
+### 创建单协议栈集群    {#create-a-single-stack-cluster}
+
+{{< note >}}
+<!--
+Dual-stack support doesn't mean that you need to use dual-stack addressing.
+You can deploy a single-stack cluster that has the dual-stack networking feature enabled.
+-->
+双协议栈支持并不意味着你需要使用双协议栈来寻址。
+你可以部署一个启用了双协议栈联网特性的单协议栈集群。
+{{< /note >}}
+
+<!--
+To make things more clear, here is an example kubeadm
+[configuration file](/docs/reference/config-api/kubeadm-config.v1beta3/)
+`kubeadm-config.yaml` for the single-stack control plane node.
+-->
+为了更便于理解，参看下面的名为 `kubeadm-config.yaml` 的 kubeadm
+[配置文件](/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3/)示例，
+该文件用于单协议栈控制面节点。
+
+```yaml
+apiVersion: kubeadm.k8s.io/v1beta3
+kind: ClusterConfiguration
+networking:
+  podSubnet: 10.244.0.0/16
+  serviceSubnet: 10.96.0.0/16
+```
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* [Validate IPv4/IPv6 dual-stack](/docs/tasks/network/validate-dual-stack) networking
+* Read about [Dual-stack](/docs/concepts/services-networking/dual-stack/) cluster networking
+* Learn more about the kubeadm [configuration format](/docs/reference/config-api/kubeadm-config.v1beta3/)
+-->
+* [验证 IPv4/IPv6 双协议栈](/zh-cn/docs/tasks/network/validate-dual-stack)联网
+* 阅读[双协议栈](/zh-cn/docs/concepts/services-networking/dual-stack/)集群网络
+* 进一步了解 kubeadm [配置格式](/docs/reference/config-api/kubeadm-config.v1beta3/)
+
diff --git a/content/zh/docs/setup/production-environment/tools/kubeadm/ha-topology.md b/content/zh-cn/docs/setup/production-environment/tools/kubeadm/ha-topology.md
similarity index 60%
rename from content/zh/docs/setup/production-environment/tools/kubeadm/ha-topology.md
rename to content/zh-cn/docs/setup/production-environment/tools/kubeadm/ha-topology.md
index fb41278c42..4694d74121 100644
--- a/content/zh/docs/setup/production-environment/tools/kubeadm/ha-topology.md
+++ b/content/zh-cn/docs/setup/production-environment/tools/kubeadm/ha-topology.md
@@ -1,18 +1,14 @@
 ---
-reviewers:
-- sig-cluster-lifecycle
 title: 高可用拓扑选项
 content_type: concept
 weight: 50
 ---
 <!--
----
 reviewers:
 - sig-cluster-lifecycle
-title: Options for Highly Available topology
+title: Options for Highly Available Topology
 content_type: concept
 weight: 50
----
 -->
 
 <!-- overview -->
@@ -20,12 +16,12 @@ weight: 50
 <!--
 This page explains the two options for configuring the topology of your highly available (HA) Kubernetes clusters.
 -->
-本页面介绍了配置高可用（HA） Kubernetes 集群拓扑的两个选项。
+本页面介绍了配置高可用（HA）Kubernetes 集群拓扑的两个选项。
 
 <!--
 You can set up an HA cluster:
 -->
-您可以设置 HA 集群：
+你可以设置 HA 集群：
 
 <!--
 - With stacked control plane nodes, where etcd nodes are colocated with control plane nodes
@@ -37,38 +33,37 @@ You can set up an HA cluster:
 <!--
 You should carefully consider the advantages and disadvantages of each topology before setting up an HA cluster.
 -->
-在设置 HA 集群之前，您应该仔细考虑每种拓扑的优缺点。
+在设置 HA 集群之前，你应该仔细考虑每种拓扑的优缺点。
 
+{{< note >}}
 <!--
 kubeadm bootstraps the etcd cluster statically. Read the etcd [Clustering Guide](https://github.com/etcd-io/etcd/blob/release-3.4/Documentation/op-guide/clustering.md#static)
 for more details.
 -->
-
-{{< note >}}
-kubeadm 静态引导 etcd 集群。 阅读 etcd [集群指南](https://github.com/etcd-io/etcd/blob/release-3.4/Documentation/op-guide/clustering.md#static)以获得更多详细信息。
+kubeadm 静态引导 etcd 集群。
+阅读 etcd [集群指南](https://github.com/etcd-io/etcd/blob/release-3.4/Documentation/op-guide/clustering.md#static)以获得更多详细信息。
 {{< /note >}}
 
-
-
 <!-- body -->
 
 <!--
 ## Stacked etcd topology
 -->
-## 堆叠（Stacked） etcd 拓扑
+## 堆叠（Stacked）etcd 拓扑    {#stacked-etcd-topology}
 
 <!--
-A stacked HA cluster is a [topology](https://en.wikipedia.org/wiki/Network_topology) where the distributeddata storage cluster provided by etcd is stacked on top of the cluster formed by the nodes managed by kubeadm that run control plane components.
+A stacked HA cluster is a [topology](https://en.wikipedia.org/wiki/Network_topology) where the distributed
+data storage cluster provided by etcd is stacked on top of the cluster formed by the nodes managed by
+kubeadm that run control plane components.
 -->
-堆叠（Stacked） HA 集群是一种这样的[拓扑](https://en.wikipedia.org/wiki/Network_topology)，其中 etcd 分布式数据存储集群堆叠在 kubeadm 管理的控制平面节点上，作为控制平面的一个组件运行。
+堆叠（Stacked）HA 集群是一种这样的[拓扑](https://zh.wikipedia.org/wiki/%E7%BD%91%E7%BB%9C%E6%8B%93%E6%89%91)，
+其中 etcd 分布式数据存储集群堆叠在 kubeadm 管理的控制平面节点上，作为控制平面的一个组件运行。
 
 <!--
 Each control plane node runs an instance of the `kube-apiserver`, `kube-scheduler`, and `kube-controller-manager`.
--->
-每个控制平面节点运行 `kube-apiserver`，`kube-scheduler` 和 `kube-controller-manager` 实例。
-<!--
 The `kube-apiserver` is exposed to worker nodes using a load balancer.
 -->
+每个控制平面节点运行 `kube-apiserver`、`kube-scheduler` 和 `kube-controller-manager` 实例。
 `kube-apiserver` 使用负载均衡器暴露给工作节点。
 
 <!--
@@ -76,28 +71,34 @@ Each control plane node creates a local etcd member and this etcd member communi
 the `kube-apiserver` of this node. The same applies to the local `kube-controller-manager`
 and `kube-scheduler` instances.
 -->
-每个控制平面节点创建一个本地 etcd 成员（member），这个 etcd 成员只与该节点的 `kube-apiserver` 通信。这同样适用于本地 `kube-controller-manager` 和 `kube-scheduler` 实例。
+每个控制平面节点创建一个本地 etcd 成员（member），这个 etcd 成员只与该节点的 `kube-apiserver` 通信。
+这同样适用于本地 `kube-controller-manager` 和 `kube-scheduler` 实例。
 
 <!--
-This topology couples the control planes and etcd members on the same nodes. It is simpler to set up than a cluster with external etcd nodes, and simpler to manage for replication.
+This topology couples the control planes and etcd members on the same nodes. It is simpler to set up than a cluster
+with external etcd nodes, and simpler to manage for replication.
 -->
-这种拓扑将控制平面和 etcd 成员耦合在同一节点上。相对使用外部 etcd 集群，设置起来更简单，而且更易于副本管理。
+这种拓扑将控制平面和 etcd 成员耦合在同一节点上。相对使用外部 etcd 集群，
+设置起来更简单，而且更易于副本管理。
 
 <!--
-However, a stacked cluster runs the risk of failed coupling. If one node goes down, both an etcd member and a controlplane instance are lost, and redundancy is compromised. You can mitigate this risk by adding more control plane nodes.
+However, a stacked cluster runs the risk of failed coupling. If one node goes down, both an etcd member and a control
+plane instance are lost, and redundancy is compromised. You can mitigate this risk by adding more control plane nodes.
 -->
-然而，堆叠集群存在耦合失败的风险。如果一个节点发生故障，则 etcd 成员和控制平面实例都将丢失，并且冗余会受到影响。您可以通过添加更多控制平面节点来降低此风险。
+然而，堆叠集群存在耦合失败的风险。如果一个节点发生故障，则 etcd 成员和控制平面实例都将丢失，
+并且冗余会受到影响。你可以通过添加更多控制平面节点来降低此风险。
 
 <!--
 You should therefore run a minimum of three stacked control plane nodes for an HA cluster.
 -->
-因此，您应该为 HA 集群运行至少三个堆叠的控制平面节点。
+因此，你应该为 HA 集群运行至少三个堆叠的控制平面节点。
 
 <!--
 This is the default topology in kubeadm. A local etcd member is created automatically
 on control plane nodes when using `kubeadm init` and `kubeadm join --control-plane`.
 -->
-这是 kubeadm 中的默认拓扑。当使用 `kubeadm init` 和 `kubeadm join --control-plane` 时，在控制平面节点上会自动创建本地 etcd 成员。
+这是 kubeadm 中的默认拓扑。当使用 `kubeadm init` 和 `kubeadm join --control-plane` 时，
+在控制平面节点上会自动创建本地 etcd 成员。
 
 <!--
 ![Stacked etcd topology](/images/kubeadm/kubeadm-ha-topology-stacked-etcd.svg)
@@ -107,30 +108,35 @@ on control plane nodes when using `kubeadm init` and `kubeadm join --control-pla
 <!--
 ## External etcd topology
 -->
-## 外部 etcd 拓扑
+## 外部 etcd 拓扑    {#external-etcd-topology}
 
 <!--
 An HA cluster with external etcd is a [topology](https://en.wikipedia.org/wiki/Network_topology) where the distributed data storage cluster provided by etcd is external to the cluster formed by the nodes that run control plane components.
 -->
-具有外部 etcd 的 HA 集群是一种这样的[拓扑](https://en.wikipedia.org/wiki/Network_topology)，其中 etcd 分布式数据存储集群在独立于控制平面节点的其他节点上运行。
+具有外部 etcd 的 HA 集群是一种这样的[拓扑](https://zh.wikipedia.org/wiki/%E7%BD%91%E7%BB%9C%E6%8B%93%E6%89%91)，
+其中 etcd 分布式数据存储集群在独立于控制平面节点的其他节点上运行。
 
 <!--
 Like the stacked etcd topology, each control plane node in an external etcd topology runs an instance of the `kube-apiserver`, `kube-scheduler`, and `kube-controller-manager`. And the `kube-apiserver` is exposed to worker nodes using a load balancer. However, etcd members run on separate hosts, and each etcd host communicates with the `kube-apiserver` of each control plane node.
 -->
-就像堆叠的 etcd 拓扑一样，外部 etcd 拓扑中的每个控制平面节点都运行 `kube-apiserver`，`kube-scheduler` 和 `kube-controller-manager` 实例。同样， `kube-apiserver` 使用负载均衡器暴露给工作节点。但是，etcd 成员在不同的主机上运行，​​每个 etcd 主机与每个控制平面节点的 `kube-apiserver` 通信。
+就像堆叠的 etcd 拓扑一样，外部 etcd 拓扑中的每个控制平面节点都会运行
+`kube-apiserver`、`kube-scheduler` 和 `kube-controller-manager` 实例。
+同样，`kube-apiserver` 使用负载均衡器暴露给工作节点。但是 etcd 成员在不同的主机上运行，
+每个 etcd 主机与每个控制平面节点的 `kube-apiserver` 通信。
 
 <!--
-This topology decouples the control plane and etcd member. It therefore provides an HA setup wherelosing a control plane instance or an etcd member has less impact and does not affectthe cluster redundancy as much as the stacked HA topology.
+This topology decouples the control plane and etcd member. It therefore provides an HA setup where
+losing a control plane instance or an etcd member has less impact and does not affect
+the cluster redundancy as much as the stacked HA topology.
 -->
-这种拓扑结构解耦了控制平面和 etcd 成员。因此，它提供了一种 HA 设置，其中失去控制平面实例或者 etcd 成员的影响较小，并且不会像堆叠的 HA 拓扑那样影响集群冗余。
+这种拓扑结构解耦了控制平面和 etcd 成员。因此它提供了一种 HA 设置，
+其中失去控制平面实例或者 etcd 成员的影响较小，并且不会像堆叠的 HA 拓扑那样影响集群冗余。
 
 <!--
 However, this topology requires twice the number of hosts as the stacked HA topology.
--->
-但是，此拓扑需要两倍于堆叠 HA 拓扑的主机数量。
-<!--
 A minimum of three hosts for control plane nodes and three hosts for etcd nodes are required for an HA cluster with this topology.
 -->
+但此拓扑需要两倍于堆叠 HA 拓扑的主机数量。
 具有此拓扑的 HA 集群至少需要三个用于控制平面节点的主机和三个用于 etcd 节点的主机。
 
 <!--
@@ -138,14 +144,11 @@ A minimum of three hosts for control plane nodes and three hosts for etcd nodes
 -->
 ![外部 etcd 拓扑](/images/kubeadm/kubeadm-ha-topology-external-etcd.svg)
 
-
-
 ## {{% heading "whatsnext" %}}
 
-
 <!--
 - [Set up a highly available cluster with kubeadm](/docs/setup/production-environment/tools/kubeadm/high-availability/)
 -->
- -  [使用 kubeadm 设置高可用集群](/zh/docs/setup/production-environment/tools/kubeadm/high-availability/)
+- [使用 kubeadm 设置高可用集群](/zh-cn/docs/setup/production-environment/tools/kubeadm/high-availability/)
 
 
diff --git a/content/zh-cn/docs/setup/production-environment/tools/kubeadm/high-availability.md b/content/zh-cn/docs/setup/production-environment/tools/kubeadm/high-availability.md
new file mode 100644
index 0000000000..cf1424c3ec
--- /dev/null
+++ b/content/zh-cn/docs/setup/production-environment/tools/kubeadm/high-availability.md
@@ -0,0 +1,759 @@
+---
+title: 利用 kubeadm 创建高可用集群
+content_type: task
+weight: 60
+---
+
+<!--
+reviewers:
+- sig-cluster-lifecycle
+title: Creating Highly Available Clusters with kubeadm
+content_type: task
+weight: 60
+-->
+
+<!-- overview -->
+
+<!--
+This page explains two different approaches to setting up a highly available Kubernetes
+cluster using kubeadm:
+
+- With stacked control plane nodes. This approach requires less infrastructure. The etcd members
+  and control plane nodes are co-located.
+- With an external etcd cluster. This approach requires more infrastructure. The
+  control plane nodes and etcd members are separated.
+-->
+本文讲述了使用 kubeadm 设置一个高可用的 Kubernetes 集群的两种不同方式：
+
+- 使用具有堆叠的控制平面节点。这种方法所需基础设施较少。etcd 成员和控制平面节点位于同一位置。
+- 使用外部集群。这种方法所需基础设施较多。控制平面的节点和 etcd 成员是分开的。
+
+<!--
+Before proceeding, you should carefully consider which approach best meets the needs of your applications
+and environment. [Options for Highly Available topology](/docs/setup/production-environment/tools/kubeadm/ha-topology/) outlines the advantages and disadvantages of each.
+
+If you encounter issues with setting up the HA cluster, please report these
+in the kubeadm [issue tracker](https://github.com/kubernetes/kubeadm/issues/new).
+
+See also the [upgrade documentation](/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/).
+-->
+在下一步之前，你应该仔细考虑哪种方法更好地满足你的应用程序和环境的需求。
+[高可用拓扑选项](/zh-cn/docs/setup/production-environment/tools/kubeadm/ha-topology/) 讲述了每种方法的优缺点。
+
+如果你在安装 HA 集群时遇到问题，请在 kubeadm [问题跟踪](https://github.com/kubernetes/kubeadm/issues/new)里向我们提供反馈。
+
+你也可以阅读[升级文档](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)。
+
+{{< caution >}}
+<!--
+This page does not address running your cluster on a cloud provider. In a cloud
+environment, neither approach documented here works with Service objects of type
+LoadBalancer, or with dynamic PersistentVolumes.
+-->
+这篇文档没有讲述在云提供商上运行集群的问题。在云环境中，
+此处记录的方法不适用于类型为 LoadBalancer 的服务对象，也不适用于具有动态 PersistentVolume 的对象。
+{{< /caution >}}
+
+## {{% heading "prerequisites" %}}
+
+<!--
+The prerequisites depend on which topology you have selected for your cluster's
+control plane:
+-->
+根据集群控制平面所选择的拓扑结构不同，准备工作也有所差异：
+
+{{< tabs name="prerequisite_tabs" >}}
+{{% tab name="堆叠（Stacked） etcd 拓扑" %}}
+
+<!--
+    note to reviewers: these prerequisites should match the start of the
+    external etc tab
+-->
+<!--
+You need:
+
+- Three or more machines that meet [kubeadm's minimum requirements](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#before-you-begin) for
+  the control-plane nodes. Having an odd number of control plane nodes can help
+  with leader selection in the case of machine or zone failure.
+  - including a {{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}, already set up and working
+- Three or more machines that meet [kubeadm's minimum
+  requirements](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#before-you-begin) for the workers
+  - including a container runtime, already set up and working
+- Full network connectivity between all machines in the cluster (public or
+  private network)
+- Superuser privileges on all machines using `sudo`
+  - You can use a different tool; this guide uses `sudo` in the examples.
+- SSH access from one device to all nodes in the system
+- `kubeadm` and `kubelet` already installed on all machines.
+
+_See [Stacked etcd topology](/docs/setup/production-environment/tools/kubeadm/ha-topology/#stacked-etcd-topology) for context._
+-->
+需要准备：
+
+- 配置满足 [kubeadm 的最低要求](/zh-cn/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#准备开始)
+  的三台机器作为控制面节点。奇数台控制平面节点有利于机器故障或者网络分区时进行重新选主。
+  - 机器已经安装好{{< glossary_tooltip text="容器运行时" term_id="container-runtime" >}}，并正常运行
+- 配置满足 [kubeadm 的最低要求](/zh-cn/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#准备开始)
+  的三台机器作为工作节点
+  - 机器已经安装好{{< glossary_tooltip text="容器运行时" term_id="container-runtime" >}}，并正常运行
+- 在集群中，确保所有计算机之间存在全网络连接（公网或私网）
+- 在所有机器上具有 sudo 权限
+  - 可以使用其他工具；本教程以 `sudo` 举例
+- 从某台设备通过 SSH 访问系统中所有节点的能力
+- 所有机器上已经安装 `kubeadm` 和 `kubelet`
+
+**拓扑详情请参考[堆叠（Stacked）etcd 拓扑](/zh-cn/docs/setup/production-environment/tools/kubeadm/ha-topology/#stacked-etcd-topology)。**
+
+{{% /tab %}}
+{{% tab name="外部 etcd 拓扑" %}}
+
+<!--
+    note to reviewers: these prerequisites should match the start of the
+    stacked etc tab
+-->
+<!--
+You need:
+
+- Three or more machines that meet [kubeadm's minimum requirements](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#before-you-begin) for
+  the control-plane nodes. Having an odd number of control plane nodes can help
+  with leader selection in the case of machine or zone failure.
+  - including a {{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}, already set up and working
+- Three or more machines that meet [kubeadm's minimum
+  requirements](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#before-you-begin) for the workers
+  - including a container runtime, already set up and working
+- Full network connectivity between all machines in the cluster (public or
+  private network)
+- Superuser privileges on all machines using `sudo`
+  - You can use a different tool; this guide uses `sudo` in the examples.
+- SSH access from one device to all nodes in the system
+- `kubeadm` and `kubelet` already installed on all machines.
+-->
+需要准备：
+
+- 配置满足 [kubeadm 的最低要求](/zh-cn/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#准备开始)
+  的三台机器作为控制面节点。奇数台控制平面节点有利于机器故障或者网络分区时进行重新选主。
+  - 机器已经安装好{{< glossary_tooltip text="容器运行时" term_id="container-runtime" >}}，并正常运行
+- 配置满足 [kubeadm 的最低要求](/zh-cn/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#准备开始)
+  的三台机器作为工作节点
+  - 机器已经安装好{{< glossary_tooltip text="容器运行时" term_id="container-runtime" >}}，并正常运行
+- 在集群中，确保所有计算机之间存在全网络连接（公网或私网）
+- 在所有机器上具有 sudo 权限
+  - 可以使用其他工具；本教程以 `sudo` 举例
+- 从某台设备通过 SSH 访问系统中所有节点的能力
+- 所有机器上已经安装 `kubeadm` 和 `kubelet`
+
+<!-- end of shared prerequisites -->
+<!--
+And you also need:
+- Three or more additional machines, that will become etcd cluster members.
+  Having an odd number of members in the etcd cluster is a requirement for achieving
+  optimal voting quorum.
+  - These machines again need to have `kubeadm` and `kubelet` installed.
+  - These machines also require a container runtime, that is already set up and working.
+-->
+还需要准备：
+- 给 etcd 集群使用的另外三台及以上机器。为了分布式一致性算法达到更好的投票效果，集群必须由奇数个节点组成。
+  - 机器上已经安装 `kubeadm` 和 `kubelet`。
+  - 机器上同样需要安装好容器运行时，并能正常运行。
+
+<!--
+_See [External etcd topology](/docs/setup/production-environment/tools/kubeadm/ha-topology/#external-etcd-topology) for context._
+-->
+**拓扑详情请参考[外部 etcd 拓扑](/zh-cn/docs/setup/production-environment/tools/kubeadm/ha-topology/#external-etcd-topology)。**
+
+{{% /tab %}}
+{{< /tabs >}}
+
+<!-- ### Container images -->
+### 容器镜像
+
+<!--
+Each host should have access read and fetch images from the Kubernetes container image registry, `k8s.gcr.io`.
+If you want to deploy a highly-available cluster where the hosts do not have access to pull images, this is possible. You must ensure by some other means that the correct container images are already available on the relevant hosts.
+-->
+每台主机需要能够从 Kubernetes 容器镜像仓库（`k8s.gcr.io`）读取和拉取镜像。
+想要在无法拉取 Kubernetes 仓库镜像的机器上部署高可用集群也是可行的。通过其他的手段保证主机上已经有对应的容器镜像即可。
+
+<!-- ### Command line interface {#kubectl} -->
+### 命令行  {#kubectl}
+
+<!--
+To manage Kubernetes once your cluster is set up, you should
+[install kubectl](/docs/tasks/tools/#kubectl) on your PC. It is also useful
+to install the `kubectl` tool on each control plane node, as this can be
+helpful for troubleshooting.
+-->
+一旦集群创建成功，需要在 PC 上[安装 kubectl](/zh-cn/docs/tasks/tools/#kubectl) 用于管理 Kubernetes。
+为了方便故障排查，也可以在每个控制平面节点上安装 `kubectl`。
+
+<!-- steps -->
+
+<!--
+## First steps for both methods
+
+### Create load balancer for kube-apiserver
+-->
+## 这两种方法的第一步
+
+### 为 kube-apiserver 创建负载均衡器
+
+{{< note >}}
+<!--
+There are many configurations for load balancers. The following example is only one
+option. Your cluster requirements may need a different configuration.
+-->
+使用负载均衡器需要许多配置。你的集群搭建可能需要不同的配置。下面的例子只是其中的一方面配置。
+{{< /note >}}
+
+<!--
+1. Create a kube-apiserver load balancer with a name that resolves to DNS.
+
+   - In a cloud environment you should place your control plane nodes behind a TCP
+     forwarding load balancer. This load balancer distributes traffic to all
+     healthy control plane nodes in its target list. The health check for
+     an apiserver is a TCP check on the port the kube-apiserver listens on
+     (default value `:6443`).
+
+   - It is not recommended to use an IP address directly in a cloud environment.
+
+   - The load balancer must be able to communicate with all control plane nodes
+     on the apiserver port. It must also allow incoming traffic on its
+     listening port.
+
+   - Make sure the address of the load balancer always matches
+     the address of kubeadm's `ControlPlaneEndpoint`.
+
+   - Read the [Options for Software Load Balancing](https://git.k8s.io/kubeadm/docs/ha-considerations.md#options-for-software-load-balancing)
+     guide for more details.
+-->
+1. 创建一个名为 kube-apiserver 的负载均衡器解析 DNS。
+
+   - 在云环境中，应该将控制平面节点放置在 TCP 转发负载平衡后面。
+     该负载均衡器将流量分配给目标列表中所有运行状况良好的控制平面节点。
+     API 服务器的健康检查是在 kube-apiserver 的监听端口（默认值 `:6443`）
+     上进行的一个 TCP 检查。
+
+   - 不建议在云环境中直接使用 IP 地址。
+
+   - 负载均衡器必须能够在 API 服务器端口上与所有控制平面节点通信。
+     它还必须允许其监听端口的入站流量。
+
+   - 确保负载均衡器的地址始终匹配 kubeadm 的 `ControlPlaneEndpoint` 地址。
+
+   - 阅读[软件负载平衡选项指南](https://git.k8s.io/kubeadm/docs/ha-considerations.md#options-for-software-load-balancing)
+     以获取更多详细信息。
+
+<!--
+1. Add the first control plane node to the load balancer, and test the
+   connection:
+
+   ```shell
+   nc -v <LOAD_BALANCER_IP> <PORT>
+   ```
+
+   A connection refused error is expected because the API server is not yet
+   running. A timeout, however, means the load balancer cannot communicate
+   with the control plane node. If a timeout occurs, reconfigure the load
+   balancer to communicate with the control plane node.
+
+1. Add the remaining control plane nodes to the load balancer target group.
+-->
+2. 添加第一个控制平面节点到负载均衡器并测试连接：
+
+   ```shell
+   nc -v LOAD_BALANCER_IP PORT
+   ```
+
+   由于 API 服务器尚未运行，预期会出现一个连接拒绝错误。
+   然而超时意味着负载均衡器不能和控制平面节点通信。
+   如果发生超时，请重新配置负载均衡器与控制平面节点进行通信。
+
+3. 将其余控制平面节点添加到负载均衡器目标组。
+
+<!--
+## Stacked control plane and etcd nodes
+
+### Steps for the first control plane node
+-->
+## 使用堆控制平面和 etcd 节点
+
+### 控制平面节点的第一步
+
+<!--
+1. Initialize the control plane:
+
+   ```sh
+   sudo kubeadm init --control-plane-endpoint "LOAD_BALANCER_DNS:LOAD_BALANCER_PORT" --upload-certs
+   ```
+   - You can use the `--kubernetes-version` flag to set the Kubernetes version to use.
+     It is recommended that the versions of kubeadm, kubelet, kubectl and Kubernetes match.
+   - The `--control-plane-endpoint` flag should be set to the address or DNS and port of the load balancer.
+
+   - The `--upload-certs` flag is used to upload the certificates that should be shared
+     across all the control-plane instances to the cluster. If instead, you prefer to copy certs across
+     control-plane nodes manually or using automation tools, please remove this flag and refer to [Manual
+     certificate distribution](#manual-certs) section below.
+-->
+1. 初始化控制平面：
+
+   ```shell
+   sudo kubeadm init --control-plane-endpoint "LOAD_BALANCER_DNS:LOAD_BALANCER_PORT" --upload-certs
+   ```
+
+   - 你可以使用 `--kubernetes-version` 标志来设置要使用的 Kubernetes 版本。
+     建议将 kubeadm、kebelet、kubectl 和 Kubernetes 的版本匹配。
+   - 这个 `--control-plane-endpoint` 标志应该被设置成负载均衡器的地址或 DNS 和端口。
+   - 这个 `--upload-certs` 标志用来将在所有控制平面实例之间的共享证书上传到集群。
+     如果正好相反，你更喜欢手动地通过控制平面节点或者使用自动化工具复制证书，
+     请删除此标志并参考如下部分[证书分配手册](#manual-certs)。
+
+   {{< note >}}
+   <!--
+   The `kubeadm init` flags `--config` and `--certificate-key` cannot be mixed, therefore if you want
+   to use the [kubeadm configuration](/docs/reference/config-api/kubeadm-config.v1beta3/)
+   you must add the `certificateKey` field in the appropriate config locations
+   (under `InitConfiguration` and `JoinConfiguration: controlPlane`).
+   -->
+   标志 `kubeadm init`、`--config` 和 `--certificate-key` 不能混合使用，
+   因此如果你要使用
+   [kubeadm 配置](/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3/)，你必须在相应的配置结构
+   （位于 `InitConfiguration` 和 `JoinConfiguration: controlPlane`）添加 `certificateKey` 字段。
+   {{< /note >}}
+
+   {{< note >}}
+   <!--
+   Some CNI network plugins require additional configuration, for example specifying the pod IP CIDR, while others do not.
+   See the [CNI network documentation](/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/#pod-network).
+   To add a pod CIDR pass the flag `--pod-network-cidr`, or if you are using a kubeadm configuration file
+   set the `podSubnet` field under the `networking` object of `ClusterConfiguration`.
+   -->
+   一些 CNI 网络插件需要更多配置，例如指定 Pod IP CIDR，而其他插件则不需要。参考
+   [CNI 网络文档](/zh-cn/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/#pod-network)。
+   通过传递 `--pod-network-cidr` 标志添加 pod CIDR，或者你可以使用 kubeadm
+   配置文件，在 `ClusterConfiguration` 的 `networking` 对象下设置 `podSubnet` 字段。
+   {{< /note >}}
+
+   <!--
+   - The output looks similar to:
+   -->
+   - 输出类似于：
+
+     ```sh
+     ...
+     You can now join any number of control-plane node by running the following command on each as a root:
+     kubeadm join 192.168.0.200:6443 --token 9vr73a.a8uxyaju799qwdjv --discovery-token-ca-cert-hash sha256:7c2e69131a36ae2a042a339b33381c6d0d43887e2de83720eff5359e26aec866 --control-plane --certificate-key f8902e114ef118304e561c3ecd4d0b543adc226b7a07f675f56564185ffe0c07
+
+     Please note that the certificate-key gives access to cluster sensitive data, keep it secret!
+     As a safeguard, uploaded-certs will be deleted in two hours; If necessary, you can use kubeadm init phase upload-certs to reload certs afterward.
+
+     Then you can join any number of worker nodes by running the following on each as root:
+       kubeadm join 192.168.0.200:6443 --token 9vr73a.a8uxyaju799qwdjv --discovery-token-ca-cert-hash sha256:7c2e69131a36ae2a042a339b33381c6d0d43887e2de83720eff5359e26aec866
+     ```
+
+   <!--
+   - Copy this output to a text file. You will need it later to join control plane and worker nodes to the cluster.
+   - When `--upload-certs` is used with `kubeadm init`, the certificates of the primary control plane
+   are encrypted and uploaded in the `kubeadm-certs` Secret.
+   - To re-upload the certificates and generate a new decryption key, use the following command on a control plane
+   node that is already joined to the cluster:
+   -->
+   - 将此输出复制到文本文件。 稍后你将需要它来将控制平面节点和工作节点加入集群。
+   - 当使用 `--upload-certs` 调用 `kubeadm init` 时，主控制平面的证书被加密并上传到 `kubeadm-certs` Secret 中。
+   - 要重新上传证书并生成新的解密密钥，请在已加入集群节点的控制平面上使用以下命令：
+
+     ```shell
+     sudo kubeadm init phase upload-certs --upload-certs
+     ```
+
+   <!--
+   - You can also specify a custom `--certificate-key` during `init` that can later be used by `join`.
+     To generate such a key you can use the following command:
+   -->
+   - 你还可以在 `init` 期间指定自定义的 `--certificate-key`，以后可以由 `join` 使用。
+     要生成这样的密钥，可以使用以下命令：
+
+     ```shell
+     kubeadm certs certificate-key
+     ```
+
+   {{< note >}}
+   <!--
+   The `kubeadm-certs` Secret and decryption key expire after two hours.
+   -->
+   `kubeadm-certs` Secret 和解密密钥会在两个小时后失效。
+   {{< /note >}}
+
+   {{< caution >}}
+   <!--
+   As stated in the command output, the certificate key gives access to cluster sensitive data, keep it secret!
+   -->
+   正如命令输出中所述，证书密钥可访问集群敏感数据。请妥善保管！
+   {{< /caution >}}
+
+<!--
+1. Apply the CNI plugin of your choice:
+   [Follow these instructions](/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/#pod-network) to install the CNI provider. Make sure the configuration corresponds to the Pod CIDR specified in the kubeadm configuration file (if applicable).
+-->
+2. 应用你所选择的 CNI 插件：
+   [请遵循以下指示](/zh-cn/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/#pod-network)
+   安装 CNI 驱动。如果适用，请确保配置与 kubeadm 配置文件中指定的 Pod
+   CIDR 相对应。
+
+   {{< note >}}
+   <!--
+   You must pick a network plugin that suits your use case and deploy it before you move on to next step.
+   If you don't do this, you will not be able to launch your cluster properly.
+   -->
+   在进行下一步之前，必须选择并部署合适的网络插件。
+   否则集群不会正常运行。
+   {{< /note >}}
+
+<!--
+1. Type the following and watch the pods of the control plane components get started:
+-->
+3. 输入以下内容，并查看控制平面组件的 Pod 启动：
+
+   ```shell
+   kubectl get pod -n kube-system -w
+   ```
+
+<!--
+### Steps for the rest of the control plane nodes
+-->
+### 其余控制平面节点的步骤
+
+<!--
+For each additional control plane node you should:
+
+1. Execute the join command that was previously given to you by the `kubeadm init` output on the first node.
+   It should look something like this:
+
+   ```sh
+   sudo kubeadm join 192.168.0.200:6443 --token 9vr73a.a8uxyaju799qwdjv --discovery-token-ca-cert-hash sha256:7c2e69131a36ae2a042a339b33381c6d0d43887e2de83720eff5359e26aec866 --control-plane --certificate-key f8902e114ef118304e561c3ecd4d0b543adc226b7a07f675f56564185ffe0c07
+   ```
+
+   - The `--control-plane` flag tells `kubeadm join` to create a new control plane.
+   - The `--certificate-key ...` will cause the control plane certificates to be downloaded
+     from the `kubeadm-certs` Secret in the cluster and be decrypted using the given key.
+
+-->
+对于每个其他控制平面节点，你应该：
+
+1. 执行先前由第一个节点上的 `kubeadm init` 输出提供给你的 join 命令。
+   它看起来应该像这样：
+
+   ```sh
+   sudo kubeadm join 192.168.0.200:6443 --token 9vr73a.a8uxyaju799qwdjv --discovery-token-ca-cert-hash sha256:7c2e69131a36ae2a042a339b33381c6d0d43887e2de83720eff5359e26aec866 --control-plane --certificate-key f8902e114ef118304e561c3ecd4d0b543adc226b7a07f675f56564185ffe0c07
+   ```
+
+   - 这个 `--control-plane` 标志通知 `kubeadm join` 创建一个新的控制平面。
+   - `--certificate-key ...` 将导致从集群中的 `kubeadm-certs` Secret
+     下载控制平面证书并使用给定的密钥进行解密。
+
+<!--
+## External etcd nodes
+
+Setting up a cluster with external etcd nodes is similar to the procedure used for stacked etcd
+with the exception that you should setup etcd first, and you should pass the etcd information
+in the kubeadm config file.
+-->
+## 外部 etcd 节点
+
+使用外部 etcd 节点设置集群类似于用于堆叠 etcd 的过程，
+不同之处在于你应该首先设置 etcd，并在 kubeadm 配置文件中传递 etcd 信息。
+
+<!--
+### Set up the etcd cluster
+
+1. Follow these [instructions](/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm/) to set up the etcd cluster.
+
+1. Setup SSH as described [here](#manual-certs).
+
+1. Copy the following files from any etcd node in the cluster to the first control plane node:
+
+   ```sh
+   export CONTROL_PLANE="ubuntu@10.0.0.7"
+   scp /etc/kubernetes/pki/etcd/ca.crt "${CONTROL_PLANE}":
+   scp /etc/kubernetes/pki/apiserver-etcd-client.crt "${CONTROL_PLANE}":
+   scp /etc/kubernetes/pki/apiserver-etcd-client.key "${CONTROL_PLANE}":
+   ```
+
+   - Replace the value of `CONTROL_PLANE` with the `user@host` of the first control-plane node.
+-->
+### 设置 ectd 集群
+
+1. 按照这些[指示](/zh-cn/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm/) 
+   去设置 etcd 集群。
+
+1. 根据[这里](#manual-certs) 的描述配置 SSH。
+
+1. 将以下文件从集群中的任何 etcd 节点复制到第一个控制平面节点：
+
+   ```shell
+   export CONTROL_PLANE="ubuntu@10.0.0.7"
+   scp /etc/kubernetes/pki/etcd/ca.crt "${CONTROL_PLANE}":
+   scp /etc/kubernetes/pki/apiserver-etcd-client.crt "${CONTROL_PLANE}":
+   scp /etc/kubernetes/pki/apiserver-etcd-client.key "${CONTROL_PLANE}":
+   ```
+
+   - 用第一台控制平面节点的 `user@host` 替换 `CONTROL_PLANE` 的值。
+
+<!--
+### Set up the first control plane node
+
+1. Create a file called `kubeadm-config.yaml` with the following contents:
+
+   ```yaml
+   ---
+   apiVersion: kubeadm.k8s.io/v1beta3
+   kind: ClusterConfiguration
+   kubernetesVersion: stable
+   controlPlaneEndpoint: "LOAD_BALANCER_DNS:LOAD_BALANCER_PORT" # change this (see below)
+   etcd:
+     external:
+       endpoints:
+         - https://ETCD_0_IP:2379 # change ETCD_0_IP appropriately
+         - https://ETCD_1_IP:2379 # change ETCD_1_IP appropriately
+         - https://ETCD_2_IP:2379 # change ETCD_2_IP appropriately
+       caFile: /etc/kubernetes/pki/etcd/ca.crt
+       certFile: /etc/kubernetes/pki/apiserver-etcd-client.crt
+       keyFile: /etc/kubernetes/pki/apiserver-etcd-client.key
+   ```
+-->
+
+### 设置第一个控制平面节点
+
+1. 用以下内容创建一个名为 `kubeadm-config.yaml` 的文件：
+
+   ```yaml
+   ---
+   apiVersion: kubeadm.k8s.io/v1beta3
+   kind: ClusterConfiguration
+   kubernetesVersion: stable
+   controlPlaneEndpoint: "LOAD_BALANCER_DNS:LOAD_BALANCER_PORT" # change this (see below)
+   etcd:
+     external:
+       endpoints:
+         - https://ETCD_0_IP:2379 # 适当地更改 ETCD_0_IP
+         - https://ETCD_1_IP:2379 # 适当地更改 ETCD_1_IP
+         - https://ETCD_2_IP:2379 # 适当地更改 ETCD_2_IP
+       caFile: /etc/kubernetes/pki/etcd/ca.crt
+       certFile: /etc/kubernetes/pki/apiserver-etcd-client.crt
+       keyFile: /etc/kubernetes/pki/apiserver-etcd-client.key
+   ```
+
+   {{< note >}}
+   <!--
+   The difference between stacked etcd and external etcd here is that the external etcd setup requires
+   a configuration file with the etcd endpoints under the `external` object for `etcd`.
+   In the case of the stacked etcd topology, this is managed automatically.
+   -->
+   这里的堆叠（stacked）etcd 和外部 etcd 之前的区别在于设置外部 etcd
+   需要一个 `etcd` 的 `external` 对象下带有 etcd 端点的配置文件。
+   如果是内部 etcd，是自动管理的。
+   {{< /note >}}
+
+   <!--
+   -  Replace the following variables in the config template with the appropriate values for your cluster:
+   -->
+   - 在你的集群中，将配置模板中的以下变量替换为适当值：
+
+     - `LOAD_BALANCER_DNS`
+     - `LOAD_BALANCER_PORT`
+     - `ETCD_0_IP`
+     - `ETCD_1_IP`
+     - `ETCD_2_IP`
+
+<!--
+The following steps are similar to the stacked etcd setup:
+-->
+以下的步骤与设置内置 etcd 的集群是相似的：
+
+<!--
+1. Run `sudo kubeadm init --config kubeadm-config.yaml --upload-certs` on this node.
+
+1. Write the output join commands that are returned to a text file for later use.
+
+1. Apply the CNI plugin of your choice.
+-->
+1. 在节点上运行 `sudo kubeadm init --config kubeadm-config.yaml --upload-certs` 命令。
+
+1. 记下输出的 join 命令，这些命令将在以后使用。
+
+1. 应用你选择的 CNI 插件。
+
+   {{< note >}}
+   <!--
+   You must pick a network plugin that suits your use case and deploy it before you move on to next step.
+   If you don't do this, you will not be able to launch your cluster properly.
+   -->
+   在进行下一步之前，必须选择并部署合适的网络插件。
+   否则集群不会正常运行。
+   {{< /note >}}
+
+<!--
+### Steps for the rest of the control plane nodes
+
+The steps are the same as for the stacked etcd setup:
+
+- Make sure the first control plane node is fully initialized.
+- Join each control plane node with the join command you saved to a text file. It's recommended
+  to join the control plane nodes one at a time.
+- Don't forget that the decryption key from `--certificate-key` expires after two hours, by default.
+-->
+### 其他控制平面节点的步骤
+
+步骤与设置内置 etcd 相同：
+
+- 确保第一个控制平面节点已完全初始化。
+- 使用保存到文本文件的 join 命令将每个控制平面节点连接在一起。
+  建议一次加入一个控制平面节点。
+- 不要忘记默认情况下，`--certificate-key` 中的解密秘钥会在两个小时后过期。
+
+<!--
+## Common tasks after bootstrapping control plane
+
+### Install workers
+-->
+## 列举控制平面之后的常见任务
+
+### 安装工作节点
+
+<!--
+Worker nodes can be joined to the cluster with the command you stored previously
+as the output from the `kubeadm init` command:
+-->
+你可以使用之前存储的 `kubeadm init` 命令的输出将工作节点加入集群中：
+
+```sh
+sudo kubeadm join 192.168.0.200:6443 --token 9vr73a.a8uxyaju799qwdjv --discovery-token-ca-cert-hash sha256:7c2e69131a36ae2a042a339b33381c6d0d43887e2de83720eff5359e26aec866
+```
+
+<!--
+## Manual certificate distribution {#manual-certs}
+
+If you choose to not use `kubeadm init` with the `--upload-certs` flag this means that
+you are going to have to manually copy the certificates from the primary control plane node to the
+joining control plane nodes.
+
+There are many ways to do this. The following example uses `ssh` and `scp`:
+
+SSH is required if you want to control all nodes from a single machine.
+-->
+## 手动证书分发 {#manual-certs}
+
+如果你选择不将 `kubeadm init` 与 `--upload-certs` 命令一起使用，
+则意味着你将必须手动将证书从主控制平面节点复制到将要加入的控制平面节点上。
+
+有许多方法可以实现这种操作。下面的例子使用了 `ssh` 和 `scp`：
+
+如果要在单独的一台计算机控制所有节点，则需要 SSH。
+
+<!--
+1. Enable ssh-agent on your main device that has access to all other nodes in
+   the system:
+-->
+1. 在你的主设备上启用 ssh-agent，要求该设备能访问系统中的所有其他节点：
+
+   ```shell
+   eval $(ssh-agent)
+   ```
+
+<!--
+1. Add your SSH identity to the session:
+-->
+2. 将 SSH 身份添加到会话中：
+
+   ```shell
+   ssh-add ~/.ssh/path_to_private_key
+   ```
+
+<!--
+1. SSH between nodes to check that the connection is working correctly.
+-->
+3. 检查节点间的 SSH 以确保连接是正常运行的
+
+   <!--
+   - When you SSH to any node, add the `-A` flag. This flag allows the node that you
+     have logged into via SSH to access the SSH agent on your PC. Consider alternative
+     methods if you do not fully trust the security of your user session on the node.
+   -->
+   - SSH 到任何节点时，请确保添加 `-A` 标志。
+     此标志允许你通过 SSH 登录到节点后从该节点上访问你自己 PC 上的 SSH 代理。
+     如果你不完全信任该节点上的用户会话安全，可以考虑使用其他替代方法。
+
+     ```shell
+     ssh -A 10.0.0.7
+     ```
+
+   <!--
+   - When using sudo on any node, make sure to preserve the environment so SSH
+     forwarding works:
+   -->
+   - 当在任何节点上使用 sudo 时，请确保保持环境变量设置，以便 SSH
+     转发能够正常工作：
+
+     ```shell
+     sudo -E -s
+     ```
+<!--
+1. After configuring SSH on all the nodes you should run the following script on the first
+   control plane node after running `kubeadm init`. This script will copy the certificates from
+   the first control plane node to the other control plane nodes:
+-->
+4. 在所有节点上配置 SSH 之后，你应该在运行过 `kubeadm init` 命令的第一个控制平面节点上运行以下脚本。
+   该脚本会将证书从第一个控制平面节点复制到另一个控制平面节点：
+
+   <!--
+   In the following example, replace `CONTROL_PLANE_IPS` with the IP addresses of the
+   other control plane nodes.
+   -->
+   在以下示例中，用其他控制平面节点的 IP 地址替换 `CONTROL_PLANE_IPS`。
+
+   ```sh
+   USER=ubuntu # 可定制
+   CONTROL_PLANE_IPS="10.0.0.7 10.0.0.8"
+   for host in ${CONTROL_PLANE_IPS}; do
+       scp /etc/kubernetes/pki/ca.crt "${USER}"@$host:
+       scp /etc/kubernetes/pki/ca.key "${USER}"@$host:
+       scp /etc/kubernetes/pki/sa.key "${USER}"@$host:
+       scp /etc/kubernetes/pki/sa.pub "${USER}"@$host:
+       scp /etc/kubernetes/pki/front-proxy-ca.crt "${USER}"@$host:
+       scp /etc/kubernetes/pki/front-proxy-ca.key "${USER}"@$host:
+       scp /etc/kubernetes/pki/etcd/ca.crt "${USER}"@$host:etcd-ca.crt
+       # 如果你正使用外部 etcd，忽略下一行
+       scp /etc/kubernetes/pki/etcd/ca.key "${USER}"@$host:etcd-ca.key
+   done
+   ```
+   
+   {{< caution >}}
+   <!--
+   Copy only the certificates in the above list. kubeadm will take care of generating the rest of the certificates
+   with the required SANs for the joining control-plane instances. If you copy all the certificates by mistake,
+   the creation of additional nodes could fail due to a lack of required SANs.
+   -->
+   只需要复制上面列表中的证书。kubeadm 将负责生成其余证书以及加入控制平面实例所需的 SAN。
+   如果你错误地复制了所有证书，由于缺少所需的 SAN，创建其他节点可能会失败。
+   {{< /caution >}}
+
+<!--
+1. Then on each joining control plane node you have to run the following script before running `kubeadm join`.
+   This script will move the previously copied certificates from the home directory to `/etc/kubernetes/pki`:
+-->
+5. 然后，在每个即将加入集群的控制平面节点上，你必须先运行以下脚本，然后再运行 `kubeadm join`。
+   该脚本会将先前复制的证书从主目录移动到 `/etc/kubernetes/pki`：
+
+   ```sh
+   USER=ubuntu # 可定制
+   mkdir -p /etc/kubernetes/pki/etcd
+   mv /home/${USER}/ca.crt /etc/kubernetes/pki/
+   mv /home/${USER}/ca.key /etc/kubernetes/pki/
+   mv /home/${USER}/sa.pub /etc/kubernetes/pki/
+   mv /home/${USER}/sa.key /etc/kubernetes/pki/
+   mv /home/${USER}/front-proxy-ca.crt /etc/kubernetes/pki/
+   mv /home/${USER}/front-proxy-ca.key /etc/kubernetes/pki/
+   mv /home/${USER}/etcd-ca.crt /etc/kubernetes/pki/etcd/ca.crt
+   # 如果你正使用外部 etcd，忽略下一行
+   mv /home/${USER}/etcd-ca.key /etc/kubernetes/pki/etcd/ca.key
+   ```
+
diff --git a/content/zh/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md b/content/zh-cn/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md
similarity index 67%
rename from content/zh/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md
rename to content/zh-cn/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md
index ae32302cb1..1d989825a6 100644
--- a/content/zh/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md
+++ b/content/zh-cn/docs/setup/production-environment/tools/kubeadm/install-kubeadm.md
@@ -25,7 +25,7 @@ For information on how to create a cluster with kubeadm once you have performed
 -->
 <img src="/images/kubeadm-stacked-color.png" align="right" width="150px">本页面显示如何安装 `kubeadm` 工具箱。
 有关在执行此安装过程后如何使用 kubeadm 创建集群的信息，请参见
-[使用 kubeadm 创建集群](/zh/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/) 页面。
+[使用 kubeadm 创建集群](/zh-cn/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/)页面。
 
 ## {{% heading "prerequisites" %}}
 
@@ -40,14 +40,13 @@ For information on how to create a cluster with kubeadm once you have performed
 -->
 * 一台兼容的 Linux 主机。Kubernetes 项目为基于 Debian 和 Red Hat 的 Linux
   发行版以及一些不提供包管理器的发行版提供通用的指令
-* 每台机器 2 GB 或更多的 RAM （如果少于这个数字将会影响你应用的运行内存)
+* 每台机器 2 GB 或更多的 RAM（如果少于这个数字将会影响你应用的运行内存）
 * 2 CPU 核或更多
-* 集群中的所有机器的网络彼此均能相互连接(公网和内网都可以)
+* 集群中的所有机器的网络彼此均能相互连接（公网和内网都可以）
 * 节点之中不可以有重复的主机名、MAC 地址或 product_uuid。请参见[这里](#verify-mac-address)了解更多详细信息。
-* 开启机器上的某些端口。请参见[这里](#check-required-ports) 了解更多详细信息。
+* 开启机器上的某些端口。请参见[这里](#check-required-ports)了解更多详细信息。
 * 禁用交换分区。为了保证 kubelet 正常工作，你 **必须** 禁用交换分区。
 
-
 <!-- steps -->
 
 <!--
@@ -68,8 +67,7 @@ may [fail](https://github.com/kubernetes/kubeadm/issues/31).
 
 一般来讲，硬件设备会拥有唯一的地址，但是有些虚拟机的地址可能会重复。
 Kubernetes 使用这些值来唯一确定集群中的节点。
-如果这些值在每个节点上不唯一，可能会导致安装
-[失败](https://github.com/kubernetes/kubeadm/issues/31)。
+如果这些值在每个节点上不唯一，可能会导致安装[失败](https://github.com/kubernetes/kubeadm/issues/31)。
 
 <!--
 ## Check network adapters
@@ -79,7 +77,8 @@ route, we recommend you add IP route(s) so Kubernetes cluster addresses go via t
 -->
 ## 检查网络适配器
 
-如果你有一个以上的网络适配器，同时你的 Kubernetes 组件通过默认路由不可达，我们建议你预先添加 IP 路由规则，这样 Kubernetes 集群就可以通过对应的适配器完成连接。
+如果你有一个以上的网络适配器，同时你的 Kubernetes 组件通过默认路由不可达，我们建议你预先添加 IP 路由规则，
+这样 Kubernetes 集群就可以通过对应的适配器完成连接。
 
 <!--
 ## Letting iptables see bridged traffic
@@ -93,7 +92,7 @@ As a requirement for your Linux Node's iptables to correctly see bridged traffic
 确保 `br_netfilter` 模块被加载。这一操作可以通过运行 `lsmod | grep br_netfilter`
 来完成。若要显式加载该模块，可执行 `sudo modprobe br_netfilter`。
 
-为了让你的 Linux 节点上的 iptables 能够正确地查看桥接流量，你需要确保在你的
+为了让你的 Linux 节点上的 iptables 能够正确地查看桥接流量，你需要确保在
 `sysctl` 配置中将 `net.bridge.bridge-nf-call-iptables` 设置为 1。例如：
 
 ```bash
@@ -111,147 +110,122 @@ sudo sysctl --system
 <!--
 For more details please see the [Network Plugin Requirements](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/#network-plugin-requirements) page.
 -->
-更多的相关细节可查看[网络插件需求](/zh/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/#network-plugin-requirements)页面。
+更多的相关细节可查看[网络插件需求](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/#network-plugin-requirements)页面。
 
 <!--
 ## Check required ports
-
-### Control-plane node(s)
-
-| Protocol   | Direction  | Port Range | Purpose                 | Used By                 |
-|------------|------------|------------|-------------------------|-------------------------|
-| TCP        | Inbound    | 6443*      | Kubernetes API server   | All                     |
-| TCP        | Inbound    | 2379-2380  | etcd server client API  | kube-apiserver, etcd    |
-| TCP        | Inbound    | 10250      | Kubelet API             | Self, Control plane     |
-| TCP        | Inbound    | 10251      | kube-scheduler          | Self                    |
-| TCP        | Inbound    | 10252      | kube-controller-manager | Self                    |
+These
+[required ports](/docs/reference/ports-and-protocols/)
+need to be open in order for Kubernetes components to communicate with each other. You can use tools like netcat to check if a port is open. For example:
 -->
+
 ## 检查所需端口{#check-required-ports}
 
-### 控制平面节点
+启用这些[必要的端口](/zh-cn/docs/reference/ports-and-protocols/)后才能使 Kubernetes 的各组件相互通信。
+可以使用 netcat 之类的工具来检查端口是否启用，例如：
 
-| 协议     | 方向   | 端口范围   | 作用                    | 使用者                       |
-|----------|--------|------------|-------------------------|------------------------------|
-| TCP      | 入站   | 6443       | Kubernetes API 服务器   | 所有组件                     |
-| TCP      | 入站   | 2379-2380  | etcd 服务器客户端 API   | kube-apiserver, etcd         |
-| TCP      | 入站   | 10250      | Kubelet API             | kubelet 自身、控制平面组件   |
-| TCP      | 入站   | 10251      | kube-scheduler          | kube-scheduler 自身          |
-| TCP      | 入站   | 10252      | kube-controller-manager | kube-controller-manager 自身 |
+```shell
+nc 127.0.0.1 6443
+```
 
 <!--
-### Worker node(s)
-
-| Protocol   | Direction  | Port Range  | Purpose             | Used By                 |
-|------------|------------|-------------|---------------------|-------------------------|
-| TCP        | Inbound    | 10250       | Kubelet API         | Self, Control plane     |
-| TCP        | Inbound    | 30000-32767 | NodePort Services** | All                     |
-
-** Default port range for [NodePort Services](/docs/concepts/services-networking/service/).
-
-Any port numbers marked with * are overridable, so you will need to ensure any
-custom ports you provide are also open.
-
-Although etcd ports are included in control-plane nodes, you can also host your own
-etcd cluster externally or on custom ports.
-
-The pod network plugin you use (see below) may also require certain ports to be
+The pod network plugin you use may also require certain ports to be
 open. Since this differs with each pod network plugin, please see the
 documentation for the plugins about what port(s) those need.
 -->
-### 工作节点
-
-| 协议 | 方向   | 端口范围    | 作用              | 使用者                      |
-|------|--------|-------------|-------------------|-----------------------------|
-| TCP  | 入站   | 10250       | Kubelet API       | kubelet 自身、控制平面组件  |
-| TCP  | 入站   | 30000-32767 | NodePort 服务†    | 所有组件                    |
-
-† [NodePort 服务](/zh/docs/concepts/services-networking/service/) 的默认端口范围。
-
-使用 * 标记的任意端口号都可以被覆盖，所以你需要保证所定制的端口是开放的。
-
-虽然控制平面节点已经包含了 etcd 的端口，你也可以使用自定义的外部 etcd 集群，或是指定自定义端口。
-
-你使用的 Pod 网络插件 (见下) 也可能需要某些特定端口开启。由于各个 Pod 网络插件都有所不同，
-请参阅他们各自文档中对端口的要求。
+你使用的 Pod 网络插件 (详见后续章节) 也可能需要开启某些特定端口。
+由于各个 Pod 网络插件的功能都有所不同，请参阅他们各自文档中对端口的要求。
 
 <!--
-## Installing runtime {#installing-runtime}
+## Installing a container runtime {#installing-runtime}
 
 To run containers in Pods, Kubernetes uses a
 {{< glossary_tooltip term_id="container-runtime" text="container runtime" >}}.
 -->
-## 安装 runtime{#installing-runtime}
+## 安装容器运行时{#installing-runtime}
 
 为了在 Pod 中运行容器，Kubernetes 使用
 {{< glossary_tooltip term_id="container-runtime" text="容器运行时（Container Runtime）" >}}。
 
-{{< tabs name="container-runtimes" >}}
-{{% tab name="Linux 节点" %}}
 <!--
 By default, Kubernetes uses the
 {{< glossary_tooltip term_id="cri" text="Container Runtime Interface">}} (CRI)
 to interface with your chosen container runtime.
 
 If you don't specify a runtime, kubeadm automatically tries to detect an installed
-container runtime by scanning through a list of well known Unix domain sockets.
-The following table lists container runtimes and their associated socket paths:
-
-| Runtime    | Domain Socket                   |
-|------------|---------------------------------|
-| Docker     | /var/run/dockershim.sock            |
-| containerd | /run/containerd/containerd.sock |
-| CRI-O      | /var/run/crio/crio.sock         |
+container runtime by scanning through a list of known endpoints.
 -->
 默认情况下，Kubernetes 使用
 {{< glossary_tooltip term_id="cri" text="容器运行时接口（Container Runtime Interface，CRI）" >}}
 来与你所选择的容器运行时交互。
 
-如果你不指定运行时，则 kubeadm 会自动尝试检测到系统上已经安装的运行时，
-方法是扫描一组众所周知的 Unix 域套接字。
-下面的表格列举了一些容器运行时及其对应的套接字路径：
-
-| 运行时     | 域套接字                         |
-|------------|----------------------------------|
-| Docker     | /var/run/dockershim.sock             |
-| containerd | /run/containerd/containerd.sock  |
-| CRI-O      | /var/run/crio/crio.sock          |
+如果你不指定运行时，kubeadm 会自动尝试通过扫描已知的端点列表来检测已安装的容器运行时。
 
 <!--
-<br />
-If both Docker and containerd are detected, Docker takes precedence. This is
-needed because Docker 18.09 ships with containerd and both are detectable even if you only
-installed Docker.
-If any other two or more runtimes are detected, kubeadm exits with an error.
-
-The kubelet integrates with Docker through the built-in `dockershim` CRI implementation.
+If multiple or no container runtimes are detected kubeadm will throw an error
+and will request that you specify which one you want to use.
 
 See [container runtimes](/docs/setup/production-environment/container-runtimes/)
 for more information.
 -->
-<br/>
-如果同时检测到 Docker 和 containerd，则优先选择 Docker。
-这是必然的，因为 Docker 18.09 附带了 containerd 并且两者都是可以检测到的，
-即使你仅安装了 Docker。
-如果检测到其他两个或多个运行时，kubeadm 输出错误信息并退出。
+如果检测到有多个或者没有容器运行时，kubeadm 将抛出一个错误并要求你指定一个想要使用的运行时。
 
-kubelet 通过内置的 `dockershim` CRI 实现与 Docker 集成。
-
-参阅[容器运行时](/zh/docs/setup/production-environment/container-runtimes/)
+参阅[容器运行时](/zh-cn/docs/setup/production-environment/container-runtimes/)
 以了解更多信息。
 
+{{< note >}}
+<!--
+Docker Engine does not implement the [CRI](/docs/concepts/architecture/cri/)
+which is a requirement for a container runtime to work with Kubernetes.
+For that reason, an additional service [cri-dockerd](https://github.com/Mirantis/cri-dockerd)
+has to be installed. cri-dockerd is a project based on the legacy built-in
+Docker Engine support that was [removed](/dockershim) from the kubelet in version 1.24.
+-->
+Docker Engine 没有实现 [CRI](/zh-cn/docs/concepts/architecture/cri/)，
+而这是容器运行时在 Kubernetes 中工作所需要的。
+为此，必须安装一个额外的服务 [cri-dockerd](https://github.com/Mirantis/cri-dockerd)。
+cri-dockerd 是一个基于传统的内置 Docker 引擎支持的项目，
+它在 1.24 版本从 kubelet 中[移除](/zh-cn/dockershim)。
+{{< /note >}}
+
+<!--
+The tables below include the known endpoints for supported operating systems:
+-->
+下面的表格包括被支持的操作系统的已知端点。
+
+{{< tabs name="container_runtime" >}}
+{{% tab name="Linux" %}}
+
+<!--
+| Runtime                            | Path to Unix domain socket                   |
+|------------------------------------|----------------------------------------------|
+| containerd                         | `unix:///var/run/containerd/containerd.sock` |
+| CRI-O                              | `unix:///var/run/crio/crio.sock`             |
+| Docker Engine (using cri-dockerd)  | `unix:///var/run/cri-dockerd.sock`           |
+-->
+{{< table >}}
+| 运行时                              | Unix 域套接字                                     |
+|------------------------------------|----------------------------------------------|
+| containerd                         | `unix:///var/run/containerd/containerd.sock` |
+| CRI-O                              | `unix:///var/run/crio/crio.sock`             |
+| Docker Engine (使用 cri-dockerd)  | `unix:///var/run/cri-dockerd.sock`           |
+{{< /table >}}
+
 {{% /tab %}}
-{{% tab name="其它操作系统" %}}
+{{% tab name="Windows" %}}
 <!--
-By default, kubeadm uses {{< glossary_tooltip term_id="docker" >}} as the container runtime.
-The kubelet integrates with Docker through the built-in `dockershim` CRI implementation.
-
-See [container runtimes](/docs/setup/production-environment/container-runtimes/)
-for more information.
+| Runtime                            | Path to Windows named pipe                   |
+|------------------------------------|----------------------------------------------|
+| containerd                         | `npipe:////./pipe/containerd-containerd`     |
+| Docker Engine (using cri-dockerd)  | `npipe:////./pipe/cri-dockerd`               |
 -->
-默认情况下， kubeadm 使用 {{< glossary_tooltip term_id="docker" >}} 作为容器运行时。
-kubelet 通过内置的 `dockershim` CRI 实现与 Docker 集成。
-参阅[容器运行时](/zh/docs/setup/production-environment/container-runtimes/)
-以了解更多信息。
+
+{{< table >}}
+| 运行时                              |  Windows 命名管道路径                         |
+|------------------------------------|----------------------------------------------|
+| containerd                         | `npipe:////./pipe/containerd-containerd`     |
+| Docker Engine (使用 cri-dockerd)  | `npipe:////./pipe/cri-dockerd`               |
+{{< /table >}}
 
 {{% /tab %}}
 {{< /tabs >}}
@@ -267,16 +241,6 @@ You will install these packages on all of your machines:
     and does things like starting pods and containers.
 
 * `kubectl`: the command line util to talk to your cluster.
-
-kubeadm **will not** install or manage `kubelet` or `kubectl` for you, so you will
-need to ensure they match the version of the Kubernetes control plane you want
-kubeadm to install for you. If you do not, there is a risk of a version skew occurring that
-can lead to unexpected, buggy behaviour. However, _one_ minor version skew between the
-kubelet and the control plane is supported, but the kubelet version may never exceed the API
-server version. For example, kubelets running 1.7.0 should be fully compatible with a 1.8.0 API server,
-but not vice versa.
-
-For information about installing `kubectl`, see [Install and set up kubectl](/docs/tasks/tools/).
 -->
 ## 安装 kubeadm、kubelet 和 kubectl
 
@@ -288,14 +252,25 @@ For information about installing `kubectl`, see [Install and set up kubectl](/do
 
 * `kubectl`：用来与集群通信的命令行工具。
 
-kubeadm **不能** 帮你安装或者管理 `kubelet` 或 `kubectl`，所以你需要
-确保它们与通过 kubeadm 安装的控制平面的版本相匹配。
+<!--
+kubeadm **will not** install or manage `kubelet` or `kubectl` for you, so you will
+need to ensure they match the version of the Kubernetes control plane you want
+kubeadm to install for you. If you do not, there is a risk of a version skew occurring that
+can lead to unexpected, buggy behaviour. However, _one_ minor version skew between the
+kubelet and the control plane is supported, but the kubelet version may never exceed the API
+server version. For example, kubelets running 1.7.0 should be fully compatible with a 1.8.0 API server,
+but not vice versa.
+
+For information about installing `kubectl`, see [Install and set up kubectl](/docs/tasks/tools/).
+-->
+kubeadm **不能**帮你安装或者管理 `kubelet` 或 `kubectl`，
+所以你需要确保它们与通过 kubeadm 安装的控制平面的版本相匹配。
 如果不这样做，则存在发生版本偏差的风险，可能会导致一些预料之外的错误和问题。
-然而，控制平面与 kubelet 间的相差一个次要版本不一致是支持的，但 kubelet
+然而，控制平面与 kubelet 之间可以存在**一个**次要版本的偏差，但 kubelet
 的版本不可以超过 API 服务器的版本。
 例如，1.7.0 版本的 kubelet 可以完全兼容 1.8.0 版本的 API 服务器，反之则不可以。
 
-有关安装 `kubectl` 的信息，请参阅[安装和设置 kubectl](/zh/docs/tasks/tools/)文档。
+有关安装 `kubectl` 的信息，请参阅[安装和设置 kubectl](/zh-cn/docs/tasks/tools/) 文档。
 
 {{< warning >}}
 <!--
@@ -304,7 +279,7 @@ This is because kubeadm and Kubernetes require
 [special attention to upgrade](/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade-1-14/).
 -->
 这些指南不包括系统升级时使用的所有 Kubernetes 程序包。这是因为 kubeadm 和 Kubernetes
-有[特殊的升级注意事项](/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)。
+有[特殊的升级注意事项](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)。
 {{</ warning >}}
 
 <!--
@@ -315,8 +290,8 @@ For more information on version skews, see:
 -->
 关于版本偏差的更多信息，请参阅以下文档：
 
-* Kubernetes [版本与版本间的偏差策略](/zh/docs/setup/release/version-skew-policy/)
-* Kubeadm 特定的[版本偏差策略](/zh/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/#version-skew-policy)
+* Kubernetes [版本与版本间的偏差策略](/zh-cn/releases/version-skew-policy/)
+* Kubeadm 特定的[版本偏差策略](/zh-cn/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/#version-skew-policy)
 
 {{< tabs name="k8s_install" >}}
 {{% tab name="基于 Debian 的发行版" %}}
@@ -393,20 +368,25 @@ sudo systemctl enable --now kubelet
     You have to do this until SELinux support is improved in the kubelet.
 
   - You can leave SELinux enabled if you know how to configure it but it may require settings that are not supported by kubeadm.
+  - If the `baseurl` fails because your Red Hat-based distribution cannot interpret `basearch`, replace `\$basearch` with your computer's architecture.
+    Type `uname -m` to see that value.
+    For example, the `baseurl` URL for `x86_64` could be: `https://packages.cloud.google.com/yum/repos/kubernetes-el7-x86_64`.
 -->
 **请注意：**
 
 - 通过运行命令 `setenforce 0` 和 `sed ...` 将 SELinux 设置为 permissive 模式
   可以有效地将其禁用。
-  这是允许容器访问主机文件系统所必需的，而这些操作时为了例如 Pod 网络工作正常。
+  这是允许容器访问主机文件系统所必需的，而这些操作是为了例如 Pod 网络工作正常。
 
   你必须这么做，直到 kubelet 做出对 SELinux 的支持进行升级为止。
 
 - 如果你知道如何配置 SELinux 则可以将其保持启用状态，但可能需要设定 kubeadm 不支持的部分配置
+- 如果由于该 Red Hat 的发行版无法解析 `basearch` 导致获取 `baseurl` 失败，请将 `\$basearch` 替换为你计算机的架构。
+  输入 `uname -m` 以查看该值。
+  例如，`x86_64` 的 `baseurl` URL 可以是：`https://packages.cloud.google.com/yum/repos/kubernetes-el7-x86_64`。
 
 {{% /tab %}}
 {{% tab name="无包管理器的情况" %}}
-
 <!--
 Install CNI plugins (required for most pod network):
 -->
@@ -420,7 +400,7 @@ curl -L "https://github.com/containernetworking/plugins/releases/download/${CNI_
 ```
 
 <!--
-Define the directory to download command files  
+Define the directory to download command files
 -->
 定义要下载命令文件的目录。
 
@@ -444,7 +424,7 @@ Install crictl (required for kubeadm / Kubelet Container Runtime Interface (CRI)
 安装 crictl（kubeadm/kubelet 容器运行时接口（CRI）所需）
 
 ```bash
-CRICTL_VERSION="v1.17.0"
+CRICTL_VERSION="v1.22.0"
 ARCH="amd64"
 curl -L "https://github.com/kubernetes-sigs/cri-tools/releases/download/${CRICTL_VERSION}/crictl-${CRICTL_VERSION}-linux-${ARCH}.tar.gz" | sudo tar -C $DOWNLOAD_DIR -xz
 ```
@@ -484,7 +464,7 @@ See the [Kubeadm Troubleshooting guide](/docs/setup/production-environment/tools
 -->
 Flatcar Container Linux 发行版会将 `/usr/` 目录挂载为一个只读文件系统。
 在启动引导你的集群之前，你需要执行一些额外的操作来配置一个可写入的目录。
-参见 [kubeadm 故障排查指南](/zh/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm/#usr-mounted-read-only/)
+参见 [kubeadm 故障排查指南](/zh-cn/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm/#usr-mounted-read-only/)
 以了解如何配置一个可写入的目录。
 {{< /note >}}
 
@@ -506,8 +486,8 @@ for the management of cgroups on Linux machines.
 -->
 ## 配置 cgroup 驱动程序  {#configure-cgroup-driver}
 
-容器运行时和 kubelet 都具有名字为 
-["cgroup driver"](/zh/docs/setup/production-environment/container-runtimes/)
+容器运行时和 kubelet 都具有名字为
+["cgroup driver"](/zh-cn/docs/setup/production-environment/container-runtimes/)
 的属性，该属性对于在 Linux 机器上管理 CGroups 而言非常重要。
 
 {{< warning >}}
@@ -519,7 +499,7 @@ See [Configuring a cgroup driver](/docs/tasks/administer-cluster/kubeadm/configu
 你需要确保容器运行时和 kubelet 所使用的是相同的 cgroup 驱动，否则 kubelet
 进程会失败。
 
-相关细节可参见[配置 cgroup 驱动](/zh/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver/)。
+相关细节可参见[配置 cgroup 驱动](/zh-cn/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver/)。
 {{< /warning >}}
 
 <!--
@@ -530,12 +510,12 @@ If you are running into difficulties with kubeadm, please consult our [troublesh
 ## 故障排查   {#troubleshooting}
 
 如果你在使用 kubeadm 时遇到困难，请参阅我们的
-[故障排查文档](/zh/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm/)。
+[故障排查文档](/zh-cn/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm/)。
 
 ## {{% heading "whatsnext" %}}
 
 <!--
 * [Using kubeadm to Create a Cluster](/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/)
 -->
-* [使用 kubeadm 创建集群](/zh/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/)
+* [使用 kubeadm 创建集群](/zh-cn/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/)
 
diff --git a/content/zh/docs/setup/production-environment/tools/kubeadm/kubelet-integration.md b/content/zh-cn/docs/setup/production-environment/tools/kubeadm/kubelet-integration.md
similarity index 69%
rename from content/zh/docs/setup/production-environment/tools/kubeadm/kubelet-integration.md
rename to content/zh-cn/docs/setup/production-environment/tools/kubeadm/kubelet-integration.md
index 3ba5a093d2..ef4a468b34 100644
--- a/content/zh/docs/setup/production-environment/tools/kubeadm/kubelet-integration.md
+++ b/content/zh-cn/docs/setup/production-environment/tools/kubeadm/kubelet-integration.md
@@ -1,6 +1,4 @@
 ---
-reviewers:
-- sig-cluster-lifecycle
 title: 使用 kubeadm 配置集群中的每个 kubelet
 content_type: concept
 weight: 80
@@ -15,13 +13,15 @@ weight: 80
 
 <!-- overview -->
 
-{{< feature-state for_k8s_version="1.11" state="stable" >}}
+{{% dockershim-removal %}}
+
+{{< feature-state for_k8s_version="v1.11" state="stable" >}}
 
 <!--
 The lifecycle of the kubeadm CLI tool is decoupled from the
 [kubelet](/docs/reference/command-line-tools-reference/kubelet), which is a daemon that runs
 on each node within the Kubernetes cluster. The kubeadm CLI tool is executed by the user when Kubernetes is
-initialized or upgraded, where as the kubelet is always running in the background.
+initialized or upgraded, whereas the kubelet is always running in the background.
 
 Since the kubelet is a daemon, it needs to be maintained by some kind of an init
 system or service manager. When the kubelet is installed using DEBs or RPMs,
@@ -34,7 +34,7 @@ characteristics of a given machine (such as OS, storage, and networking). You ca
 of your kubelets manually, but kubeadm now provides a `KubeletConfiguration` API type for
 [managing your kubelet configurations centrally](#configure-kubelets-using-kubeadm).
 -->
-kubeadm CLI 工具的生命周期与 [kubelet](/zh/docs/reference/command-line-tools-reference/kubelet)
+kubeadm CLI 工具的生命周期与 [kubelet](/zh-cn/docs/reference/command-line-tools-reference/kubelet)
 解耦；kubelet 是一个守护程序，在 Kubernetes 集群中的每个节点上运行。
 当 Kubernetes 初始化或升级时，kubeadm CLI 工具由用户执行，而 kubelet 始终在后台运行。
 
@@ -51,62 +51,52 @@ kubeadm CLI 工具的生命周期与 [kubelet](/zh/docs/reference/command-line-t
 
 <!--
 ## Kubelet configuration patterns
+-->
+## Kubelet 配置模式    {#kubelet-configuration-patterns}
 
+<!--
 The following sections describe patterns to kubelet configuration that are simplified by
 using kubeadm, rather than managing the kubelet configuration for each Node manually.
 -->
-## Kubelet 配置模式
-
 以下各节讲述了通过使用 kubeadm 简化 kubelet 配置模式，而不是在每个节点上手动地管理 kubelet 配置。
 
 <!--
 ### Propagating cluster-level configuration to each kubelet
+-->
+### 将集群级配置传播到每个 kubelet 中    {#propagating-cluster-level-configuration-to-each-kubelet}
 
+<!--
 You can provide the kubelet with default values to be used by `kubeadm init` and `kubeadm join`
-commands. Interesting examples include using a different CRI runtime or setting the default subnet
+commands. Interesting examples include using a different container runtime or setting the default subnet
 used by services.
 
 If you want your services to use the subnet `10.96.0.0/12` as the default for services, you can pass
 the `--service-cidr` parameter to kubeadm:
+-->
+你可以通过 `kubeadm init` 和 `kubeadm join` 命令为 kubelet 提供默认值。
+有趣的示例包括使用其他容器运行时或通过服务器设置不同的默认子网。
+
+如果你想使用子网 `10.96.0.0/12` 作为服务的默认网段，你可以给 kubeadm 传递 `--service-cidr` 参数：
 
 ```bash
 kubeadm init --service-cidr 10.96.0.0/12
 ```
 
+<!--
 Virtual IPs for services are now allocated from this subnet. You also need to set the DNS address used
 by the kubelet, using the `--cluster-dns` flag. This setting needs to be the same for every kubelet
 on every manager and Node in the cluster. The kubelet provides a versioned, structured API object
 that can configure most parameters in the kubelet and push out this configuration to each running
 kubelet in the cluster. This object is called
-[`KubeletConfiguration`](/docs/reference/config-api/kubelet-config.v1beta1/). 
+[`KubeletConfiguration`](/docs/reference/config-api/kubelet-config.v1beta1/).
 The `KubeletConfiguration` allows the user to specify flags such as the cluster DNS IP addresses expressed as
 a list of values to a camelCased key, illustrated by the following example:
-
-```yaml
-apiVersion: kubelet.config.k8s.io/v1beta1
-kind: KubeletConfiguration
-clusterDNS:
-- 10.96.0.10
-```
-
-For more details on the `KubeletConfiguration` have a look at [this section](#configure-kubelets-using-kubeadm).
 -->
-### 将集群级配置传播到每个 kubelet 中
-
-你可以通过使用 `kubeadm init` 和 `kubeadm join` 命令为 kubelet 提供默认值。
-有趣的示例包括使用其他 CRI 运行时或通过服务器设置不同的默认子网。
-
-如果你想使用子网 `10.96.0.0/12` 作为services的默认网段，你可以给 kubeadm 传递 `--service-cidr` 参数：
-
-```bash
-kubeadm init --service-cidr 10.96.0.0/12
-```
-
 现在，可以从该子网分配服务的虚拟 IP。
 你还需要通过 kubelet 使用 `--cluster-dns` 标志设置 DNS 地址。
 在集群中的每个管理器和节点上的 kubelet 的设置需要相同。
 kubelet 提供了一个版本化的结构化 API 对象，该对象可以配置 kubelet 中的大多数参数，并将此配置推送到集群中正在运行的每个 kubelet 上。
-此对象被称为 [`KubeletConfiguration`](/zh/docs/reference/config-api/kubelet-config.v1beta1/)。
+此对象被称为 [`KubeletConfiguration`](/zh-cn/docs/reference/config-api/kubelet-config.v1beta1/)。
 `KubeletConfiguration` 允许用户指定标志，例如用骆峰值代表集群的 DNS IP 地址，如下所示：
 
 ```yaml
@@ -116,14 +106,23 @@ clusterDNS:
 - 10.96.0.10
 ```
 
-有关 `KubeletConfiguration` 的更多详细信息，亲参阅[本节](#configure-kubelets-using-kubeadm)。
+<!--
+For more details on the `KubeletConfiguration` have a look at [this section](#configure-kubelets-using-kubeadm).
+-->
+有关 `KubeletConfiguration` 的更多详细信息，请参阅[本节](#configure-kubelets-using-kubeadm)。
 
 <!--
 ### Providing instance-specific configuration details
 
 Some hosts require specific kubelet configurations due to differences in hardware, operating system,
 networking, or other host-specific parameters. The following list provides a few examples.
+-->
+### 提供特定于某实例的配置细节    {#providing-instance-specific-configuration-details}
 
+由于硬件、操作系统、网络或者其他主机特定参数的差异。某些主机需要特定的 kubelet 配置。
+以下列表提供了一些示例。
+
+<!--
 - The path to the DNS resolution file, as specified by the `--resolv-conf` kubelet
   configuration flag, may differ among operating systems, or depending on whether you are using
   `systemd-resolved`. If this path is wrong, DNS resolution will fail on the Node whose kubelet
@@ -133,23 +132,16 @@ networking, or other host-specific parameters. The following list provides a few
   unless you are using a cloud provider. You can use the `--hostname-override` flag to override the
   default behavior if you need to specify a Node name different from the machine's hostname.
 
-- Currently, the kubelet cannot automatically detect the cgroup driver used by the CRI runtime,
-  but the value of `--cgroup-driver` must match the cgroup driver used by the CRI runtime to ensure
+- Currently, the kubelet cannot automatically detect the cgroup driver used by the container runtime,
+  but the value of `--cgroup-driver` must match the cgroup driver used by the container runtime to ensure
   the health of the kubelet.
 
-- Depending on the CRI runtime your cluster uses, you may need to specify different flags to the kubelet.
-  For instance, when using Docker, you need to specify flags such as `--network-plugin=cni`, but if you
-  are using an external runtime, you need to specify `--container-runtime=remote` and specify the CRI
-  endpoint using the `--container-runtime-endpoint=<path>`.
+- To specify the container runtime you must set its endpoint with the
+  `--container-runtime-endpoint=<path>` flag.
 
 You can specify these flags by configuring an individual kubelet's configuration in your service manager,
 such as systemd.
 -->
-### 提供指定实例的详细配置信息
-
-由于硬件、操作系统、网络或者其他主机特定参数的差异。某些主机需要特定的 kubelet 配置。
-以下列表提供了一些示例。
-
 - 由 kubelet 配置标志 `--resolv-conf` 指定的 DNS 解析文件的路径在操作系统之间可能有所不同，
   它取决于你是否使用 `systemd-resolved`。
   如果此路径错误，则在其 kubelet 配置错误的节点上 DNS 解析也将失败。
@@ -157,12 +149,10 @@ such as systemd.
 - 除非你使用云驱动，否则默认情况下 Node API 对象的 `.metadata.name` 会被设置为计算机的主机名。
   如果你需要指定一个与机器的主机名不同的节点名称，你可以使用 `--hostname-override` 标志覆盖默认值。
 
-- 当前，kubelet 无法自动检测 CRI 运行时使用的 cgroup 驱动程序，
-  但是值 `--cgroup-driver` 必须与 CRI 运行时使用的 cgroup 驱动程序匹配，以确保 kubelet 的健康运行状况。
+- 当前，kubelet 无法自动检测容器运行时使用的 cgroup 驱动程序，
+  但是值 `--cgroup-driver` 必须与容器运行时使用的 cgroup 驱动程序匹配，以确保 kubelet 的健康运行状况。
 
-- 取决于你的集群所使用的 CRI 运行时，你可能需要为 kubelet 指定不同的标志。
-  例如，当使用 Docker 时，你需要指定如 `--network-plugin=cni` 这类标志；但是如果你使用的是外部运行时，
-  则需要指定 `--container-runtime=remote` 并使用 `--container-runtime-endpoint=<path>` 指定 CRI 端点。
+- 要指定容器运行时，你必须用 `--container-runtime-endpoint=<path>` 标志来指定端点。
 
 你可以在服务管理器（例如 systemd）中设定某个 kubelet 的配置来指定这些参数。
 
@@ -179,75 +169,70 @@ Also have a look at the
 [reference for the KubeletConfiguration](/docs/reference/config-api/kubelet-config.v1beta1/)
 for more information on the individual fields.
 -->
-## 使用 kubeadm 配置 kubelet
+## 使用 kubeadm 配置 kubelet    {#configure-kubelets-using-kubeadm}
 
 如果自定义的 `KubeletConfiguration` API 对象使用像  `kubeadm ... --config some-config-file.yaml` 这样的配置文件进行传递，则可以配置 kubeadm 启动的 kubelet。
 
 通过调用 `kubeadm config print init-defaults --component-configs KubeletConfiguration`，
 你可以看到此结构中的所有默认值。
 
-也可以阅读 [KubeletConfiguration 参考](/docs/reference/config-api/kubelet-config.v1beta1/)
+也可以阅读 [KubeletConfiguration 参考](/zh-cn/docs/reference/config-api/kubelet-config.v1beta1/)
 来获取有关各个字段的更多信息。
 
 <!--
 ### Workflow when using `kubeadm init`
+-->
+### 使用 `kubeadm init` 时的工作流程    {#workflow-when-using-kubeadm-init}
 
+<!--
 When you call `kubeadm init`, the kubelet configuration is marshalled to disk
-at `/var/lib/kubelet/config.yaml`, and also uploaded to a ConfigMap in the cluster. The ConfigMap
-is named `kubelet-config-1.X`, where `X` is the minor version of the Kubernetes version you are
-initializing. A kubelet configuration file is also written to `/etc/kubernetes/kubelet.conf` with the
-baseline cluster-wide configuration for all kubelets in the cluster. This configuration file
+at `/var/lib/kubelet/config.yaml`, and also uploaded to a `kubelet-config` ConfigMap in the `kube-system`
+namespace of the cluster. A kubelet configuration file is also written to `/etc/kubernetes/kubelet.conf`
+with the baseline cluster-wide configuration for all kubelets in the cluster. This configuration file
 points to the client certificates that allow the kubelet to communicate with the API server. This
 addresses the need to
 [propagate cluster-level configuration to each kubelet](#propagating-cluster-level-configuration-to-each-kubelet).
+-->
+当调用 `kubeadm init` 时，kubelet 的配置会被写入磁盘 `/var/lib/kubelet/config.yaml`，
+并上传到集群 `kube-system` 命名空间的 `kubelet-config` ConfigMap。
+kubelet 配置信息也被写入 `/etc/kubernetes/kubelet.conf`，其中包含集群内所有 kubelet 的基线配置。
+此配置文件指向允许 kubelet 与 API 服务器通信的客户端证书。
+这解决了[将集群级配置传播到每个 kubelet](#propagating-cluster-level-configuration-to-each-kubelet) 的需求。
 
+<!--
 To address the second pattern of
 [providing instance-specific configuration details](#providing-instance-specific-configuration-details),
 kubeadm writes an environment file to `/var/lib/kubelet/kubeadm-flags.env`, which contains a list of
 flags to pass to the kubelet when it starts. The flags are presented in the file like this:
-
-```bash
-KUBELET_KUBEADM_ARGS="--flag1=value1 --flag2=value2 ..."
-```
-
-In addition to the flags used when starting the kubelet, the file also contains dynamic
-parameters such as the cgroup driver and whether to use a different CRI runtime socket
-(`--cri-socket`).
-
-After marshalling these two files to disk, kubeadm attempts to run the following two
-commands, if you are using systemd:
-
-```bash
-systemctl daemon-reload && systemctl restart kubelet
-```
-
-If the reload and restart are successful, the normal `kubeadm init` workflow continues.
 -->
-### 当使用 `kubeadm init`时的工作流程
-
-当调用 `kubeadm init` 时，kubelet 配置被编组到磁盘上的 `/var/lib/kubelet/config.yaml` 中，
-并且上传到集群中的 ConfigMap。
-ConfigMap 名为 `kubelet-config-1.X`，其中 `X` 是你正在初始化的 kubernetes 版本的次版本。
-在集群中所有 kubelet 的基准集群范围内配置，将 kubelet 配置文件写入 `/etc/kubernetes/kubelet.conf` 中。
-此配置文件指向允许 kubelet 与 API 服务器通信的客户端证书。
-这解决了 [将集群级配置传播到每个 kubelet](#propagating-cluster-level-configuration-to-each-kubelet)的需求。
-
-该文档 [提供特定实例的配置详细信息](#providing-instance-specific-configuration-details) 是第二种解决模式，
-kubeadm 将环境文件写入 `/var/lib/kubelet/kubeadm-flags.env`，其中包含了一个标志列表，
+针对[为特定实例提供配置细节](#providing-instance-specific-configuration-details)的第二种模式，
+kubeadm 的解决方法是将环境文件写入 `/var/lib/kubelet/kubeadm-flags.env`，其中包含了一个标志列表，
 当 kubelet 启动时，该标志列表会传递给 kubelet 标志在文件中的显示方式如下：
 
 ```bash
 KUBELET_KUBEADM_ARGS="--flag1=value1 --flag2=value2 ..."
 ```
 
-除了启动 kubelet 时使用该标志外，该文件还包含动态参数，例如 cgroup 驱动程序以及是否使用其他 CRI 运行时 socket（`--cri-socket`）。
+<!--
+In addition to the flags used when starting the kubelet, the file also contains dynamic
+parameters such as the cgroup driver and whether to use a different container runtime socket
+(`--cri-socket`).
+-->
+除了启动 kubelet 时所使用的标志外，该文件还包含动态参数，例如 cgroup 驱动程序以及是否使用其他容器运行时套接字（`--cri-socket`）。
 
+<!--
+After marshalling these two files to disk, kubeadm attempts to run the following two
+commands, if you are using systemd:
+-->
 将这两个文件编组到磁盘后，如果使用 systemd，则 kubeadm 尝试运行以下两个命令：
 
 ```bash
 systemctl daemon-reload && systemctl restart kubelet
 ```
 
+<!--
+If the reload and restart are successful, the normal `kubeadm init` workflow continues.
+-->
 如果重新加载和重新启动成功，则正常的 `kubeadm init` 工作流程将继续。
 
 <!--
@@ -255,43 +240,54 @@ systemctl daemon-reload && systemctl restart kubelet
 
 When you run `kubeadm join`, kubeadm uses the Bootstrap Token credential to perform
 a TLS bootstrap, which fetches the credential needed to download the
-`kubelet-config-1.X` ConfigMap and writes it to `/var/lib/kubelet/config.yaml`. The dynamic
+`kubelet-config` ConfigMap and writes it to `/var/lib/kubelet/config.yaml`. The dynamic
 environment file is generated in exactly the same way as `kubeadm init`.
+-->
+### 使用 `kubeadm join` 时的工作流程    {#workflow-when-using-kubeadm-join}
 
+当运行 `kubeadm join` 时，kubeadm 使用 Bootstrap Token 证书执行 TLS 引导，该引导会获取一份证书，
+该证书需要下载 `kubelet-config` ConfigMap 并把它写入 `/var/lib/kubelet/config.yaml` 中。
+动态环境文件的生成方式恰好与 `kubeadm init` 完全相同。
+
+<!--
 Next, `kubeadm` runs the following two commands to load the new configuration into the kubelet:
+-->
+接下来，`kubeadm` 运行以下两个命令将新配置加载到 kubelet 中：
 
 ```bash
 systemctl daemon-reload && systemctl restart kubelet
 ```
 
+<!--
 After the kubelet loads the new configuration, kubeadm writes the
 `/etc/kubernetes/bootstrap-kubelet.conf` KubeConfig file, which contains a CA certificate and Bootstrap
 Token. These are used by the kubelet to perform the TLS Bootstrap and obtain a unique
-credential, which is stored in `/etc/kubernetes/kubelet.conf`. When this file is written, the kubelet
-has finished performing the TLS Bootstrap.
+credential, which is stored in `/etc/kubernetes/kubelet.conf`.
 -->
-### 当使用 `kubeadm join`时的工作流程
-
-当运行 `kubeadm join` 时，kubeadm 使用 Bootstrap Token 证书执行 TLS 引导，该引导会获取一份证书，该证书需要下载 `kubelet-config-1.X` ConfigMap 并把它写入 `/var/lib/kubelet/config.yaml` 中。
-动态环境文件的生成方式恰好与 `kubeadm init` 相同。
-
-接下来，kubeadm 运行以下两个命令将新配置加载到 kubelet 中：
-
-```bash
-systemctl daemon-reload && systemctl restart kubelet
-```
-
 在 kubelet 加载新配置后，kubeadm 将写入 `/etc/kubernetes/bootstrap-kubelet.conf` KubeConfig 文件中，
 该文件包含 CA 证书和引导程序令牌。
 kubelet 使用这些证书执行 TLS 引导程序并获取唯一的凭据，该凭据被存储在 `/etc/kubernetes/kubelet.conf` 中。
-当此文件被写入后，kubelet 就完成了执行 TLS 引导程序。
+
+<!--
+When the `/etc/kubernetes/kubelet.conf` file is written, the kubelet has finished performing the TLS Bootstrap.
+Kubeadm deletes the `/etc/kubernetes/bootstrap-kubelet.conf` file after completing the TLS Bootstrap.
+-->
+当 `/etc/kubernetes/kubelet.conf` 文件被写入后，kubelet 就完成了 TLS 引导过程。
+Kubeadm 在完成 TLS 引导过程后将删除 `/etc/kubernetes/bootstrap-kubelet.conf` 文件。
 
 <!--
 ##  The kubelet drop-in file for systemd
+-->
+## kubelet 的 systemd drop-in 文件    {#the-kubelet-drop-in-file-for-systemd}
 
+<!--
 `kubeadm` ships with configuration for how systemd should run the kubelet.
 Note that the kubeadm CLI command never touches this drop-in file.
+-->
+`kubeadm` 中附带了有关系统如何运行 kubelet 的 systemd 配置文件。
+请注意 kubeadm CLI 命令不会修改此文件。
 
+<!--
 This configuration file installed by the `kubeadm`
 [DEB](https://github.com/kubernetes/release/blob/master/cmd/kubepkg/templates/latest/deb/kubeadm/10-kubeadm.conf) or
 [RPM package](https://github.com/kubernetes/release/blob/master/cmd/kubepkg/templates/latest/rpm/kubeadm/10-kubeadm.conf) is written to
@@ -299,50 +295,46 @@ This configuration file installed by the `kubeadm`
 It augments the basic
 [`kubelet.service` for RPM](https://github.com/kubernetes/release/blob/master/cmd/kubepkg/templates/latest/rpm/kubelet/kubelet.service) or
 [`kubelet.service` for DEB](https://github.com/kubernetes/release/blob/master/cmd/kubepkg/templates/latest/deb/kubelet/lib/systemd/system/kubelet.service):
+-->
+通过 `kubeadm` [DEB 包](https://github.com/kubernetes/release/blob/master/cmd/kubepkg/templates/latest/deb/kubeadm/10-kubeadm.conf)
+或者 [RPM 包](https://github.com/kubernetes/release/blob/master/cmd/kubepkg/templates/latest/rpm/kubeadm/10-kubeadm.conf)
+安装的配置文件被写入 `/etc/systemd/system/kubelet.service.d/10-kubeadm.conf` 并由 systemd 使用。
+它对原来的 [RPM 版本 `kubelet.service`](https://github.com/kubernetes/release/blob/master/cmd/kubepkg/templates/latest/rpm/kubelet/kubelet.service)
+或者 [DEB 版本 `kubelet.service`](https://github.com/kubernetes/release/blob/master/cmd/kubepkg/templates/latest/deb/kubelet/lib/systemd/system/kubelet.service)
+作了增强：
 
+<!--
+{{< note >}}
+The contents below are just an example. If you don't want to use a package manager
+follow the guide outlined in the [Without a package manager](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#k8s-install-2))
+section.
+{{< /note >}}
+-->
+{{< note >}}
+下面的内容只是一个例子。如果你不想使用包管理器，
+请遵循[没有包管理器](/zh-cn/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#k8s-install-2))
+章节的指南。
+{{< /note >}}
+
+<!--
 ```none
 [Service]
-Environment="KUBELET_KUBECONFIG_ARGS=--bootstrap-kubeconfig=/etc/kubernetes/bootstrap-kubelet.conf
---kubeconfig=/etc/kubernetes/kubelet.conf"
+Environment="KUBELET_KUBECONFIG_ARGS=--bootstrap-kubeconfig=/etc/kubernetes/bootstrap-kubelet.conf --kubeconfig=/etc/kubernetes/kubelet.conf"
 Environment="KUBELET_CONFIG_ARGS=--config=/var/lib/kubelet/config.yaml"
 # This is a file that "kubeadm init" and "kubeadm join" generate at runtime, populating
 the KUBELET_KUBEADM_ARGS variable dynamically
 EnvironmentFile=-/var/lib/kubelet/kubeadm-flags.env
-# This is a file that the user can use for overrides of the kubelet args as a last resort.
-# Preferably, the user should use the .NodeRegistration.KubeletExtraArgs object in the configuration files instead.
+# This is a file that the user can use for overrides of the kubelet args as a last resort. Preferably,
+# the user should use the .NodeRegistration.KubeletExtraArgs object in the configuration files instead.
 # KUBELET_EXTRA_ARGS should be sourced from this file.
 EnvironmentFile=-/etc/default/kubelet
 ExecStart=
 ExecStart=/usr/bin/kubelet $KUBELET_KUBECONFIG_ARGS $KUBELET_CONFIG_ARGS $KUBELET_KUBEADM_ARGS $KUBELET_EXTRA_ARGS
 ```
-
-This file specifies the default locations for all of the files managed by kubeadm for the kubelet.
-
-- The KubeConfig file to use for the TLS Bootstrap is `/etc/kubernetes/bootstrap-kubelet.conf`,
-  but it is only used if `/etc/kubernetes/kubelet.conf` does not exist.
-- The KubeConfig file with the unique kubelet identity is `/etc/kubernetes/kubelet.conf`.
-- The file containing the kubelet's ComponentConfig is `/var/lib/kubelet/config.yaml`.
-- The dynamic environment file that contains `KUBELET_KUBEADM_ARGS` is sourced from `/var/lib/kubelet/kubeadm-flags.env`.
-- The file that can contain user-specified flag overrides with `KUBELET_EXTRA_ARGS` is sourced from
-  `/etc/default/kubelet` (for DEBs), or `/etc/sysconfig/kubelet` (for RPMs). `KUBELET_EXTRA_ARGS`
-  is last in the flag chain and has the highest priority in the event of conflicting settings.
 -->
-##  kubelet 的 systemd 文件 {#the-kubelet-drop-in-file-for-systemd}
-
-`kubeadm` 中附带了有关系统如何运行 kubelet 的 systemd 配置文件。
-请注意 kubeadm CLI 命令不会修改此文件。
-
-通过 `kubeadm` [DEB](https://github.com/kubernetes/release/blob/master/cmd/kubepkg/templates/latest/deb/kubeadm/10-kubeadm.conf) 
-或者 [RPM 包](https://github.com/kubernetes/release/blob/master/cmd/kubepkg/templates/latest/rpm/kubeadm/10-kubeadm.conf) 
-安装的配置文件被写入 `/etc/systemd/system/kubelet.service.d/10-kubeadm.conf` 并由系统使用。
-它对原来的 [RPM 版本 `kubelet.service`](https://github.com/kubernetes/release/blob/master/cmd/kubepkg/templates/latest/rpm/kubelet/kubelet.service) 
-或者 [DEB 版本 `kubelet.service`](https://github.com/kubernetes/release/blob/master/cmd/kubepkg/templates/latest/deb/kubelet/lib/systemd/system/kubelet.service)
-作了增强：
-
 ```none
 [Service]
-Environment="KUBELET_KUBECONFIG_ARGS=--bootstrap-kubeconfig=/etc/kubernetes/bootstrap-kubelet.conf
---kubeconfig=/etc/kubernetes/kubelet.conf"
+Environment="KUBELET_KUBECONFIG_ARGS=--bootstrap-kubeconfig=/etc/kubernetes/bootstrap-kubelet.conf --kubeconfig=/etc/kubernetes/kubelet.conf"
 Environment="KUBELET_CONFIG_ARGS=--config=/var/lib/kubelet/config.yaml"
 # 这是 "kubeadm init" 和 "kubeadm join" 运行时生成的文件，动态地填充 KUBELET_KUBEADM_ARGS 变量
 EnvironmentFile=-/var/lib/kubelet/kubeadm-flags.env
@@ -354,8 +346,21 @@ ExecStart=
 ExecStart=/usr/bin/kubelet $KUBELET_KUBECONFIG_ARGS $KUBELET_CONFIG_ARGS $KUBELET_KUBEADM_ARGS $KUBELET_EXTRA_ARGS
 ```
 
-该文件为 kubelet 指定由 kubeadm 管理的所有文件的默认位置。
+<!--
+This file specifies the default locations for all of the files managed by kubeadm for the kubelet.
+-->
+此文件指定由 kubeadm 为 kubelet 管理的所有文件的默认位置。
 
+<!--
+- The KubeConfig file to use for the TLS Bootstrap is `/etc/kubernetes/bootstrap-kubelet.conf`,
+  but it is only used if `/etc/kubernetes/kubelet.conf` does not exist.
+- The KubeConfig file with the unique kubelet identity is `/etc/kubernetes/kubelet.conf`.
+- The file containing the kubelet's ComponentConfig is `/var/lib/kubelet/config.yaml`.
+- The dynamic environment file that contains `KUBELET_KUBEADM_ARGS` is sourced from `/var/lib/kubelet/kubeadm-flags.env`.
+- The file that can contain user-specified flag overrides with `KUBELET_EXTRA_ARGS` is sourced from
+  `/etc/default/kubelet` (for DEBs), or `/etc/sysconfig/kubelet` (for RPMs). `KUBELET_EXTRA_ARGS`
+  is last in the flag chain and has the highest priority in the event of conflicting settings.
+-->
 - 用于 TLS 引导程序的 KubeConfig 文件为 `/etc/kubernetes/bootstrap-kubelet.conf`，
   但仅当 `/etc/kubernetes/kubelet.conf` 不存在时才能使用。
 - 具有唯一 kubelet 标识的 KubeConfig 文件为 `/etc/kubernetes/kubelet.conf`。
@@ -367,24 +372,27 @@ ExecStart=/usr/bin/kubelet $KUBELET_KUBECONFIG_ARGS $KUBELET_CONFIG_ARGS $KUBELE
 
 <!--
 ## Kubernetes binaries and package contents
-
-The DEB and RPM packages shipped with the Kubernetes releases are:
-
-| Package name   | Description |
-|----------------|-------------|
-| `kubeadm`      | Installs the `/usr/bin/kubeadm` CLI tool and the [kubelet drop-in file](#the-kubelet-drop-in-file-for-systemd) for the kubelet. |
-| `kubelet`      | Installs the kubelet binary in `/usr/bin` and CNI binaries in `/opt/cni/bin`. |
-| `kubectl`      | Installs the `/usr/bin/kubectl` binary. |
-| `cri-tools`    | Installs the `/usr/bin/crictl` binary from the [cri-tools git repository](https://github.com/kubernetes-sigs/cri-tools). |
 -->
-## Kubernetes 可执行文件和软件包内容
+## Kubernetes 可执行文件和软件包内容    {#kubernetes-binaries-and-package-contents}
 
+<!--
+The DEB and RPM packages shipped with the Kubernetes releases are:
+-->
 Kubernetes 版本对应的 DEB 和 RPM 软件包是：
 
+<!--
 | Package name | Description |
 |--------------|-------------|
-| `kubeadm`    | 给 kubelet 安装 `/usr/bin/kubeadm` CLI 工具和 [kubelet 的 systemd 文件](#the-kubelet-drop-in-file-for-systemd)。 |
-| `kubelet`    | 安装 kubelet 可执行文件到 `/usr/bin` 路径，安装 CNI 可执行文件到 `/opt/cni/bin` 路径。 |
+| `kubeadm`    | Installs the `/usr/bin/kubeadm` CLI tool and the [kubelet drop-in file](#the-kubelet-drop-in-file-for-systemd) for the kubelet. |
+| `kubelet`    | Installs the `/usr/bin/kubelet` binary. |
+| `kubectl`    | Installs the `/usr/bin/kubectl` binary. |
+| `cri-tools` | Installs the `/usr/bin/crictl` binary from the [cri-tools git repository](https://github.com/kubernetes-sigs/cri-tools). |
+| `kubernetes-cni` | Installs the `/opt/cni/bin` binaries from the [plugins git repository](https://github.com/containernetworking/plugins). |
+-->
+| 软件包名称   | 描述        |
+|--------------|-------------|
+| `kubeadm`    | 给 kubelet 安装 `/usr/bin/kubeadm` CLI 工具和 [kubelet 的 systemd drop-in 文件](#the-kubelet-drop-in-file-for-systemd)。 |
+| `kubelet`    | 安装 `/usr/bin/kubelet` 可执行文件。 |
 | `kubectl`    | 安装 `/usr/bin/kubectl` 可执行文件。 |
 | `cri-tools` | 从 [cri-tools git 仓库](https://github.com/kubernetes-sigs/cri-tools)中安装 `/usr/bin/crictl` 可执行文件。 |
-
+| `kubernetes-cni` | 从 [plugins git 仓库](https://github.com/containernetworking/plugins)中安装 `/opt/cni/bin` 可执行文件。|
diff --git a/content/zh/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm.md b/content/zh-cn/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm.md
similarity index 73%
rename from content/zh/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm.md
rename to content/zh-cn/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm.md
index fc30729efd..0df3785c3a 100644
--- a/content/zh/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm.md
+++ b/content/zh-cn/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm.md
@@ -7,7 +7,7 @@ weight: 70
 <!--
 reviewers:
 - sig-cluster-lifecycle
-title: Set up a High Availability etcd cluster with kubeadm
+title: Set up a High Availability etcd Cluster with kubeadm
 content_type: task
 weight: 70
 -->
@@ -22,46 +22,46 @@ or upgrades for such nodes. The long term plan is to empower the tool
 [etcdadm](https://github.com/kubernetes-sigs/etcdadm) to manage these
 aspects.
 -->
-在本指南中，当 kubeadm 用作为外部 etcd 节点管理工具，请注意 kubeadm 不计划支持此类节点的证书更换或升级。对于长期规划是使用 [etcdadm](https://github.com/kubernetes-sigs/etcdadm) 增强工具来管理这方面。
+在本指南中，使用 kubeadm 作为外部 etcd 节点管理工具，请注意 kubeadm 不计划支持此类节点的证书更换或升级。
+对于长期规划是使用 [etcdadm](https://github.com/kubernetes-sigs/etcdadm) 增强工具来管理这些方面。
 {{< /note >}}
 
 <!--
-Kubeadm defaults to running a single member etcd cluster in a static pod managed
-by the kubelet on the control plane node. This is not a high availability setup
-as the etcd cluster contains only one member and cannot sustain any members
-becoming unavailable. This task walks through the process of creating a high
-availability etcd cluster of three members that can be used as an external etcd
-when using kubeadm to set up a kubernetes cluster.
+By default, kubeadm runs a local etcd instance on each control plane node.
+It is also possible to treat the etcd cluster as external and provision
+etcd instances on separate hosts. The differences between the two approaches are covered in the
+[Options for Highly Available topology](/docs/setup/production-environment/tools/kubeadm/ha-topology) page.
 -->
-默认情况下，kubeadm 运行单成员的 etcd 集群，该集群由控制面节点上的 kubelet 以静态 Pod 的方式进行管理。由于 etcd 集群只包含一个成员且不能在任一成员不可用时保持运行，所以这不是一种高可用设置。本任务，将告诉你如何在使用 kubeadm 创建一个 kubernetes 集群时创建一个外部 etcd：有三个成员的高可用 etcd 集群。
 
+默认情况下，kubeadm 在每个控制平面节点上运行一个本地 etcd 实例。也可以使用外部的 etcd 集群，并在不同的主机上提供 etcd 实例。
+这两种方法的区别在 [高可用拓扑的选项](/zh-cn/docs/setup/production-environment/tools/kubeadm/ha-topology) 页面中阐述。
 
+<!--
+This task walks through the process of creating a high availability external
+etcd cluster of three members that can be used by kubeadm during cluster creation.
+-->
+
+这个任务将指导你创建一个由三个成员组成的高可用外部 etcd 集群，该集群在创建过程中可被 kubeadm 使用。
 
 ## {{% heading "prerequisites" %}}
 
-
 <!--
-* Three hosts that can talk to each other over ports 2379 and 2380. This document assumes these default ports. However, they are configurable through the kubeadm config file.
+* Three hosts that can talk to each other over TCP ports 2379 and 2380. This document assumes these default ports. However, they are configurable through the kubeadm config file.
 -->
 * 三个可以通过 2379 和 2380 端口相互通信的主机。本文档使用这些作为默认端口。不过，它们可以通过 kubeadm 的配置文件进行自定义。
 
 <!--
-* Each host must [have docker, kubelet, and kubeadm installed][toolbox].
+* Each host must have systemd and a bash compatible shell installed.
+* Each host must [have a container runtime, kubelet, and kubeadm installed](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/).
 -->
-* 每个主机必须 [安装有 docker、kubelet 和 kubeadm][工具箱]。
+* 每个主机必须安装 systemd 和 bash 兼容的 shell。
+* 每台主机必须[安装有容器运行时、kubelet 和 kubeadm](/zh-cn/docs/setup/production-environment/tools/kubeadm/install-kubeadm/)。
 
 <!--
 * Some infrastructure to copy files between hosts. For example `ssh` and `scp` can satisfy this requirement.
 -->
 * 一些可以用来在主机间复制文件的基础设施。例如 `ssh` 和 `scp` 就可以满足需求。
 
-<!--
-[toolbox]: /docs/setup/production-environment/tools/kubeadm/install-kubeadm/
--->
-[工具箱]: /docs/setup/production-environment/tools/kubeadm/install-kubeadm/
-
-
-
 <!-- steps -->
 
 <!--
@@ -76,14 +76,24 @@ The general approach is to generate all certs on one node and only distribute th
 
 {{< note >}}
 <!--
-kubeadm contains all the necessary crytographic machinery to generate the certificates described below; no other cryptographic tooling is required for this example.
+kubeadm contains all the necessary cryptographic machinery to generate the certificates described below; no other cryptographic tooling is required for this example.
 -->
 kubeadm 包含生成下述证书所需的所有必要的密码学工具；在这个例子中，不需要其他加密工具。
 {{< /note >}}
 
+{{< note >}}
+<!--
+The examples below use IPv4 addresses but you can also configure kubeadm, the kubelet and etcd
+to use IPv6 addresses. Dual-stack is supported by some Kubernetes options, but not by etcd. For more details
+on Kubernetes dual-stack support see [Dual-stack support with kubeadm](/docs/setup/production-environment/tools/kubeadm/dual-stack-support/).
+-->
+下面的例子使用 IPv4 地址，但是你也可以使用 IPv6 地址配置 kubeadm、kubelet 和 etcd。一些 Kubernetes 选项支持双协议栈，但是 etcd 不支持。
+关于 Kubernetes 双协议栈支持的更多细节，请参见 [kubeadm 的双栈支持](/zh-cn/docs/setup/production-environment/tools/kubeadm/dual-stack-support/)。
+{{< /note >}}
+
 <!--
 1. Configure the kubelet to be a service manager for etcd.
- 
+
    {{< note >}}You must do this on every host where etcd should be running.{{< /note >}}
    Since etcd was created first, you must override the service priority by creating a new unit file
    that has higher precedence than the kubeadm-provided kubelet unit file.
@@ -102,6 +112,7 @@ kubeadm 包含生成下述证书所需的所有必要的密码学工具；在这
    ExecStart=
    # 将下面的 "systemd" 替换为你的容器运行时所使用的 cgroup 驱动。
    # kubelet 的默认值为 "cgroupfs"。
+   # 如果需要的话，将 "--container-runtime-endpoint " 的值替换为一个不同的容器运行时。
    ExecStart=/usr/bin/kubelet --address=127.0.0.1 --pod-manifest-path=/etc/kubernetes/manifests --cgroup-driver=systemd
    Restart=always
    EOF
@@ -115,7 +126,6 @@ kubeadm 包含生成下述证书所需的所有必要的密码学工具；在这
    -->
    检查 kubelet 的状态以确保其处于运行状态：
 
-
    ```shell
    systemctl status kubelet
    ```
@@ -131,21 +141,34 @@ kubeadm 包含生成下述证书所需的所有必要的密码学工具；在这
    使用以下脚本为每个将要运行 etcd 成员的主机生成一个 kubeadm 配置文件。
 
    ```sh
-   # 使用 IP 或可解析的主机名替换 HOST0、HOST1 和 HOST2
+   # 使用你的主机 IP 替换 HOST0、HOST1 和 HOST2 的 IP 地址
    export HOST0=10.0.0.6
    export HOST1=10.0.0.7
    export HOST2=10.0.0.8
 
+   # 使用你的主机名更新 NAME0、NAME1 和 NAME2
+   export NAME0="infra0"
+   export NAME1="infra1"
+   export NAME2="infra2"
+
    # 创建临时目录来存储将被分发到其它主机上的文件
    mkdir -p /tmp/${HOST0}/ /tmp/${HOST1}/ /tmp/${HOST2}/
 
-   ETCDHOSTS=(${HOST0} ${HOST1} ${HOST2})
-   NAMES=("infra0" "infra1" "infra2")
+   HOSTS=(${HOST0} ${HOST1} ${HOST2})
+   NAMES=(${NAME0} ${NAME1} ${NAME2})
 
-   for i in "${!ETCDHOSTS[@]}"; do
-   HOST=${ETCDHOSTS[$i]}
+   for i in "${!HOSTS[@]}"; do
+   HOST=${HOSTS[$i]}
    NAME=${NAMES[$i]}
    cat << EOF > /tmp/${HOST}/kubeadmcfg.yaml
+   ---
+   apiVersion: "kubeadm.k8s.io/v1beta3"
+   kind: InitConfiguration
+   nodeRegistration:
+       name: ${NAME}
+   localAPIEndpoint:
+       advertiseAddress: ${HOST}
+   ---
    apiVersion: "kubeadm.k8s.io/v1beta3"
    kind: ClusterConfiguration
    etcd:
@@ -155,7 +178,7 @@ kubeadm 包含生成下述证书所需的所有必要的密码学工具；在这
            peerCertSANs:
            - "${HOST}"
            extraArgs:
-               initial-cluster: infra0=https://${ETCDHOSTS[0]}:2380,infra1=https://${ETCDHOSTS[1]}:2380,infra2=https://${ETCDHOSTS[2]}:2380
+               initial-cluster: ${NAMES[0]}=https://${HOSTS[0]}:2380,${NAMES[1]}=https://${HOSTS[1]}:2380,${NAMES[2]}=https://${HOSTS[2]}:2380
                initial-cluster-state: new
                name: ${NAME}
                listen-peer-urls: https://${HOST}:2380
@@ -185,14 +208,14 @@ kubeadm 包含生成下述证书所需的所有必要的密码学工具；在这
    -->
    如果你还没有 CA，则在 `$HOST0`（你为 kubeadm 生成配置文件的位置）上运行此命令。
 
-   ```
+   ```shell
    kubeadm init phase certs etcd-ca
    ```
 
    <!--
    This creates two files
    -->
-   这一操作创建如下两个文件
+   这一操作创建如下两个文件：
 
    - `/etc/kubernetes/pki/etcd/ca.crt`
    - `/etc/kubernetes/pki/etcd/ca.key`
@@ -280,7 +303,7 @@ kubeadm 包含生成下述证书所需的所有必要的密码学工具；在这
    -->
    在 `$HOST1` 上：
 
-   ```
+   ```console
    $HOME
    └── kubeadmcfg.yaml
    ---
@@ -302,7 +325,7 @@ kubeadm 包含生成下述证书所需的所有必要的密码学工具；在这
    -->
    在 `$HOST2` 上：
 
-   ```
+   ```console
    $HOME
    └── kubeadmcfg.yaml
    ---
@@ -332,15 +355,15 @@ kubeadm 包含生成下述证书所需的所有必要的密码学工具；在这
    在每台主机上运行 `kubeadm` 命令来生成 etcd 使用的静态清单。
 
    ```shell
-   root@HOST0 $ kubeadm init phase etcd local --config=/tmp/${HOST0}/kubeadmcfg.yaml
-   root@HOST1 $ kubeadm init phase etcd local --config=/tmp/${HOST1}/kubeadmcfg.yaml
-   root@HOST2 $ kubeadm init phase etcd local --config=/tmp/${HOST2}/kubeadmcfg.yaml
+    root@HOST0 $ kubeadm init phase etcd local --config=/tmp/${HOST0}/kubeadmcfg.yaml
+    root@HOST1 $ kubeadm init phase etcd local --config=$HOME/kubeadmcfg.yaml
+    root@HOST2 $ kubeadm init phase etcd local --config=$HOME/kubeadmcfg.yaml
    ```
 
 <!--
 1. Optional: Check the cluster health
 -->
-8. 可选：检查群集运行状况
+8. 可选：检查集群运行状况
 
    ```shell
    docker run --rm -it \
@@ -373,6 +396,6 @@ highly available control plane using the [external etcd method with
 kubeadm](/docs/setup/independent/high-availability/).
 -->
 一旦拥有了一个正常工作的 3 成员的 etcd 集群，你就可以基于
-[使用 kubeadm 外部 etcd 的方法](/zh/docs/setup/production-environment/tools/kubeadm/high-availability/)，
+[使用 kubeadm 外部 etcd 的方法](/zh-cn/docs/setup/production-environment/tools/kubeadm/high-availability/)，
 继续部署一个高可用的控制平面。
 
diff --git a/content/zh/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm.md b/content/zh-cn/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm.md
similarity index 78%
rename from content/zh/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm.md
rename to content/zh-cn/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm.md
index 8aa97894b1..72f96dfc94 100644
--- a/content/zh/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm.md
+++ b/content/zh-cn/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm.md
@@ -21,7 +21,8 @@ If your problem is not listed below, please follow the following steps:
   - Go to [github.com/kubernetes/kubeadm](https://github.com/kubernetes/kubeadm/issues) and search for existing issues.
   - If no issue exists, please [open one](https://github.com/kubernetes/kubeadm/issues/new) and follow the issue template.
 
-- If you are unsure about how kubeadm works, you can ask on [Slack](http://slack.k8s.io/) in #kubeadm, or open a question on [StackOverflow](https://stackoverflow.com/questions/tagged/kubernetes). Please include
+- If you are unsure about how kubeadm works, you can ask on [Slack](https://slack.k8s.io/) in `#kubeadm`,
+  or open a question on [StackOverflow](https://stackoverflow.com/questions/tagged/kubernetes). Please include
   relevant tags like `#kubernetes` and `#kubeadm` so folks can help you.
 -->
 与任何程序一样，你可能会在安装或者运行 kubeadm 时遇到错误。
@@ -33,13 +34,73 @@ If your problem is not listed below, please follow the following steps:
   - 转到 [github.com/kubernetes/kubeadm](https://github.com/kubernetes/kubeadm/issues) 并搜索存在的问题。
   - 如果没有问题，请 [打开](https://github.com/kubernetes/kubeadm/issues/new) 并遵循问题模板。
 
-- 如果你对 kubeadm 的工作方式有疑问，可以在 [Slack](https://slack.k8s.io/) 上的 #kubeadm 频道提问，
+- 如果你对 kubeadm 的工作方式有疑问，可以在 [Slack](https://slack.k8s.io/) 上的 `#kubeadm` 频道提问，
 或者在 [StackOverflow](https://stackoverflow.com/questions/tagged/kubernetes) 上提问。
 请加入相关标签，例如 `#kubernetes` 和 `#kubeadm`，这样其他人可以帮助你。
 
-
 <!-- body -->
 
+<!--
+## Not possible to join a v1.18 Node to a v1.17 cluster due to missing RBAC
+-->
+## 由于缺少 RBAC，无法将 v1.18 Node 加入 v1.17 集群
+
+<!--
+In v1.18 kubeadm added prevention for joining a Node in the cluster if a Node with the same name already exists.
+This required adding RBAC for the bootstrap-token user to be able to GET a Node object.
+
+However this causes an issue where `kubeadm join` from v1.18 cannot join a cluster created by kubeadm v1.17.
+-->
+自从 v1.18 后，如果集群中已存在同名 Node，kubeadm 将禁止 Node 加入集群。
+这需要为 bootstrap-token 用户添加 RBAC 才能 GET Node 对象。
+
+但这会导致一个问题，v1.18 的 `kubeadm join` 无法加入由 kubeadm v1.17 创建的集群。
+
+<!--
+To workaround the issue you have two options:
+
+Execute `kubeadm init phase bootstrap-token` on a control-plane node using kubeadm v1.18.
+Note that this enables the rest of the bootstrap-token permissions as well.
+
+or
+
+Apply the following RBAC manually using `kubectl apply -f ...`:
+-->
+要解决此问题，你有两种选择：
+
+使用 kubeadm v1.18 在控制平面节点上执行 `kubeadm init phase bootstrap-token`。
+请注意，这也会启用 bootstrap-token 的其余权限。
+
+或者，也可以使用 `kubectl apply -f ...` 手动应用以下 RBAC：
+
+
+```yaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: kubeadm:get-nodes
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: kubeadm:get-nodes
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: kubeadm:get-nodes
+subjects:
+- apiGroup: rbac.authorization.k8s.io
+  kind: Group
+  name: system:bootstrappers:kubeadm:default-node-token
+```
+
 <!--
 ## `ebtables` or some similar executable not found during installation
 
@@ -95,20 +156,21 @@ This may be caused by a number of problems. The most common are:
 configure it properly see [Configuring a cgroup driver](/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver/).
 - control plane containers are crashlooping or hanging. You can check this by running `docker ps`
 and investigating each container by running `docker logs`. For other container runtime see
-[Debugging Kubernetes nodes with crictl](/docs/tasks/debug-application-cluster/crictl/).
+[Debugging Kubernetes nodes with crictl](/docs/tasks/debug/debug-cluster/crictl/).
 -->
 这可能是由许多问题引起的。最常见的是：
 
 - 网络连接问题。在继续之前，请检查你的计算机是否具有全部联通的网络连接。
 - 容器运行时的 cgroup 驱动不同于 kubelet 使用的 cgroup 驱动。要了解如何正确配置 cgroup 驱动，
-  请参阅[配置 cgroup 驱动](/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver/)。
+  请参阅[配置 cgroup 驱动](/zh-cn/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver/)。
 - 控制平面上的 Docker 容器持续进入崩溃状态或（因其他原因）挂起。你可以运行 `docker ps` 命令来检查以及 `docker logs` 命令来检视每个容器的运行日志。
-  对于其他容器运行时，请参阅[使用 crictl 对 Kubernetes 节点进行调试](/zh/docs/tasks/debug-application-cluster/crictl/)。
+  对于其他容器运行时，请参阅[使用 crictl 对 Kubernetes 节点进行调试](/zh-cn/docs/tasks/debug/debug-cluster/crictl/)。
 
 <!--
 ## kubeadm blocks when removing managed containers
 
-The following could happen if Docker halts and does not remove any Kubernetes-managed containers:
+The following could happen if the container runtime halts and does not remove
+any Kubernetes-managed containers:
 
 ```shell
 sudo kubeadm reset
@@ -122,22 +184,13 @@ sudo kubeadm reset
 (block)
 ```
 
-A possible solution is to restart the Docker service and then re-run `kubeadm reset`:
-
-```shell
-sudo systemctl restart docker.service
-sudo kubeadm reset
-```
-
-Inspecting the logs for docker may also be useful:
-
-```shell
-journalctl -ul docker
-```
+A possible solution is to restart the container runtime and then re-run `kubeadm reset`.
+You can also use `crictl` to debug the state of the container runtime. See
+[Debugging Kubernetes nodes with crictl](/docs/tasks/debug/debug-cluster/crictl/).
 -->
 ## 当删除托管容器时 kubeadm 阻塞
 
-如果 Docker 停止并且不删除 Kubernetes 所管理的所有容器，可能发生以下情况：
+如果容器运行时停止并且未删除 Kubernetes 所管理的容器，可能发生以下情况：
 
 ```shell
 sudo kubeadm reset
@@ -152,17 +205,8 @@ sudo kubeadm reset
 ```
 
 一个可行的解决方案是重新启动 Docker 服务，然后重新运行 `kubeadm reset`：
-
-```shell
-sudo systemctl restart docker.service
-sudo kubeadm reset
-```
-
-检查 docker 的日志也可能有用：
-
-```shell
-journalctl -ul docker
-```
+你也可以使用 `crictl` 来调试容器运行时的状态。
+参见[使用 CRICTL 调试 Kubernetes 节点](/zh-cn/docs/tasks/debug/debug-cluster/crictl/)。
 
 <!--
 ## Pods in `RunContainerError`, `CrashLoopBackOff` or `Error` state
@@ -177,21 +221,17 @@ Right after `kubeadm init` there should not be any pods in these states.
   it's very likely that the Pod Network add-on that you installed is somehow broken.
   You might have to grant it more RBAC privileges or use a newer version. Please file
   an issue in the Pod Network providers' issue tracker and get the issue triaged there.
-- If you install a version of Docker older than 1.12.1, remove the `MountFlags=slave` option
-  when booting `dockerd` with `systemd` and restart `docker`. You can see the MountFlags in `/usr/lib/systemd/system/docker.service`.
-  MountFlags can interfere with volumes mounted by Kubernetes, and put the Pods in `CrashLoopBackOff` state.
-  The error happens when Kubernetes does not find `var/run/secrets/kubernetes.io/serviceaccount` files.
 -->
-## Pods 处于 `RunContainerError`、`CrashLoopBackOff` 或者 `Error` 状态
+## Pod 处于 `RunContainerError`、`CrashLoopBackOff` 或者 `Error` 状态
 
-在 `kubeadm init` 命令运行后，系统中不应该有 pods 处于这类状态。
+在 `kubeadm init` 命令运行后，系统中不应该有 Pod 处于这类状态。
 
-- 在 `kubeadm init` 命令执行完后，如果有 pods 处于这些状态之一，请在 kubeadm
+- 在 `kubeadm init` 命令执行完后，如果有 Pod 处于这些状态之一，请在 kubeadm
   仓库提起一个 issue。`coredns` (或者 `kube-dns`) 应该处于 `Pending` 状态，
   直到你部署了网络插件为止。
 
-- 如果在部署完网络插件之后，有 Pods 处于 `RunContainerError`、`CrashLoopBackOff`
-  或 `Error` 状态之一，并且`coredns` （或者 `kube-dns`）仍处于 `Pending` 状态，
+- 如果在部署完网络插件之后，有 Pod 处于 `RunContainerError`、`CrashLoopBackOff`
+  或 `Error` 状态之一，并且 `coredns` （或者 `kube-dns`）仍处于 `Pending` 状态，
   那很可能是你安装的网络插件由于某种原因无法工作。你或许需要授予它更多的
   RBAC 特权或使用较新的版本。请在 Pod Network 提供商的问题跟踪器中提交问题，
   然后在此处分类问题。
@@ -199,7 +239,7 @@ Right after `kubeadm init` there should not be any pods in these states.
 - 如果你安装的 Docker 版本早于 1.12.1，请在使用 `systemd` 来启动 `dockerd` 和重启 `docker` 时，
   删除 `MountFlags=slave` 选项。
   你可以在 `/usr/lib/systemd/system/docker.service` 中看到 MountFlags。
-  MountFlags 可能会干扰 Kubernetes 挂载的卷， 并使 Pods 处于 `CrashLoopBackOff` 状态。
+  MountFlags 可能会干扰 Kubernetes 挂载的卷，并使 Pod 处于 `CrashLoopBackOff` 状态。
   当 Kubernetes 不能找到 `var/run/secrets/kubernetes.io/serviceaccount` 文件时会发生错误。
 
 <!--
@@ -214,7 +254,7 @@ before CoreDNS may be deployed fully. Hence the `Pending` state before the netwo
 
 这一行为是 **预期之中** 的，因为系统就是这么设计的。
 kubeadm 的网络供应商是中立的，因此管理员应该选择
-[安装 pod 的网络插件](/zh/docs/concepts/cluster-administration/addons/)。
+[安装 Pod 的网络插件](/zh-cn/docs/concepts/cluster-administration/addons/)。
 你必须完成 Pod 的网络配置，然后才能完全部署 CoreDNS。
 在网络被配置好之前，DNS 组件会一直处于 `Pending` 状态。
 
@@ -230,7 +270,7 @@ Calico, Canal, and Flannel CNI providers are verified to support HostPort.
 For more information, see the [CNI portmap documentation](https://github.com/containernetworking/plugins/blob/master/plugins/meta/portmap/README.md).
 
 If your network provider does not support the portmap CNI plugin, you may need to use the [NodePort feature of
-services](/docs/concepts/services-networking/service/#nodeport) or use `HostNetwork=true`.
+services](/docs/concepts/services-networking/service/#type-nodeport) or use `HostNetwork=true`.
 -->
 ## `HostPort` 服务无法工作
 
@@ -242,13 +282,13 @@ services](/docs/concepts/services-networking/service/#nodeport) or use `HostNetw
 有关更多信息，请参考 [CNI portmap 文档](https://github.com/containernetworking/plugins/blob/master/plugins/meta/portmap/README.md).
 
 如果你的网络提供商不支持 portmap CNI 插件，你或许需要使用
-[NodePort 服务的功能](/zh/docs/concepts/services-networking/service/#nodeport)
+[NodePort 服务的功能](/zh-cn/docs/concepts/services-networking/service/#type-nodeport)
 或者使用 `HostNetwork=true`。
 
 <!--
 ## Pods are not accessible via their Service IP
 
-- Many network add-ons do not yet enable [hairpin mode](/docs/tasks/debug-application-cluster/debug-service/#a-pod-fails-to-reach-itself-via-the-service-ip)
+- Many network add-ons do not yet enable [hairpin mode](/docs/tasks/debug/debug-application/debug-service/#a-pod-fails-to-reach-itself-via-the-service-ip)
   which allows pods to access themselves via their Service IP. This is an issue related to
   [CNI](https://github.com/containernetworking/cni/issues/476). Please contact the network
   add-on provider to get the latest status of their support for hairpin mode.
@@ -261,7 +301,7 @@ services](/docs/concepts/services-networking/service/#nodeport) or use `HostNetw
 -->
 ## 无法通过其服务 IP 访问 Pod
 
-- 许多网络附加组件尚未启用 [hairpin 模式](/zh/docs/tasks/debug-application-cluster/debug-service/#a-pod-fails-to-reach-itself-via-the-service-ip)
+- 许多网络附加组件尚未启用 [hairpin 模式](/zh-cn/docs/tasks/debug/debug-application/debug-service/#a-pod-fails-to-reach-itself-via-the-service-ip)
   该模式允许 Pod 通过其服务 IP 进行访问。这是与 [CNI](https://github.com/containernetworking/cni/issues/476) 有关的问题。
   请与网络附加组件提供商联系，以获取他们所提供的 hairpin 模式的最新状态。
 
@@ -281,7 +321,7 @@ Unable to connect to the server: x509: certificate signed by unknown authority (
 
 - Verify that the `$HOME/.kube/config` file contains a valid certificate, and
   regenerate a certificate if necessary. The certificates in a kubeconfig file
-  are base64 encoded. The `base64 -d` command can be used to decode the certificate
+  are base64 encoded. The `base64 --decode` command can be used to decode the certificate
   and `openssl x509 -text -noout` can be used for viewing the certificate information.
 - Unset the `KUBECONFIG` environment variable using:
 
@@ -306,17 +346,17 @@ Unable to connect to the server: x509: certificate signed by unknown authority (
 -->
 ## TLS 证书错误
 
-以下错误指出证书可能不匹配。
+以下错误说明证书可能不匹配。
 
 ```none
 # kubectl get pods
 Unable to connect to the server: x509: certificate signed by unknown authority (possibly because of "crypto/rsa: verification error" while trying to verify candidate authority certificate "kubernetes")
 ```
 
-- 验证 `$HOME/.kube/config` 文件是否包含有效证书，并
-  在必要时重新生成证书。在 kubeconfig 文件中的证书是 base64 编码的。
-  该 `base64 -d` 命令可以用来解码证书，`openssl x509 -text -noout` 命令
-  可以用于查看证书信息。
+- 验证 `$HOME/.kube/config` 文件是否包含有效证书，
+  并在必要时重新生成证书。在 kubeconfig 文件中的证书是 base64 编码的。
+  该 `base64 --decode` 命令可以用来解码证书，`openssl x509 -text -noout`
+  命令可以用于查看证书信息。
 - 使用如下方法取消设置 `KUBECONFIG` 环境变量的值：
 
   ```shell
@@ -329,7 +369,7 @@ Unable to connect to the server: x509: certificate signed by unknown authority (
   export KUBECONFIG=/etc/kubernetes/admin.conf
   ```
 
-- 另一个方法是覆盖 `kubeconfig` 的现有用户 "管理员" ：
+- 另一个方法是覆盖 `kubeconfig` 的现有用户 "管理员"：
 
   ```shell
   mv  $HOME/.kube $HOME/.kube.bak
@@ -338,22 +378,6 @@ Unable to connect to the server: x509: certificate signed by unknown authority (
   sudo chown $(id -u):$(id -g) $HOME/.kube/config
   ```
 
-<!--
-## Default NIC When using flannel as the pod network in Vagrant
-
-The following error might indicate that something was wrong in the pod network:
-
-```sh
-Error from server (NotFound): the server could not find the requested resource
-```
-
-- If you're using flannel as the pod network inside Vagrant, then you will have to specify the default interface name for flannel.
-
-  Vagrant typically assigns two interfaces to all VMs. The first, for which all hosts are assigned the IP address `10.0.2.15`, is for external traffic that gets NATed.
-
-  This may lead to problems with flannel, which defaults to the first interface on a host. This leads to all hosts thinking they have the same public IP address. To prevent this, pass the `-iface eth1` flag to flannel so that the second interface is chosen.
--->
-
 <!--
 ## Kubelet client certificate rotation fails {#kubelet-client-cert}
 
@@ -364,8 +388,8 @@ in kube-apiserver logs. To fix the issue you must follow these steps:
 ## Kubelet 客户端证书轮换失败   {#kubelet-client-cert}
 
 默认情况下，kubeadm 使用 `/etc/kubernetes/kubelet.conf` 中指定的 `/var/lib/kubelet/pki/kubelet-client-current.pem` 符号链接
-来配置 kubelet 自动轮换客户端证书。如果此轮换过程失败，你可能会在 kube-apiserver 日志中看到
-诸如 `x509: certificate has expired or is not yet valid` 之类的错误。要解决此问题，你必须执行以下步骤：
+来配置 kubelet 自动轮换客户端证书。如果此轮换过程失败，你可能会在 kube-apiserver 日志中看到诸如
+`x509: certificate has expired or is not yet valid` 之类的错误。要解决此问题，你必须执行以下步骤：
 <!--
 1. Backup and delete `/etc/kubernetes/kubelet.conf` and `/var/lib/kubelet/pki/kubelet-client*` from the failed node.
 1. From a working control plane node in the cluster that has `/etc/kubernetes/pki/ca.key` execute
@@ -390,15 +414,40 @@ the `ca.key` you must sign the embedded certificates in the `kubelet.conf` exter
 3. 将得到的 `kubelet.conf` 文件复制到故障节点上，作为 `/etc/kubernetes/kubelet.conf`。
 4. 在故障节点上重启 kubelet（`systemctl restart kubelet`），等待 `/var/lib/kubelet/pki/kubelet-client-current.pem` 重新创建。
 <!--
-1. Run `kubeadm init phase kubelet-finalize all` on the failed node. This will make the new
-`kubelet.conf` file use `/var/lib/kubelet/pki/kubelet-client-current.pem` and will restart the kubelet.
+1. Manually edit the `kubelet.conf` to point to the rotated kubelet client certificates, by replacing
+`client-certificate-data` and `client-key-data` with:
+-->
+5. 手动编辑 `kubelet.conf` 指向轮换的 kubelet 客户端证书，方法是将 `client-certificate-data` 和 `client-key-data` 替换为：
+
+    ```yaml
+    client-certificate: /var/lib/kubelet/pki/kubelet-client-current.pem
+    client-key: /var/lib/kubelet/pki/kubelet-client-current.pem
+    ```
+
+<!--
+1. Restart the kubelet.
 1. Make sure the node becomes `Ready`.
 -->
-5. 在故障节点上运行 `kubeadm init phase kubelet-finalize all`。
-   这将使新的 `kubelet.conf` 文件使用 `/var/lib/kubelet/pki/kubelet-client-current.pem` 并将重新启动 kubelet。
-6. 确保节点状况变为 `Ready`。
+6. 重新启动 kubelet。
+7. 确保节点状况变为 `Ready`。
 
-## 在 Vagrant 中使用 flannel 作为 pod 网络时的默认 NIC
+<!--
+## Default NIC When using flannel as the pod network in Vagrant
+
+The following error might indicate that something was wrong in the pod network:
+
+```sh
+Error from server (NotFound): the server could not find the requested resource
+```
+
+- If you're using flannel as the pod network inside Vagrant, then you will have to specify the default interface name for flannel.
+
+  Vagrant typically assigns two interfaces to all VMs. The first, for which all hosts are assigned the IP address `10.0.2.15`, is for external traffic that gets NATed.
+
+  This may lead to problems with flannel, which defaults to the first interface on a host. This leads to all hosts thinking they have the same public IP address. To prevent this, pass the `--iface eth1` flag to flannel so that the second interface is chosen.
+-->
+
+## 在 Vagrant 中使用 flannel 作为 Pod 网络时的默认 NIC
 
 以下错误可能表明 Pod 网络中出现问题：
 
@@ -406,7 +455,7 @@ the `ca.key` you must sign the embedded certificates in the `kubelet.conf` exter
 Error from server (NotFound): the server could not find the requested resource
 ```
 
-- 如果你正在 Vagrant 中使用 flannel 作为 pod 网络，则必须指定 flannel 的默认接口名称。
+- 如果你正在 Vagrant 中使用 flannel 作为 Pod 网络，则必须指定 flannel 的默认接口名称。
 
   Vagrant 通常为所有 VM 分配两个接口。第一个为所有主机分配了 IP 地址 `10.0.2.15`，用于获得 NATed 的外部流量。
 
@@ -423,9 +472,9 @@ Error from server: Get https://10.19.0.41:10250/containerLogs/default/mysql-ddc6
 ```
 
 - This may be due to Kubernetes using an IP that can not communicate with other IPs on the seemingly same subnet, possibly by policy of the machine provider.
-- Digital Ocean assigns a public IP to `eth0` as well as a private one to be used internally as anchor for their floating IP feature, yet `kubelet` will pick the latter as the node's `InternalIP` instead of the public one.
+- DigitalOcean assigns a public IP to `eth0` as well as a private one to be used internally as anchor for their floating IP feature, yet `kubelet` will pick the latter as the node's `InternalIP` instead of the public one.
 
-  Use `ip addr show` to check for this scenario instead of `ifconfig` because `ifconfig` will not display the offending alias IP address. Alternatively an API endpoint specific to Digital Ocean allows to query for the anchor IP from the droplet:
+  Use `ip addr show` to check for this scenario instead of `ifconfig` because `ifconfig` will not display the offending alias IP address. Alternatively an API endpoint specific to DigitalOcean allows to query for the anchor IP from the droplet:
 
   ```sh
   curl http://169.254.169.254/metadata/v1/interfaces/public/0/anchor_ipv4/address
@@ -435,9 +484,9 @@ Error from server: Get https://10.19.0.41:10250/containerLogs/default/mysql-ddc6
   When using DigitalOcean, it can be the public one (assigned to `eth0`) or
   the private one (assigned to `eth1`) should you want to use the optional
   private network. The `kubeletExtraArgs` section of the kubeadm
-  [`NodeRegistrationOptions` structure](/docs/reference/config-api/kubeadm-config.v1beta2/#kubeadm-k8s-io-v1beta2-NodeRegistrationOptions)
+  [`NodeRegistrationOptions` structure](/docs/reference/config-api/kubeadm-config.v1beta3/#kubeadm-k8s-io-v1beta3-NodeRegistrationOptions)
   can be used for this.
-  
+
   Then restart `kubelet`:
 
   ```sh
@@ -455,20 +504,20 @@ Error from server: Get https://10.19.0.41:10250/containerLogs/default/mysql-ddc6
 
 - 这或许是由于 Kubernetes 使用的 IP 无法与看似相同的子网上的其他 IP 进行通信的缘故，
 可能是由机器提供商的政策所导致的。
-- Digital Ocean 既分配一个共有 IP 给 `eth0`，也分配一个私有 IP 在内部用作其浮动 IP 功能的锚点，
-然而 `kubelet` 将选择后者作为节点的 `InternalIP` 而不是公共 IP
+- DigitalOcean 既分配一个共有 IP 给 `eth0`，也分配一个私有 IP 在内部用作其浮动 IP 功能的锚点，
+然而 `kubelet` 将选择后者作为节点的 `InternalIP` 而不是公共 IP。
 
   使用 `ip addr show` 命令代替 `ifconfig` 命令去检查这种情况，因为 `ifconfig` 命令
-  不会显示有问题的别名 IP 地址。或者指定的 Digital Ocean 的 API 端口允许从 droplet 中
+  不会显示有问题的别名 IP 地址。或者指定的 DigitalOcean 的 API 端口允许从 droplet 中
   查询 anchor IP：
 
   ```sh
   curl http://169.254.169.254/metadata/v1/interfaces/public/0/anchor_ipv4/address
   ```
 
-  解决方法是通知 `kubelet` 使用哪个 `--node-ip`。当使用 Digital Ocean 时，可以是公网IP（分配给 `eth0`的），
+  解决方法是通知 `kubelet` 使用哪个 `--node-ip`。当使用 DigitalOcean 时，可以是公网IP（分配给 `eth0` 的），
   或者是私网IP（分配给 `eth1` 的）。私网 IP 是可选的。
-  [kubadm `NodeRegistrationOptions` 结构](/zh/docs/reference/config-api/kubeadm-config.v1beta2/#kubeadm-k8s-io-v1beta2-NodeRegistrationOptions) 
+  [kubadm `NodeRegistrationOptions` 结构](/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3/#kubeadm-k8s-io-v1beta3-NodeRegistrationOptions)
   的 `KubeletExtraArgs` 部分被用来处理这种情况。
 
   然后重启 `kubelet`：
@@ -498,12 +547,12 @@ kubectl -n kube-system get deployment coredns -o yaml | \
 Another cause for CoreDNS to have `CrashLoopBackOff` is when a CoreDNS Pod deployed in Kubernetes detects a loop. [A number of workarounds](https://github.com/coredns/coredns/tree/master/plugin/loop#troubleshooting-loops-in-kubernetes-clusters)
 are available to avoid Kubernetes trying to restart the CoreDNS Pod every time CoreDNS detects the loop and exits.
 -->
-## `coredns` pods 有 `CrashLoopBackOff` 或者 `Error` 状态
+## `coredns` Pod 有 `CrashLoopBackOff` 或者 `Error` 状态
 
-如果有些节点运行的是旧版本的 Docker，同时启用了 SELinux，你或许会遇到 `coredns` pods 无法启动的情况。
+如果有些节点运行的是旧版本的 Docker，同时启用了 SELinux，你或许会遇到 `coredns` Pod 无法启动的情况。
 要解决此问题，你可以尝试以下选项之一：
 
-- 升级到 [Docker 的较新版本](/zh/docs/setup/production-environment/container-runtimes/#docker)。
+- 升级到 [Docker 的较新版本](/zh-cn/docs/setup/production-environment/container-runtimes/#docker)。
 
 - [禁用 SELinux](https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/6/html/security-enhanced_linux/sect-security-enhanced_linux-enabling_and_disabling_selinux-disabling_selinux).
 
@@ -548,15 +597,15 @@ yum downgrade docker-1.13.1-75.git8633870.el7.centos.x86_64 docker-client-1.13.1
 
 - Install one of the more recent recommended versions, such as 18.06:
 ```bash
-sudo yum-config-manager -add-repo https://download.docker.com/linux/centos/docker-ce.repo
+sudo yum-config-manager --add-repo https://download.docker.com/linux/centos/docker-ce.repo
 yum install docker-ce-18.06.1.ce-3.el7.x86_64
 ```
 -->
-## etcd pods 持续重启
+## etcd Pod 持续重启
 
 如果你遇到以下错误：
 
-```
+```console
 rpc error: code = 2 desc = oci runtime error: exec failed: container_linux.go:247: starting container process caused "process_linux.go:110: decoding init error from pipe caused \"read parent: connection reset by peer\""
 ```
 
@@ -586,16 +635,16 @@ component like the kube-apiserver. However, this mechanism is limited due to the
 the values (`mapStringString`).
 
 If you decide to pass an argument that supports multiple, comma-separated values such as
-`-apiserver-extra-args "enable-admission-plugins=LimitRanger,NamespaceExists"` this flag will fail with
+`--apiserver-extra-args "enable-admission-plugins=LimitRanger,NamespaceExists"` this flag will fail with
 `flag: malformed pair, expect string=string`. This happens because the list of arguments for
-`-apiserver-extra-args` expects `key=value` pairs and in this case `NamespacesExists` is considered
+`--apiserver-extra-args` expects `key=value` pairs and in this case `NamespacesExists` is considered
 as a key that is missing a value.
 
 Alternatively, you can try separating the `key=value` pairs like so:
-`-apiserver-extra-args "enable-admission-plugins=LimitRanger,enable-admission-plugins=NamespaceExists"`
+`--apiserver-extra-args "enable-admission-plugins=LimitRanger,enable-admission-plugins=NamespaceExists"`
 but this will result in the key `enable-admission-plugins` only having the value of `NamespaceExists`.
 
-A known workaround is to use the kubeadm [configuration file](/docs/reference/config-api/kubeadm-config.v1beta2/).
+A known workaround is to use the kubeadm [configuration file](/docs/reference/config-api/kubeadm-config.v1beta3/).
 -->
 ## 无法将以逗号分隔的值列表传递给 `--component-extra-args` 标志内的参数
 
@@ -613,7 +662,7 @@ kube-apiserver 这样的控制平面组件。然而，由于解析 (`mapStringSt
 但这将导致键 `enable-admission-plugins` 仅有值 `NamespaceExists`。
 
 已知的解决方法是使用 kubeadm
-[配置文件](/zh/docs/reference/config-api/kubeadm-config.v1beta2/)。
+[配置文件](/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3/)。
 
 <!--
 ## kube-proxy scheduled before node is initialized by cloud-controller-manager
@@ -633,7 +682,7 @@ A known solution is to patch the kube-proxy DaemonSet to allow scheduling it on
 nodes regardless of their conditions, keeping it off of other nodes until their initial guarding
 conditions abate:
 ```
-kubectl -n kube-system patch ds kube-proxy -p='{ "spec": { "template": { "spec": { "tolerations": [ { "key": "CriticalAddonsOnly", "operator": "Exists" }, { "effect": "NoSchedule", "key": "node-role.kubernetes.io/master" } ] } } } }'
+kubectl -n kube-system patch ds kube-proxy -p='{ "spec": { "template": { "spec": { "tolerations": [ { "key": "CriticalAddonsOnly", "operator": "Exists" }, { "effect": "NoSchedule", "key": "node-role.kubernetes.io/master" }, { "effect": "NoSchedule", "key": "node-role.kubernetes.io/control-plane" } ] } } } }'
 ```
 
 The tracking issue for this problem is [here](https://github.com/kubernetes/kubeadm/issues/1027).
@@ -645,7 +694,7 @@ The tracking issue for this problem is [here](https://github.com/kubernetes/kube
 
 在 kube-proxy Pod 中可以看到以下错误：
 
-```
+```console
 server.go:610] Failed to retrieve node IP: host IP unknown; known addresses: []
 proxier.go:340] invalid nodeIP, initializing kube-proxy with 127.0.0.1 as nodeIP
 ```
@@ -654,7 +703,7 @@ proxier.go:340] invalid nodeIP, initializing kube-proxy with 127.0.0.1 as nodeIP
 而不管它们的条件如何，将其与其他节点保持隔离，直到它们的初始保护条件消除：
 
 ```shell
-kubectl -n kube-system patch ds kube-proxy -p='{ "spec": { "template": { "spec": { "tolerations": [ { "key": "CriticalAddonsOnly", "operator": "Exists" }, { "effect": "NoSchedule", "key": "node-role.kubernetes.io/master" } ] } } } }'
+kubectl -n kube-system patch ds kube-proxy -p='{ "spec": { "template": { "spec": { "tolerations": [ { "key": "CriticalAddonsOnly", "operator": "Exists" }, { "effect": "NoSchedule", "key": "node-role.kubernetes.io/master" }, { "effect": "NoSchedule", "key": "node-role.kubernetes.io/control-plane" } ] } } } }'
 ```
 
 此问题的跟踪[在这里](https://github.com/kubernetes/kubeadm/issues/1027)。
@@ -667,27 +716,29 @@ For [flex-volume support](https://github.com/kubernetes/community/blob/ab55d85/c
 Kubernetes components like the kubelet and kube-controller-manager use the default path of
 `/usr/libexec/kubernetes/kubelet-plugins/volume/exec/`, yet the flex-volume directory _must be writeable_
 for the feature to work.
+(**Note**: FlexVolume was deprecated in the Kubernetes v1.23 release)
 -->
 ## 节点上的 `/usr` 被以只读方式挂载 {#usr-mounted-read-only}
 
 在类似 Fedora CoreOS 或者 Flatcar Container Linux 这类 Linux 发行版本中，
-目录 `/usr` 是以只读文件系统的形式挂载的。 
+目录 `/usr` 是以只读文件系统的形式挂载的。
 在支持 [FlexVolume](https://github.com/kubernetes/community/blob/ab55d85/contributors/devel/sig-storage/flexvolume.md)时，
 类似 kubelet 和 kube-controller-manager 这类 Kubernetes 组件使用默认路径
 `/usr/libexec/kubernetes/kubelet-plugins/volume/exec/`，
-而 FlexVolume 的目录 _必须是可写入的_，该功能特性才能正常工作。
+而 FlexVolume 的目录 **必须是可写入的**，该功能特性才能正常工作。
+（**注意**：FlexVolume 在 Kubernetes v1.23 版本中已被弃用）
+
 
 <!--
 To workaround this issue you can configure the flex-volume directory using the kubeadm
-[configuration file](https://godoc.org/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta3).
+[configuration file](/docs/reference/config-api/kubeadm-config.v1beta3/).
 
 On the primary control-plane Node (created using `kubeadm init`) pass the following
 file using `--config`:
 -->
-为了解决这个问题，你可以使用 kubeadm 的[配置文件](https://godoc.org/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta3)
-来配置 FlexVolume 的目录。
+为了解决这个问题，你可以使用 kubeadm 的[配置文件](/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3/) 来配置 FlexVolume 的目录。
 
-在（使用 `kubeadm init` 创建的）主控制节点上，使用 `-config`
+在（使用 `kubeadm init` 创建的）主控制节点上，使用 `--config`
 参数传入如下文件：
 
 ```yaml
@@ -721,8 +772,8 @@ nodeRegistration:
 Alternatively, you can modify `/etc/fstab` to make the `/usr` mount writeable, but please
 be advised that this is modifying a design principle of the Linux distribution.
 -->
-或者，你要可以更改 `/etc/fstab` 使得 `/usr` 目录能够以可写入的方式挂载，不过
-请注意这样做本质上是在更改 Linux 发行版的某种设计原则。
+或者，你要可以更改 `/etc/fstab` 使得 `/usr` 目录能够以可写入的方式挂载，
+不过请注意这样做本质上是在更改 Linux 发行版的某种设计原则。
 
 <!--
 ## `kubeadm upgrade plan` prints out `context deadline exceeded` error message
@@ -750,8 +801,8 @@ This is a regression introduced in kubeadm 1.15. The issue is fixed in 1.20.
 -->
 ## `kubeadm reset` 会卸载 `/var/lib/kubelet`
 
-如果已经挂载了 `/var/lib/kubelet` 目录，执行 `kubeadm reset` 操作的时候
-会将其卸载。
+如果已经挂载了 `/var/lib/kubelet` 目录，执行 `kubeadm reset` 
+操作的时候会将其卸载。
 
 要解决这一问题，可以在执行了 `kubeadm reset` 操作之后重新挂载
 `/var/lib/kubelet` 目录。
@@ -775,11 +826,11 @@ If you want to use TLS between the metrics-server and the kubelet there is a pro
 since kubeadm deploys a self-signed serving certificate for the kubelet. This can cause the following errors
 on the side of the metrics-server:
 -->
-如果你需要在 metrics-server 和 kubelt 之间使用 TLS，会有一个问题，
-kubeadm 为 kubelt 部署的是自签名的服务证书。这可能会导致 metrics-server
+如果你需要在 metrics-server 和 kubelet 之间使用 TLS，会有一个问题，
+kubeadm 为 kubelet 部署的是自签名的服务证书。这可能会导致 metrics-server
 端报告下面的错误信息：
 
-```
+```console
 x509: certificate signed by unknown authority
 x509: certificate is valid for IP-foo not IP-bar
 ```
@@ -790,8 +841,7 @@ to understand how to configure the kubelets in a kubeadm cluster to have properl
 
 Also see [How to run the metrics-server securely](https://github.com/kubernetes-sigs/metrics-server/blob/master/FAQ.md#how-to-run-metrics-server-securely).
 -->
-参见[为 kubelet 启用签名的服务证书](/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/#kubelet-serving-certs)
+参见[为 kubelet 启用签名的服务证书](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/#kubelet-serving-certs)
 以进一步了解如何在 kubeadm 集群中配置 kubelet 使用正确签名了的服务证书。
 
-另请参阅[How to run the metrics-server securely](https://github.com/kubernetes-sigs/metrics-server/blob/master/FAQ.md#how-to-run-metrics-server-securely)。
-
+另请参阅 [How to run the metrics-server securely](https://github.com/kubernetes-sigs/metrics-server/blob/master/FAQ.md#how-to-run-metrics-server-securely)。
diff --git a/content/zh/docs/setup/production-environment/tools/kubespray.md b/content/zh-cn/docs/setup/production-environment/tools/kubespray.md
similarity index 67%
rename from content/zh/docs/setup/production-environment/tools/kubespray.md
rename to content/zh-cn/docs/setup/production-environment/tools/kubespray.md
index f77ed09e74..f4d18f3084 100644
--- a/content/zh/docs/setup/production-environment/tools/kubespray.md
+++ b/content/zh-cn/docs/setup/production-environment/tools/kubespray.md
@@ -12,43 +12,54 @@ weight: 30
 <!-- overview -->
 
 <!--
-This quickstart helps to install a Kubernetes cluster hosted on GCE, Azure, OpenStack, AWS, vSphere, Packet (bare metal), Oracle Cloud Infrastructure (Experimental) or Baremetal with [Kubespray](https://github.com/kubernetes-sigs/kubespray).
+This quickstart helps to install a Kubernetes cluster hosted on GCE, Azure, OpenStack, AWS, vSphere, Equinix Metal (formerly Packet), Oracle Cloud Infrastructure (Experimental) or Baremetal with [Kubespray](https://github.com/kubernetes-sigs/kubespray).
 -->
 此快速入门有助于使用 [Kubespray](https://github.com/kubernetes-sigs/kubespray)
-安装在 GCE、Azure、OpenStack、AWS、vSphere、Packet（裸机）、Oracle Cloud
+安装在 GCE、Azure、OpenStack、AWS、vSphere、Equinix Metal（曾用名 Packet）、Oracle Cloud
 Infrastructure（实验性）或 Baremetal 上托管的 Kubernetes 集群。
 
 <!--
-Kubespray is a composition of [Ansible](https://docs.ansible.com/) playbooks, [inventory](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/ansible.md), provisioning tools, and domain knowledge for generic OS/Kubernetes clusters configuration management tasks. Kubespray provides:
+Kubespray is a composition of [Ansible](https://docs.ansible.com/) playbooks, [inventory](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/ansible.md#inventory), provisioning tools, and domain knowledge for generic OS/Kubernetes clusters configuration management tasks. 
+
+Kubespray provides:
 -->
 Kubespray 是一个由 [Ansible](https://docs.ansible.com/) playbooks、
-[清单（inventory）](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/ansible.md)、
+[清单（inventory）](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/ansible.md#inventory)、
 制备工具和通用 OS/Kubernetes 集群配置管理任务的领域知识组成的。
+
 Kubespray 提供：
 
 <!--
-* a highly available cluster
-* composable attributes
-* support for most popular Linux distributions
-  * Ubuntu 16.04, 18.04, 20.04
-  * CentOS/RHEL/Oracle Linux 7, 8
-  * Debian Buster, Jessie, Stretch, Wheezy
-  * Fedora 31, 32
-  * Fedora CoreOS
-  * openSUSE Leap 15
-  * Flatcar Container Linux by Kinvolk
-* continuous integration tests
+* Highly available cluster.
+* Composable (Choice of the network plugin for instance).
+* Supports most popular Linux distributions:
+  - Flatcar Container Linux by Kinvolk
+  - Debian Bullseye, Buster, Jessie, Stretch
+  - Ubuntu 16.04, 18.04, 20.04, 22.04
+  - CentOS/RHEL 7, 8
+  - Fedora 34, 35
+  - Fedora CoreOS
+  - openSUSE Leap 15.x/Tumbleweed
+  - Oracle Linux 7, 8
+  - Alma Linux 8
+  - Rocky Linux 8
+  - Amazon Linux 2 
+* Continuous integration tests.
 -->
 * 高可用性集群
-* 可组合属性
+* 可组合属性（例如可选择网络插件）
 * 支持大多数流行的 Linux 发行版
-   * Ubuntu 16.04、18.04、20.04
-   * CentOS / RHEL / Oracle Linux 7、8
-   * Debian Buster、Jessie、Stretch、Wheezy
-   * Fedora 31、32
-   * Fedora CoreOS
-   * openSUSE Leap 15
    * Kinvolk 的 Flatcar Container Linux
+   * Debian Bullseye、Buster、Jessie、Stretch
+   * Ubuntu 16.04、18.04、20.04, 22.04
+   * CentOS/RHEL 7、8
+   * Fedora 34、35
+   * Fedora CoreOS
+   * openSUSE Leap 15.x/Tumbleweed
+   * Oracle Linux 7、8
+   * Alma Linux 8
+   * Rocky Linux 8
+   * Amazon Linux 2
 * 持续集成测试
 
 <!--
@@ -56,10 +67,10 @@ To choose a tool which best fits your use case, read [this comparison](https://g
 [kubeadm](/docs/reference/setup-tools/kubeadm/) and [kops](/docs/setup/production-environment/tools/kops/).
 -->
 要选择最适合你的用例的工具，请阅读
-[kubeadm](/zh/docs/reference/setup-tools/kubeadm/) 和
-[kops](/zh/docs/setup/production-environment/tools/kops/) 之间的
+[kubeadm](/zh-cn/docs/reference/setup-tools/kubeadm/) 和
+[kops](/zh-cn/docs/setup/production-environment/tools/kops/) 之间的
 [这份比较](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/comparisons.md)。
- 。
+
 <!-- body -->
 
 <!--
@@ -77,24 +88,23 @@ Provision servers with the following [requirements](https://github.com/kubernete
 按以下[要求](https://github.com/kubernetes-sigs/kubespray#requirements)来配置服务器：
 
 <!--
-* **Ansible v2.9 and python-netaddr is installed on the machine that will run Ansible commands**
-* **Jinja 2.11 (or newer) is required to run the Ansible Playbooks**
-* The target servers must have access to the Internet in order to pull docker images. Otherwise, additional configuration is required ([See Offline Environment](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/offline-environment.md))
-* The target servers are configured to allow **IPv4 forwarding**
-* **Your ssh key must be copied** to all the servers part of your inventory
-* The **firewalls are not managed**, you'll need to implement your own rules the way you used to. in order to avoid any issue during deployment you should disable your firewall
-* If kubespray is ran from non-root user account, correct privilege escalation method should be configured in the target servers. Then the `ansible_become` flag or command parameters `--become` or `-b` should be specified
+* **Minimum required version of Kubernetes is v1.22**
+* **Ansible v2.11+, Jinja 2.11+ and python-netaddr is installed on the machine that will run Ansible commands**
+* The target servers must have **access to the Internet** in order to pull docker images. Otherwise, additional configuration is required See ([Offline Environment](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/offline-environment.md))
+* The target servers are configured to allow **IPv4 forwarding**.
+* If using IPv6 for pods and services, the target servers are configured to allow **IPv6 forwarding**.
+* The **firewalls are not managed**, you'll need to implement your own rules the way you used to. in order to avoid any issue during deployment you should disable your firewall.
+* If kubespray is run from non-root user account, correct privilege escalation method should be configured in the target servers. Then the `ansible_become` flag or command parameters `--become` or `-b` should be specified.
 -->
-* 在将运行 Ansible 命令的计算机上安装 Ansible v2.9 和 python-netaddr
-* **运行 Ansible Playbook 需要 Jinja 2.11（或更高版本）**
-* 目标服务器必须有权访问 Internet 才能拉取 Docker 镜像。否则，
+* **Kubernetes** 的最低版本要求为 V1.22
+* **在将运行 Ansible 命令的计算机上安装 Ansible v2.11（或更高版本）、Jinja 2.11（或更高版本）和 python-netaddr**
+* 目标服务器必须**能够访问 Internet** 才能拉取 Docker 镜像。否则，
   需要其他配置（[请参见离线环境](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/offline-environment.md)）
-* 目标服务器配置为允许 IPv4 转发
-* **你的 SSH 密钥必须复制**到清单中的所有服务器部分
-* 防火墙不受管理，你将需要按照以前的方式实施自己的规则。
-  为了避免在部署过程中出现任何问题，你应该禁用防火墙
-* 如果从非 root 用户帐户运行 kubespray，则应在目标服务器中配置正确的特权升级方法。
-  然后应指定“ansible_become” 标志或命令参数 “--become” 或 “-b”
+* 目标服务器配置为允许 **IPv4 转发**
+* 如果针对 Pod 和 Service 使用 IPv6，则目标服务器配置为允许 **IPv6 转发**
+* **防火墙不是由 kubespray 管理的**。你需要根据需求设置适当的规则策略。为了避免部署过程中出现问题，可以禁用防火墙。
+* 如果从非 root 用户帐户运行 kubespray，则应在目标服务器中配置正确的特权升级方法并指定
+  `ansible_become` 标志或命令参数 `--become` 或 `-b`
 
 <!--
 Kubespray provides the following utilities to help provision your environment:
@@ -102,14 +112,14 @@ Kubespray provides the following utilities to help provision your environment:
 * [Terraform](https://www.terraform.io/) scripts for the following cloud providers:
   * [AWS](https://github.com/kubernetes-sigs/kubespray/tree/master/contrib/terraform/aws)
   * [OpenStack](https://github.com/kubernetes-sigs/kubespray/tree/master/contrib/terraform/openstack)
-  * [Packet](https://github.com/kubernetes-sigs/kubespray/tree/master/contrib/terraform/packet)
+  * [Equinix Metal](https://github.com/kubernetes-sigs/kubespray/tree/master/contrib/terraform/metal)
 -->
 Kubespray 提供以下实用程序来帮助你设置环境：
 
 * 为以下云驱动提供的 [Terraform](https://www.terraform.io/) 脚本：
-* [AWS](https://github.com/kubernetes-sigs/kubespray/tree/master/contrib/terraform/aws)
-* [OpenStack](http://sitebeskuethree/contrigetbernform/contribeskubernform/contribeskupernform/https/sitebesku/master/)
-* [Packet](https://github.com/kubernetes-sigs/kubespray/tree/master/contrib/terraform/packet)
+  * [AWS](https://github.com/kubernetes-sigs/kubespray/tree/master/contrib/terraform/aws)
+  * [OpenStack](https://github.com/kubernetes-sigs/kubespray/tree/master/contrib/terraform/openstack)
+  * [Equinix Metal](https://github.com/kubernetes-sigs/kubespray/tree/master/contrib/terraform/metal)
 
 <!--
 ### (2/5) Compose an inventory file
@@ -157,12 +167,11 @@ Kubespray 能够自定义部署的许多方面：
 * 证书生成方式
 
 <!--
-Kubespray customizations can be made to a [variable file](https://docs.ansible.com/ansible/latest/user_guide/playbooks_variables.html). If you are just getting started with Kubespray, consider using the Kubespray defaults to deploy your cluster and explore Kubernetes.
+Kubespray customizations can be made to a [variable file](https://docs.ansible.com/ansible/latest/user_guide/playbooks_variables.html). If you are getting started with Kubespray, consider using the Kubespray defaults to deploy your cluster and explore Kubernetes.
 -->
 可以修改[变量文件](https://docs.ansible.com/ansible/latest/user_guide/playbooks_variables.html)
 以进行 Kubespray 定制。
-如果你刚刚开始使用 Kubespray，请考虑使用 Kubespray 默认设置来部署你的集群
-并探索 Kubernetes 。
+如果你刚刚开始使用 Kubespray，请考虑使用 Kubespray 默认设置来部署你的集群并探索 Kubernetes。
 <!--
 ### (4/5) Deploy a Cluster
 
@@ -191,16 +200,16 @@ Large deployments (100+ nodes) may require [specific adjustments](https://github
 <!--
 ### (5/5) Verify the deployment
 
-Kubespray provides a way to verify inter-pod connectivity and DNS resolve with [Netchecker](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/netcheck.md). Netchecker ensures the netchecker-agents pods can resolve DNS requests and ping each over within the default namespace. Those pods mimic similar behavior of the rest of the workloads and serve as cluster health indicators.
+Kubespray provides a way to verify inter-pod connectivity and DNS resolve with [Netchecker](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/netcheck.md). Netchecker ensures the netchecker-agents pods can resolve DNS requests and ping each over within the default namespace. Those pods mimic similar behavior as the rest of the workloads and serve as cluster health indicators.
 -->
 ### （5/5）验证部署
 
 Kubespray 提供了一种使用
 [Netchecker](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/netcheck.md)
 验证 Pod 间连接和 DNS 解析的方法。
-Netchecker 确保 netchecker-agents pod 可以解析。
-DNS 请求并在默认名称空间内对每个请求执行 ping 操作。
-这些 Pods 模仿其余工作负载的类似行为，并用作集群运行状况指示器。
+Netchecker 确保 netchecker-agents Pods 可以解析 DNS 请求，
+并在默认命名空间内对每个请求执行 ping 操作。
+这些 Pod 模仿其他工作负载类似的行为，并用作集群运行状况指示器。
 <!--
 ## Cluster operations
 
@@ -208,7 +217,7 @@ Kubespray provides additional playbooks to manage your cluster: _scale_ and _upg
 -->
 ## 集群操作
 
-Kubespray 提供了其他 Playbooks 来管理集群： _scale_ 和 _upgrade_。
+Kubespray 提供了其他 Playbooks 来管理集群： **scale** 和 **upgrade**。
 <!--
 ### Scale your cluster
 
@@ -241,7 +250,7 @@ When running the reset playbook, be sure not to accidentally target your product
 -->
 ## 清理
 
-你可以通过 [reset](https://github.com/kubernetes-sigs/kubespray/blob/master/reset.yml) Playbook
+你可以通过 [reset playbook](https://github.com/kubernetes-sigs/kubespray/blob/master/reset.yml)
 重置节点并清除所有与 Kubespray 一起安装的组件。
 
 {{< caution >}}
@@ -251,22 +260,23 @@ When running the reset playbook, be sure not to accidentally target your product
 <!--
 ## Feedback
 
-* Slack Channel: [#kubespray](https://kubernetes.slack.com/messages/kubespray/) (You can get your invite [here](https://slack.k8s.io/))
-* [GitHub Issues](https://github.com/kubernetes-sigs/kubespray/issues)
+* Slack Channel: [#kubespray](https://kubernetes.slack.com/messages/kubespray/) (You can get your invite [here](https://slack.k8s.io/)).
+* [GitHub Issues](https://github.com/kubernetes-sigs/kubespray/issues).
 -->
 ## 反馈
 
 * Slack 频道：[#kubespray](https://kubernetes.slack.com/messages/kubespray/)
-  （你可以在[此处](https://slack.k8s.io/)获得邀请）
-* [GitHub 问题](https://github.com/kubernetes-sigs/kubespray/issues)
+  （你可以在[此处](https://slack.k8s.io/)获得邀请）。
+* [GitHub 问题](https://github.com/kubernetes-sigs/kubespray/issues)。
 
 <!--
 ## {{% heading "whatsnext" %}}
 
-Check out planned work on Kubespray's [roadmap](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/roadmap.md).
+* Check out planned work on Kubespray's [roadmap](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/roadmap.md).
+* Learn more about [Kubespray](https://github.com/kubernetes-sigs/kubespray).
 -->
 ## {{% heading "whatsnext" %}}
 
-查看有关 Kubespray 的
-[路线图](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/roadmap.md)
-的计划工作。
+* 查看有关 Kubespray 的
+  [路线图](https://github.com/kubernetes-sigs/kubespray/blob/master/docs/roadmap.md)的计划工作。
+* 查阅有关 [Kubespray](https://github.com/kubernetes-sigs/kubespray) 的更多信息。
diff --git a/content/zh/docs/setup/production-environment/turnkey-solutions.md b/content/zh-cn/docs/setup/production-environment/turnkey-solutions.md
similarity index 100%
rename from content/zh/docs/setup/production-environment/turnkey-solutions.md
rename to content/zh-cn/docs/setup/production-environment/turnkey-solutions.md
diff --git a/content/zh/docs/tasks/_index.md b/content/zh-cn/docs/tasks/_index.md
similarity index 89%
rename from content/zh/docs/tasks/_index.md
rename to content/zh-cn/docs/tasks/_index.md
index 4924d17d49..a8d0d9a919 100644
--- a/content/zh/docs/tasks/_index.md
+++ b/content/zh-cn/docs/tasks/_index.md
@@ -26,5 +26,5 @@ If you would like to write a task page, see
 [Creating a Documentation Pull Request](/docs/contribute/new-content/open-a-pr/).
 -->
 如果你希望编写一个任务页面，参考
-[创建一个文档拉取请求](/zh/docs/contribute/new-content/open-a-pr/)。
+[创建一个文档拉取请求](/zh-cn/docs/contribute/new-content/open-a-pr/)。
 
diff --git a/content/zh/docs/tasks/access-application-cluster/_index.md b/content/zh-cn/docs/tasks/access-application-cluster/_index.md
similarity index 100%
rename from content/zh/docs/tasks/access-application-cluster/_index.md
rename to content/zh-cn/docs/tasks/access-application-cluster/_index.md
diff --git a/content/zh/docs/tasks/administer-cluster/access-cluster-services.md b/content/zh-cn/docs/tasks/access-application-cluster/access-cluster-services.md
similarity index 62%
rename from content/zh/docs/tasks/administer-cluster/access-cluster-services.md
rename to content/zh-cn/docs/tasks/access-application-cluster/access-cluster-services.md
index ee817c141f..336b6d67c1 100644
--- a/content/zh/docs/tasks/administer-cluster/access-cluster-services.md
+++ b/content/zh-cn/docs/tasks/access-application-cluster/access-cluster-services.md
@@ -11,6 +11,7 @@ This page shows how to connect to services running on the Kubernetes cluster.
 
 ## {{% heading "prerequisites" %}}
 
+
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
 <!-- steps -->
@@ -24,11 +25,11 @@ their own IPs.  In many cases, the node IPs, pod IPs, and some service IPs on a
 routable, so they will not be reachable from a machine outside the cluster,
 such as your desktop machine.
 -->
-## 访问集群上运行的服务
+## 访问集群上运行的服务  {#accessing-services-running-on-the-cluster}
 
-在 Kubernetes 里，[节点](/zh/docs/concepts/architecture/nodes/)、
-[Pod](/zh/docs/concepts/workloads/pods/) 和
-[服务](/zh/docs/concepts/services-networking/service/) 都有自己的 IP。
+在 Kubernetes 里，[节点](/zh-cn/docs/concepts/architecture/nodes/)、
+[Pod](/zh-cn/docs/concepts/workloads/pods/) 和
+[服务](/zh-cn/docs/concepts/services-networking/service/) 都有自己的 IP。
 许多情况下，集群上的节点 IP、Pod IP 和某些服务 IP 是路由不可达的，
 所以不能从集群之外访问它们，例如从你自己的台式机。
 
@@ -46,7 +47,7 @@ You have several options for connecting to nodes, pods and services from outside
     - Use a service with type `NodePort` or `LoadBalancer` to make the service reachable outside
       the cluster.  See the [services](/docs/concepts/services-networking/service/) and
       [kubectl expose](/docs/reference/generated/kubectl/kubectl-commands/#expose) documentation.
-    - Depending on your cluster environment, this may just expose the service to your corporate network,
+    - Depending on your cluster environment, this may only expose the service to your corporate network,
       or it may expose it to the internet.  Think about whether the service being exposed is secure.
       Does it do its own authentication?
     - Place pods behind services.  To access one specific pod from a set of replicas, such as for debugging,
@@ -56,7 +57,7 @@ You have several options for connecting to nodes, pods and services from outside
 -->
 - 通过公网 IP 访问服务
   - 使用类型为 `NodePort` 或 `LoadBalancer` 的服务，可以从外部访问它们。
-    请查阅[服务](/zh/docs/concepts/services-networking/service/) 和
+    请查阅[服务](/zh-cn/docs/concepts/services-networking/service/) 和
     [kubectl expose](/docs/reference/generated/kubectl/kubectl-commands/#expose) 文档。
   - 取决于你的集群环境，你可以仅把服务暴露在你的企业网络环境中，也可以将其暴露在
     因特网上。需要考虑暴露的服务是否安全，它是否有自己的用户认证？
@@ -117,23 +118,23 @@ The output is similar to this:
 输出类似于：
 
 ```
-Kubernetes master is running at https://104.197.5.247
-elasticsearch-logging is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy
-kibana-logging is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/kibana-logging/proxy
-kube-dns is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/kube-dns/proxy
-grafana is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/monitoring-grafana/proxy
-heapster is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/monitoring-heapster/proxy
+Kubernetes master is running at https://192.0.2.1
+elasticsearch-logging is running at https://192.0.2.1/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy
+kibana-logging is running at https://192.0.2.1/api/v1/namespaces/kube-system/services/kibana-logging/proxy
+kube-dns is running at https://192.0.2.1/api/v1/namespaces/kube-system/services/kube-dns/proxy
+grafana is running at https://192.0.2.1/api/v1/namespaces/kube-system/services/monitoring-grafana/proxy
+heapster is running at https://192.0.2.1/api/v1/namespaces/kube-system/services/monitoring-heapster/proxy
 ```
 
 <!--
 This shows the proxy-verb URL for accessing each service.
 For example, this cluster has cluster-level logging enabled (using Elasticsearch), which can be reached
-at `https://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/` if suitable credentials are passed, or through a kubectl proxy at, for example:
+at `https://192.0.2.1/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/` if suitable credentials are passed, or through a kubectl proxy at, for example:
 `http://localhost:8080/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/`.
 -->
 这一输出显示了用 proxy 动词访问每个服务时可用的 URL。例如，此集群
 （使用 Elasticsearch）启用了集群层面的日志。如果提供合适的凭据，可以通过
-`https://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/`
+`https://192.0.2.1/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/`
 访问，或通过一个 `kubectl proxy` 来访问：
 `http://localhost:8080/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/`。
 
@@ -141,75 +142,94 @@ at `https://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-l
 See [Access Clusters Using the Kubernetes API](/docs/tasks/administer-cluster/access-cluster-api/#accessing-the-cluster-api) for how to pass credentials or use kubectl proxy.
 -->
 {{< note >}}
-请参阅[使用 Kubernets API 访问集群](/zh/docs/tasks/administer-cluster/access-cluster-api/#accessing-the-cluster-api)
+请参阅[使用 Kubernetes API 访问集群](/zh-cn/docs/tasks/administer-cluster/access-cluster-api/#accessing-the-cluster-api)
 了解如何传递凭据或如何使用 `kubectl proxy`。
 {{< /note >}}
 
 <!--
 #### Manually constructing apiserver proxy URLs
 
-As mentioned above, you use the `kubectl cluster-info` command to retrieve the service's proxy URL. To create proxy URLs that include service endpoints, suffixes, and parameters, you simply append to the service's proxy URL:
+As mentioned above, you use the `kubectl cluster-info` command to retrieve the service's proxy URL. To create proxy URLs that include service endpoints, suffixes, and parameters, you append to the service's proxy URL:
 `http://`*`kubernetes_master_address`*`/api/v1/namespaces/`*`namespace_name`*`/services/`*`[https:]service_name[:port_name]`*`/proxy`
 
-If you haven't specified a name for your port, you don't have to specify *port_name* in the URL.
+If you haven't specified a name for your port, you don't have to specify *port_name* in the URL. You can also use the port number in place of the *port_name* for both named and unnamed ports.
+
+By default, the API server proxies to your service using HTTP. To use HTTPS, prefix the service name with `https:`:
+`http://<kubernetes_master_address>/api/v1/namespaces/<namespace_name>/services/<service_name>/proxy`
+
+The supported formats for the `<service_name>` segment of the URL are:
+
+* `<service_name>` - proxies to the default or unnamed port using http
+* `<service_name>:<port_name>` - proxies to the specified port name or port number using http
+* `https:<service_name>:` - proxies to the default or unnamed port using https (note the trailing colon)
+* `https:<service_name>:<port_name>` - proxies to the specified port name or port number using https
 -->
 #### 手动构建 API 服务器代理 URLs   {#manually-constructing-apiserver-proxy-urls}
 
 如前所述，你可以使用 `kubectl cluster-info` 命令取得服务的代理 URL。
-为了创建包含服务末端、后缀和参数的代理 URLs，你可以简单地在服务的代理 URL 中添加：
+为了创建包含服务末端、后缀和参数的代理 URLs，你可以在服务的代理 URL 中添加：
 `http://`*`kubernetes_master_address`*`/api/v1/namespaces/`*`namespace_name`*`/services/`*`service_name[:port_name]`*`/proxy`
 
 如果还没有为你的端口指定名称，你可以不用在 URL 中指定 *port_name*。
+对于命名和未命名端口，你还可以使用端口号代替 *port_name*。
+
+默认情况下，API 服务器使用 HTTP 为你的服务提供代理。 要使用 HTTPS，请在服务名称前加上 `https:`：
+`http://<kubernetes_master_address>/api/v1/namespaces/<namespace_name>/services/<service_name>/proxy`
+URL 的 `<service_name>` 段支持的格式为：
+* `<service_name>` - 使用 http 代理到默认或未命名端口
+* `<service_name>:<port_name>` - 使用 http 代理到指定的端口名称或端口号
+* `https:<service_name>:` -  使用 https 代理到默认或未命名端口（注意尾随冒号）
+* `https:<service_name>:<port_name>` - 使用 https 代理到指定的端口名称或端口号
 
 <!--
 ##### Examples
 
 * To access the Elasticsearch service endpoint `_search?q=user:kimchy`, you would use:
 -->
-##### 示例
+##### 示例   {#examples}
 
-* 如要访问 Elasticsearch 服务末端 `_search?q=user:kimchy`，你可以使用： 
+* 如要访问 Elasticsearch 服务末端 `_search?q=user:kimchy`，你可以使用以下地址：
 
   ```
-  http://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/_search?q=user:kimchy
+  http://192.0.2.1/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/_search?q=user:kimchy
   ```
 
 <!--
 * To access the Elasticsearch cluster health information `_cluster/health?pretty=true`, you would use:
 -->
-* 如要访问 Elasticsearch 集群健康信息`_cluster/health?pretty=true`，你会使用：
+* 如要访问 Elasticsearch 集群健康信息`_cluster/health?pretty=true`，你可以使用以下地址：
 
   ```
-  https://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/_cluster/health?pretty=true` 
+  https://192.0.2.1/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/_cluster/health?pretty=true
   ```
 
-  <!--
-  The health information is similar to this:
-  -->
-  健康信息与下面的例子类似：
+    <!--
+    The health information is similar to this:
+    -->
+    健康信息与下面的例子类似：
 
-  ```json
-  {
-    "cluster_name" : "kubernetes_logging",
-    "status" : "yellow",
-    "timed_out" : false,
-    "number_of_nodes" : 1,
-    "number_of_data_nodes" : 1,
-    "active_primary_shards" : 5,
-    "active_shards" : 5,
-    "relocating_shards" : 0,
-    "initializing_shards" : 0,
-    "unassigned_shards" : 5
-  }
-  ```
+    ```json
+    {
+      "cluster_name" : "kubernetes_logging",
+      "status" : "yellow",
+      "timed_out" : false,
+      "number_of_nodes" : 1,
+      "number_of_data_nodes" : 1,
+      "active_primary_shards" : 5,
+      "active_shards" : 5,
+      "relocating_shards" : 0,
+      "initializing_shards" : 0,
+      "unassigned_shards" : 5
+    }
+    ```
 
 <!--
 * To access the *https* Elasticsearch service health information `_cluster/health?pretty=true`, you would use:
 -->
-* 要访问 *https* Elasticsearch 服务健康信息 `_cluster/health?pretty=true`，你会使用：
+* 如要访问 **https** Elasticsearch 服务健康信息 `_cluster/health?pretty=true`，你可以使用以下地址：
 
   ```
-  https://104.197.5.247/api/v1/namespaces/kube-system/services/https:elasticsearch-logging/proxy/_cluster/health?pretty=true
+  https://192.0.2.1/api/v1/namespaces/kube-system/services/https:elasticsearch-logging:/proxy/_cluster/health?pretty=true
   ```
 
 <!--
@@ -217,18 +237,17 @@ If you haven't specified a name for your port, you don't have to specify *port_n
 
 You may be able to put an apiserver proxy URL into the address bar of a browser. However:
 -->
-#### 通过 Web 浏览器访问集群中运行的服务
+#### 通过 Web 浏览器访问集群中运行的服务    {#uusing-web-browsers-to-access-services-running-on-the-cluster}
 
 你或许能够将 API 服务器代理的 URL 放入浏览器的地址栏，然而：
 
 <!--
-- Web browsers cannot usually pass tokens, so you may need to use basic (password) auth. Apiserver can be configured to accept basic auth,
+  - Web browsers cannot usually pass tokens, so you may need to use basic (password) auth. Apiserver can be configured to accept basic auth,
     but your cluster may not be configured to accept basic auth.
-- Some web apps may not work, particularly those with client side javascript that construct URLs in a
+  - Some web apps may not work, particularly those with client side javascript that construct URLs in a
     way that is unaware of the proxy path prefix.
 -->
-- Web 服务器通常不能传递令牌，所以你可能需要使用基本（密码）认证。 
-  API 服务器可以配置为接受基本认证，但你的集群可能并没有这样配置。
-- 某些 Web 应用可能无法工作，特别是那些使用客户端 Javascript 构造 URL 的
-  应用，所构造的 URL 可能并不支持代理路径前缀。
-
+  - Web 服务器通常不能传递令牌，所以你可能需要使用基本（密码）认证。
+    API 服务器可以配置为接受基本认证，但你的集群可能并没有这样配置。
+  - 某些 Web 应用可能无法工作，特别是那些使用客户端 Javascript 构造 URL 的
+    应用，所构造的 URL 可能并不支持代理路径前缀。
diff --git a/content/zh-cn/docs/tasks/access-application-cluster/access-cluster.md b/content/zh-cn/docs/tasks/access-application-cluster/access-cluster.md
new file mode 100644
index 0000000000..1f910735d3
--- /dev/null
+++ b/content/zh-cn/docs/tasks/access-application-cluster/access-cluster.md
@@ -0,0 +1,476 @@
+---
+title: 访问集群
+weight: 20
+content_type: concept
+---
+
+<!--
+title: Accessing Clusters
+weight: 20
+content_type: concept
+-->
+
+<!-- overview -->
+
+<!--
+This topic discusses multiple ways to interact with clusters.
+-->
+本文阐述多种与集群交互的方法。
+
+{{< toc >}}
+
+<!-- body -->
+
+<!--
+## Accessing for the first time with kubectl
+
+When accessing the Kubernetes API for the first time, we suggest using the
+Kubernetes CLI, `kubectl`.
+
+To access a cluster, you need to know the location of the cluster and have credentials
+to access it.  Typically, this is automatically set-up when you work through
+a [Getting started guide](/docs/setup/),
+or someone else setup the cluster and provided you with credentials and a location.
+
+Check the location and credentials that kubectl knows about with this command:
+-->
+## 使用 kubectl 完成集群的第一次访问 {#accessing-for-the-first-time-with-kubectl}
+
+当你第一次访问 Kubernetes API 的时候，我们建议你使用 Kubernetes CLI 工具 `kubectl`。
+
+访问集群时，你需要知道集群的地址并且拥有访问的凭证。通常，这些在你通过
+[启动安装](/zh-cn/docs/setup/)安装集群时都是自动安装好的，或者其他人安装时
+也应该提供了凭证和集群地址。
+
+通过以下命令检查 kubectl 是否知道集群地址及凭证：
+
+```shell
+kubectl config view
+```
+
+<!--
+Many of the [examples](/docs/reference/kubectl/cheatsheet/) provide an introduction to using
+`kubectl`, and complete documentation is found in the
+[kubectl reference](/docs/reference/kubectl/).
+-->
+有许多[例子](/zh-cn/docs/reference/kubectl/cheatsheet/)介绍了如何使用 kubectl，
+可以在 [kubectl 参考](/zh-cn/docs/reference/kubectl/)中找到更完整的文档。
+
+<!--
+## Directly accessing the REST API
+
+Kubectl handles locating and authenticating to the apiserver.
+If you want to directly access the REST API with an http client like
+curl or wget, or a browser, there are several ways to locate and authenticate:
+
+  - Run kubectl in proxy mode.
+    - Recommended approach.
+    - Uses stored apiserver location.
+    - Verifies identity of apiserver using self-signed cert.  No MITM possible.
+    - Authenticates to apiserver.
+    - In future, may do intelligent client-side load-balancing and failover.
+  - Provide the location and credentials directly to the http client.
+    - Alternate approach.
+    - Works with some types of client code that are confused by using a proxy.
+    - Need to import a root cert into your browser to protect against MITM.
+-->
+## 直接访问 REST API {#directly-accessing-the-rest-api}
+
+Kubectl 处理 apiserver 的定位和身份验证。
+如果要使用 curl 或 wget 等 http 客户端或浏览器直接访问 REST API，可以通过
+多种方式查找和验证：
+
+- 以代理模式运行 kubectl。
+  - 推荐此方式。
+  - 使用已存储的 apiserver 地址。
+  - 使用自签名的证书来验证 apiserver 的身份。杜绝 MITM 攻击。
+  - 对 apiserver 进行身份验证。
+  - 未来可能会实现智能化的客户端负载均衡和故障恢复。
+- 直接向 http 客户端提供位置和凭据。
+  - 可选的方案。
+  - 适用于代理可能引起混淆的某些客户端类型。
+  - 需要引入根证书到你的浏览器以防止 MITM 攻击。
+
+<!--
+### Using kubectl proxy
+
+The following command runs kubectl in a mode where it acts as a reverse proxy.  It handles
+locating the apiserver and authenticating.
+Run it like this:
+-->
+### 使用 kubectl proxy {#using-kubectl-proxy}
+
+以下命令以反向代理的模式运行 kubectl。它处理 apiserver 的定位和验证。
+像这样运行：
+
+```shell
+kubectl proxy --port=8080
+```
+
+<!--
+See [kubectl proxy](/docs/reference/generated/kubectl/kubectl-commands/#proxy) for more details.
+
+Then you can explore the API with curl, wget, or a browser, replacing localhost
+with [::1] for IPv6, like so:
+-->
+参阅 [kubectl proxy](/docs/reference/generated/kubectl/kubectl-commands/#proxy)
+获取更多详细信息。
+
+然后，你可以使用 curl、wget 或浏览器访问 API，如果是 IPv6 则用 [::1] 替换 localhost，
+如下所示：
+
+```shell
+curl http://localhost:8080/api/
+```
+
+<!--
+The output is similar to this:
+-->
+输出类似于：
+
+```json
+{
+  "kind": "APIVersions",
+  "versions": [
+    "v1"
+  ],
+  "serverAddressByClientCIDRs": [
+    {
+      "clientCIDR": "0.0.0.0/0",
+      "serverAddress": "10.0.1.149:443"
+    }
+  ]
+}
+```
+
+<!--
+### Without kubectl proxy
+
+Use `kubectl apply` and `kubectl describe secret...` to create a token for the default service account with grep/cut:
+
+First, create the Secret, requesting a token for the default ServiceAccount:
+
+-->
+
+### 不使用 kubectl proxy {#without-kubectl-proxy}
+
+使用 `kubectl apply` 和 `kubectl describe secret ...` 及 grep 和剪切操作来为 default 服务帐户创建令牌，如下所示：
+
+首先，创建 Secret，请求默认 ServiceAccount 的令牌：
+
+```shell
+kubectl apply -f - <<EOF
+apiVersion: v1
+kind: Secret
+metadata:
+  name: default-token
+  annotations:
+    kubernetes.io/service-account.name: default
+type: kubernetes.io/service-account-token
+EOF
+```
+
+<!--
+Next, wait for the token controller to populate the Secret with a token:
+-->
+接下来，等待令牌控制器使用令牌填充 Secret：
+
+```shell
+while ! kubectl describe secret default-token | grep -E '^token' >/dev/null; do
+  echo "waiting for token..." >&2
+  sleep 1
+done
+```
+
+<!--
+Capture and use the generated token:
+-->
+捕获并使用生成的令牌：
+
+```shell
+APISERVER=$(kubectl config view --minify | grep server | cut -f 2- -d ":" | tr -d " ")
+TOKEN=$(kubectl describe secret default-token | grep -E '^token' | cut -f2 -d':' | tr -d " ")
+curl $APISERVER/api --header "Authorization: Bearer $TOKEN" --insecure
+```
+
+<!--
+The output is similar to this:
+-->
+输出类似于：
+
+```json
+{
+  "kind": "APIVersions",
+  "versions": [
+    "v1"
+  ],
+  "serverAddressByClientCIDRs": [
+    {
+      "clientCIDR": "0.0.0.0/0",
+      "serverAddress": "10.0.1.149:443"
+    }
+  ]
+}
+```
+
+<!--
+Using `jsonpath`:
+-->
+`jsonpath` 方法实现：
+
+```shell
+APISERVER=$(kubectl config view --minify -o jsonpath='{.clusters[0].cluster.server}')
+TOKEN=$(kubectl get secret default-token -o jsonpath='{.data.token}' | base64 --decode)
+curl $APISERVER/api --header "Authorization: Bearer $TOKEN" --insecure
+```
+
+<!--
+The output is similar to this:
+-->
+输出类似于：
+
+```json
+{
+  "kind": "APIVersions",
+  "versions": [
+    "v1"
+  ],
+  "serverAddressByClientCIDRs": [
+    {
+      "clientCIDR": "0.0.0.0/0",
+      "serverAddress": "10.0.1.149:443"
+    }
+  ]
+}
+```
+
+<!--
+The above examples use the `--insecure` flag.  This leaves it subject to MITM
+attacks.  When kubectl accesses the cluster it uses a stored root certificate
+and client certificates to access the server.  (These are installed in the
+`~/.kube` directory).  Since cluster certificates are typically self-signed, it
+may take special configuration to get your http client to use root
+certificate.
+
+On some clusters, the apiserver does not require authentication; it may serve
+on localhost, or be protected by a firewall.  There is not a standard
+for this.  [Controlling Access to the API](/docs/concepts/security/controlling-access)
+describes how a cluster admin can configure this.
+-->
+上面的例子使用了 `--insecure` 参数，这使得它很容易受到 MITM 攻击。
+当 kubectl 访问集群时，它使用存储的根证书和客户端证书来访问服务器
+（它们安装在 `~/.kube` 目录中）。
+由于集群证书通常是自签名的，因此可能需要特殊配置才能让你的 http 客户端使用根证书。
+
+在一些集群中，apiserver 不需要身份验证；它可能只服务于 localhost，或者被防火墙保护，
+这个没有一定的标准。
+[配置对 API 的访问](/zh-cn/docs/concepts/security/controlling-access/)
+描述了集群管理员如何进行配置。此类方法可能与未来的高可用性支持相冲突。
+
+<!--
+## Programmatic access to the API
+
+Kubernetes officially supports [Go](#go-client) and [Python](#python-client)
+client libraries.
+
+### Go client
+
+* To get the library, run the following command: `go get k8s.io/client-go@kubernetes-<kubernetes-version-number>`, see [INSTALL.md](https://github.com/kubernetes/client-go/blob/master/INSTALL.md#for-the-casual-user) for detailed installation instructions. See [https://github.com/kubernetes/client-go](https://github.com/kubernetes/client-go#compatibility-matrix) to see which versions are supported.
+* Write an application atop of the client-go clients. Note that client-go defines its own API objects, so if needed, please import API definitions from client-go rather than from the main repository, e.g., `import "k8s.io/client-go/kubernetes"` is correct.
+
+The Go client can use the same [kubeconfig file](/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
+as the kubectl CLI does to locate and authenticate to the apiserver. See this [example](https://git.k8s.io/client-go/examples/out-of-cluster-client-configuration/main.go).
+
+If the application is deployed as a Pod in the cluster, please refer to the [next section](#accessing-the-api-from-a-pod).
+-->
+## 以编程方式访问 API {#programmatic-access-to-the-api}
+
+Kubernetes 官方提供对 [Go](#go-client) 和 [Python](#python-client) 的客户端库支持。
+
+### Go 客户端 {#go-client}
+
+* 想要获得这个库，请运行命令：`go get k8s.io/client-go@kubernetes-<kubernetes-version-number>`，
+  有关详细安装说明，请参阅 [INSTALL.md](https://github.com/kubernetes/client-go/blob/master/INSTALL.md#for-the-casual-user)。
+  请参阅 [https://github.com/kubernetes/client-go](https://github.com/kubernetes/client-go#compatibility-matrix) 以查看支持的版本。
+* 基于这个 client-go 客户端库编写应用程序。
+  请注意，client-go 定义了自己的 API 对象，因此如果需要，请从 client-go 而不是从主存储库
+  导入 API 定义，例如，`import "k8s.io/client-go/kubernetes"` 才是对的。
+
+Go 客户端可以像 kubectl CLI 一样使用相同的
+[kubeconfig 文件](/zh-cn/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
+来定位和验证 apiserver。可参阅
+[示例](https://git.k8s.io/client-go/examples/out-of-cluster-client-configuration/main.go)。
+
+如果应用程序以 Pod 的形式部署在集群中，那么请参阅
+[下一章](#accessing-the-api-from-a-pod)。
+
+<!--
+### Python client
+
+To use [Python client](https://github.com/kubernetes-client/python), run the following command: `pip install kubernetes`. See [Python Client Library page](https://github.com/kubernetes-client/python) for more installation options.
+
+The Python client can use the same [kubeconfig file](/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
+as the kubectl CLI does to locate and authenticate to the apiserver. See this [example](https://github.com/kubernetes-client/python/tree/master/examples).
+
+### Other languages
+
+There are [client libraries](/docs/reference/using-api/client-libraries/) for accessing the API from other languages.
+See documentation for other libraries for how they authenticate.
+-->
+### Python 客户端 {#python-client}
+
+如果想要使用 [Python 客户端](https://github.com/kubernetes-client/python)，
+请运行命令：`pip install kubernetes`。参阅
+[Python Client Library page](https://github.com/kubernetes-client/python)
+以获得更详细的安装参数。
+
+Python 客户端可以像 kubectl CLI 一样使用相同的
+[kubeconfig 文件](/zh-cn/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
+来定位和验证 apiserver，可参阅
+[示例](https://github.com/kubernetes-client/python/tree/master/examples)。
+
+### 其它语言 {#other-languages}
+
+目前有多个[客户端库](/zh-cn/docs/reference/using-api/client-libraries/)
+为其它语言提供访问 API 的方法。
+参阅其它库的相关文档以获取他们是如何验证的。
+
+<!--
+## Accessing the API from a Pod
+
+When accessing the API from a pod, locating and authenticating
+to the API server are somewhat different.
+-->
+### 从 Pod 中访问 API   {#accessing-the-api-from-a-pod}
+
+当你从 Pod 中访问 API 时，定位和验证 API 服务器会有些许不同。
+
+<!--
+Please check [Accessing the API from within a Pod](/docs/tasks/run-application/access-api-from-pod/)
+for more details.
+-->
+请参阅[从 Pod 中访问 API](/zh-cn/docs/tasks/run-application/access-api-from-pod/)
+了解更多详情。
+
+<!--
+## Accessing services running on the cluster
+
+The previous section describes how to connect to the Kubernetes API server.
+For information about connecting to other services running on a Kubernetes cluster, see
+[Access Cluster Services](/docs/tasks/access-application-cluster/access-cluster-services/).
+-->
+
+## 访问集群上运行的服务  {#accessing-services-running-on-the-cluster}
+
+上一节介绍了如何连接到 Kubernetes API 服务器。
+有关连接到 Kubernetes 集群上运行的其他服务的信息，请参阅
+[访问集群服务](/zh-cn/docs/tasks/access-application-cluster/access-cluster-services/)。
+
+<!--
+## Requesting redirects
+
+The redirect capabilities have been deprecated and removed.  Please use a proxy (see below) instead.
+-->
+## 请求重定向 {#requesting-redirects}
+
+重定向功能已弃用并被删除。请改用代理（见下文）。
+
+<!--
+## So Many Proxies
+
+There are several different proxies you may encounter when using Kubernetes:
+
+1.  The [kubectl proxy](#directly-accessing-the-rest-api):
+
+    - runs on a user's desktop or in a pod
+    - proxies from a localhost address to the Kubernetes apiserver
+    - client to proxy uses HTTP
+    - proxy to apiserver uses HTTPS
+    - locates apiserver
+    - adds authentication headers
+
+-->
+## 多种代理 {#so-many-proxies}
+
+使用 Kubernetes 时可能会遇到几种不同的代理：
+
+1. [kubectl 代理](#directly-accessing-the-rest-api)：
+
+   - 在用户的桌面或 Pod 中运行
+   - 代理从本地主机地址到 Kubernetes apiserver
+   - 客户端到代理将使用 HTTP
+   - 代理到 apiserver 使用 HTTPS
+   - 定位 apiserver
+   - 添加身份验证头部
+
+<!--
+1.  The [apiserver proxy](/docs/tasks/access-application-cluster/access-cluster-services/#discovering-builtin-services):
+
+    - is a bastion built into the apiserver
+    - connects a user outside of the cluster to cluster IPs which otherwise might not be reachable
+    - runs in the apiserver processes
+    - client to proxy uses HTTPS (or http if apiserver so configured)
+    - proxy to target may use HTTP or HTTPS as chosen by proxy using available information
+    - can be used to reach a Node, Pod, or Service
+    - does load balancing when used to reach a Service
+-->
+2. [apiserver 代理](/zh-cn/docs/tasks/access-application-cluster/access-cluster-services/#discovering-builtin-services)：
+
+   - 内置于 apiserver 中
+   - 将集群外部的用户连接到集群 IP，否则这些 IP 可能无法访问
+   - 运行在 apiserver 进程中
+   - 客户端代理使用 HTTPS（也可配置为 http）
+   - 代理将根据可用的信息决定使用 HTTP 或者 HTTPS 代理到目标
+   - 可用于访问节点、Pod 或服务
+   - 在访问服务时进行负载平衡
+
+<!--
+1.  The [kube proxy](/docs/concepts/services-networking/service/#ips-and-vips):
+
+    - runs on each node
+    - proxies UDP and TCP
+    - does not understand HTTP
+    - provides load balancing
+    - is only used to reach services
+-->
+3. [kube proxy](/zh-cn/docs/concepts/services-networking/service/#ips-and-vips)：
+
+   - 运行在每个节点上
+   - 代理 UDP 和 TCP
+   - 不能代理 HTTP
+   - 提供负载均衡
+   - 只能用来访问服务
+
+<!--
+1.  A Proxy/Load-balancer in front of apiserver(s):
+
+    - existence and implementation varies from cluster to cluster (e.g. nginx)
+    - sits between all clients and one or more apiservers
+    - acts as load balancer if there are several apiservers.
+-->
+4. 位于 apiserver 之前的 Proxy/Load-balancer：
+
+   - 存在和实现因集群而异（例如 nginx）
+   - 位于所有客户和一个或多个 apiserver 之间
+   - 如果有多个 apiserver，则充当负载均衡器
+
+<!--
+1.  Cloud Load Balancers on external services:
+
+    - are provided by some cloud providers (e.g. AWS ELB, Google Cloud Load Balancer)
+    - are created automatically when the Kubernetes service has type `LoadBalancer`
+    - use UDP/TCP only
+    - implementation varies by cloud provider.
+
+Kubernetes users will typically not need to worry about anything other than the first two types.  The cluster admin
+will typically ensure that the latter types are setup correctly.
+-->
+5. 外部服务上的云负载均衡器：
+
+   - 由一些云提供商提供（例如 AWS ELB，Google Cloud Load Balancer）
+   - 当 Kubernetes 服务类型为 `LoadBalancer` 时自动创建
+   - 只使用 UDP/TCP
+   - 具体实现因云提供商而异。
+
+除了前两种类型之外，Kubernetes 用户通常不需要担心任何其他问题。
+集群管理员通常会确保后者的正确配置。
diff --git a/content/zh/docs/tasks/access-application-cluster/communicate-containers-same-pod-shared-volume.md b/content/zh-cn/docs/tasks/access-application-cluster/communicate-containers-same-pod-shared-volume.md
similarity index 96%
rename from content/zh/docs/tasks/access-application-cluster/communicate-containers-same-pod-shared-volume.md
rename to content/zh-cn/docs/tasks/access-application-cluster/communicate-containers-same-pod-shared-volume.md
index 78986bb030..8990741f5d 100644
--- a/content/zh/docs/tasks/access-application-cluster/communicate-containers-same-pod-shared-volume.md
+++ b/content/zh-cn/docs/tasks/access-application-cluster/communicate-containers-same-pod-shared-volume.md
@@ -17,7 +17,7 @@ between containers.
 -->
 本文旨在说明如何让一个 Pod 内的两个容器使用一个卷（Volume）进行通信。
 参阅如何让两个进程跨容器通过
-[共享进程名字空间](/zh/docs/tasks/configure-pod-container/share-process-namespace/)。
+[共享进程名字空间](/zh-cn/docs/tasks/configure-pod-container/share-process-namespace/)。
 
 ## {{% heading "prerequisites" %}}
 
@@ -205,8 +205,8 @@ the shared Volume is lost.
 -->
 * 进一步了解[复合容器的模式](https://kubernetes.io/blog/2015/06/the-distributed-system-toolkit-patterns.html)
 * 学习[模块化架构中的复合容器](https://www.slideshare.net/Docker/slideshare-burns)
-* 参见[配置 Pod 使用卷来存储数据](/zh/docs/tasks/configure-pod-container/configure-volume-storage/)
-* 参考[在 Pod 中的容器之间共享进程命名空间](/zh/docs/tasks/configure-pod-container/share-process-namespace/)
+* 参见[配置 Pod 使用卷来存储数据](/zh-cn/docs/tasks/configure-pod-container/configure-volume-storage/)
+* 参考[在 Pod 中的容器之间共享进程命名空间](/zh-cn/docs/tasks/configure-pod-container/share-process-namespace/)
 * 参考 [Volume](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#volume-v1-core)
 * 参考 [Pod](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#pod-v1-core)
 
diff --git a/content/zh/docs/tasks/access-application-cluster/configure-access-multiple-clusters.md b/content/zh-cn/docs/tasks/access-application-cluster/configure-access-multiple-clusters.md
similarity index 90%
rename from content/zh/docs/tasks/access-application-cluster/configure-access-multiple-clusters.md
rename to content/zh-cn/docs/tasks/access-application-cluster/configure-access-multiple-clusters.md
index 867063c0f6..cdf56f376d 100644
--- a/content/zh/docs/tasks/access-application-cluster/configure-access-multiple-clusters.md
+++ b/content/zh-cn/docs/tasks/access-application-cluster/configure-access-multiple-clusters.md
@@ -22,14 +22,16 @@ configuration files. After your clusters, users, and contexts are defined in
 one or more configuration files, you can quickly switch between clusters by using the
 `kubectl config use-context` command.
 -->
-本文展示如何使用配置文件来配置对多个集群的访问。 在将集群、用户和上下文定义在一个或多个配置文件中之后，用户可以使用 `kubectl config use-context` 命令快速地在集群之间进行切换。
+本文展示如何使用配置文件来配置对多个集群的访问。
+在将集群、用户和上下文定义在一个或多个配置文件中之后，用户可以使用
+`kubectl config use-context` 命令快速地在集群之间进行切换。
 
+{{< note >}}
 <!--
 A file that is used to configure access to a cluster is sometimes called
 a *kubeconfig file*. This is a generic way of referring to configuration files.
 It does not mean that there is a file named `kubeconfig`.
 -->
-{{< note >}}
 用于配置集群访问的文件有时被称为 *kubeconfig 文件*。
 这是一种引用配置文件的通用方式，并不意味着存在一个名为 `kubeconfig` 的文件。
 {{< /note >}}
@@ -37,7 +39,8 @@ It does not mean that there is a file named `kubeconfig`.
 
 <!--
 {{< warning >}}
-Only use kubeconfig files from trusted sources. Using a specially-crafted kubeconfig file could result in malicious code execution or file exposure. 
+Only use kubeconfig files from trusted sources. Using a specially-crafted kubeconfig
+file could result in malicious code execution or file exposure. 
 If you must use an untrusted kubeconfig file, inspect it carefully first, much as you would a shell script.
 {{< /warning>}}
 -->
@@ -60,9 +63,10 @@ cluster's API server.
 要检查 {{< glossary_tooltip text="kubectl" term_id="kubectl" >}} 是否安装，
 执行 `kubectl version --client` 命令。
 kubectl 的版本应该与集群的 API 服务器
-[使用同一次版本号](/zh/releases/version-skew-policy/#kubectl)。
+[使用同一次版本号](/zh-cn/releases/version-skew-policy/#kubectl)。
 
 <!-- steps -->
+
 <!--
 ## Define clusters, users, and contexts
 
@@ -76,16 +80,16 @@ to the scratch cluster requires authentication by username and password.
 Create a directory named `config-exercise`. In your
 `config-exercise` directory, create a file named `config-demo` with this content:
 -->
-## 定义集群、用户和上下文
+## 定义集群、用户和上下文    {#define-clusters-users-and-contexts}
 
 假设用户有两个集群，一个用于正式开发工作，一个用于其它临时用途（scratch）。
 在 `development` 集群中，前端开发者在名为 `frontend` 的名字空间下工作，
-存储开发者在名为 `storage` 的名字空间下工作。 在 `scratch` 集群中，
-开发人员可能在默认名字空间下工作，也可能视情况创建附加的名字空间。 
+存储开发者在名为 `storage` 的名字空间下工作。在 `scratch` 集群中，
+开发人员可能在默认名字空间下工作，也可能视情况创建附加的名字空间。
 访问开发集群需要通过证书进行认证。
 访问其它临时用途的集群需要通过用户名和密码进行认证。
 
-创建名为 `config-exercise` 的目录。 在
+创建名为 `config-exercise` 的目录。在
 `config-exercise` 目录中，创建名为 `config-demo` 的文件，其内容为：
 
 ```yaml
@@ -122,7 +126,7 @@ your configuration file:
 配置文件描述了集群、用户名和上下文。`config-demo` 文件中含有描述两个集群、
 两个用户和三个上下文的框架。
 
-进入 `config-exercise` 目录。输入以下命令，将群集详细信息添加到配置文件中：
+进入 `config-exercise` 目录。输入以下命令，将集群详细信息添加到配置文件中：
 
 ```shell
 kubectl config --kubeconfig=config-demo set-cluster development --server=https://1.2.3.4 --certificate-authority=fake-ca-file
@@ -139,16 +143,16 @@ kubectl config --kubeconfig=config-demo set-credentials developer --client-certi
 kubectl config --kubeconfig=config-demo set-credentials experimenter --username=exp --password=some-password
 ```
 
+{{< note >}}
 <!--
 - To delete a user you can run `kubectl --kubeconfig=config-demo config unset users.<name>`
 - To remove a cluster, you can run `kubectl --kubeconfig=config-demo config unset clusters.<name>`
 - To remove a context, you can run `kubectl --kubeconfig=config-demo config unset contexts.<name>`
 -->
-
-注意：
 - 要删除用户，可以运行 `kubectl --kubeconfig=config-demo config unset users.<name>`
 - 要删除集群，可以运行 `kubectl --kubeconfig=config-demo config unset clusters.<name>`
 - 要删除上下文，可以运行 `kubectl --kubeconfig=config-demo config unset contexts.<name>`
+{{< /note >}}
 
 <!--
 Add context details to your configuration file:
@@ -165,7 +169,7 @@ kubectl config --kubeconfig=config-demo set-context exp-scratch --cluster=scratc
 Open your `config-demo` file to see the added details. As an alternative to opening the
 `config-demo` file, you can use the `config view` command.
 -->
-打开 `config-demo` 文件查看添加的详细信息。 也可以使用 `config view`
+打开 `config-demo` 文件查看添加的详细信息。也可以使用 `config view`
 命令进行查看：
 
 ```shell
@@ -355,7 +359,7 @@ kubectl config --kubeconfig=config-demo view --minify
 In your `config-exercise` directory, create a file named `config-demo-2` with this content:
 -->
 
-## 创建第二个配置文件
+## 创建第二个配置文件    {#create-a-second-configuration-file}
 
 在 `config-exercise` 目录中，创建名为 `config-demo-2` 的文件，其中包含以下内容：
 
@@ -384,7 +388,7 @@ See whether you have an environment variable named `KUBECONFIG`. If so, save the
 current value of your `KUBECONFIG` environment variable, so you can restore it later.
 For example:
 -->
-## 设置 KUBECONFIG 环境变量
+## 设置 KUBECONFIG 环境变量    {#set-the-kubeconfig-environment-variable}
 
 查看是否有名为 `KUBECONFIG` 的环境变量。
 如有，保存 `KUBECONFIG` 环境变量当前的值，以便稍后恢复。
@@ -393,7 +397,7 @@ For example:
 ### Linux
 
 ```shell
-export KUBECONFIG_SAVED=$KUBECONFIG
+export KUBECONFIG_SAVED="$KUBECONFIG"
 ```
 
 ### Windows PowerShell
@@ -414,12 +418,12 @@ Temporarily append two paths to your `KUBECONFIG` environment variable. For exam
 在 Windows 中以分号分隔。
 如果有 `KUBECONFIG` 环境变量，请熟悉列表中的配置文件。
 
-临时添加两条路径到 `KUBECONFIG` 环境变量中。 例如：
+临时添加两条路径到 `KUBECONFIG` 环境变量中。例如：
 
 ### Linux
 
 ```shell
-export  KUBECONFIG=$KUBECONFIG:config-demo:config-demo-2
+export KUBECONFIG="${KUBECONFIG}:config-demo:config-demo-2"
 ```
 
 ### Windows PowerShell
@@ -476,7 +480,7 @@ For more information about how kubeconfig files are merged, see
 [Organizing Cluster Access Using kubeconfig Files](/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
 -->
 关于 kubeconfig 文件如何合并的更多信息，请参考
-[使用 kubeconfig 文件组织集群访问](/zh/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
+[使用 kubeconfig 文件组织集群访问](/zh-cn/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
 
 <!--
 ## Explore the $HOME/.kube directory
@@ -489,7 +493,7 @@ Go to `$HOME/.kube`, and see what files are there. Typically, there is a file na
 `config`. There might also be other configuration files in this directory. Briefly
 familiarize yourself with the contents of these files.
 -->
-## 探索 $HOME/.kube 目录
+## 探索 $HOME/.kube 目录    {#explore-the-home-kube-directory}
 
 如果用户已经拥有一个集群，可以使用 `kubectl` 与集群进行交互，
 那么很可能在 `$HOME/.kube` 目录下有一个名为 `config` 的文件。
@@ -504,7 +508,7 @@ If you have a `$HOME/.kube/config` file, and it's not already listed in your
 `KUBECONFIG` environment variable, append it to your `KUBECONFIG` environment variable now.
 For example:
 -->
-## 将 $HOME/.kube/config 追加到 KUBECONFIG 环境变量中
+## 将 $HOME/.kube/config 追加到 KUBECONFIG 环境变量中    {#append-home-kube-config-to-your-kubeconfig-environment-variable}
 
 如果有 `$HOME/.kube/config` 文件，并且还未列在 `KUBECONFIG` 环境变量中，
 那么现在将它追加到 `KUBECONFIG` 环境变量中。
@@ -513,7 +517,7 @@ For example:
 ### Linux
 
 ```shell
-export KUBECONFIG=$KUBECONFIG:$HOME/.kube/config
+export KUBECONFIG="${KUBECONFIG}:$HOME/.kube/config"
 ```
 
 ### Windows Powershell
@@ -535,16 +539,16 @@ kubectl config view
 <!--
 ## Clean up
 
-Return your `KUBECONFIG` environment variable to its original value. For example:
+Return your `KUBECONFIG` environment variable to its original value. For example:<br>
 -->
-## 清理
+## 清理    {#clean-up}
 
-将 `KUBECONFIG` 环境变量还原为原始值。 例如：
+将 `KUBECONFIG` 环境变量还原为原始值。例如：
 
 ### Linux
 
 ```shell
-export KUBECONFIG=$KUBECONFIG_SAVED
+export KUBECONFIG="$KUBECONFIG_SAVED"
 ```
 
 ### Windows PowerShell
@@ -560,6 +564,6 @@ $Env:KUBECONFIG=$ENV:KUBECONFIG_SAVED
 * [kubectl config](/docs/reference/generated/kubectl/kubectl-commands#config)
 -->
 
-* [使用 kubeconfig 文件组织集群访问](/zh/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
+* [使用 kubeconfig 文件组织集群访问](/zh-cn/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
 * [kubectl config](/docs/reference/generated/kubectl/kubectl-commands#config)
 
diff --git a/content/zh/docs/tasks/access-application-cluster/configure-dns-cluster.md b/content/zh-cn/docs/tasks/access-application-cluster/configure-dns-cluster.md
similarity index 93%
rename from content/zh/docs/tasks/access-application-cluster/configure-dns-cluster.md
rename to content/zh-cn/docs/tasks/access-application-cluster/configure-dns-cluster.md
index 9125fcbfc0..4bfd1cc54b 100644
--- a/content/zh/docs/tasks/access-application-cluster/configure-dns-cluster.md
+++ b/content/zh-cn/docs/tasks/access-application-cluster/configure-dns-cluster.md
@@ -25,7 +25,7 @@ kubeadm 默认会安装 CoreDNS。
 For more information on how to configure CoreDNS for a Kubernetes cluster, see the [Customizing DNS Service](/docs/tasks/administer-cluster/dns-custom-nameservers/). An example demonstrating how to use Kubernetes DNS with kube-dns, see the [Kubernetes DNS sample plugin](https://github.com/kubernetes/examples/tree/master/staging/cluster-dns)
 -->
 要了解关于如何为 Kubernetes 集群配置 CoreDNS 的更多信息，参阅 
-[定制 DNS 服务](/zh/docs/tasks/administer-cluster/dns-custom-nameservers/)。
+[定制 DNS 服务](/zh-cn/docs/tasks/administer-cluster/dns-custom-nameservers/)。
 关于如何利用 kube-dns 配置 kubernetes DNS 的演示例子，参阅 
 [Kubernetes DNS 插件示例](https://github.com/kubernetes/examples/tree/master/staging/cluster-dns)。
 
diff --git a/content/zh/docs/tasks/access-application-cluster/connecting-frontend-backend.md b/content/zh-cn/docs/tasks/access-application-cluster/connecting-frontend-backend.md
similarity index 94%
rename from content/zh/docs/tasks/access-application-cluster/connecting-frontend-backend.md
rename to content/zh-cn/docs/tasks/access-application-cluster/connecting-frontend-backend.md
index 93a230d365..b455521662 100644
--- a/content/zh/docs/tasks/access-application-cluster/connecting-frontend-backend.md
+++ b/content/zh-cn/docs/tasks/access-application-cluster/connecting-frontend-backend.md
@@ -46,11 +46,11 @@ Kubernetes {{< glossary_tooltip term_id="service" >}} object.
 This task uses
 [Services with external load balancers](/docs/tasks/access-application-cluster/create-external-load-balancer/), which
 require a supported environment. If your environment does not support this, you can use a Service of type
-[NodePort](/docs/concepts/services-networking/service/#nodeport) instead.
+[NodePort](/docs/concepts/services-networking/service/#type-nodeport) instead.
 -->
-本任务使用[外部负载均衡服务](/zh/docs/tasks/access-application-cluster/create-external-load-balancer/)，
+本任务使用[外部负载均衡服务](/zh-cn/docs/tasks/access-application-cluster/create-external-load-balancer/)，
 所以需要对应的可支持此功能的环境。如果你的环境不能支持，你可以使用
-[NodePort](/zh/docs/concepts/services-networking/service/#nodeport)
+[NodePort](/zh-cn/docs/concepts/services-networking/service/#type-nodeport)
 类型的服务代替。
 
 <!-- lessoncontent -->
@@ -246,7 +246,7 @@ so that you can change the configuration more easily.
 这个 nginx 配置文件是被打包在
 [容器镜像](/examples/service/access/Dockerfile) 里的。
 更好的方法是使用
-[ConfigMap](/zh/docs/tasks/configure-pod-container/configure-pod-configmap/)，
+[ConfigMap](/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap/)，
 这样的话你可以更轻易地更改配置。
 {{< /note >}}
 
@@ -343,7 +343,7 @@ kubectl delete deployment frontend backend
 * Learn more about [ConfigMaps](/docs/tasks/configure-pod-container/configure-pod-configmap/)
 * Learn more about [DNS for Service and Pods](/docs/concepts/services-networking/dns-pod-service/)
 -->
-* 进一步了解 [Service](/zh/docs/concepts/services-networking/service/)
-* 进一步了解 [ConfigMap](/zh/docs/tasks/configure-pod-container/configure-pod-configmap/)
-* 进一步了解 [Service 和 Pods 的 DNS](/zh/docs/concepts/services-networking/dns-pod-service/)
+* 进一步了解 [Service](/zh-cn/docs/concepts/services-networking/service/)
+* 进一步了解 [ConfigMap](/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap/)
+* 进一步了解 [Service 和 Pods 的 DNS](/zh-cn/docs/concepts/services-networking/dns-pod-service/)
 
diff --git a/content/zh-cn/docs/tasks/access-application-cluster/create-external-load-balancer.md b/content/zh-cn/docs/tasks/access-application-cluster/create-external-load-balancer.md
new file mode 100644
index 0000000000..a4156f14b9
--- /dev/null
+++ b/content/zh-cn/docs/tasks/access-application-cluster/create-external-load-balancer.md
@@ -0,0 +1,331 @@
+---
+title: 创建外部负载均衡器
+content_type: task
+weight: 80
+---
+
+<!--
+title: Create an External Load Balancer
+content_type: task
+weight: 80
+-->
+
+<!-- overview -->
+
+<!--
+This page shows how to create an external load balancer.
+-->
+本文展示如何创建一个外部负载均衡器。
+
+<!--
+When creating a {{< glossary_tooltip text="Service" term_id="service" >}}, you have
+the option of automatically creating a cloud load balancer. This provides an
+externally-accessible IP address that sends traffic to the correct port on your cluster
+nodes,
+_provided your cluster runs in a supported environment and is configured with
+the correct cloud load balancer provider package_.
+-->
+创建 {{< glossary_tooltip text="服务" term_id="service" >}} 时，你可以选择自动创建云网络负载均衡器。
+负载均衡器提供外部可访问的 IP 地址，可将流量发送到集群节点上的正确端口上
+（ **假设集群在支持的环境中运行，并配置了正确的云负载均衡器驱动包**）。
+
+<!--
+You can also use an {{< glossary_tooltip term_id="ingress" >}} in place of Service.
+For more information, check the [Ingress](/docs/concepts/services-networking/ingress/)
+documentation.
+-->
+你还可以使用 {{< glossary_tooltip text="Ingress" term_id="ingress" >}} 代替 Service。
+更多信息，请参阅 [Ingress](/zh-cn/docs/concepts/services-networking/ingress/) 文档。
+
+## {{% heading "prerequisites" %}}
+
+{{< include "task-tutorial-prereqs.md" >}}
+
+<!--
+Your cluster must be running in a cloud or other environment that already has support
+for configuring external load balancers.
+-->
+你的集群必须在已经支持配置外部负载均衡器的云或其他环境中运行。
+
+<!-- steps -->
+
+<!--
+## Create a Service
+
+### Create a Service from a manifest
+
+To create an external load balancer, add the following line to your
+Service manifest:
+-->
+## 创建服务   {#create-a-service}
+
+### 基于清单文件创建服务   {#create-a-service-from-a-manifest}
+
+要创建外部负载均衡器，请将以下内容添加到你的 Service 清单文件：
+
+```yaml
+    type: LoadBalancer
+```
+
+<!--
+Your manifest might then look like:
+-->
+你的清单文件可能会如下所示：
+
+```yaml
+apiVersion: v1
+kind: Service
+metadata:
+  name: example-service
+spec:
+  selector:
+    app: example
+  ports:
+    - port: 8765
+      targetPort: 9376
+  type: LoadBalancer
+```
+
+<!--
+### Create a Service using kubectl
+
+You can alternatively create the service with the `kubectl expose` command and
+its `--type=LoadBalancer` flag:
+-->
+### 使用 kubectl 创建 Service   {#create-a-service-using-kubectl}
+
+你也可以使用 `kubectl expose` 命令及其 `--type=LoadBalancer` 参数创建服务：
+
+```bash
+kubectl expose deployment example --port=8765 --target-port=9376 \
+        --name=example-service --type=LoadBalancer
+```
+
+<!--
+This command creates a new Service using the same selectors as the referenced
+resource (in the case of the example above, a
+{{< glossary_tooltip text="Deployment" term_id="deployment" >}} named `example`).
+
+For more information, including optional flags, refer to the
+[`kubectl expose` reference](/docs/reference/generated/kubectl/kubectl-commands/#expose).
+-->
+此命令通过使用与引用资源（在上面的示例的情况下，名为 `example` 的
+{{< glossary_tooltip text="Deployment" term_id="deployment" >}}）
+相同的选择器来创建一个新的服务。
+
+更多信息（包括更多的可选参数），请参阅
+[`kubectl expose` 指南](/docs/reference/generated/kubectl/kubectl-commands/#expose)。
+
+<!--
+## Finding your IP address
+
+You can find the IP address created for your service by getting the service
+information through `kubectl`:
+-->
+## 找到你的 IP 地址   {#finding-your-ip-address}
+
+你可以通过 `kubectl` 获取服务信息，找到为你的服务创建的 IP 地址：
+
+```bash
+kubectl describe services example-service
+```
+
+<!--
+which should produce output similar to:
+-->
+这将获得类似如下输出：
+
+```
+Name:                     example-service
+Namespace:                default
+Labels:                   app=example
+Annotations:              <none>
+Selector:                 app=example
+Type:                     LoadBalancer
+IP Families:              <none>
+IP:                       10.3.22.96
+IPs:                      10.3.22.96
+LoadBalancer Ingress:     192.0.2.89
+Port:                     <unset>  8765/TCP
+TargetPort:               9376/TCP
+NodePort:                 <unset>  30593/TCP
+Endpoints:                172.17.0.3:9376
+Session Affinity:         None
+External Traffic Policy:  Cluster
+Events:                   <none>
+```
+
+<!--
+The load balancer's IP address is listed next to `LoadBalancer Ingress`.
+-->
+负载均衡器的 IP 地址列在 `LoadBalancer Ingress` 旁边。
+
+<!--
+If you are running your service on Minikube, you can find the assigned IP address and port with:
+-->
+{{< note >}}
+如果你在 Minikube 上运行服务，你可以通过以下命令找到分配的 IP 地址和端口：
+
+```bash
+minikube service example-service --url
+```
+{{< /note >}}
+
+<!--
+## Preserving the client source IP
+
+By default, the source IP seen in the target container is *not the original
+source IP* of the client. To enable preservation of the client IP, the following
+fields can be configured in the `.spec` of the Service:
+-->
+## 保留客户端源 IP   {#preserving-the-client-source-ip}
+
+默认情况下，目标容器中看到的源 IP 将**不是客户端的原始源 IP**。
+要启用保留客户端 IP，可以在服务的 `.spec` 中配置以下字段：
+
+<!--
+* `.spec.externalTrafficPolicy` - denotes if this Service desires to route
+  external traffic to node-local or cluster-wide endpoints. There are two available
+  options: `Cluster` (default) and `Local`. `Cluster` obscures the client source
+  IP and may cause a second hop to another node, but should have good overall
+  load-spreading. `Local` preserves the client source IP and avoids a second hop
+  for LoadBalancer and NodePort type Services, but risks potentially imbalanced
+  traffic spreading.
+-->
+* `.spec.externalTrafficPolicy` - 表示此 Service 是否希望将外部流量路由到节点本地或集群范围的端点。
+  有两个可用选项：`Cluster`（默认）和 `Local`。
+  `Cluster` 隐藏了客户端源 IP，可能导致第二跳到另一个节点，但具有良好的整体负载分布。
+  `Local` 保留客户端源 IP 并避免 LoadBalancer 和 NodePort 类型服务的第二跳，
+  但存在潜在的不均衡流量传播风险。
+
+<!--
+* `.spec.healthCheckNodePort` - specifies the health check node port
+  (numeric port number) for the service. If you don't specify
+  `healthCheckNodePort`, the service controller allocates a port from your
+  cluster's NodePort range.
+  You can configure that range by setting an API server command line option,
+  `--service-node-port-range`. The Service will use the user-specified
+  `healthCheckNodePort` value if you specify it, provided that the
+  Service `type` is set to LoadBalancer and `externalTrafficPolicy` is set
+  to `Local`.
+-->
+* `.spec.healthCheckNodePort` - 指定服务的 healthcheck nodePort（数字端口号）。
+  如果你未指定 `healthCheckNodePort`，服务控制器从集群的 NodePort 范围内分配一个端口。
+  你可以通过设置 API 服务器的命令行选项 `--service-node-port-range` 来配置上述范围。
+  在服务 `type` 设置为 LoadBalancer 并且 `externalTrafficPolicy` 设置为 `Local` 时，
+  Service 将会使用用户指定的 `healthCheckNodePort` 值（如果你指定了它）。
+
+<!--
+Setting `externalTrafficPolicy` to Local in the Service manifest
+activates this feature. For example:
+-->
+可以通过在服务的清单文件中将 `externalTrafficPolicy` 设置为 Local 来激活此功能。比如：
+
+```yaml
+apiVersion: v1
+kind: Service
+metadata:
+  name: example-service
+spec:
+  selector:
+    app: example
+  ports:
+    - port: 8765
+      targetPort: 9376
+  externalTrafficPolicy: Local
+  type: LoadBalancer
+```
+
+<!--
+### Caveats and limitations when preserving source IPs
+
+Load balancing services from some cloud providers do not let you configure different weights for each target.
+
+With each target weighted equally in terms of sending traffic to Nodes, external
+traffic is not equally load balanced across different Pods. The external load balancer
+is unaware of the number of Pods on each node that are used as a target.
+-->
+### 保留源 IP 时的注意事项和限制   {#caveats-and-limitations-when-preserving-source-ips}
+
+一些云服务供应商的负载均衡服务不允许你为每个目标配置不同的权重。
+
+由于每个目标在向节点发送流量方面的权重相同，因此外部流量不会在不同 Pod 之间平均负载。
+外部负载均衡器不知道每个节点上用作目标的 Pod 数量。
+
+<!--
+Where `NumServicePods <<  _NumNodes` or `NumServicePods >> NumNodes`, a fairly close-to-equal
+distribution will be seen, even without weights.
+
+Internal pod to pod traffic should behave similar to ClusterIP services, with equal probability across all pods.
+-->
+在 `NumServicePods <<  _NumNodes` 或 `NumServicePods >> NumNodes` 时，
+即使没有权重，也会看到接近相等的分布。
+
+内部 Pod 到 Pod 的流量应该与 ClusterIP 服务类似，所有 Pod 的概率相同。
+
+<!--
+## Garbage Collecting Load Balancers
+
+{{< feature-state for_k8s_version="v1.17" state="stable" >}}
+
+In usual case, the correlating load balancer resources in cloud provider should
+be cleaned up soon after a LoadBalancer type Service is deleted. But it is known
+that there are various corner cases where cloud resources are orphaned after the
+associated Service is deleted. Finalizer Protection for Service LoadBalancers was
+introduced to prevent this from happening. By using finalizers, a Service resource
+will never be deleted until the correlating load balancer resources are also deleted.
+-->
+## 回收负载均衡器   {#garbage-collecting-load-balancers}
+
+{{< feature-state for_k8s_version="v1.17" state="stable" >}}
+
+在通常情况下，应在删除 LoadBalancer 类型 Service 后立即清除云服务供应商中的相关负载均衡器资源。
+但是，众所周知，在删除关联的服务后，云资源被孤立的情况很多。
+引入了针对服务负载均衡器的终结器保护，以防止这种情况发生。
+通过使用终结器，在删除相关的负载均衡器资源之前，也不会删除服务资源。
+
+<!--
+Specifically, if a Service has `type` LoadBalancer, the service controller will attach
+a finalizer named `service.kubernetes.io/load-balancer-cleanup`.
+The finalizer will only be removed after the load balancer resource is cleaned up.
+This prevents dangling load balancer resources even in corner cases such as the
+service controller crashing.
+-->
+具体来说，如果服务具有 `type` LoadBalancer，则服务控制器将附加一个名为
+`service.kubernetes.io/load-balancer-cleanup` 的终结器。
+仅在清除负载均衡器资源后才能删除终结器。
+即使在诸如服务控制器崩溃之类的极端情况下，这也可以防止负载均衡器资源悬空。
+
+<!--
+## External load balancer providers
+
+It is important to note that the datapath for this functionality is provided by a load balancer external to the Kubernetes cluster.
+-->
+## 外部负载均衡器供应商   {#external-load-balancer-providers}
+
+请务必注意，此功能的数据路径由 Kubernetes 集群外部的负载均衡器提供。
+
+<!--
+When the Service `type` is set to LoadBalancer, Kubernetes provides functionality equivalent to `type` equals ClusterIP to pods
+within the cluster and extends it by programming the (external to Kubernetes) load balancer with entries for the nodes
+hosting the relevant Kubernetes pods. The Kubernetes control plane automates the creation of the external load balancer,
+health checks (if needed), and packet filtering rules (if needed). Once the cloud provider allocates an IP address for the load
+balancer, the control plane looks up that external IP address and populates it into the Service object.
+-->
+当服务 `type` 设置为 LoadBalancer 时，Kubernetes 向集群中的 Pod 提供的功能等同于
+`type` 设置为 ClusterIP，并通过使用托管了相关 Kubernetes Pod 的节点作为条目对负载均衡器
+（从外部到 Kubernetes）进行编程来扩展它。
+Kubernetes 控制平面自动创建外部负载均衡器、健康检查（如果需要）和包过滤规则（如果需要）。
+一旦云服务供应商为负载均衡器分配了 IP 地址，控制平面就会查找该外部 IP 地址并将其填充到 Service 对象中。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* Read about [Service](/docs/concepts/services-networking/service/)
+* Read about [Ingress](/docs/concepts/services-networking/ingress/)
+* Read [Connecting Applications with Services](/docs/concepts/services-networking/connect-applications-service/)
+-->
+* 阅读[服务](/zh-cn/docs/concepts/services-networking/service/)
+* 阅读 [Ingress](/zh-cn/docs/concepts/services-networking/ingress/)
+* 阅读[使用 Service 连接到应用](/zh-cn/docs/concepts/services-networking/connect-applications-service/)
+
diff --git a/content/zh/docs/tasks/access-application-cluster/ingress-minikube.md b/content/zh-cn/docs/tasks/access-application-cluster/ingress-minikube.md
similarity index 57%
rename from content/zh/docs/tasks/access-application-cluster/ingress-minikube.md
rename to content/zh-cn/docs/tasks/access-application-cluster/ingress-minikube.md
index 01fba70e92..e220d760f4 100644
--- a/content/zh/docs/tasks/access-application-cluster/ingress-minikube.md
+++ b/content/zh-cn/docs/tasks/access-application-cluster/ingress-minikube.md
@@ -2,11 +2,13 @@
 title: 在 Minikube 环境中使用 NGINX Ingress 控制器配置 Ingress
 content_type: task
 weight: 100
+min-kubernetes-server-version: 1.19
 ---
 <!--
 title: Set up Ingress on Minikube with the NGINX Ingress Controller
 content_type: task
 weight: 100
+min-kubernetes-server-version: 1.19
 -->
 
 <!-- overview -->
@@ -17,39 +19,34 @@ to services in a cluster. An [Ingress controller](/docs/concepts/services-networ
 
 This page shows you how to set up a simple Ingress which routes requests to Service web or web2 depending on the HTTP URI.
 -->
-[Ingress](/zh/docs/concepts/services-networking/ingress/)是一种 API 对象，其中定义了一些规则使得集群中的
+[Ingress](/zh-cn/docs/concepts/services-networking/ingress/)是一种 API 对象，其中定义了一些规则使得集群中的
 服务可以从集群外访问。
-[Ingress 控制器](/zh/docs/concepts/services-networking/ingress-controllers/)
+[Ingress 控制器](/zh-cn/docs/concepts/services-networking/ingress-controllers/)
 负责满足 Ingress 中所设置的规则。
 
 本节为你展示如何配置一个简单的 Ingress，根据 HTTP URI 将服务请求路由到
 服务 `web` 或 `web2`。
 
+
 ## {{% heading "prerequisites" %}}
 
+
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+如果你使用的是较早的 Kubernetes 版本，请切换到该版本的文档。
 
 <!-- steps -->
 
 <!--
-## Create a Minikube cluster
-
-1. Click **Launch Terminal**
+### Create a Minikube cluster
 -->
-## 创建一个 Minikube  集群
+### 创建一个 Minikube  集群
 
-1. 点击 **Launch Terminal**
+使用 Katacoda
+: {{< kat-button >}}
 
-    {{< kat-button >}}
-
-<!--
-1. (Optional) If you installed Minikube locally, run the following command:
--->
-2. （可选操作）如果你在本地安装了 Minikube，运行下面的命令：
-
-    ```shell
-    minikube start
-    ```
+本地
+: 如果已经在本地[安装Minikube](/zh-cn/docs/tasks/tools/#minikube)，
+请运行 `minikube start` 创建一个集群。
 
 <!--
 ## Enable the Ingress controller
@@ -70,26 +67,51 @@ This page shows you how to set up a simple Ingress which routes requests to Serv
 -->
 2. 检查验证 NGINX Ingress 控制器处于运行状态：
 
-   ```shell
-   kubectl get pods -n kube-system
-   ```
 
-   <!-- This can take up to a minute. -->
-   {{< note >}}
-   这一操作可能需要近一分钟时间。
-   {{< /note >}}
+   {{< tabs name="tab_with_md" >}}
+   {{% tab name="minikube v1.19 或更高版本" %}}
+```shell
+kubectl get pods -n ingress-nginx
+```
+   <!-- It can take up to a minute before you see these pods running OK. -->
+   {{< note >}}最多可能需要等待一分钟才能看到这些 Pod 运行正常。{{< /note >}}
 
-   输出：
+   <!-- The output is similar to: -->
+   输出类似于：
 
-   ```
-   NAME                                        READY     STATUS    RESTARTS   AGE
-   default-http-backend-59868b7dd6-xb8tq       1/1       Running   0          1m
-   kube-addon-manager-minikube                 1/1       Running   0          3m
-   kube-dns-6dcb57bcc8-n4xd4                   3/3       Running   0          2m
-   kubernetes-dashboard-5498ccf677-b8p5h       1/1       Running   0          2m
-   nginx-ingress-controller-5984b97644-rnkrg   1/1       Running   0          1m
-   storage-provisioner                         1/1       Running   0          2m
-   ```
+```
+NAME                                        READY   STATUS      RESTARTS    AGE
+ingress-nginx-admission-create-g9g49        0/1     Completed   0          11m
+ingress-nginx-admission-patch-rqp78         0/1     Completed   1          11m
+ingress-nginx-controller-59b45fb494-26npt   1/1     Running     0          11m
+```
+   {{% /tab %}}
+   {{% tab name="minikube v1.18.1 或更早版本" %}}
+```shell
+kubectl get pods -n kube-system
+```
+   <!-- It can take up to a minute before you see these pods running OK. -->
+   {{< note >}}最多可能需要等待一分钟才能看到这些 Pod 运行正常。{{< /note >}}
+
+   <!-- The output is similar to: -->
+   输出类似于：
+
+```
+NAME                                        READY     STATUS    RESTARTS   AGE
+default-http-backend-59868b7dd6-xb8tq       1/1       Running   0          1m
+kube-addon-manager-minikube                 1/1       Running   0          3m
+kube-dns-6dcb57bcc8-n4xd4                   3/3       Running   0          2m
+kubernetes-dashboard-5498ccf677-b8p5h       1/1       Running   0          2m
+nginx-ingress-controller-5984b97644-rnkrg   1/1       Running   0          1m
+storage-provisioner                         1/1       Running   0          2m
+```
+
+   <!--
+   Make sure that you see a Pod with a name that starts with `nginx-ingress-controller-`.
+   -->
+   请确保可以在输出中看到一个名称以 `nginx-ingress-controller-` 为前缀的 Pod。
+   {{% /tab %}}
+   {{< /tabs >}}
 
 <!--
 ## Deploy a hello, world app
@@ -104,7 +126,7 @@ This page shows you how to set up a simple Ingress which routes requests to Serv
    kubectl create deployment web --image=gcr.io/google-samples/hello-app:1.0
    ```
 
-   <!--Output:-->
+   <!--The output should be:-->
    输出：
 
    ```
@@ -120,7 +142,7 @@ This page shows you how to set up a simple Ingress which routes requests to Serv
    kubectl expose deployment web --type=NodePort --port=8080
    ```
 
-   <!-- Output: -->
+   <!--The output should be:-->
    输出：
 
    ```
@@ -130,14 +152,14 @@ This page shows you how to set up a simple Ingress which routes requests to Serv
 <!--
 1. Verify the Service is created and is available on a node port:
 -->
-3. 验证 Service 已经创建，并且可能从节点端口访问：
+3. 验证 Service 已经创建，并且可以从节点端口访问：
 
    ```shell
    kubectl get service web
    ```
 
-   <!-- Output: -->
-   输出：
+   <!-- The output is similar to: -->
+   输出类似于：
 
    ```shell
    NAME      TYPE       CLUSTER-IP       EXTERNAL-IP   PORT(S)          AGE
@@ -153,8 +175,8 @@ This page shows you how to set up a simple Ingress which routes requests to Serv
    minikube service web --url
    ```
 
-   <!-- Output: -->
-   输出：
+   <!-- The output is similar to: -->
+   输出类似于：
 
    ```shell
    http://172.17.0.15:31637
@@ -169,8 +191,8 @@ This page shows you how to set up a simple Ingress which routes requests to Serv
    输入节点和端口号（这里是`31637`），之后点击 **Display Port**。
    {{< /note >}}
 
-   <!-- Output: -->
-   输出：
+   <!-- The output is similar to: -->
+   输出类似于：
 
    ```shell
    Hello, world!
@@ -186,15 +208,15 @@ This page shows you how to set up a simple Ingress which routes requests to Serv
    下一步是让自己能够通过 Ingress 资源来访问应用。
 
 <!--
-## Create an Ingress resource
+## Create an Ingress
 
-The following file is an Ingress resource that sends traffic to your Service via hello-world.info.
+The following manifest defines an Ingress that sends traffic to your Service via hello-world.info.
 
 1. Create `example-ingress.yaml` from the following file:
 -->
-## 创建一个 Ingress 资源
+## 创建一个 Ingress
 
-下面是一个 Ingress 资源的配置文件，负责通过 `hello-world.info` 将服务请求
+下面是一个定义 Ingress 的配置文件，负责通过 `hello-world.info` 将请求
 转发到你的服务。
 
 1. 根据下面的 YAML 创建文件 `example-ingress.yaml`：
@@ -202,15 +224,15 @@ The following file is an Ingress resource that sends traffic to your Service via
    {{< codenew file="service/networking/example-ingress.yaml" >}}
 
 <!--
-1. Create the Ingress resource by running the following command:
+1. Create the Ingress object by running the following command:
 -->
-2. 通过运行下面的命令创建 Ingress 资源：
+2. 通过运行下面的命令创建 Ingress 对象：
 
    ```shell
    kubectl apply -f https://k8s.io/examples/service/networking/example-ingress.yaml
    ```
 
-   <!-- Output: -->
+   <!-- The output should be: -->
    输出：
 
    ```
@@ -231,15 +253,19 @@ The following file is an Ingress resource that sends traffic to your Service via
    此操作可能需要几分钟时间。
    {{< /note >}}
 
+   <!-- You should see an IPv4 address in the ADDRESS column; for example: -->
+   接下来你将会在ADDRESS列中看到IPv4地址，例如：
+
    ```
    NAME              CLASS    HOSTS              ADDRESS        PORTS   AGE
    example-ingress   <none>   hello-world.info   172.17.0.15    80      38s
    ```
 
 <!--
-1. Add the following line to the bottom of the `/etc/hosts` file.
+1. Add the following line to the bottom of the `/etc/hosts` file on
+   your computer (you will need administrator access):
 -->
-4. 在 `/etc/hosts` 文件的末尾添加以下内容：
+4. 在 `/etc/hosts` 文件的末尾添加以下内容（需要管理员访问权限）：
 
    <!--
    If you are running Minikube locally, use `minikube ip` to get the external IP. The IP address displayed within the ingress list will be the internal IP.
@@ -252,8 +278,11 @@ The following file is an Ingress resource that sends traffic to your Service via
    172.17.0.15 hello-world.info
    ```
 
-   <!-- This sends requests from hello-world.info to Minikube. -->
-   此设置使得来自 `hello-world.info` 的请求被发送到 Minikube。
+   <!--     
+   After you make this change, your web browser sends requests for
+   hello-world.info URLs to Minikube.
+   -->
+   添加完成后，在浏览器中访问URL `hello-world.info`，请求将被发送到 Minikube。
 
 <!--
 1. Verify that the Ingress controller is directing traffic:
@@ -264,8 +293,8 @@ The following file is an Ingress resource that sends traffic to your Service via
    curl hello-world.info
    ```
 
-   <!-- Output: -->
-   输出：
+   <!-- You should see: -->
+   你应该看到类似输出：
 
    ```
    Hello, world!
@@ -281,18 +310,19 @@ The following file is an Ingress resource that sends traffic to your Service via
    {{< /note >}}
 
 <!--
-## Create Second Deployment
+## Create a second Deployment
 
-1. Create a v2 Deployment using the following command:
+1. Create another Deployment using the following command:
 -->
 ## 创建第二个 Deployment
 
-1. 使用下面的命令创建 v2 的 Deployment：
+1. 使用下面的命令创建第二个 Deployment：
 
    ```shell
    kubectl create deployment web2 --image=gcr.io/google-samples/hello-app:2.0
    ```
-   <!-- Output: -->
+
+   <!-- The output should be: -->
    输出：
 
    ```
@@ -300,15 +330,15 @@ The following file is an Ingress resource that sends traffic to your Service via
    ```
 
 <!--
-1. Expose the Deployment:
+1. Expose the second Deployment:
 -->
-2. 将 Deployment 暴露出来：
+2. 将第二个 Deployment 暴露出来：
 
    ```shell
    kubectl expose deployment web2 --port=8080 --type=NodePort
    ```
 
-   <!-- Output:  -->
+   <!-- The output should be:  -->
    输出：
 
    ```
@@ -316,35 +346,36 @@ The following file is an Ingress resource that sends traffic to your Service via
    ```
 
 <!--
-## Edit Ingress
+## Edit the existing Ingress {#edit-ingress}
 
-1. Edit the existing `example-ingress.yaml` and add the following lines:
+1. Edit the existing `example-ingress.yaml` manifest, and add the
+   following lines at the end:
 -->
-## 编辑 Ingress
+## 编辑现有的 Ingress {#edit-ingress}
 
-1. 编辑现有的 `example-ingress.yaml`，添加以下行：
+1. 编辑现有的 `example-ingress.yaml`，在文件最后添加以下行：
 
 
    ```yaml
-   - path: /v2
-     pathType: Prefix
-     backend:
-       service:
-         name: web2
-         port:
-           number: 8080
+              - path: /v2
+                pathType: Prefix
+                backend:
+                  service:
+                    name: web2
+                    port:
+                      number: 8080
    ```
 
 <!--
 1. Apply the changes:
 -->
-2. 应用所作变更：
+2. 应用变更：
 
    ```shell
    kubectl apply -f example-ingress.yaml
    ```
 
-   <!-- Output: -->
+   <!-- You should see: -->
    输出：
 
    ```
@@ -364,8 +395,8 @@ The following file is an Ingress resource that sends traffic to your Service via
    curl hello-world.info
    ```
 
-   <!-- Output: -->
-   输出：
+   <!-- The output is similar to: -->
+   输出类似于：
 
    ```
    Hello, world!
@@ -382,8 +413,8 @@ The following file is an Ingress resource that sends traffic to your Service via
    curl hello-world.info/v2
    ```
 
-   <!-- Output: -->
-   输出：
+   <!-- The output is similar to: -->
+   输出类似于：
 
    ```
    Hello, world!
@@ -392,7 +423,7 @@ The following file is an Ingress resource that sends traffic to your Service via
    ```
 
    <!--
-   If you are running Minikube locally, you can visit hello-world.info and hello-world.info/v2 from your browser
+   If you are running Minikube locally, you can visit hello-world.info and hello-world.info/v2 from your browser.
    -->
    {{< note >}}
    如果你在本地运行 Minikube 环境，你可以使用浏览器来访问
@@ -407,7 +438,6 @@ The following file is an Ingress resource that sends traffic to your Service via
 * Read more about [Services](/docs/concepts/services-networking/service/)
 -->
 
-* 进一步了解 [Ingress](/zh/docs/concepts/services-networking/ingress/)。
-* 进一步了解 [Ingress 控制器](/zh/docs/concepts/services-networking/ingress-controllers/)
-* 进一步了解[服务](/zh/docs/concepts/services-networking/service/)
-
+* 进一步了解 [Ingress](/zh-cn/docs/concepts/services-networking/ingress/)。
+* 进一步了解 [Ingress 控制器](/zh-cn/docs/concepts/services-networking/ingress-controllers/)
+* 进一步了解 [服务](/zh-cn/docs/concepts/services-networking/service/)
diff --git a/content/zh/docs/tasks/access-application-cluster/list-all-running-container-images.md b/content/zh-cn/docs/tasks/access-application-cluster/list-all-running-container-images.md
similarity index 94%
rename from content/zh/docs/tasks/access-application-cluster/list-all-running-container-images.md
rename to content/zh-cn/docs/tasks/access-application-cluster/list-all-running-container-images.md
index bf205350dd..4e4d800937 100644
--- a/content/zh/docs/tasks/access-application-cluster/list-all-running-container-images.md
+++ b/content/zh-cn/docs/tasks/access-application-cluster/list-all-running-container-images.md
@@ -50,7 +50,7 @@ of Containers for each.
 - 使用 `kubectl get pods --all-namespaces` 获取所有命名空间下的所有 Pod
 - 使用 `-o jsonpath={.items[*].spec.containers[*].image}` 来格式化输出，以仅包含容器镜像名称。
   这将以递归方式从返回的 json 中解析出 `image` 字段。
-  - 参阅 [jsonpath 说明](/zh/docs/reference/kubectl/jsonpath/)
+  - 参阅 [jsonpath 说明](/zh-cn/docs/reference/kubectl/jsonpath/)
     获取更多关于如何使用 jsonpath 的信息。
 - 使用标准化工具来格式化输出：`tr`, `sort`, `uniq`
   - 使用 `tr` 以用换行符替换空格
@@ -107,17 +107,17 @@ Pod is returned instead of a list of items.
 {{< /note >}}
 
 <!--
-## List Containers by Pod
+## List Container images by Pod
 
 The formatting can be controlled further by using the `range` operation to
 iterate over elements individually.
 -->
-## 列出 Pod 中的容器
+## 按 Pod 列出容器镜像
 
 可以使用 `range` 操作进一步控制格式化，以单独操作每个元素。
 
 ```shell
-kubectl get pods --all-namespaces -o=jsonpath='{range .items[*]}{"\n"}{.metadata.name}{":\t"}{range .spec.containers[*]}{.image}{", "}{end}{end}' |\
+kubectl get pods --all-namespaces -o jsonpath='{range .items[*]}{"\n"}{.metadata.name}{":\t"}{range .spec.containers[*]}{.image}{", "}{end}{end}' |\
 sort
 ```
 
@@ -132,7 +132,7 @@ following matches only Pods with labels matching `app=nginx`.
 要获取匹配特定标签的 Pod，请使用 -l 参数。以下匹配仅与标签 `app=nginx` 相符的 Pod。
 
 ```shell
-kubectl get pods --all-namespaces -o=jsonpath="{.items[*].spec.containers[*].image}" -l app=nginx
+kubectl get pods --all-namespaces -o jsonpath="{.items[*].spec.containers[*].image}" -l app=nginx
 ```
 
 <!--
@@ -173,6 +173,6 @@ kubectl get pods --all-namespaces -o go-template --template="{{range .items}}{{r
 -->
 ### 参考
 
-* [Jsonpath](/zh/docs/reference/kubectl/jsonpath/) 参考指南
+* [Jsonpath](/zh-cn/docs/reference/kubectl/jsonpath/) 参考指南
 * [Go template](https://golang.org/pkg/text/template/) 参考指南
 
diff --git a/content/zh/docs/tasks/access-application-cluster/port-forward-access-application-cluster.md b/content/zh-cn/docs/tasks/access-application-cluster/port-forward-access-application-cluster.md
similarity index 73%
rename from content/zh/docs/tasks/access-application-cluster/port-forward-access-application-cluster.md
rename to content/zh-cn/docs/tasks/access-application-cluster/port-forward-access-application-cluster.md
index 6c9b830116..69a376cfa2 100644
--- a/content/zh/docs/tasks/access-application-cluster/port-forward-access-application-cluster.md
+++ b/content/zh-cn/docs/tasks/access-application-cluster/port-forward-access-application-cluster.md
@@ -2,12 +2,14 @@
 title: 使用端口转发来访问集群中的应用
 content_type: task
 weight: 40
+min-kubernetes-server-version: v1.10
 ---
 
 <!--
 title: Use Port Forwarding to Access Applications in a Cluster
 content_type: task
 weight: 40
+min-kubernetes-server-version: v1.10
 -->
 
 <!-- overview -->
@@ -16,13 +18,12 @@ This page shows how to use `kubectl port-forward` to connect to a MongoDB
 server running in a Kubernetes cluster. This type of connection can be useful
 for database debugging.
 -->
-本文展示如何使用 `kubectl port-forward` 连接到在 Kubernetes 集群中
-运行的 MongoDB 服务。这种类型的连接对数据库调试很有用。
+本文展示如何使用 `kubectl port-forward` 连接到在 Kubernetes 集群中运行的 MongoDB 服务。
+这种类型的连接对数据库调试很有用。
 
 ## {{% heading "prerequisites" %}}
 
 * {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
 <!--
 * Install [MongoDB Shell](https://www.mongodb.com/try/download/shell).
 -->
@@ -35,9 +36,9 @@ for database debugging.
 
 1. Create a Deployment that runs MongoDB:
 -->
-## 创建 MongoDB deployment 和服务
+## 创建 MongoDB Deployment 和服务
 
-1. 创建一个运行 MongoDB 的 deployment：
+1. 创建一个运行 MongoDB 的 Deployment：
 
    ```shell
    kubectl apply -f https://k8s.io/examples/application/mongodb/mongo-deployment.yaml
@@ -46,7 +47,7 @@ for database debugging.
    <!--
    The output of a successful command verifies that the deployment was created:
    -->
-   查看输出是否成功，以验证是否成功创建 deployment：
+   成功执行的命令的输出可以证明创建了 Deployment：
 
    ```
    deployment.apps/mongo created
@@ -55,7 +56,7 @@ for database debugging.
    <!--
    View the pod status to check that it is ready:
    -->
-   查看 pod 状态，检查其是否准备就绪：
+   查看 Pod 状态，检查其是否准备就绪：
 
    ```shell
    kubectl get pods
@@ -64,7 +65,7 @@ for database debugging.
    <!--
    The output displays the pod created:
    -->
-   输出显示创建的 pod：
+   输出显示创建的 Pod：
 
    ```
    NAME                     READY   STATUS    RESTARTS   AGE
@@ -94,8 +95,7 @@ for database debugging.
    The Deployment automatically manages a ReplicaSet.
    View the ReplicaSet status using:
    -->
-   Deployment 自动管理 ReplicaSet。
-   查看 ReplicaSet 状态：
+   该 Deployment 自动管理一个 ReplicaSet。查看该 ReplicaSet 的状态：
 
    ```shell
    kubectl get replicaset
@@ -104,7 +104,7 @@ for database debugging.
    <!--
    The output displays that the ReplicaSet was created:
    -->
-   输出显示创建的 ReplicaSet：
+   输出显示 ReplicaSet 已被创建：
 
    ```
    NAME               DESIRED   CURRENT   READY   AGE
@@ -123,7 +123,7 @@ for database debugging.
    <!--
    The output of a successful command verifies that the Service was created:
    -->
-   查看输出是否成功，以验证是否成功创建 Service：
+   成功执行的命令的输出可以证明 Service 已经被创建：
 
    ```
    service/mongo created
@@ -132,7 +132,7 @@ for database debugging.
    <!--
    Check the Service created:
    -->
-   检查 Service 是否创建：
+   检查所创建的 Service：
 
    ```shell
    kubectl get service mongo
@@ -141,7 +141,7 @@ for database debugging.
    <!--   
    The output displays the service created:
    -->
-   输出显示创建的 Service：
+   输出显示已被创建的 Service：
 
    ```
    NAME    TYPE        CLUSTER-IP     EXTERNAL-IP   PORT(S)     AGE
@@ -151,41 +151,53 @@ for database debugging.
 <!--
 3. Verify that the MongoDB server is running in the Pod, and listening on port 27017:
 -->
-3. 验证 MongoDB 服务是否运行在 Pod 中并且监听 27017 端口：
+3. 验证 MongoDB 服务是否运行在 Pod 中并且在监听 27017 端口：
 
+   <!--
    ```shell
    # Change mongo-75f59d57f4-4nd6q to the name of the Pod
    kubectl get pod mongo-75f59d57f4-4nd6q --template='{{(index (index .spec.containers 0).ports 0).containerPort}}{{"\n"}}'
    ```
+   -->
+   ```shell
+   # 将 mongo-75f59d57f4-4nd6q 改为 Pod 的名称
+   kubectl get pod mongo-75f59d57f4-4nd6q --template='{{(index (index .spec.containers 0).ports 0).containerPort}}{{"\n"}}'
+   ```
 
    <!--
    The output displays the port for MongoDB in that Pod:
    -->
-   输出应该显示 Pod 中 MongoDB 的端口：
+   输出应该显示对应 Pod 中 MongoDB 的端口：
 
    ```
    27017
    ```
 
    <!--
-   (this is the TCP port allocated to MongoDB on the internet).
+   27017 is the TCP port allocated to MongoDB on the internet.
    -->
-   （这是 Internet 分配给 MongoDB 的 TCP 端口）。
+   27017 是分配给 MongoDB 的互联网 TCP 端口。
 
 <!--
 ## Forward a local port to a port on the Pod
 
-1.  `kubectl port-forward` allows using resource name, such as a pod name, to select a matching pod to port forward to.
+1. `kubectl port-forward` allows using resource name, such as a pod name, to select a matching pod to port forward to.
 -->
 ## 转发一个本地端口到 Pod 端口
 
 1. `kubectl port-forward` 允许使用资源名称
-   （例如 pod 名称）来选择匹配的 pod 来进行端口转发。
+   （例如 Pod 名称）来选择匹配的 Pod 来进行端口转发。
 
+   <!--
    ```shell
    # Change mongo-75f59d57f4-4nd6q to the name of the Pod
    kubectl port-forward mongo-75f59d57f4-4nd6q 28015:27017
    ```
+   -->
+   ```shell
+   # 将 mongo-75f59d57f4-4nd6q 改为 Pod 的名称
+   kubectl port-forward mongo-75f59d57f4-4nd6q 28015:27017
+   ```
 
    <!--
    which is the same as
@@ -220,30 +232,25 @@ for database debugging.
    <!--
    Any of the above commands works. The output is similar to this:
    -->
-   以上所有命令都应该有效。输出应该类似于：
+   以上所有命令都有效。输出类似于：
 
    ```
    Forwarding from 127.0.0.1:28015 -> 27017
    Forwarding from [::1]:28015 -> 27017
     ```
-<!--
-{{< note >}}
 
-`kubectl port-forward` does not return. To continue with the exercises, you will need to open another terminal.
-
-{{< /note >}}
--->
-{{< note >}}
-
-`kubectl port-forward` 不会返回。你需要打开另一个终端来继续这个练习。
-
-{{< /note >}}
+   {{< note >}}
+   <!--
+   `kubectl port-forward` does not return. To continue with the exercises, you will need to open another terminal.
+   -->
+   `kubectl port-forward` 不会返回。你需要打开另一个终端来继续这个练习。
+   {{< /note >}}
 
 
 <!--
-2.  Start the MongoDB command line interface:
+2. Start the MongoDB command line interface:
 -->
-2.  启动 MongoDB 命令行接口：
+2. 启动 MongoDB 命令行接口：
 
    ```shell
    mongosh --port 28015
@@ -278,7 +285,7 @@ the local port and thus relieve you from having to manage local port conflicts,
 the slightly simpler syntax:
 -->
 如果你不需要指定特定的本地端口，你可以让 `kubectl` 来选择和分配本地端口，
-以便你不需要管理本地端口冲突。该命令使用稍微不同的语法：
+这样你就不需要管理本地端口冲突。该命令使用稍微不同的语法：
 
 ```shell
 kubectl port-forward deployment/mongo :27017
@@ -288,8 +295,8 @@ kubectl port-forward deployment/mongo :27017
 The `kubectl` tool finds a local port number that is not in use (avoiding low ports numbers,
 because these might be used by other applications). The output is similar to:
 -->
-`kubectl` 工具会找到一个未被使用的本地端口号（避免使用低段位的端口号，因为他们可能会被其他应用程序使用）。
-输出应该类似于：
+`kubectl` 工具会找到一个未被使用的本地端口号（避免使用低段位的端口号，
+因为他们可能会被其他应用程序使用）。输出类似于：
 
 ```
 Forwarding from 127.0.0.1:63753 -> 27017
@@ -307,19 +314,19 @@ local workstation to debug the database that is running in the Pod.
 -->
 ## 讨论  {#discussion}
 
-与本地 28015 端口建立的连接将转发到运行 MongoDB 服务器的 Pod 的 27017 端口。
-通过此连接，您可以使用本地工作站来调试在 Pod 中运行的数据库。
+与本地 28015 端口建立的连接将被转发到运行 MongoDB 服务器的 Pod 的 27017 端口。
+通过此连接，你可以使用本地工作站来调试在 Pod 中运行的数据库。
 
+{{< note >}}
 <!--
 `kubectl port-forward` is implemented for TCP ports only.
 The support for UDP protocol is tracked in
 [issue 47862](https://github.com/kubernetes/kubernetes/issues/47862).
 -->
-{{< warning >}}
-`kubectl port-forward` 仅适用于 TCP 端口。
+`kubectl port-forward` 仅实现了 TCP 端口 支持。
 在 [issue 47862](https://github.com/kubernetes/kubernetes/issues/47862)
 中跟踪了对 UDP 协议的支持。
-{{< /warning >}}
+{{< /note >}}
 
 ## {{% heading "whatsnext" %}}
 
diff --git a/content/zh/docs/tasks/access-application-cluster/service-access-application-cluster.md b/content/zh-cn/docs/tasks/access-application-cluster/service-access-application-cluster.md
similarity index 93%
rename from content/zh/docs/tasks/access-application-cluster/service-access-application-cluster.md
rename to content/zh-cn/docs/tasks/access-application-cluster/service-access-application-cluster.md
index b5a7084a46..8a99607786 100644
--- a/content/zh/docs/tasks/access-application-cluster/service-access-application-cluster.md
+++ b/content/zh-cn/docs/tasks/access-application-cluster/service-access-application-cluster.md
@@ -70,9 +70,9 @@ Here is the configuration file for the application Deployment:
    kubectl apply -f https://k8s.io/examples/service/access/hello-application.yaml
    ```
 
-   上面的命令创建一个 [Deployment](/zh/docs/concepts/workloads/controllers/deployment/) 对象
-   和一个关联的 [ReplicaSet](/zh/docs/concepts/workloads/controllers/replicaset/) 对象。
-   这个 ReplicaSet 有两个 [Pod](/zh/docs/concepts/workloads/pods/)，
+   上面的命令创建一个 [Deployment](/zh-cn/docs/concepts/workloads/controllers/deployment/) 对象
+   和一个关联的 [ReplicaSet](/zh-cn/docs/concepts/workloads/controllers/replicaset/) 对象。
+   这个 ReplicaSet 有两个 [Pod](/zh-cn/docs/concepts/workloads/pods/)，
    每个 Pod 都运行着 Hello World 应用。
   
 <!--
@@ -211,7 +211,7 @@ to create a Service.
 ## 使用服务配置文件
 
 作为 `kubectl expose` 的替代方法，你可以使用
-[服务配置文件](/zh/docs/concepts/services-networking/service/) 来创建服务。
+[服务配置文件](/zh-cn/docs/concepts/services-networking/service/) 来创建服务。
 
 ## {{% heading "cleanup" %}}
 
@@ -240,5 +240,5 @@ kubectl delete deployment hello-world
 Learn more about
 [connecting applications with services](/docs/concepts/services-networking/connect-applications-service/).
 -->
-- 进一步了解[通过服务连接应用](/zh/docs/concepts/services-networking/connect-applications-service/)。
+- 进一步了解[通过服务连接应用](/zh-cn/docs/concepts/services-networking/connect-applications-service/)。
 
diff --git a/content/zh/docs/tasks/access-application-cluster/web-ui-dashboard.md b/content/zh-cn/docs/tasks/access-application-cluster/web-ui-dashboard.md
similarity index 81%
rename from content/zh/docs/tasks/access-application-cluster/web-ui-dashboard.md
rename to content/zh-cn/docs/tasks/access-application-cluster/web-ui-dashboard.md
index 470a378bab..eb99e7c028 100644
--- a/content/zh/docs/tasks/access-application-cluster/web-ui-dashboard.md
+++ b/content/zh-cn/docs/tasks/access-application-cluster/web-ui-dashboard.md
@@ -1,5 +1,5 @@
 ---
-title: Web 界面 (Dashboard)
+title: 部署和访问 Kubernetes 仪表板（Dashboard）
 content_type: concept
 weight: 10
 card:
@@ -9,10 +9,11 @@ card:
 ---
 <!--
 reviewers:
-- bryk
+- floreks
+- maciaszczykm
+- shu-mutou
 - mikedanese
-- rf232
-title: Web UI (Dashboard)
+title: Deploy and Access the Kubernetes Dashboard
 content_type: concept
 weight: 10
 card:
@@ -56,7 +57,7 @@ The Dashboard UI is not deployed by default. To deploy it, run the following com
 默认情况下不会部署 Dashboard。可以通过以下命令部署：
 
 ```
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/dashboard/v2.2.0/aio/deploy/recommended.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/dashboard/v2.5.0/aio/deploy/recommended.yaml
 ```
 
 <!--
@@ -67,7 +68,7 @@ Currently, Dashboard only supports logging in with a Bearer Token.
 To create a token for this demo, you can follow our guide on
 [creating a sample user](https://github.com/kubernetes/dashboard/wiki/Creating-sample-user).
 -->
-## 访问 Dashboard UI
+## 访问 Dashboard 用户界面
 
 为了保护你的集群数据，默认情况下，Dashboard 会使用最少的 RBAC 配置进行部署。
 当前，Dashboard 仅支持使用 Bearer 令牌登录。
@@ -85,11 +86,12 @@ The sample user created in the tutorial will have administrative privileges and
 <!--
 ### Command line proxy
 
-You can access Dashboard using the kubectl command-line tool by running the following command:
+You can enable access to the Dashboard using the `kubectl` command-line tool,
+by running the following command:
 -->
 ### 命令行代理
 
-你可以使用 kubectl 命令行工具访问 Dashboard，命令如下：
+你可以使用 `kubectl` 命令行工具来启用 Dashboard 访问，命令如下：
 
 ```
 kubectl proxy
@@ -106,10 +108,11 @@ The UI can _only_ be accessed from the machine where the command is executed. Se
 UI _只能_ 通过执行这条命令的机器进行访问。更多选项参见 `kubectl proxy --help`。
 
 <!--
-Kubeconfig Authentication method does NOT support external identity providers or x509 certificate-based authentication.
+The kubeconfig authentication method does **not** support external identity providers
+or X.509 certificate-based authentication.
 -->
 {{< note >}}
-Kubeconfig 身份验证方法不支持外部身份提供程序或基于 x509 证书的身份验证。
+Kubeconfig 身份验证方法**不**支持外部身份提供程序或基于 x509 证书的身份验证。
 {{< /note >}}
 
 <!--
@@ -123,7 +126,7 @@ When you access Dashboard on an empty cluster, you'll see the welcome page. This
 当访问空集群的 Dashboard 时，你会看到欢迎界面。
 页面包含一个指向此文档的链接，以及一个用于部署第一个应用程序的按钮。
 此外，你可以看到在默认情况下有哪些默认系统应用运行在 `kube-system`
-[名字空间](/zh/docs/tasks/administer-cluster/namespaces/) 中，比如 Dashboard 自己。
+[名字空间](/zh-cn/docs/tasks/administer-cluster/namespaces/) 中，比如 Dashboard 自己。
 
 <!--
 ![Kubernetes Dashboard welcome page](/images/docs/ui-dashboard-zerostate.png)
@@ -133,11 +136,14 @@ When you access Dashboard on an empty cluster, you'll see the welcome page. This
 <!--
 ## Deploying containerized applications
 
-Dashboard lets you create and deploy a containerized application as a Deployment and optional Service with a simple wizard. You can either manually specify application details, or upload a YAML or JSON file containing application configuration.
+Dashboard lets you create and deploy a containerized application as a Deployment and optional Service with a simple wizard.
+You can either manually specify application details, or upload a YAML or JSON _manifest_ file containing application configuration.
 -->
 ## 部署容器化应用
 
-通过一个简单的部署向导，你可以使用 Dashboard 将容器化应用作为一个 Deployment 和可选的 Service 进行创建和部署。可以手工指定应用的详细配置，或者上传一个包含应用配置的 YAML 或 JSON 文件。
+通过一个简单的部署向导，你可以使用 Dashboard 将容器化应用作为一个 Deployment 和可选的
+Service 进行创建和部署。你可以手工指定应用的详细配置，或者上传一个包含应用配置的 YAML
+或 JSON _清单_文件。
 
 <!--
 Click the **CREATE** button in the upper right corner of any page to begin.
@@ -157,13 +163,13 @@ The deploy wizard expects that you provide the following information:
 - **App name** (mandatory): Name for your application. A [label](/docs/concepts/overview/working-with-objects/labels/) with the name will be added to the Deployment and Service, if any, that will be deployed.
 -->
 - **应用名称**（必填）：应用的名称。内容为`应用名称`的
-  [标签](/zh/docs/concepts/overview/working-with-objects/labels/)
+  [标签](/zh-cn/docs/concepts/overview/working-with-objects/labels/)
   会被添加到任何将被部署的 Deployment 和 Service。
 
   <!--
   The application name must be unique within the selected Kubernetes [namespace](/docs/tasks/administer-cluster/namespaces/). It must start with a lowercase character, and end with a lowercase character or a number, and contain only lowercase letters, numbers and dashes (-). It is limited to 24 characters. Leading and trailing spaces are ignored.
   -->
-  在选定的 Kubernetes [名字空间](/zh/docs/tasks/administer-cluster/namespaces/) 中，
+  在选定的 Kubernetes [名字空间](/zh-cn/docs/tasks/administer-cluster/namespaces/) 中，
   应用名称必须唯一。必须由小写字母开头，以数字或者小写字母结尾，
   并且只含有小写字母、数字和中划线（-）。小于等于24个字符。开头和结尾的空格会被忽略。
 
@@ -171,7 +177,7 @@ The deploy wizard expects that you provide the following information:
 - **Container image** (mandatory): The URL of a public Docker [container image](/docs/concepts/containers/images/) on any registry, or a private image (commonly hosted on the Google Container Registry or Docker Hub). The container image specification must end with a colon.
  -->
 - **容器镜像**（必填）：公共镜像仓库上的 Docker
-  [容器镜像](/zh/docs/concepts/containers/images/) 或者私有镜像仓库
+  [容器镜像](/zh-cn/docs/concepts/containers/images/) 或者私有镜像仓库
   （通常是 Google Container Registry 或者 Docker Hub）的 URL。容器镜像参数说明必须以冒号结尾。
 
 <!--
@@ -183,14 +189,14 @@ The deploy wizard expects that you provide the following information:
   A [Deployment](/docs/concepts/workloads/controllers/deployment/) will be created to
   maintain the desired number of Pods across your cluster.
   -->
-  系统会创建一个 [Deployment](/zh/docs/concepts/workloads/controllers/deployment/)
+  系统会创建一个 [Deployment](/zh-cn/docs/concepts/workloads/controllers/deployment/)
   以保证集群中运行期望的 Pod 数量。
 
 <!--
 - **Service** (optional): For some parts of your application (e.g. frontends) you may want to expose a [Service](/docs/concepts/services-networking/service/) onto an external, maybe public IP address outside of your cluster (external Service).
  -->
 - **服务**（可选）：对于部分应用（比如前端），你可能想对外暴露一个
-  [Service](/zh/docs/concepts/services-networking/service/) ，这个 Service
+  [Service](/zh-cn/docs/concepts/services-networking/service/) ，这个 Service
   可能用的是集群之外的公网 IP 地址（外部 Service）。
 
   <!-- 
@@ -228,14 +234,14 @@ If needed, you can expand the **Advanced options** section where you can specify
   to the Deployment and displayed in the application's details.
  -->
 - **描述**：这里你输入的文本会作为一个
-  [注解](/zh/docs/concepts/overview/working-with-objects/annotations/)
+  [注解](/zh-cn/docs/concepts/overview/working-with-objects/annotations/)
   添加到 Deployment，并显示在应用的详细信息中。
 
 <!--
 - **Labels**: Default [labels](/docs/concepts/overview/working-with-objects/labels/) to be used for your application are application name and version. You can specify additional labels to be applied to the Deployment, Service (if any), and Pods, such as release, environment, tier, partition, and release track.
 -->
 - **标签**：应用默认使用的
-  [标签](/zh/docs/concepts/overview/working-with-objects/labels/) 是应用名称和版本。
+  [标签](/zh-cn/docs/concepts/overview/working-with-objects/labels/) 是应用名称和版本。
   你可以为 Deployment、Service（如果有）定义额外的标签，比如 release（版本）、
   environment（环境）、tier（层级）、partition（分区） 和 release track（版本跟踪）。
 
@@ -254,7 +260,7 @@ If needed, you can expand the **Advanced options** section where you can specify
 -->
 - **名字空间**：Kubernetes 支持多个虚拟集群依附于同一个物理集群。
   这些虚拟集群被称为
-  [名字空间](/zh/docs/tasks/administer-cluster/namespaces/)，
+  [名字空间](/zh-cn/docs/tasks/administer-cluster/namespaces/)，
   可以让你将资源划分为逻辑命名的组。
 
   <!--
@@ -281,7 +287,7 @@ If needed, you can expand the **Advanced options** section where you can specify
 - **Image Pull Secret**: In case the specified Docker container image is private, it may require [pull secret](/docs/concepts/configuration/secret/) credentials.
 -->
 - **镜像拉取 Secret**：如果要使用私有的 Docker 容器镜像，需要拉取
-  [Secret](/zh/docs/concepts/configuration/secret/) 凭证。
+  [Secret](/zh-cn/docs/concepts/configuration/secret/) 凭证。
 
   <!--
   Dashboard offers all available secrets in a dropdown list, and allows you to create a new secret.
@@ -293,7 +299,7 @@ If needed, you can expand the **Advanced options** section where you can specify
   Dashboard 通过下拉菜单提供所有可用的 Secret，并允许你创建新的 Secret。
   Secret 名称必须遵循 DNS 域名语法，比如 `new.image-pull.secret`。
   Secret 的内容必须是 base64 编码的，并且在一个
-  [`.dockercfg`](/zh/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod)
+  [`.dockercfg`](/zh-cn/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod)
   文件中声明。Secret 名称最大可以包含 253 个字符。
   
   <!--
@@ -307,21 +313,21 @@ If needed, you can expand the **Advanced options** section where you can specify
 - **CPU requirement (cores)** and **Memory requirement (MiB)**: You can specify the minimum [resource limits](/docs/tasks/configure-pod-container/limit-range/) for the container. By default, Pods run with unbounded CPU and memory limits.
  -->
 - **CPU 需求（核数）**和**内存需求（MiB）**：你可以为容器定义最小的
-  [资源限制](/zh/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)。
+  [资源限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)。
   默认情况下，Pod 没有 CPU 和内存限制。
 
 <!--
 - **Run command** and **Run command arguments**: By default, your containers run the specified Docker image's default [entrypoint command](/docs/user-guide/containers/#containers-and-commands). You can use the command options and arguments to override the default.
  -->
 - **运行命令**和**运行命令参数**：默认情况下，你的容器会运行 Docker 镜像的默认
-  [入口命令](/zh/docs/tasks/inject-data-application/define-command-argument-container/)。
+  [入口命令](/zh-cn/docs/tasks/inject-data-application/define-command-argument-container/)。
   你可以使用 command 选项覆盖默认值。
 
 <!--
 - **Run as privileged**: This setting determines whether processes in [privileged containers](/docs/user-guide/pods/#privileged-mode-for-pod-containers) are equivalent to processes running as root on the host. Privileged containers can make use of capabilities like manipulating the network stack and accessing devices.
  -->
 - **以特权模式运行**：这个设置决定了在
-  [特权容器](/zh/docs/concepts/workloads/pods/#privileged-mode-for-containers)
+  [特权容器](/zh-cn/docs/concepts/workloads/pods/#privileged-mode-for-containers)
   中运行的进程是否像主机中使用 root 运行的进程一样。
   特权容器可以使用诸如操纵网络堆栈和访问设备的功能。
 
@@ -329,24 +335,29 @@ If needed, you can expand the **Advanced options** section where you can specify
 - **Environment variables**: Kubernetes exposes Services through [environment variables](/docs/tasks/inject-data-application/environment-variable-expose-pod-information/). You can compose environment variable or pass arguments to your commands using the values of environment variables. They can be used in applications to find a Service. Values can reference other variables using the `$(VAR_NAME)` syntax.
  -->
 - **环境变量**：Kubernetes 通过
-  [环境变量](/zh/docs/tasks/inject-data-application/environment-variable-expose-pod-information/)
+  [环境变量](/zh-cn/docs/tasks/inject-data-application/environment-variable-expose-pod-information/)
   暴露 Service。你可以构建环境变量，或者将环境变量的值作为参数传递给你的命令。
   它们可以被应用用于查找 Service。值可以通过  `$(VAR_NAME)` 语法关联其他变量。
 
 <!--
 ### Uploading a YAML or JSON file
 
-Kubernetes supports declarative configuration. In this style, all configuration is stored in YAML or JSON configuration files using the Kubernetes [API](/docs/concepts/overview/kubernetes-api/) resource schemas.
+Kubernetes supports declarative configuration.
+In this style, all configuration is stored in manifests (YAML or JSON configuration files).
+The manifests use the Kubernetes [API](/docs/concepts/overview/kubernetes-api/) resource schemas.
 -->
 ### 上传 YAML 或者 JSON 文件
 
-Kubernetes 支持声明式配置。所有的配置都存储在遵循 Kubernetes
-[API](/zh/docs/concepts/overview/kubernetes-api/) 规范的 YAML 或者 JSON 配置文件中。
+Kubernetes 支持声明式配置。所有的配置都存储在清单文件
+（YAML 或者 JSON 配置文件）中。这些
+清单使用 Kubernetes [API](/zh-cn/docs/concepts/overview/kubernetes-api/) 定义的资源模式。
 
 <!--
-As an alternative to specifying application details in the deploy wizard, you can define your application in YAML or JSON files, and upload the files using Dashboard:
+As an alternative to specifying application details in the deploy wizard,
+you can define your application one or more manifests, and upload the files using Dashboard.
 -->
-作为一种替代在部署向导中指定应用详情的方式，你可以在 YAML 或者 JSON 文件中定义应用，并且使用 Dashboard 上传文件：
+作为一种替代在部署向导中指定应用详情的方式，你可以在一个或多个清单文件中定义应用，并且使用
+Dashboard 上传文件。
 
 <!--
 ## Using Dashboard
@@ -375,7 +386,10 @@ Dashboard 展示大部分 Kubernetes 对象，并将它们分组放在几个菜
 <!--
 #### Admin Overview
 
-For cluster and namespace administrators, Dashboard lists Nodes, Namespaces and Persistent Volumes and has detail views for them. Node list view contains CPU and memory usage metrics aggregated across all Nodes. The details view shows the metrics for a Node, its specification, status, allocated resources, events and pods running on the node.
+For cluster and namespace administrators, Dashboard lists Nodes, Namespaces and PersistentVolumes and has detail views for them.
+Node list view contains CPU and memory usage metrics aggregated across all Nodes.
+The details view shows the metrics for a Node, its specification, status,
+allocated resources, events and pods running on the node.
 -->
 #### 管理概述
 
@@ -385,22 +399,31 @@ For cluster and namespace administrators, Dashboard lists Nodes, Namespaces and
 
 <!--
 #### Workloads
-Shows all applications running in the selected namespace. The view lists applications by workload kind (e.g., Deployments, Replica Sets, Stateful Sets, etc.) and each workload kind can be viewed separately. The lists summarize actionable information about the workloads, such as the number of ready pods for a Replica Set or current memory usage for a Pod.
+
+Shows all applications running in the selected namespace.
+The view lists applications by workload kind (e.g., Deployments, ReplicaSets, Stateful Sets, etc.).
+Each workload kind can be viewed separately.
+The lists summarize actionable information about the workloads,
+such as the number of ready pods for a ReplicaSet or current memory usage for a Pod.
  -->
 #### 负载
 
 显示选中的名字空间中所有运行的应用。
 视图按照负载类型（如 Deployment、ReplicaSet、StatefulSet 等）罗列应用，并且每种负载都可以单独查看。
-列表总结了关于负载的可执行信息，比如一个 ReplicaSet 的准备状态的 Pod 数量，或者目前一个 Pod 的内存使用量。
+列表总结了关于负载的可执行信息，比如一个 ReplicaSet 的就绪状态的 Pod 数量，或者目前一个 Pod 的内存用量。
 
 <!--
-Detail views for workloads show status and specification information and surface relationships between objects. For example, Pods that Replica Set is controlling or New Replica Sets and Horizontal Pod Autoscalers for Deployments.
+Detail views for workloads show status and specification information and
+surface relationships between objects.
+For example, Pods that Replica Set is controlling or New ReplicaSets and HorizontalPodAutoscalers for Deployments.
 -->
 工作负载的详情视图展示了对象的状态、详细信息和相互关系。
-例如，ReplicaSet 所控制的 Pod，或者 Deployment 关联的 新 ReplicaSet 和 Pod 水平扩展控制器。
+例如，ReplicaSet 所控制的 Pod，或者 Deployment 所关联的新 ReplicaSet 和
+HorizontalPodAutoscalers。
 
 <!--
 #### Services
+
 Shows Kubernetes resources that allow for exposing services to external world and discovering them within a cluster. For that reason, Service and Ingress views show Pods targeted by them, internal endpoints for cluster connections and external endpoints for external users.
 -->
 #### 服务
@@ -411,7 +434,7 @@ Shows Kubernetes resources that allow for exposing services to external world an
 <!--
 #### Storage
 
-Storage view shows Persistent Volume Claim resources which are used by applications for storing data.
+Storage view shows PersistentVolumeClaim resources which are used by applications for storing data.
 -->
 #### 存储
 
@@ -425,7 +448,7 @@ Shows all Kubernetes resources that are used for live configuration of applicati
 #### ConfigMap 和 Secret
 
 展示的所有 Kubernetes 资源是在集群中运行的应用程序的实时配置。
-通过这个视图可以编辑和管理配置对象，并显示那些默认隐藏的 secret。
+通过这个视图可以编辑和管理配置对象，并显示那些默认隐藏的 Secret。
 
 <!--
 #### Logs viewer
@@ -434,7 +457,8 @@ Pod lists and detail pages link to logs viewer that is built into Dashboard. The
 -->
 #### 日志查看器
 
-Pod 列表和详细信息页面可以链接到 Dashboard 内置的日志查看器。查看器可以钻取属于同一个 Pod 的不同容器的日志。
+Pod 列表和详细信息页面可以链接到 Dashboard 内置的日志查看器。
+查看器可以深入查看属于同一个 Pod 的不同容器的日志。
 
 <!--
 ![Logs viewer](/images/docs/ui-dashboard-logs-view.png)
diff --git a/content/zh/docs/tasks/administer-cluster/_index.md b/content/zh-cn/docs/tasks/administer-cluster/_index.md
similarity index 100%
rename from content/zh/docs/tasks/administer-cluster/_index.md
rename to content/zh-cn/docs/tasks/administer-cluster/_index.md
diff --git a/content/zh/docs/tasks/administer-cluster/access-cluster-api.md b/content/zh-cn/docs/tasks/administer-cluster/access-cluster-api.md
similarity index 87%
rename from content/zh/docs/tasks/administer-cluster/access-cluster-api.md
rename to content/zh-cn/docs/tasks/administer-cluster/access-cluster-api.md
index 7b1c9bed98..12c3d68f57 100644
--- a/content/zh/docs/tasks/administer-cluster/access-cluster-api.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/access-cluster-api.md
@@ -18,7 +18,6 @@ This page shows how to access clusters using the Kubernetes API.
 
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
-
 <!-- steps -->
 
 <!--
@@ -43,7 +42,7 @@ a [Getting started guide](/docs/setup/),
 or someone else setup the cluster and provided you with credentials and a location.
 -->
 要访问集群，你需要知道集群位置并拥有访问它的凭证。
-通常，当你完成[入门指南](/zh/docs/setup/)时，这会自动设置完成，或者由其他人设置好集群并将凭证和位置提供给你。
+通常，当你完成[入门指南](/zh-cn/docs/setup/)时，这会自动设置完成，或者由其他人设置好集群并将凭证和位置提供给你。
 
 <!--
 Check the location and credentials that kubectl knows about with this command:
@@ -56,11 +55,11 @@ kubectl config view
 
 <!--
 Many of the [examples](https://github.com/kubernetes/examples/tree/master/) provide an introduction to using
-kubectl. Complete documentation is found in the [kubectl manual](/docs/reference/kubectl/overview/).
+kubectl. Complete documentation is found in the [kubectl manual](/docs/reference/kubectl/).
 -->
 
 许多[样例](https://github.com/kubernetes/examples/tree/master/)
-提供了使用 kubectl 的介绍。完整文档请见 [kubectl 手册](/zh/docs/reference/kubectl/overview/)。
+提供了使用 kubectl 的介绍。完整文档请见 [kubectl 手册](/zh-cn/docs/reference/kubectl/)。
 
 <!--
 ### Directly accessing the REST API
@@ -70,13 +69,14 @@ kubectl handles locating and authenticating to the API server. If you want to di
 -->
 ### 直接访问 REST API
 
-kubectl 处理对 API 服务器的定位和身份验证。如果你想通过 http 客户端（如 `curl` 或 `wget`，或浏览器）直接访问 REST API，你可以通过多种方式对 API 服务器进行定位和身份验证：
+kubectl 处理对 API 服务器的定位和身份验证。如果你想通过 http 客户端（如 `curl` 或 `wget`，
+或浏览器）直接访问 REST API，你可以通过多种方式对 API 服务器进行定位和身份验证：
 
  <!--
 1. Run kubectl in proxy mode (recommended). This method is recommended, since it uses the stored apiserver location and verifies the identity of the API server using a self-signed cert. No man-in-the-middle (MITM) attack is possible using this method.
  1. Alternatively, you can provide the location and credentials directly to the http client. This works with client code that is confused by proxies. To protect against man in the middle attacks, you'll need to import a root cert into your browser.
 -->
-1. 以代理模式运行 kubectl（推荐）。 
+1. 以代理模式运行 kubectl（推荐）。
    推荐使用此方法，因为它用存储的 apiserver 位置并使用自签名证书验证 API 服务器的标识。
    使用这种方法无法进行中间人（MITM）攻击。
 2. 另外，你可以直接为 HTTP 客户端提供位置和身份认证。
@@ -160,8 +160,25 @@ export CLUSTER_NAME="some_server_name"
 # 指向引用该集群名称的 API 服务器
 APISERVER=$(kubectl config view -o jsonpath="{.clusters[?(@.name==\"$CLUSTER_NAME\")].cluster.server}")
 
-# 获得令牌
-TOKEN=$(kubectl get secrets -o jsonpath="{.items[?(@.metadata.annotations['kubernetes\.io/service-account\.name']=='default')].data.token}"|base64 -d)
+# 创建一个 secret 来保存默认服务账户的令牌
+kubectl apply -f - <<EOF
+apiVersion: v1
+kind: Secret
+metadata:
+  name: default-token
+  annotations:
+    kubernetes.io/service-account.name: default
+type: kubernetes.io/service-account-token
+EOF
+
+# 等待令牌控制器使用令牌填充 secret:
+while ! kubectl describe secret default-token | grep -E '^token' >/dev/null; do
+  echo "waiting for token..." >&2
+  sleep 1
+done
+
+# 获取令牌
+TOKEN=$(kubectl get secret default-token -o jsonpath='{.data.token}' | base64 --decode)
 
 # 使用令牌玩转 API
 curl -X GET $APISERVER/api --header "Authorization: Bearer $TOKEN" --insecure
@@ -185,30 +202,6 @@ curl -X GET $APISERVER/api --header "Authorization: Bearer $TOKEN" --insecure
 }
 ```
 
-<!-- Using `jsonpath` approach: -->
-使用 `jsonpath` 方式：
-
-```shell
-APISERVER=$(kubectl config view --minify -o jsonpath='{.clusters[0].cluster.server}')
-TOKEN=$(kubectl get secret $(kubectl get serviceaccount default -o jsonpath='{.secrets[0].name}') -o jsonpath='{.data.token}' | base64 --decode )
-curl $APISERVER/api --header "Authorization: Bearer $TOKEN" --insecure
-```
-
-```json
-{
-  "kind": "APIVersions",
-  "versions": [
-    "v1"
-  ],
-  "serverAddressByClientCIDRs": [
-    {
-      "clientCIDR": "0.0.0.0/0",
-      "serverAddress": "10.0.1.149:443"
-    }
-  ]
-}
-```
-
 <!--
 The above example uses the `--insecure` flag. This leaves it subject to MITM
 attacks. When kubectl accesses the cluster it uses a stored root certificate
@@ -230,21 +223,21 @@ describes how you can configure this as a cluster administrator.
 -->
 在一些集群中，API 服务器不需要身份认证；它运行在本地，或由防火墙保护着。
 对此并没有一个标准。
-[配置对 API 的访问](/zh/docs/concepts/security/controlling-access/)
+[配置对 API 的访问](/zh-cn/docs/concepts/security/controlling-access/)
 讲解了作为集群管理员可如何对此进行配置。
 
 <!--
 ### Programmatic access to the API
 
-Kubernetes officially supports client libraries for [Go](#go-client), [Python](#python-client), [Java](#java-client), [dotnet](#dotnet-client), [Javascript](#javascript-client), and [Haskell](#haskell-client). There are other client libraries that are provided and maintained by their authors, not the Kubernetes team. See [client libraries](/docs/reference/using-api/client-libraries/) for accessing the API from other languages and how they authenticate.
+Kubernetes officially supports client libraries for [Go](#go-client), [Python](#python-client), [Java](#java-client), [dotnet](#dotnet-client), [JavaScript](#javascript-client), and [Haskell](#haskell-client). There are other client libraries that are provided and maintained by their authors, not the Kubernetes team. See [client libraries](/docs/reference/using-api/client-libraries/) for accessing the API from other languages and how they authenticate.
 -->
 ### 编程方式访问 API
 
 Kubernetes 官方支持 [Go](#go-client)、[Python](#python-client)、[Java](#java-client)、
-[dotnet](#dotnet-client)、[Javascript](#javascript-client) 和 [Haskell](#haskell-client)
+[dotnet](#dotnet-client)、[JavaScript](#javascript-client) 和 [Haskell](#haskell-client)
 语言的客户端库。还有一些其他客户端库由对应作者而非 Kubernetes 团队提供并维护。
-参考[客户端库](/zh/docs/reference/using-api/client-libraries/)了解如何使用其他语言
-来访问 API 以及如何执行身份认证。
+参考[客户端库](/zh-cn/docs/reference/using-api/client-libraries/)了解如何使用其他语言来访问 API
+以及如何执行身份认证。
 
 <!-- #### Go client -->
 
@@ -272,7 +265,7 @@ The Go client can use the same [kubeconfig file](/docs/concepts/cluster-administ
 as the kubectl CLI does to locate and authenticate to the API server. See this [example](https://git.k8s.io/client-go/examples/out-of-cluster-client-configuration/main.go):
 -->
 Go 客户端可以使用与 kubectl 命令行工具相同的
-[kubeconfig 文件](/zh/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
+[kubeconfig 文件](/zh-cn/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
 定位和验证 API 服务器。参见这个
 [例子](https://git.k8s.io/client-go/examples/out-of-cluster-client-configuration/main.go)：
 
@@ -288,12 +281,12 @@ import (
 )
 
 func main() {
-  // uses the current context in kubeconfig
-  // path-to-kubeconfig -- for example, /root/.kube/config
+  // 在 kubeconfig 中使用当前上下文
+  // path-to-kubeconfig -- 例如 /root/.kube/config
   config, _ := clientcmd.BuildConfigFromFlags("", "<path-to-kubeconfig>")
-  // creates the clientset
+  // 创建 clientset
   clientset, _ := kubernetes.NewForConfig(config)
-  // access the API to list pods
+  // 访问 API 以列出 Pod
   pods, _ := clientset.CoreV1().Pods("").List(context.TODO(), v1.ListOptions{})
   fmt.Printf("There are %d pods in the cluster\n", len(pods.Items))
 }
@@ -303,7 +296,7 @@ func main() {
 If the application is deployed as a Pod in the cluster, see [Accessing the API from within a Pod](/docs/tasks/access-application-cluster/access-cluster/#accessing-the-api-from-a-pod).
 -->
 如果该应用程序部署为集群中的一个
-Pod，请参阅[从 Pod 内访问 API](/zh/docs/tasks/access-application-cluster/access-cluster/#accessing-the-api-from-a-pod)。
+Pod，请参阅[从 Pod 内访问 API](/zh-cn/docs/tasks/access-application-cluster/access-cluster/#accessing-the-api-from-a-pod)。
 
 <!-- #### Python client -->
 #### Python 客户端 {#python-client}
@@ -313,14 +306,14 @@ To use [Python client](https://github.com/kubernetes-client/python), run the fol
 -->
 要使用 [Python 客户端](https://github.com/kubernetes-client/python)，运行下列命令：
 `pip install kubernetes`。
-参见 [Python 客户端库主页](https://github.com/kubernetes-client/python) 了解更多安装选项。
+参见 [Python 客户端库主页](https://github.com/kubernetes-client/python)了解更多安装选项。
 
 <!--
 The Python client can use the same [kubeconfig file](/docs/concepts/cluster-administration/authenticate-across-clusters-kubeconfig/)
 as the kubectl CLI does to locate and authenticate to the API server. See this [example](https://github.com/kubernetes-client/python/blob/master/examples/out_of_cluster_config.py):
 -->
 Python 客户端可以使用与 kubectl 命令行工具相同的
-[kubeconfig 文件](/zh/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
+[kubeconfig 文件](/zh-cn/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
 定位和验证 API 服务器。参见这个
 [例子](https://github.com/kubernetes-client/python/blob/master/examples/out_of_cluster_config.py)：
 
@@ -357,15 +350,15 @@ mvn install
 See [https://github.com/kubernetes-client/java/releases](https://github.com/kubernetes-client/java/releases) to see which versions are supported.
 
 The Java client can use the same [kubeconfig file](/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
-as the kubectl CLI does to locate and authenticate to the API server. See this [example](https://github.com/kubernetes-client/java/blob/master/examples/src/main/java/io/kubernetes/client/examples/KubeConfigFileClientExample.java):
+as the kubectl CLI does to locate and authenticate to the API server. See this [example](https://github.com/kubernetes-client/java/blob/master/examples/examples-release-15/src/main/java/io/kubernetes/client/examples/KubeConfigFileClientExample.java):
 -->
 参阅[https://github.com/kubernetes-client/java/releases](https://github.com/kubernetes-client/java/releases)
 了解当前支持的版本。
 
 Java 客户端可以使用 kubectl 命令行所使用的
-[kubeconfig 文件](/zh/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
+[kubeconfig 文件](/zh-cn/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
 以定位 API 服务器并向其认证身份。
-参看此[示例](https://github.com/kubernetes-client/java/blob/master/examples/src/main/java/io/kubernetes/client/examples/KubeConfigFileClientExample.java)：
+参看此[示例](https://github.com/kubernetes-client/java/blob/master/examples/examples-release-15/src/main/java/io/kubernetes/client/examples/KubeConfigFileClientExample.java)：
 
 ```java
 package io.kubernetes.client.examples;
@@ -429,7 +422,7 @@ as the kubectl CLI does to locate and authenticate to the API server. See this [
 参见[.Net 客户端库页面](https://github.com/kubernetes-client/csharp)了解更多安装选项。
 关于可支持的版本，参见[https://github.com/kubernetes-client/csharp/releases](https://github.com/kubernetes-client/csharp/releases)。
 
-.Net 客户端可以使用与 kubectl CLI 相同的 [kubeconfig 文件](/zh/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
+.Net 客户端可以使用与 kubectl CLI 相同的 [kubeconfig 文件](/zh-cn/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
 来定位并验证 API 服务器。
 参见[样例](https://github.com/kubernetes-client/csharp/blob/master/examples/simple/PodList.cs): 
 
@@ -476,7 +469,7 @@ as the kubectl CLI does to locate and authenticate to the API server. See this [
 参考[https://github.com/kubernetes-client/javascript/releases](https://github.com/kubernetes-client/javascript/releases)了解可支持的版本。
 
 JavaScript 客户端可以使用 kubectl 命令行所使用的
-[kubeconfig 文件](/zh/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
+[kubeconfig 文件](/zh-cn/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
 以定位 API 服务器并向其认证身份。
 参见[此例](https://github.com/kubernetes-client/javascript/blob/master/examples/example.js)：
 
@@ -507,7 +500,7 @@ as the kubectl CLI does to locate and authenticate to the API server. See this [
 
 [Haskell 客户端](https://github.com/kubernetes-client/haskell)
 可以使用 kubectl 命令行所使用的
-[kubeconfig 文件](/zh/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
+[kubeconfig 文件](/zh-cn/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
 以定位 API 服务器并向其认证身份。
 参见[此例](https://github.com/kubernetes-client/haskell/blob/master/kubernetes-client/example/App.hs)：
 
@@ -527,4 +520,4 @@ exampleWithKubeConfig = do
 <!--
 * [Accessing the Kubernetes API from a Pod](/docs/tasks/run-application/access-api-from-pod/)
 -->
-* [从 Pod 中访问 API](/zh/docs/tasks/run-application/access-api-from-pod/)
+* [从 Pod 中访问 Kubernetes API](/zh-cn/docs/tasks/run-application/access-api-from-pod/)
diff --git a/content/zh-cn/docs/tasks/administer-cluster/certificates.md b/content/zh-cn/docs/tasks/administer-cluster/certificates.md
new file mode 100644
index 0000000000..6a86ded9eb
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/certificates.md
@@ -0,0 +1,421 @@
+---
+title: 手动生成证书
+content_type: task
+weight: 20
+---
+<!-- 
+---
+title: Generate Certificates Manually
+content_type: task
+weight: 20
+---
+-->
+
+<!-- overview -->
+
+<!-- 
+When using client certificate authentication, you can generate certificates
+manually through `easyrsa`, `openssl` or `cfssl`.
+-->
+在使用客户端证书认证的场景下，你可以通过 `easyrsa`、`openssl` 或 `cfssl` 等工具以手工方式生成证书。
+
+<!-- body -->
+
+### easyrsa
+
+<!-- 
+**easyrsa** can manually generate certificates for your cluster.
+-->
+**easyrsa** 支持以手工方式为你的集群生成证书。
+
+<!-- 
+1. Download, unpack, and initialize the patched version of `easyrsa3`.
+-->
+1. 下载、解压、初始化打过补丁的 `easyrsa3`。
+
+   ```shell
+   curl -LO https://storage.googleapis.com/kubernetes-release/easy-rsa/easy-rsa.tar.gz
+   tar xzf easy-rsa.tar.gz
+   cd easy-rsa-master/easyrsa3
+   ./easyrsa init-pki
+   ```
+
+<!-- 
+1. Generate a new certificate authority (CA). `--batch` sets automatic mode;
+   `--req-cn` specifies the Common Name (CN) for the CA's new root certificate.
+-->
+2. 生成新的证书颁发机构（CA）。参数 `--batch` 用于设置自动模式；
+   参数 `--req-cn` 用于设置新的根证书的通用名称（CN）。
+
+   ```shell
+   ./easyrsa --batch "--req-cn=${MASTER_IP}@`date +%s`" build-ca nopass
+   ```
+
+<!-- 
+1. Generate server certificate and key.
+
+   The argument `--subject-alt-name` sets the possible IPs and DNS names the API server will
+   be accessed with. The `MASTER_CLUSTER_IP` is usually the first IP from the service CIDR
+   that is specified as the `--service-cluster-ip-range` argument for both the API server and
+   the controller manager component. The argument `--days` is used to set the number of days
+   after which the certificate expires.
+   The sample below also assumes that you are using `cluster.local` as the default
+   DNS domain name.
+-->
+3. 生成服务器证书和秘钥。
+
+   参数 `--subject-alt-name` 设置 API 服务器的 IP 和 DNS 名称。
+   `MASTER_CLUSTER_IP` 用于 API 服务器和控制器管理器，通常取 CIDR 的第一个 IP，
+   由 `--service-cluster-ip-range` 的参数提供。
+   参数 `--days` 用于设置证书的过期时间。
+   下面的示例假定你的默认 DNS 域名为 `cluster.local`。
+
+   ```shell
+   ./easyrsa --subject-alt-name="IP:${MASTER_IP},"\
+   "IP:${MASTER_CLUSTER_IP},"\
+   "DNS:kubernetes,"\
+   "DNS:kubernetes.default,"\
+   "DNS:kubernetes.default.svc,"\
+   "DNS:kubernetes.default.svc.cluster,"\
+   "DNS:kubernetes.default.svc.cluster.local" \
+   --days=10000 \
+   build-server-full server nopass
+   ```
+
+<!-- 
+1. Copy `pki/ca.crt`, `pki/issued/server.crt`, and `pki/private/server.key` to your directory.
+-->
+4. 拷贝文件 `pki/ca.crt`、`pki/issued/server.crt` 和 `pki/private/server.key` 到你的目录中。
+
+<!--
+1. Fill in and add the following parameters into the API server start parameters:
+-->
+5. 在 API 服务器的启动参数中添加以下参数：
+
+   ```shell
+   --client-ca-file=/yourdirectory/ca.crt
+   --tls-cert-file=/yourdirectory/server.crt
+   --tls-private-key-file=/yourdirectory/server.key
+   ```
+
+### openssl
+
+<!-- 
+**openssl** can manually generate certificates for your cluster.
+-->
+**openssl** 支持以手工方式为你的集群生成证书。
+
+<!-- 
+1. Generate a ca.key with 2048bit:
+-->
+1. 生成一个 2048 位的 ca.key 文件
+
+   ```shell
+   openssl genrsa -out ca.key 2048
+   ```
+
+<!-- 
+1. According to the ca.key generate a ca.crt (use `-days` to set the certificate effective time):
+-->
+2. 在 ca.key 文件的基础上，生成 ca.crt 文件（用参数 `-days` 设置证书有效期）
+
+   ```shell
+   openssl req -x509 -new -nodes -key ca.key -subj "/CN=${MASTER_IP}" -days 10000 -out ca.crt
+   ```
+
+<!-- 
+1. Generate a server.key with 2048bit:
+-->
+3. 生成一个 2048 位的 server.key 文件：
+
+   ```shell
+   openssl genrsa -out server.key 2048
+   ```
+
+<!-- 
+1. Create a config file for generating a Certificate Signing Request (CSR).
+
+   Be sure to substitute the values marked with angle brackets (e.g. `<MASTER_IP>`)
+   with real values before saving this to a file (e.g. `csr.conf`).
+   Note that the value for `MASTER_CLUSTER_IP` is the service cluster IP for the
+   API server as described in previous subsection.
+   The sample below also assumes that you are using `cluster.local` as the default
+   DNS domain name.
+-->
+4. 创建一个用于生成证书签名请求（CSR）的配置文件。
+   保存文件（例如：`csr.conf`）前，记得用真实值替换掉尖括号中的值（例如：`<MASTER_IP>`）。
+   注意：`MASTER_CLUSTER_IP` 就像前一小节所述，它的值是 API 服务器的服务集群 IP。
+   下面的例子假定你的默认 DNS 域名为 `cluster.local`。
+
+   ```ini
+   [ req ]
+   default_bits = 2048
+   prompt = no
+   default_md = sha256
+   req_extensions = req_ext
+   distinguished_name = dn
+
+   [ dn ]
+   C = <country>
+   ST = <state>
+   L = <city>
+   O = <organization>
+   OU = <organization unit>
+   CN = <MASTER_IP>
+
+   [ req_ext ]
+   subjectAltName = @alt_names
+
+   [ alt_names ]
+   DNS.1 = kubernetes
+   DNS.2 = kubernetes.default
+   DNS.3 = kubernetes.default.svc
+   DNS.4 = kubernetes.default.svc.cluster
+   DNS.5 = kubernetes.default.svc.cluster.local
+   IP.1 = <MASTER_IP>
+   IP.2 = <MASTER_CLUSTER_IP>
+
+   [ v3_ext ]
+   authorityKeyIdentifier=keyid,issuer:always
+   basicConstraints=CA:FALSE
+   keyUsage=keyEncipherment,dataEncipherment
+   extendedKeyUsage=serverAuth,clientAuth
+   subjectAltName=@alt_names
+   ```
+
+<!-- 
+1. Generate the certificate signing request based on the config file:
+-->
+5. 基于上面的配置文件生成证书签名请求：
+
+   ```shell
+   openssl req -new -key server.key -out server.csr -config csr.conf
+   ```
+
+<!-- 
+1. Generate the server certificate using the ca.key, ca.crt and server.csr:
+-->
+6. 基于 ca.key、ca.crt 和 server.csr 等三个文件生成服务端证书：
+
+   ```shell
+   openssl x509 -req -in server.csr -CA ca.crt -CAkey ca.key \
+       -CAcreateserial -out server.crt -days 10000 \
+       -extensions v3_ext -extfile csr.conf
+   ```
+
+<!--
+1. View the certificate signing request:
+-->
+7. 查看证书签名请求：
+
+   ```shell
+   openssl req  -noout -text -in ./server.csr
+   ```
+
+<!-- 
+1. View the certificate:
+-->
+8. 查看证书：
+
+   ```shell
+   openssl x509  -noout -text -in ./server.crt
+   ```
+
+<!-- 
+Finally, add the same parameters into the API server start parameters.
+-->
+最后，为 API 服务器添加相同的启动参数。
+
+### cfssl
+
+<!-- 
+**cfssl** is another tool for certificate generation.
+-->
+**cfssl** 是另一个用于生成证书的工具。
+
+<!-- 
+1. Download, unpack and prepare the command line tools as shown below.
+
+   Note that you may need to adapt the sample commands based on the hardware
+   architecture and cfssl version you are using.
+-->
+1. 下载、解压并准备如下所示的命令行工具。
+
+   注意：你可能需要根据所用的硬件体系架构和 cfssl 版本调整示例命令。
+
+   ```shell
+   curl -L https://github.com/cloudflare/cfssl/releases/download/v1.5.0/cfssl_1.5.0_linux_amd64 -o cfssl
+   chmod +x cfssl
+   curl -L https://github.com/cloudflare/cfssl/releases/download/v1.5.0/cfssljson_1.5.0_linux_amd64 -o cfssljson
+   chmod +x cfssljson
+   curl -L https://github.com/cloudflare/cfssl/releases/download/v1.5.0/cfssl-certinfo_1.5.0_linux_amd64 -o cfssl-certinfo
+   chmod +x cfssl-certinfo
+   ```
+
+<!-- 
+1. Create a directory to hold the artifacts and initialize cfssl:
+-->
+2. 创建一个目录，用它保存所生成的构件和初始化 cfssl：
+
+   ```shell
+   mkdir cert
+   cd cert
+   ../cfssl print-defaults config > config.json
+   ../cfssl print-defaults csr > csr.json
+   ```
+
+<!-- 
+1. Create a JSON config file for generating the CA file, for example, `ca-config.json`:
+-->
+3. 创建一个 JSON 配置文件来生成 CA 文件，例如：`ca-config.json`：
+
+   ```json
+   {
+     "signing": {
+       "default": {
+         "expiry": "8760h"
+       },
+       "profiles": {
+         "kubernetes": {
+           "usages": [
+             "signing",
+             "key encipherment",
+             "server auth",
+             "client auth"
+           ],
+           "expiry": "8760h"
+         }
+       }
+     }
+   }
+   ```
+
+<!-- 
+1. Create a JSON config file for CA certificate signing request (CSR), for example,
+   `ca-csr.json`. Be sure to replace the values marked with angle brackets with
+   real values you want to use.
+-->
+4. 创建一个 JSON 配置文件，用于 CA 证书签名请求（CSR），例如：`ca-csr.json`。
+   确认用你需要的值替换掉尖括号中的值。
+
+   ```json
+   {
+     "CN": "kubernetes",
+     "key": {
+       "algo": "rsa",
+       "size": 2048
+     },
+     "names":[{
+       "C": "<country>",
+       "ST": "<state>",
+       "L": "<city>",
+       "O": "<organization>",
+       "OU": "<organization unit>"
+     }]
+   }
+   ```
+
+<!-- 
+1. Generate CA key (`ca-key.pem`) and certificate (`ca.pem`):
+-->
+5. 生成 CA 秘钥文件（`ca-key.pem`）和证书文件（`ca.pem`）：
+
+   ```shell
+   ../cfssl gencert -initca ca-csr.json | ../cfssljson -bare ca
+   ```
+
+<!-- 
+1. Create a JSON config file for generating keys and certificates for the API
+   server, for example, `server-csr.json`. Be sure to replace the values in angle brackets with
+   real values you want to use. The `<MASTER_CLUSTER_IP>` is the service cluster
+   IP for the API server as described in previous subsection.
+   The sample below also assumes that you are using `cluster.local` as the default
+   DNS domain name.
+-->
+6. 创建一个 JSON 配置文件，用来为 API 服务器生成秘钥和证书，例如：`server-csr.json`。
+   确认用你需要的值替换掉尖括号中的值。`MASTER_CLUSTER_IP` 是为 API 服务器 指定的服务集群 IP，就像前面小节描述的那样。
+   以下示例假定你的默认 DNS 域名为`cluster.local`。
+
+   ```json
+   {
+     "CN": "kubernetes",
+     "hosts": [
+       "127.0.0.1",
+       "<MASTER_IP>",
+       "<MASTER_CLUSTER_IP>",
+       "kubernetes",
+       "kubernetes.default",
+       "kubernetes.default.svc",
+       "kubernetes.default.svc.cluster",
+       "kubernetes.default.svc.cluster.local"
+     ],
+     "key": {
+       "algo": "rsa",
+       "size": 2048
+     },
+     "names": [{
+       "C": "<country>",
+       "ST": "<state>",
+       "L": "<city>",
+       "O": "<organization>",
+       "OU": "<organization unit>"
+     }]
+   }
+   ```
+
+<!-- 
+1. Generate the key and certificate for the API server, which are by default
+   saved into file `server-key.pem` and `server.pem` respectively:
+-->
+7. 为 API 服务器生成秘钥和证书，默认会分别存储为`server-key.pem` 和 `server.pem` 两个文件。
+
+   ```shell
+   ../cfssl gencert -ca=ca.pem -ca-key=ca-key.pem \
+        --config=ca-config.json -profile=kubernetes \
+        server-csr.json | ../cfssljson -bare server
+   ```
+
+<!-- 
+## Distributing Self-Signed CA Certificate
+-->
+## 分发自签名的 CA 证书   {#distributing-self-signed-ca-certificate}
+
+<!-- 
+A client node may refuse to recognize a self-signed CA certificate as valid.
+For a non-production deployment, or for a deployment that runs behind a company
+firewall, you can distribute a self-signed CA certificate to all clients and
+refresh the local list for valid certificates.
+
+On each client, perform the following operations:
+-->
+客户端节点可能不认可自签名 CA 证书的有效性。
+对于非生产环境，或者运行在公司防火墙后的环境，你可以分发自签名的 CA 证书到所有客户节点，并刷新本地列表以使证书生效。
+
+在每一个客户节点，执行以下操作：
+
+```shell
+sudo cp ca.crt /usr/local/share/ca-certificates/kubernetes.crt
+sudo update-ca-certificates
+```
+
+```none
+Updating certificates in /etc/ssl/certs...
+1 added, 0 removed; done.
+Running hooks in /etc/ca-certificates/update.d....
+done.
+```
+
+<!-- 
+## Certificates API
+-->
+## 证书 API   {#certificates-api}
+
+<!-- 
+You can use the `certificates.k8s.io` API to provision
+x509 certificates to use for authentication as documented
+in the [Managing TLS in a cluster](/docs/tasks/tls/managing-tls-in-a-cluster)
+task page.
+-->
+你可以通过 `certificates.k8s.io` API 提供 x509 证书，用来做身份验证，
+如[管理集群中的 TLS 认证](/zh-cn/docs/tasks/tls/managing-tls-in-a-cluster)文档所述。
+
diff --git a/content/zh/docs/tasks/administer-cluster/change-default-storage-class.md b/content/zh-cn/docs/tasks/administer-cluster/change-default-storage-class.md
similarity index 96%
rename from content/zh/docs/tasks/administer-cluster/change-default-storage-class.md
rename to content/zh-cn/docs/tasks/administer-cluster/change-default-storage-class.md
index ca4efbb7e2..fea5db84f5 100644
--- a/content/zh/docs/tasks/administer-cluster/change-default-storage-class.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/change-default-storage-class.md
@@ -31,7 +31,7 @@ for details.
 取决于安装模式，你的 Kubernetes 集群可能和一个被标记为默认的已有 StorageClass 一起部署。
 这个默认的 StorageClass 以后将被用于动态的为没有特定存储类需求的 PersistentVolumeClaims 
 配置存储。更多细节请查看
-[PersistentVolumeClaim 文档](/zh/docs/concepts/storage/persistent-volumes/#perspersistentvolumeclaims)。
+[PersistentVolumeClaim 文档](/zh-cn/docs/concepts/storage/persistent-volumes/#perspersistentvolumeclaims)。
 
 <!--
 The pre-installed default StorageClass may not fit well with your expected workload;
@@ -150,5 +150,5 @@ for details about addon manager and how to disable individual addons.
 <!--
 * Learn more about [PersistentVolumes](/docs/concepts/storage/persistent-volumes/).
 -->
-* 进一步了解 [PersistentVolumes](/zh/docs/concepts/storage/persistent-volumes/)
+* 进一步了解 [PersistentVolumes](/zh-cn/docs/concepts/storage/persistent-volumes/)
 
diff --git a/content/zh/docs/tasks/administer-cluster/change-pv-reclaim-policy.md b/content/zh-cn/docs/tasks/administer-cluster/change-pv-reclaim-policy.md
similarity index 74%
rename from content/zh/docs/tasks/administer-cluster/change-pv-reclaim-policy.md
rename to content/zh-cn/docs/tasks/administer-cluster/change-pv-reclaim-policy.md
index 950e493f52..65bade8e8e 100644
--- a/content/zh/docs/tasks/administer-cluster/change-pv-reclaim-policy.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/change-pv-reclaim-policy.md
@@ -54,13 +54,16 @@ PersistentVolumes 可以有多种回收策略，包括 "Retain"、"Recycle" 和
    kubectl get pv
    ```
 
+   <!--
+   The output is similar to this:
+   -->
    输出类似于这样：
 
-   ```
-   NAME                                       CAPACITY   ACCESSMODES   RECLAIMPOLICY   STATUS    CLAIM                  REASON    AGE
-   pvc-b6efd8da-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim1                   10s
-   pvc-b95650f8-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim2                   6s
-   pvc-bb3ca71d-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim3                   3s
+   ```none
+   NAME                                       CAPACITY   ACCESSMODES   RECLAIMPOLICY   STATUS    CLAIM             STORAGECLASS     REASON    AGE
+   pvc-b6efd8da-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim1    manual                     10s
+   pvc-b95650f8-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim2    manual                     6s
+   pvc-bb3ca71d-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim3    manual                     3s
    ```
 
    <!--
@@ -112,11 +115,11 @@ PersistentVolumes 可以有多种回收策略，包括 "Retain"、"Recycle" 和
    -->
    输出类似于这样：
 
-   ```
-   NAME                                       CAPACITY   ACCESSMODES   RECLAIMPOLICY   STATUS    CLAIM                  REASON    AGE
-   pvc-b6efd8da-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim1                   40s
-   pvc-b95650f8-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim2                   36s
-   pvc-bb3ca71d-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Retain          Bound     default/claim3                   33s
+   ```none
+   NAME                                       CAPACITY   ACCESSMODES   RECLAIMPOLICY   STATUS    CLAIM             STORAGECLASS     REASON    AGE
+   pvc-b6efd8da-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim1    manual                     40s
+   pvc-b95650f8-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Delete          Bound     default/claim2    manual                     36s
+   pvc-bb3ca71d-b7b5-11e6-9d58-0ed433a7dd94   4Gi        RWO           Retain          Bound     default/claim3    manual                     33s
    ```
 
    <!--
@@ -133,12 +136,20 @@ PersistentVolumes 可以有多种回收策略，包括 "Retain"、"Recycle" 和
 * Learn more about [PersistentVolumes](/docs/concepts/storage/persistent-volumes/).
 * Learn more about [PersistentVolumeClaims](/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims).
 -->
-* 进一步了解 [PersistentVolumes](/zh/docs/concepts/storage/persistent-volumes/)
-* 进一步了解 [PersistentVolumeClaims](/zh/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims)
+* 进一步了解 [PersistentVolumes](/zh-cn/docs/concepts/storage/persistent-volumes/)
+* 进一步了解 [PersistentVolumeClaims](/zh-cn/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims)
 
-### 参考
+### 参考 {#reference}
 
-* [PersistentVolume](/docs/api-reference/{{< param "version" >}}/#persistentvolume-v1-core)
-* [PersistentVolumeClaim](/docs/api-reference/{{< param "version" >}}/#persistentvolumeclaim-v1-core)
-* 参阅 [PersistentVolumeSpec](/docs/api-reference/{{< param "version" >}}/#persistentvolumeclaim-v1-core) 的 `persistentVolumeReclaimPolicy` 字段
+<!--
+* {{< api-reference page="config-and-storage-resources/persistent-volume-v1" >}}
+  * Pay attention to the `.spec.persistentVolumeReclaimPolicy`
+    [field](/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-v1/#PersistentVolumeSpec)
+    of PersistentVolume.
+* {{< api-reference page="config-and-storage-resources/persistent-volume-claim-v1" >}}
+-->
+* {{< api-reference page="config-and-storage-resources/persistent-volume-v1" >}}
+  * 注意 PersistentVolume 的 `.spec.persistentVolumeReclaimPolicy`
+    [字段](/docs/reference/kubernetes-api/config-and-storage-resources/persistent-volume-v1/#PersistentVolumeSpec)。
+* {{< api-reference page="config-and-storage-resources/persistent-volume-claim-v1" >}}
 
diff --git a/content/zh/docs/tasks/administer-cluster/cluster-upgrade.md b/content/zh-cn/docs/tasks/administer-cluster/cluster-upgrade.md
similarity index 80%
rename from content/zh/docs/tasks/administer-cluster/cluster-upgrade.md
rename to content/zh-cn/docs/tasks/administer-cluster/cluster-upgrade.md
index 72535b27e8..c4cceb6f9a 100644
--- a/content/zh/docs/tasks/administer-cluster/cluster-upgrade.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/cluster-upgrade.md
@@ -41,14 +41,14 @@ At a high level, the steps you perform are:
 
 <!-- 
 You must have an existing cluster. This page is about upgrading from Kubernetes
-{{< skew prevMinorVersion >}} to Kubernetes {{< skew latestVersion >}}. If your cluster
-is not currently running Kubernetes {{< skew prevMinorVersion >}} then please check
+{{< skew currentVersionAddMinor -1 >}} to Kubernetes {{< skew currentVersion >}}. If your cluster
+is not currently running Kubernetes {{< skew currentVersionAddMinor -1 >}} then please check
 the documentation for the version of Kubernetes that you plan to upgrade to.
 -->
 你必须有一个集群。
-本页内容涉及从 Kubernetes {{< skew prevMinorVersion >}} 
-升级到 Kubernetes {{< skew latestVersion >}}。
-如果你的集群未运行 Kubernetes {{< skew prevMinorVersion >}}，
+本页内容涉及从 Kubernetes {{< skew currentVersionAddMinor -1 >}} 
+升级到 Kubernetes {{< skew currentVersion >}}。
+如果你的集群未运行 Kubernetes {{< skew currentVersionAddMinor -1 >}}，
 那请参考目标 Kubernetes 版本的文档。
 
 <!-- ## Upgrade approaches -->
@@ -65,11 +65,11 @@ Once you have upgraded the cluster, remember to
 [install the latest version of `kubectl`](/docs/tasks/tools/).
 -->
 如果你的集群是使用 `kubeadm` 安装工具部署而来，
-那么升级群集的详细信息，请参阅
-[升级 kubeadm 集群](/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)。
+那么升级集群的详细信息，请参阅
+[升级 kubeadm 集群](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)。
 
 升级集群之后，要记得
-[安装最新版本的 `kubectl`](/zh/docs/tasks/tools/).
+[安装最新版本的 `kubectl`](/zh-cn/docs/tasks/tools/).
 
 <!-- ### Manual deployments -->
 ### 手动部署 {#manual-deployments}
@@ -97,23 +97,23 @@ You should manually update the control plane following this sequence:
 - kube-apiserver (所有控制平面的宿主机)
 - kube-controller-manager
 - kube-scheduler
-- cloud controller manager, 在你用到时
+- cloud controller manager (在你用到时)
 
 <!-- 
 At this point you should
 [install the latest version of `kubectl`](/docs/tasks/tools/).
 
 For each node in your cluster, [drain](/docs/tasks/administer-cluster/safely-drain-node/)
-that node and then either replace it with a new node that uses the {{< skew latestVersion >}}
-kubelet, or upgrade the {{< skew latestVersion >}}
+that node and then either replace it with a new node that uses the {{< skew currentVersion >}}
+kubelet, or upgrade the {{< skew currentVersion >}}
 kubelet on that node and bring the node back into service.
 -->
 现在，你应该
-[安装最新版本的 `kubectl`](/zh/docs/tasks/tools/).
+[安装最新版本的 `kubectl`](/zh-cn/docs/tasks/tools/).
 
-对于群集中的每个节点，
-[排空](/zh/docs/tasks/administer-cluster/safely-drain-node/)
-节点，然后，或者用一个运行了 {{< skew latestVersion >}} kubelet 的新节点替换它；
+对于集群中的每个节点，
+首先需要[腾空](/zh-cn/docs/tasks/administer-cluster/safely-drain-node/)
+节点，然后使用一个运行了 kubelet {{< skew currentVersion >}} 版本的新节点替换它；
 或者升级此节点的 kubelet，并使节点恢复服务。
 
 <!-- 
@@ -132,7 +132,7 @@ up steps for maintenance.
 
 ## 升级后的任务 {#post-upgrade-tasks}
 
-### 切换群集的存储 API 版本 {#switch-your-clusters-storage-api-version}
+### 切换集群的存储 API 版本 {#switch-your-clusters-storage-api-version}
 
 <!-- 
 The objects that are serialized into etcd for a cluster's internal
@@ -152,7 +152,7 @@ write it back also using the latest supported API.
 当底层的 API 更改时，这些对象可能需要用新 API 重写。
 如果不能做到这一点，会导致再也不能用 Kubernetes API 服务器解码、使用该对象。
 
-对于每个受影响的对象，用最新支持的 API 获取它，然后再用最新支持的 API 写回来。
+对于每个受影响的对象，请使用最新支持的 API 读取它，然后使用所支持的最新 API 将其写回。
 
 <!-- 
 ### Update manifests
@@ -164,7 +164,7 @@ For example:
 -->
 ### 更新清单 {#update-manifests}
 
-升级到新版本 Kubernetes 就可以提供新的 API。
+升级到新版本 Kubernetes 就可以获取到新的 API。
 
 你可以使用 `kubectl convert` 命令在不同 API 版本之间转换清单。
 例如：
diff --git a/content/zh/docs/tasks/administer-cluster/configure-upgrade-etcd.md b/content/zh-cn/docs/tasks/administer-cluster/configure-upgrade-etcd.md
similarity index 82%
rename from content/zh/docs/tasks/administer-cluster/configure-upgrade-etcd.md
rename to content/zh-cn/docs/tasks/administer-cluster/configure-upgrade-etcd.md
index c64815d38b..eea23e7df1 100644
--- a/content/zh/docs/tasks/administer-cluster/configure-upgrade-etcd.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/configure-upgrade-etcd.md
@@ -1,18 +1,13 @@
 ---
-reviewers:
-- mml
-- wojtek-t
 title: 为 Kubernetes 运行 etcd 集群
 content_type: task
 ---
 <!--
----
 reviewers:
 - mml
 - wojtek-t
 title: Operating etcd clusters for Kubernetes
 content_type: task
----
 -->
 
 <!-- overview -->
@@ -22,8 +17,6 @@ content_type: task
 
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
-
-
 <!-- steps -->
 
 <!--
@@ -49,14 +42,14 @@ content_type: task
 
 * The minimum recommended version of etcd to run in production is `3.2.10+`.
 -->
-## 先决条件
+## 先决条件    {#prerequisites}
 
 * 运行的 etcd 集群个数成员为奇数。
 
 * etcd 是一个 leader-based 分布式系统。确保主节点定期向所有从节点发送心跳，以保持集群稳定。
 
 * 确保不发生资源不足。
-  
+
   集群的性能和稳定性对网络和磁盘 I/O 非常敏感。任何资源匮乏都会导致心跳超时，
   从而导致集群的不稳定。不稳定的情况表明没有选出任何主节点。
   在这种情况下，集群不能对其当前状态进行任何更改，这意味着不能调度新的 pod。
@@ -66,7 +59,7 @@ content_type: task
   [所需资源需求](https://etcd.io/docs/current/op-guide/hardware/)。
 
 * 在生产中运行的 etcd 的最低推荐版本是 `3.2.10+`。
-  
+
 <!--
 ## Resource requirements
 
@@ -74,18 +67,18 @@ Operating etcd with limited resources is suitable only for testing purposes.
 For deploying in production, advanced hardware configuration is required.
 Before deploying etcd in production, see
 [resource requirement reference](https://etcd.io/docs/current/op-guide/hardware/#example-hardware-configurations).
-
-## Starting etcd clusters
-
-This section covers starting a single-node and multi-node etcd cluster. 
 -->
-## 资源要求
+## 资源需求    {#resource-requirements}
 
 使用有限的资源运行 etcd 只适合测试目的。为了在生产中部署，需要先进的硬件配置。
-在生产中部署 etcd 之前，请查看
-[所需资源参考文档](https://etcd.io/docs/current/op-guide/hardware/#example-hardware-configurations)。
+在生产中部署 etcd 之前，请查看[所需资源参考文档](https://etcd.io/docs/current/op-guide/hardware/#example-hardware-configurations)。
 
-## 启动 etcd 集群
+<!--
+## Starting etcd clusters
+
+This section covers starting a single-node and multi-node etcd cluster.
+-->
+## 启动 etcd 集群    {#starting-etcd-clusters}
 
 本节介绍如何启动单节点和多节点 etcd 集群。
 
@@ -104,9 +97,9 @@ Use a single-node etcd cluster only for testing purpose.
 2. Start the Kubernetes API server with the flag
    `--etcd-servers=$PRIVATE_IP:2379`.
 
-    Make sure `PRIVATE_IP` is set to your etcd client IP.
+   Make sure `PRIVATE_IP` is set to your etcd client IP.
 -->
-### 单节点 etcd 集群
+### 单节点 etcd 集群    {#single-node-etcd-cluster}
 
 只为测试目的使用单节点 etcd 集群。
 
@@ -123,20 +116,38 @@ Use a single-node etcd cluster only for testing purpose.
 
 <!--
 ### Multi-node etcd cluster
+-->
+### 多节点 etcd 集群    {#multi-node-etcd-cluster}
 
+<!--
 For durability and high availability, run etcd as a multi-node cluster in
 production and back it up periodically. A five-member cluster is recommended
 in production. For more information, see
 [FAQ documentation](https://etcd.io/docs/current/faq/#what-is-failure-tolerance).
+-->
+出于耐用性和高可用性考量，在生产环境中应以多节点集群的方式运行 etcd，并且定期备份。
+建议在生产环境中使用五个成员的集群。
+有关该内容的更多信息，请参阅[常见问题文档](https://etcd.io/docs/current/faq/#what-is-failure-tolerance)。
 
+<!--
 Configure an etcd cluster either by static member information or by dynamic
 discovery. For more information on clustering, see
 [etcd clustering documentation](https://etcd.io/docs/current/op-guide/clustering/).
+-->
+可以通过静态成员信息或动态发现的方式配置 etcd 集群。
+有关集群的详细信息，请参阅
+[etcd 集群文档](https://etcd.io/docs/current/op-guide/clustering/)。
 
+<!--
 For an example, consider a five-member etcd cluster running with the following
 client URLs: `http://$IP1:2379`, `http://$IP2:2379`, `http://$IP3:2379`,
 `http://$IP4:2379`, and `http://$IP5:2379`. To start a Kubernetes API server:
+-->
+例如，考虑运行以下客户端 URL 的五个成员的 etcd 集群：`http://$IP1:2379`、
+`http://$IP2:2379`、`http://$IP3:2379`、`http://$IP4:2379` 和 `http://$IP5:2379`。
+要启动 Kubernetes API 服务器：
 
+<!--
 1. Run the following:
 
    ```shell
@@ -148,28 +159,13 @@ client URLs: `http://$IP1:2379`, `http://$IP2:2379`, `http://$IP3:2379`,
 
    Make sure the `IP<n>` variables are set to your client IP addresses.
 -->
-### 多节点 etcd 集群
-
-为了耐用性和高可用性，在生产中将以多节点集群的方式运行 etcd，并且定期备份。
-建议在生产中使用五个成员的集群。
-有关该内容的更多信息，请参阅
-[常见问题文档](https://etcd.io/docs/current/faq/#what-is-failure-tolerance)。
-
-可以通过静态成员信息或动态发现的方式配置 etcd 集群。
-有关集群的详细信息，请参阅 
-[etcd 集群文档](https://etcd.io/docs/current/op-guide/clustering/)。
-
-例如，考虑运行以下客户端 URL 的五个成员的 etcd 集群：`http://$IP1:2379`，
-`http://$IP2:2379`，`http://$IP3:2379`，`http://$IP4:2379` 和 `http://$IP5:2379`。
-要启动 Kubernetes API 服务器：
-
 1. 运行以下命令：
 
    ```shell
    etcd --listen-client-urls=http://$IP1:2379,http://$IP2:2379,http://$IP3:2379,http://$IP4:2379,http://$IP5:2379 --advertise-client-urls=http://$IP1:2379,http://$IP2:2379,http://$IP3:2379,http://$IP4:2379,http://$IP5:2379
    ```
 
-2. 使用参数 `--etcd-servers=$IP1:2379,$IP2:2379,$IP3:2379,$IP4:2379,$IP5:2379` 
+2. 使用参数 `--etcd-servers=$IP1:2379,$IP2:2379,$IP3:2379,$IP4:2379,$IP5:2379`
    启动 Kubernetes API 服务器。
 
    确保将 `IP<n>` 变量设置为客户端 IP 地址。
@@ -184,7 +180,7 @@ To run a load balancing etcd cluster:
    For example, let the address of the load balancer be `$LB`.
 3. Start Kubernetes API Servers with the flag `--etcd-servers=$LB:2379`.
 -->
-### 使用负载均衡的多节点 etcd 集群
+### 使用负载均衡的多节点 etcd 集群    {#multi-node-etcd-cluster-with-load-balancer}
 
 要运行负载均衡的 etcd 集群：
 
@@ -194,12 +190,19 @@ To run a load balancing etcd cluster:
 
 <!--
 ## Securing etcd clusters
+-->
+## 加固 etcd 集群    {#securing-etcd-clusters}
 
+<!--
 Access to etcd is equivalent to root permission in the cluster so ideally only
 the API server should have access to it. Considering the sensitivity of the
 data, it is recommended to grant permission to only those nodes that require
 access to etcd clusters.
+-->
+对 etcd 的访问相当于集群中的 root 权限，因此理想情况下只有 API 服务器才能访问它。
+考虑到数据的敏感性，建议只向需要访问 etcd 集群的节点授予权限。
 
+<!--
 To secure etcd, either set up firewall rules or use the security features
 provided by etcd. etcd security features depend on x509 Public Key
 Infrastructure (PKI). To begin, establish secure communication channels by
@@ -210,11 +213,6 @@ clients. See the [example scripts](https://github.com/coreos/etcd/tree/master/ha
 provided by the etcd project to generate key pairs and CA files for client
 authentication.
 -->
-## 安全的 etcd 集群
-
-对 etcd 的访问相当于集群中的 root 权限，因此理想情况下只有 API 服务器才能访问它。
-考虑到数据的敏感性，建议只向需要访问 etcd 集群的节点授予权限。
-
 想要确保 etcd 的安全，可以设置防火墙规则或使用 etcd 提供的安全特性，这些安全特性依赖于 x509 公钥基础设施（PKI）。
 首先，通过生成密钥和证书对来建立安全的通信通道。
 例如，使用密钥对 `peer.key` 和 `peer.cert` 来保护 etcd 成员之间的通信，
@@ -224,30 +222,24 @@ authentication.
 
 <!--
 ### Securing communication
+-->
+### 安全通信    {#securing-communication}
 
+<!--
 To configure etcd with secure peer communication, specify flags
 `--peer-key-file=peer.key` and `--peer-cert-file=peer.cert`, and use HTTPS as
 the URL schema.
+-->
+若要使用安全对等通信对 etcd 进行配置，请指定参数 `--peer-key-file=peer.key`
+和 `--peer-cert-file=peer.cert`，并使用 HTTPS 作为 URL 模式。
 
+<!--
 Similarly, to configure etcd with secure client communication, specify flags
 `--key-file=k8sclient.key` and `--cert-file=k8sclient.cert`, and use HTTPS as
 the URL schema. Here is an example on a client command that uses secure
 communication:
-
-```
-ETCDCTL_API=3 etcdctl --endpoints 10.2.0.9:2379 \
-  --cert=/etc/kubernetes/pki/etcd/server.crt \
-  --key=/etc/kubernetes/pki/etcd/server.key \
-  --cacert=/etc/kubernetes/pki/etcd/ca.crt \
-  member list
-```
 -->
-### 安全通信
-
-若要使用安全对等通信对 etcd 进行配置，请指定参数 `--peer-key-file=peer.key` 
-和 `--peer-cert-file=peer.cert`，并使用 HTTPS 作为 URL 模式。
-
-类似地，要使用安全客户端通信对 etcd 进行配置，请指定参数 `--key-file=k8sclient.key` 
+类似地，要使用安全客户端通信对 etcd 进行配置，请指定参数 `--key-file=k8sclient.key`
 和 `--cert-file=k8sclient.cert`，并使用 HTTPS 作为 URL 模式。
 使用安全通信的客户端命令的示例：
 
@@ -261,39 +253,44 @@ ETCDCTL_API=3 etcdctl --endpoints 10.2.0.9:2379 \
 
 <!--
 ### Limiting access of etcd clusters
+-->
+### 限制 etcd 集群的访问    {#limiting-access-of-etcd-clusters}
 
+<!--
 After configuring secure communication, restrict the access of etcd cluster to
 only the Kubernetes API servers. Use TLS authentication to do so.
+-->
+配置安全通信后，限制只有 Kubernetes API 服务器可以访问 etcd 集群。使用 TLS 身份验证来完成此任务。
 
+<!--
 For example, consider key pairs `k8sclient.key` and `k8sclient.cert` that are
 trusted by the CA `etcd.ca`. When etcd is configured with `--client-cert-auth`
 along with TLS, it verifies the certificates from clients by using system CAs
 or the CA passed in by `--trusted-ca-file` flag. Specifying flags
 `--client-cert-auth=true` and `--trusted-ca-file=etcd.ca` will restrict the
 access to clients with the certificate `k8sclient.cert`.
+-->
+例如，考虑由 CA `etcd.ca` 信任的密钥对 `k8sclient.key` 和 `k8sclient.cert`。
+当 etcd 配置为 `--client-cert-auth` 和 TLS 时，它使用系统 CA 或由 `--trusted-ca-file`
+参数传入的 CA 验证来自客户端的证书。指定参数 `--client-cert-auth=true` 和
+`--trusted-ca-file=etcd.ca` 将限制对具有证书 `k8sclient.cert` 的客户端的访问。
 
+<!--
 Once etcd is configured correctly, only clients with valid certificates can
 access it. To give Kubernetes API servers the access, configure them with the
-flags `--etcd-certfile=k8sclient.cert`,`--etcd-keyfile=k8sclient.key` and
+flags `--etcd-certfile=k8sclient.cert`, `--etcd-keyfile=k8sclient.key` and
 `--etcd-cafile=ca.cert`.
+-->
+一旦正确配置了 etcd，只有具有有效证书的客户端才能访问它。要让 Kubernetes API 服务器访问，
+可以使用参数 `--etcd-certfile=k8sclient.cert`、`--etcd-keyfile=k8sclient.key` 和 `--etcd-cafile=ca.cert` 配置。
 
+<!--
 {{< note >}}
 etcd authentication is not currently supported by Kubernetes. For more
 information, see the related issue
 [Support Basic Auth for Etcd v2](https://github.com/kubernetes/kubernetes/issues/23398).
 {{< /note >}}
 -->
-### 限制 etcd 集群的访问
-
-配置安全通信后，将 etcd 集群的访问限制在 Kubernetes API 服务器上。使用 TLS 身份验证来完成此任务。
-
-例如，考虑由 CA `etcd.ca` 信任的密钥对 `k8sclient.key` 和 `k8sclient.cert`。
-当 etcd 配置为 `--client-cert-auth` 和 TLS 时，它使用系统 CA 或由 `--trusted-ca-file` 参数传入的 CA 验证来自客户端的证书。
-指定参数 `--client-cert-auth=true` 和 `--trusted-ca-file=etcd.ca` 将限制对具有证书 `k8sclient.cert` 的客户端的访问。
-
-一旦正确配置了 etcd，只有具有有效证书的客户端才能访问它。要让 Kubernetes API 服务器访问，
-可以使用参数 `--etcd-certfile=k8sclient.cert`,`--etcd-keyfile=k8sclient.key` 和 `--etcd-cafile=ca.cert` 配置。
-
 {{< note >}}
 Kubernetes 目前不支持 etcd 身份验证。
 想要了解更多信息，请参阅相关的问题
@@ -302,93 +299,43 @@ Kubernetes 目前不支持 etcd 身份验证。
 
 <!--
 ## Replacing a failed etcd member
+-->
+## 替换失败的 etcd 成员    {#replacing-a-failed-etcd-member}
 
+<!--
 etcd cluster achieves high availability by tolerating minor member failures.
 However, to improve the overall health of the cluster, replace failed members
 immediately. When multiple members fail, replace them one by one. Replacing a
 failed member involves two steps: removing the failed member and adding a new
 member.
+-->
+etcd 集群通过容忍少数成员故障实现高可用性。
+但是，要改善集群的整体健康状况，请立即替换失败的成员。当多个成员失败时，逐个替换它们。
+替换失败成员需要两个步骤：删除失败成员和添加新成员。
 
+<!--
 Though etcd keeps unique member IDs internally, it is recommended to use a
 unique name for each member to avoid human errors. For example, consider a
 three-member etcd cluster. Let the URLs be, `member1=http://10.0.0.1`,
 `member2=http://10.0.0.2`, and `member3=http://10.0.0.3`. When `member1` fails,
 replace it with `member4=http://10.0.0.4`.
-
-1. Get the member ID of the failed `member1`:
-
-   ```shell
-   etcdctl --endpoints=http://10.0.0.2,http://10.0.0.3 member list
-   ```
-
-   The following message is displayed:
-
-   ```console
-   8211f1d0f64f3269, started, member1, http://10.0.0.1:2380, http://10.0.0.1:2379
-   91bc3c398fb3c146, started, member2, http://10.0.0.2:2380, http://10.0.0.2:2379
-   fd422379fda50e48, started, member3, http://10.0.0.3:2380, http://10.0.0.3:2379
-   ```
-
-2. Remove the failed member:
-
-   ```shell
-   etcdctl member remove 8211f1d0f64f3269
-   ```
-
-   The following message is displayed:
-
-   ```console
-   Removed member 8211f1d0f64f3269 from cluster
-   ```
-
-3. Add the new member:
-
-   ```shell
-   etcdctl member add member4 --peer-urls=http://10.0.0.4:2380
-   ```
-
-   The following message is displayed:
-
-   ```console
-   Member 2be1eb8f84b7f63e added to cluster ef37ad9dc622a7c4
-   ```
-
-4. Start the newly added member on a machine with the IP `10.0.0.4`:
-
-   ```shell
-   export ETCD_NAME="member4"
-   export ETCD_INITIAL_CLUSTER="member2=http://10.0.0.2:2380,member3=http://10.0.0.3:2380,member4=http://10.0.0.4:2380"
-   export ETCD_INITIAL_CLUSTER_STATE=existing
-   etcd [flags]
-   ```
-
-5. Do either of the following:
-
-   1. Update the `--etcd-servers` flag for the Kubernetes API servers to make
-      Kubernetes aware of the configuration changes, then restart the
-      Kubernetes API servers.
-   2. Update the load balancer configuration if a load balancer is used in the
-      deployment.
-
-For more information on cluster reconfiguration, see
-[etcd reconfiguration documentation](https://etcd.io/docs/current/op-guide/runtime-configuration/#remove-a-member).
 -->
-## 替换失败的 etcd 成员
-
-etcd 集群通过容忍少数成员故障实现高可用性。
-但是，要改善集群的整体健康状况，请立即替换失败的成员。当多个成员失败时，逐个替换它们。
-替换失败成员需要两个步骤：删除失败成员和添加新成员。
-
 虽然 etcd 在内部保留唯一的成员 ID，但建议为每个成员使用唯一的名称，以避免人为错误。
-例如，考虑一个三成员的 etcd 集群。让 URL 为：`member1=http://10.0.0.1`， `member2=http://10.0.0.2` 
+例如，考虑一个三成员的 etcd 集群。假定 URL 分别为：`member1=http://10.0.0.1`、`member2=http://10.0.0.2`
 和 `member3=http://10.0.0.3`。当 `member1` 失败时，将其替换为 `member4=http://10.0.0.4`。
 
+<!--
+1. Get the member ID of the failed `member1`:
+-->
 1. 获取失败的 `member1` 的成员 ID：
 
    ```shell
    etcdctl --endpoints=http://10.0.0.2,http://10.0.0.3 member list
    ```
 
+   <!--
+   The following message is displayed:
+   -->
    显示以下信息：
 
    ```console
@@ -397,30 +344,45 @@ etcd 集群通过容忍少数成员故障实现高可用性。
    fd422379fda50e48, started, member3, http://10.0.0.3:2380, http://10.0.0.3:2379
    ```
 
+<!--
+2. Remove the failed member:
+-->
 2. 移除失败的成员
 
    ```shell
    etcdctl member remove 8211f1d0f64f3269
    ```
 
+   <!--
+   The following message is displayed:
+   -->
    显示以下信息：
 
    ```console
    Removed member 8211f1d0f64f3269 from cluster
    ```
 
+<!--
+3. Add the new member:
+-->
 3. 增加新成员：
 
    ```shell
    etcdctl member add member4 --peer-urls=http://10.0.0.4:2380
    ```
 
+   <!--
+   The following message is displayed:
+   -->
    显示以下信息：
 
    ```console
    Member 2be1eb8f84b7f63e added to cluster ef37ad9dc622a7c4
    ```
 
+<!--
+4. Start the newly added member on a machine with the IP `10.0.0.4`:
+-->
 4. 在 IP 为 `10.0.0.4` 的机器上启动新增加的成员：
 
    ```shell
@@ -430,12 +392,27 @@ etcd 集群通过容忍少数成员故障实现高可用性。
    etcd [flags]
    ```
 
-5. 做以下事情之一：
+<!--
+5. Do either of the following:
 
-   1. 更新 Kubernetes API 服务器的 `--etcd-servers` 参数，使 Kubernetes 知道配置进行了更改，然后重新启动 Kubernetes API 服务器。
+   1. Update the `--etcd-servers` flag for the Kubernetes API servers to make
+      Kubernetes aware of the configuration changes, then restart the
+      Kubernetes API servers.
+   2. Update the load balancer configuration if a load balancer is used in the
+      deployment.
+-->
+5. 执行以下操作之一：
+
+   1. 更新 Kubernetes API 服务器的 `--etcd-servers` 参数，使 Kubernetes
+      知道配置已更改，然后重新启动 Kubernetes API 服务器。
    2. 如果在 deployment 中使用了负载均衡，更新负载均衡配置。
 
-有关集群重新配置的详细信息，请参阅 [etcd 重构文档](https://etcd.io/docs/current/op-guide/runtime-configuration/#remove-a-member)。
+<!--
+For more information on cluster reconfiguration, see
+[etcd reconfiguration documentation](https://etcd.io/docs/current/op-guide/runtime-configuration/#remove-a-member).
+-->
+有关集群重新配置的详细信息，请参阅
+[etcd 重构文档](https://etcd.io/docs/current/op-guide/runtime-configuration/#remove-a-member)。
 
 <!--
 ## Backing up an etcd cluster
@@ -449,7 +426,7 @@ sensitive Kubernetes data safe, encrypt the snapshot files.
 Backing up an etcd cluster can be accomplished in two ways: etcd built-in
 snapshot and volume snapshot.
 -->
-## 备份 etcd 集群
+## 备份 etcd 集群    {#backing-up-an-etcd-cluster}
 
 所有 Kubernetes 对象都存储在 etcd 上。定期备份 etcd 集群数据对于在灾难场景（例如丢失所有控制平面节点）下恢复 Kubernetes 集群非常重要。
 快照文件包含所有 Kubernetes 状态和关键信息。为了保证敏感的 Kubernetes 数据的安全，可以对快照文件进行加密。
@@ -458,47 +435,33 @@ snapshot and volume snapshot.
 
 <!--
 ### Built-in snapshot
+-->
+### 内置快照    {#built-in-snapshot}
 
+<!--
 etcd supports built-in snapshot. A snapshot may either be taken from a live
 member with the `etcdctl snapshot save` command or by copying the
 `member/snap/db` file from an etcd
 [data directory](https://etcd.io/docs/current/op-guide/configuration/#--data-dir)
 that is not currently used by an etcd process. Taking the snapshot will
 not affect the performance of the member.
-
-Below is an example for taking a snapshot of the keyspace served by
-`$ENDPOINT` to the file `snapshotdb`:
-
-```shell
-ETCDCTL_API=3 etcdctl --endpoints $ENDPOINT snapshot save snapshotdb
-```
-
-Verify the snapshot:
-
-```shell
-ETCDCTL_API=3 etcdctl --write-out=table snapshot status snapshotdb
-```
-
-```console
-+----------+----------+------------+------------+
-|   HASH   | REVISION | TOTAL KEYS | TOTAL SIZE |
-+----------+----------+------------+------------+
-| fe01cf57 |       10 |          7 | 2.1 MB     |
-+----------+----------+------------+------------+
-```
 -->
-### 内置快照
-
 etcd 支持内置快照。快照可以从使用 `etcdctl snapshot save` 命令的活动成员中获取，
 也可以通过从 etcd [数据目录](https://etcd.io/docs/current/op-guide/configuration/#--data-dir)
 复制 `member/snap/db` 文件，该 etcd 数据目录目前没有被 etcd 进程使用。获取快照不会影响成员的性能。
 
+<!--
+Below is an example for taking a snapshot of the keyspace served by
+`$ENDPOINT` to the file `snapshotdb`:
+-->
 下面是一个示例，用于获取 `$ENDPOINT` 所提供的键空间的快照到文件 `snapshotdb`：
 
 ```shell
 ETCDCTL_API=3 etcdctl --endpoints $ENDPOINT snapshot save snapshotdb
 ```
-
+<!--
+Verify the snapshot:
+-->
 验证快照:
 
 ```shell
@@ -515,94 +478,120 @@ ETCDCTL_API=3 etcdctl --write-out=table snapshot status snapshotdb
 
 <!--
 ### Volume snapshot
+-->
+### 卷快照    {#volume-snapshot}
 
+<!--
 If etcd is running on a storage volume that supports backup, such as Amazon
 Elastic Block Store, back up etcd data by taking a snapshot of the storage
 volume.
+-->
+如果 etcd 运行在支持备份的存储卷（如 Amazon Elastic Block
+存储）上，则可以通过获取存储卷的快照来备份 etcd 数据。
 
+<!--
 ### Snapshot using etcdctl options
+-->
+### 使用 etcdctl 选项的快照    {#snapshot-using-etcdctl-options}
 
+<!--
 We can also take the snapshot using various options given by etcdctl. For example 
+-->
+我们还可以使用 etcdctl 提供的各种选项来制作快照。例如：
 
 ```shell
 ETCDCTL_API=3 etcdctl -h 
-``` 
+```
 
+<!--
 will list various options available from etcdctl. For example, you can take a snapshot by specifying
 the endpoint, certificates etc as shown below:
+-->
+列出 etcdctl 可用的各种选项。例如，你可以通过指定端点、证书等来制作快照，如下所示：
 
 ```shell
 ETCDCTL_API=3 etcdctl --endpoints=https://127.0.0.1:2379 \
   --cacert=<trusted-ca-file> --cert=<cert-file> --key=<key-file> \
   snapshot save <backup-file-location>
 ```
+
+<!--
 where `trusted-ca-file`, `cert-file` and `key-file` can be obtained from the description of the etcd Pod.
+-->
+可以从 etcd Pod 的描述中获得 `trusted-ca-file`、`cert-file` 和 `key-file`。
 
+<!--
 ## Scaling up etcd clusters
+-->
+## 为 etcd 集群扩容    {#scaling-up-etcd-clusters}
 
+<!--
 Scaling up etcd clusters increases availability by trading off performance.
 Scaling does not increase cluster performance nor capability. A general rule
 is not to scale up or down etcd clusters. Do not configure any auto scaling
 groups for etcd clusters. It is highly recommended to always run a static
 five-member etcd cluster for production Kubernetes clusters at any officially
 supported scale.
+-->
+通过交换性能，对 etcd 集群扩容可以提高可用性。缩放不会提高集群性能和能力。
+一般情况下不要扩大或缩小 etcd 集群的集合。不要为 etcd 集群配置任何自动缩放组。
+强烈建议始终在任何官方支持的规模上运行生产 Kubernetes 集群时使用静态的五成员 etcd 集群。
 
+<!--
 A reasonable scaling is to upgrade a three-member cluster to a five-member
 one, when more reliability is desired. See
 [etcd reconfiguration documentation](https://etcd.io/docs/current/op-guide/runtime-configuration/#remove-a-member)
 for information on how to add members into an existing cluster.
 -->
-### 卷快照
-
-如果 etcd 运行在支持备份的存储卷（如 Amazon Elastic Block 存储）上，则可以通过获取存储卷的快照来备份 etcd 数据。
-
-### 使用 etcdctl 选项的快照
-
-我们还可以使用 etcdctl 提供的各种选项来拍摄快照。例如：
-
-```shell
-ETCDCTL_API=3 etcdctl -h 
-``` 
-
-列出 etcdctl 可用的各种选项。例如，你可以通过指定端点，证书等来拍摄快照，如下所示：
-
-```shell
-ETCDCTL_API=3 etcdctl --endpoints=https://127.0.0.1:2379 \
-  --cacert=<trusted-ca-file> --cert=<cert-file> --key=<key-file> \
-  snapshot save <backup-file-location>
-```
-可以从 etcd Pod 的描述中获得 `trusted-ca-file`, `cert-file` 和 `key-file` 。
-
-## 扩展 etcd 集群
-
-通过交换性能，扩展 etcd 集群可以提高可用性。缩放不会提高集群性能和能力。
-一般情况下不要扩大或缩小 etcd 集群的集合。不要为 etcd 集群配置任何自动缩放组。
-强烈建议始终在任何官方支持的规模上运行生产 Kubernetes 集群时使用静态的五成员 etcd 集群。
-
 合理的扩展是在需要更高可靠性的情况下，将三成员集群升级为五成员集群。
 请参阅 [etcd 重新配置文档](https://etcd.io/docs/current/op-guide/runtime-configuration/#remove-a-member)
 以了解如何将成员添加到现有集群中的信息。
 
 <!--
 ## Restoring an etcd cluster
+-->
+## 恢复 etcd 集群    {#restoring-an-etcd-cluster}
 
+<!--
 etcd supports restoring from snapshots that are taken from an etcd process of
 the [major.minor](http://semver.org/) version. Restoring a version from a
 different patch version of etcd also is supported. A restore operation is
 employed to recover the data of a failed cluster.
+-->
+etcd 支持从 [major.minor](http://semver.org/) 或其他不同 patch 版本的 etcd 进程中获取的快照进行恢复。
+还原操作用于恢复失败的集群的数据。
 
+<!--
 Before starting the restore operation, a snapshot file must be present. It can
 either be a snapshot file from a previous backup operation, or from a remaining
-[data directory]( https://etcd.io/docs/current/op-guide/configuration/#--data-dir).
+[data directory](https://etcd.io/docs/current/op-guide/configuration/#--data-dir).
 Here is an example:
+-->
+在启动还原操作之前，必须有一个快照文件。它可以是来自以前备份操作的快照文件，
+也可以是来自剩余[数据目录](https://etcd.io/docs/current/op-guide/configuration/#--data-dir)的快照文件。
+例如：
 
 ```shell
 ETCDCTL_API=3 etcdctl --endpoints 10.2.0.9:2379 snapshot restore snapshotdb
 ```
 
+<!--
+Another example for restoring using etcdctl options:
+-->
+恢复时也可以指定操作选项，例如：
+
+```shell
+ETCDCTL_API=3 etcdctl --data-dir <data-dir-location> snapshot restore snapshotdb
+```
+
+<!--
 For more information and examples on restoring a cluster from a snapshot file, see
 [etcd disaster recovery documentation](https://etcd.io/docs/current/op-guide/recovery/#restoring-a-cluster).
+-->
+有关从快照文件还原集群的详细信息和示例，请参阅
+[etcd 灾难恢复文档](https://etcd.io/docs/current/op-guide/recovery/#restoring-a-cluster)。
 
+<!--
 If the access URLs of the restored cluster is changed from the previous
 cluster, the Kubernetes API server must be reconfigured accordingly. In this
 case, restart Kubernetes API servers with the flag
@@ -611,13 +600,22 @@ case, restart Kubernetes API servers with the flag
 `$OLD_ETCD_CLUSTER` with the respective IP addresses. If a load balancer is
 used in front of an etcd cluster, you might need to update the load balancer
 instead.
+-->
+如果还原的集群的访问 URL 与前一个集群不同，则必须相应地重新配置 Kubernetes API 服务器。
+在本例中，使用参数 `--etcd-servers=$NEW_ETCD_CLUSTER` 而不是参数 `--etcd-servers=$OLD_ETCD_CLUSTER` 重新启动 Kubernetes API 服务器。
+用相应的 IP 地址替换 `$NEW_ETCD_CLUSTER` 和 `$OLD_ETCD_CLUSTER`。如果在 etcd 集群前面使用负载平衡，则可能需要更新负载均衡器。
 
+<!--
 If the majority of etcd members have permanently failed, the etcd cluster is
 considered failed. In this scenario, Kubernetes cannot make any changes to its
 current state. Although the scheduled pods might continue to run, no new pods
 can be scheduled. In such cases, recover the etcd cluster and potentially
 reconfigure Kubernetes API servers to fix the issue.
+-->
+如果大多数 etcd 成员永久失败，则认为 etcd 集群失败。在这种情况下，Kubernetes 不能对其当前状态进行任何更改。
+虽然已调度的 pod 可能继续运行，但新的 pod 无法调度。在这种情况下，恢复 etcd 集群并可能需要重新配置 Kubernetes API 服务器以修复问题。
 
+<!--
 {{< note >}}
 If any API servers are running in your cluster, you should not attempt to
 restore instances of etcd. Instead, follow these steps to restore etcd:
@@ -632,37 +630,34 @@ stale data. Note that in practice, the restore takes a bit of time.  During the
 restoration, critical components will lose leader lock and restart themselves.
 {{< /note >}}
 -->
-## 恢复 etcd 集群
-
-etcd 支持从 [major.minor](http://semver.org/) 或其他不同 patch 版本的 etcd 进程中获取的快照进行恢复。
-还原操作用于恢复失败的集群的数据。
-
-在启动还原操作之前，必须有一个快照文件。它可以是来自以前备份操作的快照文件，
-也可以是来自剩余[数据目录]( https://etcd.io/docs/current/op-guide/configuration/#--data-dir)的快照文件。
-例如：
-
-```shell
-ETCDCTL_API=3 etcdctl --endpoints 10.2.0.9:2379 snapshot restore snapshotdb
-```
-
-有关从快照文件还原集群的详细信息和示例，请参阅 
-[etcd 灾难恢复文档](https://etcd.io/docs/current/op-guide/recovery/#restoring-a-cluster)。
-
-如果还原的集群的访问 URL 与前一个集群不同，则必须相应地重新配置 Kubernetes API 服务器。
-在本例中，使用参数 `--etcd-servers=$NEW_ETCD_CLUSTER` 而不是参数 `--etcd-servers=$OLD_ETCD_CLUSTER` 重新启动 Kubernetes API 服务器。
-用相应的 IP 地址替换 `$NEW_ETCD_CLUSTER` 和 `$OLD_ETCD_CLUSTER`。如果在 etcd 集群前面使用负载平衡，则可能需要更新负载均衡器。
-
-如果大多数 etcd 成员永久失败，则认为 etcd 集群失败。在这种情况下，Kubernetes 不能对其当前状态进行任何更改。
-虽然已调度的 pod 可能继续运行，但新的 pod 无法调度。在这种情况下，恢复 etcd 集群并可能需要重新配置 Kubernetes API 服务器以修复问题。
-
 {{< note >}}
 如果集群中正在运行任何 API 服务器，则不应尝试还原 etcd 的实例。相反，请按照以下步骤还原 etcd：
 
-- 停止 *所有* API 服务实例
+- 停止**所有** API 服务实例
 - 在所有 etcd 实例中恢复状态
 - 重启所有 API 服务实例
 
 我们还建议重启所有组件（例如 `kube-scheduler`、`kube-controller-manager`、`kubelet`），以确保它们不会
 依赖一些过时的数据。请注意，实际中还原会花费一些时间。
 在还原过程中，关键组件将丢失领导锁并自行重启。
-{{< note >}}
\ No newline at end of file
+{{< /note >}}
+
+<!--
+## Upgrading etcd clusters
+-->
+## 升级 etcd 集群    {#upgrading-etcd-clusters}
+
+<!--
+For more details on etcd upgrade, please refer to the [etcd upgrades](https://etcd.io/docs/latest/upgrades/) documentation.
+-->
+有关 etcd 升级的更多详细信息，请参阅 [etcd 升级](https://etcd.io/docs/latest/upgrades/)文档。
+
+<!--
+{{< note >}}
+Before you start an upgrade, please back up your etcd cluster first.
+{{< /note >}}
+-->
+{{< note >}}
+在开始升级之前，请先备份你的 etcd 集群。
+{{< /note >}}
+
diff --git a/content/zh/docs/tasks/administer-cluster/controller-manager-leader-migration.md b/content/zh-cn/docs/tasks/administer-cluster/controller-manager-leader-migration.md
similarity index 59%
rename from content/zh/docs/tasks/administer-cluster/controller-manager-leader-migration.md
rename to content/zh-cn/docs/tasks/administer-cluster/controller-manager-leader-migration.md
index 83a716ce44..f4e54653b1 100644
--- a/content/zh/docs/tasks/administer-cluster/controller-manager-leader-migration.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/controller-manager-leader-migration.md
@@ -1,25 +1,23 @@
 ---
-title: "将重复的控制平面迁至云控制器管理器"
-linkTitle: "将重复的控制平面迁至云控制器管理器"
+title: 迁移多副本的控制面以使用云控制器管理器
+linkTitle: 迁移多副本的控制面以使用云控制器管理器
 content_type: task
 ---
 
 <!--
----
 reviewers:
 - jpbetz
 - cheftako
 title: "Migrate Replicated Control Plane To Use Cloud Controller Manager"
 linkTitle: "Migrate Replicated Control Plane To Use Cloud Controller Manager"
 content_type: task
----
 -->
 
 <!-- overview -->
 
-{{< feature-state state="beta" for_k8s_version="v1.22" >}}
+{{< feature-state for_k8s_version="v1.24" state="stable"  >}}
 
-{{< glossary_definition term_id="cloud-controller-manager" length="all" prepend="云管理控制器是">}}
+{{< glossary_definition term_id="cloud-controller-manager" length="all">}}
 
 <!--
 ## Background
@@ -33,52 +31,58 @@ the `kube-controller-manager` and the `cloud-controller-manager` via a shared re
 For a single-node control plane, or if unavailability of controller managers can be tolerated during the upgrade, Leader Migration is not needed and this guide can be ignored.
 -->
 ## 背景
+
 作为[云驱动提取工作](https://kubernetes.io/blog/2019/04/17/the-future-of-cloud-providers-in-kubernetes/)
 的一部分，所有特定于云的控制器都必须移出 `kube-controller-manager`。
-所有在 `kube-controller-manager` 中运行云控制器的现有集群必须迁移到云驱动特定的 `cloud-controller-manager` 中运行控制器。
+所有在 `kube-controller-manager` 中运行云控制器的现有集群必须迁移到特定于云厂商的
+`cloud-controller-manager` 中运行这些控制器。
 
-领导者迁移提供了一种机制，使得 HA 集群可以通过两个组件之间的共享资源锁定，
-安全地将“特定于云”的控制器从 `kube-controller-manager` 和迁移到`cloud-controller-manager`，
-同时升级复制的控制平面。
-对于单节点控制平面，或者在升级过程中可以容忍控制器管理器不可用的情况，则不需要领导者迁移，并且可以忽略本指南。
+领导者迁移（Leader Migration）提供了一种机制，使得 HA 集群可以通过这两个组件之间共享资源锁，
+在升级多副本的控制平面时，安全地将“特定于云”的控制器从 `kube-controller-manager` 迁移到
+`cloud-controller-manager`。
+对于单节点控制平面，或者在升级过程中可以容忍控制器管理器不可用的情况，则不需要领导者迁移，
+亦可以忽略本指南。
 
 <!--
 Leader Migration can be enabled by setting `--enable-leader-migration` on `kube-controller-manager` or `cloud-controller-manager`.
 Leader Migration only applies during the upgrade and can be safely disabled or left enabled after the upgrade is complete.
 
 This guide walks you through the manual process of upgrading the control plane from `kube-controller-manager` with 
-built-in cloud provider to running both `kube-controller-manager` and `cloud-controller-manager`. 
-If you use a tool to administrator the cluster, please refer to the documentation of the tool and the cloud provider for more details.
+built-in cloud provider to running both `kube-controller-manager` and `cloud-controller-manager`.
+If you use a tool to deploy and manage the cluster, please refer to the documentation of the tool and the cloud provider for specific instructions of the migration.
 -->
-领导者迁移可以通过在 `kube-controller-manager` 或 `cloud-controller-manager` 上设置 `--enable-leader-migration` 来启用。
-领导者迁移仅在升级期间适用，并且可以安全地禁用，也可以在升级完成后保持启用状态。
+领导者迁移可以通过在 `kube-controller-manager` 或 `cloud-controller-manager` 上设置
+`--enable-leader-migration` 来启用。
+领导者迁移仅在升级期间适用，并且在升级完成后可以安全地禁用或保持启用状态。
 
 本指南将引导你手动将控制平面从内置的云驱动的 `kube-controller-manager` 升级为
 同时运行 `kube-controller-manager` 和 `cloud-controller-manager`。
-如果使用工具来管理群集，请参阅对应工具和云驱动的文档以获取更多详细信息。
+如果使用某种工具来部署和管理集群，请参阅对应工具和云驱动的文档以获取迁移的具体说明。
 
 ## {{% heading "prerequisites" %}}
 
 <!--
-It is assumed that the control plane is running Kubernetes version N and to be upgraded to version N + 1. 
-Although it is possible to migrate within the same version, ideally the migration should be performed as part of a upgrade so that changes of configuration can be aligned to each release. 
-The exact versions of N and N + 1 depend on each cloud provider. For example, if a cloud provider builds a `cloud-controller-manager` to work with Kubernetes 1.22, then N can be 1.21 and N + 1 can be 1.22.
+It is assumed that the control plane is running Kubernetes version N and to be upgraded to version N + 1.
+Although it is possible to migrate within the same version, ideally the migration should be performed as part of an upgrade so that changes of configuration can be aligned to each release.
+The exact versions of N and N + 1 depend on each cloud provider. For example, if a cloud provider builds a `cloud-controller-manager` to work with Kubernetes 1.24, then N can be 1.23 and N + 1 can be 1.24.
 
-The control plane nodes should run `kube-controller-manager` with Leader Election enabled through `--leader-elect=true`. 
-As of version N, an in-tree cloud privider must be set with `--cloud-provider` flag and `cloud-controller-manager` should not yet be deployed.
+The control plane nodes should run `kube-controller-manager` with Leader Election enabled, which is the default.
+As of version N, an in-tree cloud provider must be set with `--cloud-provider` flag and `cloud-controller-manager` should not yet be deployed.
 -->
-假定控制平面正在运行 Kubernetes N 版本，并且要升级到 N+1 版本。
-尽管可以在同一版本中进行迁移，但理想情况下，迁移应作为升级的一部分执行，以便可以更改配置与每个发布版本保持一致。
-N 和 N+1的确切版本取决于各个云驱动。例如，如果云驱动构建了一个可与 Kubernetes 1.22 配合使用的 `cloud-controller-manager`，
-则 N 可以为 1.21，N+1 可以为 1.22。
+假定控制平面正在运行 Kubernetes 版本 N，要升级到版本 N+1。
+尽管可以在同一版本内进行迁移，但理想情况下，迁移应作为升级的一部分执行，
+以便可以配置的变更可以与发布版本变化对应起来。
+N 和 N+1 的确切版本值取决于各个云厂商。例如，如果云厂商构建了一个可与 Kubernetes 1.24
+配合使用的 `cloud-controller-manager`，则 N 可以为 1.23，N+1 可以为 1.24。
 
-控制平面节点应运行 `kube-controller-manager`，并通过 `--leader-elect=true` 启用领导者选举。
-从版本 N 开始，树内云驱动必须设置 `--cloud-provider` 标志，而且 `cloud-controller-manager` 尚未部署。
+控制平面节点应运行 `kube-controller-manager` 并启用领导者选举，这也是默认设置。
+在版本 N 中，树内云驱动必须设置 `--cloud-provider` 标志，而且 `cloud-controller-manager`
+应该尚未部署。
 
 <!--
-The out-of-tree cloud provider must have built a `cloud-controller-manager` with Leader Migration implementation. 
+The out-of-tree cloud provider must have built a `cloud-controller-manager` with Leader Migration implementation.
 If the cloud provider imports `k8s.io/cloud-provider` and `k8s.io/controller-manager` of version v0.21.0 or later, Leader Migration will be available.
-However, for version before v0.22.0, Leader Migration is alpha and requires feature gate `ControllerManagerLeaderMigration` to be enabled.
+However, for version before v0.22.0, Leader Migration is alpha and requires feature gate `ControllerManagerLeaderMigration` to be enabled in `cloud-controller-manager`.
 
 This guide assumes that kubelet of each control plane node starts `kube-controller-manager` 
 and `cloud-controller-manager` as static pods defined by their manifests. 
@@ -88,18 +92,18 @@ For authorization, this guide assumes that the cluster uses RBAC.
 If another authorization mode grants permissions to `kube-controller-manager` and `cloud-controller-manager` components, 
 please grant the needed access in a way that matches the mode.
 -->
-树外云驱动必须已经构建了一个实现领导者迁移的 `cloud-controller-manager`。
+树外云驱动必须已经构建了一个实现了领导者迁移的 `cloud-controller-manager`。
 如果云驱动导入了 v0.21.0 或更高版本的 `k8s.io/cloud-provider` 和 `k8s.io/controller-manager`，
 则可以进行领导者迁移。
-但是，对 v0.22.0 以下的版本，领导者迁移是一项 Alpha 阶段功能，它需要启用特性门控 `ControllerManagerLeaderMigration`。
+但是，对 v0.22.0 以下的版本，领导者迁移是一项 Alpha 阶段功能，需要在 `cloud-controller-manager`
+中启用特性门控 `ControllerManagerLeaderMigration`。
 
-本指南假定每个控制平面节点的 kubelet 以静态 pod 的形式启动 `kube-controller-manager`
-和 `cloud-controller-manager`，静态 pod 的定义在清单文件中。
-如果组件以其他设置运行，请相应地调整步骤。
+本指南假定每个控制平面节点的 kubelet 以静态 Pod 的形式启动 `kube-controller-manager`
+和 `cloud-controller-manager`，静态 Pod 的定义在清单文件中。
+如果组件以其他设置运行，请相应地调整这里的步骤。
 
-为了获得授权，本指南假定集群使用 RBAC。
-如果其他授权模式授予 `kube-controller-manager` 和 `cloud-controller-manager` 组件权限，
-请以与该模式匹配的方式授予所需的访问权限。
+关于鉴权，本指南假定集群使用 RBAC。如果其他鉴权模式授予 `kube-controller-manager`
+和 `cloud-controller-manager` 组件权限，请以与该模式匹配的方式授予所需的访问权限。
 
 <!-- steps -->
 
@@ -119,9 +123,10 @@ Do the same to the `system::leader-locking-cloud-controller-manager` role.
 
 `kubectl patch -n kube-system role 'system::leader-locking-cloud-controller-manager' -p '{"rules": [ {"apiGroups":[ "coordination.k8s.io"], "resources": ["leases"], "resourceNames": ["cloud-provider-extraction-migration"], "verbs": ["create", "list", "get", "update"] } ]}' --type=merge`
 -->
-### 授予访问迁移 Lease 的权限
+### 授予访问迁移租约的权限
 
-控制器管理器的默认权限仅允许访问其主 Lease 对象。为了使迁移正常进行，需要访问其他 Lease 对象。
+控制器管理器的默认权限仅允许访问其主租约（Lease）对象。为了使迁移正常进行，
+需要授权它访问其他 Lease 对象。
 
 你可以通过修改 `system::leader-locking-kube-controller-manager` 角色来授予
 `kube-controller-manager` 对 Lease API 的完全访问权限。
@@ -142,17 +147,17 @@ Leader Migration can be enabled without a configuration. Please see [Default Con
 -->
 ### 初始领导者迁移配置
 
-领导者迁移可以选择使用一个表示控制器到管理器分配状态的配置文件。
-目前，对于树内云驱动，`kube-controller-manager` 运行 `route`、`service` 和 `cloud-node-lifecycle`。
-以下示例配置显示了分配。
+领导者迁移可以选择使用一个表示如何将控制器分配给不同管理器的配置文件。
+目前，对于树内云驱动，`kube-controller-manager` 运行 `route`、`service` 和
+`cloud-node-lifecycle`。以下示例配置显示的是这种分配。
 
-领导者迁移可以不指定配置来启用。请参阅 [默认配置](#default-configuration) 以获取更多详细信息。
+领导者迁移可以不指定配置的情况下启用。请参阅[默认配置](#default-configuration) 
+以获取更多详细信息。
 
 ```yaml
 kind: LeaderMigrationConfiguration
-apiVersion: controllermanager.config.k8s.io/v1beta1
+apiVersion: controllermanager.config.k8s.io/v1
 leaderName: cloud-provider-extraction-migration
-resourceLock: leases
 controllerLeaders:
   - name: route
     component: kube-controller-manager
@@ -162,6 +167,27 @@ controllerLeaders:
     component: kube-controller-manager
 ```
 
+<!--
+Alternatively, because the controllers can run under either controller managers, setting `component` to `*`
+for both sides makes the configuration file consistent between both parties of the migration.
+-->
+或者，由于控制器可以在任一控制器管理器下运行，因此将双方的 `component` 设置为 `*`
+可以使迁移双方的配置文件保持一致。
+
+```yaml
+# 通配符版本
+kind: LeaderMigrationConfiguration
+apiVersion: controllermanager.config.k8s.io/v1
+leaderName: cloud-provider-extraction-migration
+controllerLeaders:
+  - name: route
+    component: *
+  - name: service
+    component: *
+  - name: cloud-node-lifecycle
+    component: *
+```
+
 <!--
 On each control plane node, save the content to `/etc/leadermigration.conf`, 
 and update the manifest of `kube-controller-manager` so that the file is mounted inside the container at the same location. 
@@ -172,32 +198,34 @@ Also, update the same manifest to add the following arguments:
 
 Restart `kube-controller-manager` on each node. At this moment, `kube-controller-manager` has leader migration enabled and is ready for the migration.
 -->
-在每个控制平面节点上，将内容保存到 `/etc/leadermigration.conf` 中，
-并更新 `kube-controller-manager` 清单，以便将文件安装在容器内的同一位置。
-另外，更新相同的清单，添加以下参数：
+在每个控制平面节点上，请将如上内容保存到 `/etc/leadermigration.conf` 中，
+并更新 `kube-controller-manager` 清单，以便将文件挂载到容器内的同一位置。
+另外，请更新同一清单，添加以下参数：
 
 - `--enable-leader-migration` 在控制器管理器上启用领导者迁移
 - `--leader-migration-config=/etc/leadermigration.conf` 设置配置文件
 
 在每个节点上重新启动 `kube-controller-manager`。这时，`kube-controller-manager`
-已启用领导者迁移，并准备进行迁移。
+已启用领导者迁移，为迁移准备就绪。
 
 <!--
 ### Deploy Cloud Controller Manager
 
-In version N + 1, the desired state of controller-to-manager assignment can be represented by a new configuration file, shown as follows. 
+In version N + 1, the desired state of controller-to-manager assignment can be represented by a new configuration file, shown as follows.
 Please note `component` field of each `controllerLeaders` changing from `kube-controller-manager` to `cloud-controller-manager`.
+Alternatively, use the wildcard version mentioned above, which has the same effect.
 -->
 ### 部署云控制器管理器
 
-在 N+1 版本中，控制器到管理器分配的期望状态可以由新的配置文件表示，如下所示。
-请注意，每个 `controllerLeaders` 的 `component` 字段从 `kube-controller-manager` 更改为 `cloud-controller-manager`。
+在版本 N+1 中，如何将控制器分配给不同管理器的预期分配状态可以由新的配置文件表示，
+如下所示。请注意，各个 `controllerLeaders` 的 `component` 字段从 `kube-controller-manager`
+更改为 `cloud-controller-manager`。
+或者，使用上面提到的通配符版本，它具有相同的效果。
 
 ```yaml
 kind: LeaderMigrationConfiguration
-apiVersion: controllermanager.config.k8s.io/v1beta1
+apiVersion: controllermanager.config.k8s.io/v1
 leaderName: cloud-provider-extraction-migration
-resourceLock: leases
 controllerLeaders:
   - name: route
     component: cloud-controller-manager
@@ -208,31 +236,32 @@ controllerLeaders:
 ```
 
 <!--
-When creating control plane nodes of version N + 1, the content should be deploy to `/etc/leadermigration.conf`. 
-The manifest of `cloud-controller-manager` should be updated to mount the configuration file in 
-the same manner as `kube-controller-manager` of version N. Similarly, add `--feature-gates=ControllerManagerLeaderMigration=true`,
-`--enable-leader-migration`, and `--leader-migration-config=/etc/leadermigration.conf` to the arguments of `cloud-controller-manager`.
+When creating control plane nodes of version N + 1, the content should be deployed to `/etc/leadermigration.conf`.
+The manifest of `cloud-controller-manager` should be updated to mount the configuration file in
+the same manner as `kube-controller-manager` of version N. Similarly, add `--enable-leader-migration`
+and `--leader-migration-config=/etc/leadermigration.conf` to the arguments of `cloud-controller-manager`.
 
-Create a new control plane node of version N + 1 with the updated `cloud-controller-manager` manifest, 
-and with the `--cloud-provider` flag unset for `kube-controller-manager`.
-`kube-controller-manager` of version N + 1 MUST NOT have Leader Migration enabled because, 
-with an external cloud provider, it does not run the migrated controllers anymore and thus it is not involved in the migration.
+Create a new control plane node of version N + 1 with the updated `cloud-controller-manager` manifest,
+and with the `--cloud-provider` flag set to `external` for `kube-controller-manager`.
+`kube-controller-manager` of version N + 1 MUST NOT have Leader Migration enabled because,
+with an external cloud provider, it does not run the migrated controllers anymore, and thus it is not involved in the migration.
 
 Please refer to [Cloud Controller Manager Administration](/docs/tasks/administer-cluster/running-cloud-controller/)
 for more detail on how to deploy `cloud-controller-manager`.
 -->
+当创建版本 N+1 的控制平面节点时，应将如上内容写入到 `/etc/leadermigration.conf`。
+你需要更新 `cloud-controller-manager` 的清单，以与版本 N 的 `kube-controller-manager`
+相同的方式挂载配置文件。
+类似地，添加 `--enable-leader-migration`
+和 `--leader-migration-config=/etc/leadermigration.conf` 到 `cloud-controller-manager`
+的参数中。
 
-当创建 N+1 版本的控制平面节点时，应将内容部署到 `/etc/leadermigration.conf`。
-应该更新 `cloud-controller-manager` 清单，以与 N 版本的 `kube-controller-manager` 相同的方式挂载配置文件。
-类似地，添加 `--feature-gates=ControllerManagerLeaderMigration=true`、`--enable-leader-migration` 
-和 `--leader-migration-config=/etc/leadermigration.conf` 到 `cloud-controller-manager` 的参数中。
-
-使用已更新的 `cloud-controller-manager` 清单创建一个新的 N+1 版本的控制平面节点。
-并且没有设置 `kube-controller-manager` 的 `--cloud-provider` 标志。
-N+1 版本的 `kube-controller-manager` 不能启用领导者迁移，
+使用已更新的 `cloud-controller-manager` 清单创建一个新的 N+1 版本的控制平面节点，
+同时设置 `kube-controller-manager` 的 `--cloud-provider` 标志为 `external`。
+版本为 N+1 的 `kube-controller-manager` 不能启用领导者迁移，
 因为在使用外部云驱动的情况下，它不再运行已迁移的控制器，因此不参与迁移。
 
-请参阅[云控制器管理器管理](/zh/docs/tasks/administer-cluster/running-cloud-controller/) 
+请参阅[云控制器管理器管理](/zh-cn/docs/tasks/administer-cluster/running-cloud-controller/) 
 了解有关如何部署 `cloud-controller-manager` 的更多细节。
 
 <!--
@@ -250,17 +279,17 @@ If a rollback from version N + 1 to N is required, add nodes of version N with L
 -->
 ### 升级控制平面
 
-现在，控制平面包含 N 和 N+1 版本的节点。
-N 版本的节点仅运行 `kube-controller-manager`，而 N+1 版本的节点同时运行
+现在，控制平面同时包含 N 和 N+1 版本的节点。
+版本 N 的节点仅运行 `kube-controller-manager`，而版本 N+1 的节点同时运行
 `kube-controller-manager` 和 `cloud-controller-manager`。
-根据配置所指定，已迁移的控制器在 N 版本的 `kube-controller-manager` 或 N+1 版本的
-`cloud-controller-manager` 下运行，
-具体取决于哪个控制器管理器拥有迁移  Lease 对象。任何时候都不存在一个控制器在两个控制器管理器下运行。
+根据配置所指定，已迁移的控制器在版本 N 的 `kube-controller-manager` 或版本
+N+1 的 `cloud-controller-manager` 下运行，具体取决于哪个控制器管理器拥有迁移租约对象。
+任何时候都不会有同一个控制器在两个控制器管理器下运行。
 
-以滚动的方式创建一个新的版本为 N+1 的控制平面节点，并将 N+1 版本中的一个关闭，
+以滚动的方式创建一个新的版本为 N+1 的控制平面节点，并将版本 N 中的一个关闭，
 直到控制平面仅包含版本为 N+1 的节点。
-如果需要从 N+1 版本回滚到 N 版本，则将启用了领导者迁移的 `kube-controller-manager`
-且版本为 N 的节点添加回控制平面，每次替换 N+1 版本的一个，直到只有 N 版本的节点为止。
+如果需要从 N+1 版本回滚到 N 版本，则将 `kube-controller-manager` 启用了领导者迁移的、
+且版本为 N 的节点添加回控制平面，每次替换 N+1 版本中的一个，直到只有版本 N 的节点为止。
 
 <!--
 ### (Optional) Disable Leader Migration {#disable-leader-migration}
@@ -276,14 +305,15 @@ To re-enable Leader Migration, recreate the configuration file and add its mount
 -->
 ### （可选）禁用领导者迁移 {#disable-leader-migration}
 
-现在，控制平面已经升级，可以同时运行 N+1 版本的 `kube-controller-manager` 和 `cloud-controller-manager` 了。
-领导者迁移已经完成工作，可以安全地禁用以节省一个 Lease 资源。
-在将来可以安全地重新启用领导者迁移以完成回滚。
+现在，控制平面已经完成升级，同时运行版本 N+1 的 `kube-controller-manager`
+和 `cloud-controller-manager`。领导者迁移的任务已经结束，可以被安全地禁用以节省一个
+Lease 资源。在将来可以安全地重新启用领导者迁移，以完成回滚。
 
-在滚动管理器中，更新 `cloud-controller-manager` 的清单以同时取消设置 `--enable-leader-migration`
-和 `--leader-migration-config=` 标志，并删除 `/etc/leadermigration.conf` 的挂载。 
-最后删除 `/etc/leadermigration.conf`。
-要重新启用领导者迁移，请重新创建配置文件，并将其挂载和启用领导者迁移的标志添加回到 `cloud-controller-manager`。
+在滚动管理器中，更新 `cloud-controller-manager` 的清单以同时取消设置
+`--enable-leader-migration` 和 `--leader-migration-config=` 标志，并删除
+`/etc/leadermigration.conf` 的挂载，最后删除 `/etc/leadermigration.conf`。
+要重新启用领导者迁移，请重新创建配置文件，并将其挂载和启用领导者迁移的标志添加回到
+`cloud-controller-manager`。
 
 <!--
 ### Default Configuration
@@ -295,14 +325,46 @@ For `kube-controller-manager` and `cloud-controller-manager`, if there are no fl
 -->
 ### 默认配置 {#default-configuration}
 
-从 Kubernetes 1.22 开始，领导者迁移提供了一个默认配置，它适用于默认的控制器到管理器分配。
-可以通过设置 `--enable-leader-migration`，但不设置 `--leader-migration-config=` 来启用默认配置。
+从 Kubernetes 1.22 开始，领导者迁移提供了一个默认配置，它适用于控制器与管理器间默认的分配关系。
+可以通过设置 `--enable-leader-migration`，但不设置 `--leader-migration-config=`
+来启用默认配置。
 
 对于 `kube-controller-manager` 和 `cloud-controller-manager`，如果没有用参数来启用树内云驱动或者改变控制器属主，
 则可以使用默认配置来避免手动创建配置文件。
 
+<!--
+### Special case: migrating the Node IPAM controller {#node-ipam-controller-migration}
+
+If your cloud provider provides an implementation of Node IPAM controller, you should switch to the implementation in `cloud-controller-manager`.
+Disable Node IPAM controller in `kube-controller-manager` of version N + 1 by adding `--controllers=*,-nodeipam` to its flags.
+Then add `nodeipam` to the list of migrated controllers.
+-->
+### 特殊情况：迁移节点 IPAM 控制器 {#node-ipam-controller-migration}
+
+如果你的云供应商提供了节点 IPAM 控制器的实现，你应该切换到 `cloud-controller-manager` 中的实现。
+通过在其标志中添加 `--controllers=*,-nodeipam` 来禁用 N+1 版本的 `kube-controller-manager` 中的节点 IPAM 控制器。
+然后将 `nodeipam` 添加到迁移的控制器列表中。
+
+```yaml
+# 通配符版本，带有 nodeipam
+kind: LeaderMigrationConfiguration
+apiVersion: controllermanager.config.k8s.io/v1
+leaderName: cloud-provider-extraction-migration
+controllerLeaders:
+  - name: route
+    component: *
+  - name: service
+    component: *
+  - name: cloud-node-lifecycle
+    component: *
+  - name: nodeipam
+-   component: *
+```
+
 ## {{% heading "whatsnext" %}}
 <!--
-- Read the [Controller Manager Leader Migration](https://github.com/kubernetes/enhancements/tree/master/keps/sig-cloud-provider/2436-controller-manager-leader-migration) enhancement proposal
+- Read the [Controller Manager Leader Migration](https://github.com/kubernetes/enhancements/tree/master/keps/sig-cloud-provider/2436-controller-manager-leader-migration) enhancement proposal.
 -->
-- 阅读[领导者迁移控制器管理器](https://github.com/kubernetes/enhancements/tree/master/keps/sig-cloud-provider/2436-controller-manager-leader-migration)改进建议
\ No newline at end of file
+- 阅读[领导者迁移控制器管理器](https://github.com/kubernetes/enhancements/tree/master/keps/sig-cloud-provider/2436-controller-manager-leader-migration)
+  改进建议提案。
+
diff --git a/content/zh-cn/docs/tasks/administer-cluster/coredns.md b/content/zh-cn/docs/tasks/administer-cluster/coredns.md
new file mode 100644
index 0000000000..24773adbb9
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/coredns.md
@@ -0,0 +1,147 @@
+---
+title: 使用 CoreDNS 进行服务发现
+min-kubernetes-server-version: v1.9
+content_type: task
+---
+
+<!--
+reviewers:
+- johnbelamaric
+title: Using CoreDNS for Service Discovery
+min-kubernetes-server-version: v1.9
+content_type: task
+-->
+
+<!-- overview -->
+
+<!--
+This page describes the CoreDNS upgrade process and how to install CoreDNS instead of kube-dns.
+-->
+此页面介绍了 CoreDNS 升级过程以及如何安装 CoreDNS 而不是 kube-dns。
+
+## {{% heading "prerequisites" %}}
+
+{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+
+<!-- steps -->
+
+<!--
+## About CoreDNS
+
+[CoreDNS](https://coredns.io) is a flexible, extensible DNS server
+that can serve as the Kubernetes cluster DNS.
+Like Kubernetes, the CoreDNS project is hosted by the
+{{< glossary_tooltip text="CNCF" term_id="cncf" >}}.
+-->
+## 关于 CoreDNS
+
+[CoreDNS](https://coredns.io) 是一个灵活可扩展的 DNS 服务器，可以作为 Kubernetes 集群 DNS。
+与 Kubernetes 一样，CoreDNS 项目由 {{< glossary_tooltip text="CNCF" term_id="cncf" >}} 托管。
+
+<!--
+You can use CoreDNS instead of kube-dns in your cluster by replacing
+kube-dns in an existing deployment, or by using tools like kubeadm
+that will deploy and upgrade the cluster for you.
+-->
+通过替换现有集群部署中的 kube-dns，或者使用 kubeadm 等工具来为你部署和升级集群，
+可以在你的集群中使用 CoreDNS 而非 kube-dns，
+
+<!--
+## Installing CoreDNS
+
+For manual deployment or replacement of kube-dns, see the documentation at the
+[CoreDNS GitHub project.](https://github.com/coredns/deployment/tree/master/kubernetes)
+-->
+## 安装 CoreDNS
+
+有关手动部署或替换 kube-dns，请参阅
+[CoreDNS GitHub 项目](https://github.com/coredns/deployment/tree/master/kubernetes)。
+
+<!--
+## Migrating to CoreDNS
+
+### Upgrading an existing cluster with kubeadm
+-->
+## 迁移到 CoreDNS
+
+### 使用 kubeadm 升级现有集群
+
+<!--
+In Kubernetes version 1.21, kubeadm removed its support for `kube-dns` as a DNS application.
+For `kubeadm` v{{< skew currentVersion >}}, the only supported cluster DNS application
+is CoreDNS.
+-->
+在 Kubernetes 1.21 版本中，kubeadm 移除了对将 `kube-dns` 作为 DNS 应用的支持。
+对于 `kubeadm` v{{< skew currentVersion >}}，所支持的唯一的集群 DNS 应用是 CoreDNS。
+
+<!--
+You can move to CoreDNS when you use `kubeadm` to upgrade a cluster that is
+using `kube-dns`. In this case, `kubeadm` generates the CoreDNS configuration
+("Corefile") based upon the `kube-dns` ConfigMap, preserving configurations for
+stub domains, and upstream name server.
+-->
+当你使用 `kubeadm` 升级使用 `kube-dns` 的集群时，你还可以执行到 CoreDNS 的迁移。
+在这种场景中，`kubeadm` 将基于 `kube-dns` ConfigMap 生成 CoreDNS 配置（"Corefile"），
+保存存根域和上游名称服务器的配置。
+
+<!--
+## Upgrading CoreDNS 
+
+You can check the version of CoreDNS that kubeadm installs for each version of
+Kubernetes in the page
+[CoreDNS version in Kubernetes](https://github.com/coredns/deployment/blob/master/kubernetes/CoreDNS-k8s_version.md).
+-->
+## 升级 CoreDNS 
+
+你可以在 [CoreDNS version in Kubernetes](https://github.com/coredns/deployment/blob/master/kubernetes/CoreDNS-k8s_version.md)
+页面查看 kubeadm 为不同版本 Kubernetes 所安装的 CoreDNS 版本。
+
+<!--
+CoreDNS can be upgraded manually in case you want to only upgrade CoreDNS
+or use your own custom image.
+There is a helpful [guideline and walkthrough](https://github.com/coredns/deployment/blob/master/kubernetes/Upgrading_CoreDNS.md)
+available to ensure a smooth upgrade.
+Make sure the existing CoreDNS configuration ("Corefile") is retained when
+upgrading your cluster.
+-->
+如果你只想升级 CoreDNS 或使用自己的定制镜像，也可以手动升级 CoreDNS。
+参看[指南和演练](https://github.com/coredns/deployment/blob/master/kubernetes/Upgrading_CoreDNS.md)
+文档了解如何平滑升级。
+在升级你的集群过程中，请确保现有 CoreDNS 的配置（"Corefile"）被保留下来。
+
+<!--
+If you are upgrading your cluster using the `kubeadm` tool, `kubeadm`
+can take care of retaining the existing CoreDNS configuration automatically.
+-->
+如果使用 `kubeadm` 工具来升级集群，则 `kubeadm` 可以自动处理保留现有 CoreDNS
+配置这一事项。
+
+<!--
+## Tuning CoreDNS
+
+When resource utilisation is a concern, it may be useful to tune
+the configuration of CoreDNS. For more details, check out the
+[documentation on scaling CoreDNS]((https://github.com/coredns/deployment/blob/master/kubernetes/Scaling_CoreDNS.md)).
+-->
+## CoreDNS 调优
+
+当资源利用方面有问题时，优化 CoreDNS 的配置可能是有用的。
+有关详细信息，请参阅有关[扩缩 CoreDNS 的文档](https://github.com/coredns/deployment/blob/master/kubernetes/Scaling_CoreDNS.md)。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+You can configure [CoreDNS](https://coredns.io) to support many more use cases than
+kube-dns does by modifying the CoreDNS configuration ("Corefile").
+For more information, see the [documentation](https://coredns.io/plugins/kubernetes/)
+for the `kubernetes` CoreDNS plugin, or read the 
+[Custom DNS Entries for Kubernetes](https://coredns.io/2017/05/08/custom-dns-entries-for-kubernetes/)
+in the CoreDNS blog.
+-->
+你可以通过修改 CoreDNS 的配置（"Corefile"）来配置 [CoreDNS](https://coredns.io)，
+以支持比 kube-dns 更多的用例。
+请参考 `kubernetes` CoreDNS 插件的[文档](https://coredns.io/plugins/kubernetes/)
+或者 CoreDNS 博客上的博文
+[Custom DNS Entries for Kubernetes](https://coredns.io/2017/05/08/custom-dns-entries-for-kubernetes/)，
+以了解更多信息。
+
diff --git a/content/zh/docs/tasks/administer-cluster/cpu-management-policies.md b/content/zh-cn/docs/tasks/administer-cluster/cpu-management-policies.md
similarity index 60%
rename from content/zh/docs/tasks/administer-cluster/cpu-management-policies.md
rename to content/zh-cn/docs/tasks/administer-cluster/cpu-management-policies.md
index 3d684ec5f5..602d9000ac 100644
--- a/content/zh/docs/tasks/administer-cluster/cpu-management-policies.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/cpu-management-policies.md
@@ -23,7 +23,7 @@ acceptably. The kubelet provides methods to enable more complex workload
 placement policies while keeping the abstraction free from explicit placement
 directives.
 -->
-按照设计，Kubernetes 对 pod 执行相关的很多方面进行了抽象，使得用户不必关心。
+按照设计，Kubernetes 对 Pod 执行相关的很多方面进行了抽象，使得用户不必关心。
 然而，为了正常运行，有些工作负载要求在延迟和/或性能方面有更强的保证。
 为此，kubelet 提供方法来实现更复杂的负载放置策略，同时保持抽象，避免显式的放置指令。
 
@@ -62,12 +62,16 @@ management policies to determine some placement preferences on the node.
 <!--
 ### Configuration
 
-The CPU Manager policy is set with the `-cpu-manager-policy` kubelet
-option. There are two supported policies:
+The CPU Manager policy is set with the `--cpu-manager-policy` kubelet
+flag or the `cpuManagerPolicy` field in [KubeletConfiguration](/docs/reference/config-api/kubelet-config.v1beta1/).
+There are two supported policies:
 -->
 ### 配置
 
-CPU 管理策略通过 kubelet 参数 `--cpu-manager-policy` 来指定。支持两种策略：
+CPU 管理策略通过 kubelet 参数 `--cpu-manager-policy`
+或 [KubeletConfiguration](/zh-cn/docs/reference/config-api/kubelet-config.v1beta1/)
+中的 `cpuManagerPolicy` 字段来指定。
+支持两种策略：
 
 <!--
 * `none`: the default, which represents the existing scheduling behavior.
@@ -75,7 +79,7 @@ CPU 管理策略通过 kubelet 参数 `--cpu-manager-policy` 来指定。支持
   granted increased CPU affinity and exclusivity on the node.
 -->
 * `none`: 默认策略，表示现有的调度行为。
-* `static`: 允许为节点上具有某些资源特征的 pod 赋予增强的 CPU 亲和性和独占性。
+* `static`: 允许为节点上具有某些资源特征的 Pod 赋予增强的 CPU 亲和性和独占性。
 
 <!--
 The CPU manager periodically writes resource updates through the CRI in
@@ -91,9 +95,66 @@ CPU 管理器定期通过 CRI 写入资源更新，以保证内存中 CPU 分配
 <!--
 The behavior of the static policy can be fine-tuned using the `--cpu-manager-policy-options` flag.
 The flag takes a comma-separated list of `key=value` policy options.
+This feature can be disabled completely using the `CPUManagerPolicyOptions` feature gate.
 -->
 Static 策略的行为可以使用 `--cpu-manager-policy-options` 参数来微调。
 该参数采用一个逗号分隔的 `key=value` 策略选项列表。
+此特性可以通过 `CPUManagerPolicyOptions` 特性门控来完全禁用。
+
+<!--
+The policy options are split into two groups: alpha quality (hidden by default) and beta quality
+(visible by default). The groups are guarded respectively by the `CPUManagerPolicyAlphaOptions`
+and `CPUManagerPolicyBetaOptions` feature gates. Diverging from the Kubernetes standard, these
+feature gates guard groups of options, because it would have been too cumbersome to add a feature
+gate for each individual option.
+-->
+策略选项分为两组：alpha 质量（默认隐藏）和 beta 质量（默认可见）。
+这些组分别由 `CPUManagerPolicyAlphaOptions` 和 `CPUManagerPolicyBetaOptions` 特性门控来管控。
+不同于 Kubernetes 标准，这里是由这些特性门控来管控选项组，因为为每个单独选项都添加一个特性门控过于繁琐。
+
+<!--
+### Changing the CPU Manager Policy
+
+Since the CPU manger policy can only be applied when kubelet spawns new pods, simply changing from
+"none" to "static" won't apply to existing pods. So in order to properly change the CPU manager
+policy on a node, perform the following steps:
+-->
+### 更改 CPU 管理器策略
+
+由于 CPU 管理器策略只能在 kubelet 生成新 Pod 时应用，所以简单地从 "none" 更改为 "static"
+将不会对现有的 Pod 起作用。
+因此，为了正确更改节点上的 CPU 管理器策略，请执行以下步骤：
+
+<!--
+1. [Drain](/docs/tasks/administer-cluster/safely-drain-node) the node.
+2. Stop kubelet.
+3. Remove the old CPU manager state file. The path to this file is
+`/var/lib/kubelet/cpu_manager_state` by default. This clears the state maintained by the
+CPUManager so that the cpu-sets set up by the new policy won’t conflict with it.
+4. Edit the kubelet configuration to change the CPU manager policy to the desired value.
+5. Start kubelet.
+-->
+1. [腾空](/zh-cn/docs/tasks/administer-cluster/safely-drain-node)节点。
+2. 停止 kubelet。
+3. 删除旧的 CPU 管理器状态文件。该文件的路径默认为 `/var/lib/kubelet/cpu_manager_state`。
+   这将清除 CPUManager 维护的状态，以便新策略设置的 cpu-sets 不会与之冲突。
+4. 编辑 kubelet 配置以将 CPU 管理器策略更改为所需的值。
+5. 启动 kubelet。
+
+<!--
+Repeat this process for every node that needs its CPU manager policy changed. Skipping this
+process will result in kubelet crashlooping with the following error:
+
+```
+could not restore state from checkpoint: configured policy "static" differs from state checkpoint policy "none", please drain this node and delete the CPU manager checkpoint file "/var/lib/kubelet/cpu_manager_state" before restarting Kubelet
+```
+-->
+对需要更改其 CPU 管理器策略的每个节点重复此过程。
+跳过此过程将导致 kubelet crashlooping 并出现以下错误：
+
+```
+could not restore state from checkpoint: configured policy "static" differs from state checkpoint policy "none", please drain this node and delete the CPU manager checkpoint file "/var/lib/kubelet/cpu_manager_state" before restarting Kubelet
+```
 
 <!--
 ### None policy
@@ -108,8 +169,8 @@ are enforced using CFS quota.
 ### none 策略
 
 `none` 策略显式地启用现有的默认 CPU 亲和方案，不提供操作系统调度器默认行为之外的亲和性策略。
-通过 CFS 配额来实现 [Guaranteed pods](/zh/docs/tasks/configure-pod-container/quality-service-pod/)
-和 [Burstable pods](/zh/docs/tasks/configure-pod-container/quality-service-pod/)
+通过 CFS 配额来实现 [Guaranteed Pods](/zh-cn/docs/tasks/configure-pod-container/quality-service-pod/)
+和 [Burstable Pods](/zh-cn/docs/tasks/configure-pod-container/quality-service-pod/)
 的 CPU 使用限制。
 
 <!--
@@ -159,11 +220,16 @@ CPU `requests` also run on CPUs in the shared pool. Only containers that are
 both part of a `Guaranteed` pod and have integer CPU `requests` are assigned
 exclusive CPUs.
 --->
-该策略管理一个共享 CPU 资源池，最初，该资源池包含节点上所有的 CPU 资源。可用
-的独占性 CPU 资源数量等于节点的 CPU 总量减去通过 `--kube-reserved` 或 `--system-reserved` 参数保留的 CPU 。从1.17版本开始，CPU保留列表可以通过 kublet 的 '--reserved-cpus' 参数显式地设置。
-通过 '--reserved-cpus' 指定的显式CPU列表优先于使用 '--kube-reserved' 和 '--system-reserved' 参数指定的保留CPU。 通过这些参数预留的 CPU 是以整数方式，按物理内
-核 ID 升序从初始共享池获取的。 共享池是 `BestEffort` 和 `Burstable` pod 运行
-的 CPU 集合。`Guaranteed` pod 中的容器，如果声明了非整数值的 CPU `requests` ，也将运行在共享池的 CPU 上。只有 `Guaranteed` pod 中，指定了整数型 CPU `requests` 的容器，才会被分配独占 CPU 资源。
+此策略管理一个 CPU 共享池，该共享池最初包含节点上所有的 CPU 资源。
+可独占性 CPU 资源数量等于节点的 CPU 总量减去通过 kubelet `--kube-reserved` 或 `--system-reserved`
+参数保留的 CPU 资源。
+从 1.17 版本开始，可以通过 kubelet `--reserved-cpus` 参数显式地指定 CPU 预留列表。
+由 `--reserved-cpus` 指定的显式 CPU 列表优先于由 `--kube-reserved` 和 `--system-reserved`
+指定的 CPU 预留。
+通过这些参数预留的 CPU 是以整数方式，按物理核心 ID 升序从初始共享池获取的。
+共享池是 `BestEffort` 和 `Burstable` Pod 运行的 CPU 集合。
+`Guaranteed` Pod 中的容器，如果声明了非整数值的 CPU `requests`，也将运行在共享池的 CPU 上。
+只有 `Guaranteed` Pod 中，指定了整数型 CPU `requests` 的容器，才会被分配独占 CPU 资源。
 
 <!--
 The kubelet requires a CPU reservation greater than zero be made
@@ -249,7 +315,7 @@ spec:
 This pod runs in the `Burstable` QoS class because resource `requests` do not
 equal `limits`. It runs in the shared pool.
 -->
-该 pod 属于 `Burstable` QoS 类型，因为其资源 `requests` 不等于 `limits`。
+该 Pod 属于 `Burstable` QoS 类型，因为其资源 `requests` 不等于 `limits`。
 所以该容器运行在共享 CPU 池中。
 
 ```yaml
@@ -322,19 +388,35 @@ equal to one. The `nginx` container is granted 2 exclusive CPUs.
 <!--
 #### Static policy options
 
-If the `full-pcpus-only` policy option is specified, the static policy will always allocate full physical cores.
-You can enable this option by adding `full-pcups-only=true` to the CPUManager policy options.
+You can toggle groups of options on and off based upon their maturity level
+using the following feature gates:
+* `CPUManagerPolicyBetaOptions` default enabled. Disable to hide beta-level options.
+* `CPUManagerPolicyAlphaOptions` default disabled. Enable to show alpha-level options.
+You will still have to enable each option using the `CPUManagerPolicyOptions` kubelet option.
+
+The following policy options exist for the static `CPUManager` policy:
+* `full-pcpus-only` (beta, visible by default)
+* `distribute-cpus-across-numa` (alpha, hidden by default)
 -->
 #### Static 策略选项
 
-如果使用 `full-pcpus-only` 策略选项，static 策略总是会分配完整的物理核心。
-你可以通过在 CPUManager 策略选项里加上 `full-pcups-only=true` 来启用该选项。
+你可以使用以下特性门控根据成熟度级别打开或关闭选项组：
+* `CPUManagerPolicyBetaOptions` 默认启用。禁用以隐藏 beta 级选项。
+* `CPUManagerPolicyAlphaOptions` 默认禁用。启用以显示 alpha 级选项。
+你仍然必须使用 `CPUManagerPolicyOptions` kubelet 选项启用每个选项。
+
+静态 `CPUManager` 策略存在以下策略选项：
+* `full-pcpus-only`（beta，默认可见）
+* `distribute-cpus-across-numa`（alpha，默认隐藏）
+
 <!--
+If the `full-pcpus-only` policy option is specified, the static policy will always allocate full physical cores.
 By default, without this option, the static policy allocates CPUs using a topology-aware best-fit allocation.
 On SMT enabled systems, the policy can allocate individual virtual cores, which correspond to hardware threads.
 This can lead to different containers sharing the same physical cores; this behaviour in turn contributes
 to the [noisy neighbours problem](https://en.wikipedia.org/wiki/Cloud_computing_issues#Performance_interference_and_noisy_neighbors).
 -->
+如果使用 `full-pcpus-only` 策略选项，static 策略总是会分配完整的物理核心。
 默认情况下，如果不使用该选项，static 策略会使用拓扑感知最适合的分配方法来分配 CPU。
 在启用了 SMT 的系统上，此策略所分配是与硬件线程对应的、独立的虚拟核。
 这会导致不同的容器共享相同的物理核心，该行为进而会导致
@@ -344,5 +426,47 @@ With the option enabled, the pod will be admitted by the kubelet only if the CPU
 can be fulfilled by allocating full physical cores.
 If the pod does not pass the admission, it will be put in Failed state with the message `SMTAlignmentError`.
 -->
-启用该选项之后，只有当一个 Pod 里所有容器的 CPU 请求都能够分配到完整的物理核心时，kubelet 才会接受该 Pod。
-如果 Pod 没有被准入，它会被置于 Failed 状态，错误消息是 `SMTAlignmentError`。
\ No newline at end of file
+启用该选项之后，只有当一个 Pod 里所有容器的 CPU 请求都能够分配到完整的物理核心时，
+kubelet 才会接受该 Pod。
+如果 Pod 没有被准入，它会被置于 Failed 状态，错误消息是 `SMTAlignmentError`。
+
+<!--
+If the `distribute-cpus-across-numa` policy option is specified, the static
+policy will evenly distribute CPUs across NUMA nodes in cases where more than
+one NUMA node is required to satisfy the allocation.
+By default, the `CPUManager` will pack CPUs onto one NUMA node until it is
+filled, with any remaining CPUs simply spilling over to the next NUMA node.
+This can cause undesired bottlenecks in parallel code relying on barriers (and
+similar synchronization primitives), as this type of code tends to run only as
+fast as its slowest worker (which is slowed down by the fact that fewer CPUs
+are available on at least one NUMA node).
+By distributing CPUs evenly across NUMA nodes, application developers can more
+easily ensure that no single worker suffers from NUMA effects more than any
+other, improving the overall performance of these types of applications.
+-->
+如果使用 `distribute-cpus-across-numa` 策略选项，
+在需要多个 NUMA 节点来满足分配的情况下，
+static 策略会在 NUMA 节点上平均分配 CPU。
+默认情况下，`CPUManager` 会将 CPU 分配到一个 NUMA 节点上，直到它被填满，
+剩余的 CPU 会简单地溢出到下一个 NUMA 节点。
+这会导致依赖于同步屏障（以及类似的同步原语）的并行代码出现不期望的瓶颈，
+因为此类代码的运行速度往往取决于最慢的工作线程
+（由于至少一个 NUMA 节点存在可用 CPU 较少的情况，因此速度变慢）。
+通过在 NUMA 节点上平均分配 CPU，
+应用程序开发人员可以更轻松地确保没有某个工作线程单独受到 NUMA 影响，
+从而提高这些类型应用程序的整体性能。
+
+<!--
+The `full-pcpus-only` option can be enabled by adding `full-pcups-only=true` to
+the CPUManager policy options.
+Likewise, the `distribute-cpus-across-numa` option can be enabled by adding
+`distribute-cpus-across-numa=true` to the CPUManager policy options.
+When both are set, they are "additive" in the sense that CPUs will be
+distributed across NUMA nodes in chunks of full-pcpus rather than individual
+cores.
+-->
+可以通过将 `full-pcups-only=true` 添加到 CPUManager 策略选项来启用 `full-pcpus-only` 选项。
+同样地，可以通过将 `distribute-cpus-across-numa=true`
+添加到 CPUManager 策略选项来启用 `distribute-cpus-across-numa` 选项。
+当两者都设置时，它们是“累加的”，因为 CPU 将分布在 NUMA 节点的 full-pcpus 块中，
+而不是单个核心。
diff --git a/content/zh/docs/tasks/administer-cluster/declare-network-policy.md b/content/zh-cn/docs/tasks/administer-cluster/declare-network-policy.md
similarity index 86%
rename from content/zh/docs/tasks/administer-cluster/declare-network-policy.md
rename to content/zh-cn/docs/tasks/administer-cluster/declare-network-policy.md
index 69454747d2..22615f9bca 100644
--- a/content/zh/docs/tasks/administer-cluster/declare-network-policy.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/declare-network-policy.md
@@ -18,7 +18,7 @@ content_type: task
 This document helps you get started using the Kubernetes [NetworkPolicy API](/docs/concepts/services-networking/network-policies/) to declare network policies that govern how pods communicate with each other.
 -->
 本文可以帮助你开始使用 Kubernetes 的
-[NetworkPolicy API](/zh/docs/concepts/services-networking/network-policies/)
+[NetworkPolicy API](/zh-cn/docs/concepts/services-networking/network-policies/)
 声明网络策略去管理 Pod 之间的通信
 
 {{% thirdparty-content %}}
@@ -30,6 +30,7 @@ This document helps you get started using the Kubernetes [NetworkPolicy API](/do
 <!--
 Make sure you've configured a network provider with network policy support. There are a number of network providers that support NetworkPolicy, including:
 
+* [Antrea](/docs/tasks/administer-cluster/network-policy-provider/antrea-network-policy/)
 * [Calico](/docs/tasks/administer-cluster/network-policy-provider/calico-network-policy/)
 * [Cilium](/docs/tasks/administer-cluster/network-policy-provider/cilium-network-policy/)
 * [Kube-router](/docs/tasks/administer-cluster/network-policy-provider/kube-router-network-policy/)
@@ -38,11 +39,12 @@ Make sure you've configured a network provider with network policy support. Ther
 -->
 你首先需要有一个支持网络策略的 Kubernetes 集群。已经有许多支持 NetworkPolicy 的网络提供商，包括：
 
-* [Calico](/zh/docs/tasks/administer-cluster/network-policy-provider/calico-network-policy/)
-* [Cilium](/zh/docs/tasks/administer-cluster/network-policy-provider/cilium-network-policy/)
-* [Kube-router](/zh/docs/tasks/administer-cluster/network-policy-provider/kube-router-network-policy/)
-* [Romana](/zh/docs/tasks/administer-cluster/network-policy-provider/romana-network-policy/)
-* [Weave 网络](/zh/docs/tasks/administer-cluster/network-policy-provider/weave-network-policy/)
+* [Antrea](/zh-cn/docs/tasks/administer-cluster/network-policy-provider/antrea-network-policy/)
+* [Calico](/zh-cn/docs/tasks/administer-cluster/network-policy-provider/calico-network-policy/)
+* [Cilium](/zh-cn/docs/tasks/administer-cluster/network-policy-provider/cilium-network-policy/)
+* [Kube-router](/zh-cn/docs/tasks/administer-cluster/network-policy-provider/kube-router-network-policy/)
+* [Romana](/zh-cn/docs/tasks/administer-cluster/network-policy-provider/romana-network-policy/)
+* [Weave 网络](/zh-cn/docs/tasks/administer-cluster/network-policy-provider/weave-network-policy/)
 
 <!-- steps -->
 
@@ -106,7 +108,7 @@ You should be able to access the new `nginx` service from other Pods. To access
 要从 default 命名空间中的其它s Pod 来访问该服务。可以启动一个 busybox 容器：
 
 ```shell
-kubectl run busybox --rm -ti --image=busybox /bin/sh
+kubectl run busybox --rm -ti --image=busybox:1.28 /bin/sh
 ```
 
 <!--
@@ -140,7 +142,7 @@ The name of a NetworkPolicy object must be a valid
 [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 -->
 NetworkPolicy 对象的名称必须是一个合法的
-[DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 
 <!--
 NetworkPolicy includes a `podSelector` which selects the grouping of Pods to which the policy applies. You can see this policy selects Pods with the label `app=nginx`. The label was automatically added to the Pod in the `nginx` Deployment. An empty `podSelector` selects all pods in the namespace.
@@ -178,7 +180,7 @@ When you attempt to access the `nginx` Service from a Pod without the correct la
 如果你尝试从没有设定正确标签的 Pod 中去访问 `nginx` 服务，请求将会超时：
 
 ```shell
-kubectl run busybox --rm -ti --image=busybox -- /bin/sh
+kubectl run busybox --rm -ti --image=busybox:1.28 -- /bin/sh
 ```
 
 <!--
@@ -205,7 +207,7 @@ You can create a Pod with the correct labels to see that the request is allowed:
 创建一个拥有正确标签的 Pod，你将看到请求是被允许的：
 
 ```shell
-kubectl run busybox --rm -ti --labels="access=true" --image=busybox -- /bin/sh
+kubectl run busybox --rm -ti --labels="access=true" --image=busybox:1.28 -- /bin/sh
 ```
 <!--
 In your shell, run the command:
diff --git a/content/zh/docs/tasks/administer-cluster/developing-cloud-controller-manager.md b/content/zh-cn/docs/tasks/administer-cluster/developing-cloud-controller-manager.md
similarity index 63%
rename from content/zh/docs/tasks/administer-cluster/developing-cloud-controller-manager.md
rename to content/zh-cn/docs/tasks/administer-cluster/developing-cloud-controller-manager.md
index 0a9dae2eb4..8aff94ac8f 100644
--- a/content/zh/docs/tasks/administer-cluster/developing-cloud-controller-manager.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/developing-cloud-controller-manager.md
@@ -16,7 +16,7 @@ content_type: concept
 
 {{< feature-state for_k8s_version="v1.11" state="beta" >}}
 
-{{< glossary_definition term_id="cloud-controller-manager" length="all" prepend="组件 cloud-controller-manager 是">}}
+{{< glossary_definition term_id="cloud-controller-manager" length="all">}}
 
 <!-- body -->
 
@@ -27,44 +27,43 @@ Since cloud providers develop and release at a different pace compared to the Ku
 -->
 ## 背景
 
-由于云驱动的开发和发布与 Kubernetes 项目本身步调不同，将特定于云环境
-的代码抽象到 `cloud-controller-manager` 二进制组件有助于云厂商独立于
-Kubernetes 核心代码推进其驱动开发。
+由于云驱动的开发和发布与 Kubernetes 项目本身步调不同，将特定于云环境的代码抽象到
+`cloud-controller-manager` 二进制组件有助于云厂商独立于 Kubernetes
+核心代码推进其驱动开发。
 
 <!--
 The Kubernetes project provides skeleton cloud-controller-manager code with Go interfaces to allow you (or your cloud provider) to plug in your own implementations. This means that a cloud provider can implement a cloud-controller-manager by importing packages from Kubernetes core; each cloudprovider will register their own code by calling `cloudprovider.RegisterCloudProvider` to update a global variable of available cloud providers.
 -->
-Kubernetes 项目提供 cloud-controller-manager 的框架代码，其中包含 Go
-语言的接口，便于你（或者你的云驱动提供者）接驳你自己的实现。
-这意味着每个云驱动可以通过从 Kubernetes 核心代码导入软件包来实现一个
-cloud-controller-manager；每个云驱动会通过调用
-`cloudprovider.RegisterCloudProvider` 接口来注册其自身实现代码，从而更新
-记录可用云驱动的全局变量。
+Kubernetes 项目提供 cloud-controller-manager 的框架代码，其中包含 Go 语言的接口，
+便于你（或者你的云驱动提供者）接驳你自己的实现。这意味着每个云驱动可以通过从
+Kubernetes 核心代码导入软件包来实现一个 cloud-controller-manager；
+每个云驱动会通过调用 `cloudprovider.RegisterCloudProvider` 接口来注册其自身实现代码，
+从而更新一个用来记录可用云驱动的全局变量。
 
 <!--
 ## Developing
 -->
 ## 开发
 
-### Out of Tree
+### 树外（Out of Tree）
 
 <!--
 To build an out-of-tree cloud-controller-manager for your cloud, follow these steps:
 -->
-要为你的云环境构建一个 out-of-tree 云控制器管理器：
+要为你的云环境构建一个树外（Out-of-Tree）云控制器管理器：
 
 <!--
-1. Create a go package with an implementation that satisfies [cloudprovider.Interface](https://git.k8s.io/kubernetes/pkg/cloudprovider/cloud.go).
+1. Create a go package with an implementation that satisfies [cloudprovider.Interface](https://github.com/kubernetes/cloud-provider/blob/master/cloud.go).
 2. Use [main.go in cloud-controller-manager](https://github.com/kubernetes/kubernetes/blob/master/cmd/cloud-controller-manager/main.go) from Kubernetes core as a template for your main.go. As mentioned above, the only difference should be the cloud package that will be imported.
-3. Import your cloud package in `main.go`, ensure your package has an `init` block to run [cloudprovider.RegisterCloudProvider](https://github.com/kubernetes/kubernetes/blob/master/pkg/cloudprovider/plugins.go#L42-L52).
+3. Import your cloud package in `main.go`, ensure your package has an `init` block to run [cloudprovider.RegisterCloudProvider](https://github.com/kubernetes/cloud-provider/blob/master/plugins.go).
 -->
-1. 使用满足 [cloudprovider.Interface](https://git.k8s.io/kubernetes/pkg/cloudprovider/cloud.go)
-   的实现创建一个 Go 语言包。
+1. 使用满足 [`cloudprovider.Interface`](https://github.com/kubernetes/cloud-provider/blob/master/cloud.go)
+   接口的实现来创建一个 Go 语言包。
 2. 使用来自 Kubernetes 核心代码库的
    [cloud-controller-manager 中的 main.go](https://github.com/kubernetes/kubernetes/blob/master/cmd/cloud-controller-manager/main.go)
-   作为 main.go 的模板。如上所述，唯一的区别应该是将导入的云包。
+   作为 `main.go` 的模板。如上所述，唯一的区别应该是将导入的云包不同。
 3. 在 `main.go` 中导入你的云包，确保你的包有一个 `init` 块来运行
-   [cloudprovider.RegisterCloudProvider](https://github.com/kubernetes/kubernetes/blob/master/pkg/cloudprovider/plugins.go#L42-L52)。
+   [`cloudprovider.RegisterCloudProvider`](https://github.com/kubernetes/cloud-provider/blob/master/plugins.go)。
 
 <!--
 Many cloud providers publish their controller manager code as open source. If you are creating
@@ -72,15 +71,15 @@ a new cloud-controller-manager from scratch, you could take an existing out-of-t
 controller manager as your starting point.
 -->
 很多云驱动都将其控制器管理器代码以开源代码的形式公开。
-如果你在开发一个新的 cloud-controller-manager，你可以选择某个 out-of-tree
+如果你在开发一个新的 cloud-controller-manager，你可以选择某个树外（Out-of-Tree）
 云控制器管理器作为出发点。
 
-### In Tree
+### 树内（In Tree）
 
 <!--
 For in-tree cloud providers, you can run the in-tree cloud controller manager as a {{< glossary_tooltip term_id="daemonset" >}} in your cluster. See [Cloud Controller Manager Administration](/docs/tasks/administer-cluster/running-cloud-controller/) for more details.
 -->
-对于 in-tree 驱动，你可以将 in-tree 云控制器管理器作为群集中的
-{{< glossary_tooltip term_id="daemonset" text="Daemonset" >}} 来运行。
-有关详细信息，请参阅[云控制器管理器管理](/zh/docs/tasks/administer-cluster/running-cloud-controller/)。
+对于树内（In-Tree）驱动，你可以将树内云控制器管理器作为集群中的
+{{< glossary_tooltip term_id="daemonset" text="DaemonSet" >}} 来运行。
+有关详细信息，请参阅[云控制器管理器管理](/zh-cn/docs/tasks/administer-cluster/running-cloud-controller/)。
 
diff --git a/content/zh/docs/tasks/administer-cluster/dns-custom-nameservers.md b/content/zh-cn/docs/tasks/administer-cluster/dns-custom-nameservers.md
similarity index 91%
rename from content/zh/docs/tasks/administer-cluster/dns-custom-nameservers.md
rename to content/zh-cn/docs/tasks/administer-cluster/dns-custom-nameservers.md
index 386809548b..883324ab11 100644
--- a/content/zh/docs/tasks/administer-cluster/dns-custom-nameservers.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/dns-custom-nameservers.md
@@ -30,7 +30,7 @@ Your cluster must be running the CoreDNS add-on.
 explains how to use `kubeadm` to migrate from `kube-dns`.
 -->
 你的集群必须运行 CoreDNS 插件。
-文档[迁移到 CoreDNS](/zh/docs/tasks/administer-cluster/coredns/#migrating-to-coredns)
+文档[迁移到 CoreDNS](/zh-cn/docs/tasks/administer-cluster/coredns/#migrating-to-coredns)
 解释了如何使用 `kubeadm` 从 `kube-dns` 迁移到 CoreDNS。
 
 <!-- steps -->
@@ -40,11 +40,11 @@ explains how to use `kubeadm` to migrate from `kube-dns`.
 
 DNS is a built-in Kubernetes service launched automatically
 using the addon manager
-[cluster add-on](https://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/README.md). 
+[cluster add-on](http://releases.k8s.io/master/cluster/addons/README.md). 
 -->
 ## 介绍
 
-DNS 是使用[集群插件](https://releases.k8s.io/{{< param "githubbranch" >}}/cluster/addons/README.md)
+DNS 是使用[集群插件](http://releases.k8s.io/master/cluster/addons/README.md)
 管理器自动启动的内置的 Kubernetes 服务。
 
 <!-- 
@@ -55,11 +55,11 @@ originally used kube-dns, you may still have `kube-dns` deployed rather than Cor
 你的集群原来使用 kube-dns，你可能部署的仍然是 `kube-dns` 而不是 CoreDNS。
 
 <!--
-Both the CoreDNS and kube-dns Service are named `kube-dns` in the `metadata.name` field.  
+The CoreDNS Service is named `kube-dns` in the `metadata.name` field.  
 This is so that there is greater interoperability with workloads that relied on the legacy `kube-dns` Service name to resolve addresses internal to the cluster. Using a Service named `kube-dns` abstracts away the implementation detail of which DNS provider is running behind that common name.
 -->
 {{< note >}}
-CoreDNS 和 kube-dns 的 Service 都在其 `metadata.name` 字段使用名字 `kube-dns`。
+CoreDNS 服务在其 `metadata.name` 字段被命名为 `kube-dns`。
 这是为了能够与依靠传统 `kube-dns` 服务名称来解析集群内部地址的工作负载具有更好的互操作性。
 使用 `kube-dns` 作为服务名称可以抽离共有名称之后运行的是哪个 DNS 提供程序这一实现细节。
 {{< /note >}}
@@ -84,7 +84,7 @@ The DNS server supports forward lookups (A and AAAA records), port lookups (SRV
 and more. For more information, see [DNS for Services and Pods](/docs/concepts/services-networking/dns-pod-service/).
 -->
 DNS 服务器支持正向查找（A 和 AAAA 记录）、端口发现（SRV 记录）、反向 IP 地址发现（PTR 记录）等。
-更多信息，请参见[Pod 和 服务的 DNS](/zh/docs/concepts/services-networking/dns-pod-service/)。
+更多信息，请参见[Pod 和 服务的 DNS](/zh-cn/docs/concepts/services-networking/dns-pod-service/)。
 
 <!-- 
 If a Pod's `dnsPolicy` is set to "`default`", it inherits the name resolution
@@ -94,7 +94,7 @@ But see [Known issues](/docs/tasks/administer-cluster/dns-debugging-resolution/#
 -->
 如果 Pod 的 `dnsPolicy` 设置为 "`default`"，则它将从 Pod 运行所在节点继承名称解析配置。
 Pod 的 DNS 解析行为应该与节点相同。
-但请参阅[已知问题](/zh/docs/tasks/administer-cluster/dns-debugging-resolution/#known-issues)。
+但请参阅[已知问题](/zh-cn/docs/tasks/administer-cluster/dns-debugging-resolution/#known-issues)。
 
 <!-- 
 If you don't want this, or if you want a different DNS config for pods, you can
@@ -304,27 +304,23 @@ During translation, all FQDN nameservers will be omitted from the CoreDNS config
 
 CoreDNS supports the features of kube-dns and more.
 A ConfigMap created for kube-dns to support `StubDomains`and `upstreamNameservers` translates to the `proxy` plugin in CoreDNS.
-Similarly, the `Federations` plugin in kube-dns translates to the `federation` plugin in CoreDNS.
 
 ### Example
 
-This example ConfigMap for kubedns specifies federations, stubdomains and upstreamnameservers: 
+This example ConfigMap for kube-dns specifies stubdomains and upstreamnameservers: 
 -->
 ## CoreDNS 配置等同于 kube-dns
 
 CoreDNS 不仅仅提供 kube-dns 的功能。
 为 kube-dns 创建的 ConfigMap 支持 `StubDomains` 和 `upstreamNameservers` 转换为 CoreDNS 中的 `forward` 插件。
-同样，kube-dns 中的 `Federations` 插件会转换为 CoreDNS 中的 `federation` 插件。
 
 ### 示例
 
-用于 kubedns 的此示例 ConfigMap 描述了 federations、stubdomains and upstreamnameservers：
+用于 kubedns 的此示例 ConfigMap 描述了 stubdomains 和 upstreamnameservers：
 
 ```yaml
 apiVersion: v1
 data:
-  federations: |
-    {"foo" : "foo.feddomain.com"}
   stubDomains: |
     {"abc.com" : ["1.2.3.4"], "my.cluster.local" : ["2.3.4.5"]}
   upstreamNameservers: |
@@ -337,14 +333,6 @@ The equivalent configuration in CoreDNS creates a Corefile:
 -->
 CoreDNS 中的等效配置将创建一个 Corefile：
 
-* 针对 federations:
-
-  ```yaml
-  federation cluster.local {
-      foo foo.feddomain.com
-  }
-  ```
-
 * 针对 stubDomains:
 
   ```yaml
@@ -411,5 +399,5 @@ A cluster administrator can also migrate using [the deploy script](https://githu
 <!--
 - Read [Debugging DNS Resolution](/docs/tasks/administer-cluster/dns-debugging-resolution/).
 -->
-- 阅读[调试 DNS 解析](/zh/docs/tasks/administer-cluster/dns-debugging-resolution/)
+- 阅读[调试 DNS 解析](/zh-cn/docs/tasks/administer-cluster/dns-debugging-resolution/)
 
diff --git a/content/zh/docs/tasks/administer-cluster/dns-custom-nameservers/dns.png b/content/zh-cn/docs/tasks/administer-cluster/dns-custom-nameservers/dns.png
similarity index 100%
rename from content/zh/docs/tasks/administer-cluster/dns-custom-nameservers/dns.png
rename to content/zh-cn/docs/tasks/administer-cluster/dns-custom-nameservers/dns.png
diff --git a/content/zh/docs/tasks/administer-cluster/dns-debugging-resolution.md b/content/zh-cn/docs/tasks/administer-cluster/dns-debugging-resolution.md
similarity index 75%
rename from content/zh/docs/tasks/administer-cluster/dns-debugging-resolution.md
rename to content/zh-cn/docs/tasks/administer-cluster/dns-debugging-resolution.md
index 701974965d..74269956a0 100644
--- a/content/zh/docs/tasks/administer-cluster/dns-debugging-resolution.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/dns-debugging-resolution.md
@@ -54,8 +54,9 @@ busybox   1/1       Running   0          <some-time>
 {{< codenew file="admin/dns/dnsutils.yaml" >}}
 
 {{< note >}}
-此示例在 `default` 命名空间创建 pod。 服务的 DNS 名字解析取决于 pod 的命名空间。 详细信息请查阅
-[服务和 Pod 的 DNS](/zh/docs/concepts/services-networking/dns-pod-service/#what-things-get-dns-names)。
+此示例在 `default` 名字空间创建 Pod。
+服务的 DNS 名字解析取决于 Pod 的名字空间。
+详细信息请查阅 [Pod 与 Service 的 DNS](/zh-cn/docs/concepts/services-networking/dns-pod-service/#what-things-get-dns-names)。
 {{< /note >}}
 
 使用上面的清单来创建一个 Pod：
@@ -92,6 +93,9 @@ If you see something like the following, DNS is working correctly.
 ```shell
 kubectl exec -i -t dnsutils -- nslookup kubernetes.default
 ```
+
+输出为：
+
 ```
 Server:    10.0.0.10
 Address 1: 10.0.0.10
@@ -109,13 +113,13 @@ If the `nslookup` command fails, check the following:
 ### Check the local DNS configuration first
 
 Take a look inside the resolv.conf file.
-(See [Inheriting DNS from the node](/docs/tasks/administer-cluster/dns-custom-nameservers/#inheriting-dns-from-the-node) and
+(See [Customizing DNS Service](/docs/tasks/administer-cluster/dns-custom-nameservers) and
 [Known issues](#known-issues) below for more information)
 -->
 ### 先检查本地的 DNS 配置
 
 查看 resolv.conf 文件的内容
-（阅读[从节点继承 DNS 配置](/zh/docs/tasks/administer-cluster/dns-custom-nameservers/) 和
+（阅读[定制 DNS 服务](/zh-cn/docs/tasks/administer-cluster/dns-custom-nameservers/) 和
 后文的[已知问题](#known-issues) ，获取更多信息)
 
 ```shell
@@ -156,6 +160,12 @@ nslookup: can't resolve 'kubernetes.default'
 
 或者
 
+```shell
+kubectl exec -i -t dnsutils -- nslookup kubernetes.default
+```
+
+输出为：
+
 ```
 Server:    10.0.0.10
 Address 1: 10.0.0.10 kube-dns.kube-system.svc.cluster.local
@@ -176,6 +186,8 @@ Use the `kubectl get pods` command to verify that the DNS pod is running.
 kubectl get pods --namespace=kube-system -l k8s-app=kube-dns
 ```
 
+输出为：
+
 ```
 NAME                       READY     STATUS    RESTARTS   AGE
 ...
@@ -197,7 +209,7 @@ the DNS add-on may not be deployed by default in your current environment and yo
 will have to deploy it manually.
 -->
 如果你发现没有 CoreDNS Pod 在运行，或者该 Pod 的状态是 failed 或者 completed，
-那可能这个 DNS 插件在您当前的环境里并没有成功部署，你将需要手动去部署它。
+那可能这个 DNS 插件在你当前的环境里并没有成功部署，你将需要手动去部署它。
 
 <!--
 ### Check for Errors in the DNS pod
@@ -208,6 +220,11 @@ Use `kubectl logs` command to see logs for the DNS containers.
 
 使用 `kubectl logs` 命令来查看 DNS 容器的日志信息。
 
+<!--
+For CoreDNS:
+-->
+如查看 CoreDNS 的日志信息：
+
 ```shell
 kubectl logs --namespace=kube-system -l k8s-app=kube-dns
 ```
@@ -244,6 +261,8 @@ Verify that the DNS service is up by using the `kubectl get service` command.
 kubectl get svc --namespace=kube-system
 ```
 
+输出为：
+
 ```
 NAME         TYPE        CLUSTER-IP     EXTERNAL-IP   PORT(S)             AGE
 ...
@@ -262,11 +281,11 @@ The service name is `kube-dns` for both CoreDNS and kube-dns deployments.
 <!--
 If you have created the Service or in the case it should be created by default
 but it does not appear, see
-[debugging Services](/docs/tasks/debug-application-cluster/debug-service/) for
+[debugging Services](/docs/tasks/debug/debug-application/debug-service/) for
 more information.
 -->
 如果你已经创建了 DNS 服务，或者该服务应该是默认自动创建的但是它并没有出现，
-请阅读[调试服务](/zh/docs/tasks/debug-application-cluster/debug-service/)
+请阅读[调试服务](/zh-cn/docs/tasks/debug/debug-application/debug-service/)
 来获取更多信息。
 
 <!--
@@ -280,7 +299,7 @@ command.
 你可以使用 `kubectl get endpoints` 命令来验证 DNS 的端点是否公开了。
 
 ```shell
-kubectl get ep kube-dns --namespace=kube-system
+kubectl get endpoints kube-dns --namespace=kube-system
 ```
 
 ```
@@ -290,14 +309,14 @@ kube-dns   10.180.3.17:53,10.180.3.17:53    1h
 
 <!--
 If you do not see the endpoints, see endpoints section in the
-[debugging services](/docs/tasks/debug-application-cluster/debug-service/) documentation.
+[debugging services](/docs/tasks/debug/debug-application/debug-service/) documentation.
 
 For additional Kubernetes DNS examples, see the
 [cluster-dns examples](https://github.com/kubernetes/examples/tree/master/staging/cluster-dns)
 in the Kubernetes GitHub repository.
 -->
 如果你没看到对应的端点，请阅读
-[调试服务](/zh/docs/tasks/debug-application-cluster/debug-service/)的端点部分。
+[调试服务](/zh-cn/docs/tasks/debug/debug-application/debug-service/)的端点部分。
 
 若需要了解更多的 Kubernetes DNS 例子，请在 Kubernetes GitHub 仓库里查看
 [cluster-dns 示例](https://github.com/kubernetes/examples/tree/master/staging/cluster-dns)。 
@@ -306,12 +325,13 @@ in the Kubernetes GitHub repository.
 ### Are DNS queries being received/processed?
 
 You can verify if queries are being received by CoreDNS by adding the `log` plugin to the CoreDNS configuration (aka Corefile).
-The CoreDNS Corefile is held in a ConfigMap named `coredns`. To edit it, use the command ...
+The CoreDNS Corefile is held in a {{< glossary_tooltip text="ConfigMap" term_id="configmap" >}} named `coredns`. To edit it, use the command:
 -->
 ### DNS 查询有被接收或者执行吗？   {#are-dns-queries-bing-received-processed}
 
 你可以通过给 CoreDNS 的配置文件（也叫 Corefile）添加 `log` 插件来检查查询是否被正确接收。
-CoreDNS 的 Corefile 被保存在一个叫 `coredns` 的 ConfigMap 里，使用下列命令来编辑它：
+CoreDNS 的 Corefile 被保存在一个叫 `coredns` 的
+{{< glossary_tooltip text="ConfigMap" term_id="configmap" >}} 里，使用下列命令来编辑它：
 
 ```shell
 kubectl -n kube-system edit configmap coredns
@@ -374,6 +394,74 @@ linux/amd64, go1.10.3, 2e322f6
 2018/09/07 15:29:04 [INFO] Reloading complete
 172.17.0.18:41675 - [07/Sep/2018:15:29:11 +0000] 59925 "A IN kubernetes.default.svc.cluster.local. udp 54 false 512" NOERROR qr,aa,rd,ra 106 0.000066649s
 
+```
+<!--
+### Does CoreDNS have sufficient permissions?
+
+CoreDNS must be able to list {{< glossary_tooltip text="service"
+term_id="service" >}} and {{< glossary_tooltip text="endpoint"
+term_id="endpoint" >}} related resources to properly resolve service names.
+
+Sample error message:
+-->
+### CoreDNS 是否有足够的权限？
+
+CoreDNS 必须能够列出 {{< glossary_tooltip text="service" term_id="service" >}} 和
+{{< glossary_tooltip text="endpoint" term_id="endpoint" >}} 相关的资源来正确解析服务名称。
+
+示例错误消息：
+```
+2022-03-18T07:12:15.699431183Z [INFO] 10.96.144.227:52299 - 3686 "A IN serverproxy.contoso.net.cluster.local. udp 52 false 512" SERVFAIL qr,aa,rd 145 0.000091221s
+```
+
+<!--
+First, get the current ClusterRole of `system:coredns`:
+-->
+首先，获取当前的 ClusterRole `system:coredns`：
+
+```shell
+kubectl describe clusterrole system:coredns -n kube-system
+```
+
+<!--
+Expected output:
+-->
+预期输出：
+```
+PolicyRule:
+  Resources                        Non-Resource URLs  Resource Names  Verbs
+  ---------                        -----------------  --------------  -----
+  nodes                            []                 []              [get]
+  endpoints                        []                 []              [list watch]
+  namespaces                       []                 []              [list watch]
+  pods                             []                 []              [list watch]
+  services                         []                 []              [list watch]
+  endpointslices.discovery.k8s.io  []                 []              [list watch]
+```
+
+<!--
+If any permissions are missing, edit the ClusterRole to add them:
+-->
+如果缺少任何权限，请编辑 ClusterRole 来添加它们：
+
+```shell
+kubectl edit clusterrole system:coredns -n kube-system
+```
+
+<!--
+Example insertion of EndpointSlices permissions:
+-->
+EndpointSlices 权限的插入示例：
+```
+...
+- apiGroups:
+  - discovery.k8s.io
+  resources:
+  - endpointslices
+  verbs:
+  - list
+  - watch
+...
 ```
 
 <!--
@@ -386,28 +474,22 @@ If the namespace of the pod and service differ, the DNS query must include
 the namespace of the service.
 
 This query is limited to the pod's namespace:
-```shell
-kubectl exec -i -t dnsutils -- nslookup <service-name>
-```
 -->
-### 你的服务在正确的命名空间中吗？
+### 你的服务在正确的名字空间中吗？
 
-未指定命名空间的 DNS 查询仅作用于 pod 所在的命名空间。
+未指定名字空间的 DNS 查询仅作用于 Pod 所在的名字空间。
 
-如果 pod 和服务的命名空间不相同，则 DNS 查询必须指定服务所在的命名空间。
+如果 Pod 和服务的名字空间不相同，则 DNS 查询必须指定服务所在的名字空间。
 
-该查询仅限于 pod 所在的名称空间：
+该查询仅限于 Pod 所在的名字空间：
 ```shell
 kubectl exec -i -t dnsutils -- nslookup <service-name>
 ```
 
 <!--
 This query specifies the namespace:
-```shell
-kubectl exec -i -t dnsutils -- nslookup <service-name>.<namespace>
-```
 -->
-指定命名空间的查询：
+指定名字空间的查询：
 ```shell
 kubectl exec -i -t dnsutils -- nslookup <service-name>.<namespace>
 ```
@@ -417,7 +499,7 @@ To learn more about name resolution, see
 [DNS for Services and Pods](/docs/concepts/services-networking/dns-pod-service/#what-things-get-dns-names). 
 -->
 要进一步了解名字解析，请查看
-[服务和 Pod 的 DNS](/zh/docs/concepts/services-networking/dns-pod-service/#what-things-get-dns-names)。
+[Pod 与 Service 的 DNS](/zh-cn/docs/concepts/services-networking/dns-pod-service/#what-things-get-dns-names)。
 
 <!--
 ## Known issues
@@ -471,22 +553,30 @@ Kubernetes 需要占用一个 `nameserver` 记录和三个`search`记录。
 要想修复 DNS `search` 记录个数限制问题，可以考虑升级你的 Linux 发行版本，或者
 升级 glibc 到一个不再受此困扰的版本。
 
+{{< note >}}
+<!--
+With [Expanded DNS Configuration](/docs/concepts/services-networking/dns-pod-service/#expanded-dns-configuration),
+Kubernetes allows more DNS `search` records.
+-->
+使用[扩展 DNS 设置](/zh-cn/docs/concepts/services-networking/dns-pod-service/#expanded-dns-configuration)，
+Kubernetes 允许更多的 `search` 记录。
+{{< /note >}}
 <!--
 If you are using Alpine version 3.3 or earlier as your base image, DNS may not
 work properly owing to a known issue with Alpine.
 Check [here](https://github.com/kubernetes/kubernetes/issues/30215)
 for more information.
 -->
-如果你使用 Alpine  3.3 或更早版本作为你的基础镜像，DNS 可能会由于 Alpine 中
+如果你使用 Alpine 3.3 或更早版本作为你的基础镜像，DNS 可能会由于 Alpine 中
 一个已知的问题导致无法正常工作。
 请查看[这里](https://github.com/kubernetes/kubernetes/issues/30215)获取更多信息。
 
 ## {{% heading "whatsnext" %}}
 
 <!--
-- [Autoscaling the DNS Service in a Cluster](/docs/tasks/administer-cluster/dns-horizontal-autoscaling/).
-- [DNS for Services and Pods](/docs/concepts/services-networking/dns-pod-service/)
+- See [Autoscaling the DNS Service in a Cluster](/docs/tasks/administer-cluster/dns-horizontal-autoscaling/).
+- Read [DNS for Services and Pods](/docs/concepts/services-networking/dns-pod-service/)
 -->
-- 参阅[自动扩缩集群中的 DNS 服务](/zh/docs/tasks/administer-cluster/dns-horizontal-autoscaling/).
-- 阅读[服务和 Pod 的 DNS](/zh/docs/concepts/services-networking/dns-pod-service/)
+- 参阅[自动扩缩集群中的 DNS 服务](/zh-cn/docs/tasks/administer-cluster/dns-horizontal-autoscaling/).
+- 阅读 [Pod 与 Service 的 DNS](/zh-cn/docs/concepts/services-networking/dns-pod-service/)
 
diff --git a/content/zh/docs/tasks/administer-cluster/dns-horizontal-autoscaling.md b/content/zh-cn/docs/tasks/administer-cluster/dns-horizontal-autoscaling.md
similarity index 98%
rename from content/zh/docs/tasks/administer-cluster/dns-horizontal-autoscaling.md
rename to content/zh-cn/docs/tasks/administer-cluster/dns-horizontal-autoscaling.md
index b9face566f..ca19912cdc 100644
--- a/content/zh/docs/tasks/administer-cluster/dns-horizontal-autoscaling.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/dns-horizontal-autoscaling.md
@@ -27,7 +27,7 @@ Kubernetes cluster.
 -->
 * 本指南假设你的节点使用 AMD64 或 Intel 64 CPU 架构
 
-* 确保已启用 [DNS 功能](/zh/docs/concepts/services-networking/dns-pod-service/)本身。
+* 确保已启用 [DNS 功能](/zh-cn/docs/concepts/services-networking/dns-pod-service/)本身。
 
 * 建议使用 Kubernetes 1.4.0 或更高版本。
 
@@ -412,6 +412,6 @@ patterns: *linear* and *ladder*.
 [implementation of cluster-proportional-autoscaler](https://github.com/kubernetes-sigs/cluster-proportional-autoscaler).
 
 -->
-* 阅读[为关键插件 Pod 提供的调度保障](/zh/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/)
+* 阅读[为关键插件 Pod 提供的调度保障](/zh-cn/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/)
 * 进一步了解 [cluster-proportional-autoscaler 实现](https://github.com/kubernetes-sigs/cluster-proportional-autoscaler)
 
diff --git a/content/zh/docs/tasks/administer-cluster/enable-disable-api.md b/content/zh-cn/docs/tasks/administer-cluster/enable-disable-api.md
similarity index 86%
rename from content/zh/docs/tasks/administer-cluster/enable-disable-api.md
rename to content/zh-cn/docs/tasks/administer-cluster/enable-disable-api.md
index 5e2fc48059..c1eb5ec970 100644
--- a/content/zh/docs/tasks/administer-cluster/enable-disable-api.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/enable-disable-api.md
@@ -38,14 +38,14 @@ The `runtime-config` command line argument also supports 2 special keys:
 <!-- 
 - `api/all`, representing all known APIs
 - `api/legacy`, representing only legacy APIs. Legacy APIs are any APIs that have been
-   explicitly [deprecated](/zh/docs/reference/using-api/deprecation-policy/).
+   explicitly [deprecated](/zh-cn/docs/reference/using-api/deprecation-policy/).
 
 For example, to turning off all API versions except v1, pass `--runtime-config=api/all=false,api/v1=true`
 to the `kube-apiserver`.
 -->
 - `api/all`：指所有已知的 API
 - `api/legacy`：指过时的 API。过时的 API 就是明确地
-  [弃用](/zh/docs/reference/using-api/deprecation-policy/)
+  [弃用](/zh-cn/docs/reference/using-api/deprecation-policy/)
   的 API。
 
 例如：为了停用除去 v1 版本之外的全部其他 API 版本，
@@ -57,5 +57,5 @@ to the `kube-apiserver`.
 Read the [full documentation](/docs/reference/command-line-tools-reference/kube-apiserver/)
 for the `kube-apiserver` component.
 -->
-阅读[完整的文档](/zh/docs/reference/command-line-tools-reference/kube-apiserver/),
+阅读[完整的文档](/zh-cn/docs/reference/command-line-tools-reference/kube-apiserver/),
 以了解 `kube-apiserver` 组件。
\ No newline at end of file
diff --git a/content/zh-cn/docs/tasks/administer-cluster/enabling-service-topology.md b/content/zh-cn/docs/tasks/administer-cluster/enabling-service-topology.md
new file mode 100644
index 0000000000..c646046c05
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/enabling-service-topology.md
@@ -0,0 +1,83 @@
+---
+title: 开启服务拓扑
+content_type: task
+min-kubernetes-server-version: 1.17
+---
+
+<!-- overview -->
+{{< feature-state for_k8s_version="v1.21" state="deprecated" >}}
+<!--
+This feature, specifically the alpha `topologyKeys` field, is deprecated since
+Kubernetes v1.21.
+[Topology Aware Hints](/docs/concepts/services-networking/topology-aware-hints/),
+introduced in Kubernetes v1.21, provide similar functionality.
+-->
+这项功能，特别是 Alpha 状态的 `topologyKeys` 字段，在 kubernetes v1.21 中已经弃用。
+在 kubernetes v1.21 加入的[拓扑感知提示](/zh-cn/docs/concepts/services-networking/topology-aware-hints/)
+提供了类似的功能。
+
+## {{% heading "prerequisites" %}}
+
+  {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+
+<!--
+_Service Topology_ enables a {{< glossary_tooltip term_id="service">}} to route traffic based upon the Node
+topology of the cluster. For example, a service can specify that traffic be
+preferentially routed to endpoints that are on the same Node as the client, or
+in the same availability zone.
+-->
+
+_服务拓扑（Service Topology）_ 使 {{< glossary_tooltip term_id="service"  text="服务">}} 
+能够根据集群中的 Node 拓扑来路由流量。
+比如，服务可以指定将流量优先路由到与客户端位于同一节点或者同一可用区域的端点上。
+
+## {{% heading "prerequisites" %}}
+
+  {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+
+<!--
+The following prerequisites are needed in order to enable topology aware service
+routing:
+
+   * Kubernetes v1.17 or later
+   * Configure {{< glossary_tooltip text="kube-proxy" term_id="kube-proxy" >}} to run in iptables mode or IPVS mode
+-->
+需要下面列的先决条件，才能启用拓扑感知的服务路由：
+
+   * Kubernetes 1.17 或更新版本
+   * 配置 {{< glossary_tooltip text="kube-proxy" term_id="kube-proxy" >}} 以 iptables 或者 IPVS 模式运行
+<!-- steps -->
+
+<!--
+## Enable Service Topology
+
+{{< feature-state for_k8s_version="v1.21" state="deprecated" >}}
+
+To enable service topology, enable the `ServiceTopology`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/) for all Kubernetes components:
+-->
+## 启用服务拓扑
+
+{{< feature-state for_k8s_version="v1.21" state="deprecated" >}}
+
+要启用服务拓扑功能，需要为所有 Kubernetes 组件启用 `ServiceTopology` 
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)：
+
+```
+--feature-gates="ServiceTopology=true`
+```
+
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* Read about [Topology Aware Hints](/docs/concepts/services-networking/topology-aware-hints/), the replacement for the `topologyKeys` field.
+* Read about [EndpointSlices](/docs/concepts/services-networking/endpoint-slices/)
+* Read about the [Service Topology](/docs/concepts/services-networking/service-topology/) concept
+* Read [Connecting Applications with Services](/docs/concepts/services-networking/connect-applications-service/)
+-->
+
+* 阅读[拓扑感知提示](/zh-cn/docs/concepts/services-networking/topology-aware-hints/)，该技术是用来替换 `topologyKeys` 字段的。
+* 阅读[端点切片](/zh-cn/docs/concepts/services-networking/endpoint-slices)
+* 阅读[服务拓扑](/zh-cn/docs/concepts/services-networking/service-topology)概念
+* 阅读[通过服务来连接应用](/zh-cn/docs/concepts/services-networking/connect-applications-service/)
\ No newline at end of file
diff --git a/content/zh-cn/docs/tasks/administer-cluster/encrypt-data.md b/content/zh-cn/docs/tasks/administer-cluster/encrypt-data.md
new file mode 100644
index 0000000000..a527c52c7a
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/encrypt-data.md
@@ -0,0 +1,394 @@
+---
+title: 静态加密 Secret 数据
+content_type: task
+---
+
+<!--
+title: Encrypting Secret Data at Rest
+reviewers:
+- smarterclayton
+content_type: task
+-->
+
+<!-- overview -->
+<!--
+This page shows how to enable and configure encryption of secret data at rest.
+-->
+本文展示如何启用和配置静态 Secret 数据的加密
+
+## {{% heading "prerequisites" %}}
+
+* {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+
+<!--
+* etcd v3.0 or later is required
+-->
+* 需要 etcd v3.0 或者更高版本
+
+<!-- steps -->
+
+<!--
+## Configuration and determining whether encryption at rest is already enabled
+
+The `kube-apiserver` process accepts an argument `--encryption-provider-config`
+that controls how API data is encrypted in etcd.
+The configuration is provided as an API named
+[`EncryptionConfiguration`](/docs/reference/config-api/apiserver-encryption.v1/).
+An example configuration is provided below.
+-->
+## 配置并确定是否已启用静态数据加密
+
+`kube-apiserver` 的参数 `--encryption-provider-config` 控制 API 数据在 etcd 中的加密方式。
+该配置作为一个名为 [`EncryptionConfiguration`](/zh-cn/docs/reference/config-api/apiserver-encryption.v1/) 的 API 提供。
+下面提供了一个示例配置。
+
+<!--
+**IMPORTANT:** For high-availability configurations (with two or more control plane nodes), the
+encryption configuration file must be the same! Otherwise, the `kube-apiserver` component cannot
+decrypt data stored in the etcd.
+-->
+{{< caution >}}
+**重要：** 对于高可用配置（有两个或多个控制平面节点），加密配置文件必须相同！
+否则，`kube-apiserver` 组件无法解密存储在 etcd 中的数据。
+{{< /caution >}}
+
+<!--
+## Understanding the encryption at rest configuration.
+-->
+## 理解静态数据加密
+
+```yaml
+apiVersion: apiserver.config.k8s.io/v1
+kind: EncryptionConfiguration
+resources:
+  - resources:
+      - secrets
+    providers:
+      - identity: {}
+      - aesgcm:
+          keys:
+            - name: key1
+              secret: c2VjcmV0IGlzIHNlY3VyZQ==
+            - name: key2
+              secret: dGhpcyBpcyBwYXNzd29yZA==
+      - aescbc:
+          keys:
+            - name: key1
+              secret: c2VjcmV0IGlzIHNlY3VyZQ==
+            - name: key2
+              secret: dGhpcyBpcyBwYXNzd29yZA==
+      - secretbox:
+          keys:
+            - name: key1
+              secret: YWJjZGVmZ2hpamtsbW5vcHFyc3R1dnd4eXoxMjM0NTY=
+```
+
+<!--
+Each `resources` array item is a separate config and contains a complete configuration. The
+`resources.resources` field is an array of Kubernetes resource names (`resource` or `resource.group`)
+that should be encrypted. The `providers` array is an ordered list of the possible encryption
+providers.
+
+Only one provider type may be specified per entry (`identity` or `aescbc` may be provided,
+but not both in the same item).
+The first provider in the list is used to encrypt resources written into the storage. When reading
+resources from storage, each provider that matches the stored data attempts in order to decrypt the
+data. If no provider can read the stored data due to a mismatch in format or secret key, an error
+is returned which prevents clients from accessing that resource.
+
+For more detailed information about the `EncryptionConfiguration` struct, please refer to the
+[encryption configuration API](/docs/reference/config-api/apiserver-encryption.v1/).
+-->
+每个 `resources` 数组项目是一个单独的完整的配置。
+`resources.resources` 字段是要加密的 Kubernetes 资源名称（`resource` 或 `resource.group`）的数组。
+`providers` 数组是可能的加密 provider 的有序列表。
+
+每个条目只能指定一个 provider 类型（可以是 `identity` 或 `aescbc`，但不能在同一个项目中同时指定二者）。
+列表中的第一个 provider 用于加密写入存储的资源。
+当从存储器读取资源时，与存储的数据匹配的所有 provider 将按顺序尝试解密数据。
+如果由于格式或密钥不匹配而导致没有 provider 能够读取存储的数据，则会返回一个错误，以防止客户端访问该资源。
+
+有关 `EncryptionConfiguration` 结构体的更多详细信息，请参阅[加密配置 API](/zh-cn/docs/reference/config-api/apiserver-encryption.v1/)。
+
+<!--
+If any resource is not readable via the encryption config (because keys were changed),
+the only recourse is to delete that key from the underlying etcd directly. Calls that attempt to
+read that resource will fail until it is deleted or a valid decryption key is provided.
+-->
+{{< caution >}}
+如果通过加密配置无法读取资源（因为密钥已更改），唯一的方法是直接从底层 etcd 中删除该密钥。
+任何尝试读取资源的调用将会失败，直到它被删除或提供有效的解密密钥。
+{{< /caution >}}
+
+### Providers:
+
+<!--
+Name | Encryption | Strength | Speed | Key Length | Other Considerations
+-----|------------|----------|-------|------------|---------------------
+`identity` | None | N/A | N/A | N/A | Resources written as-is without encryption. When set as the first provider, the resource will be decrypted as new values are written.
+`secretbox` | XSalsa20 and Poly1305 | Strong | Faster | 32-byte | A newer standard and may not be considered acceptable in environments that require high levels of review.
+`aesgcm` | AES-GCM with random nonce | Must be rotated every 200k writes | Fastest | 16, 24, or 32-byte | Is not recommended for use except when an automated key rotation scheme is implemented.
+`aescbc` | AES-CBC with [PKCS#7](https://datatracker.ietf.org/doc/html/rfc2315) padding | Weak | Fast | 32-byte | Not recommended due to CBC's vulnerability to padding oracle attacks.
+`kms` | Uses envelope encryption scheme: Data is encrypted by data encryption keys (DEKs) using AES-CBC with [PKCS#7](https://datatracker.ietf.org/doc/html/rfc2315) padding, DEKs are encrypted by key encryption keys (KEKs) according to configuration in Key Management Service (KMS) | Strongest | Fast | 32-bytes |  The recommended choice for using a third party tool for key management. Simplifies key rotation, with a new DEK generated for each encryption, and KEK rotation controlled by the user. [Configure the KMS provider](/docs/tasks/administer-cluster/kms-provider/)
+
+Each provider supports multiple keys - the keys are tried in order for decryption, and if the provider
+is the first provider, the first key is used for encryption.
+-->
+{{< table caption="Kubernetes 静态数据加密的 Providers" >}}
+名称 | 加密类型   | 强度     | 速度  | 密钥长度   | 其它事项
+-----|------------|----------|-------|------------|---------------------
+`identity` | 无 | N/A | N/A | N/A | 不加密写入的资源。当设置为第一个 provider 时，资源将在新值写入时被解密。
+`secretbox` | XSalsa20 和 Poly1305 | 强 | 更快 | 32字节 | 较新的标准，在需要高度评审的环境中可能不被接受。
+`aesgcm` | 带有随机数的 AES-GCM | 必须每 200k 写入一次 | 最快 | 16, 24 或者 32字节 | 建议不要使用，除非实施了自动密钥循环方案。
+`aescbc` | 填充 [PKCS#7](https://datatracker.ietf.org/doc/html/rfc2315) 的 AES-CBC | 弱 | 快 | 32字节 | 由于 CBC 容易受到密文填塞攻击（Padding Oracle Attack），不推荐使用。
+`kms` | 使用信封加密方案：数据使用带有 [PKCS#7](https://datatracker.ietf.org/doc/html/rfc2315) 填充的 AES-CBC 通过数据加密密钥（DEK）加密，DEK 根据 Key Management Service（KMS）中的配置通过密钥加密密钥（Key Encryption Keys，KEK）加密 | 最强 | 快 | 32字节 | 建议使用第三方工具进行密钥管理。为每个加密生成新的 DEK，并由用户控制 KEK 轮换来简化密钥轮换。[配置 KMS 提供程序](/zh-cn/docs/tasks/administer-cluster/kms-provider/)
+
+每个 provider 都支持多个密钥 - 在解密时会按顺序使用密钥，如果是第一个 provider，则第一个密钥用于加密。
+
+<!--
+Storing the raw encryption key in the EncryptionConfig only moderately improves your security
+posture, compared to no encryption.  Please use `kms` provider for additional security.
+-->
+{{< caution >}}
+在 EncryptionConfig 中保存原始的加密密钥与不加密相比只会略微地提升安全级别。
+请使用 `kms` 驱动以获得更强的安全性。
+{{< /caution >}}
+
+<!--
+By default, the `identity` provider is used to protect Secrets in etcd, which provides no
+encryption. `EncryptionConfiguration` was introduced to encrypt Secrets locally, with a locally
+managed key.
+
+Encrypting Secrets with a locally managed key protects against an etcd compromise, but it fails to
+protect against a host compromise. Since the encryption keys are stored on the host in the
+EncryptionConfiguration YAML file, a skilled attacker can access that file and extract the encryption
+keys.
+
+Envelope encryption creates dependence on a separate key, not stored in Kubernetes. In this case,
+an attacker would need to compromise etcd, the `kubeapi-server`, and the third-party KMS provider to
+retrieve the plaintext values, providing a higher level of security than locally stored encryption keys.
+-->
+默认情况下，`identity` 驱动被用来对 etcd 中的 Secret 提供保护，而这个驱动不提供加密能力。
+`EncryptionConfiguration` 的引入是为了能够使用本地管理的密钥来在本地加密 Secret 数据。
+
+使用本地管理的密钥来加密 Secret 能够保护数据免受 etcd 破坏的影响，不过无法针对
+主机被侵入提供防护。
+这是因为加密的密钥保存在主机上的 EncryptionConfig YAML 文件中，有经验的入侵者
+仍能访问该文件并从中提取出加密密钥。
+
+封套加密（Envelope Encryption）引入了对独立密钥的依赖，而这个密钥并不保存在 Kubernetes 中。
+在这种情况下，入侵者需要攻破 etcd、kube-apiserver 和第三方的 KMS
+驱动才能获得明文数据，因而这种方案提供了比本地保存加密密钥更高的安全级别。
+
+<!--
+## Encrypting your data
+
+Create a new encryption config file:
+-->
+## 加密你的数据
+
+创建一个新的加密配置文件：
+
+```yaml
+apiVersion: apiserver.config.k8s.io/v1
+kind: EncryptionConfiguration
+resources:
+  - resources:
+      - secrets
+    providers:
+      - aescbc:
+          keys:
+            - name: key1
+              secret: <BASE 64 ENCODED SECRET>
+      - identity: {}
+```
+
+<!--
+To create a new Secret, perform the following steps:
+
+1. Generate a 32-byte random key and base64 encode it. If you're on Linux or macOS, run the following command:
+-->
+遵循如下步骤来创建一个新的 Secret：
+
+1. 生成一个 32 字节的随机密钥并进行 base64 编码。如果你在 Linux 或 macOS 上，请运行以下命令：
+
+   ```shell
+   head -c 32 /dev/urandom | base64
+   ```
+
+<!--
+1. Place that value in the `secret` field of the `EncryptionConfiguration` struct.
+1. Set the `--encryption-provider-config` flag on the `kube-apiserver` to point to
+   the location of the config file.
+1. Restart your API server.
+-->
+2. 将这个值放入到 `EncryptionConfiguration` 结构体的 `secret` 字段中。
+3. 设置 `kube-apiserver` 的 `--encryption-provider-config` 参数，将其指向
+   配置文件所在位置。
+4. 重启你的 API server。
+
+<!--
+Your config file contains keys that can decrypt the contents in etcd, so you must properly restrict
+permissions on your control-plane nodes so only the user who runs the `kube-apiserver` can read it.
+-->
+{{< caution >}}
+你的配置文件包含可以解密 etcd 内容的密钥，因此你必须正确限制主控节点的访问权限，
+以便只有能运行 kube-apiserver 的用户才能读取它。
+{{< /caution >}}
+
+<!--
+## Verifying that data is encrypted
+
+Data is encrypted when written to etcd. After restarting your `kube-apiserver`, any newly created or
+updated Secret should be encrypted when stored. To check this, you can use the `etcdctl` command line
+program to retrieve the contents of your Secret.
+
+1. Create a new Secret called `secret1` in the `default` namespace:
+-->
+## 验证数据已被加密
+
+数据在写入 etcd 时会被加密。重新启动你的 `kube-apiserver` 后，任何新创建或更新的密码在存储时都应该被加密。
+如果想要检查，你可以使用 `etcdctl` 命令行程序来检索你的加密内容。
+
+1. 创建一个新的 secret，名称为 `secret1`，命名空间为 `default`：
+
+   ```shell
+   kubectl create secret generic secret1 -n default --from-literal=mykey=mydata
+   ```
+
+<!--
+1. Using the `etcdctl` command line, read that Secret out of etcd:
+-->
+2. 使用 etcdctl 命令行，从 etcd 中读取 Secret：
+   ```shell
+   ETCDCTL_API=3 etcdctl get /registry/secrets/default/secret1 [...] | hexdump -C
+   ```
+
+   <!--
+   where `[...]` must be the additional arguments for connecting to the etcd server.
+   -->
+   这里的 `[...]` 是用来连接 etcd 服务的额外参数。
+
+<!--
+1. Verify the stored Secret is prefixed with `k8s:enc:aescbc:v1:` which indicates
+   the `aescbc` provider has encrypted the resulting data.
+
+1. Verify the Secret is correctly decrypted when retrieved via the API:
+-->
+3. 验证存储的密钥前缀是否为 `k8s:enc:aescbc:v1:`，这表明 `aescbc` provider 已加密结果数据。
+
+4. 通过 API 检索，验证 Secret 是否被正确解密：
+
+   ```shell
+   kubectl describe secret secret1 -n default
+   ```
+
+   <!--
+   The output should contain `mykey: bXlkYXRh`, with contents of `mydata` encoded, check
+   [decoding a Secret](/docs/tasks/configmap-secret/managing-secret-using-kubectl/#decoding-secret)
+   to completely decode the Secret.
+   -->
+   其输出应该包含 `mykey: bXlkYXRh`，`mydata` 的内容是被加密过的，
+   请参阅[解密 Secret](/zh-cn/docs/tasks/configmap-secret/managing-secret-using-kubectl/#decoding-secret)
+   了解如何完全解码 Secret 内容。
+
+<!--
+## Ensure all Secrets are encrypted
+
+Since Secrets are encrypted on write, performing an update on a Secret will encrypt that content.
+-->
+## 确保所有 Secret 都被加密
+
+由于 Secret 是在写入时被加密，因此对 Secret 执行更新也会加密该内容。
+
+```shell
+kubectl get secrets --all-namespaces -o json | kubectl replace -f -
+```
+
+<!--
+The command above reads all Secrets and then updates them to apply server side encryption.
+-->
+上面的命令读取所有 Secret，然后使用服务端加密来更新其内容。
+
+<!--
+If an error occurs due to a conflicting write, retry the command.
+For larger clusters, you may wish to subdivide the secrets by namespace or script an update.
+-->
+{{< note >}}
+如果由于冲突写入而发生错误，请重试该命令。
+对于较大的集群，你可能希望通过命名空间或更新脚本来对 Secret 进行划分。
+{{< /note >}}
+
+<!--
+## Rotating a decryption key
+
+Changing a Secret without incurring downtime requires a multi-step operation, especially in
+the presence of a highly-available deployment where multiple `kube-apiserver` processes are running.
+
+1. Generate a new key and add it as the second key entry for the current provider on all servers
+1. Restart all `kube-apiserver` processes to ensure each server can decrypt using the new key
+1. Make the new key the first entry in the `keys` array so that it is used for encryption in the config
+1. Restart all `kube-apiserver` processes to ensure each server now encrypts using the new key
+1. Run `kubectl get secrets --all-namespaces -o json | kubectl replace -f -` to encrypt all
+   existing Secrets with the new key
+1. Remove the old decryption key from the config after you have backed up etcd with the new key in use
+   and updated all Secrets
+
+When running a single `kube-apiserver` instance, step 2 may be skipped.
+-->
+## 轮换解密密钥
+
+在不发生停机的情况下更改 Secret 需要多步操作，特别是在有多个 `kube-apiserver` 进程正在运行的
+高可用环境中。
+
+1. 生成一个新密钥并将其添加为所有服务器上当前提供程序的第二个密钥条目
+1. 重新启动所有 `kube-apiserver` 进程以确保每台服务器都可以使用新密钥进行解密
+1. 将新密钥设置为 `keys` 数组中的第一个条目，以便在配置中使用其进行加密
+1. 重新启动所有 `kube-apiserver` 进程以确保每个服务器现在都使用新密钥进行加密
+1. 运行 `kubectl get secrets --all-namespaces -o json | kubectl replace -f -`
+   以用新密钥加密所有现有的 Secret
+1. 在使用新密钥备份 etcd 后，从配置中删除旧的解密密钥并更新所有密钥
+
+当只运行一个 `kube-apiserver` 实例时，第 2 步可能可以忽略。
+
+<!--
+## Decrypting all data
+
+To disable encryption at rest, place the `identity` provider as the first entry in the config
+and restart all `kube-apiserver` processes.
+-->
+## 解密所有数据
+
+要禁用静态加密，请将 `identity` provider
+作为配置中的第一个条目并重新启动所有 `kube-apiserver` 进程。
+
+```yaml
+apiVersion: apiserver.config.k8s.io/v1
+kind: EncryptionConfiguration
+resources:
+  - resources:
+      - secrets
+    providers:
+      - identity: {}
+      - aescbc:
+          keys:
+            - name: key1
+              secret: <BASE 64 ENCODED SECRET>
+```
+
+<!--
+Then run the following command to force decrypt
+all Secrets:
+-->
+然后运行以下命令以强制解密所有 Secret：
+
+```shell
+kubectl get secrets --all-namespaces -o json | kubectl replace -f -
+```
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* Learn more about the [EncryptionConfiguration configuration API (v1)](/docs/reference/config-api/apiserver-encryption.v1/).
+-->
+进一步学习 [EncryptionConfiguration 配置 API (v1)](/zh-cn/docs/reference/config-api/apiserver-encryption.v1/)。
diff --git a/content/zh/docs/tasks/administer-cluster/extended-resource-node.md b/content/zh-cn/docs/tasks/administer-cluster/extended-resource-node.md
similarity index 93%
rename from content/zh/docs/tasks/administer-cluster/extended-resource-node.md
rename to content/zh-cn/docs/tasks/administer-cluster/extended-resource-node.md
index 9eeb4e09bc..007c9021eb 100644
--- a/content/zh/docs/tasks/administer-cluster/extended-resource-node.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/extended-resource-node.md
@@ -67,13 +67,13 @@ Host: k8s-master:8080
 
 <!--
 Note that Kubernetes does not need to know what a dongle is or what a dongle is for.
-The preceding PATCH request just tells Kubernetes that your Node has four things that
+The preceding PATCH request tells Kubernetes that your Node has four things that
 you call dongles.
 
 Start a proxy, so that you can easily send requests to the Kubernetes API server:
 -->
 注意：Kubernetes 不需要了解 dongle 资源的含义和用途。
-前面的 PATCH 请求仅仅告诉 Kubernetes 你的节点拥有四个你称之为 dongle 的东西。
+前面的 PATCH 请求告诉 Kubernetes 你的节点拥有四个你称之为 dongle 的东西。
 
 启动一个代理（proxy），以便你可以很容易地向 Kubernetes API server 发送请求：
 
@@ -142,7 +142,7 @@ number of dongles. See
 [Assign Extended Resources to a Container](/docs/tasks/configure-pod-container/extended-resource/).
 -->
 现在，应用开发者可以创建请求一定数量 dongle 资源的 Pod 了。
-参见[将扩展资源分配给容器](/zh/docs/tasks/configure-pod-container/extended-resource/)。
+参见[将扩展资源分配给容器](/zh-cn/docs/tasks/configure-pod-container/extended-resource/)。
 
 <!--
 ## Discussion
@@ -294,10 +294,10 @@ kubectl describe node <your-node-name> | grep dongle
 -->
 ### 针对应用开发人员
 
-* [将扩展资源分配给容器](/zh/docs/tasks/configure-pod-container/extended-resource/)
+* [将扩展资源分配给容器](/zh-cn/docs/tasks/configure-pod-container/extended-resource/)
   
 ### 针对集群管理员
 
-* [为名字空间配置最小和最大内存约束](/zh/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)
-* [为名字空间配置最小和最大 CPU 约束](/zh/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
+* [为名字空间配置最小和最大内存约束](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)
+* [为名字空间配置最小和最大 CPU 约束](/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
 
diff --git a/content/zh-cn/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods.md b/content/zh-cn/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods.md
new file mode 100644
index 0000000000..d5ce305d88
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods.md
@@ -0,0 +1,42 @@
+---
+title: 关键插件 Pod 的调度保证
+content_type: concept
+---
+
+<!-- overview -->
+
+<!-- 
+Kubernetes core components such as the API server, scheduler, and controller-manager run on a control plane node. 
+However, add-ons must run on a regular cluster node.
+Some of these add-ons are critical to a fully functional cluster, such as metrics-server, DNS, and UI.
+A cluster may stop working properly if a critical add-on is evicted (either manually or as a side effect of another operation like upgrade)
+and becomes pending (for example when the cluster is highly utilized and either there are other pending pods that schedule into the space
+vacated by the evicted critical add-on pod or the amount of resources available on the node changed for some other reason).
+-->
+Kubernetes 核心组件（如 API 服务器、调度器、控制器管理器）在控制平面节点上运行。
+但是插件必须在常规集群节点上运行。
+其中一些插件对于功能完备的集群至关重要，例如 Heapster、DNS 和 UI。
+如果关键插件被逐出（手动或作为升级等其他操作的副作用）或者变成挂起状态，集群可能会停止正常工作。
+关键插件进入挂起状态的例子有：集群利用率过高；被逐出的关键插件 Pod 释放了空间，但该空间被之前悬决的 Pod 占用；由于其它原因导致节点上可用资源的总量发生变化。
+
+<!--
+Note that marking a pod as critical is not meant to prevent evictions entirely; it only prevents the pod from becoming permanently unavailable.
+A static pod marked as critical, can't be evicted. However, a non-static pods marked as critical are always rescheduled.
+-->
+注意，把某个 Pod 标记为关键 Pod 并不意味着完全避免该 Pod 被逐出；它只能防止该 Pod 变成永久不可用。
+被标记为关键性的静态 Pod 不会被逐出。但是，被标记为关键性的非静态 Pod 总是会被重新调度。
+
+<!-- body -->
+
+<!--
+### Marking pod as critical
+-->
+### 标记关键 Pod
+
+<!--
+To mark a Pod as critical, set priorityClassName for that Pod to `system-cluster-critical` or `system-node-critical`. `system-node-critical` is the highest available priority, even higher than `system-cluster-critical`
+-->
+要将 Pod 标记为关键性（critical），设置 Pod 的 priorityClassName 为 `system-cluster-critical` 或者 `system-node-critical`。
+`system-node-critical` 是最高级别的可用性优先级，甚至比 `system-cluster-critical` 更高。
+
+
diff --git a/content/zh/docs/tasks/administer-cluster/ip-masq-agent.md b/content/zh-cn/docs/tasks/administer-cluster/ip-masq-agent.md
similarity index 79%
rename from content/zh/docs/tasks/administer-cluster/ip-masq-agent.md
rename to content/zh-cn/docs/tasks/administer-cluster/ip-masq-agent.md
index e4d8bc8297..ce7835b23e 100644
--- a/content/zh/docs/tasks/administer-cluster/ip-masq-agent.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/ip-masq-agent.md
@@ -9,9 +9,9 @@ content_type: task
 
 <!-- overview -->
 <!--
-This page shows how to configure and enable the ip-masq-agent.
+This page shows how to configure and enable the `ip-masq-agent`.
 -->
-此页面展示如何配置和启用 ip-masq-agent。
+此页面展示如何配置和启用 `ip-masq-agent`。
 
 ## {{% heading "prerequisites" %}}
 
@@ -24,9 +24,9 @@ This page shows how to configure and enable the ip-masq-agent.
 ## IP Masquerade Agent 用户指南
 
 <!--
-The ip-masq-agent configures iptables rules to hide a pod's IP address behind the cluster node's IP address. This is typically done when sending traffic to destinations outside the cluster's pod [CIDR](https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing) range.
+The `ip-masq-agent` configures iptables rules to hide a pod's IP address behind the cluster node's IP address. This is typically done when sending traffic to destinations outside the cluster's pod [CIDR](https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing) range.
 -->
-ip-masq-agent 配置 iptables 规则以隐藏位于集群节点 IP 地址后面的 Pod 的 IP 地址。
+`ip-masq-agent` 配置 iptables 规则以隐藏位于集群节点 IP 地址后面的 Pod 的 IP 地址。
 这通常在将流量发送到集群的 Pod
 [CIDR](https://zh.wikipedia.org/wiki/%E6%97%A0%E7%B1%BB%E5%88%AB%E5%9F%9F%E9%97%B4%E8%B7%AF%E7%94%B1)
 范围之外的目的地时使用。
@@ -96,23 +96,26 @@ The agent configuration file must be written in YAML or JSON syntax, and may con
 代理配置文件必须使用 YAML 或 JSON 语法编写，并且可能包含三个可选值：
 
 <!--
-*   **nonMasqueradeCIDRs:** A list of strings in [CIDR](https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing) notation that specify the non-masquerade ranges.
+* `nonMasqueradeCIDRs`: A list of strings in
+  [CIDR](https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing) notation that specify the non-masquerade ranges.
 -->
-* **nonMasqueradeCIDRs:**
+* `nonMasqueradeCIDRs`：
   [CIDR](https://zh.wikipedia.org/wiki/%E6%97%A0%E7%B1%BB%E5%88%AB%E5%9F%9F%E9%97%B4%E8%B7%AF%E7%94%B1)
   表示法中的字符串列表，用于指定不需伪装的地址范围。
 
 <!--
-*   **masqLinkLocal:** A Boolean (true / false) which indicates whether to masquerade traffic to the link local prefix 169.254.0.0/16. False by default.
+* `masqLinkLocal`: A Boolean (true/false) which indicates whether to masquerade traffic to the
+  link local prefix `169.254.0.0/16`. False by default.
 -->
-* **masqLinkLocal:** 布尔值 (true / false)，表示是否将流量伪装到
-  本地链路前缀 169.254.0.0/16。默认为 false。
+* `masqLinkLocal`：布尔值 (true/false)，表示是否为本地链路前缀 169.254.0.0/16 的流量提供伪装。
+  默认为 false。
 
 <!--
-*   **resyncInterval:** An interval at which the agent attempts to reload config from disk. e.g. '30s' where 's' is seconds, 'ms' is milliseconds etc...
+* `resyncInterval`: A time interval at which the agent attempts to reload config from disk.
+  For example: '30s', where 's' means seconds, 'ms' means milliseconds.
 -->
-* **resyncInterval:** 代理尝试从磁盘重新加载配置的时间间隔。
-  例如 '30s'，其中 's' 是秒，'ms' 是毫秒等...
+* `resyncInterval`：代理从磁盘重新加载配置的重试时间间隔。
+  例如 '30s'，其中 's' 是秒，'ms' 是毫秒。
 
 <!--
 Traffic to 10.0.0.0/8, 172.16.0.0/12 and 192.168.0.0/16) ranges will NOT be masqueraded. Any other traffic (assumed to be internet) will be masqueraded.  An example of a local destination from a pod could be its Node's IP address as well as another node's address or one of the IP addresses in Cluster's IP range.   Any other traffic will be masqueraded by default.  The below entries show the default set of rules that are applied by the ip-masq-agent:
@@ -122,8 +125,11 @@ Traffic to 10.0.0.0/8, 172.16.0.0/12 and 192.168.0.0/16) ranges will NOT be masq
 Pod 访问本地目的地的例子，可以是其节点的 IP 地址、另一节点的地址或集群的 IP 地址范围内的一个 IP 地址。
 默认情况下，任何其他流量都将伪装。以下条目展示了 ip-masq-agent 的默认使用的规则：
 
-```
+```shell
 iptables -t nat -L IP-MASQ-AGENT
+```
+
+```none
 RETURN     all  --  anywhere             169.254.0.0/16       /* ip-masq-agent: cluster-local traffic should not be subject to MASQUERADE */ ADDRTYPE match dst-type !LOCAL
 RETURN     all  --  anywhere             10.0.0.0/8           /* ip-masq-agent: cluster-local traffic should not be subject to MASQUERADE */ ADDRTYPE match dst-type !LOCAL
 RETURN     all  --  anywhere             172.16.0.0/12        /* ip-masq-agent: cluster-local traffic should not be subject to MASQUERADE */ ADDRTYPE match dst-type !LOCAL
@@ -133,13 +139,17 @@ MASQUERADE  all  --  anywhere             anywhere             /* ip-masq-agent:
 ```
 
 <!--
-By default, in GCE/Google Kubernetes Engine starting with Kubernetes version 1.7.0, if network policy is enabled or you are using a cluster CIDR not in the 10.0.0.0/8 range, the ip-masq-agent will run in your cluster.  If you are running in another environment, you can add the ip-masq-agent [DaemonSet](/docs/concepts/workloads/controllers/daemonset/) to your cluster:
+By default, in GCE/Google Kubernetes Engine, if network policy is enabled or
+you are using a cluster CIDR not in the 10.0.0.0/8 range, the `ip-masq-agent`
+will run in your cluster. If you are running in another environment,
+you can add the `ip-masq-agent` [DaemonSet](/docs/concepts/workloads/controllers/daemonset/)
+to your cluster.
 -->
-默认情况下，从 Kubernetes 1.7.0 版本开始的 GCE/Google Kubernetes Engine 中，
-如果启用了网络策略，或者你使用的集群 CIDR 不在 10.0.0.0/8 范围内，
-则 ip-masq-agent 将在你的集群中运行。
-如果你在其他环境中运行，则可以将 ip-masq-agent 
-[DaemonSet](/zh/docs/concepts/workloads/controllers/daemonset/) 添加到你的集群：
+默认情况下，在 GCE/Google Kubernetes Engine 中，如果启用了网络策略，
+或者你使用的集群 CIDR 不在 10.0.0.0/8 范围内，
+则 `ip-masq-agent` 将在你的集群中运行。
+如果你在其他环境中运行，可以将 `ip-masq-agent`
+[DaemonSet](/zh-cn/docs/concepts/workloads/controllers/daemonset/) 添加到你的集群中。
 
 <!-- steps -->
 
@@ -172,20 +182,20 @@ More information can be found in the ip-masq-agent documentation [here](https://
 <!--
 In most cases, the default set of rules should be sufficient; however, if this is not the case for your cluster, you can create and apply a [ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/) to customize the IP ranges that are affected.  For example, to allow only 10.0.0.0/8 to be considered by the ip-masq-agent, you can create the following [ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/) in a file called "config".
 -->
-在大多数情况下，默认的规则集应该足够；但是，如果你的群集不是这种情况，则可以创建并应用
-[ConfigMap](/zh/docs/tasks/configure-pod-container/configure-pod-configmap/)
+在大多数情况下，默认的规则集应该足够；但是，如果你的集群不是这种情况，则可以创建并应用
+[ConfigMap](/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap/)
 来自定义受影响的 IP 范围。
 例如，要允许 ip-masq-agent 仅作用于 10.0.0.0/8，你可以在一个名为 “config” 的文件中创建以下
-[ConfigMap](/zh/docs/tasks/configure-pod-container/configure-pod-configmap/) 。
+[ConfigMap](/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap/) 。
 
 {{< note >}}
 <!--
-It is important that the file is called config since, by default, that will be used as the key for lookup by the ip-masq-agent:
+It is important that the file is called config since, by default, that will be used as the key for lookup by the `ip-masq-agent`:
 -->
 重要的是，该文件之所以被称为 config，因为默认情况下，该文件将被用作
-ip-masq-agent 查找的主键：
+`ip-masq-agent` 查找的主键：
 
-```
+```yaml
 nonMasqueradeCIDRs:
   - 10.0.0.0/8
 resyncInterval: 60s
@@ -195,22 +205,25 @@ resyncInterval: 60s
 <!--
 Run the following command to add the config map to your cluster:
 -->
-运行以下命令将配置映射添加到你的集群：
+运行以下命令将 ConfigMap 添加到你的集群：
 
-```
+```shell
 kubectl create configmap ip-masq-agent --from-file=config --namespace=kube-system
 ```
 
 <!--
-This will update a file located at */etc/config/ip-masq-agent* which is periodically checked every *resyncInterval* and applied to the cluster node.
+This will update a file located at `/etc/config/ip-masq-agent` which is periodically checked every `resyncInterval` and applied to the cluster node.
 After the resync interval has expired, you should see the iptables rules reflect your changes:
 -->
-这将更新位于 */etc/config/ip-masq-agent* 的一个文件，该文件以 *resyncInterval* 
+这将更新位于 `/etc/config/ip-masq-agent` 的一个文件，该文件以 `resyncInterval`
 为周期定期检查并应用于集群节点。
 重新同步间隔到期后，你应该看到你的更改在 iptables 规则中体现：
 
-```
+```shell
 iptables -t nat -L IP-MASQ-AGENT
+```
+
+```none
 Chain IP-MASQ-AGENT (1 references)
 target     prot opt source               destination
 RETURN     all  --  anywhere             169.254.0.0/16       /* ip-masq-agent: cluster-local traffic should not be subject to MASQUERADE */ ADDRTYPE match dst-type !LOCAL
@@ -219,13 +232,13 @@ MASQUERADE  all  --  anywhere             anywhere             /* ip-masq-agent:
 ```
 
 <!--
-By default, the link local range (169.254.0.0/16) is also handled by the ip-masq agent, which sets up the appropriate iptables rules.  To have the ip-masq-agent ignore link local, you can set *masqLinkLocal*  to true in the config map.
+By default, the link local range (169.254.0.0/16) is also handled by the ip-masq agent, which sets up the appropriate iptables rules.  To have the ip-masq-agent ignore link local, you can set `masqLinkLocal` to true in the ConfigMap.
 -->
 默认情况下，本地链路范围 (169.254.0.0/16) 也由 ip-masq agent 处理，
 该代理设置适当的 iptables 规则。 要使 ip-masq-agent 忽略本地链路，
-可以在配置映射中将 *masqLinkLocal* 设置为 true。
+可以在 ConfigMap 中将 `masqLinkLocal` 设置为 true。
 
-```
+```yaml
 nonMasqueradeCIDRs:
   - 10.0.0.0/8
 resyncInterval: 60s
diff --git a/content/zh/docs/tasks/administer-cluster/kms-provider.md b/content/zh-cn/docs/tasks/administer-cluster/kms-provider.md
similarity index 59%
rename from content/zh/docs/tasks/administer-cluster/kms-provider.md
rename to content/zh-cn/docs/tasks/administer-cluster/kms-provider.md
index e18e174fc2..8539f8320d 100644
--- a/content/zh/docs/tasks/administer-cluster/kms-provider.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/kms-provider.md
@@ -9,7 +9,9 @@ title: Using a KMS provider for data encryption
 content_type: task
 -->
 <!-- overview -->
-<!-- This page shows how to configure a Key Management Service (KMS) provider and plugin to enable secret data encryption. -->
+<!--
+This page shows how to configure a Key Management Service (KMS) provider and plugin to enable secret data encryption.
+-->
 
 本页展示了如何配置秘钥管理服务—— Key Management Service (KMS) 驱动和插件以启用
 Secret 数据加密。
@@ -18,8 +20,10 @@ Secret 数据加密。
 
 * {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
-<!-- * Kubernetes version 1.10.0 or later is required -->
-<!-- * etcd v3 or later is required -->
+<!--
+* Kubernetes version 1.10.0 or later is required
+* etcd v3 or later is required
+-->
 * 需要 Kubernetes 1.10.0 或更新版本
 * 需要 etcd v3 或更新版本
 
@@ -28,47 +32,59 @@ Secret 数据加密。
 <!-- steps -->
 
 <!--
-The KMS encryption provider uses an envelope encryption scheme to encrypt data in etcd. The data is encrypted using a data encryption key (DEK); a new DEK is generated for each encryption. The DEKs are encrypted with a key encryption key (KEK) that is stored and managed in a remote KMS. The KMS provider uses gRPC to communicate with a specific KMS 
-plugin. The KMS plugin, which is implemented as a gRPC server and deployed on the same host(s) as the Kubernetes master(s), is responsible for all communication with the remote KMS.
+The KMS encryption provider uses an envelope encryption scheme to encrypt data in etcd.
+The data is encrypted using a data encryption key (DEK); a new DEK is generated for each encryption.
+The DEKs are encrypted with a key encryption key (KEK) that is stored and managed in a remote KMS.
+The KMS provider uses gRPC to communicate with a specific KMS plugin.
+The KMS plugin, which is implemented as a gRPC server and deployed on the same host(s)
+as the Kubernetes control plane, is responsible for all communication with the remote KMS.
 -->
 KMS 加密驱动使用封套加密模型来加密 etcd 中的数据。
 数据使用数据加密秘钥（DEK）加密；每次加密都生成一个新的 DEK。
 这些 DEK 经一个秘钥加密秘钥（KEK）加密后在一个远端的 KMS 中存储和管理。
 KMS 驱动使用 gRPC 与一个特定的 KMS 插件通信。这个 KMS 插件作为一个 gRPC 
-服务器被部署在 Kubernetes 主服务器的同一个主机上，负责与远端 KMS 的通信。
+服务器被部署在 Kubernetes 控制平面的相同主机上，负责与远端 KMS 的通信。
 
 <!--
 ## Configuring the KMS provider
 
-To configure a KMS provider on the API server, include a provider of type ```kms``` in the providers array in the encryption configuration file and set the following properties:
+To configure a KMS provider on the API server, include a provider of type `kms` in the
+`providers` array in the encryption configuration file and set the following properties:
 -->
-## 配置 KMS 驱动
+## 配置 KMS 驱动   {#configuring-the-kms-provider}
 
-为了在 API 服务器上配置 KMS 驱动，在加密配置文件中的驱动数组中加入一个类型为 `kms`
+为了在 API 服务器上配置 KMS 驱动，在加密配置文件中的 `providers` 数组中加入一个类型为 `kms`
 的驱动，并设置下列属性：
 
 <!--
 * `name`: Display name of the KMS plugin.
 * `endpoint`: Listen address of the gRPC server (KMS plugin). The endpoint is a UNIX domain socket.
-* `cachesize`: Number of data encryption keys (DEKs) to be cached in the clear. When cached, DEKs can be used without another call to the KMS; whereas DEKs that are not cached require a call to the KMS to unwrap.
-* `timeout`: How long should kube-apiserver wait for kms-plugin to respond before returning an error (default is 3 seconds).
+* `cachesize`: Number of data encryption keys (DEKs) to be cached in the clear.
+  When cached, DEKs can be used without another call to the KMS;
+  whereas DEKs that are not cached require a call to the KMS to unwrap.
+* `timeout`: How long should `kube-apiserver` wait for kms-plugin to respond before
+  returning an error (default is 3 seconds).
 -->
 
 * `name`: KMS 插件的显示名称。
 * `endpoint`: gRPC 服务器（KMS 插件）的监听地址。该端点是一个 UNIX 域套接字。
 * `cachesize`: 以明文缓存的数据加密秘钥（DEKs）的数量。一旦被缓存，
   就可以直接使用 DEKs 而无需另外调用 KMS；而未被缓存的 DEKs 需要调用一次 KMS 才能解包。
-* `timeout`: 在返回一个错误之前，kube-apiserver 等待 kms-plugin 响应的时间（默认是 3 秒）。
+* `timeout`: 在返回一个错误之前，`kube-apiserver` 等待 kms-plugin 响应的时间（默认是 3 秒）。
 
-<!-- See [Understanding the encryption at rest configuration.](/docs/tasks/administer-cluster/encrypt-data) -->
-参见[理解静态数据加密配置](/zh/docs/tasks/administer-cluster/encrypt-data)
+<!--
+See [Understanding the encryption at rest configuration.](/docs/tasks/administer-cluster/encrypt-data)
+-->
+参见[理解静态配置加密](/zh-cn/docs/tasks/administer-cluster/encrypt-data)
 
 <!--
 ## Implementing a KMS plugin
 
-To implement a KMS plugin, you can develop a new plugin gRPC server or enable a KMS plugin already provided by your cloud provider. You then integrate the plugin with the remote KMS and deploy it on the Kubernetes master.
+To implement a KMS plugin, you can develop a new plugin gRPC server or enable a KMS plugin
+already provided by your cloud provider.
+You then integrate the plugin with the remote KMS and deploy it on the Kubernetes master.
 -->
-## 实现 KMS 插件
+## 实现 KMS 插件   {#implementing-a-kms-plugin}
 
 为实现一个 KMS 插件，你可以开发一个新的插件 gRPC 服务器或启用一个由你的云服务驱动提供的 KMS 插件。
 你可以将这个插件与远程 KMS 集成，并把它部署到 Kubernetes 的主服务器上。
@@ -77,32 +93,36 @@ To implement a KMS plugin, you can develop a new plugin gRPC server or enable a
 ### Enabling the KMS supported by your cloud provider 
 Refer to your cloud provider for instructions on enabling the cloud provider-specific KMS plugin.
 -->
-### 启用由云服务驱动支持的 KMS
+### 启用由云服务驱动支持的 KMS   {#enabling-the-kms-supported-by-your-cloud-provider}
 
 有关启用云服务驱动特定的 KMS 插件的说明，请咨询你的云服务驱动商。
 
 <!--
 ### Developing a KMS plugin gRPC server
 
-You can develop a KMS plugin gRPC server using a stub file available for Go. For other languages, you use a proto file to create a stub file that you can use to develop the gRPC server code.
+You can develop a KMS plugin gRPC server using a stub file available for Go. For other languages,
+you use a proto file to create a stub file that you can use to develop the gRPC server code.
 -->
-### 开发 KMS 插件 gRPC 服务器
+### 开发 KMS 插件 gRPC 服务器   {#developing-a-kms-plugin-grpc-server}
 
 你可以使用 Go 语言的存根文件开发 KMS 插件 gRPC 服务器。
 对于其他语言，你可以用 proto 文件创建可以用于开发 gRPC 服务器代码的存根文件。
 
 <!--
 * Using Go: Use the functions and data structures in the stub file:
-[service.pb.go](https://github.com/kubernetes/kubernetes/blob/master/staging/src/k8s.io/apiserver/pkg/storage/value/encrypt/envelope/v1beta1/service.pb.go) to develop the gRPC server code
+  [service.pb.go](https://github.com/kubernetes/kubernetes/blob/release-1.24/staging/src/k8s.io/apiserver/pkg/storage/value/encrypt/envelope/v1beta1/service.pb.go)
+  to develop the gRPC server code
 -->
-* 使用 Go：使用存根文件 [service.pb.go](https://github.com/kubernetes/kubernetes/blob/master/staging/src/k8s.io/apiserver/pkg/storage/value/encrypt/envelope/v1beta1/service.pb.go)
+* 使用 Go：使用存根文件 [service.pb.go](https://github.com/kubernetes/kubernetes/blob/release-1.24/staging/src/k8s.io/apiserver/pkg/storage/value/encrypt/envelope/v1beta1/service.pb.go)
   中的函数和数据结构开发 gRPC 服务器代码。
 
 <!--
-* Using languages other than Go: Use the protoc compiler with the proto file: [service.proto](https://github.com/kubernetes/kubernetes/blob/master/staging/src/k8s.io/apiserver/pkg/storage/value/encrypt/envelope/v1beta1/service.proto) to generate a stub file for the specific language
+* Using languages other than Go: Use the protoc compiler with the proto file:
+  [service.proto](https://github.com/kubernetes/kubernetes/blob/release-1.24/staging/src/k8s.io/apiserver/pkg/storage/value/encrypt/envelope/v1beta1/service.proto)
+  to generate a stub file for the specific language
 -->
 * 使用 Go 以外的其他语言：用 protoc 编译器编译 proto 文件：
-  [service.proto](https://github.com/kubernetes/kubernetes/blob/master/staging/src/k8s.io/apiserver/pkg/storage/value/encrypt/envelope/v1beta1/service.proto)
+  [service.proto](https://github.com/kubernetes/kubernetes/blob/release-1.24/staging/src/k8s.io/apiserver/pkg/storage/value/encrypt/envelope/v1beta1/service.proto)
   为指定语言生成存根文件。
 
 <!--
@@ -110,13 +130,14 @@ Then use the functions and data structures in the stub file to develop the serve
 -->
 然后使用存根文件中的函数和数据结构开发服务器代码。
 
-<!-- **Notes:** -->
+<!--
+**Notes:**
+-->
 **注意：**
 
 <!--
 * kms plugin version: `v1beta1`
-
-  In response to procedure call Version, a compatible KMS plugin should return v1beta1 as VersionResponse.version.
+  In response to procedure call Version, a compatible KMS plugin should return `v1beta1` as `VersionResponse.version`.
 
 * message version: `v1beta1`
 
@@ -128,7 +149,7 @@ Then use the functions and data structures in the stub file to develop the serve
 -->
 * kms 插件版本：`v1beta1`
 
-  作为对过程调用 Version 的响应，兼容的 KMS 插件应把 v1beta1 作为 VersionResponse.version 返回
+  作为对过程调用 Version 的响应，兼容的 KMS 插件应把 `v1beta1` 作为 `VersionResponse.version` 版本返回。
 
 * 消息版本：`v1beta1`
 
@@ -143,9 +164,10 @@ Then use the functions and data structures in the stub file to develop the serve
 
 The KMS plugin can communicate with the remote KMS using any protocol supported by the KMS.
 All configuration data, including authentication credentials the KMS plugin uses to communicate with the remote KMS, 
-are stored and managed by the KMS plugin independently. The KMS plugin can encode the ciphertext with additional metadata that may be required before sending it to the KMS for decryption.
+are stored and managed by the KMS plugin independently.
+The KMS plugin can encode the ciphertext with additional metadata that may be required before sending it to the KMS for decryption.
 -->
-### 将 KMS 插件与远程 KMS 整合
+### 将 KMS 插件与远程 KMS 整合   {#integrating-a-kms-plugin-with-the-remote-kms}
 
 KMS 插件可以用任何受 KMS 支持的协议与远程 KMS 通信。
 所有的配置数据，包括 KMS 插件用于与远程 KMS 通信的认证凭据，都由 KMS 插件独立地存储和管理。
@@ -156,7 +178,7 @@ KMS 插件可以用额外的元数据对密文进行编码，这些元数据是
 
 Ensure that the KMS plugin runs on the same host(s) as the Kubernetes master(s).
 -->
-### 部署 KMS 插件
+### 部署 KMS 插件   {#deploying-the-kms-plugin}
 
 确保 KMS 插件与 Kubernetes 主服务器运行在同一主机上。
 
@@ -165,7 +187,7 @@ Ensure that the KMS plugin runs on the same host(s) as the Kubernetes master(s).
 
 To encrypt the data:
 -->
-## 使用 KMS 驱动加密数据
+## 使用 KMS 驱动加密数据   {#encrypting-your-data-with-the-kms-provider}
 
 为了加密数据：
 
@@ -175,8 +197,8 @@ To encrypt the data:
 1. 使用 `kms` 驱动的相应的属性创建一个新的加密配置文件：
 
    ```yaml
-   kind: EncryptionConfiguration
    apiVersion: apiserver.config.k8s.io/v1
+   kind: EncryptionConfiguration
    resources:
      - resources:
        - secrets
@@ -190,54 +212,65 @@ To encrypt the data:
    ```
 
 <!--
-2. Set the `--encryption-provider-config` flag on the kube-apiserver to point to the location of the configuration file.
-3. Restart your API server.
+1. Set the `--encryption-provider-config` flag on the kube-apiserver to point to
+   the location of the configuration file.
+1. Restart your API server.
 -->
 2. 设置 kube-apiserver 的 `--encryption-provider-config` 参数指向配置文件的位置。
 3. 重启 API 服务器。
 
 <!--
-## Verifying that the data is encrypted
-
-Data is encrypted when written to etcd. After restarting your kube-apiserver, any newly created or updated secret should be encrypted when stored. To verify, you can use the etcdctl command line program to retrieve the contents of your secret.
+For details about the `EncryptionConfiguration` format, please check the
+[API server encryption API reference](/docs/reference/config-api/apiserver-encryption.v1/).
 -->
-## 验证数据已经加密
-
-写入 etcd 时数据被加密。重启 kube-apiserver 后，任何新建或更新的 Secret 在存储时应该已被加密。
-要验证这点，你可以用 etcdctl 命令行程序获取 Secret 内容。 
+有关 `EncryptionConfiguration` 格式的更多详细信息，请参阅
+[kube-apiserver 加密 API 参考 (v1)](/zh-cn/docs/reference/config-api/apiserver-encryption.v1/).
 
 <!--
-1. Create a new secret called secret1 in the default namespace:
+## Verifying that the data is encrypted
+
+Data is encrypted when written to etcd. After restarting your `kube-apiserver`, 
+any newly created or updated secret should be encrypted when stored. To verify,
+you can use the `etcdctl` command line program to retrieve the contents of your secret.
 -->
-1. 在默认的命名空间里创建一个名为 secret1 的 Secret：
+## 验证数据已经加密    {#verifying-that-the-data-is-encrypted}
+
+写入 etcd 时数据被加密。重启 `kube-apiserver` 后，任何新建或更新的 Secret 在存储时应该已被加密。
+要验证这点，你可以用 `etcdctl` 命令行程序获取 Secret 内容。 
+
+<!--
+1. Create a new secret called `secret1` in the `default` namespace:
+-->
+1. 在默认的命名空间里创建一个名为 `secret1` 的 Secret：
 
    ```
    kubectl create secret generic secret1 -n default --from-literal=mykey=mydata
    ```
 
 <!--
-2. Using the etcdctl command line, read that secret out of etcd:
+1. Using the `etcdctl` command line, read that secret out of etcd:
 -->
-2. 用 etcdctl 命令行，从 etcd 读取出 Secret：
+2. 用 `etcdctl` 命令行，从 etcd 读取出 Secret：
 
    ```
    ETCDCTL_API=3 etcdctl get /kubernetes.io/secrets/default/secret1 [...] | hexdump -C
    ```
 
    <!--
-   where `[...]` must be the additional arguments for connecting to the etcd server.
+   where `[...]` contains the additional arguments for connecting to the etcd server.
    -->
-   其中 `[...]` 是用于连接 etcd 服务器的额外参数。
+   其中 `[...]` 包含连接 etcd 服务器的额外参数。
 
 <!--
-3. Verify the stored secret is prefixed with `k8s:enc:kms:v1:`, which indicates that the `kms` provider has encrypted the resulting data.
+1. Verify the stored secret is prefixed with `k8s:enc:kms:v1:`, which indicates that
+   the `kms` provider has encrypted the resulting data.
 -->
 3. 验证保存的 Secret 是否是以 `k8s:enc:kms:v1:` 开头的，这表明 `kms` 驱动已经对结果数据加密。
 
 <!--
-4. Verify that the secret is correctly decrypted when retrieved via the API:
+1. Verify that the secret is correctly decrypted when retrieved via the API:
 -->
-4. 验证 Secret 在被 API 获取时已被正确解密：
+4. 验证通过 API 获取的 Secret 已被正确解密：
 
    ```
    kubectl describe secret secret1 -n default
@@ -250,12 +283,13 @@ Data is encrypted when written to etcd. After restarting your kube-apiserver, an
 
 Because secrets are encrypted on write, performing an update on a secret encrypts that content.
 -->
-## 确保所有 Secret 都已被加密
+## 确保所有 Secret 都已被加密    {#ensuring-all-secrets-are-encrypted}
 
 因为 Secret 是在写入时被加密的，所以在更新 Secret 时也会加密该内容。
 
 <!--
-The following command reads all secrets and then updates them to apply server side encryption. If an error occurs due to a conflicting write, retry the command.
+The following command reads all secrets and then updates them to apply server side encryption.
+If an error occurs due to a conflicting write, retry the command.
 For larger clusters, you may wish to subdivide the secrets by namespace or script an update.
 -->
 下列命令读取所有 Secret 并更新它们以便应用服务器端加密。如果因为写入冲突导致错误发生，
@@ -270,7 +304,7 @@ kubectl get secrets --all-namespaces -o json | kubectl replace -f -
 
 To switch from a local encryption provider to the `kms` provider and re-encrypt all of the secrets:
 -->
-## 从本地加密驱动切换到 KMS 驱动
+## 从本地加密驱动切换到 KMS 驱动    {#switching-from-a-local-encryption-provider-to-the-kms-provider}
 
 为了从本地加密驱动切换到 `kms` 驱动并重新加密所有 Secret 内容：
 
@@ -280,8 +314,8 @@ To switch from a local encryption provider to the `kms` provider and re-encrypt
 1. 在配置文件中加入 `kms` 驱动作为第一个条目，如下列样例所示
 
    ```yaml
-   kind: EncryptionConfiguration
    apiVersion: apiserver.config.k8s.io/v1
+   kind: EncryptionConfiguration
    resources:
      - resources:
        - secrets
@@ -297,21 +331,21 @@ To switch from a local encryption provider to the `kms` provider and re-encrypt
    ```
 
 <!--
-2. Restart all kube-apiserver processes.
-3. Run the following command to force all secrets to be re-encrypted using the `kms` provider.
+1. Restart all `kube-apiserver` processes.
+1. Run the following command to force all secrets to be re-encrypted using the `kms` provider.
 -->
-2. 重启所有 kube-apiserver 进程。
+2. 重启所有 `kube-apiserver` 进程。
 3. 运行下列命令使用 `kms` 驱动强制重新加密所有 Secret。
 
    ```
-   kubectl get secrets --all-namespaces -o json| kubectl replace -f -
+   kubectl get secrets --all-namespaces -o json | kubectl replace -f -
    ```
 
 <!--
 ## Disabling encryption at rest
 To disable encryption at rest:
 -->
-## 禁用静态数据加密
+## 禁用静态数据加密   {#disabling-encryption-at-rest}
 
 要禁用静态数据加密：
 
@@ -321,8 +355,8 @@ To disable encryption at rest:
 1. 将 `identity` 驱动作为配置文件中的第一个条目： 
 
    ```yaml
-   kind: EncryptionConfiguration
    apiVersion: apiserver.config.k8s.io/v1
+   kind: EncryptionConfiguration
    resources:
      - resources:
        - secrets
@@ -335,10 +369,10 @@ To disable encryption at rest:
    ```
 
 <!--
-2.  Restart all kube-apiserver processes.
-3. Run the following command to force all secrets to be decrypted.
+1. Restart all `kube-apiserver` processes.
+1. Run the following command to force all secrets to be decrypted.
 -->
-2. 重启所有 kube-apiserver 进程。
+2. 重启所有 `kube-apiserver` 进程。
 3. 运行下列命令强制重新加密所有 Secret。
 
    ```
diff --git a/content/zh/docs/tasks/administer-cluster/kubeadm/_index.md b/content/zh-cn/docs/tasks/administer-cluster/kubeadm/_index.md
similarity index 100%
rename from content/zh/docs/tasks/administer-cluster/kubeadm/_index.md
rename to content/zh-cn/docs/tasks/administer-cluster/kubeadm/_index.md
diff --git a/content/zh/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver.md b/content/zh-cn/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver.md
similarity index 81%
rename from content/zh/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver.md
rename to content/zh-cn/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver.md
index 3d55a4f2ee..8835046239 100644
--- a/content/zh/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver.md
@@ -4,11 +4,9 @@ content_type: task
 weight: 10
 ---
 <!-- 
----
 title: Configuring a cgroup driver
 content_type: task
 weight: 10
----
 -->
 
 <!-- overview -->
@@ -25,7 +23,8 @@ runtime cgroup driver for kubeadm clusters.
 You should be familiar with the Kubernetes
 [container runtime requirements](/docs/setup/production-environment/container-runtimes).
 -->
-你应该熟悉 Kubernetes 的[容器运行时需求](/zh/docs/setup/production-environment/container-runtimes)。
+你应该熟悉 Kubernetes 的[容器运行时需求](/zh-cn/docs/setup/production-environment/container-runtimes)。
+
 <!-- steps -->
 
 <!-- 
@@ -38,7 +37,7 @@ The [Container runtimes](/docs/setup/production-environment/container-runtimes)
 explains that the `systemd` driver is recommended for kubeadm based setups instead
 of the `cgroupfs` driver, because kubeadm manages the kubelet as a systemd service.
 -->
-[容器运行时](/zh/docs/setup/production-environment/container-runtimes)页面提到：
+[容器运行时](/zh-cn/docs/setup/production-environment/container-runtimes)页面提到：
 由于 kubeadm 把 kubelet 视为一个系统服务来管理，所以对基于 kubeadm 的安装，
 我们推荐使用 `systemd` 驱动，不推荐 `cgroupfs` 驱动。
 
@@ -62,14 +61,12 @@ kubeadm 支持在执行 `kubeadm init` 时，传递一个 `KubeletConfiguration`
 `KubeletConfiguration` 包含 `cgroupDriver` 字段，可用于控制 kubelet 的 cgroup 驱动。
 
 <!-- 
-If the user is not setting the `cgroupDriver` field under `KubeletConfiguration`,
+In v1.22, if the user is not setting the `cgroupDriver` field under `KubeletConfiguration`,
 `kubeadm init` will default it to `systemd`.
 -->
 
-{{< feature-state for_k8s_version="v1.21" state="stable" >}}
-
 {{< note >}}
-如果用户没有在 `KubeletConfiguration` 中设置 `cgroupDriver` 字段，
+在版本 1.22 中，如果用户没有在 `KubeletConfiguration` 中设置 `cgroupDriver` 字段，
 `kubeadm init` 会将它设置为默认值 `systemd`。
 {{< /note >}}
 
@@ -81,7 +78,7 @@ A minimal example of configuring the field explicitly:
 ```yaml
 # kubeadm-config.yaml
 kind: ClusterConfiguration
-apiVersion: kubeadm.k8s.io/v1beta2
+apiVersion: kubeadm.k8s.io/v1beta3
 kubernetesVersion: v1.21.0
 ---
 kind: KubeletConfiguration
@@ -110,7 +107,7 @@ and passing it to the local node kubelet.
 {{< note >}}
 Kubeadm 对集群所有的节点，使用相同的 `KubeletConfiguration`。
 `KubeletConfiguration` 存放于 `kube-system` 命名空间下的某个 
-[ConfigMap](/zh/docs/concepts/configuration/configmap) 对象中。
+[ConfigMap](/zh-cn/docs/concepts/configuration/configmap) 对象中。
 
 执行 `init`、`join` 和 `upgrade` 等子命令会促使 kubeadm 
 将 `KubeletConfiguration` 写入到文件 `/var/lib/kubelet/config.yaml` 中，
@@ -124,18 +121,13 @@ Kubeadm 对集群所有的节点，使用相同的 `KubeletConfiguration`。
 # 使用 `cgroupfs` 驱动
 
 <!-- 
-As this guide explains using the `cgroupfs` driver with kubeadm is not recommended.
-
-To continue using `cgroupfs` and to prevent `kubeadm upgrade` from modifying the
+To use `cgroupfs` and to prevent `kubeadm upgrade` from modifying the
 `KubeletConfiguration` cgroup driver on existing setups, you must be explicit
 about its value. This applies to a case where you do not wish future versions
 of kubeadm to apply the `systemd` driver by default.
 -->
-正如本指南阐述的：不推荐与 kubeadm 一起使用 `cgroupfs` 驱动。
-
-如仍需使用 `cgroupfs`，
-且要防止 `kubeadm upgrade` 修改现有系统中 `KubeletConfiguration` 的 cgroup 驱动，
-你必须显式声明它的值。
+如仍需使用 `cgroupfs` 且要防止 `kubeadm upgrade` 修改现有系统中
+`KubeletConfiguration` 的 cgroup 驱动，你必须显式声明它的值。
 此方法应对的场景为：在将来某个版本的 kubeadm 中，你不想使用默认的 `systemd` 驱动。
 
 <!-- 
@@ -145,7 +137,7 @@ how to be explicit about the value.
 If you wish to configure a container runtime to use the `cgroupfs` driver,
 you must refer to the documentation of the container runtime of your choice.
 -->
-参阅以下章节“修改 kubelet 的 ConfigMap”，了解显式设置该值的方法。
+参阅以下章节“[修改 kubelet 的 ConfigMap](#modify-the-kubelet-configmap) ”，了解显式设置该值的方法。
 
 如果你希望配置容器运行时来使用 `cgroupfs` 驱动，
 则必须参考所选容器运行时的文档。
@@ -179,16 +171,13 @@ nodes before deleting the old nodes.
 <!-- 
 ### Modify the kubelet ConfigMap
 -->
-### 修改 kubelet 的 ConfigMap
+### 修改 kubelet 的 ConfigMap  {#modify-the-kubelet-configmap}
 
 <!-- 
-- Find the kubelet ConfigMap name using `kubectl get cm -n kube-system | grep kubelet-config`.
-- Call `kubectl edit cm kubelet-config-x.yy -n kube-system` (replace `x.yy` with
-the Kubernetes version).
+- Call `kubectl edit cm kubelet-config -n kube-system`.
 - Either modify the existing `cgroupDriver` value or add a new field that looks like this:
 -->
-- 用命令 `kubectl get cm -n kube-system | grep kubelet-config` 找到 kubelet 的 ConfigMap 名称。
-- 运行 `kubectl edit cm kubelet-config-x.yy -n kube-system` （把 `x.yy` 替换为 Kubernetes 版本）。
+- 运行 `kubectl edit cm kubelet-config -n kube-system`。
 - 修改现有 `cgroupDriver` 的值，或者新增如下式样的字段：
 
   ```yaml
@@ -219,7 +208,7 @@ For each node in the cluster:
 对于集群中的每一个节点：
 
 - 执行命令 `kubectl drain <node-name> --ignore-daemonsets`，以
-  [腾空节点](/zh/docs/tasks/administer-cluster/safely-drain-node)
+  [腾空节点](/zh-cn/docs/tasks/administer-cluster/safely-drain-node)
 - 执行命令 `systemctl stop kubelet`，以停止 kubelet
 - 停止容器运行时
 - 修改容器运行时 cgroup 驱动为 `systemd`
@@ -227,7 +216,7 @@ For each node in the cluster:
 - 启动容器运行时
 - 执行命令 `systemctl start kubelet`，以启动 kubelet
 - 执行命令 `kubectl uncordon <node-name>`，以
-  [取消节点隔离](/zh/docs/tasks/administer-cluster/safely-drain-node)
+  [取消节点隔离](/zh-cn/docs/tasks/administer-cluster/safely-drain-node)
 
 <!-- 
 Execute these steps on nodes one at a time to ensure workloads
diff --git a/content/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-certs.md b/content/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-certs.md
similarity index 64%
rename from content/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-certs.md
rename to content/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-certs.md
index 8bf1ddc28e..fd33c404c5 100644
--- a/content/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-certs.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-certs.md
@@ -15,18 +15,20 @@ weight: 10
 
 {{< feature-state for_k8s_version="v1.15" state="stable" >}}
 
-<!-- 
-Client certificates generated by [kubeadm](/docs/reference/setup-tools/kubeadm/) expire after 1 year. This page explains how to manage certificate renewals with kubeadm. 
+<!--
+Client certificates generated by [kubeadm](/docs/reference/setup-tools/kubeadm/) expire after 1 year.
+This page explains how to manage certificate renewals with kubeadm. It also covers other tasks related
+to kubeadm certificate management.
 -->
-由 [kubeadm](/zh/docs/reference/setup-tools/kubeadm/) 生成的客户端证书在 1 年后到期。
-本页说明如何使用 kubeadm 管理证书续订。
+由 [kubeadm](/zh-cn/docs/reference/setup-tools/kubeadm/) 生成的客户端证书在 1 年后到期。
+本页说明如何使用 kubeadm 管理证书续订，同时也涵盖其他与 kubeadm 证书管理相关的说明。
 
 ## {{% heading "prerequisites" %}}
 
 <!--
 You should be familiar with [PKI certificates and requirements in Kubernetes](/docs/setup/best-practices/certificates/).
 -->
-你应该熟悉 [Kubernetes 中的 PKI 证书和要求](/zh/docs/setup/best-practices/certificates/)。
+你应该熟悉 [Kubernetes 中的 PKI 证书和要求](/zh-cn/docs/setup/best-practices/certificates/)。
 
 <!-- steps -->
 
@@ -39,16 +41,16 @@ You can override this behavior by providing your own certificates.
 
 ## 使用自定义的证书 {#custom-certificates}
 
-默认情况下, kubeadm 会生成运行一个集群所需的全部证书。
+默认情况下，kubeadm 会生成运行一个集群所需的全部证书。
 你可以通过提供你自己的证书来改变这个行为策略。
 
 <!--
 To do so, you must place them in whatever directory is specified by the
-`--cert-dir` flag or the `CertificatesDir`field of kubeadm's `ClusterConfiguration` . By default this
-is `/etc/kubernetes/pki`.
+`--cert-dir` flag or the `certificatesDir` field of kubeadm's `ClusterConfiguration`.
+By default this is `/etc/kubernetes/pki`.
 -->
-如果要这样做, 你必须将证书文件放置在通过 `--cert-dir` 命令行参数或者 kubeadm 配置中的
-`CertificatesDir` 配置项指明的目录中。默认的值是 `/etc/kubernetes/pki`。
+如果要这样做，你必须将证书文件放置在通过 `--cert-dir` 命令行参数或者 kubeadm 配置中的
+`certificatesDir` 配置项指明的目录中。默认的值是 `/etc/kubernetes/pki`。
 
 <!--
 If a given certificate and private key pair exists before running `kubeadm init`,
@@ -57,7 +59,7 @@ CA into `/etc/kubernetes/pki/ca.crt` and `/etc/kubernetes/pki/ca.key`,
 and kubeadm will use this CA for signing the rest of the certificates.
 -->
 如果在运行 `kubeadm init` 之前存在给定的证书和私钥对，kubeadm 将不会重写它们。
-例如，这意味着您可以将现有的 CA 复制到 `/etc/kubernetes/pki/ca.crt` 和
+例如，这意味着你可以将现有的 CA 复制到 `/etc/kubernetes/pki/ca.crt` 和
 `/etc/kubernetes/pki/ca.key` 中，而 kubeadm 将使用此 CA 对其余证书进行签名。
 
 <!--
@@ -66,7 +68,8 @@ and kubeadm will use this CA for signing the rest of the certificates.
 It is also possible to provide only the `ca.crt` file and not the
 `ca.key` file (this is only available for the root CA file, not other cert pairs).
 If all other certificates and kubeconfig files are in place, kubeadm recognizes
-this condition and activates the "External CA" mode. kubeadm will proceed without the CA key on disk.
+this condition and activates the "External CA" mode. kubeadm will proceed without the
+CA key on disk.
 -->
 
 ## 外部 CA 模式 {#external-ca-mode}
@@ -80,21 +83,21 @@ this condition and activates the "External CA" mode. kubeadm will proceed withou
 Instead, run the controller-manager standalone with `--controllers=csrsigner` and
 point to the CA certificate and key.
 -->
-否则, kubeadm 将独立运行 controller-manager，附加一个
+否则，kubeadm 将独立运行 controller-manager，附加一个
 `--controllers=csrsigner` 的参数，并且指明 CA 证书和密钥。
 
 <!--
 [PKI certificates and requirements](/docs/setup/best-practices/certificates/) includes guidance on
 setting up a cluster to use an external CA.
 -->
-[PKI 证书和要求](/zh/docs/setup/best-practices/certificates/)包括集群使用外部 CA 的设置指南。
+[PKI 证书和要求](/zh-cn/docs/setup/best-practices/certificates/)包括集群使用外部 CA 的设置指南。
 
-<!-- 
-## Check certificate expiration 
+<!--
+## Check certificate expiration
 
 You can use the `check-expiration` subcommand to check when certificates expire:
 -->
-## 检查证书是否过期
+## 检查证书是否过期 {#check-certificate-expiration}
 
 你可以使用 `check-expiration` 子命令来检查证书何时过期
 
@@ -102,8 +105,8 @@ You can use the `check-expiration` subcommand to check when certificates expire:
 kubeadm certs check-expiration
 ```
 
-<!-- 
-The output is similar to this: 
+<!--
+The output is similar to this:
 -->
 输出类似于以下内容：
 
@@ -126,17 +129,17 @@ etcd-ca                 Dec 28, 2029 23:36 UTC   9y              no
 front-proxy-ca          Dec 28, 2029 23:36 UTC   9y              no
 ```
 
-<!-- 
-The command shows expiration/residual time for the client certificates in the `/etc/kubernetes/pki` folder and for the client certificate embedded in the KUBECONFIG files used by kubeadm (`admin.conf`, `controller-manager.conf` and `scheduler.conf`). 
+<!--
+The command shows expiration/residual time for the client certificates in the `/etc/kubernetes/pki` folder and for the client certificate embedded in the KUBECONFIG files used by kubeadm (`admin.conf`, `controller-manager.conf` and `scheduler.conf`).
 -->
-该命令显示 `/etc/kubernetes/pki` 文件夹中的客户端证书以及 
-kubeadm（`admin.conf`, `controller-manager.conf` 和 `scheduler.conf`）
+该命令显示 `/etc/kubernetes/pki` 文件夹中的客户端证书以及
+kubeadm（`admin.conf`、`controller-manager.conf` 和 `scheduler.conf`）
 使用的 KUBECONFIG 文件中嵌入的客户端证书的到期时间/剩余时间。
 
-<!-- 
-Additionally, kubeadm informs the user if the certificate is externally managed; in this case, the user should take care of managing certificate renewal manually/using other tools. 
+<!--
+Additionally, kubeadm informs the user if the certificate is externally managed; in this case, the user should take care of managing certificate renewal manually/using other tools.
 -->
-另外， kubeadm 会通知用户证书是否由外部管理； 
+另外，kubeadm 会通知用户证书是否由外部管理；
 在这种情况下，用户应该小心的手动/使用其他工具来管理证书更新。
 
 <!--
@@ -146,7 +149,7 @@ Additionally, kubeadm informs the user if the certificate is externally managed;
 `kubeadm` 不能管理由外部 CA 签名的证书
 {{< /warning >}}
 
-<!-- 
+<!--
 `kubelet.conf` is not included in the list above because kubeadm configures kubelet
 for [automatic certificate renewal](/docs/tasks/tls/certificate-rotation/)
 with rotatable certificates under `/var/lib/kubelet/pki`.
@@ -155,10 +158,10 @@ To repair an expired kubelet client certificate see
 -->
 {{< note >}}
 上面的列表中没有包含 `kubelet.conf`，因为 kubeadm 将 kubelet 配置为
-[自动更新证书](/docs/tasks/tls/certificate-rotation/)。
+[自动更新证书](/zh-cn/docs/tasks/tls/certificate-rotation/)。
 轮换的证书位于目录 `/var/lib/kubelet/pki`。
 要修复过期的 kubelet 客户端证书，请参阅
-[kubelet 客户端证书轮换失败](/zh/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm/#kubelet-client-cert)。
+[kubelet 客户端证书轮换失败](/zh-cn/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm/#kubelet-client-cert)。
 {{< /note >}}
 
 <!--
@@ -180,35 +183,35 @@ client-key: /var/lib/kubelet/pki/kubelet-client-current.pem
 ```
 {{< /warning >}}
 
-<!-- 
+<!--
 ## Automatic certificate renewal
 
-`kubeadm` renews all the certificates during control plane [upgrade](/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade-1-15/). 
+kubeadm renews all the certificates during control plane [upgrade](/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/).
 -->
 
-## 自动更新证书
+## 自动更新证书 {#automatic-certificate-renewal}
 
-`kubeadm` 会在控制面
-[升级](/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
+kubeadm 会在控制面
+[升级](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
 的时候更新所有证书。
 
-<!-- 
-This feature is designed for addressing the simplest use cases; 
-if you don't have specific requirements on certificate renewal and perform Kubernetes version upgrades regularly (less than 1 year in between each upgrade), kubeadm will take care of keeping your cluster up to date and reasonably secure. 
+<!--
+This feature is designed for addressing the simplest use cases;
+if you don't have specific requirements on certificate renewal and perform Kubernetes version upgrades regularly (less than 1 year in between each upgrade), kubeadm will take care of keeping your cluster up to date and reasonably secure.
 -->
 这个功能旨在解决最简单的用例；如果你对此类证书的更新没有特殊要求，
 并且定期执行 Kubernetes 版本升级（每次升级之间的间隔时间少于 1 年），
 则 kubeadm 将确保你的集群保持最新状态并保持合理的安全性。
 
-<!-- 
+<!--
 It is a best practice to upgrade your cluster frequently in order to stay secure.
 -->
 {{< note >}}
 最佳的做法是经常升级集群以确保安全。
 {{< /note >}}
 
-<!-- 
-If you have more complex requirements for certificate renewal, you can opt out from the default behavior by passing `--certificate-renewal=false` to `kubeadm upgrade apply` or to `kubeadm upgrade node`. 
+<!--
+If you have more complex requirements for certificate renewal, you can opt out from the default behavior by passing `--certificate-renewal=false` to `kubeadm upgrade apply` or to `kubeadm upgrade node`.
 -->
 如果你对证书更新有更复杂的需求，则可通过将 `--certificate-renewal=false` 传递给
 `kubeadm upgrade apply` 或者 `kubeadm upgrade node`，从而选择不采用默认行为。
@@ -224,48 +227,65 @@ kubeadm 在 1.17 版本之前有一个[缺陷](https://github.com/kubernetes/kub
 在这种情况下，你需要显式地设置 `--certificate-renewal=true`。
 {{< /warning >}}
 
-<!-- 
-## Manual certificate renewal 
+<!--
+## Manual certificate renewal
 
-You can renew your certificates manually at any time with the `kubeadm certs renew` command. 
+You can renew your certificates manually at any time with the `kubeadm certs renew` command.
 -->
-## 手动更新证书
+## 手动更新证书 {#manual-certificate-renewal}
 
 你能随时通过 `kubeadm certs renew` 命令手动更新你的证书。
 
-<!-- 
-This command performs the renewal using CA (or front-proxy-CA) certificate and key stored in `/etc/kubernetes/pki`. 
--->
-此命令用 CA （或者 front-proxy-CA ）证书和存储在 `/etc/kubernetes/pki` 中的密钥执行更新。
+<!--
+This command performs the renewal using CA (or front-proxy-CA) certificate and key stored in `/etc/kubernetes/pki`.
 
-<!-- 
-If you are running an HA cluster, this command needs to be executed on all the control-plane nodes. 
+After running the command you should restart the control plane Pods. This is required since
+dynamic certificate reload is currently not supported for all components and certificates.
+[Static Pods](/docs/tasks/configure-pod-container/static-pod/) are managed by the local kubelet
+and not by the API Server, thus kubectl cannot be used to delete and restart them.
+To restart a static Pod you can temporarily remove its manifest file from `/etc/kubernetes/manifests/`
+and wait for 20 seconds (see the `fileCheckFrequency` value in [KubeletConfiguration struct](/docs/reference/config-api/kubelet-config.v1beta1/).
+The kubelet will terminate the Pod if it's no longer in the manifest directory.
+You can then move the file back and after another `fileCheckFrequency` period, the kubelet will recreate
+the Pod and the certificate renewal for the component can complete.
+-->
+此命令用 CA（或者 front-proxy-CA ）证书和存储在 `/etc/kubernetes/pki` 中的密钥执行更新。
+
+执行完此命令之后你需要重启控制面 Pods。因为动态证书重载目前还不被所有组件和证书支持，所有这项操作是必须的。
+[静态 Pods](/zh-cn/docs/tasks/configure-pod-container/static-pod/) 是被本地 kubelet 而不是 API Server 管理，
+所以 kubectl 不能用来删除或重启他们。
+要重启静态 Pod 你可以临时将清单文件从 `/etc/kubernetes/manifests/` 移除并等待 20 秒
+（参考 [KubeletConfiguration 结构](/zh-cn/docs/reference/config-api/kubelet-config.v1beta1/) 中的`fileCheckFrequency` 值）。
+如果 Pod 不在清单目录里，kubelet 将会终止它。
+在另一个 `fileCheckFrequency` 周期之后你可以将文件移回去，为了组件可以完成 kubelet 将重新创建 Pod 和证书更新。
+
+<!--
+If you are running an HA cluster, this command needs to be executed on all the control-plane nodes.
 -->
 {{< warning >}}
 如果你运行了一个 HA 集群，这个命令需要在所有控制面板节点上执行。
 {{< /warning >}}
 
-<!-- 
-` certs renew` uses the existing certificates as the authoritative source for attributes (Common Name, Organization, SAN, etc.) instead of the kubeadm-config ConfigMap. It is strongly recommended to keep them both in sync.
+<!--
+`certs renew` uses the existing certificates as the authoritative source for attributes (Common Name, Organization, SAN, etc.) instead of the kubeadm-config ConfigMap. It is strongly recommended to keep them both in sync.
 -->
 {{< note >}}
-`certs renew` 使用现有的证书作为属性 (Common Name、Organization、SAN 等) 的权威来源，
-而不是 kubeadm-config ConfigMap 。强烈建议使它们保持同步。
+`certs renew` 使用现有的证书作为属性（Common Name、Organization、SAN 等）的权威来源，
+而不是 kubeadm-config ConfigMap。强烈建议使它们保持同步。
 {{< /note >}}
 
 <!--
 `kubeadm certs renew` provides the following options:
 -->
-`kubeadm certs renew`提供以下选项：
+`kubeadm certs renew` 提供以下选项：
 
 <!--
 The Kubernetes certificates normally reach their expiration date after one year.
 -->
 Kubernetes 证书通常在一年后到期。
 
-<!-- 
-
-- `--csr-only` can be used to renew certificats with an external CA by generating certificate signing requests (without actually renewing certificates in place); see next paragraph for more information. 
+<!--
+- `--csr-only` can be used to renew certificates with an external CA by generating certificate signing requests (without actually renewing certificates in place); see next paragraph for more information.
 - It's also possible to renew a single certificate instead of all.
  -->
 
@@ -276,14 +296,14 @@ Kubernetes 证书通常在一年后到期。
 <!--
 ## Renew certificates with the Kubernetes certificates API
 
-This section provide more details about how to execute manual certificate renewal using the Kubernetes certificates API.
+This section provides more details about how to execute manual certificate renewal using the Kubernetes certificates API.
 -->
-## 用 Kubernetes 证书 API 更新证书
+## 用 Kubernetes 证书 API 更新证书 {#renew-certificates-with-the-kubernetes-certificates-api}
 
 本节提供有关如何使用 Kubernetes 证书 API 执行手动证书更新的更多详细信息。
 
-<!-- 
-These are advanced topics for users who need to integrate their organization's certificate infrastructure into a kubeadm-built cluster. If the default kubeadm configuration satisfies your needs, you should let kubeadm manage certificates instead. 
+<!--
+These are advanced topics for users who need to integrate their organization's certificate infrastructure into a kubeadm-built cluster. If the default kubeadm configuration satisfies your needs, you should let kubeadm manage certificates instead.
 -->
 {{< caution >}}
 这些是针对需要将其组织的证书基础结构集成到 kubeadm 构建的集群中的用户的高级主题。
@@ -294,30 +314,27 @@ These are advanced topics for users who need to integrate their organization's c
 ### Set up a signer
 
 The Kubernetes Certificate Authority does not work out of the box.
-You can configure an external signer such as [cert-manager](https://docs.cert-manager.io/en/latest/tasks/issuers/setup-ca.html), or you can use the build-in signer.
+You can configure an external signer such as [cert-manager](https://cert-manager.io/docs/configuration/ca/), or you can use the built-in signer.
 The built-in signer is part of [`kube-controller-manager`](/docs/reference/command-line-tools-reference/kube-controller-manager/).
-To activate the build-in signer, you must pass the `--cluster-signing-cert-file` and `--cluster-signing-key-file` flags.
+To activate the built-in signer, you must pass the `--cluster-signing-cert-file` and `--cluster-signing-key-file` flags.
 -->
 
-### 设置一个签名者（Signer）
+### 设置一个签名者（Signer） {#set-up-a-signer}
 
-Kubernetes 证书颁发机构不是开箱即用。
-你可以配置外部签名者，例如
-[cert-manager](https://docs.cert-manager.io/en/latest/tasks/issuers/setup-ca.html)，
+Kubernetes 证书颁发机构不是开箱即用。你可以配置外部签名者，例如 [cert-manager](https://cert-manager.io/docs/configuration/ca/)，
 也可以使用内置签名者。
 内置签名者是
-[`kube-controller-manager`](/zh/docs/reference/command-line-tools-reference/kube-controller-manager/)
-的一部分。
+[`kube-controller-manager`](/zh-cn/docs/reference/command-line-tools-reference/kube-controller-manager/) 的一部分。
 要激活内置签名者，请传递 `--cluster-signing-cert-file` 和 `--cluster-signing-key-file` 参数。
 
 <!--
-If you're creating a new cluster, you can use a kubeadm [configuration file](/docs/reference/config-api/kubeadm-config.v1beta2/): 
+If you're creating a new cluster, you can use a kubeadm [configuration file](https://pkg.go.dev/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta3):
 -->
 如果你正在创建一个新的集群，你可以使用 kubeadm 的
-[配置文件](/docs/reference/config-api/kubeadm-config.v1beta2/)。
+[配置文件](/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3/)。
 
 ```yaml
-apiVersion: kubeadm.k8s.io/v1beta2
+apiVersion: kubeadm.k8s.io/v1beta3
 kind: ClusterConfiguration
 controllerManager:
   extraArgs:
@@ -325,23 +342,23 @@ controllerManager:
     cluster-signing-key-file: /etc/kubernetes/pki/ca.key
 ```
 
-<!-- 
+<!--
 ### Create certificate signing requests (CSR)
 -->
-### 创建证书签名请求 (CSR)
+### 创建证书签名请求 (CSR) {#create-certificate-signing-requests-csr}
 
 <!--
 See [Create CertificateSigningRequest](/docs/reference/access-authn-authz/certificate-signing-requests/#create-certificatesigningrequest) for creating CSRs with the Kubernetes API.
 -->
 有关使用 Kubernetes API 创建 CSR 的信息，
-请参见[创建 CertificateSigningRequest](/zh/docs/reference/access-authn-authz/certificate-signing-requests/#create-certificatesigningrequest)。
+请参见[创建 CertificateSigningRequest](/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests/#create-certificatesigningrequest)。
 
 <!--
 ## Renew certificates with external CA
 
-This section provides more details about how to execute manual certificate renewal using an external CA.
+This section provide more details about how to execute manual certificate renewal using an external CA.
 -->
-## 通过外部 CA 更新证书
+## 通过外部 CA 更新证书 {#renew-certificates-with-external-ca}
 
 本节提供有关如何使用外部 CA 执行手动更新证书的更多详细信息。
 
@@ -354,8 +371,8 @@ In kubeadm terms, any certificate that would normally be signed by an on-disk CA
 CSR 表示向 CA 请求客户的签名证书。
 在 kubeadm 术语中，通常由磁盘 CA 签名的任何证书都可以作为 CSR 生成。但是，CA 不能作为 CSR 生成。
 
-<!-- 
-### Create certificate signing requests (CSR) 
+<!--
+### Create certificate signing requests (CSR)
 
 You can create certificate signing requests with `kubeadm certs renew --csr-only`.
 
@@ -363,13 +380,13 @@ Both the CSR and the accompanying private key are given in the output.
 You can pass in a directory with `--csr-dir` to output the CSRs to the specified location.
 If `--csr-dir` is not specified, the default certificate directory (`/etc/kubernetes/pki`) is used.
 -->
-### 创建证书签名请求 (CSR)
+### 创建证书签名请求 (CSR) {#create-certificate-signing-requests-csr-1}
 
 你可以通过 `kubeadm certs renew --csr-only` 命令创建证书签名请求。
 
 CSR 和随附的私钥都在输出中给出。
-你可以传入一个带有 `--csr-dir` 的目录，将 CRS 输出到指定位置。
-如果未指定 `--csr-dir` ，则使用默认证书目录（`/etc/kubernetes/pki`）。
+你可以传入一个带有 `--csr-dir` 的目录，将 CSR 输出到指定位置。
+如果未指定 `--csr-dir`，则使用默认证书目录（`/etc/kubernetes/pki`）。
 
 <!--
 Certificates can be renewed with `kubeadm certs renew --csr-only`.
@@ -386,9 +403,9 @@ It is the responsibility of the CA to specify [the correct cert usages](/docs/se
 when issuing a certificate.
 -->
 CSR 中包含一个证书的名字，域和 IP，但是未指定用法。
-颁发证书时，CA 有责任指定[正确的证书用法](/zh/docs/setup/best-practices/certificates/#all-certificates)
+颁发证书时，CA 有责任指定[正确的证书用法](/zh-cn/docs/setup/best-practices/certificates/#all-certificates)
 
-<!-- 
+<!--
 * In `openssl` this is done with the
   [`openssl ca` command](https://superuser.com/questions/738612/openssl-ca-keyusage-extension).
 * In `cfssl` you specify
@@ -401,8 +418,8 @@ CSR 中包含一个证书的名字，域和 IP，但是未指定用法。
   [在配置文件中指定用法](https://github.com/cloudflare/cfssl/blob/master/doc/cmd/cfssl.txt#L170)
   来完成的。
 
-<!-- 
-After a certificate is signed using your preferred method, the certificate and the private key must be copied to the PKI directory (by default `/etc/kubernetes/pki`). 
+<!--
+After a certificate is signed using your preferred method, the certificate and the private key must be copied to the PKI directory (by default `/etc/kubernetes/pki`).
 -->
 使用首选方法对证书签名后，必须将证书和私钥复制到 PKI 目录（默认为 `/etc/kubernetes/pki` ）。
 
@@ -413,12 +430,12 @@ Kubeadm does not support rotation or replacement of CA certificates out of the b
 
 For more information about manual rotation or replacement of CA, see [manual rotation of CA certificates](/docs/tasks/tls/manual-rotation-of-ca-certificates/).
 -->
-## 证书机构（CA）轮换     {#certificate-authority-rotation}
+## 证书机构（CA）轮换 {#certificate-authority-rotation}
 
 kubeadm 并不直接支持对 CA 证书的轮换或者替换。
 
 关于手动轮换或者置换 CA 的更多信息，可参阅
-[手动轮换 CA 证书](/zh/docs/tasks/tls/manual-rotation-of-ca-certificates/)。
+[手动轮换 CA 证书](/zh-cn/docs/tasks/tls/manual-rotation-of-ca-certificates/)。
 
 <!--
 ## Enabling signed kubelet serving certificates {#kubelet-serving-certs}
@@ -431,9 +448,9 @@ kubelet cannot be secured with TLS.
 To configure the kubelets in a new kubeadm cluster to obtain properly signed serving
 certificates you must pass the following minimal configuration to `kubeadm init`:
 -->
-## 启用已签名的 kubelet 服务证书   {#kubelet-serving-certs}
+## 启用已签名的 kubelet 服务证书 {#kubelet-serving-certs}
 
-默认情况下，kubeadm 所部署的 kubelet 服务证书是自签名（Self-Signed））。
+默认情况下，kubeadm 所部署的 kubelet 服务证书是自签名（Self-Signed）。
 这意味着从 [metrics-server](https://github.com/kubernetes-sigs/metrics-server)
 这类外部服务发起向 kubelet 的链接时无法使用 TLS 来完成保护。
 
@@ -441,7 +458,7 @@ certificates you must pass the following minimal configuration to `kubeadm init`
 你必须向 `kubeadm init` 传递如下最小配置数据：
 
 ```yaml
-apiVersion: kubeadm.k8s.io/v1beta2
+apiVersion: kubeadm.k8s.io/v1beta3
 kind: ClusterConfiguration
 ---
 apiVersion: kubelet.config.k8s.io/v1beta1
@@ -451,7 +468,7 @@ serverTLSBootstrap: true
 
 <!--
 If you have already created the cluster you must adapt it by doing the following:
- - Find and edit the `kubelet-config-{{< skew latestVersion >}}` ConfigMap in the `kube-system` namespace.
+ - Find and edit the `kubelet-config-{{< skew currentVersion>}}` ConfigMap in the `kube-system` namespace.
 In that ConfigMap, the `kubelet` key has a
 [KubeletConfiguration](/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
 document as its value. Edit the KubeletConfiguration document to set `serverTLSBootstrap: true`.
@@ -460,10 +477,10 @@ and restart the kubelet with `systemctl restart kubelet`
 -->
 如果你已经创建了集群，你必须通过执行下面的操作来完成适配：
 
-- 找到 `kube-system` 名字空间中名为 `kubelet-config-{{< skew latestVersion >}}`
+- 找到 `kube-system` 名字空间中名为 `kubelet-config-{{< skew currentVersion>}}`
   的 ConfigMap 并编辑之。
   在该 ConfigMap 中，`kubelet` 键下面有一个
-  [KubeletConfiguration](/zh/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
+  [KubeletConfiguration](/zh-cn/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
   文档作为其取值。编辑该 KubeletConfiguration 文档以设置
   `serverTLSBootstrap: true`。
 - 在每个节点上，在 `/var/lib/kubelet/config.yaml` 文件中添加
@@ -483,8 +500,8 @@ These CSRs can be viewed using:
 字段 `serverTLSBootstrap` 将允许启动引导 kubelet 的服务证书，方式
 是从 `certificates.k8s.io` API 处读取。这种方式的一种局限在于这些
 证书的 CSR（证书签名请求）不能被 kube-controller-manager 中默认的
-签名组件 
-[`kubernetes.io/kubelet-serving`](/zh/docs/reference/access-authn-authz/certificate-signing-requests/#kubernetes-signers)
+签名组件
+[`kubernetes.io/kubelet-serving`](/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests/#kubernetes-signers)
 批准。需要用户或者第三方控制器来执行此操作。
 
 可以使用下面的命令来查看 CSR：
@@ -513,14 +530,14 @@ By default, these serving certificate will expire after one year. Kubeadm sets t
 `KubeletConfiguration` field `rotateCertificates` to `true`, which means that close
 to expiration a new set of CSRs for the serving certificates will be created and must
 be approved to complete the rotation. To understand more see
-[Certificate Rotation](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/#certificate-rotation).
+[Certificate Rotation](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/#certificate-rotation).
 -->
-默认情况下，这些服务证书上会在一年后过期。
+默认情况下，这些服务证书会在一年后过期。
 kubeadm 将 `KubeletConfiguration` 的 `rotateCertificates` 字段设置为
 `true`；这意味着证书快要过期时，会生成一组针对服务证书的新的 CSR，而
 这些 CSR 也要被批准才能完成证书轮换。
 要进一步了解这里的细节，可参阅
-[证书轮换](/zh/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/#certificate-rotation)
+[证书轮换](/zh-cn/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/#certificate-rotation)
 文档。
 
 <!--
@@ -536,7 +553,7 @@ the node identity with an out of band mechanism.
 
 <!--
 Third party custom controllers can be used:
-- [kubelet-rubber-stamp](https://github.com/kontena/kubelet-rubber-stamp)
+- [kubelet-csr-approver](https://github.com/postfinance/kubelet-csr-approver)
 
 Such a controller is not a secure mechanism unless it not only verifies the CommonName
 in the CSR but also verifies the requested IPs and domain names. This would prevent
@@ -545,10 +562,87 @@ CSRs requesting serving certificates for any IP or domain name.
 -->
 也可以使用第三方定制的控制器：
 
-- [kubelet-rubber-stamp](https://github.com/kontena/kubelet-rubber-stamp)
+- [kubelet-csr-approver](https://github.com/postfinance/kubelet-csr-approver)
 
 除非既能够验证 CSR 中的 CommonName，也能检查请求的 IP 和域名，
 这类控制器还算不得安全的机制。
 只有完成彻底的检查，才有可能避免有恶意的、能够访问 kubelet 客户端证书的第三方
 为任何 IP 或域名请求服务证书。
 
+<!--
+## Generating kubeconfig files for additional users {#kubeconfig-additional-users}
+-->
+## 为其他用户生成 kubeconfig 文件 {#kubeconfig-additional-users}
+
+<!--
+During cluster creation, kubeadm signs the certificate in the `admin.conf` to have
+`Subject: O = system:masters, CN = kubernetes-admin`.
+[`system:masters`](/docs/reference/access-authn-authz/rbac/#user-facing-roles)
+is a break-glass, super user group that bypasses the authorization layer (e.g. RBAC).
+Sharing the `admin.conf` with additional users is **not recommended**!
+-->
+在集群创建过程中，kubeadm 对 `admin.conf` 中的证书进行签名时，将其配置为
+`Subject: O = system:masters, CN = kubernetes-admin`。
+[`system:masters`](/zh-cn/docs/reference/access-authn-authz/rbac/#user-facing-roles)
+是一个例外的超级用户组，可以绕过鉴权层（例如 RBAC）。
+强烈建议不要将 `admin.conf` 文件与任何人共享。
+
+<!--
+Instead, you can use the [`kubeadm kubeconfig user`](/docs/reference/setup-tools/kubeadm/kubeadm-kubeconfig)
+command to generate kubeconfig files for additional users.
+The command accepts a mixture of command line flags and
+[kubeadm configuration](/docs/reference/config-api/kubeadm-config.v1beta3/) options.
+The generated kubeconfig will be written to stdout and can be piped to a file
+using `kubeadm kubeconfig user ... > somefile.conf`.
+-->
+你要使用 [`kubeadm kubeconfig user`](/zh-cn/docs/reference/setup-tools/kubeadm/kubeadm-kubeconfig)
+命令为其他用户生成 kubeconfig 文件，这个命令支持命令行参数和
+[kubeadm 配置结构](/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3/)。
+以上命令会将 kubeconfig 打印到终端上，也可以使用 `kubeadm kubeconfig user ... > somefile.conf`
+输出到一个文件中。
+
+<!--
+Example configuration file that can be used with `--config`:
+-->
+如下 kubeadm 可以在 `--config` 后加的配置文件示例：
+
+```yaml
+# example.yaml
+apiVersion: kubeadm.k8s.io/v1beta3
+kind: ClusterConfiguration
+# kubernetes 将作为 kubeconfig 中集群名称
+clusterName: "kubernetes"
+# some-dns-address:6443 将作为集群 kubeconfig 文件中服务地址（IP 或者 DNS 名称）
+controlPlaneEndpoint: "some-dns-address:6443"
+# 从本地挂载集群的 CA 秘钥和 CA 证书
+certificatesDir: "/etc/kubernetes/pki"
+```
+
+<!--
+Make sure that these settings match the desired target cluster settings.
+To see the settings of an existing cluster use:
+-->
+确保这些设置与所需的目标集群设置相匹配。可以使用以下命令查看现有集群的设置：
+
+```shell
+kubectl get cm kubeadm-config -n kube-system -o=jsonpath="{.data.ClusterConfiguration}"
+```
+
+<!--
+The following example will generate a kubeconfig file with credentials valid for 24 hours
+for a new user `johndoe` that is part of the `appdevs` group:
+-->
+以下示例将为在 `appdevs` 组的 `johndoe` 用户创建一个有效期为 24 小时的 kubeconfig 文件：
+
+```shell
+kubeadm kubeconfig user --config example.yaml --org appdevs --client-name johndoe --validity-period 24h
+```
+
+<!--
+The following example will generate a kubeconfig file with administrator credentials valid for 1 week:
+-->
+以下示例将为管理员创建一个有效期有一周的 kubeconfig 文件：
+
+```shell
+kubeadm kubeconfig user --config example.yaml --client-name admin --validity-period 168h
+```
diff --git a/content/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-reconfigure.md b/content/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-reconfigure.md
new file mode 100644
index 0000000000..0b757039ec
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-reconfigure.md
@@ -0,0 +1,509 @@
+---
+title: 重新配置 kubeadm 集群
+content_type: task
+weight: 10
+---
+<!--
+reviewers:
+- sig-cluster-lifecycle
+title: Reconfiguring a kubeadm cluster
+content_type: task
+weight: 10
+-->
+
+<!-- overview -->
+<!--
+kubeadm does not support automated ways of reconfiguring components that
+were deployed on managed nodes. One way of automating this would be
+by using a custom [operator](/docs/concepts/extend-kubernetes/operator/).
+-->
+kubeadm 不支持自动重新配置部署在托管节点上的组件的方式。 
+一种自动化的方法是使用自定义的 
+[operator](/zh-cn/docs/concepts/extend-kubernetes/operator/)。
+
+<!--
+To modify the components configuration you must manually edit associated cluster
+objects and files on disk.
+
+This guide shows the correct sequence of steps that need to be performed
+to achieve kubeadm cluster reconfiguration.
+-->
+要修改组件配置，你必须手动编辑磁盘上关联的集群对象和文件。
+本指南展示了实现 kubeadm 集群重新配置所需执行的正确步骤顺序。
+
+## {{% heading "prerequisites" %}}
+
+<!--
+- You need a cluster that was deployed using kubeadm
+- Have administrator credentials (`/etc/kubernetes/admin.conf`) and network connectivity
+to a running kube-apiserver in the cluster from a host that has kubectl installed
+- Have a text editor installed on all hosts
+-->
+- 你需要一个使用 kubeadm 部署的集群
+- 拥有管理员凭据（`/etc/kubernetes/admin.conf`）
+  和从安装了 kubectl 的主机到集群中正在运行的 kube-apiserver 的网络连接
+- 在所有主机上安装文本编辑器
+
+<!-- steps -->
+
+<!--
+## Reconfiguring the cluster
+kubeadm writes a set of cluster wide component configuration options in
+ConfigMaps and other objects. These objects must be manually edited. The command `kubectl edit`
+can be used for that.
+-->
+## 重新配置集群
+
+kubeadm 在 ConfigMap 和其他对象中写入了一组集群范围的组件配置选项。 
+这些对象必须手动编辑，可以使用命令 `kubectl edit`。
+
+<!--
+The `kubectl edit` command will open a text editor where you can edit and save the object directly.
+
+You can use the environment variables `KUBECONFIG` and `KUBE_EDITOR` to specify the location of
+the kubectl consumed kubeconfig file and preferred text editor.
+
+For example:
+-->
+`kubectl edit` 命令将打开一个文本编辑器，你可以在其中直接编辑和保存对象。
+你可以使用环境变量 `KUBECONFIG` 和 `KUBE_EDITOR` 来指定 kubectl
+使用的 kubeconfig 文件和首选文本编辑器的位置。
+
+例如：
+```
+KUBECONFIG=/etc/kubernetes/admin.conf KUBE_EDITOR=nano kubectl edit <parameters>
+```
+
+{{< note >}}
+<!--
+Upon saving any changes to these cluster objects, components running on nodes may not be
+automatically updated. The steps below instruct you on how to perform that manually.
+-->
+保存对这些集群对象的任何更改后，节点上运行的组件可能不会自动更新。 
+以下步骤将指导你如何手动执行该操作。
+{{< /note >}}
+
+{{< warning >}}
+<!--
+Component configuration in ConfigMaps is stored as unstructured data (YAML string).
+This means that validation will not be performed upon updating the contents of a ConfigMap.
+You have to be careful to follow the documented API format for a particular
+component configuration and avoid introducing typos and YAML indentation mistakes.
+-->
+
+ConfigMaps 中的组件配置存储为非结构化数据（YAML 字符串）。 这意味着在更新
+ConfigMap 的内容时不会执行验证。 你必须小心遵循特定组件配置的文档化 API 格式， 
+并避免引入拼写错误和 YAML 缩进错误。
+{{< /warning >}}
+
+<!--
+### Applying cluster configuration changes
+
+#### Updating the `ClusterConfiguration`
+
+During cluster creation and upgrade, kubeadm writes its
+[`ClusterConfiguration`](/docs/reference/config-api/kubeadm-config.v1beta3/)
+in a ConfigMap called `kubeadm-config` in the `kube-system` namespace.
+
+To change a particular option in the `ClusterConfiguration` you can edit the ConfigMap with this command:
+
+The configuration is located under the `data.ClusterConfiguration` key.
+-->
+### 应用集群配置更改
+
+#### 更新 `ClusterConfiguration`
+
+在集群创建和升级期间，kubeadm 将其
+[`ClusterConfiguration`](/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3/)
+写入 `kube-system` 命名空间中名为 `kubeadm-config` 的 ConfigMap。
+
+要更改 `ClusterConfiguration` 中的特定选项，你可以使用以下命令编辑 ConfigMap：
+
+```shell
+kubectl edit cm -n kube-system kubeadm-config
+```
+
+配置位于 `data.ClusterConfiguration` 键下。
+
+{{< note >}}
+<!--
+The `ClusterConfiguration` includes a variety of options that affect the configuration of individual
+components such as kube-apiserver, kube-scheduler, kube-controller-manager, CoreDNS, etcd and kube-proxy.
+Changes to the configuration must be reflected on node components manually.
+-->
+`ClusterConfiguration` 包括各种影响单个组件配置的选项， 例如
+kube-apiserver、kube-scheduler、kube-controller-manager、
+CoreDNS、etcd 和 kube-proxy。 对配置的更改必须手动反映在节点组件上。
+{{< /note >}}
+
+<!--
+#### Reflecting `ClusterConfiguration` changes on control plane nodes
+
+kubeadm manages the control plane components as static Pod manifests located in
+the directory `/etc/kubernetes/manifests`.
+Any changes to the `ClusterConfiguration` under the `apiServer`, `controllerManager`, `scheduler` or `etcd`
+keys must be reflected in the associated files in the manifests directory on a control plane node.
+-->
+#### 在控制平面节点上反映 `ClusterConfiguration` 更改
+
+kubeadm 将控制平面组件作为位于 `/etc/kubernetes/manifests`
+目录中的静态 Pod 清单进行管理。
+对 `apiServer`、`controllerManager`、`scheduler` 或 `etcd`键下的
+`ClusterConfiguration` 的任何更改都必须反映在控制平面节点上清单目录中的关联文件中。
+
+<!--
+Such changes may include:
+- `extraArgs` - requires updating the list of flags passed to a component container
+- `extraMounts` - requires updated the volume mounts for a component container
+- `*SANs` - requires writing new certificates with updated Subject Alternative Names.
+
+Before proceeding with these changes, make sure you have backed up the directory `/etc/kubernetes/`.
+-->
+
+此类更改可能包括:
+- `extraArgs` - 需要更新传递给组件容器的标志列表
+- `extraMounts` - 需要更新组件容器的卷挂载
+- `*SANs` - 需要使用更新的主题备用名称编写新证书
+
+在继续进行这些更改之前，请确保你已备份目录 `/etc/kubernetes/`。
+
+<!--
+To write new certificates you can use:
+
+To write new manifest files in `/etc/kubernetes/manifests` you can use:
+-->
+
+要编写新证书，你可以使用：
+
+```shell
+kubeadm init phase certs <component-name> --config <config-file>
+```
+
+要在 `/etc/kubernetes/manifests` 中编写新的清单文件，你可以使用：
+
+```shell
+kubeadm init phase control-plane <component-name> --config <config-file>
+```
+
+<!--
+The `<config-file>` contents must match the updated `ClusterConfiguration`.
+The `<component-name>` value must be the name of the component.
+-->
+`<config-file>` 内容必须与更新后的 `ClusterConfiguration` 匹配。
+`<component-name>` 值必须是组件的名称。
+
+{{< note >}}
+<!--
+Updating a file in `/etc/kubernetes/manifests` will tell the kubelet to restart the static Pod for the corresponding component.
+Try doing these changes one node at a time to leave the cluster without downtime.
+-->
+更新 `/etc/kubernetes/manifests` 中的文件将告诉 kubelet 重新启动相应组件的静态 Pod。
+尝试一次对一个节点进行这些更改，以在不停机的情况下离开集群。
+{{< /note >}}
+
+<!--
+### Applying kubelet configuration changes
+
+#### Updating the `KubeletConfiguration`
+
+During cluster creation and upgrade, kubeadm writes its
+[`KubeletConfiguration`](/docs/reference/config-api/kubelet-config.v1beta1/)
+in a ConfigMap called `kubelet-config` in the `kube-system` namespace.
+
+You can edit the ConfigMap with this command:
+
+The configuration is located under the `data.kubelet` key.
+-->
+### 应用 kubelet 配置更改
+
+#### 更新 `KubeletConfiguration`
+
+在集群创建和升级期间，kubeadm 将其 
+[`KubeletConfiguration`](/zh-cn/docs/reference/config-api/kubelet-config.v1beta1/) 
+写入 `kube-system` 命名空间中名为 `kubelet-config` 的 ConfigMap。
+你可以使用以下命令编辑 ConfigMap：
+
+```shell
+kubectl edit cm -n kube-system kubelet-config
+```
+
+配置位于 `data.kubelet` 键下。
+
+<!--
+#### Reflecting the kubelet changes
+
+To reflect the change on kubeadm nodes you must do the following:
+- Log in to a kubeadm node
+- Run `kubeadm upgrade node phase kubelet-config` to download the latest `kubelet-config`
+ConfigMap contents into the local file `/var/lib/kubelet/config.conf`
+- Edit the file `/var/lib/kubelet/kubeadm-flags.env` to apply additional configuration with
+flags
+- Restart the kubelet service with `systemctl restart kubelet`
+-->
+#### 反映 kubelet 的更改
+
+要反映 kubeadm 节点上的更改，你必须执行以下操作：
+
+- 登录到 kubeadm 节点
+- 运行 `kubeadm upgrade node phase kubelet-config` 下载最新的
+  `kubelet-config` ConfigMap 内容到本地文件 `/var/lib/kubelet/config.conf`
+- 编辑文件 `/var/lib/kubelet/kubeadm-flags.env` 以使用标志来应用额外的配置
+- 使用 `systemctl restart kubelet` 重启 kubelet 服务
+
+{{< note >}}
+<!--
+Do these changes one node at a time to allow workloads to be rescheduled properly.
+-->
+一次执行一个节点的这些更改，以允许正确地重新安排工作负载。
+{{< /note >}}
+
+{{< note >}}
+<!--
+During `kubeadm upgrade`, kubeadm downloads the `KubeletConfiguration` from the
+`kubelet-config` ConfigMap and overwrite the contents of `/var/lib/kubelet/config.conf`.
+This means that node local configuration must be applied either by flags in
+`/var/lib/kubelet/kubeadm-flags.env` or by manually updating the contents of
+`/var/lib/kubelet/config.conf` after `kubeadm upgrade`, and then restarting the kubelet.
+-->
+在 `kubeadm upgrade` 期间，kubeadm 从 `kubelet-config` ConfigMap
+下载 `KubeletConfiguration` 并覆盖 `/var/lib/kubelet/config.conf` 的内容。
+这意味着节点本地配置必须通过`/var/lib/kubelet/kubeadm-flags.env`中的标志或在
+kubeadm upgrade` 后手动更新`/var/lib/kubelet/config.conf`的内容来应用，然后重新启动 kubelet。
+{{< /note >}}
+
+<!--
+### Applying kube-proxy configuration changes
+
+#### Updating the `KubeProxyConfiguration`
+
+During cluster creation and upgrade, kubeadm writes its
+[`KubeProxyConfiguration`](/docs/reference/config-api/kube-proxy-config.v1alpha1/)
+in a ConfigMap in the `kube-system` namespace called `kube-proxy`.
+
+This ConfigMap is used by the `kube-proxy` DaemonSet in the `kube-system` namespace.
+
+To change a particular option in the `KubeProxyConfiguration`, you can edit the ConfigMap with this command:
+
+The configuration is located under the `data.config.conf` key.
+-->
+### 应用 kube-proxy 配置更改
+
+#### 更新 `KubeProxyConfiguration`
+
+在集群创建和升级期间，kubeadm 将其写入
+[`KubeProxyConfiguration`](/zh-cn/docs/reference/config-api/kube-proxy-config.v1alpha1/) 
+在名为 `kube-proxy` 的 `kube-system` 命名空间中的 ConfigMap 中。
+
+此 ConfigMap 由 `kube-system` 命名空间中的 `kube-proxy` DaemonSet 使用。
+
+要更改 `KubeProxyConfiguration` 中的特定选项，你可以使用以下命令编辑 ConfigMap：
+
+```shell
+kubectl edit cm -n kube-system kube-proxy
+```
+
+配置位于 `data.config.conf` 键下。
+
+<!--
+#### Reflecting the kube-proxy changes
+
+Once the `kube-proxy` ConfigMap is updated, you can restart all kube-proxy Pods:
+
+Obtain the Pod names:
+
+Delete a Pod with:
+
+New Pods that use the updated ConfigMap will be created.
+-->
+#### 反映 kube-proxy 的更改
+
+更新 `kube-proxy` ConfigMap 后，你可以重新启动所有 kube-proxy Pod：
+
+获取 Pod 名称：
+
+```shell
+kubectl get po -n kube-system | grep kube-proxy
+```
+
+使用以下命令删除 Pod：
+
+```shell
+kubectl delete po -n kube-system <pod-name>
+```
+
+将创建使用更新的 ConfigMap 的新 Pod。
+
+{{< note >}}
+<!--
+Because kubeadm deploys kube-proxy as a DaemonSet, node specific configuration is unsupported.
+-->
+由于 kubeadm 将 kube-proxy 部署为 DaemonSet，因此不支持特定于节点的配置。
+{{< /note >}}
+
+<!--
+### Applying CoreDNS configuration changes
+
+#### Updating the CoreDNS Deployment and Service
+
+kubeadm deploys CoreDNS as a Deployment called `coredns` and with a Service `kube-dns`,
+both in the `kube-system` namespace.
+
+To update any of the CoreDNS settings, you can edit the Deployment and
+Service objects:
+-->
+### 应用 CoreDNS 配置更改
+
+#### 更新 CoreDNS 的 Deployment 和 Service
+
+kubeadm 将 CoreDNS 部署为名为 `coredns` 的 Deployment，并使用 Service `kube-dns`，
+两者都在 `kube-system` 命名空间中。
+
+要更新任何 CoreDNS 设置，你可以编辑 Deployment 和 Service：
+
+
+```shell
+kubectl edit deployment -n kube-system coredns
+kubectl edit service -n kube-system kube-dns
+```
+
+<!--
+#### Reflecting the CoreDNS changes
+
+Once the CoreDNS changes are applied you can delete the CoreDNS Pods:
+
+Obtain the Pod names:
+
+Delete a Pod with:
+-->
+#### 反映 CoreDNS 的更改
+
+应用 CoreDNS 更改后，你可以删除 CoreDNS Pod。
+
+获取 Pod 名称：
+
+```shell
+kubectl get po -n kube-system | grep coredns
+```
+
+使用以下命令删除 Pod：
+
+```shell
+kubectl delete po -n kube-system <pod-name>
+```
+
+<!--
+New Pods with the updated CoreDNS configuration will be created.
+-->
+将创建具有更新的 CoreDNS 配置的新 Pod。
+
+{{< note >}}
+<!--
+kubeadm does not allow CoreDNS configuration during cluster creation and upgrade.
+This means that if you execute `kubeadm upgrade apply`, your changes to the CoreDNS
+-->
+kubeadm 不允许在集群创建和升级期间配置 CoreDNS。
+这意味着如果执行了 `kubeadm upgrade apply`，你对 
+CoreDNS 对象的更改将丢失并且必须重新应用。
+{{< /note >}}
+
+<!--
+## Persisting the reconfiguration
+
+During the execution of `kubeadm upgrade` on a managed node, kubeadm might overwrite configuration
+that was applied after the cluster was created (reconfiguration).
+-->
+## 持久化重新配置
+
+在受管节点上执行 `kubeadm upgrade` 期间，kubeadm 
+可能会覆盖在创建集群（重新配置）后应用的配置。
+
+<!--
+### Persisting Node object reconfiguration
+
+kubeadm writes Labels, Taints, CRI socket and other information on the Node object for a particular
+Kubernetes node. To change any of the contents of this Node object you can use:
+-->
+### 持久化 Node 对象重新配置
+
+kubeadm 在特定 Kubernetes 节点的 Node 对象上写入标签、污点、CRI 
+套接字和其他信息。要更改此 Node 对象的任何内容，你可以使用：
+
+```shell
+kubectl edit no <node-name>
+```
+
+<!--
+During `kubeadm upgrade` the contents of such a Node might get overwritten.
+If you would like to persist your modifications to the Node object after upgrade,
+you can prepare a [kubectl patch](/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/)
+and apply it to the Node object:
+-->
+在 `kubeadm upgrade` 期间，此类节点的内容可能会被覆盖。
+如果你想在升级后保留对 Node 对象的修改，你可以准备一个
+[kubectl patch](/zh-cn/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/)
+并将其应用到 Node 对象：
+
+```shell
+kubectl patch no <node-name> --patch-file <patch-file>
+```
+
+<!--
+#### Persisting control plane component reconfiguration
+
+The main source of control plane configuration is the `ClusterConfiguration`
+object stored in the cluster. To extend the static Pod manifests configuration,
+[patches](/docs/setup/production-environment/tools/kubeadm/control-plane-flags/#patches) can be used.
+
+These patch files must remain as files on the control plane nodes to ensure that
+they can be used by the `kubeadm upgrade ... --patches <directory>`.
+
+If reconfiguration is done to the `ClusterConfiguration` and static Pod manifests on disk,
+the set of node specific patches must be updated accordingly.
+-->
+#### 持久化控制平面组件重新配置
+
+控制平面配置的主要来源是存储在集群中的 `ClusterConfiguration` 对象。
+要扩展静态 Pod 清单配置，可以使用 
+[patches](/zh-cn/docs/setup/production-environment/tools/kubeadm/control-plane-flags/#patches)。
+
+这些补丁文件必须作为文件保留在控制平面节点上，以确保它们可以被 
+`kubeadm upgrade ... --patches <directory>` 使用。
+
+如果对 `ClusterConfiguration` 和磁盘上的静态 Pod 清单进行了重新配置，则必须相应地更新节点特定补丁集。
+
+<!--
+#### Persisting kubelet reconfiguration
+
+Any changes to the `KubeletConfiguration` stored in `/var/lib/kubelet/config.conf` will be overwritten on
+`kubeadm upgrade` by downloading the contents of the cluster wide `kubelet-config` ConfigMap.
+To persist kubelet node specific configuration either the file `/var/lib/kubelet/config.conf`
+has to be updated manually post-upgrade or the file `/var/lib/kubelet/kubeadm-flags.env` can include flags.
+The kubelet flags override the associated `KubeletConfiguration` options, but note that
+some of the flags are deprecated.
+
+A kubelet restart will be required after changing `/var/lib/kubelet/config.conf` or
+`/var/lib/kubelet/kubeadm-flags.env`.
+-->
+#### 持久化 kubelet 重新配置
+
+对存储在 `/var/lib/kubelet/config.conf` 中的 `KubeletConfiguration` 
+所做的任何更改都将在 `kubeadm upgrade` 时因为下载集群范围内的 `kubelet-config`
+ConfigMap 的内容而被覆盖。
+要持久保存 kubelet 节点特定的配置，文件`/var/lib/kubelet/config.conf` 
+必须在升级后手动更新，或者文件`/var/lib/kubelet/kubeadm-flags.env` 可以包含标志。
+kubelet 标志会覆盖相关的 `KubeletConfiguration` 选项，但请注意，有些标志已被弃用。
+
+更改 `/var/lib/kubelet/config.conf` 或 `/var/lib/kubelet/kubeadm-flags.env` 
+后需要重启 kubelet。
+
+{{% heading "whatsnext" %}}
+
+<!--
+- [Upgrading kubeadm clusters](/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade)
+- [Customizing components with the kubeadm API](/docs/setup/production-environment/tools/kubeadm/control-plane-flags)
+- [Certificate management with kubeadm](/docs/tasks/administer-cluster/kubeadm/kubeadm-certs)
+-->
+
+- [升级 kubeadm 集群](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade)
+- [使用 kubeadm API 自定义组件](/zh-cn/docs/setup/production-environment/tools/kubeadm/control-plane-flags)
+- [使用 kubeadm 管理证书](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-certs)
\ No newline at end of file
diff --git a/content/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade.md b/content/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade.md
similarity index 59%
rename from content/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade.md
rename to content/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade.md
index 81623a6b4c..64cf1c8acf 100644
--- a/content/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade.md
@@ -9,21 +9,20 @@ reviewers:
 title: Upgrading kubeadm clusters
 content_type: task
 weight: 20
-min-kubernetes-server-version: 1.18
 -->
 
 <!-- overview -->
 
 <!--
 This page explains how to upgrade a Kubernetes cluster created with kubeadm from version
-{{< skew latestVersionAddMinor -1 >}}.x to version {{< skew latestVersion >}}.x, and from version
-{{< skew latestVersion >}}.x to {{< skew latestVersion >}}.y (where `y > x`). Skipping MINOR versions
-when upgrading is unsupported.
+{{< skew currentVersionAddMinor -1 >}}.x to version {{< skew currentVersion >}}.x, and from version
+{{< skew currentVersion >}}.x to {{< skew currentVersion >}}.y (where `y > x`). Skipping MINOR versions
+when upgrading is unsupported. For more details, please visit [Version Skew Policy](https://kubernetes.io/releases/version-skew-policy/).
 -->
-本页介绍如何将 `kubeadm` 创建的 Kubernetes 集群从 {{< skew latestVersionAddMinor -1 >}}.x 版本
-升级到 {{< skew latestVersion >}}.x 版本以及从 {{< skew latestVersion >}}.x
-升级到 {{< skew latestVersion >}}.y（其中 `y > x`）。略过次版本号的升级是
-不被支持的。
+本页介绍如何将 `kubeadm` 创建的 Kubernetes 集群从 {{< skew currentVersionAddMinor -1 >}}.x 版本
+升级到 {{< skew currentVersion >}}.x 版本以及从 {{< skew currentVersion >}}.x
+升级到 {{< skew currentVersion >}}.y（其中 `y > x`）。略过次版本号的升级是
+不被支持的。更多详情请访问[版本倾斜政策](https://kubernetes.io/releases/version-skew-policy/)。
 
 <!--
 To see information about upgrading clusters created using older versions of kubeadm,
@@ -32,27 +31,26 @@ please refer to following pages instead:
 要查看 kubeadm 创建的有关旧版本集群升级的信息，请参考以下页面：
 
 <!--
-- [Upgrading kubeadm cluster from 1.17 to 1.18](https://v1-18.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
-- [Upgrading kubeadm cluster from 1.16 to 1.17](https://v1-17.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
-- [Upgrading kubeadm cluster from 1.15 to 1.16](https://v1-16.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
-- [Upgrading kubeadm cluster from 1.14 to 1.15](https://v1-15.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade-1-15/)
-- [Upgrading kubeadm cluster from 1.13 to 1.14](https://v1-15.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade-1-14/)
+- [Upgrading a kubeadm cluster from {{< skew currentVersionAddMinor -2 >}} to {{< skew currentVersionAddMinor -1 >}}](https://v{{< skew currentVersionAddMinor -1 "-" >}}.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
+- [Upgrading a kubeadm cluster from {{< skew currentVersionAddMinor -3 >}} to {{< skew currentVersionAddMinor -2 >}}](https://v{{< skew currentVersionAddMinor -2 "-" >}}.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
+- [Upgrading a kubeadm cluster from {{< skew currentVersionAddMinor -4 >}} to {{< skew currentVersionAddMinor -3 >}}](https://v{{< skew currentVersionAddMinor -3 "-" >}}.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
+- [Upgrading a kubeadm cluster from {{< skew currentVersionAddMinor -5 >}} to {{< skew currentVersionAddMinor -4 >}}](https://v{{< skew currentVersionAddMinor -4 "-" >}}.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
 -->
-- [将 kubeadm 集群从 1.17 升级到 1.18](https://v1-18.docs.kubernetes.io/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
-- [将 kubeadm 集群从 1.16 升级到 1.17](https://v1-17.docs.kubernetes.io/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
-- [将 kubeadm 集群从 1.15 升级到 1.16](https://v1-16.docs.kubernetes.io/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
-- [将 kubeadm 集群从 1.14 升级到 1.15](https://v1-15.docs.kubernetes.io/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade-1-15/)
-- [将 kubeadm 集群从 1.13 升级到 1.14](https://v1-15.docs.kubernetes.io/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade-1-14/)
+- [将 kubeadm 集群从 {{< skew currentVersionAddMinor -2 >}} 升级到 {{< skew currentVersionAddMinor -1 >}}](https://v{{< skew currentVersionAddMinor -1 "-" >}}.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
+- [将 kubeadm 集群从 {{< skew currentVersionAddMinor -3 >}} 升级到 {{< skew currentVersionAddMinor -2 >}}](https://v{{< skew currentVersionAddMinor -2 "-" >}}.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
+- [将 kubeadm 集群从 {{< skew currentVersionAddMinor -4 >}} 升级到 {{< skew currentVersionAddMinor -3 >}}](https://v{{< skew currentVersionAddMinor -3 "-" >}}.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
+- [将 kubeadm 集群从 {{< skew currentVersionAddMinor -5 >}} 升级到 {{< skew currentVersionAddMinor -4 >}}](https://v{{< skew currentVersionAddMinor -4 "-" >}}.docs.kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
 
 <!--
 The upgrade workflow at high level is the following:
+-->
+升级工作的基本流程如下：
 
+<!--
 1. Upgrade a primary control plane node.
 1. Upgrade additional control plane nodes.
 1. Upgrade worker nodes.
 -->
-升级工作的基本流程如下：
-
 1. 升级主控制平面节点
 1. 升级其他控制平面节点
 1. 升级工作节点
@@ -60,12 +58,13 @@ The upgrade workflow at high level is the following:
 ## {{% heading "prerequisites" %}}
 
 <!--
-- Make sure you read the [release notes]({{< latest-release-notes >}}) carefully.
+- Make sure you read the [release notes](https://git.k8s.io/kubernetes/CHANGELOG) carefully.
 - The cluster should use a static control plane and etcd pods or external etcd.
 - Make sure to back up any important components, such as app-level state stored in a database.
   `kubeadm upgrade` does not touch your workloads, only components internal to Kubernetes, but backups are always a best practice.
+- [Swap must be disabled](https://serverfault.com/questions/684771/best-way-to-disable-swap-in-linux).
 -->
-- 务必仔细认真阅读[发行说明]({{< latest-release-notes >}})。
+- 务必仔细认真阅读[发行说明](https://git.k8s.io/kubernetes/CHANGELOG)。
 - 集群应使用静态的控制平面和 etcd Pod 或者外部 etcd。
 - 务必备份所有重要组件，例如存储在数据库中应用层面的状态。
   `kubeadm upgrade` 不会影响你的工作负载，只会涉及 Kubernetes 内部的组件，但备份终究是好的。
@@ -73,93 +72,111 @@ The upgrade workflow at high level is the following:
 
 <!--
 ### Additional information
+-->
+### 附加信息   {#additional-information}
 
-- [Draining nodes](/docs/tasks/administer-cluster/safely-drain-node/) before kubelet MINOR version
-  upgrades is required. In the case of control plane nodes, they could be running CoreDNS Pods or other critical workloads.
+<!--
+- The instructions below outline when to drain each node during the upgrade process.
+If you are performing a **minor** version upgrade for any kubelet, you **must**
+first drain the node (or nodes) that you are upgrading. In the case of control plane nodes,
+they could be running CoreDNS Pods or other critical workloads. For more information see
+[Draining nodes](/docs/tasks/administer-cluster/safely-drain-node/).
 - All containers are restarted after upgrade, because the container spec hash value is changed.
 -->
-### 附加信息
-
-- 在对 kubelet 作次版本升版时需要[腾空节点](/zh/docs/tasks/administer-cluster/safely-drain-node/)。
-  对于控制面节点，其上可能运行着 CoreDNS Pods 或者其它非常重要的负载。
+- 下述说明了在升级过程中何时腾空每个节点。如果你正在对任何 kubelet 进行小版本升级，
+  你需要先腾空待升级的节点（或多个节点）。对于控制面节点，其上可能运行着 CoreDNS Pods
+  或者其它非常重要的负载。更多信息见[腾空节点](/zh-cn/docs/tasks/administer-cluster/safely-drain-node/)。
 - 升级后，因为容器规约的哈希值已更改，所有容器都会被重新启动。
 
+<!--
+- To verify that the kubelet service has successfully restarted after the kubelet has been upgraded,
+you can execute `systemctl status kubelet` or view the service logs with `journalctl -xeu kubelet`.
+- Usage of the `--config` flag of `kubeadm upgrade` with
+[kubeadm configuration API types](/docs/reference/config-api/kubeadm-config.v1beta3)
+with the purpose of reconfiguring the cluster is not recommended and can have unexpected results. Follow the steps in
+[Reconfiguring a kubeadm cluster](/docs/tasks/administer-cluster/kubeadm/kubeadm-reconfigure) instead.
+-->
+- 要验证 kubelet 服务在升级后是否成功重启，可以执行 `systemctl status kubelet`
+  或 `journalctl -xeu kubelet` 查看服务日志。
+- 不建议使用 `kubeadm upgrade` 的 `--config` 参数和 [kubeadm 配置 API 类型](/zh-cn/docs/reference/config-api/kubeadm-config.v1beta3)
+  来重新配置集群，这样会产生意想不到的结果。请按照[重新配置 kubeadm 集群](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-reconfigure)
+  中的步骤来进行。
+
 <!-- steps -->
 
 <!--
 ## Determine which version to upgrade to
-
-Find the latest stable {{< skew latestVersion >}} version using the OS package manager:
 -->
-## 确定要升级到哪个版本
+## 确定要升级到哪个版本   {#determine-which-version-to-upgrade-to}
 
-使用操作系统的包管理器找到最新的稳定 {{< skew latestVersion >}}：
+<!--
+Find the latest patch release for Kubernetes {{< skew currentVersion >}} using the OS package manager:
+-->
+使用操作系统的包管理器找到最新的补丁版本 Kubernetes {{< skew currentVersion >}}：
 
 {{< tabs name="k8s_install_versions" >}}
 {{% tab name="Ubuntu、Debian 或 HypriotOS" %}}
-```
+```shell
 apt update
-apt-cache policy kubeadm
-# 在列表中查找最新的 {{< skew latestVersion >}} 版本
-# 它看起来应该是 {{< skew latestVersion >}}.x-00，其中 x 是最新的补丁版本
+apt-cache madison kubeadm
+# 在列表中查找最新的 {{< skew currentVersion >}} 版本
+# 它看起来应该是 {{< skew currentVersion >}}.x-00，其中 x 是最新的补丁版本
 ```
 {{% /tab %}}
 {{% tab name="CentOS、RHEL 或 Fedora" %}}
-```
+```shell
 yum list --showduplicates kubeadm --disableexcludes=kubernetes
-# 在列表中查找最新的 {{< skew latestVersion >}} 版本
-# 它看起来应该是 {{< skew latestVersion >}}.x-0，其中 x 是最新的补丁版本
+# 在列表中查找最新的 {{< skew currentVersion >}} 版本
+# 它看起来应该是 {{< skew currentVersion >}}.x-0，其中 x 是最新的补丁版本
 ```
 {{% /tab %}}
 {{< /tabs >}}
 
 <!--
-## Upgrade the control plane node
+## Upgrading control plane nodes
+-->
+## 升级控制平面节点  {#upgrading-control-plane-nodes}
 
+<!--
 The upgrade procedure on control plane nodes should be executed one node at a time.
 Pick a control plane node that you wish to upgrade first. It must have the `/etc/kubernetes/admin.conf` file.
-
-### Call "kubeadm upgrade"
 -->
-## 升级控制平面节点
-
 控制面节点上的升级过程应该每次处理一个节点。
 首先选择一个要先行升级的控制面节点。该节点上必须拥有
 `/etc/kubernetes/admin.conf` 文件。
 
-### 执行 "kubeadm upgrade"
+<!--
+### Call "kubeadm upgrade"
+-->
+### 执行 “kubeadm upgrade”   {#call-kubeadm-upgrade}
 
 <!--
-**Upgrade the first control plane node**
+**For the first control plane node**
 -->
-
-**升级第一个控制面节点**
+**对于第一个控制面节点**
 
 <!--
 - Upgrade kubeadm:
 -->
 - 升级 kubeadm：
 
-{{< tabs name="k8s_install_kubeadm_first_cp" >}}
-{{% tab name="Ubuntu、Debian 或 HypriotOS" %}}
-```shell
-# 用最新的补丁版本号替换 {{< skew latestVersion >}}.x-00 中的 x
-apt-mark unhold kubeadm && \
-apt-get update && apt-get install -y kubeadm={{< skew latestVersion >}}.x-00 && \
-apt-mark hold kubeadm
--
-# 从 apt-get 1.1 版本起，你也可以使用下面的方法
-apt-get update && \
-apt-get install -y --allow-change-held-packages kubeadm={{< skew latestVersion >}}.x-00
-```
-{{% /tab %}}
-{{% tab name="CentOS、RHEL 或 Fedora" %}}
-```shell
-# 用最新的补丁版本号替换 {{< skew latestVersion >}}.x-0 中的 x
-yum install -y kubeadm-{{< skew latestVersion >}}.x-0 --disableexcludes=kubernetes
-```
-{{% /tab %}}
-{{< /tabs >}}
+  {{< tabs name="k8s_install_kubeadm_first_cp" >}}
+  {{% tab name="Ubuntu、Debian 或 HypriotOS" %}}
+  ```shell
+  # 用最新的补丁版本号替换 {{< skew currentVersion >}}.x-00 中的 x
+  apt-mark unhold kubeadm && \
+  apt-get update && apt-get install -y kubeadm={{< skew currentVersion >}}.x-00 && \
+  apt-mark hold kubeadm
+  ```
+  {{% /tab %}}
+  {{% tab name="CentOS、RHEL 或 Fedora" %}}
+  ```shell
+  # 用最新的补丁版本号替换 {{< skew currentVersion >}}.x-0 中的 x
+  yum install -y kubeadm-{{< skew currentVersion >}}.x-0 --disableexcludes=kubernetes
+  ```
+  {{% /tab %}}
+  {{< /tabs >}}
+  <br />
 
 <!--
 - Verify that the download works and has the expected version:
@@ -194,7 +211,7 @@ yum install -y kubeadm-{{< skew latestVersion >}}.x-0 --disableexcludes=kubernet
   -->
   `kubeadm upgrade` 也会自动对 kubeadm 在节点上所管理的证书执行续约操作。
   如果需要略过证书续约操作，可以使用标志 `--certificate-renewal=false`。
-  更多的信息，可参阅[证书管理指南](/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-certs)。
+  更多的信息，可参阅[证书管理指南](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-certs)。
   {{</ note >}}
 
   {{< note >}}
@@ -210,17 +227,18 @@ yum install -y kubeadm-{{< skew latestVersion >}}.x-0 --disableexcludes=kubernet
 
 <!--
 - Choose a version to upgrade to, and run the appropriate command. For example:
+-->
+- 选择要升级到的目标版本，运行合适的命令。例如：
 
+  <!--
   ```shell
   # replace x with the patch version you picked for this upgrade
-  sudo kubeadm upgrade apply v{{< skew latestVersion >}}.x
+  sudo kubeadm upgrade apply v{{< skew currentVersion >}}.x
   ```
--->
-选择要升级到的目标版本，运行合适的命令。例如：
-
+  -->
   ```shell
   # 将 x 替换为你为此次升级所选择的补丁版本号
-  sudo kubeadm upgrade apply v{{< skew latestVersion >}}.x
+  sudo kubeadm upgrade apply v{{< skew currentVersion >}}.x
   ```
 
   <!--
@@ -228,27 +246,29 @@ yum install -y kubeadm-{{< skew latestVersion >}}.x-0 --disableexcludes=kubernet
   -->
   一旦该命令结束，你应该会看到：
 
-  ```
-  [upgrade/successful] SUCCESS! Your cluster was upgraded to "v{{< skew latestVersion >}}.x". Enjoy!
+  ```console
+  [upgrade/successful] SUCCESS! Your cluster was upgraded to "v{{< skew currentVersion >}}.x". Enjoy!
 
   [upgrade/kubelet] Now that your control plane is upgraded, please proceed with upgrading your kubelets if you haven't already done so.
   ```
 
 <!--
 - Manually upgrade your CNI provider plugin.
-
-  Your Container Network Interface (CNI) provider may have its own upgrade instructions to follow.
-  Check the [addons](/docs/concepts/cluster-administration/addons/) page to
-  find your CNI provider and see whether additional upgrade steps are required.
-
-  This step is not required on additional control plane nodes if the CNI provider runs as a DaemonSet.
 -->
 - 手动升级你的 CNI 驱动插件。
 
+  <!--
+  Your Container Network Interface (CNI) provider may have its own upgrade instructions to follow.
+  Check the [addons](/docs/concepts/cluster-administration/addons/) page to
+  find your CNI provider and see whether additional upgrade steps are required.
+  -->
   你的容器网络接口（CNI）驱动应该提供了程序自身的升级说明。
-  参阅[插件](/zh/docs/concepts/cluster-administration/addons/)页面查找你的 CNI 驱动，
+  参阅[插件](/zh-cn/docs/concepts/cluster-administration/addons/)页面查找你的 CNI 驱动，
   并查看是否需要其他升级步骤。
 
+  <!--
+  This step is not required on additional control plane nodes if the CNI provider runs as a DaemonSet.
+  -->
   如果 CNI 驱动作为 DaemonSet 运行，则在其他控制平面节点上不需要此步骤。
 
 <!--
@@ -261,7 +281,7 @@ Same as the first control plane node but use:
 -->
 与第一个控制面节点相同，但是使用：
 
-```
+```shell
 sudo kubeadm upgrade node
 ```
 
@@ -270,7 +290,7 @@ instead of:
 -->
 而不是：
 
-```
+```shell
 sudo kubeadm upgrade apply
 ```
 
@@ -281,18 +301,20 @@ Also calling `kubeadm upgrade plan` and upgrading the CNI provider plugin is no
 
 <!--
 ### Drain the node
-
--  Prepare the node for maintenance by marking it unschedulable and evicting the workloads:
-
-    ```shell
-    # replace <node-to-drain> with the name of your node you are draining
-    kubectl drain <node-to-drain> --ignore-daemonsets
-    ```
 -->
-### 腾空节点
+### 腾空节点   {#drain-the-node}
 
+<!--
+- Prepare the node for maintenance by marking it unschedulable and evicting the workloads:
+-->
 - 通过将节点标记为不可调度并腾空节点为节点作升级准备：
 
+  <!--
+  ```shell
+  # replace <node-to-drain> with the name of your node you are draining
+  kubectl drain <node-to-drain> --ignore-daemonsets
+  ```
+  -->
   ```shell
   # 将 <node-to-drain> 替换为你要腾空的控制面节点名称
   kubectl drain <node-to-drain> --ignore-daemonsets
@@ -300,40 +322,36 @@ Also calling `kubeadm upgrade plan` and upgrading the CNI provider plugin is no
 
 <!--
 ### Upgrade kubelet and kubectl
-
--  Upgrade the kubelet and kubectl
 -->
-### 升级 kubelet 和 kubectl
+### 升级 kubelet 和 kubectl   {#upgrade-kubelet-and-kubectl}
 
-- 升级 kubelet 和 kubectl
+<!--
+- Upgrade the kubelet and kubectl:
+-->
+- 升级 kubelet 和 kubectl：
 
   {{< tabs name="k8s_install_kubelet" >}}
   {{% tab name="Ubuntu、Debian 或 HypriotOS" %}}
-
-  <pre>
-  # 用最新的补丁版本替换 {{< skew latestVersion >}}.x-00 中的 x
+  ```shell
+  # 用最新的补丁版本替换 {{< skew currentVersion >}}.x-00 中的 x
   apt-mark unhold kubelet kubectl && \
-  apt-get update && apt-get install -y kubelet={{< skew latestVersion >}}.x-00 kubectl={{< skew latestVersion >}}.x-00 && \
+  apt-get update && apt-get install -y kubelet={{< skew currentVersion >}}.x-00 kubectl={{< skew currentVersion >}}.x-00 && \
   apt-mark hold kubelet kubectl
-  - 
-  # 从 apt-get 的 1.1 版本开始，你也可以使用下面的方法：
-  apt-get update && \
-  apt-get install -y --allow-change-held-packages kubelet={{< skew latestVersion >}}.x-00 kubectl={{< skew latestVersion >}}.x-00
-  </pre>
+  ```
   {{% /tab %}}
   {{% tab name="CentOS、RHEL 或 Fedora" %}}
- 
-  <pre> 
-  # 用最新的补丁版本号替换 {{< skew latestVersion >}}.x-00 中的 x
-  yum install -y kubelet-{{< skew latestVersion >}}.x-0 kubectl-{{< skew latestVersion >}}.x-0 --disableexcludes=kubernetes
-  </pre>
+  ```shell
+  # 用最新的补丁版本号替换 {{< skew currentVersion >}}.x-00 中的 x
+  yum install -y kubelet-{{< skew currentVersion >}}.x-0 kubectl-{{< skew currentVersion >}}.x-0 --disableexcludes=kubernetes
+  ```
   {{% /tab %}}
   {{< /tabs >}}
+  <br />
 
 <!--
-- Restart the kubelet
+- Restart the kubelet:
 -->
-- 重启 kubelet
+- 重启 kubelet：
 
   ```shell
   sudo systemctl daemon-reload
@@ -342,18 +360,20 @@ Also calling `kubeadm upgrade plan` and upgrading the CNI provider plugin is no
 
 <!--
 ### Uncordon the node
+-->
+### 解除节点的保护   {#uncordon-the-node}
 
+<!--
 - Bring the node back online by marking it schedulable:
+-->
+- 通过将节点标记为可调度，让其重新上线：
 
+  <!--
   ```shell
   # replace <node-to-drain> with the name of your node
   kubectl uncordon <node-to-drain>
-
--->
-### 解除节点的保护
-
-- 通过将节点标记为可调度，让其重新上线：
-
+  ```
+  -->
   ```shell
   # 将 <node-to-drain> 替换为你的节点名称
   kubectl uncordon <node-to-drain>
@@ -361,19 +381,20 @@ Also calling `kubeadm upgrade plan` and upgrading the CNI provider plugin is no
 
 <!--
 ## Upgrade worker nodes
+-->
+## 升级工作节点   {#upgrade-worker-nodes}
 
+<!--
 The upgrade procedure on worker nodes should be executed one node at a time or few nodes at a time,
 without compromising the minimum required capacity for running your workloads.
 -->
-## 升级工作节点
-
 工作节点上的升级过程应该一次执行一个节点，或者一次执行几个节点，
 以不影响运行工作负载所需的最小容量。
 
 <!--
 ### Upgrade kubeadm
 -->
-### 升级 kubeadm
+### 升级 kubeadm   {#upgrade-kubeadm}
 
 <!--
 - Upgrade kubeadm:
@@ -382,34 +403,29 @@ without compromising the minimum required capacity for running your workloads.
 
   {{< tabs name="k8s_install_kubeadm_worker_nodes" >}}
   {{% tab name="Ubuntu、Debian 或 HypriotOS" %}}
-  
   ```shell
-  # 将 {{< skew latestVersion >}}.x-00 中的 x 替换为最新的补丁版本号
+  # 将 {{< skew currentVersion >}}.x-00 中的 x 替换为最新的补丁版本号
   apt-mark unhold kubeadm && \
-  apt-get update && apt-get install -y kubeadm={{< skew latestVersion >}}.x-00 && \
+  apt-get update && apt-get install -y kubeadm={{< skew currentVersion >}}.x-00 && \
   apt-mark hold kubeadm
-  - 
-  # 从 apt-get 的 1.1 版本开始，你也可以使用下面的方法：
-  apt-get update && \
-  apt-get install -y --allow-change-held-packages kubeadm={{< skew latestVersion >}}.x-00
   ```
   {{% /tab %}}
   {{% tab name="CentOS、RHEL 或 Fedora" %}}
-  
   ```shell
-  # 用最新的补丁版本替换 {{< skew latestVersion >}}.x-00 中的 x
-  yum install -y kubeadm-{{< skew latestVersion >}}.x-0 --disableexcludes=kubernetes
+  # 用最新的补丁版本替换 {{< skew currentVersion >}}.x-00 中的 x
+  yum install -y kubeadm-{{< skew currentVersion >}}.x-0 --disableexcludes=kubernetes
   ```
   {{% /tab %}}
   {{< /tabs >}}
 
 <!--
 ### Call "kubeadm upgrade"
-
--  For worker nodes this upgrades the local kubelet configuration:
 -->
-### 执行 "kubeadm upgrade"
+### 执行 "kubeadm upgrade"   {#call-kubeadm-upgrade-1}
 
+<!--
+- For worker nodes this upgrades the local kubelet configuration:
+-->
 - 对于工作节点，下面的命令会升级本地的 kubelet 配置：
 
   ```shell
@@ -418,18 +434,20 @@ without compromising the minimum required capacity for running your workloads.
 
 <!--
 ### Drain the node
+-->
+### 腾空节点   {#drain-the-node-1}
 
+<!--
 - Prepare the node for maintenance by marking it unschedulable and evicting the workloads:
+-->
+- 将节点标记为不可调度并驱逐所有负载，准备节点的维护：
 
+  <!--
   ```shell
   # replace <node-to-drain> with the name of your node you are draining
   kubectl drain <node-to-drain> --ignore-daemonsets
   ```
--->
-### 腾空节点
-
-- 将节点标记为不可调度并驱逐所有负载，准备节点的维护：
-
+  -->
   ```shell
   # 将 <node-to-drain> 替换为你正在腾空的节点的名称
   kubectl drain <node-to-drain> --ignore-daemonsets
@@ -438,67 +456,61 @@ without compromising the minimum required capacity for running your workloads.
 <!--
 ### Upgrade kubelet and kubectl
 -->
-### 升级 kubelet 和 kubectl
+### 升级 kubelet 和 kubectl   {#upgrade-kubelet-and-kubectl-1}
 
 <!--
--  Upgrade the kubelet and kubectl:
+- Upgrade the kubelet and kubectl:
 -->
 - 升级 kubelet 和 kubectl：
 
   {{< tabs name="k8s_kubelet_and_kubectl" >}}
   {{% tab name="Ubuntu、Debian 或 HypriotOS" %}}
-  
+
   ```shell
-  # 将 {{< skew latestVersion >}}.x-00 中的 x 替换为最新的补丁版本
+  # 将 {{< skew currentVersion >}}.x-00 中的 x 替换为最新的补丁版本
   apt-mark unhold kubelet kubectl && \
-  apt-get update && apt-get install -y kubelet={{< skew latestVersion >}}.x-00 kubectl={{< skew latestVersion >}}.x-00 && \
+  apt-get update && apt-get install -y kubelet={{< skew currentVersion >}}.x-00 kubectl={{< skew currentVersion >}}.x-00 && \
   apt-mark hold kubelet kubectl
-  
-  # 从 apt-get 的 1.1 版本开始，你也可以使用下面的方法：
-  
-  apt-get update && \
-  apt-get install -y --allow-change-held-packages kubelet={{< skew latestVersion >}}.x-00 kubectl={{< skew latestVersion >}}.x-00
   ```
-  
+
   {{% /tab %}}
   {{% tab name="CentOS, RHEL or Fedora" %}}
-  
+
   ```shell
-  # 将 {{< skew latestVersion >}}.x-0 x 替换为最新的补丁版本
-  yum install -y kubelet-{{< skew latestVersion >}}.x-0 kubectl-{{< skew latestVersion >}}.x-0 --disableexcludes=kubernetes
+  # 将 {{< skew currentVersion >}}.x-0 x 替换为最新的补丁版本
+  yum install -y kubelet-{{< skew currentVersion >}}.x-0 kubectl-{{< skew currentVersion >}}.x-0 --disableexcludes=kubernetes
   ```
+
   {{% /tab %}}
   {{< /tabs >}}
+  <br />
 
 <!--
-- Restart the kubelet
-
-    ```shell
-    sudo systemctl daemon-reload
-    sudo systemctl restart kubelet
-    ```
+- Restart the kubelet:
 -->
-- 重启 kubelet
+- 重启 kubelet：
 
   ```shell
   sudo systemctl daemon-reload
   sudo systemctl restart kubelet
   ```
+
 <!--
 ### Uncordon the node
 -->
-### 取消对节点的保护
+### 取消对节点的保护   {#uncordon-the-node-1}
 
 <!--
--  Bring the node back online by marking it schedulable:
-
-    ```shell
-    # replace <node-to-drain> with the name of your node
-    kubectl uncordon <node-to-drain>
-    ```
+- Bring the node back online by marking it schedulable:
 -->
 - 通过将节点标记为可调度，让节点重新上线:
 
+  <!--
+  ```shell
+  # replace <node-to-drain> with the name of your node
+  kubectl uncordon <node-to-drain>
+  ```
+  -->
   ```shell
   # 将 <node-to-drain> 替换为当前节点的名称
   kubectl uncordon <node-to-drain>
@@ -506,16 +518,13 @@ without compromising the minimum required capacity for running your workloads.
 
 <!--
 ## Verify the status of the cluster
-
-After the kubelet is upgraded on all nodes verify that all nodes are available again by running the following command
-from anywhere kubectl can access the cluster:
-
-```shell
-kubectl get nodes
-```
 -->
-## 验证集群的状态
+## 验证集群的状态   {#verify-the-status-of-the-cluster}
 
+<!--
+After the kubelet is upgraded on all nodes verify that all nodes are available again by running
+the following command from anywhere kubectl can access the cluster:
+-->
 在所有节点上升级 kubelet 后，通过从 kubectl 可以访问集群的任何位置运行以下命令，
 验证所有节点是否再次可用：
 
@@ -526,46 +535,49 @@ kubectl get nodes
 <!--
 The `STATUS` column should show `Ready` for all your nodes, and the version number should be updated.
 -->
-`STATUS` 应显示所有节点为 `Ready` 状态，并且版本号已经被更新。 
+`STATUS` 应显示所有节点为 `Ready` 状态，并且版本号已经被更新。
 
 <!--
 ## Recovering from a failure state
+-->
+## 从故障状态恢复   {#recovering-from-a-failure-state}
 
+<!--
 If `kubeadm upgrade` fails and does not roll back, for example because of an unexpected shutdown during execution, you can run `kubeadm upgrade` again.
 This command is idempotent and eventually makes sure that the actual state is the desired state you declare.
-
-To recover from a bad state, you can also run `kubeadm upgrade--force` without changing the version that your cluster is running.
 -->
-## 从故障状态恢复
-
 如果 `kubeadm upgrade` 失败并且没有回滚，例如由于执行期间节点意外关闭，
 你可以再次运行 `kubeadm upgrade`。
 此命令是幂等的，并最终确保实际状态是你声明的期望状态。
-要从故障状态恢复，你还可以运行 `kubeadm upgrade --force` 而无需更改集群正在运行的版本。
+
+<!--
+To recover from a bad state, you can also run `kubeadm upgrade apply --force` without changing the version that your cluster is running.
+-->
+要从故障状态恢复，你还可以运行 `kubeadm upgrade apply --force` 而无需更改集群正在运行的版本。
 
 <!--
 During upgrade kubeadm writes the following backup folders under `/etc/kubernetes/tmp`:
-- `kubeadm-backup-etcd-<date>-<time>`
-- `kubeadm-backup-manifests-<date>-<time>`
-
-`kubeadm-backup-etcd` contains a backup of the local etcd member data for this control-plane Node.
-In case of an etcd upgrade failure and if the automatic rollback does not work, the contents of this folder
-can be manually restored in `/var/lib/etcd`. In case external etcd is used this backup folder will be empty.
-
-`kubeadm-backup-manifests` contains a backup of the static Pod manifest files for this control-plane Node.
-In case of a upgrade failure and if the automatic rollback does not work, the contents of this folder can be
-manually restored in `/etc/kubernetes/manifests`. If for some reason there is no difference between a pre-upgrade
-and post-upgrade manifest file for a certain component, a backup file for it will not be written.
 -->
 在升级期间，kubeadm 向 `/etc/kubernetes/tmp` 目录下的如下备份文件夹写入数据：
 
 - `kubeadm-backup-etcd-<date>-<time>`
 - `kubeadm-backup-manifests-<date>-<time>`
 
+<!--
+`kubeadm-backup-etcd` contains a backup of the local etcd member data for this control plane Node.
+In case of an etcd upgrade failure and if the automatic rollback does not work, the contents of this folder
+can be manually restored in `/var/lib/etcd`. In case external etcd is used this backup folder will be empty.
+-->
 `kubeadm-backup-etcd` 包含当前控制面节点本地 etcd 成员数据的备份。
 如果 etcd 升级失败并且自动回滚也无法修复，则可以将此文件夹中的内容复制到
 `/var/lib/etcd` 进行手工修复。如果使用的是外部的 etcd，则此备份文件夹为空。
 
+<!--
+`kubeadm-backup-manifests` contains a backup of the static Pod manifest files for this control plane Node.
+In case of a upgrade failure and if the automatic rollback does not work, the contents of this folder can be
+manually restored in `/etc/kubernetes/manifests`. If for some reason there is no difference between a pre-upgrade
+and post-upgrade manifest file for a certain component, a backup file for it will not be written.
+-->
 `kubeadm-backup-manifests` 包含当前控制面节点的静态 Pod 清单文件的备份版本。
 如果升级失败并且无法自动回滚，则此文件夹中的内容可以复制到
 `/etc/kubernetes/manifests` 目录实现手工恢复。
@@ -574,9 +586,15 @@ and post-upgrade manifest file for a certain component, a backup file for it wil
 
 <!--
 ## How it works
+-->
+## 工作原理   {#how-it-works}
 
+<!--
 `kubeadm upgrade apply` does the following:
+-->
+`kubeadm upgrade apply` 做了以下工作：
 
+<!--
 - Checks that your cluster is in an upgradeable state:
   - The API server is reachable
   - All nodes are in the `Ready` state
@@ -588,10 +606,6 @@ and post-upgrade manifest file for a certain component, a backup file for it wil
 - Applies the new `CoreDNS` and `kube-proxy` manifests and makes sure that all necessary RBAC rules are created.
 - Creates new certificate and key files of the API server and backs up old files if they're about to expire in 180 days.
 -->
-## 工作原理   {#how-it-works}
-
-`kubeadm upgrade apply` 做了以下工作：
-
 - 检查你的集群是否处于可升级状态:
   - API 服务器是可访问的
   - 所有节点处于 `Ready` 状态
@@ -605,14 +619,15 @@ and post-upgrade manifest file for a certain component, a backup file for it wil
 
 <!--
 `kubeadm upgrade node` does the following on additional control plane nodes:
+-->
+`kubeadm upgrade node` 在其他控制平节点上执行以下操作：
 
+<!--
 - Fetches the kubeadm `ClusterConfiguration` from the cluster.
 - Optionally backups the kube-apiserver certificate.
 - Upgrades the static Pod manifests for the control plane components.
 - Upgrades the kubelet configuration for this node.
 -->
-`kubeadm upgrade node` 在其他控制平节点上执行以下操作：
-
 - 从集群中获取 kubeadm `ClusterConfiguration`。
 - （可选操作）备份 kube-apiserver 证书。
 - 升级控制平面组件的静态 Pod 清单。
@@ -620,12 +635,12 @@ and post-upgrade manifest file for a certain component, a backup file for it wil
 
 <!--
 `kubeadm upgrade node` does the following on worker nodes:
-
-- Fetches the kubeadm `ClusterConfiguration` from the cluster.
-- Upgrades the kubelet configuration for this node.
 -->
 `kubeadm upgrade node` 在工作节点上完成以下工作：
 
-- 从集群取回 kubeadm `ClusterConfiguration`。 
+<!--
+- Fetches the kubeadm `ClusterConfiguration` from the cluster.
+- Upgrades the kubelet configuration for this node.
+-->
+- 从集群取回 kubeadm `ClusterConfiguration`。
 - 为本节点升级 kubelet 配置。
-
diff --git a/content/zh/docs/tasks/administer-cluster/kubeadm/upgrading-windows-nodes.md b/content/zh-cn/docs/tasks/administer-cluster/kubeadm/upgrading-windows-nodes.md
similarity index 64%
rename from content/zh/docs/tasks/administer-cluster/kubeadm/upgrading-windows-nodes.md
rename to content/zh-cn/docs/tasks/administer-cluster/kubeadm/upgrading-windows-nodes.md
index 5570285f3b..31b778d79f 100644
--- a/content/zh/docs/tasks/administer-cluster/kubeadm/upgrading-windows-nodes.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/kubeadm/upgrading-windows-nodes.md
@@ -18,7 +18,7 @@ weight: 40
 <!--
 This page explains how to upgrade a Windows node [created with kubeadm](/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes).
 -->
-本页解释如何升级[用 kubeadm 创建的](/zh/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes)
+本页解释如何升级[用 kubeadm 创建的](/zh-cn/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes)
 Windows 节点。
 
 ## {{% heading "prerequisites" %}}
@@ -30,7 +30,7 @@ Windows 节点。
 cluster](/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade). You will want to
 upgrade the control plane nodes before upgrading your Windows nodes.
 -->
-* 熟悉[更新 kubeadm 集群中的其余组件](/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade)。
+* 熟悉[更新 kubeadm 集群中的其余组件](/zh-cn/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade)。
   在升级你的 Windows 节点之前你会想要升级控制面节点。
 
 <!-- steps -->
@@ -48,14 +48,14 @@ upgrade the control plane nodes before upgrading your Windows nodes.
 
     ```powershell
     # replace {{< param "fullversion" >}} with your desired version
-    curl.exe -Lo C:\k\kubeadm.exe https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kubeadm.exe
+    curl.exe -Lo <path-to-kubeadm.exe>  https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kubeadm.exe
     ```
 -->
 1. 在 Windows 节点上升级 kubeadm：
 
    ```powershell
    # 将 {{< param "fullversion" >}} 替换为你希望的版本
-   curl.exe -Lo C:\k\kubeadm.exe https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kubeadm.exe
+   curl.exe -Lo <kubeadm.exe 路径>  https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kubeadm.exe
    ```
 
 <!--
@@ -66,7 +66,7 @@ upgrade the control plane nodes before upgrading your Windows nodes.
 
     ```shell
     # replace <node-to-drain> with the name of your node you are draining
-    kubectl drain <node-to-drain> -ignore-daemonsets
+    kubectl drain <node-to-drain> --ignore-daemonsets
     ```
 
     You should see output similar to this:
@@ -83,7 +83,7 @@ upgrade the control plane nodes before upgrading your Windows nodes.
 
    ```shell
    # 将 <要腾空的节点> 替换为你要腾空的节点的名称
-   kubectl drain <要腾空的节点> -ignore-daemonsets
+   kubectl drain <要腾空的节点> --ignore-daemonsets
    ```
 
    你应该会看到类似下面的输出：
@@ -111,26 +111,51 @@ upgrade the control plane nodes before upgrading your Windows nodes.
    ```
 
 <!--
-### Upgrade kubelet
+### Upgrade kubelet and kube-proxy
 
 1.  From the Windows node, upgrade and restart the kubelet:
 
     ```powershell
     stop-service kubelet
-    curl.exe -Lo C:\k\kubelet.exe https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kubelet.exe
+    curl.exe -Lo <path-to-kubelet.exe> https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kubelet.exe
     restart-service kubelet
     ```
 -->
-### 升级 kubelet   {#upgrade-kubelet}
+### 升级 kubelet 和 kube-proxy   {#upgrade-kubelet-and-kube-proxy}
 
 1. 在 Windows 节点上升级并重启 kubelet：
 
    ```powershell
    stop-service kubelet
-   curl.exe -Lo C:\k\kubelet.exe https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kubelet.exe
+   curl.exe -Lo <kubelet.exe 路径> https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kubelet.exe
    restart-service kubelet
    ```
 
+<!--
+2. From the Windows node, upgrade and restart the kube-proxy.
+
+    ```powershell
+    stop-service kube-proxy
+    curl.exe -Lo <path-to-kube-proxy.exe> https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kube-proxy.exe
+    restart-service kube-proxy
+    ```
+-->
+2. 在 Windows 节点上升级并重启 kube-proxy：
+
+   ```powershell
+   stop-service kube-proxy
+   curl.exe -Lo <kube-proxy.exe 路径> https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kube-proxy.exe
+   restart-service kube-proxy
+   ```
+
+{{< note >}}
+<!--
+If you are running kube-proxy in a HostProcess container within a Pod, and not as a Windows Service, you can upgrade kube-proxy by applying a newer version of your kube-proxy manifests.
+-->
+如果你是在 Pod 内的 HostProcess 容器中运行 kube-proxy，而不是作为 Windows 服务，
+你可以通过应用更新版本的 kube-proxy 清单文件来升级 kube-proxy。
+{{< /note >}}
+
 <!--
 ### Uncordon the node
 
@@ -152,22 +177,3 @@ bring the node back online by marking it schedulable:
    kubectl uncordon <要腾空的节点>
    ```
 
-<!--
-### Upgrade kube-proxy
-
-1. From a machine with access to the Kubernetes API, run the following,
-again replacing {{< param "fullversion" >}} with your desired version:
-
-    ```shell
-    curl -L https://github.com/kubernetes-sigs/sig-windows-tools/releases/latest/download/kube-proxy.yml | sed 's/VERSION/{{< param "fullversion" >}}/g' | kubectl apply -f -
-    ```
--->
-### 升级 kube-proxy   {#upgrade-kube-proxy}
-
-1. 在一台可访问 Kubernetes API 的机器上和，将 {{< param "fullversion" >}} 替换成你
-   期望的版本后再次执行下面的命令：
-
-   ```shell
-   curl -L https://github.com/kubernetes-sigs/sig-windows-tools/releases/latest/download/kube-proxy.yml | sed 's/VERSION/{{< param "fullversion" >}}/g' | kubectl apply -f -
-    ```
-
diff --git a/content/zh/docs/tasks/administer-cluster/kubelet-config-file.md b/content/zh-cn/docs/tasks/administer-cluster/kubelet-config-file.md
similarity index 62%
rename from content/zh/docs/tasks/administer-cluster/kubelet-config-file.md
rename to content/zh-cn/docs/tasks/administer-cluster/kubelet-config-file.md
index e41eb9e3d9..f484cab946 100644
--- a/content/zh/docs/tasks/administer-cluster/kubelet-config-file.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/kubelet-config-file.md
@@ -12,15 +12,11 @@ content_type: task
 
 <!-- overview -->
 
-{{< feature-state for_k8s_version="v1.10" state="beta" >}}
-
 <!--
 A subset of the Kubelet's configuration parameters may be
 set via an on-disk config file, as a substitute for command-line flags.
-This functionality is considered beta in v1.10.
 --->
 通过保存在硬盘的配置文件设置 kubelet 的部分配置参数，这可以作为命令行参数的替代。
-此功能在 v1.10 中为 beta 版。
 
 <!--
 Providing parameters via a config file is the recommended approach because
@@ -28,27 +24,20 @@ it simplifies node deployment and configuration management.
 --->
 建议通过配置文件的方式提供参数，因为这样可以简化节点部署和配置管理。
 
-## {{% heading "prerequisites" %}}
-
-<!--
-- A v1.10 or higher Kubelet binary must be installed for beta functionality.
--->
-- 需要安装 1.10 或更高版本的 kubelet 可执行文件，才能使用此 beta 功能。
-
 <!-- steps -->
 
 <!--
 ## Create the config file
 
 The subset of the Kubelet's configuration that can be configured via a file
-is defined by the `KubeletConfiguration` struct
-[here (v1beta1)](https://github.com/kubernetes/kubernetes/blob/{{< param "docsbranch" >}}/staging/src/k8s.io/kubelet/config/v1beta1/types.go).
+is defined by the
+[`KubeletConfiguration`](/docs/reference/config-api/kubelet-config.v1beta1/)
+struct.
 -->
 ## 创建配置文件
 
-`KubeletConfiguration` 结构体定义了可以通过文件配置的 Kubelet 配置子集，
-该结构体在 [这里（v1beta1）](https://github.com/kubernetes/kubernetes/blob/{{< param "docsbranch" >}}/staging/src/k8s.io/kubelet/config/v1beta1/types.go)
-可以找到。 
+[`KubeletConfiguration`](/zh-cn/docs/reference/config-api/kubelet-config.v1beta1/)
+结构体定义了可以通过文件配置的 Kubelet 配置子集，
 
 <!--
 The configuration file must be a JSON or YAML representation of the parameters
@@ -62,36 +51,43 @@ Here is an example of what this file might look like:
 下面是一个 Kubelet 配置文件示例：
 
 ```yaml
-kind: KubeletConfiguration
 apiVersion: kubelet.config.k8s.io/v1beta1
+kind: KubeletConfiguration
+address: "192.168.0.8"
+port: 20250
+serializeImagePulls: false
 evictionHard:
     memory.available:  "200Mi"
 ```
 
 <!--
-In the example, the Kubelet is configured to evict Pods when available memory drops below 200Mi.
+In the example, the Kubelet is configured to serve on IP address 192.168.0.8 and port 20250, pull images in parallel,
+and evict Pods when available memory drops below 200Mi.
 All other Kubelet configuration values are left at their built-in defaults, unless overridden
 by flags. Command line flags which target the same value as a config file will override that value.
-
-For a trick to generate a configuration file from a live node, see
-[Reconfigure a Node's Kubelet in a Live Cluster](/docs/tasks/administer-cluster/reconfigure-kubelet).
 -->
-在这个示例中, 当可用内存低于 200Mi 时, kubelet 将会开始驱逐 Pods。
-没有声明的其余配置项都将使用默认值，除非使用命令行参数来重载。 
+在这个示例中, Kubelet 被设置为在地址 192.168.0.8 端口 20250 上提供服务，以并行方式拉取镜像，
+当可用内存低于 200Mi 时, kubelet 将会开始驱逐 Pod。
+没有声明的其余配置项都将使用默认值，除非使用命令行参数来重载。
 命令行中的参数将会覆盖配置文件中的对应值。
 
-作为一个小技巧，你可以从活动节点生成配置文件，相关方法请查看
-[重新配置活动集群节点的 kubelet](/zh/docs/tasks/administer-cluster/reconfigure-kubelet)。
-
 <!--
 ## Start a Kubelet process configured via the config file
 
+If you use kubeadm to initialize your cluster, use the kubelet-config while creating your cluster with `kubeadmin init`.
+See [configuring kubelet using kubeadm](/docs/setup/production-environment/tools/kubeadm/kubelet-integration/) for details.
+
 Start the Kubelet with the `--config` flag set to the path of the Kubelet's config file.
 The Kubelet will then load its config from this file.
 --->
 
 ## 启动通过配置文件配置的 Kubelet 进程
 
+{{< note >}}
+如果你使用 kubeadm 初始化你的集群，在使用 `kubeadmin init` 创建你的集群的时候请使用 kubelet-config。
+更多细节请阅读[使用 kubeadm 配置 kubelet](/zh-cn/docs/setup/production-environment/tools/kubeadm/kubelet-integration/)
+{{< /note >}}
+
 启动 Kubelet 需要将 `--config` 参数设置为 Kubelet 配置文件的路径。Kubelet 将从此文件加载其配置。
 
 <!--
@@ -121,17 +117,12 @@ In the above example, this version is `kubelet.config.k8s.io/v1beta1`.
 
 <!-- discussion -->
 
+## {{% heading "whatsnext" %}}
+
 <!--
-## Relationship to Dynamic Kubelet Config
-
-If you are using the [Dynamic Kubelet Configuration](/docs/tasks/administer-cluster/reconfigure-kubelet)
-feature, the combination of configuration provided via `--config` and any flags which override these values
-is considered the default "last known good" configuration by the automatic rollback mechanism.
+- Learn more about kubelet configuration by checking the
+  [`KubeletConfiguration`](/docs/reference/config-api/kubelet-config.v1beta1/)
+  reference.
 --->
-## 与动态 Kubelet 配置的关系
-
-如果你正在使用[动态 kubelet 配置](/zh/docs/tasks/administer-cluster/reconfigure-kubelet)特性，
-那么自动回滚机制将认为通过 `--config` 提供的配置与覆盖这些值的任何参数的组合是
- "最后已知正常（last known good）" 的配置。
-
-
+- 参阅 [`KubeletConfiguration`](/zh-cn/docs/reference/config-api/kubelet-config.v1beta1/) 
+  进一步学习 kubelet 的配置。
diff --git a/content/zh-cn/docs/tasks/administer-cluster/kubelet-in-userns.md b/content/zh-cn/docs/tasks/administer-cluster/kubelet-in-userns.md
new file mode 100644
index 0000000000..bc6d34c742
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/kubelet-in-userns.md
@@ -0,0 +1,603 @@
+---
+title: 以非 root 用户身份运行 Kubernetes 节点组件
+content_type: task
+min-kubernetes-server-version: 1.22
+---
+
+<!--
+title: Running Kubernetes Node Components as a Non-root User
+content_type: task
+min-kubernetes-server-version: 1.22
+-->
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.22" state="alpha" >}}
+
+<!--
+This document describes how to run Kubernetes Node components such as kubelet, CRI, OCI, and CNI
+without root privileges, by using a {{< glossary_tooltip text="user namespace" term_id="userns" >}}.
+
+This technique is also known as _rootless mode_.
+
+{{< note >}}
+This document describes how to run Kubernetes Node components (and hence pods) a non-root user.
+
+If you are just looking for how to run a pod as a non-root user, see [SecurityContext](/docs/tasks/configure-pod-container/security-context/).
+{{< /note >}}
+-->
+
+这个文档描述了怎样不使用 root 特权，而是通过使用 {{< glossary_tooltip text="用户命名空间" term_id="userns" >}}
+去运行 Kubernetes 节点组件（例如 kubelet、CRI、OCI、CNI）。
+
+这种技术也叫做 **rootless 模式（Rootless mode）**。
+
+{{< note >}}
+这个文档描述了怎么以非 root 用户身份运行 Kubernetes 节点组件以及 Pod。
+如果你只是想了解如何以非 root 身份运行 Pod，请参阅 [SecurityContext](/zh-cn/docs/tasks/configure-pod-container/security-context/)。
+{{< /note >}}
+
+<!--
+## {{% heading "prerequisites" %}}
+
+{{% version-check %}}
+
+* [Enable Cgroup v2](https://rootlesscontaine.rs/getting-started/common/cgroup2/)
+* [Enable systemd with user session](https://rootlesscontaine.rs/getting-started/common/login/)
+* [Configure several sysctl values, depending on host Linux distribution](https://rootlesscontaine.rs/getting-started/common/sysctl/)
+* [Ensure that your unprivileged user is listed in `/etc/subuid` and `/etc/subgid`](https://rootlesscontaine.rs/getting-started/common/subuid/)
+* Enable the `KubeletInUserNamespace` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+-->
+
+## {{% heading "prerequisites" %}}
+
+{{% version-check %}}
+
+* [启用 cgroup v2](https://rootlesscontaine.rs/getting-started/common/cgroup2/)
+* [在 systemd 中启用 user session](https://rootlesscontaine.rs/getting-started/common/login/)
+* [根据不同的 Linux 发行版，配置 sysctl 的值](https://rootlesscontaine.rs/getting-started/common/sysctl/)
+* [确保你的非特权用户被列在 `/etc/subuid` 和 `/etc/subgid` 文件中](https://rootlesscontaine.rs/getting-started/common/subuid/)
+* 启用 `KubeletInUserNamespace` [特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)
+
+<!-- steps -->
+
+<!--
+## Running Kubernetes inside Rootless Docker/Podman
+
+### kind
+
+[kind](https://kind.sigs.k8s.io/) supports running Kubernetes inside Rootless Docker or Rootless Podman.
+
+See [Running kind with Rootless Docker](https://kind.sigs.k8s.io/docs/user/rootless/).
+
+### minikube
+
+[minikube](https://minikube.sigs.k8s.io/) also supports running Kubernetes inside Rootless Docker or Rootless Podman.
+
+See the Minikube documentation:
+
+* [Rootless Docker](https://minikube.sigs.k8s.io/docs/drivers/docker/)
+* [Rootless Podman](https://minikube.sigs.k8s.io/docs/drivers/podman/)
+-->
+
+## 使用 Rootless 模式的 Docker/Podman 运行 Kubernetes
+
+### kind
+
+[kind](https://kind.sigs.k8s.io/) 支持使用 Rootless 模式的 Docker 或者 Podman 运行 Kubernetes。
+
+请参阅[使用 Rootless 模式的 Docker 运行 kind](https://kind.sigs.k8s.io/docs/user/rootless/)。
+
+### minikube
+
+[minikube](https://minikube.sigs.k8s.io/) 也支持使用 Rootless 模式的 Docker 或 Podman 运行 Kubernetes。
+
+请参阅 Minikube 文档：
+
+* [Rootless Docker](https://minikube.sigs.k8s.io/docs/drivers/docker/)
+* [Rootless Podman](https://minikube.sigs.k8s.io/docs/drivers/podman/)
+
+<!--
+## Running Kubernetes inside Unprivileged Containers
+
+{{% thirdparty-content %}}
+
+### sysbox
+
+-->
+
+## 在非特权容器内运行 Kubernetes
+
+{{% thirdparty-content %}}
+
+### sysbox
+
+<!--
+[Sysbox](https://github.com/nestybox/sysbox) is an open-source container runtime
+(similar to "runc") that supports running system-level workloads such as Docker
+and Kubernetes inside unprivileged containers isolated with the Linux user
+namespace.
+-->
+
+[Sysbox](https://github.com/nestybox/sysbox) 是一个开源容器运行时
+(类似于 “runc”），支持在 Linux 用户命名空间隔离的非特权容器内运行系统级工作负载，
+比如 Docker 和 Kubernetes。
+
+<!--
+See [Sysbox Quick Start Guide: Kubernetes-in-Docker](https://github.com/nestybox/sysbox/blob/master/docs/quickstart/kind.md) for more info.
+-->
+
+查看 [Sysbox 快速入门指南: Kubernetes-in-Docker](https://github.com/nestybox/sysbox/blob/master/docs/quickstart/kind.md)
+了解更多细节。
+
+<!--
+Sysbox supports running Kubernetes inside unprivileged containers without
+requiring Cgroup v2 and without the `KubeletInUserNamespace` feature gate. It
+does this by exposing specially crafted `/proc` and `/sys` filesystems inside
+the container plus several other advanced OS virtualization techniques.
+-->
+
+Sysbox 支持在非特权容器内运行 Kubernetes，
+而不需要 cgroup v2 和 “KubeletInUserNamespace” 特性门控。
+Sysbox 通过在容器内暴露特定的 `/proc` 和 `/sys` 文件系统，
+以及其它一些先进的操作系统虚拟化技术来实现。
+
+<!--
+## Running Rootless Kubernetes directly on a host
+
+{{% thirdparty-content %}}
+
+### K3s
+
+[K3s](https://k3s.io/) experimentally supports rootless mode.
+
+See [Running K3s with Rootless mode](https://rancher.com/docs/k3s/latest/en/advanced/#running-k3s-with-rootless-mode-experimental) for the usage.
+
+### Usernetes
+[Usernetes](https://github.com/rootless-containers/usernetes) is a reference distribution of Kubernetes that can be installed under `$HOME` directory without the root privilege.
+
+Usernetes supports both containerd and CRI-O as CRI runtimes.
+Usernetes supports multi-node clusters using Flannel (VXLAN).
+
+See [the Usernetes repo](https://github.com/rootless-containers/usernetes) for the usage.
+-->
+
+## 直接在主机上运行 Rootless 模式的 Kubernetes
+
+{{% thirdparty-content %}}
+
+### K3s
+
+[K3s](https://k3s.io/) 实验性支持了 Rootless 模式。
+
+请参阅[使用 Rootless 模式运行 K3s](https://rancher.com/docs/k3s/latest/en/advanced/#running-k3s-with-rootless-mode-experimental)
+页面中的用法.
+
+### Usernetes
+[Usernetes](https://github.com/rootless-containers/usernetes) 是 Kubernetes 的一个参考发行版，
+它可以在不使用 root 特权的情况下安装在 `$HOME` 目录下。
+
+Usernetes 支持使用 containerd 和 CRI-O 作为 CRI 运行时。
+Usernetes 支持配置了 Flannel (VXLAN)的多节点集群。
+
+关于用法，请参阅 [Usernetes 仓库](https://github.com/rootless-containers/usernetes)。
+
+<!--
+## Manually deploy a node that runs the kubelet in a user namespace {#userns-the-hard-way}
+
+This section provides hints for running Kubernetes in a user namespace manually.
+
+{{< note >}}
+This section is intended to be read by developers of Kubernetes distributions, not by end users.
+{{< /note >}}
+-->
+
+## 手动部署一个在用户命名空间运行 kubelet 的节点{#userns-the-hard-way}
+
+本节提供在用户命名空间手动运行 Kubernetes 的注意事项。
+
+{{< note >}}
+本节是面向 Kubernetes 发行版的开发者，而不是最终用户。
+{{< /note >}}
+
+<!--
+### Creating a user namespace
+
+The first step is to create a {{< glossary_tooltip text="user namespace" term_id="userns" >}}.
+
+If you are trying to run Kubernetes in a user-namespaced container such as
+Rootless Docker/Podman or LXC/LXD, you are all set, and you can go to the next subsection.
+
+Otherwise you have to create a user namespace by yourself, by calling `unshare(2)` with `CLONE_NEWUSER`.
+
+A user namespace can be also unshared by using command line tools such as:
+
+- [`unshare(1)`](https://man7.org/linux/man-pages/man1/unshare.1.html)
+- [RootlessKit](https://github.com/rootless-containers/rootlesskit)
+- [become-root](https://github.com/giuseppe/become-root)
+
+After unsharing the user namespace, you will also have to unshare other namespaces such as mount namespace.
+
+You do *not* need to call `chroot()` nor `pivot_root()` after unsharing the mount namespace,
+however, you have to mount writable filesystems on several directories *in* the namespace.
+
+At least, the following directories need to be writable *in* the namespace (not *outside* the namespace):
+
+- `/etc`
+- `/run`
+- `/var/logs`
+- `/var/lib/kubelet`
+- `/var/lib/cni`
+- `/var/lib/containerd` (for containerd)
+- `/var/lib/containers` (for CRI-O)
+-->
+
+### 创建用户命名空间
+
+第一步是创建一个 {{< glossary_tooltip text="用户命名空间" term_id="userns" >}}。
+
+如果你正在尝试使用用户命名空间的容器（例如 Rootless 模式的 Docker/Podman 或 LXC/LXD）
+运行 Kubernetes，那么你已经准备就绪，可以直接跳到下一小节。
+
+否则你需要通过传递参数 `CLONE_NEWUSER` 调用 `unshare(2)`，自己创建一个命名空间。
+
+用户命名空间也可以通过如下所示的命令行工具取消共享：
+
+- [`unshare(1)`](https://man7.org/linux/man-pages/man1/unshare.1.html)
+- [RootlessKit](https://github.com/rootless-containers/rootlesskit)
+- [become-root](https://github.com/giuseppe/become-root)
+
+在取消命名空间的共享之后，你也必须对其它的命名空间例如 mount 命名空间取消共享。
+
+在取消 mount 命名空间的共享之后，你**不**需要调用 `chroot()` 或者 `pivot_root()`，
+但是你必须**在这个命名空间内**挂载可写的文件系统到几个目录上。
+
+请确保**这个命名空间内**(不是这个命名空间外部)至少以下几个目录是可写的：
+
+- `/etc`
+- `/run`
+- `/var/logs`
+- `/var/lib/kubelet`
+- `/var/lib/cni`
+- `/var/lib/containerd` (参照 containerd)
+- `/var/lib/containers` (参照 CRI-O)
+
+<!--
+### Creating a delegated cgroup tree
+
+In addition to the user namespace, you also need to have a writable cgroup tree with cgroup v2.
+
+{{< note >}}
+Kubernetes support for running Node components in user namespaces requires cgroup v2.
+Cgroup v1 is not supported.
+{{< /note >}}
+
+If you are trying to run Kubernetes in Rootless Docker/Podman or LXC/LXD on a systemd-based host, you are all set.
+
+Otherwise you have to create a systemd unit with `Delegate=yes` property to delegate a cgroup tree with writable permission.
+
+On your node, systemd must already be configured to allow delegation; for more details, see
+[cgroup v2](https://rootlesscontaine.rs/getting-started/common/cgroup2/) in the Rootless
+Containers documentation.
+-->
+
+### 创建委派 cgroup 树
+
+除了用户命名空间，你也需要有一个版本为 cgroup v2 的可写 cgroup 树。
+
+{{< note >}}
+Kubernetes 需要 cgroup v2 才支持在用户命名空间运行节点组件。
+cgroup v1 是不支持的。
+{{< /note >}}
+
+如果你在一个采用 systemd 机制的主机上使用用户命名空间的容器（例如 Rootless 模式的 Docker/Podman
+或 LXC/LXD）来运行 Kubernetes，那么你已经准备就绪。
+
+否则你必须创建一个具有 `Delegate=yes` 属性的 systemd 单元，来委派一个具有可写权限的 cgroup 树。
+
+在你的节点上，systemd 必须已经配置为允许委派。更多细节请参阅 Rootless 容器文档的
+[cgroup v2](https://rootlesscontaine.rs/getting-started/common/cgroup2/) 部分。
+
+<!--
+### Configuring network
+
+{{% thirdparty-content %}}
+
+The network namespace of the Node components has to have a non-loopback interface, which can be for example configured with
+[slirp4netns](https://github.com/rootless-containers/slirp4netns),
+[VPNKit](https://github.com/moby/vpnkit), or
+[lxc-user-nic(1)](https://www.man7.org/linux/man-pages/man1/lxc-user-nic.1.html).
+
+The network namespaces of the Pods can be configured with regular CNI plugins.
+For multi-node networking, Flannel (VXLAN, 8472/UDP) is known to work.
+
+Ports such as the kubelet port (10250/TCP) and `NodePort` service ports have to be exposed from the Node network namespace to
+the host with an external port forwarder, such as RootlessKit, slirp4netns, or
+[socat(1)](https://linux.die.net/man/1/socat).
+
+You can use the port forwarder from K3s.
+See [Running K3s in Rootless Mode](https://rancher.com/docs/k3s/latest/en/advanced/#known-issues-with-rootless-mode)
+for more details.
+
+### Configuring CRI
+
+The kubelet relies on a container runtime. You should deploy a container runtime such as
+containerd or CRI-O and ensure that it is running within the user namespace before the kubelet starts.
+-->
+
+### 配置网络
+
+{{% thirdparty-content %}}
+
+节点组件的网络命名空间必须有一个非本地回路的网卡。它可以使用
+[slirp4netns](https://github.com/rootless-containers/slirp4netns)、
+[VPNKit](https://github.com/moby/vpnkit)、
+[lxc-user-nic(1)](https://www.man7.org/linux/man-pages/man1/lxc-user-nic.1.html)
+等工具进行配置。
+
+Pod 的网络命名空间可以使用常规的 CNI 插件配置。对于多节点的网络，已知 Flannel (VXLAN、8472/UDP) 可以正常工作。
+
+诸如 kubelet 端口（10250/TCP）和 `NodePort` 服务端口之类的端口必须通过外部端口转发器
+（例如 RootlessKit、slirp4netns 或
+[socat(1)](https://linux.die.net/man/1/socat)) 从节点网络命名空间暴露给主机。
+
+你可以使用 K3s 的端口转发器。更多细节请参阅
+[在 Rootless 模式下运行 K3s](https://rancher.com/docs/k3s/latest/en/advanced/#known-issues-with-rootless-mode)。
+
+### 配置 CRI
+
+kubelet 依赖于容器运行时。你需要部署一个容器运行时（例如 containerd 或 CRI-O），
+并确保它在 kubelet 启动之前已经在用户命名空间内运行。
+
+<!--
+{{< tabs name="cri" >}}
+{{% tab name="containerd" %}}
+
+Running CRI plugin of containerd in a user namespace is supported since containerd 1.4.
+
+Running containerd within a user namespace requires the following configurations
+in `/etc/containerd/containerd-config.toml`.
+
+```toml
+version = 2
+
+[plugins."io.containerd.grpc.v1.cri"]
+# Disable AppArmor
+  disable_apparmor = true
+# Ignore an error during setting oom_score_adj
+  restrict_oom_score_adj = true
+# Disable hugetlb cgroup v2 controller (because systemd does not support delegating hugetlb controller)
+  disable_hugetlb_controller = true
+
+[plugins."io.containerd.grpc.v1.cri".containerd]
+# Using non-fuse overlayfs is also possible for kernel >= 5.11, but requires SELinux to be disabled
+  snapshotter = "fuse-overlayfs"
+
+[plugins."io.containerd.grpc.v1.cri".containerd.runtimes.runc.options]
+# We use cgroupfs that is delegated by systemd, so we do not use SystemdCgroup driver
+# (unless you run another systemd in the namespace)
+  SystemdCgroup = false
+```
+
+{{% /tab %}}
+
+{{% tab name="CRI-O" %}}
+
+Running CRI-O in a user namespace is supported since CRI-O 1.22.
+
+CRI-O requires an environment variable `_CRIO_ROOTLESS=1` to be set.
+
+The following configurations (in `/etc/crio/crio.conf`) are also recommended:
+
+```toml
+[crio]
+  storage_driver = "overlay"
+# Using non-fuse overlayfs is also possible for kernel >= 5.11, but requires SELinux to be disabled
+  storage_option = ["overlay.mount_program=/usr/local/bin/fuse-overlayfs"]
+
+[crio.runtime]
+# We use cgroupfs that is delegated by systemd, so we do not use "systemd" driver
+# (unless you run another systemd in the namespace)
+  cgroup_manager = "cgroupfs"
+```
+
+{{% /tab %}}
+{{< /tabs >}}
+-->
+
+{{< tabs name="cri" >}}
+{{% tab name="containerd" %}}
+
+containerd 1.4 开始支持在用户命名空间运行 containerd 的 CRI 插件。
+
+在用户命名空间运行 containerd 需要在 `/etc/containerd/containerd-config.toml` 文件包含以下配置：
+
+```toml
+version = 2
+
+[plugins."io.containerd.grpc.v1.cri"]
+# 禁用 AppArmor
+  disable_apparmor = true
+# 忽略配置 oom_score_adj 时的错误
+  restrict_oom_score_adj = true
+# 禁用 hugetlb cgroup v2 控制器（因为 systemd 不支持委派 hugetlb controller）
+  disable_hugetlb_controller = true
+
+[plugins."io.containerd.grpc.v1.cri".containerd]
+# 如果内核 >= 5.11 , 也可以使用 non-fuse overlayfs， 但需要禁用 SELinux
+  snapshotter = "fuse-overlayfs"
+
+[plugins."io.containerd.grpc.v1.cri".containerd.runtimes.runc.options]
+# 我们使用的 cgroupfs 已经被 systemd 委派，所以我们不使用 SystemdCgroup 驱动
+# (除非你在命名空间内运行了另一个 systemd)
+  SystemdCgroup = false
+```
+
+{{% /tab %}}
+
+{{% tab name="CRI-O" %}}
+
+CRI-O 1.22 开始支持在用户命名空间运行 CRI-O。
+
+CRI-O 必须配置一个环境变量 `_CRIO_ROOTLESS=1`。
+
+也推荐使用 `/etc/crio/crio.conf` 文件内的以下配置：
+
+```toml
+[crio]
+  storage_driver = "overlay"
+# 如果内核 >= 5.11 , 也可以使用 non-fuse overlayfs， 但需要禁用 SELinux
+  storage_option = ["overlay.mount_program=/usr/local/bin/fuse-overlayfs"]
+
+[crio.runtime]
+# 我们使用的 cgroupfs 已经被 systemd 委派，所以我们不使用 "systemd" 驱动
+# (除非你在命名空间内运行了另一个 systemd)
+  cgroup_manager = "cgroupfs"
+```
+
+{{% /tab %}}
+{{< /tabs >}}
+
+<!--
+### Configuring kubelet
+
+Running kubelet in a user namespace requires the following configuration:
+
+```yaml
+apiVersion: kubelet.config.k8s.io/v1beta1
+kind: KubeletConfiguration
+featureGates:
+  KubeletInUserNamespace: true
+# We use cgroupfs that is delegated by systemd, so we do not use "systemd" driver
+# (unless you run another systemd in the namespace)
+cgroupDriver: "cgroupfs"
+```
+
+When the `KubeletInUserNamespace` feature gate is enabled, the kubelet ignores errors
+that may happen during setting the following sysctl values on the node.
+
+- `vm.overcommit_memory`
+- `vm.panic_on_oom`
+- `kernel.panic`
+- `kernel.panic_on_oops`
+- `kernel.keys.root_maxkeys`
+- `kernel.keys.root_maxbytes`.
+
+Within a user namespace, the kubelet also ignores any error raised from trying to open `/dev/kmsg`.
+This feature gate also allows kube-proxy to ignore an error during setting `RLIMIT_NOFILE`.
+
+The `KubeletInUserNamespace` feature gate was introduced in Kubernetes v1.22 with "alpha" status.
+
+Running kubelet in a user namespace without using this feature gate is also possible
+by mounting a specially crafted proc filesystem (as done by [Sysbox](https://github.com/nestybox/sysbox)), but not officially supported.
+-->
+
+### 配置 kubelet
+
+在用户命名空间运行 kubelet 必须进行如下配置：
+
+```yaml
+apiVersion: kubelet.config.k8s.io/v1beta1
+kind: KubeletConfiguration
+featureGates:
+  KubeletInUserNamespace: true
+# 我们使用的 cgroupfs 已经被 systemd 委派，所以我们不使用 "systemd" 驱动
+# (除非你在命名空间内运行了另一个 systemd)
+cgroupDriver: "cgroupfs"
+```
+
+当 `KubeletInUserNamespace` 特性门控被启用时， kubelet 会忽略节点内由于配置如下几个 sysctl
+参数值而可能产生的错误。
+
+- `vm.overcommit_memory`
+- `vm.panic_on_oom`
+- `kernel.panic`
+- `kernel.panic_on_oops`
+- `kernel.keys.root_maxkeys`
+- `kernel.keys.root_maxbytes`.
+
+在用户命名空间内， kubelet 也会忽略任何由于打开 `/dev/kmsg` 而产生的错误。
+这个特性门控也允许 kube-proxy 忽略由于配置 `RLIMIT_NOFILE` 而产生的一个错误。
+
+`KubeletInUserNamespace` 特性门控从 Kubernetes v1.22 被引入， 标记为 "alpha" 状态。
+
+通过挂载特制的 proc 文件系统 （比如 [Sysbox](https://github.com/nestybox/sysbox)），
+也可以在不使用这个特性门控的情况下在用户命名空间运行 kubelet，但这不受官方支持。
+
+<!--
+### Configuring kube-proxy
+
+Running kube-proxy in a user namespace requires the following configuration:
+
+```yaml
+apiVersion: kubeproxy.config.k8s.io/v1alpha1
+kind: KubeProxyConfiguration
+mode: "iptables" # or "userspace"
+conntrack:
+# Skip setting sysctl value "net.netfilter.nf_conntrack_max"
+  maxPerCore: 0
+# Skip setting "net.netfilter.nf_conntrack_tcp_timeout_established"
+  tcpEstablishedTimeout: 0s
+# Skip setting "net.netfilter.nf_conntrack_tcp_timeout_close"
+  tcpCloseWaitTimeout: 0s
+```
+-->
+
+### 配置 kube-proxy
+
+在用户命名空间运行 kube-proxy 需要进行以下配置：
+
+```yaml
+apiVersion: kubeproxy.config.k8s.io/v1alpha1
+kind: KubeProxyConfiguration
+mode: "iptables" # or "userspace"
+conntrack:
+# 跳过配置 sysctl 的值 "net.netfilter.nf_conntrack_max"
+  maxPerCore: 0
+# 跳过配置 "net.netfilter.nf_conntrack_tcp_timeout_established"
+  tcpEstablishedTimeout: 0s
+# 跳过配置 "net.netfilter.nf_conntrack_tcp_timeout_close"
+  tcpCloseWaitTimeout: 0s
+```
+
+<!--
+## Caveats
+
+- Most of "non-local" volume drivers such as `nfs` and `iscsi` do not work.
+  Local volumes like `local`, `hostPath`, `emptyDir`, `configMap`, `secret`, and `downwardAPI` are known to work.
+
+- Some CNI plugins may not work. Flannel (VXLAN) is known to work.
+
+For more on this, see the [Caveats and Future work](https://rootlesscontaine.rs/caveats/) page
+on the rootlesscontaine.rs website.
+-->
+
+## 注意事项   {#caveats}
+
+- 大部分“非本地”的卷驱动（例如 `nfs` 和 `iscsi`）不能正常工作。
+  已知诸如 `local`、`hostPath`、`emptyDir`、`configMap`、`secret` 和 `downwardAPI`
+  这些本地卷是能正常工作的。
+
+- 一些 CNI 插件可能不正常工作。已知 Flannel (VXLAN) 是能正常工作的。
+
+更多细节请参阅 rootlesscontaine.rs 站点的 [Caveats and Future work](https://rootlesscontaine.rs/caveats/) 页面。
+
+<!--
+## {{% heading "seealso" %}}
+
+- [rootlesscontaine.rs](https://rootlesscontaine.rs/)
+- [Rootless Containers 2020 (KubeCon NA 2020)](https://www.slideshare.net/AkihiroSuda/kubecon-na-2020-containerd-rootless-containers-2020)
+- [Running kind with Rootless Docker](https://kind.sigs.k8s.io/docs/user/rootless/)
+- [Usernetes](https://github.com/rootless-containers/usernetes)
+- [Running K3s with rootless mode](https://rancher.com/docs/k3s/latest/en/advanced/#running-k3s-with-rootless-mode-experimental)
+- [KEP-2033: Kubelet-in-UserNS (aka Rootless mode)](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2033-kubelet-in-userns-aka-rootless)
+-->
+
+## {{% heading "seealso" %}}
+
+- [rootlesscontaine.rs](https://rootlesscontaine.rs/)
+- [Rootless Containers 2020 (KubeCon NA 2020)](https://www.slideshare.net/AkihiroSuda/kubecon-na-2020-containerd-rootless-containers-2020)
+- [使用 Rootless 模式的 Docker 运行 kind](https://kind.sigs.k8s.io/docs/user/rootless/)
+- [Usernetes](https://github.com/rootless-containers/usernetes)
+- [使用 Rootless 模式运行 K3s](https://rancher.com/docs/k3s/latest/en/advanced/#running-k3s-with-rootless-mode-experimental)
+- [KEP-2033: Kubelet-in-UserNS (aka Rootless mode)](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2033-kubelet-in-userns-aka-rootless)
\ No newline at end of file
diff --git a/content/zh/docs/tasks/administer-cluster/limit-storage-consumption.md b/content/zh-cn/docs/tasks/administer-cluster/limit-storage-consumption.md
similarity index 82%
rename from content/zh/docs/tasks/administer-cluster/limit-storage-consumption.md
rename to content/zh-cn/docs/tasks/administer-cluster/limit-storage-consumption.md
index 003b8dc7a4..1ac684de58 100644
--- a/content/zh/docs/tasks/administer-cluster/limit-storage-consumption.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/limit-storage-consumption.md
@@ -1,5 +1,5 @@
 ---
-title: 限制存储消耗
+title: 限制存储使用量
 content_type: task
 ---
 <!--
@@ -12,16 +12,16 @@ content_type: task
 <!--
 This example demonstrates how to limit the amount of storage consumed in a namespace
 -->
-此示例演示了如何限制一个名字空间中的存储使用量。
+此示例演示如何限制一个名字空间中的存储使用量。
 
 <!--
 The following resources are used in the demonstration: [ResourceQuota](/docs/concepts/policy/resource-quotas/),
 [LimitRange](/docs/tasks/administer-cluster/memory-default-namespace/),
 and [PersistentVolumeClaim](/docs/concepts/storage/persistent-volumes/).
 -->
-演示中用到了以下资源：[ResourceQuota](/zh/docs/concepts/policy/resource-quotas/)，
-[LimitRange](/zh/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/) 和
-[PersistentVolumeClaim](/zh/docs/concepts/storage/persistent-volumes/)。
+演示中用到了以下资源：[ResourceQuota](/zh-cn/docs/concepts/policy/resource-quotas/)、
+[LimitRange](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/) 和
+[PersistentVolumeClaim](/zh-cn/docs/concepts/storage/persistent-volumes/)。
 
 ## {{% heading "prerequisites" %}}
 
@@ -32,18 +32,18 @@ and [PersistentVolumeClaim](/docs/concepts/storage/persistent-volumes/).
 <!--
 ## Scenario: Limiting Storage Consumption
 -->
-## 场景：限制存储消耗
+## 场景：限制存储使用量
 
 <!--
 The cluster-admin is operating a cluster on behalf of a user population and the admin wants to control
 how much storage a single namespace can consume in order to control cost.
 -->
-集群管理员代表用户群操作集群，管理员希望控制单个名称空间可以消耗多少存储空间以控制成本。
+集群管理员代表用户群操作集群，该管理员希望控制单个名字空间可以消耗多少存储空间以控制成本。
 
 <!--
 The admin would like to limit:
 -->
-管理员想要限制：
+该管理员想要限制：
 
 <!--
 1. The number of persistent volume claims in a namespace
@@ -101,8 +101,8 @@ AWS EBS volumes have a 1Gi minimum requirement.
 Admins can limit the number of PVCs in a namespace as well as the cumulative capacity of those PVCs. New PVCs that exceed
 either maximum value will be rejected.
 -->
-管理员可以限制某个名字空间中的 PVCs 个数以及这些 PVCs 的累计容量。
-新 PVCs 请求如果超过任一上限值将被拒绝。
+管理员可以限制某个名字空间中的 PVC 个数以及这些 PVC 的累计容量。
+如果 PVC 的数目超过任一上限值，新的 PVC 将被拒绝。
 
 <!--
 In this example, a 6th PVC in the namespace would be rejected because it exceeds the maximum count of 5. Alternatively,
@@ -110,9 +110,9 @@ a 5Gi maximum quota when combined with the 2Gi max limit above, cannot have 3 PV
  for a namespace capped at 5Gi.
 -->
 在此示例中，名字空间中的第 6 个 PVC 将被拒绝，因为它超过了最大计数 5。
-或者，当与上面的 2Gi 最大容量限制结合在一起时，意味着 5Gi 的最大配额
-不能支持 3 个都是 2Gi 的 PVC。
-后者实际上是向名字空间请求 6Gi 容量，而该命令空间已经设置上限为 5Gi。
+或者，当与上面的 2Gi 最大容量限制结合在一起时，
+意味着 5Gi 的最大配额不能支持 3 个都是 2Gi 的 PVC。
+后者实际上是向名字空间请求 6Gi 容量，而该名字空间已经设置上限为 5Gi。
 
 ```yaml
 apiVersion: v1
diff --git a/content/zh/docs/tasks/administer-cluster/manage-resources/_index.md b/content/zh-cn/docs/tasks/administer-cluster/manage-resources/_index.md
similarity index 100%
rename from content/zh/docs/tasks/administer-cluster/manage-resources/_index.md
rename to content/zh-cn/docs/tasks/administer-cluster/manage-resources/_index.md
diff --git a/content/zh/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace.md b/content/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace.md
similarity index 54%
rename from content/zh/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace.md
rename to content/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace.md
index d05a5f6b33..9fe493377d 100644
--- a/content/zh/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace.md
@@ -2,36 +2,53 @@
 title: 为命名空间配置 CPU 最小和最大约束
 content_type: task
 weight: 40
+description: >-
+  为命名空间定义一个有效的 CPU 资源限制范围，使得在该命名空间中所有新建 Pod 的 CPU 资源是在你所设置的范围内。
 ---
 
 <!--
 title: Configure Minimum and Maximum CPU Constraints for a Namespace
 content_type: task
 weight: 40
+description: >-
+  Define a range of valid CPU resource limits for a namespace, so that every new Pod
+  in that namespace falls within the range you configure.
 -->
 
 <!-- overview -->
 
 <!--
-This page shows how to set minimum and maximum values for the CPU resources used by Containers
-and Pods in a namespace. You specify minimum and maximum CPU values in a
-[LimitRange](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#limitrange-v1-core)
+This page shows how to set minimum and maximum values for the CPU resources used by containers
+and Pods in a {{< glossary_tooltip text="namespace" term_id="namespace" >}}. You specify minimum
+and maximum CPU values in a
+[LimitRange](/docs/reference/kubernetes-api/policy-resources/limit-range-v1/)
 object. If a Pod does not meet the constraints imposed by the LimitRange, it cannot be created
 in the namespace.
 -->
-本页介绍如何为命名空间中容器和 Pod 使用的 CPU 资源设置最小和最大值。
+本页介绍如何为{{< glossary_tooltip text="命名空间" term_id="namespace" >}}中的容器和 Pod
+设置其所使用的 CPU 资源的最小和最大值。
 你可以通过
-[LimitRange](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#limitrange-v1-core)
-对象声明 CPU 的最小和最大值. 如果 Pod 不能满足 LimitRange 的限制，它就不能在命名空间中创建。
+[LimitRange](/docs/reference/kubernetes-api/policy-resources/limit-range-v1/)
+对象声明 CPU 的最小和最大值.
+如果 Pod 不能满足 LimitRange 的限制，就无法在该命名空间中被创建。
 
 ## {{% heading "prerequisites" %}}
 
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+{{< include "task-tutorial-prereqs.md" >}} 
 
 <!--
-Your cluster must have at least 1 CPU available for use to run the task examples.
+You must have access to create namespaces in your cluster.
+
+Each node in your cluster must have at least 1.0 CPU available for Pods.
+See [meaning of CPU](/docs/concepts/configuration/manage-resources-containers/#meaning-of-cpu)
+to learn what Kubernetes means by “1 CPU”.
 -->
-你的集群中每个节点至少要有 1 个 CPU 可用才能运行本任务示例。
+在你的集群里你必须要有创建命名空间的权限。
+
+集群中的每个节点都必须至少有 1.0 个 CPU 可供 Pod 使用。
+
+请阅读 [CPU 的含义](/zh-cn/docs/concepts/configuration/manage-resources-containers/#meaning-of-cpu)
+理解 "1 CPU" 在 Kubernetes 中的含义。
 
 <!-- steps -->
 
@@ -52,11 +69,11 @@ kubectl create namespace constraints-cpu-example
 <!--
 ## Create a LimitRange and a Pod
 
-Here's the configuration file for a LimitRange:
+Here's a manifest for an example {{< glossary_tooltip text="LimitRange" term_id="limitrange" >}}:
 -->
 ## 创建 LimitRange 和 Pod
 
-这里给出了 LimitRange 的配置文件：
+以下为 {{< glossary_tooltip text="LimitRange" term_id="limitrange" >}} 的示例清单：
 
 {{< codenew file="admin/resource/cpu-constraints.yaml" >}}
 
@@ -100,24 +117,25 @@ limits:
 ```
 
 <!--
-Now whenever a Container is created in the constraints-cpu-example namespace, Kubernetes
-performs these steps:
+Now whenever you create a Pod in the constraints-cpu-example namespace (or some other client
+of the Kubernetes API creates an equivalent Pod), Kubernetes performs these steps:
 
-* If the Container does not specify its own CPU request and limit, assign the default
-CPU request and limit to the Container.
+* If any container in that Pod does not specify its own CPU request and limit, the control plane
+  assigns the default CPU request and limit to that container.
 
-* Verify that the Container specifies a CPU request that is greater than or equal to 200 millicpu.
+* Verify that every container in that Pod specifies a CPU request that is greater than or equal to 200 millicpu.
 
-* Verify that the Container specifies a CPU limit that is less than or equal to 800 millicpu.
+* Verify that every container in that Pod specifies a CPU limit that is less than or equal to 800 millicpu.
 -->
 
-现在不管什么时候在 constraints-cpu-example 命名空间中创建容器，Kubernetes 都会执行下面这些步骤：
+现在，每当你在 constraints-mem-example 命名空间中创建 Pod 时，或者某些其他的
+Kubernetes API 客户端创建了等价的 Pod 时，Kubernetes 就会执行下面的步骤：
 
-* 如果容器没有声明自己的 CPU 请求和限制，将为容器指定默认 CPU 请求和限制。
+* 如果 Pod 中的任何容器未声明自己的 CPU 请求和限制，控制面将为该容器设置默认的 CPU 请求和限制。
 
-* 核查容器声明的 CPU 请求确保其大于或者等于 200 millicpu。
+* 确保该 Pod 中的每个容器的 CPU 请求至少 200 millicpu。
 
-* 核查容器声明的 CPU 限制确保其小于或者等于 800 millicpu。
+* 确保该 Pod 中每个容器 CPU 请求不大于 800 millicpu。
 
 <!--
 When creating a `LimitRange` object, you can specify limits on huge-pages
@@ -130,29 +148,29 @@ on these resources, the two values must be the same.
 {{< /note >}}
 
 <!--
-Here's the configuration file for a Pod that has one Container. The Container manifest
+Here's a manifest for a Pod that has one container. The container manifest
 specifies a CPU request of 500 millicpu and a CPU limit of 800 millicpu. These satisfy the
-minimum and maximum CPU constraints imposed by the LimitRange.
+minimum and maximum CPU constraints imposed by the LimitRange for this namespace.
 -->
-这里给出了包含一个容器的 Pod 的配置文件。
-该容器声明了 500 millicpu 的 CPU 请求和 800 millicpu 的 CPU 限制。
-这些参数满足了 LimitRange 对象规定的 CPU 最小和最大限制。
+以下为某个仅包含一个容器的 Pod 的清单。
+该容器声明了 CPU 请求 500 millicpu 和 CPU 限制 800 millicpu 。
+这些参数满足了 LimitRange 对象为此名字空间规定的 CPU 最小和最大限制。
 
 {{< codenew file="admin/resource/cpu-constraints-pod.yaml" >}}
 
 <!--
 Create the Pod:
 -->
-创建Pod：
+创建 Pod：
 
 ```shell
 kubectl apply -f https://k8s.io/examples/admin/resource/cpu-constraints-pod.yaml --namespace=constraints-cpu-example
 ```
 
 <!--
-Verify that the Pod's Container is running:
+Verify that the Pod is running and that its container is healthy:
 -->
-确认一下 Pod 中的容器在运行：
+确认 Pod 正在运行，并且其容器处于健康状态：
 
 ```shell
 kubectl get pod constraints-cpu-demo --namespace=constraints-cpu-example
@@ -168,10 +186,10 @@ kubectl get pod constraints-cpu-demo --output=yaml --namespace=constraints-cpu-e
 ```
 
 <!--
-The output shows that the Container has a CPU request of 500 millicpu and CPU limit
+The output shows that the Pod's only container has a CPU request of 500 millicpu and CPU limit
 of 800 millicpu. These satisfy the constraints imposed by the LimitRange.
 -->
-输出结果表明容器的 CPU 请求为 500 millicpu，CPU 限制为 800 millicpu。
+输出结果显示该 Pod 的容器的 CPU 请求为 500 millicpu，CPU 限制为 800 millicpu。
 这些参数满足 LimitRange 规定的限制范围。
 
 ```yaml
@@ -214,10 +232,11 @@ kubectl apply -f https://k8s.io/examples/admin/resource/cpu-constraints-pod-2.ya
 ```
 
 <!--
-The output shows that the Pod does not get created, because the Container specifies a CPU limit that is
-too large:
+The output shows that the Pod does not get created, because it defines an unacceptable container.
+That container is not acceptable because it specifies a CPU limit that is too large:
 -->
-输出结果表明 Pod 没有创建成功，因为容器声明的 CPU 限制太大了：
+输出结果表明 Pod 没有创建成功，因为其中定义了一个无法被接受的容器。
+该容器之所以无法被接受是因为其中设定了过高的 CPU 限制值：
 
 ```
 Error from server (Forbidden): error when creating "examples/admin/resource/cpu-constraints-pod-2.yaml":
@@ -227,12 +246,12 @@ pods "constraints-cpu-demo-2" is forbidden: maximum cpu usage per Container is 8
 <!--
 ## Attempt to create a Pod that does not meet the minimum CPU request
 
-Here's the configuration file for a Pod that has one Container. The Container specifies a
+Here's a manifest for a Pod that has one container. The container specifies a
 CPU request of 100 millicpu and a CPU limit of 800 millicpu.
 -->
 ## 尝试创建一个不满足最小 CPU 请求的 Pod
 
-这里给出了包含一个容器的 Pod 的配置文件。该容器声明了100 millicpu的 CPU 请求和800 millicpu的 CPU 限制。
+以下为某个只有一个容器的 Pod 的清单。该容器声明了 CPU 请求 100 millicpu 和 CPU 限制 800 millicpu。
 
 {{< codenew file="admin/resource/cpu-constraints-pod-3.yaml" >}}
 
@@ -246,10 +265,12 @@ kubectl apply -f https://k8s.io/examples/admin/resource/cpu-constraints-pod-3.ya
 ```
 
 <!--
-The output shows that the Pod does not get created, because the Container specifies a CPU
-request that is too small:
+The output shows that the Pod does not get created, because it defines an unacceptable container.
+That container is not acceptable because it specifies a CPU request that is lower than the
+enforced minimum:
 -->
-输出结果显示 Pod 没有创建成功，因为容器声明的 CPU 请求太小了：
+输出结果显示 Pod 没有创建成功，因为其中定义了一个无法被接受的容器。
+该容器无法被接受的原因是其中所设置的 CPU 请求小于最小值的限制：
 
 ```
 Error from server (Forbidden): error when creating "examples/admin/resource/cpu-constraints-pod-3.yaml":
@@ -259,12 +280,12 @@ pods "constraints-cpu-demo-4" is forbidden: minimum cpu usage per Container is 2
 <!--
 ## Create a Pod that does not specify any CPU request or limit
 
-Here's the configuration file for a Pod that has one Container. The Container does not
-specify a CPU request, and it does not specify a CPU limit.
+Here's a manifest for a Pod that has one container. The container does not
+specify a CPU request, nor does it specify a CPU limit.
 -->
 ## 创建一个没有声明 CPU 请求和 CPU 限制的 Pod
 
-这里给出了包含一个容器的 Pod 的配置文件。该容器没有设定 CPU 请求和 CPU 限制。
+以下为一个只有一个容器的 Pod 的清单。该容器没有声明 CPU 请求，也没有声明 CPU 限制。
 
 {{< codenew file="admin/resource/cpu-constraints-pod-4.yaml" >}}
 
@@ -287,11 +308,14 @@ kubectl get pod constraints-cpu-demo-4 --namespace=constraints-cpu-example --out
 ```
 
 <!--
-The output shows that the Pod's Container has a CPU request of 800 millicpu and a CPU limit of 800 millicpu.
-How did the Container get those values?
+The output shows that the Pod's single container has a CPU request of 800 millicpu and a
+CPU limit of 800 millicpu.
+How did that container get those values?
 -->
-输出结果显示 Pod 的容器有个 800 millicpu 的 CPU 请求和 800 millicpu 的 CPU 限制。
-容器是怎样得到那些值的呢？
+输出结果显示 Pod 的唯一容器的 CPU 请求为 800 millicpu，CPU 限制为 800 millicpu。
+
+容器是怎样获得这些数值的呢？
+
 
 ```yaml
 resources:
@@ -302,26 +326,29 @@ resources:
 ```
 
 <!--
-Because your Container did not specify its own CPU request and limit, it was given the
-[default CPU request and limit](/docs/tasks/administer-cluster/cpu-default-namespace/)
-from the LimitRange.
+Because that container did not specify its own CPU request and limit, the control plane
+applied the
+[default CPU request and limit](/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/)
+from the LimitRange for this namespace.
 -->
-因为你的 Container 没有声明自己的 CPU 请求和限制，LimitRange 给它指定了
-[默认的 CPU 请求和限制](/zh/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/)
+因为这一容器没有声明自己的 CPU 请求和限制，
+控制面会根据命名空间中配置 LimitRange
+设置[默认的 CPU 请求和限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/)。
 
 <!--
-At this point, your Container might be running or it might not be running. Recall that a prerequisite
-for this task is that your Nodes have at least 1 CPU. If each of your Nodes has only
-1 CPU, then there might not be enough allocatable CPU on any Node to accommodate a request
-of 800 millicpu. If you happen to be using Nodes with 2 CPU, then you probably have
-enough CPU to accommodate the 800 millicpu request.
+At this point, your Pod may or may not be running. Recall that a prerequisite for
+this task is that your Nodes must have at least 1 CPU available for use. If each of your Nodes has only 1 CPU,
+then there might not be enough allocatable CPU on any Node to accommodate a request of 800 millicpu. 
+If you happen to be using Nodes with 2 CPU, then you probably have enough CPU to accommodate the 800 millicpu request.
 
 Delete your Pod:
 -->
-此时，你的容器可能运行也可能没有运行。
-回想一下，本任务的先决条件是你的节点要有 1 个 CPU。
-如果你的每个节点仅有 1 个 CPU，那么可能没有任何一个节点可以满足 800 millicpu 的 CPU 请求。
-如果你在用的节点恰好有两个 CPU，那么你才可能有足够的 CPU 来满足 800 millicpu 的请求。
+此时，你的 Pod 可能已经运行起来也可能没有运行起来。
+回想一下我们本次任务的先决条件是你的每个节点都至少有 1 CPU。
+如果你的每个节点都只有 1 CPU，那将没有一个节点拥有足够的可分配 CPU 来满足 800 millicpu 的请求。
+如果你在用的节点恰好有 2 CPU，那么有可能有足够的 CPU 来满足 800 millicpu 的请求。
+
+删除你的 Pod：
 
 ```
 kubectl delete pod constraints-cpu-demo-4 --namespace=constraints-cpu-example
@@ -396,12 +423,12 @@ kubectl delete namespace constraints-cpu-example
 
 ### 集群管理员参考：
 
-* [为命名空间配置默认内存请求和限制](/zh/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
-* [为命名空间配置内存限制的最小值和最大值](/zh/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)
-* [为命名空间配置 CPU 限制的最小值和最大值](/zh/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
-* [为命名空间配置内存和 CPU 配额](/zh/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
-* [为命名空间配置 Pod 配额](/zh/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace/)
-* [为 API 对象配置配额](/zh/docs/tasks/administer-cluster/quota-api-object/)
+* [为命名空间配置默认内存请求和限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
+* [为命名空间配置内存限制的最小值和最大值](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)
+* [为命名空间配置 CPU 限制的最小值和最大值](/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
+* [为命名空间配置内存和 CPU 配额](/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
+* [为命名空间配置 Pod 配额](/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace/)
+* [为 API 对象配置配额](/zh-cn/docs/tasks/administer-cluster/quota-api-object/)
 
 <!--
 ### For app developers
@@ -413,7 +440,7 @@ kubectl delete namespace constraints-cpu-example
 
 ### 应用开发者参考：
 
-* [为容器和 Pod 分配内存资源](/zh/docs/tasks/configure-pod-container/assign-memory-resource/)
-* [为容器和 Pod 分配 CPU 资源](/zh/docs/tasks/configure-pod-container/assign-cpu-resource/)
-* [为 Pod 配置服务质量](/zh/docs/tasks/configure-pod-container/quality-service-pod/)
+* [为容器和 Pod 分配内存资源](/zh-cn/docs/tasks/configure-pod-container/assign-memory-resource/)
+* [为容器和 Pod 分配 CPU 资源](/zh-cn/docs/tasks/configure-pod-container/assign-cpu-resource/)
+* [为 Pod 配置服务质量](/zh-cn/docs/tasks/configure-pod-container/quality-service-pod/)
 
diff --git a/content/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace.md b/content/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace.md
new file mode 100644
index 0000000000..f980585173
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace.md
@@ -0,0 +1,332 @@
+---
+title: 为命名空间配置默认的 CPU 请求和限制
+content_type: task
+weight: 20
+description: >-
+  为命名空间定义默认的 CPU 资源限制，在该命名空间中每个新建的 Pod 都会被配置上 CPU 资源限制。
+---
+
+<!--
+title: Configure Default CPU Requests and Limits for a Namespace
+content_type: task
+weight: 20
+-->
+
+<!-- overview -->
+<!--
+This page shows how to configure default CPU requests and limits for a
+{{< glossary_tooltip text="namespace" term_id="namespace" >}}.
+
+A Kubernetes cluster can be divided into namespaces. If you create a Pod within a
+namespace that has a default CPU
+[limit](/docs/concepts/configuration/manage-resources-containers/#requests-and-limits), and any container in that Pod does not specify
+its own CPU limit, then the
+{{< glossary_tooltip text="control plane" term_id="control-plane" >}} assigns the default
+CPU limit to that container.
+
+Kubernetes assigns a default CPU
+[request](/docs/concepts/configuration/manage-resources-containers/#requests-and-limits),
+but only under certain conditions that are explained later in this page.
+
+-->
+本章介绍如何为{{< glossary_tooltip text="命名空间" term_id="namespace" >}}配置默认的 CPU 请求和限制。
+
+一个 Kubernetes 集群可被划分为多个命名空间。
+如果你在具有默认 CPU[限制](/zh-cn/docs/concepts/configuration/manage-resources-containers/#requests-and-limits)
+的命名空间内创建一个 Pod，并且这个 Pod 中任何容器都没有声明自己的 CPU 限制，
+那么{{< glossary_tooltip text="控制面" term_id="control-plane" >}}会为容器设定默认的 CPU 限制。
+
+Kubernetes 在一些特定情况还可以设置默认的 CPU 请求，本文后续章节将会对其进行解释。
+
+## {{% heading "prerequisites" %}}
+
+{{< include "task-tutorial-prereqs.md" >}}
+
+<!--
+You must have access to create namespaces in your cluster.
+
+If you're not already familiar with what Kubernetes means by 1.0 CPU,
+read [meaning of CPU](/docs/concepts/configuration/manage-resources-containers/#meaning-of-cpu).
+-->
+在你的集群里你必须要有创建命名空间的权限。
+
+如果你还不熟悉 Kubernetes 中 1.0 CPU 的含义，
+请阅读 [CPU 的含义](/zh-cn/docs/concepts/configuration/manage-resources-containers/#meaning-of-cpu)。
+
+<!-- steps -->
+
+<!--
+## Create a namespace
+
+Create a namespace so that the resources you create in this exercise are
+isolated from the rest of your cluster.
+-->
+## 创建命名空间
+
+创建一个命名空间，以便本练习中创建的资源和集群的其余部分相隔离。
+
+```shell
+kubectl create namespace default-cpu-example
+```
+
+<!--
+## Create a LimitRange and a Pod
+
+Here's a manifest for an example {{< glossary_tooltip text="LimitRange" term_id="limitrange" >}}.
+The manifest specifies a default CPU request and a default CPU limit.
+-->
+## 创建 LimitRange 和 Pod
+
+以下为 {{< glossary_tooltip text="LimitRange" term_id="limitrange" >}} 的示例清单。
+清单中声明了默认 CPU 请求和默认 CPU 限制。
+
+{{< codenew file="admin/resource/cpu-defaults.yaml" >}}
+
+<!--
+Create the LimitRange in the default-cpu-example namespace:
+-->
+在命名空间 default-cpu-example 中创建 LimitRange 对象：
+
+```shell
+kubectl apply -f https://k8s.io/examples/admin/resource/cpu-defaults.yaml --namespace=default-cpu-example
+```
+
+<!--
+Now if you create a Pod in the default-cpu-example namespace, and any container
+in that Pod does not specify its own values for CPU request and CPU limit,
+then the control plane applies default values: a CPU request of 0.5 and a default
+CPU limit of 1.
+
+Here's a manifest for a Pod that has one container. The container
+does not specify a CPU request and limit.
+-->
+现在如果你在 default-cpu-example 命名空间中创建一个 Pod，
+并且该 Pod 中所有容器都没有声明自己的 CPU 请求和 CPU 限制，
+控制面会将 CPU 的默认请求值 0.5 和默认限制值 1 应用到 Pod 上。
+
+以下为只包含一个容器的 Pod 的清单。该容器没有声明 CPU 请求和限制。
+
+{{< codenew file="admin/resource/cpu-defaults-pod.yaml" >}}
+
+<!--
+Create the Pod.
+-->
+创建 Pod。
+
+```shell
+kubectl apply -f https://k8s.io/examples/admin/resource/cpu-defaults-pod.yaml --namespace=default-cpu-example
+```
+
+<!--
+View the Pod's specification:
+-->
+查看该 Pod 的声明：
+
+```shell
+kubectl get pod default-cpu-demo --output=yaml --namespace=default-cpu-example
+```
+
+<!--
+The output shows that the Pod's only container has a CPU request of 500m `cpu`
+(which you can read as “500 millicpu”), and a CPU limit of 1 `cpu`.
+These are the default values specified by the LimitRange.
+-->
+输出显示该 Pod 的唯一的容器有 500m `cpu` 的 CPU 请求和 1 `cpu` 的 CPU 限制。
+这些是 LimitRange 声明的默认值。
+
+```shell
+containers:
+- image: nginx
+  imagePullPolicy: Always
+  name: default-cpu-demo-ctr
+  resources:
+    limits:
+      cpu: "1"
+    requests:
+      cpu: 500m
+```
+
+<!--
+## What if you specify a container's limit, but not its request?
+
+Here's a manifest for a Pod that has one container. The container
+specifies a CPU limit, but not a request:
+-->
+## 你只声明容器的限制，而不声明请求会怎么样？
+
+以下为只包含一个容器的 Pod 的清单。该容器声明了 CPU 限制，而没有声明 CPU 请求。
+
+{{< codenew file="admin/resource/cpu-defaults-pod-2.yaml" >}}
+
+<!--
+Create the Pod:
+-->
+创建 Pod
+
+```shell
+kubectl apply -f https://k8s.io/examples/admin/resource/cpu-defaults-pod-2.yaml --namespace=default-cpu-example
+```
+
+<!--
+View the [specification](/docs/concepts/overview/working-with-objects/kubernetes-objects/#object-spec-and-status)
+of the Pod that you created:
+-->
+查看你所创建的 Pod 的[规约](/zh-cn/docs/concepts/overview/working-with-objects/kubernetes-objects/#object-spec-and-status)：
+
+```
+kubectl get pod default-cpu-demo-2 --output=yaml --namespace=default-cpu-example
+```
+
+<!--
+The output shows that the Container's CPU request is set to match its CPU limit.
+Notice that the container was not assigned the default CPU request value of 0.5 `cpu`:
+-->
+输出显示该容器的 CPU 请求和 CPU 限制设置相同。注意该容器没有被指定默认的 CPU 请求值 0.5 `cpu`：
+
+```
+resources:
+  limits:
+    cpu: "1"
+  requests:
+    cpu: "1"
+```
+
+<!--
+## What if you specify a container's request, but not its limit?
+
+Here's an example manifest for a Pod that has one container. The container
+specifies a CPU request, but not a limit:
+-->
+## 你只声明容器的请求，而不声明它的限制会怎么样？
+
+这里给出了包含一个容器的 Pod 的示例清单。该容器声明了 CPU 请求，而没有声明 CPU 限制。
+
+{{< codenew file="admin/resource/cpu-defaults-pod-3.yaml" >}}
+
+<!--
+Create the Pod:
+-->
+创建 Pod：
+
+```shell
+kubectl apply -f https://k8s.io/examples/admin/resource/cpu-defaults-pod-3.yaml --namespace=default-cpu-example
+```
+
+<!--
+View the [specification](/docs/concepts/overview/working-with-objects/kubernetes-objects/#object-spec-and-status)
+of the Pod that you created:
+-->
+查看你所创建的 Pod 的[规约](/zh-cn/docs/concepts/overview/working-with-objects/kubernetes-objects/#object-spec-and-status)：
+
+```
+kubectl get pod default-cpu-demo-3 --output=yaml --namespace=default-cpu-example
+```
+
+<!--
+The output shows that the container's CPU request is set to the value you specified at
+the time you created the Pod (in other words: it matches the manifest).
+However, the same container's CPU limit is set to 1 `cpu`, which is the default CPU limit
+for that namespace.
+-->
+输出显示你所创建的 Pod 中，容器的 CPU 请求为 Pod 清单中声明的值。
+然而同一容器的 CPU 限制被设置为 1 `cpu`，此值是该命名空间的默认 CPU 限制值。
+
+```
+resources:
+  limits:
+    cpu: "1"
+  requests:
+    cpu: 750m
+```
+
+<!--
+## Motivation for default CPU limits and requests
+
+If your namespace has a CPU {{< glossary_tooltip text="resource quota" term_id="resource-quota" >}}
+configured,
+it is helpful to have a default value in place for CPU limit.
+Here are two of the restrictions that a CPU resource quota imposes on a namespace:
+
+* For every Pod that runs in the namespace, each of its containers must have a CPU limit.
+* CPU request apply a resource reservation on the node where the Pod in question is scheduled.
+  The total amount of CPU that is reserved for use by all Pods in the namespace must not
+  exceed a specified limit.
+
+-->
+## 默认 CPU 限制和请求的动机
+
+如果你的命名空间设置了 CPU {{< glossary_tooltip text="资源配额" term_id="resource-quota" >}}，
+为 CPU 限制设置一个默认值会很有帮助。
+以下是 CPU 资源配额对命名空间的施加的两条限制：
+
+* 命名空间中运行的每个 Pod 中的容器都必须有 CPU 限制。
+
+* CPU 限制用来在 Pod 被调度到的节点上执行资源预留。
+
+预留给命名空间中所有 Pod 使用的 CPU 总量不能超过规定的限制。
+
+<!--
+When you add a LimitRange:
+
+If any Pod in that namespace that includes a container does not specify its own CPU limit,
+the control plane applies the default CPU limit to that container, and the Pod can be
+allowed to run in a namespace that is restricted by a CPU ResourceQuota.
+-->
+当你添加 LimitRange 时：
+
+如果该命名空间中的任何 Pod 的容器未指定 CPU 限制，
+控制面将默认 CPU 限制应用于该容器，
+这样 Pod 可以在受到 CPU ResourceQuota 限制的命名空间中运行。
+
+<!--
+## Clean up
+
+Delete your namespace:
+
+```shell
+kubectl delete namespace default-cpu-example
+```
+-->
+## 清理
+
+删除你的命名空间：
+
+```shell
+kubectl delete namespace default-cpu-example
+```
+
+## {{% heading "whatsnext" %}}
+
+<!--
+### For cluster administrators
+
+* [Configure Default Memory Requests and Limits for a Namespace](/docs/tasks/administer-cluster/memory-default-namespace/)
+* [Configure Minimum and Maximum Memory Constraints for a Namespace](/docs/tasks/administer-cluster/memory-constraint-namespace/)
+* [Configure Minimum and Maximum CPU Constraints for a Namespace](/docs/tasks/administer-cluster/cpu-constraint-namespace/)
+* [Configure Memory and CPU Quotas for a Namespace](/docs/tasks/administer-cluster/quota-memory-cpu-namespace/)
+* [Configure a Pod Quota for a Namespace](/docs/tasks/administer-cluster/quota-pod-namespace/)
+* [Configure Quotas for API Objects](/docs/tasks/administer-cluster/quota-api-object/)
+-->
+### 集群管理员参考
+
+* [为命名空间配置默认内存请求和限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
+* [为命名空间配置内存限制的最小值和最大值](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)
+* [为命名空间配置 CPU 限制的最小值和最大值](/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
+* [为命名空间配置内存和 CPU 配额](/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
+* [为命名空间配置 Pod 配额](/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace/)
+* [为 API 对象配置配额](/zh-cn/docs/tasks/administer-cluster/quota-api-object/)
+
+<!--
+### For app developers
+
+* [Assign Memory Resources to Containers and Pods](/docs/tasks/configure-pod-container/assign-memory-resource/)
+* [Assign CPU Resources to Containers and Pods](/docs/tasks/configure-pod-container/assign-cpu-resource/)
+* [Configure Quality of Service for Pods](/docs/tasks/configure-pod-container/quality-service-pod/)
+-->
+### 应用开发者参考
+
+* [为容器和 Pod 分配内存资源](/zh-cn/docs/tasks/configure-pod-container/assign-memory-resource/)
+* [为容器和 Pod 分配 CPU 资源](/zh-cn/docs/tasks/configure-pod-container/assign-cpu-resource/)
+* [为 Pod 配置服务质量](/zh-cn/docs/tasks/configure-pod-container/quality-service-pod/)
+
+
diff --git a/content/zh/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace.md b/content/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace.md
similarity index 54%
rename from content/zh/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace.md
rename to content/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace.md
index 372ca6c854..5172f347fe 100644
--- a/content/zh/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace.md
@@ -2,6 +2,9 @@
 title: 配置命名空间的最小和最大内存约束
 content_type: task
 weight: 30
+description: >-
+  为命名口空间定义一个有效的内存资源限制范围，在该命名空间中每个新创建
+  Pod 的内存资源是在设置的范围内。
 ---
 
 <!--
@@ -13,24 +16,30 @@ weight: 30
 <!-- overview -->
 
 <!--
-This page shows how to set minimum and maximum values for memory used by Containers
-running in a namespace. You specify minimum and maximum memory values in a
-[LimitRange](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#limitrange-v1-core)
+This page shows how to set minimum and maximum values for memory used by containers
+running in a {{< glossary_tooltip text="namespace" term_id="namespace" >}}. 
+You specify minimum and maximum memory values in a
+[LimitRange](/docs/reference/kubernetes-api/policy-resources/limit-range-v1/)
 object. If a Pod does not meet the constraints imposed by the LimitRange,
 it cannot be created in the namespace.
 -->
-本页介绍如何设置在命名空间中运行的容器使用的内存的最小值和最大值。 你可以在
-[LimitRange](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#limitrange-v1-core)
-对象中指定最小和最大内存值。如果 Pod 不满足 LimitRange 施加的约束，则无法在命名空间中创建它。
+本页介绍如何设置在{{< glossary_tooltip text="名字空间" term_id="namespace" >}}
+中运行的容器所使用的内存的最小值和最大值。你可以在
+[LimitRange](/docs/reference/kubernetes-api/policy-resources/limit-range-v1/)
+对象中指定最小和最大内存值。如果 Pod 不满足 LimitRange 施加的约束，
+则无法在名字空间中创建它。
 
 ## {{% heading "prerequisites" %}}
 
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+{{< include "task-tutorial-prereqs.md" >}} 
 
 <!--
-Each node in your cluster must have at least 1 GiB of memory.
+You must have access to create namespaces in your cluster.
+Each node in your cluster must have at least 1 GiB of memory available for Pods.
 -->
-集群中每个节点必须至少要有 1 GiB 的内存。
+在你的集群里你必须要有创建命名空间的权限。
+
+集群中的每个节点都必须至少有 1 GiB 的内存可供 Pod 使用。
 
 <!-- steps -->
 
@@ -42,7 +51,7 @@ isolated from the rest of your cluster.
 -->
 ## 创建命名空间
 
-创建一个命名空间，以便在此练习中创建的资源与群集的其余资源隔离。
+创建一个命名空间，以便在此练习中创建的资源与集群的其余资源隔离。
 
 ```shell
 kubectl create namespace constraints-mem-example
@@ -51,11 +60,11 @@ kubectl create namespace constraints-mem-example
 <!--
 ## Create a LimitRange and a Pod
 
-Here's the configuration file for a LimitRange:
+Here's an example manifest for a LimitRange:
 -->
 ## 创建 LimitRange 和 Pod
 
-下面是 LimitRange 的配置文件：
+下面是 LimitRange 的示例清单：
 
 {{< codenew file="admin/resource/memory-constraints.yaml" >}}
 
@@ -98,30 +107,29 @@ file for the LimitRange, they were created automatically.
 ```
 
 <!--
-Now whenever a Container is created in the constraints-mem-example namespace, Kubernetes
+Now whenever you define a Pod within the constraints-mem-example namespace, Kubernetes
 performs these steps:
 
-* If the Container does not specify its own memory request and limit, assign the default
-memory request and limit to the Container.
+* If any container in that Pod does not specify its own memory request and limit, 
+  the control plane assigns the default memory request and limit to that container.
 
-* Verify that the Container has a memory request that is greater than or equal to 500 MiB.
+* Verify that every container in that Pod requests at least 500 MiB of memory.
 
-* Verify that the Container has a memory limit that is less than or equal to 1 GiB.
+* Verify that every container in that Pod requests no more than 1024 MiB (1 GiB)
+  of memory.
 
-Here's the configuration file for a Pod that has one Container. The Container manifest
-specifies a memory request of 600 MiB and a memory limit of 800 MiB. These satisfy the
+Here's a manifest for a Pod that has one container. Within the Pod spec, the sole
+container specifies a memory request of 600 MiB and a memory limit of 800 MiB. These satisfy the
 minimum and maximum memory constraints imposed by the LimitRange.
 -->
-现在，只要在 constraints-mem-example 命名空间中创建容器，Kubernetes 就会执行下面的步骤：
+现在，每当在 constraints-mem-example 命名空间中创建 Pod 时，Kubernetes 就会执行下面的步骤：
 
-* 如果 Container 未指定自己的内存请求和限制，将为它指定默认的内存请求和限制。
+* 如果 Pod 中的任何容器未声明自己的内存请求和限制，控制面将为该容器设置默认的内存请求和限制。
+* 确保该 Pod 中的每个容器的内存请求至少 500 MiB。
+* 确保该 Pod 中每个容器内存请求不大于 1 GiB。
 
-* 验证 Container 的内存请求是否大于或等于500 MiB。
-
-* 验证 Container 的内存限制是否小于或等于1 GiB。
-
-这里给出了包含一个 Container 的 Pod 配置文件。Container 声明了 600 MiB 的内存请求和
-800 MiB 的内存限制， 这些满足了 LimitRange 施加的最小和最大内存约束。
+以下为包含一个容器的 Pod 清单。该容器声明了 600 MiB 的内存请求和 800 MiB 的内存限制，
+这些满足了 LimitRange 施加的最小和最大内存约束。
 
 {{< codenew file="admin/resource/memory-constraints-pod.yaml" >}}
 
@@ -135,9 +143,9 @@ kubectl apply -f https://k8s.io/examples/admin/resource/memory-constraints-pod.y
 ```
 
 <!--
-Verify that the Pod's Container is running:
+Verify that the Pod is running and that its container is healthy:
 -->
-确认下 Pod 中的容器在运行：
+确认 Pod 正在运行，并且其容器处于健康状态：
 
 ```shell
 kubectl get pod constraints-mem-demo --namespace=constraints-mem-example
@@ -153,10 +161,12 @@ kubectl get pod constraints-mem-demo --output=yaml --namespace=constraints-mem-e
 ```
 
 <!--
-The output shows that the Container has a memory request of 600 MiB and a memory limit
-of 800 MiB. These satisfy the constraints imposed by the LimitRange.
+The output shows that the container within that Pod has a memory request of 600 MiB and
+a memory limit of 800 MiB. These satisfy the constraints imposed by the LimitRange for
+this namespace:
 -->
-输出结果显示容器的内存请求为600 MiB，内存限制为800 MiB。这些满足了 LimitRange 设定的限制范围。
+输出结果显示该 Pod 的容器的内存请求为 600 MiB，内存限制为 800 MiB。
+这些满足这个命名空间中 LimitRange 设定的限制范围。
 
 ```yaml
 resources:
@@ -178,12 +188,12 @@ kubectl delete pod constraints-mem-demo --namespace=constraints-mem-example
 <!--
 ## Attempt to create a Pod that exceeds the maximum memory constraint
 
-Here's the configuration file for a Pod that has one Container. The Container specifies a
+Here's a manifest for a Pod that has one container. The container specifies a
 memory request of 800 MiB and a memory limit of 1.5 GiB.
 -->
 ## 尝试创建一个超过最大内存限制的 Pod
 
-这里给出了包含一个容器的 Pod 的配置文件。容器声明了800 MiB 的内存请求和1.5 GiB 的内存限制。
+以下为包含一个容器的 Pod 的清单。这个容器声明了 800 MiB 的内存请求和 1.5 GiB 的内存限制。
 
 {{< codenew file="admin/resource/memory-constraints-pod-2.yaml" >}}
 
@@ -197,10 +207,10 @@ kubectl apply -f https://k8s.io/examples/admin/resource/memory-constraints-pod-2
 ```
 
 <!--
-The output shows that the Pod does not get created, because the Container specifies a memory limit that is
-too large:
+The output shows that the Pod does not get created, because it defines a container that
+requests more memory than is allowed:
 -->
-输出结果显示 Pod 没有创建成功，因为容器声明的内存限制太大了：
+输出结果显示 Pod 没有创建成功，因为它定义了一个容器的内存请求超过了允许的值。
 
 ```
 Error from server (Forbidden): error when creating "examples/admin/resource/memory-constraints-pod-2.yaml":
@@ -210,12 +220,12 @@ pods "constraints-mem-demo-2" is forbidden: maximum memory usage per Container i
 <!--
 ## Attempt to create a Pod that does not meet the minimum memory request
 
-Here's the configuration file for a Pod that has one Container. The Container specifies a
+Here's a manifest for a Pod that has one container. That container specifies a
 memory request of 100 MiB and a memory limit of 800 MiB.
 -->
 ## 尝试创建一个不满足最小内存请求的 Pod
 
-这里给出了包含一个容器的 Pod 的配置文件。容器声明了100 MiB 的内存请求和800 MiB 的内存限制。
+以下为只有一个容器的 Pod 的清单。这个容器声明了 100 MiB 的内存请求和 800 MiB 的内存限制。
 
 {{< codenew file="admin/resource/memory-constraints-pod-3.yaml" >}}
 
@@ -229,10 +239,10 @@ kubectl apply -f https://k8s.io/examples/admin/resource/memory-constraints-pod-3
 ```
 
 <!--
-The output shows that the Pod does not get created, because the Container specifies a memory
-request that is too small:
+The output shows that the Pod does not get created, because it defines a container
+that requests less memory than the enforced minimum:
 -->
-输出结果显示 Pod 没有创建成功，因为容器声明的内存请求太小了：
+输出结果显示 Pod 没有创建成功，因为它定义了一个容器的内存请求小于强制要求的最小值：
 
 ```
 Error from server (Forbidden): error when creating "examples/admin/resource/memory-constraints-pod-3.yaml":
@@ -242,12 +252,12 @@ pods "constraints-mem-demo-3" is forbidden: minimum memory usage per Container i
 <!--
 ## Create a Pod that does not specify any memory request or limit
 
-Here's the configuration file for a Pod that has one Container. The Container does not
+Here's a manifest for a Pod that has one container. The container does not
 specify a memory request, and it does not specify a memory limit.
 -->
 ## 创建一个没有声明内存请求和限制的 Pod
 
-这里给出了包含一个容器的 Pod 的配置文件。容器没有声明内存请求，也没有声明内存限制。
+以下为只有一个容器的 Pod 清单。该容器没有声明内存请求，也没有声明内存限制。
 
 {{< codenew file="admin/resource/memory-constraints-pod-4.yaml" >}}
 
@@ -265,15 +275,15 @@ View detailed information about the Pod:
 -->
 查看 Pod 详情：
 
-```
+```shell
 kubectl get pod constraints-mem-demo-4 --namespace=constraints-mem-example --output=yaml
 ```
 
 <!--
-The output shows that the Pod's Container has a memory request of 1 GiB and a memory limit of 1 GiB.
-How did the Container get those values?
+The output shows that the Pod's only container has a memory request of 1 GiB and a memory limit of 1 GiB.
+How did that container get those values?
 -->
-输出结果显示 Pod 的内存请求为1 GiB，内存限制为1 GiB。容器怎样获得哪些数值呢？
+输出结果显示 Pod 的唯一容器内存请求为 1 GiB，内存限制为 1 GiB。容器怎样获得那些数值呢？
 
 ```
 resources:
@@ -284,15 +294,33 @@ resources:
 ```
 
 <!--
-Because your Container did not specify its own memory request and limit, it was given the
+Because your Pod did not define any memory request and limit for that container, the cluster
+applied a
 [default memory request and limit](/docs/tasks/administer-cluster/memory-default-namespace/)
 from the LimitRange.
 -->
-因为你的容器没有声明自己的内存请求和限制，它从 LimitRange 那里获得了
-[默认的内存请求和限制](/zh/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)。
+因为你的 Pod 没有为容器声明任何内存请求和限制，集群会从 LimitRange
+获取[默认的内存请求和限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)。
+ 应用于容器。
 
 <!--
-At this point, your Container might be running or it might not be running. Recall that a prerequisite
+This means that the definition of that Pod shows those values. You can check it using
+`kubectl describe`:
+
+```shell
+# Look for the "Requests:" section of the output
+kubectl describe pod constraints-mem-demo-4 --namespace=constraints-mem-example
+```
+-->
+这意味着 Pod 的定义会显示这些值。你可以通过 `kubectl describe` 查看：
+
+```shell
+# 查看输出结果中的 "Requests:" 的值
+kubectl describe pod constraints-mem-demo-4 --namespace=constraints-mem-example
+```
+
+<!--
+At this point, your Pod might be running or it might not be running. Recall that a prerequisite
 for this task is that your Nodes have at least 1 GiB of memory. If each of your Nodes has only
 1 GiB of memory, then there is not enough allocatable memory on any Node to accommodate a memory
 request of 1 GiB. If you happen to be using Nodes with 2 GiB of memory, then you probably have
@@ -300,13 +328,13 @@ enough space to accommodate the 1 GiB request.
 
 Delete your Pod:
 -->
-此时，你的容器可能运行起来也可能没有运行起来。
-回想一下我们本次任务的先决条件是你的每个节点都至少有1 GiB 的内存。
-如果你的每个节点都只有1 GiB 的内存，那将没有一个节点拥有足够的可分配内存来满足1 GiB 的内存请求。
+此时，你的 Pod 可能已经运行起来也可能没有运行起来。
+回想一下我们本次任务的先决条件是你的每个节点都至少有 1 GiB 的内存。
+如果你的每个节点都只有 1 GiB 的内存，那将没有一个节点拥有足够的可分配内存来满足 1 GiB 的内存请求。
 
 删除你的 Pod：
 
-```
+```shell
 kubectl delete pod constraints-mem-demo-4 --namespace=constraints-mem-example
 ```
 
@@ -331,18 +359,18 @@ LimitRange 为命名空间设定的最小和最大内存限制只有在 Pod 创
 As a cluster administrator, you might want to impose restrictions on the amount of memory that Pods can use.
 For example:
 
-* Each Node in a cluster has 2 GB of memory. You do not want to accept any Pod that requests
-  more than 2 GB of memory, because no Node in the cluster can support the request.
+* Each Node in a cluster has 2 GiB of memory. You do not want to accept any Pod that requests
+more than 2 GiB of memory, because no Node in the cluster can support the request.
 
 * A cluster is shared by your production and development departments.
-  You want to allow production workloads to consume up to 8 GB of memory, but
-  you want development workloads to be limited to 512 MB. You create separate namespaces
+You want to allow production workloads to consume up to 8 GiB of memory, but
+you want development workloads to be limited to 512 MiB. You create separate namespaces
   for production and development, and you apply memory constraints to each namespace.
 -->
 作为集群管理员，你可能想规定 Pod 可以使用的内存总量限制。例如：
 
-* 集群的每个节点有 2 GB 内存。你不想接受任何请求超过 2 GB 的 Pod，因为集群中没有节点可以满足。
-* 集群由生产部门和开发部门共享。你希望允许产品部门的负载最多耗用 8 GB 内存，
+* 集群的每个节点有 2 GiB 内存。你不想接受任何请求超过 2 GiB 的 Pod，因为集群中没有节点可以满足。
+* 集群由生产部门和开发部门共享。你希望允许产品部门的负载最多耗用 8 GiB 内存，
   但是开发部门的负载最多可使用 512 MiB。
   这时，你可以为产品部门和开发部门分别创建名字空间，并为各个名字空间设置内存约束。
 
@@ -374,12 +402,12 @@ kubectl delete namespace constraints-mem-example
 
 ### 集群管理员参考
 
-* [为命名空间配置默认内存请求和限制](/zh/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
-* [为命名空间配置内存限制的最小值和最大值](/zh/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)
-* [为命名空间配置 CPU 限制的最小值和最大值](/zh/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
-* [为命名空间配置内存和 CPU 配额](/zh/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
-* [为命名空间配置 Pod 配额](/zh/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace/)
-* [为 API 对象配置配额](/zh/docs/tasks/administer-cluster/quota-api-object/)
+* [为命名空间配置默认内存请求和限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
+* [为命名空间配置内存限制的最小值和最大值](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)
+* [为命名空间配置 CPU 限制的最小值和最大值](/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
+* [为命名空间配置内存和 CPU 配额](/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
+* [为命名空间配置 Pod 配额](/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace/)
+* [为 API 对象配置配额](/zh-cn/docs/tasks/administer-cluster/quota-api-object/)
 
 <!--
 ### For app developers
@@ -391,7 +419,7 @@ kubectl delete namespace constraints-mem-example
 
 ### 应用开发者参考
 
-* [为容器和 Pod 分配内存资源](/zh/docs/tasks/configure-pod-container/assign-memory-resource/)
-* [为容器和 Pod 分配 CPU 资源](/zh/docs/tasks/configure-pod-container/assign-cpu-resource/)
-* [为 Pod 配置服务质量](/zh/docs/tasks/configure-pod-container/quality-service-pod/)
+* [为容器和 Pod 分配内存资源](/zh-cn/docs/tasks/configure-pod-container/assign-memory-resource/)
+* [为容器和 Pod 分配 CPU 资源](/zh-cn/docs/tasks/configure-pod-container/assign-cpu-resource/)
+* [为 Pod 配置服务质量](/zh-cn/docs/tasks/configure-pod-container/quality-service-pod/)
 
diff --git a/content/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-default-namespace.md b/content/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-default-namespace.md
new file mode 100644
index 0000000000..177e0bb54b
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-default-namespace.md
@@ -0,0 +1,346 @@
+---
+title: 为命名空间配置默认的内存请求和限制
+content_type: task
+weight: 10
+description: >-
+  为命名空间定义默认的内存资源限制，这样在该命名空间中每个新建的 Pod 都会被配置上内存资源限制。
+---
+
+<!--
+title: Configure Default Memory Requests and Limits for a Namespace
+content_type: task
+weight: 10
+description: >-
+  Define a default memory resource limit for a namespace, so that every new Pod
+  in that namespace has a memory resource limit configured.
+-->
+
+<!-- overview -->
+
+<!--
+This page shows how to configure default memory requests and limits for a
+{{< glossary_tooltip text="namespace" term_id="namespace" >}}.
+
+A Kubernetes cluster can be divided into namespaces. Once you have a namespace that
+has a default memory
+[limit](/docs/concepts/configuration/manage-resources-containers/#requests-and-limits),
+and you then try to create a Pod with a container that does not specify its own memory
+limit, then the
+{{< glossary_tooltip text="control plane" term_id="control-plane" >}} assigns the default
+memory limit to that container.
+
+Kubernetes assigns a default memory request under certain conditions that are explained later in this topic.
+-->
+本章介绍如何为{{< glossary_tooltip text="命名空间" term_id="namespace" >}}配置默认的内存请求和限制。
+
+一个 Kubernetes 集群可被划分为多个命名空间。
+如果你在具有默认内存[限制](/zh-cn/docs/concepts/configuration/manage-resources-containers/#requests-and-limits)
+的命名空间内尝试创建一个 Pod，并且这个 Pod 中的容器没有声明自己的内存资源限制，
+那么{{< glossary_tooltip text="控制面" term_id="control-plane" >}}会为该容器设定默认的内存限制。
+
+Kubernetes 还为某些情况指定了默认的内存请求，本章后面会进行介绍。
+
+## {{% heading "prerequisites" %}}
+
+{{< include "task-tutorial-prereqs.md" >}}
+
+<!--
+You must have access to create namespaces in your cluster.
+
+Each node in your cluster must have at least 2 GiB of memory.
+-->
+在你的集群里你必须要有创建命名空间的权限。
+
+你的集群中的每个节点必须至少有 2 GiB 的内存。
+
+<!-- steps -->
+
+<!--
+## Create a namespace
+
+Create a namespace so that the resources you create in this exercise are
+isolated from the rest of your cluster.
+-->
+## 创建命名空间
+
+创建一个命名空间，以便本练习中所建的资源与集群的其余资源相隔离。
+
+```shell
+kubectl create namespace default-mem-example
+```
+
+<!--
+## Create a LimitRange and a Pod
+
+Here's a manifest for an example {{< glossary_tooltip text="LimitRange" term_id="limitrange" >}}.
+The manifest specifies a default memory
+request and a default memory limit.
+-->
+## 创建 LimitRange 和 Pod
+
+以下为 {{< glossary_tooltip text="LimitRange" term_id="limitrange" >}} 的示例清单。
+清单中声明了默认的内存请求和默认的内存限制。
+
+{{< codenew file="admin/resource/memory-defaults.yaml" >}}
+
+<!--
+Create the LimitRange in the default-mem-example namespace:
+-->
+在 default-mem-example 命名空间创建限制范围：
+
+```shell
+kubectl apply -f https://k8s.io/examples/admin/resource/memory-defaults.yaml --namespace=default-mem-example
+```
+
+<!--
+Now if you create a Pod in the default-mem-example namespace, and any container
+within that Pod does not specify its own values for memory request and memory limit,
+then the {{< glossary_tooltip text="control plane" term_id="control-plane" >}}
+applies default values: a memory request of 256MiB and a memory limit of 512MiB.
+
+Here's an example manifest for a Pod that has one container. The container
+does not specify a memory request and limit.
+-->
+现在如果你在 default-mem-example 命名空间中创建一个 Pod，
+并且该 Pod 中所有容器都没有声明自己的内存请求和内存限制，
+{{< glossary_tooltip text="控制面" term_id="control-plane" >}}
+会将内存的默认请求值 256MiB 和默认限制值 512MiB 应用到 Pod 上。
+
+以下为只包含一个容器的 Pod 的清单。该容器没有声明内存请求和限制。
+
+{{< codenew file="admin/resource/memory-defaults-pod.yaml" >}}
+
+<!--
+Create the Pod.
+-->
+创建 Pod：
+
+```shell
+kubectl apply -f https://k8s.io/examples/admin/resource/memory-defaults-pod.yaml --namespace=default-mem-example
+```
+
+<!--
+View detailed information about the Pod:
+-->
+查看 Pod 的详情：
+
+```shell
+kubectl get pod default-mem-demo --output=yaml --namespace=default-mem-example
+```
+
+<!--
+The output shows that the Pod's container has a memory request of 256 MiB and
+a memory limit of 512 MiB. These are the default values specified by the LimitRange.
+-->
+输出内容显示该 Pod 的容器有 256 MiB 的内存请求和 512 MiB 的内存限制。
+这些都是 LimitRange 设置的默认值。
+
+```shell
+containers:
+- image: nginx
+  imagePullPolicy: Always
+  name: default-mem-demo-ctr
+  resources:
+    limits:
+      memory: 512Mi
+    requests:
+      memory: 256Mi
+```
+
+<!--
+Delete your Pod:
+-->
+删除你的 Pod：
+
+```shell
+kubectl delete pod default-mem-demo --namespace=default-mem-example
+```
+
+<!--
+## What if you specify a container's limit, but not its request?
+
+Here's a manifest for a Pod that has one container. The container
+specifies a memory limit, but not a request:
+-->
+## 声明容器的限制而不声明它的请求会怎么样？
+
+以下为只包含一个容器的 Pod 的清单。该容器声明了内存限制，而没有声明内存请求。
+
+{{< codenew file="admin/resource/memory-defaults-pod-2.yaml" >}}
+
+<!--
+Create the Pod:
+-->
+创建 Pod：
+
+```shell
+kubectl apply -f https://k8s.io/examples/admin/resource/memory-defaults-pod-2.yaml --namespace=default-mem-example
+```
+
+<!--
+View detailed information about the Pod:
+-->
+查看 Pod 的详情：
+
+```shell
+kubectl get pod default-mem-demo-2 --output=yaml --namespace=default-mem-example
+```
+
+<!--
+The output shows that the container's memory request is set to match its memory limit.
+Notice that the container was not assigned the default memory request value of 256Mi.
+-->
+输出结果显示容器的内存请求被设置为它的内存限制相同的值。注意该容器没有被指定默认的内存请求值 256MiB。
+
+```
+resources:
+  limits:
+    memory: 1Gi
+  requests:
+    memory: 1Gi
+```
+
+<!--
+## What if you specify a container's request, but not its limit?
+-->
+## 声明容器的内存请求而不声明内存限制会怎么样？
+
+<!--
+Here's a manifest for a Pod that has one container. The container
+specifies a memory request, but not a limit:
+-->
+以下为只包含一个容器的 Pod 的清单。该容器声明了内存请求，但没有内存限制：
+
+{{< codenew file="admin/resource/memory-defaults-pod-3.yaml" >}}
+
+<!--
+Create the Pod:
+-->
+创建 Pod：
+
+```shell
+kubectl apply -f https://k8s.io/examples/admin/resource/memory-defaults-pod-3.yaml --namespace=default-mem-example
+```
+
+<!--
+View the Pod's specification:
+-->
+查看 Pod 声明：
+
+```shell
+kubectl get pod default-mem-demo-3 --output=yaml --namespace=default-mem-example
+```
+
+<!--
+The output shows that the container's memory request is set to the value specified in the
+container's manifest. The container is limited to use no more than 512MiB of
+memory, which matches the default memory limit for the namespace.
+-->
+输出结果显示所创建的 Pod 中，容器的内存请求为 Pod 清单中声明的值。
+然而同一容器的内存限制被设置为 512MiB，此值是该命名空间的默认内存限制值。
+
+```
+resources:
+  limits:
+    memory: 512Mi
+  requests:
+    memory: 128Mi
+```
+
+<!--
+## Motivation for default memory limits and requests
+
+If your namespace has a memory {{< glossary_tooltip text="resource quota" term_id="resource-quota" >}}
+configured,
+it is helpful to have a default value in place for memory limit.
+Here are three of the restrictions that a resource quota imposes on a namespace:
+
+* For every Pod that runs in the namespace, the Pod and each of its containers must have a memory limit.
+  (If you specify a memory limit for every container in a Pod, Kubernetes can infer the Pod-level memory
+  limit by adding up the limits for its containers).
+* Memory limits apply a resource reservation on the node where the Pod in question is scheduled.
+  The total amount of memory reserved for all Pods in the namespace must not exceed a specified limit.
+* The total amount of memory actually used by all Pods in the namespace must also not exceed a specified limit.
+-->
+## 设置默认内存限制和请求的动机
+
+如果你的命名空间设置了内存 {{< glossary_tooltip text="资源配额" term_id="resource-quota" >}}，
+那么为内存限制设置一个默认值会很有帮助。
+以下是内存资源配额对命名空间的施加的三条限制：
+
+* 命名空间中运行的每个 Pod 中的容器都必须有内存限制。
+  （如果为 Pod 中的每个容器声明了内存限制，
+  Kubernetes 可以通过将其容器的内存限制相加推断出 Pod 级别的内存限制）。
+
+* 内存限制用来在 Pod 被调度到的节点上执行资源预留。
+  预留给命名空间中所有 Pod 使用的内存总量不能超过规定的限制。
+
+* 命名空间中所有 Pod 实际使用的内存总量也不能超过规定的限制。
+
+<!--
+When you add a LimitRange:
+
+If any Pod in that namespace that includes a container does not specify its own memory limit,
+the control plane applies the default memory limit to that container, and the Pod can be
+allowed to run in a namespace that is restricted by a memory ResourceQuota.
+-->
+当你添加 LimitRange 时：
+
+如果该命名空间中的任何 Pod 的容器未指定内存限制，
+控制面将默认内存限制应用于该容器，
+这样 Pod 可以在受到内存 ResourceQuota 限制的命名空间中运行。
+
+<!--
+## Clean up
+
+Delete your namespace:
+-->
+## 清理
+
+删除你的命名空间：
+
+```shell
+kubectl delete namespace default-mem-example
+```
+
+## {{% heading "whatsnext" %}}
+
+<!--
+### For cluster administrators
+
+* [Configure Default CPU Requests and Limits for a Namespace](/docs/tasks/administer-cluster/cpu-default-namespace/)
+
+* [Configure Minimum and Maximum Memory Constraints for a Namespace](/docs/tasks/administer-cluster/memory-constraint-namespace/)
+
+* [Configure Minimum and Maximum CPU Constraints for a Namespace](/docs/tasks/administer-cluster/cpu-constraint-namespace/)
+
+* [Configure Memory and CPU Quotas for a Namespace](/docs/tasks/administer-cluster/quota-memory-cpu-namespace/)
+
+* [Configure a Pod Quota for a Namespace](/docs/tasks/administer-cluster/quota-pod-namespace/)
+
+* [Configure Quotas for API Objects](/docs/tasks/administer-cluster/quota-api-object/)
+-->
+### 集群管理员参考
+
+* [为命名空间配置默认的 CPU 请求和限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/)
+* [为命名空间配置最小和最大内存限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)
+* [为命名空间配置最小和最大 CPU 限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
+* [为命名空间配置内存和 CPU 配额](/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
+* [为命名空间配置 Pod 配额](/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace/)
+* [为 API 对象配置配额](/zh-cn/docs/tasks/administer-cluster/quota-api-object/)
+
+<!--
+### For app developers
+
+* [Assign Memory Resources to Containers and Pods](/docs/tasks/configure-pod-container/assign-memory-resource/)
+
+* [Assign CPU Resources to Containers and Pods](/docs/tasks/configure-pod-container/assign-cpu-resource/)
+
+* [Configure Quality of Service for Pods](/docs/tasks/configure-pod-container/quality-service-pod/)
+-->
+### 应用开发者参考
+
+* [为容器和 Pod 分配内存资源](/zh-cn/docs/tasks/configure-pod-container/assign-memory-resource/)
+* [为容器和 Pod 分配 CPU 资源](/zh-cn/docs/tasks/configure-pod-container/assign-cpu-resource/)
+* [为 Pod 配置服务质量](/zh-cn/docs/tasks/configure-pod-container/quality-service-pod/)
+
diff --git a/content/zh/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace.md b/content/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace.md
similarity index 53%
rename from content/zh/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace.md
rename to content/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace.md
index 416b076094..e24f742681 100644
--- a/content/zh/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace.md
@@ -2,33 +2,43 @@
 title: 为命名空间配置内存和 CPU 配额
 content_type: task
 weight: 50
+description: >-
+  为命名空间定义总的 CPU 和内存资源限制。
 ---
 
 <!--
 title: Configure Memory and CPU Quotas for a Namespace
 content_type: task
 weight: 50
+description: >-
+  Define overall memory and CPU resource limits for a namespace.
 -->
 
 <!-- overview -->
 
 <!--
 This page shows how to set quotas for the total amount memory and CPU that
-can be used by all Containers running in a namespace. You specify quotas in a
-[ResourceQuota](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#resourcequota-v1-core)
+can be used by all Pods running in a {{< glossary_tooltip text="namespace" term_id="namespace" >}}.
+You specify quotas in a
+[ResourceQuota](/docs/reference/kubernetes-api/policy-resources/resource-quota-v1/)
 object.
 -->
-本文介绍怎样为命名空间设置容器可用的内存和 CPU 总量。你可以通过
-[ResourceQuota](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#resourcequota-v1-core)
+本文介绍如何为{{< glossary_tooltip text="命名空间" term_id="namespace" >}}下运行的所有 Pod 设置总的内存和 CPU 配额。
+你可以通过使用
+[ResourceQuota](/docs/reference/kubernetes-api/policy-resources/resource-quota-v1/)
 对象设置配额.
 
 ## {{% heading "prerequisites" %}}
 
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+{{< include "task-tutorial-prereqs.md" >}}
 
 <!--
+You must have access to create namespaces in your cluster.
+
 Each node in your cluster must have at least 1 GiB of memory.
 -->
+在你的集群里你必须要有创建命名空间的权限。
+
 集群中每个节点至少有 1 GiB 的内存。
 
 <!-- steps -->
@@ -51,11 +61,11 @@ kubectl create namespace quota-mem-cpu-example
 <!--
 ## Create a ResourceQuota
 
-Here is the configuration file for a ResourceQuota object:
+Here is a manifest for an example ResourceQuota:
 -->
 ## 创建 ResourceQuota
 
-这里给出一个 ResourceQuota 对象的配置文件：
+下面是 ResourceQuota 的示例清单：
 
 {{< codenew file="admin/resource/quota-mem-cpu.yaml" >}}
 
@@ -80,28 +90,33 @@ kubectl get resourcequota mem-cpu-demo --namespace=quota-mem-cpu-example --outpu
 <!--
 The ResourceQuota places these requirements on the quota-mem-cpu-example namespace:
 
-* Every Container must have a memory request, memory limit, cpu request, and cpu limit.
-* The memory request total for all Containers must not exceed 1 GiB.
-* The memory limit total for all Containers must not exceed 2 GiB.
-* The CPU request total for all Containers must not exceed 1 cpu.
-* The CPU limit total for all Containers must not exceed 2 cpu.
+* For every Pod in the namespace, each container must have a memory request, memory limit, cpu request, and cpu limit.
+* The memory request total for all Pods in that namespace must not exceed 1 GiB.
+* The memory limit total for all Pods in that namespace must not exceed 2 GiB.
+* The CPU request total for all Pods in that namespace must not exceed 1 cpu.
+* The CPU limit total for all Pods in that namespace must not exceed 2 cpu.
+
+See [meaning of CPU](/docs/concepts/configuration/manage-resources-containers/#meaning-of-cpu)
+to learn what Kubernetes means by “1 CPU”.
 -->
 ResourceQuota 在 quota-mem-cpu-example 命名空间中设置了如下要求：
 
-* 每个容器必须有内存请求和限制，以及 CPU 请求和限制。
-* 所有容器的内存请求总和不能超过1 GiB。
-* 所有容器的内存限制总和不能超过2 GiB。
-* 所有容器的 CPU 请求总和不能超过1 cpu。
-* 所有容器的 CPU 限制总和不能超过2 cpu。
+* 在该命名空间中的每个 Pod 的所有容器都必须要有内存请求和限制，以及 CPU 请求和限制。
+* 在该命名空间中所有 Pod 的内存请求总和不能超过 1 GiB。
+* 在该命名空间中所有 Pod 的内存限制总和不能超过 2 GiB。
+* 在该命名空间中所有 Pod 的 CPU 请求总和不能超过 1 cpu。
+* 在该命名空间中所有 Pod 的 CPU 限制总和不能超过 2 cpu。
 
+请阅读 [CPU 的含义](/zh-cn/docs/concepts/configuration/manage-resources-containers/#meaning-of-cpu)
+理解 "1 CPU" 在 Kubernetes 中的含义。
 <!--
 ## Create a Pod
 
-Here is the configuration file for a Pod:
+Here is a manifest for an example Pod:
 -->
 ## 创建 Pod
 
-这里给出 Pod 的配置文件：
+以下是 Pod 的示例清单：
 
 {{< codenew file="admin/resource/quota-mem-cpu-pod.yaml" >}}
 
@@ -115,11 +130,11 @@ kubectl apply -f https://k8s.io/examples/admin/resource/quota-mem-cpu-pod.yaml -
 ```
 
 <!--
-Verify that the Pod's Container is running:
+Verify that the Pod is running and that its (only) container is healthy:
 -->
-检查下 Pod 中的容器在运行：
+确认 Pod 正在运行，并且其容器处于健康状态：
 
-```
+```shell
 kubectl get pod quota-mem-cpu-demo --namespace=quota-mem-cpu-example
 ```
 
@@ -128,7 +143,7 @@ Once again, view detailed information about the ResourceQuota:
 -->
 再查看 ResourceQuota 的详情：
 
-```
+```shell
 kubectl get resourcequota mem-cpu-demo --namespace=quota-mem-cpu-example --output=yaml
 ```
 
@@ -153,27 +168,38 @@ status:
     requests.memory: 600Mi
 ```
 
+<!--
+If you have the `jq` tool, you can also query (using [JSONPath](/docs/reference/kubectl/jsonpath/))
+for just the `used` values, **and** pretty-print that that of the output. For example:
+-->
+如果有 `jq` 工具的话，你可以通过（使用 [JSONPath](/zh-cn/docs/reference/kubectl/jsonpath/)）
+直接查询 `used` 字段的值，并且输出整齐的 JSON 格式。
+
+```shell
+kubectl get resourcequota mem-cpu-demo --namespace=quota-mem-cpu-example -o jsonpath='{ .status.used }' | jq .
+```
+
 <!--
 ## Attempt to create a second Pod
 
-Here is the configuration file for a second Pod:
+Here is a manifest for a second Pod:
 -->
 ## 尝试创建第二个 Pod
 
-这里给出了第二个 Pod 的配置文件：
+以下为第二个 Pod 的清单：
 
 {{< codenew file="admin/resource/quota-mem-cpu-pod-2.yaml" >}}
 
 <!--
-In the configuration file, you can see that the Pod has a memory request of 700 MiB.
+In the manifest, you can see that the Pod has a memory request of 700 MiB.
 Notice that the sum of the used memory request and this new memory
-request exceeds the memory request quota. 600 MiB + 700 MiB > 1 GiB.
+request exceeds the memory request quota: 600 MiB + 700 MiB > 1 GiB.
 
 Attempt to create the Pod:
 -->
 
-配置文件中，你可以看到 Pod 的内存请求为 700 MiB。
-请注意新的内存请求与已经使用的内存请求只和超过了内存请求的配额。
+在清单中，你可以看到 Pod 的内存请求为 700 MiB。
+请注意新的内存请求与已经使用的内存请求之和超过了内存请求的配额：
 600 MiB + 700 MiB > 1 GiB。
 
 尝试创建 Pod：
@@ -198,19 +224,20 @@ requested: requests.memory=700Mi,used: requests.memory=600Mi, limited: requests.
 ## Discussion
 
 As you have seen in this exercise, you can use a ResourceQuota to restrict
-the memory request total for all Containers running in a namespace.
+the memory request total for all Pods running in a namespace.
 You can also restrict the totals for memory limit, cpu request, and cpu limit.
 
-If you want to restrict individual Containers, instead of totals for all Containers, use a
-[LimitRange](/docs/tasks/administer-cluster/memory-constraint-namespace/).
+Instead of managing total resource use within a namespace, you might want to restrict
+individual Pods, or the containers in those Pods. To achieve that kind of limiting, use a
+[LimitRange](/docs/concepts/policy/limit-range/).
 -->
 ## 讨论
 
-如你在本练习中所见，你可以用 ResourceQuota 限制命名空间中所有容器的内存请求总量。
+如你在本练习中所见，你可以用 ResourceQuota 限制命名空间中所有 Pod 的内存请求总量。
 同样你也可以限制内存限制总量、CPU 请求总量、CPU 限制总量。
 
-如果你想对单个容器而不是所有容器进行限制，就请使用
-[LimitRange](/zh/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)。
+除了可以管理命名空间资源使用的总和，如果你想限制单个 Pod，或者限制这些 Pod 中的容器资源，
+可以使用 [LimitRange](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/) 实现这类的功能。
 
 <!--
 ## Clean up
@@ -240,12 +267,12 @@ kubectl delete namespace quota-mem-cpu-example
 
 ### 集群管理员参考
 
-* [为命名空间配置默认内存请求和限制](/zh/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
-* [为命名空间配置内存限制的最小值和最大值](/zh/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)
-* [为命名空间配置 CPU 限制的最小值和最大值](/zh/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
-* [为命名空间配置内存和 CPU 配额](/zh/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
-* [为命名空间配置 Pod 配额](/zh/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace/)
-* [为 API 对象配置配额](/zh/docs/tasks/administer-cluster/quota-api-object/)
+* [为命名空间配置默认内存请求和限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
+* [为命名空间配置内存限制的最小值和最大值](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)
+* [为命名空间配置 CPU 限制的最小值和最大值](/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
+* [为命名空间配置内存和 CPU 配额](/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
+* [为命名空间配置 Pod 配额](/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace/)
+* [为 API 对象配置配额](/zh-cn/docs/tasks/administer-cluster/quota-api-object/)
 
 <!--
 ### For app developers
@@ -256,7 +283,7 @@ kubectl delete namespace quota-mem-cpu-example
 -->
 ### 应用开发者参考
 
-* [为容器和 Pod 分配内存资源](/zh/docs/tasks/configure-pod-container/assign-memory-resource/)
-* [为容器和 Pod 分配CPU资源](/zh/docs/tasks/configure-pod-container/assign-cpu-resource/)
-* [为 Pod 配置服务质量](/zh/docs/tasks/configure-pod-container/quality-service-pod/)
+* [为容器和 Pod 分配内存资源](/zh-cn/docs/tasks/configure-pod-container/assign-memory-resource/)
+* [为容器和 Pod 分配 CPU 资源](/zh-cn/docs/tasks/configure-pod-container/assign-cpu-resource/)
+* [为 Pod 配置服务质量](/zh-cn/docs/tasks/configure-pod-container/quality-service-pod/)
 
diff --git a/content/zh/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace.md b/content/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace.md
similarity index 57%
rename from content/zh/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace.md
rename to content/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace.md
index 724a711d00..f892c30bfb 100644
--- a/content/zh/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace.md
@@ -2,24 +2,39 @@
 title: 配置命名空间下 Pod 配额
 content_type: task
 weight: 60
+description: >-
+  限制在命名空间中创建的 Pod 数量。
 ---
 
+<!--
+title: Configure a Pod Quota for a Namespace
+content_type: task
+weight: 60
+description: >-
+  Restrict how many Pods you can create within a namespace.
+-->
+
 <!-- overview -->
 
 <!--
 This page shows how to set a quota for the total number of Pods that can run
-in a namespace. You specify quotas in a
-[ResourceQuota](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#resourcequota-v1-core)
+in a {{< glossary_tooltip text="Namespace" term_id="namespace" >}}. You specify quotas in a
+[ResourceQuota](/docs/reference/kubernetes-api/policy-resources/resource-quota-v1/)
 object.
 -->
-本文主要描述如何配置一个命名空间下可运行的 Pod 个数配额。
-你可以使用
-[ResourceQuota](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#resourcequota-v1-core)
+本文主要介绍如何在{{< glossary_tooltip text="命名空间" term_id="namespace" >}}中设置可运行 Pod 总数的配额。
+你可以通过使用
+[ResourceQuota](/zh-cn/docs/reference/kubernetes-api/policy-resources/resource-quota-v1/)
 对象来配置配额。
 
 ## {{% heading "prerequisites" %}}
 
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+{{< include "task-tutorial-prereqs.md" >}}
+
+<!--
+You must have access to create namespaces in your cluster.
+-->
+在你的集群里你必须要有创建命名空间的权限。
 
 <!-- steps -->
 
@@ -40,11 +55,11 @@ kubectl create namespace quota-pod-example
 <!--
 ## Create a ResourceQuota
 
-Here is the configuration file for a ResourceQuota object:
+Here is an example manifest for a ResourceQuota:
 -->
 ## 创建 ResourceQuota
 
-下面是一个 ResourceQuota 的配置文件：
+下面是 ResourceQuota 的示例清单：
 
 {{< codenew file="admin/resource/quota-pod.yaml" >}}
 
@@ -83,18 +98,20 @@ status:
 ```
 
 <!--
-Here is the configuration file for a Deployment:
+Here is an example manifest for a {{< glossary_tooltip term_id="deployment" >}}:
 -->
-下面是一个 Deployment 的配置文件：
+下面是一个 {{< glossary_tooltip term_id="deployment" >}} 的示例清单：
 
 {{< codenew file="admin/resource/quota-pod-deployment.yaml" >}}
 
 <!--
-In the configuration file, `replicas: 3` tells Kubernetes to attempt to create three Pods, all running the same application.
+In that manifest, `replicas: 3` tells Kubernetes to attempt to create three new Pods, all
+running the same application.
 
 Create the Deployment:
 -->
-在配置文件中，`replicas: 3` 告诉 Kubernetes 尝试创建三个 Pods，且运行相同的应用。
+在清单中，`replicas: 3` 告诉 Kubernetes 尝试创建三个 Pods，
+且运行相同的应用。
 
 创建这个 Deployment：
 
@@ -113,7 +130,7 @@ kubectl get deployment pod-quota-demo --namespace=quota-pod-example --output=yam
 
 <!--
 The output shows that even though the Deployment specifies three replicas, only two
-Pods were created because of the quota.
+Pods were created because of the quota you defined earlier:
 -->
 从输出的信息我们可以看到，尽管尝试创建三个 Pod，但是由于配额的限制，只有两个 Pod 能被成功创建。
 
@@ -125,11 +142,24 @@ spec:
 status:
   availableReplicas: 2
 ...
-lastUpdateTime: 2017-07-07T20:57:05Z
+lastUpdateTime: 2021-04-02T20:57:05Z
     message: 'unable to create pods: pods "pod-quota-demo-1650323038-" is forbidden:
       exceeded quota: pod-demo, requested: pods=1, used: pods=2, limited: pods=2'
 ```
 
+<!--
+### Choice of resource
+
+In this task you have defined a ResourceQuota that limited the total number of Pods, but
+you could also limit the total number of other kinds of object. For example, you
+might decide to limit how many {{< glossary_tooltip text="CronJobs" term_id="cronjob" >}}
+that can live in a single namespace.
+-->
+### 资源的选择
+在此任务中，你定义了一个限制 Pod 总数的 ResourceQuota，
+你也可以限制其他类型对象的总数。例如，
+你可以限制在一个命名空间中可以创建的 {{< glossary_tooltip text="CronJobs" term_id="cronjob" >}} 的数量。
+
 <!--
 ## Clean up
 
@@ -157,12 +187,12 @@ kubectl delete namespace quota-pod-example
 -->
 ### 集群管理人员参考
 
-* [为命名空间配置默认的内存请求和限制](/zh/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
-* [为命名空间配置默认的的 CPU 请求和限制](/zh/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/)
-* [为命名空间配置内存的最小值和最大值约束](/zh/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)
-* [为命名空间配置 CPU 的最小值和最大值约束](/zh/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
-* [为命名空间配置内存和 CPU 配额](/zh/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
-* [为 API 对象的设置配额](/zh/docs/tasks/administer-cluster/quota-api-object/)
+* [为命名空间配置默认的内存请求和限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
+* [为命名空间配置默认的的 CPU 请求和限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/)
+* [为命名空间配置内存的最小值和最大值约束](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)
+* [为命名空间配置 CPU 的最小值和最大值约束](/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
+* [为命名空间配置内存和 CPU 配额](/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
+* [为 API 对象的设置配额](/zh-cn/docs/tasks/administer-cluster/quota-api-object/)
 
 <!--
 ### For app developers
@@ -173,7 +203,7 @@ kubectl delete namespace quota-pod-example
 -->
 ### 应用开发人员参考
 
-* [为容器和 Pod 分配内存资源](/zh/docs/tasks/configure-pod-container/assign-memory-resource/)
-* [给容器和 Pod 分配 CPU 资源](/zh/docs/tasks/configure-pod-container/assign-cpu-resource/)
-* [配置 Pod 的服务质量](/zh/docs/tasks/configure-pod-container/quality-service-pod/)
+* [为容器和 Pod 分配内存资源](/zh-cn/docs/tasks/configure-pod-container/assign-memory-resource/)
+* [给容器和 Pod 分配 CPU 资源](/zh-cn/docs/tasks/configure-pod-container/assign-cpu-resource/)
+* [配置 Pod 的服务质量](/zh-cn/docs/tasks/configure-pod-container/quality-service-pod/)
 
diff --git a/content/zh-cn/docs/tasks/administer-cluster/memory-manager.md b/content/zh-cn/docs/tasks/administer-cluster/memory-manager.md
new file mode 100644
index 0000000000..f0124a24f5
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/memory-manager.md
@@ -0,0 +1,801 @@
+---
+title: 使用 NUMA 感知的内存管理器
+content_type: task
+min-kubernetes-server-version: v1.21
+---
+
+<!--
+title: Utilizing the NUMA-aware Memory Manager
+
+reviewers:
+- klueska
+- derekwaynecarr
+
+content_type: task
+min-kubernetes-server-version: v1.21
+-->
+
+<!-- overview -->
+
+{{< feature-state state="beta" for_k8s_version="v1.22" >}}
+
+<!--
+The Kubernetes *Memory Manager* enables the feature of guaranteed memory (and hugepages)
+allocation for pods in the `Guaranteed` {{< glossary_tooltip text="QoS class" term_id="qos-class" >}}.
+
+The Memory Manager employs hint generation protocol to yield the most suitable NUMA affinity for a pod.
+The Memory Manager feeds the central manager (*Topology Manager*) with these affinity hints.
+Based on both the hints and Topology Manager policy, the pod is rejected or admitted to the node.
+-->
+Kubernetes 内存管理器（Memory Manager）为 `Guaranteed`
+{{< glossary_tooltip text="QoS 类" term_id="qos-class" >}}
+的 Pods 提供可保证的内存（及大页面）分配能力。
+
+内存管理器使用提示生成协议来为 Pod 生成最合适的 NUMA 亲和性配置。
+内存管理器将这类亲和性提示输入给中央管理器（即 Topology Manager）。
+基于所给的提示和 Topology Manager（拓扑管理器）的策略设置，Pod
+或者会被某节点接受，或者被该节点拒绝。
+
+<!--
+Moreover, the Memory Manager ensures that the memory which a pod
+requests is allocated from
+a minimum number of NUMA nodes.
+
+The Memory Manager is only pertinent to Linux based hosts.
+-->
+此外，内存管理器还确保 Pod 所请求的内存是从尽量少的 NUMA 节点分配而来。
+
+内存管理器仅能用于 Linux 主机。
+
+## {{% heading "prerequisites" %}}
+
+{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+
+<!--
+To align memory resources with other requested resources in a Pod Spec:
+
+- the CPU Manager should be enabled and proper CPU Manager policy should be configured on a Node.
+  See [control CPU Management Policies](/docs/tasks/administer-cluster/cpu-management-policies/);
+- the Topology Manager should be enabled and proper Topology Manager policy should be configured on a Node.
+  See [control Topology Management Policies](/docs/tasks/administer-cluster/topology-manager/).
+-->
+为了使得内存资源与 Pod 规约中所请求的其他资源对齐：
+
+- CPU 管理器应该被启用，并且在节点（Node）上要配置合适的 CPU 管理器策略，
+  参见[控制 CPU 管理策略](/zh-cn/docs/tasks/administer-cluster/cpu-management-policies/)；
+- 拓扑管理器要被启用，并且要在节点上配置合适的拓扑管理器策略，参见
+  [控制拓扑管理器策略](/zh-cn/docs/tasks/administer-cluster/topology-manager/)。
+
+<!--
+Starting from v1.22, the Memory Manager is enabled by default through `MemoryManager`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/).
+
+Preceding v1.22, the `kubelet` must be started with the following flag:
+
+`--feature-gates=MemoryManager=true`
+
+in order to enable the Memory Manager feature.
+-->
+从 v1.22 开始，内存管理器通过
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)
+`MemoryManager` 默认启用。
+
+在 v1.22 之前，`kubelet` 必须在启动时设置如下标志：
+
+`--feature-gates=MemoryManager=true`
+
+这样内存管理器特性才会被启用。
+
+<!--
+## How Memory Manager Operates?
+-->
+## 内存管理器如何运作？
+
+<!--
+The Memory Manager currently offers the guaranteed memory (and hugepages) allocation
+for Pods in Guaranteed QoS class.
+To immediately put the Memory Manager into operation follow the guidelines in the section
+[Memory Manager configuration](#memory-manager-configuration), and subsequently,
+prepare and deploy a `Guaranteed` pod as illustrated in the section
+[Placing a Pod in the Guaranteed QoS class](#placing-a-pod-in-the-guaranteed-qos-class).
+-->
+内存管理器目前为 Guaranteed QoS 类中的 Pod 提供可保证的内存（和大页面）分配能力。
+若要立即将内存管理器启用，可参照[内存管理器配置](#memory-manager-configuration)节中的指南，
+之后按[将 Pod 放入 Guaranteed QoS 类](#placing-a-pod-in-the-guaranteed-qos-class)
+节中所展示的，准备并部署一个 `Guaranteed` Pod。
+
+<!--
+The Memory Manager is a Hint Provider, and it provides topology hints for
+the Topology Manager which then aligns the requested resources according to these topology hints.
+It also enforces `cgroups` (i.e. `cpuset.mems`) for pods.
+The complete flow diagram concerning pod admission and deployment process is illustrated in
+[Memory Manager KEP: Design Overview][4] and below:
+-->
+内存管理器是一个提示驱动组件（Hint Provider），负责为拓扑管理器提供拓扑提示，
+后者根据这些拓扑提示对所请求的资源执行对齐操作。
+内存管理器也会为 Pods 应用 `cgroups` 设置（即 `cpuset.mems`）。
+与 Pod 准入和部署流程相关的完整流程图在[Memory Manager KEP: Design Overview][4]
+和下面。
+
+<!--
+![Memory Manager in the pod admission and deployment process](/images/docs/memory-manager-diagram.svg)
+-->
+![Pod 准入与部署流程中的内存管理器](/images/docs/memory-manager-diagram.svg)
+
+<!--
+During this process, the Memory Manager updates its internal counters stored in
+[Node Map and Memory Maps][2] to manage guaranteed memory allocation. 
+
+The Memory Manager updates the Node Map during the startup and runtime as follows.
+-->
+在这个过程中，内存管理器会更新其内部存储于[节点映射和内存映射][2]中的计数器，
+从而管理有保障的内存分配。
+
+内存管理器在启动和运行期间按下述逻辑更新节点映射（Node Map）。
+
+<!--
+### Startup
+-->
+### 启动  {#startup}
+
+<!--
+This occurs once a node administrator employs `--reserved-memory` (section
+[Reserved memory flag](#reserved-memory-flag)).
+In this case, the Node Map becomes updated to reflect this reservation as illustrated in
+[Memory Manager KEP: Memory Maps at start-up (with examples)][5].
+
+The administrator must provide `--reserved-memory` flag when `Static` policy is configured.
+-->
+当节点管理员应用 `--reserved-memory` [预留内存标志](#reserved-memory-flag)时执行此逻辑。
+这时，节点映射会被更新以反映内存的预留，如
+[Memory Manager KEP: Memory Maps at start-up (with examples)][5]
+所说明。
+
+当配置了 `Static` 策略时，管理员必须提供 `--reserved-memory` 标志设置。
+
+<!--
+### Runtime
+-->
+### 运行时  {#runtime} 
+
+<!--
+Reference [Memory Manager KEP: Memory Maps at runtime (with examples)][6]
+illustrates how a successful pod deployment affects the Node Map, and it also relates to
+how potential Out-of-Memory (OOM) situations are handled further by Kubernetes or operating system.
+-->
+参考文献 [Memory Manager KEP: Memory Maps at runtime (with examples)][6]
+中说明了成功的 Pod 部署是如何影响节点映射的，该文档也解释了可能发生的内存不足
+（Out-of-memory，OOM）情况是如何进一步被 Kubernetes 或操作系统处理的。
+
+<!--
+Important topic in the context of Memory Manager operation is the management of NUMA groups.
+Each time pod's memory request is in excess of single NUMA node capacity, the Memory Manager
+attempts to create a group that comprises several NUMA nodes and features extend memory capacity.
+The problem has been solved as elaborated in
+[Memory Manager KEP: How to enable the guaranteed memory allocation over many NUMA nodes?][3].
+Also, reference [Memory Manager KEP: Simulation - how the Memory Manager works? (by examples)][1]
+illustrates how the management of groups occurs. 
+-->
+在内存管理器运作的语境中，一个重要的话题是对 NUMA 分组的管理。
+每当 Pod 的内存请求超出单个 NUMA 节点容量时，内存管理器会尝试创建一个包含多个
+NUMA 节点的分组，从而扩展内存容量。解决这个问题的详细描述在文档
+[Memory Manager KEP: How to enable the guaranteed memory allocation over many NUMA nodes?][3]
+中。同时，关于 NUMA 分组是如何管理的，你还可以参考文档
+[Memory Manager KEP: Simulation - how the Memory Manager works? (by examples)][1]。
+
+<!--
+## Memory Manager configuration
+-->
+## 内存管理器配置   {#memory-manager-configuration}
+
+<!--
+Other Managers should be first pre-configured. Next, the Memory Manger feature should be enabled
+and be run with `Static` policy (section [Static policy](#static-policy)).
+Optionally, some amount of memory can be reserved for system or kubelet processes to increase
+node stability (section [Reserved memory flag](#reserved-memory-flag)).
+-->
+其他管理器也要预先配置。接下来，内存管理器特性需要被启用，
+并且采用 `Static` 策略（[静态策略](#policy-static)）运行。
+作为可选操作，可以预留一定数量的内存给系统或者 kubelet 进程以增强节点的
+稳定性（[预留内存标志](#reserved-memory-flag)）。
+
+<!--
+### Policies 
+-->
+### 策略    {#policies}
+
+<!--
+Memory Manager supports two policies. You can select a policy via a `kubelet` flag `--memory-manager-policy`:
+
+* `None` (default)
+* `Static`
+-->
+内存管理器支持两种策略。你可以通过 `kubelet` 标志 `--memory-manager-policy` 来
+选择一种策略：
+
+* `None` （默认）
+* `Static`
+
+<!--
+#### None policy {#policy-none}
+
+This is the default policy and does not affect the memory allocation in any way.
+It acts the same as if the Memory Manager is not present at all.
+
+The `None` policy returns default topology hint. This special hint denotes that Hint Provider
+(Memory Manger in this case) has no preference for NUMA affinity with any resource.
+-->
+#### None 策略    {#policy-none}
+
+这是默认的策略，并且不会以任何方式影响内存分配。该策略的行为好像内存管理器不存在一样。
+
+`None` 策略返回默认的拓扑提示信息。这种特殊的提示会表明拓扑驱动组件（Hint Provider）
+（在这里是内存管理器）对任何资源都没有与 NUMA 亲和性关联的偏好。
+
+<!--
+#### Static policy {#policy-static}
+
+In the case of the `Guaranteed` pod, the `Static` Memory Manger policy returns topology hints
+relating to the set of NUMA nodes where the memory can be guaranteed,
+and reserves the memory through updating the internal [NodeMap][2] object.
+
+In the case of the `BestEffort` or `Burstable` pod, the `Static` Memory Manager policy sends back
+the default topology hint as there is no request for the guaranteed memory,
+and does not reserve the memory in the internal [NodeMap][2] object.
+-->
+#### Static 策略    {#policy-static}
+
+对 `Guaranteed` Pod 而言，`Static` 内存管理器策略会返回拓扑提示信息，该信息
+与内存分配有保障的 NUMA 节点集合有关，并且内存管理器还通过更新内部的
+[节点映射][2] 对象来完成内存预留。
+
+对 `BestEffort` 或 `Burstable` Pod 而言，因为不存在对有保障的内存资源的请求，
+`Static` 内存管理器策略会返回默认的拓扑提示，并且不会通过内部的[节点映射][2]对象
+来预留内存。
+
+<!--
+### Reserved memory flag
+-->
+### 预留内存标志    {#reserved-memory-flag}
+
+<!--
+The [Node Allocatable](/docs/tasks/administer-cluster/reserve-compute-resources/) mechanism
+is commonly used by node administrators to reserve K8S node system resources for the kubelet
+or operating system processes in order to enhance the node stability.
+A dedicated set of flags can be used for this purpose to set the total amount of reserved memory
+for a node. This pre-configured value is subsequently utilized to calculate
+the real amount of node's "allocatable" memory available to pods.
+-->
+[节点可分配](/zh-cn/docs/tasks/administer-cluster/reserve-compute-resources/)机制通常
+被节点管理员用来为 kubelet 或操作系统进程预留 K8S 节点上的系统资源，目的是提高节点稳定性。
+有一组专用的标志可用于这个目的，为节点设置总的预留内存量。
+此预配置的值接下来会被用来计算节点上对 Pods “可分配的”内存。
+
+<!--
+The Kubernetes scheduler incorporates "allocatable" to optimise pod scheduling process.
+The foregoing flags include `--kube-reserved`, `--system-reserved` and `--eviction-threshold`.
+The sum of their values will account for the total amount of reserved memory.
+
+A new `--reserved-memory` flag was added to Memory Manager to allow for this total reserved memory
+to be split (by a node administrator) and accordingly reserved across many NUMA nodes. 
+-->
+Kubernetes 调度器在优化 Pod 调度过程时，会考虑“可分配的”内存。
+前面提到的标志包括 `--kube-reserved`、`--system-reserved` 和 `--eviction-threshold`。
+这些标志值的综合计作预留内存的总量。
+
+为内存管理器而新增加的 `--reserved-memory` 标志可以（让节点管理员）将总的预留内存进行划分，
+并完成跨 NUMA 节点的预留操作。
+
+<!--
+The flag specifies a comma-separated list of memory reservations of different memory types per NUMA node.
+Memory reservations across multiple NUMA nodes can be specified using semicolon as separator.
+This parameter is only useful in the context of the Memory Manager feature. 
+The Memory Manager will not use this reserved memory for the allocation of container workloads.
+
+For example, if you have a NUMA node "NUMA0" with `10Gi` of memory available, and
+the `--reserved-memory` was specified to reserve `1Gi` of memory at "NUMA0",
+the Memory Manager assumes that only `9Gi` is available for containers.
+-->
+标志设置的值是一个按 NUMA 节点的不同内存类型所给的内存预留的值的列表，用逗号分开。
+可以使用分号作为分隔符来指定跨多个 NUMA 节点的内存预留。
+只有在内存管理器特性被启用的语境下，这个参数才有意义。
+内存管理器不会使用这些预留的内存来为容器负载分配内存。
+
+例如，如果你有一个可用内存为 `10Gi` 的 NUMA 节点 "NUMA0"，而参数 `--reserved-memory`
+被设置成要在 "NUMA0" 上预留 `1Gi` 的内存，那么内存管理器会假定节点上只有 `9Gi`
+内存可用于容器负载。
+
+<!--
+You can omit this parameter, however, you should be aware that the quantity of reserved memory
+from all NUMA nodes should be equal to the quantity of memory specified by the
+[Node Allocatable feature](/docs/tasks/administer-cluster/reserve-compute-resources/).
+If at least one node allocatable parameter is non-zero, you will need to specify
+`--reserved-memory` for at least one NUMA node.
+In fact, `eviction-hard` threshold value is equal to `100Mi` by default, so
+if `Static` policy is used, `--reserved-memory` is obligatory.
+-->
+你也可以忽略此参数，不过这样做时，你要清楚，所有 NUMA 节点上预留内存的数量要等于
+[节点可分配特性](/zh-cn/docs/tasks/administer-cluster/reserve-compute-resources/)
+所设定的内存量。如果至少有一个节点可分配参数值为非零，你就需要至少为一个 NUMA
+节点设置 `--reserved-memory`。实际上，`eviction-hard` 阈值默认为 `100Mi`，
+所以当使用 `Static` 策略时，`--reserved-memory` 是必须设置的。
+
+<!--
+Also, avoid the following configurations:
+
+1. duplicates, i.e. the same NUMA node or memory type, but with a different value;
+1. setting zero limit for any of memory types;
+1. NUMA node IDs that do not exist in the machine hardware;
+1. memory type names different than `memory` or `hugepages-<size>`
+   (hugepages of particular `<size>` should also exist).
+-->
+此外，应尽量避免如下配置：
+
+1. 重复的配置，即同一 NUMA 节点或内存类型被设置不同的取值；
+1. 为某种内存类型设置约束值为零；
+1. 使用物理硬件上不存在的 NUMA 节点 ID；
+1. 使用名字不是 `memory` 或 `hugepages-<size>` 的内存类型名称
+   （特定的 `<size>` 的大页面也必须存在）。
+
+<!--
+Syntax: 
+-->
+语法：
+
+`--reserved-memory N:memory-type1=value1,memory-type2=value2,...`
+
+<!--
+* `N` (integer) - NUMA node index, e.g. `0`
+* `memory-type` (string) - represents memory type:
+  * `memory` - conventional memory
+  * `hugepages-2Mi` or `hugepages-1Gi` - hugepages 
+* `value` (string) - the quantity of reserved memory, e.g. `1Gi`
+-->
+* `N`（整数）- NUMA 节点索引，例如，`0`
+* `memory-type`（字符串）- 代表内存类型：
+  * `memory` - 常规内存；
+  * `hugepages-2Mi` 或 `hugepages-1Gi` - 大页面
+* `value`（字符串） - 预留内存的量，例如 `1Gi`
+
+<!--
+Example usage:
+-->
+用法示例：
+
+`--reserved-memory 0:memory=1Gi,hugepages-1Gi=2Gi`
+
+<!-- or -->
+或者
+
+`--reserved-memory 0:memory=1Gi --reserved-memory 1:memory=2Gi`
+
+<!--
+When you specify values for `--reserved-memory` flag, you must comply with the setting that
+you prior provided via Node Allocatable Feature flags.
+That is, the following rule must be obeyed for each memory type: 
+
+`sum(reserved-memory(i)) = kube-reserved + system-reserved + eviction-threshold`, 
+
+where `i` is an index of a NUMA node. 
+-->
+当你为 `--reserved-memory` 标志指定取值时，必须要遵从之前通过节点可分配特性标志所设置的值。
+换言之，对每种内存类型而言都要遵从下面的规则：
+
+`sum(reserved-memory(i)) = kube-reserved + system-reserved + eviction-threshold` 
+
+其中，`i` 是 NUMA 节点的索引。
+
+<!--
+If you do not follow the formula above, the Memory Manager will show an error on startup.
+
+In other words, the example above illustrates that for the conventional memory (`type=memory`),
+we reserve `3Gi` in total, i.e.: 
+-->
+如果你不遵守上面的公示，内存管理器会在启动时输出错误信息。
+
+换言之，上面的例子我们一共要预留 `3Gi` 的常规内存（`type=memory`），即：
+
+`sum(reserved-memory(i)) = reserved-memory(0) + reserved-memory(1) = 1Gi + 2Gi = 3Gi`
+
+<!--
+An example of kubelet command-line arguments relevant to the node Allocatable configuration:
+-->
+下面的例子中给出与节点可分配配置相关的 kubelet 命令行参数：
+
+* `--kube-reserved=cpu=500m,memory=50Mi`
+* `--system-reserved=cpu=123m,memory=333Mi`
+* `--eviction-hard=memory.available<500Mi`
+
+{{< note >}} 
+<!--
+The default hard eviction threshold is 100MiB, and **not** zero.
+Remember to increase the quantity of memory that you reserve by setting `--reserved-memory`
+by that hard eviction threshold. Otherwise, the kubelet will not start Memory Manager and
+display an error. 
+-->
+默认的硬性驱逐阈值是 100MiB，**不是**零。
+请记得在使用 `--reserved-memory` 设置要预留的内存量时，加上这个硬性驱逐阈值。
+否则 kubelet 不会启动内存管理器，而会输出一个错误信息。
+{{< /note >}}
+
+<!--
+Here is an example of a correct configuration:
+-->
+下面是一个正确配置的示例：
+
+```shell
+--feature-gates=MemoryManager=true 
+--kube-reserved=cpu=4,memory=4Gi 
+--system-reserved=cpu=1,memory=1Gi 
+--memory-manager-policy=Static 
+--reserved-memory '0:memory=3Gi;1:memory=2148Mi'
+```
+
+<!--
+Let us validate the configuration above:
+-->
+我们对上面的配置做一个检查：
+
+1. `kube-reserved + system-reserved + eviction-hard(default) = reserved-memory(0) + reserved-memory(1)`
+1. `4GiB + 1GiB + 100MiB = 3GiB + 2148MiB`
+1. `5120MiB + 100MiB = 3072MiB + 2148MiB`
+1. `5220MiB = 5220MiB` （这是对的）
+
+<!--
+## Placing a Pod in the Guaranteed QoS class
+
+If the selected policy is anything other than `None`, the Memory Manager identifies pods
+that are in the `Guaranteed` QoS class.
+The Memory Manager provides specific topology hints to the Topology Manager for each `Guaranteed` pod.
+For pods in a QoS class other than `Guaranteed`, the Memory Manager provides default topology hints
+to the Topology Manager.
+-->
+## 将 Pod 放入 Guaranteed QoS 类  {#placing-a-pod-in-the-guaranteed-qos-class} 
+
+若所选择的策略不是 `None`，则内存管理器会辨识处于 `Guaranteed` QoS 类中的 Pod。
+内存管理器为每个 `Guaranteed` Pod 向拓扑管理器提供拓扑提示信息。
+对于不在 `Guaranteed` QoS 类中的其他 Pod，内存管理器向拓扑管理器提供默认的 
+拓扑提示信息。
+
+<!--
+The following excerpts from pod manifests assign a pod to the `Guaranteed` QoS class.
+
+Pod with integer CPU(s) runs in the `Guaranteed` QoS class, when `requests` are equal to `limits`:
+-->
+下面的来自 Pod 清单的片段将 Pod 加入到 `Guaranteed` QoS 类中。
+
+当 Pod 的 CPU `requests` 等于 `limits` 且为整数值时，Pod 将运行在 `Guaranteed`
+QoS 类中。
+
+```yaml
+spec:
+  containers:
+  - name: nginx
+    image: nginx
+    resources:
+      limits:
+        memory: "200Mi"
+        cpu: "2"
+        example.com/device: "1"
+      requests:
+        memory: "200Mi"
+        cpu: "2"
+        example.com/device: "1"
+```
+
+<!--
+Also, a pod sharing CPU(s) runs in the `Guaranteed` QoS class, when `requests` are equal to `limits`.
+-->
+此外，共享 CPU 的 Pods 在 `requests` 等于 `limits` 值时也运行在 `Guaranteed`
+QoS 类中。
+
+```yaml
+spec:
+  containers:
+  - name: nginx
+    image: nginx
+    resources:
+      limits:
+        memory: "200Mi"
+        cpu: "300m"
+        example.com/device: "1"
+      requests:
+        memory: "200Mi"
+        cpu: "300m"
+        example.com/device: "1"
+```
+
+<!--
+Notice that both CPU and memory requests must be specified for a Pod to lend it to Guaranteed QoS class.
+-->
+要注意的是，只有 CPU 和内存请求都被设置时，Pod 才会进入 Guaranteed QoS 类。
+
+<!--
+## Troubleshooting
+
+The following means can be used to troubleshoot the reason why a pod could not be deployed or
+became rejected at a node:
+-->
+## 故障排查   {#troubleshooting}
+
+下面的方法可用来排查为什么 Pod 无法被调度或者被节点拒绝：
+
+<!--
+- pod status - indicates topology affinity errors
+- system logs - include valuable information for debugging, e.g., about generated hints
+- state file - the dump of internal state of the Memory Manager
+  (includes [Node Map and Memory Maps][2]) 
+- starting from v1.22, the [device plugin resource API](#device-plugin-resource-api) can be used
+  to retrieve information about the memory reserved for containers
+-->
+- Pod 状态 - 可表明拓扑亲和性错误
+- 系统日志 - 包含用来调试的有价值的信息，例如，关于所生成的提示信息
+- 状态文件 - 其中包含内存管理器内部状态的转储（包含[节点映射和内存映射][2]）
+- 从 v1.22 开始，[设备插件资源 API](#device-plugin-resource-api) 可以用来
+  检索关于为容器预留的内存的信息
+
+<!--
+### Pod status (TopologyAffinityError) {#TopologyAffinityError}
+
+This error typically occurs in the following situations:
+
+* a node has not enough resources available to satisfy the pod's request
+* the pod's request is rejected due to particular Topology Manager policy constraints 
+
+The error appears in the status of a pod:
+-->
+### Pod 状态 （TopologyAffinityError）   {#TopologyAffinityError}
+
+这类错误通常在以下情形出现：
+
+* 节点缺少足够的资源来满足 Pod 请求
+* Pod 的请求因为特定的拓扑管理器策略限制而被拒绝
+
+错误信息会出现在 Pod 的状态中：
+
+```shell
+kubectl get pods
+```
+
+```none
+NAME         READY   STATUS                  RESTARTS   AGE
+guaranteed   0/1     TopologyAffinityError   0          113s
+```
+
+<!--
+Use `kubectl describe pod <id>` or `kubectl get events` to obtain detailed error message:
+-->
+使用 `kubectl describe pod <id>` 或 `kubectl get events` 可以获得详细的错误信息。
+
+```none
+Warning  TopologyAffinityError  10m   kubelet, dell8  Resources cannot be allocated with Topology locality
+```
+
+<!--
+### System logs
+
+Search system logs with respect to a particular pod.
+
+The set of hints that Memory Manager generated for the pod can be found in the logs. 
+Also, the set of hints generated by CPU Manager should be present in the logs.
+-->
+### 系统日志     {#system-logs}
+
+针对特定的 Pod 搜索系统日志。
+
+内存管理器为 Pod 所生成的提示信息可以在日志中找到。
+此外，日志中应该也存在 CPU 管理器所生成的提示信息。
+
+<!--
+Topology Manager merges these hints to calculate a single best hint.
+The best hint should be also present in the logs.
+
+The best hint indicates where to allocate all the resources.
+Topology Manager tests this hint against its current policy, and based on the verdict,
+it either admits the pod to the node or rejects it.  
+
+Also, search the logs for occurrences associated with the Memory Manager,
+e.g. to find out information about `cgroups` and `cpuset.mems` updates.
+-->
+拓扑管理器将这些提示信息进行合并，计算得到唯一的最合适的提示数据。
+此最佳提示数据也应该出现在日志中。
+
+最佳提示表明要在哪里分配所有的资源。拓扑管理器会用当前的策略来测试此数据，
+并基于得出的结论或者接纳 Pod 到节点，或者将其拒绝。
+
+此外，你可以搜索日志查找与内存管理器相关的其他条目，例如 `cgroups` 和
+`cpuset.mems` 的更新信息等。
+
+<!--
+### Examine the memory manager state on a node
+
+Let us first deploy a sample `Guaranteed` pod whose specification is as follows:
+-->
+### 检查节点上内存管理器状态
+
+我们首先部署一个 `Guaranteed` Pod 示例，其规约如下所示：
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: guaranteed
+spec:
+  containers:
+  - name: guaranteed
+    image: consumer
+    imagePullPolicy: Never
+    resources:
+      limits:
+        cpu: "2"
+        memory: 150Gi
+      requests:
+        cpu: "2"
+        memory: 150Gi
+    command: ["sleep","infinity"]
+``` 
+
+<!--
+Next, let us log into the node where it was deployed and examine the state file in
+`/var/lib/kubelet/memory_manager_state`:
+-->
+接下来，我们登录到 Pod 运行所在的节点，检查位于
+`/var/lib/kubelet/memory_manager_state` 的状态文件：
+
+```json
+{
+   "policyName":"Static",
+   "machineState":{
+      "0":{
+         "numberOfAssignments":1,
+         "memoryMap":{
+            "hugepages-1Gi":{
+               "total":0,
+               "systemReserved":0,
+               "allocatable":0,
+               "reserved":0,
+               "free":0
+            },
+            "memory":{
+               "total":134987354112,
+               "systemReserved":3221225472,
+               "allocatable":131766128640,
+               "reserved":131766128640,
+               "free":0
+            }
+         },
+         "nodes":[
+            0,
+            1
+         ]
+      },
+      "1":{
+         "numberOfAssignments":1,
+         "memoryMap":{
+            "hugepages-1Gi":{
+               "total":0,
+               "systemReserved":0,
+               "allocatable":0,
+               "reserved":0,
+               "free":0
+            },
+            "memory":{
+               "total":135286722560,
+               "systemReserved":2252341248,
+               "allocatable":133034381312,
+               "reserved":29295144960,
+               "free":103739236352
+            }
+         },
+         "nodes":[
+            0,
+            1
+         ]
+      }
+   },
+   "entries":{
+      "fa9bdd38-6df9-4cf9-aa67-8c4814da37a8":{
+         "guaranteed":[
+            {
+               "numaAffinity":[
+                  0,
+                  1
+               ],
+               "type":"memory",
+               "size":161061273600
+            }
+         ]
+      }
+   },
+   "checksum":4142013182
+}
+```
+
+<!--
+It can be deduced from the state file that the pod was pinned to both NUMA nodes, i.e.:
+-->
+从这个状态文件，可以推断 Pod 被同时绑定到两个 NUMA 节点，即：
+
+```json
+"numaAffinity":[
+   0,
+   1
+],
+``` 
+
+<!--
+Pinned term means that pod's memory consumption is constrained (through `cgroups` configuration)
+to these NUMA nodes.
+
+This automatically implies that Memory Manager instantiated a new group that
+comprises these two NUMA nodes, i.e. `0` and `1` indexed NUMA nodes. 
+-->
+术语绑定（pinned）意味着 Pod 的内存使用被（通过 `cgroups` 配置）限制到
+这些 NUMA 节点。
+
+这也直接意味着内存管理器已经创建了一个 NUMA 分组，由这两个 NUMA 节点组成，
+即索引值分别为 `0` 和 `1` 的 NUMA 节点。
+
+<!--
+Notice that the management of groups is handled in a relatively complex manner, and
+further elaboration is provided in Memory Manager KEP in [this][1] and [this][3] sections.
+
+In order to analyse memory resources available in a group,the corresponding entries from
+NUMA nodes belonging to the group must be added up.  
+-->
+注意 NUMA 分组的管理是有一个相对复杂的管理器处理的，相关逻辑的进一步细节可在内存管理器的
+KEP 中[示例1][1]和[跨 NUMA 节点][3]节找到。
+
+为了分析 NUMA 组中可用的内存资源，必须对分组内 NUMA 节点对应的条目进行汇总。
+
+<!--
+For example, the total amount of free "conventional" memory in the group can be computed
+by adding up the free memory available at every NUMA node in the group,
+i.e., in the `"memory"` section of NUMA node `0` (`"free":0`) and NUMA node `1` (`"free":103739236352`).
+So, the total amount of free "conventional" memory in this group is equal to `0 + 103739236352` bytes.
+-->
+例如，NUMA 分组中空闲的“常规”内存的总量可以通过将分组内所有 NUMA
+节点上空闲内存加和来计算，即将 NUMA 节点 `0` 和 NUMA 节点 `1`  的 `"memory"` 节
+（分别是 `"free":0` 和 `"free": 103739236352`）相加，得到此分组中空闲的“常规”
+内存总量为 `0 + 103739236352` 字节。
+
+<!--
+The line `"systemReserved":3221225472` indicates that the administrator of this node reserved
+`3221225472` bytes (i.e. `3Gi`) to serve kubelet and system processes at NUMA node `0`,
+by using `--reserved-memory` flag.
+-->
+`"systemReserved": 3221225472` 这一行表明节点的管理员使用 `--reserved-memory` 为 NUMA
+节点 `0` 上运行的 kubelet 和系统进程预留了 `3221225472` 字节 （即 `3Gi`）。
+
+<!--
+### Device plugin resource API
+
+By employing the [API](/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/),
+the information about reserved memory for each container can be retrieved, which is contained
+in protobuf `ContainerMemory` message.
+This information can be retrieved solely for pods in Guaranteed QoS class.   
+-->
+### 设备插件资源 API     {#device-plugin-resource-api}
+
+通过使用此 [API](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/device-plugins/)，
+可以获得每个容器的预留内存信息，该信息位于 protobuf 协议的 `ContainerMemory` 消息中。
+只能针对 Guaranteed QoS 类中的 Pod 来检索此信息。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+以下均为英文设计文档，因此其标题不翻译。
+-->
+- [Memory Manager KEP: Design Overview][4] 
+- [Memory Manager KEP: Memory Maps at start-up (with examples)][5]
+- [Memory Manager KEP: Memory Maps at runtime (with examples)][6]
+- [Memory Manager KEP: Simulation - how the Memory Manager works? (by examples)][1]
+- [Memory Manager KEP: The Concept of Node Map and Memory Maps][2]
+- [Memory Manager KEP: How to enable the guaranteed memory allocation over many NUMA nodes?][3]
+
+[1]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/1769-memory-manager#simulation---how-the-memory-manager-works-by-examples
+[2]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/1769-memory-manager#the-concept-of-node-map-and-memory-maps
+[3]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/1769-memory-manager#how-to-enable-the-guaranteed-memory-allocation-over-many-numa-nodes
+[4]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/1769-memory-manager#design-overview
+[5]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/1769-memory-manager#memory-maps-at-start-up-with-examples
+[6]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/1769-memory-manager#memory-maps-at-runtime-with-examples
diff --git a/content/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/_index.md b/content/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/_index.md
new file mode 100644
index 0000000000..d2ac31c881
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/_index.md
@@ -0,0 +1,89 @@
+---
+title: 从 dockershim 迁移
+weight: 10
+content_type: task 
+no_list: true
+---
+<!-- 
+title: "Migrating from dockershim"
+weight: 10
+content_type: task 
+-->
+
+<!-- overview -->
+
+<!-- 
+This section presents information you need to know when migrating from
+dockershim to other container runtimes.
+-->
+本节提供从 dockershim 迁移到其他容器运行时的必备知识。
+
+<!-- 
+Since the announcement of [dockershim deprecation](/blog/2020/12/08/kubernetes-1-20-release-announcement/#dockershim-deprecation)
+in Kubernetes 1.20, there were questions on how this will affect various workloads and Kubernetes
+installations. Our [Dockershim Removal FAQ](/blog/2022/02/17/dockershim-faq/) is there to help you
+to understand the problem better.
+-->
+自从 Kubernetes 1.20 宣布
+[弃用 dockershim](/zh-cn/blog/2020/12/08/kubernetes-1-20-release-announcement/#dockershim-deprecation)，
+各类疑问随之而来：这对各类工作负载和 Kubernetes 部署会产生什么影响。
+我们的[弃用  Dockershim 常见问题](/blog/2022/02/17/dockershim-faq/)可以帮助你更好地理解这个问题。
+
+<!-- 
+Dockershim was removed from Kubernetes with the release of v1.24.
+If you use Docker Engine via dockershim as your container runtime, and wish to upgrade to v1.24,
+it is recommended that you either migrate to another runtime or find an alternative means to obtain Docker Engine support.
+-->
+Dockershim 在 Kubernetes v1.24 版本已经被移除。
+如果你集群内是通过 dockershim 使用 Docker Engine 作为容器运行时，并希望 Kubernetes 升级到 v1.24，
+建议你迁移到其他容器运行时或使用其他方法以获得 Docker 引擎支持。
+
+<!--
+Check out [container runtimes](/docs/setup/production-environment/container-runtimes/)
+section to know your options. Make sure to
+[report issues](https://github.com/kubernetes/kubernetes/issues) you encountered
+with the migration. So the issue can be fixed in a timely manner and your cluster would be
+ready for dockershim removal.
+-->
+建议从 dockershim 迁移到其他替代的容器运行时。
+请参阅[容器运行时](/zh-cn/docs/setup/production-environment/container-runtimes/)
+一节以了解可用的备选项。
+当在迁移过程中遇到麻烦，请[上报问题](https://github.com/kubernetes/kubernetes/issues)。
+那么问题就可以及时修复，你的集群也可以进入移除 dockershim 前的就绪状态。
+
+<!--
+Your cluster might have more than one kind of node, although this is not a common
+configuration.
+
+These tasks will help you to migrate:
+
+* [Check whether Dockershim deprecation affects you](/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you/)
+* [Migrate Docker Engine nodes from dockershim to cri-dockerd](/docs/tasks/administer-cluster/migrating-from-dockershim/migrate-dockershim-dockerd/)
+* [Migrating telemetry and security agents from dockershim](/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents/)
+-->
+你的集群中可以有不止一种类型的节点，尽管这不是常见的情况。
+
+下面这些任务可以帮助你完成迁移：
+
+* [检查弃用 Dockershim 是否影响到你](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you/)
+* [将 Docker Engine 节点从 dockershim 迁移到 cri-dockerd](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/migrate-dockershim-dockerd/)
+* [从 dockershim 迁移遥测和安全代理](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents/)
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* Check out [container runtimes](/docs/setup/production-environment/container-runtimes/)
+  to understand your options for a container runtime.
+* There is a
+  [GitHub issue](https://github.com/kubernetes/kubernetes/issues/106917)
+  to track discussion about the deprecation and removal of dockershim.
+* If you found a defect or other technical concern relating to migrating away from dockershim,
+  you can [report an issue](https://github.com/kubernetes/kubernetes/issues/new/choose)
+  to the Kubernetes project.
+-->
+* 查看[容器运行时](/zh-cn/docs/setup/production-environment/container-runtimes/)了解可选的容器运行时。
+* [GitHub 问题](https://github.com/kubernetes/kubernetes/issues/106917)跟踪有关
+  dockershim 的弃用和删除的讨论。
+* 如果你发现与 dockershim 迁移相关的缺陷或其他技术问题，
+  可以在 Kubernetes 项目[报告问题](https://github.com/kubernetes/kubernetes/issues/new/choose)。
+
diff --git a/content/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/change-runtime-containerd.md b/content/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/change-runtime-containerd.md
new file mode 100644
index 0000000000..05ca03663c
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/change-runtime-containerd.md
@@ -0,0 +1,277 @@
+---
+title: 将节点上的容器运行时从 Docker Engine 改为 containerd
+weight: 8
+content_type: task 
+---
+
+<!--
+title: "Changing the Container Runtime on a Node from Docker Engine to containerd"
+weight: 8
+content_type: task 
+-->
+
+<!--
+This task outlines the steps needed to update your container runtime to containerd from Docker. It
+is applicable for cluster operators running Kubernetes 1.23 or earlier. This also covers an
+example scenario for migrating from dockershim to containerd. Alternative container runtimes
+can be picked from this [page](/docs/setup/production-environment/container-runtimes/).
+-->
+本任务给出将容器运行时从 Docker 改为 containerd 所需的步骤。
+此任务适用于运行 1.23 或更早版本 Kubernetes 的集群操作人员。
+同时，此任务也涉及从 dockershim 迁移到 containerd 的示例场景。
+有关其他备选的容器运行时，可查阅
+[此页面](/zh-cn/docs/setup/production-environment/container-runtimes/)进行拣选。
+
+## {{% heading "prerequisites" %}}
+
+{{% thirdparty-content %}}
+
+<!--
+Install containerd. For more information see
+[containerd's installation documentation](https://containerd.io/docs/getting-started/)
+and for specific prerequisite follow
+[the containerd guide](/docs/setup/production-environment/container-runtimes/#containerd).
+-->
+安装 containerd。进一步的信息可参见
+[containerd 的安装文档](https://containerd.io/docs/getting-started/)。
+关于一些特定的环境准备工作，请遵循 [containerd 指南](/zh-cn/docs/setup/production-environment/container-runtimes/#containerd)。
+
+<!--
+## Drain the node 
+-->
+## 腾空节点    {#drain-the-node}
+
+```shell
+kubectl drain <node-to-drain> --ignore-daemonsets
+```
+
+<!--
+Replace `<node-to-drain>` with the name of your node you are draining.
+-->
+将 `<node-to-drain>` 替换为你所要腾空的节点的名称。
+
+<!--
+## Stop the Docker daemon
+-->
+## 停止 Docker 守护进程   {#stop-the-docker-daemon}
+
+```shell
+systemctl stop kubelet
+systemctl disable docker.service --now
+```
+
+<!--
+## Install Containerd
+
+Follow the [guide](/docs/setup/production-environment/container-runtimes/#containerd)
+for detailed steps to install containerd.
+-->
+## 安装 Containerd    {#install-containerd}
+
+遵循此[指南](/zh-cn/docs/setup/production-environment/container-runtimes/#containerd)
+了解安装 containerd 的详细步骤。
+
+{{< tabs name="tab-cri-containerd-installation" >}}
+{{% tab name="Linux" %}}
+
+<!--
+1. Install the `containerd.io` package from the official Docker repositories. 
+   Instructions for setting up the Docker repository for your respective Linux distribution and
+   installing the `containerd.io` package can be found at 
+   [Getting started with containerd](https://github.com/containerd/containerd/blob/main/docs/getting-started.md).
+-->
+1. 从官方的 Docker 仓库安装 `containerd.io` 包。关于为你所使用的 Linux 发行版来设置
+   Docker 仓库，以及安装 `containerd.io` 包的详细说明，
+   可参见[开始使用 containerd](https://github.com/containerd/containerd/blob/main/docs/getting-started.md)。
+
+<!--
+1. Configure containerd:
+-->
+2. 配置 containerd：
+
+   ```shell
+   sudo mkdir -p /etc/containerd
+   containerd config default | sudo tee /etc/containerd/config.toml
+   ```
+
+<!--
+1. Restart containerd:
+-->
+3. 重启 containerd：
+
+   ```shell
+   sudo systemctl restart containerd
+   ```
+{{% /tab %}}
+{{% tab name="Windows (PowerShell)" %}}
+
+<!--
+Start a Powershell session, set `$Version` to the desired version (ex: `$Version="1.4.3"`), and
+then run the following commands:
+-->
+启动一个 Powershell 会话，将 `$Version` 设置为期望的版本（例如：`$Version="1.4.3"`），
+之后运行下面的命令：
+
+<!--
+1. Download containerd:
+-->
+1. 下载 containerd：
+
+   ```powershell
+   curl.exe -L https://github.com/containerd/containerd/releases/download/v$Version/containerd-$Version-windows-amd64.tar.gz -o containerd-windows-amd64.tar.gz
+   tar.exe xvf .\containerd-windows-amd64.tar.gz
+   ```
+
+<!--
+2. Extract and configure:
+-->
+2. 解压缩并执行配置：
+
+   ```powershell
+   Copy-Item -Path ".\bin\" -Destination "$Env:ProgramFiles\containerd" -Recurse -Force
+   cd $Env:ProgramFiles\containerd\
+   .\containerd.exe config default | Out-File config.toml -Encoding ascii
+
+   # 请审查配置信息。取决于你的安装环境，你可能需要调整：
+   # - sandbox_image （Kubernetes pause 镜像）
+   # - CNI 的 bin_dir 和 conf_dir 的位置
+   Get-Content config.toml
+
+   # （可选步骤，但强烈建议执行）将 containerd 排除在 Windows Defender 扫描之外
+   Add-MpPreference -ExclusionProcess "$Env:ProgramFiles\containerd\containerd.exe"
+   ```
+
+<!--
+3. Start containerd:
+-->
+3. 启动 containerd：
+
+   ```powershell
+   .\containerd.exe --register-service
+   Start-Service containerd
+   ```
+
+{{% /tab %}}
+{{< /tabs >}}
+
+<!--
+## Configure the kubelet to use containerd as its container runtime
+
+Edit the file `/var/lib/kubelet/kubeadm-flags.env` and add the containerd runtime to the flags.
+`--container-runtime=remote` and
+`--container-runtime-endpoint=unix:///run/containerd/containerd.sock`.
+-->
+## 配置 kubelet 使用 containerd 作为其容器运行时
+
+编辑文件 `/var/lib/kubelet/kubeadm-flags.env`，将 containerd 运行时添加到标志中：
+`--container-runtime=remote` 和
+`--container-runtime-endpoint=unix:///run/containerd/containerd.sock`。
+
+<!--
+Users using kubeadm should be aware that the `kubeadm` tool stores the CRI socket for each host as
+an annotation in the Node object for that host. To change it you can execute the following command
+on a machine that has the kubeadm `/etc/kubernetes/admin.conf` file.
+-->
+`kubeadm` 工具将每个主机的 CRI 套接字保存在该主机对应的 Node 对象的注解中。
+使用 `kubeadm` 的用户应该知道，`kubeadm` 工具将每个主机的 CRI 套接字保存在该主机对应的
+Node 对象的注解中。
+要更改这一注解信息，你可以在一台包含 kubeadm `/etc/kubernetes/admin.conf` 文件的机器上执行以下命令：
+
+```shell
+kubectl edit no <node-name>
+```
+
+<!--
+This will start a text editor where you can edit the Node object.
+To choose a text editor you can set the `KUBE_EDITOR` environment variable.
+
+- Change the value of `kubeadm.alpha.kubernetes.io/cri-socket` from `/var/run/dockershim.sock`
+  to the CRI socket path of your choice (for example `unix:///run/containerd/containerd.sock`).
+   
+  Note that new CRI socket paths must be prefixed with `unix://` ideally.
+
+- Save the changes in the text editor, which will update the Node object.
+-->
+这一命令会打开一个文本编辑器，供你在其中编辑 Node 对象。
+要选择不同的文本编辑器，你可以设置 `KUBE_EDITOR` 环境变量。
+
+- 更改 `kubeadm.alpha.kubernetes.io/cri-socket` 值，将其从
+  `/var/run/dockershim.sock` 改为你所选择的 CRI 套接字路径
+  （例如：`unix:///run/containerd/containerd.sock`）。
+
+  注意新的 CRI 套接字路径必须带有 `unix://` 前缀。
+
+- 保存文本编辑器中所作的修改，这会更新 Node 对象。
+
+<!--
+## Restart the kubelet
+-->
+## 重启 kubelet    {#restart-the-kubelet}
+
+```shell
+systemctl start kubelet
+```
+
+<!--
+## Verify that the node is healthy
+
+Run `kubectl get nodes -o wide` and containerd appears as the runtime for the node we just changed.
+-->
+## 验证节点处于健康状态   {#verify-that-the-node-is-healthy}
+
+运行 `kubectl get nodes -o wide`，containerd 会显示为我们所更改的节点上的运行时。
+
+<!--
+## Remove Docker Engine
+-->
+## 移除 Docker Engine  {#remove-docker-engine}
+
+{{% thirdparty-content %}}
+
+<!--
+Finally if everything goes well, remove Docker.
+-->
+最后，在一切顺利时删除 Docker。
+
+{{< tabs name="tab-remove-docker-engine" >}}
+{{% tab name="CentOS" %}}
+
+```shell
+sudo yum remove docker-ce docker-ce-cli
+```
+{{% /tab %}}
+{{% tab name="Debian" %}}
+
+```shell
+sudo apt-get purge docker-ce docker-ce-cli
+```
+{{% /tab %}}
+{{% tab name="Fedora" %}}
+
+```shell
+sudo dnf remove docker-ce docker-ce-cli
+```
+{{% /tab %}}
+{{% tab name="Ubuntu" %}}
+
+```shell
+sudo apt-get purge docker-ce docker-ce-cli
+```
+{{% /tab %}}
+{{< /tabs >}}
+
+<!--
+The preceding commands don't remove images, containers, volumes, or customized configuration files on your host.
+To delete them, follow Docker's instructions to [Uninstall Docker Engine](https://docs.docker.com/engine/install/ubuntu/#uninstall-docker-engine).
+-->
+上面的命令不会移除你的主机上的镜像、容器、卷或者定制的配置文件。
+要删除这些内容，参阅 Docker 的指令来[卸载 Docker Engine](https://docs.docker.com/engine/install/ubuntu/#uninstall-docker-engine)。
+
+{{< caution >}}
+<!--
+Docker's instructions for uninstalling Docker Engine create a risk of deleting containerd. Be careful when executing commands.
+-->
+Docker 所提供的卸载 Docker Engine 命令指导中，存在删除 containerd 的风险。
+在执行命令时要谨慎。
+{{< /caution >}}
+
diff --git a/content/zh/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-deprecation-affects-you.md b/content/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you.md
similarity index 56%
rename from content/zh/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-deprecation-affects-you.md
rename to content/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you.md
index e3d8d89d94..09541e7033 100644
--- a/content/zh/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-deprecation-affects-you.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you.md
@@ -1,11 +1,11 @@
 ---
-title: 检查弃用 Dockershim 对你的影响
+title: 检查移除 Dockershim 是否对你有影响
 content_type: task 
 weight: 20
 ---
 <!-- 
-title: Check whether Dockershim deprecation affects you
-content_type: task 
+title: Check whether dockershim removal affects you
+content_type: task
 reviewers:
 - SergeyKanzhelev
 weight: 20
@@ -16,23 +16,24 @@ weight: 20
 <!-- 
 The `dockershim` component of Kubernetes allows to use Docker as a Kubernetes's
 {{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}.
-Kubernetes' built-in `dockershim` component was deprecated in release v1.20.
+Kubernetes' built-in `dockershim` component was removed in release v1.24.
 -->
+
 Kubernetes 的 `dockershim` 组件使得你可以把 Docker 用作 Kubernetes 的
 {{< glossary_tooltip text="容器运行时" term_id="container-runtime" >}}。
-在 Kubernetes v1.20 版本中，内建组件 `dockershim` 被弃用。
+在 Kubernetes v1.24 版本中，内建组件 `dockershim` 被移除。
 
 <!-- 
 This page explains how your cluster could be using Docker as a container runtime,
 provides details on the role that `dockershim` plays when in use, and shows steps
-you can take to check whether any workloads could be affected by `dockershim` deprecation.
+you can take to check whether any workloads could be affected by `dockershim` removal.
 -->
 本页讲解你的集群把 Docker 用作容器运行时的运作机制，
 并提供使用 `dockershim` 时，它所扮演角色的详细信息，
-继而展示了一组验证步骤，可用来检查弃用 `dockershim` 对你的工作负载的影响。
+继而展示了一组操作，可用来检查移除 `dockershim` 对你的工作负载是否有影响。
 
 <!-- 
-## Finding if your app has a dependencies on Docker {#find-docker-dependencies} 
+## Finding if your app has a dependencies on Docker {#find-docker-dependencies}
 -->
 ## 检查你的应用是否依赖于 Docker {#find-docker-dependencies}
 
@@ -41,45 +42,57 @@ If you are using Docker for building your application containers, you can still
 run these containers on any container runtime. This use of Docker does not count
 as a dependency on Docker as a container runtime.
 -->
-虽然你通过 Docker 创建了应用容器，但这些容器却可以运行于所有容器运行时。
-所以这种使用 Docker 容器运行时的方式并不构成对 Docker 的依赖。
+即使你是通过 Docker 创建的应用容器，也不妨碍你在其他任何容器运行时上运行这些容器。
+这种使用 Docker 的方式并不构成对 Docker 作为一个容器运行时的依赖。
 
 <!-- 
 When alternative container runtime is used, executing Docker commands may either
 not work or yield unexpected output. This is how you can find whether you have a
 dependency on Docker:
 -->
-当用了替代的容器运行时之后，Docker 命令可能不工作，甚至产生意外的输出。
-这才是判定你是否依赖于 Docker 的方法。
+当用了别的容器运行时之后，Docker 命令可能不工作，或者产生意外的输出。
+下面是判定你是否依赖于 Docker 的方法。
 
-<!-- 
-1. Make sure no privileged Pods execute Docker commands.
-2. Check that scripts and apps running on nodes outside of Kubernetes
+<!--
+1. Make sure no privileged Pods execute Docker commands (like `docker ps`),
+   restart the Docker service (commands such as `systemctl restart docker.service`),
+   or modify Docker-specific files such as `/etc/docker/daemon.json`.
+1. Check for any private registries or image mirror settings in the Docker
+   configuration file (like `/etc/docker/daemon.json`). Those typically need to
+   be reconfigured for another container runtime.
+1. Check that scripts and apps running on nodes outside of your Kubernetes
    infrastructure do not execute Docker commands. It might be:
    - SSH to nodes to troubleshoot;
    - Node startup scripts;
    - Monitoring and security agents installed on nodes directly.
-3. Third-party tools that perform above mentioned privileged operations. See
+-->
+1. 确认没有特权 Pod 执行 Docker 命令（如 `docker ps`）、重新启动 Docker
+   服务（如 `systemctl restart docker.service`）或修改 Docker 配置文件
+   `/etc/docker/daemon.json`。
+2. 检查 Docker 配置文件（如 `/etc/docker/daemon.json`）中容器镜像仓库的镜像（mirror）站点设置。
+   这些配置通常需要针对不同容器运行时来重新设置。
+3. 检查确保在 Kubernetes 基础设施之外的节点上运行的脚本和应用程序没有执行 Docker 命令。
+   可能的情况有：
+   - SSH 到节点排查故障；
+   - 节点启动脚本；
+   - 直接安装在节点上的监控和安全代理。
+<!--
+1. Third-party tools that perform above mentioned privileged operations. See
    [Migrating telemetry and security agents from dockershim](/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents)
    for more information.
-4. Make sure there is no indirect dependencies on dockershim behavior.
+1. Make sure there is no indirect dependencies on dockershim behavior.
    This is an edge case and unlikely to affect your application. Some tooling may be configured
    to react to Docker-specific behaviors, for example, raise alert on specific metrics or search for
    a specific log message as part of troubleshooting instructions.
    If you have such tooling configured, test the behavior on test
    cluster before migration.
- -->
-1. 确认没有特权 Pod 执行 docker 命令。
-2. 检查 Kubernetes 基础架构外部节点上的脚本和应用，确认它们没有执行 Docker 命令。可能的命令有：
-   - SSH 到节点排查故障；
-   - 节点启动脚本；
-   - 直接安装在节点上的监视和安全代理。
-3. 检查执行了上述特权操作的第三方工具。详细操作请参考:
-   [从 dockershim 迁移遥测和安全代理](/zh/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents/)
-4. 确认没有对 dockershim 行为的间接依赖。这是一种极端情况，不太可能影响你的应用。
-   一些工具很可能被配置为使用了 Docker 特性，比如，基于特定指标发警报，或者在故障排查指令的一个环节中搜索特定的日志信息。
-   如果你有此类配置的工具，需要在迁移之前，在测试集群上完成功能验证。
-
+-->
+4. 检查执行上述特权操作的第三方工具。
+   详细操作请参考[从 dockershim 迁移遥测和安全代理](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents)。
+5. 确认没有对 dockershim 行为的间接依赖。这是一种极端情况，不太可能影响你的应用。
+   一些工具很可能被配置为使用了 Docker 特性，比如，基于特定指标发警报，
+   或者在故障排查指令的一个环节中搜索特定的日志信息。
+   如果你有此类配置的工具，需要在迁移之前，在测试集群上测试这类行为。
 
 <!-- 
 ## Dependency on Docker explained {#role-of-dockershim}  
@@ -92,31 +105,31 @@ execute the containers that make up a Kubernetes pod. Kubernetes is responsible
 and scheduling of Pods; on each node, the {{< glossary_tooltip text="kubelet" term_id="kubelet" >}}
 uses the container runtime interface as an abstraction so that you can use any compatible
 container runtime.
- -->
-[容器运行时](/zh/docs/concepts/containers/#container-runtimes)是一个软件，用来运行组成 Kubernetes Pod 的容器。
-Kubernetes 负责编排和调度 Pod；在每一个节点上，
-{{< glossary_tooltip text="kubelet" term_id="kubelet" >}}
+-->
+[容器运行时](/zh-cn/docs/concepts/containers/#container-runtimes)是一个软件，
+用来运行组成 Kubernetes Pod 的容器。
+Kubernetes 负责编排和调度 Pod；在每一个节点上，{{< glossary_tooltip text="kubelet" term_id="kubelet" >}}
 使用抽象的容器运行时接口，所以你可以任意选用兼容的容器运行时。
 
 <!-- 
-In its earliest releases, Kubernetes offered compatibility with just one container runtime: Docker.
+In its earliest releases, Kubernetes offered compatibility with one container runtime: Docker.
 Later in the Kubernetes project's history, cluster operators wanted to adopt additional container runtimes.
 The CRI was designed to allow this kind of flexibility - and the kubelet began supporting CRI. However,
 because Docker existed before the CRI specification was invented, the Kubernetes project created an
 adapter component, `dockershim`. The dockershim adapter allows the kubelet to interact with Docker as
 if Docker were a CRI compatible runtime.
- -->
-在早期版本中，Kubernetes 提供的兼容性只支持一个容器运行时：Docker。
-在 Kubernetes 发展历史中，集群运营人员希望采用更多的容器运行时。
-于是 CRI 被设计出来满足这类灵活性需要 - 而 kubelet 亦开始支持 CRI。
-然而，因为 Docker 在 CRI 规范创建之前就已经存在，Kubernetes 就创建了一个适配器组件：`dockershim`。
-dockershim 适配器允许 kubelet 与 Docker交互，就好像 Docker 是一个 CRI 兼容的运行时一样。
+-->
+在早期版本中，Kubernetes 提供的兼容性支持一个容器运行时：Docker。
+在 Kubernetes 后来的发展历史中，集群运营人员希望采用别的容器运行时。
+于是 CRI 被设计出来满足这类灵活性需求 - 而 kubelet 亦开始支持 CRI。
+然而，因为 Docker 在 CRI 规范创建之前就已经存在，Kubernetes 就创建了一个适配器组件 `dockershim`。
+dockershim 适配器允许 kubelet 与 Docker 交互，就好像 Docker 是一个 CRI 兼容的运行时一样。
 
 <!-- 
 You can read about it in [Kubernetes Containerd integration goes GA](/blog/2018/05/24/kubernetes-containerd-integration-goes-ga/) blog post.
- -->
+-->
 你可以阅读博文
-[Kubernetes 容器集成功能的正式发布](/zh/blog/2018/05/24/kubernetes-containerd-integration-goes-ga/)
+[Kubernetes 正式支持集成 Containerd](/blog/2018/05/24/kubernetes-containerd-integration-goes-ga/)。
 
 <!-- Dockershim vs. CRI with Containerd -->
 ![Dockershim 和 Containerd CRI 的实现对比图](/images/blog/2018-05-24-kubernetes-containerd-integration-goes-ga/cri-containerd.png)
@@ -127,30 +140,28 @@ same containers can be run by container runtimes like Containerd as before. But
 now, since containers schedule directly with the container runtime, they are not visible to Docker.
 So any Docker tooling or fancy UI you might have used
 before to check on these containers is no longer available.
- -->
-切换到容器运行时 Containerd 可以消除掉中间环节。
-所有以前遗留的容器可由 Containerd 这类容器运行时来运行和管理，操作体验也和以前一样。
-但是现在，由于直接用容器运行时调度容器，所以它们对 Docker 来说是不可见的。
+-->
+切换到 Containerd 容器运行时可以消除掉中间环节。
+所有相同的容器都可由 Containerd 这类容器运行时来运行。
+但是现在，由于直接用容器运行时调度容器，它们对 Docker 是不可见的。
 因此，你以前用来检查这些容器的 Docker 工具或漂亮的 UI 都不再可用。
 
 <!-- 
 You cannot get container information using `docker ps` or `docker inspect`
 commands. As you cannot list containers, you cannot get logs, stop containers,
 or execute something inside container using `docker exec`.
- -->
+-->
 你不能再使用 `docker ps` 或 `docker inspect` 命令来获取容器信息。
 由于你不能列出容器，因此你不能获取日志、停止容器，甚至不能通过 `docker exec` 在容器中执行命令。
 
+{{< note >}}
 <!-- 
 If you're running workloads via Kubernetes, the best way to stop a container is through
 the Kubernetes API rather than directly through the container runtime (this advice applies
-for all container runtimes, not just Docker).
- -->
-{{< note >}}
-
-如果你用 Kubernetes 运行工作负载，最好通过 Kubernetes API停止容器，而不是通过容器运行时
-（此建议适用于所有容器运行时，不仅仅是针对 Docker）。
-
+for all container runtimes, not only Docker).
+-->
+如果你在用 Kubernetes 运行工作负载，最好通过 Kubernetes API 停止容器，
+而不是通过容器运行时来停止它们（此建议适用于所有容器运行时，不仅仅是针对 Docker）。
 {{< /note >}}
 
 <!-- 
@@ -161,4 +172,15 @@ by Kubernetes.
  -->
 你仍然可以下载镜像，或者用 `docker build` 命令创建它们。
 但用 Docker 创建、下载的镜像，对于容器运行时和 Kubernetes，均不可见。
-为了在 Kubernetes 中使用，需要把镜像推送（push）到某注册中心。
+为了在 Kubernetes 中使用，需要把镜像推送（push）到某镜像仓库。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+- Read [Migrating from dockershim](/docs/tasks/administer-cluster/migrating-from-dockershim/) to understand your next steps
+- Read the [dockershim deprecation FAQ](/blog/2020/12/02/dockershim-faq/) article for more information.
+-->
+- 阅读[从 dockershim 迁移](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/)，
+  以了解你的下一步工作。
+- 阅读[弃用 Dockershim 的常见问题](/zh-cn/blog/2020/12/02/dockershim-faq/)，了解更多信息。
+
diff --git a/content/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use.md b/content/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use.md
new file mode 100644
index 0000000000..5c7a15c2da
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use.md
@@ -0,0 +1,182 @@
+---
+title: 查明节点上所使用的容器运行时
+content_type: task
+weight: 10
+---
+<!--
+title: Find Out What Container Runtime is Used on a Node
+content_type: task
+reviewers:
+- SergeyKanzhelev
+weight: 10
+-->
+
+<!-- overview -->
+
+<!--
+This page outlines steps to find out what [container runtime](/docs/setup/production-environment/container-runtimes/)
+the nodes in your cluster use.
+-->
+本页面描述查明集群中节点所使用的[容器运行时](/zh-cn/docs/setup/production-environment/container-runtimes/)
+的步骤。
+
+<!--
+Depending on the way you run your cluster, the container runtime for the nodes may
+have been pre-configured or you need to configure it. If you're using a managed
+Kubernetes service, there might be vendor-specific ways to check what container runtime is
+configured for the nodes. The method described on this page should work whenever
+the execution of `kubectl` is allowed.
+-->
+取决于你运行集群的方式，节点所使用的容器运行时可能是事先配置好的，
+也可能需要你来配置。如果你在使用托管的 Kubernetes 服务，
+可能存在特定于厂商的方法来检查节点上配置的容器运行时。
+本页描述的方法应该在能够执行 `kubectl` 的场合下都可以工作。
+
+## {{% heading "prerequisites" %}}
+
+<!--
+Install and configure `kubectl`. See [Install Tools](/docs/tasks/tools/#kubectl) section for details.
+-->
+安装并配置 `kubectl`。参见[安装工具](/zh-cn/docs/tasks/tools/#kubectl) 节了解详情。
+
+<!--
+## Find out the container runtime used on a Node
+
+Use `kubectl` to fetch and show node information:
+-->
+## 查明节点所使用的容器运行时 {#find-out-the-container-runtime-used-on-a-node}
+
+使用 `kubectl` 来读取并显示节点信息：
+
+```shell
+kubectl get nodes -o wide
+```
+
+<!--
+The output is similar to the following. The column `CONTAINER-RUNTIME` outputs
+the runtime and its version.
+
+For Docker Engine, the output is similar to this:
+-->
+输出如下面所示。`CONTAINER-RUNTIME` 列给出容器运行时及其版本。
+
+对于 Docker Engine，输出类似于：
+```none
+NAME         STATUS   VERSION    CONTAINER-RUNTIME
+node-1       Ready    v1.16.15   docker://19.3.1
+node-2       Ready    v1.16.15   docker://19.3.1
+node-3       Ready    v1.16.15   docker://19.3.1
+```
+<!--
+If your runtime shows as Docker Engine, you still might not be affected by the
+removal of dockershim in Kubernetes v1.24. [Check the runtime
+endpoint](#which-endpoint) to see if you use dockershim. If you don't use
+dockershim, you aren't affected. 
+
+For containerd, the output is similar to this:
+-->
+如果你的容器运行时显示为 Docker Engine，你仍然可能不会被 v1.24 中 dockershim 的移除所影响。
+通过[检查运行时端点](#which-endpoint)，可以查看你是否在使用 dockershim。
+如果你没有使用 dockershim，你就不会被影响。
+
+对于 containerd，输出类似于这样：
+
+```none
+# For containerd
+NAME         STATUS   VERSION   CONTAINER-RUNTIME
+node-1       Ready    v1.19.6   containerd://1.4.1
+node-2       Ready    v1.19.6   containerd://1.4.1
+node-3       Ready    v1.19.6   containerd://1.4.1
+```
+
+<!--
+Find out more information about container runtimes
+on [Container Runtimes](/docs/setup/production-environment/container-runtimes/)
+page.
+-->
+你可以在[容器运行时](/zh-cn/docs/setup/production-environment/container-runtimes/)
+页面找到与容器运行时相关的更多信息。
+
+<!--
+## Find out what container runtime endpoint you use {#which-endpoint}
+-->
+## 检查当前使用的运行时端点  {#which-endpoint}
+
+<!--
+The container runtime talks to the kubelet over a Unix socket using the [CRI
+protocol](/docs/concepts/architecture/cri/), which is based on the gRPC
+framework. The kubelet acts as a client, and the runtime acts as the server.
+In some cases, you might find it useful to know which socket your nodes use. For
+example, with the removal of dockershim in Kubernetes v1.24 and later, you might
+want to know whether you use Docker Engine with dockershim.
+-->
+
+容器运行时使用 Unix Socket 与 kubelet 通信，这一通信使用基于 gRPC 框架的
+[CRI 协议](/zh-cn/docs/concepts/architecture/cri/)。kubelet 扮演客户端，运行时扮演服务器端。
+在某些情况下，你可能想知道你的节点使用的是哪个 socket。
+如若集群是 Kubernetes v1.24 及以后的版本，
+或许你想知道当前运行时是否是使用 dockershim 的 Docker Engine。
+
+{{< note >}}
+<!--
+If you currently use Docker Engine in your nodes with `cri-dockerd`, you aren't
+affected by the dockershim removal.
+-->
+如果你的节点在通过 `cri-dockerd` 使用 Docker Engine，
+那么集群不会受到 Kubernetes 移除 dockershim 的影响。
+{{< /note >}}
+
+<!--
+You can check which socket you use by checking the kubelet configuration on your
+nodes.
+-->
+可以通过检查 kubelet 的参数得知当前使用的是哪个 socket。
+
+<!--
+1.  Read the starting commands for the kubelet process:
+
+    ```
+    tr \\0 ' ' < /proc/"$(pgrep kubelet)"/cmdline
+    ```
+    If you don't have `tr` or `pgrep`, check the command line for the kubelet
+    process manually.
+-->
+1. 查看 kubelet 进程的启动命令
+
+   ```
+    tr \\0 ' ' < /proc/"$(pgrep kubelet)"/cmdline
+   ```
+   如有节点上没有 `tr` 或者 `pgrep`，就需要手动检查 kubelet 的启动命令
+
+<!--
+1.  In the output, look for the `--container-runtime` flag and the
+    `--container-runtime-endpoint` flag.
+
+    *   If your nodes use Kubernetes v1.23 and earlier and these flags aren't
+        present or if the `--container-runtime` flag is not `remote`,
+        you use the dockershim socket with Docker Engine.
+    *   If the `--container-runtime-endpoint` flag is present, check the socket
+        name to find out which runtime you use. For example,
+        `unix:///run/containerd/containerd.sock` is the containerd endpoint.
+-->
+2. 在命令的输出中，查找 `--container-runtime` 和 `--container-runtime-endpoint` 标志。
+
+   * 如果 Kubernetes 集群版本是 v1.23 或者更早的版本，并且这两个参数不存在，
+      或者 `container-runtime` 标志值不是 `remote`，则你在通过 dockershim 套接字使用
+      Docker Engine。
+     或者如果集群使用的 Docker engine 和 dockershim socket，则输出结果中 `--container-runtime` 不是 `remote`,
+   * 如果设置了 `--container-runtime-endpoint` 参数，查看套接字名称即可得知当前使用的运行时。
+     如若套接字 `unix:///run/containerd/containerd.sock` 是 containerd 的端点。
+
+<!--
+If you want to change the Container Runtime on a Node from Docker Engine to containerd,
+you can find out more information on [migrating from Docker Engine to  containerd](/docs/tasks/administer-cluster/migrating-from-dockershim/change-runtime-containerd/),
+or, if you want to continue using Docker Engine in v1.24 and later, migrate to a
+CRI-compatible adapter like [`cri-dockerd`](https://github.com/Mirantis/cri-dockerd).
+-->
+如果你将节点上的容器运行时从 Docker Engine 改变为 containerd，可在
+[迁移到不同的运行时](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/change-runtime-containerd/)
+找到更多信息。或者，如果你想在 Kubernetes v1.24 及以后的版本仍使用 Docker Engine，
+可以安装 CRI 兼容的适配器实现，如 [`cri-dockerd`](https://github.com/Mirantis/cri-dockerd)。
+[`cri-dockerd`](https://github.com/Mirantis/cri-dockerd)。
+
diff --git a/content/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/migrate-dockershim-dockerd.md b/content/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/migrate-dockershim-dockerd.md
new file mode 100644
index 0000000000..15cc99a7ce
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/migrate-dockershim-dockerd.md
@@ -0,0 +1,232 @@
+---
+title: 将 Docker Engine 节点从 dockershim 迁移到 cri-dockerd
+weight: 9
+content_type: task 
+---
+
+<!--
+title: "Migrate Docker Engine nodes from dockershim to cri-dockerd"
+weight: 9
+content_type: task 
+-->
+
+{{% thirdparty-content %}}
+
+<!--
+This page shows you how to migrate your Docker Engine nodes to use `cri-dockerd`
+instead of dockershim. You should follow these steps in these scenarios:
+
+ * You want to switch away from dockershim and still use Docker Engine to run
+    containers in Kubernetes.
+ * You want to upgrade to Kubernetes v{{< skew currentVersion >}} and your
+    existing cluster relies on dockershim, in which case you must migrate 
+    from dockershim and `cri-dockerd` is one of your options.
+
+To learn more about the removal of dockershim, read the [FAQ page](/dockershim).
+-->
+本页面为你展示如何迁移你的 Docker Engine 节点，使之使用 `cri-dockerd` 而不是 dockershim。
+在以下场景中，你可以遵从这里的步骤执行操作：
+
+* 你期望不再使用 dockershim，但仍然使用 Docker Engine 来在 Kubernetes 中运行容器。
+* 你希望升级到 Kubernetes v{{< skew currentVersion >}} 且你的现有集群依赖于 dockershim，
+  因此你必须放弃 dockershim，而 `cri-dockerd` 是你的一种选项。
+
+要进一步了解 dockershim 的移除，请阅读 [FAQ 页面](/zh-cn/dockershim)。
+
+<!--
+## What is cri-dockerd? {#what-is-cri-dockerd}
+
+In Kubernetes 1.23 and earlier, you could use Docker Engine with Kubernetes,
+relying on a built-in component of Kubernetes named _dockershim_.
+The dockershim component was removed in the Kubernetes 1.24 release; however,
+a third-party replacement, `cri-dockerd`, is available. The `cri-dockerd` adapter
+lets you use Docker Engine through the {{<glossary_tooltip term_id="cri" text="Container Runtime Interface">}}.
+-->
+## cri-dockerd 是什么？ {#what-is-cri-dockerd}
+
+在 Kubernetes v1.24 及更早版本中，你可以在 Kubernetes 中使用 Docker Engine，
+依赖于一个称作 _dockershim_ 的内置 Kubernetes 组件。
+dockershim 组件在 Kubernetes v1.24 发行版本中已被移除；不过，一种来自第三方的替代品，
+`cri-dockerd` 是可供使用的。`cri-dockerd` 适配器允许你通过
+{{<glossary_tooltip term_id="cri" text="容器运行时接口（Container Runtime Interface，CRI）">}}
+来使用 Docker Engine。
+
+{{<note>}}
+<!--
+If you already use `cri-dockerd`, you aren't affected by the dockershim removal.
+Before you begin, [Check whether your nodes use the dockershim](/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use/).
+-->
+如果你已经在使用 `cri-dockerd`，那么你不会被 dockershim 的移除影响到。
+在开始之前，[检查你的节点是否在使用 dockershim](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use/)。
+{{</note>}}
+
+<!--
+If you want to migrate to `cri-dockerd` so that you can continue using Docker
+Engine as your container runtime, you should do the following for each affected
+node: 
+
+1.  Install `cri-dockerd`.
+1.  Cordon and drain the node.
+1.  Configure the kubelet to use `cri-dockerd`. 
+1.  Restart the kubelet.
+1.  Verify that the node is healthy.
+-->
+如果你想要迁移到 `cri-dockerd` 以便继续使用 Docker Engine 作为你的容器运行时，
+你需要在所有被影响的节点上执行以下操作：
+
+1. 安装 `cri-dockerd`；
+1. 隔离（Cordon）并腾空（Drain）该节点；
+1. 配置 kubelet 使用 `cri-dockerd`；
+1. 重新启动 kubelet；
+1. 验证节点处于健康状态。
+
+<!--
+Test the migration on non-critical nodes first.
+
+You should perform the following steps for each node that you want to migrate
+to `cri-dockerd`.
+-->
+首先在非关键节点上测试这一迁移过程。
+
+你应该针对所有希望迁移到 `cri-dockerd` 的节点执行以下步骤。
+
+## {{% heading "prerequisites" %}}
+
+<!--
+*   [`cri-dockerd`](https://github.com/mirantis/cri-dockerd#build-and-install)
+    installed and started on each node.
+*   A [network plugin](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/).
+-->
+* 安装了 [`cri-dockerd`](https://github.com/mirantis/cri-dockerd#build-and-install)
+  并且该服务已经在各节点上启动；
+* 一个[网络插件](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)。
+
+<!--
+## Cordon and drain the node
+
+1.  Cordon the node to stop new Pods scheduling on it:
+
+    ```shell
+    kubectl cordon <NODE_NAME>
+    ```
+    Replace `<NODE_NAME>` with the name of the node.
+-->
+## 隔离并腾空节点   {#cordon-and-drain-the-node}
+
+1. 隔离节点，阻止新的 Pod 被调度到节点上：
+
+   ```shell
+   kubectl cordon <NODE_NAME>
+   ```
+
+   将 `<NODE_NAME>` 替换为节点名称。
+
+<!--
+1.  Drain the node to safely evict running Pods:
+-->
+2. 腾空节点以安全地逐出所有运行中的 Pod：
+
+   ```shell
+   kubectl drain <NODE_NAME> --ignore-daemonsets
+   ```
+
+<!--
+## Configure the kubelet to use cri-dockerd
+
+The following steps apply to clusters set up using the kubeadm tool. If you use
+a different tool, you should modify the kubelet using the configuration
+instructions for that tool.
+-->
+## 配置 kubelet 使用 cri-dockerd   {#configure-the-kubelet-to-use-cri-dockerd}
+
+下面的步骤适用于用 kubeadm 工具安装的集群。如果你使用不同的工具，
+你需要使用针对该工具的配置指令来修改 kubelet。
+
+<!--
+1.  Open `/var/lib/kubelet/kubeadm-flags.env` on each affected node.
+1.  Modify the `--container-runtime-endpoint` flag to
+    `unix:///var/run/cri-dockerd.sock`.
+-->
+1. 在每个被影响的节点上，打开 `/var/lib/kubelet/kubeadm-flags.env` 文件；
+1. 将 `--container-runtime-endpoint` 标志，将其设置为 `unix:///var/run/cri-dockerd.sock`。
+
+<!--
+The kubeadm tool stores the node's socket as an annotation on the `Node` object
+in the control plane. To modify this socket for each affected node:  
+-->
+kubeadm 工具将节点上的套接字存储为控制面上 `Node` 对象的注解。
+要为每个被影响的节点更改此套接字：
+
+<!--
+1.  Edit the YAML representation of the `Node` object:
+
+    ```shell
+    KUBECONFIG=/path/to/admin.conf kubectl edit no <NODE_NAME>
+    ```
+    Replace the following:
+    
+    *   `/path/to/admin.conf`: the path to the kubectl configuration file,
+        `admin.conf`.
+    *   `<NODE_NAME>`: the name of the node you want to modify.
+
+1.  Change `kubeadm.alpha.kubernetes.io/cri-socket` from
+    `/var/run/dockershim.sock` to `unix:///var/run/cri-dockerd.sock`.
+1.  Save the changes. The `Node` object is updated on save.
+-->
+1. 编辑 `Node` 对象的 YAML 表示：
+
+   ```shell
+   KUBECONFIG=/path/to/admin.conf kubectl edit no <NODE_NAME>
+   ```
+
+   根据下面的说明执行替换：
+    
+   * `/path/to/admin.conf`：指向 kubectl 配置文件 `admin.conf` 的路径；
+   * `<NODE_NAME>`：你要修改的节点的名称。
+
+1. 将 `kubeadm.alpha.kubernetes.io/cri-socket` 标志从
+   `/var/run/dockershim.sock` 更改为 `unix:///var/run/cri-dockerd.sock`；
+1. 保存所作更改。保存时，`Node` 对象被更新。
+
+<!--
+## Restart the kubelet
+-->
+## 重启 kubelet    {#restart-the-kubelet}
+
+```shell
+systemctl restart kubelet
+```
+
+<!--
+## Verify that the node is healthy
+
+To check whether the node uses the `cri-dockerd` endpoint, follow the
+instructions in [Find out which runtime you use](/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use/).
+The `--container-runtime-endpoint` flag for the kubelet should be `unix:///var/run/cri-dockerd.sock`.
+-->
+## 验证节点处于健康状态   {#verify-that-the-node-is-healthy}
+
+要检查节点是否在使用 `cri-dockerd` 端点，
+按照[找出你所使用的运行时](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/find-out-runtime-you-use/)页面所给的指令操作。
+kubelet 的 `--container-runtime-endpoint` 标志取值应该是 `unix:///var/run/cri-dockerd.sock`。
+
+<!--
+## Uncordon the node
+
+Uncordon the node to let Pods schedule on it: 
+-->
+## 解除节点隔离   {#uncordon-the-node}
+
+```shell
+kubectl uncordon <NODE_NAME>
+```
+
+## {{% heading "whatsnext" %}}
+
+<!--
+*   Read the [dockershim removal FAQ](/dockershim/).
+*   [Learn how to migrate from Docker Engine with dockershim to containerd](/docs/tasks/administer-cluster/migrating-from-dockershim/change-runtime-containerd/).
+-->
+* 阅读 [移除 Dockershim 的常见问题](/zh-cn/dockershim)。
+* [了解如何从基于 dockershim 的 Docker Engine 迁移到 containerd](/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/change-runtime-containerd/)。
+
diff --git a/content/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents.md b/content/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents.md
new file mode 100644
index 0000000000..2305547b0c
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents.md
@@ -0,0 +1,302 @@
+---
+title: 从 dockershim 迁移遥测和安全代理
+content_type: task 
+weight: 70
+---
+<!-- 
+title: Migrating telemetry and security agents from dockershim
+content_type: task 
+reviewers:
+- SergeyKanzhelev
+weight: 70
+-->
+
+<!-- overview -->
+
+{{% thirdparty-content %}}
+
+<!-- 
+Kubernetes' support for direct integration with Docker Engine is deprecated and has been removed. Most apps do not have a direct dependency on runtime hosting containers. However, there are still a lot of telemetry and monitoring agents that has a dependency on docker to collect containers metadata, logs and metrics. This document aggregates information on how to detect these dependencies and links on how to migrate these agents to use generic tools or alternative runtimes.
+-->
+Kubernetes 对与 Docker Engine 直接集成的支持已被弃用且已经被删除。
+大多数应用程序不直接依赖于托管容器的运行时。但是，仍然有大量的遥测和监控代理依赖
+docker 来收集容器元数据、日志和指标。
+本文汇总了一些信息和链接：信息用于阐述如何探查这些依赖，链接用于解释如何迁移这些代理去使用通用的工具或其他容器运行。
+
+<!-- 
+## Telemetry and security agents 
+-->
+## 遥测和安全代理 {#telemetry-and-security-agents}
+
+<!-- 
+Within a Kubernetes cluster there are a few different ways to run telemetry or security agents.
+Some agents have a direct dependency on Docker Engine when they run as DaemonSets or
+directly on nodes.
+-->
+在 Kubernetes 集群中，有几种不同的方式来运行遥测或安全代理。
+一些代理在以 DaemonSet 的形式运行或直接在节点上运行时，直接依赖于 Docker Engine。
+
+<!-- 
+###  Why do some telemetry agents communicate with Docker Engine?
+-->
+### 为什么有些遥测代理会与 Docker Engine 通信？
+
+<!-- 
+Historically, Kubernetes was written to work specifically with Docker Engine.
+Kubernetes took care of networking and scheduling, relying on Docker Engine for launching
+and running containers (within Pods) on a node. Some information that is relevant to telemetry,
+such as a pod name, is only available from Kubernetes components. Other data, such as container
+metrics, is not the responsibility of the container runtime. Early telemetry agents needed to query the
+container runtime **and** Kubernetes to report an accurate picture. Over time, Kubernetes gained
+the ability to support multiple runtimes, and now supports any runtime that is compatible with
+the [container runtime interface](/docs/concepts/architecture/cri/).
+-->
+从历史上看，Kubernetes 是专门为与 Docker Engine 一起工作而编写的。
+Kubernetes 负责网络和调度，依靠 Docker Engine
+在节点上启动并运行容器（在 Pod 内）。一些与遥测相关的信息，例如 pod 名称，
+只能从 Kubernetes 组件中获得。其他数据，例如容器指标，不是容器运行时的责任。
+早期遥测代理需要查询容器运行时**和** Kubernetes 以报告准确的信息。
+随着时间的推移，Kubernetes 获得了支持多种运行时的能力，
+现在支持任何兼容[容器运行时接口](/zh-cn/docs/concepts/architecture/cri/)的运行时。
+
+<!-- 
+Some telemetry agents rely specifically on Docker Engine tooling. For example, an agent
+might run a command such as
+[`docker ps`](https://docs.docker.com/engine/reference/commandline/ps/)
+or [`docker top`](https://docs.docker.com/engine/reference/commandline/top/) to list
+containers and processes or [`docker logs`](https://docs.docker.com/engine/reference/commandline/logs/)
++to receive streamed logs. If nodes in your existing cluster use
++Docker Engine, and you switch to a different container runtime,
+these commands will not work any longer.
+-->
+一些代理和 Docker 工具紧密绑定。比如代理会用到
+[`docker ps`](https://docs.docker.com/engine/reference/commandline/ps/)
+或 [`docker top`](https://docs.docker.com/engine/reference/commandline/top/)
+这类命令来列出容器和进程，用
+[`docker logs`](https://docs.docker.com/engine/reference/commandline/logs/)
+订阅 Docker 的日志。
+如果现有集群中的节点使用 Docker Engine，在你切换到其它容器运行时的时候，
+这些命令将不再起作用。
+
+<!-- 
+### Identify DaemonSets that depend on Docker Engine {#identify-docker-dependency}
+-->
+### 识别依赖于 Docker Engine 的 DaemonSet {#identify-docker-dependency}
+
+<!-- 
+If a pod wants to make calls to the `dockerd` running on the node, the pod must either:
+
+- mount the filesystem containing the Docker daemon's privileged socket, as a
+  {{< glossary_tooltip text="volume" term_id="volume" >}}; or
+- mount the specific path of the Docker daemon's privileged socket directly, also as a volume.
+-->
+如果某 Pod 想调用运行在节点上的 `dockerd`，该 Pod 必须满足以下两个条件之一：
+
+- 将包含 Docker 守护进程特权套接字的文件系统挂载为一个{{< glossary_tooltip text="卷" term_id="volume" >}}；或
+- 直接以卷的形式挂载 Docker 守护进程特权套接字的特定路径。
+
+<!-- 
+For example: on COS images, Docker exposes its Unix domain socket at
+`/var/run/docker.sock` This means that the pod spec will include a
+`hostPath` volume mount of `/var/run/docker.sock`.
+-->
+举例来说：在 COS 镜像中，Docker 通过 `/var/run/docker.sock` 开放其 Unix 域套接字。
+这意味着 Pod 的规约中需要包含 `hostPath` 卷以挂载 `/var/run/docker.sock`。
+
+<!-- 
+Here's a sample shell script to find Pods that have a mount directly mapping the
+Docker socket. This script outputs the namespace and name of the pod. You can
+remove the `grep '/var/run/docker.sock'` to review other mounts.
+-->
+下面是一个 shell 示例脚本，用于查找包含直接映射 Docker 套接字的挂载点的 Pod。
+你也可以删掉 `grep '/var/run/docker.sock'` 这一代码片段以查看其它挂载信息。
+
+```bash
+kubectl get pods --all-namespaces \
+-o=jsonpath='{range .items[*]}{"\n"}{.metadata.namespace}{":\t"}{.metadata.name}{":\t"}{range .spec.volumes[*]}{.hostPath.path}{", "}{end}{end}' \
+| sort \
+| grep '/var/run/docker.sock'
+```
+
+<!-- 
+There are alternative ways for a pod to access Docker on the host. For instance, the parent
+directory `/var/run` may be mounted instead of the full path (like in [this
+example](https://gist.github.com/itaysk/7bc3e56d69c4d72a549286d98fd557dd)).
+The script above only detects the most common uses.
+-->
+{{< note >}}
+对于 Pod 来说，访问宿主机上的 Docker 还有其他方式。
+例如，可以挂载 `/var/run` 的父目录而非其完整路径
+（就像[这个例子](https://gist.github.com/itaysk/7bc3e56d69c4d72a549286d98fd557dd)）。
+上述脚本只检测最常见的使用方式。
+{{< /note >}}
+
+<!-- 
+### Detecting Docker dependency from node agents
+-->
+### 检测节点代理对 Docker 的依赖性 {#detecting-docker-dependency-from-node-agents}
+
+<!-- 
+If your cluster nodes are customized and install additional security and
+telemetry agents on the node, check with the agent vendor
+to verify whether it has any dependency on Docker.
+-->
+在你的集群节点被定制、且在各个节点上均安装了额外的安全和遥测代理的场景下，
+一定要和代理的供应商确认：该代理是否依赖于 Docker。
+
+<!-- 
+### Telemetry and security agent vendors
+-->
+### 遥测和安全代理的供应商 {#telemetry-and-security-agent-vendors}
+
+<!-- 
+This section is intended to aggregate information about various telemetry and
+security agents that may have a dependency on container runtimes.
+
+We keep the work in progress version of migration instructions for various telemetry and security agent vendors
+in [Google doc](https://docs.google.com/document/d/1ZFi4uKit63ga5sxEiZblfb-c23lFhvy6RXVPikS8wf0/edit#).
+Please contact the vendor to get up to date instructions for migrating from dockershim.
+-->
+本节旨在汇总有关可能依赖于容器运行时的各种遥测和安全代理的信息。
+
+我们通过
+[谷歌文档](https://docs.google.com/document/d/1ZFi4uKit63ga5sxEiZblfb-c23lFhvy6RXVPikS8wf0/edit#)
+提供了为各类遥测和安全代理供应商准备的持续更新的迁移指导。
+请与供应商联系，获取从 dockershim 迁移的最新说明。
+
+## 从 dockershim 迁移 {#migration-from-dockershim}
+
+### [Aqua](https://www.aquasec.com)
+
+<!--
+No changes are needed: everything should work seamlessly on the runtime switch.
+-->
+无需更改：在运行时变更时可以无缝切换运行。
+
+### [Datadog](https://www.datadoghq.com/product/)
+
+<!--
+How to migrate:
+[Docker deprecation in Kubernetes](https://docs.datadoghq.com/agent/guide/docker-deprecation/)
+The pod that accesses Docker Engine may have a name containing any of:
+
+- `datadog-agent`
+- `datadog`
+- `dd-agent`
+-->
+如何迁移： 
+[Kubernetes 中对于 Docker 的弃用](https://docs.datadoghq.com/agent/guide/docker-deprecation/) 
+名字中包含以下字符串的 Pod 可能访问 Docker Engine：
+
+- `datadog-agent`
+- `datadog`
+- `dd-agent`
+
+### [Dynatrace](https://www.dynatrace.com/)
+
+<!--
+How to migrate:
+[Migrating from Docker-only to generic container metrics in Dynatrace](https://community.dynatrace.com/t5/Best-practices/Migrating-from-Docker-only-to-generic-container-metrics-in/m-p/167030#M49)
+
+Containerd support announcement: [Get automated full-stack visibility into
+containerd-based Kubernetes
+environments](https://www.dynatrace.com/news/blog/get-automated-full-stack-visibility-into-containerd-based-kubernetes-environments/)
+
+CRI-O support announcement: [Get automated full-stack visibility into your CRI-O Kubernetes containers (Beta)](https://www.dynatrace.com/news/blog/get-automated-full-stack-visibility-into-your-cri-o-kubernetes-containers-beta/)
+
+The pod accessing Docker may have name containing: 
+- `dynatrace-oneagent`
+-->
+如何迁移：
+[在 Dynatrace 上从 Docker-only 迁移到到通用容器指标](https://community.dynatrace.com/t5/Best-practices/Migrating-from-Docker-only-to-generic-container-metrics-in/m-p/167030#M49)
+
+Containerd 支持公告：[在基于 containerd 的 Kubernetes 环境的获取容器的自动化全栈可见性](https://www.dynatrace.com/news/blog/get-automated-full-stack-visibility-into-containerd-based-kubernetes-environments/)
+CRI-O 支持公告：[在基于 CRI-O 的 Kubernetes 环境获取容器的自动化全栈可见性（测试版）](https://www.dynatrace.com/news/blog/get-automated-full-stack-visibility-into-your-cri-o-kubernetes-containers-beta/)
+
+名字中包含以下字符串的 Pod 可能访问 Docker：
+- `dynatrace-oneagent`
+
+### [Falco](https://falco.org)
+
+<!--
+How to migrate:
+
+[Migrate Falco from dockershim](https://falco.org/docs/getting-started/deployment/#docker-deprecation-in-kubernetes)
+Falco supports any CRI-compatible runtime (containerd is used in the default configuration); the documentation explains all details.
+The pod accessing Docker may have name containing: 
+- `falco`
+-->
+如何迁移：
+[迁移 Falco 从 dockershim](https://falco.org/docs/getting-started/deployment/#docker-deprecation-in-kubernetes)
+Falco 支持任何与 CRI 兼容的运行时（默认配置中使用 containerd）；该文档解释了所有细节。
+
+名字中包含以下字符串的 Pod 可能访问 Docker：
+- `falco`
+
+
+### [Prisma Cloud Compute](https://docs.paloaltonetworks.com/prisma/prisma-cloud.html)
+
+<!--
+Check [documentation for Prisma Cloud](https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin-compute/install/install_kubernetes.html),
+under the "Install Prisma Cloud on a CRI (non-Docker) cluster" section.
+The pod accessing Docker may be named like:
+- `twistlock-defender-ds`
+-->
+在依赖于 CRI（非 Docker）的集群上安装 Prisma Cloud 时，查看
+[Prisma Cloud 提供的文档](https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin-compute/install/install_kubernetes.html)。
+
+名字中包含以下字符串的 Pod 可能访问 Docker：
+
+- `twistlock-defender-ds`
+
+
+### [SignalFx (Splunk)](https://www.splunk.com/en_us/investor-relations/acquisitions/signalfx.html)
+
+<!--
+The SignalFx Smart Agent (deprecated) uses several different monitors for Kubernetes including
+`kubernetes-cluster`, `kubelet-stats/kubelet-metrics`, and `docker-container-stats`.
+The `kubelet-stats` monitor was previously deprecated by the vendor, in favor of `kubelet-metrics`.
+The `docker-container-stats` monitor is the one affected by dockershim removal.
+Do not use the `docker-container-stats` with container runtimes other than Docker Engine.
+
+How to migrate from dockershim-dependent agent:
+1. Remove `docker-container-stats` from the list of [configured monitors](https://github.com/signalfx/signalfx-agent/blob/main/docs/monitor-config.md).
+   Note, keeping this monitor enabled with non-dockershim runtime will result in incorrect metrics
+   being reported when docker is installed on node and no metrics when docker is not installed.
+2. [Enable and configure `kubelet-metrics`](https://github.com/signalfx/signalfx-agent/blob/main/docs/monitors/kubelet-metrics.md) monitor.
+
+{{< note >}}
+The set of collected metrics will change. Review your alerting rules and dashboards.
+{{< /note >}}
+
+The Pod accessing Docker may be named something like:
+
+- `signalfx-agent`
+-->
+SignalFx Smart Agent（已弃用）在 Kubernetes 集群上使用了多种不同的监视器，
+包括 `kubernetes-cluster`，`kubelet-stats/kubelet-metrics`，`docker-container-stats`。
+`kubelet-stats` 监视器此前已被供应商所弃用，现支持 `kubelet-metrics`。
+`docker-container-stats` 监视器受 dockershim 移除的影响。
+不要为 `docker-container-stats` 监视器使用 Docker Engine 之外的运行时。
+
+如何从依赖 dockershim 的代理迁移：
+1. 从[所配置的监视器](https://github.com/signalfx/signalfx-agent/blob/main/docs/monitor-config.md)中移除 `docker-container-stats`。
+   注意，若节点上已经安装了 Docker，在非 dockershim 环境中启用此监视器后会导致报告错误的指标；
+   如果节点未安装 Docker，则无法获得指标。
+2. [启用和配置 `kubelet-metrics`](https://github.com/signalfx/signalfx-agent/blob/main/docs/monitors/kubelet-metrics.md) 监视器。
+
+{{< note >}}
+收集的指标会发生变化。具体请查看你的告警规则和仪表盘。
+{{< /note >}}
+
+名字中包含以下字符串的 Pod 可能访问 Docker：
+- `signalfx-agent`
+
+### Yahoo Kubectl Flame
+
+<!--
+Flame does not support container runtimes other than Docker. See
+[https://github.com/yahoo/kubectl-flame/issues/51](https://github.com/yahoo/kubectl-flame/issues/51)
+-->
+Flame 不支持 Docker 以外的容器运行时，具体可见 [https://github.com/yahoo/kubectl-flame/issues/51](https://github.com/yahoo/kubectl-flame/issues/51)
+
diff --git a/content/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/troubleshooting-cni-plugin-related-errors.md b/content/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/troubleshooting-cni-plugin-related-errors.md
new file mode 100644
index 0000000000..d7b6e3174d
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/migrating-from-dockershim/troubleshooting-cni-plugin-related-errors.md
@@ -0,0 +1,251 @@
+---
+title: 排查 CNI 插件相关的错误
+content_type: task
+weight: 10
+---
+<!--
+title: Troubleshooting CNI plugin-related errors
+content_type: task
+reviewers:
+- mikebrow
+- divya-mohan0209
+weight: 10
+-->
+
+<!-- overview -->
+
+<!--
+To avoid CNI plugin-related errors, verify that you are using or upgrading to a
+container runtime that has been tested to work correctly with your version of
+Kubernetes.
+-->
+
+为了避免 CNI 插件相关的错误，需要验证你正在使用或升级到一个经过测试的容器运行时，
+该容器运行时能够在你的 Kubernetes 版本上正常工作。
+
+<!--
+## About the "Incompatible CNI versions" and "Failed to destroy network for sandbox" errors
+-->
+
+## 关于 "Incompatible CNI versions" 和 "Failed to destroy network for sandbox" 错误   {#about-the-incompatible-cni-versions-and-failed-to-destroy-network-for-sandbox-errors} 
+
+<!--
+Service issues exist for pod CNI network setup and tear down in containerd
+v1.6.0-v1.6.3 when the CNI plugins have not been upgraded and/or the CNI config
+version is not declared in the CNI config files. The containerd team reports, "these issues are resolved in containerd v1.6.4."
+With containerd v1.6.0-v1.6.3, if you do not upgrade the CNI plugins and/or
+declare the CNI config version, you might encounter the following "Incompatible
+CNI versions" or "Failed to destroy network for sandbox" error conditions.
+-->
+
+在 containerd v1.6.0-v1.6.3 中，当配置或清除 Pod CNI 网络时，如果 CNI 插件没有升级和/或
+CNI 配置文件中没有声明 CNI 配置版本时，会出现服务问题。containerd 团队报告说：
+“这些问题在 containerd v1.6.4 中得到了解决。”
+
+在使用 containerd v1.6.0-v1.6.3 时，如果你不升级 CNI 插件和/或声明 CNI 配置版本，
+你可能会遇到以下 "Incompatible CNI versions" 或 "Failed to destroy network for sandbox"
+错误状况。
+
+<!--
+### Incompatible CNI versions error
+-->
+
+### Incompatible CNI versions 错误   {#incompatible-cni-versions-error}
+
+<!--
+If the version of your CNI plugin does not correctly match the plugin version in
+the config because the config version is later than the plugin version, the
+containerd log will likely show an error message on startup of a pod similar
+to:
+-->
+
+如果因为配置版本比插件版本新，导致你的 CNI 插件版本与配置中的插件版本无法正确匹配时，
+在启动 Pod 时，containerd 日志可能会显示类似的错误信息：
+
+```
+incompatible CNI versions; config is \"1.0.0\", plugin supports [\"0.1.0\" \"0.2.0\" \"0.3.0\" \"0.3.1\" \"0.4.0\"]"
+```
+
+<!--
+To fix this issue, [update your CNI plugins and CNI config files](#updating-your-cni-plugins-and-cni-config-files).
+-->
+
+为了解决这个问题，需要[更新你的 CNI 插件和 CNI 配置文件](#updating-your-cni-plugins-and-cni-config-files)。
+
+<!--
+### Failed to destroy network for sandbox error
+-->
+
+### Failed to destroy network for sandbox 错误   {#failed-to-destroy-network-for-sandbox-error} 
+
+<!--
+If the version of the plugin is missing in the CNI plugin config, the pod may
+run. However, stopping the pod generates an error similar to:
+-->
+
+如果 CNI 插件配置中未给出插件的版本，
+Pod 可能可以运行。但是，停止 Pod 时会产生类似于以下错误：
+
+```
+ERRO[2022-04-26T00:43:24.518165483Z] StopPodSandbox for "b" failed
+error="failed to destroy network for sandbox \"bbc85f891eaf060c5a879e27bba9b6b06450210161dfdecfbb2732959fb6500a\": invalid version \"\": the version is empty"
+```
+
+<!--
+This error leaves the pod in the not-ready state with a network namespace still
+attached. To recover from this problem, [edit the CNI config file](#updating-your-cni-plugins-and-cni-config-files) to add
+the missing version information. The next attempt to stop the pod should
+be successful.
+-->
+
+此错误使 Pod 处于未就绪状态，且仍然挂接到某网络名字空间上。
+为修复这一问题，[编辑 CNI 配置文件](#updating-your-cni-plugins-and-cni-config-files)以添加缺失的版本信息。
+下一次尝试停止 Pod 应该会成功。
+
+<!--
+### Updating your CNI plugins and CNI config files
+-->
+
+### 更新你的 CNI 插件和 CNI 配置文件   {#updating-your-cni-plugins-and-cni-config-files}
+
+<!--
+If you're using containerd v1.6.0-v1.6.3 and encountered "Incompatible CNI
+versions" or "Failed to destroy network for sandbox" errors, consider updating
+your CNI plugins and editing the CNI config files.
+
+Here's an overview of the typical steps for each node:
+-->
+
+如果你使用 containerd v1.6.0-v1.6.3 并遇到 "Incompatible CNI versions" 或者
+"Failed to destroy network for sandbox" 错误，考虑更新你的 CNI 插件并编辑 CNI 配置文件。
+
+以下是针对各节点要执行的典型步骤的概述：
+
+<!--
+1. [Safely drain and cordon the
+node](/docs/tasks/administer-cluster/safely-drain-node/).
+-->
+
+1. [安全地腾空并隔离节点](/zh-cn/docs/tasks/administer-cluster/safely-drain-node/)。
+
+<!--
+2. After stopping your container runtime and kubelet services, perform the
+following upgrade operations:
+  - If you're running CNI plugins, upgrade them to the latest version.
+  - If you're using non-CNI plugins, replace them with CNI plugins. Use the
+  latest version of the plugins.
+  - Update the plugin configuration file to specify or match a version of the
+  CNI specification that the plugin supports, as shown in the following ["An
+  example containerd configuration
+  file"](#an-example-containerd-configuration-file) section.
+  - For `containerd`, ensure that you have installed the latest version (v1.0.0
+  or later) of the CNI loopback plugin.
+  - Upgrade node components (for example, the kubelet) to Kubernetes v1.24
+  - Upgrade to or install the most current version of the container runtime.
+-->
+
+2. 停止容器运行时和 kubelet 服务后，执行以下升级操作：
+  - 如果你正在运行 CNI 插件，请将它们升级到最新版本。
+  - 如果你使用的是非 CNI 插件，请将它们替换为 CNI 插件，并使用最新版本的插件。
+  - 更新插件配置文件以指定或匹配 CNI 规范支持的插件版本，
+    如后文["containerd 配置文件示例"](#an-example-containerd-configuration-file)章节所示。
+  - 对于 `containerd`，请确保你已安装 CNI loopback 插件的最新版本（v1.0.0 或更高版本）。
+  - 将节点组件（例如 kubelet）升级到 Kubernetes v1.24
+  - 升级到或安装最新版本的容器运行时。
+
+<!--
+3. Bring the node back into your cluster by restarting your container runtime
+and kubelet. Uncordon the node (`kubectl uncordon <nodename>`).
+-->
+
+3. 通过重新启动容器运行时和 kubelet 将节点重新加入到集群。取消节点隔离（`kubectl uncordon <nodename>`）。
+
+<!--
+## An example containerd configuration file
+-->
+
+## containerd 配置文件示例   {#an-example-containerd-configuration-file}
+
+<!--
+The following example shows a configuration for `containerd` runtime v1.6.x,
+which supports a recent version of the CNI specification (v1.0.0).
+Please see the documentation from your plugin and networking provider for
+further instructions on configuring your system.
+-->
+
+以下示例显示了 `containerd` 运行时 v1.6.x 的配置，
+它支持最新版本的 CNI 规范（v1.0.0）。
+请参阅你的插件和网络提供商的文档，以获取有关你系统配置的进一步说明。
+
+<!--
+On Kubernetes, containerd runtime adds a loopback interface, `lo`, to pods as a
+default behavior. The containerd runtime configures the loopback interface via a
+CNI plugin, `loopback`. The `loopback` plugin is distributed as part of the
+`containerd` release packages that have the `cni` designation. `containerd`
+v1.6.0 and later includes a CNI v1.0.0-compatible loopback plugin as well as
+other default CNI plugins. The configuration for the loopback plugin is done
+internally by containerd, and is set to use CNI v1.0.0. This also means that the
+version of the `loopback` plugin must be v1.0.0 or later when this newer version
+`containerd` is started.
+-->
+
+在 Kubernetes 中，作为其默认行为，containerd 运行时为 Pod 添加一个本地回路接口，`lo`。
+containerd 运行时通过 CNI 插件 `loopback` 配置本地回路接口。  
+`loopback` 插件作为 `containerd` 发布包的一部分，扮演 `cni` 角色。
+`containerd` v1.6.0 及更高版本包括与 CNI v1.0.0 兼容的 loopback 插件以及其他默认 CNI 插件。
+loopback 插件的配置由 containerd 内部完成， 并被设置为使用 CNI v1.0.0。
+这也意味着当这个更新版本的 `containerd` 启动时，`loopback` 插件的版本必然是 v1.0.0 或更高版本。
+
+<!--
+The following bash command generates an example CNI config. Here, the 1.0.0
+value for the config version is assigned to the `cniVersion` field for use when
+`containerd` invokes the CNI bridge plugin.
+-->
+
+以下 Bash 命令生成一个 CNI 配置示例。这里，`cniVersion` 字段被设置为配置版本值 1.0.0，
+以供 `containerd` 调用 CNI 桥接插件时使用。
+
+```bash
+cat << EOF | tee /etc/cni/net.d/10-containerd-net.conflist
+{
+ "cniVersion": "1.0.0",
+ "name": "containerd-net",
+ "plugins": [
+   {
+     "type": "bridge",
+     "bridge": "cni0",
+     "isGateway": true,
+     "ipMasq": true,
+     "promiscMode": true,
+     "ipam": {
+       "type": "host-local",
+       "ranges": [
+         [{
+           "subnet": "10.88.0.0/16"
+         }],
+         [{
+           "subnet": "2001:db8:4860::/64"
+         }]
+       ],
+       "routes": [
+         { "dst": "0.0.0.0/0" },
+         { "dst": "::/0" }
+       ]
+     }
+   },
+   {
+     "type": "portmap",
+     "capabilities": {"portMappings": true}
+   }
+ ]
+}
+EOF
+```
+
+<!--
+Update the IP address ranges in the preceding example with ones that are based
+on your use case and network addressing plan.
+-->
+
+基于你的用例和网络地址规划，将前面示例中的 IP 地址范围更新为合适的值。
+
diff --git a/content/zh/docs/tasks/administer-cluster/namespaces-walkthrough.md b/content/zh-cn/docs/tasks/administer-cluster/namespaces-walkthrough.md
similarity index 92%
rename from content/zh/docs/tasks/administer-cluster/namespaces-walkthrough.md
rename to content/zh-cn/docs/tasks/administer-cluster/namespaces-walkthrough.md
index 7fbf132dcf..bf3bd8088b 100644
--- a/content/zh/docs/tasks/administer-cluster/namespaces-walkthrough.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/namespaces-walkthrough.md
@@ -26,7 +26,7 @@ It does this by providing the following:
 -->
 名字空间通过以下方式实现这点：
 
-1. 为[名字](/zh/docs/concepts/overview/working-with-objects/names/)设置作用域.
+1. 为[名字](/zh-cn/docs/concepts/overview/working-with-objects/names/)设置作用域.
 2. 为集群中的部分资源关联鉴权和策略的机制。
 
 <!--
@@ -36,7 +36,7 @@ This example demonstrates how to use Kubernetes namespaces to subdivide your clu
 -->
 使用多个名字空间是可选的。
 
-此示例演示了如何使用 Kubernetes 名字空间细分群集。
+此示例演示了如何使用 Kubernetes 名字空间细分集群。
 
 ## {{% heading "prerequisites" %}}
 
@@ -56,10 +56,10 @@ This example assumes the following:
 
 此示例作如下假设：
 
-1. 你已拥有一个[配置好的 Kubernetes 集群](/zh/docs/setup/)。
-2. 你已对 Kubernetes 的 _[Pods](/zh/docs/concepts/workloads/pods/)_、
-   _[Services](/zh/docs/concepts/services-networking/service/)_ 和
-   _[Deployments](/zh/docs/concepts/workloads/controllers/deployment/)_
+1. 你已拥有一个[配置好的 Kubernetes 集群](/zh-cn/docs/setup/)。
+2. 你已对 Kubernetes 的 _[Pods](/zh-cn/docs/concepts/workloads/pods/)_、
+   _[Services](/zh-cn/docs/concepts/services-networking/service/)_ 和
+   _[Deployments](/zh-cn/docs/concepts/workloads/controllers/deployment/)_
    有基本理解。
 
 <!--
@@ -68,7 +68,7 @@ This example assumes the following:
 By default, a Kubernetes cluster will instantiate a default namespace when provisioning the cluster to hold the default set of Pods,
 Services, and Deployments used by the cluster.
 -->
-1. 理解默认名字空间
+## 理解默认名字空间
 
 默认情况下，Kubernetes 集群会在配置集群时实例化一个默认名字空间，用以存放集群所使用的默认
 Pod、Service 和 Deployment 集合。
@@ -345,17 +345,17 @@ Apply the manifest to create a Deployment
 应用清单文件来创建 Deployment。
 
 <!--
-We have just created a deployment whose replica size is 2 that is running the pod called `snowflake` with a basic container that just serves the hostname.
+We have created a deployment whose replica size is 2 that is running the pod called `snowflake` with a basic container that serves the hostname.
 -->
-我们刚刚创建了一个副本大小为 2 的 Deployment，该 Deployment 运行名为 `snowflake` 的 Pod，
+我们创建了一个副本大小为 2 的 Deployment，该 Deployment 运行名为 `snowflake` 的 Pod，
 其中包含一个仅提供主机名服务的基本容器。
 
 ```shell
 kubectl get deployment
 ```
 ```
-NAME        DESIRED   CURRENT   UP-TO-DATE   AVAILABLE   AGE
-snowflake   2         2         2            2           2m
+NAME         READY   UP-TO-DATE   AVAILABLE   AGE
+snowflake    2/2     2            2           2m
 ```
 
 ```shell
@@ -402,8 +402,8 @@ kubectl get deployment
 ```
 
 ```
-NAME      DESIRED   CURRENT   UP-TO-DATE   AVAILABLE   AGE
-cattle    5         5         5            5           10s
+NAME         READY   UP-TO-DATE   AVAILABLE   AGE
+cattle       5/5     5            5           10s
 ```
 
 ```shell
diff --git a/content/zh/docs/tasks/administer-cluster/namespaces.md b/content/zh-cn/docs/tasks/administer-cluster/namespaces.md
similarity index 79%
rename from content/zh/docs/tasks/administer-cluster/namespaces.md
rename to content/zh-cn/docs/tasks/administer-cluster/namespaces.md
index e985dacfb4..358a4092ce 100644
--- a/content/zh/docs/tasks/administer-cluster/namespaces.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/namespaces.md
@@ -23,10 +23,10 @@ This page shows how to view, work in, and delete {{< glossary_tooltip text="name
 * Have an [existing Kubernetes cluster](/docs/setup/).
 * You have a basic understanding of Kubernetes {{< glossary_tooltip text="Pods" term_id="pod" >}}, {{< glossary_tooltip term_id="service" text="Services" >}}, and {{< glossary_tooltip text="Deployments" term_id="deployment" >}}.
 -->
-* 你已拥有一个[配置好的 Kubernetes 集群](/zh/docs/setup/)。
-* 你已对 Kubernetes 的 {{< glossary_tooltip text="Pods" term_id="pod" >}} , 
-  {{< glossary_tooltip term_id="service" text="Services" >}} , 和
-  {{< glossary_tooltip text="Deployments" term_id="deployment" >}} 有基本理解。
+* 你已拥有一个[配置好的 Kubernetes 集群](/zh-cn/docs/setup/)。
+* 你已对 Kubernetes 的 {{< glossary_tooltip text="Pod" term_id="pod" >}}、
+  {{< glossary_tooltip term_id="service" text="Service" >}} 和
+  {{< glossary_tooltip text="Deployment" term_id="deployment" >}} 有基本理解。
 
 <!-- steps -->
 
@@ -91,16 +91,18 @@ Resource Limits
 
 <!-- Resource quota tracks aggregate usage of resources in the *Namespace* and allows cluster operators
 to define *Hard* resource usage limits that a *Namespace* may consume. -->
-资源配额跟踪并聚合 *Namespace* 中资源的使用情况，并允许集群运营者定义 *Namespace* 可能消耗的 *Hard* 资源使用限制。
+资源配额跟踪并聚合 **Namespace** 中资源的使用情况，并允许集群运营者定义 **Namespace** 可能消耗的 **Hard** 资源使用限制。
 
-<!-- A limit range defines min/max constraints on the amount of resources a single entity can consume in
+<!-- 
+A limit range defines min/max constraints on the amount of resources a single entity can consume in
 a *Namespace*.
 
-See [Admission control: Limit Range](https://git.k8s.io/community/contributors/design-proposals/resource-management/admission_control_limit_range.md) -->
+See [Admission control: Limit Range](https://git.k8s.io/design-proposals-archive/resource-management/admission_control_limit_range.md)
+-->
 
-限制区间定义了单个实体在一个 *Namespace* 中可使用的最小/最大资源量约束。
+限制区间定义了单个实体在一个 **Namespace** 中可使用的最小/最大资源量约束。
 
-参阅 [准入控制: 限制区间](https://git.k8s.io/community/contributors/design-proposals/resource-management/admission_control_limit_range.md)
+参阅 [准入控制：限制区间](https://git.k8s.io/design-proposals-archive/resource-management/admission_control_limit_range.md)。
 
 <!--
 A namespace can be in one of two phases:
@@ -108,14 +110,16 @@ A namespace can be in one of two phases:
 * `Active` the namespace is in use
 * `Terminating` the namespace is being deleted, and can not be used for new objects
 
-See the [design doc](https://git.k8s.io/community/contributors/design-proposals/architecture/namespaces.md#phases) for more details. -->
+For more details, see [Namespace](/docs/reference/kubernetes-api/cluster-resources/namespace-v1/)
+in the API reference.
+-->
 
 名字空间可以处于下列两个阶段中的一个:
 
 * `Active` 名字空间正在被使用中
 * `Terminating` 名字空间正在被删除，且不能被用于新对象。
 
-参见[设计文档](https://git.k8s.io/community/contributors/design-proposals/architecture/namespaces.md#phases) 查看更多细节。
+更多细节，参阅 API 参考中的[命名空间](/zh-cn/docs/reference/kubernetes-api/cluster-resources/namespace-v1/)。
 
 <!-- ## Creating a new namespace -->
 ## 创建名字空间
@@ -158,16 +162,19 @@ The name of your namespace must be a valid
 [DNS label](/docs/concepts/overview/working-with-objects/names#dns-label-names).
 -->
 请注意，名字空间的名称必须是一个合法的
-[DNS 标签](/zh/docs/concepts/overview/working-with-objects/names#dns-label-names)。
+[DNS 标签](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-label-names)。
 
 <!--
 There's an optional field `finalizers`, which allows observables to purge resources whenever the namespace is deleted. Keep in mind that if you specify a nonexistent finalizer, the namespace will be created but will get stuck in the `Terminating` state if the user tries to delete it.
 
-More information on `finalizers` can be found in the namespace [design doc](https://git.k8s.io/community/contributors/design-proposals/architecture/namespaces.md#finalizers).
+More information on `finalizers` can be found in the namespace [design doc](https://git.k8s.io/design-proposals-archive/architecture/namespaces.md#finalizers).
 -->
-可选字段 `finalizers` 允许观察者们在名字空间被删除时清除资源。记住如果指定了一个不存在的终结器，名字空间仍会被创建，但如果用户试图删除它，它将陷入 `Terminating` 状态。
+可选字段 `finalizers` 允许观察者们在名字空间被删除时清除资源。
+记住如果指定了一个不存在的终结器，名字空间仍会被创建，
+但如果用户试图删除它，它将陷入 `Terminating` 状态。
 
-更多有关 `finalizers` 的信息请查阅 [设计文档](https://git.k8s.io/community/contributors/design-proposals/architecture/namespaces.md#finalizers) 中名字空间部分。
+更多有关 `finalizers` 的信息请查阅
+[设计文档](https://git.k8s.io/design-proposals-archive/architecture/namespaces.md#finalizers)中名字空间部分。
 
 <!-- ## Deleting a namespace -->
 ## 删除名字空间
@@ -183,7 +190,7 @@ kubectl delete namespaces <insert-some-namespace-name>
 
 <!-- This deletes _everything_ under the namespace! -->
 {{< warning >}}
-这会删除名字空间下的 _所有内容_ ！
+这会删除名字空间下的 **所有内容** ！
 {{< /warning >}}
 
 <!-- This delete is asynchronous, so for a time you will see the namespace in the `Terminating` state. -->
@@ -204,13 +211,13 @@ kubectl delete namespaces <insert-some-namespace-name>
 1. 理解 default 名字空间
 
    默认情况下，Kubernetes 集群会在配置集群时实例化一个 default 名字空间，用以存放集群所使用的默认
-   Pods、Services 和 Deployments 集合。
+   Pod、Service 和 Deployment 集合。
 
    <!--
    Assuming you have a fresh cluster, you can introspect the available namespace's by doing the following:
    -->
 
-   假设你有一个新的集群，你可以通过执行以下操作来内省可用的名字空间
+   假设你有一个新的集群，你可以通过执行以下操作来内省可用的名字空间：
 
    ```shell
    kubectl get namespaces
@@ -243,8 +250,8 @@ kubectl delete namespaces <insert-some-namespace-name>
    and go, and the restrictions on who can or cannot modify resources
    are relaxed to enable agile development.
    -->
-   开发团队希望在集群中维护一个空间，以便他们可以查看用于构建和运行其应用程序的 Pods、Services
-   和 Deployments 列表。在这个空间里，Kubernetes 资源被自由地加入或移除，
+   开发团队希望在集群中维护一个空间，以便他们可以查看用于构建和运行其应用程序的 Pod、Service
+   和 Deployment 列表。在这个空间里，Kubernetes 资源被自由地加入或移除，
    对谁能够或不能修改资源的限制被放宽，以实现敏捷开发。
    
    <!--
@@ -253,13 +260,13 @@ kubectl delete namespaces <insert-some-namespace-name>
    Pods, Services, and Deployments that run the production site.
    -->
    运维团队希望在集群中维护一个空间，以便他们可以强制实施一些严格的规程，
-   对谁可以或不可以操作运行生产站点的 Pods、Services 和 Deployments 集合进行控制。
+   对谁可以或不可以操作运行生产站点的 Pod、Service 和 Deployment 集合进行控制。
    
    <!--
    One pattern this organization could follow is to partition the Kubernetes cluster into
    two namespaces: `development` and `production`.
    -->
-   该组织可以遵循的一种模式是将 Kubernetes 集群划分为两个名字空间：development 和 production。
+   该组织可以遵循的一种模式是将 Kubernetes 集群划分为两个名字空间：`development` 和 `production`。
    
    <!-- Let's create two new namespaces to hold our work. -->
    让我们创建两个新的名字空间来保存我们的工作。
@@ -292,14 +299,14 @@ kubectl delete namespaces <insert-some-namespace-name>
    ```
 
 <!-- 3. Create pods in each namespace -->
-3. 在每个名字空间中创建 pod
+3. 在每个名字空间中创建 Pod
 
    <!--
    A Kubernetes namespace provides the scope for Pods, Services, and Deployments in the cluster.
 
    Users interacting with one namespace do not see the content in another namespace.
    -->
-   Kubernetes 名字空间为集群中的 Pods、Services 和 Deployments 提供了作用域。
+   Kubernetes 名字空间为集群中的 Pod、Service 和 Deployment 提供了作用域。
    
    与一个名字空间交互的用户不会看到另一个名字空间中的内容。
    
@@ -312,11 +319,11 @@ kubectl delete namespaces <insert-some-namespace-name>
    ```
 
    <!--
-   We have just created a deployment whose replica size is 2 that is running the pod
-   called `snowflake` with a basic container that just serves the hostname.
+   We have created a deployment whose replica size is 2 that is running the pod
+   called `snowflake` with a basic container that serves the hostname.
    -->
-   我们刚刚创建了一个副本个数为 2 的 Deployment，运行名为 `snowflake` 的
-   Pod，其中包含一个仅负责提供主机名的基本容器。
+   我们创建了一个副本个数为 2 的 Deployment，运行名为 `snowflake` 的
+   Pod，其中包含一个负责提供主机名的基本容器。
 
    ```shell
    kubectl get deployment -n=development
@@ -344,8 +351,8 @@ kubectl delete namespaces <insert-some-namespace-name>
    看起来还不错，开发人员能够做他们想做的事，而且他们不必担心会影响到
    `production` 名字空间下面的内容。
 
-   让我们切换到 `production` 名字空间，展示一下一个名字空间中的资源是如何对
-   另一个名字空间隐藏的。
+   让我们切换到 `production` 名字空间，
+   展示一下一个名字空间中的资源是如何对另一个名字空间隐藏的。
 
    名字空间 `production` 应该是空的，下面的命令应该不会返回任何东西。
 
@@ -385,7 +392,7 @@ kubectl delete namespaces <insert-some-namespace-name>
 <!--
 At this point, it should be clear that the resources users create in one namespace are hidden from the other namespace.
 -->
-此时，应该很清楚的展示了用户在一个名字空间中创建的资源对另一个名字空间是隐藏的。
+此时，应该很清楚地展示了用户在一个名字空间中创建的资源对另一个名字空间是隐藏的。
 
 <!--
 As the policy support in Kubernetes evolves, we will extend this scenario to show how you can provide different
@@ -406,7 +413,7 @@ A single cluster should be able to satisfy the needs of multiple users or groups
 单个集群应该能满足多个用户及用户组的需求（以下称为 “用户社区”）。
 
 <!-- Kubernetes _namespaces_ help different projects, teams, or customers to share a Kubernetes cluster. -->
-Kubernetes _名字空间_ 帮助不同的项目、团队或客户去共享 Kubernetes 集群。
+Kubernetes **名字空间** 帮助不同的项目、团队或客户去共享 Kubernetes 集群。
 
 <!--
 It does this by providing the following:
@@ -416,7 +423,7 @@ It does this by providing the following:
 -->
 名字空间通过以下方式实现这点：
 
-1. 为[名字](/zh/docs/concepts/overview/working-with-objects/names/)设置作用域.
+1. 为[名字](/zh-cn/docs/concepts/overview/working-with-objects/names/)设置作用域.
 2. 为集群中的部分资源关联鉴权和策略的机制。
 
 <!--
@@ -438,9 +445,9 @@ Each user community has its own:
 -->
 每个用户社区都有自己的：
 
-1. 资源（pods、服务、 副本控制器等等）
+1. 资源（Pod、服务、副本控制器等等）
 2. 策略（谁能或不能在他们的社区里执行操作）
-3. 约束（该社区允许多少配额，等等）
+3. 约束（该社区允许多少配额等等）
 
 <!--
 A cluster operator may create a Namespace for each unique user community.
@@ -476,7 +483,7 @@ Use cases include:
 1.  作为集群运营者, 我希望能在单个集群上支持多个用户社区。
 2.  作为集群运营者，我希望将集群分区的权限委派给这些社区中的受信任用户。
 3.  作为集群运营者，我希望能限定每个用户社区可使用的资源量，以限制对使用同一集群的其他用户社区的影响。
-4.  作为群集用户，我希望与我的用户社区相关的资源进行交互，而与其他用户社区在该集群上执行的操作无关。
+4.  作为集群用户，我希望与我的用户社区相关的资源进行交互，而与其他用户社区在该集群上执行的操作无关。
 
 <!--
 ## Understanding namespaces and DNS
@@ -486,15 +493,15 @@ Use cases include:
 <!--
 When you create a [Service](/docs/concepts/services-networking/service/), it creates a corresponding [DNS entry](/docs/concepts/services-networking/dns-pod-service/).
 This entry is of the form `<service-name>.<namespace-name>.svc.cluster.local`, which means
-that if a container just uses `<service-name>` it will resolve to the service which
+that if a container uses `<service-name>` it will resolve to the service which
 is local to a namespace.  This is useful for using the same configuration across
 multiple namespaces such as Development, Staging and Production.  If you want to reach
 across namespaces, you need to use the fully qualified domain name (FQDN).
 -->
-当你创建[服务](/zh/docs/concepts/services-networking/service/)时，Kubernetes
-会创建相应的 [DNS 条目](/zh/docs/concepts/services-networking/dns-pod-service/)。
+当你创建[服务](/zh-cn/docs/concepts/services-networking/service/)时，Kubernetes
+会创建相应的 [DNS 条目](/zh-cn/docs/concepts/services-networking/dns-pod-service/)。
 此条目的格式为 `<服务名称>.<名字空间名称>.svc.cluster.local`。
-这意味着如果容器只使用 `<服务名称>`，它将解析为名字空间本地的服务。
+这意味着如果容器使用 `<服务名称>`，它将解析为名字空间本地的服务。
 这对于在多个名字空间（如开发、暂存和生产）中使用相同的配置非常有用。
 如果要跨名字空间访问，则需要使用完全限定的域名（FQDN）。
 
@@ -503,10 +510,10 @@ across namespaces, you need to use the fully qualified domain name (FQDN).
 <!--
 * Learn more about [setting the namespace preference](/docs/concepts/overview/working-with-objects/namespaces/#setting-the-namespace-preference).
 * Learn more about [setting the namespace for a request](/docs/concepts/overview/working-with-objects/namespaces/#setting-the-namespace-for-a-request)
-* See [namespaces design](https://github.com/kubernetes/community/blob/{{< param "githubbranch" >}}/contributors/design-proposals/architecture/namespaces.md).
+* See [namespaces design](https://git.k8s.io/design-proposals-archive/architecture/namespaces.md).
 -->
 
-* 进一步了解[设置名字空间偏好](/zh/docs/concepts/overview/working-with-objects/namespaces/#setting-the-namespace-preference)
-* 进一步了解[设置请求的名字空间](/zh/docs/concepts/overview/working-with-objects/namespaces/#setting-the-namespace-for-a-request)
-* 参阅[名字空间的设计文档](https://github.com/kubernetes/community/blob/{{< param "githubbranch" >}}/contributors/design-proposals/architecture/namespaces.md)
+* 进一步了解[设置名字空间偏好](/zh-cn/docs/concepts/overview/working-with-objects/namespaces/#setting-the-namespace-preference)
+* 进一步了解[设置请求的名字空间](/zh-cn/docs/concepts/overview/working-with-objects/namespaces/#setting-the-namespace-for-a-request)
+* 参阅[名字空间的设计文档](https://git.k8s.io/design-proposals-archive/architecture/namespaces.md)
 
diff --git a/content/zh-cn/docs/tasks/administer-cluster/network-policy-provider/_index.md b/content/zh-cn/docs/tasks/administer-cluster/network-policy-provider/_index.md
new file mode 100644
index 0000000000..df2232c8dc
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/network-policy-provider/_index.md
@@ -0,0 +1,8 @@
+---
+title: 安装网络策略驱动
+weight: 30
+---
+<!--
+title: Install a Network Policy Provider
+weight: 30
+-->
diff --git a/content/zh-cn/docs/tasks/administer-cluster/network-policy-provider/antrea-network-policy.md b/content/zh-cn/docs/tasks/administer-cluster/network-policy-provider/antrea-network-policy.md
new file mode 100644
index 0000000000..29870498a5
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/network-policy-provider/antrea-network-policy.md
@@ -0,0 +1,49 @@
+---
+title: 使用 Antrea 提供 NetworkPolicy
+content_type: task
+weight: 10
+---
+<!--
+---
+title: Use Antrea for NetworkPolicy
+content_type: task
+weight: 10
+---
+-->
+
+<!-- overview -->
+<!--
+This page shows how to install and use Antrea CNI plugin on Kubernetes.
+For background on Project Antrea, read the [Introduction to Antrea](https://antrea.io/docs/).
+-->
+本页展示了如何在 kubernetes 中安装和使用 Antrea CNI 插件。
+要了解 Antrea 项目的背景，请阅读 [Antrea 介绍](https://antrea.io/docs/)。
+
+## {{% heading "prerequisites" %}}
+
+<!--
+You need to have a Kubernetes cluster. Follow the
+[kubeadm getting started guide](/docs/reference/setup-tools/kubeadm/) to bootstrap one.
+-->
+你需要拥有一个 kuernetes 集群。
+遵循 [kubeadm 入门指南](/zh-cn/docs/reference/setup-tools/kubeadm/)自行创建一个。
+
+<!-- steps -->
+
+<!--
+## Deploying Antrea with kubeadm
+
+Follow [Getting Started](https://github.com/vmware-tanzu/antrea/blob/main/docs/getting-started.md) guide to deploy Antrea for kubeadm.
+-->
+## 使用 kubeadm 部署 Antrea
+遵循[入门](https://github.com/vmware-tanzu/antrea/blob/main/docs/getting-started.md)指南
+为 kubeadm 部署 Antrea 。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+Once your cluster is running, you can follow the [Declare Network Policy](/docs/tasks/administer-cluster/declare-network-policy/) to try out Kubernetes NetworkPolicy.
+-->
+一旦你的集群已经运行，你可以遵循 
+[声明网络策略](/zh-cn/docs/tasks/administer-cluster/declare-network-policy/)
+来尝试 Kubernetes NetworkPolicy。
\ No newline at end of file
diff --git a/content/zh/docs/tasks/administer-cluster/network-policy-provider/calico-network-policy.md b/content/zh-cn/docs/tasks/administer-cluster/network-policy-provider/calico-network-policy.md
similarity index 89%
rename from content/zh/docs/tasks/administer-cluster/network-policy-provider/calico-network-policy.md
rename to content/zh-cn/docs/tasks/administer-cluster/network-policy-provider/calico-network-policy.md
index 2b5e260c5c..8d4d3b13dd 100644
--- a/content/zh/docs/tasks/administer-cluster/network-policy-provider/calico-network-policy.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/network-policy-provider/calico-network-policy.md
@@ -29,9 +29,9 @@ Decide whether you want to deploy a [cloud](#creating-a-calico-cluster-with-goog
 **先决条件**: [gcloud](https://cloud.google.com/sdk/docs/quickstarts)
 
 <!--
-1.  To launch a GKE cluster with Calico, just include the `--enable-network-policy` flag.
+1.  To launch a GKE cluster with Calico, include the `--enable-network-policy` flag.
 -->
-1.  启动一个带有 Calico 的 GKE 集群，只需加上参数 `--enable-network-policy`。
+1.  启动一个带有 Calico 的 GKE 集群，需要加上参数 `--enable-network-policy`。
 
     **语法**
     ```shell
@@ -73,6 +73,6 @@ To get a local single-host Calico cluster in fifteen minutes using kubeadm, refe
 <!--
 Once your cluster is running, you can follow the [Declare Network Policy](/docs/tasks/administer-cluster/declare-network-policy/) to try out Kubernetes NetworkPolicy.
 -->
-集群运行后，您可以按照[声明网络策略](/zh/docs/tasks/administer-cluster/declare-network-policy/)
+集群运行后，你可以按照[声明网络策略](/zh-cn/docs/tasks/administer-cluster/declare-network-policy/)
 去尝试使用 Kubernetes NetworkPolicy。
 
diff --git a/content/zh/docs/tasks/administer-cluster/network-policy-provider/cilium-network-policy.md b/content/zh-cn/docs/tasks/administer-cluster/network-policy-provider/cilium-network-policy.md
similarity index 61%
rename from content/zh/docs/tasks/administer-cluster/network-policy-provider/cilium-network-policy.md
rename to content/zh-cn/docs/tasks/administer-cluster/network-policy-provider/cilium-network-policy.md
index d75203b71e..051ac153d1 100644
--- a/content/zh/docs/tasks/administer-cluster/network-policy-provider/cilium-network-policy.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/network-policy-provider/cilium-network-policy.md
@@ -33,25 +33,25 @@ For background on Cilium, read the [Introduction to Cilium](https://docs.cilium.
 ## Deploying Cilium on Minikube for Basic Testing
 
 To get familiar with Cilium easily you can follow the
-[Cilium Kubernetes Getting Started Guide](https://docs.cilium.io/en/stable/gettingstarted/minikube/)
+[Cilium Kubernetes Getting Started Guide](https://docs.cilium.io/en/stable/gettingstarted/k8s-install-default/)
 to perform a basic DaemonSet installation of Cilium in minikube.
 
-To start minikube, minimal version required is >= v1.3.1, run the with the
+To start minikube, minimal version required is >= v1.5.2, run the with the
 following arguments:
 -->
 ## 在 Minikube 上部署 Cilium 用于基本测试
 
 为了轻松熟悉 Cilium 你可以根据
-[Cilium Kubernetes 入门指南](https://docs.cilium.io/en/stable/gettingstarted/minikube/)
+[Cilium Kubernetes 入门指南](https://docs.cilium.io/en/stable/gettingstarted/k8s-install-default/s)
 在 minikube 中执行一个 cilium 的基本 DaemonSet 安装。
 
-要启动 minikube，需要的最低版本为 1.3.1，使用下面的参数运行：
+要启动 minikube，需要的最低版本为 1.5.2，使用下面的参数运行：
 
 ```shell
 minikube version
 ```
 ```
-minikube version: v1.3.1
+minikube version: v1.5.2
 ```
 
 ```shell
@@ -59,36 +59,45 @@ minikube start --network-plugin=cni --memory=4096
 ```
 
 <!--
-Mount the BPF filesystem:
+For minikube you can install Cilium using its CLI tool. Cilium will
+automatically detect the cluster configuration and will install the appropriate
+components for a successful installation:
 -->
-挂载 BPF 文件系统：
+对于 minikube 你可以使用 Cilium 的 CLI 工具安装它。
+Cilium 将自动检测集群配置并为成功的集群部署选择合适的组件。
 
 ```shell
-minikube ssh -- sudo mount bpffs -t bpf /sys/fs/bpf
+curl -LO https://github.com/cilium/cilium-cli/releases/latest/download/cilium-linux-amd64.tar.gz
+sudo tar xzvfC cilium-linux-amd64.tar.gz /usr/local/bin
+rm cilium-linux-amd64.tar.gz
+cilium install
 ```
-
-<!--
-For minikube you can deploy this simple ''all-in-one'' YAML file that includes
-DaemonSet configurations for Cilium as well as appropriate RBAC settings:
--->
-在 minikube 环境中，你可以部署下面的"一体化" YAML 文件，其中包含 Cilium
-的 DaemonSet 配置以及适当的 RBAC 配置：
-
-
-```shell
-kubectl create -f https://raw.githubusercontent.com/cilium/cilium/v1.8/install/kubernetes/quick-install.yaml
 ```
-
-```
-configmap/cilium-config created
-serviceaccount/cilium created
-serviceaccount/cilium-operator created
-clusterrole.rbac.authorization.k8s.io/cilium created
-clusterrole.rbac.authorization.k8s.io/cilium-operator created
-clusterrolebinding.rbac.authorization.k8s.io/cilium created
-clusterrolebinding.rbac.authorization.k8s.io/cilium-operator created
-daemonset.apps/cilium create
-deployment.apps/cilium-operator created
+🔮 Auto-detected Kubernetes kind: minikube
+✨ Running "minikube" validation checks
+✅ Detected minikube version "1.20.0"
+ℹ️  Cilium version not set, using default version "v1.10.0"
+🔮 Auto-detected cluster name: minikube
+🔮 Auto-detected IPAM mode: cluster-pool
+🔮 Auto-detected datapath mode: tunnel
+🔑 Generating CA...
+2021/05/27 02:54:44 [INFO] generate received request
+2021/05/27 02:54:44 [INFO] received CSR
+2021/05/27 02:54:44 [INFO] generating key: ecdsa-256
+2021/05/27 02:54:44 [INFO] encoded CSR
+2021/05/27 02:54:44 [INFO] signed certificate with serial number 48713764918856674401136471229482703021230538642
+🔑 Generating certificates for Hubble...
+2021/05/27 02:54:44 [INFO] generate received request
+2021/05/27 02:54:44 [INFO] received CSR
+2021/05/27 02:54:44 [INFO] generating key: ecdsa-256
+2021/05/27 02:54:44 [INFO] encoded CSR
+2021/05/27 02:54:44 [INFO] signed certificate with serial number 3514109734025784310086389188421560613333279574
+🚀 Creating Service accounts...
+🚀 Creating Cluster roles...
+🚀 Creating ConfigMap...
+🚀 Creating Agent DaemonSet...
+🚀 Creating Operator Deployment...
+⌛ Waiting for Cilium to be installed...
 ```
 
 <!--
@@ -126,15 +135,15 @@ this list of Pods run:
 部署使用 Cilium 的集群会添加 Pods 到 `kube-system` 命名空间。要查看 Pod 列表，运行：
 
 ```shell
-kubectl get pods --namespace=kube-system
+kubectl get pods --namespace=kube-system -l k8s-app=cilium
 ```
 
 <!-- You'll see a list of Pods similar to this: -->
 你将看到像这样的 Pods 列表：
 
 ```console
-NAME            READY   STATUS    RESTARTS   AGE
-cilium-6rxbd    1/1     Running   0          1m
+NAME           READY   STATUS    RESTARTS   AGE
+cilium-kkdhz   1/1     Running   0          3m23s
 ...
 ```
 
@@ -155,7 +164,7 @@ Have fun, and if you have questions, contact us using the
 [Cilium Slack Channel](https://cilium.herokuapp.com/).
 -->
 集群运行后，你可以按照
-[声明网络策略](/zh/docs/tasks/administer-cluster/declare-network-policy/)
+[声明网络策略](/zh-cn/docs/tasks/administer-cluster/declare-network-policy/)
 试用基于 Cilium 的 Kubernetes NetworkPolicy。
 玩得开心，如果你有任何疑问，请到 [Cilium Slack 频道](https://cilium.herokuapp.com/)
 联系我们。
diff --git a/content/zh/docs/tasks/administer-cluster/network-policy-provider/kube-router-network-policy.md b/content/zh-cn/docs/tasks/administer-cluster/network-policy-provider/kube-router-network-policy.md
similarity index 95%
rename from content/zh/docs/tasks/administer-cluster/network-policy-provider/kube-router-network-policy.md
rename to content/zh-cn/docs/tasks/administer-cluster/network-policy-provider/kube-router-network-policy.md
index 5e7ae8f98d..0c4cc7a8e1 100644
--- a/content/zh/docs/tasks/administer-cluster/network-policy-provider/kube-router-network-policy.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/network-policy-provider/kube-router-network-policy.md
@@ -37,6 +37,6 @@ NetworkPolicy 和 Pod 的变化，根据策略指示配置 iptables 规则和 ip
 Once you have installed the Kube-router addon, you can follow the [Declare Network Policy](/docs/tasks/administer-cluster/declare-network-policy/) to try out Kubernetes NetworkPolicy.
 -->
 在你安装了 kube-router 插件后，可以参考
-[声明网络策略](/zh/docs/tasks/administer-cluster/declare-network-policy/)
+[声明网络策略](/zh-cn/docs/tasks/administer-cluster/declare-network-policy/)
 去尝试使用 Kubernetes NetworkPolicy。
 
diff --git a/content/zh/docs/tasks/administer-cluster/network-policy-provider/romana-network-policy.md b/content/zh-cn/docs/tasks/administer-cluster/network-policy-provider/romana-network-policy.md
similarity index 90%
rename from content/zh/docs/tasks/administer-cluster/network-policy-provider/romana-network-policy.md
rename to content/zh-cn/docs/tasks/administer-cluster/network-policy-provider/romana-network-policy.md
index 50771fa68a..6331be6572 100644
--- a/content/zh/docs/tasks/administer-cluster/network-policy-provider/romana-network-policy.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/network-policy-provider/romana-network-policy.md
@@ -24,7 +24,7 @@ This page shows how to use Romana for NetworkPolicy.
 <!--
 Complete steps 1, 2, and 3 of  the [kubeadm getting started guide](/docs/getting-started-guides/kubeadm/).
 -->
-完成 [kubeadm 入门指南](/zh/docs/reference/setup-tools/kubeadm/)中的 1、2、3 步。
+完成 [kubeadm 入门指南](/zh-cn/docs/reference/setup-tools/kubeadm/)中的 1、2、3 步。
 
 <!-- steps -->
 <!--
@@ -59,6 +59,6 @@ To apply network policies use one of the following:
 Once you have installed Romana, you can follow the [Declare Network Policy](/docs/tasks/administer-cluster/declare-network-policy/) to try out Kubernetes NetworkPolicy.
  -->
 Romana 安装完成后，你可以按照
-[声明网络策略](/zh/docs/tasks/administer-cluster/declare-network-policy/)
+[声明网络策略](/zh-cn/docs/tasks/administer-cluster/declare-network-policy/)
 去尝试使用 Kubernetes NetworkPolicy。
 
diff --git a/content/zh/docs/tasks/administer-cluster/network-policy-provider/weave-network-policy.md b/content/zh-cn/docs/tasks/administer-cluster/network-policy-provider/weave-network-policy.md
similarity index 95%
rename from content/zh/docs/tasks/administer-cluster/network-policy-provider/weave-network-policy.md
rename to content/zh-cn/docs/tasks/administer-cluster/network-policy-provider/weave-network-policy.md
index c1d08c31c8..b4415a72dd 100644
--- a/content/zh/docs/tasks/administer-cluster/network-policy-provider/weave-network-policy.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/network-policy-provider/weave-network-policy.md
@@ -26,7 +26,7 @@ You need to have a Kubernetes cluster. Follow the
 [kubeadm getting started guide](/docs/reference/setup-tools/kubeadm/) to bootstrap one.
  -->
 你需要拥有一个 Kubernetes 集群。按照
-[kubeadm 入门指南](/zh/docs/reference/setup-tools/kubeadm/)
+[kubeadm 入门指南](/zh-cn/docs/reference/setup-tools/kubeadm/)
 来启动一个。
 
 
@@ -92,7 +92,7 @@ Each Node has a weave Pod, and all Pods are `Running` and `2/2 READY`. (`2/2` me
 Once you have installed the Weave Net addon, you can follow the [Declare Network Policy](/docs/tasks/administer-cluster/declare-network-policy/) to try out Kubernetes NetworkPolicy. If you have any question, contact us at [#weave-community on Slack or Weave User Group](https://github.com/weaveworks/weave#getting-help).
  -->
 安装 Weave Net 插件后，你可以参考
-[声明网络策略](/zh/docs/tasks/administer-cluster/declare-network-policy/)
+[声明网络策略](/zh-cn/docs/tasks/administer-cluster/declare-network-policy/)
 来试用 Kubernetes NetworkPolicy。
 如果你有任何疑问，请通过
 [Slack 上的 #weave-community 频道或者 Weave 用户组](https://github.com/weaveworks/weave#getting-help)
diff --git a/content/zh-cn/docs/tasks/administer-cluster/nodelocaldns.md b/content/zh-cn/docs/tasks/administer-cluster/nodelocaldns.md
new file mode 100644
index 0000000000..8ed18bcb36
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/nodelocaldns.md
@@ -0,0 +1,348 @@
+---
+title: 在 Kubernetes 集群中使用 NodeLocal DNSCache
+content_type: task
+---
+<!--
+reviewers:
+- bowei
+- zihongz
+title: Using NodeLocal DNSCache in Kubernetes Clusters
+content_type: task
+-->
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.18" state="stable" >}}
+
+<!--
+This page provides an overview of NodeLocal DNSCache feature in Kubernetes.
+-->
+本页概述了 Kubernetes 中的 NodeLocal DNSCache 功能。
+
+## {{% heading "prerequisites" %}}
+
+ {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+
+ <!-- steps -->
+
+<!--
+## Introduction
+-->
+## 引言
+
+<!--
+NodeLocal DNSCache improves Cluster DNS performance by running a DNS caching agent
+on cluster nodes as a DaemonSet. In today's architecture, Pods in 'ClusterFirst' DNS mode
+reach out to a kube-dns `serviceIP` for DNS queries. This is translated to a
+kube-dns/CoreDNS endpoint via iptables rules added by kube-proxy.
+With this new architecture, Pods will reach out to the DNS caching agent
+running on the same node, thereby avoiding iptables DNAT rules and connection tracking.
+The local caching agent will query kube-dns service for cache misses of cluster
+hostnames ("`cluster.local`" suffix by default).
+-->
+NodeLocal DNSCache 通过在集群节点上作为 DaemonSet 运行 DNS 缓存代理来提高集群 DNS 性能。
+在当今的体系结构中，运行在 'ClusterFirst' DNS 模式下的 Pod 可以连接到 kube-dns `serviceIP` 进行 DNS 查询。
+通过 kube-proxy 添加的 iptables 规则将其转换为 kube-dns/CoreDNS 端点。
+借助这种新架构，Pods 将可以访问在同一节点上运行的 DNS 缓存代理，从而避免 iptables DNAT 规则和连接跟踪。
+本地缓存代理将查询 kube-dns 服务以获取集群主机名的缓存缺失（默认为 "`cluster.local`" 后缀）。
+
+<!--
+## Motivation
+-->
+## 动机
+
+<!--
+* With the current DNS architecture, it is possible that Pods with the highest DNS QPS
+  have to reach out to a different node, if there is no local kube-dns/CoreDNS instance.
+  Having a local cache will help improve the latency in such scenarios.
+-->
+* 使用当前的 DNS 体系结构，如果没有本地 kube-dns/CoreDNS 实例，则具有最高 DNS QPS
+  的 Pod 可能必须延伸到另一个节点。
+  在这种场景下，拥有本地缓存将有助于改善延迟。
+
+<!--
+* Skipping iptables DNAT and connection tracking will help reduce
+  [conntrack races](https://github.com/kubernetes/kubernetes/issues/56903)
+  and avoid UDP DNS entries filling up conntrack table.
+-->
+* 跳过 iptables DNAT 和连接跟踪将有助于减少
+  [conntrack 竞争](https://github.com/kubernetes/kubernetes/issues/56903)
+  并避免 UDP DNS 条目填满 conntrack 表。
+
+<!--
+* Connections from the local caching agent to kube-dns service can be upgraded to TCP.
+  TCP conntrack entries will be removed on connection close in contrast with
+  UDP entries that have to timeout
+  ([default](https://www.kernel.org/doc/Documentation/networking/nf_conntrack-sysctl.txt)
+  `nf_conntrack_udp_timeout` is 30 seconds)
+-->
+* 从本地缓存代理到 kube-dns 服务的连接可以升级为 TCP 。
+  TCP conntrack 条目将在连接关闭时被删除，相反 UDP 条目必须超时
+  （[默认](https://www.kernel.org/doc/Documentation/networking/nf_conntrack-sysctl.txt)
+  `nf_conntrack_udp_timeout` 是 30 秒）。
+
+<!--
+* Upgrading DNS queries from UDP to TCP would reduce tail latency attributed to
+  dropped UDP packets and DNS timeouts usually up to 30s (3 retries + 10s timeout).
+  Since the nodelocal cache listens for UDP DNS queries, applications don't need to be changed.
+-->
+* 将 DNS 查询从 UDP 升级到 TCP 将减少由于被丢弃的 UDP 包和 DNS 超时而带来的尾部等待时间；
+  这类延时通常长达 30 秒（3 次重试 + 10 秒超时）。
+  由于 nodelocal 缓存监听 UDP DNS 查询，应用不需要变更。
+
+<!--
+* Metrics & visibility into DNS requests at a node level.
+-->
+* 在节点级别对 DNS 请求的度量和可见性。
+
+<!--
+* Negative caching can be re-enabled, thereby reducing the number of queries for the kube-dns service.
+-->
+* 可以重新启用负缓存，从而减少对 kube-dns 服务的查询数量。
+
+<!--
+## Architecture Diagram
+-->
+## 架构图
+
+<!--
+This is the path followed by DNS Queries after NodeLocal DNSCache is enabled:
+-->
+启用 NodeLocal DNSCache 之后，DNS 查询所遵循的路径如下：
+
+<!--
+{{< figure src="/images/docs/nodelocaldns.svg" alt="NodeLocal DNSCache flow" title="Nodelocal DNSCache flow" caption="This image shows how NodeLocal DNSCache handles DNS queries." class="diagram-medium" >}}
+-->
+{{< figure src="/images/docs/nodelocaldns.svg" alt="NodeLocal DNSCache 流" title="Nodelocal DNSCache 流" caption="此图显示了 NodeLocal DNSCache 如何处理 DNS 查询。" class="diagram-medium" >}}
+
+<!--
+## Configuration
+-->
+## 配置
+
+<!--
+{{< note >}}
+The local listen IP address for NodeLocal DNSCache can be any address that
+can be guaranteed to not collide with any existing IP in your cluster.
+It's recommended to use an address with a local scope, for example,
+from the 'link-local' range '169.254.0.0/16' for IPv4 or from the
+'Unique Local Address' range in IPv6 'fd00::/8'.
+{{< /note >}}
+-->
+{{< note >}} 
+NodeLocal DNSCache 的本地侦听 IP 地址可以是任何地址，只要该地址不和你的集群里现有的 IP 地址发生冲突。
+推荐使用本地范围内的地址，例如，IPv4 链路本地区段 '169.254.0.0/16' 内的地址，
+或者 IPv6 唯一本地地址区段 'fd00::/8' 内的地址。
+{{< /note >}}
+
+<!--
+This feature can be enabled using the following steps:
+-->
+可以使用以下步骤启动此功能：
+
+<!--
+* Prepare a manifest similar to the sample
+  [`nodelocaldns.yaml`](https://github.com/kubernetes/kubernetes/blob/master/cluster/addons/dns/nodelocaldns/nodelocaldns.yaml)
+  and save it as `nodelocaldns.yaml.`
+-->
+* 根据示例 [`nodelocaldns.yaml`](https://github.com/kubernetes/kubernetes/blob/master/cluster/addons/dns/nodelocaldns/nodelocaldns.yaml) 
+  准备一个清单，把它保存为 `nodelocaldns.yaml`。
+
+<!--
+* If using IPv6, the CoreDNS configuration file needs to enclose all the IPv6 addresses
+  into square brackets if used in 'IP:Port' format.
+  If you are using the sample manifest from the previous point, this will require you to modify
+  [the configuration line L70](https://github.com/kubernetes/kubernetes/blob/b2ecd1b3a3192fbbe2b9e348e095326f51dc43dd/cluster/addons/dns/nodelocaldns/nodelocaldns.yaml#L70)
+  like this: "`health [__PILLAR__LOCAL__DNS__]:8080`"
+-->
+* 如果使用 IPv6，在使用 'IP:Port' 格式的时候需要把 CoreDNS 配置文件里的所有 IPv6 地址用方括号包起来。
+  如果你使用上述的示例清单，需要把
+  [配置行 L70](https://github.com/kubernetes/kubernetes/blob/b2ecd1b3a3192fbbe2b9e348e095326f51dc43dd/cluster/addons/dns/nodelocaldns/nodelocaldns.yaml#L70) 
+  修改为： "`health [__PILLAR__LOCAL__DNS__]:8080`"。
+
+<!--
+* Substitute the variables in the manifest with the right values:
+
+  ```shell
+  kubedns=`kubectl get svc kube-dns -n kube-system -o jsonpath={.spec.clusterIP}`
+  domain=<cluster-domain>
+  localdns=<node-local-address>
+  ```
+
+  `<cluster-domain>` is "`cluster.local`" by default. `<node-local-address>` is the
+  local listen IP address chosen for NodeLocal DNSCache.
+-->
+* 把清单里的变量更改为正确的值：
+
+  ```shell
+  kubedns=`kubectl get svc kube-dns -n kube-system -o jsonpath={.spec.clusterIP}`
+  domain=<cluster-domain>
+  localdns=<node-local-address>
+  ```
+
+  `<cluster-domain>` 的默认值是 "`cluster.local`"。`<node-local-address>` 是
+  NodeLocal DNSCache 选择的本地侦听 IP 地址。
+
+<!--
+  * If kube-proxy is running in IPTABLES mode:
+
+    ``` bash
+    sed -i "s/__PILLAR__LOCAL__DNS__/$localdns/g; s/__PILLAR__DNS__DOMAIN__/$domain/g; s/__PILLAR__DNS__SERVER__/$kubedns/g" nodelocaldns.yaml
+    ```
+
+    `__PILLAR__CLUSTER__DNS__` and `__PILLAR__UPSTREAM__SERVERS__` will be populated by
+    the `node-local-dns` pods.
+    In this mode, the `node-local-dns` pods listen on both the kube-dns service IP
+    as well as `<node-local-address>`, so pods can look up DNS records using either IP address.
+-->
+  * 如果 kube-proxy 运行在 IPTABLES 模式：
+
+    ``` bash
+    sed -i "s/__PILLAR__LOCAL__DNS__/$localdns/g; s/__PILLAR__DNS__DOMAIN__/$domain/g; s/__PILLAR__DNS__SERVER__/$kubedns/g" nodelocaldns.yaml
+    ```
+
+    node-local-dns Pods 会设置 `__PILLAR__CLUSTER__DNS__` 和 `__PILLAR__UPSTREAM__SERVERS__`。
+    在此模式下, node-local-dns Pods 会同时侦听 kube-dns 服务的 IP 地址和
+    `<node-local-address>` 的地址，以便 Pods 可以使用其中任何一个 IP 地址来查询 DNS 记录。
+
+<!--
+  * If kube-proxy is running in IPVS mode:
+
+    ``` bash
+    sed -i "s/__PILLAR__LOCAL__DNS__/$localdns/g; s/__PILLAR__DNS__DOMAIN__/$domain/g; s/,__PILLAR__DNS__SERVER__//g; s/__PILLAR__CLUSTER__DNS__/$kubedns/g" nodelocaldns.yaml
+    ```
+
+    In this mode, the `node-local-dns` pods listen only on `<node-local-address>`.
+    The `node-local-dns` interface cannot bind the kube-dns cluster IP since the
+    interface used for IPVS loadbalancing already uses this address.
+    `__PILLAR__UPSTREAM__SERVERS__` will be populated by the node-local-dns pods.
+-->
+  * 如果 kube-proxy 运行在 IPVS 模式：
+
+    ``` bash
+    sed -i "s/__PILLAR__LOCAL__DNS__/$localdns/g; s/__PILLAR__DNS__DOMAIN__/$domain/g; s/,__PILLAR__DNS__SERVER__//g; s/__PILLAR__CLUSTER__DNS__/$kubedns/g" nodelocaldns.yaml
+    ```
+
+    在此模式下，node-local-dns Pods 只会侦听 `<node-local-address>` 的地址。
+    node-local-dns 接口不能绑定 kube-dns 的集群 IP 地址，因为 IPVS 负载均衡
+    使用的接口已经占用了该地址。
+    node-local-dns Pods 会设置 `__PILLAR__UPSTREAM__SERVERS__`。
+
+<!--
+* Run `kubectl create -f nodelocaldns.yaml`
+
+* If using kube-proxy in IPVS mode, `--cluster-dns` flag to kubelet needs to be modified
+  to use `<node-local-address>` that NodeLocal DNSCache is listening on.
+  Otherwise, there is no need to modify the value of the `--cluster-dns` flag,
+  since NodeLocal DNSCache listens on both the kube-dns service IP as well as
+  `<node-local-address>`.
+-->
+* 运行 `kubectl create -f nodelocaldns.yaml`
+
+* 如果 kube-proxy 运行在 IPVS 模式，需要修改 kubelet 的 `--cluster-dns` 参数
+  NodeLocal DNSCache 正在侦听的 `<node-local-address>` 地址。
+  否则，不需要修改 `--cluster-dns` 参数，因为 NodeLocal DNSCache 会同时侦听
+  kube-dns 服务的 IP 地址和 `<node-local-address>` 的地址。
+
+<!--
+Once enabled, the `node-local-dns` Pods will run in the `kube-system` namespace
+on each of the cluster nodes. This Pod runs [CoreDNS](https://github.com/coredns/coredns)
+in cache mode, so all CoreDNS metrics exposed by the different plugins will
+be available on a per-node basis.
+
+You can disable this feature by removing the DaemonSet, using `kubectl delete -f <manifest>`.
+You should also revert any changes you made to the kubelet configuration.
+-->
+启用后，`node-local-dns` Pods 将在每个集群节点上的 `kube-system` 名字空间中运行。
+此 Pod 在缓存模式下运行 [CoreDNS](https://github.com/coredns/coredns)，
+因此每个节点都可以使用不同插件公开的所有 CoreDNS 指标。
+
+如果要禁用该功能，你可以使用 `kubectl delete -f <manifest>` 来删除 DaemonSet。
+你还应该回滚你对 kubelet 配置所做的所有改动。
+
+<!--
+## StubDomains and Upstream server Configuration
+-->
+## StubDomains 和上游服务器配置
+
+<!--
+StubDomains and upstream servers specified in the `kube-dns` ConfigMap in the `kube-system` namespace
+are automatically picked up by `node-local-dns` pods. The ConfigMap contents need to follow the format
+shown in [the example](/docs/tasks/administer-cluster/dns-custom-nameservers/#example-1).
+The `node-local-dns` ConfigMap can also be modified directly with the stubDomain configuration
+in the Corefile format. Some cloud providers might not allow modifying `node-local-dns` ConfigMap directly.
+In those cases, the `kube-dns` ConfigMap can be updated.
+-->
+`node-local-dns` Pod 能够自动读取 `kube-system` 名字空间中 `kube-dns` ConfigMap
+中保存的 StubDomains 和上游服务器信息。ConfigMap 中的内容需要遵从
+[此示例](/zh-cn/docs/tasks/administer-cluster/dns-custom-nameservers/#example-1)
+中所给的格式。
+`node-local-dns` ConfigMap 也可被直接修改，使用 Corefile 格式设置 stubDomain 配置。
+某些云厂商可能不允许直接修改 `node-local-dns` ConfigMap 的内容。
+在这种情况下，可以更新 `kube-dns` ConfigMap。
+
+<!--
+## Setting memory limits
+-->
+## 设置内存限制
+
+<!--
+The `node-local-dns` Pods use memory for storing cache entries and processing queries.
+Since they do not watch Kubernetes objects, the cluster size or the number of Services/Endpoints
+do not directly affect memory usage. Memory usage is influenced by the DNS query pattern.
+From [CoreDNS docs](https://github.com/coredns/deployment/blob/master/kubernetes/Scaling_CoreDNS.md),
+> The default cache size is 10000 entries, which uses about 30 MB when completely filled.
+-->
+`node-local-dns` Pod 使用内存来保存缓存项并处理查询。
+由于它们并不监视 Kubernetes 对象变化，集群规模或者 Service/Endpoints
+的数量都不会直接影响内存用量。内存用量会受到 DNS 查询模式的影响。
+根据 [CoreDNS 文档](https://github.com/coredns/deployment/blob/master/kubernetes/Scaling_CoreDNS.md),
+
+> The default cache size is 10000 entries, which uses about 30 MB when completely filled.
+> （默认的缓存大小是 10000 个表项，当完全填充时会使用约 30 MB 内存）
+
+<!--
+This would be the memory usage for each server block (if the cache gets completely filled).
+Memory usage can be reduced by specifying smaller cache sizes.
+
+The number of concurrent queries is linked to the memory demand, because each extra
+goroutine used for handling a query requires an amount of memory. You can set an upper limit
+using the `max_concurrent` option in the forward plugin.
+-->
+这一数值是（缓存完全被填充时）每个服务器块的内存用量。
+通过设置小一点的缓存大小可以降低内存用量。
+
+并发查询的数量会影响内存需求，因为用来处理查询请求而创建的 Go 协程都需要一定量的内存。
+你可以在 forward 插件中使用 `max_concurrent` 选项设置并发查询数量上限。
+
+<!--
+If a `node-local-dns` Pod attempts to use more memory than is available (because of total system
+resources, or because of a configured
+[resource limit](/docs/concepts/configuration/manage-resources-containers/)), the operating system
+may shut down that pod's container.
+If this happens, the container that is terminated (“OOMKilled”) does not clean up the custom
+packet filtering rules that it previously added during startup.
+The `node-local-dns` container should get restarted (since managed as part of a DaemonSet), but this
+will lead to a brief DNS downtime each time that the container fails: the packet filtering rules direct
+DNS queries to a local Pod that is unhealthy.
+-->
+如果一个 `node-local-dns` Pod 尝试使用的内存超出可提供的内存量
+（因为系统资源总量的，或者所配置的[资源约束](/zh-cn/docs/concepts/configuration/manage-resources-containers/)）的原因，
+操作系统可能会关闭这一 Pod 的容器。
+发生这种情况时，被终止的（"OOMKilled"）容器不会清理其启动期间所添加的定制包过滤规则。
+该 `node-local-dns` 容器应该会被重启（因其作为 DaemonSet 的一部分被管理），
+但因上述原因可能每次容器失败时都会导致 DNS 有一小段时间不可用：
+the packet filtering rules direct DNS queries to a local Pod that is unhealthy
+（包过滤器规则将 DNS 查询转发到本地某个不健康的 Pod）。
+
+<!--
+You can determine a suitable memory limit by running node-local-dns pods without a limit and
+measuring the peak usage. You can also set up and use a
+[VerticalPodAutoscaler](https://github.com/kubernetes/autoscaler/tree/master/vertical-pod-autoscaler)
+in _recommender mode_, and then check its recommendations.
+-->
+通过不带限制地运行 `node-local-dns` Pod 并度量其内存用量峰值，你可以为其确定一个合适的内存限制值。
+你也可以安装并使用一个运行在 “Recommender Mode（建议者模式）” 的
+[VerticalPodAutoscaler](https://github.com/kubernetes/autoscaler/tree/master/vertical-pod-autoscaler)，
+并查看该组件输出的建议信息。
+
diff --git a/content/zh/docs/tasks/administer-cluster/quota-api-object.md b/content/zh-cn/docs/tasks/administer-cluster/quota-api-object.md
similarity index 72%
rename from content/zh/docs/tasks/administer-cluster/quota-api-object.md
rename to content/zh-cn/docs/tasks/administer-cluster/quota-api-object.md
index f868d3bc5f..ac8cabc067 100644
--- a/content/zh/docs/tasks/administer-cluster/quota-api-object.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/quota-api-object.md
@@ -34,7 +34,7 @@ object.
 Create a namespace so that the resources you create in this exercise are
 isolated from the rest of your cluster.
 -->
-## 创建命名空间
+## 创建命名空间    {#create-a-namespace}
 
 创建一个命名空间以便本例中创建的资源和集群中的其余部分相隔离。
 
@@ -47,7 +47,7 @@ kubectl create namespace quota-object-example
 
 Here is the configuration file for a ResourceQuota object:
 -->
-## 创建 ResourceQuota
+## 创建 ResourceQuota    {#create-a-resourcequota}
 
 下面是一个 ResourceQuota 对象的配置文件：
 
@@ -96,7 +96,7 @@ status:
 
 Here is the configuration file for a PersistentVolumeClaim object:
 -->
-## 创建 PersistentVolumeClaim
+## 创建 PersistentVolumeClaim    {#create-a-persistentvolumeclaim}
 
 下面是一个 PersistentVolumeClaim 对象的配置文件：
 
@@ -135,7 +135,7 @@ pvc-quota-demo   Pending
 
 Here is the configuration file for a second PersistentVolumeClaim:
 -->
-## 尝试创建第二个 PersistentVolumeClaim
+## 尝试创建第二个 PersistentVolumeClaim    {#attempt-to-create-a-second-persistentvolumeclaim}
 
 下面是第二个 PersistentVolumeClaim 的配置文件：
 
@@ -147,8 +147,9 @@ Attempt to create the second PersistentVolumeClaim:
 尝试创建第二个 PersistentVolumeClaim：
 
 ```shell
-kubectl create -f https://k8s.io/examples/admin/resource/quota-objects-pvc-2.yaml --namespace=quota-object-example
+kubectl apply -f https://k8s.io/examples/admin/resource/quota-objects-pvc-2.yaml --namespace=quota-object-example
 ```
+
 <!--
 The output shows that the second PersistentVolumeClaim was not created,
 because it would have exceeded the quota for the namespace.
@@ -167,12 +168,15 @@ used: persistentvolumeclaims=1, limited: persistentvolumeclaims=1
 These are the strings used to identify API resources that can be constrained
 by quotas:
 -->
-## 说明
+## 说明    {#notes}
 
 下面这些字符串可被用来标识那些能被配额限制的 API 资源：
 
 <table>
+<!--
 <tr><th>String</th><th>API Object</th></tr>
+-->
+<tr><th>字符串</th><th>API 对象</th></tr>
 <tr><td>"pods"</td><td>Pod</td></tr>
 <tr><td>"services"</td><td>Service</td></tr>
 <tr><td>"replicationcontrollers"</td><td>ReplicationController</td></tr>
@@ -180,8 +184,14 @@ by quotas:
 <tr><td>"secrets"</td><td>Secret</td></tr>
 <tr><td>"configmaps"</td><td>ConfigMap</td></tr>
 <tr><td>"persistentvolumeclaims"</td><td>PersistentVolumeClaim</td></tr>
+<!--
 <tr><td>"services.nodeports"</td><td>Service of type NodePort</td></tr>
+-->
+<tr><td>"services.nodeports"</td><td>NodePort 类型的 Service</td></tr>
+<!--
 <tr><td>"services.loadbalancers"</td><td>Service of type LoadBalancer</td></tr>
+-->
+<tr><td>"services.loadbalancers"</td><td>LoadBalancer 类型的 Service</td></tr>
 </table>
 
 <!--
@@ -189,7 +199,7 @@ by quotas:
 
 Delete your namespace:
 -->
-## 清理
+## 清理    {#clean-up}
 
 删除你的命名空间：
 
@@ -202,27 +212,27 @@ kubectl delete namespace quota-object-example
 <!--
 ### For cluster administrators
 
-* [Configure Default Memory Requests and Limits for a Namespace](/docs/tasks/administer-cluster/memory-default-namespace/)
+* [Configure Default Memory Requests and Limits for a Namespace](/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
 
-* [Configure Default CPU Requests and Limits for a Namespace](/docs/tasks/administer-cluster/cpu-default-namespace/)
+* [Configure Default CPU Requests and Limits for a Namespace](/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/)
 
-* [Configure Minimum and Maximum Memory Constraints for a Namespace](/docs/tasks/administer-cluster/memory-constraint-namespace/)
+* [Configure Minimum and Maximum Memory Constraints for a Namespace](/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)
 
-* [Configure Minimum and Maximum CPU Constraints for a Namespace](/docs/tasks/administer-cluster/cpu-constraint-namespace/)
+* [Configure Minimum and Maximum CPU Constraints for a Namespace](/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
 
-* [Configure Memory and CPU Quotas for a Namespace](/docs/tasks/administer-cluster/quota-memory-cpu-namespace/)
+* [Configure Memory and CPU Quotas for a Namespace](/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
 
-* [Configure a Pod Quota for a Namespace](/docs/tasks/administer-cluster/quota-pod-namespace/)
+* [Configure a Pod Quota for a Namespace](/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace/)
 -->
 
-### 集群管理员参考
+### 集群管理员参考    {#for-cluster-administrators}
 
-* [为命名空间配置默认的内存请求和限制](/zh/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
-* [为命名空间配置默认的 CPU 请求和限制](/zh/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/)
-* [为命名空间配置内存的最小和最大限制](/zh/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)
-* [为命名空间配置 CPU 的最小和最大限制](/zh/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
-* [为命名空间配置 CPU 和内存配额](/zh/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
-* [为命名空间配置 Pod 配额](/zh/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace/)
+* [为命名空间配置默认的内存请求和限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
+* [为命名空间配置默认的 CPU 请求和限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/)
+* [为命名空间配置内存的最小和最大限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)
+* [为命名空间配置 CPU 的最小和最大限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
+* [为命名空间配置 CPU 和内存配额](/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
+* [为命名空间配置 Pod 配额](/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace/)
 
 <!--
 ### For app developers
@@ -234,9 +244,9 @@ kubectl delete namespace quota-object-example
 * [Configure Quality of Service for Pods](/docs/tasks/configure-pod-container/quality-service-pod/)
 -->
 
-### 应用开发者参考
+### 应用开发者参考    {#for-app-developers}
 
-* [为容器和 Pod 分配内存资源](/zh/docs/tasks/configure-pod-container/assign-memory-resource/)
-* [为容器和 Pod 分配 CPU 资源](/zh/docs/tasks/configure-pod-container/assign-cpu-resource/)
-* [为 Pod 配置服务质量](/zh/docs/tasks/configure-pod-container/quality-service-pod/)
+* [为容器和 Pod 分配内存资源](/zh-cn/docs/tasks/configure-pod-container/assign-memory-resource/)
+* [为容器和 Pod 分配 CPU 资源](/zh-cn/docs/tasks/configure-pod-container/assign-cpu-resource/)
+* [为 Pod 配置服务质量](/zh-cn/docs/tasks/configure-pod-container/quality-service-pod/)
 
diff --git a/content/zh-cn/docs/tasks/administer-cluster/reconfigure-kubelet.md b/content/zh-cn/docs/tasks/administer-cluster/reconfigure-kubelet.md
new file mode 100644
index 0000000000..63dcd3ebf0
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/reconfigure-kubelet.md
@@ -0,0 +1,90 @@
+---
+title: 在运行中的集群上重新配置节点的 kubelet
+content_type: task
+min-kubernetes-server-version: v1.11
+---
+
+<!--
+reviewers:
+- mtaufen
+- dawnchen
+title: Reconfigure a Node's Kubelet in a Live Cluster
+content_type: task
+-->
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.22" state="deprecated" >}}
+
+<!--
+{{< caution >}}
+The [Dynamic Kubelet Configuration](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/281-dynamic-kubelet-configuration)
+feature is deprecated in 1.22 and removed in 1.24.
+Please switch to alternative means distributing configuration to the Nodes of your cluster.
+{{< /caution >}}
+-->
+{{< caution >}}
+[动态 kubelet 配置](https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/281-dynamic-kubelet-configuration)
+功能在 Kubernetes 1.22 版本弃用，并在 1.24 版本中移除。
+请选择其他方法将配置分发到集群中的节点。
+{{< /caution >}}
+
+<!--
+[Dynamic Kubelet Configuration](https://github.com/kubernetes/enhancements/issues/281)
+allowed you to change the configuration of each
+{{< glossary_tooltip text="kubelet" term_id="kubelet" >}} in a running kubernetes cluster,
+by deploying a {{< glossary_tooltip text="kubelet" text="ConfigMap" term_id="configmap" >}} and configuring
+each {{< glossary_tooltip term_id="node" >}} to use it.
+-->
+[动态 kubelet 配置](https://github.com/kubernetes/enhancements/issues/281)
+允许你通过部署并配置{{< glossary_tooltip text="节点" term_id="node" >}}使用的
+{{< glossary_tooltip text="ConfigMap" term_id="configmap" >}}，
+达到更改正在运行的 Kubernetes 集群的 {{< glossary_tooltip text="kubelet" term_id="kubelet" >}}
+配置的目的。
+
+<!--
+Please find documentation on this feature in [earlier versions of documentation](https://v1-23.docs.kubernetes.io/docs/tasks/administer-cluster/reconfigure-kubelet/).
+-->
+请在[早期版本的文档](https://v1-23.docs.kubernetes.io/zh-cn/docs/tasks/administer-cluster/reconfigure-kubelet/)中寻找有关此功能的文档。
+
+<!--
+## Migrating from using Dynamic Kubelet Configuration
+
+There is no recommended replacement for this feature that works generically
+across various Kubernetes distributions. If you are using managed Kubernetes
+version, please consult with the vendor hosting Kubernetes for the best
+practices for customizing your Kubernetes. If you are using `kubeadm`, refer to
+[Configuring each kubelet in your cluster using kubeadm](/docs/setup/production-environment/tools/kubeadm/kubelet-integration/).
+-->
+## 不再使用动态 Kubelet 配置
+
+这里没有跨不同的 Kubernetes 发行版替换这个功能的建议方法。
+如果你使用托管 Kubernetes 版本，
+请咨询托管 Kubernetes 的供应商，以获得自定义 Kubernetes 的最佳实践。
+如果你使用的是 `kubeadm`，
+请参考[使用 kubeadm 配置集群中的各个 kubelet](/zh-cn/docs/setup/production-environment/tools/kubeadm/kubelet-integration/)。
+
+<!--
+In order to migrate off the Dynamic Kubelet Configuration feature, the
+alternative mechanism should be used to distribute kubelet configuration files.
+In order to apply configuration, config file must be updated and kubelet restarted.
+See the [Set Kubelet parameters via a config file](/docs/tasks/administer-cluster/kubelet-config-file/)
+for information.
+-->
+为了停止使用动态 Kubelet 配置功能，
+应该使用替代机制分发 kubelet 配置文件。
+为了使配置生效，必须更新配置文件并重新启动 kubelet。
+请参考[通过配置文件设置 Kubelet 参数](/zh-cn/docs/tasks/administer-cluster/kubelet-config-file/)。
+
+<!--
+Please note, the `DynamicKubeletConfig` feature gate cannot be set on a kubelet
+starting v1.24 as it has no effect. However, the feature gate is not removed
+from the API server or the controller manager before v1.26. This is designed for
+the control plane to support nodes with older versions of kubelets and for
+satisfying the [Kubernetes version skew policy](/releases/version-skew-policy/).
+-->
+请注意，从 v1.24 开始 `DynamicKubeletConfig` 特性门控无法在 kubelet 上设置，
+因为不会生效。在 v1.26 之前 API 服务器和控制器管理器不会移除该特性门控。
+这是专为控制面支持有旧版本 kubelet 的节点以及满足
+[Kubernetes 版本偏差策略](/zh-cn/releases/version-skew-policy/)。
+
diff --git a/content/zh/docs/tasks/administer-cluster/reserve-compute-resources.md b/content/zh-cn/docs/tasks/administer-cluster/reserve-compute-resources.md
similarity index 76%
rename from content/zh/docs/tasks/administer-cluster/reserve-compute-resources.md
rename to content/zh-cn/docs/tasks/administer-cluster/reserve-compute-resources.md
index f03e2bde30..3cd494d678 100644
--- a/content/zh/docs/tasks/administer-cluster/reserve-compute-resources.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/reserve-compute-resources.md
@@ -1,8 +1,4 @@
 ---
-reviewers:
-- vishh
-- derekwaynecarr
-- dashpole
 title: 为系统守护进程预留计算资源
 content_type: task
 min-kubernetes-server-version: 1.8
@@ -26,28 +22,27 @@ itself. Unless resources are set aside for these system daemons, pods and system
 daemons compete for resources and lead to resource starvation issues on the
 node.
 
-The `kubelet` exposes a feature named `Node Allocatable` that helps to reserve
+The `kubelet` exposes a feature named 'Node Allocatable' that helps to reserve
 compute resources for system daemons. Kubernetes recommends cluster
-administrators to configure `Node Allocatable` based on their workload density
+administrators to configure 'Node Allocatable' based on their workload density
 on each node.
 -->
 Kubernetes 的节点可以按照 `Capacity` 调度。默认情况下 pod 能够使用节点全部可用容量。
 这是个问题，因为节点自己通常运行了不少驱动 OS 和 Kubernetes 的系统守护进程。
 除非为这些系统守护进程留出资源，否则它们将与 pod 争夺资源并导致节点资源短缺问题。
 
-`kubelet` 公开了一个名为 `Node Allocatable` 的特性，有助于为系统守护进程预留计算资源。
-Kubernetes 推荐集群管理员按照每个节点上的工作负载密度配置 `Node Allocatable`。
+`kubelet` 公开了一个名为 'Node Allocatable' 的特性，有助于为系统守护进程预留计算资源。
+Kubernetes 推荐集群管理员按照每个节点上的工作负载密度配置 “Node Allocatable”。
 
 ## {{% heading "prerequisites" %}}
 
-
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 <!-- 
 Your Kubernetes server must be at or later than version 1.17 to use
 the kubelet command line option `--reserved-cpus` to set an
 [explicitly reserved CPU list](#explicitly-reserved-cpu-list).
 -->
-您的 kubernetes 服务器版本必须至少是 1.17 版本，才能使用 kubelet
+你的 kubernetes 服务器版本必须至少是 1.17 版本，才能使用 kubelet
 命令行选项 `--reserved-cpus` 设置
 [显式预留 CPU 列表](#explicitly-reserved-cpu-list)。
 
@@ -58,9 +53,9 @@ the kubelet command line option `--reserved-cpus` to set an
 
 ![node capacity](/images/docs/node-capacity.svg)
 
-`Allocatable` on a Kubernetes node is defined as the amount of compute resources
+'Allocatable' on a Kubernetes node is defined as the amount of compute resources
 that are available for pods. The scheduler does not over-subscribe
-`Allocatable`. `CPU`, `memory` and `ephemeral-storage` are supported as of now.
+'Allocatable'. 'CPU', 'memory' and 'ephemeral-storage' are supported as of now.
 
 Node Allocatable is exposed as part of `v1.Node` object in the API and as part
 of `kubectl describe node` in the CLI.
@@ -71,9 +66,9 @@ Resources can be reserved for two categories of system daemons in the `kubelet`.
 
 ![节点容量](/images/docs/node-capacity.svg)
 
-Kubernetes 节点上的 `Allocatable` 被定义为 pod 可用计算资源量。
-调度器不会超额申请 `Allocatable`。
-目前支持 `CPU`, `memory` 和 `ephemeral-storage` 这几个参数。
+Kubernetes 节点上的 'Allocatable' 被定义为 pod 可用计算资源量。
+调度器不会超额申请 'Allocatable'。
+目前支持 'CPU'、'memory' 和 'ephemeral-storage' 这几个参数。
 
 可分配的节点暴露为 API 中 `v1.Node` 对象的一部分，也是 CLI 中
 `kubectl describe node` 的一部分。
@@ -88,7 +83,7 @@ enable the new cgroup hierarchy via the `--cgroups-per-qos` flag. This flag is
 enabled by default. When enabled, the `kubelet` will parent all end-user pods
 under a cgroup hierarchy managed by the `kubelet`.
 -->
-### 启用 QoS 和 Pod 级别的 cgroups
+### 启用 QoS 和 Pod 级别的 cgroups  {#enabling-qos-and-pod-level-cgroups}
 
 为了恰当的在节点范围实施节点可分配约束，你必须通过 `--cgroups-per-qos`
 标志启用新的 cgroup 层次结构。这个标志是默认启用的。
@@ -111,10 +106,10 @@ transient slices for resources that are supported by that init system.
 Depending on the configuration of the associated container runtime,
 operators may have to choose a particular cgroup driver to ensure
 proper system behavior. For example, if operators use the `systemd`
-cgroup driver provided by the `docker` runtime, the `kubelet` must
+cgroup driver provided by the `containerd` runtime, the `kubelet` must
 be configured to use the `systemd` cgroup driver.
 -->
-### 配置 cgroup 驱动
+### 配置 cgroup 驱动  {#configuring-a-cgroup-driver}
 
 `kubelet` 支持在主机上使用 cgroup 驱动操作 cgroup 层次结构。
 驱动通过 `--cgroup-driver` 标志配置。
@@ -128,7 +123,7 @@ be configured to use the `systemd` cgroup driver.
 
 取决于相关容器运行时的配置，操作员可能需要选择一个特定的 cgroup 驱动
 来保证系统正常运行。
-例如，如果操作员使用 `docker` 运行时提供的 `systemd` cgroup 驱动时，
+例如，如果操作员使用 `containerd` 运行时提供的 `systemd` cgroup 驱动时，
 必须配置 `kubelet` 使用 `systemd` cgroup 驱动。
 
 <!--
@@ -167,12 +162,8 @@ flag.
 It is recommended that the kubernetes system daemons are placed under a top
 level control group (`runtime.slice` on systemd machines for example). Each
 system daemon should ideally run within its own child control group. Refer to
-[this
-doc](https://git.k8s.io/community/contributors/design-proposals/node/node-allocatable.md#recommended-cgroups-setup)
+[the design proposal](https://git.k8s.io/design-proposals-archive/node/node-allocatable.md#recommended-cgroups-setup)
 for more details on recommended control group hierarchy.
-
-Note that Kubelet **does not** create `--kube-reserved-cgroup` if it doesn't
-exist. Kubelet will fail if an invalid cgroup is specified.
 -->
 要选择性地对 kubernetes 系统守护进程上执行 `kube-reserved` 保护，需要把 kubelet 的
 `--kube-reserved-cgroup` 标志的值设置为 kube 守护进程的父控制组。
@@ -181,19 +172,33 @@ exist. Kubelet will fail if an invalid cgroup is specified.
 `runtime.slice`）。
 理想情况下每个系统守护进程都应该在其自己的子控制组中运行。
 请参考
-[这篇文档](https://git.k8s.io/community/contributors/design-proposals/node/node-allocatable.md#recommended-cgroups-setup)，
+[这个设计方案](https://git.k8s.io/design-proposals-archive/node/node-allocatable.md#recommended-cgroups-setup)，
 进一步了解关于推荐控制组层次结构的细节。
 
+<!--
+Note that Kubelet **does not** create `--kube-reserved-cgroup` if it doesn't
+exist. Kubelet will fail if an invalid cgroup is specified. With `systemd`
+cgroup driver, you should follow a specific pattern for the name of the cgroup you
+define: the name should be the value you set for `--kube-reserved-cgroup`,
+with `.slice` appended.
+-->
 请注意，如果 `--kube-reserved-cgroup` 不存在，Kubelet 将 **不会** 创建它。
-如果指定了一个无效的 cgroup，Kubelet 将会失败。
+如果指定了一个无效的 cgroup，Kubelet 将会失败。就 `systemd` cgroup 驱动而言，
+你要为所定义的 cgroup 设置名称时要遵循特定的模式：
+所设置的名字应该是你为 `--kube-reserved-cgroup` 所给的参数值加上 `.slice` 后缀。
 
 <!--
 ### System Reserved
 
 - **Kubelet Flag**: `--system-reserved=[cpu=100m][,][memory=100Mi][,][ephemeral-storage=1Gi][,][pid=1000]`
 - **Kubelet Flag**: `--system-reserved-cgroup=`
+-->
+### 系统预留值  {#system-reserved}
 
+- **Kubelet 标志**: `--system-reserved=[cpu=100m][,][memory=100Mi][,][ephemeral-storage=1Gi][,][pid=1000]`
+- **Kubelet 标志**: `--system-reserved-cgroup=`
 
+<!--
 `system-reserved` is meant to capture resource reservation for OS system daemons
 like `sshd`, `udev`, etc. `system-reserved` should reserve `memory` for the
 `kernel` too since `kernel` memory is not accounted to pods in Kubernetes at this time.
@@ -204,11 +209,6 @@ In addition to `cpu`, `memory`, and `ephemeral-storage`, `pid` may be
 specified to reserve the specified number of process IDs for OS system
 daemons.
 -->
-### 系统预留值  {#system-reserved}
-
-- **Kubelet 标志**: `--system-reserved=[cpu=100m][,][memory=100Mi][,][ephemeral-storage=1Gi][,][pid=1000]`
-- **Kubelet 标志**: `--system-reserved-cgroup=`
-
 `system-reserved` 用于为诸如 `sshd`、`udev` 等系统守护进程记述其资源预留值。
 `system-reserved` 也应该为 `kernel` 预留 `内存`，因为目前 `kernel`
 使用的内存并不记在 Kubernetes 的 Pod 上。
@@ -224,9 +224,6 @@ kubelet flag.
 
 It is recommended that the OS system daemons are placed under a top level
 control group (`system.slice` on systemd machines for example).
-
-Note that Kubelet **does not** create `--system-reserved-cgroup` if it doesn't
-exist. Kubelet will fail if an invalid cgroup is specified.
 -->
 要想为系统守护进程上可选地实施 `system-reserved` 约束，请指定 kubelet 的
 `--system-reserved-cgroup` 标志值为 OS 系统守护进程的父级控制组。
@@ -234,19 +231,29 @@ exist. Kubelet will fail if an invalid cgroup is specified.
 推荐将 OS 系统守护进程放在一个顶级控制组之下（例如 systemd 机器上的
 `system.slice`）。
 
-请注意，如果 `--system-reserved-cgroup` 不存在，Kubelet **不会** 创建它。
-如果指定了无效的 cgroup，Kubelet 将会失败。
+<!--
+Note that `kubelet` **does not** create `--system-reserved-cgroup` if it doesn't
+exist. `kubelet` will fail if an invalid cgroup is specified.  With `systemd`
+cgroup driver, you should follow a specific pattern for the name of the cgroup you
+define: the name should be the value you set for `--system-reserved-cgroup`,
+with `.slice` appended.
+-->
+请注意，如果 `--system-reserved-cgroup` 不存在，`kubelet` **不会** 创建它。
+如果指定了无效的 cgroup，`kubelet` 将会失败。就 `systemd` cgroup 驱动而言，
+你在指定 cgroup 名字时要遵循特定的模式：
+该名字应该是你为 `--system-reserved-cgroup` 参数所设置的值加上 `.slice` 后缀。
 
 <!--
 ### Explicitly Reserved CPU List
-
-- **Kubelet Flag**: `--reserved-cpus=0-3`
 -->
 ### 显式保留的 CPU 列表 {#explicitly-reserved-cpu-list}
 
 {{< feature-state for_k8s_version="v1.17" state="stable" >}}
 
-- **Kubelet 标志**: `--reserved-cpus=0-3`
+<!--
+**Kubelet Flag**: `--reserved-cpus=0-3`
+-->
+**Kubelet 标志**：`--reserved-cpus=0-3`
 
 <!--
 `reserved-cpus` is meant to define an explicit CPU set for OS system daemons and
@@ -285,14 +292,15 @@ cpuset 上，应使用 Kubernetes 之外的其他机制。
 <!--
 ### Eviction Thresholds
 
-- **Kubelet Flag**: `--eviction-hard=[memory.available<500Mi]`
+**Kubelet Flag**: `--eviction-hard=[memory.available<500Mi]`
 
 Memory pressure at the node level leads to System OOMs which affects the entire
 node and all pods running on it. Nodes can go offline temporarily until memory
 has been reclaimed. To avoid (or reduce the probability of) system OOMs kubelet
-provides [`Out of Resource`](/docs/tasks/administer-cluster/out-of-resource/) management. Evictions are
+provides [out of resource](/docs/concepts/scheduling-eviction/node-pressure-eviction/)
+management. Evictions are
 supported for `memory` and `ephemeral-storage` only. By reserving some memory via
-`--eviction-hard` flag, the `kubelet` attempts to `evict` pods whenever memory
+`--eviction-hard` flag, the `kubelet` attempts to evict pods whenever memory
 availability on the node drops below the reserved value. Hypothetically, if
 system daemons did not exist on a node, pods cannot use more than `capacity -
 eviction-hard`. For this reason, resources reserved for evictions are not
@@ -300,70 +308,76 @@ available for pods.
 -->
 ### 驱逐阈值   {#eviction-Thresholds}
 
-- **Kubelet 标志**: `--eviction-hard=[memory.available<500Mi]`
+**Kubelet 标志**：`--eviction-hard=[memory.available<500Mi]`
 
 节点级别的内存压力将导致系统内存不足，这将影响到整个节点及其上运行的所有 Pod。
 节点可以暂时离线直到内存已经回收为止。
 为了防止（或减少可能性）系统内存不足，kubelet 提供了
-[资源不足](/zh/docs/tasks/administer-cluster/out-of-resource/)管理。
+[资源不足](/zh-cn/docs/concepts/scheduling-eviction/node-pressure-eviction/)管理。
 驱逐操作只支持 `memory` 和 `ephemeral-storage`。
 通过 `--eviction-hard` 标志预留一些内存后，当节点上的可用内存降至保留值以下时，
-`kubelet` 将尝试`驱逐` Pod。
+`kubelet` 将尝试驱逐 Pod。
 如果节点上不存在系统守护进程，Pod 将不能使用超过 `capacity-eviction-hard` 所
 指定的资源量。因此，为驱逐而预留的资源对 Pod 是不可用的。
 
 <!--
 ### Enforcing Node Allocatable
 
-- **Kubelet Flag**: `--enforce-node-allocatable=pods[,][system-reserved][,][kube-reserved]`
+**Kubelet Flag**: `--enforce-node-allocatable=pods[,][system-reserved][,][kube-reserved]`
 
-The scheduler treats `Allocatable` as the available `capacity` for pods.
+The scheduler treats 'Allocatable' as the available `capacity` for pods.
+-->
+### 实施节点可分配约束   {#enforcing-node-allocatable}
 
-`kubelet` enforce `Allocatable` across pods by default. Enforcement is performed
+**Kubelet 标志**：`--enforce-node-allocatable=pods[,][system-reserved][,][kube-reserved]`
+
+调度器将 'Allocatable' 视为 Pod 可用的 `capacity`（资源容量）。
+
+<!--
+`kubelet` enforce 'Allocatable' across pods by default. Enforcement is performed
 by evicting pods whenever the overall usage across all pods exceeds
-`Allocatable`. More details on eviction policy can be found
-[here](/docs/tasks/administer-cluster/out-of-resource/#eviction-policy). This enforcement is controlled by
+'Allocatable'. More details on eviction policy can be found
+on the [node pressure eviction](/docs/concepts/scheduling-eviction/node-pressure-eviction/)
+page. This enforcement is controlled by
 specifying `pods` value to the kubelet flag `--enforce-node-allocatable`.
+-->
+`kubelet` 默认对 Pod 执行 'Allocatable' 约束。
+无论何时，如果所有 Pod 的总用量超过了 'Allocatable'，驱逐 Pod 的措施将被执行。
+有关驱逐策略的更多细节可以在
+[节点压力驱逐](/zh-cn/docs/concepts/scheduling-eviction/pod-priority-preemption/)页找到。
+可通过设置 kubelet `--enforce-node-allocatable` 标志值为 `pods` 控制这个措施。
 
+<!--
 Optionally, `kubelet` can be made to enforce `kube-reserved` and
 `system-reserved` by specifying `kube-reserved` & `system-reserved` values in
 the same flag. Note that to enforce `kube-reserved` or `system-reserved`,
 `--kube-reserved-cgroup` or `--system-reserved-cgroup` needs to be specified
 respectively.
 -->
-### 实施节点可分配约束   {#enforcing-node-allocatable}
-
-- **Kubelet 标志**: `--enforce-node-allocatable=pods[,][system-reserved][,][kube-reserved]`
-
-调度器将 `Allocatable` 视为 Pod 可用的 `capacity`（资源容量）。
-
-`kubelet` 默认对 Pod 执行 `Allocatable` 约束。
-无论何时，如果所有 Pod 的总用量超过了 `Allocatable`，驱逐 Pod 的措施将被执行。
-有关驱逐策略的更多细节可以在
-[这里](/zh/docs/tasks/administer-cluster/out-of-resource/#eviction-policy)找到。
-可通过设置 kubelet `--enforce-node-allocatable` 标志值为 `pods` 控制这个措施。
-
 可选地，通过在同一标志中同时指定 `kube-reserved` 和 `system-reserved` 值，
-可以使 `kubelet` 强制实施 `kube-reserved` 和 `system-reserved`约束。
+可以使 `kubelet` 强制实施 `kube-reserved` 和 `system-reserved` 约束。
 请注意，要想执行 `kube-reserved` 或者 `system-reserved` 约束，
 需要对应设置 `--kube-reserved-cgroup` 或者 `--system-reserved-cgroup`。
 
 <!--
 ## General Guidelines
 
-System daemons are expected to be treated similar to `Guaranteed` pods. System
-daemons can burst within their bounding control groups and this behavior needs
+System daemons are expected to be treated similar to
+[Guaranteed pods](/docs/tasks/configure-pod-container/quality-service-pod/#create-a-pod-that-gets-assigned-a-qos-class-of-guaranteed). 
+System daemons can burst within their bounding control groups and this behavior needs
 to be managed as part of kubernetes deployments. For example, `kubelet` should
-have its own control group and share `Kube-reserved` resources with the
+have its own control group and share `kube-reserved` resources with the
 container runtime. However, Kubelet cannot burst and use up all available Node
 resources if `kube-reserved` is enforced.
 -->
 ## 一般原则   {#general-guidelines}
 
-系统守护进程一般会被按照类似 `Guaranteed` Pod 一样对待。
+系统守护进程一般会被按照类似
+[Guaranteed pods](/zh-cn/docs/tasks/configure-pod-container/quality-service-pod/#create-a-pod-that-gets-assigned-a-qos-class-of-guaranteed)
+一样对待。
 系统守护进程可以在与其对应的控制组中出现突发资源用量，这一行为要作为
 kubernetes 部署的一部分进行管理。
-例如，`kubelet` 应该有它自己的控制组并和容器运行时共享 `Kube-reserved` 资源。
+例如，`kubelet` 应该有它自己的控制组并和容器运行时共享 `kube-reserved` 资源。
 不过，如果执行了 `kube-reserved` 约束，则 kubelet 不可出现突发负载并用光
 节点的所有可用资源。
 
@@ -373,12 +387,7 @@ to critical system services being CPU starved, OOM killed, or unable
 to fork on the node. The
 recommendation is to enforce `system-reserved` only if a user has profiled their
 nodes exhaustively to come up with precise estimates and is confident in their
-ability to recover if any process in that group is oom_killed.
-
-* To begin with enforce `Allocatable` on `pods`.
-* Once adequate monitoring and alerting is in place to track kube system
-  daemons, attempt to enforce `kube-reserved` based on usage heuristics.
-* If absolutely necessary, enforce `system-reserved` over time.
+ability to recover if any process in that group is oom-killed.
 -->
 在执行 `system-reserved` 预留策略时请加倍小心，因为它可能导致节点上的
 关键系统服务出现 CPU 资源短缺、因为内存不足而被终止或者无法在节点上创建进程。
@@ -386,9 +395,15 @@ ability to recover if any process in that group is oom_killed.
 并且对该组中进程因内存不足而被杀死时，有足够的信心将其恢复时，
 才可以强制执行 `system-reserved` 策略。
 
-* 作为起步，可以先针对 `pods` 上执行 `Allocatable` 约束。
+<!--
+* To begin with enforce 'Allocatable' on `pods`.
+* Once adequate monitoring and alerting is in place to track kube system
+  daemons, attempt to enforce `kube-reserved` based on usage heuristics.
+* If absolutely necessary, enforce `system-reserved` over time.
+-->
+* 作为起步，可以先针对 `pods` 上执行 'Allocatable' 约束。
 * 一旦用于追踪系统守护进程的监控和告警的机制到位，可尝试基于用量估计的
-  方式执行 `kube-reserved`策略。
+  方式执行 `kube-reserved` 策略。
 * 随着时间推进，在绝对必要的时候可以执行 `system-reserved` 策略。
 
 <!--
@@ -424,27 +439,28 @@ Here is an example to illustrate Node Allocatable computation:
 * `--eviction-hard` 被设置为 `memory.available<500Mi,nodefs.available<10%`
 
 <!--
-Under this scenario, `Allocatable` will be `14.5 CPUs`, `28.5Gi` of memory and
+Under this scenario, 'Allocatable' will be 14.5 CPUs, 28.5Gi of memory and
 `88Gi` of local storage.
 Scheduler ensures that the total memory `requests` across all pods on this node does
-not exceed `28.5Gi` and storage doesn't exceed `88Gi`.
-Kubelet evicts pods whenever the overall memory usage across pods exceeds `28.5Gi`,
-or if overall disk usage exceeds `88Gi` If all processes on the node consume as
-much CPU as they can, pods together cannot consume more than `14.5 CPUs`.
-
-If `kube-reserved` and/or `system-reserved` is not enforced and system daemons
-exceed their reservation, `kubelet` evicts pods whenever the overall node memory
-usage is higher than `31.5Gi` or `storage` is greater than `90Gi`
+not exceed 28.5Gi and storage doesn't exceed 88Gi.
+Kubelet evicts pods whenever the overall memory usage across pods exceeds 28.5Gi,
+or if overall disk usage exceeds 88Gi If all processes on the node consume as
+much CPU as they can, pods together cannot consume more than 14.5 CPUs.
 -->
-在这个场景下，`Allocatable` 将会是 `14.5 CPUs`、`28.5Gi` 内存以及 `88Gi` 本地存储。
-调度器保证这个节点上的所有 Pod 的内存 `requests` 总量不超过 `28.5Gi`，
-存储不超过 `88Gi`。
-当 Pod 的内存使用总量超过 `28.5Gi` 或者磁盘使用总量超过 `88Gi` 时，
+在这个场景下，'Allocatable' 将会是 14.5 CPUs、28.5Gi 内存以及 `88Gi` 本地存储。
+调度器保证这个节点上的所有 Pod 的内存 `requests` 总量不超过 28.5Gi，
+存储不超过 '88Gi'。
+当 Pod 的内存使用总量超过 28.5Gi 或者磁盘使用总量超过 88Gi 时，
 kubelet 将会驱逐它们。
 如果节点上的所有进程都尽可能多地使用 CPU，则 Pod 加起来不能使用超过
-`14.5 CPUs` 的资源。
+14.5 CPUs 的资源。
 
+<!--
+If `kube-reserved` and/or `system-reserved` is not enforced and system daemons
+exceed their reservation, `kubelet` evicts pods whenever the overall node memory
+usage is higher than 31.5Gi or `storage` is greater than 90Gi.
+-->
 当没有执行 `kube-reserved` 和/或 `system-reserved` 策略且系统守护进程
-使用量超过其预留时，如果节点内存用量高于 `31.5Gi` 或`存储`大于 `90Gi`，
+使用量超过其预留时，如果节点内存用量高于 31.5Gi 或 `storage` 大于 90Gi，
 kubelet 将会驱逐 Pod。
 
diff --git a/content/zh/docs/tasks/administer-cluster/running-cloud-controller.md b/content/zh-cn/docs/tasks/administer-cluster/running-cloud-controller.md
similarity index 98%
rename from content/zh/docs/tasks/administer-cluster/running-cloud-controller.md
rename to content/zh-cn/docs/tasks/administer-cluster/running-cloud-controller.md
index 5c4340be3b..9eac2cd005 100644
--- a/content/zh/docs/tasks/administer-cluster/running-cloud-controller.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/running-cloud-controller.md
@@ -78,7 +78,7 @@ Successfully running cloud-controller-manager requires some changes to your clus
 <!--
 Keep in mind that setting up your cluster to use cloud controller manager will change your cluster behaviour in a few ways:
 -->
-请记住，设置群集使用云管理控制器将用多种方式更改群集行为：
+请记住，设置集群使用云管理控制器将用多种方式更改集群行为：
 
 <!--
 * kubelets specifying `--cloud-provider=external` will add a taint `node.cloudprovider.kubernetes.io/uninitialized` with an effect `NoSchedule` during initialization. This marks the node as needing a second initialization from an external controller before it can be scheduled work. Note that in the event that cloud controller manager is not available, new nodes in the cluster will be left unschedulable. The taint is important since the scheduler may require cloud specific information about nodes such as their region or type (high cpu, gpu, high memory, spot instance, etc).
@@ -196,6 +196,6 @@ TLS 证书以和 API 服务器通信。
 To build and develop your own cloud controller manager, read the [Developing Cloud Controller Manager](/docs/tasks/administer-cluster/developing-cloud-controller-manager.md) doc.
 -->
 要构建和开发你自己的云管理控制器，请阅读
-[开发云管理控制器](/zh/docs/tasks/administer-cluster/developing-cloud-controller-manager/)
+[开发云管理控制器](/zh-cn/docs/tasks/administer-cluster/developing-cloud-controller-manager/)
 文档。
 
diff --git a/content/zh/docs/tasks/administer-cluster/safely-drain-node.md b/content/zh-cn/docs/tasks/administer-cluster/safely-drain-node.md
similarity index 58%
rename from content/zh/docs/tasks/administer-cluster/safely-drain-node.md
rename to content/zh-cn/docs/tasks/administer-cluster/safely-drain-node.md
index 85de0215ca..ebe8ddd925 100644
--- a/content/zh/docs/tasks/administer-cluster/safely-drain-node.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/safely-drain-node.md
@@ -39,8 +39,8 @@ This task assumes that you have met the following prerequisites:
 * 使用的 Kubernetes 版本 >= 1.5。
 * 以下两项，具备其一：
   1. 在节点清空期间，不要求应用程序具有高可用性
-  2. 你已经了解了 [PodDisruptionBudget 的概念](/zh/docs/concepts/workloads/pods/disruptions/)，
-     并为需要它的应用程序[配置了 PodDisruptionBudget](/zh/docs/tasks/run-application/configure-pdb/)。
+  2. 你已经了解了 [PodDisruptionBudget 的概念](/zh-cn/docs/concepts/workloads/pods/disruptions/)，
+     并为需要它的应用程序[配置了 PodDisruptionBudget](/zh-cn/docs/tasks/run-application/configure-pdb/)。
 
 <!-- steps -->
 
@@ -52,13 +52,13 @@ configure a [PodDisruptionBudget](/docs/concepts/workloads/pods/disruptions/).
 
 If availability is important for any applications that run or could run on the node(s)
 that you are draining, [configure a PodDisruptionBudgets](/docs/tasks/run-application/configure-pdb/)
-first and the continue following this guide.
+first and then continue following this guide.
 -->
 ## （可选） 配置干扰预算 {#configure-poddisruptionbudget}
 
-为了确保你的负载在维护期间仍然可用，你可以配置一个 [PodDisruptionBudget](/zh/docs/concepts/workloads/pods/disruptions/)。
+为了确保你的负载在维护期间仍然可用，你可以配置一个 [PodDisruptionBudget](/zh-cn/docs/concepts/workloads/pods/disruptions/)。
 如果可用性对于正在清空的该节点上运行或可能在该节点上运行的任何应用程序很重要，
-首先 [配置一个 PodDisruptionBudgets](/zh/docs/tasks/run-application/configure-pdb/) 并继续遵循本指南。
+首先 [配置一个 PodDisruptionBudgets](/zh-cn/docs/tasks/run-application/configure-pdb/) 并继续遵循本指南。
 
 <!-- 
 ## Use `kubectl drain` to remove a node from service
@@ -74,7 +74,7 @@ and will respect the `PodDisruptionBudgets` you have specified.
 在对节点执行维护（例如内核升级、硬件维护等）之前，
 可以使用 `kubectl drain` 从节点安全地逐出所有 Pods。
 安全的驱逐过程允许 Pod 的容器
-[体面地终止](/zh/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)，
+[体面地终止](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)，
 并确保满足指定的 PodDisruptionBudgets。
 
 <!-- 
@@ -174,124 +174,21 @@ replicas to fall below the specified budget are blocked.
 
 If you prefer not to use [kubectl drain](/docs/reference/generated/kubectl/kubectl-commands/#drain) (such as
 to avoid calling to an external command, or to get finer control over the pod
-eviction process), you can also programmatically cause evictions using the eviction API.
+eviction process), you can also programmatically cause evictions using the
+eviction API.
+For more information, see [API-initiated eviction](/docs/concepts/scheduling-eviction/api-eviction/).
 -->
 ## 驱逐 API {#the-eviction-api}
 如果你不喜欢使用
 [kubectl drain](/docs/reference/generated/kubectl/kubectl-commands/#drain)
 （比如避免调用外部命令，或者更细化地控制 pod 驱逐过程），
 你也可以用驱逐 API 通过编程的方式达到驱逐的效果。
-
-<!-- 
-You should first be familiar with using [Kubernetes language clients](/docs/tasks/administer-cluster/access-cluster-api/#programmatic-access-to-the-api).
-
-The eviction subresource of a
-pod can be thought of as a kind of policy-controlled DELETE operation on the pod
-itself. To attempt an eviction (perhaps more REST-precisely, to attempt to
-*create* an eviction), you POST an attempted operation. Here's an example:
--->
-首先应该熟悉使用 
-[Kubernetes 语言客户端](/zh/docs/tasks/administer-cluster/access-cluster-api/#programmatic-access-to-the-api)。
-
-Pod 的 Eviction 子资源可以看作是一种策略控制的 DELETE 操作，作用于 Pod 本身。
-要尝试驱逐（更准确地说，尝试 *创建* 一个 Eviction），需要用 POST 发出所尝试的操作。这里有一个例子：
-
-```json
-{
-  "apiVersion": "policy/v1beta1",
-  "kind": "Eviction",
-  "metadata": {
-    "name": "quux",
-    "namespace": "default"
-  }
-}
-```
-
-<!-- 
-You can attempt an eviction using `curl`:
--->
-你可以使用 `curl` 尝试驱逐：
-
-```bash
-curl -v -H 'Content-type: application/json' http://127.0.0.1:8080/api/v1/namespaces/default/pods/quux/eviction -d @eviction.json
-```
-
-<!-- 
-The API can respond in one of three ways:
-
-- If the eviction is granted, then the pod is deleted just as if you had sent
-  a `DELETE` request to the pod's URL and you get back `200 OK`.
-- If the current state of affairs wouldn't allow an eviction by the rules set
-  forth in the budget, you get back `429 Too Many Requests`. This is
-  typically used for generic rate limiting of *any* requests, but here we mean
-  that this request isn't allowed *right now* but it may be allowed later.
-  Currently, callers do not get any `Retry-After` advice, but they may in
-  future versions.
-- If there is some kind of misconfiguration, like multiple budgets pointing at
-  the same pod, you will get `500 Internal Server Error`.
--->
-API 可以通过以下三种方式之一进行响应：
-
-- 如果驱逐被授权，那么 Pod 将被删掉，并且你会收到 `200 OK`，
-  就像你向 Pod 的 URL 发送了 `DELETE` 请求一样。
-- 如果按照预算中规定，目前的情况不允许的驱逐，你会收到 `429 Too Many Requests`。
-  这通常用于对 *一些* 请求进行通用速率限制，
-  但这里我们的意思是：此请求 *现在* 不允许，但以后可能会允许。
-  目前，调用者不会得到任何 `Retry-After` 的提示，但在将来的版本中可能会得到。
-- 如果有一些错误的配置，比如多个预算指向同一个 Pod，你将得到 `500 Internal Server Error`。
-
-<!-- 
-For a given eviction request, there are two cases:
-
-- There is no budget that matches this pod. In this case, the server always
-  returns `200 OK`.
-- There is at least one budget. In this case, any of the three above responses may
-   apply.
--->
-对于一个给定的驱逐请求，有两种情况：
-
-- 没有匹配这个 Pod 的预算。这种情况，服务器总是返回 `200 OK`。
-- 至少匹配一个预算。在这种情况下，上述三种回答中的任何一种都可能适用。
-
-<!-- 
-## Stuck evictions
-
-In some cases, an application may reach a broken state, one where unless you intervene the
-eviction API will never return anything other than 429 or 500.
-
-For example: this can happen if ReplicaSet is creating Pods for your application but
-the replacement Pods do not become `Ready`. You can also see similar symptoms if the
-last Pod evicted has a very long termination grace period.
--->
-## 驱逐阻塞
-
-在某些情况下，应用程序可能会到达一个中断状态，除了 429 或 500 之外，它将永远不会返回任何内容。
-例如 ReplicaSet 创建的替换 Pod 没有变成就绪状态，或者被驱逐的最后一个
-Pod 有很长的终止宽限期，就会发生这种情况。
-
-<!--
-In this case, there are two potential solutions:
-
-- Abort or pause the automated operation. Investigate the reason for the stuck application,
-  and restart the automation.
-- After a suitably long wait, `DELETE` the Pod from your cluster's control plane, instead
-  of using the eviction API.
-
-Kubernetes does not specify what the behavior should be in this case; it is up to the
-application owners and cluster owners to establish an agreement on behavior in these cases.
--->
-在这种情况下，有两种可能的解决方案：
-
-- 中止或暂停自动操作。调查应用程序卡住的原因，并重新启动自动化。
-- 经过适当的长时间等待后，从集群中删除 Pod 而不是使用驱逐 API。
-
-Kubernetes 并没有具体说明在这种情况下应该采取什么行为，
-这应该由应用程序所有者和集群所有者紧密沟通，并达成对行动一致意见。
+更多信息，请参阅 [API 发起的驱逐](/zh-cn/docs/concepts/scheduling-eviction/api-eviction/)。
 
 ## {{% heading "whatsnext" %}}
 
 <!-- 
 * Follow steps to protect your application by [configuring a Pod Disruption Budget](/docs/tasks/run-application/configure-pdb/).
 -->
-* 执行[配置 PDB](/zh/docs/tasks/run-application/configure-pdb/)中的各个步骤，
+* 执行[配置 PDB](/zh-cn/docs/tasks/run-application/configure-pdb/)中的各个步骤，
   保护你的应用
diff --git a/content/zh-cn/docs/tasks/administer-cluster/securing-a-cluster.md b/content/zh-cn/docs/tasks/administer-cluster/securing-a-cluster.md
new file mode 100644
index 0000000000..2cc223d515
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/securing-a-cluster.md
@@ -0,0 +1,526 @@
+---
+title: 保护集群
+content_type: task
+---
+<!--
+reviewers:
+- smarterclayton
+- liggitt
+- ericchiang
+- destijl
+title: Securing a Cluster
+content_type: task
+-->
+
+<!-- overview -->
+
+<!--
+This document covers topics related to protecting a cluster from accidental or malicious access
+and provides recommendations on overall security.
+-->
+本文档涉及与保护集群免受意外或恶意访问有关的主题，并对总体安全性提出建议。
+
+## {{% heading "prerequisites" %}}
+
+* {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+
+<!-- steps -->
+
+<!--
+## Controlling access to the Kubernetes API
+
+As Kubernetes is entirely API-driven, controlling and limiting who can access the cluster and what actions
+they are allowed to perform is the first line of defense.
+-->
+## 控制对 Kubernetes API 的访问
+
+因为 Kubernetes 是完全通过 API 驱动的，所以，控制和限制谁可以通过 API 访问集群，
+以及允许这些访问者执行什么样的 API 动作，就成为了安全控制的第一道防线。
+
+<!--
+### Use Transport Layer Security (TLS) for all API traffic
+
+Kubernetes expects that all API communication in the cluster is encrypted by default with TLS, and the
+majority of installation methods will allow the necessary certificates to be created and distributed to
+the cluster components. Note that some components and installation methods may enable local ports over
+HTTP and administrators should familiarize themselves with the settings of each component to identify
+potentially unsecured traffic.
+-->
+### 为所有 API 交互使用传输层安全 （TLS）
+
+Kubernetes 期望集群中所有的 API 通信在默认情况下都使用 TLS 加密，
+大多数安装方法也允许创建所需的证书并且分发到集群组件中。
+请注意，某些组件和安装方法可能使用 HTTP 来访问本地端口，
+管理员应该熟悉每个组件的设置，以识别可能不安全的流量。
+
+<!--
+### API Authentication
+
+Choose an authentication mechanism for the API servers to use that matches the common access patterns
+when you install a cluster. For instance, small single-user clusters may wish to use a simple certificate
+or static Bearer token approach. Larger clusters may wish to integrate an existing OIDC or LDAP server that
+allow users to be subdivided into groups.
+
+All API clients must be authenticated, even those that are part of the infrastructure like nodes,
+proxies, the scheduler, and volume plugins. These clients are typically [service accounts](/docs/reference/access-authn-authz/service-accounts-admin/) or use x509 client certificates, and they are created automatically at cluster startup or are setup as part of the cluster installation.
+
+Consult the [authentication reference document](/docs/reference/access-authn-authz/authentication/) for more information.
+-->
+### API 认证
+
+安装集群时，选择一个 API 服务器的身份验证机制，去使用与之匹配的公共访问模式。
+例如，小型的单用户集群可能希望使用简单的证书或静态承载令牌方法。
+更大的集群则可能希望整合现有的、OIDC、LDAP 等允许用户分组的服务器。
+
+所有 API 客户端都必须经过身份验证，即使它是基础设施的一部分，比如节点、代理、调度程序和卷插件。
+这些客户端通常使用 [服务帐户](/zh-cn/docs/reference/access-authn-authz/service-accounts-admin/)
+或 X509 客户端证书，并在集群启动时自动创建或是作为集群安装的一部分进行设置。
+
+如果你希望获取更多信息，请参考[认证参考文档](/zh-cn/docs/reference/access-authn-authz/authentication/)。
+
+<!--
+### API Authorization
+
+Once authenticated, every API call is also expected to pass an authorization check. Kubernetes ships
+an integrated [Role-Based Access Control (RBAC)](/docs/reference/access-authn-authz/rbac/) component that matches an incoming user or group to a
+set of permissions bundled into roles. These permissions combine verbs (get, create, delete) with
+resources (pods, services, nodes) and can be namespace-scoped or cluster-scoped. A set of out-of-the-box
+roles are provided that offer reasonable default separation of responsibility depending on what
+actions a client might want to perform. It is recommended that you use the
+[Node](/docs/reference/access-authn-authz/node/) and
+[RBAC](/docs/reference/access-authn-authz/rbac/) authorizers together, in combination with the
+[NodeRestriction](/docs/reference/access-authn-authz/admission-controllers/#noderestriction) admission plugin.
+-->
+### API 授权
+
+一旦通过身份认证，每个 API 的调用都将通过鉴权检查。
+Kubernetes 集成[基于角色的访问控制（RBAC）](/zh-cn/docs/reference/access-authn-authz/rbac/)组件，
+将传入的用户或组与一组绑定到角色的权限匹配。
+这些权限将动作（get、create、delete）和资源（Pod、Service、Node）进行组合，并可在名字空间或者集群范围生效。
+Kubernetes 提供了一组可直接使用的角色，这些角色根据客户可能希望执行的操作提供合理的责任划分。
+建议你同时使用 [Node](/zh-cn/docs/reference/access-authn-authz/node/) 和
+[RBAC](/zh-cn/docs/reference/access-authn-authz/rbac/) 两个鉴权组件，再与
+[NodeRestriction](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#noderestriction)
+准入插件结合使用。
+
+<!--
+As with authentication, simple and broad roles may be appropriate for smaller clusters, but as
+more users interact with the cluster, it may become necessary to separate teams into separate
+{{< glossary_tooltip text="namespaces" term_id="namespace" >}} with more limited roles.
+-->
+与身份验证一样，简单而广泛的角色可能适合于较小的集群，但是随着更多的用户与集群交互，
+可能需要将团队划分到有更多角色限制的、
+单独的{{< glossary_tooltip text="名字空间" term_id="namespace" >}}中去。
+
+<!--
+With authorization, it is important to understand how updates on one object may cause actions in
+other places. For instance, a user may not be able to create pods directly, but allowing them to
+create a deployment, which creates pods on their behalf, will let them create those pods
+indirectly. Likewise, deleting a node from the API will result in the pods scheduled to that node
+being terminated and recreated on other nodes. The out-of-the-box roles represent a balance
+between flexibility and common use cases, but more limited roles should be carefully reviewed
+to prevent accidental escalation. You can make roles specific to your use case if the out-of-box ones don't meet your needs.
+
+Consult the [authorization reference section](/docs/reference/access-authn-authz/authorization/) for more information.
+-->
+就鉴权而言，很重要的一点是理解对象上的更新操作如何导致在其它地方发生对应行为。
+例如，用户可能不能直接创建 Pod，但允许他们通过创建 Deployment 来创建这些 Pod，
+这将让他们间接创建这些 Pod。
+同样地，从 API 删除一个节点将导致调度到这些节点上的 Pod 被中止，并在其他节点上重新创建。
+原生的角色设计代表了灵活性和常见用例之间的平衡，但须限制的角色应该被仔细审查，
+以防止意外的权限升级。如果内置的角色无法满足你的需求，则可以根据使用场景需要创建特定的角色。
+
+如果你希望获取更多信息，请参阅[鉴权参考](/zh-cn/docs/reference/access-authn-authz/authorization/)。
+
+<!--
+## Controlling access to the Kubelet
+
+Kubelets expose HTTPS endpoints which grant powerful control over the node and containers. By default Kubelets allow unauthenticated access to this API.
+
+Production clusters should enable Kubelet authentication and authorization.
+
+Consult the [Kubelet authentication/authorization reference](/docs/reference/access-authn-authz/kubelet-authn-authz/)
+for more information.
+-->
+## 控制对 Kubelet 的访问
+
+Kubelet 公开 HTTPS 端点，这些端点提供了对节点和容器的强大的控制能力。
+默认情况下，Kubelet 允许对此 API 进行未经身份验证的访问。
+
+生产级别的集群应启用 Kubelet 身份认证和授权。
+
+进一步的信息，请参考
+[Kubelet 身份验证/授权参考](/zh-cn/docs/reference/access-authn-authz/kubelet-authn-authz/)。
+
+<!--
+## Controlling the capabilities of a workload or user at runtime
+
+Authorization in Kubernetes is intentionally high level, focused on coarse actions on resources.
+More powerful controls exist as **policies** to limit by use case how those objects act on the
+cluster, themselves, and other resources.
+-->
+## 控制运行时负载或用户的能力
+
+Kubernetes 中的授权故意设计成较高抽象级别，侧重于对资源的粗粒度行为。
+更强大的控制是 **策略** 的形式呈现的，根据使用场景限制这些对象如何作用于集群、自身和其他资源。
+
+<!--
+### Limiting resource usage on a cluster
+
+[Resource quota](/docs/concepts/policy/resource-quotas/) limits the number or capacity of
+resources granted to a namespace. This is most often used to limit the amount of CPU, memory,
+or persistent disk a namespace can allocate, but can also control how many pods, services, or
+volumes exist in each namespace.
+
+[Limit ranges](/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/) restrict the maximum or minimum size of some of the
+resources above, to prevent users from requesting unreasonably high or low values for commonly
+reserved resources like memory, or to provide default limits when none are specified.
+-->
+### 限制集群上的资源使用
+
+[资源配额（Resource Quota）](/zh-cn/docs/concepts/policy/resource-quotas/)限制了赋予命名空间的资源的数量或容量。
+资源配额通常用于限制名字空间可以分配的 CPU、内存或持久磁盘的数量，
+但也可以控制每个名字空间中存在多少个 Pod、Service 或 Volume。
+
+[限制范围（Limit Range）](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
+限制上述某些资源的最大值或者最小值，以防止用户使用类似内存这样的通用保留资源时请求不合理的过高或过低的值，
+或者在没有指定的情况下提供默认限制。
+
+<!--
+### Controlling what privileges containers run with
+
+A pod definition contains a [security context](/docs/tasks/configure-pod-container/security-context/)
+that allows it to request access to run as a specific Linux user on a node (like root),
+access to run privileged or access the host network, and other controls that would otherwise
+allow it to run unfettered on a hosting node.
+
+You can configure [Pod security admission](/docs/concepts/security/pod-security-admission/)
+to enforce use of a particular [Pod Security Standard](/docs/concepts/security/pod-security-standards/)
+in a {{< glossary_tooltip text="namespace" term_id="namespace" >}}, or to detect breaches.
+-->
+### 控制容器运行的特权
+
+Pod 定义包含了一个[安全上下文](/zh-cn/docs/tasks/configure-pod-container/security-context/)，
+用于描述一些访问请求，如以某个节点上的特定 Linux 用户（如 root）身份运行，
+以特权形式运行，访问主机网络，以及一些在宿主节点上不受约束地运行的其它控制权限等等。
+
+你可以配置 [Pod 安全准入](/zh-cn/docs/concepts/security/pod-security-admission/)来在某个
+{{< glossary_tooltip text="名字空间" term_id="namespace" >}}中
+强制实施特定的
+[Pod 安全标准（Pod Security Standard）](/zh-cn/docs/concepts/security/pod-security-standards/)，
+或者检查安全上的缺陷。
+
+<!--
+Generally, most application workloads need limited access to host resources so they can
+successfully run as a root process (uid 0) without access to host information. However,
+considering the privileges associated with the root user, you should write application
+containers to run as a non-root user. Similarly, administrators who wish to prevent
+client applications from escaping their containers should apply the **Baseline**
+or **Restricted** Pod Security Standard.
+-->
+一般来说，大多数应用程序需要对主机资源的有限制的访问，
+这样它们可以在不访问主机信息的情况下，成功地以 root 账号（UID 0）运行。
+但是，考虑到与 root 用户相关的特权，在编写应用程序容器时，你应该使用非 root 用户运行。
+类似地，希望阻止客户端应用程序从其容器中逃逸的管理员，应该应用 **Baseline**
+或 **Restricted** Pod 安全标准。
+
+
+<!--
+### Preventing containers from loading unwanted kernel modules
+-->
+### 防止容器加载不需要的内核模块   {#preventing-containers-from-loading-unwanted-kernel-modules}
+<!--
+The Linux kernel automatically loads kernel modules from disk if needed in certain
+circumstances, such as when a piece of hardware is attached or a filesystem is mounted. Of
+particular relevance to Kubernetes, even unprivileged processes can cause certain
+network-protocol-related kernel modules to be loaded, just by creating a socket of the
+appropriate type. This may allow an attacker to exploit a security hole in a kernel module
+that the administrator assumed was not in use.
+-->
+如果在某些情况下，Linux 内核会根据需要自动从磁盘加载内核模块，
+这类情况的例子有挂接了一个硬件或挂载了一个文件系统。
+与 Kubernetes 特别相关的是，即使是非特权的进程也可能导致某些网络协议相关的内核模块被加载，
+而这只需创建一个适当类型的套接字。
+这就可能允许攻击者利用管理员假定未使用的内核模块中的安全漏洞。
+
+<!--
+To prevent specific modules from being automatically loaded, you can uninstall them from
+the node, or add rules to block them. On most Linux distributions, you can do that by
+creating a file such as `/etc/modprobe.d/kubernetes-blacklist.conf` with contents like:
+-->
+为了防止特定模块被自动加载，你可以将它们从节点上卸载或者添加规则来阻止这些模块。
+在大多数 Linux 发行版上，你可以通过创建类似 `/etc/modprobe.d/kubernetes-blacklist.conf`
+这种文件来做到这一点，其中的内容如下所示：
+
+```
+# DCCP is unlikely to be needed, has had multiple serious
+# vulnerabilities, and is not well-maintained.
+blacklist dccp
+
+# SCTP is not used in most Kubernetes clusters, and has also had
+# vulnerabilities in the past.
+blacklist sctp
+```
+
+<!--
+To block module loading more generically, you can use a Linux Security Module (such as
+SELinux) to completely deny the `module_request` permission to containers, preventing the
+kernel from loading modules for containers under any circumstances. (Pods would still be
+able to use modules that had been loaded manually, or modules that were loaded by the
+kernel on behalf of some more-privileged process.)
+-->
+为了更大范围地阻止内核模块被加载，你可以使用 Linux 安全模块（如 SELinux）
+来彻底拒绝容器的 `module_request` 权限，从而防止在任何情况下系统为容器加载内核模块。
+（Pod 仍然可以使用手动加载的模块，或者使用由内核代表某些特权进程所加载的模块。）
+
+
+<!--
+### Restricting network access
+
+The [network policies](/docs/tasks/administer-cluster/declare-network-policy/) for a namespace
+allows application authors to restrict which pods in other namespaces may access pods and ports
+within their namespaces. Many of the supported [Kubernetes networking providers](/docs/concepts/cluster-administration/networking/)
+now respect network policy.
+-->
+### 限制网络访问
+
+基于名字空间的[网络策略](/zh-cn/docs/tasks/administer-cluster/declare-network-policy/)
+允许应用程序作者限制其它名字空间中的哪些 Pod 可以访问自身名字空间内的 Pod 和端口。
+现在已经有许多支持网络策略的
+[Kubernetes 网络驱动](/zh-cn/docs/concepts/cluster-administration/networking/)。
+
+<!--
+Quota and limit ranges can also be used to control whether users may request node ports or
+load-balanced services, which on many clusters can control whether those users applications
+are visible outside of the cluster.
+
+Additional protections may be available that control network rules on a per-plugin or per-
+environment basis, such as per-node firewalls, physically separating cluster nodes to
+prevent cross talk, or advanced networking policy.
+-->
+配额（Quota）和限制范围（Limit Range）也可用于控制用户是否可以请求节点端口或负载均衡服务。
+在很多集群上，节点端口和负载均衡服务也可控制用户的应用程序是否在集群之外可见。
+
+此外也可能存在一些基于插件或基于环境的网络规则，能够提供额外的保护能力。
+例如各节点上的防火墙、物理隔离集群节点以防止串扰或者高级的网络策略等。
+
+<!--
+### Restricting cloud metadata API access
+
+Cloud platforms (AWS, Azure, GCE, etc.) often expose metadata services locally to instances.
+By default these APIs are accessible by pods running on an instance and can contain cloud
+credentials for that node, or provisioning data such as kubelet credentials. These credentials
+can be used to escalate within the cluster or to other cloud services under the same account.
+
+When running Kubernetes on a cloud platform, limit permissions given to instance credentials, use
+[network policies](/docs/tasks/administer-cluster/declare-network-policy/) to restrict pod access
+to the metadata API, and avoid using provisioning data to deliver secrets.
+-->
+### 限制云元数据 API 访问
+
+云平台（AWS、Azure、GCE 等）经常将 metadata 本地服务暴露给实例。
+默认情况下，这些 API 可由运行在实例上的 Pod 访问，并且可以包含
+该云节点的凭据或配置数据（如 kubelet 凭据）。
+这些凭据可以用于在集群内升级或在同一账户下升级到其他云服务。
+
+在云平台上运行 Kubernetes 时，需要限制对实例凭据的权限，使用
+[网络策略](/zh-cn/docs/tasks/administer-cluster/declare-network-policy/)
+限制 Pod 对元数据 API 的访问，并避免使用配置数据来传递机密信息。
+
+<!--
+### Controlling which nodes pods may access
+
+By default, there are no restrictions on which nodes may run a pod.  Kubernetes offers a
+[rich set of policies for controlling placement of pods onto nodes](/docs/concepts/scheduling-eviction/assign-pod-node/)
+and the [taint-based pod placement and eviction](/docs/concepts/scheduling-eviction/taint-and-toleration/)
+that are available to end users. For many clusters use of these policies to separate workloads
+can be a convention that authors adopt or enforce via tooling.
+
+As an administrator, a beta admission plugin `PodNodeSelector` can be used to force pods
+within a namespace to default or require a specific node selector, and if end users cannot
+alter namespaces, this can strongly limit the placement of all of the pods in a specific workload.
+-->
+### 控制 Pod 可以访问的节点
+
+默认情况下，对 Pod 可以运行在哪些节点上是没有任何限制的。
+Kubernetes 给最终用户提供了
+一组丰富的策略用于[控制 Pod 所放置的节点位置](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/)，
+以及[基于污点的 Pod 放置和驱逐](/zh-cn/docs/concepts/scheduling-eviction/taint-and-toleration/)。
+对于许多集群，使用这些策略来分离工作负载可以作为一种约定，要求作者遵守或者通过工具强制。
+
+对于管理员，Beta 阶段的准入插件 `PodNodeSelector` 可用于强制某名字空间中的 Pod
+使用默认的或特定的节点选择算符。
+如果最终用户无法改变名字空间，这一机制可以有效地限制特定工作负载中所有 Pod 的放置位置。
+
+<!--
+## Protecting cluster components from compromise
+
+This section describes some common patterns for protecting clusters from compromise.
+-->
+## 保护集群组件免受破坏
+
+本节描述保护集群免受破坏的一些常用模式。
+
+<!--
+### Restrict access to etcd
+
+Write access to the etcd backend for the API is equivalent to gaining root on the entire cluster,
+and read access can be used to escalate fairly quickly. Administrators should always use strong
+credentials from the API servers to their etcd server, such as mutual auth via TLS client certificates,
+and it is often recommended to isolate the etcd servers behind a firewall that only the API servers
+may access.
+
+{{< caution >}}
+Allowing other components within the cluster to access the master etcd instance with
+read or write access to the full keyspace is equivalent to granting cluster-admin access. Using
+separate etcd instances for non-master components or using etcd ACLs to restrict read and write
+access to a subset of the keyspace is strongly recommended.
+{{< /caution >}}
+-->
+### 限制访问 etcd
+
+拥有对 API 的 etcd 后端的写访问权限相当于获得了整个集群的 root 权限，
+读访问权限也可能被利用，实现相当快速的权限提升。
+对于从 API 服务器访问其 etcd 服务器，管理员应该总是使用比较强的凭证，如通过 TLS
+客户端证书来实现双向认证。
+通常，我们建议将 etcd 服务器隔离到只有 API 服务器可以访问的防火墙后面。
+
+{{< caution >}}
+允许集群中其它组件对整个主键空间（keyspace）拥有读或写权限去访问 etcd 实例，
+相当于授予这些组件集群管理员的访问权限。
+对于非主控组件，强烈推荐使用不同的 etcd 实例，或者使用 etcd 的访问控制列表
+来限制这些组件只能读或写主键空间的一个子集。
+{{< /caution >}}
+
+<!--
+### Enable audit logging
+
+The [audit logger](/docs/tasks/debug/debug-cluster/audit/) is a beta feature that records actions taken by the
+API for later analysis in the event of a compromise. It is recommended to enable audit logging
+and archive the audit file on a secure server.
+-->
+### 启用审计日志
+
+[审计日志](/zh-cn/docs/tasks/debug/debug-cluster/audit/)是 Beta 特性，
+负责记录 API 操作以便在发生破坏时进行事后分析。
+建议启用审计日志，并将审计文件归档到安全服务器上。
+
+<!--
+### Restrict access to alpha or beta features
+
+Alpha and beta Kubernetes features are in active development and may have limitations or bugs
+that result in security vulnerabilities. Always assess the value an alpha or beta feature may
+provide against the possible risk to your security posture. When in doubt, disable features you
+do not use.
+-->
+### 限制使用 alpha 和 beta 特性
+
+Kubernetes 的 alpha 和 beta 特性还在努力开发中，可能存在导致安全漏洞的缺陷或错误。
+要始终评估 alpha 和 beta 特性可能给你的安全态势带来的风险。
+当你怀疑存在风险时，可以禁用那些不需要使用的特性。
+
+<!--
+### Rotate infrastructure credentials frequently
+
+The shorter the lifetime of a secret or credential the harder it is for an attacker to make
+use of that credential. Set short lifetimes on certificates and automate their rotation. Use
+an authentication provider that can control how long issued tokens are available and use short
+lifetimes where possible. If you use service-account tokens in external integrations, plan to
+rotate those tokens frequently. For example, once the bootstrap phase is complete, a bootstrap
+token used for setting up nodes should be revoked or its authorization removed.
+-->
+### 经常轮换基础设施证书
+
+一项机密信息或凭据的生命期越短，攻击者就越难使用该凭据。
+在证书上设置较短的生命期并实现自动轮换是控制安全的一个好方法。
+使用身份验证提供程序时，应该使用那些可以控制所发布令牌的合法时长的提供程序，
+并尽可能设置较短的生命期。
+如果在外部集成场景中使用服务帐户令牌，则应该经常性地轮换这些令牌。
+例如，一旦引导阶段完成，就应该撤销用于配置节点的引导令牌，或者取消它的授权。
+
+<!--
+### Review third party integrations before enabling them
+
+Many third party integrations to Kubernetes may alter the security profile of your cluster. When
+enabling an integration, always review the permissions that an extension requests before granting
+it access. For example, many security integrations may request access to view all secrets on
+your cluster which is effectively making that component a cluster admin. When in doubt,
+restrict the integration to functioning in a single namespace if possible.
+
+Components that create pods may also be unexpectedly powerful if they can do so inside namespaces
+like the `kube-system` namespace, because those pods can gain access to service account secrets
+or run with elevated permissions if those service accounts are granted access to permissive
+[PodSecurityPolicies](/docs/concepts/security/pod-security-policy/).
+-->
+### 在启用第三方集成之前，请先审查它们
+
+许多集成到 Kubernetes 的第三方软件或服务都可能改变你的集群的安全配置。
+启用集成时，在授予访问权限之前，你应该始终检查扩展所请求的权限。
+例如，许多安全性集成中可能要求查看集群上的所有 Secret 的访问权限，
+本质上该组件便成为了集群的管理员。
+当有疑问时，如果可能的话，将要集成的组件限制在某指定名字空间中运行。
+
+如果执行 Pod 创建操作的组件能够在 `kube-system` 这类名字空间中创建 Pod，
+则这类组件也可能获得意外的权限，因为这些 Pod 可以访问服务账户的 Secret，
+或者，如果对应服务帐户被授权访问宽松的
+[PodSecurityPolicy](/zh-cn/docs/concepts/security/pod-security-policy/)，
+它们就能以较高的权限运行。
+
+<!--
+If you use [Pod Security admission](/docs/concepts/security/pod-security-admission/) and allow
+any component to create Pods within a namespace that permits privileged Pods, those Pods may
+be able to escape their containers and use this widened access to elevate their privileges.
+-->
+如果你使用 [Pod 安全准入](/zh-cn/docs/concepts/security/pod-security-admission/)，
+并且允许任何组件在一个允许执行特权 Pod 的名字空间中创建 Pod，这些 Pod
+就可能从所在的容器中逃逸，利用被拓宽的访问权限来实现特权提升。
+
+<!--
+You should not allow untrusted components to create Pods in any system namespace (those with
+names that start with `kube-`) nor in any namespace where that access grant allows the possibility
+of privilege escalation.
+-->
+你不应该允许不可信的组件在任何系统名字空间（名字以 `kube-` 开头）中创建 Pod，
+也不允许它们在访问权限授权可被利用来提升特权的名字空间中创建 Pod。
+
+<!--
+### Encrypt secrets at rest
+
+In general, the etcd database will contain any information accessible via the Kubernetes API
+and may grant an attacker significant visibility into the state of your cluster. Always encrypt
+your backups using a well reviewed backup and encryption solution, and consider using full disk
+encryption where possible.
+
+Kubernetes supports [encryption at rest](/docs/tasks/administer-cluster/encrypt-data/), a feature 
+introduced in 1.7, and beta since 1.13. This will encrypt `Secret` resources in etcd, preventing
+parties that gain access to your etcd backups from viewing the content of those secrets. While
+this feature is currently beta, it offers an additional level of defense when backups
+are not encrypted or an attacker gains read access to etcd.
+-->
+### 对 Secret 进行静态加密
+
+一般情况下，etcd 数据库包含了通过 Kubernetes API 可以访问到的所有信息，
+并且可能为攻击者提供对你的集群的状态的较多的可见性。
+你要始终使用经过充分审查的备份和加密方案来加密备份数据，
+并考虑在可能的情况下使用全盘加密。
+
+Kubernetes 支持[静态数据加密](/zh-cn/docs/tasks/administer-cluster/encrypt-data/)。
+该功能在 1.7 版本引入，并在 1.13 版本成为 Beta。
+它会加密 etcd 里面的 `Secret` 资源，以防止某一方通过查看 etcd 的备份文件查看到这些
+Secret 的内容。虽然目前该功能还只是 Beta 阶段，
+在备份未被加密或者攻击者获取到 etcd 的读访问权限时，它仍能提供额外的防御层级。
+
+<!--
+### Receiving alerts for security updates and reporting vulnerabilities
+
+Join the [kubernetes-announce](https://groups.google.com/forum/#!forum/kubernetes-announce)
+group for emails about security announcements. See the
+[security reporting](/docs/reference/issues-security/security/)
+page for more on how to report vulnerabilities.
+-->
+### 接收安全更新和报告漏洞的警报
+
+请加入 [kubernetes-announce](https://groups.google.com/forum/#!forum/kubernetes-announce)
+组，这样你就能够收到有关安全公告的邮件。有关如何报告漏洞的更多信息，
+请参见[安全报告](/zh-cn/docs/reference/issues-security/security/)页面。
+
diff --git a/content/zh/docs/tasks/administer-cluster/sysctl-cluster.md b/content/zh-cn/docs/tasks/administer-cluster/sysctl-cluster.md
similarity index 78%
rename from content/zh/docs/tasks/administer-cluster/sysctl-cluster.md
rename to content/zh-cn/docs/tasks/administer-cluster/sysctl-cluster.md
index 20e8cee3d8..297ed631b2 100644
--- a/content/zh/docs/tasks/administer-cluster/sysctl-cluster.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/sysctl-cluster.md
@@ -12,7 +12,7 @@ content_type: task
 
 <!-- overview -->
 
-
+{{< feature-state for_k8s_version="v1.21" state="stable" >}}
 <!--
 This document describes how to configure and use kernel parameters within a
 Kubernetes cluster using the {{< glossary_tooltip term_id="sysctl" >}}
@@ -21,10 +21,35 @@ interface.
 本文档介绍如何通过 {{< glossary_tooltip term_id="sysctl" >}}
 接口在 Kubernetes 集群中配置和使用内核参数。
 
+<!--
+Starting from Kubernetes version 1.23, the kubelet supports the use of either `/` or `.`
+as separators for sysctl names.
+For example, you can represent the same sysctl name as `kernel.shm_rmid_forced` using a
+period as the separator, or as `kernel/shm_rmid_forced` using a slash as a separator.
+For more sysctl parameter conversion method details, please refer to
+the page [sysctl.d(5)](https://man7.org/linux/man-pages/man5/sysctl.d.5.html) from
+the Linux man-pages project.
+Setting Sysctls for a Pod and PodSecurityPolicy features do not yet support
+setting sysctls with slashes.
+-->
+{{< note >}}
+从 Kubernetes 1.23 版本开始，kubelet 支持使用 `/` 或 `.` 作为 sysctl 参数的分隔符。
+例如，你可以使用点或者斜线作为分隔符表示相同的 sysctl 参数，以点作为分隔符表示为： `kernel.shm_rmid_forced`，
+或者以斜线作为分隔符表示为：`kernel/shm_rmid_forced`。
+更多 sysctl 参数转换方法详情请参考 Linux man-pages
+[sysctl.d(5)](https://man7.org/linux/man-pages/man5/sysctl.d.5.html) 。
+设置 Pod 的 Sysctl 参数 和 PodSecurityPolicy 功能尚不支持设置包含斜线的 Sysctl 参数。
+{{< /note >}}
 ## {{% heading "prerequisites" %}}
 
 
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+{{< include "task-tutorial-prereqs.md" >}}
+
+<!--
+For some steps, you also need to be able to reconfigure the command line
+options for the kubelets running on your cluster.
+-->
+对一些步骤，你需要能够重新配置在你的集群里运行的 kubelet 命令行的选项。
 
 <!-- steps -->
 
@@ -72,9 +97,9 @@ node. This means that setting a _safe_ sysctl for one pod
 -->
 ## 启用非安全的 Sysctl 参数
 
-sysctl 参数分为 _安全_ 和 _非安全的_。
-_安全_ sysctl 参数除了需要设置恰当的命名空间外，在同一 node 上的不同 Pod 
-之间也必须是 _相互隔离的_。这意味着在 Pod 上设置 _安全_ sysctl 参数
+sysctl 参数分为 **安全** 和 **非安全的**。
+**安全** 的 sysctl 参数除了需要设置恰当的命名空间外，在同一节点上的不同 Pod 
+之间也必须是 **相互隔离的**。这意味着 Pod 上设置 **安全** sysctl 参数：
 
 <!--
 - must not have any influence on any other pod on the node
@@ -90,13 +115,14 @@ _安全_ sysctl 参数除了需要设置恰当的命名空间外，在同一 nod
 By far, most of the _namespaced_ sysctls are not necessarily considered _safe_.
 The following sysctls are supported in the _safe_ set:
 -->
-至今为止，大多数 _有命名空间的_ sysctl 参数不一定被认为是 _安全_ 的。
-以下几种 sysctl 参数是 _安全的_：
+至今为止，大多数 **有命名空间的** sysctl 参数不一定被认为是 **安全** 的。
+以下几种 sysctl 参数是 **安全的**：
 
 - `kernel.shm_rmid_forced`
 - `net.ipv4.ip_local_port_range`
 - `net.ipv4.tcp_syncookies`
 - `net.ipv4.ping_group_range` （从 Kubernetes 1.18 开始）
+- `net.ipv4.ip_unprivileged_port_start` （从 Kubernetes 1.22 开始）。
 
 <!--
 The example `net.ipv4.tcp_syncookies` is not namespaced on Linux kernel version 4.4 or lower.
@@ -110,30 +136,30 @@ This list will be extended in future Kubernetes versions when the kubelet
 supports better isolation mechanisms.
 -->
 在未来的 Kubernetes 版本中，若 kubelet 支持更好的隔离机制，则上述列表中将会
-列出更多 _安全的_ sysctl 参数。
+列出更多 **安全的** sysctl 参数。
 
 <!--
 All _safe_ sysctls are enabled by default.
 -->
-所有 _安全的_ sysctl 参数都默认启用。
+所有 **安全的** sysctl 参数都默认启用。
 
 <!--
 All _unsafe_ sysctls are disabled by default and must be allowed manually by the
 cluster admin on a per-node basis. Pods with disabled unsafe sysctls will be
 scheduled, but will fail to launch.
 -->
-所有 _非安全的_ sysctl 参数都默认禁用，且必须由集群管理员在每个节点上手动开启。
+所有 **非安全的** sysctl 参数都默认禁用，且必须由集群管理员在每个节点上手动开启。
 那些设置了不安全 sysctl 参数的 Pod 仍会被调度，但无法正常启动。
 
 <!--
 With the warning above in mind, the cluster admin can allow certain _unsafe_
-sysctls for very special situations like e.g. high-performance or real-time
+sysctls for very special situations such as high-performance or real-time
 application tuning. _Unsafe_ sysctls are enabled on a node-by-node basis with a
-flag of the kubelet, e.g.:
+flag of the kubelet; for example:
 -->
 参考上述警告，集群管理员只有在一些非常特殊的情况下（如：高可用或实时应用调整），
-才可以启用特定的 _非安全的_ sysctl 参数。
-如需启用 _非安全的_ sysctl 参数，请你在每个节点上分别设置 kubelet 命令行参数，例如：
+才可以启用特定的 **非安全的** sysctl 参数。
+如需启用 **非安全的** sysctl 参数，请你在每个节点上分别设置 kubelet 命令行参数，例如：
 
 ```shell
 kubelet --allowed-unsafe-sysctls \
@@ -151,7 +177,7 @@ minikube start --extra-config="kubelet.allowed-unsafe-sysctls=kernel.msg*,net.co
 <!--
 Only _namespaced_ sysctls can be enabled this way.
 -->
-只有 _有命名空间的_ sysctl 参数可以通过该方式启用。
+只有 **有命名空间的** sysctl 参数可以通过该方式启用。
 
 <!--
 ## Setting Sysctls for a Pod
@@ -185,7 +211,7 @@ Sysctls with no namespace are called _node-level_ sysctls. If you need to set
 them, you must manually configure them on each node's operating system, or by
 using a DaemonSet with privileged containers.
 -->
-没有命名空间的 sysctl 参数称为 _节点级别的_ sysctl 参数。
+没有命名空间的 sysctl 参数称为 **节点级别的** sysctl 参数。
 如果需要对其进行设置，则必须在每个节点的操作系统上手动地去配置它们，
 或者通过在 DaemonSet 中运行特权模式容器来配置。
 
@@ -205,7 +231,7 @@ the specification.
 此示例中，使用 Pod SecurityContext 来对一个安全的 sysctl 参数
 `kernel.shm_rmid_forced` 以及两个非安全的 sysctl 参数
 `net.core.somaxconn` 和 `kernel.msgmax` 进行设置。
-在 Pod 规约中对 _安全的_ 和 _非安全的_ sysctl 参数不做区分。
+在 Pod 规约中对 **安全的** 和 **非安全的** sysctl 参数不做区分。
 
 <!--
 Only modify sysctl parameters after you understand their effects, to avoid
@@ -240,7 +266,7 @@ is at-your-own-risk and can lead to severe problems like wrong behavior of
 containers, resource shortage or complete breakage of a node.
 -->
 {{< warning >}}
-由于 _非安全的_ sysctl 参数其本身具有不稳定性，在使用 _非安全的_ sysctl 参数
+由于 **非安全的** sysctl 参数其本身具有不稳定性，在使用 **非安全的** sysctl 参数
 时可能会导致一些严重问题，如容器的错误行为、机器资源不足或节点被完全破坏，
 用户需自行承担风险。
 {{< /warning >}}
@@ -251,7 +277,7 @@ _tainted_ within a cluster, and only schedule pods onto them which need those
 sysctl settings. It is suggested to use the Kubernetes [_taints and toleration_
 feature](/docs/reference/generated/kubectl/kubectl-commands/#taint) to implement this.
 -->
-最佳实践方案是将集群中具有特殊 sysctl 设置的节点视为 _有污点的_，并且只调度
+最佳实践方案是将集群中具有特殊 sysctl 设置的节点视为 **有污点的**，并且只调度
 需要使用到特殊 sysctl 设置的 Pod 到这些节点上。
 建议使用 Kubernetes 的
 [污点和容忍度特性](/docs/reference/generated/kubectl/kubectl-commands/#taint) 来实现它。
@@ -261,17 +287,19 @@ A pod with the _unsafe_ sysctls will fail to launch on any node which has not
 enabled those two _unsafe_ sysctls explicitly. As with _node-level_ sysctls it
 is recommended to use
 [_taints and toleration_ feature](/docs/reference/generated/kubectl/kubectl-commands/#taint) or
-[taints on nodes](/docs/concepts/configuration/taint-and-toleration/)
+[taints on nodes](/docs/concepts/scheduling-eviction/taint-and-toleration/)
 to schedule those pods onto the right nodes.
 -->
-设置了 _非安全的_ sysctl 参数的 Pod 在禁用了这两种 _非安全的_ sysctl 参数配置
-的节点上启动都会失败。与 _节点级别的_ sysctl 一样，建议开启
+设置了 **非安全的** sysctl 参数的 Pod 在禁用了这两种 **非安全的** sysctl 参数配置
+的节点上启动都会失败。与 **节点级别的** sysctl 一样，建议开启
 [污点和容忍度特性](/docs/reference/generated/kubectl/kubectl-commands/#taint) 或
-[为节点配置污点](/zh/docs/concepts/scheduling-eviction/taint-and-toleration/)
+[为节点配置污点](/zh-cn/docs/concepts/scheduling-eviction/taint-and-toleration/)
 以便将 Pod 调度到正确的节点之上。
 
 ## PodSecurityPolicy
 
+{{< feature-state for_k8s_version="v1.21" state="deprecated" >}}
+
 <!--
 You can further control which sysctls can be set in pods by specifying lists of
 sysctls or sysctl patterns in the `forbiddenSysctls` and/or
@@ -287,7 +315,7 @@ sysctl 参数匹配模式以 `*` 字符结尾，如 `kernel.*`。
 <!--
 By default, all safe sysctls are allowed.
 -->
-所有 _安全的_ sysctl 参数都默认启用。
+所有 **安全的** sysctl 参数都默认启用。
 
 <!--
 Both `forbiddenSysctls` and `allowedUnsafeSysctls` are lists of plain sysctl names
diff --git a/content/zh/docs/tasks/administer-cluster/topology-manager.md b/content/zh-cn/docs/tasks/administer-cluster/topology-manager.md
similarity index 87%
rename from content/zh/docs/tasks/administer-cluster/topology-manager.md
rename to content/zh-cn/docs/tasks/administer-cluster/topology-manager.md
index fe50dbe606..57f1febdc9 100644
--- a/content/zh/docs/tasks/administer-cluster/topology-manager.md
+++ b/content/zh-cn/docs/tasks/administer-cluster/topology-manager.md
@@ -33,7 +33,7 @@ In order to extract the best performance, optimizations related to CPU isolation
 但是，在 Kubernetes 中，这些优化由各自独立的组件集合来处理。
 
 <!--
-_Topology Manager_ is a Kubelet component that aims to co-ordinate the set of components that are responsible for these optimizations.
+_Topology Manager_ is a Kubelet component that aims to coordinate the set of components that are responsible for these optimizations.
 -->
 _拓扑管理器（Topology Manager）_ 是一个 kubelet 的一部分，旨在协调负责这些优化的一组组件。
 
@@ -46,16 +46,16 @@ _拓扑管理器（Topology Manager）_ 是一个 kubelet 的一部分，旨在
 <!--
 ## How Topology Manager Works
 -->
-## 拓扑管理器如何工作
+## 拓扑管理器如何工作 {#how-topology-manager-works}
 
 <!--
 Prior to the introduction of Topology Manager, the CPU and Device Manager in Kubernetes make resource allocation decisions independently of each other.
 This can result in undesirable allocations on multiple-socketed systems, performance/latency sensitive applications will suffer due to these undesirable allocations. 
  Undesirable in this case meaning for example, CPUs and devices being allocated from different NUMA Nodes thus, incurring additional latency.
 -->
-在引入拓扑管理器之前， Kubernetes 中的 CPU 和设备管理器相互独立地做出资源分配决策。
+在引入拓扑管理器之前，Kubernetes 中的 CPU 和设备管理器相互独立地做出资源分配决策。
 这可能会导致在多处理系统上出现并非期望的资源分配；由于这些与期望相左的分配，对性能或延迟敏感的应用将受到影响。
-这里的不符合期望意指，例如， CPU 和设备是从不同的 NUMA 节点分配的，因此会导致额外的延迟。
+这里的不符合期望意指，例如，CPU 和设备是从不同的 NUMA 节点分配的，因此会导致额外的延迟。
 
 <!--
 The Topology Manager is a Kubelet component, which acts as a source of truth so that other Kubelet components can make topology aligned resource allocation choices.
@@ -77,7 +77,7 @@ The hint is then stored in the Topology Manager for use by the *Hint Providers*
 拓扑管理器策略对所提供的建议执行一组操作，并根据策略对提示进行约减以得到最优解；如果存储了与预期不符的建议，则该建议的优选字段将被设置为 false。
 在当前策略中，首选的是最窄的优选掩码。
 所选建议将被存储为拓扑管理器的一部分。
-取决于所配置的策略，所选建议可用来决定节点接受或拒绝 Pod 。
+取决于所配置的策略，所选建议可用来决定节点接受或拒绝 Pod。
 之后，建议会被存储在拓扑管理器中，供 *建议提供者* 进行资源分配决策时使用。
 
 <!--
@@ -85,20 +85,20 @@ The hint is then stored in the Topology Manager for use by the *Hint Providers*
 
 Support for the Topology Manager requires `TopologyManager` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) to be enabled. It is enabled by default starting with Kubernetes 1.18.
 -->
-### 启用拓扑管理器功能特性
+### 启用拓扑管理器功能特性 {#enable-the-topology-manager-feature}
 
 对拓扑管理器的支持要求启用 `TopologyManager`
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)。
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)。
 从 Kubernetes 1.18 版本开始，这一特性默认是启用的。
 
 <!--
-### Topology Manager Scopes and Policies
+## Topology Manager Scopes and Policies
 
 The Topology Manager currently:
  - Aligns Pods of all QoS classes.
  - Aligns the requested resources that Hint Provider provides topology hints for.
 -->
-### 拓扑管理器作用域和策略
+## 拓扑管理器作用域和策略 {#topology-manager-scopes-and-policies}
 
 拓扑管理器目前：
 - 对所有 QoS 类的 Pod 执行对齐操作
@@ -129,7 +129,16 @@ To align CPU resources with other requested resources in a Pod Spec, the CPU Man
 {{< note >}}
 为了将 Pod 规约中的 CPU 资源与其他请求资源对齐，CPU 管理器需要被启用并且
 节点上应配置了适当的 CPU 管理器策略。
-参看[控制 CPU 管理策略](/zh/docs/tasks/administer-cluster/cpu-management-policies/).
+参看[控制 CPU 管理策略](/zh-cn/docs/tasks/administer-cluster/cpu-management-policies/).
+{{< /note >}}
+
+<!--
+To align memory (and hugepages) resources with other requested resources in a Pod Spec, the Memory Manager should be enabled and proper Memory Manager policy should be configured on a Node. Examine [Memory Manager](/docs/tasks/administer-cluster/memory-manager/) documentation.
+-->
+{{< note >}}
+为了将 Pod 规约中的 memory（和 hugepages）资源与所请求的其他资源对齐，需要启用内存管理器，
+并且在节点配置适当的内存管理器策略。查看[内存管理器](/zh-cn/docs/tasks/administer-cluster/memory-manager/)
+文档。
 {{< /note >}}
 
 <!--
@@ -142,7 +151,7 @@ The Topology Manager can deal with the alignment of resources in a couple of dis
 
 Either option can be selected at a time of the kubelet startup, with `--topology-manager-scope` flag.
 -->
-### 拓扑管理器作用域
+### 拓扑管理器作用域 {#topology-manager-scopes}
 
 拓扑管理器可以在以下不同的作用域内进行资源对齐：
 
@@ -156,7 +165,7 @@ Either option can be selected at a time of the kubelet startup, with `--topology
 
 The `container` scope is used by default.
 -->
-### 容器作用域
+### 容器作用域 {#container-scope}
 
 默认使用的是 `container` 作用域。
 
@@ -178,7 +187,7 @@ The notion of grouping the containers was endorsed and implemented on purpose in
 
 To select the `pod` scope, start the kubelet with the command line option `--topology-manager-scope=pod`.
 -->
-### Pod 作用域
+### Pod 作用域 {#pod-scope}
 
 使用命令行选项 `--topology-manager-scope=pod` 来启动 kubelet，就可以选择 `pod` 作用域。
 
@@ -204,7 +213,7 @@ The total amount of particular resource demanded for the entire pod is calculate
 for a resource.
 -->
 整个 Pod 所请求的某种资源总量是根据
-[有效 request/limit](/zh/docs/concepts/workloads/pods/init-containers/#resources)
+[有效 request/limit](/zh-cn/docs/concepts/workloads/pods/init-containers/#resources)
 公式来计算的，
 因此，对某一种资源而言，该总量等于以下数值中的最大值：
 * 所有应用容器请求之和；
@@ -241,7 +250,7 @@ To recap, Topology Manager first computes a set of NUMA nodes and then tests it
 <!--
 ### Topology Manager Policies
 -->
-### 拓扑管理器策略
+### 拓扑管理器策略 {#topology-manager-policies}
 
 <!--
 Topology Manager supports four allocation policies. You can set a policy via a Kubelet flag, `--topology-manager-policy`.
@@ -284,7 +293,7 @@ This is the default policy and does not perform any topology alignment.
 <!--
 ### best-effort policy {#policy-best-effort}
 
-For each container in a Guaranteed Pod, kubelet, with `best-effort` topology 
+For each container in a Pod, the kubelet, with `best-effort` topology 
 management policy, calls each Hint Provider to discover their resource availability.
 Using this information, the Topology Manager stores the 
 preferred NUMA Node affinity for that container. If the affinity is not preferred, 
@@ -292,7 +301,7 @@ Topology Manager will store this and admit the pod to the node anyway.
 -->
 ### best-effort 策略 {#policy-best-effort}
 
-对于 Guaranteed 类的 Pod 中的每个容器，具有 `best-effort` 拓扑管理策略的
+对于 Pod 中的每个容器，具有 `best-effort` 拓扑管理策略的
 kubelet 将调用每个建议提供者以确定资源可用性。
 使用此信息，拓扑管理器存储该容器的首选 NUMA 节点亲和性。
 如果亲和性不是首选，则拓扑管理器将存储该亲和性，并且无论如何都将  pod 接纳到该节点。
@@ -306,7 +315,7 @@ resource allocation decision.
 <!--
 ### restricted policy {#policy-restricted}
 
-For each container in a Guaranteed Pod, kubelet, with `restricted` topology 
+For each container in a Pod, the kubelet, with `restricted` topology 
 management policy, calls each Hint Provider to discover their resource availability.
 Using this information, the Topology Manager stores the 
 preferred NUMA Node affinity for that container. If the affinity is not preferred, 
@@ -314,10 +323,10 @@ Topology Manager will reject this pod from the node. This will result in a pod i
 -->
 ### restricted 策略 {#policy-restricted}
 
-对于 Guaranteed 类 Pod 中的每个容器， 配置了 `restricted` 拓扑管理策略的 kubelet
-调用每个建议提供者以确定其资源可用性。。
+对于 Pod 中的每个容器，配置了 `restricted` 拓扑管理策略的 kubelet
+调用每个建议提供者以确定其资源可用性。
 使用此信息，拓扑管理器存储该容器的首选 NUMA 节点亲和性。
-如果亲和性不是首选，则拓扑管理器将从节点中拒绝此 Pod 。
+如果亲和性不是首选，则拓扑管理器将从节点中拒绝此 Pod。
 这将导致 Pod 处于 `Terminated` 状态，且 Pod 无法被节点接纳。
 
 <!--
@@ -337,7 +346,7 @@ resource allocation decision.
 <!--
 ### single-numa-node policy {#policy-single-numa-node}
 
-For each container in a Guaranteed Pod, kubelet, with `single-numa-node` topology 
+For each container in a Pod, the kubelet, with `single-numa-node` topology 
 management policy, calls each Hint Provider to discover their resource availability.
 Using this information, the Topology Manager determines if a single NUMA Node affinity is possible.
 If it is, Topology Manager will store this and the *Hint Providers* can then use this information when making the 
@@ -346,7 +355,7 @@ If, however, this is not possible then the Topology Manager will reject the pod
 -->
 ### single-numa-node 策略 {#policy-single-numa-node}
 
-对于 Guaranteed 类 Pod 中的每个容器， 配置了 `single-numa-nodde` 拓扑管理策略的
+对于 Pod 中的每个容器，配置了 `single-numa-nodde` 拓扑管理策略的
 kubelet 调用每个建议提供者以确定其资源可用性。
 使用此信息，拓扑管理器确定单 NUMA 节点亲和性是否可能。
 如果是这样，则拓扑管理器将存储此信息，然后 *建议提供者* 可以在做出资源分配决定时使用此信息。
@@ -366,7 +375,7 @@ An external control loop could be also implemented to trigger a redeployment of
 
 Consider the containers in the following pod specs:
 -->
-### Pod 与拓扑管理器策略的交互
+### Pod 与拓扑管理器策略的交互 {#pod-interactions-with-topology-manager-policies}
 
 考虑以下 pod 规范中的容器：
 
@@ -401,7 +410,7 @@ This pod runs in the `Burstable` QoS class because requests are less than limits
 由于 requests 数少于 limits，因此该 Pod 以 `Burstable` QoS 类运行。
 
 <!--
-If the selected policy is anything other than `none`, Topology Manager would consider these Pod specifications. The Topology Manager would consult the Hint Providers to get topology hints. In the case of the `static`, the CPU Manager policy would return default topology hint, because these Pods do not have explicity request CPU resources.
+If the selected policy is anything other than `none`, Topology Manager would consider these Pod specifications. The Topology Manager would consult the Hint Providers to get topology hints. In the case of the `static`, the CPU Manager policy would return default topology hint, because these Pods do not have explicitly request CPU resources.
 -->
 如果选择的策略是 `none` 以外的任何其他策略，拓扑管理器都会评估这些 Pod 的规范。
 拓扑管理器会咨询建议提供者，获得拓扑建议。
@@ -425,8 +434,7 @@ spec:
 ```
 
 <!--
-This pod with integer CPU request runs in the `Guaranteed` QoS class because
-`requests` are equal to `limits`.
+This pod with integer CPU request runs in the `Guaranteed` QoS class because `requests` are equal to `limits`.
 -->
 此 Pod 以 `Guaranteed` QoS 类运行，因为其 `requests` 值等于 `limits` 值。
 
@@ -450,12 +458,12 @@ This pod runs in the `BestEffort` QoS class because there are no CPU and memory
 因为未指定 CPU 和内存请求，所以 Pod 以 `BestEffort` QoS 类运行。
 
 <!--
-The Topology Manager would consider both of the above pods. The Topology Manager would consult the Hint Providers, which are CPU and Device Manager to get topology hints for the pods. 
+The Topology Manager would consider the above pods. The Topology Manager would consult the Hint Providers, which are CPU and Device Manager to get topology hints for the pods. 
 
-In the case of the `Guaranteed` pod with integer request, the `static` CPU Manager policy would return hints relating to the CPU request and the Device Manager would send back hints for the requested device.
+In the case of the `Guaranteed` pod with integer CPU request, the `static` CPU Manager policy would return topology hints relating to the exclusive CPU and the Device Manager would send back hints for the requested device.
 -->
 拓扑管理器将考虑以上两个 Pod。拓扑管理器将咨询建议提供者即 CPU 和设备管理器，以获取 Pod 的拓扑提示。
-对于 `Guaranteed` 类的 CPU 请求数为整数的 Pod，`static` CPU 管理器策略将返回与 CPU 请求有关的提示，
+对于 `Guaranteed` 类的 CPU 请求数为整数的 Pod，`static` CPU 管理器策略将返回独占 CPU 相关的拓扑提示，
 而设备管理器将返回有关所请求设备的提示。
 
 <!--
@@ -487,15 +495,10 @@ Using this information the Topology Manager calculates the optimal hint for the
 1. The maximum number of NUMA nodes that Topology Manager allows is 8. With more than 8 NUMA nodes there will be a state explosion when trying to enumerate the possible NUMA affinities and generating their hints.
 
 2. The scheduler is not topology-aware, so it is possible to be scheduled on a node and then fail on the node due to the Topology Manager.
-
-3. The Device Manager and the CPU Manager are the only components to adopt the Topology Manager's HintProvider interface. This means that NUMA alignment can only be achieved for resources managed by the CPU Manager and the Device Manager. Memory or Hugepages are not considered by the Topology Manager for NUMA alignment.
 -->
-### 已知的局限性
+### 已知的局限性 {#known-limitations}
 
 1. 拓扑管理器所能处理的最大 NUMA 节点个数是 8。若 NUMA 节点数超过 8，
    枚举可能的 NUMA 亲和性并为之生成提示时会发生状态爆炸。
-2. 调度器不支持拓扑功能，因此可能会由于拓扑管理器的原因而在节点上进行调度，然后在该节点上调度失败。
-3. 设备管理器和 CPU 管理器时能够采纳拓扑管理器 HintProvider 接口的唯一两个组件。
-   这意味着 NUMA 对齐只能针对 CPU 管理器和设备管理器所管理的资源实现。
-   内存和大页面在拓扑管理器决定 NUMA 对齐时都还不会被考虑在内。
+2. 调度器不是拓扑感知的，所以有可能一个 Pod 被调度到一个节点之后，会因为拓扑管理器的缘故在该节点上启动失败。
 
diff --git a/content/zh-cn/docs/tasks/administer-cluster/use-cascading-deletion.md b/content/zh-cn/docs/tasks/administer-cluster/use-cascading-deletion.md
new file mode 100644
index 0000000000..22d0dd800e
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/use-cascading-deletion.md
@@ -0,0 +1,533 @@
+---
+title: 在集群中使用级联删除
+content_type: task
+---
+
+<!--
+title: Use Cascading Deletion in a Cluster
+content_type: task
+-->
+
+<!--overview-->
+
+<!--
+This page shows you how to specify the type of
+[cascading deletion](/docs/concepts/architecture/garbage-collection/#cascading-deletion)
+to use in your cluster during {{<glossary_tooltip text="garbage collection" term_id="garbage-collection">}}.
+-->
+本页面向你展示如何设置在你的集群执行{{<glossary_tooltip text="垃圾收集" term_id="garbage-collection">}}
+时要使用的[级联删除](/zh-cn/docs/concepts/architecture/garbage-collection/#cascading-deletion)
+类型。
+
+## {{% heading "prerequisites" %}}
+
+{{< include "task-tutorial-prereqs.md" >}}
+
+<!--
+You also need to [create a sample Deployment](/docs/tasks/run-application/run-stateless-application-deployment/#creating-and-exploring-an-nginx-deployment) 
+to experiment with the different types of cascading deletion. You will need to
+recreate the Deployment for each type.
+-->
+你还需要[创建一个 Deployment 示例](/zh-cn/docs/tasks/run-application/run-stateless-application-deployment/#creating-and-exploring-an-nginx-deployment)
+以试验不同类型的级联删除。你需要为每种级联删除类型来重建 Deployment。
+
+<!--
+## Check owner references on your pods
+
+Check that the `ownerReferences` field is present on your pods:
+-->
+## 检查 Pod 上的属主引用    {#check-owner-references-on-your-pods}
+
+检查确认你的 Pods 上存在 `ownerReferences` 字段：
+
+```shell 
+kubectl get pods -l app=nginx --output=yaml
+```
+
+<!--
+The output has an `ownerReferences` field similar to this:
+-->
+输出中包含 `ownerReferences` 字段，类似这样：
+
+```yaml
+apiVersion: v1
+    ...
+    ownerReferences:
+    - apiVersion: apps/v1
+      blockOwnerDeletion: true
+      controller: true
+      kind: ReplicaSet
+      name: nginx-deployment-6b474476c4
+      uid: 4fdcd81c-bd5d-41f7-97af-3a3b759af9a7
+    ...
+```
+
+<!--
+## Use foreground cascading deletion {#use-foreground-cascading-deletion}
+
+By default, Kubernetes uses [background cascading deletion](/docs/concepts/architecture/garbage-collection/#background-deletion)
+to delete dependents of an object. You can switch to foreground cascading deletion
+using either `kubectl` or the Kubernetes API, depending on the Kubernetes
+version your cluster runs. {{<version-check>}}
+-->
+## 使用前台级联删除    {#use-foreground-cascading-deletion}
+
+默认情况下，Kubernetes 使用[后台级联删除](/zh-cn/docs/concepts/architecture/garbage-collection/#background-deletion)
+以删除依赖某对象的其他对象。取决于你的集群所运行的 Kubernetes 版本，
+你可以使用 `kubectl` 或者 Kubernetes API 来切换到前台级联删除。
+{{<version-check>}}
+
+{{<tabs name="foreground_deletion">}}
+{{% tab name="Kubernetes 1.20.x 及更新版本" %}}
+
+<!--
+You can delete objects using foreground cascading deletion using `kubectl` or the
+Kubernetes API.
+-->
+你可以使用 `kubectl` 或者 Kubernetes API 来基于前台级联删除来删除对象。
+
+<!--
+**Using kubectl**
+
+Run the following command:
+-->
+**使用 kubectl**
+
+运行下面的命令：
+
+<!--TODO: verify release after which the --cascade flag is switched to a string in https://github.com/kubernetes/kubectl/commit/fd930e3995957b0093ecc4b9fd8b0525d94d3b4e-->
+
+```shell
+kubectl delete deployment nginx-deployment --cascade=foreground
+```
+
+<!--
+**Using the Kubernetes API**
+-->
+**使用 Kubernetes API**
+
+<!--
+1. Start a local proxy session:
+-->
+1. 启动一个本地代理会话：
+
+   ```shell
+   kubectl proxy --port=8080
+   ```
+
+<!--
+1. Use `curl` to trigger deletion:
+-->
+2. 使用 `curl` 来触发删除操作：
+
+   ```shell
+   curl -X DELETE localhost:8080/apis/apps/v1/namespaces/default/deployments/nginx-deployment \
+       -d '{"kind":"DeleteOptions","apiVersion":"v1","propagationPolicy":"Foreground"}' \
+       -H "Content-Type: application/json"
+   ```
+
+   <!--
+   The output contains a `foregroundDeletion` {{<glossary_tooltip text="finalizer" term_id="finalizer">}}
+   like this:
+   -->
+   输出中包含 `foregroundDeletion` {{<glossary_tooltip text="finalizer" term_id="finalizer">}}，
+   类似这样：
+
+   ```
+   "kind": "Deployment",
+   "apiVersion": "apps/v1",
+   "metadata": {
+       "name": "nginx-deployment",
+       "namespace": "default",
+       "uid": "d1ce1b02-cae8-4288-8a53-30e84d8fa505",
+       "resourceVersion": "1363097",
+       "creationTimestamp": "2021-07-08T20:24:37Z",
+       "deletionTimestamp": "2021-07-08T20:27:39Z",
+       "finalizers": [
+         "foregroundDeletion"
+       ]
+       ...
+   ```
+
+{{% /tab %}}
+{{% tab name="Kubernetes 1.20.x 之前的版本" %}}
+
+<!--
+You can delete objects using foreground cascading deletion by calling the
+Kubernetes API.
+
+For details, read the [documentation for your Kubernetes version](/docs/home/supported-doc-versions/).
+-->
+你可以通过调用 Kubernetes API 来基于前台级联删除模式删除对象。
+
+进一步的细节，可阅读[特定于你的 Kubernetes 版本的文档](/zh-cn/docs/home/supported-doc-versions)。
+
+<!--
+1. Start a local proxy session:
+-->
+1. 启动一个本地代理会话：
+
+   ```shell
+   kubectl proxy --port=8080
+   ```
+
+<!--
+1. Use `curl` to trigger deletion:
+-->
+2. 使用 `curl` 来触发删除操作：
+
+   ```shell
+   curl -X DELETE localhost:8080/apis/apps/v1/namespaces/default/deployments/nginx-deployment \
+       -d '{"kind":"DeleteOptions","apiVersion":"v1","propagationPolicy":"Foreground"}' \
+       -H "Content-Type: application/json"
+   ```
+
+   <!--
+   The output contains a `foregroundDeletion` {{<glossary_tooltip text="finalizer" term_id="finalizer">}}
+   like this:
+   -->
+   输出中包含 `foregroundDeletion` {{<glossary_tooltip text="finalizer" term_id="finalizer">}}，
+   类似这样：
+
+   ```
+   "kind": "Deployment",
+   "apiVersion": "apps/v1",
+   "metadata": {
+       "name": "nginx-deployment",
+       "namespace": "default",
+       "uid": "d1ce1b02-cae8-4288-8a53-30e84d8fa505",
+       "resourceVersion": "1363097",
+       "creationTimestamp": "2021-07-08T20:24:37Z",
+       "deletionTimestamp": "2021-07-08T20:27:39Z",
+       "finalizers": [
+         "foregroundDeletion"
+       ]
+       ...
+   ```
+{{% /tab %}}
+{{</tabs>}}
+
+<!--
+## Use background cascading deletion {#use-background-cascading-deletion}
+-->
+## 使用后台级联删除 {#use-background-cascading-deletion}
+
+<!--
+1. [Create a sample Deployment](/docs/tasks/run-application/run-stateless-application-deployment/#creating-and-exploring-an-nginx-deployment).
+1. Use either `kubectl` or the Kubernetes API to delete the Deployment,
+   depending on the Kubernetes version your cluster runs. {{<version-check>}}
+-->
+1. [创建一个 Deployment 示例](/zh-cn/docs/tasks/run-application/run-stateless-application-deployment/#creating-and-exploring-an-nginx-deployment)。
+1. 基于你的集群所运行的 Kubernetes 版本，使用 `kubectl` 或者 Kubernetes API 来删除 Deployment。
+   {{<version-check>}}
+
+{{<tabs name="background_deletion">}}
+{{% tab name="Kubernetes 1.20.x 及更新版本" %}}
+
+<!--
+You can delete objects using background cascading deletion using `kubectl`
+or the Kubernetes API.
+
+Kubernetes uses background cascading deletion by default, and does so
+even if you run the following commands without the `--cascade` flag or the
+`propagationPolicy` argument.
+-->
+你可以使用 `kubectl` 或者 Kubernetes API 来执行后台级联删除方式的对象删除操作。
+
+Kubernetes 默认采用后台级联删除方式，如果你在运行下面的命令时不指定
+`--cascade` 标志或者 `propagationPolicy` 参数时，用这种方式来删除对象。
+
+<!--
+**Using kubectl**
+
+Run the following command:
+-->
+**使用 kubectl**
+
+运行下面的命令：
+
+```shell
+kubectl delete deployment nginx-deployment --cascade=background
+```
+
+<!--
+**Using the Kubernetes API**
+-->
+**使用 Kubernetes API**
+
+<!--
+1. Start a local proxy session:
+-->
+1. 启动一个本地代理会话：
+
+   ```shell
+   kubectl proxy --port=8080
+   ```
+
+<!--
+1. Use `curl` to trigger deletion:
+-->
+2. 使用 `curl` 来触发删除操作：
+
+   ```shell
+   curl -X DELETE localhost:8080/apis/apps/v1/namespaces/default/deployments/nginx-deployment \
+       -d '{"kind":"DeleteOptions","apiVersion":"v1","propagationPolicy":"Background"}' \
+       -H "Content-Type: application/json"
+   ```
+
+   <!--
+   The output is similar to this:
+   -->
+   输出类似于：
+
+   ```
+   "kind": "Status",
+   "apiVersion": "v1",
+   ...
+   "status": "Success",
+   "details": {
+       "name": "nginx-deployment",
+       "group": "apps",
+       "kind": "deployments",
+       "uid": "cc9eefb9-2d49-4445-b1c1-d261c9396456"
+   }
+   ```
+{{% /tab %}}
+{{% tab name="Kubernetes 1.20.x 之前的版本" %}}
+
+<!--
+Kubernetes uses background cascading deletion by default, and does so
+even if you run the following commands without the `--cascade` flag or the
+`propagationPolicy: Background` argument.
+-->
+Kubernetes 默认采用后台级联删除方式，如果你在运行下面的命令时不指定
+`--cascade` 标志或者 `propagationPolicy` 参数时，用这种方式来删除对象。
+
+<!--
+For details, read the [documentation for your Kubernetes version](/docs/home/supported-doc-versions/).
+-->
+进一步的细节，可阅读[特定于你的 Kubernetes 版本的文档](/zh-cn/docs/home/supported-doc-versions)。
+
+<!--
+**Using kubectl**
+
+Run the following command:
+-->
+**使用 kubectl**
+
+运行下面的命令：
+
+```shell
+kubectl delete deployment nginx-deployment --cascade=true
+```
+
+<!--
+**Using the Kubernetes API**
+-->
+**使用 Kubernetes API**
+
+<!--
+1. Start a local proxy session:
+-->
+1. 启动一个本地代理会话：
+
+   ```shell
+   kubectl proxy --port=8080
+   ```
+
+<!--
+1. Use `curl` to trigger deletion:
+-->
+2. 使用 `curl` 来触发删除操作：
+
+   ```shell
+   curl -X DELETE localhost:8080/apis/apps/v1/namespaces/default/deployments/nginx-deployment \
+       -d '{"kind":"DeleteOptions","apiVersion":"v1","propagationPolicy":"Background"}' \
+       -H "Content-Type: application/json"
+   ```
+
+   <!--
+   The output is similar to this:
+   -->
+   输出类似于：
+
+   ```
+   "kind": "Status",
+   "apiVersion": "v1",
+   ...
+   "status": "Success",
+   "details": {
+       "name": "nginx-deployment",
+       "group": "apps",
+       "kind": "deployments",
+       "uid": "cc9eefb9-2d49-4445-b1c1-d261c9396456"
+   }
+   ```
+{{% /tab %}}
+{{</tabs>}}
+
+<!--
+## Delete owner objects and orphan dependents {#set-orphan-deletion-policy}
+
+By default, when you tell Kubernetes to delete an object, the
+{{<glossary_tooltip text="controller" term_id="controller">}} also deletes
+dependent objects. You can make Kubernetes *orphan* these dependents using
+`kubectl` or the Kubernetes API, depending on the Kubernetes version your
+cluster runs. {{<version-check>}}
+-->
+## 删除属主对象和孤立的依赖对象   {#set-orphan-deletion-policy}
+
+默认情况下，当你告诉 Kubernetes 删除某个对象时，
+{{<glossary_tooltip text="控制器" term_id="controller">}} 也会删除依赖该对象
+的其他对象。
+取决于你的集群所运行的 Kubernetes 版本，你也可以使用 `kubectl` 或者 Kubernetes
+API 来让 Kubernetes *孤立* 这些依赖对象。{{<version-check>}}
+
+{{<tabs name="orphan_objects">}}
+{{% tab name="Kubernetes 1.20.x 及更新版本" %}}
+
+<!--
+**Using kubectl**
+
+Run the following command:
+-->
+**使用 kubectl**
+
+运行下面的命令：
+
+```shell
+kubectl delete deployment nginx-deployment --cascade=orphan
+```
+
+<!--
+**Using the Kubernetes API**
+-->
+**使用 Kubernetes API**
+
+<!--
+1. Start a local proxy session:
+-->
+1. 启动一个本地代理会话：
+
+   ```shell
+   kubectl proxy --port=8080
+   ```
+
+<!--
+1. Use `curl` to trigger deletion:
+-->
+2. 使用 `curl` 来触发删除操作：
+
+   ```shell
+   curl -X DELETE localhost:8080/apis/apps/v1/namespaces/default/deployments/nginx-deployment \
+       -d '{"kind":"DeleteOptions","apiVersion":"v1","propagationPolicy":"Orphan"}' \
+       -H "Content-Type: application/json"
+   ```
+
+   <!--
+   The output contains `orphan` in the `finalizers` field, similar to this:
+   -->
+   输出中在 `finalizers` 字段中包含 `orphan`，如下所示：
+
+   ```
+   "kind": "Deployment",
+   "apiVersion": "apps/v1",
+   "namespace": "default",
+   "uid": "6f577034-42a0-479d-be21-78018c466f1f",
+   "creationTimestamp": "2021-07-09T16:46:37Z",
+   "deletionTimestamp": "2021-07-09T16:47:08Z",
+   "deletionGracePeriodSeconds": 0,
+   "finalizers": [
+     "orphan"
+   ],
+   ...
+   ```
+
+{{% /tab %}}
+{{% tab name="Kubernetes 1.20.x 之前的版本" %}}
+
+<!--
+For details, read the [documentation for your Kubernetes version](/docs/home/supported-doc-versions/).
+-->
+进一步的细节，可阅读[特定于你的 Kubernetes 版本的文档](/zh-cn/docs/home/supported-doc-versions)。
+
+<!--
+**Using kubectl**
+
+Run the following command:
+-->
+**使用 kubectl**
+
+运行下面的命令：
+
+```shell
+kubectl delete deployment nginx-deployment --cascade=orphan
+```
+
+<!--
+**Using the Kubernetes API**
+-->
+**使用 Kubernetes API**
+
+<!--
+1. Start a local proxy session:
+-->
+1. 启动一个本地代理会话：
+
+   ```shell
+   kubectl proxy --port=8080
+   ```
+
+<!--
+1. Use `curl` to trigger deletion:
+-->
+2. 使用 `curl` 来触发删除操作：
+
+
+   ```shell
+   curl -X DELETE localhost:8080/apis/apps/v1/namespaces/default/deployments/nginx-deployment \
+       -d '{"kind":"DeleteOptions","apiVersion":"v1","propagationPolicy":"Orphan"}' \
+       -H "Content-Type: application/json"
+   ```
+
+   <!--
+   The output contains `orphan` in the `finalizers` field, similar to this:
+   -->
+   输出中在 `finalizers` 字段中包含 `orphan`，如下所示：
+
+   ```
+   "kind": "Deployment",
+   "apiVersion": "apps/v1",
+   "namespace": "default",
+   "uid": "6f577034-42a0-479d-be21-78018c466f1f",
+   "creationTimestamp": "2021-07-09T16:46:37Z",
+   "deletionTimestamp": "2021-07-09T16:47:08Z",
+   "deletionGracePeriodSeconds": 0,
+   "finalizers": [
+     "orphan"
+   ],
+   ...
+   ```
+{{% /tab %}}
+{{</tabs>}}
+
+<!--
+You can check that the Pods managed by the Deployment are still running:
+-->
+你可以检查 Deployment 所管理的 Pods 仍然处于运行状态：
+
+```shell
+kubectl get pods -l app=nginx
+```
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* Learn about [owners and dependents](/docs/concepts/overview/working-with-objects/owners-dependents/) in Kubernetes.
+* Learn about Kubernetes [finalizers](/docs/concepts/overview/working-with-objects/finalizers/).
+* Learn about [garbage collection](/docs/concepts/workloads/controllers/garbage-collection/).
+-->
+* 了解 Kubernetes 中的[属主与依赖](/zh-cn/docs/concepts/overview/working-with-objects/owners-dependents/)
+* 了解 Kubernetes [finalizers](/zh-cn/docs/concepts/overview/working-with-objects/finalizers/)
+* 了解[垃圾收集](/zh-cn/docs/concepts/architecture/garbage-collection/).
+
diff --git a/content/zh-cn/docs/tasks/administer-cluster/verify-signed-images.md b/content/zh-cn/docs/tasks/administer-cluster/verify-signed-images.md
new file mode 100644
index 0000000000..507011981c
--- /dev/null
+++ b/content/zh-cn/docs/tasks/administer-cluster/verify-signed-images.md
@@ -0,0 +1,120 @@
+---
+title: 验证已签名容器镜像
+content_type: task
+min-kubernetes-server-version: v1.24
+---
+<!--
+title: Verify Signed Container Images
+content_type: task
+min-kubernetes-server-version: v1.24
+-->
+
+<!-- overview -->
+
+{{< feature-state state="alpha" for_k8s_version="v1.24" >}}
+
+## {{% heading "prerequisites" %}}
+
+<!--
+These instructions are for Kubernetes {{< skew currentVersion >}}. If you want
+to check the integrity of components for a different version of Kubernetes,
+check the documentation for that Kubernetes release.
+
+You will need to have the following tools installed:
+
+- `cosign` ([install guide](https://docs.sigstore.dev/cosign/installation/))
+- `curl` (often provided by your operating system)
+-->
+这些说明适用于 Kubernetes {{< skew currentVersion >}}。如果你想要检查其他版本的 Kubernetes 组件的完整性，
+请查看对应 Kubernetes 版本的文档。
+
+你需要安装以下工具:
+
+- `cosign` ([安装指南](https://docs.sigstore.dev/cosign/installation/))
+- `curl` (通常由你的操作系统提供)
+
+<!--
+## Verifying image signatures
+
+For a complete list of images that are signed please refer
+to [Releases](/releases/download/).
+
+Let's pick one image from this list and verify its signature using
+the `cosign verify` command:
+-->
+## 验证镜像签名 {#verifying-image-signatures}
+
+完整的镜像签名列表请参见[发行版本](/releases/download/)。
+
+我们从这个列表中选择一个镜像，并使用 `cosign verify` 命令来验证它的签名：
+
+```shell
+COSIGN_EXPERIMENTAL=1 cosign verify k8s.gcr.io/kube-apiserver-amd64:v1.24.0
+```
+
+{{< note >}}
+<!--
+`COSIGN_EXPERIMENTAL=1` is used to allow verification of images signed
+in `KEYLESS` mode. To learn more about keyless signing, please refer to
+[Keyless Signatures](https://github.com/sigstore/cosign/blob/main/KEYLESS.md#keyless-signatures)
+-->
+`COSIGN_EXPERIMENTAL=1` 用于对以 `KEYLESS` 模式签名的镜像进行验证。想要进一步了解 `KEYLESS`，请参考
+[Keyless Signatures](https://github.com/sigstore/cosign/blob/main/KEYLESS.md#keyless-signatures)。
+{{< /note >}}
+
+<!--
+### Verifying images for all control plane components
+
+To verify all signed control plane images, please run this command:
+-->
+### 验证所有控制平面组件镜像  {#verifying-images-for-all-control-plane-components}
+
+验证所有已签名的控制平面组件镜像，请运行以下命令：
+
+```shell
+curl -Ls https://sbom.k8s.io/$(curl -Ls https://dl.k8s.io/release/latest.txt)/release | grep 'PackageName: k8s.gcr.io/' | awk '{print $2}' > images.txt
+input=images.txt
+while IFS= read -r image
+do
+  COSIGN_EXPERIMENTAL=1 cosign verify "$image"
+done < "$input"
+```
+
+<!--
+Once you have verified an image, specify that image by its digest in your Pod
+manifests as per this
+example: `registry-url/image-name@sha256:45b23dee08af5e43a7fea6c4cf9c25ccf269ee113168c19722f87876677c5cb2`.
+
+For more information, please refer
+to [Image Pull Policy](/docs/concepts/containers/images/#image-pull-policy)
+section.
+-->
+当你完成某个镜像的验证时，可以在你的 Pod 清单通过摘要值来指定该镜像，例如：
+`registry-url/image-name@sha256:45b23dee08af5e43a7fea6c4cf9c25ccf269ee113168c19722f87876677c5cb2`。
+
+要了解更多信息，请参考[镜像拉取策略](/zh-cn/docs/concepts/containers/images/#image-pull-policy)章节。
+
+<!--
+## Verifying Image Signatures with Admission Controller
+
+For non-control plane images (
+e.g. [conformance image](https://github.com/kubernetes/kubernetes/blob/master/test/conformance/image/README.md))
+, signatures can also be verified at deploy time using
+[cosigned](https://docs.sigstore.dev/cosign/kubernetes/#cosigned-admission-controller)
+admission controller. To get started with `cosigned` here are a few helpful
+resources:
+
+* [Installation](https://github.com/sigstore/helm-charts/tree/main/charts/cosigned)
+* [Configuration Options](https://github.com/sigstore/cosign/tree/main/config)
+-->
+## 使用准入控制器验证镜像签名   {#verifying-image-signatures-with-admission-controller}
+
+有一些非控制平面镜像
+（例如 [conformance 镜像](https://github.com/kubernetes/kubernetes/blob/master/test/conformance/image/README.md)），
+也可以在部署时使用
+[cosigned](https://docs.sigstore.dev/cosign/kubernetes/#cosigned-admission-controller)
+控制器验证其签名。如要使用 `cosigned`，下面是一些有帮助的资源：
+
+* [安装](https://github.com/sigstore/cosign#installation)
+* [配置选项](https://github.com/sigstore/cosign/blob/main/USAGE.md#detailed-usage)
+
diff --git a/content/zh/docs/tasks/configmap-secret/_index.md b/content/zh-cn/docs/tasks/configmap-secret/_index.md
similarity index 100%
rename from content/zh/docs/tasks/configmap-secret/_index.md
rename to content/zh-cn/docs/tasks/configmap-secret/_index.md
diff --git a/content/zh-cn/docs/tasks/configmap-secret/managing-secret-using-config-file.md b/content/zh-cn/docs/tasks/configmap-secret/managing-secret-using-config-file.md
new file mode 100644
index 0000000000..af557a0563
--- /dev/null
+++ b/content/zh-cn/docs/tasks/configmap-secret/managing-secret-using-config-file.md
@@ -0,0 +1,282 @@
+---
+title: 使用配置文件管理 Secret
+content_type: task
+weight: 20
+description: 使用资源配置文件创建 Secret 对象。
+---
+<!--  
+title: Managing Secrets using Configuration File
+content_type: task
+weight: 20
+description: Creating Secret objects using resource configuration file.
+-->
+
+<!-- overview -->
+
+## {{% heading "prerequisites" %}}
+
+{{< include "task-tutorial-prereqs.md" >}}
+
+<!-- steps -->
+
+<!--
+## Create the Secret {#create-the-config-file}
+-->
+## 创建 Secret  {#create-the-config-file}
+
+<!--
+You can define the `Secret` object in a manifest first, in JSON or YAML format,
+and then create that object. The
+[Secret](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#secret-v1-core)
+resource contains two maps: `data` and `stringData`.
+The `data` field is used to store arbitrary data, encoded using base64. The
+`stringData` field is provided for convenience, and it allows you to provide
+the same data as unencoded strings.
+The keys of `data` and `stringData` must consist of alphanumeric characters,
+`-`, `_` or `.`.
+-->
+你可以先用 JSON 或 YAML 格式在一个清单文件中定义 `Secret` 对象，然后创建该对象。
+[Secret](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#secret-v1-core)
+资源包含 2 个键值对：`data` 和 `stringData`。
+`data` 字段用来存储 base64 编码的任意数据。
+提供 `stringData` 字段是为了方便，它允许 Secret 使用未编码的字符串。
+`data` 和 `stringData` 的键必须由字母、数字、`-`、`_` 或 `.` 组成。
+
+<!--
+The following example stores two strings in a Secret using the `data` field.
+-->
+以下示例使用 `data` 字段在 Secret 中存储两个字符串：
+
+<!-- 
+1. Convert the strings to base64: 
+-->
+1. 将这些字符串转换为 base64：
+
+   ```shell
+   echo -n 'admin' | base64
+   echo -n '1f2d1e2e67df' | base64
+   ```
+
+   {{< note >}}
+   <!--
+   The serialized JSON and YAML values of Secret data are encoded as base64 strings. Newlines are not valid within these strings and must be omitted. When using the `base64` utility on Darwin/macOS, users should avoid using the `-b` option to split long lines. Conversely, Linux users *should* add the option `-w 0` to `base64` commands or the pipeline `base64 | tr -d '\n'` if the `-w` option is not available.
+   -->
+   Secret 数据的 JSON 和 YAML 序列化结果是以 base64 编码的。
+   换行符在这些字符串中无效，必须省略。
+   在 Darwin/macOS 上使用 `base64` 工具时，用户不应该使用 `-b` 选项分割长行。
+   相反地，Linux 用户**应该**在 `base64` 地命令中添加 `-w 0` 选项，
+   或者在 `-w` 选项不可用的情况下，输入 `base64 | tr -d '\n'`。
+   {{< /note >}}
+
+   <!--
+   The output is similar to:
+   -->
+   输出类似于：
+
+   ```
+   YWRtaW4=
+   MWYyZDFlMmU2N2Rm
+   ```
+<!-- 
+1. Create the manifest: 
+-->
+2. 创建清单：
+
+   ```yaml
+   apiVersion: v1
+   kind: Secret
+   metadata:
+     name: mysecret
+   type: Opaque
+   data:
+     username: YWRtaW4=
+     password: MWYyZDFlMmU2N2Rm
+   ```
+   <!-- 
+   Note that the name of a Secret object must be a valid
+   [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names). 
+   -->
+   注意，Secret 对象的名称必须是有效的 [DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
+
+<!-- 
+1. Create the Secret using [`kubectl apply`](/docs/reference/generated/kubectl/kubectl-commands#apply): 
+-->
+3. 使用 [`kubectl apply`](/docs/reference/generated/kubectl/kubectl-commands#apply) 创建 Secret：
+
+   ```shell
+   kubectl apply -f ./secret.yaml
+   ```
+
+   <!--
+   The output is similar to:
+   -->
+   输出类似于：
+
+   ```
+   secret/mysecret created
+   ```
+<!-- 
+To verify that the Secret was created and to decode the Secret data, refer to
+[Managing Secrets using kubectl](/docs/tasks/configmap-secret/managing-secret-using-kubectl/#verify-the-secret). 
+-->
+若要验证 Secret 被创建以及想要解码 Secret 数据，
+请参阅[使用 kubectl 管理 Secret](/zh-cn/docs/tasks/configmap-secret/managing-secret-using-kubectl/#verify-the-secret)
+
+<!-- 
+### Specify unencoded data when creating a Secret
+-->
+### 创建 Secret 时提供未编码的数据  {#specify-unencoded-data-when-creating-a-secret}
+
+<!-- 
+For certain scenarios, you may wish to use the `stringData` field instead. This
+field allows you to put a non-base64 encoded string directly into the Secret,
+and the string will be encoded for you when the Secret is created or updated.
+-->
+对于某些场景，你可能希望使用 `stringData` 字段。
+这个字段可以将一个非 base64 编码的字符串直接放入 Secret 中，
+当创建或更新该 Secret 时，此字段将被编码。
+
+<!--  
+A practical example of this might be where you are deploying an application
+that uses a Secret to store a configuration file, and you want to populate
+parts of that configuration file during your deployment process.
+-->
+上述用例的实际场景可能是这样：当你部署应用时，使用 Secret 存储配置文件，
+你希望在部署过程中，填入部分内容到该配置文件。
+
+<!--
+For example, if your application uses the following configuration file:
+-->
+例如，如果你的应用程序使用以下配置文件:
+
+```yaml
+apiUrl: "https://my.api.com/api/v1"
+username: "<user>"
+password: "<password>"
+```
+
+<!--
+You could store this in a Secret using the following definition:
+-->
+你可以使用以下定义将其存储在 Secret 中:
+
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: mysecret
+type: Opaque
+stringData:
+  config.yaml: |
+    apiUrl: "https://my.api.com/api/v1"
+    username: <user>
+    password: <password>
+```
+
+<!-- 
+When you retrieve the Secret data, the command returns the encoded values,
+and not the plaintext values you provided in `stringData`.
+
+For example, if you run the following command: 
+-->
+当你检索 Secret 数据时，此命令将返回编码的值，并不是你在 `stringData` 中提供的纯文本值。
+
+例如，如果你运行以下命令：
+
+```shell
+kubectl get secret mysecret -o yaml
+```
+
+<!--
+The output is similar to:
+-->
+输出类似于：
+
+```yaml
+apiVersion: v1
+data:
+  config.yaml: YXBpVXJsOiAiaHR0cHM6Ly9teS5hcGkuY29tL2FwaS92MSIKdXNlcm5hbWU6IHt7dXNlcm5hbWV9fQpwYXNzd29yZDoge3twYXNzd29yZH19
+kind: Secret
+metadata:
+  creationTimestamp: 2018-11-15T20:40:59Z
+  name: mysecret
+  namespace: default
+  resourceVersion: "7225"
+  uid: c280ad2e-e916-11e8-98f2-025000000001
+type:
+```
+
+<!-- 
+### Specifying both `data` and `stringData`
+
+If you specify a field in both `data` and `stringData`, the value from `stringData` is used.
+
+For example, if you define the following Secret:
+-->
+### 同时指定 `data` 和 `stringData` {#specifying-both-data-and-stringdata}
+
+如果你在 `data` 和 `stringData` 中设置了同一个字段，则使用来自 `stringData` 中的值。
+
+例如，如果你定义以下 Secret：
+
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: mysecret
+type: Opaque
+data:
+  username: YWRtaW4=
+stringData:
+  username: administrator
+```
+
+<!--
+The `Secret` object is created as follows:
+-->
+所创建的 `Secret` 对象如下：
+
+```yaml
+apiVersion: v1
+data:
+  username: YWRtaW5pc3RyYXRvcg==
+kind: Secret
+metadata:
+  creationTimestamp: 2018-11-15T20:46:46Z
+  name: mysecret
+  namespace: default
+  resourceVersion: "7579"
+  uid: 91460ecb-e917-11e8-98f2-025000000001
+type: Opaque
+```
+
+<!--
+`YWRtaW5pc3RyYXRvcg==` decodes to `administrator`.
+-->
+`YWRtaW5pc3RyYXRvcg==` 解码成 `administrator`。
+
+<!--
+## Clean Up
+-->
+## 清理    {#clean-up}
+
+<!--
+To delete the Secret you have created:
+-->
+删除你创建的 Secret：
+
+```shell
+kubectl delete secret mysecret
+```
+
+## {{% heading "whatsnext" %}}
+
+<!-- 
+- Read more about the [Secret concept](/docs/concepts/configuration/secret/)
+- Learn how to [manage Secrets with the `kubectl` command](/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
+- Learn how to [manage Secrets using kustomize](/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
+-->
+- 进一步阅读 [Secret 概念](/zh-cn/docs/concepts/configuration/secret/)
+- 了解如何[使用 `kubectl` 命令管理 Secret](/zh-cn/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
+- 了解如何[使用 kustomize 管理 Secret](/zh-cn/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
+
diff --git a/content/zh/docs/tasks/configmap-secret/managing-secret-using-kubectl.md b/content/zh-cn/docs/tasks/configmap-secret/managing-secret-using-kubectl.md
similarity index 83%
rename from content/zh/docs/tasks/configmap-secret/managing-secret-using-kubectl.md
rename to content/zh-cn/docs/tasks/configmap-secret/managing-secret-using-kubectl.md
index 8e2dd7d202..be100e17d8 100644
--- a/content/zh/docs/tasks/configmap-secret/managing-secret-using-kubectl.md
+++ b/content/zh-cn/docs/tasks/configmap-secret/managing-secret-using-kubectl.md
@@ -159,6 +159,11 @@ accidentally, or from being stored in a terminal log.
 `kubectl get` 和 `kubectl describe` 命令默认不显示 `Secret` 的内容。
 这是为了防止 `Secret` 被意外暴露或存储在终端日志中。
 
+<!--
+To check the actual content of the encoded data, refer to [Decoding the Secret](#decoding-secret).
+-->
+查看编码数据的实际内容，请参考[解码 Secret](#decoding-secret)。
+
 <!-- ## Decoding the Secret  {#decoding-secret} -->
 ## 解码 Secret  {#decoding-secret}
 
@@ -184,6 +189,10 @@ Now you can decode the `password` data:
 现在你可以解码 `password` 的数据：
 
 ```shell
+# 这是一个用于文档说明的示例。
+# 如果你这样做，数据 'MWYyZDFlMmU2N2Rm' 可以存储在你的 shell 历史中。
+# 可以进入你电脑的人可以找到那个记住的命令并可以在你不知情的情况下 base-64 解码这个 Secret。
+# 通常最好将这些步骤结合起来，如页面后面所示。
 echo 'MWYyZDFlMmU2N2Rm' | base64 --decode
 ```
 
@@ -194,6 +203,21 @@ echo 'MWYyZDFlMmU2N2Rm' | base64 --decode
 1f2d1e2e67df
 ```
 
+<!--
+In order to avoid storing a secret encoded value in your shell history, you can
+run the following command:
+-->
+为了避免在 shell 历史记录中存储 Secret 的编码值，可以执行如下命令:
+
+```shell
+kubectl get secret db-user-pass -o jsonpath='{.data.password}' | base64 --decode
+```
+
+<!--
+The output shall be similar as above.
+-->
+输出应与上述类似。
+
 <!-- ## Clean Up -->
 ## 清理    {#clean-up}
 
@@ -213,6 +237,6 @@ kubectl delete secret db-user-pass
 - Learn how to [manage Secrets using config files](/docs/tasks/configmap-secret/managing-secret-using-config-file/)
 - Learn how to [manage Secrets using kustomize](/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
 -->
-- 进一步阅读 [Secret 概念](/zh/docs/concepts/configuration/secret/)
-- 了解如何[使用配置文件管理 Secret](/zh/docs/tasks/configmap-secret/managing-secret-using-config-file/)
-- 了解如何[使用 kustomize 管理 Secret](/zh/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
+- 进一步阅读 [Secret 概念](/zh-cn/docs/concepts/configuration/secret/)
+- 了解如何[使用配置文件管理 Secret](/zh-cn/docs/tasks/configmap-secret/managing-secret-using-config-file/)
+- 了解如何[使用 kustomize 管理 Secret](/zh-cn/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
diff --git a/content/zh/docs/tasks/configmap-secret/managing-secret-using-kustomize.md b/content/zh-cn/docs/tasks/configmap-secret/managing-secret-using-kustomize.md
similarity index 87%
rename from content/zh/docs/tasks/configmap-secret/managing-secret-using-kustomize.md
rename to content/zh-cn/docs/tasks/configmap-secret/managing-secret-using-kustomize.md
index de6967d438..ed6de4a9db 100644
--- a/content/zh/docs/tasks/configmap-secret/managing-secret-using-kustomize.md
+++ b/content/zh-cn/docs/tasks/configmap-secret/managing-secret-using-kustomize.md
@@ -21,7 +21,7 @@ Kustomize generators should be specified in a `kustomization.yaml` file inside
 a directory. After generating the Secret, you can create the Secret on the API
 server with `kubectl apply`.
 -->
-从 kubernetes v1.14 开始，`kubectl` 支持[使用 Kustomize 管理对象](/zh/docs/tasks/manage-kubernetes-objects/kustomization/)。
+从 kubernetes v1.14 开始，`kubectl` 支持[使用 Kustomize 管理对象](/zh-cn/docs/tasks/manage-kubernetes-objects/kustomization/)。
 Kustomize 提供了资源生成器（Generators）来创建 Secret 和 ConfigMap。
 Kustomize 生成器应该在某个目录的 `kustomization.yaml` 文件中指定。
 生成 Secret 后，你可以使用 `kubectl apply` 在 API 服务器上创建该 Secret。
@@ -40,7 +40,7 @@ You can generate a Secret by defining a `secretGenerator` in a
 For example, the following kustomization file references the
 `./username.txt` and the `./password.txt` files:
 -->
-你可以在 `kustomization.yaml` 中定义 `secreteGenerator`，并在定义中引用其他现成的文件，生成 Secret。
+你可以在 `kustomization.yaml` 中定义 `secreteGenerator` 字段，并在定义中引用其它本地文件生成 Secret。
 例如：下面的 kustomization 文件 引用了 `./username.txt` 和 `./password.txt` 文件：
 
 ```yaml
@@ -57,7 +57,7 @@ file by providing some literals.
 For example, the following `kustomization.yaml` file contains two literals
 for `username` and `password` respectively:
 -->
-你也可以在 `kustomization.yaml` 文件中指定一些字面量定义 `secretGenerator`。
+你也可以在 `kustomization.yaml` 文件中指定一些字面量定义 `secretGenerator` 字段。
 例如：下面的 `kustomization.yaml` 文件中包含了 `username` 和 `password` 两个字面量：
 
 ```yaml
@@ -93,7 +93,7 @@ Note that in all cases, you don't need to base64 encode the values.
 ## 创建 Secret    {#create-the-secret}
 
 <!-- Apply the directory containing the `kustomization.yaml` to create the Secret. -->
-使用 `kubectl apply` 命令应用包含 `kustomization.yaml` 文件的目录创建 Secret。
+在包含 `kustomization.yaml` 文件的目录下使用 `kubectl apply` 命令创建 Secret。
 
 ```shell
 kubectl apply -k .
@@ -165,8 +165,7 @@ To check the actual content of the encoded data, please refer to
 -->
 `kubectl get` 和 `kubectl describe` 命令默认不显示 `Secret` 的内容。
 这是为了防止 `Secret` 被意外暴露给旁观者或存储在终端日志中。
-检查编码后的实际内容，请参考[解码 secret](/zh/docs/tasks/configmap-secret/managing-secret-using-kubectl/#decoding-secret)。 
--->
+检查编码后的实际内容，请参考[解码 secret](/zh-cn/docs/tasks/configmap-secret/managing-secret-using-kubectl/#decoding-secret)。 
 
 
 <!-- ## Clean Up -->
@@ -187,6 +186,6 @@ kubectl delete secret db-user-pass-96mffmfh4k
 - Learn how to [manage Secrets with the `kubectl` command](/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
 - Learn how to [manage Secrets using config file](/docs/tasks/configmap-secret/managing-secret-using-config-file/) 
 -->
-- 进一步阅读 [Secret 概念](/zh/docs/concepts/configuration/secret/)
-- 了解如何[使用 `kubectl` 命令管理 Secret](/zh/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
-- 了解如何[使用配置文件管理 Secret](/zh/docs/tasks/configmap-secret/managing-secret-using-config-file/)
+- 进一步阅读 [Secret 概念](/zh-cn/docs/concepts/configuration/secret/)
+- 了解如何[使用 `kubectl` 命令管理 Secret](/zh-cn/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
+- 了解如何[使用配置文件管理 Secret](/zh-cn/docs/tasks/configmap-secret/managing-secret-using-config-file/)
diff --git a/content/zh/docs/tasks/configure-pod-container/_index.md b/content/zh-cn/docs/tasks/configure-pod-container/_index.md
similarity index 100%
rename from content/zh/docs/tasks/configure-pod-container/_index.md
rename to content/zh-cn/docs/tasks/configure-pod-container/_index.md
diff --git a/content/zh/docs/tasks/configure-pod-container/assign-cpu-resource.md b/content/zh-cn/docs/tasks/configure-pod-container/assign-cpu-resource.md
similarity index 86%
rename from content/zh/docs/tasks/configure-pod-container/assign-cpu-resource.md
rename to content/zh-cn/docs/tasks/configure-pod-container/assign-cpu-resource.md
index df1636c8dd..e06146a158 100644
--- a/content/zh/docs/tasks/configure-pod-container/assign-cpu-resource.md
+++ b/content/zh-cn/docs/tasks/configure-pod-container/assign-cpu-resource.md
@@ -18,7 +18,7 @@ a container. Containers cannot use more CPU than the configured limit.
 Provided the system has CPU time free, a container is guaranteed to be
 allocated as much CPU as it requests.
 -->
-本页面展示如何为容器设置 CPU *request（请求）* 和 CPU *limit（限制）*。
+本页面展示如何为容器设置 CPU **request（请求）** 和 CPU **limit（限制）**。
 容器使用的 CPU 不能超过所配置的限制。
 如果系统有空闲的 CPU 时间，则可以保证给容器分配其所请求数量的 CPU 资源。
 
@@ -43,7 +43,7 @@ following command to enable metrics-server:
 [metrics-server](https://github.com/kubernetes-sigs/metrics-server)
 服务。如果你的集群中已经有正在运行的 metrics-server 服务，可以跳过这些步骤。
 
-如果你正在运行{{< glossary_tooltip term_id="minikube" >}}，请运行以下命令启用 metrics-server：
+如果你正在运行 {{< glossary_tooltip term_id="minikube" >}}，请运行以下命令启用 metrics-server：
 
 ```shell
 minikube addons enable metrics-server
@@ -53,7 +53,7 @@ minikube addons enable metrics-server
 To see whether metrics-server (or another provider of the resource metrics
 API, `metrics.k8s.io`) is running, type the following command:
 -->
-查看 metrics-server（或者其他资源度量 API `metrics.k8s.io` 服务提供者）是否正在运行，
+查看 metrics-server（或者其他资源指标 API `metrics.k8s.io` 服务提供者）是否正在运行，
 请键入以下命令：
 
 ```shell
@@ -79,7 +79,7 @@ v1beta1.metrics.k8s.io
 Create a {{< glossary_tooltip term_id="namespace" >}} so that the resources you
 create in this exercise are isolated from the rest of your cluster.
 -->
-## 创建一个名字空间
+## 创建一个名字空间 {#create-a-namespace}
 
 创建一个{{< glossary_tooltip text="名字空间" term_id="namespace" >}}，以便将
 本练习中创建的资源与集群的其余部分资源隔离。
@@ -104,7 +104,7 @@ The `-cpus "2"` argument tells the Container to attempt to use 2 CPUs.
 
 Create the Pod:
 -->
-## 指定 CPU 请求和 CPU 限制
+## 指定 CPU 请求和 CPU 限制 {#specify-a-CPU-request-and-a-CPU-limit}
 
 要为容器指定 CPU 请求，请在容器资源清单中包含 `resources: requests` 字段。
 要指定 CPU 限制，请包含 `resources:limits`。
@@ -145,7 +145,7 @@ kubectl get pod cpu-demo --output=yaml --namespace=cpu-example
 The output shows that the one container in the Pod has a CPU request of 500 milliCPU
 and a CPU limit of 1 CPU.
 -->
-输出显示 Pod 中的一个容器的 CPU 请求为 500 milli CPU，并且 CPU 限制为 1 个 CPU。
+输出显示 Pod 中的一个容器的 CPU 请求为 500 milliCPU，并且 CPU 限制为 1 个 CPU。
 
 ```yaml
 resources:
@@ -158,7 +158,7 @@ resources:
 <!-- 
 Use `kubectl top` to fetch the metrics for the pod:
 -->
-使用 `kubectl top` 命令来获取该 Pod 的度量值数据：
+使用 `kubectl top` 命令来获取该 Pod 的指标：
 
 ```shell
 kubectl top pod cpu-demo --namespace=cpu-example
@@ -207,7 +207,7 @@ The CPU resource is measured in *CPU* units. One CPU, in Kubernetes, is equivale
 -->
 ## CPU 单位  {#cpu-units}
 
-CPU 资源以 *CPU* 单位度量。Kubernetes 中的一个 CPU 等同于：
+CPU 资源以 **CPU** 单位度量。Kubernetes 中的一个 CPU 等同于：
 
 * 1 个 AWS vCPU 
 * 1 个 GCP核心
@@ -256,7 +256,7 @@ capacity of any Node in your cluster.
 
 Create the Pod:
 -->
-## 设置超过节点能力的 CPU 请求
+## 设置超过节点能力的 CPU 请求 {#specify-a-CPU-request-that-is-too-big-for-your-nodes}
 
 CPU 请求和限制与都与容器相关，但是我们可以考虑一下 Pod 具有对应的 CPU 请求和限制这样的场景。
 Pod 对 CPU 用量的请求等于 Pod 中所有容器的请求数量之和。
@@ -341,7 +341,7 @@ Container is automatically assigned the default limit. Cluster administrators ca
 [LimitRange](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#limitrange-v1-core/)
 to specify a default value for the CPU limit.
 -->
-## 如果不指定 CPU 限制
+## 如果不指定 CPU 限制 {#if-you-do-not-specify-a-cpu-limit}
 
 如果你没有为容器指定 CPU 限制，则会发生以下情况之一：
 
@@ -360,7 +360,7 @@ assigns a CPU request that matches the limit. Similarly, if a Container specifie
 but does not specify a memory request, Kubernetes automatically assigns a memory request that matches
 the limit.
 -->
-## 如果你设置了 CPU 限制但未设置 CPU 请求
+## 如果你设置了 CPU 限制但未设置 CPU 请求 {#if-you-specify-a-CPU-limit-but-do-not-specify-a-CPU-request}
 
 如果你为容器指定了 CPU 限制值但未为其设置 CPU 请求，Kubernetes 会自动为其
 设置与 CPU 限制相同的 CPU 请求值。类似的，如果容器设置了内存限制值但未设置
@@ -377,13 +377,14 @@ scheduled. By having a CPU limit that is greater than the CPU request, you accom
 * The Pod can have bursts of activity where it makes use of CPU resources that happen to be available.
 * The amount of CPU resources a Pod can use during a burst is limited to some reasonable amount.
 -->
-## CPU 请求和限制的初衷
+## CPU 请求和限制的初衷 {#motivation-for-CPU-requests-and-limits}
 
 通过配置你的集群中运行的容器的 CPU 请求和限制，你可以有效利用集群上可用的 CPU 资源。
 通过将 Pod CPU 请求保持在较低水平，可以使 Pod 更有机会被调度。
 通过使 CPU 限制大于 CPU 请求，你可以完成两件事：
 
 * Pod 可能会有突发性的活动，它可以利用碰巧可用的 CPU 资源。
+
 * Pod 在突发负载期间可以使用的 CPU 资源数量仍被限制为合理的数量。	
 
 <!-- 
@@ -391,9 +392,9 @@ scheduled. By having a CPU limit that is greater than the CPU request, you accom
 
 Delete your namespace:
 -->
-## 清理
+## 清理 {#clean-up}
 
-删除名称空间：
+删除名字空间：
 
 ```shell
 kubectl delete namespace cpu-example
@@ -410,10 +411,11 @@ kubectl delete namespace cpu-example
 * [Configure Quality of Service for Pods](/docs/tasks/configure-pod-container/quality-service-pod/)
 
 -->
-### 针对应用开发者
+### 针对应用开发者 {#for-app-developers}
 
-* [将内存资源分配给容器和 Pod](/zh/docs/tasks/configure-pod-container/assign-memory-resource/)
-* [配置 Pod 服务质量](/zh/docs/tasks/configure-pod-container/quality-service-pod/)
+* [将内存资源分配给容器和 Pod](/zh-cn/docs/tasks/configure-pod-container/assign-memory-resource/)
+
+* [配置 Pod 服务质量](/zh-cn/docs/tasks/configure-pod-container/quality-service-pod/)
 
 <!-- 
 ### For cluster administrators
@@ -427,13 +429,12 @@ kubectl delete namespace cpu-example
 * [Configure Quotas for API Objects](/docs/tasks/administer-cluster/quota-api-object/)
 
 -->
-### 针对集群管理员
-
-* [配置名称空间的默认内存请求和限制](/zh/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
-* [为名字空间配置默认 CPU 请求和限制](/zh/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/)
-* [为名字空间配置最小和最大内存限制](/zh/docs/tasks/administer-cluster//manage-resources/memory-constraint-namespace/)
-* [为名字空间配置最小和最大 CPU 约束](/zh/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
-* [为名字空间配置内存和 CPU 配额](/zh/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
-* [为名字空间配置 Pod 配额](/zh/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace/)
-* [配置 API 对象的配额](/zh/docs/tasks/administer-cluster/quota-api-object/)
+### 针对集群管理员 {for-cluster-administrators}
 
+* [配置名字空间的默认内存请求和限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
+* [为名字空间配置默认 CPU 请求和限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/)
+* [为名字空间配置最小和最大内存限制](/zh-cn/docs/tasks/administer-cluster//manage-resources/memory-constraint-namespace/)
+* [为名字空间配置最小和最大 CPU 约束](/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
+* [为名字空间配置内存和 CPU 配额](/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
+* [为名字空间配置 Pod 配额](/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace/)
+* [配置 API 对象的配额](/zh-cn/docs/tasks/administer-cluster/quota-api-object/)
diff --git a/content/zh/docs/tasks/configure-pod-container/assign-memory-resource.md b/content/zh-cn/docs/tasks/configure-pod-container/assign-memory-resource.md
similarity index 89%
rename from content/zh/docs/tasks/configure-pod-container/assign-memory-resource.md
rename to content/zh-cn/docs/tasks/configure-pod-container/assign-memory-resource.md
index 501090706b..71ac184837 100644
--- a/content/zh/docs/tasks/configure-pod-container/assign-memory-resource.md
+++ b/content/zh-cn/docs/tasks/configure-pod-container/assign-memory-resource.md
@@ -17,7 +17,7 @@ This page shows how to assign a memory *request* and a memory *limit* to a
 Container. A Container is guaranteed to have as much memory as it requests,
 but is not allowed to use more memory than its limit.
 -->
-此页面展示如何将内存 *请求* （request）和内存 *限制* （limit）分配给一个容器。
+此页面展示如何将内存**请求**（request）和内存**限制**（limit）分配给一个容器。
 我们保障容器拥有它请求数量的内存，但不允许使用超过限制数量的内存。
 
 ## {{% heading "prerequisites" %}}
@@ -78,7 +78,7 @@ v1beta1.metrics.k8s.io
 Create a namespace so that the resources you create in this exercise are
 isolated from the rest of your cluster.
 -->
-## 创建命名空间
+## 创建命名空间    {#create-a-namespace}
 
 创建一个命名空间，以便将本练习中创建的资源与集群的其余部分隔离。
 
@@ -96,7 +96,7 @@ In this exercise, you create a Pod that has one Container. The Container has a m
 request of 100 MiB and a memory limit of 200 MiB. Here's the configuration file
 for the Pod:
 -->
-## 指定内存请求和限制
+## 指定内存请求和限制    {#specify-a-memory-request-and-a-memory-limit}
 
 要为容器指定内存请求，请在容器资源清单中包含 `resources：requests` 字段。
 同理，要指定内存限制，请包含 `resources：limits`。
@@ -149,10 +149,10 @@ and a memory limit of 200 MiB.
 ```yaml
 ...
 resources:
-  limits:
-    memory: 200Mi
   requests:
     memory: 100Mi
+  limits:
+    memory: 200Mi
 ...
 ```
 
@@ -196,7 +196,7 @@ its limit, the Container becomes a candidate for termination. If the Container c
 consume memory beyond its limit, the Container is terminated. If a terminated Container can be
 restarted, the kubelet restarts it, as with any other type of runtime failure.
 -->
-## 超过容器限制的内存
+## 超过容器限制的内存    {#exceed-a-container-s-memory-limit}
 
 当节点拥有足够的可用内存时，容器可以使用其请求的内存。
 但是，容器不允许使用超过其限制的内存。
@@ -260,10 +260,10 @@ The output shows that the Container was killed because it is out of memory (OOM)
 -->
 输出结果显示：由于内存溢出（OOM），容器已被杀掉：
 
-```shell
+```yaml
 lastState:
    terminated:
-     containerID: docker://65183c1877aaec2e8427bc95609cc52677a454b56fcb24340dbd22917c23b10f
+     containerID: 65183c1877aaec2e8427bc95609cc52677a454b56fcb24340dbd22917c23b10f
      exitCode: 137
      finishedAt: 2017-06-20T20:52:19Z
      reason: OOMKilled
@@ -352,7 +352,7 @@ of a Pod as having a memory request and limit. The memory request for the Pod is
 sum of the memory requests for all the Containers in the Pod. Likewise, the memory
 limit for the Pod is the sum of the limits of all the Containers in the Pod.
 -->
-## 超过整个节点容量的内存
+## 超过整个节点容量的内存    {#specify-a-memory-request-that-is-too-big-for-your-nodes}
 
 内存请求和限制是与容器关联的，但将 Pod 视为具有内存请求和限制，也是很有用的。
 Pod 的内存请求是 Pod 中所有容器的内存请求之和。
@@ -419,7 +419,7 @@ The output shows that the Container cannot be scheduled because of insufficient
 -->
 输出结果显示：由于节点内存不足，该容器无法被调度：
 
-```shell
+```
 Events:
   ...  Reason            Message
        ------            -------
@@ -433,14 +433,14 @@ The memory resource is measured in bytes. You can express memory as a plain inte
 fixed-point integer with one of these suffixes: E, P, T, G, M, K, Ei, Pi, Ti, Gi, Mi, Ki.
 For example, the following represent approximately the same value:
 -->
-## 内存单位
+## 内存单位    {#memory-units}
 
 内存资源的基本单位是字节（byte）。你可以使用这些后缀之一，将内存表示为
 纯整数或定点整数：E、P、T、G、M、K、Ei、Pi、Ti、Gi、Mi、Ki。
 例如，下面是一些近似相同的值：
 
-```shell
-128974848, 129e6, 129M , 123Mi
+```
+128974848, 129e6, 129M, 123Mi
 ```
 
 <!--
@@ -457,7 +457,7 @@ kubectl delete pod memory-demo-3 --namespace=mem-example
 
 If you do not specify a memory limit for a Container, one of the following situations applies:
 -->
-## 如果你没有指定内存限制
+## 如果你没有指定内存限制    {#if-you-do-not-specify-a-memory-limit}
 
 如果你没有为一个容器指定内存限制，则自动遵循以下情况之一：
 
@@ -486,7 +486,7 @@ cluster, you can make efficient use of the memory resources available on your cl
 Nodes. By keeping a Pod's memory request low, you give the Pod a good chance of being
 scheduled. By having a memory limit that is greater than the memory request, you accomplish two things:
 -->
-## 内存请求和限制的目的
+## 内存请求和限制的目的    {#motivation-for-memory-requests-and-limits}
 
 通过为集群中运行的容器配置内存请求和限制，你可以有效利用集群节点上可用的内存资源。
 通过将 Pod 的内存请求保持在较低水平，你可以更好地安排 Pod 调度。
@@ -504,7 +504,7 @@ scheduled. By having a memory limit that is greater than the memory request, you
 
 Delete your namespace. This deletes all the Pods that you created for this task:
 -->
-## 清理
+## 清理    {#clean-up}
 
 删除命名空间。下面的命令会删除你根据这个任务创建的所有 Pod：
 
@@ -521,11 +521,11 @@ kubectl delete namespace mem-example
 
 * [Configure Quality of Service for Pods](/docs/tasks/configure-pod-container/quality-service-pod/)
 -->
-### 应用开发者扩展阅读
+### 应用开发者扩展阅读    {#for-app-developers}
 
-* [为容器和 Pod 分配 CPU 资源](/zh/docs/tasks/configure-pod-container/assign-cpu-resource/)
+* [为容器和 Pod 分配 CPU 资源](/zh-cn/docs/tasks/configure-pod-container/assign-cpu-resource/)
 
-* [配置 Pod 的服务质量](/zh/docs/tasks/configure-pod-container/quality-service-pod/)
+* [配置 Pod 的服务质量](/zh-cn/docs/tasks/configure-pod-container/quality-service-pod/)
 
 
 <!--
@@ -545,13 +545,13 @@ kubectl delete namespace mem-example
 
 * [Configure Quotas for API Objects](/docs/tasks/administer-cluster/quota-api-object/)
 -->
-### 集群管理员扩展阅读
+### 集群管理员扩展阅读    {#for-cluster-administrators}
 
-* [为命名空间配置默认的内存请求和限制](/zh/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
-* [为命名空间配置默认的 CPU 请求和限制](/zh/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/)
-* [配置命名空间的最小和最大内存约束](/zh/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)
-* [配置命名空间的最小和最大 CPU 约束](/zh/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
-* [为命名空间配置内存和 CPU 配额](/zh/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
-* [配置命名空间下 Pod 总数](/zh/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace/)
-* [配置 API 对象配额](/zh/docs/tasks/administer-cluster/quota-api-object/)
+* [为命名空间配置默认的内存请求和限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
+* [为命名空间配置默认的 CPU 请求和限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/)
+* [配置命名空间的最小和最大内存约束](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)
+* [配置命名空间的最小和最大 CPU 约束](/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
+* [为命名空间配置内存和 CPU 配额](/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
+* [配置命名空间下 Pod 总数](/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace/)
+* [配置 API 对象配额](/zh-cn/docs/tasks/administer-cluster/quota-api-object/)
 
diff --git a/content/zh/docs/tasks/configure-pod-container/assign-pods-nodes-using-node-affinity.md b/content/zh-cn/docs/tasks/configure-pod-container/assign-pods-nodes-using-node-affinity.md
similarity index 98%
rename from content/zh/docs/tasks/configure-pod-container/assign-pods-nodes-using-node-affinity.md
rename to content/zh-cn/docs/tasks/configure-pod-container/assign-pods-nodes-using-node-affinity.md
index 159468a06b..856286b1ea 100644
--- a/content/zh/docs/tasks/configure-pod-container/assign-pods-nodes-using-node-affinity.md
+++ b/content/zh-cn/docs/tasks/configure-pod-container/assign-pods-nodes-using-node-affinity.md
@@ -183,4 +183,4 @@ Learn more about
 [Node Affinity](/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity).
 -->
 进一步了解
-[节点亲和性](/zh/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity).
+[节点亲和性](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity).
diff --git a/content/zh/docs/tasks/configure-pod-container/assign-pods-nodes.md b/content/zh-cn/docs/tasks/configure-pod-container/assign-pods-nodes.md
similarity index 60%
rename from content/zh/docs/tasks/configure-pod-container/assign-pods-nodes.md
rename to content/zh-cn/docs/tasks/configure-pod-container/assign-pods-nodes.md
index 5ad4f62c28..388798317d 100644
--- a/content/zh/docs/tasks/configure-pod-container/assign-pods-nodes.md
+++ b/content/zh-cn/docs/tasks/configure-pod-container/assign-pods-nodes.md
@@ -14,30 +14,31 @@ weight: 120
 This page shows how to assign a Kubernetes Pod to a particular node in a
 Kubernetes cluster.
 -->
-此页面显示如何将 Kubernetes Pod 分配给 Kubernetes 集群中的特定节点。
-
+此页面显示如何将 Kubernetes Pod 指派给 Kubernetes 集群中的特定节点。
 
 ## {{% heading "prerequisites" %}}
 
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
-
 <!-- steps -->
 
 <!--
 ## Add a label to a node
 
-1. List the nodes in your cluster:
+1. List the {{< glossary_tooltip term_id="node" text="nodes" >}} in your cluster, along with their labels:
 -->
 ## 给节点添加标签
 
-1. 列出集群中的节点
+1. 列出你的集群中的{{< glossary_tooltip term_id="node" text="节点" >}}，
+   包括这些节点上的标签：
 
    ```shell
    kubectl get nodes
    ```
 
-   <!-- The output is similar to this: -->
+   <!--
+   The output is similar to this:
+   -->
    输出类似如下：
 
    ```
@@ -48,9 +49,9 @@ Kubernetes cluster.
    ```
 
 <!--
-1. Chose one of your nodes, and add a label to it:
+1. Choose one of your nodes, and add a label to it:
 -->
-2. 选择其中一个节点，为它添加标签：
+2. 从你的节点中选择一个，为它添加标签：
 
    ```shell
    kubectl label nodes <your-node-name> disktype=ssd
@@ -64,7 +65,7 @@ Kubernetes cluster.
 <!--
 1. Verify that your chosen node has a `disktype=ssd` label:
 -->
-3. 验证你选择的节点是否有 `disktype=ssd` 标签：
+3. 验证你选择的节点确实带有 `disktype=ssd` 标签：
 
    ```shell
    kubectl get nodes --show-labels
@@ -94,10 +95,10 @@ This pod configuration file describes a pod that has a node selector,
 `disktype: ssd`. This means that the pod will get scheduled on a node that has
 a `disktype=ssd` label.
 -->
-## 创建一个调度到你选择的节点的 pod
+## 创建一个将被调度到你选择的节点的 Pod
 
-此 Pod 配置文件描述了一个拥有节点选择器 `disktype: ssd` 的 Pod。这表明该 Pod 将被调度到
-有 `disktype=ssd` 标签的节点。
+此 Pod 配置文件描述了一个拥有节点选择器 `disktype: ssd` 的 Pod。这表明该 Pod
+将被调度到有 `disktype=ssd` 标签的节点。
 
 {{< codenew file="pods/pod-nginx.yaml" >}}
 
@@ -105,7 +106,7 @@ a `disktype=ssd` label.
 1. Use the configuration file to create a pod that will get scheduled on your
    chosen node:
 -->
-1. 使用该配置文件去创建一个 pod，该 pod 将被调度到你选择的节点上：
+1. 使用该配置文件创建一个 Pod，该 Pod 将被调度到你选择的节点上：
 
    ```shell
    kubectl create -f https://k8s.io/examples/pods/pod-nginx.yaml
@@ -114,13 +115,15 @@ a `disktype=ssd` label.
 <!--
 1. Verify that the pod is running on your chosen node:
 -->
-2. 验证 pod 是不是运行在你选择的节点上：
+2. 验证 Pod 确实运行在你选择的节点上：
 
    ```shell
    kubectl get pods --output=wide
    ```
 
-   <!-- The output is similar to this: -->
+   <!--
+   The output is similar to this:
+   -->
    输出类似如下：
 
    ```
@@ -128,11 +131,28 @@ a `disktype=ssd` label.
    nginx    1/1       Running   0          13s    10.200.0.4   worker0
    ```
 
+<!--
+## Create a pod that gets scheduled to specific node
+
+You can also schedule a pod to one specific node via setting `nodeName`.
+-->
+## 创建一个会被调度到特定节点上的 Pod
+
+你也可以通过设置 `nodeName` 将某个 Pod 调度到特定的节点。
+
+{{< codenew file="pods/pod-nginx-specific-node.yaml" >}}
+
+<!--
+Use the configuration file to create a pod that will get scheduled on `foo-node` only.
+-->
+使用此配置文件来创建一个 Pod，该 Pod 将只能被调度到 `foo-node` 节点。
+
 ## {{% heading "whatsnext" %}}
 
 <!--
-Learn more about
-[labels and selectors](/docs/concepts/overview/working-with-objects/labels/).
+* Learn more about [labels and selectors](/docs/concepts/overview/working-with-objects/labels/).
+* Learn more about [nodes](/docs/concepts/architecture/nodes/).
 -->
-进一步了解[标签和选择器](/zh/docs/concepts/overview/working-with-objects/labels/)
+* 进一步了解[标签和选择算符](/zh-cn/docs/concepts/overview/working-with-objects/labels/)
+* 进一步了解[节点](/zh-cn/docs/concepts/architecture/nodes/)
 
diff --git a/content/zh/docs/tasks/configure-pod-container/attach-handler-lifecycle-event.md b/content/zh-cn/docs/tasks/configure-pod-container/attach-handler-lifecycle-event.md
similarity index 95%
rename from content/zh/docs/tasks/configure-pod-container/attach-handler-lifecycle-event.md
rename to content/zh-cn/docs/tasks/configure-pod-container/attach-handler-lifecycle-event.md
index 41f3a64f3b..45e6082a2b 100644
--- a/content/zh/docs/tasks/configure-pod-container/attach-handler-lifecycle-event.md
+++ b/content/zh-cn/docs/tasks/configure-pod-container/attach-handler-lifecycle-event.md
@@ -126,7 +126,7 @@ unless the Pod's grace period expires. For more details, see
 -->
 Kubernetes 在容器结束前立即发送 preStop 事件。除非 Pod 宽限期限超时，Kubernetes 的容器管理逻辑
 会一直阻塞等待 preStop 处理函数执行完毕。更多的相关细节，可以参阅
-[Pods 的结束](/zh/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)。
+[Pods 的结束](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)。
 
 <!--
 Kubernetes only sends the preStop event when a Pod is *terminated*.
@@ -146,8 +146,8 @@ preStop 的事件处理逻辑不会被触发。这个限制在
 * Learn more about [Container lifecycle hooks](/docs/concepts/containers/container-lifecycle-hooks/).
 * Learn more about the [lifecycle of a Pod](/docs/concepts/workloads/pods/pod-lifecycle/).
 -->
-* 进一步了解[容器生命周期回调](/zh/docs/concepts/containers/container-lifecycle-hooks/)。
-* 进一步了解[Pod 的生命周期](/zh/docs/concepts/workloads/pods/pod-lifecycle/)。
+* 进一步了解[容器生命周期回调](/zh-cn/docs/concepts/containers/container-lifecycle-hooks/)。
+* 进一步了解[Pod 的生命周期](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/)。
 
 <!--
 ### Reference
diff --git a/content/zh/docs/tasks/configure-pod-container/configure-gmsa.md b/content/zh-cn/docs/tasks/configure-pod-container/configure-gmsa.md
similarity index 86%
rename from content/zh/docs/tasks/configure-pod-container/configure-gmsa.md
rename to content/zh-cn/docs/tasks/configure-pod-container/configure-gmsa.md
index 3687f9b918..3c8ec41a08 100644
--- a/content/zh/docs/tasks/configure-pod-container/configure-gmsa.md
+++ b/content/zh-cn/docs/tasks/configure-pod-container/configure-gmsa.md
@@ -22,13 +22,12 @@ This page shows how to configure [Group Managed Service Accounts](https://docs.m
 服务器将管理操作委派给其他管理员等能力。
 
 <!--
-In Kubernetes, GMSA credential specs are configured at a Kubernetes cluster-wide scope as Custom Resources. Windows Pods, as well as individual containers within a Pod, can be configured to use a GMSA for domain based functions (e.g. Kerberos authentication) when interacting with other Windows services. As of v1.16, the Docker runtime supports GMSA for Windows workloads.
+In Kubernetes, GMSA credential specs are configured at a Kubernetes cluster-wide scope as Custom Resources. Windows Pods, as well as individual containers within a Pod, can be configured to use a GMSA for domain based functions (e.g. Kerberos authentication) when interacting with other Windows services.
 -->
 在 Kubernetes 环境中，GMSA 凭据规约配置为 Kubernetes 集群范围的自定义资源
 （Custom Resources）形式。Windows Pod 以及各 Pod 中的每个容器可以配置为
 使用 GMSA 来完成基于域（Domain）的操作（例如，Kerberos 身份认证），以便
-与其他 Windows 服务相交互。自 Kubernetes 1.16 版本起，Docker 运行时为
-Windows 负载支持 GMSA。
+与其他 Windows 服务相交互。
 
 ## {{% heading "prerequisites" %}}
 
@@ -48,7 +47,7 @@ Next, install the CRD with `kubectl apply -f gmsa-crd.yaml`
 ### 安装 GMSACredentialSpec CRD
 
 你需要在集群上配置一个用于 GMSA 凭据规约资源的
-[CustomResourceDefinition](/zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/)(CRD)，
+[CustomResourceDefinition](/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/)(CRD)，
 以便定义类型为 `GMSACredentialSpec` 的自定义资源。
 首先下载 GMSA CRD [YAML](https://github.com/kubernetes-sigs/windows-gmsa/blob/master/admission-webhook/deploy/gmsa-crd.yml)
 并将其保存为 `gmsa-crd.yaml`。接下来执行 `kubectl apply -f gmsa-crd.yaml`
@@ -103,7 +102,7 @@ The [YAML template](https://github.com/kubernetes-sigs/windows-gmsa/blob/master/
 来部署和配置上述 GMSA Webhook 及相关联的对象。你还可以在运行脚本时设置 `--dry-run=server`
 选项以便审查脚本将会对集群做出的变更。
 
-脚本所使用的[YAML 模板](https://github.com/kubernetes-sigs/windows-gmsa/blob/master/admission-webhook/deploy/gmsa-webhook.yml.tpl)
+脚本所使用的 [YAML 模板](https://github.com/kubernetes-sigs/windows-gmsa/blob/master/admission-webhook/deploy/gmsa-webhook.yml.tpl)
 也可用于手动部署 Webhook 及相关联的对象，不过需要对其中的参数作适当替换。
 
 <!-- steps -->
@@ -165,7 +164,7 @@ Following are the steps for generating a GMSA credential spec YAML manually in J
 The following YAML configuration describes a GMSA credential spec named `gmsa-WebApp1`:
 
 ```yaml
-apiVersion: windows.k8s.io/v1alpha1
+apiVersion: windows.k8s.io/v1
 kind: GMSACredentialSpec
 metadata:
   name: gmsa-WebApp1  #This is an arbitrary name but it will be used as a reference
@@ -190,7 +189,7 @@ credspec:
 下面的 YAML 配置描述的是一个名为 `gmsa-WebApp1` 的 GMSA 凭据规约：
 
 ```yaml
-apiVersion: windows.k8s.io/v1alpha1
+apiVersion: windows.k8s.io/v1
 kind: GMSACredentialSpec
 metadata:
   name: gmsa-WebApp1  # 这是随意起的一个名字，将用作引用
@@ -381,6 +380,24 @@ As Pod specs with GMSA fields populated (as described above) are applied in a cl
 1. 容器运行时为每个 Windows 容器配置所指定的 GMSA 凭据规约，这样容器就可以以
    活动目录中该 GMSA 所代表的身份来执行操作，使用该身份来访问域中的服务。
 
+## 使用主机名或 FQDN 对网络共享进行身份验证 
+<!--
+If you are experiencing issues connecting to SMB shares from Pods using hostname or FQDN, but are able to access the shares via their IPv4 address then make sure the following registry key is set on the Windows nodes.
+-->
+如果你在使用主机名或 FQDN 从 Pod 连接到 SMB 共享时遇到问题，但能够通过其 IPv4 地址访问共享，
+请确保在 Windows 节点上设置了以下注册表项。
+
+```cmd
+reg add "HKLM\SYSTEM\CurrentControlSet\Services\hns\State" /v EnableCompartmentNamespace /t REG_DWORD /d 1
+```
+
+<!--
+Running Pods will then need to be recreated to pick up the behavior changes.
+More information on how this registry key is used can be found [here](
+https://github.com/microsoft/hcsshim/blob/885f896c5a8548ca36c88c4b87fd2208c8d16543/internal/uvm/create.go#L74-L83)
+-->
+然后需要重新创建正在运行的 Pod 以使行为更改生效。
+有关如何使用此注册表项的更多信息，请参见[此处](https://github.com/microsoft/hcsshim/blob/885f896c5a8548ca36c88c4b87fd2208c8d16543/internal/uvm/create.go#L74-L83)。
 <!--
 ## Troubleshooting
 
@@ -388,25 +405,30 @@ If you are having difficulties getting GMSA to work in your environment, there a
 -->
 ## 故障排查
 
-如果在你的环境中配置 GMSA 时遇到了困难，你可以采取若干步骤来排查可能
-的故障。
+如果在你的环境中配置 GMSA 时遇到了困难，你可以采取若干步骤来排查可能的故障。
 
 <!--
-First, make sure the credspec has been passed to the Pod.  To do this you will need to `exec` into one of your Pods and check the output of the `nltest.exe /parentdomain` command.  In the example below the Pod did not get the credspec correctly:
+First, make sure the credspec has been passed to the Pod.  To do this you will need to `exec` into one of your Pods and check the output of the `nltest.exe /parentdomain` command.
+-->
+首先，确保 credspec 已传递给 Pod。为此，你需要先运行 `exec`
+进入到你的一个 Pod 中并检查 `nltest.exe /parentdomain` 命令的输出。
+
+<!--
+In the example below the Pod did not get the credspec correctly:
 -->
-首先，确保凭据规约已经被传递到 Pod。要实现这点，你需要先通过 `exec` 进入到
-你的 Pod 之一，检查 `nltest.exe /parentdomain` 命令的输出。
 在下面的例子中，Pod 未能正确地获得凭据规约：
 
-```shell
+```PowerShell
 kubectl exec -it iis-auth-7776966999-n5nzr powershell.exe
+```
 
-Windows PowerShell
-Copyright (C) Microsoft Corporation. All rights reserved.
+<!--
+`nltest.exe /parentdomain` results in the following error:
+-->
+`nltest.exe /parentdomain` 导致以下错误：
 
-PS C:\> nltest.exe /parentdomain
+```output
 Getting parent domain failed: Status = 1722 0x6ba RPC_S_SERVER_UNAVAILABLE
-PS C:\>
 ```
 
 <!--
@@ -434,32 +456,46 @@ If the DNS and communication test passes, next you will need to check if the Pod
 安全通信通道。要执行这一检查，你需要再次通过 `exec` 进入到你的 Pod 中
 并执行 `nltest.exe /query` 命令。
 
-```shell
-PS C:\> nltest.exe /query
+```PowerShell
+nltest.exe /query
+```
+
+<!--
+Results in the following output:
+-->
+结果输出如下：
+
+```output
 I_NetLogonControl failed: Status = 1722 0x6ba RPC_S_SERVER_UNAVAILABLE
 ```
 
 <!--
-This tells us that for some reason, the Pod was unable to logon to the domain using the account specified in the credspec.  You can try to repair the secure channel by running the `nltest.exe /sc_reset:domain.example` command.
+This tells us that for some reason, the Pod was unable to logon to the domain using the account specified in the credspec.  You can try to repair the secure channel by running the following:
 -->
-这一输出告诉我们，由于某些原因，Pod 无法使用凭据规约中的账号登录到域。
-你可以通过运行 `nltest.exe /sc_reset:domain.example` 命令尝试修复安全通道。
+这告诉我们，由于某种原因，Pod 无法使用 credspec 中指定的帐户登录到域。
+你可以尝试通过运行以下命令来修复安全通道：
 
-```shell
-PS C:\> nltest /sc_reset:domain.example
+```PowerShell
+nltest /sc_reset:domain.example
+```
+
+<!--
+If the command is successful you will see and output similar to this:
+-->
+如果命令成功，你将看到类似以下内容的输出：
+
+```
 Flags: 30 HAS_IP  HAS_TIMESERV
 Trusted DC Name \\dc10.domain.example
 Trusted DC Connection Status Status = 0 0x0 NERR_Success
 The command completed successfully
-PS C:\>
 ```
 
 <!--
-If the above command corrects the error, you can automate the step by adding the following lifecycle hook to your Pod spec.  If it did not correct the error, you will need to examine your credspec again and confirm that it is correct and complete.
+If the above corrects the error, you can automate the step by adding the following lifecycle hook to your Pod spec.  If it did not correct the error, you will need to examine your credspec again and confirm that it is correct and complete.
 -->
-如果上述命令修复了错误，你就可以通过向你的 Pod 规约添加生命周期回调来将此操作
-自动化。如果上述命令未能奏效，你就需要再次检查凭据规约，以确保其数据时正确的
-而且是完整的。
+如果以上命令修复了错误，你可以通过将以下生命周期回调添加到你的 Pod 规约中来自动执行该步骤。
+如果这些操作没有修复错误，你将需要再次检查你的 credspec 并确认它是正确和完整的。
 
 ```yaml
         image: registry.domain.example/iis-auth:1809v1
@@ -477,18 +513,3 @@ If you add the `lifecycle` section show above to your Pod spec, the Pod will exe
 列举的命令来重启 `netlogon` 服务，直到 `nltest.exe /query`
 命令返回时没有错误信息。
 
-<!--
-## GMSA limitations
-When using the [ContainerD runtime for Windows](/docs/setup/production-environment/windows/intro-windows-in-kubernetes/#cri-containerd) accessing restricted network shares via the GMSA domain identity fails. The container will receive the identity of and calls from `nltest.exe /query` will work.  It is recommended to use the [Docker EE runtime](/docs/setup/production-environment/windows/intro-windows-in-kubernetes/#docker-ee) if access to network shares is required.  The Windows Server team is working on resolving the issue in the Windows Kernel and will release a patch to resolve this issue in the future. Look for updates on the [Microsoft Windows Containers issue tracker](https://github.com/microsoft/Windows-Containers/issues/44).
--->
-## GMSA 的局限  {#gmsa-limitations}
-
-在使用 [Windows 版本的 ContainerD 运行时](/zh/docs/setup/production-environment/windows/intro-windows-in-kubernetes/#cri-containerd)
-时，通过 GMSA 域身份标识访问受限制的网络共享资源时会出错。
-容器会收到身份标识且 `nltest.exe /query` 调用也能正常工作。
-当需要访问网络共享资源时，建议使用
-[Docker EE 运行时](/zh/docs/setup/production-environment/windows/intro-windows-in-kubernetes/#docker-ee)。
-Windows Server 团队正在 Windows 内核中解决这一问题，并在将来发布解决此问题的补丁。
-你可以在 [Microsoft Windows Containers 问题跟踪列表](https://github.com/microsoft/Windows-Containers/issues/44)
-中查找这类更新。
-
diff --git a/content/zh/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md b/content/zh-cn/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md
similarity index 64%
rename from content/zh/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md
rename to content/zh-cn/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md
index 7355e5c11e..9e3044c47f 100644
--- a/content/zh/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md
+++ b/content/zh-cn/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes.md
@@ -6,7 +6,7 @@ weight: 110
 
 <!-- overview -->
 <!--
-This page shows how to configure liveness, readiness and startup probes for Containers.
+This page shows how to configure liveness, readiness and startup probes for containers.
 
 The [kubelet](/docs/reference/command-line-tools-reference/kubelet/) uses liveness probes to know when to
 restart a container. For example, liveness probes could catch a deadlock,
@@ -14,12 +14,12 @@ where an application is running, but unable to make progress. Restarting a
 container in such a state can help to make the application more available
 despite bugs.
 -->
-这篇文章介绍如何给容器配置存活、就绪和启动探测器。
+这篇文章介绍如何给容器配置活跃（Liveness）、就绪（Readiness）和启动（Startup）探测器。
 
-[kubelet](/zh/docs/reference/command-line-tools-reference/kubelet/)
-使用存活探测器来知道什么时候要重启容器。
-例如，存活探测器可以捕捉到死锁（应用程序在运行，但是无法继续执行后面的步骤）。
-这样的情况下重启容器有助于让应用程序在有问题的情况下更可用。
+[kubelet](/zh-cn/docs/reference/command-line-tools-reference/kubelet/)
+使用存活探测器来确定什么时候要重启容器。
+例如，存活探测器可以探测到应用死锁（应用程序在运行，但是无法继续执行后面的步骤）情况。
+重启这种状态下的容器有助于提高应用的可用性，即使其中存在缺陷。
 
 <!--
 The kubelet uses readiness probes to know when a container is ready to start
@@ -33,15 +33,15 @@ it succeeds, making sure those probes don't interfere with the application start
 This can be used to adopt liveness checks on slow starting containers, avoiding them
 getting killed by the kubelet before they are up and running.
 -->
-kubelet 使用就绪探测器可以知道容器什么时候准备好了并可以开始接受请求流量， 当一个 Pod 
-内的所有容器都准备好了，才能把这个 Pod 看作就绪了。
+kubelet 使用就绪探测器可以知道容器何时准备好接受请求流量，当一个 Pod 
+内的所有容器都就绪时，才能认为该 Pod 就绪。
 这种信号的一个用途就是控制哪个 Pod 作为 Service 的后端。
-在 Pod 还没有准备好的时候，会从 Service 的负载均衡器中被剔除的。
+若 Pod 尚未就绪，会被从 Service 的负载均衡器中剔除。
 
-kubelet 使用启动探测器可以知道应用程序容器什么时候启动了。
-如果配置了这类探测器，就可以控制容器在启动成功后再进行存活性和就绪检查，
-确保这些存活、就绪探测器不会影响应用程序的启动。
-这可以用于对慢启动容器进行存活性检测，避免它们在启动运行之前就被杀掉。
+kubelet 使用启动探测器来了解应用容器何时启动。
+如果配置了这类探测器，你就可以控制容器在启动成功后再进行存活性和就绪态检查，
+确保这些存活、就绪探测器不会影响应用的启动。
+启动探测器可以用于对慢启动容器进行存活性检测，避免它们在启动运行之前就被杀掉。
 
 ## {{% heading "prerequisites" %}}
 
@@ -61,10 +61,10 @@ In this exercise, you create a Pod that runs a container based on the
 -->
 ## 定义存活命令 {#define-a-liveness-command}
 
-许多长时间运行的应用程序最终会过渡到断开的状态，除非重新启动，否则无法恢复。
-Kubernetes 提供了存活探测器来发现并补救这种情况。
+许多长时间运行的应用最终会进入损坏状态，除非重新启动，否则无法被恢复。
+Kubernetes 提供了存活探测器来发现并处理这种情况。
 
-在这篇练习中，你会创建一个 Pod，其中运行一个基于 `k8s.gcr.io/busybox` 镜像的容器。
+在本练习中，你会创建一个 Pod，其中运行一个基于 `k8s.gcr.io/busybox` 镜像的容器。
 下面是这个 Pod 的配置文件。
 
 {{< codenew file="pods/probe/exec-liveness.yaml" >}}
@@ -81,7 +81,7 @@ and restarts it.
 
 When the container starts, it executes this command:
 -->
-在这个配置文件中，可以看到 Pod 中只有一个容器。
+在这个配置文件中，可以看到 Pod 中只有一个 `Container`。
 `periodSeconds` 字段指定了 kubelet 应该每 5 秒执行一次存活探测。
 `initialDelaySeconds` 字段告诉 kubelet 在执行第一次探测前应该等待 5 秒。
 kubelet 在容器内执行命令 `cat /tmp/healthy` 来进行探测。
@@ -91,7 +91,7 @@ kubelet 在容器内执行命令 `cat /tmp/healthy` 来进行探测。
 当容器启动时，执行如下的命令：
 
 ```shell
-/bin/sh -c "touch /tmp/healthy; sleep 30; rm -rf /tmp/healthy; sleep 600"
+/bin/sh -c "touch /tmp/healthy; sleep 30; rm -f /tmp/healthy; sleep 600"
 ```
 
 <!--
@@ -101,7 +101,7 @@ code. After 30 seconds, `cat /tmp/healthy` returns a failure code.
 
 Create the Pod:
 -->
-这个容器生命的前 30 秒， `/tmp/healthy` 文件是存在的。
+这个容器生命的前 30 秒，`/tmp/healthy` 文件是存在的。
 所以在这最开始的 30 秒内，执行命令 `cat /tmp/healthy` 会返回成功代码。
 30 秒之后，执行命令 `cat /tmp/healthy` 就会返回失败代码。
 
@@ -146,9 +146,9 @@ kubectl describe pod liveness-exec
 
 <!--
 At the bottom of the output, there are messages indicating that the liveness
-probes have failed, and the containers have been killed and recreated.
+probes have failed, and the failed containers have been killed and recreated.
 -->
-在输出结果的最下面，有信息显示存活探测器失败了，这个容器被杀死并且被重建了。
+在输出结果的最下面，有信息显示存活探测器失败了，这个失败的容器被杀死并且被重建了。
 
 ```
 FirstSeen LastSeen    Count   From            SubobjectPath           Type        Reason      Message
@@ -164,16 +164,16 @@ FirstSeen LastSeen    Count   From            SubobjectPath           Type
 <!--
 Wait another 30 seconds, and verify that the Container has been restarted:
 -->
-再等另外 30 秒，检查看这个容器被重启了：
+再等 30 秒，确认这个容器被重启了：
 
 ```shell
 kubectl get pod liveness-exec
 ```
 
 <!--
-The output shows that `RESTARTS` has been incremented:
+The output shows that `RESTARTS` has been incremented. Note that the `RESTARTS` counter increments as soon as a failed container comes back to the running state:
 -->
-输出结果显示 `RESTARTS` 的值增加了 1。
+输出结果显示 `RESTARTS` 的值增加了 1。请注意，一旦失败的容器恢复为运行状态，`RESTARTS` 计数器就会增加 1：
 
 ```
 NAME            READY     STATUS    RESTARTS   AGE
@@ -205,28 +205,29 @@ returns a success code, the kubelet considers the container to be alive and
 healthy. If the handler returns a failure code, the kubelet kills the container
 and restarts it.
 -->
-在这个配置文件中，可以看到 Pod 也只有一个容器。
+在这个配置文件中，你可以看到 Pod 也只有一个容器。
 `periodSeconds` 字段指定了 kubelet 每隔 3 秒执行一次存活探测。
 `initialDelaySeconds` 字段告诉 kubelet 在执行第一次探测前应该等待 3 秒。
-kubelet 会向容器内运行的服务（服务会监听 8080 端口）发送一个 HTTP GET 请求来执行探测。
+kubelet 会向容器内运行的服务（服务在监听 8080 端口）发送一个 HTTP GET 请求来执行探测。
 如果服务器上 `/healthz`  路径下的处理程序返回成功代码，则 kubelet 认为容器是健康存活的。
-如果处理程序返回失败代码，则 kubelet 会杀死这个容器并且重新启动它。
+如果处理程序返回失败代码，则 kubelet 会杀死这个容器并将其重启。
 
 <!--
 Any code greater than or equal to 200 and less than 400 indicates success. Any
 other code indicates failure.
 
 You can see the source code for the server in
-[server.go](https://github.com/kubernetes/kubernetes/blob/{{< param "githubbranch" >}}/test/images/agnhost/liveness/server.go).
+[server.go](https://github.com/kubernetes/kubernetes/blob/master/test/images/agnhost/liveness/server.go).
 
 For the first 10 seconds that the container is alive, the `/healthz` handler
 returns a status of 200. After that, the handler returns a status of 500.
 -->
-任何大于或等于 200 并且小于 400 的返回代码标示成功，其它返回代码都标示失败。
+返回大于或等于 200 并且小于 400 的任何代码都标示成功，其它返回代码都标示失败。
 
-可以在这里看服务的源码 [server.go](https://github.com/kubernetes/kubernetes/blob/{{< param "githubbranch" >}}/test/images/agnhost/liveness/server.go)。
-
-容器存活的最开始 10 秒中，`/healthz` 处理程序返回一个 200 的状态码。之后处理程序返回 500 的状态码。
+你可以访问 [server.go](https://github.com/kubernetes/kubernetes/blob/master/test/images/agnhost/liveness/server.go)。
+阅读服务的源码。
+容器存活期间的最开始 10 秒中，`/healthz` 处理程序返回 200 的状态码。
+之后处理程序返回 500 的状态码。
 
 ```go
 http.HandleFunc("/healthz", func(w http.ResponseWriter, r *http.Request) {
@@ -261,7 +262,7 @@ kubectl apply -f https://k8s.io/examples/pods/probe/http-liveness.yaml
 After 10 seconds, view Pod events to verify that liveness probes have failed and
 the container has been restarted:
 -->
-10 秒之后，通过看 Pod 事件来检测存活探测器已经失败了并且容器被重新启动了。
+10 秒之后，通过查看 Pod 事件来确认活跃探测器已经失败，并且容器被重新启动了。
 
 ```shell
 kubectl describe pod liveness-http
@@ -274,7 +275,7 @@ the HTTP liveness probe uses that proxy.
 In releases after v1.13, local HTTP proxy environment variable settings do not
 affect the HTTP liveness probe.
 -->
-在 1.13（包括 1.13版本）之前的版本中，如果在 Pod 运行的节点上设置了环境变量
+在 1.13 之前（包括 1.13）的版本中，如果在 Pod 运行的节点上设置了环境变量
 `http_proxy`（或者 `HTTP_PROXY`），HTTP 的存活探测会使用这个代理。
 在 1.13 之后的版本中，设置本地的 HTTP 代理环境变量不会影响 HTTP 的存活探测。
 
@@ -289,7 +290,7 @@ can't it is considered a failure.
 ## 定义 TCP 的存活探测 {#define-a-TCP-liveness-probe}
 
 第三种类型的存活探测是使用 TCP 套接字。
-通过配置，kubelet 会尝试在指定端口和容器建立套接字链接。
+使用这种配置时，kubelet 会尝试在指定端口和容器建立套接字链接。
 如果能建立连接，这个容器就被看作是健康的，如果不能则这个容器就被看作是有问题的。
 
 {{< codenew file="pods/probe/tcp-liveness-readiness.yaml" >}}
@@ -312,13 +313,13 @@ To try the TCP liveness check, create a Pod:
 -->
 如你所见，TCP 检测的配置和 HTTP 检测非常相似。
 下面这个例子同时使用就绪和存活探测器。kubelet 会在容器启动 5 秒后发送第一个就绪探测。
-这会尝试连接 `goproxy` 容器的 8080 端口。
+探测器会尝试连接 `goproxy` 容器的 8080 端口。
 如果探测成功，这个 Pod 会被标记为就绪状态，kubelet 将继续每隔 10 秒运行一次检测。
 
 除了就绪探测，这个配置包括了一个存活探测。
 kubelet 会在容器启动 15 秒后进行第一次存活探测。
-与就绪探测类似，会尝试连接 `goproxy` 容器的 8080 端口。
-如果存活探测失败，这个容器会被重新启动。
+与就绪探测类似，活跃探测器会尝试连接 `goproxy` 容器的 8080 端口。
+如果存活探测失败，容器会被重新启动。
 
 ```shell
 kubectl apply -f https://k8s.io/examples/pods/probe/tcp-liveness-readiness.yaml
@@ -333,17 +334,110 @@ After 15 seconds, view Pod events to verify that liveness probes:
 kubectl describe pod goproxy
 ```
 
+<!--
+## Define a gRPC liveness probe
+-->
+## 定义 gRPC 活跃探测器
+
+{{< feature-state for_k8s_version="v1.24" state="beta" >}}
+
+<!--
+If your application implements [gRPC Health Checking Protocol](https://github.com/grpc/grpc/blob/master/doc/health-checking.md),
+kubelet can be configured to use it for application liveness checks.
+You must enable the `GRPCContainerProbe`
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
+in order to configure checks that rely on gRPC.
+
+Here is an example manifest:
+-->
+如果你的应用实现了
+[gRPC 健康检查协议](https://github.com/grpc/grpc/blob/master/doc/health-checking.md)，
+kubelet 可以配置为使用该协议来执行应用活跃性检查。
+你必须启用 `GRPCContainerProbe`
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)
+才能配置依赖于 gRPC 的检查机制。
+
+下面是一个示例清单：
+
+{{< codenew file="pods/probe/grpc-liveness.yaml" >}}
+
+<!--
+To use a gRPC probe, `port` must be configured. If the health endpoint is configured
+on a non-default service, you must also specify the `service`.
+-->
+要使用 gRPC 探测器，必须配置 `port` 属性。如果健康状态端点配置在非默认服务之上，
+你还必须设置 `service` 属性。
+
+{{< note >}}
+<!--
+Unlike HTTP and TCP probes, named ports cannot be used and custom host cannot be configured.
+-->
+与 HTTP 和 TCP 探测器不同，gRPC 探测不能使用命名端口或定制主机。
+{{< /note >}}
+
+<!--
+Configuration problems (for example: incorrect port and service, unimplemented health checking protocol)
+are considered a probe failure, similar to HTTP and TCP probes.
+
+To try the gRPC liveness check, create a Pod using the command below.
+In the example below, the etcd pod is configured to use gRPC liveness probe.
+-->
+配置问题（例如：错误的 `port` 和 `service`、未实现健康检查协议）
+都被认作是探测失败，这一点与 HTTP 和 TCP 探测器类似。
+
+```shell
+kubectl apply -f https://k8s.io/examples/pods/probe/grpc-liveness.yaml
+```
+
+<!--
+After 15 seconds, view Pod events to verify that the liveness check has not failed:
+-->
+15 秒钟之后，查看 Pod 事件确认活跃性检查并未失败：
+
+```shell
+kubectl describe pod etcd-with-grpc
+```
+
+<!--
+Before Kubernetes 1.23, gRPC health probes were often implemented using [grpc-health-probe](https://github.com/grpc-ecosystem/grpc-health-probe/),
+as described in the blog post [Health checking gRPC servers on Kubernetes](/blog/2018/10/01/health-checking-grpc-servers-on-kubernetes/).
+The built-in gRPC probes behavior is similar to one implemented by grpc-health-probe.
+When migrating from grpc-health-probe to built-in probes, remember the following differences:
+-->
+在 Kubernetes 1.23 之前，gRPC 健康探测通常使用
+[grpc-health-probe](https://github.com/grpc-ecosystem/grpc-health-probe/)
+来实现，如博客 [Health checking gRPC servers on Kubernetes（对 Kubernetes 上的 gRPC 服务器执行健康检查）](/blog/2018/10/01/health-checking-grpc-servers-on-kubernetes/)所描述。
+内置的 gRPC 探测器行为与 `grpc-health-probe` 所实现的行为类似。
+从 `grpc-health-probe` 迁移到内置探测器时，请注意以下差异：
+
+<!--
+- Built-in probes run against the pod IP address, unlike grpc-health-probe that often runs against `127.0.0.1`.
+  Be sure to configure your gRPC endpoint to listen on the Pod's IP address.
+- Built-in probes do not support any authentication parameters (like `-tls`).
+- There are no error codes for built-in probes. All errors are considered as probe failures.
+- If `ExecProbeTimeout` feature gate is set to `false`, grpc-health-probe does **not** respect the `timeoutSeconds` setting (which defaults to 1s),
+  while built-in probe would fail on timeout.
+-->
+- 内置探测器运行时针对的是 Pod 的 IP 地址，不像 `grpc-health-probe`
+  那样通常针对 `127.0.0.1` 执行探测；
+  请一定配置你的 gRPC 端点使之监听于 Pod 的 IP 地址之上。
+- 内置探测器不支持任何身份认证参数（例如 `-tls`）。
+- 对于内置的探测器而言，不存在错误代码。所有错误都被视作探测失败。
+- 如果 `ExecProbeTimeout` 特性门控被设置为 `false`，则 `grpc-health-probe`
+  不会考虑 `timeoutSeconds` 设置状态（默认值为 1s），
+  而内置探测器则会在超时时返回失败。
+
 <!--
 ## Use a named port
 
 You can use a named
-[ContainerPort](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#containerport-v1-core)
+[`port`](/docs/reference/kubernetes-api/workload-resources/pod-v1/#ports)
 for HTTP or TCP liveness checks:
 -->
 ## 使用命名端口 {#use-a-named-port}
 
 对于 HTTP 或者 TCP 存活检测可以使用命名的
-[ContainerPort](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#containerport-v1-core)。
+[`port`](/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1/#ports)。
 
 ```yaml
 ports:
@@ -372,12 +466,12 @@ So, the previous example would become:
 -->
 ## 使用启动探测器保护慢启动容器 {#define-startup-probes}
 
-有时候，会有一些现有的应用程序在启动时需要较多的初始化时间。
-要不影响对引起探测死锁的快速响应，这种情况下，设置存活探测参数是要技巧的。
-技巧就是使用一个命令来设置启动探测，针对HTTP 或者 TCP 检测，可以通过设置
-`failureThreshold * periodSeconds` 参数来保证有足够长的时间应对糟糕情况下的启动时间。
+有时候，会有一些现有的应用在启动时需要较长的初始化时间。
+要这种情况下，若要不影响对死锁作出快速响应的探测，设置存活探测参数是要技巧的。
+技巧就是使用相同的命令来设置启动探测，针对 HTTP 或 TCP 检测，可以通过将
+`failureThreshold * periodSeconds` 参数设置为足够长的时间来应对糟糕情况下的启动时间。
 
-所以，前面的例子就变成了：
+这样，前面的例子就变成了：
 
 ```yaml
 ports:
@@ -408,9 +502,10 @@ provide a fast response to container deadlocks.
 If the startup probe never succeeds, the container is killed after 300s and
 subject to the pod's `restartPolicy`.
 -->
-幸亏有启动探测，应用程序将会有最多 5 分钟(30 * 10 = 300s) 的时间来完成它的启动。
-一旦启动探测成功一次，存活探测任务就会接管对容器的探测，对容器死锁可以快速响应。
-如果启动探测一直没有成功，容器会在 300 秒后被杀死，并且根据 `restartPolicy` 来设置 Pod 状态。
+幸亏有启动探测，应用程序将会有最多 5 分钟（30 * 10 = 300s）的时间来完成其启动过程。
+一旦启动探测成功一次，存活探测任务就会接管对容器的探测，对容器死锁作出快速响应。
+如果启动探测一直没有成功，容器会在 300 秒后被杀死，并且根据 `restartPolicy` 来
+执行进一步处置。
 
 <!--
 ## Define readiness probes
@@ -426,25 +521,25 @@ Services.
 -->
 ## 定义就绪探测器 {#define-readiness-probes}
 
-有时候，应用程序会暂时性的不能提供通信服务。
-例如，应用程序在启动时可能需要加载很大的数据或配置文件，或是启动后要依赖等待外部服务。
-在这种情况下，既不想杀死应用程序，也不想给它发送请求。
+有时候，应用会暂时性地无法为请求提供服务。
+例如，应用在启动时可能需要加载大量的数据或配置文件，或是启动后要依赖等待外部服务。
+在这种情况下，既不想杀死应用，也不想给它发送请求。
 Kubernetes 提供了就绪探测器来发现并缓解这些情况。
 容器所在 Pod 上报还未就绪的信息，并且不接受通过 Kubernetes Service 的流量。
 
+{{< note >}}
 <!--
 Readiness probes runs on the container during its whole lifecycle.
 -->
-{{< note >}}
 就绪探测器在容器的整个生命周期中保持运行状态。
 {{< /note >}}
 
+{{< caution >}}
 <!--
 Liveness probes *do not* wait for readiness probes to succeed. If you want to wait before executing a liveness probe you should use initialDelaySeconds or a startupProbe.
 -->
-{{< caution >}}
-活跃性探测器 *不等待* 就绪性探测器成功。
-如果要在执行活跃性探测器之前等待，应该使用 initialDelaySeconds 或 startupProbe。
+活跃探测器 **不等待** 就绪性探测器成功。
+如果要在执行活跃探测器之前等待，应该使用 `initialDelaySeconds` 或 `startupProbe`。
 {{< /caution >}}
 
 <!--
@@ -463,6 +558,7 @@ readinessProbe:
   initialDelaySeconds: 5
   periodSeconds: 5
 ```
+
 <!--
 Configuration for HTTP and TCP readiness probes also remains identical to
 liveness probes.
@@ -471,10 +567,10 @@ Readiness and liveness probes can be used in parallel for the same container.
 Using both can ensure that traffic does not reach a container that is not ready
 for it, and that containers are restarted when they fail.
 -->
-HTTP 和 TCP 的就绪探测器配置也和存活探测器的配置一样的。
+HTTP 和 TCP 的就绪探测器配置也和存活探测器的配置完全相同。
 
 就绪和存活探测可以在同一个容器上并行使用。
-两者都用可以确保流量不会发给还没有准备好的容器，并且容器会在它们失败的时候被重新启动。
+两者共同使用，可以确保流量不会发给还未就绪的容器，当这些探测失败时容器会被重新启动。
 
 <!--
 ## Configure Probes
@@ -494,7 +590,7 @@ you can use to more precisely control the behavior of liveness and readiness
 checks:
 -->
 [Probe](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#probe-v1-core)
-有很多配置字段，可以使用这些字段精确的控制存活和就绪检测的行为：
+有很多配置字段，可以使用这些字段精确地控制活跃和就绪检测的行为：
 
 <!--
 * `initialDelaySeconds`: Number of seconds after the container has started
@@ -510,14 +606,15 @@ and startup Probes. Minimum value is 1.
 try `failureThreshold` times before giving up. Giving up in case of liveness probe means restarting the container. In case of readiness probe the Pod will be marked Unready.
 Defaults to 3. Minimum value is 1.
 -->
-* `initialDelaySeconds`：容器启动后要等待多少秒后存活和就绪探测器才被初始化，默认是 0 秒，最小值是 0。
+* `initialDelaySeconds`：容器启动后要等待多少秒后才启动存活和就绪探测器，
+  默认是 0 秒，最小值是 0。
 * `periodSeconds`：执行探测的时间间隔（单位是秒）。默认是 10 秒。最小值是 1。
 * `timeoutSeconds`：探测的超时后等待多少秒。默认值是 1 秒。最小值是 1。
 * `successThreshold`：探测器在失败后，被视为成功的最小连续成功数。默认值是 1。
   存活和启动探测的这个值必须是 1。最小值是 1。
 * `failureThreshold`：当探测失败时，Kubernetes 的重试次数。
-  存活探测情况下的放弃就意味着重新启动容器。
-  就绪探测情况下的放弃 Pod 会被打上未就绪的标签。默认值是 3。最小值是 1。
+  对存活探测而言，放弃就意味着重新启动容器。
+  对就绪探测而言，放弃意味着 Pod 会被打上未就绪的标签。默认值是 3。最小值是 1。
 
 {{< note >}}
 <!--
@@ -525,8 +622,8 @@ Before Kubernetes 1.20, the field `timeoutSeconds` was not respected for exec pr
 probes continued running indefinitely, even past their configured deadline,
 until a result was returned.
 -->
-在 Kubernetes 1.20 版本之前，exec 探针会忽略 `timeoutSeconds`：探针会无限期地
-持续运行，甚至可能超过所配置的限期，直到返回结果为止。
+在 Kubernetes 1.20 版本之前，`exec` 探针会忽略 `timeoutSeconds`：
+探针会无限期地持续运行，甚至可能超过所配置的限期，直到返回结果为止。
  
 <!--
 This defect was corrected in Kubernetes v1.20. You may have been relying on the previous behavior,
@@ -539,13 +636,13 @@ you should update their probe timeout so that you're ready for the
 eventual removal of that feature gate.
 -->
 这一缺陷在 Kubernetes v1.20 版本中得到修复。你可能一直依赖于之前错误的探测行为，
-甚至你都没有觉察到这一问题的存在，因为默认的超时值是 1 秒钟。
+甚至都没有觉察到这一问题的存在，因为默认的超时值是 1 秒钟。
 作为集群管理员，你可以在所有的 kubelet 上禁用 `ExecProbeTimeout`
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
-（将其设置为 `false`），从而恢复之前版本中的运行行为，之后当集群中所有的
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)
+（将其设置为 `false`），从而恢复之前版本中的运行行为。之后当集群中所有的
 exec 探针都设置了 `timeoutSeconds` 参数后，移除此标志重载。
-如果你有 Pods 受到此默认 1 秒钟超时值的影响，你应该更新 Pod 对应的探针的
-超时值，这样才能为最终去除该特性门控做好准备。
+如果你有 Pod 受到此默认 1 秒钟超时值的影响，你应该更新这些 Pod 对应的探针的超时值，
+这样才能为最终去除该特性门控做好准备。
 
 <!--
 With the fix of the defect, for exec probes, on Kubernetes `1.20+` with the `dockershim` container runtime,
@@ -555,6 +652,7 @@ the process inside the container may keep running even after probe returned fail
 版本中，对于 exec 探针而言，容器中的进程可能会因为超时值的设置保持持续运行，
 即使探针返回了失败状态。
 {{< /note >}}
+
 {{< caution >}}
 <!--
 Incorrect implementation of readiness probes may result in an ever growing number
@@ -581,13 +679,13 @@ in the range 1 to 65535.
 ### HTTP 探测  {#http-probes}
 
 [HTTP Probes](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#httpgetaction-v1-core)
-可以在 `httpGet` 上配置额外的字段：
+允许针对 `httpGet` 配置额外的字段：
 
 * `host`：连接使用的主机名，默认是 Pod 的 IP。也可以在 HTTP 头中设置 “Host” 来代替。
-* `scheme` ：用于设置连接主机的方式（HTTP 还是 HTTPS）。默认是 HTTP。
+* `scheme` ：用于设置连接主机的方式（HTTP 还是 HTTPS）。默认是 "HTTP"。
 * `path`：访问 HTTP 服务的路径。默认值为 "/"。
 * `httpHeaders`：请求中自定义的 HTTP 头。HTTP 头字段允许重复。
-* `port`：访问容器的端口号或者端口名。如果数字必须在 1 ～ 65535 之间。
+* `port`：访问容器的端口号或者端口名。如果数字必须在 1～65535 之间。
 
 <!--
 For an HTTP probe, the kubelet sends an HTTP request to the specified path and
@@ -611,14 +709,14 @@ case, you should not use `host`, but rather set the `Host` header in `httpHeader
 
 <!--
 For an HTTP probe, the kubelet sends two request headers in addition to the mandatory `Host` header:
-`User-Agent`, and `Accept`. The default values for these headers are `kube-probe/{{< skew latestVersion >}}`
-(where `{{< skew latestVersion >}}` is the version of the kubelet ), and `*/*` respectively.
+`User-Agent`, and `Accept`. The default values for these headers are `kube-probe/{{< skew currentVersion >}}`
+(where `{{< skew currentVersion >}}` is the version of the kubelet ), and `*/*` respectively.
 
 You can override the default headers by defining `.httpHeaders` for the probe; for example
 -->
 针对 HTTP 探针，kubelet 除了必需的 `Host` 头部之外还发送两个请求头部字段：
-`User-Agent` 和 `Accept`。这些头部的默认值分别是 `kube-probe/{{ skew latestVersion >}}`
-（其中 `{{< skew latestVersion >}}` 是 kubelet 的版本号）和 `*/*`。
+`User-Agent` 和 `Accept`。这些头部的默认值分别是 `kube-probe/{{ skew currentVersion >}}`
+（其中 `{{< skew currentVersion >}}` 是 kubelet 的版本号）和 `*/*`。
 
 你可以通过为探测设置 `.httpHeaders` 来重载默认的头部字段值；例如：
 
@@ -664,15 +762,15 @@ to resolve it.
 -->
 ### TCP 探测  {#tcp-probes}
 
-对于一次 TCP 探测，kubelet 在节点上（不是在 Pod 里面）建立探测连接，
+对于 TCP 探测而言，kubelet 在节点上（不是在 Pod 里面）发起探测连接，
 这意味着你不能在 `host` 参数上配置服务名称，因为 kubelet 不能解析服务名称。
 
 <!--
 ### Probe-level `terminationGracePeriodSeconds`
 -->
-### 探测器级别 `terminationGracePeriodSeconds`
+### 探测器层面的 `terminationGracePeriodSeconds`
 
-{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.22" state="beta" >}}
 
 <!--
 Prior to release 1.21, the pod-level `terminationGracePeriodSeconds` was used
@@ -681,30 +779,55 @@ coupling was unintended and may have resulted in failed containers taking an
 unusually long time to restart when a pod-level `terminationGracePeriodSeconds`
 was set.
 -->
-在 1.21 版之前，pod 级别的 `terminationGracePeriodSeconds` 被用来终止
-未能成功处理活跃性探测或启动探测的容器。
-这种耦合是意料之外的，可能会导致在设置了 pod 级别的 `terminationGracePeriodSeconds` 后，
-需要很长的时间来重新启动失败的容器。
+在 1.21 发行版之前，Pod 层面的 `terminationGracePeriodSeconds`
+被用来终止活跃探测或启动探测失败的容器。
+这一行为上的关联不是我们想要的，可能导致 Pod 层面设置了 `terminationGracePeriodSeconds`
+时容器要花非常长的时间才能重新启动。
 
 <!--
-In 1.21, when the feature flag `ProbeTerminationGracePeriod` is enabled, users
-can specify a probe-level `terminationGracePeriodSeconds` as part of the probe
-specification. When the feature flag is enabled, and both a pod- and
-probe-level `terminationGracePeriodSeconds` are set, the kubelet will use the
-probe-level value.
-
-For example,
+In 1.21 and beyond, when the feature gate `ProbeTerminationGracePeriod` is
+enabled, users can specify a probe-level `terminationGracePeriodSeconds` as
+part of the probe specification. When the feature gate is enabled, and both a
+pod- and probe-level `terminationGracePeriodSeconds` are set, the kubelet will
+use the probe-level value.
 -->
-在1.21中，启用特性标志 `ProbeTerminationGracePeriod` 后，
-用户可以指定一个探测器级别的 `terminationGracePeriodSeconds` 作为探测器规格的一部分。
-当该特性标志被启用时，若同时设置了 Pod 级别和探测器级别的 `terminationGracePeriodSeconds`，
-kubelet 将使用探测器级的值。
+在 1.21 及更高版本中，当特性门控 `ProbeTerminationGracePeriod` 被启用时，
+用户可以指定一个探测器层面的 `terminationGracePeriodSeconds` 作为探测器规约的一部分。
+当该特性门控被启用，并且 Pod 层面和探测器层面的 `terminationGracePeriodSeconds`
+都已设置，kubelet 将使用探测器层面设置的值。
 
-例如，
+<!--
+As of Kubernetes 1.22, the `ProbeTerminationGracePeriod` feature gate is only
+available on the API Server. The kubelet always honors the probe-level
+`terminationGracePeriodSeconds` field if it is present on a Pod.
+-->
+在 Kubernetes 1.22 中，`ProbeTerminationGracePeriod` 特性门控只能用在 API 服务器上。
+kubelet 始终遵守探针级别 `terminationGracePeriodSeconds` 字段
+（如果它存在于 Pod 上）。
+
+<!--
+If you have existing Pods where the `terminationGracePeriodSeconds` field is set and
+you no longer wish to use per-probe termination grace periods, you must delete
+those existing Pods.
+-->
+如果你已经为现有 Pod 设置了 `terminationGracePeriodSeconds`
+字段并且不再希望使用针对每个探针的终止宽限期，则必须删除现有的这类 Pod。
+
+<!--
+When you (or the control plane, or some other component) create replacement
+Pods, and the feature gate `ProbeTerminationGracePeriod` is disabled, then the
+API server ignores the Probe-level `terminationGracePeriodSeconds` field, even if
+a Pod or pod template specifies it.
+-->
+当你（或控制平面或某些其他组件）创建替换 Pod，并且特性门控 `ProbeTerminationGracePeriod`
+被禁用时，API 服务器会忽略探针级别的 `terminationGracePeriodSeconds` 字段设置，
+即使 Pod 或 Pod 模板指定了它。
+
+例如:
 
 ```yaml
 spec:
-  terminationGracePeriodSeconds: 3600  # pod-level
+  terminationGracePeriodSeconds: 3600  # Pod 级别设置
   containers:
   - name: test
     image: ...
@@ -720,7 +843,7 @@ spec:
         port: liveness-port
       failureThreshold: 1
       periodSeconds: 60
-      # Override pod-level terminationGracePeriodSeconds #
+      # 重载 Pod 级别的 terminationGracePeriodSeconds
       terminationGracePeriodSeconds: 60
 ```
 
@@ -728,27 +851,27 @@ spec:
 Probe-level `terminationGracePeriodSeconds` cannot be set for readiness probes.
 It will be rejected by the API server.
 -->
-探测器级别的 `terminationGracePeriodSeconds` 不能用于设置就绪态探针。
-它将被 API 服务器拒绝。
+探测器层面的 `terminationGracePeriodSeconds` 不能用于就绪态探针。
+这一设置将被 API 服务器拒绝。
 
 ## {{% heading "whatsnext" %}}
 
 <!--
 * Learn more about
-[Container Probes](/docs/concepts/workloads/pods/pod-lifecycle/#container-probes).
+  [Container Probes](/docs/concepts/workloads/pods/pod-lifecycle/#container-probes).
 -->
-* 进一步了解[容器探针](/zh/docs/concepts/workloads/pods/pod-lifecycle/#container-probes)。
+* 进一步了解[容器探针](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#container-probes)。
 
 <!--
 You can also read the API references for:
 
-* [Pod](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#pod-v1-core)
-* [Container](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core)
-* [Probe](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#probe-v1-core)
+* [Pod](/docs/reference/kubernetes-api/workload-resources/pod-v1/), and specifically:
+  * [container(s)](/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container)
+  * [probe(s)](/docs/reference/kubernetes-api/workload-resources/pod-v1/#Probe)
 -->
 你也可以阅读以下的 API 参考资料：
 
-* [Pod](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#pod-v1-core)
-* [Container](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core)
-* [Probe](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#probe-v1-core)
+* [Pod](/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1/)，尤其是：
+  * [container](/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container)
+  * [probe](/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1/#Probe)
 
diff --git a/content/zh/docs/tasks/configure-pod-container/configure-persistent-volume-storage.md b/content/zh-cn/docs/tasks/configure-pod-container/configure-persistent-volume-storage.md
similarity index 80%
rename from content/zh/docs/tasks/configure-pod-container/configure-persistent-volume-storage.md
rename to content/zh-cn/docs/tasks/configure-pod-container/configure-persistent-volume-storage.md
index 0b455867e8..5f58596b59 100644
--- a/content/zh/docs/tasks/configure-pod-container/configure-persistent-volume-storage.md
+++ b/content/zh-cn/docs/tasks/configure-pod-container/configure-persistent-volume-storage.md
@@ -13,7 +13,7 @@ weight: 60
 <!-- overview -->
 
 <!--
-This page shows how to configure a Pod to use a
+This page shows you how to configure a Pod to use a
 {{< glossary_tooltip text="PersistentVolumeClaim" term_id="persistent-volume-claim" >}}
 for storage.
 Here is a summary of the process:
@@ -27,7 +27,7 @@ PersistentVolume.
 
 1. You create a Pod that uses the above PersistentVolumeClaim for storage.
 -->
-本文介绍如何配置 Pod 使用 
+本文将向你介绍如何配置 Pod 使用 
 {{< glossary_tooltip text="PersistentVolumeClaim" term_id="persistent-volume-claim" >}}
 作为存储。
 以下是该过程的总结：
@@ -42,7 +42,8 @@ PersistentVolume.
 ## {{% heading "prerequisites" %}}
 
 <!--
-* You need to have a Kubernetes cluster that has only one Node, and the kubectl
+* You need to have a Kubernetes cluster that has only one Node, and the
+{{< glossary_tooltip text="kubectl" term_id="kubectl" >}}
 command-line tool must be configured to communicate with your cluster. If you
 do not already have a single-node cluster, you can create one by using
 [Minikube](https://minikube.sigs.k8s.io/docs/).
@@ -51,30 +52,31 @@ do not already have a single-node cluster, you can create one by using
 [Persistent Volumes](/docs/concepts/storage/persistent-volumes/).
 -->
 
-* 你需要一个包含单个节点的 Kubernetes 集群，并且必须配置 kubectl 命令行工具以便与集群交互。
+* 你需要一个包含单个节点的 Kubernetes 集群，并且必须配置
+  {{< glossary_tooltip text="kubectl" term_id="kubectl" >}} 命令行工具以便与集群交互。
   如果还没有单节点集群，可以使用
   [Minikube](https://minikube.sigs.k8s.io/docs/) 创建一个。
 .
-* 熟悉[持久卷](/zh/docs/concepts/storage/persistent-volumes/)中的材料。
+* 熟悉[持久卷](/zh-cn/docs/concepts/storage/persistent-volumes/)中的材料。
 
 <!-- steps -->
 
 <!--
 ## Create an index.html file on your Node
 
-Open a shell to the Node in your cluster. How you open a shell depends on how
-you set up your cluster. For example, if you are using Minikube, you can open a
-shell to your Node by entering `minikube ssh`.
+Open a shell to the single Node in your cluster. How you open a shell depends
+on how you set up your cluster. For example, if you are using Minikube, you
+can open a shell to your Node by entering `minikube ssh`.
 
-In your shell, create a `/mnt/data` directory:
+In your shell on that Node, create a `/mnt/data` directory:
 -->
 ## 在你的节点上创建一个 index.html 文件
 
-打开集群中节点的一个 Shell。
+打开集群中的某个节点的 Shell。
 如何打开 Shell 取决于集群的设置。
 例如，如果你正在使用 Minikube，那么可以通过输入 `minikube ssh` 来打开节点的 Shell。
 
-在 Shell 中，创建一个 `/mnt/data` 目录：
+在该节点的 Shell 中，创建一个 `/mnt/data` 目录：
 
 <!--
 # This assumes that your Node uses "sudo" to run commands
@@ -94,7 +96,7 @@ In the `/mnt/data` directory, create an `index.html` file:
 # This again assumes that your Node uses "sudo" to run commands
 # as the superuser
 -->
-```
+```shell
 # 这里再次假定你的节点使用 "sudo" 来以超级用户角色执行命令
 sudo sh -c "echo 'Hello from Kubernetes storage' > /mnt/data/index.html"
 ```
@@ -139,7 +141,7 @@ PersistentVolume uses a file or directory on the Node to emulate network-attache
 -->
 ## 创建 PersistentVolume
 
-在本练习中，你将创建一个 *hostPath* 类型的 PersistentVolume。
+在本练习中，你将创建一个 **hostPath** 类型的 PersistentVolume。
 Kubernetes 支持用于在单节点集群上开发和测试的 hostPath 类型的 PersistentVolume。
 hostPath 类型的 PersistentVolume 使用节点上的文件或目录来模拟网络附加存储。
 
@@ -149,18 +151,36 @@ would provision a network resource like a Google Compute Engine persistent disk,
 an NFS share, or an Amazon Elastic Block Store volume. Cluster administrators can also
 use [StorageClasses](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#storageclass-v1-storage)
 to set up
-[dynamic provisioning](https://kubernetes.io/blog/2016/10/dynamic-provisioning-and-storage-in-kubernetes).
+[dynamic provisioning](/blog/2016/10/dynamic-provisioning-and-storage-in-kubernetes).
 
 Here is the configuration file for the hostPath PersistentVolume:
 -->
 在生产集群中，你不会使用 hostPath。
 集群管理员会提供网络存储资源，比如 Google Compute Engine 持久盘卷、NFS 共享卷或 Amazon Elastic Block Store 卷。
-集群管理员还可以使用 [StorageClasses](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#storageclass-v1-storage) 来设置[动态提供存储](https://kubernetes.io/blog/2016/10/dynamic-provisioning-and-storage-in-kubernetes)。
+集群管理员还可以使用
+[StorageClasses](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#storageclass-v1-storage)
+来设置[动态提供存储](/blog/2016/10/dynamic-provisioning-and-storage-in-kubernetes)。
 
 下面是 hostPath PersistentVolume 的配置文件：
 
 {{< codenew file="pods/storage/pv-volume.yaml" >}}
 
+<!--
+The configuration file specifies that the volume is at `/mnt/data` on the
+cluster's Node. The configuration also specifies a size of 10 gibibytes and
+an access mode of `ReadWriteOnce`, which means the volume can be mounted as
+read-write by a single Node. It defines the [StorageClass name](/docs/concepts/storage/persistent-volumes/#class)
+`manual` for the PersistentVolume, which will be used to bind
+PersistentVolumeClaim requests to this PersistentVolume.
+-->
+配置文件指定卷位于集群节点上的 `/mnt/data` 路径。
+配置还指定了卷的容量大小为 10 GB，
+访问模式为 `ReadWriteOnce`，
+这意味着该卷可以被单个节点以读写方式安装。
+配置文件还在 PersistentVolume 中定义了
+[StorageClass 的名称](/zh-cn/docs/concepts/storage/persistent-volumes/#class)
+为 `manual`。它将用于将 PersistentVolumeClaim 的请求绑定到此 PersistentVolume。
+
 <!--
 Create the PersistentVolume:
 -->
@@ -216,7 +236,7 @@ Create the PersistentVolumeClaim:
 创建 PersistentVolumeClaim：
 
 ```shell
-kubectl create -f https://k8s.io/examples/pods/storage/pv-claim.yaml
+kubectl apply -f https://k8s.io/examples/pods/storage/pv-claim.yaml
 ```
 
 <!--
@@ -252,7 +272,7 @@ Look at the PersistentVolumeClaim:
 -->
 查看 PersistentVolumeClaim：
 
-```
+```shell
 kubectl get pvc task-pv-claim
 ```
 
@@ -299,7 +319,7 @@ kubectl apply -f https://k8s.io/examples/pods/storage/pv-pod.yaml
 ```
 
 <!--
-Verify that the Container in the Pod is running;
+Verify that the container in the Pod is running;
 -->
 检查 Pod 中的容器是否运行正常：
 
@@ -308,7 +328,7 @@ kubectl get pod task-pv-pod
 ```
 
 <!--
-Get a shell to the Container running in your Pod:
+Get a shell to the container running in your Pod:
 -->
 打开一个 Shell 访问 Pod 中的容器：
 
@@ -326,11 +346,11 @@ hostPath volume:
 # Be sure to run these 3 commands inside the root shell that comes from
 # running "kubectl exec" in the previous step
 -->
-```
+```shell
 # 一定要在上一步 "kubectl exec" 所返回的 Shell 中执行下面三个命令
-root@task-pv-pod:/# apt-get update
-root@task-pv-pod:/# apt-get install curl
-root@task-pv-pod:/# curl localhost
+apt update
+apt install curl
+curl http://localhost/
 ```
 
 <!--
@@ -374,7 +394,10 @@ In the shell on your Node, remove the file and directory that you created:
 如果你还没有连接到集群中节点的 Shell，可以按之前所做操作，打开一个新的 Shell。
 
 在节点的 Shell 上，删除你所创建的目录和文件：
-
+<!--
+# This assumes that your Node uses "sudo" to run commands
+# as the superuser
+-->
 
 ```shell
 # 这里假定你使用 "sudo" 来以超级用户的角色执行命令
@@ -387,6 +410,24 @@ You can now close the shell to your Node.
 -->
 你现在可以关闭连接到节点的 Shell。
 
+<!--
+## Mounting the same persistentVolume in two places
+-->
+## 在两个地方挂载相同的 persistentVolume
+
+{{< codenew file="pods/storage/pv-duplicate.yaml" >}}
+
+<!--
+You can perform 2 volume mounts on your nginx container:
+
+`/usr/share/nginx/html` for the static website
+`/etc/nginx/nginx.conf` for the default config
+-->
+你可以在 nginx 容器上执行两个卷挂载:
+
+`/usr/share/nginx/html` 用于静态网站
+`/etc/nginx/nginx.conf` 作为默认配置
+
 <!-- discussion -->
 
 <!--
@@ -408,8 +449,8 @@ GID 不匹配或缺失将会导致无权访问错误。
 这样 GID 就能自动添加到使用 PersistentVolume 的任何 Pod 中。
 
 使用 `pv.beta.kubernetes.io/gid` 注解的方法如下所示：
-
 ```yaml
+apiVersion: v1
 kind: PersistentVolume
 apiVersion: v1
 metadata:
@@ -420,10 +461,10 @@ metadata:
 
 <!--
 When a Pod consumes a PersistentVolume that has a GID annotation, the annotated GID
-is applied to all Containers in the Pod in the same way that GIDs specified in the
+is applied to all containers in the Pod in the same way that GIDs specified in the
 Pod's security context are. Every GID, whether it originates from a PersistentVolume
 annotation or the Pod's specification, is applied to the first process run in
-each Container.
+each container.
 -->
 当 Pod 使用带有 GID 注解的 PersistentVolume 时，注解的 GID 会被应用于 Pod 中的所有容器，
 应用的方法与 Pod 的安全上下文中指定的 GID 相同。
@@ -443,10 +484,10 @@ PersistentVolume are not present on the Pod resource itself.
 
 <!--
 * Learn more about [PersistentVolumes](/docs/concepts/storage/persistent-volumes/).
-* Read the [Persistent Storage design document](https://git.k8s.io/community/contributors/design-proposals/storage/persistent-storage.md).
+* Read the [Persistent Storage design document](https://git.k8s.io/design-proposals-archive/storage/persistent-storage.md).
 -->
-* 进一步了解 [PersistentVolumes](/zh/docs/concepts/storage/persistent-volumes/)
-* 阅读[持久存储设计文档](https://git.k8s.io/community/contributors/design-proposals/storage/persistent-storage.md)
+* 进一步了解 [PersistentVolumes](/zh-cn/docs/concepts/storage/persistent-volumes/)
+* 阅读[持久存储设计文档](https://git.k8s.io/design-proposals-archive/storage/persistent-storage.md)
 
 <!--
 ### Reference
@@ -457,5 +498,3 @@ PersistentVolume are not present on the Pod resource itself.
 * [PersistentVolumeSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#persistentvolumespec-v1-core)
 * [PersistentVolumeClaim](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#persistentvolumeclaim-v1-core)
 * [PersistentVolumeClaimSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#persistentvolumeclaimspec-v1-core)
-
-
diff --git a/content/zh/docs/tasks/configure-pod-container/configure-pod-configmap.md b/content/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap.md
similarity index 62%
rename from content/zh/docs/tasks/configure-pod-container/configure-pod-configmap.md
rename to content/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap.md
index da40f40f5e..90f85c072c 100644
--- a/content/zh/docs/tasks/configure-pod-container/configure-pod-configmap.md
+++ b/content/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap.md
@@ -17,8 +17,15 @@ card:
 
 <!-- overview -->
 <!--
-ConfigMaps allow you to decouple configuration artifacts from image content to keep containerized applications portable. This page provides a series of usage examples demonstrating how to create ConfigMaps and configure Pods using data stored in ConfigMaps. 
+Many applications rely on configuration which is used during either application initialization or runtime.
+Most of the times there is a requirement to adjust values assigned to configuration parameters.
+ConfigMaps are the Kubernetes way to inject application pods with configuration data.
+ConfigMaps allow you to decouple configuration artifacts from image content to keep containerized applications portable. This page provides a series of usage examples demonstrating how to create ConfigMaps and configure Pods using data stored in ConfigMaps.
 -->
+很多应用在其初始化或运行期间要依赖一些配置信息。大多数时候，
+存在要调整配置参数所设置的数值的需求。
+ConfigMap 是 Kubernetes 用来向应用 Pod 中注入配置数据的方法。
+
 ConfigMap 允许你将配置文件与镜像文件分离，以使容器化的应用程序具有可移植性。
 本页提供了一系列使用示例，这些示例演示了如何创建 ConfigMap 以及配置 Pod
 使用存储在 ConfigMap 中的数据。
@@ -33,75 +40,87 @@ ConfigMap 允许你将配置文件与镜像文件分离，以使容器化的应
 
 You can use either `kubectl create configmap` or a ConfigMap generator in `kustomization.yaml` to create a ConfigMap. Note that `kubectl` starts to support `kustomization.yaml` since 1.14.
 -->
-## 创建 ConfigMap
+## 创建 ConfigMap    {#create-a-configmap}
 
-你可以使用 `kubectl create configmap` 或者在 `kustomization.yaml` 中的 ConfigMap 生成器
-来创建 ConfigMap。注意，`kubectl` 从 1.14 版本开始支持 `kustomization.yaml`。
+你可以使用 `kubectl create configmap` 或者在 `kustomization.yaml` 中的 ConfigMap
+生成器来创建 ConfigMap。注意，`kubectl` 从 1.14 版本开始支持 `kustomization.yaml`。
 
 <!--
 ### Create a ConfigMap Using kubectl create configmap
 
-Use the `kubectl create configmap` command to create configmaps from [directories](#create-configmaps-from-directories), [files](#create-configmaps-from-files), or [literal values](#create-configmaps-from-literal-values):
+Use the `kubectl create configmap` command to create ConfigMaps from [directories](#create-configmaps-from-directories), [files](#create-configmaps-from-files), or [literal values](#create-configmaps-from-literal-values):
 -->
-### 使用 kubectl create configmap 创建 ConfigMap
+### 使用 kubectl create configmap 创建 ConfigMap    {#create-a-configmap-using-kubectl-create-configmap}
 
-你可以使用 `kubectl create configmap` 命令基于
-[目录](#create-configmaps-from-directories)、[文件](#create-configmaps-from-files) 
-或者[字面值](#create-configmaps-from-literal-values)来创建 ConfigMap：
+你可以使用 `kubectl create configmap` 命令基于[目录](#create-configmaps-from-directories)、
+[文件](#create-configmaps-from-files)或者[字面值](#create-configmaps-from-literal-values)来创建
+ConfigMap：
 
+<!--
 ```shell
 kubectl create configmap <map-name> <data-source>
 ```
+-->
+```shell
+kubectl create configmap <映射名称> <数据源>
+```
 
 <!--
 where \<map-name> is the name you want to assign to the ConfigMap and \<data-source> is the directory, file, or literal value to draw the data from.
 The name of a ConfigMap object must be a valid
 [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 -->
-其中，\<map-name\> 是要设置的 ConfigMap 名称，\<data-source\> 是要从中提取数据的目录、
-文件或者字面值。
-ConfigMap 对象的名称必须是合法的
-[DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
+其中，`<映射名称>` 是为 ConfigMap 指定的名称，`<数据源>` 是要从中提取数据的目录、
+文件或者字面值。ConfigMap 对象的名称必须是合法的
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 
 <!--
 When you are creating a ConfigMap based on a file, the key in the \<data-source> defaults to the basename of the file, and the value defaults to the file content.
 -->
-在你基于文件来创建 ConfigMap 时，\<data-source\> 中的键名默认取自
-文件的基本名，而对应的值则默认为文件的内容。
+在你基于文件来创建 ConfigMap 时，`<数据源>` 中的键名默认取自文件的基本名，
+而对应的值则默认为文件的内容。
 
 <!--
 You can use [`kubectl describe`](/docs/reference/generated/kubectl/kubectl-commands/#describe) or
 [`kubectl get`](/docs/reference/generated/kubectl/kubectl-commands/#get) to retrieve information
 about a ConfigMap.
 -->
-你可以使用[`kubectl describe`](/docs/reference/generated/kubectl/kubectl-commands/#describe) 或者
+你可以使用 [`kubectl describe`](/docs/reference/generated/kubectl/kubectl-commands/#describe) 或者
 [`kubectl get`](/docs/reference/generated/kubectl/kubectl-commands/#get) 获取有关 ConfigMap 的信息。
 
 <!--
 #### Create ConfigMaps from directories
 
-You can use `kubectl create configmap` to create a ConfigMap from multiple
-files in the same directory.
-When you are creating a ConfigMap based on a directory, kubectl identifies
-files whose basename is a valid key in the directory and packages each of
-those files into the new ConfigMap. Any directory entries except regular files
-are ignored (e.g. subdirectories, symlinks, devices, pipes, etc).
-
+You can use `kubectl create configmap` to create a ConfigMap from multiple files in the same directory. When you are creating a ConfigMap based on a directory, kubectl identifies files whose basename is a valid key in the directory and packages each of those files into the new ConfigMap. Any directory entries except regular files are ignored (e.g. subdirectories, symlinks, devices, pipes, etc).
 For example:
 -->
 #### 基于目录创建 ConfigMap     {#create-configmaps-from-directories}
+
 你可以使用 `kubectl create configmap` 基于同一目录中的多个文件创建 ConfigMap。
-当你基于目录来创建 ConfigMap 时，kubectl 识别目录下基本名可以作为合法键名的
-文件，并将这些文件打包到新的 ConfigMap 中。普通文件之外的所有目录项都会被
-忽略（例如，子目录、符号链接、设备、管道等等）。
+当你基于目录来创建 ConfigMap 时，kubectl 识别目录下基本名可以作为合法键名的文件，
+并将这些文件打包到新的 ConfigMap 中。普通文件之外的所有目录项都会被忽略
+（例如：子目录、符号链接、设备、管道等等）。
 
 例如：
 
+<!--
+```shell
+# Create the local directory
+mkdir -p configure-pod-container/configmap/
+
+# Download the sample files into `configure-pod-container/configmap/` directory
+wget https://kubernetes.io/examples/configmap/game.properties -O configure-pod-container/configmap/game.properties
+wget https://kubernetes.io/examples/configmap/ui.properties -O configure-pod-container/configmap/ui.properties
+
+# Create the configmap
+kubectl create configmap game-config --from-file=configure-pod-container/configmap/
+```
+-->
 ```shell
 # 创建本地目录
 mkdir -p configure-pod-container/configmap/
 
-# 将实例文件下载到 `configure-pod-container/configmap/` 目录
+# 将示例文件下载到 `configure-pod-container/configmap/` 目录
 wget https://kubernetes.io/examples/configmap/game.properties -O configure-pod-container/configmap/game.properties
 wget https://kubernetes.io/examples/configmap/ui.properties -O configure-pod-container/configmap/ui.properties
 
@@ -110,10 +129,7 @@ kubectl create configmap game-config --from-file=configure-pod-container/configm
 ```
 
 <!--
-The above command packages each file, in this case, `game.properties` and
-`ui.properties` in the `configure-pod-container/configmap/` directory into the
-game-config ConfigMap. You can display details of the ConfigMap using the
-following command:
+The above command packages each file, in this case, `game.properties` and `ui.properties` in the `configure-pod-container/configmap/` directory into the game-config ConfigMap. You can display details of the ConfigMap using the following command:
 -->
 以上命令将 `configure-pod-container/configmap` 目录下的所有文件，也就是
 `game.properties` 和 `ui.properties` 打包到 game-config ConfigMap
@@ -176,7 +192,6 @@ metadata:
   name: game-config
   namespace: default
   resourceVersion: "516"
-  selfLink: /api/v1/namespaces/default/configmaps/game-config
   uid: b4952dc3-d670-11e5-8cd0-68f728db1985
 data:
   game.properties: |
@@ -254,9 +269,9 @@ kubectl create configmap game-config-2 --from-file=configure-pod-container/confi
 ```
 
 <!--
-Describe the above `game-config-2` configmap created
+You can display details of the `game-config-2` ConfigMap using the following command:
 -->
-描述上面创建的 `game-config-2` configmap
+你可以使用以下命令显示 `game-config-2` ConfigMap 的详细信息：
 
 ```shell
 kubectl describe configmaps game-config-2
@@ -317,29 +332,32 @@ Use the option `--from-env-file` to create a ConfigMap from an env-file, for exa
 
 # Download the sample files into `configure-pod-container/configmap/` directory
 wget https://kubernetes.io/examples/configmap/game-env-file.properties -O configure-pod-container/configmap/game-env-file.properties
+wget https://kubernetes.io/examples/configmap/ui-env-file.properties -O configure-pod-container/configmap/ui-env-file.properties
 
 # The env-file `game-env-file.properties` looks like below
 cat configure-pod-container/configmap/game-env-file.properties
 enemies=aliens
 lives=3
 allowed="true"
--->
 
-Env 文件包含环境变量列表。
-其中适用以下语法规则:
+# This comment and the empty line above it are ignored
+```
+-->
+Env 文件包含环境变量列表。其中适用以下语法规则:
 
 - Env 文件中的每一行必须为 VAR=VAL 格式。
 - 以＃开头的行（即注释）将被忽略。
 - 空行将被忽略。
 - 引号不会被特殊处理（即它们将成为 ConfigMap 值的一部分）。
 
-将示例文件下载到 `configure-pod-container/configmap/` 目录
+将示例文件下载到 `configure-pod-container/configmap/` 目录：
 
 ```shell
 wget https://kubernetes.io/examples/configmap/game-env-file.properties -O configure-pod-container/configmap/game-env-file.properties
+wget https://kubernetes.io/examples/configmap/ui-env-file.properties -O configure-pod-container/configmap/ui-env-file.properties
 ```
 
-env 文件 `game-env-file.properties` 如下所示：
+Env 文件 `game-env-file.properties` 如下所示：
 
 ```shell
 cat configure-pod-container/configmap/game-env-file.properties
@@ -387,33 +405,13 @@ data:
 ```
 
 <!--
-When passing `--from-env-file` multiple times to create a ConfigMap from multiple data sources, only the last env-file is used:
+Starting with Kubernetes v1.23, `kubectl` supports the `--from-env-file` argument to be
+specified multiple times to create a ConfigMap from multiple data sources.
 -->
-{{< caution >}}
-当多次使用 `--from-env-file` 来从多个数据源创建 ConfigMap 时，仅仅最后一个 env 文件有效。
-{{< /caution >}}
+从 Kubernetes 1.23 版本开始，`kubectl` 支持多次指定 `--from-env-file` 参数来从多个数据源创建
+ConfigMap。
 
-<!--
-The behavior of passing `--from-env-file` multiple times is demonstrated by:
--->
-下面是一个多次使用 `--from-env-file` 参数的示例：
-
-<!--
 ```shell
-# Download the sample files into `configure-pod-container/configmap/` directory
-wget https://k8s.io/examples/configmap/ui-env-file.properties -O configure-pod-container/configmap/ui-env-file.properties
-
-# Create the configmap
-kubectl create configmap config-multi-env-files \
-        --from-env-file=configure-pod-container/configmap/game-env-file.properties \
-        --from-env-file=configure-pod-container/configmap/ui-env-file.properties
-```
--->
-```shell
-# 将样本文件下载到 `configure-pod-container/configmap/` 目录
-wget https://k8s.io/examples/configmap/ui-env-file.properties -O configure-pod-container/configmap/ui-env-file.properties
-
-# 创建 configmap
 kubectl create configmap config-multi-env-files \
         --from-env-file=configure-pod-container/configmap/game-env-file.properties \
         --from-env-file=configure-pod-container/configmap/ui-env-file.properties
@@ -432,6 +430,7 @@ kubectl get configmap config-multi-env-files -o yaml
 where the output is similar to this:
 -->
 输出类似以下内容:
+
 ```yaml
 apiVersion: v1
 kind: ConfigMap
@@ -440,11 +439,13 @@ metadata:
   name: config-multi-env-files
   namespace: default
   resourceVersion: "810136"
-  selfLink: /api/v1/namespaces/default/configmaps/config-multi-env-files
   uid: 252c4572-eb35-11e7-887b-42010a8002b8
 data:
+  allowed: '"true"'
   color: purple
+  enemies: aliens
   how: fairlyNice
+  lives: "3"
   textmode: "true"
 ```
 
@@ -453,21 +454,28 @@ data:
 
 You can define a key other than the file name to use in the `data` section of your ConfigMap when using the `--from-file` argument:
 -->
-#### 定义从文件创建 ConfigMap 时要使用的键
+#### 定义从文件创建 ConfigMap 时要使用的键    {#define-the-key-to-use-when-generating-a-configmap-from-a-file}
 
 在使用 `--from-file` 参数时，你可以定义在 ConfigMap 的 `data` 部分出现键名，
 而不是按默认行为使用文件名：
 
+<!--
 ```shell
 kubectl create configmap game-config-3 --from-file=<my-key-name>=<path-to-file>
 ```
+-->
+```shell
+kubectl create configmap game-config-3 --from-file=<我的键名>=<文件路径>
+```
 
 <!--
-where <my-key-name> is the key you want to use in the ConfigMap and `<path-to-file>` is the location of the data source file you want the key to represent.
+where `<my-key-name>` is the key you want to use in the ConfigMap and `<path-to-file>` is the location of the data source file you want the key to represent.
 -->
-`<my-key-name>` 是你要在 ConfigMap 中使用的键名，`<path-to-file>` 是你想要键表示数据源文件的位置。
+`<我的键名>` 是你要在 ConfigMap 中使用的键名，`<文件路径>` 是你想要键所表示的数据源文件的位置。
 
-<!-- For example: -->
+<!--
+For example:
+-->
 例如:
 
 ```shell
@@ -479,11 +487,13 @@ would produce the following ConfigMap:
 -->
 将产生以下 ConfigMap:
 
-```
+```shell
 kubectl get configmaps game-config-3 -o yaml
 ```
 
-<!-- where the output is similar to this: -->
+<!--
+where the output is similar to this:
+-->
 输出类似以下内容：
 
 ```yaml
@@ -494,7 +504,6 @@ metadata:
   name: game-config-3
   namespace: default
   resourceVersion: "530"
-  selfLink: /api/v1/namespaces/default/configmaps/game-config-3
   uid: 05f8da22-d671-11e5-8cd0-68f728db1985
 data:
   game-special-key: |
@@ -513,7 +522,9 @@ data:
 You can use `kubectl create configmap` with the `--from-literal` argument to define a literal value from the command line:
 -->
 #### 根据字面值创建 ConfigMap         {#create-configmaps-from-literal-values}
-你可以将 `kubectl create configmap` 与 `--from-literal` 参数一起使用，从命令行定义文字值:
+
+你可以将 `kubectl create configmap` 与 `--from-literal` 参数一起使用，
+通过命令行定义文字值：
 
 ```shell
 kubectl create configmap special-config --from-literal=special.how=very --from-literal=special.type=charm
@@ -541,7 +552,6 @@ metadata:
   name: special-config
   namespace: default
   resourceVersion: "651"
-  selfLink: /api/v1/namespaces/default/configmaps/special-config
   uid: dadce046-d673-11e5-8cd0-68f728db1985
 data:
   special.how: very
@@ -551,45 +561,57 @@ data:
 <!--
 ### Create a ConfigMap from generator
 
-
 `kubectl` supports `kustomization.yaml` since 1.14.
 You can also create a ConfigMap from generators and then apply it to create the object on
 the Apiserver. The generators
 should be specified in a `kustomization.yaml` inside a directory.
 -->
-### 基于生成器创建 ConfigMap
+### 基于生成器创建 ConfigMap    {#create-a-configmap-from-generator}
 
 自 1.14 开始，`kubectl` 开始支持 `kustomization.yaml`。
-你还可以基于生成器创建 ConfigMap，然后将其应用于 API 服务器上创建对象。
+你还可以基于生成器（Generators）创建 ConfigMap，然后将其应用于 API 服务器上创建对象。
 生成器应在目录内的 `kustomization.yaml` 中指定。
 
 <!--
 #### Generate ConfigMaps from files
 
-For example, to generate a ConfigMap from files `configure-pod-container/configmap/kubectl/game.properties`
+For example, to generate a ConfigMap from files `configure-pod-container/configmap/game.properties`
 -->
-#### 基于文件生成 ConfigMap
+#### 基于文件生成 ConfigMap    {#generate-configmaps-from-files}
 
-例如，要从 `configure-pod-container/configmap/kubectl/game.properties` 文件生成一个 ConfigMap：
+例如，要基于 `configure-pod-container/configmap/game.properties`
+文件生成一个 ConfigMap：
 
+<!--
+```shell
+# Create a kustomization.yaml file with ConfigMapGenerator
+cat <<EOF >./kustomization.yaml
+configMapGenerator:
+- name: game-config-4
+  files:
+  - configure-pod-container/configmap/game.properties
+EOF
+```
+-->
 ```shell
 # 创建包含 ConfigMapGenerator 的 kustomization.yaml 文件
 cat <<EOF >./kustomization.yaml
 configMapGenerator:
 - name: game-config-4
   files:
-  - configure-pod-container/configmap/kubectl/game.properties
+  - configure-pod-container/configmap/game.properties
 EOF
 ```
 
 <!--
 Apply the kustomization directory to create the ConfigMap object.
 -->
-使用 kustomization 目录创建 ConfigMap 对象：
+应用（Apply）kustomization 目录创建 ConfigMap 对象：
 
 ```shell
 kubectl apply -k .
 ```
+
 ```
 configmap/game-config-4-m9dm2f92bt created
 ```
@@ -597,7 +619,7 @@ configmap/game-config-4-m9dm2f92bt created
 <!--
 You can check that the ConfigMap was created like this:
 -->
-你可以检查 ConfigMap 是这样创建的:
+你可以检查 ConfigMap 被创建如下：
 
 ```shell
 kubectl get configmap
@@ -640,33 +662,45 @@ new ConfigMap is generated each time the content is modified.
 #### Define the key to use when generating a ConfigMap from a file
 
 You can define a key other than the file name to use in the ConfigMap generator.
-For example, to generate a ConfigMap from files `configure-pod-container/configmap/kubectl/game.properties`
+For example, to generate a ConfigMap from files `configure-pod-container/configmap/game.properties`
 with the key `game-special-key`
 -->
-#### 定义从文件生成 ConfigMap 时要使用的键
+#### 定义从文件生成 ConfigMap 时要使用的键    {#define-the-key-to-use-when-generating-a-configmap-from-a-file}
 
-在 ConfigMap 生成器，你可以定义一个非文件名的键名。
+在 ConfigMap 生成器中，你可以定义一个非文件名的键名。
 例如，从 `configure-pod-container/configmap/game.properties` 文件生成 ConfigMap，
 但使用 `game-special-key` 作为键名：
 
+<!--
+```shell
+# Create a kustomization.yaml file with ConfigMapGenerator
+cat <<EOF >./kustomization.yaml
+configMapGenerator:
+- name: game-config-5
+  files:
+  - game-special-key=configure-pod-container/configmap/game.properties
+EOF
+```
+-->
 ```shell
 # 创建包含 ConfigMapGenerator 的 kustomization.yaml 文件
 cat <<EOF >./kustomization.yaml
 configMapGenerator:
 - name: game-config-5
   files:
-  - game-special-key=configure-pod-container/configmap/kubectl/game.properties
+  - game-special-key=configure-pod-container/configmap/game.properties
 EOF
 ```
 
 <!--
 Apply the kustomization directory to create the ConfigMap object.
 -->
-使用 Kustomization 目录创建 ConfigMap 对象。
+应用 Kustomization 目录创建 ConfigMap 对象。
 
 ```shell
 kubectl apply -k .
 ```
+
 ```
 configmap/game-config-5-m67dt67794 created
 ```
@@ -675,13 +709,25 @@ configmap/game-config-5-m67dt67794 created
 #### Generate ConfigMaps from Literals
 
 To generate a ConfigMap from literals `special.type=charm` and `special.how=very`,
-you can specify the ConfigMap generator in `kusotmization.yaml` as
+you can specify the ConfigMap generator in `kustomization.yaml` as
 -->
-#### 从字面值生成 ConfigMap
+#### 基于字面值生成 ConfigMap    {#generate-configmaps-from-literals}
 
 要基于字符串 `special.type=charm` 和 `special.how=very` 生成 ConfigMap，
-可以在 `kusotmization.yaml` 中配置 ConfigMap 生成器：
+可以在 `kustomization.yaml` 中配置 ConfigMap 生成器：
 
+<!--
+```shell
+# Create a kustomization.yaml file with ConfigMapGenerator
+cat <<EOF >./kustomization.yaml
+configMapGenerator:
+- name: special-config-2
+  literals:
+  - special.how=very
+  - special.type=charm
+EOF
+```
+-->
 ```shell
 # 创建带有 ConfigMapGenerator 的 kustomization.yaml 文件
 cat <<EOF >./kustomization.yaml
@@ -701,6 +747,7 @@ Apply the kustomization directory to create the ConfigMap object.
 ```shell
 kubectl apply -k .
 ```
+
 ```
 configmap/special-config-2-c92b5mmcf2 created
 ```
@@ -710,12 +757,12 @@ configmap/special-config-2-c92b5mmcf2 created
 
 ### Define a container environment variable with data from a single ConfigMap
 -->
-## 使用 ConfigMap 数据定义容器环境变量
+## 使用 ConfigMap 数据定义容器环境变量    {#define-container-environment-variables-using-configmap-data}
 
-### 使用单个 ConfigMap 中的数据定义容器环境变量
+### 使用单个 ConfigMap 中的数据定义容器环境变量    {#define-a-container-environment-variable-with-data-from-a-single-configmap}
 
 <!--
-1.  Define an environment variable as a key-value pair in a ConfigMap:
+1. Define an environment variable as a key-value pair in a ConfigMap:
 -->
 1. 在 ConfigMap 中将环境变量定义为键值对:
 
@@ -724,33 +771,41 @@ configmap/special-config-2-c92b5mmcf2 created
    ```
 
 <!--
-2.  Assign the `special.how` value defined in the ConfigMap to the `SPECIAL_LEVEL_KEY` environment variable in the Pod specification.
+2. Assign the `special.how` value defined in the ConfigMap to the `SPECIAL_LEVEL_KEY` environment variable in the Pod specification.
 -->
-2. 将 ConfigMap 中定义的 `special.how` 值分配给 Pod 规范中的 `SPECIAL_LEVEL_KEY` 环境变量。
+2. 将 ConfigMap 中定义的 `special.how` 赋值给 Pod 规约中的 `SPECIAL_LEVEL_KEY` 环境变量。
 
    {{< codenew file="pods/pod-single-configmap-env-variable.yaml" >}}
 
-   <!-- Create the Pod: -->
+   <!--
+   Create the Pod:
+   -->
    创建 Pod:
 
    ```shell
    kubectl create -f https://kubernetes.io/examples/pods/pod-single-configmap-env-variable.yaml
    ```
 
-   <!-- Now, the Pod's output includes environment variable `SPECIAL_LEVEL_KEY=very`. -->
+   <!--
+   Now, the Pod's output includes environment variable `SPECIAL_LEVEL_KEY=very`.
+   -->
    现在，Pod 的输出包含环境变量 `SPECIAL_LEVEL_KEY=very`。
 
 <!--
 ### Define container environment variables with data from multiple ConfigMaps
 -->
-### 使用来自多个 ConfigMap 的数据定义容器环境变量
+### 使用来自多个 ConfigMap 的数据定义容器环境变量    {#define-container-environment-variables-with-data-from-multiple-configmaps}
 
-<!-- * As with the previous example, create the ConfigMaps first. -->
+<!--
+* As with the previous example, create the ConfigMaps first.
+-->
 * 与前面的示例一样，首先创建 ConfigMap。
 
   {{< codenew file="configmap/configmaps.yaml" >}}
 
-  <!-- Create the ConfigMap: -->
+  <!--
+  Create the ConfigMap:
+  -->
   创建 ConfigMap:
 
   ```shell
@@ -760,29 +815,33 @@ configmap/special-config-2-c92b5mmcf2 created
 <!--
 * Define the environment variables in the Pod specification.
 -->
-* 在 Pod 规范中定义环境变量。
+* 在 Pod 规约中定义环境变量。
 
   {{< codenew file="pods/pod-multiple-configmap-env-variable.yaml" >}}
 
-  <!-- Create the Pod: -->
+  <!--
+  Create the Pod:
+  -->
   创建 Pod:
 
   ```shell
   kubectl create -f https://kubernetes.io/examples/pods/pod-multiple-configmap-env-variable.yaml
   ```
 
-  <!-- Now, the Pod's output includes environment variables `SPECIAL_LEVEL_KEY=very` and `LOG_LEVEL=INFO`. -->
+  <!--
+  Now, the Pod's output includes environment variables `SPECIAL_LEVEL_KEY=very` and `LOG_LEVEL=INFO`.
+  -->
   现在，Pod 的输出包含环境变量 `SPECIAL_LEVEL_KEY=very` 和 `LOG_LEVEL=INFO`。
 
 <!--
 ## Configure all key-value pairs in a ConfigMap as container environment variables
 -->
-## 将 ConfigMap 中的所有键值对配置为容器环境变量
+## 将 ConfigMap 中的所有键值对配置为容器环境变量    {#configure-all-key-value-pairs-in-a-configmap-as-container-environment-variables}
 
+{{< note >}}
 <!--
 This functionality is available in Kubernetes v1.6 and later.
 -->
-{{< note >}}
 Kubernetes v1.6 和更高版本支持此功能。
 {{< /note >}}
 
@@ -793,7 +852,9 @@ Kubernetes v1.6 和更高版本支持此功能。
 
   {{< codenew file="configmap/configmap-multikeys.yaml" >}}
 
-  <!-- Create the ConfigMap: -->
+  <!--
+  Create the ConfigMap:
+  -->
   创建 ConfigMap:
 
   ```shell
@@ -803,34 +864,40 @@ Kubernetes v1.6 和更高版本支持此功能。
 <!--
 * Use `envFrom` to define all of the ConfigMap's data as container environment variables. The key from the ConfigMap becomes the environment variable name in the Pod.
 -->
-* 使用 `envFrom` 将所有 ConfigMap 的数据定义为容器环境变量，ConfigMap 中的键成为 Pod 中的环境变量名称。
+* 使用 `envFrom` 将所有 ConfigMap 的数据定义为容器环境变量，ConfigMap
+  中的键成为 Pod 中的环境变量名称。
 
   {{< codenew file="pods/pod-configmap-envFrom.yaml" >}}
 
-  <!-- Create the Pod: -->
+  <!--
+  Create the Pod:
+  -->
   创建 Pod:
 
   ```shell
   kubectl create -f https://kubernetes.io/examples/pods/pod-configmap-envFrom.yaml
   ```
 
-  <!-- Now, the Pod's output includes environment variables `SPECIAL_LEVEL=very` and `SPECIAL_TYPE=charm`.  -->
+  <!--
+  Now, the Pod's output includes environment variables `SPECIAL_LEVEL=very` and `SPECIAL_TYPE=charm`.
+  -->
   现在，Pod 的输出包含环境变量 `SPECIAL_LEVEL=very` 和 `SPECIAL_TYPE=charm`。
 
 <!--
 ## Use ConfigMap-defined environment variables in Pod commands
 -->
-## 在 Pod 命令中使用 ConfigMap 定义的环境变量
+## 在 Pod 命令中使用 ConfigMap 定义的环境变量    {#use-configmap-defined-environment-variables-in-pod-commands}
 
 <!--
 You can use ConfigMap-defined environment variables in the `command` and `args` of a container using the `$(VAR_NAME)` Kubernetes substitution syntax.
 -->
-你可以使用 `$(VAR_NAME)` Kubernetes 替换语法在容器的 `command` 和 `args` 部分中使用 ConfigMap 定义的环境变量。
+你可以使用 `$(VAR_NAME)` Kubernetes 替换语法在容器的 `command` 和 `args`
+属性中使用 ConfigMap 定义的环境变量。
 
 <!--
 For example, the following Pod specification
 -->
-例如，以下 Pod 规范
+例如，以下 Pod 规约
 
 {{< codenew file="pods/pod-configmap-env-var-valueFrom.yaml" >}}
 
@@ -857,16 +924,16 @@ very charm
 
 As explained in [Create ConfigMaps from files](#create-configmaps-from-files), when you create a ConfigMap using ``--from-file``, the filename becomes a key stored in the `data` section of the ConfigMap. The file contents become the key's value.
 -->
-## 将 ConfigMap 数据添加到一个卷中
+## 将 ConfigMap 数据添加到一个卷中    {#add-configmap-data-to-a-volume}
 
-如基于文件创建 [ConfigMap](#create-configmaps-from-files) 中所述，当你使用 
+如基于文件创建 [ConfigMap](#create-configmaps-from-files) 中所述，当你使用
 `--from-file` 创建 ConfigMap 时，文件名成为存储在 ConfigMap 的 `data` 部分中的键，
 文件内容成为键对应的值。
 
 <!--
 The examples in this section refer to a ConfigMap named special-config, shown below.
 -->
-本节中的示例引用了一个名为 special-config 的 ConfigMap，如下所示：
+本节中的示例引用了一个名为 'special-config' 的 ConfigMap，如下所示：
 
 {{< codenew file="configmap/configmap-multikeys.yaml" >}}
 
@@ -884,17 +951,20 @@ kubectl create -f https://kubernetes.io/examples/configmap/configmap-multikeys.y
 
 Add the ConfigMap name under the `volumes` section of the Pod specification.
 This adds the ConfigMap data to the directory specified as `volumeMounts.mountPath` (in this case, `/etc/config`).
-The `command` section references the `special.level` item stored in the ConfigMap.
+The `command` section lists directory files with names that match the keys in ConfigMap.
 -->
-### 使用存储在 ConfigMap 中的数据填充数据卷
+### 使用存储在 ConfigMap 中的数据填充卷    {#populate-a-volume-with-data-stored-in-a-configmap}
 
 在 Pod 规约的 `volumes` 部分下添加 ConfigMap 名称。
-这会将 ConfigMap 数据添加到指定为 `volumeMounts.mountPath` 的目录（在本例中为 `/etc/config`）。
-`command` 部分引用存储在 ConfigMap 中的 `special.level`。
+这会将 ConfigMap 数据添加到 `volumeMounts.mountPath` 所指定的目录
+（在本例中为 `/etc/config`）。
+`command` 部分列出了名称与 ConfigMap 中的键匹配的目录文件。
 
 {{< codenew file="pods/pod-configmap-volume.yaml" >}}
 
-<!-- Create the Pod: -->
+<!--
+Create the Pod:
+-->
 创建 Pod:
 
 ```shell
@@ -906,22 +976,23 @@ When the pod runs, the command `ls /etc/config/` produces the output below:
 -->
 Pod 运行时，命令 `ls /etc/config/` 产生下面的输出：
 
-```shell
+```
 SPECIAL_LEVEL
 SPECIAL_TYPE
 ```
+
+{{< caution >}}
 <!--
 If there are some files in the `/etc/config/` directory, they will be deleted.
 -->
-{{< caution >}}
-如果在 `/etc/config/` 目录中有一些文件，它们将被删除。
+如果在 `/etc/config/` 目录中有一些文件，这些文件将被删除。
 {{< /caution >}}
 
+{{< note >}}
 <!--
 Text data is exposed as files using the UTF-8 character encoding. To use some other character encoding, use binaryData.
 -->
-{{< note >}}
-文本数据会使用 UTF-8 字符编码的形式展现为文件。如果使用其他字符编码，
+文本数据会展现为 UTF-8 字符编码的文件。如果使用其他字符编码，
 可以使用 `binaryData`。
 {{< /note >}}
 
@@ -931,10 +1002,11 @@ Text data is exposed as files using the UTF-8 character encoding. To use some ot
 Use the `path` field to specify the desired file path for specific ConfigMap items.
 In this case, the `SPECIAL_LEVEL` item will be mounted in the `config-volume` volume at `/etc/config/keys`.
 -->
-### 将 ConfigMap 数据添加到数据卷中的特定路径
+### 将 ConfigMap 数据添加到卷中的特定路径    {#add-configmap-data-to-a-specific-path-in-the-volume}
 
 使用 `path` 字段为特定的 ConfigMap 项目指定预期的文件路径。
-在这里，ConfigMap中，键值 `SPECIAL_LEVEL` 的内容将挂载在 `config-volume` 数据卷中 `/etc/config/keys` 文件下。
+在这里，ConfigMap 中键 `SPECIAL_LEVEL` 的内容将挂载在 `config-volume`
+卷中 `/etc/config/keys` 文件中。
 
 {{< codenew file="pods/pod-configmap-volume-specific-key.yaml" >}}
 
@@ -950,15 +1022,16 @@ kubectl create -f https://kubernetes.io/examples/pods/pod-configmap-volume-speci
 <!--
 When the pod runs, the command `cat /etc/config/keys` produces the output below:
 -->
-当 pod 运行时，命令 `cat /etc/config/keys` 产生以下输出：
+当 Pod 运行时，命令 `cat /etc/config/keys` 产生以下输出：
 
 ```
 very
 ```
+
+{{< caution >}}
 <!--
 Like before, all previous files in the `/etc/config/` directory will be deleted.
 -->
-{{< caution >}}
 如前，`/etc/config/` 目录中所有先前的文件都将被删除。
 {{< /caution >}}
 
@@ -968,41 +1041,13 @@ Like before, all previous files in the `/etc/config/` directory will be deleted.
 You can project keys to specific paths and specific permissions on a per-file
 basis. The [Secrets](/docs/concepts/configuration/secret/#using-secrets-as-files-from-a-pod) user guide explains the syntax.
 -->
-### 映射键以指定路径和文件权限
+### 映射键到指定路径并设置文件访问权限    {#project-keys-to-specific-paths-and-file-permissions}
 
-你可以通过指定键名到特定目录的投射关系，也可以逐个文件地设定访问权限。
-[Secret 用户指南](/zh/docs/concepts/configuration/secret/#using-secrets-as-files-from-a-pod)
-中对这一语法提供了解释。
+你可以将指定键名投射到特定目录，也可以逐个文件地设定访问权限。
+[Secret 用户指南](/zh-cn/docs/concepts/configuration/secret/#using-secrets-as-files-from-a-pod)
+中为这一语法提供了解释。
 
-<!--
-### Mounted ConfigMaps are updated automatically
--->
-### 挂载的 ConfigMap 将自动更新
 
-<!--
-When a ConfigMap already being consumed in a volume is updated, projected keys
-are eventually updated as well. Kubelet is checking whether the mounted
-ConfigMap is fresh on every periodic sync. However, it is using its local
-ttl-based cache for getting the current value of the ConfigMap. As a result,
-the total delay from the moment when the ConfigMap is updated to the moment
-when new keys are projected to the pod can be as long as kubelet sync period
-(1 minute by default) + ttl of ConfigMaps cache (1 minute by default) in
-kubelet. You can trigger an immediate refresh by updating one of the pod's
-annotations.
--->
-更新已经在数据卷中使用的 ConfigMap 时，已映射的键最终也会被更新。
-`kubelet` 在每次定期同步时都会检查已挂载的 ConfigMap 是否是最新的。
-但是，它使用其本地的基于 TTL 的缓存来获取 ConfigMap 的当前值。
-因此，从更新 ConfigMap 到将新键映射到 Pod 的总延迟可能与
-kubelet 同步周期 + ConfigMap 在 kubelet 中缓存的 TTL 一样长。
-
-<!--
-A container using a ConfigMap as a [subPath](/docs/concepts/storage/volumes/#using-subpath) volume will not receive ConfigMap updates.
--->
-{{< note >}}
-使用 ConfigMap 作为 [subPath](/zh/docs/concepts/storage/volumes/#using-subpath)
-的数据卷将不会收到 ConfigMap 更新。
-{{< /note >}}
 
 <!-- discussion -->
 
@@ -1011,22 +1056,22 @@ A container using a ConfigMap as a [subPath](/docs/concepts/storage/volumes/#usi
 
 The ConfigMap API resource stores configuration data as key-value pairs. The data can be consumed in pods or provide the configurations for system components such as controllers. ConfigMap is similar to [Secrets](/docs/concepts/configuration/secret/), but provides a means of working with strings that don't contain sensitive information. Users and system components alike can store configuration data in ConfigMap.
 -->
-## 了解 ConfigMap 和 Pod
+## 了解 ConfigMap 和 Pod    {#understanding-configmaps-and-pods}
 
 ConfigMap API 资源将配置数据存储为键值对。
-数据可以在 Pod 中使用，也可以提供系统组件（如控制器）的配置。
-ConfigMap 与 [Secret](/zh/docs/concepts/configuration/secret/) 类似，
-但是提供了一种使用不包含敏感信息的字符串的方法。
+数据可以在 Pod 中使用，也可以用来提供系统组件（如控制器）的配置。
+ConfigMap 与 [Secret](/zh-cn/docs/concepts/configuration/secret/) 类似，
+但是提供的是一种处理不含敏感信息的字符串的方法。
 用户和系统组件都可以在 ConfigMap 中存储配置数据。
 
+{{< note >}}
 <!--
 ConfigMaps should reference properties files, not replace them. Think of the ConfigMap as representing something similar to the Linux `/etc` directory and its contents. For example, if you create a [Kubernetes Volume](/docs/concepts/storage/volumes/) from a ConfigMap, each data item in the ConfigMap is represented by an individual file in the volume.
 -->
-{{< note >}}
 ConfigMap 应该引用属性文件，而不是替换它们。可以将 ConfigMap 理解为类似于 Linux
-`/etc` 目录及其内容的东西。例如，如果你从 ConfigMap 创建
-[Kubernetes 卷](/zh/docs/concepts/storage/volumes/)，则 ConfigMap
-中的每个数据项都由该数据卷中的单个文件表示。
+`/etc` 目录及其内容的东西。例如，如果你基于 ConfigMap 创建
+[Kubernetes 卷](/zh-cn/docs/concepts/storage/volumes/)，则 ConfigMap
+中的每个数据项都由该数据卷中的某个独立的文件表示。
 {{< /note >}}
 
 <!--
@@ -1036,6 +1081,7 @@ ConfigMap 的 `data` 字段包含配置数据。如下例所示，它可以简
 （如用 `--from-literal` 的单个属性定义）或复杂
 （如用 `--from-file` 的配置文件或 JSON blob定义）。
 
+
 ```yaml
 apiVersion: v1
 kind: ConfigMap
@@ -1057,25 +1103,29 @@ data:
 <!--
 ### Restrictions
 
-- You must create a ConfigMap before referencing it in a Pod specification (unless you mark the ConfigMap as "optional"). If you reference a ConfigMap that doesn't exist, the Pod won't start. Likewise, references to keys that don't exist in the ConfigMap will prevent the pod from starting.
+- You must create the `ConfigMap` object before you reference it in a Pod specification. Alternatively, mark the ConfigMap reference as `optional` in the Pod spec (see [Optional ConfigMaps](#optional-configmaps)). If you reference a ConfigMap that doesn't exist and you don't mark the reference as `optional`, the Pod won't start. Similarly, references to keys that don't exist in the ConfigMap will also prevent the Pod from starting, unless you mark the key references as `optional`.
 -->
-### 限制
+### 限制   {#restrictions}
 
-- 在 Pod 规范中引用之前，必须先创建一个 ConfigMap（除非将 ConfigMap 标记为"可选"）。
-  如果引用的 ConfigMap 不存在，则 Pod 将不会启动。同样，引用 ConfigMap 中不存在的键也会阻止 Pod 启动。
+- 在 Pod 规约中引用某个 `ConfigMap` 之前，必须先创建这个对象，
+或者在 Pod 规约中将 ConfigMap 标记为 `optional`（请参阅[可选的 ConfigMaps](#optional-configmaps)）。
+如果所引用的 ConfigMap 不存在，并且没有将应用标记为 `optional` 则 Pod 将无法启动。
+同样，引用 ConfigMap 中不存在的主键也会令 Pod 无法启动，除非你将 Configmap 标记为 `optional`。
 
 <!--
 - If you use `envFrom` to define environment variables from ConfigMaps, keys that are considered invalid will be skipped. The pod will be allowed to start, but the invalid names will be recorded in the event log (`InvalidVariableNames`). The log message lists each skipped key. For example:
 -->
-- 如果你使用 `envFrom` 基于 ConfigMap 定义环境变量，那么无效的键将被忽略。
-  可以启动 Pod，但无效名称将记录在事件日志中（`InvalidVariableNames`）。
-  日志消息列出了每个跳过的键。例如:
+- 如果你使用 `envFrom` 来基于 ConfigMap 定义环境变量，那么无效的键将被忽略。
+  Pod 可以被启动，但无效名称将被记录在事件日志中（`InvalidVariableNames`）。
+  日志消息列出了每个被跳过的键。例如:
 
   ```shell
   kubectl get events
   ```
 
-  <!-- The output is similar to this: -->
+  <!--
+  The output is similar to this:
+  -->
   输出与此类似:
 
   ```
@@ -1086,20 +1136,127 @@ data:
 <!--
 - ConfigMaps reside in a specific {{< glossary_tooltip term_id="namespace" >}}. A ConfigMap can only be referenced by pods residing in the same namespace.
 -->
-- ConfigMap 位于特定的{{< glossary_tooltip term_id="namespace" text="名字空间" >}}
-  中。每个 ConfigMap 只能被同一名字空间中的 Pod 引用.
+- ConfigMap 位于确定的{{< glossary_tooltip term_id="namespace" text="名字空间" >}}中。
+  每个 ConfigMap 只能被同一名字空间中的 Pod 引用.
 
 <!--
 - You can't use ConfigMaps for {{< glossary_tooltip text="static pods" term_id="static-pod" >}}, because the Kubelet does not support this.
 -->
-- 你不能将 ConfigMap 用于 {{< glossary_tooltip text="静态 Pod" term_id="static-pod" >}}， 
+- 你不能将 ConfigMap 用于{{< glossary_tooltip text="静态 Pod" term_id="static-pod" >}}，
   因为 Kubernetes 不支持这种用法。
 
+<!--
+### Optional ConfigMaps
+-->
+### 可选的 ConfigMap {#optional-configmaps}
+
+<!--
+You can mark a reference to a ConfigMap as _optional_ in a Pod specification.
+If the ConfigMap doesn't exist, the configuration for which it provides data in the Pod (e.g. environment variable, mounted volume) will be empty.
+If the ConfigMap exists, but the referenced key is non-existent the data is also empty.
+-->
+你可以在 Pod 规约中将对 ConfigMap 的引用标记为 **可选（optional）**。
+如果 ConfigMap 不存在，那么它在 Pod 中为其提供数据的配置（例如环境变量、挂载的卷）将为空。
+如果 ConfigMap 存在，但引用的键不存在，那么数据也是空的。
+
+<!--
+For example, the following Pod specification marks an environment variable from a ConfigMap as optional:
+-->
+例如，以下 Pod 规约将 ConfigMap 中的环境变量标记为可选：
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: dapi-test-pod
+spec:
+  containers:
+    - name: test-container
+      image: gcr.io/google_containers/busybox
+      command: [ "/bin/sh", "-c", "env" ]
+      env:
+        - name: SPECIAL_LEVEL_KEY
+          valueFrom:
+            configMapKeyRef:
+              name: a-config
+              key: akey
+              optional: true # 将环境变量标记为可选
+  restartPolicy: Never
+```
+<!--
+If you run this pod, and there is no ConfigMap named `a-config`, the output is empty.
+If you run this pod, and there is a ConfigMap named `a-config` but that ConfigMap doesn't have
+a key named `akey`, the output is also empty. If you do set a value for `akey` in the `a-config`
+ConfigMap, this pod prints that value and then terminates.
+-->
+当你运行这个 Pod 并且名称为 `a-config` 的 ConfigMap 不存在时，输出空值。
+当你运行这个 Pod 并且名称为 `a-config` 的 ConfigMap 存在，
+但是在 ConfigMap 中没有名称为 `akey` 的键时，控制台输出也会为空。
+如果你确实在名为 `a-config` 的 ConfigMap 中为 `akey` 设置了键值，
+那么这个 Pod 会打印该值，然后终止。
+
+<!--
+You can also mark the volumes and files provided by a ConfigMap as optional. Kubernetes always creates the mount paths for the volume, even if the referenced ConfigMap or key doesn't exist. For example, the following
+Pod specification marks a volume that references a ConfigMap as optional:
+-->
+你也可以在 Pod 规约中将 ConfigMap 提供的卷和文件标记为可选。
+此时 Kubernetes 将总是为卷创建挂载路径，即使引用的 ConfigMap 或键不存在。
+例如，以下 Pod 规约将所引用得 ConfigMap 的卷标记为可选：
+
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: dapi-test-pod
+spec:
+  containers:
+    - name: test-container
+      image: gcr.io/google_containers/busybox
+      command: [ "/bin/sh", "-c", "ls /etc/config" ]
+      volumeMounts:
+      - name: config-volume
+        mountPath: /etc/config
+  volumes:
+    - name: config-volume
+      configMap:
+        name: no-config
+        optional: true # 将引用的 ConfigMap 的卷标记为可选
+  restartPolicy: Never
+```
+
+### 挂载的 ConfigMap 将被自动更新   {#mounted-configmaps-are-updated-automatically}
+
+<!--
+When a mounted ConfigMap is updated, the projected content is eventually updated too.  This applies in the case where an optionally referenced ConfigMap comes into
+existence after a pod has started.
+-->
+当某个已被挂载的 ConfigMap 被更新，所投射的内容最终也会被更新。
+对于 Pod 已经启动之后所引用的、可选的 ConfigMap 才出现的情形，
+这一动态更新现象也是适用的。
+
+<!--
+The kubelet checks whether the mounted ConfigMap is fresh on every periodic sync. However, it uses its local TTL-based cache for getting the current value of the
+ConfigMap. As a result, the total delay from the moment when the ConfigMap is updated to the moment when new keys are projected to the pod can be as long as
+kubelet sync period (1 minute by default) + TTL of ConfigMaps cache (1 minute by default) in kubelet.
+-->
+kubelet 在每次周期性同步时都会检查已挂载的 ConfigMap 是否是最新的。
+但是，它使用其本地的基于 TTL 的缓存来获取 ConfigMap 的当前值。
+因此，从更新 ConfigMap 到将新键映射到 Pod 的总延迟可能等于 kubelet 同步周期
+（默认 1 分钟） + ConfigMap 在 kubelet 中缓存的 TTL（默认 1 分钟）。
+
+{{< note >}}
+<!--
+A container using a ConfigMap as a [subPath](/docs/concepts/storage/volumes/#using-subpath) volume will not receive ConfigMap updates.
+-->
+使用 ConfigMap 作为 [subPath](/zh-cn/docs/concepts/storage/volumes/#using-subpath)
+的数据卷将不会收到 ConfigMap 更新。
+{{< /note >}}
 ## {{% heading "whatsnext" %}}
 
 <!--
 * Follow a real world example of [Configuring Redis using a ConfigMap](/docs/tutorials/configuration/configure-redis-using-configmap/).
 -->
-* 浏览[使用 ConfigMap 配置 Redis](/zh/docs/tutorials/configuration/configure-redis-using-configmap/)
-  真实实例
+* 浏览[使用 ConfigMap 配置 Redis](/zh-cn/docs/tutorials/configuration/configure-redis-using-configmap/)
+  真实示例。
 
diff --git a/content/zh/docs/tasks/configure-pod-container/configure-pod-initialization.md b/content/zh-cn/docs/tasks/configure-pod-container/configure-pod-initialization.md
similarity index 88%
rename from content/zh/docs/tasks/configure-pod-container/configure-pod-initialization.md
rename to content/zh-cn/docs/tasks/configure-pod-container/configure-pod-initialization.md
index 90cf168b75..65166ce246 100644
--- a/content/zh/docs/tasks/configure-pod-container/configure-pod-initialization.md
+++ b/content/zh-cn/docs/tasks/configure-pod-container/configure-pod-initialization.md
@@ -135,11 +135,11 @@ The output shows that nginx is serving the web page that was written by the init
 [communicating between Containers running in the same Pod](/docs/tasks/access-application-cluster/communicate-containers-same-pod-shared-volume/).
 * Learn more about [Init Containers](/docs/concepts/workloads/pods/init-containers/).
 * Learn more about [Volumes](/docs/concepts/storage/volumes/).
-* Learn more about [Debugging Init Containers](/docs/tasks/debug-application-cluster/debug-init-containers/)
+* Learn more about [Debugging Init Containers](/docs/tasks/debug/debug-application/debug-init-containers/)
 -->
 
-* 进一步了解[同一 Pod 中的容器间的通信](/zh/docs/tasks/access-application-cluster/communicate-containers-same-pod-shared-volume/)。
-* 进一步了解 [Init 容器](/zh/docs/concepts/workloads/pods/init-containers/)。
-* 进一步了解[卷](/zh/docs/concepts/storage/volumes/)。
-* 进一步了解 [Init 容器排错](/zh/docs/tasks/debug-application-cluster/debug-init-containers/)。
+* 进一步了解[同一 Pod 中的容器间的通信](/zh-cn/docs/tasks/access-application-cluster/communicate-containers-same-pod-shared-volume/)。
+* 进一步了解 [Init 容器](/zh-cn/docs/concepts/workloads/pods/init-containers/)。
+* 进一步了解[卷](/zh-cn/docs/concepts/storage/volumes/)。
+* 进一步了解 [Init 容器排错](/zh-cn/docs/tasks/debug/debug-application/debug-init-containers/)。
 
diff --git a/content/zh/docs/tasks/configure-pod-container/configure-projected-volume-storage.md b/content/zh-cn/docs/tasks/configure-pod-container/configure-projected-volume-storage.md
similarity index 82%
rename from content/zh/docs/tasks/configure-pod-container/configure-projected-volume-storage.md
rename to content/zh-cn/docs/tasks/configure-pod-container/configure-projected-volume-storage.md
index cb71f70d5c..e9f49a2127 100644
--- a/content/zh/docs/tasks/configure-pod-container/configure-projected-volume-storage.md
+++ b/content/zh-cn/docs/tasks/configure-pod-container/configure-projected-volume-storage.md
@@ -20,7 +20,7 @@ several existing volume sources into the same directory. Currently, `secret`, `c
 and `serviceAccountToken` volumes can be projected.
 -->
 
-本文介绍怎样通过[`projected`](/zh/docs/concepts/storage/volumes/#projected) 卷将现有的多个卷资源挂载到相同的目录。
+本文介绍怎样通过[`projected`](/zh-cn/docs/concepts/storage/volumes/#projected) 卷将现有的多个卷资源挂载到相同的目录。
 当前，`secret`、`configMap`、`downwardAPI` 和 `serviceAccountToken` 卷可以被投射。
 
 <!--
@@ -46,8 +46,8 @@ Here is the configuration file for the Pod:
 
 ## 为 Pod 配置 projected 卷
 
-本练习中，您将从本地文件来创建包含有用户名和密码的 Secret。然后创建运行一个容器的 Pod，
-该 Pod 使用[`projected`](/zh/docs/concepts/storage/volumes/#projected) 卷将 Secret 挂载到相同的路径下。
+本练习中，你将从本地文件来创建包含有用户名和密码的 Secret。然后创建运行一个容器的 Pod，
+该 Pod 使用[`projected`](/zh-cn/docs/concepts/storage/volumes/#projected) 卷将 Secret 挂载到相同的路径下。
 
 下面是 Pod 的配置文件：
 
@@ -59,7 +59,7 @@ Here is the configuration file for the Pod:
    ```shell
    # 创建包含用户名和密码的文件:
    echo -n "admin" > ./username.txt
-   echo -n "1f2d1e2e67df" > ./password.txt-->
+   echo -n "1f2d1e2e67df" > ./password.txt
 
    # 将上述文件引用到 Secret：
    kubectl create secret generic user --from-file=./username.txt
@@ -123,9 +123,9 @@ kubectl delete secret user pass
 
 <!--
 * Learn more about [`projected`](/docs/concepts/storage/volumes/#projected) volumes.
-* Read the [all-in-one volume](https://github.com/kubernetes/community/blob/{{< param "githubbranch" >}}/contributors/design-proposals/node/all-in-one-volume.md) design document.
+* Read the [all-in-one volume](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/node/all-in-one-volume.md) design document.
 -->
 
-* 进一步了解[`projected`](/zh/docs/concepts/storage/volumes/#projected) 卷。
-* 阅读[一体卷](https://github.com/kubernetes/community/blob/{{< param "githubbranch" >}}/contributors/design-proposals/node/all-in-one-volume.md)设计文档。
+* 进一步了解[`projected`](/zh-cn/docs/concepts/storage/volumes/#projected) 卷。
+* 阅读[一体卷](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/node/all-in-one-volume.md)设计文档。
 
diff --git a/content/zh/docs/tasks/configure-pod-container/configure-runasusername.md b/content/zh-cn/docs/tasks/configure-pod-container/configure-runasusername.md
similarity index 78%
rename from content/zh/docs/tasks/configure-pod-container/configure-runasusername.md
rename to content/zh-cn/docs/tasks/configure-pod-container/configure-runasusername.md
index 19a9e4e71e..65df06ff34 100644
--- a/content/zh/docs/tasks/configure-pod-container/configure-runasusername.md
+++ b/content/zh-cn/docs/tasks/configure-pod-container/configure-runasusername.md
@@ -17,7 +17,7 @@ weight: 20
 <!--
 This page shows how to use the `runAsUserName` setting for Pods and containers that will run on Windows nodes. This is roughly equivalent of the Linux-specific `runAsUser` setting, allowing you to run applications in a container as a different username than the default.
 -->
-本页展示如何为运行为在 Windows 节点上运行的 Pod 和容器配置 `RunAsUserName` 。
+本页展示如何为运行为在 Windows 节点上运行的 Pod 和容器配置 `RunAsUserName`。
 大致相当于 Linux 上的 `runAsUser`，允许在容器中以与默认值不同的用户名运行应用。
 
 ## {{% heading "prerequisites" %}}
@@ -31,14 +31,17 @@ You need to have a Kubernetes cluster and the kubectl command-line tool must be
 <!--
 ## Set the Username for a Pod
 
-To specify the username with which to execute the Pod's container processes, include the `securityContext` field ([PodSecurityContext](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritycontext-v1-core) in the Pod specification, and within it, the `windowsOptions` ([WindowsSecurityContextOptions](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#windowssecuritycontextoptions-v1-core) field containing the `runAsUserName` field.
+To specify the username with which to execute the Pod's container processes, include the
+`securityContext` field ([PodSecurityContext](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritycontext-v1-core))
+in the Pod specification, and within it, the `windowsOptions`
+([WindowsSecurityContextOptions](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#windowssecuritycontextoptions-v1-core)) field containing the `runAsUserName` field.
 -->
-## 为 Pod 设置 Username
+## 为 Pod 设置 Username    {#set-the-username-for-a-pod}
 
-要指定运行 Pod 容器时所使用的用户名，请在 Pod 声明中包含 `securityContext` 
-（[PodSecurityContext](/zh/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritycontext-v1-core)）字段，
-并在其内部包含 `windowsOptions` 
-（[WindowsSecurityContextOptions](/zh/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#windowssecuritycontextoptions-v1-core)）
+要指定运行 Pod 容器时所使用的用户名，请在 Pod 声明中包含 `securityContext`
+([PodSecurityContext](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritycontext-v1-core)) 字段，
+并在其内部包含 `windowsOptions`
+([WindowsSecurityContextOptions](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#windowssecuritycontextoptions-v1-core))
 字段的 `runAsUserName` 字段。
 
 <!--
@@ -99,22 +102,26 @@ The output should be:
 
 输出结果应该是这样：
 
-```shell
+```
 ContainerUser
 ```
 
 <!--
 ## Set the Username for a Container
 
-To specify the username with which to execute a Container's processes, include the `securityContext` field ([SecurityContext](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#securitycontext-v1-core)) in the Container manifest, and within it, the `windowsOptions` ([WindowsSecurityContextOptions](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#windowssecuritycontextoptions-v1-core) field containing the `runAsUserName` field.
+To specify the username with which to execute a Container's processes, include the `securityContext` field
+([SecurityContext](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#securitycontext-v1-core))
+in the Container manifest, and within it, the
+`windowsOptions` ([WindowsSecurityContextOptions](/docs/reference/generated/kubernetes-api/{{< param
+"version" >}}/#windowssecuritycontextoptions-v1-core)) field containing the `runAsUserName` field.
 -->
 
-## 为容器设置 Username
+## 为容器设置 Username    {#set-the-username-for-a-container}
 
 要指定运行容器时所使用的用户名，请在容器清单中包含 `securityContext`
-（[SecurityContext](/zh/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#securitycontext-v1-core)）
+([SecurityContext](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#securitycontext-v1-core))
 字段，并在其内部包含 `windowsOptions`
-（[WindowsSecurityContextOptions](/zh/docs/reference/generated/kubernetes-api/{{< param 
+（[WindowsSecurityContextOptions](/docs/reference/generated/kubernetes-api/{{< param
 "version" >}}/#windowssecuritycontextoptions-v1-core)）
 字段的 `runAsUserName` 字段。
 
@@ -179,7 +186,7 @@ ContainerAdministrator
 
 In order to use this feature, the value set in the `runAsUserName` field must be a valid username. It must have the following format: `DOMAIN\USER`, where `DOMAIN\` is optional. Windows user names are case insensitive. Additionally, there are some restrictions regarding the `DOMAIN` and `USER`:
 -->
-## Windows Username 的局限性
+## Windows Username 的局限性    {#windows-username-limitations}
 
 想要使用此功能，在 `runAsUserName` 字段中设置的值必须是有效的用户名。
 它必须是 `DOMAIN\USER` 这种格式，其中 `DOMAIN\` 是可选的。
@@ -211,10 +218,10 @@ For more information about these limtations, check [here](https://support.micros
 ## {{% heading "whatsnext" %}}
 
 <!--
-* [Guide for scheduling Windows containers in Kubernetes](/docs/setup/production-environment/windows/user-guide-windows-containers/)
-* [Managing Workload Identity with Group Managed Service Accounts (GMSA)](/docs/setup/production-environment/windows/user-guide-windows-containers/#managing-workload-identity-with-group-managed-service-accounts)
+* [Guide for scheduling Windows containers in Kubernetes](/docs/concepts/windows/user-guide/)
+* [Managing Workload Identity with Group Managed Service Accounts (GMSA)](/docs/concepts/windows/user-guide/#managing-workload-identity-with-group-managed-service-accounts)
 * [Configure GMSA for Windows pods and containers](/docs/tasks/configure-pod-container/configure-gmsa/)
 -->
-* [Kubernetes 中调度 Windows 容器的指南](/zh/docs/setup/production-environment/windows/user-guide-windows-containers/)
-* [使用组托管服务帐户（GMSA）管理工作负载身份](/zh/docs/setup/production-environment/windows/user-guide-windows-containers/#managing-workload-identity-with-group-managed-service-accounts)
-* [Windows 下 pod 和容器的 GMSA 配置](/zh/docs/tasks/configure-pod-container/configure-gmsa/)
+* [Kubernetes 中调度 Windows 容器的指南](/zh-cn/docs/concepts/windows/user-guide/)
+* [使用组托管服务帐户（GMSA）管理工作负载身份](/zh-cn/docs/concepts/windows/user-guide/#managing-workload-identity-with-group-managed-service-accounts)
+* [Windows 下 pod 和容器的 GMSA 配置](/zh-cn/docs/tasks/configure-pod-container/configure-gmsa/)
diff --git a/content/zh/docs/tasks/configure-pod-container/configure-service-account.md b/content/zh-cn/docs/tasks/configure-pod-container/configure-service-account.md
similarity index 65%
rename from content/zh/docs/tasks/configure-pod-container/configure-service-account.md
rename to content/zh-cn/docs/tasks/configure-pod-container/configure-service-account.md
index aba366f47e..8adda39fdb 100644
--- a/content/zh/docs/tasks/configure-pod-container/configure-service-account.md
+++ b/content/zh-cn/docs/tasks/configure-pod-container/configure-service-account.md
@@ -26,17 +26,15 @@ not apply.
 服务账户为 Pod 中运行的进程提供了一个标识。
 
 {{< note >}}
-本文是服务账户的用户使用介绍，描述服务账号在集群中如何起作用。
+本文是服务账户的用户使用介绍，描述服务账户在集群中如何起作用。
 你的集群管理员可能已经对你的集群做了定制，因此导致本文中所讲述的内容并不适用。
 {{< /note >}}
 
 <!--
 When you (a human) access the cluster (for example, using `kubectl`), you are
 authenticated by the apiserver as a particular User Account (currently this is
-usually `admin`, unless your cluster administrator has customized your
-cluster).  Processes in containers inside pods can also contact the apiserver.
-When they do, they are authenticated as a particular Service Account (for example,
-`default`).
+usually `admin`, unless your cluster administrator has customized your cluster). Processes in containers inside pods can also contact the apiserver.
+When they do, they are authenticated as a particular Service Account (for example, `default`).
 -->
 当你（自然人）访问集群时（例如，使用 `kubectl`），API 服务器将你的身份验证为
 特定的用户帐户（当前这通常是 `admin`，除非你的集群管理员已经定制了你的集群配置）。
@@ -50,37 +48,36 @@ Pod 内的容器中的进程也可以与 api 服务器接触。
 <!-- steps -->
 
 <!--
-## Use the Default Service Account to access the API server.
+## Use the Default Service Account to access the API server
 
 When you create a pod, if you do not specify a service account, it is
 automatically assigned the `default` service account in the same namespace.
-If you get the raw json or yaml for a pod you have created (for example, `kubectl get pods/podname -o yaml`),
+If you get the raw json or yaml for a pod you have created (for example, `kubectl get pods/<podname> -o yaml`),
 you can see the `spec.serviceAccountName` field has been
-[automatically set](/docs/user-guide/working-with-resources/#resources-are-automatically-modified).
+[automatically set](/docs/concepts/overview/working-with-objects/object-management/).
 -->
 ## 使用默认的服务账户访问 API 服务器
 
 当你创建 Pod 时，如果没有指定服务账户，Pod 会被指定给命名空间中的 `default` 服务账户。
-如果你查看 Pod 的原始 JSON 或 YAML（例如：`kubectl get pods/podname -o yaml`），
-你可以看到 `spec.serviceAccountName` 字段已经被自动设置了。
+如果你查看 Pod 的原始 JSON 或 YAML（例如：`kubectl get pods/<podname> -o yaml`），
+你可以看到 `spec.serviceAccountName` 字段已经被[自动设置](/zh-cn/docs/concepts/overview/working-with-objects/object-management/)了。
 
 <!--
-You can access the API from inside a pod using automatically mounted service account credentials,
-as described in [Accessing the Cluster](/docs/user-guide/accessing-the-cluster/#accessing-the-api-from-a-pod).
-The API permissions of the service account depend on the [authorization plugin and policy](/docs/reference/access-authn-authz/authorization/#authorization-modules) in use.
+You can access the API from inside a pod using automatically mounted service account credentials, as described in
+[Accessing the Cluster](/docs/tasks/access-application-cluster/access-cluster).
+The API permissions of the service account depend on the
+[authorization plugin and policy](/docs/reference/access-authn-authz/authorization/#authorization-modules) in use.
 
-In version 1.6+, you can opt out of automounting API credentials for a service account by setting
-`automountServiceAccountToken: false` on the service account:
+You can opt out of automounting API credentials on `/var/run/secrets/kubernetes.io/serviceaccount/token` for a service account by setting `automountServiceAccountToken: false` on the ServiceAccount:
 -->
 你可以使用自动挂载给 Pod 的服务账户凭据访问 API，
-[访问集群](/zh/docs/tasks/access-application-cluster/access-cluster/#accessing-the-api-from-a-pod)
-中有相关描述。
+[访问集群](/zh-cn/docs/tasks/access-application-cluster/access-cluster)页面中有相关描述。
 服务账户的 API 许可取决于你所使用的
-[鉴权插件和策略](/zh/docs/reference/access-authn-authz/authorization/#authorization-modules)。
-
-在 1.6 以上版本中，你可以通过在服务账户上设置 `automountServiceAccountToken: false`
-来实现不给服务账号自动挂载 API 凭据：
+[鉴权插件和策略](/zh-cn/docs/reference/access-authn-authz/authorization/#authorization-modules)。
 
+你可以通过在 ServiceAccount 上设置 `automountServiceAccountToken: false`
+来实现不给服务账户自动挂载 API 凭据到 `/var/run/secrets/kubernetes.io/serviceaccount/token`
+的目的：
 
 ```yaml
 apiVersion: v1
@@ -113,7 +110,7 @@ The pod spec takes precedence over the service account if both specify a `automo
 如果 Pod 和服务账户都指定了 `automountServiceAccountToken` 值，则 Pod 的 spec 优先于服务帐户。
 
 <!--
-## Use Multiple Service Accounts.
+## Use Multiple Service Accounts
 
 Every namespace has a default service account resource called `default`.
 You can list this and any other serviceAccount resources in the namespace with this command:
@@ -124,7 +121,7 @@ You can list this and any other serviceAccount resources in the namespace with t
 你可以用下面的命令查询这个服务账户以及命名空间中的其他 ServiceAccount 资源：
 
 ```shell
-kubectl get serviceAccounts
+kubectl get serviceaccounts
 ```
 
 <!--
@@ -143,7 +140,7 @@ You can create additional ServiceAccount objects like this:
 你可以像这样来创建额外的 ServiceAccount 对象：
 
 ```shell
-kubectl create -f - <<EOF
+kubectl apply -f - <<EOF
 apiVersion: v1
 kind: ServiceAccount
 metadata:
@@ -156,7 +153,7 @@ The name of a ServiceAccount object must be a valid
 [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 -->
 ServiceAccount 对象的名字必须是一个有效的
-[DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 
 <!--
 If you get a complete dump of the service account object, like this:
@@ -195,8 +192,7 @@ field of a pod to the name of the service account you wish to use.
 -->
 那么你就能看到系统已经自动创建了一个令牌并且被服务账户所引用。
 
-你可以使用授权插件来
-[设置服务账户的访问许可](/zh/docs/reference/access-authn-authz/rbac/#service-account-permissions)。
+你可以使用授权插件来[设置服务账户的访问许可](/zh-cn/docs/reference/access-authn-authz/rbac/#service-account-permissions)。
 
 要使用非默认的服务账户，将 Pod 的 `spec.serviceAccountName` 字段设置为你想用的服务账户名称。
 
@@ -218,17 +214,17 @@ kubectl delete serviceaccount/build-robot
 ```
 
 <!--
-## Manually create a service account API token.
+## Manually create a service account API token
 
 Suppose we have an existing service account named "build-robot" as mentioned above, and we create
 a new secret manually.
 -->
 ## 手动创建服务账户 API 令牌
 
-假设我们有一个上面提到的名为 "build-robot" 的服务账户，然后我们手动创建一个新的 Secret。
+假设我们有一个上面提到的名为 "build-robot" 的服务账户，现在我们手动创建一个新的 Secret。
 
 ```shell
-kubectl create -f - <<EOF
+kubectl apply -f - <<EOF
 apiVersion: v1
 kind: Secret
 metadata:
@@ -237,7 +233,6 @@ metadata:
     kubernetes.io/service-account.name: build-robot
 type: kubernetes.io/service-account-token
 EOF
-secret/build-robot-secret created
 ```
 
 <!--
@@ -246,7 +241,6 @@ Now you can confirm that the newly built secret is populated with an API token f
 Any tokens for non-existent service accounts will be cleaned up by the token controller.
 -->
 现在，你可以确认新构建的 Secret 中填充了 "build-robot" 服务帐户的 API 令牌。
-
 令牌控制器将清理不存在的服务帐户的所有令牌。
 
 ```shell
@@ -262,8 +256,8 @@ The output is similar to this:
 Name:           build-robot-secret
 Namespace:      default
 Labels:         <none>
-Annotations:    kubernetes.io/service-account.name=build-robot
-                kubernetes.io/service-account.uid=da68f9c6-9d26-11e7-b84e-002dc52800da
+Annotations:    kubernetes.io/service-account.name: build-robot
+                kubernetes.io/service-account.uid: da68f9c6-9d26-11e7-b84e-002dc52800da
 
 Type:   kubernetes.io/service-account-token
 
@@ -274,10 +268,10 @@ namespace:      7 bytes
 token:          ...
 ```
 
+{{< note >}}
 <!--
 The content of `token` is elided here.
 -->
-{{< note >}}
 这里省略了 `token` 的内容。
 {{< /note >}}
 
@@ -286,13 +280,13 @@ The content of `token` is elided here.
 
 ### Create an imagePullSecret
 
-- Create an imagePullSecret, as described in [Specifying ImagePullSecret on a Pod](/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod).
+- Create an imagePullSecret, as described in [Specifying ImagePullSecrets on a Pod](/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod).
 -->
 ## 为服务账户添加 ImagePullSecrets  {#add-imagepullsecrets-to-a-service-account}
 
 ### 创建 ImagePullSecret
 
-- 创建一个 ImagePullSecret，如同[为 Pod 设置 ImagePullSecret](/zh/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod)所述。
+- 创建一个 ImagePullSecret，如[为 Pod 设置 ImagePullSecret](/zh-cn/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod) 所述。
 
   ```shell
   kubectl create secret docker-registry myregistrykey --docker-server=DUMMY_SERVER \
@@ -309,22 +303,24 @@ The content of `token` is elided here.
   kubectl get secrets myregistrykey
   ```
   
-  <!-- The output is similar to this: -->
+  <!--
+  The output is similar to this:
+  -->
   输出类似于：
 
-   ```
-   NAME             TYPE                              DATA    AGE
-   myregistrykey    kubernetes.io/.dockerconfigjson   1       1d
-   ```
+  ```
+  NAME             TYPE                              DATA    AGE
+  myregistrykey    kubernetes.io/.dockerconfigjson   1       1d
+  ```
 
 <!--
 ### Add image pull secret to service account
 
 Next, modify the default service account for the namespace to use this secret as an imagePullSecret.
 -->
-### 将镜像拉取 Secret 添加到服务账号
+### 将镜像拉取 Secret 添加到服务账户
 
-接着修改命名空间的 `default` 服务帐户，以将该 Secret 用作 imagePullSecret。
+接着修改命名空间的 `default` 服务帐户，令其使用该 Secret 用作 `imagePullSecret`。
 
 ```shell
 kubectl patch serviceaccount default -p '{"imagePullSecrets": [{"name": "myregistrykey"}]}'
@@ -339,7 +335,11 @@ You can instead use `kubectl edit`, or manually edit the YAML manifests as shown
 kubectl get serviceaccounts default -o yaml > ./sa.yaml
 ```
 
-`sa.yaml` 文件的内容类似于：
+<!--
+The output of the `sa.yaml` file is similar to this:
+-->
+
+`sa.yaml` 文件的输出类似这样：
 
 ```yaml
 apiVersion: v1
@@ -381,7 +381,7 @@ imagePullSecrets:
 <!--
 Finally replace the serviceaccount with the new updated `sa.yaml` file
 -->
-最后，用新的更新的 `sa.yaml` 文件替换服务账号。
+最后，使用新更新的 `sa.yaml` 文件替换服务账户。
 
 ```shell
 kubectl replace serviceaccount default -f ./sa.yaml
@@ -394,15 +394,17 @@ Now, when a new Pod is created in the current namespace and using the default Se
 -->
 ### 验证镜像拉取 Secret 已经被添加到 Pod 规约
 
-现在，在当前命名空间中创建的每个使用默认服务账号的新 Pod，新 Pod 都会自动
-设置其 `.spec.imagePullSecrets` 字段：
+现在，在当前命名空间中创建使用默认服务账户的新 Pod 时，新 Pod
+会自动设置其 `.spec.imagePullSecrets` 字段：
 
 ```shell
 kubectl run nginx --image=nginx --restart=Never
 kubectl get pod nginx -o=jsonpath='{.spec.imagePullSecrets[0].name}{"\n"}'
 ```
 
-<!-- The output is: -->
+<!--
+The output is:
+-->
 输出为：
 
 ```
@@ -419,22 +421,54 @@ myregistrykey
 <!--
 To enable and use token request projection, you must specify each of the following
 command line arguments to `kube-apiserver`:
-
-* `--service-account-issuer`
-* `--service-account-key-file`
-* `--service-account-signing-key-file`
-* `--api-audiences`
-
 -->
-{{< note >}}
 为了启用令牌请求投射，你必须为 `kube-apiserver` 设置以下命令行参数：
 
+<!--
 * `--service-account-issuer`
-* `--service-account-key-file`
-* `--service-account-signing-key-file`
-* `--api-audiences`
 
-{{< /note >}}
+     It can be used as the Identifier of the service account token issuer. You can specify the `--service-account-issuer` argument multiple times, this can be useful to enable a non-disruptive change of the issuer. When this flag is specified multiple times, the first is used to generate tokens and all are used to determine which issuers are accepted. You must be running Kubernetes v1.22 or later to be able to specify `--service-account-issuer` multiple times.
+-->
+* `--service-account-issuer`
+
+  此参数可作为服务账户令牌发放者的身份标识（Identifier）。你可以多次指定
+  `--service-account-issuer` 参数，对于要变更发放者而又不想带来业务中断的场景，
+  这样做是有用的。如果这个参数被多次指定，则第一个参数值会被用来生成令牌，
+  而所有参数值都会被用来确定哪些发放者是可接受的。你所运行的 Kubernetes
+  集群必须是 v1.22 或更高版本，才能多次指定 `--service-account-issuer`。
+<!--
+* `--service-account-key-file`
+
+     File containing PEM-encoded x509 RSA or ECDSA private or public keys, used to verify ServiceAccount tokens. The specified file can contain multiple keys, and the flag can be specified multiple times with different files. If specified multiple times, tokens signed by any of the specified keys are considered valid by the Kubernetes API server.
+-->
+* `--service-account-key-file`
+
+  包含 PEM 编码的 x509 RSA 或 ECDSA 私钥或公钥，用来检查 ServiceAccount
+  的令牌。所指定的文件中可以包含多个秘钥，并且你可以多次使用此参数，
+  每次参数值为不同的文件。多次使用此参数时，由所给的秘钥之一签名的令牌会被
+  Kubernetes API 服务器认为是合法令牌。
+<!--
+* `--service-account-signing-key-file`
+
+     Path to the file that contains the current private key of the service account token issuer. The issuer signs issued ID tokens with this private key.
+-->
+* `--service-account-signing-key-file`
+
+  指向包含当前服务账户令牌发放者的私钥的文件路径。
+  此发放者使用此私钥来签署所发放的 ID 令牌。
+<!--
+* `--api-audiences` (can be omitted)
+
+     The service account token authenticator validates that tokens used against the API are bound to at least one of these audiences. If `api-audiences` is specified multiple times, tokens for any of the specified audiences are considered valid by the Kubernetes API server. If the `--service-account-issuer` flag is configured and this flag is not, this field defaults to a single element list containing the issuer URL.
+-->
+* `--api-audiences` (可以省略)
+
+  服务账户令牌身份检查组件会检查针对 API 访问所使用的令牌，
+  确认令牌至少是被绑定到这里所给的受众（audiences）之一。
+  如果此参数被多次指定，则针对所给的多个受众中任何目标的令牌都会被
+  Kubernetes API 服务器当做合法的令牌。如果 `--service-account-issuer`
+  参数被设置，而这个参数未指定，则这个参数的默认值为一个只有一个元素的列表，
+  且该元素为令牌发放者的 URL。
 
 <!--
 The kubelet can also project a service account token into a Pod. You can
@@ -443,9 +477,9 @@ duration. These properties are not configurable on the default service account
 token. The service account token will also become invalid against the API when
 the Pod or the ServiceAccount is deleted.
 -->
-kubelet 还可以将服务帐户令牌投影到 Pod 中。
-你可以指定令牌的所需属性，例如受众和有效持续时间。
-这些属性在默认服务帐户令牌上无法配置。
+kubelet 还可以将服务帐户令牌投射到 Pod 中。
+你可以指定令牌的期望属性，例如受众和有效期限。
+这些属性在 default 服务帐户令牌上无法配置。
 当删除 Pod 或 ServiceAccount 时，服务帐户令牌也将对 API 无效。
 
 <!--
@@ -454,7 +488,7 @@ This behavior is configured on a PodSpec using a ProjectedVolume type called
 pod with a token with an audience of "vault" and a validity duration of two
 hours, you would configure the following in your PodSpec:
 -->
-使用名为 [ServiceAccountToken](/zh/docs/concepts/storage/volumes/#projected) 的
+使用名为 [ServiceAccountToken](/zh-cn/docs/concepts/storage/volumes/#projected) 的
 ProjectedVolume 类型在 PodSpec 上配置此功能。
 要向 Pod 提供具有 "vault" 用户以及两个小时有效期的令牌，可以在 PodSpec 中配置以下内容：
 
@@ -476,18 +510,19 @@ The kubelet proactively rotates the token if it is older than 80% of its total T
 
 The application is responsible for reloading the token when it rotates. Periodic reloading (e.g. once every 5 minutes) is sufficient for most use cases.
 -->
-`kubelet` 组件会替 Pod 请求令牌并将其保存起来，通过将令牌存储到一个可配置的
-路径使之在 Pod 内可用，并在令牌快要到期的时候刷新它。
-`kubelet` 会在令牌存在期达到其 TTL 的 80% 的时候或者令牌生命期超过 24 小时
-的时候主动轮换它。
+`kubelet` 组件会替 Pod 请求令牌并将其保存起来，
+通过将令牌存储到一个可配置的路径使之在 Pod 内可用，
+并在令牌快要到期的时候刷新它。
+`kubelet` 会在令牌存在期达到其 TTL 的 80% 的时候或者令牌生命期超过
+24 小时的时候主动轮换它。
 
-应用程序负责在令牌被轮换时重新加载其内容。对于大多数使用场景而言，周期性地
-（例如，每隔 5 分钟）重新加载就足够了。
+应用程序负责在令牌被轮换时重新加载其内容。对于大多数使用场景而言，
+周期性地（例如，每隔 5 分钟）重新加载就足够了。
 
 <!--
 ## Service Account Issuer Discovery
 -->
-## 发现服务账号分发者
+## 发现服务账户分发者
 
 {{< feature-state for_k8s_version="v1.21" state="stable" >}}
 
@@ -496,8 +531,8 @@ The Service Account Issuer Discovery feature is enabled when the Service Account
 Token Projection feature is enabled, as described
 [above](#service-account-token-volume-projection).
 -->
-当启用服务账号令牌投射时启用发现服务账号分发者（Service Account Issuer Discovery）这一功能特性，
-如[上文所述](#service-account-token-volume-projection)。
+当启用服务账户令牌投射时启用发现服务账户分发者（Service Account Issuer Discovery）
+这一功能特性，如[上文所述](#service-account-token-volume-projection)。
 
 <!--
 The issuer URL must comply with the
@@ -513,7 +548,7 @@ not be registered, even if the feature is enabled.
 [OIDC 发现规范](https://openid.net/specs/openid-connect-discovery-1_0.html)。
 这意味着 URL 必须使用 `https` 模式，并且必须在
 `{service-account-issuer}/.well-known/openid-configuration`
-路径提供 OpenID 提供者（Provider）配置。
+路径给出 OpenID 提供者（Provider）配置。
 
 如果 URL 没有遵从这一规范，`ServiceAccountIssuerDiscovery` 末端就不会被注册，
 即使该特性已经被启用。
@@ -529,26 +564,30 @@ Configuration document at `/.well-known/openid-configuration` and the associated
 JSON Web Key Set (JWKS) at `/openid/v1/jwks`. The OpenID Provider Configuration
 is sometimes referred to as the _discovery document_.
 -->
-发现服务账号分发者这一功能使得用户能够用联邦的方式结合使用 Kubernetes 
-集群（_Identity Provider_，标识提供者）与外部系统（_relying parties_，
-依赖方）所分发的服务账号令牌。
+发现服务账户分发者这一功能使得用户能够用联邦的方式结合使用 Kubernetes 
+集群（“Identity Provider”，标识提供者）与外部系统（“Relying Parties”，
+依赖方）所分发的服务账户令牌。
 
 当此功能被启用时，Kubernetes API 服务器会在 `/.well-known/openid-configuration`
 提供一个 OpenID 提供者配置文档，并在 `/openid/v1/jwks` 处提供与之关联的
 JSON Web Key Set（JWKS）。
-这里的 OpenID 提供者配置有时候也被称作 _发现文档（Discovery Document）_。
+这里的 OpenID 提供者配置有时候也被称作“发现文档（Discovery Document）”。
 
 <!--
 Clusters include a default RBAC ClusterRole called
-`system:service-account-issuer-discovery`. No role bindings are provided
-by default. Administrators may, for example, choose whether to bind the role to
+`system:service-account-issuer-discovery`. A default RBAC ClusterRoleBinding
+assigns this role to the `system:serviceaccounts` group, which all service
+accounts implicitly belong to. This allows pods running on the cluster to access
+the service account discovery document via their mounted service account token.
+Administrators may, additionally, choose to bind the role to
 `system:authenticated` or `system:unauthenticated` depending on their security
 requirements and which external systems they intend to federate with.
 -->
-集群包括一个默认的 RBAC ClusterRole，
-名为 `system:service-account-issuer-discovery`。
-默认情况下不提供角色绑定对象。
-举例而言，管理员可以根据其安全性需要以及期望集成的外部系统选择是否将该角色绑定到
+集群包括一个的默认 RBAC ClusterRole, 名为 `system:service-account-issuer-discovery`。 
+默认的 RBAC ClusterRoleBinding 将此角色分配给 `system:serviceaccounts` 组，
+所有服务帐户隐式属于该组。这使得集群上运行的 Pod
+能够通过它们所挂载的服务帐户令牌访问服务帐户发现文档。
+此外，管理员可以根据其安全性需要以及期望集成的外部系统选择是否将该角色绑定到
 `system:authenticated` 或 `system:unauthenticated`。
 
 <!--
@@ -558,9 +597,9 @@ compliant. Those documents contain only the parameters necessary to perform
 validation of Kubernetes service account tokens.
 -->
 {{< note >}}
-对 `/.well-known/openid-configuration` 和 `/openid/v1/jwks` 路径请求的响应
-被设计为与 OIDC 兼容，但不是完全与其一致。
-返回的文档仅包含对 Kubernetes 服务账号令牌进行验证所必须的参数。
+对 `/.well-known/openid-configuration` 和 `/openid/v1/jwks` 路径请求的响应被设计为与
+OIDC 兼容，但不是与其完全一致。
+返回的文档仅包含对 Kubernetes 服务账户令牌进行验证所必须的参数。
 {{< /note >}}
 
 <!--
@@ -569,9 +608,8 @@ the Kubernetes service account tokens. Relying parties first query for the
 OpenID Provider Configuration, and use the `jwks_uri` field in the response to
 find the JWKS.
 -->
-JWKS 响应包含依赖方可以用来验证 Kubernetes 服务账号令牌的公钥数据。
-依赖方先会查询 OpenID 提供者配置，之后使用返回响应中的 `jwks_uri` 来查找
-JWKS。
+JWKS 响应包含依赖方可以用来验证 Kubernetes 服务账户令牌的公钥数据。
+依赖方先会查询 OpenID 提供者配置，之后使用返回响应中的 `jwks_uri` 来查找 JWKS。
 
 <!--
 In many cases, Kubernetes API servers are not available on the public internet,
@@ -596,11 +634,12 @@ JWKS URI is required to use the `https` scheme.
 See also:
 
 - [Cluster Admin Guide to Service Accounts](/docs/reference/access-authn-authz/service-accounts-admin/)
-- [Service Account Signing Key Retrieval KEP](https://github.com/kubernetes/enhancements/blob/master/keps/sig-auth/20190730-oidc-discovery.md)
+- [Service Account Signing Key Retrieval KEP](https://github.com/kubernetes/enhancements/tree/master/keps/sig-auth/1393-oidc-discovery)
 - [OIDC Discovery Spec](https://openid.net/specs/openid-connect-discovery-1_0.html)
 -->
 另请参见：
 
-- [服务账号的集群管理员指南](/zh/docs/reference/access-authn-authz/service-accounts-admin/)
-- [服务账号签署密钥检索 KEP](https://github.com/kubernetes/enhancements/blob/master/keps/sig-auth/20190730-oidc-discovery.md)
+- [服务账户的集群管理员指南](/zh-cn/docs/reference/access-authn-authz/service-accounts-admin/)
+- [服务账户签署密钥检索 KEP](https://github.com/kubernetes/enhancements/tree/master/keps/sig-auth/1393-oidc-discovery)
 - [OIDC 发现规范](https://openid.net/specs/openid-connect-discovery-1_0.html)
+
diff --git a/content/zh/docs/tasks/configure-pod-container/configure-volume-storage.md b/content/zh-cn/docs/tasks/configure-pod-container/configure-volume-storage.md
similarity index 97%
rename from content/zh/docs/tasks/configure-pod-container/configure-volume-storage.md
rename to content/zh-cn/docs/tasks/configure-pod-container/configure-volume-storage.md
index 5e5a9907e9..b468a6943e 100644
--- a/content/zh/docs/tasks/configure-pod-container/configure-volume-storage.md
+++ b/content/zh-cn/docs/tasks/configure-pod-container/configure-volume-storage.md
@@ -22,7 +22,7 @@ applications, such as key-value stores (such as Redis) and databases.
 此页面展示了如何配置 Pod 以使用卷进行存储。
 
 只要容器存在，容器的文件系统就会存在，因此当一个容器终止并重新启动，对该容器的文件系统改动将丢失。
-对于独立于容器的持久化存储，你可以使用[卷](/zh/docs/concepts/storage/volumes/)。
+对于独立于容器的持久化存储，你可以使用[卷](/zh-cn/docs/concepts/storage/volumes/)。
 这对于有状态应用程序尤为重要，例如键值存储（如 Redis）和数据库。
 
 ## {{% heading "prerequisites" %}}
@@ -44,7 +44,7 @@ restarts. Here is the configuration file for the Pod:
 ## 为 Pod 配置卷   {#configure-a-volume-for-a-pod}
 
 在本练习中，你将创建一个运行 Pod，该 Pod 仅运行一个容器并拥有一个类型为
-[emptyDir](/zh/docs/concepts/storage/volumes/#emptydir) 的卷，
+[emptyDir](/zh-cn/docs/concepts/storage/volumes/#emptydir) 的卷，
 在整个 Pod 生命周期中一直存在，即使 Pod 中的容器被终止和重启。以下是 Pod 的配置：
 
 {{< codenew file="pods/storage/redis.yaml" >}}
@@ -193,5 +193,5 @@ details such as mounting and unmounting the devices on the nodes. See
 * 参阅 [Pod](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#pod-v1-core)。
 * 除了 `emptyDir` 提供的本地磁盘存储外，Kubernetes 还支持许多不同的网络附加存储解决方案，
   包括 GCE 上的 PD 和 EC2 上的 EBS，它们是关键数据的首选，并将处理节点上的一些细节，
-  例如安装和卸载设备。了解更多详情请参阅[卷](/zh/docs/concepts/storage/volumes/)。
+  例如安装和卸载设备。了解更多详情请参阅[卷](/zh-cn/docs/concepts/storage/volumes/)。
 
diff --git a/content/zh-cn/docs/tasks/configure-pod-container/create-hostprocess-pod.md b/content/zh-cn/docs/tasks/configure-pod-container/create-hostprocess-pod.md
new file mode 100644
index 0000000000..abc3896e70
--- /dev/null
+++ b/content/zh-cn/docs/tasks/configure-pod-container/create-hostprocess-pod.md
@@ -0,0 +1,346 @@
+---
+title: 创建 Windows HostProcess Pod
+content_type: task
+weight: 20
+min-kubernetes-server-version: 1.23
+---
+
+<!--
+title: Create a Windows HostProcess Pod
+content_type: task
+weight: 20
+min-kubernetes-server-version: 1.23
+-->
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
+
+<!--
+Windows HostProcess containers enable you to run containerized
+workloads on a Windows host. These containers operate as
+normal processes but have access to the host network namespace,
+storage, and devices when given the appropriate user privileges.
+HostProcess containers can be used to deploy network plugins,
+storage configurations, device plugins, kube-proxy, and other
+components to Windows nodes without the need for dedicated proxies or
+the direct installation of host services.
+-->
+Windows HostProcess 容器让你能够在 Windows 主机上运行容器化负载。
+这类容器以普通的进程形式运行，但能够在具有合适用户特权的情况下，
+访问主机网络名字空间、存储和设备。HostProcess 容器可用来在 Windows
+节点上部署网络插件、存储配置、设备插件、kube-proxy 以及其他组件，
+同时不需要配置专用的代理或者直接安装主机服务。
+
+<!--
+Administrative tasks such as installation of security patches, event
+log collection, and more can be performed without requiring cluster operators to
+log onto each Windows node. HostProcess containers can run as any user that is
+available on the host or is in the domain of the host machine, allowing administrators
+to restrict resource access through user permissions. While neither filesystem or process
+isolation are supported, a new volume is created on the host upon starting the container
+to give it a clean and consolidated workspace. HostProcess containers can also be built on
+top of existing Windows base images and do not inherit the same
+[compatibility requirements](https://docs.microsoft.com/virtualization/windowscontainers/deploy-containers/version-compatibility)
+as Windows server containers, meaning that the version of the base images does not need
+to match that of the host. It is, however, recommended that you use the same base image
+version as your Windows Server container workloads to ensure you do not have any unused
+images taking up space on the node. HostProcess containers also support
+[volume mounts](#volume-mounts) within the container volume.
+-->
+类似于安装安全补丁、事件日志收集等这类管理性质的任务可以在不需要集群操作员登录到每个
+Windows 节点的前提下执行。HostProcess 容器可以以主机上存在的任何用户账户来运行，
+也可以以主机所在域中的用户账户运行，这样管理员可以通过用户许可权限来限制资源访问。
+尽管文件系统和进程隔离都不支持，在启动容器时会在主机上创建一个新的卷，
+为其提供一个干净的、整合的工作空间。HostProcess 容器也可以基于现有的 Windows
+基础镜像来制作，并且不再有 Windows 服务器容器所带有的那些
+[兼容性需求](https://docs.microsoft.com/virtualization/windowscontainers/deploy-containers/version-compatibility)，
+这意味着基础镜像的版本不必与主机操作系统的版本匹配。
+不过，仍然建议你像使用 Windows 服务器容器负载那样，使用相同的基础镜像版本，
+这样你就不会有一些未使用的镜像占用节点上的存储空间。HostProcess 容器也支持
+在容器卷内执行[卷挂载](#volume-mounts)。
+
+<!--
+### When should I use a Windows HostProcess container?
+
+- When you need to perform tasks which require the networking namespace of the host.
+HostProcess containers have access to the host's network interfaces and IP addresses.
+- You need access to resources on the host such as the filesystem, event logs, etc.
+- Installation of specific device drivers or Windows services.
+- Consolidation of administrative tasks and security policies. This reduces the degree of
+privileges needed by Windows nodes.
+-->
+### 我何时该使用 Windows HostProcess 容器？
+
+- 当你准备执行需要访问主机上网络名字空间的任务时，HostProcess
+  容器能够访问主机上的网络接口和 IP 地址。
+- 当你需要访问主机上的资源，如文件系统、事件日志等等。
+- 需要安装特定的设备驱动或者 Windows 服务时。
+- 需要对管理任务和安全策略进行整合时。使用 HostProcess 容器能够缩小 Windows
+  节点上所需要的特权范围。
+
+## {{% heading "prerequisites" %}}
+
+<!-- change this when graduating to stable -->
+
+<!--
+This task guide is specific to Kubernetes v{{< skew currentVersion >}}.
+If you are not running Kubernetes v{{< skew currentVersion >}}, check the documentation for
+that version of Kubernetes.
+
+In Kubernetes {{< skew currentVersion >}}, the HostProcess container feature is enabled by default. The kubelet will
+communicate with containerd directly by passing the hostprocess flag via CRI. You can use the
+latest version of containerd (v1.6+) to run HostProcess containers.
+[How to install containerd.](/docs/setup/production-environment/container-runtimes/#containerd)
+-->
+本任务指南是特定于 Kubernetes v{{< skew currentVersion >}} 的。
+如果你运行的不是 Kubernetes v{{< skew currentVersion >}}，请移步访问正确
+版本的 Kubernetes 文档。
+
+在 Kubernetes v{{< skew currentVersion >}} 中，HostProcess 容器功能特性默认是启用的。
+kubelet 会直接与 containerd 通信，通过 CRI 将主机进程标志传递过去。
+你可以使用 containerd 的最新版本（v1.6+）来运行 HostProcess 容器。
+参阅[如何安装 containerd](/zh-cn/docs/setup/production-environment/container-runtimes/#containerd)。
+
+<!--
+To *disable* HostProcess containers you need to pass the following feature gate flag to the
+**kubelet** and **kube-apiserver**:
+-->
+要 *禁用* HostProcess 容器特性，你需要为 **kubelet** 和 **kube-apiserver**
+设置下面的特性门控标志：
+
+```powershell
+--feature-gates=WindowsHostProcessContainers=false
+```
+
+<!--
+See [Features Gates](/docs/reference/command-line-tools-reference/feature-gates/#overview)
+documentation for more details.
+-->
+进一步的细节可参阅[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/#overview)文档。
+
+<!--
+## Limitations
+
+These limitations are relevant for Kubernetes v{{< skew currentVersion >}}:
+-->
+## 限制   {#limitations}
+
+以下限制是与 Kubernetes v{{< skew currentVersion >}} 相关的：
+
+<!--
+- HostProcess containers require containerd 1.6 or higher
+  {{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}.
+- HostProcess pods can only contain HostProcess containers. This is a current limitation
+  of the Windows OS; non-privileged Windows containers cannot share a vNIC with the host IP namespace.
+- HostProcess containers run as a process on the host and do not have any degree of
+  isolation other than resource constraints imposed on the HostProcess user account. Neither
+  filesystem or Hyper-V isolation are supported for HostProcess containers.
+-->
+- HostProcess 容器需要 containerd 1.6 或更高版本的
+  {{< glossary_tooltip text="容器运行时" term_id="container-runtime" >}}。
+- HostProcess Pods 只能包含 HostProcess 容器。这是在 Windows 操作系统上的约束；
+  非特权的 Windows 容器不能与主机 IP 名字空间共享虚拟网卡（vNIC）。 
+- HostProcess 在主机上以一个进程的形式运行，除了通过 HostProcess
+  用户账号所实施的资源约束外，不提供任何形式的隔离。HostProcess 容器不支持文件系统或
+  Hyper-V 隔离。
+<!--
+- Volume mounts are supported and are mounted under the container volume. See
+  [Volume Mounts](#volume-mounts)
+- A limited set of host user accounts are available for HostProcess containers by default.
+  See [Choosing a User Account](#choosing-a-user-account).
+- Resource limits (disk, memory, cpu count) are supported in the same fashion as processes
+  on the host.
+- Both Named pipe mounts and Unix domain sockets are **not** supported and should instead
+  be accessed via their path on the host (e.g. \\\\.\\pipe\\\*)
+-->
+- 卷挂载是被支持的，并且要花在到容器卷下。参见[卷挂载](#volume-mounts)。
+- 默认情况下有一组主机用户账户可供 HostProcess 容器使用。
+  参见[选择用户账号](#choosing-a-user-account)。
+- 对资源约束（磁盘、内存、CPU 个数）的支持与主机上进程相同。
+- **不支持**命名管道或者 UNIX 域套接字形式的挂载，需要使用主机上的路径名来访问
+  （例如，\\\\.\\pipe\\\*）。
+  
+<!--
+## HostProcess Pod configuration requirements
+-->
+## HostProcess Pod 配置需求   {#hostprocess-pod-configuration-requirements}
+
+<!--
+Enabling a Windows HostProcess pod requires setting the right configurations in the pod security
+configuration. Of the policies defined in the [Pod Security Standards](/docs/concepts/security/pod-security-standards)
+HostProcess pods are disallowed by the baseline and restricted policies. It is therefore recommended
+that HostProcess pods run in alignment with the privileged profile.
+
+When running under the privileged policy, here are
+the configurations which need to be set to enable the creation of a HostProcess pod:
+-->
+启用 Windows HostProcess Pod 需要在 Pod 安全配置中设置合适的选项。
+在 [Pod
+安全标准](/zh-cn/docs/concepts/security/pod-security-standards)中所定义的策略中，
+HostProcess Pod 默认是不被 basline 和 restricted 策略支持的。因此建议
+HostProcess 运行在与 privileged 模式相看齐的策略下。
+
+当运行在 privileged 策略下时，下面是要启用 HostProcess Pod 创建所需要设置的选项：
+
+<table>
+  <caption style="display: none"><!--Privileged policy specification-->privileged 策略规约</caption>
+  <thead>
+    <tr>
+      <th><!--Control-->控制</th>
+      <th><!--Policy-->策略</th>
+    </tr>
+  </thead>
+  <tbody>
+    <tr>
+      <td style="white-space: nowrap"><a href="/zh-cn/docs/concepts/security/pod-security-standards"><tt>securityContext.windowsOptions.hostProcess</tt></a></td>
+      <td>
+        <p><!--Windows pods offer the ability to run <a href="/docs/tasks/configure-pod-container/create-hostprocess-pod">
+        HostProcess containers</a> which enables privileged access to the Windows node.-->
+        Windows Pods 提供运行<a href="/zh-cn/docs/tasks/configure-pod-container/create-hostprocess-pod">
+        HostProcess 容器</a>的能力，这类容器能够具有对 Windows 节点的特权访问权限。</p>
+        <p><strong><!--Allowed Values-->可选值</strong></p>
+        <ul>
+          <li><code>true</code></li>
+        </ul>
+      </td>
+    </tr>
+    <tr>
+      <td style="white-space: nowrap"><a href="/zh-cn/docs/concepts/security/pod-security-standards"><tt>hostNetwork</tt></a></td>
+      <td>
+        <p><!--Will be in host network by default initially. Support
+        to set network to a different compartment may be desirable in
+        the future.-->
+        初始时将默认位于主机网络中。在未来可能会希望将网络设置到不同的隔离环境中。
+        </p>
+        <p><strong><!--Allowed Values-->可选值</strong></p>
+        <ul>
+          <li><code>true</code></li>
+        </ul>
+      </td>
+    </tr>
+    <tr>
+      <td style="white-space: nowrap"><a href="/zh-cn/docs/tasks/configure-pod-container/configure-runasusername/"><tt>securityContext.windowsOptions.runAsUsername</tt></a></td>
+      <td>
+        <p><!--Specification of which user the HostProcess container should run as is required for the pod spec.-->
+        关于 HostProcess 容器所要使用的用户的规约，需要设置在 Pod 的规约中。
+        </p>
+        <p><strong><!--Allowed Values-->可选值</strong></p>
+        <ul>
+          <li><code>NT AUTHORITY\SYSTEM</code></li>
+          <li><code>NT AUTHORITY\Local service</code></li>
+          <li><code>NT AUTHORITY\NetworkService</code></li>
+        </ul>
+      </td>
+    </tr>
+    <tr>
+      <td style="white-space: nowrap"><a href="/zh-cn/docs/concepts/security/pod-security-standards"><tt>runAsNonRoot</tt></a></td>
+      <td>
+        <p><!--Because HostProcess containers have privileged access to the host, the <tt>runAsNonRoot</tt> field cannot be set to true.-->
+        因为 HostProcess 容器有访问主机的特权，<tt>runAsNonRoot</tt> 字段不可以设置为 true。
+        </p>
+        <p><strong><!--Allowed Values-->可选值</strong></p>
+        <ul>
+          <li><!--Undefined/Nil-->未定义/Nil</li>
+          <li><code>false</code></li>
+        </ul>
+      </td>
+    </tr>
+  </tbody>
+</table>
+
+<!--
+### Example manifest (excerpt) {#manifest-example}
+-->
+### 配置清单示例（片段）   {#manifest-example}
+
+```yaml
+spec:
+  securityContext:
+    windowsOptions:
+      hostProcess: true
+      runAsUserName: "NT AUTHORITY\\Local service"
+  hostNetwork: true
+  containers:
+  - name: test
+    image: image1:latest
+    command:
+      - ping
+      - -t
+      - 127.0.0.1
+  nodeSelector:
+    "kubernetes.io/os": windows
+```
+
+<!--
+## Volume mounts
+
+HostProcess containers support the ability to mount volumes within the container volume space.
+Applications running inside the container can access volume mounts directly via relative or
+absolute paths. An environment variable `$CONTAINER_SANDBOX_MOUNT_POINT` is set upon container
+creation and provides the absolute host path to the container volume. Relative paths are based
+upon the `.spec.containers.volumeMounts.mountPath` configuration.
+-->
+## 卷挂载    {#volume-mounts}
+
+HostProcess 容器支持在容器卷空间中挂载卷的能力。
+在容器内运行的应用能够通过相对或者绝对路径直接访问卷挂载。
+环境变量 `$CONTAINER_SANDBOX_MOUNT_POINT` 在容器创建时被设置为指向容器卷的绝对主机路径。
+相对路径是基于 `.spec.containers.volumeMounts.mountPath` 配置来推导的。
+
+<!--
+### Example {#volume-mount-example}
+
+To access service account tokens the following path structures are supported within the container:
+-->
+### 示例    {#volume-mount-example}
+
+容器内支持通过下面的路径结构来访问服务账好令牌：
+
+`.\var\run\secrets\kubernetes.io\serviceaccount\`
+
+`$CONTAINER_SANDBOX_MOUNT_POINT\var\run\secrets\kubernetes.io\serviceaccount\`
+
+<!--
+## Resource limits
+
+Resource limits (disk, memory, cpu count) are applied to the job and are job wide.
+For example, with a limit of 10MB set, the memory allocated for any HostProcess job object
+will be capped at 10MB. This is the same behavior as other Windows container types.
+These limits would be specified the same way they are currently for whatever orchestrator
+or runtime is being used. The only difference is in the disk resource usage calculation
+used for resource tracking due to the difference in how HostProcess containers are bootstrapped.
+-->
+## 资源约束    {#resource-limits}
+
+资源约束（磁盘、内存、CPU 个数）作用到任务之上，并在整个任务上起作用。
+例如，如果内存限制设置为 10MB，任何 HostProcess 任务对象所分配的内存不会超过 10MB。
+这一行为与其他 Windows 容器类型相同。资源限制的设置方式与编排系统或容器运行时无关。
+唯一的区别是用来跟踪资源所进行的磁盘资源用量的计算，出现差异的原因是因为
+HostProcess 容器启动引导的方式造成的。
+
+<!--
+## Choosing a user account
+
+HostProcess containers support the ability to run as one of three supported Windows service accounts:
+-->
+## 选择用户账号  {#choosing-a-user-account}
+
+HostProcess 容器支持以三种被支持的 Windows 服务账号之一来运行：
+
+- **[LocalSystem](https://docs.microsoft.com/windows/win32/services/localsystem-account)**
+- **[LocalService](https://docs.microsoft.com/windows/win32/services/localservice-account)**
+- **[NetworkService](https://docs.microsoft.com/windows/win32/services/networkservice-account)**
+
+<!--
+You should select an appropriate Windows service account for each HostProcess
+container, aiming to limit the degree of privileges so as to avoid accidental (or even
+malicious) damage to the host. The LocalSystem service account has the highest level
+of privilege of the three and should be used only if absolutely necessary. Where possible,
+use the LocalService service account as it is the least privileged of the three options.
+-->
+你应该为每个 HostProcess 容器选择一个合适的 Windows 服务账号，尝试限制特权范围，
+避免给主机代理意外的（甚至是恶意的）伤害。LocalSystem 服务账号的特权级
+在三者之中最高，只有在绝对需要的时候才应该使用。只要可能，应该使用
+LocalService 服务账号，因为该账号在三者中特权最低。
+
diff --git a/content/zh-cn/docs/tasks/configure-pod-container/enforce-standards-admission-controller.md b/content/zh-cn/docs/tasks/configure-pod-container/enforce-standards-admission-controller.md
new file mode 100644
index 0000000000..37bca7adb2
--- /dev/null
+++ b/content/zh-cn/docs/tasks/configure-pod-container/enforce-standards-admission-controller.md
@@ -0,0 +1,120 @@
+---
+title: 通过配置内置准入控制器实施 Pod 安全标准
+content_type: task
+min-kubernetes-server-version: v1.22
+---
+
+<!--
+title: Enforce Pod Security Standards by Configuring the Built-in Admission Controller
+reviewers:
+- tallclair
+- liggitt
+content_type: task
+min-kubernetes-server-version: v1.22
+-->
+
+<!--
+As of v1.22, Kubernetes provides a built-in [admission controller](/docs/reference/access-authn-authz/admission-controllers/#podsecurity)
+to enforce the [Pod Security Standards](/docs/concepts/security/pod-security-standards).
+You can configure this admission controller to set cluster-wide defaults and [exemptions](/docs/concepts/security/pod-security-admission/#exemptions).
+-->
+在 v1.22 版本中，Kubernetes 提供一种内置的[准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#podsecurity)
+用来强制实施 [Pod 安全标准](/zh-cn/docs/concepts/security/pod-security-standards)。
+你可以配置此准入控制器来设置集群范围的默认值和[豁免选项](/zh-cn/docs/concepts/security/pod-security-admission/#exemptions)。
+
+## {{% heading "prerequisites" %}}
+
+{{% version-check %}}
+
+<!--
+- Ensure the `PodSecurity` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/#feature-gates-for-alpha-or-beta-features) is enabled.
+-->
+- 确保 `PodSecurity` [特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/#feature-gates-for-alpha-or-beta-features)已被启用。
+
+<!--
+## Configure the Admission Controller
+-->
+## 配置准入控制器    {#configure-the-admission-controller}
+
+{{< tabs name="PodSecurityConfiguration_example_1" >}}
+{{% tab name="pod-security.admission.config.k8s.io/v1beta1" %}}
+
+```yaml
+apiVersion: apiserver.config.k8s.io/v1
+kind: AdmissionConfiguration
+plugins:
+- name: PodSecurity
+  configuration:
+    apiVersion: pod-security.admission.config.k8s.io/v1beta1
+    kind: PodSecurityConfiguration
+    # 当未设置 mode 标签时会应用的默认设置
+    #
+    # level 标签必须是以下取值之一：
+    # - "privileged" (默认)
+    # - "baseline"
+    # - "restricted"
+    #
+    # version 标签必须是如下取值之一：
+    # - "latest" (默认) 
+    # - 诸如 "v{{< skew currentVersion>}}" 这类版本号
+    defaults:
+      enforce: "privileged"
+      enforce-version: "latest"
+      audit: "privileged"
+      audit-version: "latest"
+      warn: "privileged"
+      warn-version: "latest"
+    exemptions:
+      # 要豁免的已认证用户名列表
+      usernames: []
+      # 要豁免的运行时类名称列表
+      runtimeClasses: []
+      # 要豁免的名字空间列表
+      namespaces: []
+```
+
+{{< note >}}
+<!--
+v1beta1 configuration requires v1.23+. For v1.22, use v1alpha1.
+-->
+v1beta1 配置结构需要使用 v1.23+ 版本；对于 v1.22 版本，可使用 v1alpha1。
+{{< /note >}}
+
+{{% /tab %}}
+{{% tab name="pod-security.admission.config.k8s.io/v1alpha1" %}}
+```yaml
+apiVersion: apiserver.config.k8s.io/v1
+kind: AdmissionConfiguration
+plugins:
+- name: PodSecurity
+  configuration:
+    apiVersion: pod-security.admission.config.k8s.io/v1alpha1
+    kind: PodSecurityConfiguration
+    # 当未设置 mode 标签时会应用的默认设置
+    #
+    # level 标签必须是以下取值之一：
+    # - "privileged" (默认)
+    # - "baseline"
+    # - "restricted"
+    #
+    # version 标签必须是如下取值之一：
+    # - "latest" (默认) 
+    # - 诸如 "v{{< skew currentVersion>}}" 这类版本号
+    defaults:
+      enforce: "privileged"
+      enforce-version: "latest"
+      audit: "privileged"
+      audit-version: "latest"
+      warn: "privileged"
+      warn-version: "latest"
+    exemptions:
+      # 要豁免的已认证用户名列表
+      usernames: []
+      # 要豁免的运行时类名称列表
+      runtimeClasses: []
+      # 要豁免的名字空间列表
+      namespaces: []
+```
+{{% /tab %}}
+{{< /tabs >}}
+
diff --git a/content/zh-cn/docs/tasks/configure-pod-container/enforce-standards-namespace-labels.md b/content/zh-cn/docs/tasks/configure-pod-container/enforce-standards-namespace-labels.md
new file mode 100644
index 0000000000..6a0912f8e6
--- /dev/null
+++ b/content/zh-cn/docs/tasks/configure-pod-container/enforce-standards-namespace-labels.md
@@ -0,0 +1,148 @@
+---
+title: 使用名字空间标签来实施 Pod 安全性标准
+content_type: task
+min-kubernetes-server-version: v1.22
+---
+<!--
+title: Enforce Pod Security Standards with Namespace Labels
+reviewers:
+- tallclair
+- liggitt
+content_type: task
+min-kubernetes-server-version: v1.22
+-->
+
+<!--
+Namespaces can be labeled to enforce the [Pod Security Standards](/docs/concepts/security/pod-security-standards).The three policies
+[privileged](/docs/concepts/security/pod-security-standards/#privileged), [baseline](/docs/concepts/security/pod-security-standards/#baseline)
+and [restricted](/docs/concepts/security/pod-security-standards/#restricted) broadly cover the security spectrum
+and are implemented by the [Pod Security](/docs/concepts/security/pod-security-admission/)
+-->
+[特权（privileged）](/zh-cn/docs/concepts/security/pod-security-standards/#privileged)、
+[基线（baseline）](/zh-cn/docs/concepts/security/pod-security-standards/#baseline)和
+[受限（restricted）](/zh-cn/docs/concepts/security/pod-security-standards/#restricted) 
+这三种策略涵盖了广泛安全范围，并由 [Pod 安全](/zh-cn/docs/concepts/security/pod-security-admission/)
+ {{< glossary_tooltip text="准入控制器" term_id="admission-controller" >}}实现。
+
+## {{% heading "prerequisites" %}}
+
+{{% version-check %}}
+
+<!--
+- Ensure the `PodSecurity` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/#feature-gates-for-alpha-or-beta-features) is enabled.
+-->
+- 确保 `PodSecurity` [特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/#feature-gates-for-alpha-or-beta-features)已被启用。
+
+<!--
+## Requiring the `baseline` Pod Security Standard with namespace labels
+-->
+## 通过名字空间标签来要求实施 `baseline` Pod 容器标准
+
+<!--
+This manifest defines a Namespace `my-baseline-namespace` that:
+
+- _Blocks_ any pods that don't satisfy the `baseline` policy requirements.
+- Generates a user-facing warning and adds an audit annotation to any created pod that does not
+  meet the `restricted` policy requirements.
+- Pins the versions of the `baseline` and `restricted` policies to v{{< skew currentVersion >}}.
+-->
+下面的清单定义了一个 `my-baseline-namespace` 名字空间，其中
+
+- *阻止*任何不满足 `baseline` 策略要求的 Pods；
+- 针对任何无法满足 `restricted` 策略要求的、已创建的 Pod 为用户生成警告信息，
+  并添加审计注解；
+- 将 `baseline` 和 `restricted` 策略的版本锁定到 v{{< skew currentVersion >}}。
+
+```yaml
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: my-baseline-namespace
+  labels:
+    pod-security.kubernetes.io/enforce: baseline
+    pod-security.kubernetes.io/enforce-version: v{{< skew currentVersion >}}
+
+    # 我们将这些标签设置为我们所 _期望_ 的 `enforce` 级别
+    pod-security.kubernetes.io/audit: restricted
+    pod-security.kubernetes.io/audit-version: v{{< skew currentVersion >}}
+    pod-security.kubernetes.io/warn: restricted
+    pod-security.kubernetes.io/warn-version: v{{< skew currentVersion >}}
+```
+
+<!--
+## Add labels to existing namespaces with `kubectl label`
+-->
+## 使用 `kubectl label` 为现有名字空间添加标签
+
+{{< note >}}
+<!--
+When an `enforce` policy (or version) label is added or changed, the admission plugin will test
+each pod in the namespace against the new policy. Violations are returned to the user as warnings.
+-->
+在添加或变更 `enforce` 策略（或版本）标签时，准入插件会测试名字空间中的每个
+Pod 以检查其是否满足新的策略。不符合策略的情况会被以警告的形式返回给用户。
+{{< /note >}}
+
+<!--
+It is helpful to apply the `--dry-run` flag when initially evaluating security profile changes for
+namespaces. The Pod Security Standard checks will still be run in _dry run_ mode, giving you
+information about how the new policy would treat existing pods, without actually updating a policy.
+-->
+在刚开始为名字空间评估安全性策略变更时，使用 `--dry-run` 标志是很有用的。
+Pod 安全性标准会在 _dry run（试运行）_
+模式下运行，在这种模式下会生成新策略如何处理现有 Pod 的信息，
+但不会真正更新策略。
+
+```shell
+kubectl label --dry-run=server --overwrite ns --all \
+    pod-security.kubernetes.io/enforce=baseline
+```
+
+<!--
+### Applying to all namespaces
+-->
+### 应用到所有名字空间
+
+<!--
+If you're just getting started with the Pod Security Standards, a suitable first step would be to
+configure all namespaces with audit annotations for a stricter level such as `baseline`:
+-->
+如果你是刚刚开始使用 Pod 安全性标准，一种比较合适的初始步骤是针对所有名字空间为类似
+`baseline` 这种比较严格的安全级别配置审计注解。
+
+```shell
+kubectl label --overwrite ns --all \
+  pod-security.kubernetes.io/audit=baseline \
+  pod-security.kubernetes.io/warn=baseline
+```
+
+<!--
+Note that this is not setting an enforce level, so that namespaces that haven't been explicitly
+evaluated can be distinguished. You can list namespaces without an explicitly set enforce level
+using this command:
+-->
+注意，这里没有设置 enforce 级别，因而没有被显式评估的名字空间可以被识别出来。
+你可以使用下面的命令列举那些没有显式设置 enforce 级别的名字空间：
+
+```shell
+kubectl get namespaces --selector='!pod-security.kubernetes.io/enforce'
+```
+
+<!--
+### Applying to a single namespace
+-->
+### 应用到单个名字空间
+
+<!--
+You can update a specific namespace as well. This command adds the `enforce=restricted`
+policy to `my-existing-namespace`, pinning the restricted policy version to v{{< skew currentVersion >}}.
+-->
+你也可以更新特定的名字空间。下面的命令将 `enforce=restricted` 策略应用到
+`my-existing-namespace` 名字空间，将 restricted 策略的版本锁定到 v{{< skew currentVersion >}}。
+
+```shell
+kubectl label --overwrite ns my-existing-namespace \
+  pod-security.kubernetes.io/enforce=restricted \
+  pod-security.kubernetes.io/enforce-version=v{{< skew currentVersion >}}
+```
+
diff --git a/content/zh/docs/tasks/configure-pod-container/extended-resource.md b/content/zh-cn/docs/tasks/configure-pod-container/extended-resource.md
similarity index 92%
rename from content/zh/docs/tasks/configure-pod-container/extended-resource.md
rename to content/zh-cn/docs/tasks/configure-pod-container/extended-resource.md
index e34a5e4eb1..3abc19fb12 100644
--- a/content/zh/docs/tasks/configure-pod-container/extended-resource.md
+++ b/content/zh-cn/docs/tasks/configure-pod-container/extended-resource.md
@@ -29,7 +29,7 @@ Before you do this exercise, do the exercise in
 That will configure one of your Nodes to advertise a dongle resource.
 -->
 在你开始此练习前，请先练习
-[为节点广播扩展资源](/zh/docs/tasks/administer-cluster/extended-resource-node/)。
+[为节点广播扩展资源](/zh-cn/docs/tasks/administer-cluster/extended-resource-node/)。
 在那个练习中将配置你的一个节点来广播 dongle 资源。
 
 <!-- steps -->
@@ -195,8 +195,8 @@ kubectl delete pod extended-resource-demo-2
 -->
 ## 应用开发者参考
 
-* [为容器和 Pod 分配内存资源](/zh/docs/tasks/configure-pod-container/assign-memory-resource/)
-* [为容器和 Pod 分配 CPU 资源](/zh/docs/tasks/configure-pod-container/assign-cpu-resource/)
+* [为容器和 Pod 分配内存资源](/zh-cn/docs/tasks/configure-pod-container/assign-memory-resource/)
+* [为容器和 Pod 分配 CPU 资源](/zh-cn/docs/tasks/configure-pod-container/assign-cpu-resource/)
 
 <!--
 ### For cluster administrators
@@ -205,5 +205,5 @@ kubectl delete pod extended-resource-demo-2
 -->
 ### 集群管理员参考
 
-* [为节点广播扩展资源](/zh/docs/tasks/administer-cluster/extended-resource-node/)
+* [为节点广播扩展资源](/zh-cn/docs/tasks/administer-cluster/extended-resource-node/)
 
diff --git a/content/zh-cn/docs/tasks/configure-pod-container/migrate-from-psp.md b/content/zh-cn/docs/tasks/configure-pod-container/migrate-from-psp.md
new file mode 100644
index 0000000000..1b699543c8
--- /dev/null
+++ b/content/zh-cn/docs/tasks/configure-pod-container/migrate-from-psp.md
@@ -0,0 +1,668 @@
+---
+title: 从 PodSecurityPolicy 迁移到内置的 PodSecurity 准入控制器
+content_type: task
+min-kubernetes-server-version: v1.22
+---
+
+<!--
+title: Migrate from PodSecurityPolicy to the Built-In PodSecurity Admission Controller
+reviewers:
+- tallclair
+- liggitt
+content_type: task
+min-kubernetes-server-version: v1.22
+-->
+
+<!-- overview -->
+
+<!--
+This page describes the process of migrating from PodSecurityPolicies to the built-in PodSecurity
+admission controller. This can be done effectively using a combination of dry-run and `audit` and
+`warn` modes, although this becomes harder if mutating PSPs are used.
+-->
+本页面描述从 PodSecurityPolicy 迁移到内置的 PodSecurity 准入控制器的过程。
+这一迁移过程可以通过综合使用试运行、`audit` 和 `warn` 模式等来实现，
+尽管在使用了变更式 PSP 时会变得有些困难。
+
+## {{% heading "prerequisites" %}}
+
+{{% version-check %}}
+
+<!--
+- Ensure the `PodSecurity` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/#feature-gates-for-alpha-or-beta-features) is enabled.
+-->
+- 确保 `PodSecurity` [特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)被启用。
+
+<!--
+This page assumes you are already familiar with the basic [Pod Security Admission](/docs/concepts/security/pod-security-admission/)
+concepts.
+-->
+本页面假定你已经熟悉 [Pod 安全性准入](/zh-cn/docs/concepts/security/pod-security-admission/)的基本概念。
+
+<!-- body -->
+
+<!--
+## Overall approach
+
+There are multiple strategies you can take for migrating from PodSecurityPolicy to Pod Security
+Admission. The following steps are one possible migration path, with a goal of minimizing both the
+risks of a production outage and of a security gap.
+-->
+## 方法概览    {#overall-approach}
+
+你可以采取多种策略来完成从 PodSecurityPolicy 到 Pod 安全性准入
+（Pod Security Admission）的迁移。
+下面是一种可能的迁移路径，其目标是尽可能降低生产环境不可用的风险，
+以及安全性仍然不足的风险。
+
+<!-- Keep section header numbering in sync with this list. -->
+<!--
+0. Decide whether Pod Security Admission is the right fit for your use case.
+1. Review namespace permissions
+2. Simplify & standardize PodSecurityPolicies
+3. Update namespaces
+   1. Identify an appropriate Pod Security level
+   2. Verify the Pod Security level
+   3. Enforce the Pod Security level
+   4. Bypass PodSecurityPolicy
+4. Review namespace creation processes
+5. Disable PodSecurityPolicy
+-->
+0. 确定 Pod 安全性准入是否对于你的使用场景而言比较合适。
+1. 审查名字空间访问权限。
+2. 简化、标准化 PodSecurityPolicy。
+3. 更新名字空间：
+   1. 确定合适的 Pod 安全性级别；
+   2. 验证该 Pod 安全性级别可工作；
+   3. 实施该 Pod 安全性级别；
+   4. 绕过 PodSecurityPolicy。
+4. 审阅名字空间创建过程。
+5. 禁用 PodSecurityPolicy。
+
+<!--
+## 0. Decide whether Pod Security Admission is right for you {#is-psa-right-for-you}
+-->
+## 0. 确定是否 Pod 安全性准入适合你  {#is-psa-right-for-you}
+
+<!--
+Pod Security Admission was designed to meet the most common security needs out of the box, and to
+provide a standard set of security levels across clusters. However, it is less flexible than
+PodSecurityPolicy. Notably, the following features are supported by PodSecurityPolicy but not Pod
+Security Admission:
+-->
+Pod 安全性准入被设计用来直接满足最常见的安全性需求，并提供一组可用于多个集群的安全性级别。
+不过，这一机制比 PodSecurityPolicy 的灵活度要低。
+值得注意的是，PodSecurityPolicy 所支持的以下特性是 Pod 安全性准入所不支持的：
+
+<!--
+- **Setting default security constraints** - Pod Security Admission is a non-mutating admission
+  controller, meaning it won't modify pods before validating them. If you were relying on this
+  aspect of PSP, you will need to either modify your workloads to meet the Pod Security constraints,
+  or use a [Mutating Admission Webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/)
+  to make those changes. See [Simplify & Standardize PodSecurityPolicies](#simplify-psps) below for more detail.
+-->
+- **设置默认的安全性约束** - Pod 安全性准入是一个非变更性质的准入控制器，
+  这就意味着它不会在对 Pod 进行合法性检查之前更改其配置。如果你之前依赖于 PSP 的这方面能力，
+  你或者需要更改你的负载以满足 Pod 安全性约束，或者需要使用一个
+  [变更性质的准入 Webhook](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/)
+  来执行相应的变更。进一步的细节可参见后文的[简化和标准化 PodSecurityPolicy](#simplify-psps)。
+<!--
+- **Fine-grained control over policy definition** - Pod Security Admission only supports
+  [3 standard levels](/docs/concepts/security/pod-security-standards/).
+  If you require more control over specific constraints, then you will need to use a
+  [Validating Admission Webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/)
+  to enforce those policies.
+-->
+- **对策略定义的细粒度控制** - Pod 安全性准入仅支持
+  [三种标准级别](/zh-cn/docs/concepts/security/pod-security-standards/)。
+  如果你需要对特定的约束施加更多的控制，你就需要使用一个
+  [验证性质的准入 Webhook](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/)
+  以实施这列策略。
+<!--
+- **Sub-namespace policy granularity** - PodSecurityPolicy lets you bind different policies to
+  different Service Accounts or users, even within a single namespace. This approach has many
+  pitfalls and is not recommended, but if you require this feature anyway you will
+  need to use a 3rd party webhook instead. The exception to this is if you only need to completely exempt
+  specific users or [RuntimeClasses](/docs/concepts/containers/runtime-class/), in which case Pod
+  Security Admission does expose some
+  [static configuration for exemptions](/docs/concepts/security/pod-security-admission/#exemptions).
+-->
+- **粒度小于名字空间的策略** - PodSecurityPolicy 允许你为不同的服务账户或用户绑定不同策略，
+  即使这些服务账户或用户隶属于同一个名字空间。这一方法有很多缺陷，不建议使用。
+  不过如果你的确需要这种功能，你就需要使用第三方的 Webhook。
+  唯一的例外是当你只需要完全针对某用户或者
+  [RuntimeClasses](/zh-cn/docs/concepts/containers/runtime-class/) 赋予豁免规则时，
+  Pod 安全性准入的确也为豁免规则暴露一些
+  [静态配置](/zh-cn/docs/concepts/security/pod-security-admission/#exemptions)。
+
+<!--
+Even if Pod Security Admission does not meet all of your needs it was designed to be _complementary_
+to other policy enforcement mechanisms, and can provide a useful fallback running alongside other
+admission webhooks.
+-->
+即便 Pod 安全性准入无法满足你的所有需求，该机制也是设计用作其他策略实施机制的
+_补充_，因此可以和其他准入 Webhook 一起运行，进而提供一种有用的兜底机制。
+
+<!--
+## 1. Review namespace permissions {#review-namespace-permissions}
+-->
+## 1. 审查名字空间访问权限  {#review-namespace-permissions}
+
+<!--
+Pod Security Admission is controlled by [labels on
+namespaces](/docs/concepts/security/pod-security-admission/#pod-security-admission-labels-for-namespaces).
+This means that anyone who can update (or patch or create) a namespace can also modify the Pod
+Security level for that namespace, which could be used to bypass a more restrictive policy. Before
+proceeding, ensure that only trusted, privileged users have these namespace permissions. It is not
+recommended to grant these powerful permissions to users that shouldn't have elevated permissions,
+but if you must you will need to use an
+[admission webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/)
+to place additional restrictions on setting Pod Security labels on Namespace objects.
+-->
+Pod 安全性准入是通过[名字空间上的标签](/zh-cn/docs/concepts/security/pod-security-admission/#pod-security-admission-labels-for-namespaces)
+来控制的。这也就是说，任何能够更新（或通过 patch 部分更新或创建）
+名字空间的人都可以更改该名字空间的 Pod 安全性级别，而这可能会被利用来绕过约束性更强的策略。
+在继续执行迁移操作之前，请确保只有被信任的、有特权的用户具有这类名字空间访问权限。
+不建议将这类强大的访问权限授予不应获得权限提升的用户，不过如果你必须这样做，
+你需要使用一个
+[准入 Webhook](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/)
+来针对为 Namespace 对象设置 Pod 安全性级别设置额外的约束。
+
+<!--
+## 2. Simplify & standardize PodSecurityPolicies {#simplify-psps}
+-->
+## 2. 简化、标准化 PodSecurityPolicy    {#simplify-psps}
+
+<!--
+In this section, you will reduce mutating PodSecurityPolicies and remove options that are outside
+the scope of the Pod Security Standards. You should make the changes recommended here to an offline
+copy of the original PodSecurityPolicy being modified. The cloned PSP should have a different
+name that is alphabetically before the original (for example, prepend a `0` to it). Do not create the
+new policies in Kubernetes yet - that will be covered in the [Rollout the updated
+policies](#psp-update-rollout) section below.
+-->
+在本节中，你会削减变更性质的 PodSecurityPolicy，去掉 Pod 安全性标准范畴之外的选项。
+针对要修改的、已存在的 PodSecurityPolicy，你应该将这里所建议的更改写入到其离线副本中。
+所克隆的 PSP 应该与原来的副本名字不同，并且按字母序要排到原副本之前
+（例如，可以向 PSP 名字前加一个 `0`）。
+先不要在 Kubernetes 中创建新的策略 - 这类操作会在后文的[推出更新的策略](#psp-update-rollout)
+部分讨论。
+
+<!--
+### 2.a. Eliminate purely mutating fields {#eliminate-mutating-fields}
+-->
+### 2.a. 去掉纯粹变更性质的字段    {#eliminating-mutaging-fields}
+
+<!--
+If a PodSecurityPolicy is mutating pods, then you could end up with pods that don't meet the Pod
+Security level requirements when you finally turn PodSecurityPolicy off. In order to avoid this, you
+should eliminate all PSP mutation prior to switching over. Unfortunately PSP does not cleanly
+separate mutating & validating fields, so this is not a straightforward migration.
+-->
+如果某个 PodSecurityPolicy 能够变更字段，你可能会在关掉 PodSecurityPolicy
+时发现有些 Pod 无法满足 Pod 安全性级别。为避免这类状况，
+你应该在执行切换操作之前去掉所有 PSP 的变更操作。
+不幸的是，PSP 没有对变更性和验证性字段做清晰的区分，所以这一迁移操作也不够简单直接。
+
+<!--
+You can start by eliminating the fields that are purely mutating, and don't have any bearing on the
+validating policy. These fields (also listed in the
+[Mapping PodSecurityPolicies to Pod Security Standards](/docs/reference/access-authn-authz/psp-to-pod-security-standards/)
+reference) are:
+-->
+你可以先去掉那些纯粹变更性质的字段，留下验证策略中的其他内容。
+这些字段（也列举于[将 PodSecurityPolicy 映射到 Pod 安全性标准](/zh-cn/docs/reference/access-authn-authz/psp-to-pod-security-standards/)参考中）
+包括：
+
+<!--
+- `.spec.defaultAllowPrivilegeEscalation`
+- `.spec.runtimeClass.defaultRuntimeClassName`
+- `.metadata.annotations['seccomp.security.alpha.kubernetes.io/defaultProfileName']`
+- `.metadata.annotations['apparmor.security.beta.kubernetes.io/defaultProfileName']`
+- `.spec.defaultAddCapabilities` - Although technically a mutating & validating field, these should
+  be merged into `.spec.allowedCapabilities` which performs the same validation without mutation.
+-->
+- `.spec.defaultAllowPrivilegeEscalation`
+- `.spec.runtimeClass.defaultRuntimeClassName`
+- `.metadata.annotations['seccomp.security.alpha.kubernetes.io/defaultProfileName']`
+- `.metadata.annotations['apparmor.security.beta.kubernetes.io/defaultProfileName']`
+- `.spec.defaultAddCapabilities` - 尽管理论上是一个混合了变更性与验证性功能的字段，
+  这里的设置应该被合并到 `.spec.allowedCapabilities` 中，后者会执行相同的验证操作，
+  但不会执行任何变更动作。
+
+{{< caution >}}
+<!--
+Removing these could result in workloads missing required configuration, and cause problems. See
+[Rollout the updated policies](#psp-update-rollout) below for advice on how to roll these changes
+out safely.
+-->
+删除这些字段可能导致负载缺少所需的配置信息，进而导致一些问题。
+参见后文[退出更新的策略](#psp-update-rollout)以获得如何安全地将这些变更上线的建议。
+{{< /caution >}}
+
+<!--
+### 2.b. Eliminate options not covered by the Pod Security Standards {#eliminate-non-standard-options}
+-->
+### 2.b. 去掉 Pod 安全性标准未涉及的选项 {#eliminate-non-standard-options}
+
+<!--
+There are several fields in PodSecurityPolicy that are not covered by the Pod Security Standards. If
+you must enforce these options, you will need to supplement Pod Security Admission with an
+[admission webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/),
+which is outside the scope of this guide.
+-->
+PodSecurityPolicy 中有一些字段未被 Pod 安全性准入机制覆盖。如果你必须使用这些选项，
+你需要在 Pod 安全性准入之外部署
+[准入 Webhook](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/)
+以补充这一能力，而这类操作不在本指南范围。
+
+<!--
+First, you can remove the purely validating fields that the Pod Security Standards do not cover.
+These fields (also listed in the
+[Mapping PodSecurityPolicies to Pod Security Standards](/docs/reference/access-authn-authz/psp-to-pod-security-standards/)
+reference with "no opinion") are:
+-->
+首先，你可以去掉 Pod 安全性标准所未覆盖的那些验证性字段。这些字段（也列举于
+[将 PodSecurityPolicy 映射到 Pod 安全性标准](/zh-cn/docs/reference/access-authn-authz/psp-to-pod-security-standards/)参考中，标记为“无意见”）有：
+
+- `.spec.allowedHostPaths`
+- `.spec.allowedFlexVolumes`
+- `.spec.allowedCSIDrivers`
+- `.spec.forbiddenSysctls`
+- `.spec.runtimeClass`
+
+<!--
+You can also remove the following fields, that are related to POSIX / UNIX group controls.
+-->
+你也可以去掉以下字段，这些字段与 POSIX/UNIX 用户组控制有关。
+
+{{< caution >}}
+<!--
+If any of these use the `MustRunAs` strategy they may be mutating! Removing these could result in
+workloads not setting the required groups, and cause problems. See
+[Rollout the updated policies](#psp-update-rollout) below for advice on how to roll these changes
+out safely.
+-->
+如果这些字段中存在使用 `MustRunAs` 策略的情况，则意味着对应字段是变更性质的。
+去掉相应的字段可能导致负载无法设置所需的用户组，进而带来一些问题。
+关于如何安全地将这类变更上线的相关建议，请参阅后文的[推出更新的策略](#psp-update-rollout)部分。
+{{< /caution >}}
+
+- `.spec.runAsGroup`
+- `.spec.supplementalGroups`
+- `.spec.fsGroup`
+
+<!--
+The remaining mutating fields are required to properly support the Pod Security Standards, and will
+need to be handled on a case-by-case basis later:
+-->
+剩下的变更性字段是为了适当支持 Pod 安全性标准所需要的，因而需要逐个处理：
+
+<!--
+- `.spec.requiredDropCapabilities` - Required to drop `ALL` for the Restricted profile.
+- `.spec.seLinux` - (Only mutating with the `MustRunAs` rule) required to enforce the SELinux
+  requirements of the Baseline & Restricted profiles.
+- `.spec.runAsUser` - (Non-mutating with the `RunAsAny` rule) required to enforce `RunAsNonRoot` for
+  the Restricted profile.
+- `.spec.allowPrivilegeEscalation` - (Only mutating if set to `false`) required for the Restricted
+  profile.
+-->
+- `.spec.requiredDropCapabilities` - 需要此字段来为 Restricted 配置去掉 `ALL` 设置。
+- `.spec.seLinux` - （仅针对带有 `MustRunAs` 规则的变更性设置）需要此字段来满足
+  Baseline 和 Restricted 配置所需要的 SELinux 需求。
+- `.spec.runAsUser` - （仅针对带有 `RunAsAny` 规则的非变更性设置）需要此字段来为
+  Restricted 配置保证 `RunAsNonRoot`。
+- `.spec.allowPrivilegeEscalation` - （如果设置为 `false` 则为变更性设置）
+  需要此字段来支持 Restricted 配置。
+
+<!--
+### 2.c. Rollout the updated PSPs {#psp-update-rollout}
+-->
+### 2.c. 推出更新的 PSP    {#psp-update-rollout}
+
+<!--
+Next, you can rollout the updated policies to your cluster. You should proceed with caution, as
+removing the mutating options may result in workloads missing required configuration.
+
+For each updated PodSecurityPolicy:
+-->
+接下来，你可以将更新后的策略推出到你的集群上。在继续操作时，你要非常小心，
+因为去掉变更性质的选项可能导致有些工作负载缺少必需的配置。
+
+针对更新后的每个 PodSecurityPolicy：
+
+<!--
+1. Identify pods running under the original PSP. This can be done using the `kubernetes.io/psp`
+   annotation. For example, using kubectl:
+   ```sh
+   PSP_NAME="original" # Set the name of the PSP you're checking for
+   kubectl get pods --all-namespaces -o jsonpath="{range .items[?(@.metadata.annotations.kubernetes\.io\/psp=='$PSP_NAME')]}{.metadata.namespace} {.metadata.name}{'\n'}{end}"
+   ```
+-->
+1. 识别运行于原 PSP 之下的 Pod。可以通过 `kubernetes.io/psp` 注解来完成。
+   例如，使用 kubectl：
+
+   ```shell
+   PSP_NAME="original" # 设置你要检查的 PSP 的名称
+   kubectl get pods --all-namespaces -o jsonpath="{range .items[?(@.metadata.annotations.kubernetes\.io\/psp=='$PSP_NAME')]}{.metadata.namespace} {.metadata.name}{'\n'}{end}"
+   ```
+
+<!--
+2. Compare these running pods against the original pod spec to determine whether PodSecurityPolicy
+   has modified the pod. For pods created by a [workload resource](/docs/concepts/workloads/controllers/)
+   you can compare the pod with the PodTemplate in the controller resource. If any changes are
+   identified, the original Pod or PodTemplate should be updated with the desired configuration.
+   The fields to review are:
+-->
+2. 比较运行中的 Pod 与原来的 Pod 规约，确定 PodSecurityPolicy 是否更改过这些 Pod。
+   对于通过[工作负载资源](/zh-cn/docs/concepts/workloads/controllers/)所创建的 Pod，
+   你可以比较 Pod 和控制器资源中的 PodTemplate。如果发现任何变更，则原来的 Pod
+   或者 PodTemplate 需要被更新以加上所希望的配置。要审查的字段包括：
+
+   - `.metadata.annotations['container.apparmor.security.beta.kubernetes.io/*']`
+     （将 `*` 替换为每个容器的名称）
+   - `.spec.runtimeClassName`
+   - `.spec.securityContext.fsGroup`
+   - `.spec.securityContext.seccompProfile`
+   - `.spec.securityContext.seLinuxOptions`
+   - `.spec.securityContext.supplementalGroups`
+   <!--
+   - On containers, under `.spec.containers[*]` and `.spec.initContainers[*]`:
+   -->
+   - 对于容器，在 `.spec.containers[*]` 和 `.spec.initContainers[*]` 之下，检查下面字段：
+     - `.securityContext.allowPrivilegeEscalation`
+     - `.securityContext.capabilities.add`
+     - `.securityContext.capabilities.drop`
+     - `.securityContext.readOnlyRootFilesystem`
+     - `.securityContext.runAsGroup`
+     - `.securityContext.runAsNonRoot`
+     - `.securityContext.runAsUser`
+     - `.securityContext.seccompProfile`
+     - `.securityContext.seLinuxOptions`
+<!--
+3. Create the new PodSecurityPolicies. If any Roles or ClusterRoles are granting `use` on all PSPs
+   this could cause the new PSPs to be used instead of their mutating counter-parts.
+4. Update your authorization to grant access to the new PSPs. In RBAC this means updating any Roles
+   or ClusterRoles that grant the `use` permision on the original PSP to also grant it to the
+   updated PSP.
+-->
+3. 创建新的 PodSecurityPolicy。如果存在 Role 或 ClusterRole 对象为用户授权了在所有 PSP
+   上使用 `use` 动词的权限，则所使用的的会是新创建的 PSP 而不是其变更性的副本。
+4. 更新你的鉴权配置，为访问新的 PSP 授权。在 RBAC 机制下，这意味着需要更新所有为原 PSP
+   授予 `use` 访问权限的 Role 或 ClusterRole 对象，使之也对更新后的 PSP 授权。
+
+<!--
+5. Verify: after some soak time, rerun the command from step 1 to see if any pods are still using
+   the original PSPs. Note that pods need to be recreated after the new policies have been rolled
+   out before they can be fully verified.
+6. (optional) Once you have verified that the original PSPs are no longer in use, you can delete
+   them.
+-->
+5. 验证：经过一段时间后，重新执行步骤 1 中所给的命令，查看是否有 Pod 仍在使用原来的 PSP。
+   注意，在新的策略被推出到集群之后，Pod 需要被重新创建才可以执行全面验证。
+6. （可选）一旦你已经验证原来的 PSP 不再被使用，你就可以删除这些 PSP。
+
+<!--
+## 3. Update Namespaces {#update-namespaces}
+-->
+## 3. 更新名字空间     {#update-namespace}
+
+<!--
+The following steps will need to be performed on every namespace in the cluster. Commands referenced
+in these steps use the `$NAMESPACE` variable to refer to the namespace being updated.
+-->
+下面的步骤需要在集群中的所有名字空间上执行。所列步骤中的命令使用变量
+`$NAMESPACE` 来引用所更新的名字空间。
+
+<!--
+### 3.a. Identify an appropriate Pod Security level {#identify-appropriate-level}
+-->
+### 3.a. 识别合适的 Pod 安全级别   {#identify-appropriate-level}
+
+<!--
+Start reviewing the [Pod Security Standards](/docs/concepts/security/pod-security-standards/) and
+familiarizing yourself with the 3 different levels.
+
+There are several ways to choose a Pod Security level for your namespace:
+-->
+首先请回顾 [Pod 安全性标准](/zh-cn/docs/concepts/security/pod-security-standards/)内容，
+并了解三个安全级别。
+
+为你的名字空间选择 Pod 安全性级别有几种方法：
+
+<!--
+1. **By security requirements for the namespace** - If you are familiar with the expected access
+   level for the namespace, you can choose an appropriate level based on those requirements, similar
+   to how one might approach this on a new cluster.
+-->
+1. **根据名字空间的安全性需求来确定** - 如果你熟悉某名字空间的预期访问级别，
+   你可以根据这类需求来选择合适的安全级别，就像大家在为新集群确定安全级别一样。
+<!--
+2. **By existing PodSecurityPolicies** - Using the
+   [Mapping PodSecurityPolicies to Pod Security Standards](/docs/reference/access-authn-authz/psp-to-pod-security-standards/)
+   reference you can map each
+   PSP to a Pod Security Standard level. If your PSPs aren't based on the Pod Security Standards, you
+   may need to decide between choosing a level that is at least as permissive as the PSP, and a
+   level that is at least as restrictive. You can see which PSPs are in use for pods in a given
+   namespace with this command:
+-->
+2. **根据现有的 PodSecurityPolicy 来确定** - 基于
+   [将 PodSecurityPolicy 映射到 Pod 安全性标准](/zh-cn/docs/reference/access-authn-authz/psp-to-pod-security-standards/)
+   参考资料，你可以将各个 PSP 映射到某个 Pod 安全性标准级别。如果你的 PSP 不是基于
+   Pod 安全性标准的，你可能或者需要选择一个至少与该 PSP 一样宽松的级别，
+   或者选择一个至少与其一样严格的级别。使用下面的命令你可以查看被 Pod 使用的 PSP 有哪些：
+
+   ```sh
+   kubectl get pods -n $NAMESPACE -o jsonpath="{.items[*].metadata.annotations.kubernetes\.io\/psp}" | tr " " "\n" | sort -u
+   ```
+<!--
+3. **By existing pods** - Using the strategies under [Verify the Pod Security level](#verify-pss-level),
+   you can test out both the Baseline and Restricted levels to see
+   whether they are sufficiently permissive for existing workloads, and chose the least-privileged
+   valid level.
+-->
+3. **根据现有 Pod 来确定** - 使用[检查 Pod 安全性级别](#verify-pss-level)小节所述策略，
+   你可以测试 Baseline 和 Restricted 级别，检查它们是否对于现有负载而言足够宽松，
+   并选择二者之间特权级较低的合法级别。
+
+{{< caution >}}
+<!--
+Options 2 & 3 above are based on _existing_ pods, and may miss workloads that aren't currently
+running, such as CronJobs, scale-to-zero workloads, or other workloads that haven't rolled out.
+-->
+上面的第二和第三种方案是基于 _现有_ Pod 的，因此可能错失那些当前未处于运行状态的
+Pod，例如 CronJobs、缩容到零的负载，或者其他尚未全面铺开的负载。
+{{< /caution >}}
+
+<!--
+### 3.b. Verify the Pod Security level {#verify-pss-level}
+-->
+### 3.b. 检查 Pod 安全性级别   {#verify-pss-level}
+
+<!--
+Once you have selected a Pod Security level for the namespace (or if you're trying several), it's a
+good idea to test it out first (you can skip this step if using the Privileged level). Pod Security
+includes several tools to help test and safely roll out profiles.
+-->
+一旦你已经为名字空间选择了 Pod 安全性级别（或者你正在尝试多个不同级别），
+先进行测试是个不错的主意（如果使用 Privileged 级别，则可略过此步骤）。
+Pod 安全性包含若干工具可用来测试和安全地推出安全性配置。
+
+<!--
+First, you can dry-run the policy, which will evaluate pods currently running in the namespace
+against the applied policy, without making the new policy take effect:
+-->
+首先，你可以试运行新策略，这个过程可以针对所应用的策略评估当前在名字空间中运行的
+Pod，但不会令新策略马上生效：
+
+```sh
+# $LEVEL 是要试运行的级别，可以是 "baseline" 或 "restricted"
+kubectl label --dry-run=server --overwrite ns $NAMESPACE pod-security.kubernetes.io/enforce=$LEVEL
+```
+
+<!--
+This command will return a warning for any _existing_ pods that are not valid under the proposed
+level.
+-->
+此命令会针对在所提议的级别下不再合法的所有 _现存_ Pod 返回警告信息。
+
+<!--
+The second option is better for catching workloads that are not currently running: audit mode. When
+running under audit-mode (as opposed to enforcing), pods that violate the policy level are recorded
+in the audit logs, which can be reviewed later after some soak time, but are not forbidden. Warning
+mode works similarly, but returns the warning to the user immediately. You can set the audit level
+on a namespace with this command:
+-->
+第二种办法在抓取当前未运行的负载方面表现的更好：audit 模式。
+运行于 audit 模式（而非 enforcing 模式）下时，违反策略级别的 Pod 会被记录到审计日志中，
+经过一段时间后可以在日志中查看到，但这些 Pod 不会被拒绝。
+warning 模式的工作方式与此类似，不过会立即向用户返回告警信息。
+你可以使用下面的命令为名字空间设置 audit 模式的级别：
+
+```sh
+kubectl label --overwrite ns $NAMESPACE pod-security.kubernetes.io/audit=$LEVEL
+```
+
+<!--
+If either of these approaches yield unexpected violations, you will need to either update the
+violating workloads to meet the policy requirements, or relax the namespace Pod Security level.
+-->
+当以上两种方法输出意料之外的违例状况时，你就需要或者更新发生违例的负载以满足策略需求，
+或者放宽名字空间上的 Pod 安全性级别。
+
+<!--
+### 3.c. Enforce the Pod Security level {#enforce-pod-security-level}
+-->
+### 3.c. 实施 Pod 安全性级别      {#enforce-pod-security-level}
+
+<!--
+When you are satisfied that the chosen level can safely be enforced on the namespace, you can update
+the namespace to enforce the desired level:
+-->
+当你对可以安全地在名字空间上实施的级别比较满意时，你可以更新名字空间来实施所期望的级别：
+
+```sh
+kubectl label --overwrite ns $NAMESPACE pod-security.kubernetes.io/enforce=$LEVEL
+```
+
+<!--
+### 3.d. Bypass PodSecurityPolicy {#bypass-psp}
+-->
+### 3.d. 绕过 PodSecurityPolicy {#bypass-psp}
+
+<!--
+Finally, you can effectively bypass PodSecurityPolicy at the namespace level by binding the fully
+{{< example file="policy/privileged-psp.yaml" >}}privileged PSP{{< /example >}} to all service
+accounts in the namespace.
+-->
+最后，你可以通过将
+{{< example file="policy/privileged-psp.yaml" >}}完全特权的 PSP{{< /example >}}
+绑定到某名字空间中所有服务账户上，在名字空间层面绕过所有 PodSecurityPolicy。
+
+```sh
+# 下面集群范围的命令只需要执行一次
+kubectl apply -f privileged-psp.yaml
+kubectl create clusterrole privileged-psp --verb use --resource podsecuritypolicies.policy --resource-name privileged
+
+# 逐个名字空间地禁用
+kubectl create -n $NAMESPACE rolebinding disable-psp --clusterrole privileged-psp --group system:serviceaccounts:$NAMESPACE
+```
+
+<!--
+Since the privileged PSP is non-mutating, and the PSP admission controller always
+prefers non-mutating PSPs, this will ensure that pods in this namespace are no longer being modified
+or restricted by PodSecurityPolicy.
+-->
+由于特权 PSP 是非变更性的，PSP 准入控制器总是优选非变更性的 PSP，
+上面的操作会确保对应名字空间中的所有 Pod 不再会被 PodSecurityPolicy
+所更改或限制。
+
+<!--
+The advantage to disabling PodSecurityPolicy on a per-namespace basis like this is if a problem
+arises you can easily roll the change back by deleting the RoleBinding. Just make sure the
+pre-existing PodSecurityPolicies are still in place!
+-->
+按上述操作逐个名字空间地禁用 PodSecurityPolicy 这种做法的好处是，
+如果出现问题，你可以很方便地通过删除 RoleBinding 来回滚所作的更改。
+你所要做的只是确保之前存在的 PodSecurityPolicy 还在。
+
+```sh
+# 撤销 PodSecurityPolicy 的禁用
+kubectl delete -n $NAMESPACE rolebinding disable-psp
+```
+
+<!--
+## 4. Review namespace creation processes {#review-namespace-creation-process}
+-->
+## 4. 审阅名字空间创建过程  {#review-namespace-creation-process}
+
+<!--
+Now that existing namespaces have been updated to enforce Pod Security Admission, you should ensure
+that your processes and/or policies for creating new namespaces are updated to ensure that an
+appropriate Pod Security profile is applied to new namespaces.
+-->
+现在，现有的名字空间都已被更新，强制实施 Pod 安全性准入，
+你应该确保你用来管控新名字空间创建的流程与/或策略也被更新，这样合适的 Pod
+安全性配置会被应用到新的名字空间上。
+
+<!--
+You can also statically configure the Pod Security admission controller to set a default enforce,
+audit, and/or warn level for unlabeled namespaces. See
+[Configure the Admission Controller](/docs/tasks/configure-pod-container/enforce-standards-admission-controller/#configure-the-admission-controller)
+for more information.
+-->
+你也可以静态配置 Pod 安全性准入控制器，为尚未打标签的名字空间设置默认的
+enforce、audit 与/或 warn 级别。详细信息可参阅
+[配置准入控制器](/zh-cn/docs/tasks/configure-pod-container/enforce-standards-admission-controller/#configure-the-admission-controller)
+页面。
+
+<!--
+## 5. Disable PodSecurityPolicy {#disable-psp}
+-->
+## 5. 禁用 PodSecurityPolicy    {#disable-psp}
+
+<!--
+Finally, you're ready to disable PodSecurityPolicy. To do so, you will need to modify the admission
+configuration of the API server:
+[How do I turn off an admission controller?](/docs/reference/access-authn-authz/admission-controllers/#how-do-i-turn-off-an-admission-controller).
+-->
+最后，你已为禁用 PodSecurityPolicy 做好准备。要禁用 PodSecurityPolicy，
+你需要更改 API 服务器上的准入配置：
+[我如何关闭某个准入控制器？](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#how-do-i-turn-off-an-admission-controller)
+
+<!--
+To verify that the PodSecurityPolicy admission controller is no longer enabled, you can manually run
+a test by impersonating a user without access to any PodSecurityPolicies (see the
+[PodSecurityPolicy example](/docs/concepts/security/pod-security-policy/#example)), or by verifying in
+the API server logs. At startup, the API server outputs log lines listing the loaded admission
+controller plugins:
+-->
+如果需要验证 PodSecurityPolicy 准入控制器不再被启用，你可以通过扮演某个无法访问任何
+PodSecurityPolicy 的用户来执行测试（参见
+[PodSecurityPolicy 示例](/zh-cn/docs/concepts/security/pod-security-policy/#example)），
+或者通过检查 API 服务器的日志来进行验证。在启动期间，API
+服务器会输出日志行，列举所挂载的准入控制器插件。
+
+```
+I0218 00:59:44.903329      13 plugins.go:158] Loaded 16 mutating admission controller(s) successfully in the following order: NamespaceLifecycle,LimitRanger,ServiceAccount,NodeRestriction,TaintNodesByCondition,Priority,DefaultTolerationSeconds,ExtendedResourceToleration,PersistentVolumeLabel,DefaultStorageClass,StorageObjectInUseProtection,RuntimeClass,DefaultIngressClass,MutatingAdmissionWebhook.
+I0218 00:59:44.903350      13 plugins.go:161] Loaded 14 validating admission controller(s) successfully in the following order: LimitRanger,ServiceAccount,PodSecurity,Priority,PersistentVolumeClaimResize,RuntimeClass,CertificateApproval,CertificateSigning,CertificateSubjectRestriction,DenyServiceExternalIPs,ValidatingAdmissionWebhook,ResourceQuota.
+```
+
+<!--
+You should see `PodSecurity` (in the validating admission controllers), and neither list should
+contain `PodSecurityPolicy`.
+-->
+你应该会看到 `PodSecurity`（在 validating admission controllers 列表中），
+并且两个列表中都不应该包含 `PodSecurityPolicy`。
+
+<!--
+Once you are certain the PSP admission controller is disabled (and after sufficient soak time to be
+confident you won't need to roll back), you are free to delete your PodSecurityPolicies and any
+associated Roles, ClusterRoles, RoleBindings and ClusterRoleBindings (just make sure they don't
+grant any other unrelated permissions).
+-->
+一旦你确定 PSP 准入控制器已被禁用（并且这种状况已经持续了一段时间，
+这样你才会比较确定不需要回滚），你就可以放心地删除你的 PodSecurityPolicy
+以及所关联的所有 Role、ClusterRole、RoleBinding、ClusterRoleBinding 等对象
+（仅需要确保他们不再授予其他不相关的访问权限）。
+
diff --git a/content/zh-cn/docs/tasks/configure-pod-container/pull-image-private-registry.md b/content/zh-cn/docs/tasks/configure-pod-container/pull-image-private-registry.md
new file mode 100644
index 0000000000..69a10a8035
--- /dev/null
+++ b/content/zh-cn/docs/tasks/configure-pod-container/pull-image-private-registry.md
@@ -0,0 +1,372 @@
+---
+title: 从私有仓库拉取镜像
+content_type: task
+weight: 100
+---
+
+<!--
+title: Pull an Image from a Private Registry
+content_type: task
+weight: 100
+-->
+
+<!-- overview -->
+
+<!--
+This page shows how to create a Pod that uses a
+{{< glossary_tooltip text="Secret" term_id="secret" >}} to pull an image 
+from a private container image registry or repository. There are many private 
+registries in use. This task uses [Docker Hub](https://www.docker.com/products/docker-hub)
+as an example registry.
+-->
+本文介绍如何使用 {{< glossary_tooltip text="Secret" term_id="secret" >}} 
+从私有的镜像仓库或代码仓库拉取镜像来创建 Pod。
+有很多私有镜像仓库正在使用中。这个任务使用的镜像仓库是
+[Docker Hub](https://www.docker.com/products/docker-hub)。
+
+{{% thirdparty-content single="true" %}}
+
+## {{% heading "prerequisites" %}}
+
+* {{< include "task-tutorial-prereqs.md" >}}
+
+<!--
+* To do this exercise, you need the `docker` command line tool, and a
+  [Docker ID](https://docs.docker.com/docker-id/) for which you know the password.
+* If you are using a different private container registry, you need the command 
+  line tool for that registry and any login information for the registry. 
+-->
+
+* 要进行此练习，你需要 `docker` 命令行工具和一个知道密码的 
+[Docker ID](https://docs.docker.com/docker-id/)。
+* 如果你要使用不同的私有的镜像仓库，你需要有对应镜像仓库的命令行工具和登录信息。
+
+<!-- steps -->
+
+<!--
+## Log in to Docker
+
+On your laptop, you must authenticate with a registry in order to pull a private image.
+-->
+## 登录 Docker 镜像仓库  {#log-in-to-docker}
+
+在个人电脑上，要想拉取私有镜像必须在镜像仓库上进行身份验证。
+
+<!--
+Use the `docker` tool to log in to Docker Hub. See the _log in_ section of
+[Docker ID accounts](https://docs.docker.com/docker-id/#log-in) for more information.
+-->
+使用 `docker` 命令工具来登录到 Docker Hub。
+更多详细信息，请查阅
+[Docker ID accounts](https://docs.docker.com/docker-id/#log-in) 中的 _log in_ 部分。
+
+```shell
+docker login
+```
+
+<!--
+When prompted, enter your Docker ID, and then the credential you want to use (access token,
+or the password for your Docker ID).
+
+The login process creates or updates a `config.json` file that holds an authorization token. Review [how Kubernetes interprets this file](/docs/concepts/containers/images#config-json). 
+
+View the `config.json` file:
+-->
+当出现提示时，输入你的 Docker ID 和登录凭证（访问令牌、
+或 Docker ID 的密码）。
+
+登录过程会创建或更新保存有授权令牌的 `config.json` 文件。
+查看 [Kubernetes 中如何解析这个文件](/zh-cn/docs/concepts/containers/images#config-json)。
+
+查看 `config.json` 文件：
+
+```shell
+cat ~/.docker/config.json
+```
+
+<!--
+The output contains a section similar to this:
+-->
+输出结果包含类似于以下内容的部分：
+
+```json
+{
+    "auths": {
+        "https://index.docker.io/v1/": {
+            "auth": "c3R...zE2"
+        }
+    }
+}
+```
+
+<!--
+If you use a Docker credentials store, you won't see that `auth` entry but a `credsStore` entry with the name of the store as value.
+-->
+{{< note >}}
+如果使用 Docker 凭证仓库，则不会看到 `auth` 条目，看到的将是以仓库名称作为值的 `credsStore` 条目。
+{{< /note >}}
+
+<!--
+## Create a Secret based on existing credentials {#registry-secret-existing-credentials}
+
+A Kubernetes cluster uses the Secret of `kubernetes.io/dockerconfigjson` type to authenticate with
+a container registry to pull a private image.
+
+If you already ran `docker login`, you can copy
+that credential into Kubernetes:
+-->
+## 创建一个基于现有凭证的 Secret  {#registry-secret-existing-credentials}
+
+Kubernetes 集群使用 `kubernetes.io/dockerconfigjson` 类型的
+Secret 来通过镜像仓库的身份验证，进而提取私有镜像。
+
+如果你已经运行了 `docker login` 命令，你可以复制该镜像仓库的凭证到 Kubernetes:
+
+```shell
+kubectl create secret generic regcred \
+    --from-file=.dockerconfigjson=<path/to/.docker/config.json> \
+    --type=kubernetes.io/dockerconfigjson
+```
+
+<!--
+If you need more control (for example, to set a namespace or a label on the new
+secret) then you can customise the Secret before storing it.
+Be sure to:
+
+- set the name of the data item to `.dockerconfigjson`
+- base64 encode the Docker configuration file and then paste that string, unbroken
+  as the value for field `data[".dockerconfigjson"]`
+- set `type` to `kubernetes.io/dockerconfigjson`
+
+Example:
+-->
+如果你需要更多的设置（例如，为新 Secret 设置名字空间或标签），
+则可以在存储 Secret 之前对它进行自定义。
+请务必：
+
+- 将 data 项中的名称设置为 `.dockerconfigjson`
+- 使用 base64 编码方法对 Docker 配置文件进行编码，然后粘贴该字符串的内容，作为字段
+  `data[".dockerconfigjson"]` 的值
+- 将 `type` 设置为 `kubernetes.io/dockerconfigjson`
+
+示例：
+
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: myregistrykey
+  namespace: awesomeapps
+data:
+  .dockerconfigjson: UmVhbGx5IHJlYWxseSByZWVlZWVlZWVlZWFhYWFhYWFhYWFhYWFhYWFhYWFhYWFhYWFhYWxsbGxsbGxsbGxsbGxsbGxsbGxsbGxsbGxsbGxsbGx5eXl5eXl5eXl5eXl5eXl5eXl5eSBsbGxsbGxsbGxsbGxsbG9vb29vb29vb29vb29vb29vb29vb29vb29vb25ubm5ubm5ubm5ubm5ubm5ubm5ubm5ubmdnZ2dnZ2dnZ2dnZ2dnZ2dnZ2cgYXV0aCBrZXlzCg==
+type: kubernetes.io/dockerconfigjson
+```
+
+<!--
+If you get the error message `error: no objects passed to create`, it may mean the base64 encoded string is invalid.
+If you get an error message like `Secret "myregistrykey" is invalid: data[.dockerconfigjson]: invalid value ...`, it means
+the base64 encoded string in the data was successfully decoded, but could not be parsed as a `.docker/config.json` file.
+-->
+如果你收到错误消息：`error: no objects passed to create`，
+这可能意味着 base64 编码的字符串是无效的。 如果你收到类似
+`Secret "myregistrykey" is invalid: data[.dockerconfigjson]: invalid value ...`
+的错误消息，则表示数据中的 base64 编码字符串已成功解码，
+但无法解析为 `.docker/config.json` 文件。
+
+<!--
+## Create a Secret by providing credentials on the command line
+
+Create this Secret, naming it `regcred`:
+-->
+## 在命令行上提供凭证来创建 Secret  {#create-a-secret-by-providing-credentials-on-the-command-line}
+
+创建 Secret，命名为 `regcred`：
+
+<!--
+kubectl create secret docker-registry regcred --docker-server=<your-registry-server> --docker-username=<your-name> --docker-password=<your-pword> --docker-email=<your-email>
+-->
+```shell
+kubectl create secret docker-registry regcred \
+  --docker-server=<你的镜像仓库服务器> \
+  --docker-username=<你的用户名> \
+  --docker-password=<你的密码> \
+  --docker-email=<你的邮箱地址>
+```
+
+<!--
+where:
+
+* `<your-registry-server>` is your Private Docker Registry FQDN.
+  Use `https://index.docker.io/v1/` for DockerHub.
+* `<your-name>` is your Docker username.
+* `<your-pword>` is your Docker password.
+* `<your-email>` is your Docker email.
+
+You have successfully set your Docker credentials in the cluster as a Secret called `regcred`.
+-->
+在这里：
+
+* `<your-registry-server>` 是你的私有 Docker 仓库全限定域名（FQDN）。
+  DockerHub 使用 `https://index.docker.io/v1/`。
+* `<your-name>` 是你的 Docker 用户名。
+* `<your-pword>` 是你的 Docker 密码。
+* `<your-email>` 是你的 Docker 邮箱。
+
+这样你就成功地将集群中的 Docker 凭证设置为名为 `regcred` 的 Secret。
+
+<!--
+Typing secrets on the command line may store them in your shell history unprotected, and
+those secrets might also be visible to other users on your PC during the time that
+`kubectl` is running.
+-->
+{{< note >}}
+在命令行上键入 Secret 可能会将它们存储在你的 shell 历史记录中而不受保护，
+并且这些 Secret 信息也可能在 `kubectl` 运行期间对你 PC 上的其他用户可见。
+{{< /note >}}
+
+<!--
+## Inspecting the Secret `regcred`
+
+To understand the contents of the `regcred` Secret you created, start by viewing the Secret in YAML format:
+-->
+## 检查 Secret `regcred`  {#inspecting-the-secret-regcred}
+
+要了解你创建的 `regcred` Secret 的内容，可以用 YAML 格式进行查看：
+
+```shell
+kubectl get secret regcred --output=yaml
+```
+
+<!--
+The output is similar to this:
+-->
+输出和下面类似：
+
+```yaml
+apiVersion: v1
+data:
+  .dockerconfigjson: eyJodHRwczovL2luZGV4L ... J0QUl6RTIifX0=
+kind: Secret
+metadata:
+  ...
+  name: regcred
+  ...
+data:
+  .dockerconfigjson: eyJodHRwczovL2luZGV4L ... J0QUl6RTIifX0=
+type: kubernetes.io/dockerconfigjson
+```
+
+<!--
+The value of the `.dockerconfigjson` field is a base64 representation of your Docker credentials.
+
+To understand what is in the `.dockerconfigjson` field, convert the secret data to a
+readable format:
+-->
+`.dockerconfigjson` 字段的值是 Docker 凭证的 base64 表示。
+
+要了解 `dockerconfigjson` 字段中的内容，请将 Secret 数据转换为可读格式：
+
+```shell
+kubectl get secret regcred --output="jsonpath={.data.\.dockerconfigjson}" | base64 --decode
+```
+
+<!--
+The output is similar to this:
+-->
+输出和下面类似：
+
+```json
+{"auths":{"your.private.registry.example.com":{"username":"janedoe","password":"xxxxxxxxxxx","email":"jdoe@example.com","auth":"c3R...zE2"}}}
+```
+
+<!--
+To understand what is in the `auth` field, convert the base64-encoded data to a readable format:
+-->
+要了解 `auth` 字段中的内容，请将 base64 编码过的数据转换为可读格式：
+
+```shell
+echo "c3R...zE2" | base64 --decode
+```
+
+<!--
+The output, username and password concatenated with a `:`, is similar to this:
+-->
+输出结果中，用户名和密码用 `:` 链接，类似下面这样：
+
+```none
+janedoe:xxxxxxxxxxx
+```
+
+<!--
+Notice that the Secret data contains the authorization token similar to your local `~/.docker/config.json` file.
+
+You have successfully set your Docker credentials as a Secret called `regcred` in the cluster.
+-->
+注意，Secret 数据包含与本地 `~/.docker/config.json` 文件类似的授权令牌。
+
+这样你就已经成功地将 Docker 凭证设置为集群中的名为 `regcred` 的 Secret。
+
+<!--
+## Create a Pod that uses your Secret
+
+Here is a manifest for an example Pod that needs access to your Docker credentials in `regcred`:
+-->
+## 创建一个使用你的 Secret 的 Pod  {#create-a-pod-that-uses-your-secret}
+
+下面是一个 Pod 配置清单示例，该示例中 Pod 需要访问你的 Docker 凭证 `regcred`：
+
+{{< codenew file="pods/private-reg-pod.yaml" >}}
+
+<!-- 
+Download the above file onto your computer:
+-->
+
+将上述文件下载到你的计算机中：
+
+```shell
+curl -L -O my-private-reg-pod.yaml https://k8s.io/examples/pods/private-reg-pod.yaml
+```
+
+<!--
+In file `my-private-reg-pod.yaml`, replace `<your-private-image>` with the path to an image in a private registry such as:
+-->
+在`my-private-reg-pod.yaml` 文件中，使用私有仓库的镜像路径替换 `<your-private-image>`，例如：
+
+```none
+your.private.registry.example.com/janedoe/jdoe-private:v1
+```
+
+<!--
+To pull the image from the private registry, Kubernetes needs credentials.
+The `imagePullSecrets` field in the configuration file specifies that
+Kubernetes should get the credentials from a Secret named `regcred`.
+
+Create a Pod that uses your Secret, and verify that the Pod is running:
+-->
+要从私有仓库拉取镜像，Kubernetes 需要凭证。
+配置文件中的 `imagePullSecrets` 字段表明 Kubernetes 应该通过名为 `regcred` 的 Secret 获取凭证。
+
+创建使用了你的 Secret 的 Pod，并检查它是否正常运行：
+
+```shell
+kubectl apply -f my-private-reg-pod.yaml
+kubectl get pod private-reg
+```
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* Learn more about [Secrets](/docs/concepts/configuration/secret/)
+  * or read the API reference for {{< api-reference page="config-and-storage-resources/secret-v1" >}}
+* Learn more about [using a private registry](/docs/concepts/containers/images/#using-a-private-registry).
+* Learn more about [adding image pull secrets to a service account](/docs/tasks/configure-pod-container/configure-service-account/#add-imagepullsecrets-to-a-service-account).
+* See [kubectl create secret docker-registry](/docs/reference/generated/kubectl/kubectl-commands/#-em-secret-docker-registry-em-).
+* See the `imagePullSecrets` field within the [container definitions](/docs/reference/kubernetes-api/workload-resources/pod-v1/#containers) of a Pod
+-->
+
+* 进一步了解 [Secrets](/zh-cn/docs/concepts/configuration/secret/)
+  * 或阅读 {{< api-reference page="config-and-storage-resources/secret-v1" >}} 的 API 参考
+* 进一步了解 [使用私有仓库](/zh-cn/docs/concepts/containers/images/#using-a-private-registry)
+* 进一步了解 [为服务账户添加拉取镜像凭证](/zh-cn/docs/tasks/configure-pod-container/configure-service-account/#add-imagepullsecrets-to-a-service-account)
+* 查看 [kubectl 创建 docker-registry 凭证](/docs/reference/generated/kubectl/kubectl-commands/#-em-secret-docker-registry-em-)
+* 查看 Pod [容器定义](/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1/#containers)中的 `imagePullSecrets` 字段。
diff --git a/content/zh/docs/tasks/configure-pod-container/quality-service-pod.md b/content/zh-cn/docs/tasks/configure-pod-container/quality-service-pod.md
similarity index 81%
rename from content/zh/docs/tasks/configure-pod-container/quality-service-pod.md
rename to content/zh-cn/docs/tasks/configure-pod-container/quality-service-pod.md
index d2ae4a6b2f..b376ef2134 100644
--- a/content/zh/docs/tasks/configure-pod-container/quality-service-pod.md
+++ b/content/zh-cn/docs/tasks/configure-pod-container/quality-service-pod.md
@@ -59,8 +59,12 @@ kubectl create namespace qos-example
 
 For a Pod to be given a QoS class of Guaranteed:
 
-* Every Container, including init containers, in the Pod must have a memory limit and a memory request, and they must be the same.
-* Every Container, including init containers, in the Pod must have a CPU limit and a CPU request, and they must be the same.
+* Every Container in the Pod must have a memory limit and a memory request.
+* For every Container in the Pod, the memory limit must equal the memory request.
+* Every Container in the Pod must have a CPU limit and a CPU request.
+* For every Container in the Pod, the CPU limit must equal the CPU request.
+
+These restrictions apply to init containers and app containers equally.
 
 Here is the configuration file for a Pod that has one Container. The Container has a memory limit and a
 memory request, both equal to 200 MiB. The Container has a CPU limit and a CPU request, both equal to 700 milliCPU:
@@ -69,8 +73,12 @@ memory request, both equal to 200 MiB. The Container has a CPU limit and a CPU r
 
 对于 QoS 类为 Guaranteed 的 Pod：
 
-* Pod 中的每个容器，包含初始化容器，必须指定内存请求和内存限制，并且两者要相等。
-* Pod 中的每个容器，包含初始化容器，必须指定 CPU 请求和 CPU 限制，并且两者要相等。
+* Pod 中的每个容器都必须指定内存限制和内存请求。
+* 对于 Pod 中的每个容器，内存限制必须等于内存请求。
+* Pod 中的每个容器都必须指定 CPU 限制和 CPU 请求。
+* 对于 Pod 中的每个容器，CPU 限制必须等于 CPU 请求。
+
+这些限制同样适用于初始化容器和应用程序容器。
 
 下面是包含一个容器的 Pod 配置文件。
 容器设置了内存请求和内存限制，值都是 200 MiB。
@@ -123,13 +131,13 @@ status:
   qosClass: Guaranteed
 ```
 
+{{< note >}}
 <!--
 If a Container specifies its own memory limit, but does not specify a memory request, Kubernetes
 automatically assigns a memory request that matches the limit. Similarly, if a Container specifies its own
 CPU limit, but does not specify a CPU request, Kubernetes automatically assigns a CPU request that matches
 the limit.
 -->
-{{< note >}}
 如果容器指定了自己的内存限制，但没有指定内存请求，Kubernetes 会自动为它指定与内存限制匹配的内存请求。
 同样，如果容器指定了自己的 CPU 限制，但没有指定 CPU 请求，Kubernetes 会自动为它指定与 CPU 限制匹配的 CPU 请求。
 {{< /note >}}
@@ -150,7 +158,7 @@ kubectl delete pod qos-demo --namespace=qos-example
 A Pod is given a QoS class of Burstable if:
 
 * The Pod does not meet the criteria for QoS class Guaranteed.
-* At least one Container in the Pod has a memory or CPU request.
+* At least one Container in the Pod has a memory or CPU request or limit.
 
 Here is the configuration file for a Pod that has one Container. The Container has a memory limit of 200 MiB
 and a memory request of 100 MiB.
@@ -160,7 +168,7 @@ and a memory request of 100 MiB.
 如果满足下面条件，将会指定 Pod 的 QoS 类为 Burstable：
 
 * Pod 不符合 Guaranteed QoS 类的标准。
-* Pod 中至少一个容器具有内存或 CPU 请求。
+* Pod 中至少一个容器具有内存或 CPU 的请求或限制。
 
 下面是包含一个容器的 Pod 配置文件。
 容器设置了内存限制 200 MiB 和内存请求 100 MiB。
@@ -370,9 +378,9 @@ kubectl delete namespace qos-example
 -->
 ### 应用开发者参考
 
-* [为 Pod 和容器分配内存资源](/zh/docs/tasks/configure-pod-container/assign-memory-resource/)
+* [为 Pod 和容器分配内存资源](/zh-cn/docs/tasks/configure-pod-container/assign-memory-resource/)
 
-* [为 Pod 和容器分配 CPU 资源](/zh/docs/tasks/configure-pod-container/assign-cpu-resource/)
+* [为 Pod 和容器分配 CPU 资源](/zh-cn/docs/tasks/configure-pod-container/assign-cpu-resource/)
 
 <!--
 ### For cluster administrators
@@ -396,20 +404,20 @@ kubectl delete namespace qos-example
 
 ### 集群管理员参考
 
-* [为命名空间配置默认的内存请求和限制](/zh/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
-* [为命名空间配置默认的 CPU 请求和限制](/zh/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace)
+* [为命名空间配置默认的内存请求和限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
+* [为命名空间配置默认的 CPU 请求和限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace)
 
-* [为命名空间配置最小和最大内存限制](/zh/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)
+* [为命名空间配置最小和最大内存限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)
 
-* [为命名空间配置最小和最大 CPU 限制](/zh/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
+* [为命名空间配置最小和最大 CPU 限制](/zh-cn/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
 
-* [为命名空间配置内存和 CPU 配额](/zh/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
+* [为命名空间配置内存和 CPU 配额](/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
 
-* [为命名空间配置 Pod 配额](/zh/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace/)
+* [为命名空间配置 Pod 配额](/zh-cn/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace/)
 
-* [为 API 对象配置配额](/zh/docs/tasks/administer-cluster/quota-api-object/)
+* [为 API 对象配置配额](/zh-cn/docs/tasks/administer-cluster/quota-api-object/)
 
-* [控制节点上的拓扑管理策略](/zh/docs/tasks/administer-cluster/topology-manager/)
+* [控制节点上的拓扑管理策略](/zh-cn/docs/tasks/administer-cluster/topology-manager/)
 
 
 
diff --git a/content/zh/docs/tasks/configure-pod-container/security-context.md b/content/zh-cn/docs/tasks/configure-pod-container/security-context.md
similarity index 72%
rename from content/zh/docs/tasks/configure-pod-container/security-context.md
rename to content/zh-cn/docs/tasks/configure-pod-container/security-context.md
index 42f07b5ceb..19a51afb15 100644
--- a/content/zh/docs/tasks/configure-pod-container/security-context.md
+++ b/content/zh-cn/docs/tasks/configure-pod-container/security-context.md
@@ -1,5 +1,5 @@
 ---
-title: 为 Pod 或容器配置安全性上下文
+title: 为 Pod 或容器配置安全上下文
 content_type: task
 weight: 80
 ---
@@ -21,7 +21,8 @@ a Pod or Container. Security context settings include, but are not limited to:
 
 * Discretionary Access Control: Permission to access an object, like a file, is based on
   [user ID (UID) and group ID (GID)](https://wiki.archlinux.org/index.php/users_and_groups).
-* [Security Enhanced Linux (SELinux)](https://en.wikipedia.org/wiki/Security-Enhanced_Linux): Objects are assigned security labels.
+* [Security Enhanced Linux (SELinux)](https://en.wikipedia.org/wiki/Security-Enhanced_Linux):
+  Objects are assigned security labels.
 * Running as privileged or unprivileged.
 * [Linux Capabilities](https://linux-audit.com/linux-capabilities-hardening-linux-binaries-by-removing-setuid/): 
   Give a process some privileges, but not all the privileges of the root user.
@@ -29,8 +30,8 @@ a Pod or Container. Security context settings include, but are not limited to:
 安全上下文（Security Context）定义 Pod 或 Container 的特权与访问控制设置。
 安全上下文包括但不限于：
 
-* 自主访问控制（Discretionary Access Control）：基于
-  [用户 ID（UID）和组 ID（GID）](https://wiki.archlinux.org/index.php/users_and_groups).
+* 自主访问控制（Discretionary Access Control）：
+  基于[用户 ID（UID）和组 ID（GID）](https://wiki.archlinux.org/index.php/users_and_groups)
   来判定对对象（例如文件）的访问权限。
 * [安全性增强的 Linux（SELinux）](https://zh.wikipedia.org/wiki/%E5%AE%89%E5%85%A8%E5%A2%9E%E5%BC%BA%E5%BC%8FLinux)：
   为对象赋予安全性标签。
@@ -38,38 +39,42 @@ a Pod or Container. Security context settings include, but are not limited to:
 * [Linux 权能](https://linux-audit.com/linux-capabilities-hardening-linux-binaries-by-removing-setuid/): 
   为进程赋予 root 用户的部分特权而非全部特权。
 <!--
-* [AppArmor](/docs/tutorials/clusters/apparmor/): Use program profiles to restrict the capabilities of individual programs.
-* [Seccomp](https://en.wikipedia.org/wiki/Seccomp): Filter a process's system calls.
-* AllowPrivilegeEscalation: Controls whether a process can gain more
-  privileges than its parent process. This bool directly controls whether the
+* [AppArmor](/docs/tutorials/security/apparmor/):
+  Use program profiles to restrict the capabilities of individual programs.
+* [Seccomp](/docs/tutorials/security/seccomp/): Filter a process's system calls.
+* `allowPrivilegeEscalation`: Controls whether a process can gain more privileges than
+  its parent process. This bool directly controls whether the
   [`no_new_privs`](https://www.kernel.org/doc/Documentation/prctl/no_new_privs.txt)
-  flag gets set on the container process. AllowPrivilegeEscalation is true
-  always when the container is: 1) run as Privileged OR 2) has `CAP_SYS_ADMIN`.
+  flag gets set on the container process.
+  `allowPrivilegeEscalation` is always true
+  when the container:
+
+  - is run as privileged, or
+  - has `CAP_SYS_ADMIN`
+
 * readOnlyRootFilesystem: Mounts the container's root filesystem as read-only.
 -->
-* [AppArmor](/zh/docs/tutorials/clusters/apparmor/)：使用程序框架来限制个别程序的权能。
-* [Seccomp](https://en.wikipedia.org/wiki/Seccomp)：过滤进程的系统调用。
-* AllowPrivilegeEscalation：控制进程是否可以获得超出其父进程的特权。
+* [AppArmor](/zh-cn/docs/tutorials/security/apparmor/)：使用程序配置来限制个别程序的权能。
+* [Seccomp](/zh-cn/docs/tutorials/security/seccomp/)：过滤进程的系统调用。
+* `allowPrivilegeEscalation`：控制进程是否可以获得超出其父进程的特权。
   此布尔值直接控制是否为容器进程设置
   [`no_new_privs`](https://www.kernel.org/doc/Documentation/prctl/no_new_privs.txt)标志。
-  当容器以特权模式运行或者具有 `CAP_SYS_ADMIN` 权能时，AllowPrivilegeEscalation 总是为 true。
+  当容器满足一下条件之一时，`allowPrivilegeEscalation` 总是为 true：
+
+  - 以特权模式运行，或者
+  - 具有 `CAP_SYS_ADMIN` 权能
+
 * readOnlyRootFilesystem：以只读方式加载容器的根文件系统。
 
 <!--
 The above bullets are not a complete set of security context settings - please see
 [SecurityContext](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#securitycontext-v1-core)
 for a comprehensive list.
-
-For more information about security mechanisms in Linux, see
-[Overview of Linux Kernel Security Features](https://www.linux.com/learn/overview-linux-kernel-security-features)
 -->
 以上条目不是安全上下文设置的完整列表 -- 请参阅
 [SecurityContext](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#securitycontext-v1-core)
 了解其完整列表。
 
-关于在 Linux 系统中的安全机制的更多信息，可参阅
-[Linux 内核安全性能力概述](https://www.linux.com/learn/overview-linux-kernel-security-features)。
-
 ## {{% heading "prerequisites" %}}
 
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
@@ -213,19 +218,24 @@ Run the following command:
 id
 ```
 
-输出为：
-```
+<!--
+The output is similar to this:
+-->
+输出类似于：
+
+```none
 uid=1000 gid=3000 groups=2000
 ```
 
 <!--
-You will see that gid is 3000 which is same as `runAsGroup` field. If the `runAsGroup` was omitted the gid would
-remain as 0(root) and the process will be able to interact with files that are owned by root(0) group and that have
-the required group permissions for root(0) group.
+From the output, you can see that `gid` is 3000 which is same as the `runAsGroup` field.
+If the `runAsGroup` was omitted, the `gid` would remain as 0 (root) and the process will
+be able to interact with files that are owned by the root(0) group and groups that have
+the required group permissions for the root (0) group.
 
 Exit your shell:
 -->
-你会看到 `gid` 值为 3000，也就是 `runAsGroup` 字段的值。
+从输出中你会看到 `gid` 值为 3000，也就是 `runAsGroup` 字段的值。
 如果 `runAsGroup` 被忽略，则 `gid` 会取值 0（root），而进程就能够与 root
 用户组所拥有以及要求 root 用户组访问权限的文件交互。
 
@@ -240,7 +250,7 @@ exit
 -->
 ## 为 Pod 配置卷访问权限和属主变更策略
 
-{{< feature-state for_k8s_version="v1.20" state="beta" >}}
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
 
 <!--
 By default, Kubernetes recursively changes ownership and permissions for the contents of each
@@ -251,18 +261,21 @@ slowing Pod startup. You can use the `fsGroupChangePolicy` field inside a `secur
 to control the way that Kubernetes checks and manages ownership and permissions
 for a volume.
 -->
-默认情况下，Kubernetes 在挂载一个卷时，会递归地更改每个卷中的内容的属主和访问权限，使之与 Pod
-的 `securityContext` 中指定的 `fsGroup` 匹配。
+默认情况下，Kubernetes 在挂载一个卷时，会递归地更改每个卷中的内容的属主和访问权限，
+使之与 Pod 的 `securityContext` 中指定的 `fsGroup` 匹配。
 对于较大的数据卷，检查和变更属主与访问权限可能会花费很长时间，降低 Pod 启动速度。
 你可以在 `securityContext` 中使用 `fsGroupChangePolicy` 字段来控制 Kubernetes
 检查和管理卷属主和访问权限的方式。
 
 <!--
-**fsGroupChangePolicy** -  `fsGroupChangePolicy` defines behavior for changing ownership and permission of the volume
-before being exposed inside a Pod. This field only applies to volume types that support
-`fsGroup` controlled ownership and permissions. This field has two possible values:
+**fsGroupChangePolicy** -  `fsGroupChangePolicy` defines behavior for changing ownership
+  and permission of the volume before being exposed inside a Pod.
+  This field only applies to volume types that support `fsGroup` controlled ownership and permissions.
+  This field has two possible values:
 
-* _OnRootMismatch_: Only change permissions and ownership if permission and ownership of root directory does not match with expected permissions of the volume. This could help shorten the time it takes to change ownership and permission of a volume.
+* _OnRootMismatch_: Only change permissions and ownership if permission and ownership of
+  root directory does not match with expected permissions of the volume.
+  This could help shorten the time it takes to change ownership and permission of a volume.
 * _Always_: Always change permission and ownership of the volume when volume is mounted.
 
 For example:
@@ -293,12 +306,48 @@ This field has no effect on ephemeral volume types such as
 and [`emptydir`](/docs/concepts/storage/volumes/#emptydir).
 -->
 {{< note >}}
-此字段对于[`secret`](/zh/docs/concepts/storage/volumes/#secret)、
-[`configMap`](/zh/docs/concepts/storage/volumes/#configmap)
-和 [`emptydir`](/zh/docs/concepts/storage/volumes/#emptydir)
+此字段对于 [`secret`](/zh-cn/docs/concepts/storage/volumes/#secret)、
+[`configMap`](/zh-cn/docs/concepts/storage/volumes/#configmap)
+和 [`emptydir`](/zh-cn/docs/concepts/storage/volumes/#emptydir)
 这类临时性存储无效。
 {{< /note >}}
 
+<!--
+## Delegating volume permission and ownership change to CSI driver
+-->
+## 将卷权限和所有权更改委派给 CSI 驱动程序
+{{< feature-state for_k8s_version="v1.23" state="beta" >}}
+
+<!--
+If you deploy a [Container Storage Interface (CSI)](https://github.com/container-storage-interface/spec/blob/master/spec.md)
+driver which supports the `VOLUME_MOUNT_GROUP` `NodeServiceCapability`, the
+process of setting file ownership and permissions based on the
+`fsGroup` specified in the `securityContext` will be performed by the CSI driver
+instead of Kubernetes, provided that the `DelegateFSGroupToCSIDriver` Kubernetes
+feature gate is enabled. In this case, since Kubernetes doesn't perform any
+ownership and permission change, `fsGroupChangePolicy` does not take effect, and
+as specified by CSI, the driver is expected to mount the volume with the
+provided `fsGroup`, resulting in a volume that is readable/writable by the
+`fsGroup`.
+-->
+如果你部署了一个[容器存储接口 (CSI)](https://github.com/container-storage-interface/spec/blob/master/spec.md)
+驱动，而该驱动支持 `VOLUME_MOUNT_GROUP` `NodeServiceCapability`，
+在 `securityContext` 中指定 `fsGroup` 来设置文件所有权和权限的过程将由 CSI
+驱动而不是 Kubernetes 来执行，前提是 Kubernetes 的 `DelegateFSGroupToCSIDriver` 
+特性门控已启用。在这种情况下，由于 Kubernetes 不执行任何所有权和权限更改，
+`fsGroupChangePolicy` 不会生效，并且按照 CSI 的规定，CSI 驱动应该使用所指定的
+`fsGroup` 来挂载卷，从而生成了一个对 `fsGroup` 可读/可写的卷.
+
+<!--
+Please refer to the [KEP](https://github.com/gnufied/enhancements/blob/master/keps/sig-storage/2317-fsgroup-on-mount/README.md)
+and the description of the `VolumeCapability.MountVolume.volume_mount_group`
+field in the [CSI spec](https://github.com/container-storage-interface/spec/blob/master/spec.md#createvolume)
+for more information.
+-->
+更多的信息请参考 [KEP](https://github.com/gnufied/enhancements/blob/master/keps/sig-storage/2317-fsgroup-on-mount/README.md)
+和 [CSI 规范](https://github.com/container-storage-interface/spec/blob/master/spec.md#createvolume) 
+中的字段 `VolumeCapability.MountVolume.volume_mount_group` 的描述。
+
 <!--
 ## Set the security context for a Container
 
@@ -317,9 +366,8 @@ and the Container have a `securityContext` field:
 若要为 Container 设置安全性配置，可以在 Container 清单中包含 `securityContext` 
 字段。`securityContext` 字段的取值是一个
 [SecurityContext](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#securitycontext-v1-core)
-对象。你为 Container 设置的安全性配置仅适用于该容器本身，并且所指定的设置
-在与 Pod 层面设置的内容发生重叠时，会重载后者。Container 层面的设置不会影响
-到 Pod 的卷。
+对象。你为 Container 设置的安全性配置仅适用于该容器本身，并且所指定的设置在与
+Pod 层面设置的内容发生重叠时，会重载后者。Container 层面的设置不会影响到 Pod 的卷。
 
 下面是一个 Pod 的配置文件，其中包含一个 Container。Pod 和 Container 都有
 `securityContext` 字段：
@@ -367,7 +415,7 @@ The output shows that the processes are running as user 2000. This is the value
 of `runAsUser` specified for the Container. It overrides the value 1000 that is
 specified for the Pod.
 -->
-输出显示进程以用户 2000 账号运行。该值是在 Container 的 `runAsUser` 中设置的。
+输出显示进程以用户 2000 运行。该值是在 Container 的 `runAsUser` 中设置的。
 该设置值重载了 Pod 层面所设置的值 1000。
 
 ```
@@ -399,12 +447,12 @@ Here is configuration file that does not add or remove any Container capabilitie
 -->
 ## 为 Container 设置权能   {#set-capabilities-for-a-container}
 
-使用 [Linux 权能](https://man7.org/linux/man-pages/man7/capabilities.7.html)，你可以
-赋予进程 root 用户所拥有的某些特权，但不必赋予其全部特权。
-要为 Container 添加或移除 Linux 权能，可以在 Container 清单的 `securityContext` 节
-包含 `capabilities` 字段。
+使用 [Linux 权能](https://man7.org/linux/man-pages/man7/capabilities.7.html)，
+你可以赋予进程 root 用户所拥有的某些特权，但不必赋予其全部特权。
+要为 Container 添加或移除 Linux 权能，可以在 Container 清单的 `securityContext`
+节包含 `capabilities` 字段。
 
-首先，查看不包含 `capabilities` 字段时候会发生什么。
+首先，看一下不包含 `capabilities` 字段时候会发生什么。
 下面是一个配置文件，其中没有添加或移除容器的权能：
 
 {{< codenew file="pods/security/security-context-3.yaml" >}}
@@ -563,12 +611,15 @@ for definitions of the capability constants.
 了解权能常数的定义。
 
 <!--
-Linux capability constants have the form `CAP_XXX`. But when you list capabilities in your Container manifest, you must omit the `CAP_` portion of the constant. For example, to add `CAP_SYS_TIME`, include `SYS_TIME` in your list of capabilities.
+Linux capability constants have the form `CAP_XXX`.
+But when you list capabilities in your Container manifest, you must
+omit the `CAP_` portion of the constant.
+For example, to add `CAP_SYS_TIME`, include `SYS_TIME` in your list of capabilities.
 -->
 {{< note >}}
 Linux 权能常数定义的形式为 `CAP_XXX`。但是你在 Container 清单中列举权能时，
-要将权能名称中的 `CAP_` 部分去掉。例如，要添加 `CAP_SYS_TIME`，可在权能
-列表中添加 `SYS_TIME`。
+要将权能名称中的 `CAP_` 部分去掉。例如，要添加 `CAP_SYS_TIME`，
+可在权能列表中添加 `SYS_TIME`。
 {{< /note >}}
 
 <!--
@@ -580,7 +631,7 @@ in the `securityContext` section of your Pod or Container manifest. The
 [SeccompProfile](/docs/reference/generated/kubernetes-api/{{< param "version"
 >}}/#seccompprofile-v1-core) object consisting of `type` and `localhostProfile`.
 Valid options for `type` include `RuntimeDefault`, `Unconfined`, and
-`Localhost`. `localhostProfile` must only be set set if `type: Localhost`. It
+`Localhost`. `localhostProfile` must only be set if `type: Localhost`. It
 indicates the path of the pre-configured profile on the node, relative to the
 kubelet's configured Seccomp profile location (configured with the `-root-dir`
 flag).
@@ -588,18 +639,18 @@ flag).
 Here is an example that sets the Seccomp profile to the node's container runtime
 default profile:
 -->
-## 为容器设置 Seccomp 样板
+## 为容器设置 Seccomp 配置 
 
-若要为容器设置 Seccomp 样板（Profile），可在你的 Pod 或 Container 清单的
+若要为容器设置 Seccomp 配置（Profile），可在你的 Pod 或 Container 清单的
 `securityContext` 节中包含 `seccompProfile` 字段。该字段是一个 
 [SeccompProfile](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#seccompprofile-v1-core)
 对象，包含 `type` 和 `localhostProfile` 属性。
 `type` 的合法选项包括 `RuntimeDefault`、`Unconfined` 和 `Localhost`。
-`localhostProfile` 只能在 `type: Localhost` 配置下才需要设置。
-该字段标明节点上预先配置的样板的路径，路径是相对于 kubelet 所配置的
-Seccomp 样板路径（使用 `--root-dir` 配置）而言的。
+`localhostProfile` 只能在 `type: Localhost` 配置下才可以设置。
+该字段标明节点上预先设定的配置的路径，路径是相对于 kubelet 所配置的
+Seccomp 配置路径（使用 `--root-dir` 设置）而言的。
 
-下面是一个例子，设置容器使用节点上容器运行时的默认样板作为 Seccomp 样板：
+下面是一个例子，设置容器使用节点上容器运行时的默认配置作为 Seccomp 配置：
 
 ```yaml
 ...
@@ -669,19 +720,19 @@ Pod 的安全上下文适用于 Pod 中的容器，也适用于 Pod 所挂载的
 
 <!--
 * `fsGroup`: Volumes that support ownership management are modified to be owned
-and writable by the GID specified in `fsGroup`. See the
-[Ownership Management design document](https://git.k8s.io/community/contributors/design-proposals/storage/volume-ownership-management.md)
-for more details.
+  and writable by the GID specified in `fsGroup`. See the
+  [Ownership Management design document](https://git.k8s.io/design-proposals-archive/storage/volume-ownership-management.md)
+  for more details.
 
 * `seLinuxOptions`: Volumes that support SELinux labeling are relabeled to be accessible
-by the label specified under `seLinuxOptions`. Usually you only
-need to set the `level` section. This sets the
-[Multi-Category Security (MCS)](https://selinuxproject.org/page/NB_MLS)
-label given to all Containers in the Pod as well as the Volumes.
+  by the label specified under `seLinuxOptions`. Usually you only
+  need to set the `level` section. This sets the
+  [Multi-Category Security (MCS)](https://selinuxproject.org/page/NB_MLS)
+  label given to all Containers in the Pod as well as the Volumes.
 -->
 * `fsGroup`：支持属主管理的卷会被修改，将其属主变更为 `fsGroup` 所指定的 GID，
   并且对该 GID 可写。进一步的细节可参阅
-  [属主变更设计文档](https://git.k8s.io/community/contributors/design-proposals/storage/volume-ownership-management.md)。
+  [属主变更设计文档](https://git.k8s.io/design-proposals-archive/storage/volume-ownership-management.md)。
 
 * `seLinuxOptions`：支持 SELinux 标签的卷会被重新打标签，以便可被 `seLinuxOptions`
   下所设置的标签访问。通常你只需要设置 `level` 部分。
@@ -719,18 +770,22 @@ kubectl delete pod security-context-demo-4
 <!--
 * [PodSecurityContext](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritycontext-v1-core)
 * [SecurityContext](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#securitycontext-v1-core)
-* [Tuning Docker with the newest security enhancements](https://opensource.com/business/15/3/docker-security-tuning)
-* [Security Contexts design document](https://git.k8s.io/community/contributors/design-proposals/auth/security_context.md)
-* [Ownership Management design document](https://git.k8s.io/community/contributors/design-proposals/storage/volume-ownership-management.md)
-* [Pod Security Policies](/docs/concepts/policy/pod-security-policy/)
+* [Tuning Docker with the newest security enhancements](https://github.com/containerd/containerd/blob/main/docs/cri/config.md)
+* [Security Contexts design document](https://git.k8s.io/design-proposals-archive/auth/security_context.md)
+* [Ownership Management design document](https://git.k8s.io/design-proposals-archive/storage/volume-ownership-management.md)
+* [Pod Security Policies](/docs/concepts/security/pod-security-policy/)
 * [AllowPrivilegeEscalation design
-  document](https://git.k8s.io/community/contributors/design-proposals/auth/no-new-privs.md)
+  document](https://git.k8s.io/design-proposals-archive/auth/no-new-privs.md)
+* For more information about security mechanisms in Linux, see
+  [Overview of Linux Kernel Security Features](https://www.linux.com/learn/overview-linux-kernel-security-features)
 -->
 * [PodSecurityContext](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podsecuritycontext-v1-core) API 定义
 * [SecurityContext](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#securitycontext-v1-core) API 定义
-* [使用最新的安全性增强来调优 Docker](https://opensource.com/business/15/3/docker-security-tuning)
-* [安全性上下文的设计文档](https://git.k8s.io/community/contributors/design-proposals/auth/security_context.md)
-* [属主管理的设计文档](https://git.k8s.io/community/contributors/design-proposals/storage/volume-ownership-management.md)
-* [Pod 安全策略](/zh/docs/concepts/policy/pod-security-policy/)
-* [AllowPrivilegeEscalation 的设计文档](https://git.k8s.io/community/contributors/design-proposals/auth/no-new-privs.md)
+* [使用最新的安全性增强来调优 Docker（英文）](https://github.com/containerd/containerd/blob/main/docs/cri/config.md)
+* [安全上下文的设计文档（英文）](https://github.com/kubernetes/design-proposals-archive/blob/main/auth/security_context.md)
+* [属主管理的设计文档（英文）](https://github.com/kubernetes/design-proposals-archive/blob/main/storage/volume-ownership-management.md)
+* [Pod 安全策略](/zh-cn/docs/concepts/security/pod-security-policy/)
+* [AllowPrivilegeEscalation 的设计文档（英文）](https://github.com/kubernetes/design-proposals-archive/blob/main/auth/no-new-privs.md)
+* 关于在 Linux 系统中的安全机制的更多信息，可参阅
+  [Linux 内核安全性能力概述](https://www.linux.com/learn/overview-linux-kernel-security-features)。
 
diff --git a/content/zh-cn/docs/tasks/configure-pod-container/share-process-namespace.md b/content/zh-cn/docs/tasks/configure-pod-container/share-process-namespace.md
new file mode 100644
index 0000000000..fe3fa6f81e
--- /dev/null
+++ b/content/zh-cn/docs/tasks/configure-pod-container/share-process-namespace.md
@@ -0,0 +1,211 @@
+---
+title: 在 Pod 中的容器之间共享进程命名空间
+content_type: task
+weight: 160
+---
+<!--
+---
+title: Share Process Namespace between Containers in a Pod
+reviewers:
+- verb
+- yujuhong
+- dchen1107
+content_type: task
+weight: 160
+---
+-->
+
+<!-- overview -->
+
+<!--
+This page shows how to configure process namespace sharing for a pod. When
+process namespace sharing is enabled, processes in a container are visible
+to all other containers in the same pod.
+-->
+此页面展示如何为 Pod 配置进程命名空间共享。
+当启用进程命名空间共享时，容器中的进程对同一 Pod 中的所有其他容器都是可见的。
+
+<!--
+You can use this feature to configure cooperating containers, such as a log
+handler sidecar container, or to troubleshoot container images that don't
+include debugging utilities like a shell.
+-->
+你可以使用此功能来配置协作容器，比如日志处理 sidecar 容器，
+或者对那些不包含诸如 shell 等调试实用工具的镜像进行故障排查。
+
+## {{% heading "prerequisites" %}}
+
+{{< include "task-tutorial-prereqs.md" >}}
+
+<!-- steps -->
+
+<!--
+## Configure a Pod
+-->
+## 配置 Pod
+
+<!--
+Process namespace sharing is enabled using the `shareProcessNamespace` field of
+`.spec` for a Pod. For example:
+-->
+使用 Pod `.spec` 中的 `shareProcessNamespace` 字段可以启用进程命名空间共享。例如：
+
+{{< codenew file="pods/share-process-namespace.yaml" >}}
+
+<!--
+1. Create the pod `nginx` on your cluster:
+-->
+1. 在集群中创建 `nginx` Pod：
+
+   ```shell
+   kubectl apply -f https://k8s.io/examples/pods/share-process-namespace.yaml
+   ```
+
+<!--
+1. Attach to the `shell` container and run `ps`:
+-->
+2. 获取容器 `shell`，执行 `ps`：
+
+   ```shell
+   kubectl attach -it nginx -c shell
+   ```
+
+   <!--
+   If you don't see a command prompt, try pressing enter. In the container shell:
+
+   ```shell
+   # run this inside the "shell" container
+   ps ax
+   ```
+   -->
+   如果没有看到命令提示符，请按 enter 回车键。在容器 shell 中：
+
+   ```shell
+   # 在 “shell” 容器中运行以下命令
+   ps ax
+   ```
+
+   <!--
+   The output is similar to this:
+   -->
+   输出类似于：
+
+   ```none
+   PID   USER     TIME  COMMAND
+       1 root      0:00 /pause
+       8 root      0:00 nginx: master process nginx -g daemon off;
+      14 101       0:00 nginx: worker process
+      15 root      0:00 sh
+      21 root      0:00 ps ax
+   ```
+
+<!--
+You can signal processes in other containers. For example, send `SIGHUP` to
+`nginx` to restart the worker process. This requires the `SYS_PTRACE` capability.
+
+```shell
+# run this inside the "shell" container
+kill -HUP 8   # change "8" to match the PID of the nginx leader process, if necessary
+ps ax
+```
+-->
+你可以在其他容器中对进程发出信号。例如，发送 `SIGHUP` 到 `nginx` 以重启工作进程。
+此操作需要 `SYS_PTRACE` 权能。
+
+```shell
+# 在 “shell” 容器中运行以下命令
+kill -HUP 8   # 如有必要，更改 “8” 以匹配 nginx 领导进程的 PID
+ps ax
+```
+
+<!--
+The output is similar to this:
+-->
+输出类似于：
+
+```none
+PID   USER     TIME  COMMAND
+    1 root      0:00 /pause
+    8 root      0:00 nginx: master process nginx -g daemon off;
+   15 root      0:00 sh
+   22 101       0:00 nginx: worker process
+   23 root      0:00 ps ax
+```
+
+<!--
+It's even possible to access the file system of another container using the
+`/proc/$pid/root` link.
+
+```shell
+# run this inside the "shell" container
+# change "8" to the PID of the Nginx process, if necessary
+head /proc/8/root/etc/nginx/nginx.conf
+```
+-->
+甚至可以使用 `/proc/$pid/root` 链接访问另一个容器的文件系统。
+
+```shell
+# 在 “shell” 容器中运行以下命令
+# 如有必要，更改 “8” 为 Nginx 进程的 PID
+head /proc/8/root/etc/nginx/nginx.conf
+```
+
+<!--
+The output is similar to this:
+-->
+输出类似于：
+
+```none
+user  nginx;
+worker_processes  1;
+
+error_log  /var/log/nginx/error.log warn;
+pid        /var/run/nginx.pid;
+
+
+events {
+    worker_connections  1024;
+```
+
+<!-- discussion -->
+
+<!--
+## Understanding process namespace sharing
+-->
+## 理解进程命名空间共享
+
+<!--
+Pods share many resources so it makes sense they would also share a process
+namespace. Some containers may expect to be isolated from others, though,
+so it's important to understand the differences:
+-->
+Pod 共享许多资源，因此它们共享进程命名空间是很有意义的。
+不过，有些容器可能希望与其他容器隔离，因此了解这些差异很重要:
+
+<!--
+1. **The container process no longer has PID 1.** Some containers refuse
+   to start without PID 1 (for example, containers using `systemd`) or run
+   commands like `kill -HUP 1` to signal the container process. In pods with a
+   shared process namespace, `kill -HUP 1` will signal the pod sandbox
+   (`/pause` in the above example).
+-->
+1. **容器进程不再具有 PID 1。** 在没有 PID 1 的情况下，一些容器拒绝启动
+   （例如，使用 `systemd` 的容器)，或者拒绝执行 `kill -HUP 1` 之类的命令来通知容器进程。
+   在具有共享进程命名空间的 Pod 中，`kill -HUP 1` 将通知 Pod 沙箱（在上面的例子中是 `/pause`）。
+
+<!--
+1. **Processes are visible to other containers in the pod.** This includes all
+   information visible in `/proc`, such as passwords that were passed as arguments
+   or environment variables. These are protected only by regular Unix permissions.
+-->
+2. **进程对 Pod 中的其他容器可见。** 这包括 `/proc` 中可见的所有信息，
+   例如作为参数或环境变量传递的密码。这些仅受常规 Unix 权限的保护。
+
+<!--
+1. **Container filesystems are visible to other containers in the pod through the
+   `/proc/$pid/root` link.** This makes debugging easier, but it also means
+   that filesystem secrets are protected only by filesystem permissions.
+-->
+3. **容器文件系统通过 `/proc/$pid/root` 链接对 Pod 中的其他容器可见。** 这使调试更加容易，
+   但也意味着文件系统安全性只受文件系统权限的保护。
+
diff --git a/content/zh/docs/tasks/configure-pod-container/static-pod.md b/content/zh-cn/docs/tasks/configure-pod-container/static-pod.md
similarity index 67%
rename from content/zh/docs/tasks/configure-pod-container/static-pod.md
rename to content/zh-cn/docs/tasks/configure-pod-container/static-pod.md
index a202caf1b5..25c24db573 100644
--- a/content/zh/docs/tasks/configure-pod-container/static-pod.md
+++ b/content/zh-cn/docs/tasks/configure-pod-container/static-pod.md
@@ -12,13 +12,13 @@ without the {{< glossary_tooltip text="API server" term_id="kube-apiserver" >}}
 observing them.
 Unlike Pods that are managed by the control plane (for example, a
 {{< glossary_tooltip text="Deployment" term_id="deployment" >}});
-instead, the kubelet watches each static Pod (and restarts it if it crashes).
+instead, the kubelet watches each static Pod (and restarts it if it fails).
 -->
 
-*静态 Pod* 在指定的节点上由 kubelet 守护进程直接管理，不需要
+**静态 Pod** 在指定的节点上由 kubelet 守护进程直接管理，不需要
 {{< glossary_tooltip text="API 服务器" term_id="kube-apiserver" >}} 监管。
 与由控制面管理的 Pod（例如，{{< glossary_tooltip text="Deployment" term_id="deployment" >}}）
-不同；kubelet 监视每个静态 Pod（在它崩溃之后重新启动）。
+不同；kubelet 监视每个静态 Pod（在它失败之后重新启动）。
 
 <!--
 Static Pods are always bound to one {{< glossary_tooltip term_id="kubelet" >}} on a specific node.
@@ -27,25 +27,39 @@ The kubelet automatically tries to create a {{< glossary_tooltip text="mirror Po
 on the Kubernetes API server for each static Pod.
 This means that the Pods running on a node are visible on the API server,
 but cannot be controlled from there.
-The Pod names will suffixed with the node hostname with a leading hyphen
-
-{{< note >}}
-If you are running clustered Kubernetes and are using static
-Pods to run a Pod on every node, you should probably be using a
-{{< glossary_tooltip text="DaemonSet" term_id="daemonset" >}}
-instead.
-{{< /note >}}
+The Pod names will be suffixed with the node hostname with a leading hyphen.
 -->
-静态 Pod 永远都会绑定到一个指定节点上的 {{< glossary_tooltip term_id="kubelet" >}}。
+静态 Pod 始终都会绑定到特定节点的 {{< glossary_tooltip term_id="kubelet" >}} 上。
 
-kubelet 会尝试通过 Kubernetes API 服务器为每个静态 Pod 自动创建一个
-{{< glossary_tooltip text="镜像 Pod" term_id="mirror-pod" >}}。
+kubelet 会尝试通过 Kubernetes API 服务器为每个静态 Pod
+自动创建一个{{< glossary_tooltip text="镜像 Pod" term_id="mirror-pod" >}}。
 这意味着节点上运行的静态 Pod 对 API 服务来说是可见的，但是不能通过 API 服务器来控制。
 Pod 名称将把以连字符开头的节点主机名作为后缀。
 
 {{< note >}}
+<!--
+If you are running clustered Kubernetes and are using static
+Pods to run a Pod on every node, you should probably be using a
+{{< glossary_tooltip text="DaemonSet" term_id="daemonset" >}}
+instead.
+-->
 如果你在运行一个 Kubernetes 集群，并且在每个节点上都运行一个静态 Pod，
-就可能需要考虑使用 {{< glossary_tooltip text="DaemonSet" term_id="daemonset" >}} 替代这种方式。
+就可能需要考虑使用 {{< glossary_tooltip text="DaemonSet" term_id="daemonset" >}}
+替代这种方式。
+{{< /note >}}
+
+
+{{< note >}}
+<!--
+The `spec` of a static Pod cannot refer to other API objects
+(e.g., {{< glossary_tooltip text="ServiceAccount" term_id="service-account" >}},
+{{< glossary_tooltip text="ConfigMap" term_id="configmap" >}},
+{{< glossary_tooltip text="Secret" term_id="secret" >}}, etc).
+-->
+静态 Pod 的 `spec` 不能引用其他 API 对象
+（如：{{< glossary_tooltip text="ServiceAccount" term_id="service-account" >}}、
+{{< glossary_tooltip text="ConfigMap" term_id="configmap" >}}、
+{{< glossary_tooltip text="Secret" term_id="secret" >}} 等）。
 {{< /note >}}
 
 ## {{% heading "prerequisites" %}}
@@ -53,7 +67,7 @@ Pod 名称将把以连字符开头的节点主机名作为后缀。
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
 <!--
-This page assumes you're using {{< glossary_tooltip term_id="docker" >}} to run Pods,
+This page assumes you're using {{< glossary_tooltip term_id="cri-o" >}} to run Pods,
 and that your nodes are running the Fedora operating system.
 Instructions for other distributions or Kubernetes installations may vary.
 -->
@@ -70,8 +84,8 @@ You can configure a static Pod with either a [file system hosted configuration f
 -->
 ## 创建静态 Pod {#static-pod-creation}
 
-可以通过[文件系统上的配置文件](/zh/docs/tasks/configure-pod-container/static-pod/#configuration-files)
-或者 [web 网络上的配置文件](/zh/docs/tasks/configure-pod-container/static-pod/#pods-created-via-http)
+可以通过[文件系统上的配置文件](/zh-cn/docs/tasks/configure-pod-container/static-pod/#configuration-files)
+或者 [Web 网络上的配置文件](/zh-cn/docs/tasks/configure-pod-container/static-pod/#pods-created-via-http)
 来配置静态 Pod。
 
 <!--
@@ -87,7 +101,7 @@ For example, this is how to start a simple web server as a static Pod:
 ### 文件系统上的静态 Pod 声明文件 {#configuration-files}
 
 声明文件是标准的 Pod 定义文件，以 JSON 或者 YAML 格式存储在指定目录。路径设置在
-[Kubelet 配置文件](/zh/docs/reference/config-api/kubelet-config.v1beta1/)
+[Kubelet 配置文件](/zh-cn/docs/reference/config-api/kubelet-config.v1beta1/)
 的 `staticPodPath: <目录>` 字段，kubelet 会定期的扫描这个文件夹下的 YAML/JSON
 文件来创建/删除静态 Pod。
 注意 kubelet 扫描目录的时候会忽略以点开头的文件。
@@ -97,14 +111,14 @@ For example, this is how to start a simple web server as a static Pod:
 <!--
 1. Choose a node where you want to run the static Pod. In this example, it's `my-node1`.
 -->
-
 1. 选择一个要运行静态 Pod 的节点。在这个例子中选择 `my-node1`。
 
    ```shell
    ssh my-node1
    ```
+
 <!--
-2. Choose a directory, say `/etc/kubelet.d` and place a web server Pod definition there, e.g. `/etc/kubelet.d/static-web.yaml`:
+2. Choose a directory, say `/etc/kubernetes/manifests` and place a web server Pod definition there, for example `/etc/kubernetes/manifests/static-web.yaml`:
 
    ```shell
     # Run this command on the node where kubelet is running
@@ -126,13 +140,13 @@ For example, this is how to start a simple web server as a static Pod:
               protocol: TCP
     EOF
 -->
-2. 选择一个目录，比如在 `/etc/kubelet.d` 目录来保存 web 服务 Pod 的定义文件，
-   `/etc/kubelet.d/static-web.yaml`：
+2. 选择一个目录，比如在 `/etc/kubernetes/manifests` 目录来保存 Web 服务 Pod 的定义文件，例如
+   `/etc/kubernetes/manifests/static-web.yaml`：
 
    ```shell
    # 在 kubelet 运行的节点上执行以下命令
-   mkdir /etc/kubelet.d/
-   cat <<EOF >/etc/kubelet.d/static-web.yaml
+   mkdir -p /etc/kubernetes/manifests/
+   cat <<EOF >/etc/kubernetes/manifests/static-web.yaml
    apiVersion: v1
    kind: Pod
    metadata:
@@ -151,21 +165,20 @@ For example, this is how to start a simple web server as a static Pod:
    ```
 
 <!--
-3. Configure your kubelet on the node to use this directory by running it with `--pod-manifest-path=/etc/kubelet.d/` argument. On Fedora edit `/etc/kubernetes/kubelet` to include this line:
-
-   ```
-   KUBELET_ARGS="--cluster-dns=10.254.0.10 --cluster-domain=kube.local --pod-manifest-path=/etc/kubelet.d/"
-   ```
-   or add the `staticPodPath: <the directory>` field in the
-   [kubelet configuration file](/docs/reference/config-api/kubelet-config.v1beta1/).
+3. Configure your kubelet on the node to use this directory by running it with `--pod-manifest-path=/etc/kubernetes/manifests/` argument. On Fedora edit `/etc/kubernetes/kubelet` to include this line:
 -->
 3. 配置这个节点上的 kubelet，使用这个参数执行 `--pod-manifest-path=/etc/kubelet.d/`。
-在 Fedora 上编辑 `/etc/kubernetes/kubelet` 以包含下行：
+   在 Fedora 上编辑 `/etc/kubernetes/kubelet` 以包含下面这行：
 
    ```
-   KUBELET_ARGS="--cluster-dns=10.254.0.10 --cluster-domain=kube.local --pod-manifest-path=/etc/kubelet.d/"
+   KUBELET_ARGS="--cluster-dns=10.254.0.10 --cluster-domain=kube.local --pod-manifest-path=/etc/kubernetes/manifests/"
    ```
-   或者在 [Kubelet 配置文件](/zh/docs/reference/config-api/kubelet-config.v1beta1/)
+
+   <!--
+   or add the `staticPodPath: <the directory>` field in the
+   [kubelet configuration file](/docs/reference/config-api/kubelet-config.v1beta1/).
+   -->
+   或者在 [Kubelet 配置文件](/zh-cn/docs/reference/config-api/kubelet-config.v1beta1/)
    中添加 `staticPodPath: <目录>`字段。
 
 <!--
@@ -176,7 +189,7 @@ For example, this is how to start a simple web server as a static Pod:
    systemctl restart kubelet
    ```
 -->
-4. 重启 kubelet。Fedora 上使用下面的命令：
+4. 重启 kubelet。在 Fedora 上，你将使用下面的命令：
 
    ```shell
    # 在 kubelet 运行的节点上执行以下命令
@@ -234,6 +247,7 @@ JSON/YAML 格式的 Pod 定义文件。
    ```
    KUBELET_ARGS="--cluster-dns=10.254.0.10 --cluster-domain=kube.local --manifest-url=<manifest-url>"
    ```
+
 <!--
 3. Restart the kubelet. On Fedora, you would run:
 
@@ -242,7 +256,7 @@ JSON/YAML 格式的 Pod 定义文件。
     systemctl restart kubelet
     ```
 -->
-3. 重启 kubelet。在 Fedora 上运行如下命令：
+3. 重启 kubelet。在 Fedora 上，你将运行如下命令：
 
    ```shell
    # 在 kubelet 运行的节点上执行以下命令
@@ -258,13 +272,13 @@ already be running.
 
 You can view running containers (including static Pods) by running (on the node):
 ```shell
-# Run this command on the node where kubelet is running
-docker ps
+# Run this command on the node where the kubelet is running
+crictl ps
 ```
 
 The output might be something like:
 -->
-## 观察静态 pod 的行为 {#behavior-of-static-pods}
+## 观察静态 Pod 的行为 {#behavior-of-static-pods}
 
 当 kubelet 启动时，会自动启动所有定义的静态 Pod。
 当定义了一个静态 Pod 并重新启动 kubelet 时，新的静态 Pod 就应该已经在运行了。
@@ -273,7 +287,7 @@ The output might be something like:
 
 ```shell
 # 在 kubelet 运行的节点上执行以下命令
-docker ps
+crictl ps
 ```
 
 <!--
@@ -281,10 +295,19 @@ The output might be something like:
 -->
 输出可能会像这样：
 
+```console
+CONTAINER       IMAGE                                 CREATED           STATE      NAME    ATTEMPT    POD ID
+129fd7d382018   docker.io/library/nginx@sha256:...    11 minutes ago    Running    web     0          34533c6729106
 ```
-CONTAINER ID IMAGE         COMMAND  CREATED        STATUS         PORTS     NAMES
-f6d05272b57e nginx:latest  "nginx"  8 minutes ago  Up 8 minutes             k8s_web.6f802af4_static-web-fk-node1_default_67e24ed9466ba55986d120c867395f3c_378e5f3c
-```
+
+{{< note >}}
+<!--
+`crictl` outputs the image URI and SHA-256 checksum. `NAME` will look more like:
+`docker.io/library/nginx@sha256:0d17b565c37bcbd895e9d92315a05c1c3c9a29f762b011a10c54a66cd53c9b31`.
+-->
+`crictl` 会输出镜像 URI 和 SHA-256 校验和。`NAME` 看起来像：
+`docker.io/library/nginx@sha256:0d17b565c37bcbd895e9d92315a05c1c3c9a29f762b011a10c54a66cd53c9b31`。
+{{< /note >}}
 
 <!--
 You can see the mirror Pod on the API server:
@@ -296,17 +319,17 @@ kubectl get pods
 ```
 
 ```
-NAME                       READY     STATUS    RESTARTS   AGE
-static-web-my-node1        1/1       Running   0          2m
+NAME         READY   STATUS    RESTARTS        AGE
+static-web   1/1     Running   0               2m
 ```
 
-<!--
-Make sure the kubelet has permission to create the mirror Pod in the API server. If not, the creation request is rejected by the API server. See
-[PodSecurityPolicy](/docs/concepts/policy/pod-security-policy/).
--->
 {{< note >}}
+<!--
+Make sure the kubelet has permission to create the mirror Pod in the API server. If not, the creation request is rejected by the API server. See [Pod Security admission](/docs/concepts/security/pod-security-admission) and [PodSecurityPolicy](/docs/concepts/security/pod-security-policy/).
+-->
 要确保 kubelet 在 API 服务上有创建镜像 Pod 的权限。如果没有，创建请求会被 API 服务拒绝。
-可以看[Pod安全策略](/zh/docs/concepts/policy/pod-security-policy/)。
+参阅 [Pod 安全性准入](/zh-cn/docs/concepts/security/pod-security-admission/)和
+[Pod 安全策略](/zh-cn/docs/concepts/security/pod-security-policy/)。
 {{< /note >}}
 
 <!--
@@ -314,20 +337,21 @@ Make sure the kubelet has permission to create the mirror Pod in the API server.
 propagated into the mirror Pod. You can use those labels as normal via
 {{< glossary_tooltip term_id="selector" text="selectors" >}}, etc.
 -->
-静态 Pod 上的{{< glossary_tooltip term_id="label" text="标签" >}} 被传到镜像 Pod。
-你可以通过 {{< glossary_tooltip term_id="selector" text="选择算符" >}} 使用这些标签。
+静态 Pod 上的{{< glossary_tooltip term_id="label" text="标签" >}}被传播到镜像 Pod。
+你可以通过{{< glossary_tooltip term_id="selector" text="选择算符" >}}使用这些标签。
 
 <!--
 If you try to use `kubectl` to delete the mirror Pod from the API server,
 the kubelet _doesn't_ remove the static Pod:
 -->
-如果你用 `kubectl` 从 API 服务上删除镜像 Pod，kubelet _不会_ 移除静态 Pod：
+如果你用 `kubectl` 从 API 服务上删除镜像 Pod，kubelet **不会**移除静态 Pod：
 
 ```shell
-kubectl delete pod static-web-my-node1
+kubectl delete pod static-web
 ```
+
 ```
-pod "static-web-my-node1" deleted
+pod "static-web" deleted
 ```
 
 <!--
@@ -340,77 +364,76 @@ kubectl get pods
 ```
 
 ```
-NAME                       READY     STATUS    RESTARTS   AGE
-static-web-my-node1        1/1       Running   0          12s
+NAME         READY   STATUS    RESTARTS   AGE
+static-web   1/1     Running   0          4s
 ```
 
 <!--
-Back on your node where the kubelet is running, you can try to stop the Docker
-container manually.
+Back on your node where the kubelet is running, you can try to stop the container manually.
 You'll see that, after a time, the kubelet will notice and will restart the Pod
 automatically:
 
 ```shell
 # Run these commands on the node where the kubelet is running
-docker stop f6d05272b57e # replace with the ID of your container
+crictl stop 129fd7d382018 # replace with the ID of your container
 sleep 20
-docker ps
+crictl ps
 ```
 -->
-回到 kubelet 运行的节点上，可以手工停止 Docker 容器。
+回到 kubelet 运行所在的节点上，你可以手动停止容器。
 可以看到过了一段时间后 kubelet 会发现容器停止了并且会自动重启 Pod：
 
 ```shell
 # 在 kubelet 运行的节点上执行以下命令
 # 把 ID 换为你的容器的 ID
-docker stop f6d05272b57e
+crictl stop 129fd7d382018
 sleep 20
-docker ps
+crictl ps
 ```
 
-```
-CONTAINER ID        IMAGE         COMMAND                CREATED       ...
-5b920cbaf8b1        nginx:latest  "nginx -g 'daemon of   2 seconds ago ...
+```console
+CONTAINER       IMAGE                                 CREATED           STATE      NAME    ATTEMPT    POD ID
+89db4553e1eeb   docker.io/library/nginx@sha256:...    19 seconds ago    Running    web     1          34533c6729106
 ```
 
 <!--
 ## Dynamic addition and removal of static pods
 
-The running kubelet periodically scans the configured directory (`/etc/kubelet.d` in our example) for changes and adds/removes Pods as files appear/disappear in this directory.
+The running kubelet periodically scans the configured directory (`/etc/kubernetes/manifests` in our example) for changes and adds/removes Pods as files appear/disappear in this directory.
+-->
+## 动态增加和删除静态 Pod
 
+运行中的 kubelet 会定期扫描配置的目录（比如例子中的 `/etc/kubernetes/manifests` 目录）中的变化，
+并且根据文件中出现/消失的 Pod 来添加/删除 Pod。
+
+<!--
 ```shell
 # This assumes you are using filesystem-hosted static Pod configuration
 # Run these commands on the node where the kubelet is running
 #
 mv /etc/kubelet.d/static-web.yaml /tmp
 sleep 20
-docker ps
+crictl ps
 # You see that no nginx container is running
 mv /tmp/static-web.yaml  /etc/kubelet.d/
 sleep 20
-docker ps
+crictl ps
 ```
 -->
-## 动态增加和删除静态 pod
-
-运行中的 kubelet 会定期扫描配置的目录(比如例子中的 `/etc/kubelet.d` 目录)中的变化，
-并且根据文件中出现/消失的 Pod 来添加/删除 Pod。
-
 ```shell
-# 前提是你在用主机文件系统上的静态 Pod 配置文件
+# 这里假定你在用主机文件系统上的静态 Pod 配置文件
 # 在 kubelet 运行的节点上执行以下命令
-mv /etc/kubelet.d/static-web.yaml /tmp
+mv /etc/kubernetes/manifests/static-web.yaml /tmp
 sleep 20
-docker ps
+crictl ps
 # 可以看到没有 nginx 容器在运行
-mv /tmp/static-web.yaml  /etc/kubelet.d/
+mv /tmp/static-web.yaml  /etc/kubernetes/manifests/
 sleep 20
-docker ps
+crictl ps
 ```
 
-```
-CONTAINER ID        IMAGE         COMMAND                CREATED           ...
-e7a62e3427f1        nginx:latest  "nginx -g 'daemon of   27 seconds ago
+```console
+CONTAINER       IMAGE                                 CREATED           STATE      NAME    ATTEMPT    POD ID
+f427638871c35   docker.io/library/nginx@sha256:...    19 seconds ago    Running    web     1          34533c6729106
 ```
 
-
diff --git a/content/zh/docs/tasks/configure-pod-container/translate-compose-kubernetes.md b/content/zh-cn/docs/tasks/configure-pod-container/translate-compose-kubernetes.md
similarity index 68%
rename from content/zh/docs/tasks/configure-pod-container/translate-compose-kubernetes.md
rename to content/zh-cn/docs/tasks/configure-pod-container/translate-compose-kubernetes.md
index 8c5bb67da5..84c26fc767 100644
--- a/content/zh/docs/tasks/configure-pod-container/translate-compose-kubernetes.md
+++ b/content/zh-cn/docs/tasks/configure-pod-container/translate-compose-kubernetes.md
@@ -1,15 +1,14 @@
 ---
-reviewers:
-- cdrage
 title: 将 Docker Compose 文件转换为 Kubernetes 资源
 content_type: task
 weight: 200
 ---
-
 <!--
+reviewers:
+- cdrage
 title: Translate a Docker Compose File to Kubernetes Resources
 content_type: task
-weight: 170
+weight: 200
 -->
 
 <!-- overview -->
@@ -36,7 +35,7 @@ More information can be found on the Kompose website at [http://kompose.io](http
 
 We have multiple ways to install Kompose. Our preferred method is downloading the binary from the latest GitHub release.
 -->
-## 安装 Kompose
+## 安装 Kompose    {#install-kompose}
 
 我们有很多种方式安装 Kompose。首选方式是从最新的 GitHub 发布页面下载二进制文件。
 
@@ -52,13 +51,13 @@ Kompose 通过 GitHub 发布，发布周期为三星期。
 
 ```shell
 # Linux
-curl -L https://github.com/kubernetes/kompose/releases/download/v1.22.0/kompose-linux-amd64 -o kompose
+curl -L https://github.com/kubernetes/kompose/releases/download/v1.26.0/kompose-linux-amd64 -o kompose
 
 # macOS
-curl -L https://github.com/kubernetes/kompose/releases/download/v1.22.0/kompose-darwin-amd64 -o kompose
+curl -L https://github.com/kubernetes/kompose/releases/download/v1.26.0/kompose-darwin-amd64 -o kompose
 
 # Windows
-curl -L https://github.com/kubernetes/kompose/releases/download/v1.22.0/kompose-windows-amd64.exe -o kompose.exe
+curl -L https://github.com/kubernetes/kompose/releases/download/v1.26.0/kompose-windows-amd64.exe -o kompose.exe
 
 chmod +x kompose
 sudo mv ./kompose /usr/local/bin/kompose
@@ -132,7 +131,7 @@ brew install kompose
 <!--
 ## Use Kompose
 -->
-## 使用 Kompose
+## 使用 Kompose    {#use-kompose}
 
 <!--
 In a few steps, we'll take you from Docker Compose to Kubernetes. All
@@ -141,9 +140,10 @@ you need is an existing `docker-compose.yml` file.
 再需几步，我们就把你从 Docker Compose 带到 Kubernetes。
 你只需要一个现有的 `docker-compose.yml` 文件。
 
-1. <!--Go to the directory containing your `docker-compose.yml` file. If you don't
-   have one, test using this one.-->
-   进入 `docker-compose.yml` 文件所在的目录。如果没有，请使用下面这个进行测试。
+<!--
+1. Go to the directory containing your `docker-compose.yml` file. If you don't have one, test using this one.
+-->
+1. 进入 `docker-compose.yml` 文件所在的目录。如果没有，请使用下面这个进行测试。
 
    ```yaml
    version: "2"
@@ -174,15 +174,20 @@ you need is an existing `docker-compose.yml` file.
 
 <!--
 2. To convert the `docker-compose.yml` file to files that you can use with
-   `kubectl`, run `kompose convert` and then `kubectl create -f <output file>`.
+   `kubectl`, run `kompose convert` and then `kubectl apply -f <output file>`.
 -->
 2. 要将 `docker-compose.yml` 转换为 `kubectl` 可用的文件，请运行 `kompose convert`
-   命令进行转换，然后运行 `kubectl create -f <output file>` 进行创建。
+   命令进行转换，然后运行 `kubectl apply -f <output file>` 进行创建。
 
    ```shell
    kompose convert                           
    ```
 
+   <!--
+   The output is similar to:
+   -->
+   输出类似于：
+
    ```none
    INFO Kubernetes file "frontend-service.yaml" created
       INFO Kubernetes file "frontend-service.yaml" created
@@ -205,7 +210,7 @@ you need is an existing `docker-compose.yml` file.
    ```
 
    ```bash
-   kubectl apply -f frontend-service.yaml,redis-master-service.yaml,redis-slave-service.yaml,frontend-deployment.yaml,
+   kubectl apply -f frontend-service.yaml,redis-master-service.yaml,redis-slave-service.yaml,frontend-deployment.yaml,redis-master-deployment.yaml,redis-slave-deployment.yaml
    ```
 
    <!--
@@ -285,10 +290,7 @@ you need is an existing `docker-compose.yml` file.
 <!--
 - CLI
   - [`kompose convert`](#kompose-convert)
-  - [`kompose up`](#kompose-up)
-  - [`kompose down`](#kompose-down)
 - Documentation
-  - [Build and Push Docker Images](#build-and-push-docker-images)
   - [Alternative Conversions](#alternative-conversions)
   - [Labels](#labels)
   - [Restart](#restart)
@@ -296,11 +298,8 @@ you need is an existing `docker-compose.yml` file.
 -->
 - CLI
   - [`kompose convert`](#kompose-convert)
-  - [`kompose up`](#kompose-up)
-  - [`kompose down`](#kompose-down)
 
 - 文档
-  - [构建和推送 Docker 镜像](#build-and-push-docker-images)
   - [其他转换方式](#其他转换方式)
   - [标签](#labels)
   - [重启](#restart)
@@ -324,7 +323,7 @@ Kompose 支持将 V1、V2 和 V3 版本的 Docker Compose 文件转换为 Kubern
 <!--
 ### Kubernetes `kompose convert` example
 -->
-### Kubernetes `kompose convert` 示例
+### Kubernetes `kompose convert` 示例    {#kubernetes-kompose-convert-example}
 
 ```shell
 kompose --file docker-voting.yml convert
@@ -396,7 +395,7 @@ When multiple docker-compose files are provided the configuration is merged. Any
 <!--
 ### OpenShift `kompose convert` example
 -->
-### OpenShift `kompose convert` 示例
+### OpenShift `kompose convert` 示例    {#openshift-kompose-convert-example}
 
 ```shell
 kompose --provider openshift --file docker-voting.yml convert
@@ -440,226 +439,13 @@ INFO OpenShift file "foo-buildconfig.yaml" created
 ```
 
 <!--
-If you are manually pushing the Openshift artifacts using ``oc create -f``, you need to ensure that you push the imagestream artifact before the buildconfig artifact, to workaround this Openshift issue: https://github.com/openshift/origin/issues/4518 .
+If you are manually pushing the Openshift artifacts using ``oc create -f``, you need to ensure that you push the imagestream artifact before the buildconfig artifact, to workaround this OpenShift issue: https://github.com/openshift/origin/issues/4518 .
 -->
 {{< note >}}
-如果使用 ``oc create -f`` 手动推送 Openshift 工件，则需要确保在构建配置工件之前推送
-imagestream 工件，以解决 Openshift 的这个问题：https://github.com/openshift/origin/issues/4518 。
+如果使用 ``oc create -f`` 手动推送 OpenShift 工件，则需要确保在构建配置工件之前推送
+imagestream 工件，以解决 OpenShift 的这个问题： https://github.com/openshift/origin/issues/4518 。
 {{< /note >}}
 
-## `kompose up`
-
-<!--
-Kompose supports a straightforward way to deploy your "composed" application to Kubernetes or OpenShift via `kompose up`.
--->
-Kompose 支持通过 `kompose up` 直接将你的"复合的（composed）" 应用程序
-部署到 Kubernetes 或 OpenShift。
-
-<!--
-### Kubernetes `kompose up` example
--->
-### Kubernetes `kompose up` 示例
-
-```shell
-kompose --file ./examples/docker-guestbook.yml up
-```
-
-```none
-We are going to create Kubernetes deployments and services for your Dockerized application.
-If you need different kind of resources, use the 'kompose convert' and 'kubectl create -f' commands instead.
-
-INFO Successfully created service: redis-master   
-INFO Successfully created service: redis-slave    
-INFO Successfully created service: frontend       
-INFO Successfully created deployment: redis-master
-INFO Successfully created deployment: redis-slave
-INFO Successfully created deployment: frontend    
-
-Your application has been deployed to Kubernetes. You can run 'kubectl get deployment,svc,pods' for details.
-```
-
-```shell
-kubectl get deployment,svc,pods
-```
-
-```
-NAME                                              DESIRED       CURRENT       UP-TO-DATE   AVAILABLE   AGE
-deployment.extensions/frontend                    1             1             1            1           4m
-deployment.extensions/redis-master                1             1             1            1           4m
-deployment.extensions/redis-slave                 1             1             1            1           4m
-
-NAME                         TYPE               CLUSTER-IP    EXTERNAL-IP   PORT(S)      AGE
-service/frontend             ClusterIP          10.0.174.12   <none>        80/TCP       4m
-service/kubernetes           ClusterIP          10.0.0.1      <none>        443/TCP      13d
-service/redis-master         ClusterIP          10.0.202.43   <none>        6379/TCP     4m
-service/redis-slave          ClusterIP          10.0.1.85     <none>        6379/TCP     4m
-
-NAME                                READY         STATUS        RESTARTS     AGE
-pod/frontend-2768218532-cs5t5       1/1           Running       0            4m
-pod/redis-master-1432129712-63jn8   1/1           Running       0            4m
-pod/redis-slave-2504961300-nve7b    1/1           Running       0            4m
-```
-
-
-{{< note >}}
-<!--
-- You must have a running Kubernetes cluster with a pre-configured kubectl context.
-- Only deployments and services are generated and deployed to Kubernetes. If you need different kind of resources, use the `kompose convert` and `kubectl create -f` commands instead.
--->
-- 你必须有一个运行正常的 Kubernetes 集群，该集群具有预先配置的 kubectl 上下文。
-- 此操作仅生成 Deployment 和 Service 对象并将其部署到 Kubernetes。
-  如果需要部署其他不同类型的资源，请使用 `kompose convert` 和 `kubectl create -f` 命令。
-{{< /note >}}
-
-<!--
-### OpenShift `kompose up` example
--->
-### OpenShift `kompose up` 示例
-
-```shell
-kompose --file ./examples/docker-guestbook.yml --provider openshift up
-```
-
-```none
-We are going to create OpenShift DeploymentConfigs and Services for your Dockerized application.
-If you need different kind of resources, use the 'kompose convert' and 'oc create -f' commands instead.
-
-INFO Successfully created service: redis-slave    
-INFO Successfully created service: frontend       
-INFO Successfully created service: redis-master   
-INFO Successfully created deployment: redis-slave
-INFO Successfully created ImageStream: redis-slave
-INFO Successfully created deployment: frontend    
-INFO Successfully created ImageStream: frontend   
-INFO Successfully created deployment: redis-master
-INFO Successfully created ImageStream: redis-master
-
-Your application has been deployed to OpenShift. You can run 'oc get dc,svc,is' for details.
-```
-
-```shell
-oc get dc,svc,is
-```
-
-```none
-NAME               REVISION                              DESIRED       CURRENT    TRIGGERED BY
-dc/frontend        0                                     1             0          config,image(frontend:v4)
-dc/redis-master    0                                     1             0          config,image(redis-master:e2e)
-dc/redis-slave     0                                     1             0          config,image(redis-slave:v1)
-NAME               CLUSTER-IP                            EXTERNAL-IP   PORT(S)    AGE
-svc/frontend       172.30.46.64                          <none>        80/TCP     8s
-svc/redis-master   172.30.144.56                         <none>        6379/TCP   8s
-svc/redis-slave    172.30.75.245                         <none>        6379/TCP   8s
-NAME               DOCKER REPO                           TAGS          UPDATED
-is/frontend        172.30.12.200:5000/fff/frontend                     
-is/redis-master    172.30.12.200:5000/fff/redis-master                 
-is/redis-slave     172.30.12.200:5000/fff/redis-slave    v1  
-```
-
-{{< note >}}
-<!--
-You must have a running OpenShift cluster with a pre-configured `oc` context (`oc login`)
--->
-你必须有一个运行正常的 OpenShift 集群，该集群具有预先配置的 `oc` 上下文 (`oc login`)。
-{{< /note >}}
-
-## `kompose down`
-
-<!--
-Once you have deployed "composed" application to Kubernetes, `$ kompose down` will help you to take the application out by deleting its deployments and services. If you need to remove other resources, use the 'kubectl' command.
--->
-你一旦将"复合(composed)" 应用部署到 Kubernetes，`kompose down` 
-命令将能帮你通过删除 Deployment 和 Service 对象来删除应用。
-如果需要删除其他资源，请使用 'kubectl' 命令。
-
-```shell
-kompose --file docker-guestbook.yml down
-```
-
-```
-INFO Successfully deleted service: redis-master   
-INFO Successfully deleted deployment: redis-master
-INFO Successfully deleted service: redis-slave    
-INFO Successfully deleted deployment: redis-slave
-INFO Successfully deleted service: frontend       
-INFO Successfully deleted deployment: frontend
-```
-
-{{< note >}}
-<!--
-You must have a running Kubernetes cluster with a pre-configured kubectl context.
--->
-- 你必须有一个运行正常的 Kubernetes 集群，该集群具有预先配置的 kubectl 上下文。
-{{< /note >}}
-
-<!--
-## Build and Push Docker Images
-
-Kompose supports both building and pushing Docker images. When using the `build` key within your Docker Compose file, your image will:
-
-  - Automatically be built with Docker using the `image` key specified within your file
-  - Be pushed to the correct Docker repository using local credentials (located at `.docker/config`)
-
-Using an [example Docker Compose file](https://raw.githubusercontent.com/kubernetes/kompose/master/examples/buildconfig/docker-compose.yml):
--->
-## 构建和推送 Docker 镜像   {#build-and-push-docker-images}
-
-Kompose 支持构建和推送 Docker 镜像。如果 Docker Compose 文件中使用了 `build`
-关键字，你的镜像将会：
-
-- 使用文档中指定的 `image` 键自动构建 Docker 镜像
-- 使用本地凭据推送到正确的 Docker 仓库
-
-使用 [Docker Compose 文件示例](https://raw.githubusercontent.com/kubernetes/kompose/master/examples/buildconfig/docker-compose.yml)
-
-```yaml
-version: "2"
-
-services:
-    foo:
-        build: "./build"
-        image: docker.io/foo/bar
-```
-
-<!--
-Using `kompose up` with a `build` key:
--->
-使用带有 `build` 键的 `kompose up` 命令：
-
-```shell
-kompose up
-```
-
-```none
-INFO Build key detected. Attempting to build and push image 'docker.io/foo/bar'
-INFO Building image 'docker.io/foo/bar' from directory 'build'
-INFO Image 'docker.io/foo/bar' from directory 'build' built successfully
-INFO Pushing image 'foo/bar:latest' to registry 'docker.io'
-INFO Attempting authentication credentials 'https://index.docker.io/v1/
-INFO Successfully pushed image 'foo/bar:latest' to registry 'docker.io'
-INFO We are going to create Kubernetes Deployments, Services and PersistentVolumeClaims for your Dockerized application. If you need different kind of resources, use the 'kompose convert' and 'kubectl create -f' commands instead.
-
-INFO Deploying application in "default" namespace
-INFO Successfully created Service: foo            
-INFO Successfully created Deployment: foo         
-
-Your application has been deployed to Kubernetes. You can run 'kubectl get deployment,svc,pods,pvc' for details.
-```
-
-<!--
-In order to disable the functionality, or choose to use BuildConfig generation (with OpenShift) `--build (local|build-config|none)` can be passed.
--->
-要想禁用该功能，或者使用 BuildConfig 中的版本（在 OpenShift 中），
-可以通过传递 `--build (local|build-config|none)` 参数来实现。
-
-```shell
-# 禁止构造和推送 Docker 镜像
-kompose up --build none
-
-# 为 OpenShift 生成 Build Config 工件
-kompose up --provider openshift --build build-config
-```
-
 <!--
 ## Alternative Conversions
 
@@ -668,11 +454,11 @@ The default `kompose` transformation will generate Kubernetes [Deployments](/doc
 ## 其他转换方式    {#alternative-conversions}
 
 默认的 `kompose` 转换会生成 yaml 格式的 Kubernetes
-[Deployment](/zh/docs/concepts/workloads/controllers/deployment/) 和
-[Service](/zh/docs/concepts/services-networking/service/) 对象。
+[Deployment](/zh-cn/docs/concepts/workloads/controllers/deployment/) 和
+[Service](/zh-cn/docs/concepts/services-networking/service/) 对象。
 你可以选择通过 `-j` 参数生成 json 格式的对象。
-你也可以替换生成 [Replication Controllers](/zh/docs/concepts/workloads/controllers/replicationcontroller/) 对象、
-[Daemon Sets](/zh/docs/concepts/workloads/controllers/daemonset/) 或
+你也可以替换生成 [Replication Controllers](/zh-cn/docs/concepts/workloads/controllers/replicationcontroller/) 对象、
+[Daemon Sets](/zh-cn/docs/concepts/workloads/controllers/daemonset/) 或
 [Helm](https://github.com/helm/helm) charts。
 
 ```shell
@@ -703,7 +489,7 @@ INFO Kubernetes file "web-replicationcontroller.yaml" created
 ```
 
 <!--
-The `*-replicationcontroller.yaml` files contain the Replication Controller objects. If you want to specify replicas (default is 1), use `--replicas` flag: `$ kompose convert --replication-controller --replicas 3`
+The `*-replicationcontroller.yaml` files contain the Replication Controller objects. If you want to specify replicas (default is 1), use `--replicas` flag: `kompose convert --replication-controller --replicas 3`
 -->
 `*-replicationcontroller.yaml` 文件包含 Replication Controller 对象。
 如果你想指定副本数（默认为 1），可以使用 `--replicas` 参数：
@@ -722,7 +508,7 @@ INFO Kubernetes file "web-daemonset.yaml" created
 
 <!--
 The `*-daemonset.yaml` files contain the DaemonSet objects
-If you want to generate a Chart to be used with [Helm](https://github.com/kubernetes/helm) simply do:
+If you want to generate a Chart to be used with [Helm](https://github.com/kubernetes/helm) run:
 -->
 `*-daemonset.yaml` 文件包含 DaemonSet 对象。
 
@@ -803,7 +589,7 @@ For example:
 
   - 如果使用 Kubernetes 驱动，会有一个 Ingress 资源被创建，并且假定
     已经配置了相应的 Ingress 控制器。
-  - 如果使用 OpenShift 驱动, 则会有一个 route 被创建。
+  - 如果使用 OpenShift 驱动，则会有一个 route 被创建。
 
   例如：
 
@@ -899,10 +685,10 @@ services:
 
 If the Docker Compose file has a volume specified for a service, the Deployment (Kubernetes) or DeploymentConfig (OpenShift) strategy is changed to "Recreate" instead of "RollingUpdate" (default). This is done to avoid multiple instances of a service from accessing a volume at the same time.
 -->
-### 关于 Deployment Config 的提醒
+### 关于 Deployment Config 的提醒    {#warning-about-deployment-configurations}
 
-如果 Docker Compose 文件中为服务声明了卷，Deployment (Kubernetes) 或
-DeploymentConfig (OpenShift) 策略会从 "RollingUpdate" (默认) 变为 "Recreate"。
+如果 Docker Compose 文件中为服务声明了卷，Deployment（Kubernetes）或
+DeploymentConfig（OpenShift）策略会从 “RollingUpdate”（默认）变为 “Recreate”。
 这样做的目的是为了避免服务的多个实例同时访问卷。
 
 <!--
@@ -911,7 +697,7 @@ Please note that changing service name might break some `docker-compose` files.
 -->
 如果 Docker Compose 文件中的服务名包含 `_`（例如 `web_service`），
 那么将会被替换为 `-`，服务也相应的会重命名（例如 `web-service`）。
-Kompose 这样做的原因是 "Kubernetes" 不允许对象名称中包含 `_`。 
+Kompose 这样做的原因是 “Kubernetes” 不允许对象名称中包含 `_`。
 
 请注意，更改服务名称可能会破坏一些 `docker-compose` 文件。
 
@@ -930,4 +716,3 @@ Kompose 支持的 Docker Compose 版本包括：1、2 和 3。
 所有三个版本的兼容性列表请查看我们的
 [转换文档](https://github.com/kubernetes/kompose/blob/master/docs/conversion.md)，
 文档中列出了所有不兼容的 Docker Compose 关键字。
-
diff --git a/content/zh/docs/tasks/debug-application-cluster/troubleshooting.md b/content/zh-cn/docs/tasks/debug/_index.md
similarity index 81%
rename from content/zh/docs/tasks/debug-application-cluster/troubleshooting.md
rename to content/zh-cn/docs/tasks/debug/_index.md
index 09e7a862b8..dd5f1761f0 100644
--- a/content/zh/docs/tasks/debug-application-cluster/troubleshooting.md
+++ b/content/zh-cn/docs/tasks/debug/_index.md
@@ -1,17 +1,19 @@
 ---
+title: 监控、日志和调试
+description: 设置监控和日志记录以对集群进行故障排除或调试容器化应用程序。
+weight: 20
+content_type: concept
+no_list: true
+---
+<!-- 
+title: "Monitoring, Logging, and Debugging"
+description: Set up monitoring and logging to troubleshoot a cluster, or debug a containerized application.
+weight: 20
 reviewers:
 - brendandburns
 - davidopp
 content_type: concept
-title: 故障诊断
----
-
-<!--
-reviewers:
-- brendandburns
-- davidopp
-content_type: concept
-title: Troubleshooting
+no_list: true
 -->
 
 <!-- overview -->
@@ -23,12 +25,14 @@ two sections:
 有时候事情会出错。本指南旨在解决这些问题。它包含两个部分：
 
 <!--
-   * [Troubleshooting your application](/docs/tasks/debug-application-cluster/debug-application/) - Useful for users who are deploying code into Kubernetes and wondering why it is not working.
-   * [Troubleshooting your cluster](/docs/tasks/debug-application-cluster/debug-cluster/) - Useful for cluster administrators and people whose Kubernetes cluster is unhappy.
+* [Debugging your application](/docs/tasks/debug/debug-application/) - Useful
+  for users who are deploying code into Kubernetes and wondering why it is not working.
+* [Debugging your cluster](/docs/tasks/debug/debug-cluster/) - Useful
+  for cluster administrators and people whose Kubernetes cluster is unhappy.
 -->
-* [应用排错](/zh/docs/tasks/debug-application-cluster/debug-application/) -
+* [应用排错](/zh-cn/docs/tasks/debug/debug-application/) -
   针对部署代码到 Kubernetes 并想知道代码为什么不能正常运行的用户。
-* [集群排错](/zh/docs/tasks/debug-application-cluster/debug-cluster/) -
+* [集群排错](/zh-cn/docs/tasks/debug/debug-cluster/) -
   针对集群管理员以及 Kubernetes 集群表现异常的用户。
 
 <!--
@@ -60,18 +64,18 @@ accomplish commonly used tasks, and [Tutorials](/docs/tutorials/) are more
 comprehensive walkthroughs of real-world, industry-specific, or end-to-end
 development scenarios. The [Reference](/docs/reference/) section provides
 detailed documentation on the [Kubernetes API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)
-and command-line interfaces (CLIs), such as [`kubectl`](/docs/user-guide/kubectl-overview/).
+and command-line interfaces (CLIs), such as [`kubectl`](/docs/reference/kubectl/).
 -->
 ### 问题  {#questions}
 
 本网站上的文档针对回答各类问题进行了结构化组织和分类。
-[概念](/zh/docs/concepts/)部分解释 Kubernetes 体系结构以及每个组件的工作方式，
-[安装](/zh/docs/setup/)部分提供了安装的实用说明。
-[任务](/zh/docs/tasks/)部分展示了如何完成常用任务，
-[教程](/zh/docs/tutorials/)部分则提供对现实世界、特定行业或端到端开发场景的更全面的演练。
-[参考](/zh/docs/reference/)部分提供了详细的
+[概念](/zh-cn/docs/concepts/)部分解释 Kubernetes 体系结构以及每个组件的工作方式，
+[安装](/zh-cn/docs/setup/)部分提供了安装的实用说明。
+[任务](/zh-cn/docs/tasks/)部分展示了如何完成常用任务，
+[教程](/zh-cn/docs/tutorials/)部分则提供对现实世界、特定行业或端到端开发场景的更全面的演练。
+[参考](/zh-cn/docs/reference/)部分提供了详细的
 [Kubernetes API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/) 文档
-和命令行 (CLI) 接口的文档，例如[`kubectl`](/zh/docs/reference/kubectl/overview/)。
+和命令行 (CLI) 接口的文档，例如[`kubectl`](/zh-cn/docs/reference/kubectl/)。
 
 <!--
 ## Help! My question isn't covered!  I need help now!
@@ -84,14 +88,18 @@ and command-line interfaces (CLIs), such as [`kubectl`](/docs/user-guide/kubectl
 Someone else from the community may have already asked a similar question or may
 be able to help with your problem. The Kubernetes team will also monitor
 [posts tagged Kubernetes](https://stackoverflow.com/questions/tagged/kubernetes).
-If there aren't any existing questions that help, please
-[ask a new one](https://stackoverflow.com/questions/ask?tags=kubernetes)!
+If there aren't any existing questions that help, **please [ensure that your question is on-topic on Stack Overflow](https://stackoverflow.com/help/on-topic)
+and that you read through the guidance on [how to ask a new question](https://stackoverflow.com/help/how-to-ask)**,
+before [asking a new one](https://stackoverflow.com/questions/ask?tags=kubernetes)!
 -->
 ### Stack Overflow    {#stack-overflow}
 
 社区中的其他人可能已经问过和你类似的问题，也可能能够帮助解决你的问题。
 Kubernetes 团队还会监视[带有 Kubernetes 标签的帖子](https://stackoverflow.com/questions/tagged/kubernetes)。
-如果现有的问题对你没有帮助，请[问一个新问题](https://stackoverflow.com/questions/ask?tags=kubernetes)!
+如果现有的问题对你没有帮助，在[问一个新问题](https://stackoverflow.com/questions/ask?tags=kubernetes)
+之前，**请[确保你的问题是关于 Stack Overflow 的主题](https://stackoverflow.com/help/on-topic)
+并且你需要阅读关于[如何提出新问题](https://stackoverflow.com/help/how-to-ask)
+的指南。**
 
 <!--
 ### Slack
diff --git a/content/zh-cn/docs/tasks/debug/debug-application/_index.md b/content/zh-cn/docs/tasks/debug/debug-application/_index.md
new file mode 100644
index 0000000000..cbb443275f
--- /dev/null
+++ b/content/zh-cn/docs/tasks/debug/debug-application/_index.md
@@ -0,0 +1,18 @@
+---
+title: "应用故障排除"
+description: 调试常见的容器应用问题.
+weight: 20
+--- 
+
+<!-- 
+title: "Troubleshooting Applications"
+description: Debugging common containerized application issues.
+weight: 20
+-->
+
+<!-- 
+This doc contains a set of resources for fixing issues with containerized applications. It covers things like common issues with Kubernetes resources (like Pods, Services, or StatefulSets), advice on making sense of container termination messages, and ways to debug running containers.
+-->
+该文档包含一组用于解决容器化应用程序问题的资源。
+它涵盖了诸如 Kubernetes 资源（如 Pod、Service 或 StatefulSets）的常见问题、
+关于理解容器终止消息的建议以及调试正在运行的容器的方法。
diff --git a/content/zh/docs/tasks/debug-application-cluster/debug-init-containers.md b/content/zh-cn/docs/tasks/debug/debug-application/debug-init-containers.md
similarity index 94%
rename from content/zh/docs/tasks/debug-application-cluster/debug-init-containers.md
rename to content/zh-cn/docs/tasks/debug/debug-application/debug-init-containers.md
index c859455873..03076705f5 100644
--- a/content/zh/docs/tasks/debug-application-cluster/debug-init-containers.md
+++ b/content/zh-cn/docs/tasks/debug/debug-application/debug-init-containers.md
@@ -1,6 +1,7 @@
 ---
 title: 调试 Init 容器
 content_type: task
+weight: 40
 ---
 
 <!--
@@ -14,6 +15,7 @@ reviewers:
 - smarterclayton
 title: Debug Init Containers
 content_type: task
+weight: 40
 -->
 
 <!-- overview -->
@@ -38,8 +40,8 @@ Init Containers. The example command lines below refer to the Pod as
 * You should have [Configured an Init Container](/docs/tasks/configure-pod-container/configure-pod-initialization/#creating-a-pod-that-has-an-init-container/).
 -->
 
-* 你应该熟悉 [Init 容器](/zh/docs/concepts/workloads/pods/init-containers/)的基础知识。
-* 你应该已经[配置好一个 Init 容器](/zh/docs/tasks/configure-pod-container/configure-pod-initialization/#creating-a-pod-that-has-an-init-container/)。
+* 你应该熟悉 [Init 容器](/zh-cn/docs/concepts/workloads/pods/init-containers/)的基础知识。
+* 你应该已经[配置好一个 Init 容器](/zh-cn/docs/tasks/configure-pod-container/configure-pod-initialization/#creating-a-pod-that-has-an-init-container/)。
 
 <!-- steps -->
 
diff --git a/content/zh/docs/tasks/debug-application-cluster/debug-application.md b/content/zh-cn/docs/tasks/debug/debug-application/debug-pods.md
similarity index 78%
rename from content/zh/docs/tasks/debug-application-cluster/debug-application.md
rename to content/zh-cn/docs/tasks/debug/debug-application/debug-pods.md
index 2e71c22af0..290ab9074e 100644
--- a/content/zh/docs/tasks/debug-application-cluster/debug-application.md
+++ b/content/zh-cn/docs/tasks/debug/debug-application/debug-pods.md
@@ -1,10 +1,16 @@
 ---
-title: 应用故障排查
-content_type: concept
+title: 调试 Pod
+content_type: task
+weight: 10
 ---
-<!--
-title: Troubleshoot Applications
-content_type: concept
+
+<!-- 
+reviewers:
+- mikedanese
+- thockin
+title: Debug Pods
+content_type: task
+weight: 10
 -->
 
 <!-- overview -->
@@ -12,12 +18,12 @@ content_type: concept
 <!--
 This guide is to help users debug applications that are deployed into Kubernetes and not behaving correctly.
 This is *not* a guide for people who want to debug their cluster.  For that you should check out
-[this guide](/docs/admin/cluster-troubleshooting).
+[this guide](/docs/tasks/debug/debug-cluster).
 -->
 
 本指南帮助用户调试那些部署到 Kubernetes 上后没有正常运行的应用。
-本指南 *并非* 指导用户如何调试集群。
-如果想调试集群的话，请参阅[这里](/zh/docs/tasks/debug-application-cluster/debug-cluster/)。
+本指南 **并非** 指导用户如何调试集群。
+如果想调试集群的话，请参阅[这里](/zh-cn/docs/tasks/debug/debug-cluster)。
 
 
 <!-- body -->
@@ -34,18 +40,18 @@ your Service?
 -->
 ## 诊断问题   {#diagnosing-the-problem}
 
-故障排查的第一步是先给问题分类。问题是什么？是关于 Pods、Replication Controller 还是 Service？
+故障排查的第一步是先给问题分类。问题是什么？是关于 Pod、Replication Controller 还是 Service？
 
-* [调试 Pods](#debugging-pods)
-* [调试副本控制器](#debugging-replication-controllers)
-* [调试服务](#debugging-services)
+* [调试 Pod](#debugging-pods)
+* [调试 Replication Controller](#debugging-replication-controllers)
+* [调试 Service](#debugging-services)
 
 <!--
 ### Debugging Pods
 
 The first step in debugging a Pod is taking a look at it.  Check the current state of the Pod and recent events with the following command:
 -->
-### 调试 Pods   {#debugging-pods}
+### 调试 Pod   {#debugging-pods}
 
 调试 Pod 的第一步是查看 Pod 信息。用如下命令查看 Pod 的当前状态和最近的事件：
 
@@ -70,7 +76,7 @@ there are insufficient resources of one type or another that prevent scheduling.
 `kubectl describe ...` command above.  There should be messages from the scheduler about why it can not schedule
 your pod.  Reasons include:
 -->
-#### Pod 停滞在 Pending 状态
+#### Pod 停滞在 Pending 状态  {#my-pod-stays-pending}
 
 如果一个 Pod 停滞在 `Pending` 状态，表示 Pod 没有被调度到节点上。通常这是因为
 某种类型的资源不足导致无法调度。
@@ -79,7 +85,8 @@ your pod.  Reasons include:
 
 <!--
 * **You don't have enough resources**:  You may have exhausted the supply of CPU or Memory in your cluster, in this case
-you need to delete Pods, adjust resource requests, or add new nodes to your cluster. See [Compute Resources document](/docs/user-guide/compute-resources/#my-pods-are-pending-with-event-message-failedscheduling) for more information.
+you need to delete Pods, adjust resource requests, or add new nodes to your cluster. See
+[Compute Resources document](/docs/concepts/configuration/manage-resources-containers/) for more information.
 
 * **You are using `hostPort`**:  When you bind a Pod to a `hostPort` there are a limited number of places that pod can be
 scheduled.  In most cases, `hostPort` is unnecessary, try using a Service object to expose your Pod.  If you do require
@@ -87,7 +94,7 @@ scheduled.  In most cases, `hostPort` is unnecessary, try using a Service object
 -->
 * **资源不足**:
   你可能耗尽了集群上所有的 CPU 或内存。此时，你需要删除 Pod、调整资源请求或者为集群添加节点。
-  更多信息请参阅[计算资源文档](/zh/docs/concepts/configuration/manage-resources-containers/)
+  更多信息请参阅[计算资源文档](/zh-cn/docs/concepts/configuration/manage-resources-containers/)
 
 * **使用了 `hostPort`**:
   如果绑定 Pod 到 `hostPort`，那么能够运行该 Pod 的节点就有限了。
@@ -102,10 +109,11 @@ If a Pod is stuck in the `Waiting` state, then it has been scheduled to a worker
 Again, the information from `kubectl describe ...` should be informative.  The most common cause of `Waiting` pods is a failure to pull the image.  There are three things to check:
 
 * Make sure that you have the name of the image correct.
-* Have you pushed the image to the repository?
-* Run a manual `docker pull <image>` on your machine to see if the image can be pulled.
+* Have you pushed the image to the registry?
+* Try to manually pull the image to see if the image can be pulled. For example,
+  if you use Docker on your PC, run `docker pull <image>`.
 -->
-#### Pod 停滞在 Waiting 状态
+#### Pod 停滞在 Waiting 状态  {#my-pod-stays-waiting}
 
 如果 Pod 停滞在 `Waiting` 状态，则表示 Pod 已经被调度到某工作节点，但是无法在该节点上运行。
 同样，`kubectl describe ...` 命令的输出可能很有用。
@@ -113,18 +121,18 @@ Again, the information from `kubectl describe ...` should be informative.  The m
 
 * 确保镜像名字拼写正确
 * 确保镜像已被推送到镜像仓库
-* 用手动命令 `docker pull <镜像>` 试试看镜像是否可拉取
+* 尝试手动是否能拉取镜像。例如，如果你在你的 PC 上使用 Docker，请运行 `docker pull <镜像>`。
 
 <!--
 #### My pod is crashing or otherwise unhealthy
 
 Once your pod has been scheduled, the methods described in [Debug Running Pods](
-/docs/tasks/debug-application-cluster/debug-running-pod/) are available for debugging.
+/docs/tasks/debug/debug-application/debug-running-pod/) are available for debugging.
 -->
-#### Pod 处于 Crashing 或别的不健康状态
+#### Pod 处于 Crashing 或别的不健康状态   {#my-pod-is-crashing-or-otherwise-unhealthy}
 
 一旦 Pod 被调度，就可以采用
-[调试运行中的 Pod](/zh/docs/tasks/debug-application-cluster/debug-running-pod/)
+[调试运行中的 Pod](/zh-cn/docs/tasks/debug/debug-application/debug-running-pod/)
 中的方法来进一步调试。
 
 <!--
@@ -142,8 +150,8 @@ will not use the command line you intended it to use.
 如果 Pod 行为不符合预期，很可能 Pod 描述（例如你本地机器上的 `mypod.yaml`）中有问题，
 并且该错误在创建 Pod 时被忽略掉，没有报错。
 通常，Pod 的定义中节区嵌套关系错误、字段名字拼错的情况都会引起对应内容被忽略掉。
-例如，如果你误将 `command` 写成 `commnd`，Pod 虽然可以创建，但它不会执行
-你期望它执行的命令行。
+例如，如果你误将 `command` 写成 `commnd`，Pod 虽然可以创建，
+但它不会执行你期望它执行的命令行。
 
 <!--
 The first thing to do is to delete your pod and try creating it again with the `--validate` option.
@@ -174,8 +182,8 @@ version, then this may indicate a problem with your pod spec.
 -->
 接下来就要检查的是 API 服务器上的 Pod 与你所期望创建的是否匹配
 （例如，你原本使用本机上的一个 YAML 文件来创建 Pod）。
-例如，运行 `kubectl get pods/mypod -o yaml > mypod-on-apiserver.yaml`，之后
-手动比较 `mypod.yaml` 与从 API 服务器取回的 Pod 描述。
+例如，运行 `kubectl get pods/mypod -o yaml > mypod-on-apiserver.yaml`，
+之后手动比较 `mypod.yaml` 与从 API 服务器取回的 Pod 描述。
 从 API 服务器处获得的 YAML 通常包含一些创建 Pod 所用的 YAML 中不存在的行，这是正常的。
 不过，如果如果源文件中有些行在 API 服务器版本中不存在，则意味着
 Pod 规约是有问题的。
@@ -206,14 +214,14 @@ First, verify that there are endpoints for the service. For every Service object
 
 You can view this resource with:
 -->
-### 调试服务   {#debugging-services}
+### 调试 Service   {#debugging-services}
 
 服务支持在多个 Pod 间负载均衡。
 有一些常见的问题可以造成服务无法正常工作。
 以下说明将有助于调试服务的问题。
 
-首先，验证服务是否有端点。对于每一个 Service 对象，API 服务器为其提供
-对应的 `endpoints` 资源。
+首先，验证服务是否有端点。对于每一个 Service 对象，API 服务器为其提供对应的
+`endpoints` 资源。
 
 通过如下命令可以查看 endpoints 资源：
 
@@ -227,7 +235,7 @@ For example, if your Service is for an nginx container with 3 replicas, you woul
 IP addresses in the Service's endpoints.
 -->
 确保 Endpoints 与服务成员 Pod 个数一致。
-例如，如果你的 Service 用来运行 3 个副本的 nginx 容器，你应该会在服务的 Endpoints
+例如，如果你的 Service 用来运行 3 个副本的 nginx 容器，你应该会在 Service 的 Endpoints
 中看到 3 个不同的 IP 地址。
 
 <!--
@@ -236,7 +244,7 @@ IP addresses in the Service's endpoints.
 If you are missing endpoints, try listing pods using the labels that Service uses.  Imagine that you have
 a Service where the labels are:
 -->
-#### 服务缺少 Endpoints
+#### 服务缺少 Endpoints   {#my-service-is-missing-endpoints}
 
 如果没有 Endpoints，请尝试使用 Service 所使用的标签列出 Pod。
 假定你的服务包含如下标签选择算符：
@@ -257,7 +265,6 @@ kubectl get pods --selector=name=nginx,type=frontend
 
 to list pods that match this selector.  Verify that the list matches the Pods that you expect to provide your Service.
 -->
-
 你可以使用如下命令列出与选择算符相匹配的 Pod，并验证这些 Pod 是否归属于创建的服务：
 
 ```shell
@@ -272,22 +279,27 @@ Verify that the pod's `containerPort` matches up with the Service's `targetPort`
 <!--
 #### Network traffic is not forwarded
 
-Please see [debugging service](/docs/tasks/debug-application-cluster/debug-service/) for more information.
+Please see [debugging service](/docs/tasks/debug/debug-applications/debug-service/) for more information.
 -->
-#### 网络流量未被转发
+#### 网络流量未被转发  {#network-traffic-is-not-forwarded}
 
-请参阅[调试 service](/zh/docs/tasks/debug-application-cluster/debug-service/) 了解更多信息。
+请参阅[调试 Service](/zh-cn/docs/tasks/debug/debug-applications/debug-service/) 了解更多信息。
 
 ## {{% heading "whatsnext" %}}
 
 <!--
-If none of the above solves your problem, follow the instructions in [Debugging Service document](/docs/user-guide/debugging-services) to make sure that your `Service` is running, has `Endpoints`, and your `Pods` are actually serving; you have DNS working, iptables rules installed, and kube-proxy does not seem to be misbehaving.
+If none of the above solves your problem, follow the instructions in
+[Debugging Service document](/docs/tasks/debug/debug-applications/debug-service/)
+to make sure that your `Service` is running, has `Endpoints`, and your `Pods` are
+actually serving; you have DNS working, iptables rules installed, and kube-proxy
+does not seem to be misbehaving.
 
-You may also visit [troubleshooting document](/docs/troubleshooting/) for more information.
+You may also visit [troubleshooting document](/docs/tasks/debug/) for more information.
 -->
-如果上述方法都不能解决你的问题，请按照
-[调试服务文档](/zh/docs/tasks/debug-application-cluster/debug-service/)中的介绍，
+如果上述方法都不能解决你的问题，
+请按照[调试 Service 文档](/zh-cn/docs/tasks/debug/debug-applications/debug-service/)中的介绍，
 确保你的 `Service` 处于 Running 态，有 `Endpoints` 被创建，`Pod` 真的在提供服务；
 DNS 服务已配置并正常工作，iptables 规则也以安装并且 `kube-proxy` 也没有异常行为。
 
-你也可以访问[故障排查文档](/zh/docs/tasks/debug-application-cluster/troubleshooting/ )来获取更多信息。
+你也可以访问[故障排查文档](/zh-cn/docs/tasks/debug/)来获取更多信息。
+
diff --git a/content/zh-cn/docs/tasks/debug/debug-application/debug-running-pod.md b/content/zh-cn/docs/tasks/debug/debug-application/debug-running-pod.md
new file mode 100644
index 0000000000..df4d0f647f
--- /dev/null
+++ b/content/zh-cn/docs/tasks/debug/debug-application/debug-running-pod.md
@@ -0,0 +1,916 @@
+---
+title: 调试运行中的 Pod
+content_type: task
+---
+
+<!-- 
+reviewers:
+- verb
+- soltysh
+title: Debug Running Pods
+content_type: task
+-->
+
+<!-- overview -->
+<!--
+This page explains how to debug Pods running (or crashing) on a Node.
+-->
+本页解释如何在节点上调试运行中（或崩溃）的 Pod。
+
+## {{% heading "prerequisites" %}}
+
+<!--
+* Your {{< glossary_tooltip text="Pod" term_id="pod" >}} should already be
+  scheduled and running. If your Pod is not yet running, start with [Debugging
+  Pods](/docs/tasks/debug/debug-application/).
+* For some of the advanced debugging steps you need to know on which Node the
+  Pod is running and have shell access to run commands on that Node. You don't
+  need that access to run the standard debug steps that use `kubectl`.
+-->
+* 你的 {{< glossary_tooltip text="Pod" term_id="pod" >}} 应该已经被调度并正在运行中，
+  如果你的 Pod 还没有运行，请参阅[调试 Pod](/zh-cn/docs/tasks/debug/debug-application/)。
+
+* 对于一些高级调试步骤，你应该知道 Pod 具体运行在哪个节点上，并具有在该节点上运行命令的 shell 访问权限。
+  你不需要任何访问权限就可以使用 `kubectl` 去运行一些标准调试步骤。
+
+<!--
+## Using `kubectl describe pod` to fetch details about pods
+-->
+## 使用 `kubectl describe pod` 命令获取 Pod 详情
+
+<!--
+For this example we'll use a Deployment to create two pods, similar to the earlier example.
+-->
+与之前的例子类似，我们使用一个 Deployment 来创建两个 Pod。
+
+{{< codenew file="application/nginx-with-request.yaml" >}}
+
+<!--
+Create deployment by running following command:
+-->
+使用如下命令创建 Deployment：
+
+```shell
+kubectl apply -f https://k8s.io/examples/application/nginx-with-request.yaml
+```
+
+```
+deployment.apps/nginx-deployment created
+```
+
+<!--
+Check pod status by following command:
+-->
+使用如下命令查看 Pod 状态：
+
+```shell
+kubectl get pods
+```
+
+```
+NAME                                READY   STATUS    RESTARTS   AGE
+nginx-deployment-67d4bdd6f5-cx2nz   1/1     Running   0          13s
+nginx-deployment-67d4bdd6f5-w6kd7   1/1     Running   0          13s
+```
+
+<!--
+We can retrieve a lot more information about each of these pods using `kubectl describe pod`. For example:
+-->
+我们可以使用 `kubectl describe pod` 命令来查询每个 Pod 的更多信息，比如：
+
+```shell
+kubectl describe pod nginx-deployment-67d4bdd6f5-w6kd7
+```
+
+```none
+Name:         nginx-deployment-67d4bdd6f5-w6kd7
+Namespace:    default
+Priority:     0
+Node:         kube-worker-1/192.168.0.113
+Start Time:   Thu, 17 Feb 2022 16:51:01 -0500
+Labels:       app=nginx
+              pod-template-hash=67d4bdd6f5
+Annotations:  <none>
+Status:       Running
+IP:           10.88.0.3
+IPs:
+  IP:           10.88.0.3
+  IP:           2001:db8::1
+Controlled By:  ReplicaSet/nginx-deployment-67d4bdd6f5
+Containers:
+  nginx:
+    Container ID:   containerd://5403af59a2b46ee5a23fb0ae4b1e077f7ca5c5fb7af16e1ab21c00e0e616462a
+    Image:          nginx
+    Image ID:       docker.io/library/nginx@sha256:2834dc507516af02784808c5f48b7cbe38b8ed5d0f4837f16e78d00deb7e7767
+    Port:           80/TCP
+    Host Port:      0/TCP
+    State:          Running
+      Started:      Thu, 17 Feb 2022 16:51:05 -0500
+    Ready:          True
+    Restart Count:  0
+    Limits:
+      cpu:     500m
+      memory:  128Mi
+    Requests:
+      cpu:        500m
+      memory:     128Mi
+    Environment:  <none>
+    Mounts:
+      /var/run/secrets/kubernetes.io/serviceaccount from kube-api-access-bgsgp (ro)
+Conditions:
+  Type              Status
+  Initialized       True 
+  Ready             True 
+  ContainersReady   True 
+  PodScheduled      True 
+Volumes:
+  kube-api-access-bgsgp:
+    Type:                    Projected (a volume that contains injected data from multiple sources)
+    TokenExpirationSeconds:  3607
+    ConfigMapName:           kube-root-ca.crt
+    ConfigMapOptional:       <nil>
+    DownwardAPI:             true
+QoS Class:                   Guaranteed
+Node-Selectors:              <none>
+Tolerations:                 node.kubernetes.io/not-ready:NoExecute op=Exists for 300s
+                             node.kubernetes.io/unreachable:NoExecute op=Exists for 300s
+Events:
+  Type    Reason     Age   From               Message
+  ----    ------     ----  ----               -------
+  Normal  Scheduled  34s   default-scheduler  Successfully assigned default/nginx-deployment-67d4bdd6f5-w6kd7 to kube-worker-1
+  Normal  Pulling    31s   kubelet            Pulling image "nginx"
+  Normal  Pulled     30s   kubelet            Successfully pulled image "nginx" in 1.146417389s
+  Normal  Created    30s   kubelet            Created container nginx
+  Normal  Started    30s   kubelet            Started container nginx
+```
+
+<!--
+Here you can see configuration information about the container(s) and Pod (labels, resource requirements, etc.), as well as status information about the container(s) and Pod (state, readiness, restart count, events, etc.).
+-->
+在这里，你可以看到有关容器和 Pod 的配置信息（标签、资源需求等），
+以及有关容器和 Pod 的状态信息（状态、就绪、重启计数、事件等） 。
+
+<!--
+The container state is one of Waiting, Running, or Terminated. Depending on the state, additional information will be provided -- here you can see that for a container in Running state, the system tells you when the container started.
+-->
+容器状态是 Waiting、Running 和 Terminated 之一。
+根据状态的不同，还有对应的额外的信息 —— 在这里你可以看到，
+对于处于运行状态的容器，系统会告诉你容器的启动时间。
+
+<!--
+Ready tells you whether the container passed its last readiness probe. (In this case, the container does not have a readiness probe configured; the container is assumed to be ready if no readiness probe is configured.)
+-->
+Ready 指示是否通过了最后一个就绪态探测。
+(在本例中，容器没有配置就绪态探测；如果没有配置就绪态探测，则假定容器已经就绪。)
+
+<!--
+Restart Count tells you how many times the container has been restarted; this information can be useful for detecting crash loops in containers that are configured with a restart policy of 'always.'
+-->
+Restart Count 告诉你容器已重启的次数；
+这些信息对于定位配置了 “Always” 重启策略的容器持续崩溃问题非常有用。
+
+<!--
+Currently the only Condition associated with a Pod is the binary Ready condition, which indicates that the pod is able to service requests and should be added to the load balancing pools of all matching services.
+-->
+目前，唯一与 Pod 有关的状态是 Ready 状况，该状况表明 Pod 能够为请求提供服务，
+并且应该添加到相应服务的负载均衡池中。
+
+<!--
+Lastly, you see a log of recent events related to your Pod. The system compresses multiple identical events by indicating the first and last time it was seen and the number of times it was seen. "From" indicates the component that is logging the event, "SubobjectPath" tells you which object (e.g. container within the pod) is being referred to, and "Reason" and "Message" tell you what happened.
+-->
+最后，你还可以看到与 Pod 相关的近期事件。
+系统通过指示第一次和最后一次看到事件以及看到该事件的次数来压缩多个相同的事件。
+“From” 标明记录事件的组件，
+“SubobjectPath” 告诉你引用了哪个对象（例如 Pod 中的容器），
+“Reason” 和 “Message” 告诉你发生了什么。
+
+<!--
+## Example: debugging Pending Pods
+
+A common scenario that you can detect using events is when you've created a Pod that won't fit on any node. For example, the Pod might request more resources than are free on any node, or it might specify a label selector that doesn't match any nodes. Let's say we created the previous Deployment with 5 replicas (instead of 2) and requesting 600 millicores instead of 500, on a four-node cluster where each (virtual) machine has 1 CPU. In that case one of the Pods will not be able to schedule. (Note that because of the cluster addon pods such as fluentd, skydns, etc., that run on each node, if we requested 1000 millicores then none of the Pods would be able to schedule.)
+-->
+## 例子: 调试 Pending 状态的 Pod
+
+可以使用事件来调试的一个常见的场景是，你创建 Pod 无法被调度到任何节点。
+比如，Pod 请求的资源比较多，没有任何一个节点能够满足，或者它指定了一个标签，没有节点可匹配。
+假定我们创建之前的 Deployment 时指定副本数是 5（不再是 2），并且请求 600 毫核（不再是 500），
+对于一个 4 个节点的集群，若每个节点只有 1 个 CPU，这时至少有一个 Pod 不能被调度。
+（需要注意的是，其他集群插件 Pod，比如 fluentd、skydns 等等会在每个节点上运行，
+如果我们需求 1000 毫核，将不会有 Pod 会被调度。）
+
+```shell
+kubectl get pods
+```
+
+```
+NAME                                READY     STATUS    RESTARTS   AGE
+nginx-deployment-1006230814-6winp   1/1       Running   0          7m
+nginx-deployment-1006230814-fmgu3   1/1       Running   0          7m
+nginx-deployment-1370807587-6ekbw   1/1       Running   0          1m
+nginx-deployment-1370807587-fg172   0/1       Pending   0          1m
+nginx-deployment-1370807587-fz9sd   0/1       Pending   0          1m
+```
+
+<!--
+To find out why the nginx-deployment-1370807587-fz9sd pod is not running, we can use `kubectl describe pod` on the pending Pod and look at its events:
+-->
+为了查找 Pod nginx-deployment-1370807587-fz9sd 没有运行的原因，我们可以使用
+`kubectl describe pod` 命令描述 Pod，查看其事件：
+
+```shell
+kubectl describe pod nginx-deployment-1370807587-fz9sd
+```
+
+```none
+  Name:		nginx-deployment-1370807587-fz9sd
+  Namespace:	default
+  Node:		/
+  Labels:		app=nginx,pod-template-hash=1370807587
+  Status:		Pending
+  IP:
+  Controllers:	ReplicaSet/nginx-deployment-1370807587
+  Containers:
+    nginx:
+      Image:	nginx
+      Port:	80/TCP
+      QoS Tier:
+        memory:	Guaranteed
+        cpu:	Guaranteed
+      Limits:
+        cpu:	1
+        memory:	128Mi
+      Requests:
+        cpu:	1
+        memory:	128Mi
+      Environment Variables:
+  Volumes:
+    default-token-4bcbi:
+      Type:	Secret (a volume populated by a Secret)
+      SecretName:	default-token-4bcbi
+  Events:
+    FirstSeen	LastSeen	Count	From			        SubobjectPath	Type		Reason			    Message
+    ---------	--------	-----	----			        -------------	--------	------			    -------
+    1m		    48s		    7	    {default-scheduler }			        Warning		FailedScheduling	pod (nginx-deployment-1370807587-fz9sd) failed to fit in any node
+  fit failure on node (kubernetes-node-6ta5): Node didn't have enough resource: CPU, requested: 1000, used: 1420, capacity: 2000
+  fit failure on node (kubernetes-node-wul5): Node didn't have enough resource: CPU, requested: 1000, used: 1100, capacity: 2000
+```
+
+<!--
+Here you can see the event generated by the scheduler saying that the Pod failed to schedule for reason `FailedScheduling` (and possibly others).  The message tells us that there were not enough resources for the Pod on any of the nodes.
+-->
+这里你可以看到由调度器记录的事件，它表明了 Pod 不能被调度的原因是 `FailedScheduling`（也可能是其他值）。
+其 message 部分表明没有任何节点拥有足够多的资源。
+
+<!--
+To correct this situation, you can use `kubectl scale` to update your Deployment to specify four or fewer replicas. (Or you could leave the one Pod pending, which is harmless.)
+-->
+要纠正这种情况，可以使用 `kubectl scale` 更新 Deployment，以指定 4 个或更少的副本。
+(或者你可以让 Pod 继续保持这个状态，这是无害的。)
+
+<!--
+Events such as the ones you saw at the end of `kubectl describe pod` are persisted in etcd and provide high-level information on what is happening in the cluster. To list all events you can use
+-->
+你在 `kubectl describe pod` 结尾处看到的事件都保存在 etcd 中，
+并提供关于集群中正在发生的事情的高级信息。
+如果需要列出所有事件，可使用命令：
+
+```shell
+kubectl get events
+```
+
+<!--
+but you have to remember that events are namespaced. This means that if you're interested in events for some namespaced object (e.g. what happened with Pods in namespace `my-namespace`) you need to explicitly provide a namespace to the command:
+-->
+但是，需要注意的是，事件是区分名字空间的。
+如果你对某些名字空间域的对象（比如 `my-namespace` 名字下的 Pod）的事件感兴趣,
+你需要显式地在命令行中指定名字空间：
+
+```shell
+kubectl get events --namespace=my-namespace
+```
+
+<!--
+To see events from all namespaces, you can use the `--all-namespaces` argument.
+-->
+查看所有 namespace 的事件，可使用 `--all-namespaces` 参数。
+
+<!--
+In addition to `kubectl describe pod`, another way to get extra information about a pod (beyond what is provided by `kubectl get pod`) is to pass the `-o yaml` output format flag to `kubectl get pod`. This will give you, in YAML format, even more information than `kubectl describe pod`--essentially all of the information the system has about the Pod. Here you will see things like annotations (which are key-value metadata without the label restrictions, that is used internally by Kubernetes system components), restart policy, ports, and volumes.
+-->
+除了 `kubectl describe pod` 以外，另一种获取 Pod 额外信息（除了 `kubectl get pod`）的方法
+是给 `kubectl get pod` 增加 `-o yaml` 输出格式参数。
+该命令将以 YAML 格式为你提供比 `kubectl describe pod` 更多的信息 —— 实际上是系统拥有的关于 Pod 的所有信息。
+在这里，你将看到注解（没有标签限制的键值元数据，由 Kubernetes 系统组件在内部使用）、
+重启策略、端口和卷等。
+
+```shell
+kubectl get pod nginx-deployment-1006230814-6winp -o yaml
+```
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  creationTimestamp: "2022-02-17T21:51:01Z"
+  generateName: nginx-deployment-67d4bdd6f5-
+  labels:
+    app: nginx
+    pod-template-hash: 67d4bdd6f5
+  name: nginx-deployment-67d4bdd6f5-w6kd7
+  namespace: default
+  ownerReferences:
+  - apiVersion: apps/v1
+    blockOwnerDeletion: true
+    controller: true
+    kind: ReplicaSet
+    name: nginx-deployment-67d4bdd6f5
+    uid: 7d41dfd4-84c0-4be4-88ab-cedbe626ad82
+  resourceVersion: "1364"
+  uid: a6501da1-0447-4262-98eb-c03d4002222e
+spec:
+  containers:
+  - image: nginx
+    imagePullPolicy: Always
+    name: nginx
+    ports:
+    - containerPort: 80
+      protocol: TCP
+    resources:
+      limits:
+        cpu: 500m
+        memory: 128Mi
+      requests:
+        cpu: 500m
+        memory: 128Mi
+    terminationMessagePath: /dev/termination-log
+    terminationMessagePolicy: File
+    volumeMounts:
+    - mountPath: /var/run/secrets/kubernetes.io/serviceaccount
+      name: kube-api-access-bgsgp
+      readOnly: true
+  dnsPolicy: ClusterFirst
+  enableServiceLinks: true
+  nodeName: kube-worker-1
+  preemptionPolicy: PreemptLowerPriority
+  priority: 0
+  restartPolicy: Always
+  schedulerName: default-scheduler
+  securityContext: {}
+  serviceAccount: default
+  serviceAccountName: default
+  terminationGracePeriodSeconds: 30
+  tolerations:
+  - effect: NoExecute
+    key: node.kubernetes.io/not-ready
+    operator: Exists
+    tolerationSeconds: 300
+  - effect: NoExecute
+    key: node.kubernetes.io/unreachable
+    operator: Exists
+    tolerationSeconds: 300
+  volumes:
+  - name: kube-api-access-bgsgp
+    projected:
+      defaultMode: 420
+      sources:
+      - serviceAccountToken:
+          expirationSeconds: 3607
+          path: token
+      - configMap:
+          items:
+          - key: ca.crt
+            path: ca.crt
+          name: kube-root-ca.crt
+      - downwardAPI:
+          items:
+          - fieldRef:
+              apiVersion: v1
+              fieldPath: metadata.namespace
+            path: namespace
+status:
+  conditions:
+  - lastProbeTime: null
+    lastTransitionTime: "2022-02-17T21:51:01Z"
+    status: "True"
+    type: Initialized
+  - lastProbeTime: null
+    lastTransitionTime: "2022-02-17T21:51:06Z"
+    status: "True"
+    type: Ready
+  - lastProbeTime: null
+    lastTransitionTime: "2022-02-17T21:51:06Z"
+    status: "True"
+    type: ContainersReady
+  - lastProbeTime: null
+    lastTransitionTime: "2022-02-17T21:51:01Z"
+    status: "True"
+    type: PodScheduled
+  containerStatuses:
+  - containerID: containerd://5403af59a2b46ee5a23fb0ae4b1e077f7ca5c5fb7af16e1ab21c00e0e616462a
+    image: docker.io/library/nginx:latest
+    imageID: docker.io/library/nginx@sha256:2834dc507516af02784808c5f48b7cbe38b8ed5d0f4837f16e78d00deb7e7767
+    lastState: {}
+    name: nginx
+    ready: true
+    restartCount: 0
+    started: true
+    state:
+      running:
+        startedAt: "2022-02-17T21:51:05Z"
+  hostIP: 192.168.0.113
+  phase: Running
+  podIP: 10.88.0.3
+  podIPs:
+  - ip: 10.88.0.3
+  - ip: 2001:db8::1
+  qosClass: Guaranteed
+  startTime: "2022-02-17T21:51:01Z"
+```
+
+<!--
+## Examining pod logs {#examine-pod-logs}
+
+First, look at the logs of the affected container:
+
+```shell
+kubectl logs ${POD_NAME} ${CONTAINER_NAME}
+```
+
+If your container has previously crashed, you can access the previous container's crash log with:
+
+```shell
+kubectl logs --previous ${POD_NAME} ${CONTAINER_NAME}
+```
+-->
+## 检查 Pod 的日志 {#examine-pod-logs}
+
+首先，查看受到影响的容器的日志：
+
+```shell
+kubectl logs ${POD_NAME} ${CONTAINER_NAME}
+```
+
+如果你的容器之前崩溃过，你可以通过下面命令访问之前容器的崩溃日志：
+
+```shell
+kubectl logs --previous ${POD_NAME} ${CONTAINER_NAME}
+```
+
+<!--
+## Debugging with container exec {#container-exec}
+
+If the {{< glossary_tooltip text="container image" term_id="image" >}} includes
+debugging utilities, as is the case with images built from Linux and Windows OS
+base images, you can run commands inside a specific container with
+`kubectl exec`:
+
+```shell
+kubectl exec ${POD_NAME} -c ${CONTAINER_NAME} -- ${CMD} ${ARG1} ${ARG2} ... ${ARGN}
+```
+
+{{< note >}}
+`-c ${CONTAINER_NAME}` is optional. You can omit it for Pods that only contain a single container.
+{{< /note >}}
+
+As an example, to look at the logs from a running Cassandra pod, you might run
+
+```shell
+kubectl exec cassandra -- cat /var/log/cassandra/system.log
+```
+
+You can run a shell that's connected to your terminal using the `-i` and `-t`
+arguments to `kubectl exec`, for example:
+
+```shell
+kubectl exec -it cassandra -- sh
+```
+
+For more details, see [Get a Shell to a Running Container](
+/docs/tasks/debug/debug-application/get-shell-running-container/).
+-->
+## 使用容器 exec 进行调试 {#container-exec}
+
+如果 {{< glossary_tooltip text="容器镜像" term_id="image" >}} 包含调试程序，
+比如从 Linux 和 Windows 操作系统基础镜像构建的镜像，你可以使用 `kubectl exec` 命令
+在特定的容器中运行一些命令：
+
+```shell
+kubectl exec ${POD_NAME} -c ${CONTAINER_NAME} -- ${CMD} ${ARG1} ${ARG2} ... ${ARGN}
+```
+{{< note >}}
+`-c ${CONTAINER_NAME}` 是可选择的。如果Pod中仅包含一个容器，就可以忽略它。
+{{< /note >}}
+
+例如，要查看正在运行的 Cassandra pod中的日志，可以运行：
+
+```shell
+kubectl exec cassandra -- cat /var/log/cassandra/system.log
+```
+
+你可以在 `kubectl exec` 命令后面加上 `-i` 和 `-t` 来运行一个连接到你的终端的 Shell，比如：
+
+```shell
+kubectl exec -it cassandra -- sh
+```
+
+若要了解更多内容，可查看[获取正在运行容器的 Shell](/zh-cn/docs/tasks/debug/debug-application/get-shell-running-container/)。
+
+<!--
+## Debugging with an ephemeral debug container {#ephemeral-container}
+
+{{< feature-state state="beta" for_k8s_version="v1.23" >}}
+
+{{< glossary_tooltip text="Ephemeral containers" term_id="ephemeral-container" >}}
+are useful for interactive troubleshooting when `kubectl exec` is insufficient
+because a container has crashed or a container image doesn't include debugging
+utilities, such as with [distroless images](
+https://github.com/GoogleContainerTools/distroless).
+-->
+## 使用临时调试容器来进行调试 {#ephemeral-container}
+
+{{< feature-state state="beta" for_k8s_version="v1.23" >}}
+
+当由于容器崩溃或容器镜像不包含调试程序（例如[无发行版镜像](https://github.com/GoogleContainerTools/distroless)等）
+而导致 `kubectl exec` 无法运行时，{{< glossary_tooltip text="临时容器" term_id="ephemeral-container" >}}对于排除交互式故障很有用。
+
+<!--
+### Example debugging using ephemeral containers {#ephemeral-container-example}
+
+You can use the `kubectl debug` command to add ephemeral containers to a
+running Pod. First, create a pod for the example:
+
+```shell
+kubectl run ephemeral-demo --image=k8s.gcr.io/pause:3.1 --restart=Never
+```
+
+The examples in this section use the `pause` container image because it does not
+contain debugging utilities, but this method works with all container
+images.
+-->
+## 使用临时容器来调试的例子 {#ephemeral-container-example}
+
+你可以使用 `kubectl debug` 命令来给正在运行中的 Pod 增加一个临时容器。
+首先，像示例一样创建一个 pod：
+
+```shell
+kubectl run ephemeral-demo --image=k8s.gcr.io/pause:3.1 --restart=Never
+```
+
+{{< note >}}
+本节示例中使用 `pause` 容器镜像，因为它不包含调试程序，但是这个方法适用于所有容器镜像。
+{{< /note >}}
+
+<!--
+If you attempt to use `kubectl exec` to create a shell you will see an error
+because there is no shell in this container image.
+-->
+如果你尝试使用 `kubectl exec` 来创建一个 shell，你将会看到一个错误，因为这个容器镜像中没有 shell。
+
+```shell
+kubectl exec -it ephemeral-demo -- sh
+```
+
+```
+OCI runtime exec failed: exec failed: container_linux.go:346: starting container process caused "exec: \"sh\": executable file not found in $PATH": unknown
+```
+
+<!-- 
+You can instead add a debugging container using `kubectl debug`. If you
+specify the `-i`/`--interactive` argument, `kubectl` will automatically attach
+to the console of the Ephemeral Container.
+-->
+
+你可以改为使用 `kubectl debug` 添加调试容器。
+如果你指定 `-i` 或者 `--interactive` 参数，`kubectl` 将自动挂接到临时容器的控制台。
+
+```shell
+kubectl debug -it ephemeral-demo --image=busybox:1.28 --target=ephemeral-demo
+```
+
+```
+Defaulting debug container name to debugger-8xzrl.
+If you don't see a command prompt, try pressing enter.
+/ #
+```
+
+<!--
+This command adds a new busybox container and attaches to it. The `--target`
+parameter targets the process namespace of another container. It's necessary
+here because `kubectl run` does not enable [process namespace sharing](
+/docs/tasks/configure-pod-container/share-process-namespace/) in the pod it
+creates.
+
+{{< note >}}
+The `--target` parameter must be supported by the {{< glossary_tooltip
+text="Container Runtime" term_id="container-runtime" >}}. When not supported,
+the Ephemeral Container may not be started, or it may be started with an
+isolated process namespace so that `ps` does not reveal processes in other
+containers.
+{{< /note >}}
+
+You can view the state of the newly created ephemeral container using `kubectl describe`:
+-->
+此命令添加一个新的 busybox 容器并将其挂接到该容器。`--target` 参数指定另一个容器的进程命名空间。
+这是必需的，因为 `kubectl run` 不能在它创建的pod中启用
+[共享进程命名空间](/zh-cn/docs/tasks/configure-pod-container/share-process-namespace/)。
+
+{{< note >}}
+{{< glossary_tooltip text="容器运行时" term_id="container-runtime" >}}必须支持 `--target` 参数。
+如果不支持，则临时容器可能不会启动，或者可能使用隔离的进程命名空间启动，
+以便 `ps` 不显示其他容器内的进程。
+{{< /note >}}
+
+你可以使用 `kubectl describe` 查看新创建的临时容器的状态：
+
+```shell
+kubectl describe pod ephemeral-demo
+```
+
+```
+...
+Ephemeral Containers:
+  debugger-8xzrl:
+    Container ID:   docker://b888f9adfd15bd5739fefaa39e1df4dd3c617b9902082b1cfdc29c4028ffb2eb
+    Image:          busybox
+    Image ID:       docker-pullable://busybox@sha256:1828edd60c5efd34b2bf5dd3282ec0cc04d47b2ff9caa0b6d4f07a21d1c08084
+    Port:           <none>
+    Host Port:      <none>
+    State:          Running
+      Started:      Wed, 12 Feb 2020 14:25:42 +0100
+    Ready:          False
+    Restart Count:  0
+    Environment:    <none>
+    Mounts:         <none>
+...
+```
+
+<!--
+Use `kubectl delete` to remove the Pod when you're finished:
+-->
+使用 `kubectl delete` 来移除已经结束掉的 Pod：
+
+```shell
+kubectl delete pod ephemeral-demo
+```
+
+<!--
+## Debugging using a copy of the Pod
+-->
+## 通过 Pod 副本调试
+
+<!--
+Sometimes Pod configuration options make it difficult to troubleshoot in certain
+situations. For example, you can't run `kubectl exec` to troubleshoot your
+container if your container image does not include a shell or if your application
+crashes on startup. In these situations you can use `kubectl debug` to create a
+copy of the Pod with configuration values changed to aid debugging.
+-->
+有些时候 Pod 的配置参数使得在某些情况下很难执行故障排查。
+例如，在容器镜像中不包含 shell 或者你的应用程序在启动时崩溃的情况下，
+就不能通过运行 `kubectl exec` 来排查容器故障。
+在这些情况下，你可以使用 `kubectl debug` 来创建 Pod 的副本，通过更改配置帮助调试。
+
+<!--
+### Copying a Pod while adding a new container
+-->
+### 在添加新的容器时创建 Pod 副本
+
+<!--
+Adding a new container can be useful when your application is running but not
+behaving as you expect and you'd like to add additional troubleshooting
+utilities to the Pod.
+-->
+当应用程序正在运行但其表现不符合预期时，你会希望在 Pod 中添加额外的调试工具，
+这时添加新容器是很有用的。
+
+<!--
+For example, maybe your application's container images are built on `busybox`
+but you need debugging utilities not included in `busybox`. You can simulate
+this scenario using `kubectl run`:
+-->
+例如，应用的容器镜像是建立在 `busybox` 的基础上，
+但是你需要 `busybox` 中并不包含的调试工具。
+你可以使用 `kubectl run` 模拟这个场景:
+
+```shell
+kubectl run myapp --image=busybox:1.28 --restart=Never -- sleep 1d
+```
+<!--
+Run this command to create a copy of `myapp` named `myapp-debug` that adds a
+new Ubuntu container for debugging:
+-->
+通过运行以下命令，建立 `myapp` 的一个名为 `myapp-debug` 的副本，
+新增了一个用于调试的 Ubuntu 容器，
+
+```shell
+kubectl debug myapp -it --image=ubuntu --share-processes --copy-to=myapp-debug
+```
+
+```
+Defaulting debug container name to debugger-w7xmf.
+If you don't see a command prompt, try pressing enter.
+root@myapp-debug:/#
+```
+<!--
+* `kubectl debug` automatically generates a container name if you don't choose
+  one using the `--container` flag.
+* The `-i` flag causes `kubectl debug` to attach to the new container by
+  default.  You can prevent this by specifying `--attach=false`. If your session
+  becomes disconnected you can reattach using `kubectl attach`.
+* The `--share-processes` allows the containers in this Pod to see processes
+  from the other containers in the Pod. For more information about how this
+  works, see [Share Process Namespace between Containers in a Pod](
+  /docs/tasks/configure-pod-container/share-process-namespace/).
+-->
+{{< note >}}
+* 如果你没有使用 `--container` 指定新的容器名，`kubectl debug` 会自动生成的。
+* 默认情况下，`-i` 标志使 `kubectl debug` 附加到新容器上。
+  你可以通过指定 `--attach=false` 来防止这种情况。
+  如果你的会话断开连接，你可以使用 `kubectl attach` 重新连接。
+* `--share-processes` 允许在此 Pod 中的其他容器中查看该容器的进程。
+  参阅[在 Pod 中的容器之间共享进程命名空间](/zh-cn/docs/tasks/configure-pod-container/share-process-namespace/)
+  获取更多信息。
+{{< /note >}}
+
+<!--
+Don't forget to clean up the debugging Pod when you're finished with it:
+-->
+不要忘了清理调试 Pod：
+
+```shell
+kubectl delete pod myapp myapp-debug
+```
+
+<!--
+### Copying a Pod while changing its command
+-->
+### 在改变 Pod 命令时创建 Pod 副本
+
+<!--
+Sometimes it's useful to change the command for a container, for example to
+add a debugging flag or because the application is crashing.
+-->
+有时更改容器的命令很有用，例如添加调试标志或因为应用崩溃。
+
+<!--
+To simulate a crashing application, use `kubectl run` to create a container
+that immediately exits:
+-->
+为了模拟应用崩溃的场景，使用 `kubectl run` 命令创建一个立即退出的容器：
+
+```
+kubectl run --image=busybox:1.28 myapp -- false
+```
+
+<!--
+You can see using `kubectl describe pod myapp` that this container is crashing:
+-->
+使用 `kubectl describe pod myapp` 命令，你可以看到容器崩溃了：
+
+```
+Containers:
+  myapp:
+    Image:         busybox
+    ...
+    Args:
+      false
+    State:          Waiting
+      Reason:       CrashLoopBackOff
+    Last State:     Terminated
+      Reason:       Error
+      Exit Code:    1
+```
+
+<!--
+You can use `kubectl debug` to create a copy of this Pod with the command
+changed to an interactive shell:
+-->
+你可以使用 `kubectl debug` 命令创建该 Pod 的一个副本，
+在该副本中命令改变为交互式 shell：
+
+```
+kubectl debug myapp -it --copy-to=myapp-debug --container=myapp -- sh
+```
+
+```
+If you don't see a command prompt, try pressing enter.
+/ #
+```
+
+<!--
+Now you have an interactive shell that you can use to perform tasks like
+checking filesystem paths or running the container command manually.
+-->
+现在你有了一个可以执行类似检查文件系统路径或者手动运行容器命令的交互式 shell。 
+
+<!--
+* To change the command of a specific container you must
+  specify its name using `--container` or `kubectl debug` will instead
+  create a new container to run the command you specified.
+* The `-i` flag causes `kubectl debug` to attach to the container by default.
+  You can prevent this by specifying `--attach=false`. If your session becomes
+  disconnected you can reattach using `kubectl attach`.
+-->
+{{< note >}}
+* 要更改指定容器的命令，你必须用 `--container` 命令指定容器的名字，
+  否则 `kubectl debug` 将建立一个新的容器运行你指定的命令。
+* 默认情况下，标志 `-i` 使 `kubectl debug` 附加到容器。
+  你可通过指定 `--attach=false` 来防止这种情况。
+  如果你的断开连接，可以使用 `kubectl attach` 重新连接。
+{{< /note >}} 
+
+<!--
+Don't forget to clean up the debugging Pod when you're finished with it:
+-->
+不要忘了清理调试 Pod：
+
+```shell
+kubectl delete pod myapp myapp-debug
+```
+<!--
+### Copying a Pod while changing container images
+
+In some situations you may want to change a misbehaving Pod from its normal
+production container images to an image containing a debugging build or
+additional utilities.
+
+As an example, create a Pod using `kubectl run`:
+-->
+### 在更改容器镜像时创建 Pod 副本
+
+在某些情况下，你可能想从正常生产容器镜像中
+把行为异常的 Pod 改变为包含调试版本或者附加应用的镜像。
+
+下面的例子，用 `kubectl run`创建一个 Pod：
+
+```
+kubectl run myapp --image=busybox:1.28 --restart=Never -- sleep 1d
+```
+<!--
+Now use `kubectl debug` to make a copy and change its container image
+to `ubuntu`:
+-->
+现在可以使用 `kubectl debug`  创建一个副本
+并改变容器镜像为 `ubuntu`：
+
+```
+kubectl debug myapp --copy-to=myapp-debug --set-image=*=ubuntu
+```
+
+<!--
+The syntax of `--set-image` uses the same `container_name=image` syntax as
+`kubectl set image`. `*=ubuntu` means change the image of all containers
+to `ubuntu`.
+
+Don't forget to clean up the debugging Pod when you're finished with it:
+-->
+`--set-image` 与 `container_name=image` 使用相同的 `kubectl set image` 语法。
+`*=ubuntu` 表示把所有容器的镜像改为 `ubuntu`。
+
+```shell
+kubectl delete pod myapp myapp-debug
+```
+
+<!--
+## Debugging via a shell on the node {#node-shell-session}
+
+If none of these approaches work, you can find the Node on which the Pod is
+running and create a privileged Pod running in the host namespaces. To create
+an interactive shell on a node using `kubectl debug`, run:
+-->
+## 在节点上通过 shell 来进行调试 {#node-shell-session}
+
+如果这些方法都不起作用，你可以找到运行 Pod 的节点，然后在节点上部署一个运行在宿主名字空间的特权 Pod。
+
+你可以通过`kubectl debug` 在节点上创建一个交互式 shell：
+
+```shell
+kubectl debug node/mynode -it --image=ubuntu
+```
+
+```
+Creating debugging pod node-debugger-mynode-pdx84 with container debugger on node mynode.
+If you don't see a command prompt, try pressing enter.
+root@ek8s:/#
+```
+
+<!--
+When creating a debugging session on a node, keep in mind that:
+
+* `kubectl debug` automatically generates the name of the new Pod based on
+  the name of the Node.
+* The container runs in the host IPC, Network, and PID namespaces.
+* The root filesystem of the Node will be mounted at `/host`.
+
+Don't forget to clean up the debugging Pod when you're finished with it:
+-->
+当在节点上创建调试会话，注意以下要点：
+* `kubectl debug` 基于节点的名字自动生成新的 Pod 的名字。
+* 新的调试容器运行在宿主命名空间里（IPC, 网络 还有PID命名空间）。
+* 节点的根文件系统会被挂载在 `/host`。
+
+当你完成节点调试时，不要忘记清理调试 Pod：
+
+```shell
+kubectl delete pod node-debugger-mynode-pdx84
+```
\ No newline at end of file
diff --git a/content/zh/docs/tasks/debug-application-cluster/debug-service.md b/content/zh-cn/docs/tasks/debug/debug-application/debug-service.md
similarity index 91%
rename from content/zh/docs/tasks/debug-application-cluster/debug-service.md
rename to content/zh-cn/docs/tasks/debug/debug-application/debug-service.md
index 469e004a5c..a6fe8453f3 100644
--- a/content/zh/docs/tasks/debug-application-cluster/debug-service.md
+++ b/content/zh-cn/docs/tasks/debug/debug-application/debug-service.md
@@ -1,17 +1,20 @@
 ---
-content_type: concept
+content_type: task
 title: 调试 Service
+weight: 20
 ---
 
 <!--
 reviewers:
 - thockin
 - bowei
-content_type: concept
+content_type: task
 title: Debug Services
+weight: 20
 -->
 
 <!-- overview -->
+
 <!--
 An issue that comes up rather frequently for new installations of Kubernetes is
 that a Service is not working properly.  You've run your Pods through a
@@ -19,12 +22,12 @@ Deployment (or other workload controller) and created a Service, but you
 get no response when you try to access it.  This document will hopefully help
 you to figure out what's going wrong.
 -->
-对于新安装的 Kubernetes，经常出现的问题是 Service 无法正常运行。 你已经通过
-Deployment（或其他工作负载控制器）运行了 Pod，并创建 Service ，但是
-当你尝试访问它时，没有任何响应。此文档有望对你有所帮助并找出问题所在。
-
+对于新安装的 Kubernetes，经常出现的问题是 Service 无法正常运行。你已经通过
+Deployment（或其他工作负载控制器）运行了 Pod，并创建 Service ，
+但是当你尝试访问它时，没有任何响应。此文档有望对你有所帮助并找出问题所在。
 
 <!-- body -->
+
 <!--
 ## Running commands in a Pod
 
@@ -216,11 +219,13 @@ What would happen if you tried to access a non-existent Service?  If
 you have another Pod that consumes this Service by name you would get
 something like:
 -->
-## Service 是否存在？
+## Service 是否存在？   {#does-the-service-exist}
 
-细心的读者会注意到我们实际上尚未创建 Service -这是有意而为之。 这一步有时会被遗忘，这是首先要检查的步骤。
+细心的读者会注意到我们实际上尚未创建 Service —— 这是有意而为之。
+这一步有时会被遗忘，这是首先要检查的步骤。
 
-那么，如果我尝试访问不存在的 Service 会怎样？ 假设你有另一个 Pod 通过名称匹配到 Service ，你将得到类似结果：
+那么，如果我尝试访问不存在的 Service 会怎样？ 
+假设你有另一个 Pod 通过名称匹配到 Service，你将得到类似结果：
 
 ```shell
 wget -O- hostnames
@@ -249,7 +254,7 @@ Error from server (NotFound): services "hostnames" not found
 Let's create the Service.  As before, this is for the walk-through - you can
 use your own Service's details here.
 -->
-让我们创建 Service。 和以前一样，在这次实践中 - 你可以在此处使用自己的 Service 的内容。
+让我们创建 Service。 和以前一样，在这次实践中 —— 你可以在此处使用自己的 Service 的内容。
 
 ```shell
 kubectl expose deployment hostnames --port=80 --target-port=9376
@@ -280,7 +285,7 @@ As before, this is the same as if you had started the `Service` with YAML:
 -->
 现在你知道了 Service 确实存在。
 
-同前，此步骤效果与通过 YAML 方式启动 'Service' 一样：
+同前，此步骤效果与通过 YAML 方式启动 `Service` 一样：
 
 ```yaml
 apiVersion: v1
@@ -305,6 +310,21 @@ Services, these values might be the same.
 为了突出配置范围的完整性，你在此处创建的 Service 使用的端口号与 Pods 不同。
 对于许多真实的 Service，这些值可以是相同的。
 
+<!--
+## Any Network Policy Ingress rules affecting the target Pods?
+
+If you have deployed any Network Policy Ingress rules which may affect incoming
+traffic to `hostnames-*` Pods, these need to be reviewed.
+
+Please refer to [Network Policies](/docs/concepts/services-networking/network-policies/) for more details.
+-->
+## 是否存在影响目标 Pod 的网络策略入站规则？
+
+如果你部署了任何可能影响到 `hostnames-*` Pod 的传入流量的网络策略入站规则，
+则需要对其进行检查。
+
+详细信息，请参阅[网络策略](/zh-cn/docs/concepts/services-networking/network-policies/)。
+
 <!--
 ## Does the Service work by DNS name?
 
@@ -313,7 +333,7 @@ name.
 
 From a Pod in the same Namespace:
 -->
-## Service 是否可通过 DNS 名字访问？
+## Service 是否可通过 DNS 名字访问？  {#does-the-service-work-by-dns-name}
 
 通常客户端通过 DNS 名称来匹配到 Service。
 
@@ -375,9 +395,6 @@ own cluster.
 
 You can also try this from a `Node` in the cluster:
 
-{{< note >}}
-10.0.0.10 is the cluster's DNS Service IP, yours might be different.
-{{< /note >}}
 -->
 注意这里的后缀："default.svc.cluster.local"。"default" 是我们正在操作的命名空间。
 "svc" 表示这是一个 Service。"cluster.local" 是你的集群域，在你自己的集群中可能会有所不同。
@@ -385,6 +402,9 @@ You can also try this from a `Node` in the cluster:
 你也可以在集群中的节点上尝试此操作：
 
 {{< note >}}
+<!--
+10.0.0.10 is the cluster's DNS Service IP, yours might be different.
+-->
 10.0.0.10 是集群的 DNS 服务 IP，你的可能有所不同。
 {{< /note >}}
 
@@ -426,7 +446,11 @@ options ndots:5
 <!--
 The `nameserver` line must indicate your cluster's DNS `Service`.  This is
 passed into `kubelet` with the `--cluster-dns` flag.
+-->
+`nameserver` 行必须指示你的集群的 DNS Service，
+它是通过 `--cluster-dns` 标志传递到 kubelet 的。
 
+<!--
 The `search` line must include an appropriate suffix for you to find the
 Service name.  In this case it is looking for Services in the local
 Namespace ("default.svc.cluster.local"), Services in all Namespaces
@@ -437,22 +461,20 @@ to 6 total).  The cluster suffix is passed into `kubelet` with the
 assumed to be "cluster.local".  Your own clusters might be configured
 differently, in which case you should change that in all of the previous
 commands.
-
-The `options` line must set `ndots` high enough that your DNS client library
-considers search paths at all.  Kubernetes sets this to 5 by default, which is
-high enough to cover all of the DNS names it generates.
 -->
-`nameserver` 行必须指示你的集群的 DNS Service，
-它是通过 `--cluster-dns` 标志传递到 kubelet 的。
-
 `search` 行必须包含一个适当的后缀，以便查找 Service 名称。
-在本例中，它查找本地命名空间（`default.svc.cluster.local`）中的服务和
-所有命名空间（`svc.cluster.local`）中的服务，最后在集群（`cluster.local`）中查找
-服务的名称。根据你自己的安装情况，可能会有额外的记录（最多 6 条）。
+在本例中，它查找本地命名空间（`default.svc.cluster.local`）中的服务和所有命名空间
+（`svc.cluster.local`）中的服务，最后在集群（`cluster.local`）中查找服务的名称。
+根据你自己的安装情况，可能会有额外的记录（最多 6 条）。
 集群后缀是通过 `--cluster-domain` 标志传递给 `kubelet` 的。 
 本文中，我们假定后缀是 “cluster.local”。
 你的集群配置可能不同，这种情况下，你应该在上面的所有命令中更改它。
 
+<!--
+The `options` line must set `ndots` high enough that your DNS client library
+considers search paths at all.  Kubernetes sets this to 5 by default, which is
+high enough to cover all of the DNS names it generates.
+-->
 `options` 行必须设置足够高的 `ndots`，以便 DNS 客户端库考虑搜索路径。
 在默认情况下，Kubernetes 将这个值设置为 5，这个值足够高，足以覆盖它生成的所有 DNS 名称。
 
@@ -495,7 +517,7 @@ Assuming you have confirmed that DNS works, the next thing to test is whether yo
 Service works by its IP address.  From a Pod in your cluster, access the
 Service's IP (from `kubectl get` above).
 -->
-### Service 能够通过 IP 访问么？
+### Service 能够通过 IP 访问么？   {#does-the-service-work-by-ip}
 
 假设你已经确认 DNS 工作正常，那么接下来要测试的是你的 Service 能否通过它的 IP 正常访问。
 从集群中的一个 Pod，尝试访问 Service 的 IP（从上面的 `kubectl get` 命令获取）。
@@ -521,7 +543,8 @@ hostnames-632524106-tlaok
 If your Service is working, you should get correct responses.  If not, there
 are a number of things that could be going wrong.  Read on.
 -->
-如果 Service 状态是正常的，你应该得到正确的响应。如果没有，有很多可能出错的地方，请继续阅读。
+如果 Service 状态是正常的，你应该得到正确的响应。
+如果没有，有很多可能出错的地方，请继续阅读。
 
 <!--
 ## Is the Service defined correctly?
@@ -530,7 +553,7 @@ It might sound silly, but you should really double and triple check that your
 `Service` is correct and matches your `Pod`'s port.  Read back your `Service`
 and verify it:
 -->
-## Service 的配置是否正确？
+## Service 的配置是否正确？   {#is-the-service-defined-correctly}
 
 这听起来可能很愚蠢，但你应该两次甚至三次检查你的 Service 配置是否正确，并且与你的 Pod 匹配。
 查看你的 Service 配置并验证它：
@@ -597,7 +620,7 @@ actually being selected by the Service.
 
 Earlier you saw that the Pods were running.  You can re-check that:
 -->
-## Service 有 Endpoints 吗？
+## Service 有 Endpoints 吗？  {#does-the-service-have-any-endpoints}
 
 如果你已经走到了这一步，你已经确认你的 Service 被正确定义，并能通过 DNS 解析。
 现在，让我们检查一下，你运行的 Pod 确实是被 Service 选中的。
@@ -607,38 +630,43 @@ Earlier you saw that the Pods were running.  You can re-check that:
 ```shell
 kubectl get pods -l app=hostnames
 ```
+
 ```none
 NAME                        READY     STATUS    RESTARTS   AGE
 hostnames-632524106-bbpiw   1/1       Running   0          1h
 hostnames-632524106-ly40y   1/1       Running   0          1h
 hostnames-632524106-tlaok   1/1       Running   0          1h
 ```
+
 <!--
 The `-l app=hostnames` argument is a label selector configured on the Service.
 
 The "AGE" column says that these Pods are about an hour old, which implies that
 they are running fine and not crashing.
+-->
+`-l app=hostnames` 参数是在 Service 上配置的标签选择器。
 
+“AGE” 列表明这些 Pod 已经启动一个小时了，这意味着它们运行良好，而未崩溃。
+
+<!--
 The "RESTARTS" column says that these pods are not crashing frequently or being
 restarted.  Frequent restarts could lead to intermittent connectivity issues.
-If the restart count is high, read more about how to [debug pods](/docs/tasks/debug-application-cluster/debug-pod-replication-controller/#debugging-pods).
+If the restart count is high, read more about how to [debug pods](/docs/tasks/debug/debug-application/debug-pods).
 
 Inside the Kubernetes system is a control loop which evaluates the selector of
 every Service and saves the results into a corresponding Endpoints object.
 -->
-`-l app=hostnames` 参数是在 Service 上配置的标签选择器。
-
-"AGE" 列表明这些 Pod 已经启动一个小时了，这意味着它们运行良好，而未崩溃。
-
 "RESTARTS" 列表明 Pod 没有经常崩溃或重启。经常性崩溃可能导致间歇性连接问题。
-如果重启次数过大，通过[调试 pod](/zh/docs/tasks/debug-application-cluster/debug-application/#debugging-pods)
+如果重启次数过大，通过[调试 Pod](/zh-cn/docs/tasks/debug/debug-application/debug-pods)
 了解相关技术。
 
-在 Kubernetes 系统中有一个控制回路，它评估每个 Service 的选择算符，并将结果保存到 Endpoints 对象中。
+在 Kubernetes 系统中有一个控制回路，它评估每个 Service 的选择算符，并将结果保存到
+Endpoints 对象中。
 
 ```shell
 kubectl get endpoints hostnames
 ```
+
 ```
 NAME        ENDPOINTS
 hostnames   10.244.0.5:9376,10.244.0.6:9376,10.244.0.7:9376
@@ -668,22 +696,23 @@ At the beginning of this walk-through, you verified the Pods themselves.
 Let's check again that the Pods are actually working - you can bypass the
 Service mechanism and go straight to the Pods, as listed by the Endpoints
 above.
-
-{{< note >}}
-These commands use the Pod port (9376), rather than the Service port (80).
-{{< /note >}}
-
-From within a Pod:
 -->
-## Pod 正常工作吗？
+## Pod 工作正常吗？   {#are-the-pods-working}
 
 至此，你知道你的 Service 已存在，并且已匹配到你的Pod。在本实验的开始，你已经检查了 Pod 本身。
-让我们再次检查 Pod 是否确实在工作 - 你可以绕过 Service 机制并直接转到 Pod，如上面的 Endpoint 所示。
+让我们再次检查 Pod 是否确实在工作 - 你可以绕过 Service 机制并直接转到 Pod，
+如上面的 Endpoints 所示。
 
 {{< note >}}
+<!--
+These commands use the Pod port (9376), rather than the Service port (80).
+-->
 这些命令使用的是 Pod 端口（9376），而不是 Service 端口（80）。
 {{< /note >}}
 
+<!--
+From within a Pod:
+-->
 在 Pod 中运行：
 
 ```shell
@@ -724,7 +753,7 @@ small set of mechanisms for providing the Service abstraction.  If your
 cluster does not use kube-proxy, the following sections will not apply, and you
 will have to investigate whatever implementation of Services you are using.
 -->
-## kube-proxy 正常工作吗？
+## kube-proxy 正常工作吗？  {#is-the-kube-proxy-working}
 
 如果你到达这里，则说明你的 Service 正在运行，拥有 Endpoints，Pod 真正在提供服务。
 此时，整个 Service 代理机制是可疑的。让我们一步一步地确认它没问题。
@@ -734,18 +763,19 @@ Service 的默认实现（在大多数集群上应用的）是 kube-proxy。
 如果你的集群不使用 kube-proxy，则以下各节将不适用，你将必须检查你正在使用的 Service 的实现方式。
 
 <!--
-## Is the kube-proxy working?
+## Is kube-proxy working?
 
 Confirm that `kube-proxy` is running on your Nodes.  Running directly on a
 Node, you should get something like the below:
 -->
-### kube-proxy 正常运行吗？
+### kube-proxy 正常运行吗？  {#is-kube-proxy working}
 
-确认 `kube-proxy` 正在节点上运行。 在节点上直接运行，你将会得到类似以下的输出：
+确认 `kube-proxy` 正在节点上运行。在节点上直接运行，你将会得到类似以下的输出：
 
 ```shell
 ps auxw | grep kube-proxy
 ```
+
 ```none
 root  4194  0.4  0.1 101864 17696 ?    Sl Jul04  25:43 /usr/local/bin/kube-proxy --master=https://kubernetes-master --kubeconfig=/var/lib/kube-proxy/kubeconfig --v=2
 ```
@@ -809,7 +839,7 @@ Kube-proxy 可以以若干模式之一运行。在上述日志中，`Using iptab
 
 In "iptables" mode, you should see something like the following on a Node:
 -->
-#### Iptables 模式
+#### Iptables 模式   {#iptables-mode}
 
 在 "iptables" 模式中, 你应该可以在节点上看到如下输出:
 
@@ -847,7 +877,7 @@ config (including node-ports and load-balancers).
 
 In "ipvs" mode, you should see something like the following on a Node:
 -->
-#### IPVS 模式
+#### IPVS 模式   {#ipvs-mode}
 
 在 "ipvs" 模式中, 你应该在节点下看到如下输出：
 
@@ -884,7 +914,7 @@ hostnames(`10.0.1.175:80`) has 3 endpoints(`10.244.0.5:9376`,
 
 In rare cases, you may be using "userspace" mode.  From your Node:
 -->
-#### Userspace 模式
+#### Userspace 模式   {#userspace-mode}
 
 在极少数情况下，你可能会用到 "userspace" 模式。在你的节点上运行：
 
@@ -915,7 +945,7 @@ more time on it here.
 Assuming you do see one the above cases, try again to access your Service by
 IP from one of your Nodes:
 -->
-### kube-proxy 是否在运行?
+### kube-proxy 是否在执行代理操作?    {#is-kube-proxy-proxying}
 
 假设你确实遇到上述情况之一，请重试从节点上通过 IP 访问你的 Service ：
 
@@ -978,14 +1008,14 @@ back to themselves if they try to access their own Service VIP. The
 `promiscuous-bridge`.
 
 -->
-### 边缘案例: Pod 无法通过 Service IP 连接到它本身       {#a-pod-fails-to-reach-itself-via-the-service-ip}
+### 边缘案例: Pod 无法通过 Service IP 连接到它本身  {#a-pod-fails-to-reach-itself-via-the-service-ip}
 
-这听起来似乎不太可能，但是确实可能发生，并且应该可行。
+这听起来似乎不太可能，但是确实可能发生，并且应该可以工作。
 
 如果网络没有为“发夹模式（Hairpin）”流量生成正确配置，
 通常当 `kube-proxy` 以 `iptables` 模式运行，并且 Pod 与桥接网络连接时，就会发生这种情况。
 `kubelet` 提供了 `hairpin-mode`
-[标志](/zh/docs/reference/command-line-tools-reference/kubelet/)。
+[标志](/zh-cn/docs/reference/command-line-tools-reference/kubelet/)。
 如果 Service 的末端尝试访问自己的 Service VIP，则该端点可以把流量负载均衡回来到它们自身。
 `hairpin-mode` 标志必须被设置为 `hairpin-veth` 或者 `promiscuous-bridge`。
 
@@ -1076,27 +1106,23 @@ Service is not working.  Please let us know what is going on, so we can help
 investigate!
 
 Contact us on
-[Slack](/docs/tasks/debug-application-cluster/troubleshooting/#slack) or
+[Slack](https://slack.k8s.io/) or
 [Forum](https://discuss.kubernetes.io) or
 [GitHub](https://github.com/kubernetes/kubernetes).
 -->
-## 寻求帮助
+## 寻求帮助  {#seek-help}
 
 如果你走到这一步，那么就真的是奇怪的事情发生了。你的 Service 正在运行，有 Endpoints 存在，
 你的 Pods 也确实在提供服务。你的 DNS 正常，`iptables` 规则已经安装，`kube-proxy` 看起来也正常。
 然而 Service 还是没有正常工作。这种情况下，请告诉我们，以便我们可以帮助调查！
 
-通过
-[Slack](/zh/docs/tasks/debug-application-cluster/troubleshooting/#slack) 或者
-[Forum](https://discuss.kubernetes.io) 或者
-[GitHub](https://github.com/kubernetes/kubernetes) 
-联系我们。
+通过 [Slack](https://slack.k8s.io/) 或者 [Forum](https://discuss.kubernetes.io) 或者
+[GitHub](https://github.com/kubernetes/kubernetes) 联系我们。
 
 ## {{% heading "whatsnext" %}}
 
 <!--
-Visit [troubleshooting document](/docs/tasks/debug-application-cluster/troubleshooting/)
-for more information.
+Visit [troubleshooting document](/docs/tasks/debug/) for more information.
 -->
-访问[故障排查文档](/zh/docs/tasks/debug-application-cluster/troubleshooting/) 获取更多信息。
+访问[故障排查文档](/zh-cn/docs/tasks/debug/)获取更多信息。
 
diff --git a/content/zh/docs/tasks/debug-application-cluster/debug-stateful-set.md b/content/zh-cn/docs/tasks/debug/debug-application/debug-statefulset.md
similarity index 61%
rename from content/zh/docs/tasks/debug-application-cluster/debug-stateful-set.md
rename to content/zh-cn/docs/tasks/debug/debug-application/debug-statefulset.md
index a206ac36e9..fe0aa09f69 100644
--- a/content/zh/docs/tasks/debug-application-cluster/debug-stateful-set.md
+++ b/content/zh-cn/docs/tasks/debug/debug-application/debug-statefulset.md
@@ -1,7 +1,21 @@
 ---
-title: 调试StatefulSet
+title: 调试 StatefulSet
 content_type: task
+weight: 30
 ---
+<!-- 
+reviewers:
+- bprashanth
+- enisoc
+- erictune
+- foxish
+- janetkuo
+- kow3ns
+- smarterclayton
+title: Debug a StatefulSet
+content_type: task
+weight: 30
+-->
 
 <!-- overview -->
 <!--
@@ -23,16 +37,16 @@ This task shows you how to debug a StatefulSet.
 <!--
 ## Debugging a StatefulSet
 
-In order to list all the pods which belong to a StatefulSet, which have a label `app=myapp` set on them,
+In order to list all the pods which belong to a StatefulSet, which have a label `app.kubernetes.io/name=MyApp` set on them,
 you can use the following:
 -->
-## 调试 StatefulSet   {#debuggin-a-statefulset}
+## 调试 StatefulSet   {#debugging-a-statefulset}
 
-StatefulSet 在创建 Pod 时为其设置了 `app=myapp` 标签，列出仅属于某 StatefulSet
+StatefulSet 在创建 Pod 时为其设置了 `app.kubernetes.io/name=MyApp` 标签，列出仅属于某 StatefulSet
 的所有 Pod 时，可以使用以下命令：
 
 ```shell
-kubectl get pods -l app=myapp
+kubectl get pods -l app.kubernetes.io/name=MyApp
 ```
 
 <!--
@@ -40,18 +54,18 @@ If you find that any Pods listed are in `Unknown` or `Terminating` state for an
 refer to the [Deleting StatefulSet Pods](/docs/tasks/run-application/delete-stateful-set/) task for
 instructions on how to deal with them.
 You can debug individual Pods in a StatefulSet using the
-[Debugging Pods](/docs/tasks/debug-application-cluster/debug-pod-replication-controller/) guide.
+[Debugging Pods](/docs/tasks/debug/debug-application/debug-pods/) guide.
 -->
 如果你发现列出的任何 Pod 长时间处于 `Unknown` 或 `Terminating` 状态，请参阅
-[删除 StatefulSet Pods](/zh/docs/tasks/run-application/delete-stateful-set/)
+[删除 StatefulSet Pod](/zh-cn/docs/tasks/run-application/delete-stateful-set/)
 了解如何处理它们的说明。
-你可以参考[调试 Pods](/zh/docs/tasks/debug-application-cluster/debug-pod-replication-controller/)
+你可以参考[调试 Pod](/zh-cn/docs/tasks/debug/debug-application/debug-pods/)
 来调试 StatefulSet 中的各个 Pod。
 
 ## {{% heading "whatsnext" %}}
 
 <!--
-Learn more about [debugging an init-container](/docs/tasks/debug-application-cluster/debug-init-containers/).
+Learn more about [debugging an init-container](/docs/tasks/debug/debug-application/debug-init-containers/).
 -->
-* 进一步了解如何[调试 Init 容器](/zh/docs/tasks/debug-application-cluster/debug-init-containers/)
+进一步了解如何[调试 Init 容器](/zh-cn/docs/tasks/debug/debug-application/debug-init-containers/)。
 
diff --git a/content/zh/docs/tasks/debug-application-cluster/determine-reason-pod-failure.md b/content/zh-cn/docs/tasks/debug/debug-application/determine-reason-pod-failure.md
similarity index 55%
rename from content/zh/docs/tasks/debug-application-cluster/determine-reason-pod-failure.md
rename to content/zh-cn/docs/tasks/debug/debug-application/determine-reason-pod-failure.md
index 19f29d781b..9dfe0f2fe2 100644
--- a/content/zh/docs/tasks/debug-application-cluster/determine-reason-pod-failure.md
+++ b/content/zh-cn/docs/tasks/debug/debug-application/determine-reason-pod-failure.md
@@ -17,16 +17,18 @@ termination message.
 本文介绍如何编写和读取容器的终止消息。
 
 <!--
-Termination messages provide a way for containers to write information about
-fatal events to a location where it can be easily retrieved and surfaced by
-tools like dashboards and monitoring software. In most cases, information that
-you put in a termination message should also be written to the general
+Termination messages provide a way for containers to write
+information about fatal events to a location where it can
+be easily retrieved and surfaced by tools like dashboards
+and monitoring software. In most cases, information that you
+put in a termination message should also be written to
+the general
 [Kubernetes logs](/docs/concepts/cluster-administration/logging/).
 -->
 终止消息为容器提供了一种方法，可以将有关致命事件的信息写入某个位置，
 在该位置可以通过仪表板和监控软件等工具轻松检索和显示致命事件。
-在大多数情况下，您放入终止消息中的信息也应该写入
-[常规 Kubernetes 日志](/zh/docs/concepts/cluster-administration/logging/)。
+在大多数情况下，你放入终止消息中的信息也应该写入
+[常规 Kubernetes 日志](/zh-cn/docs/concepts/cluster-administration/logging/)。
 
 ## {{% heading "prerequisites" %}}
 
@@ -43,62 +45,70 @@ the container starts.
 -->
 ## 读写终止消息
 
-在本练习中，您将创建运行一个容器的 Pod。
+在本练习中，你将创建运行一个容器的 Pod。
 配置文件指定在容器启动时要运行的命令。
 
 {{< codenew file="debug/termination.yaml" >}}
 
-1. <!--Create a Pod based on the YAML configuration file:-->基于 YAML 配置文件创建 Pod：
+<!-- 1. Create a Pod based on the YAML configuration file: -->
+1. 基于 YAML 配置文件创建 Pod：
 
-   ```shell
-   kubectl create -f https://k8s.io/examples/debug/termination.yaml
-   ``` 
+        kubectl apply -f https://k8s.io/examples/debug/termination.yaml   
 
-   <!--In the YAML file, in the `command` and `args` fields, you can see that the
+   <!--
+   In the YAML file, in the `command` and `args` fields, you can see that the
    container sleeps for 10 seconds and then writes "Sleep expired" to
    the `/dev/termination-log` file. After the container writes
-   the "Sleep expired" message, it terminates.-->
+   the "Sleep expired" message, it terminates.
+   -->
    YAML 文件中，在 `command` 和 `args` 字段，你可以看到容器休眠 10 秒然后将 "Sleep expired"
    写入 `/dev/termination-log` 文件。
    容器写完 "Sleep expired" 消息后就终止了。
 
-1. <!--Display information about the Pod:-->显示 Pod 的信息：
+<!-- 1. Display information about the Pod: -->
+1. 显示 Pod 的信息：
 
-   ```shell
-   kubectl get pod termination-demo
-   ```
+        kubectl get pod termination-demo
 
    <!--Repeat the preceding command until the Pod is no longer running.-->
    重复前面的命令直到 Pod 不再运行。
 
-1. <!--Display detailed information about the Pod:-->
-   显示 Pod 的详细信息：
+<!-- 1. Display detailed information about the Pod: -->
+1. 显示 Pod 的详细信息：
 
-   ```shell
-   kubectl get pod --output=yaml
-   ```
+        kubectl get pod termination-demo --output=yaml
 
-   <!--The output includes the "Sleep expired" message:-->输出结果包含 "Sleep expired" 消息：
-   ```yaml
-   apiVersion: v1
-   kind: Pod
-   ...
-       lastState:
-         terminated:
-           containerID: ...
-           exitCode: 0
-           finishedAt: ...
-           message: |
-             Sleep expired
-           ...
-   ```
+   <!--The output includes the "Sleep expired" message:-->
+   输出结果包含 "Sleep expired" 消息：
 
-1. <!--Use a Go template to filter the output so that it includes only the termination message:-->
-   使用 Go 模板过滤输出结果，使其只含有终止消息：
+        apiVersion: v1
+        kind: Pod
+        ...
+            lastState:
+              terminated:
+                containerID: ...
+                exitCode: 0
+                finishedAt: ...
+                message: |
+                  Sleep expired
+                ...
 
-   ```shell
-   kubectl get pod termination-demo -o go-template="{{range .status.containerStatuses}}{{.lastState.terminated.message}}{{end}}"
-   ```
+<!-- 
+1. Use a Go template to filter the output so that it includes
+only the termination message:
+-->
+1. 使用 Go 模板过滤输出结果，使其只含有终止消息：
+
+        kubectl get pod termination-demo -o go-template="{{range .status.containerStatuses}}{{.lastState.terminated.message}}{{end}}"
+   
+<!--
+If you are running a multi-container pod, you can use a Go template to include the container's name. By doing so, you can discover which of the containers is failing:
+-->
+如果你正在运行多容器 Pod，则可以使用 Go 模板来包含容器的名称。这样，你可以发现哪些容器出现故障:
+
+```shell
+kubectl get pod multi-container-pod -o go-template='{{range .status.containerStatuses}}{{printf "%s:\n%s\n\n" .name .lastState.terminated.message}}{{end}}'
+```
 
 <!--
 ## Customizing the termination message
@@ -113,9 +123,29 @@ populate the Container's status message on both success and failure.
 
 Kubernetes 从容器的 `terminationMessagePath` 字段中指定的终止消息文件中检索终止消息，
 默认值为 `/dev/termination-log`。
-通过定制这个字段，您可以告诉 Kubernetes 使用不同的文件。
+通过定制这个字段，你可以告诉 Kubernetes 使用不同的文件。
 Kubernetes 使用指定文件中的内容在成功和失败时填充容器的状态消息。
 
+<!--
+The termination message is intended to be brief final status, such as an assertion failure message.
+The kubelet truncates messages that are longer than 4096 bytes.
+
+The total message length across all containers is limited to 12KiB, divided equally among each container.
+For example, if there are 12 containers (`initContainers` or `containers`), each has 1024 bytes of available termination message space.
+
+The default termination message path is `/dev/termination-log`.
+You cannot set the termination message path after a Pod is launched
+-->
+终止消息旨在简要说明最终状态，例如断言失败消息。 
+kubelet 会截断长度超过 4096 字节的消息。
+
+所有容器的总消息长度限制为 12KiB，将会在每个容器之间平均分配。 
+例如，如果有 12 个容器（`initContainers` 或 `containers`）， 
+每个容器都有 1024 字节的可用终止消息空间。
+
+默认的终止消息路径是 `/dev/termination-log`。 
+Pod 启动后不能设置终止消息路径。
+
 <!--
 In the following example, the container writes termination messages to
 `/tmp/my-log` for Kubernetes to retrieve:
@@ -143,7 +173,6 @@ to use the last chunk of container log output if the termination message file
 is empty and the container exited with an error. The log output is limited to
 2048 bytes or 80 lines, whichever is smaller.
 -->
-
 此外，用户可以设置容器的 `terminationMessagePolicy` 字段，以便进一步自定义。
 此字段默认为 "`File`"，这意味着仅从终止消息文件中检索终止消息。
 通过将 `terminationMessagePolicy` 设置为 "`FallbackToLogsOnError`"，你就可以告诉 Kubernetes，在容器因错误退出时，如果终止消息文件为空，则使用容器日志输出的最后一块作为终止消息。
@@ -160,6 +189,6 @@ is empty and the container exited with an error. The log output is limited to
 
 * 参考 [Container](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core)
   资源的 `terminationMessagePath` 字段。
-* 了解[接收日志](/zh/docs/concepts/cluster-administration/logging/)。
+* 了解[接收日志](/zh-cn/docs/concepts/cluster-administration/logging/)。
 * 了解 [Go 模版](https://golang.org/pkg/text/template/)。
 
diff --git a/content/zh/docs/tasks/debug-application-cluster/get-shell-running-container.md b/content/zh-cn/docs/tasks/debug/debug-application/get-shell-running-container.md
similarity index 92%
rename from content/zh/docs/tasks/debug-application-cluster/get-shell-running-container.md
rename to content/zh-cn/docs/tasks/debug/debug-application/get-shell-running-container.md
index f87b7ce205..c65d3951b9 100644
--- a/content/zh/docs/tasks/debug-application-cluster/get-shell-running-container.md
+++ b/content/zh-cn/docs/tasks/debug/debug-application/get-shell-running-container.md
@@ -3,49 +3,29 @@ title: 获取正在运行容器的 Shell
 content_type: task
 ---
 
-<!--
----
-reviewers:
-- caesarxuchao
-- mikedanese
-title: Get a Shell to a Running Container
-content_type: task
----
--->
-
 <!-- overview -->
 
 <!--
 This page shows how to use `kubectl exec` to get a shell to a
 running Container.
 -->
-
 本文介绍怎样使用 `kubectl exec` 命令获取正在运行容器的 Shell。
 
-
-
-
 ## {{% heading "prerequisites" %}}
 
-
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
-
-
-
 <!-- steps -->
 
 <!--
 ## Getting a shell to a Container
 -->
-
 ## 获取容器的 Shell
 
 <!--
 In this exercise, you create a Pod that has one Container. The Container
 runs the nginx image. Here is the configuration file for the Pod:
 -->
-
 在本练习中，你将创建包含一个容器的 Pod。容器运行 nginx 镜像。下面是 Pod 的配置文件：
 
 {{< codenew file="application/shell-demo.yaml" >}}
@@ -53,7 +33,6 @@ runs the nginx image. Here is the configuration file for the Pod:
 <!--
 Create the Pod:
 -->
-
 创建 Pod：
 
 ```shell
@@ -63,7 +42,6 @@ kubectl create -f https://k8s.io/examples/application/shell-demo.yaml
 <!--
 Verify that the Container is running:
 -->
-
 检查容器是否运行正常：
 
 ```shell
@@ -73,7 +51,6 @@ kubectl get pod shell-demo
 <!--
 Get a shell to the running Container:
 -->
-
 获取正在运行容器的 Shell：
 
 ```shell
@@ -90,7 +67,6 @@ The double dash symbol "--" is used to separate the arguments you want to pass t
 <!--
 In your shell, list the root directory:
 -->
-
 在 shell 中，打印根目录：
 
 ```shell
@@ -101,7 +77,6 @@ root@shell-demo:/# ls /
 In your shell, experiment with other commands. Here are
 some examples:
 -->
-
 在 shell 中，实验其他命令。下面是一些示例：
 
 ```shell
@@ -121,22 +96,19 @@ root@shell-demo:/# ps aux | grep nginx
 <!--
 ## Writing the root page for nginx
 -->
-
-## 编写 nginx 的 根页面
+## 编写 nginx 的根页面
 
 <!--
 Look again at the configuration file for your Pod. The Pod
 has an `emptyDir` volume, and the Container mounts the volume
 at `/usr/share/nginx/html`.
 -->
-
-在看一下 Pod 的配置文件。该 Pod 有个 `emptyDir` 卷，容器将该卷挂载到了 `/usr/share/nginx/html`。
+再看一下 Pod 的配置文件。该 Pod 有个 `emptyDir` 卷，容器将该卷挂载到了 `/usr/share/nginx/html`。
 
 <!--
 In your shell, create an `index.html` file in the `/usr/share/nginx/html`
 directory:
 -->
-
 在 shell 中，在 `/usr/share/nginx/html` 目录创建一个 `index.html` 文件：
 
 ```shell
@@ -146,7 +118,6 @@ root@shell-demo:/# echo Hello shell demo > /usr/share/nginx/html/index.html
 <!--
 In your shell, send a GET request to the nginx server:
 -->
-
 在 shell 中，向 nginx 服务器发送 GET 请求：
 
 ```shell
@@ -158,7 +129,6 @@ root@shell-demo:/# curl localhost
 <!--
 The output shows the text that you wrote to the `index.html` file:
 -->
-
 输出结果显示了你在 `index.html` 中写入的文本。
 
 ```shell
@@ -168,20 +138,17 @@ Hello shell demo
 <!--
 When you are finished with your shell, enter `exit`.
 -->
-
 当用完 shell 后，输入 `exit` 退出。
 
 <!--
 ## Running individual commands in a Container
 -->
-
 ## 在容器中运行单个命令
 
 <!--
 In an ordinary command window, not your shell, list the environment
 variables in the running Container:
 -->
-
 在普通的命令窗口（而不是 shell）中，打印环境运行容器中的变量：
 
 ```shell
@@ -191,7 +158,6 @@ kubectl exec shell-demo env
 <!--
 Experiment running other commands. Here are some examples:
 -->
-
 实验运行其他命令。下面是一些示例：
 
 ```shell
@@ -200,14 +166,11 @@ kubectl exec shell-demo ls /
 kubectl exec shell-demo cat /proc/1/mounts
 ```
 
-
-
 <!-- discussion -->
 
 <!--
 ## Opening a shell when a Pod has more than one Container
 -->
-
 ## 当 Pod 包含多个容器时打开 shell
 
 <!--
@@ -217,24 +180,14 @@ suppose you have a Pod named my-pod, and the Pod has two containers
 named main-app and helper-app. The following command would open a
 shell to the main-app Container.
 -->
-
 如果 Pod 有多个容器，`--container` 或者 `-c` 可以在 `kubectl exec` 命令中指定容器。
-例如，您有个名为 my-pod 的容器，该 Pod 有两个容器分别为 main-app 和 healper-app。
+例如，你有个名为 my-pod 的 Pod，该 Pod 有两个容器分别为 main-app 和 healper-app。
 下面的命令将会打开一个 shell 访问 main-app 容器。
 
 ```shell
 kubectl exec -it my-pod --container main-app -- /bin/bash
 ```
 
-
-
-
 ## {{% heading "whatsnext" %}}
 
-
 * [kubectl exec](/docs/reference/generated/kubectl/kubectl-commands/#exec)
-
-
-
-
-
diff --git a/content/zh-cn/docs/tasks/debug/debug-cluster/_index.md b/content/zh-cn/docs/tasks/debug/debug-cluster/_index.md
new file mode 100644
index 0000000000..604174f541
--- /dev/null
+++ b/content/zh-cn/docs/tasks/debug/debug-cluster/_index.md
@@ -0,0 +1,465 @@
+---
+title: 集群故障排查
+description: 调试常见的集群问题。
+weight: 20
+no_list: true
+---
+<!--
+reviewers:
+- davidopp
+title: "Troubleshooting Clusters"
+description: Debugging common cluster issues.
+weight: 20
+no_list: true
+-->
+
+<!-- overview -->
+
+<!--
+This doc is about cluster troubleshooting; we assume you have already ruled out your application as the root cause of the
+problem you are experiencing. See
+the [application troubleshooting guide](/docs/tasks/debug/debug-application/) for tips on application debugging.
+You may also visit the [troubleshooting overview document](/docs/tasks/debug/) for more information.
+-->
+本篇文档是介绍集群故障排查的；我们假设对于你碰到的问题，你已经排除了是由应用程序造成的。
+对于应用的调试，请参阅[应用故障排查指南](/zh-cn/docs/tasks/debug/debug-application/)。
+你也可以访问[故障排查](/zh-cn/docs/tasks/debug/)来获取更多的信息。
+
+<!-- body -->
+
+<!--
+## Listing your cluster
+
+The first thing to debug in your cluster is if your nodes are all registered correctly.
+
+Run the following command:
+-->
+## 列举集群节点 {#listing-your-cluster}
+
+调试的第一步是查看所有的节点是否都已正确注册。
+
+运行以下命令：
+
+```shell
+kubectl get nodes
+```
+
+<!--
+And verify that all of the nodes you expect to see are present and that they are all in the `Ready` state.
+
+To get detailed information about the overall health of your cluster, you can run:
+-->
+验证你所希望看见的所有节点都能够显示出来，并且都处于 `Ready` 状态。
+
+为了了解你的集群的总体健康状况详情，你可以运行：
+
+```shell
+kubectl cluster-info dump
+```
+
+<!-- 
+### Example: debugging a down/unreachable node
+
+Sometimes when debugging it can be useful to look at the status of a node -- for example, because you've noticed strange behavior of a Pod that's running on the node, or to find out why a Pod won't schedule onto the node. As with Pods, you can use `kubectl describe node` and `kubectl get node -o yaml` to retrieve detailed information about nodes. For example, here's what you'll see if a node is down (disconnected from the network, or kubelet dies and won't restart, etc.). Notice the events that show the node is NotReady, and also notice that the pods are no longer running (they are evicted after five minutes of NotReady status).
+-->
+### 示例：调试关闭/无法访问的节点 {#example-debugging-a-down-unreachable-node}
+
+有时在调试时查看节点的状态很有用 —— 例如，因为你注意到在节点上运行的 Pod 的奇怪行为，
+或者找出为什么 Pod 不会调度到节点上。与 Pod 一样，你可以使用 `kubectl describe node`
+和 `kubectl get node -o yaml` 来检索有关节点的详细信息。
+例如，如果节点关闭（与网络断开连接，或者 kubelet 进程挂起并且不会重新启动等），
+你将看到以下内容。请注意显示节点为 NotReady 的事件，并注意 Pod 不再运行（它们在 NotReady 状态五分钟后被驱逐）。
+
+```shell
+kubectl get nodes
+```
+
+```none
+NAME                     STATUS       ROLES     AGE     VERSION
+kube-worker-1            NotReady     <none>    1h      v1.23.3
+kubernetes-node-bols     Ready        <none>    1h      v1.23.3
+kubernetes-node-st6x     Ready        <none>    1h      v1.23.3
+kubernetes-node-unaj     Ready        <none>    1h      v1.23.3
+```
+
+```shell
+kubectl describe node kube-worker-1
+```
+
+```none
+Name:               kube-worker-1
+Roles:              <none>
+Labels:             beta.kubernetes.io/arch=amd64
+                    beta.kubernetes.io/os=linux
+                    kubernetes.io/arch=amd64
+                    kubernetes.io/hostname=kube-worker-1
+                    kubernetes.io/os=linux
+Annotations:        kubeadm.alpha.kubernetes.io/cri-socket: /run/containerd/containerd.sock
+                    node.alpha.kubernetes.io/ttl: 0
+                    volumes.kubernetes.io/controller-managed-attach-detach: true
+CreationTimestamp:  Thu, 17 Feb 2022 16:46:30 -0500
+Taints:             node.kubernetes.io/unreachable:NoExecute
+                    node.kubernetes.io/unreachable:NoSchedule
+Unschedulable:      false
+Lease:
+  HolderIdentity:  kube-worker-1
+  AcquireTime:     <unset>
+  RenewTime:       Thu, 17 Feb 2022 17:13:09 -0500
+Conditions:
+  Type                 Status    LastHeartbeatTime                 LastTransitionTime                Reason              Message
+  ----                 ------    -----------------                 ------------------                ------              -------
+  NetworkUnavailable   False     Thu, 17 Feb 2022 17:09:13 -0500   Thu, 17 Feb 2022 17:09:13 -0500   WeaveIsUp           Weave pod has set this
+  MemoryPressure       Unknown   Thu, 17 Feb 2022 17:12:40 -0500   Thu, 17 Feb 2022 17:13:52 -0500   NodeStatusUnknown   Kubelet stopped posting node status.
+  DiskPressure         Unknown   Thu, 17 Feb 2022 17:12:40 -0500   Thu, 17 Feb 2022 17:13:52 -0500   NodeStatusUnknown   Kubelet stopped posting node status.
+  PIDPressure          Unknown   Thu, 17 Feb 2022 17:12:40 -0500   Thu, 17 Feb 2022 17:13:52 -0500   NodeStatusUnknown   Kubelet stopped posting node status.
+  Ready                Unknown   Thu, 17 Feb 2022 17:12:40 -0500   Thu, 17 Feb 2022 17:13:52 -0500   NodeStatusUnknown   Kubelet stopped posting node status.
+Addresses:
+  InternalIP:  192.168.0.113
+  Hostname:    kube-worker-1
+Capacity:
+  cpu:                2
+  ephemeral-storage:  15372232Ki
+  hugepages-2Mi:      0
+  memory:             2025188Ki
+  pods:               110
+Allocatable:
+  cpu:                2
+  ephemeral-storage:  14167048988
+  hugepages-2Mi:      0
+  memory:             1922788Ki
+  pods:               110
+System Info:
+  Machine ID:                 9384e2927f544209b5d7b67474bbf92b
+  System UUID:                aa829ca9-73d7-064d-9019-df07404ad448
+  Boot ID:                    5a295a03-aaca-4340-af20-1327fa5dab5c
+  Kernel Version:             5.13.0-28-generic
+  OS Image:                   Ubuntu 21.10
+  Operating System:           linux
+  Architecture:               amd64
+  Container Runtime Version:  containerd://1.5.9
+  Kubelet Version:            v1.23.3
+  Kube-Proxy Version:         v1.23.3
+Non-terminated Pods:          (4 in total)
+  Namespace                   Name                                 CPU Requests  CPU Limits  Memory Requests  Memory Limits  Age
+  ---------                   ----                                 ------------  ----------  ---------------  -------------  ---
+  default                     nginx-deployment-67d4bdd6f5-cx2nz    500m (25%)    500m (25%)  128Mi (6%)       128Mi (6%)     23m
+  default                     nginx-deployment-67d4bdd6f5-w6kd7    500m (25%)    500m (25%)  128Mi (6%)       128Mi (6%)     23m
+  kube-system                 kube-proxy-dnxbz                     0 (0%)        0 (0%)      0 (0%)           0 (0%)         28m
+  kube-system                 weave-net-gjxxp                      100m (5%)     0 (0%)      200Mi (10%)      0 (0%)         28m
+Allocated resources:
+  (Total limits may be over 100 percent, i.e., overcommitted.)
+  Resource           Requests     Limits
+  --------           --------     ------
+  cpu                1100m (55%)  1 (50%)
+  memory             456Mi (24%)  256Mi (13%)
+  ephemeral-storage  0 (0%)       0 (0%)
+  hugepages-2Mi      0 (0%)       0 (0%)
+Events:
+...
+```
+
+```shell
+kubectl get node kube-worker-1 -o yaml
+```
+
+```yaml
+apiVersion: v1
+kind: Node
+metadata:
+  annotations:
+    kubeadm.alpha.kubernetes.io/cri-socket: /run/containerd/containerd.sock
+    node.alpha.kubernetes.io/ttl: "0"
+    volumes.kubernetes.io/controller-managed-attach-detach: "true"
+  creationTimestamp: "2022-02-17T21:46:30Z"
+  labels:
+    beta.kubernetes.io/arch: amd64
+    beta.kubernetes.io/os: linux
+    kubernetes.io/arch: amd64
+    kubernetes.io/hostname: kube-worker-1
+    kubernetes.io/os: linux
+  name: kube-worker-1
+  resourceVersion: "4026"
+  uid: 98efe7cb-2978-4a0b-842a-1a7bf12c05f8
+spec: {}
+status:
+  addresses:
+  - address: 192.168.0.113
+    type: InternalIP
+  - address: kube-worker-1
+    type: Hostname
+  allocatable:
+    cpu: "2"
+    ephemeral-storage: "14167048988"
+    hugepages-2Mi: "0"
+    memory: 1922788Ki
+    pods: "110"
+  capacity:
+    cpu: "2"
+    ephemeral-storage: 15372232Ki
+    hugepages-2Mi: "0"
+    memory: 2025188Ki
+    pods: "110"
+  conditions:
+  - lastHeartbeatTime: "2022-02-17T22:20:32Z"
+    lastTransitionTime: "2022-02-17T22:20:32Z"
+    message: Weave pod has set this
+    reason: WeaveIsUp
+    status: "False"
+    type: NetworkUnavailable
+  - lastHeartbeatTime: "2022-02-17T22:20:15Z"
+    lastTransitionTime: "2022-02-17T22:13:25Z"
+    message: kubelet has sufficient memory available
+    reason: KubeletHasSufficientMemory
+    status: "False"
+    type: MemoryPressure
+  - lastHeartbeatTime: "2022-02-17T22:20:15Z"
+    lastTransitionTime: "2022-02-17T22:13:25Z"
+    message: kubelet has no disk pressure
+    reason: KubeletHasNoDiskPressure
+    status: "False"
+    type: DiskPressure
+  - lastHeartbeatTime: "2022-02-17T22:20:15Z"
+    lastTransitionTime: "2022-02-17T22:13:25Z"
+    message: kubelet has sufficient PID available
+    reason: KubeletHasSufficientPID
+    status: "False"
+    type: PIDPressure
+  - lastHeartbeatTime: "2022-02-17T22:20:15Z"
+    lastTransitionTime: "2022-02-17T22:15:15Z"
+    message: kubelet is posting ready status. AppArmor enabled
+    reason: KubeletReady
+    status: "True"
+    type: Ready
+  daemonEndpoints:
+    kubeletEndpoint:
+      Port: 10250
+  nodeInfo:
+    architecture: amd64
+    bootID: 22333234-7a6b-44d4-9ce1-67e31dc7e369
+    containerRuntimeVersion: containerd://1.5.9
+    kernelVersion: 5.13.0-28-generic
+    kubeProxyVersion: v1.23.3
+    kubeletVersion: v1.23.3
+    machineID: 9384e2927f544209b5d7b67474bbf92b
+    operatingSystem: linux
+    osImage: Ubuntu 21.10
+    systemUUID: aa829ca9-73d7-064d-9019-df07404ad448
+```
+
+<!--
+## Looking at logs
+
+For now, digging deeper into the cluster requires logging into the relevant machines.  Here are the locations
+of the relevant log files.  On systemd-based systems, you may need to use `journalctl` instead of examining log files.
+-->
+## 查看日志 {#looking-at-logs}
+
+目前，深入挖掘集群需要登录相关机器。以下是相关日志文件的位置。
+在基于 systemd 的系统上，你可能需要使用 `journalctl` 而不是检查日志文件。
+
+<!--
+### Control Plane nodes
+
+* `/var/log/kube-apiserver.log` - API Server, responsible for serving the API
+* `/var/log/kube-scheduler.log` - Scheduler, responsible for making scheduling decisions
+* `/var/log/kube-controller-manager.log` - a component that runs most Kubernetes built-in
+  {{<glossary_tooltip text="controllers" term_id="controller">}}, with the notable exception of scheduling
+  (the kube-scheduler handles scheduling).
+-->
+### 控制平面节点 {#control-plane-nodes}
+
+* `/var/log/kube-apiserver.log` —— API 服务器，负责提供 API 服务
+* `/var/log/kube-scheduler.log` —— 调度器，负责制定调度决策
+* `/var/log/kube-controller-manager.log` —— 运行大多数 Kubernetes
+  内置{{<glossary_tooltip text="控制器" term_id="controller">}}的组件，除了调度（kube-scheduler 处理调度）。
+
+<!--
+### Worker Nodes
+
+* `/var/log/kubelet.log` - logs from the kubelet, responsible for running containers on the node
+* `/var/log/kube-proxy.log` - logs from `kube-proxy`, which is responsible for directing traffic to Service endpoints
+-->
+
+### 工作节点 {#worker-nodes}
+
+* `/var/log/kubelet.log` —— 来自 `kubelet` 的日志，负责在节点运行容器
+* `/var/log/kube-proxy.log` —— 来自 `kube-proxy` 的日志，负责将流量转发到服务端点
+
+<!-- 
+## Cluster failure modes
+
+This is an incomplete list of things that could go wrong, and how to adjust your cluster setup to mitigate the problems.
+-->
+## 集群故障模式 {#cluster-failure-modes}
+
+这是可能出错的事情的不完整列表，以及如何调整集群设置以缓解问题。
+
+<!-- 
+### Contributing causes
+
+- VM(s) shutdown
+- Network partition within cluster, or between cluster and users
+- Crashes in Kubernetes software
+- Data loss or unavailability of persistent storage (e.g. GCE PD or AWS EBS volume)
+- Operator error, for example misconfigured Kubernetes software or application software
+-->
+### 故障原因 {#contributing-causes}
+
+- 虚拟机关闭
+- 集群内或集群与用户之间的网络分区
+- Kubernetes 软件崩溃
+- 持久存储（例如 GCE PD 或 AWS EBS 卷）的数据丢失或不可用
+- 操作员错误，例如配置错误的 Kubernetes 软件或应用程序软件
+
+<!--
+### Specific scenarios
+
+- API server VM shutdown or apiserver crashing
+  - Results
+    - unable to stop, update, or start new pods, services, replication controller
+    - existing pods and services should continue to work normally, unless they depend on the Kubernetes API
+- API server backing storage lost
+  - Results
+    - the kube-apiserver component fails to start successfully and become healthy
+    - kubelets will not be able to reach it but will continue to run the same pods and provide the same service proxying
+    - manual recovery or recreation of apiserver state necessary before apiserver is restarted
+-->
+### 具体情况 {#specific-scenarios}
+
+- API 服务器所在的 VM 关机或者 API 服务器崩溃
+  - 结果
+    - 不能停止、更新或者启动新的 Pod、服务或副本控制器
+    - 现有的 Pod 和服务在不依赖 Kubernetes API 的情况下应该能继续正常工作
+- API 服务器的后端存储丢失
+  - 结果
+    - kube-apiserver 组件未能成功启动并变健康
+    - kubelet 将不能访问 API 服务器，但是能够继续运行之前的 Pod 和提供相同的服务代理
+    - 在 API 服务器重启之前，需要手动恢复或者重建 API 服务器的状态
+<!--
+- Supporting services (node controller, replication controller manager, scheduler, etc) VM shutdown or crashes
+  - currently those are colocated with the apiserver, and their unavailability has similar consequences as apiserver
+  - in future, these will be replicated as well and may not be co-located
+  - they do not have their own persistent state
+- Individual node (VM or physical machine) shuts down
+  - Results
+    - pods on that Node stop running
+- Network partition
+  - Results
+    - partition A thinks the nodes in partition B are down; partition B thinks the apiserver is down.
+      (Assuming the master VM ends up in partition A.)
+-->
+- Kubernetes 服务组件（节点控制器、副本控制器管理器、调度器等）所在的 VM 关机或者崩溃
+  - 当前，这些控制器是和 API 服务器在一起运行的，它们不可用的现象是与 API 服务器类似的
+  - 将来，这些控制器也会复制为多份，并且可能不在运行于同一节点上
+  - 它们没有自己的持久状态
+- 单个节点（VM 或者物理机）关机
+  - 结果
+    - 此节点上的所有 Pod 都停止运行
+- 网络分裂
+  - 结果
+    - 分区 A 认为分区 B 中所有的节点都已宕机；分区 B 认为 API 服务器宕机
+      （假定主控节点所在的 VM 位于分区 A 内）。
+<!--
+- Kubelet software fault
+  - Results
+    - crashing kubelet cannot start new pods on the node
+    - kubelet might delete the pods or not
+    - node marked unhealthy
+    - replication controllers start new pods elsewhere
+- Cluster operator error
+  - Results
+    - loss of pods, services, etc
+    - lost of apiserver backing store
+    - users unable to read API
+    - etc.
+-->
+- kubelet 软件故障
+  - 结果
+    - 崩溃的 kubelet 就不能在其所在的节点上启动新的 Pod
+    - kubelet 可能删掉 Pod 或者不删
+    - 节点被标识为非健康态
+    - 副本控制器会在其它的节点上启动新的 Pod
+- 集群操作错误
+  - 结果
+    - 丢失 Pod 或服务等等
+    - 丢失 API 服务器的后端存储
+    - 用户无法读取 API
+    - 等等
+
+<!--
+### Mitigations
+
+- Action: Use IaaS provider's automatic VM restarting feature for IaaS VMs
+  - Mitigates: Apiserver VM shutdown or apiserver crashing
+  - Mitigates: Supporting services VM shutdown or crashes
+
+- Action: Use IaaS providers reliable storage (e.g. GCE PD or AWS EBS volume) for VMs with apiserver+etcd
+  - Mitigates: Apiserver backing storage lost
+
+- Action: Use [high-availability](/docs/setup/production-environment/tools/kubeadm/high-availability/) configuration
+  - Mitigates: Control plane node shutdown or control plane components (scheduler, API server, controller-manager) crashing
+    - Will tolerate one or more simultaneous node or component failures
+  - Mitigates: API server backing storage (i.e., etcd's data directory) lost
+    - Assumes HA (highly-available) etcd configuration
+-->
+### 缓解措施 {#mitigations}
+
+- 措施：对于 IaaS 上的 VM，使用 IaaS 的自动 VM 重启功能
+  - 缓解：API 服务器 VM 关机或 API 服务器崩溃
+  - 缓解：Kubernetes 服务组件所在的 VM 关机或崩溃
+
+- 措施: 对于运行 API 服务器和 etcd 的 VM，使用 IaaS 提供的可靠的存储（例如 GCE PD 或者 AWS EBS 卷）
+  - 缓解：API 服务器后端存储的丢失
+
+- 措施：使用[高可用性](/zh-cn/docs/setup/production-environment/tools/kubeadm/high-availability/)的配置
+  - 缓解：主控节点 VM 关机或者主控节点组件（调度器、API 服务器、控制器管理器）崩溃
+    - 将容许一个或多个节点或组件同时出现故障
+  - 缓解：API 服务器后端存储（例如 etcd 的数据目录）丢失
+    - 假定你使用了高可用的 etcd 配置
+
+<!--
+- Action: Snapshot apiserver PDs/EBS-volumes periodically
+  - Mitigates: Apiserver backing storage lost
+  - Mitigates: Some cases of operator error
+  - Mitigates: Some cases of Kubernetes software fault
+
+- Action: use replication controller and services in front of pods
+  - Mitigates: Node shutdown
+  - Mitigates: Kubelet software fault
+
+- Action: applications (containers) designed to tolerate unexpected restarts
+  - Mitigates: Node shutdown
+  - Mitigates: Kubelet software fault
+-->
+- 措施：定期对 API 服务器的 PD 或 EBS 卷执行快照操作
+  - 缓解：API 服务器后端存储丢失
+  - 缓解：一些操作错误的场景
+  - 缓解：一些 Kubernetes 软件本身故障的场景
+
+- 措施：在 Pod 的前面使用副本控制器或服务
+  - 缓解：节点关机
+  - 缓解：kubelet 软件故障
+
+- 措施：应用（容器）设计成容许异常重启
+  - 缓解：节点关机
+  - 缓解：kubelet 软件故障
+
+## {{% heading "whatsnext" %}}
+
+<!-- 
+* Learn about the metrics available in the
+  [Resource Metrics Pipeline](/docs/tasks/debug/debug-cluster/resource-metrics-pipeline/)
+* Discover additional tools for
+  [monitoring resource usage](/docs/tasks/debug/debug-cluster/resource-usage-monitoring/)
+* Use Node Problem Detector to
+  [monitor node health](/docs/tasks/debug/debug-cluster/monitor-node-health/)
+* Use `crictl` to [debug Kubernetes nodes](/docs/tasks/debug/debug-cluster/crictl/)
+* Get more information about [Kubernetes auditing](/docs/tasks/debug/debug-cluster/audit/)
+* Use `telepresence` to [develop and debug services locally](/docs/tasks/debug/debug-cluster/local-debugging/)
+-->
+* 了解[资源指标管道](/zh-cn/docs/tasks/debug/debug-cluster/resource-metrics-pipeline/)中可用的指标
+* 发现用于[监控资源使用](/zh-cn/docs/tasks/debug/debug-cluster/resource-usage-monitoring/)的其他工具
+* 使用节点问题检测器[监控节点健康](/zh-cn/docs/tasks/debug/debug-cluster/monitor-node-health/)
+* 使用 `crictl` 来[调试 Kubernetes 节点](/zh-cn/docs/tasks/debug/debug-cluster/crictl/)
+* 获取更多关于 [Kubernetes 审计](/zh-cn/docs/tasks/debug/debug-cluster/audit/)的信息
+* 使用 `telepresence` [本地开发和调试服务](/zh-cn/docs/tasks/debug/debug-cluster/local-debugging/)
\ No newline at end of file
diff --git a/content/zh/docs/tasks/debug-application-cluster/audit.md b/content/zh-cn/docs/tasks/debug/debug-cluster/audit.md
similarity index 92%
rename from content/zh/docs/tasks/debug-application-cluster/audit.md
rename to content/zh-cn/docs/tasks/debug/debug-cluster/audit.md
index 6ba032c030..74e7f34c87 100644
--- a/content/zh/docs/tasks/debug-application-cluster/audit.md
+++ b/content/zh-cn/docs/tasks/debug/debug-cluster/audit.md
@@ -21,7 +21,7 @@ by applications that use the Kubernetes API, and by the control plane itself.
 
 Auditing allows cluster administrators to answer the following questions:
 -->
-Kubernetes _审计（Auditing）_ 功能提供了与安全相关的、按时间顺序排列的记录集，
+Kubernetes **审计（Auditing）** 功能提供了与安全相关的、按时间顺序排列的记录集，
 记录每个用户、使用 Kubernetes API 的应用以及控制面自身引发的活动。
 
 审计功能使得集群管理员能够回答以下问题：
@@ -55,7 +55,7 @@ and the backends persist the records. The current backend implementations
 include logs files and webhooks.
 -->
 审计记录最初产生于
-[kube-apiserver](/zh/docs/reference/command-line-tools-reference/kube-apiserver/)
+[kube-apiserver](/zh-cn/docs/reference/command-line-tools-reference/kube-apiserver/)
 内部。每个请求在不同执行阶段都会生成审计事件；这些审计事件会根据特定策略
 被预处理并写入后端。策略确定要记录的内容和用来存储记录的后端。
 当前的后端支持日志文件和 webhook。
@@ -73,7 +73,7 @@ Each request can be recorded with an associated _stage_. The defined stages are:
   will be sent.
 - `Panic` - Events generated when a panic occurred.
 -->
-每个请求都可被记录其相关的 _阶段（stage）_。已定义的阶段有：
+每个请求都可被记录其相关的**阶段（stage）**。已定义的阶段有：
 
 - `RequestReceived` - 此阶段对应审计处理器接收到请求后，并且在委托给
   其余处理器之前生成的事件。
@@ -90,8 +90,8 @@ is different from the
 API object.
 -->
 {{< note >}}
-[审计事件配置](/zh/docs/reference/config-api/apiserver-audit.v1/#audit-k8s-io-v1-Event)
-的配置与 [Event](/zh/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#event-v1-core)
+[审计事件配置](/zh-cn/docs/reference/config-api/apiserver-audit.v1/#audit-k8s-io-v1-Event)
+的配置与 [Event](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#event-v1-core)
 API 对象不同。
 {{< /note >}}
 
@@ -115,11 +115,11 @@ _audit level_ of the event. The defined audit levels are:
 -->
 ## 审计策略  {#audit-policy}
 
-审计政策定义了关于应记录哪些事件以及应包含哪些数据的规则。
+审计策略定义了关于应记录哪些事件以及应包含哪些数据的规则。
 审计策略对象结构定义在
-[`audit.k8s.io` API 组](/zh/docs/reference/config-api/apiserver-audit.v1/#audit-k8s-io-v1-Policy)
+[`audit.k8s.io` API 组](/zh-cn/docs/reference/config-api/apiserver-audit.v1/#audit-k8s-io-v1-Policy)
 处理事件时，将按顺序与规则列表进行比较。第一个匹配规则设置事件的
-_审计级别（Audit Level）_。已定义的审计级别有：
+**审计级别（Audit Level）**。已定义的审计级别有：
 
 <!--
 - `None` - don't log events that match this rule.
@@ -147,7 +147,7 @@ Below is an example audit policy file:
 -->
 你可以使用 `--audit-policy-file` 标志将包含策略的文件传递给 `kube-apiserver`。
 如果不设置该标志，则不记录事件。
-注意 `rules` 字段 __必须__ 在审计策略文件中提供。没有（0）规则的策略将被视为非法配置。
+注意 `rules` 字段**必须**在审计策略文件中提供。没有（0）规则的策略将被视为非法配置。
 
 以下是一个审计策略文件的示例：
 
@@ -179,7 +179,7 @@ for details about the fields defined.
 [configure-helper.sh](https://github.com/kubernetes/kubernetes/blob/master/cluster/gce/gci/configure-helper.sh)
 脚本，该脚本能够生成审计策略文件。你可以直接在脚本中看到审计策略的绝大部份内容。
 
-你也可以参考 [`Policy` 配置参考](/zh/docs/reference/config-api/apiserver-audit.v1/#audit-k8s-io-v1-Policy)
+你也可以参考 [`Policy` 配置参考](/zh-cn/docs/reference/config-api/apiserver-audit.v1/#audit-k8s-io-v1-Policy)
 以获取有关已定义字段的详细信息。
 
 <!--
@@ -203,7 +203,7 @@ In all cases, audit events follow a structure defined by the Kubernetes API in t
 - Webhook 后端，将事件发送到外部 HTTP API
 
 在这所有情况下，审计事件均遵循 Kubernetes API 在
-[`audit.k8s.io` API 组](/zh/docs/reference/config-api/apiserver-audit.v1/#audit-k8s-io-v1-Event)
+[`audit.k8s.io` API 组](/zh-cn/docs/reference/config-api/apiserver-audit.v1/#audit-k8s-io-v1-Event)
 中定义的结构。
 
 <!--
@@ -241,7 +241,7 @@ You can configure the log audit backend using the following `kube-apiserver` fla
 Log backend writes audit events to a file in JSON format. You can configure
 log audit backend using the following [kube-apiserver][kube-apiserver] flags:
 -->
-### Log 后端
+### Log 后端   {#log-backend}
 
 Log 后端将审计事件写入 [JSONlines](https://jsonlines.org/)  格式的文件。
 你可以使用以下 `kube-apiserver` 标志配置 Log 审计后端：
@@ -267,7 +267,7 @@ to the location of the policy file and log file, so that audit records are persi
 
 ```shell
   --audit-policy-file=/etc/kubernetes/audit-policy.yaml
-  --audit-log-path=/var/log/audit.log
+  --audit-log-path=/var/log/kubernetes/audit/audit.log
 ```
 
 接下来挂载数据卷：
@@ -277,7 +277,7 @@ volumeMounts:
   - mountPath: /etc/kubernetes/audit-policy.yaml
     name: audit
     readOnly: true
-  - mountPath: /var/log/audit.log
+  - mountPath: /var/log/kubernetes/audit/
     name: audit-log
     readOnly: false
 ```
@@ -288,6 +288,8 @@ and finally configure the `hostPath`:
 最后配置 `hostPath`：
 
 ```yaml
+...
+volumes:
 - name: audit
   hostPath:
     path: /etc/kubernetes/audit-policy.yaml
@@ -295,8 +297,8 @@ and finally configure the `hostPath`:
 
 - name: audit-log
   hostPath:
-    path: /var/log/audit.log
-    type: FileOrCreate
+    path: /var/log/kubernetes/audit/
+    type: DirectoryOrCreate
 ```
 
 <!--
@@ -323,7 +325,7 @@ The webhook config file uses the kubeconfig format to specify the remote address
 the service and credentials used to connect to it.
 -->
 - `--audit-webhook-config-file` 设置 Webhook 配置文件的路径。Webhook 配置文件实际上是一个
-  [kubeconfig 文件](/zh/docs/concepts/configuration/organize-cluster-access-kubeconfig/)。
+  [kubeconfig 文件](/zh-cn/docs/concepts/configuration/organize-cluster-access-kubeconfig/)。
 - `--audit-webhook-initial-backoff` 指定在第一次失败后重发请求等待的时间。随后的请求将以指数退避重试。
 
 Webhook 配置文件使用 kubeconfig 格式指定服务的远程地址和用于连接它的凭据。
@@ -447,5 +449,4 @@ By default truncate is disabled in both `webhook` and `log`, a cluster administr
 <!--
 * Learn about [Mutating webhook auditing annotations](/docs/reference/access-authn-authz/extensible-admission-controllers/#mutating-webhook-auditing-annotations).
 -->
-* 了解 [Mutating webhook 审计注解](/zh/docs/reference/access-authn-authz/extensible-admission-controllers/#mutating-webhook-auditing-annotations)。
-
+* 了解 [Mutating webhook 审计注解](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/#mutating-webhook-auditing-annotations)。
diff --git a/content/zh/docs/tasks/debug-application-cluster/crictl.md b/content/zh-cn/docs/tasks/debug/debug-cluster/crictl.md
similarity index 59%
rename from content/zh/docs/tasks/debug-application-cluster/crictl.md
rename to content/zh-cn/docs/tasks/debug/debug-cluster/crictl.md
index f8e126f281..4a41a4ca05 100644
--- a/content/zh/docs/tasks/debug-application-cluster/crictl.md
+++ b/content/zh-cn/docs/tasks/debug/debug-cluster/crictl.md
@@ -1,12 +1,8 @@
 ---
-reviewers:
-- Random-Liu
-- feiskyer
-- mrunalp
 title: 使用 crictl 对 Kubernetes 节点进行调试
 content_type: task
+weight: 30
 ---
-
 <!--
 reviewers:
 - Random-Liu
@@ -14,9 +10,9 @@ reviewers:
 - mrunalp
 title: Debugging Kubernetes nodes with crictl
 content_type: task
+weight: 30
 -->
 
-
 <!-- overview -->
 
 {{< feature-state for_k8s_version="v1.11" state="stable" >}}
@@ -45,13 +41,13 @@ Kubernetes node. `crictl` and its source are hosted in the
 <!--
 ## Installing crictl
 
-You can download a compressed archive `crictl` from the cri-tools [release
-page](https://github.com/kubernetes-sigs/cri-tools/releases), for several
+You can download a compressed archive `crictl` from the cri-tools
+[release page](https://github.com/kubernetes-sigs/cri-tools/releases), for several
 different architectures. Download the version that corresponds to your version
 of Kubernetes. Extract it and move it to a location on your system path, such as
 `/usr/local/bin/`.
 -->
-## 安装 crictl
+## 安装 crictl    {#installing-crictl}
 
 你可以从 cri-tools [发布页面](https://github.com/kubernetes-sigs/cri-tools/releases)
 下载一个压缩的 `crictl` 归档文件，用于几种不同的架构。
@@ -64,26 +60,27 @@ of Kubernetes. Extract it and move it to a location on your system path, such as
 The `crictl` command has several subcommands and runtime flags. Use
 `crictl help` or `crictl <subcommand> help` for more details.
 -->
-## 一般用法
+## 一般用法    {#general-usage}
 
 `crictl` 命令有几个子命令和运行时参数。
 有关详细信息，请使用 `crictl help` 或 `crictl <subcommand> help` 获取帮助信息。
 
 <!--
-`crictl` connects to `unix:///var/run/dockershim.sock` by default. For other
-runtimes, you can set the endpoint in multiple different ways:
+You can set the endpoint for `crictl` by doing one of the following:
 -->
-`crictl` 默认连接到 `unix:///var/run/dockershim.sock`。
-对于其他的运行时，你可以用多种不同的方法设置端点：
+你可以用以下方法之一来为 `crictl` 设置端点：
 
 <!--
-- By setting flags `--runtime-endpoint` and `--image-endpoint`
-- By setting environment variables `CONTAINER_RUNTIME_ENDPOINT` and `IMAGE_SERVICE_ENDPOINT`
-- By setting the endpoint in the config file `--config=/etc/crictl.yaml`
+* Set the `--runtime-endpoint` and `--image-endpoint` flags.
+* Set the `CONTAINER_RUNTIME_ENDPOINT` and `IMAGE_SERVICE_ENDPOINT` environment
+  variables.
+* Set the endpoint in the configuration file `/etc/crictl.yaml`. To specify a
+  different file, use the `--config=PATH_TO_FILE` flag when you run `crictl`.
 -->
-- 通过设置参数 `--runtime-endpoint` 和 `--image-endpoint`
-- 通过设置环境变量 `CONTAINER_RUNTIME_ENDPOINT` 和 `IMAGE_SERVICE_ENDPOINT`
-- 通过在配置文件中设置端点 `--config=/etc/crictl.yaml`
+- 设置参数 `--runtime-endpoint` 和 `--image-endpoint`。
+- 设置环境变量 `CONTAINER_RUNTIME_ENDPOINT` 和 `IMAGE_SERVICE_ENDPOINT`。
+- 在配置文件 `--config=/etc/crictl.yaml` 中设置端点。
+  要设置不同的文件，可以在运行 `crictl` 时使用 `--config=PATH_TO_FILE` 标志。
 
 <!--
 You can also specify timeout values when connecting to the server and enable or
@@ -95,26 +92,32 @@ file or using the `--timeout` and `--debug` command-line flags.
 
 <!--
 To view or edit the current configuration, view or edit the contents of
-`/etc/crictl.yaml`.
+`/etc/crictl.yaml`. For example, the configuration when using the `containerd`
+container runtime would be similar to this:
 -->
 要查看或编辑当前配置，请查看或编辑 `/etc/crictl.yaml` 的内容。
+例如，使用 `containerd` 容器运行时的配置会类似于这样：
 
-```shell
-cat /etc/crictl.yaml
 ```
-```
-runtime-endpoint: unix:///var/run/dockershim.sock
-image-endpoint: unix:///var/run/dockershim.sock
+runtime-endpoint: unix:///var/run/containerd/containerd.sock
+image-endpoint: unix:///var/run/containerd/containerd.sock
 timeout: 10
 debug: true
 ```
 
+<!--
+To learn more about `crictl`, refer to the [`crictl`
+documentation](https://github.com/kubernetes-sigs/cri-tools/blob/master/docs/crictl.md).
+-->
+要进一步了解 `crictl`，参阅
+[`crictl` 文档](https://github.com/kubernetes-sigs/cri-tools/blob/master/docs/crictl.md)。
+
 <!--
 ## Example crictl commands
 
 The following examples show some `crictl` commands and example output.
 -->
-## crictl 命令示例
+## crictl 命令示例    {#example-crictl-commands}
 
 {{< warning >}}
 <!--
@@ -132,7 +135,7 @@ kubelet 最终将删除它们。
 
 List all pods:
 -->
-### 打印 Pod 清单
+### 打印 Pod 清单    {#list-pods}
 
 打印所有 Pod 的清单：
 
@@ -140,7 +143,12 @@ List all pods:
 crictl pods
 ```
 
-```none
+<!--
+The output is similar to this:
+-->
+输出类似于：
+
+```
 POD ID              CREATED              STATE               NAME                         NAMESPACE           ATTEMPT
 926f1b5a1d33a       About a minute ago   Ready               sh-84d7dcf559-4r2gq          default             0
 4dccb216c4adb       About a minute ago   Ready               nginx-65899c769f-wv2gp       default             0
@@ -157,7 +165,12 @@ List pods by name:
 crictl pods --name nginx-65899c769f-wv2gp
 ```
 
-```none
+<!--
+The output is similar to this:
+-->
+输出类似于这样：
+
+```
 POD ID              CREATED             STATE               NAME                     NAMESPACE           ATTEMPT
 4dccb216c4adb       2 minutes ago       Ready               nginx-65899c769f-wv2gp   default             0
 ```
@@ -170,6 +183,12 @@ List pods by label:
 ```shell
 crictl pods --label run=nginx
 ```
+
+<!--
+The output is similar to this:
+-->
+输出类似于这样：
+
 ```none
 POD ID              CREATED             STATE               NAME                     NAMESPACE           ATTEMPT
 4dccb216c4adb       2 minutes ago       Ready               nginx-65899c769f-wv2gp   default             0
@@ -180,13 +199,19 @@ POD ID              CREATED             STATE               NAME
 
 List all images:
 -->
-### 打印镜像清单
+### 打印镜像清单    {#list-containers}
 
 打印所有镜像清单：
 
 ```shell
 crictl images
 ```
+
+<!--
+The output is similar to this:
+-->
+输出类似于这样：
+
 ```none
 IMAGE                                     TAG                 IMAGE ID            SIZE
 busybox                                   latest              8c811b4aec35f       1.15MB
@@ -203,6 +228,12 @@ List images by repository:
 ```shell
 crictl images nginx
 ```
+
+<!--
+The output is similar to this:
+-->
+输出类似于这样：
+
 ```none
 IMAGE               TAG                 IMAGE ID            SIZE
 nginx               latest              cd5239a0906a6       109MB
@@ -216,6 +247,12 @@ Only list image IDs:
 ```shell
 crictl images -q
 ```
+
+<!--
+The output is similar to this:
+-->
+输出类似于这样：
+
 ```none
 sha256:8c811b4aec35f259572d0f79207bc0678df4c736eeec50bc9fec37ed936a472a
 sha256:e179bbfe5d238de6069f3b03fccbecc3fb4f2019af741bfff1233c4d7b2970c5
@@ -228,13 +265,19 @@ sha256:cd5239a0906a6ccf0562354852fae04bc5b52d72a2aff9a871ddb6bd57553569
 
 List all containers:
 -->
-### 打印容器清单
+### 打印容器清单    {#list-containers}
 
 打印所有容器清单：
 
 ```shell
 crictl ps -a
 ```
+
+<!--
+The output is similar to this:
+-->
+输出类似于这样：
+
 ```none
 CONTAINER ID        IMAGE                                                                                                             CREATED             STATE               NAME                       ATTEMPT
 1f73f2d81bf98       busybox@sha256:141c253bc4c3fd0a201d32dc1f493bcf3fff003b6df416dea4f41046e0f37d47                                   7 minutes ago       Running             sh                         1
@@ -251,6 +294,12 @@ List running containers:
 ```shell
 crictl ps
 ```
+
+<!--
+The output is similar to this:
+-->
+输出类似于这样：
+
 ```none
 CONTAINER ID        IMAGE                                                                                                             CREATED             STATE               NAME                       ATTEMPT
 1f73f2d81bf98       busybox@sha256:141c253bc4c3fd0a201d32dc1f493bcf3fff003b6df416dea4f41046e0f37d47                                   6 minutes ago       Running             sh                         1
@@ -261,11 +310,17 @@ CONTAINER ID        IMAGE
 <!--
 ### Execute a command in a running container
 -->
-### 在正在运行的容器上执行命令
+### 在正在运行的容器上执行命令    {#execute-a-command-in-a-running-container}
 
 ```shell
 crictl exec -i -t 1f73f2d81bf98 ls
 ```
+
+<!--
+The output is similar to this:
+-->
+输出类似于这样：
+
 ```none
 bin   dev   etc   home  proc  root  sys   tmp   usr   var
 ```
@@ -275,13 +330,19 @@ bin   dev   etc   home  proc  root  sys   tmp   usr   var
 
 Get all container logs:
 -->
-### 获取容器日志
+### 获取容器日志    {#get-a-container-s-logs}
 
 获取容器的所有日志：
 
 ```shell
 crictl logs 87d3992f84f74
 ```
+
+<!--
+The output is similar to this:
+-->
+输出类似于这样：
+
 ```none
 10.240.0.96 - - [06/Jun/2018:02:45:49 +0000] "GET / HTTP/1.1" 200 612 "-" "curl/7.47.0" "-"
 10.240.0.96 - - [06/Jun/2018:02:45:50 +0000] "GET / HTTP/1.1" 200 612 "-" "curl/7.47.0" "-"
@@ -296,6 +357,12 @@ Get only the latest `N` lines of logs:
 ```shell
 crictl logs --tail=1 87d3992f84f74
 ```
+
+<!--
+The output is similar to this:
+-->
+输出类似于这样：
+
 ```none
 10.240.0.96 - - [06/Jun/2018:02:45:51 +0000] "GET / HTTP/1.1" 200 612 "-" "curl/7.47.0" "-"
 ```
@@ -307,13 +374,15 @@ Using `crictl` to run a pod sandbox is useful for debugging container runtimes.
 On a running Kubernetes cluster, the sandbox will eventually be stopped and
 deleted by the Kubelet.
 -->
-### 运行 Pod 沙盒
+### 运行 Pod 沙盒    {#run-a-pod-sandbox}
 
 用 `crictl` 运行 Pod 沙盒对容器运行时排错很有帮助。
 在运行的 Kubernetes 集群中，沙盒会随机地被 kubelet 停止和删除。
 
-1. <!--Create a JSON file like the following:-->
-   编写下面的 JSON 文件：
+<!--
+1. Create a JSON file like the following:
+-->
+1. 编写下面的 JSON 文件：
 
    ```json
    {
@@ -329,14 +398,18 @@ deleted by the Kubelet.
    }
    ```
 
-2. <!--Use the `crictl runp` command to apply the JSON and run the sandbox.-->
-   使用 `crictl runp` 命令应用 JSON 文件并运行沙盒。
+<!--
+2. Use the `crictl runp` command to apply the JSON and run the sandbox.
+-->
+2. 使用 `crictl runp` 命令应用 JSON 文件并运行沙盒。
 
    ```shell
    crictl runp pod-config.json
    ```
 
-   <!--The ID of the sandbox is returned.-->
+   <!--
+   The ID of the sandbox is returned.
+   -->
    返回了沙盒的 ID。
 
 <!--
@@ -346,25 +419,34 @@ Using `crictl` to create a container is useful for debugging container runtimes.
 On a running Kubernetes cluster, the sandbox will eventually be stopped and
 deleted by the Kubelet.
 -->
-### 创建容器
+### 创建容器 {#create-a-container}
 
 用 `crictl` 创建容器对容器运行时排错很有帮助。
 在运行的 Kubernetes 集群中，沙盒会随机的被 kubelet 停止和删除。
 
-1. <!--Pull a busybox image-->
-   拉取 busybox 镜像
+<!--
+1. Pull a busybox image
+-->
+1. 拉取 busybox 镜像
 
-   ```bash
+   ```shell
    crictl pull busybox
+   ```
+   ```none
    Image is up to date for busybox@sha256:141c253bc4c3fd0a201d32dc1f493bcf3fff003b6df416dea4f41046e0f37d47
    ```
 
-2. <!--Create configs for the pod and the container:-->
-   创建 Pod 和容器的配置：
+<!--
+2. Create configs for the pod and the container:
+-->
+2. 创建 Pod 和容器的配置：
 
-   <!--**Pod config**:-->
+   <!--
+   **Pod config**:
+   -->
    **Pod 配置**：
-   ```yaml
+
+   ```json
    {
        "metadata": {
            "name": "nginx-sandbox",
@@ -378,18 +460,21 @@ deleted by the Kubelet.
    }
    ```
 
-   <!--**Container config**:-->
+   <!--
+   **Container config**:
+   -->
    **容器配置**：
-   ```yaml
+
+   ```json
    {
      "metadata": {
-         "name": "busybox"
+       "name": "busybox"
      },
      "image":{
-         "image": "busybox"
+       "image": "busybox"
      },
      "command": [
-         "top"
+       "top"
      ],
      "log_path":"busybox.log",
      "linux": {
@@ -397,22 +482,31 @@ deleted by the Kubelet.
    }
    ```
 
-3. <!--Create the container, passing the ID of the previously-created pod, the
+<!--
+3. Create the container, passing the ID of the previously-created pod, the
    container config file, and the pod config file. The ID of the container is
-   returned.-->
-   创建容器，传递先前创建的 Pod 的 ID、容器配置文件和 Pod 配置文件。返回容器的 ID。
+   returned.
+-->
+3. 创建容器，传递先前创建的 Pod 的 ID、容器配置文件和 Pod 配置文件。返回容器的 ID。
 
    ```bash
    crictl create f84dd361f8dc51518ed291fbadd6db537b0496536c1d2d6c05ff943ce8c9a54f container-config.json pod-config.json
    ```
 
-4. <!--List all containers and verify that the newly-created container has its
-   state set to `Created`.-->
-   查询所有容器并确认新创建的容器状态为 `Created`。
+<!--
+4. List all containers and verify that the newly-created container has its
+   state set to `Created`.
+-->
+4. 查询所有容器并确认新创建的容器状态为 `Created`。
 
    ```bash
    crictl ps -a
    ```
+   <!--
+   The output is similar to this:
+   -->
+   输出类似于这样：
+ 
    ```none
    CONTAINER ID        IMAGE               CREATED             STATE               NAME                ATTEMPT
    3e025dd50a72d       busybox             32 seconds ago      Created             busybox             0
@@ -423,14 +517,20 @@ deleted by the Kubelet.
 
 To start a container, pass its ID to `crictl start`:
 -->
-### 启动容器
+### 启动容器 {#start-a-container}
 
 要启动容器，要将容器 ID 传给 `crictl start`：
 
 ```shell
 crictl start 3e025dd50a72d956c4f14881fbb5b1080c9275674e95fb67f965f6478a957d60
 ```
-```none
+
+<!--
+The output is similar to this:
+-->
+输出类似于这样：
+
+```
 3e025dd50a72d956c4f14881fbb5b1080c9275674e95fb67f965f6478a957d60
 ```
 
@@ -442,136 +542,22 @@ Check the container has its state set to `Running`.
 ```shell
 crictl ps
 ```
-```none
-CONTAINER ID        IMAGE               CREATED              STATE               NAME                ATTEMPT
-3e025dd50a72d       busybox             About a minute ago   Running             busybox             0
+
+<!--
+The output is similar to this:
+-->
+输出类似于这样：
+
 ```
-<!-- discussion -->
+CONTAINER ID   IMAGE    CREATED              STATE    NAME     ATTEMPT
+3e025dd50a72d  busybox  About a minute ago   Running  busybox  0
+```
+
+## {{% heading "whatsnext" %}}
 
 <!--
-See [kubernetes-sigs/cri-tools](https://github.com/kubernetes-sigs/cri-tools)
-for more information.
+* [Learn more about `crictl`](https://github.com/kubernetes-sigs/cri-tools).
+* [Map `docker` CLI commands to `crictl`](/docs/reference/tools/map-crictl-dockercli/).
 -->
-更多信息请参考 [kubernetes-sigs/cri-tools](https://github.com/kubernetes-sigs/cri-tools)。
-
-<!--
-## Mapping from docker cli to crictl
--->
-## Docker CLI 和 crictl 的映射
-
-<!--
-The exact versions for below mapping table are for docker cli v1.40 and crictl v1.19.0. Please note that the list is not exhaustive. For example, it doesn't include experimental commands of docker cli.
--->
-以下的映射表格只适用于 Docker CLI v1.40 和 crictl v1.19.0 版本。
-请注意该表格并不详尽。例如，其中不包含 Docker CLI 的实验性命令。
-
-<!--
-{{< note >}}
-The output format of CRICTL is similar to Docker CLI, despite some missing columns for some CLI. Make sure to check output for the specific command if your script output parsing.
-{{< /note >}}
--->
-{{< note >}}
-尽管有些命令的输出缺少了一些数据列，CRICTL 的输出格式与 Docker CLI 是类似的。
-如果你的脚本程序需要解析命令的输出，请确认检查该特定命令的输出。
-{{< /note >}}
-
-<!--
-### Retrieve Debugging Information
-
-{{< table caption="mapping from docker cli to crictl - retrieve debugging information" >}}
--->
-### 获取调试信息
-
-{{< table caption="Docker CLI 和 crictl 的映射 - 获取调试信息" >}}
-<!--
-docker cli | crictl | Description | Unsupported Features
--- | -- | -- | --
-`attach` | `attach` | Attach to a running container | `--detach-keys`, `--sig-proxy`
-`exec` | `exec` | Run a command in a running container | `--privileged`, `--user`, `--detach-keys`
-`images` | `images` | List images |  
-`info` | `info` | Display system-wide information |  
-`inspect` | `inspect`, `inspecti` | Return low-level information on a container, image or task |  
-`logs` | `logs` | Fetch the logs of a container | `--details`
-`ps` | `ps` | List containers |  
-`stats` | `stats` | Display a live stream of container(s) resource usage statistics | Column: NET/BLOCK I/O, PIDs
-`version` | `version` | Show the runtime (Docker, ContainerD, or others) version information |  
-{{< /table >}}
--->
-docker cli | crictl | 描述 | 不支持的功能
--- | -- | -- | --
-`attach` | `attach` | 连接到一个运行中的容器 | `--detach-keys`, `--sig-proxy`
-`exec` | `exec` | 在运行中的容器里运行一个命令 | `--privileged`, `--user`, `--detach-keys`
-`images` | `images` | 列举镜像 |  
-`info` | `info` | 显示系统级的信息 |  
-`inspect` | `inspect`, `inspecti` | 返回容器、镜像或者任务的详细信息 |  
-`logs` | `logs` | 获取容器的日志 | `--details`
-`ps` | `ps` | 列举容器 |  
-`stats` | `stats` | 实时显示容器的资源使用统计信息 | 列：NET/BLOCK I/O, PIDs
-`version` | `version` | 显示运行时（Docker、ContainerD、或者其他) 的版本信息 |  
-{{< /table >}}
-
-<!--
-### Perform Changes
-
-{{< table caption="mapping from docker cli to crictl - perform changes" >}}
--->
-### 进行改动
-
-{{< table caption="Docker CLI 和 crictl 的映射 - 进行改动" >}}
-<!--
-docker cli | crictl | Description | Unsupported Features
--- | -- | -- | --
-`create` | `create` | Create a new container |  
-`kill` | `stop` (timeout = 0) | Kill one or more running container | `--signal`
-`pull` | `pull` | Pull an image or a repository from a registry | `--all-tags`, `--disable-content-trust`
-`rm` | `rm` | Remove one or more containers |  
-`rmi` | `rmi` | Remove one or more images |  
-`run` | `run` | Run a command in a new container |  
-`start` | `start` | Start one or more stopped containers | `--detach-keys`
-`stop` | `stop` | Stop one or more running containers |  
-`update` | `update` | Update configuration of one or more containers | `--restart`, `--blkio-weight` and some other resource limit not supported by CRI.
-{{< /table >}}
--->
-docker cli | crictl | 描述 | 不支持的功能
--- | -- | -- | --
-`create` | `create` | 创建一个新的容器 |  
-`kill` | `stop` (timeout=0) | 杀死一个或多个正在运行的容器 | `--signal`
-`pull` | `pull` | 从镜像仓库拉取镜像或者代码仓库 | `--all-tags`, `--disable-content-trust`
-`rm` | `rm` | 移除一个或多个容器 |  
-`rmi` | `rmi` | 移除一个或多个镜像 |  
-`run` | `run` | 在新容器里运行一个命令 |  
-`start` | `start` | 启动一个或多个停止的容器 | `--detach-keys`
-`stop` | `stop` | 停止一个或多个正运行的容器 |  
-`update` | `update` | 更新一个或多个容器的配置 | CRI 不支持 `--restart`、`--blkio-weight` 以及一些其他的资源限制选项。
-{{< /table >}}
-
-<!--
-### Supported only in crictl
-
-{{< table caption="mapping from docker cli to crictl - supported only in crictl" >}}
--->
-### 仅 crictl 支持
-
-{{< table caption="Docker CLI 和 crictl 的映射 - 仅 crictl 支持" >}}
-<!--
-crictl | Description
--- | --
-`imagefsinfo` | Return image filesystem info
-`inspectp` | Display the status of one or more pods
-`port-forward` | Forward local port to a pod
-`pods` | List pods
-`runp` | Run a new pod
-`rmp` | Remove one or more pods
-`stopp` | Stop one or more running pods
-{{< /table >}}
--->
-crictl | 描述
--- | --
-`imagefsinfo` | 返回镜像的文件系统信息
-`inspectp` | 显示一个或多个 Pod 的状态
-`port-forward` | 转发本地端口到 Pod 
-`pods` | 列举 Pod
-`runp` | 运行一个新的 Pod
-`rmp` | 移除一个或多个 Pod
-`stopp` | 停止一个或多个正运行的 Pod
-{{< /table >}}
+* [进一步了解 `crictl`](https://github.com/kubernetes-sigs/cri-tools)
+* [将 `docker` CLI 命令映射到 `crictl`](/zh-cn/docs/reference/tools/map-crictl-dockercli/)
diff --git a/content/zh-cn/docs/tasks/debug/debug-cluster/local-debugging.md b/content/zh-cn/docs/tasks/debug/debug-cluster/local-debugging.md
new file mode 100644
index 0000000000..38845f57ee
--- /dev/null
+++ b/content/zh-cn/docs/tasks/debug/debug-cluster/local-debugging.md
@@ -0,0 +1,138 @@
+---
+title: 使用 telepresence 在本地开发和调试服务
+content_type: task
+---
+
+<!--
+title: Developing and debugging services locally using telepresence
+content_type: task
+-->
+
+<!-- overview -->
+
+{{% thirdparty-content %}}
+
+<!--
+Kubernetes applications usually consist of multiple, separate services, each running in its own container. Developing and debugging these services on a remote Kubernetes cluster can be cumbersome, requiring you to [get a shell on a running container](/docs/tasks/debug/debug-application/get-shell-running-container/) in order to run debugging tools.
+-->
+
+Kubernetes 应用程序通常由多个独立的服务组成，每个服务都在自己的容器中运行。
+在远端的 Kubernetes 集群上开发和调试这些服务可能很麻烦，
+需要[在运行的容器上打开 Shell](/zh-cn/docs/tasks/debug/debug-application/get-shell-running-container/)，
+以运行调试工具。
+
+<!--
+`telepresence` is a tool to ease the process of developing and debugging services locally while proxying the service to a remote Kubernetes cluster. Using `telepresence` allows you to use custom tools, such as a debugger and IDE, for a local service and provides the service full access to ConfigMap, secrets, and the services running on the remote cluster.
+-->
+
+`telepresence` 是一个工具，用于简化本地开发和调试服务的过程，同时可以将服务代理到远程 Kubernetes 集群。
+`telepresence` 允许你使用自定义工具（例如：调试器 和 IDE）调试服务，
+并提供对 Configmap、Secret 和远程集群上运行的服务的完全访问。
+
+
+<!--
+This document describes using `telepresence` to develop and debug services running on a remote cluster locally.
+-->
+本文档描述如何在本地使用 `telepresence` 开发和调试远程集群上运行的服务。
+
+## {{% heading "prerequisites" %}}
+
+<!--
+* Kubernetes cluster is installed
+* `kubectl` is configured to communicate with the cluster
+* [Telepresence](https://www.telepresence.io/docs/latest/install/) is installed
+-->
+
+* Kubernetes 集群安装完毕
+* 配置好 `kubectl` 与集群交互
+* [Telepresence](https://www.telepresence.io/docs/latest/install/) 安装完毕
+
+<!-- steps -->
+
+<!--
+## Connecting your local machine to a remote Kubernetes cluster
+ 
+After installing `telepresence`, run `telepresence connect` to launch its Daemon and connect your local workstation to the cluster.
+-->
+
+## 从本机连接到远程 Kubernetes 集群
+
+安装 `telepresence` 后，运行 `telepresence connect` 来启动它的守护进程并将本地工作站连接到远程 Kubernetes 集群。
+
+```
+$ telepresence connect
+ 
+Launching Telepresence Daemon
+...
+Connected to context default (https://<cluster public IP>)
+```
+
+<!--
+You can curl services using the Kubernetes syntax e.g. `curl -ik https://kubernetes.default`
+-->
+
+你可以通过 curl 使用 Kubernetes 语法访问服务，例如：`curl -ik https://kubernetes.default`
+
+<!--
+## Developing or debugging an existing service
+
+When developing an application on Kubernetes, you typically program or debug a single service. The service might require access to other services for testing and debugging. One option is to use the continuous deployment pipeline, but even the fastest deployment pipeline introduces a delay in the program or debug cycle.
+-->
+## 开发和调试现有的服务
+
+在 Kubernetes 上开发应用程序时，通常对单个服务进行编程或调试。
+服务可能需要访问其他服务以进行测试和调试。
+一种选择是使用连续部署流水线，但即使最快的部署流水线也会在程序或调试周期中引入延迟。
+
+<!--
+Use the `telepresence intercept $SERVICE_NAME --port $LOCAL_PORT:REMOTE_PORT` command to create an "intercept" for rerouting remote service traffic.
+
+Where:
+
+-   `$SERVICE_NAME`  is the name of your local service
+-   `$LOCAL_PORT` is the port that your service is running on your local workstation
+-   And `$REMOTE_PORT` is the port your service listens to in the cluster
+-->
+
+使用 `telepresence intercept $SERVICE_NAME --port $LOCAL_PORT:REMOTE_PORT` 命令创建一个 "拦截器" 用于重新路由远程服务流量。
+
+环境变量：
+
+- `$SERVICE_NAME` 是本地服务名称
+- `$LOCAL_PORT` 是服务在本地工作站上运行的端口
+- `$REMOTE_PORT` 是服务在集群中侦听的端口
+
+<!--
+Running this command tells Telepresence to send remote traffic to your local service instead of the service in the remote Kubernetes cluster. Make edits to your service source code locally, save, and see the corresponding changes when accessing your remote application take effect immediately. You can also run your local service using a debugger or any other local development tool.
+-->
+
+运行此命令会告诉 Telepresence 将远程流量发送到本地服务，而不是远程 Kubernetes 集群中的服务中。
+在本地编辑保存服务源代码，并在访问远程应用时查看相应变更会立即生效。
+还可以使用调试器或任何其他本地开发工具运行本地服务。
+
+<!--
+## How does Telepresence work?
+
+Telepresence installs a traffic-agent sidecar next to your existing application's container running in the remote cluster. It then captures all traffic requests going into the Pod, and instead of forwarding this to the application in the remote cluster, it routes all traffic (when you create a [global intercept](https://www.getambassador.io/docs/telepresence/latest/concepts/intercepts/#global-intercept)) or a subset of the traffic (when you create a [personal intercept](https://www.getambassador.io/docs/telepresence/latest/concepts/intercepts/#personal-intercept)) to your local development environment.
+-->
+
+## Telepresence 是如何工作的？
+
+Telepresence 会在远程集群中运行的现有应用程序容器旁边安装流量代理 sidecar。
+当它捕获进入 Pod 的所有流量请求时，不是将其转发到远程集群中的应用程序，
+而是路由所有流量（当创建[全局拦截器](https://www.getambassador.io/docs/telepresence/latest/concepts/intercepts/#global-intercept)时）
+或流量的一个子集（当创建[自定义拦截器](https://www.getambassador.io/docs/telepresence/latest/concepts/intercepts/#personal-intercept)时）
+到本地开发环境。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+If you're interested in a hands-on tutorial, check out [this tutorial](https://cloud.google.com/community/tutorials/developing-services-with-k8s) that walks through locally developing the Guestbook application on Google Kubernetes Engine.
+-->
+如果你对实践教程感兴趣，请查看[本教程](https://cloud.google.com/community/tutorials/developing-services-with-k8s)，其中介绍了在 Google Kubernetes Engine 上本地开发 Guestbook 应用程序。
+
+<!--
+For further reading, visit the [Telepresence website](https://www.telepresence.io).
+-->
+
+如需进一步了解，请访问 [Telepresence 官方网站](https://www.telepresence.io)。
diff --git a/content/zh/docs/tasks/debug-application-cluster/monitor-node-health.md b/content/zh-cn/docs/tasks/debug/debug-cluster/monitor-node-health.md
similarity index 98%
rename from content/zh/docs/tasks/debug-application-cluster/monitor-node-health.md
rename to content/zh-cn/docs/tasks/debug/debug-cluster/monitor-node-health.md
index 5d4a265b10..8e2778c7a9 100644
--- a/content/zh/docs/tasks/debug-application-cluster/monitor-node-health.md
+++ b/content/zh-cn/docs/tasks/debug/debug-cluster/monitor-node-health.md
@@ -1,6 +1,7 @@
 ---
 content_type: task
 title: 节点健康监测
+weight: 20
 ---
 <!-- 
 title: Monitor Node Health
@@ -8,6 +9,7 @@ content_type: task
 reviewers:
 - Random-Liu
 - dchen1107
+weight: 20
 -->
 
 <!-- overview -->
@@ -25,7 +27,7 @@ To learn how to install and use Node Problem Detector, see
 *节点问题检测器（Node Problem Detector）* 是一个守护程序，用于监视和报告节点的健康状况。
 你可以将节点问题探测器以 `DaemonSet` 或独立守护程序运行。
 节点问题检测器从各种守护进程收集节点问题，并以
-[NodeCondition](/zh/docs/concepts/architecture/nodes/#condition) 和
+[NodeCondition](/zh-cn/docs/concepts/architecture/nodes/#condition) 和
 [Event](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#event-v1-core)
 的形式报告给 API 服务器。 
 
@@ -138,7 +140,7 @@ is embedded when building the Docker image of Node Problem Detector.
 However, you can use a [`ConfigMap`](/docs/tasks/configure-pod-container/configure-pod-configmap/)
 to overwrite the configuration:
 -->
-不过，你可以像下面这样使用 [`ConfigMap`](/zh/docs/tasks/configure-pod-container/configure-pod-configmap/)
+不过，你可以像下面这样使用 [`ConfigMap`](/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap/)
 将其覆盖：
 
 <!-- 
diff --git a/content/zh-cn/docs/tasks/debug/debug-cluster/resource-metrics-pipeline.md b/content/zh-cn/docs/tasks/debug/debug-cluster/resource-metrics-pipeline.md
new file mode 100644
index 0000000000..51ec65e6c4
--- /dev/null
+++ b/content/zh-cn/docs/tasks/debug/debug-cluster/resource-metrics-pipeline.md
@@ -0,0 +1,419 @@
+---
+title: 资源指标管道
+content_type: concept
+weight: 15
+---
+<!--
+reviewers:
+- fgrzadkowski
+- piosz
+title: Resource metrics pipeline
+content_type: concept
+weight: 15
+-->
+
+<!-- overview -->
+
+<!--
+For Kubernetes, the _Metrics API_ offers a basic set of metrics to support automatic scaling and
+similar use cases.  This API makes information available about resource usage for node and pod,
+including metrics for CPU and memory.  If you deploy the Metrics API into your cluster, clients of
+the Kubernetes API can then query for this information, and you can use Kubernetes' access control
+mechanisms to manage permissions to do so.
+
+The [HorizontalPodAutoscaler](/docs/tasks/run-application/horizontal-pod-autoscale/)  (HPA) and
+[VerticalPodAutoscaler](https://github.com/kubernetes/autoscaler/tree/master/vertical-pod-autoscaler#readme) (VPA)
+use data from the metrics API to adjust workload replicas and resources to meet customer demand.
+
+You can also view the resource metrics using the
+[`kubectl top`](/docs/reference/generated/kubectl/kubectl-commands#top)
+command.
+-->
+
+对于 Kubernetes，_Metrics API_ 提供了一组基本的指标，以支持自动伸缩和类似的用例。
+该 API 提供有关节点和 Pod 的资源使用情况的信息，
+包括 CPU 和内存的指标。如果将 Metrics API 部署到集群中，
+那么 Kubernetes API 的客户端就可以查询这些信息，并且可以使用 Kubernetes 的访问控制机制来管理权限。
+
+[HorizontalPodAutoscaler](/zh-cn/docs/tasks/run-application/horizontal-pod-autoscale/) (HPA) 和 
+[VerticalPodAutoscaler](https://github.com/kubernetes/autoscaler/tree/master/vertical-pod-autoscaler#readme) (VPA) 
+使用 metrics API 中的数据调整工作负载副本和资源，以满足客户需求。
+
+你也可以通过 [`kubectl top`](/docs/reference/generated/kubectl/kubectl-commands#top) 命令来查看资源指标。
+
+{{< note >}}
+<!--
+The Metrics API, and the metrics pipeline that it enables, only offers the minimum
+CPU and memory metrics to enable automatic scaling using HPA and / or VPA.
+If you would like to provide a more complete set of metrics, you can complement
+the simpler Metrics API by deploying a second
+[metrics pipeline](/docs/tasks/debug/debug-cluster/resource-usage-monitoring/#full-metrics-pipeline)
+that uses the _Custom Metrics API_.
+-->
+Metrics API 及其启用的指标管道仅提供最少的 CPU 和内存指标，以启用使用 HPA 和/或 VPA 的自动扩展。
+如果你想提供更完整的指标集，你可以通过部署使用 _Custom Metrics API_ 的第二个
+[指标管道](/zh-cn/docs/tasks/debug/debug-cluster/resource-usage-monitoring/#full-metrics-pipeline)来作为简单的 Metrics API 的补充。
+{{< /note >}}
+
+<!--
+Figure 1 illustrates the architecture of the resource metrics pipeline.
+-->
+图 1 说明了资源指标管道的架构。
+
+{{< mermaid >}}
+flowchart RL
+subgraph cluster[Cluster]
+direction RL
+S[ <br><br> ]
+A[Metrics-<br>Server]
+subgraph B[Nodes]
+direction TB
+D[cAdvisor] --> C[kubelet]
+E[Container<br>runtime] --> D
+E1[Container<br>runtime] --> D
+P[pod data] -.- C
+end
+L[API<br>server]
+W[HPA]
+C ---->|Summary<br>API| A -->|metrics<br>API| L --> W
+end
+L ---> K[kubectl<br>top]
+classDef box fill:#fff,stroke:#000,stroke-width:1px,color:#000;
+class W,B,P,K,cluster,D,E,E1 box
+classDef spacewhite fill:#ffffff,stroke:#fff,stroke-width:0px,color:#000
+class S spacewhite
+classDef k8s fill:#326ce5,stroke:#fff,stroke-width:1px,color:#fff;
+class A,L,C k8s
+{{< /mermaid >}}
+
+<!--
+Figure 1. Resource Metrics Pipeline
+
+The architecture components, from right to left in the figure, consist of the following:
+
+* [cAdvisor](https://github.com/google/cadvisor): Daemon for collecting, aggregating and exposing
+  container metrics included in Kubelet.
+* [kubelet](/docs/concepts/overview/components/#kubelet): Node agent for managing container
+  resources. Resource metrics are accessible using the `/metrics/resource` and `/stats` kubelet
+  API endpoints.
+* [Summary API](#summary-api-source): API provided by the kubelet for discovering and retrieving
+  per-node summarized stats available through the `/stats` endpoint.
+* [metrics-server](#metrics-server): Cluster addon component that collects and aggregates resource
+  metrics pulled from each kubelet. The API server serves Metrics API for use by HPA, VPA, and by
+  the `kubectl top` command. Metrics Server is a reference implementation of the Metrics API.
+* [Metrics API](#metrics-api): Kubernetes API supporting access to CPU and memory used for
+  workload autoscaling. To make this work in your cluster, you need an API extension server that
+  provides the Metrics API.
+-->
+图 1. 资源指标管道
+
+图中从右到左的架构组件包括以下内容：
+
+* [cAdvisor](https://github.com/google/cadvisor): 用于收集、聚合和公开 Kubelet 中包含的容器指标的守护程序。
+* [kubelet](/zh-cn/docs/concepts/overview/components/#kubelet): 用于管理容器资源的节点代理。
+  可以使用 `/metrics/resource` 和 `/stats` kubelet API 端点访问资源指标。
+* [Summary API](#summary-api-source): kubelet 提供的 API，用于发现和检索可通过 `/stats` 端点获得的每个节点的汇总统计信息。
+* [metrics-server](#metrics-server): 集群插件组件，用于收集和聚合从每个 kubelet 中提取的资源指标。
+  API 服务器提供 Metrics API 以供 HPA、VPA 和 `kubectl top` 命令使用。Metrics Server 是 Metrics API 的参考实现。
+* [Metrics API](#metrics-api): Kubernetes API 支持访问用于工作负载自动缩放的 CPU 和内存。
+  要在你的集群中进行这项工作，你需要一个提供 Metrics API 的 API 扩展服务器。
+
+  <!--
+  cAdvisor supports reading metrics from cgroups, which works with typical container runtimes on Linux.
+  If you use a container runtime that uses another resource isolation mechanism, for example
+  virtualization, then that container runtime must support
+  [CRI Container Metrics](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-node/cri-container-stats.md)
+  in order for metrics to be available to the kubelet.
+  -->
+  {{< note >}}
+  cAdvisor 支持从 cgroups 读取指标，它适用于 Linux 上的典型容器运行时。
+  如果你使用基于其他资源隔离机制的容器运行时，例如虚拟化，那么该容器运行时必须支持
+  [CRI 容器指标](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-node/cri-container-stats.md)
+  以便 kubelet 可以使用指标。
+  {{< /note >}}
+
+<!-- body -->
+
+<!--
+## Metrics API
+
+The metrics-server implements the Metrics API. This API allows you to access CPU and memory usage
+for the nodes and pods in your cluster. Its primary role is to feed resource usage metrics to K8s
+autoscaler components.
+
+Here is an example of the Metrics API request for a `minikube` node piped through `jq` for easier
+reading:
+
+-->
+## Metrics API   {#the-metrics-api}
+
+{{< feature-state for_k8s_version="1.8" state="beta" >}}
+
+metrics-server 实现了 Metrics API。此 API 允许你访问集群中节点和 Pod 的 CPU 和内存使用情况。
+它的主要作用是将资源使用指标提供给 K8s 自动缩放器组件。
+
+下面是一个 `minikube` 节点的 Metrics API 请求示例，通过 `jq` 管道处理以便于阅读：
+
+```shell
+kubectl get --raw "/apis/metrics.k8s.io/v1beta1/nodes/minikube" | jq '.'
+```
+
+<!-- Here is the same API call using `curl`: -->
+这是使用 `curl` 来执行的相同 API 调用：
+
+```shell
+curl http://localhost:8080/apis/metrics.k8s.io/v1beta1/nodes/minikube
+```
+
+<!-- Sample response: -->
+响应示例：
+
+```json
+{
+  "kind": "NodeMetrics",
+  "apiVersion": "metrics.k8s.io/v1beta1",
+  "metadata": {
+    "name": "minikube",
+    "selfLink": "/apis/metrics.k8s.io/v1beta1/nodes/minikube",
+    "creationTimestamp": "2022-01-27T18:48:43Z"
+  },
+  "timestamp": "2022-01-27T18:48:33Z",
+  "window": "30s",
+  "usage": {
+    "cpu": "487558164n",
+    "memory": "732212Ki"
+  }
+}
+```
+
+<!--
+Here is an example of the Metrics API request for a `kube-scheduler-minikube` pod contained in the
+`kube-system` namespace and piped through `jq` for easier reading:
+-->
+
+下面是一个 `kube-system` 命名空间中的 `kube-scheduler-minikube` Pod 的 Metrics API 请求示例，
+通过 `jq` 管道处理以便于阅读：
+
+```shell
+kubectl get --raw "/apis/metrics.k8s.io/v1beta1/namespaces/kube-system/pods/kube-scheduler-minikube" | jq '.'
+```
+
+<!-- Here is the same API call using `curl`: -->
+这是使用 `curl` 来完成的相同 API 调用：
+
+```shell
+curl http://localhost:8080/apis/metrics.k8s.io/v1beta1/namespaces/kube-system/pods/kube-scheduler-minikube
+```
+
+<!-- Sample response: -->
+响应示例：
+
+```json
+{
+  "kind": "PodMetrics",
+  "apiVersion": "metrics.k8s.io/v1beta1",
+  "metadata": {
+    "name": "kube-scheduler-minikube",
+    "namespace": "kube-system",
+    "selfLink": "/apis/metrics.k8s.io/v1beta1/namespaces/kube-system/pods/kube-scheduler-minikube",
+    "creationTimestamp": "2022-01-27T19:25:00Z"
+  },
+  "timestamp": "2022-01-27T19:24:31Z",
+  "window": "30s",
+  "containers": [
+    {
+      "name": "kube-scheduler",
+      "usage": {
+        "cpu": "9559630n",
+        "memory": "22244Ki"
+      }
+    }
+  ]
+}
+```
+
+<!--
+The Metrics API is defined in the [k8s.io/metrics](https://github.com/kubernetes/metrics)
+repository. You must enable the [API aggregation layer](/docs/tasks/extend-kubernetes/configure-aggregation-layer/)
+and register an [APIService](/docs/reference/kubernetes-api/cluster-resources/api-service-v1/)
+for the `metrics.k8s.io` API.
+
+To learn more about the Metrics API, see [resource metrics API design](https://github.com/kubernetes/design-proposals-archive/blob/main/instrumentation/resource-metrics-api.md),
+the [metrics-server repository](https://github.com/kubernetes-sigs/metrics-server) and the
+[resource metrics API](https://github.com/kubernetes/metrics#resource-metrics-api).
+-->
+
+Metrics API 在 [k8s.io/metrics](https://github.com/kubernetes/metrics) 代码库中定义。
+你必须启用 [API 聚合层](/zh-cn/docs/tasks/extend-kubernetes/configure-aggregation-layer/)并为 
+`metrics.k8s.io` API 注册一个 [APIService](/zh-cn/docs/reference/kubernetes-api/cluster-resources/api-service-v1/)。
+
+要了解有关 Metrics API 的更多信息，
+请参阅资源 [Resource Metrics API Design](https://github.com/kubernetes/design-proposals-archive/blob/main/instrumentation/resource-metrics-api.md)、
+[metrics-server 代码库](https://github.com/kubernetes-sigs/metrics-server) 和
+[Resource Metrics API](https://github.com/kubernetes/metrics#resource-metrics-api)。
+
+<!--
+You must deploy the metrics-server or alternative adapter that serves the Metrics API to be able
+to access it.
+-->
+{{< note >}}
+你必须部署提供 Metrics API 服务的 metrics-server 或其他适配器才能访问它。
+{{< /note >}}
+
+<!--
+## Measuring Resource Usage
+
+### CPU
+
+CPU is reported as the average core usage measured in cpu units. One cpu, in Kubernetes, is
+equivalent to 1 vCPU/Core for cloud providers, and 1 hyper-thread on bare-metal Intel processors.
+
+This value is derived by taking a rate over a cumulative CPU counter provided by the kernel (in
+both Linux and Windows kernels). The time window used to calculate CPU is shown under window field
+in Metrics API.
+
+To learn more about how Kubernetes allocates and measures CPU resources, see
+[meaning of CPU](/docs/concepts/configuration/manage-resources-containers/#meaning-of-cpu).
+-->
+## 度量资源用量   {#measuring-resource-usage}
+
+### CPU
+
+CPU 报告为以 cpu 为单位测量的平均核心使用率。在 Kubernetes 中，
+一个 cpu 相当于云提供商的 1 个 vCPU/Core，以及裸机 Intel 处理器上的 1 个超线程。
+
+该值是通过对内核提供的累积 CPU 计数器（在 Linux 和 Windows 内核中）取一个速率得出的。
+用于计算 CPU 的时间窗口显示在 Metrics API 的窗口字段下。
+
+要了解更多关于 Kubernetes 如何分配和测量 CPU 资源的信息，请参阅
+[CPU 的含义](/zh-cn/docs/concepts/configuration/manage-resources-containers/#meaning-of-cpu)。
+
+<!--
+### Memory
+
+Memory is reported as the working set, measured in bytes, at the instant the metric was collected.
+
+In an ideal world, the "working set" is the amount of memory in-use that cannot be freed under
+memory pressure. However, calculation of the working set varies by host OS, and generally makes
+heavy use of heuristics to produce an estimate.
+
+The Kubernetes model for a container's working set expects that the container runtime counts
+anonymous memory associated with the container in question. The working set metric typically also
+includes some cached (file-backed) memory, because the host OS cannot always reclaim pages.
+
+To learn more about how Kubernetes allocates and measures memory resources, see
+[meaning of memory](/docs/concepts/configuration/manage-resources-containers/#meaning-of-memory).
+-->
+### 内存  {#memory}
+
+内存报告为在收集度量标准的那一刻的工作集大小，以字节为单位。
+
+在理想情况下，“工作集”是在内存压力下无法释放的正在使用的内存量。
+然而，工作集的计算因主机操作系统而异，并且通常大量使用启发式算法来产生估计。
+
+Kubernetes 模型中，容器工作集是由容器运行时计算的与相关容器关联的匿名内存。
+工作集指标通常还包括一些缓存（文件支持）内存，因为主机操作系统不能总是回收页面。
+
+要了解有关 Kubernetes 如何分配和测量内存资源的更多信息，
+请参阅[内存的含义](/zh-cn/docs/concepts/configuration/manage-resources-containers/#meaning-of-memory)。
+
+<!--
+## Metrics Server
+
+The metrics-server fetches resource metrics from the kubelets and exposes them in the Kubernetes
+API server through the Metrics API for use by the HPA and VPA. You can also view these metrics
+using the `kubectl top` command.
+
+The metrics-server uses the Kubernetes API to track nodes and pods in your cluster. The
+metrics-server queries each node over HTTP to fetch metrics. The metrics-server also builds an
+internal view of pod metadata, and keeps a cache of pod health. That cached pod health information
+is available via the extension API that the metrics-server makes available.
+
+For example with an HPA query, the metrics-server needs to identify which pods fulfill the label
+selectors in the deployment.
+-->
+## Metrics 服务器    {#metrics-server}
+
+metrics-server 从 kubelet 中获取资源指标，并通过 Metrics API 在 Kubernetes API 服务器中公开它们，以供 HPA 和 VPA 使用。
+你还可以使用 `kubectl top` 命令查看这些指标。
+
+metrics-server 使用 Kubernetes API 来跟踪集群中的节点和 Pod。metrics-server 服务器通过 HTTP 查询每个节点以获取指标。
+metrics-server 还构建了 Pod 元数据的内部视图，并维护 Pod 健康状况的缓存。
+缓存的 Pod 健康信息可通过 metrics-server 提供的扩展 API 获得。
+
+例如，对于 HPA 查询，metrics-server 需要确定哪些 Pod 满足 Deployment 中的标签选择器。
+
+<!--
+The metrics-server calls the [kubelet](/docs/reference/command-line-tools-reference/kubelet/) API
+to collect metrics from each node. Depending on the metrics-server version it uses:
+
+* Metrics resource endpoint `/metrics/resource` in version v0.6.0+ or
+* Summary API endpoint `/stats/summary` in older versions
+-->
+metrics-server 调用 [kubelet](/zh-cn/docs/reference/command-line-tools-reference/kubelet/) API
+从每个节点收集指标。根据它使用的度量服务器版本：
+
+* 版本 v0.6.0+ 中，使用指标资源端点 `/metrics/resource`
+* 旧版本中使用 Summary  API 端点 `/stats/summary`
+
+<!--
+To learn more about the metrics-server, see the
+[metrics-server repository](https://github.com/kubernetes-sigs/metrics-server).
+
+You can also check out the following:
+
+* [metrics-server design](https://github.com/kubernetes/design-proposals-archive/blob/main/instrumentation/metrics-server.md)
+* [metrics-server FAQ](https://github.com/kubernetes-sigs/metrics-server/blob/master/FAQ.md)
+* [metrics-server known issues](https://github.com/kubernetes-sigs/metrics-server/blob/master/KNOWN_ISSUES.md)
+* [metrics-server releases](https://github.com/kubernetes-sigs/metrics-server/releases)
+* [Horizontal Pod Autoscaling](/docs/tasks/run-application/horizontal-pod-autoscale/)
+-->
+
+了解更多 metrics-server，参阅 [metrics-server 代码库](https://github.com/kubernetes-sigs/metrics-server)。
+
+你还可以查看以下内容：
+
+* [metrics-server 设计](https://github.com/kubernetes/design-proposals-archive/blob/main/instrumentation/metrics-server.md)
+* [metrics-server FAQ](https://github.com/kubernetes-sigs/metrics-server/blob/master/FAQ.md)
+* [metrics-server known issues](https://github.com/kubernetes-sigs/metrics-server/blob/master/KNOWN_ISSUES.md)
+* [metrics-server releases](https://github.com/kubernetes-sigs/metrics-server/releases)
+* [Horizontal Pod Autoscaling](/zh-cn/docs/tasks/run-application/horizontal-pod-autoscale/)
+
+<!--
+### Summary API Source
+
+The [Kubelet](/docs/reference/command-line-tools-reference/kubelet/) gathers stats at node, volume, pod and container level, and emits
+them in the [Summary API](https://github.com/kubernetes/kubernetes/blob/7d309e0104fedb57280b261e5677d919cb2a0e2d/staging/src/k8s.io/kubelet/pkg/apis/stats/v1alpha1/types.go)
+for consumers to read.
+-->
+
+### Summary API 来源   {#summary-api-source}
+
+[Kubelet](/zh-cn/docs/reference/command-line-tools-reference/kubelet/) 在节点、卷、Pod 和容器级别收集统计信息，
+并在 [Summary API](https://github.com/kubernetes/kubernetes/blob/7d309e0104fedb57280b261e5677d919cb2a0e2d/staging/src/k8s.io/kubelet/pkg/apis/stats/v1alpha1/types.go)
+中提供它们的统计信息供消费者阅读。
+
+<!--
+Here is an example of a Summary API request for a `minikube` node:
+-->
+
+下面是一个 `minikube` 节点的 Summary API 请求示例：
+
+```shell
+kubectl get --raw "/api/v1/nodes/minikube/proxy/stats/summary"
+```
+
+<!-- Here is the same API call using `curl`: -->
+这是使用 `curl` 来执行的相同 API 调用：
+
+```shell
+curl http://localhost:8080/api/v1/nodes/minikube/proxy/stats/summary
+```
+
+{{< note >}}
+<!--
+The summary API `/stats/summary` endpoint will be replaced by the `/metrics/resource` endpoint
+beginning with metrics-server 0.6.x.
+-->
+从 metrics-server 0.6.x 开始，Summary API `/stats/summary` 端点被 `/metrics/resource` 端点替换。
+{{< /note >}}
\ No newline at end of file
diff --git a/content/zh/docs/tasks/debug-application-cluster/resource-usage-monitoring.md b/content/zh-cn/docs/tasks/debug/debug-cluster/resource-usage-monitoring.md
similarity index 95%
rename from content/zh/docs/tasks/debug-application-cluster/resource-usage-monitoring.md
rename to content/zh-cn/docs/tasks/debug/debug-cluster/resource-usage-monitoring.md
index 86345a09a8..b8ef029b0d 100644
--- a/content/zh/docs/tasks/debug-application-cluster/resource-usage-monitoring.md
+++ b/content/zh-cn/docs/tasks/debug/debug-cluster/resource-usage-monitoring.md
@@ -24,8 +24,8 @@ where bottlenecks can be removed to improve overall performance.
 -->
 要扩展应用程序并提供可靠的服务，你需要了解应用程序在部署时的行为。
 你可以通过检测容器检查 Kubernetes 集群中的应用程序性能，
-[Pods](/zh/docs/concepts/workloads/pods), 
-[服务](/zh/docs/concepts/services-networking/service/)
+[Pods](/zh-cn/docs/concepts/workloads/pods), 
+[服务](/zh-cn/docs/concepts/services-networking/service/)
 和整个集群的特征。
 Kubernetes 在每个级别上提供有关应用程序资源使用情况的详细信息。
 此信息使你可以评估应用程序的性能，以及在何处可以消除瓶颈以提高整体性能。
@@ -55,7 +55,7 @@ These  metrics are collected by the lightweight, short-term, in-memory
 ## 资源度量管道  {#resource-metrics-pipeline}
 
 资源指标管道提供了一组与集群组件，例如
-[Horizontal Pod Autoscaler](/zh/docs/tasks/run-application/horizontal-pod-autoscale/)
+[Horizontal Pod Autoscaler](/zh-cn/docs/tasks/run-application/horizontal-pod-autoscale/)
 控制器以及 `kubectl top` 实用程序相关的有限度量。
 这些指标是由轻量级的、短期、内存存储的
 [metrics-server](https://github.com/kubernetes-sigs/metrics-server) 收集的，
@@ -76,7 +76,7 @@ This API is served at `/metrics/resource/v1beta1` on the kubelet's authenticated
 read-only ports. 
 -->
 度量服务器发现集群中的所有节点，并且查询每个节点的
-[kubelet](/zh/docs/reference/command-line-tools-reference/kubelet/)
+[kubelet](/zh-cn/docs/reference/command-line-tools-reference/kubelet/)
 以获取 CPU 和内存使用情况。
 Kubelet 充当 Kubernetes 主节点与节点之间的桥梁，管理机器上运行的 Pod 和容器。
 kubelet 将每个 Pod 转换为其组成的容器，并在容器运行时通过容器运行时接口
diff --git a/content/zh-cn/docs/tasks/debug/debug-cluster/windows.md b/content/zh-cn/docs/tasks/debug/debug-cluster/windows.md
new file mode 100644
index 0000000000..6686ea76e7
--- /dev/null
+++ b/content/zh-cn/docs/tasks/debug/debug-cluster/windows.md
@@ -0,0 +1,322 @@
+---
+title: Windows 调试技巧
+content_type: concept
+---
+
+<!--
+reviewers:
+- aravindhp
+- jayunit100
+- jsturtevant
+- marosset
+title: Windows debugging tips
+content_type: concept
+-->
+
+<!-- overview -->
+
+<!-- body -->
+
+<!-- 
+## Node-level troubleshooting {#troubleshooting-node}
+
+1. My Pods are stuck at "Container Creating" or restarting over and over
+
+   Ensure that your pause image is compatible with your Windows OS version.
+   See [Pause container](/docs/concepts/windows/intro/#pause-container)
+   to see the latest / recommended pause image and/or get more information.
+-->
+## 工作节点级别排障 {#troubleshooting-node}
+
+1. 我的 Pod 都卡在 “Container Creating” 或者不断重启
+
+   确保你的 pause 镜像跟你的 Windows 版本兼容。
+   查看 [Pause 容器](/zh-cn/docs/concepts/windows/intro/#pause-container)
+   以了解最新的或建议的 pause 镜像，或者了解更多信息。
+
+   {{< note >}}
+   <!--
+   If using containerd as your container runtime the pause image is specified in the
+   `plugins.plugins.cri.sandbox_image` field of the of config.toml configration file.
+   -->
+   如果你在使用 containerd 作为你的容器运行时，那么 pause 镜像在 config.toml 配置文件的
+   `plugins.plugins.cri.sandbox_image` 中指定。
+   {{< /note >}}
+
+<!-- 
+2. My pods show status as `ErrImgPull` or `ImagePullBackOff`
+
+   Ensure that your Pod is getting scheduled to a
+   [compatible](https://docs.microsoft.com/virtualization/windowscontainers/deploy-containers/version-compatibility)
+   Windows Node.
+
+   More information on how to specify a compatible node for your Pod can be found in
+   [this guide](/docs/concepts/windows/user-guide/#ensuring-os-specific-workloads-land-on-the-appropriate-container-host).
+-->
+2. 我的 Pod 状态显示 'ErrImgPull' 或者 'ImagePullBackOff'
+
+   保证你的 Pod 被调度到[兼容的](https://docs.microsoft.com/zh-cn/virtualization/windowscontainers/deploy-containers/version-compatibility)
+   Windows 节点上。
+
+   关于如何为你的 Pod 指定一个兼容节点，
+   可以查看这个指可以查看[这个指南](/zh-cn/docs/concepts/windows/user-guide/#ensuring-os-specific-workloads-land-on-the-appropriate-container-host)
+   以了解更多的信息。
+
+<!-- 
+## Network troubleshooting {#troubleshooting-network}
+
+1. My Windows Pods do not have network connectivity
+
+   If you are using virtual machines, ensure that MAC spoofing is **enabled** on all
+   the VM network adapter(s).
+-->
+## 网络排障 {#troubleshooting-network}
+
+1. 我的 Windows Pod 没有网络连接
+
+   如果你使用的是虚拟机，请确保所有 VM 网卡上都已启用 MAC spoofing。
+
+<!-- 
+1. My Windows Pods cannot ping external resources
+
+   Windows Pods do not have outbound rules programmed for the ICMP protocol. However,
+   TCP/UDP is supported. When trying to demonstrate connectivity to resources
+   outside of the cluster, substitute `ping <IP>` with corresponding
+   `curl <IP>` commands.
+-->
+2. 我的 Windows Pod 不能 ping 通外界资源
+
+   Windows Pod 没有为 ICMP 协议编写出站规则，但 TCP/UDP 是支持的。当试图演示与集群外部资源的连接时，
+   可以把 `ping <IP>` 替换为 `curl <IP>` 命令。
+
+   <!--
+   If you are still facing problems, most likely your network configuration in
+   [cni.conf](https://github.com/Microsoft/SDN/blob/master/Kubernetes/flannel/l2bridge/cni/config/cni.conf)
+   deserves some extra attention. You can always edit this static file. The
+   configuration update will apply to any new Kubernetes resources.
+   -->
+   如果你仍然遇到问题，很可能你需要额外关注
+   [cni.conf](https://github.com/Microsoft/SDN/blob/master/Kubernetes/flannel/l2bridge/cni/config/cni.conf)
+   的配置。你可以随时编辑这个静态文件。更新配置将应用于新的 Kubernetes 资源。
+
+   <!--
+   One of the Kubernetes networking requirements
+   (see [Kubernetes model](/docs/concepts/cluster-administration/networking/)) is
+   for cluster communication to occur without
+   NAT internally. To honor this requirement, there is an
+   [ExceptionList](https://github.com/Microsoft/SDN/blob/master/Kubernetes/flannel/l2bridge/cni/config/cni.conf#L20)
+   for all the communication where you do not want outbound NAT to occur. However,
+   this also means that you need to exclude the external IP you are trying to query
+   from the `ExceptionList`. Only then will the traffic originating from your Windows
+   pods be SNAT'ed correctly to receive a response from the outside world. In this
+   regard, your `ExceptionList` in `cni.conf` should look as follows:
+   -->
+   Kubernetes 的网络需求之一（查看 [Kubernetes 模型](/zh-cn/docs/concepts/cluster-administration/networking/)）
+   是集群通信不需要内部的 NAT。
+   为了遵守这一要求，对于你不希望发生的出站 NAT 通信，这里有一个
+   [ExceptionList](https://github.com/Microsoft/SDN/blob/master/Kubernetes/flannel/l2bridge/cni/config/cni.conf#L20)。
+   然而，这也意味着你需要从 `ExceptionList` 中去掉你试图查询的外部 IP。
+   只有这样，来自你的 Windows Pod 的流量才会被正确地 SNAT 转换，以接收来自外部环境的响应。
+   就此而言，你的 `cni.conf` 中的 `ExceptionList` 应该如下所示：
+
+   <!--
+   ```conf
+   "ExceptionList": [
+                   "10.244.0.0/16",  # Cluster subnet
+                   "10.96.0.0/12",   # Service subnet
+                   "10.127.130.0/24" # Management (host) subnet
+               ]
+   ```
+   -->
+
+   ```conf
+   "ExceptionList": [
+       "10.244.0.0/16",  # 集群子网
+       "10.96.0.0/12",   # 服务子网
+       "10.127.130.0/24" # 管理（主机）子网
+   ]
+   ```
+<!--  
+1. My Windows node cannot access `NodePort` type Services
+
+   Local NodePort access from the node itself fails. This is a known
+   limitation. NodePort access works from other nodes or external clients.
+-->
+3. 我的 Windows 节点无法访问 `NodePort` 类型 Service
+
+   从节点本身访问本地 NodePort 失败，是一个已知的限制。
+   你可以从其他节点或外部客户端正常访问 NodePort。
+
+<!--
+1. vNICs and HNS endpoints of containers are being deleted
+
+   This issue can be caused when the `hostname-override` parameter is not passed to
+   [kube-proxy](/docs/reference/command-line-tools-reference/kube-proxy/). To resolve
+   it, users need to pass the hostname to kube-proxy as follows:
+-->
+4. 容器的 vNIC 和 HNS 端点正在被删除
+
+   当 `hostname-override` 参数没有传递给
+   [kube-proxy](/zh-cn/docs/reference/command-line-tools-reference/kube-proxy/)
+   时可能引发这一问题。想要解决这个问题，用户需要将主机名传递给 kube-proxy，如下所示：
+
+   ```powershell
+   C:\k\kube-proxy.exe --hostname-override=$(hostname)
+   ```
+
+<!-- 
+1. My Windows node cannot access my services using the service IP
+
+   This is a known limitation of the networking stack on Windows. However, Windows Pods can access the Service IP.
+-->
+5. 我的 Windows 节点无法通过服务 IP 访问我的服务
+
+   这是 Windows 上网络栈的一个已知限制。但是 Windows Pod 可以访问 Service IP。
+
+<!--
+1. No network adapter is found when starting the kubelet
+
+   The Windows networking stack needs a virtual adapter for Kubernetes networking to work.
+   If the following commands return no results (in an admin shell),
+   virtual network creation — a necessary prerequisite for the kubelet to work — has failed:
+-->
+6. 启动 kubelet 时找不到网络适配器
+
+   Windows 网络栈需要一个虚拟适配器才能使 Kubernetes 网络工作。
+   如果以下命令没有返回结果（在管理员模式的 shell 中），
+   则意味着创建虚拟网络失败，而虚拟网络的存在是 kubelet 正常工作的前提：
+
+   ```powershell
+   Get-HnsNetwork | ? Name -ieq "cbr0"
+   Get-NetAdapter | ? Name -Like "vEthernet (Ethernet*"
+   ```
+
+   <!--
+   Often it is worthwhile to modify the [InterfaceName](https://github.com/microsoft/SDN/blob/master/Kubernetes/flannel/start.ps1#L7) parameter of the start.ps1 script,
+   in cases where the host's network adapter isn't "Ethernet".
+   Otherwise, consult the output of the `start-kubelet.ps1` script to see if there are errors during virtual network creation.
+   -->
+   如果主机的网络适配器不是 "Ethernet"，通常有必要修改 `start.ps1` 脚本的
+   [InterfaceName](https://github.com/microsoft/SDN/blob/master/Kubernetes/flannel/start.ps1#L7)
+   参数。否则，如果虚拟网络创建过程出错，请检查 `start-kubelet.ps1` 脚本的输出。
+
+<!--    
+1. DNS resolution is not properly working
+
+   Check the DNS limitations for Windows in this [section](/docs/concepts/services-networking/dns-pod-service/#dns-windows).
+-->
+7. DNS 解析工作异常
+
+   查阅[这一节](/zh-cn/docs/concepts/services-networking/dns-pod-service/#dns-windows)了解 Windows 系统上的 DNS 限制。
+
+<!--
+1. `kubectl port-forward` fails with "unable to do port forwarding: wincat not found"
+
+   This was implemented in Kubernetes 1.15 by including `wincat.exe` in the pause infrastructure container `mcr.microsoft.com/oss/kubernetes/pause:3.6`.
+   Be sure to use a supported version of Kubernetes.
+   If you would like to build your own pause infrastructure container be sure to include [wincat](https://github.com/kubernetes/kubernetes/tree/master/build/pause/windows/wincat).
+-->
+8. `kubectl port-forward` 失败，错误为 "unable to do port forwarding: wincat not found"
+
+   在 Kubernetes 1.15 中，pause 基础架构容器 `mcr.microsoft.com/oss/kubernetes/pause:3.6`
+   中包含 `wincat.exe` 来实现端口转发。
+   请确保使用 Kubernetes 的受支持版本。如果你想构建自己的 pause 基础架构容器，
+   请确保其中包含 [wincat](https://github.com/kubernetes/kubernetes/tree/master/build/pause/windows/wincat)。
+
+<!--   
+1. My Kubernetes installation is failing because my Windows Server node is behind a proxy
+
+   If you are behind a proxy, the following PowerShell environment variables must be defined:
+-->
+9. 我的 Kubernetes 安装失败，因为我的 Windows 服务器节点使用了代理服务器
+
+   如果使用了代理服务器，必须定义下面的 PowerShell 环境变量：
+
+   ```PowerShell
+   [Environment]::SetEnvironmentVariable("HTTP_PROXY", "http://proxy.example.com:80/", [EnvironmentVariableTarget]::Machine)
+   [Environment]::SetEnvironmentVariable("HTTPS_PROXY", "http://proxy.example.com:443/", [EnvironmentVariableTarget]::Machine)
+   ```
+
+<!-- 
+### Flannel troubleshooting
+
+1. With Flannel, my nodes are having issues after rejoining a cluster
+
+   Whenever a previously deleted node is being re-joined to the cluster, flannelD
+   tries to assign a new pod subnet to the node. Users should remove the old pod
+   subnet configuration files in the following paths:
+-->
+## Flannel 故障排查 {#troubleshooting-network}
+
+1. 使用 Flannel 时，我的节点在重新加入集群后出现问题
+
+   当先前删除的节点重新加入集群时, flannelD 尝试为节点分配一个新的 Pod 子网。
+   用户应该在以下路径中删除旧的 Pod 子网配置文件：
+
+   ```powershell
+   Remove-Item C:\k\SourceVip.json
+   Remove-Item C:\k\SourceVipRequest.json
+   ```
+
+<!-- 
+1. Flanneld is stuck in "Waiting for the Network to be created"
+
+   There are numerous reports of this [issue](https://github.com/coreos/flannel/issues/1066);
+   most likely it is a timing issue for when the management IP of the flannel network is set.
+   A workaround is to relaunch `start.ps1` or relaunch it manually as follows:
+-->
+2. Flanneld 卡在 "Waiting for the Network to be created"
+
+   关于这个[问题](https://github.com/coreos/flannel/issues/1066)有很多报告；
+   很可能是 Flannel 网络管理 IP 的设置时机问题。
+   一个变通方法是重新启动 `start.ps1` 或按如下方式手动重启：
+
+   <!--
+   ```powershell
+   [Environment]::SetEnvironmentVariable("NODE_NAME", "<Windows_Worker_Hostname>")
+   C:\flannel\flanneld.exe --kubeconfig-file=c:\k\config --iface=<Windows_Worker_Node_IP> --ip-masq=1 --kube-subnet-mgr=1
+   ```
+   -->
+   ```powershell
+   [Environment]::SetEnvironmentVariable("NODE_NAME", "<Windows 工作节点主机名>")
+   C:\flannel\flanneld.exe --kubeconfig-file=c:\k\config --iface=<Windows 工作节点 IP> --ip-masq=1 --kube-subnet-mgr=1
+   ```
+
+<!-- 
+1. My Windows Pods cannot launch because of missing `/run/flannel/subnet.env`
+
+   This indicates that Flannel didn't launch correctly. You can either try
+   to restart `flanneld.exe` or you can copy the files over manually from
+   `/run/flannel/subnet.env` on the Kubernetes master to `C:\run\flannel\subnet.env`
+   on the Windows worker node and modify the `FLANNEL_SUBNET` row to a different
+   number. For example, if node subnet 10.244.4.1/24 is desired:
+-->
+3. 我的 Windows Pod 无法启动，因为缺少 `/run/flannel/subnet.env`
+
+   这表明 Flannel 没有正确启动。你可以尝试重启 `flanneld.exe` 或者你可以将 Kubernetes 控制节点的
+   `/run/flannel/subnet.env` 文件手动拷贝到 Windows 工作节点上，放在 `C:\run\flannel\subnet.env`；
+   并且将 `FLANNEL_SUBNET` 行修改为不同取值。例如，如果期望节点子网为 10.244.4.1/24：
+
+   ```env
+   FLANNEL_NETWORK=10.244.0.0/16
+   FLANNEL_SUBNET=10.244.4.1/24
+   FLANNEL_MTU=1500
+   FLANNEL_IPMASQ=true
+   ```
+<!-- 
+### Further investigation
+
+If these steps don't resolve your problem, you can get help running Windows containers on Windows nodes in Kubernetes through:
+
+* StackOverflow [Windows Server Container](https://stackoverflow.com/questions/tagged/windows-server-container) topic
+* Kubernetes Official Forum [discuss.kubernetes.io](https://discuss.kubernetes.io/)
+* Kubernetes Slack [#SIG-Windows Channel](https://kubernetes.slack.com/messages/sig-windows)
+-->
+### 进一步探查   {#further-investigation}
+
+如果这些步骤都不能解决你的问题，你可以通过以下方式获得关于在 Kubernetes 中运行 Windows 容器的帮助：
+
+* StackOverflow [Windows Server Container](https://stackoverflow.com/questions/tagged/windows-server-container) topic
+* Kubernetes 官方论坛 [discuss.kubernetes.io](https://discuss.kubernetes.io/)
+* Kubernetes Slack [#SIG-Windows Channel](https://kubernetes.slack.com/messages/sig-windows)
+
diff --git a/content/zh/docs/tasks/extend-kubectl/kubectl-plugins.md b/content/zh-cn/docs/tasks/extend-kubectl/kubectl-plugins.md
similarity index 99%
rename from content/zh/docs/tasks/extend-kubectl/kubectl-plugins.md
rename to content/zh-cn/docs/tasks/extend-kubectl/kubectl-plugins.md
index 72235b1601..348257e584 100644
--- a/content/zh/docs/tasks/extend-kubectl/kubectl-plugins.md
+++ b/content/zh-cn/docs/tasks/extend-kubectl/kubectl-plugins.md
@@ -18,7 +18,7 @@ content_type: task
 This guide demonstrates how to install and write extensions for [kubectl](/docs/reference/kubectl/kubectl/). By thinking of core `kubectl` commands as essential building blocks for interacting with a Kubernetes cluster, a cluster administrator can think
 of plugins as a means of utilizing these building blocks to create more complex behavior. Plugins extend `kubectl` with new sub-commands, allowing for new and custom features not included in the main distribution of `kubectl`.
 -->
-本指南演示了如何为 [kubectl](/zh/docs/reference/kubectl/kubectl/) 安装和编写扩展。
+本指南演示了如何为 [kubectl](/zh-cn/docs/reference/kubectl/kubectl/) 安装和编写扩展。
 通过将核心 `kubectl` 命令看作与 Kubernetes 集群交互的基本构建块，
 集群管理员可以将插件视为一种利用这些构建块创建更复杂行为的方法。
 插件用新的子命令扩展了 `kubectl`，允许新的和自定义的特性不包括在 `kubectl` 的主要发行版中。
@@ -510,7 +510,7 @@ an example usage of the tools provided in the CLI Runtime repo.
 [cli-runtime](https://github.com/kubernetes/cli-runtime) 工具库。
 
 这些库提供了一些辅助函数，用来解析和更新用户的
-[kubeconfig](/zh/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
+[kubeconfig](/zh-cn/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
 文件，向 API 服务器发起 REST 风格的请求，或者将参数绑定到某配置上，
 抑或将其打印输出。
 
diff --git a/content/zh/docs/tasks/extend-kubernetes/_index.md b/content/zh-cn/docs/tasks/extend-kubernetes/_index.md
similarity index 100%
rename from content/zh/docs/tasks/extend-kubernetes/_index.md
rename to content/zh-cn/docs/tasks/extend-kubernetes/_index.md
diff --git a/content/zh/docs/tasks/extend-kubernetes/configure-aggregation-layer.md b/content/zh-cn/docs/tasks/extend-kubernetes/configure-aggregation-layer.md
similarity index 96%
rename from content/zh/docs/tasks/extend-kubernetes/configure-aggregation-layer.md
rename to content/zh-cn/docs/tasks/extend-kubernetes/configure-aggregation-layer.md
index ea9043c64b..730a5392f6 100644
--- a/content/zh/docs/tasks/extend-kubernetes/configure-aggregation-layer.md
+++ b/content/zh-cn/docs/tasks/extend-kubernetes/configure-aggregation-layer.md
@@ -18,7 +18,7 @@ weight: 10
 <!--
 Configuring the [aggregation layer](/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/) allows the Kubernetes apiserver to be extended with additional APIs, which are not part of the core Kubernetes APIs.
 -->
-配置[聚合层](/zh/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)
+配置[聚合层](/zh-cn/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)
 可以允许 Kubernetes apiserver 使用其它 API 扩展，这些 API 不是核心
 Kubernetes API 的一部分。
 
@@ -39,7 +39,7 @@ There are a few setup requirements for getting the aggregation layer working in
 Reusing the same CA for different client types can negatively impact the cluster's ability to function. For more information, see [CA Reusage and Conflicts](#ca-reusage-and-conflicts).
 -->
 {{< caution >}}
-对不同的客户端类型重复使用相同的 CA 会对群集的功能产生负面影响。
+对不同的客户端类型重复使用相同的 CA 会对集群的功能产生负面影响。
 有关更多信息，请参见 [CA 重用和冲突](#ca-reusage-and-conflicts)。
 {{< /caution >}}
 
@@ -232,9 +232,9 @@ Kubernetes apiserver 中注册。
 Kubernetes apiserver 使用它的标准认证和授权配置来对用户认证，以及对特定路径的鉴权。
 
 有关对 Kubernetes 集群认证的概述，请参见
-[对集群认证](/zh/docs/reference/access-authn-authz/authentication/)。
-有关对Kubernetes群集资源的访问鉴权的概述，请参见
-[鉴权概述](/zh/docs/reference/access-authn-authz/authorization/)。
+[对集群认证](/zh-cn/docs/reference/access-authn-authz/authentication/)。
+有关对Kubernetes集群资源的访问鉴权的概述，请参见
+[鉴权概述](/zh-cn/docs/reference/access-authn-authz/authorization/)。
 
 到目前为止，所有内容都是标准的 Kubernetes API 请求，认证与鉴权。
 
@@ -289,7 +289,7 @@ The Kubernetes apiserver will use the files indicated by `--proxy-client-*-file`
 1. The connection must be made using a client certificate that is signed by the CA whose certificate is in `--requestheader-client-ca-file`.
 2. The connection must be made using a client certificate whose CN is one of those listed in `--requestheader-allowed-names`. **Note:** You can set this option to blank as `--requestheader-allowed-names=""`. This will indicate to an extension apiserver that _any_ CN is acceptable.
 -->
-Kubernetes apiserver 将使用由 `--proxy-client-*-file` 指示的文件来验证扩展 apiserver。
+Kubernetes apiserver 将使用由 `--proxy-client-*-file` 指示的文件来向扩展 apiserver认证。
 为了使合规的扩展 apiserver 能够将该请求视为有效，必须满足以下条件：
 
 1. 连接必须使用由 CA 签署的客户端证书，该证书的证书位于 `--requestheader-client-ca-file` 中。
@@ -407,7 +407,7 @@ In order for the extension apiserver to be authorized itself to submit the `Subj
 
 扩展 apiserver 现在可以验证从标头检索的`user/group`是否有权执行给定请求。
 通过向 Kubernetes apiserver 发送标准
-[SubjectAccessReview](/zh/docs/reference/access-authn-authz/authorization/) 请求来实现。
+[SubjectAccessReview](/zh-cn/docs/reference/access-authn-authz/authorization/) 请求来实现。
 
 为了使扩展 apiserver 本身被鉴权可以向 Kubernetes apiserver 提交 SubjectAccessReview 请求，
 它需要正确的权限。
@@ -466,7 +466,7 @@ Each of these functions independently and can conflict with each other, if not u
   则 Kubernetes apiserver 会检查请求的证书。
   如果它是由 `--client-ca-file` 引用的文件中的 CA 证书之一签名的，
   并且用户是公用名`CN=`的值，而组是组织`O=` 的取值，则该请求被视为合法请求。
-  请参阅[关于 TLS 身份验证的文档](/zh/docs/reference/access-authn-authz/authentication/#x509-client-certs)。
+  请参阅[关于 TLS 身份验证的文档](/zh-cn/docs/reference/access-authn-authz/authentication/#x509-client-certs)。
 
 * `--requestheader-client-ca-file`：当请求到达 Kubernetes apiserver 时，
   如果启用此选项，则 Kubernetes apiserver 会检查请求的证书。
@@ -545,7 +545,7 @@ The name of an APIService object must be a valid
 [path segment name](/docs/concepts/overview/working-with-objects/names#path-segment-names).
 -->
 APIService 对象的名称必须是合法的
-[路径片段名称](/zh/docs/concepts/overview/working-with-objects/names#path-segment-names)。
+[路径片段名称](/zh-cn/docs/concepts/overview/working-with-objects/names#path-segment-names)。
 
 <!--
 #### Contacting the extension apiserver
@@ -598,6 +598,6 @@ spec:
 * Learn how to [Extend the Kubernetes API Using Custom Resource Definitions](/docs/tasks/access-kubernetes-api/extend-api-custom-resource-definitions/).
 -->
 
-* 使用聚合层[安装扩展 API 服务器](/zh/docs/tasks/extend-kubernetes/setup-extension-api-server/)。
-* 有关高级概述，请参阅[使用聚合层扩展 Kubernetes API](/zh/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)。
-* 了解如何[使用自定义资源扩展 Kubernetes API](/zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/)。
+* 使用聚合层[安装扩展 API 服务器](/zh-cn/docs/tasks/extend-kubernetes/setup-extension-api-server/)。
+* 有关高级概述，请参阅[使用聚合层扩展 Kubernetes API](/zh-cn/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)。
+* 了解如何[使用自定义资源扩展 Kubernetes API](/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/)。
diff --git a/content/zh/docs/tasks/extend-kubernetes/configure-multiple-schedulers.md b/content/zh-cn/docs/tasks/extend-kubernetes/configure-multiple-schedulers.md
similarity index 76%
rename from content/zh/docs/tasks/extend-kubernetes/configure-multiple-schedulers.md
rename to content/zh-cn/docs/tasks/extend-kubernetes/configure-multiple-schedulers.md
index 37f0beb2e5..d9f67a4a5e 100644
--- a/content/zh/docs/tasks/extend-kubernetes/configure-multiple-schedulers.md
+++ b/content/zh-cn/docs/tasks/extend-kubernetes/configure-multiple-schedulers.md
@@ -23,7 +23,7 @@ scheduler and instruct Kubernetes what scheduler to use for each of your pods. L
 learn how to run multiple schedulers in Kubernetes with an example.
 -->
 Kubernetes 自带了一个默认调度器，其详细描述请查阅
-[这里](/zh/docs/reference/command-line-tools-reference/kube-scheduler/)。
+[这里](/zh-cn/docs/reference/command-line-tools-reference/kube-scheduler/)。
 如果默认调度器不适合你的需求，你可以实现自己的调度器。
 而且，你甚至可以和默认调度器一起同时运行多个调度器，并告诉 Kubernetes 为每个
 Pod 使用哪个调度器。
@@ -32,12 +32,12 @@ Pod 使用哪个调度器。
 <!--
 A detailed description of how to implement a scheduler is outside the scope of this
 document. Please refer to the kube-scheduler implementation in
-[pkg/scheduler](https://github.com/kubernetes/kubernetes/tree/{{< param "githubbranch" >}}/pkg/scheduler)
+[pkg/scheduler](https://github.com/kubernetes/kubernetes/tree/master/pkg/scheduler)
 in the Kubernetes source directory for a canonical example.
 -->
 关于实现调度器的具体细节描述超出了本文范围。
 请参考 kube-scheduler 的实现，规范示例代码位于
-[pkg/scheduler](https://github.com/kubernetes/kubernetes/tree/{{< param "githubbranch" >}}/pkg/scheduler)。
+[pkg/scheduler](https://github.com/kubernetes/kubernetes/tree/master/pkg/scheduler)。
 
 ## {{% heading "prerequisites" %}}
 
@@ -108,26 +108,41 @@ config. Save it as `my-scheduler.yaml`:
 
 现在将调度器放在容器镜像中，为它创建一个 Pod 配置，并在 Kubernetes 集群中
 运行它。但是与其在集群中直接创建一个 Pod，不如使用
-[Deployment](/zh/docs/concepts/workloads/controllers/deployment/)。
-Deployment 管理一个 [ReplicaSet](/zh/docs/concepts/workloads/controllers/replicaset/)，
+[Deployment](/zh-cn/docs/concepts/workloads/controllers/deployment/)。
+Deployment 管理一个 [ReplicaSet](/zh-cn/docs/concepts/workloads/controllers/replicaset/)，
 ReplicaSet 再管理 Pod，从而使调度器能够免受一些故障的影响。
 以下是 Deployment 配置，将其保存为 `my-scheduler.yaml`：
 
 {{< codenew file="admin/sched/my-scheduler.yaml" >}}
 
 <!--
-An important thing to note here is that the name of the scheduler specified as an
-argument to the scheduler command in the container spec should be unique.
-This is the name that is matched against the value of the optional `spec.schedulerName`
-on pods, to determine whether this scheduler is responsible for scheduling a particular pod.
+In the above manifest, you use a [KubeSchedulerConfiguration](/docs/reference/scheduling/config/)
+to customize the behavior of your scheduler implementation. This configuration has been passed to
+the `kube-scheduler` during initialization with the `--config` option. The `my-scheduler-config` ConfigMap stores the configuration file. The Pod of the`my-scheduler` Deployment mounts the `my-scheduler-config` ConfigMap as a volume.
 -->
-这里需要注意的是，在容器规约中配置的调度器启动命令参数（--scheduler-name）所指定的
-调度器名称应该是唯一的。
-这个名称应该与 Pod 上的可选参数 `spec.schedulerName` 的值相匹配，也就是说调度器名称的匹配
-关系决定了 Pods 的调度任务由哪个调度器负责。
+在以上的清单中，你使用 [KubeSchedulerConfiguration](/zh-cn/docs/reference/scheduling/config/) 
+来自定义调度器实现的行为。当使用 `--config` 选项进行初始化时，该配置被传递到 `kube-scheduler`。
+`my-scheduler-config` ConfigMap 存储配置数据。
+`my-scheduler` Deployment 的 Pod 将 `my-scheduler-config` ConfigMap 挂载为一个卷。
 
 <!--
-Note also that we created a dedicated service account `my-scheduler` and bind the cluster role
+In the aforementioned Scheduler Configuration, your scheduler implementation is represented via
+a [KubeSchedulerProfile](/docs/reference/config-api/kube-scheduler-config.v1beta3/#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerProfile).
+{{< note >}}
+To determine if a scheduler is responsible for scheduling a specific Pod, the `spec.schedulerName` field in a
+PodTemplate or Pod manifest must match the `schedulerName` field of the `KubeSchedulerProfile`.
+All schedulers running in the cluster must have unique names.
+{{< /note >}}
+-->
+在前面提到的调度器配置中，你的调度器通过 [KubeSchedulerProfile](/docs/reference/config-api/kube-scheduler-config.v1beta3/#kubescheduler-config-k8s-io-v1beta3-KubeSchedulerProfile) 进行实现。
+{{< note >}}
+要确定一个调度器是否可以调度特定的 Pod，PodTemplate 或 Pod 清单中的 `spec.schedulerName` 
+字段必须匹配 `KubeSchedulerProfile` 中的 `schedulerName` 字段。
+所有运行在集群中的调度器必须拥有唯一的名称。
+{{< /note >}}
+
+<!--
+Also, note that you create a dedicated service account `my-scheduler` and bind the ClusterRole
 `system:kube-scheduler` to it so that it can acquire the same privileges as `kube-scheduler`.
 -->
 还要注意，我们创建了一个专用服务账号 `my-scheduler` 并将集群角色 `system:kube-scheduler`
@@ -136,10 +151,13 @@ Note also that we created a dedicated service account `my-scheduler` and bind th
 <!--
 Please see the
 [kube-scheduler documentation](/docs/reference/command-line-tools-reference/kube-scheduler/) for
-detailed description of other command line arguments.
+detailed description of other command line arguments and
+[Scheduler Configuration reference](/docs/reference/config-api/kube-scheduler-config.v1beta3/) for
+detailed description of other customizable `kube-scheduler` configurations.
 -->
 请参阅 [kube-scheduler 文档](/docs/reference/command-line-tools-reference/kube-scheduler/)
-以获取其他命令行参数的详细说明。
+获取其他命令行参数以及 [Scheduler 配置参考](/docs/reference/config-api/kube-scheduler-config.v1beta3/)
+获取自定义 `kube-scheduler` 配置的详细说明。
 
 <!--
 ## Run the second scheduler in the cluster
@@ -186,17 +204,17 @@ pod in this list.
 
 To run multiple-scheduler with leader election enabled, you must do the following:
 
-First, update the following fields in your YAML file:
+Update the following fields for the KubeSchedulerConfiguration in the `my-scheduler-config` ConfigMap in your YAML file:
 -->
 ### 启用领导者选举
 
 要在启用了 leader 选举的情况下运行多调度器，你必须执行以下操作：
 
-首先，更新上述 Deployment YAML（my-scheduler.yaml）文件中的以下字段：
+更新你的 YAML 文件中的 `my-scheduler-config` ConfigMap 里的 KubeSchedulerConfiguration 相关字段如下：
 
-* `--leader-elect=true`
-* `--lock-object-namespace=<lock-object-namespace>`
-* `--lock-object-name=<lock-object-name>`
+* `leaderElection.leaderElect` to `true`
+* `leaderElection.resourceNamespace` to `<lock-object-namespace>`
+* `leaderElection.resourceName` to `<lock-object-name>`
 
 {{< note >}}
 <!--
@@ -288,12 +306,11 @@ scheduler in that pod spec. Let's look at three examples.
 
   <!--
   In this case, we specify that this pod should be scheduled using the scheduler that we
-  deployed - `my-scheduler`. Note that the value of `spec.schedulerName` should match the name supplied to the scheduler
-  command as an argument in the deployment config for the scheduler.
+  deployed - `my-scheduler`. Note that the value of `spec.schedulerName` should match the name supplied for the scheduler
+  in the `schedulerName` field of the mapping `KubeSchedulerProfile`.
   -->
-  在这种情况下，我们指定此 pod 使用我们部署的 `my-scheduler` 来调度。
-  请注意，`spec.schedulerName` 参数的值应该与 Deployment 中配置的提供给
-  scheduler 命令的参数名称匹配。
+  在这种情况下，我们指定此 Pod 使用我们部署的 `my-scheduler` 来调度。
+  请注意，`spec.schedulerName` 参数的值应该与调度器提供的 `KubeSchedulerProfile` 中的 `schedulerName` 字段相匹配。
 
   <!--
   Save this file as `pod3.yaml` and submit it to the Kubernetes cluster.
@@ -352,6 +369,6 @@ You can also use a [custom scheduler configuration](/docs/reference/scheduling/c
 or a custom container image for the cluster's main scheduler by modifying its static pod manifest
 on the relevant control plane nodes.
 -->
-你也可以使用[自定义调度器配置](/zh/docs/reference/scheduling/config/#multiple-profiles)
+你也可以使用[自定义调度器配置](/zh-cn/docs/reference/scheduling/config/#multiple-profiles)
 或自定义容器镜像，用于集群的主调度器，方法是在相关控制平面节点上修改其静态 pod 清单。
 
diff --git a/content/zh/docs/tasks/extend-kubernetes/custom-resources/_index.md b/content/zh-cn/docs/tasks/extend-kubernetes/custom-resources/_index.md
similarity index 100%
rename from content/zh/docs/tasks/extend-kubernetes/custom-resources/_index.md
rename to content/zh-cn/docs/tasks/extend-kubernetes/custom-resources/_index.md
diff --git a/content/zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definition-versioning.md b/content/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definition-versioning.md
similarity index 94%
rename from content/zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definition-versioning.md
rename to content/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definition-versioning.md
index 603274f5c2..43d4d1a10a 100644
--- a/content/zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definition-versioning.md
+++ b/content/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definition-versioning.md
@@ -33,7 +33,7 @@ API 升级时需要在不同 API 表示形式之间进行转换。
 <!--
 You should have a initial understanding of [custom resources](/docs/concepts/extend-kubernetes/api-extension/custom-resources/).
 -->
-你应该对[定制资源](/zh/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
+你应该对[定制资源](/zh-cn/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
 有一些初步了解。
 
 {{< version-check >}}
@@ -509,6 +509,39 @@ spec:
 {{% /tab %}}
 {{< /tabs >}}
 
+<!--
+### Version removal
+
+An older API version cannot be dropped from a CustomResourceDefinition manifest until existing persisted data has been migrated to the newer API version for all clusters that served the older version of the custom resource, and the old version is removed from the `status.storedVersions` of the CustomResourceDefinition.
+-->
+### 版本删除   {#version-removal}
+
+在为所有提供旧版本自定义资源的集群将现有数据迁移到新 API 版本，并且从 CustomResourceDefinition 的
+`status.storedVersions` 中删除旧版本之前，无法从 CustomResourceDefinition 清单文件中删除旧 API 版本。
+
+```yaml
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+  name: crontabs.example.com
+spec:
+  group: example.com
+  names:
+    plural: crontabs
+    singular: crontab
+    kind: CronTab
+  scope: Namespaced
+  versions:
+  - name: v1beta1
+    # 此属性标明该自定义资源的 v1beta1 版本已不再提供。
+    # 发给此版本的 API 请求会在服务器响应中收到未找到的错误。
+    served: false
+    schema: ...
+  - name: v1
+    served: true
+    # 新提供的版本应该设置为存储版本。
+    storage: true
+    schema: ...
+```
 
 <!--
 ## Webhook conversion
@@ -524,7 +557,7 @@ Webhook conversion is available as beta since 1.15, and as alpha since Kubernete
 Webhook 转换在 Kubernetes 1.13 版本引入，在 Kubernetes 1.15 中成为 Beta 功能。
 要使用此功能，应启用 `CustomResourceWebhookConversion` 特性。
 在大多数集群上，这类 Beta 特性应该是自动启用的。
-请参阅[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
+请参阅[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)
 文档以获得更多信息。
 {{< /note >}}
 
@@ -599,7 +632,7 @@ how to [authenticate API servers](/docs/reference/access-authn-authz/extensible-
 默认为 `NoClientCert`。
 这意味着 webhook 服务器没有验证客户端（也就是 API 服务器）的身份。
 如果你需要双向 TLS 或者其他方式来验证客户端，请参阅如何
-[验证 API 服务](/zh/docs/reference/access-authn-authz/extensible-admission-controllers/#authenticate-apiservers)。
+[验证 API 服务](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/#authenticate-apiservers)。
 {{< /note >}}
 
 <!--
@@ -626,7 +659,7 @@ The assumption for next sections is that the conversion webhook server is deploy
 ### 部署转换 Webhook 服务
 
 用于部署转换 webhook 的文档与
-[准入 Webhook 服务示例](/zh/docs/reference/access-authn-authz/extensible-admission-controllers/#deploy_the_admission_webhook_service)相同。
+[准入 Webhook 服务示例](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/#deploy_the_admission_webhook_service)相同。
 这里的假设是转换 Webhook 服务器被部署为 `default` 名字空间中名为
 `example-conversion-webhook-server` 的服务，并在路径 `/crdconvert`
 上处理请求。
@@ -1384,8 +1417,8 @@ procedure.
 <!--
 *Option 1:* Use the Storage Version Migrator
 
-1. Run the [storage Version migrator](https://github.com/kubernetes-sigs/kube-storage-version-migrator)
-2. Remove the old version from the CustomResourceDefinition `status.storedVersions` field.
+1.  Run the [storage Version migrator](https://github.com/kubernetes-sigs/kube-storage-version-migrator)
+2.  Remove the old version from the CustomResourceDefinition `status.storedVersions` field.
 -->
 
 *选项 1：* 使用存储版本迁移程序（Storage Version Migrator）
@@ -1409,13 +1442,29 @@ The following is an example procedure to upgrade from `v1beta1` to `v1`.
 2.  Write an upgrade procedure to list all existing objects and write them with
     the same content. This forces the backend to write objects in the current
     storage version, which is `v1`.
-3.  Update the CustomResourceDefinition `Status` by removing `v1beta1` from
-    `storedVersions` field.
+3.  Remove `v1beta1` from the CustomResourceDefinition `status.storedVersions` field.
 -->
 1.  在 CustomResourceDefinition 文件中将 `v1` 设置为存储版本，并使用 kubectl 应用它。
     `storedVersions`现在是`v1beta1, v1`。
 2.  编写升级过程以列出所有现有对象并使用相同内容将其写回存储。
     这会强制后端使用当前存储版本（即 `v1`）写入对象。
-3.  通过从 `storedVersions` 字段中删除 `v1beta1` 来更新 CustomResourceDefinition
-    的`Status`。 
+3.  从 CustomResourceDefinition  的 `status.storedVersions` 字段中删除 `v1beta1`。
 
+<!--
+The `kubectl` tool currently cannot be used to edit or patch the `status` subresource on a CRD: see the [Kubectl Subresource Support KEP](https://github.com/kubernetes/enhancements/tree/master/keps/sig-cli/2590-kubectl-subresource) for more details.
+
+The easier way to patch the status subresource from the CLI is directly interacting with the API server using the `curl` tool, in this example:
+-->
+{{< note >}}
+`kubectl` 工具目前不能用于编辑或修补 CRD 上的 `status` 子资源：请参阅
+[kubectl Subresource Support KEP](https://github.com/kubernetes/enhancements/tree/master/keps/sig-cli/2590-kubectl-subresource)
+了解更多细节。
+
+从 CLI 给 `status` 子资源打补丁的更简单的方法是使用 `curl` 工具直接与 API 服务器交互，示例:
+```bash
+kubectl proxy &
+curl --header "Content-Type: application/json-patch+json" \
+  --request PATCH http://localhost:8001/apis/apiextensions.k8s.io/v1/customresourcedefinitions/<your CRD name here>/status \
+  --data '[{"op": "replace", "path": "/status/storedVersions", "value":["v1"]}]'
+```
+{{< /note >}}
\ No newline at end of file
diff --git a/content/zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions.md b/content/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions.md
similarity index 53%
rename from content/zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions.md
rename to content/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions.md
index 3530aedf2a..5db064b510 100644
--- a/content/zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions.md
+++ b/content/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions.md
@@ -27,7 +27,7 @@ into the Kubernetes API by creating a
 本页展示如何使用
 [CustomResourceDefinition](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#customresourcedefinition-v1-apiextensions-k8s-io)
 将
-[定制资源（Custom Resource）](/zh/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
+[定制资源（Custom Resource）](/zh-cn/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
 安装到 Kubernetes API 上。
 
 ## {{% heading "prerequisites" %}}
@@ -47,21 +47,23 @@ the documentation for that version to see advice that is relevant for your clust
 ## Create a CustomResourceDefinition
 
 When you create a new CustomResourceDefinition (CRD), the Kubernetes API Server
-creates a new RESTful resource path for each version you specify. The CRD can be
-either namespaced or cluster-scoped, as specified in the CRD's `scope` field. As
-with existing built-in objects, deleting a namespace deletes all custom objects
-in that namespace. CustomResourceDefinitions themselves are non-namespaced and
-are available to all namespaces.
-
+creates a new RESTful resource path for each version you specify. The custom
+resource created from a CRD object can be either namespaced or cluster-scoped,
+as specified in the CRD's `spec.scope` field. As with existing built-in
+objects, deleting a namespace deletes all custom objects in that namespace.
+CustomResourceDefinitions themselves are non-namespaced and are available to
+all namespaces.
 For example, if you save the following CustomResourceDefinition to `resourcedefinition.yaml`:
 -->
 ## 创建 CustomResourceDefinition  {#create-a-customresourcedefinition}
 
-当你创建新的 CustomResourceDefinition（CRD）时，Kubernetes API 服务器会为你所
-指定的每一个版本生成一个 RESTful 的 资源路径。CRD 可以是名字空间作用域的，也可以
-是集群作用域的，取决于 CRD 的 `scope` 字段设置。和其他现有的内置对象一样，删除
-一个名字空间时，该名字空间下的所有定制对象也会被删除。CustomResourceDefinition
-本身是不受名字空间限制的，对所有名字空间可用。
+当你创建新的 CustomResourceDefinition（CRD）时，Kubernetes API 服务器会为你所指定的每个版本生成一个新的
+RESTful 资源路径。
+基于 CRD 对象所创建的自定义资源可以是名字空间作用域的，也可以是集群作用域的，
+取决于 CRD 对象 `spec.scope` 字段的设置。
+
+与其它的内置对象一样，删除名字空间也将删除该名字空间中的所有自定义对象。
+CustomResourceDefinitions 本身是无名字空间的，可在所有名字空间中访问。
 
 例如，如果你将下面的 CustomResourceDefinition 保存到 `resourcedefinition.yaml`
 文件：
@@ -103,7 +105,7 @@ spec:
     plural: crontabs
     # singular name to be used as an alias on the CLI and for display
     singular: crontab
-    # kind is normally the CamelCased singular type. Your resource manifests use this.
+    # kind is normally the PascalCased singular type. Your resource manifests use this.
     kind: CronTab
     # shortNames allow shorter string to match your resource on the CLI
     shortNames:
@@ -146,7 +148,7 @@ spec:
     plural: crontabs
     # 名称的单数形式，作为命令行使用时和显示时的别名
     singular: crontab
-    # kind 通常是单数形式的驼峰编码（CamelCased）形式。你的资源清单会使用这一形式。
+    # kind 通常是单数形式的帕斯卡编码（PascalCased）形式。你的资源清单会使用这一形式。
     kind: CronTab
     # shortNames 允许你在命令行使用较短的字符串来匹配资源
     shortNames:
@@ -204,7 +206,7 @@ If you save the following YAML to `my-crontab.yaml`:
 
 在创建了 CustomResourceDefinition 对象之后，你可以创建定制对象（Custom
 Objects）。定制对象可以包含定制字段。这些字段可以包含任意的 JSON 数据。
-在下面的例子中，在类别为 `CrontTab` 的定制对象中，设置了`cronSpec` 和 `image`
+在下面的例子中，在类别为 `CronTab` 的定制对象中，设置了`cronSpec` 和 `image`
 定制字段。类别 `CronTab` 来自你在上面所创建的 CRD 的规约。
 
 如果你将下面的 YAML 保存到 `my-crontab.yaml`：
@@ -308,7 +310,8 @@ kubectl get crontabs
 ```
 
 ```none
-Error from server (NotFound): Unable to list {"stable.example.com" "v1" "crontabs"}: the server could not find the requested resource (get crontabs.stable.example.com)
+Error from server (NotFound): Unable to list {"stable.example.com" "v1" "crontabs"}: the server could not
+find the requested resource (get crontabs.stable.example.com)
 ```
 
 <!--
@@ -344,11 +347,15 @@ CustomResource 对象在定制字段中保存结构化的数据，这些字段
 <!--
 A structural schema is an [OpenAPI v3.0 validation schema](#validation) which:
 
-1. specifies a non-empty type (via `type` in OpenAPI) for the root, for each specified field of an object node (via `properties` or `additionalProperties` in OpenAPI) and for each item in an array node (via `items` in OpenAPI), with the exception of:
+1. specifies a non-empty type (via `type` in OpenAPI) for the root, for each specified field of an object node
+   (via `properties` or `additionalProperties` in OpenAPI) and for each item in an array node
+   (via `items` in OpenAPI), with the exception of:
    * a node with `x-kubernetes-int-or-string: true`
    * a node with `x-kubernetes-preserve-unknown-fields: true`
-2. for each field in an object and each item in an array which is specified within any of `allOf`, `anyOf`, `oneOf` or `not`, the schema also specifies the field/item outside of those logical junctors (compare example 1 and 2).
-3. does not set `description`, `type`, `default`, `additionalProperties`, `nullable` within an `allOf`, `anyOf`, `oneOf` or `not`, with the exception of the two pattern for `x-kubernetes-int-or-string: true` (see below).
+2. for each field in an object and each item in an array which is specified within any of `allOf`, `anyOf`,
+   `oneOf` or `not`, the schema also specifies the field/item outside of those logical junctors (compare example 1 and 2).
+3. does not set `description`, `type`, `default`, `additionalProperties`, `nullable` within an `allOf`, `anyOf`,
+   `oneOf` or `not`, with the exception of the two pattern for `x-kubernetes-int-or-string: true` (see below).
 4. if `metadata` is specified, then only restrictions on `metadata.name` and `metadata.generateName` are allowed.
 -->
 结构化模式本身是一个 [OpenAPI v3.0 验证模式](#validation)，其中：
@@ -507,7 +514,9 @@ Violations of the structural schema rules are reported in the `NonStructural` co
 <!--
 ### Field pruning
 
-CustomResourceDefinitions store validated resource data in the cluster's persistence store, {{< glossary_tooltip term_id="etcd" text="etcd">}}. As with native Kubernetes resources such as {{< glossary_tooltip text="ConfigMap" term_id="configmap" >}}, if you specify a field that the API server does not recognize, the unknown field  is _pruned_ (removed) before being persisted.
+CustomResourceDefinitions store validated resource data in the cluster's persistence store, {{< glossary_tooltip term_id="etcd" text="etcd">}}.
+As with native Kubernetes resources such as {{< glossary_tooltip text="ConfigMap" term_id="configmap" >}},
+if you specify a field that the API server does not recognize, the unknown field  is _pruned_ (removed) before being persisted.
 -->
 ### 字段剪裁     {#field-pruning}
 
@@ -519,9 +528,8 @@ CustomResourceDefinition 在集群的持久性存储
 被 _剪裁（Pruned）_ 掉（删除）。
 
 <!--
-CRDs converted from `apiextensions.k8s.io/v1beta1` to
-`apiextensions.k8s.io/v1` might lack structural schemas, and
-`spec.preserveUnknownFields` might be `true`.
+CRDs converted from `apiextensions.k8s.io/v1beta1` to `apiextensions.k8s.io/v1` might lack structural schemas,
+and `spec.preserveUnknownFields` might be `true`.
 
 For legacy CustomResourceDefinition objects created as
 `apiextensions.k8s.io/v1beta1` with `spec.preserveUnknownFields` set to
@@ -546,7 +554,7 @@ resource definitions to:
 * 裁剪未启用。
 * 可以存储任意数据。
 
-为了与 `apiextensions.k8s.io/v1` 兼容，将你的自定义资源定义更新为：
+为了与 `apiextensions.k8s.io/v1` 兼容，将你的定制资源定义更新为：
 
 1. 使用结构化的 OpenAPI 模式。
 2. `spec.preserveUnknownFields` 设置为 `false`。
@@ -579,11 +587,11 @@ kubectl create --validate=false -f my-crontab.yaml -o yaml
 ```
 
 <!--
-your output is similar to:
+Your output is similar to:
 -->
 输出类似于：
 
-```console
+```yaml
 apiVersion: stable.example.com/v1
 kind: CronTab
 metadata:
@@ -616,7 +624,9 @@ to clients, `kubectl` also checks for unknown fields and rejects those objects w
 <!--
 #### Controlling pruning
 
-By default, all unspecified fields for a custom resource, across all versions, are pruned. It is possible though to opt-out of that for specific sub-trees of fields by adding `x-kubernetes-preserve-unknown-fields: true` in the [structural OpenAPI v3 validation schema](#specifying-a-structural-schema).
+By default, all unspecified fields for a custom resource, across all versions, are pruned. It is possible though to
+opt-out of that for specifc sub-trees of fields by adding `x-kubernetes-preserve-unknown-fields: true` in the
+[structural OpenAPI v3 validation schema](#specifying-a-structural-schema).
 For example:
 -->
 #### 控制剪裁   {#controlling-pruning}
@@ -729,9 +739,8 @@ properties:
 ```
 
 <!--
-Also those nodes are partially excluded from rule 3 in the sense that the
-following two patterns are allowed (exactly those, without variations in order
-to additional fields):
+Also those nodes are partially excluded from rule 3 in the sense that the following two patterns are allowed
+(exactly those, without variations in order to additional fields):
 -->
 此外，所有这类节点也不再受规则 3 约束，也就是说，下面两种模式是被允许的
 （注意，仅限于这两种模式，不支持添加新字段的任何其他变种）：
@@ -774,7 +783,8 @@ RawExtensions (as in `runtime.RawExtension` defined in
 [k8s.io/apimachinery](https://github.com/kubernetes/apimachinery/blob/03ac7a9ade429d715a1a46ceaa3724c18ebae54f/pkg/runtime/types.go#L94))
 holds complete Kubernetes objects, i.e. with `apiVersion` and `kind` fields.
 
-It is possible to specify those embedded objects (both completely without constraints or partially specified) by setting `x-kubernetes-embedded-resource: true`. For example:
+It is possible to specify those embedded objects (both completely without constraints or partially specified)
+by setting `x-kubernetes-embedded-resource: true`. For example:
 -->
 RawExtensions（就像在
 [k8s.io/apimachinery](https://github.com/kubernetes/apimachinery/blob/03ac7a9ade429d715a1a46ceaa3724c18ebae54f/pkg/runtime/types.go#L94)
@@ -807,9 +817,8 @@ foo:
 ```
 
 <!--
-Because `x-kubernetes-preserve-unknown-fields: true` is specified alongside,
-nothing is pruned. The use of `x-kubernetes-preserve-unknown-fields: true` is
-optional though.
+Because `x-kubernetes-preserve-unknown-fields: true` is specified alongside, nothing is pruned.
+The use of `x-kubernetes-preserve-unknown-fields: true` is optional though.
 
 With `x-kubernetes-embedded-resource: true`, the `apiVersion`, `kind` and `metadata` are implicitly specified and validated.
 -->
@@ -831,7 +840,7 @@ CustomResourceDefinition and migrating your objects from one version to another.
 
 关于如何为你的 CustomResourceDefinition 提供多个版本的支持，以及如何将你的对象
 从一个版本迁移到另一个版本， 详细信息可参阅
-[定制资源定义的版本](/zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definition-versioning/)。
+[定制资源定义的版本](/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definition-versioning/)。
 
 <!-- discussion -->
 
@@ -902,16 +911,17 @@ Kubernetes 会最终删除该资源，
 ### Validation
 
 Custom resources are validated via
-[OpenAPI v3 schemas](https://github.com/OAI/OpenAPI-Specification/blob/master/versions/3.0.0.md#schemaObject)
-and you can add additional validation using
+[OpenAPI v3 schemas](https://github.com/OAI/OpenAPI-Specification/blob/master/versions/3.0.0.md#schemaObject),
+by x-kubernetes-validations when the [Validation Rules feature](#validation-rules) is enabled, and you
+can add additional validation using
 [admission webhooks](/docs/reference/access-authn-authz/admission-controllers/#validatingadmissionwebhook).
 -->
 ### 合法性检查    {#validation}
 
 定制资源是通过
 [OpenAPI v3 模式定义](https://github.com/OAI/OpenAPI-Specification/blob/master/versions/3.0.0.md#schemaObject)
-来执行合法性检查的，
-你可以通过使用[准入控制 Webhook](/zh/docs/reference/access-authn-authz/admission-controllers/#validatingadmissionwebhook)
+来执行合法性检查的，当启用[验证规则特性](#validation-rules)时，通过 `x-kubernetes-validations` 验证，
+你可以通过使用[准入控制 Webhook](/zh-cn/docs/reference/access-authn-authz/admission-controllers/#validatingadmissionwebhook)
 来添加额外的合法性检查逻辑。
 
 <!--
@@ -949,6 +959,16 @@ Additionally, the following restrictions are applied to the schema:
 - 字段 `additionalProperties` 不可设置为 `false`
 - 字段 `additionalProperties` 与 `properties` 互斥，不可同时使用
 
+<!--
+The `x-kubernetes-validations` extension can be used to validate custom resources using [Common
+Expression Language (CEL)](https://github.com/google/cel-spec) expressions when the [Validation
+rules](#validation-rules) feature is enabled and the CustomResourceDefinition schema is a
+[structural schema](#specifying-a-structural-schema).
+-->
+当[验证规则特性](#validation-rules)被启用并且 CustomResourceDefinition
+模式是一个[结构化的模式定义](#specifying-a-structural-schema)时，
+`x-kubernetes-validations` 扩展可以使用[通用表达式语言(CEL)](https://github.com/google/cel-spec)表达式来验证定制资源。
+
 <!--
 The `default` field can be set when the [Defaulting feature](#defaulting) is enabled,
 which is the case with `apiextensions.k8s.io/v1` CustomResourceDefinitions.
@@ -960,7 +980,7 @@ enabled, which is the case automatically for many clusters for beta features).
 就 `apiextensions.k8s.io/v1` 组的 CustomResourceDefinitions，这一条件是满足的。
 设置默认值的功能特性从 1.17 开始正式发布。该特性在 1.16 版本中处于
 Beta 状态，要求 `CustomResourceDefaulting`
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
+[特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)
 被启用。对于大多数集群而言，Beta 状态的特性门控默认都是自动启用的。
 
 <!--
@@ -1112,6 +1132,784 @@ And create it:
 kubectl apply -f my-crontab.yaml
 crontab "my-new-cron-object" created
 ```
+<!--
+## Validation rules
+-->
+## 验证规则
+
+{{< feature-state state="alpha" for_k8s_version="v1.23" >}}
+
+<!--
+Validation rules are in alpha since 1.23 and validate custom resources when the
+`CustomResourceValidationExpressions` [feature
+gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled.
+This feature is only available if the schema is a
+[structural schema](#specifying-a-structural-schema).
+-->
+验证规则从 1.23 开始处于 Alpha 状态，
+当 `CustomResourceValidationExpressions` [特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)被启用时，
+验证定制资源。这个功能只有在模式是[结构化的模式](#specifying-a-structural-schema)时才可用。
+
+<!--
+Validation rules use the [Common Expression Language (CEL)](https://github.com/google/cel-spec)
+to validate custom resource values. Validation rules are included in
+CustomResourceDefinition schemas using the `x-kubernetes-validations` extension.
+-->
+验证规则使用[通用表达式语言（CEL）](https://github.com/google/cel-spec)来验证定制资源的值。
+验证规则使用 `x-kubernetes-validations` 扩展包含在 `CustomResourceDefinition` 模式定义中。
+
+<!--
+The Rule is scoped to the location of the `x-kubernetes-validations` extension in the schema.
+And `self` variable in the CEL expression is bound to the scoped value.
+-->
+规则的作用域是模式定义中 `x-kubernetes-validations` 扩展所在的位置。
+CEL 表达式中的 `self` 变量被绑定到限定作用域的取值。
+
+<!--
+All validation rules are scoped to the current object: no cross-object or stateful validation rules are supported.
+-->
+所有验证规则都是针对当前对象的：不支持跨对象或有状态的验证规则。
+
+<!--
+For example:
+-->
+例如:
+
+```yaml
+    ...
+    openAPIV3Schema:
+      type: object
+      properties:
+        spec:
+          type: object
+          x-kubernetes-validations:
+            - rule: "self.minReplicas <= self.replicas"
+              message: "replicas should be greater than or equal to minReplicas."
+            - rule: "self.replicas <= self.maxReplicas"
+              message: "replicas should be smaller than or equal to maxReplicas."
+          properties:
+            ...
+            minReplicas:
+              type: integer
+            replicas:
+              type: integer
+            maxReplicas:
+              type: integer
+          required:
+            - minReplicas
+            - replicas
+            - maxReplicas
+```
+
+<!--
+will reject a request to create this custom resource:
+-->
+将拒绝创建这个定制资源的请求:
+
+```yaml
+apiVersion: "stable.example.com/v1"
+kind: CronTab
+metadata:
+  name: my-new-cron-object
+spec:
+  minReplicas: 0
+  replicas: 20
+  maxReplicas: 10
+```
+<!--
+with the response:
+-->
+
+返回响应为：
+
+```
+The CronTab "my-new-cron-object" is invalid:
+* spec: Invalid value: map[string]interface {}{"maxReplicas":10, "minReplicas":0, "replicas":20}: replicas should be smaller than or equal to maxReplicas.
+```
+
+<!--
+`x-kubernetes-validations` could have multiple rules.
+
+The `rule` under `x-kubernetes-validations` represents the expression which will be evaluated by CEL.
+
+The `message` represents the message displayed when validation fails. If message is unset, the above response would be:
+-->
+`x-kubernetes-validations` 可以有多条规则。 
+
+`x-kubernetes-validations` 下的 `rule` 代表将由 CEL 评估的表达式。
+
+`message` 代表验证失败时显示的信息。如果消息没有设置，上述响应将是：
+```
+The CronTab "my-new-cron-object" is invalid:
+* spec: Invalid value: map[string]interface {}{"maxReplicas":10, "minReplicas":0, "replicas":20}: failed rule: self.replicas <= self.maxReplicas
+```
+
+<!--
+Validation rules are compiled when CRDs are created/updated.
+The request of CRDs create/update will fail if compilation of validation rules fail.
+Compilation process includes type checking as well.
+-->
+当 CRD 被创建/更新时，验证规则被编译。
+如果验证规则的编译失败，CRD 的创建/更新请求将失败。
+编译过程也包括类型检查。
+
+<!--
+The compilation failure:
+- `no_matching_overload`: this function has no overload for the types of the arguments.
+
+  e.g. Rule like `self == true` against a field of integer type will get error:
+  ```
+  Invalid value: apiextensions.ValidationRule{Rule:"self == true", Message:""}: compilation failed: ERROR: \<input>:1:6: found no matching overload for '_==_' applied to '(int, bool)'
+  ```
+
+- `no_such_field`: does not contain the desired field.
+
+  e.g. Rule like `self.nonExistingField > 0` against a non-existing field will return the error:
+  ```
+  Invalid value: apiextensions.ValidationRule{Rule:"self.nonExistingField > 0", Message:""}: compilation failed: ERROR: \<input>:1:5: undefined field 'nonExistingField'
+  ```
+
+- `invalid argument`: invalid argument to macros.
+
+  e.g. Rule like `has(self)` will return error:
+  ```
+  Invalid value: apiextensions.ValidationRule{Rule:"has(self)", Message:""}: compilation failed: ERROR: <input>:1:4: invalid argument to has() macro
+  ```
+-->
+编译失败：
+- `no_matching_overload`：此函数没有参数类型的重载。
+
+  例如，像 `self == true` 这样的规则对一个整数类型的字段将得到错误：
+  ```
+  Invalid value: apiextensions.ValidationRule{Rule:"self == true", Message:""}: compilation failed: ERROR: \<input>:1:6: found no matching overload for '_==_' applied to '(int, bool)'
+  ```
+
+- `no_such_field`：不包含所需的字段。
+  例如，针对一个不存在的字段，像 `self.nonExistingField > 0` 这样的规则将返回错误：
+  ```
+  Invalid value: apiextensions.ValidationRule{Rule:"self.nonExistingField > 0", Message:""}: compilation failed: ERROR: \<input>:1:5: undefined field 'nonExistingField'
+  ```
+
+- `invalid argument`：对宏的无效参数。
+  例如，像 `has(self)` 这样的规则将返回错误：
+  ```
+  Invalid value: apiextensions.ValidationRule{Rule:"has(self)", Message:""}: compilation failed: ERROR: <input>:1:4: invalid argument to has() macro
+  ```
+
+
+<!--
+Validation Rules Examples:
+
+| Rule                                                                             | Purpose                                                                           |
+| ----------------                                                                 | ------------                                                                      |
+| `self.minReplicas <= self.replicas && self.replicas <= self.maxReplicas`         | Validate that the three fields defining replicas are ordered appropriately        |
+| `'Available' in self.stateCounts`                                                | Validate that an entry with the 'Available' key exists in a map                   |
+| `(size(self.list1) == 0) != (size(self.list2) == 0)`                             | Validate that one of two lists is non-empty, but not both                         |
+| <code>!('MY_KEY' in self.map1) &#124;&#124; self['MY_KEY'].matches('^[a-zA-Z]*$')</code>               | Validate the value of a map for a specific key, if it is in the map               |
+| `self.envars.filter(e, e.name = 'MY_ENV').all(e, e.value.matches('^[a-zA-Z]*$')` | Validate the 'value' field of a listMap entry where key field 'name' is 'MY_ENV'  |
+| `has(self.expired) && self.created + self.ttl < self.expired`                    | Validate that 'expired' date is after a 'create' date plus a 'ttl' duration       |
+| `self.health.startsWith('ok')`                                                   | Validate a 'health' string field has the prefix 'ok'                              |
+| `self.widgets.exists(w, w.key == 'x' && w.foo < 10)`                             | Validate that the 'foo' property of a listMap item with a key 'x' is less than 10 |
+| `type(self) == string ? self == '100%' : self == 1000`                           | Validate an int-or-string field for both the int and string cases             |
+| `self.metadata.name.startsWith(self.prefix)`                                     | Validate that an object's name has the prefix of another field value              |
+| `self.set1.all(e, !(e in self.set2))`                                            | Validate that two listSets are disjoint                                           |
+| `size(self.names) == size(self.details) && self.names.all(n, n in self.details)` | Validate the 'details' map is keyed by the items in the 'names' listSet           |
+
+Xref: [Supported evaluation on CEL](https://github.com/google/cel-spec/blob/v0.6.0/doc/langdef.md#evaluation)
+-->
+验证规则例子：
+
+| 规则                                                                             | 目的                                                                             |
+| ----------------                                                                 | ------------                                                                     |
+| `self.minReplicas <= self.replicas && self.replicas <= self.maxReplicas`         | 验证定义副本数的三个字段大小顺序是否正确                                             |
+| `'Available' in self.stateCounts`                                                | 验证 map 中是否存在键名为 `Available`的条目                                   |
+| `(size(self.list1) == 0) != (size(self.list2) == 0)`                             | 验证两个 list 之一是非空的，但不是二者都非空                                   |
+| <code>!('MY_KEY' in self.map1) &#124;&#124; self['MY_KEY'].matches('^[a-zA-Z]*$')</code>               | 如果某个特定的 key 在 map 中，验证 map 中这个 key 的 value |
+| `self.envars.filter(e, e.name = 'MY_ENV').all(e, e.value.matches('^[a-zA-Z]*$')` | 验证一个 listMap 中主键 'name' 为 'MY_ENV' 'value' 的表项，检查其取值 'value'             |
+| `has(self.expired) && self.created + self.ttl < self.expired`    | 验证 'Expired' 日期是否晚于 'Create' 日期加上 'ttl' 持续时间                   |
+| `self.health.startsWith('ok')`                                                   | 验证 'health' 字符串字段有前缀 'ok'             |
+| `self.widgets.exists(w, w.key == 'x' && w.foo < 10)`                             | 验证 key 为 'x' 的 listMap 项的 'foo' 属性是否小于 10                             |
+| `type(self) == string ? self == '100%' : self == 1000`                           | 在 int 型和 string 型两种情况下验证 int-or-string 字段                           |
+| `self.metadata.name.startsWith(self.prefix)`                                     | 验证对象的名称是否具有另一个字段值的前缀                                         |
+| `self.set1.all(e, !(e in self.set2))`                                            | 验证两个 listSet 是否不相交                                                      |
+| `size(self.names) == size(self.details) && self.names.all(n, n in self.details)` | 验证 'details' map 是由 'names' listSet 的项目所决定的。                         |
+
+参考：[CEL 中支持的求值](https://github.com/google/cel-spec/blob/v0.6.0/doc/langdef.md#evaluation)
+
+
+<!--
+- If the Rule is scoped to the root of a resource, it may make field selection into any fields
+  declared in the OpenAPIv3 schema of the CRD as well as `apiVersion`, `kind`, `metadata.name` and
+  `metadata.generateName`. This includes selection of fields in both the `spec` and `status` in the
+  same expression:
+-->
+- 如果规则的作用域是某资源的根，则它可以对 CRD 的 OpenAPIv3 模式表达式中声明的任何字段进行字段选择，
+  以及 `apiVersion`、`kind`、`metadata.name` 和 `metadata.generateName`。
+  这包括在同一表达式中对 `spec` 和 `status` 的字段进行选择：
+  ```yaml
+      ...
+      openAPIV3Schema:
+        type: object
+        x-kubernetes-validations:
+          - rule: "self.status.availableReplicas >= self.spec.minReplicas"
+        properties:
+            spec:
+              type: object
+              properties:
+                minReplicas:
+                  type: integer
+                ...
+            status:
+              type: object
+              properties:
+                availableReplicas:
+                  type: integer
+  ```
+
+<!--
+- If the Rule is scoped to an object with properties, the accessible properties of the object are field selectable
+  via `self.field` and field presence can be checked via `has(self.field)`. Null valued fields are treated as
+  absent fields in CEL expressions.
+-->
+- 如果规则的作用域是具有属性的对象，那么可以通过 `self.field` 对该对象的可访问属性进行字段选择，
+  而字段存在与否可以通过 `has(self.field)` 来检查。
+  在 CEL 表达式中，Null 值的字段被视为不存在的字段。
+
+  ```yaml
+      ...
+      openAPIV3Schema:
+        type: object
+        properties:
+          spec:
+            type: object
+            x-kubernetes-validations:
+              - rule: "has(self.foo)"
+            properties:
+              ...
+              foo:
+                type: integer
+  ```
+
+<!--
+- If the Rule is scoped to an object with additionalProperties (i.e. a map) the value of the map
+  are accessible via `self[mapKey]`, map containment can be checked via `mapKey in self` and all entries of the map
+  are accessible via CEL macros and functions such as `self.all(...)`.
+-->
+- 如果规则的作用域是一个带有 additionalProperties 的对象（即map），那么 map 的值
+  可以通过 `self[mapKey]` 访问，map 的包含性可以通过 `mapKey in self` 检查，
+  map 中的所有条目可以通过 CEL 宏和函数如 `self.all(...)` 访问。
+  ```yaml
+      ...
+      openAPIV3Schema:
+        type: object
+        properties:
+          spec:
+            type: object
+            x-kubernetes-validations:
+              - rule: "self['xyz'].foo > 0"
+            additionalProperties:
+              ...
+              type: object
+              properties:
+                foo:
+                  type: integer
+  ```
+
+<!--
+- If the Rule is scoped to an array, the elements of the array are accessible via `self[i]` and also by macros and
+  functions.
+-->
+- 如果规则的作用域是 array，则 array 的元素可以通过 `self[i]` 访问，也可以通过宏和函数访问。
+  ```yaml
+      ...
+      openAPIV3Schema:
+        type: object
+        properties:
+          ...
+          foo:
+            type: array
+            x-kubernetes-validations:
+              - rule: "size(self) == 1"
+            items:
+              type: string
+  ```
+
+<!--
+- If the Rule is scoped to a scalar, `self` is bound to the scalar value.
+-->
+- 如果规则的作用域为标量，则 `self` 将绑定到标量值。
+  ```yaml
+      ...
+      openAPIV3Schema:
+        type: object
+        properties:
+          spec:
+            type: object
+            properties:
+              ...
+              foo:
+                type: integer
+                x-kubernetes-validations:
+                - rule: "self > 0"
+  ```
+<!--
+Examples:
+
+|type of the field rule scoped to    | Rule example             |
+| -----------------------| -----------------------|
+| root object            | `self.status.actual <= self.spec.maxDesired`|
+| map of objects         | `self.components['Widget'].priority < 10`|
+| list of integers       | `self.values.all(value, value >= 0 && value < 100)`|
+| string                 | `self.startsWith('kube')`|
+-->
+例子：
+
+| 规则作用域字段类型     | 规则示例             |
+| -----------------------| -----------------------|
+| 根对象            | `self.status.actual <= self.spec.maxDesired`|
+| 对象映射         | `self.components['Widget'].priority < 10`|
+| 整数列表       | `self.values.all(value, value >= 0 && value < 100)`|
+| 字符串                 | `self.startsWith('kube')`|
+
+
+<!--
+The `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the
+object and from any x-kubernetes-embedded-resource annotated objects. No other metadata properties are accessible.
+-->
+`apiVersion`、`kind`、`metadata.name` 和 `metadata.generateName` 始终可以从对象的根目录和任何
+带有 `x-kubernetes-embedded-resource` 注解的对象访问。
+其他元数据属性都不可访问。
+
+<!--
+Unknown data preserved in custom resources via `x-kubernetes-preserve-unknown-fields` is not accessible in CEL
+  expressions. This includes:
+  - Unknown field values that are preserved by object schemas with x-kubernetes-preserve-unknown-fields.
+  - Object properties where the property schema is of an "unknown type". An "unknown type" is recursively defined as:
+    - A schema with no type and x-kubernetes-preserve-unknown-fields set to true
+    - An array where the items schema is of an "unknown type"
+    - An object where the additionalProperties schema is of an "unknown type"
+-->
+通过 `x-kubernetes-preserve-unknown-fields` 保存在定制资源中的未知数据在 CEL 表达中无法访问。
+这包括：
+  - 使用 `x-kubernetes-preserve-unknown-fields` 的对象模式保留的未知字段值。
+  - 属性模式为"未知类型（Unknown Type）"的对象属性。一个"未知类型"被递归定义为：
+    - 一个没有类型的模式，`x-kubernetes-preserve-unknown-fields` 设置为 true。
+    - 一个数组，其中项目模式为"未知类型"
+    - 一个 additionalProperties 模式为"未知类型"的对象
+
+
+<!--
+Only property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible.
+Accessible property names are escaped according to the following rules when accessed in the expression:
+-->
+只有 `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` 形式的属性名是可访问的。
+当在表达式中访问时，可访问的属性名称会根据以下规则进行转义：
+
+<!--
+| ----------------------- | -----------------------|
+| `__underscores__`       | `__`                  |
+| `__dot__`               | `.`                   |
+|`__dash__`               | `-`                   |
+| `__slash__`             | `/`                   |
+| `__{keyword}__`         | [CEL RESERVED keyword](https://github.com/google/cel-spec/blob/v0.6.0/doc/langdef.md#syntax)       |
+-->
+| 转义序列                | 属性名称等效为        |
+| ----------------------- | ----------------------|
+| `__underscores__`       | `__`                  |
+| `__dot__`               | `.`                   |
+|`__dash__`               | `-`                   |
+| `__slash__`             | `/`                   |
+| `__{keyword}__`         | [CEL 保留关键字](https://github.com/google/cel-spec/blob/v0.6.0/doc/langdef.md#syntax)       |
+
+<!--
+Note: CEL RESERVED keyword needs to match the exact property name to be escaped (e.g. int in the word sprint would not be escaped).
+-->
+注意：CEL 保留关键字需要与要转义的确切属性名匹配(例如，单词 `sprint` 中的 `int` 不会转义)。
+
+<!--
+Examples on escaping:
+-->
+转义的例子：
+
+<!--
+|property name    | rule with escaped property name     |
+| ----------------| -----------------------             |
+| namespace       | `self.__namespace__ > 0`            |
+| x-prop          | `self.x__dash__prop > 0`            |
+| redact__d       | `self.redact__underscores__d > 0`   |
+| string          | `self.startsWith('kube')`           |
+-->
+|属性名           | 转义属性名规则                      |
+| ----------------| -----------------------             |
+| namespace       | `self.__namespace__ > 0`            |
+| x-prop          | `self.x__dash__prop > 0`            |
+| redact__d       | `self.redact__underscores__d > 0`   |
+| string          | `self.startsWith('kube')`           |
+
+
+<!--
+Equality on arrays with `x-kubernetes-list-type` of `set` or `map` ignores element order, i.e. [1, 2] == [2, 1].
+Concatenation on arrays with x-kubernetes-list-type use the semantics of the list type:
+ - `set`: `X + Y` performs a union where the array positions of all elements in `X` are preserved and
+      non-intersecting elements in `Y` are appended, retaining their partial order.
+ - `map`: `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values
+   are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with
+   non-intersecting keys are appended, retaining their partial order.
+-->
+`set` 或 `map` 的 `x-Kubernetes-list-type` 的数组的等值比较会忽略元素顺序，即[1，2] == [2，1]。
+使用 `x-kubernetes-list-type` 对数组进行串联时，使用 List 类型的语义：
+- `set`：`X + Y` 执行一个并集操作，其中 `X` 中所有元素的数组位置被保留，
+  `Y` 中不相交的元素被追加，保留其部分顺序。
+- `map`：`X + Y`执行合并，其中 `X` 中所有键的数组位置被保留，
+  但当 `X` 和 `Y` 的键集相交时，其值被 `Y` 中的值覆盖。
+  `Y` 中键值不相交的元素被附加，保留其部分顺序。
+
+
+<!--
+Here is the declarations type mapping between OpenAPIv3 and CEL type:
+-->
+以下是 OpenAPIV3 和 CEL 类型之间的声明类型映射：
+
+<!--
+| OpenAPIv3 type                                     | CEL type                                                                                                                     |
+| -------------------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------- |
+| 'object' with Properties                           | object / "message type"                                                                                                      |
+| 'object' with AdditionalProperties                 | map                                                                                                                          |
+| 'object' with x-kubernetes-embedded-type           | object / "message type", 'apiVersion', 'kind', 'metadata.name' and 'metadata.generateName' are implicitly included in schema |
+| 'object' with x-kubernetes-preserve-unknown-fields | object / "message type", unknown fields are NOT accessible in CEL expression                                                 |
+| x-kubernetes-int-or-string                         | dynamic object that is either an int or a string, `type(value)` can be used to check the type                                |
+| 'array                                             | list                                                                                                                         |
+| 'array' with x-kubernetes-list-type=map            | list with map based Equality & unique key guarantees                                                                         |
+| 'array' with x-kubernetes-list-type=set            | list with set based Equality & unique entry guarantees                                                                       |
+| 'boolean'                                          | boolean                                                                                                                      |
+| 'number' (all formats)                             | double                                                                                                                       |
+| 'integer' (all formats)                            | int (64)                                                                                                                     |
+| 'null'                                             | null_type                                                                                                                    |
+| 'string'                                           | string                                                                                                                       |
+| 'string' with format=byte (base64 encoded)         | bytes                                                                                                                        |
+| 'string' with format=date                          | timestamp (google.protobuf.Timestamp)                                                                                        |
+| 'string' with format=datetime                      | timestamp (google.protobuf.Timestamp)                                                                                        |
+| 'string' with format=duration                      | duration (google.protobuf.Duration)                                                                                          |
+-->
+| OpenAPIv3 类型                                     | CEL 类型                                                                                                                     |
+| -------------------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------- |
+| 带有 Properties 的对象                           | 对象 / "消息类型"                                                                                                      |
+| 带有 AdditionalProperties 的对象                 | map                                                                                                                          |
+| 带有 x-kubernetes-embedded-type 的对象           | 对象 / "消息类型"，'apiVersion'、'kind'、'metadata.name' 和 'metadata.generateName' 都隐式包含在模式中 |
+| 带有 x-kubernetes-preserve-unknown-fields 的对象 | 对象 / "消息类型"，未知字段无法从 CEL 表达式中访问                                                 |
+| x-kubernetes-int-or-string                         | 可能是整数或字符串的动态对象，可以用 `type(value)` 来检查类型                                |
+| 数组                                            | list                                                                                                                         |
+| 带有 x-kubernetes-list-type=map 的数组           | 列表，基于集合等值和唯一键名保证的 map 组成                                                                          |
+| 带有 x-kubernetes-list-type=set 的数组            | 列表，基于集合等值和唯一键名保证的 set 组成                                                                        |
+| 布尔值                                          | boolean                                                                                                                      |
+| 数字 (各种格式)                             | double                                                                                                                       |
+| 整数 (各种格式)                            | int (64)                                                                                                                     |
+| 'null'                                             | null_type                                                                                                                    |
+| 字符串                                           | string                                                                                                                       |
+| 带有 format=byte （base64 编码）字符串         | bytes                                                                                                                        |
+| 带有 format=date 字符串                          | timestamp (google.protobuf.Timestamp)                                                                                        |
+| 带有 format=datetime 字符串                      | timestamp (google.protobuf.Timestamp)                                                                                        |
+| 带有 format=duration 字符串                      | duration (google.protobuf.Duration)                                                                                          |
+
+<!--
+xref: [CEL types](https://github.com/google/cel-spec/blob/v0.6.0/doc/langdef.md#values),
+[OpenAPI types](https://swagger.io/specification/#data-types),
+[Kubernetes Structural Schemas](/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#specifying-a-structural-schema).
+-->
+参考：[CEL 类型](https://github.com/google/cel-spec/blob/v0.6.0/doc/langdef.md#values)，
+[OpenAPI 类型](https://swagger.io/specification/#data-types)，
+[Kubernetes 结构化模式](/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#specifying-a-structural-schema)。
+
+<!--
+#### Validation functions {#available-validation-functions}
+-->
+#### 验证函数   {#available-validation-functions}
+
+<!--
+Functions available include:
+- CEL standard functions, defined in the [list of standard definitions](https://github.com/google/cel-spec/blob/v0.7.0/doc/langdef.md#list-of-standard-definitions)
+- CEL standard [macros](https://github.com/google/cel-spec/blob/v0.7.0/doc/langdef.md#macros)
+- CEL [extended string function library](https://pkg.go.dev/github.com/google/cel-go@v0.11.2/ext#Strings)
+- Kubernetes [CEL extension library](https://pkg.go.dev/k8s.io/apiextensions-apiserver@v0.24.0/pkg/apiserver/schema/cel/library#pkg-functions)
+-->
+可用的函数包括：
+  - CEL 标准函数，在[标准定义列表](https://github.com/google/cel-spec/blob/v0.7.0/doc/langdef.md#list-of-standard-definitions)中定义
+  - CEL 标准[宏](https://github.com/google/cel-spec/blob/v0.7.0/doc/langdef.md#macros)
+  - CEL [扩展字符串函数库](https://pkg.go.dev/github.com/google/cel-go@v0.11.2/ext#Strings)
+  - Kubernetes [CEL 扩展库](https://pkg.go.dev/k8s.io/apiextensions-apiserver@v0.24.0/pkg/apiserver/schema/cel/library#pkg-functions)
+
+<!--
+#### Transition rules
+-->
+#### 转换规则
+
+<!--
+A rule that contains an expression referencing the identifier `oldSelf` is implicitly considered a
+_transition rule_. Transition rules allow schema authors to prevent certain transitions between two
+otherwise valid states. For example:
+-->
+包含引用标识符 `oldSself` 的表达式的规则被隐式视为“转换规则（Transition Rule）”。
+转换规则允许模式作者阻止两个原本有效的状态之间的某些转换。例如：
+
+```yaml
+type: string
+enum: ["low", "medium", "high"]
+x-kubernetes-validations:
+- rule: "!(self == 'high' && oldSelf == 'low') && !(self == 'low' && oldSelf == 'high')"
+  message: cannot transition directly between 'low' and 'high'
+```
+
+<!--
+Unlike other rules, transition rules apply only to operations meeting the following criteria:
+-->
+与其他规则不同，转换规则仅适用于满足以下条件的操作：
+
+<!--
+- The operation updates an existing object. Transition rules never apply to create operations.
+-->
+- 更新现有对象的操作。转换规则从不适用于创建操作。
+
+<!--
+- Both an old and a new value exist. It remains possible to check if a value has been added or
+  removed by placing a transition rule on the parent node. Transition rules are never applied to
+  custom resource creation. When placed on an optional field, a transition rule will not apply to
+  update operations that set or unset the field.
+-->
+- 旧的值和新的值都存在。仍然可以通过在父节点上放置转换规则来检查值是否已被添加或移除。
+  转换规则从不应用于定制资源创建。当被放置在可选字段上时，转换规则将不适用于设置或取消设置该字段的更新操作。
+
+<!--
+- The path to the schema node being validated by a transition rule must resolve to a node that is
+  comparable between the old object and the new object. For example, list items and their
+  descendants (`spec.foo[10].bar`) can't necessarily be correlated between an existing object and a
+  later update to the same object.
+-->
+- 被转换规则验证的模式节点的路径必须解析到一个在旧对象和新对象之间具有可比性的节点。
+  例如，列表项和它们的后代（`spec.foo[10].bar`）不一定能在现有对象和后来对同一对象的更新之间产生关联。
+
+<!--
+Errors will be generated on CRD writes if a schema node contains a transition rule that can never be
+applied, e.g. "*path*: update rule *rule* cannot be set on schema because the schema or its parent
+schema is not mergeable".
+-->
+如果一个模式节点包含一个永远不能应用的转换规则，在 CRD 写入时将会产生错误，例如：
+"*path*: update rule *rule* cannot be set on schema because the schema or its parent
+schema is not mergeable"。
+
+<!--
+Transition rules are only allowed on _correlatable portions_ of a schema.
+A portion of the schema is correlatable if all `array` parent schemas are of type `x-kubernetes-list-type=map`;
+any `set`or `atomic`array parent schemas make it impossible to unambiguously correlate a `self` with `oldSelf`.
+-->
+转换规则只允许在模式的“可关联部分（Correlatable Portions）”中使用。
+如果所有 `array` 父模式都是 `x-kubernetes-list-type=map`类型的，那么该模式的一部分就是可关联的；
+任何 `set` 或者 `atomic` 数组父模式都不支持确定性地将 `self` 与 `oldSelf` 关联起来。
+
+<!--
+Here are some examples for transition rules:
+-->
+这是一些转换规则的例子：
+
+<!--
+{{< table caption="Transition rules examples" >}}
+| Use Case                                                          | Rule
+| --------                                                          | --------
+| Immutability                                                      | `self.foo == oldSelf.foo`
+| Prevent modification/removal once assigned                        | `oldSelf != 'bar' \|\| self == 'bar'` or `!has(oldSelf.field) \|\| has(self.field)`
+| Append-only set                                                   | `self.all(element, element in oldSelf)`
+| If previous value was X, new value can only be A or B, not Y or Z | `oldSelf != 'X' \|\| self in ['A', 'B']`
+| Monotonic (non-decreasing) counters                               | `self >= oldSelf`
+{{< /table >}}
+-->
+{{< table caption="转换规则样例" >}}
+| 用例                                                 | 规则
+| --------                                             | --------
+| 不可变                                               | `self.foo == oldSelf.foo`
+| 赋值后禁止修改/删除                                  | `oldSelf != 'bar' \|\| self == 'bar'` or `!has(oldSelf.field) \|\| has(self.field)`
+| 仅附加的 set                                         | `self.all(element, element in oldSelf)`
+| 如果之前的值为 X，则新值只能为 A 或 B，不能为 Y 或 Z | `oldSelf != 'X' \|\| self in ['A', 'B']`
+| 单调（非递减）计数器                                   | `self >= oldSelf`
+{{< /table >}}
+
+<!--
+#### Resource use by validation functions
+-->
+#### 验证函数的资源使用
+
+<!--
+When you create or update a CustomResourceDefinition that uses validation rules,
+the API server checks the likely impact of running those validation rules. If a rule is
+estimated to be prohibitively expensive to execute, the API server rejects the create
+or update operation, and returns an error message.
+-->
+当你创建或更新一个使用验证规则的 CustomResourceDefinition 时，
+API 服务器会检查运行这些验证规则可能产生的影响。
+如果一个规则的执行成本过高，API 服务器会拒绝创建或更新操作，并返回一个错误信息。
+<!--
+A similar system is used at runtime that observes the actions the interpreter takes. If the interpreter executes
+too many instructions, execution of the rule will be halted, and an error will result.
+-->
+运行时也使用类似的系统来观察解释器的行动。如果解释器执行了太多的指令，规则的执行将被停止，并且会产生一个错误。
+<!--
+Each CustomResourceDefinition is also allowed a certain amount of resources to finish executing all of
+its validation rules. If the sum total of its rules are estimated at creation time to go over that limit,
+then a validation error will also occur.
+-->
+每个 CustomResourceDefinition 也被允许有一定数量的资源来完成其所有验证规则的执行。
+如果在创建时估计其规则的总和超过了这个限制，那么也会发生验证错误。
+
+<!--
+You are unlikely to encounter issues with the resource budget for validation if you only
+specify rules that always take the same amount of time regardless of how large their input is.
+-->
+如果你只指定那些无论输入量有多大都要花费相同时间的规则，你不太可能遇到验证的资源预算问题。
+<!--
+For example, a rule that asserts that `self.foo == 1` does not by itself have any
+risk of rejection on validation resource budget groups.
+-->
+例如，一个断言 `self.foo == 1` 的规则本身不存在因为资源预算组验证而导致被拒绝的风险。
+<!--
+But if `foo` is a string and you define a validation rule `self.foo.contains("someString")`, that rule takes
+longer to execute depending on how long `foo` is.
+-->
+但是，如果 `foo` 是一个字符串，而你定义了一个验证规则 `self.foo.contains("someString")`，
+这个规则需要更长的时间来执行，取决于 `foo` 有多长。
+<!--
+Another example would be if `foo` were an array, and you specified a validation rule `self.foo.all(x, x > 5)`.
+The cost system always assumes the worst-case scenario if a limit on the length of `foo` is not
+given, and this will happen for anything that can be iterated over (lists, maps, etc.).
+-->
+另一个例子是如果 `foo` 是一个数组，而你指定了验证规则 `self.foo.all(x, x > 5)`。
+如果没有给出 `foo` 的长度限制，成本系统总是假设最坏的情况，这将发生在任何可以被迭代的事物上（list、map 等）。
+
+<!--
+Because of this, it is considered best practice to put a limit via `maxItems`, `maxProperties`, and
+`maxLength` for anything that will be processed in a validation rule in order to prevent validation
+errors during cost estimation. For example, given this schema with one rule:
+-->
+因此，通过 `maxItems`，`maxProperties` 和 `maxLength` 进行限制被认为是最佳实践，
+以在验证规则中处理任何内容，以防止在成本估算期间验证错误。例如，给定具有一个规则的模式：
+
+```yaml
+openAPIV3Schema:
+  type: object
+  properties:
+    foo:
+      type: array
+      items:
+        type: string
+      x-kubernetes-validations:
+        - rule: "self.all(x, x.contains('a string'))"
+```
+
+<!--
+then the API server rejects this rule on validation budget grounds with error:
+-->
+API 服务器以验证预算为由拒绝该规则，并显示错误：
+```
+spec.validation.openAPIV3Schema.properties[spec].properties[foo].x-kubernetes-validations[0].rule: Forbidden: 
+CEL rule exceeded budget by more than 100x (try simplifying the rule, or adding maxItems, maxProperties, and 
+maxLength where arrays, maps, and strings are used)
+```
+
+<!--
+The rejection happens because `self.all` implies calling `contains()` on every string in `foo`,
+which in turn will check the given string to see if it contains `'a string'`. Without limits, this is a very
+expensive rule.
+-->
+这个拒绝会发生是因为 `self.all` 意味着对 `foo` 中的每一个字符串调用 `contains()`，
+而这又会检查给定的字符串是否包含 `'a string'`。如果没有限制，这是一个非常昂贵的规则。
+
+<!--
+If you do not specify any validation limit, the estimated cost of this rule will exceed the per-rule cost limit. But if you
+add limits in the appropriate places, the rule will be allowed:
+-->
+如果你不指定任何验证限制，这个规则的估计成本将超过每条规则的成本限制。
+但如果你在适当的地方添加限制，该规则将被允许：
+
+```yaml
+openAPIV3Schema:
+  type: object
+  properties:
+    foo:
+      type: array
+      maxItems: 25
+      items:
+        type: string
+        maxLength: 10
+      x-kubernetes-validations:
+        - rule: "self.all(x, x.contains('a string'))"
+```
+
+<!--
+The cost estimation system takes into account how many times the rule will be executed in addition to the
+estimated cost of the rule itself. For instance, the following rule will have the same estimated cost as the
+previous example (despite the rule now being defined on the individual array items):
+-->
+成本评估系统除了考虑规则本身的估计成本外，还考虑到规则将被执行的次数。
+例如，下面这个规则的估计成本与前面的例子相同（尽管该规则现在被定义在单个数组项上）：
+
+```yaml
+openAPIV3Schema:
+  type: object
+  properties:
+    foo:
+      type: array
+      maxItems: 25
+      items:
+        type: string
+        x-kubernetes-validations:
+          - rule: "self.contains('a string'))"
+        maxLength: 10
+```
+
+<!--
+If a list inside of a list has a validation rule that uses `self.all`, that is significantly more expensive
+than a non-nested list with the same rule. A rule that would have been allowed on a non-nested list might need
+lower limits set on both nested lists in order to be allowed. For example, even without having limits set,
+the following rule is allowed:
+-->
+如果在一个列表内部的一个列表有一个使用 `self.all` 的验证规则，那就会比具有相同规则的非嵌套列表的成本高得多。
+一个在非嵌套列表中被允许的规则可能需要在两个嵌套列表中设置较低的限制才能被允许。
+例如，即使没有设置限制，下面的规则也是允许的：
+
+```yaml
+openAPIV3Schema:
+  type: object
+  properties:
+    foo:
+      type: array
+      items:
+        type: integer
+    x-kubernetes-validations:
+      - rule: "self.all(x, x == 5)"
+```
+
+<!--
+But the same rule on the following schema (with a nested array added) produces a validation error:
+-->
+但是同样的规则在下面的模式中（添加了一个嵌套数组）产生了一个验证错误：
+
+```yaml
+openAPIV3Schema:
+  type: object
+  properties:
+    foo:
+      type: array
+      items:
+        type: array
+        items:
+          type: integer
+        x-kubernetes-validations:
+          - rule: "self.all(x, x == 5)"
+```
+
+<!--
+This is because each item of `foo` is itself an array, and each subarray in turn calls `self.all`. Avoid nested
+lists and maps if possible where validation rules are used.
+-->
+这是因为 `foo` 的每一项本身就是一个数组，而每一个子数组依次调用 `self.all`。
+在使用验证规则的地方，尽可能避免嵌套的列表和字典。
 
 <!--
 ### Defaulting
@@ -1206,7 +2004,8 @@ Defaulting happens on the object
 * when reading from etcd using the storage version defaults,
 * after mutating admission plugins with non-empty patches using the admission webhook object version defaults.
 
-Defaults applied when reading data from etcd are not automatically written back to etcd. An update request via the API is required to persist those defaults back into etcd.
+Defaults applied when reading data from etcd are not automatically written back to etcd.
+An update request via the API is required to persist those defaults back into etcd.
 -->
 默认值设定的行为发生在定制对象上：
 
@@ -1221,7 +2020,9 @@ Defaults applied when reading data from etcd are not automatically written back
 <!--
 Default values must be pruned (with the exception of defaults for `metadata` fields) and must validate against a provided schema.
 
-Default values for `metadata` fields of `x-kubernetes-embedded-resources: true` nodes (or parts of a default value covering `metadata`) are not pruned during CustomResourceDefinition creation, but through the pruning step during handling of requests.
+Default values for `metadata` fields of `x-kubernetes-embedded-resources: true` nodes (or parts of
+a default value covering `metadata`) are not pruned during CustomResourceDefinition creation, but
+through the pruning step during handling of requests.
 -->
 默认值一定会被剪裁（除了 `metadata` 字段的默认值设置），且必须通过所提供
 的模式定义的检查。
@@ -1233,7 +2034,9 @@ Default values for `metadata` fields of `x-kubernetes-embedded-resources: true`
 <!--
 #### Defaulting and Nullable
 
-**New in 1.20:** null values for fields that either don't specify the nullable flag, or give it a `false` value, will be pruned before defaulting happens. If a default is present, it will be applied. When nullable is `true`, null values will be conserved and won't be defaulted.
+**New in 1.20:** null values for fields that either don't specify the nullable flag, or give it a
+`false` value, will be pruned before defaulting happens. If a default is present, it will be
+applied. When nullable is `true`, null values will be conserved and won't be defaulted.
 
 For example, given the OpenAPI schema below:
 -->
@@ -1287,7 +2090,9 @@ spec:
 ```
 
 <!--
-with `foo` pruned and defaulted because the field is non-nullable, `bar` maintaining the null value due to `nullable: true`, and `baz` pruned because the field is non-nullable and has no default.
+with `foo` pruned and defaulted because the field is non-nullable, `bar` maintaining the null
+value due to `nullable: true`, and `baz` pruned because the field is non-nullable and has no
+default.
 -->
 其中的 `foo` 字段被剪裁掉并重新设置默认值，因为该字段是不可为空的。
 `bar` 字段的 `nullable: true` 使得其能够保有其空值。
@@ -1296,21 +2101,24 @@ with `foo` pruned and defaulted because the field is non-nullable, `bar` maintai
 <!--
 ### Publish Validation Schema in OpenAPI v2
 
-CustomResourceDefinition [OpenAPI v3 validation schemas](#validation) which are [structural](#specifying-a-structural-schema) and [enable pruning](#field-pruning) are published as part of the [OpenAPI v2 spec](/docs/concepts/overview/kubernetes-api/#openapi-and-swagger-definitions) from Kubernetes API server.
+CustomResourceDefinition [OpenAPI v3 validation schemas](#validation) which are
+[structural](#specifying-a-structural-schema) and [enable pruning](#field-pruning) are published
+as part of the [OpenAPI v2 spec](/docs/concepts/overview/kubernetes-api/#openapi-and-swagger-definitions)
+from Kubernetes API server.
 
-The [kubectl](/docs/reference/kubectl/overview) command-line tool consumes the published schema to perform client-side validation (`kubectl create` and `kubectl apply`), schema explanation (`kubectl explain`) on custom resources. The published schema can be consumed for other purposes as well, like client generation or documentation.
+The [kubectl](/docs/reference/kubectl/) command-line tool consumes the published schema to perform
+client-side validation (`kubectl create` and `kubectl apply`), schema explanation (`kubectl explain`)
+on custom resources. The published schema can be consumed for other purposes as well, like client generation or documentation.
 -->
 ### 以 OpenAPI v2 形式发布合法性检查模式      {#publish-validation-schema-in-openapi-v2}
 
 CustomResourceDefinition 的[结构化的](#specifying-a-structural-schema)、
 [启用了剪裁的](#preserving-unknown-fields) [OpenAPI v3 合法性检查模式](#validation)
 会在 Kubernetes API 服务器上作为
-[OpenAPI v2 规约](/zh/docs/concepts/overview/kubernetes-api/#openapi-and-swagger-definitions)
+[OpenAPI v2 规约](/zh-cn/docs/concepts/overview/kubernetes-api/#openapi-and-swagger-definitions)
 的一部分发布出来。
 
-[kubectl](/zh/docs/reference/kubectl/overview) 命令行工具会基于所发布的模式定义来执行
-客户端的合法性检查（`kubectl create` 和 `kubectl apply`），为定制资源的模式定义
-提供解释（`kubectl explain`）。
+[kubectl](/zh-cn/docs/reference/kubectl/) 命令行工具会基于所发布的模式定义来执行客户端的合法性检查（`kubectl create` 和 `kubectl apply`），为定制资源的模式定义提供解释（`kubectl explain`）。
 所发布的模式还可被用于其他目的，例如生成客户端或者生成文档。
 
 <!--
@@ -1323,7 +2131,7 @@ valid OpenAPI schemas that it doesn't understand. The conversion won't modify th
 and therefore won't affect [validation](#validation) in the API server.
 -->
 OpenAPI v3 合法性检查模式定义会被转换为 OpenAPI v2 模式定义，并出现在
-[OpenAPI v2 规范](/zh/docs/concepts/overview/kubernetes-api/#openapi-and-swagger-definitions)
+[OpenAPI v2 规范](/zh-cn/docs/concepts/overview/kubernetes-api/#openapi-and-swagger-definitions)
 的 `definitions` 和 `paths` 字段中。
 
 在转换过程中会发生以下修改，目的是保持与 1.13 版本以前的 kubectl 工具兼容。
@@ -1332,9 +2140,13 @@ OpenAPI v3 合法性检查模式定义会被转换为 OpenAPI v2 模式定义，
 的[合法性检查](#validation)。
 
 <!--
-1. The following fields are removed as they aren't supported by OpenAPI v2 (in future versions OpenAPI v3 will be used without these restrictions)
+1. The following fields are removed as they aren't supported by OpenAPI v2
+   (in future versions OpenAPI v3 will be used without these restrictions)
+
    - The fields `allOf`, `anyOf`, `oneOf` and `not` are removed
-2. If `nullable: true` is set, we drop `type`, `nullable`, `items` and `properties` because OpenAPI v2 is not able to express nullable. To avoid kubectl to reject good objects, this is necessary.
+
+2. If `nullable: true` is set, we drop `type`, `nullable`, `items` and `properties` because OpenAPI v2 is
+   not able to express nullable. To avoid kubectl to reject good objects, this is necessary.
 -->
 1. 以下字段会被移除，因为它们在 OpenAPI v2 中不支持（在将来版本中将使用 OpenAPI v3，
    因而不会有这些限制）
@@ -1466,7 +2278,8 @@ View）和宽视图（Wide View）（使用 `-o wide` 标志）中显示的列
 <!--
 #### Type
 
-A column's `type` field can be any of the following (compare [OpenAPI v3 data types](https://github.com/OAI/OpenAPI-Specification/blob/master/versions/3.0.0.md#dataTypes)):
+A column's `type` field can be any of the following (compare
+[OpenAPI v3 data types](https://github.com/OAI/OpenAPI-Specification/blob/master/versions/3.0.0.md#dataTypes)):
 
 - `integer` – non-floating-point numbers
 - `number` – floating point numbers
@@ -1631,8 +2444,9 @@ the status replica value in the `/scale` subresource will default to 0.
   - It must be set to work with HPA.
   - Only JSONPaths under `.status` or `.spec` and with the dot notation are allowed.
   - If there is no value under the `labelSelectorPath` in the custom resource,
-the status selector value in the `/scale` subresource will default to the empty string.
-  - The field pointed by this JSON path must be a string field (not a complex selector struct) which contains a serialized label selector in string form.
+    the status selector value in the `/scale` subresource will default to the empty string.
+  - The field pointed by this JSON path must be a string field (not a complex selector struct)
+    which contains a serialized label selector in string form.
 -->
 - `labelSelectorPath` 指定定制资源内与 `scale.status.selector` 对应的 JSON 路径。
 
@@ -1784,7 +2598,7 @@ kubectl get crontabs my-new-cron-object -o jsonpath='{.spec.replicas}'
 You can use a [PodDisruptionBudget](/docs/tasks/run-application/configure-pdb/) to protect custom
 resources that have the scale subresource enabled.
 -->
-你可以使用 [PodDisruptionBudget](/zh/docs/tasks/run-application/configure-pdb/)
+你可以使用 [PodDisruptionBudget](/zh-cn/docs/tasks/run-application/configure-pdb/)
 来保护启用了 scale 子资源的定制资源。
 
 <!--
@@ -1910,8 +2724,9 @@ crontabs/my-new-cron-object   3s
 
 * Serve [multiple versions](/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definition-versioning/) of a
   CustomResourceDefinition.
--->
-* 阅读了解[定制资源](/zh/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
-* 参阅 [CustomResourceDefinition](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#customresourcedefinition-v1-apiextensions-k8s-io)
-* 参阅支持 CustomResourceDefinition 的[多个版本](/zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definition-versioning/)
+
+-->
+* 阅读了解[定制资源](/zh-cn/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
+* 参阅 [CustomResourceDefinition](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#customresourcedefinition-v1-apiextensions-k8s-io)
+* 参阅支持 CustomResourceDefinition 的[多个版本](/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definition-versioning/)
 
diff --git a/content/zh/docs/tasks/extend-kubernetes/http-proxy-access-api.md b/content/zh-cn/docs/tasks/extend-kubernetes/http-proxy-access-api.md
similarity index 97%
rename from content/zh/docs/tasks/extend-kubernetes/http-proxy-access-api.md
rename to content/zh-cn/docs/tasks/extend-kubernetes/http-proxy-access-api.md
index 2e4e8bdfd1..8d9a83f14e 100644
--- a/content/zh/docs/tasks/extend-kubernetes/http-proxy-access-api.md
+++ b/content/zh-cn/docs/tasks/extend-kubernetes/http-proxy-access-api.md
@@ -27,7 +27,7 @@ This page shows how to use an HTTP proxy to access the Kubernetes API.
 * If you do not already have an application running in your cluster, start
   a Hello world application by entering this command:
 -->
-* 如果您的集群中还没有任何应用，使用如下命令启动一个 Hello World 应用：
+* 如果你的集群中还没有任何应用，使用如下命令启动一个 Hello World 应用：
 
 ```shell
 kubectl create deployment node-hello --image=gcr.io/google-samples/node-hello:1.0 --port=8080
diff --git a/content/zh/docs/tasks/extend-kubernetes/setup-extension-api-server.md b/content/zh-cn/docs/tasks/extend-kubernetes/setup-extension-api-server.md
similarity index 95%
rename from content/zh/docs/tasks/extend-kubernetes/setup-extension-api-server.md
rename to content/zh-cn/docs/tasks/extend-kubernetes/setup-extension-api-server.md
index d66a853525..b234c55855 100644
--- a/content/zh/docs/tasks/extend-kubernetes/setup-extension-api-server.md
+++ b/content/zh-cn/docs/tasks/extend-kubernetes/setup-extension-api-server.md
@@ -30,7 +30,7 @@ Setting up an extension API server to work the aggregation layer allows the Kube
 <!--
 * You must [configure the aggregation layer](/docs/tasks/access-kubernetes-api/configure-aggregation-layer/) and enable the apiserver flags.
 -->
-* 你必须[配置聚合层](/zh/docs/tasks/extend-kubernetes/configure-aggregation-layer/)
+* 你必须[配置聚合层](/zh-cn/docs/tasks/extend-kubernetes/configure-aggregation-layer/)
   并且启用 API 服务器的相关参数。
 
 <!-- steps -->
@@ -110,7 +110,7 @@ Alternatively, you can use an existing 3rd party solution, such as [apiserver-bu
 * For a high level overview, see [Extending the Kubernetes API with the aggregation layer](/docs/concepts/api-extension/apiserver-aggregation).
 * Learn how to [Extend the Kubernetes API Using Custom Resource Definitions](/docs/tasks/access-kubernetes-api/extend-api-custom-resource-definitions/).
 -->
-* 如果你还未配置，请[配置聚合层](/zh/docs/tasks/extend-kubernetes/configure-aggregation-layer/)
+* 如果你还未配置，请[配置聚合层](/zh-cn/docs/tasks/extend-kubernetes/configure-aggregation-layer/)
   并启用 apiserver 的相关参数。
-* 高级概述，请参阅[使用聚合层扩展 Kubernetes API](/zh/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation)。
-* 了解如何[使用 Custom Resource Definition 扩展 Kubernetes API](/zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/)。
+* 高级概述，请参阅[使用聚合层扩展 Kubernetes API](/zh-cn/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation)。
+* 了解如何[使用 Custom Resource Definition 扩展 Kubernetes API](/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/)。
diff --git a/content/zh/docs/tasks/extend-kubernetes/setup-konnectivity.md b/content/zh-cn/docs/tasks/extend-kubernetes/setup-konnectivity.md
similarity index 83%
rename from content/zh/docs/tasks/extend-kubernetes/setup-konnectivity.md
rename to content/zh-cn/docs/tasks/extend-kubernetes/setup-konnectivity.md
index 0359639517..cc84dd812b 100644
--- a/content/zh/docs/tasks/extend-kubernetes/setup-konnectivity.md
+++ b/content/zh-cn/docs/tasks/extend-kubernetes/setup-konnectivity.md
@@ -13,7 +13,17 @@ Konnectivity 服务为控制平面提供集群通信的 TCP 级别代理。
 
 ## {{% heading "prerequisites" %}}
 
-{{< include "task-tutorial-prereqs.md" >}}
+<!--
+You need to have a Kubernetes cluster, and the kubectl command-line tool must
+be configured to communicate with your cluster. It is recommended to run this
+tutorial on a cluster with at least two nodes that are not acting as control
+plane hosts. If you do not already have a cluster, you can create one by using
+[minikube](https://minikube.sigs.k8s.io/docs/tutorials/multi_node/).
+-->
+你需要有一个 Kubernetes 集群，并且 kubectl 命令可以与集群通信。
+建议在至少有两个不充当控制平面主机的节点的集群上运行本教程。
+如果你还没有集群，可以使用
+[minikube](https://minikube.sigs.k8s.io/docs/tutorials/multi_node/) 创建一个集群。
 
 <!-- steps -->
 <!--
@@ -32,15 +42,8 @@ You need to configure the API Server to use the Konnectivity service
 and direct the network traffic to the cluster nodes:
 
 1. Make sure that
-the `ServiceAccountTokenVolumeProjection` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
-is enabled. You can enable
-[service account token volume protection](/docs/tasks/configure-pod-container/configure-service-account/#service-account-token-volume-projection)
-by providing the following flags to the kube-apiserver:
-   ```
-   --service-account-issuer=api
-   --service-account-signing-key-file=/etc/kubernetes/pki/sa.key
-   --api-audiences=system:konnectivity-server
-   ```
+[Service Account Token Volume Projection](/docs/tasks/configure-pod-container/configure-service-account/#service-account-token-volume-projection)
+feature enabled in your cluster. It is enabled by default since Kubernetes v1.20.
 1. Create an egress configuration file such as `admin/konnectivity/egress-selector-configuration.yaml`.
 1. Set the `--egress-selector-config-file` flag of the API Server to the path of
 your API Server egress configuration file.
@@ -61,16 +64,8 @@ your API Server egress configuration file.
 -->
 你需要配置 API 服务器来使用 Konnectivity 服务，并将网络流量定向到集群节点：
 
-1. 确保 `ServiceAccountTokenVolumeProjection`
-   [特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
-   被启用。你可以通过为 kube-apiserver 提供以下标志启用
-   [服务账号令牌卷保护](/zh/docs/tasks/configure-pod-container/configure-service-account/#service-account-token-volume-projection)：
-
-   ```
-   --service-account-issuer=api
-   --service-account-signing-key-file=/etc/kubernetes/pki/sa.key
-   --api-audiences=system:konnectivity-server
-   ```
+确保[服务账号令牌卷投射](/zh-cn/docs/tasks/configure-pod-container/configure-service-account/#service-account-token-volume-projection)
+特性被启用。该特性自 Kubernetes v1.20 起默认已被启用。
 
 1. 创建一个出站流量配置文件，比如 `admin/konnectivity/egress-selector-configuration.yaml`。
 1. 将 API 服务器的 `--egress-selector-config-file` 参数设置为你的 API 服务器的
diff --git a/content/zh-cn/docs/tasks/extend-kubernetes/socks5-proxy-access-api.md b/content/zh-cn/docs/tasks/extend-kubernetes/socks5-proxy-access-api.md
new file mode 100644
index 0000000000..31bf96d6d2
--- /dev/null
+++ b/content/zh-cn/docs/tasks/extend-kubernetes/socks5-proxy-access-api.md
@@ -0,0 +1,246 @@
+---
+title: 使用 SOCKS5 代理访问 Kubernetes API
+content_type: task
+weight: 42
+min-kubernetes-server-version: v1.24
+---
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
+
+<!--
+This page shows how to use a SOCKS5 proxy to access the API of a remote Kubernetes cluster.
+This is useful when the cluster you want to access does not expose its API directly on the public internet.
+-->
+本文展示了如何使用 SOCKS5 代理访问远程 Kubernetes 集群的 API。
+当你要访问的集群不直接在公共 Internet 上公开其 API 时，这很有用。
+
+## {{% heading "prerequisites" %}}
+
+{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+
+<!--
+You need SSH client software (the `ssh` tool), and an SSH service running on the remote server.
+You must be able to log in to the SSH service on the remote server.
+-->
+你需要 SSH 客户端软件（`ssh` 工具），并在远程服务器上运行 SSH 服务。
+你必须能够登录到远程服务器上的 SSH 服务。
+
+<!-- steps -->
+
+<!--
+## Task context
+-->
+## 任务上下文  {#task-context}
+
+{{< note >}}
+<!--
+This example tunnels traffic using SSH, with the SSH client and server acting as a SOCKS proxy.
+You can instead use any other kind of [SOCKS5](https://en.wikipedia.org/wiki/SOCKS#SOCKS5) proxies.
+-->
+此示例使用 SSH 隧道传输流量，SSH 客户端和服务器充当 SOCKS 代理。
+你可以使用其他任意类型的 [SOCKS5](https://zh.wikipedia.org/wiki/SOCKS#SOCKS5) 代理代替。
+{{</ note >}}
+
+<!--
+Figure 1 represents what you're going to achieve in this task.
+
+* You have a client computer, referred to as local in the steps ahead, from where you're going to create requests to talk to the Kubernetes API.
+* The Kubernetes server/API is hosted on a remote server.
+* You will use SSH client and server software to create a secure SOCKS5 tunnel between the local and
+  the remote server. The HTTPS traffic between the client and the Kubernetes API will flow over the SOCKS5
+  tunnel, which is itself tunnelled over SSH.
+-->
+图 1 表示你将在此任务中实现的目标。
+
+* 你有一台在后面的步骤中被称为本地计算机的客户端计算机，你将在这台计算机上创建与
+  Kubernetes API 对话的请求。
+* Kubernetes 服务器/API 托管在远程服务器上。
+* 你将使用 SSH 客户端和服务器软件在本地和远程服务器之间创建安全的 SOCKS5 隧道。
+  客户端和 Kubernetes API 之间的 HTTPS 流量将流经 SOCKS5 隧道，该隧道本身通过
+  SSH 进行隧道传输。
+
+<!--
+graph LR;
+
+  subgraph local[Local client machine]
+  client([client])-- local <br> traffic .->  local_ssh[Local SSH <br> SOCKS5 proxy];
+  end
+  local_ssh[SSH <br>SOCKS5 <br> proxy]-- SSH Tunnel --\>sshd
+  
+  subgraph remote[Remote server]
+  sshd[SSH <br> server]-- local traffic --\>service1;
+  end
+  client([client])-. proxied HTTPs traffic <br> going through the proxy .->service1[Kubernetes API];
+
+  classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+  classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+  classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+  class ingress,service1,service2,pod1,pod2,pod3,pod4 k8s;
+  class client plain;
+  class cluster cluster;
+
+-->
+
+{{< mermaid >}}
+graph LR;
+
+  subgraph local[本地客户端机器]
+  client([客户端])-- 本地 <br> 流量.->  local_ssh[本地 SSH <br> SOCKS5 代理];
+  end
+  ocal_ssh[SSH <br>SOCKS5 <br> 代理]-- SSH 隧道 -->sshd
+  
+  subgraph remote[远程服务器]
+  sshd[SSH <br> 服务器]-- 本地流量 -->service1;
+  end
+  client([客户端])-. 通过代理传递的 <br> HTTPS 流量 .->service1[Kubernetes API];
+
+  classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
+  classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
+  classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
+  class ingress,service1,service2,pod1,pod2,pod3,pod4 k8s;
+  class client plain;
+  class cluster cluster;
+{{</ mermaid >}}
+<!--
+Figure 1. SOCKS5 tutorial components
+-->
+图 1. SOCKS5 教程组件
+
+<!--
+## Using ssh to create a SOCKS5 proxy
+
+This command starts a SOCKS5 proxy between your client machine and the remote server.
+The SOCKS5 proxy lets you connect to your cluster's API server.
+-->
+## 使用 SSH 创建 SOCKS5 代理
+
+此命令在你的客户端计算机和远程服务器之间启动一个 SOCKS5 代理。
+SOCKS5 代理允许你连接到集群的 API 服务器。
+
+```shell
+# 运行此命令后，SSH 隧道继续在前台运行
+ssh -D 1080 -q -N username@kubernetes-remote-server.example
+```
+
+<!--
+* `-D 1080`: opens a SOCKS proxy on local port :1080.
+* `-q`: quiet mode. Causes most warning and diagnostic messages to be suppressed.
+* `-N`: Do not execute a remote command. Useful for just forwarding ports.
+* `username@kubernetes-remote-server.example`: the remote SSH server where the Kubernetes cluster is running.
+-->
+* `-D 1080`: 在本地端口 1080 上打开一个 SOCKS 代理。
+* `-q`: 静音模式。导致大多数警告和诊断消息被抑制。
+* `-N`: 不执行远程命令。仅用于转发端口。
+* `username@kubernetes-remote-server.example`: 运行 Kubernetes 集群的远程 SSH 服务器。
+
+<!--
+## Client configuration
+
+To explore the Kubernetes API you'll first need to instruct your clients to send their queries through
+the SOCKS5 proxy we created earlier.
+
+For command-line tools, set the `https_proxy` environment variable and pass it to commands that you run.
+-->
+## 客户端配置
+
+要探索 Kubernetes API，你首先需要指示你的客户端通过我们之前创建的 SOCKS5
+代理发送他们的查询。
+对于命令行工具，设置 `https_proxy` 环境变量并将其传递给你运行的命令。
+
+```shell
+export https_proxy=socks5h://localhost:1080
+```
+
+<!--
+When you set the `https_proxy` variable, tools such as `curl` route HTTPS traffic through the proxy
+you configured. For this to work, the tool must support SOCKS5 proxying.
+-->
+当你设置 `https_proxy` 变量时，`curl` 等工具会通过你配置的代理路由 HTTPS 流量。
+为此，该工具必须支持 SOCKS5 代理。
+
+{{< note >}}
+<!--
+In the URL https://localhost/api, `localhost` does not refer to your local client computer.
+Instead, it refers to the endpoint on the remote server known as `localhost`.
+The `curl` tool sends the hostname from the HTTPS URL over SOCKS, and the remote server
+resolves that locally (to an address that belongs to its loopback interface).
+-->
+在 URL https://localhost/api 中，`localhost` 不是指你的本地客户端计算机。
+它指的是远程服务器上称为 “localhost” 的端点。
+`curl` 工具通过 SOCKS 从 HTTPS URL 发送主机名，远程服务器在本地解析（到属于其环回接口的地址）。
+{{< /note >}}
+
+```shell
+curl -k -v https://localhost/api
+```
+
+<!--
+To use the official Kubernetes client `kubectl` with a proxy, set the `proxy-url` element
+for the relevant `cluster` entry within  your `~/.kube/config` file. For example:
+-->
+要将官方 Kubernetes 客户端 `kubectl` 与代理一起使用，请在 `~/.kube/config` 文件中为相关的
+`cluster` 条目设置 `proxy-url` 元素。 例如：
+
+```yaml
+apiVersion: v1
+clusters:
+- cluster:
+    certificate-authority-data: LRMEMMW2 # 简化以便阅读
+    # “Kubernetes API”服务器，换言之，kubernetes-remote-server.example 的 IP 地址
+    server: https://<API_SERVER_IP_ADRESS>:6443  
+    # 上图中的“SSH SOCKS5代理”（内置 DNS 解析）
+    proxy-url: socks5://localhost:1080
+  name: default
+contexts:
+- context:
+    cluster: default
+    user: default
+  name: default
+current-context: default
+kind: Config
+preferences: {}
+users:
+- name: default
+  user:
+    client-certificate-data: LS0tLS1CR== # 节略，为了便于阅读
+    client-key-data: LS0tLS1CRUdJT=      # 节略，为了便于阅读
+```
+
+<!--
+If the tunnel is operating and you use `kubectl` with a context that uses this cluster, you can interact with your cluster through that proxy. For example:
+-->
+如果隧道能够正常工作，并且你调用 `kubectl` 时使用此集群的上下文，
+则可以通过该代理与你的集群交互。 例如：
+
+```shell
+kubectl get pods
+```
+
+```console
+NAMESPACE     NAME                                     READY   STATUS      RESTARTS   AGE
+kube-system   coredns-85cb69466-klwq8                  1/1     Running     0          5m46s
+```
+
+<!--
+## Clean up
+
+Stop the ssh port-forwarding process by pressing `CTRL+C` on the terminal where it is running.
+
+Type `unset https_proxy` in a terminal to stop forwarding http traffic through the proxy.
+-->
+## 清理
+
+通过在运行它的终端上按 “CTRL+C” 来停止 SSH 端口转发进程。
+
+在终端中键入 `unset https_proxy` 以停止通过代理转发 http 流量。
+
+<!--
+## Further reading
+
+* [OpenSSH remote login client](https://man.openbsd.org/ssh)
+-->
+## 进一步阅读
+
+* [OpenSSH远程登录客户端](https://man.openbsd.org/ssh)
+
diff --git a/content/zh/docs/tasks/inject-data-application/_index.md b/content/zh-cn/docs/tasks/inject-data-application/_index.md
similarity index 100%
rename from content/zh/docs/tasks/inject-data-application/_index.md
rename to content/zh-cn/docs/tasks/inject-data-application/_index.md
diff --git a/content/zh/docs/tasks/inject-data-application/define-command-argument-container.md b/content/zh-cn/docs/tasks/inject-data-application/define-command-argument-container.md
similarity index 58%
rename from content/zh/docs/tasks/inject-data-application/define-command-argument-container.md
rename to content/zh-cn/docs/tasks/inject-data-application/define-command-argument-container.md
index 6688e6fab1..90fdfd0286 100644
--- a/content/zh/docs/tasks/inject-data-application/define-command-argument-container.md
+++ b/content/zh-cn/docs/tasks/inject-data-application/define-command-argument-container.md
@@ -46,8 +46,7 @@ with your new arguments.
 如果在配置文件中设置了容器启动时要执行的命令及其参数，那么容器镜像中自带的命令与参数将会被覆盖而不再执行。如果配置文件中只是设置了参数，却没有设置其对应的命令，那么容器镜像中自带的命令会使用该新参数作为其执行时的参数。
 
 <!--
-The `command` field corresponds to `entrypoint` in some container
-runtimes. Refer to the [Notes](#notes) below.
+The `command` field corresponds to `entrypoint` in some container runtimes. 
 -->
 {{< note >}}
 在有些容器运行时中，`command` 字段对应 `entrypoint`，请参阅下面的
@@ -132,8 +131,8 @@ and
 [Secrets](/docs/concepts/configuration/secret/).
 -->
 这意味着你可以将那些用来设置环境变量的方法应用于设置命令的参数，其中包括了
-[ConfigMaps](/zh/docs/tasks/configure-pod-container/configure-pod-configmap/) 与
-[Secrets](/zh/docs/concepts/configuration/secret/)。
+[ConfigMaps](/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap/) 与
+[Secrets](/zh-cn/docs/concepts/configuration/secret/)。
 
 <!--
 The environment variable appears in parentheses, `"$(VAR)"`. This is
@@ -161,83 +160,15 @@ command: ["/bin/sh"]
 args: ["-c", "while true; do echo hello; sleep 10;done"]
 ```
 
-<!--
-## Notes
-
-This table summarizes the field names used by Docker and Kubernetes.
-
-|              Description               |    Docker field name   | Kubernetes field name |
-|----------------------------------------|------------------------|---------------------|
-|  The command run by the container      |   Entrypoint           |      command        |
-|  The arguments passed to the command   |   Cmd                  |      args           |
--->
-## 说明事项  {#notes}
-
-下表给出了 Docker 与 Kubernetes 中对应的字段名称。
-
-|       描述         |   Docker 字段名称  | Kubernetes 字段名称    |
-|--------------------|--------------------|-----------------------|
-| 容器执行的命令     |   Entrypoint       |      command          |
-| 传给命令的参数     |   Cmd              |      args             |
-
-<!--
-When you override the default Entrypoint and Cmd, these rules apply:
-
-* If you do not supply `command` or `args` for a Container, the defaults defined
-in the Docker image are used.
-
-* If you supply a `command` but no `args` for a Container, only the supplied
-`command` is used. The default EntryPoint and the default Cmd defined in the Docker
-image are ignored.
-
-* If you supply only `args` for a Container, the default Entrypoint defined in
-the Docker image is run with the `args` that you supplied.
-
-* If you supply a `command` and `args`, the default Entrypoint and the default
-Cmd defined in the Docker image are ignored. Your `command` is run with your
-`args`.
--->
-如果要覆盖默认的 Entrypoint 与 Cmd，需要遵循如下规则：
-
-* 如果在容器配置中没有设置 `command` 或者 `args`，那么将使用 Docker 镜像自带的命令及其参数。
-
-* 如果在容器配置中只设置了 `command` 但是没有设置 `args`，那么容器启动时只会执行该命令，
-  Docker 镜像中自带的命令及其参数会被忽略。
-
-* 如果在容器配置中只设置了 `args`，那么 Docker 镜像中自带的命令会使用该新参数作为其执行时的参数。
-
-* 如果在容器配置中同时设置了 `command` 与 `args`，那么 Docker 镜像中自带的命令及其参数会被忽略。
-  容器启动时只会执行配置中设置的命令，并使用配置中设置的参数作为命令的参数。
-
-<!--
-Here are some examples:
-
-| Image Entrypoint   |    Image Cmd     | Container command   |  Container args    |    Command run   |
-|--------------------|------------------|---------------------|--------------------|------------------|
-|     `[/ep-1]`      |   `[foo bar]`    |   &lt;not set&gt;   |   &lt;not set&gt;  | `[ep-1 foo bar]` |
-|     `[/ep-1]`      |   `[foo bar]`    |      `[/ep-2]`      |   &lt;not set&gt;  |     `[ep-2]`     |
-|     `[/ep-1]`      |   `[foo bar]`    |   &lt;not set&gt;   |     `[zoo boo]`    | `[ep-1 zoo boo]` |
-|     `[/ep-1]`      |   `[foo bar]`    |   `[/ep-2]`         |     `[zoo boo]`    | `[ep-2 zoo boo]` |
--->
-下面是一些例子：
-
-|   镜像 Entrypoint  |     镜像 Cmd     |     容器 command    |     容器 args      |     命令执行      |
-|--------------------|------------------|---------------------|--------------------|------------------|
-|     `[/ep-1]`      |   `[foo bar]`    |   &lt;not set&gt;   |   &lt;not set&gt;  | `[ep-1 foo bar]` |
-|     `[/ep-1]`      |   `[foo bar]`    |      `[/ep-2]`      |   &lt;not set&gt;  |     `[ep-2]`     |
-|     `[/ep-1]`      |   `[foo bar]`    |   &lt;not set&gt;   |     `[zoo boo]`    | `[ep-1 zoo boo]` |
-|     `[/ep-1]`      |   `[foo bar]`    |   `[/ep-2]`         |     `[zoo boo]`    | `[ep-2 zoo boo]` |
-
 
 ## {{% heading "whatsnext" %}}
 
 <!--
 * Learn more about [configuring pods and containers](/docs/tasks/).
-* Learn more about [running commands in a container](/docs/tasks/debug-application-cluster/get-shell-running-container/).
+* Learn more about [running commands in a container](/docs/tasks/debug/debug-application/get-shell-running-container/).
 * See [Container](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core).
 -->
-* 进一步了解[配置 Pod 和容器](/zh/docs/tasks/)
-* 进一步了解[在容器中运行命令](/zh/docs/tasks/debug-application-cluster/get-shell-running-container/)
+* 进一步了解[配置 Pod 和容器](/zh-cn/docs/tasks/)
+* 进一步了解[在容器中运行命令](/zh-cn/docs/tasks/debug/debug-application/get-shell-running-container/)
 * 参阅 [Container](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core)
   API 资源
-
diff --git a/content/zh/docs/tasks/inject-data-application/define-environment-variable-container.md b/content/zh-cn/docs/tasks/inject-data-application/define-environment-variable-container.md
similarity index 94%
rename from content/zh/docs/tasks/inject-data-application/define-environment-variable-container.md
rename to content/zh-cn/docs/tasks/inject-data-application/define-environment-variable-container.md
index 2103b34cf2..01019ff84c 100644
--- a/content/zh/docs/tasks/inject-data-application/define-environment-variable-container.md
+++ b/content/zh-cn/docs/tasks/inject-data-application/define-environment-variable-container.md
@@ -135,7 +135,7 @@ container.
 -->
 ## 在配置中使用环境变量
 
-您在 Pod 的配置中定义的环境变量可以在配置的其他地方使用，
+你在 Pod 的配置中定义的环境变量可以在配置的其他地方使用，
 例如可用在为 Pod 的容器设置的命令和参数中。
 在下面的示例配置中，环境变量 `GREETING` ，`HONORIFIC` 和 `NAME` 分别设置为 `Warm greetings to` ，
 `The Most Honorable` 和 `Kubernetes`。然后这些环境变量在传递给容器 `env-print-demo` 的 CLI 参数中使用。
@@ -173,7 +173,7 @@ Upon creation, the command `echo Warm greetings to The Most Honorable Kubernetes
 * See [EnvVarSource](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#envvarsource-v1-core).
 -->
 
-* 进一步了解[环境变量](/zh/docs/tasks/inject-data-application/environment-variable-expose-pod-information/)
-* 进一步了解[通过环境变量来使用 Secret](/zh/docs/concepts/configuration/secret/#using-secrets-as-environment-variables)
+* 进一步了解[环境变量](/zh-cn/docs/tasks/inject-data-application/environment-variable-expose-pod-information/)
+* 进一步了解[通过环境变量来使用 Secret](/zh-cn/docs/concepts/configuration/secret/#using-secrets-as-environment-variables)
 * 关于 [EnvVarSource](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#envvarsource-v1-core) 资源的信息。
 
diff --git a/content/zh/docs/tasks/inject-data-application/define-interdependent-environment-variables.md b/content/zh-cn/docs/tasks/inject-data-application/define-interdependent-environment-variables.md
similarity index 94%
rename from content/zh/docs/tasks/inject-data-application/define-interdependent-environment-variables.md
rename to content/zh-cn/docs/tasks/inject-data-application/define-interdependent-environment-variables.md
index 12c5032b49..9567fc2e4e 100644
--- a/content/zh/docs/tasks/inject-data-application/define-interdependent-environment-variables.md
+++ b/content/zh-cn/docs/tasks/inject-data-application/define-interdependent-environment-variables.md
@@ -29,7 +29,7 @@ in a Kubernetes Pod.
 When you create a Pod, you can set dependent environment variables for the containers that run in the Pod. To set dependent environment variables, you can use $(VAR_NAME) in the `value` of `env` in the configuration file.
 
 In this exercise, you create a Pod that runs one container. The configuration
-file for the Pod defines an dependent environment variable with common usage defined. Here is the configuration manifest for the
+file for the Pod defines a dependent environment variable with common usage defined. Here is the configuration manifest for the
 Pod:
 -->
 ## 为容器定义相互依赖的环境变量   {#define-an-environment-dependent-variable-for-a-container}
@@ -110,6 +110,6 @@ is defined or not. This can be seen from the `ESCAPED_REFERENCE` case above.
 * Learn more about [environment variables](/docs/tasks/inject-data-application/environment-variable-expose-pod-information/).
 * See [EnvVarSource](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#envvarsource-v1-core).
 -->
-* 进一步了解[环境变量](/zh/docs/tasks/inject-data-application/environment-variable-expose-pod-information/).
+* 进一步了解[环境变量](/zh-cn/docs/tasks/inject-data-application/environment-variable-expose-pod-information/).
 * 参阅 [EnvVarSource](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#envvarsource-v1-core).
 
diff --git a/content/zh/docs/tasks/inject-data-application/distribute-credentials-secure.md b/content/zh-cn/docs/tasks/inject-data-application/distribute-credentials-secure.md
similarity index 90%
rename from content/zh/docs/tasks/inject-data-application/distribute-credentials-secure.md
rename to content/zh-cn/docs/tasks/inject-data-application/distribute-credentials-secure.md
index 5d271d71dd..0a07cf1094 100644
--- a/content/zh/docs/tasks/inject-data-application/distribute-credentials-secure.md
+++ b/content/zh-cn/docs/tasks/inject-data-application/distribute-credentials-secure.md
@@ -12,8 +12,10 @@ encryption keys, into Pods.
 -->
 本文展示如何安全地将敏感数据（如密码和加密密钥）注入到 Pods 中。
 
+
 ## {{% heading "prerequisites" %}}
 
+
 {{< include "task-tutorial-prereqs.md" >}}
 
 
@@ -69,8 +71,10 @@ username and password:
    kubectl apply -f https://k8s.io/examples/pods/inject/secret.yaml
    ```
 
-1. <!-- View information about the Secret -->
-   查看 Secret 相关信息：
+<!--
+1. View information about the Secret:
+-->
+2. 查看 Secret 相关信息：
 
    ```shell
    kubectl get secret test-secret
@@ -79,12 +83,12 @@ username and password:
    <!-- Output: -->
     输出：
 	
-   ```shell
+   ```
    NAME          TYPE      DATA      AGE
    test-secret   Opaque    2         1m
    ```
 
-1. <!-- View more detailed information about the Secret -->
+1. <!-- View more detailed information about the Secret:-->
    查看 Secret 相关的更多详细信息：
 
    ```shell
@@ -94,7 +98,7 @@ username and password:
    <!-- Output: -->
    输出：
 
-   ```shell
+   ```
    Name:       test-secret
    Namespace:  default
    Labels:     <none>
@@ -105,7 +109,7 @@ username and password:
    Data
    ====
    password:   13 bytes
-   username:   7  bytes
+   username:   7 bytes
    ```
 
 <!--
@@ -130,6 +134,7 @@ through each step explicitly to demonstrate what is happening.
 这是一种更为方便的方法。
 前面展示的详细分解步骤有助于了解究竟发生了什么事情。
 
+
 <!--
 ## Create a Pod that has access to the secret data through a Volume
 
@@ -145,7 +150,7 @@ Here is a configuration file you can use to create a Pod:
    创建 Pod：
 
    ```shell
-   kubectl create -f secret-pod.yaml
+   kubectl apply -f https://k8s.io/examples/pods/inject/secret-pod.yaml
    ```
 
 1. <!-- Verify that your Pod is running: -->
@@ -155,9 +160,9 @@ Here is a configuration file you can use to create a Pod:
    kubectl get pod secret-test-pod
    ```
 
+   <!-- Output: -->
    输出：
-
-   ```shell
+   ```
    NAME              READY     STATUS    RESTARTS   AGE
    secret-test-pod   1/1       Running   0          42m
    ```
@@ -166,7 +171,7 @@ Here is a configuration file you can use to create a Pod:
    获取一个 shell 进入 Pod 中运行的容器：
 
    ```shell
-   kubectl exec -it secret-test-pod -- /bin/bash
+   kubectl exec -i -t secret-test-pod -- /bin/bash
    ```
 
 1. <!-- The secret data is exposed to the Container through a Volume mounted under
@@ -179,6 +184,7 @@ Here is a configuration file you can use to create a Pod:
    在 shell 中，列举 `/etc/secret-volume` 目录下的文件：
 
    ```shell
+   # 在容器中 Shell 运行下面命令
    ls /etc/secret-volume
    ```
 
@@ -195,11 +201,10 @@ Here is a configuration file you can use to create a Pod:
    In your shell, display the contents of the `username` and `password` files:
    -->
    在 Shell 中，显示 `username` 和 `password` 文件的内容：
-
    ```shell
    # 在容器中 Shell 运行下面命令
-   echo "$(cat /etc/secret-volume/username)"
-   echo "$(cat /etc/secret-volume/password)"
+   echo "$( cat /etc/secret-volume/username )"
+   echo "$( cat /etc/secret-volume/password )"
    ```
 
    <!--
@@ -207,7 +212,7 @@ Here is a configuration file you can use to create a Pod:
    -->
    输出为用户名和密码：
 
-   ```shell
+   ```
    my-app
    39528$vdg7Jb
    ```
@@ -256,11 +261,14 @@ Here is a configuration file you can use to create a Pod:
    kubectl exec -i -t env-single-secret -- /bin/sh -c 'echo $SECRET_USERNAME'
    ```
 
+   <!--
+   The output is
+   -->
    输出为：
-
    ```
    backend-admin
    ```
+   
 <!--
 ### Define container environment variables with data from multiple Secrets
 -->
@@ -300,13 +308,16 @@ Here is a configuration file you can use to create a Pod:
    ```shell
    kubectl exec -i -t envvars-multiple-secrets -- /bin/sh -c 'env | grep _USERNAME'
    ```
-
+   <!--
+   The output is
+   -->
    输出：
    ```
    DB_USERNAME=db-admin
    BACKEND_USERNAME=backend-admin
    ```
 
+
 <!--
 ## Configure all key-value pairs in a Secret as container environment variables
 -->
@@ -353,7 +364,10 @@ This functionality is available in Kubernetes v1.6 and later.
   ```shell
   kubectl exec -i -t envfrom-secret -- /bin/sh -c 'echo "username: $username\npassword: $password\n"'
   ```
-
+  
+   <!--
+   The output is
+   -->
   输出为：
 
   ```
@@ -364,10 +378,9 @@ This functionality is available in Kubernetes v1.6 and later.
 <!-- ### References -->
 ### 参考
 
-* [Secret](/docs/api-reference/{{< param "version" >}}/#secret-v1-core)
-* [Volume](/docs/api-reference/{{< param "version" >}}/#volume-v1-core)
-* [Pod](/docs/api-reference/{{< param "version" >}}/#pod-v1-core)
-
+* [Secret](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#secret-v1-core)
+* [Volume](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#volume-v1-core)
+* [Pod](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#pod-v1-core)
 
 ## {{% heading "whatsnext" %}}
 
@@ -375,7 +388,7 @@ This functionality is available in Kubernetes v1.6 and later.
 * Learn more about [Secrets](/docs/concepts/configuration/secret/).
 * Learn about [Volumes](/docs/concepts/storage/volumes/).
 -->
-* 进一步了解 [Secret](/zh/docs/concepts/configuration/secret/)。
-* 了解 [Volumes](/zh/docs/concepts/storage/volumes/)。
+* 进一步了解 [Secret](/zh-cn/docs/concepts/configuration/secret/)。
+* 了解 [Volumes](/zh-cn/docs/concepts/storage/volumes/)。
 
 
diff --git a/content/zh-cn/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information.md b/content/zh-cn/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information.md
new file mode 100644
index 0000000000..90b56dfad6
--- /dev/null
+++ b/content/zh-cn/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information.md
@@ -0,0 +1,353 @@
+---
+title: 通过文件将 Pod 信息呈现给容器
+content_type: task
+weight: 40
+---
+
+<!-- overview -->
+
+<!--
+This page shows how a Pod can use a
+[`downwardAPI` volume](/docs/concepts/storage/volumes/#downwardapi),
+to expose information about itself to containers running in the Pod.
+A `downwardAPI` volume can expose Pod fields and container fields.
+-->
+此页面描述 Pod 如何使用
+[`downwardAPI` 卷](/zh-cn/docs/concepts/storage/volumes/#downwardapi)
+把自己的信息呈现给 Pod 中运行的容器。
+`downwardAPI` 可以呈现 Pod 和容器的字段。
+
+<!--
+In Kubernetes, there are two ways to expose Pod and container fields to a running container:
+
+* [Environment variables](/docs/tasks/inject-data-application/environment-variable-expose-pod-information/#the-downward-api)
+* Volume files, as explained in this task
+
+Together, these two ways of exposing Pod and container fields are called the
+_downward API_.
+-->
+在 Kubernetes 中，有两种方式可以将 Pod 和容器字段呈现给运行中的容器：
+
+* [环境变量](/zh-cn/docs/tasks/inject-data-application/environment-variable-expose-pod-information/#the-downward-api)
+* 本页面所述的卷文件
+
+这两种呈现 Pod 和容器字段的方式都称为 **downward API**。
+
+## {{% heading "prerequisites" %}}
+
+{{< include "task-tutorial-prereqs.md" >}}
+
+
+<!-- steps -->
+
+<!--
+## Store Pod fields
+
+In this part of exercise, you create a Pod that has one container, and you
+project Pod-level fields into the running container as files.
+Here is the manifest for the Pod:
+-->
+## 存储 Pod 字段   {#store-pod-fields}
+
+在这部分的练习中，你将创建一个包含一个容器的 Pod，并将 Pod 级别的字段作为文件映射到正在运行的容器中。
+Pod 的清单如下：
+
+{{< codenew file="pods/inject/dapi-volume.yaml" >}}
+
+<!--
+In the manifest, you can see that the Pod has a `downwardAPI` Volume,
+and the container mounts the volume at `/etc/podinfo`.
+
+Look at the `items` array under `downwardAPI`. Each element of the array
+defines a `downwardAPI` volume.
+The first element specifies that the value of the Pod's
+`metadata.labels` field should be stored in a file named `labels`.
+The second element specifies that the value of the Pod's `annotations`
+field should be stored in a file named `annotations`.
+-->
+在 Pod 清单中，你可以看到 Pod 有一个 `downwardAPI` 类型的卷，并且挂载到容器中的
+`/etc/podinfo` 目录。
+
+查看 `downwardAPI` 下面的 `items` 数组。
+数组的每个元素定义一个 `downwardAPI` 卷。
+第一个元素指示 Pod 的 `metadata.labels` 字段的值保存在名为 `labels` 的文件中。
+第二个元素指示 Pod 的 `annotations` 字段的值保存在名为 `annotations` 的文件中。
+
+<!--
+The fields in this example are Pod fields. They are not
+fields of the Container in the Pod.
+-->
+{{< note >}}
+本示例中的字段是 Pod 字段，不是 Pod 中容器的字段。
+{{< /note >}}
+
+<!--
+Create the Pod:
+-->
+创建 Pod：
+
+```shell
+kubectl apply -f https://k8s.io/examples/pods/inject/dapi-volume.yaml
+```
+
+<!--
+Verify that the container in the Pod is running:
+-->
+验证Pod中的容器运行正常：
+
+```shell
+kubectl get pods
+```
+
+<!--
+View the container's logs:
+-->
+查看容器的日志：
+
+```shell
+kubectl logs kubernetes-downwardapi-volume-example
+```
+
+<!--
+The output shows the contents of the `labels` file and the `annotations` file:
+-->
+输出显示 `labels` 和 `annotations` 文件的内容：
+
+```
+cluster="test-cluster1"
+rack="rack-22"
+zone="us-est-coast"
+
+build="two"
+builder="john-doe"
+```
+
+<!--
+Get a shell into the container that is running in your Pod:
+-->
+进入 Pod 中运行的容器，打开一个 Shell：
+
+```shell
+kubectl exec -it kubernetes-downwardapi-volume-example -- sh
+```
+
+<!--
+In your shell, view the `labels` file:
+-->
+在该 Shell中，查看 `labels` 文件：
+
+```shell
+/# cat /etc/podinfo/labels
+```
+
+<!--
+The output shows that all of the Pod's labels have been written
+to the `labels` file:
+-->
+输出显示 Pod 的所有标签都已写入 `labels` 文件。
+
+```
+cluster="test-cluster1"
+rack="rack-22"
+zone="us-est-coast"
+```
+
+<!--
+Similarly, view the `annotations` file:
+-->
+同样，查看 `annotations` 文件：
+
+```shell
+/# cat /etc/podinfo/annotations
+```
+
+<!--
+View the files in the `/etc/podinfo` directory:
+-->
+查看 `/etc/podinfo` 目录下的文件：
+
+```shell
+/# ls -laR /etc/podinfo
+```
+
+<!--
+In the output, you can see that the `labels` and `annotations` files
+are in a temporary subdirectory: in this example,
+`..2982_06_02_21_47_53.299460680`. In the `/etc/podinfo` directory, `..data` is
+a symbolic link to the temporary subdirectory. Also in the `/etc/podinfo` directory,
+`labels` and `annotations` are symbolic links.
+-->
+在输出中可以看到，`labels` 和 `annotations` 文件都在一个临时子目录中。
+在这个例子，`..2982_06_02_21_47_53.299460680`。
+在 `/etc/podinfo` 目录中，`..data` 是一个指向临时子目录
+的符号链接。`/etc/podinfo` 目录中，`labels` 和 `annotations` 也是符号链接。
+
+```
+drwxr-xr-x  ... Feb 6 21:47 ..2982_06_02_21_47_53.299460680
+lrwxrwxrwx  ... Feb 6 21:47 ..data -> ..2982_06_02_21_47_53.299460680
+lrwxrwxrwx  ... Feb 6 21:47 annotations -> ..data/annotations
+lrwxrwxrwx  ... Feb 6 21:47 labels -> ..data/labels
+
+/etc/..2982_06_02_21_47_53.299460680:
+total 8
+-rw-r--r--  ... Feb  6 21:47 annotations
+-rw-r--r--  ... Feb  6 21:47 labels
+```
+
+<!--
+Using symbolic links enables dynamic atomic refresh of the metadata; updates are
+written to a new temporary directory, and the `..data` symlink is updated
+atomically using [rename(2)](http://man7.org/linux/man-pages/man2/rename.2.html).
+-->
+用符号链接可实现元数据的动态原子性刷新；更新将写入一个新的临时目录，
+然后通过使用 [rename(2)](http://man7.org/linux/man-pages/man2/rename.2.html)
+完成 `..data` 符号链接的原子性更新。
+
+<!--
+A container using Downward API as a
+[subPath](/docs/concepts/storage/volumes/#using-subpath) volume mount will not
+receive Downward API updates.
+-->
+{{< note >}}
+如果容器以
+[subPath](/zh-cn/docs/concepts/storage/volumes/#using-subpath)卷挂载方式来使用
+Downward API，则该容器无法收到更新事件。
+{{< /note >}}
+
+<!--
+Exit the shell:
+-->
+退出 Shell：
+
+```shell
+/# exit
+```
+
+<!--
+## Store container fields
+
+The preceding exercise, you made Pod-level fields accessible using the
+downward API.
+In this next exercise, you are going to pass fields that are part of the Pod
+definition, but taken from the specific
+[container](/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container)
+rather than from the Pod overall. Here is a manifest for a Pod that again has
+just one container:
+-->
+## 存储容器字段   {#store-container-fields}
+
+前面的练习中，你使用 downward API 使 Pod 级别的字段可以被 Pod 内正在运行的容器访问。
+接下来这个练习，你将只传递由 Pod 定义的部分的字段到 Pod 内正在运行的容器中，但这些字段取自特定[容器](/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1/#Container)而不是整个 Pod。
+下面是一个同样只有一个容器的 Pod 的清单：
+
+{{< codenew file="pods/inject/dapi-volume-resources.yaml" >}}
+
+<!--
+In the manifest, you can see that the Pod has a
+[`downwardAPI` volume](/docs/concepts/storage/volumes/#downwardapi),
+and that the single container in that Pod mounts the volume at `/etc/podinfo`.
+
+Look at the `items` array under `downwardAPI`. Each element of the array
+defines a file in the downward API volume.
+
+The first element specifies that in the container named `client-container`,
+the value of the `limits.cpu` field in the format specified by `1m` should be
+published as a file named `cpu_limit`. The `divisor` field is optional and has the
+default value of `1`. A divisor of 1 means cores for `cpu` resources, or
+bytes for `memory` resources.
+
+Create the Pod:
+-->
+在这个清单中，你可以看到 Pod 有一个
+[`downwardAPI` 卷](/zh-cn/docs/concepts/storage/volumes/#downwardapi)，
+并且这个会挂载到 Pod 内的单个容器的 `/etc/podinfo` 目录。
+
+查看 `downwardAPI` 下面的 `items` 数组。
+数组的每个元素定义一个 `downwardAPI` 卷。
+
+第一个元素指定在名为 `client-container` 的容器中，
+以 `1m` 所指定格式的 `limits.cpu` 字段的值应推送到名为 `cpu_limit` 的文件中。
+`divisor` 字段是可选的，默认值为 `1`，1 的除数表示 CPU 资源的核心或内存资源的字节。
+
+创建Pod：
+
+```shell
+kubectl apply -f https://k8s.io/examples/pods/inject/dapi-volume-resources.yaml
+```
+
+<!--
+Get a shell into the container that is running in your Pod:
+-->
+打开一个 Shell，进入 Pod 中运行的容器：
+
+```shell
+kubectl exec -it kubernetes-downwardapi-volume-example-2 -- sh
+```
+
+<!--
+In your shell, view the `cpu_limit` file:
+-->
+在 Shell 中，查看 `cpu_limit` 文件：
+
+```shell
+# 在容器内的 Shell 中运行
+cat /etc/podinfo/cpu_limit
+```
+
+<!--
+You can use similar commands to view the `cpu_request`, `mem_limit` and
+`mem_request` files.
+-->
+你可以使用同样的命令查看 `cpu_request`、`mem_limit` 和 `mem_request` 文件.
+
+<!-- discussion -->
+
+<!--
+## Project keys to specific paths and file permissions
+
+You can project keys to specific paths and specific permissions on a per-file
+basis. For more information, see
+[Secrets](/docs/concepts/configuration/secret/).
+-->
+## 投射键名到指定路径并且指定文件权限   {#project-keys-to-specific-paths-and-file-permissions}
+
+你可以将键名投射到指定路径并且指定每个文件的访问权限。
+更多信息，请参阅 [Secret](/zh-cn/docs/concepts/configuration/secret/)。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* Read the [`spec`](/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodSpec)
+  API definition for Pod. This includes the definition of Container (part of Pod).
+* Read the list of [available fields](/docs/concepts/workloads/pods/downward-api/#available-fields) that you
+  can expose using the downward API.
+
+Read about volumes in the legacy API reference:
+* Check the [`Volume`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#volume-v1-core)
+  API definition which defines a generic volume in a Pod for containers to access.
+* Check the [`DownwardAPIVolumeSource`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#downwardapivolumesource-v1-core)
+  API definition which defines a volume that contains Downward API information.
+* Check the [`DownwardAPIVolumeFile`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#downwardapivolumefile-v1-core)
+  API definition which contains references to object or resource fields for
+  populating a file in the Downward API volume.
+* Check the [`ResourceFieldSelector`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#resourcefieldselector-v1-core)
+  API definition which specifies the container resources and their output format.
+-->
+* 参阅 Pod [`spec`](/zh-cn/docs/reference/kubernetes-api/workload-resources/pod-v1/#PodSpec)
+  API 的定义，其中包括了容器（Pod 的一部分）的定义。
+* 参阅你可以使用 downward API 公开的[可用字段](/zh-cn/docs/concepts/workloads/pods/downward-api/#available-fields)列表。
+
+阅读旧版的 API 参考中关于卷的内容：
+* 参阅
+  [`Volume`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#volume-v1-core)
+  API 定义，该 API 在 Pod 中定义通用卷以供容器访问。
+* 参阅
+  [`DownwardAPIVolumeSource`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#downwardapivolumesource-v1-core)
+  API 定义，该 API 定义包含 Downward API 信息的卷。
+* 参阅
+  [`DownwardAPIVolumeFile`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#downwardapivolumefile-v1-core)
+  API 定义，该 API 包含对对象或资源字段的引用，用于在 Downward API 卷中填充文件。
+* 参阅
+  [`ResourceFieldSelector`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#resourcefieldselector-v1-core)
+  API 定义，该 API 指定容器资源及其输出格式。
+
diff --git a/content/zh/docs/tasks/inject-data-application/environment-variable-expose-pod-information.md b/content/zh-cn/docs/tasks/inject-data-application/environment-variable-expose-pod-information.md
similarity index 97%
rename from content/zh/docs/tasks/inject-data-application/environment-variable-expose-pod-information.md
rename to content/zh-cn/docs/tasks/inject-data-application/environment-variable-expose-pod-information.md
index 94202ffb68..6b52b73b46 100644
--- a/content/zh/docs/tasks/inject-data-application/environment-variable-expose-pod-information.md
+++ b/content/zh-cn/docs/tasks/inject-data-application/environment-variable-expose-pod-information.md
@@ -39,7 +39,7 @@ Together, these two ways of exposing Pod and Container fields are called the
 有两种方式可以将 Pod 和 Container 字段呈现给运行中的容器：
 
 * 环境变量
-* [卷文件](/zh/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/#the-downward-api)
+* [卷文件](/zh-cn/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/#the-downward-api)
 
 这两种呈现 Pod 和 Container 字段的方式统称为 *Downward API*。
 
@@ -245,7 +245,7 @@ The output shows the values of selected environment variables:
 * [ResourceFieldSelector](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#resourcefieldselector-v1-core)
 -->
 
-* [给容器定义环境变量](/zh/docs/tasks/inject-data-application/define-environment-variable-container/)
+* [给容器定义环境变量](/zh-cn/docs/tasks/inject-data-application/define-environment-variable-container/)
 * [PodSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core)
 * [Container](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#container-v1-core)
 * [EnvVar](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#envvar-v1-core)
diff --git a/content/zh/docs/tasks/job/_index.md b/content/zh-cn/docs/tasks/job/_index.md
similarity index 100%
rename from content/zh/docs/tasks/job/_index.md
rename to content/zh-cn/docs/tasks/job/_index.md
diff --git a/content/zh/docs/tasks/job/automated-tasks-with-cron-jobs.md b/content/zh-cn/docs/tasks/job/automated-tasks-with-cron-jobs.md
similarity index 58%
rename from content/zh/docs/tasks/job/automated-tasks-with-cron-jobs.md
rename to content/zh-cn/docs/tasks/job/automated-tasks-with-cron-jobs.md
index 0f2f5e90b6..d4f88c611b 100644
--- a/content/zh/docs/tasks/job/automated-tasks-with-cron-jobs.md
+++ b/content/zh-cn/docs/tasks/job/automated-tasks-with-cron-jobs.md
@@ -1,38 +1,43 @@
 ---
 title: 使用 CronJob 运行自动化任务
+min-kubernetes-server-version: v1.21
 content_type: task
 weight: 10
-min-kubernetes-server-version: v1.21
 ---
-
 <!--
 title: Running Automated Tasks with a CronJob
+min-kubernetes-server-version: v1.21
 reviewers:
 - chenopis
 content_type: task
 weight: 10
-min-kubernetes-server-version: v1.21
 -->
 
 <!-- overview -->
 
 <!--
-
 CronJobs was promoted to general availability in Kubernetes v1.21. If you are using an older version of
 Kubernetes, please refer to the documentation for the version of Kubernetes that you are using,
 so that you see accurate information. Older Kubernetes versions do not support the `batch/v1` CronJob API.
 
-You can use [CronJobs](/docs/concepts/workloads/controllers/cron-jobs) to run jobs on a time-based schedule.
+You can use a {{< glossary_tooltip text="CronJob" term_id="cronjob" >}} to run {{< glossary_tooltip text="Jobs" term_id="job" >}}
+on a time-based schedule.
 These automated jobs run like [Cron](https://en.wikipedia.org/wiki/Cron) tasks on a Linux or UNIX system.
 
 Cron jobs are useful for creating periodic and recurring tasks, like running backups or sending emails.
 Cron jobs can also schedule individual tasks for a specific time, such as if you want to schedule a job for a low activity period.
 -->
 
-在Kubernetes v1.21 版本中，CronJob 被提升为通用版本。如果你使用的是旧版本的 Kubernetes，请参考你正在使用的 Kubernetes 版本的文档，这样你就能看到准确的信息。旧的 Kubernetes 版本不支持`batch/v1` CronJob API。
-你可以利用 [CronJobs](/zh/docs/concepts/workloads/controllers/cron-jobs) 执行基于时间调度的任务。这些自动化任务和 Linux 或者 Unix 系统的 [Cron](https://en.wikipedia.org/wiki/Cron) 任务类似。
+在 Kubernetes v1.21 版本中，CronJob 被提升为通用版本。如果你使用的是旧版本的 Kubernetes，
+请参考你正在使用的 Kubernetes 版本的文档，这样你就能看到准确的信息。
+旧的 Kubernetes 版本不支持 `batch/v1` CronJob API。
 
-CronJobs 在创建周期性以及重复性的任务时很有帮助，例如执行备份操作或者发送邮件。CronJobs 也可以在特定时间调度单个任务，例如你想调度低活跃周期的任务。
+你可以利用 {{< glossary_tooltip text="CronJob" term_id="cronjob" >}}
+执行基于时间调度的 {{< glossary_tooltip text="Job" term_id="job" >}}。
+这些自动化任务和 Linux 或者 Unix 系统的 [Cron](https://zh.wikipedia.org/wiki/Cron) 任务类似。
+
+CronJob 在创建周期性以及重复性的任务时很有帮助，例如执行备份操作或者发送邮件。
+CronJob 也可以在特定时间调度单个任务，例如你想调度低活跃周期的任务。
 
 <!--
 Cron jobs have limitations and idiosyncrasies.
@@ -40,39 +45,45 @@ For example, in certain circumstances, a single cron job can create multiple job
 Therefore, jobs should be idempotent.
 For more limitations, see [CronJobs](/docs/concepts/workloads/controllers/cron-jobs).
 -->
-CronJobs 有一些限制和特点。
+CronJob 有一些限制和特点。
 例如，在特定状况下，同一个 CronJob 可以创建多个任务。
 因此，任务应该是幂等的。
-查看更多限制，请参考 [CronJobs](/zh/docs/concepts/workloads/controllers/cron-jobs)。
+
+有关更多限制，请参考 [CronJob](/zh-cn/docs/concepts/workloads/controllers/cron-jobs)。
 
 ## {{% heading "prerequisites" %}}
 
-
-* {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+* {{< include "task-tutorial-prereqs.md" >}}
 
 <!-- steps -->
 
 <!--
-## Creating a Cron Job
+## Creating a CronJob
 
 Cron jobs require a config file.
-This example cron job config `.spec` file prints the current time and a hello message every minute:
+Here is a manifest for a CronJob that runs a simple demonstration task every minute:
 -->
-## 创建 CronJob
+## 创建 CronJob {#creating-a-cronjob}
 
 CronJob 需要一个配置文件。
-本例中 CronJob 的`.spec` 配置文件每分钟打印出当前时间和一个问好信息：
+以下是针对一个 CronJob 的清单，该 CronJob 每分钟运行一个简单的演示任务：
 
 {{< codenew file="application/job/cronjob.yaml" >}}
 
 <!--
-Run the example cron job by downloading the example file and then running this command:
+Run the example CronJob by using this command:
 -->
-想要运行示例的 CronJob，可以下载示例文件并执行命令：
+执行以下命令以运行此 CronJob 示例：
 
 ```shell
 kubectl create -f https://k8s.io/examples/application/job/cronjob.yaml
 ```
+
+<!--
+The output is similar to this:
+-->
+输出类似于：
+
 ```
 cronjob.batch/hello created
 ```
@@ -93,7 +104,7 @@ The output is similar to this:
 
 ```
 NAME    SCHEDULE      SUSPEND   ACTIVE   LAST SCHEDULE   AGE
-hello   */1 * * * *   False     0        50s             75s
+hello   */1 * * * *   False     0        <none>          10s
 ```
 <!--
 As you can see from the results of the command, the cron job has not scheduled or run any jobs yet.
@@ -105,6 +116,11 @@ Watch for the job to be created in around one minute:
 kubectl get jobs --watch
 ```
 
+<!--
+The output is similar to this:
+-->
+输出类似于：
+
 ```
 NAME               COMPLETIONS   DURATION   AGE
 hello-4111706356   0/1                      0s
@@ -134,22 +150,21 @@ hello   */1 * * * *   False     0        50s             75s
 ```
 
 <!--
-You should see that the cron job "hello" successfully scheduled a job at the time specified in `LAST-SCHEDULE`.
-There are currently 0 active jobs, meaning that the job has completed or failed.
+You should see that the cron job `hello` successfully scheduled a job at the time specified in
+`LAST SCHEDULE`. There are currently 0 active jobs, meaning that the job has completed or failed.
 
 Now, find the pods that the last scheduled job created and view the standard output of one of the pods.
-Note that the job name and pod name are different.
 -->
-你应该能看到 “hello” CronJob 在 `LAST-SCHEDULE` 声明的时间点成功的调度了一次任务。
-有 0 个活跃的任务意味着任务执行完毕或者执行失败。
+你应该能看到 `hello` CronJob 在 `LAST SCHEDULE` 声明的时间点成功地调度了一次任务。
+目前有 0 个活跃的任务，这意味着任务执行完毕或者执行失败。
 
-现在，找到最后一次调度任务创建的 Pod 并查看一个 Pod 的标准输出。请注意任务名称和 Pod 名称是不同的。
+现在，找到最后一次调度任务创建的 Pod 并查看一个 Pod 的标准输出。
 
 <!--
-The job name and pod name are different.
+The job name is different from the pod name.
 -->
 {{< note >}}
-Job 名称和 Pod 名称不同。
+Job 名称与 Pod 名称不同。
 {{< /note >}}
 
 ```shell
@@ -158,13 +173,17 @@ pods=$(kubectl get pods --selector=job-name=hello-4111706356 --output=jsonpath={
 ```
 
 <!--
-Show pod log:
+Show the pod log:
 -->
 查看 Pod 日志：
 
 ```shell
 kubectl logs $pods
 ```
+<!--
+The output is similar to this:
+-->
+输出类似于：
 
 ```
 Fri Feb 22 11:02:09 UTC 2019
@@ -172,12 +191,12 @@ Hello from the Kubernetes cluster
 ```
 
 <!--
-## Deleting a Cron Job
+## Deleting a CronJob
 
-When you don't need a cron job any more, delete it with `kubectl delete cronjob <cronjob name>`：
+When you don't need a cron job any more, delete it with `kubectl delete cronjob <cronjob name>`:
 -->
 
-## 删除 CronJob
+## 删除 CronJob {#deleting-a-cronjob}
 
 当你不再需要 CronJob 时，可以用 `kubectl delete cronjob <cronjob name>` 删掉它：
 
@@ -187,73 +206,81 @@ kubectl delete cronjob hello
 
 <!--
 Deleting the cron job removes all the jobs and pods it created and stops it from creating additional jobs.
-You can read more about removing jobs in [garbage collection](/docs/concepts/workloads/controllers/garbage-collection/).
+You can read more about removing jobs in [garbage collection](/docs/concepts/architecture/garbage-collection/).
 -->
-删除 CronJob 会清除它创建的所有任务和 Pod，并阻止它创建额外的任务。你可以查阅
-[垃圾收集](/zh/docs/concepts/workloads/controllers/garbage-collection/)。
+删除 CronJob 会清除它创建的所有任务和 Pod，并阻止它创建额外的任务。你可以查阅[垃圾收集](/zh-cn/docs/concepts/architecture/garbage-collection/)。
 
 <!--
-## Writing a Cron Job Spec
+## Writing a CronJob Spec
 
-As with all other Kubernetes configs, a cron job needs `apiVersion`, `kind`, and `metadata` fields. For general
-information about working with config files, see [deploying applications](/docs/tasks/run-application/run-stateless-application-deployment/),
+As with all other Kubernetes objects, a CronJob must have `apiVersion`, `kind`, and `metadata` fields.
+For more information about working with Kubernetes objects and their
+{{< glossary_tooltip text="manifests" term_id="manifest" >}}, see the
+[managing resources](/docs/concepts/cluster-administration/manage-deployment/),
 and [using kubectl to manage resources](/docs/concepts/overview/working-with-objects/object-management/) documents.
+Each manifest for a CronJob also needs a [`.spec`](/docs/concepts/overview/working-with-objects/kubernetes-objects/#object-spec-and-status) section.
 
-A cron job config also needs a [`.spec` section](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status).
 -->
-## 编写 CronJob 声明信息
+## 编写 CronJob 声明信息 {#writing-a-cronjob-spec}
 
-像 Kubernetes 的其他配置一样，CronJob 需要 `apiVersion`、`kind`、和 `metadata` 域。
-配置文件的一般信息，请参考
-[部署应用](/zh/docs/tasks/run-application/run-stateless-application-deployment/) 和
-[使用 kubectl 管理资源](/zh/docs/concepts/overview/working-with-objects/object-management/).
+像 Kubernetes 的其他对象一样，CronJob 需要 `apiVersion`、`kind` 和 `metadata` 字段。
+有关 Kubernetes 对象及它们的{{< glossary_tooltip text="清单" term_id="manifest" >}}的更多信息，
+请参考[资源管理](/zh-cn/docs/concepts/cluster-administration/manage-deployment/)和
+[使用 kubectl 管理资源](/zh-cn/docs/concepts/overview/working-with-objects/object-management/)文档。
 
 CronJob 配置也需要包括
-[`.spec`](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status).
+[`.spec`](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status) 部分。
 
-<!--
-All modifications to a cron job, especially its `.spec`, are applied only to the following runs.
--->
 {{< note >}}
-对 CronJob 的所有改动，特别是它的 `.spec`，只会影响将来的运行实例。
+<!--
+If you modify a CronJob, the changes you make will apply to new jobs that start to run after your modification
+is complete. Jobs (and their Pods) that have already started continue to run without changes.
+That is, the CronJob does _not_ update existing jobs, even if those remain running.
+-->
+如果你修改了一个 CronJob，你所做的修改将只被应用到将来所运行的任务上，
+对当前 CronJob 内处于运行中的 Job 集合（和 Job 里面的 Pod）不会产生任何变化，它们将继续运行。
+也就是说，对 CronJob 的修改不更新现有的任务，即使这些任务处于运行状态。
 {{< /note >}}
 
 <!--
 ### Schedule
 
 The `.spec.schedule` is a required field of the `.spec`.
-It takes a [Cron](https://en.wikipedia.org/wiki/Cron) format string, such as `0 * * * *` or `@hourly`, as schedule time of its jobs to be created and executed.
--->
-### 时间安排
+It takes a [Cron](https://en.wikipedia.org/wiki/Cron) format string, such as `0 * * * *` or `@hourly`,
+as schedule time of its jobs to be created and executed.
 
-`.spec.schedule` 是 `.spec` 需要的域。它使用了 [Cron](https://en.wikipedia.org/wiki/Cron)
-格式串，例如 `0 * * * *` or `@hourly` ，作为它的任务被创建和执行的调度时间。
+-->
+### 排期表 {#schedule}
+
+`.spec.schedule` 是 `.spec` 中的必需字段。它接受 [Cron](https://zh.wikipedia.org/wiki/Cron)
+格式串，例如 `0 * * * *` or `@hourly`，作为它的任务被创建和执行的调度时间。
 
 <!--
-The format also includes extended "Vixie cron" step values. As explained in the [FreeBSD manual](https://www.freebsd.org/cgi/man.cgi?crontab%285%29):
+The format also includes extended "Vixie cron" step values. As explained in the
+[FreeBSD manual](https://www.freebsd.org/cgi/man.cgi?crontab%285%29):
 -->
-该格式也包含了扩展的 "Vixie cron" 步长值。
+该格式也包含了扩展的 “Vixie cron” 步长值。
 [FreeBSD 手册](https://www.freebsd.org/cgi/man.cgi?crontab%285%29)中解释如下:
 
 <!--
-> Step values can be	used in	conjunction with ranges.  Following a range
-> with `/<number>` specifies skips	of the number's	value through the
-> range.  For example, `0-23/2` can be used in the	hours field to specify
-> command execution every other hour	(the alternative in the	V7 standard is
-> `0,2,4,6,8,10,12,14,16,18,20,22`).  Steps are also permitted after an
+> Step values can be used in conjunction with ranges. Following a range
+> with `/<number>` specifies skips of the number's value through the
+> range. For example, `0-23/2` can be used in the hours field to specify
+> command execution every other hour (the alternative in the V7 standard is
+> `0,2,4,6,8,10,12,14,16,18,20,22`). Steps are also permitted after an
 > asterisk, so if you want to say "every two hours", just use `*/2`.
 -->
 
 > 步长可被用于范围组合。范围后面带有 `/<数字>` 可以声明范围内的步幅数值。
-> 例如，`0-23/2` 可被用在小时域来声明命令在其他数值的小时数执行
-> （ V7 标准中对应的方法是`0,2,4,6,8,10,12,14,16,18,20,22`）。
-> 步长也可以放在通配符后面，因此如果你想表达 "每两小时"，就用 `*/2` 。
+> 例如，`0-23/2` 可被用在小时字段来声明命令在其他数值的小时数执行
+> （V7 标准中对应的方法是 `0,2,4,6,8,10,12,14,16,18,20,22`）。
+> 步长也可以放在通配符后面，因此如果你想表达 “每两小时”，就用 `*/2` 。
 
 <!--
 A question mark (`?`) in the schedule has the same meaning as an asterisk `*`, that is, it stands for any of available value for a given field.
 -->
 {{< note >}}
-调度中的问号 (`?`) 和星号  `*` 含义相同，表示给定域的任何可用值。
+调度中的问号 (`?`) 和星号 `*` 含义相同，它们用来表示给定字段的任何可用值。
 {{< /note >}}
 
 <!--
@@ -265,13 +292,13 @@ except that it is nested and does not have an `apiVersion` or `kind`.
 For information about writing a job `.spec`, see
 [Writing a Job Spec](/docs/concepts/workloads/controllers/job/#writing-a-job-spec).
 -->
-### 任务模版
+### 任务模板 {#job-template}
 
-`.spec.jobTemplate`是任务的模版，它是必须的。它和
-[Job](/zh/docs/concepts/workloads/controllers/job/)的语法完全一样，
-除了它是嵌套的没有 `apiVersion` 和 `kind`。
-编写任务的 `.spec` ，请参考
-[编写 Job 的Spec](/zh/docs/concepts/workloads/controllers/job/#writing-a-job-spec)。
+`.spec.jobTemplate`是任务的模板，它是必需的。它和
+[Job](/zh-cn/docs/concepts/workloads/controllers/job/) 的语法完全一样，
+只不过它是嵌套的，没有 `apiVersion` 和 `kind`。
+有关如何编写一个任务的 `.spec`，请参考
+[编写 Job 规约](/zh-cn/docs/concepts/workloads/controllers/job/#writing-a-job-spec)。
 
 <!--
 ### Starting Deadline
@@ -282,11 +309,12 @@ After the deadline, the cron job does not start the job.
 Jobs that do not meet their deadline in this way count as failed jobs.
 If this field is not specified, the jobs have no deadline.
 -->
-### 开始的最后期限   {#starting-deadline}
+### 开始的最后期限 {#starting-deadline}
 
-`.spec.startingDeadlineSeconds` 域是可选的。
-它表示任务如果由于某种原因错过了调度时间，开始该任务的截止时间的秒数。过了截止时间，CronJob 就不会开始任务。
-不满足这种最后期限的任务会被统计为失败任务。如果该域没有声明，那任务就没有最后期限。
+`.spec.startingDeadlineSeconds` 字段是可选的。
+它表示任务如果由于某种原因错过了调度时间，开始该任务的截止时间的秒数。
+过了截止时间，CronJob 就不会开始任务。
+不满足这种最后期限的任务会被统计为失败任务。如果此字段未设置，那任务就没有最后期限。
 
 <!--
 If the `.spec.startingDeadlineSeconds` field is set (not null), the CronJob
@@ -296,7 +324,8 @@ now. If the difference is higher than that limit, it will skip this execution.
 For example, if it is set to `200`, it allows a job to be created for up to 200
 seconds after the actual schedule.
 -->
-如果`.spec.startingDeadlineSeconds`字段被设置(非空)，CronJob 控制器会计算从预期创建 Job 到当前时间的时间差。
+如果 `.spec.startingDeadlineSeconds` 字段被设置（非空），
+CronJob 控制器将会计算从预期创建 Job 到当前时间的时间差。
 如果时间差大于该限制，则跳过此次执行。
 
 例如，如果将其设置为 `200`，则 Job 控制器允许在实际调度之后最多 200 秒内创建 Job。
@@ -315,7 +344,7 @@ the spec may specify only one of the following concurrency policies:
 Note that concurrency policy only applies to the jobs created by the same cron job.
 If there are multiple cron jobs, their respective jobs are always allowed to run concurrently.
 -->
-### 并发性规则
+### 并发性规则 {#concurrency-policy}
 
 `.spec.concurrencyPolicy` 也是可选的。它声明了 CronJob 创建的任务执行时发生重叠如何处理。
 spec 仅能声明下列规则中的一种：
@@ -334,10 +363,10 @@ If it is set to `true`, all subsequent executions are suspended.
 This setting does not apply to already started executions.
 Defaults to false.
 -->
-### 挂起
+### 挂起 {#suspend}
 
-`.spec.suspend`域也是可选的。如果设置为 `true` ，后续发生的执行都会挂起。
-这个设置对已经开始的执行不起作用。默认是关闭的。
+`.spec.suspend` 字段也是可选的。如果设置为 `true` ，后续发生的执行都会被挂起。
+这个设置对已经开始的执行不起作用。默认是 `false`。
 
 <!--
 Executions that are suspended during their scheduled time count as missed jobs.
@@ -345,7 +374,7 @@ When `.spec.suspend` changes from `true` to `false` on an existing cron job with
 -->
 {{< caution >}}
 在调度时间内挂起的执行都会被统计为错过的任务。当 `.spec.suspend` 从 `true` 改为 `false` 时，
-且没有 [开始的最后期限](#starting-deadline)，错过的任务会被立即调度。
+且没有[开始的最后期限](#starting-deadline)，错过的任务会被立即调度。
 {{< /caution >}}
 
 <!--
@@ -355,10 +384,8 @@ The `.spec.successfulJobsHistoryLimit` and `.spec.failedJobsHistoryLimit` fields
 These fields specify how many completed and failed jobs should be kept.
 By default, they are set to 3 and 1 respectively.  Setting a limit to `0` corresponds to keeping none of the corresponding kind of jobs after they finish.
 -->
-### 任务历史限制
+### 任务历史限制 {#jobs-history-limits}
 
 `.spec.successfulJobsHistoryLimit` 和 `.spec.failedJobsHistoryLimit`是可选的。
 这两个字段指定应保留多少已完成和失败的任务。
-默认设置为3和1。限制设置为0代表相应类型的任务完成后不会保留。
-
-
+默认设置分别为 3 和 1。设置为 `0` 代表相应类型的任务完成后不会保留。
\ No newline at end of file
diff --git a/content/zh/docs/tasks/job/coarse-parallel-processing-work-queue.md b/content/zh-cn/docs/tasks/job/coarse-parallel-processing-work-queue.md
similarity index 92%
rename from content/zh/docs/tasks/job/coarse-parallel-processing-work-queue.md
rename to content/zh-cn/docs/tasks/job/coarse-parallel-processing-work-queue.md
index 33690a938e..a22279e659 100644
--- a/content/zh/docs/tasks/job/coarse-parallel-processing-work-queue.md
+++ b/content/zh-cn/docs/tasks/job/coarse-parallel-processing-work-queue.md
@@ -50,13 +50,13 @@ Here is an overview of the steps in this example:
 
 <!--
 Be familiar with the basic,
-non-parallel, use of [Job](/docs/concepts/jobs/run-to-completion-finite-workloads/).
+non-parallel, use of [Job](/docs/concepts/workloads/controllers/job/).
 -->
 
 要熟悉 Job 基本用法（非并行的），请参考
-[Job](/zh/docs/concepts/workloads/controllers/job/)。
+[Job](/zh-cn/docs/concepts/workloads/controllers/job/)。
 
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+{{< include "task-tutorial-prereqs.md" >}} 
 
 <!-- steps -->
 
@@ -70,7 +70,7 @@ cluster and reuse it for many jobs, as well as for long-running services.
 
 Start RabbitMQ as follows:
 -->
-## 启动消息队列服务
+## 启动消息队列服务   {#starting-a-message-queue-service}
 
 本例使用了 RabbitMQ，但你可以更改该示例，使用其他 AMQP 类型的消息服务。
 
@@ -108,7 +108,7 @@ and experiment with queues.
 
 First create a temporary interactive Pod.
 -->
-## 测试消息队列服务
+## 测试消息队列服务   {#testing-the-message-queue-service}
 
 现在，我们可以试着访问消息队列。我们将会创建一个临时的可交互的 Pod，在它上面安装一些工具，然后用队列做实验。
 
@@ -154,7 +154,7 @@ Next, we will check that we can discover the rabbitmq service:
 # Note the rabbitmq-service has a DNS name, provided by Kubernetes:
 -->
 ```
-# 请注意 rabbitmq-service 有Kubernetes 提供的 DNS 名称，
+# 请注意 rabbitmq-service 拥有一个由 Kubernetes 提供的 DNS 名称：
 
 root@temp-loe07:/# nslookup rabbitmq-service
 Server:        10.0.0.10
@@ -196,8 +196,6 @@ Next we will verify we can create a queue, and publish and consume messages.
 # then use this command instead:
 # root@temp-loe07:/# BROKER_URL=amqp://guest:guest@$RABBITMQ_SERVICE_SERVICE_HOST:5672
 # Now create a queue:
-# and publish a message to it:
-# and get it back.
 -->
 
 ```shell
@@ -246,7 +244,7 @@ In a practice, the content of the messages might be:
 - configuration parameters to a simulation
 - frame numbers of a scene to be rendered
 -->
-## 为队列增加任务
+## 为队列增加任务  {#filling-the-queue-with-tasks}
 
 现在让我们给队列增加一些任务。在我们的示例中，任务是多个待打印的字符串。
 
@@ -268,7 +266,9 @@ For our example, we will create the queue and fill it using the amqp command lin
 In practice, you might write a program to fill the queue using an amqp client library.
 -->
 
-本例中，如果有大量的数据需要被 Job 的所有 Pod 读取，典型的做法是把它们放在一个共享文件系统中，如NFS，并以只读的方式挂载到所有 Pod，或者 Pod 中的程序从类似 HDFS 的集群文件系统中读取。
+本例中，如果有大量的数据需要被 Job 的所有 Pod 读取，典型的做法是把它们放在一个共享文件系统中，
+如 NFS（Network File System 网络文件系统），并以只读的方式挂载到所有 Pod，或者 Pod 中的程序从类似 HDFS
+（Hadoop Distributed File System 分布式文件系统）的集群文件系统中读取。
 
 例如，我们创建队列并使用 amqp 命令行工具向队列中填充消息。实践中，你可以写个程序来利用 amqp 客户端库来填充这些队列。
 
@@ -294,7 +294,7 @@ example program:
 -->
 这样，我们给队列中填充了8个消息。
 
-## 创建镜像
+## 创建镜像   {#create-an-image}
 
 现在我们可以创建一个做为 Job 来运行的镜像。
 
@@ -302,6 +302,16 @@ example program:
 
 {{< codenew language="python" file="application/job/rabbitmq/worker.py" >}}
 
+<!--
+Give the script execution permission:
+-->
+赋予脚本执行权限:
+
+```shell
+chmod +x worker.py
+```
+
+
 <!--
 Now, build an image.  If you are working in the source
 tree, then change directory to `examples/job/work-queue-1`.
@@ -355,7 +365,7 @@ gcloud docker -- push gcr.io/<project>/job-wq-1
 Here is a job definition.  You'll need to make a copy of the Job and edit the
 image to match the name you used, and call it `./job.yaml`.
 -->
-## 定义 Job
+## 定义 Job   {#defining-a-job}
 
 这里给出一个 Job 定义 yaml文件。你需要拷贝一份并编辑镜像以匹配你使用的名称，保存为 `./job.yaml`。
 
@@ -372,18 +382,17 @@ So, now run the Job:
 -->
 本例中，每个 Pod 使用队列中的一个消息然后退出。这样，Job 的完成计数就代表了完成的工作项的数量。本例中我们设置 `.spec.completions: 8`，因为我们放了8项内容在队列中。
 
-## 运行 Job
+## 运行 Job   {#running-the-job}
 
 现在我们运行 Job：
 
 ```shell
-kubectl create -f ./job.yaml
+kubectl apply -f ./job.yaml
 ```
 
 <!--
 Now wait a bit, then check on the job.
 -->
-
 稍等片刻，然后检查 Job。
 
 ```shell
@@ -441,21 +450,21 @@ do not need to modify your "worker" program to be aware that there is a work que
 
 It does require that you run a message queue service.
 If running a queue service is inconvenient, you may
-want to consider one of the other [job patterns](/docs/concepts/jobs/run-to-completion-finite-workloads/#job-patterns).
+want to consider one of the other [job patterns](/docs/concepts/workloads/controllers/job/#job-patterns).
 -->
-## 替代方案
+## 替代方案   {#alternatives}
 
 本文所讲述的处理方法的好处是你不需要修改你的 "worker" 程序使其知道工作队列的存在。
 
 本文所描述的方法需要你运行一个消息队列服务。如果不方便运行消息队列服务，你也许会考虑另外一种
-[任务模式](/zh/docs/concepts/workloads/controllers/job/#job-patterns)。
+[任务模式](/zh-cn/docs/concepts/workloads/controllers/job/#job-patterns)。
 
 <!--
 This approach creates a pod for every work item.  If your work items only take a few seconds,
 though, creating a Pod for every work item may add a lot of overhead.  Consider another
 [example](/docs/tasks/job/fine-parallel-processing-work-queue/), that executes multiple work items per Pod.
 
-In this example, we used use the `amqp-consume` utility to read the message
+In this example, we use the `amqp-consume` utility to read the message
 from the queue and run our actual program.  This has the advantage that you
 do not need to modify your program to be aware of the queue.
 A [different example](/docs/tasks/job/fine-parallel-processing-work-queue/), shows how to
@@ -464,13 +473,13 @@ communicate with the work queue using a client library.
 
 本文所述的方法为每个工作项创建了一个 Pod。
 如果你的工作项仅需数秒钟，为每个工作项创建 Pod会增加很多的常规消耗。
-可以考虑另外的方案请参考[示例](/zh/docs/tasks/job/fine-parallel-processing-work-queue/)，
+可以考虑另外的方案请参考[示例](/zh-cn/docs/tasks/job/fine-parallel-processing-work-queue/)，
 这种方案可以实现每个 Pod 执行多个工作项。
 
 示例中，我们使用 `amqp-consume` 从消息队列读取消息并执行我们真正的程序。
 这样的好处是你不需要修改你的程序使其知道队列的存在。
 要了解怎样使用客户端库和工作队列通信，请参考
-[不同的示例](/zh/docs/tasks/job/fine-parallel-processing-work-queue/)。
+[不同的示例](/zh-cn/docs/tasks/job/fine-parallel-processing-work-queue/)。
 
 <!--
 ## Caveats
@@ -489,7 +498,7 @@ exits with success, or if the node crashes before the kubelet is able to post th
 back to the api-server, then the Job will not appear to be complete, even though all items
 in the queue have been processed.
 -->
-## 友情提醒
+## 友情提醒   {#caveats}
 
 如果设置的完成数量小于队列中的消息数量，会导致一部分消息项不会被执行。
 
diff --git a/content/zh/docs/tasks/job/fine-parallel-processing-work-queue.md b/content/zh-cn/docs/tasks/job/fine-parallel-processing-work-queue.md
similarity index 89%
rename from content/zh/docs/tasks/job/fine-parallel-processing-work-queue.md
rename to content/zh-cn/docs/tasks/job/fine-parallel-processing-work-queue.md
index fb0c6faf0f..7531220dc8 100644
--- a/content/zh/docs/tasks/job/fine-parallel-processing-work-queue.md
+++ b/content/zh-cn/docs/tasks/job/fine-parallel-processing-work-queue.md
@@ -17,7 +17,7 @@ min-kubernetes-server-version: v1.8
 In this example, we will run a Kubernetes Job with multiple parallel
 worker processes in a given pod.
 -->
-在这个例子中，我们会运行一个Kubernetes Job，其中的 Pod 会运行多个并行工作进程。
+在这个例子中，我们会运行一个 Kubernetes Job，其中的 Pod 会运行多个并行工作进程。
 
 <!--
 In this example, as each pod is created, it picks up one unit of work
@@ -25,7 +25,7 @@ from a task queue, processes it, and repeats until the end of the queue is reach
 
 Here is an overview of the steps in this example:
 -->
-在这个例子中，当每个pod被创建时，它会从一个任务队列中获取一个工作单元，处理它，然后重复，直到到达队列的尾部。
+在这个例子中，当每个 Pod 被创建时，它会从一个任务队列中获取一个工作单元，处理它，然后重复，直到到达队列的尾部。
 
 下面是这个示例的步骤概述：
 
@@ -54,7 +54,7 @@ Here is an overview of the steps in this example:
 1. **Start a Job that works on tasks from the queue**.  The Job starts several pods.  Each pod takes
   one task from the message queue, processes it, and repeats until the end of the queue is reached.
 -->
-3. **启动一个 Job 对队列中的任务进行处理**。这个 Job 启动了若干个 Pod 。
+3. **启动一个 Job 对队列中的任务进行处理**。这个 Job 启动了若干个 Pod。
    每个 Pod 从消息队列中取出一个工作任务，处理它，然后重复，直到到达队列的尾部。
 
 ## {{% heading "prerequisites" %}}
@@ -65,7 +65,7 @@ Here is an overview of the steps in this example:
 Be familiar with the basic,
 non-parallel, use of [Job](/docs/concepts/workloads/controllers/job/).
 -->
-熟悉基本的、非并行的 [Job](/zh/docs/concepts/workloads/controllers/job/)。
+熟悉基本的、非并行的 [Job](/zh-cn/docs/concepts/workloads/controllers/job/)。
 
 <!-- steps -->
 
@@ -104,13 +104,15 @@ Start a temporary interactive pod for running the Redis CLI.
 -->
 ## 使用任务填充队列
 
-现在，让我们往队列里添加一些“任务”。在这个例子中，我们的任务是一些将被打印出来的字符串。
+现在，让我们往队列里添加一些 “任务”。在这个例子中，我们的任务是一些将被打印出来的字符串。
 
-启动一个临时的可交互的 pod 用于运行 Redis 命令行界面。
+启动一个临时的可交互的 Pod 用于运行 Redis 命令行界面。
 
 ```shell
 kubectl run -i --tty temp --image redis --command "/bin/sh"
 ```
+
+输出类似于：
 ```
 Waiting for pod default/redis2-c7h78 to be running, status is Pending, pod ready: false
 Hit enter for command prompt
@@ -119,7 +121,7 @@ Hit enter for command prompt
 <!--
 Now hit enter, start the redis CLI, and create a list with some work items in it.
 -->
-现在按回车键，启动 redis 命令行界面，然后创建一个存在若干个工作项的列表。
+现在按回车键，启动 Redis 命令行界面，然后创建一个存在若干个工作项的列表。
 
 ```shell
 # redis-cli -h redis
@@ -178,17 +180,17 @@ called rediswq.py ([Download](/examples/application/job/redis/rediswq.py)).
 -->
 ## 创建镜像
 
-现在我们已经准备好创建一个我们要运行的镜像
+现在我们已经准备好创建一个我们要运行的镜像。
 
-我们会使用一个带有 redis 客户端的 python 工作程序从消息队列中读出消息。
+我们会使用一个带有 Redis 客户端的 Python 工作程序从消息队列中读出消息。
 
-这里提供了一个简单的 Redis 工作队列客户端库，叫 rediswq.py ([下载](/examples/application/job/redis/rediswq.py))。
+这里提供了一个简单的 Redis 工作队列客户端库，名为 rediswq.py ([下载](/examples/application/job/redis/rediswq.py))。
 
 <!--
 The "worker" program in each Pod of the Job uses the work queue
 client library to get work.  Here it is:
 -->
-Job 中每个 Pod 内的 “工作程序” 使用工作队列客户端库获取工作。如下：
+Job 中每个 Pod 内的 “工作程序” 使用工作队列客户端库获取工作。具体如下：
 
 {{< codenew language="python" file="application/job/redis/worker.py" >}}
 
@@ -226,7 +228,7 @@ You need to push to a public repository or [configure your cluster to be able to
 your private repository](/docs/concepts/containers/images/).
 -->
 你需要将镜像 push 到一个公共仓库或者
-[配置集群访问你的私有仓库](/zh/docs/concepts/containers/images/)。
+[配置集群访问你的私有仓库](/zh-cn/docs/concepts/containers/images/)。
 
 <!--
 If you are using [Google Container
@@ -235,7 +237,7 @@ your app image with your project ID, and push to GCR. Replace
 `<project>` with your project ID.
 -->
 如果你使用的是 [Google Container Registry](https://cloud.google.com/tools/container-registry/)，
-请先用你的 project ID 给你的镜像打上标签，然后 push 到 GCR 。请将 `<project>` 替换为你自己的 project ID
+请先用你的 project ID 给你的镜像打上标签，然后 push 到 GCR 。请将 `<project>` 替换为你自己的 project ID。
 
 ```shell
 docker tag job-wq-2 gcr.io/<project>/job-wq-2
@@ -249,7 +251,7 @@ Here is the job definition:
 -->
 ## 定义一个 Job
 
-这是 job 定义：
+这是 Job 定义：
 
 {{< codenew file="application/job/redis/job.yaml" >}}
 
@@ -257,7 +259,7 @@ Here is the job definition:
 Be sure to edit the job template to
 change `gcr.io/myproject` to your own path.
 -->
-请确保将 job 模板中的 `gcr.io/myproject` 更改为你自己的路径。
+请确保将 Job 模板中的 `gcr.io/myproject` 更改为你自己的路径。
 
 <!--
 In this example, each pod works on several items from the queue and then exits when there are no more items.
@@ -268,12 +270,12 @@ exits with success, the controller knows the work is done, and the Pods will exi
 So, we set the completion count of the Job to 1.  The job controller will wait for the other pods to complete
 too.
 -->
-在这个例子中，每个 pod 处理了队列中的多个项目，直到队列中没有项目时便退出。
+在这个例子中，每个 Pod 处理了队列中的多个项目，直到队列中没有项目时便退出。
 因为是由工作程序自行检测工作队列是否为空，并且 Job 控制器不知道工作队列的存在，
 这依赖于工作程序在完成工作时发出信号。
 工作程序以成功退出的形式发出信号表示工作队列已经为空。
 所以，只要有任意一个工作程序成功退出，控制器就知道工作已经完成了，所有的 Pod 将很快会退出。
-因此，我们将 Job 的完成计数（Completion Count）设置为 1 。
+因此，我们将 Job 的完成计数（Completion Count）设置为 1。
 尽管如此，Job 控制器还是会等待其它 Pod 完成。
 
 <!--
@@ -283,7 +285,7 @@ So, now run the Job:
 -->
 ## 运行 Job
 
-现在运行这个 Job ：
+现在运行这个 Job：
 
 ```shell
 kubectl apply -f ./job.yaml
@@ -325,12 +327,13 @@ Events:
   33s          33s         1        {job-controller }                Normal      SuccessfulCreate  Created pod: job-wq-2-lglf8
 ```
 
-查看日志：
+运行以下命令查看日志：
 
 ```shell
 kubectl logs pods/job-wq-2-7r7b2
 ```
 
+日志类似于：
 ```
 Worker with sessionID: bbd72d0a-9e5c-4dd6-abf6-416cc267991f
 Initial queue state: empty=False
@@ -342,7 +345,7 @@ Working on lemon
 <!--
 As you can see, one of our pods worked on several work units.
 -->
-你可以看到，其中的一个 pod 处理了若干个工作单元。
+你可以看到，其中的一个 Pod 处理了若干个工作单元。
 
 <!-- discussion -->
 
@@ -356,7 +359,7 @@ If running a queue service or modifying your containers to use a work queue is i
 want to consider one of the other [job patterns](/docs/concepts/jobs/run-to-completion-finite-workloads/#job-patterns).
 -->
 如果你不方便运行一个队列服务或者修改你的容器用于运行一个工作队列，你可以考虑其它的
-[Job 模式](/zh/docs/concepts/workloads/controllers/job/#job-patterns)。
+[Job 模式](/zh-cn/docs/concepts/workloads/controllers/job/#job-patterns)。
 
 <!--
 If you have a continuous stream of background processing work to run, then
diff --git a/content/zh-cn/docs/tasks/job/indexed-parallel-processing-static.md b/content/zh-cn/docs/tasks/job/indexed-parallel-processing-static.md
new file mode 100644
index 0000000000..a4fe194258
--- /dev/null
+++ b/content/zh-cn/docs/tasks/job/indexed-parallel-processing-static.md
@@ -0,0 +1,286 @@
+---
+title: 使用索引作业完成静态工作分配下的并行处理
+content_type: task
+min-kubernetes-server-version: v1.21
+weight: 30
+---
+<!-- 
+title: Indexed Job for Parallel Processing with Static Work Assignment
+content_type: task
+min-kubernetes-server-version: v1.21
+weight: 30
+-->
+
+{{< feature-state for_k8s_version="v1.24" state="stable" >}}
+
+<!-- overview -->
+
+<!-- 
+In this example, you will run a Kubernetes Job that uses multiple parallel
+worker processes.
+Each worker is a different container running in its own Pod. The Pods have an
+_index number_ that the control plane sets automatically, which allows each Pod
+to identify which part of the overall task to work on.
+-->
+在此示例中，你将运行一个使用多个并行工作进程的 Kubernetes Job。
+每个 worker 都是在自己的 Pod 中运行的不同容器。
+Pod 具有控制平面自动设置的**索引编号（index number）**，
+这些编号使得每个 Pod 能识别出要处理整个任务的哪个部分。
+
+<!-- 
+The pod index is available in the {{< glossary_tooltip text="annotation" term_id="annotation" >}}
+`batch.kubernetes.io/job-completion-index` as a string representing its
+decimal value. In order for the containerized task process to obtain this index,
+you can publish the value of the annotation using the [downward API](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/#the-downward-api)
+mechanism.
+For convenience, the control plane automatically sets the downward API to
+expose the index in the `JOB_COMPLETION_INDEX` environment variable.
+-->
+Pod 索引在{{<glossary_tooltip text="注解" term_id="annotation" >}}
+`batch.kubernetes.io/job-completion-index` 中呈现，具体表示为一个十进制值字符串。
+为了让容器化的任务进程获得此索引，你可以使用
+[downward API](/zh-cn/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/#the-downward-api)
+机制发布注解的值。为方便起见，
+控制平面自动设置 Downward API 以在 `JOB_COMPLETION_INDEX` 环境变量中公开索引。
+
+<!-- 
+Here is an overview of the steps in this example:
+
+1. **Define a Job manifest using indexed completion**.
+   The downward API allows you to pass the pod index annotation as an
+   environment variable or file to the container.
+2. **Start an `Indexed` Job based on that manifest**.
+-->
+以下是此示例中步骤的概述：
+
+1. **定义使用带索引完成信息的 Job 清单**。
+   Downward API 使你可以将 Pod 索引注解作为环境变量或文件传递给容器。
+2. **根据该清单启动一个带索引（`Indexed`）的 Job**。
+
+## {{% heading "prerequisites" %}}
+
+<!-- 
+You should already be familiar with the basic,
+non-parallel, use of [Job](/docs/concepts/workloads/controllers/job/).
+-->
+你应该已经熟悉 [Job](/zh-cn/docs/concepts/workloads/controllers/job/) 的基本的、非并行的用法。
+
+{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+
+<!-- steps -->
+
+<!-- 
+## Choose an approach
+ -->
+## 选择一种方法 {#choose-an-approach}
+
+<!-- 
+To access the work item from the worker program, you have a few options:
+
+1. Read the `JOB_COMPLETION_INDEX` environment variable. The Job
+   {{< glossary_tooltip text="controller" term_id="controller" >}}
+   automatically links this variable to the annotation containing the completion
+   index.
+1. Read a file that contains the completion index.
+1. Assuming that you can't modify the program, you can wrap it with a script
+   that reads the index using any of the methods above and converts it into
+   something that the program can use as input.
+ -->
+要从工作程序访问工作项，你有几个选项：
+
+1. 读取 `JOB_COMPLETION_INDEX` 环境变量。Job
+   {{< glossary_tooltip text="控制器" term_id="controller" >}}
+   自动将此变量链接到包含完成索引的注解。
+1. 读取包含完整索引的文件。
+1. 假设你无法修改程序，你可以使用脚本包装它，
+   该脚本使用上述任意方法读取索引并将其转换为程序可以用作输入的内容。
+
+<!-- 
+For this example, imagine that you chose option 3 and you want to run the
+[rev](https://man7.org/linux/man-pages/man1/rev.1.html) utility. This
+program accepts a file as an argument and prints its content reversed.
+-->
+对于此示例，假设你选择了选项 3 并且想要运行
+[rev](https://man7.org/linux/man-pages/man1/rev.1.html) 实用程序。
+这个程序接受一个文件作为参数并按逆序打印其内容。
+
+```shell
+rev data.txt
+```
+
+<!--  
+You'll use the `rev` tool from the
+[`busybox`](https://hub.docker.com/_/busybox) container image.
+-->
+你将使用 [`busybox`](https://hub.docker.com/_/busybox) 容器镜像中的 `rev` 工具。
+
+<!-- 
+As this is only an example, each Pod only does a tiny piece of work (reversing a short
+string). In a real workload you might, for example, create a Job that represents
+ the
+task of producing 60 seconds of video based on scene data.
+Each work item in the video rendering Job would be to render a particular
+frame of that video clip. Indexed completion would mean that each Pod in
+the Job knows which frame to render and publish, by counting frames from
+the start of the clip.
+-->
+由于这只是一个例子，每个 Pod 只做一小部分工作（反转一个短字符串）。
+例如，在实际工作负载中，你可能会创建一个表示基于场景数据制作 60 秒视频任务的 Job 。
+此视频渲染 Job 中的每个工作项都将渲染该视频剪辑的特定帧。
+索引完成意味着 Job 中的每个 Pod 都知道通过从剪辑开始计算帧数，来确定渲染和发布哪一帧。
+
+<!-- 
+## Define an Indexed Job 
+ 
+Here is a sample Job manifest that uses `Indexed` completion mode:
+-->
+## 定义索引作业 {#define-an-indexed-job}
+
+这是一个使用 `Indexed` 完成模式的示例 Job 清单：
+
+{{< codenew language="yaml" file="application/job/indexed-job.yaml" >}}
+
+<!-- 
+In the example above, you use the builtin `JOB_COMPLETION_INDEX` environment
+variable set by the Job controller for all containers. An [init container](/docs/concepts/workloads/pods/init-containers/)
+maps the index to a static value and writes it to a file that is shared with the
+container running the worker through an [emptyDir volume](/docs/concepts/storage/volumes/#emptydir).
+Optionally, you can [define your own environment variable through the downward
+API](/docs/tasks/inject-data-application/environment-variable-expose-pod-information/)
+to publish the index to containers. You can also choose to load a list of values
+from a [ConfigMap as an environment variable or file](/docs/tasks/configure-pod-container/configure-pod-configmap/).
+-->
+在上面的示例中，你使用 Job 控制器为所有容器设置的内置 `JOB_COMPLETION_INDEX` 环境变量。
+[Init 容器](/zh-cn/docs/concepts/workloads/pods/init-containers/)
+将索引映射到一个静态值，并将其写入一个文件，该文件通过
+[emptyDir 卷](/zh-cn/docs/concepts/storage/volumes/#emptydir)
+与运行 worker 的容器共享。或者，你可以
+[通过 Downward API 定义自己的环境变量](/zh-cn/docs/tasks/inject-data-application/environment-variable-expose-pod-information/)
+将索引发布到容器。你还可以选择从
+[包含 ConfigMap 的环境变量或文件](/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap/)
+加载值列表。
+
+<!-- 
+Alternatively, you can directly [use the downward API to pass the annotation
+value as a volume file](/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/#store-pod-fields),
+like shown in the following example:
+-->
+或者也可以直接
+[使用 Downward API 将注解值作为卷文件传递](/zh-cn/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/#store-pod-fields)，
+如下例所示：
+
+{{< codenew language="yaml" file="application/job/indexed-job-vol.yaml" >}}
+
+<!-- 
+## Running the Job 
+
+Now run the Job: 
+-->
+## 执行 Job {running-the-job}
+
+现在执行 Job：
+
+```shell
+# 使用第一种方法（依赖于 $JOB_COMPLETION_INDEX）
+kubectl apply -f https://kubernetes.io/examples/application/job/indexed-job.yaml
+```
+
+<!-- 
+When you create this Job, the control plane creates a series of Pods, one for each index you specified. The value of `.spec.parallelism` determines how many can run at once whereas `.spec.completions` determines how many Pods the Job creates in total.
+
+Because `.spec.parallelism` is less than `.spec.completions`, the control plane waits for some of the first Pods to complete before starting more of them.
+
+Once you have created the Job, wait a moment then check on progress:
+-->
+当你创建此 Job 时，控制平面会创建一系列 Pod，你指定的每个索引都会运行一个 Pod。
+`.spec.parallelism` 的值决定了一次可以运行多少个 Pod，
+而 `.spec.completions` 决定了 Job 总共创建了多少个 Pod。
+
+因为 `.spec.parallelism` 小于 `.spec.completions`，
+所以控制平面在启动更多 Pod 之前，将等待第一批的某些 Pod 完成。
+
+创建 Job 后，稍等片刻，就能检查进度：
+
+```shell
+kubectl describe jobs/indexed-job
+```
+
+<!-- 
+The output is similar to: 
+-->
+输出类似于：
+
+```
+Name:              indexed-job
+Namespace:         default
+Selector:          controller-uid=bf865e04-0b67-483b-9a90-74cfc4c3e756
+Labels:            controller-uid=bf865e04-0b67-483b-9a90-74cfc4c3e756
+                   job-name=indexed-job
+Annotations:       <none>
+Parallelism:       3
+Completions:       5
+Start Time:        Thu, 11 Mar 2021 15:47:34 +0000
+Pods Statuses:     2 Running / 3 Succeeded / 0 Failed
+Completed Indexes: 0-2
+Pod Template:
+  Labels:  controller-uid=bf865e04-0b67-483b-9a90-74cfc4c3e756
+           job-name=indexed-job
+  Init Containers:
+   input:
+    Image:      docker.io/library/bash
+    Port:       <none>
+    Host Port:  <none>
+    Command:
+      bash
+      -c
+      items=(foo bar baz qux xyz)
+      echo ${items[$JOB_COMPLETION_INDEX]} > /input/data.txt
+
+    Environment:  <none>
+    Mounts:
+      /input from input (rw)
+  Containers:
+   worker:
+    Image:      docker.io/library/busybox
+    Port:       <none>
+    Host Port:  <none>
+    Command:
+      rev
+      /input/data.txt
+    Environment:  <none>
+    Mounts:
+      /input from input (rw)
+  Volumes:
+   input:
+    Type:       EmptyDir (a temporary directory that shares a pod's lifetime)
+    Medium:
+    SizeLimit:  <unset>
+Events:
+  Type    Reason            Age   From            Message
+  ----    ------            ----  ----            -------
+  Normal  SuccessfulCreate  4s    job-controller  Created pod: indexed-job-njkjj
+  Normal  SuccessfulCreate  4s    job-controller  Created pod: indexed-job-9kd4h
+  Normal  SuccessfulCreate  4s    job-controller  Created pod: indexed-job-qjwsz
+  Normal  SuccessfulCreate  1s    job-controller  Created pod: indexed-job-fdhq5
+  Normal  SuccessfulCreate  1s    job-controller  Created pod: indexed-job-ncslj
+```
+
+<!-- 
+In this example, you run the Job with custom values for each index. You can
+inspect the output of one of the pods:
+-->
+在此示例中，你使用每个索引的自定义值运行 Job。
+你可以检查其中一个 Pod 的输出：
+
+```shell
+kubectl logs indexed-job-fdhq5 # 更改它以匹配来自该 Job 的 Pod 的名称
+```
+
+<!-- 
+The output is similar to: 
+-->
+输出类似于：
+
+```
+xuq
+```
diff --git a/content/zh/docs/tasks/job/parallel-processing-expansion.md b/content/zh-cn/docs/tasks/job/parallel-processing-expansion.md
similarity index 95%
rename from content/zh/docs/tasks/job/parallel-processing-expansion.md
rename to content/zh-cn/docs/tasks/job/parallel-processing-expansion.md
index 9e2c0a2c86..3044257481 100644
--- a/content/zh/docs/tasks/job/parallel-processing-expansion.md
+++ b/content/zh-cn/docs/tasks/job/parallel-processing-expansion.md
@@ -39,7 +39,7 @@ this pattern fits more realistic use cases.
 You should be familiar with the basic,
 non-parallel, use of [Job](/docs/concepts/workloads/controllers/job/).
 -->
-你应先熟悉基本的、非并行的 [Job](/zh/docs/concepts/workloads/controllers/job/)
+你应先熟悉基本的、非并行的 [Job](/zh-cn/docs/concepts/workloads/controllers/job/)
 的用法。
 
 {{< include "task-tutorial-prereqs.md" >}}
@@ -258,7 +258,7 @@ to contain only certain characters.
 
 在[第一个例子](#create-jobs-based-on-a-template)中，模板的每个示例都有一个参数
 而该参数也用在 Job 名称中。不过，对象
-[名称](/zh/docs/concepts/overview/working-with-objects/names/#names)
+[名称](/zh-cn/docs/concepts/overview/working-with-objects/names/#names)
 被限制只能使用某些字符。
 
 <!--
@@ -279,13 +279,13 @@ First, copy and paste the following template of a Job object, into a file called
 首先，复制下面的 Job 对象模板到一个名为 `job.yaml.jinja2` 的文件。
 
 ```liquid
-{%- set params = [{ "name": "apple", "url": "http://dbpedia.org/resource/Apple", },
+{% set params = [{ "name": "apple", "url": "http://dbpedia.org/resource/Apple", },
                   { "name": "banana", "url": "http://dbpedia.org/resource/Banana", },
                   { "name": "cherry", "url": "http://dbpedia.org/resource/Cherry" }]
 %}
-{%- for p in params %}
-{%- set name = p["name"] %}
-{%- set url = p["url"] %}
+{% for p in params %}
+{% set name = p["name"] %}
+{% set url = p["url"] %}
 ---
 apiVersion: batch/v1
 kind: Job
@@ -302,10 +302,10 @@ spec:
     spec:
       containers:
       - name: c
-        image: busybox
+        image: busybox:1.28
         command: ["sh", "-c", "echo Processing URL {{ url }} && sleep 5"]
       restartPolicy: Never
-{%- endfor %}
+{% endfor %}
 ```
 
 <!--
@@ -453,7 +453,7 @@ that you can use if you wish.
 -->
 {{< note >}}
 标签键 `jobgroup` 没什么特殊的，也不是保留字。 你可以选择你自己的标签方案。
-如果愿意，有一些[建议的标签](/zh/docs/concepts/overview/working-with-objects/common-labels/#labels)
+如果愿意，有一些[建议的标签](/zh-cn/docs/concepts/overview/working-with-objects/common-labels/#labels)
 可供使用。
 {{< /note >}}
 
@@ -490,8 +490,8 @@ objects.
 You could also consider writing your own [controller](/docs/concepts/architecture/controller/)
 to manage Job objects automatically.
 -->
-还有一些其他[作业模式](/zh/docs/concepts/workloads/controllers/job/#job-patterns)
+还有一些其他[作业模式](/zh-cn/docs/concepts/workloads/controllers/job/#job-patterns)
 可供选择，这些模式都能用来处理大量任务而又不会创建过多的 Job 对象。
 
-你也可以考虑编写自己的[控制器](/zh/docs/concepts/architecture/controller/)
+你也可以考虑编写自己的[控制器](/zh-cn/docs/concepts/architecture/controller/)
 来自动管理 Job 对象。
diff --git a/content/zh/docs/tasks/kubelet-credential-provider/kubelet-credential-provider.md b/content/zh-cn/docs/tasks/kubelet-credential-provider/kubelet-credential-provider.md
similarity index 84%
rename from content/zh/docs/tasks/kubelet-credential-provider/kubelet-credential-provider.md
rename to content/zh-cn/docs/tasks/kubelet-credential-provider/kubelet-credential-provider.md
index eb73c471c3..85cfc7d046 100644
--- a/content/zh/docs/tasks/kubelet-credential-provider/kubelet-credential-provider.md
+++ b/content/zh-cn/docs/tasks/kubelet-credential-provider/kubelet-credential-provider.md
@@ -13,7 +13,7 @@ description: Configure the kubelet's image credential provider plugin
 content_type: task
 -->
 
-{{< feature-state for_k8s_version="v1.20" state="alpha" >}}
+{{< feature-state for_k8s_version="v1.24" state="beta" >}}
 
 <!-- overview -->
 
@@ -48,7 +48,7 @@ This guide demonstrates how to configure the kubelet's image credential provider
 
 <!-- 
 * The kubelet image credential provider is introduced in v1.20 as an alpha feature. As with other alpha features,
-a feature gate `KubeletCredentialProviders` must be enabled on only the kubelet for the feature to work.
+  a feature gate `KubeletCredentialProviders` must be enabled on only the kubelet for the feature to work.
 * A working implementation of a credential provider exec plugin. You can build your own plugin or use one provided by cloud providers.
 -->
 * kubelet 镜像凭证提供程序在 v1.20 版本作为 alpha 功能引入。
@@ -73,12 +73,14 @@ every node in your cluster and stored in a known directory. The directory will b
 ## Configuring the Kubelet
 
 In order to use this feature, the kubelet expects two flags to be set:
+
 * `--image-credential-provider-config` - the path to the credential provider plugin config file.
 * `--image-credential-provider-bin-dir` - the path to the directory where credential provider plugin binaries are located.
 -->
 ## 配置 kubelet  {#configuring-the-kubelet}
 
 为了使用这个特性，kubelet 需要设置以下两个标志：
+
 * `--image-credential-provider-config` —— 凭据提供程序插件配置文件的路径。
 * `--image-credential-provider-bin-dir` —— 凭据提供程序插件二进制文件所在目录的路径。
 
@@ -86,18 +88,19 @@ In order to use this feature, the kubelet expects two flags to be set:
 ### Configure a kubelet credential provider
 
 The configuration file passed into `--image-credential-provider-config` is read by the kubelet to determine which exec plugins
-should be invoked for which container images. Here's an example configuration file you may end up using if you are using the [ECR](https://aws.amazon.com/ecr/)-based plugin:
+should be invoked for which container images. Here's an example configuration file you may end up using if you are using the
+[ECR](https://aws.amazon.com/ecr/)-based plugin:
 -->
 ### 配置 kubelet 凭据提供程序  {#configure-a-kubelet-credential-provider}
 
-kubelet 会读取传入 `--image-credential-provider-config` 的配置文件文件，
+kubelet 会读取传入 `--image-credential-provider-config` 的配置文件，
 以确定应该为哪些容器镜像调用哪些 exec 插件。
-如果你正在使用基于 [ECR](https://aws.amazon.com/ecr/) 插件，
+如果你正在使用基于 [ECR](https://aws.amazon.com/ecr/) 的插件，
 这里有个样例配置文件你可能最终会使用到：
 
 ```yaml
-kind: CredentialProviderConfig
 apiVersion: kubelet.config.k8s.io/v1alpha1
+kind: CredentialProviderConfig
 # providers 是将由 kubelet 启用的凭证提供程序插件列表。
 # 多个提供程序可能与单个镜像匹配，在这种情况下，来自所有提供程序的凭据将返回到 kubelet。
 # 如果为单个镜像调用多个提供程序，则结果会合并。
@@ -130,11 +133,11 @@ providers:
     # - *.*.registry.io
     # - registry.io:8080/path
     matchImages:
-    - "*.dkr.ecr.*.amazonaws.com"
-    - "*.dkr.ecr.*.amazonaws.cn"
-    - "*.dkr.ecr-fips.*.amazonaws.com"
-    - "*.dkr.ecr.us-iso-east-1.c2s.ic.gov"
-    - "*.dkr.ecr.us-isob-east-1.sc2s.sgov.gov"
+      - "*.dkr.ecr.*.amazonaws.com"
+      - "*.dkr.ecr.*.amazonaws.cn"
+      - "*.dkr.ecr-fips.*.amazonaws.com"
+      - "*.dkr.ecr.us-iso-east-1.c2s.ic.gov"
+      - "*.dkr.ecr.us-isob-east-1.sc2s.sgov.gov"
     # defaultCacheDuration 是插件将在内存中缓存凭据的默认持续时间
     # 如果插件响应中未提供缓存持续时间。此字段是必需的。
     defaultCacheDuration: "12h"
@@ -145,30 +148,36 @@ providers:
     # 执行命令时传递给命令的参数。
     # +可选
     args:
-    - get-credentials
+      - get-credentials
     # env 定义了额外的环境变量以暴露给进程。
     # 这些与主机环境以及 client-go 用于将参数传递给插件的变量结合在一起。
     # +可选
     env:
-    - name: AWS_PROFILE
-      value: example_profile
+      - name: AWS_PROFILE
+        value: example_profile
 ```
 
 <!-- 
 The `providers` field is a list of enabled plugins used by the kubelet. Each entry has a few required fields:
-* `name`: the name of the plugin which MUST match the name of the executable binary that exists in the directory passed into `--image-credential-provider-bin-dir`.
-* `matchImages`: a list of strings used to match against images in order to determine if this provider should be invoked. More on this below.
-* `defaultCacheDuration`: the default duration the kubelet will cache credentials in-memory if a cache duration was not specified by the plugin.
-* `apiVersion`: the api version that the kubelet and the exec plugin will use when communicating.
 
-Each credential provider can also be given optional args and environment variables as well. Consult the plugin implementors to determine what set of arguments and environment variables are required for a given plugin.
+* `name`: the name of the plugin which MUST match the name of the executable binary that exists
+  in the directory passed into `--image-credential-provider-bin-dir`.
+* `matchImages`: a list of strings used to match against images in order to determine
+  if this provider should be invoked. More on this below.
+* `defaultCacheDuration`: the default duration the kubelet will cache credentials in-memory
+  if a cache duration was not specified by the plugin.
+* `apiVersion`: the API version that the kubelet and the exec plugin will use when communicating.
+
+Each credential provider can also be given optional args and environment variables as well.
+Consult the plugin implementors to determine what set of arguments and environment variables are required for a given plugin.
 -->
 `providers` 字段是 kubelet 使用的已启用插件列表。每个条目都有几个必填字段：
+
 * `name`：插件的名称，必须与传入`--image-credential-provider-bin-dir`
   的目录中存在的可执行二进制文件的名称相匹配。
-* `matchImages`：用于匹配图像以确定是否应调用此提供程序的字符串列表。更多相关信息如下。
+* `matchImages`：用于匹配镜像以确定是否应调用此提供程序的字符串列表。更多相关信息如下。
 * `defaultCacheDuration`：如果插件未指定缓存持续时间，kubelet 将在内存中缓存凭据的默认持续时间。
-* `apiVersion`：kubelet 和 exec 插件在通信时将使用的 api 版本。
+* `apiVersion`：kubelet 和 exec 插件在通信时将使用的 API 版本。
 
 每个凭证提供程序也可以被赋予可选的参数和环境变量。
 咨询插件实现者以确定给定插件需要哪些参数和环境变量集。
@@ -207,8 +216,20 @@ Some example values of `matchImages` patterns are:
 * 如果 imageMatch 包含端口，则该端口也必须在镜像中匹配。
 
 `matchImages` 模式的一些示例值：
+
 * `123456789.dkr.ecr.us-east-1.amazonaws.com`
 * `*.azurecr.io`
 * `gcr.io`
 * `*.*.registry.io`
 * `foo.registry.io:8080/path`
+
+## {{% heading "whatsnext" %}}
+
+<!--
+* Read the details about `CredentialProviderConfig` in the
+  [kubelet configuration API (v1alpha1) reference](/docs/reference/config-api/kubelet-config.v1alpha1/).
+* Read the [kubelet credential provider API reference (v1alpha1)](/docs/reference/config-api/kubelet-credentialprovider.v1alpha1/).
+-->
+* 阅读 [kubelet 配置 API (v1alpha1) 参考](/zh-cn/docs/reference/config-api/kubelet-config.v1alpha1/)中有关 `CredentialProviderConfig` 的详细信息。
+* 阅读 [kubelet 凭据提供程序 API 参考 (v1alpha1)](/docs/reference/config-api/kubelet-credentialprovider.v1alpha1/)。
+
diff --git a/content/zh/docs/tasks/manage-daemon/_index.md b/content/zh-cn/docs/tasks/manage-daemon/_index.md
similarity index 100%
rename from content/zh/docs/tasks/manage-daemon/_index.md
rename to content/zh-cn/docs/tasks/manage-daemon/_index.md
diff --git a/content/zh/docs/tasks/manage-daemon/rollback-daemon-set.md b/content/zh-cn/docs/tasks/manage-daemon/rollback-daemon-set.md
similarity index 96%
rename from content/zh/docs/tasks/manage-daemon/rollback-daemon-set.md
rename to content/zh-cn/docs/tasks/manage-daemon/rollback-daemon-set.md
index da87cb6015..d70d84dfc0 100644
--- a/content/zh/docs/tasks/manage-daemon/rollback-daemon-set.md
+++ b/content/zh-cn/docs/tasks/manage-daemon/rollback-daemon-set.md
@@ -1,6 +1,4 @@
 ---
-approvers:
-- janetkuo
 title: 对 DaemonSet 执行回滚
 content_type: task
 weight: 20
@@ -29,7 +27,7 @@ This page shows how to perform a rollback on a {{< glossary_tooltip term_id="dae
 You should already know how to [perform a rolling update on a
  DaemonSet](/docs/tasks/manage-daemon/update-daemon-set/).
 -->
-你应该已经了解如何[为 DaemonSet 执行滚东更新](/zh/docs/tasks/manage-daemon/update-daemon-set/)。
+你应该已经了解如何[为 DaemonSet 执行滚东更新](/zh-cn/docs/tasks/manage-daemon/update-daemon-set/)。
 
 <!-- steps -->
 
@@ -222,7 +220,7 @@ have revision 1 and 2 in the system, and roll back from revision 2 to revision
 注意 DaemonSet 修订版本只会正向变化。也就是说，回滚完成后，所回滚到的
 `ControllerRevision` 版本号 (`.revision` 字段) 会增加。
 例如，如果用户在系统中有版本 1 和版本 2，并从版本 2 回滚到版本 1，
-带有 `.revision: 1` 的`ControllerRevision` 将变为 `.revision: 3`。
+带有 `.revision: 1` 的 `ControllerRevision` 将变为 `.revision: 3`。
 {{< /note >}}
 
 <!--
@@ -233,6 +231,4 @@ have revision 1 and 2 in the system, and roll back from revision 2 to revision
 -->
 ## 故障排查
 
-* 参阅 [DaemonSet 滚动升级故障排除](/zh/docs/tasks/manage-daemon/update-daemon-set/#troubleshooting)。
-
-
+* 参阅 [DaemonSet 滚动升级故障排除](/zh-cn/docs/tasks/manage-daemon/update-daemon-set/#troubleshooting)。
diff --git a/content/zh/docs/tasks/manage-daemon/update-daemon-set.md b/content/zh-cn/docs/tasks/manage-daemon/update-daemon-set.md
similarity index 75%
rename from content/zh/docs/tasks/manage-daemon/update-daemon-set.md
rename to content/zh-cn/docs/tasks/manage-daemon/update-daemon-set.md
index 6539786c25..7c4d9ff6cc 100644
--- a/content/zh/docs/tasks/manage-daemon/update-daemon-set.md
+++ b/content/zh-cn/docs/tasks/manage-daemon/update-daemon-set.md
@@ -12,6 +12,7 @@ content_type: task
 -->
 
 <!-- overview -->
+
 <!--
 This page shows how to perform a rolling update on a DaemonSet.
 -->
@@ -28,7 +29,7 @@ This page shows how to perform a rolling update on a DaemonSet.
 
 DaemonSet has two update strategy types:
 -->
-## DaemonSet 更新策略
+## DaemonSet 更新策略    {#daemonset-update-strategy}
 
 DaemonSet 有两种更新策略：
 
@@ -40,8 +41,8 @@ DaemonSet 有两种更新策略：
 * `RollingUpdate`: This is the default update strategy.  
   With `RollingUpdate` update strategy, after you update a
   DaemonSet template, old DaemonSet pods will be killed, and new DaemonSet pods
-  will be created automatically, in a controlled fashion.
-  At most one pod of the DaemonSet will be running on each node during the whole update process.
+  will be created automatically, in a controlled fashion. At most one pod of
+  the DaemonSet will be running on each node during the whole update process.
 -->
 
 * `OnDelete`: 使用 `OnDelete` 更新策略时，在更新 DaemonSet 模板后，只有当你手动删除老的
@@ -56,30 +57,32 @@ DaemonSet 有两种更新策略：
 To enable the rolling update feature of a DaemonSet, you must set its
 `.spec.updateStrategy.type` to `RollingUpdate`.
 -->
-## 执行滚动更新
+## 执行滚动更新    {#performing-a-rolling-update}
 
 要启用 DaemonSet 的滚动更新功能，必须设置 `.spec.updateStrategy.type` 为 `RollingUpdate`。
 
 <!--
-You may want to set 
-[`.spec.updateStrategy.rollingUpdate.maxUnavailable`](/docs/concepts/workloads/controllers/deployment/#max-unavailable) 
+You may want to set
+[`.spec.updateStrategy.rollingUpdate.maxUnavailable`](/docs/reference/kubernetes-api/workload-resources/daemon-set-v1/#DaemonSetSpec) 
 (default to 1),
-[`.spec.minReadySeconds`](/docs/concepts/workloads/controllers/deployment/#min-ready-seconds) 
-(default to 0) and 
-[`.spec.maxSurge`](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#max-surge) 
-(a beta feature and defaults to 25%) as well.
+[`.spec.minReadySeconds`](/docs/reference/kubernetes-api/workload-resources/daemon-set-v1/#DaemonSetSpec)
+(default to 0) and
+[`.spec.updateStrategy.rollingUpdate.maxSurge`](/docs/reference/kubernetes-api/workload-resources/daemon-set-v1/#DaemonSetSpec)
+(a beta feature and defaults to 0) as well.
+
 -->
 你可能想设置
-[`.spec.updateStrategy.rollingUpdate.maxUnavailable`](/zh/docs/concepts/workloads/controllers/deployment/#max-unavailable) (默认为 1)，
-[`.spec.minReadySeconds`](/zh/docs/concepts/workloads/controllers/deployment/#min-ready-seconds) (默认为 0) 和
-[`.spec.maxSurge`](/zh/docs/concepts/workloads/controllers/deployment/#max-surge) (一种 Beta 阶段的特性，默认为 25%) 
+[`.spec.updateStrategy.rollingUpdate.maxUnavailable`](/zh-cn/docs/reference/kubernetes-api/workload-resources/daemon-set-v1/#DaemonSetSpec) (默认为 1)，
+[`.spec.minReadySeconds`](/zh-cn/docs/reference/kubernetes-api/workload-resources/daemon-set-v1/#DaemonSetSpec) (默认为 0) 和
+[`.spec.updateStrategy.rollingUpdate.maxSurge`](/zh-cn/docs/reference/kubernetes-api/workload-resources/daemon-set-v1/#DaemonSetSpec)
+（一种 Beta 阶段的特性，默认为 0）。
 
 <!--
 ### Creating a DaemonSet with `RollingUpdate` update strategy
 
 This YAML file specifies a DaemonSet with an update strategy as 'RollingUpdate'
 -->
-### 创建带有 `RollingUpdate` 更新策略的 DaemonSet
+### 创建带有 `RollingUpdate` 更新策略的 DaemonSet    {#creating-a-daemonset-with-rollingupdate-update-strategy}
 
 下面的 YAML 包含一个 DaemonSet，其更新策略为 'RollingUpdate'：
 
@@ -111,7 +114,7 @@ kubectl apply -f https://k8s.io/examples/controllers/fluentd-daemonset.yaml
 Check the update strategy of your DaemonSet, and make sure it's set to
 `RollingUpdate`:
 -->
-### 检查 DaemonSet 的滚动更新策略
+### 检查 DaemonSet 的滚动更新策略    {#checking-daemonset-rollingupdate-update-strategy}
 
 首先，检查 DaemonSet 的更新策略，确保已经将其设置为 `RollingUpdate`:
 
@@ -150,7 +153,7 @@ manifest accordingly.
 Any updates to a `RollingUpdate` DaemonSet `.spec.template` will trigger a rolling
 update. Let's update the DaemonSet by applying a new YAML file. This can be done with several different `kubectl` commands.
 -->
-### 更新 DaemonSet 模板
+### 更新 DaemonSet 模板    {#updating-a-daemonset-template}
 
 对 `RollingUpdate` DaemonSet 的 `.spec.template` 的任何更新都将触发滚动更新。
 这可以通过几个不同的 `kubectl` 命令来完成。
@@ -164,10 +167,10 @@ If you update DaemonSets using
 [configuration files](/docs/tasks/manage-kubernetes-objects/declarative-config/),
 use `kubectl apply`:
 -->
-#### 声明式命令
+#### 声明式命令    {#declarative-commands}
 
 如果你使用
-[配置文件](/zh/docs/tasks/manage-kubernetes-objects/declarative-config/)
+[配置文件](/zh-cn/docs/tasks/manage-kubernetes-objects/declarative-config/)
 来更新 DaemonSet，请使用 `kubectl apply`:
 
 ```shell
@@ -178,14 +181,14 @@ kubectl apply -f https://k8s.io/examples/controllers/fluentd-daemonset-update.ya
 #### Imperative commands
 
 If you update DaemonSets using
-[imperative commands](/docs/concepts/overview/object-management-kubectl/imperative-command/),
+[imperative commands](/docs/tasks/manage-kubernetes-objects/imperative-command/),
 use `kubectl edit`:
 -->
-#### 指令式命令
+#### 指令式命令    {#imperative-commands}
 
 如果你使用
-[指令式命令](/zh/docs/tasks/manage-kubernetes-objects/imperative-command/)
-来更新 DaemonSets，请使用`kubectl edit`：
+[指令式命令](/zh-cn/docs/tasks/manage-kubernetes-objects/imperative-command/)
+来更新 DaemonSets，请使用 `kubectl edit`：
 
 ```shell
 kubectl edit ds/fluentd-elasticsearch -n kube-system
@@ -197,21 +200,21 @@ kubectl edit ds/fluentd-elasticsearch -n kube-system
 If you only need to update the container image in the DaemonSet template, i.e.
 `.spec.template.spec.containers[*].image`, use `kubectl set image`:
 --->
-##### 只更新容器镜像
+##### 只更新容器镜像    {#updating-only-the-container-image}
 
-如果你只需要更新 DaemonSet 模板里的容器镜像，比如，`.spec.template.spec.containers[*].image`, 
-请使用 `kubectl set image`:
+如果你只需要更新 DaemonSet 模板里的容器镜像，比如 `.spec.template.spec.containers[*].image`，
+请使用 `kubectl set image`：
 
 ```shell
 kubectl set image ds/fluentd-elasticsearch fluentd-elasticsearch=quay.io/fluentd_elasticsearch/fluentd:v2.6.0 -n kube-system
 ```
 
 <!--
-### Step 4: Watching the rolling update status
+### Watching the rolling update status
 
 Finally, watch the rollout status of the latest DaemonSet rolling update:
 -->
-### 监视滚动更新状态
+### 监视滚动更新状态    {#watching-the-rolling-update-status}
 
 最后，观察 DaemonSet 最新滚动更新的进度：
 
@@ -233,9 +236,9 @@ daemonset "fluentd-elasticsearch" successfully rolled out
 
 ### DaemonSet rolling update is stuck
 -->
-## 故障排查
+## 故障排查    {#troubleshooting}
 
-### DaemonSet 滚动更新卡住
+### DaemonSet 滚动更新卡住    {#daemonset-rolling-update-is-stuck}
 
 <!--
 Sometimes, a DaemonSet rolling update may be stuck. Here are some possible
@@ -246,7 +249,7 @@ causes:
 有时，DaemonSet 滚动更新可能卡住，以下是一些可能的原因：
 
 
-#### 一些节点可用资源耗尽
+#### 一些节点可用资源耗尽    {#some-nodes-run-out-of-resources}
 
 <!--
 The rollout is stuck because new DaemonSet pods can't be scheduled on at least one
@@ -257,7 +260,7 @@ When this happens, find the nodes that don't have the DaemonSet pods scheduled o
 by comparing the output of `kubectl get nodes` and the output of:
 -->
 DaemonSet 滚动更新可能会卡住，其 Pod 至少在某个节点上无法调度运行。
-当节点上[可用资源耗尽](/zh/docs/concepts/scheduling-eviction/node-pressure-eviction/)时，
+当节点上[可用资源耗尽](/zh-cn/docs/concepts/scheduling-eviction/node-pressure-eviction/)时，
 这是可能的。
 
 发生这种情况时，通过对 `kubectl get nodes` 和下面命令行的输出作比较，
@@ -281,7 +284,7 @@ either.
 {{< note >}}
 当所删除的 Pod 不受任何控制器管理，也不是多副本的 Pod时，上述操作将导致服务中断。
 同时，上述操作也不会考虑
-[PodDisruptionBudget](/zh/docs/tasks/run-application/configure-pdb/)
+[PodDisruptionBudget](/zh-cn/docs/tasks/run-application/configure-pdb/)
 所施加的约束。
 {{< /note >}}
 
@@ -292,7 +295,7 @@ If the recent DaemonSet template update is broken, for example, the container is
 crash looping, or the container image doesn't exist (often due to a typo),
 DaemonSet rollout won't progress.
 -->
-#### 不完整的滚动更新
+#### 不完整的滚动更新    {#broken-rollout}
 
 如果最近的 DaemonSet 模板更新被破坏了，比如，容器处于崩溃循环状态或者容器镜像不存在
 （通常由于拼写错误），就会发生 DaemonSet 滚动更新中断。
@@ -310,7 +313,7 @@ If `.spec.minReadySeconds` is specified in the DaemonSet, clock skew between
 master and nodes will make DaemonSet unable to detect the right rollout
 progress.
 -->
-#### 时钟偏差
+#### 时钟偏差    {#clock-skew}
 
 如果在 DaemonSet 中指定了 `.spec.minReadySeconds`，主控节点和工作节点之间的时钟偏差会使
 DaemonSet 无法检测到正确的滚动更新进度。
@@ -320,7 +323,7 @@ DaemonSet 无法检测到正确的滚动更新进度。
 
 Delete DaemonSet from a namespace :
 -->
-## 清理
+## 清理    {#clean-up}
 
 从名字空间中删除 DaemonSet：
 
@@ -334,6 +337,6 @@ kubectl delete ds fluentd-elasticsearch -n kube-system
 * See [Performing a rollback on a DaemonSet](/docs/tasks/manage-daemon/rollback-daemon-set/)
 * See [Creating a DaemonSet to adopt existing DaemonSet pods](/docs/concepts/workloads/controllers/daemonset/)
 -->
-* 查看[在 DaemonSet 上执行回滚](/zh/docs/tasks/manage-daemon/rollback-daemon-set/)
-* 查看[创建 DaemonSet 以收养现有 DaemonSet Pod](/zh/docs/concepts/workloads/controllers/daemonset/)
+* 查看[在 DaemonSet 上执行回滚](/zh-cn/docs/tasks/manage-daemon/rollback-daemon-set/)
+* 查看[创建 DaemonSet 以收养现有 DaemonSet Pod](/zh-cn/docs/concepts/workloads/controllers/daemonset/)
 
diff --git a/content/zh/docs/tasks/manage-gpus/scheduling-gpus.md b/content/zh-cn/docs/tasks/manage-gpus/scheduling-gpus.md
similarity index 99%
rename from content/zh/docs/tasks/manage-gpus/scheduling-gpus.md
rename to content/zh-cn/docs/tasks/manage-gpus/scheduling-gpus.md
index e88c3dbcf7..91cd60a3f3 100644
--- a/content/zh/docs/tasks/manage-gpus/scheduling-gpus.md
+++ b/content/zh-cn/docs/tasks/manage-gpus/scheduling-gpus.md
@@ -229,7 +229,7 @@ For example:
 ## 集群内存在不同类型的 GPU
 
 如果集群内部的不同节点上有不同类型的 NVIDIA GPU，那么你可以使用
-[节点标签和节点选择器](/zh/docs/tasks/configure-pod-container/assign-pods-nodes/)
+[节点标签和节点选择器](/zh-cn/docs/tasks/configure-pod-container/assign-pods-nodes/)
 来将 pod 调度到合适的节点上。
 
 例如：
diff --git a/content/zh/docs/tasks/manage-hugepages/scheduling-hugepages.md b/content/zh-cn/docs/tasks/manage-hugepages/scheduling-hugepages.md
similarity index 78%
rename from content/zh/docs/tasks/manage-hugepages/scheduling-hugepages.md
rename to content/zh-cn/docs/tasks/manage-hugepages/scheduling-hugepages.md
index 0cdc82eda4..64419de90f 100644
--- a/content/zh/docs/tasks/manage-hugepages/scheduling-hugepages.md
+++ b/content/zh-cn/docs/tasks/manage-hugepages/scheduling-hugepages.md
@@ -1,17 +1,14 @@
 ---
-reviewers:
-- derekwaynecarr
 title: 管理巨页（HugePages）
 content_type: task
 description: 将大页配置和管理为集群中的可调度资源。
 ---
 <!--
----
 reviewers:
 - derekwaynecarr
 title: Manage HugePages
 content_type: task
----
+description: Configure and manage huge pages as a schedulable resource in a cluster.
 --->
 
 <!-- overview -->
@@ -30,13 +27,13 @@ Kubernetes 支持在 Pod 应用中使用预先分配的巨页。本文描述了
 
 <!--
 1. Kubernetes nodes must pre-allocate huge pages in order for the node to report
-   its huge page capacity. A node may only pre-allocate huge pages for a single
-   size.
+   its huge page capacity. A node can pre-allocate huge pages for multiple
+   sizes.
 
-The nodes will automatically discover and report all huge page resources as a
-schedulable resource.
+The nodes will automatically discover and report all huge page resources as
+schedulable resources.
 --->
-1. 为了使节点能够上报巨页容量，Kubernetes 节点必须预先分配巨页。每个节点只能预先分配一种特定规格的巨页。
+1. 为了使节点能够上报巨页容量，Kubernetes 节点必须预先分配巨页。每个节点能够预先分配多种规格的巨页。
 
 节点会自动发现全部巨页资源，并作为可供调度的资源进行上报。
 
@@ -59,9 +56,14 @@ A pod may consume multiple huge page sizes in a single pod spec. In this case it
 must use `medium: HugePages-<hugepagesize>` notation for all volume mounts.
 --->
 
-用户可以通过在容器级别的资源需求中使用资源名称 `hugepages-<size>` 来使用巨页，其中的 size 是特定节点上支持的以整数值表示的最小二进制单位。 例如，如果一个节点支持 2048KiB 和 1048576KiB 页面大小，它将公开可调度的资源 `hugepages-2Mi` 和 `hugepages-1Gi`。与 CPU 或内存不同，巨页不支持过量使用（overcommit）。注意，在请求巨页资源时，还必须请求内存或 CPU 资源。
+用户可以通过在容器级别的资源需求中使用资源名称 `hugepages-<size>`
+来使用巨页，其中的 size 是特定节点上支持的以整数值表示的最小二进制单位。
+例如，如果一个节点支持 2048KiB 和 1048576KiB 页面大小，它将公开可调度的资源
+`hugepages-2Mi` 和 `hugepages-1Gi`。与 CPU 或内存不同，巨页不支持过量使用（overcommit）。
+注意，在请求巨页资源时，还必须请求内存或 CPU 资源。
 
-同一 Pod 的 spec 中可能会消耗不同尺寸的巨页。在这种情况下，它必须对所有挂载卷使用 `medium: HugePages-<hugepagesize>` 标识。
+同一 Pod 的 spec 中可能会消耗不同尺寸的巨页。在这种情况下，它必须对所有挂载卷使用
+`medium: HugePages-<hugepagesize>` 标识。
 
 ```yaml
 apiVersion: v1
@@ -130,7 +132,7 @@ spec:
 <!--
 - Huge page requests must equal the limits. This is the default if limits are
   specified, but requests are not.
-- Huge pages are isolated at a container scope, so each container has own 
+- Huge pages are isolated at a container scope, so each container has own
   limit on their cgroup sandbox as requested in a container spec.
 - EmptyDir volumes backed by huge pages may not consume more huge page memory
   than the pod request.
@@ -139,12 +141,6 @@ spec:
 - Huge page usage in a namespace is controllable via ResourceQuota similar
   to other compute resources like `cpu` or `memory` using the `hugepages-<size>`
   token.
-- Support of multiple sizes huge pages is feature gated. It can be
-  enabled with the `HugePageStorageMediumSize` [feature
-gate](/docs/reference/command-line-tools-reference/feature-gates/) on the {{<
-glossary_tooltip text="kubelet" term_id="kubelet" >}} and {{<
-glossary_tooltip text="kube-apiserver"
-term_id="kube-apiserver" >}} (`--feature-gates=HugePageStorageMediumSize=false`).
 --->
 
 - 巨页的资源请求值必须等于其限制值。该条件在指定了资源限制，而没有指定请求的情况下默认成立。
diff --git a/content/zh/docs/tasks/manage-kubernetes-objects/_index.md b/content/zh-cn/docs/tasks/manage-kubernetes-objects/_index.md
similarity index 100%
rename from content/zh/docs/tasks/manage-kubernetes-objects/_index.md
rename to content/zh-cn/docs/tasks/manage-kubernetes-objects/_index.md
diff --git a/content/zh/docs/tasks/manage-kubernetes-objects/declarative-config.md b/content/zh-cn/docs/tasks/manage-kubernetes-objects/declarative-config.md
similarity index 98%
rename from content/zh/docs/tasks/manage-kubernetes-objects/declarative-config.md
rename to content/zh-cn/docs/tasks/manage-kubernetes-objects/declarative-config.md
index b02e7aab6e..517442cfb2 100644
--- a/content/zh/docs/tasks/manage-kubernetes-objects/declarative-config.md
+++ b/content/zh-cn/docs/tasks/manage-kubernetes-objects/declarative-config.md
@@ -28,7 +28,7 @@ preview of what changes `apply` will make.
 <!--
 Install [`kubectl`](/docs/tasks/tools/).
 -->
-安装 [`kubectl`](/zh/docs/tasks/tools/)。
+安装 [`kubectl`](/zh-cn/docs/tasks/tools/)。
 
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
@@ -55,7 +55,7 @@ for a discussion of the advantages and disadvantage of each kind of object manag
 * 声明式对象配置
 
 关于每种对象管理的优缺点的讨论，可参见
-[Kubernetes 对象管理](/zh/docs/concepts/overview/working-with-objects/object-management/)。
+[Kubernetes 对象管理](/zh-cn/docs/concepts/overview/working-with-objects/object-management/)。
 
 <!--
 ## Overview
@@ -72,8 +72,8 @@ the following documents if you have not already:
 声明式对象管理需要用户对 Kubernetes 对象定义和配置有比较深刻的理解。
 如果你还没有这方面的知识储备，请先阅读下面的文档：
 
-* [使用指令式命令管理 Kubernetes 对象](/zh/docs/tasks/manage-kubernetes-objects/imperative-command/)
-* [使用配置文件对 Kubernetes 对象进行指令式管理](/zh/docs/tasks/manage-kubernetes-objects/imperative-config/)
+* [使用指令式命令管理 Kubernetes 对象](/zh-cn/docs/tasks/manage-kubernetes-objects/imperative-command/)
+* [使用配置文件对 Kubernetes 对象进行指令式管理](/zh-cn/docs/tasks/manage-kubernetes-objects/imperative-config/)
 
 <!--
 Following are definitions for terms used in this document:
@@ -157,12 +157,12 @@ See [Dry-Run Authorization](/docs/reference/using-api/api-concepts#dry-run-autho
 for details.
 -->
 {{< note >}}
-`diff` 使用[服务器端试运行（Server-side Dry-run）](/zh/docs/reference/using-api/api-concepts/#dry-run)
+`diff` 使用[服务器端试运行（Server-side Dry-run）](/zh-cn/docs/reference/using-api/api-concepts/#dry-run)
 功能特性；而该功能特性需要在 `kube-apiserver` 上启用。
 
 由于 `diff` 操作会使用试运行模式执行服务器端 apply 请求，因此需要为
 用户配置 `PATCH`、`CREATE` 和 `UPDATE` 操作权限。
-参阅[试运行授权](/zh/docs/reference/using-api/api-concepts#dry-run-authorization)
+参阅[试运行授权](/zh-cn/docs/reference/using-api/api-concepts#dry-run-authorization)
 了解详情。
 {{< /note >}}
 
@@ -347,7 +347,7 @@ spec:
 Directly update the `replicas` field in the live configuration by using `kubectl scale`.
 This does not use `kubectl apply`:
 -->
-通过 `kubeclt scale` 命令直接更新现时配置中的 `replicas` 字段。
+通过 `kubectl scale` 命令直接更新现时配置中的 `replicas` 字段。
 这一命令没有使用 `kubectl apply`：
 
 ```shell
@@ -1547,8 +1547,8 @@ template:
 * [Kubectl Command Reference](/docs/reference/generated/kubectl/kubectl-commands/)
 * [Kubernetes API Reference](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)
 -->
-* [使用指令式命令管理 Kubernetes 对象](/zh/docs/tasks/manage-kubernetes-objects/imperative-command/)
-* [使用配置文件对 Kubernetes 对象执行指令式管理](/zh/docs/tasks/manage-kubernetes-objects/imperative-config/)
+* [使用指令式命令管理 Kubernetes 对象](/zh-cn/docs/tasks/manage-kubernetes-objects/imperative-command/)
+* [使用配置文件对 Kubernetes 对象执行指令式管理](/zh-cn/docs/tasks/manage-kubernetes-objects/imperative-config/)
 * [Kubectl 命令参考](/docs/reference/generated/kubectl/kubectl-commands/)
 * [Kubernetes API 参考](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)
 
diff --git a/content/zh/docs/tasks/manage-kubernetes-objects/imperative-command.md b/content/zh-cn/docs/tasks/manage-kubernetes-objects/imperative-command.md
similarity index 94%
rename from content/zh/docs/tasks/manage-kubernetes-objects/imperative-command.md
rename to content/zh-cn/docs/tasks/manage-kubernetes-objects/imperative-command.md
index f84ab15b2e..2accf8233b 100644
--- a/content/zh/docs/tasks/manage-kubernetes-objects/imperative-command.md
+++ b/content/zh-cn/docs/tasks/manage-kubernetes-objects/imperative-command.md
@@ -23,7 +23,7 @@ Kubernetes 对象。本文档解释这些命令的组织方式以及如何使用
 <!--
 Install [`kubectl`](/docs/tasks/tools/).
 -->
-安装[`kubectl`](/zh/docs/tasks/tools/)。
+安装[`kubectl`](/zh-cn/docs/tasks/tools/)。
 
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
@@ -50,7 +50,7 @@ for a discussion of the advantages and disadvantage of each kind of object manag
 * 声明式对象配置
 
 关于每种对象管理的优缺点的讨论，可参见
-[Kubernetes 对象管理](/zh/docs/concepts/overview/working-with-objects/object-management/)。
+[Kubernetes 对象管理](/zh-cn/docs/concepts/overview/working-with-objects/object-management/)。
 
 <!--
 ## How to create objects
@@ -283,13 +283,13 @@ kubectl create --edit -f /tmp/srv.yaml
 ## {{% heading "whatsnext" %}}
 
 <!--
-* [Managing Kubernetes Objects Using Object Configuration (Imperative)](/docs/tasks/manage-kubernetes-objects/imperative-config/)
-* [Managing Kubernetes Objects Using Object Configuration (Declarative)](/docs/tasks/manage-kubernetes-objects/declarative-config/)
+* [Imperative Management of Kubernetes Objects Using Configuration Files](/docs/tasks/manage-kubernetes-objects/imperative-config/)
+* [Declarative Management of Kubernetes Objects Using Configuration Files](/docs/tasks/manage-kubernetes-objects/declarative-config/)
 * [Kubectl Command Reference](/docs/reference/generated/kubectl/kubectl-commands/)
 * [Kubernetes API Reference](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)
 -->
-* [使用指令式对象配置管理 Kubernetes 对象](/zh/docs/tasks/manage-kubernetes-objects/imperative-config/)
-* [使用声明式对象配置管理 Kubernetes 对象](/zh/docs/tasks/manage-kubernetes-objects/declarative-config/)
+* [使用配置文件对 Kubernetes 对象进行命令式管理](/zh-cn/docs/tasks/manage-kubernetes-objects/imperative-config/)
+* [使用配置文件对 Kubernetes 对象进行声明式管理](/zh-cn/docs/tasks/manage-kubernetes-objects/declarative-config/)
 * [Kubectl 命令参考](/docs/reference/generated/kubectl/kubectl-commands/)
 * [Kubernetes API 参考](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)
 
diff --git a/content/zh/docs/tasks/manage-kubernetes-objects/imperative-config.md b/content/zh-cn/docs/tasks/manage-kubernetes-objects/imperative-config.md
similarity index 94%
rename from content/zh/docs/tasks/manage-kubernetes-objects/imperative-config.md
rename to content/zh-cn/docs/tasks/manage-kubernetes-objects/imperative-config.md
index 654ea24d64..3d3baed6ca 100644
--- a/content/zh/docs/tasks/manage-kubernetes-objects/imperative-config.md
+++ b/content/zh-cn/docs/tasks/manage-kubernetes-objects/imperative-config.md
@@ -23,7 +23,7 @@ This document explains how to define and manage objects using configuration file
 <!--
 Install [`kubectl`](/docs/tasks/tools/).
 -->
-安装 [`kubectl`](/zh/docs/tasks/tools/) 。
+安装 [`kubectl`](/zh-cn/docs/tasks/tools/) 。
 
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
@@ -51,7 +51,7 @@ The `kubectl` tool supports three kinds of object management:
 See [Kubernetes Object Management](/docs/concepts/overview/working-with-objects/object-management/)
 for a discussion of the advantages and disadvantage of each kind of object management.
 -->
-参看 [Kubernetes 对象管理](/zh/docs/concepts/overview/working-with-objects/object-management/)
+参看 [Kubernetes 对象管理](/zh-cn/docs/concepts/overview/working-with-objects/object-management/)
 中关于每种对象管理的优缺点的讨论。
 
 <!--
@@ -269,12 +269,12 @@ template:
 
 <!--
 * [Managing Kubernetes Objects Using Imperative Commands](/docs/tasks/manage-kubernetes-objects/imperative-command/)
-* [Managing Kubernetes Objects Using Object Configuration (Declarative)](/docs/tasks/manage-kubernetes-objects/declarative-config/)
+* [Declarative Management of Kubernetes Objects Using Configuration Files](/docs/tasks/manage-kubernetes-objects/declarative-config/)
 * [Kubectl Command Reference](/docs/reference/generated/kubectl/kubectl/)
 * [Kubernetes API Reference](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)
 -->
-* [使用命令式命令管理 Kubernetes 对象](/zh/docs/tasks/manage-kubernetes-objects/imperative-command/)
-* [使用对象配置管理 Kubernetes 对象 (声明式)](/zh/docs/tasks/manage-kubernetes-objects/declarative-config/)
+* [使用命令式命令管理 Kubernetes 对象](/zh-cn/docs/tasks/manage-kubernetes-objects/imperative-command/)
+* [使用配置文件对 Kubernetes 对象进行声明式管理](/zh-cn/docs/tasks/manage-kubernetes-objects/declarative-config/)
 * [Kubectl 命令参考](/docs/reference/generated/kubectl/kubectl-commands/)
 * [Kubernetes API 参考](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)
 
diff --git a/content/zh/docs/tasks/manage-kubernetes-objects/kustomization.md b/content/zh-cn/docs/tasks/manage-kubernetes-objects/kustomization.md
similarity index 97%
rename from content/zh/docs/tasks/manage-kubernetes-objects/kustomization.md
rename to content/zh-cn/docs/tasks/manage-kubernetes-objects/kustomization.md
index b98ec00718..cb6f1e9ab4 100644
--- a/content/zh/docs/tasks/manage-kubernetes-objects/kustomization.md
+++ b/content/zh-cn/docs/tasks/manage-kubernetes-objects/kustomization.md
@@ -45,7 +45,7 @@ kubectl apply -k <kustomization_directory>
 <!--
 Install [`kubectl`](/docs/tasks/tools/).
 -->
-安装 [`kubectl`](/zh/docs/tasks/tools/).
+安装 [`kubectl`](/zh-cn/docs/tasks/tools/).
 
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
@@ -133,15 +133,28 @@ metadata:
 ```
 
 <!--
-To generate a ConfigMap from an env file, add an entry to the `envs` list in `configMapGenerator`. Here is an example of generating a ConfigMap with a data item from a `.env` file:
+To generate a ConfigMap from an env file, add an entry to the `envs` list in `configMapGenerator`. This can also be used to set values from local environment variables by omitting the `=` and the value.
 -->
 要从 env 文件生成 ConfigMap，请在 `configMapGenerator` 中的 `envs` 列表中添加一个条目。
+这也可以用于通过省略 `=` 和值来设置本地环境变量的值。
+
+<!--
+It's recommended to use the local environment variable population functionality sparingly - an overlay with a patch is often more maintainable. Setting values from the environment may be useful when they cannot easily be predicted, such as a git SHA.
+-->
+建议谨慎使用本地环境变量填充功能 —— 用补丁覆盖通常更易于维护。 
+当无法轻松预测变量的值时，从环境中设置值可能很有用，例如 git SHA。
+
+<!--
+Here is an example of generating a ConfigMap with a data item from a `.env` file:
+-->
 下面是一个用来自 `.env` 文件的数据生成 ConfigMap 的例子：
 
 ```shell
 # 创建一个 .env 文件
+# BAZ 将使用本地环境变量 $BAZ 的取值填充
 cat <<EOF >.env
 FOO=Bar
+BAZ
 EOF
 
 cat <<EOF >./kustomization.yaml
@@ -158,7 +171,7 @@ The generated ConfigMap can be examined with the following command:
 可以使用以下命令检查生成的 ConfigMap：
 
 ```shell
-kubectl kustomize ./
+BAZ=Qux kubectl kustomize ./
 ```
 
 <!--
@@ -169,10 +182,11 @@ The generated ConfigMap is:
 ```yaml
 apiVersion: v1
 data:
-  FOO=Bar
+  BAZ: Qux
+  FOO: Bar
 kind: ConfigMap
 metadata:
-  name: example-configmap-1-8mbdf7882g
+  name: example-configmap-1-892ghb99c8
 ```
 
 <!--
@@ -398,7 +412,7 @@ type: Opaque
 ```
 
 <!--
-Like ConfigMaps, generated Secrets can be used in Deployments by refering to the name of the secretGenerator:
+Like ConfigMaps, generated Secrets can be used in Deployments by referring to the name of the secretGenerator:
 -->
 与 ConfigMaps 一样，生成的 Secrets 可以通过引用 secretGenerator 的名称在部署中使用：
 
@@ -936,8 +950,8 @@ Service 名称可能发生变化，建议不要在命令参数中硬编码 Servi
 对于这种使用场景，Kustomize 可以通过 `vars` 将 Service 名称注入到容器中。
 
 ```shell
-# 创建一个 deployment.yaml 文件
-cat <<EOF > deployment.yaml
+# 创建一个 deployment.yaml 文件（引用此处的文档分隔符）
+cat <<'EOF' > deployment.yaml
 apiVersion: apps/v1
 kind: Deployment
 metadata:
@@ -1257,7 +1271,7 @@ deployment.apps "dev-my-nginx" deleted
 | vars                  | [][Var](https://github.com/kubernetes-sigs/kustomize/blob/master/api/types/var.go#L19)                       | 每个条目用来从某资源的字段来析取文字                            |
 | images                | [][Image](https://github.com/kubernetes-sigs/kustomize/blob/master/api/types/image.go#L8)                    | 每个条目都用来更改镜像的名称、标记与/或摘要，不必生成补丁 |
 | configurations        | []string                                                                                                     | 列表中每个条目都应能解析为一个包含 [Kustomize 转换器配置](https://github.com/kubernetes-sigs/kustomize/tree/master/examples/transformerconfigs) 的文件 |
-| crds                  | []string                                                                                                     | 列表中每个条目都赢能够解析为 Kubernetes 类别的 OpenAPI 定义文件 |
+| crds                  | []string                                                                                                     | 列表中每个条目都应能够解析为 Kubernetes 类别的 OpenAPI 定义文件 |
 
 ## {{% heading "whatsnext" %}}
 
diff --git a/content/zh/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch.md b/content/zh-cn/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch.md
similarity index 87%
rename from content/zh/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch.md
rename to content/zh-cn/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch.md
index 34360eb890..1d2c576841 100644
--- a/content/zh/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch.md
+++ b/content/zh-cn/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch.md
@@ -9,7 +9,7 @@ weight: 50
 title: Update API Objects in Place Using kubectl patch
 description: Use kubectl patch to update Kubernetes API objects in place. Do a strategic merge patch or a JSON merge patch.
 content_type: task
-weight: 40
+weight: 50
 -->
 
 <!-- overview -->
@@ -34,7 +34,7 @@ in this task demonstrate a strategic merge patch and a JSON merge patch.
 Here's the configuration file for a Deployment that has two replicas. Each replica
 is a Pod that has one container:
 -->
-## 使用策略合并 patch 更新 Deployment
+## 使用策略合并 patch 更新 Deployment    {#use-a-strategic-merge-patch-to-update-a-deployment}
 
 下面是具有两个副本的 Deployment 的配置文件。每个副本是一个 Pod，有一个容器：
 
@@ -46,7 +46,7 @@ Create the Deployment:
 创建 Deployment：
 
 ```shell
-kubectl create -f https://k8s.io/examples/application/deployment-patch.yaml
+kubectl apply -f https://k8s.io/examples/application/deployment-patch.yaml
 ```
 
 <!--
@@ -83,9 +83,9 @@ you want each Pod to have two containers: one that runs nginx and one that runs
 此时，每个 Pod 都有一个运行 nginx 镜像的容器。现在假设你希望每个 Pod 有两个容器：一个运行 nginx，另一个运行 redis。
 
 <!--
-Create a file named `patch-file-containers.yaml` that has this content:
+Create a file named `patch-file.yaml` that has this content:
 -->
-创建一个名为 `patch-file-containers.yaml` 的文件。内容如下:
+创建一个名为 `patch-file.yaml` 的文件。内容如下:
 
 ```yaml
 spec:
@@ -102,7 +102,7 @@ Patch your Deployment:
 修补你的 Deployment：
 
 ```shell
-kubectl patch deployment patch-demo --patch "$(cat patch-file-containers.yaml)"
+kubectl patch deployment patch-demo --patch-file patch-file.yaml
 ```
 <!--
 View the patched Deployment:
@@ -185,10 +185,10 @@ Container to the list. In other words, the list in the patch was merged with the
 existing list. This is not always what happens when you use a strategic merge patch on a list.
 In some cases, the list is replaced, not merged.
 -->
-### 策略性合并类的 patch 的说明
+### 策略性合并类的 patch 的说明    {#notes-on-the-strategic-merge-patch}
 
-你在前面的练习中所做的 patch 称为`策略性合并 patch（Strategic Merge Patch)`。
-请注意，patch 没有替换`containers` 列表。相反，它向列表中添加了一个新 Container。换句话说，
+你在前面的练习中所做的 patch 称为 `策略性合并 patch（Strategic Merge Patch）`。
+请注意，patch 没有替换 `containers` 列表。相反，它向列表中添加了一个新 Container。换句话说，
 patch 中的列表与现有列表合并。当你在列表中使用策略性合并 patch 时，并不总是这样。
 在某些情况下，列表是替换的，而不是合并的。
 
@@ -254,7 +254,7 @@ Patch your Deployment:
 对 Deployment 执行 patch 操作：
 
 ```
-kubectl patch deployment patch-demo --patch "$(cat patch-file-containers.yaml)"
+kubectl patch deployment patch-demo --patch-file patch-file-tolerations.yaml
 ```
 
 <!--
@@ -283,13 +283,11 @@ containers:
   name: patch-demo-ctr
   ...
 ```
-```shell
-
-
+```yaml
 tolerations:
-      - effect: NoSchedule
-        key: disktype
-        value: ssd
+  - effect: NoSchedule
+    key: disktype
+    value: ssd
 ```
 
 <!--
@@ -297,7 +295,7 @@ Notice that the `tolerations` list in the PodSpec was replaced, not merged. This
 the Tolerations field of PodSpec does not have a `patchStrategy` key in its field tag. So the
 strategic merge patch uses the default patch strategy, which is `replace`.
 -->
-请注意，PodSpec 中的 `tolerations` 列表被替换，而不是合并。这是因为 PodSpec 的 `tolerations` 
+请注意，PodSpec 中的 `tolerations` 列表被替换，而不是合并。这是因为 PodSpec 的 `tolerations`
 的字段标签中没有 `patchStrategy` 键。所以策略合并 patch 操作使用默认的 patch 策略，也就是 `replace`。
 
 ```go
@@ -315,7 +313,7 @@ With a JSON merge patch, if you
 want to update a list, you have to specify the entire new list. And the new list completely
 replaces the existing list.
 -->
-## 使用 JSON 合并 patch 更新 Deployment
+## 使用 JSON 合并 patch 更新 Deployment    {#use-a-json-merge-patch-to-update-a-deployment}
 
 策略性合并 patch 不同于 [JSON 合并 patch](https://tools.ietf.org/html/rfc7386)。
 使用 JSON 合并 patch，如果你想更新列表，你必须指定整个新列表。新的列表完全取代现有的列表。
@@ -326,11 +324,15 @@ The `kubectl patch` command has a `type` parameter that you can set to one of th
 `kubectl patch` 命令有一个 `type` 参数，你可以将其设置为以下值之一:
 
 <table>
-  <!-- tr><th>Parameter value</th><th>Merge type</th></tr -->
+  <!--
+  <tr><th>Parameter value</th><th>Merge type</th></tr>
+  -->
   <tr><th>参数值</th><th>合并类型</th></tr>
   <tr><td>json</td><td><a href="https://tools.ietf.org/html/rfc6902">JSON Patch, RFC 6902</a></td></tr>
   <tr><td>merge</td><td><a href="https://tools.ietf.org/html/rfc7386">JSON Merge Patch, RFC 7386</a></td></tr>
-  <!-- tr><td>strategic</td><td>Strategic merge patch</td></tr -->
+  <!--
+  <tr><td>strategic</td><td>Strategic merge patch</td></tr>
+  -->
   <tr><td>strategic</td><td>策略合并 patch</td></tr>
 </table>
 
@@ -368,7 +370,7 @@ In your patch command, set `type` to `merge`:
 在 patch 命令中，将 `type` 设置为 `merge`：
 
 ```shell
-kubectl patch deployment patch-demo --type merge --patch "$(cat patch-file-2.yaml)"
+kubectl patch deployment patch-demo --type merge --patch-file patch-file-2.yaml
 ```
 
 <!--
@@ -384,7 +386,7 @@ kubectl get deployment patch-demo --output yaml
 The `containers` list that you specified in the patch has only one Container.
 The output shows that your list of one Container replaced the existing `containers` list.
 -->
-patch 中指定的`containers`列表只有一个 Container。
+patch 中指定的 `containers` 列表只有一个 Container。
 输出显示你所给出的 Contaier 列表替换了现有的 `containers` 列表。
 
 ```yaml
@@ -408,7 +410,7 @@ kubectl get pods
 In the output, you can see that the existing Pods were terminated, and new Pods
 were created. The `1/1` indicates that each new Pod is running only one Container.
 -->
-在输出中，你可以看到已经终止了现有的 Pod，并创建了新的 Pod。`1/1` 表示每个新 Pod只运行一个容器。
+在输出中，你可以看到已经终止了现有的 Pod，并创建了新的 Pod。`1/1` 表示每个新 Pod 只运行一个容器。
 
 ```shell
 NAME                          READY     STATUS    RESTARTS   AGE
@@ -421,11 +423,13 @@ patch-demo-1307768864-c86dc   1/1       Running   0          1m
 
 Here's the configuration file for a Deployment that uses the `RollingUpdate` strategy:
 -->
-## 使用带 retainKeys 策略的策略合并 patch 更新 Deployment
+## 使用带 retainKeys 策略的策略合并 patch 更新 Deployment    {#use-strategic-merge-patch-to-update-a-deployment-using-the-retainkeys-strategy}
 
 {{< codenew file="application/deployment-retainkeys.yaml" >}}
 
-<!-- Create the deployment: -->
+<!--
+Create the deployment:
+-->
 创建 Deployment：
 
 ```shell
@@ -447,17 +451,14 @@ spec:
     type: Recreate
 ```
 
-<!-- Patch your Deployment: -->
+<!--
+Patch your Deployment:
+-->
 修补你的 Deployment:
 
-{{< tabs name="kubectl_retainkeys_example" >}}
-{{{< tab name="Bash" codelang="bash" >}}
-kubectl patch deployment retainkeys-demo --type merge --patch "$(cat patch-file-no-retainkeys.yaml)"
-{{< /tab >}}
-{{< tab name="PowerShell" codelang="posh" >}}
-kubectl patch deployment retainkeys-demo --type merge --patch $(Get-Content patch-file-no-retainkeys.yaml -Raw)
-{{< /tab >}}}
-{{< /tabs >}}
+```shell
+kubectl patch deployment retainkeys-demo --type merge --patch-file patch-file-no-retainkeys.yaml
+```
 
 <!--
 In the output, you can see that it is not possible to set `type` as `Recreate` when a value is defined for `spec.strategy.rollingUpdate`:
@@ -465,7 +466,7 @@ In the output, you can see that it is not possible to set `type` as `Recreate` w
 在输出中，你可以看到，当 `spec.strategy.rollingUpdate` 已经拥有取值定义时，
 将其 `type` 设置为 `Recreate` 是不可能的。
 
-```shell
+```
 The Deployment "retainkeys-demo" is invalid: spec.strategy.rollingUpdate: Forbidden: may not be specified when strategy `type` is 'Recreate'
 ```
 
@@ -497,16 +498,13 @@ Patch your Deployment again with this new patch:
 
 使用新的 patch 重新修补 Deployment：
 
-{{< tabs name="kubectl_retainkeys2_example" >}}
-{{{< tab name="Bash" codelang="bash" >}}
-kubectl patch deployment retainkeys-demo --type merge --patch "$(cat patch-file-retainkeys.yaml)"
-{{< /tab >}}
-{{< tab name="PowerShell" codelang="posh" >}}
-kubectl patch deployment retainkeys-demo --type merge --patch $(Get-Content patch-file-retainkeys.yaml -Raw)
-{{< /tab >}}}
-{{< /tabs >}}
+```shell
+kubectl patch deployment retainkeys-demo --type merge --patch-file patch-file-retainkeys.yaml
+```
 
-<!-- Examine the content of the Deployment: -->
+<!--
+Examine the content of the Deployment:
+-->
 检查 Deployment 的内容：
 
 ```shell
@@ -518,7 +516,7 @@ The output shows that the strategy object in the Deployment does not contain the
 -->
 输出显示 Deployment 中的 `strategy` 对象不再包含 `rollingUpdate` 键：
 
-```shell
+```yaml
 spec:
   strategy:
     type: Recreate
@@ -536,11 +534,11 @@ The patch you did in the preceding exercise is called a *strategic merge patch w
 - All of the missing fields will be cleared when patching.
 - All fields in the `$retainKeys` list must be a superset or the same as the fields present in the patch.
 -->
-### 关于使用 retainKeys 策略的策略合并 patch 操作的说明
+### 关于使用 retainKeys 策略的策略合并 patch 操作的说明    {#notes-on-the-strategic-merge-patch-using-the-retainkeys-strategy}
 
 在前文练习中所执行的称作 *带 `retainKeys` 策略的策略合并 patch（Strategic Merge
 Patch with retainKeys Strategy）*。
-这种方法引入了一种新的 `$retainKey` 指令，具有如下策略： 
+这种方法引入了一种新的 `$retainKey` 指令，具有如下策略：
 
 - 其中包含一个字符串列表；
 - 所有需要被保留的字段必须在 `$retainKeys` 列表中给出；
@@ -554,7 +552,7 @@ The `retainKeys` strategy does not work for all objects. It only works when the
 策略 `retainKeys` 并不能对所有对象都起作用。它仅对那些 Kubernetes 源码中
 `patchStrategy` 字段标志值包含 `retainKeys` 的字段有用。
 例如 `DeploymentSpec` 结构的 `Strategy` 字段就包含了 `patchStrategy` 为
-`retainKeys` 的标志。 
+`retainKeys` 的标志。
 
 ```go
 type DeploymentSpec struct {
@@ -592,7 +590,7 @@ And you can see the `retainKeys` strategy in the
 The `kubectl patch` command takes YAML or JSON. It can take the patch as a file or
 directly on the command line.
 -->
-## kubectl patch 命令的其他形式
+## kubectl patch 命令的其他形式    {#alternate-forms-of-the-kubectl-patch-command}
 
 `kubectl patch` 命令使用 YAML 或 JSON。它可以接受以文件形式提供的补丁，也可以
 接受直接在命令行中给出的补丁。
@@ -625,10 +623,10 @@ The following commands are equivalent:
 以下命令是等价的：
 
 ```shell
-kubectl patch deployment patch-demo --patch "$(cat patch-file.yaml)"
+kubectl patch deployment patch-demo --patch-file patch-file.yaml
 kubectl patch deployment patch-demo --patch 'spec:\n template:\n  spec:\n   containers:\n   - name: patch-demo-ctr-2\n     image: redis'
 
-kubectl patch deployment patch-demo --patch "$(cat patch-file.json)"
+kubectl patch deployment patch-demo --patch-file patch-file.json
 kubectl patch deployment patch-demo --patch '{"spec": {"template": {"spec": {"containers": [{"name": "patch-demo-ctr-2","image": "redis"}]}}}}'
 ```
 
@@ -645,16 +643,15 @@ create the Deployment object. Other commands for updating API objects include
 and
 [kubectl apply](/docs/reference/generated/kubectl/kubectl-commands/#apply).
 -->
-## 总结
+## 总结    {#summary}
 
 在本练习中，你使用 `kubectl patch` 更改了 Deployment 对象的当前配置。
 你没有更改最初用于创建 Deployment 对象的配置文件。
 用于更新 API 对象的其他命令包括
-[`kubectl annotate`](/docs/reference/generated/kubectl/kubectl-commands/#annotate)，
-[`kubectl edit`](/docs/reference/generated/kubectl/kubectl-commands/#edit)，
-[`kubectl replace`](/docs/reference/generated/kubectl/kubectl-commands/#replace)，
-[`kubectl scale`](/docs/reference/generated/kubectl/kubectl-commands/#scale)，
-和
+[`kubectl annotate`](/docs/reference/generated/kubectl/kubectl-commands/#annotate)、
+[`kubectl edit`](/docs/reference/generated/kubectl/kubectl-commands/#edit)、
+[`kubectl replace`](/docs/reference/generated/kubectl/kubectl-commands/#replace)、
+[`kubectl scale`](/docs/reference/generated/kubectl/kubectl-commands/#scale) 和
 [`kubectl apply`](/docs/reference/generated/kubectl/kubectl-commands/#apply)。
 
 
@@ -676,11 +673,8 @@ Strategic merge patch is not supported for custom resources.
 * [Imperative Management of Kubernetes Objects Using Configuration Files](/docs/tasks/manage-kubernetes-objects/imperative-config/)
 * [Declarative Management of Kubernetes Objects Using Configuration Files](/docs/tasks/manage-kubernetes-objects/declarative-config/)
 -->
-* [Kubernetes 对象管理](/zh/docs/concepts/overview/working-with-objects/object-management/)
-* [使用指令式命令管理 Kubernetes 对象](/zh/docs/tasks/manage-kubernetes-objects/imperative-command/)
-* [使用配置文件执行 Kubernetes 对象的指令式管理](/zh/docs/tasks/manage-kubernetes-objects/imperative-config)
-* [使用配置文件对 Kubernetes 对象进行声明式管理](/zh/docs/tasks/manage-kubernetes-objects/declarative-config/)
-
-
-
+* [Kubernetes 对象管理](/zh-cn/docs/concepts/overview/working-with-objects/object-management/)
+* [使用指令式命令管理 Kubernetes 对象](/zh-cn/docs/tasks/manage-kubernetes-objects/imperative-command/)
+* [使用配置文件执行 Kubernetes 对象的指令式管理](/zh-cn/docs/tasks/manage-kubernetes-objects/imperative-config)
+* [使用配置文件对 Kubernetes 对象进行声明式管理](/zh-cn/docs/tasks/manage-kubernetes-objects/declarative-config/)
 
diff --git a/content/zh/docs/tasks/network/_index.md b/content/zh-cn/docs/tasks/network/_index.md
similarity index 100%
rename from content/zh/docs/tasks/network/_index.md
rename to content/zh-cn/docs/tasks/network/_index.md
diff --git a/content/zh/docs/tasks/network/customize-hosts-file-for-pods.md b/content/zh-cn/docs/tasks/network/customize-hosts-file-for-pods.md
similarity index 70%
rename from content/zh/docs/tasks/network/customize-hosts-file-for-pods.md
rename to content/zh-cn/docs/tasks/network/customize-hosts-file-for-pods.md
index f2f5e7fc1b..e92053a9a3 100644
--- a/content/zh/docs/tasks/network/customize-hosts-file-for-pods.md
+++ b/content/zh-cn/docs/tasks/network/customize-hosts-file-for-pods.md
@@ -1,6 +1,6 @@
 ---
 title: 使用 HostAliases 向 Pod /etc/hosts 文件添加条目
-content_type: concept
+content_type: task
 weight: 60
 min-kubernetes-server-version: 1.7
 ---
@@ -22,7 +22,7 @@ Adding entries to a Pod's /etc/hosts file provides Pod-level override of hostnam
 
 Modification not using HostAliases is not suggested because the file is managed by Kubelet and can be overwritten on during Pod creation/restart.
 -->
-当 DNS 配置以及其它选项不合理的时候，通过向 Pod 的 /etc/hosts 文件中添加条目，
+当 DNS 配置以及其它选项不合理的时候，通过向 Pod 的 `/etc/hosts` 文件中添加条目，
 可以在 Pod 级别覆盖对主机名的解析。你可以通过 PodSpec 的 HostAliases
 字段来添加这些自定义条目。
 
@@ -41,7 +41,7 @@ Start an Nginx Pod which is assigned a Pod IP:
 让我们从一个 Nginx Pod 开始，该 Pod 被分配一个 IP：
 
 ```shell
-kubectl run nginx --image nginx --generator=run-pod/v1
+kubectl run nginx --image nginx
 ```
 
 ```
@@ -86,7 +86,7 @@ fe00::2	ip6-allrouters
 By default, the `hosts` file only includes IPv4 and IPv6 boilerplates like
 `localhost` and its own hostname.
 -->
-默认情况下，hosts 文件只包含 IPv4 和 IPv6 的样板内容，像 `localhost` 和主机名称。
+默认情况下，`hosts` 文件只包含 IPv4 和 IPv6 的样板内容，像 `localhost` 和主机名称。
 
 <!--
 ## Adding Additional Entries with HostAliases
@@ -99,7 +99,7 @@ For example: to resolve `foo.local`, `bar.local` to `127.0.0.1` and `foo.remote`
 -->
 ## 通过 HostAliases 增加额外条目
 
-除了默认的样板内容，我们可以向 hosts 文件添加额外的条目。
+除了默认的样板内容，我们可以向 `hosts` 文件添加额外的条目。
 例如，要将 `foo.local`、`bar.local` 解析为 `127.0.0.1`，
 将 `foo.remote`、 `bar.remote` 解析为 `10.1.2.3`，我们可以在
 `.spec.hostAliases` 下为 Pod 配置 HostAliases。
@@ -112,7 +112,7 @@ You can start a Pod with that configuration by running:
 你可以使用以下命令用此配置启动 Pod：
 
 ```shell
-kubectl apply -f hostaliases-pod.yaml
+kubectl apply -f https://k8s.io/examples/service/networking/hostaliases-pod.yaml
 ```
 
 ```
@@ -136,7 +136,7 @@ hostaliases-pod     0/1       Completed   0          6s        10.200.0.5      w
 <!--
 The `hosts` file content looks like this:
 -->
-hosts 文件的内容看起来类似如下这样：
+`hosts` 文件的内容看起来类似如下所示：
 
 ```shell
 kubectl logs hostaliases-pod
@@ -162,19 +162,27 @@ With the additional entries specified at the bottom.
 -->
 在最下面额外添加了一些条目。
 
-<!--
-## Why Does Kubelet Manage the Hosts File?
+<!-- 
+## Why does the kubelet manage the hosts file? {#why-does-kubelet-manage-the-hosts-file}
 
-Kubelet [manages](https://github.com/kubernetes/kubernetes/issues/14633) the
-`hosts` file for each container of the Pod to prevent Docker from
-[modifying](https://github.com/moby/moby/issues/17190) the file after the
-containers have already been started.
+The kubelet manages the
+`hosts` file for each container of the Pod to prevent the container runtime from
+modifying the file after the containers have already been started.
+Historically, Kubernetes always used Docker Engine as its container runtime, and Docker Engine would
+then modify the `/etc/hosts` file after each container had started.
+
+Current Kubernetes can use a variety of container runtimes; even so, the kubelet manages the
+hosts file within each container so that the outcome is as intended regardless of which
+container runtime you use.
 -->
-## 为什么 kubelet 管理 hosts 文件？
+## 为什么 kubelet 管理 hosts 文件？{#why-does-kubelet-manage-the-hosts-file}
 
-kubelet [管理](https://github.com/kubernetes/kubernetes/issues/14633) Pod
-中每个容器的 hosts 文件，避免 Docker 在容器已经启动之后去
-[修改](https://github.com/moby/moby/issues/17190) 该文件。
+kubelet 管理每个Pod 容器的 `hosts` 文件，以防止容器运行时在容器已经启动后修改文件。
+由于历史原因，Kubernetes 总是使用 Docker Engine 作为其容器运行时，而 Docker Engine 
+将在容器启动后修改 `/etc/hosts` 文件。
+
+当前的 Kubernetes 可以使用多种容器运行时；即便如此，kubelet 管理在每个容器中创建 hosts文件，
+以便你使用任何容器运行时运行容器时，结果都符合预期。
 
 {{< caution >}}
 <!--
diff --git a/content/zh/docs/tasks/network/validate-dual-stack.md b/content/zh-cn/docs/tasks/network/validate-dual-stack.md
similarity index 87%
rename from content/zh/docs/tasks/network/validate-dual-stack.md
rename to content/zh-cn/docs/tasks/network/validate-dual-stack.md
index b2e1ace523..a38c206d44 100644
--- a/content/zh/docs/tasks/network/validate-dual-stack.md
+++ b/content/zh-cn/docs/tasks/network/validate-dual-stack.md
@@ -1,6 +1,6 @@
 ---
 title: 验证 IPv4/IPv6 双协议栈
-min-kubernetes-server-version: v1.20
+min-kubernetes-server-version: v1.23
 content_type: task
 ---
 <!--
@@ -21,15 +21,22 @@ This document shares how to validate IPv4/IPv6 dual-stack enabled Kubernetes clu
 
 <!--
 * Provider support for dual-stack networking (Cloud provider or otherwise must be able to provide Kubernetes nodes with routable IPv4/IPv6 network interfaces)
-* Kubenet network plugin
+* A [network plugin](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/) that supports dual-stack networking.
 * [Dual-stack enabled](/docs/concepts/services-networking/dual-stack/) cluster
 -->
-* 提供程序对双协议栈网络的支持 (云供应商或其他方式必须能够为 Kubernetes 节点
-  提供可路由的 IPv4/IPv6 网络接口)
-* 一个能够支持双协议栈的
-  [网络插件](/zh/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)，
-  （如 kubenet 或 Calico）。 
-* [启用双协议栈](/zh/docs/concepts/services-networking/dual-stack/) 集群
+* 驱动程序对双协议栈网络的支持 (云驱动或其他方式必须能够为 Kubernetes 节点提供可路由的 IPv4/IPv6 网络接口)
+* 一个能够支持[双协议栈](/zh-cn/docs/concepts/services-networking/dual-stack/)网络的
+  [网络插件](/zh-cn/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)。
+* [启用双协议栈](/zh-cn/docs/concepts/services-networking/dual-stack/) 集群
+
+{{< version-check >}}
+
+<!--
+While you can validate with an earlier version, the feature is only GA and officially supported since v1.23.
+-->
+{{< note >}}
+虽然你可以使用较早的版本进行验证，但该功能是从 v1.23 版本进入 GA 状态并正式支持的。
+{{< /note >}}
 
 <!-- steps -->
 
@@ -70,8 +77,9 @@ Validate that the node has an IPv4 and IPv6 interface detected. Replace node nam
 在此示例中，节点名称为 `k8s-linuxpool1-34450317-0`：
 
 ```shell
-kubectl get nodes k8s-linuxpool1-34450317-0 -o go-template --template='{{range .status.addresses}}{{printf "%s: %s \n" .type .address}}{{end}}'
+kubectl get nodes k8s-linuxpool1-34450317-0 -o go-template --template='{{range .status.addresses}}{{printf "%s: %s\n" .type .address}}{{end}}'
 ```
+
 ```
 Hostname: k8s-linuxpool1-34450317-0
 InternalIP: 10.240.0.5
@@ -89,7 +97,7 @@ Validate that a Pod has an IPv4 and IPv6 address assigned. Replace the Pod name
 在此示例中，Pod 名称为 `pod01`：
 
 ```shell
-kubectl get pods pod01 -o go-template --template='{{range .status.podIPs}}{{printf "%s \n" .ip}}{{end}}'
+kubectl get pods pod01 -o go-template --template='{{range .status.podIPs}}{{printf "%s\n" .ip}}{{end}}'
 ```
 
 ```
@@ -195,7 +203,7 @@ spec:
     protocol: TCP
     targetPort: 9376
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   sessionAffinity: None
   type: ClusterIP
 status:
@@ -232,7 +240,7 @@ apiVersion: v1
 kind: Service
 metadata:
   labels:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   name: my-service
 spec:
   clusterIP: fd00::5118
@@ -246,7 +254,7 @@ spec:
     protocol: TCP
     targetPort: 80
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   sessionAffinity: None
   type: ClusterIP
 status:
@@ -270,10 +278,10 @@ The `kubectl get svc` command will only show the primary IP in the `CLUSTER-IP`
 `kubectl get svc` 命令将仅在 `CLUSTER-IP` 字段中显示主 IP。
 
 ```shell
-kubectl get svc -l app=MyApp
+kubectl get svc -l app.kubernetes.io/name=MyApp
 
-NAME         TYPE        CLUSTER-IP       EXTERNAL-IP   PORT(S)   AGE
-my-service   ClusterIP   fe80:20d::d06b   <none>        80/TCP    9s
+NAME         TYPE        CLUSTER-IP     EXTERNAL-IP   PORT(S)   AGE
+my-service   ClusterIP   10.0.216.242   <none>        80/TCP    5s
 ```
 {{< /note >}}
 
@@ -284,15 +292,15 @@ Validate that the Service gets cluster IPs from the IPv4 and IPv6 address blocks
 然后你就可以通过 IP 和端口，验证对服务的访问。
 
 ```shell
-kubectl describe svc -l app=MyApp
+kubectl describe svc -l app.kubernetes.io/name=MyApp
 ```
 
 ```
 Name:              my-service
 Namespace:         default
-Labels:            app=MyApp
+Labels:            app.kubernetes.io/name=MyApp
 Annotations:       <none>
-Selector:          app=MyApp
+Selector:          app.kubernetes.io/name=MyApp
 Type:              ClusterIP
 IP Family Policy:  PreferDualStack
 IP Families:       IPv4,IPv6
@@ -324,7 +332,7 @@ Check the Service:
 检查服务：
 
 ```shell
-kubectl get svc -l app=MyApp
+kubectl get svc -l app.kubernetes.io/name=MyApp
 ```
 
 <!--
@@ -333,7 +341,7 @@ Validate that the Service receives a `CLUSTER-IP` address from the IPv6 address
 验证服务是否从 IPv6 地址块中接收到 `CLUSTER-IP` 地址以及 `EXTERNAL-IP`。
 然后，你可以通过 IP 和端口验证对服务的访问。
 
-```
+```shell
 NAME         TYPE           CLUSTER-IP   EXTERNAL-IP        PORT(S)        AGE
 my-service   LoadBalancer   fd00::7ebc   2603:1030:805::5   80:30790/TCP   35s
 ```
diff --git a/content/zh/docs/tasks/run-application/_index.md b/content/zh-cn/docs/tasks/run-application/_index.md
similarity index 100%
rename from content/zh/docs/tasks/run-application/_index.md
rename to content/zh-cn/docs/tasks/run-application/_index.md
diff --git a/content/zh/docs/tasks/run-application/access-api-from-pod.md b/content/zh-cn/docs/tasks/run-application/access-api-from-pod.md
similarity index 95%
rename from content/zh/docs/tasks/run-application/access-api-from-pod.md
rename to content/zh-cn/docs/tasks/run-application/access-api-from-pod.md
index 8bbe8d3ac4..aa1809c672 100644
--- a/content/zh/docs/tasks/run-application/access-api-from-pod.md
+++ b/content/zh-cn/docs/tasks/run-application/access-api-from-pod.md
@@ -40,7 +40,7 @@ one of the official [client libraries](/docs/reference/using-api/client-librarie
 libraries can automatically discover the API server and authenticate.
 -->
 从 Pod 使用 Kubernetes API 的最简单的方法就是使用官方的
-[客户端库](/zh/docs/reference/using-api/client-libraries/)。
+[客户端库](/zh-cn/docs/reference/using-api/client-libraries/)。
 这些库可以自动发现 API 服务器并进行身份验证。
 
 <!--
@@ -73,7 +73,7 @@ securely with the API server.
   函数 `config.load_incluster_config()` 自动处理 API 主机的发现和身份认证。
   参见[这里的一个例子](https://github.com/kubernetes-client/python/blob/master/examples/in_cluster_config.py)。
 
-- 还有一些其他可用的客户端库，请参阅[客户端库](/zh/docs/reference/using-api/client-libraries/)页面。
+- 还有一些其他可用的客户端库，请参阅[客户端库](/zh-cn/docs/reference/using-api/client-libraries/)页面。
 
 在以上场景中，客户端库都使用 Pod 的服务账号凭据来与 API 服务器安全地通信。
 
@@ -93,13 +93,14 @@ Kubernetes API 服务器。也就是说，Pod 可以使用 `kubernetes.default.s
 
 <!--
 The recommended way to authenticate to the API server is with a
-[service account](/docs/tasks/configure-pod-container/configure-service-account/) credential. By default, a Pod
+[service account](/docs/tasks/configure-pod-container/configure-service-account/)
+credential. By default, a Pod
 is associated with a service account, and a credential (token) for that
 service account is placed into the filesystem tree of each container in that Pod,
 at `/var/run/secrets/kubernetes.io/serviceaccount/token`.
 -->
 向 API 服务器进行身份认证的推荐做法是使用
-[服务账号](/zh/docs/tasks/configure-pod-container/configure-service-account/)凭据。
+[服务账号](/zh-cn/docs/tasks/configure-pod-container/configure-service-account/)凭据。
 默认情况下，每个 Pod 与一个服务账号关联，该服务账户的凭证（令牌）放置在此 Pod 中
 每个容器的文件系统树中的 `/var/run/secrets/kubernetes.io/serviceaccount/token` 处。
 
@@ -131,7 +132,7 @@ in the Pod can use it directly.
 #### 使用 kubectl proxy   {#use-kubectl-proxy}
 
 如果你希望不使用官方客户端库就完成 API 查询，可以将 `kubectl proxy` 作为
-[command](/zh/docs/tasks/inject-data-application/define-command-argument-container/)
+[command](/zh-cn/docs/tasks/inject-data-application/define-command-argument-container/)
 在 Pod 中启动一个边车（Sidecar）容器。这样，`kubectl proxy` 自动完成对 API
 的身份认证，并将其暴露到 Pod 的 `localhost` 接口，从而 Pod 中的其他容器可以
 直接使用 API。
diff --git a/content/zh/docs/tasks/run-application/configure-pdb.md b/content/zh-cn/docs/tasks/run-application/configure-pdb.md
similarity index 87%
rename from content/zh/docs/tasks/run-application/configure-pdb.md
rename to content/zh-cn/docs/tasks/run-application/configure-pdb.md
index ef8f54c168..c11c79e2c2 100644
--- a/content/zh/docs/tasks/run-application/configure-pdb.md
+++ b/content/zh-cn/docs/tasks/run-application/configure-pdb.md
@@ -37,9 +37,9 @@ nodes.
   Pod Disruption Budgets.
 -->
 * 你是 Kubernetes 集群中某应用的所有者，该应用有高可用要求。
-* 你应了解如何部署[无状态应用](/zh/docs/tasks/run-application/run-stateless-application-deployment/)
-  和/或[有状态应用](/zh/docs/tasks/run-application/run-replicated-stateful-application/)。
-* 你应当已经阅读过关于 [Pod 干扰](/zh/docs/concepts/workloads/pods/disruptions/) 的文档。
+* 你应了解如何部署[无状态应用](/zh-cn/docs/tasks/run-application/run-stateless-application-deployment/)
+  和/或[有状态应用](/zh-cn/docs/tasks/run-application/run-replicated-stateful-application/)。
+* 你应当已经阅读过关于 [Pod 干扰](/zh-cn/docs/concepts/workloads/pods/disruptions/) 的文档。
 * 用户应当与集群所有者或服务提供者确认其遵从 Pod 干扰预算（Pod Disruption Budgets）的规则。
 
 <!-- steps -->
@@ -87,7 +87,7 @@ selector goes into the PDBs `.spec.selector`.
 From version 1.15 PDBs support custom controllers where the [scale subresource](/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#scale-subresource) is enabled.
 -->
 从 1.15 版本开始，PDB 支持启用
-[scale 子资源](/zh/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#scale-subresource)
+[Scale 子资源](/zh-cn/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#scale-subresource)
 的自定义控制器。
 
 <!--
@@ -158,20 +158,18 @@ Values for `minAvailable` or `maxUnavailable` can be expressed as integers or as
 - When you specify an integer, it represents a number of Pods. For instance, if you set `minAvailable` to 10, then 10
   Pods must always be available, even during a disruption.
 - When you specify a percentage by setting the value to a string representation of a percentage (eg. `"50%"`), it represents a percentage of
-  total Pods. For instance, if you set `minUnavailable` to `"50%"`, then only 50% of the Pods can be unavailable during a
+  total Pods. For instance, if you set `maxUnavailable` to `"50%"`, then only 50% of the Pods can be unavailable during a
   disruption.
 -->
 - 指定整数值时，它表示 Pod 个数。例如，如果将 minAvailable 设置为 10，
   那么即使在干扰期间，也必须始终有 10 个Pod可用。
 - 通过将值设置为百分比的字符串表示形式（例如 “50％”）来指定百分比时，它表示占总 Pod 数的百分比。
-  例如，如果将 "minUnavailable" 设置为 “50％”，则干扰期间只允许 50％ 的 Pod 不可用。
+  例如，如果将 "maxUnavailable" 设置为 “50％”，则干扰期间只允许 50％ 的 Pod 不可用。
 
 <!--
-When you specify the value as a percentage, it may not map to an exact number
-of Pods. For example, if you have 7 Pods and you set `minAvailable` to
-`"50%"`, it's not immediately obvious whether that means 3 Pods or 4 Pods must
-be available.  Kubernetes rounds up to the nearest integer, so in this case, 4
-Pods must be available. You can examine the
+When you specify the value as a percentage, it may not map to an exact number of Pods. For example, if you have 7 Pods and
+you set `minAvailable` to `"50%"`, it's not immediately obvious whether that means 3 Pods or 4 Pods must be available.
+Kubernetes rounds up to the nearest integer, so in this case, 4 Pods must be available. You can examine the
 [code](https://github.com/kubernetes/kubernetes/blob/23be9587a0f8677eb8091464098881df939c44a9/pkg/controller/disruption/disruption.go#L539)
 that controls this behavior.
 -->
@@ -278,12 +276,17 @@ voluntary evictions, not all causes of unavailability.
 {{< /note >}}
 
 <!--
-A `maxUnavailable` of 0% (or 0) or a `minAvailable` of 100% (or equal to the
-number of replicas) may block node drains entirely. This is permitted as per the
+If you set `maxUnavailable` to 0% or 0, or you set `minAvailable` to 100% or the number of replicas,
+you are requiring zero voluntary evictions. When you set zero voluntary evictions for a workload
+object such as ReplicaSet, then you cannot successfully drain a Node running one of those Pods.
+If you try to drain a Node where an unevictable Pod is running, the drain never completes. This is permitted as per the
 semantics of `PodDisruptionBudget`.
 -->
-设置 `maxUnavailable` 值为 0%（或 0）或设置 `minAvailable` 值为 100%（或等于副本数）
-可能会阻塞节点，导致资源耗尽。按照 `PodDisruptionBudget` 的语义，这是允许的。
+如果你将 `maxUnavailable` 的值设置为 0%（或 0）或设置 `minAvailable` 值为 100%（或等于副本数）
+则会阻止所有的自愿驱逐。
+当你为 ReplicaSet 等工作负载对象设置阻止自愿驱逐时，你将无法成功地腾空运行其中一个 Pod 的节点。
+如果你尝试腾空正在运行着被阻止驱逐的 Pod 的节点，则腾空永远不会完成。
+按照 `PodDisruptionBudget` 的语义，这是允许的。
 
 <!--
 You can find examples of pod disruption budgets defined below. They match pods with the label
@@ -317,11 +320,17 @@ automatically responds to changes in the number of replicas of the corresponding
 <!--
 ## Create the PDB object
 
-You can create the PDB object with a command like `kubectl apply -f mypdb.yaml`.
+You can create or update the PDB object using kubectl.
+```shell
+kubectl apply -f mypdb.yaml
+```
 -->
 ## 创建 PDB 对象
 
-你可以通过类似 `kubectl apply -f mypdb.yaml` 的命令来创建 PDB。
+你可以使用 kubectl 创建或更新 PDB 对象。
+```shell
+kubectl apply -f mypdb.yaml
+```
 
 <!--
 You cannot update PDB objects.  They must be deleted and re-created.
@@ -366,12 +375,12 @@ zk-pdb   2               N/A               1                     7s
 ```
 
 <!--
-The non-zero value for `ALLOWED-DISRUPTIONS` means that the disruption controller has seen the pods,
+The non-zero value for `ALLOWED DISRUPTIONS` means that the disruption controller has seen the pods,
 counted the matching pods, and updated the status of the PDB.
 
 You can get more information about the status of a PDB with this command:
 -->
-`ALLOWED-DISRUPTIONS` 值非 0 意味着干扰控制器已经感知到相应的 Pod，对匹配的 Pod 进行统计，
+`ALLOWED DISRUPTIONS` 值非 0 意味着干扰控制器已经感知到相应的 Pod，对匹配的 Pod 进行统计，
 并更新了 PDB 的状态。
 
 用户可以通过以下命令获取更多 PDB 状态相关信息：
@@ -384,7 +393,8 @@ kubectl get poddisruptionbudgets zk-pdb -o yaml
 apiVersion: policy/v1
 kind: PodDisruptionBudget
 metadata:
-  anntation: {}
+  annotations:
+…
   creationTimestamp: "2020-03-04T04:22:56Z"
   generation: 1
   name: zk-pdb
@@ -425,9 +435,10 @@ You can use a PDB with pods controlled by another type of controller, by an
 
 <!--
 You can use a selector which selects a subset or superset of the pods belonging to a built-in
-controller.  However, when there are multiple PDBs in a namespace, you must be careful not
-to create PDBs whose selectors overlap.
+controller.  The eviction API will disallow eviction of any pod covered by multiple PDBs,
+so most users will want to avoid overlapping selectors.  One reasonable use of overlapping
+PDBs is when pods are being transitioned from one PDB to another.
 -->
 你可以令选择算符选择一个内置控制器所控制 Pod 的子集或父集。
-然而，当名字空间下存在多个 PDB 时，用户必须小心，保证 PDB 的选择算符之间不重叠。
+驱逐 API 将不允许驱逐被多个 PDB 覆盖的任何 Pod，因此大多数用户都希望避免重叠的选择算符。重叠 PDB 的一种合理用途是当 Pod 从一个 PDB 过渡到另一个 PDB 时再使用。
 
diff --git a/content/zh/docs/tasks/run-application/delete-stateful-set.md b/content/zh-cn/docs/tasks/run-application/delete-stateful-set.md
similarity index 83%
rename from content/zh/docs/tasks/run-application/delete-stateful-set.md
rename to content/zh-cn/docs/tasks/run-application/delete-stateful-set.md
index 35eb55abcd..8da0b73fba 100644
--- a/content/zh/docs/tasks/run-application/delete-stateful-set.md
+++ b/content/zh-cn/docs/tasks/run-application/delete-stateful-set.md
@@ -78,14 +78,14 @@ kubectl delete -f <file.yaml> --cascade=orphan
 ```
 
 <!--
-By passing `--cascade=orphan` to `kubectl delete`, the Pods managed by the StatefulSet are left behind even after the StatefulSet object itself is deleted. If the pods have a label `app=myapp`, you can then delete them as follows:
+By passing `--cascade=orphan` to `kubectl delete`, the Pods managed by the StatefulSet are left behind even after the StatefulSet object itself is deleted. If the pods have a label `app.kubernetes.io/name=MyApp`, you can then delete them as follows:
 --->
 通过将 `--cascade=orphan` 传递给 `kubectl delete`，在删除 StatefulSet 对象之后，
-StatefulSet 管理的 Pod 会被保留下来。如果 Pod 具有标签 `app=myapp`，则可以按照
+StatefulSet 管理的 Pod 会被保留下来。如果 Pod 具有标签 `app.kubernetes.io/name=MyApp`，则可以按照
 如下方式删除它们：
 
 ```shell
-kubectl delete pods -l app=myapp
+kubectl delete pods -l app.kubernetes.io/name=MyApp
 ```
 
 
@@ -97,7 +97,7 @@ Deleting the Pods in a StatefulSet will not delete the associated volumes. This
 ### 持久卷  {#persistent-volumes}
 
 删除 StatefulSet 管理的 Pod 并不会删除关联的卷。这是为了确保你有机会在删除卷之前从卷中复制数据。
-在 Pod 离开[终止状态](/zh/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)
+在 Pod 离开[终止状态](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)
 后删除 PVC 可能会触发删除背后的 PV 持久卷，具体取决于存储类和回收策略。
 永远不要假定在 PVC 删除后仍然能够访问卷。
 
@@ -120,15 +120,15 @@ To simply delete everything in a StatefulSet, including the associated pods, you
 
 ```shell
 grace=$(kubectl get pods <stateful-set-pod> --template '{{.spec.terminationGracePeriodSeconds}}')
-kubectl delete statefulset -l app=myapp
+kubectl delete statefulset -l app.kubernetes.io/name=MyApp
 sleep $grace
-kubectl delete pvc -l app=myapp
+kubectl delete pvc -l app.kubernetes.io/name=MyApp
 ```
 
 <!--
-In the example above, the Pods have the label `app=myapp`; substitute your own label as appropriate.
+In the example above, the Pods have the label `app.kubernetes.io/name=MyApp`; substitute your own label as appropriate.
 -->
-在上面的例子中，Pod 的标签为 `app=myapp`；适当地替换你自己的标签。
+在上面的例子中，Pod 的标签为 `app.kubernetes.io/name=MyApp`；适当地替换你自己的标签。
 
 <!--
 ### Force deletion of StatefulSet pods
@@ -140,13 +140,13 @@ If you find that some pods in your StatefulSet are stuck in the 'Terminating' or
 如果你发现 StatefulSet 的某些 Pod 长时间处于 'Terminating' 或者 'Unknown' 状态，
 则可能需要手动干预以强制从 API 服务器中删除这些 Pod。
 这是一项有点危险的任务。详细信息请阅读
-[删除 StatefulSet 类型的 Pods](/zh/docs/tasks/run-application/force-delete-stateful-set-pod/)。
+[删除 StatefulSet 类型的 Pods](/zh-cn/docs/tasks/run-application/force-delete-stateful-set-pod/)。
 
 ## {{% heading "whatsnext" %}}
 
 <!--
 Learn more about [force deleting StatefulSet Pods](/docs/tasks/run-application/force-delete-stateful-set-pod/).
 -->
-进一步了解[强制删除 StatefulSet 的 Pods](/zh/docs/tasks/run-application/force-delete-stateful-set-pod/)。
+进一步了解[强制删除 StatefulSet 的 Pods](/zh-cn/docs/tasks/run-application/force-delete-stateful-set-pod/)。
 
 
diff --git a/content/zh/docs/tasks/run-application/force-delete-stateful-set-pod.md b/content/zh-cn/docs/tasks/run-application/force-delete-stateful-set-pod.md
similarity index 94%
rename from content/zh/docs/tasks/run-application/force-delete-stateful-set-pod.md
rename to content/zh-cn/docs/tasks/run-application/force-delete-stateful-set-pod.md
index 40f48886a6..c23703f8ff 100644
--- a/content/zh/docs/tasks/run-application/force-delete-stateful-set-pod.md
+++ b/content/zh-cn/docs/tasks/run-application/force-delete-stateful-set-pod.md
@@ -41,7 +41,7 @@ In normal operation of a StatefulSet, there is **never** a need to force delete
 ## StatefulSet 注意事项
 
 在 StatefulSet 的正常操作中，**永远不**需要强制删除 StatefulSet 管理的 Pod。
-[StatefulSet 控制器](/zh/docs/concepts/workloads/controllers/statefulset/)负责创建、
+[StatefulSet 控制器](/zh-cn/docs/concepts/workloads/controllers/statefulset/)负责创建、
 扩缩和删除 StatefulSet 管理的 Pods。它尝试确保指定数量的从序数 0 到 N-1 的 Pod
 处于活跃状态并准备就绪。StatefulSet 确保在任何时候，集群中最多只有一个具有给定标识的 Pod。
 这就是所谓的由 StatefulSet 提供的*最多一个（At Most One）*的语义。
@@ -73,7 +73,7 @@ For the above to lead to graceful termination, the Pod **must not** specify a `p
 为了让上面操作能够体面地终止 Pod，Pod **一定不能** 设置 `pod.Spec.TerminationGracePeriodSeconds` 为 0。
 将 `pod.Spec.TerminationGracePeriodSeconds` 设置为 0s 的做法是不安全的，强烈建议 StatefulSet 类型的
 Pod 不要使用。体面删除是安全的，并且会在 kubelet 从 API 服务器中删除资源名称之前确保
-[体面地结束 pod ](/zh/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)。
+[体面地结束 pod ](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)。
 
 <!--
 A Pod is not deleted automatically when a Node is unreachable.
@@ -85,7 +85,7 @@ The only ways in which a Pod in such a state can be removed from the apiserver a
 -->
 当某个节点不可达时，不会引发自动删除 Pod。
 在无法访问的节点上运行的 Pod 在
-[超时](/zh/docs/concepts/architecture/nodes/#condition)
+[超时](/zh-cn/docs/concepts/architecture/nodes/#condition)
 后会进入'Terminating' 或者 'Unknown' 状态。
 当用户尝试体面地删除无法访问的节点上的 Pod 时 Pod 也可能会进入这些状态。
 从 API 服务器上删除处于这些状态 Pod 的仅有可行方法如下：
@@ -95,7 +95,7 @@ The only ways in which a Pod in such a state can be removed from the apiserver a
    * The kubelet on the unresponsive Node starts responding, kills the Pod and removes the entry from the apiserver.<br/>
    * Force deletion of the Pod by the user.
 -->
-* 删除 Node 对象（要么你来删除, 要么[节点控制器](/zh/docs/concepts/architecture/nodes/#node-controller)
+* 删除 Node 对象（要么你来删除, 要么[节点控制器](/zh-cn/docs/concepts/architecture/nodes/#node-controller)
   来删除）
 * 无响应节点上的 kubelet 开始响应，杀死 Pod 并从 API 服务器上移除 Pod 对象
 * 用户强制删除 pod
@@ -169,8 +169,8 @@ Always perform force deletion of StatefulSet Pods carefully and with complete kn
 ## {{% heading "whatsnext" %}}
 
 <!--
-Learn more about [debugging a StatefulSet](/docs/tasks/debug-application-cluster/debug-stateful-set/).
+Learn more about [debugging a StatefulSet](/docs/tasks/debug/debug-application/debug-statefulset/).
 -->
-进一步了解[调试 StatefulSet](/zh/docs/tasks/debug-application-cluster/debug-stateful-set/)。
+进一步了解[调试 StatefulSet](/zh-cn/docs/tasks/debug/debug-application/debug-statefulset/)。
 
 
diff --git a/content/zh/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough.md b/content/zh-cn/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough.md
similarity index 61%
rename from content/zh/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough.md
rename to content/zh-cn/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough.md
index f831b28fab..f709acfe6a 100644
--- a/content/zh/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough.md
+++ b/content/zh-cn/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough.md
@@ -1,7 +1,8 @@
 ---
-title: Horizontal Pod Autoscaler 演练
+title: HorizontalPodAutoscaler 演练
 content_type: task
 weight: 100
+min-kubernetes-server-version: 1.23
 ---
 
 <!--
@@ -18,84 +19,106 @@ weight: 100
 <!-- overview -->
 
 <!--
-Horizontal Pod Autoscaler automatically scales the number of pods
-in a replication controller, deployment or replica set or statefulset based on observed CPU utilization
-(or, with beta support, on some other, application-provided metrics).
+A [HorizontalPodAutoscaler](/docs/tasks/run-application/horizontal-pod-autoscale/)
+(HPA for short)
+automatically updates a workload resource (such as
+a {{< glossary_tooltip text="Deployment" term_id="deployment" >}} or
+{{< glossary_tooltip text="StatefulSet" term_id="statefulset" >}}), with the
+aim of automatically scaling the workload to match demand.
+
+Horizontal scaling means that the response to increased load is to deploy more
+{{< glossary_tooltip text="Pods" term_id="pod" >}}.
+This is different from _vertical_ scaling, which for Kubernetes would mean
+assigning more resources (for example: memory or CPU) to the Pods that are already
+running for the workload.
 -->
-Horizontal Pod Autoscaler 可以根据 CPU 利用率自动扩缩 ReplicationController、
-Deployment、ReplicaSet 或 StatefulSet 中的 Pod 数量
-（也可以基于其他应用程序提供的度量指标，目前这一功能处于 beta 版本）。
+[HorizontalPodAutoscaler](/zh-cn/docs/tasks/run-application/horizontal-pod-autoscale/) （简称 HPA ）
+自动更新工作负载资源（例如 {{< glossary_tooltip text="Deployment" term_id="deployment" >}} 或者
+{{< glossary_tooltip text="StatefulSet" term_id="statefulset" >}}），
+目的是自动扩缩工作负载以满足需求。
+
+水平扩缩意味着对增加的负载的响应是部署更多的 {{< glossary_tooltip text="Pods" term_id="pod" >}}。
+这与 “垂直（Vertical）” 扩缩不同，对于 Kubernetes，
+垂直扩缩意味着将更多资源（例如：内存或 CPU）分配给已经为工作负载运行的 Pod。
 
 <!--
-This document walks you through an example of enabling Horizontal Pod Autoscaler for the php-apache server.
-For more information on how Horizontal Pod Autoscaler behaves, see the
-[Horizontal Pod Autoscaler user guide](/docs/tasks/run-application/horizontal-pod-autoscale/).
+If the load decreases, and the number of Pods is above the configured minimum,
+the HorizontalPodAutoscaler instructs the workload resource (the Deployment, StatefulSet,
+or other similar resource) to scale back down.
+
+This document walks you through an example of enabling HorizontalPodAutoscaler to
+automatically manage scale for an example web app. This example workload is Apache
+httpd running some PHP code.
 -->
-本文将引领你了解如何为 php-apache 服务器配置和使用 Horizontal Pod Autoscaler。
-与 Horizontal Pod Autoscaler 相关的更多信息请参阅
-[Horizontal Pod Autoscaler 用户指南](/zh/docs/tasks/run-application/horizontal-pod-autoscale/)。
+如果负载减少，并且 Pod 的数量高于配置的最小值，
+HorizontalPodAutoscaler 会指示工作负载资源（ Deployment、StatefulSet 或其他类似资源）缩减。
+
+本文档将引导你完成启用 HorizontalPodAutoscaler 以自动管理示例 Web 应用程序的扩缩的示例。
+此示例工作负载是运行一些 PHP 代码的 Apache httpd。
 
 ## {{% heading "prerequisites" %}}
 
-<!--
-This example requires a running Kubernetes cluster and kubectl, version 1.2 or later.
-[metrics-server](https://github.com/kubernetes-incubator/metrics-server/) monitoring needs to be deployed
-in the cluster to provide metrics through the [Metrics API](https://github.com/kubernetes/metrics).
-Horizontal Pod Autoscaler uses this API to collect metrics. To learn how to deploy the metrics-server,
-see the [metrics-server documentation](https://github.com/kubernetes-sigs/metrics-server#deployment).
--->
-本文示例需要一个运行中的 Kubernetes 集群以及 kubectl，版本为 1.2 或更高。
-[Metrics 服务器](https://github.com/kubernetes-incubator/metrics-server/)
-需要被部署到集群中，以便通过 [Metrics API](https://github.com/kubernetes/metrics)
-提供度量数据。
-Horizontal Pod Autoscaler 根据此 API 来获取度量数据。
-要了解如何部署 metrics-server，请参考
-[metrics-server 文档](https://github.com/kubernetes-incubator/metrics-server/) 。
+{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
 <!--
-To specify multiple resource metrics for a Horizontal Pod Autoscaler, you must have a
-Kubernetes cluster and kubectl at version 1.6 or later. To make use of custom metrics, your cluster
-must be able to communicate with the API server providing the custom metrics API.
-Finally, to use metrics not related to any Kubernetes object you must have a
-Kubernetes cluster at version 1.10 or later, and you must be able to communicate with
-the API server that provides the external metrics API.
-See the [Horizontal Pod Autoscaler user guide](/docs/tasks/run-application/horizontal-pod-autoscale/#support-for-custom-metrics) for more details.
+If you're running an older
+release of Kubernetes, refer to the version of the documentation for that release (see
+[available documentation versions](/docs/home/supported-doc-versions/)).
 -->
-如果需要为 Horizontal Pod Autoscaler 指定多种资源度量指标，你的 Kubernetes
-集群以及 kubectl 至少需要达到 1.6 版本。 
-此外，如果要使用自定义度量指标，你的 Kubernetes 集群还必须能够与提供这些自定义指标
-的 API 服务器通信。
-最后，如果要使用与 Kubernetes 对象无关的度量指标，则 Kubernetes 集群版本至少需要
-达到 1.10 版本，同样，需要保证集群能够与提供这些外部指标的 API 服务器通信。
-更多详细信息，请参阅
-[Horizontal Pod Autoscaler 用户指南](/zh/docs/tasks/run-application/horizontal-pod-autoscale/#support-for-custom-metrics)。
+如果你运行的是旧版本的 Kubernetes，请参阅该版本的文档版本
+（[可用的文档版本](/zh-cn/docs/home/supported-doc-versions/)）。
+
+<!--
+To follow this walkthrough, you also need to use a cluster that has a
+[Metrics Server](https://github.com/kubernetes-sigs/metrics-server#readme) deployed and configured.
+The Kubernetes Metrics Server collects resource metrics from
+the {{<glossary_tooltip term_id="kubelet" text="kubelets">}} in your cluster, and exposes those metrics
+through the [Kubernetes API](/docs/concepts/overview/kubernetes-api/),
+using an [APIService](/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/) to add
+new kinds of resource that represent metric readings.
+
+To learn how to deploy the Metrics Server, see the
+[metrics-server documentation](https://github.com/kubernetes-sigs/metrics-server#deployment).
+-->
+按照本演练进行操作，你需要一个部署并配置了
+[Metrics Server](https://github.com/kubernetes-sigs/metrics-server#readme) 的集群。
+Kubernetes Metrics Server 从集群中的 {{<glossary_tooltip term_id="kubelet" text="kubelets">}} 收集资源指标，
+并通过 [Kubernetes API](/zh-cn/docs/concepts/overview/kubernetes-api/) 公开这些指标，
+使用 [APIService](/zh-cn/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/) 添加代表指标读数的新资源。
+
+要了解如何部署 Metrics Server，请参阅
+[metrics-server 文档](https://github.com/kubernetes-sigs/metrics-server#deployment)。
 
 <!-- steps -->
 
 <!--
-## Run & expose php-apache server
+## Run and expose php-apache server
 -->
-## 运行 php-apache 服务器并暴露服务
+## 运行 php-apache 服务器并暴露服务 {#run-and-expose-php-apache-server}
 
 <!--
-To demonstrate Horizontal Pod Autoscaler we will use a custom docker image based on the php-apache image.
-The Dockerfile has the following content:
+To demonstrate a HorizontalPodAutoscaler, you will first make a custom container image that uses
+the `php-apache` image from Docker Hub as its starting point. The `Dockerfile` is ready-made for you,
+and has the following content:
 -->
-为了演示 Horizontal Pod Autoscaler，我们将使用一个基于 php-apache 镜像的
-定制 Docker 镜像。Dockerfile 内容如下： 
+为了演示 HorizontalPodAutoscaler，你将首先制作一个自定义容器镜像，
+该镜像使用来自 Docker Hub 的 `php-apache` 镜像作为其起点。
+`Dockerfile` 已经为你准备好了，内容如下：
 
-```
+```dockerfile
 FROM php:5-apache
 COPY index.php /var/www/html/index.php
 RUN chmod a+rx index.php
 ```
 
 <!--
-It defines an index.php page which performs some CPU intensive computations:
+This code defines a simple `index.php` page that performs some CPU intensive computations,
+in order to simulate load in your cluster.
 -->
-该文件定义了一个 index.php 页面来执行一些 CPU 密集型计算：
+代码定义了一个简单的 `index.php` 页面，该页面执行一些 CPU 密集型计算，
+以模拟集群中的负载。
 
-```
+```php
 <?php
   $x = 0.0001;
   for ($i = 0; $i <= 1000000; $i++) {
@@ -106,17 +129,19 @@ It defines an index.php page which performs some CPU intensive computations:
 ```
 
 <!--
-First, we will start a deployment running the image and expose it as a service
-using the following configuration:
+Once you have made that container image, start a Deployment that runs a container using the
+image you made, and expose it as a {{< glossary_tooltip term_id="service">}}
+using the following manifest:
 -->
-首先，我们使用下面的配置启动一个 Deployment 来运行这个镜像并暴露一个服务：
+制作完该容器镜像后，使用你制作的镜像启动运行一个容器的 Deployment，
+并使用以下清单将其公开为{{< glossary_tooltip term_id="service" text="服务" >}}：
 
 {{< codenew file="application/php-apache.yaml" >}}
 
 <!--
-Run the following command:
+To do so, run the following command:
 -->
-运行下面的命令：
+为此，运行下面的命令：
 
 ```shell
 kubectl apply -f https://k8s.io/examples/application/php-apache.yaml
@@ -128,28 +153,46 @@ service/php-apache created
 ```
 
 <!--
-## Create Horizontal Pod Autoscaler
+## Create the HorizontalPodAutoscaler {#create-horizontal-pod-autoscaler}
 
-Now that the server is running, we will create the autoscaler using
-[kubectl autoscale](/docs/reference/generated/kubectl/kubectl-commands#autoscale).
-The following command will create a Horizontal Pod Autoscaler that maintains between 1 and 10 replicas of the Pods
-controlled by the php-apache deployment we created in the first step of these instructions.
-Roughly speaking, HPA will increase and decrease the number of replicas
-(via the deployment) to maintain an average CPU utilization across all Pods of 50%
-(since each pod requests 200 milli-cores by `kubectl run`), this means average CPU usage of 100 milli-cores).
-See [here](/docs/tasks/run-application/horizontal-pod-autoscale/#algorithm-details) for more details on the algorithm.
+Now that the server is running, create the autoscaler using `kubectl`. There is
+[`kubectl autoscale`](/docs/reference/generated/kubectl/kubectl-commands#autoscale) subcommand,
+part of `kubectl`, that helps you do this.
+
+You will shortly run a command that creates a HorizontalPodAutoscaler that maintains
+between 1 and 10 replicas of the Pods controlled by the php-apache Deployment that
+you created in the first step of these instructions.
+
+Roughly speaking, the HPA {{<glossary_tooltip text="controller" term_id="controller">}} will increase and decrease
+the number of replicas (by updating the Deployment) to maintain an average CPU utilization across all Pods of 50%.
+The Deployment then updates the ReplicaSet - this is part of how all Deployments work in Kubernetes -
+and then the ReplicaSet either adds or removes Pods based on the change to its `.spec`.
+
+Since each pod requests 200 milli-cores by `kubectl run`, this means an average CPU usage of 100 milli-cores.
+See [Algorithm details](/docs/tasks/run-application/horizontal-pod-autoscale/#algorithm-details) for more details
+on the algorithm.
 -->
-## 创建 Horizontal Pod Autoscaler  {#create-horizontal-pod-autoscaler}
+## 创建 HorizontalPodAutoscaler  {#create-horizontal-pod-autoscaler}
 
-现在，php-apache 服务器已经运行，我们将通过
-[kubectl autoscale](/docs/reference/generated/kubectl/kubectl-commands#autoscale)
-命令创建 Horizontal Pod Autoscaler。 
-以下命令将创建一个 Horizontal Pod Autoscaler 用于控制我们上一步骤中创建的
-Deployment，使 Pod 的副本数量维持在 1 到 10 之间。
-大致来说，HPA 将（通过 Deployment）增加或者减少 Pod 副本的数量以保持所有 Pod
-的平均 CPU 利用率在 50% 左右（由于每个 Pod 请求 200 毫核的 CPU，这意味着平均
-CPU 用量为 100 毫核）。
-算法的详情请参阅[相关文档](/zh/docs/tasks/run-application/horizontal-pod-autoscale/#algorithm-details)。
+现在服务器正在运行，使用 `kubectl` 创建自动扩缩器。
+[`kubectl autoscale`](/docs/reference/generated/kubectl/kubectl-commands#autoscale) 子命令是 `kubectl` 的一部分，
+可以帮助你执行此操作。
+
+你将很快运行一个创建 HorizontalPodAutoscaler 的命令，
+该 HorizontalPodAutoscaler 维护由你在这些说明的第一步中创建的 php-apache Deployment 控制的 Pod 存在 1 到 10 个副本。
+
+粗略地说，HPA {{<glossary_tooltip text="控制器" term_id="controller">}}将增加和减少副本的数量
+（通过更新 Deployment）以保持所有 Pod 的平均 CPU 利用率为 50%。
+Deployment 然后更新 ReplicaSet —— 这是所有 Deployment 在 Kubernetes 中工作方式的一部分 ——
+然后 ReplicaSet 根据其 `.spec` 的更改添加或删除 Pod。
+
+由于每个 Pod 通过 `kubectl run` 请求 200 milli-cores，这意味着平均 CPU 使用率为 100 milli-cores。
+有关算法的更多详细信息，
+请参阅[算法详细信息](/zh-cn/docs/tasks/run-application/horizontal-pod-autoscale/#algorithm-details)。
+
+
+<!-- Create the HorizontalPodAutoscaler: -->
+创建 HorizontalPodAutoscaler：
 
 ```shell
 kubectl autoscale deployment php-apache --cpu-percent=50 --min=1 --max=10
@@ -160,14 +203,19 @@ horizontalpodautoscaler.autoscaling/php-apache autoscaled
 ```
 
 <!--
-We may check the current status of autoscaler by running:
+You can check the current status of the newly-made HorizontalPodAutoscaler, by running:
 -->
-我们可以通过以下命令查看 Autoscaler 的状态：
+你可以通过运行以下命令检查新制作的 HorizontalPodAutoscaler 的当前状态：
 
+<!--# You can use "hpa" or "horizontalpodautoscaler"; either name works OK. -->
 ```shell
+# 你可以使用 “hap” 或 “horizontalpodautoscaler”；任何一个名字都可以。
 kubectl get hpa
 ```
 
+<!-- The output is similar to: -->
+输出类似于：
+
 ```
 NAME         REFERENCE                     TARGET    MINPODS   MAXPODS   REPLICAS   AGE
 php-apache   Deployment/php-apache/scale   0% / 50%  1         10        1          18s
@@ -175,42 +223,71 @@ php-apache   Deployment/php-apache/scale   0% / 50%  1         10        1
 ```
 
 <!--
-Please note that the current CPU consumption is 0% as we are not sending any requests to the server
-(the ``CURRENT`` column shows the average across all the pods controlled by the corresponding deployment).
+(if you see other HorizontalPodAutoscalers with different names, that means they already existed,
+and isn't usually a problem).
 -->
-请注意当前的 CPU 利用率是 0%，这是由于我们尚未发送任何请求到服务器
-（``CURRENT`` 列显示了相应 Deployment 所控制的所有 Pod 的平均 CPU 利用率）。
+（如果你看到其他具有不同名称的 HorizontalPodAutoscalers，这意味着它们已经存在，这通常不是问题）。
 
 <!--
-## Increase load
+Please note that the current CPU consumption is 0% as there are no clients sending requests to the server
+(the ``TARGET`` column shows the average across all the Pods controlled by the corresponding deployment).
+-->
+请注意当前的 CPU 利用率是 0%，这是由于我们尚未发送任何请求到服务器
+（``TARGET`` 列显示了相应 Deployment 所控制的所有 Pod 的平均 CPU 利用率）。
 
-Now, we will see how the autoscaler reacts to increased load.
-We will start a container, and send an infinite loop of queries to the php-apache service (please run it in a different terminal):
+<!--
+## Increase the load {#increase-load}
+
+Next, see how the autoscaler reacts to increased load.
+To do this, you'll start a different Pod to act as a client. The container within the client Pod
+runs in an infinite loop, sending queries to the php-apache service.
 -->
 ## 增加负载  {#increase-load}
 
-现在，我们将看到 Autoscaler 如何对增加负载作出反应。 
-我们将启动一个容器，并通过一个循环向 php-apache 服务器发送无限的查询请求
-（请在另一个终端中运行以下命令）：
+接下来，看看自动扩缩器如何对增加的负载做出反应。
+为此，你将启动一个不同的 Pod 作为客户端。
+客户端 Pod 中的容器在无限循环中运行，向 php-apache 服务发送查询。
 
+<!--
+# Run this in a separate terminal
+# so that the load generation continues and you can carry on with the rest of the steps
+-->
 ```shell
-kubectl run -i --tty load-generator --rm --image=busybox --restart=Never -- /bin/sh -c "while sleep 0.01; do wget -q -O- http://php-apache; done"
+# 在单独的终端中运行它
+# 以便负载生成继续，你可以继续执行其余步骤
+kubectl run -i --tty load-generator --rm --image=busybox:1.28 --restart=Never -- /bin/sh -c "while sleep 0.01; do wget -q -O- http://php-apache; done"
 ```
 
 <!--
-Within a minute or so, we should see the higher CPU load by executing:
--->
-一分钟时间左右之后，通过以下命令，我们可以看到 CPU 负载升高了：
+Now run:
 
+Within a minute or so, you should see the higher CPU load; for example:
+-->
+现在执行：
+
+<!-- # type Ctrl+C to end the watch when you're ready -->
 ```shell
-kubectl get hpa
+# 准备好后按 Ctrl+C 结束观察
+kubectl get hpa php-apache --watch
 ```
 
+一分钟时间左右之后，通过以下命令，我们可以看到 CPU 负载升高了；例如：
+
 ```
 NAME         REFERENCE                     TARGET      MINPODS   MAXPODS   REPLICAS   AGE
 php-apache   Deployment/php-apache/scale   305% / 50%  1         10        1          3m
 ```
 
+<!--
+and then, more replicas. For example:
+-->
+然后，更多的副本被创建。例如：
+
+```
+NAME         REFERENCE                     TARGET      MINPODS   MAXPODS   REPLICAS   AGE
+php-apache   Deployment/php-apache/scale   305% / 50%  1         10        7          3m
+```
+
 <!--
 Here, CPU consumption has increased to 305% of the request.
 As a result, the deployment was resized to 7 replicas:
@@ -222,6 +299,11 @@ As a result, the deployment was resized to 7 replicas:
 kubectl get deployment php-apache
 ```
 
+<!--
+You should see the replica count matching the figure from the HorizontalPodAutoscaler
+-->
+你应该会看到与 HorizontalPodAutoscaler 中的数字与副本数匹配
+
 ```
 NAME         READY   UP-TO-DATE   AVAILABLE   AGE
 php-apache   7/7      7           7           19m
@@ -238,32 +320,40 @@ will differ from this example.
 {{< /note >}}
 
 <!--
-## Stop load
+## Stop generating load {#stop-load}
 
-We will finish our example by stopping the user load.
+To finish the example, stop sending the load.
 
-In the terminal where we created the container with `busybox` image, terminate
+In the terminal where you created the Pod that runs a `busybox` image, terminate
 the load generation by typing `<Ctrl> + C`.
 
-Then we will verify the result state (after a minute or so):
+Then verify the result state (after a minute or so):
 -->
-## 停止负载
+## 停止产生负载 {#stop-load}
 
-我们将通过停止负载来结束我们的示例。
+要完成该示例，请停止发送负载。
 
-在我们创建 busybox 容器的终端中，输入`<Ctrl> + C` 来终止负载的产生。
+在我们创建 `busybox` 容器的终端中，输入 `<Ctrl> + C` 来终止负载的产生。
 
-然后我们可以再次检查负载状态（等待几分钟时间）：
+然后验证结果状态（大约一分钟后）：
 
+<!-- # type Ctrl+C to end the watch when you're ready -->
 ```shell
-kubectl get hpa
+# 准备好后按 Ctrl+C 结束观察
+kubectl get hpa php-apache --watch
 ```
 
+<!-- The output is similar to: -->
+输出类似于：
+
 ```
 NAME         REFERENCE                     TARGET       MINPODS   MAXPODS   REPLICAS   AGE
 php-apache   Deployment/php-apache/scale   0% / 50%     1         10        1          11m
 ```
 
+<!-- and the Deployment also shows that it has scaled down: -->
+Deployment 也显示它已经缩小了：
+
 ```shell
 kubectl get deployment php-apache
 ```
@@ -274,16 +364,14 @@ php-apache   1/1     1            1           27m
 ```
 
 <!--
-Here CPU utilization dropped to 0, and so HPA autoscaled the number of replicas back down to 1.
+Once CPU utilization dropped to 0, the HPA automatically scaled the number of replicas back down to 1.
 -->
-这时，CPU 利用率已经降到 0，所以 HPA 将自动缩减副本数量至 1。
+一旦 CPU 利用率降至 0，HPA 会自动将副本数缩减为 1。
 
 <!--
 Autoscaling the replicas may take a few minutes.
 -->
-{{< note >}}
 自动扩缩完成副本数量的改变可能需要几分钟的时间。
-{{< /note >}}
 
 <!-- discussion -->
 
@@ -291,17 +379,17 @@ Autoscaling the replicas may take a few minutes.
 ## Autoscaling on multiple metrics and custom metrics
 
 You can introduce additional metrics to use when autoscaling the `php-apache` Deployment
-by making use of the `autoscaling/v2beta2` API version.
+by making use of the `autoscaling/v2` API version.
 -->
 ## 基于多项度量指标和自定义度量指标自动扩缩 {#autoscaling-on-multiple-metrics-and-custom-metrics}
 
-利用 `autoscaling/v2beta2` API 版本，你可以在自动扩缩 php-apache 这个
+利用 `autoscaling/v2` API 版本，你可以在自动扩缩 php-apache 这个
 Deployment 时使用其他度量指标。
 
 <!--
-First, get the YAML of your HorizontalPodAutoscaler in the `autoscaling/v2beta2` form:
+First, get the YAML of your HorizontalPodAutoscaler in the `autoscaling/v2` form:
 -->
-首先，将 HorizontalPodAutoscaler 的 YAML 文件改为 `autoscaling/v2beta2` 格式：
+首先，将 HorizontalPodAutoscaler 的 YAML 文件改为 `autoscaling/v2` 格式：
 
 ```shell
 kubectl get hpa php-apache -o yaml > /tmp/hpa-v2.yaml
@@ -313,7 +401,7 @@ Open the `/tmp/hpa-v2.yaml` file in an editor, and you should see YAML which loo
 在编辑器中打开 `/tmp/hpa-v2.yaml`：
 
 ```yaml
-apiVersion: autoscaling/v2beta2
+apiVersion: autoscaling/v2
 kind: HorizontalPodAutoscaler
 metadata:
   name: php-apache
@@ -376,13 +464,13 @@ advanced cluster monitoring setup.
 这些度量指标可能具有特定于集群的名称，并且需要更高级的集群监控设置。
 
 <!--
-The first of these alternative metric types is *pod metrics*.  These metrics describe pods, and
-are averaged together across pods and compared with a target value to determine the replica count.
+The first of these alternative metric types is *pod metrics*.  These metrics describe Pods, and
+are averaged together across Pods and compared with a target value to determine the replica count.
 They work much like resource metrics, except that they *only* support a `target` type of `AverageValue`.
 -->
-第一种可选的度量指标类型是 Pod 度量指标。这些指标从某一方面描述了 Pod，
+第一种可选的度量指标类型是 **Pod 度量指标**。这些指标从某一方面描述了 Pod，
 在不同 Pod 之间进行平均，并通过与一个目标值比对来确定副本的数量。
-它们的工作方式与资源度量指标非常相像，只是它们仅支持 `target` 类型为 `AverageValue`。
+它们的工作方式与资源度量指标非常相像，只是它们 **仅** 支持 `target` 类型为 `AverageValue`。
 
 <!--
 Pod metrics are specified using a metric block like this:
@@ -401,14 +489,14 @@ pods:
 
 <!--
 The second alternative metric type is *object metrics*. These metrics describe a different
-object in the same namespace, instead of describing pods. The metrics are not necessarily
+object in the same namespace, instead of describing Pods. The metrics are not necessarily
 fetched from the object; they only describe it. Object metrics support `target` types of
 both `Value` and `AverageValue`.  With `Value`, the target is compared directly to the returned
 metric from the API. With `AverageValue`, the value returned from the custom metrics API is divided
-by the number of pods before being compared to the target. The following example is the YAML
+by the number of Pods before being compared to the target. The following example is the YAML
 representation of the `requests-per-second` metric.
 -->
-第二种可选的度量指标类型是对象（Object）度量指标。这些度量指标用于描述
+第二种可选的度量指标类型是对象 **（Object）度量指标**。这些度量指标用于描述
 在相同名字空间中的别的对象，而非 Pods。
 请注意这些度量指标不一定来自某对象，它们仅用于描述这些对象。
 对象度量指标支持的 `target` 类型包括 `Value` 和 `AverageValue`。
@@ -447,7 +535,7 @@ you could update the definition above using `kubectl edit` to look like this:
 将上述 Horizontal Pod Autoscaler 的定义更改为：
 
 ```yaml
-apiVersion: autoscaling/v2beta1
+apiVersion: autoscaling/v2
 kind: HorizontalPodAutoscaler
 metadata:
   name: php-apache
@@ -463,7 +551,7 @@ spec:
     resource:
       name: cpu
       target:
-        type: AverageUtilization
+        type: Utilization
         averageUtilization: 50
   - type: Pods
     pods:
@@ -477,11 +565,11 @@ spec:
       metric:
         name: requests-per-second
       describedObject:
-        apiVersion: networking.k8s.io/v1beta1
+        apiVersion: networking.k8s.io/v1
         kind: Ingress
         name: main-route
       target:
-        kind: Value
+        type: Value
         value: 10k
 status:
   observedGeneration: 1
@@ -500,7 +588,7 @@ status:
       metric:
         name: requests-per-second
       describedObject:
-        apiVersion: networking.k8s.io/v1beta1
+        apiVersion: networking.k8s.io/v1
         kind: Ingress
         name: main-route
       current:
@@ -537,8 +625,8 @@ GET 请求执行：
 type: Object
 object:
   metric:
-    name: `http_requests`
-    selector: `verb=GET`
+    name: http_requests
+    selector: {matchLabels: {verb: GET}}
 ```
 
 <!--
@@ -561,7 +649,7 @@ relationship to any object in the Kubernetes cluster, such as metrics describing
 no direct correlation to Kubernetes namespaces. In Kubernetes 1.10 and later, you can address this use case
 with *external metrics*.
 -->
-### 基于与 Kubernetes 对象无关的度量指标执行扩缩
+### 基于与 Kubernetes 对象无关的度量指标执行扩缩   {#autoscaling-on-metrics-not-related-to-kubernetes-objects}
 
 运行在 Kubernetes 上的应用程序可能需要基于与 Kubernetes 集群中的任何对象
 没有明显关系的度量指标进行自动扩缩，
@@ -617,14 +705,14 @@ access to any metric, so cluster administrators should take care when exposing i
 <!--
 ## Appendix: Horizontal Pod Autoscaler Status Conditions
 
-When using the `autoscaling/v2beta2` form of the HorizontalPodAutoscaler, you will be able to see
+When using the `autoscaling/v2` form of the HorizontalPodAutoscaler, you will be able to see
 *status conditions* set by Kubernetes on the HorizontalPodAutoscaler.  These status conditions indicate
 whether or not the HorizontalPodAutoscaler is able to scale, and whether or not it is currently restricted
 in any way.
 -->
-## 附录：Horizontal Pod Autoscaler 状态条件
+## 附录：Horizontal Pod Autoscaler 状态条件   {#appendix-horizontal-pod-autoscaler-status-conditions}
 
-使用 `autoscaling/v2beta2` 格式的 HorizontalPodAutoscaler 时，你将可以看到
+使用 `autoscaling/v2` 格式的 HorizontalPodAutoscaler 时，你将可以看到
 Kubernetes 为 HorizongtalPodAutoscaler 设置的状态条件（Status Conditions）。
 这些状态条件可以显示当前 HorizontalPodAutoscaler 是否能够执行扩缩以及是否受到一定的限制。
 
@@ -662,7 +750,7 @@ Events:
 ```
 
 <!--
-For this HorizontalPodAutoscaler, we can see several conditions in a healthy state.  The first,
+For this HorizontalPodAutoscaler, you can see several conditions in a healthy state.  The first,
 `AbleToScale`, indicates whether or not the HPA is able to fetch and update scales, as well as
 whether or not any backoff-related conditions would prevent scaling.  The second, `ScalingActive`,
 indicates whether or not the HPA is enabled (i.e. the replica count of the target is not zero) and
@@ -676,12 +764,12 @@ HorizontalPodAutoscaler.
 首先，`AbleToScale` 表明 HPA 是否可以获取和更新扩缩信息，以及是否存在阻止扩缩的各种回退条件。
 其次，`ScalingActive` 表明 HPA 是否被启用（即目标的副本数量不为零） 以及是否能够完成扩缩计算。
 当这一状态为 `False` 时，通常表明获取度量指标存在问题。
-最后一个条件 `ScalingLimitted` 表明所需扩缩的值被 HorizontalPodAutoscaler
+最后一个条件 `ScalingLimited` 表明所需扩缩的值被 HorizontalPodAutoscaler
 所定义的最大或者最小值所限制（即已经达到最大或者最小扩缩值）。
 这通常表明你可能需要调整 HorizontalPodAutoscaler 所定义的最大或者最小副本数量的限制了。
 
 <!--
-## Appendix: Quantities
+## Quantities
 
 All metrics in the HorizontalPodAutoscaler and metrics APIs are specified using
 a special whole-number notation known in Kubernetes as a
@@ -691,7 +779,7 @@ will return whole numbers without a suffix when possible, and will generally ret
 quantities in milli-units otherwise.  This means you might see your metric value fluctuate
 between `1` and `1500m`, or `1` and `1.5` when written in decimal notation.
 -->
-## 附录：量纲    {#appendix-quantities}
+## 量纲    {#quantities}
 
 HorizontalPodAutoscaler 和 度量指标 API 中的所有的度量指标使用 Kubernetes 中称为
 {{< glossary_tooltip term_id="quantity" text="量纲（Quantity）">}}
@@ -701,24 +789,24 @@ HorizontalPodAutoscaler 和 度量指标 API 中的所有的度量指标使用 K
 这意味着你可能会看到你的度量指标在 `1` 和 `1500m` （也就是在十进制记数法中的 `1` 和 `1.5`）之间波动。
 
 <!--
-## Appendix: Other possible scenarios
+## Other possible scenarios
 
 ### Creating the autoscaler declaratively
 -->
-## 附录：其他可能的情况   {#appendix-other-possible-scenarios}
+## 其他可能的情况   {#other-possible-scenarios}
 
 ### 以声明式方式创建 Autoscaler     {#creating-the-autoscaler-declaratively}
 
 <!--
 Instead of using `kubectl autoscale` command to create a HorizontalPodAutoscaler imperatively we
-can use the following file to create it declaratively:
+can use the following manifest to create it declaratively:
 -->
-除了使用 `kubectl autoscale` 命令，也可以文件创建 HorizontalPodAutoscaler：
+除了使用 `kubectl autoscale` 命令，也可以使用以下清单以声明方式创建 HorizontalPodAutoscaler：
 
 {{< codenew file="application/hpa/php-apache.yaml" >}}
 
 <!--
-We will create the autoscaler by executing the following command:
+Then, create the autoscaler by executing the following command:
 -->
 使用如下命令创建 autoscaler：
 
@@ -729,4 +817,3 @@ kubectl create -f https://k8s.io/examples/application/hpa/php-apache.yaml
 ```
 horizontalpodautoscaler.autoscaling/php-apache created
 ```
-
diff --git a/content/zh/docs/tasks/run-application/horizontal-pod-autoscale.md b/content/zh-cn/docs/tasks/run-application/horizontal-pod-autoscale.md
similarity index 50%
rename from content/zh/docs/tasks/run-application/horizontal-pod-autoscale.md
rename to content/zh-cn/docs/tasks/run-application/horizontal-pod-autoscale.md
index b71841d7e2..546f6d226f 100644
--- a/content/zh/docs/tasks/run-application/horizontal-pod-autoscale.md
+++ b/content/zh-cn/docs/tasks/run-application/horizontal-pod-autoscale.md
@@ -1,7 +1,7 @@
 ---
 title: Pod 水平自动扩缩
 feature:
-  title: 水平扩缩 
+  title: 水平扩缩
   description: >
     使用一个简单的命令、一个 UI 或基于 CPU 使用情况自动对应用程序进行扩缩。
 
@@ -12,61 +12,97 @@ weight: 90
 <!-- overview -->
 
 <!--
-The Horizontal Pod Autoscaler automatically scales the number of Pods
-in a replication controller, deployment, replica set or stateful set based on observed CPU utilization (or, with
-[custom metrics](https://git.k8s.io/community/contributors/design-proposals/instrumentation/custom-metrics-api.md)
-support, on some other application-provided metrics). Note that Horizontal
-Pod Autoscaling does not apply to objects that can't be scaled, for example, DaemonSets.
+In Kubernetes, a _HorizontalPodAutoscaler_ automatically updates a workload resource (such as
+a {{< glossary_tooltip text="Deployment" term_id="deployment" >}} or
+{{< glossary_tooltip text="StatefulSet" term_id="statefulset" >}}), with the
+aim of automatically scaling the workload to match demand.
 -->
-Pod 水平自动扩缩（Horizontal Pod Autoscaler）
-可以基于 CPU 利用率自动扩缩 ReplicationController、Deployment、ReplicaSet 和
-StatefulSet 中的 Pod 数量。
-除了 CPU 利用率，也可以基于其他应程序提供的
-[自定义度量指标](https://git.k8s.io/community/contributors/design-proposals/instrumentation/custom-metrics-api.md)
-来执行自动扩缩。
-Pod 自动扩缩不适用于无法扩缩的对象，比如 DaemonSet。
+在 Kubernetes 中，_HorizontalPodAutoscaler_ 自动更新工作负载资源
+（例如 {{< glossary_tooltip text="Deployment" term_id="deployment" >}} 或者
+{{< glossary_tooltip text="StatefulSet" term_id="statefulset" >}}），
+目的是自动扩缩工作负载以满足需求。
 
 <!--
-The Horizontal Pod Autoscaler is implemented as a Kubernetes API resource and a controller.
-The resource determines the behavior of the controller.
-The controller periodically adjusts the number of replicas in a replication controller or deployment
-to match the observed metrics such as average CPU utilisation, average memory utilisation or any other custom metric to the target specified by the user.
+Horizontal scaling means that the response to increased load is to deploy more
+{{< glossary_tooltip text="Pods" term_id="pod" >}}.
+This is different from _vertical_ scaling, which for Kubernetes would mean
+assigning more resources (for example: memory or CPU) to the Pods that are already
+running for the workload.
+
+If the load decreases, and the number of Pods is above the configured minimum,
+the HorizontalPodAutoscaler instructs the workload resource (the Deployment, StatefulSet,
+or other similar resource) to scale back down.
 -->
-Pod 水平自动扩缩特性由 Kubernetes API 资源和控制器实现。资源决定了控制器的行为。
-控制器会周期性地调整副本控制器或 Deployment 中的副本数量，以使得类似 Pod 平均 CPU
-利用率、平均内存利用率这类观测到的度量值与用户所设定的目标值匹配。
+水平扩缩意味着对增加的负载的响应是部署更多的 {{< glossary_tooltip text="Pods" term_id="pod" >}}。
+这与 “垂直（Vertical）” 扩缩不同，对于 Kubernetes，
+垂直扩缩意味着将更多资源（例如：内存或 CPU）分配给已经为工作负载运行的 Pod。
+
+如果负载减少，并且 Pod 的数量高于配置的最小值，
+HorizontalPodAutoscaler 会指示工作负载资源（ Deployment、StatefulSet 或其他类似资源）缩减。
+
+<!--
+Horizontal pod autoscaling does not apply to objects that can't be scaled (for example:
+a {{< glossary_tooltip text="DaemonSet" term_id="daemonset" >}}.)
+-->
+水平 Pod 自动扩缩不适用于无法扩缩的对象（例如：{{< glossary_tooltip text="DaemonSet" term_id="daemonset" >}}。）
+
+<!--
+The HorizontalPodAutoscaler is implemented as a Kubernetes API resource and a
+{{< glossary_tooltip text="controller" term_id="controller" >}}.
+The resource determines the behavior of the controller.
+The horizontal pod autoscaling controller, running within the Kubernetes
+{{< glossary_tooltip text="control plane" term_id="control-plane" >}}, periodically adjusts the
+desired scale of its target (for example, a Deployment) to match observed metrics such as average
+CPU utilization, average memory utilization, or any other custom metric you specify.
+ -->
+HorizontalPodAutoscaler 被实现为 Kubernetes API 资源和{{< glossary_tooltip text="控制器" term_id="controller" >}}。
+
+资源决定了控制器的行为。在 Kubernetes {{< glossary_tooltip text="控制平面" term_id="control-plane" >}}内运行的水平
+Pod 自动扩缩控制器会定期调整其目标（例如：Deployment）的所需规模，以匹配观察到的指标，
+例如，平均 CPU 利用率、平均内存利用率或你指定的任何其他自定义指标。
+
+<!--
+There is [walkthrough example](/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/) of using
+horizontal pod autoscaling.
+-->
+使用水平 Pod 自动扩缩[演练示例](/zh-cn/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/)。
 
 <!-- body -->
 
 <!--
-## How does the Horizontal Pod Autoscaler work?
+## How does a HorizontalPodAutoscaler work?
 -->
-## Pod 水平自动扩缩工作机制
+## HorizontalPodAutoscaler 是如何工作的？ {#how-does-a-horizontalpodautoscaler-work}
 
-![水平自动扩缩示意图](/images/docs/horizontal-pod-autoscaler.svg)
+{{< figure src="/images/docs/horizontal-pod-autoscaler.svg" caption="HorizontalPodAutoscaler 控制 Deployment 及其 ReplicaSet 的规模" class="diagram-medium">}}
 
 <!--
-The Horizontal Pod Autoscaler is implemented as a control loop, with a period controlled
-by the controller manager's `--horizontal-pod-autoscaler-sync-period` flag (with a default
-value of 15 seconds).
+Kubernetes implements horizontal pod autoscaling as a control loop that runs intermittently
+(it is not a continuous process). The interval is set by the
+`--horizontal-pod-autoscaler-sync-period` parameter to the
+[`kube-controller-manager`](/docs/reference/command-line-tools-reference/kube-controller-manager/)
+(and the default interval is 15 seconds).
 -->
-Pod 水平自动扩缩器的实现是一个控制回路，由控制器管理器的 `--horizontal-pod-autoscaler-sync-period` 参数指定周期（默认值为 15 秒）。
+Kubernetes 将水平 Pod 自动扩缩实现为一个间歇运行的控制回路（它不是一个连续的过程）。间隔由
+[`kube-controller-manager`](/zh-cn/docs/reference/command-line-tools-reference/kube-controller-manager/)
+的 `--horizontal-pod-autoscaler-sync-period` 参数设置（默认间隔为 15 秒）。
 
 <!--
-During each period, the controller manager queries the resource utilization against the
-metrics specified in each HorizontalPodAutoscaler definition.  The controller manager
-obtains the metrics from either the resource metrics API (for per-pod resource metrics),
+Once during each period, the controller manager queries the resource utilization against the
+metrics specified in each HorizontalPodAutoscaler definition.  The controller manager 
+finds the target resource defined by the `scaleTargetRef`,
+then selects the pods based on the target resource's `.spec.selector` labels, and obtains the metrics from either the resource metrics API (for per-pod resource metrics),
 or the custom metrics API (for all other metrics).
 -->
-每个周期内，控制器管理器根据每个 HorizontalPodAutoscaler 定义中指定的指标查询资源利用率。
-控制器管理器可以从资源度量指标 API（按 Pod 统计的资源用量）和自定义度量指标
-API（其他指标）获取度量值。
+在每个时间段内，控制器管理器都会根据每个 HorizontalPodAutoscaler 定义中指定的指标查询资源利用率。
+控制器管理器找到由 `scaleTargetRef` 定义的目标资源，然后根据目标资源的 `.spec.selector` 标签选择 Pod，
+并从资源指标 API（针对每个 Pod 的资源指标）或自定义指标获取指标 API（适用于所有其他指标）。
 
 <!--
 * For per-pod resource metrics (like CPU), the controller fetches the metrics
   from the resource metrics API for each Pod targeted by the HorizontalPodAutoscaler.
   Then, if a target utilization value is set, the controller calculates the utilization
-  value as a percentage of the equivalent resource request on the containers in
+  value as a percentage of the equivalent [resource request](/docs/concepts/configuration/manage-resources-containers/#requests-and-limits) on the containers in
   each Pod.  If a target raw value is set, the raw metric values are used directly.
   The controller then takes the mean of the utilization or the raw value (depending on the type
   of target specified) across all targeted Pods, and produces a ratio used to scale
@@ -74,8 +110,8 @@ API（其他指标）获取度量值。
 -->
 * 对于按 Pod 统计的资源指标（如 CPU），控制器从资源指标 API 中获取每一个
   HorizontalPodAutoscaler 指定的 Pod 的度量值，如果设置了目标使用率，
-  控制器获取每个 Pod 中的容器资源使用情况，并计算资源使用率。
-  如果设置了 target 值，将直接使用原始数据（不再计算百分比）。
+  控制器获取每个 Pod 中的容器[资源使用](/zh-cn/docs/concepts/configuration/manage-resources-containers/#requests-and-limits) 情况，
+  并计算资源使用率。如果设置了 target 值，将直接使用原始数据（不再计算百分比）。
   接下来，控制器根据平均的资源使用率或原始值计算出扩缩的比例，进而计算出目标副本数。
 
   <!--
@@ -107,41 +143,34 @@ API（其他指标）获取度量值。
   在 `autoscaling/v2beta2` 版本 API 中，这个指标也可以根据 Pod 数量平分后再计算。
 
 <!--
-The HorizontalPodAutoscaler normally fetches metrics from a series of aggregated APIs (`metrics.k8s.io`,
-`custom.metrics.k8s.io`, and `external.metrics.k8s.io`).  The `metrics.k8s.io` API is usually provided by
-metrics-server, which needs to be launched separately. See
-[metrics-server](/docs/tasks/debug-application-cluster/resource-metrics-pipeline/#metrics-server)
-for instructions. The HorizontalPodAutoscaler can also fetch metrics directly from Heapster.
+The common use for HorizontalPodAutoscaler is to configure it to fetch metrics from
+{{< glossary_tooltip text="aggregated APIs" term_id="aggregation-layer" >}}
+(`metrics.k8s.io`, `custom.metrics.k8s.io`, or `external.metrics.k8s.io`).  The `metrics.k8s.io` API is
+usually provided by an add-on named Metrics Server, which needs to be launched separately.
+For more information about resource metrics, see
+[Metrics Server](/docs/tasks/debug/debug-cluster/resource-metrics-pipeline/#metrics-server).
 -->
-通常情况下，控制器将从一系列的聚合 API（`metrics.k8s.io`、`custom.metrics.k8s.io`
-和 `external.metrics.k8s.io`）中获取度量值。
-`metrics.k8s.io` API 通常由 Metrics 服务器（需要额外启动）提供。
-可以从 [metrics-server](/zh/docs/tasks/debug-application-cluster/resource-metrics-pipeline/#metrics-server) 获取更多信息。
-另外，控制器也可以直接从 Heapster 获取指标。
-
-{{< note >}}
-{{< feature-state state="deprecated" for_k8s_version="1.11" >}}
-<!--
-Fetching metrics from Heapster is deprecated as of Kubernetes 1.11.
--->
-自 Kubernetes 1.11 起，从 Heapster 获取指标特性已废弃。
-{{< /note >}}
+HorizontalPodAutoscaler 的常见用途是将其配置为从{{< glossary_tooltip text="聚合 API" term_id="aggregation-layer" >}}
+（`metrics.k8s.io`、`custom.metrics.k8s.io` 或 `external.metrics.k8s.io`）获取指标。
+`metrics.k8s.io` API 通常由名为 Metrics Server 的插件提供，需要单独启动。有关资源指标的更多信息，
+请参阅 [Metrics Server](/zh-cn/docs/tasks/debug/debug-cluster/resource-metrics-pipeline/#metrics-server)。
 
 <!--
-See [Support for metrics APIs](#support-for-metrics-apis) for more details.
--->
-关于指标 API 更多信息，请参考[度量值指标 API 的支持](#support-for-metrics-apis)。
+[Support for metrics APIs](#support-for-metrics-apis) explains the stability guarantees and support status for these
+different APIs.
 
-<!--
-The autoscaler accesses corresponding scalable controllers (such as replication controllers, deployments, and replica sets)
-by using the scale sub-resource. Scale is an interface that allows you to dynamically set the number of replicas and examine
-each of their current states. More details on scale sub-resource can be found
-[here](https://git.k8s.io/community/contributors/design-proposals/autoscaling/horizontal-pod-autoscaler.md#scale-subresource).
+The HorizontalPodAutoscaler controller accesses corresponding workload resources that support scaling (such as Deployments
+and StatefulSet). These resources each have a subresource named `scale`, an interface that allows you to dynamically set the
+number of replicas and examine each of their current states.
+For general information about subresources in the Kubernetes API, see
+[Kubernetes API Concepts](/docs/reference/using-api/api-concepts/).
 -->
-自动扩缩控制器使用 scale 子资源访问相应可支持扩缩的控制器（如副本控制器、
-Deployment 和 ReplicaSet）。
-`scale` 是一个可以动态设定副本数量和检查当前状态的接口。
-关于 scale 子资源的更多信息，请参考[这里](https://git.k8s.io/community/contributors/design-proposals/autoscaling/horizontal-pod-autoscaler.md#scale-subresource).
+对 [Metrics API 的支持](#support-for-metrics-apis)解释了这些不同 API 的稳定性保证和支持状态
+
+HorizontalPodAutoscaler 控制器访问支持扩缩的相应工作负载资源（例如：Deployments 和 StatefulSet）。
+这些资源每个都有一个名为 `scale` 的子资源，该接口允许你动态设置副本的数量并检查它们的每个当前状态。
+有关 Kubernetes API 子资源的一般信息，
+请参阅 [Kubernetes API 概念](/zh-cn/docs/reference/using-api/api-concepts/)。
 
 <!--
 ### Algorithm Details
@@ -166,47 +195,51 @@ desiredReplicas = ceil[currentReplicas * ( currentMetricValue / desiredMetricVal
 <!--
 For example, if the current metric value is `200m`, and the desired value
 is `100m`, the number of replicas will be doubled, since `200.0 / 100.0 ==
-2.0` If the current value is instead `50m`, we'll halve the number of
-replicas, since `50.0 / 100.0 == 0.5`.  We'll skip scaling if the ratio is
-sufficiently close to 1.0 (within a globally-configurable tolerance, from
-the `--horizontal-pod-autoscaler-tolerance` flag, which defaults to 0.1).
+2.0` If the current value is instead `50m`, you'll halve the number of
+replicas, since `50.0 / 100.0 == 0.5`.  The control plane skips any scaling
+action if the ratio is sufficiently close to 1.0 (within a globally-configurable
+tolerance, 0.1 by default).
 -->
-例如，当前度量值为 `200m`，目标设定值为 `100m`，那么由于 `200.0/100.0 == 2.0`，
-副本数量将会翻倍。
-如果当前指标为 `50m`，副本数量将会减半，因为`50.0/100.0 == 0.5`。
-如果计算出的扩缩比例接近 1.0
-（根据`--horizontal-pod-autoscaler-tolerance` 参数全局配置的容忍值，默认为 0.1），
-将会放弃本次扩缩。
+例如，如果当前指标值为 `200m`，而期望值为 `100m`，则副本数将加倍，
+因为 `200.0 / 100.0 == 2.0` 如果当前值为 `50m`，则副本数将减半，
+因为 `50.0 / 100.0 == 0.5`。如果比率足够接近 1.0（在全局可配置的容差范围内，默认为 0.1），
+则控制平面会跳过扩缩操作。
 
 <!--
 When a `targetAverageValue` or `targetAverageUtilization` is specified,
 the `currentMetricValue` is computed by taking the average of the given
 metric across all Pods in the HorizontalPodAutoscaler's scale target.
-Before checking the tolerance and deciding on the final values, we take
-pod readiness and missing metrics into consideration, however.
+
+Before checking the tolerance and deciding on the final values, the control
+plane also considers whether any metrics are missing, and how many Pods
+are [`Ready`](/docs/concepts/workloads/pods/pod-lifecycle/#pod-conditions).
 -->
 如果 HorizontalPodAutoscaler 指定的是 `targetAverageValue` 或 `targetAverageUtilization`，
 那么将会把指定 Pod 度量值的平均值做为 `currentMetricValue`。
-然而，在检查容忍度和决定最终扩缩值前，我们仍然会把那些无法获取指标的 Pod 统计进去。
+
+在检查容差并决定最终值之前，控制平面还会考虑是否缺少任何指标，
+以及有多少 Pod [`已就绪`](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#pod-conditions)。
 
 <!--
-All Pods with a deletion timestamp set (i.e. Pods in the process of being
-shut down) and all failed Pods are discarded.
+All Pods with a deletion timestamp set (objects with a deletion timestamp are
+in the process of being shut down / removed) are ignored, and all failed Pods
+are discarded.
 
 If a particular Pod is missing metrics, it is set aside for later; Pods
 with missing metrics will be used to adjust the final scaling amount.
 -->
-所有被标记了删除时间戳（Pod 正在关闭过程中）的 Pod 和失败的 Pod 都会被忽略。
+所有设置了删除时间戳的 Pod（带有删除时间戳的对象正在关闭/移除的过程中）都会被忽略，
+所有失败的 Pod 都会被丢弃。
 
 如果某个 Pod 缺失度量值，它将会被搁置，只在最终确定扩缩数量时再考虑。
 
 <!--
-When scaling on CPU, if any pod has yet to become ready (i.e. it's still
-initializing) *or* the most recent metric point for the pod was before it
+When scaling on CPU, if any pod has yet to become ready (it's still
+initializing, or possibly is unhealthy) *or* the most recent metric point for the pod was before it
 became ready, that pod is set aside as well.
 -->
-当使用 CPU 指标来扩缩时，任何还未就绪（例如还在初始化）状态的 Pod *或* 最近的指标
-度量值采集于就绪状态前的 Pod，该 Pod 也会被搁置。
+当使用 CPU 指标来扩缩时，任何还未就绪（还在初始化，或者可能是不健康的）状态的 Pod **或**
+最近的指标度量值采集于就绪状态前的 Pod，该 Pod 也会被搁置。
 
 <!--
 Due to technical constraints, the HorizontalPodAutoscaler controller
@@ -220,13 +253,11 @@ ready to be the first if it occurred within a longer, configurable time
 since it started. This value is configured with the `--horizontal-pod-autoscaler-cpu-initialization-period` flag, and its
 default is 5 minutes.
 -->
-由于受技术限制，Pod 水平扩缩控制器无法准确的知道 Pod 什么时候就绪，
-也就无法决定是否暂时搁置该 Pod。
-`--horizontal-pod-autoscaler-initial-readiness-delay` 参数（默认为 30s）用于设置 Pod 准备时间，
-在此时间内的 Pod 统统被认为未就绪。
-`--horizontal-pod-autoscaler-cpu-initialization-period` 参数（默认为5分钟）
-用于设置 Pod 的初始化时间，
-在此时间内的 Pod，CPU 资源度量值将不会被采纳。
+由于技术限制，HorizontalPodAutoscaler 控制器在确定是否保留某些 CPU 指标时无法准确确定 Pod 首次就绪的时间。
+相反，如果 Pod 未准备好并在其启动后的一个可配置的短时间窗口内转换为未准备好，它会认为 Pod “尚未准备好”。
+该值使用 `--horizontal-pod-autoscaler-initial-readiness-delay` 标志配置，默认值为 30 秒。
+一旦 Pod 准备就绪，如果它发生在自启动后较长的、可配置的时间内，它就会认为任何向准备就绪的转换都是第一个。
+该值由 `-horizontal-pod-autoscaler-cpu-initialization-period` 标志配置，默认为 5 分钟。
 
 <!--
 The `currentMetricValue / desiredMetricValue` base scale ratio is then
@@ -236,34 +267,33 @@ calculated using the remaining pods not set aside or discarded from above.
 计算出来。
 
 <!--
-If there were any missing metrics, we recompute the average more
+If there were any missing metrics, the control plane recomputes the average more
 conservatively, assuming those pods were consuming 100% of the desired
 value in case of a scale down, and 0% in case of a scale up.  This dampens
 the magnitude of any potential scale.
 -->
-如果缺失任何的度量值，我们会更保守地重新计算平均值，
-在需要缩小时假设这些 Pod 消耗了目标值的 100%，
-在需要放大时假设这些 Pod 消耗了 0% 目标值。
-这可以在一定程度上抑制扩缩的幅度。
+如果缺失某些度量值，控制平面会更保守地重新计算平均值，在需要缩小时假设这些 Pod 消耗了目标值的 100%，
+在需要放大时假设这些 Pod 消耗了 0% 目标值。这可以在一定程度上抑制扩缩的幅度。
 
 <!--
-Furthermore, if any not-yet-ready pods were present, and we would have
-scaled up without factoring in missing metrics or not-yet-ready pods, we
-conservatively assume the not-yet-ready pods are consuming 0% of the
-desired metric, further dampening the magnitude of a scale up.
+Furthermore, if any not-yet-ready pods were present, and the workload would have
+scaled up without factoring in missing metrics or not-yet-ready pods,
+the controller conservatively assumes that the not-yet-ready pods are consuming 0%
+of the desired metric, further dampening the magnitude of a scale up.
 -->
-此外，如果存在任何尚未就绪的 Pod，我们可以在不考虑遗漏指标或尚未就绪的 Pod 的情况下进行扩缩，
-我们保守地假设尚未就绪的 Pod 消耗了期望指标的 0%，从而进一步降低了扩缩的幅度。
+此外，如果存在任何尚未就绪的 Pod，工作负载会在不考虑遗漏指标或尚未就绪的 Pod 的情况下进行扩缩，
+控制器保守地假设尚未就绪的 Pod 消耗了期望指标的 0%，从而进一步降低了扩缩的幅度。
 
 <!--
-After factoring in the not-yet-ready pods and missing metrics, we
-recalculate the usage ratio.  If the new ratio reverses the scale
-direction, or is within the tolerance, we skip scaling.  Otherwise, we use
-the new ratio to scale.
+After factoring in the not-yet-ready pods and missing metrics, the
+controller recalculates the usage ratio.  If the new ratio reverses the scale
+direction, or is within the tolerance, the controller doesn't take any scaling
+action. In other cases, the new ratio is used to decide any change to the
+number of Pods.
 -->
-在扩缩方向（缩小或放大）确定后，我们会把未就绪的 Pod 和缺少指标的 Pod 考虑进来再次计算使用率。
-如果新的比率与扩缩方向相反，或者在容忍范围内，则跳过扩缩。
-否则，我们使用新的扩缩比例。
+考虑到尚未准备好的 Pod 和缺失的指标后，控制器会重新计算使用率。
+如果新的比率与扩缩方向相反，或者在容差范围内，则控制器不会执行任何扩缩操作。
+在其他情况下，新比率用于决定对 Pod 数量的任何更改。
 
 <!--
 Note that the *original* value for the average utilization is reported
@@ -271,8 +301,8 @@ back via the HorizontalPodAutoscaler status, without factoring in the
 not-yet-ready pods or missing metrics, even when the new usage ratio is
 used.
 -->
-注意，平均利用率的*原始*值会通过 HorizontalPodAutoscaler 的状态体现（
-即使使用了新的使用率，也不考虑未就绪 Pod 和 缺少指标的 Pod)。
+注意，平均利用率的 **原始** 值是通过 HorizontalPodAutoscaler 状态体现的，
+而不考虑尚未准备好的 Pod 或缺少的指标，即使使用新的使用率也是如此。
 
 <!--
 If multiple metrics are specified in a HorizontalPodAutoscaler, this
@@ -307,62 +337,42 @@ fluctuating metric values.
 <!--
 ## API Object
 
-The Horizontal Pod Autoscaler is an API resource in the Kubernetes `autoscaling` API group.
-The current stable version, which only includes support for CPU autoscaling,
-can be found in the `autoscaling/v1` API version.
+The Horizontal Pod Autoscaler is an API resource in the Kubernetes
+`autoscaling` API group.  The current stable version can be found in
+the `autoscaling/v2` API version which includes support for scaling on
+memory and custom metrics. The new fields introduced in
+`autoscaling/v2` are preserved as annotations when working with
+`autoscaling/v1`.
 -->
 ## API 对象   {#api-object}
 
-HorizontalPodAutoscaler 是 Kubernetes `autoscaling` API 组的资源。
-在当前稳定版本（`autoscaling/v1`）中只支持基于 CPU 指标的扩缩。
-
-<!--
-The beta version, which includes support for scaling on memory and custom metrics,
-can be found in `autoscaling/v2beta2`. The new fields introduced in `autoscaling/v2beta2`
-are preserved as annotations when working with `autoscaling/v1`.
--->
-API 的 beta 版本（`autoscaling/v2beta2`）引入了基于内存和自定义指标的扩缩。
-在 `autoscaling/v2beta2` 版本中新引入的字段在 `autoscaling/v1` 版本中以注解
-的形式得以保留。
+HorizontalPodAutoscaler 是 Kubernetes `autoscaling` API 组中的 API 资源。
+当前的稳定版本可以在 `autoscaling/v2` API 版本中找到，其中包括对基于内存和自定义指标执行扩缩的支持。
+在使用 `autoscaling/v1` 时，`autoscaling/v2` 中引入的新字段作为注释保留。
 
 <!--
 When you create a HorizontalPodAutoscaler API object, make sure the name specified is a valid
 [DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
 More details about the API object can be found at
-[HorizontalPodAutoscaler Object](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#horizontalpodautoscaler-v1-autoscaling).
+[HorizontalPodAutoscaler Object](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#horizontalpodautoscaler-v2-autoscaling).
 -->
 创建 HorizontalPodAutoscaler 对象时，需要确保所给的名称是一个合法的
-[DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
+[DNS 子域名](/zh-cn/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
 有关 API 对象的更多信息，请查阅
-[HorizontalPodAutoscaler 对象设计文档](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#horizontalpodautoscaler-v1-autoscaling)。
+[HorizontalPodAutoscaler 对象设计文档](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#horizontalpodautoscaler-v2-autoscaling)。
 
 <!--
-## Support for Horizontal Pod Autoscaler in kubectl
+## Stability of workload scale {#flapping}
 
-Horizontal Pod Autoscaler, like every API resource, is supported in a standard way by `kubectl`.
-We can create a new autoscaler using `kubectl create` command.
-We can list autoscalers by `kubectl get hpa` and get detailed description by `kubectl describe hpa`.
-Finally, we can delete an autoscaler using `kubectl delete hpa`.
+When managing the scale of a group of replicas using the HorizontalPodAutoscaler,
+it is possible that the number of replicas keeps fluctuating frequently due to the
+dynamic nature of the metrics evaluated. This is sometimes referred to as *thrashing*,
+or *flapping*. It's similar to the concept of *hysteresis* in cybernetics.
 -->
-## kubectl 对 Horizontal Pod Autoscaler 的支持
+## 工作量规模的稳定性 {#flapping}
 
-与其他 API 资源类似，`kubectl` 以标准方式支持 HPA。
-我们可以通过 `kubectl create` 命令创建一个 HPA 对象，
-通过 `kubectl get hpa` 命令来获取所有 HPA 对象，
-通过 `kubectl describe hpa` 命令来查看 HPA 对象的详细信息。
-最后，可以使用 `kubectl delete hpa` 命令删除对象。
-
-<!--
-In addition, there is a special `kubectl autoscale` command for creating a HorizontalPodAutoscaler.
-For instance, executing `kubectl autoscale rs foo --min=2 --max=5 --cpu-percent=80`
-will create an autoscaler for replication set *foo*, with target CPU utilization set to `80%`
-and the number of replicas between 2 and 5.
-The detailed documentation of `kubectl autoscale` can be found [here](/docs/reference/generated/kubectl/kubectl-commands/#autoscale).
--->
-此外，还有个简便的命令 `kubectl autoscale` 来创建 HPA 对象。
-例如，命令 `kubectl autoscale rs foo --min=2 --max=5 --cpu-percent=80` 将会为名
-为 *foo* 的 ReplicationSet 创建一个 HPA 对象，
-目标 CPU 使用率为 `80%`，副本数量配置为 2 到 5 之间。
+在使用 HorizontalPodAutoscaler 管理一组副本的规模时，由于评估的指标的动态特性，
+副本的数量可能会经常波动。这有时被称为 **抖动（thrashing）** 或 **波动（flapping）**。它类似于控制论中的 **滞后（hysteresis）** 概念。
 
 <!--
 ## Autoscaling during rolling update
@@ -388,59 +398,9 @@ If you perform a rolling update of a StatefulSet that has an autoscaled number o
 replicas, the StatefulSet directly manages its set of Pods (there is no intermediate resource
 similar to ReplicaSet).
 -->
-如果你对一个副本个数被自动扩缩的 StatefulSet 执行滚动更新， 该 StatefulSet
+如果你对一个副本个数被自动扩缩的 StatefulSet 执行滚动更新，该 StatefulSet
 会直接管理它的 Pod 集合 （不存在类似 ReplicaSet 这样的中间资源）。
 
-<!--
-## Support for cooldown/delay
-
-When managing the scale of a group of replicas using the Horizontal Pod Autoscaler,
-it is possible that the number of replicas keeps fluctuating frequently due to the
-dynamic nature of the metrics evaluated. This is sometimes referred to as *thrashing*.
--->
-## 冷却/延迟支持
-
-当使用 Horizontal Pod Autoscaler 管理一组副本扩缩时，
-有可能因为指标动态的变化造成副本数量频繁的变化，有时这被称为
-*抖动（Thrashing）*。
-
-<!--
-Starting from v1.6, a cluster operator can mitigate this problem by tuning
-the global HPA settings exposed as flags for the `kube-controller-manager` component:
--->
-从 v1.6 版本起，集群操作员可以调节某些 `kube-controller-manager` 的全局参数来
-缓解这个问题。
-
-<!--
-Starting from v1.12, a new algorithmic update removes the need for the
-upscale delay.
--->
-从 v1.12 开始，算法调整后，扩容操作时的延迟就不必设置了。
-
-<!--
-- `--horizontal-pod-autoscaler-downscale-stabilization`: Specifies the duration of the
-  downscale stabilization time window. Horizontal Pod Autoscaler remembers
-  this historical recommended sizes and only acts on the largest size within this time window.
-  The default value is 5 minutes (`5m0s`).
--->
-- `--horizontal-pod-autoscaler-downscale-stabilization`: 设置缩容冷却时间窗口长度。
-  水平 Pod
-扩缩器能够记住过去建议的负载规模，并仅对此时间窗口内的最大规模执行操作。
-  默认值是 5 分钟（`5m0s`）。
-
-<!--
-When tuning these parameter values, a cluster operator should be aware of the possible
-consequences. If the delay (cooldown) value is set too long, there could be complaints
-that the Horizontal Pod Autoscaler is not responsive to workload changes. However, if
-the delay value is set too short, the scale of the replicas set may keep thrashing as
-usual.
--->
-{{< note >}}
-当调整这些参数时，集群操作员需要明白其可能的影响。
-如果延迟（冷却）时间设置的太长，Horizontal Pod Autoscaler 可能会不能很好的改变负载。
-如果延迟（冷却）时间设置的太短，那么副本数量有可能跟以前一样出现抖动。
-{{< /note >}}
-
 <!--
 ## Support for resource metrics
 
@@ -497,15 +457,15 @@ pod usage is still within acceptable limits.
 {{< feature-state for_k8s_version="v1.20" state="alpha" >}}
 
 <!--
-`HorizontalPodAutoscaler` also supports a container metric source where the HPA can track the
+The HorizontalPodAutoscaler API also supports a container metric source where the HPA can track the
 resource usage of individual containers across a set of Pods, in order to scale the target resource.
 This lets you configure scaling thresholds for the containers that matter most in a particular Pod.
 For example, if you have a web application and a logging sidecar, you can scale based on the resource
 use of the web application, ignoring the sidecar container and its resource use.
 -->
-`HorizontalPodAutoscaler` 也支持容器指标源，这时 HPA 可以跟踪记录一组 Pods 中各个容器的
+HorizontalPodAutoscaler API 也支持容器指标源，这时 HPA 可以跟踪记录一组 Pods 中各个容器的
 资源用量，进而触发扩缩目标对象的操作。
-容器资源指标的支持使得你可以为特定 Pod 中最重要的容器配置规模缩放阈值。
+容器资源指标的支持使得你可以为特定 Pod 中最重要的容器配置规模扩缩阈值。
 例如，如果你有一个 Web 应用和一个执行日志操作的边车容器，你可以基于 Web 应用的
 资源用量来执行扩缩，忽略边车容器的存在及其资源用量。
 
@@ -517,7 +477,7 @@ of the pods then those pods are ignored and the recommendation is recalculated.
 for more details about the calculation. To use container resources for autoscaling define a metric
 source as follows:
 -->
-如果你更改缩放目标对象，令其使用新的、包含一组不同的容器的 Pod 规约，你就需要
+如果你更改扩缩目标对象，令其使用新的、包含一组不同的容器的 Pod 规约，你就需要
 修改 HPA 的规约才能基于新添加的容器来执行规模扩缩操作。
 如果指标源中指定的容器不存在或者仅存在于部分 Pods 中，那么这些 Pods 会被忽略，
 HPA 会重新计算资源用量值。参阅[算法](#algorithm-details)小节进一步了解计算细节。
@@ -563,51 +523,50 @@ the old container name from the HPA specification.
 {{< /note >}}
 
 <!--
-## Support for multiple metrics
+## Scaling on custom metrics
 
-Kubernetes 1.6 adds support for scaling based on multiple metrics. You can use the `autoscaling/v2beta2` API
-version to specify multiple metrics for the Horizontal Pod Autoscaler to scale on. Then, the Horizontal Pod
-Autoscaler controller will evaluate each metric, and propose a new scale based on that metric. The largest of the
-proposed scales will be used as the new scale.
--->
-## 多指标支持   {#support-for-multiple-metrics}
+(the `autoscaling/v2beta2` API version previously provided this ability as a beta feature)
 
-Kubernetes 1.6 开始支持基于多个度量值进行扩缩。
-你可以使用 `autoscaling/v2beta2` API 来为 Horizontal Pod Autoscaler 指定多个指标。
-Horizontal Pod Autoscaler 会根据每个指标计算，并生成一个扩缩建议。
-幅度最大的扩缩建议会被采纳。
+Provided that you use the `autoscaling/v2` API version, you can configure a HorizontalPodAutoscaler
+to scale based on a custom metric (that is not built in to Kubernetes or any Kubernetes component).
+The HorizontalPodAutoscaler controller then queries for these custom metrics from the Kubernetes
+API.
 
-<!--
-## Support for custom metrics
-
-Kubernetes 1.2 added alpha support for scaling based on application-specific metrics using special annotations.
-Support for these annotations was removed in Kubernetes 1.6 in favor of the new autoscaling API.  While the old method for collecting
-custom metrics is still available, these metrics will not be available for use by the Horizontal Pod Autoscaler, and the former
-annotations for specifying which custom metrics to scale on are no longer honored by the Horizontal Pod Autoscaler controller.
--->
-## 自定义指标支持   {#support-for-custom-metrics}
-
-{{< note >}}
-在 Kubernetes 1.2 增加了支持基于使用特殊注解表达的、特定于具体应用的扩缩能力，
-此能力处于 Alpha 阶段。
-从 Kubernetes 1.6 起，由于新的 autoscaling API 的引入，这些 annotation 就被废弃了。
-虽然收集自定义指标的旧方法仍然可用，Horizontal Pod Autoscaler 调度器将不会再使用这些度量值。
-同时，Horizontal Pod Autoscaler 也不再使用之前用于指定用户自定义指标的注解。
-{{< /note >}}
-
-<!--
-Kubernetes 1.6 adds support for making use of custom metrics in the Horizontal Pod Autoscaler.
-You can add custom metrics for the Horizontal Pod Autoscaler to use in the `autoscaling/v2beta2` API.
-Kubernetes then queries the new custom metrics API to fetch the values of the appropriate custom metrics.
--->
-自 Kubernetes 1.6 起，Horizontal Pod Autoscaler 支持使用自定义指标。
-你可以使用 `autoscaling/v2beta2` API 为 Horizontal Pod Autoscaler 指定用户自定义指标。
-Kubernetes 会通过用户自定义指标 API 来获取相应的指标。
-
-<!--
 See [Support for metrics APIs](#support-for-metrics-apis) for the requirements.
 -->
-关于指标 API 的要求，请参阅[对 Metrics API 的支持](#support-for-metrics-apis)。
+## 扩展自定义指标 {#scaling-on-custom-metrics}
+
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
+
+（之前的 `autoscaling/v2beta2` API 版本将此功能作为 beta 功能提供）
+
+如果你使用 `autoscaling/v2` API 版本，则可以将 HorizontalPodAutoscaler
+配置为基于自定义指标（未内置于 Kubernetes 或任何 Kubernetes 组件）进行扩缩。
+HorizontalPodAutoscaler 控制器能够从 Kubernetes API 查询这些自定义指标。
+
+有关要求，请参阅对 [Metrics APIs 的支持](#support-for-metrics-apis)。
+
+<!--
+## Scaling on multiple metrics
+
+(the `autoscaling/v2beta2` API version previously provided this ability as a beta feature)
+
+Provided that you use the `autoscaling/v2` API version, you can specify multiple metrics for a
+HorizontalPodAutoscaler to scale on. Then, the HorizontalPodAutoscaler controller evaluates each metric,
+and proposes a new scale based on that metric. The HorizontalPodAutoscaler takes the maximum scale
+recommended for each metric and sets the workload to that size (provided that this isn't larger than the
+overall maximum that you configured).
+-->
+## 基于多个指标来执行扩缩 {#scaling-on-multiple-metrics}
+
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
+
+（之前的 `autoscaling/v2beta2` API 版本将此功能作为 beta 功能提供）
+
+如果你使用 `autoscaling/v2` API 版本，你可以为 HorizontalPodAutoscaler 指定多个指标以进行扩缩。
+HorizontalPodAutoscaler 控制器评估每个指标，并根据该指标提出一个新的比例。
+HorizontalPodAutoscaler 采用为每个指标推荐的最大比例，
+并将工作负载设置为该大小（前提是这不大于你配置的总体最大值）。
 
 <!--
 ## Support for metrics APIs
@@ -629,70 +588,73 @@ APIs, cluster administrators must ensure that:
      It can be launched as a cluster addon.
 
    * For custom metrics, this is the `custom.metrics.k8s.io` API.  It's provided by "adapter" API servers provided by metrics solution vendors.
-     Check with your metrics pipeline, or the [list of known solutions](https://github.com/kubernetes/metrics/blob/master/IMPLEMENTATIONS.md#custom-metrics-api).
-     If you would like to write your own, check out the [boilerplate](https://github.com/kubernetes-sigs/custom-metrics-apiserver) to get started.
+     Check with your metrics pipeline to see if there is a Kubernetes metrics adapter available.
 
    * For external metrics, this is the `external.metrics.k8s.io` API.  It may be provided by the custom metrics adapters provided above.
-
-* The `--horizontal-pod-autoscaler-use-rest-clients` is `true` or unset.  Setting this to false switches to Heapster-based autoscaling, which is deprecated.
 -->
-* 启用了 [API 聚合层](/zh/docs/tasks/extend-kubernetes/configure-aggregation-layer/)
+* 启用了 [API 聚合层](/zh-cn/docs/tasks/extend-kubernetes/configure-aggregation-layer/)
 
 * 相应的 API 已注册：
 
    * 对于资源指标，将使用 `metrics.k8s.io` API，一般由 [metrics-server](https://github.com/kubernetes-incubator/metrics-server) 提供。
      它可以作为集群插件启动。
-    
+
    * 对于自定义指标，将使用 `custom.metrics.k8s.io` API。
     它由其他度量指标方案厂商的“适配器（Adapter）” API 服务器提供。
-    确认你的指标流水线，或者查看[已知方案列表](https://github.com/kubernetes/metrics/blob/master/IMPLEMENTATIONS.md#custom-metrics-api)。
-    如果你想自己编写，请从 [boilerplate](https://github.com/kubernetes-sigs/custommetrics-apiserver)开始。
-   
+    检查你的指标管道以查看是否有可用的 Kubernetes 指标适配器。
+
    * 对于外部指标，将使用 `external.metrics.k8s.io` API。可能由上面的自定义指标适配器提供。
 
-* `--horizontal-pod-autoscaler-use-rest-clients` 参数设置为 `true` 或者不设置。 
-  如果设置为 false，则会切换到基于 Heapster 的自动扩缩，这个特性已经被弃用了。
-
-<!--  
+<!--
 For more information on these different metrics paths and how they differ please see the relevant design proposals for
-[the HPA V2](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/autoscaling/hpa-v2.md),
-[custom.metrics.k8s.io](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/instrumentation/custom-metrics-api.md)
-and [external.metrics.k8s.io](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/instrumentation/external-metrics-api.md).
+[the HPA V2](https://github.com/kubernetes/design-proposals-archive/blob/main/autoscaling/hpa-v2.md),
+[custom.metrics.k8s.io](https://github.com/kubernetes/design-proposals-archive/blob/main/instrumentation/custom-metrics-api.md)
+and [external.metrics.k8s.io](https://github.com/kubernetes/design-proposals-archive/blob/main/instrumentation/external-metrics-api.md).
 -->
 关于指标来源以及其区别的更多信息，请参阅相关的设计文档，
-[the HPA V2](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/autoscaling/hpa-v2.md)、
-[custom.metrics.k8s.io](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/instrumentation/custom-metrics-api.md) 和
-[external.metrics.k8s.io](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/instrumentation/external-metrics-api.md)。
+[HPA V2](https://github.com/kubernetes/design-proposals-archive/blob/main/autoscaling/hpa-v2.md)，
+[custom.metrics.k8s.io](https://github.com/kubernetes/design-proposals-archive/blob/main/instrumentation/custom-metrics-api.md) 和
+[external.metrics.k8s.io](https://github.com/kubernetes/design-proposals-archive/blob/main/instrumentation/external-metrics-api.md)。
 
 <!--
 For examples of how to use them see [the walkthrough for using custom metrics](/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/#autoscaling-on-multiple-metrics-and-custom-metrics)
 and [the walkthrough for using external metrics](/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/#autoscaling-on-metrics-not-related-to-kubernetes-objects).
 -->
-关于如何使用它们的示例，请参考 
-[使用自定义指标的教程](/zh/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/#autoscaling-on-multiple-metrics-and-custom-metrics)
-和[使用外部指标的教程](/zh/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/#autoscaling-on-metrics-not-related-to-kubernetes-objects)。
+关于如何使用它们的示例，请参考
+[使用自定义指标的教程](/zh-cn/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/#autoscaling-on-multiple-metrics-and-custom-metrics)
+和[使用外部指标的教程](/zh-cn/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/#autoscaling-on-metrics-not-related-to-kubernetes-objects)。
 
-<!--  
-## Support for configurable scaling behavior
+<!--
+## Configurable scaling behavior
 
-Starting from
-[v1.18](https://github.com/kubernetes/enhancements/blob/master/keps/sig-autoscaling/853-configurable-hpa-scale-velocity/README.md)
-the `v2beta2` API allows scaling behavior to be configured through the HPA
-`behavior` field. Behaviors are specified separately for scaling up and down in
-`scaleUp` or `scaleDown` section under the `behavior` field. A stabilization
-window can be specified for both directions which prevents the flapping of the
-number of the replicas in the scaling target. Similarly specifying scaling
-policies controls the rate of change of replicas while scaling.
+(the `autoscaling/v2beta2` API version previously provided this ability as a beta feature)
+
+If you use the `v2` HorizontalPodAutoscaler API, you can use the `behavior` field
+(see the [API reference](/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v2/#HorizontalPodAutoscalerSpec))
+to configure separate scale-up and scale-down behaviors.
+You specify these behaviours by setting `scaleUp` and / or `scaleDown`
+under the `behavior` field.
 -->
-## 支持可配置的扩缩 {#support-for-configurable-scaling-behaviour}
+## 可配置的扩缩行为 {#configurable-scaling-behavior}
 
-从 [v1.18](https://github.com/kubernetes/enhancements/blob/master/keps/sig-autoscaling/853-configurable-hpa-scale-velocity/README.md)
-开始，`v2beta2` API 允许通过 HPA 的 `behavior` 字段配置扩缩行为。
-在 `behavior` 字段中的 `scaleUp` 和 `scaleDown` 分别指定扩容和缩容行为。
-可以两个方向指定一个稳定窗口，以防止扩缩目标中副本数量的波动。
-类似地，指定扩缩策略可以控制扩缩时副本数的变化率。
+{{< feature-state for_k8s_version="v1.23" state="stable" >}}
 
-<!--  
+（之前的 `autoscaling/v2beta2` API 版本将此功能作为 beta 功能提供）
+
+如果你使用 `v2` HorizontalPodAutoscaler API，你可以使用 `behavior` 字段
+（请参阅 [API 参考](/zh-cn/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v2/#HorizontalPodAutoscalerSpec)）
+来配置单独的放大和缩小行为。你可以通过在行为字段下设置 `scaleUp` 和/或 `scaleDown` 来指定这些行为。
+
+<!--
+You can specify a _stabilization window_ that prevents [flapping](#flapping)
+the replica count for a scaling target. Scaling policies also let you controls the
+rate of change of replicas while scaling.
+-->
+
+你可以指定一个 “稳定窗口”，以防止扩缩目标的副本计数发生[波动](#flapping)。
+扩缩策略还允许你在扩缩时控制副本的变化率。
+
+<!--
 ### Scaling Policies
 
 One or more scaling policies can be specified in the `behavior` section of the spec.
@@ -701,9 +663,8 @@ change is the policy which is selected by default. The following example shows t
 while scaling down:
 -->
 ### 扩缩策略 {#scaling-policies}
-在 spec 字段的 `behavior` 部分可以指定一个或多个扩缩策略。
-当指定多个策略时，默认选择允许更改最多的策略。
-下面的例子展示了缩容时的行为:
+可以在规约的 `behavior` 部分中指定一个或多个扩缩策略。当指定多个策略时，
+允许最大更改量的策略是默认选择的策略。以下示例显示了缩小时的这种行为：
 
 ```yaml
 behavior:
@@ -717,7 +678,7 @@ behavior:
       periodSeconds: 60
 ```
 
-<!--  
+<!--
 `periodSeconds` indicates the length of time in the past for which the policy must hold true.
 The first policy _(Pods)_ allows at most 4 replicas to be scaled down in one minute. The second policy
 _(Percent)_ allows at most 10% of the current replicas to be scaled down in one minute.
@@ -742,7 +703,7 @@ and 4 replicas will be reduced at a time.
 在 autoscaler 控制器的每个循环中，将根据当前副本的数量重新计算要更改的 Pod 数量。
 当副本数量低于 40 时，应用第一个策略（Pods），一次减少 4 个副本。
 
-<!--  
+<!--
 The policy selection can be changed by specifying the `selectPolicy` field for a scaling
 direction. By setting the value to `Min` which would select the policy which allows the
 smallest change in the replica count. Setting the value to `Disabled` completely disables
@@ -750,36 +711,46 @@ scaling in that direction.
 -->
 可以指定扩缩方向的 `selectPolicy` 字段来更改策略选择。
 通过设置 `Min` 的值，它将选择副本数变化最小的策略。
-将该值设置为 `Disabled` 将完全禁用该方向的缩放。
+将该值设置为 `Disabled` 将完全禁用该方向的扩缩。
 
-<!--  
+<!--
 ### Stabilization Window
 
-The stabilization window is used to restrict the flapping of replicas when the metrics
-used for scaling keep fluctuating. The stabilization window is used by the autoscaling
-algorithm to consider the computed desired state from the past to prevent scaling. In
-the following example the stabilization window is specified for `scaleDown`.
+The stabilization window is used to restrict the [flapping](#flapping) of
+replica count when the metrics used for scaling keep fluctuating. The autoscaling algorithm
+uses this window to infer a previous desired state and avoid unwanted changes to workload
+scale.
+
+For example, in the following example snippet, a stabilization window is specified for `scaleDown`.
 -->
 ### 稳定窗口 {#stabilization-window}
 
-当用于扩缩的指标持续抖动时，使用稳定窗口来限制副本数上下振动。
-自动扩缩算法使用稳定窗口来考虑过去计算的期望状态，以防止扩缩。
-在下面的例子中，稳定化窗口被指定为 `scaleDown`。
+当用于扩缩的指标不断波动时，稳定窗口用于限制副本计数的[波动](#flapping)。
+自动扩缩算法使用此窗口来推断先前的期望状态并避免对工作负载规模进行不必要的更改。
+
+例如，在以下示例代码段中，为 `scaleDown` 指定了稳定窗口。
 
 ```yaml
-scaleDown:
-  stabilizationWindowSeconds: 300
+behavior:
+  scaleDown:
+    stabilizationWindowSeconds: 300
 ```
 
-<!--  
+<!--
 When the metrics indicate that the target should be scaled down the algorithm looks
-into previously computed desired states and uses the highest value from the specified
-interval. In above example all desired states from the past 5 minutes will be considered.
+into previously computed desired states, and uses the highest value from the specified
+interval. In the above example, all desired states from the past 5 minutes will be considered.
 -->
 当指标显示目标应该缩容时，自动扩缩算法查看之前计算的期望状态，并使用指定时间间隔内的最大值。
 在上面的例子中，过去 5 分钟的所有期望状态都会被考虑。
 
-<!--  
+<!--
+This approximates a rolling maximum, and avoids having the scaling algorithm frequently
+remove Pods only to trigger recreating an equivalent Pod just moments later.
+-->
+这近似于滚动最大值，并避免了扩缩算法频繁删除 Pod 而又触发重新创建等效 Pod。
+
+<!--
 ### Default Behavior
 
 To use the custom scaling not all fields have to be specified. Only values which need to be
@@ -813,7 +784,7 @@ behavior:
     selectPolicy: Max
 ```
 
-<!--  
+<!--
 For scaling down the stabilization window is _300_ seconds (or the value of the
 `--horizontal-pod-autoscaler-downscale-stabilization` flag if provided). There is only a single policy
 for scaling down which allows a 100% of the currently running replicas to be removed which
@@ -822,19 +793,19 @@ For scaling up there is no stabilization window. When the metrics indicate that
 scaled up the target is scaled up immediately. There are 2 policies where 4 pods or a 100% of the currently
 running replicas will be added every 15 seconds till the HPA reaches its steady state.
 -->
-用于缩小稳定窗口的时间为 _300_  秒(或是 `--horizontal-pod-autoscaler-downscale-stabilization`
+用于缩小稳定窗口的时间为 _300_ 秒(或是 `--horizontal-pod-autoscaler-downscale-stabilization`
 参数设定值)。
 只有一种缩容的策略，允许 100% 删除当前运行的副本，这意味着扩缩目标可以缩小到允许的最小副本数。
 对于扩容，没有稳定窗口。当指标显示目标应该扩容时，目标会立即扩容。
 这里有两种策略，每 15 秒添加 4 个 Pod 或 100% 当前运行的副本数，直到 HPA 达到稳定状态。
 
-<!--  
+<!--
 ### Example: change downscale stabilization window
 
 To provide a custom downscale stabilization window of 1 minute, the following
 behavior would be added to the HPA:
---> 
-### 示例：更改缩容稳定窗口
+-->
+### 示例：更改缩容稳定窗口 {#example-change-downscale-stabilization-window}
 
 将下面的 behavior 配置添加到 HPA 中，可提供一个 1 分钟的自定义缩容稳定窗口：
 
@@ -844,13 +815,13 @@ behavior:
     stabilizationWindowSeconds: 60
 ```
 
-<!--  
+<!--
 ### Example: limit scale down rate
 
 To limit the rate at which pods are removed by the HPA to 10% per minute, the
 following behavior would be added to the HPA:
 -->
-### 示例：限制缩容速率
+### 示例：限制缩容速率 {#example-limit-scale-down-rate}
 
 将下面的 behavior 配置添加到 HPA 中，可限制 Pod 被 HPA 删除速率为每分钟 10%：
 
@@ -863,13 +834,12 @@ behavior:
       periodSeconds: 60
 ```
 
-<!--  
+<!--
 To ensure that no more than 5 Pods are removed per minute, you can add a second scale-down
 policy with a fixed size of 5, and set `selectPolicy` to minimum. Setting `selectPolicy` to `Min` means
 that the autoscaler chooses the policy that affects the smallest number of Pods:
 -->
-为了确保每分钟删除的 Pod 数不超过 5 个，可以添加第二个缩容策略，大小固定为 5，
-并将 `selectPolicy` 设置为最小值。
+为了确保每分钟删除的 Pod 数不超过 5 个，可以添加第二个缩容策略，大小固定为 5，并将 `selectPolicy` 设置为最小值。
 将 `selectPolicy` 设置为 `Min` 意味着 autoscaler 会选择影响 Pod 数量最小的策略:
 
 ```yaml
@@ -885,14 +855,14 @@ behavior:
     selectPolicy: Min
 ```
 
-<!--  
+<!--
 ### Example: disable scale down
 
 The `selectPolicy` value of `Disabled` turns off scaling the given direction.
 So to prevent downscaling the following policy would be used:
 -->
 
-### 示例：禁用缩容
+### 示例：禁用缩容 {#example-disable-scale-down}
 
 `selectPolicy` 的值 `Disabled` 会关闭对给定方向的缩容。
 因此使用以下策略，将会阻止缩容：
@@ -902,6 +872,30 @@ behavior:
   scaleDown:
     selectPolicy: Disabled
 ```
+<!--
+## Support for HorizontalPodAutoscaler in kubectl
+
+HorizontalPodAutoscaler, like every API resource, is supported in a standard way by `kubectl`.
+You can create a new autoscaler using `kubectl create` command.
+You can list autoscalers by `kubectl get hpa` or get detailed description by `kubectl describe hpa`.
+Finally, you can delete an autoscaler using `kubectl delete hpa`.
+-->
+## kubectl 对 HorizontalPodAutoscaler 的支持 {#support-for-horizontalpodautoscaler-in-kubectl}
+
+与每个 API 资源一样，HorizontalPodAutoscaler 都被 `kubectl` 以标准方式支持。
+你可以使用 `kubectl create` 命令创建一个新的自动扩缩器。
+你可以通过 `kubectl get hpa` 列出自动扩缩器或通过 `kubectl describe hpa` 获取详细描述。
+最后，你可以使用 `kubectl delete hpa` 删除自动扩缩器。
+
+<!--
+In addition, there is a special `kubectl autoscale` command for creating a HorizontalPodAutoscaler object.
+For instance, executing `kubectl autoscale rs foo --min=2 --max=5 --cpu-percent=80`
+will create an autoscaler for ReplicaSet *foo*, with target CPU utilization set to `80%`
+and the number of replicas between 2 and 5.
+-->
+此外，还有一个特殊的 `kubectl autoscale` 命令用于创建 HorizontalPodAutoscaler 对象。
+例如，执行 `kubectl autoscale rs foo --min=2 --max=5 --cpu-percent=80`
+将为 ReplicaSet *foo* 创建一个自动扩缩器，目标 CPU 利用率设置为 `80%`，副本数在 2 到 5 之间。
 
 <!--
 ## Implicit maintenance-mode deactivation
@@ -913,20 +907,102 @@ stops adjusting the target (and sets the `ScalingActive` Condition on itself
 to `false`) until you reactivate it by manually adjusting the target's desired
 replica count or HPA's minimum replica count.
 -->
-## 隐式维护状态禁用
+## 隐式维护状态禁用 {#implicit-maintenance-mode-deactivation}
 
 你可以在不必更改 HPA 配置的情况下隐式地为某个目标禁用 HPA。
 如果此目标的期望副本个数被设置为 0，而 HPA 的最小副本个数大于 0，
 则 HPA 会停止调整目标（并将其自身的 `ScalingActive` 状况设置为 `false`），
 直到你通过手动调整目标的期望副本个数或 HPA 的最小副本个数来重新激活。
 
+<!--
+### Migrating Deployments and StatefulSets to horizontal autoscaling
+
+When an HPA is enabled, it is recommended that the value of `spec.replicas` of
+the Deployment and / or StatefulSet be removed from their
+{{< glossary_tooltip text="manifest(s)" term_id="manifest" >}}.  If this isn't done, any time
+a change to that object is applied, for example via `kubectl apply -f
+deployment.yaml`, this will instruct Kubernetes to scale the current number of Pods
+to the value of the `spec.replicas` key. This may not be
+desired and could be troublesome when an HPA is active.
+-->
+
+### 将 Deployment 和 StatefulSet 迁移到水平自动扩缩 {#migrating-deployments-and-statefulsets-to-horizontal-autoscaling}
+
+当启用 HPA 时，建议从它们的{{< glossary_tooltip text="清单" term_id="manifest" >}}中
+删除 Deployment 和/或 StatefulSet 的 `spec.replicas` 的值。
+如果不这样做，则只要应用对该对象的更改，例如通过 `kubectl apply -f deployment.yaml`，
+这将指示 Kubernetes 将当前 Pod 数量扩缩到 `spec.replicas` 键的值。这可能不是所希望的，
+并且当 HPA 处于活动状态时可能会很麻烦。
+
+<!--
+Keep in mind that the removal of `spec.replicas` may incur a one-time
+degradation of Pod counts as the default value of this key is 1 (reference
+[Deployment Replicas](/docs/concepts/workloads/controllers/deployment#replicas)).
+Upon the update, all Pods except 1 will begin their termination procedures.  Any
+deployment application afterwards will behave as normal and respect a rolling
+update configuration as desired.  You can avoid this degradation by choosing one of the following two
+methods based on how you are modifying your deployments:
+-->
+请记住，删除 `spec.replicas` 可能会导致 Pod 计数一次性降级，因为此键的默认值为 1
+（参考 [Deployment Replicas](/zh-cn/docs/concepts/workloads/controllers/deployment#replicas)）。
+更新后，除 1 之外的所有 Pod 都将开始其终止程序。之后的任何部署应用程序都将正常运行，
+并根据需要遵守滚动更新配置。你可以根据修改部署的方式选择以下两种方法之一来避免这种降级：
+
+{{< tabs name="fix_replicas_instructions" >}}
+{{% tab name="客户端 apply 操作（默认行为）" %}}
+
+<!--
+1. `kubectl apply edit-last-applied deployment/<deployment_name>`
+2. In the editor, remove `spec.replicas`. When you save and exit the editor, `kubectl`
+    applies the update.  No changes to Pod counts happen at this step.
+3. You can now remove `spec.replicas` from the manifest. If you use source code management,
+    also commit your changes or take whatever other steps for revising the source code
+    are appropriate for how you track updates.
+4. From here on out you can run `kubectl apply -f deployment.yaml`
+-->
+1. `kubectl apply edit-last-applied deployment/<Deployment 名称>`
+2. 在编辑器中，删除 `spec.replicas`。当你保存并退出编辑器时，`kubectl` 会应用更新。
+   在此步骤中不会更改 Pod 计数。
+3. 你现在可以从清单中删除 `spec.replicas`。如果你使用源代码管理，
+   还应提交你的更改或采取任何其他步骤来修改源代码，以适应你如何跟踪更新。
+4. 从这里开始，你可以运行 `kubectl apply -f deployment.yaml`
+
+{{% /tab %}}
+{{% tab name="服务器端 apply 操作" %}}
+
+<!--
+When using the [Server-Side Apply](/docs/reference/using-api/server-side-apply/)
+you can follow the [transferring ownership](/docs/reference/using-api/server-side-apply/#transferring-ownership)
+guidelines, which cover this exact use case.
+-->
+使用[服务器端 Apply](/zh-cn/docs/reference/using-api/server-side-apply/) 机制，
+你可以遵循[交出所有权](/zh-cn/docs/reference/using-api/server-side-apply/#transferring-ownership) 说明，
+该指南涵盖了这个确切的用例。
+
+{{% /tab %}}
+{{< /tabs >}}
 ## {{% heading "whatsnext" %}}
 
 <!--
-* Design documentation: [Horizontal Pod Autoscaling](https://git.k8s.io/community/contributors/design-proposals/autoscaling/horizontal-pod-autoscaler.md).
-* kubectl autoscale command: [kubectl autoscale](/docs/reference/generated/kubectl/kubectl-commands/#autoscale).
-* Usage example of [Horizontal Pod Autoscaler](/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/).
+If you configure autoscaling in your cluster, you may also want to consider running a
+cluster-level autoscaler such as [Cluster Autoscaler](https://github.com/kubernetes/autoscaler/tree/master/cluster-autoscaler).
+
+For more information on HorizontalPodAutoscaler:
 -->
-* 设计文档：[Horizontal Pod Autoscaling](https://git.k8s.io/community/contributors/design-proposals/autoscaling/horizontal-pod-autoscaler.md)
-* `kubectl autoscale` 命令：[kubectl autoscale](/docs/reference/generated/kubectl/kubectl-commands/#autoscale).
-* 使用示例：[Horizontal Pod Autoscaler](/zh/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/).
+如果你在集群中配置自动扩缩，你可能还需要考虑运行集群级别的自动扩缩器，
+例如 [Cluster Autoscaler](https://github.com/kubernetes/autoscaler/tree/master/cluster-autoscaler)。
+
+有关 HorizontalPodAutoscaler 的更多信息：
+
+<!--
+* Read a [walkthrough example](/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/) for horizontal pod autoscaling.
+* Read documentation for [`kubectl autoscale`](/docs/reference/generated/kubectl/kubectl-commands/#autoscale).
+* If you would like to write your own custom metrics adapter, check out the
+  [boilerplate](https://github.com/kubernetes-sigs/custom-metrics-apiserver) to get started.
+* Read the [API reference](/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v2/) for HorizontalPodAutoscaler.
+-->
+* 阅读水平 Pod 自动扩缩的[演练示例](/zh-cn/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/)。
+* 阅读 [`kubectl autoscale`](/docs/reference/generated/kubectl/kubectl-commands/#autoscale) 的文档。
+* 如果你想编写自己的自定义指标适配器，
+  请查看 [boilerplate](https://github.com/kubernetes-sigs/custom-metrics-apiserver) 以开始使用。
+* 阅读 [API 参考](/docs/reference/kubernetes-api/workload-resources/horizontal-pod-autoscaler-v2/)。
\ No newline at end of file
diff --git a/content/zh/docs/tasks/run-application/run-replicated-stateful-application.md b/content/zh-cn/docs/tasks/run-application/run-replicated-stateful-application.md
similarity index 80%
rename from content/zh/docs/tasks/run-application/run-replicated-stateful-application.md
rename to content/zh-cn/docs/tasks/run-application/run-replicated-stateful-application.md
index e0573413f0..69c9b8eaa7 100644
--- a/content/zh/docs/tasks/run-application/run-replicated-stateful-application.md
+++ b/content/zh-cn/docs/tasks/run-application/run-replicated-stateful-application.md
@@ -20,12 +20,12 @@ weight: 30
 
 <!--
 This page shows how to run a replicated stateful application using a
-[StatefulSet](/docs/concepts/workloads/controllers/statefulset/) controller.
+{{< glossary_tooltip term_id="statefulset" >}}.
 This application is a replicated MySQL database. The example topology has a
 single primary server and multiple replicas, using asynchronous row-based
 replication.
 -->
-本页展示如何使用 [StatefulSet](/zh/docs/concepts/workloads/controllers/statefulset/)
+本页展示如何使用 {{< glossary_tooltip term_id="statefulset" >}}
 控制器运行一个有状态的应用程序。此例是多副本的 MySQL 数据库。
 示例应用的拓扑结构有一个主服务器和多个副本，使用异步的基于行（Row-Based）
 的数据复制。
@@ -43,8 +43,8 @@ on general patterns for running stateful applications in Kubernetes.
 
 ## {{% heading "prerequisites" %}}
 
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-{{< include "default-storage-class-prereqs.md" >}}
+* {{< include "task-tutorial-prereqs.md" >}}
+* {{< include "default-storage-class-prereqs.md" >}}
 
 <!--
 * This tutorial assumes you are familiar with
@@ -58,23 +58,23 @@ on general patterns for running stateful applications in Kubernetes.
 * You are using the default namespace or another namespace that does not contain any conflicting objects.
 -->
 * 本教程假定你熟悉
-  [PersistentVolumes](/zh/docs/concepts/storage/persistent-volumes/)
-  与 [StatefulSet](/zh/docs/concepts/workloads/controllers/statefulset/),
-  以及其他核心概念，例如 [Pod](/zh/docs/concepts/workloads/pods/)、
-  [服务](/zh/docs/concepts/services-networking/service/) 与
-  [ConfigMap](/zh/docs/tasks/configure-pod-container/configure-pod-configmap/).
+  [PersistentVolumes](/zh-cn/docs/concepts/storage/persistent-volumes/)
+  与 [StatefulSet](/zh-cn/docs/concepts/workloads/controllers/statefulset/),
+  以及其他核心概念，例如 [Pod](/zh-cn/docs/concepts/workloads/pods/)、
+  [服务](/zh-cn/docs/concepts/services-networking/service/) 与
+  [ConfigMap](/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap/).
 * 熟悉 MySQL 会有所帮助，但是本教程旨在介绍对其他系统应该有用的常规模式。
-* 您正在使用默认命名空间或不包含任何冲突对象的另一个命名空间。
+* 你正在使用默认命名空间或不包含任何冲突对象的另一个命名空间。
 
 ## {{% heading "objectives" %}}
 
 <!--
-* Deploy a replicated MySQL topology with a StatefulSet controller.
+* Deploy a replicated MySQL topology with a StatefulSet.
 * Send MySQL client traffic.
 * Observe resistance to downtime.
 * Scale the StatefulSet up and down.
 -->
-* 使用 StatefulSet 控制器部署多副本 MySQL 拓扑架构。
+* 使用 StatefulSet 部署多副本 MySQL 拓扑架构。
 * 发送 MySQL 客户端请求
 * 观察对宕机的抵抗力
 * 扩缩 StatefulSet 的规模
@@ -91,11 +91,13 @@ and a StatefulSet.
 
 MySQL 示例部署包含一个 ConfigMap、两个 Service 与一个 StatefulSet。
 
-### ConfigMap
-
 <!--
+### Create a ConfigMap {#configmap}
+
 Create the ConfigMap from the following YAML configuration file:
 -->
+### 创建一个 ConfigMap   {#configmap}
+
 使用以下的 YAML 配置文件创建 ConfigMap ：
 
 {{< codenew file="application/mysql/mysql-configmap.yaml" >}}
@@ -106,13 +108,13 @@ kubectl apply -f https://k8s.io/examples/application/mysql/mysql-configmap.yaml
 
 <!--
 This ConfigMap provides `my.cnf` overrides that let you independently control
-configuration on the primary MySQL server and replicas.
+configuration on the primary MySQL server and its replicas.
 In this case, you want the primary server to be able to serve replication logs to replicas
 and you want repicas to reject any writes that don't come via replication. 
 -->
-这个 ConfigMap 提供 `my.cnf` 覆盖设置，使你可以独立控制 MySQL 主服务器和从服务器的配置。
-在这里，你希望主服务器能够将复制日志提供给副本服务器，并且希望副本服务器拒绝任何不是通过
-复制进行的写操作。
+这个 ConfigMap 提供 `my.cnf` 覆盖设置，使你可以独立控制 MySQL 主服务器和副本服务器的配置。
+在这里，你希望主服务器能够将复制日志提供给副本服务器，
+并且希望副本服务器拒绝任何不是通过复制进行的写操作。
 
 <!--
 There's nothing special about the ConfigMap itself that causes different
@@ -124,11 +126,11 @@ ConfigMap 本身没有什么特别之处，因而也不会出现不同部分应
 每个 Pod 都会在初始化时基于 StatefulSet 控制器提供的信息决定要查看的部分。
 
 <!--
-### Services 
+### Create Services {#services}
 
 Create the Services from the following YAML configuration file: 
 -->
-### 服务  {#services}
+### 创建 Service  {#services}
 
 使用以下 YAML 配置文件创建服务：
 
@@ -139,41 +141,45 @@ kubectl apply -f https://k8s.io/examples/application/mysql/mysql-services.yaml
 ```
 
 <!--
-The Headless Service provides a home for the DNS entries that the StatefulSet
-controller creates for each Pod that's part of the set.
-Because the Headless Service is named `mysql`, the Pods are accessible by
+The headless Service provides a home for the DNS entries that the StatefulSet
+{{< glossary_tooltip text="controllers" term_id="controller" >}} creates for each
+Pod that's part of the set.
+Because the headless Service is named `mysql`, the Pods are accessible by
 resolving `<pod-name>.mysql` from within any other Pod in the same Kubernetes
 cluster and namespace. 
 -->
-这个无头服务给 StatefulSet 控制器为集合中每个 Pod 创建的 DNS 条目提供了一个宿主。
-因为服务名为 `mysql`，所以可以通过在同一 Kubernetes 集群和名字中的任何其他 Pod
+这个无头 Service 给 StatefulSet {{< glossary_tooltip text="控制器" term_id="controller" >}}
+为集合中每个 Pod 创建的 DNS 条目提供了一个宿主。
+因为无头服务名为 `mysql`，所以可以通过在同一 Kubernetes 集群和命名空间中的任何其他 Pod
 内解析 `<Pod 名称>.mysql` 来访问 Pod。
 
 <!--
-The Client Service, called `mysql-read`, is a normal Service with its own
+The client Service, called `mysql-read`, is a normal Service with its own
 cluster IP that distributes connections across all MySQL Pods that report
 being Ready. The set of potential endpoints includes the primary MySQL server and all
 replicas. 
 -->
-客户端服务称为 `mysql-read`，是一种常规服务，具有其自己的集群 IP。
-该集群 IP 在报告就绪的所有MySQL Pod 之间分配连接。
+客户端 Service 称为 `mysql-read`，是一种常规 Service，具有其自己的集群 IP。
+该集群 IP 在报告就绪的所有 MySQL Pod 之间分配连接。
 可能的端点集合包括 MySQL 主节点和所有副本节点。
 
 <!--
-Note that only read queries can use the load-balanced Client Service.
+Note that only read queries can use the load-balanced client Service.
 Because there is only one primary MySQL server, clients should connect directly to the
-primary MySQL Pod (through its DNS entry within the Headless Service) to execute
+primary MySQL Pod (through its DNS entry within the headless Service) to execute
 writes. 
 -->
-请注意，只有读查询才能使用负载平衡的客户端服务。
+请注意，只有读查询才能使用负载平衡的客户端 Service。
 因为只有一个 MySQL 主服务器，所以客户端应直接连接到 MySQL 主服务器 Pod
-（通过其在无头服务中的 DNS 条目）以执行写入操作。
-
-### StatefulSet
+（通过其在无头 Service 中的 DNS 条目）以执行写入操作。
 
 <!--
+### Create the StatefulSet {#statefulset}
+
 Finally, create the StatefulSet from the following YAML configuration file: 
 -->
+### 创建 StatefulSet {#statefulset}
+
 最后，使用以下 YAML 配置文件创建 StatefulSet：
 
 {{< codenew file="application/mysql/mysql-statefulset.yaml" >}}
@@ -192,9 +198,9 @@ kubectl get pods -l app=mysql --watch
 ```
 
 <!--
-After a while, you should see all 3 Pods become Running: 
+After a while, you should see all 3 Pods become `Running`: 
 -->
-一段时间后，你应该看到所有 3 个 Pod 进入 Running 状态：
+一段时间后，你应该看到所有 3 个 Pod 进入 `Running` 状态：
 
 ```
 NAME      READY     STATUS    RESTARTS   AGE
@@ -205,12 +211,17 @@ mysql-2   2/2       Running   0          1m
 
 <!--
 Press **Ctrl+C** to cancel the watch.
+-->
+输入 **Ctrl+C** 结束监视操作。
+
+{{< note >}}
+<!--
 If you don't see any progress, make sure you have a dynamic PersistentVolume
 provisioner enabled as mentioned in the [prerequisites](#before-you-begin). 
 -->
-输入 **Ctrl+C** 结束 watch 操作。
 如果你看不到任何进度，确保已启用[前提条件](#准备开始)
-中提到的动态 PersistentVolume 预配器。
+中提到的动态 PersistentVolume 制备程序。
+{{< /note >}}
 
 <!--
 This manifest uses a variety of techniques for managing stateful Pods as part of
@@ -250,19 +261,19 @@ properties to perform orderly startup of MySQL replication.
 ### Generating configuration 
 
 Before starting any of the containers in the Pod spec, the Pod first runs any
-[Init Containers](/docs/concepts/workloads/pods/init-containers/)
+[init Containers](/docs/concepts/workloads/pods/init-containers/)
 in the order defined. 
 -->
 ### 生成配置
 
 在启动 Pod 规约中的任何容器之前，Pod 首先按顺序运行所有的
-[Init 容器](/zh/docs/concepts/workloads/pods/init-containers/)。
+[初始化容器](/zh-cn/docs/concepts/workloads/pods/init-containers/)。
 
 <!--
-The first Init Container, named `init-mysql`, generates special MySQL config
+The first init container, named `init-mysql`, generates special MySQL config
 files based on the ordinal index. 
 -->
-第一个名为 `init-mysql` 的 Init 容器根据序号索引生成特殊的 MySQL 配置文件。
+第一个名为 `init-mysql` 的初始化容器根据序号索引生成特殊的 MySQL 配置文件。
 
 <!--
 The script determines its own ordinal index by extracting it from the end of
@@ -270,12 +281,11 @@ the Pod name, which is returned by the `hostname` command.
 Then it saves the ordinal (with a numeric offset to avoid reserved values)
 into a file called `server-id.cnf` in the MySQL `conf.d` directory.
 This translates the unique, stable identity provided by the StatefulSet
-controller into the domain of MySQL server IDs, which require the same
-properties. 
+into the domain of MySQL server IDs, which require the same properties. 
 -->
 该脚本通过从 Pod 名称的末尾提取索引来确定自己的序号索引，而 Pod 名称由 `hostname` 命令返回。
-然后将序数（带有数字偏移量以避免保留值）保存到 MySQL conf.d 目录中的文件 server-id.cnf。
-这一操作将 StatefulSet 所提供的唯一、稳定的标识转换为 MySQL 服务器的 ID，
+然后将序数（带有数字偏移量以避免保留值）保存到 MySQL `conf.d` 目录中的文件 `server-id.cnf`。
+这一操作将 StatefulSet 所提供的唯一、稳定的标识转换为 MySQL 服务器 ID，
 而这些 ID 也是需要唯一性、稳定性保证的。
 
 <!--
@@ -290,13 +300,13 @@ Combined with the StatefulSet controller's
 this ensures the primary MySQL server is Ready before creating replicas, so they can begin
 replicating.
 -->
-通过将内容复制到 conf.d 中，`init-mysql` 容器中的脚本也可以应用 ConfigMap 中的
+通过将内容复制到 `conf.d` 中，`init-mysql` 容器中的脚本也可以应用 ConfigMap 中的
 `primary.cnf` 或 `replica.cnf`。
 由于示例部署结构由单个 MySQL 主节点和任意数量的副本节点组成，
 因此脚本仅将序数 `0` 指定为主节点，而将其他所有节点指定为副本节点。
 
 与 StatefulSet 控制器的
-[部署顺序保证](/zh/docs/concepts/workloads/controllers/statefulset/#deployment-and-scaling-guarantees)
+[部署顺序保证](/zh-cn/docs/concepts/workloads/controllers/statefulset/#deployment-and-scaling-guarantees)
 相结合，
 可以确保 MySQL 主服务器在创建副本服务器之前已准备就绪，以便它们可以开始复制。
 
@@ -319,12 +329,12 @@ to scale up and down over time, rather than being fixed at its initial size.
 这些保守的假设是允许正在运行的 StatefulSet 随时间扩大和缩小而不是固定在其初始大小的关键。
 
 <!--
-The second Init Container, named `clone-mysql`, performs a clone operation on
+The second init container, named `clone-mysql`, performs a clone operation on
 a replica Pod the first time it starts up on an empty PersistentVolume.
 That means it copies all existing data from another running Pod,
 so its local state is consistent enough to begin replicating from the primary server.
 -->
-第二个名为 `clone-mysql` 的 Init 容器，第一次在带有空 PersistentVolume 的副本 Pod
+第二个名为 `clone-mysql` 的初始化容器，第一次在带有空 PersistentVolume 的副本 Pod
 上启动时，会在从属 Pod 上执行克隆操作。
 这意味着它将从另一个运行中的 Pod 复制所有现有数据，使此其本地状态足够一致，
 从而可以开始从主服务器复制。
@@ -341,22 +351,21 @@ Ready before starting Pod `N+1`.
 MySQL 本身不提供执行此操作的机制，因此本示例使用了一种流行的开源工具 Percona XtraBackup。
 在克隆期间，源 MySQL 服务器性能可能会受到影响。
 为了最大程度地减少对 MySQL 主服务器的影响，该脚本指示每个 Pod 从序号较低的 Pod 中克隆。
-可以这样做的原因是 StatefulSet 控制器始终确保在启动 Pod N + 1 之前 Pod N 已准备就绪。
+可以这样做的原因是 StatefulSet 控制器始终确保在启动 Pod `N + 1` 之前 Pod `N` 已准备就绪。
 
 <!--
 ### Starting replication 
 
-After the Init Containers complete successfully, the regular containers run.
+After the init containers complete successfully, the regular containers run.
 The MySQL Pods consist of a `mysql` container that runs the actual `mysqld`
 server, and an `xtrabackup` container that acts as a
 [sidecar](https://kubernetes.io/blog/2015/06/the-distributed-system-toolkit-patterns). 
 -->
 ### 开始复制
 
-Init 容器成功完成后，应用容器将运行。
-MySQL Pod 由运行实际 `mysqld` 服务的 `mysql` 容器和充当
-[辅助工具](https://kubernetes.io/blog/2015/06/the-distributed-system-toolkit-patterns)
-的 xtrabackup 容器组成。
+初始化容器成功完成后，应用容器将运行。MySQL Pod 由运行实际 `mysqld` 服务的 `mysql`
+容器和充当[辅助工具](/blog/2015/06/the-distributed-system-toolkit-patterns)的
+xtrabackup 容器组成。
 
 <!--
 The `xtrabackup` sidecar looks at the cloned data files and determines if
@@ -366,8 +375,8 @@ If so, it waits for `mysqld` to be ready and then executes the
 extracted from the XtraBackup clone files. 
 -->
 `xtrabackup` sidecar 容器查看克隆的数据文件，并确定是否有必要在副本服务器上初始化 MySQL 复制。
-如果是这样，它将等待 `mysqld` 准备就绪，然后使用从 XtraBackup 克隆文件中提取的复制参数
-执行  `CHANGE MASTER TO` 和 `START SLAVE` 命令。
+如果是这样，它将等待 `mysqld` 准备就绪，然后使用从 XtraBackup 克隆文件中提取的复制参数执行
+`CHANGE MASTER TO` 和 `START SLAVE` 命令。
 
 <!--
 Once a replica begins replication, it remembers its primary MySQL server and
@@ -376,8 +385,7 @@ Also, because replicas look for the primary server at its stable DNS name
 (`mysql-0.mysql`), they automatically find the primary server even if it gets a new
 Pod IP due to being rescheduled. 
 -->
-一旦副本服务器开始复制后，它会记住其 MySQL 主服务器，并且如果服务器重新启动或
-连接中断也会自动重新连接。
+一旦副本服务器开始复制后，它会记住其 MySQL 主服务器，并且如果服务器重新启动或连接中断也会自动重新连接。
 另外，因为副本服务器会以其稳定的 DNS 名称查找主服务器（`mysql-0.mysql`），
 即使由于重新调度而获得新的 Pod IP，它们也会自动找到主服务器。
 
@@ -481,19 +489,19 @@ it running in another window so you can see the effects of the following steps.
 这样你就可以看到以下步骤的效果。
 
 <!--
-## Simulating Pod and Node downtime 
+## Simulate Pod and Node failure {#simulate-pod-and-node-downtime}
 
 To demonstrate the increased availability of reading from the pool of replicas
 instead of a single server, keep the `SELECT @@server_id` loop from above
 running while you force a Pod out of the Ready state. 
 -->
-## 模拟 Pod 和 Node 的宕机时间
+## 模拟 Pod 和 Node 失效   {#simulate-pod-and-node-downtime}
 
 为了证明从副本节点缓存而不是单个服务器读取数据的可用性提高，请在使 Pod 退出 Ready
 状态时，保持上述 `SELECT @@server_id` 循环一直运行。
 
 <!--
-### Break the Readiness Probe 
+### Break the Readiness probe
 
 The [readiness probe](/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#define-readiness-probes)
 for the `mysql` container runs the command `mysql -h 127.0.0.1 -e 'SELECT 1'`
@@ -501,8 +509,7 @@ to make sure the server is up and able to execute queries.
 -->
 ### 破坏就绪态探测
 
-`mysql` 容器的
-[就绪态探测](/zh/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#define-readiness-probes)
+`mysql` 容器的[就绪态探测](/zh-cn/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#define-readiness-probes)
 运行命令 `mysql -h 127.0.0.1 -e 'SELECT 1'`，以确保服务器已启动并能够执行查询。
 
 <!--
@@ -530,7 +537,7 @@ kubectl get pod mysql-2
 <!--
 Look for `1/2` in the `READY` column: 
 -->
-在 `READY` 列中查找 ` 1/2` ：
+在 `READY` 列中查找 `1/2`：
 
 ```
 NAME      READY     STATUS    RESTARTS   AGE
@@ -615,32 +622,40 @@ mysql-2   2/2       Running   0          15m       10.244.5.27   kubernetes-node
 ```
 
 <!--
-Then drain the Node by running the following command, which cordons it so
+Then, drain the Node by running the following command, which cordons it so
 no new Pods may schedule there, and then evicts any existing Pods.
 Replace `<node-name>` with the name of the Node you found in the last step. 
 -->
-然后通过运行以下命令腾空节点，该命令将其保护起来，以使新的 Pod 不能调度到该节点，
+接下来，通过运行以下命令腾空节点，该命令将其保护起来，以使新的 Pod 不能调度到该节点，
 然后逐出所有现有的 Pod。将 `<节点名称>` 替换为在上一步中找到的节点名称。
 
 
+{{< caution >}}
 <!--
-This might impact other applications on the Node, so it's best to
-**only do this in a test cluster**. 
+Draining a Node can impact other workloads and applications 
+running on the same node. Only perform the following step in a test
+cluster.
+-->
+腾空一个 Node 可能影响到在该节点上运行的其他负载和应用。
+只应在测试集群上执行下列步骤
+{{< /caution >}}
 
+<!--
 ```shell
-kubectl drain <node-name> --force --delete-local-data --ignore-daemonsets
+# See above advice about impact on other workloads
+kubectl drain <node-name> --force --delete-emptydir-data --ignore-daemonsets
 ```
 -->
-这可能会影响节点上的其他应用程序，因此最好 **仅在测试集群中执行此操作**。
 
 ```shell
+# 关于对其他负载的影响，参见前文建议
 kubectl drain <节点名称> --force --delete-local-data --ignore-daemonsets
 ```
 
 <!--
 Now you can watch as the Pod reschedules on a different Node: 
 -->
-现在，你可以看到 Pod 被重新调度到其他节点上：
+现在，你可以监视 Pod 被重新调度到其他节点上：
 
 ```shell
 kubectl get pod mysql-2 -o wide --watch
@@ -667,8 +682,8 @@ mysql-2   2/2     Running         0          30s       10.244.5.32   kubernetes-
 And again, you should see server ID `102` disappear from the
 `SELECT @@server_id` loop output for a while and then return. 
 -->
-再次，你应该看到服务器 ID `102` 从 `SELECT @@server_id` 循环输出
-中消失一段时间，然后自行出现。
+再次，你应该看到服务器 ID `102` 从 `SELECT @@server_id`
+循环输出中消失一段时间，然后再次出现。
 
 <!--
 Now uncordon the Node to return it to a normal state: 
@@ -686,12 +701,12 @@ kubectl uncordon <节点名称>
 <!--
 ## Scaling the number of replicas
 
-With MySQL replication, you can scale your read query capacity by adding replicas.
+When you use MySQL replication, you can scale your read query capacity by adding replicas.
 With StatefulSet, you can do this with a single command: 
 -->
 ## 扩展副本节点数量
 
-使用 MySQL 复制，你可以通过添加副本节点来扩展读取查询的能力。
+使用 MySQL 复制时，你可以通过添加副本节点来扩展读取查询的能力。
 使用 StatefulSet，你可以使用单个命令执行此操作：
 
 ```shell
@@ -701,7 +716,7 @@ kubectl scale statefulset mysql --replicas=5
 <!--
 Watch the new Pods come up by running: 
 -->
-查看新的 Pod 的运行情况：
+运行下面的命令，监视新的 Pod 启动：
 
 ```shell
 kubectl get pods -l app=mysql --watch
@@ -714,7 +729,8 @@ the `SELECT @@server_id` loop output.
 You can also verify that these new servers have the data you added before they
 existed: 
 -->
-一旦 Pod 启动，你应该看到服务器 IDs `103` 和 `104` 开始出现在 `SELECT @@server_id` 循环输出中。
+一旦 Pod 启动，你应该看到服务器 IDs `103` 和 `104` 开始出现在 `SELECT @@server_id`
+循环输出中。
 
 你还可以验证这些新服务器在存在之前已添加了数据：
 
@@ -742,19 +758,22 @@ Scaling back down is also seamless:
 kubectl scale statefulset mysql --replicas=3
 ```
 
+{{< note >}}
 <!--
-Note, however, that while scaling up creates new PersistentVolumeClaims
+Although scaling up creates new PersistentVolumeClaims
 automatically, scaling down does not automatically delete these PVCs.
+
 This gives you the choice to keep those initialized PVCs around to make
 scaling back up quicker, or to extract data before deleting them. 
 -->
-但是请注意，按比例扩大会自动创建新的 PersistentVolumeClaims，而按比例缩小不会自动删除这些 PVC。
-这使你可以选择保留那些初始化的 PVC，以更快地进行缩放，或者在删除它们之前提取数据。
+扩容操作会自动创建新的 PersistentVolumeClaim，但是缩容时不会自动删除这些 PVC。
+这使你可以选择保留那些已被初始化的 PVC，以加速再次扩容，或者在删除它们之前提取数据。
+{{< /note >}}
 
 <!--
 You can see this by running: 
 -->
-你可以通过运行以下命令查看此信息：
+你可以通过运行以下命令查看此效果：
 
 ```shell
 kubectl get pvc -l app=mysql
@@ -787,7 +806,6 @@ kubectl delete pvc data-mysql-4
 
 ## {{% heading "cleanup" %}}
 
-
 <!--
 1. Cancel the `SELECT @@server_id` loop by pressing **Ctrl+C** in its terminal,
    or running the following from another terminal: 
@@ -827,7 +845,7 @@ kubectl delete pvc data-mysql-4
 <!--
 1. Delete the ConfigMap, Services, and PersistentVolumeClaims. 
 -->
-4. 删除 ConfigMap、Services 和 PersistentVolumeClaims。
+4. 删除 ConfigMap、Service 和 PersistentVolumeClaim。
 
    ```shell
    kubectl delete configmap,service,pvc -l app=mysql
@@ -842,22 +860,22 @@ kubectl delete pvc data-mysql-4
    underlying resources upon deleting the PersistentVolumes. 
 -->
 5. 如果你手动供应 PersistentVolume，则还需要手动删除它们，并释放下层资源。
-   如果你使用了动态预配器，当得知你删除 PersistentVolumeClaims 时，它将自动删除 PersistentVolumes。
-   一些动态预配器（例如用于 EBS 和 PD 的预配器）也会在删除 PersistentVolumes 时释放下层资源。
+   如果你使用了动态预配器，当得知你删除 PersistentVolumeClaim 时，它将自动删除 PersistentVolume。
+   一些动态预配器（例如用于 EBS 和 PD 的预配器）也会在删除 PersistentVolume 时释放下层资源。
 
 ## {{% heading "whatsnext" %}}
 
 <!--
 * Learn more about [scaling a StatefulSet](/docs/tasks/run-application/scale-stateful-set/).
-* Learn more about [debugging a StatefulSet](/docs/tasks/debug-application-cluster/debug-stateful-set/).
+* Learn more about [debugging a StatefulSet](/docs/tasks/debug/debug-application/debug-statefulset/).
 * Learn more about [deleting a StatefulSet](/docs/tasks/run-application/delete-stateful-set/).
 * Learn more about [force deleting StatefulSet Pods](/docs/tasks/run-application/force-delete-stateful-set-pod/).
 * Look in the [Helm Charts repository](https://artifacthub.io/)
   for other stateful application examples.
 -->
-* 进一步了解[为 StatefulSet 扩缩容](/zh/docs/tasks/run-application/scale-stateful-set/).
-* 进一步了解[调试 StatefulSet](/zh/docs/tasks/debug-application-cluster/debug-stateful-set/).
-* 进一步了解[删除 StatefulSet](/zh/docs/tasks/run-application/delete-stateful-set/).
-* 进一步了解[强制删除 StatefulSet Pods](/zh/docs/tasks/run-application/force-delete-stateful-set-pod/).
+* 进一步了解[为 StatefulSet 扩缩容](/zh-cn/docs/tasks/run-application/scale-stateful-set/)；
+* 进一步了解[调试 StatefulSet](/zh-cn/docs/tasks/debug/debug-application/debug-statefulset/)；
+* 进一步了解[删除 StatefulSet](/zh-cn/docs/tasks/run-application/delete-stateful-set/)；
+* 进一步了解[强制删除 StatefulSet Pod](/zh-cn/docs/tasks/run-application/force-delete-stateful-set-pod/)；
 * 在 [Helm Charts 仓库](https://artifacthub.io/)中查找其他有状态的应用程序示例。
 
diff --git a/content/zh/docs/tasks/run-application/run-single-instance-stateful-application.md b/content/zh-cn/docs/tasks/run-application/run-single-instance-stateful-application.md
similarity index 95%
rename from content/zh/docs/tasks/run-application/run-single-instance-stateful-application.md
rename to content/zh-cn/docs/tasks/run-application/run-single-instance-stateful-application.md
index 130fb307ef..857f549926 100644
--- a/content/zh/docs/tasks/run-application/run-single-instance-stateful-application.md
+++ b/content/zh-cn/docs/tasks/run-application/run-single-instance-stateful-application.md
@@ -55,7 +55,7 @@ Note: The password is defined in the config yaml, and this is insecure. See
 for a secure solution.
 -->
 注意：在配置的 YAML 文件中定义密码的做法是不安全的。具体安全解决方案请参考
-[Kubernetes Secrets](/zh/docs/concepts/configuration/secret/).
+[Kubernetes Secrets](/zh-cn/docs/concepts/configuration/secret/).
 
 {{< codenew file="application/mysql/mysql-deployment.yaml" >}}
 {{< codenew file="application/mysql/mysql-pv.yaml" >}}
@@ -231,7 +231,7 @@ Deployment 中镜像或其他部分同往常一样可以通过 `kubectl apply` 
 -->
 * 不要对应用进行规模扩缩。这里的设置仅适用于单实例应用。下层的 PersistentVolume
   仅只能挂载到一个 Pod 上。对于集群级有状态应用，请参考
-  [StatefulSet 文档](/zh/docs/concepts/workloads/controllers/statefulset/).
+  [StatefulSet 文档](/zh-cn/docs/concepts/workloads/controllers/statefulset/).
 * 在 Deployment 的 YAML 文件中使用 `strategy:` `type: Recreate`。
   该选项指示 Kubernetes _不_ 使用滚动升级。滚动升级无法工作，因为这里一次不能
   运行多个 Pod。在使用更新的配置文件创建新的 Pod 前，`Recreate` 策略将
@@ -276,11 +276,11 @@ PersistentVolume 将被自动删除。
 
 * [Volumes](/docs/concepts/storage/volumes/) and [Persistent Volumes](/docs/concepts/storage/persistent-volumes/)
 -->
-* 欲进一步了解 Deployment 对象，请参考 [Deployment 对象](/zh/docs/concepts/workloads/controllers/deployment/)
-* 进一步了解[部署应用](/zh/docs/tasks/run-application/run-stateless-application-deployment/)
+* 欲进一步了解 Deployment 对象，请参考 [Deployment 对象](/zh-cn/docs/concepts/workloads/controllers/deployment/)
+* 进一步了解[部署应用](/zh-cn/docs/tasks/run-application/run-stateless-application-deployment/)
 
 * 参阅 [kubectl run 文档](/docs/reference/generated/kubectl/kubectl-commands/#run)
 
-* 参阅[卷](/zh/docs/concepts/storage/volumes/)和[持久卷](/zh/docs/concepts/storage/persistent-volumes/)
+* 参阅[卷](/zh-cn/docs/concepts/storage/volumes/)和[持久卷](/zh-cn/docs/concepts/storage/persistent-volumes/)
 
 
diff --git a/content/zh/docs/tasks/run-application/run-stateless-application-deployment.md b/content/zh-cn/docs/tasks/run-application/run-stateless-application-deployment.md
similarity index 88%
rename from content/zh/docs/tasks/run-application/run-stateless-application-deployment.md
rename to content/zh-cn/docs/tasks/run-application/run-stateless-application-deployment.md
index f33e2021af..55f9f9b120 100644
--- a/content/zh/docs/tasks/run-application/run-stateless-application-deployment.md
+++ b/content/zh-cn/docs/tasks/run-application/run-stateless-application-deployment.md
@@ -10,7 +10,7 @@ weight: 10
 <!--
 This page shows how to run an application using a Kubernetes Deployment object.
 -->
-本文介绍如何通过 Kubernetes Deployment 对象去运行一个应用.
+本文介绍如何通过 Kubernetes Deployment 对象去运行一个应用。
 
 ## {{% heading "objectives" %}}
 
@@ -19,9 +19,9 @@ This page shows how to run an application using a Kubernetes Deployment object.
 * Use kubectl to list information about the deployment.
 * Update the deployment.
 -->
-* 创建一个 nginx Deployment.
-* 使用 kubectl 列举关于 Deployment 的信息.
-* 更新 Deployment。
+* 创建一个 nginx Deployment。
+* 使用 kubectl 列举该 Deployment 的相关信息。
+* 更新该 Deployment。
 
 ## {{% heading "prerequisites" %}}
 
@@ -56,7 +56,7 @@ Docker 镜像的 Deployment：
 <!--
 1. Display information about the Deployment:
 -->
-2. 显示 Deployment 相关信息：
+2. 显示该 Deployment 的相关信息：
 
    ```shell
    kubectl describe deployment nginx-deployment
@@ -100,7 +100,7 @@ Docker 镜像的 Deployment：
 <!--
 1. List the Pods created by the deployment:
 -->
-3. 列出 Deployment 创建的 Pods：
+3. 列出该 Deployment 创建的 Pod：
 
    ```shell
    kubectl get pods -l app=nginx
@@ -139,7 +139,7 @@ specifies that the deployment should be updated to use nginx 1.16.1.
 -->
 ## 更新 Deployment
 
-你可以通过更新一个新的 YAML 文件来更新 Deployment。下面的 YAML 文件指定该
+你可以通过应用一个新的 YAML 文件来更新 Deployment。下面的 YAML 文件指定该
 Deployment 镜像更新为 nginx 1.16.1。
 
 {{< codenew file="application/deployment-update.yaml" >}}
@@ -156,7 +156,7 @@ Deployment 镜像更新为 nginx 1.16.1。
 <!--
 1. Watch the deployment create pods with new names and delete the old pods:
 -->
-2. 查看该 Deployment 以新的名称创建 Pods 同时删除旧的 Pods：
+2. 查看该 Deployment 以新的名称创建 Pod 同时删除旧的 Pod：
 
    ```shell
    kubectl get pods -l app=nginx
@@ -170,8 +170,8 @@ should have four Pods:
 -->
 ## 通过增加副本数来扩缩应用
 
-你可以通过应用新的 YAML 文件来增加 Deployment 中 Pods 的数量。
-下面的 YAML 文件将 `replicas` 设置为 4，指定该 Deployment 应有 4 个 Pods：
+你可以通过应用新的 YAML 文件来增加 Deployment 中 Pod 的数量。
+下面的 YAML 文件将 `replicas` 设置为 4，指定该 Deployment 应有 4 个 Pod：
 
 {{< codenew file="application/deployment-scale.yaml" >}}
 
@@ -187,7 +187,7 @@ should have four Pods:
 <!--
 1. Verify that the Deployment has four Pods:
 -->
-2. 验证 Deployment 有 4 个 Pods：
+2. 验证该 Deployment 有 4 个 Pod：
 
    ```shell
    kubectl get pods -l app=nginx
@@ -227,11 +227,11 @@ which in turn uses a ReplicaSet. Before the Deployment and ReplicaSet were
 added to Kubernetes, replicated applications were configured using a
 [ReplicationController](/docs/concepts/workloads/controllers/replicationcontroller/).
 -->
-## ReplicationControllers -- 旧的方式
+## ReplicationController —— 旧的方式
 
-创建一个多副本应用首选方法是使用 Deployment，Deployment 内部使用 ReplicaSet。
+创建一个多副本应用首选方法是使用 Deployment，该 Deployment 内部将轮流使用 ReplicaSet。
 在 Deployment 和 ReplicaSet 被引入到 Kubernetes 之前，多副本应用通过
-[ReplicationController](/zh/docs/concepts/workloads/controllers/replicationcontroller/)
+[ReplicationController](/zh-cn/docs/concepts/workloads/controllers/replicationcontroller/)
 来配置。
 
 ## {{% heading "whatsnext" %}}
@@ -239,5 +239,4 @@ added to Kubernetes, replicated applications were configured using a
 <!--
 * Learn more about [Deployment objects](/docs/concepts/workloads/controllers/deployment/).
 -->
-* 进一步了解 [Deployment 对象](/zh/docs/concepts/workloads/controllers/deployment/)。
-
+* 进一步了解 [Deployment 对象](/zh-cn/docs/concepts/workloads/controllers/deployment/)。
diff --git a/content/zh/docs/tasks/run-application/scale-stateful-set.md b/content/zh-cn/docs/tasks/run-application/scale-stateful-set.md
similarity index 93%
rename from content/zh/docs/tasks/run-application/scale-stateful-set.md
rename to content/zh-cn/docs/tasks/run-application/scale-stateful-set.md
index 595373ea94..02e7f13aa8 100644
--- a/content/zh/docs/tasks/run-application/scale-stateful-set.md
+++ b/content/zh-cn/docs/tasks/run-application/scale-stateful-set.md
@@ -24,8 +24,8 @@ This task shows how to scale a StatefulSet. Scaling a StatefulSet refers to incr
 * StatefulSets 仅适用于 Kubernetes 1.5 及以上版本。
 * 不是所有 Stateful 应用都能很好地执行扩缩操作。 
   如果你不是很确定是否要扩缩你的 StatefulSet，可先参阅
-  [StatefulSet 概念](/zh/docs/concepts/workloads/controllers/statefulset/)
-  或者 [StatefulSet 教程](/zh/docs/tutorials/stateful-application/basic-stateful-set/)。
+  [StatefulSet 概念](/zh-cn/docs/concepts/workloads/controllers/statefulset/)
+  或者 [StatefulSet 教程](/zh-cn/docs/tutorials/stateful-application/basic-stateful-set/)。
 
 * 仅当你确定你的有状态应用的集群是完全健康的，才可执行扩缩操作.
 
@@ -75,7 +75,7 @@ update `.spec.replicas` of the StatefulSet manifests, and then do a `kubectl app
 -->
 ### 对 StatefulSet 执行就地更新
 
-另外, 你可以[就地更新](/zh/docs/concepts/cluster-administration/manage-deployment/#in-place-updates-of-resources) StatefulSet。
+另外, 你可以[就地更新](/zh-cn/docs/concepts/cluster-administration/manage-deployment/#in-place-updates-of-resources) StatefulSet。
 
 如果你的 StatefulSet 最初通过 `kubectl apply` 或 `kubectl create --save-config` 创建,
 你可以更新 StatefulSet 清单中的 `.spec.replicas`, 然后执行命令 `kubectl apply`:
@@ -163,5 +163,5 @@ Stateful 应用的集群是完全健康时才执行扩缩操作。
 <!--
 * Learn more about [deleting a StatefulSet](/docs/tasks/run-application/delete-stateful-set/).
 -->
-* 进一步了解[删除 StatefulSet](/zh/docs/tasks/run-application/delete-stateful-set/)
+* 进一步了解[删除 StatefulSet](/zh-cn/docs/tasks/run-application/delete-stateful-set/)
 
diff --git a/content/zh/docs/tasks/tls/_index.md b/content/zh-cn/docs/tasks/tls/_index.md
similarity index 100%
rename from content/zh/docs/tasks/tls/_index.md
rename to content/zh-cn/docs/tasks/tls/_index.md
diff --git a/content/zh/docs/tasks/tls/certificate-rotation.md b/content/zh-cn/docs/tasks/tls/certificate-rotation.md
similarity index 96%
rename from content/zh/docs/tasks/tls/certificate-rotation.md
rename to content/zh-cn/docs/tasks/tls/certificate-rotation.md
index 0028592917..b4943da2fb 100644
--- a/content/zh/docs/tasks/tls/certificate-rotation.md
+++ b/content/zh-cn/docs/tasks/tls/certificate-rotation.md
@@ -41,14 +41,14 @@ Kubelet 使用证书进行 Kubernetes API 的认证。
 
 <!--
 Kubernetes contains [kubelet certificate
-rotation](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/),
+rotation](/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/),
 that will automatically generate a new key and request a new certificate from
 the Kubernetes API as the current certificate approaches expiration. Once the
 new certificate is available, it will be used for authenticating connections to
 the Kubernetes API.
 -->
 Kubernetes 包含特性
-[kubelet 证书轮换](/zh/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/)，
+[kubelet 证书轮换](/zh-cn/docs/reference/access-authn-authz/kubelet-tls-bootstrapping/)，
 在当前证书即将过期时，
 将自动生成新的秘钥，并从 Kubernetes API 申请新的证书。 一旦新的证书可用，它将被用于与
 Kubernetes API 间的连接认证。
diff --git a/content/zh-cn/docs/tasks/tls/managing-tls-in-a-cluster.md b/content/zh-cn/docs/tasks/tls/managing-tls-in-a-cluster.md
new file mode 100644
index 0000000000..2389fe9f96
--- /dev/null
+++ b/content/zh-cn/docs/tasks/tls/managing-tls-in-a-cluster.md
@@ -0,0 +1,549 @@
+---
+title: 管理集群中的 TLS 认证
+content_type: task
+---
+<!--
+title: Manage TLS Certificates in a Cluster
+content_type: task
+reviewers:
+- mikedanese
+- beacham
+- liggit
+-->
+
+<!-- overview -->
+<!--
+Kubernetes provides a `certificates.k8s.io` API, which lets you provision TLS
+certificates signed by a Certificate Authority (CA) that you control. These CA
+and certificates can be used by your workloads to establish trust.
+
+`certificates.k8s.io` API uses a protocol that is similar to the [ACME
+draft](https://github.com/ietf-wg-acme/acme/).
+-->
+Kubernetes 提供 `certificates.k8s.io` API，可让你配置由你控制的证书颁发机构（CA）
+签名的 TLS 证书。 你的工作负载可以使用这些 CA 和证书来建立信任。
+
+`certificates.k8s.io` API使用的协议类似于
+[ACME 草案](https://github.com/ietf-wg-acme/acme/)。
+
+{{< note >}}
+<!--
+Certificates created using the `certificates.k8s.io` API are signed by a
+[dedicated CA](#configuring-your-cluster-to-provide-signing). It is possible to configure your cluster to use the cluster root
+CA for this purpose, but you should never rely on this. Do not assume that
+these certificates will validate against the cluster root CA.
+-->
+使用 `certificates.k8s.io` API 创建的证书由指定 [CA](#configuring-your-cluster-to-provide-signing) 颁发。
+将集群配置为使用集群根目录 CA 可以达到这个目的，但是你永远不要依赖这一假定。
+不要以为这些证书将针对群根目录 CA 进行验证。
+{{< /note >}}
+
+## {{% heading "prerequisites" %}}
+
+{{< include "task-tutorial-prereqs.md" >}}
+
+<!-- 
+You need the `cfssl` tool. You can download `cfssl` from
+[https://github.com/cloudflare/cfssl/releases](https://github.com/cloudflare/cfssl/releases).
+
+Some steps in this page use the `jq` tool. If you don't have `jq`, you can
+install it via your operating system's software sources, or fetch it from
+[https://stedolan.github.io/jq/](https://stedolan.github.io/jq/).
+-->
+你需要 `cfssl` 工具。
+你可以从 [https://github.com/cloudflare/cfssl/releases](https://github.com/cloudflare/cfssl/releases)
+下载 `cfssl`。
+
+本文中某些步骤使用 `jq` 工具。如果你没有 `jq`，你可以通过操作系统的软件源安装，
+或者从 [https://stedolan.github.io/jq/](https://stedolan.github.io/jq/) 获取。
+
+<!-- steps -->
+
+<!--
+## Trusting TLS in a cluster
+
+Trusting the [custom CA](#configuring-your-cluster-to-provide-signing) from an application running as a pod usually requires
+some extra application configuration. You will need to add the CA certificate
+bundle to the list of CA certificates that the TLS client or server trusts. For
+example, you would do this with a golang TLS config by parsing the certificate
+chain and adding the parsed certificates to the `RootCAs` field in the
+[`tls.Config`](https://pkg.go.dev/crypto/tls#Config) struct.
+-->
+## 集群中的 TLS 信任
+
+信任 Pod 中运行的应用程序所提供的[自定义 CA](#configuring-your-cluster-to-provide-signing) 通常需要一些额外的应用程序配置。
+你需要将 CA 证书包添加到 TLS 客户端或服务器信任的 CA 证书列表中。
+例如，你可以使用 Golang TLS 配置通过解析证书链并将解析的证书添加到
+[`tls.Config`](https://pkg.go.dev/crypto/tls#Config) 结构中的 `RootCAs`
+字段中。
+
+{{< note >}}
+<!-- 
+Even though the custom CA certificate may be included in the filesystem (in the
+ConfigMap `kube-root-ca.crt`),
+you should not use that certificate authority for any purpose other than to verify internal
+Kubernetes endpoints. An example of an internal Kubernetes endpoint is the
+Service named `kubernetes` in the default namespace.
+
+If you want to use a custom certificate authority for your workloads, you should generate
+that CA separately, and distribute its CA certificate using a 
+[ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap) that your pods 
+have access to read.
+-->
+即使自定义 CA 证书可能包含在文件系统中（在 ConfigMap `kube-root-ca.crt` 中），
+除了验证内部 Kubernetes 端点之外，你不应将该证书颁发机构用于任何目的。
+内部 Kubernetes 端点的一个示例是默认命名空间中名为 `kubernetes` 的服务。
+
+如果你想为你的工作负载使用自定义证书颁发机构，你应该单独生成该 CA，
+并使用你的 Pod 有读权限的 [ConfigMap](/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap)
+分发该 CA 证书。
+{{< /note >}}
+
+<!--
+## Requesting a certificate
+
+The following section demonstrates how to create a TLS certificate for a
+Kubernetes service accessed through DNS.
+
+{{< note >}}
+This tutorial uses CFSSL: Cloudflare's PKI and TLS toolkit [click here](https://blog.cloudflare.com/introducing-cfssl/) to know more.
+{{< /note >}}
+-->
+## 请求证书
+
+以下部分演示如何为通过 DNS 访问的 Kubernetes 服务创建 TLS 证书。
+
+{{< note >}}
+本教程使用 CFSSL：Cloudflare's PKI 和 TLS 工具包
+[点击此处](https://blog.cloudflare.com/introducing-cfssl/)了解更多信息。
+{{< /note >}}
+
+<!--
+## Create a certificate signing request
+
+Generate a private key and certificate signing request (or CSR) by running
+the following command:
+-->
+## 创建证书签名请求
+
+通过运行以下命令生成私钥和证书签名请求（或 CSR）:
+
+```shell
+cat <<EOF | cfssl genkey - | cfssljson -bare server
+{
+  "hosts": [
+    "my-svc.my-namespace.svc.cluster.local",
+    "my-pod.my-namespace.pod.cluster.local",
+    "192.0.2.24",
+    "10.0.34.2"
+  ],
+  "CN": "my-pod.my-namespace.pod.cluster.local",
+  "key": {
+    "algo": "ecdsa",
+    "size": 256
+  }
+}
+EOF
+```
+
+<!--
+Where `192.0.2.24` is the service's cluster IP,
+`my-svc.my-namespace.svc.cluster.local` is the service's DNS name,
+`10.0.34.2` is the pod's IP and `my-pod.my-namespace.pod.cluster.local`
+is the pod's DNS name. You should see the output similar to:
+-->
+其中 `192.0.2.24` 是服务的集群 IP，`my-svc.my-namespace.svc.cluster.local`
+是服务的 DNS 名称，`10.0.34.2` 是 Pod 的 IP，而
+`my-pod.my-namespace.pod.cluster.local` 是 Pod 的 DNS 名称。
+你能看到的输出类似于：
+
+```
+2022/02/01 11:45:32 [INFO] generate received request
+2022/02/01 11:45:32 [INFO] received CSR
+2022/02/01 11:45:32 [INFO] generating key: ecdsa-256
+2022/02/01 11:45:32 [INFO] encoded CSR
+```
+
+<!--
+This command generates two files; it generates `server.csr` containing the PEM
+encoded [PKCS#10](https://tools.ietf.org/html/rfc2986) certification request,
+and `server-key.pem` containing the PEM encoded key to the certificate that
+is still to be created.
+-->
+此命令生成两个文件；它生成包含 PEM 编码
+[PKCS#10](https://tools.ietf.org/html/rfc2986) 证书请求的 `server.csr`，
+以及 PEM 编码密钥的 `server-key.pem`，用于待生成的证书。
+
+<!--
+## Create a CertificateSigningRequest object to send to the Kubernetes API
+
+Generate a CSR yaml blob and send it to the apiserver by running the following
+command:
+-->
+## 创建证书签名请求（CSR）对象发送到 Kubernetes API
+
+使用以下命令创建 CSR YAML 文件，并发送到 API 服务器：
+
+```shell
+cat <<EOF | kubectl apply -f -
+apiVersion: certificates.k8s.io/v1
+kind: CertificateSigningRequest
+metadata:
+  name: my-svc.my-namespace
+spec:
+  request: $(cat server.csr | base64 | tr -d '\n')
+  signerName: example.com/serving
+  usages:
+  - digital signature
+  - key encipherment
+  - server auth
+EOF
+```
+
+<!--
+Notice that the `server.csr` file created in step 1 is base64 encoded
+and stashed in the `.spec.request` field. You are also requesting a
+certificate with the "digital signature", "key encipherment", and "server
+auth" key usages, signed by an example `example.com/serving` signer.
+A specific `signerName` must be requested.
+View documentation for [supported signer names](/docs/reference/access-authn-authz/certificate-signing-requests/#signers)
+for more information.
+
+The CSR should now be visible from the API in a Pending state. You can see
+it by running:
+-->
+请注意，在步骤 1 中创建的 `server.csr` 文件是 base64 编码并存储在
+`.spec.request` 字段中的。你还要求提供 “digital signature（数字签名）”，
+“密钥加密（key encipherment）” 和 “服务器身份验证（server auth）” 密钥用途，
+由 `example.com/serving` 示例签名程序签名的证书。
+你也可以要求使用特定的 `signerName`。更多信息可参阅
+[支持的签署者名称](/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests/#signers)。
+
+在 API server 中可以看到这些 CSR 处于 Pending 状态。执行下面的命令你将可以看到：
+
+```shell
+kubectl describe csr my-svc.my-namespace
+```
+
+```none
+Name:                   my-svc.my-namespace
+Labels:                 <none>
+Annotations:            <none>
+CreationTimestamp:      Tue, 01 Feb 2022 11:49:15 -0500
+Requesting User:        yourname@example.com
+Signer:                 example.com/serving
+Status:                 Pending
+Subject:
+        Common Name:    my-pod.my-namespace.pod.cluster.local
+        Serial Number:
+Subject Alternative Names:
+        DNS Names:      my-pod.my-namespace.pod.cluster.local
+                        my-svc.my-namespace.svc.cluster.local
+        IP Addresses:   192.0.2.24
+                        10.0.34.2
+Events: <none>
+```
+
+<!--
+## Get the CertificateSigningRequest approved {#get-the-certificate-signing-request-approved}
+
+Approving the [certificate signing request](/docs/reference/access-authn-authz/certificate-signing-requests/)
+is either done by an automated approval process or on a one off basis by a cluster
+administrator. If you're authorized to approve a certificate request, you can do that
+manually using `kubectl`; for example:
+-->
+## 批准证书签名请求（CSR）  {#get-the-certificate-signing-request-approved}
+
+[证书签名请求](/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests/)
+的批准或者是通过自动批准过程完成的，或由集群管理员一次性完成。
+如果你被授权批准证书请求，你可以使用 `kubectl` 来手动完成此操作；例如：
+
+```shell
+kubectl certificate approve my-svc.my-namespace
+```
+
+```none
+certificatesigningrequest.certificates.k8s.io/my-svc.my-namespace approved
+```
+
+<!-- You should now see the following: -->
+你现在应该能看到如下输出：
+
+```shell
+kubectl get csr
+```
+
+```none
+NAME                  AGE   SIGNERNAME            REQUESTOR              REQUESTEDDURATION   CONDITION
+my-svc.my-namespace   10m   example.com/serving   yourname@example.com   <none>              Approved
+```
+
+<!-- 
+This means the certificate request has been approved and is waiting for the
+requested signer to sign it.
+-->
+这意味着证书请求已被批准，并正在等待请求的签名者对其签名。
+
+<!--  
+## Sign the CertificateSigningRequest {#sign-the-certificate-signing-request}
+
+Next, you'll play the part of a certificate signer, issue the certificate, and upload it to the API.
+
+A signer would typically watch the CertificateSigningRequest API for objects with its `signerName`,
+check that they have been approved, sign certificates for those requests,
+and update the API object status with the issued certificate.
+-->
+## 签名证书签名请求（CSR） {#sign-the-certificate-signing-request}
+
+接下来，你将扮演证书签署者的角色，颁发证书并将其上传到 API 服务器。
+
+签名者通常会使用其 `signerName` 查看对象的 CertificateSigningRequest API，
+检查它们是否已被批准，为这些请求签署证书，并使用已颁发的证书更新 API 对象状态。
+
+<!-- 
+### Create a Certificate Authority
+
+You need an authority to provide the digital signature on the new certificate.
+
+First, create a signing certificate by running the following:
+-->
+### 创建证书颁发机构
+
+你需要授权在新证书上提供数字签名。
+
+首先，通过运行以下命令创建签名证书：
+
+```shell
+cat <<EOF | cfssl gencert -initca - | cfssljson -bare ca
+{
+  "CN": "My Example Signer",
+  "key": {
+    "algo": "rsa",
+    "size": 2048
+  }
+}
+EOF
+```
+
+<!-- You should see output similar to: -->
+你应该看到类似于以下的输出：
+
+```none
+2022/02/01 11:50:39 [INFO] generating a new CA key and certificate from CSR
+2022/02/01 11:50:39 [INFO] generate received request
+2022/02/01 11:50:39 [INFO] received CSR
+2022/02/01 11:50:39 [INFO] generating key: rsa-2048
+2022/02/01 11:50:39 [INFO] encoded CSR
+2022/02/01 11:50:39 [INFO] signed certificate with serial number 263983151013686720899716354349605500797834580472
+```
+
+<!-- 
+This produces a certificate authority key file (`ca-key.pem`) and certificate (`ca.pem`). 
+-->
+这会产生一个证书颁发机构密钥文件（`ca-key.pem`）和证书（`ca.pem`）。
+
+
+<!-- ### Issue a certificate -->
+### 颁发证书
+
+{{< codenew file="tls/server-signing-config.json" >}}
+
+<!-- 
+Use a `server-signing-config.json` signing configuration and the certificate authority key file 
+and certificate to sign the certificate request:
+-->
+使用 `server-signing-config.json` 签名配置、证书颁发机构密钥文件和证书来签署证书请求：
+
+```shell
+kubectl get csr my-svc.my-namespace -o jsonpath='{.spec.request}' | \
+  base64 --decode | \
+  cfssl sign -ca ca.pem -ca-key ca-key.pem -config server-signing-config.json - | \
+  cfssljson -bare ca-signed-server
+```
+
+<!-- You should see output similar to: -->
+你应该看到类似于以下的输出：
+
+```
+2022/02/01 11:52:26 [INFO] signed certificate with serial number 576048928624926584381415936700914530534472870337
+```
+
+<!-- This produces a signed serving certificate file, `ca-signed-server.pem`. -->
+这会生成一个签名的服务证书文件，`ca-signed-server.pem`。
+
+<!-- 
+### Upload the signed certificate
+
+Finally, populate the signed certificate in the API object's status:
+-->
+
+### 上传签名证书
+
+最后，在 API 对象的状态中填充签名证书：
+
+```shell
+kubectl get csr my-svc.my-namespace -o json | \
+  jq '.status.certificate = "'$(base64 ca-signed-server.pem | tr -d '\n')'"' | \
+  kubectl replace --raw /apis/certificates.k8s.io/v1/certificatesigningrequests/my-svc.my-namespace/status -f -
+```
+
+{{< note >}}
+<!-- 
+This uses the command line tool [`jq`](https://stedolan.github.io/jq/) to populate the base64-encoded
+content in the `.status.certificate` field.
+If you do not have `jq`, you can also save the JSON output to a file, populate this field manually, and
+upload the resulting file.
+-->
+这使用命令行工具 [`jq`](https://stedolan.github.io/jq/)
+在 `.status.certificate` 字段中填充 base64 编码的内容。
+如果你没有 `jq` 工具，你还可以将 JSON 输出保存到文件中，手动填充此字段，然后上传结果文件。
+{{< /note >}}
+
+<!-- 
+Once the CSR is approved and the signed certificate is uploaded, run:
+-->
+批准 CSR 并上传签名证书后，运行：
+
+```shell
+kubectl get csr
+```
+
+<!-- The output is similar to: -->
+输入类似于：
+
+```none
+NAME                  AGE   SIGNERNAME            REQUESTOR              REQUESTEDDURATION   CONDITION
+my-svc.my-namespace   20m   example.com/serving   yourname@example.com   <none>              Approved,Issued
+```
+
+<!--
+## Download the certificate and use it
+
+Now, as the requesting user, you can download the issued certificate
+and save it to a `server.crt` file by running the following:
+-->
+## 下载证书并使用它
+
+现在，作为请求用户，你可以通过运行以下命令下载颁发的证书并将其保存到 `server.crt` 文件中：
+
+CSR 被签署并获得批准后，你应该看到以下内容：
+
+```shell
+kubectl get csr my-svc.my-namespace -o jsonpath='{.status.certificate}' \
+    | base64 --decode > server.crt
+```
+
+<!--
+Now you can populate `server.crt` and `server-key.pem` in a
+{{< glossary_tooltip text="Secret" term_id="secret" >}}
+that you could later mount into a Pod (for example, to use with a webserver
+that serves HTTPS). 
+-->
+现在你可以将 `server.crt` 和 `server-key.pem` 填充到
+{{<glossary_tooltip text="Secret" term_id="secret" >}} 中，
+稍后你可以将其挂载到 Pod 中（例如，用于提供 HTTPS 的网络服务器）。
+
+```shell
+kubectl create secret tls server --cert server.crt --key server-key.pem
+```
+
+```none
+secret/server created
+```
+
+<!-- 
+Finally, you can populate `ca.pem` into a {{< glossary_tooltip text="ConfigMap" term_id="configmap" >}}
+and use it as the trust root to verify the serving certificate:
+-->
+最后，你可以将 `ca.pem` 填充到
+{{<glossary_tooltip text="ConfigMap" term_id="configmap" >}}
+并将其用作信任根来验证服务证书：
+
+```shell
+kubectl create configmap example-serving-ca --from-file ca.crt=ca.pem
+```
+
+```none
+configmap/example-serving-ca created
+```
+
+<!--
+## Approving CertificateSigningRequests {#approving-certificate-signing-requests}
+
+A Kubernetes administrator (with appropriate permissions) can manually approve
+(or deny) CertificateSigningRequests by using the `kubectl certificate
+approve` and `kubectl certificate deny` commands. However if you intend
+to make heavy usage of this API, you might consider writing an automated
+certificates controller.
+-->
+## 批准证书签名请求（CSR）  {#approving-certificate-signing-requests}
+
+Kubernetes 管理员（具有适当权限）可以使用 `kubectl certificate approve` 和
+`kubectl certificate deny` 命令手动批准（或拒绝）证书签名请求（CSR）。
+但是，如果你打算大量使用此 API，则可以考虑编写自动化的证书控制器。
+
+{{< caution >}}
+<!-- 
+The ability to approve CSRs decides who trusts whom within your environment. The
+ability to approve CSRs should not be granted broadly or lightly.
+
+You should make sure that you confidently understand both the verification requirements
+that fall on the approver **and** the repercussions of issuing a specific certificate
+before you grant the `approve` permission.
+-->
+批准证书 CSR 的能力决定了在你的环境中谁信任谁。
+不应广泛或轻率地授予批准 CSR 的能力。
+
+在授予 `approve` 权限之前，你应该确保自己充分了解批准人的验证要求**和**颁发特定证书的后果。
+{{< /caution >}}
+
+<!--
+Whether a machine or a human using kubectl as above, the role of the _approver_ is
+to verify that the CSR satisfies two requirements:
+-->
+无论上述机器或人使用 kubectl，“批准者”的作用是验证 CSR 满足如下两个要求：
+
+<!--
+1. The subject of the CSR controls the private key used to sign the CSR. This
+   addresses the threat of a third party masquerading as an authorized subject.
+   In the above example, this step would be to verify that the pod controls the
+   private key used to generate the CSR.
+2. The subject of the CSR is authorized to act in the requested context. This
+   addresses the threat of an undesired subject joining the cluster. In the
+   above example, this step would be to verify that the pod is allowed to
+   participate in the requested service.
+-->
+1. CSR 的 subject 控制用于签署 CSR 的私钥。这解决了伪装成授权主体的第三方的威胁。
+   在上述示例中，此步骤将验证该 Pod 控制了用于生成 CSR 的私钥。
+2. CSR 的 subject 被授权在请求的上下文中执行。
+   这点用于处理不期望的主体被加入集群的威胁。
+   在上述示例中，此步骤将是验证该 Pod 是否被允许加入到所请求的服务中。
+
+<!--
+If and only if these two requirements are met, the approver should approve
+the CSR and otherwise should deny the CSR.
+
+For more information on certificate approval and access control, read
+the [Certificate Signing Requests](/docs/reference/access-authn-authz/certificate-signing-requests/)
+reference page.
+-->
+当且仅当满足这两个要求时，审批者应该批准 CSR，否则拒绝 CSR。
+
+有关证书批准和访问控制的更多信息，
+请阅读[证书签名请求](/zh-cn/docs/reference/access-authn-authz/certificate-signing-requests/)参考页。
+
+<!--
+## Configuring your cluster to provide signing
+
+This page assumes that a signer is setup to serve the certificates API. The
+Kubernetes controller manager provides a default implementation of a signer. To
+enable it, pass the `--cluster-signing-cert-file` and
+`--cluster-signing-key-file` parameters to the controller manager with paths to
+your Certificate Authority's keypair.
+-->
+## 给集群管理员的一个建议
+
+本页面假设已经为 certificates API 配置了签名者。
+Kubernetes 控制器管理器提供了一个签名者的默认实现。要启用它，请为控制器管理器设置
+`--cluster-signing-cert-file` 和 `--cluster-signing-key-file` 参数，
+使之取值为你的证书机构的密钥对的路径。
diff --git a/content/zh/docs/tasks/tls/manual-rotation-of-ca-certificates.md b/content/zh-cn/docs/tasks/tls/manual-rotation-of-ca-certificates.md
similarity index 54%
rename from content/zh/docs/tasks/tls/manual-rotation-of-ca-certificates.md
rename to content/zh-cn/docs/tasks/tls/manual-rotation-of-ca-certificates.md
index 87e9b5eb64..f0b950d3db 100644
--- a/content/zh/docs/tasks/tls/manual-rotation-of-ca-certificates.md
+++ b/content/zh-cn/docs/tasks/tls/manual-rotation-of-ca-certificates.md
@@ -1,13 +1,12 @@
 ---
 title: 手动轮换 CA 证书
-min-kubernetes-server-version: v1.13
 content_type: task
 ---
 <!--
 title: Manual Rotation of CA Certificates
-min-kubernetes-server-version: v1.13
 content_type: task
 -->
+
 <!-- overview -->
 
 <!--
@@ -20,12 +19,15 @@ This page shows how to manually rotate the certificate authority (CA) certificat
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
 <!--
-- For more information about authentication in Kubernetes, see [Authenticating](/docs/reference/access-authn-authz/authentication).
-- For more information about best practices for CA certificates, see [Single root CA](/docs/setup/best-practices/certificates/#single-root-ca).
+- For more information about authentication in Kubernetes, see
+  [Authenticating](/docs/reference/access-authn-authz/authentication).
+- For more information about best practices for CA certificates, see
+  [Single root CA](/docs/setup/best-practices/certificates/#single-root-ca).
 -->
 - 要了解 Kubernetes 中用户认证的更多信息，参阅
-  [认证](/zh/docs/reference/access-authn-authz/authentication)；
-- 要了解与 CA 证书最佳实践有关的更多信息，参阅[单根 CA](/zh/docs/setup/best-practices/certificates/#single-root-ca)。
+  [认证](/zh-cn/docs/reference/access-authn-authz/authentication)；
+- 要了解与 CA 证书最佳实践有关的更多信息，
+  参阅[单根 CA](/zh-cn/docs/setup/best-practices/certificates/#single-root-ca)。
 
 <!-- steps -->
 
@@ -34,6 +36,7 @@ This page shows how to manually rotate the certificate authority (CA) certificat
 -->
 ## 手动轮换 CA 证书  {#rotate-the-ca-certificates-manually}
 
+{{< caution >}}
 <!--
 Make sure to back up your certificate directory along with configuration files and any other necessary files.
 
@@ -42,7 +45,6 @@ Graceful termination of the API server is also assumed so clients can cleanly di
 
 Configurations with a single API server will experience unavailability while the API server is being restarted.
 -->
-{{< caution >}}
 确保备份你的证书目录、配置文件以及其他必要文件。
 
 这里的方法假定 Kubernetes 的控制面通过运行多个 API 服务器以高可用配置模式运行。
@@ -54,48 +56,59 @@ Configurations with a single API server will experience unavailability while the
 
 <!--
 1. Distribute the new CA certificates and private keys
-   (ex: `ca.crt`, `ca.key`, `front-proxy-ca.crt`, and `front-proxy-ca.key`)
+   (for example: `ca.crt`, `ca.key`, `front-proxy-ca.crt`, and `front-proxy-ca.key`)
    to all your control plane nodes in the Kubernetes certificates directory.
 -->
 1. 将新的 CA 证书和私钥（例如：`ca.crt`、`ca.key`、`front-proxy-ca.crt` 和
    `front-proxy-client.key`）分发到所有控制面节点，放在其 Kubernetes 证书目录下。
 
 <!--
-1. Update {{< glossary_tooltip text="kube-controller-manager" term_id="kube-controller-manager" >}}'s `--root-ca-file` to
-   include both old and new CA. Then restart the component.
+1. Update the `--root-ca-file` flag for the {{< glossary_tooltip term_id="kube-controller-manager" >}} to include
+   both old and new CA. Then restart the component.
+
+   Any {{< glossary_tooltip text="ServiceAccount" term_id="service-account" >}} created after this point will get
+   Secrets that include both old and new CAs.
+-->
+2. 更新 {{< glossary_tooltip text="kube-controller-manager" term_id="kube-controller-manager" >}}
+   的 `--root-ca-file` 标志，使之同时包含老的和新的 CA，之后重启组件。
+
+   自此刻起，所创建的所有{{< glossary_tooltip text="ServiceAccount" term_id="service-account" >}}
+   都会获得同时包含老的 CA 和新的 CA 的 Secret。
 
-   Any service account created after this point will get secrets that include both old and new CAs.
-   
    {{< note >}}
+   <!--
    The files specified by the kube-controller-manager flags `--client-ca-file` and `--cluster-signing-cert-file`
    cannot be CA bundles. If these flags and `--root-ca-file` point to the same `ca.crt` file which is now a
    bundle (includes both old and new CA) you will face an error. To workaround this problem you can copy the new CA to a separate
    file and make the flags `--client-ca-file` and `--cluster-signing-cert-file` point to the copy. Once `ca.crt` is no longer
    a bundle you can restore the problem flags to point to `ca.crt` and delete the copy.
-   {{< /note >}}
--->
-2. 更新 {{< glossary_tooltip text="kube-controller-manager" term_id="kube-controller-manager" >}} 的
-   `--root-ca-file` 标志，使之同时包含老的和新的 CA，之后重启组件。
+   -->
+   kube-controller-manager 标志 `--client-ca-file` 和 `--cluster-signing-cert-file`
+   所引用的文件不能是 CA 证书包。如果这些标志和 `--root-ca-file` 指向同一个 `ca.crt` 包文件
+   （包含老的和新的 CA 证书），你将会收到出错信息。
+   要解决这个问题，可以将新的 CA 证书复制到单独的文件中，并将 `--client-ca-file` 和
+   `--cluster-signing-cert-file` 标志指向该副本。一旦 `ca.crt` 不再是证书包文件，
+   就可以恢复有问题的标志指向  `ca.crt` 并删除该副本。
 
-   自此刻起，所创建的所有服务账号都会获得同时包含老的 CA 和新的 CA 的 Secret。
-
-   {{< note >}}
-   kube-controller-manager 标志 `--client-ca-file` 和 `--cluster-signing-cert-file` 所引用的文件
-   不能是 CA 证书包。如果这些标志和 `--root-ca-file` 指向同一个 `ca.crt` 包文件（包含老的和新的 CA 证书），
-   你将会收到出错信息。
-   要解决这个问题，可以将新的 CA 证书复制到单独的文件中，并将 `--client-ca-file` 和 `--cluster-signing-cert-file` 
-   标志指向该副本。一旦 `ca.crt` 不再是证书包文件，就可以恢复有问题的标志指向  `ca.crt` 并删除该副本。
+   <!--
+   [Issue 1350](https://github.com/kubernetes/kubeadm/issues/1350) for kubeadm tracks an bug with the
+   kube-controller-manager being unable to accept a CA bundle.
+   -->
+   kubeadm 的 [Issue 1350](https://github.com/kubernetes/kubeadm/issues/1350)
+   在跟踪一个导致 kube-controller-manager 无法接收 CA 证书包的问题。
    {{< /note >}}
 
 <!--
-   1. Update all service account tokens to include both old and new CA certificates.
+1. Update all Secrets that hold service account tokens to include both old and new CA certificates.
 
-   If any pods are started before new CA is used by API servers, they will get this update and trust both old and new CAs.
+   If any pods are started before new CA is used by API servers, the new Pods get this update and will trust both
+   old and new CAs.
 -->
-3. 更新所有服务账号令牌，使之同时包含老的和新的 CA 证书。
+3. 更新所有的保存服务账号令牌的 Secret，使之同时包含老的和新的 CA 证书。
 
-   如果在 API 服务器使用新的 CA 之前启动了新的 Pod，这些 Pod
+   如果在 API 服务器使用新的 CA 之前启动了新的 Pod，这些新的 Pod
    也会获得此更新并且同时信任老的和新的 CA 证书。
+
    <!--
    ```shell
    base64_encoded_ca="$(base64 -w0 <path to file containing both old and new CAs>)"
@@ -109,9 +122,8 @@ Configurations with a single API server will experience unavailability while the
    done
    ```
    -->
-
    ```shell
-   base64_encoded_ca="$(base64 -w0 <path to file containing both old and new CAs>)"
+   base64_encoded_ca="$(base64 -w0 <同时包含老的和新的 CA 的文件路径>)"
 
    for namespace in $(kubectl get ns --no-headers | awk '{print $1}'); do
        for token in $(kubectl get secrets --namespace "$namespace" --field-selector type=kubernetes.io/service-account-token -o name); do
@@ -121,21 +133,25 @@ Configurations with a single API server will experience unavailability while the
        done
    done
    ```
+
 <!--
-1. Restart all pods using in-cluster configs (ex: kube-proxy, coredns, etc) so they can use the updated certificate authority data from *ServiceAccount* secrets.
+1. Restart all pods using in-cluster configurations (for example: kube-proxy, CoreDNS, etc) so they can use the
+   updated certificate authority data from Secrets that link to ServiceAccounts.
 
-   * Make sure coredns, kube-proxy and other pods using in-cluster configs are working as expected.
+   * Make sure CoreDNS, kube-proxy and other Pods using in-cluster configurations are working as expected.
 
-1. Append the both old and new CA to the file against `-client-ca-file` and `-kubelet-certificate-authority` flag in the `kube-apiserver` configuration.
+1. Append the both old and new CA to the file against `-client-ca-file` and `-kubelet-certificate-authority`
+   flag in the `kube-apiserver` configuration.
 
 1. Append the both old and new CA to the file against `-client-ca-file` flag in the `kube-scheduler` configuration.
 -->
-4. 重启所有使用集群内配置的 Pods（例如：`kube-proxy`、`coredns` 等），以便这些 Pod 能够使用
-   来自 *ServiceAccount* Secret 中的、已更新的证书机构数据。
+4. 重启所有使用集群内配置的 Pod（例如：kube-proxy、CoreDNS 等），以便这些 Pod
+   能够使用与 ServiceAccount 相关联的 Secret 中的、已更新的证书机构数据。
 
-   * 确保 `coredns`、`kube-proxy` 和其他使用集群内配置的 Pod 都正按预期方式工作。
+   * 确保 CoreDNS、kube-proxy 和其他使用集群内配置的 Pod 都正按预期方式工作。
 
-5. 将老的和新的 CA 都追加到 `kube-apiserver` 配置的 `--client-ca-file` 和 `--kubelet-certificate-authority` 标志所指的文件。
+5. 将老的和新的 CA 都追加到 `kube-apiserver` 配置的 `--client-ca-file` 和
+   `--kubelet-certificate-authority` 标志所指的文件。
 
 6. 将老的和新的 CA 都追加到 `kube-scheduler` 配置的 `--client-ca-file` 标志所指的文件。
 
@@ -148,19 +164,34 @@ Configurations with a single API server will experience unavailability while the
    Additionally, update the `certificate-authority-data` section in the kubeconfig files,
    respectively with Base64-encoded old and new certificate authority data
 -->
-7. 通过替换 `client-certificate-data` 和 `client-key-data`
-   中的内容，更新用户账号的证书。
+7. 通过替换 `client-certificate-data` 和 `client-key-data` 中的内容，更新用户账号的证书。
 
    有关为独立用户账号创建证书的更多信息，可参阅
-   [为用户帐号配置证书](/zh/docs/setup/best-practices/certificates/#configure-certificates-for-user-accounts)。
+   [为用户帐号配置证书](/zh-cn/docs/setup/best-practices/certificates/#configure-certificates-for-user-accounts)。
+
+   另外，还要更新 kubeconfig 文件中的 `certificate-authority-data` 节，
+   使之包含 Base64 编码的老的和新的证书机构数据。
+
+<!--
+1. Update the `--root-ca-file` flag for the {{< glossary_tooltip term_id="cloud-controller-manager" >}} to include
+   both old and new CA, then restart the cloud-controller-manager.
+-->
+8. 更新 {{< glossary_tooltip term_id="cloud-controller-manager" >}} 的 `--root-ca-file`
+   标志值，使之同时包含老的和新的 CA，之后重新启动 cloud-controller-manager。
+
+   {{< note >}}
+   <!--
+   If your cluster does not have a cloud-controller-manager, you can skip this step.
+   -->
+   如果你的集群中不包含 cloud-controller-manager，你可以略过这一步。
+   {{< /note >}}
 
-   另外，还要更新 kubeconfig 文件中的 `certificate-authority-data`
-   节，使之包含 Base64 编码的老的和新的证书机构数据。
 <!--
 1. Follow below steps in a rolling fashion.
 
-   1. Restart any other *[aggregated api servers](/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)*
-      or *webhook handlers* to trust the new CA certificates.
+   1. Restart any other
+      [aggregated API servers](/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/) or
+      webhook handlers to trust the new CA certificates.
 
    1. Restart the kubelet by update the file against `clientCAFile` in kubelet configuration and
       `certificate-authority-data` in kubelet.conf to use both the old and new CA on all nodes.
@@ -169,12 +200,12 @@ Configurations with a single API server will experience unavailability while the
       `client-key-data` in kubelet.conf on all nodes along with the kubelet client certificate file
       usually found in `/var/lib/kubelet/pki`.
 -->
-8. 遵循下列步骤执行滚动更新
+9. 遵循下列步骤执行滚动更新
 
-   1. 重新启动所有其他 *[被聚合的 API 服务器](/zh/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)*
-      或者 *Webhook 处理程序*，使之信任新的 CA 证书。
+   1. 重新启动所有其他[被聚合的 API 服务器](/zh-cn/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)
+      或者 Webhook 处理程序，使之信任新的 CA 证书。
 
-   2. 在所有节点上更新 kubelet 配置中的 `clientCAFile` 所指文件以及 kubelet.conf 中的
+   1. 在所有节点上更新 kubelet 配置中的 `clientCAFile` 所指文件以及 kubelet.conf 中的
       `certificate-authority-data` 并重启 kubelet 以同时使用老的和新的 CA 证书。
 
       如果你的 kubelet 并未使用客户端证书轮换，则在所有节点上更新 kubelet.conf 中
@@ -193,36 +224,39 @@ Configurations with a single API server will experience unavailability while the
       你可以使用现有的私钥，也可以使用新的私钥。
       如果你改变了私钥，则要将更新的私钥也放到 Kubernetes 证书目录下。
 
-      由于 Pod 既信任老的 CA 也信任新的 CA，Pod 中的客户端会经历短暂的连接断开状态，
-      之后再连接到使用新的 CA 所签名的证书的新的 API 服务器。
+      <!--
+      Since the Pods in your cluster trust both old and new CAs, there will be a momentarily disconnection
+      after which pods' Kubernetes clients reconnect to the new API server.
+      The new API server uses a certificate signed by the new CA.
+      -->
+      由于集群中的 Pod 既信任老的 CA 也信任新的 CA，Pod 中的客户端会经历短暂的连接断开状态，
+      之后再使用新的 CA 所签名的证书连接到新的 API 服务器。
 
       <!--
-      * Restart Scheduler to use the new CAs.
+      * Restart the {{< glossary_tooltip term_id="kube-scheduler" text="kube-scheduler" >}} to use and
+        trust the new CAs.
       * Make sure control plane components logs no TLS errors.
       -->
-      * 重启调度器以使用新的 CA 证书。
+      * 重启 {{< glossary_tooltip term_id="kube-scheduler" text="kube-scheduler" >}} 以使用并信任新的
+        CA 证书。
       * 确保控制面组件的日志中没有 TLS 相关的错误信息。
 
+      {{< note >}}
       <!--
-      To generate certificates and private keys for your cluster using the `openssl`
-      command line tool, see [Certificates (`openssl`)](/docs/tasks/administer-cluster/certificates/#openssl).
+      To generate certificates and private keys for your cluster using the `openssl` command line tool,
+      see [Certificates (`openssl`)](/docs/tasks/administer-cluster/certificates/#openssl).
       You can also use [`cfssl`](/docs/tasks/administer-cluster/certificates/#cfssl).
       -->
-      {{< note >}}
       要使用 `openssl` 命令行为集群生成新的证书和私钥，可参阅
-      [证书（`openssl`）](/zh/docs/tasks/administer-cluster/certificates/#openssl)。
-      你也可以使用[`cfssl`](/zh/docs/tasks/administer-cluster/certificates/#cfssl).
+      [证书（`openssl`）](/zh-cn/docs/tasks/administer-cluster/certificates/#openssl)。
+      你也可以使用[`cfssl`](/zh-cn/docs/tasks/administer-cluster/certificates/#cfssl).
       {{< /note >}}
 
    <!--
-   1. Annotate any Daemonsets and Deployments to trigger pod replacement in a safer rolling fashion.
-
-      Example:
+   1. Annotate any DaemonSets and Deployments to trigger pod replacement in a safer rolling fashion.
    -->
    4. 为 Daemonset 和 Deployment 添加注解，从而触发较安全的滚动更新，替换 Pod。
 
-      示例：
-
       ```shell
       for namespace in $(kubectl get namespace -o jsonpath='{.items[*].metadata.name}'); do
           for name in $(kubectl get deployments -n $namespace -o jsonpath='{.items[*].metadata.name}'); do
@@ -234,41 +268,47 @@ Configurations with a single API server will experience unavailability while the
       done
       ```
 
+      {{< note >}}
       <!--
       To limit the number of concurrent disruptions that your application experiences,
       see [configure pod disruption budget](/docs/tasks/run-application/configure-pdb/).
       -->
-      {{< note >}}
-      要限制应用可能受到的并发干扰数量，可以参阅
-      [配置 Pod 干扰预算](/zh/docs/tasks/run-application/configure-pdb/).
+      要限制应用可能受到的并发干扰数量，
+      可以参阅[配置 Pod 干扰预算](/zh-cn/docs/tasks/run-application/configure-pdb/)。
       {{< /note >}}
+
+      <!--
+      Depending on how you use StatefulSets you may also need to perform similar rolling replacement.
+      -->
+      取决于你在如何使用 StatefulSet，你可能需要对其执行类似的滚动替换操作。
+
 <!--
-1. If your cluster is using bootstrap tokens to join nodes, update the ConfigMap `cluster-info` in the `kube-public` namespace with new CA.
+1. If your cluster is using bootstrap tokens to join nodes, update the ConfigMap `cluster-info` in the `kube-public`
+   namespace with new CA.
 -->
-9. 如果你的集群使用启动引导令牌来添加节点，则需要更新 `kube-public` 名字空间下的
-   ConfigMap `cluster-info`，使之包含新的 CA 证书。
+10. 如果你的集群使用启动引导令牌来添加节点，则需要更新 `kube-public` 名字空间下的
+    ConfigMap `cluster-info`，使之包含新的 CA 证书。
 
-   ```shell
-   base64_encoded_ca="$(base64 -w0 /etc/kubernetes/pki/ca.crt)"
+    ```shell
+    base64_encoded_ca="$(base64 -w0 /etc/kubernetes/pki/ca.crt)"
 
-   kubectl get cm/cluster-info --namespace kube-public -o yaml | \
+    kubectl get cm/cluster-info --namespace kube-public -o yaml | \
        /bin/sed "s/\(certificate-authority-data:\).*/\1 ${base64_encoded_ca}/" | \
        kubectl apply -f -
-   ```
+    ```
 <!--
 1. Verify the cluster functionality.
 
-   1. Validate the logs from control plane components, along with the kubelet and the
-      kube-proxy are not throwing any tls errors, see
-      [looking at the logs](/docs/tasks/debug-application-cluster/debug-cluster/#looking-at-logs).
+   1. Check the logs from control plane components, along with the kubelet and the kube-proxy.
+       Ensure those components are not reporting any TLS errors, see
+       [looking at the logs](/docs/tasks/debug/debug-cluster/#looking-at-logs) for more details.
 
    1. Validate logs from any aggregated api servers and pods using in-cluster config.
 -->
-10. 验证集群的功能正常
+11. 验证集群的功能正常。
 
-    1. 验证控制面组件的日志，以及 `kubelet` 和 `kube-proxy` 的日志，确保其中没有
-       抛出 TLS 错误，参阅
-       [查看日志](/zh/docs/tasks/debug-application-cluster/debug-cluster/#looking-at-logs).
+    1. 检查控制面组件以及 `kubelet` 和 `kube-proxy` 的日志，确保其中没有抛出 TLS 错误，
+       参阅[查看日志](/zh-cn/docs/tasks/debug/debug-cluster/#looking-at-logs)。
 
     2. 验证被聚合的 API 服务器的日志，以及所有使用集群内配置的 Pod 的日志。
 
@@ -277,21 +317,31 @@ Configurations with a single API server will experience unavailability while the
 
    1. Update all service account tokens to include new CA certificate only.
 
-      * All pods using an in-cluster kubeconfig will eventually need to be restarted to pick up the new SA secret for the old CA to be completely untrusted.
+      * All pods using an in-cluster kubeconfig will eventually need to be restarted to pick up the new secret,
+        so that no Pods are relying on the old cluster CA.
 
    1. Restart the control plane components by removing the old CA from the kubeconfig files and the files against `--client-ca-file`, `--root-ca-file` flags resp.
 
-   1. Restart kubelet by removing the old CA from file against the `clientCAFile` flag and kubelet kubeconfig file.
+   1. On each node, restart the kubelet by removing the old CA from file against the `clientCAFile` flag
+      and from the kubelet kubeconfig file. You should carry this out as a rolling update.
+
+      If your cluster lets you make this change, you can also roll it out by replacing nodes rather than
+      reconfiguring them.
 -->
-11. 完成集群功能的检查之后：
+12. 完成集群功能的检查之后：
 
     1. 更新所有的服务账号令牌，使之仅包含新的 CA 证书。
 
        * 使用集群内 kubeconfig 的 Pod 最终也需要被重启，以获得新的服务账号 Secret
-         数据，进而不再信任老的 CA 证书。
+         数据，这样就不会有 Pod 再依赖老的集群 CA。
 
     1. 从 kubeconfig 文件和 `--client-ca-file` 以及 `--root-ca-file` 标志所指向的文件
        中去除老的 CA 数据，之后重启控制面组件。
 
-    1. 重启 kubelet，移除 `clientCAFile` 标志所指向的文件以及 kubelet kubeconfig 文件中
-       的老的 CA 数据。
+    1. 在每个节点上，移除 `clientCAFile` 标志所指向的文件，以删除老的 CA 数据，并从
+       kubelet kubeconfig 文件中去掉老的 CA，重启 kubelet。
+       你应该用滚动更新的方式来执行这一步骤的操作。
+
+       如果你的集群允许你执行这一变更，你也可以通过替换节点而不是重新配置节点的方式来将其上线。
+
+
diff --git a/content/zh/docs/tasks/tools/_index.md b/content/zh-cn/docs/tasks/tools/_index.md
similarity index 88%
rename from content/zh/docs/tasks/tools/_index.md
rename to content/zh-cn/docs/tasks/tools/_index.md
index 028f22fb38..e3beccc17b 100644
--- a/content/zh/docs/tasks/tools/_index.md
+++ b/content/zh-cn/docs/tasks/tools/_index.md
@@ -27,7 +27,7 @@ Kubernetes 命令行工具，[kubectl](/docs/reference/kubectl/kubectl/)，使
 你可以使用 kubectl 来部署应用、监测和管理集群资源以及查看日志。
 
 有关更多信息，包括 kubectl 操作的完整列表，请参见[`kubectl` 
-参考文件](/zh/docs/reference/kubectl/)。
+参考文件](/zh-cn/docs/reference/kubectl/)。
 
 <!--
 kubectl is installable on a variety of Linux platforms, macOS and Windows. 
@@ -40,9 +40,9 @@ Find your preferred operating system below.
 kubectl 可安装在各种 Linux 平台、 macOS 和 Windows 上。
 在下面找到你喜欢的操作系统。
 
-- [在 Linux 上安装 kubectl](/zh/docs/tasks/tools/install-kubectl-linux)
-- [在 macOS 上安装 kubectl](/zh/docs/tasks/tools/install-kubectl-macos)
-- [在 Windows 上安装 kubectl](/zh/docs/tasks/tools/install-kubectl-windows)
+- [在 Linux 上安装 kubectl](/zh-cn/docs/tasks/tools/install-kubectl-linux)
+- [在 macOS 上安装 kubectl](/zh-cn/docs/tasks/tools/install-kubectl-macos)
+- [在 Windows 上安装 kubectl](/zh-cn/docs/tasks/tools/install-kubectl-windows)
 
 <!--
 ## kind
@@ -104,7 +104,7 @@ Once you have `minikube` working, you can use it to
 </a>
 
 当你拥有了可工作的 `minikube` 时，就可以用它来
-[运行示例应用](/zh/docs/tutorials/hello-minikube/)了。
+[运行示例应用](/zh-cn/docs/tutorials/hello-minikube/)了。
 
 ## kubeadm
 
@@ -120,13 +120,13 @@ It performs the actions necessary to get a minimum viable, secure cluster up and
 [Installing kubeadm](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/) shows you how to install kubeadm.
 Once installed, you can use it to [create a cluster](/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/).
 -->
-[安装 kubeadm](/zh/docs/setup/production-environment/tools/kubeadm/install-kubeadm/)
+[安装 kubeadm](/zh-cn/docs/setup/production-environment/tools/kubeadm/install-kubeadm/)
 展示了如何安装 kubeadm 的过程。
 一旦安装了 kubeadm，你就可以使用它来
-[创建一个集群](/zh/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/)。
+[创建一个集群](/zh-cn/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/)。
 
 <!-- a class="btn btn-primary" href="/docs/setup/production-environment/tools/kubeadm/install-kubeadm/" role="button" aria-label="View kubeadm Install Guide">View kubeadm Install Guide</a-->
 
-<a class="btn btn-primary" href="/zh/docs/setup/production-environment/tools/kubeadm/install-kubeadm/"
+<a class="btn btn-primary" href="/zh-cn/docs/setup/production-environment/tools/kubeadm/install-kubeadm/"
   role="button" aria-label="查看 kubeadm 安装指南">查看 kubeadm 安装指南</a>
 
diff --git a/content/zh/docs/tasks/tools/included/_index.md b/content/zh-cn/docs/tasks/tools/included/_index.md
similarity index 100%
rename from content/zh/docs/tasks/tools/included/_index.md
rename to content/zh-cn/docs/tasks/tools/included/_index.md
diff --git a/content/zh/docs/tasks/tools/included/kubectl-convert-overview.md b/content/zh-cn/docs/tasks/tools/included/kubectl-convert-overview.md
similarity index 74%
rename from content/zh/docs/tasks/tools/included/kubectl-convert-overview.md
rename to content/zh-cn/docs/tasks/tools/included/kubectl-convert-overview.md
index f26827f2c2..21d6556331 100644
--- a/content/zh/docs/tasks/tools/included/kubectl-convert-overview.md
+++ b/content/zh-cn/docs/tasks/tools/included/kubectl-convert-overview.md
@@ -15,10 +15,10 @@ headless: true
 -->
 
 <!--
-A plugin for Kubernetes command-line tool `kubectl`, which allows you to convert manifests between different API 
+A plugin for Kubernetes command-line tool `kubectl`, which allows you to convert manifests between different API
 versions. This can be particularly helpful to migrate manifests to a non-deprecated api version with newer Kubernetes release.
 For more info, visit [migrate to non deprecated apis](/docs/reference/using-api/deprecation-guide/#migrate-to-non-deprecated-apis)
 -->
 一个 Kubernetes 命令行工具 `kubectl` 的插件，允许你将清单在不同 API 版本间转换。
-在将清单迁移到具有较新 Kubernetes 版本的未弃用 API 版本时，这个插件特别有用。
-更多信息请访问 [迁移到非弃用 API](/zh/docs/reference/using-api/deprecation-guide/#migrate-to-non-deprecated-apis)
+这对于将清单迁移到新的 Kubernetes 发行版上未被废弃的 API 版本时尤其有帮助。
+更多信息请访问 [迁移到非弃用 API](/zh-cn/docs/reference/using-api/deprecation-guide/#migrate-to-non-deprecated-apis)
diff --git a/content/zh/docs/tasks/tools/included/kubectl-whats-next.md b/content/zh-cn/docs/tasks/tools/included/kubectl-whats-next.md
similarity index 73%
rename from content/zh/docs/tasks/tools/included/kubectl-whats-next.md
rename to content/zh-cn/docs/tasks/tools/included/kubectl-whats-next.md
index 3990922e0e..6d8a9a136d 100644
--- a/content/zh/docs/tasks/tools/included/kubectl-whats-next.md
+++ b/content/zh-cn/docs/tasks/tools/included/kubectl-whats-next.md
@@ -20,8 +20,8 @@ headless: true
 * Read the [kubectl reference docs](/docs/reference/kubectl/kubectl/)
 -->
 * [安装 Minikube](https://minikube.sigs.k8s.io/docs/start/)
-* 有关创建集群的更多信息，请参阅[入门指南](/zh/docs/setup/).
-* [学习如何启动并对外公开你的应用程序。](/zh/docs/tasks/access-application-cluster/service-access-application-cluster/)
+* 有关创建集群的更多信息，请参阅[入门指南](/zh-cn/docs/setup/).
+* [学习如何启动并对外公开你的应用程序。](/zh-cn/docs/tasks/access-application-cluster/service-access-application-cluster/)
 * 如果你需要访问其他人创建的集群，请参阅
-  [共享集群接入文档](/zh/docs/tasks/access-application-cluster/configure-access-multiple-clusters/).
-* 阅读 [kubectl 参考文档](/zh/docs/reference/kubectl/kubectl/)
+  [共享集群接入文档](/zh-cn/docs/tasks/access-application-cluster/configure-access-multiple-clusters/).
+* 阅读 [kubectl 参考文档](/zh-cn/docs/reference/kubectl/kubectl/)
diff --git a/content/zh/docs/tasks/tools/included/optional-kubectl-configs-bash-linux.md b/content/zh-cn/docs/tasks/tools/included/optional-kubectl-configs-bash-linux.md
similarity index 88%
rename from content/zh/docs/tasks/tools/included/optional-kubectl-configs-bash-linux.md
rename to content/zh-cn/docs/tasks/tools/included/optional-kubectl-configs-bash-linux.md
index eaee1d9176..eba8ea68cc 100644
--- a/content/zh/docs/tasks/tools/included/optional-kubectl-configs-bash-linux.md
+++ b/content/zh-cn/docs/tasks/tools/included/optional-kubectl-configs-bash-linux.md
@@ -62,29 +62,22 @@ Reload your shell and verify that bash-completion is correctly installed by typi
 -->
 ### 启动 kubectl 自动补全功能 {#enable-kubectl-autocompletion}
 
+#### Bash
+
 <!-- 
 You now need to ensure that the kubectl completion script gets sourced in all your shell sessions. There are two ways in which you can do this:
 -->
 你现在需要确保一点：kubectl 补全脚本已经导入（sourced）到 shell 会话中。
-这里有两种验证方法：
+可以通过以下两种方法进行设置：
 
-<!-- 
-- Source the completion script in your `~/.bashrc` file:
--->
-- 在文件 `~/.bashrc` 中导入（source）补全脚本：
-
-  ```bash
-  echo 'source <(kubectl completion bash)' >>~/.bashrc
-  ```
-
-<!-- 
-- Add the completion script to the `/etc/bash_completion.d` directory:
--->
-- 将补全脚本添加到目录 `/etc/bash_completion.d` 中：
-
-  ```bash
-  kubectl completion bash >/etc/bash_completion.d/kubectl
-  ```
+{{< tabs name="kubectl_bash_autocompletion" >}}
+{{{< tab name="当前用户" codelang="bash" >}}
+echo 'source <(kubectl completion bash)' >>~/.bashrc
+{{< /tab >}}
+{{< tab name="系统全局" codelang="bash" >}}
+kubectl completion bash | sudo tee /etc/bash_completion.d/kubectl > /dev/null
+{{< /tab >}}}
+{{< /tabs >}}
 
 <!-- 
 If you have an alias for kubectl, you can extend shell completion to work with that alias:
@@ -93,7 +86,7 @@ If you have an alias for kubectl, you can extend shell completion to work with t
 
 ```bash
 echo 'alias k=kubectl' >>~/.bashrc
-echo 'complete -F __start_kubectl k' >>~/.bashrc
+echo 'complete -o default -F __start_kubectl k' >>~/.bashrc
 ```
 
 {{< note >}}
diff --git a/content/zh/docs/tasks/tools/included/optional-kubectl-configs-bash-mac.md b/content/zh-cn/docs/tasks/tools/included/optional-kubectl-configs-bash-mac.md
similarity index 91%
rename from content/zh/docs/tasks/tools/included/optional-kubectl-configs-bash-mac.md
rename to content/zh-cn/docs/tasks/tools/included/optional-kubectl-configs-bash-mac.md
index 225492631c..e277ad3103 100644
--- a/content/zh/docs/tasks/tools/included/optional-kubectl-configs-bash-mac.md
+++ b/content/zh-cn/docs/tasks/tools/included/optional-kubectl-configs-bash-mac.md
@@ -12,7 +12,7 @@ headless: true
 <!-- 
 ### Introduction
 -->
-### 简介 
+### 简介 {#introduction}
 
 <!-- 
 The kubectl completion script for Bash can be generated with `kubectl completion bash`. Sourcing this script in your shell enables kubectl completion.
@@ -33,14 +33,14 @@ bash-completion 有两个版本：v1 和 v2。v1 对应 Bash3.2（也是 macOS 
 kubectl 的补全脚本**无法适配** bash-completion v1 和 Bash 3.2。
 必须为它配备  **bash-completion v2** 和 **Bash 4.1+**。
 有鉴于此，为了在 macOS 上使用 kubectl 补全功能，你必须要安装和使用 Bash 4.1+
-([*说明*](https://itnext.io/upgrading-bash-on-macos-7138bd1066ba))。
-后续说明假定你用的是 Bash 4.1+（也就是 Bash 4.1 或更新的版本）
+（[**说明**](https://itnext.io/upgrading-bash-on-macos-7138bd1066ba)）。
+后续说明假定你用的是 Bash 4.1+（也就是 Bash 4.1 或更新的版本）。
 {{< /warning >}}
 
 <!-- 
 ### Upgrade Bash
 -->
-### 升级 Bash
+### 升级 Bash {#upgrade-bash}
 
 <!-- 
 The instructions here assume you use Bash 4.1+. You can check your Bash's version by running:
@@ -77,7 +77,7 @@ Homebrew 通常把它安装为 `/usr/local/bin/bash`。
 <!-- 
 ### Install bash-completion
 -->
-### 安装 bash-completion
+### 安装 bash-completion {#install-bash-completion}
 
 
 {{< note >}}
@@ -116,7 +116,7 @@ Reload your shell and verify that bash-completion v2 is correctly installed with
 <!-- 
 ### Enable kubectl autocompletion
 -->
-### 启用 kubectl 自动补全功能
+### 启用 kubectl 自动补全功能 {#enable-kubectl-autocompletion}
 
 <!-- 
 You now have to ensure that the kubectl completion script gets sourced in all your shell sessions. There are multiple ways to achieve this:
@@ -148,15 +148,15 @@ You now have to ensure that the kubectl completion script gets sourced in all yo
 
     ```bash
     echo 'alias k=kubectl' >>~/.bash_profile
-    echo 'complete -F __start_kubectl k' >>~/.bash_profile
+    echo 'complete -o default -F __start_kubectl k' >>~/.bash_profile
     ```
 
 <!-- 
 - If you installed kubectl with Homebrew (as explained [here](/docs/tasks/tools/install-kubectl-macos/#install-with-homebrew-on-macos)), then the kubectl completion script should already be in `/usr/local/etc/bash_completion.d/kubectl`. In that case, you don't need to do anything.
 -->
 - 如果你是用 Homebrew 安装的 kubectl（如
-  [此页面](/zh/docs/tasks/install-with-homebrew-on-macos/#install-with-homebrew-on-macos)
-  所描述），则kubectl 补全脚本应该已经安装到目录 `/usr/local/etc/bash_completion.d/kubectl`
+  [此页面](/zh-cn/docs/tasks/install-with-homebrew-on-macos/#install-with-homebrew-on-macos)
+  所描述），则 kubectl 补全脚本应该已经安装到目录 `/usr/local/etc/bash_completion.d/kubectl`
   中了。这种情况下，你什么都不需要做。
 
   {{< note >}}
diff --git a/content/zh-cn/docs/tasks/tools/included/optional-kubectl-configs-fish.md b/content/zh-cn/docs/tasks/tools/included/optional-kubectl-configs-fish.md
new file mode 100644
index 0000000000..ecf4ab04ec
--- /dev/null
+++ b/content/zh-cn/docs/tasks/tools/included/optional-kubectl-configs-fish.md
@@ -0,0 +1,31 @@
+---
+title: "fish 自动补全"
+description: "启用 fish 自动补全的可选配置。"
+headless: true
+---
+<!--
+---
+title: "fish auto-completion"
+description: "Optional configuration to enable fish shell auto-completion."
+headless: true
+---
+-->
+
+<!--
+The kubectl completion script for Fish can be generated with the command `kubectl completion fish`. Sourcing the completion script in your shell enables kubectl autocompletion.
+
+To do so in all your shell sessions, add the following line to your `~/.config/fish/config.fish` file:
+-->
+kubectl 通过命令 `kubectl completion fish` 生成 Fish 自动补全脚本。
+在 shell 中导入（Sourcing）该自动补全脚本，将启动 kubectl 自动补全功能。
+
+为了在所有的 shell 会话中实现此功能，请将下面内容加入到文件 `~/.config/fish/config.fish` 中。
+
+```shell
+kubectl completion fish | source
+```
+
+<!--
+After reloading your shell, kubectl autocompletion should be working.
+-->
+重新加载 shell 后，kubectl 自动补全功能将立即生效。
diff --git a/content/zh-cn/docs/tasks/tools/included/optional-kubectl-configs-pwsh.md b/content/zh-cn/docs/tasks/tools/included/optional-kubectl-configs-pwsh.md
new file mode 100644
index 0000000000..9cbf851b4f
--- /dev/null
+++ b/content/zh-cn/docs/tasks/tools/included/optional-kubectl-configs-pwsh.md
@@ -0,0 +1,44 @@
+---
+title: "PowerShell 自动补全"
+description: "powershell 自动补全的一些可选配置。"
+headless: true
+---
+<!--
+---
+title: "PowerShell auto-completion"
+description: "Some optional configuration for powershell auto-completion."
+headless: true
+---
+-->
+
+<!--
+The kubectl completion script for PowerShell can be generated with the command `kubectl completion powershell`.
+
+To do so in all your shell sessions, add the following line to your `$PROFILE` file:
+-->
+使用命令 `kubectl completion powershell` 生成 PowerShell 的 kubectl 自动补全脚本。
+
+如果需要自动补全在所有 shell 会话中生效，请将以下命令添加到 `$PROFILE` 文件中：
+
+```powershell
+kubectl completion powershell | Out-String | Invoke-Expression
+```
+
+<!--
+This command will regenerate the auto-completion script on every PowerShell start up. You can also add the generated script directly to your `$PROFILE` file.
+-->
+此命令将在每次 PowerShell 启动时重新生成自动补全脚本。你还可以将生成的自动补全脚本添加到 `$PROFILE` 文件中。
+
+<!--
+To add the generated script to your `$PROFILE` file, run the following line in your powershell prompt:
+-->
+如果需要将自动补全脚本直接添加到 `$PROFILE` 文件中，请在 PowerShell 终端运行以下命令：
+
+```powershell
+kubectl completion powershell >> $PROFILE
+```
+
+<!--
+After reloading your shell, kubectl autocompletion should be working.
+-->
+完成上述操作后重启 shell，kubectl的自动补全就可以工作了。
diff --git a/content/zh/docs/tasks/tools/included/optional-kubectl-configs-zsh.md b/content/zh-cn/docs/tasks/tools/included/optional-kubectl-configs-zsh.md
similarity index 73%
rename from content/zh/docs/tasks/tools/included/optional-kubectl-configs-zsh.md
rename to content/zh-cn/docs/tasks/tools/included/optional-kubectl-configs-zsh.md
index 0f32593d55..9a40a829aa 100644
--- a/content/zh/docs/tasks/tools/included/optional-kubectl-configs-zsh.md
+++ b/content/zh-cn/docs/tasks/tools/included/optional-kubectl-configs-zsh.md
@@ -26,24 +26,19 @@ source <(kubectl completion zsh)
 ```
 
 <!-- 
-If you have an alias for kubectl, you can extend shell completion to work with that alias:
+If you have an alias for kubectl, kubectl autocompletion will automatically work with it.
 -->
-如果你为 kubectl 定义了别名，可以扩展脚本补全，以兼容该别名。
-
-```zsh
-echo 'alias k=kubectl' >>~/.zshrc
-echo 'complete -F __start_kubectl k' >>~/.zshrc
-```
+如果你为 kubectl 定义了别名，kubectl 自动补全将自动使用它。
 
 <!-- 
 After reloading your shell, kubectl autocompletion should be working.
 
 If you get an error like `complete:13: command not found: compdef`, then add the following to the beginning of your `~/.zshrc` file:
+If you get an error like `2: command not found: compdef`, then add the following to the beginning of your `~/.zshrc` file:
 -->
 重新加载 shell 后，kubectl 自动补全功能将立即生效。
 
-如果你收到 `complete:13: command not found: compdef` 这样的错误提示，那请将下面内容添加到 `~/.zshrc` 文件的开头：
-
+如果你收到 `2: command not found: compdef` 这样的错误提示，那请将下面内容添加到 `~/.zshrc` 文件的开头：
 ```zsh
 autoload -Uz compinit
 compinit
diff --git a/content/zh/docs/tasks/tools/included/verify-kubectl.md b/content/zh-cn/docs/tasks/tools/included/verify-kubectl.md
similarity index 96%
rename from content/zh/docs/tasks/tools/included/verify-kubectl.md
rename to content/zh-cn/docs/tasks/tools/included/verify-kubectl.md
index a587e26cd0..53544eaaf1 100644
--- a/content/zh/docs/tasks/tools/included/verify-kubectl.md
+++ b/content/zh-cn/docs/tasks/tools/included/verify-kubectl.md
@@ -22,7 +22,7 @@ By default, kubectl configuration is located at `~/.kube/config`.
 Check that kubectl is properly configured by getting the cluster state:
  -->
 为了让 kubectl 能发现并访问 Kubernetes 集群，你需要一个
-[kubeconfig 文件](/docs/zh/concepts/configuration/organize-cluster-access-kubeconfig/)，
+[kubeconfig 文件](/zh-cn/docs/concepts/configuration/organize-cluster-access-kubeconfig/)，
 该文件在
 [kube-up.sh](https://github.com/kubernetes/kubernetes/blob/master/cluster/kube-up.sh)
 创建集群时，或成功部署一个 Miniube 集群时，均会自动生成。
diff --git a/content/zh/docs/tasks/tools/install-kubectl-linux.md b/content/zh-cn/docs/tasks/tools/install-kubectl-linux.md
similarity index 77%
rename from content/zh/docs/tasks/tools/install-kubectl-linux.md
rename to content/zh-cn/docs/tasks/tools/install-kubectl-linux.md
index 91786b715d..c8acbb89d3 100644
--- a/content/zh/docs/tasks/tools/install-kubectl-linux.md
+++ b/content/zh-cn/docs/tasks/tools/install-kubectl-linux.md
@@ -22,13 +22,13 @@ card:
 ## {{% heading "prerequisites" %}}
 
 <!-- 
-You must use a kubectl version that is within one minor version difference of your cluster. For example, a v{{< skew latestVersion >}} client can communicate with v{{< skew prevMinorVersion >}}, v{{< skew latestVersion >}}, and v{{< skew nextMinorVersion >}} control planes.
-Using the latest version of kubectl helps avoid unforeseen issues.
+You must use a kubectl version that is within one minor version difference of your cluster. For example, a v{{< skew currentVersion >}} client can communicate with v{{< skew currentVersionAddMinor -1 >}}, v{{< skew currentVersionAddMinor 0 >}}, and v{{< skew currentVersionAddMinor 1 >}} control planes.
+Using the latest compatible version of kubectl helps avoid unforeseen issues.
 -->
 kubectl 版本和集群版本之间的差异必须在一个小版本号内。
-例如：v{{< skew latestVersion >}} 版本的客户端能与 v{{< skew prevMinorVersion >}}、
-v{{< skew latestVersion >}} 和 v{{< skew nextMinorVersion >}} 版本的控制面通信。
-用最新版的 kubectl 有助于避免不可预见的问题。
+例如：v{{< skew currentVersion >}} 版本的客户端能与 v{{< skew currentVersionAddMinor -1 >}}、
+v{{< skew currentVersionAddMinor 0 >}} 和 v{{< skew currentVersionAddMinor 1 >}} 版本的控制面通信。
+用最新兼容版的 kubectl 有助于避免不可预见的问题。
 
 <!-- 
 ## Install kubectl on Linux
@@ -98,7 +98,7 @@ The following methods exist for installing kubectl on Linux:
    基于校验和文件，验证 kubectl 的可执行文件：
 
    ```bash
-   echo "$(<kubectl.sha256) kubectl" | sha256sum --check
+   echo "$(cat kubectl.sha256)  kubectl" | sha256sum --check
    ```
 
    <!-- 
@@ -144,20 +144,26 @@ The following methods exist for installing kubectl on Linux:
 
    ```bash
    chmod +x kubectl
-   mkdir -p ~/.local/bin/kubectl
+   mkdir -p ~/.local/bin
    mv ./kubectl ~/.local/bin/kubectl
-   # 之后将 ~/.local/bin/kubectl 添加到 $PATH
+   # 之后将 ~/.local/bin 附加（或前置）到 $PATH
    ```
    {{< /note >}}
 
 <!-- 
 1. Test to ensure the version you installed is up-to-date:
+Or use this for detailed view of version:
 -->
 4. 执行测试，以保障你安装的版本是最新的：
 
    ```bash
    kubectl version --client
    ```
+   
+   或者使用如下命令来查看版本的详细信息：
+   ```cmd
+   kubectl version --client --output=yaml
+   ```
 
 <!-- 
 ### Install using native package management
@@ -165,21 +171,29 @@ The following methods exist for installing kubectl on Linux:
 ### 用原生包管理工具安装 {#install-using-native-package-management}
 
 {{< tabs name="kubectl_install" >}}
-{{< tab name="Ubuntu、Debian 或 HypriotOS" codelang="bash" >}}
+{{% tab name="基于 Debian 的发行版" %}}
 
 <!--
 1. Update the `apt` package index and install packages needed to use the Kubernetes `apt` repository:
 -->
-1. 更新 `apt` 包索引，并安装使用 Kubernetes `apt` 仓库锁需要的包：
+1. 更新 `apt` 包索引，并安装使用 Kubernetes `apt` 仓库所需要的包：
 
    ```shell
    sudo apt-get update
-   sudo apt-get install -y apt-transport-https ca-certificates curl
+   sudo apt-get install -y ca-certificates curl
+   ```
+   <!--
+   If you use Debian 9 (stretch) or earlier you would also need to install `apt-transport-https`:
+   -->
+   如果你使用 Debian 9（stretch）或更早版本，则你还需要安装 `apt-transport-https`：
+   ```shell
+   sudo apt-get install -y apt-transport-https
    ```
 
 <!--
 2. Download the Google Cloud public signing key:
 -->
+
 2. 下载 Google Cloud 公开签名秘钥：
 
    ```shell
@@ -189,6 +203,7 @@ The following methods exist for installing kubectl on Linux:
 <!--
 3. Add the Kubernetes `apt` repository:
 -->
+
 3. 添加 Kubernetes `apt` 仓库：
 
    ```shell
@@ -198,6 +213,7 @@ The following methods exist for installing kubectl on Linux:
 <!--
 4. Update `apt` package index with the new repository and install kubectl:
 -->
+
 4. 更新 `apt` 包索引，使之包含新的仓库并安装 kubectl：
 
    ```shell
@@ -205,20 +221,23 @@ The following methods exist for installing kubectl on Linux:
    sudo apt-get install -y kubectl
    ```
 
-{{< /tab >}}
+{{% /tab %}}
 
-{{< tab name="基于 Red Hat 的发行版" codelang="bash" >}}
-cat <<EOF > /etc/yum.repos.d/kubernetes.repo
+{{% tab name="基于 Red Hat 的发行版" %}}
+
+```bash
+cat <<EOF | sudo tee /etc/yum.repos.d/kubernetes.repo
 [kubernetes]
 name=Kubernetes
-baseurl=https://packages.cloud.google.com/yum/repos/kubernetes-el7-x86_64
+baseurl=https://packages.cloud.google.com/yum/repos/kubernetes-el7-\$basearch
 enabled=1
 gpgcheck=1
-repo_gpgcheck=1
 gpgkey=https://packages.cloud.google.com/yum/doc/yum-key.gpg https://packages.cloud.google.com/yum/doc/rpm-package-key.gpg
 EOF
-yum install -y kubectl
-{{< /tab >}}
+sudo yum install -y kubectl
+```
+
+{{% /tab %}}
 {{< /tabs >}}
 
 <!-- 
@@ -229,7 +248,7 @@ yum install -y kubectl
 {{< tabs name="other_kubectl_install" >}}
 {{% tab name="Snap" %}}
 <!-- 
-If you are on Ubuntu or another Linux distribution that support [snap](https://snapcraft.io/docs/core/install) package manager, kubectl is available as a [snap](https://snapcraft.io/) application.
+If you are on Ubuntu or another Linux distribution that supports the [snap](https://snapcraft.io/docs/core/install) package manager, kubectl is available as a [snap](https://snapcraft.io/) application.
 -->
 如果你使用的 Ubuntu 或其他 Linux 发行版，内建支持
 [snap](https://snapcraft.io/docs/core/install) 包管理工具，
@@ -276,16 +295,17 @@ kubectl version --client
 ### 启用 shell 自动补全功能 {#enable-shell-autocompletion}
 
 <!-- 
-kubectl provides autocompletion support for Bash and Zsh, which can save you a lot of typing.
+kubectl provides autocompletion support for Bash, Zsh, Fish, and PowerShell, which can save you a lot of typing.
 
-Below are the procedures to set up autocompletion for Bash and Zsh.
+Below are the procedures to set up autocompletion for Bash, Fish, and Zsh.
 -->
-kubectl 为 Bash 和 Zsh 提供自动补全功能，可以减轻许多输入的负担。
+kubectl 为 Bash、Zsh、Fish 和 PowerShell 提供自动补全功能，可以为你节省大量的输入。
 
-下面是为 Bash 和 Zsh 设置自动补全功能的操作步骤。
+下面是为 Bash、Fish 和 Zsh 设置自动补全功能的操作步骤。
 
 {{< tabs name="kubectl_autocompletion" >}}
 {{< tab name="Bash" include="included/optional-kubectl-configs-bash-linux.md" />}}
+{{< tab name="Fish" include="included/optional-kubectl-configs-fish.md" />}}
 {{< tab name="Zsh" include="included/optional-kubectl-configs-zsh.md" />}}
 {{< /tabs >}}
 
@@ -302,14 +322,14 @@ kubectl 为 Bash 和 Zsh 提供自动补全功能，可以减轻许多输入的
 1. 用以下命令下载最新发行版：
 
    ```bash
-   curl -LO https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl-convert
+   curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl-convert"
    ```
 <!--
-1. Validate the binary (optional)
+2. Validate the binary (optional)
 
    Download the kubectl-convert checksum file:
 -->
-1. 验证该可执行文件（可选步骤）
+2. 验证该可执行文件（可选步骤）
    
    下载 kubectl-convert 校验和文件：
    
@@ -323,7 +343,7 @@ kubectl 为 Bash 和 Zsh 提供自动补全功能，可以减轻许多输入的
    基于校验和，验证 kubectl-convert 的可执行文件：
 
    ```bash
-   echo "$(<kubectl-convert.sha256) kubectl-convert" | sha256sum --check
+   echo "$(cat kubectl-convert.sha256) kubectl-convert" | sha256sum --check
    ```
 
    <!--
@@ -344,6 +364,7 @@ kubectl 为 Bash 和 Zsh 提供自动补全功能，可以减轻许多输入的
    kubectl-convert: FAILED
    sha256sum: WARNING: 1 computed checksum did NOT match
    ```
+
    {{< note >}}
    <!--
    Download the same version of the binary and checksum.
@@ -352,18 +373,18 @@ kubectl 为 Bash 和 Zsh 提供自动补全功能，可以减轻许多输入的
    {{< /note >}}
 
 <!--
-1. Install kubectl-convert
+3. Install kubectl-convert
 -->
-1. 安装 kubectl-convert
+3. 安装 kubectl-convert
 
    ```bash
    sudo install -o root -g root -m 0755 kubectl-convert /usr/local/bin/kubectl-convert
    ```
 
 <!--
-1. Verify plugin is successfully installed
+4. Verify plugin is successfully installed
 -->
-1. 验证插件是否安装成功
+4. 验证插件是否安装成功
 
    ```shell
    kubectl convert --help
@@ -377,4 +398,3 @@ kubectl 为 Bash 和 Zsh 提供自动补全功能，可以减轻许多输入的
 ## {{% heading "whatsnext" %}}
 
 {{< include "included/kubectl-whats-next.md" >}}
-
diff --git a/content/zh/docs/tasks/tools/install-kubectl-macos.md b/content/zh-cn/docs/tasks/tools/install-kubectl-macos.md
similarity index 88%
rename from content/zh/docs/tasks/tools/install-kubectl-macos.md
rename to content/zh-cn/docs/tasks/tools/install-kubectl-macos.md
index bfae71d454..0a9a08627f 100644
--- a/content/zh/docs/tasks/tools/install-kubectl-macos.md
+++ b/content/zh-cn/docs/tasks/tools/install-kubectl-macos.md
@@ -22,13 +22,13 @@ card:
 ## {{% heading "prerequisites" %}}
 
 <!-- 
-You must use a kubectl version that is within one minor version difference of your cluster. For example, a v{{< skew latestVersion >}} client can communicate with v{{< skew prevMinorVersion >}}, v{{< skew latestVersion >}}, and v{{< skew nextMinorVersion >}} control planes.
-Using the latest version of kubectl helps avoid unforeseen issues.
+You must use a kubectl version that is within one minor version difference of your cluster. For example, a v{{< skew currentVersion >}} client can communicate with v{{< skew currentVersionAddMinor -1 >}}, v{{< skew currentVersionAddMinor 0 >}}, and v{{< skew currentVersionAddMinor 1 >}} control planes.
+Using the latest compatible version of kubectl helps avoid unforeseen issues.
 -->
 kubectl 版本和集群之间的差异必须在一个小版本号之内。
-例如：v{{< skew latestVersion >}} 版本的客户端能与 v{{< skew prevMinorVersion >}}、
-v{{< skew latestVersion >}} 和 v{{< skew nextMinorVersion >}} 版本的控制面通信。
-用最新版本的 kubectl 有助于避免不可预见的问题。
+例如：v{{< skew currentVersion >}} 版本的客户端能与 v{{< skew currentVersionAddMinor -1 >}}、
+v{{< skew currentVersionAddMinor 0 >}} 和 v{{< skew currentVersionAddMinor 1 >}} 版本的控制面通信。
+用最新兼容版本的 kubectl 有助于避免不可预见的问题。
 
 <!-- 
 ## Install kubectl on macOS
@@ -122,7 +122,7 @@ The following methods exist for installing kubectl on macOS:
    根据校验和文件，验证 kubectl：
 
    ```bash
-   echo "$(<kubectl.sha256)  kubectl" | shasum -a 256 --check
+   echo "$(cat kubectl.sha256)  kubectl" | shasum -a 256 --check
    ```
    <!-- 
    If valid, the output is:
@@ -178,12 +178,17 @@ The following methods exist for installing kubectl on macOS:
 
 <!-- 
 1. Test to ensure the version you installed is up-to-date:
+Or use this for detailed view of version:
 -->
 5. 测试一下，确保你安装的是最新的版本：
 
    ```bash
    kubectl version --client
    ```
+   或者使用下面命令来查看版本的详细信息：
+   ```cmd
+   kubectl version --client --output=yaml
+   ```
 
 <!-- 
 ### Install with Homebrew on macOS {#install-with-homebrew-on-macos}
@@ -249,13 +254,6 @@ If you are on macOS and using [Macports](https://macports.org/) package manager,
    kubectl version --client
    ```
 
-<!-- 
-### Install on macOS as part of the Google Cloud SDK {#install-on-macos-as-part-of-the-google-cloud-sdk}
--->
-### 作为谷歌云 SDK 的一部分，在 macOS 上安装 {#install-on-macos-as-part-of-the-google-cloud-sdk}
-
-{{< include "included/install-kubectl-gcloud.md" >}}
-
 <!-- 
 ## Verify kubectl configuration {#verify-kubectl-configuration}
 -->
@@ -273,16 +271,17 @@ If you are on macOS and using [Macports](https://macports.org/) package manager,
 ### 启用 shell 自动补全功能 {#enable-shell-autocompletion}
 
 <!-- 
-kubectl provides autocompletion support for Bash and Zsh, which can save you a lot of typing.
+kubectl provides autocompletion support for Bash, Zsh, Fish, and PowerShell which can save you a lot of typing.
 
-Below are the procedures to set up autocompletion for Bash and Zsh.
+Below are the procedures to set up autocompletion for Bash, Fish, and Zsh.
 -->
-kubectl 为 Bash 和 Zsh 提供自动补全功能，这可以节省许多输入的麻烦。
+kubectl 为 Bash、Zsh、Fish 和 PowerShell 提供自动补全功能，可以为你节省大量的输入。
 
-下面是为 Bash 和 Zsh 设置自动补全功能的操作步骤。
+下面是为 Bash、Fish 和 Zsh 设置自动补全功能的操作步骤。
 
 {{< tabs name="kubectl_autocompletion" >}}
 {{< tab name="Bash" include="included/optional-kubectl-configs-bash-mac.md" />}}
+{{< tab name="Fish" include="included/optional-kubectl-configs-fish.md" />}}
 {{< tab name="Zsh" include="included/optional-kubectl-configs-zsh.md" />}}
 {{< /tabs >}}
 
@@ -331,7 +330,7 @@ kubectl 为 Bash 和 Zsh 提供自动补全功能，这可以节省许多输入
    基于校验和，验证 kubectl-convert 的可执行文件：
 
    ```bash
-   echo "$(<kubectl-convert.sha256)  kubectl-convert" | shasum -a 256 --check
+   echo "$(cat kubectl-convert.sha256)  kubectl-convert" | shasum -a 256 --check
    ```
    
    <!--
diff --git a/content/zh/docs/tasks/tools/install-kubectl-windows.md b/content/zh-cn/docs/tasks/tools/install-kubectl-windows.md
similarity index 64%
rename from content/zh/docs/tasks/tools/install-kubectl-windows.md
rename to content/zh-cn/docs/tasks/tools/install-kubectl-windows.md
index d7f23a11dc..60dc37c7c9 100644
--- a/content/zh/docs/tasks/tools/install-kubectl-windows.md
+++ b/content/zh-cn/docs/tasks/tools/install-kubectl-windows.md
@@ -7,7 +7,7 @@ card:
   weight: 20
   title: Windows 安装 kubectl
 ---
-<!-- 
+<!--
 reviewers:
 - mikedanese
 title: Install and Set Up kubectl on Windows
@@ -21,72 +21,77 @@ card:
 
 ## {{% heading "prerequisites" %}}
 
-<!-- 
-You must use a kubectl version that is within one minor version difference of your cluster. For example, a v{{< skew latestVersion >}} client can communicate with v{{< skew prevMinorVersion >}}, v{{< skew latestVersion >}}, and v{{< skew nextMinorVersion >}} control planes.
-Using the latest version of kubectl helps avoid unforeseen issues.
+<!--
+You must use a kubectl version that is within one minor version difference of your cluster. For example, a v{{< skew currentVersion >}} client can communicate with v{{< skew currentVersionAddMinor -1 >}}, v{{< skew currentVersionAddMinor 0 >}}, and v{{< skew currentVersionAddMinor 1 >}} control planes.
+Using the latest compatible version of kubectl helps avoid unforeseen issues.
 -->
 kubectl 版本和集群版本之间的差异必须在一个小版本号内。
-例如：v{{< skew latestVersion >}} 版本的客户端能与 v{{< skew prevMinorVersion >}}、
-v{{< skew latestVersion >}} 和 v{{< skew nextMinorVersion >}} 版本的控制面通信。
-用最新版的 kubectl 有助于避免不可预见的问题。
+例如：v{{< skew currentVersion >}} 版本的客户端能与 v{{< skew currentVersionAddMinor -1 >}}、
+v{{< skew currentVersionAddMinor 0 >}} 和 v{{< skew currentVersionAddMinor 1 >}} 版本的控制面通信。
+用最新兼容版的 kubectl 有助于避免不可预见的问题。
 
-<!-- 
+<!--
 ## Install kubectl on Windows
--->
-## 在 Windows 上安装 kubectl {#install-kubectl-on-windows}
 
-<!-- 
 The following methods exist for installing kubectl on Windows:
 -->
-在 Windows 系统中安装 kubectl 有如下几种方法：
 
+## 在 Windows 上安装 kubectl {#install-kubectl-on-windows}
+
+在 Windows 系统中安装 kubectl 有如下几种方法：
+<!-- 
+- [Install kubectl binary with curl on Windows](#install-kubectl-binary-with-curl-on-windows)
+- [Install on Windows using Chocolatey or Scoop](#install-on-windows-using-chocolatey-or-scoop)
+ -->
 - [用 curl 在 Windows 上安装 kubectl](#install-kubectl-binary-with-curl-on-windows)
 - [在 Windows 上用 Chocolatey 或 Scoop 安装](#install-on-windows-using-chocolatey-or-scoop)
 
-<!-- 
+<!--
 ### Install kubectl binary with curl on Windows
 -->
+
 ### 用 curl 在 Windows 上安装 kubectl {#install-kubectl-binary-with-curl-on-windows}
 
-<!-- 
+<!--
 1. Download the [latest release {{< param "fullversion" >}}](https://dl.k8s.io/release/{{< param "fullversion" >}}/bin/windows/amd64/kubectl.exe).
-
-   Or if you have `curl` installed, use this command:
 -->
 1. 下载 [最新发行版 {{< param "fullversion" >}}](https://dl.k8s.io/release/{{< param "fullversion" >}}/bin/windows/amd64/kubectl.exe)。
 
-   如果你已安装了 `curl`,也可以使用此命令：
+   <!--
+   Or if you have `curl` installed, use this command:
+   -->
+   如果你已安装了 `curl`，也可以使用此命令：
 
    ```powershell
-   curl -LO https://dl.k8s.io/release/{{< param "fullversion" >}}/bin/windows/amd64/kubectl.exe
+   curl -LO "https://dl.k8s.io/release/{{< param "fullversion" >}}/bin/windows/amd64/kubectl.exe"
    ```
 
-   <!-- 
-      To find out the latest stable version (for example, for scripting), take a look at [https://dl.k8s.io/release/stable.txt](https://dl.k8s.io/release/stable.txt).
-   -->
    {{< note >}}
+   <!--
+   To find out the latest stable version (for example, for scripting), take a look at [https://dl.k8s.io/release/stable.txt](https://dl.k8s.io/release/stable.txt).
+   -->
    要想找到最新稳定的版本（例如：为了编写脚本），可以看看这里 [https://dl.k8s.io/release/stable.txt](https://dl.k8s.io/release/stable.txt)。
    {{< /note >}}
 
-   <!-- 
-   1. Validate the binary (optional)
+<!--
+1. Validate the binary (optional)
 
-      Download the kubectl checksum file:
-   -->
-1. 验证该可执行文件（可选步骤）
+   Download the `kubectl` checksum file:
+-->
+2. 验证该可执行文件（可选步骤）
    
-   下载 kubectl 校验和文件：
+   下载 `kubectl` 校验和文件：
 
    ```powershell
-   curl -LO https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kubectl.exe.sha256
+   curl -LO "https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kubectl.exe.sha256"
    ```
 
-   <!-- 
-   Validate the kubectl binary against the checksum file:
+   <!--
+   Validate the `kubectl` binary against the checksum file:
    -->
-   基于校验和文件，验证 kubectl 的可执行文件：
+   基于校验和文件，验证 `kubectl` 的可执行文件：
 
-   <!-- 
+   <!--
    - Using Command Prompt to manually compare `CertUtil`'s output to the checksum file downloaded:
    -->
    - 在命令行环境中，手工对比 `CertUtil` 命令的输出与校验和文件：
@@ -96,7 +101,7 @@ The following methods exist for installing kubectl on Windows:
      type kubectl.exe.sha256
      ```
 
-   <!-- 
+   <!--
    - Using PowerShell to automate the verification using the `-eq` operator to get a `True` or `False` result:
    -->
    - 用 PowerShell 自动验证，用运算符 `-eq` 来直接取得 `True` 或 `False` 的结果：
@@ -105,18 +110,24 @@ The following methods exist for installing kubectl on Windows:
      $($(CertUtil -hashfile .\kubectl.exe SHA256)[1] -replace " ", "") -eq $(type .\kubectl.exe.sha256)
      ```
 
-   <!-- 
-   1. Add the binary in to your `PATH`.
+<!-- 
+1. Append or prepend the `kubectl` binary folder to your `PATH` environment variable.
 
-   1. Test to ensure the version of `kubectl` is the same as downloaded:
-   -->
-1. 将可执行文件的路径添加到 `PATH`。
+1. Test to ensure the version of `kubectl` is the same as downloaded:
+-->
 
-1. 测试一下，确保此 `kubectl` 的版本和期望版本一致：
+3. 将 `kubectl` 二进制文件夹追加或插入到你的 `PATH` 环境变量中。
+
+4. 测试一下，确保此 `kubectl` 的版本和期望版本一致：
 
    ```cmd
    kubectl version --client
    ```
+   或者使用下面命令来查看版本的详细信息：
+
+   ```cmd
+   kubectl version --client --output=yaml
+   ```
 
 <!-- 
 [Docker Desktop for Windows](https://docs.docker.com/docker-for-windows/#kubernetes) adds its own version of `kubectl` to `PATH`.
@@ -129,12 +140,12 @@ If you have installed Docker Desktop before, you may need to place your `PATH` e
 或者直接删掉 Docker Desktop 的 `kubectl`。
 {{< /note >}}
 
-<!-- 
+<!--
 ### Install on Windows using Chocolatey or Scoop
 -->
 ### 在 Windows 上用 Chocolatey 或 Scoop 安装 {#install-on-windows-using-chocolatey-or-scoop}
 
-<!-- 
+<!--
 1. To install kubectl on Windows you can use either [Chocolatey](https://chocolatey.org) package manager or [Scoop](https://scoop.sh) command-line installer.
 -->
 1. 要在 Windows 上安装 kubectl，你可以使用包管理器 [Chocolatey](https://chocolatey.org) 
@@ -153,49 +164,47 @@ If you have installed Docker Desktop before, you may need to place your `PATH` e
    {{% /tab %}}
    {{< /tabs >}}
 
-   <!-- 
-   1. Test to ensure the version you installed is up-to-date:
-   -->
+
+<!-- 
+1. Test to ensure the version you installed is up-to-date:
+-->
 2. 测试一下，确保安装的是最新版本：
 
    ```powershell
    kubectl version --client
    ```
 
-   <!-- 
-   1. Navigate to your home directory:
-   -->
+<!-- 
+1. Navigate to your home directory:
+ -->
 3. 导航到你的 home 目录：
 
-   <!-- 
-   # If you're using cmd.exe, run: cd %USERPROFILE%
-   -->
    ```powershell
    # 当你用 cmd.exe 时，则运行： cd %USERPROFILE%
    cd ~
    ```
 
-   <!-- 
-   1. Create the `.kube` directory:
-   -->
+<!-- 
+1. Create the `.kube` directory:
+ -->
 4. 创建目录 `.kube`：
 
    ```powershell
    mkdir .kube
    ```
 
-   <!-- 
-   1. Change to the `.kube` directory you just created:
-   -->
+<!--
+1. Change to the `.kube` directory you just created:
+-->
 5. 切换到新创建的目录 `.kube` 
 
    ```powershell
    cd .kube
    ```
 
-   <!-- 
-   1. Configure kubectl to use a remote Kubernetes cluster:
-   -->
+<!-- 
+1. Configure kubectl to use a remote Kubernetes cluster:
+ -->
 6. 配置 kubectl，以接入远程的 Kubernetes 集群：
 
    ```powershell
@@ -225,16 +234,16 @@ Edit the config file with a text editor of your choice, such as Notepad.
 
 ### 启用 shell 自动补全功能 {#enable-shell-autocompletion}
 
-<!-- 
-kubectl provides autocompletion support for Bash and Zsh, which can save you a lot of typing.
+<!--
+kubectl provides autocompletion support for Bash, Zsh, Fish, and PowerShell, which can save you a lot of typing.
 
-Below are the procedures to set up autocompletion for Zsh, if you are running that on Windows.
+Below are the procedures to set up autocompletion for PowerShell.
 -->
-kubectl 为 Bash 和 Zsh 提供自动补全功能，可以减轻许多输入的负担。
+kubectl 为 Bash、Zsh、Fish 和 PowerShell 提供自动补全功能，可以为你节省大量的输入。
 
-下面是设置 Zsh 自动补全功能的操作步骤，前提是你在 Windows 上面运行的是 Zsh。
+下面是设置 PowerShell 自动补全功能的操作步骤。
 
-{{< include "included/optional-kubectl-configs-zsh.md" >}}
+{{< include "included/optional-kubectl-configs-pwsh.md" >}}
 
 <!--
 ### Install `kubectl convert` plugin
@@ -249,29 +258,31 @@ kubectl 为 Bash 和 Zsh 提供自动补全功能，可以减轻许多输入的
 1. 用以下命令下载最新发行版：
 
    ```powershell
-   curl -LO https://dl.k8s.io/release/{{< param "fullversion" >}}/bin/windows/amd64/kubectl-convert.exe
+   curl -LO "https://dl.k8s.io/release/{{< param "fullversion" >}}/bin/windows/amd64/kubectl-convert.exe"
    ```
 
 <!--
 1. Validate the binary (optional)
-
-   Download the kubectl-convert checksum file:
 -->
-1. 验证该可执行文件（可选步骤）
-   
-   下载 kubectl-convert 校验和文件：
+2. 验证该可执行文件（可选步骤）
+
+   <!--
+    Download the `kubectl-convert` checksum file:
+   -->
+   下载 `kubectl-convert` 校验和文件：
 
    ```powershell
-   curl -LO https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kubectl-convert.exe.sha256
+   curl -LO "https://dl.k8s.io/{{< param "fullversion" >}}/bin/windows/amd64/kubectl-convert.exe.sha256"
    ```
 
    <!--
-   Validate the kubectl-convert binary against the checksum file:
+   Validate the `kubectl-convert` binary against the checksum file:
+   -->
+   基于校验和验证 `kubectl-convert` 的可执行文件：
 
+   <!--
    - Using Command Prompt to manually compare `CertUtil`'s output to the checksum file downloaded:
    -->
-   基于校验和，验证 kubectl-convert 的可执行文件：
-
    - 用提示的命令对 `CertUtil` 的输出和下载的校验和文件进行手动比较。
    
      ```cmd
@@ -282,6 +293,7 @@ kubectl 为 Bash 和 Zsh 提供自动补全功能，可以减轻许多输入的
    <!--
    - Using PowerShell to automate the verification using the `-eq` operator to get a `True` or `False` result:
    -->
+
    - 使用 PowerShell `-eq` 操作使验证自动化，获得 `True` 或者 `False` 的结果：
    
      ```powershell
@@ -289,13 +301,13 @@ kubectl 为 Bash 和 Zsh 提供自动补全功能，可以减轻许多输入的
      ```
 
 <!--
-1. Add the binary in to your `PATH`.
+1. Append or prepend the `kubectl-convert` binary folder to your `PATH` environment variable.
 
 1. Verify plugin is successfully installed
 -->
-1. 将可执行文件添加到你的 `PATH` 环境变量。
+3. 将 `kubectl-convert` 二进制文件夹附加或添加到你的 `PATH` 环境变量中。
 
-1. 验证插件是否安装成功
+4. 验证插件是否安装成功
 
    ```shell
    kubectl convert --help
diff --git a/content/zh/docs/test.md b/content/zh-cn/docs/test.md
similarity index 95%
rename from content/zh/docs/test.md
rename to content/zh-cn/docs/test.md
index b6ee5be151..2024a5b600 100644
--- a/content/zh/docs/test.md
+++ b/content/zh-cn/docs/test.md
@@ -110,9 +110,7 @@ Markdown doesn't have strict rules about how to process lists. When we moved
 from Jekyll to Hugo, we broke some lists. To fix them, keep the following in
 mind:
 
-- Make sure you indent sub-list items **4 spaces** rather than the 2 that you
-  may be used to. Counter-intuitively, you need to indent block-level content
-  within a list item an extra 4 spaces too.
+- Make sure you indent sub-list items **2 spaces**. 
 
 - To end a list and start another, you need a HTML comment block on a new line
   between the lists, flush with the left-hand border. The first list won't end
@@ -121,8 +119,7 @@ mind:
 Markdown 在如何处理列表方面没有严格的规则。在我们从 Jekyll 迁移到 Hugo 时，
 我们遇到了一些问题。为了处理这些问题，请注意以下几点：
 
-- 确保你将子列表的条目缩进**四个空格**而不是你可能熟悉的两个空格。
-  有一点是不那么直观的，你需要将列表中的块级别内容多缩进四个空格。
+- 确保你将子列表的条目缩进**两个空格**
 
 - 要结束一个列表并开始一个新的列表，你需要在两个列表之间添加加一个 HTML 注释块，
   并将其置于独立的一行，左边顶边对齐。否则前一个列表不会结束，无论你在它与
@@ -134,9 +131,8 @@ Markdown 在如何处理列表方面没有严格的规则。在我们从 Jekyll
 - This is a list item
 * This is another list item in the same list
 - You can mix `-` and `*`
-    - To make a sub-item, indent two tabstops (4 spaces). **This is different
-      from Jekyll and Kramdown.**
-        - This is a sub-sub-item. Indent two more tabstops (4 more spaces).
+  - To make a sub-item, indent two spaces.
+    - This is a sub-sub-item. Indent two more spaces.
     - Another sub-item.
 -->
 ### 项目符号列表
@@ -144,8 +140,7 @@ Markdown 在如何处理列表方面没有严格的规则。在我们从 Jekyll
 - 此为列表条目
 * 此为另一列表条目，位于同一列表中
 - 你可以将 `-` 和 `*` 混合使用
-  - 要开始子列表，缩进两个 TAB （四个空格）。**Jekyll 和 Markdown
-    在这点上有所不同**。
+  - 要开始子列表，缩进两个空格。
     - 这是另一个子子条目。进一步多缩进两个空格。
   - 另一个子条目
 
@@ -156,7 +151,7 @@ Markdown 在如何处理列表方面没有严格的规则。在我们从 Jekyll
   consecutive lists. **The HTML comment needs to be at the left margin.**
 - Bullet lists can have paragraphs or block elements within them.
 
-      Indent the content to be one tab stop beyond the text of the bullet
+      Indent the content to be the same as the first line of the bullet
       point. **This paragraph and the code block line up with the second `l` in
       `Bullet` above.**
 
@@ -503,10 +498,10 @@ You can also use HTML, but it is not preferred.
 
 - 指向 Kubernetes 文档的站内链接，需要在英文链接之前添加前缀 `/zh`。
   例如，原链接目标为 `/docs/foo/bar` 时，译文中的链接目标应为
-  `/zh/docs/foo/bar`。例如：
+  `/zh-cn/docs/foo/bar`。例如：
 
   - 英文版本链接 [Kubernetes Components](/docs/concepts/overview/components/)
-  - 对应中文链接 [Kubernetes 组件](/zh/docs/concepts/overview/components/)
+  - 对应中文链接 [Kubernetes 组件](/zh-cn/docs/concepts/overview/components/)
 
 - 英文页面子标题会生成对应锚点（Anchor），例如子标题 `## Using object` 会生成
   对应标签 `#using-objects`。在翻译为中文之后，对应锚点可能会失效。对此，有
@@ -669,12 +664,12 @@ HTML。
 ## Visualizations with Mermaid
 
 You can use [Mermaid JS](https://mermaidjs.github.io) visualizations.
-The Mermaid JS version is specified in [/layouts/partials/head.html](https://github.com/kubernetes/website/blob/master/layouts/partials/head.html)
+The Mermaid JS version is specified in [/layouts/partials/head.html](https://github.com/kubernetes/website/blob/main/layouts/partials/head.html)
 -->
 ## 使用 Mermaid 来可视化
 
 你可以使用 [Mermaid JS](https://mermaidjs.github.io) 来进行可视化展示。
-Mermaid JS 版本在 [/layouts/partials/head.html](https://github.com/kubernetes/website/blob/master/layouts/partials/head.html)
+Mermaid JS 版本在 [/layouts/partials/head.html](https://github.com/kubernetes/website/blob/main/layouts/partials/head.html)
 中设置。
 
 <!--
diff --git a/content/zh/docs/tutorials/_index.md b/content/zh-cn/docs/tutorials/_index.md
similarity index 50%
rename from content/zh/docs/tutorials/_index.md
rename to content/zh-cn/docs/tutorials/_index.md
index d6c16b2e2c..0c77f56652 100644
--- a/content/zh/docs/tutorials/_index.md
+++ b/content/zh-cn/docs/tutorials/_index.md
@@ -23,11 +23,10 @@ each of which has a sequence of steps.
 Before walking through each tutorial, you may want to bookmark the
 [Standardized Glossary](/docs/reference/glossary/) page for later references.
 -->
-Kubernetes 文档的这一部分包含教程。每个教程展示了如何完成一个比单个
-[任务](/zh/docs/tasks/)更大的目标。
+Kubernetes 文档的这一部分包含教程。
+每个教程展示了如何完成一个比单个[任务](/zh-cn/docs/tasks/)更大的目标。
 通常一个教程有几个部分，每个部分都有一系列步骤。在浏览每个教程之前，
-您可能希望将[标准化术语表](/zh/docs/reference/glossary/)页面添加到书签，供以后参考。
-
+你可能希望将[标准化术语表](/zh-cn/docs/reference/glossary/)页面添加到书签，供以后参考。
 
 <!-- body -->
 <!--
@@ -39,14 +38,12 @@ Kubernetes 文档的这一部分包含教程。每个教程展示了如何完成
 
 * [Hello Minikube](/docs/tutorials/hello-minikube/)
 -->
-## 基础知识
+## 基础知识  {#basics}
 
-* [Kubernetes 基础知识](/zh/docs/tutorials/Kubernetes-Basics/)是一个深入的
-  交互式教程，帮助您理解 Kubernetes 系统，并尝试一些基本的 Kubernetes 特性。
-
-* [介绍 Kubernetes (edx)](https://www.edx.org/course/introduction-kubernetes-linuxfoundationx-lfs158x#)
-
-* [你好 Minikube](/zh/docs/tutorials/hello-minikube/)
+* [Kubernetes 基础知识](/zh-cn/docs/tutorials/Kubernetes-Basics/)
+  是一个深入的交互式教程，帮助你理解 Kubernetes 系统，并尝试一些基本的 Kubernetes 特性。
+* [Kubernetes 介绍 (edX)](https://www.edx.org/course/introduction-kubernetes-linuxfoundationx-lfs158x#)
+* [你好 Minikube](/zh-cn/docs/tutorials/hello-minikube/)
 
 <!--
 ## Configuration
@@ -55,11 +52,10 @@ Kubernetes 文档的这一部分包含教程。每个教程展示了如何完成
 
 * [Configuring Redis Using a ConfigMap](/docs/tutorials/configuration/configure-redis-using-configmap/)
 -->
-## 配置
+## 配置  {#configuration}
 
-* [示例：配置 Java 微服务](/zh/docs/tutorials/configuration/configure-java-microservice/)
-
-* [使用一个 ConfigMap 配置 Redis](/zh/docs/tutorials/configuration/configure-redis-using-configmap/)
+* [示例：配置 Java 微服务](/zh-cn/docs/tutorials/configuration/configure-java-microservice/)
+* [使用 ConfigMap 配置 Redis](/zh-cn/docs/tutorials/configuration/configure-redis-using-configmap/)
 
 <!--
 ## Stateless Applications
@@ -68,12 +64,10 @@ Kubernetes 文档的这一部分包含教程。每个教程展示了如何完成
 
 * [Example: Deploying PHP Guestbook application with MongoDB](/docs/tutorials/stateless-application/guestbook/)
 -->
-## 无状态应用程序
-
-* [公开外部 IP 地址访问集群中的应用程序](/zh/docs/tutorials/stateless-application/expose-external-ip-address/)
-
-* [示例：使用 Redis 部署 PHP 留言板应用程序](/zh/docs/tutorials/stateless-application/guestbook/)
+## 无状态应用程序  {#stateless-applications}
 
+* [公开外部 IP 地址访问集群中的应用程序](/zh-cn/docs/tutorials/stateless-application/expose-external-ip-address/)
+* [示例：使用 Redis 部署 PHP 留言板应用程序](/zh-cn/docs/tutorials/stateless-application/guestbook/)
 
 <!--
 ## Stateful Applications
@@ -86,33 +80,36 @@ Kubernetes 文档的这一部分包含教程。每个教程展示了如何完成
 
 * [Running ZooKeeper, A CP Distributed System](/docs/tutorials/stateful-application/zookeeper/)
 -->
-## 有状态应用程序
+## 有状态应用程序  {#stateful-applications}
 
-* [StatefulSet 基础](/zh/docs/tutorials/stateful-application/basic-stateful-set/)
-
-* [示例：WordPress 和 MySQL 使用持久卷](/zh/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume/)
-
-* [示例：使用有状态集部署 Cassandra](/zh/docs/tutorials/stateful-application/cassandra/)
-
-* [运行 ZooKeeper，CP 分布式系统](/zh/docs/tutorials/stateful-application/zookeeper/)
-
-<!--
-## Clusters
-
-* [seccomp](/docs/tutorials/clusters/seccomp/)
--->
-## 集群
-
-* [seccomp](/zh/docs/tutorials/clusters/seccomp/)
+* [StatefulSet 基础](/zh-cn/docs/tutorials/stateful-application/basic-stateful-set/)
+* [示例：WordPress 和 MySQL 使用持久卷](/zh-cn/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume/)
+* [示例：使用有状态集部署 Cassandra](/zh-cn/docs/tutorials/stateful-application/cassandra/)
+* [运行 ZooKeeper，CP 分布式系统](/zh-cn/docs/tutorials/stateful-application/zookeeper/)
 
 <!--
 ## Services
 
 * [Using Source IP](/docs/tutorials/services/source-ip/)
 -->
-## 服务
+## 服务  {#services}
 
-* [使用源 IP](/zh/docs/tutorials/services/source-ip/)
+* [使用源 IP](/zh-cn/docs/tutorials/services/source-ip/)
+
+<!--
+## Security
+
+* [Apply Pod Security Standards at Cluster level](/docs/tutorials/security/cluster-level-pss/)
+* [Apply Pod Security Standards at Namespace level](/docs/tutorials/security/ns-level-pss/)
+* [AppArmor](/zh-cn/docs/tutorials/security/apparmor/)
+* [seccomp](/zh-cn/docs/tutorials/security/seccomp/)
+-->
+## 安全  {#security}
+
+* [在集群级别应用 Pod 安全标准](/zh-cn/docs/tutorials/security/cluster-level-pss/)
+* [在名字空间级别应用 Pod 安全标准](/zh-cn/docs/tutorials/security/ns-level-pss/)
+* [AppArmor](/zh-cn/docs/tutorials/security/apparmor/)
+* [seccomp](/zh-cn/docs/tutorials/security/seccomp/)
 
 ## {{% heading "whatsnext" %}}
 
@@ -121,6 +118,6 @@ If you would like to write a tutorial, see
 [Content Page Types](/docs/contribute/style/page-content-types/)
 for information about the tutorial page.
 -->
-如果您想编写教程，请参阅[内容页面类型](/zh/docs/contribute/style/page-content-types/)
+如果你要编写教程，请参阅[内容页面类型](/zh-cn/docs/contribute/style/page-content-types/)
 以获取有关教程页面类型的信息。
 
diff --git a/content/zh/docs/tutorials/configuration/_index.md b/content/zh-cn/docs/tutorials/configuration/_index.md
similarity index 100%
rename from content/zh/docs/tutorials/configuration/_index.md
rename to content/zh-cn/docs/tutorials/configuration/_index.md
diff --git a/content/zh/docs/tutorials/configuration/configure-java-microservice/_index.md b/content/zh-cn/docs/tutorials/configuration/configure-java-microservice/_index.md
similarity index 100%
rename from content/zh/docs/tutorials/configuration/configure-java-microservice/_index.md
rename to content/zh-cn/docs/tutorials/configuration/configure-java-microservice/_index.md
diff --git a/content/zh/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice-interactive.html b/content/zh-cn/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice-interactive.html
similarity index 100%
rename from content/zh/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice-interactive.html
rename to content/zh-cn/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice-interactive.html
diff --git a/content/zh/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice.md b/content/zh-cn/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice.md
similarity index 59%
rename from content/zh/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice.md
rename to content/zh-cn/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice.md
index b7c99d0e8e..22a7089d1e 100644
--- a/content/zh/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice.md
+++ b/content/zh-cn/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice.md
@@ -14,7 +14,9 @@ weight: 10
 <!-- overview -->
 
 <!-- 
-In this tutorial you will learn how and why to externalize your microservice’s configuration.  Specifically, you will learn how to use Kubernetes ConfigMaps and Secrets to set environment variables and then consume them using MicroProfile Config.
+In this tutorial you will learn how and why to externalize your microservice’s configuration.
+Specifically, you will learn how to use Kubernetes ConfigMaps and Secrets to set environment
+variables and then consume them using MicroProfile Config.
 -->
 在本教程中，你会学到如何以及为什么要实现外部化微服务应用配置。
 具体来说，你将学习如何使用 Kubernetes ConfigMaps 和 Secrets 设置环境变量，
@@ -24,7 +26,12 @@ In this tutorial you will learn how and why to externalize your microservice’s
 
 <!-- 
 ### Creating Kubernetes ConfigMaps & Secrets
-There are several ways to set environment variables for a Docker container in Kubernetes, including: Dockerfile, kubernetes.yml, Kubernetes ConfigMaps, and Kubernetes Secrets.  In the tutorial, you will learn how to use the latter two for setting your environment variables whose values will be injected into your microservices.  One of the benefits for using ConfigMaps and Secrets is that they can be re-used across multiple containers, including being assigned to different environment variables for the different containers.
+There are several ways to set environment variables for a Docker container in Kubernetes,
+including: Dockerfile, kubernetes.yml, Kubernetes ConfigMaps, and Kubernetes Secrets.  In the
+tutorial, you will learn how to use the latter two for setting your environment variables whose
+values will be injected into your microservices.  One of the benefits for using ConfigMaps and
+Secrets is that they can be re-used across multiple containers, including being assigned to
+different environment variables for the different containers.
 -->
 ### 创建 Kubernetes ConfigMaps 和 Secrets  {#creating-kubernetes-configmaps-secrets}
 在 Kubernetes 中，为 docker 容器设置环境变量有几种不同的方式，比如：
@@ -34,22 +41,32 @@ Dockerfile、kubernetes.yml、Kubernetes ConfigMaps、和 Kubernetes Secrets。
 比如赋值给不同的容器中的不同环境变量。
 
 <!-- 
-ConfigMaps are API Objects that store non-confidential key-value pairs.  In the Interactive Tutorial you will learn how to use a ConfigMap to store the application's name.  For more information regarding ConfigMaps, you can find the documentation [here](/docs/tasks/configure-pod-container/configure-pod-configmap/).
+ConfigMaps are API Objects that store non-confidential key-value pairs.  In the Interactive
+Tutorial you will learn how to use a ConfigMap to store the application's name.  For more
+information regarding ConfigMaps, you can find the documentation
+[here](/docs/tasks/configure-pod-container/configure-pod-configmap/).
 
-Although Secrets are also used to store key-value pairs, they differ from ConfigMaps in that they're intended for confidential/sensitive information and are stored using Base64 encoding.  This makes secrets the appropriate choice for storing such things as credentials, keys, and tokens, the former of which you'll do in the Interactive Tutorial.  For more information on Secrets, you can find the documentation [here](/docs/concepts/configuration/secret/).
+Although Secrets are also used to store key-value pairs, they differ from ConfigMaps in that
+they're intended for confidential/sensitive information and are stored using Base64 encoding.
+This makes secrets the appropriate choice for storing such things as credentials, keys, and
+tokens, the former of which you'll do in the Interactive Tutorial.  For more information on
+Secrets, you can find the documentation [here](/docs/concepts/configuration/secret/).
 -->
 ConfigMaps 是存储非机密键值对的 API 对象。
 在互动教程中，你会学到如何用 ConfigMap 来保存应用名字。
-ConfigMap 的更多信息，你可以在[这里](/zh/docs/tasks/configure-pod-container/configure-pod-configmap/)找到文档。
+ConfigMap 的更多信息，你可以在[这里](/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap/)找到文档。
 
 Secrets 尽管也用来存储键值对，但区别于 ConfigMaps 的是：它针对机密/敏感数据，且存储格式为 Base64 编码。
 secrets 的这种特性使得它适合于存储证书、密钥、令牌，上述内容你将在交互教程中实现。
-Secrets 的更多信息，你可以在[这里](/zh/docs/concepts/configuration/secret/)找到文档。
+Secrets 的更多信息，你可以在[这里](/zh-cn/docs/concepts/configuration/secret/)找到文档。
 
 
 <!-- 
 ### Externalizing Config from Code
-Externalized application configuration is useful because configuration usually changes depending on your environment.  In order to accomplish this, we'll use Java's Contexts and Dependency Injection (CDI) and MicroProfile Config. MicroProfile Config is a feature of MicroProfile, a set of open Java technologies for developing and deploying cloud-native microservices.
+Externalized application configuration is useful because configuration usually changes depending
+on your environment.  In order to accomplish this, we'll use Java's Contexts and Dependency
+Injection (CDI) and MicroProfile Config. MicroProfile Config is a feature of MicroProfile, a set
+of open Java technologies for developing and deploying cloud-native microservices.
 -->
 ### 从代码外部化配置
 外部化应用配置之所以有用处，是因为配置常常根据环境的不同而变化。
@@ -58,9 +75,18 @@ MicroProfile config 是 MicroProfile 的功能特性，
 是一组开放 Java 技术，用于开发、部署云原生微服务。
 
 <!-- 
-CDI provides a standard dependency injection capability enabling an application to be assembled from collaborating, loosely-coupled beans.  MicroProfile Config provides apps and microservices a standard way to obtain config properties from various sources, including the application, runtime, and environment.  Based on the source's defined priority, the properties are automatically combined into a single set of properties that the application can access via an API.  Together, CDI & MicroProfile will be used in the Interactive Tutorial to retrieve the externally provided properties from the Kubernetes ConfigMaps and Secrets and get injected into your application code.
+CDI provides a standard dependency injection capability enabling an application to be assembled
+from collaborating, loosely-coupled beans.  MicroProfile Config provides apps and microservices a
+standard way to obtain config properties from various sources, including the application, runtime,
+and environment.  Based on the source's defined priority, the properties are automatically
+combined into a single set of properties that the application can access via an API.  Together,
+CDI & MicroProfile will be used in the Interactive Tutorial to retrieve the externally provided
+properties from the Kubernetes ConfigMaps and Secrets and get injected into your application code.
 
-Many open source frameworks and runtimes implement and support MicroProfile Config.  Throughout the interactive tutorial, you'll be using Open Liberty, a flexible open-source Java runtime for building and running cloud-native apps and microservices.  However, any MicroProfile compatible runtime could be used instead. 
+Many open source frameworks and runtimes implement and support MicroProfile Config.  Throughout
+the interactive tutorial, you'll be using Open Liberty, a flexible open-source Java runtime for
+building and running cloud-native apps and microservices.  However, any MicroProfile compatible
+runtime could be used instead. 
 -->
 CDI 提供一套标准的依赖注入能力，使得应用程序可以由相互协作的、松耦合的 beans 组装而成。
 MicroProfile Config 为 app 和微服务提供从各种来源，比如应用、运行时、环境，获取配置参数的标准方法。
@@ -87,7 +113,9 @@ CDI & MicroProfile 都会被用在互动教程中，
 
 <!-- 
 ## Example: Externalizing config using MicroProfile, ConfigMaps and Secrets
-### [Start Interactive Tutorial](/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice-interactive/) 
+
+[Start Interactive Tutorial](/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice-interactive/) 
 -->
 ## 示例：使用 MicroProfile、ConfigMaps、Secrets 实现外部化应用配置
-### [启动互动教程](/zh/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice-interactive/) 
+
+[启动互动教程](/zh-cn/docs/tutorials/configuration/configure-java-microservice/configure-java-microservice-interactive/) 
diff --git a/content/zh/docs/tutorials/configuration/configure-redis-using-configmap.md b/content/zh-cn/docs/tutorials/configuration/configure-redis-using-configmap.md
similarity index 82%
rename from content/zh/docs/tutorials/configuration/configure-redis-using-configmap.md
rename to content/zh-cn/docs/tutorials/configuration/configure-redis-using-configmap.md
index fc6f0fa2f1..6814327d59 100644
--- a/content/zh/docs/tutorials/configuration/configure-redis-using-configmap.md
+++ b/content/zh-cn/docs/tutorials/configuration/configure-redis-using-configmap.md
@@ -1,17 +1,22 @@
 ---
-reviewers:
-- eparis
-- pmorie
 title: 使用 ConfigMap 来配置 Redis
 content_type: tutorial
 ---
+<!--
+reviewers:
+- eparis
+- pmorie
+title: Configuring Redis using a ConfigMap
+content_type: tutorial
+-->
 
 <!-- overview -->
 
 <!--
-This page provides a real world example of how to configure Redis using a ConfigMap and builds upon the [Configure Containers Using a ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/) task.
+This page provides a real world example of how to configure Redis using a ConfigMap and builds upon the [Configure a Pod to Use a ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/) task.
 -->
-这篇文档基于[使用 ConfigMap 来配置 Containers](/zh/docs/tasks/configure-pod-container/configure-pod-configmap/) 这个任务，提供了一个使用 ConfigMap 来配置 Redis 的真实案例。
+这篇文档基于[配置 Pod 以使用 ConfigMap](/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap/)
+这个任务，提供了一个使用 ConfigMap 来配置 Redis 的真实案例。
 
 
 
@@ -26,7 +31,7 @@ This page provides a real world example of how to configure Redis using a Config
 
 * 使用 Redis 配置的值创建一个 ConfigMap
 * 创建一个 Redis Pod，挂载并使用创建的 ConfigMap
-* 验证配置已经被正确应用。
+* 验证配置已经被正确应用
 
 
 
@@ -35,13 +40,14 @@ This page provides a real world example of how to configure Redis using a Config
 ## {{% heading "prerequisites" %}}
 
 
-* {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
+
 <!--
 * The example shown on this page works with `kubectl` 1.14 and above.
-* Understand [Configure Containers Using a ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/).
+* Understand [Configure a Pod to Use a ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap/).
 -->
-* 此页面上显示的示例适用于 `kubectl` 1.14和在其以上的版本。
-* 理解[使用ConfigMap来配置Containers](/zh/docs/tasks/configure-pod-container/configure-pod-configmap/)。
+* 此页面上显示的示例适用于 `kubectl` 1.14 及以上的版本。
+* 理解[配置 Pod 以使用 ConfigMap](/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap/)。
 
 
 
@@ -55,7 +61,7 @@ Follow the steps below to configure a Redis cache using data stored in a ConfigM
 
 First create a ConfigMap with an empty configuration block:
 -->
-## 真实世界的案例：使用 ConfigMap 来配置 Redis
+## 真实世界的案例：使用 ConfigMap 来配置 Redis    {#real-world-example-configuring-redis-using-a-configmap}
 
 按照下面的步骤，使用 ConfigMap 中的数据来配置 Redis 缓存。
 
@@ -79,7 +85,7 @@ Apply the ConfigMap created above, along with a Redis pod manifest:
 
 ```shell
 kubectl apply -f example-redis-config.yaml
-kubectl apply -f https://k8s.io/examples/pods/config/redis-pod.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/website/main/content/en/examples/pods/config/redis-pod.yaml
 ```
 
 <!--
@@ -100,12 +106,13 @@ ConfigMap above as `/redis-master/redis.conf` inside the Pod.
   ConfigMap 中的 `redis-config` 密钥公开在 `config` 卷上一个名为 `redis-config` 的文件中。
 * 然后 `config` 卷被 `spec.containers[0].volumeMounts[1]` 挂载在 `/redis-master`。
 
-这样做的最终效果是将上面 `example-redis-config` 配置中 `data.redis-config` 的数据作为 Pod 中的 `/redis-master/redis.conf` 公开。
+这样做的最终效果是将上面 `example-redis-config` 配置中 `data.redis-config`
+的数据作为 Pod 中的 `/redis-master/redis.conf` 公开。
 
 {{< codenew file="pods/config/redis-pod.yaml" >}}
 
-<!-- 
-Examine the created objects: 
+<!--
+Examine the created objects:
 -->
 检查创建的对象：
 
@@ -118,7 +125,7 @@ You should see the following output:
 -->
 你应该可以看到以下输出：
 
-```shell
+```
 NAME        READY   STATUS    RESTARTS   AGE
 pod/redis   1/1     Running   0          8s
 
@@ -127,7 +134,7 @@ configmap/example-redis-config   1      14s
 ```
 
 <!--
-Recall that we left `redis-config` key in the `example-redis-config` ConfigMap blank: 
+Recall that we left `redis-config` key in the `example-redis-config` ConfigMap blank:
 -->
 回顾一下，我们在 `example-redis-config` ConfigMap 保留了空的 `redis-config` 键：
 
@@ -298,7 +305,7 @@ values from associated ConfigMaps. Let's delete and recreate the Pod:
 
 ```shell
 kubectl delete pod redis
-kubectl apply -f https://k8s.io/examples/pods/config/redis-pod.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/website/main/content/en/examples/pods/config/redis-pod.yaml
 ```
 
 <!--
@@ -363,7 +370,7 @@ kubectl delete pod/redis configmap/example-redis-config
 <!--
 * Learn more about [ConfigMaps](/docs/tasks/configure-pod-container/configure-pod-configmap/).
 -->
-* 了解有关 [ConfigMaps](/zh/docs/tasks/configure-pod-container/configure-pod-configmap/)的更多信息。
+* 了解有关 [ConfigMaps](/zh-cn/docs/tasks/configure-pod-container/configure-pod-configmap/) 的更多信息。
 
 
 
diff --git a/content/zh/docs/tutorials/hello-minikube.md b/content/zh-cn/docs/tutorials/hello-minikube.md
similarity index 93%
rename from content/zh/docs/tutorials/hello-minikube.md
rename to content/zh-cn/docs/tutorials/hello-minikube.md
index daa7532f40..09c04dcb23 100644
--- a/content/zh/docs/tutorials/hello-minikube.md
+++ b/content/zh-cn/docs/tutorials/hello-minikube.md
@@ -119,7 +119,7 @@ By default, the dashboard is only accessible from within the internal Kubernetes
 The `dashboard` command creates a temporary proxy to make the dashboard accessible from outside the Kubernetes virtual network.
 
 To stop the proxy, run `Ctrl+C` to exit the process.
-After the command exits, the dashboard remains running in Kubernetes cluster.
+After the command exits, the dashboard remains running in the Kubernetes cluster.
 You can run the `dashboard` command again to create another proxy to access the dashboard.
 -->
 {{< note >}}
@@ -144,9 +144,9 @@ You can run the `dashboard` command again to create another proxy to access the
 ## 使用 URL 打开仪表板
 
 <!--
-If you don't want to open a web browser, run the dashboard command with the url flag to emit a URL:
+If you don't want to open a web browser, run the dashboard command with the `--url` flag to emit a URL:
 -->
-如果你不想打开 Web 浏览器，请使用 url 标志运行显示板命令以得到 URL：
+如果你不想打开 Web 浏览器，请使用 `--url` 标志运行显示板命令以得到 URL：
 
 ```shell
 minikube dashboard --url
@@ -166,9 +166,9 @@ recommended way to manage the creation and scaling of Pods.
 
 ## 创建 Deployment
 
-Kubernetes [*Pod*](/zh/docs/concepts/workloads/pods/) 是由一个或多个
+Kubernetes [*Pod*](/zh-cn/docs/concepts/workloads/pods/) 是由一个或多个
 为了管理和联网而绑定在一起的容器构成的组。 本教程中的 Pod 只有一个容器。
-Kubernetes [*Deployment*](/zh/docs/concepts/workloads/controllers/deployment/)
+Kubernetes [*Deployment*](/zh-cn/docs/concepts/workloads/controllers/deployment/)
 检查 Pod 的健康状况，并在 Pod 中的容器终止的情况下重新启动新的容器。
 Deployment 是管理 Pod 创建和扩展的推荐方法。
 
@@ -244,10 +244,10 @@ Pod runs a Container based on the provided Docker image.
 
 <!--
 For more information about `kubectl`commands, see the
-[kubectl overview](/docs/user-guide/kubectl-overview/).
+[kubectl overview](/docs/reference/kubectl/).
 -->
 {{< note >}}
-有关 `kubectl` 命令的更多信息，请参阅 [kubectl 概述](/zh/docs/reference/kubectl/overview/)。
+有关 `kubectl` 命令的更多信息，请参阅 [kubectl 概述](/zh-cn/docs/reference/kubectl/)。
 {{< /note >}}
 
 <!--
@@ -262,7 +262,7 @@ Kubernetes [*Service*](/docs/concepts/services-networking/service/).
 
 默认情况下，Pod 只能通过 Kubernetes 集群中的内部 IP 地址访问。
 要使得 `hello-node` 容器可以从 Kubernetes 虚拟网络的外部访问，你必须将 Pod
-暴露为 Kubernetes [*Service*](/zh/docs/concepts/services-networking/service/)。
+暴露为 Kubernetes [*Service*](/zh-cn/docs/concepts/services-networking/service/)。
 
 <!--
 1. Expose the Pod to the public internet using the `kubectl expose` command:
@@ -330,7 +330,7 @@ Kubernetes [*Service*](/docs/concepts/services-networking/service/).
 4. 仅限 Katacoda 环境：单击加号，然后单击 **选择要在主机 1 上查看的端口**。
 
 <!--
-5. Katacoda environment only: Note the 5 digit port number displayed opposite to `8080` in services output. This port number is randomly generated and it can be different for you. Type your number in the port number text box, then click Display Port. Using the example from earlier, you would type `30369`.
+5. Katacoda environment only: Note the 5-digit port number displayed opposite to `8080` in services output. This port number is randomly generated and it can be different for you. Type your number in the port number text box, then click Display Port. Using the example from earlier, you would type `30369`.
 
     This opens up a browser window that serves your app and shows the app's response.
 -->
@@ -497,7 +497,7 @@ minikube delete
 * Learn more about [Deploying applications](/docs/tasks/run-application/run-stateless-application-deployment/).
 * Learn more about [Service objects](/docs/concepts/services-networking/service/).
 -->
-* 进一步了解 [Deployment 对象](/zh/docs/concepts/workloads/controllers/deployment/)。
-* 进一步了解[部署应用](/zh/docs/tasks/run-application/run-stateless-application-deployment/)。
-* 进一步了解 [Service 对象](/zh/docs/concepts/services-networking/service/)。
+* 进一步了解 [Deployment 对象](/zh-cn/docs/concepts/workloads/controllers/deployment/)。
+* 进一步了解[部署应用](/zh-cn/docs/tasks/run-application/run-stateless-application-deployment/)。
+* 进一步了解 [Service 对象](/zh-cn/docs/concepts/services-networking/service/)。
 
diff --git a/content/zh/docs/tutorials/kubernetes-basics/_index.html b/content/zh-cn/docs/tutorials/kubernetes-basics/_index.html
similarity index 57%
rename from content/zh/docs/tutorials/kubernetes-basics/_index.html
rename to content/zh-cn/docs/tutorials/kubernetes-basics/_index.html
index 7cf767d5af..7054cf6e3c 100644
--- a/content/zh/docs/tutorials/kubernetes-basics/_index.html
+++ b/content/zh-cn/docs/tutorials/kubernetes-basics/_index.html
@@ -24,15 +24,15 @@ card:
     <div class="row">
       <div class="col-md-9">
         <h2>Kubernetes 基础</h2>
-        <p>本教程介绍了 Kubernetes 集群编排系统的基础知识。每个模块包含关于 Kubernetes 主要特性和概念的一些背景信息，并包括一个在线互动教程。这些互动教程让您可以自己管理一个简单的集群及其容器化应用程序。</p>
-        <p>使用互动教程，您可以学习：</p>
+        <p>本教程介绍了 Kubernetes 集群编排系统的基础知识。每个模块包含关于 Kubernetes 主要特性和概念的一些背景信息，并包括一个在线互动教程。这些互动教程让你可以自己管理一个简单的集群及其容器化应用程序。</p>
+        <p>使用互动教程，你可以学习：</p>
         <ul>
         <li>在集群上部署容器化应用程序</li>
         <li>弹性部署</li>
         <li>使用新的软件版本，更新容器化应用程序</li>
         <li>调试容器化应用程序</li>
         </ul>
-        <p>教程 Katacoda 在您的浏览器中运行一个虚拟终端，在浏览器中运行 Minikube，这是一个可在任何地方小规模本地部署的 Kubernetes 集群。不需要安装任何软件或进行任何配置；每个交互性教程都直接从您的网页浏览器上运行。</p>
+        <p>教程 Katacoda 在你的浏览器中运行一个虚拟终端，在浏览器中运行 Minikube，这是一个可在任何地方小规模本地部署的 Kubernetes 集群。不需要安装任何软件或进行任何配置；每个交互性教程都直接从你的网页浏览器上运行。</p>
       </div>
     </div>
 
@@ -40,8 +40,8 @@ card:
 
     <div class="row">
       <div class="col-md-9">
-        <h2>Kubernetes 可以为您做些什么?</h2>
-        <p>通过现代的 Web 服务，用户希望应用程序能够 24/7 全天候使用，开发人员希望每天可以多次发布部署新版本的应用程序。 容器化可以帮助软件包达成这些目标，使应用程序能够以简单快速的方式发布和更新，而无需停机。Kubernetes 帮助您确保这些容器化的应用程序在您想要的时间和地点运行，并帮助应用程序找到它们需要的资源和工具。Kubernetes 是一个可用于生产的开源平台，根据 Google 容器集群方面积累的经验，以及来自社区的最佳实践而设计。</p>
+        <h2>Kubernetes 可以为你做些什么?</h2>
+        <p>通过现代的 Web 服务，用户希望应用程序能够 24/7 全天候使用，开发人员希望每天可以多次发布部署新版本的应用程序。 容器化可以帮助软件包达成这些目标，使应用程序能够以简单快速的方式发布和更新，而无需停机。Kubernetes 帮助你确保这些容器化的应用程序在你想要的时间和地点运行，并帮助应用程序找到它们需要的资源和工具。Kubernetes 是一个可用于生产的开源平台，根据 Google 容器集群方面积累的经验，以及来自社区的最佳实践而设计。</p>
       </div>
     </div>
 
@@ -55,25 +55,25 @@ card:
           <div class="row">
             <div class="col-md-4">
               <div class="thumbnail">
-                <a href="/zh/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro/"><img src="/docs/tutorials/kubernetes-basics/public/images/module_01.svg?v=1469803628347" alt=""></a>
+                <a href="/zh-cn/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro/"><img src="/docs/tutorials/kubernetes-basics/public/images/module_01.svg?v=1469803628347" alt=""></a>
                 <div class="caption">
-                  <a href="/zh/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro/"><h5>1. 创建一个 Kubernetes 集群</h5></a>
+                  <a href="/zh-cn/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro/"><h5>1. 创建一个 Kubernetes 集群</h5></a>
                 </div>
               </div>
             </div>
             <div class="col-md-4">
               <div class="thumbnail">
-                <a href="/zh/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro/"><img src="/docs/tutorials/kubernetes-basics/public/images/module_02.svg?v=1469803628347" alt=""></a>
+                <a href="/zh-cn/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro/"><img src="/docs/tutorials/kubernetes-basics/public/images/module_02.svg?v=1469803628347" alt=""></a>
                   <div class="caption">
-                    <a href="/zh/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro/"><h5>2. 部署应用程序</h5></a>
+                    <a href="/zh-cn/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro/"><h5>2. 部署应用程序</h5></a>
                   </div>
               </div>
             </div>
             <div class="col-md-4">
               <div class="thumbnail">
-                <a href="/zh/docs/tutorials/kubernetes-basics/explore/explore-intro/"><img src="/docs/tutorials/kubernetes-basics/public/images/module_03.svg?v=1469803628347" alt=""></a>
+                <a href="/zh-cn/docs/tutorials/kubernetes-basics/explore/explore-intro/"><img src="/docs/tutorials/kubernetes-basics/public/images/module_03.svg?v=1469803628347" alt=""></a>
                 <div class="caption">
-                  <a href="/zh/docs/tutorials/kubernetes-basics/explore/explore-intro/"><h5>3. 应用程序探索</h5></a>
+                  <a href="/zh-cn/docs/tutorials/kubernetes-basics/explore/explore-intro/"><h5>3. 应用程序探索</h5></a>
                 </div>
               </div>
             </div>
@@ -83,25 +83,25 @@ card:
           <div class="row">
             <div class="col-md-4">
               <div class="thumbnail">
-                <a href="/zh/docs/tutorials/kubernetes-basics/expose/expose-intro/"><img src="/docs/tutorials/kubernetes-basics/public/images/module_04.svg?v=1469803628347" alt=""></a>
+                <a href="/zh-cn/docs/tutorials/kubernetes-basics/expose/expose-intro/"><img src="/docs/tutorials/kubernetes-basics/public/images/module_04.svg?v=1469803628347" alt=""></a>
                 <div class="caption">
-                  <a href="/zh/docs/tutorials/kubernetes-basics/expose/expose-intro/"><h5>4. 应用外部可见</h5></a>
+                  <a href="/zh-cn/docs/tutorials/kubernetes-basics/expose/expose-intro/"><h5>4. 应用外部可见</h5></a>
                 </div>
               </div>
             </div>
             <div class="col-md-4">
               <div class="thumbnail">
-                <a href="/zh/docs/tutorials/kubernetes-basics/scale/scale-intro/"><img src="/docs/tutorials/kubernetes-basics/public/images/module_05.svg?v=1469803628347" alt=""></a>
+                <a href="/zh-cn/docs/tutorials/kubernetes-basics/scale/scale-intro/"><img src="/docs/tutorials/kubernetes-basics/public/images/module_05.svg?v=1469803628347" alt=""></a>
                 <div class="caption">
-                  <a href="/zh/docs/tutorials/kubernetes-basics/scale/scale-intro/"><h5>5. 应用可扩展</h5></a>
+                  <a href="/zh-cn/docs/tutorials/kubernetes-basics/scale/scale-intro/"><h5>5. 应用可扩展</h5></a>
                 </div>
               </div>
             </div>
             <div class="col-md-4">
               <div class="thumbnail">
-                <a href="/zh/docs/tutorials/kubernetes-basics/update/update-intro/"><img src="/docs/tutorials/kubernetes-basics/public/images/module_06.svg?v=1469803628347" alt=""></a>
+                <a href="/zh-cn/docs/tutorials/kubernetes-basics/update/update-intro/"><img src="/docs/tutorials/kubernetes-basics/public/images/module_06.svg?v=1469803628347" alt=""></a>
                 <div class="caption">
-                  <a href="/zh/docs/tutorials/kubernetes-basics/update/update-intro/"><h5>6. 应用更新</h5></a>
+                  <a href="/zh-cn/docs/tutorials/kubernetes-basics/update/update-intro/"><h5>6. 应用更新</h5></a>
                 </div>
               </div>
             </div>
diff --git a/content/zh-cn/docs/tutorials/kubernetes-basics/create-cluster/_index.md b/content/zh-cn/docs/tutorials/kubernetes-basics/create-cluster/_index.md
new file mode 100644
index 0000000000..59dc1385c7
--- /dev/null
+++ b/content/zh-cn/docs/tutorials/kubernetes-basics/create-cluster/_index.md
@@ -0,0 +1,10 @@
+---
+title: 创建集群
+weight: 10
+---
+
+<!--
+Learn about Kubernetes {{< glossary_tooltip text="cluster" term_id="cluster" length="all" >}} and create a simple cluster using Minikube.
+-->
+了解 Kubernetes {{<glossary_tooltip text="集群" term_id="cluster" length="all" >}}并使用 Minikube
+创建一个简单的集群。
diff --git a/content/zh/docs/tutorials/kubernetes-basics/create-cluster/cluster-interactive.html b/content/zh-cn/docs/tutorials/kubernetes-basics/create-cluster/cluster-interactive.html
similarity index 88%
rename from content/zh/docs/tutorials/kubernetes-basics/create-cluster/cluster-interactive.html
rename to content/zh-cn/docs/tutorials/kubernetes-basics/create-cluster/cluster-interactive.html
index 87e0659ef8..c472facc82 100644
--- a/content/zh/docs/tutorials/kubernetes-basics/create-cluster/cluster-interactive.html
+++ b/content/zh-cn/docs/tutorials/kubernetes-basics/create-cluster/cluster-interactive.html
@@ -40,7 +40,7 @@ weight: 20
                 <!--
                 <a class="btn btn-lg btn-success" href="/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro/" role="button">Continue to Module 2<span class="btn__next">›</span></a>
                 -->
-                <a class="btn btn-lg btn-success" href="/zh/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro/" role="button">继续阅读第二单元<span class="btn__next">›</span></a>
+                <a class="btn btn-lg btn-success" href="/zh-cn/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro/" role="button">继续阅读第二单元<span class="btn__next">›</span></a>
                 
             </div>
         </div>
diff --git a/content/zh/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro.html b/content/zh-cn/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro.html
similarity index 85%
rename from content/zh/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro.html
rename to content/zh-cn/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro.html
index d6a0d4a9ec..0e3f606500 100644
--- a/content/zh/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro.html
+++ b/content/zh-cn/docs/tutorials/kubernetes-basics/create-cluster/cluster-intro.html
@@ -29,7 +29,7 @@ weight: 10
             <div class="col-md-8">
                 <h3> Kubernetes 集群</h3>
                 <p>
-                <b> Kubernetes 协调一个高可用计算机集群，每个计算机作为独立单元互相连接工作。</b> Kubernetes 中的抽象允许您将容器化的应用部署到集群，而无需将它们绑定到某个特定的独立计算机。为了使用这种新的部署模型，应用需要以将应用与单个主机分离的方式打包：它们需要被容器化。与过去的那种应用直接以包的方式深度与主机集成的部署模型相比，容器化应用更灵活、更可用。<b> Kubernetes 以更高效的方式跨集群自动分发和调度应用容器。</b> Kubernetes 是一个开源平台，并且可应用于生产环境。
+                <b> Kubernetes 协调一个高可用计算机集群，每个计算机作为独立单元互相连接工作。</b> Kubernetes 中的抽象允许你将容器化的应用部署到集群，而无需将它们绑定到某个特定的独立计算机。为了使用这种新的部署模型，应用需要以将应用与单个主机分离的方式打包：它们需要被容器化。与过去的那种应用直接以包的方式深度与主机集成的部署模型相比，容器化应用更灵活、更可用。<b> Kubernetes 以更高效的方式跨集群自动分发和调度应用容器。</b> Kubernetes 是一个开源平台，并且可应用于生产环境。
                 </p>
                 <p>一个 Kubernetes 集群包含两种类型的资源:
                     <ul>
@@ -72,7 +72,7 @@ weight: 10
         <div class="row">
             <div class="col-md-8">
                 <p><b> Master 负责管理整个集群。</b> Master 协调集群中的所有活动，例如调度应用、维护应用的所需状态、应用扩容以及推出新的更新。</p>
-                <p><b> Node 是一个虚拟机或者物理机，它在 Kubernetes 集群中充当工作机器的角色</b> 每个Node都有 Kubelet , 它管理 Node 而且是 Node 与 Master 通信的代理。 Node 还应该具有用于​​处理容器操作的工具，例如 Docker 或 rkt 。处理生产级流量的 Kubernetes 集群至少应具有三个 Node 。</p>
+                <p><b> Node 是一个虚拟机或者物理机，它在 Kubernetes 集群中充当工作机器的角色</b> 每个Node都有 Kubelet , 它管理 Node 而且是 Node 与 Master 通信的代理。 Node 还应该具有用于​​处理容器操作的工具，例如 Docker 或 rkt 。处理生产级流量的 Kubernetes 集群至少应具有三个 Node，因为如果一个 Node 出现故障其对应的 etcd 成员和控制平面实例都会丢失，并且冗余会受到影响。 你可以通过添加更多控制平面节点来降低这种风险 。</p>
 
             </div>
             <div class="col-md-4">
@@ -84,11 +84,11 @@ weight: 10
 
         <div class="row">
             <div class="col-md-8">
-                <p>在 Kubernetes 上部署应用时，您告诉 Master 启动应用容器。 Master 就编排容器在集群的 Node 上运行。<b> Node 使用 Master 暴露的 Kubernetes API 与 Master 通信。</b>终端用户也可以使用 Kubernetes API 与集群交互。</p>
+                <p>在 Kubernetes 上部署应用时，你告诉 Master 启动应用容器。 Master 就编排容器在集群的 Node 上运行。<b> Node 使用 Master 暴露的 Kubernetes API 与 Master 通信。</b>终端用户也可以使用 Kubernetes API 与集群交互。</p>
 
-                <p> Kubernetes 既可以部署在物理机上也可以部署在虚拟机上。您可以使用 Minikube 开始部署 Kubernetes 集群。 Minikube 是一种轻量级的 Kubernetes 实现，可在本地计算机上创建 VM 并部署仅包含一个节点的简单集群。 Minikube 可用于 Linux ， macOS 和 Windows 系统。Minikube CLI 提供了用于引导集群工作的多种操作，包括启动、停止、查看状态和删除。在本教程里，您可以使用预装有 Minikube 的在线终端进行体验。</p>
+                <p> Kubernetes 既可以部署在物理机上也可以部署在虚拟机上。你可以使用 Minikube 开始部署 Kubernetes 集群。 Minikube 是一种轻量级的 Kubernetes 实现，可在本地计算机上创建 VM 并部署仅包含一个节点的简单集群。 Minikube 可用于 Linux ， macOS 和 Windows 系统。Minikube CLI 提供了用于引导集群工作的多种操作，包括启动、停止、查看状态和删除。在本教程里，你可以使用预装有 Minikube 的在线终端进行体验。</p>
 
-                <p>既然您已经知道 Kubernetes 是什么，让我们转到在线教程并启动我们的第一个 Kubernetes 集群！</p>
+                <p>既然你已经知道 Kubernetes 是什么，让我们转到在线教程并启动我们的第一个 Kubernetes 集群！</p>
 
             </div>
         </div>
@@ -96,7 +96,7 @@ weight: 10
 
         <div class="row">
             <div class="col-md-12">
-                <a class="btn btn-lg btn-success" href="/zh/docs/tutorials/kubernetes-basics/create-cluster/cluster-interactive/" role="button"> 启动交互教程 <span class="btn__next">›</span></a>
+                <a class="btn btn-lg btn-success" href="/zh-cn/docs/tutorials/kubernetes-basics/create-cluster/cluster-interactive/" role="button"> 启动交互教程 <span class="btn__next">›</span></a>
             </div>
         </div>
 
diff --git a/content/zh/docs/tutorials/kubernetes-basics/deploy-app/_index.md b/content/zh-cn/docs/tutorials/kubernetes-basics/deploy-app/_index.md
similarity index 100%
rename from content/zh/docs/tutorials/kubernetes-basics/deploy-app/_index.md
rename to content/zh-cn/docs/tutorials/kubernetes-basics/deploy-app/_index.md
diff --git a/content/zh/docs/tutorials/kubernetes-basics/deploy-app/deploy-interactive.html b/content/zh-cn/docs/tutorials/kubernetes-basics/deploy-app/deploy-interactive.html
similarity index 87%
rename from content/zh/docs/tutorials/kubernetes-basics/deploy-app/deploy-interactive.html
rename to content/zh-cn/docs/tutorials/kubernetes-basics/deploy-app/deploy-interactive.html
index fbb85aeb4c..de3512a5ba 100644
--- a/content/zh/docs/tutorials/kubernetes-basics/deploy-app/deploy-interactive.html
+++ b/content/zh-cn/docs/tutorials/kubernetes-basics/deploy-app/deploy-interactive.html
@@ -33,7 +33,7 @@ weight: 20
         <div class="row">
             <div class="col-md-12">
                 <!-- <a class="btn btn-lg btn-success" href="/docs/tutorials/kubernetes-basics/explore/explore-intro/" role="button">Continue to Module 3<span class="btn__next">›</span></a> -->
-                <a class="btn btn-lg btn-success" href="/zh/docs/tutorials/kubernetes-basics/explore/explore-intro/" role="button">继续阅读第3单元<span class="btn__next">›</span></a>
+                <a class="btn btn-lg btn-success" href="/zh-cn/docs/tutorials/kubernetes-basics/explore/explore-intro/" role="button">继续阅读第3单元<span class="btn__next">›</span></a>
             </div>
         </div>
 
diff --git a/content/zh/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro.html b/content/zh-cn/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro.html
similarity index 88%
rename from content/zh/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro.html
rename to content/zh-cn/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro.html
index cf44c3f5d5..f90ba82192 100644
--- a/content/zh/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro.html
+++ b/content/zh-cn/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro.html
@@ -41,11 +41,11 @@ weight: 10
                 </p> -->
                 <p>
                   一旦运行了 Kubernetes 集群，就可以在其上部署容器化应用程序。
-                  为此，您需要创建 Kubernetes <b> Deployment </b>配置。Deployment 指挥 Kubernetes 如何创建和更新应用程序的实例。创建 Deployment 后，Kubernetes master 将应用程序实例调度到集群中的各个节点上。
+                  为此，你需要创建 Kubernetes <b> Deployment </b>配置。Deployment 指挥 Kubernetes 如何创建和更新应用程序的实例。创建 Deployment 后，Kubernetes master 将应用程序实例调度到集群中的各个节点上。
                   </p>
 
                 <!-- <p>Once the application instances are created, a Kubernetes Deployment Controller continuously monitors those instances. If the Node hosting an instance goes down or is deleted, the Deployment controller replaces the instance with an instance on another Node in the cluster. <b>This provides a self-healing mechanism to address machine failure or maintenance.</b></p> -->
-                <p>创建应用程序实例后，Kubernetes Deployment 控制器会持续监视这些实例。 如果托管实例的节点关闭或被删除，则 Deployment 控制器会将该实例替换为群集中另一个节点上的实例。 <b>这提供了一种自我修复机制来解决机器故障维护问题。</b></p>
+                <p>创建应用程序实例后，Kubernetes Deployment 控制器会持续监视这些实例。 如果托管实例的节点关闭或被删除，则 Deployment 控制器会将该实例替换为集群中另一个节点上的实例。 <b>这提供了一种自我修复机制来解决机器故障维护问题。</b></p>
 
                 <!-- <p>In a pre-orchestration world, installation scripts would often be used to start applications, but they did not allow recovery from machine failure.  By both creating your application instances and keeping them running across Nodes, Kubernetes Deployments provide a fundamentally different approach to application management. </p> -->
                 <p>在没有 Kubernetes 这种编排系统之前，安装脚本通常用于启动应用程序，但它们不允许从机器故障中恢复。通过创建应用程序实例并使它们在节点之间运行， Kubernetes Deployments 提供了一种与众不同的应用程序管理方法。</p>
@@ -91,10 +91,10 @@ weight: 10
             <div class="col-md-8">
 
                 <!-- <p>You can create and manage a Deployment by using the Kubernetes command line interface, <b>Kubectl</b>. Kubectl uses the Kubernetes API to interact with the cluster. In this module, you'll learn the most common Kubectl commands needed to create Deployments that run your applications on a Kubernetes cluster.</p> -->
-                <p>您可以使用 Kubernetes 命令行界面 <b>Kubectl</b> 创建和管理 Deployment。Kubectl 使用 Kubernetes API 与集群进行交互。在本单元中，您将学习创建在 Kubernetes 集群上运行应用程序的 Deployment 所需的最常见的 Kubectl 命令。</p>
+                <p>你可以使用 Kubernetes 命令行界面 <b>Kubectl</b> 创建和管理 Deployment。Kubectl 使用 Kubernetes API 与集群进行交互。在本单元中，你将学习创建在 Kubernetes 集群上运行应用程序的 Deployment 所需的最常见的 Kubectl 命令。</p>
 
                 <!-- <p>When you create a Deployment, you'll need to specify the container image for your application and the number of replicas that you want to run. You can change that information later by updating your Deployment; Modules <a href="/docs/tutorials/kubernetes-basics/scale-intro/">5</a> and <a href="/docs/tutorials/kubernetes-basics/update-intro/">6</a> of the bootcamp discuss how you can scale and update your Deployments.</p> -->
-                <p>创建 Deployment 时，您需要指定应用程序的容器映像以及要运行的副本数。您可以稍后通过更新 Deployment 来更改该信息; 模块 <a href="/zh/docs/tutorials/kubernetes-basics/scale-intro/">5</a> 和 <a href="/zh/docs/tutorials/kubernetes-basics/update-intro/">6</a> 讨论了如何扩展和更新 Deployments。</p>
+                <p>创建 Deployment 时，你需要指定应用程序的容器镜像以及要运行的副本数。你可以稍后通过更新 Deployment 来更改该信息; 模块 <a href="/zh-cn/docs/tutorials/kubernetes-basics/scale-intro/">5</a> 和 <a href="/zh-cn/docs/tutorials/kubernetes-basics/update-intro/">6</a> 讨论了如何扩展和更新 Deployments。</p>
 
             </div>
             <div class="col-md-4">
@@ -115,16 +115,16 @@ weight: 10
                 <p>Now that you know what Deployments are, let's go to the online tutorial and deploy our first app!</p> -->
                 <p>对于我们的第一次部署，我们将使用打包在 Docker 容器中的 Node.js 应用程序。
                     要创建 Node.js 应用程序并部署 Docker 容器，请按照
-                    <a href="/zh/docs/tutorials/hello-minikube/">你好 Minikube 教程</a>.</p>
+                    <a href="/zh-cn/docs/tutorials/hello-minikube/">你好 Minikube 教程</a>.</p>
 
-                <p>现在您已经了解了 Deployment 的内容，让我们转到在线教程并部署我们的第一个应用程序！</p>
+                <p>现在你已经了解了 Deployment 的内容，让我们转到在线教程并部署我们的第一个应用程序！</p>
             </div>
         </div>
         <br>
 
         <div class="row">
             <div class="col-md-12">
-                <a class="btn btn-lg btn-success" href="/zh/docs/tutorials/kubernetes-basics/deploy-app/deploy-interactive/" role="button">开始交互式教程 <span class="btn__next">›</span></a>
+                <a class="btn btn-lg btn-success" href="/zh-cn/docs/tutorials/kubernetes-basics/deploy-app/deploy-interactive/" role="button">开始交互式教程 <span class="btn__next">›</span></a>
             </div>
         </div>
 
diff --git a/content/zh/docs/tutorials/kubernetes-basics/explore/_index.md b/content/zh-cn/docs/tutorials/kubernetes-basics/explore/_index.md
similarity index 100%
rename from content/zh/docs/tutorials/kubernetes-basics/explore/_index.md
rename to content/zh-cn/docs/tutorials/kubernetes-basics/explore/_index.md
diff --git a/content/zh/docs/tutorials/kubernetes-basics/explore/explore-interactive.html b/content/zh-cn/docs/tutorials/kubernetes-basics/explore/explore-interactive.html
similarity index 86%
rename from content/zh/docs/tutorials/kubernetes-basics/explore/explore-interactive.html
rename to content/zh-cn/docs/tutorials/kubernetes-basics/explore/explore-interactive.html
index 5e469b8a5a..c4ce2e4baa 100644
--- a/content/zh/docs/tutorials/kubernetes-basics/explore/explore-interactive.html
+++ b/content/zh-cn/docs/tutorials/kubernetes-basics/explore/explore-interactive.html
@@ -42,7 +42,7 @@ weight: 20
         </div>
         <div class="row">
             <div class="col-md-12">
-                <a class="btn btn-lg btn-success" href="/zh/docs/tutorials/kubernetes-basics/expose/expose-intro/" role="button">继续阅读第4单元<span class="btn__next">›</span></a>
+                <a class="btn btn-lg btn-success" href="/zh-cn/docs/tutorials/kubernetes-basics/expose/expose-intro/" role="button">继续阅读第4单元<span class="btn__next">›</span></a>
             </div>
         </div>
 
diff --git a/content/zh/docs/tutorials/kubernetes-basics/explore/explore-intro.html b/content/zh-cn/docs/tutorials/kubernetes-basics/explore/explore-intro.html
similarity index 89%
rename from content/zh/docs/tutorials/kubernetes-basics/explore/explore-intro.html
rename to content/zh-cn/docs/tutorials/kubernetes-basics/explore/explore-intro.html
index 2a756d9d55..aa5e1a9e9b 100644
--- a/content/zh/docs/tutorials/kubernetes-basics/explore/explore-intro.html
+++ b/content/zh-cn/docs/tutorials/kubernetes-basics/explore/explore-intro.html
@@ -43,7 +43,7 @@ weight: 10
 <!--
         <p>When you created a Deployment in Module <a href="/docs/tutorials/kubernetes-basics/deploy-intro/">2</a>, Kubernetes created a <b>Pod</b> to host your application instance. A Pod is a Kubernetes abstraction that represents a group of one or more application containers (such as Docker), and some shared resources for those containers. Those resources include:</p>
 -->
-        <p>在模块 <a href="/zh/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro/">2</a>创建 Deployment 时, Kubernetes 添加了一个 <b>Pod</b> 来托管你的应用实例。Pod 是 Kubernetes 抽象出来的，表示一组一个或多个应用程序容器（如 Docker），以及这些容器的一些共享资源。这些资源包括:</p>
+        <p>在模块 <a href="/zh-cn/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro/">2</a>创建 Deployment 时, Kubernetes 添加了一个 <b>Pod</b> 来托管你的应用实例。Pod 是 Kubernetes 抽象出来的，表示一组一个或多个应用程序容器（如 Docker），以及这些容器的一些共享资源。这些资源包括:</p>
 <!--
         <ul>
           <li>Shared storage, as Volumes</li>
@@ -54,7 +54,7 @@ weight: 10
         <ul>
           <li>共享存储，当作卷</li>
           <li>网络，作为唯一的集群 IP 地址</li>
-          <li>有关每个容器如何运行的信息，例如容器映像版本或要使用的特定端口。</li>
+          <li>有关每个容器如何运行的信息，例如容器镜像版本或要使用的特定端口。</li>
         </ul>
     <!--
         <p>A Pod models an application-specific "logical host" and can contain different application containers which are relatively tightly coupled. For example, a Pod might include both the container with your Node.js app as well as a different container that feeds the data to be published by the Node.js webserver. The containers in a Pod share an IP Address and port space, are always co-located and co-scheduled, and run in a shared context on the same Node.</p>
@@ -63,7 +63,7 @@ weight: 10
 <!--
         <p>Pods are the atomic unit on the Kubernetes platform. When we create a Deployment on Kubernetes, that Deployment creates Pods with containers inside them (as opposed to creating containers directly). Each Pod is tied to the Node where it is scheduled, and remains there until termination (according to restart policy) or deletion. In case of a Node failure, identical Pods are scheduled on other available Nodes in the cluster.</p>
 -->
-        <p>Pod是 Kubernetes 平台上的原子单元。 当我们在 Kubernetes 上创建 Deployment 时，该 Deployment 会在其中创建包含容器的 Pod （而不是直接创建容器）。每个 Pod 都与调度它的工作节点绑定，并保持在那里直到终止（根据重启策略）或删除。 如果工作节点发生故障，则会在群集中的其他可用工作节点上调度相同的 Pod。</p>
+        <p>Pod是 Kubernetes 平台上的原子单元。 当我们在 Kubernetes 上创建 Deployment 时，该 Deployment 会在其中创建包含容器的 Pod （而不是直接创建容器）。每个 Pod 都与调度它的工作节点绑定，并保持在那里直到终止（根据重启策略）或删除。 如果工作节点发生故障，则会在集群中的其他可用工作节点上调度相同的 Pod。</p>
 
       </div>
       <div class="col-md-4">
@@ -124,7 +124,7 @@ weight: 10
         </ul>
 -->
         <h2>工作节点</h2>
-        <p>一个 pod 总是运行在 <b>工作节点</b>。工作节点是 Kubernetes 中的参与计算的机器，可以是虚拟机或物理计算机，具体取决于集群。每个工作节点由主节点管理。工作节点可以有多个 pod ，Kubernetes 主节点会自动处理在群集中的工作节点上调度 pod 。 主节点的自动调度考量了每个工作节点上的可用资源。</p>
+        <p>一个 pod 总是运行在 <b>工作节点</b>。工作节点是 Kubernetes 中的参与计算的机器，可以是虚拟机或物理计算机，具体取决于集群。每个工作节点由主节点管理。工作节点可以有多个 pod ，Kubernetes 主节点会自动处理在集群中的工作节点上调度 pod 。 主节点的自动调度考量了每个工作节点上的可用资源。</p>
 
         <p>每个 Kubernetes 工作节点至少运行:</p>
         <ul>
@@ -169,7 +169,7 @@ weight: 10
 <!--
         <p>In Module <a href="/docs/tutorials/kubernetes-basics/deploy/deploy-intro/">2</a>, you used Kubectl command-line interface. You'll continue to use it in Module 3 to get information about deployed applications and their environments. The most common operations can be done with the following kubectl commands:</p>
 -->
-        <p>在模块 <a href="/zh/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro/">2</a>,您使用了 Kubectl 命令行界面。 您将继续在第3单元中使用它来获取有关已部署的应用程序及其环境的信息。 最常见的操作可以使用以下 kubectl 命令完成：</p>
+        <p>在模块 <a href="/zh-cn/docs/tutorials/kubernetes-basics/deploy-app/deploy-intro/">2</a>,你使用了 Kubectl 命令行界面。 你将继续在第3单元中使用它来获取有关已部署的应用程序及其环境的信息。 最常见的操作可以使用以下 kubectl 命令完成：</p>
 <!--
         <ul>
           <li><b>kubectl get</b> - list resources</li>
@@ -187,7 +187,7 @@ weight: 10
 <!--
         <p>You can use these commands to see when applications were deployed, what their current statuses are, where they are running and what their configurations are.</p>
 -->
-        <p>您可以使用这些命令查看应用程序的部署时间，当前状态，运行位置以及配置。</p>
+        <p>你可以使用这些命令查看应用程序的部署时间，当前状态，运行位置以及配置。</p>
 <!--
         <p>Now that we know more about our cluster components and the command line, let's explore our application.</p>
 -->
@@ -199,7 +199,7 @@ weight: 10
 <!--
           <p><i> A node is a worker machine in Kubernetes and may be a VM or physical machine, depending on the cluster. Multiple Pods can run on one Node. </i></p>
 -->
-          <p><i>工作节点是 Kubernetes 中的负责计算的机器，可能是VM或物理计算机，具体取决于群集。多个 Pod 可以在一个工作节点上运行。 </i></p>
+          <p><i>工作节点是 Kubernetes 中的负责计算的机器，可能是VM或物理计算机，具体取决于集群。多个 Pod 可以在一个工作节点上运行。 </i></p>
         </div>
       </div>
     </div>
@@ -210,7 +210,7 @@ weight: 10
 <!--
         <a class="btn btn-lg btn-success" href="/docs/tutorials/kubernetes-basics/explore/explore-interactive/" role="button">Start Interactive Tutorial <span class="btn__next">›</span></a>
 -->
-        <a class="btn btn-lg btn-success" href="/zh/docs/tutorials/kubernetes-basics/explore/explore-interactive/" role="button"> 开始交互式教程 <span class="btn__next">›</span></a>
+        <a class="btn btn-lg btn-success" href="/zh-cn/docs/tutorials/kubernetes-basics/explore/explore-interactive/" role="button"> 开始交互式教程 <span class="btn__next">›</span></a>
       </div>
     </div>
 
diff --git a/content/zh/docs/tutorials/kubernetes-basics/expose/_index.md b/content/zh-cn/docs/tutorials/kubernetes-basics/expose/_index.md
similarity index 100%
rename from content/zh/docs/tutorials/kubernetes-basics/expose/_index.md
rename to content/zh-cn/docs/tutorials/kubernetes-basics/expose/_index.md
diff --git a/content/zh/docs/tutorials/kubernetes-basics/expose/expose-interactive.html b/content/zh-cn/docs/tutorials/kubernetes-basics/expose/expose-interactive.html
similarity index 86%
rename from content/zh/docs/tutorials/kubernetes-basics/expose/expose-interactive.html
rename to content/zh-cn/docs/tutorials/kubernetes-basics/expose/expose-interactive.html
index 6e3f84b6cf..f222991cca 100644
--- a/content/zh/docs/tutorials/kubernetes-basics/expose/expose-interactive.html
+++ b/content/zh-cn/docs/tutorials/kubernetes-basics/expose/expose-interactive.html
@@ -38,7 +38,7 @@ weight: 20
         </div>
         <div class="row">
             <div class="col-md-12">
-                <a class="btn btn-lg btn-success" href="/zh/docs/tutorials/kubernetes-basics/scale/scale-intro/" role="button">继续阅读第5单元<span class="btn__next">›</span></a>
+                <a class="btn btn-lg btn-success" href="/zh-cn/docs/tutorials/kubernetes-basics/scale/scale-intro/" role="button">继续阅读第5单元<span class="btn__next">›</span></a>
             </div>
         </div>
 
diff --git a/content/zh/docs/tutorials/kubernetes-basics/expose/expose-intro.html b/content/zh-cn/docs/tutorials/kubernetes-basics/expose/expose-intro.html
similarity index 79%
rename from content/zh/docs/tutorials/kubernetes-basics/expose/expose-intro.html
rename to content/zh-cn/docs/tutorials/kubernetes-basics/expose/expose-intro.html
index cf21b08728..99e98c5857 100644
--- a/content/zh/docs/tutorials/kubernetes-basics/expose/expose-intro.html
+++ b/content/zh-cn/docs/tutorials/kubernetes-basics/expose/expose-intro.html
@@ -1,6 +1,6 @@
 ---
 <!--title: Using a Service to Expose Your App-->
-title: 使用 Service 暴露您的应用
+title: 使用 Service 暴露你的应用
 weight: 10
 ---
 
@@ -35,13 +35,13 @@ weight: 10
         <h3>Kubernetes Service 总览</h3>
 
 <!--        <p>Kubernetes <a href="/docs/concepts/workloads/pods/pod-overview/">Pods</a> are mortal. Pods in fact have a <a href="/docs/concepts/workloads/pods/pod-lifecycle/">lifecycle</a>. When a worker node dies, the Pods running on the Node are also lost. A <a href="/docs/concepts/workloads/controllers/replicaset/">ReplicaSet</a> might then dynamically drive the cluster back to desired state via creation of new Pods to keep your application running. As another example, consider an image-processing backend with 3 replicas. Those replicas are exchangeable; the front-end system should not care about backend replicas or even if a Pod is lost and recreated. That said, each Pod in a Kubernetes cluster has a unique IP address, even Pods on the same Node, so there needs to be a way of automatically reconciling changes among Pods so that your applications continue to function.</p>-->
-        <p> Kubernetes <a href="/zh/docs/concepts/workloads/pods/">Pod</a> 是转瞬即逝的。 Pod 实际上拥有 <a href="/zh/docs/concepts/workloads/pods/pod-lifecycle/">生命周期</a>。 当一个工作 Node 挂掉后, 在 Node 上运行的 Pod 也会消亡。 <a href="/zh/docs/concepts/workloads/controllers/replicaset/">ReplicaSet</a> 会自动地通过创建新的 Pod 驱动集群回到目标状态，以保证应用程序正常运行。 换一个例子，考虑一个具有3个副本数的用作图像处理的后端程序。这些副本是可替换的; 前端系统不应该关心后端副本，即使 Pod 丢失或重新创建。也就是说，Kubernetes 集群中的每个 Pod (即使是在同一个 Node 上的 Pod )都有一个惟一的 IP 地址，因此需要一种方法自动协调 Pod 之间的变更，以便应用程序保持运行。</p>
+        <p> Kubernetes <a href="/zh-cn/docs/concepts/workloads/pods/">Pod</a> 是转瞬即逝的。 Pod 实际上拥有 <a href="/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/">生命周期</a>。 当一个工作 Node 挂掉后, 在 Node 上运行的 Pod 也会消亡。 <a href="/zh-cn/docs/concepts/workloads/controllers/replicaset/">ReplicaSet</a> 会自动地通过创建新的 Pod 驱动集群回到目标状态，以保证应用程序正常运行。 换一个例子，考虑一个具有3个副本数的用作图像处理的后端程序。这些副本是可替换的; 前端系统不应该关心后端副本，即使 Pod 丢失或重新创建。也就是说，Kubernetes 集群中的每个 Pod (即使是在同一个 Node 上的 Pod )都有一个唯一的 IP 地址，因此需要一种方法自动协调 Pod 之间的变更，以便应用程序保持运行。</p>
 
 <!--        <p>A Service in Kubernetes is an abstraction which defines a logical set of Pods and a policy by which to access them. Services enable a loose coupling between dependent Pods. A Service is defined using YAML <a href="/docs/concepts/configuration/overview/#general-configuration-tips">(preferred)</a> or JSON, like all Kubernetes objects. The set of Pods targeted by a Service is usually determined by a <i>LabelSelector</i> (see below for why you might want a Service without including <code>selector</code> in the spec).</p>-->
-        <p> Kubernetes 中的服务(Service)是一种抽象概念，它定义了 Pod 的逻辑集和访问 Pod 的协议。Service 使从属 Pod 之间的松耦合成为可能。 和其他 Kubernetes 对象一样, Service 用 YAML <a href="/zh/docs/concepts/configuration/overview/#general-configuration-tips">(更推荐)</a> 或者 JSON 来定义. Service 下的一组 Pod 通常由 <i>LabelSelector</i> (请参阅下面的说明为什么您可能想要一个 spec 中不包含<code>selector</code>的服务)来标记。</p>
+        <p> Kubernetes 中的服务(Service)是一种抽象概念，它定义了 Pod 的逻辑集和访问 Pod 的协议。Service 使从属 Pod 之间的松耦合成为可能。 和其他 Kubernetes 对象一样, Service 用 YAML <a href="/zh-cn/docs/concepts/configuration/overview/#general-configuration-tips">(更推荐)</a> 或者 JSON 来定义. Service 下的一组 Pod 通常由 <i>LabelSelector</i> (请参阅下面的说明为什么你可能想要一个 spec 中不包含<code>selector</code>的服务)来标记。</p>
 
 <!--        <p>Although each Pod has a unique IP address, those IPs are not exposed outside the cluster without a Service. Services allow your applications to receive traffic. Services can be exposed in different ways by specifying a <code>type</code> in the ServiceSpec:</p>-->
-        <p>尽管每个 Pod 都有一个唯一的 IP 地址，但是如果没有 Service ，这些 IP 不会暴露在群集外部。Service 允许您的应用程序接收流量。Service 也可以用在 ServiceSpec 标记<code>type</code>的方式暴露</p>
+        <p>尽管每个 Pod 都有一个唯一的 IP 地址，但是如果没有 Service ，这些 IP 不会暴露在集群外部。Service 允许你的应用程序接收流量。Service 也可以用在 ServiceSpec 标记<code>type</code>的方式暴露</p>
 			<ul>
 <!--        <li><i>ClusterIP</i> (default) - Exposes the Service on an internal IP in the cluster. This type makes the Service only reachable from within the cluster.</li>-->
 <!--        <li><i>NodePort</i> - Exposes the Service on the same port of each selected Node in the cluster using NAT. Makes a Service accessible from outside the cluster using <code>&lt;NodeIP&gt;:&lt;NodePort&gt;</code>. Superset of ClusterIP.</li>-->
@@ -53,9 +53,9 @@ weight: 10
 				<li><i>ExternalName</i> - 通过返回带有该名称的 CNAME 记录，使用任意名称(由 spec 中的<code>externalName</code>指定)公开 Service。不使用代理。这种类型需要<code>kube-dns</code>的v1.7或更高版本。</li>
 			</ul>
 <!--        <p>More information about the different types of Services can be found in the <a href="/docs/tutorials/services/source-ip/">Using Source IP</a> tutorial. Also see <a href="/docs/concepts/services-networking/connect-applications-service">Connecting Applications with Services</a>.</p>-->
-        <p>更多关于不同 Service 类型的信息可以在<a href="/zh/docs/tutorials/services/source-ip/">使用源 IP </a> 教程。 也请参阅 <a href="/zh/docs/concepts/services-networking/connect-applications-service">连接应用程序和 Service </a>。</p>
+        <p>更多关于不同 Service 类型的信息可以在<a href="/zh-cn/docs/tutorials/services/source-ip/">使用源 IP </a> 教程。 也请参阅 <a href="/zh-cn/docs/concepts/services-networking/connect-applications-service">连接应用程序和 Service </a>。</p>
 <!--        <p>Additionally, note that there are some use cases with Services that involve not defining <code>selector</code> in the spec. A Service created without <code>selector</code> will also not create the corresponding Endpoints object. This allows users to manually map a Service to specific endpoints. Another possibility why there may be no selector is you are strictly using <code>type: ExternalName</code>.</p>-->
-        <p>另外，需要注意的是有一些 Service 的用例没有在 spec 中定义<code>selector</code>。 一个没有<code>selector</code>创建的 Service 也不会创建相应的端点对象。这允许用户手动将服务映射到特定的端点。没有 selector 的另一种可能是您严格使用<code>type: ExternalName</code>来标记。</p>
+        <p>另外，需要注意的是有一些 Service 的用例没有在 spec 中定义<code>selector</code>。 一个没有<code>selector</code>创建的 Service 也不会创建相应的端点对象。这允许用户手动将服务映射到特定的端点。没有 selector 的另一种可能是你严格使用<code>type: ExternalName</code>来标记。</p>
 			</div>
 			<div class="col-md-4">
 				<div class="content__box content__box_lined">
@@ -92,10 +92,10 @@ weight: 10
 
 		<div class="row">
 			<div class="col-md-8">
-<!--        <p>A Service routes traffic across a set of Pods. Services are the abstraction that allow pods to die and replicate in Kubernetes without impacting your application. Discovery and routing among dependent Pods (such as the frontend and backend components in an application) is handled by Kubernetes Services.</p>-->
+<!--        <p>A Service routes traffic across a set of Pods. Services are the abstraction that allows pods to die and replicate in Kubernetes without impacting your application. Discovery and routing among dependent Pods (such as the frontend and backend components in an application) is handled by Kubernetes Services.</p>-->
         <p>Service 通过一组 Pod 路由通信。Service 是一种抽象，它允许 Pod 死亡并在 Kubernetes 中复制，而不会影响应用程序。在依赖的 Pod (如应用程序中的前端和后端组件)之间进行发现和路由是由Kubernetes Service 处理的。</p>
 <!--        <p>Services match a set of Pods using <a href="/docs/concepts/overview/working-with-objects/labels">labels and selectors</a>, a grouping primitive that allows logical operation on objects in Kubernetes. Labels are key/value pairs attached to objects and can be used in any number of ways:</p>-->
-        <p>Service 匹配一组 Pod 是使用 <a href="/zh/docs/concepts/overview/working-with-objects/labels">标签(Label)和选择器(Selector)</a>, 它们是允许对 Kubernetes 中的对象进行逻辑操作的一种分组原语。标签(Label)是附加在对象上的键/值对，可以以多种方式使用:</p>
+        <p>Service 匹配一组 Pod 是使用 <a href="/zh-cn/docs/concepts/overview/working-with-objects/labels">标签(Label)和选择器(Selector)</a>, 它们是允许对 Kubernetes 中的对象进行逻辑操作的一种分组原语。标签(Label)是附加在对象上的键/值对，可以以多种方式使用:</p>
 				<ul>
 <!--          <li>Designate objects for development, test, and production</li>-->
 <!--          <li>Embed version tags</li>-->
@@ -132,7 +132,7 @@ weight: 10
 		<div class="row">
 			<div class="col-md-12">
 <!--        <a class="btn btn-lg btn-success" href="/docs/tutorials/kubernetes-basics/expose/expose-interactive/" role="button">Start Interactive Tutorial<span class="btn__next">›</span></a>-->
-        <a class="btn btn-lg btn-success" href="/zh/docs/tutorials/kubernetes-basics/expose/expose-interactive/" role="button">开始交互式教程<span class="btn__next">›</span></a>
+        <a class="btn btn-lg btn-success" href="/zh-cn/docs/tutorials/kubernetes-basics/expose/expose-interactive/" role="button">开始交互式教程<span class="btn__next">›</span></a>
 			</div>
 		</div>
 	</main>
diff --git a/content/zh/docs/tutorials/kubernetes-basics/scale/_index.md b/content/zh-cn/docs/tutorials/kubernetes-basics/scale/_index.md
similarity index 100%
rename from content/zh/docs/tutorials/kubernetes-basics/scale/_index.md
rename to content/zh-cn/docs/tutorials/kubernetes-basics/scale/_index.md
diff --git a/content/zh/docs/tutorials/kubernetes-basics/scale/scale-interactive.html b/content/zh-cn/docs/tutorials/kubernetes-basics/scale/scale-interactive.html
similarity index 85%
rename from content/zh/docs/tutorials/kubernetes-basics/scale/scale-interactive.html
rename to content/zh-cn/docs/tutorials/kubernetes-basics/scale/scale-interactive.html
index 14ae3cdbad..39a71a889d 100644
--- a/content/zh/docs/tutorials/kubernetes-basics/scale/scale-interactive.html
+++ b/content/zh-cn/docs/tutorials/kubernetes-basics/scale/scale-interactive.html
@@ -34,7 +34,7 @@ weight: 20
         </div>
         <div class="row">
             <div class="col-md-12">
-                <a class="btn btn-lg btn-success" href="/zh/docs/tutorials/kubernetes-basics/update/update-intro/" role="button"><!--Continue to Module 6-->继续参阅第6单元<span class="btn__next">›</span></a>
+                <a class="btn btn-lg btn-success" href="/zh-cn/docs/tutorials/kubernetes-basics/update/update-intro/" role="button"><!--Continue to Module 6-->继续参阅第6单元<span class="btn__next">›</span></a>
             </div>
         </div>
     
diff --git a/content/zh/docs/tutorials/kubernetes-basics/scale/scale-intro.html b/content/zh-cn/docs/tutorials/kubernetes-basics/scale/scale-intro.html
similarity index 89%
rename from content/zh/docs/tutorials/kubernetes-basics/scale/scale-intro.html
rename to content/zh-cn/docs/tutorials/kubernetes-basics/scale/scale-intro.html
index 5d6e13af8d..16facbe62e 100644
--- a/content/zh/docs/tutorials/kubernetes-basics/scale/scale-intro.html
+++ b/content/zh-cn/docs/tutorials/kubernetes-basics/scale/scale-intro.html
@@ -19,7 +19,7 @@ weight: 10
         <div class="row">
      <div class="col-md-8">
 					<!-- <h3>Objectives</h3> -->
-					<h3>目的</h3>
+					<h3>目标</h3>
                 <ul>
 										<!-- <li>Scale an app using kubectl.</li> -->
 										<li>用 kubectl 扩缩应用程序</li>
@@ -33,7 +33,7 @@ weight: 10
 						<!-- <p>In the previous modules we created a <a href="/docs/concepts/workloads/controllers/deployment/"> Deployment</a>,
 							and then exposed it publicly via a <a href="/docs/concepts/services-networking/service/">Service</a>.
 							The Deployment created only one Pod for running our application.  When traffic increases, we will need to scale the application to keep up with  user demand.</p> -->
-						<p>在之前的模块中，我们创建了一个 <a href="/zh/docs/concepts/workloads/controllers/deployment/"> Deployment</a>，然后通过 <a href="/zh/docs/concepts/services-networking/service/">Service</a>让其可以开放访问。Deployment 仅为跑这个应用程序创建了一个 Pod。 当流量增加时，我们需要扩容应用程序满足用户需求。</p>
+						<p>在之前的模块中，我们创建了一个 <a href="/zh-cn/docs/concepts/workloads/controllers/deployment/"> Deployment</a>，然后通过 <a href="/zh-cn/docs/concepts/services-networking/service/">Service</a>让其可以开放访问。Deployment 仅为跑这个应用程序创建了一个 Pod。 当流量增加时，我们需要扩容应用程序满足用户需求。</p>
 
 						<!-- <p><b>Scaling</b> is accomplished by changing the number of replicas in a Deployment</p> -->
 						<p><b>扩缩</b> 是通过改变 Deployment 中的副本数量来实现的。</p>
@@ -99,7 +99,7 @@ weight: 10
 
                 <!-- <p>Scaling out a Deployment will ensure new Pods are created and scheduled to Nodes with available resources. Scaling in will reduce the number of Pods to the new desired state. Kubernetes also supports
 									<a href="/docs/user-guide/horizontal-pod-autoscaling/">autoscaling</a> of Pods, but it is outside of the scope of this tutorial. Scaling to zero is also possible, and it will terminate all Pods of the specified Deployment.</p> -->
-								<p>扩展 Deployment 将创建新的 Pods，并将资源调度请求分配到有可用资源的节点上，收缩 会将 Pods 数量减少至所需的状态。Kubernetes 还支持 Pods 的<a href="/zh/docs/tasks/run-application/horizontal-pod-autoscale/">自动缩放</a>，但这并不在本教程的讨论范围内。将 Pods 数量收缩到0也是可以的，但这会终止 Deployment 上所有已经部署的 Pods。</p>
+								<p>扩展 Deployment 将创建新的 Pods，并将资源调度请求分配到有可用资源的节点上，收缩 会将 Pods 数量减少至所需的状态。Kubernetes 还支持 Pods 的<a href="/zh-cn/docs/tasks/run-application/horizontal-pod-autoscale/">自动缩放</a>，但这并不在本教程的讨论范围内。将 Pods 数量收缩到0也是可以的，但这会终止 Deployment 上所有已经部署的 Pods。</p>
 
 								<!-- <p>Running multiple instances of an application will require a way to distribute the traffic to all of them. Services have an integrated load-balancer that will distribute network traffic to all Pods of an exposed Deployment.
 									Services will monitor continuously the running Pods using endpoints, to ensure the traffic is sent only to available Pods.</p> -->
@@ -127,7 +127,7 @@ weight: 10
         <div class="row">
             <div class="col-md-12">
 								<!-- <a class="btn btn-lg btn-success" href="/docs/tutorials/kubernetes-basics/scale/scale-interactive/" role="button">Start Interactive Tutorial <span class="btn__next">›</span></a> -->
-								<a class="btn btn-lg btn-success" href="/zh/docs/tutorials/kubernetes-basics/scale/scale-interactive/" role="button">开始互动教程 <span class="btn__next">›</span></a>
+								<a class="btn btn-lg btn-success" href="/zh-cn/docs/tutorials/kubernetes-basics/scale/scale-interactive/" role="button">开始互动教程 <span class="btn__next">›</span></a>
             </div>
         </div>
 
diff --git a/content/zh/docs/tutorials/kubernetes-basics/update/_index.md b/content/zh-cn/docs/tutorials/kubernetes-basics/update/_index.md
similarity index 100%
rename from content/zh/docs/tutorials/kubernetes-basics/update/_index.md
rename to content/zh-cn/docs/tutorials/kubernetes-basics/update/_index.md
diff --git a/content/zh/docs/tutorials/kubernetes-basics/update/update-interactive.html b/content/zh-cn/docs/tutorials/kubernetes-basics/update/update-interactive.html
similarity index 86%
rename from content/zh/docs/tutorials/kubernetes-basics/update/update-interactive.html
rename to content/zh-cn/docs/tutorials/kubernetes-basics/update/update-interactive.html
index 9befc40bd7..e736e54638 100644
--- a/content/zh/docs/tutorials/kubernetes-basics/update/update-interactive.html
+++ b/content/zh-cn/docs/tutorials/kubernetes-basics/update/update-interactive.html
@@ -32,7 +32,7 @@ weight: 20
         </div>
         <div class="row">
             <div class="col-md-12">
-                <a class="btn btn-lg btn-success" href="/zh/docs/tutorials/kubernetes-basics/" role="button">回到 Kubernetes 的基础<span class="btn__next">›</span></a>
+                <a class="btn btn-lg btn-success" href="/zh-cn/docs/tutorials/kubernetes-basics/" role="button">回到 Kubernetes 的基础<span class="btn__next">›</span></a>
             </div>
         </div>
     </main>
diff --git a/content/zh/docs/tutorials/kubernetes-basics/update/update-intro.html b/content/zh-cn/docs/tutorials/kubernetes-basics/update/update-intro.html
similarity index 97%
rename from content/zh/docs/tutorials/kubernetes-basics/update/update-intro.html
rename to content/zh-cn/docs/tutorials/kubernetes-basics/update/update-intro.html
index 8f53c752c3..6d25312eac 100644
--- a/content/zh/docs/tutorials/kubernetes-basics/update/update-intro.html
+++ b/content/zh-cn/docs/tutorials/kubernetes-basics/update/update-intro.html
@@ -177,7 +177,7 @@ weight: 10
                 <!--
                 <a class="btn btn-lg btn-success" href="/docs/tutorials/kubernetes-basics/update/update-interactive/" role="button">Start Interactive Tutorial <span class="btn__next">›</span></a>
                 -->
-                <a class="btn btn-lg btn-success" href="/zh/docs/tutorials/kubernetes-basics/update/update-interactive/" role="button">启动交互教程<span class="btn__next">›</span></a>
+                <a class="btn btn-lg btn-success" href="/zh-cn/docs/tutorials/kubernetes-basics/update/update-interactive/" role="button">启动交互教程<span class="btn__next">›</span></a>
                 
             </div>
         </div>
diff --git a/content/zh-cn/docs/tutorials/security/_index.md b/content/zh-cn/docs/tutorials/security/_index.md
new file mode 100644
index 0000000000..0b95f9304e
--- /dev/null
+++ b/content/zh-cn/docs/tutorials/security/_index.md
@@ -0,0 +1,5 @@
+---
+title: "安全"
+weight: 40
+---
+
diff --git a/content/zh-cn/docs/tutorials/security/apparmor.md b/content/zh-cn/docs/tutorials/security/apparmor.md
new file mode 100644
index 0000000000..a1669d2a5d
--- /dev/null
+++ b/content/zh-cn/docs/tutorials/security/apparmor.md
@@ -0,0 +1,742 @@
+---
+title: 使用 AppArmor 限制容器对资源的访问
+content_type: tutorial
+weight: 10
+---
+<!--
+reviewers:
+- stclair
+title: Restrict a Container's Access to Resources with AppArmor
+content_type: tutorial
+weight: 10
+-->
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.4" state="beta" >}}
+
+<!--
+AppArmor is a Linux kernel security module that supplements the standard Linux user and group based
+permissions to confine programs to a limited set of resources. AppArmor can be configured for any
+application to reduce its potential attack surface and provide greater in-depth defense. It is
+configured through profiles tuned to allow the access needed by a specific program or container,
+such as Linux capabilities, network access, file permissions, etc. Each profile can be run in either
+*enforcing* mode, which blocks access to disallowed resources, or *complain* mode, which only reports
+violations.
+-->
+AppArmor 是一个 Linux 内核安全模块，
+它补充了基于标准 Linux 用户和组的权限，将程序限制在一组有限的资源中。
+AppArmor 可以配置为任何应用程序减少潜在的攻击面，并且提供更加深入的防御。
+它通过调整配置文件进行配置，以允许特定程序或容器所需的访问，
+如 Linux 权能字、网络访问、文件权限等。
+每个配置文件都可以在
+*强制（enforcing）* 模式（阻止访问不允许的资源）或
+*投诉（complain）* 模式（仅报告冲突）下运行。
+
+<!--
+AppArmor can help you to run a more secure deployment by restricting what containers are allowed to
+do, and/or provide better auditing through system logs. However, it is important to keep in mind
+that AppArmor is not a silver bullet and can only do so much to protect against exploits in your
+application code. It is important to provide good, restrictive profiles, and harden your
+applications and cluster from other angles as well.
+-->
+AppArmor 可以通过限制允许容器执行的操作，
+和/或通过系统日志提供更好的审计来帮助你运行更安全的部署。
+但是，重要的是要记住 AppArmor 不是灵丹妙药，
+只能做部分事情来防止应用程序代码中的漏洞。
+提供良好的限制性配置文件，并从其他角度强化你的应用程序和集群非常重要。
+
+## {{% heading "objectives" %}}
+
+<!--
+* See an example of how to load a profile on a node
+* Learn how to enforce the profile on a Pod
+* Learn how to check that the profile is loaded
+* See what happens when a profile is violated
+* See what happens when a profile cannot be loaded
+-->
+* 查看如何在节点上加载配置文件示例
+* 了解如何在 Pod 上强制执行配置文件
+* 了解如何检查配置文件是否已加载
+* 查看违反配置文件时会发生什么
+* 查看无法加载配置文件时会发生什么
+
+## {{% heading "prerequisites" %}}
+
+<!--
+Make sure:
+-->
+确保：
+
+<!--
+1. Kubernetes version is at least v1.4 -- Kubernetes support for AppArmor was added in
+   v1.4. Kubernetes components older than v1.4 are not aware of the new AppArmor annotations, and
+   will **silently ignore** any AppArmor settings that are provided. To ensure that your Pods are
+   receiving the expected protections, it is important to verify the Kubelet version of your nodes:
+
+   ```shell
+   kubectl get nodes -o=jsonpath=$'{range .items[*]}{@.metadata.name}: {@.status.nodeInfo.kubeletVersion}\n{end}'
+   ```
+   ```
+   gke-test-default-pool-239f5d02-gyn2: v1.4.0
+   gke-test-default-pool-239f5d02-x1kf: v1.4.0
+   gke-test-default-pool-239f5d02-xwux: v1.4.0
+   ```
+-->
+1. Kubernetes 版本至少是 v1.4 —— AppArmor 在 Kubernetes v1.4 版本中才添加了对 AppArmor 的支持。
+   早于 v1.4 版本的 Kubernetes 组件不知道新的 AppArmor 注解
+   并且将会 **默认忽略** 提供的任何 AppArmor 设置。
+   为了确保你的 Pod 能够得到预期的保护，必须验证节点的 Kubelet 版本：
+
+   ```shell
+   kubectl get nodes -o=jsonpath=$'{range .items[*]}{@.metadata.name}: {@.status.nodeInfo.kubeletVersion}\n{end}'
+   ```
+   ```
+   gke-test-default-pool-239f5d02-gyn2: v1.4.0
+   gke-test-default-pool-239f5d02-x1kf: v1.4.0
+   gke-test-default-pool-239f5d02-xwux: v1.4.0
+   ```
+
+<!--
+2. AppArmor kernel module is enabled -- For the Linux kernel to enforce an AppArmor profile, the
+   AppArmor kernel module must be installed and enabled. Several distributions enable the module by
+   default, such as Ubuntu and SUSE, and many others provide optional support. To check whether the
+   module is enabled, check the `/sys/module/apparmor/parameters/enabled` file:
+
+   ```shell
+   cat /sys/module/apparmor/parameters/enabled
+   Y
+   ```
+
+   If the Kubelet contains AppArmor support (>= v1.4), it will refuse to run a Pod with AppArmor
+   options if the kernel module is not enabled.
+
+  {{< note >}}
+  Ubuntu carries many AppArmor patches that have not been merged into the upstream Linux
+  kernel, including patches that add additional hooks and features. Kubernetes has only been
+  tested with the upstream version, and does not promise support for other features.
+  {{< /note >}}
+-->
+2. AppArmor 内核模块已启用 —— 要使 Linux 内核强制执行 AppArmor 配置文件，
+   必须安装并且启动 AppArmor 内核模块。默认情况下，有几个发行版支持该模块，
+   如 Ubuntu 和 SUSE，还有许多发行版提供可选支持。要检查模块是否已启用，请检查
+   `/sys/module/apparmor/parameters/enabled` 文件：
+
+   ```shell
+   cat /sys/module/apparmor/parameters/enabled
+   Y
+   ```
+
+   如果 Kubelet 包含 AppArmor 支持（>= v1.4），
+   但是内核模块未启用，它将拒绝运行带有 AppArmor 选项的 Pod。
+
+  {{< note >}}
+  Ubuntu 携带了许多没有合并到上游 Linux 内核中的 AppArmor 补丁，
+  包括添加附加钩子和特性的补丁。Kubernetes 只在上游版本中测试过，不承诺支持其他特性。
+  {{< /note >}}
+
+<!--
+3. Container runtime supports AppArmor -- Currently all common Kubernetes-supported container
+   runtimes should support AppArmor, like {{< glossary_tooltip term_id="docker">}},
+   {{< glossary_tooltip term_id="cri-o" >}} or {{< glossary_tooltip term_id="containerd" >}}.
+   Please refer to the corresponding runtime documentation and verify that the cluster fulfills
+   the requirements to use AppArmor.
+-->
+3. 容器运行时支持 AppArmor —— 目前所有常见的 Kubernetes 支持的容器运行时都应该支持 AppArmor，
+   像 {{< glossary_tooltip term_id="docker">}}，{{< glossary_tooltip term_id="cri-o" >}}
+   或 {{< glossary_tooltip term_id="containerd" >}}。
+   请参考相应的运行时文档并验证集群是否满足使用 AppArmor 的要求。
+
+<!--
+4. Profile is loaded -- AppArmor is applied to a Pod by specifying an AppArmor profile that each
+   container should be run with. If any of the specified profiles is not already loaded in the
+   kernel, the Kubelet (>= v1.4) will reject the Pod. You can view which profiles are loaded on a
+   node by checking the `/sys/kernel/security/apparmor/profiles` file. For example:
+
+   ```shell
+   ssh gke-test-default-pool-239f5d02-gyn2 "sudo cat /sys/kernel/security/apparmor/profiles | sort"
+   ```
+   ```
+   apparmor-test-deny-write (enforce)
+   apparmor-test-audit-write (enforce)
+   docker-default (enforce)
+   k8s-nginx (enforce)
+   ```
+
+   For more details on loading profiles on nodes, see
+   [Setting up nodes with profiles](#setting-up-nodes-with-profiles).
+-->
+4. 配置文件已加载 —— 通过指定每个容器都应使用的 AppArmor 配置文件，
+   AppArmor 会被应用到 Pod 上。如果指定的任何配置文件尚未加载到内核，
+   Kubelet（>= v1.4） 将拒绝 Pod。
+   通过检查 `/sys/kernel/security/apparmor/profiles` 文件，
+   可以查看节点加载了哪些配置文件。例如:
+
+   ```shell
+   ssh gke-test-default-pool-239f5d02-gyn2 "sudo cat /sys/kernel/security/apparmor/profiles | sort"
+   ```
+   ```
+   apparmor-test-deny-write (enforce)
+   apparmor-test-audit-write (enforce)
+   docker-default (enforce)
+   k8s-nginx (enforce)
+   ```
+
+   有关在节点上加载配置文件的详细信息，请参见[使用配置文件设置节点](#setting-up-nodes-with-profiles)。
+
+<!--
+As long as the Kubelet version includes AppArmor support (>= v1.4), the Kubelet will reject a Pod
+with AppArmor options if any of the prerequisites are not met. You can also verify AppArmor support
+on nodes by checking the node ready condition message (though this is likely to be removed in a
+later release):
+-->
+只要 Kubelet 版本包含 AppArmor 支持(>=v1.4)，
+如果不满足这些先决条件，Kubelet 将拒绝带有 AppArmor 选项的 Pod。
+你还可以通过检查节点就绪状况消息来验证节点上的 AppArmor 支持（尽管这可能会在以后的版本中删除）：
+
+```shell
+kubectl get nodes -o=jsonpath=$'{range .items[*]}{@.metadata.name}: {.status.conditions[?(@.reason=="KubeletReady")].message}\n{end}'
+```
+```
+gke-test-default-pool-239f5d02-gyn2: kubelet is posting ready status. AppArmor enabled
+gke-test-default-pool-239f5d02-x1kf: kubelet is posting ready status. AppArmor enabled
+gke-test-default-pool-239f5d02-xwux: kubelet is posting ready status. AppArmor enabled
+```
+
+<!-- lessoncontent -->
+
+<!--
+## Securing a Pod
+-->
+## 保护 Pod {#securing-a-pod}
+
+{{< note >}}
+<!--
+AppArmor is currently in beta, so options are specified as annotations. Once support graduates to
+general availability, the annotations will be replaced with first-class fields (more details in
+[Upgrade path to GA](#upgrade-path-to-general-availability)).
+-->
+AppArmor 目前处于 Beta 阶段，因此选项以注解形式设定。
+一旦 AppArmor 支持进入正式发布阶段，注解将被替换为一阶的资源字段
+（更多详情参见[升级到 GA 的途径](#upgrade-path-to-general-availability)）。
+{{< /note >}}
+
+<!--
+AppArmor profiles are specified *per-container*. To specify the AppArmor profile to run a Pod
+container with, add an annotation to the Pod's metadata:
+-->
+AppArmor 配置文件是按 *逐个容器* 的形式来设置的。
+要指定用来运行 Pod 容器的 AppArmor 配置文件，请向 Pod 的 metadata 添加注解：
+
+```yaml
+container.apparmor.security.beta.kubernetes.io/<container_name>: <profile_ref>
+```
+
+<!--
+Where `<container_name>` is the name of the container to apply the profile to, and `<profile_ref>`
+specifies the profile to apply. The `profile_ref` can be one of:
+-->
+`<container_name>` 的名称是配置文件所针对的容器的名称，`<profile_def>` 则设置要应用的配置文件。
+`<profile_ref>` 可以是以下取值之一：
+
+<!--
+* `runtime/default` to apply the runtime's default profile
+* `localhost/<profile_name>` to apply the profile loaded on the host with the name `<profile_name>`
+* `unconfined` to indicate that no profiles will be loaded
+-->
+* `runtime/default` 应用运行时的默认配置
+* `localhost/<profile_name>` 应用在主机上加载的名为 `<profile_name>` 的配置文件
+* `unconfined` 表示不加载配置文件
+
+<!--
+See the [API Reference](#api-reference) for the full details on the annotation and profile name formats.
+-->
+有关注解和配置文件名称格式的详细信息，请参阅 [API 参考](#api-reference)。
+
+<!--
+Kubernetes AppArmor enforcement works by first checking that all the prerequisites have been
+met, and then forwarding the profile selection to the container runtime for enforcement. If the
+prerequisites have not been met, the Pod will be rejected, and will not run.
+-->
+Kubernetes AppArmor 强制执行机制首先检查所有先决条件都已满足，
+然后将所选的配置文件转发到容器运行时进行强制执行。
+如果未满足先决条件，Pod 将被拒绝，并且不会运行。
+
+<!--
+To verify that the profile was applied, you can look for the AppArmor security option listed in the container created event:
+-->
+要验证是否应用了配置文件，可以在容器创建事件中查找所列出的 AppArmor 安全选项：
+
+```shell
+kubectl get events | grep Created
+```
+```
+22s        22s         1         hello-apparmor     Pod       spec.containers{hello}   Normal    Created     {kubelet e2e-test-stclair-node-pool-31nt}   Created container with docker id 269a53b202d3; Security:[seccomp=unconfined apparmor=k8s-apparmor-example-deny-write]
+```
+
+<!--
+You can also verify directly that the container's root process is running with the correct profile by checking its proc attr:
+-->
+你还可以通过检查容器的 proc attr，直接验证容器的根进程是否以正确的配置文件运行：
+
+```shell
+kubectl exec <pod_name> cat /proc/1/attr/current
+```
+```
+k8s-apparmor-example-deny-write (enforce)
+```
+
+<!--
+## Example
+-->
+## 举例 {#example}
+
+<!--
+*This example assumes you have already set up a cluster with AppArmor support.*
+-->
+**本例假设你已经设置了一个集群使用 AppArmor 支持。**
+
+<!--
+First, we need to load the profile we want to use onto our nodes. This profile denies all file writes:
+-->
+首先，我们需要将要使用的配置文件加载到节点上。配置文件拒绝所有文件写入：
+
+```shell
+#include <tunables/global>
+
+profile k8s-apparmor-example-deny-write flags=(attach_disconnected) {
+  #include <abstractions/base>
+
+  file,
+
+  # Deny all file writes.
+  deny /** w,
+}
+```
+
+<!--
+Since we don't know where the Pod will be scheduled, we'll need to load the profile on all our
+nodes. For this example we'll use SSH to install the profiles, but other approaches are
+discussed in [Setting up nodes with profiles](#setting-up-nodes-with-profiles).
+-->
+由于我们不知道 Pod 将被调度到哪里，我们需要在所有节点上加载配置文件。
+在本例中，我们将使用 SSH 来安装概要文件，
+但是在[使用配置文件设置节点](#setting-up-nodes-with-profiles)中讨论了其他方法。
+
+```shell
+NODES=(
+    # The SSH-accessible domain names of your nodes
+    gke-test-default-pool-239f5d02-gyn2.us-central1-a.my-k8s
+    gke-test-default-pool-239f5d02-x1kf.us-central1-a.my-k8s
+    gke-test-default-pool-239f5d02-xwux.us-central1-a.my-k8s)
+for NODE in ${NODES[*]}; do ssh $NODE 'sudo apparmor_parser -q <<EOF
+#include <tunables/global>
+
+profile k8s-apparmor-example-deny-write flags=(attach_disconnected) {
+  #include <abstractions/base>
+
+  file,
+
+  # Deny all file writes.
+  deny /** w,
+}
+EOF'
+done
+```
+
+<!--
+Next, we'll run a simple "Hello AppArmor" pod with the deny-write profile:
+-->
+接下来，我们将运行一个带有拒绝写入配置文件的简单 “Hello AppArmor” Pod：
+
+{{< codenew file="pods/security/hello-apparmor.yaml" >}}
+
+```shell
+kubectl create -f ./hello-apparmor.yaml
+```
+
+<!--
+If we look at the pod events, we can see that the Pod container was created with the AppArmor
+profile "k8s-apparmor-example-deny-write":
+-->
+如果我们查看 Pod 事件，我们可以看到 Pod 容器是用 AppArmor
+配置文件 “k8s-apparmor-example-deny-write” 所创建的：
+
+```shell
+kubectl get events | grep hello-apparmor
+```
+```
+14s        14s         1         hello-apparmor   Pod                                Normal    Scheduled   {default-scheduler }                           Successfully assigned hello-apparmor to gke-test-default-pool-239f5d02-gyn2
+14s        14s         1         hello-apparmor   Pod       spec.containers{hello}   Normal    Pulling     {kubelet gke-test-default-pool-239f5d02-gyn2}   pulling image "busybox"
+13s        13s         1         hello-apparmor   Pod       spec.containers{hello}   Normal    Pulled      {kubelet gke-test-default-pool-239f5d02-gyn2}   Successfully pulled image "busybox"
+13s        13s         1         hello-apparmor   Pod       spec.containers{hello}   Normal    Created     {kubelet gke-test-default-pool-239f5d02-gyn2}   Created container with docker id 06b6cd1c0989; Security:[seccomp=unconfined apparmor=k8s-apparmor-example-deny-write]
+13s        13s         1         hello-apparmor   Pod       spec.containers{hello}   Normal    Started     {kubelet gke-test-default-pool-239f5d02-gyn2}   Started container with docker id 06b6cd1c0989
+```
+
+<!--
+We can verify that the container is actually running with that profile by checking its proc attr:
+-->
+我们可以通过检查该配置文件的 proc attr 来验证容器是否实际使用该配置文件运行：
+
+```shell
+kubectl exec hello-apparmor -- cat /proc/1/attr/current
+```
+```
+k8s-apparmor-example-deny-write (enforce)
+```
+
+<!--
+Finally, we can see what happens if we try to violate the profile by writing to a file:
+-->
+最后，我们可以看到，如果我们尝试通过写入文件来违反配置文件会发生什么：
+
+```shell
+kubectl exec hello-apparmor -- touch /tmp/test
+```
+```
+touch: /tmp/test: Permission denied
+error: error executing remote command: command terminated with non-zero exit code: Error executing in Docker Container: 1
+```
+
+<!--
+To wrap up, let's look at what happens if we try to specify a profile that hasn't been loaded:
+-->
+最后，让我们看看如果我们试图指定一个尚未加载的配置文件会发生什么：
+
+```shell
+kubectl create -f /dev/stdin <<EOF
+```
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: hello-apparmor-2
+  annotations:
+    container.apparmor.security.beta.kubernetes.io/hello: localhost/k8s-apparmor-example-allow-write
+spec:
+  containers:
+  - name: hello
+    image: busybox:1.28
+    command: [ "sh", "-c", "echo 'Hello AppArmor!' && sleep 1h" ]
+EOF
+pod/hello-apparmor-2 created
+```
+
+```shell
+kubectl describe pod hello-apparmor-2
+```
+```
+Name:          hello-apparmor-2
+Namespace:     default
+Node:          gke-test-default-pool-239f5d02-x1kf/
+Start Time:    Tue, 30 Aug 2016 17:58:56 -0700
+Labels:        <none>
+Annotations:   container.apparmor.security.beta.kubernetes.io/hello=localhost/k8s-apparmor-example-allow-write
+Status:        Pending
+Reason:        AppArmor
+Message:       Pod Cannot enforce AppArmor: profile "k8s-apparmor-example-allow-write" is not loaded
+IP:
+Controllers:   <none>
+Containers:
+  hello:
+    Container ID:
+    Image:     busybox
+    Image ID:
+    Port:
+    Command:
+      sh
+      -c
+      echo 'Hello AppArmor!' && sleep 1h
+    State:              Waiting
+      Reason:           Blocked
+    Ready:              False
+    Restart Count:      0
+    Environment:        <none>
+    Mounts:
+      /var/run/secrets/kubernetes.io/serviceaccount from default-token-dnz7v (ro)
+Conditions:
+  Type          Status
+  Initialized   True
+  Ready         False
+  PodScheduled  True
+Volumes:
+  default-token-dnz7v:
+    Type:    Secret (a volume populated by a Secret)
+    SecretName:    default-token-dnz7v
+    Optional:   false
+QoS Class:      BestEffort
+Node-Selectors: <none>
+Tolerations:    <none>
+Events:
+  FirstSeen    LastSeen    Count    From                        SubobjectPath    Type        Reason        Message
+  ---------    --------    -----    ----                        -------------    --------    ------        -------
+  23s          23s         1        {default-scheduler }                         Normal      Scheduled     Successfully assigned hello-apparmor-2 to e2e-test-stclair-node-pool-t1f5
+  23s          23s         1        {kubelet e2e-test-stclair-node-pool-t1f5}             Warning        AppArmor    Cannot enforce AppArmor: profile "k8s-apparmor-example-allow-write" is not loaded
+```
+
+<!--
+Note the pod status is Pending, with a helpful error message: `Pod Cannot enforce AppArmor: profile
+"k8s-apparmor-example-allow-write" is not loaded`. An event was also recorded with the same message.
+-->
+注意 Pod 呈现 Pending 状态，并且显示一条有用的错误信息：
+`Pod Cannot enforce AppArmor: profile "k8s-apparmor-example-allow-write" is not loaded`。
+还用相同的消息记录了一个事件。
+
+<!--
+## Administration
+-->
+## 管理 {#administration}
+
+<!--
+### Setting up nodes with profiles
+-->
+### 使用配置文件设置节点 {#setting-up-nodes-with-profiles}
+
+<!--
+Kubernetes does not currently provide any native mechanisms for loading AppArmor profiles onto
+nodes. There are lots of ways to setup the profiles though, such as:
+-->
+Kubernetes 目前不提供任何本地机制来将 AppArmor 配置文件加载到节点上。
+有很多方法可以设置配置文件，例如：
+
+<!--
+* Through a [DaemonSet](/docs/concepts/workloads/controllers/daemonset/) that runs a Pod on each node to
+  ensure the correct profiles are loaded. An example implementation can be found
+  [here](https://git.k8s.io/kubernetes/test/images/apparmor-loader).
+* At node initialization time, using your node initialization scripts (e.g. Salt, Ansible, etc.) or
+  image.
+* By copying the profiles to each node and loading them through SSH, as demonstrated in the
+  [Example](#example).
+-->
+* 通过在每个节点上运行 Pod 的
+  [DaemonSet](/zh-cn/docs/concepts/workloads/controllers/daemonset/)来确保加载了正确的配置文件。
+  可以在[这里](https://git.k8s.io/kubernetes/test/images/apparmor-loader)找到实现示例。
+* 在节点初始化时，使用节点初始化脚本(例如 Salt、Ansible 等)或镜像。
+* 通过将配置文件复制到每个节点并通过 SSH 加载它们，如[示例](#example)。
+
+<!--
+The scheduler is not aware of which profiles are loaded onto which node, so the full set of profiles
+must be loaded onto every node.  An alternative approach is to add a node label for each profile (or
+class of profiles) on the node, and use a
+[node selector](/docs/concepts/scheduling-eviction/assign-pod-node/) to ensure the Pod is run on a
+node with the required profile.
+-->
+调度程序不知道哪些配置文件加载到哪个节点上，因此必须将全套配置文件加载到每个节点上。
+另一种方法是为节点上的每个配置文件（或配置文件类）添加节点标签，
+并使用[节点选择器](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/)确保
+Pod 在具有所需配置文件的节点上运行。
+
+<!--
+### Restricting profiles with the PodSecurityPolicy
+-->
+### 使用 PodSecurityPolicy 限制配置文件 {#restricting-profiles-with-the-podsecuritypolicy}
+
+{{< note >}}
+<!--
+PodSecurityPolicy is deprecated in Kubernetes v1.21, and will be removed in v1.25.
+See [PodSecurityPolicy](/docs/concepts/security/pod-security-policy/) documentation for more information.
+-->
+PodSecurityPolicy 在 Kubernetes v1.21 版本中已被废弃，将在 v1.25 版本移除。
+查看 [PodSecurityPolicy](/zh-cn/docs/concepts/security/pod-security-policy/) 文档获取更多信息。
+{{< /note >}}
+
+<!--
+If the PodSecurityPolicy extension is enabled, cluster-wide AppArmor restrictions can be applied. To
+enable the PodSecurityPolicy, the following flag must be set on the `apiserver`:
+-->
+如果启用了 PodSecurityPolicy 扩展，则可以应用集群范围的 AppArmor 限制。
+要启用 PodSecurityPolicy，必须在 `apiserver` 上设置以下标志：
+
+```
+--enable-admission-plugins=PodSecurityPolicy[,others...]
+```
+
+<!--
+The AppArmor options can be specified as annotations on the PodSecurityPolicy:
+-->
+AppArmor 选项可以指定为 PodSecurityPolicy 上的注解：
+
+```yaml
+apparmor.security.beta.kubernetes.io/defaultProfileName: <profile_ref>
+apparmor.security.beta.kubernetes.io/allowedProfileNames: <profile_ref>[,others...]
+```
+
+<!--
+The default profile name option specifies the profile to apply to containers by default when none is
+specified. The allowed profile names option specifies a list of profiles that Pod containers are
+allowed to be run with. If both options are provided, the default must be allowed. The profiles are
+specified in the same format as on containers. See the [API Reference](#api-reference) for the full
+specification.
+-->
+默认配置文件名选项指定默认情况下在未指定任何配置文件时应用于容器的配置文件。
+所允许的配置文件名称选项指定允许 Pod 容器运行期间所对应的配置文件列表。
+如果同时提供了这两个选项，则必须允许默认值。
+配置文件的指定格式与容器上的相同。有关完整规范，请参阅 [API 参考](#api-reference)。
+
+<!--
+### Disabling AppArmor
+-->
+### 禁用 AppArmor {#disabling-apparmor}
+
+<!--
+If you do not want AppArmor to be available on your cluster, it can be disabled by a command-line flag:
+-->
+如果你不希望 AppArmor 在集群上可用，可以通过命令行标志禁用它：
+
+```
+--feature-gates=AppArmor=false
+```
+
+<!--
+When disabled, any Pod that includes an AppArmor profile will fail validation with a "Forbidden"
+error.
+-->
+禁用时，任何包含 AppArmor 配置文件的 Pod 都将导致验证失败，且返回 “Forbidden” 错误。
+
+{{<note>}}
+<!--
+Even if the Kubernetes feature is disabled, runtimes may still enforce the default profile. The
+option to disable the AppArmor feature will be removed when AppArmor graduates to general
+availability (GA).
+-->
+即使此 Kubernetes 特性被禁用，运行时仍可能强制执行默认配置文件。
+当 AppArmor 升级为正式版 (GA) 时，禁用 AppArmor 功能的选项将被删除。
+
+{{</note>}}
+
+
+<!--
+## Authoring Profiles
+-->
+## 编写配置文件 {#authoring-profiles}
+
+<!--
+Getting AppArmor profiles specified correctly can be a tricky business. Fortunately there are some
+tools to help with that:
+-->
+获得正确指定的 AppArmor 配置文件可能是一件棘手的事情。幸运的是，有一些工具可以帮助你做到这一点：
+
+<!--
+* `aa-genprof` and `aa-logprof` generate profile rules by monitoring an application's activity and
+  logs, and admitting the actions it takes. Further instructions are provided by the
+  [AppArmor documentation](https://gitlab.com/apparmor/apparmor/wikis/Profiling_with_tools).
+* [bane](https://github.com/jfrazelle/bane) is an AppArmor profile generator for Docker that uses a
+  simplified profile language.
+-->
+* `aa-genprof` 和 `aa-logprof`
+  通过监视应用程序的活动和日志并准许它所执行的操作来生成配置文件规则。
+  [AppArmor 文档](https://gitlab.com/apparmor/apparmor/wikis/Profiling_with_tools)提供了进一步的指导。
+* [bane](https://github.com/jfrazelle/bane)
+  是一个用于 Docker的 AppArmor 配置文件生成器，它使用一种简化的画像语言（profile language）
+
+<!--
+To debug problems with AppArmor, you can check the system logs to see what, specifically, was
+denied. AppArmor logs verbose messages to `dmesg`, and errors can usually be found in the system
+logs or through `journalctl`. More information is provided in
+[AppArmor failures](https://gitlab.com/apparmor/apparmor/wikis/AppArmor_Failures).
+-->
+想要调试 AppArmor 的问题，你可以检查系统日志，查看具体拒绝了什么。
+AppArmor 将详细消息记录到 `dmesg`，
+错误通常可以在系统日志中或通过 `journalctl` 找到。
+更多详细信息见 [AppArmor 失败](https://gitlab.com/apparmor/apparmor/wikis/AppArmor_Failures)。
+
+<!--
+## API Reference
+-->
+## API 参考 {#api-reference}
+
+<!--
+### Pod Annotation
+-->
+### Pod 注解 {#pod-annotation}
+
+<!--
+Specifying the profile a container will run with:
+-->
+指定容器将使用的配置文件：
+
+<!--
+- **key**: `container.apparmor.security.beta.kubernetes.io/<container_name>`
+  Where `<container_name>` matches the name of a container in the Pod.
+  A separate profile can be specified for each container in the Pod.
+- **value**: a profile reference, described below
+-->
+- **键名**: `container.apparmor.security.beta.kubernetes.io/<container_name>`
+  ，其中 `<container_name>` 与 Pod 中某容器的名称匹配。
+  可以为 Pod 中的每个容器指定单独的配置文件。
+- **键值**: 对配置文件的引用，如下所述
+
+<!--
+### Profile Reference
+-->
+### 配置文件引用 {#profile-reference}
+
+<!--
+- `runtime/default`: Refers to the default runtime profile.
+  - Equivalent to not specifying a profile (without a PodSecurityPolicy default), except it still
+    requires AppArmor to be enabled.
+  - In practice, many container runtimes use the same OCI default profile, defined here:
+    https://github.com/containers/common/blob/main/pkg/apparmor/apparmor_linux_template.go
+- `localhost/<profile_name>`: Refers to a profile loaded on the node (localhost) by name.
+  - The possible profile names are detailed in the
+    [core policy reference](https://gitlab.com/apparmor/apparmor/wikis/AppArmor_Core_Policy_Reference#profile-names-and-attachment-specifications).
+- `unconfined`: This effectively disables AppArmor on the container.
+-->
+- `runtime/default`: 指默认运行时配置文件。
+  - 等同于不指定配置文件（没有 PodSecurityPolicy 默认值），只是它仍然需要启用 AppArmor。
+  - 实际上，许多容器运行时使用相同的 OCI 默认配置文件，在此处定义：
+    https://github.com/containers/common/blob/main/pkg/apparmor/apparmor_linux_template.go
+- `localhost/<profile_name>`: 按名称引用加载到节点（localhost）上的配置文件。
+  - 可能的配置文件名在[核心策略参考](https://gitlab.com/apparmor/apparmor/wikis/AppArmor_Core_Policy_Reference#profile-names-and-attachment-specifications)。
+- `unconfined`: 这相当于为容器禁用 AppArmor。
+
+<!--
+Any other profile reference format is invalid.
+-->
+任何其他配置文件引用格式无效。
+
+<!--
+### PodSecurityPolicy Annotations
+-->
+### PodSecurityPolicy 注解 {#podsecuritypolicy-annotations}
+
+<!--
+Specifying the default profile to apply to containers when none is provided:
+-->
+指定在未提供容器时应用于容器的默认配置文件：
+
+<!--
+* **key**: `apparmor.security.beta.kubernetes.io/defaultProfileName`
+* **value**: a profile reference, described above
+-->
+* **键名**: `apparmor.security.beta.kubernetes.io/defaultProfileName`
+* **键值**: 如上述文件参考所述
+
+<!--
+Specifying the list of profiles Pod containers is allowed to specify:
+-->
+上面描述的指定配置文件，Pod 容器列表的配置文件引用允许指定：
+
+<!--
+* **key**: `apparmor.security.beta.kubernetes.io/allowedProfileNames`
+* **value**: a comma-separated list of profile references (described above)
+  - Although an escaped comma is a legal character in a profile name, it cannot be explicitly
+    allowed here.
+-->
+* **键名**: `apparmor.security.beta.kubernetes.io/allowedProfileNames`
+* **键值**: 配置文件引用的逗号分隔列表（如上所述）
+  - 尽管转义逗号是配置文件名中的合法字符，但此处不能显式允许。
+
+## {{% heading "whatsnext" %}}
+
+<!--
+Additional resources:
+-->
+其他资源：
+
+<!--
+* [Quick guide to the AppArmor profile language](https://gitlab.com/apparmor/apparmor/wikis/QuickProfileLanguage)
+* [AppArmor core policy reference](https://gitlab.com/apparmor/apparmor/wikis/Policy_Layout)
+-->
+* [Apparmor 配置文件语言快速指南](https://gitlab.com/apparmor/apparmor/wikis/QuickProfileLanguage)
+* [Apparmor 核心策略参考](https://gitlab.com/apparmor/apparmor/wikis/Policy_Layout)
diff --git a/content/zh-cn/docs/tutorials/security/cluster-level-pss.md b/content/zh-cn/docs/tutorials/security/cluster-level-pss.md
new file mode 100644
index 0000000000..a9d83780c6
--- /dev/null
+++ b/content/zh-cn/docs/tutorials/security/cluster-level-pss.md
@@ -0,0 +1,450 @@
+---
+title: 在集群级别应用 Pod 安全标准
+content_type: tutorial
+weight: 10
+---
+<!-- 
+title: Apply Pod Security Standards at the Cluster Level
+content_type: tutorial
+weight: 10
+-->
+
+{{% alert title="Note" %}}
+<!-- This tutorial applies only for new clusters. -->
+本教程仅适用于新集群。
+{{% /alert %}}
+
+<!-- 
+Pod Security admission (PSA) is enabled by default in v1.23 and later, as it has
+[graduated to beta](/blog/2021/12/09/pod-security-admission-beta/).
+Pod Security
+is an admission controller that carries out checks against the Kubernetes
+[Pod Security Standards](/docs/concepts/security/pod-security-standards/) when new pods are
+created. This tutorial shows you how to enforce the `baseline` Pod Security
+Standard at the cluster level which applies a standard configuration
+to all namespaces in a cluster.
+
+To apply Pod Security Standards to specific namespaces, refer to [Apply Pod Security Standards at the namespace level](/docs/tutorials/security/ns-level-pss).
+
+If you are running a version of Kubernetes other than v{{< skew currentVersion >}},
+check the documentation for that version.
+-->
+Pod 安全准入（PSA）在 v1.23 及更高版本默认启用，
+因为它[升级到测试版（beta）](/blog/2021/12/09/pod-security-admission-beta/)。
+Pod 安全准入是在创建 Pod 时应用
+[Pod 安全标准](/zh-cn/docs/concepts/security/pod-security-standards/)的准入控制器。
+本教程将向你展示如何在集群级别实施 `baseline` Pod 安全标准，
+该标准将标准配置应用于集群中的所有名称空间。
+
+要将 Pod 安全标准应用于特定名字空间，
+请参阅[在名字空间级别应用 Pod 安全标准](/zh-cn/docs/tutorials/security/ns-level-pss)。
+
+如果你正在运行 v{{< skew currentVersion >}} 以外的 Kubernetes 版本，
+检查该版本的文档。
+
+## {{% heading "prerequisites" %}}
+<!-- 
+Install the following on your workstation:
+
+- [KinD](https://kind.sigs.k8s.io/docs/user/quick-start/#installation)
+- [kubectl](https://kubernetes.io/docs/tasks/tools/)
+-->
+在你的工作站中安装以下内容：
+
+- [KinD](https://kind.sigs.k8s.io/docs/user/quick-start/#installation)
+- [kubectl](https://kubernetes.io/docs/tasks/tools/)
+
+<!--
+## Choose the right Pod Security Standard to apply
+
+[Pod Security Admission](/docs/concepts/security/pod-security-admission/)
+lets you apply built-in [Pod Security Standards](/docs/concepts/security/pod-security-standards/)
+with the following modes: `enforce`, `audit`, and `warn`.
+
+To gather information that helps you to choose the Pod Security Standards
+that are most appropriate for your configuration, do the following: 
+-->
+## 正确选择要应用的 Pod 安全标准  {#choose-the-right-pod-security-standard-to-apply}
+
+[Pod 安全准入](/zh-cn/docs/concepts/security/pod-security-admission/)
+允许你使用以下模式应用内置的
+[Pod 安全标准](/zh-cn/docs/concepts/security/pod-security-standards/):
+`enforce`、`audit` 和 `warn`。
+
+要收集信息以便选择最适合你的配置的 Pod 安全标准，请执行以下操作：
+
+<!-- 
+1. Create a cluster with no Pod Security Standards applied:
+ -->
+1. 创建一个没有应用 Pod 安全标准的集群：
+
+   ```shell
+   kind create cluster --name psa-wo-cluster-pss --image kindest/node:v1.24.0
+   ```
+   <!-- The output is similar to this: -->
+   输出类似于：
+   ```
+   Creating cluster "psa-wo-cluster-pss" ...
+   ✓ Ensuring node image (kindest/node:v1.24.0) 🖼
+   ✓ Preparing nodes 📦  
+   ✓ Writing configuration 📜
+   ✓ Starting control-plane 🕹️
+   ✓ Installing CNI 🔌
+   ✓ Installing StorageClass 💾
+   Set kubectl context to "kind-psa-wo-cluster-pss"
+   You can now use your cluster with:
+   
+   kubectl cluster-info --context kind-psa-wo-cluster-pss
+   
+   Thanks for using kind! 😊
+   
+   ```
+
+<!-- 
+1. Set the kubectl context to the new cluster:
+-->
+2. 将 kubectl 上下文设置为新集群：
+
+   ```shell
+   kubectl cluster-info --context kind-psa-wo-cluster-pss
+   ```
+   <!-- The output is similar to this: -->
+   输出类似于：
+
+   ```
+   Kubernetes control plane is running at https://127.0.0.1:61350 
+   CoreDNS is running at https://127.0.0.1:61350/api/v1/namespaces/kube-system/services/kube-dns:dns/proxy
+   
+   To further debug and diagnose cluster problems, use 'kubectl cluster-info dump'.
+   ```
+
+<!-- 
+1. Get a list of namespaces in the cluster:
+-->
+3. 获取集群中的名字空间列表：
+
+   ```shell
+   kubectl get ns
+   ```
+   <!-- The output is similar to this: -->
+   输出类似于：
+   ```      
+   NAME                 STATUS   AGE
+   default              Active   9m30s
+   kube-node-lease      Active   9m32s
+   kube-public          Active   9m32s
+   kube-system          Active   9m32s
+   local-path-storage   Active   9m26s
+   ```
+
+<!-- 
+1. Use `--dry-run=server` to understand what happens when different Pod Security Standards
+   are applied:
+ -->
+4. 使用 `--dry-run=server` 来了解应用不同的 Pod 安全标准时会发生什么：
+
+   1. Privileged
+      ```shell
+      kubectl label --dry-run=server --overwrite ns --all \                    
+      pod-security.kubernetes.io/enforce=privileged
+      ```
+      <!-- The output is similar to this: -->
+      输出类似于：
+       ```      
+       namespace/default labeled
+       namespace/kube-node-lease labeled
+       namespace/kube-public labeled
+       namespace/kube-system labeled
+       namespace/local-path-storage labeled
+       ```
+   2. Baseline
+      ```shell    
+      kubectl label --dry-run=server --overwrite ns --all \
+      pod-security.kubernetes.io/enforce=baseline
+      ```
+      <!-- The output is similar to this: -->
+      输出类似于：
+      ```   
+      namespace/default labeled
+      namespace/kube-node-lease labeled
+      namespace/kube-public labeled
+      Warning: existing pods in namespace "kube-system" violate the new PodSecurity enforce level "baseline:latest"
+      Warning: etcd-psa-wo-cluster-pss-control-plane (and 3 other pods): host namespaces, hostPath volumes
+      Warning: kindnet-vzj42: non-default capabilities, host namespaces, hostPath volumes
+      Warning: kube-proxy-m6hwf: host namespaces, hostPath volumes, privileged
+      namespace/kube-system labeled
+      namespace/local-path-storage labeled
+      ```   
+
+   3. Restricted
+      ```shell
+      kubectl label --dry-run=server --overwrite ns --all \
+      pod-security.kubernetes.io/enforce=restricted
+      ```
+      <!-- The output is similar to this: -->
+      输出类似于：
+      ```   
+      namespace/default labeled
+      namespace/kube-node-lease labeled
+      namespace/kube-public labeled
+      Warning: existing pods in namespace "kube-system" violate the new PodSecurity enforce level "restricted:latest"
+      Warning: coredns-7bb9c7b568-hsptc (and 1 other pod): unrestricted capabilities, runAsNonRoot != true, seccompProfile
+      Warning: etcd-psa-wo-cluster-pss-control-plane (and 3 other pods): host namespaces, hostPath volumes, allowPrivilegeEscalation != false, unrestricted capabilities, restricted volume types, runAsNonRoot != true
+      Warning: kindnet-vzj42: non-default capabilities, host namespaces, hostPath volumes, allowPrivilegeEscalation != false, unrestricted capabilities, restricted volume types, runAsNonRoot != true, seccompProfile
+      Warning: kube-proxy-m6hwf: host namespaces, hostPath volumes, privileged, allowPrivilegeEscalation != false, unrestricted capabilities, restricted volume types, runAsNonRoot != true, seccompProfile
+      namespace/kube-system labeled
+      Warning: existing pods in namespace "local-path-storage" violate the new PodSecurity enforce level "restricted:latest"
+      Warning: local-path-provisioner-d6d9f7ffc-lw9lh: allowPrivilegeEscalation != false, unrestricted capabilities, runAsNonRoot != true, seccompProfile
+      namespace/local-path-storage labeled
+      ```
+
+<!-- 
+From the previous output, you'll notice that applying the `privileged` Pod Security Standard shows no warnings
+for any namespaces. However, `baseline` and `restricted` standards both have
+warnings, specifically in the `kube-system` namespace.
+-->
+从前面的输出中，你会注意到应用 `privileged` Pod 安全标准不会显示任何名字空间的警告。
+然而，`baseline` 和 `restricted` 标准都有警告，特别是在 `kube-system` 名字空间中。
+
+<!-- 
+## Set modes, versions and standards
+
+In this section, you apply the following Pod Security Standards to the `latest` version:
+
+* `baseline` standard in `enforce` mode.
+* `restricted` standard in `warn` and `audit` mode.
+-->
+## 设置模式、版本和标准  {#set-modes-versions-and-standards}
+
+在本节中，你将以下 Pod 安全标准应用于最新（`latest`）版本：
+
+* 在 `enforce` 模式下的 `baseline` 标准。
+* `warn` 和 `audit` 模式下的 `restricted` 标准。
+
+<!-- 
+The `baseline` Pod Security Standard provides a convenient
+middle ground that allows keeping the exemption list short and prevents known
+privilege escalations.
+
+Additionally, to prevent pods from failing in `kube-system`, you'll exempt the namespace
+from having Pod Security Standards applied.
+
+When you implement Pod Security Admission in your own environment, consider the
+following:
+-->
+`baseline` Pod 安全标准提供了一个方便的中间立场，能够保持豁免列表简短并防止已知的特权升级。
+
+此外，为了防止 `kube-system` 中的 Pod 失败，你将免除该名字空间应用 Pod 安全标准。
+
+在你自己的环境中实施 Pod 安全准入时，请考虑以下事项：
+
+<!-- 
+1. Based on the risk posture applied to a cluster, a stricter Pod Security
+   Standard like `restricted` might be a better choice.
+1. Exempting the `kube-system` namespace allows pods to run as
+   `privileged` in this namespace. For real world use, the Kubernetes project
+   strongly recommends that you apply strict RBAC
+   policies that limit access to `kube-system`, following the principle of least
+   privilege.
+   To implement the preceding standards, do the following:
+1. Create a configuration file that can be consumed by the Pod Security
+   Admission Controller to implement these Pod Security Standards:
+-->
+1. 根据应用于集群的风险状况，更严格的 Pod 安全标准（如 `restricted`）可能是更好的选择。
+2. 对 `kube-system` 名字空间进行赦免会允许 Pod 在其中以 `privileged` 模式运行。
+   对于实际使用，Kubernetes 项目强烈建议你应用严格的 RBAC 策略来限制对 `kube-system` 的访问，
+   遵循最小特权原则。
+3. 创建一个配置文件，Pod 安全准入控制器可以使用该文件来实现这些 Pod 安全标准：
+
+   ```
+   mkdir -p /tmp/pss
+   cat <<EOF > /tmp/pss/cluster-level-pss.yaml 
+   apiVersion: apiserver.config.k8s.io/v1
+   kind: AdmissionConfiguration
+   plugins:
+   - name: PodSecurity
+     configuration:
+       apiVersion: pod-security.admission.config.k8s.io/v1beta1
+       kind: PodSecurityConfiguration
+       defaults:
+         enforce: "baseline"
+         enforce-version: "latest"
+         audit: "restricted"
+         audit-version: "latest"
+         warn: "restricted"
+         warn-version: "latest"
+       exemptions:
+         usernames: []
+         runtimeClasses: []
+         namespaces: [kube-system]
+   EOF
+   ```
+
+<!-- 
+1. Configure the API server to consume this file during cluster creation:
+-->
+4. 在创建集群时配置 API 服务器使用此文件：
+
+   ```
+   cat <<EOF > /tmp/pss/cluster-config.yaml 
+   kind: Cluster
+   apiVersion: kind.x-k8s.io/v1alpha4
+   nodes:
+   - role: control-plane
+     kubeadmConfigPatches:
+     - |
+       kind: ClusterConfiguration
+       apiServer:
+           extraArgs:
+             admission-control-config-file: /etc/config/cluster-level-pss.yaml
+           extraVolumes:
+             - name: accf
+               hostPath: /etc/config
+               mountPath: /etc/config
+               readOnly: false
+               pathType: "DirectoryOrCreate"
+     extraMounts:
+     - hostPath: /tmp/pss
+       containerPath: /etc/config
+       # optional: if set, the mount is read-only.
+       # default false
+       readOnly: false
+       # optional: if set, the mount needs SELinux relabeling.
+       # default false
+       selinuxRelabel: false
+       # optional: set propagation mode (None, HostToContainer or Bidirectional)
+       # see https://kubernetes.io/docs/concepts/storage/volumes/#mount-propagation
+       # default None
+       propagation: None
+   EOF
+   ```
+
+   {{<note>}}
+   <!-- 
+   If you use Docker Desktop with KinD on macOS, you can
+   add `/tmp` as a Shared Directory under the menu item
+   **Preferences > Resources > File Sharing**.
+   -->
+   如果你在 macOS 上使用 Docker Desktop 和 KinD，
+   你可以在菜单项 **Preferences > Resources > File Sharing**
+   下添加 `/tmp` 作为共享目录。
+   {{</note>}}
+
+<!-- 
+1. Create a cluster that uses Pod Security Admission to apply
+   these Pod Security Standards:
+-->
+5. 创建一个使用 Pod 安全准入的集群来应用这些 Pod 安全标准：
+
+   ```shell
+   kind create cluster --name psa-with-cluster-pss --image kindest/node:v1.24.0 --config /tmp/pss/cluster-config.yaml
+   ```
+   <!-- The output is similar to this: -->
+   输出类似于：
+   ```
+   Creating cluster "psa-with-cluster-pss" ...
+    ✓ Ensuring node image (kindest/node:v1.24.0) 🖼 
+    ✓ Preparing nodes 📦  
+    ✓ Writing configuration 📜 
+    ✓ Starting control-plane 🕹️ 
+    ✓ Installing CNI 🔌 
+    ✓ Installing StorageClass 💾 
+   Set kubectl context to "kind-psa-with-cluster-pss"
+   You can now use your cluster with:
+   
+   kubectl cluster-info --context kind-psa-with-cluster-pss
+   
+   Have a question, bug, or feature request? Let us know! https://kind.sigs.k8s.io/#community 🙂
+   ```
+
+<!-- 
+1. Point kubectl to the cluster
+-->
+6. 将 kubectl 指向集群
+
+   ```shell
+   kubectl cluster-info --context kind-psa-with-cluster-pss
+   ```
+   <!-- The output is similar to this: -->
+   输出类似于：
+   ```
+   Kubernetes control plane is running at https://127.0.0.1:63855
+   CoreDNS is running at https://127.0.0.1:63855/api/v1/namespaces/kube-system/services/kube-dns:dns/proxy
+ 
+   To further debug and diagnose cluster problems, use 'kubectl cluster-info dump'.
+   ```
+
+<!-- 
+1. Create the following Pod specification for a minimal configuration in the default namespace:
+-->
+7. 创建以下 Pod 规约作为在 default 名字空间中的一个最小配置：
+
+   ```
+   cat <<EOF > /tmp/pss/nginx-pod.yaml
+   apiVersion: v1
+   kind: Pod
+   metadata:
+     name: nginx
+   spec:
+     containers:
+       - image: nginx
+         name: nginx
+         ports:
+           - containerPort: 80
+   EOF
+   ```
+
+<!-- 
+1. Create the Pod in the cluster:
+-->
+8. 在集群中创建 Pod：
+
+   ```shell
+   kubectl apply -f /tmp/pss/nginx-pod.yaml
+   ```
+   <!-- The output is similar to this: -->
+   输出类似于：
+   ```
+   Warning: would violate PodSecurity "restricted:latest": allowPrivilegeEscalation != false (container "nginx" must set securityContext allowPrivilegeEscalation=false), unrestricted capabilities (container "nginx" must set securityContext.capabilities.drop=["ALL"]), runAsNonRoot != true (pod or container "nginx" must set securityContext.runAsNonRoot=true), seccompProfile (pod or container "nginx" must set securityContext seccompProfile.type to "RuntimeDefault" or "Localhost")
+   pod/nginx created
+   ```
+
+<!-- 
+## Clean up
+
+Run `kind delete cluster --name psa-with-cluster-pss` and
+`kind delete cluster --name psa-wo-cluster-pss` to delete the clusters you
+created.
+-->
+## 清理  {#clean-up}
+
+运行 `kind delete cluster --name psa-with-cluster-pss` 和
+`kind delete cluster --name psa-wo-cluster-pss` 来删除你创建的集群。
+
+## {{% heading "whatsnext" %}}
+
+<!-- 
+- Run a
+  [shell script](/examples/security/kind-with-cluster-level-baseline-pod-security.sh)
+  to perform all the preceding steps at once:
+  1. Create a Pod Security Standards based cluster level Configuration
+  2. Create a file to let API server consumes this configuration
+  3. Create a cluster that creates an API server with this configuration
+  4. Set kubectl context to this new cluster
+  5. Create a minimal pod yaml file
+  6. Apply this file to create a Pod in the new cluster
+- [Pod Security Admission](/docs/concepts/security/pod-security-admission/)
+- [Pod Security Standards](/docs/concepts/security/pod-security-standards/)
+- [Apply Pod Security Standards at the namespace level](/docs/tutorials/security/ns-level-pss/)
+-->
+- 运行一个 [shell 脚本](/zh-cn/examples/security/kind-with-cluster-level-baseline-pod-security.sh)
+  一次执行前面的所有步骤：
+  1. 创建一个基于 Pod 安全标准的集群级别配置
+  2. 创建一个文件让 API 服务器消费这个配置
+  3. 创建一个集群，用这个配置创建一个 API 服务器
+  4. 设置 kubectl 上下文为这个新集群
+  5. 创建一个最小的 Pod yaml 文件
+  6. 应用这个文件，在新集群中创建一个 Pod
+- [Pod 安全准入](/zh-cn/docs/concepts/security/pod-security-admission/)
+- [Pod 安全标准](/zh-cn/docs/concepts/security/pod-security-standards/)
+- [在名字空间级别应用 Pod 安全标准](/zh-cn/docs/tutorials/security/ns-level-pss/)
\ No newline at end of file
diff --git a/content/zh-cn/docs/tutorials/security/ns-level-pss.md b/content/zh-cn/docs/tutorials/security/ns-level-pss.md
new file mode 100644
index 0000000000..ef3ea47a23
--- /dev/null
+++ b/content/zh-cn/docs/tutorials/security/ns-level-pss.md
@@ -0,0 +1,252 @@
+---
+title: 在名字空间级别应用 Pod 安全标准
+content_type: tutorial
+weight: 10
+---
+
+<!--
+title: Apply Pod Security Standards at the Namespace Level
+content_type: tutorial
+weight: 10
+-->
+
+{{% alert title="Note" %}}
+<!-- This tutorial applies only for new clusters. -->
+本教程仅适用于新集群。
+{{% /alert %}}
+
+<!--
+Pod Security admission (PSA) is enabled by default in v1.23 and later, as it
+[graduated to beta](/blog/2021/12/09/pod-security-admission-beta/). Pod Security Admission
+is an admission controller that applies 
+[Pod Security Standards](/docs/concepts/security/pod-security-standards/) 
+when pods are created. In this tutorial, you will enforce the `baseline` Pod Security Standard,
+one namespace at a time.
+
+You can also apply Pod Security Standards to multiple namespaces at once at the cluster
+level. For instructions, refer to 
+[Apply Pod Security Standards at the cluster level](/docs/tutorials/security/cluster-level-pss).
+-->
+Pod 安全准入（PSA）在 v1.23 及更高版本默认启用，
+因为它[升级到测试版（beta）](/blog/2021/12/09/pod-security-admission-beta/)。
+Pod 安全准入是在创建 Pod 时应用
+[Pod 安全标准](/zh-cn/docs/concepts/security/pod-security-standards/)的准入控制器。
+在本教程中，你将应用 `baseline` Pod 安全标准，每次一个名字空间。
+
+你还可以在集群级别一次将 Pod 安全标准应用于多个名称空间。
+有关说明，请参阅[在集群级别应用 Pod 安全标准](/zh-cn/docs/tutorials/security/cluster-level-pss)。
+
+## {{% heading "prerequisites" %}}
+
+<!-- 
+Install the following on your workstation:
+
+- [KinD](https://kind.sigs.k8s.io/docs/user/quick-start/#installation)
+- [kubectl](/docs/tasks/tools/)
+-->
+在你的工作站中安装以下内容：
+
+- [KinD](https://kind.sigs.k8s.io/docs/user/quick-start/#installation)
+- [kubectl](/zh-cn/docs/tasks/tools/)
+
+<!--
+## Create cluster
+
+1. Create a `KinD` cluster as follows:
+-->
+## 创建集群  {#create-cluster}
+
+2. 按照如下方式创建一个 `KinD` 集群：
+
+   ```shell
+   kind create cluster --name psa-ns-level --image kindest/node:v1.23.0
+   ```
+   <!-- The output is similar to this: -->
+   输出类似于：
+   ```
+   Creating cluster "psa-ns-level" ...
+    ✓ Ensuring node image (kindest/node:v1.23.0) 🖼 
+    ✓ Preparing nodes 📦  
+    ✓ Writing configuration 📜 
+    ✓ Starting control-plane 🕹️ 
+    ✓ Installing CNI 🔌 
+    ✓ Installing StorageClass 💾 
+   Set kubectl context to "kind-psa-ns-level"
+   You can now use your cluster with:
+   
+   kubectl cluster-info --context kind-psa-ns-level
+   
+   Not sure what to do next? 😅  Check out https://kind.sigs.k8s.io/docs/user/quick-start/
+   ```
+
+<!-- 1. Set the kubectl context to the new cluster: -->
+1. 将 kubectl 上下文设置为新集群：
+   ```shell
+   kubectl cluster-info --context kind-psa-ns-level
+   ```
+    <!-- The output is similar to this: -->
+   输出类似于：
+   ```
+   Kubernetes control plane is running at https://127.0.0.1:50996
+   CoreDNS is running at https://127.0.0.1:50996/api/v1/namespaces/kube-system/services/kube-dns:dns/proxy
+   
+   To further debug and diagnose cluster problems, use 'kubectl cluster-info dump'.
+   ```
+
+<!--
+## Create a namespace
+
+Create a new namespace called `example`:
+-->
+## 创建名字空间  {#create-a-namespace}
+
+创建一个名为 `example` 的新名字空间：
+
+```shell
+kubectl create ns example
+```
+
+<!-- The output is similar to this: -->
+输出类似于：
+
+```
+namespace/example created
+```
+
+<!-- 
+## Apply Pod Security Standards
+
+1. Enable Pod Security Standards on this namespace using labels supported by
+   built-in Pod Security Admission. In this step we will warn on baseline pod
+   security standard as per the latest version (default value)
+-->
+## 应用 Pod 安全标准  {#apply-pod-security-standards}
+
+1. 使用内置 Pod 安全准入所支持的标签在此名字空间上启用 Pod 安全标准。
+   在这一步中，我们将根据最新版本（默认值）对基线 Pod 安全标准发出警告。
+
+   ```shell
+   kubectl label --overwrite ns example \
+     pod-security.kubernetes.io/warn=baseline \
+     pod-security.kubernetes.io/warn-version=latest
+   ```
+
+<!-- 
+2. Multiple pod security standards can be enabled on any namespace, using labels.
+   Following command will `enforce` the `baseline` Pod Security Standard, but
+   `warn` and `audit` for `restricted` Pod Security Standards as per the latest
+   version (default value)
+-->
+2. 可以使用标签在任何名字空间上启用多个 Pod 安全标准。
+   以下命令将强制（`enforce`） 执行基线（`baseline`）Pod 安全标准，
+   但根据最新版本（默认值）对受限（`restricted`）Pod 安全标准执行警告（`warn`）和审核（`audit`）。
+
+   ```
+   kubectl label --overwrite ns example \
+     pod-security.kubernetes.io/enforce=baseline \
+     pod-security.kubernetes.io/enforce-version=latest \
+     pod-security.kubernetes.io/warn=restricted \
+     pod-security.kubernetes.io/warn-version=latest \
+     pod-security.kubernetes.io/audit=restricted \
+     pod-security.kubernetes.io/audit-version=latest
+   ```
+
+<!-- 
+## Verify the Pod Security Standards
+
+1. Create a minimal pod in `example` namespace:
+-->
+## 验证 Pod 安全标准  {#verify-the-pod-security-standards}
+
+1. 在 `example` 名字空间中创建一个最小的 pod：
+
+   ```shell
+   cat <<EOF > /tmp/pss/nginx-pod.yaml
+   apiVersion: v1
+   kind: Pod
+   metadata:
+     name: nginx
+   spec:
+     containers:
+       - image: nginx
+         name: nginx
+         ports:
+           - containerPort: 80
+   EOF
+   ```
+
+<!-- 
+2. Apply the pod spec to the cluster in `example` namespace: 
+-->
+1. 将 Pod 规约应用到集群中的 `example` 名字空间中：
+   ```shell
+   kubectl apply -n example -f /tmp/pss/nginx-pod.yaml
+   ```
+   <!-- The output is similar to this: -->
+   输出类似于：
+   ```
+   Warning: would violate PodSecurity "restricted:latest": allowPrivilegeEscalation != false (container "nginx" must set securityContext allowPrivilegeEscalation=false), unrestricted capabilities (container "nginx" must set securityContext.capabilities.drop=["ALL"]), runAsNonRoot != true (pod or container "nginx" must set securityContext.runAsNonRoot=true), seccompProfile (pod or container "nginx" must set securityContext seccompProfile.type to "RuntimeDefault" or "Localhost")
+   pod/nginx created
+   ```
+
+<!-- 
+1. Apply the pod spec to the cluster in `default` namespace:
+-->
+3. 将 Pod 规约应用到集群中的 `default` 名字空间中：
+
+   ```shell
+   kubectl apply -n default -f /tmp/pss/nginx-pod.yaml
+   ```
+
+   <!-- Output is similar to this: -->
+   输出类似于：
+
+   ```
+   pod/nginx created
+   ```
+
+<!-- 
+The Pod Security Standards were applied only to the `example`
+namespace. You could create the same Pod in the `default` namespace
+with no warnings.
+-->
+以上 Pod 安全标准仅被应用到 `example` 名字空间。
+你可以在没有警告的情况下在 `default` 名字空间中创建相同的 Pod。
+
+<!-- 
+## Clean up
+
+Run `kind delete cluster -name psa-ns-level` to delete the cluster created.
+-->
+## 清理  {#clean-up}
+
+运行 `kind delete cluster -name psa-ns-level` 删除创建的集群。
+
+## {{% heading "whatsnext" %}}
+
+<!-- 
+- Run a
+  [shell script](/examples/security/kind-with-namespace-level-baseline-pod-security.sh)
+  to perform all the preceding steps all at once.
+
+  1. Create KinD cluster
+  2. Create new namespace
+  3. Apply `baseline` Pod Security Standard in `enforce` mode while applying
+     `restricted` Pod Security Standard also in `warn` and `audit` mode.
+  4. Create a new pod with the following pod security standards applied
+- [Pod Security Admission](/docs/concepts/security/pod-security-admission/)
+- [Pod Security Standards](/docs/concepts/security/pod-security-standards/)
+- [Apply Pod Security Standards at the cluster level](/docs/tutorials/security/cluster-level-pss/)
+-->
+- 运行一个 [shell 脚本](/examples/security/kind-with-namespace-level-baseline-pod-security.sh)
+  一次执行所有前面的步骤。
+
+   1. 创建 KinD 集群
+   2. 创建新的名字空间
+   3. 在 `enforce` 模式下应用 `baseline` Pod 安全标准，
+      同时在 `warn` 和 `audit` 模式下应用 `restricted` Pod 安全标准。
+   4. 创建一个应用以下 Pod 安全标准的新 Pod
+
+- [Pod 安全准入](/zh-cn/docs/concepts/security/pod-security-admission/)
+- [Pod 安全标准](/zh-cn/docs/concepts/security/pod-security-standards/)
+- [在集群级别应用 Pod 安全标准](/zh-cn/docs/tutorials/security/cluster-level-pss/)
diff --git a/content/zh-cn/docs/tutorials/security/seccomp.md b/content/zh-cn/docs/tutorials/security/seccomp.md
new file mode 100644
index 0000000000..e27315a31f
--- /dev/null
+++ b/content/zh-cn/docs/tutorials/security/seccomp.md
@@ -0,0 +1,783 @@
+---
+title: 使用 seccomp 限制容器的系统调用
+content_type: tutorial
+weight: 20
+min-kubernetes-server-version: v1.22
+---
+<!-- 
+reviewers:
+- hasheddan
+- pjbgf
+- saschagrunert
+title: Restrict a Container's Syscalls with seccomp
+content_type: tutorial
+weight: 20
+min-kubernetes-server-version: v1.22
+-->
+
+<!-- overview -->
+
+{{< feature-state for_k8s_version="v1.19" state="stable" >}}
+
+<!-- 
+Seccomp stands for secure computing mode and has been a feature of the Linux
+kernel since version 2.6.12. It can be used to sandbox the privileges of a
+process, restricting the calls it is able to make from userspace into the
+kernel. Kubernetes lets you automatically apply seccomp profiles loaded onto a
+{{< glossary_tooltip text="node" term_id="node" >}} to your Pods and containers.
+
+Identifying the privileges required for your workloads can be difficult. In this
+tutorial, you will go through how to load seccomp profiles into a local
+Kubernetes cluster, how to apply them to a Pod, and how you can begin to craft
+profiles that give only the necessary privileges to your container processes.
+-->
+Seccomp 代表安全计算（Secure Computing）模式，自 2.6.12 版本以来，一直是 Linux 内核的一个特性。
+它可以用来沙箱化进程的权限，限制进程从用户态到内核态的调用。
+Kubernetes 能使你自动将加载到 {{< glossary_tooltip text="节点" term_id="node" >}}上的
+seccomp 配置文件应用到你的 Pod 和容器。
+
+识别你的工作负载所需要的权限是很困难的。在本篇教程中，
+你将了解如何将 seccomp 配置文件加载到本地的 Kubernetes 集群中，
+如何将它们应用到 Pod，以及如何开始制作只为容器进程提供必要的权限的配置文件。
+
+## {{% heading "objectives" %}}
+
+<!-- 
+* Learn how to load seccomp profiles on a node
+* Learn how to apply a seccomp profile to a container
+* Observe auditing of syscalls made by a container process
+* Observe behavior when a missing profile is specified
+* Observe a violation of a seccomp profile
+* Learn how to create fine-grained seccomp profiles
+* Learn how to apply a container runtime default seccomp profile
+-->
+* 了解如何在节点上加载 seccomp 配置文件
+* 了解如何将 seccomp 配置文件应用到容器上
+* 观察容器进程对系统调用的审计
+* 观察指定的配置文件缺失时的行为
+* 观察违反 seccomp 配置文件的行为
+* 了解如何创建细粒度的 seccomp 配置文件
+* 了解如何应用容器运行时所默认的 seccomp 配置文件
+
+## {{% heading "prerequisites" %}}
+
+<!-- 
+In order to complete all steps in this tutorial, you must install
+[kind](/docs/tasks/tools/#kind) and [kubectl](/docs/tasks/tools/#kubectl).
+
+This tutorial shows some examples that are still alpha (since v1.22) and
+others that use only generally available seccomp functionality. You should
+make sure that your cluster is
+[configured correctly](https://kind.sigs.k8s.io/docs/user/quick-start/#setting-kubernetes-version)
+for the version you are using.
+
+The tutorial also uses the `curl` tool for downloading examples to your computer.
+You can adapt the steps to use a different tool if you prefer.
+-->
+为了完成本篇教程中的所有步骤，你必须安装 [kind](/zh-cn/docs/tasks/tools/#kind)
+和 [kubectl](/zh-cn/docs/tasks/tools/#kubectl)。
+
+本篇教程演示的某些示例仍然是 alpha 状态（自 v1.22 起），另一些示例则仅使用 seccomp 正式发布的功能。
+你应该确保，针对你使用的版本，
+[正确配置](https://kind.sigs.k8s.io/docs/user/quick-start/#setting-kubernetes-version)了集群。
+
+本篇教程也使用了 `curl` 工具来下载示例到你的计算机上。
+你可以使用其他自己偏好的工具来自适应这些步骤。
+
+{{< note >}}
+<!-- 
+It is not possible to apply a seccomp profile to a container running with
+`privileged: true` set in the container's `securityContext`. Privileged containers always
+run as `Unconfined`.
+-->
+无法将 seccomp 配置文件应用于在容器的 `securityContext` 中设置了 `privileged: true` 的容器。
+特权容器始终以 `Unconfined` 的方式运行。
+{{< /note >}}
+
+<!-- steps -->
+
+<!-- 
+## Download example seccomp profiles {#download-profiles}
+
+The contents of these profiles will be explored later on, but for now go ahead
+and download them into a directory named `profiles/` so that they can be loaded
+into the cluster.
+-->
+## 下载示例 seccomp 配置文件  {#download-profiles}
+
+这些配置文件的内容将在稍后进行分析，
+现在先将它们下载到名为 `profiles/` 的目录中，以便将它们加载到集群中。
+
+{{< tabs name="tab_with_code" >}}
+{{{< tab name="audit.json" >}}
+{{< codenew file="pods/security/seccomp/profiles/audit.json" >}}
+{{< /tab >}}
+{{< tab name="violation.json" >}}
+{{< codenew file="pods/security/seccomp/profiles/violation.json" >}}
+{{< /tab >}}}
+{{< tab name="fine-grained.json" >}}
+{{< codenew file="pods/security/seccomp/profiles/fine-grained.json" >}}
+{{< /tab >}}}
+{{< /tabs >}}
+
+<!-- Run these commands: -->
+执行这些命令：
+
+```shell
+mkdir ./profiles
+curl -L -o profiles/audit.json https://k8s.io/examples/pods/security/seccomp/profiles/audit.json
+curl -L -o profiles/violation.json https://k8s.io/examples/pods/security/seccomp/profiles/violation.json
+curl -L -o profiles/fine-grained.json https://k8s.io/examples/pods/security/seccomp/profiles/fine-grained.json
+ls profiles
+```
+
+<!-- You should see three profiles listed at the end of the final step: -->
+你应该看到在最后一步的末尾列出有三个配置文件：
+```
+audit.json  fine-grained.json  violation.json
+```
+
+<!-- 
+## Create a local Kubernetes cluster with kind
+
+For simplicity, [kind](https://kind.sigs.k8s.io/) can be used to create a single
+node cluster with the seccomp profiles loaded. Kind runs Kubernetes in Docker,
+so each node of the cluster is a container. This allows for files
+to be mounted in the filesystem of each container similar to loading files
+onto a node.
+-->
+
+## 使用 kind 创建本地 Kubernetes 集群 {#create-a-local-kubernetes-cluster-with-kind}
+
+为简单起见，[kind](https://kind.sigs.k8s.io/) 可用来创建加载了 seccomp 配置文件的单节点集群。
+Kind 在 Docker 中运行 Kubernetes，因此集群的每个节点都是一个容器。
+这允许将文件挂载到每个容器的文件系统中，类似于将文件加载到节点上。
+
+{{< codenew file="pods/security/seccomp/kind.yaml" >}}
+
+<!-- 
+Download that example kind configuration, and save it to a file named `kind.yaml`:
+-->
+下载该示例 kind 配置，并将其保存到名为 `kind.yaml` 的文件中：
+```shell
+curl -L -O https://k8s.io/examples/pods/security/seccomp/kind.yaml
+```
+
+<!-- 
+You can set a specific Kubernetes version by setting the node's container image.
+See [Nodes](https://kind.sigs.k8s.io/docs/user/configuration/#nodes) within the
+kind documentation about configuration for more details on this.
+This tutorial assumes you are using Kubernetes {{< param "version" >}}.
+-->
+你可以通过设置节点的容器镜像来设置特定的 Kubernetes 版本。
+有关此类配置的更多信息，
+参阅 kind 文档中[节点](https://kind.sigs.k8s.io/docs/user/configuration/#nodes)小节。
+本篇教程假定你正在使用 Kubernetes {{< param "version" >}}。
+
+<!-- 
+As an alpha feature, you can configure Kubernetes to use the profile that the
+{{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}
+prefers by default, rather than falling back to `Unconfined`.
+If you want to try that, see
+[enable the use of `RuntimeDefault` as the default seccomp profile for all workloads](#enable-the-use-of-runtimedefault-as-the-default-seccomp-profile-for-all-workloads)
+before you continue.
+-->
+作为 alpha 特性，你可以将 Kubernetes 配置为使用
+{{< glossary_tooltip text="容器运行时" term_id="container-runtime" >}}
+默认首选的配置文件，而不是回退到 `Unconfined`。
+如果你想尝试，请在继续之前参阅
+[启用使用 `RuntimeDefault` 作为所有工作负载的默认 seccomp 配置文件](#enable-runtimedefault-as-default)
+
+<!--
+Once you have a kind configuration in place, create the kind cluster with
+that configuration: 
+-->
+有了 kind 配置后，使用该配置创建 kind 集群：
+
+```shell
+kind create cluster --config=kind.yaml
+```
+
+<!--
+After the new Kubernetes cluster is ready, identify the Docker container running
+as the single node cluster:
+-->
+新的 Kubernetes 集群准备就绪后，找出作为单节点集群运行的 Docker 容器：
+
+```shell
+docker ps
+```
+
+<!--
+You should see output indicating that a container is running with name
+`kind-control-plane`. The output is similar to:
+-->
+你应该看到输出中名为 `kind-control-plane` 的容器正在运行。
+输出类似于：
+```
+CONTAINER ID        IMAGE                  COMMAND                  CREATED             STATUS              PORTS                       NAMES
+6a96207fed4b        kindest/node:v1.18.2   "/usr/local/bin/entr…"   27 seconds ago      Up 24 seconds       127.0.0.1:42223->6443/tcp   kind-control-plane
+```
+
+<!--
+If observing the filesystem of that container, you should see that the
+`profiles/` directory has been successfully loaded into the default seccomp path
+of the kubelet. Use `docker exec` to run a command in the Pod:
+-->
+如果观察该容器的文件系统，
+你应该会看到 `profiles/` 目录已成功加载到 kubelet 的默认 seccomp 路径中。
+使用 `docker exec` 在 Pod 中运行命令：
+
+```shell
+# 将 6a96207fed4b 更改为你从 “docker ps” 看到的容器 ID
+docker exec -it 6a96207fed4b ls /var/lib/kubelet/seccomp/profiles
+```
+
+```
+audit.json  fine-grained.json  violation.json
+```
+
+<!-- 
+You have verified that these seccomp profiles are available to the kubelet
+running within kind.
+-->
+你已验证这些 seccomp 配置文件可用于在 kind 中运行的 kubelet。
+
+<!-- 
+## Enable the use of `RuntimeDefault` as the default seccomp profile for all workloads
+-->
+## 启用使用 `RuntimeDefault` 作为所有工作负载的默认 seccomp 配置文件 {#enable-runtimedefault-as-default}
+
+{{< feature-state state="alpha" for_k8s_version="v1.22" >}}
+
+<!-- 
+`SeccompDefault` is an optional kubelet
+[feature gate](/docs/reference/command-line-tools-reference/feature-gates) as
+well as corresponding `--seccomp-default`
+[command line flag](/docs/reference/command-line-tools-reference/kubelet).
+Both have to be enabled simultaneously to use the feature.
+-->
+`SeccompDefault` 是一个可选的 kubelet [特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates)
+以及相应的 `--seccomp-default` [命令行标志](/zh-cn/docs/reference/command-line-tools-reference/kubelet)。
+两者必须同时启用才能使用该功能。
+
+<!-- 
+If enabled, the kubelet will use the `RuntimeDefault` seccomp profile by default, which is
+defined by the container runtime, instead of using the `Unconfined` (seccomp disabled) mode.
+The default profiles aim to provide a strong set
+of security defaults while preserving the functionality of the workload. It is
+possible that the default profiles differ between container runtimes and their
+release versions, for example when comparing those from CRI-O and containerd.
+-->
+如果启用，kubelet 将会默认使用 `RuntimeDefault` seccomp 配置文件，
+（这一配置文明是由容器运行时定义的），而不是使用 `Unconfined`（禁用 seccomp）模式。
+默认的配置文件旨在提供一组限制性较强且能保留工作负载功能的安全默认值。
+不同容器运行时及其不同发布版本之间的默认配置文件可能有所不同，
+例如在比较来自 CRI-O 和 containerd 的配置文件时。
+
+{{< note >}}
+<!-- 
+Enabling the feature will neither change the Kubernetes
+`securityContext.seccompProfile` API field nor add the deprecated annotations of
+the workload. This provides users the possibility to rollback anytime without
+actually changing the workload configuration. Tools like
+[`crictl inspect`](https://github.com/kubernetes-sigs/cri-tools) can be used to
+verify which seccomp profile is being used by a container.
+-->
+启用该功能既不会更改 Kubernetes `securityContext.seccompProfile` API 字段，
+也不会添加已弃用的工作负载注解。
+这为用户提供了随时回滚的可能性，而且无需实际更改工作负载配置。
+[`crictl inspect`](https://github.com/kubernetes-sigs/cri-tools)
+之类的工具可用于验证容器正在使用哪个 seccomp 配置文件。
+{{< /note >}}
+
+<!-- 
+Some workloads may require a lower amount of syscall restrictions than others.
+This means that they can fail during runtime even with the `RuntimeDefault`
+profile. To mitigate such a failure, you can:
+
+- Run the workload explicitly as `Unconfined`.
+- Disable the `SeccompDefault` feature for the nodes. Also making sure that
+  workloads get scheduled on nodes where the feature is disabled.
+- Create a custom seccomp profile for the workload.
+-->
+与其他工作负载相比，某些工作负载可能需要更少的系统调用限制。
+这意味着即使使用 `RuntimeDefault` 配置文件，它们也可能在运行时失败。
+要应对此类故障，你可以：
+
+- 将工作负载显式运行为 `Unconfined`。
+- 禁用节点的 `SeccompDefault` 功能。还要确保工作负载被调度到禁用该功能的节点上。
+- 为工作负载创建自定义 seccomp 配置文件。
+
+<!-- 
+If you were introducing this feature into production-like cluster, the Kubernetes project
+recommends that you enable this feature gate on a subset of your nodes and then
+test workload execution before rolling the change out cluster-wide.
+
+More detailed information about a possible upgrade and downgrade strategy can be
+found in the [related Kubernetes Enhancement Proposal (KEP)](https://github.com/kubernetes/enhancements/tree/a70cc18/keps/sig-node/2413-seccomp-by-default#upgrade--downgrade-strategy).
+-->
+如果你将此功能引入到类似生产的集群中，
+Kubernetes 项目建议你在部分节点上启用此特性门控，
+然后在整个集群范围内推出更改之前，测试工作负载执行情况。
+
+有关可能的升级和降级策略的更多详细信息，
+请参阅[相关的 Kubernetes 增强提案 (KEP)](https://github.com/kubernetes/enhancements/tree/a70cc18/keps/sig-node/2413-seccomp-by-default#upgrade--downgrade-strategy)。
+
+<!-- 
+Since the feature is in alpha state it is disabled per default. To enable it,
+pass the flags `--feature-gates=SeccompDefault=true --seccomp-default` to the
+`kubelet` CLI or enable it via the [kubelet configuration
+file](/docs/tasks/administer-cluster/kubelet-config-file/). To enable the
+feature gate in [kind](https://kind.sigs.k8s.io), ensure that `kind` provides
+the minimum required Kubernetes version and enables the `SeccompDefault` feature
+[in the kind configuration](https://kind.sigs.k8s.io/docs/user/quick-start/#enable-feature-gates-in-your-cluster):
+-->
+由于此特性处于 alpha 阶段，默认是被禁用的。
+要启用它，传递标志 `--feature-gates=SeccompDefault=true --seccomp-default` 到
+kubelet CLI 或者通过 [kubelet 配置文件](/docs/tasks/administer-cluster/kubelet-config-file/)启用。
+要在 [kind](https://kind.sigs.k8s.io) 启用特性门控，
+请确保 `kind` 提供所需的最低 Kubernetes 版本，
+并[在 kind 配置中](https://kind.sigs.k8s.io/docs/user/quick-start/#enable-feature-gates-in-your-cluster)
+启用了 `SeccompDefault` 特性：
+
+```yaml
+kind: Cluster
+apiVersion: kind.x-k8s.io/v1alpha4
+featureGates:
+  SeccompDefault: true
+nodes:
+  - role: control-plane
+    image: kindest/node:v1.23.0@sha256:49824ab1727c04e56a21a5d8372a402fcd32ea51ac96a2706a12af38934f81ac
+    kubeadmConfigPatches:
+      - |
+        kind: JoinConfiguration
+        nodeRegistration:
+          kubeletExtraArgs:
+            seccomp-default: "true"
+  - role: worker
+    image: kindest/node:v1.23.0@sha256:49824ab1727c04e56a21a5d8372a402fcd32ea51ac96a2706a12af38934f81ac
+    kubeadmConfigPatches:
+      - |
+        kind: JoinConfiguration
+        nodeRegistration:
+          kubeletExtraArgs:
+            feature-gates: SeccompDefault=true
+            seccomp-default: "true"
+```
+
+<!-- If the cluster is ready, then running a pod: -->
+如果集群已就绪，则运行一个 Pod：
+
+```shell
+kubectl run --rm -it --restart=Never --image=alpine alpine -- sh
+```
+
+<!-- 
+Should now have the default seccomp profile attached. This can be verified by
+using `docker exec` to run `crictl inspect` for the container on the kind
+worker:
+-->
+现在应该附加了默认的 seccomp 配置文件。
+这可以通过使用 `docker exec` 为 kind 上的容器运行 `crictl inspect` 来验证：
+
+```shell
+docker exec -it kind-worker bash -c \
+    'crictl inspect $(crictl ps --name=alpine -q) | jq .info.runtimeSpec.linux.seccomp'
+```
+
+```json
+{
+  "defaultAction": "SCMP_ACT_ERRNO",
+  "architectures": ["SCMP_ARCH_X86_64", "SCMP_ARCH_X86", "SCMP_ARCH_X32"],
+  "syscalls": [
+    {
+      "names": ["..."]
+    }
+  ]
+}
+```
+
+<!-- 
+## Create a Pod with a seccomp profile for syscall auditing
+
+To start off, apply the `audit.json` profile, which will log all syscalls of the
+process, to a new Pod.
+
+Here's a manifest for that Pod:
+-->
+## 使用 seccomp 配置文件创建 Pod 以进行系统调用审计 {#create-a-pod-with-a-seccomp-profile-for-syscall-auditing}
+
+首先，将 `audit.json` 配置文件应用到新的 Pod 上，该配置文件将记录进程的所有系统调用。
+
+这是该 Pod 的清单：
+
+{{< codenew file="pods/security/seccomp/ga/audit-pod.yaml" >}}
+
+{{< note >}}
+<!-- 
+The functional support for the already deprecated seccomp annotations
+`seccomp.security.alpha.kubernetes.io/pod` (for the whole pod) and
+`container.seccomp.security.alpha.kubernetes.io/[name]` (for a single container)
+is going to be removed with the release of Kubernetes v1.25. Please always use
+the native API fields in favor of the annotations.
+-->
+已弃用的 seccomp 注解 `seccomp.security.alpha.kubernetes.io/pod`（针对整个 Pod）和
+`container.seccomp.security.alpha.kubernetes.io/[name]`（针对单个容器）
+将随着 Kubernetes v1.25 的发布而被删除。
+请在可能的情况下使用原生 API 字段而不是注解。
+{{< /note >}}
+
+<!-- Create the Pod in the cluster: -->
+在集群中创建 Pod：
+
+```shell
+kubectl apply -f https://k8s.io/examples/pods/security/seccomp/ga/audit-pod.yaml
+```
+
+<!-- 
+This profile does not restrict any syscalls, so the Pod should start
+successfully.
+-->
+此配置文件不限制任何系统调用，因此 Pod 应该成功启动。
+
+```shell
+kubectl get pod/audit-pod
+```
+
+```
+NAME        READY   STATUS    RESTARTS   AGE
+audit-pod   1/1     Running   0          30s
+```
+
+<!-- 
+In order to be able to interact with this endpoint exposed by this
+container, create a NodePort {{< glossary_tooltip text="Services" term_id="service" >}}
+that allows access to the endpoint from inside the kind control plane container.
+-->
+为了能够与容器暴露的端点交互，
+创建一个 NodePort 类型的 {{< glossary_tooltip text="Service" term_id="service" >}}，
+允许从 kind 控制平面容器内部访问端点。
+
+```shell
+kubectl expose pod audit-pod --type NodePort --port 5678
+```
+
+<!-- Check what port the Service has been assigned on the node. -->
+检查 Service 在节点上分配的端口。
+
+```shell
+kubectl get service audit-pod
+```
+
+<!-- The output is similar to: -->
+输出类似于：
+```
+NAME        TYPE       CLUSTER-IP      EXTERNAL-IP   PORT(S)          AGE
+audit-pod   NodePort   10.111.36.142   <none>        5678:32373/TCP   72s
+```
+
+<!-- 
+Now you can use `curl` to access that endpoint from inside the kind control plane container,
+at the port exposed by this Service. Use `docker exec` to run the `curl` command within the
+container belonging to that control plane container:
+-->
+现在，你可以使用 `curl` 从 kind 控制平面容器内部访问该端点，位于该服务所公开的端口上。
+使用 `docker exec` 在属于该控制平面容器的容器中运行 `curl` 命令：
+
+```shell
+# 将 6a96207fed4b 更改为你从 “docker ps” 看到的控制平面容器 ID
+docker exec -it 6a96207fed4b curl localhost:32373
+```
+
+```
+just made some syscalls!
+```
+
+<!-- 
+You can see that the process is running, but what syscalls did it actually make?
+Because this Pod is running in a local cluster, you should be able to see those
+in `/var/log/syslog`. Open up a new terminal window and `tail` the output for
+calls from `http-echo`:
+-->
+你可以看到该进程正在运行，但它实际上进行了哪些系统调用？
+因为这个 Pod 在本地集群中运行，你应该能够在 `/var/log/syslog` 中看到它们。
+打开一个新的终端窗口并 `tail` 来自 `http-echo` 的调用的输出：
+
+```shell
+tail -f /var/log/syslog | grep 'http-echo'
+```
+
+<!-- 
+You should already see some logs of syscalls made by `http-echo`, and if you
+`curl` the endpoint in the control plane container you will see more written.
+
+For example:
+-->
+你应该已经看到了一些由 `http-echo` 进行的系统调用的日志，
+如果你在控制平面容器中 `curl` 端点，你会看到更多的写入。
+
+例如：
+```
+Jul  6 15:37:40 my-machine kernel: [369128.669452] audit: type=1326 audit(1594067860.484:14536): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=29064 comm="http-echo" exe="/http-echo" sig=0 arch=c000003e syscall=51 compat=0 ip=0x46fe1f code=0x7ffc0000
+Jul  6 15:37:40 my-machine kernel: [369128.669453] audit: type=1326 audit(1594067860.484:14537): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=29064 comm="http-echo" exe="/http-echo" sig=0 arch=c000003e syscall=54 compat=0 ip=0x46fdba code=0x7ffc0000
+Jul  6 15:37:40 my-machine kernel: [369128.669455] audit: type=1326 audit(1594067860.484:14538): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=29064 comm="http-echo" exe="/http-echo" sig=0 arch=c000003e syscall=202 compat=0 ip=0x455e53 code=0x7ffc0000
+Jul  6 15:37:40 my-machine kernel: [369128.669456] audit: type=1326 audit(1594067860.484:14539): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=29064 comm="http-echo" exe="/http-echo" sig=0 arch=c000003e syscall=288 compat=0 ip=0x46fdba code=0x7ffc0000
+Jul  6 15:37:40 my-machine kernel: [369128.669517] audit: type=1326 audit(1594067860.484:14540): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=29064 comm="http-echo" exe="/http-echo" sig=0 arch=c000003e syscall=0 compat=0 ip=0x46fd44 code=0x7ffc0000
+Jul  6 15:37:40 my-machine kernel: [369128.669519] audit: type=1326 audit(1594067860.484:14541): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=29064 comm="http-echo" exe="/http-echo" sig=0 arch=c000003e syscall=270 compat=0 ip=0x4559b1 code=0x7ffc0000
+Jul  6 15:38:40 my-machine kernel: [369188.671648] audit: type=1326 audit(1594067920.488:14559): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=29064 comm="http-echo" exe="/http-echo" sig=0 arch=c000003e syscall=270 compat=0 ip=0x4559b1 code=0x7ffc0000
+Jul  6 15:38:40 my-machine kernel: [369188.671726] audit: type=1326 audit(1594067920.488:14560): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=29064 comm="http-echo" exe="/http-echo" sig=0 arch=c000003e syscall=202 compat=0 ip=0x455e53 code=0x7ffc0000
+```
+
+<!-- 
+You can begin to understand the syscalls required by the `http-echo` process by
+looking at the `syscall=` entry on each line. While these are unlikely to
+encompass all syscalls it uses, it can serve as a basis for a seccomp profile
+for this container.
+
+Clean up that Pod and Service before moving to the next section:
+-->
+通过查看每一行的 `syscall=` 条目，你可以开始了解 `http-echo` 进程所需的系统调用。
+虽然这些不太可能包含它使用的所有系统调用，但它可以作为此容器的 seccomp 配置文件的基础。
+
+在转到下一部分之前清理该 Pod 和 Service：
+
+```shell
+kubectl delete service audit-pod --wait
+kubectl delete pod audit-pod --wait --now
+```
+
+<!-- 
+## Create Pod with seccomp profile that causes violation
+
+For demonstration, apply a profile to the Pod that does not allow for any
+syscalls.
+
+The manifest for this demonstration is:
+-->
+## 使用导致违规的 seccomp 配置文件创建 Pod {#create-pod-with-seccomp-profile-that-causes-violation}
+
+出于演示目的，将配置文件应用于不允许任何系统调用的 Pod 上。
+
+此演示的清单是：
+
+{{< codenew file="pods/security/seccomp/ga/violation-pod.yaml" >}}
+
+<!-- Attempt to create the Pod in the cluster: -->
+尝试在集群中创建 Pod：
+
+```shell
+kubectl apply -f https://k8s.io/examples/pods/security/seccomp/ga/violation-pod.yaml
+```
+
+<!-- 
+The Pod creates, but there is an issue.
+If you check the status of the Pod, you should see that it failed to start.
+-->
+Pod 创建，但存在问题。
+如果你检查 Pod 状态，你应该看到它没有启动。
+
+```shell
+kubectl get pod/violation-pod
+```
+
+```
+NAME            READY   STATUS             RESTARTS   AGE
+violation-pod   0/1     CrashLoopBackOff   1          6s
+```
+
+<!-- 
+As seen in the previous example, the `http-echo` process requires quite a few
+syscalls. Here seccomp has been instructed to error on any syscall by setting
+`"defaultAction": "SCMP_ACT_ERRNO"`. This is extremely secure, but removes the
+ability to do anything meaningful. What you really want is to give workloads
+only the privileges they need.
+
+Clean up that Pod before moving to the next section:
+-->
+如上例所示，`http-echo` 进程需要相当多的系统调用。
+这里 seccomp 已通过设置 `"defaultAction": "SCMP_ACT_ERRNO"` 被指示为在发生任何系统调用时报错。
+这是非常安全的，但消除了做任何有意义的事情的能力。
+你真正想要的是只给工作负载它们所需要的权限。
+
+在转到下一部分之前清理该 Pod：
+
+```shell
+kubectl delete pod violation-pod --wait --now
+```
+
+<!-- 
+## Create Pod with seccomp profile that only allows necessary syscalls
+
+If you take a look at the `fine-grained.json` profile, you will notice some of the syscalls
+seen in syslog of the first example where the profile set `"defaultAction":
+"SCMP_ACT_LOG"`. Now the profile is setting `"defaultAction": "SCMP_ACT_ERRNO"`,
+but explicitly allowing a set of syscalls in the `"action": "SCMP_ACT_ALLOW"`
+block. Ideally, the container will run successfully and you will see no messages
+sent to `syslog`.
+
+The manifest for this example is:
+-->
+## 使用只允许必要的系统调用的 seccomp 配置文件创建 Pod {#create-pod-with-seccomp-profile-that-only-allows-necessary-syscalls}
+
+如果你看一看 `fine-grained.json` 配置文件，
+你会注意到第一个示例的 syslog 中看到的一些系统调用，
+其中配置文件设置为 `"defaultAction": "SCMP_ACT_LOG"`。
+现在的配置文件设置 `"defaultAction": "SCMP_ACT_ERRNO"`,
+但在 `"action": "SCMP_ACT_ALLOW"` 块中明确允许一组系统调用。
+理想情况下，容器将成功运行，并且你看到没有消息发送到 `syslog`。
+
+此示例的清单是：
+
+{{< codenew file="pods/security/seccomp/ga/fine-pod.yaml" >}}
+
+<!-- Create the Pod in your cluster: -->
+在你的集群中创建 Pod：
+
+```shell
+kubectl apply -f https://k8s.io/examples/pods/security/seccomp/ga/fine-pod.yaml
+```
+
+```shell
+kubectl get pod fine-pod
+```
+
+<!-- The Pod should be showing as having started successfully: -->
+此 Pod 应该显示为已成功启动：
+```
+NAME        READY   STATUS    RESTARTS   AGE
+fine-pod   1/1     Running   0          30s
+```
+
+<!-- 
+Open up a new terminal window and use `tail` to monitor for log entries that
+mention calls from `http-echo`:
+-->
+打开一个新的终端窗口并使用 `tail` 来监视提到来自 `http-echo` 的调用的日志条目：
+
+```shell
+# 你计算机上的日志路径可能与 “/var/log/syslog” 不同
+tail -f /var/log/syslog | grep 'http-echo'
+```
+
+<!-- Next, expose the Pod with a NodePort Service: -->
+接着，使用 NodePort Service 公开 Pod：
+
+```shell
+kubectl expose pod fine-pod --type NodePort --port 5678
+```
+
+<!-- Check what port the Service has been assigned on the node: -->
+检查节点上的 Service 分配了什么端口：
+
+```shell
+kubectl get service fine-pod
+```
+
+<!-- The output is similar to: -->
+输出类似于：
+```
+NAME        TYPE       CLUSTER-IP      EXTERNAL-IP   PORT(S)          AGE
+fine-pod    NodePort   10.111.36.142   <none>        5678:32373/TCP   72s
+```
+
+<!-- Use `curl` to access that endpoint from inside the kind control plane container: -->
+使用 `curl` 从 kind 控制平面容器内部访问端点：
+
+```shell
+# 将 6a96207fed4b 更改为你从 “docker ps” 看到的控制平面容器 ID
+docker exec -it 6a96207fed4b curl localhost:32373
+```
+
+```
+just made some syscalls!
+```
+
+<!-- 
+You should see no output in the `syslog`. This is because the profile allowed all
+necessary syscalls and specified that an error should occur if one outside of
+the list is invoked. This is an ideal situation from a security perspective, but
+required some effort in analyzing the program. It would be nice if there was a
+simple way to get closer to this security without requiring as much effort.
+
+Clean up that Pod and Service before moving to the next section:
+-->
+你应该在 `syslog` 中看不到任何输出。
+这是因为配置文件允许所有必要的系统调用，并指定如果调用列表之外的系统调用应发生错误。
+从安全角度来看，这是一种理想的情况，但需要在分析程序时付出一些努力。
+如果有一种简单的方法可以在不需要太多努力的情况下更接近这种安全性，那就太好了。
+
+在转到下一部分之前清理该 Pod 和服务：
+
+```shell
+kubectl delete service fine-pod --wait
+kubectl delete pod fine-pod --wait --now
+```
+
+<!--
+## Create Pod that uses the container runtime default seccomp profile
+
+Most container runtimes provide a sane set of default syscalls that are allowed
+or not. You can adopt these defaults for your workload by setting the seccomp
+type in the security context of a pod or container to `RuntimeDefault`. 
+-->
+## 创建使用容器运行时默认 seccomp 配置文件的 Pod {#create-pod-that-uses-the-container-runtime-default-seccomp-profile}
+
+大多数容器运行时都提供了一组合理的默认系统调用，以及是否允许执行这些系统调用。
+你可以通过将 Pod 或容器的安全上下文中的 seccomp 类型设置为 `RuntimeDefault`
+来为你的工作负载采用这些默认值。
+
+{{< note >}}
+<!-- 
+If you have the `SeccompDefault` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) enabled, then Pods use the `RuntimeDefault` seccomp profile whenever
+no other seccomp profile is specified. Otherwise, the default is `Unconfined`.
+-->
+如果你已经启用了 `SeccompDefault` [特性门控](/zh-cn/docs/reference/command-line-tools-reference/feature-gates/)，
+只要没有指定其他 seccomp 配置文件，那么 Pod 就会使用 `SeccompDefault` 的 seccomp 配置文件。
+否则，默认值为 `Unconfined`。
+{{< /note >}}
+
+<!-- 
+Here's a manifest for a Pod that requests the `RuntimeDefault` seccomp profile
+for all its containers:
+-->
+这是一个 Pod 的清单，它要求其所有容器使用 `RuntimeDefault` seccomp 配置文件：
+
+{{< codenew file="pods/security/seccomp/ga/default-pod.yaml" >}}
+
+<!-- Create that Pod: -->
+创建此 Pod：
+```shell
+kubectl apply -f https://k8s.io/examples/pods/security/seccomp/ga/default-pod.yaml
+```
+
+```shell
+kubectl get pod default-pod
+```
+
+<!-- The Pod should be showing as having started successfully: -->
+此 Pod 应该显示为成功启动：
+```
+NAME        READY   STATUS    RESTARTS   AGE
+default-pod 1/1     Running   0          20s
+```
+
+<!-- Finally, now that you saw that work OK, clean up: -->
+最后，你看到一切正常之后，请清理：
+
+```shell
+kubectl delete pod default-pod --wait --now
+```
+
+## {{% heading "whatsnext" %}}
+
+<!-- 
+You can learn more about Linux seccomp:
+
+* [A seccomp Overview](https://lwn.net/Articles/656307/)
+* [Seccomp Security Profiles for Docker](https://docs.docker.com/engine/security/seccomp/)
+-->
+你可以了解有关 Linux seccomp 的更多信息：
+
+* [seccomp 概述](https://lwn.net/Articles/656307/)
+* [Docker 的 Seccomp 安全配置文件](https://docs.docker.com/engine/security/seccomp/)
\ No newline at end of file
diff --git a/content/zh/docs/tutorials/services/_index.md b/content/zh-cn/docs/tutorials/services/_index.md
similarity index 100%
rename from content/zh/docs/tutorials/services/_index.md
rename to content/zh-cn/docs/tutorials/services/_index.md
diff --git a/content/zh-cn/docs/tutorials/services/source-ip.md b/content/zh-cn/docs/tutorials/services/source-ip.md
new file mode 100644
index 0000000000..eaa8109cc7
--- /dev/null
+++ b/content/zh-cn/docs/tutorials/services/source-ip.md
@@ -0,0 +1,646 @@
+---
+title: 使用源 IP
+content_type: tutorial
+min-kubernetes-server-version: v1.5
+---
+<!--  
+title: Using Source IP
+content_type: tutorial
+min-kubernetes-server-version: v1.5
+-->
+
+<!-- overview -->
+
+<!-- 
+Applications running in a Kubernetes cluster find and communicate with each
+other, and the outside world, through the Service abstraction. This document
+explains what happens to the source IP of packets sent to different types
+of Services, and how you can toggle this behavior according to your needs.
+-->
+运行在 Kubernetes 集群中的应用程序通过 Service 抽象发现彼此并相互通信，它们也用 Service 与外部世界通信。
+本文解释了发送到不同类型 Service 的数据包的源 IP 会发生什么情况，以及如何根据需要切换此行为。
+
+## {{% heading "prerequisites" %}}
+
+<!-- 
+### Terminology
+
+This document makes use of the following terms:
+-->
+## 术语表  {#terminology}
+
+本文使用了下列术语：
+
+{{< comment >}}
+<!--
+If localizing this section, link to the equivalent Wikipedia pages for
+the target localization.
+-->
+如果本地化此部分，请链接到目标本地化的等效 Wikipedia 页面。
+{{< /comment >}}
+
+<!--
+[NAT](https://en.wikipedia.org/wiki/Network_address_translation)
+: network address translation
+
+[Source NAT](https://en.wikipedia.org/wiki/Network_address_translation#SNAT)
+: replacing the source IP on a packet; in this page, that usually means replacing with the IP address of a node.
+
+[Destination NAT](https://en.wikipedia.org/wiki/Network_address_translation#DNAT)
+: replacing the destination IP on a packet; in this page, that usually means replacing with the IP address of a {{< glossary_tooltip term_id="pod" >}}
+
+[VIP](/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies)
+: a virtual IP address, such as the one assigned to every {{< glossary_tooltip text="Service" term_id="service" >}} in Kubernetes
+
+[kube-proxy](/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies)
+: a network daemon that orchestrates Service VIP management on every node
+-->
+[NAT](https://zh.wikipedia.org/wiki/%E7%BD%91%E7%BB%9C%E5%9C%B0%E5%9D%80%E8%BD%AC%E6%8D%A2)
+: 网络地址转换
+
+[Source NAT](https://en.wikipedia.org/wiki/Network_address_translation#SNAT)
+: 替换数据包上的源 IP；在本页面中，这通常意味着替换为节点的 IP 地址
+
+[Destination NAT](https://en.wikipedia.org/wiki/Network_address_translation#DNAT)
+: 替换数据包上的目标 IP；在本页面中，这通常意味着替换为 {{<glossary_tooltip text="Pod" term_id="pod" >}} 的 IP 地址
+
+[VIP](/zh-cn/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies)
+: 一个虚拟 IP 地址，例如分配给 Kubernetes 中每个 {{<glossary_tooltip text="Service" term_id="service" >}} 的 IP 地址
+
+[Kube-proxy](/zh-cn/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies)
+: 一个网络守护程序，在每个节点上协调 Service VIP 管理
+
+<!-- 
+### Prerequisites
+-->
+## 先决条件  {#prerequisites}
+
+{{< include "task-tutorial-prereqs.md" >}}
+
+<!-- 
+The examples use a small nginx webserver that echoes back the source
+IP of requests it receives through an HTTP header. You can create it as follows:
+-->
+示例使用一个小型 nginx Web 服务器，服务器通过 HTTP 标头返回它接收到的请求的源 IP。
+你可以按如下方式创建它：
+
+```shell
+kubectl create deployment source-ip-app --image=k8s.gcr.io/echoserver:1.4
+```
+<!-- 
+The output is:
+-->
+输出为：
+```
+deployment.apps/source-ip-app created
+```
+
+## {{% heading "objectives" %}}
+
+<!--
+* Expose a simple application through various types of Services
+* Understand how each Service type handles source IP NAT
+* Understand the tradeoffs involved in preserving source IP
+-->
+* 通过多种类型的 Service 暴露一个简单应用
+* 了解每种 Service 类型如何处理源 IP NAT
+* 了解保留源 IP 所涉及的权衡
+
+<!-- lessoncontent -->
+
+<!-- 
+## Source IP for Services with `Type=ClusterIP`
+-->
+## `Type=ClusterIP` 类型 Service 的源 IP  {#source-ip-for-services-with-type-clusterip}
+
+<!-- 
+Packets sent to ClusterIP from within the cluster are never source NAT'd if
+you're running kube-proxy in
+[iptables mode](/docs/concepts/services-networking/service/#proxy-mode-iptables),
+(the default). You can query the kube-proxy mode by fetching
+`http://localhost:10249/proxyMode` on the node where kube-proxy is running.
+-->
+如果你在 [iptables 模式](/zh-cn/docs/concepts/services-networking/service/#proxy-mode-iptables)（默认）下运行
+kube-proxy，则从集群内发送到 ClusterIP 的数据包永远不会进行源 NAT。
+你可以通过在运行 kube-proxy 的节点上获取 `http://localhost:10249/proxyMode` 来查询 kube-proxy 模式。
+
+```console
+kubectl get nodes
+```
+<!--
+The output is similar to this:
+-->
+输出类似于：
+```
+NAME                   STATUS     ROLES    AGE     VERSION
+kubernetes-node-6jst   Ready      <none>   2h      v1.13.0
+kubernetes-node-cx31   Ready      <none>   2h      v1.13.0
+kubernetes-node-jj1t   Ready      <none>   2h      v1.13.0
+```
+
+<!-- 
+Get the proxy mode on one of the nodes (kube-proxy listens on port 10249):
+-->
+在其中一个节点上获取代理模式（kube-proxy 监听 10249 端口）：
+```shell
+# 在要查询的节点上的 shell 中运行
+curl http://localhost:10249/proxyMode
+```
+<!-- 
+The output is: 
+-->
+输出为：
+```
+iptables
+```
+
+<!--
+You can test source IP preservation by creating a Service over the source IP app: 
+-->
+你可以通过在源 IP 应用程序上创建 Service 来测试源 IP 保留：
+```shell
+kubectl expose deployment source-ip-app --name=clusterip --port=80 --target-port=8080
+```
+<!-- 
+The output is: 
+-->
+输出为：
+```
+service/clusterip exposed
+```
+```shell
+kubectl get svc clusterip
+```
+<!--
+The output is similar to this:
+-->
+输出类似于：
+```
+NAME         TYPE        CLUSTER-IP    EXTERNAL-IP   PORT(S)   AGE
+clusterip    ClusterIP   10.0.170.92   <none>        80/TCP    51s
+```
+
+<!-- 
+And hitting the `ClusterIP` from a pod in the same cluster:
+-->
+并从同一集群中的 Pod 中访问 `ClusterIP`：
+```shell
+kubectl run busybox -it --image=busybox:1.28 --restart=Never --rm
+```
+<!--
+The output is similar to this:
+-->
+输出类似于：
+```
+Waiting for pod default/busybox to be running, status is Pending, pod ready: false
+If you don't see a command prompt, try pressing enter.
+```
+<!-- 
+You can then run a command inside that Pod:
+-->
+然后，你可以在该 Pod 中运行命令：
+```shell
+# 从 “kubectl run” 的终端中运行
+ip addr
+```
+```
+1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue
+    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
+    inet 127.0.0.1/8 scope host lo
+       valid_lft forever preferred_lft forever
+    inet6 ::1/128 scope host
+       valid_lft forever preferred_lft forever
+3: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1460 qdisc noqueue
+    link/ether 0a:58:0a:f4:03:08 brd ff:ff:ff:ff:ff:ff
+    inet 10.244.3.8/24 scope global eth0
+       valid_lft forever preferred_lft forever
+    inet6 fe80::188a:84ff:feb0:26a5/64 scope link
+       valid_lft forever preferred_lft forever
+```
+
+<!--
+…then use `wget` to query the local webserver
+-->
+然后使用 `wget` 查询本地 Web 服务器：
+```shell
+# 将 “10.0.170.92” 替换为 Service 中名为 “clusterip” 的 IPv4 地址
+wget -qO - 10.0.170.92
+```
+```
+CLIENT VALUES:
+client_address=10.244.3.8
+command=GET
+...
+```
+
+<!-- 
+The `client_address` is always the client pod's IP address, whether the client pod and server pod are in the same node or in different nodes.
+-->
+`client_address` 始终是客户端 Pod 的 IP 地址，不管客户端 Pod 和服务器 Pod 位于同一节点还是不同节点。
+
+<!-- 
+## Source IP for Services with `Type=NodePort`
+
+Packets sent to Services with
+[`Type=NodePort`](/docs/concepts/services-networking/service/#type-nodeport)
+are source NAT'd by default. You can test this by creating a `NodePort` Service:
+-->
+## `Type=NodePort` 类型 Service 的源 IP  {#source-ip-for-services-with-type-nodeport}
+
+默认情况下，发送到 [`Type=NodePort`](/zh-cn/docs/concepts/services-networking/service/#type-nodeport)
+的 Service 的数据包会经过源 NAT 处理。你可以通过创建一个 `NodePort` 的 Service 来测试这点：
+```shell
+kubectl expose deployment source-ip-app --name=nodeport --port=80 --target-port=8080 --type=NodePort
+```
+
+<!-- 
+The output is: 
+-->
+输出为：
+```
+service/nodeport exposed
+```
+
+```shell
+NODEPORT=$(kubectl get -o jsonpath="{.spec.ports[0].nodePort}" services nodeport)
+NODES=$(kubectl get nodes -o jsonpath='{ $.items[*].status.addresses[?(@.type=="InternalIP")].address }')
+```
+
+<!--
+If you're running on a cloud provider, you may need to open up a firewall-rule
+for the `nodes:nodeport` reported above.
+Now you can try reaching the Service from outside the cluster through the node
+port allocated above.
+-->
+如果你在云供应商上运行，你可能需要为上面报告的 `nodes:nodeport` 打开防火墙规则。
+现在你可以尝试通过上面分配的节点端口从集群外部访问 Service。
+
+```shell
+for node in $NODES; do curl -s $node:$NODEPORT | grep -i client_address; done
+```
+<!-- 
+The output is similar to:
+-->
+输出类似于：
+```
+client_address=10.180.1.1
+client_address=10.240.0.5
+client_address=10.240.0.3
+```
+
+<!--
+Note that these are not the correct client IPs, they're cluster internal IPs. This is what happens:
+
+* Client sends packet to `node2:nodePort`
+* `node2` replaces the source IP address (SNAT) in the packet with its own IP address
+* `node2` replaces the destination IP on the packet with the pod IP
+* packet is routed to node 1, and then to the endpoint
+* the pod's reply is routed back to node2
+* the pod's reply is sent back to the client
+
+Visually:
+
+{{< figure src="/docs/images/tutor-service-nodePort-fig01.svg" alt="source IP nodeport figure 01" class="diagram-large" caption="Figure. Source IP Type=NodePort using SNAT" link="https://mermaid.live/edit#pako:eNqNkV9rwyAUxb-K3LysYEqS_WFYKAzat9GHdW9zDxKvi9RoMIZtlH732ZjSbE970cu5v3s86hFqJxEYfHjRNeT5ZcUtIbXRaMNN2hZ5vrYRqt52cSXV-4iMSuwkZiYtyX739EqWaahMQ-V1qPxDVLNOvkYrO6fj2dupWMR2iiT6foOKdEZoS5Q2hmVSStoH7w7IMqXUVOefWoaG3XVftHbGeZYVRbH6ZXJ47CeL2-qhxvt_ucTe1SUlpuMN6CX12XeGpLdJiaMMFFr0rdAyvvfxjHEIDbbIgcVSohKDCRy4PUV06KQIuJU6OA9MCdMjBTEEt_-2NbDgB7xAGy3i97VJPP0ABRmcqg" >}}
+-->
+请注意，这些并不是正确的客户端 IP，它们是集群的内部 IP。这是所发生的事情：
+
+* 客户端发送数据包到 `node2:nodePort`
+* `node2` 使用它自己的 IP 地址替换数据包的源 IP 地址（SNAT）
+* `node2` 将数据包上的目标 IP 替换为 Pod IP
+* 数据包被路由到 node1，然后到端点
+* Pod 的回复被路由回 node2
+* Pod 的回复被发送回给客户端
+
+用图表示：
+{{< figure src="/zh-cn/docs/images/tutor-service-nodePort-fig01.svg" alt="图 1：源 IP NodePort" class="diagram-large" caption="如图。使用 SNAT 的源 IP（Type=NodePort）" link="https://mermaid.live/edit#pako:eNqNkV9rwyAUxb-K3LysYEqS_WFYKAzat9GHdW9zDxKvi9RoMIZtlH732ZjSbE970cu5v3s86hFqJxEYfHjRNeT5ZcUtIbXRaMNN2hZ5vrYRqt52cSXV-4iMSuwkZiYtyX739EqWaahMQ-V1qPxDVLNOvkYrO6fj2dupWMR2iiT6foOKdEZoS5Q2hmVSStoH7w7IMqXUVOefWoaG3XVftHbGeZYVRbH6ZXJ47CeL2-qhxvt_ucTe1SUlpuMN6CX12XeGpLdJiaMMFFr0rdAyvvfxjHEIDbbIgcVSohKDCRy4PUV06KQIuJU6OA9MCdMjBTEEt_-2NbDgB7xAGy3i97VJPP0ABRmcqg" >}}
+
+<!-- 
+To avoid this, Kubernetes has a feature to
+[preserve the client source IP](/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip).
+If you set `service.spec.externalTrafficPolicy` to the value `Local`,
+kube-proxy only proxies proxy requests to local endpoints, and does not
+forward traffic to other nodes. This approach preserves the original
+source IP address. If there are no local endpoints, packets sent to the
+node are dropped, so you can rely on the correct source-ip in any packet
+processing rules you might apply a packet that make it through to the
+endpoint.
+-->
+为避免这种情况，Kubernetes 有一个特性可以[保留客户端源 IP](/zh-cn/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip)。
+如果将 `service.spec.externalTrafficPolicy` 设置为 `Local`，
+kube-proxy 只会将代理请求代理到本地端点，而不会将流量转发到其他节点。
+这种方法保留了原始源 IP 地址。如果没有本地端点，则发送到该节点的数据包将被丢弃，
+因此你可以在任何数据包处理规则中依赖正确的源 IP，你可能会应用一个数据包使其通过该端点。
+
+<!--
+Set the `service.spec.externalTrafficPolicy` field as follows:
+-->
+设置 `service.spec.externalTrafficPolicy` 字段如下：
+
+```shell
+kubectl patch svc nodeport -p '{"spec":{"externalTrafficPolicy":"Local"}}'
+```
+<!-- 
+The output is:
+-->
+输出为：
+```
+service/nodeport patched
+```
+
+<!-- 
+Now, re-run the test:
+-->
+现在，重新运行测试：
+
+```shell
+for node in $NODES; do curl --connect-timeout 1 -s $node:$NODEPORT | grep -i client_address; done
+```
+<!-- 
+The output is similar to:
+-->
+输出类似于：
+```
+client_address=198.51.100.79
+```
+
+<!-- 
+Note that you only got one reply, with the *right* client IP, from the one node on which the endpoint pod
+is running.
+
+This is what happens:
+
+* client sends packet to `node2:nodePort`, which doesn't have any endpoints
+* packet is dropped
+* client sends packet to `node1:nodePort`, which *does* have endpoints
+* node1 routes packet to endpoint with the correct source IP
+
+Visually:
+
+{{< figure src="/docs/images/tutor-service-nodePort-fig02.svg" alt="source IP nodeport figure 02" class="diagram-large" caption="Figure. Source IP Type=NodePort preserves client source IP address" link="" >}}
+-->
+请注意，你只从运行端点 Pod 的节点得到了回复，这个回复有**正确的**客户端 IP。
+
+这是发生的事情：
+
+* 客户端将数据包发送到没有任何端点的 `node2:nodePort`
+* 数据包被丢弃
+* 客户端发送数据包到 `node1:nodePort`，它**确实**有端点
+* node1 使用正确的源 IP 地址将数据包路由到端点
+
+用图表示：
+{{< figure src="/zh-cn/docs/images/tutor-service-nodePort-fig02.svg" alt="图 2：源 IP NodePort" class="diagram-large" caption="如图。源 IP（Type=NodePort）保存客户端源 IP 地址" link="" >}}
+
+
+<!-- 
+## Source IP for Services with `Type=LoadBalancer`
+
+Packets sent to Services with
+[`Type=LoadBalancer`](/docs/concepts/services-networking/service/#loadbalancer)
+are source NAT'd by default, because all schedulable Kubernetes nodes in the
+`Ready` state are eligible for load-balanced traffic. So if packets arrive
+at a node without an endpoint, the system proxies it to a node *with* an
+endpoint, replacing the source IP on the packet with the IP of the node (as
+described in the previous section).
+-->
+## `Type=LoadBalancer` 类型 Service 的 Source IP  {#source-ip-for-services-with-type-loadbalancer}
+
+默认情况下，发送到 [`Type=LoadBalancer`](/zh-cn/docs/concepts/services-networking/service/#loadbalancer)
+的 Service 的数据包经过源 NAT处理，因为所有处于 `Ready` 状态的可调度 Kubernetes
+节点对于负载均衡的流量都是符合条件的。
+因此，如果数据包到达一个没有端点的节点，系统会将其代理到一个**带有**端点的节点，用该节点的 IP 替换数据包上的源 IP（如上一节所述）。
+
+<!-- 
+You can test this by exposing the source-ip-app through a load balancer:
+-->
+你可以通过负载均衡器上暴露 source-ip-app 进行测试：
+
+```shell
+kubectl expose deployment source-ip-app --name=loadbalancer --port=80 --target-port=8080 --type=LoadBalancer
+```
+<!-- 
+The output is:
+-->
+输出为：
+```
+service/loadbalancer exposed
+```
+
+<!-- 
+Print out the IP addresses of the Service:
+-->
+打印 Service 的 IP 地址：
+```shell
+kubectl get svc loadbalancer
+```
+<!--
+The output is similar to this:
+-->
+输出类似于：
+```
+NAME           TYPE           CLUSTER-IP    EXTERNAL-IP       PORT(S)   AGE
+loadbalancer   LoadBalancer   10.0.65.118   203.0.113.140     80/TCP    5m
+```
+
+<!-- 
+Next, send a request to this Service's external-ip:
+-->
+接下来，发送请求到 Service 的 的外部IP（External-IP）：
+```shell
+curl 203.0.113.140
+```
+<!--
+The output is similar to this:
+-->
+输出类似于：
+```
+CLIENT VALUES:
+client_address=10.240.0.5
+...
+```
+
+<!-- 
+However, if you're running on Google Kubernetes Engine/GCE, setting the same `service.spec.externalTrafficPolicy`
+field to `Local` forces nodes *without* Service endpoints to remove
+themselves from the list of nodes eligible for loadbalanced traffic by
+deliberately failing health checks.
+
+Visually:
+
+![Source IP with externalTrafficPolicy](/images/docs/sourceip-externaltrafficpolicy.svg)
+-->
+然而，如果你在 Google Kubernetes Engine/GCE 上运行，
+将相同的 `service.spec.externalTrafficPolicy` 字段设置为 `Local`，
+故意导致健康检查失败，从而强制没有端点的节点把自己从负载均衡流量的可选节点列表中删除。
+
+用图表示：
+
+![具有 externalTrafficPolicy 的源 IP](/images/docs/sourceip-externaltrafficpolicy.svg)
+
+<!-- 
+You can test this by setting the annotation:
+-->
+你可以通过设置注解进行测试：
+
+```shell
+kubectl patch svc loadbalancer -p '{"spec":{"externalTrafficPolicy":"Local"}}'
+```
+
+<!--
+You should immediately see the `service.spec.healthCheckNodePort` field allocated
+by Kubernetes:
+-->
+你应该能够立即看到 Kubernetes 分配的 `service.spec.healthCheckNodePort` 字段：
+
+```shell
+kubectl get svc loadbalancer -o yaml | grep -i healthCheckNodePort
+```
+<!-- 
+The output is similar to this:
+-->
+输出类似于：
+```yaml
+  healthCheckNodePort: 32122
+```
+
+<!-- 
+The `service.spec.healthCheckNodePort` field points to a port on every node
+serving the health check at `/healthz`. You can test this:
+-->
+`service.spec.healthCheckNodePort` 字段指向每个在 `/healthz`
+路径上提供健康检查的节点的端口。你可以这样测试：
+
+```shell
+kubectl get pod -o wide -l run=source-ip-app
+```
+<!-- 
+The output is similar to this:
+-->
+输出类似于：
+```
+NAME                            READY     STATUS    RESTARTS   AGE       IP             NODE
+source-ip-app-826191075-qehz4   1/1       Running   0          20h       10.180.1.136   kubernetes-node-6jst
+```
+
+<!-- 
+Use `curl` to fetch the `/healthz` endpoint on various nodes:
+-->
+使用 `curl` 获取各个节点上的 `/healthz` 端点：
+```shell
+# 在你选择的节点上本地运行
+curl localhost:32122/healthz
+```
+```
+1 Service Endpoints found
+```
+
+<!-- 
+On a different node you might get a different result:
+-->
+在不同的节点上，你可能会得到不同的结果：
+```shell
+# 在你选择的节点上本地运行
+curl localhost:32122/healthz
+```
+```
+No Service Endpoints Found
+```
+
+<!-- 
+A controller running on the
+{{< glossary_tooltip text="control plane" term_id="control-plane" >}} is
+responsible for allocating the cloud load balancer. The same controller also
+allocates HTTP health checks pointing to this port/path on each node. Wait
+about 10 seconds for the 2 nodes without endpoints to fail health checks,
+then use `curl` to query the IPv4 address of the load balancer:
+-->
+在{{<glossary_tooltip text="控制平面" term_id="control-plane" >}}上运行的控制器负责分配云负载均衡器。
+同一个控制器还在每个节点上分配指向此端口/路径的 HTTP 健康检查。
+等待大约 10 秒，让 2 个没有端点的节点健康检查失败，然后使用 `curl` 查询负载均衡器的 IPv4 地址：
+
+```shell
+curl 203.0.113.140
+```
+<!-- 
+The output is similar to this:
+-->
+输出类似于：
+```
+CLIENT VALUES:
+client_address=198.51.100.79
+...
+```
+
+<!-- 
+## Cross-platform support
+
+Only some cloud providers offer support for source IP preservation through
+Services with `Type=LoadBalancer`.
+The cloud provider you're running on might fulfill the request for a loadbalancer
+in a few different ways:
+-->
+## 跨平台支持  {#cross-platform-support}
+
+只有部分云提供商为 `Type=LoadBalancer` 的 Service 提供保存源 IP 的支持。
+你正在运行的云提供商可能会以几种不同的方式满足对负载均衡器的请求：
+
+<!-- 
+1. With a proxy that terminates the client connection and opens a new connection
+to your nodes/endpoints. In such cases the source IP will always be that of the
+cloud LB, not that of the client.
+
+2. With a packet forwarder, such that requests from the client sent to the
+loadbalancer VIP end up at the node with the source IP of the client, not
+an intermediate proxy.
+-->
+1. 使用终止客户端连接并打开到你的节点/端点的新连接的代理。
+   在这种情况下，源 IP 将始终是云 LB 的源 IP，而不是客户端的源 IP。
+
+2. 使用数据包转发器，这样客户端发送到负载均衡器 VIP
+   的请求最终会到达具有客户端源 IP 的节点，而不是中间代理。
+
+<!-- 
+Load balancers in the first category must use an agreed upon
+protocol between the loadbalancer and backend to communicate the true client IP
+such as the HTTP [Forwarded](https://tools.ietf.org/html/rfc7239#section-5.2)
+or [X-FORWARDED-FOR](https://en.wikipedia.org/wiki/X-Forwarded-For)
+headers, or the
+[proxy protocol](https://www.haproxy.org/download/1.8/doc/proxy-protocol.txt).
+Load balancers in the second category can leverage the feature described above
+by creating an HTTP health check pointing at the port stored in
+the `service.spec.healthCheckNodePort` field on the Service.
+-->
+第一类负载均衡器必须使用负载均衡器和后端之间商定的协议来传达真实的客户端 IP，
+例如 HTTP [转发](https://tools.ietf.org/html/rfc7239#section-5.2)或
+[X-FORWARDED-FOR](https://en.wikipedia.org/wiki/X-Forwarded-For)
+表头，或[代理协议](https://www.haproxy.org/download/1.8/doc/proxy-protocol.txt)。
+第二类负载均衡器可以通过创建指向存储在 Service 上的 `service.spec.healthCheckNodePort`
+字段中的端口的 HTTP 健康检查来利用上述功能。
+
+## {{% heading "cleanup" %}}
+
+<!-- 
+Delete the Services:
+-->
+删除 Service：
+
+```console
+$ kubectl delete svc -l app=source-ip-app
+```
+
+<!--
+Delete the Deployment, ReplicaSet and Pod: 
+-->
+删除 Deployment、ReplicaSet 和 Pod：
+
+```console
+$ kubectl delete deployment source-ip-app
+```
+
+## {{% heading "whatsnext" %}}
+
+<!-- 
+* Learn more about [connecting applications via services](/docs/concepts/services-networking/connect-applications-service/)
+* Read how to [Create an External Load Balancer](/docs/tasks/access-application-cluster/create-external-load-balancer/)
+-->
+* 详细了解[通过 Service 连接应用程序](/zh-cn/docs/concepts/services-networking/connect-applications-service/)
+* 阅读如何[创建外部负载均衡器](/zh-cn/docs/tasks/access-application-cluster/create-external-load-balancer/)
diff --git a/content/zh/docs/tutorials/stateful-application/_index.md b/content/zh-cn/docs/tutorials/stateful-application/_index.md
similarity index 100%
rename from content/zh/docs/tutorials/stateful-application/_index.md
rename to content/zh-cn/docs/tutorials/stateful-application/_index.md
diff --git a/content/zh/docs/tutorials/stateful-application/basic-stateful-set.md b/content/zh-cn/docs/tutorials/stateful-application/basic-stateful-set.md
similarity index 70%
rename from content/zh/docs/tutorials/stateful-application/basic-stateful-set.md
rename to content/zh-cn/docs/tutorials/stateful-application/basic-stateful-set.md
index 8b7f166a69..cf3a7ac6c8 100644
--- a/content/zh/docs/tutorials/stateful-application/basic-stateful-set.md
+++ b/content/zh-cn/docs/tutorials/stateful-application/basic-stateful-set.md
@@ -1,123 +1,134 @@
 ---
 title: StatefulSet 基础
 content_type: tutorial
-approvers:
+weight: 10
+---
+<!--
+reviewers:
 - enisoc
 - erictune
 - foxish
 - janetkuo
 - kow3ns
 - smarterclayton
-
----
+title: StatefulSet Basics
+content_type: tutorial
+weight: 10
+-->
 
 <!-- overview -->
 
 <!--
 This tutorial provides an introduction to managing applications with
-[StatefulSets](/docs/concepts/workloads/controllers/statefulset/). It
-demonstrates how to create, delete, scale, and update the Pods of StatefulSets.
+{{< glossary_tooltip text="StatefulSets" term_id="statefulset" >}}.
+It demonstrates how to create, delete, scale, and update the Pods of StatefulSets.
 -->
-
-本教程介绍如何了使用 [StatefulSets](/zh/docs/concepts/workloads/controllers/statefulset/) 来管理应用。
-演示了如何创建、删除、扩容/缩容和更新 StatefulSets 的 Pods。
-
-
+本教程介绍了如何使用
+{{< glossary_tooltip text="StatefulSet" term_id="statefulset" >}}
+来管理应用。
+演示了如何创建、删除、扩容/缩容和更新 StatefulSet 的 Pod。
 
 ## {{% heading "prerequisites" %}}
 
-
 <!--
 Before you begin this tutorial, you should familiarize yourself with the
-following Kubernetes concepts.
+following Kubernetes concepts:
 -->
-
 在开始本教程之前，你应该熟悉以下 Kubernetes 的概念：
 
-* [Pods](/zh/docs/concepts/workloads/pods/)
-* [Cluster DNS](/zh/docs/concepts/services-networking/dns-pod-service/)
-* [Headless Services](/zh/docs/concepts/services-networking/service/#headless-services)
-* [PersistentVolumes](/zh/docs/concepts/storage/persistent-volumes/)
-* [PersistentVolume Provisioning](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/persistent-volume-provisioning/)
-* [StatefulSets](/zh/docs/concepts/workloads/controllers/statefulset/)
-* [kubectl CLI](/zh/docs/user-guide/kubectl/)
+<!--
+* [Pods](/docs/concepts/workloads/pods/)
+* [Cluster DNS](/docs/concepts/services-networking/dns-pod-service/)
+* [Headless Services](/docs/concepts/services-networking/service/#headless-services)
+* [PersistentVolumes](/docs/concepts/storage/persistent-volumes/)
+* [PersistentVolume Provisioning](https://github.com/kubernetes/examples/tree/master/staging/persistent-volume-provisioning/)
+* [StatefulSets](/docs/concepts/workloads/controllers/statefulset/)
+* The [kubectl](/docs/reference/kubectl/kubectl/) command line tool
+-->
+* [Pods](/zh-cn/docs/concepts/workloads/pods/)
+* [Cluster DNS](/zh-cn/docs/concepts/services-networking/dns-pod-service/)
+* [Headless Services](/zh-cn/docs/concepts/services-networking/service/#headless-services)
+* [PersistentVolumes](/zh-cn/docs/concepts/storage/persistent-volumes/)
+* [PersistentVolume Provisioning](https://github.com/kubernetes/examples/tree/master/staging/persistent-volume-provisioning/)
+* [StatefulSets](/zh-cn/docs/concepts/workloads/controllers/statefulset/)
+* [kubectl](/zh-cn/docs/reference/kubectl/kubectl/) 命令行工具
 
+{{< note >}}
 <!--
 This tutorial assumes that your cluster is configured to dynamically provision
 PersistentVolumes. If your cluster is not configured to do so, you
 will have to manually provision two 1 GiB volumes prior to starting this
 tutorial.
 -->
-
-本教程假设你的集群被配置为动态的提供 PersistentVolumes。如果没有这样配置，在开始本教程之前，你需要手动准备 2 个 1 GiB 的存储卷。
-
-
+本教程假设你的集群被配置为动态制备 PersistentVolume 卷。
+如果没有这样配置，在开始本教程之前，你需要手动准备 2 个 1 GiB 的存储卷。
+{{< /note >}}
 
 ## {{% heading "objectives" %}}
 
-
 <!--
 StatefulSets are intended to be used with stateful applications and distributed
 systems. However, the administration of stateful applications and
 distributed systems on Kubernetes is a broad, complex topic. In order to
 demonstrate the basic features of a StatefulSet, and not to conflate the former
 topic with the latter, you will deploy a simple web application using a StatefulSet.
+-->
+StatefulSet 旨在与有状态的应用及分布式系统一起使用。然而在 Kubernetes
+上管理有状态应用和分布式系统是一个宽泛而复杂的话题。
+为了演示 StatefulSet 的基本特性，并且不使前后的主题混淆，你将会使用 StatefulSet 部署一个简单的 web 应用。
 
+<!--
 After this tutorial, you will be familiar with the following.
+-->
+在阅读本教程后，你将熟悉以下内容：
 
+<!--
 * How to create a StatefulSet
 * How a StatefulSet manages its Pods
 * How to delete a StatefulSet
 * How to scale a StatefulSet
 * How to update a StatefulSet's Pods
 -->
-
-StatefulSets 旨在与有状态的应用及分布式系统一起使用。然而在 Kubernetes 上管理有状态应用和分布式系统是一个宽泛而复杂的话题。
-为了演示 StatefulSet 的基本特性，并且不使前后的主题混淆，你将会使用 StatefulSet 部署一个简单的 web 应用。
-
-在阅读本教程后，你将熟悉以下内容：
-
 * 如何创建 StatefulSet
-* StatefulSet 怎样管理它的 Pods
+* StatefulSet 怎样管理它的 Pod
 * 如何删除 StatefulSet
 * 如何对 StatefulSet 进行扩容/缩容
-* 如何更新一个 StatefulSet 的 Pods
-
-
-
+* 如何更新一个 StatefulSet 的 Pod
 
 <!-- lessoncontent -->
 
 <!--
 ## Creating a StatefulSet
+-->
+## 创建 StatefulSet   {#creating-a-statefulset}
 
+<!--
 Begin by creating a StatefulSet using the example below. It is similar to the
 example presented in the
 [StatefulSets](/docs/concepts/workloads/controllers/statefulset/) concept.
 It creates a [headless Service](/docs/concepts/services-networking/service/#headless-services),
 `nginx`, to publish the IP addresses of Pods in the StatefulSet, `web`.
 -->
-
-## 创建 StatefulSet
-
-
-作为开始，使用如下示例创建一个 StatefulSet。它和 [StatefulSets](/zh/docs/concepts/workloads/controllers/statefulset/) 概念中的示例相似。
-它创建了一个 [Headless Service](/zh/docs/concepts/services-networking/service/#headless-services) `nginx` 用来发布 StatefulSet `web` 中的 Pod 的 IP 地址。
+作为开始，使用如下示例创建一个 StatefulSet。它和
+[StatefulSet](/zh-cn/docs/concepts/workloads/controllers/statefulset/) 概念中的示例相似。
+它创建了一个 [Headless Service](/zh-cn/docs/concepts/services-networking/service/#headless-services)
+`nginx` 用来发布 StatefulSet `web` 中的 Pod 的 IP 地址。
 
 {{< codenew file="application/web/web.yaml" >}}
 
 <!--
 Download the example above, and save it to a file named `web.yaml`
+-->
+下载上面的例子并保存为文件 `web.yaml`。
 
+<!--
 You will need to use two terminal windows. In the first terminal, use
 [`kubectl get`](/docs/reference/generated/kubectl/kubectl-commands/#get) to watch the creation
 of the StatefulSet's Pods.
 -->
-
-下载上面的例子并保存为文件 `web.yaml`。
-
-
-你需要使用两个终端窗口。 在第一个终端中，使用 [`kubectl get`](/zh/docs/user-guide/kubectl/{{< param "version" >}}/#get)  来查看 StatefulSet 的 Pods 的创建情况。
+你需要使用两个终端窗口。在第一个终端中，使用
+[`kubectl get`](/docs/reference/generated/kubectl/kubectl-commands/#get)
+来监视 StatefulSet 的 Pod 的创建情况。
 
 ```shell
 kubectl get pods -w -l app=nginx
@@ -126,10 +137,10 @@ kubectl get pods -w -l app=nginx
 <!--
 In the second terminal, use
 [`kubectl apply`](/docs/reference/generated/kubectl/kubectl-commands/#apply) to create the
-Headless Service and StatefulSet defined in `web.yaml`.
+headless Service and StatefulSet defined in `web.yaml`.
 -->
-
-在另一个终端中，使用 [`kubectl apply`](/zh/docs/reference/generated/kubectl/kubectl-commands/#apply)来创建定义在 `web.yaml` 中的 Headless Service 和 StatefulSet。
+在另一个终端中，使用 [`kubectl apply`](/docs/reference/generated/kubectl/kubectl-commands/#apply)
+来创建定义在 `web.yaml` 中的 Headless Service 和 StatefulSet。
 
 ```shell
 kubectl apply -f web.yaml
@@ -141,12 +152,10 @@ statefulset.apps/web created
 
 <!--
 The command above creates two Pods, each running an
-[NGINX](https://www.nginx.com) webserver. Get the `nginx` Service and the
-`web` StatefulSet to verify that they were created successfully.
+[NGINX](https://www.nginx.com) webserver. Get the `nginx` Service...
 -->
-
-上面的命令创建了两个 Pod，每个都运行了一个 [NGINX](https://www.nginx.com) web 服务器。
-获取 `nginx` Service 和 `web` StatefulSet 来验证是否成功的创建了它们。
+上面的命令创建了两个 Pod，每个都运行了一个 [NginX](https://www.nginx.com) Web 服务器。
+获取 `nginx` Service：
 
 ```shell
 kubectl get service nginx
@@ -155,10 +164,12 @@ kubectl get service nginx
 NAME      TYPE         CLUSTER-IP   EXTERNAL-IP   PORT(S)   AGE
 nginx     ClusterIP    None         <none>        80/TCP    12s
 ```
+
 <!--
 ...then get the `web` StatefulSet, to verify that both were created successfully:
 -->
-...然后获取 `web` StatefulSet，以验证两者均已成功创建：
+然后获取 `web` StatefulSet，以验证两者均已成功创建：
+
 ```shell
 kubectl get statefulset web
 ```
@@ -168,19 +179,17 @@ web       2         1         20s
 ```
 
 <!--
-
 ### Ordered Pod Creation
+-->
+### 顺序创建 Pod   {#ordered-pod-creation}
 
-For a StatefulSet with N replicas, when Pods are being deployed, they are
-created sequentially, in order from {0..N-1}. Examine the output of the
+<!--
+For a StatefulSet with _n_ replicas, when Pods are being deployed, they are
+created sequentially, ordered from _{0..n-1}_. Examine the output of the
 `kubectl get` command in the first terminal. Eventually, the output will
 look like the example below.
 -->
-
-### 顺序创建 Pod
-
-
-对于一个拥有 N 个副本的 StatefulSet，Pod 被部署时是按照 {0 …… N-1} 的序号顺序创建的。
+对于一个拥有 _n_ 个副本的 StatefulSet，Pod 被部署时是按照 _{0..n-1}_ 的序号顺序创建的。
 在第一个终端中使用 `kubectl get` 检查输出。这个输出最终将看起来像下面的样子。
 
 ```shell
@@ -200,31 +209,33 @@ web-1     1/1       Running   0         18s
 
 <!--
 Notice that the `web-1` Pod is not launched until the `web-0` Pod is
-[Running and Ready](/docs/user-guide/pod-states).
+_Running_ (see [Pod Phase](/docs/concepts/workloads/pods/pod-lifecycle/#pod-phase))
+and _Ready_ (see `type` in [Pod Conditions](/docs/concepts/workloads/pods/pod-lifecycle/#pod-conditions)).
 -->
-请注意在 `web-0` Pod 处于 [Running和Ready](/zh/docs/user-guide/pod-states) 状态后 `web-1` Pod 才会被启动。
+请注意，直到 `web-0` Pod 处于 _Running_（请参阅
+[Pod 阶段](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#pod-phase)）
+并 _Ready_（请参阅 [Pod 状况](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#pod-conditions)中的
+`type`）状态后，`web-1` Pod 才会被启动。
 
 <!--
 ## Pods in a StatefulSet
-
-
-Pods in a StatefulSet have a unique ordinal index and a stable network identity.
-
-### Examining the Pod's Ordinal Index
-
-Get the StatefulSet's Pods.
 -->
+## StatefulSet 中的 Pod   {#pods-in-a-statefulset}
 
-## StatefulSet 中的 Pod
+<!--
+Pods in a StatefulSet have a unique ordinal index and a stable network identity.
+-->
+StatefulSet 中的每个 Pod 拥有一个唯一的顺序索引和稳定的网络身份标识。
 
+<!--
+### Examining the Pod's Ordinal Index
+-->
+### 检查 Pod 的顺序索引   {#examining-the-pod-s-ordinal-index}
 
-StatefulSet 中的 Pod 拥有一个唯一的顺序索引和稳定的网络身份标识。
-
-
-### 检查 Pod 的顺序索引
-
-
-获取 StatefulSet 的 Pod。
+<!--
+Get the StatefulSet's Pods:
+-->
+获取 StatefulSet 的 Pod：
 
 ```shell
 kubectl get pods -l app=nginx
@@ -239,26 +250,31 @@ web-1     1/1       Running   0          1m
 As mentioned in the [StatefulSets](/docs/concepts/workloads/controllers/statefulset/)
 concept, the Pods in a StatefulSet have a sticky, unique identity. This identity
 is based on a unique ordinal index that is assigned to each Pod by the
-StatefulSet controller. The Pods' names take the form
-`<statefulset name>-<ordinal index>`. Since the `web` StatefulSet has two
-replicas, it creates two Pods, `web-0` and `web-1`.
+StatefulSet {{< glossary_tooltip term_id="controller" text="controller">}}.  
+The Pods' names take the form `<statefulset name>-<ordinal index>`.
+Since the `web` StatefulSet has two replicas, it creates two Pods, `web-0` and `web-1`.
+-->
+如同 [StatefulSet](/zh-cn/docs/concepts/workloads/controllers/statefulset/) 概念中所提到的，
+StatefulSet 中的每个 Pod 拥有一个具有黏性的、独一无二的身份标志。
+这个标志基于 StatefulSet
+{{< glossary_tooltip term_id="controller" text="控制器">}}分配给每个
+Pod 的唯一顺序索引。
+Pod 的名称的形式为 `<statefulset 名称>-<序号索引>`。
+`web` StatefulSet 拥有两个副本，所以它创建了两个 Pod：`web-0` 和 `web-1`。
 
+<!--
 ### Using Stable Network Identities
+-->
+### 使用稳定的网络身份标识   {#using-stable-network-identities}
 
+<!--
 Each Pod has a stable hostname based on its ordinal index. Use
 [`kubectl exec`](/docs/reference/generated/kubectl/kubectl-commands/#exec) to execute the
-`hostname` command in each Pod.
+`hostname` command in each Pod:
 -->
-
-如同 [StatefulSets](/zh/docs/concepts/workloads/controllers/statefulset/) 概念中所提到的， 
-StatefulSet 中的 Pod 拥有一个具有黏性的、独一无二的身份标志。
-这个标志基于 StatefulSet 控制器分配给每个 Pod 的唯一顺序索引。
-Pod 的名称的形式为`<statefulset name>-<ordinal index>`。
-`web`StatefulSet 拥有两个副本，所以它创建了两个 Pod：`web-0`和`web-1`。
-
-### 使用稳定的网络身份标识
-
-每个 Pod 都拥有一个基于其顺序索引的稳定的主机名。使用[`kubectl exec`](/zh/docs/reference/generated/kubectl/kubectl-commands/#exec)在每个 Pod 中执行`hostname`。
+每个 Pod 都拥有一个基于其顺序索引的稳定的主机名。使用
+[`kubectl exec`](/docs/reference/generated/kubectl/kubectl-commands/#exec)
+在每个 Pod 中执行 `hostname`：
 
 ```shell
 for i in 0 1; do kubectl exec "web-$i" -- sh -c 'hostname'; done
@@ -272,28 +288,31 @@ web-1
 Use [`kubectl run`](/docs/reference/generated/kubectl/kubectl-commands/#run) to execute
 a container that provides the `nslookup` command from the `dnsutils` package.
 Using `nslookup` on the Pods' hostnames, you can examine their in-cluster DNS
-addresses.
+addresses:
 -->
-
-使用 [`kubectl run`](/zh/docs/reference/generated/kubectl/kubectl-commands/#run) 
+使用 [`kubectl run`](/docs/reference/generated/kubectl/kubectl-commands/#run)
 运行一个提供 `nslookup` 命令的容器，该命令来自于 `dnsutils` 包。
-通过对 Pod 的主机名执行 `nslookup`，你可以检查他们在集群内部的 DNS 地址。
+通过对 Pod 的主机名执行 `nslookup`，你可以检查他们在集群内部的 DNS 地址：
 
 ```shell
 kubectl run -i --tty --image busybox:1.28 dns-test --restart=Never --rm
 ```
+
 <!--
 which starts a new shell. In that new shell, run:
 -->
-这将启动一个新的 shell。在新 shell 中，运行：
+这将启动一个新的 Shell。在新 Shell 中运行：
+
 ```shell
 # Run this in the dns-test container shell
 nslookup web-0.nginx
 ```
+
 <!--
 The output is similar to:
 -->
 输出类似于：
+
 ```
 Server:    10.0.0.10
 Address 1: 10.0.0.10 kube-dns.kube-system.svc.cluster.local
@@ -309,29 +328,36 @@ Name:      web-1.nginx
 Address 1: 10.244.2.6
 ```
 
+<!--
+(and now exit the container shell: `exit`)
+-->
+（现在可以退出容器 Shell：`exit`）
+
 <!--
 The CNAME of the headless service points to SRV records (one for each Pod that
 is Running and Ready). The SRV records point to A record entries that
 contain the Pods' IP addresses.
-
-In one terminal, watch the StatefulSet's Pods.
 -->
-
 headless service 的 CNAME 指向 SRV 记录（记录每个 Running 和 Ready 状态的 Pod）。
 SRV 记录指向一个包含 Pod IP 地址的记录表项。
 
-在一个终端中查看 StatefulSet 的 Pod。
+<!--
+In one terminal, watch the StatefulSet's Pods:
+-->
+在一个终端中监视 StatefulSet 的 Pod：
 
 ```shell
 kubectl get pod -w -l app=nginx
 ```
+
 <!--
 In a second terminal, use
 [`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands/#delete) to delete all
-the Pods in the StatefulSet.
+the Pods in the StatefulSet:
 -->
-
-在另一个终端中使用 [`kubectl delete`](/zh/docs/reference/generated/kubectl/kubectl-commands/#delete) 删除 StatefulSet 中所有的 Pod。
+在另一个终端中使用
+[`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands/#delete)
+删除 StatefulSet 中所有的 Pod：
 
 ```shell
 kubectl delete pod -l app=nginx
@@ -343,10 +369,9 @@ pod "web-1" deleted
 
 <!--
 Wait for the StatefulSet to restart them, and for both Pods to transition to
-Running and Ready.
+Running and Ready:
 -->
-
-等待 StatefulSet 重启它们，并且两个 Pod 都变成 Running 和 Ready 状态。
+等待 StatefulSet 重启它们，并且两个 Pod 都变成 Running 和 Ready 状态：
 
 ```shell
 kubectl get pod -w -l app=nginx
@@ -363,11 +388,11 @@ web-1     1/1       Running   0         34s
 ```
 
 <!--
-Use `kubectl exec` and `kubectl run` to view the Pods hostnames and in-cluster
-DNS entries.
+Use `kubectl exec` and `kubectl run` to view the Pods' hostnames and in-cluster
+DNS entries. First, view the Pods' hostnames:
 -->
-
 使用 `kubectl exec` 和 `kubectl run` 查看 Pod 的主机名和集群内部的 DNS 表项。
+首先，查看 Pod 的主机名：
 
 ```shell
 for i in 0 1; do kubectl exec web-$i -- sh -c 'hostname'; done
@@ -376,26 +401,32 @@ for i in 0 1; do kubectl exec web-$i -- sh -c 'hostname'; done
 web-0
 web-1
 ```
+
 <!--
 then, run:
 -->
 然后，运行：
+
 ```
 kubectl run -i --tty --image busybox:1.28 dns-test --restart=Never --rm /bin/sh
 ```
+
 <!--
 which starts a new shell.  
 In that new shell, run:
 -->
-这将启动一个新的 shell。在新 shell 中，运行：
+这将启动一个新的 Shell。在新 Shell 中，运行：
+
 ```shell
 # Run this in the dns-test container shell
 nslookup web-0.nginx
 ```
+
 <!--
 The output is similar to:
 -->
 输出类似于：
+
 ```
 Server:    10.0.0.10
 Address 1: 10.0.0.10 kube-dns.kube-system.svc.cluster.local
@@ -410,19 +441,33 @@ Address 1: 10.0.0.10 kube-dns.kube-system.svc.cluster.local
 Name:      web-1.nginx
 Address 1: 10.244.2.8
 ```
+
+<!--
+(and now exit the container shell: `exit`)
+-->
+（现在可以退出容器 Shell：`exit`）
+
 <!--
 The Pods' ordinals, hostnames, SRV records, and A record names have not changed,
 but the IP addresses associated with the Pods may have changed. In the cluster
 used for this tutorial, they have. This is why it is important not to configure
 other applications to connect to Pods in a StatefulSet by IP address.
+-->
+Pod 的序号、主机名、SRV 条目和记录名称没有改变，但和 Pod 相关联的 IP 地址可能发生了改变。
+在本教程中使用的集群中它们就改变了。这就是为什么不要在其他应用中使用
+StatefulSet 中 Pod 的 IP 地址进行连接，这点很重要。
 
-
+<!--
 If you need to find and connect to the active members of a StatefulSet, you
-should query the CNAME of the Headless Service
+should query the CNAME of the headless Service
 (`nginx.default.svc.cluster.local`). The SRV records associated with the
 CNAME will contain only the Pods in the StatefulSet that are Running and
 Ready.
+-->
+如果你需要查找并连接一个 StatefulSet 的活动成员，你应该查询 Headless Service 的 CNAME。
+和 CNAME 相关联的 SRV 记录只会包含 StatefulSet 中处于 Running 和 Ready 状态的 Pod。
 
+<!--
 If your application already implements connection logic that tests for
 liveness and readiness, you can use the SRV records of the Pods (
 `web-0.nginx.default.svc.cluster.local`,
@@ -430,36 +475,30 @@ liveness and readiness, you can use the SRV records of the Pods (
 application will be able to discover the Pods' addresses when they transition
 to Running and Ready.
 -->
-
-Pod 的序号、主机名、SRV 条目和记录名称没有改变，但和 Pod 相关联的 IP 地址可能发生了改变。
-在本教程中使用的集群中它们就改变了。这就是为什么不要在其他应用中使用 StatefulSet 中的 Pod 的 IP 地址进行连接，这点很重要。
-
-
-如果你需要查找并连接一个 StatefulSet 的活动成员，你应该查询 Headless Service 的 CNAME。
-和 CNAME 相关联的 SRV 记录只会包含 StatefulSet 中处于 Running 和 Ready 状态的 Pod。
-
-
-如果你的应用已经实现了用于测试 liveness 和 readiness 的连接逻辑，你可以使用 Pod 的 SRV 记录（`web-0.nginx.default.svc.cluster.local`，
-`web-1.nginx.default.svc.cluster.local`）。因为他们是稳定的，并且当你的 Pod 的状态变为 Running 和 Ready 时，你的应用就能够发现它们的地址。
-
+如果你的应用已经实现了用于测试是否已存活（liveness）并就绪（readiness）的连接逻辑，
+你可以使用 Pod 的 SRV 记录（`web-0.nginx.default.svc.cluster.local`、
+`web-1.nginx.default.svc.cluster.local`）。因为他们是稳定的，并且当你的
+Pod 的状态变为 Running 和 Ready 时，你的应用就能够发现它们的地址。
 
 <!--
 ### Writing to Stable Storage
-
-Get the PersistentVolumeClaims for `web-0` and `web-1`.
 -->
+### 写入稳定的存储   {#writing-to-stable-storage}
 
-### 写入稳定的存储
-
-获取 `web-0` 和 `web-1` 的 PersistentVolumeClaims。
+<!--
+Get the PersistentVolumeClaims for `web-0` and `web-1`:
+-->
+获取 `web-0` 和 `web-1` 的 PersistentVolumeClaims：
 
 ```shell
 kubectl get pvc -l app=nginx
 ```
+
 <!--
 The output is similar to:
 -->
 输出类似于：
+
 ```
 NAME        STATUS    VOLUME                                     CAPACITY   ACCESSMODES   AGE
 www-web-0   Bound     pvc-15c268c7-b507-11e6-932f-42010a800002   1Gi        RWO           48s
@@ -467,27 +506,38 @@ www-web-1   Bound     pvc-15c79307-b507-11e6-932f-42010a800002   1Gi        RWO
 ```
 
 <!--
-The StatefulSet controller created two PersistentVolumeClaims that are
-bound to two [PersistentVolumes](/docs/concepts/storage/persistent-volumes/). As the cluster used in this tutorial is configured to dynamically provision
-PersistentVolumes, the PersistentVolumes were created and bound automatically.
-
-The NGINX webservers, by default, will serve an index file at
-`/usr/share/nginx/html/index.html`. The `volumeMounts` field in the
-StatefulSets `spec` ensures that the `/usr/share/nginx/html` directory is
-backed by a PersistentVolume.
-
-Write the Pods' hostnames to their `index.html` files and verify that the NGINX
-webservers serve the hostnames.
+The StatefulSet controller created two
+{{< glossary_tooltip text="PersistentVolumeClaims" term_id="persistent-volume-claim" >}}
+that are bound to two
+{{< glossary_tooltip text="PersistentVolumes" term_id="persistent-volume" >}}.
 -->
+StatefulSet 控制器创建了两个
+{{< glossary_tooltip text="PersistentVolumeClaims" term_id="persistent-volume-claim" >}}，
+绑定到两个
+{{< glossary_tooltip text="PersistentVolumes" term_id="persistent-volume" >}}。
 
-StatefulSet 控制器创建了两个 PersistentVolumeClaims，绑定到两个 [PersistentVolumes](/zh/docs/concepts/storage/volumes/)。由于本教程使用的集群配置为动态提供 PersistentVolume，所有的 PersistentVolume 都是自动创建和绑定的。
+<!--
+As the cluster used in this tutorial is configured to dynamically provision PersistentVolumes,
+the PersistentVolumes were created and bound automatically.
+-->
+由于本教程使用的集群配置为动态制备
+PersistentVolume 卷，所有的 PersistentVolume 卷都是自动创建和绑定的。
 
+<!--
+The NGINX webserver, by default, serves an index file from
+`/usr/share/nginx/html/index.html`. The `volumeMounts` field in the
+StatefulSet's `spec` ensures that the `/usr/share/nginx/html` directory is
+backed by a PersistentVolume.
+-->
+NginX Web 服务器默认会加载位于 `/usr/share/nginx/html/index.html` 的 index 文件。
+StatefulSet `spec` 中的 `volumeMounts` 字段保证了 `/usr/share/nginx/html`
+文件夹由一个 PersistentVolume 卷支持。
 
-NGINX web 服务器默认会加载位于 `/usr/share/nginx/html/index.html` 的 index 文件。
-StatefulSets `spec` 中的 `volumeMounts` 字段保证了 `/usr/share/nginx/html` 文件夹由一个 PersistentVolume 支持。
-
-
-将 Pod 的主机名写入它们的`index.html`文件并验证 NGINX web 服务器使用该主机名提供服务。
+<!--
+Write the Pods' hostnames to their `index.html` files and verify that the NGINX
+webservers serve the hostnames:
+-->
+将 Pod 的主机名写入它们的 `index.html` 文件并验证 NginX Web 服务器使用该主机名提供服务：
 
 ```shell
 for i in 0 1; do kubectl exec "web-$i" -- sh -c 'echo "$(hostname)" > /usr/share/nginx/html/index.html'; done
@@ -506,7 +556,6 @@ you will need to fix the permissions of the directory mounted by the `volumeMoun
 (due to a [bug when using hostPath volumes](https://github.com/kubernetes/kubernetes/issues/2630)),
 by running:
 -->
-
 请注意，如果你看见上面的 curl 命令返回了 **403 Forbidden** 的响应，你需要像这样修复使用 `volumeMounts`
 （原因归咎于[使用 hostPath 卷时存在的缺陷](https://github.com/kubernetes/kubernetes/issues/2630)）
 挂载的目录的权限
@@ -517,25 +566,22 @@ by running:
 <!--
 before retrying the `curl` command above.
 -->
-
 在你重新尝试上面的 `curl` 命令之前。
 {{< /note >}}
 
 <!--
-In one terminal, watch the StatefulSet's Pods.
+In one terminal, watch the StatefulSet's Pods:
 -->
-
-在一个终端查看 StatefulSet 的 Pod。
+在一个终端监视 StatefulSet 的 Pod：
 
 ```shell
 kubectl get pod -w -l app=nginx
 ```
 
 <!--
-In a second terminal, delete all of the StatefulSet's Pods.
+In a second terminal, delete all of the StatefulSet's Pods:
 -->
-
-在另一个终端删除 StatefulSet 所有的 Pod。
+在另一个终端删除 StatefulSet 所有的 Pod：
 
 ```shell
 kubectl delete pod -l app=nginx
@@ -544,11 +590,11 @@ kubectl delete pod -l app=nginx
 pod "web-0" deleted
 pod "web-1" deleted
 ```
+
 <!--
 Examine the output of the `kubectl get` command in the first terminal, and wait
 for all of the Pods to transition to Running and Ready.
 -->
-
 在第一个终端里检查 `kubectl get` 命令的输出，等待所有 Pod 变成 Running 和 Ready 状态。
 
 ```shell
@@ -566,10 +612,9 @@ web-1     1/1       Running   0         34s
 ```
 
 <!--
-Verify the web servers continue to serve their hostnames.
+Verify the web servers continue to serve their hostnames:
 -->
-
-验证所有 web 服务器在继续使用它们的主机名提供服务。
+验证所有 Web 服务器在继续使用它们的主机名提供服务：
 
 ```
 for i in 0 1; do kubectl exec -i -t "web-$i" -- curl http://localhost/; done
@@ -583,35 +628,37 @@ web-1
 Even though `web-0` and `web-1` were rescheduled, they continue to serve their
 hostnames because the PersistentVolumes associated with their
 PersistentVolumeClaims are remounted to their `volumeMounts`. No matter what
-node `web-0`and `web-1` are scheduled on, their PersistentVolumes will be
+node `web-0` and `web-1` are scheduled on, their PersistentVolumes will be
 mounted to the appropriate mount points.
+-->
+虽然 `web-0` 和 `web-1` 被重新调度了，但它们仍然继续监听各自的主机名，因为和它们的
+PersistentVolumeClaim 相关联的 PersistentVolume 卷被重新挂载到了各自的 `volumeMount` 上。
+不管 `web-0` 和 `web-1` 被调度到了哪个节点上，它们的 PersistentVolume 卷将会被挂载到合适的挂载点上。
 
+<!--
 ## Scaling a StatefulSet
+-->
+## 扩容/缩容 StatefulSet   {#scaling-a-statefulset}
+
+<!--
 Scaling a StatefulSet refers to increasing or decreasing the number of replicas.
 This is accomplished by updating the `replicas` field. You can use either
 [`kubectl scale`](/docs/reference/generated/kubectl/kubectl-commands/#scale) or
 [`kubectl patch`](/docs/reference/generated/kubectl/kubectl-commands/#patch) to scale a StatefulSet.
-
-### Scaling Up
-
-In one terminal window, watch the Pods in the StatefulSet.
 -->
-
-虽然 `web-0` 和 `web-1` 被重新调度了，但它们仍然继续监听各自的主机名，因为和它们的 PersistentVolumeClaim 相关联的 PersistentVolume 被重新挂载到了各自的 `volumeMount` 上。
-不管 `web-0` 和 `web-1` 被调度到了哪个节点上，它们的 PersistentVolumes 将会被挂载到合适的挂载点上。
-
-
-## 扩容/缩容 StatefulSet
-
 扩容/缩容 StatefulSet 指增加或减少它的副本数。这通过更新 `replicas` 字段完成。
-你可以使用[`kubectl scale`](/zh/docs/user-guide/kubectl/{{< param "version" >}}/#scale) 
-或者[`kubectl patch`](/zh/docs/user-guide/kubectl/{{< param "version" >}}/#patch)来扩容/缩容一个 StatefulSet。
+你可以使用 [`kubectl scale`](/docs/reference/generated/kubectl/kubectl-commands/#scale)
+或者 [`kubectl patch`](/docs/reference/generated/kubectl/kubectl-commands/#patch) 来扩容/缩容一个 StatefulSet。
 
+<!--
+### Scaling Up
+-->
+### 扩容   {#scaling-up}
 
-### 扩容
-
-
-在一个终端窗口观察 StatefulSet 的 Pod。
+<!--
+In one terminal window, watch the Pods in the StatefulSet:
+-->
+在一个终端窗口监视 StatefulSet 的 Pod：
 
 ```shell
 kubectl get pods -w -l app=nginx
@@ -619,9 +666,9 @@ kubectl get pods -w -l app=nginx
 
 <!--
 In another terminal window, use `kubectl scale` to scale the number of replicas
-to 5.-->
-
-在另一个终端窗口使用 `kubectl scale` 扩展副本数为 5。
+to 5:
+-->
+在另一个终端窗口使用 `kubectl scale` 扩展副本数为 5：
 
 ```shell
 kubectl scale sts web --replicas=5
@@ -629,11 +676,11 @@ kubectl scale sts web --replicas=5
 ```
 statefulset.apps/web scaled
 ```
+
 <!--
 Examine the output of the `kubectl get` command in the first terminal, and wait
 for the three additional Pods to transition to Running and Ready.
 -->
-
 在第一个 终端中检查 `kubectl get` 命令的输出，等待增加的 3 个 Pod 的状态变为 Running 和 Ready。
 
 ```shell
@@ -664,19 +711,20 @@ The StatefulSet controller scaled the number of replicas. As with
 created each Pod sequentially with respect to its ordinal index, and it
 waited for each Pod's predecessor to be Running and Ready before launching the
 subsequent Pod.
-
-### Scaling Down
-
-In one terminal, watch the StatefulSet's Pods.
 -->
-
 StatefulSet 控制器扩展了副本的数量。
-如同[创建 StatefulSet](#顺序创建pod) 所述，StatefulSet 按序号索引顺序的创建每个 Pod，并且会等待前一个 Pod 变为 Running 和 Ready 才会启动下一个 Pod。
+如同[创建 StatefulSet](#ordered-pod-creation) 所述，StatefulSet 按序号索引顺序创建各个
+Pod，并且会等待前一个 Pod 变为 Running 和 Ready 才会启动下一个 Pod。
 
-### 缩容
+<!--
+### Scaling Down
+-->
+### 缩容   {#scaling-down}
 
-
-在一个终端观察 StatefulSet 的 Pod。
+<!--
+In one terminal, watch the StatefulSet's Pods:
+-->
+在一个终端监视 StatefulSet 的 Pod：
 
 ```shell
 kubectl get pods -w -l app=nginx
@@ -684,10 +732,9 @@ kubectl get pods -w -l app=nginx
 
 <!--
 In another terminal, use `kubectl patch` to scale the StatefulSet back down to
-three replicas.
+three replicas:
 -->
-
-在另一个终端使用 `kubectl patch` 将 StatefulSet 缩容回三个副本。
+在另一个终端使用 `kubectl patch` 将 StatefulSet 缩容回三个副本：
 
 ```shell
 kubectl patch sts web -p '{"spec":{"replicas":3}}'
@@ -699,7 +746,6 @@ statefulset.apps/web patched
 <!--
 Wait for `web-4` and `web-3` to transition to Terminating.
 -->
-
 等待 `web-4` 和 `web-3` 状态变为 Terminating。
 
 ```shell
@@ -722,21 +768,20 @@ web-3     1/1       Terminating   0         42s
 
 <!--
 ### Ordered Pod Termination
+-->
+### 顺序终止 Pod   {#ordered-pod-termination}
 
+<!--
 The controller deleted one Pod at a time, in reverse order with respect to its
 ordinal index, and it waited for each to be completely shutdown before
 deleting the next.
-
-Get the StatefulSet's PersistentVolumeClaims.
 -->
-
-### 顺序终止 Pod
-
-
 控制器会按照与 Pod 序号索引相反的顺序每次删除一个 Pod。在删除下一个 Pod 前会等待上一个被完全关闭。
 
-
-获取 StatefulSet 的 PersistentVolumeClaims。
+<!--
+Get the StatefulSet's PersistentVolumeClaims:
+-->
+获取 StatefulSet 的 PersistentVolumeClaims：
 
 ```shell
 kubectl get pvc -l app=nginx
@@ -754,46 +799,50 @@ www-web-4   Bound     pvc-e11bb5f8-b508-11e6-932f-42010a800002   1Gi        RWO
 <!--
 There are still five PersistentVolumeClaims and five PersistentVolumes.
 When exploring a Pod's [stable storage](#writing-to-stable-storage), we saw that the PersistentVolumes mounted to the Pods of a StatefulSet are not deleted when the StatefulSet's Pods are deleted. This is still true when Pod deletion is caused by scaling the StatefulSet down.
+-->
+五个 PersistentVolumeClaims 和五个 PersistentVolume 卷仍然存在。
+查看 Pod 的[稳定存储](#stable-storage)，我们发现当删除 StatefulSet 的
+Pod 时，挂载到 StatefulSet 的 Pod 的 PersistentVolume 卷不会被删除。
+当这种删除行为是由 StatefulSet 缩容引起时也是一样的。
 
+<!--
 ## Updating StatefulSets
+-->
+## 更新 StatefulSet   {#updating-statefulsets}
 
+<!--
 In Kubernetes 1.7 and later, the StatefulSet controller supports automated updates.  The
 strategy used is determined by the `spec.updateStrategy` field of the
 StatefulSet API Object. This feature can be used to upgrade the container
 images, resource requests and/or limits, labels, and annotations of the Pods in a
 StatefulSet. There are two valid update strategies, `RollingUpdate` and
 `OnDelete`.
+-->
+从 Kubernetes 1.7 版本开始，StatefulSet 控制器支持自动更新。
+更新策略由 StatefulSet API 对象的 `spec.updateStrategy` 字段决定。这个特性能够用来更新一个
+StatefulSet 中 Pod 的的容器镜像、资源请求和限制、标签和注解。
 
+<!--
 `RollingUpdate` update strategy is the default for StatefulSets.
 -->
+`RollingUpdate` 更新策略是 StatefulSet 默认策略。
 
-五个 PersistentVolumeClaims 和五个 PersistentVolumes 仍然存在。
-查看 Pod 的 [稳定存储](#stable-storage)，我们发现当删除 StatefulSet 的 Pod 时，挂载到 StatefulSet 的 Pod 的 PersistentVolumes 不会被删除。
-当这种删除行为是由 StatefulSet 缩容引起时也是一样的。
-
-
-## 更新 StatefulSet
-
-
-Kubernetes 1.7 版本的 StatefulSet 控制器支持自动更新。
-更新策略由 StatefulSet API Object 的`spec.updateStrategy` 字段决定。这个特性能够用来更新一个 StatefulSet 中的 Pod 的 container images，resource requests，以及 limits，labels 和 annotations。
-`RollingUpdate`滚动更新是 StatefulSets 默认策略。
-
+<!--
+### Rolling Update
+-->
+### 滚动更新   {#rolling-update}
 
 <!--
 The `RollingUpdate` update strategy will update all Pods in a StatefulSet, in
 reverse ordinal order, while respecting the StatefulSet guarantees.
-
-Patch the `web` StatefulSet to apply the `RollingUpdate` update strategy.
 -->
+`RollingUpdate` 更新策略会更新一个 StatefulSet 中的所有
+Pod，采用与序号索引相反的顺序并遵循 StatefulSet 的保证。
 
-### Rolling Update 策略
-
-
-`RollingUpdate` 更新策略会更新一个 StatefulSet 中所有的 Pod，采用与序号索引相反的顺序并遵循 StatefulSet 的保证。
-
-
-Patch `web` StatefulSet 来执行 `RollingUpdate` 更新策略。
+<!--
+Patch the `web` StatefulSet to apply the `RollingUpdate` update strategy:
+-->
+对 `web` StatefulSet 应用 Patch 操作来应用 `RollingUpdate` 更新策略：
 
 ```shell
 kubectl patch statefulset web -p '{"spec":{"updateStrategy":{"type":"RollingUpdate"}}}'
@@ -801,12 +850,12 @@ kubectl patch statefulset web -p '{"spec":{"updateStrategy":{"type":"RollingUpda
 ```
 statefulset.apps/web patched
 ```
+
 <!--
 In one terminal window, patch the `web` StatefulSet to change the container
-image again.
+image again:
 -->
-
-在一个终端窗口中 patch `web` StatefulSet 来再次的改变容器镜像。
+在一个终端窗口中对 `web` StatefulSet 执行 patch 操作来再次改变容器镜像：
 
 ```shell
 kubectl patch statefulset web --type='json' -p='[{"op": "replace", "path": "/spec/template/spec/containers/0/image", "value":"gcr.io/google_containers/nginx-slim:0.8"}]'
@@ -816,18 +865,19 @@ statefulset.apps/web patched
 ```
 
 <!--
-In another terminal, watch the Pods in the StatefulSet.
+In another terminal, watch the Pods in the StatefulSet:
 -->
-
-在另一个终端监控 StatefulSet 中的 Pod。
+在另一个终端监控 StatefulSet 中的 Pod：
 
 ```shell
-kubectl get po -l app=nginx -w
+kubectl get pod -l app=nginx -w
 ```
+
 <!--
 The output is similar to:
 -->
 输出类似于：
+
 ```
 NAME      READY     STATUS    RESTARTS   AGE
 web-0     1/1       Running   0          7m
@@ -869,21 +919,26 @@ StatefulSet controller terminates each Pod, and waits for it to transition to Ru
 Ready prior to updating the next Pod. Note that, even though the StatefulSet
 controller will not proceed to update the next Pod until its ordinal successor
 is Running and Ready, it will restore any Pod that fails during the update to
-its current version. Pods that have already received the update will be
-restored to the updated version, and Pods that have not yet received the
-update will be restored to the previous version. In this way, the controller
-attempts to continue to keep the application healthy and the update consistent
-in the presence of intermittent failures.
-
-Get the Pods to view their container images.
+its current version.
 -->
+StatefulSet 里的 Pod 采用和序号相反的顺序更新。在更新下一个 Pod 前，StatefulSet
+控制器终止每个 Pod 并等待它们变成 Running 和 Ready。
+请注意，虽然在顺序后继者变成 Running 和 Ready 之前 StatefulSet 控制器不会更新下一个
+Pod，但它仍然会重建任何在更新过程中发生故障的 Pod，使用的是它们当前的版本。
 
-StatefulSet 里的 Pod 采用和序号相反的顺序更新。在更新下一个 Pod 前，StatefulSet 控制器终止每个 Pod 并等待它们变成 Running 和 Ready。
-请注意，虽然在顺序后继者变成 Running 和 Ready 之前 StatefulSet 控制器不会更新下一个 Pod，但它仍然会重建任何在更新过程中发生故障的 Pod，使用的是它们当前的版本。
+<!--
+Pods that have already received the update will be restored to the updated version,
+and Pods that have not yet received the update will be restored to the previous
+version. In this way, the controller attempts to continue to keep the application
+healthy and the update consistent in the presence of intermittent failures.
+-->
 已经接收到更新请求的 Pod 将会被恢复为更新的版本，没有收到请求的 Pod 则会被恢复为之前的版本。
 像这样，控制器尝试继续使应用保持健康并在出现间歇性故障时保持更新的一致性。
 
-获取 Pod 来查看他们的容器镜像。
+<!--
+Get the Pods to view their container images:
+-->
+获取 Pod 来查看它们的容器镜像：
 
 ```shell
 for p in 0 1 2; do kubectl get pod "web-$p" --template '{{range $i, $c := .spec.containers}}{{$c.image}}{{end}}'; echo; done
@@ -897,32 +952,37 @@ k8s.gcr.io/nginx-slim:0.8
 
 <!--
 All the Pods in the StatefulSet are now running the previous container image.
+-->
+StatefulSet 中的所有 Pod 现在都在运行之前的容器镜像。
 
-**Tip** You can also use `kubectl rollout status sts/<name>` to view
-the status of a rolling update.
+{{< note >}}
+<!--
+You can also use `kubectl rollout status sts/<name>` to view
+the status of a rolling update to a StatefulSet
+-->
+你还可以使用 `kubectl rollout status sts/<名称>` 来查看
+StatefulSet 的滚动更新状态。
+{{< /note >}}
 
+<!--
 #### Staging an Update
+-->
+#### 分段更新   {#staging-an-update}
+
+<!--
 You can stage an update to a StatefulSet by using the `partition` parameter of
 the `RollingUpdate` update strategy. A staged update will keep all of the Pods
 in the StatefulSet at the current version while allowing mutations to the
 StatefulSet's `.spec.template`.
-
-Patch the `web` StatefulSet to add a partition to the `updateStrategy` field.
 -->
-
-StatefulSet 中的所有 Pod 现在都在运行之前的容器镜像。
-
-
-**小窍门**：你还可以使用 `kubectl rollout status sts/<name>` 来查看 rolling update 的状态。
-
-
-#### 分段更新
-
 你可以使用 `RollingUpdate` 更新策略的 `partition` 参数来分段更新一个 StatefulSet。
-分段的更新将会使 StatefulSet 中的其余所有 Pod 保持当前版本的同时仅允许改变 StatefulSet 的  `.spec.template`。
+分段的更新将会使 StatefulSet 中的其余所有 Pod 保持当前版本的同时允许改变
+StatefulSet 的 `.spec.template`。
 
-
-Patch `web` StatefulSet 来对 `updateStrategy` 字段添加一个分区。
+<!--
+Patch the `web` StatefulSet to add a partition to the `updateStrategy` field:
+-->
+对 `web` StatefulSet 执行 Patch 操作以为 `updateStrategy` 字段添加一个分区：
 
 ```shell
 kubectl patch statefulset web -p '{"spec":{"updateStrategy":{"type":"RollingUpdate","rollingUpdate":{"partition":3}}}}'
@@ -932,10 +992,9 @@ statefulset.apps/web patched
 ```
 
 <!--
-Patch the StatefulSet again to change the container's image.
+Patch the StatefulSet again to change the container's image:
 -->
-
-再次 Patch StatefulSet 来改变容器镜像。
+再次 Patch StatefulSet 来改变容器镜像：
 
 ```shell
 kubectl patch statefulset web --type='json' -p='[{"op": "replace", "path": "/spec/template/spec/containers/0/image", "value":"k8s.gcr.io/nginx-slim:0.7"}]'
@@ -945,10 +1004,9 @@ statefulset.apps/web patched
 ```
 
 <!--
-Delete a Pod in the StatefulSet.
+Delete a Pod in the StatefulSet:
 -->
-
-删除 StatefulSet 中的 Pod。
+删除 StatefulSet 中的 Pod：
 
 ```shell
 kubectl delete pod web-2
@@ -960,7 +1018,6 @@ pod "web-2" deleted
 <!--
 Wait for the Pod to be Running and Ready.
 -->
-
 等待 Pod 变成 Running 和 Ready。
 
 ```shell
@@ -975,10 +1032,9 @@ web-2     1/1       Running   0         18s
 ```
 
 <!--
-Get the Pod's container.
+Get the Pod's container image:
 -->
-
-获取 Pod 的容器。
+获取 Pod 的容器镜像：
 
 ```shell
 kubectl get pod web-2 --template '{{range $i, $c := .spec.containers}}{{$c.image}}{{end}}'
@@ -989,27 +1045,29 @@ k8s.gcr.io/nginx-slim:0.8
 
 <!--
 Notice that, even though the update strategy is `RollingUpdate` the StatefulSet
-controller restored the Pod with its original container. This is because the
+restored the Pod with its original container. This is because the
 ordinal of the Pod is less than the `partition` specified by the
 `updateStrategy`.
-
-#### Rolling Out a Canary
-You can roll out a canary to test a modification by decrementing the `partition`
-you specified [above](#staging-an-update).
-
-Patch the StatefulSet to decrement the partition.
 -->
-
-请注意，虽然更新策略是 `RollingUpdate`，StatefulSet 控制器还是会使用原始的容器恢复 Pod。
+请注意，虽然更新策略是 `RollingUpdate`，StatefulSet 还是会使用原始的容器恢复 Pod。
 这是因为 Pod 的序号比 `updateStrategy` 指定的 `partition` 更小。
 
+<!--
+#### Rolling Out a Canary
+-->
+#### 金丝雀发布   {#rolling-out-a-canary}
 
-#### 灰度发布
+<!--
+You can roll out a canary to test a modification by decrementing the `partition`
+you specified [above](#staging-an-update).
+-->
+你可以通过减少[上文](#staging-an-update)指定的
+`partition` 来进行金丝雀发布，以此来测试你的程序的改动。
 
-你可以通过减少 [上文](#分段更新)指定的 `partition` 来进行灰度发布，以此来测试你的程序的改动。
-
-
-通过 patch 命令修改 StatefulSet 来减少分区。
+<!--
+Patch the StatefulSet to decrement the partition:
+-->
+通过 patch 命令修改 StatefulSet 来减少分区：
 
 ```shell
 kubectl patch statefulset web -p '{"spec":{"updateStrategy":{"type":"RollingUpdate","rollingUpdate":{"partition":2}}}}'
@@ -1021,7 +1079,6 @@ statefulset.apps/web patched
 <!--
 Wait for `web-2` to be Running and Ready.
 -->
-
 等待 `web-2` 变成 Running 和 Ready。
 
 ```shell
@@ -1036,10 +1093,9 @@ web-2     1/1       Running   0         18s
 ```
 
 <!--
-Get the Pod's container.
+Get the Pod's container:
 -->
-
-获取 Pod 的容器。
+获取 Pod 的容器：
 
 ```shell
 kubectl get pod web-2 --template '{{range $i, $c := .spec.containers}}{{$c.image}}{{end}}'
@@ -1053,14 +1109,14 @@ k8s.gcr.io/nginx-slim:0.7
 When you changed the `partition`, the StatefulSet controller automatically
 updated the `web-2` Pod because the Pod's ordinal was greater than or equal to
 the `partition`.
-
-Delete the `web-1` Pod.
 -->
+当你改变 `partition` 时，StatefulSet 会自动更新 `web-2`
+Pod，这是因为 Pod 的序号大于或等于 `partition`。
 
-当你改变 `partition` 时，StatefulSet 会自动的更新 `web-2` Pod，这是因为 Pod 的序号大于或等于 `partition`。
-
-
-删除 `web-1` Pod。
+<!--
+Delete the `web-1` Pod:
+-->
+删除 `web-1` Pod：
 
 ```shell
 kubectl delete pod web-1
@@ -1072,16 +1128,17 @@ pod "web-1" deleted
 <!--
 Wait for the `web-1` Pod to be Running and Ready.
 -->
-
 等待 `web-1` 变成 Running 和 Ready。
 
 ```shell
 kubectl get pod -l app=nginx -w
 ```
+
 <!--
 The output is similar to:
 -->
 输出类似于：
+
 ```
 NAME      READY     STATUS        RESTARTS   AGE
 web-0     1/1       Running       0          6m
@@ -1097,10 +1154,9 @@ web-1     1/1       Running   0         18s
 ```
 
 <!--
-Get the `web-1` Pods container.
+Get the `web-1` Pod's container image:
 -->
-
-获取 `web-1` Pod 的容器。
+获取 `web-1` Pod 的容器镜像：
 
 ```shell
 kubectl get pod web-1 --template '{{range $i, $c := .spec.containers}}{{$c.image}}{{end}}'
@@ -1116,28 +1172,31 @@ ordinal that is greater than or equal to the partition will be updated when the
 StatefulSet's `.spec.template` is updated. If a Pod that has an ordinal less
 than the partition is deleted or otherwise terminated, it will be restored to
 its original configuration.
+-->
+`web-1` 被按照原来的配置恢复，因为 Pod 的序号小于分区。当指定了分区时，如果更新了
+StatefulSet 的 `.spec.template`，则所有序号大于或等于分区的 Pod 都将被更新。
+如果一个序号小于分区的 Pod 被删除或者终止，它将被按照原来的配置恢复。
 
+<!--
 #### Phased Roll Outs
+-->
+#### 分阶段的发布   {#phased-roll-outs}
+
+<!--
 You can perform a phased roll out (e.g. a linear, geometric, or exponential
 roll out) using a partitioned rolling update in a similar manner to how you
 rolled out a [canary](#rolling-out-a-canary). To perform a phased roll out, set
 the `partition` to the ordinal at which you want the controller to pause the
 update.
-
-The partition is currently set to `2`. Set the partition to `0`.
 -->
-
-`web-1` 被按照原来的配置恢复，因为 Pod 的序号小于分区。当指定了分区时，如果更新了 StatefulSet 的 `.spec.template`，则所有序号大于或等于分区的 Pod 都将被更新。
-如果一个序号小于分区的 Pod 被删除或者终止，它将被按照原来的配置恢复。
-
-
-#### 分阶段的发布
-
-你可以使用类似[灰度发布](#灰度发布)的方法执行一次分阶段的发布（例如一次线性的、等比的或者指数形式的发布）。
+你可以使用类似[金丝雀发布](#rolling-out-a-canary)的方法执行一次分阶段的发布
+（例如一次线性的、等比的或者指数形式的发布）。
 要执行一次分阶段的发布，你需要设置 `partition` 为希望控制器暂停更新的序号。
 
-
-分区当前为`2`。请将分区设置为`0`。
+<!--
+The partition is currently set to `2`. Set the partition to `0`:
+-->
+分区当前为 `2`。请将分区设置为 `0`：
 
 ```shell
 kubectl patch statefulset web -p '{"spec":{"updateStrategy":{"type":"RollingUpdate","rollingUpdate":{"partition":0}}}}'
@@ -1149,16 +1208,17 @@ statefulset.apps/web patched
 <!--
 Wait for all of the Pods in the StatefulSet to become Running and Ready.
 -->
-
 等待 StatefulSet 中的所有 Pod 变成 Running 和 Ready。
 
 ```shell
 kubectl get pod -l app=nginx -w
 ```
+
 <!--
 The output is similar to:
 -->
 输出类似于：
+
 ```
 NAME      READY     STATUS              RESTARTS   AGE
 web-0     1/1       Running             0          3m
@@ -1176,11 +1236,11 @@ web-0     0/1       Pending   0         0s
 web-0     0/1       ContainerCreating   0         0s
 web-0     1/1       Running   0         3s
 ```
-<!--
-Get the Pod's containers.
--->
 
-获取 Pod 的容器。
+<!--
+Get the container image details for the Pods in the StatefulSet:
+-->
+获取 StatefulSet 中 Pod 的容器镜像详细信息：
 
 ```shell
 for p in 0 1 2; do kubectl get pod "web-$p" --template '{{range $i, $c := .spec.containers}}{{$c.image}}{{end}}'; echo; done
@@ -1192,46 +1252,48 @@ k8s.gcr.io/nginx-slim:0.7
 ```
 
 <!--
-By moving the `partition` to `0`, you allowed the StatefulSet controller to
+By moving the `partition` to `0`, you allowed the StatefulSet to
 continue the update process.
+-->
+将 `partition` 改变为 `0` 以允许 StatefulSet 继续更新过程。
 
+<!--
 ### On Delete
+-->
+### OnDelete 策略   {#on-delete}
 
+<!--
 The `OnDelete` update strategy implements the legacy (1.6 and prior) behavior,
 When you select this update strategy, the StatefulSet controller will not
 automatically update Pods when a modification is made to the StatefulSet's
 `.spec.template` field. This strategy can be selected by setting the
 `.spec.template.updateStrategy.type` to `OnDelete`.
+-->
+`OnDelete` 更新策略实现了传统（1.7 之前）行为，它也是默认的更新策略。
+当你选择这个更新策略并修改 StatefulSet 的 `.spec.template` 字段时，StatefulSet 控制器将不会自动更新 Pod。
 
-
+<!--
 ## Deleting StatefulSets
+-->
+## 删除 StatefulSet   {#deleting-statefulsets}
 
+<!--
 StatefulSet supports both Non-Cascading and Cascading deletion. In a
 Non-Cascading Delete, the StatefulSet's Pods are not deleted when the StatefulSet is deleted. In a Cascading Delete, both the StatefulSet and its Pods are
 deleted.
+-->
+StatefulSet 同时支持级联和非级联删除。使用非级联方式删除 StatefulSet 时，StatefulSet
+的 Pod 不会被删除。使用级联删除时，StatefulSet 和它的 Pod 都会被删除。
 
+<!--
 ### Non-Cascading Delete
+-->
+### 非级联删除   {#non-cascading-delete}
 
+<!--
 In one terminal window, watch the Pods in the StatefulSet.
 -->
-
-将 `partition` 改变为 `0` 以允许 StatefulSet 控制器继续更新过程。
-
-### On Delete 策略
-
-`OnDelete` 更新策略实现了传统（1.7 之前）行为，它也是默认的更新策略。
-当你选择这个更新策略并修改 StatefulSet 的 `.spec.template` 字段时，StatefulSet 控制器将不会自动的更新 Pod。
-
-## 删除 StatefulSet
-
-
-StatefulSet 同时支持级联和非级联删除。使用非级联方式删除 StatefulSet 时，StatefulSet 的 Pod 不会被删除。使用级联删除时，StatefulSet 和它的 Pod 都会被删除。
-
-
-### 非级联删除
-
-
-在一个终端窗口查看 StatefulSet 中的 Pod。
+在一个终端窗口监视 StatefulSet 中的 Pod。
 
 ```
 kubectl get pods -w -l app=nginx
@@ -1243,9 +1305,9 @@ StatefulSet. Make sure to supply the `--cascade=orphan` parameter to the
 command. This parameter tells Kubernetes to only delete the StatefulSet, and to
 not delete any of its Pods.
 -->
-
-使用 [`kubectl delete`](/zh/docs/reference/generated/kubectl/kubectl-commands/#delete) 删除 StatefulSet。
-请确保提供了 `--cascade=orphan` 参数给命令。这个参数告诉 Kubernetes 只删除 StatefulSet 而不要删除它的任何 Pod。
+使用 [`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands/#delete)
+删除 StatefulSet。请确保提供了 `--cascade=orphan` 参数给命令。这个参数告诉
+Kubernetes 只删除 StatefulSet 而不要删除它的任何 Pod。
 
 ```shell
 kubectl delete statefulset web --cascade=orphan
@@ -1255,10 +1317,9 @@ statefulset.apps "web" deleted
 ```
 
 <!--
-Get the Pods to examine their status.
+Get the Pods, to examine their status:
 -->
-
-获取 Pod 来检查他们的状态。
+获取 Pod 来检查它们的状态：
 
 ```shell
 kubectl get pods -l app=nginx
@@ -1272,11 +1333,10 @@ web-2     1/1       Running   0          5m
 
 <!--
 Even though `web` has been deleted, all of the Pods are still Running and Ready.
-Delete `web-0`.
+Delete `web-0`:
 -->
-
 虽然 `web`  已经被删除了，但所有 Pod 仍然处于 Running 和 Ready 状态。
-删除 `web-0`。
+删除 `web-0`：
 
 ```shell
 kubectl delete pod web-0
@@ -1286,10 +1346,9 @@ pod "web-0" deleted
 ```
 
 <!--
-Get the StatefulSet's Pods.
+Get the StatefulSet's Pods:
 -->
-
-获取 StatefulSet 的 Pod。
+获取 StatefulSet 的 Pod：
 
 ```shell
 kubectl get pods -l app=nginx
@@ -1302,13 +1361,12 @@ web-2     1/1       Running   0          7m
 
 <!--
 As the `web` StatefulSet has been deleted, `web-0` has not been relaunched.
+-->
+由于 `web` StatefulSet 已经被删除，`web-0` 没有被重新启动。
 
+<!--
 In one terminal, watch the StatefulSet's Pods.
 -->
-
-由于 `web` StatefulSet 已经被删除，`web-0`没有被重新启动。
-
-
 在一个终端监控 StatefulSet 的 Pod。
 
 ```shell
@@ -1317,10 +1375,11 @@ kubectl get pods -w -l app=nginx
 
 <!--
 In a second terminal, recreate the StatefulSet. Note that, unless
-you deleted the `nginx` Service ( which you should not have ), you will see
+you deleted the `nginx` Service (which you should not have), you will see
 an error indicating that the Service already exists.
 -->
-在另一个终端里重新创建 StatefulSet。请注意，除非你删除了 `nginx` Service （你不应该这样做），你将会看到一个错误，提示 Service 已经存在。
+在另一个终端里重新创建 StatefulSet。请注意，除非你删除了 `nginx`
+Service（你不应该这样做），你将会看到一个错误，提示 Service 已经存在。
 
 ```shell
 kubectl apply -f web.yaml
@@ -1329,16 +1388,17 @@ kubectl apply -f web.yaml
 statefulset.apps/web created
 service/nginx unchanged
 ```
-<!--
-Ignore the error. It only indicates that an attempt was made to create the nginx
-Headless Service even though that Service already exists.
 
+<!--
+Ignore the error. It only indicates that an attempt was made to create the _nginx_
+headless Service even though that Service already exists.
+-->
+请忽略这个错误。它仅表示 kubernetes 进行了一次创建 _nginx_ headless Service
+的尝试，尽管那个 Service 已经存在。
+
+<!--
 Examine the output of the `kubectl get` command running in the first terminal.
 -->
-
-请忽略这个错误。它仅表示 kubernetes 进行了一次创建 nginx Headless Service 的尝试，尽管那个 Service 已经存在。
-
-
 在第一个终端中运行并检查 `kubectl get` 命令的输出。
 
 ```shell
@@ -1366,18 +1426,17 @@ Running and Ready, it adopted this Pod. Since you recreated the StatefulSet
 with `replicas` equal to 2, once `web-0` had been recreated, and once
 `web-1` had been determined to already be Running and Ready, `web-2` was
 terminated.
-
-Let's take another look at the contents of the `index.html` file served by the
-Pods' webservers:
 -->
-
 当重新创建 `web` StatefulSet 时，`web-0` 被第一个重新启动。
 由于 `web-1` 已经处于 Running 和 Ready 状态，当 `web-0` 变成 Running 和 Ready 时，
 StatefulSet 会接收这个 Pod。由于你重新创建的 StatefulSet 的 `replicas` 等于 2，
 一旦 `web-0` 被重新创建并且 `web-1` 被认为已经处于 Running 和 Ready 状态时，`web-2` 将会被终止。
 
-
-让我们再看看被 Pod 的 web 服务器加载的 `index.html` 的内容：
+<!--
+Let's take another look at the contents of the `index.html` file served by the
+Pods' webservers:
+-->
+让我们再看看被 Pod 的 Web 服务器加载的 `index.html` 的内容：
 
 ```shell
 for i in 0 1; do kubectl exec -i -t "web-$i" -- curl http://localhost/; done
@@ -1394,21 +1453,20 @@ serves the hostname originally entered into its `index.html` file. This is
 because the StatefulSet never deletes the PersistentVolumes associated with a
 Pod. When you recreated the StatefulSet and it relaunched `web-0`, its original
 PersistentVolume was remounted.
+-->
+尽管你同时删除了 StatefulSet 和 `web-0` Pod，但它仍然使用最初写入 `index.html` 文件的主机名进行服务。
+这是因为 StatefulSet 永远不会删除和一个 Pod 相关联的 PersistentVolume 卷。
+当你重建这个 StatefulSet 并且重新启动了 `web-0` 时，它原本的 PersistentVolume 卷会被重新挂载。
 
+<!--
 ### Cascading Delete
+-->
+### 级联删除   {#cascading-delete}
 
+<!--
 In one terminal window, watch the Pods in the StatefulSet.
 -->
-
-尽管你同时删除了 StatefulSet 和 `web-0` Pod，但它仍然使用最初写入 `index.html` 文件的主机名进行服务。
-这是因为 StatefulSet 永远不会删除和一个 Pod 相关联的 PersistentVolumes。
-当你重建这个 StatefulSet 并且重新启动了 `web-0` 时，它原本的 PersistentVolume 会被重新挂载。
-
-
-### 级联删除
-
-
-在一个终端窗口观察 StatefulSet 里的 Pod。
+在一个终端窗口监视 StatefulSet 里的 Pod。
 
 ```shell
 kubectl get pods -w -l app=nginx
@@ -1418,7 +1476,6 @@ kubectl get pods -w -l app=nginx
 In another terminal, delete the StatefulSet again. This time, omit the
 `--cascade=orphan` parameter.
 -->
-
 在另一个窗口中再次删除这个 StatefulSet。这次省略 `--cascade=orphan` 参数。
 
 ```shell
@@ -1433,7 +1490,6 @@ statefulset.apps "web" deleted
 Examine the output of the `kubectl get` command running in the first terminal,
 and wait for all of the Pods to transition to Terminating.
 -->
-
 在第一个终端检查 `kubectl get` 命令的输出，并等待所有的 Pod 变成 Terminating 状态。
 
 ```shell
@@ -1461,17 +1517,19 @@ As you saw in the [Scaling Down](#scaling-down) section, the Pods
 are terminated one at a time, with respect to the reverse order of their ordinal
 indices. Before terminating a Pod, the StatefulSet controller waits for
 the Pod's successor to be completely terminated.
-
-Note that, while a cascading delete will delete the StatefulSet and its Pods,
-it will not delete the Headless Service associated with the StatefulSet. You
-must delete the `nginx` Service manually.
 -->
-
 如同你在[缩容](#ordered-pod-termination)一节看到的，Pod 按照和他们序号索引相反的顺序每次终止一个。
 在终止一个 Pod 前，StatefulSet 控制器会等待 Pod 后继者被完全终止。
 
-
-请注意，虽然级联删除会删除 StatefulSet 和它的 Pod，但它并不会删除和 StatefulSet 关联的 Headless Service。你必须手动删除`nginx` Service。
+{{< note >}}
+<!--
+Although a cascading delete removes a StatefulSet together with its Pods,
+the cascade does not delete the headless Service associated with the StatefulSet.
+You must delete the `nginx` Service manually.
+-->
+尽管级联删除会删除 StatefulSet 及其 Pod，但级联不会删除与 StatefulSet
+关联的 Headless Service。你必须手动删除 `nginx` Service。
+{{< /note >}}
 
 ```shell
 kubectl delete service nginx
@@ -1482,10 +1540,9 @@ service "nginx" deleted
 ```
 
 <!--
-Recreate the StatefulSet and Headless Service one more time.
+Recreate the StatefulSet and headless Service one more time:
 -->
-
-再一次重新创建 StatefulSet 和 Headless Service。
+再一次重新创建 StatefulSet 和 headless Service：
 
 ```shell
 kubectl apply -f web.yaml
@@ -1498,10 +1555,9 @@ statefulset.apps/web created
 
 <!--
 When all of the StatefulSet's Pods transition to Running and Ready, retrieve
-the contents of their `index.html` files.
+the contents of their `index.html` files:
 -->
-
-当 StatefulSet 所有的 Pod 变成 Running 和 Ready 时，获取它们的 `index.html` 文件的内容。
+当 StatefulSet 所有的 Pod 变成 Running 和 Ready 时，获取它们的 `index.html` 文件的内容：
 
 ```shell
 for i in 0 1; do kubectl exec -i -t "web-$i" -- curl http://localhost/; done
@@ -1515,15 +1571,15 @@ web-1
 <!--
 Even though you completely deleted the StatefulSet, and all of its Pods, the
 Pods are recreated with their PersistentVolumes mounted, and `web-0` and
-`web-1` will still serve their hostnames.
-
-Finally delete the `web` StatefulSet and the `nginx` service.
+`web-1` continue to serve their hostnames.
 -->
+即使你已经删除了 StatefulSet 和它的全部 Pod，这些 Pod 将会被重新创建并挂载它们的
+PersistentVolume 卷，并且 `web-0` 和 `web-1` 将继续使用它的主机名提供服务。
 
-即使你已经删除了 StatefulSet 和它的全部 Pod，这些 Pod 将会被重新创建并挂载它们的 PersistentVolumes，并且 `web-0` 和 `web-1` 将仍然使用它们的主机名提供服务。
-
-
-最后删除 `nginx` service...
+<!--
+Finally, delete the `nginx` Service...
+-->
+最后删除 `nginx` service
 
 ```shell
 kubectl delete service nginx
@@ -1533,7 +1589,10 @@ kubectl delete service nginx
 service "nginx" deleted
 ```
 
-... 并且删除 `web` StatefulSet:
+<!--
+...and the `web` StatefulSet:
+-->
+并且删除 `web` StatefulSet:
 
 ```shell
 kubectl delete statefulset web
@@ -1545,74 +1604,73 @@ statefulset "web" deleted
 
 <!--
 ## Pod Management Policy
+-->
+## Pod 管理策略   {#pod-management-policy}
 
+<!--
 For some distributed systems, the StatefulSet ordering guarantees are
 unnecessary and/or undesirable. These systems require only uniqueness and
 identity. To address this, in Kubernetes 1.7, we introduced
 `.spec.podManagementPolicy` to the StatefulSet API Object.
-
-### OrderedReady Pod Management
-
-`OrderedReady` pod management is the default for StatefulSets. It tells the
-StatefulSet controller to respect the ordering guarantees demonstrated
-above.
-
-### Parallel Pod Management
-
-`Parallel` pod management tells the StatefulSet controller to launch or
-terminate all Pods in parallel, and not to wait for Pods to become Running
-and Ready or completely terminated prior to launching or terminating another
-Pod. This option only affects the behavior for scaling operations. Updates are not affected.
 -->
-
-## Pod 管理策略
-
-
-
 对于某些分布式系统来说，StatefulSet 的顺序性保证是不必要和/或者不应该的。
 这些系统仅仅要求唯一性和身份标志。为了解决这个问题，在 Kubernetes 1.7 中
 我们针对 StatefulSet API 对象引入了 `.spec.podManagementPolicy`。
 此选项仅影响扩缩操作的行为。更新不受影响。
 
-### OrderedReady Pod 管理策略
+<!--
+### OrderedReady Pod Management
+-->
+### OrderedReady Pod 管理策略   {#orderedready-pod-management}
 
+<!--
+`OrderedReady` pod management is the default for StatefulSets. It tells the
+StatefulSet controller to respect the ordering guarantees demonstrated
+above.
+-->
+`OrderedReady` Pod 管理策略是 StatefulSet 的默认选项。它告诉
+StatefulSet 控制器遵循上文展示的顺序性保证。
 
-`OrderedReady` pod 管理策略是 StatefulSets 的默认选项。它告诉 StatefulSet 控制器遵循上文展示的顺序性保证。
+<!--
+### Parallel Pod Management
+-->
+### Parallel Pod 管理策略   {#parallel-pod-management}
 
-
-### Parallel Pod 管理策略
-
-
-`Parallel` pod 管理策略告诉 StatefulSet 控制器并行的终止所有 Pod，
+<!--
+`Parallel` pod management tells the StatefulSet controller to launch or
+terminate all Pods in parallel, and not to wait for Pods to become Running
+and Ready or completely terminated prior to launching or terminating another
+Pod. This option only affects the behavior for scaling operations. Updates are not affected.
+-->
+`Parallel` Pod 管理策略告诉 StatefulSet 控制器并行的终止所有 Pod，
 在启动或终止另一个 Pod 前，不必等待这些 Pod 变成 Running 和 Ready 或者完全终止状态。
 
 {{< codenew file="application/web/web-parallel.yaml" >}}
 
 <!--
 Download the example above, and save it to a file named `web-parallel.yaml`
-
-This manifest is identical to the one you downloaded above except that the `.spec.podManagementPolicy`
-of the `web` StatefulSet is set to `Parallel`.
-
-In one terminal, watch the Pods in the StatefulSet.
 -->
-
 下载上面的例子并保存为 `web-parallel.yaml`。
 
+<!--
+This manifest is identical to the one you downloaded above except that the `.spec.podManagementPolicy`
+of the `web` StatefulSet is set to `Parallel`.
+-->
+这份清单和你在上文下载的完全一样，只是 `web` StatefulSet 的
+`.spec.podManagementPolicy` 设置成了 `Parallel`。
 
-这份清单和你在上文下载的完全一样，只是 `web` StatefulSet 的 `.spec.podManagementPolicy` 设置成了 `Parallel`。
-
-
-在一个终端窗口查看 StatefulSet 中的 Pod。
+<!--
+In one terminal, watch the Pods in the StatefulSet.
+-->
+在一个终端窗口监视 StatefulSet 中的 Pod。
 
 ```shell
-kubectl get po -lapp=nginx -w
+kubectl get pod -l app=nginx -w
 ```
 
 <!--
 In another terminal, create the StatefulSet and Service in the manifest:
 -->
-
 在另一个终端窗口创建清单中的 StatefulSet 和 Service：
 
 ```shell
@@ -1626,7 +1684,6 @@ statefulset.apps/web created
 <!--
 Examine the output of the `kubectl get` command that you executed in the first terminal.
 -->
-
 查看你在第一个终端中运行的 `kubectl get` 命令的输出。
 
 ```shell
@@ -1646,14 +1703,14 @@ web-1     1/1       Running   0         10s
 
 <!--
 The StatefulSet controller launched both `web-0` and `web-1` at the same time.
-
-Keep the second terminal open, and, in another terminal window scale the
-StatefulSet.
 -->
-
 StatefulSet 控制器同时启动了 `web-0` 和 `web-1`。
 
-保持第二个终端打开，并在另一个终端窗口中扩容 StatefulSet。
+<!--
+Keep the second terminal open, and, in another terminal window scale the
+StatefulSet:
+-->
+保持第二个终端打开，并在另一个终端窗口中扩容 StatefulSet：
 
 ```shell
 kubectl scale statefulset/web --replicas=4
@@ -1665,7 +1722,6 @@ statefulset.apps/web scaled
 <!--
 Examine the output of the terminal where the `kubectl get` command is running.
 -->
-
 在 `kubectl get` 命令运行的终端里检查它的输出。
 
 ```
@@ -1680,18 +1736,16 @@ web-3     1/1       Running   0         26s
 <!--
 The StatefulSet launched two new Pods, and it did not wait for
 the first to become Running and Ready prior to launching the second.
-
-## {{% heading "cleanup" %}}
-
-You should have two terminals open, ready for you to run `kubectl` commands as
-part of cleanup.
 -->
-
 StatefulSet 启动了两个新的 Pod，而且在启动第二个之前并没有等待第一个变成 Running 和 Ready 状态。
 
 ## {{% heading "cleanup" %}}
 
-您应该打开两个终端，准备在清理过程中运行 `kubectl` 命令。
+<!--
+You should have two terminals open, ready for you to run `kubectl` commands as
+part of cleanup.
+-->
+你应该打开两个终端，准备在清理过程中运行 `kubectl` 命令。
 
 ```shell
 kubectl delete sts web
@@ -1701,8 +1755,7 @@ kubectl delete sts web
 <!--
 You can watch `kubectl get` to see those Pods being deleted.
 -->
-
-你可以监测 `kubectl get` 来查看那些 Pod 被删除
+你可以监视 `kubectl get` 来查看那些 Pod 被删除
 
 ```shell
 kubectl get pod -l app=nginx -w
@@ -1734,37 +1787,33 @@ web-3     0/1       Terminating   0         9m
 ```
 
 <!--
-The StatefulSet controller deletes all Pods concurrently, it does not wait for
+During deletion, a StatefulSet removes all Pods concurrently; it does not wait for
 a Pod's ordinal successor to terminate prior to deleting that Pod.
-
-Close the terminal where the `kubectl get` command is running and delete the `nginx`
-Service.
 -->
+在删除过程中，StatefulSet 将并发的删除所有 Pod，在删除一个
+Pod 前不会等待它的顺序后继者终止。
 
-StatefulSet 控制器将并发的删除所有 Pod，在删除一个 Pod 前不会等待它的顺序后继者终止。
-
-
-关闭 `kubectl get` 命令运行的终端并删除`nginx` Service。
+<!--
+Close the terminal where the `kubectl get` command is running and delete the `nginx`
+Service:
+-->
+关闭 `kubectl get` 命令运行的终端并删除 `nginx` Service：
 
 ```shell
 kubectl delete svc nginx
 ```
 
 
-
-## {{% heading "cleanup" %}}
-
-
+{{< note >}}
 <!--
 You also need to delete the persistent storage media for the PersistentVolumes
 used in this tutorial.
+-->
+你需要删除本教程中用到的 PersistentVolume 卷的持久化存储介质。
 
-
+<!--
 Follow the necessary steps, based on your environment, storage configuration,
 and provisioning method, to ensure that all storage is reclaimed.
 -->
-
-你需要删除本教程中用到的 PersistentVolumes 的持久化存储介质。基于你的环境、存储配置和提供方式，按照必须的步骤保证回收所有的存储。
-
-
-
+基于你的环境、存储配置和制备方式，按照必须的步骤保证回收所有的存储。
+{{< /note >}}
\ No newline at end of file
diff --git a/content/zh/docs/tutorials/stateful-application/cassandra.md b/content/zh-cn/docs/tutorials/stateful-application/cassandra.md
similarity index 71%
rename from content/zh/docs/tutorials/stateful-application/cassandra.md
rename to content/zh-cn/docs/tutorials/stateful-application/cassandra.md
index 461b050938..5b3ebd5a43 100644
--- a/content/zh/docs/tutorials/stateful-application/cassandra.md
+++ b/content/zh-cn/docs/tutorials/stateful-application/cassandra.md
@@ -18,19 +18,20 @@ This tutorial shows you how to run [Apache Cassandra](https://cassandra.apache.o
 Cassandra, a database, needs persistent storage to provide data durability (application _state_).
 In this example, a custom Cassandra seed provider lets the database discover new Cassandra instances as they join the Cassandra cluster.
 -->
-本教程描述拉如何在 Kubernetes 上运行 [Apache Cassandra](https://cassandra.apache.org/)。
-数据库 Cassandra 需要永久性存储提供数据持久性（应用 _状态_）。
-在此示例中，自定义 Cassandra seed provider 使数据库在加入 Cassandra 集群时发现新的 Cassandra 实例。
+本教程描述了如何在 Kubernetes 上运行 [Apache Cassandra](https://cassandra.apache.org/)。
+数据库 Cassandra 需要永久性存储提供数据持久性（应用**状态**）。
+在此示例中，自定义 Cassandra seed provider 使数据库在接入 Cassandra 集群时能够发现新的 Cassandra 实例。
 
 <!--
 *StatefulSets* make it easier to deploy stateful applications into your Kubernetes cluster.
 For more information on the features used in this tutorial, see
 [StatefulSet](/docs/concepts/workloads/controllers/statefulset/).
 -->
-使用 *StatefulSets* 可以更轻松地将有状态的应用程序部署到你的 Kubernetes 集群中。
+使用**StatefulSet**可以更轻松地将有状态的应用程序部署到你的 Kubernetes 集群中。
 有关本教程中使用的功能的更多信息，
-参阅 [StatefulSet](/zh/docs/concepts/workloads/controllers/statefulset/)。
+请参阅 [StatefulSet](/zh-cn/docs/concepts/workloads/controllers/statefulset/)。
 
+{{< note >}}
 <!--
 Cassandra and Kubernetes both use the term _node_ to mean a member of a cluster. In this
 tutorial, the Pods that belong to the StatefulSet are Cassandra nodes and are members
@@ -38,9 +39,8 @@ of the Cassandra cluster (called a _ring_). When those Pods run in your Kubernet
 the Kubernetes control plane schedules those Pods onto Kubernetes
 {{< glossary_tooltip text="Nodes" term_id="node" >}}.
 -->
-{{< note >}}
-Cassandra 和 Kubernetes 都使用术语 _node_ 来表示集群的成员。
-在本教程中，属于 StatefulSet 的 Pod 是 Cassandra 节点，并且是 Cassandra 集群的成员（称为 _ring_）。
+Cassandra 和 Kubernetes 都使用术语**节点（node）**来表示集群的成员。
+在本教程中，属于 StatefulSet 的 Pod 是 Cassandra 节点，并且是 Cassandra 集群的成员（称为 **ring**）。
 当这些 Pod 在你的 Kubernetes 集群中运行时，Kubernetes 控制平面会将这些 Pod 调度到 Kubernetes 的
 {{< glossary_tooltip text="节点" term_id="node" >}}上。
 
@@ -50,8 +50,9 @@ nodes in the ring.
 This tutorial deploys a custom Cassandra seed provider that lets the database discover
 new Cassandra Pods as they appear inside your Kubernetes cluster.
 -->
-当 Cassandra 节点启动时，使用 _seed列表_ 来引导发现 ring 中其他节点。
-本教程部署了一个自定义的 Cassandra seed provider，使数据库可以发现新的 Cassandra Pod 出现在 Kubernetes 集群中。
+当 Cassandra 节点启动时，使用 **seed 列表**来引导发现 ring 中的其他节点。
+本教程部署了一个自定义的 Cassandra seed provider，
+使数据库可以发现 Kubernetes 集群中出现的新的 Cassandra Pod。
 {{< /note >}}
 
 ## {{% heading "objectives" %}}
@@ -63,12 +64,11 @@ new Cassandra Pods as they appear inside your Kubernetes cluster.
 * Modify the StatefulSet.
 * Delete the StatefulSet and its {{< glossary_tooltip text="Pods" term_id="pod" >}}.
 -->
-* 创建并验证 Cassandra 无头（headless）{{< glossary_tooltip text="Service" term_id="service" >}}..
+* 创建并验证 Cassandra 无头（headless）{{< glossary_tooltip text="Service" term_id="service" >}}。
 * 使用 {{< glossary_tooltip term_id="StatefulSet" >}} 创建一个 Cassandra ring。
 * 验证 StatefulSet。
 * 修改 StatefulSet。
-* 删除 StatefulSet 及其 {{< glossary_tooltip text="Pod" term_id="pod" >}}.
-
+* 删除 StatefulSet 及其 {{< glossary_tooltip text="Pod" term_id="pod" >}}。
 
 ## {{% heading "prerequisites" %}}
 
@@ -80,8 +80,9 @@ To complete this tutorial, you should already have a basic familiarity with
 {{< glossary_tooltip text="Services" term_id="service" >}}, and
 {{< glossary_tooltip text="StatefulSets" term_id="StatefulSet" >}}.
 -->
-要完成本教程，你应该已经熟悉 {{< glossary_tooltip text="Pod" term_id="pod" >}}，
-{{< glossary_tooltip text="Service" term_id="service" >}}和 {{< glossary_tooltip text="StatefulSet" term_id="StatefulSet" >}}。
+要完成本教程，你应该已经熟悉 {{< glossary_tooltip text="Pod" term_id="pod" >}}、
+{{< glossary_tooltip text="Service" term_id="service" >}} 和
+{{< glossary_tooltip text="StatefulSet" term_id="StatefulSet" >}}。
 
 <!--
 ### Additional Minikube setup instructions
@@ -94,14 +95,14 @@ errors during this tutorial. To avoid these errors, start Minikube with the foll
 ### 额外的 Minikube 设置说明
 
 {{< caution >}}
-[Minikube](https://minikube.sigs.k8s.io/docs/)默认为 2048MB 内存和 2 个 CPU。
-在本教程中，使用默认资源配置运行 Minikube 会导致资源不足的错误。为避免这些错误，请使用以下设置启动 Minikube：
+[Minikube](https://minikube.sigs.k8s.io/docs/) 默认需要 2048MB 内存和 2 个 CPU。
+在本教程中，使用默认资源配置运行 Minikube 会出现资源不足的错误。为避免这些错误，请使用以下设置启动 Minikube：
 
 ```shell
 minikube start --memory 5120 --cpus=4
 ```
-{{< /caution >}}
 
+{{< /caution >}}
 
 <!-- lessoncontent -->
 <!--
@@ -154,11 +155,11 @@ cassandra   ClusterIP   None         <none>        9042/TCP   45s
 
 <!--
 If you don't see a Service named `cassandra`, that means creation failed. Read
-[Debug Services](/docs/tasks/debug-application-cluster/debug-service/)
+[Debug Services](/docs/tasks/debug/debug-application/debug-service/)
 for help troubleshooting common issues.
 -->
 如果没有看到名为 `cassandra` 的服务，则表示创建失败。
-请阅读[Debug Services](/zh/docs/tasks/debug-application-cluster/debug-service/)，以解决常见问题。
+请阅读[调试服务](/zh-cn/docs/tasks/debug/debug-application/debug-service/)，以解决常见问题。
 
 <!--
 ## Using a StatefulSet to create a Cassandra ring
@@ -184,7 +185,7 @@ Please update the following StatefulSet for the cloud you are working with.
 <!--
 Create the Cassandra StatefulSet from the `cassandra-statefulset.yaml` file:
 -->
-使用 `cassandra-statefulset.yaml` 文件创建 Cassandra StatefulSet ：
+使用 `cassandra-statefulset.yaml` 文件创建 Cassandra StatefulSet：
 
 ```shell
 # 如果你能未经修改地 apply cassandra-statefulset.yaml，请使用此命令
@@ -212,83 +213,85 @@ kubectl apply -f cassandra-statefulset.yaml
 -->
 ## 验证 Cassandra StatefulSet
 
-1.获取 Cassandra StatefulSet:
+1. 获取 Cassandra StatefulSet:
 
-    ```shell
-    kubectl get statefulset cassandra
-    ```
+   ```shell
+   kubectl get statefulset cassandra
+   ```
    
-<!--
+   <!--
    The response should be similar to:
--->
+   -->
    响应应该与此类似：
 
-    ```
-    NAME        DESIRED   CURRENT   AGE
-    cassandra   3         0         13s
-    ```
+   ```
+   NAME        DESIRED   CURRENT   AGE
+   cassandra   3         0         13s
+   ```
 
-<!--
+   <!--
    The `StatefulSet` resource deploys Pods sequentially.
-
-1. Get the Pods to see the ordered creation status:
--->
+   -->
    `StatefulSet` 资源会按顺序部署 Pod。
 
-2.获取 Pod 查看已排序的创建状态：
-   
-    ```shell
-    kubectl get pods -l="app=cassandra"
-    ```
-
 <!--
-   The response should be similar to:
+1. Get the Pods to see the ordered creation status:
 -->
+2. 获取 Pod 查看已排序的创建状态：
+   
+   ```shell
+   kubectl get pods -l="app=cassandra"
+   ```
+
+   <!--
+   The response should be similar to:
+   -->
    响应应该与此类似：
 
-    ```shell
-    NAME          READY     STATUS              RESTARTS   AGE
-    cassandra-0   1/1       Running             0          1m
-    cassandra-1   0/1       ContainerCreating   0          8s
-    ```
+   ```
+   NAME          READY     STATUS              RESTARTS   AGE
+   cassandra-0   1/1       Running             0          1m
+   cassandra-1   0/1       ContainerCreating   0          8s
+   ```
 
-<!--
+   <!--
    It can take several minutes for all three Pods to deploy. Once they are deployed, the same command
    returns output similar to:
--->
+   -->
    这三个 Pod 要花几分钟的时间才能部署。部署之后，相同的命令将返回类似于以下的输出：
 
-    ```
-    NAME          READY     STATUS    RESTARTS   AGE
-    cassandra-0   1/1       Running   0          10m
-    cassandra-1   1/1       Running   0          9m
-    cassandra-2   1/1       Running   0          8m
-    ```
+   ```
+   NAME          READY     STATUS    RESTARTS   AGE
+   cassandra-0   1/1       Running   0          10m
+   cassandra-1   1/1       Running   0          9m
+   cassandra-2   1/1       Running   0          8m
+   ```
 <!--
 3. Run the Cassandra [nodetool](https://cwiki.apache.org/confluence/display/CASSANDRA2/NodeTool) inside the first Pod, to
    display the status of the ring.
 -->
-3.运行第一个 Pod 中的 Cassandra [nodetool](https://cwiki.apache.org/confluence/display/CASSANDRA2/NodeTool)，以显示 ring 的状态。
+3. 运行第一个 Pod 中的 Cassandra [nodetool](https://cwiki.apache.org/confluence/display/CASSANDRA2/NodeTool)，
+   以显示 ring 的状态。
 
-    ```shell
-    kubectl exec -it cassandra-0 -- nodetool status
-    ```
+   ```shell
+   kubectl exec -it cassandra-0 -- nodetool status
+   ```
 
-<!--
+   <!--
    The response should be similar to:
--->
+   -->
    响应应该与此类似：
 
-    ```
-    Datacenter: DC1-K8Demo
-    ======================
-    Status=Up/Down
-    |/ State=Normal/Leaving/Joining/Moving
-    --  Address     Load       Tokens       Owns (effective)  Host ID                               Rack
-    UN  172.17.0.5  83.57 KiB  32           74.0%             e2dd09e6-d9d3-477e-96c5-45094c08db0f  Rack1-K8Demo
-    UN  172.17.0.4  101.04 KiB  32           58.8%             f89d6835-3a42-4419-92b3-0e62cae1479c  Rack1-K8Demo
-    UN  172.17.0.6  84.74 KiB  32           67.1%             a6a1e8c2-3dc5-4417-b1a0-26507af2aaad  Rack1-K8Demo
-    ```
+   ```
+   Datacenter: DC1-K8Demo
+   ======================
+   Status=Up/Down
+   |/ State=Normal/Leaving/Joining/Moving
+   --  Address     Load       Tokens       Owns (effective)  Host ID                               Rack
+   UN  172.17.0.5  83.57 KiB  32           74.0%             e2dd09e6-d9d3-477e-96c5-45094c08db0f  Rack1-K8Demo
+   UN  172.17.0.4  101.04 KiB  32           58.8%             f89d6835-3a42-4419-92b3-0e62cae1479c  Rack1-K8Demo
+   UN  172.17.0.6  84.74 KiB  32           67.1%             a6a1e8c2-3dc5-4417-b1a0-26507af2aaad  Rack1-K8Demo
+   ```
 
 <!--
 ## Modifying the Cassandra StatefulSet
@@ -301,23 +304,22 @@ Use `kubectl edit` to modify the size of a Cassandra StatefulSet.
 
 使用 `kubectl edit` 修改 Cassandra StatefulSet 的大小。
 
-1.运行以下命令：
+1. 运行以下命令：
 
-    ```shell
-    kubectl edit statefulset cassandra
-    ```
+   ```shell
+   kubectl edit statefulset cassandra
+   ```
 
-<!--
+   <!--
    This command opens an editor in your terminal. The line you need to change is the `replicas` field.
    The following sample is an excerpt of the StatefulSet file:
--->
+   -->
    此命令你的终端中打开一个编辑器。需要更改的是 `replicas` 字段。下面是 StatefulSet 文件的片段示例：
 
     ```yaml
-    # Please edit the object below. Lines beginning with a '#' will be ignored,
-    # and an empty file will abort the edit. If an error occurs while saving this file will be
-    # reopened with the relevant failures.
-    #
+    # 请编辑以下对象。以 '#' 开头的行将被忽略，
+    # 且空文件将放弃编辑。如果保存此文件时发生错误，
+    # 将重新打开并显示相关故障。
     apiVersion: apps/v1
     kind: StatefulSet
     metadata:
@@ -340,65 +342,65 @@ Use `kubectl edit` to modify the size of a Cassandra StatefulSet.
 
 1. Get the Cassandra StatefulSet to verify your change:
 -->
-2.将副本数 (replicas) 更改为 4，然后保存清单。
+2. 将副本数（replicas）更改为 4，然后保存清单。
 
    StatefulSet 现在可以扩展到运行 4 个 Pod。
 
-3.获取 Cassandra StatefulSet 验证更改：
+3. 获取 Cassandra StatefulSet 验证更改：
 
-    ```shell
-    kubectl get statefulset cassandra
-    ```
+   ```shell
+   kubectl get statefulset cassandra
+   ```
 
-<!--
+   <!--
    The response should be similar to:
--->
+   -->
    响应应该与此类似：
 
-    ```
-    NAME        DESIRED   CURRENT   AGE
-    cassandra   4         4         36m
-    ```
+   ```
+   NAME        DESIRED   CURRENT   AGE
+   cassandra   4         4         36m
+   ```
 
 ## {{% heading "cleanup" %}}
 
 <!--
 Deleting or scaling a StatefulSet down does not delete the volumes associated with the StatefulSet.
 This setting is for your safety because your data is more valuable than automatically purging all related StatefulSet resources.
-
-{{< warning >}}
-Depending on the storage class and reclaim policy, deleting the *PersistentVolumeClaims* may cause the associated volumes
-to also be deleted. Never assume you'll be able to access data if its volume claims are deleted.
-{{< /warning >}}
-
-1. Run the following commands (chained together into a single command) to delete everything in the Cassandra StatefulSet:
 -->
 删除或缩小 StatefulSet 不会删除与 StatefulSet 关联的卷。
 这个设置是出于安全考虑，因为你的数据比自动清除所有相关的 StatefulSet 资源更有价值。
 
 {{< warning >}}
-根据存储类和回收策略，删除 *PersistentVolumeClaims* 可能导致关联的卷也被删除。
+<!--
+Depending on the storage class and reclaim policy, deleting the *PersistentVolumeClaims* may cause the associated volumes
+to also be deleted. Never assume you'll be able to access data if its volume claims are deleted.
+-->
+根据存储类和回收策略，删除 **PersistentVolumeClaims** 可能导致关联的卷也被删除。
 千万不要认为其容量声明被删除，你就能访问数据。
 {{< /warning >}}
 
-1.运行以下命令（连在一起成为一个单独的命令）删除 Cassandra StatefulSet 中的所有内容：
+<!--
+1. Run the following commands (chained together into a single command) to delete everything in the Cassandra StatefulSet:
+-->
+1. 运行以下命令（连在一起成为一个单独的命令）删除 Cassandra StatefulSet 中的所有内容：
 
-    ```shell
-    grace=$(kubectl get pod cassandra-0 -o=jsonpath='{.spec.terminationGracePeriodSeconds}') \
-      && kubectl delete statefulset -l app=cassandra \
-      && echo "Sleeping ${grace} seconds" 1>&2 \
-      && sleep $grace \
-      && kubectl delete persistentvolumeclaim -l app=cassandra
-    ```
+   ```shell
+   grace=$(kubectl get pod cassandra-0 -o=jsonpath='{.spec.terminationGracePeriodSeconds}') \
+     && kubectl delete statefulset -l app=cassandra \
+     && echo "Sleeping ${grace} seconds" 1>&2 \
+     && sleep $grace \
+     && kubectl delete persistentvolumeclaim -l app=cassandra
+   ```
 
 <!--
 1. Run the following command to delete the Service you set up for Cassandra:
 -->
-2.运行以下命令，删除你为 Cassandra 设置的 Service：
+2. 运行以下命令，删除你为 Cassandra 设置的 Service：
 
-    ```shell
-    kubectl delete service -l app=cassandra
-    ```
+   ```shell
+   kubectl delete service -l app=cassandra
+   ```
 
 <!--
 ## Cassandra container environment variables
@@ -412,21 +414,21 @@ This image includes a standard Cassandra installation from the Apache Debian rep
 By using environment variables you can change values that are inserted into `cassandra.yaml`.
 -->
 ## Cassandra 容器环境变量
-本教程中的 Pod 使用来自 Google [container registry](https://cloud.google.com/container-registry/docs/)
-的 [`gcr.io/google-samples/cassandra:v13`](https://github.com/kubernetes/examples/blob/master/cassandra/image/Dockerfile) 镜像。
-上面的 Docker 镜像基于 [debian-base](https://github.com/kubernetes/release/tree/master/images/build/debian-base)，并且包含 OpenJDK 8。
 
-该映像包括来自 Apache Debian 存储库的标准 Cassandra 安装。
-通过使用环境变量，您可以更改插入到 `cassandra.yaml` 中的值。
+本教程中的 Pod 使用来自 Google [容器镜像库](https://cloud.google.com/container-registry/docs/)
+的 [`gcr.io/google-samples/cassandra:v13`](https://github.com/kubernetes/examples/blob/master/cassandra/image/Dockerfile)
+镜像。上面的 Docker 镜像基于 [debian-base](https://github.com/kubernetes/release/tree/master/images/build/debian-base)，
+并且包含 OpenJDK 8。
 
-| Environment variable     | Default value    |
+该镜像包括来自 Apache Debian 存储库的标准 Cassandra 安装。
+通过使用环境变量，你可以更改插入到 `cassandra.yaml` 中的值。
+
+| 环境变量                 | 默认值           |
 | ------------------------ |:---------------: |
 | `CASSANDRA_CLUSTER_NAME` | `'Test Cluster'` |
 | `CASSANDRA_NUM_TOKENS`   | `32`             |
 | `CASSANDRA_RPC_ADDRESS`  | `0.0.0.0`        |
 
-
-
 ## {{% heading "whatsnext" %}}
 
 <!--
@@ -437,3 +439,4 @@ By using environment variables you can change values that are inserted into `cas
 * 了解如何[扩缩 StatefulSet](/docs/tasks/run-application/scale-stateful-set/)。
 * 了解有关 [*KubernetesSeedProvider*](https://github.com/kubernetes/examples/blob/master/cassandra/java/src/main/java/io/k8s/cassandra/KubernetesSeedProvider.java) 的更多信息
 * 查看更多自定义 [Seed Provider Configurations](https://git.k8s.io/examples/cassandra/java/README.md)
+
diff --git a/content/zh/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume.md b/content/zh-cn/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume.md
similarity index 81%
rename from content/zh/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume.md
rename to content/zh-cn/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume.md
index 81922142af..6104c00410 100644
--- a/content/zh/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume.md
+++ b/content/zh-cn/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume.md
@@ -23,36 +23,35 @@ card:
 <!--
 This tutorial shows you how to deploy a WordPress site and a MySQL database using Minikube. Both applications use PersistentVolumes and PersistentVolumeClaims to store data.
 -->
-
-本示例描述了如何通过 Minikube 在 Kubernetes 上安装 WordPress 和 MySQL。这两个应用都使用 PersistentVolumes 和 PersistentVolumeClaims 保存数据。
-
+本示例描述了如何通过 Minikube 在 Kubernetes 上安装 WordPress 和 MySQL。
+这两个应用都使用 PersistentVolumes 和 PersistentVolumeClaims 保存数据。
 
 <!--
  A [PersistentVolume](/docs/concepts/storage/persistent-volumes/)(PV)is a piece of storage in the cluster that has been manually provisioned by an administrator, or dynamically provisioned by Kubernetes using a [StorageClass](/docs/concepts/storage/storage-classes).  A [PersistentVolumeClaim](/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims)(PVC)is a request for storage by a user that can be fulfilled by a PV. PersistentVolumes and PersistentVolumeClaims are independent from Pod lifecycles and preserve data through restarting, rescheduling, and even deleting Pods.
- -->
-
-[PersistentVolume](/zh/docs/concepts/storage/persistent-volumes/)（PV）是一块集群里由管理员手动提供，或 kubernetes 通过 [StorageClass](/zh/docs/concepts/storage/storage-classes) 动态创建的存储。
-[PersistentVolumeClaim](/zh/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims)（PVC）是一个满足对 PV 存储需要的请求。PersistentVolumes 和 PersistentVolumeClaims 是独立于 Pod 生命周期而在 Pod 重启，重新调度甚至删除过程中保存数据。
+-->
+[PersistentVolume](/zh-cn/docs/concepts/storage/persistent-volumes/)（PV）是一块集群里由管理员手动提供，
+或 kubernetes 通过 [StorageClass](/zh-cn/docs/concepts/storage/storage-classes) 动态创建的存储。
+[PersistentVolumeClaim](/zh-cn/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims)
+是用户对存储的请求，该请求可由某个 PV 来满足。
+PersistentVolumes 和 PersistentVolumeClaims 独立于 Pod 生命周期而存在，
+在 Pod 重启，重新调度甚至删除过程中保存数据。
 
 {{< warning >}}
 <!--
  This deployment is not suitable for production use cases, as it uses single instance WordPress and MySQL Pods. Consider using [WordPress Helm Chart](https://github.com/kubernetes/charts/tree/master/stable/wordpress) to deploy WordPress in production.
  -->
-
-deployment 在生产场景中并不适合，它使用单实例 WordPress 和 MySQL Pods。考虑使用 [WordPress Helm Chart](https://github.com/kubernetes/charts/tree/master/stable/wordpress) 在生产场景中部署 WordPress。
+这种部署并不适合生产场景，它使用单实例 WordPress 和 MySQL Pods。
+在生产场景中，请考虑使用 [WordPress Helm Chart](https://github.com/kubernetes/charts/tree/master/stable/wordpress)
+部署 WordPress。
 {{< /warning >}}
 
 {{< note >}}
-
 <!--
  The files provided in this tutorial are using GA Deployment APIs and are specific to kubernetes version 1.9 and later. If you wish to use this tutorial with an earlier version of Kubernetes, please update the API version appropriately, or reference earlier versions of this tutorial.
 -->
-
-本教程中提供的文件使用 GA Deployment API，并且特定于 kubernetes 1.9 或更高版本。如果您希望将本教程与 Kubernetes 的早期版本一起使用，请相应地更新 API 版本，或参考本教程的早期版本。
+本教程中提供的文件使用 GA Deployment API，并且特定于 kubernetes 1.9 或更高版本。如果你希望将本教程与 Kubernetes 的早期版本一起使用，请相应地更新 API 版本，或参考本教程的早期版本。
 {{< /note >}}
 
-
-
 ## {{% heading "objectives" %}}
 
 <!--
@@ -64,7 +63,6 @@ deployment 在生产场景中并不适合，它使用单实例 WordPress 和 MyS
 * Apply the kustomization directory by `kubectl apply -k ./`
 * Clean up
 -->
-
 * 创建 PersistentVolumeClaims 和 PersistentVolumes
 * 创建 `kustomization.yaml` 使用
   * Secret 生成器
@@ -73,11 +71,8 @@ deployment 在生产场景中并不适合，它使用单实例 WordPress 和 MyS
 * 应用整个 kustomization 目录 `kubectl apply -k ./`
 * 清理
 
-
-
 ## {{% heading "prerequisites" %}}
 
-
 {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
 
 <!--
@@ -89,7 +84,6 @@ Download the following configuration files:
 
 1. [wordpress-deployment.yaml](/examples/application/wordpress/wordpress-deployment.yaml)
 -->
-
 此例在`kubectl` 1.14 或者更高版本有效。
 
 下载下面的配置文件：
@@ -98,16 +92,12 @@ Download the following configuration files:
 
 2. [wordpress-deployment.yaml](/examples/application/wordpress/wordpress-deployment.yaml)
 
-
-
 <!-- lessoncontent -->
 
 <!--
 ## Create PersistentVolumeClaims and PersistentVolumes
 -->
-
 ## 创建 PersistentVolumeClaims 和 PersistentVolumes
-
 <!-- MySQL and Wordpress each require a PersistentVolume to store data.  Their PersistentVolumeClaims will be created at the deployment step.
 
 Many cluster environments have a default StorageClass installed.  When a StorageClass is not specified in the PersistentVolumeClaim, the cluster's default StorageClass is used instead.
@@ -115,9 +105,11 @@ Many cluster environments have a default StorageClass installed.  When a Storage
 When a PersistentVolumeClaim is created, a PersistentVolume is dynamically provisioned based on the StorageClass configuration.
 -->
 
-MySQL 和 Wordpress 都需要一个 PersistentVolume 来存储数据。他们的 PersistentVolumeClaims 将在部署步骤中创建。
+MySQL 和 Wordpress 都需要一个 PersistentVolume 来存储数据。
+他们的 PersistentVolumeClaims 将在部署步骤中创建。
 
-许多群集环境都安装了默认的 StorageClass。如果在 PersistentVolumeClaim 中未指定 StorageClass，则使用群集的默认 StorageClass。
+许多集群环境都安装了默认的 StorageClass。如果在 PersistentVolumeClaim 中未指定 StorageClass，
+则使用集群的默认 StorageClass。
 
 创建 PersistentVolumeClaim 时，将根据 StorageClass 配置动态设置 PersistentVolume。
 
@@ -126,33 +118,34 @@ MySQL 和 Wordpress 都需要一个 PersistentVolume 来存储数据。他们的
 In local clusters, the default StorageClass uses the `hostPath` provisioner.  `hostPath` volumes are only suitable for development and testing. With `hostPath` volumes, your data lives in `/tmp` on the node the Pod is scheduled onto and does not move between nodes. If a Pod dies and gets scheduled to another node in the cluster, or the node is rebooted, the data is lost.
 -->
 
-在本地群集中，默认的 StorageClass 使用`hostPath`供应器。 `hostPath`卷仅适用于开发和测试。使用 `hostPath` 卷，您的数据位于 Pod 调度到的节点上的`/tmp`中，并且不会在节点之间移动。如果 Pod 死亡并被调度到群集中的另一个节点，或者该节点重新启动，则数据将丢失。
+在本地集群中，默认的 StorageClass 使用`hostPath`供应器。 `hostPath`卷仅适用于开发和测试。
+使用 `hostPath` 卷，你的数据位于 Pod 调度到的节点上的`/tmp`中，并且不会在节点之间移动。
+如果 Pod 死亡并被调度到集群中的另一个节点，或者该节点重新启动，则数据将丢失。
 {{< /warning >}}
 
 {{< note >}}
 <!--
 If you are bringing up a cluster that needs to use the `hostPath` provisioner, the `--enable-hostpath-provisioner` flag must be set in the `controller-manager` component.
 -->
-
-如果要建立需要使用`hostPath`设置程序的集群，则必须在 controller-manager 组件中设置`--enable-hostpath-provisioner`标志。
+如果要建立需要使用`hostPath`设置程序的集群，
+则必须在 controller-manager 组件中设置`--enable-hostpath-provisioner`标志。
 {{< /note >}}
 
 {{< note >}}
 <!-- If you have a Kubernetes cluster running on Google Kubernetes Engine, please follow [this guide](https://cloud.google.com/kubernetes-engine/docs/tutorials/persistent-disk). -->
 
-如果你已经有运行在 Google Kubernetes Engine 的集群，请参考 [this guide](https://cloud.google.com/kubernetes-engine/docs/tutorials/persistent-disk)。
+如果你已经有运行在 Google Kubernetes Engine 的集群，
+请参考[此指南](https://cloud.google.com/kubernetes-engine/docs/tutorials/persistent-disk)。
 {{< /note >}}
 
 <!--
 ## Create a kustomization.yaml
 -->
-
 ## 创建 kustomization.yaml
 
 <!--
 ### Add a Secret generator
 -->
-
 ### 创建 Secret 生成器
 
 <!--
@@ -160,10 +153,12 @@ A [Secret](/docs/concepts/configuration/secret/) is an object that stores a piec
 
 Add a Secret generator in `kustomization.yaml` from the following command. You will need to replace `YOUR_PASSWORD` with the password you want to use.
 -->
+[Secret](/zh-cn/docs/concepts/configuration/secret/) 是存储诸如密码或密钥之类的敏感数据的对象。
+从 1.14 开始，`kubectl`支持使用 kustomization 文件管理 Kubernetes 对象。
+你可以通过`kustomization.yaml`中的生成器创建一个 Secret。
 
-A [Secret](/zh/docs/concepts/configuration/secret/) 是存储诸如密码或密钥之类的敏感数据的对象。从 1.14 开始，`kubectl`支持使用 kustomization 文件管理 Kubernetes 对象。您可以通过`kustomization.yaml`中的生成器创建一个 Secret。
-
-通过以下命令在`kustomization.yaml`中添加一个 Secret 生成器。您需要用您要使用的密码替换`YOUR_PASSWORD`。
+通过以下命令在`kustomization.yaml`中添加一个 Secret 生成器。
+你需要用你要使用的密码替换`YOUR_PASSWORD`。
 
 ```shell
 cat <<EOF >./kustomization.yaml
@@ -177,14 +172,13 @@ EOF
 <!--
 ## Add resource configs for MySQL and WordPress
 -->
-
 ## 补充 MySQL 和 WordPress 的资源配置
 
 <!--
 The following manifest describes a single-instance MySQL Deployment. The MySQL container mounts the PersistentVolume at /var/lib/mysql. The `MYSQL_ROOT_PASSWORD` environment variable sets the database password from the Secret.
 -->
-
-以下 manifest 文件描述了单实例 MySQL 部署。MySQL 容器将 PersistentVolume 挂载在`/var/lib/mysql`。 `MYSQL_ROOT_PASSWORD`环境变量设置来自 Secret 的数据库密码。
+以下 manifest 文件描述了单实例 MySQL 部署。MySQL 容器将 PersistentVolume 挂载在`/var/lib/mysql`。 
+`MYSQL_ROOT_PASSWORD`环境变量设置来自 Secret 的数据库密码。
 
 {{< codenew file="application/wordpress/mysql-deployment.yaml" >}}
 
@@ -194,7 +188,6 @@ PersistentVolume at `/var/www/html` for website data files. The `WORDPRESS_DB_HO
 the name of the MySQL Service defined above, and WordPress will access the database by Service. The
 `WORDPRESS_DB_PASSWORD` environment variable sets the database password from the Secret kustomize generated.
 -->
-
 以下 manifest 文件描述了单实例 WordPress 部署。WordPress 容器将网站数据文件位于`/var/www/html`的 PersistentVolume。`WORDPRESS_DB_HOST`环境变量集上面定义的 MySQL Service 的名称，WordPress 将通过 Service 访问数据库。`WORDPRESS_DB_PASSWORD`环境变量设置从 Secret kustomize 生成的数据库密码。
 {{< codenew file="application/wordpress/wordpress-deployment.yaml" >}}
 
@@ -243,11 +236,9 @@ the name of the MySQL Service defined above, and WordPress will access the datab
       EOF
       ```
 
-
 <!--
 ## Apply and Verify
 -->
-
 ## 应用和验证
 
 <!--
@@ -342,14 +333,12 @@ Now you can verify that all objects exist.
 
    ![wordpress-init](https://raw.githubusercontent.com/kubernetes/examples/master/mysql-wordpress-pd/WordPress.png)
 -->
-
-
-`kustomization.yaml`包含用于部署 WordPress 网站的所有资源以及 MySQL 数据库。您可以通过以下方式应用目录
+`kustomization.yaml`包含用于部署 WordPress 网站的所有资源以及 MySQL 数据库。你可以通过以下方式应用目录
 ```shell
 kubectl apply -k ./
 ```
 
-现在，您可以验证所有对象是否存在。
+现在，你可以验证所有对象是否存在。
 
 1. 通过运行以下命令验证 Secret 是否存在：
 
@@ -428,19 +417,17 @@ kubectl apply -k ./
       http://1.2.3.4:32406
       ```
 
-6. 复制 IP 地址，然后将页面加载到浏览器中来查看您的站点。
+6. 复制 IP 地址，然后将页面加载到浏览器中来查看你的站点。
 
-      您应该看到类似于以下屏幕截图的 WordPress 设置页面。
+      你应该看到类似于以下屏幕截图的 WordPress 设置页面。
 
       ![wordpress-init](https://raw.githubusercontent.com/kubernetes/examples/master/mysql-wordpress-pd/WordPress.png)
 
-
-
 {{< warning >}}
 <!--
 Do not leave your WordPress installation on this page. If another user finds it, they can set up a website on your instance and use it to serve malicious content. <br/><br/>Either install WordPress by creating a username and password or delete your instance.
 -->
-不要在此页面上保留 WordPress 安装。如果其他用户找到了它，他们可以在您的实例上建立一个网站并使用它来提供恶意内容。<br/><br/>通过创建用户名和密码来安装 WordPress 或删除您的实例。
+不要在此页面上保留 WordPress 安装。如果其他用户找到了它，他们可以在你的实例上建立一个网站并使用它来提供恶意内容。<br/><br/>通过创建用户名和密码来安装 WordPress 或删除你的实例。
 
 {{< /warning >}}
 
@@ -454,27 +441,21 @@ Do not leave your WordPress installation on this page. If another user finds it,
       ```
 -->
 
-1. 运行一下命令删除您的 Secret，Deployments，Services and PersistentVolumeClaims：
+1. 运行一下命令删除你的 Secret，Deployments，Services and PersistentVolumeClaims：
 
       ```shell
       kubectl delete -k ./
       ```
 
-
-
 ## {{% heading "whatsnext" %}}
 
-
 <!--
-* Learn more about [Introspection and Debugging](/docs/tasks/debug-application-cluster/debug-application-introspection/)
+* Learn more about [Introspection and Debugging](/docs/tasks/debug/debug-application/debug-running-pod/)
 * Learn more about [Jobs](/docs/concepts/workloads/controllers/jobs-run-to-completion/)
 * Learn more about [Port Forwarding](/docs/tasks/access-application-cluster/port-forward-access-application-cluster/)
-* Learn how to [Get a Shell to a Container](/docs/tasks/debug-application-cluster/get-shell-running-container/)
+* Learn how to [Get a Shell to a Container](/docs/tasks/debug/debug-application/get-shell-running-container/)
 -->
-
-* 了解更多关于 [Introspection and Debugging](/zh/docs/tasks/debug-application-cluster/debug-application-introspection/)
-* 了解更多关于 [Jobs](/zh/docs/concepts/workloads/controllers/jobs-run-to-completion/)
-* 了解更多关于 [Port Forwarding](/zh/docs/tasks/access-application-cluster/port-forward-access-application-cluster/)
-* 了解如何 [Get a Shell to a Container](/zh/docs/tasks/debug-application-cluster/get-shell-running-container/)
-
-
+* 进一步了解[自省与调试](/zh-cn/docs/tasks/debug/debug-application/debug-running-pod/)
+* 进一步了解 [Job](/zh-cn/docs/concepts/workloads/controllers/jobs-run-to-completion/)
+* 进一步了解[端口转发](/zh-cn/docs/tasks/access-application-cluster/port-forward-access-application-cluster/)
+* 了解如何[获得容器的 Shell](/zh-cn/docs/tasks/debug/debug-application/get-shell-running-container/)
diff --git a/content/zh/docs/tutorials/stateful-application/zookeeper.md b/content/zh-cn/docs/tutorials/stateful-application/zookeeper.md
similarity index 88%
rename from content/zh/docs/tutorials/stateful-application/zookeeper.md
rename to content/zh-cn/docs/tutorials/stateful-application/zookeeper.md
index 7f3a0e9548..0aa40f4214 100644
--- a/content/zh/docs/tutorials/stateful-application/zookeeper.md
+++ b/content/zh-cn/docs/tutorials/stateful-application/zookeeper.md
@@ -26,9 +26,9 @@ Kubernetes using [StatefulSets](/docs/concepts/workloads/controllers/statefulset
 and [PodAntiAffinity](/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity).
 -->
 本教程展示了在 Kubernetes 上使用
-[StatefulSet](/zh/docs/concepts/workloads/controllers/statefulset/)，
-[PodDisruptionBudget](/zh/docs/concepts/workloads/pods/disruptions/#pod-disruption-budget) 和
-[PodAntiAffinity](/zh/docs/concepts/scheduling-eviction/assign-pod-node/#亲和与反亲和)
+[StatefulSet](/zh-cn/docs/concepts/workloads/controllers/statefulset/)、
+[PodDisruptionBudget](/zh-cn/docs/concepts/workloads/pods/disruptions/#pod-disruption-budget) 和
+[PodAntiAffinity](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/#亲和与反亲和)
 特性运行 [Apache Zookeeper](https://zookeeper.apache.org)。
 
 ## {{% heading "prerequisites" %}}
@@ -39,22 +39,22 @@ Kubernetes concepts.
 -->
 在开始本教程前，你应该熟悉以下 Kubernetes 概念。
 
-- [Pods](/zh/docs/concepts/workloads/pods/)
-- [集群 DNS](/zh/docs/concepts/services-networking/dns-pod-service/)
-- [无头服务（Headless Service）](/zh/docs/concepts/services-networking/service/#headless-services)
-- [PersistentVolumes](/zh/docs/concepts/storage/persistent-volumes/)
-- [PersistentVolume 制备](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/persistent-volume-provisioning/)
-- [StatefulSet](/zh/docs/concepts/workloads/controllers/statefulset/)
-- [PodDisruptionBudget](/zh/docs/concepts/workloads/pods/disruptions/#pod-disruption-budget)
-- [PodAntiAffinity](/zh/docs/concepts/scheduling-eviction/assign-pod-node/#亲和与反亲和)
-- [kubectl CLI](/zh/docs/reference/kubectl/kubectl/)
+- [Pods](/zh-cn/docs/concepts/workloads/pods/)
+- [集群 DNS](/zh-cn/docs/concepts/services-networking/dns-pod-service/)
+- [无头服务（Headless Service）](/zh-cn/docs/concepts/services-networking/service/#headless-services)
+- [PersistentVolumes](/zh-cn/docs/concepts/storage/persistent-volumes/)
+- [PersistentVolume 制备](https://github.com/kubernetes/examples/tree/master/staging/persistent-volume-provisioning/)
+- [StatefulSet](/zh-cn/docs/concepts/workloads/controllers/statefulset/)
+- [PodDisruptionBudget](/zh-cn/docs/concepts/workloads/pods/disruptions/#pod-disruption-budget)
+- [PodAntiAffinity](/zh-cn/docs/concepts/scheduling-eviction/assign-pod-node/#亲和与反亲和)
+- [kubectl CLI](/zh-cn/docs/reference/kubectl/kubectl/)
 
 <!--
 You must have a cluster with at least four nodes, and each node requires at least 2 CPUs and 4 GiB of memory. In this tutorial you will cordon and drain the cluster's nodes. **This means that the cluster will terminate and evict all Pods on its nodes, and the nodes will temporarily become unschedulable.** You should use a dedicated cluster for this tutorial, or you should ensure that the disruption you cause will not interfere with other tenants.
 -->
-你需要一个至少包含四个节点的集群，每个节点至少 2 CPUs 和 4 GiB 内存。
+你需要一个至少包含四个节点的集群，每个节点至少 2 个 CPU 和 4 GiB 内存。
 在本教程中你将会隔离（Cordon）和腾空（Drain ）集群的节点。
-**这意味着集群节点上所有的 Pods 将会被终止并移除。这些节点也会暂时变为不可调度**。
+**这意味着集群节点上所有的 Pod 将会被终止并移除。这些节点也会暂时变为不可调度**。
 在本教程中你应该使用一个独占的集群，或者保证你造成的干扰不会影响其它租户。
 
 <!--
@@ -63,7 +63,7 @@ PersistentVolumes. If your cluster is not configured to do so, you
 will have to manually provision three 20 GiB volumes before starting this
 tutorial.
 -->
-本教程假设你的集群配置为动态的提供 PersistentVolumes。
+本教程假设你的集群已配置为动态制备 PersistentVolume。
 如果你的集群没有配置成这样，在开始本教程前，你需要手动准备三个 20 GiB 的卷。
 
 ## {{% heading "objectives" %}}
@@ -79,9 +79,9 @@ After this tutorial, you will know the following.
 在学习本教程后，你将熟悉下列内容。
 
 * 如何使用 StatefulSet 部署一个 ZooKeeper ensemble。
-* 如何一致性配置 ensemble。
-* 如何在 ensemble 中 分布 ZooKeeper 服务器的部署。
-* 如何在计划维护中使用 PodDisruptionBudgets 确保服务可用性。
+* 如何一致地配置 ensemble。
+* 如何在 ensemble 中分布 ZooKeeper 服务器的部署。
+* 如何在计划维护中使用 PodDisruptionBudget 确保服务可用性。
 
 <!-- lessoncontent -->
 
@@ -122,8 +122,8 @@ quorum。
 <!--
 ZooKeeper servers keep their entire state machine in memory, and write every mutation to a durable WAL (Write Ahead Log) on storage media. When a server crashes, it can recover its previous state by replaying the WAL. To prevent the WAL from growing without bound, ZooKeeper servers will periodically snapshot them in memory state to storage media. These snapshots can be loaded directly into memory, and all WAL entries that preceded the snapshot may be discarded.
 -->
-ZooKeeper 在内存中保存它们的整个状态机，但是每个改变都被写入一个在存储介质上的
-持久 WAL（Write Ahead Log）。
+ZooKeeper 在内存中保存它们的整个状态机，但是每个改变都被写入一个在存储介质上的持久
+WAL（Write Ahead Log）。
 当一个服务器出现故障时，它能够通过回放 WAL 恢复之前的状态。
 为了防止 WAL 无限制的增长，ZooKeeper 服务器会定期的将内存状态快照保存到存储介质。
 这些快照能够直接加载到内存中，所有在这个快照之前的 WAL 条目都可以被安全的丢弃。
@@ -139,11 +139,10 @@ and a [StatefulSet](/docs/concepts/workloads/controllers/statefulset/).
 -->
 ## 创建一个 ZooKeeper Ensemble
 
-下面的清单包含一个
-[无头服务](/zh/docs/concepts/services-networking/service/#headless-services)，
-一个 [Service](/zh/docs/concepts/services-networking/service/)，
-一个 [PodDisruptionBudget](/zh/docs/concepts/workloads/pods/disruptions/#specifying-a-poddisruptionbudget)，
-和一个 [StatefulSet](/zh/docs/concepts/workloads/controllers/statefulset/)。
+下面的清单包含一个[无头服务](/zh-cn/docs/concepts/services-networking/service/#headless-services)、
+一个 [Service](/zh-cn/docs/concepts/services-networking/service/)、
+一个 [PodDisruptionBudget](/zh-cn/docs/concepts/workloads/pods/disruptions/#specifying-a-poddisruptionbudget)
+和一个 [StatefulSet](/zh-cn/docs/concepts/workloads/controllers/statefulset/)。
 
 {{< codenew file="application/zookeeper/zookeeper.yaml" >}}
 
@@ -180,7 +179,7 @@ StatefulSet controller create the StatefulSet's Pods.
 -->
 使用命令
 [`kubectl get`](/docs/reference/generated/kubectl/kubectl-commands/#get)
-查看 StatefulSet 控制器创建的 Pods。
+查看 StatefulSet 控制器创建的几个 Pod。
 
 ```shell
 kubectl get pods -w -l app=zk
@@ -189,7 +188,7 @@ kubectl get pods -w -l app=zk
 <!--
 Once the `zk-2` Pod is Running and Ready, use `CTRL-C` to terminate kubectl.
 -->
-一旦  `zk-2` Pod 变成 Running 和 Ready 状态，使用 `CRTL-C` 结束 kubectl。
+一旦 `zk-2` Pod 变成 Running 和 Ready 状态，请使用 `CRTL-C` 结束 kubectl。
 
 ```
 NAME      READY     STATUS    RESTARTS   AGE
@@ -214,8 +213,8 @@ zk-2      1/1       Running   0         40s
 The StatefulSet controller creates three Pods, and each Pod has a container with
 a [ZooKeeper](https://www-us.apache.org/dist/zookeeper/stable/) server.
 -->
-StatefulSet 控制器创建 3 个 Pods，每个 Pod 包含一个
-[ZooKeeper](https://www-us.apache.org/dist/zookeeper/stable/) 服务器。
+StatefulSet 控制器创建 3 个 Pod，每个 Pod 包含一个
+[ZooKeeper](https://archive.apache.org/dist/zookeeper/stable/) 服务容器。
 
 <!--
 ### Facilitating Leader Election
@@ -233,7 +232,7 @@ of the Pods in the `zk` StatefulSet.
 
 使用命令
 [`kubectl exec`](/docs/reference/generated/kubectl/kubectl-commands/#exec)
-获取 `zk` StatefulSet 中 Pods 的主机名。
+获取 `zk` StatefulSet 中 Pod 的主机名。
 
 ```shell
 for i in 0 1 2; do kubectl exec zk-$i -- hostname; done
@@ -246,7 +245,7 @@ The StatefulSet controller provides each Pod with a unique hostname based on its
 StatefulSet 控制器基于每个 Pod 的序号索引为它们各自提供一个唯一的主机名。
 主机名采用 `<statefulset 名称>-<序数索引>` 的形式。
 由于 `zk` StatefulSet 的 `replicas` 字段设置为 3，这个集合的控制器将创建
-3 个 Pods，主机名为：`zk-0`、`zk-1` 和 `zk-2`。
+3 个 Pod，主机名为：`zk-0`、`zk-1` 和 `zk-2`。
 
 ```
 zk-0
@@ -295,7 +294,7 @@ for i in 0 1 2; do kubectl exec zk-$i -- hostname -f; done
 The `zk-hs` Service creates a domain for all of the Pods,
 `zk-hs.default.svc.cluster.local`.
 -->
-`zk-hs` Service 为所有 Pods 创建了一个域：`zk-hs.default.svc.cluster.local`。
+`zk-hs` Service 为所有 Pod 创建了一个域：`zk-hs.default.svc.cluster.local`。
 
 ```
 zk-0.zk-hs.default.svc.cluster.local
@@ -308,9 +307,9 @@ The A records in [Kubernetes DNS](/docs/concepts/services-networking/dns-pod-ser
 
 ZooKeeper stores its application configuration in a file named `zoo.cfg`. Use `kubectl exec` to view the contents of the `zoo.cfg` file in the `zk-0` Pod.
 -->
-[Kubernetes DNS](/zh/docs/concepts/services-networking/dns-pod-service/)
-中的 A 记录将 FQDNs 解析成为 Pods 的 IP 地址。
-如果 Pods 被调度，这个 A 记录将会使用 Pods 的新 IP 地址完成更新，
+[Kubernetes DNS](/zh-cn/docs/concepts/services-networking/dns-pod-service/)
+中的 A 记录将 FQDN 解析成为 Pod 的 IP 地址。
+如果 Kubernetes 重新调度这些 Pod，这个 A 记录将会使用这些 Pod 的新 IP 地址完成更新，
 但 A 记录的名称不会改变。
 
 ZooKeeper 在一个名为 `zoo.cfg` 的文件中保存它的应用配置。
@@ -354,11 +353,11 @@ Consensus protocols require that the identifiers of each participant be unique.
 -->
 ### 达成共识   {#achieving-consensus}
 
- 一致性协议要求每个参与者的标识符唯一。
+一致性协议要求每个参与者的标识符唯一。
 在 Zab 协议里任何两个参与者都不应该声明相同的唯一标识符。
 对于让系统中的进程协商哪些进程已经提交了哪些数据而言，这是必须的。
-如果有两个 Pods 使用相同的序号启动，这两个 ZooKeeper 服务器
-会将自己识别为相同的服务器。
+如果有两个 Pod 使用相同的序号启动，这两个 ZooKeeper
+服务器会将自己识别为相同的服务器。
 
 ```shell
 kubectl get pods -w -l app=zk
@@ -389,10 +388,9 @@ the FQDNs of the ZooKeeper servers will resolve to a single endpoint, and that
 endpoint will be the unique ZooKeeper server claiming the identity configured
 in its `myid` file.
 -->
-每个 Pod 的 A 记录仅在 Pod 变成 Ready状态时被录入。
-因此，ZooKeeper 服务器的 FQDNs 只会解析到一个端点，而那个端点将会是
-一个唯一的 ZooKeeper 服务器，这个服务器声明了配置在它的 `myid`
-文件中的标识符。
+每个 Pod 的 A 记录仅在 Pod 变成 Ready 状态时被录入。
+因此，ZooKeeper 服务器的 FQDN 只会解析到一个端点，
+而那个端点将是申领其 `myid` 文件中所配置标识的唯一 ZooKeeper 服务器。
 
 ```
 zk-0.zk-hs.default.svc.cluster.local
@@ -405,8 +403,7 @@ This ensures that the `servers` properties in the ZooKeepers' `zoo.cfg` files
 represents a correctly configured ensemble.
 -->
 
-这保证了 ZooKeepers 的 `zoo.cfg` 文件中的 `servers` 属性代表了
-一个正确配置的 ensemble。
+这保证了 ZooKeeper 的 `zoo.cfg` 文件中的 `servers` 属性代表了一个正确配置的 ensemble。
 
 ```
 server.1=zk-0.zk-hs.default.svc.cluster.local:2888:3888
@@ -418,7 +415,7 @@ server.3=zk-2.zk-hs.default.svc.cluster.local:2888:3888
 When the servers use the Zab protocol to attempt to commit a value, they will either achieve consensus and commit the value (if leader election has succeeded and at least two of the Pods are Running and Ready), or they will fail to do so (if either of the conditions are not met). No state will arise where one server acknowledges a write on behalf of another.
 -->
 当服务器使用 Zab 协议尝试提交一个值的时候，它们会达成一致并成功提交这个值
-（如果领导者选举成功并且至少有两个 Pods 处于 Running 和 Ready状态），
+（如果领导者选举成功并且至少有两个 Pod 处于 Running 和 Ready 状态），
 或者将会失败（如果没有满足上述条件中的任意一条）。
 当一个服务器承认另一个服务器的代写时不会有状态产生。
 
@@ -432,8 +429,7 @@ The command below executes the `zkCli.sh` script to write `world` to the path `/
 -->
 ### Ensemble 健康检查
 
-最基本的健康检查是向一个 ZooKeeper 服务器写入一些数据，然后从
-另一个服务器读取这些数据。
+最基本的健康检查是向一个 ZooKeeper 服务器写入一些数据，然后从另一个服务器读取这些数据。
 
 使用 `zkCli.sh` 脚本在 `zk-0` Pod 上写入 `world` 到路径 `/hello`。
 
@@ -494,10 +490,10 @@ Use the [`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands/#d
 -->
 ### 提供持久存储
 
-如同在 [ZooKeeper](#zookeeper-basics) 一节所提到的，ZooKeeper 提交
-所有的条目到一个持久 WAL，并周期性的将内存快照写入存储介质。
-对于使用一致性协议实现一个复制状态机的应用来说，使用 WALs 提供持久化
-是一种常用的技术，对于普通的存储应用也是如此。
+如同在 [ZooKeeper](#zookeeper-basics) 一节所提到的，
+ZooKeeper 提交所有的条目到一个持久 WAL，并周期性的将内存快照写入存储介质。
+对于使用一致性协议实现一个复制状态机的应用来说，
+使用 WAL 提供持久化是一种常用的技术，对于普通的存储应用也是如此。
 
 使用 [`kubectl delete`](/docs/reference/generated/kubectl/kubectl-commands/#delete)
 删除 `zk` StatefulSet。
@@ -513,7 +509,7 @@ statefulset.apps "zk" deleted
 <!--
 Watch the termination of the Pods in the StatefulSet.
 -->
-观察 StatefulSet 中的 Pods 变为终止状态。
+观察 StatefulSet 中的 Pod 变为终止状态。
 
 ```shell
 kubectl get pods -w -l app=zk
@@ -555,7 +551,7 @@ Watch the StatefulSet controller recreate the StatefulSet's Pods.
 -->
 `zk` StatefulSet 将会被创建。由于清单中的其他 API 对象已经存在，所以它们不会被修改。
 
-观察 StatefulSet 控制器重建 StatefulSet 的 Pods。
+观察 StatefulSet 控制器重建 StatefulSet 的 Pod。
 
 ```shell
 kubectl get pods -w -l app=zk
@@ -564,7 +560,7 @@ kubectl get pods -w -l app=zk
 <!--
 Once the `zk-2` Pod is Running and Ready, use `CTRL-C` to terminate kubectl.
 -->
-一旦 `zk-2` Pod 处于 Running 和 Ready 状态，使用 `CRTL-C` 停止 kubectl命令。
+一旦 `zk-2` Pod 处于 Running 和 Ready 状态，使用 `CRTL-C` 停止 kubectl 命令。
 
 ```
 NAME      READY     STATUS    RESTARTS   AGE
@@ -598,8 +594,8 @@ kubectl exec zk-2 zkCli.sh get /hello
 <!--
 Even though you terminated and recreated all of the Pods in the `zk` StatefulSet, the ensemble still serves the original value.
 -->
-尽管 `zk` StatefulSet 中所有的 Pods 都已经被终止并重建过，ensemble
-仍然使用原来的数值提供服务。
+尽管 `zk` StatefulSet 中所有的 Pod 都已经被终止并重建过，
+ensemble 仍然使用原来的数值提供服务。
 
 ```
 WATCHER::
@@ -622,8 +618,8 @@ numChildren = 0
 <!--
 The `volumeClaimTemplates` field of the `zk` StatefulSet's `spec` specifies a PersistentVolume provisioned for each Pod.
 -->
-`zk` StatefulSet 的 `spec` 中的 `volumeClaimTemplates` 字段标识了
-将要为每个 Pod 准备的 PersistentVolume。
+`zk` StatefulSet 的 `spec` 中的 `volumeClaimTemplates`
+字段标识了将要为每个 Pod 准备的 PersistentVolume。
 
 ```yaml
 volumeClaimTemplates:
@@ -655,7 +651,7 @@ kubectl get pvc -l app=zk
 <!--
 When the `StatefulSet` recreated its Pods, it remounts the Pods' PersistentVolumes.
 -->
-当 `StatefulSet` 重新创建它的 Pods 时，Pods 的 PersistentVolumes 会被重新挂载。
+当 `StatefulSet` 重新创建它的 Pod 时，Pod 的 PersistentVolume 会被重新挂载。
 
 ```
 NAME           STATUS    VOLUME                                     CAPACITY   ACCESSMODES   AGE
@@ -668,12 +664,12 @@ datadir-zk-2   Bound     pvc-bee0817e-bcb1-11e6-994f-42010a800002   20Gi       R
 The `volumeMounts` section of the `StatefulSet`'s container `template` mounts the PersistentVolumes in the ZooKeeper servers' data directories.
 -->
 StatefulSet 的容器 `template` 中的 `volumeMounts` 一节使得
-PersistentVolumes 被挂载到 ZooKeeper 服务器的数据目录。
+PersistentVolume 被挂载到 ZooKeeper 服务器的数据目录。
 
-```shell
+```yaml
 volumeMounts:
-        - name: datadir
-          mountPath: /var/lib/zookeeper
+- name: datadir
+  mountPath: /var/lib/zookeeper
 ```
 
 <!--
@@ -682,10 +678,9 @@ same `PersistentVolume` mounted to the ZooKeeper server's data directory.
 Even when the Pods are rescheduled, all the writes made to the ZooKeeper
 servers' WALs, and all their snapshots, remain durable.
 -->
-当 `zk` StatefulSet 中的一个 Pod 被（重新）调度时，它总是拥有相同的 PersistentVolume，
+当 `zk` `StatefulSet` 中的一个 Pod 被（重新）调度时，它总是拥有相同的 PersistentVolume，
 挂载到 ZooKeeper 服务器的数据目录。
-即使在 Pods 被重新调度时，所有对 ZooKeeper 服务器的 WALs 的写入和它们的
-全部快照都仍然是持久的。
+即使在 Pod 被重新调度时，所有对 ZooKeeper 服务器的 WAL 的写入和它们的全部快照都仍然是持久的。
 
 <!--
 ## Ensuring consistent configuration
@@ -702,7 +697,7 @@ Get the `zk` StatefulSet.
 -->
 ## 确保一致性配置
 
-如同在[促成领导者选举](#facilitating-leader-election) 和[达成一致](#achieving-consensus)
+如同在[促成领导者选举](#facilitating-leader-election)和[达成一致](#achieving-consensus)
 小节中提到的，ZooKeeper ensemble 中的服务器需要一致性的配置来选举一个领导者并形成一个
 quorum。它们还需要 Zab 协议的一致性配置来保证这个协议在网络中正确的工作。
 在这次的示例中，我们通过直接将配置写入代码清单中来达到该目的。
@@ -756,8 +751,8 @@ Use the command below to get the logging configuration from one of Pods in the `
 ### 配置日志   {#configuring-logging}
 
 `zkGenConfig.sh` 脚本产生的一个文件控制了 ZooKeeper 的日志行为。
-ZooKeeper 使用了 [Log4j](http://logging.apache.org/log4j/2.x/) 并默认使用
-基于文件大小和时间的滚动文件追加器作为日志配置。
+ZooKeeper 使用了 [Log4j](http://logging.apache.org/log4j/2.x/)
+并默认使用基于文件大小和时间的滚动文件追加器作为日志配置。
 
 从 `zk` StatefulSet 的一个 Pod 中获取日志配置。
 
@@ -791,8 +786,8 @@ Use [`kubectl logs`](/docs/reference/generated/kubectl/kubectl-commands/#logs) t
 -->
 这是在容器里安全记录日志的最简单的方法。
 由于应用的日志被写入标准输出，Kubernetes 将会为你处理日志轮转。
-Kubernetes 还实现了一个智能保存策略，保证写入标准输出和标准错误流
-的应用日志不会耗尽本地存储媒介。
+Kubernetes 还实现了一个智能保存策略，
+保证写入标准输出和标准错误流的应用日志不会耗尽本地存储介质。
 
 使用命令 [`kubectl logs`](/docs/reference/generated/kubectl/kubectl-commands/#logs)
 从一个 Pod 中取回最后 20 行日志。
@@ -834,9 +829,10 @@ Kubernetes integrates with many logging solutions. You can choose a logging solu
 that best fits your cluster and applications. For cluster-level logging and aggregation,
 consider deploying a [sidecar container](/docs/concepts/cluster-administration/logging#sidecar-container-with-logging-agent) to rotate and ship your logs.
 -->
-Kubernetes 支持与多种日志方案集成。你可以选择一个最适合你的集群和应用
-的日志解决方案。对于集群级别的日志输出与整合，可以考虑部署一个
-[边车容器](/zh/docs/concepts/cluster-administration/logging#sidecar-container-with-logging-agent)
+Kubernetes 支持与多种日志方案集成。
+你可以选择一个最适合你的集群和应用的日志解决方案。
+对于集群级别的日志输出与整合，可以考虑部署一个
+[边车容器](/zh-cn/docs/concepts/cluster-administration/logging#sidecar-container-with-logging-agent)
 来轮转和提供日志数据。
 
 <!--
@@ -854,7 +850,7 @@ The `zk` `StatefulSet`'s Pod `template` contains a `SecurityContext`.
 
 在容器中允许应用以特权用户运行这条最佳实践是值得商讨的。
 如果你的组织要求应用以非特权用户运行，你可以使用
-[SecurityContext](/zh/docs/tasks/configure-pod-container/security-context/)
+[SecurityContext](/zh-cn/docs/tasks/configure-pod-container/security-context/)
 控制运行容器入口点所使用的用户。
 
 `zk` StatefulSet 的 Pod 的 `template` 包含了一个 `SecurityContext`。
@@ -871,7 +867,7 @@ corresponds to the zookeeper group.
 
 Get the ZooKeeper process information from the `zk-0` Pod.
 -->
-在 Pods 的容器内部，UID 1000 对应用户 zookeeper，GID 1000 对应用户组 zookeeper。
+在 Pod 的容器内部，UID 1000 对应用户 zookeeper，GID 1000 对应用户组 zookeeper。
 
 从 `zk-0` Pod 获取 ZooKeeper 进程信息。
 
@@ -909,9 +905,9 @@ kubectl exec -ti zk-0 -- ls -ld /var/lib/zookeeper/data
 <!--
 Because the `fsGroup` field of the `securityContext` object is set to 1000, the ownership of the Pods' PersistentVolumes is set to the zookeeper group, and the ZooKeeper process is able to read and write its data.
 -->
-由于 `securityContext` 对象的 `fsGroup` 字段设置为 1000，Pods 的
-PersistentVolumes 的所有权属于 zookeeper 用户组，因而 ZooKeeper
-进程能够成功地读写数据。
+由于 `securityContext` 对象的 `fsGroup` 字段设置为 1000，
+Pod 的 PersistentVolume 的所有权属于 zookeeper 用户组，
+因而 ZooKeeper 进程能够成功地读写数据。
 
 ```
 drwxr-sr-x 3 zookeeper zookeeper 4096 Dec  5 20:45 /var/lib/zookeeper/data
@@ -931,7 +927,7 @@ watchdog for your application.
 ## 管理 ZooKeeper 进程
 
 [ZooKeeper 文档](https://zookeeper.apache.org/doc/current/zookeeperAdmin.html#sc_supervision)
-指出“你将需要一个监管程序用于管理每个 ZooKeeper 服务进程（JVM）”。
+指出 “你将需要一个监管程序用于管理每个 ZooKeeper 服务进程（JVM）”。
 在分布式系统中，使用一个看门狗（监管程序）来重启故障进程是一种常用的模式。
 
 <!--
@@ -981,6 +977,8 @@ statefulset rolling update complete 3 pods at revision zk-5db4499664...
 This terminates the Pods, one at a time, in reverse ordinal order, and recreates them with the new configuration. This ensures that quorum is maintained during a rolling update.
 
 Use the `kubectl rollout history` command to view a history or previous configurations.
+
+The output is similar to this:
 -->
 这项操作会逆序地依次终止每一个 Pod，并用新的配置重新创建。
 这样做确保了在滚动更新的过程中 quorum 依旧保持工作。
@@ -991,6 +989,8 @@ Use the `kubectl rollout history` command to view a history or previous configur
 kubectl rollout history sts/zk
 ```
 
+输出类似于：
+
 ```
 statefulsets "zk"
 REVISION
@@ -1000,6 +1000,8 @@ REVISION
 
 <!--
 Use the `kubectl rollout undo` command to roll back the modification.
+
+The output is similar to this:
 -->
 使用 `kubectl rollout undo` 命令撤销这次的改动。
 
@@ -1007,6 +1009,8 @@ Use the `kubectl rollout undo` command to roll back the modification.
 kubectl rollout undo sts/zk
 ```
 
+输出类似于：
+
 ```
 statefulset.apps/zk rolled back
 ```
@@ -1024,9 +1028,9 @@ Use the following command to examine the process tree for the ZooKeeper server r
 -->
 ### 处理进程故障
 
-[重启策略](/zh/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy)
+[重启策略](/zh-cn/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy)
 控制 Kubernetes 如何处理一个 Pod 中容器入口点的进程故障。
-对于 StatefulSet 中的 Pods 来说，Always 是唯一合适的 RestartPolicy，也是默认值。
+对于 StatefulSet 中的 Pod 来说，Always 是唯一合适的 RestartPolicy，也是默认值。
 你应该**绝不**覆盖有状态应用的默认策略。
 
 检查 `zk-0` Pod 中运行的 ZooKeeper 服务器的进程树。
@@ -1039,8 +1043,7 @@ kubectl exec zk-0 -- ps -ef
 The command used as the container's entry point has PID 1, and
 the ZooKeeper process, a child of the entry point, has PID 27.
 -->
-作为容器入口点的命令的 PID 为 1，Zookeeper 进程是入口点的子进程，
-PID 为 27。
+作为容器入口点的命令的 PID 为 1，Zookeeper 进程是入口点的子进程，PID 为 27。
 
 ```
 UID        PID  PPID  C STIME TTY          TIME CMD
@@ -1051,7 +1054,7 @@ zookeep+    27     1  0 15:03 ?        00:00:03 /usr/lib/jvm/java-8-openjdk-amd6
 <!--
 In another terminal watch the Pods in the `zk` `StatefulSet` with the following command.
 -->
-在一个终端观察 `zk` `StatefulSet` 中的 Pods。
+在一个终端观察 `zk` `StatefulSet` 中的 Pod。
 
 ```shell
 kubectl get pod -w -l app=zk
@@ -1070,7 +1073,7 @@ In another terminal, terminate the ZooKeeper process in Pod `zk-0` with the foll
 The termination of the ZooKeeper process caused its parent process to terminate. Because the `RestartPolicy` of the container is Always, it restarted the parent process.
 -->
 ZooKeeper 进程的终结导致了它父进程的终止。由于容器的 `RestartPolicy`
-是 Always，父进程被重启。
+是 Always，所以父进程被重启。
 
 ```
 NAME      READY     STATUS    RESTARTS   AGE
@@ -1110,17 +1113,17 @@ The Pod `template` for the `zk` `StatefulSet` specifies a liveness probe.
 许多场景下，一个系统进程可以是活动状态但不响应请求，或者是不健康状态。
 你应该使用存活性探针来通知 Kubernetes 你的应用进程处于不健康状态，需要被重启。
 
-`zk` StatefulSet 的 Pod 的 `template` 一节指定了一个存活探针。
+`zk` `StatefulSet` 的 Pod 的 `template` 一节指定了一个存活探针。
 
 ```yaml
- livenessProbe:
-   exec:
-     command:
-       - sh
-       - -c
-       - "zookeeper-ready 2181"
-   initialDelaySeconds: 15
-   timeoutSeconds: 5
+  livenessProbe:
+    exec:
+      command:
+      - sh
+      - -c
+      - "zookeeper-ready 2181"
+    initialDelaySeconds: 15
+    timeoutSeconds: 5
 ```
 
 <!--
@@ -1142,7 +1145,7 @@ fi
 <!--
 In one terminal window, use the following command to watch the Pods in the `zk` StatefulSet.
 -->
-在一个终端窗口中使用下面的命令观察 `zk` StatefulSet 中的 Pods。
+在一个终端窗口中使用下面的命令观察 `zk` StatefulSet 中的 Pod。
 
 ```shell
 kubectl get pod -w -l app=zk
@@ -1154,7 +1157,7 @@ In another window, using the following command to delete the `zookeeper-ready` s
 在另一个窗口中，从 Pod `zk-0` 的文件系统中删除 `zookeeper-ready` 脚本。
 
 ```shell
-kubectl exec zk-0 -- rm /usr/bin/zookeeper-ready
+kubectl exec zk-0 -- rm /opt/zookeeper/bin/zookeeper-ready
 ```
 
 <!--
@@ -1249,10 +1252,10 @@ By default, Kubernetes may co-locate Pods in a `StatefulSet` on the same node.
 For the three server ensemble you created, if two servers are on the same node, and that node fails,
 the clients of your ZooKeeper service will experience an outage until at least one of the Pods can be rescheduled.
 -->
-默认情况下，Kubernetes 可以把 StatefulSet 的 Pods 部署在相同节点上。
-对于你创建的 3 个服务器的 ensemble 来说，如果有两个服务器并存于
-相同的节点上并且该节点发生故障时，ZooKeeper 服务将中断，
-直至至少一个 Pods 被重新调度。
+默认情况下，Kubernetes 可以把 `StatefulSet` 的 Pod 部署在相同节点上。
+对于你创建的 3 个服务器的 ensemble 来说，
+如果有两个服务器并存于相同的节点上并且该节点发生故障时，ZooKeeper 服务将中断，
+直至至少其中一个 Pod 被重新调度。
 
 <!--
 You should always provision additional capacity to allow the processes of critical
@@ -1268,7 +1271,7 @@ Use the command below to get the nodes for Pods in the `zk` `StatefulSet`.
 ZooKeeper 服务器为止。
 但是，如果希望你的服务在容忍节点故障时无停服时间，你应该设置 `podAntiAffinity`。
 
-获取 `zk` Stateful Set 中的 Pods 的节点。
+使用下面的命令获取 `zk` `StatefulSet` 中的 Pod 的节点。
 
 ```shell
 for i in 0 1 2; do kubectl get pod zk-$i --template {{.spec.nodeName}}; echo ""; done
@@ -1277,7 +1280,7 @@ for i in 0 1 2; do kubectl get pod zk-$i --template {{.spec.nodeName}}; echo "";
 <!--
 All of the Pods in the `zk` `StatefulSet` are deployed on different nodes.
 -->
-`zk` `StatefulSet` 中所有的 Pods 都被部署在不同的节点。
+`zk` `StatefulSet` 中所有的 Pod 都被部署在不同的节点。
 
 ```
 kubernetes-node-cxpk
@@ -1289,7 +1292,7 @@ kubernetes-node-2g2d
 This is because the Pods in the `zk` `StatefulSet` have a `PodAntiAffinity` specified.
 -->
 
-这是因为 `zk` `StatefulSet` 中的 Pods 指定了 `PodAntiAffinity`。
+这是因为 `zk` `StatefulSet` 中的 Pod 指定了 `PodAntiAffinity`。
 
 ```yaml
 affinity:
@@ -1314,7 +1317,7 @@ your ensemble across physical, network, and power failure domains.
 -->
 `requiredDuringSchedulingIgnoredDuringExecution` 告诉 Kubernetes 调度器，
 在以 `topologyKey` 指定的域中，绝对不要把带有键为 `app`、值为 `zk` 的标签
-的两个 Pods 调度到相同的节点。`topologyKey` `kubernetes.io/hostname` 表示
+的两个 Pod 调度到相同的节点。`topologyKey` `kubernetes.io/hostname` 表示
 这个域是一个单独的节点。
 使用不同的规则、标签和选择算符，你能够通过这种技术把你的 ensemble 分布
 在不同的物理、网络和电力故障域之间。
@@ -1336,7 +1339,7 @@ Use this command to get the nodes in your cluster.
 **在本节中你将会隔离（Cordon）和腾空（Drain）节点。
 如果你是在一个共享的集群里使用本教程，请保证不会影响到其他租户。**
 
-上一小节展示了如何在节点之间分散 Pods 以在计划外的节点故障时保证服务存活。
+上一小节展示了如何在节点之间分散 Pod 以在计划外的节点故障时保证服务存活。
 但是你也需要为计划内维护引起的临时节点故障做准备。
 
 使用此命令获取你的集群中的节点。
@@ -1381,7 +1384,7 @@ zk-pdb    N/A             1                 1
 <!--
 In one terminal, use this command to watch the Pods in the `zk` `StatefulSet`.
 -->
-在一个终端中，使用下面的命令观察 `zk` `StatefulSet` 中的 Pods。
+在一个终端中，使用下面的命令观察 `zk` `StatefulSet` 中的 Pod。
 
 ```shell
 kubectl get pods -w -l app=zk
@@ -1391,7 +1394,7 @@ kubectl get pods -w -l app=zk
 In another terminal, use this command to get the nodes that the Pods are currently scheduled on.
 -->
 
-在另一个终端中，使用下面的命令获取 Pods 当前调度的节点。
+在另一个终端中，使用下面的命令获取 Pod 当前调度的节点。
 
 ```shell
 for i in 0 1 2; do kubectl get pod zk-$i --template {{.spec.nodeName}}; echo ""; done
@@ -1406,6 +1409,8 @@ kubernetes-node-i4c4
 <!--
 Use [`kubectl drain`](/docs/reference/generated/kubectl/kubectl-commands/#drain) to cordon and
 drain the node on which the `zk-0` Pod is scheduled.
+
+The output is similar to this:
 -->
 
 使用 [`kubectl drain`](/docs/reference/generated/kubectl/kubectl-commands/#drain)
@@ -1415,6 +1420,8 @@ drain the node on which the `zk-0` Pod is scheduled.
 kubectl drain $(kubectl get pod zk-0 --template {{.spec.nodeName}}) --ignore-daemonsets --force --delete-emptydir-data
 ```
 
+输出类似于：
+
 ```
 node "kubernetes-node-pb41" cordoned
 
@@ -1449,14 +1456,19 @@ zk-0      1/1       Running   0         1m
 <!--
 Keep watching the `StatefulSet`'s Pods in the first terminal and drain the node on which
 `zk-1` is scheduled.
+
+The output is similar to this:
 -->
-在第一个终端中持续观察 StatefulSet 的 Pods 并腾空 `zk-1` 调度所在的节点。
+在第一个终端中持续观察 `StatefulSet` 的 Pod 并腾空 `zk-1` 调度所在的节点。
 
 ```shell
-kubectl drain $(kubectl get pod zk-1 --template {{.spec.nodeName}}) --ignore-daemonsets --force -delete-emptydir-data "kubernetes-node-ixsl" cordoned
+kubectl drain $(kubectl get pod zk-1 --template {{.spec.nodeName}}) --ignore-daemonsets --force --delete-emptydir-data
 ```
 
+输出类似于：
+
 ```
+kubernetes-node-ixsl" cordoned
 WARNING: Deleting pods not managed by ReplicationController, ReplicaSet, Job, or DaemonSet: fluentd-cloud-logging-kubernetes-node-ixsl, kube-proxy-kubernetes-node-ixsl; Ignoring DaemonSet-managed pods: node-problem-detector-v0.1-voc74
 pod "zk-1" deleted
 node "kubernetes-node-ixsl" drained
@@ -1465,15 +1477,19 @@ node "kubernetes-node-ixsl" drained
 <!--
 The `zk-1` Pod cannot be scheduled because the `zk` `StatefulSet` contains a `PodAntiAffinity` rule preventing
 co-location of the Pods, and as only two nodes are schedulable, the Pod will remain in a Pending state.
+
+The output is similar to this:
 -->
-`zk-1` Pod 不能被调度，这是因为 `zk` `StatefulSet` 包含了一个防止 Pods
-共存的 PodAntiAffinity 规则，而且只有两个节点可用于调度，
+`zk-1` Pod 不能被调度，这是因为 `zk` `StatefulSet` 包含了一个防止 Pod
+共存的 `PodAntiAffinity` 规则，而且只有两个节点可用于调度，
 这个 Pod 将保持在 Pending 状态。
 
 ```shell
 kubectl get pods -w -l app=zk
 ```
 
+输出类似于：
+
 ```
 NAME      READY     STATUS              RESTARTS   AGE
 zk-0      1/1       Running             2          1h
@@ -1498,14 +1514,19 @@ zk-1      0/1       Pending             0          0s
 ```
 
 <!--
-Continue to watch the Pods of the stateful set, and drain the node on which
+Continue to watch the Pods of the StatefulSet, and drain the node on which
 `zk-2` is scheduled.
+
+The output is similar to this:
 -->
-继续观察 StatefulSet 中的 Pods 并腾空 `zk-2` 调度所在的节点。
+继续观察 StatefulSet 中的 Pod 并腾空 `zk-2` 调度所在的节点。
 
 ```shell
 kubectl drain $(kubectl get pod zk-2 --template {{.spec.nodeName}}) --ignore-daemonsets --force --delete-emptydir-data
 ```
+
+输出类似于：
+
 ```
 node "kubernetes-node-i4c4" cordoned
 
@@ -1522,7 +1543,7 @@ You cannot drain the third node because evicting `zk-2` would violate `zk-budget
 
 Use `zkCli.sh` to retrieve the value you entered during the sanity test from `zk-0`.
 -->
-使用 `CRTL-C` 终止 kubectl。
+使用 `CTRL-C` 终止 kubectl。
 
 你不能腾空第三个节点，因为驱逐 `zk-2` 将和 `zk-budget` 冲突。
 然而这个节点仍然处于隔离状态（Cordoned）。
@@ -1536,7 +1557,7 @@ kubectl exec zk-0 zkCli.sh get /hello
 <!--
 The service is still available because its `PodDisruptionBudget` is respected.
 -->
-由于遵守了 PodDisruptionBudget，服务仍然可用。
+由于遵守了 `PodDisruptionBudget`，服务仍然可用。
 
 ```
 WatchedEvent state:SyncConnected type:None path:null
@@ -1556,6 +1577,8 @@ numChildren = 0
 
 <!--
 Use [`kubectl uncordon`](/docs/reference/generated/kubectl/kubectl-commands/#uncordon) to uncordon the first node.
+
+The output is similar to this:
 -->
 使用 [`kubectl uncordon`](/docs/reference/generated/kubectl/kubectl-commands/#uncordon)
 来取消对第一个节点的隔离。
@@ -1564,12 +1587,16 @@ Use [`kubectl uncordon`](/docs/reference/generated/kubectl/kubectl-commands/#unc
 kubectl uncordon kubernetes-node-pb41
 ```
 
+输出类似于：
+
 ```
 node "kubernetes-node-pb41" uncordoned
 ```
 
 <!--
 `zk-1` is rescheduled on this node. Wait until `zk-1` is Running and Ready.
+
+The output is similar to this:
 -->
 `zk-1` 被重新调度到了这个节点。等待 `zk-1` 变为 Running 和 Ready 状态。
 
@@ -1577,6 +1604,8 @@ node "kubernetes-node-pb41" uncordoned
 kubectl get pods -w -l app=zk
 ```
 
+输出类似于：
+
 ```
 NAME      READY     STATUS             RESTARTS  AGE
 zk-0      1/1       Running            2         1h
@@ -1614,9 +1643,9 @@ kubectl drain $(kubectl get pod zk-2 --template {{.spec.nodeName}}) --ignore-dae
 ```
 
 <!--
-The output:
+The output is similar to this:
 -->
-输出：
+输出类似于：
 
 ```
 node "kubernetes-node-i4c4" already cordoned
@@ -1630,6 +1659,8 @@ node "kubernetes-node-i4c4" drained
 This time `kubectl drain` succeeds.
 
 Uncordon the second node to allow `zk-2` to be rescheduled.
+
+The output is similar to this:
 -->
 这次 `kubectl drain` 执行成功。
 
@@ -1639,6 +1670,8 @@ Uncordon the second node to allow `zk-2` to be rescheduled.
 kubectl uncordon kubernetes-node-ixsl
 ```
 
+输出类似于：
+
 ```
 node "kubernetes-node-ixsl" uncordoned
 ```
@@ -1649,10 +1682,10 @@ If drain is used to cordon nodes and evict pods prior to taking the node offline
 services that express a disruption budget will have that budget respected.
 You should always allocate additional capacity for critical services so that their Pods can be immediately rescheduled.
 -->
-你可以同时使用 `kubectl drain` 和 `PodDisruptionBudgets` 来保证你的服务
-在维护过程中仍然可用。如果使用了腾空操作来隔离节点并在节点离线之前驱逐了 pods，
+你可以同时使用 `kubectl drain` 和 `PodDisruptionBudgets` 来保证你的服务在维护过程中仍然可用。
+如果使用了腾空操作来隔离节点并在节点离线之前驱逐了 Pod，
 那么设置了干扰预算的服务将会遵守该预算。
-你应该总是为关键服务分配额外容量，这样它们的 Pods 就能够迅速的重新调度。
+你应该总是为关键服务分配额外容量，这样它们的 Pod 就能够迅速的重新调度。
 
 ## {{% heading "cleanup" %}}
 
@@ -1663,6 +1696,6 @@ You should always allocate additional capacity for critical services so that the
   and provisioning method, to ensure that all storage is reclaimed.
 -->
 * 使用 `kubectl uncordon` 解除你集群中所有节点的隔离。
-* 你需要删除在本教程中使用的 PersistentVolumes 的持久存储媒介。
+* 你需要删除在本教程中使用的 PersistentVolume 的持久存储介质。
   请遵循必须的步骤，基于你的环境、存储配置和制备方法，保证回收所有的存储。
 
diff --git a/content/zh/docs/tutorials/stateless-application/_index.md b/content/zh-cn/docs/tutorials/stateless-application/_index.md
similarity index 100%
rename from content/zh/docs/tutorials/stateless-application/_index.md
rename to content/zh-cn/docs/tutorials/stateless-application/_index.md
diff --git a/content/zh/docs/tutorials/stateless-application/expose-external-ip-address.md b/content/zh-cn/docs/tutorials/stateless-application/expose-external-ip-address.md
similarity index 90%
rename from content/zh/docs/tutorials/stateless-application/expose-external-ip-address.md
rename to content/zh-cn/docs/tutorials/stateless-application/expose-external-ip-address.md
index 8fe79a9a5d..cd3989c3e8 100644
--- a/content/zh/docs/tutorials/stateless-application/expose-external-ip-address.md
+++ b/content/zh-cn/docs/tutorials/stateless-application/expose-external-ip-address.md
@@ -28,9 +28,9 @@ external IP address.
 * Configure `kubectl` to communicate with your Kubernetes API server. For instructions, see the
   documentation for your cloud provider.
 -->
- * 安装 [kubectl](/zh/docs/tasks/tools/).
+ * 安装 [kubectl](/zh-cn/docs/tasks/tools/)。
  * 使用 Google Kubernetes Engine 或 Amazon Web Services 等云供应商创建 Kubernetes 集群。
-   本教程创建了一个[外部负载均衡器](/zh/docs/tasks/access-application-cluster/create-external-load-balancer/)，
+   本教程创建了一个[外部负载均衡器](/zh-cn/docs/tasks/access-application-cluster/create-external-load-balancer/)，
    需要云供应商。
  * 配置 `kubectl` 与 Kubernetes API 服务器通信。有关说明，请参阅云供应商文档。
 
@@ -50,7 +50,6 @@ external IP address.
 <!--
 ## Creating a service for an application running in five pods
 -->
-
 ## 为一个在五个 pod 中运行的应用程序创建服务
 
 <!--
@@ -133,7 +132,7 @@ external IP address.
    {{< /note >}}
    -->
    提示：`type=LoadBalancer` 服务由外部云服务提供商提供支持，本例中不包含此部分，
-   详细信息请参考[此页](/docs/concepts/services-networking/service/#loadbalancer)
+   详细信息请参考[此页](/zh-cn/docs/concepts/services-networking/service/#loadbalancer)
 
    <!--
    {{< note >}}
@@ -179,7 +178,7 @@ external IP address.
    -->
    记下服务公开的外部 IP 地址（`LoadBalancer Ingress`)。
    在本例中，外部 IP 地址是 104.198.205.71。还要注意 `Port` 和 `NodePort` 的值。
-   在本例中，`Port` 是 8080，`NodePort` 是32377。
+   在本例中，`Port` 是 8080，`NodePort` 是 32377。
 
 <!--
 1. In the preceding output, you can see that the service has several endpoints:
@@ -187,10 +186,10 @@ external IP address.
    addresses of the pods that are running the Hello World application. To
    verify these are pod addresses, enter this command:
 -->
-7. 在前面的输出中，您可以看到服务有几个端点：
+7. 在前面的输出中，你可以看到服务有几个端点：
    10.0.0.6:8080、10.0.1.6:8080、10.0.1.7:8080 和另外两个，
-   这些都是正在运行 Hello World 应用程序的 pod 的内部地址。
-   要验证这些是 pod 地址，请输入以下命令：
+   这些都是正在运行 Hello World 应用程序的 Pod 的内部地址。
+   要验证这些是 Pod 地址，请输入以下命令：
 
    ```shell
    kubectl get pods --output=wide
@@ -226,9 +225,9 @@ external IP address.
    If you are using minikube, typing `minikube service my-service` will
    automatically open the Hello World application in a browser.
    -->
-   其中 `<external-ip>` 是您的服务的外部 IP 地址（`LoadBalancer Ingress`），
-   `<port>` 是您的服务描述中的 `port` 的值。
-   如果您正在使用 minikube，输入 `minikube service my-service` 将在浏览器中自动打开 Hello World 应用程序。
+   其中 `<external-ip>` 是你的服务的外部 IP 地址（`LoadBalancer Ingress`），
+   `<port>` 是你的服务描述中的 `port` 的值。
+   如果你正在使用 minikube，输入 `minikube service my-service` 将在浏览器中自动打开 Hello World 应用程序。
 
    <!--
    The response to a successful request is a hello message:
@@ -244,7 +243,7 @@ external IP address.
 <!--
 To delete the Service, enter this command:
 -->
-要删除服务，请输入以下命令：
+要删除 Service，请输入以下命令：
 
 ```shell
 kubectl delete services my-service
@@ -266,5 +265,5 @@ kubectl delete deployment hello-world
 Learn more about
 [connecting applications with services](/docs/concepts/services-networking/connect-applications-service/).
 -->
-进一步了解[将应用程序与服务连接](/zh/docs/concepts/services-networking/connect-applications-service/)。
+进一步了解[将应用程序与服务连接](/zh-cn/docs/concepts/services-networking/connect-applications-service/)。
 
diff --git a/content/zh/docs/tutorials/stateless-application/guestbook.md b/content/zh-cn/docs/tutorials/stateless-application/guestbook.md
similarity index 94%
rename from content/zh/docs/tutorials/stateless-application/guestbook.md
rename to content/zh-cn/docs/tutorials/stateless-application/guestbook.md
index ece9037f7d..25274ca7ed 100644
--- a/content/zh/docs/tutorials/stateless-application/guestbook.md
+++ b/content/zh-cn/docs/tutorials/stateless-application/guestbook.md
@@ -28,8 +28,8 @@ min-kubernetes-server-version: v1.14
 <!--
 This tutorial shows you how to build and deploy a simple _(not production ready)_, multi-tier web application using Kubernetes and [Docker](https://www.docker.com/). This example consists of the following components:
 -->
-本教程向您展示如何使用 Kubernetes 和 [Docker](https://www.docker.com/) 构建和部署
-一个简单的_(非面向生产)的_多层 web 应用程序。本例由以下组件组成：
+本教程向你展示如何使用 Kubernetes 和 [Docker](https://www.docker.com/)
+构建和部署一个简单的 **(非面向生产的)** 多层 web 应用程序。本例由以下组件组成：
 
 <!--
 * A single-instance [Redis](https://www.redis.io/) to store guestbook entries
@@ -74,7 +74,6 @@ The guestbook application uses Redis to store its data.
 <!--
 ### Creating the Redis Deployment
 -->
-
 ### 创建 Redis Deployment
 
 <!--
@@ -137,7 +136,7 @@ The manifest file, included below, specifies a Deployment controller that runs a
 The guestbook application needs to communicate to the Redis to write its data. You need to apply a [Service](/docs/concepts/services-networking/service/) to proxy the traffic to the Redis Pod. A Service defines a policy to access the Pods.
 -->
 留言板应用程序需要往 Redis 中写数据。因此，需要创建
-[Service](/zh/docs/concepts/services-networking/service/) 来转发 Redis Pod
+[Service](/zh-cn/docs/concepts/services-networking/service/) 来转发 Redis Pod
 的流量。Service 定义了访问 Pod 的策略。
 
 {{< codenew file="application/guestbook/redis-leader-service.yaml" >}}
@@ -240,7 +239,7 @@ The guestbook application needs to communicate with the Redis followers to read
 
 Guestbook 应用需要与 Redis 跟随者通信以读取数据。
 为了让 Redis 跟随者可被发现，你必须创建另一个
-[Service](/zh/docs/concepts/services-networking/service/)。
+[Service](/zh-cn/docs/concepts/services-networking/service/)。
 
 {{< codenew file="application/guestbook/redis-follower-service.yaml" >}}
 
@@ -326,7 +325,7 @@ Guestbook 应用使用 PHP 前端。该前端被配置成与后端的 Redis 跟
    
    ```shell
    kubectl apply -f https://k8s.io/examples/application/guestbook/frontend-deployment.yaml
-      ```
+   ```
 
 <!--
 1. Query the list of Pods to verify that the three frontend replicas are running:
@@ -358,11 +357,15 @@ Guestbook 应用使用 PHP 前端。该前端被配置成与后端的 Redis 跟
 The `Redis` Services you applied is only accessible within the Kubernetes cluster because the default type for a Service is [ClusterIP](/docs/concepts/services-networking/service/#publishing-services-service-types). `ClusterIP` provides a single IP address for the set of Pods the Service is pointing to. This IP address is accessible only within the cluster.
 -->
 应用的 `Redis` 服务只能在 Kubernetes 集群中访问，因为服务的默认类型是
-[ClusterIP](/zh/docs/concepts/services-networking/service/#publishing-services-service-types)。
+[ClusterIP](/zh-cn/docs/concepts/services-networking/service/#publishing-services-service-types)。
 `ClusterIP` 为服务指向的 Pod 集提供一个 IP 地址。这个 IP 地址只能在集群中访问。
 
 <!--
-If you want guests to be able to access your guestbook, you must configure the frontend Service to be externally visible, so a client can request the Service from outside the Kubernetes cluster. However a Kubernetes user you can use `kubectl port-forward` to access the service even though it uses a `ClusterIP`.
+If you want guests to be able to access your guestbook, you must configure the 
+frontend Service to be externally visible, so a client can request the Service 
+from outside the Kubernetes cluster. However a Kubernetes user can use
+`kubectl port-forward` to access the service even though it uses a 
+`ClusterIP`.
 -->
 如果你希望访客能够访问你的 Guestbook，你必须将前端服务配置为外部可见的，
 以便客户端可以从 Kubernetes 集群之外请求服务。
@@ -419,7 +422,6 @@ Some cloud providers, like Google Compute Engine or Google Kubernetes Engine, su
 <!--
 ### Viewing the Frontend Service via `kubectl port-forward`
 -->
-
 ### 通过 `kubectl port-forward` 查看前端服务
 
 <!--
@@ -627,8 +629,8 @@ Deleting the Deployments and Services also deletes any running Pods. Use labels
 * Read more about [connecting applications](/docs/concepts/services-networking/connect-applications-service/)
 * Read more about [Managing Resources](/docs/concepts/cluster-administration/manage-deployment/#using-labels-effectively)
 -->
-* 完成 [Kubernetes 基础](/zh/docs/tutorials/kubernetes-basics/) 交互式教程
+* 完成 [Kubernetes 基础](/zh-cn/docs/tutorials/kubernetes-basics/) 交互式教程
 * 使用 Kubernetes 创建一个博客，使用
-  [MySQL 和 Wordpress 的持久卷](/zh/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume/#visit-your-new-wordpress-blog)
-* 进一步阅读[连接应用程序](/zh/docs/concepts/services-networking/connect-applications-service/)
-* 进一步阅读[管理资源](/zh/docs/concepts/cluster-administration/manage-deployment/#using-labels-effectively)
+  [MySQL 和 Wordpress 的持久卷](/zh-cn/docs/tutorials/stateful-application/mysql-wordpress-persistent-volume/#visit-your-new-wordpress-blog)
+* 进一步阅读[连接应用程序](/zh-cn/docs/concepts/services-networking/connect-applications-service/)
+* 进一步阅读[管理资源](/zh-cn/docs/concepts/cluster-administration/manage-deployment/#using-labels-effectively)
diff --git a/content/zh/docs/update-user-guide-links.py b/content/zh-cn/docs/update-user-guide-links.py
similarity index 100%
rename from content/zh/docs/update-user-guide-links.py
rename to content/zh-cn/docs/update-user-guide-links.py
diff --git a/content/zh-cn/examples/README.md b/content/zh-cn/examples/README.md
new file mode 100644
index 0000000000..dcc4443c3d
--- /dev/null
+++ b/content/zh-cn/examples/README.md
@@ -0,0 +1,17 @@
+<!--
+To run the tests for a localization, use the following command:
+-->
+要运行本地化测试，请使用以下命令:
+
+```
+go test k8s.io/website/content/<lang>/examples
+```
+
+<!--
+where `<lang>` is the two character representation of a language. For example:
+-->
+其中 `<lang>` 是用两个字符表示一种语言。例如:
+
+```
+go test k8s.io/website/content/en/examples
+```
diff --git a/content/zh/examples/access/certificate-signing-request/clusterrole-approve.yaml b/content/zh-cn/examples/access/certificate-signing-request/clusterrole-approve.yaml
similarity index 78%
rename from content/zh/examples/access/certificate-signing-request/clusterrole-approve.yaml
rename to content/zh-cn/examples/access/certificate-signing-request/clusterrole-approve.yaml
index e5bcfdc44e..cfdd311b4f 100644
--- a/content/zh/examples/access/certificate-signing-request/clusterrole-approve.yaml
+++ b/content/zh-cn/examples/access/certificate-signing-request/clusterrole-approve.yaml
@@ -22,7 +22,7 @@ rules:
   resources:
   - signers
   resourceNames:
-  - example.com/my-signer-name # example.com/* can be used to authorize for all signers in the 'example.com' domain
+  - example.com/my-signer-name # example.com/* 可用于为 “example.com” 域中的所有签名者授权
   verbs:
   - approve
 
diff --git a/content/zh/examples/access/certificate-signing-request/clusterrole-create.yaml b/content/zh-cn/examples/access/certificate-signing-request/clusterrole-create.yaml
similarity index 100%
rename from content/zh/examples/access/certificate-signing-request/clusterrole-create.yaml
rename to content/zh-cn/examples/access/certificate-signing-request/clusterrole-create.yaml
diff --git a/content/zh/examples/access/certificate-signing-request/clusterrole-sign.yaml b/content/zh-cn/examples/access/certificate-signing-request/clusterrole-sign.yaml
similarity index 78%
rename from content/zh/examples/access/certificate-signing-request/clusterrole-sign.yaml
rename to content/zh-cn/examples/access/certificate-signing-request/clusterrole-sign.yaml
index 6d1a2f7882..e2e3f71ad6 100644
--- a/content/zh/examples/access/certificate-signing-request/clusterrole-sign.yaml
+++ b/content/zh-cn/examples/access/certificate-signing-request/clusterrole-sign.yaml
@@ -22,6 +22,6 @@ rules:
   resources:
   - signers
   resourceNames:
-  - example.com/my-signer-name # example.com/* can be used to authorize for all signers in the 'example.com' domain
+  - example.com/my-signer-name # example.com/* 可用于为 “example.com” 域中的所有签名者授权
   verbs:
   - sign
diff --git a/content/zh-cn/examples/access/endpoints-aggregated.yaml b/content/zh-cn/examples/access/endpoints-aggregated.yaml
new file mode 100644
index 0000000000..02eeaa4a47
--- /dev/null
+++ b/content/zh-cn/examples/access/endpoints-aggregated.yaml
@@ -0,0 +1,18 @@
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    kubernetes.io/description: |-
+      Add endpoints write permissions to the edit and admin roles. This was
+      removed by default in 1.22 because of CVE-2021-25740. See
+      https://issue.k8s.io/103675. This can allow writers to direct LoadBalancer
+      or Ingress implementations to expose backend IPs that would not otherwise
+      be accessible, and can circumvent network policies or security controls
+      intended to prevent/isolate access to those backends.
+  labels:
+    rbac.authorization.k8s.io/aggregate-to-edit: "true"
+  name: custom:aggregate-to-edit:endpoints # 你可以随意愿更改这个 name
+rules:
+  - apiGroups: [""]
+    resources: ["endpoints"]
+    verbs: ["create", "delete", "deletecollection", "patch", "update"]
diff --git a/content/zh/examples/admin/cloud/ccm-example.yaml b/content/zh-cn/examples/admin/cloud/ccm-example.yaml
similarity index 57%
rename from content/zh/examples/admin/cloud/ccm-example.yaml
rename to content/zh-cn/examples/admin/cloud/ccm-example.yaml
index 3bce7b58fa..90bf3344cd 100644
--- a/content/zh/examples/admin/cloud/ccm-example.yaml
+++ b/content/zh-cn/examples/admin/cloud/ccm-example.yaml
@@ -1,7 +1,6 @@
-# This is an example of how to setup cloud-controller-manager as a Daemonset in your cluster.
-# It assumes that your masters can run pods and has the role node-role.kubernetes.io/master
-# Note that this Daemonset will not work straight out of the box for your cloud, this is
-# meant to be a guideline.
+# 这是一个如何将 cloud-controller-manager 安装为集群中的 Daemonset 的示例。
+# 本例假定你的主控节点可以运行 pod 并具有角色 node-role.kubernetes.io/master
+# 请注意，这里的 Daemonset 不能直接在你的云上工作，此例只是一个指导。
 
 ---
 apiVersion: v1
@@ -42,28 +41,32 @@ spec:
       serviceAccountName: cloud-controller-manager
       containers:
       - name: cloud-controller-manager
-        # for in-tree providers we use k8s.gcr.io/cloud-controller-manager
-        # this can be replaced with any other image for out-of-tree providers
+        # 对于树内驱动，我们使用 k8s.gcr.io/cloud-controller-manager，
+        # 镜像可以替换为其他树外驱动的镜像
         image: k8s.gcr.io/cloud-controller-manager:v1.8.0
         command:
         - /usr/local/bin/cloud-controller-manager
-        - --cloud-provider=[YOUR_CLOUD_PROVIDER]  # Add your own cloud provider here!
+        - --cloud-provider=[YOUR_CLOUD_PROVIDER]  # 在此处添加你自己的云驱动！
         - --leader-elect=true
         - --use-service-account-credentials
-        # these flags will vary for every cloud provider
+        # 这些标志因每个云驱动而异
         - --allocate-node-cidrs=true
         - --configure-cloud-routes=true
         - --cluster-cidr=172.17.0.0/16
       tolerations:
-      # this is required so CCM can bootstrap itself
+      # 这一设置是必需的，为了让 CCM 可以自行引导
       - key: node.cloudprovider.kubernetes.io/uninitialized
         value: "true"
         effect: NoSchedule
-      # this is to have the daemonset runnable on master nodes
-      # the taint may vary depending on your cluster setup
-      - key: node-role.kubernetes.io/master
+      # 这些容忍度使得守护进程能够在控制平面节点上运行
+      # 如果你的控制平面节点不应该运行 pod，请删除它们
+      - key: node-role.kubernetes.io/control-plane
+        operator: Exists
         effect: NoSchedule
-      # this is to restrict CCM to only run on master nodes
-      # the node selector may vary depending on your cluster setup
+      - key: node-role.kubernetes.io/master
+        operator: Exists
+        effect: NoSchedule
+      # 这是为了限制 CCM 仅在主节点上运行
+      # 节点选择器可能因你的集群设置而异
       nodeSelector:
         node-role.kubernetes.io/master: ""
diff --git a/content/zh/examples/admin/dns/busybox.yaml b/content/zh-cn/examples/admin/dns/busybox.yaml
similarity index 100%
rename from content/zh/examples/admin/dns/busybox.yaml
rename to content/zh-cn/examples/admin/dns/busybox.yaml
diff --git a/content/zh-cn/examples/admin/dns/dns-horizontal-autoscaler.yaml b/content/zh-cn/examples/admin/dns/dns-horizontal-autoscaler.yaml
new file mode 100644
index 0000000000..f7e7660e7a
--- /dev/null
+++ b/content/zh-cn/examples/admin/dns/dns-horizontal-autoscaler.yaml
@@ -0,0 +1,87 @@
+kind: ServiceAccount
+apiVersion: v1
+metadata:
+  name: kube-dns-autoscaler
+  namespace: kube-system
+---
+kind: ClusterRole
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: system:kube-dns-autoscaler
+rules:
+  - apiGroups: [""]
+    resources: ["nodes"]
+    verbs: ["list", "watch"]
+  - apiGroups: [""]
+    resources: ["replicationcontrollers/scale"]
+    verbs: ["get", "update"]
+  - apiGroups: ["apps"]
+    resources: ["deployments/scale", "replicasets/scale"]
+    verbs: ["get", "update"]
+# 待以下 issue 修复后，请删除 Configmaps
+# kubernetes-incubator/cluster-proportional-autoscaler#16
+  - apiGroups: [""]
+    resources: ["configmaps"]
+    verbs: ["get", "create"]
+---
+kind: ClusterRoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: system:kube-dns-autoscaler
+subjects:
+  - kind: ServiceAccount
+    name: kube-dns-autoscaler
+    namespace: kube-system
+roleRef:
+  kind: ClusterRole
+  name: system:kube-dns-autoscaler
+  apiGroup: rbac.authorization.k8s.io
+
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: kube-dns-autoscaler
+  namespace: kube-system
+  labels:
+    k8s-app: kube-dns-autoscaler
+    kubernetes.io/cluster-service: "true"
+spec:
+  selector:
+    matchLabels:
+      k8s-app: kube-dns-autoscaler
+  template:
+    metadata:
+      labels:
+        k8s-app: kube-dns-autoscaler
+    spec:
+      priorityClassName: system-cluster-critical
+      securityContext:
+        seccompProfile:
+          type: RuntimeDefault
+        supplementalGroups: [ 65534 ]
+        fsGroup: 65534
+      nodeSelector:
+        kubernetes.io/os: linux
+      containers:
+      - name: autoscaler
+        image: k8s.gcr.io/cpa/cluster-proportional-autoscaler:1.8.4
+        resources:
+            requests:
+                cpu: "20m"
+                memory: "10Mi"
+        command:
+          - /cluster-proportional-autoscaler
+          - --namespace=kube-system
+          - --configmap=kube-dns-autoscaler
+          # 应该保持目标与 cluster/addons/dns/kube-dns.yaml.base 同步
+          - --target=<SCALE_TARGET>
+          #当集群使用大节点（有更多核）时，“coresPerReplica”应该占主导地位。
+          #如果使用小节点，“nodesPerReplica“ 应该占主导地位。
+          - --default-params={"linear":{"coresPerReplica":256,"nodesPerReplica":16,"preventSinglePointFailure":true,"includeUnschedulableNodes":true}}
+          - --logtostderr=true
+          - --v=2
+      tolerations:
+      - key: "CriticalAddonsOnly"
+        operator: "Exists"
+      serviceAccountName: kube-dns-autoscaler
diff --git a/content/zh/examples/admin/dns/dnsutils.yaml b/content/zh-cn/examples/admin/dns/dnsutils.yaml
similarity index 78%
rename from content/zh/examples/admin/dns/dnsutils.yaml
rename to content/zh-cn/examples/admin/dns/dnsutils.yaml
index 9192bf3502..5be0791c03 100644
--- a/content/zh/examples/admin/dns/dnsutils.yaml
+++ b/content/zh-cn/examples/admin/dns/dnsutils.yaml
@@ -6,7 +6,7 @@ metadata:
 spec:
   containers:
   - name: dnsutils
-    image: gcr.io/kubernetes-e2e-test-images/dnsutils:1.3
+    image: k8s.gcr.io/e2e-test-images/jessie-dnsutils:1.3
     command:
       - sleep
       - "3600"
diff --git a/content/zh-cn/examples/admin/konnectivity/egress-selector-configuration.yaml b/content/zh-cn/examples/admin/konnectivity/egress-selector-configuration.yaml
new file mode 100644
index 0000000000..e2c9ddbb03
--- /dev/null
+++ b/content/zh-cn/examples/admin/konnectivity/egress-selector-configuration.yaml
@@ -0,0 +1,20 @@
+apiVersion: apiserver.k8s.io/v1beta1
+kind: EgressSelectorConfiguration
+egressSelections:
+# 由于我们要控制集群的出站流量，所以将 “cluster” 用作 name。
+# 其他支持的值有 “etcd” 和 “controlplane”。
+- name: cluster
+  connection:
+    # 这一属性将控制 API 服务器 Konnectivity 服务器之间的协议。
+    # 支持的值为 “GRPC” 和 “HTTPConnect”。
+    # 最终用户不会察觉这两种模式之间的差异。
+    # 你需要将 Konnectivity 服务器设为在相同模式下工作。
+    proxyProtocol: GRPC
+    transport:
+      # 此属性控制 API 服务器使用哪种传输方式与 Konnectivity 服务器通信。
+      # 如果 Konnectivity 服务器与 API 服务器位于同一台机器上，建议使用 UDS。
+      # 你需要将 Konnectivity 服务器配置为侦听同一个 UDS 套接字。
+      # 另一个支持的传输方式是 “tcp”。
+      # 你将需要设置 TLS config 以确保 TCP 传输的安全。
+      uds:
+        udsName: /etc/kubernetes/konnectivity-server/konnectivity-server.socket
diff --git a/content/zh/examples/admin/konnectivity/konnectivity-agent.yaml b/content/zh-cn/examples/admin/konnectivity/konnectivity-agent.yaml
similarity index 85%
rename from content/zh/examples/admin/konnectivity/konnectivity-agent.yaml
rename to content/zh-cn/examples/admin/konnectivity/konnectivity-agent.yaml
index 0eb47e1c58..2d34c2d69c 100644
--- a/content/zh/examples/admin/konnectivity/konnectivity-agent.yaml
+++ b/content/zh-cn/examples/admin/konnectivity/konnectivity-agent.yaml
@@ -1,6 +1,6 @@
 apiVersion: apps/v1
-# Alternatively, you can deploy the agents as Deployments. It is not necessary
-# to have an agent on each node.
+# 作为另一种替代方案，你可以将代理部署为 Deployment。
+# 没有必要在每个节点上都有一个代理。
 kind: DaemonSet
 metadata:
   labels:
@@ -28,8 +28,8 @@ spec:
           args: [
                   "--logtostderr=true",
                   "--ca-cert=/var/run/secrets/kubernetes.io/serviceaccount/ca.crt",
-                  # Since the konnectivity server runs with hostNetwork=true,
-                  # this is the IP address of the master machine.
+                  # 由于 konnectivity 服务器以 hostNetwork=true 运行，
+                  # 所以这是控制面节点的 IP 地址。
                   "--proxy-server-host=35.225.206.7",
                   "--proxy-server-port=8132",
                   "--admin-server-port=8133",
diff --git a/content/zh-cn/examples/admin/konnectivity/konnectivity-rbac.yaml b/content/zh-cn/examples/admin/konnectivity/konnectivity-rbac.yaml
new file mode 100644
index 0000000000..7687f49b77
--- /dev/null
+++ b/content/zh-cn/examples/admin/konnectivity/konnectivity-rbac.yaml
@@ -0,0 +1,24 @@
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: system:konnectivity-server
+  labels:
+    kubernetes.io/cluster-service: "true"
+    addonmanager.kubernetes.io/mode: Reconcile
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: system:auth-delegator
+subjects:
+  - apiGroup: rbac.authorization.k8s.io
+    kind: User
+    name: system:konnectivity-server
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: konnectivity-agent
+  namespace: kube-system
+  labels:
+    kubernetes.io/cluster-service: "true"
+    addonmanager.kubernetes.io/mode: Reconcile
diff --git a/content/zh-cn/examples/admin/konnectivity/konnectivity-server.yaml b/content/zh-cn/examples/admin/konnectivity/konnectivity-server.yaml
new file mode 100644
index 0000000000..b13eda8eba
--- /dev/null
+++ b/content/zh-cn/examples/admin/konnectivity/konnectivity-server.yaml
@@ -0,0 +1,71 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: konnectivity-server
+  namespace: kube-system
+spec:
+  priorityClassName: system-cluster-critical
+  hostNetwork: true
+  containers:
+  - name: konnectivity-server-container
+    image: us.gcr.io/k8s-artifacts-prod/kas-network-proxy/proxy-server:v0.0.16
+    command: ["/proxy-server"]
+    args: [
+            "--logtostderr=true",
+            # 下一行需与 egressSelectorConfiguration 中设置的值一致。
+            "--uds-name=/etc/kubernetes/konnectivity-server/konnectivity-server.socket",
+            # 下面两行假定 Konnectivity 服务器被部署在与 apiserver 相同的机器上，
+            # 并且该 API 服务器的证书和密钥位于指定的位置。
+            "--cluster-cert=/etc/kubernetes/pki/apiserver.crt",
+            "--cluster-key=/etc/kubernetes/pki/apiserver.key",
+            # 下一行需与 egressSelectorConfiguration 中设置的值一致。
+            "--mode=grpc",
+            "--server-port=0",
+            "--agent-port=8132",
+            "--admin-port=8133",
+            "--health-port=8134",
+            "--agent-namespace=kube-system",
+            "--agent-service-account=konnectivity-agent",
+            "--kubeconfig=/etc/kubernetes/konnectivity-server.conf",
+            "--authentication-audience=system:konnectivity-server"
+            ]
+    livenessProbe:
+      httpGet:
+        scheme: HTTP
+        host: 127.0.0.1
+        port: 8134
+        path: /healthz
+      initialDelaySeconds: 30
+      timeoutSeconds: 60
+    ports:
+    - name: agentport
+      containerPort: 8132
+      hostPort: 8132
+    - name: adminport
+      containerPort: 8133
+      hostPort: 8133
+    - name: healthport
+      containerPort: 8134
+      hostPort: 8134
+    volumeMounts:
+    - name: k8s-certs
+      mountPath: /etc/kubernetes/pki
+      readOnly: true
+    - name: kubeconfig
+      mountPath: /etc/kubernetes/konnectivity-server.conf
+      readOnly: true
+    - name: konnectivity-uds
+      mountPath: /etc/kubernetes/konnectivity-server
+      readOnly: false
+  volumes:
+  - name: k8s-certs
+    hostPath:
+      path: /etc/kubernetes/pki
+  - name: kubeconfig
+    hostPath:
+      path: /etc/kubernetes/konnectivity-server.conf
+      type: FileOrCreate
+  - name: konnectivity-uds
+    hostPath:
+      path: /etc/kubernetes/konnectivity-server
+      type: DirectoryOrCreate
diff --git a/content/zh/examples/admin/logging/fluentd-sidecar-config.yaml b/content/zh-cn/examples/admin/logging/fluentd-sidecar-config.yaml
similarity index 100%
rename from content/zh/examples/admin/logging/fluentd-sidecar-config.yaml
rename to content/zh-cn/examples/admin/logging/fluentd-sidecar-config.yaml
diff --git a/content/zh/examples/admin/logging/two-files-counter-pod-agent-sidecar.yaml b/content/zh-cn/examples/admin/logging/two-files-counter-pod-agent-sidecar.yaml
similarity index 96%
rename from content/zh/examples/admin/logging/two-files-counter-pod-agent-sidecar.yaml
rename to content/zh-cn/examples/admin/logging/two-files-counter-pod-agent-sidecar.yaml
index b37b616e6f..ddfb8104cb 100644
--- a/content/zh/examples/admin/logging/two-files-counter-pod-agent-sidecar.yaml
+++ b/content/zh-cn/examples/admin/logging/two-files-counter-pod-agent-sidecar.yaml
@@ -5,7 +5,7 @@ metadata:
 spec:
   containers:
   - name: count
-    image: busybox
+    image: busybox:1.28
     args:
     - /bin/sh
     - -c
diff --git a/content/zh/examples/admin/logging/two-files-counter-pod-streaming-sidecar.yaml b/content/zh-cn/examples/admin/logging/two-files-counter-pod-streaming-sidecar.yaml
similarity index 76%
rename from content/zh/examples/admin/logging/two-files-counter-pod-streaming-sidecar.yaml
rename to content/zh-cn/examples/admin/logging/two-files-counter-pod-streaming-sidecar.yaml
index 87bd198cfd..ac19efe4a2 100644
--- a/content/zh/examples/admin/logging/two-files-counter-pod-streaming-sidecar.yaml
+++ b/content/zh-cn/examples/admin/logging/two-files-counter-pod-streaming-sidecar.yaml
@@ -5,7 +5,7 @@ metadata:
 spec:
   containers:
   - name: count
-    image: busybox
+    image: busybox:1.28
     args:
     - /bin/sh
     - -c
@@ -22,14 +22,14 @@ spec:
     - name: varlog
       mountPath: /var/log
   - name: count-log-1
-    image: busybox
-    args: [/bin/sh, -c, 'tail -n+1 -f /var/log/1.log']
+    image: busybox:1.28
+    args: [/bin/sh, -c, 'tail -n+1 -F /var/log/1.log']
     volumeMounts:
     - name: varlog
       mountPath: /var/log
   - name: count-log-2
-    image: busybox
-    args: [/bin/sh, -c, 'tail -n+1 -f /var/log/2.log']
+    image: busybox:1.28
+    args: [/bin/sh, -c, 'tail -n+1 -F /var/log/2.log']
     volumeMounts:
     - name: varlog
       mountPath: /var/log
diff --git a/content/zh/examples/admin/logging/two-files-counter-pod.yaml b/content/zh-cn/examples/admin/logging/two-files-counter-pod.yaml
similarity index 94%
rename from content/zh/examples/admin/logging/two-files-counter-pod.yaml
rename to content/zh-cn/examples/admin/logging/two-files-counter-pod.yaml
index 6ebeb717a1..31bbed3cf8 100644
--- a/content/zh/examples/admin/logging/two-files-counter-pod.yaml
+++ b/content/zh-cn/examples/admin/logging/two-files-counter-pod.yaml
@@ -5,7 +5,7 @@ metadata:
 spec:
   containers:
   - name: count
-    image: busybox
+    image: busybox:1.28
     args:
     - /bin/sh
     - -c
diff --git a/content/zh/examples/admin/namespace-dev.json b/content/zh-cn/examples/admin/namespace-dev.json
similarity index 100%
rename from content/zh/examples/admin/namespace-dev.json
rename to content/zh-cn/examples/admin/namespace-dev.json
diff --git a/content/zh/examples/admin/namespace-prod.json b/content/zh-cn/examples/admin/namespace-prod.json
similarity index 100%
rename from content/zh/examples/admin/namespace-prod.json
rename to content/zh-cn/examples/admin/namespace-prod.json
diff --git a/content/zh/examples/admin/resource/cpu-constraints-pod-2.yaml b/content/zh-cn/examples/admin/resource/cpu-constraints-pod-2.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/cpu-constraints-pod-2.yaml
rename to content/zh-cn/examples/admin/resource/cpu-constraints-pod-2.yaml
diff --git a/content/zh/examples/admin/resource/cpu-constraints-pod-3.yaml b/content/zh-cn/examples/admin/resource/cpu-constraints-pod-3.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/cpu-constraints-pod-3.yaml
rename to content/zh-cn/examples/admin/resource/cpu-constraints-pod-3.yaml
diff --git a/content/zh/examples/admin/resource/cpu-constraints-pod-4.yaml b/content/zh-cn/examples/admin/resource/cpu-constraints-pod-4.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/cpu-constraints-pod-4.yaml
rename to content/zh-cn/examples/admin/resource/cpu-constraints-pod-4.yaml
diff --git a/content/zh/examples/admin/resource/cpu-constraints-pod.yaml b/content/zh-cn/examples/admin/resource/cpu-constraints-pod.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/cpu-constraints-pod.yaml
rename to content/zh-cn/examples/admin/resource/cpu-constraints-pod.yaml
diff --git a/content/zh/examples/admin/resource/cpu-constraints.yaml b/content/zh-cn/examples/admin/resource/cpu-constraints.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/cpu-constraints.yaml
rename to content/zh-cn/examples/admin/resource/cpu-constraints.yaml
diff --git a/content/zh/examples/admin/resource/cpu-defaults-pod-2.yaml b/content/zh-cn/examples/admin/resource/cpu-defaults-pod-2.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/cpu-defaults-pod-2.yaml
rename to content/zh-cn/examples/admin/resource/cpu-defaults-pod-2.yaml
diff --git a/content/zh/examples/admin/resource/cpu-defaults-pod-3.yaml b/content/zh-cn/examples/admin/resource/cpu-defaults-pod-3.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/cpu-defaults-pod-3.yaml
rename to content/zh-cn/examples/admin/resource/cpu-defaults-pod-3.yaml
diff --git a/content/zh/examples/admin/resource/cpu-defaults-pod.yaml b/content/zh-cn/examples/admin/resource/cpu-defaults-pod.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/cpu-defaults-pod.yaml
rename to content/zh-cn/examples/admin/resource/cpu-defaults-pod.yaml
diff --git a/content/zh/examples/admin/resource/cpu-defaults.yaml b/content/zh-cn/examples/admin/resource/cpu-defaults.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/cpu-defaults.yaml
rename to content/zh-cn/examples/admin/resource/cpu-defaults.yaml
diff --git a/content/zh/examples/admin/resource/limit-mem-cpu-container.yaml b/content/zh-cn/examples/admin/resource/limit-mem-cpu-container.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/limit-mem-cpu-container.yaml
rename to content/zh-cn/examples/admin/resource/limit-mem-cpu-container.yaml
diff --git a/content/zh/examples/admin/resource/limit-mem-cpu-pod.yaml b/content/zh-cn/examples/admin/resource/limit-mem-cpu-pod.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/limit-mem-cpu-pod.yaml
rename to content/zh-cn/examples/admin/resource/limit-mem-cpu-pod.yaml
diff --git a/content/zh/examples/admin/resource/limit-memory-ratio-pod.yaml b/content/zh-cn/examples/admin/resource/limit-memory-ratio-pod.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/limit-memory-ratio-pod.yaml
rename to content/zh-cn/examples/admin/resource/limit-memory-ratio-pod.yaml
diff --git a/content/zh/examples/admin/resource/limit-range-pod-1.yaml b/content/zh-cn/examples/admin/resource/limit-range-pod-1.yaml
similarity index 89%
rename from content/zh/examples/admin/resource/limit-range-pod-1.yaml
rename to content/zh-cn/examples/admin/resource/limit-range-pod-1.yaml
index 0457792af9..b9bd20d06a 100644
--- a/content/zh/examples/admin/resource/limit-range-pod-1.yaml
+++ b/content/zh-cn/examples/admin/resource/limit-range-pod-1.yaml
@@ -5,7 +5,7 @@ metadata:
 spec:
   containers:
   - name: busybox-cnt01
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt01; sleep 10;done"]
     resources:
@@ -16,7 +16,7 @@ spec:
         memory: "200Mi"
         cpu: "500m"
   - name: busybox-cnt02
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt02; sleep 10;done"]
     resources:
@@ -24,7 +24,7 @@ spec:
         memory: "100Mi"
         cpu: "100m"
   - name: busybox-cnt03
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt03; sleep 10;done"]
     resources:
@@ -32,6 +32,6 @@ spec:
         memory: "200Mi"
         cpu: "500m"
   - name: busybox-cnt04
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt04; sleep 10;done"]
diff --git a/content/zh/examples/admin/resource/limit-range-pod-2.yaml b/content/zh-cn/examples/admin/resource/limit-range-pod-2.yaml
similarity index 89%
rename from content/zh/examples/admin/resource/limit-range-pod-2.yaml
rename to content/zh-cn/examples/admin/resource/limit-range-pod-2.yaml
index efac440269..40da19c1ae 100644
--- a/content/zh/examples/admin/resource/limit-range-pod-2.yaml
+++ b/content/zh-cn/examples/admin/resource/limit-range-pod-2.yaml
@@ -5,7 +5,7 @@ metadata:
 spec:
   containers:
   - name: busybox-cnt01
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt01; sleep 10;done"]
     resources:
@@ -16,7 +16,7 @@ spec:
         memory: "200Mi"
         cpu: "500m"
   - name: busybox-cnt02
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt02; sleep 10;done"]
     resources:
@@ -24,7 +24,7 @@ spec:
         memory: "100Mi"
         cpu: "100m"
   - name: busybox-cnt03
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt03; sleep 10;done"]
     resources:
@@ -32,6 +32,6 @@ spec:
         memory: "200Mi"
         cpu: "500m"
   - name: busybox-cnt04
-    image: busybox
+    image: busybox:1.28
     command: ["/bin/sh"]
     args: ["-c", "while true; do echo hello from cnt04; sleep 10;done"]
diff --git a/content/zh/examples/admin/resource/limit-range-pod-3.yaml b/content/zh-cn/examples/admin/resource/limit-range-pod-3.yaml
similarity index 88%
rename from content/zh/examples/admin/resource/limit-range-pod-3.yaml
rename to content/zh-cn/examples/admin/resource/limit-range-pod-3.yaml
index 8afdb6379c..503200a966 100644
--- a/content/zh/examples/admin/resource/limit-range-pod-3.yaml
+++ b/content/zh-cn/examples/admin/resource/limit-range-pod-3.yaml
@@ -5,7 +5,7 @@ metadata:
 spec:
   containers:
   - name: busybox-cnt01
-    image: busybox
+    image: busybox:1.28
     resources:
       limits:
         memory: "300Mi"
diff --git a/content/zh/examples/admin/resource/memory-available.sh b/content/zh-cn/examples/admin/resource/memory-available.sh
similarity index 100%
rename from content/zh/examples/admin/resource/memory-available.sh
rename to content/zh-cn/examples/admin/resource/memory-available.sh
diff --git a/content/zh/examples/admin/resource/memory-constraints-pod-2.yaml b/content/zh-cn/examples/admin/resource/memory-constraints-pod-2.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/memory-constraints-pod-2.yaml
rename to content/zh-cn/examples/admin/resource/memory-constraints-pod-2.yaml
diff --git a/content/zh/examples/admin/resource/memory-constraints-pod-3.yaml b/content/zh-cn/examples/admin/resource/memory-constraints-pod-3.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/memory-constraints-pod-3.yaml
rename to content/zh-cn/examples/admin/resource/memory-constraints-pod-3.yaml
diff --git a/content/zh/examples/admin/resource/memory-constraints-pod-4.yaml b/content/zh-cn/examples/admin/resource/memory-constraints-pod-4.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/memory-constraints-pod-4.yaml
rename to content/zh-cn/examples/admin/resource/memory-constraints-pod-4.yaml
diff --git a/content/zh/examples/admin/resource/memory-constraints-pod.yaml b/content/zh-cn/examples/admin/resource/memory-constraints-pod.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/memory-constraints-pod.yaml
rename to content/zh-cn/examples/admin/resource/memory-constraints-pod.yaml
diff --git a/content/zh/examples/admin/resource/memory-constraints.yaml b/content/zh-cn/examples/admin/resource/memory-constraints.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/memory-constraints.yaml
rename to content/zh-cn/examples/admin/resource/memory-constraints.yaml
diff --git a/content/zh/examples/admin/resource/memory-defaults-pod-2.yaml b/content/zh-cn/examples/admin/resource/memory-defaults-pod-2.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/memory-defaults-pod-2.yaml
rename to content/zh-cn/examples/admin/resource/memory-defaults-pod-2.yaml
diff --git a/content/zh/examples/admin/resource/memory-defaults-pod-3.yaml b/content/zh-cn/examples/admin/resource/memory-defaults-pod-3.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/memory-defaults-pod-3.yaml
rename to content/zh-cn/examples/admin/resource/memory-defaults-pod-3.yaml
diff --git a/content/zh/examples/admin/resource/memory-defaults-pod.yaml b/content/zh-cn/examples/admin/resource/memory-defaults-pod.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/memory-defaults-pod.yaml
rename to content/zh-cn/examples/admin/resource/memory-defaults-pod.yaml
diff --git a/content/zh/examples/admin/resource/memory-defaults.yaml b/content/zh-cn/examples/admin/resource/memory-defaults.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/memory-defaults.yaml
rename to content/zh-cn/examples/admin/resource/memory-defaults.yaml
diff --git a/content/zh/examples/admin/resource/pvc-limit-greater.yaml b/content/zh-cn/examples/admin/resource/pvc-limit-greater.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/pvc-limit-greater.yaml
rename to content/zh-cn/examples/admin/resource/pvc-limit-greater.yaml
diff --git a/content/zh/examples/admin/resource/pvc-limit-lower.yaml b/content/zh-cn/examples/admin/resource/pvc-limit-lower.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/pvc-limit-lower.yaml
rename to content/zh-cn/examples/admin/resource/pvc-limit-lower.yaml
diff --git a/content/zh/examples/admin/resource/quota-mem-cpu-pod-2.yaml b/content/zh-cn/examples/admin/resource/quota-mem-cpu-pod-2.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/quota-mem-cpu-pod-2.yaml
rename to content/zh-cn/examples/admin/resource/quota-mem-cpu-pod-2.yaml
diff --git a/content/zh/examples/admin/resource/quota-mem-cpu-pod.yaml b/content/zh-cn/examples/admin/resource/quota-mem-cpu-pod.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/quota-mem-cpu-pod.yaml
rename to content/zh-cn/examples/admin/resource/quota-mem-cpu-pod.yaml
diff --git a/content/zh/examples/admin/resource/quota-mem-cpu.yaml b/content/zh-cn/examples/admin/resource/quota-mem-cpu.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/quota-mem-cpu.yaml
rename to content/zh-cn/examples/admin/resource/quota-mem-cpu.yaml
diff --git a/content/zh/examples/admin/resource/quota-objects-pvc-2.yaml b/content/zh-cn/examples/admin/resource/quota-objects-pvc-2.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/quota-objects-pvc-2.yaml
rename to content/zh-cn/examples/admin/resource/quota-objects-pvc-2.yaml
diff --git a/content/zh/examples/admin/resource/quota-objects-pvc.yaml b/content/zh-cn/examples/admin/resource/quota-objects-pvc.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/quota-objects-pvc.yaml
rename to content/zh-cn/examples/admin/resource/quota-objects-pvc.yaml
diff --git a/content/zh/examples/admin/resource/quota-objects.yaml b/content/zh-cn/examples/admin/resource/quota-objects.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/quota-objects.yaml
rename to content/zh-cn/examples/admin/resource/quota-objects.yaml
diff --git a/content/zh/examples/admin/resource/quota-pod-deployment.yaml b/content/zh-cn/examples/admin/resource/quota-pod-deployment.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/quota-pod-deployment.yaml
rename to content/zh-cn/examples/admin/resource/quota-pod-deployment.yaml
diff --git a/content/zh/examples/admin/resource/quota-pod.yaml b/content/zh-cn/examples/admin/resource/quota-pod.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/quota-pod.yaml
rename to content/zh-cn/examples/admin/resource/quota-pod.yaml
diff --git a/content/zh/examples/admin/resource/storagelimits.yaml b/content/zh-cn/examples/admin/resource/storagelimits.yaml
similarity index 100%
rename from content/zh/examples/admin/resource/storagelimits.yaml
rename to content/zh-cn/examples/admin/resource/storagelimits.yaml
diff --git a/content/zh/examples/admin/sched/clusterrole.yaml b/content/zh-cn/examples/admin/sched/clusterrole.yaml
similarity index 100%
rename from content/zh/examples/admin/sched/clusterrole.yaml
rename to content/zh-cn/examples/admin/sched/clusterrole.yaml
diff --git a/content/zh/examples/admin/sched/my-scheduler.yaml b/content/zh-cn/examples/admin/sched/my-scheduler.yaml
similarity index 69%
rename from content/zh/examples/admin/sched/my-scheduler.yaml
rename to content/zh-cn/examples/admin/sched/my-scheduler.yaml
index 800595862b..c324a7507f 100644
--- a/content/zh/examples/admin/sched/my-scheduler.yaml
+++ b/content/zh-cn/examples/admin/sched/my-scheduler.yaml
@@ -17,6 +17,20 @@ roleRef:
   name: system:kube-scheduler
   apiGroup: rbac.authorization.k8s.io
 ---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: my-scheduler-config
+  namespace: kube-system
+data:
+  my-scheduler-config.yaml: |
+    apiVersion: kubescheduler.config.k8s.io/v1beta2
+    kind: KubeSchedulerConfiguration
+    profiles:
+      - schedulerName: my-scheduler
+    leaderElection:
+      leaderElect: false
+---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
@@ -55,26 +69,31 @@ spec:
       containers:
       - command:
         - /usr/local/bin/kube-scheduler
-        - --address=0.0.0.0
-        - --leader-elect=false
-        - --scheduler-name=my-scheduler
+        - --config=/etc/kubernetes/my-scheduler/my-scheduler-config.yaml
         image: gcr.io/my-gcp-project/my-kube-scheduler:1.0
         livenessProbe:
           httpGet:
             path: /healthz
-            port: 10251
+            port: 10259
+            scheme: HTTPS
           initialDelaySeconds: 15
         name: kube-second-scheduler
         readinessProbe:
           httpGet:
             path: /healthz
-            port: 10251
+            port: 10259
+            scheme: HTTPS
         resources:
           requests:
             cpu: '0.1'
         securityContext:
           privileged: false
-        volumeMounts: []
+        volumeMounts:
+          - name: config-volume
+            mountPath: /etc/kubernetes/my-scheduler
       hostNetwork: false
       hostPID: false
-      volumes: []
+      volumes:
+        - name: config-volume
+          configMap:
+            name: my-scheduler-config
diff --git a/content/zh/examples/admin/sched/pod1.yaml b/content/zh-cn/examples/admin/sched/pod1.yaml
similarity index 100%
rename from content/zh/examples/admin/sched/pod1.yaml
rename to content/zh-cn/examples/admin/sched/pod1.yaml
diff --git a/content/zh/examples/admin/sched/pod2.yaml b/content/zh-cn/examples/admin/sched/pod2.yaml
similarity index 100%
rename from content/zh/examples/admin/sched/pod2.yaml
rename to content/zh-cn/examples/admin/sched/pod2.yaml
diff --git a/content/zh/examples/admin/sched/pod3.yaml b/content/zh-cn/examples/admin/sched/pod3.yaml
similarity index 100%
rename from content/zh/examples/admin/sched/pod3.yaml
rename to content/zh-cn/examples/admin/sched/pod3.yaml
diff --git a/content/zh/examples/admin/snowflake-deployment.yaml b/content/zh-cn/examples/admin/snowflake-deployment.yaml
similarity index 100%
rename from content/zh/examples/admin/snowflake-deployment.yaml
rename to content/zh-cn/examples/admin/snowflake-deployment.yaml
diff --git a/content/zh/examples/application/cassandra/cassandra-service.yaml b/content/zh-cn/examples/application/cassandra/cassandra-service.yaml
similarity index 100%
rename from content/zh/examples/application/cassandra/cassandra-service.yaml
rename to content/zh-cn/examples/application/cassandra/cassandra-service.yaml
diff --git a/content/zh/examples/application/cassandra/cassandra-statefulset.yaml b/content/zh-cn/examples/application/cassandra/cassandra-statefulset.yaml
similarity index 85%
rename from content/zh/examples/application/cassandra/cassandra-statefulset.yaml
rename to content/zh-cn/examples/application/cassandra/cassandra-statefulset.yaml
index a7bdbedc9c..7a36c6f550 100644
--- a/content/zh/examples/application/cassandra/cassandra-statefulset.yaml
+++ b/content/zh-cn/examples/application/cassandra/cassandra-statefulset.yaml
@@ -72,15 +72,13 @@ spec:
             - /ready-probe.sh
           initialDelaySeconds: 15
           timeoutSeconds: 5
-        # These volume mounts are persistent. They are like inline claims,
-        # but not exactly because the names need to match exactly one of
-        # the stateful pod volumes.
+        # 这些卷挂载是持久的。它们类似内联申领，但并不完全相同，
+        # 因为这些卷挂载的名称需要与 StatefulSet 中某 Pod 卷完全匹配。
         volumeMounts:
         - name: cassandra-data
           mountPath: /cassandra_data
-  # These are converted to volume claims by the controller
-  # and mounted at the paths mentioned above.
-  # do not use these in production until ssd GCEPersistentDisk or other ssd pd
+  # 这些将被控制器转换为卷申领，并挂载在上述路径。
+  # 请勿将此设置用于生产环境，除非使用了 GCEPersistentDisk 或其他 SSD 持久盘。
   volumeClaimTemplates:
   - metadata:
       name: cassandra-data
diff --git a/content/zh/examples/application/deployment-patch.yaml b/content/zh-cn/examples/application/deployment-patch.yaml
similarity index 100%
rename from content/zh/examples/application/deployment-patch.yaml
rename to content/zh-cn/examples/application/deployment-patch.yaml
diff --git a/content/zh/examples/application/deployment-retainkeys.yaml b/content/zh-cn/examples/application/deployment-retainkeys.yaml
similarity index 100%
rename from content/zh/examples/application/deployment-retainkeys.yaml
rename to content/zh-cn/examples/application/deployment-retainkeys.yaml
diff --git a/content/zh-cn/examples/application/deployment-scale.yaml b/content/zh-cn/examples/application/deployment-scale.yaml
new file mode 100644
index 0000000000..f6c43ab7f4
--- /dev/null
+++ b/content/zh-cn/examples/application/deployment-scale.yaml
@@ -0,0 +1,19 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nginx-deployment
+spec:
+  selector:
+    matchLabels:
+      app: nginx
+  replicas: 4 # 将副本数从 2 更新为 4
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      - name: nginx
+        image: nginx:1.14.2
+        ports:
+        - containerPort: 80
diff --git a/content/zh-cn/examples/application/deployment-update.yaml b/content/zh-cn/examples/application/deployment-update.yaml
new file mode 100644
index 0000000000..15638fa29c
--- /dev/null
+++ b/content/zh-cn/examples/application/deployment-update.yaml
@@ -0,0 +1,19 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nginx-deployment
+spec:
+  selector:
+    matchLabels:
+      app: nginx
+  replicas: 2
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      - name: nginx
+        image: nginx:1.16.1 # 将 nginx 版本从 1.14.2 更新为 1.16.1
+        ports:
+        - containerPort: 80
diff --git a/content/zh/examples/application/deployment.yaml b/content/zh-cn/examples/application/deployment.yaml
similarity index 80%
rename from content/zh/examples/application/deployment.yaml
rename to content/zh-cn/examples/application/deployment.yaml
index dbed8bc72b..087d7010ca 100644
--- a/content/zh/examples/application/deployment.yaml
+++ b/content/zh-cn/examples/application/deployment.yaml
@@ -6,7 +6,7 @@ spec:
   selector:
     matchLabels:
       app: nginx
-  replicas: 2 # tells deployment to run 2 pods matching the template
+  replicas: 2 # 告知 Deployment 运行 2 个与该模板匹配的 Pod
   template:
     metadata:
       labels:
diff --git a/content/zh/examples/application/guestbook/frontend-deployment.yaml b/content/zh-cn/examples/application/guestbook/frontend-deployment.yaml
similarity index 83%
rename from content/zh/examples/application/guestbook/frontend-deployment.yaml
rename to content/zh-cn/examples/application/guestbook/frontend-deployment.yaml
index f97f20dab6..95f066586d 100644
--- a/content/zh/examples/application/guestbook/frontend-deployment.yaml
+++ b/content/zh-cn/examples/application/guestbook/frontend-deployment.yaml
@@ -1,4 +1,4 @@
-# SOURCE: https://cloud.google.com/kubernetes-engine/docs/tutorials/guestbook
+# 来源：https://cloud.google.com/kubernetes-engine/docs/tutorials/guestbook
 apiVersion: apps/v1
 kind: Deployment
 metadata:
diff --git a/content/zh-cn/examples/application/guestbook/frontend-service.yaml b/content/zh-cn/examples/application/guestbook/frontend-service.yaml
new file mode 100644
index 0000000000..6688f3b0c0
--- /dev/null
+++ b/content/zh-cn/examples/application/guestbook/frontend-service.yaml
@@ -0,0 +1,18 @@
+# 来源：https://cloud.google.com/kubernetes-engine/docs/tutorials/guestbook
+apiVersion: v1
+kind: Service
+metadata:
+  name: frontend
+  labels:
+    app: guestbook
+    tier: frontend
+spec:
+  # 如果你的集群支持，请取消注释以下内容以自动为前端服务创建一个外部负载均衡 IP。
+  # type: LoadBalancer
+  #type: LoadBalancer
+  ports:
+    # 此服务应使用的端口
+  - port: 80
+  selector:
+    app: guestbook
+    tier: frontend
\ No newline at end of file
diff --git a/content/zh/examples/application/guestbook/redis-follower-deployment.yaml b/content/zh-cn/examples/application/guestbook/redis-follower-deployment.yaml
similarity index 82%
rename from content/zh/examples/application/guestbook/redis-follower-deployment.yaml
rename to content/zh-cn/examples/application/guestbook/redis-follower-deployment.yaml
index c418cf7364..2d96e049a1 100644
--- a/content/zh/examples/application/guestbook/redis-follower-deployment.yaml
+++ b/content/zh-cn/examples/application/guestbook/redis-follower-deployment.yaml
@@ -1,4 +1,4 @@
-# SOURCE: https://cloud.google.com/kubernetes-engine/docs/tutorials/guestbook
+# 来源：https://cloud.google.com/kubernetes-engine/docs/tutorials/guestbook
 apiVersion: apps/v1
 kind: Deployment
 metadata:
diff --git a/content/zh/examples/application/guestbook/redis-follower-service.yaml b/content/zh-cn/examples/application/guestbook/redis-follower-service.yaml
similarity index 58%
rename from content/zh/examples/application/guestbook/redis-follower-service.yaml
rename to content/zh-cn/examples/application/guestbook/redis-follower-service.yaml
index 53283d35c4..f711f6b85a 100644
--- a/content/zh/examples/application/guestbook/redis-follower-service.yaml
+++ b/content/zh-cn/examples/application/guestbook/redis-follower-service.yaml
@@ -1,4 +1,4 @@
-# SOURCE: https://cloud.google.com/kubernetes-engine/docs/tutorials/guestbook
+# 来源：https://cloud.google.com/kubernetes-engine/docs/tutorials/guestbook
 apiVersion: v1
 kind: Service
 metadata:
@@ -9,7 +9,7 @@ metadata:
     tier: backend
 spec:
   ports:
-    # the port that this service should serve on
+    # 此服务应使用的端口
   - port: 6379
   selector:
     app: redis
diff --git a/content/zh/examples/application/guestbook/redis-leader-deployment.yaml b/content/zh-cn/examples/application/guestbook/redis-leader-deployment.yaml
similarity index 81%
rename from content/zh/examples/application/guestbook/redis-leader-deployment.yaml
rename to content/zh-cn/examples/application/guestbook/redis-leader-deployment.yaml
index 9c7547291c..3ddf6185ca 100644
--- a/content/zh/examples/application/guestbook/redis-leader-deployment.yaml
+++ b/content/zh-cn/examples/application/guestbook/redis-leader-deployment.yaml
@@ -1,4 +1,4 @@
-# SOURCE: https://cloud.google.com/kubernetes-engine/docs/tutorials/guestbook
+# 来源：https://cloud.google.com/kubernetes-engine/docs/tutorials/guestbook
 apiVersion: apps/v1
 kind: Deployment
 metadata:
diff --git a/content/zh/examples/application/guestbook/redis-leader-service.yaml b/content/zh-cn/examples/application/guestbook/redis-leader-service.yaml
similarity index 69%
rename from content/zh/examples/application/guestbook/redis-leader-service.yaml
rename to content/zh-cn/examples/application/guestbook/redis-leader-service.yaml
index e04cc183d0..386f79e4f3 100644
--- a/content/zh/examples/application/guestbook/redis-leader-service.yaml
+++ b/content/zh-cn/examples/application/guestbook/redis-leader-service.yaml
@@ -1,4 +1,4 @@
-# SOURCE: https://cloud.google.com/kubernetes-engine/docs/tutorials/guestbook
+# 来源：https://cloud.google.com/kubernetes-engine/docs/tutorials/guestbook
 apiVersion: v1
 kind: Service
 metadata:
diff --git a/content/zh/examples/application/hpa/php-apache.yaml b/content/zh-cn/examples/application/hpa/php-apache.yaml
similarity index 100%
rename from content/zh/examples/application/hpa/php-apache.yaml
rename to content/zh-cn/examples/application/hpa/php-apache.yaml
diff --git a/content/zh/examples/application/job/cronjob.yaml b/content/zh-cn/examples/application/job/cronjob.yaml
similarity index 86%
rename from content/zh/examples/application/job/cronjob.yaml
rename to content/zh-cn/examples/application/job/cronjob.yaml
index da905a9048..78d0e2d314 100644
--- a/content/zh/examples/application/job/cronjob.yaml
+++ b/content/zh-cn/examples/application/job/cronjob.yaml
@@ -3,14 +3,14 @@ kind: CronJob
 metadata:
   name: hello
 spec:
-  schedule: "*/1 * * * *"
+  schedule: "* * * * *"
   jobTemplate:
     spec:
       template:
         spec:
           containers:
           - name: hello
-            image: busybox
+            image: busybox:1.28
             imagePullPolicy: IfNotPresent
             command:
             - /bin/sh
diff --git a/content/zh/examples/application/job/indexed-job-vol.yaml b/content/zh-cn/examples/application/job/indexed-job-vol.yaml
similarity index 100%
rename from content/zh/examples/application/job/indexed-job-vol.yaml
rename to content/zh-cn/examples/application/job/indexed-job-vol.yaml
diff --git a/content/zh/examples/application/job/indexed-job.yaml b/content/zh-cn/examples/application/job/indexed-job.yaml
similarity index 100%
rename from content/zh/examples/application/job/indexed-job.yaml
rename to content/zh-cn/examples/application/job/indexed-job.yaml
diff --git a/content/zh/examples/application/job/job-tmpl.yaml b/content/zh-cn/examples/application/job/job-tmpl.yaml
similarity index 92%
rename from content/zh/examples/application/job/job-tmpl.yaml
rename to content/zh-cn/examples/application/job/job-tmpl.yaml
index 790025b38b..d7dbbafd62 100644
--- a/content/zh/examples/application/job/job-tmpl.yaml
+++ b/content/zh-cn/examples/application/job/job-tmpl.yaml
@@ -13,6 +13,6 @@ spec:
     spec:
       containers:
       - name: c
-        image: busybox
+        image: busybox:1.28
         command: ["sh", "-c", "echo Processing item $ITEM && sleep 5"]
       restartPolicy: Never
diff --git a/content/zh/examples/application/job/rabbitmq/Dockerfile b/content/zh-cn/examples/application/job/rabbitmq/Dockerfile
similarity index 100%
rename from content/zh/examples/application/job/rabbitmq/Dockerfile
rename to content/zh-cn/examples/application/job/rabbitmq/Dockerfile
diff --git a/content/zh/examples/application/job/rabbitmq/job.yaml b/content/zh-cn/examples/application/job/rabbitmq/job.yaml
similarity index 100%
rename from content/zh/examples/application/job/rabbitmq/job.yaml
rename to content/zh-cn/examples/application/job/rabbitmq/job.yaml
diff --git a/content/zh/examples/application/job/rabbitmq/worker.py b/content/zh-cn/examples/application/job/rabbitmq/worker.py
similarity index 100%
rename from content/zh/examples/application/job/rabbitmq/worker.py
rename to content/zh-cn/examples/application/job/rabbitmq/worker.py
diff --git a/content/zh/examples/application/job/redis/Dockerfile b/content/zh-cn/examples/application/job/redis/Dockerfile
similarity index 100%
rename from content/zh/examples/application/job/redis/Dockerfile
rename to content/zh-cn/examples/application/job/redis/Dockerfile
diff --git a/content/zh/examples/application/job/redis/job.yaml b/content/zh-cn/examples/application/job/redis/job.yaml
similarity index 100%
rename from content/zh/examples/application/job/redis/job.yaml
rename to content/zh-cn/examples/application/job/redis/job.yaml
diff --git a/content/zh/examples/application/job/redis/redis-pod.yaml b/content/zh-cn/examples/application/job/redis/redis-pod.yaml
similarity index 100%
rename from content/zh/examples/application/job/redis/redis-pod.yaml
rename to content/zh-cn/examples/application/job/redis/redis-pod.yaml
diff --git a/content/zh/examples/application/job/redis/redis-service.yaml b/content/zh-cn/examples/application/job/redis/redis-service.yaml
similarity index 100%
rename from content/zh/examples/application/job/redis/redis-service.yaml
rename to content/zh-cn/examples/application/job/redis/redis-service.yaml
diff --git a/content/zh/examples/application/job/redis/rediswq.py b/content/zh-cn/examples/application/job/redis/rediswq.py
similarity index 100%
rename from content/zh/examples/application/job/redis/rediswq.py
rename to content/zh-cn/examples/application/job/redis/rediswq.py
diff --git a/content/zh/examples/application/job/redis/worker.py b/content/zh-cn/examples/application/job/redis/worker.py
similarity index 79%
rename from content/zh/examples/application/job/redis/worker.py
rename to content/zh-cn/examples/application/job/redis/worker.py
index 0e24f71f95..188d4db329 100644
--- a/content/zh/examples/application/job/redis/worker.py
+++ b/content/zh-cn/examples/application/job/redis/worker.py
@@ -4,7 +4,7 @@ import time
 import rediswq
 
 host="redis"
-# Uncomment next two lines if you do not have Kube-DNS working.
+# 如果你未在运行 Kube-DNS，请取消下面两行的注释
 # import os
 # host = os.getenv("REDIS_SERVICE_HOST")
 
@@ -16,7 +16,7 @@ while not q.empty():
   if item is not None:
     itemstr = item.decode("utf-8")
     print("Working on " + itemstr)
-    time.sleep(10) # Put your actual work here instead of sleep.
+    time.sleep(10) # 将你的实际工作放在此处来取代 sleep
     q.complete(item)
   else:
     print("Waiting for work")
diff --git a/content/zh-cn/examples/application/mongodb/mongo-deployment.yaml b/content/zh-cn/examples/application/mongodb/mongo-deployment.yaml
new file mode 100644
index 0000000000..04908ce25b
--- /dev/null
+++ b/content/zh-cn/examples/application/mongodb/mongo-deployment.yaml
@@ -0,0 +1,31 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: mongo
+  labels:
+    app.kubernetes.io/name: mongo
+    app.kubernetes.io/component: backend
+spec:
+  selector:
+    matchLabels:
+      app.kubernetes.io/name: mongo
+      app.kubernetes.io/component: backend
+  replicas: 1
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/name: mongo
+        app.kubernetes.io/component: backend
+    spec:
+      containers:
+      - name: mongo
+        image: mongo:4.2
+        args:
+          - --bind_ip
+          - 0.0.0.0
+        resources:
+          requests:
+            cpu: 100m
+            memory: 100Mi
+        ports:
+        - containerPort: 27017
diff --git a/content/zh-cn/examples/application/mongodb/mongo-service.yaml b/content/zh-cn/examples/application/mongodb/mongo-service.yaml
new file mode 100644
index 0000000000..b9cef607bc
--- /dev/null
+++ b/content/zh-cn/examples/application/mongodb/mongo-service.yaml
@@ -0,0 +1,14 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: mongo
+  labels:
+    app.kubernetes.io/name: mongo
+    app.kubernetes.io/component: backend
+spec:
+  ports:
+  - port: 27017
+    targetPort: 27017
+  selector:
+    app.kubernetes.io/name: mongo
+    app.kubernetes.io/component: backend
diff --git a/content/zh-cn/examples/application/mysql/mysql-configmap.yaml b/content/zh-cn/examples/application/mysql/mysql-configmap.yaml
new file mode 100644
index 0000000000..656019a244
--- /dev/null
+++ b/content/zh-cn/examples/application/mysql/mysql-configmap.yaml
@@ -0,0 +1,17 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: mysql
+  labels:
+    app: mysql
+    app.kubernetes.io/name: mysql
+data:
+  primary.cnf: |
+    # 仅在主服务器上应用此配置
+    [mysqld]
+    log-bin
+  replica.cnf: |
+    # 仅在副本服务器上应用此配置
+    [mysqld]
+    super-read-only
+
diff --git a/content/zh/examples/application/mysql/mysql-deployment.yaml b/content/zh-cn/examples/application/mysql/mysql-deployment.yaml
similarity index 95%
rename from content/zh/examples/application/mysql/mysql-deployment.yaml
rename to content/zh-cn/examples/application/mysql/mysql-deployment.yaml
index 419fbe03d3..8ed14907af 100644
--- a/content/zh/examples/application/mysql/mysql-deployment.yaml
+++ b/content/zh-cn/examples/application/mysql/mysql-deployment.yaml
@@ -28,7 +28,7 @@ spec:
       - image: mysql:5.6
         name: mysql
         env:
-          # Use secret in real usage
+          # 在实际中使用 secret
         - name: MYSQL_ROOT_PASSWORD
           value: password
         ports:
diff --git a/content/zh/examples/application/mysql/mysql-pv.yaml b/content/zh-cn/examples/application/mysql/mysql-pv.yaml
similarity index 100%
rename from content/zh/examples/application/mysql/mysql-pv.yaml
rename to content/zh-cn/examples/application/mysql/mysql-pv.yaml
diff --git a/content/zh/examples/application/mysql/mysql-services.yaml b/content/zh-cn/examples/application/mysql/mysql-services.yaml
similarity index 51%
rename from content/zh/examples/application/mysql/mysql-services.yaml
rename to content/zh-cn/examples/application/mysql/mysql-services.yaml
index f538992566..6c5ee4c04e 100644
--- a/content/zh/examples/application/mysql/mysql-services.yaml
+++ b/content/zh-cn/examples/application/mysql/mysql-services.yaml
@@ -1,10 +1,11 @@
-# Headless service for stable DNS entries of StatefulSet members.
+# 为 StatefulSet 成员提供稳定的 DNS 表项的无头服务（Headless Service）
 apiVersion: v1
 kind: Service
 metadata:
   name: mysql
   labels:
     app: mysql
+    app.kubernetes.io/name: mysql
 spec:
   ports:
   - name: mysql
@@ -13,18 +14,19 @@ spec:
   selector:
     app: mysql
 ---
-# Client service for connecting to any MySQL instance for reads.
-# For writes, you must instead connect to the master: mysql-0.mysql.
+# 用于连接到任一 MySQL 实例执行读操作的客户端服务
+# 对于写操作，你必须连接到主服务器：mysql-0.mysql
 apiVersion: v1
 kind: Service
 metadata:
   name: mysql-read
   labels:
     app: mysql
+    app.kubernetes.io/name: mysql
+    readonly: "true"
 spec:
   ports:
   - name: mysql
     port: 3306
   selector:
     app: mysql
-
diff --git a/content/zh/examples/application/mysql/mysql-statefulset.yaml b/content/zh-cn/examples/application/mysql/mysql-statefulset.yaml
similarity index 77%
rename from content/zh/examples/application/mysql/mysql-statefulset.yaml
rename to content/zh-cn/examples/application/mysql/mysql-statefulset.yaml
index b69af02c59..7dc39d7965 100644
--- a/content/zh/examples/application/mysql/mysql-statefulset.yaml
+++ b/content/zh-cn/examples/application/mysql/mysql-statefulset.yaml
@@ -6,12 +6,14 @@ spec:
   selector:
     matchLabels:
       app: mysql
+      app.kubernetes.io/name: mysql
   serviceName: mysql
   replicas: 3
   template:
     metadata:
       labels:
         app: mysql
+        app.kubernetes.io/name: mysql
     spec:
       initContainers:
       - name: init-mysql
@@ -21,17 +23,17 @@ spec:
         - "-c"
         - |
           set -ex
-          # Generate mysql server-id from pod ordinal index.
+          # 基于 Pod 序号生成 MySQL 服务器的 ID。
           [[ `hostname` =~ -([0-9]+)$ ]] || exit 1
           ordinal=${BASH_REMATCH[1]}
           echo [mysqld] > /mnt/conf.d/server-id.cnf
-          # Add an offset to avoid reserved server-id=0 value.
+          # 添加偏移量以避免使用 server-id=0 这一保留值。
           echo server-id=$((100 + $ordinal)) >> /mnt/conf.d/server-id.cnf
-          # Copy appropriate conf.d files from config-map to emptyDir.
+          # 将合适的 conf.d 文件从 config-map 复制到 emptyDir。
           if [[ $ordinal -eq 0 ]]; then
-            cp /mnt/config-map/master.cnf /mnt/conf.d/
+            cp /mnt/config-map/primary.cnf /mnt/conf.d/
           else
-            cp /mnt/config-map/slave.cnf /mnt/conf.d/
+            cp /mnt/config-map/replica.cnf /mnt/conf.d/
           fi
         volumeMounts:
         - name: conf
@@ -45,15 +47,15 @@ spec:
         - "-c"
         - |
           set -ex
-          # Skip the clone if data already exists.
+          # 如果已有数据，则跳过克隆。
           [[ -d /var/lib/mysql/mysql ]] && exit 0
-          # Skip the clone on master (ordinal index 0).
+          # 跳过主实例（序号索引 0）的克隆。
           [[ `hostname` =~ -([0-9]+)$ ]] || exit 1
           ordinal=${BASH_REMATCH[1]}
           [[ $ordinal -eq 0 ]] && exit 0
-          # Clone data from previous peer.
+          # 从原来的对等节点克隆数据。
           ncat --recv-only mysql-$(($ordinal-1)).mysql 3307 | xbstream -x -C /var/lib/mysql
-          # Prepare the backup.
+          # 准备备份。
           xtrabackup --prepare --target-dir=/var/lib/mysql
         volumeMounts:
         - name: data
@@ -88,7 +90,7 @@ spec:
           timeoutSeconds: 5
         readinessProbe:
           exec:
-            # Check we can execute queries over TCP (skip-networking is off).
+            # 检查我们是否可以通过 TCP 执行查询（skip-networking 是关闭的）。
             command: ["mysql", "-h", "127.0.0.1", "-e", "SELECT 1"]
           initialDelaySeconds: 5
           periodSeconds: 2
@@ -105,22 +107,22 @@ spec:
           set -ex
           cd /var/lib/mysql
 
-          # Determine binlog position of cloned data, if any.
+          # 确定克隆数据的 binlog 位置（如果有的话）。
           if [[ -f xtrabackup_slave_info && "x$(<xtrabackup_slave_info)" != "x" ]]; then
-            # XtraBackup already generated a partial "CHANGE MASTER TO" query
-            # because we're cloning from an existing slave. (Need to remove the tailing semicolon!)
+            # XtraBackup 已经生成了部分的 “CHANGE MASTER TO” 查询
+            # 因为我们从一个现有副本进行克隆。(需要删除末尾的分号!)
             cat xtrabackup_slave_info | sed -E 's/;$//g' > change_master_to.sql.in
-            # Ignore xtrabackup_binlog_info in this case (it's useless).
+            # 在这里要忽略 xtrabackup_binlog_info （它是没用的）。
             rm -f xtrabackup_slave_info xtrabackup_binlog_info
           elif [[ -f xtrabackup_binlog_info ]]; then
-            # We're cloning directly from master. Parse binlog position.
+            # 我们直接从主实例进行克隆。解析 binlog 位置。
             [[ `cat xtrabackup_binlog_info` =~ ^(.*?)[[:space:]]+(.*?)$ ]] || exit 1
             rm -f xtrabackup_binlog_info xtrabackup_slave_info
             echo "CHANGE MASTER TO MASTER_LOG_FILE='${BASH_REMATCH[1]}',\
                   MASTER_LOG_POS=${BASH_REMATCH[2]}" > change_master_to.sql.in
           fi
 
-          # Check if we need to complete a clone by starting replication.
+          # 检查我们是否需要通过启动复制来完成克隆。
           if [[ -f change_master_to.sql.in ]]; then
             echo "Waiting for mysqld to be ready (accepting connections)"
             until mysql -h 127.0.0.1 -e "SELECT 1"; do sleep 1; done
@@ -133,11 +135,11 @@ spec:
                           MASTER_PASSWORD='', \
                           MASTER_CONNECT_RETRY=10; \
                         START SLAVE;" || exit 1
-            # In case of container restart, attempt this at-most-once.
+            # 如果容器重新启动，最多尝试一次。
             mv change_master_to.sql.in change_master_to.sql.orig
           fi
 
-          # Start a server to send backups when requested by peers.
+          # 当对等点请求时，启动服务器发送备份。
           exec ncat --listen --keep-open --send-only --max-conns=1 3307 -c \
             "xtrabackup --backup --slave-info --stream=xbstream --host=127.0.0.1 --user=root"
         volumeMounts:
diff --git a/content/zh/examples/application/nginx-app.yaml b/content/zh-cn/examples/application/nginx-app.yaml
similarity index 100%
rename from content/zh/examples/application/nginx-app.yaml
rename to content/zh-cn/examples/application/nginx-app.yaml
diff --git a/content/zh-cn/examples/application/nginx-with-request.yaml b/content/zh-cn/examples/application/nginx-with-request.yaml
new file mode 100644
index 0000000000..dd9d002a60
--- /dev/null
+++ b/content/zh-cn/examples/application/nginx-with-request.yaml
@@ -0,0 +1,23 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nginx-deployment
+spec:
+  selector:
+    matchLabels:
+      app: nginx
+  replicas: 2
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      - name: nginx
+        image: nginx
+        resources:
+          limits:
+            memory: "128Mi"
+            cpu: "500m"
+        ports:
+        - containerPort: 80
diff --git a/content/zh/examples/application/nginx/nginx-deployment.yaml b/content/zh-cn/examples/application/nginx/nginx-deployment.yaml
similarity index 100%
rename from content/zh/examples/application/nginx/nginx-deployment.yaml
rename to content/zh-cn/examples/application/nginx/nginx-deployment.yaml
diff --git a/content/zh/examples/application/nginx/nginx-svc.yaml b/content/zh-cn/examples/application/nginx/nginx-svc.yaml
similarity index 100%
rename from content/zh/examples/application/nginx/nginx-svc.yaml
rename to content/zh-cn/examples/application/nginx/nginx-svc.yaml
diff --git a/content/zh/examples/application/php-apache.yaml b/content/zh-cn/examples/application/php-apache.yaml
similarity index 99%
rename from content/zh/examples/application/php-apache.yaml
rename to content/zh-cn/examples/application/php-apache.yaml
index 5eb04cfb89..e8e1b5aeb4 100644
--- a/content/zh/examples/application/php-apache.yaml
+++ b/content/zh-cn/examples/application/php-apache.yaml
@@ -22,9 +22,7 @@ spec:
             cpu: 500m
           requests:
             cpu: 200m
-
 ---
-
 apiVersion: v1
 kind: Service
 metadata:
@@ -36,4 +34,3 @@ spec:
   - port: 80
   selector:
     run: php-apache
-
diff --git a/content/zh-cn/examples/application/shell-demo.yaml b/content/zh-cn/examples/application/shell-demo.yaml
new file mode 100644
index 0000000000..9eb140d80f
--- /dev/null
+++ b/content/zh-cn/examples/application/shell-demo.yaml
@@ -0,0 +1,16 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: shell-demo
+spec:
+  volumes:
+  - name: shared-data
+    emptyDir: {}
+  containers:
+  - name: nginx
+    image: nginx
+    volumeMounts:
+    - name: shared-data
+      mountPath: /usr/share/nginx/html
+  hostNetwork: true
+  dnsPolicy: Default
diff --git a/content/zh/examples/application/simple_deployment.yaml b/content/zh-cn/examples/application/simple_deployment.yaml
similarity index 100%
rename from content/zh/examples/application/simple_deployment.yaml
rename to content/zh-cn/examples/application/simple_deployment.yaml
diff --git a/content/zh/examples/application/ssa/nginx-deployment-no-replicas.yaml b/content/zh-cn/examples/application/ssa/nginx-deployment-no-replicas.yaml
similarity index 100%
rename from content/zh/examples/application/ssa/nginx-deployment-no-replicas.yaml
rename to content/zh-cn/examples/application/ssa/nginx-deployment-no-replicas.yaml
diff --git a/content/zh/examples/application/ssa/nginx-deployment-replicas-only.yaml b/content/zh-cn/examples/application/ssa/nginx-deployment-replicas-only.yaml
similarity index 100%
rename from content/zh/examples/application/ssa/nginx-deployment-replicas-only.yaml
rename to content/zh-cn/examples/application/ssa/nginx-deployment-replicas-only.yaml
diff --git a/content/zh/examples/application/ssa/nginx-deployment.yaml b/content/zh-cn/examples/application/ssa/nginx-deployment.yaml
similarity index 100%
rename from content/zh/examples/application/ssa/nginx-deployment.yaml
rename to content/zh-cn/examples/application/ssa/nginx-deployment.yaml
diff --git a/content/zh/examples/application/update_deployment.yaml b/content/zh-cn/examples/application/update_deployment.yaml
similarity index 85%
rename from content/zh/examples/application/update_deployment.yaml
rename to content/zh-cn/examples/application/update_deployment.yaml
index 2d7603acb9..28fcf05675 100644
--- a/content/zh/examples/application/update_deployment.yaml
+++ b/content/zh-cn/examples/application/update_deployment.yaml
@@ -13,6 +13,6 @@ spec:
     spec:
       containers:
       - name: nginx
-        image: nginx:1.16.1 # update the image
+        image: nginx:1.16.1 # 更新该镜像
         ports:
         - containerPort: 80
diff --git a/content/zh/examples/application/web/web-parallel.yaml b/content/zh-cn/examples/application/web/web-parallel.yaml
similarity index 100%
rename from content/zh/examples/application/web/web-parallel.yaml
rename to content/zh-cn/examples/application/web/web-parallel.yaml
diff --git a/content/zh/examples/application/web/web.yaml b/content/zh-cn/examples/application/web/web.yaml
similarity index 100%
rename from content/zh/examples/application/web/web.yaml
rename to content/zh-cn/examples/application/web/web.yaml
diff --git a/content/zh/examples/application/wordpress/mysql-deployment.yaml b/content/zh-cn/examples/application/wordpress/mysql-deployment.yaml
similarity index 100%
rename from content/zh/examples/application/wordpress/mysql-deployment.yaml
rename to content/zh-cn/examples/application/wordpress/mysql-deployment.yaml
diff --git a/content/zh/examples/application/wordpress/wordpress-deployment.yaml b/content/zh-cn/examples/application/wordpress/wordpress-deployment.yaml
similarity index 100%
rename from content/zh/examples/application/wordpress/wordpress-deployment.yaml
rename to content/zh-cn/examples/application/wordpress/wordpress-deployment.yaml
diff --git a/content/zh/examples/application/zookeeper/zookeeper.yaml b/content/zh-cn/examples/application/zookeeper/zookeeper.yaml
similarity index 99%
rename from content/zh/examples/application/zookeeper/zookeeper.yaml
rename to content/zh-cn/examples/application/zookeeper/zookeeper.yaml
index a858a72613..4d893b369b 100644
--- a/content/zh/examples/application/zookeeper/zookeeper.yaml
+++ b/content/zh-cn/examples/application/zookeeper/zookeeper.yaml
@@ -27,7 +27,7 @@ spec:
   selector:
     app: zk
 ---
-apiVersion: policy/v1beta1
+apiVersion: policy/v1
 kind: PodDisruptionBudget
 metadata:
   name: zk-pdb
diff --git a/content/zh-cn/examples/audit/audit-policy.yaml b/content/zh-cn/examples/audit/audit-policy.yaml
new file mode 100644
index 0000000000..04bfa231c2
--- /dev/null
+++ b/content/zh-cn/examples/audit/audit-policy.yaml
@@ -0,0 +1,68 @@
+apiVersion: audit.k8s.io/v1 # 这是必填项。
+kind: Policy
+# 不要在 RequestReceived 阶段为任何请求生成审计事件。
+omitStages:
+  - "RequestReceived"
+rules:
+  # 在日志中用 RequestResponse 级别记录 Pod 变化。
+  - level: RequestResponse
+    resources:
+    - group: ""
+      # 资源 "pods" 不匹配对任何 Pod 子资源的请求，
+      # 这与 RBAC 策略一致。
+      resources: ["pods"]
+  # 在日志中按 Metadata 级别记录 "pods/log"、"pods/status" 请求
+  - level: Metadata
+    resources:
+    - group: ""
+      resources: ["pods/log", "pods/status"]
+
+  # 不要在日志中记录对名为 "controller-leader" 的 configmap 的请求。
+  - level: None
+    resources:
+    - group: ""
+      resources: ["configmaps"]
+      resourceNames: ["controller-leader"]
+
+  # 不要在日志中记录由 "system:kube-proxy" 发出的对端点或服务的监测请求。
+  - level: None
+    users: ["system:kube-proxy"]
+    verbs: ["watch"]
+    resources:
+    - group: "" # core API 组
+      resources: ["endpoints", "services"]
+
+  # 不要在日志中记录对某些非资源 URL 路径的已认证请求。
+  - level: None
+    userGroups: ["system:authenticated"]
+    nonResourceURLs:
+    - "/api*" # 通配符匹配。
+    - "/version"
+
+  # 在日志中记录 kube-system 中 configmap 变更的请求消息体。
+  - level: Request
+    resources:
+    - group: "" # core API 组
+      resources: ["configmaps"]
+    # 这个规则仅适用于 "kube-system" 名字空间中的资源。
+    # 空字符串 "" 可用于选择非名字空间作用域的资源。
+    namespaces: ["kube-system"]
+
+  # 在日志中用 Metadata 级别记录所有其他名字空间中的 configmap 和 secret 变更。
+  - level: Metadata
+    resources:
+    - group: "" # core API 组
+      resources: ["secrets", "configmaps"]
+
+  # 在日志中以 Request 级别记录所有其他 core 和 extensions 组中的资源操作。
+  - level: Request
+    resources:
+    - group: "" # core API 组
+    - group: "extensions" # 不应包括在内的组版本。
+
+  # 一个抓取所有的规则，将在日志中以 Metadata 级别记录所有其他请求。
+  - level: Metadata
+    # 符合此规则的 watch 等长时间运行的请求将不会
+    # 在 RequestReceived 阶段生成审计事件。
+    omitStages:
+      - "RequestReceived"
diff --git a/content/zh/examples/configmap/configmap-multikeys.yaml b/content/zh-cn/examples/configmap/configmap-multikeys.yaml
similarity index 100%
rename from content/zh/examples/configmap/configmap-multikeys.yaml
rename to content/zh-cn/examples/configmap/configmap-multikeys.yaml
diff --git a/content/zh/examples/configmap/configmaps.yaml b/content/zh-cn/examples/configmap/configmaps.yaml
similarity index 100%
rename from content/zh/examples/configmap/configmaps.yaml
rename to content/zh-cn/examples/configmap/configmaps.yaml
diff --git a/content/zh/examples/configmap/game-env-file.properties b/content/zh-cn/examples/configmap/game-env-file.properties
similarity index 100%
rename from content/zh/examples/configmap/game-env-file.properties
rename to content/zh-cn/examples/configmap/game-env-file.properties
diff --git a/content/zh/examples/configmap/game.properties b/content/zh-cn/examples/configmap/game.properties
similarity index 100%
rename from content/zh/examples/configmap/game.properties
rename to content/zh-cn/examples/configmap/game.properties
diff --git a/content/zh/examples/configmap/ui-env-file.properties b/content/zh-cn/examples/configmap/ui-env-file.properties
similarity index 100%
rename from content/zh/examples/configmap/ui-env-file.properties
rename to content/zh-cn/examples/configmap/ui-env-file.properties
diff --git a/content/zh/examples/configmap/ui.properties b/content/zh-cn/examples/configmap/ui.properties
similarity index 100%
rename from content/zh/examples/configmap/ui.properties
rename to content/zh-cn/examples/configmap/ui.properties
diff --git a/content/zh/examples/controllers/daemonset.yaml b/content/zh-cn/examples/controllers/daemonset.yaml
similarity index 79%
rename from content/zh/examples/controllers/daemonset.yaml
rename to content/zh-cn/examples/controllers/daemonset.yaml
index 685a137244..54fc51a869 100644
--- a/content/zh/examples/controllers/daemonset.yaml
+++ b/content/zh-cn/examples/controllers/daemonset.yaml
@@ -15,8 +15,11 @@ spec:
         name: fluentd-elasticsearch
     spec:
       tolerations:
-      # this toleration is to have the daemonset runnable on master nodes
-      # remove it if your masters can't run pods
+      # 这些容忍度设置是为了让该守护进程集在控制平面节点上运行
+      # 如果你不希望自己的控制平面节点运行 Pod，可以删除它们
+      - key: node-role.kubernetes.io/control-plane
+        operator: Exists
+        effect: NoSchedule
       - key: node-role.kubernetes.io/master
         operator: Exists
         effect: NoSchedule
diff --git a/content/zh/examples/controllers/fluentd-daemonset-update.yaml b/content/zh-cn/examples/controllers/fluentd-daemonset-update.yaml
similarity index 78%
rename from content/zh/examples/controllers/fluentd-daemonset-update.yaml
rename to content/zh-cn/examples/controllers/fluentd-daemonset-update.yaml
index dcf08d4fc9..5c031f9156 100644
--- a/content/zh/examples/controllers/fluentd-daemonset-update.yaml
+++ b/content/zh-cn/examples/controllers/fluentd-daemonset-update.yaml
@@ -19,9 +19,13 @@ spec:
         name: fluentd-elasticsearch
     spec:
       tolerations:
-      # this toleration is to have the daemonset runnable on master nodes
-      # remove it if your masters can't run pods
+      # 这些容忍度设置是为了让该守护进程集在控制平面节点上运行
+      # 如果你不希望自己的控制平面节点运行 Pod，可以删除它们
+      - key: node-role.kubernetes.io/control-plane
+        operator: Exists
+        effect: NoSchedule
       - key: node-role.kubernetes.io/master
+        operator: Exists
         effect: NoSchedule
       containers:
       - name: fluentd-elasticsearch
diff --git a/content/zh/examples/controllers/fluentd-daemonset.yaml b/content/zh-cn/examples/controllers/fluentd-daemonset.yaml
similarity index 84%
rename from content/zh/examples/controllers/fluentd-daemonset.yaml
rename to content/zh-cn/examples/controllers/fluentd-daemonset.yaml
index 0e1e7d3345..b6dcf64812 100644
--- a/content/zh/examples/controllers/fluentd-daemonset.yaml
+++ b/content/zh-cn/examples/controllers/fluentd-daemonset.yaml
@@ -19,8 +19,8 @@ spec:
         name: fluentd-elasticsearch
     spec:
       tolerations:
-      # this toleration is to have the daemonset runnable on master nodes
-      # remove it if your masters can't run pods
+      # 这些容忍度设置是为了让该守护进程集在控制平面节点上运行
+      # 如果你不希望自己的控制平面节点运行 Pod，可以删除它们
       - key: node-role.kubernetes.io/master
         effect: NoSchedule
       containers:
diff --git a/content/zh/examples/controllers/frontend.yaml b/content/zh-cn/examples/controllers/frontend.yaml
similarity index 89%
rename from content/zh/examples/controllers/frontend.yaml
rename to content/zh-cn/examples/controllers/frontend.yaml
index b9f31044ec..12528338a1 100644
--- a/content/zh/examples/controllers/frontend.yaml
+++ b/content/zh-cn/examples/controllers/frontend.yaml
@@ -6,7 +6,7 @@ metadata:
     app: guestbook
     tier: frontend
 spec:
-  # modify replicas according to your case
+  # 按你的实际情况修改副本数
   replicas: 3
   selector:
     matchLabels:
diff --git a/content/zh/examples/controllers/hpa-rs.yaml b/content/zh-cn/examples/controllers/hpa-rs.yaml
similarity index 100%
rename from content/zh/examples/controllers/hpa-rs.yaml
rename to content/zh-cn/examples/controllers/hpa-rs.yaml
diff --git a/content/zh/examples/controllers/job.yaml b/content/zh-cn/examples/controllers/job.yaml
similarity index 89%
rename from content/zh/examples/controllers/job.yaml
rename to content/zh-cn/examples/controllers/job.yaml
index b448f2eb81..d8befe89db 100644
--- a/content/zh/examples/controllers/job.yaml
+++ b/content/zh-cn/examples/controllers/job.yaml
@@ -7,7 +7,7 @@ spec:
     spec:
       containers:
       - name: pi
-        image: perl
+        image: perl:5.34.0
         command: ["perl",  "-Mbignum=bpi", "-wle", "print bpi(2000)"]
       restartPolicy: Never
   backoffLimit: 4
diff --git a/content/zh/examples/controllers/nginx-deployment.yaml b/content/zh-cn/examples/controllers/nginx-deployment.yaml
similarity index 100%
rename from content/zh/examples/controllers/nginx-deployment.yaml
rename to content/zh-cn/examples/controllers/nginx-deployment.yaml
diff --git a/content/zh/examples/controllers/replicaset.yaml b/content/zh-cn/examples/controllers/replicaset.yaml
similarity index 100%
rename from content/zh/examples/controllers/replicaset.yaml
rename to content/zh-cn/examples/controllers/replicaset.yaml
diff --git a/content/zh/examples/controllers/replication-nginx-1.14.2.yaml b/content/zh-cn/examples/controllers/replication-nginx-1.14.2.yaml
similarity index 100%
rename from content/zh/examples/controllers/replication-nginx-1.14.2.yaml
rename to content/zh-cn/examples/controllers/replication-nginx-1.14.2.yaml
diff --git a/content/zh/examples/controllers/replication-nginx-1.16.1.yaml b/content/zh-cn/examples/controllers/replication-nginx-1.16.1.yaml
similarity index 100%
rename from content/zh/examples/controllers/replication-nginx-1.16.1.yaml
rename to content/zh-cn/examples/controllers/replication-nginx-1.16.1.yaml
diff --git a/content/zh/examples/controllers/replication.yaml b/content/zh-cn/examples/controllers/replication.yaml
similarity index 100%
rename from content/zh/examples/controllers/replication.yaml
rename to content/zh-cn/examples/controllers/replication.yaml
diff --git a/content/zh/examples/debug/counter-pod.yaml b/content/zh-cn/examples/debug/counter-pod.yaml
similarity index 88%
rename from content/zh/examples/debug/counter-pod.yaml
rename to content/zh-cn/examples/debug/counter-pod.yaml
index f997886386..a91b2f8915 100644
--- a/content/zh/examples/debug/counter-pod.yaml
+++ b/content/zh-cn/examples/debug/counter-pod.yaml
@@ -5,6 +5,6 @@ metadata:
 spec:
   containers:
   - name: count
-    image: busybox
+    image: busybox:1.28
     args: [/bin/sh, -c,
             'i=0; while true; do echo "$i: $(date)"; i=$((i+1)); sleep 1; done']
diff --git a/content/zh/examples/debug/event-exporter.yaml b/content/zh-cn/examples/debug/event-exporter.yaml
similarity index 100%
rename from content/zh/examples/debug/event-exporter.yaml
rename to content/zh-cn/examples/debug/event-exporter.yaml
diff --git a/content/zh/examples/debug/fluentd-gcp-configmap.yaml b/content/zh-cn/examples/debug/fluentd-gcp-configmap.yaml
similarity index 100%
rename from content/zh/examples/debug/fluentd-gcp-configmap.yaml
rename to content/zh-cn/examples/debug/fluentd-gcp-configmap.yaml
diff --git a/content/zh/examples/debug/fluentd-gcp-ds.yaml b/content/zh-cn/examples/debug/fluentd-gcp-ds.yaml
similarity index 72%
rename from content/zh/examples/debug/fluentd-gcp-ds.yaml
rename to content/zh-cn/examples/debug/fluentd-gcp-ds.yaml
index 4ffd5c0093..ef81ee4281 100644
--- a/content/zh/examples/debug/fluentd-gcp-ds.yaml
+++ b/content/zh-cn/examples/debug/fluentd-gcp-ds.yaml
@@ -21,9 +21,9 @@ spec:
         k8s-app: fluentd-gcp
         kubernetes.io/cluster-service: "true"
         version: v2.0
-      # This annotation ensures that fluentd does not get evicted if the node
-      # supports critical pod annotation based priority scheme.
-      # Note that this does not guarantee admission on the nodes (#40573).
+      # 如果节点支持基于关键 Pod 注解的优先级方案，
+      # 此注解可确保 fluentd 不会被驱逐。
+      # 请注意，此注解并不保证在这些节点上准入 (#40573)。
       annotations:
         scheduler.alpha.kubernetes.io/critical-pod: ''
     spec:
@@ -31,11 +31,11 @@ spec:
       containers:
       - name: fluentd-gcp
         image: k8s.gcr.io/fluentd-gcp:2.0.2
-        # If fluentd consumes its own logs, the following situation may happen:
-        # fluentd fails to send a chunk to the server => writes it to the log =>
-        # tries to send this message to the server => fails to send a chunk and so on.
-        # Writing to a file, which is not exported to the back-end prevents it.
-        # It also allows to increase the fluentd verbosity by default.
+        # 如果 fluentd 消耗它自己的日志，则可能出现以下情形：
+        # fluentd 将一个块发送到服务器时失败 => 将其写入到日志 =>
+        # 尝试将此消息发送到该服务器 => 发送一个块时失败等等。
+        # 写入一个未导出到后端的文件，可以避免发生这类事情。
+        # 它还默认允许增加 fluentd 的详细程度。
         command:
           - '/bin/sh'
           - '-c'
@@ -60,13 +60,12 @@ spec:
           readOnly: true
         - name: config-volume
           mountPath: /etc/fluent/config.d
-        # Liveness probe is aimed to help in situations where fluentd
-        # silently hangs for no apparent reasons until manual restart.
-        # The idea of this probe is that if fluentd is not queueing or
-        # flushing chunks for 5 minutes, something is not right. If
-        # you want to change the fluentd configuration, reducing amount of
-        # logs fluentd collects, consider changing the threshold or turning
-        # liveness probe off completely.
+        # 存活探针旨在帮助处理 fluentd 无明显原因就静默挂起的情况，
+        # 这种情况通常只能手动重启。这个探针的思路是：
+        # 如果 fluentd 有 5 分钟未执行队列操作或未清洗数据分块，
+        # 那么肯定出现了什么问题。
+        # 如果你要更改 fluentd 配置以减少 fluentd 收集的日志量，
+        # 请考虑更改阈值或彻底关闭存活探针。
         livenessProbe:
           initialDelaySeconds: 600
           periodSeconds: 60
diff --git a/content/zh/examples/debug/node-problem-detector-configmap.yaml b/content/zh-cn/examples/debug/node-problem-detector-configmap.yaml
similarity index 86%
rename from content/zh/examples/debug/node-problem-detector-configmap.yaml
rename to content/zh-cn/examples/debug/node-problem-detector-configmap.yaml
index 654d35106a..76f396ab55 100644
--- a/content/zh/examples/debug/node-problem-detector-configmap.yaml
+++ b/content/zh-cn/examples/debug/node-problem-detector-configmap.yaml
@@ -37,13 +37,13 @@ spec:
         - name: log
           mountPath: /log
           readOnly: true
-        - name: config # Overwrite the config/ directory with ConfigMap volume
+        - name: config # 使用 ConfigMap 卷中的数据覆盖 config/ 目录内容
           mountPath: /config
           readOnly: true
       volumes:
       - name: log
         hostPath:
           path: /var/log/
-      - name: config # Define ConfigMap volume
+      - name: config # 定义 ConfigMap 卷
         configMap:
           name: node-problem-detector-config
\ No newline at end of file
diff --git a/content/zh-cn/examples/debug/node-problem-detector.yaml b/content/zh-cn/examples/debug/node-problem-detector.yaml
new file mode 100644
index 0000000000..6ffa19bcc3
--- /dev/null
+++ b/content/zh-cn/examples/debug/node-problem-detector.yaml
@@ -0,0 +1,43 @@
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  name: node-problem-detector-v0.1
+  namespace: kube-system
+  labels:
+    k8s-app: node-problem-detector
+    version: v0.1
+    kubernetes.io/cluster-service: "true"
+spec:
+  selector:
+    matchLabels:
+      k8s-app: node-problem-detector  
+      version: v0.1
+      kubernetes.io/cluster-service: "true"
+  template:
+    metadata:
+      labels:
+        k8s-app: node-problem-detector
+        version: v0.1
+        kubernetes.io/cluster-service: "true"
+    spec:
+      hostNetwork: true
+      containers:
+      - name: node-problem-detector
+        image: k8s.gcr.io/node-problem-detector:v0.1
+        securityContext:
+          privileged: true
+        resources:
+          limits:
+            cpu: "200m"
+            memory: "100Mi"
+          requests:
+            cpu: "20m"
+            memory: "20Mi"
+        volumeMounts:
+        - name: log
+          mountPath: /log
+          readOnly: true
+      volumes:
+      - name: log
+        hostPath:
+          path: /var/log/
\ No newline at end of file
diff --git a/content/zh/examples/debug/termination.yaml b/content/zh-cn/examples/debug/termination.yaml
similarity index 100%
rename from content/zh/examples/debug/termination.yaml
rename to content/zh-cn/examples/debug/termination.yaml
diff --git a/content/zh/examples/examples.go b/content/zh-cn/examples/examples.go
similarity index 100%
rename from content/zh/examples/examples.go
rename to content/zh-cn/examples/examples.go
diff --git a/content/zh/examples/examples_test.go b/content/zh-cn/examples/examples_test.go
similarity index 89%
rename from content/zh/examples/examples_test.go
rename to content/zh-cn/examples/examples_test.go
index f868eb3d4a..550b33f319 100644
--- a/content/zh/examples/examples_test.go
+++ b/content/zh-cn/examples/examples_test.go
@@ -61,7 +61,7 @@ import (
 	"k8s.io/kubernetes/pkg/capabilities"
 	"k8s.io/kubernetes/pkg/registry/batch/job"
 
-	// initialize install packages
+	// 初始化安装包
 	_ "k8s.io/kubernetes/pkg/apis/apps/install"
 	_ "k8s.io/kubernetes/pkg/apis/autoscaling/install"
 	_ "k8s.io/kubernetes/pkg/apis/batch/install"
@@ -77,18 +77,18 @@ var (
 	serializer runtime.SerializerInfo
 )
 
-// TestGroup contains GroupVersion to uniquely identify the API
+// TestGroup 包含 GroupVersion 以唯一地标识该 API
 type TestGroup struct {
 	externalGroupVersion schema.GroupVersion
 }
 
-// GroupVersion makes copy of schema.GroupVersion
+// GroupVersion 制作 schema.GroupVersion 的副本
 func (g TestGroup) GroupVersion() *schema.GroupVersion {
 	copyOfGroupVersion := g.externalGroupVersion
 	return &copyOfGroupVersion
 }
 
-// Codec returns the codec for the API version to test against
+// Codec 为要测试的 API 版本返回编解码器
 func (g TestGroup) Codec() runtime.Codec {
 	if serializer.Serializer == nil {
 		return legacyscheme.Codecs.LegacyCodec(g.externalGroupVersion)
@@ -136,7 +136,7 @@ func getCodecForObject(obj runtime.Object) (runtime.Codec, error) {
 			return group.Codec(), nil
 		}
 	}
-	// Codec used for unversioned types
+	// 还未版本化的类别所用的 Codec
 	if legacyscheme.Scheme.Recognizes(kind) {
 		serializer, ok := runtime.SerializerInfoForMediaType(legacyscheme.Codecs.SupportedMediaTypes(), runtime.ContentTypeJSON)
 		if !ok {
@@ -149,19 +149,18 @@ func getCodecForObject(obj runtime.Object) (runtime.Codec, error) {
 
 func validateObject(obj runtime.Object) (errors field.ErrorList) {
 	podValidationOptions := validation.PodValidationOptions{
-		AllowMultipleHugePageResources: true,
-		AllowDownwardAPIHugePages:      true,
+		AllowDownwardAPIHugePages:       true,
+		AllowInvalidPodDeletionCost:     false,
+		AllowIndivisibleHugePagesValues: true,
+		AllowWindowsHostProcessField:    true,
+		AllowExpandedDNSConfig:          true,
 	}
 
 	quotaValidationOptions := validation.ResourceQuotaValidationOptions{
 		AllowPodAffinityNamespaceSelector: true,
 	}
 
-	pspValidationOptions := policy_validation.PodSecurityPolicyValidationOptions{
-		AllowEphemeralVolumeType: true,
-	}
-
-	// Enable CustomPodDNS for testing
+	// 为测试启用 CustomPodDNS
 	// feature.DefaultFeatureGate.Set("CustomPodDNS=true")
 	switch t := obj.(type) {
 	case *api.ConfigMap:
@@ -182,20 +181,23 @@ func validateObject(obj runtime.Object) (errors field.ErrorList) {
 	case *api.Namespace:
 		errors = validation.ValidateNamespace(t)
 	case *api.PersistentVolume:
-		errors = validation.ValidatePersistentVolume(t)
+		opts := validation.PersistentVolumeSpecValidationOptions{
+			AllowReadWriteOncePod: true,
+		}
+		errors = validation.ValidatePersistentVolume(t, opts)
 	case *api.PersistentVolumeClaim:
 		if t.Namespace == "" {
 			t.Namespace = api.NamespaceDefault
 		}
-		errors = validation.ValidatePersistentVolumeClaim(t)
+		opts := validation.PersistentVolumeClaimSpecValidationOptions{
+			AllowReadWriteOncePod: true,
+		}
+		errors = validation.ValidatePersistentVolumeClaim(t, opts)
 	case *api.Pod:
 		if t.Namespace == "" {
 			t.Namespace = api.NamespaceDefault
 		}
-		opts := validation.PodValidationOptions{
-			AllowMultipleHugePageResources: true,
-		}
-		errors = validation.ValidatePodCreate(t, opts)
+		errors = validation.ValidatePodCreate(t, podValidationOptions)
 	case *api.PodList:
 		for i := range t.Items {
 			errors = append(errors, validateObject(&t.Items[i])...)
@@ -228,7 +230,7 @@ func validateObject(obj runtime.Object) (errors field.ErrorList) {
 		if t.Namespace == "" {
 			t.Namespace = api.NamespaceDefault
 		}
-		// handle clusterIPs, logic copied from service strategy
+		// 处理几个 ClusterIP，根据服务策略进行逻辑复制
 		if len(t.Spec.ClusterIP) > 0 && len(t.Spec.ClusterIPs) == 0 {
 			t.Spec.ClusterIPs = []string{t.Spec.ClusterIP}
 		}
@@ -256,8 +258,8 @@ func validateObject(obj runtime.Object) (errors field.ErrorList) {
 		if t.Namespace == "" {
 			t.Namespace = api.NamespaceDefault
 		}
-		// Job needs generateSelector called before validation, and job.Validate does this.
-		// See: https://github.com/kubernetes/kubernetes/issues/20951#issuecomment-187787040
+		// Job 需要在校验前调用 generateSelector，然后 job.Validate 执行校验。
+		// 请参阅：https://github.com/kubernetes/kubernetes/issues/20951#issuecomment-187787040
 		t.ObjectMeta.UID = types.UID("fakeuid")
 		if strings.Index(t.ObjectMeta.Name, "$") > -1 {
 			t.ObjectMeta.Name = "skip-for-good"
@@ -277,11 +279,7 @@ func validateObject(obj runtime.Object) (errors field.ErrorList) {
 		if t.Namespace == "" {
 			t.Namespace = api.NamespaceDefault
 		}
-		gv := schema.GroupVersion{
-			Group:   networking.GroupName,
-			Version: legacyscheme.Scheme.PrioritizedVersionsForGroup(networking.GroupName)[0].Version,
-		}
-		errors = networking_validation.ValidateIngressCreate(t, gv)
+		errors = networking_validation.ValidateIngressCreate(t)
 	case *networking.IngressClass:
 		/*
 			if t.Namespace == "" {
@@ -295,7 +293,7 @@ func validateObject(obj runtime.Object) (errors field.ErrorList) {
 		errors = networking_validation.ValidateIngressClass(t)
 
 	case *policy.PodSecurityPolicy:
-		errors = policy_validation.ValidatePodSecurityPolicy(t, pspValidationOptions)
+		errors = policy_validation.ValidatePodSecurityPolicy(t)
 	case *apps.ReplicaSet:
 		if t.Namespace == "" {
 			t.Namespace = api.NamespaceDefault
@@ -317,13 +315,13 @@ func validateObject(obj runtime.Object) (errors field.ErrorList) {
 		}
 		errors = policy_validation.ValidatePodDisruptionBudget(t)
 	case *rbac.ClusterRole:
-		// clusterole does not accept namespace
+		// ClusterRole 不接受名字空间
 		errors = rbac_validation.ValidateClusterRole(t)
 	case *rbac.ClusterRoleBinding:
-		// clusterolebinding does not accept namespace
+		// ClusterRoleBinding 不接受名字空间
 		errors = rbac_validation.ValidateClusterRoleBinding(t)
 	case *storage.StorageClass:
-		// storageclass does not accept namespace
+		// StorageClass 不接受名字空间
 		errors = storage_validation.ValidateStorageClass(t)
 	default:
 		errors = field.ErrorList{}
@@ -332,8 +330,8 @@ func validateObject(obj runtime.Object) (errors field.ErrorList) {
 	return errors
 }
 
-// Walks inDir for any json/yaml files. Converts yaml to json, and calls fn for
-// each file found with the contents in data.
+// 遍历 inDir 目录查找所有 json/yaml 文件。将 yaml 转换为 json，
+// 并根据 data 中的内容找到的每个文件来调用 fn。
 func walkConfigFiles(inDir string, t *testing.T, fn func(name, path string, data [][]byte)) error {
 	return filepath.Walk(inDir, func(path string, info os.FileInfo, err error) error {
 		if err != nil {
@@ -354,7 +352,7 @@ func walkConfigFiles(inDir string, t *testing.T, fn func(name, path string, data
 
 			var docs [][]byte
 			if ext == ".yaml" {
-				// YAML can contain multiple documents.
+				// YAML 可以包含多个文档。
 				splitter := yaml.NewYAMLReader(bufio.NewReader(bytes.NewBuffer(data)))
 				for {
 					doc, err := splitter.Read()
@@ -368,7 +366,7 @@ func walkConfigFiles(inDir string, t *testing.T, fn func(name, path string, data
 					if err != nil {
 						return fmt.Errorf("%s: %v", path, err)
 					}
-					// deal with "empty" document (e.g. pure comments)
+					// 处理 "空白" 文档（例如纯注释）
 					if string(out) != "null" {
 						docs = append(docs, out)
 					}
@@ -387,7 +385,7 @@ func walkConfigFiles(inDir string, t *testing.T, fn func(name, path string, data
 func TestExampleObjectSchemas(t *testing.T) {
 	initGroups()
 
-	// Please help maintain the alphabeta order in the map
+	// 请帮助保持映射图中的 alphabeta 顺序
 	cases := map[string]map[string][]runtime.Object{
 		"admin": {
 			"namespace-dev":        {&api.Namespace{}},
@@ -399,7 +397,7 @@ func TestExampleObjectSchemas(t *testing.T) {
 		},
 		"admin/dns": {
 			"busybox":                   {&api.Pod{}},
-			"dns-horizontal-autoscaler": {&apps.Deployment{}},
+			"dns-horizontal-autoscaler": {&api.ServiceAccount{}, &rbac.ClusterRole{}, &rbac.ClusterRoleBinding{}, &apps.Deployment{}},
 			"dnsutils":                  {&api.Pod{}},
 		},
 		"admin/logging": {
@@ -447,7 +445,7 @@ func TestExampleObjectSchemas(t *testing.T) {
 		},
 		"admin/sched": {
 			"clusterrole":  {&rbac.ClusterRole{}},
-			"my-scheduler": {&api.ServiceAccount{}, &rbac.ClusterRoleBinding{}, &rbac.ClusterRoleBinding{}, &apps.Deployment{}},
+			"my-scheduler": {&api.ServiceAccount{}, &rbac.ClusterRoleBinding{}, &rbac.ClusterRoleBinding{}, &api.ConfigMap{}, &apps.Deployment{}},
 			"pod1":         {&api.Pod{}},
 			"pod2":         {&api.Pod{}},
 			"pod3":         {&api.Pod{}},
@@ -558,6 +556,7 @@ func TestExampleObjectSchemas(t *testing.T) {
 			"pod-projected-svc-token":             {&api.Pod{}},
 			"pod-rs":                              {&api.Pod{}, &api.Pod{}},
 			"pod-single-configmap-env-variable":   {&api.Pod{}},
+			"pod-with-affinity-anti-affinity":     {&api.Pod{}},
 			"pod-with-node-affinity":              {&api.Pod{}},
 			"pod-with-pod-affinity":               {&api.Pod{}},
 			"pod-with-toleration":                 {&api.Pod{}},
@@ -586,6 +585,7 @@ func TestExampleObjectSchemas(t *testing.T) {
 		},
 		"pods/probe": {
 			"exec-liveness":                   {&api.Pod{}},
+			"grpc-liveness":                   {&api.Pod{}},
 			"http-liveness":                   {&api.Pod{}},
 			"pod-with-http-healthcheck":       {&api.Pod{}},
 			"pod-with-tcp-socket-healthcheck": {&api.Pod{}},
@@ -614,11 +614,15 @@ func TestExampleObjectSchemas(t *testing.T) {
 			"security-context-4": {&api.Pod{}},
 		},
 		"pods/storage": {
-			"projected": {&api.Pod{}},
-			"pv-claim":  {&api.PersistentVolumeClaim{}},
-			"pv-pod":    {&api.Pod{}},
-			"pv-volume": {&api.PersistentVolume{}},
-			"redis":     {&api.Pod{}},
+			"projected":                                    {&api.Pod{}},
+			"projected-secret-downwardapi-configmap":       {&api.Pod{}},
+			"projected-secrets-nondefault-permission-mode": {&api.Pod{}},
+			"projected-service-account-token":              {&api.Pod{}},
+			"pv-claim":                                     {&api.PersistentVolumeClaim{}},
+			"pv-duplicate":                                 {&api.Pod{}},
+			"pv-pod":                                       {&api.Pod{}},
+			"pv-volume":                                    {&api.PersistentVolume{}},
+			"redis":                                        {&api.Pod{}},
 		},
 		"policy": {
 			"baseline-psp":                 {&policy.PodSecurityPolicy{}},
@@ -643,6 +647,7 @@ func TestExampleObjectSchemas(t *testing.T) {
 		"service/networking": {
 			"curlpod":                                 {&apps.Deployment{}},
 			"custom-dns":                              {&api.Pod{}},
+			"default-ingressclass":                    {&networking.IngressClass{}},
 			"dual-stack-default-svc":                  {&api.Service{}},
 			"dual-stack-ipfamilies-ipv6":              {&api.Service{}},
 			"dual-stack-ipv6-svc":                     {&api.Service{}},
@@ -658,6 +663,7 @@ func TestExampleObjectSchemas(t *testing.T) {
 			"name-virtual-host-ingress":               {&networking.Ingress{}},
 			"name-virtual-host-ingress-no-third-host": {&networking.Ingress{}},
 			"namespaced-params":                       {&networking.IngressClass{}},
+			"networkpolicy":                           {&networking.NetworkPolicy{}},
 			"network-policy-allow-all-egress":         {&networking.NetworkPolicy{}},
 			"network-policy-allow-all-ingress":        {&networking.NetworkPolicy{}},
 			"network-policy-default-deny-egress":      {&networking.NetworkPolicy{}},
@@ -685,7 +691,7 @@ func TestExampleObjectSchemas(t *testing.T) {
 		},
 	}
 
-	// Note a key in the following map has to be complete relative path
+	// 请注意，以下映射中的某个键必须是完整的相对路径
 	filesIgnore := map[string]map[string]bool{
 		"audit": {
 			"audit-policy": true,
@@ -699,7 +705,7 @@ func TestExampleObjectSchemas(t *testing.T) {
 		tested := 0
 		numExpected := 0
 		path := dir
-		// Test if artifacts do exist
+		// 测试这些工件是否存在
 		for name := range expected {
 			fn := path + "/" + name
 			_, err1 := os.Stat(fn + ".yaml")
diff --git a/content/zh/examples/pods/commands.yaml b/content/zh-cn/examples/pods/commands.yaml
similarity index 100%
rename from content/zh/examples/pods/commands.yaml
rename to content/zh-cn/examples/pods/commands.yaml
diff --git a/content/zh/examples/pods/config/example-redis-config.yaml b/content/zh-cn/examples/pods/config/example-redis-config.yaml
similarity index 100%
rename from content/zh/examples/pods/config/example-redis-config.yaml
rename to content/zh-cn/examples/pods/config/example-redis-config.yaml
diff --git a/content/zh/examples/pods/config/redis-config b/content/zh-cn/examples/pods/config/redis-config
similarity index 100%
rename from content/zh/examples/pods/config/redis-config
rename to content/zh-cn/examples/pods/config/redis-config
diff --git a/content/zh/examples/pods/config/redis-pod.yaml b/content/zh-cn/examples/pods/config/redis-pod.yaml
similarity index 100%
rename from content/zh/examples/pods/config/redis-pod.yaml
rename to content/zh-cn/examples/pods/config/redis-pod.yaml
diff --git a/content/zh/examples/pods/init-containers.yaml b/content/zh-cn/examples/pods/init-containers.yaml
similarity index 86%
rename from content/zh/examples/pods/init-containers.yaml
rename to content/zh-cn/examples/pods/init-containers.yaml
index 667b03eccd..d3b614f32e 100644
--- a/content/zh/examples/pods/init-containers.yaml
+++ b/content/zh-cn/examples/pods/init-containers.yaml
@@ -11,10 +11,10 @@ spec:
     volumeMounts:
     - name: workdir
       mountPath: /usr/share/nginx/html
-  # These containers are run during pod initialization
+  # 这些容器在 Pod 初始化期间运行
   initContainers:
   - name: install
-    image: busybox
+    image: busybox:1.28
     command:
     - wget
     - "-O"
diff --git a/content/zh-cn/examples/pods/inject/dapi-envars-container.yaml b/content/zh-cn/examples/pods/inject/dapi-envars-container.yaml
new file mode 100644
index 0000000000..55bd4dd263
--- /dev/null
+++ b/content/zh-cn/examples/pods/inject/dapi-envars-container.yaml
@@ -0,0 +1,45 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: dapi-envars-resourcefieldref
+spec:
+  containers:
+    - name: test-container
+      image: k8s.gcr.io/busybox:1.24
+      command: [ "sh", "-c"]
+      args:
+      - while true; do
+          echo -en '\n';
+          printenv MY_CPU_REQUEST MY_CPU_LIMIT;
+          printenv MY_MEM_REQUEST MY_MEM_LIMIT;
+          sleep 10;
+        done;
+      resources:
+        requests:
+          memory: "32Mi"
+          cpu: "125m"
+        limits:
+          memory: "64Mi"
+          cpu: "250m"
+      env:
+        - name: MY_CPU_REQUEST
+          valueFrom:
+            resourceFieldRef:
+              containerName: test-container
+              resource: requests.cpu
+        - name: MY_CPU_LIMIT
+          valueFrom:
+            resourceFieldRef:
+              containerName: test-container
+              resource: limits.cpu
+        - name: MY_MEM_REQUEST
+          valueFrom:
+            resourceFieldRef:
+              containerName: test-container
+              resource: requests.memory
+        - name: MY_MEM_LIMIT
+          valueFrom:
+            resourceFieldRef:
+              containerName: test-container
+              resource: limits.memory
+  restartPolicy: Never
diff --git a/content/zh-cn/examples/pods/inject/dapi-envars-pod.yaml b/content/zh-cn/examples/pods/inject/dapi-envars-pod.yaml
new file mode 100644
index 0000000000..071fa82bb3
--- /dev/null
+++ b/content/zh-cn/examples/pods/inject/dapi-envars-pod.yaml
@@ -0,0 +1,38 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: dapi-envars-fieldref
+spec:
+  containers:
+    - name: test-container
+      image: k8s.gcr.io/busybox
+      command: [ "sh", "-c"]
+      args:
+      - while true; do
+          echo -en '\n';
+          printenv MY_NODE_NAME MY_POD_NAME MY_POD_NAMESPACE;
+          printenv MY_POD_IP MY_POD_SERVICE_ACCOUNT;
+          sleep 10;
+        done;
+      env:
+        - name: MY_NODE_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: spec.nodeName
+        - name: MY_POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: MY_POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: MY_POD_IP
+          valueFrom:
+            fieldRef:
+              fieldPath: status.podIP
+        - name: MY_POD_SERVICE_ACCOUNT
+          valueFrom:
+            fieldRef:
+              fieldPath: spec.serviceAccountName
+  restartPolicy: Never
diff --git a/content/zh-cn/examples/pods/inject/dapi-volume-resources.yaml b/content/zh-cn/examples/pods/inject/dapi-volume-resources.yaml
new file mode 100644
index 0000000000..ecb231e0cf
--- /dev/null
+++ b/content/zh-cn/examples/pods/inject/dapi-volume-resources.yaml
@@ -0,0 +1,57 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: kubernetes-downwardapi-volume-example-2
+spec:
+  containers:
+    - name: client-container
+      image: k8s.gcr.io/busybox:1.24
+      command: ["sh", "-c"]
+      args:
+      - while true; do
+          echo -en '\n';
+          if [[ -e /etc/podinfo/cpu_limit ]]; then
+            echo -en '\n'; cat /etc/podinfo/cpu_limit; fi;
+          if [[ -e /etc/podinfo/cpu_request ]]; then
+            echo -en '\n'; cat /etc/podinfo/cpu_request; fi;
+          if [[ -e /etc/podinfo/mem_limit ]]; then
+            echo -en '\n'; cat /etc/podinfo/mem_limit; fi;
+          if [[ -e /etc/podinfo/mem_request ]]; then
+            echo -en '\n'; cat /etc/podinfo/mem_request; fi;
+          sleep 5;
+        done;
+      resources:
+        requests:
+          memory: "32Mi"
+          cpu: "125m"
+        limits:
+          memory: "64Mi"
+          cpu: "250m"
+      volumeMounts:
+        - name: podinfo
+          mountPath: /etc/podinfo
+  volumes:
+    - name: podinfo
+      downwardAPI:
+        items:
+          - path: "cpu_limit"
+            resourceFieldRef:
+              containerName: client-container
+              resource: limits.cpu
+              divisor: 1m
+          - path: "cpu_request"
+            resourceFieldRef:
+              containerName: client-container
+              resource: requests.cpu
+              divisor: 1m
+          - path: "mem_limit"
+            resourceFieldRef:
+              containerName: client-container
+              resource: limits.memory
+              divisor: 1Mi
+          - path: "mem_request"
+            resourceFieldRef:
+              containerName: client-container
+              resource: requests.memory
+              divisor: 1Mi
+
diff --git a/content/zh-cn/examples/pods/inject/dapi-volume.yaml b/content/zh-cn/examples/pods/inject/dapi-volume.yaml
new file mode 100644
index 0000000000..0f0a9f2e5c
--- /dev/null
+++ b/content/zh-cn/examples/pods/inject/dapi-volume.yaml
@@ -0,0 +1,38 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: kubernetes-downwardapi-volume-example
+  labels:
+    zone: us-est-coast
+    cluster: test-cluster1
+    rack: rack-22
+  annotations:
+    build: two
+    builder: john-doe
+spec:
+  containers:
+    - name: client-container
+      image: k8s.gcr.io/busybox
+      command: ["sh", "-c"]
+      args:
+      - while true; do
+          if [[ -e /etc/podinfo/labels ]]; then
+            echo -en '\n\n'; cat /etc/podinfo/labels; fi;
+          if [[ -e /etc/podinfo/annotations ]]; then
+            echo -en '\n\n'; cat /etc/podinfo/annotations; fi;
+          sleep 5;
+        done;
+      volumeMounts:
+        - name: podinfo
+          mountPath: /etc/podinfo
+  volumes:
+    - name: podinfo
+      downwardAPI:
+        items:
+          - path: "labels"
+            fieldRef:
+              fieldPath: metadata.labels
+          - path: "annotations"
+            fieldRef:
+              fieldPath: metadata.annotations
+
diff --git a/content/zh-cn/examples/pods/inject/dependent-envars.yaml b/content/zh-cn/examples/pods/inject/dependent-envars.yaml
new file mode 100644
index 0000000000..67d07098ba
--- /dev/null
+++ b/content/zh-cn/examples/pods/inject/dependent-envars.yaml
@@ -0,0 +1,26 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: dependent-envars-demo
+spec:
+  containers:
+    - name: dependent-envars-demo
+      args:
+        - while true; do echo -en '\n'; printf UNCHANGED_REFERENCE=$UNCHANGED_REFERENCE'\n'; printf SERVICE_ADDRESS=$SERVICE_ADDRESS'\n';printf ESCAPED_REFERENCE=$ESCAPED_REFERENCE'\n'; sleep 30; done;
+      command:
+        - sh
+        - -c
+      image: busybox:1.28
+      env:
+        - name: SERVICE_PORT
+          value: "80"
+        - name: SERVICE_IP
+          value: "172.17.0.1"
+        - name: UNCHANGED_REFERENCE
+          value: "$(PROTOCOL)://$(SERVICE_IP):$(SERVICE_PORT)"
+        - name: PROTOCOL
+          value: "https"
+        - name: SERVICE_ADDRESS
+          value: "$(PROTOCOL)://$(SERVICE_IP):$(SERVICE_PORT)"
+        - name: ESCAPED_REFERENCE
+          value: "$$(PROTOCOL)://$(SERVICE_IP):$(SERVICE_PORT)"
diff --git a/content/zh/examples/pods/inject/envars.yaml b/content/zh-cn/examples/pods/inject/envars.yaml
similarity index 100%
rename from content/zh/examples/pods/inject/envars.yaml
rename to content/zh-cn/examples/pods/inject/envars.yaml
diff --git a/content/zh-cn/examples/pods/inject/pod-multiple-secret-env-variable.yaml b/content/zh-cn/examples/pods/inject/pod-multiple-secret-env-variable.yaml
new file mode 100644
index 0000000000..f285e41932
--- /dev/null
+++ b/content/zh-cn/examples/pods/inject/pod-multiple-secret-env-variable.yaml
@@ -0,0 +1,19 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: envvars-multiple-secrets
+spec:
+  containers:
+  - name: envars-test-container
+    image: nginx
+    env:
+    - name: BACKEND_USERNAME
+      valueFrom:
+        secretKeyRef:
+          name: backend-user
+          key: backend-username
+    - name: DB_USERNAME
+      valueFrom:
+        secretKeyRef:
+          name: db-user
+          key: db-username
diff --git a/content/zh-cn/examples/pods/inject/pod-secret-envFrom.yaml b/content/zh-cn/examples/pods/inject/pod-secret-envFrom.yaml
new file mode 100644
index 0000000000..eb1d3213ef
--- /dev/null
+++ b/content/zh-cn/examples/pods/inject/pod-secret-envFrom.yaml
@@ -0,0 +1,11 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: envfrom-secret
+spec:
+  containers:
+  - name: envars-test-container
+    image: nginx
+    envFrom:
+    - secretRef:
+        name: test-secret
diff --git a/content/zh-cn/examples/pods/inject/pod-single-secret-env-variable.yaml b/content/zh-cn/examples/pods/inject/pod-single-secret-env-variable.yaml
new file mode 100644
index 0000000000..af4cf8732f
--- /dev/null
+++ b/content/zh-cn/examples/pods/inject/pod-single-secret-env-variable.yaml
@@ -0,0 +1,14 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: env-single-secret
+spec:
+  containers:
+  - name: envars-test-container
+    image: nginx
+    env:
+    - name: SECRET_USERNAME
+      valueFrom:
+        secretKeyRef:
+          name: backend-user
+          key: backend-username
diff --git a/content/zh/examples/pods/inject/secret-envars-pod.yaml b/content/zh-cn/examples/pods/inject/secret-envars-pod.yaml
similarity index 100%
rename from content/zh/examples/pods/inject/secret-envars-pod.yaml
rename to content/zh-cn/examples/pods/inject/secret-envars-pod.yaml
diff --git a/content/zh-cn/examples/pods/inject/secret-pod.yaml b/content/zh-cn/examples/pods/inject/secret-pod.yaml
new file mode 100644
index 0000000000..b1abd9b037
--- /dev/null
+++ b/content/zh-cn/examples/pods/inject/secret-pod.yaml
@@ -0,0 +1,17 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: secret-test-pod
+spec:
+  containers:
+    - name: test-container
+      image: nginx
+      volumeMounts:
+        # name 必须与下面的卷名匹配
+        - name: secret-volume
+          mountPath: /etc/secret-volume
+  # Secret 数据通过一个卷暴露给该 Pod 中的容器
+  volumes:
+    - name: secret-volume
+      secret:
+        secretName: test-secret
diff --git a/content/zh-cn/examples/pods/inject/secret.yaml b/content/zh-cn/examples/pods/inject/secret.yaml
new file mode 100644
index 0000000000..706ca8670f
--- /dev/null
+++ b/content/zh-cn/examples/pods/inject/secret.yaml
@@ -0,0 +1,7 @@
+apiVersion: v1
+kind: Secret
+metadata:
+  name: test-secret
+data:
+  username: bXktYXBw
+  password: Mzk1MjgkdmRnN0pi
diff --git a/content/zh/examples/pods/lifecycle-events.yaml b/content/zh-cn/examples/pods/lifecycle-events.yaml
similarity index 100%
rename from content/zh/examples/pods/lifecycle-events.yaml
rename to content/zh-cn/examples/pods/lifecycle-events.yaml
diff --git a/content/zh/examples/pods/pod-configmap-env-var-valueFrom.yaml b/content/zh-cn/examples/pods/pod-configmap-env-var-valueFrom.yaml
similarity index 84%
rename from content/zh/examples/pods/pod-configmap-env-var-valueFrom.yaml
rename to content/zh-cn/examples/pods/pod-configmap-env-var-valueFrom.yaml
index a72b4335ce..00827ec98a 100644
--- a/content/zh/examples/pods/pod-configmap-env-var-valueFrom.yaml
+++ b/content/zh-cn/examples/pods/pod-configmap-env-var-valueFrom.yaml
@@ -6,7 +6,7 @@ spec:
   containers:
     - name: test-container
       image: k8s.gcr.io/busybox
-      command: [ "/bin/sh", "-c", "echo $(SPECIAL_LEVEL_KEY) $(SPECIAL_TYPE_KEY)" ]
+      command: [ "/bin/echo", "$(SPECIAL_LEVEL_KEY) $(SPECIAL_TYPE_KEY)" ]
       env:
         - name: SPECIAL_LEVEL_KEY
           valueFrom:
diff --git a/content/zh/examples/pods/pod-configmap-envFrom.yaml b/content/zh-cn/examples/pods/pod-configmap-envFrom.yaml
similarity index 100%
rename from content/zh/examples/pods/pod-configmap-envFrom.yaml
rename to content/zh-cn/examples/pods/pod-configmap-envFrom.yaml
diff --git a/content/zh/examples/pods/pod-configmap-volume-specific-key.yaml b/content/zh-cn/examples/pods/pod-configmap-volume-specific-key.yaml
similarity index 100%
rename from content/zh/examples/pods/pod-configmap-volume-specific-key.yaml
rename to content/zh-cn/examples/pods/pod-configmap-volume-specific-key.yaml
diff --git a/content/zh/examples/pods/pod-configmap-volume.yaml b/content/zh-cn/examples/pods/pod-configmap-volume.yaml
similarity index 77%
rename from content/zh/examples/pods/pod-configmap-volume.yaml
rename to content/zh-cn/examples/pods/pod-configmap-volume.yaml
index 23b0f7718e..5203d4c66b 100644
--- a/content/zh/examples/pods/pod-configmap-volume.yaml
+++ b/content/zh-cn/examples/pods/pod-configmap-volume.yaml
@@ -13,7 +13,6 @@ spec:
   volumes:
     - name: config-volume
       configMap:
-        # Provide the name of the ConfigMap containing the files you want
-        # to add to the container
+        # 提供包含要添加到容器中的文件的 ConfigMap 的名称
         name: special-config
   restartPolicy: Never
diff --git a/content/zh/examples/pods/pod-multiple-configmap-env-variable.yaml b/content/zh-cn/examples/pods/pod-multiple-configmap-env-variable.yaml
similarity index 100%
rename from content/zh/examples/pods/pod-multiple-configmap-env-variable.yaml
rename to content/zh-cn/examples/pods/pod-multiple-configmap-env-variable.yaml
diff --git a/content/zh/examples/pods/pod-nginx-preferred-affinity.yaml b/content/zh-cn/examples/pods/pod-nginx-preferred-affinity.yaml
similarity index 100%
rename from content/zh/examples/pods/pod-nginx-preferred-affinity.yaml
rename to content/zh-cn/examples/pods/pod-nginx-preferred-affinity.yaml
diff --git a/content/zh/examples/pods/pod-nginx-required-affinity.yaml b/content/zh-cn/examples/pods/pod-nginx-required-affinity.yaml
similarity index 100%
rename from content/zh/examples/pods/pod-nginx-required-affinity.yaml
rename to content/zh-cn/examples/pods/pod-nginx-required-affinity.yaml
diff --git a/content/zh/examples/pods/pod-nginx-specific-node.yaml b/content/zh-cn/examples/pods/pod-nginx-specific-node.yaml
similarity index 71%
rename from content/zh/examples/pods/pod-nginx-specific-node.yaml
rename to content/zh-cn/examples/pods/pod-nginx-specific-node.yaml
index 5923400d64..9e76f921b1 100644
--- a/content/zh/examples/pods/pod-nginx-specific-node.yaml
+++ b/content/zh-cn/examples/pods/pod-nginx-specific-node.yaml
@@ -3,7 +3,7 @@ kind: Pod
 metadata:
   name: nginx
 spec:
-  nodeName: foo-node # schedule pod to specific node
+  nodeName: foo-node # 调度 Pod 到特定的节点
   containers:
   - name: nginx
     image: nginx
diff --git a/content/zh/examples/pods/pod-nginx.yaml b/content/zh-cn/examples/pods/pod-nginx.yaml
similarity index 100%
rename from content/zh/examples/pods/pod-nginx.yaml
rename to content/zh-cn/examples/pods/pod-nginx.yaml
diff --git a/content/zh/examples/pods/pod-projected-svc-token.yaml b/content/zh-cn/examples/pods/pod-projected-svc-token.yaml
similarity index 100%
rename from content/zh/examples/pods/pod-projected-svc-token.yaml
rename to content/zh-cn/examples/pods/pod-projected-svc-token.yaml
diff --git a/content/zh/examples/pods/pod-rs.yaml b/content/zh-cn/examples/pods/pod-rs.yaml
similarity index 100%
rename from content/zh/examples/pods/pod-rs.yaml
rename to content/zh-cn/examples/pods/pod-rs.yaml
diff --git a/content/zh/examples/pods/pod-single-configmap-env-variable.yaml b/content/zh-cn/examples/pods/pod-single-configmap-env-variable.yaml
similarity index 65%
rename from content/zh/examples/pods/pod-single-configmap-env-variable.yaml
rename to content/zh-cn/examples/pods/pod-single-configmap-env-variable.yaml
index c86123afd7..5777c814f9 100644
--- a/content/zh/examples/pods/pod-single-configmap-env-variable.yaml
+++ b/content/zh-cn/examples/pods/pod-single-configmap-env-variable.yaml
@@ -8,12 +8,12 @@ spec:
       image: k8s.gcr.io/busybox
       command: [ "/bin/sh", "-c", "env" ]
       env:
-        # Define the environment variable
+        # 定义环境变量
         - name: SPECIAL_LEVEL_KEY
           valueFrom:
             configMapKeyRef:
-              # The ConfigMap containing the value you want to assign to SPECIAL_LEVEL_KEY
+              # ConfigMap 包含你要赋给 SPECIAL_LEVEL_KEY 的值
               name: special-config
-              # Specify the key associated with the value
+              # 指定与取值相关的键名
               key: special.how
   restartPolicy: Never
diff --git a/content/zh-cn/examples/pods/pod-with-affinity-anti-affinity.yaml b/content/zh-cn/examples/pods/pod-with-affinity-anti-affinity.yaml
new file mode 100644
index 0000000000..a7d14b2d6f
--- /dev/null
+++ b/content/zh-cn/examples/pods/pod-with-affinity-anti-affinity.yaml
@@ -0,0 +1,32 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: with-affinity-anti-affinity
+spec:
+  affinity:
+    nodeAffinity:
+      requiredDuringSchedulingIgnoredDuringExecution:
+        nodeSelectorTerms:
+        - matchExpressions:
+          - key: kubernetes.io/os
+            operator: In
+            values:
+            - linux
+      preferredDuringSchedulingIgnoredDuringExecution:
+      - weight: 1
+        preference:
+          matchExpressions:
+          - key: label-1
+            operator: In
+            values:
+            - key-1
+      - weight: 50
+        preference:
+          matchExpressions:
+          - key: label-2
+            operator: In
+            values:
+            - key-2
+  containers:
+  - name: with-node-affinity
+    image: k8s.gcr.io/pause:2.0
\ No newline at end of file
diff --git a/content/zh/examples/pods/pod-with-node-affinity.yaml b/content/zh-cn/examples/pods/pod-with-node-affinity.yaml
similarity index 79%
rename from content/zh/examples/pods/pod-with-node-affinity.yaml
rename to content/zh-cn/examples/pods/pod-with-node-affinity.yaml
index 253d2b21ea..ebc6f14490 100644
--- a/content/zh/examples/pods/pod-with-node-affinity.yaml
+++ b/content/zh-cn/examples/pods/pod-with-node-affinity.yaml
@@ -8,11 +8,11 @@ spec:
       requiredDuringSchedulingIgnoredDuringExecution:
         nodeSelectorTerms:
         - matchExpressions:
-          - key: kubernetes.io/e2e-az-name
+          - key: topology.kubernetes.io/zone
             operator: In
             values:
-            - e2e-az1
-            - e2e-az2
+            - antarctica-east1
+            - antarctica-west1
       preferredDuringSchedulingIgnoredDuringExecution:
       - weight: 1
         preference:
diff --git a/content/zh/examples/pods/pod-with-pod-affinity.yaml b/content/zh-cn/examples/pods/pod-with-pod-affinity.yaml
similarity index 100%
rename from content/zh/examples/pods/pod-with-pod-affinity.yaml
rename to content/zh-cn/examples/pods/pod-with-pod-affinity.yaml
diff --git a/content/zh-cn/examples/pods/pod-with-toleration.yaml b/content/zh-cn/examples/pods/pod-with-toleration.yaml
new file mode 100644
index 0000000000..79f2756a8c
--- /dev/null
+++ b/content/zh-cn/examples/pods/pod-with-toleration.yaml
@@ -0,0 +1,15 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: nginx
+  labels:
+    env: test
+spec:
+  containers:
+  - name: nginx
+    image: nginx
+    imagePullPolicy: IfNotPresent
+  tolerations:
+  - key: "example-key"
+    operator: "Exists"
+    effect: "NoSchedule"
diff --git a/content/zh/examples/pods/private-reg-pod.yaml b/content/zh-cn/examples/pods/private-reg-pod.yaml
similarity index 100%
rename from content/zh/examples/pods/private-reg-pod.yaml
rename to content/zh-cn/examples/pods/private-reg-pod.yaml
diff --git a/content/zh/examples/pods/probe/exec-liveness.yaml b/content/zh-cn/examples/pods/probe/exec-liveness.yaml
similarity index 82%
rename from content/zh/examples/pods/probe/exec-liveness.yaml
rename to content/zh-cn/examples/pods/probe/exec-liveness.yaml
index 07bf75f85c..6a9c9b3213 100644
--- a/content/zh/examples/pods/probe/exec-liveness.yaml
+++ b/content/zh-cn/examples/pods/probe/exec-liveness.yaml
@@ -11,7 +11,7 @@ spec:
     args:
     - /bin/sh
     - -c
-    - touch /tmp/healthy; sleep 30; rm -rf /tmp/healthy; sleep 600
+    - touch /tmp/healthy; sleep 30; rm -f /tmp/healthy; sleep 600
     livenessProbe:
       exec:
         command:
diff --git a/content/zh-cn/examples/pods/probe/grpc-liveness.yaml b/content/zh-cn/examples/pods/probe/grpc-liveness.yaml
new file mode 100644
index 0000000000..578fd080a4
--- /dev/null
+++ b/content/zh-cn/examples/pods/probe/grpc-liveness.yaml
@@ -0,0 +1,15 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: etcd-with-grpc
+spec:
+  containers:
+  - name: etcd
+    image: k8s.gcr.io/etcd:3.5.1-0
+    command: [ "/usr/local/bin/etcd", "--data-dir",  "/var/lib/etcd", "--listen-client-urls", "http://0.0.0.0:2379", "--advertise-client-urls", "http://127.0.0.1:2379", "--log-level", "debug"]
+    ports:
+    - containerPort: 2379
+    livenessProbe:
+      grpc:
+        port: 2379
+      initialDelaySeconds: 10
diff --git a/content/zh/examples/pods/probe/http-liveness.yaml b/content/zh-cn/examples/pods/probe/http-liveness.yaml
similarity index 100%
rename from content/zh/examples/pods/probe/http-liveness.yaml
rename to content/zh-cn/examples/pods/probe/http-liveness.yaml
diff --git a/content/zh/examples/pods/probe/pod-with-http-healthcheck.yaml b/content/zh-cn/examples/pods/probe/pod-with-http-healthcheck.yaml
similarity index 63%
rename from content/zh/examples/pods/probe/pod-with-http-healthcheck.yaml
rename to content/zh-cn/examples/pods/probe/pod-with-http-healthcheck.yaml
index 3f40854e92..9757523852 100644
--- a/content/zh/examples/pods/probe/pod-with-http-healthcheck.yaml
+++ b/content/zh-cn/examples/pods/probe/pod-with-http-healthcheck.yaml
@@ -6,14 +6,14 @@ spec:
   containers:
   - name: nginx
     image: nginx
-    # defines the health checking
+    # 定义健康检查
     livenessProbe:
-      # an http probe
+      # 一个 http 探针
       httpGet:
         path: /_status/healthz
         port: 80
-      # length of time to wait for a pod to initialize
-      # after pod startup, before applying health checking
+      # Pod 启动之后，实施健康检查之前，
+      # 等待 Pod 初始化的时间长度
       initialDelaySeconds: 30
       timeoutSeconds: 1
     ports:
diff --git a/content/zh/examples/pods/probe/pod-with-tcp-socket-healthcheck.yaml b/content/zh-cn/examples/pods/probe/pod-with-tcp-socket-healthcheck.yaml
similarity index 61%
rename from content/zh/examples/pods/probe/pod-with-tcp-socket-healthcheck.yaml
rename to content/zh-cn/examples/pods/probe/pod-with-tcp-socket-healthcheck.yaml
index 5f0bca283c..adc2e4546f 100644
--- a/content/zh/examples/pods/probe/pod-with-tcp-socket-healthcheck.yaml
+++ b/content/zh-cn/examples/pods/probe/pod-with-tcp-socket-healthcheck.yaml
@@ -6,13 +6,13 @@ spec:
   containers:
   - name: redis
     image: redis
-    # defines the health checking
+    # 定义健康检查
     livenessProbe:
-      # a TCP socket probe
+      # 一个 TCP 套接字探针
       tcpSocket:
         port: 6379
-      # length of time to wait for a pod to initialize
-      # after pod startup, before applying health checking
+      # Pod 启动之后，实施健康检查之前，
+      # 等待 Pod 初始化的时间长度
       initialDelaySeconds: 30
       timeoutSeconds: 1
     ports:
diff --git a/content/zh/examples/pods/probe/tcp-liveness-readiness.yaml b/content/zh-cn/examples/pods/probe/tcp-liveness-readiness.yaml
similarity index 100%
rename from content/zh/examples/pods/probe/tcp-liveness-readiness.yaml
rename to content/zh-cn/examples/pods/probe/tcp-liveness-readiness.yaml
diff --git a/content/zh/examples/pods/qos/qos-pod-2.yaml b/content/zh-cn/examples/pods/qos/qos-pod-2.yaml
similarity index 100%
rename from content/zh/examples/pods/qos/qos-pod-2.yaml
rename to content/zh-cn/examples/pods/qos/qos-pod-2.yaml
diff --git a/content/zh/examples/pods/qos/qos-pod-3.yaml b/content/zh-cn/examples/pods/qos/qos-pod-3.yaml
similarity index 100%
rename from content/zh/examples/pods/qos/qos-pod-3.yaml
rename to content/zh-cn/examples/pods/qos/qos-pod-3.yaml
diff --git a/content/zh/examples/pods/qos/qos-pod-4.yaml b/content/zh-cn/examples/pods/qos/qos-pod-4.yaml
similarity index 100%
rename from content/zh/examples/pods/qos/qos-pod-4.yaml
rename to content/zh-cn/examples/pods/qos/qos-pod-4.yaml
diff --git a/content/zh/examples/pods/qos/qos-pod.yaml b/content/zh-cn/examples/pods/qos/qos-pod.yaml
similarity index 100%
rename from content/zh/examples/pods/qos/qos-pod.yaml
rename to content/zh-cn/examples/pods/qos/qos-pod.yaml
diff --git a/content/zh/examples/pods/resource/cpu-request-limit-2.yaml b/content/zh-cn/examples/pods/resource/cpu-request-limit-2.yaml
similarity index 100%
rename from content/zh/examples/pods/resource/cpu-request-limit-2.yaml
rename to content/zh-cn/examples/pods/resource/cpu-request-limit-2.yaml
diff --git a/content/zh/examples/pods/resource/cpu-request-limit.yaml b/content/zh-cn/examples/pods/resource/cpu-request-limit.yaml
similarity index 100%
rename from content/zh/examples/pods/resource/cpu-request-limit.yaml
rename to content/zh-cn/examples/pods/resource/cpu-request-limit.yaml
diff --git a/content/zh/examples/pods/resource/extended-resource-pod-2.yaml b/content/zh-cn/examples/pods/resource/extended-resource-pod-2.yaml
similarity index 100%
rename from content/zh/examples/pods/resource/extended-resource-pod-2.yaml
rename to content/zh-cn/examples/pods/resource/extended-resource-pod-2.yaml
diff --git a/content/zh/examples/pods/resource/extended-resource-pod.yaml b/content/zh-cn/examples/pods/resource/extended-resource-pod.yaml
similarity index 100%
rename from content/zh/examples/pods/resource/extended-resource-pod.yaml
rename to content/zh-cn/examples/pods/resource/extended-resource-pod.yaml
diff --git a/content/zh/examples/pods/resource/memory-request-limit-2.yaml b/content/zh-cn/examples/pods/resource/memory-request-limit-2.yaml
similarity index 100%
rename from content/zh/examples/pods/resource/memory-request-limit-2.yaml
rename to content/zh-cn/examples/pods/resource/memory-request-limit-2.yaml
diff --git a/content/zh/examples/pods/resource/memory-request-limit-3.yaml b/content/zh-cn/examples/pods/resource/memory-request-limit-3.yaml
similarity index 100%
rename from content/zh/examples/pods/resource/memory-request-limit-3.yaml
rename to content/zh-cn/examples/pods/resource/memory-request-limit-3.yaml
index 9f089c4a7a..d816393986 100644
--- a/content/zh/examples/pods/resource/memory-request-limit-3.yaml
+++ b/content/zh-cn/examples/pods/resource/memory-request-limit-3.yaml
@@ -8,9 +8,9 @@ spec:
   - name: memory-demo-3-ctr
     image: polinux/stress
     resources:
-      limits:
-        memory: "1000Gi"
       requests:
         memory: "1000Gi"
+      limits:
+        memory: "1000Gi"
     command: ["stress"]
     args: ["--vm", "1", "--vm-bytes", "150M", "--vm-hang", "1"]
diff --git a/content/zh/examples/pods/resource/memory-request-limit.yaml b/content/zh-cn/examples/pods/resource/memory-request-limit.yaml
similarity index 100%
rename from content/zh/examples/pods/resource/memory-request-limit.yaml
rename to content/zh-cn/examples/pods/resource/memory-request-limit.yaml
index 985b1308d9..07ce3e7d3c 100644
--- a/content/zh/examples/pods/resource/memory-request-limit.yaml
+++ b/content/zh-cn/examples/pods/resource/memory-request-limit.yaml
@@ -8,9 +8,9 @@ spec:
   - name: memory-demo-ctr
     image: polinux/stress
     resources:
-      limits:
-        memory: "200Mi"
       requests:
         memory: "100Mi"
+      limits:
+        memory: "200Mi"
     command: ["stress"]
     args: ["--vm", "1", "--vm-bytes", "150M", "--vm-hang", "1"]
diff --git a/content/zh/examples/pods/security/hello-apparmor.yaml b/content/zh-cn/examples/pods/security/hello-apparmor.yaml
similarity index 55%
rename from content/zh/examples/pods/security/hello-apparmor.yaml
rename to content/zh-cn/examples/pods/security/hello-apparmor.yaml
index 3e9b3b2a9c..a363d3d6c5 100644
--- a/content/zh/examples/pods/security/hello-apparmor.yaml
+++ b/content/zh-cn/examples/pods/security/hello-apparmor.yaml
@@ -3,11 +3,11 @@ kind: Pod
 metadata:
   name: hello-apparmor
   annotations:
-    # Tell Kubernetes to apply the AppArmor profile "k8s-apparmor-example-deny-write".
-    # Note that this is ignored if the Kubernetes node is not running version 1.4 or greater.
+    # 告知 Kubernetes 去应用 AppArmor 配置 "k8s-apparmor-example-deny-write"。
+    # 请注意，如果节点上运行的 Kubernetes 不是 1.4 或更高版本，此注解将被忽略。
     container.apparmor.security.beta.kubernetes.io/hello: localhost/k8s-apparmor-example-deny-write
 spec:
   containers:
   - name: hello
-    image: busybox
+    image: busybox:1.28
     command: [ "sh", "-c", "echo 'Hello AppArmor!' && sleep 1h" ]
diff --git a/content/zh/examples/pods/security/seccomp/alpha/audit-pod.yaml b/content/zh-cn/examples/pods/security/seccomp/alpha/audit-pod.yaml
similarity index 100%
rename from content/zh/examples/pods/security/seccomp/alpha/audit-pod.yaml
rename to content/zh-cn/examples/pods/security/seccomp/alpha/audit-pod.yaml
diff --git a/content/zh/examples/pods/security/seccomp/alpha/default-pod.yaml b/content/zh-cn/examples/pods/security/seccomp/alpha/default-pod.yaml
similarity index 100%
rename from content/zh/examples/pods/security/seccomp/alpha/default-pod.yaml
rename to content/zh-cn/examples/pods/security/seccomp/alpha/default-pod.yaml
diff --git a/content/zh/examples/pods/security/seccomp/alpha/fine-pod.yaml b/content/zh-cn/examples/pods/security/seccomp/alpha/fine-pod.yaml
similarity index 100%
rename from content/zh/examples/pods/security/seccomp/alpha/fine-pod.yaml
rename to content/zh-cn/examples/pods/security/seccomp/alpha/fine-pod.yaml
diff --git a/content/zh/examples/pods/security/seccomp/alpha/violation-pod.yaml b/content/zh-cn/examples/pods/security/seccomp/alpha/violation-pod.yaml
similarity index 100%
rename from content/zh/examples/pods/security/seccomp/alpha/violation-pod.yaml
rename to content/zh-cn/examples/pods/security/seccomp/alpha/violation-pod.yaml
diff --git a/content/zh/examples/pods/security/seccomp/ga/audit-pod.yaml b/content/zh-cn/examples/pods/security/seccomp/ga/audit-pod.yaml
similarity index 100%
rename from content/zh/examples/pods/security/seccomp/ga/audit-pod.yaml
rename to content/zh-cn/examples/pods/security/seccomp/ga/audit-pod.yaml
diff --git a/content/zh/examples/pods/security/seccomp/ga/default-pod.yaml b/content/zh-cn/examples/pods/security/seccomp/ga/default-pod.yaml
similarity index 64%
rename from content/zh/examples/pods/security/seccomp/ga/default-pod.yaml
rename to content/zh-cn/examples/pods/security/seccomp/ga/default-pod.yaml
index fbeec4c167..b884ec5924 100644
--- a/content/zh/examples/pods/security/seccomp/ga/default-pod.yaml
+++ b/content/zh-cn/examples/pods/security/seccomp/ga/default-pod.yaml
@@ -1,9 +1,9 @@
 apiVersion: v1
 kind: Pod
 metadata:
-  name: audit-pod
+  name: default-pod
   labels:
-    app: audit-pod
+    app: default-pod
 spec:
   securityContext:
     seccompProfile:
@@ -12,6 +12,6 @@ spec:
   - name: test-container
     image: hashicorp/http-echo:0.2.3
     args:
-    - "-text=just made some syscalls!"
+    - "-text=just made some more syscalls!"
     securityContext:
       allowPrivilegeEscalation: false
\ No newline at end of file
diff --git a/content/zh/examples/pods/security/seccomp/ga/fine-pod.yaml b/content/zh-cn/examples/pods/security/seccomp/ga/fine-pod.yaml
similarity index 100%
rename from content/zh/examples/pods/security/seccomp/ga/fine-pod.yaml
rename to content/zh-cn/examples/pods/security/seccomp/ga/fine-pod.yaml
diff --git a/content/zh/examples/pods/security/seccomp/ga/violation-pod.yaml b/content/zh-cn/examples/pods/security/seccomp/ga/violation-pod.yaml
similarity index 100%
rename from content/zh/examples/pods/security/seccomp/ga/violation-pod.yaml
rename to content/zh-cn/examples/pods/security/seccomp/ga/violation-pod.yaml
diff --git a/content/zh/examples/pods/security/seccomp/kind.yaml b/content/zh-cn/examples/pods/security/seccomp/kind.yaml
similarity index 100%
rename from content/zh/examples/pods/security/seccomp/kind.yaml
rename to content/zh-cn/examples/pods/security/seccomp/kind.yaml
diff --git a/content/zh/examples/pods/security/seccomp/profiles/audit.json b/content/zh-cn/examples/pods/security/seccomp/profiles/audit.json
similarity index 100%
rename from content/zh/examples/pods/security/seccomp/profiles/audit.json
rename to content/zh-cn/examples/pods/security/seccomp/profiles/audit.json
diff --git a/content/zh/examples/pods/security/seccomp/profiles/fine-grained.json b/content/zh-cn/examples/pods/security/seccomp/profiles/fine-grained.json
similarity index 100%
rename from content/zh/examples/pods/security/seccomp/profiles/fine-grained.json
rename to content/zh-cn/examples/pods/security/seccomp/profiles/fine-grained.json
diff --git a/content/zh/examples/pods/security/seccomp/profiles/violation.json b/content/zh-cn/examples/pods/security/seccomp/profiles/violation.json
similarity index 100%
rename from content/zh/examples/pods/security/seccomp/profiles/violation.json
rename to content/zh-cn/examples/pods/security/seccomp/profiles/violation.json
diff --git a/content/zh/examples/pods/security/security-context-2.yaml b/content/zh-cn/examples/pods/security/security-context-2.yaml
similarity index 100%
rename from content/zh/examples/pods/security/security-context-2.yaml
rename to content/zh-cn/examples/pods/security/security-context-2.yaml
diff --git a/content/zh/examples/pods/security/security-context-3.yaml b/content/zh-cn/examples/pods/security/security-context-3.yaml
similarity index 98%
rename from content/zh/examples/pods/security/security-context-3.yaml
rename to content/zh-cn/examples/pods/security/security-context-3.yaml
index 05295e1a03..d68b2a783e 100644
--- a/content/zh/examples/pods/security/security-context-3.yaml
+++ b/content/zh-cn/examples/pods/security/security-context-3.yaml
@@ -6,6 +6,3 @@ spec:
   containers:
   - name: sec-ctx-3
     image: gcr.io/google-samples/node-hello:1.0
-
-
-
diff --git a/content/zh/examples/pods/security/security-context-4.yaml b/content/zh-cn/examples/pods/security/security-context-4.yaml
similarity index 100%
rename from content/zh/examples/pods/security/security-context-4.yaml
rename to content/zh-cn/examples/pods/security/security-context-4.yaml
diff --git a/content/zh/examples/pods/security/security-context.yaml b/content/zh-cn/examples/pods/security/security-context.yaml
similarity index 94%
rename from content/zh/examples/pods/security/security-context.yaml
rename to content/zh-cn/examples/pods/security/security-context.yaml
index 35cb1eeebe..7903c39c64 100644
--- a/content/zh/examples/pods/security/security-context.yaml
+++ b/content/zh-cn/examples/pods/security/security-context.yaml
@@ -12,7 +12,7 @@ spec:
     emptyDir: {}
   containers:
   - name: sec-ctx-demo
-    image: busybox
+    image: busybox:1.28
     command: [ "sh", "-c", "sleep 1h" ]
     volumeMounts:
     - name: sec-ctx-vol
diff --git a/content/zh/examples/pods/share-process-namespace.yaml b/content/zh-cn/examples/pods/share-process-namespace.yaml
similarity index 91%
rename from content/zh/examples/pods/share-process-namespace.yaml
rename to content/zh-cn/examples/pods/share-process-namespace.yaml
index af812732a2..bd48bf0ff6 100644
--- a/content/zh/examples/pods/share-process-namespace.yaml
+++ b/content/zh-cn/examples/pods/share-process-namespace.yaml
@@ -8,7 +8,7 @@ spec:
   - name: nginx
     image: nginx
   - name: shell
-    image: busybox
+    image: busybox:1.28
     securityContext:
       capabilities:
         add:
diff --git a/content/zh-cn/examples/pods/simple-pod.yaml b/content/zh-cn/examples/pods/simple-pod.yaml
new file mode 100644
index 0000000000..0e79d8a3c6
--- /dev/null
+++ b/content/zh-cn/examples/pods/simple-pod.yaml
@@ -0,0 +1,10 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: nginx
+spec:
+  containers:
+  - name: nginx
+    image: nginx:1.14.2
+    ports:
+    - containerPort: 80
diff --git a/content/zh-cn/examples/pods/storage/projected-secret-downwardapi-configmap.yaml b/content/zh-cn/examples/pods/storage/projected-secret-downwardapi-configmap.yaml
new file mode 100644
index 0000000000..453dc08c0c
--- /dev/null
+++ b/content/zh-cn/examples/pods/storage/projected-secret-downwardapi-configmap.yaml
@@ -0,0 +1,35 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: volume-test
+spec:
+  containers:
+  - name: container-test
+    image: busybox:1.28
+    volumeMounts:
+    - name: all-in-one
+      mountPath: "/projected-volume"
+      readOnly: true
+  volumes:
+  - name: all-in-one
+    projected:
+      sources:
+      - secret:
+          name: mysecret
+          items:
+            - key: username
+              path: my-group/my-username
+      - downwardAPI:
+          items:
+            - path: "labels"
+              fieldRef:
+                fieldPath: metadata.labels
+            - path: "cpu_limit"
+              resourceFieldRef:
+                containerName: container-test
+                resource: limits.cpu
+      - configMap:
+          name: myconfigmap
+          items:
+            - key: config
+              path: my-group/my-config
diff --git a/content/zh-cn/examples/pods/storage/projected-secrets-nondefault-permission-mode.yaml b/content/zh-cn/examples/pods/storage/projected-secrets-nondefault-permission-mode.yaml
new file mode 100644
index 0000000000..b921fd93c5
--- /dev/null
+++ b/content/zh-cn/examples/pods/storage/projected-secrets-nondefault-permission-mode.yaml
@@ -0,0 +1,27 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: volume-test
+spec:
+  containers:
+  - name: container-test
+    image: busybox:1.28
+    volumeMounts:
+    - name: all-in-one
+      mountPath: "/projected-volume"
+      readOnly: true
+  volumes:
+  - name: all-in-one
+    projected:
+      sources:
+      - secret:
+          name: mysecret
+          items:
+            - key: username
+              path: my-group/my-username
+      - secret:
+          name: mysecret2
+          items:
+            - key: password
+              path: my-group/my-password
+              mode: 511
diff --git a/content/zh-cn/examples/pods/storage/projected-service-account-token.yaml b/content/zh-cn/examples/pods/storage/projected-service-account-token.yaml
new file mode 100644
index 0000000000..cc307659a7
--- /dev/null
+++ b/content/zh-cn/examples/pods/storage/projected-service-account-token.yaml
@@ -0,0 +1,21 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: sa-token-test
+spec:
+  containers:
+  - name: container-test
+    image: busybox:1.28
+    volumeMounts:
+    - name: token-vol
+      mountPath: "/service-account"
+      readOnly: true
+  serviceAccountName: default
+  volumes:
+  - name: token-vol
+    projected:
+      sources:
+      - serviceAccountToken:
+          audience: api
+          expirationSeconds: 3600
+          path: token
diff --git a/content/zh/examples/pods/storage/projected.yaml b/content/zh-cn/examples/pods/storage/projected.yaml
similarity index 94%
rename from content/zh/examples/pods/storage/projected.yaml
rename to content/zh-cn/examples/pods/storage/projected.yaml
index 172ca0dee5..4244048eb7 100644
--- a/content/zh/examples/pods/storage/projected.yaml
+++ b/content/zh-cn/examples/pods/storage/projected.yaml
@@ -5,7 +5,7 @@ metadata:
 spec:
   containers:
   - name: test-projected-volume
-    image: busybox
+    image: busybox:1.28
     args:
     - sleep
     - "86400"
diff --git a/content/zh/examples/pods/storage/pv-claim.yaml b/content/zh-cn/examples/pods/storage/pv-claim.yaml
similarity index 100%
rename from content/zh/examples/pods/storage/pv-claim.yaml
rename to content/zh-cn/examples/pods/storage/pv-claim.yaml
diff --git a/content/zh-cn/examples/pods/storage/pv-duplicate.yaml b/content/zh-cn/examples/pods/storage/pv-duplicate.yaml
new file mode 100644
index 0000000000..04bfe53fd9
--- /dev/null
+++ b/content/zh-cn/examples/pods/storage/pv-duplicate.yaml
@@ -0,0 +1,22 @@
+
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test
+spec:
+  containers:
+    - name: test
+      image: nginx
+      volumeMounts:
+        # 网站数据挂载
+        - name: config
+          mountPath: /usr/share/nginx/html
+          subPath: html
+        # Nginx 配置挂载
+        - name: config
+          mountPath: /etc/nginx/nginx.conf
+          subPath: nginx.conf
+  volumes:
+    - name: config
+      persistentVolumeClaim:
+        claimName: test-nfs-claim
diff --git a/content/zh/examples/pods/storage/pv-pod.yaml b/content/zh-cn/examples/pods/storage/pv-pod.yaml
similarity index 100%
rename from content/zh/examples/pods/storage/pv-pod.yaml
rename to content/zh-cn/examples/pods/storage/pv-pod.yaml
diff --git a/content/zh/examples/pods/storage/pv-volume.yaml b/content/zh-cn/examples/pods/storage/pv-volume.yaml
similarity index 100%
rename from content/zh/examples/pods/storage/pv-volume.yaml
rename to content/zh-cn/examples/pods/storage/pv-volume.yaml
diff --git a/content/zh/examples/pods/storage/redis.yaml b/content/zh-cn/examples/pods/storage/redis.yaml
similarity index 100%
rename from content/zh/examples/pods/storage/redis.yaml
rename to content/zh-cn/examples/pods/storage/redis.yaml
diff --git a/content/zh/examples/pods/topology-spread-constraints/one-constraint-with-nodeaffinity.yaml b/content/zh-cn/examples/pods/topology-spread-constraints/one-constraint-with-nodeaffinity.yaml
similarity index 100%
rename from content/zh/examples/pods/topology-spread-constraints/one-constraint-with-nodeaffinity.yaml
rename to content/zh-cn/examples/pods/topology-spread-constraints/one-constraint-with-nodeaffinity.yaml
diff --git a/content/zh/examples/pods/topology-spread-constraints/one-constraint.yaml b/content/zh-cn/examples/pods/topology-spread-constraints/one-constraint.yaml
similarity index 100%
rename from content/zh/examples/pods/topology-spread-constraints/one-constraint.yaml
rename to content/zh-cn/examples/pods/topology-spread-constraints/one-constraint.yaml
diff --git a/content/zh/examples/pods/topology-spread-constraints/two-constraints.yaml b/content/zh-cn/examples/pods/topology-spread-constraints/two-constraints.yaml
similarity index 100%
rename from content/zh/examples/pods/topology-spread-constraints/two-constraints.yaml
rename to content/zh-cn/examples/pods/topology-spread-constraints/two-constraints.yaml
diff --git a/content/zh/examples/pods/two-container-pod.yaml b/content/zh-cn/examples/pods/two-container-pod.yaml
similarity index 100%
rename from content/zh/examples/pods/two-container-pod.yaml
rename to content/zh-cn/examples/pods/two-container-pod.yaml
diff --git a/content/zh/examples/policy/baseline-psp.yaml b/content/zh-cn/examples/policy/baseline-psp.yaml
similarity index 63%
rename from content/zh/examples/policy/baseline-psp.yaml
rename to content/zh-cn/examples/policy/baseline-psp.yaml
index 36e440588b..43e83d7c24 100644
--- a/content/zh/examples/policy/baseline-psp.yaml
+++ b/content/zh-cn/examples/policy/baseline-psp.yaml
@@ -3,23 +3,19 @@ kind: PodSecurityPolicy
 metadata:
   name: baseline
   annotations:
-    # Optional: Allow the default AppArmor profile, requires setting the default.
+    # 可选：允许 default AppArmor 配置，需要设置 default 配置
     apparmor.security.beta.kubernetes.io/allowedProfileNames: 'runtime/default'
     apparmor.security.beta.kubernetes.io/defaultProfileName:  'runtime/default'
-    # Optional: Allow the default seccomp profile, requires setting the default.
-    seccomp.security.alpha.kubernetes.io/allowedProfileNames: 'docker/default,runtime/default,unconfined'
-    seccomp.security.alpha.kubernetes.io/defaultProfileName:  'unconfined'
+    seccomp.security.alpha.kubernetes.io/allowedProfileNames: '*'
 spec:
   privileged: false
-  # The moby default capability set, defined here:
-  # https://github.com/moby/moby/blob/0a5cec2833f82a6ad797d70acbf9cbbaf8956017/oci/caps/defaults.go#L6-L19
+  # 这是 moby 默认的权能集，去掉了 NET_RAW
   allowedCapabilities:
     - 'CHOWN'
     - 'DAC_OVERRIDE'
     - 'FSETID'
     - 'FOWNER'
     - 'MKNOD'
-    - 'NET_RAW'
     - 'SETGID'
     - 'SETUID'
     - 'SETFCAP'
@@ -28,23 +24,24 @@ spec:
     - 'SYS_CHROOT'
     - 'KILL'
     - 'AUDIT_WRITE'
-  # Allow all volume types except hostpath
+  # 允许除 hostpath 外的所有卷类型
   volumes:
-    # 'core' volume types
+    # 'core' 卷类型
     - 'configMap'
     - 'emptyDir'
     - 'projected'
     - 'secret'
     - 'downwardAPI'
-    # Assume that persistentVolumes set up by the cluster admin are safe to use.
+    # 假定集群管理员设置的临时 CSI 驱动和 persistentVolume 可以安全使用。
+    - 'csi'
     - 'persistentVolumeClaim'
-    # Allow all other non-hostpath volume types.
+    - 'ephemeral'
+    # 允许所有其他非 hostpath 的卷类型。
     - 'awsElasticBlockStore'
     - 'azureDisk'
     - 'azureFile'
     - 'cephFS'
     - 'cinder'
-    - 'csi'
     - 'fc'
     - 'flexVolume'
     - 'flocker'
@@ -67,6 +64,9 @@ spec:
   runAsUser:
     rule: 'RunAsAny'
   seLinux:
+    # 此策略假定节点正在使用 AppArmor 而不是 SELinux。
+    # PSP SELinux API 无法体现 Pod SELinux 安全标准，
+    # 因此如果使用 SELinux，你必须选择一个限制更多的默认值。
     rule: 'RunAsAny'
   supplementalGroups:
     rule: 'RunAsAny'
diff --git a/content/zh/examples/policy/example-psp.yaml b/content/zh-cn/examples/policy/example-psp.yaml
similarity index 70%
rename from content/zh/examples/policy/example-psp.yaml
rename to content/zh-cn/examples/policy/example-psp.yaml
index 7531949b65..b994c2a251 100644
--- a/content/zh/examples/policy/example-psp.yaml
+++ b/content/zh-cn/examples/policy/example-psp.yaml
@@ -3,8 +3,8 @@ kind: PodSecurityPolicy
 metadata:
   name: example
 spec:
-  privileged: false  # Don't allow privileged pods!
-  # The rest fills in some required fields.
+  privileged: false  # 不允许提权的 Pod！
+  # 以下内容负责填充一些必需字段。
   seLinux:
     rule: RunAsAny
   supplementalGroups:
diff --git a/content/zh-cn/examples/policy/priority-class-resourcequota.yaml b/content/zh-cn/examples/policy/priority-class-resourcequota.yaml
new file mode 100644
index 0000000000..7350d00c8f
--- /dev/null
+++ b/content/zh-cn/examples/policy/priority-class-resourcequota.yaml
@@ -0,0 +1,10 @@
+apiVersion: v1
+kind: ResourceQuota
+metadata:
+  name: pods-cluster-services
+spec:
+  scopeSelector:
+    matchExpressions:
+      - operator : In
+        scopeName: PriorityClass
+        values: ["cluster-services"]
\ No newline at end of file
diff --git a/content/zh/examples/policy/privileged-psp.yaml b/content/zh-cn/examples/policy/privileged-psp.yaml
similarity index 100%
rename from content/zh/examples/policy/privileged-psp.yaml
rename to content/zh-cn/examples/policy/privileged-psp.yaml
diff --git a/content/zh/examples/policy/restricted-psp.yaml b/content/zh-cn/examples/policy/restricted-psp.yaml
similarity index 61%
rename from content/zh/examples/policy/restricted-psp.yaml
rename to content/zh-cn/examples/policy/restricted-psp.yaml
index 4db57688b1..53dec3a1af 100644
--- a/content/zh/examples/policy/restricted-psp.yaml
+++ b/content/zh-cn/examples/policy/restricted-psp.yaml
@@ -3,46 +3,47 @@ kind: PodSecurityPolicy
 metadata:
   name: restricted
   annotations:
+    # docker/default 标识 seccomp 的配置文件，但它与 Docker 运行时没有特别关联
     seccomp.security.alpha.kubernetes.io/allowedProfileNames: 'docker/default,runtime/default'
     apparmor.security.beta.kubernetes.io/allowedProfileNames: 'runtime/default'
-    seccomp.security.alpha.kubernetes.io/defaultProfileName:  'runtime/default'
     apparmor.security.beta.kubernetes.io/defaultProfileName:  'runtime/default'
 spec:
   privileged: false
-  # Required to prevent escalations to root.
+  # 防止权限升级到 root
   allowPrivilegeEscalation: false
-  # This is redundant with non-root + disallow privilege escalation,
-  # but we can provide it for defense in depth.
   requiredDropCapabilities:
     - ALL
-  # Allow core volume types.
+  # 允许的核心卷类型.
   volumes:
     - 'configMap'
     - 'emptyDir'
     - 'projected'
     - 'secret'
     - 'downwardAPI'
-    # Assume that persistentVolumes set up by the cluster admin are safe to use.
+    # 假设集群管理员设置的临时 CSI 驱动程序和持久卷可以安全使用
+    - 'csi'
     - 'persistentVolumeClaim'
+    - 'ephemeral'
   hostNetwork: false
   hostIPC: false
   hostPID: false
   runAsUser:
-    # Require the container to run without root privileges.
+    # 要求容器在没有 root 权限的情况下运行
     rule: 'MustRunAsNonRoot'
   seLinux:
-    # This policy assumes the nodes are using AppArmor rather than SELinux.
+    # 此策略假定节点使用 AppArmor 而不是 SELinux
     rule: 'RunAsAny'
   supplementalGroups:
     rule: 'MustRunAs'
     ranges:
-      # Forbid adding the root group.
+      # 禁止添加 root 组
       - min: 1
         max: 65535
   fsGroup:
     rule: 'MustRunAs'
     ranges:
-      # Forbid adding the root group.
+      # 禁止添加 root 组
       - min: 1
         max: 65535
   readOnlyRootFilesystem: false
+
diff --git a/content/zh/examples/policy/zookeeper-pod-disruption-budget-maxunavailable.yaml b/content/zh-cn/examples/policy/zookeeper-pod-disruption-budget-maxunavailable.yaml
similarity index 82%
rename from content/zh/examples/policy/zookeeper-pod-disruption-budget-maxunavailable.yaml
rename to content/zh-cn/examples/policy/zookeeper-pod-disruption-budget-maxunavailable.yaml
index a62bef140f..ef0b8645ba 100644
--- a/content/zh/examples/policy/zookeeper-pod-disruption-budget-maxunavailable.yaml
+++ b/content/zh-cn/examples/policy/zookeeper-pod-disruption-budget-maxunavailable.yaml
@@ -1,4 +1,4 @@
-apiVersion: policy/v1beta1
+apiVersion: policy/v1
 kind: PodDisruptionBudget
 metadata:
   name: zk-pdb
diff --git a/content/zh/examples/policy/zookeeper-pod-disruption-budget-minavailable.yaml b/content/zh-cn/examples/policy/zookeeper-pod-disruption-budget-minavailable.yaml
similarity index 82%
rename from content/zh/examples/policy/zookeeper-pod-disruption-budget-minavailable.yaml
rename to content/zh-cn/examples/policy/zookeeper-pod-disruption-budget-minavailable.yaml
index c4776ad4c0..49a66ee669 100644
--- a/content/zh/examples/policy/zookeeper-pod-disruption-budget-minavailable.yaml
+++ b/content/zh-cn/examples/policy/zookeeper-pod-disruption-budget-minavailable.yaml
@@ -1,4 +1,4 @@
-apiVersion: policy/v1beta1
+apiVersion: policy/v1
 kind: PodDisruptionBudget
 metadata:
   name: zk-pdb
diff --git a/content/zh/examples/priority-and-fairness/health-for-strangers.yaml b/content/zh-cn/examples/priority-and-fairness/health-for-strangers.yaml
similarity index 87%
rename from content/zh/examples/priority-and-fairness/health-for-strangers.yaml
rename to content/zh-cn/examples/priority-and-fairness/health-for-strangers.yaml
index 79ee80ab17..c57e2cae37 100644
--- a/content/zh/examples/priority-and-fairness/health-for-strangers.yaml
+++ b/content/zh-cn/examples/priority-and-fairness/health-for-strangers.yaml
@@ -1,4 +1,4 @@
-apiVersion: flowcontrol.apiserver.k8s.io/v1alpha1
+apiVersion: flowcontrol.apiserver.k8s.io/v1beta2
 kind: FlowSchema
 metadata:
   name: health-for-strangers
diff --git a/content/zh-cn/examples/security/kind-with-cluster-level-baseline-pod-security.sh b/content/zh-cn/examples/security/kind-with-cluster-level-baseline-pod-security.sh
new file mode 100644
index 0000000000..15017d868b
--- /dev/null
+++ b/content/zh-cn/examples/security/kind-with-cluster-level-baseline-pod-security.sh
@@ -0,0 +1,70 @@
+#!/bin/sh
+mkdir -p /tmp/pss
+cat <<EOF > /tmp/pss/cluster-level-pss.yaml
+apiVersion: apiserver.config.k8s.io/v1
+kind: AdmissionConfiguration
+plugins:
+- name: PodSecurity
+  configuration:
+    apiVersion: pod-security.admission.config.k8s.io/v1beta1
+    kind: PodSecurityConfiguration
+    defaults:
+      enforce: "baseline"
+      enforce-version: "latest"
+      audit: "restricted"
+      audit-version: "latest"
+      warn: "restricted"
+      warn-version: "latest"
+    exemptions:
+      usernames: []
+      runtimeClasses: []
+      namespaces: [kube-system]
+EOF
+cat <<EOF > /tmp/pss/cluster-config.yaml
+kind: Cluster
+apiVersion: kind.x-k8s.io/v1alpha4
+nodes:
+- role: control-plane
+  kubeadmConfigPatches:
+  - |
+    kind: ClusterConfiguration
+    apiServer:
+        extraArgs:
+          admission-control-config-file: /etc/config/cluster-level-pss.yaml
+        extraVolumes:
+          - name: accf
+            hostPath: /etc/config
+            mountPath: /etc/config
+            readOnly: false
+            pathType: "DirectoryOrCreate"
+  extraMounts:
+  - hostPath: /tmp/pss
+    containerPath: /etc/config
+    # optional: if set, the mount is read-only.
+    # default false
+    readOnly: false
+    # optional: if set, the mount needs SELinux relabeling.
+    # default false
+    selinuxRelabel: false
+    # optional: set propagation mode (None, HostToContainer or Bidirectional)
+    # see https://kubernetes.io/docs/concepts/storage/volumes/#mount-propagation
+    # default None
+    propagation: None
+EOF
+kind create cluster --name psa-with-cluster-pss --image kindest/node:v1.23.0 --config /tmp/pss/cluster-config.yaml
+kubectl cluster-info --context kind-psa-with-cluster-pss
+# 等待 15 秒（任意）ServiceAccount 准入控制器可用
+sleep 15
+cat <<EOF > /tmp/pss/nginx-pod.yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: nginx
+spec:
+  containers:
+    - image: nginx
+      name: nginx
+      ports:
+        - containerPort: 80
+EOF
+kubectl apply -f /tmp/pss/nginx-pod.yaml
diff --git a/content/zh-cn/examples/security/kind-with-namespace-level-baseline-pod-security.sh b/content/zh-cn/examples/security/kind-with-namespace-level-baseline-pod-security.sh
new file mode 100644
index 0000000000..278978753c
--- /dev/null
+++ b/content/zh-cn/examples/security/kind-with-namespace-level-baseline-pod-security.sh
@@ -0,0 +1,28 @@
+#!/bin/sh
+# 直到 v1.23 发布，kind 节点镜像需要从 k/k master 分支构建
+# 参考：https://kind.sigs.k8s.io/docs/user/quick-start/#building-images
+kind create cluster --name psa-ns-level --image kindest/node:v1.23.0
+kubectl cluster-info --context kind-psa-ns-level
+# 等待 15 秒（任意）ServiceAccount 准入控制器可用
+sleep 15
+kubectl create ns example
+kubectl label --overwrite ns example \
+  pod-security.kubernetes.io/enforce=baseline \
+  pod-security.kubernetes.io/enforce-version=latest \
+  pod-security.kubernetes.io/warn=restricted \
+  pod-security.kubernetes.io/warn-version=latest \
+  pod-security.kubernetes.io/audit=restricted \
+  pod-security.kubernetes.io/audit-version=latest
+cat <<EOF > /tmp/pss/nginx-pod.yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: nginx
+spec:
+  containers:
+    - image: nginx
+      name: nginx
+      ports:
+        - containerPort: 80
+EOF
+kubectl apply -n example -f /tmp/pss/nginx-pod.yaml
diff --git a/content/zh-cn/examples/security/podsecurity-baseline.yaml b/content/zh-cn/examples/security/podsecurity-baseline.yaml
new file mode 100644
index 0000000000..6251af5d2f
--- /dev/null
+++ b/content/zh-cn/examples/security/podsecurity-baseline.yaml
@@ -0,0 +1,9 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: my-baseline-namespace
+  labels:
+    pod-security.kubernetes.io/enforce: baseline
+    pod-security.kubernetes.io/enforce-version: latest
+    pod-security.kubernetes.io/warn: baseline
+    pod-security.kubernetes.io/warn-version: latest
\ No newline at end of file
diff --git a/content/zh-cn/examples/security/podsecurity-privileged.yaml b/content/zh-cn/examples/security/podsecurity-privileged.yaml
new file mode 100644
index 0000000000..12471cce28
--- /dev/null
+++ b/content/zh-cn/examples/security/podsecurity-privileged.yaml
@@ -0,0 +1,7 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: my-privileged-namespace
+  labels:
+    pod-security.kubernetes.io/enforce: privileged
+    pod-security.kubernetes.io/enforce-version: latest
\ No newline at end of file
diff --git a/content/zh-cn/examples/security/podsecurity-restricted.yaml b/content/zh-cn/examples/security/podsecurity-restricted.yaml
new file mode 100644
index 0000000000..8b9c30886d
--- /dev/null
+++ b/content/zh-cn/examples/security/podsecurity-restricted.yaml
@@ -0,0 +1,9 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: my-restricted-namespace
+  labels:
+    pod-security.kubernetes.io/enforce: restricted
+    pod-security.kubernetes.io/enforce-version: latest
+    pod-security.kubernetes.io/warn: restricted
+    pod-security.kubernetes.io/warn-version: latest
\ No newline at end of file
diff --git a/content/zh/examples/service/access/Dockerfile b/content/zh-cn/examples/service/access/Dockerfile
similarity index 57%
rename from content/zh/examples/service/access/Dockerfile
rename to content/zh-cn/examples/service/access/Dockerfile
index b7b09d492a..75a0fd63a9 100644
--- a/content/zh/examples/service/access/Dockerfile
+++ b/content/zh-cn/examples/service/access/Dockerfile
@@ -1,4 +1,4 @@
 FROM nginx:1.17.3
 
 RUN rm /etc/nginx/conf.d/default.conf
-COPY frontend.conf /etc/nginx/conf.d
+COPY frontend-nginx.conf /etc/nginx/conf.d
\ No newline at end of file
diff --git a/content/zh/examples/service/access/backend-deployment.yaml b/content/zh-cn/examples/service/access/backend-deployment.yaml
similarity index 100%
rename from content/zh/examples/service/access/backend-deployment.yaml
rename to content/zh-cn/examples/service/access/backend-deployment.yaml
diff --git a/content/zh/examples/service/access/backend-service.yaml b/content/zh-cn/examples/service/access/backend-service.yaml
similarity index 100%
rename from content/zh/examples/service/access/backend-service.yaml
rename to content/zh-cn/examples/service/access/backend-service.yaml
diff --git a/content/zh/examples/service/access/frontend-deployment.yaml b/content/zh-cn/examples/service/access/frontend-deployment.yaml
similarity index 100%
rename from content/zh/examples/service/access/frontend-deployment.yaml
rename to content/zh-cn/examples/service/access/frontend-deployment.yaml
diff --git a/content/zh-cn/examples/service/access/frontend-nginx.conf b/content/zh-cn/examples/service/access/frontend-nginx.conf
new file mode 100644
index 0000000000..14f4f025c6
--- /dev/null
+++ b/content/zh-cn/examples/service/access/frontend-nginx.conf
@@ -0,0 +1,14 @@
+# Backend 是 nginx 的内部标识符，用于命名以下特定的 upstream
+upstream Backend {
+    # hello 是 Kubernetes 中的后端服务所使用的内部 DNS 名称
+    server hello;
+}
+
+server {
+    listen 80;
+
+    location / {
+        # 以下语句将流量通过代理方式转发到名为 Backend 的上游
+        proxy_pass http://Backend;
+    }
+}
diff --git a/content/zh/examples/service/access/frontend-service.yaml b/content/zh-cn/examples/service/access/frontend-service.yaml
similarity index 100%
rename from content/zh/examples/service/access/frontend-service.yaml
rename to content/zh-cn/examples/service/access/frontend-service.yaml
diff --git a/content/zh/examples/service/access/hello-application.yaml b/content/zh-cn/examples/service/access/hello-application.yaml
similarity index 100%
rename from content/zh/examples/service/access/hello-application.yaml
rename to content/zh-cn/examples/service/access/hello-application.yaml
diff --git a/content/zh/examples/service/load-balancer-example.yaml b/content/zh-cn/examples/service/load-balancer-example.yaml
similarity index 100%
rename from content/zh/examples/service/load-balancer-example.yaml
rename to content/zh-cn/examples/service/load-balancer-example.yaml
diff --git a/content/zh/examples/service/networking/curlpod.yaml b/content/zh-cn/examples/service/networking/curlpod.yaml
similarity index 100%
rename from content/zh/examples/service/networking/curlpod.yaml
rename to content/zh-cn/examples/service/networking/curlpod.yaml
diff --git a/content/zh/examples/service/networking/custom-dns.yaml b/content/zh-cn/examples/service/networking/custom-dns.yaml
similarity index 100%
rename from content/zh/examples/service/networking/custom-dns.yaml
rename to content/zh-cn/examples/service/networking/custom-dns.yaml
diff --git a/content/zh-cn/examples/service/networking/default-ingressclass.yaml b/content/zh-cn/examples/service/networking/default-ingressclass.yaml
new file mode 100644
index 0000000000..0602ad8c9d
--- /dev/null
+++ b/content/zh-cn/examples/service/networking/default-ingressclass.yaml
@@ -0,0 +1,10 @@
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+  name: nginx-example
+  annotations:
+    ingressclass.kubernetes.io/is-default-class: "true"
+spec:
+  controller: k8s.io/ingress-nginx
diff --git a/content/zh/examples/service/networking/dual-stack-default-svc.yaml b/content/zh-cn/examples/service/networking/dual-stack-default-svc.yaml
similarity index 65%
rename from content/zh/examples/service/networking/dual-stack-default-svc.yaml
rename to content/zh-cn/examples/service/networking/dual-stack-default-svc.yaml
index 86eadd5478..a42c7d8a25 100644
--- a/content/zh/examples/service/networking/dual-stack-default-svc.yaml
+++ b/content/zh-cn/examples/service/networking/dual-stack-default-svc.yaml
@@ -3,10 +3,10 @@ kind: Service
 metadata:
   name: my-service
   labels:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
 spec:
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   ports:
     - protocol: TCP
       port: 80
diff --git a/content/zh/examples/service/networking/dual-stack-ipfamilies-ipv6.yaml b/content/zh-cn/examples/service/networking/dual-stack-ipfamilies-ipv6.yaml
similarity index 69%
rename from content/zh/examples/service/networking/dual-stack-ipfamilies-ipv6.yaml
rename to content/zh-cn/examples/service/networking/dual-stack-ipfamilies-ipv6.yaml
index 7c7239cae6..77949c883f 100644
--- a/content/zh/examples/service/networking/dual-stack-ipfamilies-ipv6.yaml
+++ b/content/zh-cn/examples/service/networking/dual-stack-ipfamilies-ipv6.yaml
@@ -3,12 +3,12 @@ kind: Service
 metadata:
   name: my-service
   labels:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
 spec:
   ipFamilies:
   - IPv6
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   ports:
     - protocol: TCP
       port: 80
diff --git a/content/zh/examples/service/networking/dual-stack-ipv6-svc.yaml b/content/zh-cn/examples/service/networking/dual-stack-ipv6-svc.yaml
similarity index 70%
rename from content/zh/examples/service/networking/dual-stack-ipv6-svc.yaml
rename to content/zh-cn/examples/service/networking/dual-stack-ipv6-svc.yaml
index 2aa0725059..85c699506c 100644
--- a/content/zh/examples/service/networking/dual-stack-ipv6-svc.yaml
+++ b/content/zh-cn/examples/service/networking/dual-stack-ipv6-svc.yaml
@@ -5,7 +5,7 @@ metadata:
 spec:
   ipFamily: IPv6
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   ports:
     - protocol: TCP
       port: 80
diff --git a/content/zh/examples/service/networking/dual-stack-prefer-ipv6-lb-svc.yaml b/content/zh-cn/examples/service/networking/dual-stack-prefer-ipv6-lb-svc.yaml
similarity index 75%
rename from content/zh/examples/service/networking/dual-stack-prefer-ipv6-lb-svc.yaml
rename to content/zh-cn/examples/service/networking/dual-stack-prefer-ipv6-lb-svc.yaml
index 0949a75428..5a4a99a45c 100644
--- a/content/zh/examples/service/networking/dual-stack-prefer-ipv6-lb-svc.yaml
+++ b/content/zh-cn/examples/service/networking/dual-stack-prefer-ipv6-lb-svc.yaml
@@ -3,14 +3,14 @@ kind: Service
 metadata:
   name: my-service
   labels:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
 spec:
   ipFamilyPolicy: PreferDualStack
   ipFamilies:
   - IPv6
   type: LoadBalancer
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   ports:
     - protocol: TCP
       port: 80
diff --git a/content/zh/examples/service/networking/dual-stack-preferred-ipfamilies-svc.yaml b/content/zh-cn/examples/service/networking/dual-stack-preferred-ipfamilies-svc.yaml
similarity index 74%
rename from content/zh/examples/service/networking/dual-stack-preferred-ipfamilies-svc.yaml
rename to content/zh-cn/examples/service/networking/dual-stack-preferred-ipfamilies-svc.yaml
index c31acfec58..79a4f34a7f 100644
--- a/content/zh/examples/service/networking/dual-stack-preferred-ipfamilies-svc.yaml
+++ b/content/zh-cn/examples/service/networking/dual-stack-preferred-ipfamilies-svc.yaml
@@ -3,14 +3,14 @@ kind: Service
 metadata:
   name: my-service
   labels:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
 spec:
   ipFamilyPolicy: PreferDualStack
   ipFamilies:
   - IPv6
   - IPv4
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   ports:
     - protocol: TCP
       port: 80
diff --git a/content/zh/examples/service/networking/dual-stack-preferred-svc.yaml b/content/zh-cn/examples/service/networking/dual-stack-preferred-svc.yaml
similarity index 70%
rename from content/zh/examples/service/networking/dual-stack-preferred-svc.yaml
rename to content/zh-cn/examples/service/networking/dual-stack-preferred-svc.yaml
index 8fb5bfa3d3..66d42b9612 100644
--- a/content/zh/examples/service/networking/dual-stack-preferred-svc.yaml
+++ b/content/zh-cn/examples/service/networking/dual-stack-preferred-svc.yaml
@@ -3,11 +3,11 @@ kind: Service
 metadata:
   name: my-service
   labels:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
 spec:
   ipFamilyPolicy: PreferDualStack
   selector:
-    app: MyApp
+    app.kubernetes.io/name: MyApp
   ports:
     - protocol: TCP
       port: 80
diff --git a/content/zh-cn/examples/service/networking/example-ingress.yaml b/content/zh-cn/examples/service/networking/example-ingress.yaml
new file mode 100644
index 0000000000..b309d13275
--- /dev/null
+++ b/content/zh-cn/examples/service/networking/example-ingress.yaml
@@ -0,0 +1,18 @@
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: example-ingress
+  annotations:
+    nginx.ingress.kubernetes.io/rewrite-target: /$1
+spec:
+  rules:
+    - host: hello-world.info
+      http:
+        paths:
+          - path: /
+            pathType: Prefix
+            backend:
+              service:
+                name: web
+                port:
+                  number: 8080
\ No newline at end of file
diff --git a/content/zh/examples/service/networking/external-lb.yaml b/content/zh-cn/examples/service/networking/external-lb.yaml
similarity index 100%
rename from content/zh/examples/service/networking/external-lb.yaml
rename to content/zh-cn/examples/service/networking/external-lb.yaml
diff --git a/content/zh/examples/service/networking/hostaliases-pod.yaml b/content/zh-cn/examples/service/networking/hostaliases-pod.yaml
similarity index 93%
rename from content/zh/examples/service/networking/hostaliases-pod.yaml
rename to content/zh-cn/examples/service/networking/hostaliases-pod.yaml
index 643813b34a..268bffbbf5 100644
--- a/content/zh/examples/service/networking/hostaliases-pod.yaml
+++ b/content/zh-cn/examples/service/networking/hostaliases-pod.yaml
@@ -15,7 +15,7 @@ spec:
     - "bar.remote"
   containers:
   - name: cat-hosts
-    image: busybox
+    image: busybox:1.28
     command:
     - cat
     args:
diff --git a/content/zh/examples/service/networking/ingress-resource-backend.yaml b/content/zh-cn/examples/service/networking/ingress-resource-backend.yaml
similarity index 100%
rename from content/zh/examples/service/networking/ingress-resource-backend.yaml
rename to content/zh-cn/examples/service/networking/ingress-resource-backend.yaml
diff --git a/content/zh/examples/service/networking/ingress-wildcard-host.yaml b/content/zh-cn/examples/service/networking/ingress-wildcard-host.yaml
similarity index 100%
rename from content/zh/examples/service/networking/ingress-wildcard-host.yaml
rename to content/zh-cn/examples/service/networking/ingress-wildcard-host.yaml
diff --git a/content/zh/examples/service/networking/minimal-ingress.yaml b/content/zh-cn/examples/service/networking/minimal-ingress.yaml
similarity index 90%
rename from content/zh/examples/service/networking/minimal-ingress.yaml
rename to content/zh-cn/examples/service/networking/minimal-ingress.yaml
index 76640b9447..55a5837510 100644
--- a/content/zh/examples/service/networking/minimal-ingress.yaml
+++ b/content/zh-cn/examples/service/networking/minimal-ingress.yaml
@@ -5,6 +5,7 @@ metadata:
   annotations:
     nginx.ingress.kubernetes.io/rewrite-target: /
 spec:
+  ingressClassName: nginx-example
   rules:
   - http:
       paths:
diff --git a/content/zh/examples/service/networking/name-virtual-host-ingress-no-third-host.yaml b/content/zh-cn/examples/service/networking/name-virtual-host-ingress-no-third-host.yaml
similarity index 100%
rename from content/zh/examples/service/networking/name-virtual-host-ingress-no-third-host.yaml
rename to content/zh-cn/examples/service/networking/name-virtual-host-ingress-no-third-host.yaml
diff --git a/content/zh/examples/service/networking/name-virtual-host-ingress.yaml b/content/zh-cn/examples/service/networking/name-virtual-host-ingress.yaml
similarity index 100%
rename from content/zh/examples/service/networking/name-virtual-host-ingress.yaml
rename to content/zh-cn/examples/service/networking/name-virtual-host-ingress.yaml
diff --git a/content/zh/examples/service/networking/namespaced-params.yaml b/content/zh-cn/examples/service/networking/namespaced-params.yaml
similarity index 100%
rename from content/zh/examples/service/networking/namespaced-params.yaml
rename to content/zh-cn/examples/service/networking/namespaced-params.yaml
diff --git a/content/zh/examples/service/networking/network-policy-allow-all-egress.yaml b/content/zh-cn/examples/service/networking/network-policy-allow-all-egress.yaml
similarity index 100%
rename from content/zh/examples/service/networking/network-policy-allow-all-egress.yaml
rename to content/zh-cn/examples/service/networking/network-policy-allow-all-egress.yaml
diff --git a/content/zh/examples/service/networking/network-policy-allow-all-ingress.yaml b/content/zh-cn/examples/service/networking/network-policy-allow-all-ingress.yaml
similarity index 100%
rename from content/zh/examples/service/networking/network-policy-allow-all-ingress.yaml
rename to content/zh-cn/examples/service/networking/network-policy-allow-all-ingress.yaml
diff --git a/content/zh/examples/service/networking/network-policy-default-deny-all.yaml b/content/zh-cn/examples/service/networking/network-policy-default-deny-all.yaml
similarity index 100%
rename from content/zh/examples/service/networking/network-policy-default-deny-all.yaml
rename to content/zh-cn/examples/service/networking/network-policy-default-deny-all.yaml
diff --git a/content/zh/examples/service/networking/network-policy-default-deny-egress.yaml b/content/zh-cn/examples/service/networking/network-policy-default-deny-egress.yaml
similarity index 100%
rename from content/zh/examples/service/networking/network-policy-default-deny-egress.yaml
rename to content/zh-cn/examples/service/networking/network-policy-default-deny-egress.yaml
diff --git a/content/zh/examples/service/networking/network-policy-default-deny-ingress.yaml b/content/zh-cn/examples/service/networking/network-policy-default-deny-ingress.yaml
similarity index 100%
rename from content/zh/examples/service/networking/network-policy-default-deny-ingress.yaml
rename to content/zh-cn/examples/service/networking/network-policy-default-deny-ingress.yaml
diff --git a/content/zh-cn/examples/service/networking/networkpolicy.yaml b/content/zh-cn/examples/service/networking/networkpolicy.yaml
new file mode 100644
index 0000000000..e91eed2f67
--- /dev/null
+++ b/content/zh-cn/examples/service/networking/networkpolicy.yaml
@@ -0,0 +1,35 @@
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: test-network-policy
+  namespace: default
+spec:
+  podSelector:
+    matchLabels:
+      role: db
+  policyTypes:
+    - Ingress
+    - Egress
+  ingress:
+    - from:
+        - ipBlock:
+            cidr: 172.17.0.0/16
+            except:
+              - 172.17.1.0/24
+        - namespaceSelector:
+            matchLabels:
+              project: myproject
+        - podSelector:
+            matchLabels:
+              role: frontend
+      ports:
+        - protocol: TCP
+          port: 6379
+  egress:
+    - to:
+        - ipBlock:
+            cidr: 10.0.0.0/24
+      ports:
+        - protocol: TCP
+          port: 5978
+
diff --git a/content/zh/examples/service/networking/nginx-policy.yaml b/content/zh-cn/examples/service/networking/nginx-policy.yaml
similarity index 100%
rename from content/zh/examples/service/networking/nginx-policy.yaml
rename to content/zh-cn/examples/service/networking/nginx-policy.yaml
diff --git a/content/zh/examples/service/networking/nginx-secure-app.yaml b/content/zh-cn/examples/service/networking/nginx-secure-app.yaml
similarity index 100%
rename from content/zh/examples/service/networking/nginx-secure-app.yaml
rename to content/zh-cn/examples/service/networking/nginx-secure-app.yaml
diff --git a/content/zh/examples/service/networking/nginx-svc.yaml b/content/zh-cn/examples/service/networking/nginx-svc.yaml
similarity index 100%
rename from content/zh/examples/service/networking/nginx-svc.yaml
rename to content/zh-cn/examples/service/networking/nginx-svc.yaml
diff --git a/content/zh/examples/service/networking/run-my-nginx.yaml b/content/zh-cn/examples/service/networking/run-my-nginx.yaml
similarity index 100%
rename from content/zh/examples/service/networking/run-my-nginx.yaml
rename to content/zh-cn/examples/service/networking/run-my-nginx.yaml
diff --git a/content/zh/examples/service/networking/simple-fanout-example.yaml b/content/zh-cn/examples/service/networking/simple-fanout-example.yaml
similarity index 100%
rename from content/zh/examples/service/networking/simple-fanout-example.yaml
rename to content/zh-cn/examples/service/networking/simple-fanout-example.yaml
diff --git a/content/zh/examples/service/networking/test-ingress.yaml b/content/zh-cn/examples/service/networking/test-ingress.yaml
similarity index 100%
rename from content/zh/examples/service/networking/test-ingress.yaml
rename to content/zh-cn/examples/service/networking/test-ingress.yaml
diff --git a/content/zh/examples/service/networking/tls-example-ingress.yaml b/content/zh-cn/examples/service/networking/tls-example-ingress.yaml
similarity index 100%
rename from content/zh/examples/service/networking/tls-example-ingress.yaml
rename to content/zh-cn/examples/service/networking/tls-example-ingress.yaml
diff --git a/content/zh-cn/examples/service/nginx-service.yaml b/content/zh-cn/examples/service/nginx-service.yaml
new file mode 100644
index 0000000000..e158e0e4b7
--- /dev/null
+++ b/content/zh-cn/examples/service/nginx-service.yaml
@@ -0,0 +1,15 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: nginx-service
+spec:
+  ports:
+  - port: 8000 # 在每个 Pod 的容器上要使用的端口；
+    # 服务将在此端口上运行，接受连接。
+    # 端口可以是一个名称（例如：“www”）或一个数字（例如：80）
+    targetPort: 80
+    protocol: TCP
+  # 就像 Deployment 中的选择算符，
+  # 但这里用于识别要对流量进行负载均衡的 Pod 集合。
+  selector:
+    app: nginx
diff --git a/content/zh-cn/examples/tls/server-signing-config.json b/content/zh-cn/examples/tls/server-signing-config.json
new file mode 100644
index 0000000000..86860d7369
--- /dev/null
+++ b/content/zh-cn/examples/tls/server-signing-config.json
@@ -0,0 +1,15 @@
+{
+    "signing": {
+        "default": {
+            "usages": [
+                "digital signature",
+                "key encipherment",
+                "server auth"
+            ],
+            "expiry": "876000h",
+            "ca_constraint": {
+                "is_ca": false
+            }
+        }
+    }
+}
\ No newline at end of file
diff --git a/content/zh/examples/windows/configmap-pod.yaml b/content/zh-cn/examples/windows/configmap-pod.yaml
similarity index 100%
rename from content/zh/examples/windows/configmap-pod.yaml
rename to content/zh-cn/examples/windows/configmap-pod.yaml
diff --git a/content/zh/examples/windows/daemonset.yaml b/content/zh-cn/examples/windows/daemonset.yaml
similarity index 100%
rename from content/zh/examples/windows/daemonset.yaml
rename to content/zh-cn/examples/windows/daemonset.yaml
diff --git a/content/zh/examples/windows/deploy-hyperv.yaml b/content/zh-cn/examples/windows/deploy-hyperv.yaml
similarity index 100%
rename from content/zh/examples/windows/deploy-hyperv.yaml
rename to content/zh-cn/examples/windows/deploy-hyperv.yaml
diff --git a/content/zh/examples/windows/deploy-resource.yaml b/content/zh-cn/examples/windows/deploy-resource.yaml
similarity index 100%
rename from content/zh/examples/windows/deploy-resource.yaml
rename to content/zh-cn/examples/windows/deploy-resource.yaml
diff --git a/content/zh/examples/windows/emptydir-pod.yaml b/content/zh-cn/examples/windows/emptydir-pod.yaml
similarity index 100%
rename from content/zh/examples/windows/emptydir-pod.yaml
rename to content/zh-cn/examples/windows/emptydir-pod.yaml
diff --git a/content/zh/examples/windows/hostpath-volume-pod.yaml b/content/zh-cn/examples/windows/hostpath-volume-pod.yaml
similarity index 100%
rename from content/zh/examples/windows/hostpath-volume-pod.yaml
rename to content/zh-cn/examples/windows/hostpath-volume-pod.yaml
diff --git a/content/zh/examples/windows/run-as-username-container.yaml b/content/zh-cn/examples/windows/run-as-username-container.yaml
similarity index 100%
rename from content/zh/examples/windows/run-as-username-container.yaml
rename to content/zh-cn/examples/windows/run-as-username-container.yaml
diff --git a/content/zh/examples/windows/run-as-username-pod.yaml b/content/zh-cn/examples/windows/run-as-username-pod.yaml
similarity index 100%
rename from content/zh/examples/windows/run-as-username-pod.yaml
rename to content/zh-cn/examples/windows/run-as-username-pod.yaml
diff --git a/content/zh/examples/windows/secret-pod.yaml b/content/zh-cn/examples/windows/secret-pod.yaml
similarity index 100%
rename from content/zh/examples/windows/secret-pod.yaml
rename to content/zh-cn/examples/windows/secret-pod.yaml
diff --git a/content/zh/examples/windows/simple-pod.yaml b/content/zh-cn/examples/windows/simple-pod.yaml
similarity index 100%
rename from content/zh/examples/windows/simple-pod.yaml
rename to content/zh-cn/examples/windows/simple-pod.yaml
diff --git a/content/zh-cn/includes/default-storage-class-prereqs.md b/content/zh-cn/includes/default-storage-class-prereqs.md
new file mode 100644
index 0000000000..0dbea685dc
--- /dev/null
+++ b/content/zh-cn/includes/default-storage-class-prereqs.md
@@ -0,0 +1,12 @@
+你需要有一个带有默认 [StorageClass](/zh-cn/docs/concepts/storage/storage-classes/)的
+[动态 PersistentVolume 供应程序](/zh-cn/docs/concepts/storage/dynamic-provisioning/)，
+或者自己[静态的提供 PersistentVolume](/zh-cn/docs/concepts/storage/persistent-volumes/#provisioning)
+来满足这里使用的 [PersistentVolumeClaim](/zh-cn/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims)。
+
+<!--
+You need to either have a [dynamic PersistentVolume provisioner](/docs/concepts/storage/dynamic-provisioning/) with a default
+[StorageClass](/docs/concepts/storage/storage-classes/),
+or [statically provision PersistentVolumes](/docs/concepts/storage/persistent-volumes/#provisioning)
+yourself to satisfy the [PersistentVolumeClaims](/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims)
+used here.
+-->
diff --git a/content/zh/includes/federation-deprecation-warning-note.md b/content/zh-cn/includes/federation-deprecation-warning-note.md
similarity index 100%
rename from content/zh/includes/federation-deprecation-warning-note.md
rename to content/zh-cn/includes/federation-deprecation-warning-note.md
diff --git a/content/zh/includes/index.md b/content/zh-cn/includes/index.md
similarity index 100%
rename from content/zh/includes/index.md
rename to content/zh-cn/includes/index.md
diff --git a/content/zh-cn/includes/partner-style.css b/content/zh-cn/includes/partner-style.css
new file mode 100644
index 0000000000..dc120872e0
--- /dev/null
+++ b/content/zh-cn/includes/partner-style.css
@@ -0,0 +1,201 @@
+/*  SECTIONS  */
+.section {
+	clear: both;
+	padding: 0px;
+	margin-bottom: 2em;
+}
+
+.kcsp_section {
+	clear: both;
+	padding: 0px;
+	margin-bottom: 2em;
+}
+
+/*  COLUMN SETUP  */
+.col {
+	display: block;
+	float:left;
+	margin: 1% 0 1% 1.6%;
+	background-color: #f9f9f9;
+}
+.col:first-child { margin-left: 0; }
+
+
+/*  GROUPING  */
+.group:before,
+.group:after {
+	content:"";
+	display:table;
+}
+.group:after {
+	clear:both;
+}
+.group {
+    zoom:1; /* For IE 6/7 */
+}
+
+/*  GRID OF THREE  */
+.span_3_of_3 {
+	width: 35%;
+	background-color: #f9f9f9;
+	padding: 20px;
+}
+.span_2_of_3 {
+	width: 35%;
+	background-color: #f9f9f9;
+	padding: 20px;
+}
+.span_1_of_3 {
+	width: 35%;
+	background-color: #f9f9f9;
+	padding: 20px;
+}
+
+.col-container {
+    display: table; /* Make the container element behave like a table */
+    width: 100%; /* Set full-width to expand the whole page */
+		padding-bottom: 30px;
+}
+
+.col-nav {
+    display: table-cell; /* Make elements inside the container behave like table cells */
+		width: 18%;
+		background-color: #f9f9f9;
+		padding: 20px;
+		border: 5px solid white;
+}
+
+/*  GO FULL WIDTH AT LESS THAN 480 PIXELS */
+
+@media only screen and (max-width: 480px) {
+	.col { margin: 1% 0 1% 0%;}
+	.span_3_of_3, .span_2_of_3, .span_1_of_3 { width: 100%; }
+}
+
+@media only screen and (max-width: 650px) {
+    .col-nav {
+        display: block;
+        width: 100%;
+    }
+}
+
+.button{
+  max-width: 100%;
+	box-sizing: border-box;
+	margin: 0;
+	display: inline-block;
+	border-radius: 6px;
+	padding: 0 20px;
+	line-height: 40px;
+	color: #ffffff;
+	font-size: 16px;
+	background-color: #3371e3;
+	text-decoration: none;
+ }
+
+h5 {
+	font-size: 16px;
+	line-height: 1.5em;
+	margin-bottom: 2em;
+}
+
+#usersGrid a {
+	display: inline-block;
+	background-color: #f9f9f9;
+}
+
+#ktpContainer, #distContainer, #kcspContainer, #isvContainer, #servContainer {
+	position: relative;
+	width: 100%;
+	display: flex;
+	justify-content: space-between;
+	flex-wrap: wrap;
+}
+
+#isvContainer {
+	margin-bottom: 80px;
+}
+
+#kcspContainer {
+	margin-bottom: 80px;
+}
+
+#distContainer {
+	margin-bottom: 80px;
+}
+
+#ktpContainer {
+	margin-bottom: 80px;
+}
+
+.partner-box {
+	position: relative;
+	width: 47%;
+	max-width: 48%;
+	min-width: 48%;
+	margin-bottom: 20px;
+	padding: 20px;
+	flex: 1;
+	display: flex;
+	justify-content: left;
+	align-items: flex-start;
+}
+
+.partner-box img {
+	background-color: #f9f9f9;
+}
+
+.partner-box > div {
+	margin-left: 30px;
+}
+
+.partner-box a {
+	color: #3576E3;
+}
+
+@media screen and (max-width: 1024px) {
+	.partner-box {
+		flex-direction: column;
+		justify-content: flex-start;
+	}
+
+	.partner-box > div {
+		margin: 20px 0 0;
+	}
+}
+
+@media screen and (max-width: 568px) {
+	#ktpContainer, #distContainter, #kcspContainer, #isvContainer, #servContainer {
+		justify-content: center;
+	}
+
+	.partner-box {
+		flex-direction: column;
+		justify-content: flex-start;
+		width: 100%;
+		max-width: 100%;
+		min-width: 100%;
+	}
+
+	.partner-box > div {
+		margin: 20px 0 0;
+	}
+}
+
+@media screen and (max-width: 568px) {
+	#ktpContainer, #distContainer, #kcspContainer, #isvContainer, #servContainer {
+		justify-content: center;
+	}
+
+	.partner-box {
+		flex-direction: column;
+		justify-content: flex-start;
+		width: 100%;
+		max-width: 100%;
+		min-width: 100%;
+	}
+
+	.partner-box > div {
+		margin: 20px 0 0;
+	}
+}
diff --git a/content/zh-cn/includes/task-tutorial-prereqs.md b/content/zh-cn/includes/task-tutorial-prereqs.md
new file mode 100644
index 0000000000..754f42e446
--- /dev/null
+++ b/content/zh-cn/includes/task-tutorial-prereqs.md
@@ -0,0 +1,14 @@
+你必须拥有一个 Kubernetes 的集群，同时你的 Kubernetes 集群必须带有 kubectl 命令行工具。
+建议在至少有两个节点的集群上运行本教程，且这些节点不作为控制平面主机。
+如果你还没有集群，你可以通过 [Minikube](https://minikube.sigs.k8s.io/docs/tutorials/multi_node/) 
+构建一个你自己的集群，或者你可以使用下面任意一个 Kubernetes 工具构建：
+<!--
+You need to have a Kubernetes cluster, and the kubectl command-line tool must
+be configured to communicate with your cluster. It is recommended to run this tutorial on a cluster with at least two nodes that are not acting as control plane hosts. If you do not already have a
+cluster, you can create one by using
+[minikube](https://minikube.sigs.k8s.io/docs/tutorials/multi_node/)
+or you can use one of these Kubernetes playgrounds:
+-->
+
+* [Killercoda](https://killercoda.com/playgrounds/scenario/kubernetes)
+* [玩转 Kubernetes](http://labs.play-with-k8s.com/)
diff --git a/content/zh/includes/user-guide-content-moved.md b/content/zh-cn/includes/user-guide-content-moved.md
similarity index 57%
rename from content/zh/includes/user-guide-content-moved.md
rename to content/zh-cn/includes/user-guide-content-moved.md
index 18b4b00073..b9e35e7361 100644
--- a/content/zh/includes/user-guide-content-moved.md
+++ b/content/zh-cn/includes/user-guide-content-moved.md
@@ -3,6 +3,6 @@ The topics in the [User Guide](/docs/user-guide/) section of the Kubernetes docs
 are being moved to the [Tasks](/docs/tasks/), [Tutorials](/docs/tutorials/), and
 [Concepts](/docs/concepts) sections. The content in this topic has moved to:
 -->
-Kubernetes文档中[使用手册](/zh/docs/user-guide/)部分中的主题被移动到
-[任务](/zh/docs/tasks/)、[教程](/zh/docs/tutorials/)和[概念](/zh/docs/concepts)节。
+Kubernetes文档中[用户指南](/zh-cn/docs/user-guide/)部分中的主题被移动到
+[任务](/zh-cn/docs/tasks/)、[教程](/zh-cn/docs/tutorials/)和[概念](/zh-cn/docs/concepts)节。
 本主题内容已移至:
diff --git a/content/zh-cn/partners/_index.html b/content/zh-cn/partners/_index.html
new file mode 100644
index 0000000000..5e87b88a5c
--- /dev/null
+++ b/content/zh-cn/partners/_index.html
@@ -0,0 +1,77 @@
+---
+title: 合作伙伴
+bigheader: Kubernetes 合作伙伴
+abstract: 发展 Kubernetes 生态圈
+class: gridPage
+cid: partners
+---
+
+<!--
+title: Partners
+bigheader: Kubernetes Partners
+abstract: Growing the Kubernetes ecosystem.
+class: gridPage
+cid: partners
+-->
+
+<section id="users">
+  <!-- <h5>Kubernetes works with partners to create a strong, vibrant codebase that supports a spectrum of complementary platforms.</h5> -->
+  <h5>Kubernetes 与合作伙伴携手打造一个强大、活跃的代码库，支持一系列互补平台。</h5>
+  <div class="col-container">
+    <div class="col-nav">
+      <center>
+        <h5>
+          <!-- <b>Kubernetes Certified Service Providers</b> -->
+          <b>Kubernetes 认证服务提供商</b>
+        </h5>
+        <!-- <br>Vetted service providers with deep experience helping enterprises successfully adopt Kubernetes. -->
+        <br>经过审核的服务提供商在帮助企业成功采用 Kubernetes 方面有深厚的经验。
+        <br><br><br>
+        <!-- <button class="button landscape-trigger landscape-default" data-landscape-types="kubernetes-certified-service-provider" id="kcsp">See KCSP Partners</button> -->
+        <button class="button landscape-trigger landscape-default" data-landscape-types="kubernetes-certified-service-provider" id="kcsp">参见 KCSP 合作伙伴</button>
+        <!-- <br><br>Interested in becoming a
+        <a href="https://www.cncf.io/certification/kcsp/">KCSP</a>? -->
+        <br><br>想要成为
+        <a href="https://www.cncf.io/certification/kcsp/">KCSP</a> 吗?
+      </center>
+    </div>
+    <div class="col-nav">
+      <center>
+        <h5>
+          <!-- <b>Certified Kubernetes Distributions, Hosted Platforms, and Installers</b> -->
+          <b>Kubernetes 认证的发行版本、托管平台以及安装工具</b>
+        <!-- </h5>Software conformance ensures that every vendor’s version of Kubernetes supports the required APIs. -->
+        </h5>软件合规性确保各厂商的 Kubernetes 版本都支持必需的 API。
+        <br><br><br>
+        <!-- <button class="button landscape-trigger" data-landscape-types="certified-kubernetes-distribution,certified-kubernetes-hosted,certified-kubernetes-installer" id="conformance">See Conformance Partners</button> -->
+        <button class="button landscape-trigger" data-landscape-types="certified-kubernetes-distribution,certified-kubernetes-hosted,certified-kubernetes-installer" id="conformance">参见合规性合作伙伴</button>
+        <!-- <br><br>Interested in becoming
+        <a href="https://www.cncf.io/certification/software-conformance/">Kubernetes Certified</a>? -->
+        <br><br>想要成为
+        <a href="https://www.cncf.io/certification/software-conformance/">Kubernetes 认证的厂商</a>吗?
+      </center>
+    </div>
+    <div class="col-nav">
+      <center>
+        <h5>
+          <!-- <b>Kubernetes Training Partners</b> -->
+          <b>Kubernetes 培训合作伙伴</b>
+        </h5>
+        <!-- <br>Vetted training providers who have deep experience in cloud native technology training. -->
+        <br>经过审核的培训机构在云原生技术培训方面有深厚的经验。
+        <br><br><br>
+        <!-- <button class="button landscape-trigger" data-landscape-types="kubernetes-training-partner" id="ktp">See KTP Partners</button> -->
+        <button class="button landscape-trigger" data-landscape-types="kubernetes-training-partner" id="ktp">参见 KTP 合作伙伴</button>
+        <!-- <br><br>Interested in becoming a
+        <a href="https://www.cncf.io/certification/training/">KTP</a>? -->
+        <br><br>想要成为
+        <a href="https://www.cncf.io/certification/training/">KTP</a> 吗?
+      </center>
+    </div>
+  </div>
+  {{< cncf-landscape helpers=true >}}
+</section>
+
+<style>
+  {{< include "partner-style.css" >}}
+</style>
diff --git a/content/zh-cn/releases/_index.md b/content/zh-cn/releases/_index.md
new file mode 100644
index 0000000000..dc89e9f03a
--- /dev/null
+++ b/content/zh-cn/releases/_index.md
@@ -0,0 +1,50 @@
+---
+linktitle: 发行版本历史
+title: 发行版本
+type: docs
+---
+<!-- 
+linktitle: Release History
+title: Releases
+type: docs
+-->
+
+
+<!-- overview -->
+
+<!-- 
+The Kubernetes project maintains release branches for the most recent three minor releases ({{< skew currentVersion >}}, {{< skew currentVersionAddMinor -1 >}}, {{< skew currentVersionAddMinor -2 >}}).  Kubernetes 1.19 and newer receive [approximately 1 year of patch support](/releases/patch-releases/#support-period). Kubernetes 1.18 and older received approximately 9 months of patch support.
+-->
+Kubernetes 项目维护最近三个次要版本（{{< skew currentVersion >}}、{{< skew currentVersionAddMinor -1 >}}、{{< skew currentVersionAddMinor -2 >}}）的发布分支。
+Kubernetes 1.19 和更新版本获得[大约 1 年的补丁支持](/zh-cn/releases/patch-releases/#support-period)。
+Kubernetes 1.18 及更早版本获得了大约 9 个月的补丁支持周期。
+
+<!-- 
+Kubernetes versions are expressed as **x.y.z**,
+where **x** is the major version, **y** is the minor version, and **z** is the patch version, following [Semantic Versioning](https://semver.org/) terminology.
+More information in the [version skew policy](/releases/version-skew-policy/) document.
+-->
+
+Kubernetes 版本表示为 **x.y.z**，
+其中 **x** 是主要版本，**y** 是次要版本，**z** 是补丁版本，遵循[语义版本控制](https://semver.org/)术语。
+
+更多信息在[版本偏差策略](/zh-cn/releases/version-skew-policy/)文档中。
+
+<!-- body -->
+
+<!-- ## Release History -->
+## 发行版本历史
+
+{{< release-data >}}
+
+<!-- ## Upcoming Release -->
+## 未来的发行版本
+
+<!-- 
+Check out the [schedule](https://github.com/kubernetes/sig-release/tree/master/releases/release-{{< skew  currentVersionAddMinor 1 >}}) for the upcoming **{{< skew  currentVersionAddMinor 1 >}}** Kubernetes release!
+-->
+查看[时间表](https://github.com/kubernetes/sig-release/tree/master/releases/release-{{< skew currentVersionAddMinor 1 >}})，
+Kubernetes **{{< skew nextMinorVersion >}}** 版本即将发行！
+
+<!-- ## Helpful Resources -->
+## 有用的资源
diff --git a/content/zh-cn/releases/download.md b/content/zh-cn/releases/download.md
new file mode 100644
index 0000000000..c05432d80d
--- /dev/null
+++ b/content/zh-cn/releases/download.md
@@ -0,0 +1,168 @@
+---
+title: 下载 Kubernetes
+type: docs
+---
+<!-- 
+title: Download Kubernetes
+type: docs
+-->
+
+<!-- 
+Kubernetes ships binaries for each component as well as a standard set of client
+applications to bootstrap or interact with a cluster. Components like the
+API server are capable of running within container images inside of a
+cluster. Those components are also shipped in container images as part of the
+official release process. All binaries as well as container images are available
+for multiple operating systems as well as hardware architectures.
+-->
+Kubernetes 为每个组件提供二进制文件以及一组标准的客户端应用程序用来引导集群或与集群交互。
+像 API 服务器这样的组件能够在集群内的容器镜像中运行。
+作为官方发布过程的一部分，这些组件也以容器镜像的形式提供。
+所有二进制文件和容器镜像都可用于多种操作系统和硬件架构。
+
+<!-- 
+## Container Images
+
+All Kubernetes container images are deployed to the
+[k8s.gcr.io](https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/GLOBAL)
+container registry.
+-->
+## 容器镜像
+
+所有 Kubernetes 容器镜像都部署到
+[k8s.gcr.io](https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/GLOBAL) 容器仓库。
+
+
+{{< feature-state for_k8s_version="v1.24" state="alpha" >}}
+
+<!-- 
+For Kubernetes {{< param "version" >}}, the following
+container images are signed using [cosign](https://github.com/sigstore/cosign)
+signatures:
+-->
+对于 Kubernetes {{< param "version" >}}，以下容器镜像使用
+[cosign](https://github.com/sigstore/cosign) 进行签名：
+
+<!-- 
+| Container Image                                                     | Supported Architectures                                                                  |
+-->
+| 容器镜像                                                             | 支持架构                                                                                  |
+| ------------------------------------------------------------------- | ---------------------------------------------------------------------------------------- |
+| [k8s.gcr.io/kube-apiserver:{{< param "fullversion" >}}][0]          | [amd64][0-amd64], [arm][0-arm], [arm64][0-arm64], [ppc64le][0-ppc64le], [s390x][0-s390x] |
+| [k8s.gcr.io/kube-controller-manager:{{< param "fullversion" >}}][1] | [amd64][1-amd64], [arm][1-arm], [arm64][1-arm64], [ppc64le][1-ppc64le], [s390x][1-s390x] |
+| [k8s.gcr.io/kube-proxy:{{< param "fullversion" >}}][2]              | [amd64][2-amd64], [arm][2-arm], [arm64][2-arm64], [ppc64le][2-ppc64le], [s390x][2-s390x] |
+| [k8s.gcr.io/kube-scheduler:{{< param "fullversion" >}}][3]          | [amd64][3-amd64], [arm][3-arm], [arm64][3-arm64], [ppc64le][3-ppc64le], [s390x][3-s390x] |
+| [k8s.gcr.io/conformance:{{< param "fullversion" >}}][4]             | [amd64][4-amd64], [arm][4-arm], [arm64][4-arm64], [ppc64le][4-ppc64le], [s390x][4-s390x] |
+
+[0]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-apiserver
+[0-amd64]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-apiserver-amd64
+[0-arm]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-apiserver-arm
+[0-arm64]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-apiserver-arm64
+[0-ppc64le]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-apiserver-ppc64le
+[0-s390x]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-apiserver-s390x
+[1]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-controller-manager
+[1-amd64]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-controller-manager-amd64
+[1-arm]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-controller-manager-arm
+[1-arm64]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-controller-manager-arm64
+[1-ppc64le]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-controller-manager-ppc64le
+[1-s390x]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-controller-manager-s390x
+[2]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-proxy
+[2-amd64]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-proxy-amd64
+[2-arm]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-proxy-arm
+[2-arm64]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-proxy-arm64
+[2-ppc64le]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-proxy-ppc64le
+[2-s390x]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-proxy-s390x
+[3]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-scheduler
+[3-amd64]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-scheduler-amd64
+[3-arm]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-scheduler-arm
+[3-arm64]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-scheduler-arm64
+[3-ppc64le]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-scheduler-ppc64le
+[3-s390x]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/kube-scheduler-s390x
+[4]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/conformance
+[4-amd64]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/conformance-amd64
+[4-arm]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/conformance-arm
+[4-arm64]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/conformance-arm64
+[4-ppc64le]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/conformance-ppc64le
+[4-s390x]: https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/conformance-s390x
+
+<!-- 
+All container images are available for multiple architectures, whereas the
+container runtime should choose the correct one based on the underlying
+platform. It is also possible to pull a dedicated architecture by suffixing the
+container image name, for example
+[`k8s.gcr.io/kube-apiserver-arm64:{{< param "fullversion" >}}`][0-arm64]. All
+those derivations are signed in the same way as the multi-architecture manifest lists.
+-->
+所有容器镜像都支持多种体系结构，容器运行时应根据下层平台选择正确的镜像。
+也可以通过给容器镜像名称加后缀来拉取特定体系结构的镜像，例如
+[`k8s.gcr.io/kube-apiserver-arm64:{{< param "fullversion" >}}`][0-arm64]。
+所有这些派生镜像都以与多架构清单列表相同的方式签名。
+
+<!-- 
+The Kubernetes project publishes a list of signed Kubernetes container images
+in SBoM (Software Bill of Materials) format.
+You can fetch that list using:
+-->
+Kubernetes 项目以 SBoM（软件物料清单）格式发布已签名的 Kubernetes 容器镜像列表。
+你可以使用以下方法获取该列表：
+
+```shell
+curl -Ls "https://sbom.k8s.io/$(curl -Ls https://dl.k8s.io/release/latest.txt)/release"  | awk '/PackageName: k8s.gcr.io\// {print $2}'
+```
+<!-- 
+For Kubernetes v{{< skew currentVersion >}}, the only kind of code artifact that
+you can verify integrity for is a container image, using the experimental
+signing support.
+
+To manually verify signed container images of Kubernetes core components, refer to
+[Verify Signed Container Images](/docs/tasks/administer-cluster/verify-signed-images).
+-->
+对于 Kubernetes v{{< skew currentVersion >}}，唯一可以验证完整性的代码工件就是容器镜像，它使用实验性签名支持。
+
+如需手动验证 Kubernetes 核心组件的签名容器镜像，请参考[验证签名容器镜像](/zh-cn/docs/tasks/administer-cluster/verify-signed-images)。
+
+<!-- 
+## Binaries
+
+Find links to download Kubernetes components (and their checksums) in the [CHANGELOG](https://github.com/kubernetes/kubernetes/tree/master/CHANGELOG) files.
+
+Alternately, use [downloadkubernetes.com](https://www.downloadkubernetes.com/) to filter by version and architecture.
+-->
+## 二进制
+
+在 [CHANGELOG](https://github.com/kubernetes/kubernetes/tree/master/CHANGELOG) 文件中找到下载 Kubernetes 组件（及其校验和）的链接。
+
+或者，使用 [downloadkubernetes.com](https://www.downloadkubernetes.com/) 按版本和架构进行过滤。
+
+### kubectl
+
+<!-- overview -->
+
+<!-- 
+The Kubernetes command-line tool, [kubectl](/docs/reference/kubectl/kubectl/), allows
+you to run commands against Kubernetes clusters.
+
+You can use kubectl to deploy applications, inspect and manage cluster resources,
+and view logs. For more information including a complete list of kubectl operations, see the
+[`kubectl` reference documentation](/docs/reference/kubectl/).
+-->
+Kubernetes 命令行工具 [kubectl](/zh-cn/docs/reference/kubectl/kubectl/) 允许你对 Kubernetes 集群执行命令。
+
+你可以使用 kubectl 部署应用程序、检查和管理集群资源以及查看日志。
+有关更多信息，包括 kubectl 操作的完整列表，请参阅
+[`kubectl` 参考文档](/zh-cn/docs/reference/kubectl/)。
+
+<!-- 
+kubectl is installable on a variety of Linux platforms, macOS and Windows.
+Find your preferred operating system below.
+
+- [Install kubectl on Linux](/docs/tasks/tools/install-kubectl-linux)
+- [Install kubectl on macOS](/docs/tasks/tools/install-kubectl-macos)
+- [Install kubectl on Windows](/docs/tasks/tools/install-kubectl-windows)
+-->
+kubectl 可安装在各种 Linux 平台、macOS 和 Windows 上。
+在下方找到你首选的操作系统。
+
+- [在 Linux 上安装 kubectl](/zh-cn/docs/tasks/tools/install-kubectl-linux)
+- [在 macOS 上安装 kubectl](/zh-cn/docs/tasks/tools/install-kubectl-macos)
+- [在 Windows 上安装 kubectl](/zh-cn/docs/tasks/tools/install-kubectl-windows)
diff --git a/content/zh-cn/releases/notes.md b/content/zh-cn/releases/notes.md
new file mode 100644
index 0000000000..ecf9869ae1
--- /dev/null
+++ b/content/zh-cn/releases/notes.md
@@ -0,0 +1,34 @@
+---
+linktitle: 发行版本说明
+title: 说明
+type: docs
+description: >
+  Kubernetes 发行版本说明。
+sitemap:
+  priority: 0.5
+---
+<!--
+linktitle: Release Notes
+title: Notes
+type: docs
+description: >
+  Kubernetes release notes.
+sitemap:
+  priority: 0.5
+-->
+
+<!-- 
+Release notes can be found by reading the [Changelog](https://github.com/kubernetes/kubernetes/tree/master/CHANGELOG) that matches your Kubernetes version. View the changelog for {{< skew currentVersionAddMinor 0 >}} on [GitHub](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-{{< skew currentVersionAddMinor 0 >}}.md).
+
+Alternately, release notes can be searched and filtered online at: [relnotes.k8s.io](https://relnotes.k8s.io). View filtered release notes for {{< skew currentVersionAddMinor 0 >}} on [relnotes.k8s.io](https://relnotes.k8s.io/?releaseVersions={{< skew currentVersionAddMinor 0 >}}.0).
+-->
+
+可以通过阅读与你的 Kubernetes 版本对应的
+[Changelog](https://github.com/kubernetes/kubernetes/tree/master/CHANGELOG)
+找到发行版本说明。
+在 [GitHub](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-{{< skew currentVersionAddMinor 0 >}}.md)
+上查看 {{< skew currentVersionAddMinor 0 >}} 的变更日志。
+
+或者，可以在以下位置在线搜索和筛选发行版本说明：[relnotes.k8s.io](https://relnotes.k8s.io)。
+在 [relnotes.k8s.io](https://relnotes.k8s.io/?releaseVersions={{< skew currentVersionAddMinor 0 >}}.0)
+上查看 {{< skew currentVersionAddMinor 0 >}} 的筛选后的版本说明。
\ No newline at end of file
diff --git a/content/zh-cn/releases/patch-releases.md b/content/zh-cn/releases/patch-releases.md
new file mode 100644
index 0000000000..0ec1dba1e8
--- /dev/null
+++ b/content/zh-cn/releases/patch-releases.md
@@ -0,0 +1,326 @@
+---
+title: 补丁版本
+type: docs
+---
+<!-- 
+title: Patch Releases
+type: docs
+-->
+
+<!-- 
+Schedule and team contact information for Kubernetes patch releases.
+
+For general information about Kubernetes release cycle, see the
+[release process description].
+-->
+Kubernetes 补丁版本的发布时间表和团队联系信息。
+
+有关 Kubernetes 发布周期的常规信息，请参阅[发布流程说明](/zh-cn/releases/release)。
+
+<!-- 
+## Cadence
+
+Our typical patch release cadence is monthly. It is
+commonly a bit faster (1 to 2 weeks) for the earliest patch releases
+after a 1.X minor release. Critical bug fixes may cause a more
+immediate release outside of the normal cadence. We also aim to not make
+releases during major holiday periods.
+-->
+## 节奏 {#cadence}
+
+我们的补丁发布节奏通常是每月一次。
+在 1.X 次要版本之后，最早的补丁版本通常要快一些（提前 1 到 2 周）。
+严重错误修复可能会导致超出正常节奏而更快速的发布。
+我们尽量避免在主假期期间发布。
+
+<!-- 
+## Contact
+
+See the [Release Managers page][release-managers] for full contact details on the Patch Release Team.
+
+Please give us a business day to respond - we may be in a different timezone!
+
+In between releases the team is looking at incoming cherry pick requests on a weekly basis. The team will get in touch with submitters via GitHub PR, SIG channels in Slack, and direct messages
+in Slack and [email](mailto:release-managers-private@kubernetes.io) if there are questions on the PR.
+-->
+## 联系方式  {#contact}
+
+有关补丁发布团队（Patch Release Team）的完整联系方式，
+请参阅[发布管理员页面](/zh-cn/releases/release-managers)。
+
+请给我们一个工作日回复，因为我们可能在不同的时区！
+
+在两次发布之间，团队每周都会查看收到的 cherry pick 请求。
+如果对 PR 有任何问题，团队将通过 GitHub PR、Slack 中的 SIG 频道以及 Slack 中的直接消息和
+[email](mailto:release-managers-private@kubernetes.io) 与提交者取得联系。
+
+<!-- 
+## Cherry picks
+
+Please follow the [cherry pick process][cherry-picks].
+
+Cherry picks must be merge-ready in GitHub with proper labels (e.g.,
+`approved`, `lgtm`, `release-note`) and passing CI tests ahead of the
+cherry pick deadline. This is typically two days before the target
+release, but may be more. Earlier PR readiness is better, as we
+need time to get CI signal after merging your cherry picks ahead
+of the actual release.
+
+Cherry pick PRs which miss merge criteria will be carried over and tracked
+for the next patch release.
+-->
+
+## Cherry Picks
+
+请遵循 [Cherry Pick 流程](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-release/cherry-picks.md)。
+
+Cherry Pick 必须在 GitHub 中准备好合并，带有适当的标签（例如 `approved`、`lgtm`、`release-note`），
+并在 Cherry Pick 截止日期之前通过 CI 测试。这通常是目标发布前两天，但可能更早。
+PR 越早准备好越好，因为在实际发布之前，合并了你的 Cherry Pick 后，我们需要时间来获取 CI 信号。
+
+不符合合并标准的 Cherry Pick PR 将被带入下一个补丁版本中跟踪。
+
+<!-- 
+## Support Period
+
+In accordance with the [yearly support KEP][yearly-support], the Kubernetes
+Community will support active patch release series for a period of roughly
+fourteen (14) months.
+
+The first twelve months of this timeframe will be considered the standard
+period.
+
+Towards the end of the twelve month, the following will happen:
+
+- [Release Managers][release-managers] will cut a release
+- The patch release series will enter maintenance mode
+-->
+## 支持周期  {#support-period}
+
+根据[年度支持 KEP](https://git.k8s.io/enhancements/keps/sig-release/1498-kubernetes-yearly-support-period/README.md)
+约定，Kubernetes 社区将在大约 14 个月的时间内支持活跃的补丁发布系列。
+
+此时间范围的前 12 个月将被视为标准周期。
+
+在 12 个月后，将发生以下事情：
+
+- [发布管理员](/zh-cn/releases/release-managers)将删除一个版本
+- 补丁发布系列将进入维护模式
+
+<!--
+During the two-month maintenance mode period, Release Managers may cut
+additional maintenance releases to resolve:
+
+- CVEs (under the advisement of the Security Response Committee)
+- dependency issues (including base image updates)
+- critical core component issues
+
+At the end of the two-month maintenance mode period, the patch release series
+will be considered EOL (end of life) and cherry picks to the associated branch
+are to be closed soon afterwards.
+
+Note that the 28th of the month was chosen for maintenance mode and EOL target
+dates for simplicity (every month has it).
+-->
+在两个月的维护模式期间，发布管理员可能会删减额外的维护版本以解决：
+
+- CVE（在安全响应委员会的建议下）
+- 依赖问题（包括基础镜像更新）
+- 关键核心组件问题
+
+在两个月的维护模式期结束时，补丁发布系列将被视为 EOL（生命周期结束），相关分支的 Cherry Pick 将很快关闭。
+
+请注意，为简单起见，选择每月 28 日作为维护模式和 EOL 目标日期（每个月都有）。
+
+<!-- 
+## Upcoming Monthly Releases
+
+Timelines may vary with the severity of bug fixes, but for easier planning we
+will target the following monthly release points. Unplanned, critical
+releases may also occur in between these.
+-->
+## 未来发布的月度版本  {#upcoming-monthly-releases}
+
+时间表可能会因错误修复的严重程度而有所不同，但为了便于规划，我们将针对以下每月发布点。
+计划外的关键版本也可能发生在这些版本之间。
+
+<!-- 
+| Monthly Patch Release | Cherry Pick Deadline | Target date |
+| --------------------- | -------------------- | ----------- |
+| August 2022           | 2022-08-12           | 2022-08-17  |
+| September 2022        | 2022-09-09           | 2022-09-14  |
+| October 2022          | 2022-10-07           | 2022-10-12  |
+-->
+| 月度补丁发布  | Cherry Pick 截止日期 |   目标日期  |
+| ------------- | -------------------- | ----------- |
+| 2022 年 8 月  | 2022-08-12           | 2022-08-16  |
+| 2022 年 9 月  | 2022-09-09           | 2022-09-14  |
+| 2022 年 10 月 | 2022-10-07           | 2022-10-12  |
+
+<!-- 
+## Detailed Release History for Active Branches
+
+### 1.24
+
+Next patch release is **1.24.4**
+
+End of Life for **1.24** is **2023-07-28**
+
+| PATCH RELEASE | CHERRY PICK DEADLINE | TARGET DATE | NOTE |
+|---------------|----------------------|-------------|------|
+| 1.24.4        | 2022-08-12           | 2022-08-17  |      |
+| 1.24.3        | 2022-07-08           | 2022-07-13  |      |
+| 1.24.2        | 2022-06-10           | 2022-06-15  |      |
+| 1.24.1        | 2022-05-20           | 2022-05-24  |      |
+-->
+## 活动分支的详细发布历史  {#detailed-release-history-for-active-branches}
+
+### 1.24
+
+下一个补丁版本是 **1.24.4**
+
+**1.24** 的生命周期结束时间为 **2023-07-28**
+
+| 补丁发布 | Cherry Pick 截止日期 |  目标日期  | 说明 |
+|----------|----------------------|------------|------|
+| 1.24.4   | 2022-08-12           | 2022-08-17 |      |
+| 1.24.3   | 2022-07-08           | 2022-07-13 |      |
+| 1.24.2   | 2022-06-10           | 2022-06-15 |      |
+| 1.24.1   | 2022-05-20           | 2022-05-24 |      |
+
+### 1.23
+
+<!-- 
+Next patch release is **1.23.10**
+
+**1.23** enters maintenance mode on **2022-12-28**.
+
+End of Life for **1.23** is **2023-02-28**.
+-->
+
+下一个补丁版本是 **1.23.10**。
+
+**1.23** 于 **2022-12-28** 进入维护模式。
+
+**1.23** 的生命周期结束时间为 **2023-02-28**。
+
+<!--
+| Patch Release | Cherry Pick Deadline | Target Date | Note |
+
+[Out-of-Band Release](https://groups.google.com/a/kubernetes.io/g/dev/c/Xl1sm-CItaY)
+| Patch Release | Cherry Pick Deadline | Target Date | Note |
+|---------------|----------------------|-------------|------|
+| 1.23.10       | 2022-08-12           | 2022-08-17  |      |
+| 1.23.9        | 2022-07-08           | 2022-07-13  |      |
+| 1.23.8        | 2022-06-10           | 2022-06-15  |      |
+| 1.23.7        | 2022-05-20           | 2022-05-24  |      |
+| 1.23.6        | 2022-04-08           | 2022-04-13  |      |
+| 1.23.5        | 2022-03-11           | 2022-03-16  |      |
+| 1.23.4        | 2022-02-11           | 2022-02-16  |      |
+| 1.23.3        | 2022-01-24           | 2022-01-25  | [Out-of-Band Release](https://groups.google.com/a/kubernetes.io/g/dev/c/Xl1sm-CItaY) |
+| 1.23.2        | 2022-01-14           | 2022-01-19  |      |
+| 1.23.1        | 2021-12-14           | 2021-12-16  |      |
+-->
+
+| 补丁发布      | Cherry Pick 截止日期 |  目标日期   | 说明  |
+|---------------|----------------------|-------------|------|
+| 1.23.10       | 2022-08-12           | 2022-08-17  |      |
+| 1.23.9        | 2022-07-08           | 2022-07-13  |      |
+| 1.23.8        | 2022-06-10           | 2022-06-15  |      |
+| 1.23.7        | 2022-05-20           | 2022-05-24  |      |
+| 1.23.6        | 2022-04-08           | 2022-04-13  |      |
+| 1.23.5        | 2022-03-11           | 2022-03-16  |      |
+| 1.23.4        | 2022-02-11           | 2022-02-16  |      |
+| 1.23.3        | 2022-01-24           | 2022-01-25  | [带外发布](https://groups.google.com/a/kubernetes.io/g/dev/c/Xl1sm-CItaY) |
+| 1.23.2        | 2022-01-14           | 2022-01-19  |      |
+| 1.23.1        | 2021-12-14           | 2021-12-16  |      |
+
+### 1.22
+
+<!-- 
+Next patch release is **1.22.13**
+
+**1.22** enters maintenance mode on **2022-08-28**
+
+End of Life for **1.22** is **2022-10-28**
+-->
+
+下一个补丁版本是 **1.22.13**。
+
+**1.22** 于 **2022-08-28** 进入维护模式
+
+**1.22** 的生命周期结束时间为 **2022-10-28**
+
+<!-- 
+| PATCH RELEASE | CHERRY PICK DEADLINE | TARGET DATE | NOTE |
+|---------------|----------------------|-------------|------|
+| 1.22.13       | 2022-08-12           | 2022-08-17  |      |
+| 1.22.12       | 2022-07-08           | 2022-07-13  |      |
+| 1.22.11       | 2022-06-10           | 2022-06-15  |      |
+| 1.22.10       | 2022-05-20           | 2022-05-24  |      |
+| 1.22.9        | 2022-04-08           | 2022-04-13  |      |
+| 1.22.8        | 2022-03-11           | 2022-03-16  |      |
+| 1.22.7        | 2022-02-11           | 2022-02-16  |      |
+| 1.22.6        | 2022-01-14           | 2022-01-19  |      |
+| 1.22.5        | 2021-12-10           | 2021-12-15  |      |
+| 1.22.4        | 2021-11-12           | 2021-11-17  |      |
+| 1.22.3        | 2021-10-22           | 2021-10-27  |      |
+| 1.22.2        | 2021-09-10           | 2021-09-15  |      |
+| 1.22.1        | 2021-08-16           | 2021-08-19  |      |
+-->
+| 补丁发布      | Cherry Pick 截止日期 |  目标日期   | 说明 |
+|---------------|----------------------|-------------|------|
+| 1.22.13       | 2022-08-12           | 2022-08-17  |      |
+| 1.22.12       | 2022-07-08           | 2022-07-13  |      |
+| 1.22.11       | 2022-06-10           | 2022-06-15  |      |
+| 1.22.10       | 2022-05-20           | 2022-05-24  |      |
+| 1.22.9        | 2022-04-08           | 2022-04-13  |      |
+| 1.22.8        | 2022-03-11           | 2022-03-16  |      |
+| 1.22.7        | 2022-02-11           | 2022-02-16  |      |
+| 1.22.6        | 2022-01-14           | 2022-01-19  |      |
+| 1.22.5        | 2021-12-10           | 2021-12-15  |      |
+| 1.22.4        | 2021-11-12           | 2021-11-17  |      |
+| 1.22.3        | 2021-10-22           | 2021-10-27  |      |
+| 1.22.2        | 2021-09-10           | 2021-09-15  |      |
+| 1.22.1        | 2021-08-16           | 2021-08-19  |      |
+
+<!-- 
+## Non-Active Branch History
+
+These releases are no longer supported.
+-->
+## 非活动分支历史  {#non-active-branch-history}
+
+不再支持这些版本。
+
+<!--
+| Minor Version | Final Patch Release | EOL Date   | Note                                                                   |
+
+Created to resolve regression introduced in 1.18.19
+
+[Regression](https://groups.google.com/g/kubernetes-dev/c/KuF8s2zueFs)
+-->
+| 次要版本      | 最终补丁发布版本    | EOL 日期   | 说明                                                                   |
+| ------------- | ------------------- | ---------- | ---------------------------------------------------------------------- |
+| 1.21          | 1.21.14             | 2022-06-28 |                                                                        |
+| 1.20          | 1.20.15             | 2022-02-28 |                                                                        |
+| 1.19          | 1.19.16             | 2021-10-28 |                                                                        |
+| 1.18          | 1.18.20             | 2021-06-18 | 创建用于解决 1.18.19 版本引入的回退                                    |
+| 1.18          | 1.18.19             | 2021-05-12 | [版本回退](https://groups.google.com/g/kubernetes-dev/c/KuF8s2zueFs)   |
+| 1.17          | 1.17.17             | 2021-01-13 |                                                                        |
+| 1.16          | 1.16.15             | 2020-09-02 |                                                                        |
+| 1.15          | 1.15.12             | 2020-05-06 |                                                                        |
+| 1.14          | 1.14.10             | 2019-12-11 |                                                                        |
+| 1.13          | 1.13.12             | 2019-10-15 |                                                                        |
+| 1.12          | 1.12.10             | 2019-07-08 |                                                                        |
+| 1.11          | 1.11.10             | 2019-05-01 |                                                                        |
+| 1.10          | 1.10.13             | 2019-02-13 |                                                                        |
+| 1.9           | 1.9.11              | 2018-09-29 |                                                                        |
+| 1.8           | 1.8.15              | 2018-07-12 |                                                                        |
+| 1.7           | 1.7.16              | 2018-04-04 |                                                                        |
+| 1.6           | 1.6.13              | 2017-11-23 |                                                                        |
+| 1.5           | 1.5.8               | 2017-10-01 |                                                                        |
+| 1.4           | 1.4.12              | 2017-04-21 |                                                                        |
+| 1.3           | 1.3.10              | 2016-11-01 |                                                                        |
+| 1.2           | 1.2.7               | 2016-10-23 |                                                                        |
+
diff --git a/content/zh-cn/releases/release-managers.md b/content/zh-cn/releases/release-managers.md
new file mode 100644
index 0000000000..57606b0953
--- /dev/null
+++ b/content/zh-cn/releases/release-managers.md
@@ -0,0 +1,380 @@
+---
+title: 发布管理员
+type: docs
+---
+<!-- 
+title: Release Managers
+type: docs
+-->
+
+<!-- 
+"Release Managers" is an umbrella term that encompasses the set of Kubernetes
+contributors responsible for maintaining release branches and creating releases
+by using the tools SIG Release provides.
+
+The responsibilities of each role are described below.
+-->
+“发布管理员（Release Managers）” 是一个总称，通过使用 SIG Release 提供的工具，
+负责维护发布分支、标记发行版本以及创建发行版本的贡献者。
+
+每个角色的职责如下所述。
+
+<!-- 
+- [Contact](#contact)
+  - [Security Embargo Policy](#security-embargo-policy)
+- [Handbooks](#handbooks)
+- [Release Managers](#release-managers)
+  - [Becoming a Release Manager](#becoming-a-release-manager)
+- [Release Manager Associates](#release-manager-associates)
+  - [Becoming a Release Manager Associate](#becoming-a-release-manager-associate)
+- [Build Admins](#build-admins)
+- [SIG Release Leads](#sig-release-leads)
+  - [Chairs](#chairs)
+  - [Technical Leads](#technical-leads)
+-->
+- [联系方式](#contact)
+   - [安全禁运政策](#security-embargo-policy)
+- [手册](#handbooks)
+- [发布管理员](#release-managers)
+   - [成为发布管理员](#becoming-a-release-manager)
+- [发布管理员助理](#release-manager-associates)
+   - [成为发布管理员助理](#becoming-a-release-manager-associate)
+- [构建管理员](#build-admins)
+- [SIG 发布负责人](#sig-release-leads)
+   - [首席](#chairs)
+   - [技术负责人](#technical-leads)
+
+<!-- 
+## Contact
+
+| Mailing List | Slack | Visibility | Usage | Membership |
+| --- | --- | --- | --- | --- |
+| [release-managers@kubernetes.io](mailto:release-managers@kubernetes.io) | [#release-management](https://kubernetes.slack.com/messages/CJH2GBF7Y) (channel) / @release-managers (user group) | Public | Public discussion for Release Managers | All Release Managers (including Associates, Build Admins, and SIG Chairs) |
+| [release-managers-private@kubernetes.io](mailto:release-managers-private@kubernetes.io) | N/A | Private | Private discussion for privileged Release Managers | Release Managers, SIG Release leadership |
+| [security-release-team@kubernetes.io](mailto:security-release-team@kubernetes.io) | [#security-release-team](https://kubernetes.slack.com/archives/G0162T1RYHG) (channel) / @security-rel-team (user group) | Private | Security release coordination with the Security Response Committee | [security-discuss-private@kubernetes.io](mailto:security-discuss-private@kubernetes.io), [release-managers-private@kubernetes.io](mailto:release-managers-private@kubernetes.io) |
+-->
+## 联系方式  {#contact}
+
+| 邮件列表 | Slack | 可见范围 | 用法 | 会员资格 |
+| --- | --- | --- | --- | --- |
+| [release-managers@kubernetes.io](mailto:release-managers@kubernetes.io) | [#release-management](https://kubernetes.slack.com/messages/CJH2GBF7Y)（频道）/@release-managers（用户组）| 公共 | 发布管理员公开讨论 | 所有发布管理员（包括助理、构建管理员和 SIG 主席）|
+| [release-managers-private@kubernetes.io](mailto:release-managers-private@kubernetes.io) | 不适用 | 私人 | 拥有特权的发布管理员私人讨论 | 发布管理员，SIG Release 负责人 |
+| [security-release-team@kubernetes.io](mailto:security-release-team@kubernetes.io) | [#security-release-team](https://kubernetes.slack.com/archives/G0162T1RYHG)（频道）/@security-rel-team（用户组）| 私人 | 与安全响应委员会协调安全发布 | [security-discuss-private@kubernetes.io](mailto:security-discuss-private@kubernetes.io), [release-managers-private@kubernetes.io](mailto:release-managers-private@kubernetes.io) |
+
+<!-- 
+### Security Embargo Policy
+
+Some information about releases is subject to embargo and we have defined policy about how those embargoes are set. Please refer to the [Security Embargo Policy](https://github.com/kubernetes/committee-security-response/blob/main/private-distributors-list.md#embargo-policy) for more information.
+-->
+### 安全禁运政策  {#security-embargo-policy}
+
+发布的相关信息受到禁运，我们已经定义了有关如何设置这些禁运的政策。
+更多信息请参考[安全禁运政策](https://github.com/kubernetes/committee-security-response/blob/main/private-distributors-list.md#embargo-policy)。
+
+<!-- 
+## Handbooks
+
+**NOTE:** The Patch Release Team and Branch Manager handbooks will be de-duplicated at a later date.
+
+- [Patch Release Team][handbook-patch-release]
+- [Branch Managers][handbook-branch-mgmt]
+- [Build Admins][handbook-packaging]
+-->
+## 手册  {#handbooks}
+
+**注意：**补丁发布团队和分支管理员手册以后将会删除重复数据。
+
+- [补丁发布团队][handbook-patch-release]
+- [分支管理员][handbook-branch-mgmt]
+- [构建管理员][handbook-packaging]
+
+<!-- 
+## Release Managers
+
+**Note:** The documentation might refer to the Patch Release Team and the
+Branch Management role. Those two roles were consolidated into the
+Release Managers role.
+
+Minimum requirements for Release Managers and Release Manager Associates are:
+
+- Familiarity with basic Unix commands and able to debug shell scripts.
+- Familiarity with branched source code workflows via `git` and associated
+  `git` command line invocations.
+- General knowledge of Google Cloud (Cloud Build and Cloud Storage).
+- Open to seeking help and communicating clearly.
+- Kubernetes Community [membership][community-membership]
+-->
+## 发布管理员  {#release-managers}
+
+**注意：** 文档可能涉及补丁发布团队和分支管理角色。这两个角色被合并到发布管理员角色中。
+
+发布管理员和发布管理员助理的最低要求是：
+
+- 熟悉基本的 Unix 命令并能够调试 shell 脚本。
+- 熟悉通过 `git` 和 `git` 相关命令行触发的分支源代码工作流。
+- 谷歌云的常识（云构建和云存储）。
+- 乐于寻求帮助和清晰地沟通。
+- Kubernetes 社区[会员资格][community-membership]
+
+<!-- 
+Release Managers are responsible for:
+
+- Coordinating and cutting Kubernetes releases:
+  - Patch releases (`x.y.z`, where `z` > 0)
+  - Minor releases (`x.y.z`, where `z` = 0)
+  - Pre-releases (alpha, beta, and release candidates)
+  - Working with the [Release Team][release-team] through each
+  release cycle
+  - Setting the [schedule and cadence for patch releases][patches]
+- Maintaining the release branches:
+  - Reviewing cherry picks
+  - Ensuring the release branch stays healthy and that no unintended patch
+    gets merged
+- Mentoring the [Release Manager Associates](#release-manager-associates) group
+- Actively developing features and maintaining the code in k/release
+- Supporting Release Manager Associates and contributors through actively
+  participating in the Buddy program
+  - Check in monthly with Associates and delegate tasks, empower them to cut
+    releases, and mentor
+  - Being available to support Associates in onboarding new contributors e.g.,
+    answering questions and suggesting appropriate work for them to do
+-->
+发布管理员负责：
+
+- 协调和确定 Kubernetes 发行版本：
+  - 补丁发布（`x.y.z`，其中 `z` > 0）
+  - 次要版本（`x.y.z`，其中 `z` = 0）
+  - 预发布（alpha、beta 和候选发布）
+  - 通过每个发布周期与[发布团队][release-team]合作
+  - 设置[补丁发布的时间表和节奏][patches]
+- 维护发布分支：
+  - 审查 Cherry Pick
+  - 确保发布分支保持健康并且没有合并意外的补丁
+- 指导[发布管理员助理](#release-manager-associates)小组
+- 积极开发功能并维护 kubernetes/release 中的代码
+- 通过积极参与 Buddy 计划来支持发布管理员助理和贡献者
+  - 每月与助理核对并委派任务，授权他们生成发行版本并指导工作
+  - 支持助理小组加入新的贡献者，例如回答问题并建议他们做适当的工作
+
+<!-- 
+This team at times works in close conjunction with the
+[Security Response Committee][src] and therefore should abide by the guidelines
+set forth in the [Security Release Process][security-release-process].
+
+GitHub Access Controls: [@kubernetes/release-managers](https://github.com/orgs/kubernetes/teams/release-managers)
+
+GitHub Mentions: [@kubernetes/release-engineering](https://github.com/orgs/kubernetes/teams/release-engineering)
+-->
+该团队有时与[安全响应委员会][src]密切合作，因此应遵守[安全发布流程][security-release-process]中规定的指导方针。
+
+GitHub 访问控制：[@kubernetes/release-managers](https://github.com/orgs/kubernetes/teams/release-managers)
+
+GitHub 提及：[@kubernetes/release-engineering](https://github.com/orgs/kubernetes/teams/release-engineering)
+
+- Adolfo García Veytia ([@puerco](https://github.com/puerco))
+- Carlos Panato ([@cpanato](https://github.com/cpanato))
+- Marko Mudrinić ([@xmudrii](https://github.com/xmudrii))
+- Nabarun Pal ([@palnabarun](https://github.com/palnabarun))
+- Sascha Grunert ([@saschagrunert](https://github.com/saschagrunert))
+- Stephen Augustus ([@justaugustus](https://github.com/justaugustus))
+- Verónica López ([@verolop](https://github.com/verolop))
+
+<!--
+### Becoming a Release Manager
+
+To become a Release Manager, one must first serve as a Release Manager
+Associate. Associates graduate to Release Manager by actively working on
+releases over several cycles and:
+
+- demonstrating the willingness to lead
+- tag-teaming with Release Managers on patches, to eventually cut a release
+  independently
+  - because releases have a limiting function, we also consider substantial
+    contributions to image promotion and other core Release Engineering tasks
+- questioning how Associates work, suggesting improvements, gathering feedback,
+  and driving change
+- being reliable and responsive
+- leaning into advanced work that requires Release Manager-level access and
+  privileges to complete
+-->
+### 成为发布管理员  {#becoming-a-release-manager}
+
+要成为发布管理员，须先担任发布管理员助理。助理通过在多个周期内积极处理发布，从而毕业成为发布管理员，并且：
+
+- 表现出带头的意愿
+- 与发布管理员合作，为补丁打标记，最终独立制作发行版本
+   - 因为发布具有限制功能，我们还考虑对镜像推广和其他核心发布工程任务的实质性贡献
+- 质疑助理的工作方式、提出改进建议、收集反馈并推动变革
+- 可靠且反应迅速
+- 专注于需要发布管理员级别访问和权限才能完成的高级工作
+
+<!-- 
+## Release Manager Associates
+
+Release Manager Associates are apprentices to the Release Managers, formerly
+referred to as Release Manager shadows. They are responsible for:
+
+- Patch release work, cherry pick review
+- Contributing to k/release: updating dependencies and getting used to the
+  source codebase
+- Contributing to the documentation: maintaining the handbooks, ensuring that
+  release processes are documented
+- With help from a release manager: working with the Release Team during the
+  release cycle and cutting Kubernetes releases
+- Seeking opportunities to help with prioritization and communication
+  - Sending out pre-announcements and updates about patch releases
+  - Updating the calendar, helping with the release dates and milestones from
+    the [release cycle timeline][k-sig-release-releases]
+- Through the Buddy program, onboarding new contributors and pairing up with
+  them on tasks
+
+GitHub Mentions: @kubernetes/release-engineering
+-->
+## 发布管理员助理  {#release-manager-associates}
+
+发布管理员助理是发布管理员的学徒，以前称为发布管理员影子。他们负责：
+
+- 补丁发布工作，Cherry Pick 审查
+- 为 kubernetes/release 做贡献：更新依赖并习惯源代码库
+- 为文档做贡献：维护手册，确保发布过程记录在案
+- 在发布管理员的帮助下：在发布周期中与发布团队合作并减少 Kubernetes 发型版本
+- 寻求机会帮助确定优先级和沟通
+   - 发送有关补丁发布的预告和更新
+   - 更新日历，帮助确定[发布周期时间线][k-sig-release-releases]中的发布日期和里程碑
+- 通过 Buddy 计划，加入新的贡献者并与他们合作完成任务
+
+GitHub 提及：@kubernetes/release-engineering
+
+- Arnaud Meukam ([@ameukam](https://github.com/ameukam))
+- Jeremy Rickard ([@jeremyrickard](https://github.com/jeremyrickard))
+- Jim Angel ([@jimangel](https://github.com/jimangel))
+- Joseph Sandoval ([@jrsapi](https://github.com/jrsapi))
+- Joyce Kung ([@thejoycekung](https://github.com/thejoycekung))
+- Max Körbächer ([@mkorbi](https://github.com/mkorbi))
+- Seth McCombs ([@sethmccombs](https://github.com/sethmccombs))
+- Taylor Dolezal ([@onlydole](https://github.com/onlydole))
+- Wilson Husin ([@wilsonehusin](https://github.com/wilsonehusin))
+
+<!-- 
+### Becoming a Release Manager Associate
+
+Contributors can become Associates by demonstrating the following:
+
+- consistent participation, including 6-12 months of active release
+  engineering-related work
+- experience fulfilling a technical lead role on the Release Team during a
+  release cycle
+  - this experience provides a solid baseline for understanding how SIG Release
+    works overall—including our expectations regarding technical skills,
+    communications/responsiveness, and reliability
+- working on k/release items that improve our interactions with Testgrid,
+  cleaning up libraries, etc.
+  - these efforts require interacting and pairing with Release Managers and
+    Associates
+-->
+### 成为发布管理员助理  {#becoming-a-release-manager-associate}
+
+贡献者可以通过展示以下内容成为助理：
+
+- 持续参与，包括 6-12 个月的发布工程相关的积极工作
+- 在发布周期内担任发布团队的技术负责人角色的经验
+   - 这种经验为理解 SIG Release 如何整体运作提供了坚实的基础——包括我们对技术技能、沟通、响应能力和可靠性的期望
+- 致力于改进我们与 Testgrid 交互的 kubernetes/release 项目，清理仓库等。
+   - 这些工作需要与发布管理员和助理进行互动和合作
+
+<!-- 
+## Build Admins
+
+Build Admins are (currently) Google employees with the requisite access to
+Google build systems/tooling to publish deb/rpm packages on behalf of the
+Kubernetes project. They are responsible for:
+
+- Building, signing, and publishing the deb/rpm packages
+- Being the interlock with Release Managers (and Associates) on the final steps
+of each minor (1.Y) and patch (1.Y.Z) release
+
+GitHub team: [@kubernetes/build-admins](https://github.com/orgs/kubernetes/teams/build-admins)
+-->
+## 构建管理员  {#build-admins}
+
+构建管理员（目前）是谷歌员工，他们拥有对谷歌构建系统/工具的必要访问权限，可以代表 Kubernetes 项目发布 deb/rpm 包。他们负责：
+
+- 构建、签名和发布 deb/rpm 包
+- 在每个次要 (1.Y) 和补丁 (1.Y.Z) 版本的最后步骤中与发布管理员（和助理）互锁
+
+GitHub 团队：[@kubernetes/build-admins](https://github.com/orgs/kubernetes/teams/build-admins)
+
+- Aaron Crickenberger ([@spiffxp](https://github.com/spiffxp))
+- Benjamin Elder ([@BenTheElder](https://github.com/BenTheElder))
+- Grant McCloskey ([@MushuEE](https://github.com/MushuEE))
+- Juan Escobar ([@juanfescobar](https://github.com/juanfescobar))
+
+<!-- 
+## SIG Release Leads
+
+SIG Release Chairs and Technical Leads are responsible for:
+
+- The governance of SIG Release
+- Leading knowledge exchange sessions for Release Managers and Associates
+- Coaching on leadership and prioritization
+
+They are mentioned explicitly here as they are owners of the various
+communications channels and permissions groups (GitHub teams, GCP access) for
+each role. As such, they are highly privileged community members and privy to
+some private communications, which can at times relate to Kubernetes security
+disclosures.
+
+GitHub team: [@kubernetes/sig-release-leads](https://github.com/orgs/kubernetes/teams/sig-release-leads)
+-->
+## SIG Release 负责人  {#sig-release-leads}
+
+SIG Release 主席和技术负责人负责：
+
+- SIG Release 的治理
+- 领导发布管理员和助理的知识交流会议
+- 传授领导力和优先排序方法
+
+之所以此处明确提及他们，是因为他们是每个角色的各种沟通渠道和权限组（GitHub 团队、GCP 访问）的所有者。
+因此，他们是享有很高特权的社区成员，并参与了一些私人沟通，这些沟通有时可能与 Kubernetes 安全披露有关。
+
+GitHub 团队：[@kubernetes/sig-release-leads](https://github.com/orgs/kubernetes/teams/sig-release-leads)
+
+<!-- 
+### Chairs
+-->
+### 主席  {#chairs}
+
+- Sascha Grunert ([@saschagrunert](https://github.com/saschagrunert))
+- Stephen Augustus ([@justaugustus](https://github.com/justaugustus))
+
+<!-- 
+### Technical Leads
+-->
+### 技术负责人  {#technical-leads}
+
+- Adolfo García Veytia ([@puerco](https://github.com/puerco))
+- Carlos Panato ([@cpanato](https://github.com/cpanato))
+- Jeremy Rickard ([@jeremyrickard](https://github.com/jeremyrickard))
+
+---
+
+<!-- 
+Past Branch Managers, can be found in the [releases directory][k-sig-release-releases]
+of the kubernetes/sig-release repository within `release-x.y/release_team.md`.
+
+Example: [1.15 Release Team](https://git.k8s.io/sig-release/releases/release-1.15/release_team.md)
+-->
+有关以往的分支管理员，可以在 `release-x.y/release_team.md`
+中 kubernetes/sig-release 仓库的[发布目录][k-sig-release-releases]中找到。
+
+例如：[1.15 发布团队](https://git.k8s.io/sig-release/releases/release-1.15/release_team.md)
+
+[community-membership]: https://git.k8s.io/community/community-membership.md#member
+[handbook-branch-mgmt]: https://git.k8s.io/sig-release/release-engineering/role-handbooks/branch-manager.md
+[handbook-packaging]: https://git.k8s.io/release/hack/rapture/README.md
+[handbook-patch-release]: https://git.k8s.io/sig-release/release-engineering/role-handbooks/patch-release-team.md
+[k-sig-release-releases]: https://git.k8s.io/sig-release/releases
+[patches]: /zh-cn/releases/patch-releases/
+[src]: https://git.k8s.io/community/committee-security-response/README.md
+[release-team]: https://git.k8s.io/sig-release/release-team/README.md
+[security-release-process]: https://git.k8s.io/security/security-release-process.md
diff --git a/content/zh-cn/releases/release.md b/content/zh-cn/releases/release.md
new file mode 100644
index 0000000000..9d1c01cf94
--- /dev/null
+++ b/content/zh-cn/releases/release.md
@@ -0,0 +1,660 @@
+---
+title: Kubernetes 发布周期
+type: docs
+---
+<!-- 
+title: Kubernetes Release Cycle
+type: docs
+auto_generated: true
+-->
+
+<!-- THIS CONTENT IS AUTO-GENERATED via ./scripts/releng/update-release-info.sh in k/website -->
+
+{{< warning >}}
+<!-- 
+This content is auto-generated and links may not function. The source of the document is located [here](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-release/release.md).
+-->
+此内容原文是自动生成的，链接可能无法正常访问。
+文档的来源在[这里](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-release/release.md)。
+{{< /warning >}}
+
+<!-- 
+# Targeting enhancements, Issues and PRs to Release Milestones
+
+This document is focused on Kubernetes developers and contributors who need to
+create an enhancement, issue, or pull request which targets a specific release
+milestone.
+-->
+# 针对发布里程碑的特性增强、Issue 和 PR  {#targeting-enhancements-issues-and-prs-to-release-milestones}
+
+本文档重点是面向于那些需要创建针对特定发布里程碑的特性增强、问题或拉取请求的 Kubernetes 开发人员和贡献者。
+
+<!-- 
+- [TL;DR](#tldr)
+  - [Normal Dev (Weeks 1-11)](#normal-dev-weeks-1-11)
+  - [Code Freeze (Weeks 12-14)](#code-freeze-weeks-12-14)
+  - [Post-Release (Weeks 14+)](#post-release-weeks-14+)
+- [Definitions](#definitions)
+- [The Release Cycle](#the-release-cycle)
+- [Removal Of Items From The Milestone](#removal-of-items-from-the-milestone)
+- [Adding An Item To The Milestone](#adding-an-item-to-the-milestone)
+  - [Milestone Maintainers](#milestone-maintainers)
+  - [Feature additions](#feature-additions)
+  - [Issue additions](#issue-additions)
+  - [PR Additions](#pr-additions)
+- [Other Required Labels](#other-required-labels)
+  - [SIG Owner Label](#sig-owner-label)
+  - [Priority Label](#priority-label)
+  - [Issue/PR Kind Label](#issuepr-kind-label)
+-->
+- [TL;DR](#tldr)
+   - [正常开发（第 1-11周）](#normal-dev-weeks-1-11)
+   - [代码冻结（第 12-14 周）](#code-freeze-weeks-12-14)
+   - [发布后（第 14 周以上）](#post-release-weeks-14)
+- [定义](#definitions)
+- [发布周期](#the-release-cycle)
+- [从里程碑中删除项目](#removal-of-items-from-the-milestone)
+- [向里程碑添加项目](#adding-an-item-to-the-milestone)
+   - [里程碑维护者](#milestone-maintainers)
+   - [新增特性](#feature-additions)
+   - [问题补充](#issue-additions)
+   - [新增 PR](#pr-additions)
+- [其他必需标签](#other-required-labels)
+   - [SIG 所有者标签](#sig-owner-label)
+   - [优先级标签](#priority-label)
+   - [Issue/PR 分类标签](#issuepr-kind-label)
+
+<!-- 
+The process for shepherding enhancements, issues, and pull requests into a
+Kubernetes release spans multiple stakeholders:
+
+- the enhancement, issue, and pull request owner(s)
+- SIG leadership
+- the [Release Team][release-team]
+
+Information on workflows and interactions are described below.
+-->
+将特性增强、问题和拉取请求引入 Kubernetes 版本的过程涉及多个利益相关者：
+
+- 特性增强、问题和拉取请求的所有者
+- SIG 负责人
+- [发布团队][release-team]
+
+关于工作流程和交互的信息如下所述。
+
+<!-- 
+As the owner of an enhancement, issue, or pull request (PR), it is your
+responsibility to ensure release milestone requirements are met. Automation and
+the Release Team will be in contact with you if updates are required, but
+inaction can result in your work being removed from the milestone. Additional
+requirements exist when the target milestone is a prior release (see
+[cherry pick process][cherry-picks] for more information).
+-->
+作为特性增强、问题或拉取请求 (PR) 的所有者，你有责任确保满足里程碑发布要求。
+如果需要更新，自动化和发布团队将与你联系，但无响应可能会导致你的工作从里程碑中删除。
+当目标里程碑是先前版本时，还存在其他要求（请参阅 [Cherry Pick 流程][cherry-picks]了解更多信息）。
+
+## TL;DR
+
+<!-- 
+If you want your PR to get merged, it needs the following required labels and
+milestones, represented here by the Prow /commands it would take to add them:
+-->
+如果你希望你的 PR 被合并，它需要以下必备的标签和里程碑，它们由 Prow /commands 所添加表示：
+
+<!-- 
+### Normal Dev (Weeks 1-8)
+-->
+### 正常开发（第 1-11 周）  {#normal-dev-weeks-1-11}
+
+- /sig {name}
+- /kind {type}
+- /lgtm
+- /approved
+
+<!-- 
+### [Code Freeze][code-freeze] (Weeks 12-14)
+-->
+### [代码冻结][code-freeze]（第 12-14 周）  {#code-freeze-code-freeze-weeks-12-14}
+
+- /milestone {v1.y}
+- /sig {name}
+- /kind {bug, failing-test}
+- /lgtm
+- /approved
+
+<!-- 
+### Post-Release (Weeks 14+)
+-->
+### 发布后（第 14 周以上）  {#post-release-weeks-14}
+
+<!-- 
+Return to 'Normal Dev' phase requirements:
+-->
+回到“正常开发”阶段要求：
+
+- /sig {name}
+- /kind {type}
+- /lgtm
+- /approved
+
+<!-- 
+Merges into the 1.y branch are now [via cherry picks][cherry-picks], approved
+by [Release Managers][release-managers].
+
+In the past, there was a requirement for a milestone-targeted pull requests to
+have an associated GitHub issue opened, but this is no longer the case.
+Features or enhancements are effectively GitHub issues or [KEPs][keps] which
+lead to subsequent PRs.
+
+The general labeling process should be consistent across artifact types.
+-->
+合并到 1.y 分支现在是[通过 Cherry Pick][cherry-picks]，由[发布管理员][release-managers]批准。
+
+过去，针对里程碑的拉取请求需要打开相关的 GitHub 问题，但现在情况不再如此。
+特性或特性增强实际上是 GitHub 问题或导致后续 PR 的 [KEPs][keps]。
+
+一般的打标签过程应该在不同工件类型之间保持一致。
+
+<!-- 
+## Definitions
+
+- *issue owners*: Creator, assignees, and user who moved the issue into a
+  release milestone
+
+- *Release Team*: Each Kubernetes release has a team doing project management
+  tasks described [here][release-team].
+
+  The contact info for the team associated with any given release can be found
+  [here](https://git.k8s.io/sig-release/releases/).
+
+- *Y days*: Refers to business days
+
+- *enhancement*: see "[Is My Thing an Enhancement?](https://git.k8s.io/enhancements/README.md#is-my-thing-an-enhancement)"
+-->
+## 定义  {#definitions}
+
+- **问题所有者**：将问题移至发布里程碑的创建者、委托人和用户
+
+- **发布小组**：每个 Kubernetes 版本都有一个团队来执行[这里][release-team]所描述的项目管理任务。
+
+  可以在[此处](https://git.k8s.io/sig-release/releases/)找到与任何给定版本相关联的团队的联系信息。
+
+- **Y 天**：指工作日
+
+- **增强**：参见“[我的改进是特性增强吗？](https://git.k8s.io/enhancements/README.md#is-my-thing-an-enhancement)”
+
+<!-- 
+- *[Enhancements Freeze][enhancements-freeze]*:
+  the deadline by which [KEPs][keps] have to be completed in order for
+  enhancements to be part of the current release
+
+- *[Exception Request][exceptions]*:
+  The process of requesting an extension on the deadline for a particular
+  Enhancement
+
+- *[Code Freeze][code-freeze]*:
+  The period of ~4 weeks before the final release date, during which only
+  critical bug fixes are merged into the release.
+
+- *[Pruning](https://git.k8s.io/sig-release/releases/release*phases.md#pruning)*:
+  The process of removing an Enhancement from a release milestone if it is not
+  fully implemented or is otherwise considered not stable.
+-->
+- **[特性增强冻结][enhancements-freeze]**：
+  为了使特性增强成为当前版本的一部分，必须在 [KEPs][keps] 的截止日期前完成
+
+- **[异常请求][exceptions]**：
+  请求延长特性增强的截止日期的过程
+
+- **[代码冻结][code-freeze]**：
+  最终发布日期前约 4 周的时间，在此期间，仅将关键错误修复合并到发布中。
+
+- **[修剪](https://git.k8s.io/sig-release/releases/release*phases.md#pruning)**：
+  如果特性增强未完全实现或被认为不稳定，则在此过程中从发布里程碑中删除它。
+
+<!-- 
+- *release milestone*: semantic version string or
+  [GitHub milestone](https://help.github.com/en/github/managing-your-work-on-github/associating-milestones-with-issues-and-pull-requests)
+  referring to a release MAJOR.MINOR `vX.Y` version.
+
+  See also
+  [release versioning](https://git.k8s.io/sig-release/release-engineering/versioning.md).
+
+- *release branch*: Git branch `release-X.Y` created for the `vX.Y` milestone.
+
+  Created at the time of the `vX.Y-rc.0` release and maintained after the
+  release for approximately 12 months with `vX.Y.Z` patch releases.
+
+  Note: releases 1.19 and newer receive 1 year of patch release support, and
+  releases 1.18 and earlier received 9 months of patch release support.
+-->
+- **发布里程碑**：语义版本字符串或
+  [GitHub 里程碑](https://help.github.com/en/github/managing-your-work-on-github/associating-milestones-with-issues-and-pull-requests)
+  指的是发布 主.次 `vX.Y` 版本。
+
+  另请参阅[发布版本控制](https://git.k8s.io/sig-release/release-engineering/versioning.md)。
+
+- **发布分支**：为 `vX.Y` 里程碑创建的 Git 分支 `release-X.Y`。
+
+  在 `vX.Y-rc.0` 发布时创建，并在发布后使用 `vX.Y.Z` 补丁版本，维护大约 12 个月。
+
+  注意：1.19 及更高版本获得 1 年的补丁版本支持，1.18 及更早版本获得 9 个月的补丁版本支持。
+
+<!-- 
+## The Release Cycle
+-->
+## 发布周期  {#the-release-cycle}
+
+![Image of one Kubernetes release cycle](/images/releases/release-cycle.jpg)
+
+<!-- 
+Kubernetes releases currently happen approximately three times per year.
+
+The release process can be thought of as having three main phases:
+
+- Enhancement Definition
+- Implementation
+- Stabilization
+-->
+Kubernetes 目前大约每年发布三次。
+
+发布过程可被认为具有三个主要阶段：
+
+- 特性增强定义
+- 实现
+- 稳定
+
+<!-- 
+But in reality, this is an open source and agile project, with feature planning
+and implementation happening at all times. Given the project scale and globally
+distributed developer base, it is critical to project velocity to not rely on a
+trailing stabilization phase and rather have continuous integration testing
+which ensures the project is always stable so that individual commits can be
+flagged as having broken something.
+-->
+但实际上，这是一个灵活的开源项目，功能规划和实施始终在进行。
+鉴于项目规模和全球分布的开发人员基础，对项目速度至关重要的是不依赖于后续的稳定阶段，
+而是进行持续集成测试，以确保项目始终稳定，以便可以将单个提交标记为有问题。
+
+<!-- 
+With ongoing feature definition through the year, some set of items will bubble
+up as targeting a given release. **[Enhancements Freeze][enhancements-freeze]**
+starts ~4 weeks into release cycle. By this point all intended feature work for
+the given release has been defined in suitable planning artifacts in
+conjunction with the Release Team's [Enhancements Lead](https://git.k8s.io/sig-release/release-team/role-handbooks/enhancements/README.md).
+-->
+随着全年功能定义的不断进行，某些项目将冒泡作为给定版本的目标。
+在发布周期约 4 周后开始 **[冻结特性增强][enhancements-freeze]**。
+至此，针对给定版本的所有预期功能工作都已与发布团队的
+[特性增强负责人](https://git.k8s.io/sig-release/release-team/role-handbooks/enhancements/README.md)
+一起在合适的规划工件中定义。
+
+
+<!-- 
+After Enhancements Freeze, tracking milestones on PRs and issues is important.
+Items within the milestone are used as a punchdown list to complete the
+release. *On issues*, milestones must be applied correctly, via triage by the
+SIG, so that [Release Team][release-team] can track bugs and enhancements (any
+enhancement-related issue needs a milestone).
+-->
+特性增强冻结后，跟踪 PR 和问题的里程碑很重要。里程碑中的项目作为完成发布的下达列表。
+**关于问题**，里程碑必须通过 SIG 的分类正确应用，
+以便[发布团队][release-team]可以跟踪错误和特性增强（任何与特性增强相关的问题都需要里程碑）。
+
+<!-- 
+There is some automation in place to help automatically assign milestones to
+PRs.
+
+This automation currently applies to the following repos:
+-->
+自动化可以自动将里程碑分配给 PR。
+
+此自动化当前适用于以下存储库：
+
+- `kubernetes/enhancements`
+- `kubernetes/kubernetes`
+- `kubernetes/release`
+- `kubernetes/sig-release`
+- `kubernetes/test-infra`
+
+<!--
+At creation time, PRs against the `master` branch need humans to hint at which
+milestone they might want the PR to target. Once merged, PRs against the
+`master` branch have milestones auto-applied so from that time onward human
+management of that PR's milestone is less necessary. On PRs against release
+branches, milestones are auto-applied when the PR is created so no human
+management of the milestone is ever necessary.
+-->
+在创建时，针对 `master` 分支的 PR 需要人工提示他们可能希望 PR 指向哪个里程碑。
+一旦合并，针对 `master` 分支的 PR 会自动应用里程碑，因此从那时起，不再需要人工管理该 PR 的里程碑。
+在指向发布分支的 PR 上，会在创建 PR 时自动应用里程碑，因此不需要对里程碑进行人工管理。
+
+<!-- 
+Any other effort that should be tracked by the Release Team that doesn't fall
+under that automation umbrella should be have a milestone applied.
+
+Implementation and bug fixing is ongoing across the cycle, but culminates in a
+code freeze period.
+
+**[Code Freeze][code-freeze]** starts in week ~12 and continues for ~2 weeks.
+Only critical bug fixes are accepted into the release codebase during this
+time.
+-->
+任何其他应该由发布团队跟踪的不属于该自动化保护伞的工作都应该应用一个里程碑。
+
+整个周期都在进行实施和错误修复，但最终会出现代码冻结期。
+
+**[代码冻结][code-freeze]** 大约从第 12 周开始，持续约 2 周。
+在此期间，只有关键的错误修复才会被接受到发布代码库中。
+
+<!-- 
+There are approximately two weeks following Code Freeze, and preceding release,
+during which all remaining critical issues must be resolved before release.
+This also gives time for documentation finalization.
+
+When the code base is sufficiently stable, the master branch re-opens for
+general development and work begins there for the next release milestone. Any
+remaining modifications for the current release are cherry picked from master
+back to the release branch. The release is built from the release branch.
+
+Each release is part of a broader Kubernetes lifecycle:
+-->
+在代码冻结之后和之前的发布之间大约有两周时间，在此期间，必须在发布版本前解决所有剩余的严重问题。
+这也为文档定稿提供了时间。
+
+当代码库足够稳定时，主分支将重新打开以进行一般开发，并从那里开始下一个发布里程碑的工作。
+当前版本的任何剩余修改都是从 master 挑选回发布分支。发布版本是从发布分支构建的。
+
+每个版本都是更广泛的 Kubernetes 生命周期的一部分：
+
+![Image of Kubernetes release lifecycle spanning three releases](/images/releases/release-lifecycle.jpg)
+
+<!-- 
+## Removal Of Items From The Milestone
+
+Before getting too far into the process for adding an item to the milestone,
+please note:
+
+Members of the [Release Team][release-team] may remove issues from the
+milestone if they or the responsible SIG determine that the issue is not
+actually blocking the release and is unlikely to be resolved in a timely
+fashion.
+
+Members of the Release Team may remove PRs from the milestone for any of the
+following, or similar, reasons:
+-->
+## 从里程碑中删除项目  {#removal-of-items-from-the-milestone}
+
+在深入了解将项目添加到里程碑的过程之前，请注意：
+
+如果[发布小组][release-team]的成员或负责的 SIG
+确定问题实际上并未阻止发布并且不太可能及时解决，则可以从里程碑中删除问题。
+
+发布团队的成员可以出于以下任何原因或类似原因从里程碑中删除 PR：
+
+<!-- 
+- PR is potentially de-stabilizing and is not needed to resolve a blocking
+  issue
+- PR is a new, late feature PR and has not gone through the enhancements
+  process or the [exception process][exceptions]
+- There is no responsible SIG willing to take ownership of the PR and resolve
+  any follow-up issues with it
+- PR is not correctly labelled
+- Work has visibly halted on the PR and delivery dates are uncertain or late
+-->
+- PR 可能会破坏稳定，并且不需要去解决阻塞问题
+- PR 是一个新的、较晚的特性 PR 并且没有经过增强过程或[异常过程][exceptions]
+- 没有负责任的 SIG 愿意接管 PR 并解决任何后续问题
+- PR 未正确标记
+- PR 工作明显停止，交付日期不确定或延迟
+
+<!-- 
+While members of the Release Team will help with labelling and contacting
+SIG(s), it is the responsibility of the submitter to categorize PRs, and to
+secure support from the relevant SIG to guarantee that any breakage caused by
+the PR will be rapidly resolved.
+
+Where additional action is required, an attempt at human to human escalation
+will be made by the Release Team through the following channels:
+-->
+虽然发布团队的成员将帮助标记和联系 SIG，但提交者有责任对 PR 进行分类，
+并获得相关 SIG 的支持，以保证由 PR 引起的任何破坏都会得到迅速解决。
+
+如果需要采取其他措施，发布团队将通过以下渠道尝试进行人与人之间的对话：
+
+<!-- 
+- Comment in GitHub mentioning the SIG team and SIG members as appropriate for
+  the issue type
+- Emailing the SIG mailing list
+  - bootstrapped with group email addresses from the
+    [community sig list][sig-list]
+  - optionally also directly addressing SIG leadership or other SIG members
+- Messaging the SIG's Slack channel
+  - bootstrapped with the slackchannel and SIG leadership from the
+    [community sig list][sig-list]
+  - optionally directly "@" mentioning SIG leadership or others by handle
+-->
+- 在 GitHub 中发表评论，根据问题类型提及 SIG 团队和 SIG 成员
+- 给 SIG 邮件列表发邮件
+   - 使用来自[社区 SIG 列表][sig-list]的群组电子邮件地址进行引导
+   - 也可选择直接与 SIG 负责人或 SIG 其他成员联系
+- 向 SIG 的 Slack 频道发送消息
+   - 在 Slack 频道 和 SIG 负责人的引导下
+     [社区签名列表][签名列表]
+   - 可选地直接 “@” 来提及 SIG 负责人或其他人
+
+<!-- 
+## Adding An Item To The Milestone
+
+### Milestone Maintainers
+
+The members of the [`milestone-maintainers`](https://github.com/orgs/kubernetes/teams/milestone-maintainers/members)
+GitHub team are entrusted with the responsibility of specifying the release
+milestone on GitHub artifacts.
+
+This group is [maintained](https://git.k8s.io/sig-release/release-team/README.md#milestone-maintainers)
+by SIG Release and has representation from the various SIGs' leadership.
+-->
+## 向里程碑添加项目  {#adding-an-item-to-the-milestone}
+
+### 里程碑维护者  {#milestone-maintainers}
+
+[`milestone-maintainers`](https://github.com/orgs/kubernetes/teams/milestone-maintainers/members)
+GitHub 团队的成员负责在 GitHub 工件上指定发布里程碑。
+
+该小组由 SIG Release
+[维护](https://git.k8s.io/sig-release/release-team/README.md#milestone-maintainers)，并有来自各个 SIG 负责人的代表。
+
+<!-- 
+### Feature additions
+
+Feature planning and definition takes many forms today, but a typical example
+might be a large piece of work described in a [KEP][keps], with associated task
+issues in GitHub. When the plan has reached an implementable state and work is
+underway, the enhancement or parts thereof are targeted for an upcoming milestone
+by creating GitHub issues and marking them with the Prow "/milestone" command.
+-->
+### 特性添加  {#feature-additions}
+
+如今，功能规划和定义有多种形式，但一个典型的例子可能是
+[KEP][keps] 中描述的大量工作，以及 GitHub 中的相关任务问题。
+当计划达到可实施状态并且工作正在进行中时，通过创建 GitHub 问题并使用
+Prow "/milestone" 命令对其进行标记，特性增强或其部分指向未来的里程碑。
+
+<!-- 
+For the first ~4 weeks into the release cycle, the Release Team's Enhancements
+Lead will interact with SIGs and feature owners via GitHub, Slack, and SIG
+meetings to capture all required planning artifacts.
+
+If you have an enhancement to target for an upcoming release milestone, begin a
+conversation with your SIG leadership and with that release's Enhancements
+Lead.
+-->
+在发布周期的前 4 周左右内，发布团队的特性增强负责人将通过
+GitHub、Slack 和 SIG 会议与 SIG 和特性所有者互动，以获取所有需要的计划工件。
+
+如果你有针对即将发布的里程碑的特性增强，请与你的 SIG 领导以及该版本的特性增强负责人开始对话。
+
+<!-- 
+### Issue additions
+
+Issues are marked as targeting a milestone via the Prow "/milestone" command.
+
+The Release Team's [Bug Triage Lead](https://git.k8s.io/sig-release/release-team/role-handbooks/bug-triage/README.md)
+and overall community watch incoming issues and triage them, as described in
+the contributor guide section on
+[issue triage](https://k8s.dev/docs/guide/issue-triage/).
+-->
+### 问题补充  {#issue-additions}
+
+通过 Prow “/milestone” 命令标记问题并指向里程碑。
+
+发布团队的[错误分类负责人](https://git.k8s.io/sig-release/release-team/role-handbooks/bug-triage/README.md)和整个社区观察新出现的问题并对其进行分类，
+在贡献者指南部分中描述[问题分类](https://k8s.dev/docs/guide/issue-triage/)。
+
+<!-- 
+Marking issues with the milestone provides the community better visibility
+regarding when an issue was observed and by when the community feels it must be
+resolved. During [Code Freeze][code-freeze], a milestone must be set to merge
+a PR.
+
+An open issue is no longer required for a PR, but open issues and associated
+PRs should have synchronized labels. For example a high priority bug issue
+might not have its associated PR merged if the PR is only marked as lower
+priority.
+-->
+用里程碑标记问题可以让社区更好地了解何时观察到问题以及社区认为何时必须解决问题。
+[代码冻结][code-freeze]期间，必须设置里程碑以合并 PR。
+
+一个 PR 不再需要一个已开启的问题，但已开启的问题和相关的 PR 应该有同步的标签。
+例如，如果 PR 仅标记为较低优先级，则高优先级错误问题可能不会合并其关联的 PR。
+
+<!-- 
+### PR Additions
+
+PRs are marked as targeting a milestone via the Prow "/milestone" command.
+
+This is a blocking requirement during Code Freeze as described above.
+-->
+### PR 补充  {#pr-additions}
+
+PR 通过 Prow “/milestone” 命令标记并指向里程碑。
+
+如上所述，这是代码冻结期间的阻塞要求。
+
+<!-- 
+## Other Required Labels
+
+[Here is the list of labels and their use and purpose.](https://git.k8s.io/test-infra/label_sync/labels.md#labels-that-apply-to-all-repos-for-both-issues-and-prs)
+-->
+## 其他必需的标签  {#other-required-labels}
+
+[这里是标签列表及其用途和目的](https://git.k8s.io/test-infra/label_sync/labels.md#labels-that-apply-to-all-repos-for-both-issues-and-prs)。
+
+<!-- 
+### SIG Owner Label
+
+The SIG owner label defines the SIG to which we escalate if a milestone issue
+is languishing or needs additional attention. If there are no updates after
+escalation, the issue may be automatically removed from the milestone.
+
+These are added with the Prow "/sig" command. For example to add the label
+indicating SIG Storage is responsible, comment with `/sig storage`.
+-->
+### SIG 所有者标签  {#sig-owner-label}
+
+SIG 所有者标签定义了当里程碑问题未取得进展或需要额外关注时，我们应该逐步升级的 SIG。
+如果升级后没有更新，该问题可能会自动从里程碑中删除。
+
+这些是通过 Prow "/sig" 命令添加的。
+例如要添加指示 SIG Storage 负责的标签，请使用 `/sig storage` 进行评论。
+
+<!-- 
+### Priority Label
+
+Priority labels are used to determine an escalation path before moving issues
+out of the release milestone. They are also used to determine whether or not a
+release should be blocked on the resolution of the issue.
+-->
+### 优先级标签  {#priority-label}
+
+优先级标签用于在将问题移出发布里程碑之前确定升级路径。
+它们还用于确定在解决问题时是否应阻止发布。
+
+<!-- 
+- `priority/critical-urgent`: Never automatically move out of a release
+  milestone; continually escalate to contributor and SIG through all available
+  channels.
+  - considered a release blocking issue
+  - requires daily updates from issue owners during [Code Freeze][code-freeze]
+  - would require a patch release if left undiscovered until after the minor
+    release
+- `priority/important-soon`: Escalate to the issue owners and SIG owner; move
+  out of milestone after several unsuccessful escalation attempts.
+  - not considered a release blocking issue
+  - would not require a patch release
+  - will automatically be moved out of the release milestone at Code Freeze
+    after a 4 day grace period
+- `priority/important-longterm`: Escalate to the issue owners; move out of the
+  milestone after 1 attempt.
+  - even less urgent / critical than `priority/important-soon`
+  - moved out of milestone more aggressively than `priority/important-soon`
+-->
+- `priority/critical-urgent`：永远不会自动移出发布里程碑；通过所有可用渠道不断上报给贡献者和 SIG。
+   - 考虑发布阻塞问题
+   - 在[代码冻结][code-freeze]期间需要问题所有者的每日更新
+   - 如果在次要版本之后才被发现，则需要补丁版本
+- `priority/important-soon`：上报给问题所有者和 SIG 所有者；在几次不成功的升级尝试后退出里程碑。
+   - 不考虑发布阻止问题
+   - 不需要补丁版本
+   - 将在 4 天的宽限期后自动移出代码冻结的发布里程碑
+- `priority/important-longterm`：上报给问题所有者；1 次尝试后移出里程碑
+   - 比 `priority/important-soon` 更不紧急/不关键
+   - 比 `priority/important-soon` 更积极地移出里程碑
+
+<!-- 
+### Issue/PR Kind Label
+
+The issue kind is used to help identify the types of changes going into the
+release over time. This may allow the Release Team to develop a better
+understanding of what sorts of issues we would miss with a faster release
+cadence.
+
+For release targeted issues, including pull requests, one of the following
+issue kind labels must be set:
+-->
+### Issue/PR 分类标签  {#issue-pr-kind-label}
+
+Issue 类型用于帮助识别随着时间的推移进入版本的更改类型。
+这可以让发布团队更好地了解我们会在更快的发布节奏下错过哪些类型的 Issue。
+
+对于发布版本的目标问题，包括拉取请求，必须设置以下问题类型标签之一：
+
+<!-- 
+- `kind/api-change`: Adds, removes, or changes an API
+- `kind/bug`: Fixes a newly discovered bug.
+- `kind/cleanup`: Adding tests, refactoring, fixing old bugs.
+- `kind/design`: Related to design
+- `kind/documentation`: Adds documentation
+- `kind/failing-test`: CI test case is failing consistently.
+- `kind/feature`: New functionality.
+- `kind/flake`: CI test case is showing intermittent failures.
+-->
+- `kind/api-change`：添加、删除或更改 API
+- `kind/bug`：修复了一个新发现的错误
+- `kind/cleanup`：添加测试、重构、修复旧错误
+- `kind/design`：与设计相关
+- `kind/documentation`：添加文档
+- `kind/failing-test`：CI 测试用例一直失败
+- `kind/feature`：新功能
+- `kind/flake`：CI 测试用例显示间歇性故障
+
+[cherry-picks]: https://git.k8s.io/community/contributors/devel/sig-release/cherry-picks.md
+[code-freeze]: https://git.k8s.io/sig-release/releases/release_phases.md#code-freeze
+[enhancements-freeze]: https://git.k8s.io/sig-release/releases/release_phases.md#enhancements-freeze
+[exceptions]: https://git.k8s.io/sig-release/releases/release_phases.md#exceptions
+[keps]: https://git.k8s.io/enhancements/keps
+[release-managers]: /releases/release-managers/
+[release-team]: https://git.k8s.io/sig-release/release-team
+[sig-list]: https://k8s.dev/sigs
diff --git a/content/zh-cn/releases/version-skew-policy.md b/content/zh-cn/releases/version-skew-policy.md
new file mode 100644
index 0000000000..5ddbf453e5
--- /dev/null
+++ b/content/zh-cn/releases/version-skew-policy.md
@@ -0,0 +1,369 @@
+---
+title: 版本偏差策略
+type: docs
+description: >
+  Kubernetes 各个组件之间所支持的最大版本偏差。
+---
+<!-- 
+reviewers:
+- sig-api-machinery
+- sig-architecture
+- sig-cli
+- sig-cluster-lifecycle
+- sig-node
+- sig-release
+title: Version Skew Policy
+type: docs
+description: >
+  The maximum version skew supported between various Kubernetes components.
+-->
+
+<!-- overview -->
+<!-- 
+This document describes the maximum version skew supported between various Kubernetes components.
+Specific cluster deployment tools may place additional restrictions on version skew.
+-->
+本文档描述了 Kubernetes 各个组件之间所支持的最大版本偏差。
+特定的集群部署工具可能会对版本偏差添加额外的限制。
+
+<!-- body -->
+
+<!-- 
+## Supported versions
+
+Kubernetes versions are expressed as **x.y.z**, where **x** is the major version, **y** is the minor version, and **z** is the patch version, following [Semantic Versioning](https://semver.org/) terminology.
+For more information, see [Kubernetes Release Versioning](https://git.k8s.io/sig-release/release-engineering/versioning.md#kubernetes-release-versioning).
+
+The Kubernetes project maintains release branches for the most recent three minor releases ({{< skew currentVersion >}}, {{< skew currentVersionAddMinor -1 >}}, {{< skew currentVersionAddMinor -2 >}}).  Kubernetes 1.19 and newer receive approximately 1 year of patch support. Kubernetes 1.18 and older received approximately 9 months of patch support.
+-->
+## 支持的版本  {#supported-versions}
+
+Kubernetes 版本以 **x.y.z** 表示，其中 **x** 是主要版本，
+**y** 是次要版本，**z** 是补丁版本，遵循[语义版本控制](https://semver.org/)术语。
+更多信息请参见
+[Kubernetes 版本发布控制](https://git.k8s.io/sig-release/release-engineering/versioning.md#kubernetes-release-versioning)。
+
+Kubernetes 项目维护最近的三个次要版本（{{< skew currentVersion >}}、{{< skew currentVersionAddMinor -1 >}}、{{< skew currentVersionAddMinor -2 >}}）的发布分支。
+Kubernetes 1.19 和更新的版本获得大约 1 年的补丁支持。
+Kubernetes 1.18 及更早的版本获得了大约 9 个月的补丁支持。
+
+<!-- 
+Applicable fixes, including security fixes, may be backported to those three release branches, depending on severity and feasibility.
+Patch releases are cut from those branches at a [regular cadence](/releases/patch-releases/#cadence), plus additional urgent releases, when required.
+
+The [Release Managers](/releases/release-managers/) group owns this decision.
+
+For more information, see the Kubernetes [patch releases](/releases/patch-releases/) page.
+-->
+适当的修复，包括安全问题修复，可能会被后沿三个发布分支，具体取决于问题的严重性和可行性。
+补丁版本按[常规节奏](/zh-cn/releases/patch-releases/#cadence)从这些分支中删除，并在需要时增加额外的紧急版本。
+
+[发布管理员](/zh-cn/releases/release-managers/)小组拥有这件事的决定权。
+
+有关更多信息，请参阅 Kubernetes [补丁发布](/zh-cn/releases/patch-releases/)页面。
+
+<!-- 
+## Supported version skew
+
+### kube-apiserver
+
+In [highly-available (HA) clusters](/docs/setup/production-environment/tools/kubeadm/high-availability/), the newest and oldest `kube-apiserver` instances must be within one minor version.
+
+Example:
+
+* newest `kube-apiserver` is at **{{< skew currentVersion >}}**
+* other `kube-apiserver` instances are supported at **{{< skew currentVersion >}}** and **{{< skew currentVersionAddMinor -1 >}}**
+-->
+## 支持的版本偏差  {#supported-version-skew}
+
+### kube-apiserver  {#kube-apiserver}
+
+在[高可用性（HA）集群](/zh-cn/docs/setup/production-environment/tools/kubeadm/high-availability/)中，
+最新版和最老版的 `kube-apiserver` 实例版本偏差最多为一个次要版本。
+
+例如：
+
+* 最新的 `kube-apiserver` 实例处于 **{{< skew currentVersion >}}** 版本
+* 其他 `kube-apiserver` 实例支持 **{{< skew currentVersion >}}** 和 **{{< skew currentVersionAddMinor -1 >}}** 版本
+
+<!-- 
+### kubelet
+
+`kubelet` must not be newer than `kube-apiserver`, and may be up to two minor versions older.
+
+Example:
+
+* `kube-apiserver` is at **{{< skew currentVersion >}}**
+* `kubelet` is supported at **{{< skew currentVersion >}}**, **{{< skew currentVersionAddMinor -1 >}}**, and **{{< skew currentVersionAddMinor -2 >}}**
+-->
+### kubelet  {#kubelet}
+
+`kubelet` 版本不能比 `kube-apiserver` 版本新，并且最多只可落后两个次要版本。
+
+例如：
+
+* `kube-apiserver` 处于 **{{< skew currentVersion >}}** 版本
+* `kubelet` 支持 **{{< skew currentVersion >}}**、**{{< skew currentVersionAddMinor -1 >}}** 和 **{{< skew currentVersionAddMinor -2 >}}** 版本
+
+{{< note >}}
+<!--
+If version skew exists between `kube-apiserver` instances in an HA cluster, this narrows the allowed `kubelet` versions.
+-->
+如果 HA 集群中的 `kube-apiserver` 实例之间存在版本偏差，这会缩小允许的 `kubelet` 版本范围。
+{{</ note >}}
+
+<!-- 
+Example:
+
+* `kube-apiserver` instances are at **{{< skew currentVersion >}}** and **{{< skew currentVersionAddMinor -1 >}}**
+* `kubelet` is supported at **{{< skew currentVersionAddMinor -1 >}}**, and **{{< skew currentVersionAddMinor -2 >}}** (**{{< skew currentVersion >}}** is not supported because that would be newer than the `kube-apiserver` instance at version **{{< skew currentVersionAddMinor -1 >}}**)
+-->
+例如：
+
+* `kube-apiserver` 实例处于 **{{< skew currentVersion >}}** 和 **{{< skew currentVersionAddMinor -1 >}}** 版本
+* `kubelet` 支持 **{{< skew currentVersionAddMinor -1 >}}** 和 **{{< skew currentVersionAddMinor -2 >}}** 版本，
+  （不支持 **{{< skew currentVersion >}}** 版本，因为这将比
+  `kube-apiserver` **{{< skew currentVersionAddMinor -1 >}}** 版本的实例新）
+
+<!-- 
+### kube-controller-manager, kube-scheduler, and cloud-controller-manager
+
+`kube-controller-manager`, `kube-scheduler`, and `cloud-controller-manager` must not be newer than the `kube-apiserver` instances they communicate with. They are expected to match the `kube-apiserver` minor version, but may be up to one minor version older (to allow live upgrades).
+
+Example:
+
+* `kube-apiserver` is at **{{< skew currentVersion >}}**
+* `kube-controller-manager`, `kube-scheduler`, and `cloud-controller-manager` are supported at **{{< skew currentVersion >}}** and **{{< skew currentVersionAddMinor -1 >}}**
+-->
+### kube-controller-manager、kube-scheduler 和 cloud-controller-manager  {#kube-controller-manager-kube-scheduler-and-cloud-controller-manager}
+
+`kube-controller-manager`、`kube-scheduler` 和 `cloud-controller-manager`
+不能比与它们通信的 `kube-apiserver` 实例新。
+它们应该与 `kube-apiserver` 次要版本相匹配，但可能最多旧一个次要版本（允许实时升级）。
+
+例如：
+
+* `kube-apiserver` 处于 **{{< skew currentVersion >}}** 版本
+* `kube-controller-manager`、`kube-scheduler` 和 `cloud-controller-manager`
+  支持 **{{< skew currentVersion >}}** 和 **{{< skew currentVersionAddMinor -1 >}}** 版本
+
+{{< note >}}
+<!-- 
+If version skew exists between `kube-apiserver` instances in an HA cluster, and these components can communicate with any `kube-apiserver` instance in the cluster (for example, via a load balancer), this narrows the allowed versions of these components.
+-->
+如果 HA 集群中的 `kube-apiserver` 实例之间存在版本偏差，
+并且这些组件可以与集群中的任何 `kube-apiserver`
+实例通信（例如，通过负载均衡器），这会缩小这些组件所允许的版本范围。
+{{< /note >}}
+
+<!-- 
+Example:
+
+* `kube-apiserver` instances are at **{{< skew currentVersion >}}** and **{{< skew currentVersionAddMinor -1 >}}**
+* `kube-controller-manager`, `kube-scheduler`, and `cloud-controller-manager` communicate with a load balancer that can route to any `kube-apiserver` instance
+* `kube-controller-manager`, `kube-scheduler`, and `cloud-controller-manager` are supported at **{{< skew currentVersionAddMinor -1 >}}** (**{{< skew currentVersion >}}** is not supported because that would be newer than the `kube-apiserver` instance at version **{{< skew currentVersionAddMinor -1 >}}**)
+-->
+例如：
+
+* `kube-apiserver` 实例处于
+  **{{< skew currentVersion >}}** 和 **{{< skew currentVersionAddMinor -1 >}}** 版本
+* `kube-controller-manager`、`kube-scheduler` 和 `cloud-controller-manager`
+  与可以路由到任何 `kube-apiserver` 实例的负载均衡器通信
+* `kube-controller-manager`、`kube-scheduler` 和 `cloud-controller-manager`
+  支持 **{{< skew currentVersionAddMinor -1 >}}** 版本（不支持 **{{< skew currentVersion >}}**
+  版本，因为它比 **{{< skew currentVersionAddMinor -1 >}}** 版本的 `kube-apiserver` 实例新）
+
+<!-- 
+### kubectl
+
+`kubectl` is supported within one minor version (older or newer) of `kube-apiserver`.
+
+Example:
+
+* `kube-apiserver` is at **{{< skew currentVersion >}}**
+* `kubectl` is supported at **{{< skew nextMinorVersion >}}**, **{{< skew currentVersion >}}**, and **{{< skew currentVersionAddMinor -1 >}}**
+-->
+### kubectl  {#kubectl}
+
+`kubectl` 在 `kube-apiserver` 的一个次要版本（较旧或较新）中支持。
+
+例如：
+
+* `kube-apiserver` 处于 **{{< skew currentVersion >}}** 版本
+* `kubectl` 支持 **{{< skew nextMinorVersion >}}**、**{{< skew currentVersion >}}**
+  和 **{{< skew currentVersionAddMinor -1 >}}** 版本 
+
+{{< note >}}
+<!--
+If version skew exists between `kube-apiserver` instances in an HA cluster, this narrows the supported `kubectl` versions.
+-->
+如果 HA 集群中的 `kube-apiserver` 实例之间存在版本偏差，这会缩小支持的 `kubectl` 版本范围。
+{{< /note >}}
+
+<!-- 
+Example:
+
+* `kube-apiserver` instances are at **{{< skew currentVersion >}}** and **{{< skew currentVersionAddMinor -1 >}}**
+* `kubectl` is supported at **{{< skew currentVersion >}}** and **{{< skew currentVersionAddMinor -1 >}}** (other versions would be more than one minor version skewed from one of the `kube-apiserver` components)
+-->
+例如：
+
+* `kube-apiserver` 实例处于
+  **{{< skew currentVersion >}}** 和 **{{< skew currentVersionAddMinor -1 >}}** 版本
+* `kubectl` 支持 **{{< skew currentVersion >}}** 和 **{{< skew currentVersionAddMinor -1 >}}**
+  版本（其他版本将与 `kube-apiserver` 组件之一相差不止一个的次要版本）
+
+<!-- 
+## Supported component upgrade order
+
+The supported version skew between components has implications on the order in which components must be upgraded.
+This section describes the order in which components must be upgraded to transition an existing cluster from version **{{< skew currentVersionAddMinor -1 >}}** to version **{{< skew currentVersion >}}**.
+-->
+## 支持的组件升级顺序  {#supported-component-upgrade-order}
+
+组件之间支持的版本偏差会影响必须升级组件的顺序。
+本节介绍了将现有集群从 **{{< skew currentVersionAddMinor -1 >}}**
+版本转换到 **{{< skew currentVersion >}}** 版本时必须升级组件的顺序。
+
+<!-- 
+### kube-apiserver
+
+Pre-requisites:
+
+* In a single-instance cluster, the existing `kube-apiserver` instance is **{{< skew currentVersionAddMinor -1 >}}**
+* In an HA cluster, all `kube-apiserver` instances are at **{{< skew currentVersionAddMinor -1 >}}** or **{{< skew currentVersion >}}** (this ensures maximum skew of 1 minor version between the oldest and newest `kube-apiserver` instance)
+* The `kube-controller-manager`, `kube-scheduler`, and `cloud-controller-manager` instances that communicate with this server are at version **{{< skew currentVersionAddMinor -1 >}}** (this ensures they are not newer than the existing API server version, and are within 1 minor version of the new API server version)
+* `kubelet` instances on all nodes are at version **{{< skew currentVersionAddMinor -1 >}}** or **{{< skew currentVersionAddMinor -2 >}}** (this ensures they are not newer than the existing API server version, and are within 2 minor versions of the new API server version)
+* Registered admission webhooks are able to handle the data the new `kube-apiserver` instance will send them:
+  * `ValidatingWebhookConfiguration` and `MutatingWebhookConfiguration` objects are updated to include any new versions of REST resources added in **{{< skew currentVersion >}}** (or use the [`matchPolicy: Equivalent` option](/docs/reference/access-authn-authz/extensible-admission-controllers/#matching-requests-matchpolicy) available in v1.15+)
+  * The webhooks are able to handle any new versions of REST resources that will be sent to them, and any new fields added to existing versions in **{{< skew currentVersion >}}**
+-->
+### kube-apiserver  {#kube-apiserver-1}
+
+先决条件：
+
+* 在单实例集群中，现有的 `kube-apiserver` 实例处于 **{{< skew currentVersionAddMinor -1 >}}** 版本
+* 在 HA 集群中，所有 `kube-apiserver` 实例都处于
+  **{{< skew currentVersionAddMinor -1 >}}** 或 **{{< skew currentVersion >}}** 版本
+  （这确保了最老和最新的 `kube-apiserver` 实例之间的 1 个次要版本的最大偏差）
+* 与此服务器通信的 `kube-controller-manager`、`kube-scheduler` 和 `cloud-controller-manager`
+  实例的版本为 **{{< skew currentVersionAddMinor -1 >}}**
+  （这确保它们是不比现有 API 服务器版本还要新，并且在新 API 服务器版本的 1 个次要版本内）
+* 所有节点上的 `kubelet` 实例都是
+  **{{< skew currentVersionAddMinor -1 >}}** 或 **{{< skew currentVersionAddMinor -2 >}}**
+  版本（这确保它们不比现有 API 服务器版本新，并且在新 API 服务器版本的 2 个次要版本内）
+* 已注册的 admission webhook 能够处理新的 `kube-apiserver` 实例将发送给他们的数据：
+  * `ValidatingWebhookConfiguration` 和 `MutatingWebhookConfiguration`
+    对象已更新以包含 **{{< skew currentVersion >}}** 中添加的任何新版本的 REST 资源
+    （或使用 v1.15+ 中可用的 [`matchPolicy: Equivalent` 选项](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/#matching-requests-matchpolicy)）
+  * webhook 能够处理将发送给它们的任何新版本的 REST 资源，
+    以及添加到 **{{< skew currentVersion >}}** 中现有版本的任何新字段
+
+<!-- 
+Upgrade `kube-apiserver` to **{{< skew currentVersion >}}**
+-->
+将 `kube-apiserver` 升级到 **{{< skew currentVersion >}}** 版本
+
+{{< note >}}
+<!-- 
+Project policies for [API deprecation](/docs/reference/using-api/deprecation-policy/) and
+[API change guidelines](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api_changes.md)
+require `kube-apiserver` to not skip minor versions when upgrading, even in single-instance clusters.
+-->
+[API 弃用](/zh-cn/docs/reference/using-api/deprecation-policy/)和
+[API 变更指南](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api_changes.md)
+的项目策略要求 `kube-apiserver` 在升级时不跳过次要版本，即使在单实例集群中也是如此。
+{{< /note >}}
+
+<!-- 
+### kube-controller-manager, kube-scheduler, and cloud-controller-manager
+
+Pre-requisites:
+
+* The `kube-apiserver` instances these components communicate with are at **{{< skew currentVersion >}}** (in HA clusters in which these control plane components can communicate with any `kube-apiserver` instance in the cluster, all `kube-apiserver` instances must be upgraded before upgrading these components)
+
+Upgrade `kube-controller-manager`, `kube-scheduler`, and
+`cloud-controller-manager` to **{{< skew currentVersion >}}**. There is no
+required upgrade order between `kube-controller-manager`, `kube-scheduler`, and
+`cloud-controller-manager`. You can upgrade these components in any order, or
+even simultaneously.
+-->
+### kube-controller-manager、kube-scheduler 和 cloud-controller-manager  {#kube-controller-manager-kube-scheduler-and-cloud-controller-manager-1}
+
+先决条件：
+
+* 与这些组件通信的 `kube-apiserver` 实例处于 **{{< skew currentVersion >}}** 版本
+  （在 HA 集群中，这些控制平面组件可以与集群中的任何 `kube-apiserver` 实例通信，
+  所有 `kube-apiserver` 实例必须在升级这些组件之前升级）
+
+将 `kube-controller-manager`、`kube-scheduler` 和 `cloud-controller-manager`
+升级到 **{{< skew currentVersion >}}** 版本。
+`kube-controller-manager`、`kube-scheduler` 和 `cloud-controller-manager` 的升级顺序没有要求。
+你可以按任意顺序升级这些组件，甚至可以同时升级这些组件。
+
+<!-- 
+### kubelet
+
+Pre-requisites:
+
+* The `kube-apiserver` instances the `kubelet` communicates with are at **{{< skew currentVersion >}}**
+
+Optionally upgrade `kubelet` instances to **{{< skew currentVersion >}}** (or they can be left at **{{< skew currentVersionAddMinor -1 >}}** or **{{< skew currentVersionAddMinor -2 >}}**)
+-->
+### kubelet  {#kubelet-1}
+
+先决条件：
+
+* 与 `kubelet` 通信的 `kube-apiserver` 实例处于 **{{< skew currentVersion >}}** 版本
+
+可选择将 `kubelet` 实例升级到 **{{< skew latestMinorVersion >}}** 版本
+（或者它们可以留在 **{{< skew currentVersionAddMinor -1 >}}** 或 **{{< skew currentVersionAddMinor -2 >}}** 版本）
+
+{{< note >}}
+<!--
+Before performing a minor version `kubelet` upgrade, [drain](/docs/tasks/administer-cluster/safely-drain-node/) pods from that node.
+In-place minor version `kubelet` upgrades are not supported.
+-->
+在执行次要版本 `kubelet` 升级之前，[排空](/zh-cn/docs/tasks/administer-cluster/safely-drain-node/)该节点的 Pod。
+`kubelet` 不支持原地次要版本升级。
+{{</ note >}}
+
+{{< warning >}}
+<!-- 
+Running a cluster with `kubelet` instances that are persistently two minor versions behind `kube-apiserver` is not recommended:
+
+* they must be upgraded within one minor version of `kube-apiserver` before the control plane can be upgraded
+* it increases the likelihood of running `kubelet` versions older than the three maintained minor releases
+-->
+不建议运行 `kubelet` 实例始终落后 `kube-apiserver` 两个次要版本的集群：
+
+* 它们必须在 `kube-apiserver` 的一个次要版本中升级，然后才能升级控制平面
+* 它增加了运行早于三个处于维护状态的次要版本的 `kubelet` 的可能性
+{{</ warning >}}
+
+<!-- 
+### kube-proxy
+
+* `kube-proxy` must be the same minor version as `kubelet` on the node.
+* `kube-proxy` must not be newer than `kube-apiserver`.
+* `kube-proxy` must be at most two minor versions older than `kube-apiserver.`
+
+Example:
+
+If `kube-proxy` version is **{{< skew currentVersionAddMinor -2 >}}**:
+
+* `kubelet` version must be at the same minor version as **{{< skew currentVersionAddMinor -2 >}}**.
+* `kube-apiserver` version must be between **{{< skew currentVersionAddMinor -2 >}}** and **{{< skew currentVersion >}}**, inclusive.
+-->
+### kube-proxy  {#kube-proxy}
+
+* `kube-proxy` 和节点上的 `kubelet` 必须是相同的次要版本。
+* `kube-proxy` 版本不能比 `kube-apiserver` 版本新。
+* `kube-proxy` 最多只能比 `kube-apiserver` 落后两个次要版本。
+
+例如：
+
+如果 `kube-proxy` 版本处于 **{{< skew currentVersionAddMinor -2 >}}** 版本：
+
+* `kubelet` 必须处于相同的次要版本 **{{< skew currentVersionAddMinor -2 >}}**。
+* `kube-apiserver` 版本必须介于 **{{< skew currentVersionAddMinor -2 >}}** 和 **{{< skew currentVersion >}}** 之间，包括两者。
diff --git a/content/zh/search.md b/content/zh-cn/search.md
similarity index 100%
rename from content/zh/search.md
rename to content/zh-cn/search.md
diff --git a/content/zh/training/_index.html b/content/zh-cn/training/_index.html
similarity index 88%
rename from content/zh/training/_index.html
rename to content/zh-cn/training/_index.html
index 15ec4b0556..a76d801b8d 100644
--- a/content/zh/training/_index.html
+++ b/content/zh-cn/training/_index.html
@@ -24,6 +24,9 @@ class: training
         <!-- <p>Kubernetes is at the core of the cloud native movement. Training and certifications from the Linux Foundation and our training partners lets you invest in your career, learn Kubernetes, and make your cloud native projects successful.</p> -->
         <p>Kubernetes 是云原生运动的核心。来自 Linux 基金会和我们培训合作伙伴的培训、认证让您可以投资您的职业生涯，学习 Kubernetes，并使您的云原生项目获得成功。</p>
       </div>
+      <div class="logo-certification cta-image" id="logo-kcnf">
+        <img src="/images/training/kubernetes-kcnf-white.svg" />
+      </div>
       <div class="logo-certification cta-image" id="logo-cka">
         <img src="/images/training/kubernetes-cka-white.svg"/>
       </div>
@@ -31,7 +34,7 @@ class: training
         <img src="/images/training/kubernetes-ckad-white.svg"/>
       </div>
       <div class="logo-certification cta-image" id="logo-cks">
-        <img src="/images/training/kubernetes-cks-white.svg"/>        
+        <img src="/images/training/kubernetes-cks-white.svg"/>
       </div>
     </div>
   </div>
@@ -105,6 +108,18 @@ class: training
       <!-- <h2>Get Kubernetes Certified</h2> -->
       <h2>获取 Kubernetes 认证</h2>
     <div class="col-container">
+      <div class="col-nav">
+        <h5>
+          <b>Kubernetes and Cloud Native Associate (KCNA)</b>
+        </h5>
+        <!-- <p>The Kubernetes and Cloud Native Associate (KCNA) exam demonstrates a user’s foundational knowledge and skills in Kubernetes and the wider cloud native ecosystem.</p>
+        <p>A certified KCNA will confirm conceptual knowledge of the entire cloud native ecosystem, particularly focusing on Kubernetes.</p> -->
+        <p>Kubernetes 和云原生伙伴（KCNA）考试展示了用户在 Kubernetes 和更广泛的云原生生态系统中的基本知识和技能。</p>
+        <p>获得认证的 KCNA 将确认整个云原生生态系统的概念性知识，特别是 Kubernetes。</p>
+        <br>
+        <!-- <a href="https://training.linuxfoundation.org/certification/kubernetes-cloud-native-associate/" target="_blank" class="button">Go to Certification</a> -->
+        <a href="https://training.linuxfoundation.org/certification/kubernetes-cloud-native-associate/" target="_blank" class="button">前往认证</a>
+      </div>
       <div class="col-nav">
           <h5>
             <!-- <b>Certified Kubernetes Application Developer (CKAD)</b> -->
diff --git a/content/zh/blog/_index.md b/content/zh/blog/_index.md
deleted file mode 100644
index 1e61e53bd5..0000000000
--- a/content/zh/blog/_index.md
+++ /dev/null
@@ -1,10 +0,0 @@
----
-title: Kubernetes 博客
-linkTitle: 博客
-menu:
-  main:
-    title: "博客"
-    weight: 40
-    post: >
-       <p>阅读关于 kubernetes 和容器规范的最新信息,以及获取最新的技术。</p>
----
diff --git a/content/zh/blog/_posts/2018-06-06-4-years-of-k8s.md b/content/zh/blog/_posts/2018-06-06-4-years-of-k8s.md
deleted file mode 100644
index b4e118b584..0000000000
--- a/content/zh/blog/_posts/2018-06-06-4-years-of-k8s.md
+++ /dev/null
@@ -1,42 +0,0 @@
----
-title: Kubernetes 这四年
-approvers:
-cn-approvers:
-- congfairy
-layout: blog
-date: 2018-06-06
----
- <!--
-**Author**: Joe Beda (CTO and Founder, Heptio)
- On June 6, 2014 I checked in the [first commit](https://github.com/kubernetes/kubernetes/commit/2c4b3a562ce34cddc3f8218a2c4d11c7310e6d56) of what would become the public repository for Kubernetes. Many would assume that is where the story starts. It is the beginning of history, right? But that really doesn’t tell the whole story.
--->
-
- **作者**：Joe Beda( Heptio 首席技术官兼创始人)
- 2014 年 6 月 6 日，我检查了 Kubernetes 公共代码库的[第一次 commit](https://github.com/kubernetes/kubernetes/commit/2c4b3a562ce34cddc3f8218a2c4d11c7310e6d56) 。许多人会认为这是故事开始的地方。这难道不是一切开始的地方吗？但这的确不能把整个过程说清楚。
- 
- ![k8s_first_commit](/images/blog/2018-06-06-4-years-of-k8s/k8s-first-commit.png)
- 
- <!--
-The cast leading up to that commit was large and the success for Kubernetes since then is owed to an ever larger cast.
- Kubernetes was built on ideas that had been proven out at Google over the previous ten years with Borg. And Borg, itself, owed its existence to even earlier efforts at Google and beyond.
- Concretely, Kubernetes started as some prototypes from Brendan Burns combined with ongoing work from me and Craig McLuckie to better align the internal Google experience with the Google Cloud experience. Brendan, Craig, and I really wanted people to use this, so we made the case to build out this prototype as an open source project that would bring the best ideas from Borg out into the open.
- After we got the nod, it was time to actually build the system.  We took Brendan’s prototype (in Java), rewrote it in Go, and built just enough to get the core ideas across.  By this time the team had grown to include Ville Aikas, Tim Hockin, Brian Grant, Dawn Chen and Daniel Smith.  Once we had something working, someone had to sign up to clean things up to get it ready for public launch.  That ended up being me. Not knowing the significance at the time, I created a new repo, moved things over, and checked it in.  So while I have the first public commit to the repo, there was work underway well before that.
- The version of Kubernetes at that point was really just a shadow of what it was to become.  The core concepts were there but it was very raw.  For example, Pods were called Tasks.  That was changed a day before we went public.  All of this led up to the public announcement of Kubernetes on June 10th, 2014 in a keynote from Eric Brewer at the first DockerCon.  You can watch that video here:
--->
-
- 第一次 commit 涉及的人员众多，自那以后 Kubernetes 的成功归功于更大的开发者阵容。
- Kubernetes 建立在过去十年曾经在 Google 的 Borg 集群管理系统中验证过的思路之上。而 Borg 本身也是 Google 和其他公司早期努力的结果。
- 具体而言，Kubernetes 最初是从 Brendan Burns 的一些原型开始，结合我和 Craig McLuckie 正在进行的工作，以更好地将 Google 内部实践与 Google Cloud 的经验相结合。 Brendan，Craig 和我真的希望人们使用它，所以我们建议将这个原型构建为一个开源项目，将 Borg 的最佳创意带给大家。
-在我们所有人同意后，就开始着手构建这个系统了。我们采用了 Brendan 的原型（Java 语言），用 Go 语言重写了它，并且以上述核心思想去构建该系统。到这个时候，团队已经成长为包括 Ville Aikas，Tim Hockin，Brian Grant，Dawn Chen 和 Daniel Smith。一旦我们有了一些工作需求，有人必须承担一些脱敏的工作，以便为公开发布做好准备。这个角色最终由我承担。当时，我不知道这件事情的重要性，我创建了一个新的仓库，把代码搬过来，然后进行了检查。所以在我第一次提交 public commit 之前，就有工作已经启动了。
-那时 Kubernetes 的版本只是现在版本的简单雏形。核心概念已经有了，但非常原始。例如，Pods 被称为 Tasks，这在我们推广前一天就被替换。2014年6月10日 Eric Brewe 在第一届 DockerCon 上的演讲中正式发布了 Kubernetes 。您可以在此处观看该视频：
- 
-
-<center><iframe width="560" height="315" src="https://www.youtube.com/embed/YrxnVKZeqK8" frameborder="0" allow="autoplay; encrypted-media" allowfullscreen></iframe></center>  
-
- <!--
- But, however raw, that modest start was enough to pique the interest of a community that started strong and has only gotten stronger.  Over the past four years Kubernetes has exceeded the expectations of all of us that were there early on. We owe the Kubernetes community a huge debt.  The success the project has seen  is based not just on code and technology but also the way that an amazing group of people have come together to create something special.  The best expression of this is the [set of Kubernetes values](https://github.com/kubernetes/steering/blob/master/values.md) that Sarah Novotny helped curate.
- Here is to another 4 years and beyond! 🎉🎉🎉
--->
-
- 但是，无论多么原始，这小小的一步足以激起一个开始强大而且变得更强大的社区的兴趣。在过去的四年里，Kubernetes 已经超出了我们所有人的期望。我们对 Kubernetes 社区的所有人员表示感谢。该项目所取得的成功不仅基于代码和技术，还基于一群出色的人聚集在一起所做的有意义的事情。Sarah Novotny 策划的一套 [Kubernetes 价值观](https://github.com/kubernetes/steering/blob/master/values.md)是以上最好的表现形式。
- 让我们一起期待下一个4年！🎉🎉🎉
diff --git a/content/zh/blog/_posts/2018-06-28-Airflow-Kubernetes-Operator.md b/content/zh/blog/_posts/2018-06-28-Airflow-Kubernetes-Operator.md
deleted file mode 100644
index 5606cf9c2c..0000000000
--- a/content/zh/blog/_posts/2018-06-28-Airflow-Kubernetes-Operator.md
+++ /dev/null
@@ -1,676 +0,0 @@
----
-
-layout: blog
-
-title:  'Airflow on Kubernetes (Part 1): A Different Kind of Operator'
-
-date:   2018-06-28
-
-title: 'Airflow在Kubernetes中的使用（第一部分）：一种不同的操作器'
-
-cn-approvers:
-
-- congfairy
-
----
-
-
-<!--
-
-Author: Daniel Imberman (Bloomberg LP)
-
--->
-
-
-
-作者: Daniel Imberman (Bloomberg LP)
-
-
-
-<!--
-
-## Introduction
-
-
-
-As part of Bloomberg's continued commitment to developing the Kubernetes ecosystem, we are excited to announce the Kubernetes Airflow Operator; a mechanism for Apache Airflow, a popular workflow orchestration framework to natively launch arbitrary Kubernetes Pods using the Kubernetes API.
-
--->
-
-
-
-## 介绍
-
-
-
-作为Bloomberg [继续致力于开发Kubernetes生态系统]的一部分（https://www.techatbloomberg.com/blog/bloomberg-awarded-first-cncf-end-user-award-contributions-kubernetes/），我们很高兴能够宣布Kubernetes Airflow Operator的发布; [Apache Airflow](https://airflow.apache.org/)的机制，一种流行的工作流程编排框架，使用Kubernetes API可以在本机启动任意的Kubernetes Pod。
-
-
-
-<!--
-
-## What Is Airflow?
-
-
-
-Apache Airflow is one realization of the DevOps philosophy of "Configuration As Code." Airflow allows users to launch multi-step pipelines using a simple Python object DAG (Directed Acyclic Graph). You can define dependencies, programmatically construct complex workflows, and monitor scheduled jobs in an easy to read UI.
-
-
-
-
-
-
-
--->
-
-
-
-## 什么是Airflow?
-
-
-
-Apache Airflow是DevOps“Configuration As Code”理念的一种实现。 Airflow允许用户使用简单的Python对象DAG（有向无环图）启动多步骤流水线。 您可以在易于阅读的UI中定义依赖关系，以编程方式构建复杂的工作流，并监视调度的作业。
-
-
-
-<img src =“/ images / blog / 2018-05-25-Airflow-Kubernetes-Operator / 2018-05-25-airflow_dags.png”width =“85％”alt =“Airflow DAGs”/>
-
-<img src =“/ images / blog / 2018-05-25-Airflow-Kubernetes-Operator / 2018-05-25-airflow.png”width =“85％”alt =“Airflow UI”/>
-
-
-
-<!--
-
-## Why Airflow on Kubernetes?
-
-
-
-Since its inception, Airflow's greatest strength has been its flexibility. Airflow offers a wide range of integrations for services ranging from Spark and HBase, to services on various cloud providers. Airflow also offers easy extensibility through its plug-in framework. However, one limitation of the project is that Airflow users are confined to the frameworks and clients that exist on the Airflow worker at the moment of execution. A single organization can have varied Airflow workflows ranging from data science pipelines to application deployments. This difference in use-case creates issues in dependency management as both teams might use vastly different libraries for their workflows.
-
-
-
-To address this issue, we've utilized Kubernetes to allow users to launch arbitrary Kubernetes pods and configurations. Airflow users can now have full power over their run-time environments, resources, and secrets, basically turning Airflow into an "any job you want" workflow orchestrator.
-
--->
-
-
-
-## 为什么在Kubernetes上使用Airflow?
-
-
-
-自成立以来，Airflow的最大优势在于其灵活性。 Airflow提供广泛的服务集成，包括Spark和HBase，以及各种云提供商的服务。 Airflow还通过其插件框架提供轻松的可扩展性。但是，该项目的一个限制是Airflow用户仅限于执行时Airflow站点上存在的框架和客户端。单个组织可以拥有各种Airflow工作流程，范围从数据科学流到应用程序部署。用例中的这种差异会在依赖关系管理中产生问题，因为两个团队可能会在其工作流程使用截然不同的库。
-
-
-
-为了解决这个问题，我们使Kubernetes允许用户启动任意Kubernetes pod和配置。 Airflow用户现在可以在其运行时环境，资源和机密上拥有全部权限，基本上将Airflow转变为“您想要的任何工作”工作流程协调器。
-
-
-
-<!--
-
-## The Kubernetes Operator
-
-
-
-Before we move any further, we should clarify that an Operator in Airflow is a task definition. When a user creates a DAG, they would use an operator like the "SparkSubmitOperator" or the "PythonOperator" to submit/monitor a Spark job or a Python function respectively. Airflow comes with built-in operators for frameworks like Apache Spark, BigQuery, Hive, and EMR. It also offers a Plugins entrypoint that allows DevOps engineers to develop their own connectors.
-
-
-
-Airflow users are always looking for ways to make deployments and ETL pipelines simpler to manage. Any opportunity to decouple pipeline steps, while increasing monitoring, can reduce future outages and fire-fights. The following is a list of benefits provided by the Airflow Kubernetes Operator:
-
--->
-
-
-
-## Kubernetes运营商
-
-
-
-在进一步讨论之前，我们应该澄清Airflow中的[Operator](https://airflow.apache.org/concepts.html#operators)是一个任务定义。 当用户创建DAG时，他们将使用像“SparkSubmitOperator”或“PythonOperator”这样的operator分别提交/监视Spark作业或Python函数。 Airflow附带了Apache Spark，BigQuery，Hive和EMR等框架的内置运算符。 它还提供了一个插件入口点，允许DevOps工程师开发自己的连接器。
-
-
-
-Airflow用户一直在寻找更易于管理部署和ETL流的方法。 在增加监控的同时，任何解耦流程的机会都可以减少未来的停机等问题。 以下是Airflow Kubernetes Operator提供的好处：
-
-
-
-<!--
-
- * Increased flexibility for deployments:
-
-Airflow's plugin API has always offered a significant boon to engineers wishing to test new functionalities within their DAGs. On the downside, whenever a developer wanted to create a new operator, they had to develop an entirely new plugin. Now, any task that can be run within a Docker container is accessible through the exact same operator, with no extra Airflow code to maintain.
-
--->
-
-
-
-* 提高部署灵活性：
-
-Airflow的插件API一直为希望在其DAG中测试新功能的工程师提供了重要的福利。 不利的一面是，每当开发人员想要创建一个新的operator时，他们就必须开发一个全新的插件。 现在，任何可以在Docker容器中运行的任务都可以通过完全相同的运算符访问，而无需维护额外的Airflow代码。
-
-
-
-<!--
-
- * Flexibility of configurations and dependencies:
-
-For operators that are run within static Airflow workers, dependency management can become quite difficult. If a developer wants to run one task that requires SciPy and another that requires NumPy, the developer would have to either maintain both dependencies within all Airflow workers or offload the task to an external machine (which can cause bugs if that external machine changes in an untracked manner). Custom Docker images allow users to ensure that the tasks environment, configuration, and dependencies are completely idempotent.
-
--->
-
-
-
-* 配置和依赖的灵活性：
-
-对于在静态Airflow工作程序中运行的operator，依赖关系管理可能变得非常困难。 如果开发人员想要运行一个需要[SciPy](https://www.scipy.org)的任务和另一个需要[NumPy](http://www.numpy.org)的任务，开发人员必须维护所有Airflow节点中的依赖关系或将任务卸载到其他计算机（如果外部计算机以未跟踪的方式更改，则可能导致错误）。 自定义Docker镜像允许用户确保任务环境，配置和依赖关系完全是幂等的。
-
-
-
-<!--
-
- * Usage of kubernetes secrets for added security:
-
-Handling sensitive data is a core responsibility of any DevOps engineer. At every opportunity, Airflow users want to isolate any API keys, database passwords, and login credentials on a strict need-to-know basis. With the Kubernetes operator, users can utilize the Kubernetes Vault technology to store all sensitive data. This means that the Airflow workers will never have access to this information, and can simply request that pods be built with only the secrets they need.
-
--->
-
-
-
-* 使用kubernetes Secret以增加安全性：
-
-处理敏感数据是任何开发工程师的核心职责。 Airflow用户总有机会在严格条款的基础上隔离任何API密钥，数据库密码和登录凭据。 使用Kubernetes运算符，用户可以利用Kubernetes Vault技术存储所有敏感数据。 这意味着Airflow工作人员将永远无法访问此信息，并且可以容易地请求仅使用他们需要的密码信息构建pod。
-
-
-
-<!--
-
-# Architecture
-
-
-
-
-
-
-
-The Kubernetes Operator uses the Kubernetes Python Client to generate a request that is processed by the APIServer (1). Kubernetes will then launch your pod with whatever specs you've defined (2). Images will be loaded with all the necessary environment variables, secrets and dependencies, enacting a single command. Once the job is launched, the operator only needs to monitor the health of track logs (3). Users will have the choice of gathering logs locally to the scheduler or to any distributed logging service currently in their Kubernetes cluster.
-
--->
-
-
-
-＃架构
-
-
-
-<img src =“/ images / blog / 2018-05-25-Airflow-Kubernetes-Operator / 2018-05-25-airflow-architecture.png”width =“85％”alt =“Airflow Architecture”/>
-
-
-
-Kubernetes Operator使用[Kubernetes Python客户端](https://github.com/kubernetes-client/Python)生成由APIServer处理的请求（1）。 然后，Kubernetes将使用您定义的需求启动您的pod（2）。映像文件中将加载环境变量，Secret和依赖项，执行单个命令。 一旦启动作业，operator只需要监视跟踪日志的状况（3）。 用户可以选择将日志本地收集到调度程序或当前位于其Kubernetes集群中的任何分布式日志记录服务。
-
-
-
-<!--
-
-# Using the Kubernetes Operator
-
-
-
-## A Basic Example
-
-
-
-The following DAG is probably the simplest example we could write to show how the Kubernetes Operator works. This DAG creates two pods on Kubernetes: a Linux distro with Python and a base Ubuntu distro without it. The Python pod will run the Python request correctly, while the one without Python will report a failure to the user. If the Operator is working correctly, the passing-task pod should complete, while the failing-task pod returns a failure to the Airflow webserver.
-
--->
-
-
-
-＃使用Kubernetes Operator
-
-
-
-##一个基本的例子
-
-
-
-以下DAG可能是我们可以编写的最简单的示例，以显示Kubernetes Operator的工作原理。 这个DAG在Kubernetes上创建了两个pod：一个带有Python的Linux发行版和一个没有它的基本Ubuntu发行版。 Python pod将正确运行Python请求，而没有Python的那个将向用户报告失败。 如果Operator正常工作，则应该完成“passing-task”pod，而“falling-task”pod则向Airflow网络服务器返回失败。
-
-
-
-
-
-```Python
-
-from airflow import DAG
-
-from datetime import datetime, timedelta
-
-from airflow.contrib.operators.kubernetes_pod_operator import KubernetesPodOperator
-
-from airflow.operators.dummy_operator import DummyOperator
-
-
-default_args = {
-
-    'owner': 'airflow',
-
-    'depends_on_past': False,
-
-    'start_date': datetime.utcnow(),
-
-    'email': ['airflow@example.com'],
-
-    'email_on_failure': False,
-
-    'email_on_retry': False,
-
-    'retries': 1,
-
-    'retry_delay': timedelta(minutes=5)
-
-}
-
-
-
-dag = DAG(
-
-    'kubernetes_sample', default_args=default_args, schedule_interval=timedelta(minutes=10))
-
-start = DummyOperator(task_id='run_this_first', dag=dag)
-passing = KubernetesPodOperator(namespace='default',
-
-                          image="Python:3.6",
-
-                          cmds=["Python","-c"],
-
-                          arguments=["print('hello world')"],
-
-                          labels={"foo": "bar"},
-
-                          name="passing-test",
-
-                          task_id="passing-task",
-
-                          get_logs=True,
-
-                          dag=dag
-
-                          )
-
- failing = KubernetesPodOperator(namespace='default',
-
-                          image="ubuntu:1604",
-
-                          cmds=["Python","-c"],
-
-                          arguments=["print('hello world')"],
-
-                          labels={"foo": "bar"},
-
-                          name="fail",
-
-                          task_id="failing-task",
-
-                          get_logs=True,
-
-                          dag=dag
-
-                          )
-
-passing.set_upstream(start)
-
-failing.set_upstream(start)
-
-```
-
-<!--
-
-## But how does this relate to my workflow?
-
-
-
-While this example only uses basic images, the magic of Docker is that this same DAG will work for any image/command pairing you want. The following is a recommended CI/CD pipeline to run production-ready code on an Airflow DAG.
-
-
-
-### 1: PR in github
-
-Use Travis or Jenkins to run unit and integration tests, bribe your favorite team-mate into PR'ing your code, and merge to the master branch to trigger an automated CI build.
-
-
-
-### 2: CI/CD via Jenkins -> Docker Image
-
-
-
-Generate your Docker images and bump release version within your Jenkins build.
-
-
-
-### 3: Airflow launches task
-
-
-
-Finally, update your DAGs to reflect the new release version and you should be ready to go!
-
--->
-
-##但这与我的工作流程有什么关系？
-
-
-
-虽然这个例子只使用基本映像，但Docker的神奇之处在于，这个相同的DAG可以用于您想要的任何图像/命令配对。 以下是推荐的CI / CD管道，用于在Airflow DAG上运行生产就绪代码。
-
-
-
-### 1：github中的PR
-
-使用Travis或Jenkins运行单元和集成测试，请您的朋友PR您的代码，并合并到主分支以触发自动CI构建。
-
-
-
-### 2：CI / CD构建Jenkins - > Docker Image
-
-
-
-[在Jenkins构建中生成Docker镜像和缓冲版本](https://getintodevops.com/blog/building-your-first-Docker-image-with-jenkins-2-guide-for-developers)。
-
-
-
-### 3：Airflow启动任务
-
-
-
-最后，更新您的DAG以反映新版本，您应该准备好了！
-
-
-
-```Python
-
-production_task = KubernetesPodOperator(namespace='default',
-
-                          # image="my-production-job:release-1.0.1", <-- old release
-
-                          image="my-production-job:release-1.0.2",
-
-                          cmds=["Python","-c"],
-
-                          arguments=["print('hello world')"],
-
-                          name="fail",
-
-                          task_id="failing-task",
-
-                          get_logs=True,
-
-                          dag=dag
-
-                          )
-
-```
-
-<!--
-
-# Launching a test deployment
-
-
-
-Since the Kubernetes Operator is not yet released, we haven't released an official helm chart or operator (however both are currently in progress). However, we are including instructions for a basic deployment below  and are actively looking for foolhardy beta testers to try this new feature. To try this system out please follow these steps:
-
-
-
-## Step 1: Set your kubeconfig to point to a kubernetes cluster
-
-
-
-## Step 2: Clone the Airflow Repo:
-
-
-
-Run git clone https://github.com/apache/incubator-airflow.git to clone the official Airflow repo.
-
-
-
-## Step 3: Run
-
-
-
-To run this basic deployment, we are co-opting the integration testing script that we currently use for the Kubernetes Executor (which will be explained in the next article of this series). To launch this deployment, run these three commands:
-
--->
-
-
-
-＃启动测试部署
-
-
-
-由于Kubernetes运营商尚未发布，我们尚未发布官方[helm](https://helm.sh/) 图表或operator（但两者目前都在进行中）。 但是，我们在下面列出了基本部署的说明，并且正在积极寻找测试人员来尝试这一新功能。 要试用此系统，请按以下步骤操作：
-
-
-
-##步骤1：将kubeconfig设置为指向kubernetes集群
-
-
-
-##步骤2：clone Airflow 仓库：
-
-
-
-运行git clone https：// github.com / apache / incubator-airflow.git来clone官方Airflow仓库。
-
-
-
-##步骤3：运行
-
-
-
-为了运行这个基本Deployment，我们正在选择我们目前用于Kubernetes Executor的集成测试脚本（将在本系列的下一篇文章中对此进行解释）。 要启动此部署，请运行以下三个命令：
-
-
-
-```
-
-sed -ie "s/KubernetesExecutor/LocalExecutor/g" scripts/ci/kubernetes/kube/configmaps.yaml
-
-./scripts/ci/kubernetes/Docker/build.sh
-
-./scripts/ci/kubernetes/kube/deploy.sh
-
-```
-
-<!--
-
-Before we move on, let's discuss what these commands are doing:
-
-
-
-### sed -ie "s/KubernetesExecutor/LocalExecutor/g" scripts/ci/kubernetes/kube/configmaps.yaml
-
-
-
-The Kubernetes Executor is another Airflow feature that allows for dynamic allocation  of tasks as idempotent pods. The reason we are switching this to the LocalExecutor is simply to introduce one feature at a time. You are more then welcome to skip this step if you would like to try the Kubernetes Executor, however we will go into more detail in a future article.
-
-
-
-### ./scripts/ci/kubernetes/Docker/build.sh
-
-
-
-This script will tar the Airflow master source code build a Docker container based on the Airflow distribution
-
-
-
-### ./scripts/ci/kubernetes/kube/deploy.sh
-
-
-
-Finally, we create a full Airflow deployment on your cluster. This includes Airflow configs, a postgres backend, the webserver + scheduler, and all necessary services between. One thing to note is that the role binding supplied is a cluster-admin, so if you do not have that level of permission on the cluster, you can modify this at scripts/ci/kubernetes/kube/airflow.yaml
-
-
-
-## Step 4: Log into your webserver
-
-
-
-Now that your Airflow instance is running let's take a look at the UI! The UI lives in port 8080 of the Airflow pod, so simply run
-
--->
-
-
-
-在我们继续之前，让我们讨论这些命令正在做什么：
-
-
-
-### sed -ie“s / KubernetesExecutor / LocalExecutor / g”scripts / ci / kubernetes / kube / configmaps.yaml
-
-
-
-Kubernetes Executor是另一种Airflow功能，允许动态分配任务已解决幂等pod的问题。我们将其切换到LocalExecutor的原因只是一次引入一个功能。如果您想尝试Kubernetes Executor，欢迎您跳过此步骤，但我们将在以后的文章中详细介绍。
-
-
-
-### ./scripts/ci/kubernetes/Docker/build.sh
-
-
-
-此脚本将对Airflow主分支代码进行打包，以根据Airflow的发行文件构建Docker容器
-
-
-
-### ./scripts/ci/kubernetes/kube/deploy.sh
-
-
-
-最后，我们在您的群集上创建完整的Airflow部署。这包括Airflow配置，postgres后端，webserver +调度程序以及之间的所有必要服务。需要注意的一点是，提供的角色绑定是集群管理员，因此如果您没有该集群的权限级别，可以在scripts / ci / kubernetes / kube / airflow.yaml中进行修改。
-
-
-
-##步骤4：登录您的网络服务器
-
-
-
-现在您的Airflow实例正在运行，让我们来看看UI！用户界面位于Airflow pod的8080端口，因此只需运行即可
-
-
-
-```
-
-WEB=$(kubectl get pods -o go-template --template '{{range .items}}{{.metadata.name}}{{"\n"}}{{end}}' | grep "airflow" | head -1)
-
-kubectl port-forward $WEB 8080:8080
-
- ```
-
-<!--
-
- Now the Airflow UI will exist on http://localhost:8080. To log in simply enter airflow/airflow and you should have full access to the Airflow web UI.
-
-
-
-## Step 5: Upload a test document
-
-
-
-To modify/add your own DAGs, you can use kubectl cp to upload local files into the DAG folder of the Airflow scheduler. Airflow will then read the new DAG and automatically upload it to its system. The following command will upload any local file into the correct directory:
-
--->
-
-
-
-现在，Airflow UI将存在于http://localhost:8080上。 要登录，只需输入airflow /airflow，您就可以完全访问Airflow Web UI。
-
-
-
-##步骤5：上传测试文档
-
-
-
-要修改/添加自己的DAG，可以使用kubectl cp将本地文件上传到Airflow调度程序的DAG文件夹中。 然后，Airflow将读取新的DAG并自动将其上传到其系统。 以下命令将任何本地文件上载到正确的目录中：
-
-
-
-kubectl cp <local file> <namespace>/<pod>:/root/airflow/dags -c scheduler
-
-
-
-<!--
-
-## Step 6: Enjoy!
-
-
-
-# So when will I be able to use this?
-
-
-
- While this feature is still in the early stages, we hope to see it released for wide release in the next few months.
-
-
-
-# Get Involved
-
-
-
-This feature is just the beginning of multiple major efforts to improves Apache Airflow integration into Kubernetes. The Kubernetes Operator has been merged into the 1.10 release branch of Airflow (the executor in experimental mode), along with a fully k8s native scheduler called the Kubernetes Executor (article to come). These features are still in a stage where early adopters/contributors can have a huge influence on the future of these features.
-
-
-
-For those interested in joining these efforts, I'd recommend checkint out these steps:
-
-
-
- * Join the airflow-dev mailing list at dev@airflow.apache.org.
-
- * File an issue in Apache Airflow JIRA
-
- * Join our SIG-BigData meetings on Wednesdays at 10am PST.
-
- * Reach us on slack at #sig-big-data on kubernetes.slack.com
-
-
-
-Special thanks to the Apache Airflow and Kubernetes communities, particularly Grant Nicholas, Ben Goldberg, Anirudh Ramanathan, Fokko Dreisprong, and Bolke de Bruin, for your awesome help on these features as well as our future efforts.
-
--->
-
-
-
-##步骤6：使用它！
-
-
-
-#那么我什么时候可以使用它？
-
-
-
- 虽然此功能仍处于早期阶段，但我们希望在未来几个月内发布该功能以进行广泛发布。
-
-
-
-#参与其中
-
-
-
-此功能只是将Apache Airflow集成到Kubernetes中的多项主要工作的开始。 Kubernetes Operator已合并到[Airflow的1.10发布分支](https://github.com/apache/incubator-airflow/tree/v1-10-test)（实验模式中的执行模块），以及完整的k8s本地调度程序称为Kubernetes Executor（即将发布文章）。这些功能仍处于早期采用者/贡献者可能对这些功能的未来产生巨大影响的阶段。
-
-
-
-对于有兴趣加入这些工作的人，我建议按照以下步骤：
-
-
-
- *加入airflow-dev邮件列表dev@airflow.apache.org。
-
- *在[Apache Airflow JIRA]中提出问题（https://issues.apache.org/jira/projects/AIRFLOW/issues/）
-
- *周三上午10点太平洋标准时间加入我们的SIG-BigData会议。
-
- *在kubernetes.slack.com上的＃sig-big-data找到我们。
-
-
-
-特别感谢Apache Airflow和Kubernetes社区，特别是Grant Nicholas，Ben Goldberg，Anirudh Ramanathan，Fokko Dreisprong和Bolke de Bruin，感谢您对这些功能的巨大帮助以及我们未来的努力。
diff --git a/content/zh/blog/_posts/2019-04-26-latest-on-localization.md b/content/zh/blog/_posts/2019-04-26-latest-on-localization.md
deleted file mode 100644
index f1ca86016b..0000000000
--- a/content/zh/blog/_posts/2019-04-26-latest-on-localization.md
+++ /dev/null
@@ -1,53 +0,0 @@
----
-layout: blog
-title: '如何参与 Kubernetes 文档的本地化工作'
-date: 2019-04-26
----
-
-**作者: Zach Corleissen（Linux 基金会）**
-
-去年我们对 Kubernetes 网站进行了优化，加入了[多语言内容的支持](https://kubernetes.io/blog/2018/11/08/kubernetes-docs-updates-international-edition/)。贡献者们踊跃响应，加入了多种新的本地化内容：截至 2019 年 4 月，Kubernetes 文档有了 9 个不同语言的未完成版本，其中有 6 个是 2019 年加入的。在每个 Kubernetes 文档页面的上方，读者都可以看到一个语言选择器，其中列出了所有可用语言。
-
-不论是完成度最高的[中文版 v1.12](https://v1-12.docs.kubernetes.io/zh/)，还是最新加入的[葡萄牙文版 v1.14](https://kubernetes.io/pt/)，各语言的本地化内容还未完成，这是一个进行中的项目。如果读者有兴趣对现有本地化工作提供支持，请继续阅读。
-
-## 什么是本地化
-
-翻译是以词表意的问题。而本地化在此基础之上，还包含了过程和设计方面的工作。
-
-本地化和翻译很像，但是包含更多内容。除了进行翻译之外，本地化还要为编写和发布过程的框架进行优化。例如，Kubernetes.io 多数的站点浏览功能（按钮文字）都保存在[单独的文件](https://github.com/kubernetes/website/tree/master/i18n)之中。所以启动新本地化的过程中，需要包含加入对特定文件中字符串进行翻译的工作。
-
-本地化很重要，能够有效的降低 Kubernetes 的采纳和支持门槛。如果能用母语阅读 Kubernetes 文档，就能更轻松的开始使用 Kubernetes，并对其发展作出贡献。
-
-## 如何启动本地化工作
-
-不同语言的本地化工作都是单独的功能——和其它 Kubernetes 功能一致，贡献者们在一个 SIG 中进行本地化工作，分享出来进行评审，并加入项目。
-
-贡献者们在团队中进行内容的本地化工作。因为自己不能批准自己的 PR，所以一个本地化团队至少应该有两个人——例如意大利文的本地化团队有两个人。这个团队规模可能很大：中文团队有几十个成员。
-
-每个团队都有自己的工作流。有些团队手工完成所有的内容翻译；有些会使用带有翻译插件的编译器，并使用评审机来提供正确性的保障。SIG Docs 专注于输出的标准；这就给了本地化团队采用适合自己工作情况的工作流。这样一来，团队可以根据最佳实践进行协作，并以 Kubernetes 的社区精神进行分享。
-
-## 为本地化工作添砖加瓦
-
-如果你有兴趣为 Kubernetes 文档加入新语种的本地化内容，[Kubernetes contribution guide](https://kubernetes.io/docs/contribute/localization/) 中包含了这方面的相关内容。
-
-已经启动的的本地化工作同样需要支持。如果有兴趣为现存项目做出贡献，可以加入本地化团队的 Slack 频道，去做个自我介绍。各团队的成员会帮助你开始工作。
-
-|语种|Slack 频道|
-|---|---|
-|中文|[#kubernetes-docs-zh](https://kubernetes.slack.com/messages/CE3LNFYJ1/)|
-|英文|[#sig-docs](https://kubernetes.slack.com/messages/C1J0BPD2M/)|
-|法文|[#kubernetes-docs-fr](https://kubernetes.slack.com/messages/CG838BFT9/)|
-|德文|[#kubernetes-docs-de](https://kubernetes.slack.com/messages/CH4UJ2BAL/)|
-|印地|[#kubernetes-docs-hi](https://kubernetes.slack.com/messages/CJ14B9BDJ/)|
-|印度尼西亚文|[#kubernetes-docs-id](https://kubernetes.slack.com/messages/CJ1LUCUHM/)|
-|意大利文|[#kubernetes-docs-it](https://kubernetes.slack.com/messages/CGB1MCK7X/)|
-|日文|[#kubernetes-docs-ja](https://kubernetes.slack.com/messages/CAG2M83S8/)|
-|韩文|[#kubernetes-docs-ko](https://kubernetes.slack.com/messages/CA1MMR86S/)|
-|葡萄牙文|[#kubernetes-docs-pt](https://kubernetes.slack.com/messages/CJ21AS0NA/)|
-|西班牙文|[#kubernetes-docs-es](https://kubernetes.slack.com/messages/CH7GB2E3B/)|
-
-## 下一步？
-
-最新的[印地文本地化](https://kubernetes.slack.com/messages/CJ14B9BDJ/)工作正在启动。为什么不加入你的语言？
-
-身为 SIG Docs 的主席，我甚至希望本地化工作跳出文档范畴，直接为 Kubernetes 组件提供本地化支持。有什么组件是你希望支持不同语言的么？可以提交一个 [Kubernetes Enhancement Proposal](https://github.com/kubernetes/enhancements/tree/master/keps) 来促成这一进步。
\ No newline at end of file
diff --git a/content/zh/case-studies/ibm/ibm_featured_logo.svg b/content/zh/case-studies/ibm/ibm_featured_logo.svg
deleted file mode 100644
index 577d8e97d9..0000000000
--- a/content/zh/case-studies/ibm/ibm_featured_logo.svg
+++ /dev/null
@@ -1 +0,0 @@
-<svg id="Layer_1" data-name="Layer 1" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 215.9892 128.40633"><defs><style>.cls-1{fill:#f9f9f9;}.cls-2{fill:#4c81c2;}</style></defs><title>ibm_featured_logo</title><rect class="cls-1" x="-5.9997" y="-8.99955" width="229.48853" height="143.9928"/><polygon class="cls-2" points="190.441 33.693 162.454 33.693 164.178 28.868 190.441 28.868 190.441 33.693"/><path class="cls-2" d="M115.83346,28.867l25.98433-.003,1.7014,4.83715c.01251-.00687-27.677.00593-27.677,0C115.84224,33.69422,115.82554,28.867,115.83346,28.867Z"/><path class="cls-2" d="M95.19668,28.86593A18.6894,18.6894,0,0,1,106.37358,33.7s-47.10052.00489-47.10052,0V28.86488Z"/><rect class="cls-2" x="22.31176" y="28.86593" width="32.72063" height="4.82558"/><path class="cls-2" d="M190.44115,42.74673h-31.194s1.70142-4.79994,1.691-4.80193h29.50305Z"/><polygon class="cls-2" points="146.734 42.753 115.832 42.753 115.832 37.944 145.041 37.944 146.734 42.753"/><path class="cls-2" d="M110.04127,37.94271a12.47,12.47,0,0,1,1.35553,4.80214H59.28193V37.94271Z"/><rect class="cls-2" x="22.31176" y="37.94271" width="32.72063" height="4.80214"/><polygon class="cls-2" points="156.056 51.823 157.768 46.998 181.191 47.005 181.191 51.812 156.056 51.823"/><polygon class="cls-2" points="148.237 46.997 149.944 51.823 125.046 51.823 125.046 46.997 148.237 46.997"/><path class="cls-2" d="M111.81,46.99627a15.748,15.748,0,0,1-.68923,4.82641H96.85137V46.99627Z"/><rect class="cls-2" x="31.43162" y="47.01973" width="14.06406" height="4.8019"/><rect class="cls-2" x="68.7486" y="46.99627" width="14.03976" height="4.82537"/><path class="cls-2" d="M138.87572,57.03292s.004,3.65225.001,3.65913H125.04558V55.89h26.35583l1.637,4.4773c.00773.00292,1.57841-4.48815,1.58153-4.47835h26.56223V60.692h-13.763c-.00124-.00687-.00771-3.65819-.00771-3.65819l-1.273,3.65819-25.99183-.00687Z"/><path class="cls-2" d="M68.7486,55.889h40.30365v-.00188a18.13723,18.13723,0,0,1-3.99812,4.80494s-36.30647.00668-36.30647,0Z"/><rect class="cls-2" x="31.43162" y="55.88794" width="14.06406" height="4.80316"/><rect class="cls-2" x="167.41912" y="64.94348" width="13.76302" height="4.80212"/><path class="cls-2" d="M138.87572,64.94348H125.04558V69.7456c-.00688-.0025,13.83411.00167,13.83411,0C138.87969,69.7431,138.89532,64.94348,138.87572,64.94348Z"/><path class="cls-2" d="M164.63927,64.94348c-.06255-.007-1.61218,4.79962-1.67723,4.80212l-19.60378.00835c-.01543-.00751-1.72371-4.81745-1.725-4.81047Z"/><path class="cls-2" d="M68.74672,64.94233H104.985a23.7047,23.7047,0,0,1,4.32076,4.80327c.06609-.0025-40.5581.00167-40.5581,0Z"/><path class="cls-2" d="M45.49359,69.74436v-4.802H31.45487V69.7431Z"/><rect class="cls-2" x="167.41912" y="73.99693" width="13.76198" height="4.80295"/><rect class="cls-2" x="125.04474" y="73.99693" width="13.83097" height="4.80212"/><path class="cls-2" d="M159.74351,78.8224c.00376-.02169,1.69745-4.82964,1.72373-4.82547H144.80219c-.029-.00209,1.70848,4.80378,1.70848,4.80378S159.7404,78.84241,159.74351,78.8224Z"/><path class="cls-2" d="M68.74766,78.79905c0,.01919-.00094-4.80212,0-4.803H82.9958s.01272,4.80462,0,4.80462C82.98224,78.80072,68.74766,78.79489,68.74766,78.79905Z"/><path class="cls-2" d="M111.30529,73.9961a13.94783,13.94783,0,0,1,.89542,4.825H97.10364v-4.825Z"/><rect class="cls-2" x="31.45487" y="73.9961" width="14.03872" height="4.80171"/><rect class="cls-2" x="167.41912" y="82.86525" width="23.0212" height="4.80421"/><rect class="cls-2" x="115.83139" y="82.86525" width="23.04432" height="4.80421"/><polygon class="cls-2" points="156.647 87.669 149.618 87.669 147.931 82.865 158.272 82.865 156.647 87.669"/><path class="cls-2" d="M22.3099,82.86525v4.80212H55.008c.01366.00751-.01469-4.79919,0-4.79919Z"/><path class="cls-2" d="M111.60237,82.86525c-.3442,1.58445-.65962,3.5158-1.81732,4.80421l-.43175-.00209H59.28005V82.86525Z"/><polygon class="cls-2" points="153.461 96.733 152.814 96.733 151.171 91.92 155.147 91.92 153.461 96.733"/><rect class="cls-2" x="167.41788" y="91.91953" width="23.02244" height="4.82547"/><path class="cls-2" d="M59.27307,96.73333V91.92745s47.24073.00585,47.37623.00585A17.945,17.945,0,0,1,94.43864,96.745l-35.15859-.00959"/><rect class="cls-2" x="115.83139" y="91.91953" width="23.04432" height="4.82547"/><path class="cls-2" d="M55.008,91.94079s-.01469,4.79253,0,4.79253c.01366,0-32.6885.0196-32.69809.00961-.00888-.00961.00875-4.81548,0-4.81548S54.9933,91.95664,55.008,91.94079Z"/></svg>
\ No newline at end of file
diff --git a/content/zh/case-studies/netease/index.html b/content/zh/case-studies/netease/index.html
deleted file mode 100644
index f5c70dedff..0000000000
--- a/content/zh/case-studies/netease/index.html
+++ /dev/null
@@ -1,105 +0,0 @@
----
-title: 案例研究：NetEase
-case_study_styles: true
-cid: caseStudies
-css: /css/style_case_studies.css
----
-
-
-<!-- <div class="banner1" style="background-image: url('/images/case-studies/netease/banner1.jpg')">
-  <h1> CASE STUDY:<img src="/images/netease_logo.png" class="header_logo" style="width:22%;margin-bottom:-1%"><br> <div class="subhead" style="margin-top:1%"> How NetEase Leverages Kubernetes to Support Internet Business Worldwide</div></h1>
-
-</div> -->
-<div class="banner1" style="background-image: url('/images/case-studies/netease/banner1.jpg')">
-  <h1> 案例研究：<img src="/images/netease_logo.png" class="header_logo" style="width:22%;margin-bottom:-1%"><br> <div class="subhead" style="margin-top:1%"> 网易如何利用 Kubernetes 支持在全球的互联网业务</div></h1>
-
-</div>
-
-
-<div class="details" style="font-size:1em">
-    公司 &nbsp;<b>网易</b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;位置 &nbsp;<b>杭州，中国</b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;行业 &nbsp;<b>互联网科技</b>
-</div>
-
-<hr>
-<section class="section1">
-<div class="cols">
-  <div class="col1" style="margin-left:-1.5% !important">
-    <h2>挑战</h2>
-         <!-- Its gaming business is one of the largest in the world, but that’s not all that <a href="https://netease-na.com/">NetEase</a> provides to Chinese consumers. The company also operates e-commerce, advertising, music streaming, online education, and email platforms; the last of which serves almost a billion users with free email services through sites like <a href="https://www.163.com/">163.com</a>. In 2015, the NetEase Cloud team providing the infrastructure for all of these systems realized that their R&D process was slowing down developers. “Our users needed to prepare all of the infrastructure by themselves,” says Feng Changjian, Architect for NetEase Cloud and Container Service. “We were eager to provide the infrastructure and tools for our users automatically via serverless container service.” -->
-其游戏业务是世界上最大的游戏业务之一，但这不是<a href="https://netease-na.com/">网易</a>为中国消费者提供的所有。公司还经营电子商务、广告、音乐流媒体、在线教育和电子邮件平台；其中最后一个服务有近10亿用户通过网站使用免费的电子邮件服务，如<a href="https://www.163.com/">163.com</a>。2015 年，为所有这些系统提供基础设施的网易云团队意识到，他们的研发流程正在减缓开发人员的速度。网易云和容器服务架构师冯长健表示：“我们的用户需要自己准备所有基础设施。”“我们希望通过无服务器容器服务自动为用户提供基础设施和工具。”
-<br><br>
- <h2>解决方案</h2>
-      <!-- After considering building its own orchestration solution, NetEase decided to base its private cloud platform on <a href="https://kubernetes.io/">Kubernetes</a>. The fact that the technology came out of Google gave the team confidence that it could keep up with NetEase’s scale. “After our 2-to-3-month evaluation, we believed it could satisfy our needs,” says Feng. The team started working with Kubernetes in 2015, before it was even 1.0. Today, the NetEase internal cloud platform—which also leverages the CNCF projects <a href="https://prometheus.io/">Prometheus</a>, <a href="https://www.envoyproxy.io/">Envoy</a>, <a href="https://goharbor.io/">Harbor</a>, <a href="https://grpc.io/">gRPC</a>, and <a href="https://helm.sh/">Helm</a>—runs 10,000 nodes in a production cluster and can support up to 30,000 nodes in a cluster. Based on its learnings from its internal platform, the company introduced a Kubernetes-based cloud and microservices-oriented PaaS product, <a href="https://landscape.cncf.io/selected=netease-qingzhou-microservice">NetEase Qingzhou Microservice</a>, to outside customers. -->
-在考虑构建自己的业务流程解决方案后，网易决定将其私有云平台建立在 <a href="https://kubernetes.io/">Kubernetes</a> 的基础上。这项技术来自 Google，这一事实让团队有信心，它能够跟上网易的规模。“经过2到3个月的评估，我们相信它能满足我们的需求，”冯长健说。该团队于 2015 年开始与 Kubernetes 合作，那会它甚至还不是1.0版本。如今，网易内部云平台还使用了 CNCF 项目 <a href="https://prometheus.io/">Prometheus</a>、<a href="https://www.envoyproxy.io/">Envoy</a>、<a href="https://goharbor.io/">Harbor</a>、<a href="https://grpc.io/">gRPC</a> 和 <a href="https://helm.sh/">Helm</a>， 在生产集群中运行 10000 个节点，并可支持集群多达 30000 个节点。基于对内部平台的学习，公司向外部客户推出了基于 Kubernetes 的云和微服务型 PaaS 产品，网易轻舟微服务。
-
-
-<br><br>
-<h2>影响</h2>
-      <!-- The NetEase team reports that Kubernetes has increased R&D efficiency by more than 100%. Deployment efficiency has improved by 280%. “In the past, if we wanted to do upgrades, we needed to work with other teams, even in other departments,” says Feng. “We needed special staff to prepare everything, so it took about half an hour. Now we can do it in only 5 minutes.” The new platform also allows for mixed deployments using GPU and CPU resources. “Before, if we put all the resources toward the GPU, we won’t have spare resources for the CPU. But now we have improvements thanks to the mixed deployments,” he says. Those improvements have also brought an increase in resource utilization. -->
-网易团队报告说，Kubernetes 已经提高了研发效率一倍多，部署效率提高了 2.8倍。“过去，如果我们想要进行升级，我们需要与其他团队合作，甚至加入其他部门，”冯长健说。“我们需要专人来准备一切，需要花费约半个小时。现在我们只需 5 分钟即可完成。”新平台还允许使用 GPU 和 CPU 资源进行混合部署。“以前，如果我们将所有资源都用于 GPU，则 CPU 的备用资源将没有。但是现在，由于混合部署，我们有了很大的改进，”他说。这些改进也提高了资源的利用率。
-</div>
-</div>
-
-</section>
-<div class="banner2">
-  <div class="banner2text">
-    <!-- "The system can support 30,000 nodes in a single cluster. In production, we have gotten the data of 10,000 nodes in a single cluster. The whole internal system is using this system for development, test, and production."<br style="height:25px"><span style="font-size:14px;letter-spacing:2px;text-transform:uppercase;margin-top:5% !important;"><br>— Zeng Yuxing, Architect, NetEase</span> -->
-    “系统可以在单个群集中支持 30000 个节点。在生产中，我们在单个群集中获取到了 10000 个节点的数据。整个内部系统都在使用该系统进行开发、测试和生产。”<br style="height:25px"><span style="font-size:14px;letter-spacing:2px;text-transform:uppercase;margin-top:5% !important;"><br>— 曾宇兴,网易架构师</span>
-  </div>
-</div>
-<section class="section2">
-<div class="fullcol">
- <!-- <h2>Its gaming business is the <a href="https://newzoo.com/insights/rankings/top-25-companies-game-revenues/">fifth-largest</a> in the world, but that’s not all that <a href="https://netease-na.com/">NetEase</a> provides consumers.</h2>The company also operates e-commerce, advertising, music streaming, online education, and email platforms in China; the last of which serves almost a billion users with free email services through popular sites like <a href="https://www.163.com/">163.com</a> and <a href="https://www.126.com/">126.com</a>. With that kind of scale, the NetEase Cloud team providing the infrastructure for all of these systems realized in 2015 that their R&D process was making it hard for developers to keep up with demand. “Our users needed to prepare all of the infrastructure by themselves,” says Feng Changjian, Architect for NetEase Cloud and Container Service. “We were eager to provide the infrastructure and tools for our users automatically via serverless container service.”<br><br> -->
- <h2>其游戏业务是世界<a href="https://newzoo.com/insights/rankings/top-25-companies-game-revenues/">第五大</a>游戏业务，但这不是<a href="https://netease-na.com/">网易</a>为消费者提供的所有业务。</h2>公司还在中国经营电子商务、广告、音乐流媒体、在线教育和电子邮件平台；其中最后一个服务是有近10亿用户使用的网站，如<a href="https://www.163.com/">163.com</a>和<a href="https://www.126.com/">126.com</a>免费电子邮件服务。有了这样的规模，为所有这些系统提供基础设施的网易云团队在 2015 年就意识到，他们的研发流程使得开发人员难以跟上需求。网易云和容器服务架构师冯长健表示：“我们的用户需要自己准备所有基础设施。”“我们渴望通过无服务器容器服务自动为用户提供基础设施和工具。”<br><br>
- <!-- After considering building its own orchestration solution, NetEase decided to base its private cloud platform on <a href="https://kubernetes.io/">Kubernetes</a>. The fact that the technology came out of Google gave the team confidence that it could keep up with NetEase’s scale. “After our 2-to-3-month evaluation, we believed it could satisfy our needs,” says Feng. -->
-在考虑构建自己的业务流程解决方案后，网易决定将其私有云平台建立在 <a href="https://kubernetes.io/">Kubernetes</a> 的基础上。这项技术来自谷歌，这一事实让团队有信心，它能够跟上网易的规模。“经过2到3个月的评估，我们相信它能满足我们的需求，”冯长健说。
-</div>
-</section>
-<div class="banner3" style="background-image: url('/images/case-studies/netease/banner3.jpg')">
-  <div class="banner3text">
-    <!-- "We leveraged the programmability of Kubernetes so that we can build a platform to satisfy the needs of our internal customers for upgrades and deployment." -->
-“我们利用 Kubernetes 的可编程性，构建一个平台，以满足内部客户对升级和部署的需求。”<br style="height:25px"><span style="font-size:14px;letter-spacing:2px;text-transform:uppercase;margin-top:5% !important;"><br>- 冯长健,网易云和容器托管平台架构师</span>
-  </div>
-</div>
-<section class="section3">
-<div class="fullcol">
-  <!-- The team started adopting Kubernetes in 2015, before it was even 1.0, because it was relatively easy to use and enabled DevOps at the company. “We abandoned some of the concepts of Kubernetes; we only wanted to use the standardized framework,” says Feng. “We leveraged the programmability of Kubernetes so that we can build a platform to satisfy the needs of our internal customers for upgrades and deployment.”<br><br> -->
-该团队于 2015 年开始采用 Kubernetes，那会它甚至还不是1.0版本，因为它相对易于使用，并且使 DevOps 在公司中得以实现。“我们放弃了 Kubernetes 的一些概念；我们只想使用标准化框架，”冯长健说。“我们利用 Kubernetes 的可编程性，构建一个平台，以满足内部客户对升级和部署的需求。”<br><br>
-  <!-- The team first focused on building the container platform to manage resources better, and then turned their attention to improving its support of microservices by adding internal systems such as monitoring. That has meant integrating the CNCF projects <a href="https://prometheus.io/">Prometheus</a>, <a href="https://www.envoyproxy.io/">Envoy</a>, <a href="https://goharbor.io/">Harbor</a>, <a href="https://grpc.io/">gRPC</a>, and <a href="https://helm.sh/">Helm</a>. “We are trying to provide a simplified and standardized process, so our users and customers can leverage our best practices,” says Feng.<br><br> -->
-团队首先专注于构建容器平台以更好地管理资源，然后通过添加内部系统（如监视）来改进对微服务的支持。这意味着整合了 CNCF 项目 <a href="https://prometheus.io/">Prometheus</a>，<a href="https://www.envoyproxy.io/">Envoy</a>，<a href="https://goharbor.io/">Harbor</a>，<a href="https://grpc.io/">gRPC</a> 和 <a href="https://helm.sh/">Helm</a>。“我们正在努力提供简化和标准化的流程，以便我们的用户和客户能够利用我们的最佳实践，”冯长健说。<br><br>
-  <!-- And the team is continuing to make improvements. For example, the e-commerce part of the business needs to leverage mixed deployments, which in the past required using two separate platforms: the infrastructure-as-a-service platform and the Kubernetes platform. More recently, NetEase has created a cross-platform application that enables using both with one-command deployment. -->
-团队正在继续改进。例如，企业的电子商务部分需要利用混合部署，过去需要使用两个单独的平台：基础架构即服务平台和 Kubernetes 平台。最近，网易创建了一个跨平台应用程序，支持将两者同时使用单命令部署。
-</div>
-</section>
-<div class="banner4" style="background-image: url('/images/case-studies/netease/banner4.jpg')">
-  <div class="banner4text">
-    <!-- "As long as a company has a mature team and enough developers, I think Kubernetes is a very good technology that can help them."<span style="font-size:14px;letter-spacing:2px;text-transform:uppercase;margin-top:5% !important;"><br><br>- Li Lanqing, Kubernetes Developer, NetEase</span> -->
-“只要公司拥有成熟的团队和足够的开发人员，我认为 Kubernetes 是一个很好的有所助力的技术。”<span style="font-size:14px;letter-spacing:2px;text-transform:uppercase;margin-top:5% !important;"><br><br>- 李兰青, 网易 Kubernetes 开发人员</span>
-  </div>
-  </div>
-</div>
-
-<section class="section5" style="padding:0px !important">
-<div class="fullcol">
-  <!-- Today, the NetEase internal cloud platform “can support 30,000 nodes in a single cluster,” says Architect Zeng Yuxing. “In production, we have gotten the data of 10,000 nodes in a single cluster. The whole internal system is using this system for development, test, and production.” <br><br> -->
-“系统可以在单个群集中支持 30000 个节点。在生产中，我们在单个群集中获取到了 10000 个节点的数据。整个内部系统都在使用该系统进行开发、测试和生产。”<br><br>
-  <!-- The NetEase team reports that Kubernetes has increased R&D efficiency by more than 100%. Deployment efficiency has improved by 280%. “In the past, if we wanted to do upgrades, we needed to work with other teams, even in other departments,” says Feng. “We needed special staff to prepare everything, so it took about half an hour. Now we can do it in only 5 minutes.” The new platform also allows for mixed deployments using GPU and CPU resources. “Before, if we put all the resources toward the GPU, we won’t have spare resources for the CPU. But now we have improvements thanks to the mixed deployments.” Those improvements have also brought an increase in resource utilization. -->
-网易团队报告说，Kubernetes 已经提高了研发效率一倍多。部署效率提高了 2.8倍。“过去，如果我们想要进行升级，我们需要与其他团队合作，甚至加入其他部门，”冯长健说。“我们需要专人来准备一切，需要花费约半个小时。现在我们只需 5 分钟即可完成。”新平台还允许使用 GPU 和 CPU 资源进行混合部署。“以前，如果我们将所有资源都用于 GPU，则 CPU 的备用资源将没有。但是现在，由于混合部署，我们有了很大的改进，”他说。这些改进也提高了资源的利用率。
-
-</div>
-
-<div class="banner5">
-  <div class="banner5text">
-  <!-- "By engaging with this community, we can gain some experience from it and we can also benefit from it. We can see what are the concerns and the challenges faced by the community, so we can get involved."<span style="font-size:14px;letter-spacing:2px;text-transform:uppercase;margin-top:5% !important;"><br><br>- Li Lanqing, Kubernetes Developer, NetEase</span> -->
-“通过与这个社区接触，我们可以从中获得一些经验，我们也可以从中获益。我们可以看到社区所关心的问题和挑战，以便我们参与其中。”<span style="font-size:14px;letter-spacing:2px;text-transform:uppercase;margin-top:5% !important;"><br><br>- 李兰青, 网易 Kubernetes 开发人员</span>
-  </div>
-</div>
-<div class="fullcol">
-  <!-- Based on the results and learnings from using its internal platform, the company introduced a Kubernetes-based cloud and microservices-oriented PaaS product, <a href="https://landscape.cncf.io/selected=netease-qingzhou-microservice">NetEase Qingzhou Microservice</a>, to outside customers. “The idea is that we can find the problems encountered by our game and e-commerce and cloud music providers, so we can integrate their experiences and provide a platform to satisfy the needs of our users,” says Zeng. <br><br> -->
-基于使用内部平台的成果和学习，公司向外部客户推出了基于 Kubernetes 的云和微服务型 PaaS 产品，网易轻舟微服务。“我们的想法是，我们可以找到我们的游戏和电子商务以及云音乐提供商遇到的问题，所以我们可以整合他们的体验，并提供一个平台，以满足所有用户的需求，”曾宇兴说。<br><br>
-  <!-- With or without the use of the NetEase product, the team encourages other companies to try Kubernetes. “As long as a company has a mature team and enough developers, I think Kubernetes is a very good technology that can help them,” says Kubernetes developer Li Lanqing.<br><br> -->
-无论是否使用网易产品，该团队鼓励其他公司尝试 Kubernetes。Kubernetes 开发者李兰青表示：“只要公司拥有成熟的团队和足够的开发人员，我认为 Kubernetes 是一个很好的技术，可以帮助他们。”<br><br>
-  <!-- As an end user as well as a vendor, NetEase has become more involved in the community, learning from other companies and sharing what they’ve done. The team has been contributing to the Harbor and Envoy projects, providing feedback as the technologies are being tested at NetEase scale. “We are a team focusing on addressing the challenges of microservices architecture,” says Feng. “By engaging with this community, we can gain some experience from it and we can also benefit from it. We can see what are the concerns and the challenges faced by the community, so we can get involved.” -->
-作为最终用户和供应商，网易已经更多地参与社区，向其他公司学习，分享他们所做的工作。该团队一直在为 Harbor 和 Envoy 项目做出贡献，在网易进行规模测试技术时提供反馈。“我们是一个团队，专注于应对微服务架构的挑战，”冯长健说。“通过与这个社区接触，我们可以从中获得一些经验，我们也可以从中获益。我们可以看到社区所关心的问题和挑战，以便我们参与其中。”
-</div>
-</section>
diff --git a/content/zh/case-studies/nordstrom/index.html b/content/zh/case-studies/nordstrom/index.html
deleted file mode 100644
index 11edf1c652..0000000000
--- a/content/zh/case-studies/nordstrom/index.html
+++ /dev/null
@@ -1,152 +0,0 @@
----
-title: 案例研究：Nordstrom
-case_study_styles: true
-cid: caseStudies
-css: /css/style_case_studies.css
----
-
-<!-- <div class="banner1" style="background-image: url('/images/case-studies/nordstrom/banner1.jpg')">
-  <h1> CASE STUDY:<img src="/images/nordstrom_logo.png" class="header_logo" style="margin-bottom:-1.5% !important;width:20% !important;"><br> <div class="subhead">Finding Millions in Potential Savings in a Tough Retail Climate
-
-</div></h1>
-
-</div> -->
-
-<div class="banner1" style="background-image: url('/images/case-studies/nordstrom/banner1.jpg')">
-  <h1> 案例研究:<img src="/images/nordstrom_logo.png" class="header_logo" style="margin-bottom:-1.5% !important;width:20% !important;"><br> <div class="subhead">在艰难的零售环境下寻找数百万的潜在成本节约
-
-
-</div></h1>
-
-</div>
-
-<!-- <div class="details">
-    Company &nbsp;<b>Nordstrom</b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Location &nbsp;<b>Seattle, Washington</b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Industry &nbsp;<b>Retail</b>
-</div> -->
-
-<div class="details">
-    公司 &nbsp;<b>Nordstrom</b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;地点 &nbsp;<b>西雅图, 华盛顿</b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;行业 &nbsp;<b>零售</b>
-</div>
-
-<hr>
-<section class="section1">
-<div class="cols">
-  <div class="col1">
-    <!-- <h2>Challenge</h2>
-    Nordstrom wanted to increase the efficiency and speed of its technology operations, which includes the Nordstrom.com e-commerce site. At the same time, Nordstrom Technology was looking for ways to tighten its technology operational costs. -->
-
-<h2>挑战</h2>
-Nordstrom 希望提高其技术运营的效率和速度，其中包括 Nordstrom.com 电子商务网站。与此同时，Nordstrom 技术公司正在寻找压缩技术运营成本的方法。
-
-<br>
-    <!-- <h2>Solution</h2>
-    After embracing a DevOps transformation and launching a continuous integration/continuous deployment (CI/CD) project four years ago, the company reduced its deployment time from three months to 30 minutes. But they wanted to go even faster across environments, so they began their cloud native journey, adopting Docker containers orchestrated with <a href="http://kubernetes.io/">Kubernetes</a>. -->
-
-<h2>解决方案</h2>
-在四年前采用 DevOps 转型并启动持续集成/部署 (CI/CD)项目后，该公司将部署时间从 3 个月缩短到 30 分钟。但是他们想在部署环境上走得更快，所以他们开始他们的云原生之旅，采用与<a href="http://kubernetes.io/"> Kubernetes </a>协调的Docker容器。
-
-  <br>
-
-
-</div>
-
-<div class="col2">
-
-  <!-- <h2>Impact</h2>
-  Nordstrom Technology developers using Kubernetes now deploy faster and can "just focus on writing applications," says Dhawal Patel, a senior engineer on the team building a Kubernetes enterprise platform for Nordstrom. Furthermore, the team has increased Ops efficiency, improving CPU utilization from 5x to 12x depending on the workload. "We run thousands of virtual machines (VMs), but aren’t effectively using all those resources," says Patel. "With Kubernetes, without even trying to make our cluster efficient, we are currently at a 10x increase." -->
-
-<h2>影响</h2>
-为 Nordstrom 构建 Kubernetes 企业平台的团队高级工程师 Dhawal Patel 说，“使用 Kubernetes 的 Nordstrom 技术开发人员现在项目部署得更快，并且能够只专注于编写应用程序。”此外，该团队还提高了运营效率,根据工作负载将 CPU 利用率从 5 倍提高到 12 倍。Patel 说：“我们运行了数千台虚拟机 (VM),但无法有效地使用所有这些资源。借助  Kubernetes ,我们甚至不需要尝试去提高群集的效率,就能使运营效率增长 10 倍。”
-
-</div>
-</div>
-</section>
-<div class="banner2">
-<div class="banner2text">
-<!-- "We are always looking for ways to optimize and provide more value through technology. With Kubernetes we are showcasing two types of efficiency that we can bring: Dev efficiency and Ops efficiency. It’s a win-win." -->
-“我们一直在寻找通过技术进行优化和提供更多价值的方法。通过 Kubernetes ，我们在开发效率和运营效率这两方面取得了示范性的提升。这是一个双赢。”
-<!-- <br style="height:25px"><span style="font-size:14px;letter-spacing:2px;text-transform:uppercase;margin-top:5% !important;"><br>-— Dhawal Patel, senior engineer at Nordstrom</span> -->
-<br style="height:25px"><span style="font-size:14px;letter-spacing:2px;text-transform:uppercase;margin-top:5% !important;"><br>-— Dhawal Patel, Nordstrom 高级工程师</span>
-</div>
-</div>
-<section class="section2">
-<div class="fullcol">
-<!-- When Dhawal Patel joined <a href="http://shop.nordstrom.com/">Nordstrom</a> five years ago as an application developer for the retailer’s website, he realized there was an opportunity to help speed up development cycles. -->
-当 Dhawal Patel 五年前加入<a href="http://shop.nordstrom.com/"> Nordstrom </a>，担任该零售商网站的应用程序开发人员时，他意识到有机会帮助加快开发周期。
-<br><br>
-<!-- In those early DevOps days, Nordstrom Technology still followed a traditional model of silo teams and functions. "As a developer, I was spending more time fixing environments than writing code and adding value to business," Patel says. "I was passionate about that—so I was given the opportunity to help fix it." -->
-在早期的 DevOps 时代,，Nordstrom 技术仍然遵循传统的孤岛团队和功能模型。Patel 说：“作为开发人员，我花在维护环境上的时间比编写代码和为业务增加价值的时间要多。我对此充满热情，因此我有机会参与帮助修复它。”
-<br><br>
-<!-- The company was eager to move faster, too, and in 2013 launched the first continuous integration/continuous deployment (CI/CD) project. That project was the first step in Nordstrom’s cloud native journey. -->
-公司也渴望加快步伐，并在 2013 年启动了首个持续集成/部署 (CI/CD)项目。该项目是 Nordstrom 云原生之旅的第一步。
-<br><br>
-<!-- Dev and Ops team members built a CI/CD pipeline, working with the company’s servers on premise. The team chose <a href="https://www.chef.io/chef/">Chef</a>, and wrote cookbooks that automated virtual IP creation, servers, and load balancing. "After we completed the project, deployment went from three months to 30 minutes," says Patel. "We still had multiple environments—dev, test, staging, then production—so with each environment running the Chef cookbooks, it took 30 minutes. It was a huge achievement at that point." -->
-开发人员和运营团队成员构建了一个 CI/CD 管道，在内部使用公司的服务器。团队选择了<a href="https://www.chef.io/chef/"> Chef </a>，并编写了自动虚拟 IP 创建、服务器和负载均衡的指导手册。Patel 说：“项目完成后,部署时间从 3 个月减少到 30 分钟。我们仍有开发、测试、暂存、然后生产等多个环境需要重新部署。之后，每个运行 Chef 说明书的环境部署都只花 30 分钟。在那个时候，这是一个巨大的成就。”
-<br><br>
-<!-- But new environments still took too long to turn up, so the next step was working in the cloud. Today, Nordstrom Technology has built an enterprise platform that allows the company’s 1,500 developers to deploy applications running as Docker containers in the cloud, orchestrated with Kubernetes. -->
-但是，新环境仍然需要很长时间才能出现，因此下一步是在云中工作。如今，Nordstrom  Technology 已经构建了一个企业平台，允许公司的1500 名开发人员在云中部署以 Docker 容器身份运行的应用程序，这些应用程序由 Kubernetes 进行编排。
-</div>
-</section>
-<div class="banner3" style="background-image: url('/images/case-studies/nordstrom/banner3.jpg')">
-<div class="banner3text">
-<!-- "We made a bet that Kubernetes was going to take off, informed by early indicators of community support and project velocity, so we rebuilt our system with Kubernetes at the core," -->
-“了解到早期的社区支持和项目迭代指标，我们肯定 Kubernetes 一定会成功的，因此我们以 Kubernetes 为核心重建了我们的系统。”
-</div>
-</div>
-<section class="section3">
-<div class="fullcol">
-
-<!-- "The cloud provided faster access to resources, because it took weeks for us to get a virtual machine (VM) on premises," says Patel. "But now we can do the same thing in only five minutes." -->
-Patel 说：“云提供了对资源的更快访问,因为我们在内部需要花数周时间才能部署一个虚拟机 (VM)来提供服务。但现在我们可以做同样的事情，只需五分钟。”
-<br><br>
-<!-- Nordstrom’s first foray into scheduling containers on a cluster was a homegrown system based on CoreOS fleet. They began doing a few proofs of concept projects with that system until Kubernetes 1.0 was released when they made the switch. "We made a bet that Kubernetes was going to take off, informed by early indicators of community support and project velocity, so we rebuilt our system with Kubernetes at the core," says Marius Grigoriu, Sr. Manager of the Kubernetes team at Nordstrom. -->
-Nordstrom 首次尝试在集群上调度容器，是基于 CoreOS fleet 的原生系统。他们开始使用该系统做一些概念验证项目，直到 Kubernetes 1.0发布时才将正式项目迁移到里面。Nordstrom 的 Kubernetes 团队经理 Marius Grigoriu 表示：“了解到早期的社区支持和项目迭代指标，我们肯定 Kubernetes 一定会成功的，因此我们以 Kubernetes 为核心重建了我们的系统。”
-<!-- While Kubernetes is often thought as a platform for microservices, the first application to launch on Kubernetes in a critical production role at Nordstrom was Jira. "It was not the ideal microservice we were hoping to get as our first application," Patel admits, "but the team that was working on it was really passionate about Docker and Kubernetes, and they wanted to try it out. They had their application running on premises, and wanted to move it to Kubernetes." -->
-虽然 Kubernetes 通常被视为微服务的平台，但在 Nordstrom 担任关键生产角色的 Kubernetes 上推出的第一个应用程序是 Jira。Patel 承认：“这不是我们希望作为第一个应用程序获得的理想微服务，但致力于此应用程序的团队对 Docker 和 Kubernetes 非常热情，他们希望尝试一下。他们的应用程序部署在内部运行，并希望将其移动到 Kubernetes。
-<br><br>
-<!-- The benefits were immediate for the teams that came on board. "Teams running on our Kubernetes cluster loved the fact that they had fewer issues to worry about. They didn’t need to manage infrastructure or operating systems," says Grigoriu. "Early adopters loved the declarative nature of Kubernetes. They loved the reduced surface area they had to deal with." -->
-对于加入的团队来说,这些好处是立竿见影的。Grigoriu 说：“在我们的 Kubernetes 集群中运行的团队喜欢这样一个事实，即他们担心的问题更少，他们不需要管理基础设施或操作系统。早期使用者喜欢 Kubernetes 的声明特性，让他们不得不处理的面积减少。
-</div>
-</section>
-<div class="banner4" style="background-image: url('/images/case-studies/nordstrom/banner4.jpg')">
-  <div class="banner4text">
- <!-- "Teams running on our Kubernetes cluster loved the fact that they had fewer issues to worry about. They didn’t need to manage infrastructure or operating systems," says Grigoriu. "Early adopters loved the declarative nature of Kubernetes. They loved the reduced surface area they had to deal with." -->
-Grigoriu 说：“在我们的 Kubernetes 集群中运行的团队喜欢这样一个事实，即他们担心的问题更少，他们不需要管理基础设施或操作系统。早期使用者喜欢 Kubernetes 的声明特性，让他们不得不处理的面积减少。”
-  </div>
-</div>
-
-<section class="section5">
-<div class="fullcol">
-  <!-- To support these early adopters, Patel’s team began growing the cluster and building production-grade services. "We integrated with <a href="https://prometheus.io/">Prometheus</a> for monitoring, with a <a href="https://grafana.com/">Grafana</a> front end; we used <a href="http://www.fluentd.org/">Fluentd</a> to push logs to <a href="https://www.elastic.co/">Elasticsearch</a>, so that gives us log aggregation," says Patel. The team also added dozens of open-source components, including CNCF projects and has made contributions to Kubernetes, Terraform, and kube2iam. -->
-为了支持这些早期使用者，Patel 的团队开始发展集群并构建生产级服务。“我们与<a href="https://prometheus.io/"> Prometheus </a>集成了监控功能，并配有<a href="https://grafana.com/"> Grafana </a>前端；我们使用<a href="http://www.fluentd.org/"> Fluentd </a>将日志推送到<a href="https://www.elastic.co/"> Elasticsearch </a>，从而提供日志聚合”Patel 说。该团队还增加了数十个开源组件，包括 CNCF 项目，而且把这些成果都贡献给了 Kubernetes 、Terraform 和 kube2iam 。
- <br><br>
-<!-- There are now more than 60 development teams running Kubernetes in Nordstrom Technology, and as success stories have popped up, more teams have gotten on board. "Our initial customer base, the ones who were willing to try this out, are now going and evangelizing to the next set of users," says Patel. "One early adopter had Docker containers and he was not sure how to run it in production. We sat with him and within 15 minutes we deployed it in production. He thought it was amazing, and more people in his org started coming in." -->
-现在有60多个开发团队在 Nordstrom 上运行 Kubernetes ，随着成功案例的涌现，更多的团队加入
-进来。Patel 说：“我们最初的客户群，那些愿意尝试这些的客户群，现在已经开始向后续用户宣传。一个早期使用者拥有 Docker 容器，他不知道如何在生产中运行它。我们和他坐在一起，在15分钟内，我们将其部署到生产中。他认为这是惊人的，他所在的组织更多的人开始加入进来。”
- <br><br>
-<!-- For Nordstrom Technology, going cloud-native has vastly improved development and operational efficiency. The developers using Kubernetes now deploy faster and can focus on building value in their applications.  One such team started with a 25-minute merge to deploy by launching virtual machines in the cloud. Switching to Kubernetes was a 5x speedup in their process, improving their merge to deploy time to 5 minutes. -->
-对于 Nordstrom 而言，云原生极大地提高了开发和运营
-效率。现在，使用 Kubernetes 的开发人员部署速度更快，可以专注于在其应用程序中构建价值。一个团队从 25 分钟的合并开始，通过在云中启动虚拟机来进行部署。切换到 Kubernetes 的过程速度是原来 5 倍，将合并时间缩短为 5 分钟。
-</div>
-
-<div class="banner5">
-  <div class="banner5text">
-    <!-- "With Kubernetes, without even trying to make our cluster efficient, we are currently at 40 percent CPU utilization—a 10x increase. we are running 2600+ customer pods that would have been 2600+ VMs if they had gone directly to the cloud. We are running them on 40 VMs now, so that’s a huge reduction in operational overhead." -->
-“借助 Kubernetes ，我们甚至不需要尝试去提高群集的效率，目前 CPU 利用率为 40%，较之前增长了 10 倍。我们正在运行 2600 多个客户 pod ，如果它们直接进入云，这些 Pod 将是 2600 多个 VM。我们现在在 40 台 VM 上运行它们，因此这大大降低了运营开销。
-  </div>
-</div>
-
-<div class="fullcol">
-  <!-- Speed is great, and easily demonstrated, but perhaps the bigger impact lies in the operational efficiency. "We run thousands of VMs on AWS, and their overall average CPU utilization is about four percent," says Patel. "With Kubernetes, without even trying to make our cluster efficient, we are currently at 40 percent CPU utilization—a 10x increase. We are running 2600+ customer pods that would have been 2600+ VMs if they had gone directly to the cloud. We are running them on 40 VMs now, so that’s a huge reduction in operational overhead." -->
-速度是伟大的，并且很容易证明，但也许更大的影响在于运营效率。Patel 说：“我们在 AWS 上运行了数千个 VM ，它们的总体平均 CPU 利用率约为 4%。借助 Kubernetes ，我们甚至不需要尝试去提高群集的效率，目前 CPU 利用率为 40%，较之前增长了 10 倍。我们正在运行 2600 多个客户 pod ，如果它们直接进入云，这些 Pod 将是 2600 多个 VM。我们现在在 40 台 VM 上运行它们，因此这大大降低了运营开销。
-<br><br>
-  <!-- Nordstrom Technology is also exploring running Kubernetes on bare metal on premises. "If we can build an on-premises Kubernetes cluster," says Patel, "we could bring the power of cloud to provision resources fast on-premises. Then for the developer, their interface is Kubernetes; they might not even realize or care that their services are now deployed on premises because they’re only working with Kubernetes." -->
-Patel 说：“如果我们能构建一个本地 Kubernetes 集群，我们就能将云的力量带到本地快速调配资源。然后，对于开发人员，他们的接口是Kubernetes；他们甚至可能没有意识到或不关心他们的服务现在部署在内部，因为他们只与 Kubernetes 合作。
-  <!-- For that reason, Patel is eagerly following Kubernetes’ development of multi-cluster capabilities. "With cluster federation, we can have our on-premise as the primary cluster and the cloud as a secondary burstable cluster," he says. "So, when there is an anniversary sale or Black Friday sale, and we need more containers - we can go to the cloud." -->
-因此，Patel 热切关注 Kubernetes 多集群能力的发展。他说：“有了集群联合，我们可以将内部部署作为主群集，将云作为辅助可突发集群。因此,当有周年销售或黑色星期五销售,我们需要更多的容器时，我们可以去云。”
-<br><br>
-  <!-- That kind of possibility—as well as the impact that Grigoriu and Patel’s team has already delivered using Kubernetes—is what led Nordstrom on its cloud native journey in the first place. "The way the retail environment is today, we are trying to build responsiveness and flexibility where we can," says Grigoriu.  "Kubernetes makes it easy to: bring efficiency to both the Dev and Ops side of the equation. It’s a win-win." -->
-这种可能性以及 Grigoriu 和 Patel 的团队已经使用Kubernetes所提供的影响，是 Nordstrom 最初在云原生之旅中所起
-的作用。Grigoriu 说：“在当下的零售模式下，我们正在努力在力所能及的地方建立响应能力和灵活性。Kubernetes 使得为开发端和运维端同时带来效率的提升，这是一个双赢。”
-</div>
-</section>
diff --git a/content/zh/case-studies/wikimedia/index.html b/content/zh/case-studies/wikimedia/index.html
deleted file mode 100644
index ab6452bfc3..0000000000
--- a/content/zh/case-studies/wikimedia/index.html
+++ /dev/null
@@ -1,118 +0,0 @@
----
-title: 案例研究：Wikimedia
-
-class: gridPage
-cid: caseStudies
----
-
-<section id="hero" class="light-text">
-    <h1> 案例研究：Wikimedia</h1>
-</section>
-
-<section id="mainContent">
-    <main>
-        <div class="content">
-            <!-- <h3 id="caseStudyTitle">Using Kubernetes to Build Tools to Improve the World's Wikis</h3> -->
-<h3 id="caseStudyTitle">利用 Kubernetes 构建工具提升世界的维基</h3>
-            <p>
-                <!-- The non-profit Wikimedia Foundation operates some of the largest collaboratively edited reference projects in the world, including Wikipedia. To help users maintain and use wikis, it runs Wikimedia Tool Labs, a hosting environment for community developers working on tools and bots to help editors and other volunteers do their work, including reducing vandalism. The community around Wikimedia Tool Labs began forming nearly 10 years ago. -->
-非营利的 Wikimedia 基金会运营着一些世界上最大的合作编辑参考项目，包括 Wikipedia。为了帮助用户维护和使用 wiki，它运行 Wikimedia 工具实验室，这是一个托管环境，为社区开发人员工作的工具和机器人，以帮助编辑和其他志愿者做他们的工作，包括减少破坏。Wikimedia 工具实验室周围的社区在近10年前开始形成。
-            </p>
-            <div class="feature">
-                <img src="/images/wikimedia_logo.png" alt="Wikimedia">
-                <p class="quote">
-                    <!-- "Wikimedia Tool Labs is vital for making sure wikis all around the world work as well as they possibly can. Because it's grown organically for almost 10 years, it has become an extremely challenging environment and difficult to maintain. It's like a big ball of mud — you really can't see through it. With Kubernetes, we're simplifying the environment and making it easier for developers to build the tools that make wikis run better." -->
-“ Wikimedia 工具实验室对于确保世界各地的 wiki 尽可能工作至关重要。因为它有机地生长了近10年，它已成为一个极具挑战性的环境，难以维持。它就像一个大的泥球，你真的看不透它。借助 Kubernetes，可以简化环境，使开发人员能够更轻松地构建使 wiki 运行得更好的工具。”
-                </p>
-                <!-- <p class="attrib">— Yuvi Panda, operations engineer at Wikimedia Foundation and Wikimedia Tool Labs</p> -->
-                <p class="attrib">— Yuvi Panda, Wikimedia 基金会和 Wikimedia 工具实验室的运维工程师</p>
-            </div>
-        </div>
-    </main>
-</section>
-
-<section class="bullets">
-    <main>
-        <div class="content">
-            <div class="bullet">
-                <h4>挑战：</h4>
-                <ul>
-                    <!-- <li>Simplify a complex, difficult-to-manage infrastructure</li> -->
-                    <li>简化复杂、难以管理的基础架构</li>
-                    <!-- <li>Allow developers to continue writing tools and bots using existing techniques</li> -->
-                    <li>允许开发人员使用现有技术继续编写工具和机器人</li>
-                </ul>
-            </div>
-            <div class="bullet">
-                <!-- <h4>Why Kubernetes:</h4> -->
-                <h4>为什么要使用 Kubernetes</h4>
-                <ul>
-                    <!-- <li>Wikimedia Tool Labs chose Kubernetes because it can mimic existing workflows, while reducing complexity</li> -->
-                    <li>Wikimedia 工具实验室之所以选择 Kubernetes，是因为它可以模仿现有的工作流程，同时降低复杂性。</li>
-                </ul>
-            </div>
-            <div class="bullet">
-                <!-- <h4>Approach:</h4> -->
-                <h4>解决方案：</h4>
-                <ul>
-                    <!-- <li>Migrate old systems and a complex infrastructure to Kubernetes</li> -->
-                    <li>将旧系统和复杂的基础设施迁移到库贝内特斯</li>
-                </ul>
-            </div>
-            <div class="bullet">
-                <!-- <h4>Results:</h4> -->
-                <h4>结果：</h4>
-                <ul>
-                    <!-- <li>20 percent of web tools that account for more than 40 percent of web traffic now run on Kubernetes</li> -->
-                    <li>占 Web 流量 40% 以上的 Web 工具的 20% 现在都在 Kubernetes 上运行</li>
-                    <!-- <li>A 25-node cluster that keeps up with each new Kubernetes release</li> -->
-                    <li>一个 25 节点集群可跟上每个新 Kubernetes 版本</li>
-                    <!-- <li>Thousands of lines of old code have been deleted, thanks to Kubernetes</li> -->
-                    <li>由于 Kubernetes 数千行旧代码被删除</li>
-                </ul>
-            </div>
-        </div>
-    </main>
-</section>
-
-<section class="details">
-    <main>
-        <div class="content">
-            <!-- <h4>Using Kubernetes to provide tools for maintaining wikis</h4> -->
-            <h4>使用 Kubernetes 提供维护 wiki 的工具</h4>
-            <p>
-                <!-- Wikimedia Tool Labs is run by a staff of four-and-a-half paid employees and two volunteers. The infrastructure didn't make it easy or intuitive for developers to build bots and other tools to make wikis work more easily. Yuvi says, "It's incredibly chaotic. We have lots of Perl and Bash duct tape on top of it. Everything is super fragile." -->
-                Wikimedia 工具实验室由四名半付费员工和两名志愿者管理。基础架构无法使开发人员轻松或直观地构建机器人和其他工具，使 wiki 更易于工作。Yuvi说，“它非常混乱。我们有很多的 Perl 和 Bash 缠绕在上面。一切都是超级脆弱。”
-            </p>
-            <p>
-                <!-- To solve the problem, Wikimedia Tool Labs migrated parts of its infrastructure to Kubernetes, in preparation for eventually moving its entire system. Yuvi said Kubernetes greatly simplifies maintenance. The goal is to allow developers creating bots and other tools to use whatever development methods they want, but make it easier for the Wikimedia Tool Labs to maintain the required infrastructure for hosting and sharing them. -->
-                为了解决这个问题，Wikimedia 工具实验室将其部分基础设施迁移到了 Kubernetes，为最终迁移整个系统做准备。Yuvi 说，Kubernetes 大大简化了维护。目标是允许创建机器人和其他工具的开发人员使用他们想要的任何开发方法，但使 Wikimedia 工具实验室更容易维护托管和共享它们所需的基础结构。
-            </p>
-            <p>
-                <!-- "With Kubernetes, I've been able to remove a lot of our custom-made code, which makes everything easier to maintain. Our users' code also runs in a more stable way than previously," says Yuvi. -->
-                “借助 Kubernetes，我能够删除大量我们定制的代码，这使得所有内容更易于维护。我们的用户代码也以比以前更稳定的方式运行，” Yuvi 说。
-            </p>
-        </div>
-    </main>
-</section>
-
-<section class="details">
-    <main>
-        <div class="content">
-            <!-- <h4>Simplifying infrastructure and keeping wikis running better</h4> -->
-            <h4>简化基础架构让 wiki 更好地运行</h4>
-            <p>
-                <!-- Wikimedia Tool Labs has seen great success with the initial Kubernetes deployment. Old code is being simplified and eliminated, contributing developers don't have to change the way they write their tools and bots, and those tools and bots run in a more stable fashion than they have in the past. The paid staff and volunteers are able to better keep up with fixing issues. -->
-                Wikimedia 工具实验室在最初的 Kubernetes 部署中取得了巨大成功。旧代码正在被简化和消除，使开发人员不必改变他们编写工具和机器人的方式，这些工具和机器人的运行方式比过去更稳定。付费员工和志愿者能够更好地解决问题。
-            </p>
-            <p>
-                <!-- In the future, with a more complete migration to Kubernetes, Wikimedia Tool Labs expects to make it even easier to host and maintain the bots and tools that help run wikis across the world. The tool labs already host approximately 1,300 tools and bots from 800 volunteers, with many more being submitted every day. Twenty percent of the tool labs' web tools that account for more than 60 percent of web traffic now run on Kubernetes. The tool labs has a 25-node cluster that keeps up with each new Kubernetes release. Many existing web tools are migrating to Kubernetes. -->
-                将来，随着更完整的迁移到 Kubernetes，Wikimedia 工具实验室希望使托管和维护帮助在世界各地运行 wiki 的机器人和工具变得更加容易。该工具实验室已经托管了来自 800 名志愿者的大约 1300 个工具和机器人，每天提交更多工具和机器人。占 Web 流量 60% 以上的 20% 的工具实验室 Web 工具现在运行在 Kubernetes 上。该工具实验室有一个 25 节点群集，可跟上每个新的 Kubernetes 版本。许多现有的 Web 工具正在迁移到 Kubernetes。
-            </p>
-            <p>
-                <!-- "Our goal is to make sure that people all over the world can share knowledge as easily as possible. Kubernetes helps with that, by making it easier for wikis everywhere to have the tools they need to thrive," says Yuvi. -->
-                “我们的目标是确保世界各地的人们能够尽可能轻松地分享知识。Kubernetes 通过让世界各地的 wiki 更容易拥有蓬勃发展所需的工具，从而帮助到您，” Yuvi 说。
-            </p>
-        </div>
-    </main>
-</section>
diff --git a/content/zh/case-studies/ygrene/index.html b/content/zh/case-studies/ygrene/index.html
deleted file mode 100644
index 969483ba07..0000000000
--- a/content/zh/case-studies/ygrene/index.html
+++ /dev/null
@@ -1,130 +0,0 @@
----
-title: 案例研究：Ygrene
-
-case_study_styles: true
-cid: caseStudies
-css: /css/style_ygrene.css
----
-
-<!-- <div class="banner1 desktop" style="background-image: url('/images/CaseStudy_ygrene_banner1.jpg')">
-  <h1> CASE STUDY:<img src="/images/ygrene_logo.png" style="margin-bottom:-1%" class="header_logo"><br> <div class="subhead">Ygrene: Using Cloud Native to Bring Security and Scalability to the Finance Industry
-
-</div></h1> -->
-<div class="banner1">
-  <h1> 案例研究:<img src="/images/ygrene_logo.png" style="margin-bottom:-1%" class="header_logo"><br> <div class="subhead">Ygrene: 使用原生云为金融行业带来安全性和可扩展性
-
-</div></h1>
-
-
-</div>
-
-<!-- <div class="details">
-    Company &nbsp;<b>Ygrene</b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Location &nbsp;<b>Petaluma, Calif.</b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Industry &nbsp;<b>Clean energy financing</b>
-</div> -->
-<div class="details">
-    公司 &nbsp;<b>Ygrene</b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;位置 &nbsp;<b>佩塔卢马，加利福尼亚州</b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;行业 &nbsp;<b>清洁能源融资</b>
-</div>
-
-<hr>
-<section class="section1">
-<div class="cols">
-  <div class="col1">
-    <h2>挑战</h2>
-    <!-- A PACE (Property Assessed Clean Energy) financing company, Ygrene has funded more than $1 billion in loans since 2010. In order to approve and process those loans, "We have lots of data sources that are being aggregated, and we also have lots of systems that need to churn on that data," says Ygrene Development Manager Austin Adams. The company was utilizing massive servers, and "we just reached the limit of being able to scale them vertically. We had a really unstable system that became overwhelmed with requests just for doing background data processing in real time. The performance the users saw was very poor. We needed a solution that wouldn’t require us to make huge refactors to the code base." As a finance company, Ygrene also needed to ensure that they were shipping their applications securely. -->
-作为一家 PACE（清洁能源资产评估）融资公司，Ygrene 自2010年以来已经为超过10亿的贷款提供资金。为了批准和处理这些贷款，“我们有很多正在聚合的数据源，而且我们也有许多系统需要对这些数据进行改动，”Ygrene 开发经理 Austin Adams 说。该公司正在使用大量服务器，“我们刚刚达到能够垂直扩展它们的极限。我们有一个非常不稳定的系统，它变得不知所措，要求只是做后台数据处理的实时。用户看到的性能很差。我们需要一个解决方案，不需要我们对代码库进行大量重构。作为一家金融公司，Ygrene 还需要确保他们安全地传输应用程序。”
-
-<br>
-
- <h2>解决方案</h2>
-    <!-- Moving from an Engine Yard platform and Amazon Elastic Beanstalk, the Ygrene team embraced cloud native technologies and practices: <a href="https://kubernetes.io/">Kubernetes</a> to help scale out vertically and distribute workloads, <a href="https://github.com/theupdateframework/notary">Notary</a> to put in build-time controls and get trust on the Docker images being used with third-party dependencies, and <a href="https://www.fluentd.org/">Fluentd</a> for "observing every part of our stack," all running on <a href="https://aws.amazon.com/ec2/spot/">Amazon EC2 Spot</a>. -->
-从 Engine Yard 和 Amazon Elastic Beanstalk 上迁移了应用后，Ygrene 团队采用云原生技术和实践：使用<a href="https://kubernetes.io/">Kubernetes</a>来帮助垂直扩展和分配工作负载，使用<a href="https://github.com/theupdateframework/notary"> Notary </a>加入构建时间控制和获取使用第三方依赖的可信赖 Docker 镜像，使用<a href="https://www.fluentd.org/">Fluentd</a>“掌握堆栈中的所有情况”，这些都运行在<a href="https://aws.amazon.com/ec2/spot/">Amazon EC2 Spot</a>上。
-</div>
-
-<div class="col2">
-
-<h2>影响</h2>
-  <!-- Before, deployments typically took three to four hours, and two or three months’ worth of work would be deployed at low-traffic times every week or two weeks. Now, they take five minutes for Kubernetes, and an hour for the overall deploy with smoke testing. And "we’re able to deploy three or four times a week, with just one week’s or two days’ worth of work," Adams says. "We’re deploying during the work week, in the daytime and without any downtime. We had to ask for business approval to take the systems down, even in the middle of the night, because people could be doing loans. Now we can deploy, ship code, and migrate databases, all without taking the system down. The company gets new features without worrying that some business will be lost or delayed." Additionally, by using the kops project, Ygrene can now run its Kubernetes clusters with AWS EC2 Spot, at a tenth of the previous cost. These cloud native technologies have "changed the game for scalability, observability, and security—we’re adding new data sources that are very secure," says Adams. "Without Kubernetes, Notary, and Fluentd, we couldn’t tell our investors and team members that we knew what was going on." -->
-以前，部署通常需要三到四个小时，而且每周或每两周要把一些两三个月工作量的任务在系统占用低的时候进行部署。现在，他们用5分钟来配置 Kubernetes，然后用一个小时进行整体部署与烟雾测试。Adams 说：“我们每周可以部署三到四次，只需一周或两天的工作量。”“我们在工作周、白天的任意时间进行部署，甚至不需要停机。以前我们不得不请求企业批准，以关闭系统，因为即使在半夜，人们也可能正在访问服务。现在，我们可以部署、上传代码和迁移数据库，而无需关闭系统。公司获得新功能，而不必担心某些业务会丢失或延迟。”此外，通过使用 kops 项目，Ygrene 现在可以用以前成本的十分之一使用 AWS EC2 Spot 运行其 Kubernetes 集群。Adams 说，这些云原生技术“改变了可扩展性、可观察性和安全性（我们正在添加新的非常安全的数据源）的游戏。”“没有 Kubernetes、Notary 和 Fluent，我们就无法告诉投资者和团队成员，我们知道刚刚发生了什么事情。”
-
-</div>
-
-</div>
-</section>
-<div class="banner2">
-  <div class="banner2text">
-<!-- "CNCF projects are helping Ygrene determine the security and observability standards for the entire PACE industry. We’re an emerging finance industry, and without these projects, especially Kubernetes, we couldn’t be the industry leader that we are today." <span style="font-size:14px;letter-spacing:0.12em;padding-top:20px;text-transform:uppercase;line-height:14px"><br><br>— Austin Adams, Development Manager, Ygrene Energy Fund</span> -->
-“CNCF 项目正在帮助 Ygrene 确定整个 PACE 行业的安全性和可观察性标准。我们是一个新兴的金融企业，没有这些项目，尤其是 Kubernetes，我们不可能成为今天的行业领导者。”<span style="font-size:14px;letter-spacing:0.12em;padding-top:20px;text-transform:uppercase;line-height:14px"><br><br>— Austin Adams, Ygrene 能源基金会开发经理</span>
-
-  </div>
-</div>
-
-<section class="section2">
-<div class="fullcol">
- <!-- <h2>In less than a decade, <a href="https://ygrene.com/index.html" style="text-decoration:underline">Ygrene</a> has funded more than $1 billion in loans for renewable energy&nbsp;projects.</h2> A <a href="https://www.energy.gov/eere/slsc/property-assessed-clean-energy-programs">PACE</a> (Property Assessed Clean Energy) financing company, "We take the equity in a home or a commercial building, and use it to finance property improvements for anything that saves electricity, produces electricity, saves water, or reduces carbon emissions," says Development Manager Austin Adams. <br><br> -->
-<h2>在不到十年的时间里，<a href="https://ygrene.com/index.html" style="text-decoration:underline"> Ygrene </a>就为可再生能源项目提供了超过10亿美元的贷款。</h2><a href="https://www.energy.gov/eere/slsc/property-assessed-clean-energy-programs"> PACE </a>（清洁能源物业评估）融资公司开发经理 Austin Adams 表示：“我们抵押房屋或商业建筑，用贷款来为任何可以节约电力、生产电力、节约用水或减少碳排放的项目提供资金支持。”<br><br>
-
-<!-- In order to approve those loans, the company processes an enormous amount of underwriting data. "We have tons of different points that we have to validate about the property, about the company, or about the person," Adams says. "So we have lots of data sources that are being aggregated, and we also have lots of systems that need to churn on that data in real time." <br><br> -->
-为了批准这些贷款，公司需要处理大量的承销数据。Adams 说：“我们必须要验证有关财产、公司或人员的问题，像这样的工作数以千计。因此，我们有很多正在聚合的数据源，并且我们也有大量系统需要实时对这些数据进行改动。”<br><br>
-<!-- By 2017, deployments and scalability had become pain points. The company was utilizing massive servers, and "we just reached the limit of being able to scale them vertically," he says. Migrating to AWS Elastic Beanstalk didn’t solve the problem: "The Scala services needed a lot of data from the main Ruby on Rails services and from different vendors, so they were asking for information from our Ruby services at a rate that those services couldn’t handle. We had lots of configuration misses with Elastic Beanstalk as well. It just came to a head, and we realized we had a really unstable system." -->
-到 2017 年，部署和可扩展性已成为痛点。该公司已经使用了大量服务器，“我们刚刚达到能够垂直扩展的极限，”他说。迁移到 AWS Elastic Beanstalk 并不能解决问题：“Scala 服务需要来自主 Ruby on Rails 服务和不同供应商提供的大量数据，因此他们要求从我们的 Ruby 服务以一种服务器无法承受的速率获取信息。在 Elastic Beanstalk 上我们也有许多配置与应用不匹配。这仅仅是一个开始，我们也意识到我们这个系统非常不稳定。”
-</div>
-</section>
-<div class="banner3">
-  <div class="banner3text">
-    <!-- "CNCF has been an amazing incubator for so many projects. Now we look at its webpage regularly to find out if there are any new, awesome, high-quality projects we can implement into our stack. It’s actually become a hub for us for knowing what software we need to be looking at to make our systems more secure or more scalable."<span style="font-size:14px;letter-spacing:0.12em;padding-top:20px;text-transform:uppercase;line-height:14px"><br><br>— Austin Adams, Development Manager, Ygrene Energy Fund</span> -->
-“CNCF 是众多项目惊人的孵化器。现在，我们定期查看其网页，了解是否有任何新的、可敬的高质量项目可以应用到我们的系统中。它实际上已成为我们了解自身需要什么样的软件以使我们的系统更加安全和具有可伸缩性的信息中心。”<span style="font-size:14px;letter-spacing:0.12em;padding-top:20px;text-transform:uppercase;line-height:14px"><br><br>— Austin Adams, Ygrene 能源基金会开发经理</span>
-  </div>
-</div>
-<section class="section3">
-<div class="fullcol">
-
-<!-- Adams along with the rest of the team set out to find a solution that would be transformational, but "wouldn’t require us to make huge refactors to the code base," he says. And as a finance company, Ygrene needed security as much as scalability. They found the answer by embracing cloud native technologies: Kubernetes to help scale out vertically and distribute workloads, Notary to achieve reliable security at every level, and Fluentd for observability. "Kubernetes was where the community was going, and we wanted to be future proof," says Adams. <br><br> -->
-Adams 和其他团队一起着手寻找一种具有变革性的解决方案，但“不需要我们对代码库进行巨大的重构，”他说。作为一家金融公司，和可伸缩性一样，Ygrene 需要更好的安全性。他们通过采用云原生技术找到了答案：Kubernetes 帮助纵向扩展和分配工作负载，Notary 在各个级别实现可靠的安全性，Fluentd 来提供可观察性。Adams 说：“ Kubernetes 是社区前进的方向，也是我们展望未来的证明。”<br><br>
-<!-- With Kubernetes, the team was able to quickly containerize the Ygrene application with Docker. "We had to change some practices and code, and the way things were built," Adams says, "but we were able to get our main systems onto Kubernetes in a month or so, and then into production within two months. That’s very fast for a finance company."<br><br> -->
-有了 Kubernetes，该团队能够快速将 Ygrene 应用程序用 Docker 容器化。“我们必须改变一些实现和代码，以及系统的构建方式，” Adams 说，“但我们已经能够在一个月左右的时间内将主要系统引入 Kubernetes，然后在两个月内投入生产。对于一家金融公司来说，这已经非常快了。”<br><br>
-<!-- How? Cloud native has "changed the game for scalability, observability, and security—we’re adding new data sources that are very secure," says Adams. "Without Kubernetes, Notary, and Fluentd, we couldn’t tell our investors and team members that we knew what was going on." <br><br> -->
-怎么样？Adams 说，这些云原生技术“改变了可扩展性、可观察性和安全性（我们正在添加新的非常安全的数据源）的游戏。”“没有 Kubernetes、Notary 和 Fluent，我们就无法告诉投资者和团队成员，我们知道刚刚发生了什么事情。”<br><br>
-<!-- Notary, in particular, "has been a godsend," says Adams. "We need to know that our attack surface on third-party dependencies is low, or at least managed. We use it as a trust system and we also use it as a separation, so production images are signed by Notary, but some development images we don’t sign. That is to ensure that they can’t get into the production cluster. We’ve been using it in the test cluster to feel more secure about our builds." -->
-Adams 说，尤其 Notary 简直就是“天赐之物”。“我们要清楚，我们针对第三方依赖项的攻击面较低，或者至少是托管的。因为我们使用 Notary 作为一个信任系统，我们也使用它作为区分，所以生产镜像由 Notary 签名，但一些开发镜像就不签署。这是为了确保未签名镜像无法进入生产集群。我们已经在测试集群中使用它，以使构建的应用更安全。”
-
-
-</div>
-</section>
-<div class="banner4">
-  <div class="banner4text">
-<!-- "We had to change some practices and code, and the way things were built," Adams says, "but we were able to get our main systems onto Kubernetes in a month or so, and then into production within two months. That’s very fast for a finance company." -->
-“我们必须改变一些实现和代码，以及系统的构建方式，” Adams 说，“但我们已经能够在一个月左右的时间内将主要系统引入 Kubernetes，然后在两个月内投入生产。对于一家金融公司来说，这已经非常快了。”
-  </div>
-</div>
-
-<section class="section4">
-<div class="fullcol">
- <!-- By using the kops project, Ygrene was able to move from Elastic Beanstalk to running its Kubernetes clusters on AWS EC2 Spot, at a tenth of the previous cost. "In order to scale before, we would need to up our instance sizes, incurring high cost for low value," says Adams. "Now with Kubernetes and kops, we are able to scale horizontally on Spot with multiple instance groups."<br><br> -->
-通过使用 kops 项目，Ygrene 能够用以前成本的十分之一从 Elastic Beanstalk 迁移到 AWS EC2 Spot 上运行其 Kubernetes 群集。Adams 说：“以前为了扩展，我们需要增加实例大小，导致高成本产出低价值。现在，借助 Kubernetes 和 kops，我们能够在具有多个实例组的 Spot 上水平缩放。”<br><br>
-<!-- That also helped them mitigate the risk that comes with running in the public cloud. "We figured out, essentially, that if we’re able to select instance classes using EC2 Spot that had an extremely low likelihood of interruption and zero history of interruption, and we’re willing to pay a price high enough, that we could virtually get the same guarantee using Kubernetes because we have enough nodes," says Software Engineer Zach Arnold, who led the migration to Kubernetes. "Now that we’ve re-architected these pieces of the application to not live on the same server, we can push out to many different servers and have a more stable deployment."<br><br> -->
-这也帮助他们降低了在公共云中运行所带来的风险。“我们发现，基本上，如果我们能够使用中断可能性极低、无中断历史的 EC2 Spot 选择实例类，并且我们愿意付出足够高的价格，我们几乎可以得到和使用 Kubernetes 相同的保证，因为我们有足够的节点，”软件工程师 Zach Arnold 说，他领导了向 Kubernetes 的迁移。“现在，我们已经重新架构了应用程序的这些部分，使之不再位于同一台服务器上，我们可以推送到许多不同的服务器，并实现更稳定的部署。”<br><br>
-<!-- As a result, the team can now ship code any time of day. "That was risky because it could bring down your whole loan management software with it," says Arnold. "But we now can deploy safely and securely during the day." -->
-因此，团队现在可以在一天中的任何时间传输代码。阿诺德说：“以前这样做是很危险的，因为它会拖慢整个贷款管理软件。”“但现在，我们可以在白天安全部署。”
-
-</div>
-</section>
-<div class="banner5">
-  <div class="banner5text">
- <!-- "In order to scale before, we would need to up our instance sizes, incurring high cost for low value," says Adams. "Now with Kubernetes and kops, we are able to scale horizontally on Spot with multiple instance groups." -->
-Adams 说：“以前为了扩展，我们需要增加实例大小，导致高成本产出低价值。现在，借助 Kubernetes 和 kops，我们能够在具有多个实例组的 Spot 上水平缩放。”
-  </div>
-</div>
-
-<section class="section5">
-<div class="fullcol">
- <!-- Before, deployments typically took three to four hours, and two or three months’ worth of work would be deployed at low-traffic times every week or two weeks. Now, they take five minutes for Kubernetes, and an hour for an overall deploy with smoke testing. And "we’re able to deploy three or four times a week, with just one week’s or two days’ worth of work," Adams says. "We’re deploying during the work week, in the daytime and without any downtime. We had to ask for business approval to take the systems down for 30 minutes to an hour, even in the middle of the night, because people could be doing loans. Now we can deploy, ship code, and migrate databases, all without taking the system down. The company gets new features without worrying that some business will be lost or delayed."<br><br> -->
-以前，部署通常需要三到四个小时，而且每周或每两周要把一些两三个月工作量的任务在系统占用低的时候进行部署。现在，他们用5分钟来配置 Kubernetes，然后用一个小时进行整体部署与烟雾测试。Adams 说：“我们每周可以部署三到四次，只需一周或两天的工作量。”“我们在工作周、白天的任意时间进行部署，甚至不需要停机。以前我们不得不请求企业批准，以关闭系统，因为即使在半夜，人们也可能正在访问服务。现在，我们可以部署、上传代码和迁移数据库，而无需关闭系统。公司增加新项目，而不必担心某些业务会丢失或延迟。”<br><br>
-<!-- Cloud native also affected how Ygrene’s 50+ developers and contractors work. Adams and Arnold spent considerable time "teaching people to think distributed out of the box," says Arnold. "We ended up picking what we call the Four S’s of Shipping: safely, securely, stably, and speedily." (For more on the security piece of it, see their <a href="https://thenewstack.io/beyond-ci-cd-how-continuous-hacking-of-docker-containers-and-pipeline-driven-security-keeps-ygrene-secure/index.html">article</a> on their "continuous hacking" strategy.) As for the engineers, says Adams, "they have been able to advance as their software has advanced. I think that at the end of the day, the developers feel better about what they’re doing, and they also feel more connected to the modern software development community."<br><br> -->
-云原生也影响了 Ygrene 的 50 多名开发人员和承包商的工作方式。Adams 和 Arnold 花了相当长的时间“教人们思考开箱即用的”，Arnold 说。“我们最终选择了称之为“航运四S”：安全、可靠、稳妥、快速。”（有关其安全部分的更多内容，请参阅他们关于"持续黑客攻击"策略的<a href="https://thenewstack.io/beyond-ci-cd-how-continuous-hacking-of-docker-containers-and-pipeline-driven-security-keeps-ygrene-secure/index.html">文章</a>。至于工程师，Adams 说，“他们已经能够跟上软件进步的步伐。我想一天结束时，开发人员会感觉更好，他们也会感觉与现代软件开发社区的联系更加紧密。”<br><br>
-<!-- Looking ahead, Adams is excited to explore more CNCF projects, including SPIFFE and SPIRE. "CNCF has been an amazing incubator for so many projects," he says. "Now we look at its webpage regularly to find out if there are any new, awesome, high-quality projects we can implement into our stack. It’s actually become a hub for us for knowing what software we need to be looking at to make our systems more secure or more scalable." -->
-展望未来，Adams 很高兴能探索更多的 CNCF 项目，包括 SPIFFE 和 SPIRE。“ CNCF 是众多项目惊人的孵化器。现在，我们定期查看其网页，了解是否有任何新的、可敬的高质量项目可以应用到我们的系统中。它实际上已成为我们了解自身需要什么样的软件以使我们的系统更加安全和具有可伸缩性的信息中心。”
-
-
-</div>
-
-</section>
diff --git a/content/zh/case-studies/zalando/index.html b/content/zh/case-studies/zalando/index.html
deleted file mode 100644
index 39fc63ab1d..0000000000
--- a/content/zh/case-studies/zalando/index.html
+++ /dev/null
@@ -1,132 +0,0 @@
----
-title: 案例研究：Zalando
-case_study_styles: true
-cid: caseStudies
-css: /css/style_zalando.css
----
-
-<div class="banner1">
-  <!-- <h1> CASE STUDY:<img src="/images/zalando_logo.png" class="header_logo"><br> <div class="subhead">Europe’s Leading Online Fashion Platform Gets Radical with Cloud Native
-</div></h1> -->
-<h1> 案例研究：<img src="/images/zalando_logo.png" class="header_logo"><br> <div class="subhead">欧洲领先的在线时尚平台通过云原生获得突破性进展
-</div></h1>
-
-</div>
-
-<!-- <div class="details">
-    Company &nbsp;<b>Zalando</b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Location &nbsp;<b>Berlin, Germany</b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Industry &nbsp;<b>Online Fashion</b>
-</div> -->
-<div class="details">
-    公司 &nbsp;<b>Zalando</b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;位置 &nbsp;<b>柏林, 德国</b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;行业 &nbsp;<b>在线时尚平台</b>
-</div>
-
-<hr>
-<section class="section1">
-<div class="cols">
-  <div class="col1">
-    <h2>挑战</h2>
-    <!-- Zalando, Europe’s leading online fashion platform, has experienced exponential growth since it was founded in 2008. In 2015, with plans to further expand its original e-commerce site to include new services and products, Zalando embarked on a <a href="https://jobs.zalando.com/tech/blog/radical-agility-study-notes/">radical transformation</a> resulting in autonomous self-organizing teams. This change requires an infrastructure that could scale with the growth of the engineering organization. Zalando’s technology department began rewriting its applications to be cloud-ready and started moving its infrastructure from on-premise data centers to the cloud. While orchestration wasn’t immediately considered, as teams migrated to <a href="https://aws.amazon.com/">Amazon Web Services</a> (AWS): "We saw the pain teams were having with infrastructure and Cloud Formation on AWS," says Henning Jacobs, Head of Developer Productivity. "There’s still too much operational overhead for the teams and compliance. " To provide better support, cluster management was brought into play. -->
-Zalando 是欧洲领先的在线时尚平台，自 2008 年成立以来，经历了指数级增长。2015 年，Zalando 计划进一步扩展其原有的电子商务站点，以扩展新的服务和产品，从而开始了<a href="https://jobs.zalando.com/tech/blog/radical-agility-study-notes/">彻底的变革</a>，因此形成了自主的自组织团队。这次扩展需要可以随工程组织的增长而扩展的基础架构。Zalando 的技术部门开始重写其应用程序，使其能够在云端运行，并开始将其基础架构从内部数据中心迁移到云。虽然编排没有立即被考虑，因为团队迁移到<a href="https://aws.amazon.com/">亚马逊网络服务</a>（AWS）：“我们体验过团队在 AWS 上进行基础设施架构和使用云资源时遇到的痛苦，”开发人员生产力主管 Henning Jacobs 说，“我们遇到了一些难题。对于团队和合规性来说，运营开销仍然过多。为了提供更好的支持，项目引入了集群管理。”
-
-      </div>
-
-<div class="col2">
-  <h2>解决方案</h2>
-      <!-- The company now runs its Docker containers on AWS using Kubernetes orchestration. -->
-该公司现在使用 Kubernetes 编排在 AWS 上运行的 Docker 容器。
-<br>
-<h2>影响</h2>
-      <!-- With the old infrastructure "it was difficult to properly embrace new technologies, and DevOps teams were considered to be a bottleneck," says Jacobs. "Now, with this cloud infrastructure, they have this packaging format, which can contain anything that runs on the Linux kernel. This makes a lot of people pretty happy. The engineers love autonomy." -->
-Jacobs 说，由于旧基础设施“很难正确采用新技术，而 DevOps 团队被视为瓶颈。”“现在，有了这个云基础架构，它们有了这种打包格式，可以包含任何在Linux内核上运行的东西。这使得很多人相当高兴。工程师喜欢自主。”
-</div>
-</div>
-</section>
-<div class="banner2">
-  <div class="banner2text">
-    <!-- "We envision all Zalando delivery teams running their containerized applications on a state-of-the-art, reliable and scalable cluster infrastructure provided by Kubernetes."<br style="height:25px"><span style="font-size:14px;letter-spacing:2px;text-transform:uppercase;margin-top:5% !important;"><br>- Henning Jacobs, Head of Developer Productivity at Zalando</span> -->
-“我们设想所有 Zalando 交付团队在 Kubernetes 提供的最先进的、可靠且可扩展的群集基础架构上运行其容器化应用程序。”<br style="height:25px"><span style="font-size:14px;letter-spacing:2px;text-transform:uppercase;margin-top:5% !important;"><br>- Henning Jacobs, Zalando 开发人员生产力主管
-</span>
-  </div>
-</div>
-<section class="section2">
-<div class="fullcol">
-    <!-- <h2>When Henning Jacobs arrived at Zalando in 2010, the company was just two years old with 180 employees running an online store for European shoppers to buy fashion items.</h2> -->
-<h2>当 Henning Jacobs 于2010年来到 Zalando 时，该公司刚成立两年，有180名员工经营一家网上商店，供欧洲消费者购买时尚商品。</h2>
-    <!-- "It started as a PHP e-commerce site which was easy to get started with, but was not scaling with the business' needs" says Jacobs, Head of Developer Productivity at Zalando.<br><br> -->
-Zalando 的开发人员生产力主管 Jacobs 说：“它最初是一个 PHP 电子商务网站，很容易上手，但无法随业务需求扩展。”<br><br>
-    <!-- At that time, the company began expanding beyond its German origins into other European markets. Fast-forward to today and Zalando now has more than 14,000 employees, 3.6 billion Euro in revenue for 2016 and operates across 15 countries. "With growth in all dimensions, and constant scaling, it has been a once-in-a-lifetime experience," he says.<br><br> -->
-当时，公司开始从德国以外扩展到其他欧洲市场。快进到今天，Zalando 现在拥有超过 14000 名员工，2016 年收入为 36 亿欧元，业务遍及 15 个国家/地区。他表示：“这种全面快速的增长和不断扩展，一生只能有一次。”<br><br>
-    <!-- Not to mention a unique opportunity for an infrastructure specialist like Jacobs. Just after he joined, the company began rewriting all their applications in-house. "That was generally our strategy," he says. "For example, we started with our own logistics warehouses but at first you don’t know how to do logistics software, so you have some vendor software. And then we replaced it with our own because with off-the-shelf software you’re not competitive. You need to optimize these processes based on your specific business needs."<br><br> -->
-能拥有像 Jacobs 这样的基础设施专家的机会是非常独特的。就在他加入公司后，公司开始在内部重写他们的所有应用。“这通常是我们的策略，”他表示。“例如，我们从我们自己的物流仓库开始，但起初不知道如何做物流软件，所以得用一些供应商软件。然后我们用自己的软件替换了它，因为使用现成的软件是没有竞争力的。需要根据特定业务需求优化这些流程。”<br><br>
-    <!-- In parallel to rewriting their applications, Zalando had set a goal of expanding beyond basic e-commerce to a platform offering multi-tenancy, a dramatic increase in assortments and styles, same-day delivery and even <a href="https://www.zalon.de">your own personal online stylist</a>.<br><br> -->
-在重写其应用程序的同时，Zalando 设定了一个目标，即从基本电子商务扩展到提供多租户的平台、大量增加的分类和样式、当天送达，甚至<a href="https://www.zalon.de">您自己的平台个人在线造型师</a>。<br><br>
-    <!-- The need to scale ultimately led the company on a cloud-native journey. As did its embrace of a microservices-based software architecture that gives engineering teams more autonomy and ownership of projects. "This move to the cloud was necessary because in the data center you couldn’t have autonomous teams. You have the same infrastructure and it was very homogeneous, so you could only run your Java or Python app," Jacobs says. -->
-扩展的需求最终引领了公司踏上云原生之旅。它采用基于微服务的软件架构，使工程团队拥有更多的项目自主权和所有权。“迁移到云是必要的，因为在数据中心中，团队不可能随心所欲。使用相同的基础架构，因此只能运行 Java 或 Python 应用，”Jacobs 说。
-
-</div>
-</section>
-<div class="banner3">
-  <div class="banner3text">
-    <!-- "This move to the cloud was necessary because in the data center you couldn’t have autonomous teams. You have the same infrastructure and it was very homogeneous, so you could only run your Java or Python app." -->
-“迁移到云是必要的，因为在数据中心中，团队不可能随心所欲。使用相同的基础架构，因此只能运行 Java 或 Python 应用。”
-
-  </div>
-</div>
-<section class="section3">
-<div class="fullcol">
-  <!-- Zalando began moving its infrastructure from two on-premise data centers to the cloud, requiring the migration of older applications for cloud-readiness. "We decided to have a clean break," says Jacobs. "Our <a href="https://aws.amazon.com/">Amazon Web Services</a> infrastructure was set up like so: Every team has its own AWS account, which is completely isolated, meaning there’s no ‘lift and shift.’ You basically have to rewrite your application to make it cloud-ready even down to the persistence layer. We bravely went back to the drawing board and redid everything, first choosing Docker as a common containerization, then building the infrastructure from there."<br><br> -->
-Zalando 开始将其基础架构从两个内部数据中心迁移到云，这需要迁移较旧的应用程序使其在云中准备就绪。“我们决定果断一些，” Jacobs 说。“我们的<a href="https://aws.amazon.com/">亚马逊网络服务</a>基础设施是这样的：每个团队都有自己的 AWS 账户，该账户是完全隔离的，这意味着没有'提升和转移'。基本上必须重写应用程序，使其在云中准备就绪，甚至到持久层也是如此。我们勇敢地回到绘图板，重做一切，首先选择 Docker 作为通用容器化，然后从那里构建基础结构。”<br><br>
-  <!-- The company decided to hold off on orchestration at the beginning, but as teams were migrated to AWS, "we saw the pain teams were having with infrastructure and cloud formation on AWS," says Jacobs. <br><br> -->
-公司最初决定推迟编排，但随着团队迁移到 AWS，“我们看到团队在 AWS 上的基础设施和使用云资源方面遇到了难题，” Jacobs 说。<br><br>
-  <!-- Zalandos 200+ autonomous engineering teams decide what technologies to use and could operate their own applications using their own AWS accounts. This setup proved to be a compliance challenge. Even with strict rules-of-play and automated compliance checks in place, engineering teams and IT-compliance were overburdened addressing compliance issues. "Violations appear for non-compliant behavior, which we detect when scanning the cloud infrastructure," says Jacobs. "Everything is possible and nothing enforced, so you have to live with violations (and resolve them) instead of preventing the error in the first place. This means overhead for teams—and overhead for compliance and operations. It also takes time to spin up new EC2 instances on AWS, which affects our deployment velocity." <br><br> -->
-Zalando 200多人的自主工程团队研究使用哪些技术，并可以使用自己的 AWS 账户操作自己的应用程序。事实证明，此设置是一项合规性挑战。即使制定了严格的游戏规则和自动化的合规性检查，工程团队和 IT 合规性在解决合规性问题方面也负担过重。Jacobs 说："违规行为会出现，我们在扫描云基础架构时会检测到这些行为。“一切皆有可能，没有强制实施，因此您必须忍受违规行为（并解决它们），而不是一开始就防止错误。这些都会增加团队的开销，以及合规性和操作的开销。在 AWS 上启动新的 EC2 实例也需要时间，这会影响我们的部署速度。”<br><br>
-  <!-- The team realized they needed to "leverage the value you get from cluster management," says Jacobs. When they first looked at Platform as a Service (PaaS) options in 2015, the market was fragmented; but "now there seems to be a clear winner. It seemed like a good bet to go with Kubernetes."<br><br> -->
-Jacobs 说，团队意识到他们需要“利用从集群管理中获得的价值”。当他们在2015年首次将平台视为服务（PaaS）选项时，市场是支离破碎的；但“现在似乎有一个明确的赢家。使用 Kubernetes 似乎是一个很好的尝试。”<br><br>
-  <!-- The transition to Kubernetes started in 2016 during Zalando’s <a href="https://jobs.zalando.com/tech/blog/hack-week-5-is-live/?gh_src=4n3gxh1">Hack Week</a> where participants deployed their projects to a Kubernetes cluster. From there 60 members of the tech infrastructure department were on-boarded - and then engineering teams were brought on one at a time. "We always start by talking with them and make sure everyone’s expectations are clear," says Jacobs. "Then we conduct some Kubernetes training, which is mostly training for our CI/CD setup, because the user interface for our users is primarily through the CI/CD system. But they have to know fundamental Kubernetes concepts and the API. This is followed by a weekly sync with each team to check their progress. Once they have something in production, we want to see if everything is fine on top of what we can improve." -->
-Kubernetes 的过渡始于 2016 年 Zalando 的<a href="https://jobs.zalando.com/tech/blog/hack-week-5-is-live/?gh_src=4n3gxh1">极客周</a>期间，参与者将他们的项目部署到 Kubernetes 集群。60名技术基础设施部门的成员开始使用这项技术，之后每次会加入一支工程团队。Jacobs 说：“我们总是从与他们交谈开始，确保每个人的期望都清晰。然后，我们进行一些 Kubernetes 培训，这主要是针对我们的 CI/CD 设置的培训，因为我们的用户界面主要通过 CI/CD 系统。但是他们必须知道Kubernetes的基本概念和API。之后每周与每个团队同步，以检查其进度。一旦出现什么状况，就可以确定我们所做的改进是否正常。”
-
-</div>
-</section>
-<div class="banner4">
-  <div class="banner4text">
-  <!-- Once Zalando began migrating applications to Kubernetes, the results were immediate. "Kubernetes is a cornerstone for our seamless end-to-end developer experience. We are able to ship ideas to production using a single consistent and declarative API," says Jacobs. -->
-一旦Zalando开始将应用迁移到Kubernetes，效果立竿见影。“Kubernetes 是我们无缝端到端开发人员体验的基石。我们能够使用单一一致且声明性的 API 将创意运送到生产中，” Jacobs 说。
-  </div>
-</div>
-
-<section class="section4">
-<div class="fullcol">
-  <!-- At the moment, Zalando is running an initial 40 Kubernetes clusters with plans to scale for the foreseeable future.
-  Once Zalando began migrating applications to Kubernetes, the results were immediate. "Kubernetes is a cornerstone for our seamless end-to-end developer experience. We are able to ship ideas to production using a single consistent and declarative API," says Jacobs. "The self-healing infrastructure provides a frictionless experience with higher-level abstractions built upon low-level best practices. We envision all Zalando delivery teams will run their containerized applications on a state-of-the-art reliable and scalable cluster infrastructure provided by Kubernetes."<br><br> -->
-目前，Zalando正在运行最初的40个Kubernetes集群，并计划在可预见的将来进行扩展。一旦Zalando开始将申请迁移到Kubernetes，效果立竿见影。“ Kubernetes 是我们无缝端到端开发人员体验的基石。我们能够使用单一一致且声明性的 API 将创意运送到生产中，” Jacobs 说。“自愈基础架构提供了无摩擦体验，基于低级最佳实践构建了更高级别的抽象。我们设想所有 Zalando 交付团队都将在 Kubernetes 提供的最先进的可靠和可扩展群集基础架构上运行其容器化应用程序。”
-  <!-- With the old on-premise infrastructure "it was difficult to properly embrace new technologies, and DevOps teams were considered to be a bottleneck," says Jacobs. "Now, with this cloud infrastructure, they have this packaging format, which can contain anything that runs in the Linux kernel. This makes a lot of people pretty happy. The engineers love the autonomy."
-  There were a few challenges in Zalando’s Kubernetes implementation. "We are a team of seven people providing clusters to different engineering teams, and our goal is to provide a rock-solid experience for all of them," says Jacobs. "We don’t want pet clusters. We don’t want to have to understand what workload they have; it should just work out of the box. With that in mind, cluster autoscaling is important. There are many different ways of doing cluster management, and this is not part of the core. So we created two components to provision clusters, have a registry for clusters, and to manage the whole cluster life cycle."<br><br> -->
-Jacobs 说，使用旧的内部基础设施，“很难正确采用新技术，而 DevOps 团队被视为瓶颈。”“现在，有了这个云基础架构，它们有了这种打包格式，可以包含运行在 Linux 内核中的任何内容。这使得很多人相当高兴。工程师喜欢自主性。”在Zalando的Kubernetes实施中出现了一些挑战。Jacobs 说：“我们是一支由七人组成的团队，为不同的工程团队提供集群，我们的目标是为所有团队提供坚如磐石的体验。”“我们不想要宠物集群。我们不想了解他们的工作量；它应该只是开箱即用。考虑到这一点，集群自动缩放非常重要。执行集群管理的方法有很多种，这不是核心的一部分。因此，我们创建了两个组件来预配群集，具有集群的注册表，并管理整个集群生命周期。”<br><br>
-  <!-- Jacobs’s team also worked to improve the Kubernetes-AWS integration. "Thus you're very restricted. You need infrastructure to scale each autonomous team’s idea.""<br><br> -->
-Jacobs 的团队还致力于改进Kubernetes-AWS 集成。“由于许多限制条件,需要通过基础设施来扩展每个自主团队的想法。”
-  <!-- Plus, "there are still a lot of best practices missing," says Jacobs. The team, for example, recently solved a pod security policy issue. "There was already a concept in Kubernetes but it wasn’t documented, so it was kind of tricky," he says. The large Kubernetes community was a big help to resolve the issue. To help other companies start down the same path, Jacobs compiled his team’s learnings in a document called <a href="http://kubernetes-on-aws.readthedocs.io/en/latest/admin-guide/kubernetes-in-production.html">Running Kubernetes in Production</a>. -->
-此外，“仍然缺少很多最佳实践，”Jacobs说。例如，该团队最近解决了 pod 安全策略问题。“在Kubernetes已经有一个概念，但没有记录，所以有点棘手，”他说。大型的Kubernetes社区是解决这个问题的一大帮助。为了帮助其他公司走上同样的道路，Jacobs在一份名为“在生产中运行 Kubernetes ”的文件中汇编了他的团队的经验教训。
-
-</div>
-</section>
-
-<div class="banner5">
-  <div class="banner5text">
-    <!-- "The Kubernetes API allows us to run applications in a cloud provider-agnostic way, which gives us the freedom to revisit IaaS providers in the coming years... We expect the Kubernetes API to be the global standard for PaaS infrastructure and are excited about the continued journey." -->
-“ Kubernetes API 允许我们以与云提供商无关的方式运行应用程序，这使我们能够在未来几年中自由访问 IaaS 提供商...我们期望 Kubernetes API 成为 PaaS 基础设施的全球标准，并对未来的继续旅程感到兴奋。”
-  </div>
-</div>
-<section class="section5">
-<div class="fullcol">
-  <!-- In the end, Kubernetes made it possible for Zalando to introduce and maintain the new products the company envisioned to grow its platform. "<a href="https://www.zalon.de/">The fashion advice</a> product used Scala, and there were struggles to make this possible with our former infrastructure," says Jacobs. "It was a workaround, and that team needed more and more support from the platform team, just because they used different technologies. Now with Kubernetes, it’s autonomous. Whatever the workload is, that team can just go their way, and Kubernetes prevents other bottlenecks."<br><br> -->
-最后，Kubernetes 使 Zalando 能够引进和维护公司为发展其平台而设想的新产品。Jacobs 说：“时尚咨询产品使用 Scala，而我们以前的基础设施也难以实现这一点。”这是一个解决方法，该团队需要平台团队提供越来越多的支持，只是因为他们使用了不同的技术。现在有了Kubernetes，它就自主了。无论工作负载是什么，该团队都可以走自己的路，而 Kubernetes 可以防止其他瓶颈。<br><br>
-  <!-- Looking ahead, Jacobs sees Zalando’s new infrastructure as a great enabler for other things the company has in the works, from its new logistics software, to a platform feature connecting brands, to products dreamed up by data scientists. "One vision is if you watch the next James Bond movie and see the suit he’s wearing, you should be able to automatically order it, and have it delivered to you within an hour," says Jacobs. "It’s about connecting the full fashion sphere. This is definitely not possible if you have a bottleneck with everyone running in the same data center and thus very restricted. You need infrastructure to scale each autonomous team’s idea."<br><br> -->
-展望未来，Jacobs 将 Zalando 的新基础设施视为公司在进行的其他工程中的巨大推动因素，从新的物流软件到连接品牌的平台功能，以及数据科学家梦寐以求的产品。Jacobs说：“一个愿景是，如果你看下一部 James Bond 的电影，看看他穿的西装，你就应该能够自动订购，并在一小时内把它送到你身边。”“这是关于连接整个时尚领域。如果您遇到瓶颈，因为每个人都在同一个数据中心运行，因此限制很大，则这绝对是不可能的。需要基础设施来扩展每个自主团队的想法。”<br><br>
-  <!-- For other companies considering this technology, Jacobs says he wouldn’t necessarily advise doing it exactly the same way Zalando did. "It’s okay to do so if you’re ready to fail at some things," he says. "You need to set the right expectations. Not everything will work. Rewriting apps and this type of organizational change can be disruptive. The first product we moved was critical. There were a lot of dependencies, and it took longer than expected. Maybe we should have started with something less complicated, less business critical, just to get our toes wet."<br><br> -->
-对于考虑这项技术的其他公司，Jacobs 说，他不一定建议像 Zalando 那样做。他表示：“如果你准备尝试失败，那么这样做是可以的。”“设定正确的期望是必须的。并不是一切都会起作用。重写应用和这种类型的组织更改可能会造成中断。我们移动的第一个产品至关重要。存在大量依赖关系，而且时间比预期长。也许我们应该从不那么复杂、不是业务关键的东西开始，只是为了开个好头。”<br><br>
-  <!-- But once they got to the other side "it was clear for everyone that there’s no big alternative," Jacobs adds. "The Kubernetes API allows us to run applications in a cloud provider-agnostic way, which gives us the freedom to revisit IaaS providers in the coming years. Zalando Technology benefits from migrating to Kubernetes as we are able to leverage our existing knowledge to create an engineering platform offering flexibility and speed to our engineers while significantly reducing the operational overhead. We expect the Kubernetes API to be the global standard for PaaS infrastructure and are excited about the continued journey." -->
-但是，一旦他们到了另一边，“每个人都很清楚，没有大的选择，” Jacobs 补充说。“ Kubernetes API 允许我们以与云提供商无关的方式运行应用程序，这使我们能够在未来几年中自由访问 IaaS 提供商。Zalando 受益于迁移到 Kubernetes，因为我们能够利用现有知识创建工程平台，为我们的工程师提供灵活性和速度，同时显著降低运营开销。我们期望 Kubernetes API 成为 PaaS 基础设施的全球标准，并对未来的旅程感到兴奋。”
-
-</div>
-
-</section>
diff --git a/content/zh/community/_index.html b/content/zh/community/_index.html
deleted file mode 100644
index 53cbbd0682..0000000000
--- a/content/zh/community/_index.html
+++ /dev/null
@@ -1,133 +0,0 @@
----
-title: 社区
-layout: basic
-cid: community
----
-
-<!--
----
-title: Community
-layout: basic
-cid: community
----
--->
-
-<section id="mainContent">
-    <main>
-        <!-- <div class="content">
-            <h3>Ensuring Kubernetes works well everywhere and for everyone.</h3>
-            <p>Connect with the Kubernetes community on our <a href="http://slack.k8s.io/">Slack channel</a>, <a href="https://discuss.kubernetes.io/">discussion board</a>, or join the
-                <a href="https://groups.google.com/forum/#!forum/kubernetes-dev">Kubernetes-dev Google group</a>. A weekly
-                community meeting takes place via video conference to discuss the state of affairs, see
-		<a href="https://github.com/kubernetes/community/blob/master/events/community-meeting.md">these instructions</a> for information
-	        on how to participate.</p>
-            <p>You can also join Kubernetes all around the world through our
-                <a href="https://www.meetup.com/topics/kubernetes/">Kubernetes Meetup Community</a> and the
-                <a href="https://www.meetup.com/Kubernetes-Cloud-Native-Online-Meetup/">Kubernetes Cloud Native Meetup Community</a>.</p>
-          </div> -->
-
-          <div class="content">
-              <h3>保证 Kubernetes 到处都适用，每个人都喜欢。</h3>
-              <p>在我们的<a href="http://slack.k8s.io/">Slack channel</a>,
-                <a href="https://discuss.kubernetes.io/">讨论版</a>, 或者
-                <a href="https://groups.google.com/forum/#!forum/kubernetes-dev">Kubernetes-dev Google 群主</a>上和 Kubernetes 互动。
-              同时，每周我们也有社区视频会议，讨论最新进展。参见
-  		<a href="https://github.com/kubernetes/community/blob/master/events/community-meeting.md">这些指导</a>了解如何参与其中。</p>
-              <p>你也可以在世界各地通过我们的
-                  <a href="https://www.meetup.com/topics/kubernetes/">Kubernetes Meetup 社区</a> 以及
-                  <a href="https://www.meetup.com/Kubernetes-Cloud-Native-Online-Meetup/">Kubernetes Cloud Native Meetup 社区</a>来参与。</p>
-            </div>
-
-        <!-- <div class="content">
-            <h3>Special Interest Groups (SIGs)</h3>
-            <p>Have a special interest in how Kubernetes works with another technology?  See our ever growing
-                <a href="https://git.k8s.io/community/sig-list.md">lists of SIGs</a>,
-                from AWS and Openstack to Big Data and Scalability, there's a place for you to contribute and instructions
-                for forming a new SIG if your special interest isn't covered (yet).</p>
-
-            <p>As a member of the Kubernetes community, you are welcome to join any of the SIG meetings
-                you are interested in. No registration required.</p>
-        </div> -->
-
-        <div class="content">
-            <h3>特殊兴趣小组 （Special Interest Groups，SIGs）</h3>
-            <p>对于 Kubernetes 是如何和另外的技术协作感兴趣？了解下我们不停发展的
-                <a href="https://git.k8s.io/community/sig-list.md">SIGs 群组</a>,
-                从 AWS 和 Openstack 到 大数据和可扩展性，总会有一个适合你，如果你所关注的不在其列，也有指导帮助你成立新的 SIG。</p>
-
-            <p>作为 Kubernetes 社区的一员，你可以随意加入任何你感兴趣的 SIG 会议。不需要额外注册。</p>
-        </div>
-
-        <!-- <div class="content">
-          <h3>Code of Conduct</h3>
-          <p>The Kubernetes community values respect and inclusiveness, and
-             enforces a <a href="code-of-conduct/">Code of Conduct</a> in all
-             interactions. If you notice a violation of the Code of Conduct at
-             an event or meeting, in Slack, or in another communication
-             mechanism, reach out to the <a href="https://github.com/kubernetes/community/tree/master/committee-code-of-conduct">Kubernetes Code of Conduct Committee</a>
-             <a href="mailto:conduct@kubernetes.io">conduct@kubernetes.io</a>.
-             Your anonymity will be protected.</p>
-           </p>
-         </div> -->
-
-         <div class="content">
-           <h3>行为规范</h3>
-           <p>Kubernetes 社区重视尊重和包容，并要求在所有场合都遵循
-             <a href="code-of-conduct/">行为规范</a>。
-             如果你在活动、会议、Slack 或是其它场合发现有任何违反行为规范的行为，请联系
-             <a href="https://github.com/kubernetes/community/tree/master/committee-code-of-conduct">Kubernetes 行为规范委员会</a>
-              <a href="mailto:conduct@kubernetes.io">conduct@kubernetes.io</a>.
-              我们会确保您的匿名性。</p>
-          </div>
-    </main>
-</section>
-
-<!-- <section id="talkToUs">
-    <main>
-        <h3>Talk to Us!</h3>
-        <h4>We would love to hear from you, how you are using Kubernetes,<br> and what we can do to make it better.</h4>
-        <div id="bigSocial">
-            <div>
-                <a href="https://twitter.com/kubernetesio">@kubernetesio</a>
-                <p>Get the latest news and updates.</p>
-            </div>
-            <div>
-                <a href="https://github.com/kubernetes/kubernetes">Github Project</a>
-                <p>Check out the project and consider contributing.</p>
-            </div>
-            <div>
-                <a href="http://slack.k8s.io/">#kubernetes-users</a>
-                <p>Our Slack channel is the best way to contact our engineers and share your ideas with them.</p>
-            </div>
-            <div>
-                <a href="http://stackoverflow.com/questions/tagged/kubernetes">Stack Overflow</a>
-                <p>Our user forum is a great place to go for community support.</p>
-            </div>
-        </div>
-    </main>
-</section> -->
-
-<section id="talkToUs">
-    <main>
-        <h3>与我们联系！</h3>
-        <h4>我们很希望听到你的声音，你是如何使用 Kubernetes 的，<br>以及我们可以将 Kubernetes 变得更美好。</h4>
-        <div id="bigSocial">
-            <div>
-                <a href="https://twitter.com/kubernetesio">@kubernetesio</a>
-                <p>获取更多的资讯和更新。</p>
-            </div>
-            <div>
-                <a href="https://github.com/kubernetes/kubernetes">Github 项目</a>
-                <p>了解项目，作出贡献。</p>
-            </div>
-            <div>
-                <a href="http://slack.k8s.io/">#kubernetes-users</a>
-                <p>Slack channel 是联系工程师，分享想法的最佳方法。</p>
-            </div>
-            <div>
-                <a href="http://stackoverflow.com/questions/tagged/kubernetes">Stack Overflow</a>
-                <p>我们的论坛是获得社区支持的最佳地点。</p>
-            </div>
-        </div>
-    </main>
-</section>
diff --git a/content/zh/community/static/README.md b/content/zh/community/static/README.md
deleted file mode 100644
index 6d65182dcc..0000000000
--- a/content/zh/community/static/README.md
+++ /dev/null
@@ -1,5 +0,0 @@
-<!-- The files in this directory have been imported from other sources. Do not
-edit them directly, except by replacing them with new versions. -->
-
-本路径下的文件从其它地方导入。
-除了版本更新，不要直接修改。
diff --git a/content/zh/community/static/cncf-code-of-conduct.md b/content/zh/community/static/cncf-code-of-conduct.md
deleted file mode 100644
index 0c63979e3e..0000000000
--- a/content/zh/community/static/cncf-code-of-conduct.md
+++ /dev/null
@@ -1,30 +0,0 @@
-<!-- Do not edit this file directly. Get the latest from
-     https://github.com/cncf/foundation/blob/master/code-of-conduct-languages/zh.md -->
-## 云原生计算基金会（CNCF）社区行为准则 1.0 版本
-
-### 贡献者行为准则
-
-作为这个项目的贡献者和维护者，为了建立一个开放和受欢迎的社区，我们保证尊重所有通过报告问题、发布功能请求、更新文档、提交拉取请求或补丁以及其他活动做出贡献的人员。
-
-我们致力于让参与此项目的每个人都不受骚扰，无论其经验水平、性别、性别认同和表达、性取向、残疾、个人外貌、体型、人种、种族、年龄、宗教或国籍等。
-
-不可接受的参与者行为包括：
-
--	使用性语言或图像
--	人身攻击
--	挑衅、侮辱或贬低性评论
--	公开或私下骚扰
--	未经明确许可，发布他人的私人信息，比如地址或电子邮箱
--	其他不道德或不专业的行为
-
-项目维护者有权利和责任删除、编辑或拒绝评论、提交、代码、维基编辑、问题和其他不符合本行为准则的贡献。通过采用本行为准则，项目维护者承诺将这些原则公平且一致地应用到这个项目管理的各个方面。不遵守或不执行行为准则的项目维护者可能被永久地从项目团队中移除。
-
-当个人代表项目或其社区时，本行为准则适用于项目空间和公共空间。
-
-如需举报侮辱、骚扰或其他不可接受的行为，您可发送邮件至 <conduct@kubernetes.io> 联系 [Kubernetes行为守则委员会](https://github.com/kubernetes/community/tree/master/committee-code-of-conduct)。其他事务请联系CNCF项目维护专员，或发送邮件至 <mishi@linux.com> 联系我们的调解员Mishi Choudhary。
-
-本行为准则改编自《贡献者契约》（ https://contributor-covenant.org ）1.2.0 版本，可在 https://contributor-covenant.org/version/1/2/0/ 查看。
-
-### CNCF 活动行为准则
-
-云原生计算基金会（CNCF）活动受 Linux 基金会《[行为准则](https://events.linuxfoundation.org/code-of-conduct/)》管辖，该行为准则可在活动页面获得。其旨在与上述政策兼容，且包括更多关于事件回应的细节。
\ No newline at end of file
diff --git a/content/zh/docs/concepts/architecture/control-plane-node-communication.md b/content/zh/docs/concepts/architecture/control-plane-node-communication.md
deleted file mode 100644
index 3e2beaafd9..0000000000
--- a/content/zh/docs/concepts/architecture/control-plane-node-communication.md
+++ /dev/null
@@ -1,172 +0,0 @@
----
-title: 控制面到节点通信
-content_type: concept
-weight: 20
----
-
-<!--
-title: Control Plane-Node Communication
-content_type: concept
-weight: 20
-aliases:
-- master-node-communication
--->
-
-<!-- overview -->
-
-<!--
-This document catalogs the communication paths between the control plane (apiserver) and the Kubernetes cluster. The intent is to allow users to customize their installation to harden the network configuration such that the cluster can be run on an untrusted network (or on fully public IPs on a cloud provider).
--->
-本文列举控制面节点（确切说是 API 服务器）和 Kubernetes 集群之间的通信路径。
-目的是为了让用户能够自定义他们的安装，以实现对网络配置的加固，使得集群能够在不可信的网络上
-（或者在一个云服务商完全公开的 IP 上）运行。
-
-<!-- body -->
-<!--
-## Node to Control Plane
-Kubernetes has a "hub-and-spoke" API pattern. All API usage from nodes (or the pods they run) terminate at the apiserver. None of the other control plane components are designed to expose remote services. The apiserver is configured to listen for remote connections on a secure HTTPS port (typically 443) with one or more forms of client [authentication](/docs/reference/access-authn-authz/authentication/) enabled.
-One or more forms of [authorization](/docs/reference/access-authn-authz/authorization/) should be enabled, especially if [anonymous requests](/docs/reference/access-authn-authz/authentication/#anonymous-requests) or [service account tokens](/docs/reference/access-authn-authz/authentication/#service-account-tokens) are allowed.
--->
-## 节点到控制面
-
-Kubernetes 采用的是中心辐射型（Hub-and-Spoke）API 模式。
-所有从集群（或所运行的 Pods）发出的 API 调用都终止于 apiserver。
-其它控制面组件都没有被设计为可暴露远程服务。
-apiserver 被配置为在一个安全的 HTTPS 端口（通常为 443）上监听远程连接请求，
-并启用一种或多种形式的客户端[身份认证](/zh/docs/reference/access-authn-authz/authentication/)机制。
-一种或多种客户端[鉴权机制](/zh/docs/reference/access-authn-authz/authorization/)应该被启用，
-特别是在允许使用[匿名请求](/zh/docs/reference/access-authn-authz/authentication/#anonymous-requests)
-或[服务账号令牌](/zh/docs/reference/access-authn-authz/authentication/#service-account-tokens)的时候。
-
-<!--
-Nodes should be provisioned with the public root certificate for the cluster such that they can connect securely to the apiserver along with valid client credentials. A good approach is that the client credentials provided to the kubelet are in the form of a client certificate. See [kubelet TLS bootstrapping](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/) for automated provisioning of kubelet client certificates.
--->
-应该使用集群的公共根证书开通节点，这样它们就能够基于有效的客户端凭据安全地连接 apiserver。
-一种好的方法是以客户端证书的形式将客户端凭据提供给 kubelet。
-请查看 [kubelet TLS 启动引导](/zh/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/)
-以了解如何自动提供 kubelet 客户端证书。
-
-<!--
-Pods that wish to connect to the apiserver can do so securely by leveraging a service account so that Kubernetes will automatically inject the public root certificate and a valid bearer token into the pod when it is instantiated.
-The `kubernetes` service (in `default` namespace) is configured with a virtual IP address that is redirected (via kube-proxy) to the HTTPS endpoint on the apiserver.
-
-The control plane components also communicate with the cluster apiserver over the secure port.
--->
-想要连接到 apiserver 的 Pod 可以使用服务账号安全地进行连接。
-当 Pod 被实例化时，Kubernetes 自动把公共根证书和一个有效的持有者令牌注入到 Pod 里。
-`kubernetes` 服务（位于 `default` 名字空间中）配置了一个虚拟 IP 地址，用于（通过 kube-proxy）转发
-请求到 apiserver 的 HTTPS 末端。
-
-控制面组件也通过安全端口与集群的 apiserver 通信。
-
-<!--
-As a result, the default operating mode for connections from the nodes and pods running on the nodes to the control plane is secured by default and can run over untrusted and/or public networks.
--->
-这样，从集群节点和节点上运行的 Pod 到控制面的连接的缺省操作模式即是安全的，
-能够在不可信的网络或公网上运行。
-
-<!--
-## Control Plane to node
-
-There are two primary communication paths from the control plane (apiserver) to the nodes. The first is from the apiserver to the kubelet process which runs on each node in the cluster. The second is from the apiserver to any node, pod, or service through the apiserver's proxy functionality.
--->
-## 控制面到节点
-
-从控制面（apiserver）到节点有两种主要的通信路径。
-第一种是从 apiserver 到集群中每个节点上运行的 kubelet 进程。
-第二种是从 apiserver 通过它的代理功能连接到任何节点、Pod 或者服务。
-
-<!--
-### apiserver to kubelet
-
-The connections from the apiserver to the kubelet are used for:
-
-* Fetching logs for pods.
-* Attaching (through kubectl) to running pods.
-* Providing the kubelet's port-forwarding functionality.
-
-These connections terminate at the kubelet's HTTPS endpoint. By default, the apiserver does not verify the kubelet's serving certificate, which makes the connection subject to man-in-the-middle attacks and **unsafe** to run over untrusted and/or public networks.
--->
-### API 服务器到 kubelet
-
-从 apiserver 到 kubelet 的连接用于：
-
-* 获取 Pod 日志
-* 挂接（通过 kubectl）到运行中的 Pod
-* 提供 kubelet 的端口转发功能。
-
-这些连接终止于 kubelet 的 HTTPS 末端。
-默认情况下，apiserver 不检查 kubelet 的服务证书。这使得此类连接容易受到中间人攻击，
-在非受信网络或公开网络上运行也是 **不安全的**。
-
-<!--
-To verify this connection, use the `--kubelet-certificate-authority` flag to provide the apiserver with a root certificate bundle to use to verify the kubelet's serving certificate.
-
-If that is not possible, use [SSH tunneling](/docs/concepts/architecture/master-node-communication/#ssh-tunnels) between the apiserver and kubelet if required to avoid connecting over an
-untrusted or public network.
-
-Finally, [Kubelet authentication and/or authorization](/docs/reference/command-line-tools-reference/kubelet-authentication-authorization/) should be enabled to secure the kubelet API.
--->
-为了对这个连接进行认证，使用 `--kubelet-certificate-authority` 标志给 apiserver 
-提供一个根证书包，用于 kubelet 的服务证书。
-
-如果无法实现这点，又要求避免在非受信网络或公共网络上进行连接，可在 apiserver 和
-kubelet 之间使用 [SSH 隧道](#ssh-tunnels)。
-
-最后，应该启用
-[kubelet 用户认证和/或鉴权](/zh/docs/reference/command-line-tools-reference/kubelet-authentication-authorization/)
-来保护 kubelet API。
-
-<!--
-### apiserver to nodes, pods, and services
-
-The connections from the apiserver to a node, pod, or service default to plain HTTP connections and are therefore neither authenticated nor encrypted. They can be run over a secure HTTPS connection by prefixing `https:` to the node, pod, or service name in the API URL, but they will not validate the certificate provided by the HTTPS endpoint nor provide client credentials so while the connection will be encrypted, it will not provide any guarantees of integrity. These connections **are not currently safe** to run over untrusted and/or public networks.
--->
-### apiserver 到节点、Pod 和服务
-
-从 apiserver 到节点、Pod 或服务的连接默认为纯 HTTP 方式，因此既没有认证，也没有加密。
-这些连接可通过给 API URL 中的节点、Pod 或服务名称添加前缀 `https:` 来运行在安全的 HTTPS 连接上。
-不过这些连接既不会验证 HTTPS 末端提供的证书，也不会提供客户端证书。
-因此，虽然连接是加密的，仍无法提供任何完整性保证。
-这些连接 **目前还不能安全地** 在非受信网络或公共网络上运行。
-
-<!--
-### SSH tunnels
-
-Kubernetes supports SSH tunnels to protect the control plane to nodes communication paths. In this configuration, the apiserver initiates an SSH tunnel to each node in the cluster (connecting to the ssh server listening on port 22) and passes all traffic destined for a kubelet, node, pod, or service through the tunnel.
-This tunnel ensures that the traffic is not exposed outside of the network in which the nodes are running.
-
-SSH tunnels are currently deprecated so you shouldn't opt to use them unless you know what you are doing. The Konnectivity service is a replacement for this communication channel.
--->
-### SSH 隧道 {#ssh-tunnels}
-
-Kubernetes 支持使用 SSH 隧道来保护从控制面到节点的通信路径。在这种配置下，apiserver
-建立一个到集群中各节点的 SSH 隧道（连接到在 22 端口监听的 SSH 服务）
-并通过这个隧道传输所有到 kubelet、节点、Pod 或服务的请求。
-这一隧道保证通信不会被暴露到集群节点所运行的网络之外。
-
-SSH 隧道目前已被废弃。除非你了解个中细节，否则不应使用。
-Konnectivity 服务是对此通信通道的替代品。
-
-<!--
-### Konnectivity service
-
-{{< feature-state for_k8s_version="v1.18" state="beta" >}}
-
-As a replacement to the SSH tunnels, the Konnectivity service provides TCP level proxy for the control plane to cluster communication. The Konnectivity service consists of two parts: the Konnectivity server in the control plane network and the Konnectivity agents in the nodes network. The Konnectivity agents initiate connections to the Konnectivity server and maintain the network connections.
-After enabling the Konnectivity service, all control plane to nodes traffic goes through these connections.
-
-Follow the [Konnectivity service task](/docs/tasks/extend-kubernetes/setup-konnectivity/) to set up the Konnectivity service in your cluster.
--->
-### Konnectivity 服务
-
-{{< feature-state for_k8s_version="v1.18" state="beta" >}}
-
-作为 SSH 隧道的替代方案，Konnectivity 服务提供 TCP 层的代理，以便支持从控制面到集群的通信。
-Konnectivity 服务包含两个部分：Konnectivity 服务器和 Konnectivity 代理，分别运行在
-控制面网络和节点网络中。Konnectivity 代理建立并维持到 Konnectivity 服务器的网络连接。
-启用 Konnectivity 服务之后，所有控制面到节点的通信都通过这些连接传输。
-
-请浏览 [Konnectivity 服务任务](/zh/docs/tasks/extend-kubernetes/setup-konnectivity/)
-在你的集群中配置 Konnectivity 服务。
-
diff --git a/content/zh/docs/concepts/architecture/nodes.md b/content/zh/docs/concepts/architecture/nodes.md
deleted file mode 100644
index 280b705e84..0000000000
--- a/content/zh/docs/concepts/architecture/nodes.md
+++ /dev/null
@@ -1,719 +0,0 @@
----
-title: 节点
-content_type: concept
-weight: 10
----
-<!--
-reviewers:
-- caesarxuchao
-- dchen1107
-title: Nodes
-content_type: concept
-weight: 10
--->
-
-<!-- overview -->
-
-<!--
-Kubernetes runs your workload by placing containers into Pods to run on _Nodes_.
-A node may be a virtual or physical machine, depending on the cluster. Each node
-is managed by the 
-{{< glossary_tooltip text="control plane" term_id="control-plane" >}}
-and contains the services necessary to run
-{{< glossary_tooltip text="Pods" term_id="pod" >}}.
-
-Typically you have several nodes in a cluster; in a learning or resource-limited
-environment, you might have just one.
-
-The [components](/docs/concepts/overview/components/#node-components) on a node include the
-{{< glossary_tooltip text="kubelet" term_id="kubelet" >}}, a
-{{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}, and the
-{{< glossary_tooltip text="kube-proxy" term_id="kube-proxy" >}}.
--->
-Kubernetes 通过将容器放入在节点（Node）上运行的 Pod 中来执行你的工作负载。
-节点可以是一个虚拟机或者物理机器，取决于所在的集群配置。
-每个节点包含运行 {{< glossary_tooltip text="Pods" term_id="pod" >}} 所需的服务；
-这些节点由 {{< glossary_tooltip text="控制面" term_id="control-plane" >}} 负责管理。
-
-通常集群中会有若干个节点；而在一个学习用或者资源受限的环境中，你的集群中也可能
-只有一个节点。
-
-节点上的[组件](/zh/docs/concepts/overview/components/#node-components)包括
-{{< glossary_tooltip text="kubelet" term_id="kubelet" >}}、
-{{< glossary_tooltip text="容器运行时" term_id="container-runtime" >}}以及
-{{< glossary_tooltip text="kube-proxy" term_id="kube-proxy" >}}。
-
-<!-- body -->
-<!--
-## Management
-
-There are two main ways to have Nodes added to the {{< glossary_tooltip text="API server" term_id="kube-apiserver" >}}:
-
-1. The kubelet on a node self-registers to the control plane
-2. You, or another human user, manually add a Node object
-
-After you create a Node object, or the kubelet on a node self-registers, the
-control plane checks whether the new Node object is valid. For example, if you
-try to create a Node from the following JSON manifest:
--->
-## 管理  {#management}
-
-向 {{< glossary_tooltip text="API 服务器" term_id="kube-apiserver"
->}}添加节点的方式主要有两种：
-
-1. 节点上的 `kubelet` 向控制面执行自注册；
-2. 你，或者别的什么人，手动添加一个 Node 对象。
-
-在你创建了 Node 对象或者节点上的 `kubelet` 执行了自注册操作之后，
-控制面会检查新的 Node 对象是否合法。例如，如果你使用下面的 JSON
-对象来创建 Node 对象：
-
-```json
-{
-  "kind": "Node",
-  "apiVersion": "v1",
-  "metadata": {
-    "name": "10.240.79.157",
-    "labels": {
-      "name": "my-first-k8s-node"
-    }
-  }
-}
-```
-
-<!--
-Kubernetes creates a Node object internally (the representation). Kubernetes checks
-that a kubelet has registered to the API server that matches the `metadata.name`
-field of the Node. If the node is healthy (if all necessary services are running),
-it is eligible to run a Pod. Otherwise, that node is ignored for any cluster activity
-until it becomes healthy.
--->
-Kubernetes 会在内部创建一个 Node 对象作为节点的表示。Kubernetes 检查 `kubelet`
-向 API 服务器注册节点时使用的 `metadata.name` 字段是否匹配。
-如果节点是健康的（即所有必要的服务都在运行中），则该节点可以用来运行 Pod。
-否则，直到该节点变为健康之前，所有的集群活动都会忽略该节点。 
-
-<!--
-Kubernetes keeps the object for the invalid Node and continues checking to see whether
-it becomes healthy.
-You, or a {{< glossary_tooltip term_id="controller" text="controller">}}, must explicitly
-delete the Node object to stop that health checking.
--->
-{{< note >}}
-Kubernetes 会一直保存着非法节点对应的对象，并持续检查该节点是否已经
-变得健康。
-你，或者某个{{< glossary_tooltip term_id="controller" text="控制器">}}必需显式地
-删除该 Node 对象以停止健康检查操作。
-{{< /note >}}
-
-<!--
-The name of a Node object must be a valid
-[DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
--->
-Node 对象的名称必须是合法的
-[DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
-
-<!--
-### Self-registration of Nodes
-
-When the kubelet flag `-register-node` is true (the default), the kubelet will attempt to
-register itself with the API server.  This is the preferred pattern, used by most distros.
-
-For self-registration, the kubelet is started with the following options:
--->
-### 节点自注册 {#self-registration-of-nodes}
-
-当 kubelet 标志 `--register-node` 为 true（默认）时，它会尝试向 API 服务注册自己。
-这是首选模式，被绝大多数发行版选用。
-
-对于自注册模式，kubelet 使用下列参数启动：
-
-<!--
-  - `--kubeconfig` - Path to credentials to authenticate itself to the API server.
-  - `--cloud-provider` - How to talk to a {{< glossary_tooltip text="cloud provider" term_id="cloud-provider" >}} to read metadata about itself.
-  - `--register-node` - Automatically register with the API server.
-  - `--register-with-taints` - Register the node with the given list of {{< glossary_tooltip text="taints" term_id="taint" >}} (comma separated `<key>=<value>:<effect>`).
-
-    No-op if `register-node` is false.
-  - `--node-ip` - IP address of the node.
-  - `--node-labels` - {{< glossary_tooltip text="Labels" term_id="label" >}} to add when registering the node in the cluster (see label restrictions enforced by the [NodeRestriction admission plugin](/docs/reference/access-authn-authz/admission-controllers/#noderestriction)).
-  - `--node-status-update-frequency` - Specifies how often kubelet posts node status to master.
--->
-  - `--kubeconfig` - 用于向 API 服务器表明身份的凭据路径。
-  - `--cloud-provider` - 与某{{< glossary_tooltip text="云驱动" term_id="cloud-provider" >}}
-    进行通信以读取与自身相关的元数据的方式。
-  - `--register-node` - 自动向 API 服务注册。
-  - `--register-with-taints` - 使用所给的污点列表（逗号分隔的 `<key>=<value>:<effect>`）注册节点。
-    当 `register-node` 为 false 时无效。
-  - `--node-ip` - 节点 IP 地址。
-  - `--node-labels` - 在集群中注册节点时要添加的
-    {{< glossary_tooltip text="标签" term_id="label" >}}。
-    （参见 [NodeRestriction 准入控制插件](/zh/docs/reference/access-authn-authz/admission-controllers/#noderestriction)所实施的标签限制）。
-  - `--node-status-update-frequency` - 指定 kubelet 向控制面发送状态的频率。
-
-<!--
-When the [Node authorization mode](/docs/reference/access-authn-authz/node/) and
-[NodeRestriction admission plugin](/docs/reference/access-authn-authz/admission-controllers/#noderestriction) are enabled,
-kubelets are only authorized to create/modify their own Node resource.
--->
-启用[节点授权模式](/zh/docs/reference/access-authn-authz/node/)和
-[NodeRestriction 准入插件](/zh/docs/reference/access-authn-authz/admission-controllers/#noderestriction)
-时，仅授权 `kubelet` 创建或修改其自己的节点资源。
-
-<!--
-### Manual Node administration
-
-You can create and modify Node objects using
-{{< glossary_tooltip text="kubectl" term_id="kubectl" >}}.
-
-When you want to create Node objects manually, set the kubelet flag `--register-node=false`.
-
-You can modify Node objects regardless of the setting of `--register-node`.
-For example, you can set labels on an existing Node, or mark it unschedulable.
--->
-### 手动节点管理 {#manual-node-administration}
-
-你可以使用 {{< glossary_tooltip text="kubectl" term_id="kubectl" >}}
-来创建和修改 Node 对象。
-
-如果你希望手动创建节点对象时，请设置 kubelet 标志 `--register-node=false`。
-
-你可以修改 Node 对象（忽略 `--register-node` 设置）。
-例如，修改节点上的标签或标记其为不可调度。
-
-<!--
-You can use labels on Nodes in conjunction with node selectors on Pods to control
-scheduling. For example, you can to constrain a Pod to only be eligible to run on
-a subset of the available nodes.
-
-Marking a node as unschedulable prevents the scheduler from placing new pods onto
-that Node, but does not affect existing Pods on the Node. This is useful as a
-preparatory step before a node reboot or other maintenance.
-
-To mark a Node unschedulable, run:
--->
-你可以结合使用节点上的标签和 Pod 上的选择算符来控制调度。
-例如，你可以限制某 Pod 只能在符合要求的节点子集上运行。
-
-如果标记节点为不可调度（unschedulable），将阻止新 Pod 调度到该节点之上，但不会
-影响任何已经在其上的 Pod。
-这是重启节点或者执行其他维护操作之前的一个有用的准备步骤。
-
-要标记一个节点为不可调度，执行以下命令：
-
-```shell
-kubectl cordon $NODENAME
-```
-
-<!--
-Pods that are part of a {{< glossary_tooltip term_id="daemonset" >}} tolerate
-being run on an unschedulable Node. DaemonSets typically provide node-local services
-that should run on the Node even if it is being drained of workload applications.
--->
-{{< note >}}
-被 {{< glossary_tooltip term_id="daemonset" text="DaemonSet" >}} 控制器创建的 Pod
-能够容忍节点的不可调度属性。
-DaemonSet 通常提供节点本地的服务，即使节点上的负载应用已经被腾空，这些服务也仍需
-运行在节点之上。
-{{< /note >}}
-
-<!--
-## Node Status
-
-A node's status contains the following information:
-
-* [Addresses](#addresses)
-* [Conditions](#condition)
-* [Capacity and Allocatable](#capacity)
-* [Info](#info)
--->
-## 节点状态   {#node-status}
-
-一个节点的状态包含以下信息:
-
-* [地址](#addresses)
-* [状况](#condition)
-* [容量与可分配](#capacity)
-* [信息](#info)
-
-<!--
-You can use `kubectl` to view a Node's status and other details:
--->
-你可以使用 `kubectl` 来查看节点状态和其他细节信息：
-
-```shell
-kubectl describe node <节点名称>
-```
-
-<!-- Each section is described in detail below. -->
-下面对每个部分进行详细描述。
-
-<!--
-### Addresses
-
-The usage of these fields varies depending on your cloud provider or bare metal configuration.
--->
-### 地址   {#addresses}
-
-这些字段的用法取决于你的云服务商或者物理机配置。
-
-<!--
-* HostName: The as reported by the node's kernel. Can be overridden via the kubelet `-hostname-override` parameter.
-* ExternalIP: Typically the IP address of the node that is externally routable (available from outside the cluster).
-* InternalIP: Typichostnameally the IP address of the node that is routable only within the cluster.
--->
-* HostName：由节点的内核设置。可以通过 kubelet 的 `--hostname-override` 参数覆盖。
-* ExternalIP：通常是节点的可外部路由（从集群外可访问）的 IP 地址。
-* InternalIP：通常是节点的仅可在集群内部路由的 IP 地址。
-
-<!--
-### Conditions {#condition}
-
-The `conditions` field describes the status of all `Running` nodes. Examples of conditions include:
--->
-### 状况 {#condition}
-
-`conditions` 字段描述了所有 `Running` 节点的状态。状况的示例包括：
-
-<!--
-{{< table caption = "Node conditions, and a description of when each condition applies." >}}
-| Node Condition | Description |
-|----------------|-------------|
-| `Ready`        | `True` if the node is healthy and ready to accept pods, `False` if the node is not healthy and is not accepting pods, and `Unknown` if the node controller has not heard from the node in the last `node-monitor-grace-period` (default is 40 seconds) |
-| `DiskPressure`    | `True` if there is insufficient free space on the node for adding new pods, otherwise `False` |
-| `MemoryPressure`    | `True` if pressure exists on the node memory - that is, if the node memory is low; otherwise `False` |
-| `PIDPressure`    | `True` if pressure exists on the processes - that is, if there are too many processes on the node; otherwise `False` |
-| `NetworkUnavailable`    | `True` if the network for the node is not correctly configured, otherwise `False` |
-{{< /table >}}
--->
-{{< table caption = "节点状况及每种状况适用场景的描述" >}}
-| 节点状况       | 描述        |
-|----------------|-------------|
-| `Ready` | 如节点是健康的并已经准备好接收 Pod 则为 `True`；`False` 表示节点不健康而且不能接收 Pod；`Unknown` 表示节点控制器在最近 `node-monitor-grace-period` 期间（默认 40 秒）没有收到节点的消息 |
-| `DiskPressure` | `True` 表示节点的空闲空间不足以用于添加新 Pod, 否则为 `False` |
-| `MemoryPressure` | `True` 表示节点存在内存压力，即节点内存可用量低，否则为 `False` |
-| `PIDPressure` | `True` 表示节点存在进程压力，即节点上进程过多；否则为 `False` |
-| `NetworkUnavailable` | `True` 表示节点网络配置不正确；否则为 `False` |
-{{< /table >}}
-
-<!--
-If you use command-line tools to print details of a cordoned Node, the Condition includes
-`SchedulingDisabled`. `SchedulingDisabled` is not a Condition in the Kubernetes API; instead,
-cordoned nodes are marked Unschedulable in their spec.
--->
-{{< note >}}
-如果使用命令行工具来打印已保护（Cordoned）节点的细节，其中的 Condition 字段可能
-包括 `SchedulingDisabled`。`SchedulingDisabled` 不是 Kubernetes API 中定义的
-Condition，被保护起来的节点在其规约中被标记为不可调度（Unschedulable）。
-{{< /note >}}
-
-<!--
-The node condition is represented as a JSON object. For example, the following response describes a healthy node.
--->
-节点条件使用 JSON 对象表示。例如，下面的响应描述了一个健康的节点。
-
-```json
-"conditions": [
-  {
-    "type": "Ready",
-    "status": "True",
-    "reason": "KubeletReady",
-    "message": "kubelet is posting ready status",
-    "lastHeartbeatTime": "2019-06-05T18:38:35Z",
-    "lastTransitionTime": "2019-06-05T11:41:27Z"
-  }
-]
-```
-
-<!--
-If the Status of the Ready condition remains `Unknown` or `False` for longer than the `pod-eviction-timeout`, an argument is passed to the {{< glossary_tooltip text="kube-controller-manager" term_id="kube-controller-manager" >}}), all the Pods on the node are scheduled for deletion by the Node Controller. The default eviction timeout duration is **five minutes**. In some cases when the node is unreachable, the apiserver is unable to communicate with the kubelet on the node. The decision to delete the pods cannot be communicated to the kubelet until communication with the API server is re-established. In the meantime, the pods that are scheduled for deletion may continue to run on the partitioned node.
--->
-如果 Ready 条件处于 `Unknown` 或者 `False` 状态的时间超过了 `pod-eviction-timeout` 值，
-（一个传递给 {{< glossary_tooltip text="kube-controller-manager" term_id="kube-controller-manager" >}} 的参数），
-节点上的所有 Pod 都会被节点控制器计划删除。默认的逐出超时时长为 **5 分钟**。
-某些情况下，当节点不可达时，API 服务器不能和其上的 kubelet 通信。
-删除 Pod 的决定不能传达给 kubelet，直到它重新建立和 API 服务器的连接为止。
-与此同时，被计划删除的 Pod 可能会继续在游离的节点上运行。
-
-<!--
-The node controller does not force delete pods until it is confirmed that they have stopped
-running in the cluster. You can see the pods that might be running on an unreachable node as
-being in the `Terminating` or `Unknown` state. In cases where Kubernetes cannot deduce from the
-underlying infrastructure if a node has permanently left a cluster, the cluster administrator
-may need to delete the node object by hand.  Deleting the node object from Kubernetes causes
-all the Pod objects running on the node to be deleted from the API server, and frees up their
-names.
--->
-节点控制器在确认 Pod 在集群中已经停止运行前，不会强制删除它们。
-你可以看到这些可能在无法访问的节点上运行的 Pod 处于 `Terminating` 或者 `Unknown` 状态。
-如果 kubernetes 不能基于下层基础设施推断出某节点是否已经永久离开了集群，
-集群管理员可能需要手动删除该节点对象。
-从 Kubernetes 删除节点对象将导致 API 服务器删除节点上所有运行的 Pod 对象并释放它们的名字。
-
-<!--
-The node lifecycle controller automatically creates
-[taints](/docs/concepts/scheduling-eviction/taint-and-toleration/) that represent conditions.
-The scheduler takes the Node's taints into consideration when assigning a Pod to a Node.
-Pods can also have tolerations which let them tolerate a Node's taints.
--->
-节点生命周期控制器会自动创建代表状况的
-[污点](/zh/docs/concepts/scheduling-eviction/taint-and-toleration/)。
-当调度器将 Pod 指派给某节点时，会考虑节点上的污点。
-Pod 则可以通过容忍度（Toleration）表达所能容忍的污点。
-
-<!--
-### Capacity and Allocatable {#capacity}
-
-Describes the resources available on the node: CPU, memory and the maximum
-number of pods that can be scheduled onto the node.
--->
-### 容量与可分配 {#capacity}
-
-描述节点上的可用资源：CPU、内存和可以调度到节点上的 Pod 的个数上限。
-
-<!--
-The fields in the capacity block indicate the total amount of resources that a
-Node has. The allocatable block indicates the amount of resources on a
-Node that is available to be consumed by normal Pods.
--->
-`capacity` 块中的字段标示节点拥有的资源总量。
-`allocatable` 块指示节点上可供普通 Pod 消耗的资源量。
-
-<!--
-You may read more about capacity and allocatable resources while learning how
-to [reserve compute resources](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable) on a Node.
--->
-可以在学习如何在节点上[预留计算资源](/zh/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)
-的时候了解有关容量和可分配资源的更多信息。
-
-<!--
-### Info
-
-Describes general information about the node, such as kernel version, Kubernetes version (kubelet and kube-proxy version), Docker version (if used), and OS name.
-This information is gathered by Kubelet from the node.
--->
-
-### 信息 {#info}
-
-关于节点的一般性信息，例如内核版本、Kubernetes 版本（`kubelet` 和 `kube-proxy` 版本）、
-Docker 版本（如果使用了）和操作系统名称。这些信息由 `kubelet` 从节点上搜集而来。
-
-<!--
-### Node Controller
-
-The node {{< glossary_tooltip text="controller" term_id="controller" >}} is a
-Kubernetes control plane component that manages various aspects of nodes.
-
-The node controller has multiple roles in a node's life. The first is assigning a
-CIDR block to the node when it is registered (if CIDR assignment is turned on).
--->
-### 节点控制器  {#node-controller}
-
-节点{{< glossary_tooltip text="控制器" term_id="controller" >}}是
-Kubernetes 控制面组件，管理节点的方方面面。
-
-节点控制器在节点的生命周期中扮演多个角色。
-第一个是当节点注册时为它分配一个 CIDR 区段（如果启用了 CIDR 分配）。
-
-<!--
-The second is keeping the node controller's internal list of nodes up to date with
-the cloud provider's list of available machines. When running in a cloud
-environment, whenever a node is unhealthy, the node controller asks the cloud
-provider if the VM for that node is still available. If not, the node
-controller deletes the node from its list of nodes.
--->
-第二个是保持节点控制器内的节点列表与云服务商所提供的可用机器列表同步。
-如果在云环境下运行，只要某节点不健康，节点控制器就会询问云服务是否节点的虚拟机仍可用。
-如果不可用，节点控制器会将该节点从它的节点列表删除。
-
-<!--
-The third is monitoring the nodes' health. The node controller is
-responsible for updating the NodeReady condition of NodeStatus to
-ConditionUnknown when a node becomes unreachable (i.e. the node controller stops
-receiving heartbeats for some reason, e.g. due to the node being down), and then later evicting
-all the pods from the node (using graceful termination) if the node continues
-to be unreachable. (The default timeouts are 40s to start reporting
-ConditionUnknown and 5m after that to start evicting pods.) 
-
-The node controller checks the state of each node every `-node-monitor-period` seconds.
--->
-第三个是监控节点的健康情况。节点控制器负责在节点不可达
-（即，节点控制器因为某些原因没有收到心跳，例如节点宕机）时，
-将节点状态的 `NodeReady` 状况更新为 "`Unknown`"。
-如果节点接下来持续处于不可达状态，节点控制器将逐出节点上的所有 Pod（使用体面终止）。
-默认情况下 40 秒后开始报告 "`Unknown`"，在那之后 5 分钟开始逐出 Pod。
-
-节点控制器每隔 `--node-monitor-period` 秒检查每个节点的状态。
-
-<!--
-#### Heartbeats
-
-Heartbeats, sent by Kubernetes nodes, help determine the availability of a node.
-There are two forms of heartbeats: updates of `NodeStatus` and the
-[Lease object](/docs/reference/generated/kubernetes-api/{{< latest-version >}}/#lease-v1-coordination-k8s-io).
-Each Node has an associated Lease object in the `kube-node-lease`
-{{< glossary_tooltip term_id="namespace" text="namespace">}}.
-Lease is a lightweight resource, which improves the performance
-of the node heartbeats as the cluster scales.
--->
-#### 心跳机制  {#heartbeats}
-
-Kubernetes 节点发送的心跳（Heartbeats）有助于确定节点的可用性。
-心跳有两种形式：`NodeStatus` 和 [`Lease` 对象](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#lease-v1-coordination-k8s-io)。
-每个节点在 `kube-node-lease`{{< glossary_tooltip term_id="namespace" text="名字空间">}}
-中都有一个与之关联的 `Lease` 对象。
-`Lease` 是一种轻量级的资源，可在集群规模扩大时提高节点心跳机制的性能。
-
-<!--
-The kubelet is responsible for creating and updating the `NodeStatus` and
-a Lease object.
--->
-`kubelet` 负责创建和更新 `NodeStatus` 和 `Lease` 对象。
-
-<!--
-- The kubelet updates the `NodeStatus` either when there is change in status,
-  or if there has been no update for a configured interval. The default interval
-  for `NodeStatus` updates is 5 minutes (much longer than the 40 second default
-  timeout for unreachable nodes).
-- The kubelet creates and then updates its Lease object every 10 seconds
-  (the default update interval). Lease updates occur independently from the
-  `NodeStatus` updates. If the Lease update fails, the kubelet retries with
-  exponential backoff starting at 200 milliseconds and capped at 7 seconds.
-
--->
-- 当状态发生变化时，或者在配置的时间间隔内没有更新事件时，kubelet 会更新 `NodeStatus`。
-  `NodeStatus` 更新的默认间隔为 5 分钟（比不可达节点的 40 秒默认超时时间长很多）。
-- `kubelet` 会每 10 秒（默认更新间隔时间）创建并更新其 `Lease` 对象。
-  `Lease` 更新独立于 `NodeStatus` 更新而发生。
-  如果 `Lease` 的更新操作失败，`kubelet` 会采用指数回退机制，从 200 毫秒开始
-  重试，最长重试间隔为 7 秒钟。
-
-<!--
-#### Reliability
-
-In most cases, the node controller limits the eviction rate to
-`-node-eviction-rate` (default 0.1) per second, meaning it won't evict pods
-from more than 1 node per 10 seconds.
--->
-#### 可靠性  {#reliability}
-
-大部分情况下，节点控制器把逐出速率限制在每秒 `--node-eviction-rate` 个（默认为 0.1）。
-这表示它每 10 秒钟内至多从一个节点驱逐 Pod。
-
-<!--
-The node eviction behavior changes when a node in a given availability zone
-becomes unhealthy. The node controller checks what percentage of nodes in the zone
-are unhealthy (NodeReady condition is ConditionUnknown or ConditionFalse) at
-the same time. If the fraction of unhealthy nodes is at least
-`-unhealthy-zone-threshold` (default 0.55) then the eviction rate is reduced:
-if the cluster is small (i.e. has less than or equal to
-`-large-cluster-size-threshold` nodes - default 50) then evictions are
-stopped, otherwise the eviction rate is reduced to
-`-secondary-node-eviction-rate` (default 0.01) per second. 
-
-The reason these policies are implemented per availability zone is because one availability zone
-might become partitioned from the master while the others remain connected. If
-your cluster does not span multiple cloud provider availability zones, then
-there is only one availability zone (the whole cluster).
--->
-当一个可用区域（Availability Zone）中的节点变为不健康时，节点的驱逐行为将发生改变。
-节点控制器会同时检查可用区域中不健康（NodeReady 状况为 Unknown 或 False）
-的节点的百分比。如果不健康节点的比例超过 `--unhealthy-zone-threshold` （默认为 0.55），
-驱逐速率将会降低：如果集群较小（意即小于等于 `--large-cluster-size-threshold`
-个节点 - 默认为 50），驱逐操作将会停止，否则驱逐速率将降为每秒
-`--secondary-node-eviction-rate` 个（默认为 0.01）。
-
-在单个可用区域实施这些策略的原因是当一个可用区域可能从控制面脱离时其它可用区域
-可能仍然保持连接。
-如果你的集群没有跨越云服务商的多个可用区域，那（整个集群）就只有一个可用区域。
-
-<!--
-A key reason for spreading your nodes across availability zones is so that the
-workload can be shifted to healthy zones when one entire zone goes down.
-Therefore, if all nodes in a zone are unhealthy then node controller evicts at
-the normal rate `-node-eviction-rate`.  The corner case is when all zones are
-completely unhealthy (i.e. there are no healthy nodes in the cluster). In such
-case, the node controller assumes that there's some problem with master
-connectivity and stops all evictions until some connectivity is restored.
--->
-跨多个可用区域部署你的节点的一个关键原因是当某个可用区域整体出现故障时，
-工作负载可以转移到健康的可用区域。
-因此，如果一个可用区域中的所有节点都不健康时，节点控制器会以正常的速率
-`--node-eviction-rate` 进行驱逐操作。
-在所有的可用区域都不健康（也即集群中没有健康节点）的极端情况下，
-节点控制器将假设控制面节点的连接出了某些问题，
-它将停止所有驱逐动作直到一些连接恢复。
-
-<!--
-The Node Controller is also responsible for evicting pods running on nodes with
-`NoExecute` taints, unless the pods do not tolerate the taints.
-The Node Controller also adds {{< glossary_tooltip text="taints" term_id="taint" >}}
-corresponding to node problems like node unreachable or not ready. This means
-that the scheduler won't place Pods onto unhealthy nodes.
--->
-节点控制器还负责驱逐运行在拥有 `NoExecute` 污点的节点上的 Pod，
-除非这些 Pod 能够容忍此污点。
-节点控制器还负责根据节点故障（例如节点不可访问或没有就绪）为其添加
-{{< glossary_tooltip text="污点" term_id="taint" >}}。
-这意味着调度器不会将 Pod 调度到不健康的节点上。
-
-<!--
-### Node capacity
-
-Node objects track information about the Node's resource capacity (for example: the amount
-of memory available, and the number of CPUs).
-Nodes that [self register](#self-registration-of-nodes) report their capacity during
-registration. If you [manually](#manual-node-administration) add a Node, then
-you need to set the node's capacity information when you add it.
--->
-### 节点容量   {#node-capacity}
-
-Node 对象会跟踪节点上资源的容量（例如可用内存和 CPU 数量）。
-通过[自注册](#self-registration-of-nodes)机制生成的 Node 对象会在注册期间报告自身容量。
-如果你[手动](#manual-node-administration)添加了 Node，你就需要在添加节点时
-手动设置节点容量。
-
-<!--
-The Kubernetes {{< glossary_tooltip text="scheduler" term_id="kube-scheduler" >}} ensures that
-there are enough resources for all the pods on a node.  The scheduler checks that the sum
-of the requests of containers on the node is no greater than the node capacity.
-The sum of requests includes all containers started by the kubelet, but excludes any
-containers started directly by the container runtime, and also excludes any
-process running outside of the kubelet's control.
--->
-Kubernetes {{< glossary_tooltip text="调度器" term_id="kube-scheduler" >}}保证节点上
-有足够的资源供其上的所有 Pod 使用。它会检查节点上所有容器的请求的总和不会超过节点的容量。
-总的请求包括由 kubelet 启动的所有容器，但不包括由容器运行时直接启动的容器，
-也不包括不受 `kubelet` 控制的其他进程。
-
-<!--
-If you want to explicitly reserve resources for non-Pod processes, follow this tutorial to
-[reserve resources for system daemons](/docs/tasks/administer-cluster/reserve-compute-resources/#system-reserved).
--->
-{{< note >}}
-如果要为非 Pod 进程显式保留资源。请参考
-[为系统守护进程预留资源](/zh/docs/tasks/administer-cluster/reserve-compute-resources/#system-reserved)。
-{{< /note >}}
-
-<!--
-## Node topology
--->
-## 节点拓扑  {#node-topology}
-
-{{< feature-state state="alpha" for_k8s_version="v1.16" >}}
-
-<!--
-If you have enabled the `TopologyManager`
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/), then
-the kubelet can use topology hints when making resource assignment decisions.
-See [Control Topology Management Policies on a Node](/docs/tasks/administer-cluster/topology-manager/)
-for more information.
--->
-如果启用了 `TopologyManager` [特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)，
-`kubelet` 可以在作出资源分配决策时使用拓扑提示。
-参考[控制节点上拓扑管理策略](/zh/docs/tasks/administer-cluster/topology-manager/)
-了解详细信息。
-
-<!-- 
-## Graceful node shutdown {#graceful-node-shutdown}
--->
-## 节点体面关闭 {#graceful-node-shutdown}
-
-{{< feature-state state="beta" for_k8s_version="v1.21" >}}
-
-<!-- 
-The kubelet attempts to detect node system shutdown and terminates pods running on the node.
-
-Kubelet ensures that pods follow the normal [pod termination process](/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination) during the node shutdown.
--->
-kubelet 会尝试检测节点系统关闭事件并终止在节点上运行的 Pods。
-
-在节点终止期间，kubelet 保证 Pod 遵从常规的 [Pod 终止流程](/zh/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)。
-
-<!-- 
-The graceful node shutdown feature depends on systemd since it takes advantage of
-[systemd inhibitor locks](https://www.freedesktop.org/wiki/Software/systemd/inhibit/) to
-delay the node shutdown with a given duration.
--->
-体面节点关闭特性依赖于 systemd，因为它要利用
-[systemd 抑制器锁](https://www.freedesktop.org/wiki/Software/systemd/inhibit/)
-在给定的期限内延迟节点关闭。
-
-<!--
-Graceful node shutdown is controlled with the `GracefulNodeShutdown`
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/) which is
-enabled by default in 1.21.
--->
-体面节点关闭特性受 `GracefulNodeShutdown`
-[特性门控](/docs/reference/command-line-tools-reference/feature-gates/)
-控制，在 1.21 版本中是默认启用的。
-
-<!--
-Note that by default, both configuration options described below,
-`ShutdownGracePeriod` and `ShutdownGracePeriodCriticalPods` are set to zero,
-thus not activating Graceful node shutdown functionality.
-To activate the feature, the two kubelet config settings should be configured appropriately and set to non-zero values.
--->
-注意，默认情况下，下面描述的两个配置选项，`ShutdownGracePeriod` 和
-`ShutdownGracePeriodCriticalPods` 都是被设置为 0 的，因此不会激活
-体面节点关闭功能。
-要激活此功能特性，这两个 kubelet 配置选项要适当配置，并设置为非零值。
-
-<!-- 
-During a graceful shutdown, kubelet terminates pods in two phases:
-
-1. Terminate regular pods running on the node.
-2. Terminate [critical pods](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical) running on the node.
--->
-在体面关闭节点过程中，kubelet 分两个阶段来终止 Pods：
-
-1. 终止在节点上运行的常规 Pod。
-2. 终止在节点上运行的[关键 Pod](/zh/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical)。
-
-<!-- 
-Graceful Node Shutdown feature is configured with two [`KubeletConfiguration`](/docs/tasks/administer-cluster/kubelet-config-file/) options:
-* `ShutdownGracePeriod`:
-  * Specifies the total duration that the node should delay the shutdown by. This is the total grace period for pod termination for both regular and [critical pods](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical).
-* `ShutdownGracePeriodCriticalPods`:
-  * Specifies the duration used to terminate [critical pods](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical) during a node shutdown. This value should be less than `ShutdownGracePeriod`.
--->
-节点体面关闭的特性对应两个
-[`KubeletConfiguration`](/zh/docs/tasks/administer-cluster/kubelet-config-file/) 选项：
-
-* `ShutdownGracePeriod`：
-  * 指定节点应延迟关闭的总持续时间。此时间是 Pod 体面终止的时间总和，不区分常规 Pod 还是
-    [关键 Pod](/zh/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical)。
-* `ShutdownGracePeriodCriticalPods`：
-  * 在节点关闭期间指定用于终止
-    [关键 Pod](/zh/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical)
-    的持续时间。该值应小于 `ShutdownGracePeriod`。
-
-<!--  
-For example, if `ShutdownGracePeriod=30s`, and
-`ShutdownGracePeriodCriticalPods=10s`, kubelet will delay the node shutdown by
-30 seconds. During the shutdown, the first 20 (30-10) seconds would be reserved
-for gracefully terminating normal pods, and the last 10 seconds would be
-reserved for terminating [critical pods](/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical).
--->
-例如，如果设置了 `ShutdownGracePeriod=30s` 和 `ShutdownGracePeriodCriticalPods=10s`，
-则 kubelet 将延迟 30 秒关闭节点。
-在关闭期间，将保留前 20（30 - 10）秒用于体面终止常规 Pod，
-而保留最后 10 秒用于终止
-[关键 Pod](/zh/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical)。
-
-## {{% heading "whatsnext" %}}
-
-<!--
-* Learn about the [components](/docs/concepts/overview/components/#node-components) that make up a node.
-* Read the [API definition for Node](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#node-v1-core).
-* Read the [Node](https://git.k8s.io/community/contributors/design-proposals/architecture/architecture.md#the-kubernetes-node)
-  section of the architecture design document.
-* Read about [taints and tolerations](/docs/concepts/scheduling-eviction/taint-and-toleration/).
--->
-* 了解有关节点[组件](/zh/docs/concepts/overview/components/#node-components)。
-* 阅读 [Node 的 API 定义](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#node-v1-core)。
-* 阅读架构设计文档中有关
-  [节点](https://git.k8s.io/community/contributors/design-proposals/architecture/architecture.md#the-kubernetes-node)
-  的章节。
-* 了解[污点和容忍度](/zh/docs/concepts/scheduling-eviction/taint-and-toleration/)。
-
diff --git a/content/zh/docs/concepts/cluster-administration/kubelet-garbage-collection.md b/content/zh/docs/concepts/cluster-administration/kubelet-garbage-collection.md
deleted file mode 100644
index 23a6bce400..0000000000
--- a/content/zh/docs/concepts/cluster-administration/kubelet-garbage-collection.md
+++ /dev/null
@@ -1,179 +0,0 @@
----
-title: 容器镜像的垃圾收集
-content_type: concept
-weight: 70
----
-
-<!--
-title: Garbage collection for container images
-content_type: concept
-weight: 70
--->
-
-<!-- overview -->
-
-<!--
-Garbage collection is a helpful function of kubelet that will clean up unused [images](/docs/concepts/containers/#container-images) and unused [containers](/docs/concepts/containers/). Kubelet will perform garbage collection for containers every minute and garbage collection for images every five minutes.
-
-External garbage collection tools are not recommended as these tools can potentially break the behavior of kubelet by removing containers expected to exist.
--->
-
-垃圾回收是 kubelet 的一个有用功能，它将清理未使用的[镜像](/zh/docs/concepts/containers/#container-images)和[容器](/zh/docs/concepts/containers/)。
-Kubelet 将每分钟对容器执行一次垃圾回收，每五分钟对镜像执行一次垃圾回收。
-
-不建议使用外部垃圾收集工具，因为这些工具可能会删除原本期望存在的容器进而破坏 kubelet 的行为。
-
-<!-- body -->
-
-<!--
-## Image Collection
-
-Kubernetes manages lifecycle of all images through imageManager, with the cooperation
-of cadvisor.
-
-The policy for garbage collecting images takes two factors into consideration:
-`HighThresholdPercent` and `LowThresholdPercent`.  Disk usage above the high threshold
-will trigger garbage collection. The garbage collection will delete least recently used
-images until the low threshold has been met.
--->
-## 镜像回收   {#image-collection}
-
-Kubernetes 借助于 cadvisor 通过 imageManager 来管理所有镜像的生命周期。
-
-镜像垃圾回收策略只考虑两个因素：`HighThresholdPercent` 和 `LowThresholdPercent`。
-磁盘使用率超过上限阈值（HighThresholdPercent）将触发垃圾回收。
-垃圾回收将删除最近最少使用的镜像，直到磁盘使用率满足下限阈值（LowThresholdPercent）。
-
-<!--
-## Container Collection
-
-The policy for garbage collecting containers considers three user-defined variables. `MinAge` is the minimum age at which a container can be garbage collected. `MaxPerPodContainer` is the maximum number of dead containers every single
-pod (UID, container name) pair is allowed to have. `MaxContainers` is the maximum number of total dead containers. These variables can be individually disabled by setting `MinAge` to zero and setting `MaxPerPodContainer` and `MaxContainers` respectively to less than zero.
--->
-## 容器回收   {#container-collection}
-
-容器垃圾回收策略考虑三个用户定义变量。
-`MinAge` 是容器可以被执行垃圾回收的最小生命周期。
-`MaxPerPodContainer` 是每个 pod 内允许存在的死亡容器的最大数量。
-`MaxContainers` 是全部死亡容器的最大数量。
-可以分别独立地通过将 `MinAge` 设置为 0，以及将 `MaxPerPodContainer` 和 `MaxContainers`
-设置为小于 0 来禁用这些变量。
-
-<!--
-Kubelet will act on containers that are unidentified, deleted, or outside of the boundaries set by the previously mentioned flags. The oldest containers will generally be removed first. `MaxPerPodContainer` and `MaxContainer` may potentially conflict with each other in situations where retaining the maximum number of containers per pod (`MaxPerPodContainer`) would go outside the allowable range of global dead containers (`MaxContainers`). `MaxPerPodContainer` would be adjusted in this situation: A worst case scenario would be to downgrade `MaxPerPodContainer` to 1 and evict the oldest containers. Additionally, containers owned by pods that have been deleted are removed once they are older than `MinAge`.
--->
-`kubelet` 将处理无法辨识的、已删除的以及超出前面提到的参数所设置范围的容器。
-最老的容器通常会先被移除。
-`MaxPerPodContainer` 和 `MaxContainer` 在某些场景下可能会存在冲突，
-例如在保证每个 pod 内死亡容器的最大数量（`MaxPerPodContainer`）的条件下可能会超过
-允许存在的全部死亡容器的最大数量（`MaxContainer`）。
-`MaxPerPodContainer` 在这种情况下会被进行调整：
-最坏的情况是将 `MaxPerPodContainer` 降级为 1，并驱逐最老的容器。
-此外，pod 内已经被删除的容器一旦年龄超过 `MinAge` 就会被清理。
-
-<!--
-Containers that are not managed by kubelet are not subject to container garbage collection.
--->
-不被 kubelet 管理的容器不受容器垃圾回收的约束。
-
-<!--
-## User Configuration
-
-Users can adjust the following thresholds to tune image garbage collection with the following kubelet flags :
--->
-## 用户配置   {#user-configuration}
-
-用户可以使用以下 kubelet 参数调整相关阈值来优化镜像垃圾回收：
-
-<!--
-1. `image-gc-high-threshold`, the percent of disk usage which triggers image garbage collection.
-Default is 85%.
-
-2. `image-gc-low-threshold`, the percent of disk usage to which image garbage collection attempts
-to free. Default is 80%.
--->
-
-1. `image-gc-high-threshold`，触发镜像垃圾回收的磁盘使用率百分比。默认值为 85%。
-2. `image-gc-low-threshold`，镜像垃圾回收试图释放资源后达到的磁盘使用率百分比。默认值为 80%。
-
-<!--
-We also allow users to customize garbage collection policy through the following kubelet flags:
--->
-我们还允许用户通过以下 kubelet 参数自定义垃圾收集策略：
-
-<!--
-1. `minimum-container-ttl-duration`, minimum age for a finished container before it is
-garbage collected. Default is 0 minute, which means every finished container will be garbage collected.
-
-2. `maximum-dead-containers-per-container`, maximum number of old instances to be retained
-per container. Default is 1.
-
-3. `maximum-dead-containers`, maximum number of old instances of containers to retain globally.
-Default is -1, which means there is no global limit.
--->
-
-1. `minimum-container-ttl-duration`，完成的容器在被垃圾回收之前的最小年龄，默认是 0 分钟。
-   这意味着每个完成的容器都会被执行垃圾回收。
-
-2. `maximum-dead-containers-per-container`，每个容器要保留的旧实例的最大数量。默认值为 1。
-
-3. `maximum-dead-containers`，要全局保留的旧容器实例的最大数量。
-   默认值是 -1，意味着没有全局限制。
-
-<!--
-Containers can potentially be garbage collected before their usefulness has expired. These containers
-can contain logs and other data that can be useful for troubleshooting. A sufficiently large value for
-`maximum-dead-containers-per-container` is highly recommended to allow at least 1 dead container to be
-retained per expected container. A larger value for `maximum-dead-containers` is also recommended for a
-similar reason.
-
-See [this issue](https://github.com/kubernetes/kubernetes/issues/13287) for more details.
--->
-容器可能会在其效用过期之前被垃圾回收。这些容器可能包含日志和其他对故障诊断有用的数据。
-强烈建议为 `maximum-dead-containers-per-container` 设置一个足够大的值，以便每个预期容器至少保留一个死亡容器。
-由于同样的原因，`maximum-dead-containers` 也建议使用一个足够大的值。
-
-查阅[这个 Issue](https://github.com/kubernetes/kubernetes/issues/13287) 获取更多细节。
-
-<!--
-## Deprecation
-
-Some kubelet Garbage Collection features in this doc will be replaced by kubelet eviction in the future.
-
-Including:
--->
-## 弃用  {#deprecation}
-
-这篇文档中的一些 kubelet 垃圾收集（Garbage Collection）功能将在未来被 kubelet 驱逐回收（eviction）所替代。
-
-包括:
-
-<!--
-| Existing Flag | New Flag | Rationale |
-| ------------- | -------- | --------- |
-| `--image-gc-high-threshold` | `--eviction-hard` or `--eviction-soft` | existing eviction signals can trigger image garbage collection |
-| `--image-gc-low-threshold` | `--eviction-minimum-reclaim` | eviction reclaims achieve the same behavior |
-| `--maximum-dead-containers` | | deprecated once old logs are stored outside of container's context |
-| `--maximum-dead-containers-per-container` | | deprecated once old logs are stored outside of container's context |
-| `--minimum-container-ttl-duration` | | deprecated once old logs are stored outside of container's context |
-| `--low-diskspace-threshold-mb` | `--eviction-hard` or `eviction-soft` | eviction generalizes disk thresholds to other resources |
-| `--outofdisk-transition-frequency` | `--eviction-pressure-transition-period` | eviction generalizes disk pressure transition to other resources |
--->
-| 现存参数 | 新参数 | 解释 |
-| ------------- | -------- | --------- |
-| `--image-gc-high-threshold` | `--eviction-hard` 或 `--eviction-soft` | 现存的驱逐回收信号可以触发镜像垃圾回收 |
-| `--image-gc-low-threshold` | `--eviction-minimum-reclaim` | 驱逐回收实现相同行为 |
-| `--maximum-dead-containers` | | 一旦旧日志存储在容器上下文之外，就会被弃用 |
-| `--maximum-dead-containers-per-container` | | 一旦旧日志存储在容器上下文之外，就会被弃用 |
-| `--minimum-container-ttl-duration` | | 一旦旧日志存储在容器上下文之外，就会被弃用 |
-| `--low-diskspace-threshold-mb` | `--eviction-hard` or `eviction-soft` | 驱逐回收将磁盘阈值泛化到其他资源 |
-| `--outofdisk-transition-frequency` | `--eviction-pressure-transition-period` | 驱逐回收将磁盘压力转换到其他资源 | 
-
-## {{% heading "whatsnext" %}}
-
-<!--
-See [Configuring Out Of Resource Handling](/docs/tasks/administer-cluster/out-of-resource/) for more details.
--->
-
-查阅[配置资源不足情况的处理](/zh/docs/tasks/administer-cluster/out-of-resource/)了解更多细节。
-
diff --git a/content/zh/docs/concepts/cluster-administration/system-logs.md b/content/zh/docs/concepts/cluster-administration/system-logs.md
deleted file mode 100644
index 4fb9ba7c89..0000000000
--- a/content/zh/docs/concepts/cluster-administration/system-logs.md
+++ /dev/null
@@ -1,261 +0,0 @@
----
-title: 系统日志
-content_type: concept
-weight: 60
----
-<!-- 
-reviewers:
-- dims
-- 44past4
-title: System Logs
-content_type: concept
-weight: 60
--->
-
-<!-- overview -->
-
-<!--
-System component logs record events happening in cluster, which can be very useful for debugging.
-You can configure log verbosity to see more or less detail.
-Logs can be as coarse-grained as showing errors within a component, or as fine-grained as showing step-by-step traces of events (like HTTP access logs, pod state changes, controller actions, or scheduler decisions).
--->
-系统组件的日志记录集群中发生的事件，这对于调试非常有用。
-你可以配置日志的精细度，以展示更多或更少的细节。
-日志可以是粗粒度的，如只显示组件内的错误，
-也可以是细粒度的，如显示事件的每一个跟踪步骤（比如 HTTP 访问日志、pod 状态更新、控制器动作或调度器决策）。
-
-<!-- body -->
-
-## Klog
-
-<!--
-klog is the Kubernetes logging library. [klog](https://github.com/kubernetes/klog)
-generates log messages for the Kubernetes system components.
-
-For more information about klog configuration, see the [Command line tool reference](/docs/reference/command-line-tools-reference/).
-
-An example of the klog native format:
--->
-klog 是 Kubernetes 的日志库。 
-[klog](https://github.com/kubernetes/klog) 
-为 Kubernetes 系统组件生成日志消息。
-
-有关 klog 配置的更多信息，请参见[命令行工具参考](/zh/docs/reference/command-line-tools-reference/)。
-
-klog 原始格式的示例：
-```
-I1025 00:15:15.525108       1 httplog.go:79] GET /api/v1/namespaces/kube-system/pods/metrics-server-v0.3.1-57c75779f-9p8wg: (1.512ms) 200 [pod_nanny/v0.0.0 (linux/amd64) kubernetes/$Format 10.56.1.19:51756]
-```
-
-<!-- 
-### Structured Logging 
--->
-### 结构化日志
-
-{{< feature-state for_k8s_version="v1.19" state="alpha" >}}
-
-<!--
-Migration to structured log messages is an ongoing process. Not all log messages are structured in this version. When parsing log files, you must also handle unstructured log messages.
-
-Log formatting and value serialization are subject to change.
--->
-{{< warning >}}
-到结构化日志消息的迁移是一个持续的过程。
-在此版本中，并非所有日志消息都是结构化的。
-解析日志文件时，你也必须要处理非结构化日志消息。
-
-日志格式和值的序列化可能会发生变化。
-{{< /warning>}}
-
-<!--
-Structured logging introduces a uniform structure in log messages allowing for programmatic extraction of information. You can store and process structured logs with less effort and cost.
-New message format is backward compatible and enabled by default.
-
-Format of structured logs:
--->
-结构化日志记录旨在日志消息中引入统一结构，以便以编程方式提取信息。
-你可以方便地用更小的开销来处理结构化日志。
-新的消息格式向后兼容，并默认启用。
-
-结构化日志的格式：
-
-```ini
-<klog header> "<message>" <key1>="<value1>" <key2>="<value2>" ...
-```
-
-<!-- Example: -->
-示例：
-
-```ini
-I1025 00:15:15.525108       1 controller_utils.go:116] "Pod status updated" pod="kube-system/kubedns" status="ready"
-```
-
-
-<!--
-### JSON log format
--->
-### JSON 日志格式
-
-{{< feature-state for_k8s_version="v1.19" state="alpha" >}}
-
-<!--
-JSON output does not support many standard klog flags. For list of unsupported klog flags, see the [Command line tool reference](/docs/reference/command-line-tools-reference/).
-
-Not all logs are guaranteed to be written in JSON format (for example, during process start). If you intend to parse logs, make sure you can handle log lines that are not JSON as well.
-
-Field names and JSON serialization are subject to change.
--->
-{{<warning >}}
-JSON 输出并不支持太多标准 klog 参数。
-对于不受支持的 klog 参数的列表，请参见
-[命令行工具参考](/zh/docs/reference/command-line-tools-reference/)。
-
-并不是所有日志都保证写成 JSON 格式（例如，在进程启动期间）。
-如果你打算解析日志，请确保可以处理非 JSON 格式的日志行。
-
-字段名和 JSON 序列化可能会发生变化。
-{{< /warning >}}
-
-<!--
-The `--logging-format=json` flag changes the format of logs from klog native format to JSON format.
-Example of JSON log format (pretty printed):
--->
-`--logging-format=json` 参数将日志格式从 klog 原生格式改为 JSON 格式。
-JSON 日志格式示例（美化输出）：
-```json
-{
-   "ts": 1580306777.04728,
-   "v": 4,
-   "msg": "Pod status updated",
-   "pod":{
-      "name": "nginx-1",
-      "namespace": "default"
-   },
-   "status": "ready"
-}
-```
-
-<!--
-Keys with special meaning:
-* `ts` - timestamp as Unix time (required, float)
-* `v` - verbosity (required, int, default 0)
-* `err` - error string (optional, string)
-* `msg` - message (required, string)
-
-List of components currently supporting JSON format:
--->
-具有特殊意义的 key：
-* `ts` - Unix 时间风格的时间戳（必选项，浮点值）
-* `v` - 精细度（必选项，整数，默认值 0）
-* `err` - 错误字符串（可选项，字符串）
-* `msg` - 消息（必选项，字符串）
-
-当前支持JSON格式的组件列表：
-* {{< glossary_tooltip term_id="kube-controller-manager" text="kube-controller-manager" >}}
-* {{< glossary_tooltip term_id="kube-apiserver" text="kube-apiserver" >}}
-* {{< glossary_tooltip term_id="kube-scheduler" text="kube-scheduler" >}}
-* {{< glossary_tooltip term_id="kubelet" text="kubelet" >}}
-
-<!--
-### Log sanitization
-
-{{< feature-state for_k8s_version="v1.20" state="alpha" >}}
-
-{{<warning >}}
-Log sanitization might incur significant computation overhead and therefore should not be enabled in production.
-{{< /warning >}}
--->
-
-### 日志清理
-
-{{< feature-state for_k8s_version="v1.20" state="alpha" >}}
-
-{{<warning >}}
-日志清理可能会导致大量的计算开销，因此不应启用在生产环境中。
-{{< /warning >}}
-
-<!--
-The `--experimental-logging-sanitization` flag enables the klog sanitization filter.
-If enabled all log arguments are inspected for fields tagged as sensitive data (e.g. passwords, keys, tokens) and logging of these fields will be prevented.
--->
-
-`--experimental-logging-sanitization` 参数可用来启用 klog 清理过滤器。
-如果启用后，将检查所有日志参数中是否有标记为敏感数据的字段（比如：密码，密钥，令牌），并且将阻止这些字段的记录。
-
-<!--
-List of components currently supporting log sanitization:
-* kube-controller-manager
-* kube-apiserver
-* kube-scheduler
-* kubelet
-
-{{< note >}}
-The Log sanitization filter does not prevent user workload logs from leaking sensitive data.
-{{< /note >}}
--->
-
-当前支持日志清理的组件列表：
-
-* kube-controller-manager
-* kube-apiserver
-* kube-scheduler
-* kubelet
-
-{{< note >}}
-日志清理过滤器不会阻止用户工作负载日志泄漏敏感数据。
-{{< /note >}}
-
-<!--
-### Log verbosity level
-
-The `-v` flag controls log verbosity. Increasing the value increases the number of logged events. Decreasing the value decreases the number of logged events.
-Increasing verbosity settings logs increasingly less severe events. A verbosity setting of 0 logs only critical events.
--->
-### 日志精细度级别
-
-参数 `-v` 控制日志的精细度。增大该值会增大日志事件的数量。
-减小该值可以减小日志事件的数量。
-增大精细度会记录更多的不太严重的事件。
-精细度设置为 0 时只记录关键（critical）事件。
-
-<!--
-### Log location
-
-There are two types of system components: those that run in a container and those
-that do not run in a container. For example:
-
-* The Kubernetes scheduler and kube-proxy run in a container.
-* The kubelet and container runtime, for example Docker, do not run in containers.
--->
-### 日志位置
-
-有两种类型的系统组件：运行在容器中的组件和不运行在容器中的组件。例如：
-* Kubernetes 调度器和 kube-proxy 在容器中运行。
-* kubelet 和容器运行时，例如 Docker，不在容器中运行。
-
-<!--
-On machines with systemd, the kubelet and container runtime write to journald.
-Otherwise, they write to `.log` files in the `/var/log` directory.
-System components inside containers always write to `.log` files in the `/var/log` directory,
-bypassing the default logging mechanism.
-Similar to the container logs, you should rotate system component logs in the `/var/log` directory.
-In Kubernetes clusters created by the `kube-up.sh` script, log rotation is configured by the `logrotate` tool.
-The `logrotate` tool rotates logs daily, or once the log size is greater than 100MB.
--->
-在使用 systemd 的系统中，kubelet 和容器运行时写入 journald。
-在别的系统中，日志写入 `/var/log` 目录下的 `.log` 文件中。
-容器中的系统组件总是绕过默认的日志记录机制，写入 `/var/log` 目录下的 `.log` 文件。
-与容器日志类似，你应该轮转 `/var/log` 目录下系统组件日志。
-在 `kube-up.sh` 脚本创建的 Kubernetes 集群中，日志轮转由 `logrotate` 工具配置。
- `logrotate` 工具，每天或者当日志大于 100MB 时，轮转日志。
-
-## {{% heading "whatsnext" %}}
-
-<!--
-* Read about the [Kubernetes Logging Architecture](/docs/concepts/cluster-administration/logging/)
-* Read about [Structured Logging](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/1602-structured-logging)
-* Read about the [Conventions for logging severity](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-instrumentation/logging.md)
--->
-* 阅读 [Kubernetes 日志架构](/zh/docs/concepts/cluster-administration/logging/)
-* 阅读 [Structured Logging](https://github.com/kubernetes/enhancements/tree/master/keps/sig-instrumentation/1602-structured-logging)
-* 阅读 [Conventions for logging severity](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-instrumentation/logging.md)
diff --git a/content/zh/docs/concepts/configuration/secret.md b/content/zh/docs/concepts/configuration/secret.md
deleted file mode 100644
index 53a301f03e..0000000000
--- a/content/zh/docs/concepts/configuration/secret.md
+++ /dev/null
@@ -1,1985 +0,0 @@
----
-title: Secret
-content_type: concept
-feature:
-  title: Secret 和配置管理
-  description: >
-    部署和更新 Secrets 和应用程序的配置而不必重新构建容器镜像，且
-    不必将软件堆栈配置中的秘密信息暴露出来。
-weight: 30
----
-<!--
-reviewers:
-- mikedanese
-title: Secrets
-content_type: concept
-feature:
-  title: Secret and configuration management
-  description: >
-    Deploy and update secrets and application configuration without rebuilding your image and without exposing secrets in your stack configuration.
-weight: 30
--->
-
-<!-- overview -->
-
-<!--
-Kubernetes `secret` objects let you store and manage sensitive information, such
-as passwords, OAuth tokens, and ssh keys.  Putting this information in a `secret`
-is safer and more flexible than putting it verbatim in a
-{{< glossary_tooltip term_id="pod" >}} definition or in a
-{{< glossary_tooltip text="container image" term_id="image" >}}.
-See [Secrets design document](https://git.k8s.io/community/contributors/design-proposals/auth/secrets.md) for more information.
--->
-
-`Secret` 对象类型用来保存敏感信息，例如密码、OAuth 令牌和 SSH 密钥。
-将这些信息放在 `secret` 中比放在 {{< glossary_tooltip term_id="pod" >}} 的定义或者 {{< glossary_tooltip text="容器镜像" term_id="image" >}} 中来说更加安全和灵活。
-参阅 [Secret 设计文档](https://git.k8s.io/community/contributors/design-proposals/auth/secrets.md) 获取更多详细信息。
-
-<!--
-A Secret is an object that contains a small amount of sensitive data such as
-a password, a token, or a key. Such information might otherwise be put in a
-Pod specification or in an image. Users can create Secrets and the system
-also creates some Secrets.
--->
-Secret 是一种包含少量敏感信息例如密码、令牌或密钥的对象。
-这样的信息可能会被放在 Pod 规约中或者镜像中。
-用户可以创建 Secret，同时系统也创建了一些 Secret。
-
-{{< caution >}}
-<!--
-Kubernetes Secrets are, by default, stored as unencrypted base64-encoded
-strings. By default they can be retrieved - as plain text - by anyone with API
-access, or anyone with access to Kubernetes' underlying data store, etcd. In
-order to safely use Secrets, it is recommended you (at a minimum):
-
-1. [Enable Encryption at Rest](/zh/docs/tasks/administer-cluster/encrypt-data/) for Secrets.
-2. [Enable or configure RBAC rules](/docs/reference/access-authn-authz/authorization/) that restrict reading and writing the Secret. Be aware that secrets can be obtained implicitly by anyone with the permission to create a Pod.
--->
-Kubernetes Secret 默认情况下存储为 base64-编码的、非加密的字符串。
-默认情况下，能够访问 API 的任何人，或者能够访问 Kubernetes 下层数据存储（etcd）
-的任何人都可以以明文形式读取这些数据。
-为了能够安全地使用 Secret，我们建议你（至少）：
-
-1. 为 Secret [启用静态加密](/zh/docs/tasks/administer-cluster/encrypt-data/)；
-2. [启用 或配置 RBAC 规则](/zh/docs/reference/access-authn-authz/authorization/)来限制对 Secret 的读写操作。
-   要注意，任何被允许创建 Pod 的人都默认地具有读取 Secret 的权限。
-{{< /caution >}}
-
-<!-- body -->
-
-<!--
-## Overview of Secrets
-
-To use a secret, a Pod needs to reference the secret.
-A secret can be used with a Pod in three ways:
-
-- As [files](#using-secrets-as-files-from-a-pod) in a
-{{< glossary_tooltip text="volume" term_id="volume" >}} mounted on one or more of
-its containers.
-- As [container environment variable](#using-secrets-as-environment-variables).
-- By the [kubelet when pulling images](#using-imagepullsecrets) for the Pod.
--->
-## Secret 概览 {#overview-of-secrets}
-
-要使用 Secret，Pod 需要引用 Secret。
-Pod 可以用三种方式之一来使用 Secret：
-
-- 作为挂载到一个或多个容器上的 {{< glossary_tooltip text="卷" term_id="volume" >}}
-  中的[文件](#using-secrets-as-files-from-a-pod)。
-- 作为[容器的环境变量](#using-secrets-as-environment-variables)
-- 由 [kubelet 在为 Pod 拉取镜像时使用](#using-imagepullsecrets)
-
-<!--
-The name of a Secret object must be a valid
-[DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
-You can specify the `data` and/or the `stringData` field when creating a
-configuration file for a Secret.  The `data` and the `stringData` fields are optional.
-The values for all keys in the `data` field have to be base64-encoded strings.
-If the conversion to base64 string is not desirable, you can choose to specify
-the `stringData` field instead, which accepts arbitrary strings as values.
--->
-Secret 对象的名称必须是合法的 [DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)。
-在为创建 Secret 编写配置文件时，你可以设置 `data` 与/或 `stringData` 字段。
-`data` 和 `stringData` 字段都是可选的。`data` 字段中所有键值都必须是 base64
-编码的字符串。如果不希望执行这种 base64 字符串的转换操作，你可以选择设置
-`stringData` 字段，其中可以使用任何字符串作为其取值。
-
-<!--
-## Types of Secret {#secret-types}
-
-When creating a Secret, you can specify its type using the `type` field of
-the [`Secret`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#secret-v1-core)
-resource, or certain equivalent `kubectl` command line flags (if available).
-The Secret type is used to facilitate programmatic handling of the Secret data.
-
-Kubernetes provides several builtin types for some common usage scenarios.
-These types vary in terms of the validations performed and the constraints
-Kubernetes imposes on them.
--->
-## Secret 的类型  {#secret-types}
-
-在创建 Secret 对象时，你可以使用
-[`Secret`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#secret-v1-core)
-资源的 `type` 字段，或者与其等价的 `kubectl` 命令行参数（如果有的话）为其设置类型。
-Secret 的类型用来帮助编写程序处理 Secret 数据。
-
-Kubernetes 提供若干种内置的类型，用于一些常见的使用场景。
-针对这些类型，Kubernetes 所执行的合法性检查操作以及对其所实施的限制各不相同。
-
-<!--
-| Builtin Type | Usage |
-|--------------|-------|
-| `Opaque`     |  arbitrary user-defined data |
-| `kubernetes.io/service-account-token` | service account token |
-| `kubernetes.io/dockercfg` | serialized `~/.dockercfg` file |
-| `kubernetes.io/dockerconfigjson` | serialized `~/.docker/config.json` file |
-| `kubernetes.io/basic-auth` | credentials for basic authentication |
-| `kubernetes.io/ssh-auth` | credentials for SSH authentication |
-| `kubernetes.io/tls` | data for a TLS client or server |
-| `bootstrap.kubernetes.io/token` | bootstrap token data |
--->
-| 内置类型     | 用法  |
-|--------------|-------|
-| `Opaque`     | 用户定义的任意数据 |
-| `kubernetes.io/service-account-token` | 服务账号令牌 |
-| `kubernetes.io/dockercfg` | `~/.dockercfg` 文件的序列化形式 |
-| `kubernetes.io/dockerconfigjson` | `~/.docker/config.json` 文件的序列化形式 |
-| `kubernetes.io/basic-auth` | 用于基本身份认证的凭据 |
-| `kubernetes.io/ssh-auth` | 用于 SSH 身份认证的凭据 |
-| `kubernetes.io/tls` | 用于 TLS 客户端或者服务器端的数据 |
-| `bootstrap.kubernetes.io/token` | 启动引导令牌数据 |
-
-<!--
-You can define and use your own Secret type by assigning a non-empty string as the
-`type` value for a Secret object. An empty string is treated as an `Opaque` type.
-Kubernetes doesn't impose any constraints on the type name. However, if you
-are using one of the builtin types, you must meet all the requirements defined
-for that type.
--->
-通过为 Secret 对象的 `type` 字段设置一个非空的字符串值，你也可以定义并使用自己
-Secret 类型。如果 `type` 值为空字符串，则被视为 `Opaque` 类型。
-Kubernetes 并不对类型的名称作任何限制。不过，如果你要使用内置类型之一，
-则你必须满足为该类型所定义的所有要求。
-
-<!--
-### Opaque secrets
-
-`Opaque` is the default Secret type if omitted from a Secret configuration file.
-When you create a Secret using `kubectl`, you will use the `generic`
-subcommand to indicate an `Opaque` Secret type. For example, the following
-command creates an empty Secret of type `Opaque`.
--->
-### Opaque Secret
-
-当 Secret 配置文件中未作显式设定时，默认的 Secret 类型是 `Opaque`。
-当你使用 `kubectl` 来创建一个 Secret 时，你会使用 `generic` 子命令来标明
-要创建的是一个 `Opaque` 类型 Secret。
-例如，下面的命令会创建一个空的 `Opaque` 类型 Secret 对象：
-
-```shell
-kubectl create secret generic empty-secret
-kubectl get secret empty-secret
-```
-
-<!--
-The output looks like:
--->
-输出类似于
-
-```
-NAME           TYPE     DATA   AGE
-empty-secret   Opaque   0      2m6s
-```
-
-<!--
-The `DATA` column shows the number of data items stored in the Secret.
-In this case, `0` means we have created an empty Secret.
--->
-`DATA` 列显示 Secret 中保存的数据条目个数。
-在这个例子种，`0` 意味着我们刚刚创建了一个空的 Secret。
-
-<!--
-###  Service account token Secrets
-
-A `kubernetes.io/service-account-token` type of Secret is used to store a
-token that identifies a service account. When using this Secret type, you need
-to ensure that the `kubernetes.io/service-account.name` annotation is set to an
-existing service account name. A Kubernetes controller fills in some other
-fields such as the `kubernetes.io/service-account.uid` annotation and the
-`token` key in the `data` field set to actual token content.
-
-The following example configuration declares a service account token Secret:
--->
-### 服务账号令牌 Secret  {#service-account-token-secrets}
-
-类型为 `kubernetes.io/service-account-token` 的 Secret 用来存放标识某
-服务账号的令牌。使用这种 Secret 类型时，你需要确保对象的注解
-`kubernetes.io/service-account-name` 被设置为某个已有的服务账号名称。
-某个 Kubernetes 控制器会填写 Secret 的其它字段，例如
-`kubernetes.io/service-account.uid` 注解以及 `data` 字段中的 `token`
-键值，使之包含实际的令牌内容。
-
-下面的配置实例声明了一个服务账号令牌 Secret：
-
-<!--
-```yaml
-apiVersion: v1
-kind: Secret
-metadata:
-  name: secret-sa-sample
-  annotations:
-    kubernetes.io/service-account.name: "sa-name"
-type: kubernetes.io/service-account-token
-data:
-  # You can include additional key value pairs as you do with Opaque Secrets
-  extra: YmFyCg==
-```
--->
-```yaml
-apiVersion: v1
-kind: Secret
-metadata:
-  name: secret-sa-sample
-  annotations:
-    kubernetes.io/service-account.name: "sa-name"
-type: kubernetes.io/service-account-token
-data:
-  # 你可以像 Opaque Secret 一样在这里添加额外的键/值偶对
-  extra: YmFyCg==
-```
-
-<!--
-When creating a `Pod`, Kubernetes automatically creates a service account Secret
-and automatically modifies your Pod to use this Secret. The service account token
-Secret contains credentials for accessing the API.
-
-The automatic creation and use of API credentials can be disabled or
-overridden if desired. However, if all you need to do is securely access the
-API server, this is the recommended workflow.
--->
-Kubernetes 在创建 Pod 时会自动创建一个服务账号 Secret 并自动修改你的 Pod
-以使用该 Secret。该服务账号令牌 Secret 中包含了访问 Kubernetes API
-所需要的凭据。
-
-如果需要，可以禁止或者重载这种自动创建并使用 API 凭据的操作。
-不过，如果你仅仅是希望能够安全地访问 API 服务器，这是建议的工作方式。
-
-<!--
-See the [ServiceAccount](/docs/tasks/configure-pod-container/configure-service-account/)
-documentation for more information on how service accounts work.
-You can also check the `automountServiceAccountToken` field and the
-`serviceAccountName` field of the
-[`Pod`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#secret-v1-core)
-for information on referencing service account from Pods.
--->
-参考 [ServiceAccount](/zh/docs/tasks/configure-pod-container/configure-service-account/)
-文档了解服务账号的工作原理。你也可以查看
-[`Pod`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#pod-v1-core)
-资源中的 `automountServiceAccountToken` 和 `serviceAccountName` 字段文档，了解
-从 Pod 中引用服务账号。
-
-<!--
-### Docker config Secrets
-
-You can use one of the following `type` values to create a Secret to
-store the credentials for accessing a Docker registry for images.
--->
-### Docker 配置 Secret  {#docker-config-secrets}
-
-你可以使用下面两种 `type` 值之一来创建 Secret，用以存放访问 Docker 仓库
-来下载镜像的凭据。
-
-- `kubernetes.io/dockercfg`
-- `kubernetes.io/dockerconfigjson`
-
-<!--
-The `kubernetes.io/dockercfg` type is reserved to store a serialized
-`~/.dockercfg` which is the legacy format for configuring Docker command line.
-When using this Secret type, you have to ensure the Secret `data` field
-contains a `.dockercfg` key whose value is content of a `~/.dockercfg` file
-encoded in the base64 format.
--->
-`kubernetes.io/dockercfg` 是一种保留类型，用来存放 `~/.dockercfg` 文件的
-序列化形式。该文件是配置 Docker 命令行的一种老旧形式。
-使用此 Secret 类型时，你需要确保 Secret 的 `data` 字段中包含名为
-`.dockercfg` 的主键，其对应键值是用 base64 编码的某 `~/.dockercfg`
-文件的内容。
-
-<!--
-The `kubernetes/dockerconfigjson` type is designed for storing a serialized
-JSON that follows the same format rules as the `~/.docker/config.json` file
-which is a new format for `~/.dockercfg`.
-When using this Secret type, the `data` field of the Secret object must
-contain a `.dockerconfigjson` key, in which the content for the
-`~/.docker/config.json` file is provided as a base64 encoded string.
-
-Below is an example for a `kubernetes.io/dockercfg` type of Secret:
--->
-类型 `kubernetes.io/dockerconfigjson` 被设计用来保存 JSON 数据的序列化形式，
-该 JSON 也遵从 `~/.docker/config.json` 文件的格式规则，而后者是
-`~/.dockercfg` 的新版本格式。
-使用此 Secret 类型时，Secret 对象的 `data` 字段必须包含 `.dockerconfigjson`
-键，其键值为 base64 编码的字符串包含 `~/.docker/config.json` 文件的内容。
-
-下面是一个 `kubernetes.io/dockercfg` 类型 Secret 的示例：
-
-```yaml
-apiVersion: v1
-kind: Secret
-metadata:
-  name: secret-dockercfg
-type: kubernetes.io/dockercfg
-data:
-  .dockercfg: |
-    "<base64 encoded ~/.dockercfg file>"
-```
-
-{{< note >}}
-<!--
-If you do not want to perform the base64 encoding, you can choose to use the
-`stringData` field instead.
--->
-如果你不希望执行 base64 编码转换，可以使用 `stringData` 字段代替。
-{{< /note >}}
-
-<!--
-When you create these types of Secrets using a manifest, the API
-server checks whether the expected key does exists in the `data` field, and
-it verifies if the value provided can be parsed as a valid JSON. The API
-server doesn't validate if the JSON actually is a Docker config file.
-
-When you do not have a Docker config file, or you want to use `kubectl`
-to create a Docker registry Secret, you can do:
--->
-当你使用清单文件来创建这两类 Secret 时，API 服务器会检查 `data` 字段中是否
-存在所期望的主键，并且验证其中所提供的键值是否是合法的 JSON 数据。
-不过，API 服务器不会检查 JSON 数据本身是否是一个合法的 Docker 配置文件内容。
-
-```shell
-kubectl create secret docker-registry secret-tiger-docker \
-  --docker-username=tiger \
-  --docker-password=pass113 \
-  --docker-email=tiger@acme.com
-```
-
-<!--
-This command creates a Secret of type `kubernetes.io/dockerconfigjson`.
-If you dump the `.dockerconfigjson` content from the `data` field, you will
-get the following JSON content which is a valid Docker configuration created
-on the fly:
--->
-上面的命令创建一个类型为 `kubernetes.io/dockerconfigjson` 的 Secret。
-如果你对 `data` 字段中的 `.dockerconfigjson` 内容进行转储，你会得到下面的
-JSON 内容，而这一内容是一个合法的 Docker 配置文件。
-
-```json
-{
-  "auths": {
-    "https://index.docker.io/v1/": {
-      "username": "tiger",
-      "password": "pass113",
-      "email": "tiger@acme.com",
-      "auth": "dGlnZXI6cGFzczExMw=="
-    }
-  }
-}
-```
-
-<!--
-### Basic authentication Secret
-
-The `kubernetes.io/basic-auth` type is provided for storing credentials needed
-for basic authentication. When using this Secret type, the `data` field of the
-Secret must contain the following two keys:
-
-- `username`: the user name for authentication;
-- `password`: the password or token for authentication.
--->
-### 基本身份认证 Secret  {#basic-authentication-secret}
-
-`kubernetes.io/basic-auth` 类型用来存放用于基本身份认证所需的凭据信息。
-使用这种 Secret 类型时，Secret 的 `data` 字段必须包含以下两个键：
-
-- `username`: 用于身份认证的用户名；
-- `password`: 用于身份认证的密码或令牌。
-
-<!--
-Both values for the above two keys are base64 encoded strings. You can, of
-course, provide the clear text content using the `stringData` for Secret
-creation.
-
-The following YAML is an example config for a basic authentication Secret:
--->
-以上两个键的键值都是 base64 编码的字符串。
-当然你也可以在创建 Secret 时使用 `stringData` 字段来提供明文形式的内容。
-下面的 YAML 是基本身份认证 Secret 的一个示例清单：
-
-```yaml
-apiVersion: v1
-kind: Secret
-metadata:
-  name: secret-basic-auth
-type: kubernetes.io/basic-auth
-stringData:
-  username: admin
-  password: t0p-Secret
-```
-
-<!--
-The basic authentication Secret type is provided only for user's convenience.
-You can create an `Opaque` for credentials used for basic authentication.
-However, using the builtin Secret type helps unify the formats of your credentials
-and the API server does verify if the required keys are provided in a Secret
-configuration.
--->
-提供基本身份认证类型的 Secret 仅仅是出于用户方便性考虑。
-你也可以使用 `Opaque` 类型来保存用于基本身份认证的凭据。
-不过，使用内置的 Secret 类型的有助于对凭据格式进行归一化处理，并且
-API 服务器确实会检查 Secret 配置中是否提供了所需要的主键。
-
-<!--
-### SSH authentication secrets
-
-The builtin type `kubernetes.io/ssh-auth` is provided for storing data used in
-SSH authentication. When using this Secret type, you will have to specify a
-`ssh-privatekey` key-value pair in the `data` (or `stringData`) field.
-as the SSH credential to use.
-
-The following YAML is an example config for a SSH authentication Secret:
--->
-### SSH 身份认证 Secret {#ssh-authentication-secrets}
-
-Kubernetes 所提供的内置类型 `kubernetes.io/ssh-auth` 用来存放 SSH 身份认证中
-所需要的凭据。使用这种 Secret 类型时，你就必须在其 `data` （或 `stringData`）
-字段中提供一个 `ssh-privatekey` 键值对，作为要使用的 SSH 凭据。
-
-下面的 YAML 是一个 SSH 身份认证 Secret 的配置示例：
-
-```yaml
-apiVersion: v1
-kind: Secret
-metadata:
-  name: secret-ssh-auth
-type: kubernetes.io/ssh-auth
-data:
-  # 此例中的实际数据被截断
-  ssh-privatekey: |
-     MIIEpQIBAAKCAQEAulqb/Y ...
-```
-
-<!--
-The SSH authentication Secret type is provided only for user's convenience.
-You can create an `Opaque` for credentials used for SSH authentication.
-However, using the builtin Secret type helps unify the formats of your credentials
-and the API server does verify if the required keys are provided in a Secret
-configuration.
--->
-提供 SSH 身份认证类型的 Secret 仅仅是出于用户方便性考虑。
-你也可以使用 `Opaque` 类型来保存用于 SSH 身份认证的凭据。
-不过，使用内置的 Secret 类型的有助于对凭据格式进行归一化处理，并且
-API 服务器确实会检查 Secret 配置中是否提供了所需要的主键。
-
-<!--
-SSH private keys do not establish trusted communication between an SSH client and
-host server on their own. A secondary means of establishing trust is needed to
-mitigate "man in the middle" attacks, such as a `known_hosts` file added to a
-ConfigMap.
--->
-{{< caution >}}
-SSH 私钥自身无法建立 SSH 客户端与服务器端之间的可信连接。
-需要其它方式来建立这种信任关系，以缓解“中间人（Man In The Middle）”
-攻击，例如向 ConfigMap 中添加一个 `known_hosts` 文件。
-{{< /caution >}}
-
-<!--
-### TLS secrets
-
-Kubernetes provides a builtin Secret type `kubernetes.io/tls` for storing
-a certificate and its associated key that are typically used for TLS . This
-data is primarily used with TLS termination of the Ingress resource, but may
-be used with other resources or directly by a workload.
-When using this type of Secret, the `tls.key` and the `tls.crt` key must be provided
-in the `data` (or `stringData`) field of the Secret configuration, although the API
-server doesn't actually validate the values for each key.
-
-The following YAML contains an example config for a TLS Secret:
--->
-### TLS Secret
-
-Kubernetes 提供一种内置的 `kubernetes.io/tls` Secret 类型，用来存放证书
-及其相关密钥（通常用在 TLS 场合）。
-此类数据主要提供给 Ingress 资源，用以终结 TLS 链接，不过也可以用于其他
-资源或者负载。当使用此类型的 Secret 时，Secret 配置中的 `data` （或
-`stringData`）字段必须包含 `tls.key` 和 `tls.crt` 主键，尽管 API 服务器
-实际上并不会对每个键的取值作进一步的合法性检查。
-
-下面的 YAML 包含一个 TLS Secret 的配置示例：
-
-```yaml
-apiVersion: v1
-kind: Secret
-metadata:
-  name: secret-tls
-type: kubernetes.io/tls
-data:
-  # 此例中的数据被截断
-  tls.crt: |
-    MIIC2DCCAcCgAwIBAgIBATANBgkqh ...
-  tls.key: |
-    MIIEpgIBAAKCAQEA7yn3bRHQ5FHMQ ...
-```
-
-<!--
-The TLS Secret type is provided for user's convenience. You can create an `Opaque`
-for credentials used for TLS server and/or client. However, using the builtin Secret
-type helps ensure the consistency of Secret format in your project; the API server
-does verify if the required keys are provided in a Secret configuration.
-
-When creating a TLS Secret using `kubectl`, you can use the `tls` subcommand
-as shown in the following example:
--->
-提供 TLS 类型的 Secret 仅仅是出于用户方便性考虑。
-你也可以使用 `Opaque` 类型来保存用于 TLS 服务器与/或客户端的凭据。
-不过，使用内置的 Secret 类型的有助于对凭据格式进行归一化处理，并且
-API 服务器确实会检查 Secret 配置中是否提供了所需要的主键。
-
-当使用 `kubectl` 来创建 TLS Secret 时，你可以像下面的例子一样使用 `tls`
-子命令：
-
-```shell
-kubectl create secret tls my-tls-secret \
-  --cert=path/to/cert/file \
-  --key=path/to/key/file
-```
-
-<!--
-The public/private key pair must exist before hand. The public key certificate
-for `--cert` must be .PEM encoded (Base64-encoded DER format), and match the
-given private key for `--key`.
-The private key must be in what is commonly called PEM private key format,
-unencrypted. In both cases, the initial and the last lines from PEM (for
-example, `--------BEGIN CERTIFICATE-----` and `-------END CERTIFICATE----` for
-a cetificate) are *not* included.
--->
-这里的公钥/私钥对都必须事先已存在。用于 `--cert` 的公钥证书必须是 .PEM 编码的
-（Base64 编码的 DER 格式），且与 `--key` 所给定的私钥匹配。
-私钥必须是通常所说的 PEM 私钥格式，且未加密。对这两个文件而言，PEM 格式数据
-的第一行和最后一行（例如，证书所对应的 `--------BEGIN CERTIFICATE-----` 和
-`-------END CERTIFICATE----`）都不会包含在其中。
-<!--
-### Bootstrap token Secrets
-
-A bootstrap token Secret can be created by explicitly specifying the Secret
-`type` to `bootstrap.kubernetes.io/token`. This type of Secret is designed for
-tokens used during the node bootstrap process. It stores tokens used to sign
-well known ConfigMaps.
--->
-### 启动引导令牌 Secret  {#bootstrap-token-secrets}
-
-通过将 Secret 的 `type` 设置为 `bootstrap.kubernetes.io/token` 可以创建
-启动引导令牌类型的 Secret。这种类型的 Secret 被设计用来支持节点的启动引导过程。
-其中包含用来为周知的 ConfigMap 签名的令牌。
-
-<!--
-A bootstrap token Secret is usually created in the `kube-system` namespace and
-named in the form `bootstrap-token-<token-id>` where `<token-id>` is a 6 character
-string of the token ID.
-
-As a Kubernetes manifest, a bootstrap token Secret might look like the
-following:
--->
-启动引导令牌 Secret 通常创建于 `kube-system` 名字空间内，并以
-`bootstrap-token-<令牌 ID>` 的形式命名；其中 `<令牌 ID>` 是一个由 6 个字符组成
-的字符串，用作令牌的标识。
-
-以 Kubernetes 清单文件的形式，某启动引导令牌 Secret 可能看起来像下面这样：
-
-```yaml
-apiVersion: v1
-kind: Secret
-metadata:
-  name: bootstrap-token-5emitj
-  namespace: kube-system
-type: bootstrap.kubernetes.io/token
-data:
-  auth-extra-groups: c3lzdGVtOmJvb3RzdHJhcHBlcnM6a3ViZWFkbTpkZWZhdWx0LW5vZGUtdG9rZW4=
-  expiration: MjAyMC0wOS0xM1QwNDozOToxMFo=
-  token-id: NWVtaXRq
-  token-secret: a3E0Z2lodnN6emduMXAwcg==
-  usage-bootstrap-authentication: dHJ1ZQ==
-  usage-bootstrap-signing: dHJ1ZQ==
-```
-
-<!--
-A bootstrap type has the following keys specified under `data`:
-
-- `token-id`: A random 6 character string as the token identifier. Required.
-- `token-secret`: A random 16 character string as the actual token secret. Required.
-- `description1`: A human-readable string that describes what the token is
-  used for. Optional.
-- `expiration`: An absolute UTC time using RFC3339 specifying when the token
-  should be expired. Optional.
-- `usage-bootstrap-<usage>`: A boolean flag indicating additional usage for
-  the bootstrap token.
-- `auth-extra-groups`: A comma-separated list of group names that will be
-  authenticated as in addition to the `system:bootstrappers` group.
--->
-启动引导令牌类型的 Secret 会在 `data` 字段中包含如下主键：
-
-- `token-id`：由 6 个随机字符组成的字符串，作为令牌的标识符。必需。
-- `token-secret`：由 16 个随机字符组成的字符串，包含实际的令牌机密。必需。
-- `description`：供用户阅读的字符串，描述令牌的用途。可选。
-- `expiration`：一个使用 RFC3339 来编码的 UTC 绝对时间，给出令牌要过期的时间。可选。
-- `usage-bootstrap-<usage>`：布尔类型的标志，用来标明启动引导令牌的其他用途。
-- `auth-extra-groups`：用逗号分隔的组名列表，身份认证时除被认证为
-  `system:bootstrappers` 组之外，还会被添加到所列的用户组中。
-
-<!--
-The above YAML may look confusing because the values are all in base64 encoded
-strings. In fact, you can create an identical Secret using the following YAML:
-
-```yaml
-apiVersion: v1
-kind: Secret
-metadata:
-  # Note how the Secret is named
-  name: bootstrap-token-5emitj
-  # A bootstrap token Secret usually resides in the kube-system namespace
-  namespace: kube-system
-type: bootstrap.kubernetes.io/token
-stringData:
-  auth-extra-groups: "system:bootstrappers:kubeadm:default-node-token"
-  expiration: "2020-09-13T04:39:10Z"
-  # This token ID is used in the name
-  token-id: "5emitj"
-  token-secret: "kq4gihvszzgn1p0r"
-  # This token can be used for authentication
-  usage-bootstrap-authentication: "true"
-  # and it can be used for signing
-  usage-bootstrap-signing: "true"
-```
--->
-上面的 YAML 文件可能看起来令人费解，因为其中的数值均为 base64 编码的字符串。
-实际上，你完全可以使用下面的 YAML 来创建一个一模一样的 Secret：
-
-```yaml
-apiVersion: v1
-kind: Secret
-metadata:
-  # 注意 Secret 的命名方式
-  name: bootstrap-token-5emitj
-  # 启动引导令牌 Secret 通常位于 kube-system 名字空间
-  namespace: kube-system
-type: bootstrap.kubernetes.io/token
-stringData:
-  auth-extra-groups: "system:bootstrappers:kubeadm:default-node-token"
-  expiration: "2020-09-13T04:39:10Z"
-  # 此令牌 ID 被用于生成 Secret 名称
-  token-id: "5emitj"
-  token-secret: "kq4gihvszzgn1p0r"
-  # 此令牌还可用于 authentication （身份认证）
-  usage-bootstrap-authentication: "true"
-  # 且可用于 signing （证书签名）
-  usage-bootstrap-signing: "true"
-```
-
-<!--
-## Creating a Secret
-
-There are several options to create a Secret:
-
-- [create Secret using `kubectl` command](/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
-- [create Secret from config file](/docs/tasks/configmap-secret/managing-secret-using-config-file/)
-- [create Secret using kustomize](/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
--->
-## 创建 Secret {#creating-a-secret}
-
-有几种不同的方式来创建 Secret：
-
-- [使用 `kubectl` 命令创建 Secret](/zh/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
-- [使用配置文件来创建 Secret](/zh/docs/tasks/configmap-secret/managing-secret-using-config-file/)
-- [使用 kustomize 来创建 Secret](/zh/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
-
-<!--
-## Editing a Secret
-
-An existing Secret may be edited with the following command:
--->
-## 编辑 Secret  {#editing-a-secret}
-
-你可以通过下面的命令编辑现有的 Secret：
-
-```shell
-kubectl edit secrets mysecret
-```
-
-<!--
-This will open the default configured editor and allow for updating the base64 encoded Secret values in the `data` field:
--->
-这一命令会打开默认的编辑器，允许你更新 `data` 字段中包含的
-base64 编码的 Secret 值：
-
-```yaml
-# Please edit the object below. Lines beginning with a '#' will be ignored,
-# and an empty file will abort the edit. If an error occurs while saving this file will be
-# reopened with the relevant failures.
-#
-apiVersion: v1
-data:
-  username: YWRtaW4=
-  password: MWYyZDFlMmU2N2Rm
-kind: Secret
-metadata:
-  annotations:
-    kubectl.kubernetes.io/last-applied-configuration: { ... }
-  creationTimestamp: 2016-01-22T18:41:56Z
-  name: mysecret
-  namespace: default
-  resourceVersion: "164619"
-  uid: cfee02d6-c137-11e5-8d73-42010af00002
-type: Opaque
-```
-
-<!--
-## Using Secrets
-
-Secrets can be mounted as data volumes or be exposed as
-{{< glossary_tooltip text="environment variables" term_id="container-env-variables" >}}
-to be used by a container in a pod.  They can also be used by other parts of the
-system, without being directly exposed to the pod.  For example, they can hold
-credentials that other parts of the system should use to interact with external
-systems on your behalf.
--->
-## 使用 Secret  {#using-secrets}
-
-Secret 可以作为数据卷被挂载，或作为{{< glossary_tooltip text="环境变量" term_id="container-env-variables" >}}
-暴露出来以供 Pod 中的容器使用。它们也可以被系统的其他部分使用，而不直接暴露在 Pod 内。
-例如，它们可以保存凭据，系统的其他部分将用它来代表你与外部系统进行交互。
-
-<!--
-### Using Secrets as Files from a Pod
-
-To consume a Secret in a volume in a Pod:
-
-1. Create a secret or use an existing one.  Multiple pods can reference the same secret.
-1. Modify your Pod definition to add a volume under `.spec.volumes[]`.  Name the volume anything, and have a `.spec.volumes[].secret.secretName` field equal to the name of the secret object.
-1. Add a `.spec.containers[].volumeMounts[]` to each container that needs the secret.  Specify `.spec.containers[].volumeMounts[].readOnly = true` and `.spec.containers[].volumeMounts[].mountPath` to an unused directory name where you would like the secrets to appear.
-1. Modify your image and/or command line so that the program looks for files in that directory.  Each key in the secret `data` map becomes the filename under `mountPath`.
-
-This is an example of a pod that mounts a secret in a volume:
--->
-
-### 在 Pod 中使用 Secret 文件   {#using-secrets-as-files-from-a-pod}
-
-在 Pod 中使用存放在卷中的 Secret：
-
-1. 创建一个 Secret 或者使用已有的 Secret。多个 Pod 可以引用同一个 Secret。
-1. 修改你的 Pod 定义，在 `spec.volumes[]` 下增加一个卷。可以给这个卷随意命名，
-   它的 `spec.volumes[].secret.secretName` 必须是 Secret 对象的名字。
-1. 将 `spec.containers[].volumeMounts[]` 加到需要用到该 Secret 的容器中。
-   指定 `spec.containers[].volumeMounts[].readOnly = true` 和
-   `spec.containers[].volumeMounts[].mountPath` 为你想要该 Secret 出现的尚未使用的目录。
-1. 修改你的镜像并且／或者命令行，让程序从该目录下寻找文件。
-   Secret 的 `data` 映射中的每一个键都对应 `mountPath` 下的一个文件名。
-
-这是一个在 Pod 中使用存放在挂载卷中 Secret 的例子：
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: mypod
-spec:
-  containers:
-  - name: mypod
-    image: redis
-    volumeMounts:
-    - name: foo
-      mountPath: "/etc/foo"
-      readOnly: true
-  volumes:
-  - name: foo
-    secret:
-      secretName: mysecret
-```
-
-<!--
-Each secret you want to use needs to be referred to in `.spec.volumes`.
-
-If there are multiple containers in the pod, then each container needs its
-own `volumeMounts` block, but only one `.spec.volumes` is needed per secret.
-
-You can package many files into one secret, or use many secrets, whichever is convenient.
-
-#### Projection of Secret keys to specific paths
-
-We can also control the paths within the volume where Secret keys are projected.
-You can use `.spec.volumes[].secret.items` field to change target path of each key:
--->
-您想要用的每个 Secret 都需要在 `spec.volumes` 中引用。
-
-如果 Pod 中有多个容器，每个容器都需要自己的 `volumeMounts` 配置块，
-但是每个 Secret 只需要一个 `spec.volumes`。
-
-您可以打包多个文件到一个 Secret 中，或者使用的多个 Secret，怎样方便就怎样来。
-
-#### 将 Secret 键名映射到特定路径
-
-我们还可以控制 Secret 键名在存储卷中映射的的路径。
-你可以使用 `spec.volumes[].secret.items` 字段修改每个键对应的目标路径：
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: mypod
-spec:
-  containers:
-  - name: mypod
-    image: redis
-    volumeMounts:
-    - name: foo
-      mountPath: "/etc/foo"
-      readOnly: true
-  volumes:
-  - name: foo
-    secret:
-      secretName: mysecret
-      items:
-      - key: username
-        path: my-group/my-username
-```
-
-<!--
-What will happen:
-
-* `username` secret is stored under `/etc/foo/my-group/my-username` file instead of `/etc/foo/username`.
-* `password` secret is not projected
-
-If `.spec.volumes[].secret.items` is used, only keys specified in `items` are projected.
-To consume all keys from the secret, all of them must be listed in the `items` field.
-All listed keys must exist in the corresponding secret. Otherwise, the volume is not created.
-
-#### Secret files permissions
-
-You can also specify the permission mode bits files part of a secret will have.
-If you don't specify any, `0644` is used by default. You can specify a default
-mode for the whole secret volume and override per key if needed.
-
-For example, you can specify a default mode like this:
--->
-将会发生什么呢：
-
-- `username` Secret 存储在 `/etc/foo/my-group/my-username` 文件中而不是 `/etc/foo/username` 中。
-- `password` Secret 没有被映射
-
-如果使用了 `spec.volumes[].secret.items`，只有在 `items` 中指定的键会被映射。
-要使用 Secret 中所有键，就必须将它们都列在 `items` 字段中。
-所有列出的键名必须存在于相应的 Secret 中。否则，不会创建卷。
-
-#### Secret 文件权限
-
-你还可以指定 Secret 将拥有的权限模式位。如果不指定，默认使用 `0644`。
-你可以为整个 Secret 卷指定默认模式；如果需要，可以为每个密钥设定重载值。
-
-例如，您可以指定如下默认模式：
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: mypod
-spec:
-  containers:
-  - name: mypod
-    image: redis
-    volumeMounts:
-    - name: foo
-      mountPath: "/etc/foo"
-  volumes:
-  - name: foo
-    secret:
-      secretName: mysecret
-      defaultMode: 256
-```
-
-<!--
-Then, the secret will be mounted on `/etc/foo` and all the files created by the
-secret volume mount will have permission `0400`.
-
-Note that the JSON spec doesn't support octal notation, so use the value 256 for
-0400 permissions. If you use yaml instead of json for the pod, you can use octal
-notation to specify permissions in a more natural way.
--->
-之后，Secret 将被挂载到 `/etc/foo` 目录，而所有通过该 Secret 卷挂载
-所创建的文件的权限都是 `0400`。
-
-请注意，JSON 规范不支持八进制符号，因此使用 256 值作为 0400 权限。
-如果你使用 YAML 而不是 JSON，则可以使用八进制符号以更自然的方式指定权限。
-
-<!--
-Note if you `kubectl exec` into the Pod, you need to follow the symlink to find
-the expected file mode. For example,
-
-Check the secrets file mode on the pod.
--->
-注意，如果你通过 `kubectl exec` 进入到 Pod 中，你需要沿着符号链接来找到
-所期望的文件模式。例如，下面命令检查 Secret 文件的访问模式：
-
-```shell
-kubectl exec mypod -it sh
-
-cd /etc/foo
-ls -l
-```
-
-<!--
-The output is similar to this:
--->
-输出类似于：
-
-```
-total 0
-lrwxrwxrwx 1 root root 15 May 18 00:18 password -> ..data/password
-lrwxrwxrwx 1 root root 15 May 18 00:18 username -> ..data/username
-```
-
-<!--
-Follow the symlink to find the correct file mode.
--->
-沿着符号链接，可以查看文件的访问模式：
-
-```shell
-cd /etc/foo/..data
-ls -l
-```
-
-<!--
-The output is similar to this:
--->
-输出类似于：
-
-```
-total 8
--r-------- 1 root root 12 May 18 00:18 password
--r-------- 1 root root  5 May 18 00:18 username
-```
-
-<!--
-You can also use mapping, as in the previous example, and specify different
-permission for different files like this:
--->
-
-你还可以使用映射，如上一个示例，并为不同的文件指定不同的权限，如下所示：
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: mypod
-spec:
-  containers:
-  - name: mypod
-    image: redis
-    volumeMounts:
-    - name: foo
-      mountPath: "/etc/foo"
-  volumes:
-  - name: foo
-    secret:
-      secretName: mysecret
-      items:
-      - key: username
-        path: my-group/my-username
-        mode: 511
-```
-
-<!--
-In this case, the file resulting in `/etc/foo/my-group/my-username` will have
-permission value of `0777`. Owing to JSON limitations, you must specify the mode
-in decimal notation, `511`.
-
-Note that this permission value might be displayed in decimal notation if you
-read it later.
-
-#### Consuming Secret Values from Volumes
-
-Inside the container that mounts a secret volume, the secret keys appear as
-files and the secret values are base-64 decoded and stored inside these files.
-This is the result of commands
-executed inside the container from the example above:
--->
-在这里，位于 `/etc/foo/my-group/my-username` 的文件的权限值为 `0777`。
-由于 JSON 限制，必须以十进制格式指定模式，即 `511`。
-
-请注意，如果稍后读取此权限值，可能会以十进制格式显示。
-
-#### 使用来自卷中的 Secret 值   {#consuming-secret-values-from-volumes} 
-
-在挂载了 Secret 卷的容器内，Secret 键名显示为文件名，并且 Secret 的值
-使用 base-64 解码后存储在这些文件中。
-这是在上面的示例容器内执行的命令的结果：
-
-```shell
-ls /etc/foo/
-```
-
-<!-- The output is similar to: -->
-输出类似于：
-
-```
-username
-password
-```
-
-```shell
-cat /etc/foo/username
-```
-
-<!-- The output is similar to: -->
-输出类似于：
-
-```
-admin
-```
-
-```shell
-cat /etc/foo/password
-```
-
-<!-- The output is similar to: -->
-输出类似于：
-
-```
-1f2d1e2e67df
-```
-
-<!--
-The program in a container is responsible for reading the secrets from the
-files.
--->
-容器中的程序负责从文件中读取 secret。
-
-<!--
-#### Mounted Secrets are updated automatically
-
-When a secret being already consumed in a volume is updated, projected keys are eventually updated as well.
-Kubelet is checking whether the mounted secret is fresh on every periodic sync.
-However, it is using its local cache for getting the current value of the Secret.
-
-The type of the cache is configurable using the  (`ConfigMapAndSecretChangeDetectionStrategy` field in
-the [KubeletConfiguration struct](/docs/reference/config-api/kubelet-config.v1beta1/).
-A Secret can be either propagated by watch (default), ttl-based, or by redirecting
-all requests to directly kube-apiserver.
-As a result, the total delay from the moment when the Secret is updated to the moment
-when new keys are projected to the Pod can be as long as kubelet sync period + cache
-propagation delay, where cache propagation delay depends on the chosen cache type
-(it equals to watch propagation delay, ttl of cache, or zero corespondingly).
--->
-#### 挂载的 Secret 会被自动更新
-
-当已经存储于卷中被使用的 Secret 被更新时，被映射的键也将终将被更新。
-组件 kubelet 在周期性同步时检查被挂载的 Secret 是不是最新的。
-但是，它会使用其本地缓存的数值作为 Secret 的当前值。
-
-缓存的类型可以使用 [KubeletConfiguration 结构](/zh/docs/reference/config-api/kubelet-config.v1beta1/)
-中的 `ConfigMapAndSecretChangeDetectionStrategy` 字段来配置。
-它可以通过 watch 操作来传播（默认），基于 TTL 来刷新，也可以
-将所有请求直接重定向到 API 服务器。
-因此，从 Secret 被更新到将新 Secret 被投射到 Pod 的那一刻的总延迟可能与
-kubelet 同步周期 + 缓存传播延迟一样长，其中缓存传播延迟取决于所选的缓存类型。
-对应于不同的缓存类型，该延迟或者等于 watch 传播延迟，或者等于缓存的 TTL，
-或者为 0。
-
-<!--
-A container using a Secret as a
-[subPath](/docs/concepts/storage/volumes#using-subpath) volume mount will not receive
-Secret updates.
--->
-{{< note >}}
-使用 Secret 作为[子路径](/zh/docs/concepts/storage/volumes#using-subpath)卷挂载的容器
-不会收到 Secret 更新。
-{{< /note >}}
-
-<!--
-### Using Secrets as environment variables
-
-To use a secret in an {{< glossary_tooltip text="environment variable" term_id="container-env-variables" >}}
-in a Pod:
-
-1. Create a secret or use an existing one.  Multiple Pods can reference the same secret.
-1. Modify your Pod definition in each container that you wish to consume the value of a secret key to add an environment variable for each secret key you wish to consume. The environment variable that consumes the secret key should populate the secret's name and key in `env[].valueFrom.secretKeyRef`.
-1. Modify your image and/or command line so that the program looks for values in the specified environment variables.
-
-This is an example of a Pod that uses secrets from environment variables:
--->
-#### 以环境变量的形式使用 Secrets   {#using-secrets-as-environment-variables}
-
-将 Secret 作为 Pod 中的{{< glossary_tooltip text="环境变量" term_id="container-env-variables" >}}使用：
-
-1. 创建一个 Secret 或者使用一个已存在的 Secret。多个 Pod 可以引用同一个 Secret。
-1. 修改 Pod 定义，为每个要使用 Secret 的容器添加对应 Secret 键的环境变量。
-   使用 Secret 键的环境变量应在 `env[x].valueFrom.secretKeyRef` 中指定
-   要包含的 Secret 名称和键名。
-1. 更改镜像并／或者命令行，以便程序在指定的环境变量中查找值。
-
-这是一个使用来自环境变量中的 Secret 值的 Pod 示例：
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: secret-env-pod
-spec:
-  containers:
-  - name: mycontainer
-    image: redis
-    env:
-      - name: SECRET_USERNAME
-        valueFrom:
-          secretKeyRef:
-            name: mysecret
-            key: username
-      - name: SECRET_PASSWORD
-        valueFrom:
-          secretKeyRef:
-            name: mysecret
-            key: password
-  restartPolicy: Never
-```
-
-<!--
-#### Consuming Secret Values from environment variables
-
-Inside a container that consumes a secret in the environment variables, the secret keys appear as
-normal environment variables containing the base64 decoded values of the secret data.
-This is the result of commands executed inside the container from the example above:
--->
-#### 使用来自环境变量的 Secret 值 {#consuming-secret-values-from-environment-variables}
-
-在一个以环境变量形式使用 Secret 的容器中，Secret 键表现为常规的环境变量，其中
-包含 Secret 数据的 base-64 解码值。这是从上面的示例在容器内执行的命令的结果：
-
-```shell
-echo $SECRET_USERNAME
-```
-
-<!--
-The output is similar to:
--->
-输出类似于：
-
-```
-admin
-```
-
-```shell
-echo $SECRET_PASSWORD
-```
-
-<!--
-The output is similar to:
--->
-输出类似于：
-
-```
-1f2d1e2e67df
-```
-
-<!--
-#### Environment variables are not updated after a secret update
-
-If a container already consumes a Secret in an environment variable, a Secret update will not be seen by the container unless it is restarted.
-There are third party solutions for triggering restarts when secrets change.
--->
-#### Secret 更新之后对应的环境变量不会被更新
-
-如果某个容器已经在通过环境变量使用某 Secret，对该 Secret 的更新不会被
-容器马上看见，除非容器被重启。有一些第三方的解决方案能够在 Secret 发生
-变化时触发容器重启。
-
-<!--
-## Immutable Secrets {#secret-immutable}
--->
-## 不可更改的 Secret {#secret-immutable}
-
-{{< feature-state for_k8s_version="v1.21" state="stable" >}}
-
-<!--
-The Kubernetes feature _Immutable Secrets and ConfigMaps_ provides an option to set
-individual Secrets and ConfigMaps as immutable. For clusters that extensively use Secrets
-(at least tens of thousands of unique Secret to Pod mounts), preventing changes to their
-data has the following advantages:
-
-- protects you from accidental (or unwanted) updates that could cause applications outages
-- improves performance of your cluster by significantly reducing load on kube-apiserver, by
-closing watches for secrets marked as immutable.
--->
-Kubernetes 的特性 _不可变的 Secret 和 ConfigMap_ 提供了一种可选配置，
-可以设置各个 Secret 和 ConfigMap 为不可变的。
-对于大量使用 Secret 的集群（至少有成千上万各不相同的 Secret 供 Pod 挂载），
-禁止变更它们的数据有下列好处：
-
-- 防止意外（或非预期的）更新导致应用程序中断
-- 通过将 Secret 标记为不可变来关闭 kube-apiserver 对其的监视，从而显著降低
-  kube-apiserver 的负载，提升集群性能。
-
-<!--
-This feature is controlled by the `ImmutableEphemeralVolumes`
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/),
-which is enabled by default since v1.19. You can create an immutable
-Secret by setting the `immutable` field to `true`. For example,
--->
-这个特性通过 `ImmutableEmphemeralVolumes`
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
-来控制，从 v1.19 开始默认启用。
-你可以通过将 Secret 的 `immutable` 字段设置为 `true` 创建不可更改的 Secret。
-例如：
-
-```yaml
-apiVersion: v1
-kind: Secret
-metadata:
-  ...
-data:
-  ...
-immutable: true
-```
-
-{{< note >}}
-<!--
-Once a Secret or ConfigMap is marked as immutable, it is _not_ possible to revert this change
-nor to mutate the contents of the `data` field. You can only delete and recreate the Secret.
-Existing Pods maintain a mount point to the deleted Secret - it is recommended to recreate
-these pods.
--->
-一旦一个 Secret 或 ConfigMap 被标记为不可更改，撤销此操作或者更改 `data` 字段的内容都是 _不_ 可能的。
-只能删除并重新创建这个 Secret。现有的 Pod 将维持对已删除 Secret 的挂载点 - 建议重新创建这些 Pod。
-{{< /note >}}
-
-<!--
-### Using imagePullSecrets
-
-The `imagePullSecrets` field is a list of references to secrets in the same namespace.
-You can use an `imagePullSecrets` to pass a secret that contains a Docker (or other) image registry
-password to the kubelet. The kubelet uses this information to pull a private image on behalf of your Pod.
-See the [PodSpec API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core) for more information about the `imagePullSecrets` field.
-
-#### Manually specifying an imagePullSecret
-
-You can learn how to specify `ImagePullSecrets` from the [container images documentation](/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod).
--->
-#### 使用 imagePullSecret  {#using-imagepullsecrets}
-
-`imagePullSecrets` 字段中包含一个列表，列举对同一名字空间中的 Secret 的引用。
-你可以使用 `imagePullSecrets` 将包含 Docker（或其他）镜像仓库密码的 Secret 传递给
-kubelet。kubelet 使用此信息来替你的 Pod 拉取私有镜像。
-关于 `imagePullSecrets` 字段的更多信息，请参考
-[PodSpec API](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core) 文档。
-
-#### 手动指定 imagePullSecret
-
-你可以阅读[容器镜像文档](/zh/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod)
-以了解如何设置 `imagePullSecrets`。
-
-<!--
-### Arranging for imagePullSecrets to be Automatically Attached
-
-You can manually create an imagePullSecret, and reference it from
-a serviceAccount.  Any pods created with that serviceAccount
-or that default to use that serviceAccount, will get their imagePullSecret
-field set to that of the service account.
-See [Add ImagePullSecrets to a service account](/docs/tasks/configure-pod-container/configure-service-account/#add-imagepullsecrets-to-a-service-account)
- for a detailed explanation of that process.
- -->
-#### 设置自动附加 imagePullSecrets 
-
-您可以手动创建 `imagePullSecret`，并在 ServiceAccount 中引用它。
-使用该 ServiceAccount 创建的任何 Pod 和默认使用该 ServiceAccount 的
-Pod 将会将其的 imagePullSecret 字段设置为服务帐户的 imagePullSecret 值。
-有关该过程的详细说明，请参阅
-[将 ImagePullSecrets 添加到服务帐户](/zh/docs/tasks/configure-pod-container/configure-service-account/#adding-imagepullsecrets-to-a-service-account)。
-
-
-<!--
-## Details
-
-### Restrictions
-
-Secret volume sources are validated to ensure that the specified object
-reference actually points to an object of type Secret. Therefore, a secret
-needs to be created before any pods that depend on it.
-
-Secret API objects reside in a {{< glossary_tooltip text="namespace" term_id="namespace" >}}.
-They can only be referenced by pods in that same namespace.
--->
-## 详细说明   {#details}
-
-### 限制   {#restrictions}
-
-Kubernetes 会验证 Secret 作为卷来源时所给的对象引用确实指向一个类型为
-Secret 的对象。因此，Secret 需要先于任何依赖于它的 Pod 创建。
-
-Secret API 对象处于某{{< glossary_tooltip text="名字空间" term_id="namespace" >}}
-中。它们只能由同一命名空间中的 Pod 引用。
-
-<!--
-Individual secrets are limited to 1MiB in size.  This is to discourage creation
-of very large secrets which would exhaust apiserver and kubelet memory.
-However, creation of many smaller secrets could also exhaust memory.  More
-comprehensive limits on memory usage due to secrets is a planned feature.
-
-Kubelet only supports use of secrets for Pods it gets from the API server.
-This includes any pods created using kubectl, or indirectly via a replication
-controller.  It does not include pods created via the kubelets
-`--manifest-url` flag, its `--config` flag, or its REST API (these are
-not common ways to create pods.)
--->
-每个 Secret 的大小限制为 1MB。这是为了防止创建非常大的 Secret 导致 API 服务器
-和 kubelet 的内存耗尽。然而，创建过多较小的 Secret 也可能耗尽内存。
-更全面得限制 Secret 内存用量的功能还在计划中。
-
-kubelet 仅支持从 API 服务器获得的 Pod 使用 Secret。
-这包括使用 `kubectl` 创建的所有 Pod，以及间接通过副本控制器创建的 Pod。
-它不包括通过 kubelet `--manifest-url` 标志，`--config` 标志或其 REST API
-创建的 Pod（这些不是创建 Pod 的常用方法）。
-
-<!--
-Secrets must be created before they are consumed in pods as environment
-variables unless they are marked as optional.  References to Secrets that do
-not exist will prevent the pod from starting.
-
-References via `secretKeyRef` to keys that do not exist in a named Secret
-will prevent the pod from starting.
-
-Secrets used to populate environment variables via `envFrom` that have keys
-that are considered invalid environment variable names will have those keys
-skipped.  The pod will be allowed to start.  There will be an event whose
-reason is `InvalidVariableNames` and the message will contain the list of
-invalid keys that were skipped. The example shows a pod which refers to the
-default/mysecret that contains 2 invalid keys, 1badkey and 2alsobad.
--->
-以环境变量形式在 Pod 中使用 Secret 之前必须先创建
-Secret，除非该环境变量被标记为可选的。
-Pod 中引用不存在的 Secret 时将无法启动。
-
-使用 `secretKeyRef` 时，如果引用了指定 Secret 不存在的键，对应的 Pod 也无法启动。
-
-对于通过 `envFrom` 填充环境变量的 Secret，如果 Secret 中包含的键名无法作为
-合法的环境变量名称，对应的键会被跳过，该 Pod 将被允许启动。
-不过这时会产生一个事件，其原因为 `InvalidVariableNames`，其消息中包含被跳过的无效键的列表。
-下面的示例显示一个 Pod，它引用了包含 2 个无效键 1badkey 和 2alsobad。
-
-```shell
-kubectl get events
-```
-
-<!--The output is similar to:-->
-输出类似于：
-
-```
-LASTSEEN   FIRSTSEEN   COUNT     NAME            KIND      SUBOBJECT                         TYPE      REASON
-0s         0s          1         dapi-test-pod   Pod                                         Warning   InvalidEnvironmentVariableNames   kubelet, 127.0.0.1      Keys [1badkey, 2alsobad] from the EnvFrom secret default/mysecret were skipped since they are considered invalid environment variable names.
-```
-
-<!--
-### Secret and Pod Lifetime interaction
-
-When a pod is created via the API, there is no check whether a referenced
-secret exists.  Once a pod is scheduled, the kubelet will try to fetch the
-secret value.  If the secret cannot be fetched because it does not exist or
-because of a temporary lack of connection to the API server, kubelet will
-periodically retry.  It will report an event about the pod explaining the
-reason it is not started yet.  Once the secret is fetched, the kubelet will
-create and mount a volume containing it.  None of the pod's containers will
-start until all the pod's volumes are mounted.
--->
-### Secret 与 Pod 生命周期的关系
-
-通过 API 创建 Pod 时，不会检查引用的 Secret 是否存在。一旦 Pod 被调度，kubelet
-就会尝试获取该 Secret 的值。如果获取不到该 Secret，或者暂时无法与 API 服务器建立连接，
-kubelet 将会定期重试。kubelet 将会报告关于 Pod 的事件，并解释它无法启动的原因。
-一旦获取到 Secret，kubelet 将创建并挂载一个包含它的卷。在 Pod 的所有卷被挂载之前，
-Pod 中的容器不会启动。
-
-<!--
-## Use cases
-
-### Use-Case: As container environment variables
-
--->
-## 使用案例
-
-
-### 案例：以环境变量的形式使用 Secret
-
-<!-- Create a secret -->
-创建一个 Secret 定义：
-
-```yaml
-apiVersion: v1
-kind: Secret
-metadata:
-  name: mysecret
-type: Opaque
-data:
-  USER_NAME: YWRtaW4=
-  PASSWORD: MWYyZDFlMmU2N2Rm
-```
-
-<!-- Create the Secret: -->
-生成 Secret 对象：
-
-```shell
-kubectl apply -f mysecret.yaml
-```
-
-<!--
-Use `envFrom` to define all of the Secret’s data as container environment variables. The key from the Secret becomes the environment variable name in the Pod.
--->
-使用 `envFrom` 将 Secret 的所有数据定义为容器的环境变量。
-Secret 中的键名称为 Pod 中的环境变量名称：
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: secret-test-pod
-spec:
-  containers:
-    - name: test-container
-      image: k8s.gcr.io/busybox
-      command: [ "/bin/sh", "-c", "env" ]
-      envFrom:
-      - secretRef:
-          name: mysecret
-  restartPolicy: Never
-```
-
-<!--
-### Use-Case: Pod with ssh keys
-
-Create a secret containing some ssh keys:
--->
-### 案例：包含 SSH 密钥的 Pod
-
-创建一个包含 SSH 密钥的 Secret：
-
-```shell
-kubectl create secret generic ssh-key-secret \
-  --from-file=ssh-privatekey=/path/to/.ssh/id_rsa \
-  --from-file=ssh-publickey=/path/to/.ssh/id_rsa.pub
-```
-
-<!-- The output is similar to: -->
-输出类似于：
-
-```
-secret "ssh-key-secret" created
-```
-
-<!--
-You can also create a `kustomization.yaml` with a `secretGenerator` field containing ssh keys.
--->
-你也可以创建一个带有包含 SSH 密钥的 `secretGenerator` 字段的
-`kustomization.yaml` 文件。
-
-<!--
-Think carefully before sending your own ssh keys: other users of the cluster may have access to the secret.  Use a service account which you want to be accessible to all the users with whom you share the Kubernetes cluster, and can revoke if they are compromised.
--->
-{{< caution >}}
-发送自己的 SSH 密钥之前要仔细思考：集群的其他用户可能有权访问该密钥。
-你可以使用一个服务帐户，分享给 Kubernetes 集群中合适的用户，这些用户是你要分享的。
-如果服务账号遭到侵犯，可以将其收回。
-{{< /caution >}}
-
-<!--
-Now we can create a pod which references the secret with the ssh key and
-consumes it in a volume:
--->
-现在我们可以创建一个 Pod，令其引用包含 SSH 密钥的 Secret，并通过存储卷来使用它：
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: secret-test-pod
-  labels:
-    name: secret-test
-spec:
-  volumes:
-  - name: secret-volume
-    secret:
-      secretName: ssh-key-secret
-  containers:
-  - name: ssh-test-container
-    image: mySshImage
-    volumeMounts:
-    - name: secret-volume
-      readOnly: true
-      mountPath: "/etc/secret-volume"
-```
-
-<!--
-When the container's command runs, the pieces of the key will be available in:
--->
-容器中的命令运行时，密钥的片段可以在以下目录找到：
-
-```
-/etc/secret-volume/ssh-publickey
-/etc/secret-volume/ssh-privatekey
-```
-
-<!--
-The container is then free to use the secret data to establish an ssh connection.
--->
-然后容器可以自由使用 Secret 数据建立一个 SSH 连接。
-
-<!--
-### Use-Case: Pods with prod / test credentials
-
-This example illustrates a pod which consumes a secret containing prod
-credentials and another pod which consumes a secret with test environment
-credentials.
-
-You can create a `kustomization.yaml` with a `secretGenerator` field or run
-`kubectl create secret`.
-
--->
-### 案例：包含生产/测试凭据的 Pod
-
-下面的例子展示的是两个 Pod。
-一个 Pod 使用包含生产环境凭据的 Secret，另一个 Pod 使用包含测试环境凭据的 Secret。
-
-你可以创建一个带有 `secretGenerator` 字段的 `kustomization.yaml`
-文件，或者执行 `kubectl create secret`：
-
-```shell
-kubectl create secret generic prod-db-secret \
-  --from-literal=username=produser \
-  --from-literal=password=Y4nys7f11
-```
-
-<!--The output is similar to:-->
-输出类似于：
-
-```
-secret "prod-db-secret" created
-```
-
-```shell
-kubectl create secret generic test-db-secret \
-  --from-literal=username=testuser \
-  --from-literal=password=iluvtests
-```
-
-<!--The output is similar to:-->
-输出类似于：
-
-```
-secret "test-db-secret" created
-```
-
-<!--
-Special characters such as `$`, `\`, `*`, `=`, and `!` will be interpreted by your [shell](https://en.wikipedia.org/wiki/Shell_(computing)) and require escaping.
-In most shells, the easiest way to escape the password is to surround it with single quotes (`'`).
-For example, if your actual password is `S!B\*d$zDsb=`, you should execute the command this way:
-You do not need to escape special characters in passwords from files (`--from-file`).
--->
-{{< note >}}
-特殊字符（例如 `$`、`\`、`*`、`=` 和 `!`）会被你的
-[Shell](https://en.wikipedia.org/wiki/Shell_(computing))解释，因此需要转义。
-在大多数 Shell 中，对密码进行转义的最简单方式是用单引号（`'`）将其括起来。
-例如，如果您的实际密码是 `S!B\*d$zDsb`，则应通过以下方式执行命令：
-
-```shell
-kubectl create secret generic dev-db-secret --from-literal=username=devuser --from-literal=password='S!B\*d$zDsb='
-```
-
-您无需对文件中的密码（`--from-file`）中的特殊字符进行转义。
-{{< /note >}}
-
-<!--
-Now make the pods:
--->
-创建 pod ：
-
-```shell
-$ cat <<EOF > pod.yaml
-apiVersion: v1
-kind: List
-items:
-- kind: Pod
-  apiVersion: v1
-  metadata:
-    name: prod-db-client-pod
-    labels:
-      name: prod-db-client
-  spec:
-    volumes:
-    - name: secret-volume
-      secret:
-        secretName: prod-db-secret
-    containers:
-    - name: db-client-container
-      image: myClientImage
-      volumeMounts:
-      - name: secret-volume
-        readOnly: true
-        mountPath: "/etc/secret-volume"
-- kind: Pod
-  apiVersion: v1
-  metadata:
-    name: test-db-client-pod
-    labels:
-      name: test-db-client
-  spec:
-    volumes:
-    - name: secret-volume
-      secret:
-        secretName: test-db-secret
-    containers:
-    - name: db-client-container
-      image: myClientImage
-      volumeMounts:
-      - name: secret-volume
-        readOnly: true
-        mountPath: "/etc/secret-volume"
-EOF
-```
-
-<!--
-Add the pods to the same kustomization.yaml
--->
-将 Pod 添加到同一个 kustomization.yaml 文件
-
-```shell
-$ cat <<EOF >> kustomization.yaml
-resources:
-- pod.yaml
-EOF
-```
-
-<!--
-Apply all those objects on the Apiserver by
--->
-通过下面的命令应用所有对象
-
-```shell
-kubectl apply -k .
-```
-
-<!--
-Both containers will have the following files present on their filesystems with the values for each container's environment:
--->
-两个容器都会在其文件系统上存在以下文件，其中包含容器对应的环境的值：
-
-```
-/etc/secret-volume/username
-/etc/secret-volume/password
-```
-
-<!--
-Note how the specs for the two pods differ only in one field;  this facilitates
-creating pods with different capabilities from a common pod config template.
-
-You could further simplify the base pod specification by using two Service Accounts:
-
-1. `prod-user` with the `prod-db-secret`
-1. `test-user` with the `test-db-secret`
-
-The Pod specification is shortened to:
--->
-请注意，两个 Pod 的规约配置中仅有一个字段不同；这有助于使用共同的 Pod 配置模板创建
-具有不同能力的 Pod。
-
-您可以使用两个服务账号进一步简化基本的 Pod 规约：
-
-1. 名为 `prod-user` 的服务账号拥有  `prod-db-secret`
-1. 名为 `test-user` 的服务账号拥有 `test-db-secret`
-
-然后，Pod 规约可以缩短为：
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: prod-db-client-pod
-  labels:
-    name: prod-db-client
-spec:
-  serviceAccount: prod-db-client
-  containers:
-  - name: db-client-container
-    image: myClientImage
-```
-
-<!--
-### Use-case: Dotfiles in secret volume
-
-You can make your data "hidden" by defining a key that begins with a dot.
-This key represents a dotfile or "hidden" file. For example, when the following secret
-is mounted into a volume, `secret-volume`:
-
--->
-### 案例：Secret 卷中以句点号开头的文件
-
-你可以通过定义以句点开头的键名，将数据“隐藏”起来。
-例如，当如下 Secret 被挂载到 `secret-volume` 卷中：
-
-```yaml
-apiVersion: v1
-kind: Secret
-metadata:
-  name: dotfile-secret
-data:
-  .secret-file: dmFsdWUtMg0KDQo=
----
-apiVersion: v1
-kind: Pod
-metadata:
-  name: secret-dotfiles-pod
-spec:
-  volumes:
-  - name: secret-volume
-    secret:
-      secretName: dotfile-secret
-  containers:
-  - name: dotfile-test-container
-    image: k8s.gcr.io/busybox
-    command:
-    - ls
-    - "-l"
-    - "/etc/secret-volume"
-    volumeMounts:
-    - name: secret-volume
-      readOnly: true
-      mountPath: "/etc/secret-volume"
-```
-
-
-<!--
-The volume will contain a single file, called `.secret-file`, and
-the `dotfile-test-container` will have this file present at the path
-`/etc/secret-volume/.secret-file`.
--->
-卷中将包含唯一的叫做 `.secret-file` 的文件。
-容器 `dotfile-test-container` 中，该文件处于 `/etc/secret-volume/.secret-file` 路径下。
-
-<!--
-Files beginning with dot characters are hidden from the output of  `ls -l`;
-you must use `ls -la` to see them when listing directory contents.
--->
-{{< note >}}
-以点号开头的文件在 `ls -l` 的输出中会被隐藏起来；
-列出目录内容时，必须使用 `ls -la` 才能看到它们。
-{{< /note >}}
-
-<!--
-### Use-case: Secret visible to one container in a pod
-
-Consider a program that needs to handle HTTP requests, do some complex business
-logic, and then sign some messages with an HMAC.  Because it has complex
-application logic, there might be an unnoticed remote file reading exploit in
-the server, which could expose the private key to an attacker.
--->
-### 案例：Secret 仅对 Pod 中的一个容器可见   {#secret-visible-to-only-one-container}
-考虑一个需要处理 HTTP 请求、执行一些复杂的业务逻辑，然后使用 HMAC 签署一些消息的应用。
-因为应用程序逻辑复杂，服务器中可能会存在一个未被注意的远程文件读取漏洞，
-可能会将私钥暴露给攻击者。
-
-<!--
-This could be divided into two processes in two containers: a frontend container
-which handles user interaction and business logic, but which cannot see the
-private key; and a signer container that can see the private key, and responds
-to simple signing requests from the frontend (e.g. over localhost networking).
-
-With this partitioned approach, an attacker now has to trick the application
-server into doing something rather arbitrary, which may be harder than getting
-it to read a file.
--->
-解决的办法可以是将应用分为两个进程，分别运行在两个容器中：
-前端容器，用于处理用户交互和业务逻辑，但无法看到私钥；
-签名容器，可以看到私钥，响应来自前端（例如通过本地主机网络）的简单签名请求。
-
-使用这种分割方法，攻击者现在必须欺骗应用程序服务器才能进行任意的操作，
-这可能比使其读取文件更难。
-
-<!-- TODO: explain how to do this while still using automation. -->
-
-<!--
-## Best practices
-
-### Clients that use the secrets API
-
-When deploying applications that interact with the secrets API, access should be
-limited using [authorization policies](
-/docs/reference/access-authn-authz/authorization/) such as [RBAC](
-/docs/reference/access-authn-authz/rbac/).
--->
-## 最佳实践   {#best-practices}
-
-### 客户端使用 Secret API
-
-当部署与 Secret API 交互的应用程序时，应使用
-[鉴权策略](/zh/docs/reference/access-authn-authz/authorization/)，
-例如 [RBAC](/zh/docs/reference/access-authn-authz/rbac/)，来限制访问。
-
-<!--
-Secrets often hold values that span a spectrum of importance, many of which can
-cause escalations within Kubernetes (e.g. service account tokens) and to
-external systems. Even if an individual app can reason about the power of the
-secrets it expects to interact with, other apps within the same namespace can
-render those assumptions invalid.
-
-For these reasons `watch` and `list` requests for secrets within a namespace are
-extremely powerful capabilities and should be avoided, since listing secrets allows
-the clients to inspect the values of all secrets that are in that namespace. The ability to
-`watch` and `list` all secrets in a cluster should be reserved for only the most
-privileged, system-level components.
--->
-
-Secret 中的值对于不同的环境来说重要性可能不同。
-很多 Secret 都可能导致 Kubernetes 集群内部的权限越界（例如服务账号令牌）
-甚至逃逸到集群外部。
-即使某一个应用程序可以就所交互的 Secret 的能力作出正确抉择，但是同一命名空间中
-的其他应用程序却可能不这样做。
-
-由于这些原因，在命名空间中 `watch` 和 `list` Secret 的请求是非常强大的能力，
-是应该避免的行为。列出 Secret 的操作可以让客户端检查该命名空间中存在的所有 Secret。
-在群集中 `watch` 和 `list` 所有 Secret 的能力应该只保留给特权最高的系统级组件。
-
-<!--
-Applications that need to access the secrets API should perform `get` requests on
-the secrets they need. This lets administrators restrict access to all secrets
-while [white-listing access to individual instances](/docs/reference/access-authn-authz/rbac/#referring-to-resources) that
-the app needs.
-
-For improved performance over a looping `get`, clients can design resources that
-reference a secret then `watch` the resource, re-requesting the secret when the
-reference changes. Additionally, a ["bulk watch" API](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/bulk_watch.md)
-to let clients `watch` individual resources has also been proposed, and will likely
-be available in future releases of Kubernetes.
--->
-需要访问 Secret API 的应用程序应该针对所需要的 Secret 执行 `get` 请求。
-这样，管理员就能限制对所有 Secret 的访问，同时为应用所需要的
-[实例设置访问允许清单](/zh/docs/reference/access-authn-authz/rbac/#referring-to-resources) 。
-
-为了获得高于轮询操作的性能，客户端设计资源时，可以引用 Secret，然后对资源执行 `watch`
-操作，在引用更改时重新检索 Secret。
-此外，社区还存在一种 [“批量监控” API](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/bulk_watch.md)
-的提案，允许客户端 `watch` 独立的资源，该功能可能会在将来的 Kubernetes 版本中提供。
-
-<!--
-## Security Properties
-
-### Protections
-
-Because `secret` objects can be created independently of the `pods` that use
-them, there is less risk of the secret being exposed during the workflow of
-creating, viewing, and editing pods.  The system can also take additional
-precautions with `secret` objects, such as avoiding writing them to disk where
-possible.
--->
-## 安全属性    {#security-properties}
-
-### 保护   {#protections}
-
-因为 Secret 对象可以独立于使用它们的 Pod 而创建，所以在创建、查看和编辑 Pod 的流程中
-Secret 被暴露的风险较小。系统还可以对 Secret 对象采取额外的预防性保护措施，
-例如，在可能的情况下避免将其写到磁盘。
-
-<!--
-A secret is only sent to a node if a pod on that node requires it.
-Kubelet stores the secret into a `tmpfs` so that the secret is not written
-to disk storage. Once the Pod that depends on the secret is deleted, kubelet
-will delete its local copy of the secret data as well.
-
-There may be secrets for several pods on the same node.  However, only the
-secrets that a pod requests are potentially visible within its containers.
-Therefore, one Pod does not have access to the secrets of another Pod.
--->
-只有当某节点上的 Pod 需要用到某 Secret 时，该 Secret 才会被发送到该节点上。
-Secret 不会被写入磁盘，而是被 kubelet 存储在 tmpfs 中。
-一旦依赖于它的 Pod 被删除，Secret 数据的本地副本就被删除。
-
-同一节点上的很多个 Pod 可能拥有多个 Secret。
-但是，只有 Pod 所请求的 Secret 在其容器中才是可见的。
-因此，一个 Pod 不能访问另一个 Pod 的 Secret。
-
-<!--
-There may be several containers in a pod.  However, each container in a pod has
-to request the secret volume in its `volumeMounts` for it to be visible within
-the container.  This can be used to construct useful [security partitions at the
-Pod level](#use-case-secret-visible-to-one-container-in-a-pod).
-
-On most Kubernetes distributions, communication between users
-to the apiserver, and from apiserver to the kubelets, is protected by SSL/TLS.
-Secrets are protected when transmitted over these channels.
--->
-同一个 Pod 中可能有多个容器。但是，Pod 中的每个容器必须通过 `volumeeMounts`
-请求挂载 Secret 卷才能使卷中的 Secret 对容器可见。
-这一实现可以用于在 Pod 级别[构建安全分区](#secret-visible-to-only-one-container)。
-
-在大多数 Kubernetes 发行版中，用户与 API 服务器之间的通信以及
-从 API 服务器到 kubelet 的通信都受到 SSL/TLS 的保护。
-通过这些通道传输时，Secret 受到保护。
-
-{{< feature-state for_k8s_version="v1.13" state="beta" >}}
-
-<!--
-You can enable [encryption at rest](/docs/tasks/administer-cluster/encrypt-data/)
-for secret data, so that the secrets are not stored in the clear into {{< glossary_tooltip term_id="etcd" >}}.
--->
-你可以为 Secret 数据开启[静态加密](/zh/docs/tasks/administer-cluster/encrypt-data/)，
-这样 Secret 数据就不会以明文形式存储到{{< glossary_tooltip term_id="etcd" >}} 中。
-
-<!--
-### Risks
-
- - In the API server secret data is stored in {{< glossary_tooltip term_id="etcd" >}};
-   therefore:
-   - Administrators should enable encryption at rest for cluster data (requires v1.13 or later)
-   - Administrators should limit access to etcd to admin users
-   - Administrators may want to wipe/shred disks used by etcd when no longer in use
-   - If running etcd in a cluster, administrators should make sure to use SSL/TLS
-     for etcd peer-to-peer communication.
- - If you configure the secret through a manifest (JSON or YAML) file which has
-   the secret data encoded as base64, sharing this file or checking it in to a
-   source repository means the secret is compromised. Base64 encoding is _not_ an
-   encryption method and is considered the same as plain text.
- - Applications still need to protect the value of secret after reading it from the volume,
-   such as not accidentally logging it or transmitting it to an untrusted party.
- - A user who can create a pod that uses a secret can also see the value of that secret.  Even
-   if apiserver policy does not allow that user to read the secret object, the user could
-   run a pod which exposes the secret.
- - Currently, anyone with root on any node can read _any_ secret from the apiserver,
-   by impersonating the kubelet.  It is a planned feature to only send secrets to
-   nodes that actually require them, to restrict the impact of a root exploit on a
-   single node.
--->
-### 风险
-
-- API 服务器上的 Secret 数据以纯文本的方式存储在 etcd 中，因此：
-  - 管理员应该为集群数据开启静态加密（要求 v1.13 或者更高版本）。
-  - 管理员应该限制只有 admin 用户能访问 etcd；
-  - API 服务器中的 Secret 数据位于 etcd 使用的磁盘上；管理员可能希望在不再使用时擦除/粉碎 etcd 使用的磁盘
-  - 如果 etcd 运行在集群内，管理员应该确保 etcd 之间的通信使用 SSL/TLS 进行加密。
-- 如果您将 Secret 数据编码为 base64 的清单（JSON 或 YAML）文件，共享该文件或将其检入代码库，该密码将会被泄露。 Base64 编码不是一种加密方式，应该视同纯文本。
-- 应用程序在从卷中读取 Secret 后仍然需要保护 Secret 的值，例如不会意外将其写入日志或发送给不信任方。
-- 可以创建使用 Secret 的 Pod 的用户也可以看到该 Secret 的值。即使 API 服务器策略不允许用户读取 Secret 对象，用户也可以运行 Pod 导致 Secret 暴露。
-- 目前，任何节点的 root 用户都可以通过模拟 kubelet 来读取 API 服务器中的任何 Secret。
-  仅向实际需要 Secret 的节点发送 Secret 数据才能限制节点的 root 账号漏洞的影响，
-  该功能还在计划中。
-
-## {{% heading "whatsnext" %}}
-
-<!--
-- Learn how to [manage Secret using `kubectl`](/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
-- Learn how to [manage Secret using config file](/docs/tasks/configmap-secret/managing-secret-using-config-file/)
-- Learn how to [manage Secret using kustomize](/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
--->
-- 学习如何[使用 `kubectl` 管理 Secret](/zh/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
-- 学习如何[使用配置文件管理 Secret](/zh/docs/tasks/configmap-secret/managing-secret-using-config-file/)
-- 学习如何[使用 kustomize 管理 Secret](/zh/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
-
diff --git a/content/zh/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins.md b/content/zh/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins.md
deleted file mode 100644
index c06b1c54d7..0000000000
--- a/content/zh/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins.md
+++ /dev/null
@@ -1,302 +0,0 @@
----
-title: 网络插件
-content_type: concept
-weight: 10
----
-<!--
-title: Network Plugins
-content_type: concept
-weight: 10
--->
-
-
-<!-- overview -->
-
-<!--
-Network plugins in Kubernetes come in a few flavors:
-
-* CNI plugins: adhere to the [Container Network Interface](https://github.com/containernetworking/cni) (CNI) specification, designed for interoperability.
-  * Kubernetes follows the [v0.4.0](https://github.com/containernetworking/cni/blob/spec-v0.4.0/SPEC.md) release of the CNI specification.
-* Kubenet plugin: implements basic `cbr0` using the `bridge` and `host-local` CNI plugins
--->
-Kubernetes中的网络插件有几种类型：
-
-* CNI 插件：遵守[容器网络接口（Container Network Interface，CNI）](https://github.com/containernetworking/cni)
-  规范，其设计上偏重互操作性。
-  * Kubernetes 遵从 CNI 规范的
-    [v0.4.0](https://github.com/containernetworking/cni/blob/spec-v0.4.0/SPEC.md)
-    版本。
-* Kubenet 插件：使用 `bridge` 和 `host-local` CNI 插件实现了基本的 `cbr0`。
-
-<!-- body -->
-
-<!--
-## Installation
-
-The kubelet has a single default network plugin, and a default network common to the entire cluster. It probes for plugins when it starts up, remembers what it finds, and executes the selected plugin at appropriate times in the pod lifecycle (this is only true for Docker, as CRI manages its own CNI plugins). There are two Kubelet command line parameters to keep in mind when using plugins:
-
-* `cni-bin-dir`: Kubelet probes this directory for plugins on startup
-* `network-plugin`: The network plugin to use from `cni-bin-dir`.  It must match the name reported by a plugin probed from the plugin directory.  For CNI plugins, this is "cni".
--->
-## 安装
-
-kubelet 有一个单独的默认网络插件，以及一个对整个集群通用的默认网络。
-它在启动时探测插件，记住找到的内容，并在 Pod 生命周期的适当时间执行
-所选插件（这仅适用于 Docker，因为 CRI 管理自己的 CNI 插件）。
-在使用插件时，需要记住两个 kubelet 命令行参数：
-
-* `cni-bin-dir`： kubelet 在启动时探测这个目录中的插件
-* `network-plugin`： 要使用的网络插件来自 `cni-bin-dir`。
-  它必须与从插件目录探测到的插件报告的名称匹配。
-  对于 CNI 插件，其值为 "cni"。
-
-<!--
-## Network Plugin Requirements
-
-Besides providing the [`NetworkPlugin` interface](https://github.com/kubernetes/kubernetes/tree/{{< param "fullversion" >}}/pkg/kubelet/dockershim/network/plugins.go) to configure and clean up pod networking, the plugin may also need specific support for kube-proxy.  The iptables proxy obviously depends on iptables, and the plugin may need to ensure that container traffic is made available to iptables.  For example, if the plugin connects containers to a Linux bridge, the plugin must set the `net/bridge/bridge-nf-call-iptables` sysctl to `1` to ensure that the iptables proxy functions correctly.  If the plugin does not use a Linux bridge (but instead something like Open vSwitch or some other mechanism) it should ensure container traffic is appropriately routed for the proxy.
-
-By default if no kubelet network plugin is specified, the `noop` plugin is used, which sets `net/bridge/bridge-nf-call-iptables=1` to ensure simple configurations (like Docker with a bridge) work correctly with the iptables proxy.
--->
-## 网络插件要求
-
-除了提供
-[`NetworkPlugin` 接口](https://github.com/kubernetes/kubernetes/tree/{{< param "fullversion" >}}/pkg/kubelet/dockershim/network/plugins.go)
-来配置和清理 Pod 网络之外，该插件还可能需要对 kube-proxy 的特定支持。
-iptables 代理显然依赖于 iptables，插件可能需要确保 iptables 能够监控容器的网络通信。
-例如，如果插件将容器连接到 Linux 网桥，插件必须将 `net/bridge/bridge-nf-call-iptables`
-系统参数设置为`1`，以确保 iptables 代理正常工作。
-如果插件不使用 Linux 网桥（而是类似于 Open vSwitch 或者其它一些机制），
-它应该确保为代理对容器通信执行正确的路由。
-
-默认情况下，如果未指定 kubelet 网络插件，则使用 `noop` 插件，
-该插件设置 `net/bridge/bridge-nf-call-iptables=1`，以确保简单的配置
-（如带网桥的 Docker ）与 iptables 代理正常工作。
-
-<!--
-### CNI
-
-The CNI plugin is selected by passing Kubelet the `--network-plugin=cni` command-line option.  Kubelet reads a file from `--cni-conf-dir` (default `/etc/cni/net.d`) and uses the CNI configuration from that file to set up each pod's network.  The CNI configuration file must match the [CNI specification](https://github.com/containernetworking/cni/blob/master/SPEC.md#network-configuration), and any required CNI plugins referenced by the configuration must be present in `--cni-bin-dir` (default `/opt/cni/bin`).
-
-If there are multiple CNI configuration files in the directory, the kubelet uses the configuration file that comes first by name in lexicographic order.
-
-In addition to the CNI plugin specified by the configuration file, Kubernetes requires the standard CNI [`lo`](https://github.com/containernetworking/plugins/blob/master/plugins/main/loopback/loopback.go) plugin, at minimum version 0.2.0
--->
-### CNI
-
-通过给 Kubelet 传递 `--network-plugin=cni` 命令行选项可以选择 CNI 插件。
-Kubelet 从 `--cni-conf-dir` （默认是 `/etc/cni/net.d`） 读取文件并使用
-该文件中的 CNI 配置来设置各个 Pod 的网络。
-CNI 配置文件必须与
-[CNI 规约](https://github.com/containernetworking/cni/blob/master/SPEC.md#network-configuration)
-匹配，并且配置所引用的所有所需的 CNI 插件都应存在于
-`--cni-bin-dir`（默认是 `/opt/cni/bin`）下。
-
-如果这个目录中有多个 CNI 配置文件，kubelet 将会使用按文件名的字典顺序排列
-的第一个作为配置文件。
-
-除了配置文件指定的 CNI 插件外，Kubernetes 还需要标准的 CNI
-[`lo`](https://github.com/containernetworking/plugins/blob/master/plugins/main/loopback/loopback.go)
-插件，最低版本是0.2.0。
-
-<!--
-#### Support hostPort
-
-The CNI networking plugin supports `hostPort`. You can use the official [portmap](https://github.com/containernetworking/plugins/tree/master/plugins/meta/portmap)
-plugin offered by the CNI plugin team or use your own plugin with portMapping functionality.
-
-If you want to enable `hostPort` support, you must specify `portMappings capability` in your `cni-conf-dir`.
-For example:
--->
-#### 支持 hostPort
-
-CNI 网络插件支持 `hostPort`。 你可以使用官方
-[portmap](https://github.com/containernetworking/plugins/tree/master/plugins/meta/portmap)
-插件，它由 CNI 插件团队提供，或者使用你自己的带有 portMapping 功能的插件。
-
-如果你想要启动 `hostPort` 支持，则必须在 `cni-conf-dir` 指定 `portMappings capability`。
-例如：
-
-```json
-{
-  "name": "k8s-pod-network",
-  "cniVersion": "0.3.0",
-  "plugins": [
-    {
-      "type": "calico",
-      "log_level": "info",
-      "datastore_type": "kubernetes",
-      "nodename": "127.0.0.1",
-      "ipam": {
-        "type": "host-local",
-        "subnet": "usePodCidr"
-      },
-      "policy": {
-        "type": "k8s"
-      },
-      "kubernetes": {
-        "kubeconfig": "/etc/cni/net.d/calico-kubeconfig"
-      }
-    },
-    {
-      "type": "portmap",
-      "capabilities": {"portMappings": true}
-    }
-  ]
-}
-```
-
-<!--
-#### Support traffic shaping
-
-**Experimental Feature**
-
-The CNI networking plugin also supports pod ingress and egress traffic shaping. You can use the official [bandwidth](https://github.com/containernetworking/plugins/tree/master/plugins/meta/bandwidth)
-plugin offered by the CNI plugin team or use your own plugin with bandwidth control functionality.
-
-If you want to enable traffic shaping support, you must add the `bandwidth` plugin to your CNI configuration file
-(default `/etc/cni/net.d`) and ensure that the binary is included in your CNI bin dir (default `/opt/cni/bin`).
--->
-#### 支持流量整形
-
-**实验功能**
-
-CNI 网络插件还支持 pod 入口和出口流量整形。
-你可以使用 CNI 插件团队提供的
-[bandwidth](https://github.com/containernetworking/plugins/tree/master/plugins/meta/bandwidth)
-插件，也可以使用你自己的具有带宽控制功能的插件。
-
-如果你想要启用流量整形支持，你必须将 `bandwidth` 插件添加到 CNI 配置文件
-（默认是 `/etc/cni/net.d`）并保证该可执行文件包含在你的 CNI 的 bin
-文件夹内 (默认为 `/opt/cni/bin`)。
-
-```json
-{
-  "name": "k8s-pod-network",
-  "cniVersion": "0.3.0",
-  "plugins": [
-    {
-      "type": "calico",
-      "log_level": "info",
-      "datastore_type": "kubernetes",
-      "nodename": "127.0.0.1",
-      "ipam": {
-        "type": "host-local",
-        "subnet": "usePodCidr"
-      },
-      "policy": {
-        "type": "k8s"
-      },
-      "kubernetes": {
-        "kubeconfig": "/etc/cni/net.d/calico-kubeconfig"
-      }
-    },
-    {
-      "type": "bandwidth",
-      "capabilities": {"bandwidth": true}
-    }
-  ]
-}
-```
-<!--
-Now you can add the `kubernetes.io/ingress-bandwidth` and `kubernetes.io/egress-bandwidth` annotations to your pod.
-For example:
--->
-现在，你可以将 `kubernetes.io/ingress-bandwidth` 和 `kubernetes.io/egress-bandwidth`
-注解添加到 pod 中。例如：
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  annotations:
-    kubernetes.io/ingress-bandwidth: 1M
-    kubernetes.io/egress-bandwidth: 1M
-...
-```
-
-<!--
-### kubenet
-
-Kubenet is a very basic, simple network plugin, on Linux only.  It does not, of itself, implement more advanced features like cross-node networking or network policy.  It is typically used together with a cloud provider that sets up routing rules for communication between nodes, or in single-node environments.
-
-Kubenet creates a Linux bridge named `cbr0` and creates a veth pair for each pod with the host end of each pair connected to `cbr0`.  The pod end of the pair is assigned an IP address allocated from a range assigned to the node either through configuration or by the controller-manager.  `cbr0` is assigned an MTU matching the smallest MTU of an enabled normal interface on the host.
-
-The plugin requires a few things:
-
-* The standard CNI `bridge`, `lo` and `host-local` plugins are required, at minimum version 0.2.0. Kubenet will first search for them in `/opt/cni/bin`. Specify `cni-bin-dir` to supply additional search path. The first found match will take effect.
-* Kubelet must be run with the `--network-plugin=kubenet` argument to enable the plugin
-* Kubelet should also be run with the `--non-masquerade-cidr=<clusterCidr>` argument to ensure traffic to IPs outside this range will use IP masquerade.
-* The node must be assigned an IP subnet through either the `--pod-cidr` kubelet command-line option or the `--allocate-node-cidrs=true -cluster-cidr=<cidr>` controller-manager command-line options.
--->
-### kubenet
-
-Kubenet 是一个非常基本的、简单的网络插件，仅适用于 Linux。
-它本身并不实现更高级的功能，如跨节点网络或网络策略。
-它通常与云驱动一起使用，云驱动为节点间或单节点环境中的通信设置路由规则。
-
-Kubenet 创建名为 `cbr0` 的网桥，并为每个 pod 创建了一个 veth 对，
-每个 Pod 的主机端都连接到 `cbr0`。
-这个 veth 对的 Pod 端会被分配一个 IP 地址，该 IP 地址隶属于节点所被分配的 IP
-地址范围内。节点的 IP 地址范围则通过配置或控制器管理器来设置。
-`cbr0` 被分配一个 MTU，该 MTU 匹配主机上已启用的正常接口的最小 MTU。
-
-使用此插件还需要一些其他条件：
-
-* 需要标准的 CNI `bridge`、`lo` 以及 `host-local` 插件，最低版本是0.2.0。
-  kubenet 首先在 `/opt/cni/bin` 中搜索它们。 指定 `cni-bin-dir` 以提供
-  其它搜索路径。首次找到的匹配将生效。
-* Kubelet 必须和 `--network-plugin=kubenet` 参数一起运行，才能启用该插件。
-* Kubelet 还应该和 `--non-masquerade-cidr=<clusterCidr>` 参数一起运行，
-  以确保超出此范围的 IP 流量将使用 IP 伪装。
-* 节点必须被分配一个 IP 子网，通过kubelet 命令行的 `--pod-cidr` 选项或
-  控制器管理器的命令行选项 `--allocate-node-cidrs=true --cluster-cidr=<cidr>`
-  来设置。
-
-<!--
-### Customizing the MTU (with kubenet)
-
-The MTU should always be configured correctly to get the best networking performance.  Network plugins will usually try
-to infer a sensible MTU, but sometimes the logic will not result in an optimal MTU.  For example, if the
-Docker bridge or another interface has a small MTU, kubenet will currently select that MTU.  Or if you are
-using IPSEC encapsulation, the MTU must be reduced, and this calculation is out-of-scope for
-most network plugins.
-
-Where needed, you can specify the MTU explicitly with the `network-plugin-mtu` kubelet option.  For example,
-on AWS the `eth0` MTU is typically 9001, so you might specify `--network-plugin-mtu=9001`.  If you're using IPSEC you
-might reduce it to allow for encapsulation overhead e.g. `--network-plugin-mtu=8873`.
-
-This option is provided to the network-plugin; currently **only kubenet supports `network-plugin-mtu`**.
--->
-### 自定义 MTU（使用 kubenet）
-
-要获得最佳的网络性能，必须确保 MTU 的取值配置正确。
-网络插件通常会尝试推断出一个合理的 MTU，但有时候这个逻辑不会产生一个最优的 MTU。
-例如，如果 Docker 网桥或其他接口有一个小的 MTU, kubenet 当前将选择该 MTU。
-或者如果你正在使用 IPSEC 封装，则必须减少 MTU，并且这种计算超出了大多数网络插件的能力范围。
-
-如果需要，你可以使用 `network-plugin-mtu` kubelet 选项显式的指定 MTU。
-例如：在 AWS 上 `eth0` MTU 通常是 9001，因此你可以指定 `--network-plugin-mtu=9001`。
-如果你正在使用 IPSEC ，你可以减少它以允许封装开销，例如 `--network-plugin-mtu=8873`。
-
-此选项会传递给网络插件； 当前 **仅 kubenet 支持 `network-plugin-mtu`**。
-
-<!--
-## Usage Summary
-
-* `--network-plugin=cni` specifies that we use the `cni` network plugin with actual CNI plugin binaries located in `--cni-bin-dir` (default `/opt/cni/bin`) and CNI plugin configuration located in `--cni-conf-dir` (default `/etc/cni/net.d`).
-* `--network-plugin=kubenet` specifies that we use the `kubenet` network plugin with CNI `bridge`, `lo` and `host-local` plugins placed in `/opt/cni/bin` or `cni-bin-dir`.
-* `--network-plugin-mtu=9001` specifies the MTU to use, currently only used by the `kubenet` network plugin.
--->
-## 用法总结
-
-* `--network-plugin=cni` 用来表明我们要使用 `cni` 网络插件，实际的 CNI 插件
-  可执行文件位于 `--cni-bin-dir`（默认是 `/opt/cni/bin`）下， CNI 插件配置位于
-  `--cni-conf-dir`（默认是 `/etc/cni/net.d`）下。
-* `--network-plugin=kubenet` 用来表明我们要使用 `kubenet` 网络插件，CNI `bridge`，`lo`
-  和 `host-local` 插件位于 `/opt/cni/bin` 或 `cni-bin-dir` 中。
-* `--network-plugin-mtu=9001` 指定了我们使用的 MTU，当前仅被 `kubenet` 网络插件使用。
-
-## {{% heading "whatsnext" %}}
-
-
-
diff --git a/content/zh/docs/concepts/extend-kubernetes/service-catalog.md b/content/zh/docs/concepts/extend-kubernetes/service-catalog.md
deleted file mode 100644
index 1169ac9ecf..0000000000
--- a/content/zh/docs/concepts/extend-kubernetes/service-catalog.md
+++ /dev/null
@@ -1,449 +0,0 @@
----
-title: 服务目录
-content_type: concept
-weight: 40
----
-<!--
-title: Service Catalog
-reviewers:
-- chenopis
-content_type: concept
-weight: 40
--->
-
-<!-- overview -->
-{{< glossary_definition term_id="service-catalog" length="all" prepend="服务目录（Service Catalog）是" >}}  
-
-<!--
-A service broker, as defined by the [Open service broker API spec](https://github.com/openservicebrokerapi/servicebroker/blob/v2.13/spec.md), is an endpoint for a set of managed services offered and maintained by a third-party, which could be a cloud provider such as AWS, GCP, or Azure.
-Some examples of managed services are Microsoft Azure Cloud Queue, Amazon Simple Queue Service, and Google Cloud Pub/Sub, but they can be any software offering that can be used by an application.
-
-Using Service Catalog, a {{< glossary_tooltip text="cluster operator" term_id="cluster-operator" >}} can browse the list of managed services offered by a service broker, provision an instance of a managed service, and bind with it to make it available to an application in the Kubernetes cluster.
--->
-服务代理（Service Broker）是由[Open Service Broker API 规范](https://github.com/openservicebrokerapi/servicebroker/blob/v2.13/spec.md)定义的一组托管服务的端点，这些服务由第三方提供并维护，其中的第三方可以是 AWS、GCP 或 Azure 等云服务提供商。
-托管服务的一些示例是 Microsoft Azure Cloud Queue、Amazon Simple Queue Service 和 Google Cloud Pub/Sub，但它们可以是应用程序能够使用的任何软件交付物。
-
-使用服务目录，{{< glossary_tooltip text="集群操作员" term_id="cluster-operator" >}}
-可以浏览某服务代理所提供的托管服务列表，供应托管服务实例并与之绑定，
-以使其可以被 Kubernetes 集群中的应用程序使用。
-
-<!-- body -->
-<!--
-## Example use case
-
-An {{< glossary_tooltip text="application developer" term_id="application-developer" >}} wants to use message queuing as part of their application running in a Kubernetes cluster.
-However, they do not want to deal with the overhead of setting such a service up and administering it themselves.
-Fortunately, there is a cloud provider that offers message queuing as a managed service through its service broker.
-
-A cluster operator can setup Service Catalog and use it to communicate with the cloud provider's service broker to provision an instance of the message queuing service and make it available to the application within the Kubernetes cluster.
-The application developer therefore does not need to be concerned with the implementation details or management of the message queue.
-The application can simply use it as a service.
--->
-## 示例用例
-
-{{< glossary_tooltip text="应用开发人员" term_id="application-developer" >}}，
-希望使用消息队列，作为其在 Kubernetes 集群中运行的应用程序的一部分。
-但是，他们不想承受构造这种服务的开销，也不想自行管理。
-幸运的是，有一家云服务提供商通过其服务代理以托管服务的形式提供消息队列服务。
-
-集群操作员可以设置服务目录并使用它与云服务提供商的服务代理通信，进而部署消息队列服务的实例
-并使其对 Kubernetes 中的应用程序可用。
-应用开发者于是可以不关心消息队列的实现细节，也不用对其进行管理。
-他们的应用程序可以简单的将其作为服务使用。
-
-<!--
-## Architecture
-
-Service Catalog uses the [Open service broker API](https://github.com/openservicebrokerapi/servicebroker) to communicate with service brokers, acting as an intermediary for the Kubernetes API Server to negotiate the initial provisioning and retrieve the credentials necessary for the application to use a managed service.
-
-It is implemented as an extension API server and a controller, using etcd for storage. It also uses the [aggregation layer](/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/) available in Kubernetes 1.7+ to present its API.
-
-![Service Catalog Architecture](/images/docs/service-catalog-architecture.svg)
--->
-## 架构  {#architecture}
-
-服务目录使用[Open Service Broker API](https://github.com/openservicebrokerapi/servicebroker)
-与服务代理进行通信，并作为 Kubernetes API 服务器的中介，以便协商启动部署和获取
-应用程序使用托管服务时必须的凭据。
-
-服务目录实现为一个扩展 API 服务器和一个控制器，使用 Etcd 提供存储。
-它还使用了 Kubernetes 1.7 之后版本中提供的
-[聚合层](/zh/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)
-来呈现其 API。
-
-![服务目录架构](/images/docs/service-catalog-architecture.svg)
-
-<!--
-### API Resources
-
-Service Catalog installs the `servicecatalog.k8s.io` API and provides the following Kubernetes resources:
-
-* `ClusterServiceBroker`: An in-cluster representation of a service broker, encapsulating its server connection details.
-These are created and managed by cluster operators who wish to use that broker server to make new types of managed services available within their cluster.
-* `ClusterServiceClass`: A managed service offered by a particular service broker.
-When a new `ClusterServiceBroker` resource is added to the cluster, the Service Catalog controller connects to the service broker to obtain a list of available managed services. It then creates a new `ClusterServiceClass` resource corresponding to each managed service.
-* `ClusterServicePlan`: A specific offering of a managed service. For example, a managed service may have different plans available, such as a free tier or paid tier, or it may have different configuration options, such as using SSD storage or having more resources. Similar to `ClusterServiceClass`, when a new `ClusterServiceBroker` is added to the cluster, Service Catalog creates a new `ClusterServicePlan` resource corresponding to each Service Plan available for each managed service.
-* `ServiceInstance`: A provisioned instance of a `ClusterServiceClass`.
-These are created by cluster operators to make a specific instance of a managed service available for use by one or more in-cluster applications.
-When a new `ServiceInstance` resource is created, the Service Catalog controller connects to the appropriate service broker and instruct it to provision the service instance.
-* `ServiceBinding`: Access credentials to a `ServiceInstance`.
-These are created by cluster operators who want their applications to make use of a `ServiceInstance`.
-Upon creation, the Service Catalog controller creates a Kubernetes `Secret` containing connection details and credentials for the Service Instance, which can be mounted into Pods.
--->
-## API 资源 {#api-resources}
-
-服务目录安装 `servicecatalog.k8s.io` API 并提供以下 Kubernetes 资源：
-
-* `ClusterServiceBroker`：服务目录的集群内表现形式，封装了其服务连接细节。集群运维人员创建和管理这些资源，并希望使用该代理服务在集群中提供新类型的托管服务。
-* `ClusterServiceClass`：由特定服务代理提供的托管服务。当新的 `ClusterServiceBroker` 资源被添加到集群时，服务目录控制器将连接到服务代理以获取可用的托管服务列表。然后为每个托管服务创建对应的新 `ClusterServiceClass` 资源。
-* `ClusterServicePlan`：托管服务的特定产品。例如托管服务可能有不同的计划可用，如免费版本和付费版本，或者可能有不同的配置选项，例如使用 SSD 存储或拥有更多资源。与 `ClusterServiceClass` 类似，当一个新的 `ClusterServiceBroker` 被添加到集群时，服务目录会为每个托管服务的每个可用服务计划创建对应的新 `ClusterServicePlan` 资源。
-* `ServiceInstance`：`ClusterServiceClass` 提供的示例。由集群运维人员创建，以使托管服务的特定实例可供一个或多个集群内应用程序使用。当创建一个新的 `ServiceInstance` 资源时，服务目录控制器将连接到相应的服务代理并指示它调配服务实例。
-* `ServiceBinding`：`ServiceInstance` 的访问凭据。由希望其应用程序使用服务 `ServiceInstance` 的集群运维人员创建。创建之后，服务目录控制器将创建一个 Kubernetes `Secret`，其中包含服务实例的连接细节和凭据，可以挂载到 Pod 中。
-
-<!--
-### Authentication
-
-Service Catalog supports these methods of authentication:
-
-* Basic (username/password)
-* [OAuth 2.0 Bearer Token](https://tools.ietf.org/html/rfc6750)
--->
-### 认证  {#authentication}
-
-服务目录支持这些认证方法：
-
-* 基本认证（用户名/密码）
-* [OAuth 2.0 不记名令牌](https://tools.ietf.org/html/rfc6750)
-
-<!--
-## Usage
-
-A cluster operator can use Service Catalog API Resources to provision managed services and make them available within a Kubernetes cluster. The steps involved are:
-
-1. Listing the managed services and Service Plans available from a service broker.
-2. Provisioning a new instance of the managed service.
-3. Binding to the managed service, which returns the connection credentials.
-4. Mapping the connection credentials into the application.
--->
-## 使用方式
-
-集群运维人员可以使用服务目录 API 资源来供应托管服务并使其在 Kubernetes 集群内可用。涉及的步骤有：
-
-1. 列出服务代理提供的托管服务和服务计划。
-2. 配置托管服务的新实例。
-3. 绑定到托管服务，它将返回连接凭证。
-4. 将连接凭证映射到应用程序中。
-
-<!--
-### Listing managed services and Service Plans
-
-First, a cluster operator must create a `ClusterServiceBroker` resource within the `servicecatalog.k8s.io` group. This resource contains the URL and connection details necessary to access a service broker endpoint.
-
-This is an example of a `ClusterServiceBroker` resource:
-
-```yaml
-apiVersion: servicecatalog.k8s.io/v1beta1
-kind: ClusterServiceBroker
-metadata:
-  name: cloud-broker
-spec:
-  # Points to the endpoint of a service broker. (This example is not a working URL.)
-  url:  https://servicebroker.somecloudprovider.com/v1alpha1/projects/service-catalog/brokers/default
-  #####
-  # Additional values can be added here, which may be used to communicate
-  # with the service broker, such as bearer token info or a caBundle for TLS.
-  #####
-```
--->
-### 列出托管服务和服务计划
-
-首先，集群运维人员在 `servicecatalog.k8s.io` 组内创建一个 `ClusterServiceBroker` 资源。此资源包含访问服务代理终结点所需的 URL 和连接详细信息。
-
-这是一个 `ClusterServiceBroker` 资源的例子：
-
-```yaml
-apiVersion: servicecatalog.k8s.io/v1beta1
-kind: ClusterServiceBroker
-metadata:
-  name: cloud-broker
-spec:
-  # 指向服务代理的末端。(这里的 URL 是无法使用的。)
-  url:  https://servicebroker.somecloudprovider.com/v1alpha1/projects/service-catalog/brokers/default
-  #####
-  # 这里可以添加额外的用来与服务代理通信的属性值,
-  # 例如持有者令牌信息或者 TLS 的 CA 包。
-  #####
-```
-
-<!--
-The following is a sequence diagram illustrating the steps involved in listing managed services and Plans available from a service broker:
-
-![List Services](/images/docs/service-catalog-list.svg)
-
-1. Once the `ClusterServiceBroker` resource is added to Service Catalog, it triggers a call to the external service broker for a list of available services.
-1. The service broker returns a list of available managed services and a list of Service Plans, which are cached locally as `ClusterServiceClass` and `ClusterServicePlan` resources respectively.
-1. A cluster operator can then get the list of available managed services using the following command:
--->
-下面的时序图展示了从服务代理列出可用托管服务和计划所涉及的各个步骤：
-
-![列举服务](/images/docs/service-catalog-list.svg)
-
-1. 一旦 `ClusterServiceBroker` 资源被添加到了服务目录之后，将会触发一个到外部服务代理的
-   调用，以列举所有可用服务；
-1. 服务代理返回可用的托管服务和服务计划列表，这些列表将本地缓存在 `ClusterServiceClass`
-   和 `ClusterServicePlan` 资源中。
-1. 集群运维人员接下来可以使用以下命令获取可用托管服务的列表：
-
-<!--
-        kubectl get clusterserviceclasses -o=custom-columns=SERVICE\ NAME:.metadata.name,EXTERNAL\ NAME:.spec.externalName
-
-    It should output a list of service names with a format similar to:
-
-        SERVICE NAME                           EXTERNAL NAME
-        4f6e6cf6-ffdd-425f-a2c7-3c9258ad2468   cloud-provider-service
-        ...                                    ...
-
-    They can also view the Service Plans available using the following command:
-
-        kubectl get clusterserviceplans -o=custom-columns=PLAN\ NAME:.metadata.name,EXTERNAL\ NAME:.spec.externalName
-
-    It should output a list of plan names with a format similar to:
-
-        PLAN NAME                              EXTERNAL NAME
-        86064792-7ea2-467b-af93-ac9694d96d52   service-plan-name
-        ...                                    ...
--->
-
-   ```shell
-   kubectl get clusterserviceclasses \
-     -o=custom-columns=SERVICE\ NAME:.metadata.name,EXTERNAL\ NAME:.spec.externalName
-   ```
-
-   它应该输出一个和以下格式类似的服务名称列表：
-
-   ```
-   SERVICE NAME                           EXTERNAL NAME
-   4f6e6cf6-ffdd-425f-a2c7-3c9258ad2468   cloud-provider-service
-   ...                                    ...
-   ```
-
-   他们还可以使用以下命令查看可用的服务计划：
-
-   ```shell
-   kubectl get clusterserviceplans \
-      -o=custom-columns=PLAN\ NAME:.metadata.name,EXTERNAL\ NAME:.spec.externalName
-   ```
-
-    它应该输出一个和以下格式类似的服务计划列表：
-
-   ```
-   PLAN NAME                              EXTERNAL NAME
-   86064792-7ea2-467b-af93-ac9694d96d52   service-plan-name
-   ...                                    ...
-   ```
-
-<!--
-### Provisioning a new instance
-
-A cluster operator can initiate the provisioning of a new instance by creating a `ServiceInstance` resource.
-
-This is an example of a `ServiceInstance` resource:
-
-```yaml
-apiVersion: servicecatalog.k8s.io/v1beta1
-kind: ServiceInstance
-metadata:
-  name: cloud-queue-instance
-  namespace: cloud-apps
-spec:
-  # References one of the previously returned services
-  clusterServiceClassExternalName: cloud-provider-service
-  clusterServicePlanExternalName: service-plan-name
-  #####
-  # Additional parameters can be added here,
-  # which may be used by the service broker.
-  #####
-```
--->
-### 供应一个新实例
-
-集群运维人员 可以通过创建一个 `ServiceInstance` 资源来启动一个新实例的配置。
-
-下面是一个 `ServiceInstance` 资源的例子：
-
-```yaml
-apiVersion: servicecatalog.k8s.io/v1beta1
-kind: ServiceInstance
-metadata:
-  name: cloud-queue-instance
-  namespace: cloud-apps
-spec:
-  # 引用之前返回的服务之一
-  clusterServiceClassExternalName: cloud-provider-service
-  clusterServicePlanExternalName: service-plan-name
-  #####
-  # 这里可添加额外的参数，供服务代理使用
-  #####
-```
-
-<!--
-The following sequence diagram illustrates the steps involved in provisioning a new instance of a managed service:
-
-![Provision a Service](/images/docs/service-catalog-provision.svg)
-
-1. When the `ServiceInstance` resource is created, Service Catalog initiates a call to the external service broker to provision an instance of the service.
-1. The service broker creates a new instance of the managed service and returns an HTTP response.
-1. A cluster operator can then check the status of the instance to see if it is ready.
--->
-以下时序图展示了配置托管服务新实例所涉及的步骤：
-
-![供应服务](/images/docs/service-catalog-provision.svg)
-
-1. 创建 `ServiceInstance` 资源时，服务目录将启动一个到外部服务代理的调用，
-   请求供应一个实例。
-1. 服务代理创建一个托管服务的新实例并返回 HTTP 响应。
-1. 接下来，集群运维人员可以检查实例的状态是否就绪。
-
-<!--
-### Binding to a managed service
-
-After a new instance has been provisioned, a cluster operator must bind to the managed service to get the connection credentials and service account details necessary for the application to use the service. This is done by creating a `ServiceBinding` resource.
-
-The following is an example of a `ServiceBinding` resource:
-
-```yaml
-apiVersion: servicecatalog.k8s.io/v1beta1
-kind: ServiceBinding
-metadata:
-  name: cloud-queue-binding
-  namespace: cloud-apps
-spec:
-  instanceRef:
-    name: cloud-queue-instance
-  #####
-  # Additional information can be added here, such as a secretName or
-  # service account parameters, which may be used by the service broker.
-  #####
-```
--->
-### 绑定到托管服务
-
-在设置新实例之后，集群运维人员必须绑定到托管服务才能获取应用程序使用服务所需的连接凭据和服务账户的详细信息。该操作通过创建一个 `ServiceBinding` 资源完成。
-
-以下是 `ServiceBinding` 资源的示例：
-
-```yaml
-apiVersion: servicecatalog.k8s.io/v1beta1
-kind: ServiceBinding
-metadata:
-  name: cloud-queue-binding
-  namespace: cloud-apps
-spec:
-  instanceRef:
-    name: cloud-queue-instance
-  #####
-  # 这里可以添加供服务代理使用的额外信息，例如 Secret 名称或者服务账号参数，
-  #####
-```
-
-<!--
-The following sequence diagram illustrates the steps involved in binding to a managed service instance:
-
-![Bind to a managed service](/images/docs/service-catalog-bind.svg)
-
-1. After the `ServiceBinding` is created, Service Catalog makes a call to the external service broker requesting the information necessary to bind with the service instance.
-1. The service broker enables the application permissions/roles for the appropriate service account.
-1. The service broker returns the information necessary to connect and access the managed service instance. This is provider and service-specific so the information returned may differ between Service Providers and their managed services.
--->
-以下顺序图展示了绑定到托管服务实例的步骤：
-
-![绑定到托管服务](/images/docs/service-catalog-bind.svg)
-
-1. 在创建 `ServiceBinding` 之后，服务目录调用外部服务代理，请求绑定服务实例所需的信息。
-1. 服务代理为相应服务账户启用应用权限/角色。
-1. 服务代理返回连接和访问托管服务示例所需的信息。这是由提供商和服务特定的，故返回的信息可能因服务提供商和其托管服务而有所不同。
-
-<!--
-### Mapping the connection credentials
-
-After binding, the final step involves mapping the connection credentials and service-specific information into the application.
-These pieces of information are stored in secrets that the application in the cluster can access and use to connect directly with the managed service.
-
-<br>
-
-![Map connection credentials](/images/docs/service-catalog-map.svg)
--->
-### 映射连接凭据
-
-完成绑定之后的最后一步就是将连接凭据和服务特定的信息映射到应用程序中。这些信息存储在 secret 中，集群中的应用程序可以访问并使用它们直接与托管服务进行连接。
-
-<br>
-
-![映射连接凭据](/images/docs/service-catalog-map.svg)
-
-<!--
-#### Pod configuration File
-
-One method to perform this mapping is to use a declarative Pod configuration.
-
-The following example describes how to map service account credentials into the application. A key called `sa-key` is stored in a volume named `provider-cloud-key`, and the application mounts this volume at `/var/secrets/provider/key.json`. The environment variable `PROVIDER_APPLICATION_CREDENTIALS` is mapped from the value of the mounted file.
--->
-#### Pod 配置文件
-
-执行此映射的一种方法是使用声明式 Pod 配置。
-
-以下示例描述了如何将服务账户凭据映射到应用程序中。名为 `sa-key` 的密钥保存在一个名为
-`provider-cloud-key` 的卷中，应用程序会将该卷挂载在 `/var/secrets/provider/key.json`
-路径下。环境变量 `PROVIDER_APPLICATION_CREDENTIALS` 将映射为挂载文件的路径。
-
-```yaml
-...
-    spec:
-      volumes:
-        - name: provider-cloud-key
-          secret:
-            secretName: sa-key
-      containers:
-...
-          volumeMounts:
-          - name: provider-cloud-key
-            mountPath: /var/secrets/provider
-          env:
-          - name: PROVIDER_APPLICATION_CREDENTIALS
-            value: "/var/secrets/provider/key.json"
-```
-
-<!--
-The following example describes how to map secret values into application environment variables. In this example, the messaging queue topic name is mapped from a secret named `provider-queue-credentials` with a key named `topic` to the environment variable `TOPIC`.
--->
-以下示例描述了如何将 Secret 值映射为应用程序的环境变量。
-在这个示例中，消息队列的主题名从 Secret `provider-queue-credentials` 中名为
-`topic` 的主键映射到环境变量 `TOPIC` 中。
-
-```yaml
-...
-          env:
-          - name: "TOPIC"
-            valueFrom:
-                secretKeyRef:
-                   name: provider-queue-credentials
-                   key: topic
-```
-
-## {{% heading "whatsnext" %}}
-
-<!--
-* If you are familiar with {{< glossary_tooltip text="Helm Charts" term_id="helm-chart" >}}, [install Service Catalog using Helm](/docs/tasks/service-catalog/install-service-catalog-using-helm/) into your Kubernetes cluster. Alternatively, you can [install Service Catalog using the SC tool](/docs/tasks/service-catalog/install-service-catalog-using-sc/).
-* View [sample service brokers](https://github.com/openservicebrokerapi/servicebroker/blob/master/gettingStarted.md#sample-service-brokers).
-* Explore the [kubernetes-sigs/service-catalog](https://github.com/kubernetes-sigs/service-catalog) project.
-* View [svc-cat.io](https://svc-cat.io/docs/).
--->
-* 如果你熟悉 {{< glossary_tooltip text="Helm Charts" term_id="helm-chart" >}}，
-  可以[使用 Helm 安装服务目录](/zh/docs/tasks/service-catalog/install-service-catalog-using-helm/)
-  到 Kubernetes 集群中。或者，你可以
-  [使用 SC 工具安装服务目录](/zh/docs/tasks/service-catalog/install-service-catalog-using-sc/)。
-* 查看[服务代理示例](https://github.com/openservicebrokerapi/servicebroker/blob/master/gettingStarted.md#sample-service-brokers)
-* 浏览 [kubernetes-sigs/service-catalog](https://github.com/kubernetes-sigs/service-catalog) 项目
-* 查看 [svc-cat.io](https://svc-cat.io/docs/)
-
-
diff --git a/content/zh/docs/concepts/overview/_index.md b/content/zh/docs/concepts/overview/_index.md
deleted file mode 100644
index 8c8aff7531..0000000000
--- a/content/zh/docs/concepts/overview/_index.md
+++ /dev/null
@@ -1,7 +0,0 @@
----
-title: 概述
-weight: 20
-description: 获得 Kubernetes 及其构件的高层次概要。
-sitemap:
-  priority: 0.9
----
diff --git a/content/zh/docs/concepts/overview/working-with-objects/_index.md b/content/zh/docs/concepts/overview/working-with-objects/_index.md
deleted file mode 100644
index a327b880d8..0000000000
--- a/content/zh/docs/concepts/overview/working-with-objects/_index.md
+++ /dev/null
@@ -1,6 +0,0 @@
----
-title: "使用 Kubernetes 对象"
-weight: 40
-description: >
-  Kubernetes 对象是 Kubernetes 系统中的持久性实体。Kubernetes 使用这些实体表示您的集群状态。了解 Kubernetes 对象模型以及如何使用这些对象。
----
diff --git a/content/zh/docs/concepts/overview/working-with-objects/kubernetes-objects.md b/content/zh/docs/concepts/overview/working-with-objects/kubernetes-objects.md
deleted file mode 100644
index 96a863cfa0..0000000000
--- a/content/zh/docs/concepts/overview/working-with-objects/kubernetes-objects.md
+++ /dev/null
@@ -1,201 +0,0 @@
----
-title: 理解 Kubernetes 对象
-content_type: concept
-weight: 10
-card: 
-  name: concepts
-  weight: 40
----
-
-<!---
-title: Understanding Kubernetes Objects
-content_type: concept
-weight: 10
-card: 
-  name: concepts
-  weight: 40
--->
-
-<!-- overview -->
-<!--
-This page explains how Kubernetes objects are represented in the Kubernetes API, and how you can express them in `.yaml` format.
--->
-本页说明了 Kubernetes 对象在 Kubernetes API 中是如何表示的，以及如何在 `.yaml` 格式的文件中表示。
-
-
-<!-- body -->
-<!--
-## Understanding Kubernetes Objects
-
-*Kubernetes Objects* are persistent entities in the Kubernetes system. Kubernetes uses these entities to represent the state of your cluster. Specifically, they can describe:
-
-* What containerized applications are running (and on which nodes)
-* The resources available to those applications
-* The policies around how those applications behave, such as restart policies, upgrades, and fault-tolerance
--->
-## 理解 Kubernetes 对象
-
-在 Kubernetes 系统中，*Kubernetes 对象* 是持久化的实体。
-Kubernetes 使用这些实体去表示整个集群的状态。特别地，它们描述了如下信息：
-
-* 哪些容器化应用在运行（以及在哪些节点上）
-* 可以被应用使用的资源
-* 关于应用运行时表现的策略，比如重启策略、升级策略，以及容错策略
-
-<!--
-A Kubernetes object is a "record of intent" - once you create the object, the Kubernetes system will constantly work to ensure that object exists. By creating an object, you're effectively telling the Kubernetes system what you want your cluster's workload to look like; this is your cluster's *desired state*.
-
-To work with Kubernetes objects - whether to create, modify, or delete them - you'll need to use the [Kubernetes API](/docs/concepts/overview/kubernetes-api/). When you use the `kubectl` command-line interface, for example, the CLI makes the necessary Kubernetes API calls for you. You can also use the Kubernetes API directly in your own programs using one of the [Client Libraries](/docs/reference/using-api/client-libraries/).
--->
-Kubernetes 对象是 “目标性记录” —— 一旦创建对象，Kubernetes 系统将持续工作以确保对象存在。
-通过创建对象，本质上是在告知 Kubernetes 系统，所需要的集群工作负载看起来是什么样子的，
-这就是 Kubernetes 集群的 **期望状态（Desired State）**。
-
-操作 Kubernetes 对象 —— 无论是创建、修改，或者删除 —— 需要使用
-[Kubernetes API](/zh/docs/concepts/overview/kubernetes-api)。
-比如，当使用 `kubectl` 命令行接口时，CLI 会执行必要的 Kubernetes API 调用，
-也可以在程序中使用
-[客户端库](/zh/docs/reference/using-api/client-libraries/)直接调用 Kubernetes API。
-
-<!--
-### Object Spec and Status
-
-Almost every Kubernetes object includes two nested object fields that govern
-the object's configuration: the object *`spec`* and the object *`status`*.
-For objects that have a `spec`, you have to set this when you create the object,
-providing a description of the characteristics you want the resource to have:
-its _desired state_.
--->
-### 对象规约（Spec）与状态（Status）    {#object-spec-and-status}
-
-几乎每个 Kubernetes 对象包含两个嵌套的对象字段，它们负责管理对象的配置：
-对象 *`spec`（规约）* 和 对象 *`status`（状态）* 。
-对于具有 `spec` 的对象，你必须在创建对象时设置其内容，描述你希望对象所具有的特征：
-*期望状态（Desired State）* 。
-
-<!--
-The `status` describes the _current state_ of the object, supplied and updated
-by the Kubernetes system and its components. The Kubernetes
-{{< glossary_tooltip text="control plane" term_id="control-plane" >}} continually
-and actively manages every object's actual state to match the desired state you
-supplied.
--->
-`status` 描述了对象的 _当前状态（Current State）_，它是由 Kubernetes 系统和组件
-设置并更新的。在任何时刻，Kubernetes 
-{{< glossary_tooltip text="控制平面" term_id="control-plane" >}}
-都一直积极地管理着对象的实际状态，以使之与期望状态相匹配。
-
-<!--
-For example: in Kubernetes, a Deployment is an object that can represent an
-application running on your cluster. When you create the Deployment, you
-might set the Deployment `spec` to specify that you want three replicas of
-the application to be running. The Kubernetes system reads the Deployment
-spec and starts three instances of your desired application-updating
-the status to match your spec. If any of those instances should fail
-(a status change), the Kubernetes system responds to the difference
-between spec and status by making a correction-in this case, starting
-a replacement instance.
--->
-例如，Kubernetes 中的 Deployment 对象能够表示运行在集群中的应用。
-当创建 Deployment 时，可能需要设置 Deployment 的 `spec`，以指定该应用需要有 3 个副本运行。
-Kubernetes 系统读取 Deployment 规约，并启动我们所期望的应用的 3 个实例
-—— 更新状态以与规约相匹配。
-如果这些实例中有的失败了（一种状态变更），Kubernetes 系统通过执行修正操作
-来响应规约和状态间的不一致 —— 在这里意味着它会启动一个新的实例来替换。
-
-<!--
-For more information on the object spec, status, and metadata, see the [Kubernetes API Conventions](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md).
--->
-
-关于对象 spec、status 和 metadata 的更多信息，可参阅
-[Kubernetes API 约定](https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md)。
-
-<!--
-### Describing a Kubernetes Object
-
-When you create an object in Kubernetes, you must provide the object spec that describes its desired state, as well as some basic information about the object (such as a name). When you use the Kubernetes API to create the object (either directly or via `kubectl`), that API request must include that information as JSON in the request body. **Most often, you provide the information to `kubectl` in a .yaml file.** `kubectl` converts the information to JSON when making the API request.
-
-Here's an example `.yaml` file that shows the required fields and object spec for a Kubernetes Deployment:
--->
-### 描述 Kubernetes 对象
-
-创建 Kubernetes 对象时，必须提供对象的规约，用来描述该对象的期望状态，
-以及关于对象的一些基本信息（例如名称）。
-当使用 Kubernetes API 创建对象时（或者直接创建，或者基于`kubectl`），
-API 请求必须在请求体中包含 JSON 格式的信息。
-**大多数情况下，需要在 .yaml 文件中为 `kubectl` 提供这些信息**。
-`kubectl` 在发起 API 请求时，将这些信息转换成 JSON 格式。
-
-这里有一个 `.yaml` 示例文件，展示了 Kubernetes Deployment 的必需字段和对象规约：
-
-{{< codenew file="application/deployment.yaml" >}}
-
-<!--
-One way to create a Deployment using a `.yaml` file like the one above is to use the
-[`kubectl apply`](/docs/reference/generated/kubectl/kubectl-commands#apply) command
-in the `kubectl` command-line interface, passing the `.yaml` file as an argument. Here's an example:
--->
-使用类似于上面的 `.yaml` 文件来创建 Deployment的一种方式是使用 `kubectl` 命令行接口（CLI）中的
-[`kubectl apply`](/docs/reference/generated/kubectl/kubectl-commands#apply) 命令，
-将 `.yaml` 文件作为参数。下面是一个示例：
-
-```shell
-kubectl apply -f https://k8s.io/examples/application/deployment.yaml --record
-```
-
-<!--
-The output is similar to this:
--->
-输出类似如下这样：
-
-```
-deployment.apps/nginx-deployment created
-```
-
-<!--
-### Required Fields
-
-In the `.yaml` file for the Kubernetes object you want to create, you'll need to set values for the following fields:
-
-* `apiVersion` - Which version of the Kubernetes API you're using to create this object
-* `kind` - What kind of object you want to create
-* `metadata` - Data that helps uniquely identify the object, including a `name` string, `UID`, and optional `namespace`
--->
-### 必需字段  {#required-fields}
-
-在想要创建的 Kubernetes 对象对应的 `.yaml` 文件中，需要配置如下的字段：
-
-* `apiVersion` - 创建该对象所使用的 Kubernetes API 的版本
-* `kind` - 想要创建的对象的类别
-* `metadata` - 帮助唯一性标识对象的一些数据，包括一个 `name` 字符串、UID 和可选的 `namespace`
-
-<!--
-You'll also need to provide the object `spec` field. The precise format of the object `spec` is different for every Kubernetes object, and contains nested fields specific to that object. The [Kubernetes API Reference](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/) can help you find the spec format for all of the objects you can create using Kubernetes.
-For example, the `spec` format for a `Pod` can be found
-[here](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core),
-and the `spec` format for a `Deployment` can be found
-[here](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#deploymentspec-v1-apps).
--->
-你也需要提供对象的 `spec` 字段。
-对象 `spec` 的精确格式对每个 Kubernetes 对象来说是不同的，包含了特定于该对象的嵌套字段。
-[Kubernetes API 参考](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)
-能够帮助我们找到任何我们想创建的对象的 spec 格式。
-例如，可以从
-[core/v1 PodSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core)
-查看 `Pod` 的 `spec` 格式，
-并且可以从
-[apps/v1 DeploymentSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#deploymentspec-v1-apps)
-查看 `Deployment` 的 `spec` 格式。
-
-
-## {{% heading "whatsnext" %}}
-
-<!--
-* Learn about the most important basic Kubernetes objects, such as [Pod](/docs/concepts/workloads/pods/).
-* Learn about [controllers](/docs/concepts/architecture/controller/) in Kubernetes.
-* [Using the Kubernetes API](/docs/reference/using-api/) explains some more API concepts.
--->
-* 了解最重要的 Kubernetes 基本对象，例如 [Pod](/zh/docs/concepts/workloads/pods/)。
-* 了解 Kubernetes 中的[控制器](/zh/docs/concepts/architecture/controller/)。
-* [使用 Kubernetes API](/zh/docs/reference/using-api/) 一节解释了一些 API 概念。
-
diff --git a/content/zh/docs/concepts/overview/working-with-objects/namespaces.md b/content/zh/docs/concepts/overview/working-with-objects/namespaces.md
deleted file mode 100644
index 5d43643cdf..0000000000
--- a/content/zh/docs/concepts/overview/working-with-objects/namespaces.md
+++ /dev/null
@@ -1,228 +0,0 @@
----
-title: 名字空间
-content_type: concept
-weight: 30
----
-<!--
-reviewers:
-- derekwaynecarr
-- mikedanese
-- thockin
-title: Namespaces
-content_type: concept
-weight: 30
--->
-
-<!-- overview -->
-
-<!--
-Kubernetes supports multiple virtual clusters backed by the same physical cluster.
-These virtual clusters are called namespaces.
--->
-Kubernetes 支持多个虚拟集群，它们底层依赖于同一个物理集群。
-这些虚拟集群被称为名字空间。
-在一些文档里名字空间也称为命名空间。
-
-<!-- body -->
-
-<!--
-## When to Use Multiple Namespaces
--->
-## 何时使用多个名字空间
-
-<!--
-Namespaces are intended for use in environments with many users spread across multiple
-teams, or projects.  For clusters with a few to tens of users, you should not
-need to create or think about namespaces at all.  Start using namespaces when you
-need the features they provide.
--->
-名字空间适用于存在很多跨多个团队或项目的用户的场景。对于只有几到几十个用户的集群，根本不需要创建或考虑名字空间。当需要名称空间提供的功能时，请开始使用它们。
-
-<!--
-Namespaces provide a scope for names.  Names of resources need to be unique within a namespace,
-but not across namespaces. Namespaces can not be nested inside one another and each Kubernetes
-resource can only be in one namespace.
--->
-名字空间为名称提供了一个范围。资源的名称需要在名字空间内是唯一的，但不能跨名字空间。
-名字空间不能相互嵌套，每个 Kubernetes 资源只能在一个名字空间中。
-
-<!--
-Namespaces are a way to divide cluster resources between multiple users (via [resource quota](/docs/concepts/policy/resource-quotas/)).
--->
-名字空间是在多个用户之间划分集群资源的一种方法（通过[资源配额](/zh/docs/concepts/policy/resource-quotas/)）。
-
-<!--
-It is not necessary to use multiple namespaces to separate slightly different
-resources, such as different versions of the same software: use
-{{< glossary_tooltip text="labels" term_id="label" >}} to distinguish
-resources within the same namespace.
--->
-不必使用多个名字空间来分隔仅仅轻微不同的资源，例如同一软件的不同版本：
-应该使用{{< glossary_tooltip text="标签" term_id="label" >}}
-来区分同一名字空间中的不同资源。
-
-<!--
-## Working with Namespaces
-
-Creation and deletion of namespaces are described in the [Admin Guide documentation
-for namespaces](/docs/tasks/administer-cluster/namespaces/).
--->
-## 使用名字空间
-
-名字空间的创建和删除在[名字空间的管理指南文档](/zh/docs/tasks/administer-cluster/namespaces/)描述。
-
-<!--
-Avoid creating namespaces with the prefix `kube-`, since it is reserved for Kubernetes system namespaces.
--->
-{{< note >}}
-避免使用前缀 `kube-` 创建名字空间，因为它是为 Kubernetes 系统名字空间保留的。
-{{< /note >}}
-
-<!--
-### Viewing namespaces
-
-You can list the current namespaces in a cluster using:
--->
-### 查看名字空间
-
-你可以使用以下命令列出集群中现存的名字空间：
-
-```shell
-kubectl get namespace
-```
-```
-NAME          STATUS    AGE
-default       Active    1d
-kube-node-lease   Active   1d
-kube-system   Active    1d
-kube-public   Active    1d
-```
-
-<!--
-Kubernetes starts with four initial namespaces:
-
-* `default` The default namespace for objects with no other namespace
-* `kube-system` The namespace for objects created by the Kubernetes system
-* `kube-public` This namespace is created automatically and is readable by all users (including those not authenticated). This namespace is mostly reserved for cluster usage, in case that some resources should be visible and readable publicly throughout the whole cluster. The public aspect of this namespace is only a convention, not a requirement.
-* `kube-node-lease` This namespace for the lease objects associated with each node which improves the performance of the node heartbeats as the cluster scales.
--->
-Kubernetes 会创建四个初始名字空间：
-
-* `default` 没有指明使用其它名字空间的对象所使用的默认名字空间
-* `kube-system` Kubernetes 系统创建对象所使用的名字空间
-* `kube-public` 这个名字空间是自动创建的，所有用户（包括未经过身份验证的用户）都可以读取它。
-  这个名字空间主要用于集群使用，以防某些资源在整个集群中应该是可见和可读的。
-  这个名字空间的公共方面只是一种约定，而不是要求。
-* `kube-node-lease` 此名字空间用于与各个节点相关的租期（Lease）对象；
-  此对象的设计使得集群规模很大时节点心跳检测性能得到提升。
-
-<!--
-### Setting the namespace for a request
-
-To set the namespace for a current request, use the `-namespace` flag.
-
-For example:
--->
-### 为请求设置名字空间
-
-要为当前请求设置名字空间，请使用 `--namespace` 参数。
-
-例如：
-
-```shell
-kubectl run nginx --image=nginx --namespace=<名字空间名称>
-kubectl get pods --namespace=<名字空间名称>
-```
-
-<!--
-### Setting the namespace preference
-
-You can permanently save the namespace for all subsequent kubectl commands in that
-context.
--->
-### 设置名字空间偏好
-
-你可以永久保存名字空间，以用于对应上下文中所有后续 kubectl 命令。
-
-```shell
-kubectl config set-context --current --namespace=<名字空间名称>
-# 验证之
-kubectl config view | grep namespace:
-```
-
-<!--
-## Namespaces and DNS
-
-When you create a [Service](/docs/user-guide/services), it creates a corresponding [DNS entry](/docs/concepts/services-networking/dns-pod-service/).
--->
-## 名字空间和 DNS
-
-当你创建一个[服务](/zh/docs/concepts/services-networking/service/) 时，
-Kubernetes 会创建一个相应的 [DNS 条目](/zh/docs/concepts/services-networking/dns-pod-service/)。
-
-<!--
-This entry is of the form `<service-name>.<namespace-name>.svc.cluster.local`, which means
-that if a container only uses `<service-name>`, it will resolve to the service which
-is local to a namespace.  This is useful for using the same configuration across
-multiple namespaces such as Development, Staging and Production.  If you want to reach
-across namespaces, you need to use the fully qualified domain name (FQDN).
--->
-该条目的形式是 `<服务名称>.<名字空间名称>.svc.cluster.local`，这意味着如果容器只使用
-`<服务名称>`，它将被解析到本地名字空间的服务。这对于跨多个名字空间（如开发、分级和生产）
-使用相同的配置非常有用。如果你希望跨名字空间访问，则需要使用完全限定域名（FQDN）。
-
-<!--
-## Not All Objects are in a Namespace
--->
-## 并非所有对象都在名字空间中
-
-<!--
-Most Kubernetes resources (e.g. pods, services, replication controllers, and others) are
-in some namespaces.  However namespace resources are not themselves in a namespace.
-And low-level resources, such as [nodes](/docs/concepts/architecture/nodes/) and
-persistentVolumes, are not in any namespace.
--->
-大多数 kubernetes 资源（例如 Pod、Service、副本控制器等）都位于某些名字空间中。
-但是名字空间资源本身并不在名字空间中。而且底层资源，例如
-[节点](/zh/docs/concepts/architecture/nodes/) 和持久化卷不属于任何名字空间。
-
-<!--
-To see which Kubernetes resources are and aren't in a namespace:
--->
-查看哪些 Kubernetes 资源在名字空间中，哪些不在名字空间中：
-
-```shell
-# 位于名字空间中的资源
-kubectl api-resources --namespaced=true
-
-# 不在名字空间中的资源
-kubectl api-resources --namespaced=false
-```
-
-<!--
-## Automatic labelling
--->
-## 自动打标签   {#automatic-labelling}
-
-{{< feature-state state="beta" for_k8s_version="1.21" >}}
-
-<!--
-The Kubernetes control plane sets an immutable {{< glossary_tooltip text="label" term_id="label" >}}
-`kubernetes.io/metadata.name` on all namespaces, provided that the `NamespaceDefaultLabelName`
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled.
-The value of the label is the namespace name.
--->
-Kubernetes 控制面会为所有名字空间设置一个不可变更的
-{{< glossary_tooltip text="标签" term_id="label" >}}
-`kubernetes.io/metadata.name`，只要 `NamespaceDefaultLabelName` 这一
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
-被启用。标签的值是名字空间的名称。
-
-## {{% heading "whatsnext" %}}
-
-<!--
-* Learn more about [creating a new namespace](/docs/tasks/administer-cluster/namespaces/#creating-a-new-namespace).
-* Learn more about [deleting a namespace](/docs/tasks/administer-cluster/namespaces/#deleting-a-namespace).
--->
-* 进一步了解[建立新的名字空间](/zh/docs/tasks/administer-cluster/namespaces/#creating-a-new-namespace)。
-* 进一步了解[删除名字空间](/zh/docs/tasks/administer-cluster/namespaces/#deleting-a-namespace)。
diff --git a/content/zh/docs/concepts/scheduling-eviction/_index.md b/content/zh/docs/concepts/scheduling-eviction/_index.md
deleted file mode 100644
index 01265f3a05..0000000000
--- a/content/zh/docs/concepts/scheduling-eviction/_index.md
+++ /dev/null
@@ -1,53 +0,0 @@
----
-title: 调度，抢占和驱逐
-weight: 90
-content_type: concept
-description: >
-  在Kubernetes中，调度 (scheduling) 指的是确保 Pods 匹配到合适的节点，
-  以便 kubelet 能够运行它们。抢占 (Preemption) 指的是终止低优先级的 Pods 以便高优先级的 Pods 可以
-  调度运行的过程。驱逐 (Eviction) 是在资源匮乏的节点上，主动让一个或多个 Pods 失效的过程。
----
-
-<!--
----
-title: "Scheduling, Preemption and Eviction"
-weight: 90
-content_type: concept
-description: >
-  In Kubernetes, scheduling refers to making sure that Pods are matched to Nodes
-  so that the kubelet can run them. Preemption is the process of terminating
-  Pods with lower Priority so that Pods with higher Priority can schedule on
-  Nodes. Eviction is the process of proactively terminating one or more Pods on
-  resource-starved Nodes.
-no_list: true
----
--->
-
-<!--
-In Kubernetes, scheduling refers to making sure that {{<glossary_tooltip text="Pods" term_id="pod">}}
-are matched to {{<glossary_tooltip text="Nodes" term_id="node">}} so that the
-{{<glossary_tooltip text="kubelet" term_id="kubelet">}} can run them. Preemption
-is the process of terminating Pods with lower {{<glossary_tooltip text="Priority" term_id="pod-priority">}}
-so that Pods with higher Priority can schedule on Nodes. Eviction is the process
-of terminating one or more Pods on Nodes.
--->
-
-<!-- ## Scheduling -->
-
-## 调度
-
-* [Kubernetes 调度器](/zh/docs/concepts/scheduling-eviction/kube-scheduler/)
-* [将 Pods 指派到节点](/zh/docs/concepts/scheduling-eviction/assign-pod-node/)
-* [Pod 开销](/zh/docs/concepts/scheduling-eviction/pod-overhead/)
-* [污点和容忍](/zh/docs/concepts/scheduling-eviction/taint-and-toleration/)
-* [调度框架](/zh/docs/concepts/scheduling-eviction/scheduling-framework)
-* [调度器的性能调试](/zh/docs/concepts/scheduling-eviction/scheduler-perf-tuning/)
-* [扩展资源的资源装箱](/zh/docs/concepts/scheduling-eviction/resource-bin-packing/)
-
-<!-- ## Pod Disruption -->
-
-## Pod 干扰
-
-* [Pod 优先级和抢占](/zh/docs/concepts/scheduling-eviction/pod-priority-preemption/)
-* [节点压力驱逐](/zh/docs/concepts/scheduling-eviction/node-pressure-eviction/)
-* [API发起的驱逐](/zh/docs/concepts/scheduling-eviction/api-eviction/)
diff --git a/content/zh/docs/concepts/scheduling-eviction/api-eviction.md b/content/zh/docs/concepts/scheduling-eviction/api-eviction.md
deleted file mode 100644
index ee90cf9dd6..0000000000
--- a/content/zh/docs/concepts/scheduling-eviction/api-eviction.md
+++ /dev/null
@@ -1,38 +0,0 @@
----
-title: API 发起的驱逐
-content_type: concept
-weight: 70
----
-<!-- 
----
-title: API-initiated Eviction
-content_type: concept
-weight: 70
----
--->
-{{< glossary_definition term_id="api-eviction" length="short" >}} </br>
-
-<!-- 
-You can request eviction by directly calling the Eviction API 
-using a client of the kube-apiserver, like the `kubectl drain` command. 
-This creates an `Eviction` object, which causes the API server to terminate the Pod. 
-
-API-initiated evictions respect your configured [`PodDisruptionBudgets`](/docs/tasks/run-application/configure-pdb/)
-and [`terminationGracePeriodSeconds`](/docs/concepts/workloads/pods/pod-lifecycle#pod-termination). 
--->
-你可以通过 kube-apiserver 的客户端，比如 `kubectl drain` 这样的命令，直接调用 Eviction API 发起驱逐。
-此操作创建一个 `Eviction` 对象，该对象再驱动 API 服务器终止选定的 Pod。
-
-API 发起的驱逐将遵从你的
-[`PodDisruptionBudgets`](/zh/docs/tasks/run-application/configure-pdb/)
-和 [`terminationGracePeriodSeconds`](/zh/docs/concepts/workloads/pods/pod-lifecycle#pod-termination)
-配置。
-
-## {{% heading "whatsnext" %}}
-
-<!-- 
-* Learn about [Node-pressure Eviction](/docs/concepts/scheduling-eviction/node-pressure-eviction/)
-* Learn about [Pod Priority and Preemption](/docs/concepts/scheduling-eviction/pod-priority-preemption/)
--->
-* 了解[节点压力引发的驱逐](/zh/docs/concepts/scheduling-eviction/node-pressure-eviction/)
-* 了解 [Pod 优先级和抢占](/zh/docs/concepts/scheduling-eviction/pod-priority-preemption/)
diff --git a/content/zh/docs/concepts/scheduling-eviction/assign-pod-node.md b/content/zh/docs/concepts/scheduling-eviction/assign-pod-node.md
deleted file mode 100644
index ca16706ff2..0000000000
--- a/content/zh/docs/concepts/scheduling-eviction/assign-pod-node.md
+++ /dev/null
@@ -1,840 +0,0 @@
----
-title: 将 Pod 分配给节点
-content_type: concept
-weight: 20
----
-
-<!--
-reviewers:
-- davidopp
-- kevin-wangzefeng
-- bsalamat
-title: Assigning Pods to Nodes
-content_type: concept
-weight: 20
--->
-
-<!-- overview -->
-
-<!--
-You can constrain a {{< glossary_tooltip text="Pod" term_id="pod" >}} so that it can only run on particular set of
-{{< glossary_tooltip text="Node(s)" term_id="node" >}}.
-There are several ways to do this, and the recommended approaches all use
-[label selectors](/docs/concepts/overview/working-with-objects/labels/) to facilitate the selection.
-Generally such constraints are unnecessary, as the scheduler will automatically do a reasonable placement
-(e.g. spread your pods across nodes so as not place the pod on a node with insufficient free resources, etc.)
-but there are some circumstances where you may want more control on a node where a pod lands, for example to ensure
-that a pod ends up on a machine with an SSD attached to it, or to co-locate pods from two different
-services that communicate a lot into the same availability zone.
--->
-你可以约束一个 {{< glossary_tooltip text="Pod" term_id="pod" >}} 只能在特定的
-{{< glossary_tooltip text="节点" term_id="node" >}} 上运行。
-有几种方法可以实现这点，推荐的方法都是用
-[标签选择算符](/zh/docs/concepts/overview/working-with-objects/labels/)来进行选择。
-通常这样的约束不是必须的，因为调度器将自动进行合理的放置（比如，将 Pod 分散到节点上，
-而不是将 Pod 放置在可用资源不足的节点上等等）。但在某些情况下，你可能需要进一步控制
-Pod 停靠的节点，例如，确保 Pod 最终落在连接了 SSD 的机器上，或者将来自两个不同的服务
-且有大量通信的 Pods 被放置在同一个可用区。
-
-<!-- body -->
-
-## nodeSelector
-
-<!--
-`nodeSelector` is the simplest recommended form of node selection constraint.
-`nodeSelector` is a field of PodSpec. It specifies a map of key-value pairs. For the pod to be eligible
-to run on a node, the node must have each of the indicated key-value pairs as labels (it can have
-additional labels as well). The most common usage is one key-value pair.
--->
-
-`nodeSelector` 是节点选择约束的最简单推荐形式。`nodeSelector` 是 PodSpec 的一个字段。
-它包含键值对的映射。为了使 pod 可以在某个节点上运行，该节点的标签中
-必须包含这里的每个键值对（它也可以具有其他标签）。
-最常见的用法的是一对键值对。
-
-<!--
-Let's walk through an example of how to use `nodeSelector`.
--->
-让我们来看一个使用 `nodeSelector` 的例子。
-
-<!--
-### Step Zero: Prerequisites
-
-This example assumes that you have a basic understanding of Kubernetes pods and that you have [set up a Kubernetes cluster](/docs/setup/).
--->
-### 步骤零：先决条件
-
-本示例假设你已基本了解 Kubernetes 的 Pod 并且已经[建立一个 Kubernetes 集群](/zh/docs/setup/)。
-
-<!--
-### Step One: Attach label to the node
-
-Run `kubectl get nodes` to get the names of your cluster's nodes. Pick out the one that you want to add a label to, and then run `kubectl label nodes <node-name> <label-key>=<label-value>` to add a label to the node you've chosen. For example, if my node name is 'kubernetes-foo-node-1.c.a-robinson.internal' and my desired label is 'disktype=ssd', then I can run `kubectl label nodes kubernetes-foo-node-1.c.a-robinson.internal disktype=ssd`.
--->
-### 步骤一：添加标签到节点 {#attach-labels-to-node}
-
-执行 `kubectl get nodes` 命令获取集群的节点名称。
-选择一个你要增加标签的节点，然后执行
-`kubectl label nodes <node-name> <label-key>=<label-value>`
-命令将标签添加到你所选择的节点上。
-例如，如果你的节点名称为 'kubernetes-foo-node-1.c.a-robinson.internal'
-并且想要的标签是 'disktype=ssd'，则可以执行
-`kubectl label nodes kubernetes-foo-node-1.c.a-robinson.internal disktype=ssd` 命令。
-
-<!--
-You can verify that it worked by re-running `kubectl get nodes -show-labels` and checking that the node now has a label. You can also use `kubectl describe node "nodename"` to see the full list of labels of the given node.
--->
-你可以通过重新运行 `kubectl get nodes --show-labels`，
-查看节点当前具有了所指定的标签来验证它是否有效。
-你也可以使用 `kubectl describe node "nodename"` 命令查看指定节点的标签完整列表。
-
-<!--
-### Step Two: Add a nodeSelector field to your pod configuration
-
-Take whatever pod config file you want to run, and add a nodeSelector section to it, like this. For example, if this is my pod config:
--->
-### 步骤二：添加 nodeSelector 字段到 Pod 配置中
-
-选择任何一个你想运行的 Pod 的配置文件，并且在其中添加一个 nodeSelector 部分。
-例如，如果下面是我的 pod 配置：
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: nginx
-  labels:
-    env: test
-spec:
-  containers:
-  - name: nginx
-    image: nginx
-```
-
-<!--
-Then add a nodeSelector like so:
--->
-然后像下面这样添加 nodeSelector：
-
-{{< codenew file="pods/pod-nginx.yaml" >}}
-
-<!--
-When you then run `kubectl apply -f https://k8s.io/examples/pods/pod-nginx.yaml`,
-the Pod will get scheduled on the node that you attached the label to. You can
-verify that it worked by running `kubectl get pods -o wide` and looking at the
-"NODE" that the Pod was assigned to.
--->
-当你之后运行 `kubectl apply -f https://k8s.io/examples/pods/pod-nginx.yaml` 命令，
-Pod 将会调度到将标签添加到的节点上。
-你可以通过运行 `kubectl get pods -o wide` 并查看分配给 pod 的 “NODE” 来验证其是否有效。
-
-<!--
-## Interlude: built-in node labels {#built-in-node-labels}
-
-In addition to labels you [attach](#step-one-attach-label-to-the-node), nodes come pre-populated
-with a standard set of labels. See [Well-Known Labels, Annotations and Taints](/docs/reference/labels-annotations-taints/) for a list of these.
--->
-## 插曲：内置的节点标签 {#built-in-node-labels}
-
-除了你[添加](#step-one-attach-label-to-the-node)的标签外，节点还预制了一组标准标签。
-参见这些[常用的标签，注解以及污点](/zh/docs/reference/labels-annotations-taints/)：
-
-* [`kubernetes.io/hostname`](/zh/docs/reference/kubernetes-api/labels-annotations-taints/#kubernetes-io-hostname)
-* [`failure-domain.beta.kubernetes.io/zone`](/zh/docs/reference/kubernetes-api/labels-annotations-taints/#failure-domainbetakubernetesiozone)
-* [`failure-domain.beta.kubernetes.io/region`](/zh/docs/reference/kubernetes-api/labels-annotations-taints/#failure-domainbetakubernetesioregion)
-* [`topology.kubernetes.io/zone`](/zh/docs/reference/kubernetes-api/labels-annotations-taints/#topologykubernetesiozone)
-* [`topology.kubernetes.io/region`](/zh/docs/reference/kubernetes-api/labels-annotations-taints/#topologykubernetesiozone)
-* [`beta.kubernetes.io/instance-type`](/zh/docs/reference/kubernetes-api/labels-annotations-taints/#beta-kubernetes-io-instance-type)
-* [`node.kubernetes.io/instance-type`](/zh/docs/reference/kubernetes-api/labels-annotations-taints/#nodekubernetesioinstance-type)
-* [`kubernetes.io/os`](/zh/docs/reference/kubernetes-api/labels-annotations-taints/#kubernetes-io-os)
-* [`kubernetes.io/arch`](/zh/docs/reference/kubernetes-api/labels-annotations-taints/#kubernetes-io-arch)
-
-{{< note >}}
-<!--
-The value of these labels is cloud provider specific and is not guaranteed to be reliable.
-For example, the value of `kubernetes.io/hostname` may be the same as the Node name in some environments
-and a different value in other environments.
--->
-这些标签的值是特定于云供应商的，因此不能保证可靠。
-例如，`kubernetes.io/hostname` 的值在某些环境中可能与节点名称相同，
-但在其他环境中可能是一个不同的值。
-{{< /note >}}
-
-<!--
-## Node isolation/restriction
-
-Adding labels to Node objects allows targeting pods to specific nodes or groups of nodes.
-This can be used to ensure specific pods only run on nodes with certain isolation, security, or regulatory properties.
-When using labels for this purpose, choosing label keys that cannot be modified by the kubelet process on the node is strongly recommended.
-This prevents a compromised node from using its kubelet credential to set those labels on its own Node object,
-and influencing the scheduler to schedule workloads to the compromised node.
--->
-## 节点隔离/限制  {#node-isolation-restriction}
-
-向 Node 对象添加标签可以将 pod 定位到特定的节点或节点组。
-这可以用来确保指定的 Pod 只能运行在具有一定隔离性，安全性或监管属性的节点上。
-当为此目的使用标签时，强烈建议选择节点上的 kubelet 进程无法修改的标签键。
-这可以防止受感染的节点使用其 kubelet 凭据在自己的 Node 对象上设置这些标签，
-并影响调度器将工作负载调度到受感染的节点。
-
-<!--
-The `NodeRestriction` admission plugin prevents kubelets from setting or modifying labels with a `node-restriction.kubernetes.io/` prefix.
-To make use of that label prefix for node isolation:
--->
-`NodeRestriction` 准入插件防止 kubelet 使用 `node-restriction.kubernetes.io/`
-前缀设置或修改标签。要使用该标签前缀进行节点隔离：
-
-<!--
-1. Check that you're using Kubernetes v1.11+ so that NodeRestriction is available.
-2. Ensure you are using the [Node authorizer](/docs/reference/access-authn-authz/node/) and have _enabled_ the [NodeRestriction admission plugin](/docs/reference/access-authn-authz/admission-controllers/#noderestriction).
-3. Add labels under the `node-restriction.kubernetes.io/` prefix to your Node objects, and use those labels in your node selectors.
-For example, `example.com.node-restriction.kubernetes.io/fips=true` or `example.com.node-restriction.kubernetes.io/pci-dss=true`.
--->
-1. 检查是否在使用 Kubernetes v1.11+，以便 NodeRestriction 功能可用。
-2. 确保你在使用[节点授权](/zh/docs/reference/access-authn-authz/node/)并且已经_启用_
-   [NodeRestriction 准入插件](/zh/docs/reference/access-authn-authz/admission-controllers/#noderestriction)。
-3. 将 `node-restriction.kubernetes.io/` 前缀下的标签添加到 Node 对象，
-   然后在节点选择器中使用这些标签。
-   例如，`example.com.node-restriction.kubernetes.io/fips=true` 或
-   `example.com.node-restriction.kubernetes.io/pci-dss=true`。
-
-<!--
-## Affinity and anti-affinity
-
-`nodeSelector` provides a very simple way to constrain pods to nodes with particular labels. The affinity/anti-affinity
-feature, greatly expands the types of constraints you can express. The key enhancements are
--->
-## 亲和性与反亲和性
-
-`nodeSelector` 提供了一种非常简单的方法来将 Pod 约束到具有特定标签的节点上。
-亲和性/反亲和性功能极大地扩展了你可以表达约束的类型。关键的增强点包括：
-
-<!--
-1. the language is more expressive (not just "AND of exact match")
-2. you can indicate that the rule is "soft"/"preference" rather than a hard requirement, so if the scheduler
-   can't satisfy it, the pod will still be scheduled
-3. you can constrain against labels on other pods running on the node (or other topological domain),
-   rather than against labels on the node itself, which allows rules about which pods can and cannot be co-located
--->
-1. 语言更具表现力（不仅仅是“对完全匹配规则的 AND”）
-2. 你可以发现规则是“软需求”/“偏好”，而不是硬性要求，因此，
-   如果调度器无法满足该要求，仍然调度该 Pod
-3. 你可以使用节点上（或其他拓扑域中）的 Pod 的标签来约束，而不是使用
-   节点本身的标签，来允许哪些 pod 可以或者不可以被放置在一起。
-
-<!--
-The affinity feature consists of two types of affinity, "node affinity" and "inter-pod affinity/anti-affinity".
-Node affinity is like the existing `nodeSelector` (but with the first two benefits listed above),
-while inter-pod affinity/anti-affinity constrains against pod labels rather than node labels, as
-described in the third item listed above, in addition to having the first and second properties listed above.
--->
-亲和性功能包含两种类型的亲和性，即“节点亲和性”和“Pod 间亲和性/反亲和性”。
-节点亲和性就像现有的 `nodeSelector`（但具有上面列出的前两个好处），然而
-Pod 间亲和性/反亲和性约束 Pod 标签而不是节点标签（在上面列出的第三项中描述，
-除了具有上面列出的第一和第二属性）。
-
-<!--
-### Node affinity
-
-Node affinity is conceptually similar to `nodeSelector` -- it allows you to constrain which nodes your
-pod is eligible to be scheduled on, based on labels on the node.
--->
-### 节点亲和性   {#node-affinity}
-
-节点亲和性概念上类似于 `nodeSelector`，它使你可以根据节点上的标签来约束
-Pod 可以调度到哪些节点。
-
-<!--
-There are currently two types of node affinity, called `requiredDuringSchedulingIgnoredDuringExecution` and
-`preferredDuringSchedulingIgnoredDuringExecution`. You can think of them as "hard" and "soft" respectively,
-in the sense that the former specifies rules that *must* be met for a pod to be scheduled onto a node (similar to
-`nodeSelector` but using a more expressive syntax), while the latter specifies *preferences* that the scheduler
-will try to enforce but will not guarantee. The "IgnoredDuringExecution" part of the names means that, similar
-to how `nodeSelector` works, if labels on a node change at runtime such that the affinity rules on a pod are no longer
-met, the pod continues to run on the node. In the future we plan to offer
-`requiredDuringSchedulingRequiredDuringExecution` which will be identical to `requiredDuringSchedulingIgnoredDuringExecution`
-except that it will evict pods from nodes that cease to satisfy the pods' node affinity requirements.
--->
-目前有两种类型的节点亲和性，分别为 `requiredDuringSchedulingIgnoredDuringExecution` 和
-`preferredDuringSchedulingIgnoredDuringExecution`。
-你可以视它们为“硬需求”和“软需求”，意思是，前者指定了将 Pod 调度到一个节点上
-*必须*满足的规则（就像 `nodeSelector` 但使用更具表现力的语法），
-后者指定调度器将尝试执行但不能保证的*偏好*。
-名称的“IgnoredDuringExecution”部分意味着，类似于 `nodeSelector` 的工作原理，
-如果节点的标签在运行时发生变更，从而不再满足 Pod 上的亲和性规则，那么 Pod
-将仍然继续在该节点上运行。
-将来我们计划提供 `requiredDuringSchedulingRequiredDuringExecution`，
-它将与 `requiredDuringSchedulingIgnoredDuringExecution` 完全相同，
-只是它会将 Pod 从不再满足 Pod 的节点亲和性要求的节点上驱逐。
-
-<!--
-Thus an example of `requiredDuringSchedulingIgnoredDuringExecution` would be "only run the pod on nodes with Intel CPUs"
-and an example `preferredDuringSchedulingIgnoredDuringExecution` would be "try to run this set of pods in failure
-zone XYZ, but if it's not possible, then allow some to run elsewhere".
--->
-因此，`requiredDuringSchedulingIgnoredDuringExecution` 的示例将是
-“仅将 Pod 运行在具有 Intel CPU 的节点上”，而
-`preferredDuringSchedulingIgnoredDuringExecution` 的示例为
-“尝试将这组 Pod 运行在 XYZ 故障区域，如果这不可能的话，则允许一些
-Pod 在其他地方运行”。
-
-<!--
-Node affinity is specified as field `nodeAffinity` of field `affinity` in the PodSpec.
--->
-节点亲和性通过 PodSpec 的 `affinity` 字段下的 `nodeAffinity` 字段进行指定。
-
-<!--
-Here's an example of a pod that uses node affinity:
--->
-下面是一个使用节点亲和性的 Pod 的实例：
-
-{{< codenew file="pods/pod-with-node-affinity.yaml" >}}
-
-<!--
-This node affinity rule says the pod can only be placed on a node with a label whose key is
-`kubernetes.io/e2e-az-name` and whose value is either `e2e-az1` or `e2e-az2`. In addition,
-among nodes that meet that criteria, nodes with a label whose key is `another-node-label-key` and whose
-value is `another-node-label-value` should be preferred.
--->
-此节点亲和性规则表示，Pod 只能放置在具有标签键 `kubernetes.io/e2e-az-name`
-且标签值为 `e2e-az1` 或 `e2e-az2` 的节点上。
-另外，在满足这些标准的节点中，具有标签键为 `another-node-label-key`
-且标签值为 `another-node-label-value` 的节点应该优先使用。
-
-<!--
-You can see the operator `In` being used in the example. The new node affinity syntax supports the following operators: `In`, `NotIn`, `Exists`, `DoesNotExist`, `Gt`, `Lt`.
-You can use `NotIn` and `DoesNotExist` to achieve node anti-affinity behavior, or use
-[node taints](/docs/concepts/scheduling-eviction/taint-and-toleration/) to repel pods from specific nodes.
--->
-你可以在上面的例子中看到 `In` 操作符的使用。新的节点亲和性语法支持下面的操作符：
-`In`，`NotIn`，`Exists`，`DoesNotExist`，`Gt`，`Lt`。
-你可以使用 `NotIn` 和 `DoesNotExist` 来实现节点反亲和性行为，或者使用
-[节点污点](/zh/docs/concepts/scheduling-eviction/taint-and-toleration/)
-将 Pod 从特定节点中驱逐。
-
-<!--
-If you specify both `nodeSelector` and `nodeAffinity`, *both* must be satisfied for the pod
-to be scheduled onto a candidate node.
-
-If you specify multiple `nodeSelectorTerms` associated with `nodeAffinity` types, then the pod can be scheduled onto a node **if one of** the `nodeSelectorTerms` is satisfied.
--->
-如果你同时指定了 `nodeSelector` 和 `nodeAffinity`，*两者*必须都要满足，
-才能将 Pod 调度到候选节点上。
-
-如果你指定了多个与 `nodeAffinity` 类型关联的 `nodeSelectorTerms`，则
-**如果其中一个** `nodeSelectorTerms` 满足的话，pod将可以调度到节点上。
-
-<!--
-If you specify multiple `matchExpressions` associated with `nodeSelectorTerms`, then the pod can be scheduled onto a node **only if all** `matchExpressions` can be satisfied.
-
-If you remove or change the label of the node where the pod is scheduled, the pod won't be removed. In other words, the affinity selection works only at the time of scheduling the pod.
--->
-
-如果你指定了多个与 `nodeSelectorTerms` 关联的 `matchExpressions`，则
-**只有当所有** `matchExpressions` 满足的话，Pod 才会可以调度到节点上。
-
-如果你修改或删除了 pod 所调度到的节点的标签，Pod 不会被删除。
-换句话说，亲和性选择只在 Pod 调度期间有效。
-
-<!--
-The `weight` field in `preferredDuringSchedulingIgnoredDuringExecution` is in the range 1-100. For each node that meets all of the scheduling requirements (resource request, RequiredDuringScheduling affinity expressions, etc.), the scheduler will compute a sum by iterating through the elements of this field and adding "weight" to the sum if the node matches the corresponding MatchExpressions. This score is then combined with the scores of other priority functions for the node. The node(s) with the highest total score are the most preferred.
--->
-`preferredDuringSchedulingIgnoredDuringExecution` 中的 `weight` 字段值的
-范围是 1-100。
-对于每个符合所有调度要求（资源请求、RequiredDuringScheduling 亲和性表达式等）
-的节点，调度器将遍历该字段的元素来计算总和，并且如果节点匹配对应的
-MatchExpressions，则添加“权重”到总和。
-然后将这个评分与该节点的其他优先级函数的评分进行组合。
-总分最高的节点是最优选的。
-
-<!--
-#### Node affinity per scheduling profile
--->
-#### 逐个调度方案中设置节点亲和性    {#node-affinity-per-scheduling-profile}
-
-{{< feature-state for_k8s_version="v1.20" state="beta" >}}
-
-<!--
-When configuring multiple [scheduling profiles](/docs/reference/scheduling/config/#multiple-profiles), you can associate
-a profile with a Node affinity, which is useful if a profile only applies to a specific set of Nodes.
-To do so, add an `addedAffinity` to the args of the [`NodeAffinity` plugin](/docs/reference/scheduling/config/#scheduling-plugins)
-in the [scheduler configuration](/docs/reference/scheduling/config/). For example:
--->
-在配置多个[调度方案](/zh/docs/reference/scheduling/config/#multiple-profiles)时，
-你可以将某个方案与节点亲和性关联起来，如果某个调度方案仅适用于某组
-特殊的节点时，这样做是很有用的。
-要实现这点，可以在[调度器配置](/zh/docs/reference/scheduling/config/)中为
-[`NodeAffinity` 插件](/zh/docs/reference/scheduling/config/#scheduling-plugins)
-添加 `addedAffinity` 参数。
-例如：
-
-```yaml
-apiVersion: kubescheduler.config.k8s.io/v1beta1
-kind: KubeSchedulerConfiguration
-
-profiles:
-  - schedulerName: default-scheduler
-  - schedulerName: foo-scheduler
-    pluginConfig:
-      - name: NodeAffinity
-        args:
-          addedAffinity:
-            requiredDuringSchedulingIgnoredDuringExecution:
-              nodeSelectorTerms:
-              - matchExpressions:
-                - key: scheduler-profile
-                  operator: In
-                  values:
-                  - foo
-```
-
-<!--
-The `addedAffinity` is applied to all Pods that set `.spec.schedulerName` to `foo-scheduler`, in addition to the
-NodeAffinity specified in the PodSpec.
-That is, in order to match the Pod, Nodes need to satisfy `addedAffinity` and the Pod's `.spec.NodeAffinity`.
-
-Since the `addedAffinity` is not visible to end users, its behavior might be unexpected to them. We
-recommend to use node labels that have clear correlation with the profile's scheduler name.
--->
-这里的 `addedAffinity` 除遵从 Pod 规约中设置的节点亲和性之外，还
-适用于将 `.spec.schedulerName` 设置为 `foo-scheduler`。
-
-<!--
-The DaemonSet controller, which [creates Pods for DaemonSets](/docs/concepts/workloads/controllers/daemonset/#scheduled-by-default-scheduler)
-is not aware of scheduling profiles. For this reason, it is recommended that you keep a scheduler profile, such as the
-`default-scheduler`, without any `addedAffinity`. Then, the Daemonset's Pod template should use this scheduler name.
-Otherwise, some Pods created by the Daemonset controller might remain unschedulable.
--->
-{{< note >}}
-DaemonSet 控制器[为 DaemonSet 创建 Pods](/zh/docs/concepts/workloads/controllers/daemonset/#scheduled-by-default-scheduler)，
-但该控制器不理会调度方案。因此，建议你保留一个调度方案，例如
-`default-scheduler`，不要在其中设置 `addedAffinity`。
-这样，DaemonSet 的 Pod 模板将会使用此调度器名称。
-否则，DaemonSet 控制器所创建的某些 Pods 可能持续处于不可调度状态。
-{{< /note >}}
-
-<!--
-### Inter-pod affinity and anti-affinity
-
-Inter-pod affinity and anti-affinity allow you to constrain which nodes your pod is eligible to be scheduled *based on
-labels on pods that are already running on the node* rather than based on labels on nodes. The rules are of the form
-"this pod should (or, in the case of anti-affinity, should not) run in an X if that X is already running one or more pods that meet rule Y".
-Y is expressed as a LabelSelector with an optional associated list of namespaces; unlike nodes, because pods are namespaced
-(and therefore the labels on pods are implicitly namespaced),
-a label selector over pod labels must specify which namespaces the selector should apply to. Conceptually X is a topology domain
-like node, rack, cloud provider zone, cloud provider region, etc. You express it using a `topologyKey` which is the
-key for the node label that the system uses to denote such a topology domain, e.g. see the label keys listed above
-in the section [Interlude: built-in node labels](#built-in-node-labels).
--->
-### pod 间亲和性与反亲和性  {#inter-pod-affinity-and-anti-affinity}
-
-Pod 间亲和性与反亲和性使你可以 *基于已经在节点上运行的 Pod 的标签* 来约束
-Pod 可以调度到的节点，而不是基于节点上的标签。
-规则的格式为“如果 X 节点上已经运行了一个或多个 满足规则 Y 的 Pod，
-则这个 Pod 应该（或者在反亲和性的情况下不应该）运行在 X 节点”。
-Y 表示一个具有可选的关联命令空间列表的 LabelSelector；
-与节点不同，因为 Pod 是命名空间限定的（因此 Pod 上的标签也是命名空间限定的），
-因此作用于 Pod 标签的标签选择算符必须指定选择算符应用在哪个命名空间。
-从概念上讲，X 是一个拓扑域，如节点、机架、云供应商可用区、云供应商地理区域等。
-你可以使用 `topologyKey` 来表示它，`topologyKey` 是节点标签的键以便系统
-用来表示这样的拓扑域。
-请参阅上面[插曲：内置的节点标签](#built-in-node-labels)部分中列出的标签键。
-
-{{< note >}}
-<!--
-Inter-pod affinity and anti-affinity require substantial amount of
-processing which can slow down scheduling in large clusters significantly. We do
-not recommend using them in clusters larger than several hundred nodes.
--->
-Pod 间亲和性与反亲和性需要大量的处理，这可能会显著减慢大规模集群中的调度。
-我们不建议在超过数百个节点的集群中使用它们。
-{{< /note >}}
-
-{{< note >}}
-<!--
-Pod anti-affinity requires nodes to be consistently labelled, i.e. every node in the cluster must have an appropriate label matching `topologyKey`. If some or all nodes are missing the specified `topologyKey` label, it can lead to unintended behavior.
--->
-Pod 反亲和性需要对节点进行一致的标记，即集群中的每个节点必须具有适当的标签能够匹配
-`topologyKey`。如果某些或所有节点缺少指定的 `topologyKey` 标签，可能会导致意外行为。
-{{< /note >}}
-
-<!--
-As with node affinity, there are currently two types of pod affinity and anti-affinity, called `requiredDuringSchedulingIgnoredDuringExecution` and
-`preferredDuringSchedulingIgnoredDuringExecution` which denote "hard" vs. "soft" requirements.
-See the description in the node affinity section earlier.
-An example of `requiredDuringSchedulingIgnoredDuringExecution` affinity would be "co-locate the pods of service A and service B
-in the same zone, since they communicate a lot with each other"
-and an example `preferredDuringSchedulingIgnoredDuringExecution` anti-affinity would be "spread the pods from this service across zones"
-(a hard requirement wouldn't make sense, since you probably have more pods than zones).
--->
-与节点亲和性一样，当前有两种类型的 Pod 亲和性与反亲和性，即
-`requiredDuringSchedulingIgnoredDuringExecution` 和
-`preferredDuringSchedulingIgnoredDuringExecution`，分别表示“硬性”与“软性”要求。
-请参阅前面节点亲和性部分中的描述。
-`requiredDuringSchedulingIgnoredDuringExecution` 亲和性的一个示例是
-“将服务 A 和服务 B 的 Pod 放置在同一区域，因为它们之间进行大量交流”，而
-`preferredDuringSchedulingIgnoredDuringExecution` 反亲和性的示例将是
-“将此服务的 pod 跨区域分布”（硬性要求是说不通的，因为你可能拥有的
-Pod 数多于区域数）。
-
-<!--
-Inter-pod affinity is specified as field `podAffinity` of field `affinity` in the PodSpec.
-And inter-pod anti-affinity is specified as field `podAntiAffinity` of field `affinity` in the PodSpec.
--->
-Pod 间亲和性通过 PodSpec 中 `affinity` 字段下的 `podAffinity` 字段进行指定。
-而 Pod 间反亲和性通过 PodSpec 中 `affinity` 字段下的 `podAntiAffinity` 字段进行指定。
-
-<!--
-#### An example of a pod that uses pod affinity:
--->
-### Pod 使用 pod 亲和性 的示例：
-
-{{< codenew file="pods/pod-with-pod-affinity.yaml" >}}
-
-<!--
-The affinity on this pod defines one pod affinity rule and one pod anti-affinity rule. In this example, the
-`podAffinity` is `requiredDuringSchedulingIgnoredDuringExecution`
-while the `podAntiAffinity` is `preferredDuringSchedulingIgnoredDuringExecution`. The
-pod affinity rule says that the pod can be scheduled onto a node only if that node is in the same zone
-as at least one already-running pod that has a label with key "security" and value "S1". (More precisely, the pod is eligible to run
-on node N if node N has a label with key `topology.kubernetes.io/zone` and some value V
-such that there is at least one node in the cluster with key `topology.kubernetes.io/zone` and
-value V that is running a pod that has a label with key "security" and value "S1".) The pod anti-affinity
-rule says that the pod should not be scheduled onto a node if that node is in the same zone as a pod with
-label having key "security" and value "S2". (If the `topologyKey` were `topology.kubernetes.io/zone` then
-it would mean that the pod cannot be scheduled onto a node if that node is in the same zone as a pod with
-label having key "security" and value "S2".) See the
-[design doc](https://git.k8s.io/community/contributors/design-proposals/scheduling/podaffinity.md)
-for many more examples of pod affinity and anti-affinity, both the `requiredDuringSchedulingIgnoredDuringExecution`
-flavor and the `preferredDuringSchedulingIgnoredDuringExecution` flavor.
--->
-在这个 Pod 的亲和性配置定义了一条 Pod 亲和性规则和一条 Pod 反亲和性规则。
-在此示例中，`podAffinity` 配置为 `requiredDuringSchedulingIgnoredDuringExecution`，
-然而 `podAntiAffinity` 配置为 `preferredDuringSchedulingIgnoredDuringExecution`。
-Pod 亲和性规则表示，仅当节点和至少一个已运行且有键为“security”且值为“S1”的标签
-的 Pod 处于同一区域时，才可以将该 Pod 调度到节点上。
-（更确切的说，如果节点 N 具有带有键 `topology.kubernetes.io/zone` 和某个值 V 的标签，
-则 Pod 有资格在节点 N 上运行，以便集群中至少有一个节点具有键
-`topology.kubernetes.io/zone` 和值为 V 的节点正在运行具有键“security”和值
-“S1”的标签的 pod。）
-Pod 反亲和性规则表示，如果节点处于 Pod 所在的同一可用区且具有键“security”和值“S2”的标签，
-则该 pod 不应将其调度到该节点上。
-（如果 `topologyKey` 为 `topology.kubernetes.io/zone`，则意味着当节点和具有键
-“security”和值“S2”的标签的 Pod 处于相同的区域，Pod 不能被调度到该节点上。）
-查阅[设计文档](https://git.k8s.io/community/contributors/design-proposals/scheduling/podaffinity.md)
-以获取 Pod 亲和性与反亲和性的更多样例，包括
-`requiredDuringSchedulingIgnoredDuringExecution`
-和 `preferredDuringSchedulingIgnoredDuringExecution` 两种配置。
-
-<!--
-The legal operators for pod affinity and anti-affinity are `In`, `NotIn`, `Exists`, `DoesNotExist`.
-
-In principle, the `topologyKey` can be any legal label-key. However,
-for performance and security reasons, there are some constraints on topologyKey:
--->
-Pod 亲和性与反亲和性的合法操作符有 `In`，`NotIn`，`Exists`，`DoesNotExist`。
-
-原则上，`topologyKey` 可以是任何合法的标签键。
-然而，出于性能和安全原因，topologyKey 受到一些限制：
-
-<!--
-1. For pod affinity, empty `topologyKey` is not allowed in both
-`requiredDuringSchedulingIgnoredDuringExecution`
-and `preferredDuringSchedulingIgnoredDuringExecution`.
-2. For pod anti-affinity, empty `topologyKey` is also not allowed in both `requiredDuringSchedulingIgnoredDuringExecution`
-and `preferredDuringSchedulingIgnoredDuringExecution`.
-3. For `requiredDuringSchedulingIgnoredDuringExecution` pod anti-affinity, the admission controller `LimitPodHardAntiAffinityTopology` was introduced to limit `topologyKey` to `kubernetes.io/hostname`. If you want to make it available for custom topologies, you may modify the admission controller, or disable it.
-4. Except for the above cases, the `topologyKey` can be any legal label-key.
--->
-1. 对于 Pod 亲和性而言，在 `requiredDuringSchedulingIgnoredDuringExecution`
-   和 `preferredDuringSchedulingIgnoredDuringExecution` 中，`topologyKey` 不允许为空。
-2. 对于 Pod 反亲和性而言，`requiredDuringSchedulingIgnoredDuringExecution`
-   和 `preferredDuringSchedulingIgnoredDuringExecution` 中，`topologyKey`
-   都不可以为空。
-3. 对于 `requiredDuringSchedulingIgnoredDuringExecution` 要求的 Pod 反亲和性，
-   准入控制器 `LimitPodHardAntiAffinityTopology` 被引入以确保 `topologyKey`
-   只能是 `kubernetes.io/hostname`。如果你希望 `topologyKey` 也可用于其他定制
-   拓扑逻辑，你可以更改准入控制器或者禁用之。
-4. 除上述情况外，`topologyKey` 可以是任何合法的标签键。
-
-<!--
-In addition to `labelSelector` and `topologyKey`, you can optionally specify a list `namespaces`
-of namespaces which the `labelSelector` should match against (this goes at the same level of the definition as `labelSelector` and `topologyKey`).
-If omitted or empty, it defaults to the namespace of the pod where the affinity/anti-affinity definition appears.
--->
-除了 `labelSelector` 和 `topologyKey`，你也可以指定表示命名空间的
-`namespaces` 队列，`labelSelector` 也应该匹配它
-（这个与 `labelSelector` 和 `topologyKey` 的定义位于相同的级别）。
-如果忽略或者为空，则默认为 Pod 亲和性/反亲和性的定义所在的命名空间。
-
-<!--
-All `matchExpressions` associated with `requiredDuringSchedulingIgnoredDuringExecution` affinity and anti-affinity
-must be satisfied for the pod to be scheduled onto a node.
--->
-所有与 `requiredDuringSchedulingIgnoredDuringExecution` 亲和性与反亲和性
-关联的 `matchExpressions` 必须满足，才能将 pod 调度到节点上。
-
-<!--
-#### Namespace selector
--->
-#### 名字空间选择算符
-
-{{< feature-state for_k8s_version="v1.22" state="beta" >}}
-
-<!--
-Users can also select matching namespaces using `namespaceSelector`, which is a label query over the set of namespaces.
-The affinity term is applied to the union of the namespaces selected by `namespaceSelector` and the ones listed in the `namespaces` field.
-Note that an empty `namespaceSelector` ({}) matches all namespaces, while a null or empty `namespaces` list and
-null `namespaceSelector` means "this pod's namespace".
--->
-用户也可以使用 `namespaceSelector` 选择匹配的名字空间，`namespaceSelector`
-是对名字空间集合进行标签查询的机制。
-亲和性条件会应用到 `namespaceSelector` 所选择的名字空间和 `namespaces` 字段中
-所列举的名字空间之上。
-注意，空的 `namespaceSelector`（{}）会匹配所有名字空间，而 null 或者空的
-`namespaces` 列表以及 null 值 `namespaceSelector` 意味着“当前 Pod 的名字空间”。
-
-<!--
-This feature is beta and enabled by default. You can disable it via the
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
-`PodAffinityNamespaceSelector` in both kube-apiserver and kube-scheduler.
--->
-此功能特性是 Beta 版本的，默认是被启用的。你可以通过针对 kube-apiserver 和
-kube-scheduler 设置
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
-`PodAffinityNamespaceSelector` 来禁用此特性。
-
-<!--
-#### More Practical Use-cases
-
-Interpod Affinity and AntiAffinity can be even more useful when they are used with higher
-level collections such as ReplicaSets, StatefulSets, Deployments, etc.  One can easily configure that a set of workloads should
-be co-located in the same defined topology, eg., the same node.
--->
-#### 更实际的用例
-
-Pod 间亲和性与反亲和性在与更高级别的集合（例如 ReplicaSets、StatefulSets、
-Deployments 等）一起使用时，它们可能更加有用。
-可以轻松配置一组应位于相同定义拓扑（例如，节点）中的工作负载。
-
-<!--
-##### Always co-located in the same node
-
-In a three node cluster, a web application has in-memory cache such as redis. We want the web-servers to be co-located with the cache as much as possible.
--->
-##### 始终放置在相同节点上
-
-在三节点集群中，一个 web 应用程序具有内存缓存，例如 redis。
-我们希望 web 服务器尽可能与缓存放置在同一位置。
-
-<!--
-Here is the yaml snippet of a simple redis deployment with three replicas and selector label `app=store`. The deployment has `PodAntiAffinity` configured to ensure the scheduler does not co-locate replicas on a single node.
--->
-下面是一个简单 redis Deployment 的 YAML 代码段，它有三个副本和选择器标签 `app=store`。
-Deployment 配置了 `PodAntiAffinity`，用来确保调度器不会将副本调度到单个节点上。
-
-```yaml
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: redis-cache
-spec:
-  selector:
-    matchLabels:
-      app: store
-  replicas: 3
-  template:
-    metadata:
-      labels:
-        app: store
-    spec:
-      affinity:
-        podAntiAffinity:
-          requiredDuringSchedulingIgnoredDuringExecution:
-          - labelSelector:
-              matchExpressions:
-              - key: app
-                operator: In
-                values:
-                - store
-            topologyKey: "kubernetes.io/hostname"
-      containers:
-      - name: redis-server
-        image: redis:3.2-alpine
-```
-
-<!--
-The below yaml snippet of the webserver deployment has `podAntiAffinity` and `podAffinity` configured. This informs the scheduler that all its replicas are to be co-located with pods that have selector label `app=store`. This will also ensure that each web-server replica does not co-locate on a single node.
--->
-下面 webserver Deployment 的 YAML 代码段中配置了 `podAntiAffinity` 和 `podAffinity`。
-这将通知调度器将它的所有副本与具有 `app=store` 选择器标签的 Pod 放置在一起。
-这还确保每个 web 服务器副本不会调度到单个节点上。
-
-```yaml
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: web-server
-spec:
-  selector:
-    matchLabels:
-      app: web-store
-  replicas: 3
-  template:
-    metadata:
-      labels:
-        app: web-store
-    spec:
-      affinity:
-        podAntiAffinity:
-          requiredDuringSchedulingIgnoredDuringExecution:
-          - labelSelector:
-              matchExpressions:
-              - key: app
-                operator: In
-                values:
-                - web-store
-            topologyKey: "kubernetes.io/hostname"
-        podAffinity:
-          requiredDuringSchedulingIgnoredDuringExecution:
-          - labelSelector:
-              matchExpressions:
-              - key: app
-                operator: In
-                values:
-                - store
-            topologyKey: "kubernetes.io/hostname"
-      containers:
-      - name: web-app
-        image: nginx:1.16-alpine
-```
-
-<!--
-If we create the above two deployments, our three node cluster should look like below.
--->
-如果我们创建了上面的两个 Deployment，我们的三节点集群将如下表所示。
-
-|       node-1         |       node-2        |       node-3       |
-|:--------------------:|:-------------------:|:------------------:|
-| *webserver-1*        |   *webserver-2*     |    *webserver-3*   |
-|  *cache-1*           |     *cache-2*       |     *cache-3*      |
-
-<!--
-As you can see, all the 3 replicas of the `web-server` are automatically co-located with the cache as expected.
--->
-如你所见，`web-server` 的三个副本都按照预期那样自动放置在同一位置。
-
-```
-kubectl get pods -o wide
-```
-
-<!--
-The output is similar to this:
--->
-输出类似于如下内容：
-
-```
-NAME                           READY     STATUS    RESTARTS   AGE       IP           NODE
-redis-cache-1450370735-6dzlj   1/1       Running   0          8m        10.192.4.2   kube-node-3
-redis-cache-1450370735-j2j96   1/1       Running   0          8m        10.192.2.2   kube-node-1
-redis-cache-1450370735-z73mh   1/1       Running   0          8m        10.192.3.1   kube-node-2
-web-server-1287567482-5d4dz    1/1       Running   0          7m        10.192.2.3   kube-node-1
-web-server-1287567482-6f7v5    1/1       Running   0          7m        10.192.4.3   kube-node-3
-web-server-1287567482-s330j    1/1       Running   0          7m        10.192.3.2   kube-node-2
-```
-
-<!--
-##### Never co-located in the same node
-
-The above example uses `PodAntiAffinity` rule with `topologyKey: "kubernetes.io/hostname"` to deploy the redis cluster so that
-no two instances are located on the same host.
-See [ZooKeeper tutorial](/docs/tutorials/stateful-application/zookeeper/#tolerating-node-failure)
-for an example of a StatefulSet configured with anti-affinity for high availability, using the same technique.
--->
-##### 永远不放置在相同节点
-
-上面的例子使用 `PodAntiAffinity` 规则和 `topologyKey: "kubernetes.io/hostname"`
-来部署 redis 集群以便在同一主机上没有两个实例。
-参阅 [ZooKeeper 教程](/zh/docs/tutorials/stateful-application/zookeeper/#tolerating-node-failure)，
-以获取配置反亲和性来达到高可用性的 StatefulSet 的样例（使用了相同的技巧）。
-
-## nodeName
-
-<!--
-`nodeName` is the simplest form of node selection constraint, but due
-to its limitations it is typically not used.  `nodeName` is a field of
-PodSpec.  If it is non-empty, the scheduler ignores the pod and the
-kubelet running on the named node tries to run the pod.  Thus, if
-`nodeName` is provided in the PodSpec, it takes precedence over the
-above methods for node selection.
--->
-`nodeName` 是节点选择约束的最简单方法，但是由于其自身限制，通常不使用它。
-`nodeName` 是 PodSpec 的一个字段。
-如果它不为空，调度器将忽略 Pod，并且给定节点上运行的 kubelet 进程尝试执行该 Pod。
-因此，如果 `nodeName` 在 PodSpec 中指定了，则它优先于上面的节点选择方法。
-
-<!--
-Some of the limitations of using `nodeName` to select nodes are:
-
-- If the named node does not exist, the pod will not be run, and in
-  some cases may be automatically deleted.
-- If the named node does not have the resources to accommodate the
-  pod, the pod will fail and its reason will indicate why,
-  e.g. OutOfmemory or OutOfcpu.
-- Node names in cloud environments are not always predictable or
-  stable.
--->
-使用 `nodeName` 来选择节点的一些限制：
-
-- 如果指定的节点不存在，
-- 如果指定的节点没有资源来容纳 Pod，Pod 将会调度失败并且其原因将显示为，
-  比如 OutOfmemory 或 OutOfcpu。
-- 云环境中的节点名称并非总是可预测或稳定的。
-
-<!--
-Here is an example of a pod config file using the `nodeName` field:
--->
-下面的是使用 `nodeName` 字段的 Pod 配置文件的例子：
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: nginx
-spec:
-  containers:
-  - name: nginx
-    image: nginx
-  nodeName: kube-01
-```
-
-<!--
-The above pod will run on the node kube-01.
--->
-上面的 pod 将运行在 kube-01 节点上。
-
-## {{% heading "whatsnext" %}}
-
-<!--
-[Taints](/docs/concepts/scheduling-eviction/taint-and-toleration/) allow a Node to *repel* a set of Pods.
--->
-[污点](/zh/docs/concepts/scheduling-eviction/taint-and-toleration/)
-允许节点*排斥*一组 Pod。
-
-<!--
-The design documents for
-[node affinity](https://git.k8s.io/community/contributors/design-proposals/scheduling/nodeaffinity.md)
-and for [inter-pod affinity/anti-affinity](https://git.k8s.io/community/contributors/design-proposals/scheduling/podaffinity.md) contain extra background information about these features.
--->
-[节点亲和性](https://git.k8s.io/community/contributors/design-proposals/scheduling/nodeaffinity.md)与
-[pod 间亲和性/反亲和性](https://git.k8s.io/community/contributors/design-proposals/scheduling/podaffinity.md)
-的设计文档包含这些功能的其他背景信息。
-
-<!--
-Once a Pod is assigned to a Node, the kubelet runs the Pod and allocates node-local resources.
-The [topology manager](/docs/tasks/administer-cluster/topology-manager/) can take part in node-level
-resource allocation decisions.
--->
-一旦 Pod 分配给 节点，kubelet 应用将运行该 pod 并且分配节点本地资源。
-[拓扑管理器](/zh/docs/tasks/administer-cluster/topology-manager/)
-可以参与到节点级别的资源分配决定中。
diff --git a/content/zh/docs/concepts/scheduling-eviction/resource-bin-packing.md b/content/zh/docs/concepts/scheduling-eviction/resource-bin-packing.md
deleted file mode 100644
index 08eb73003a..0000000000
--- a/content/zh/docs/concepts/scheduling-eviction/resource-bin-packing.md
+++ /dev/null
@@ -1,263 +0,0 @@
----
-title: 扩展资源的资源装箱
-content_type: concept
-weight: 80
----
-<!--
----
-reviewers:
-- bsalamat
-- k82cn
-- ahg-g
-title: Resource Bin Packing for Extended Resources
-content_type: concept
-weight: 80
----
--->
-
-<!-- overview -->
-
-{{< feature-state for_k8s_version="1.16" state="alpha" >}}
-
-<!--
-The kube-scheduler can be configured to enable bin packing of resources along with extended resources using `RequestedToCapacityRatioResourceAllocation` priority function. Priority functions can be used to fine-tune the kube-scheduler as per custom needs.
--->
-
-使用 `RequestedToCapacityRatioResourceAllocation` 优先级函数，可以将 kube-scheduler
-配置为支持包含扩展资源在内的资源装箱操作。
-优先级函数可用于根据自定义需求微调 kube-scheduler 。
-
-<!-- body -->
-
-<!--
-## Enabling Bin Packing using RequestedToCapacityRatioResourceAllocation
-
-Kubernetes allows the users to specify the resources along with weights for
-each resource to score nodes based on the request to capacity ratio. This
-allows users to bin pack extended resources by using appropriate parameters
-and improves the utilization of scarce resources in large clusters. The
-behavior of the `RequestedToCapacityRatioResourceAllocation` priority function
-can be controlled by a configuration option called `RequestedToCapacityRatioArgs`. 
-This argument consists of two parameters `shape` and `resources`. The `shape` 
-parameter allows the user to tune the function as least requested or most 
-requested based on `utilization` and `score` values.  The `resources` parameter 
-consists of `name` of the resource to be considered during scoring and `weight` 
-specify the weight of each resource.
-
--->
-
-## 使用 RequestedToCapacityRatioResourceAllocation 启用装箱
-
-Kubernetes 允许用户指定资源以及每类资源的权重，
-以便根据请求数量与可用容量之比率为节点评分。
-这就使得用户可以通过使用适当的参数来对扩展资源执行装箱操作，从而提高了大型集群中稀缺资源的利用率。
-`RequestedToCapacityRatioResourceAllocation` 优先级函数的行为可以通过名为
-`RequestedToCapacityRatioArgs` 的配置选项进行控制。
-该标志由两个参数 `shape` 和 `resources` 组成。
-`shape` 允许用户根据 `utilization` 和 `score` 值将函数调整为
-最少请求（least requested）或最多请求（most requested）计算。
-`resources` 包含由 `name` 和  `weight` 组成，`name` 指定评分时要考虑的资源，
-`weight` 指定每种资源的权重。
-
-<!--
-Below is an example configuration that sets
-`requestedToCapacityRatioArguments` to bin packing behavior for extended
-resources `intel.com/foo` and `intel.com/bar`.
--->
-
-以下是一个配置示例，该配置将 `requestedToCapacityRatioArguments` 设置为对扩展资源
-`intel.com/foo` 和 `intel.com/bar` 的装箱行为
-
-```yaml
-apiVersion: kubescheduler.config.k8s.io/v1beta1
-kind: KubeSchedulerConfiguration
-profiles:
-# ...
-  pluginConfig:
-  - name: RequestedToCapacityRatio
-    args: 
-      shape:
-      - utilization: 0
-        score: 10
-      - utilization: 100
-        score: 0
-      resources:
-      - name: intel.com/foo
-        weight: 3
-      - name: intel.com/bar
-        weight: 5
-```
-
-<!--
-Referencing the `KubeSchedulerConfiguration` file with the kube-scheduler 
-flag `--config=/path/to/config/file` will pass the configuration to the 
-scheduler.
--->
-使用 kube-scheduler 标志 `--config=/path/to/config/file` 
-引用 `KubeSchedulerConfiguration` 文件将配置传递给调度器。
-
-<!--
-**This feature is disabled by default**
--->
-
-**默认情况下此功能处于被禁用状态**
-
-<!--
-### Tuning RequestedToCapacityRatioResourceAllocation Priority Function
-
-`shape` is used to specify the behavior of the `RequestedToCapacityRatioPriority` function.
--->
-### 调整 RequestedToCapacityRatioResourceAllocation 优先级函数
-
-`shape` 用于指定 `RequestedToCapacityRatioPriority` 函数的行为。
-
-```yaml
- {"utilization": 0, "score": 0},
- {"utilization": 100, "score": 10}
-```
-
-<!--
-The above arguments give the node a score of 0 if utilization is 0% and 10 for utilization 100%, thus enabling bin packing behavior. To enable least requested the score value must be reversed as follows.
--->
-
-上面的参数在 `utilization` 为 0% 时给节点评分为 0，在 `utilization` 为
-100% 时给节点评分为 10，因此启用了装箱行为。
-要启用最少请求（least requested）模式，必须按如下方式反转得分值。
-
-```yaml
- {"utilization": 0, "score": 10},
- {"utilization": 100, "score": 0}
-```
-
-<!--
-`resources` is an optional parameter which by defaults is set to:
--->
-`resources` 是一个可选参数，默认情况下设置为：
-
-``` yaml
-"resources": [
-    {"name": "CPU", "weight": 1},
-    {"name": "Memory", "weight": 1}
-]
-```
-
-<!--
-It can be used to add extended resources as follows:
--->
-它可以用来添加扩展资源，如下所示：
-
-```yaml
-"resources": [
-    {"name": "intel.com/foo", "weight": 5},
-    {"name": "CPU", "weight": 3},
-    {"name": "Memory", "weight": 1}
-]
-```
-
-<!--
-The weight parameter is optional and is set to 1 if not specified. Also, the weight cannot be set to a negative value.
--->
-weight 参数是可选的，如果未指定，则设置为 1。
-同时，weight 不能设置为负值。
-
-<!--
-### How the RequestedToCapacityRatioResourceAllocation Priority Function Scores Nodes
-
-This section is intended for those who want to understand the internal details
-of this feature.
-Below is an example of how the node score is calculated for a given set of values.
--->
-
-### RequestedToCapacityRatioResourceAllocation 优先级函数如何对节点评分
-
-本节适用于希望了解此功能的内部细节的人员。
-以下是如何针对给定的一组值来计算节点得分的示例。
-
-```
-请求的资源
-
-intel.com/foo: 2
-Memory: 256MB
-CPU: 2
-
-资源权重
-
-intel.com/foo: 5
-Memory: 1
-CPU: 3
-
-FunctionShapePoint {{0, 0}, {100, 10}}
-
-节点 Node 1 配置
-
-可用：
-  intel.com/foo : 4
-  Memory : 1 GB
-  CPU: 8
-
-已用：
-  intel.com/foo: 1
-  Memory: 256MB
-  CPU: 1
-
-节点得分：
-
-intel.com/foo  = resourceScoringFunction((2+1),4)
-               = (100 - ((4-3)*100/4)
-               = (100 - 25)
-               = 75
-               = rawScoringFunction(75)
-               = 7
-
-Memory         = resourceScoringFunction((256+256),1024)
-               = (100 -((1024-512)*100/1024))
-               = 50
-               = rawScoringFunction(50)
-               = 5
-
-CPU            = resourceScoringFunction((2+1),8)
-               = (100 -((8-3)*100/8))
-               = 37.5
-               = rawScoringFunction(37.5)
-               = 3
-
-NodeScore   =  (7 * 5) + (5 * 1) + (3 * 3) / (5 + 1 + 3)
-            =  5
-
-
-节点 Node 2 配置
-
-可用：
-  intel.com/foo: 8
-  Memory: 1GB
-  CPU: 8
-
-已用：
-  intel.com/foo: 2
-  Memory: 512MB
-  CPU: 6
-
-节点得分：
-
-intel.com/foo  = resourceScoringFunction((2+2),8)
-               = (100 - ((8-4)*100/8)
-               = (100 - 50)
-               = 50
-               = rawScoringFunction(50)
-               = 5
-
-Memory         = resourceScoringFunction((256+512),1024)
-               = (100 -((1024-768)*100/1024))
-               = 75
-               = rawScoringFunction(75)
-               = 7
-
-CPU            = resourceScoringFunction((2+6),8)
-               = (100 -((8-8)*100/8))
-               = 100
-               = rawScoringFunction(100)
-               = 10
-
-NodeScore   =  (5 * 5) + (7 * 1) + (10 * 3) / (5 + 1 + 3)
-            =  7
-```
diff --git a/content/zh/docs/concepts/security/pod-security-standards.md b/content/zh/docs/concepts/security/pod-security-standards.md
deleted file mode 100644
index 47a3c5e0da..0000000000
--- a/content/zh/docs/concepts/security/pod-security-standards.md
+++ /dev/null
@@ -1,546 +0,0 @@
----
-title: Pod 安全性标准
-content_type: concept
-weight: 10
----
-<!--
-reviewers:
-- tallclair
-title: Pod Security Standards
-content_type: concept
-weight: 10
--->
-
-<!-- overview -->
-
-<!--
-Security settings for Pods are typically applied by using [security
-contexts](/docs/tasks/configure-pod-container/security-context/). Security Contexts allow for the
-definition of privilege and access controls on a per-Pod basis.
-
-The enforcement and policy-based definition of cluster requirements of security contexts has
-previously been achieved using [Pod Security Policy](/docs/concepts/policy/pod-security-policy/). A
-_Pod Security Policy_ is a cluster-level resource that controls security sensitive aspects of the
-Pod specification.
-
-However, numerous means of policy enforcement have arisen that augment or replace the use of
-PodSecurityPolicy. The intent of this page is to detail recommended Pod security profiles, decoupled
-from any specific instantiation.
--->
-Pod 的安全性配置一般通过使用
-[安全性上下文（Security Context）](/zh/docs/tasks/configure-pod-container/security-context/)
-来保证。安全性上下文允许用户逐个 Pod 地定义特权级及访问控制。
-
-以前，对集群的安全性上下文的需求的实施及其基于策略的定义都通过使用
-[Pod 安全性策略](/zh/docs/concepts/policy/pod-security-policy/)来实现。
-_Pod 安全性策略（Pod Security Policy）_ 是一种集群层面的资源，控制 Pod 规约中
-安全性敏感的部分。
-
-不过，新的策略实施方式不断涌现，或增强或替换 PodSecurityPolicy 的使用。
-本页的目的是详细介绍建议实施的 Pod 安全框架；这些内容与具体的实现无关。
-
-<!-- body -->
-
-<!--
-## Policy Types
-
-There is an immediate need for base policy definitions to broadly cover the security spectrum. These
-should range from highly restricted to highly flexible:
-
-- **_Privileged_** - Unrestricted policy, providing the widest possible level of permissions. This
-  policy allows for known privilege escalations.
-- **_Baseline_** - Minimally restrictive policy while preventing known privilege
-  escalations. Allows the default (minimally specified) Pod configuration.
-- **_Restricted_** - Heavily restricted policy, following current Pod hardening best practices.
--->
-## 策略类型   {#policy-types}
-
-在进一步讨论整个策略谱系之前，有必要对基本的策略下个定义。
-策略可以是很严格的也可以是很宽松的：
-
-- **_Privileged_** - 不受限制的策略，提供最大可能范围的权限许可。这些策略
-  允许已知的特权提升。
-- **_Baseline_** - 限制性最弱的策略，禁止已知的策略提升。
-  允许使用默认的（规定最少）Pod 配置。
-- **_Restricted_** - 限制性非常强的策略，遵循当前的保护 Pod 的最佳实践。
-
-<!--
-## Policies
-
-### Privileged
--->
-## 策略    {#policies}
-
-### Privileged
-
-<!--
-The Privileged policy is purposely-open, and entirely unrestricted. This type of policy is typically
-aimed at system- and infrastructure-level workloads managed by privileged, trusted users.
-
-The privileged policy is defined by an absence of restrictions. For allow-by-default enforcement
-mechanisms (such as gatekeeper), the privileged profile may be an absence of applied constraints
-rather than an instantiated policy. In contrast, for a deny-by-default mechanism (such as Pod
-Security Policy) the privileged policy should enable all controls (disable all restrictions).
--->
-Privileged 策略是有目的地开放且完全无限制的策略。此类策略通常针对由
-特权较高、受信任的用户所管理的系统级或基础设施级负载。
-
-Privileged 策略定义中限制较少。对于默认允许（Allow-by-default）实施机制（例如 gatekeeper），
-Privileged 框架可能意味着不应用任何约束而不是实施某策略实例。
-与此不同，对于默认拒绝（Deny-by-default）实施机制（如 Pod 安全策略）而言，
-Privileged 策略应该默认允许所有控制（即，禁止所有限制）。
-
-### Baseline
-
-<!--
-The Baseline policy is aimed at ease of adoption for common containerized workloads while
-preventing known privilege escalations. This policy is targeted at application operators and
-developers of non-critical applications. The following listed controls should be
-enforced/disallowed:
--->
-Baseline 策略的目标是便于常见的容器化应用采用，同时禁止已知的特权提升。
-此策略针对的是应用运维人员和非关键性应用的开发人员。
-下面列举的控制应该被实施（禁止）：
-
-<table>
-	<!-- caption style="display:none">Baseline policy specification</caption -->
-	<caption style="display:none">Baseline 策略规范</caption>
-	<tbody>
-		<tr>
-			<td width="30%"><strong>控制（Control）</strong></td>
-			<td><strong>策略（Policy）</strong></td>
-		</tr>
-		<tr>
-			<!-- td>Host Namespaces</td -->
-			<td>宿主名字空间</td>
-			<!-- td>
-				Sharing the host namespaces must be disallowed.<br>
-				<br><b>限制的字段：</b><br>
-				spec.hostNetwork<br>
-				spec.hostPID<br>
-				spec.hostIPC<br>
-				<br><b>Allowed Values:</b> false<br>
-			</td -->
-			<td>
-				必须禁止共享宿主名字空间。<br>
-				<br><b>限制的字段：</b><br>
-				spec.hostNetwork<br>
-				spec.hostPID<br>
-				spec.hostIPC<br>
-				<br><b>允许的值：</b> false<br>
-			</td>
-		</tr>
-		<tr>
-			<!-- td>Privileged Containers</td -->
-			<td>特权容器</td>
-			<!-- td>
-				Privileged Pods disable most security mechanisms and must be disallowed.<br>
-				<br><b>限制的字段：</b><br>
-				spec.containers[*].securityContext.privileged<br>
-				spec.initContainers[*].securityContext.privileged<br>
-				<br><b>Allowed Values:</b> false, undefined/nil<br>
-			</td -->
-			<td>
-				特权 Pod 禁用大多数安全性机制，必须被禁止。<br>
-				<br><b>限制的字段：</b><br>
-				spec.containers[*].securityContext.privileged<br>
-				spec.initContainers[*].securityContext.privileged<br>
-				<br><b>允许的值：</b> false、未定义/nil<br>
-			</td>
-		</tr>
-		<tr>
-			<!-- td>Capabilities</td -->
-			<td>权能</td>
-			<!-- td>
-				Adding additional capabilities beyond the <a href="https://docs.docker.com/engine/reference/run/#runtime-privilege-and-linux-capabilities">default set</a> must be disallowed.<br>
-				<br><b>限制的字段：</b><br>
-				spec.containers[*].securityContext.capabilities.add<br>
-				spec.initContainers[*].securityContext.capabilities.add<br>
-				<br><b>Allowed Values:</b> empty (or restricted to a known list)<br>
-			</td -->
-			<td>
-				必须禁止添加<a href="https://docs.docker.com/engine/reference/run/#runtime-privilege-and-linux-capabilities">默认集合</a>之外的权能。<br>
-				<br><b>限制的字段：</b><br>
-				spec.containers[*].securityContext.capabilities.add<br>
-				spec.initContainers[*].securityContext.capabilities.add<br>
-				<br><b>允许的值：</b> 空（或限定为一个已知列表）<br>
-			</td>
-		</tr>
-		<tr>
-			<!-- td>HostPath Volumes</td -->
-			<td>HostPath 卷</td>
-			<!-- td>
-				HostPath volumes must be forbidden.<br>
-				<br><b>限制的字段：</b><br>
-				spec.volumes[*].hostPath<br>
-				<br><b>Allowed Values:</b> undefined/nil<br>
-			</td -->
-			<td>
-				必须禁止 HostPath 卷。<br>
-				<br><b>限制的字段：</b><br>
-				spec.volumes[*].hostPath<br>
-				<br><b>允许的值：</b> 未定义/nil<br>
-			</td>
-		</tr>
-		<tr>
-			<!-- td>Host Ports</td -->
-			<td>宿主端口</td>
-			<!-- td>
-				HostPorts should be disallowed, or at minimum restricted to a known list.<br>
-				<br><b>限制的字段：</b><br>
-				spec.containers[*].ports[*].hostPort<br>
-				spec.initContainers[*].ports[*].hostPort<br>
-				<br><b>Allowed Values:</b> 0, undefined (or restricted to a known list)<br>
-			</td -->
-			<td>
-				应禁止使用宿主端口，或者至少限定为已知列表。<br>
-				<br><b>限制的字段：</b><br>
-				spec.containers[*].ports[*].hostPort<br>
-				spec.initContainers[*].ports[*].hostPort<br>
-				<br><b>允许的值：</b> 0、未定义（或限定为已知列表）<br>
-			</td>
-		</tr>
-		<tr>
-			<!-- <td>AppArmor <em>(optional)</em></td> -->
-			<td>AppArmor</td>
-			<!-- td>
-				On supported hosts, the 'runtime/default' AppArmor profile is applied by default.
-				The baseline policy should prevent overriding or disabling the default AppArmor
-				profile, or restrict overrides to an allowed set of profiles.<br>
-				<br><b>限制的字段：</b><br>
-				metadata.annotations['container.apparmor.security.beta.kubernetes.io/*']<br>
-				<br><b>Allowed Values:</b> 'runtime/default', undefined<br>
-			</td -->
-			<td>
-				在被支持的主机上，默认使用 'runtime/default' AppArmor Profile。
-				基线策略应避免覆盖或者禁用默认策略，以及限制覆盖一些 profile 集合的权限。<br>
-				<br><b>限制的字段：</b><br>
-				metadata.annotations['container.apparmor.security.beta.kubernetes.io/*']<br>
-				<br><b>允许的值：</b> 'runtime/default'、未定义<br>
-			</td>
-		</tr>
-		<tr>
-			<!-- <td>SELinux</td> -->
-			<td>SELinux</td>
-			<!-- td>
-				Setting the SELinux type is restricted, and setting a custom SELinux user or role option is forbidden.<br>
-				<br><b>Restricted Fields:</b><br>
-				spec.securityContext.seLinuxOptions.type<br>
-				spec.containers[*].securityContext.seLinuxOptions.type<br>
-				spec.initContainers[*].securityContext.seLinuxOptions.type<br>
-				<br><b>Allowed Values:</b><br>
-				undefined/empty<br>
-				container_t<br>
-				container_init_t<br>
-				container_kvm_t<br>
-				<br><b>Restricted Fields:</b><br>
-				spec.securityContext.seLinuxOptions.user<br>
-				spec.containers[*].securityContext.seLinuxOptions.user<br>
-				spec.initContainers[*].securityContext.seLinuxOptions.user<br>
-				spec.securityContext.seLinuxOptions.role<br>
-				spec.containers[*].securityContext.seLinuxOptions.role<br>
-				spec.initContainers[*].securityContext.seLinuxOptions.role<br>
-				<br><b>Allowed Values:</b> undefined/empty<br>
-			</td -->
-			<td>
-				设置 SELinux 类型的操作是被限制的，设置自定义的 SELinux 用户或角色选项是被禁止的。<br>
-				<br><b>限制的字段：</b><br>
-				spec.securityContext.seLinuxOptions.type<br>
-				spec.containers[*].securityContext.seLinuxOptions.type<br>
-				spec.initContainers[*].securityContext.seLinuxOptions.type<br>
-				<br><b>允许的值：</b><br>
-				未定义/空<br>
-				container_t<br>
-				container_init_t<br>
-				container_kvm_t<br>
-				<br><b>被限制的字段：</b><br>
-				spec.securityContext.seLinuxOptions.user<br>
-				spec.containers[*].securityContext.seLinuxOptions.user<br>
-				spec.initContainers[*].securityContext.seLinuxOptions.user<br>
-				spec.securityContext.seLinuxOptions.role<br>
-				spec.containers[*].securityContext.seLinuxOptions.role<br>
-				spec.initContainers[*].securityContext.seLinuxOptions.role<br>
-				<br><b>允许的值：</b> 未定义或空<br>
-			</td>
-		</tr>
-		<tr>
-			<!-- td>/proc Mount Type</td -->
-			<td>/proc 挂载类型</td>
-			<!-- td>
-				The default /proc masks are set up to reduce attack surface, and should be required.<br>
-				<br><b>Restricted Fields:</b><br>
-				spec.containers[*].securityContext.procMount<br>
-				spec.initContainers[*].securityContext.procMount<br>
-				<br><b>Allowed Values:</b> undefined/nil, 'Default'<br>
-			</td -->
-			<td>
-				要求使用默认的 <code>/proc</code> 掩码以减小攻击面。<br>
-				<br><b>限制的字段：</b><br>
-				spec.containers[*].securityContext.procMount<br>
-				spec.initContainers[*].securityContext.procMount<br>
-				<br><b>允许的值：</b> 未定义/nil、'Default'<br>
-			</td>
-		</tr>
-		<tr>
-			<td>Sysctls</td>
-			<!-- td>
-				Sysctls can disable security mechanisms or affect all containers on a host, and should be disallowed except for an allowed "safe" subset.
-				A sysctl is considered safe if it is namespaced in the container or the Pod, and it is isolated from other Pods or processes on the same Node.<br>
-				<br><b>Restricted Fields:</b><br>
-				spec.securityContext.sysctls<br>
-				<br><b>Allowed Values:</b><br>
-				kernel.shm_rmid_forced<br>
-				net.ipv4.ip_local_port_range<br>
-				net.ipv4.tcp_syncookies<br>
-				net.ipv4.ping_group_range<br>
-				undefined/empty<br>
-			</td -->
-			<td>
-				Sysctls 可以禁用安全机制或影响宿主上所有容器，因此除了若干『安全』的子集之外，应该被禁止。
-				如果某 sysctl 是受容器或 Pod 的名字空间限制，且与节点上其他 Pod 或进程相隔离，可认为是安全的。<br>
-				<br><b>限制的字段：</b><br>
-				spec.securityContext.sysctls<br>
-				<br><b>允许的值：</b><br>
-				kernel.shm_rmid_forced<br>
-				net.ipv4.ip_local_port_range<br>
-				net.ipv4.tcp_syncookies<br>
-				net.ipv4.ping_group_range<br>
-				未定义/空值<br>
-			</td>
-		</tr>
-	</tbody>
-</table>
-
-### Restricted
-
-<!--
-The Restricted policy is aimed at enforcing current Pod hardening best practices, at the expense of
-some compatibility. It is targeted at operators and developers of security-critical applications, as
-well as lower-trust users.The following listed controls should be enforced/disallowed:
--->
-Restricted 策略旨在实施当前保护 Pod 的最佳实践，尽管这样作可能会牺牲一些兼容性。
-该类策略主要针对运维人员和安全性很重要的应用的开发人员，以及不太被信任的用户。
-下面列举的控制需要被实施（禁止）：
-
-<table>
-	<!-- caption style="display:none">Restricted policy specification</caption -->
-	<caption style="display:none">Restricted 策略规范</caption>
-	<tbody>
-		<tr>
-			<!-- td><strong>Control</strong></td -->
-			<td width="30%"><strong>控制（Control）</strong></td>
-			<!-- td><strong>Policy</strong></td -->
-			<td><strong>策略（Policy）</strong></td>
-		</tr>
-		<tr>
-			<!-- <td colspan="2"><em>Everything from the baseline profile.</em></td> -->
-			<td colspan="2"><em>基线策略的所有要求。</em></td>
-		</tr>
-		<tr>
-			<!-- td>Volume Types</td -->
-			<td>卷类型</td>
-			<td>
-				<!-- In addition to restricting HostPath volumes, the restricted profile limits usage of non-core volume types to those defined through PersistentVolumes. -->
-				除了限制 HostPath 卷之外，此类策略还限制可以通过 PersistentVolumes 定义的非核心卷类型。<br>
-				<br><b>限制的字段：</b><br>
-				spec.volumes[*].hostPath<br>
-				spec.volumes[*].gcePersistentDisk<br>
-				spec.volumes[*].awsElasticBlockStore<br>
-				spec.volumes[*].gitRepo<br>
-				spec.volumes[*].nfs<br>
-				spec.volumes[*].iscsi<br>
-				spec.volumes[*].glusterfs<br>
-				spec.volumes[*].rbd<br>
-				spec.volumes[*].flexVolume<br>
-				spec.volumes[*].cinder<br>
-				spec.volumes[*].cephFS<br>
-				spec.volumes[*].flocker<br>
-				spec.volumes[*].fc<br>
-				spec.volumes[*].azureFile<br>
-				spec.volumes[*].vsphereVolume<br>
-				spec.volumes[*].quobyte<br>
-				spec.volumes[*].azureDisk<br>
-				spec.volumes[*].portworxVolume<br>
-				spec.volumes[*].scaleIO<br>
-				spec.volumes[*].storageos<br>
-				spec.volumes[*].csi<br>
-				<br><b>允许的值：</b> 未定义/nil<br>
-			</td>
-		</tr>
-		<tr>
-			<!-- td>Privilege Escalation</td -->
-			<td>特权提升</td>
-			<td>
-				<!-- Privilege escalation (such as via set-user-ID or set-group-ID file mode) should not be allowed. -->
-				禁止（通过 SetUID 或 SetGID 文件模式）获得特权提升。<br>
-				<br><b>限制的字段：</b><br>
-				spec.containers[*].securityContext.allowPrivilegeEscalation<br>
-				spec.initContainers[*].securityContext.allowPrivilegeEscalation<br>
-				<br><b>允许的值：</b> false<br>
-			</td>
-		</tr>
-		<tr>
-			<!-- td>Running as Non-root</td -->
-			<td>以非 root 账号运行 </td>
-			<td>
-				<!-- Containers must be required to run as non-root users. -->
-				必须要求容器以非 root 用户运行。<br>
-				<br><b>限制的字段：</b><br>
-				spec.securityContext.runAsNonRoot<br>
-				spec.containers[*].securityContext.runAsNonRoot<br>
-				spec.initContainers[*].securityContext.runAsNonRoot<br>
-				<br><b>允许的值：</b> true<br>
-			</td>
-		</tr>
-		<tr>
-			<!-- td>Non-root groups <em>(optional)</em></td -->
-			<td>非 root 组 <em>（可选）</em></td>
-			<td>
-				<!-- Containers should be forbidden from running with a root primary or supplementary GID. -->
-				禁止容器使用 root 作为主要或辅助 GID 来运行。<br>
-				<br><b>限制的字段：</b><br>
-				spec.securityContext.runAsGroup<br>
-				spec.securityContext.supplementalGroups[*]<br>
-				spec.securityContext.fsGroup<br>
-				spec.containers[*].securityContext.runAsGroup<br>
-				spec.initContainers[*].securityContext.runAsGroup<br>
-				<br><b>允许的值：</b><br>
-				非零值<br>
-				未定义/nil （<code>*.runAsGroup</code> 除外）<br>
-			</td>
-		</tr>
-		<tr>
-			<td>Seccomp</td>
-			<td>
-				<!-- The RuntimeDefault seccomp profile must be required, or allow specific additional profiles. -->
-				必须要求使用 RuntimeDefault seccomp profile 或者允许使用特定的 profiles。<br>
-				<br><b>限制的字段：</b><br>
-				spec.securityContext.seccompProfile.type<br>
-				spec.containers[*].securityContext.seccompProfile<br>
-				spec.initContainers[*].securityContext.seccompProfile<br>
-				<br><b>允许的值：</b><br>
-				'runtime/default'<br>
-				未定义/nil<br>
-			</td>
-		</tr>
-	</tbody>
-</table>
-
-<!--
-## Policy Instantiation
-
-Decoupling policy definition from policy instantiation allows for a common understanding and
-consistent language of policies across clusters, independent of the underlying enforcement
-mechanism.
-
-As mechanisms mature, they will be defined below on a per-policy basis. The methods of enforcement
-of individual policies are not defined here.
--->
-## 策略实例化   {#policy-instantiation}
-
-将策略定义从策略实例中解耦出来有助于形成跨集群的策略理解和语言陈述，
-以免绑定到特定的下层实施机制。
-
-随着相关机制的成熟，这些机制会按策略分别定义在下面。特定策略的实施方法不在这里定义。
-
-[**PodSecurityPolicy**](/zh/docs/concepts/policy/pod-security-policy/)
-
-- [Privileged](https://raw.githubusercontent.com/kubernetes/website/master/content/en/examples/policy/privileged-psp.yaml)
-- [Baseline](https://raw.githubusercontent.com/kubernetes/website/master/content/en/examples/policy/baseline-psp.yaml)
-- [Restricted](https://raw.githubusercontent.com/kubernetes/website/master/content/en/examples/policy/restricted-psp.yaml)
-
-<!--
-## FAQ
-
-### Why isn't there a profile between privileged and baseline?
--->
-## 常见问题    {#faq}
-
-### 为什么不存在介于 Privileged 和 Baseline 之间的策略类型
-
-<!--
-The three profiles defined here have a clear linear progression from most secure (restricted) to least
-secure (privileged), and cover a broad set of workloads. Privileges required above the baseline
-policy are typically very application specific, so we do not offer a standard profile in this
-niche. This is not to say that the privileged profile should always be used in this case, but that
-policies in this space need to be defined on a case-by-case basis.
-
-SIG Auth may reconsider this position in the future, should a clear need for other profiles arise.
--->
-这里定义的三种策略框架有一个明晰的线性递进关系，从最安全（Restricted）到最不安全，
-并且覆盖了很大范围的工作负载。特权要求超出 Baseline 策略者通常是特定于应用的需求，
-所以我们没有在这个范围内提供标准框架。
-这并不意味着在这样的情形下仍然只能使用 Privileged 框架，只是说处于这个范围的
-策略需要因地制宜地定义。
-
-SIG Auth 可能会在将来考虑这个范围的框架，前提是有对其他框架的需求。
-
-<!--
-### What's the difference between a security policy and a security context?
-
-[Security Contexts](/docs/tasks/configure-pod-container/security-context/) configure Pods and
-Containers at runtime. Security contexts are defined as part of the Pod and container specifications
-in the Pod manifest, and represent parameters to the container runtime.
--->
-### 安全策略与安全上下文的区别是什么？
-
-[安全上下文](/zh/docs/tasks/configure-pod-container/security-context/)在运行时配置 Pod
-和容器。安全上下文是在 Pod 清单中作为 Pod 和容器规约的一部分来定义的，所代表的是
-传递给容器运行时的参数。
-
-<!--
-Security policies are control plane mechanisms to enforce specific settings in the Security Context,
-as well as other parameters outside the Security Context. As of February 2020, the current native
-solution for enforcing these security policies is [Pod Security
-Policy](/docs/concepts/policy/pod-security-policy/) - a mechanism for centrally enforcing security
-policy on Pods across a cluster. Other alternatives for enforcing security policy are being
-developed in the Kubernetes ecosystem, such as [OPA
-Gatekeeper](https://github.com/open-policy-agent/gatekeeper).
--->
-安全策略则是控制面用来对安全上下文以及安全性上下文之外的参数实施某种设置的机制。
-在 2020 年 2 月，目前实施这些安全性策略的原生解决方案是
-[Pod 安全性策略](/zh/docs/concepts/policy/pod-security-policy/) - 一种对集群中
-Pod 的安全性策略进行集中控制的机制。
-Kubernetes 生态系统中还在开发一些其他的替代方案，例如
-[OPA Gatekeeper](https://github.com/open-policy-agent/gatekeeper)。
-
-<!--
-### What profiles should I apply to my Windows Pods?
-
-Windows in Kubernetes has some limitations and differentiators from standard Linux-based
-workloads. Specifically, the Pod SecurityContext fields [have no effect on
-Windows](/docs/setup/production-environment/windows/intro-windows-in-kubernetes/#v1-podsecuritycontext). As
-such, no standardized Pod Security profiles currently exists.
--->
-### 我应该为我的 Windows Pod 实施哪种框架？
-
-Kubernetes 中的 Windows 负载与标准的基于 Linux 的负载相比有一些局限性和区别。
-尤其是 Pod SecurityContext 字段
-[对 Windows 不起作用](/zh/docs/setup/production-environment/windows/intro-windows-in-kubernetes/#v1-podsecuritycontext)。
-因此，目前没有对应的标准 Pod 安全性框架。
-
-<!--
-### What about sandboxed Pods?
-
-There is not currently an API standard that controls whether a Pod is considered sandboxed or
-not. Sandbox Pods may be identified by the use of a sandboxed runtime (such as gVisor or Kata
-Containers), but there is no standard definition of what a sandboxed runtime is.
-
-The protections necessary for sandboxed workloads can differ from others. For example, the need to
-restrict privileged permissions is lessened when the workload is isolated from the underlying
-kernel. This allows for workloads requiring heightened permissions to still be isolated.
-
-Additionally, the protection of sandboxed workloads is highly dependent on the method of
-sandboxing. As such, no single recommended policy is recommended for all sandboxed workloads.
--->
-### 沙箱（Sandboxed） Pod 怎么处理？
-
-现在还没有 API 标准来控制 Pod 是否被视作沙箱化 Pod。
-沙箱 Pod 可以通过其是否使用沙箱化运行时（如 gVisor 或 Kata Container）来辨别，不过
-目前还没有关于什么是沙箱化运行时的标准定义。
-
-沙箱化负载所需要的保护可能彼此各不相同。例如，当负载与下层内核直接隔离开来时，
-限制特权化操作的许可就不那么重要。这使得那些需要更多许可权限的负载仍能被有效隔离。
-
-此外，沙箱化负载的保护高度依赖于沙箱化的实现方法。
-因此，现在还没有针对所有沙箱化负载的建议策略。
diff --git a/content/zh/docs/concepts/services-networking/_index.md b/content/zh/docs/concepts/services-networking/_index.md
deleted file mode 100644
index f322d74216..0000000000
--- a/content/zh/docs/concepts/services-networking/_index.md
+++ /dev/null
@@ -1,19 +0,0 @@
----
-title: "服务、负载均衡和联网"
-weight: 60
-description: Kubernetes 网络背后的概念和资源。
----
-
-<!--
-Kubernetes networking addresses four concerns:
-- Containers within a Pod use networking to communicate via loopback.
-- Cluster networking provides communication between different Pods.
-- The Service resource lets you expose an application running in Pods to be reachable from outside your cluster.
-- You can also use Services to publish services only for consumption inside your cluster.
--->
-
-Kubernetes 网络解决四方面的问题：
-- 一个 Pod 中的容器之间通过本地回路（loopback）通信。
-- 集群网络在不同 pod 之间提供通信。
-- Service 资源允许你对外暴露 Pods 中运行的应用程序，以支持来自于集群外部的访问。
-- 可以使用 Services 来发布仅供集群内部使用的服务。
\ No newline at end of file
diff --git a/content/zh/docs/concepts/workloads/controllers/garbage-collection.md b/content/zh/docs/concepts/workloads/controllers/garbage-collection.md
deleted file mode 100644
index 781021cb1b..0000000000
--- a/content/zh/docs/concepts/workloads/controllers/garbage-collection.md
+++ /dev/null
@@ -1,324 +0,0 @@
----
-title: 垃圾收集
-content_type: concept
-weight: 60
----
-
-<!--
-title: Garbage Collection
-content_type: concept
-weight: 60
--->
-
-<!-- overview -->
-
-<!--
-The role of the Kubernetes garbage collector is to delete certain objects
-that once had an owner, but no longer have an owner.
--->
-Kubernetes 垃圾收集器的作用是删除某些曾经拥有属主（Owner）但现在不再拥有属主的对象。
-
-<!-- body -->
-
-<!--
-## Owners and dependents
-
-Some Kubernetes objects are owners of other objects. For example, a ReplicaSet
-is the owner of a set of Pods. The owned objects are called *dependents* of the
-owner object. Every dependent object has a `metadata.ownerReferences` field that
-points to the owning object.
-
-Sometimes, Kubernetes sets the value of `ownerReference` automatically. For
-example, when you create a ReplicaSet, Kubernetes automatically sets the
-`ownerReference` field of each Pod in the ReplicaSet. In 1.8, Kubernetes
-automatically sets the value of `ownerReference` for objects created or adopted
-by ReplicationController, ReplicaSet, StatefulSet, DaemonSet, Deployment, Job
-and CronJob.
-
--->
-## 属主和附属     {#owners-and-dependents}
-
-某些 Kubernetes 对象是其它一些对象的属主。
-例如，一个 ReplicaSet 是一组 Pod 的属主。
-具有属主的对象被称为是属主的 *附属* 。
-每个附属对象具有一个指向其所属对象的 `metadata.ownerReferences` 字段。
-
-有时，Kubernetes 会自动设置 `ownerReference` 的值。
-例如，当创建一个 ReplicaSet 时，Kubernetes 自动设置 ReplicaSet 中每个 Pod 的 `ownerReference` 字段值。
-在 Kubernetes 1.8 版本，Kubernetes 会自动为某些对象设置 `ownerReference` 的值。
-这些对象是由 ReplicationController、ReplicaSet、StatefulSet、DaemonSet、Deployment、
-Job 和 CronJob 所创建或管理的。
-
-<!--
-You can also specify relationships between owners and dependents by manually
-setting the `ownerReference` field.
-
-Here's a configuration file for a ReplicaSet that has three Pods:
--->
-你也可以通过手动设置 `ownerReference` 的值，来指定属主和附属之间的关系。
-
-下面的配置文件中包含一个具有 3 个 Pod 的 ReplicaSet：
-
-{{< codenew file="controllers/replicaset.yaml" >}}
-
-<!--
-If you create the ReplicaSet and then view the Pod metadata, you can see
-OwnerReferences field:
--->
-如果你创建该 ReplicaSet，然后查看 Pod 的 metadata 字段，能够看到 OwnerReferences 字段：
-
-```shell
-kubectl apply -f https://k8s.io/examples/controllers/replicaset.yaml
-kubectl get pods --output=yaml
-```
-
-<!--
-The output shows that the Pod owner is a ReplicaSet named `my-repset`:
--->
-输出显示了 Pod 的属主是名为 my-repset 的 ReplicaSet：
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  ...
-  ownerReferences:
-  - apiVersion: apps/v1
-    controller: true
-    blockOwnerDeletion: true
-    kind: ReplicaSet
-    name: my-repset
-    uid: d9607e19-f88f-11e6-a518-42010a800195
-  ...
-```
-
-<!--
-Cross-namespace owner references are disallowed by design.
-
-Namespaced dependents can specify cluster-scoped or namespaced owners.
-A namespaced owner **must** exist in the same namespace as the dependent.
-If it does not, the owner reference is treated as absent, and the dependent
-is subject to deletion once all owners are verified absent.
--->
-{{< note >}}
-根据设计，kubernetes 不允许跨名字空间指定属主。
-
-名字空间范围的附属可以指定集群范围的或者名字空间范围的属主。
-
-名字空间范围的属主**必须**和该附属处于相同的名字空间。
-如果名字空间范围的属主和附属不在相同的名字空间，那么该属主引用就会被认为是缺失的，
-并且当附属的所有属主引用都被确认不再存在之后，该附属就会被删除。
-
-<!--
-Cluster-scoped dependents can only specify cluster-scoped owners.
-In v1.20+, if a cluster-scoped dependent specifies a namespaced kind as an owner,
-it is treated as having an unresolveable owner reference, and is not able to be garbage collected.
--->
-集群范围的附属只能指定集群范围的属主。
-在 v1.20+ 版本，如果一个集群范围的附属指定了一个名字空间范围类型的属主，
-那么该附属就会被认为是拥有一个不可解析的属主引用，并且它不能够被垃圾回收。
-
-<!--
-In v1.20+, if the garbage collector detects an invalid cross-namespace `ownerReference`,
-or a cluster-scoped dependent with an `ownerReference` referencing a namespaced kind, a warning Event 
-with a reason of `OwnerRefInvalidNamespace` and an `involvedObject` of the invalid dependent is reported.
-You can check for that kind of Event by running
-`kubectl get events -A --field-selector=reason=OwnerRefInvalidNamespace`.
--->
-在 v1.20+ 版本，如果垃圾收集器检测到无效的跨名字空间的属主引用，
-或者一个集群范围的附属指定了一个名字空间范围类型的属主，
-那么它就会报告一个警告事件。该事件的原因是 `OwnerRefInvalidNamespace`，
-`involvedObject` 属性中包含无效的附属。你可以通过以下命令来获取该类型的事件：
-
-```shell
-kubectl get events -A --field-selector=reason=OwnerRefInvalidNamespace
-```
-{{< /note >}}
-<!--
-## Controlling how the garbage collector deletes dependents
-
-When you delete an object, you can specify whether the object's dependents are
-also deleted automatically. Deleting dependents automatically is called *cascading
-deletion*.  There are two modes of *cascading deletion*: *background* and *foreground*.
-
-If you delete an object without deleting its dependents
-automatically, the dependents are said to be *orphaned*.
-
--->
-## 控制垃圾收集器删除附属
-
-当你删除对象时，可以指定该对象的附属是否也自动删除。
-自动删除附属的行为也称为 *级联删除（Cascading Deletion）* 。
-Kubernetes 中有两种 *级联删除* 模式：*后台（Background）* 模式和 *前台（Foreground）* 模式。
-
-如果删除对象时，不自动删除它的附属，这些附属被称作 *孤立对象（Orphaned）* 。
-
-<!--
-### Foreground cascading deletion
-
-In *foreground cascading deletion*, the root object first
-enters a "deletion in progress" state. In the "deletion in progress" state,
-the following things are true:
-
- * The object is still visible via the REST API
- * The object's `deletionTimestamp` is set
- * The object's `metadata.finalizers` contains the value "foregroundDeletion".
--->
-### 前台级联删除
-
-在 *前台级联删除* 模式下，根对象首先进入 `deletion in progress` 状态。
-在 `deletion in progress` 状态，会有如下的情况：
-
- * 对象仍然可以通过 REST API 可见。
- * 对象的 `deletionTimestamp` 字段被设置。
- * 对象的 `metadata.finalizers` 字段包含值 `foregroundDeletion`。
-
-<!--
-Once the "deletion in progress" state is set, the garbage
-collector deletes the object's dependents. Once the garbage collector has deleted all
-"blocking" dependents (objects with `ownerReference.blockOwnerDeletion=true`), it deletes
-the owner object.
--->
-一旦对象被设置为 `deletion in progress` 状态，垃圾收集器会删除对象的所有附属。
-垃圾收集器在删除了所有有阻塞能力的附属（对象的 `ownerReference.blockOwnerDeletion=true`）
-之后，删除属主对象。
-
-<!--
-Note that in the "foregroundDeletion", only dependents with
-`ownerReference.blockOwnerDeletion=true` block the deletion of the owner object.
-Kubernetes version 1.7 added an [admission controller](/docs/reference/access-authn-authz/admission-controllers/#ownerreferencespermissionenforcement) that controls user access to set
-`blockOwnerDeletion` to true based on delete permissions on the owner object, so that
-unauthorized dependents cannot delay deletion of an owner object.
-
-If an object's `ownerReferences` field is set by a controller (such as Deployment or ReplicaSet),
-blockOwnerDeletion is set automatically and you do not need to manually modify this field.
--->
-注意，在 `foregroundDeletion` 模式下，只有设置了 `ownerReference.blockOwnerDeletion`
-值的附属才能阻止删除属主对象。
-在 Kubernetes 1.7 版本增加了
-[准入控制器](/zh/docs/reference/access-authn-authz/admission-controllers/#ownerreferencespermissionenforcement)，
-基于属主对象上的删除权限来控制用户设置 `blockOwnerDeletion` 的值为 True，
-这样未经授权的附属不能够阻止属主对象的删除。
-
-如果一个对象的 `ownerReferences` 字段被一个控制器（例如 Deployment 或 ReplicaSet）设置，
-`blockOwnerDeletion` 也会被自动设置，你不需要手动修改这个字段。
-
-<!--
-### Background cascading deletion
-
-In *background cascading deletion*, Kubernetes deletes the owner object
-immediately and the garbage collector then deletes the dependents in
-the background.
--->
-### 后台级联删除
-
-在 *后台级联删除* 模式下，Kubernetes 会立即删除属主对象，之后垃圾收集器
-会在后台删除其附属对象。
-
-<!--
-### Setting the cascading deletion policy
-
-To control the cascading deletion policy, set the `propagationPolicy`
-field on the `deleteOptions` argument when deleting an Object. Possible values include "Orphan",
-"Foreground", or "Background".
--->
-### 设置级联删除策略
-
-通过为属主对象设置 `deleteOptions.propagationPolicy` 字段，可以控制级联删除策略。
-可能的取值包括：`Orphan`、`Foreground` 或者 `Background`。
-
-<!--
-Here's an example that deletes dependents in background:
--->
-下面是一个在后台删除附属对象的示例：
-
-```shell
-kubectl proxy --port=8080
-curl -X DELETE localhost:8080/apis/apps/v1/namespaces/default/replicasets/my-repset \
-  -d '{"kind":"DeleteOptions","apiVersion":"v1","propagationPolicy":"Background"}' \
-  -H "Content-Type: application/json"
-```
-
-<!--
-Here's an example that deletes dependents in foreground:
--->
-
-下面是一个在前台中删除附属对象的示例：
-
-```shell
-kubectl proxy --port=8080
-curl -X DELETE localhost:8080/apis/apps/v1/namespaces/default/replicasets/my-repset \
-  -d '{"kind":"DeleteOptions","apiVersion":"v1","propagationPolicy":"Foreground"}' \
-  -H "Content-Type: application/json"
-```
-
-<!--
-Here's an example that orphans dependents:
--->
-下面是一个令附属成为孤立对象的示例：
-
-```shell
-kubectl proxy --port=8080
-curl -X DELETE localhost:8080/apis/apps/v1/namespaces/default/replicasets/my-repset \
-  -d '{"kind":"DeleteOptions","apiVersion":"v1","propagationPolicy":"Orphan"}' \
-  -H "Content-Type: application/json"
-```
-
-<!--
-kubectl also supports cascading deletion.
-
-To delete dependents in the foreground using kubectl, set `--cascade=foreground`.  To
-orphan dependents, set `--cascade=orphan`. 
-
-The default behavior is to delete the dependents in the background which is the
-behavior when `--cascade` is omitted or explicitly set to `background`.
-
-Here's an example that orphans the dependents of a ReplicaSet
--->
-`kubectl` 命令也支持级联删除。
-通过设置 `--cascade=foreground`，可以使用 kubectl 在前台删除附属对象。
-设置 `--cascade=orphan`，会使附属对象成为孤立附属对象。
-当不指定 `--cascade` 或者明确地指定它的值为 `background` 的时候，
-默认的行为是在后台删除附属对象。
-
-下面是一个例子，使一个 ReplicaSet 的附属对象成为孤立附属：
-
-```shell
-kubectl delete replicaset my-repset --cascade=orphan
-```
-
-<!--
-### Additional note on Deployments
-
-Prior to 1.7, When using cascading deletes with Deployments you *must* use `propagationPolicy: Foreground`
-to delete not only the ReplicaSets created, but also their Pods. If this type of _propagationPolicy_
-is not used, only the ReplicaSets will be deleted, and the Pods will be orphaned.
-See [kubeadm/#149](https://github.com/kubernetes/kubeadm/issues/149#issuecomment-284766613) for more information.
--->
-### Deployment 的附加说明
-
-在 1.7 之前的版本中，当在 Deployment 中使用级联删除时，你 *必须*使用
-`propagationPolicy:Foreground` 模式以便在删除所创建的 ReplicaSet 的同时，还删除其 Pod。
-如果不使用这种类型的 `propagationPolicy`，将只删除 ReplicaSet，而 Pod 被孤立。
-
-有关信息请参考 [kubeadm/#149](https://github.com/kubernetes/kubeadm/issues/149#issuecomment-284766613)。
-
-<!--
-## Known issues
-
-Tracked at [#26120](https://github.com/kubernetes/kubernetes/issues/26120)
--->
-## 已知的问题
-
-跟踪 [#26120](https://github.com/kubernetes/kubernetes/issues/26120)
-
-## {{% heading "whatsnext" %}}
-
-<!--
-[Design Doc 1](https://git.k8s.io/community/contributors/design-proposals/api-machinery/garbage-collection.md)
-
-[Design Doc 2](https://git.k8s.io/community/contributors/design-proposals/api-machinery/synchronous-garbage-collection.md)
--->
-* [设计文档 1](https://git.k8s.io/community/contributors/design-proposals/api-machinery/garbage-collection.md)
-* [设计文档 2](https://git.k8s.io/community/contributors/design-proposals/api-machinery/synchronous-garbage-collection.md)
-
diff --git a/content/zh/docs/concepts/workloads/controllers/statefulset.md b/content/zh/docs/concepts/workloads/controllers/statefulset.md
deleted file mode 100644
index 56c27ae3ea..0000000000
--- a/content/zh/docs/concepts/workloads/controllers/statefulset.md
+++ /dev/null
@@ -1,529 +0,0 @@
----
-title: StatefulSets
-content_type: concept
-weight: 30
----
-
-<!--
-title: StatefulSets
-content_type: concept
-weight: 40
--->
-
-<!-- overview -->
-
-<!--
-StatefulSet is the workload API object used to manage stateful applications.
--->
-StatefulSet 是用来管理有状态应用的工作负载 API 对象。
-
-{{< glossary_definition term_id="statefulset" length="all" >}}
-
-<!-- body -->
-
-<!--
-## Using StatefulSets
-
-StatefulSets are valuable for applications that require one or more of the
-following.
--->
-## 使用 StatefulSets
-
-StatefulSets 对于需要满足以下一个或多个需求的应用程序很有价值：
-
-<!--
-* Stable, unique network identifiers.
-* Stable, persistent storage.
-* Ordered, graceful deployment and scaling.
-* Ordered, automated rolling updates.
--->
-* 稳定的、唯一的网络标识符。
-* 稳定的、持久的存储。
-* 有序的、优雅的部署和缩放。
-* 有序的、自动的滚动更新。
-
-<!--
-In the above, stable is synonymous with persistence across Pod (re)scheduling.
-If an application doesn't require any stable identifiers or ordered deployment,
-deletion, or scaling, you should deploy your application using a workload object
-that provides a set of stateless replicas.
-[Deployment](/docs/concepts/workloads/controllers/deployment/) or
-[ReplicaSet](/docs/concepts/workloads/controllers/replicaset/) may be better suited to your stateless needs.
--->
-在上面描述中，“稳定的”意味着 Pod 调度或重调度的整个过程是有持久性的。
-如果应用程序不需要任何稳定的标识符或有序的部署、删除或伸缩，则应该使用
-由一组无状态的副本控制器提供的工作负载来部署应用程序，比如
-[Deployment](/zh/docs/concepts/workloads/controllers/deployment/) 或者
-[ReplicaSet](/zh/docs/concepts/workloads/controllers/replicaset/)
-可能更适用于你的无状态应用部署需要。
-
-<!--
-## Limitations
--->
-## 限制  {#limitations}
-
-<!--
-* The storage for a given Pod must either be provisioned by a [PersistentVolume Provisioner](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/persistent-volume-provisioning/README.md) based on the requested `storage class`, or pre-provisioned by an admin.
-* Deleting and/or scaling a StatefulSet down will *not* delete the volumes associated with the StatefulSet. This is done to ensure data safety, which is generally more valuable than an automatic purge of all related StatefulSet resources.
-* StatefulSets currently require a [Headless Service](/docs/concepts/services-networking/service/#headless-services) to be responsible for the network identity of the Pods. You are responsible for creating this Service.
-* StatefulSets do not provide any guarantees on the termination of pods when a StatefulSet is deleted. To achieve ordered and graceful termination of the pods in the StatefulSet, it is possible to scale the StatefulSet down to 0 prior to deletion.
-* When using [Rolling Updates](#rolling-updates) with the default
-  [Pod Management Policy](#pod-management-policies) (`OrderedReady`),
-  it's possible to get into a broken state that requires
-  [manual intervention to repair](#forced-rollback).
--->
-* 给定 Pod 的存储必须由
-  [PersistentVolume 驱动](https://github.com/kubernetes/examples/tree/{{< param "githubbranch" >}}/staging/persistent-volume-provisioning/README.md)
-  基于所请求的 `storage class` 来提供，或者由管理员预先提供。
-* 删除或者收缩 StatefulSet 并*不会*删除它关联的存储卷。
-  这样做是为了保证数据安全，它通常比自动清除 StatefulSet 所有相关的资源更有价值。
-* StatefulSet 当前需要[无头服务](/zh/docs/concepts/services-networking/service/#headless-services)
-  来负责 Pod 的网络标识。你需要负责创建此服务。
-* 当删除 StatefulSets 时，StatefulSet 不提供任何终止 Pod 的保证。
-  为了实现 StatefulSet 中的 Pod 可以有序地且体面地终止，可以在删除之前将 StatefulSet
-  缩放为 0。
-* 在默认 [Pod 管理策略](#pod-management-policies)(`OrderedReady`) 时使用
-  [滚动更新](#rolling-updates)，可能进入需要[人工干预](#forced-rollback)
-  才能修复的损坏状态。
-
-<!--
-## Components
-The example below demonstrates the components of a StatefulSet.
--->
-## 组件  {#components}
-
-下面的示例演示了 StatefulSet 的组件。
-
-```yaml
-apiVersion: v1
-kind: Service
-metadata:
-  name: nginx
-  labels:
-    app: nginx
-spec:
-  ports:
-  - port: 80
-    name: web
-  clusterIP: None
-  selector:
-    app: nginx
----
-apiVersion: apps/v1
-kind: StatefulSet
-metadata:
-  name: web
-spec:
-  selector:
-    matchLabels:
-      app: nginx # has to match .spec.template.metadata.labels
-  serviceName: "nginx"
-  replicas: 3 # by default is 1
-  template:
-    metadata:
-      labels:
-        app: nginx # has to match .spec.selector.matchLabels
-    spec:
-      terminationGracePeriodSeconds: 10
-      containers:
-      - name: nginx
-        image: k8s.gcr.io/nginx-slim:0.8
-        ports:
-        - containerPort: 80
-          name: web
-        volumeMounts:
-        - name: www
-          mountPath: /usr/share/nginx/html
-  volumeClaimTemplates:
-  - metadata:
-      name: www
-    spec:
-      accessModes: [ "ReadWriteOnce" ]
-      storageClassName: "my-storage-class"
-      resources:
-        requests:
-          storage: 1Gi
-```
-
-<!--
-In the above example:
-
-* A Headless Service, named `nginx`, is used to control the network domain.
-* The StatefulSet, named `web`, has a Spec that indicates that 3 replicas of the nginx container will be launched in unique Pods.
-* The `volumeClaimTemplates` will provide stable storage using [PersistentVolumes](/docs/concepts/storage/persistent-volumes/) provisioned by a PersistentVolume Provisioner.
-
-The name of a StatefulSet object must be a valid
-[DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names).
-
--->
-上述例子中：
-
-* 名为 `nginx` 的 Headless Service 用来控制网络域名。
-* 名为 `web` 的 StatefulSet 有一个 Spec，它表明将在独立的 3 个 Pod 副本中启动 nginx 容器。
-* `volumeClaimTemplates` 将通过 PersistentVolumes 驱动提供的
-  [PersistentVolumes](/zh/docs/concepts/storage/persistent-volumes/) 来提供稳定的存储。
-
-StatefulSet 的命名需要遵循[DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names)规范。
-
-<!--
-## Pod Selector
--->
-## Pod 选择算符     {#pod-selector}
-
-<!--
-You must set the `.spec.selector` field of a StatefulSet to match the labels of its `.spec.template.metadata.labels`. Prior to Kubernetes 1.8, the `.spec.selector` field was defaulted when omitted. In 1.8 and later versions, failing to specify a matching Pod Selector will result in a validation error during StatefulSet creation.
--->
-你必须设置 StatefulSet 的 `.spec.selector` 字段，使之匹配其在
-`.spec.template.metadata.labels` 中设置的标签。在 Kubernetes 1.8 版本之前，
-被忽略 `.spec.selector` 字段会获得默认设置值。
-在 1.8 和以后的版本中，未指定匹配的 Pod 选择器将在创建 StatefulSet 期间导致验证错误。
-
-<!--
-## Pod Identity
-
-StatefulSet Pods have a unique identity that is comprised of an ordinal, a
-stable network identity, and stable storage. The identity sticks to the Pod,
-regardless of which node it's (re)scheduled on.
--->
-## Pod 标识   {#pod-identity}
-
-StatefulSet Pod 具有唯一的标识，该标识包括顺序标识、稳定的网络标识和稳定的存储。
-该标识和 Pod 是绑定的，不管它被调度在哪个节点上。
-
-<!--
-### Ordinal Index
-
-For a StatefulSet with N replicas, each Pod in the StatefulSet will be
-assigned an integer ordinal, from 0 up through N-1, that is unique over the Set.
--->
-### 有序索引   {#ordinal-index}
-
-对于具有 N 个副本的 StatefulSet，StatefulSet 中的每个 Pod 将被分配一个整数序号，
-从 0 到 N-1，该序号在 StatefulSet 上是唯一的。
-
-<!--
-### Stable Network ID
-
-Each Pod in a StatefulSet derives its hostname from the name of the StatefulSet
-and the ordinal of the Pod. The pattern for the constructed hostname
-is `$(statefulset name)-$(ordinal)`. The example above will create three Pods
-named `web-0,web-1,web-2`.
-A StatefulSet can use a [Headless Service](/docs/concepts/services-networking/service/#headless-services)
-to control the domain of its Pods. The domain managed by this Service takes the form:
-`$(service name).$(namespace).svc.cluster.local`, where "cluster.local" is the
-cluster domain.
-As each Pod is created, it gets a matching DNS subdomain, taking the form:
-`$(podname).$(governing service domain)`, where the governing service is defined
-by the `serviceName` field on the StatefulSet.
--->
-### 稳定的网络 ID   {#stable-network-id}
-
-StatefulSet 中的每个 Pod 根据 StatefulSet 的名称和 Pod 的序号派生出它的主机名。
-组合主机名的格式为`$(StatefulSet 名称)-$(序号)`。
-上例将会创建三个名称分别为 `web-0、web-1、web-2` 的 Pod。
-StatefulSet 可以使用 [无头服务](/zh/docs/concepts/services-networking/service/#headless-services)
-控制它的 Pod 的网络域。管理域的这个服务的格式为：
-`$(服务名称).$(命名空间).svc.cluster.local`，其中 `cluster.local` 是集群域。
-一旦每个 Pod 创建成功，就会得到一个匹配的 DNS 子域，格式为：
-`$(pod 名称).$(所属服务的 DNS 域名)`，其中所属服务由 StatefulSet 的 `serviceName` 域来设定。
-
-<!--
-Depending on how DNS is configured in your cluster, you may not be able to look up the DNS
-name for a newly-run Pod immediately. This behavior can occur when other clients in the
-cluster have already sent queries for the hostname of the Pod before it was created.
-Negative caching (normal in DNS) means that the results of previous failed lookups are
-remembered and reused, even after the Pod is running, for at least a few seconds.
-
-If you need to discover Pods promptly after they are created, you have a few options:
-
-- Query the Kubernetes API directly (for example, using a watch) rather than relying on DNS lookups.
-- Decrease the time of caching in your Kubernetes DNS provider (typically this means editing the config map for CoreDNS, which currently caches for 30 seconds).
-
-
-As mentioned in the [limitations](#limitations) section, you are responsible for
-creating the [Headless Service](/docs/concepts/services-networking/service/#headless-services)
-responsible for the network identity of the pods.
-
--->
-取决于集群域内部 DNS 的配置，有可能无法查询一个刚刚启动的 Pod 的 DNS 命名。
-当集群内其他客户端在 Pod 创建完成前发出 Pod 主机名查询时，就会发生这种情况。
-负缓存 (在 DNS 中较为常见) 意味着之前失败的查询结果会被记录和重用至少若干秒钟，
-即使 Pod 已经正常运行了也是如此。
-
-如果需要在 Pod 被创建之后及时发现它们，有以下选项：
-
-- 直接查询 Kubernetes API（比如，利用 watch 机制）而不是依赖于 DNS 查询
-- 缩短 Kubernetes DNS 驱动的缓存时长（通常这意味着修改 CoreDNS 的 ConfigMap，目前缓存时长为 30 秒）
-
-正如[限制](#limitations)中所述，你需要负责创建[无头服务](/zh/docs/concepts/services-networking/service/#headless-services)
-以便为 Pod 提供网络标识。
-
-<!--
-Here are some examples of choices for Cluster Domain, Service name,
-StatefulSet name, and how that affects the DNS names for the StatefulSet's Pods.
-
-
-Cluster Domain | Service (ns/name) | StatefulSet (ns/name)  | StatefulSet Domain  | Pod DNS | Pod Hostname |
--------------- | ----------------- | ----------------- | -------------- | ------- | ------------ |
- cluster.local | default/nginx     | default/web       | nginx.default.svc.cluster.local | web-{0..N-1}.nginx.default.svc.cluster.local | web-{0..N-1} |
- cluster.local | foo/nginx         | foo/web           | nginx.foo.svc.cluster.local     | web-{0..N-1}.nginx.foo.svc.cluster.local     | web-{0..N-1} |
- kube.local    | foo/nginx         | foo/web           | nginx.foo.svc.kube.local        | web-{0..N-1}.nginx.foo.svc.kube.local        | web-{0..N-1} |
-
--->
-下面给出一些选择集群域、服务名、StatefulSet 名、及其怎样影响 StatefulSet 的 Pod 上的 DNS 名称的示例：
-
-集群域名       | 服务（名字空间/名字）| StatefulSet（名字空间/名字） | StatefulSet 域名 | Pod DNS | Pod 主机名   |
--------------- | -------------------- | ---------------------------- | ---------------- | ------- | ------------ |
- cluster.local | default/nginx     | default/web       | nginx.default.svc.cluster.local | web-{0..N-1}.nginx.default.svc.cluster.local | web-{0..N-1} |
- cluster.local | foo/nginx         | foo/web           | nginx.foo.svc.cluster.local     | web-{0..N-1}.nginx.foo.svc.cluster.local     | web-{0..N-1} |
- kube.local    | foo/nginx         | foo/web           | nginx.foo.svc.kube.local        | web-{0..N-1}.nginx.foo.svc.kube.local        | web-{0..N-1} |
-
-<!--
-Cluster Domain will be set to `cluster.local` unless
-[otherwise configured](/docs/concepts/services-networking/dns-pod-service/#how-it-works).
--->
-{{< note >}}
-集群域会被设置为 `cluster.local`，除非有[其他配置](/zh/docs/concepts/services-networking/dns-pod-service/)。
-{{< /note >}}
-
-<!--
-### Stable Storage
-
-Kubernetes creates one [PersistentVolume](/docs/concepts/storage/persistent-volumes/) for each
-VolumeClaimTemplate. In the nginx example above, each Pod will receive a single PersistentVolume
-with a StorageClass of `my-storage-class` and 1 Gib of provisioned storage. If no StorageClass
-is specified, then the default StorageClass will be used. When a Pod is (re)scheduled
-onto a node, its `volumeMounts` mount the PersistentVolumes associated with its
-PersistentVolume Claims. Note that, the PersistentVolumes associated with the
-Pods' PersistentVolume Claims are not deleted when the Pods, or StatefulSet are deleted.
-This must be done manually.
--->
-### 稳定的存储  {#stable-storage}
-
-Kubernetes 为每个 VolumeClaimTemplate 创建一个 [PersistentVolume](/zh/docs/concepts/storage/persistent-volumes/)。
-在上面的 nginx 示例中，每个 Pod 将会得到基于 StorageClass `my-storage-class` 提供的
-1 Gib 的 PersistentVolume。如果没有声明 StorageClass，就会使用默认的 StorageClass。
-当一个 Pod 被调度（重新调度）到节点上时，它的 `volumeMounts` 会挂载与其 
-PersistentVolumeClaims 相关联的 PersistentVolume。
-请注意，当 Pod 或者 StatefulSet 被删除时，与 PersistentVolumeClaims 相关联的 
-PersistentVolume 并不会被删除。要删除它必须通过手动方式来完成。
-
-<!--
-### Pod Name Label
-
-When the StatefulSet {{< glossary_tooltip term_id="controller" >}} creates a Pod,
-it adds a label, `statefulset.kubernetes.io/pod-name`, that is set to the name of
-the Pod. This label allows you to attach a Service to a specific Pod in
-the StatefulSet.
--->
-### Pod 名称标签   {#pod-name-label}
-
-当 StatefulSet {{< glossary_tooltip term_id="controller" >}} 创建 Pod 时，
-它会添加一个标签 `statefulset.kubernetes.io/pod-name`，该标签值设置为 Pod 名称。
-这个标签允许你给 StatefulSet 中的特定 Pod 绑定一个 Service。
-
-<!--
-## Deployment and Scaling Guarantees
-
-* For a StatefulSet with N replicas, when Pods are being deployed, they are created sequentially, in order from {0..N-1}.
-* When Pods are being deleted, they are terminated in reverse order, from {N-1..0}.
-* Before a scaling operation is applied to a Pod, all of its predecessors must be Running and Ready.
-* Before a Pod is terminated, all of its successors must be completely shutdown.
--->
-## 部署和扩缩保证   {#deployment-and-scaling-guarantees}
-
-* 对于包含 N 个 副本的 StatefulSet，当部署 Pod 时，它们是依次创建的，顺序为 `0..N-1`。
-* 当删除 Pod 时，它们是逆序终止的，顺序为 `N-1..0`。
-* 在将缩放操作应用到 Pod 之前，它前面的所有 Pod 必须是 Running 和 Ready 状态。
-* 在 Pod 终止之前，所有的继任者必须完全关闭。
-
-<!--
-The StatefulSet should not specify a `pod.Spec.TerminationGracePeriodSeconds` of 0. This practice is unsafe and strongly discouraged. For further explanation, please refer to [force deleting StatefulSet Pods](/docs/tasks/run-application/force-delete-stateful-set-pod/).
--->
-StatefulSet 不应将 `pod.Spec.TerminationGracePeriodSeconds` 设置为 0。
-这种做法是不安全的，要强烈阻止。更多的解释请参考
-[强制删除 StatefulSet Pod](/zh/docs/tasks/run-application/force-delete-stateful-set-pod/)。
-
-<!--
-When the nginx example above is created, three Pods will be deployed in the order
-web-0, web-1, web-2. web-1 will not be deployed before web-0 is
-[Running and Ready](/docs/user-guide/pod-states/), and web-2 will not be deployed until
-web-1 is Running and Ready. If web-0 should fail, after web-1 is Running and Ready, but before
-web-2 is launched, web-2 will not be launched until web-0 is successfully relaunched and
-becomes Running and Ready.
--->
-在上面的 nginx 示例被创建后，会按照 web-0、web-1、web-2 的顺序部署三个 Pod。
-在 web-0 进入 [Running 和 Ready](/zh/docs/concepts/workloads/pods/pod-lifecycle/)
-状态前不会部署 web-1。在 web-1 进入 Running 和 Ready 状态前不会部署 web-2。
-如果 web-1 已经处于 Running 和 Ready 状态，而 web-2 尚未部署，在此期间发生了
-web-0 运行失败，那么 web-2 将不会被部署，要等到 web-0 部署完成并进入 Running 和
-Ready 状态后，才会部署 web-2。
-
-<!--
-If a user were to scale the deployed example by patching the StatefulSet such that
-`replicas=1`, web-2 would be terminated first. web-1 would not be terminated until web-2
-is fully shutdown and deleted. If web-0 were to fail after web-2 has been terminated and
-is completely shutdown, but prior to web-1's termination, web-1 would not be terminated
-until web-0 is Running and Ready.
--->
-如果用户想将示例中的 StatefulSet 收缩为 `replicas=1`，首先被终止的是 web-2。
-在 web-2 没有被完全停止和删除前，web-1 不会被终止。
-当 web-2 已被终止和删除、web-1 尚未被终止，如果在此期间发生 web-0 运行失败，
-那么就不会终止 web-1，必须等到 web-0 进入 Running 和 Ready 状态后才会终止 web-1。
-
-<!--
-### Pod Management Policies
-
-In Kubernetes 1.7 and later, StatefulSet allows you to relax its ordering guarantees while
-preserving its uniqueness and identity guarantees via its `.spec.podManagementPolicy` field.
--->
-### Pod 管理策略 {#pod-management-policies}
-
-在 Kubernetes 1.7 及以后的版本中，StatefulSet 允许你放宽其排序保证，
-同时通过它的 `.spec.podManagementPolicy` 域保持其唯一性和身份保证。
-
-<!--
-#### OrderedReady Pod Management
-
-`OrderedReady` pod management is the default for StatefulSets. It implements the behavior
-described [above](#deployment-and-scaling-guarantees).
--->
-#### OrderedReady Pod 管理
-
-`OrderedReady` Pod 管理是 StatefulSet 的默认设置。它实现了
-[上面](#deployment-and-scaling-guarantees)描述的功能。
-
-<!--
-#### Parallel Pod Management
-
-`Parallel` pod management tells the StatefulSet controller to launch or
-terminate all Pods in parallel, and to not wait for Pods to become Running
-and Ready or completely terminated prior to launching or terminating another
-Pod. This option only affects the behavior for scaling operations. Updates are not affected.
-
--->
-#### 并行 Pod 管理   {#parallel-pod-management}
-
-`Parallel` Pod 管理让 StatefulSet 控制器并行的启动或终止所有的 Pod，
-启动或者终止其他 Pod 前，无需等待 Pod 进入 Running 和 ready 或者完全停止状态。
-这个选项只会影响伸缩操作的行为，更新则不会被影响。
-
-<!--
-## Update Strategies
-
-In Kubernetes 1.7 and later, StatefulSet's `.spec.updateStrategy` field allows you to configure
-and disable automated rolling updates for containers, labels, resource request/limits, and
-annotations for the Pods in a StatefulSet.
--->
-## 更新策略  {#update-strategies}
-
-在 Kubernetes 1.7 及以后的版本中，StatefulSet 的 `.spec.updateStrategy` 字段让
-你可以配置和禁用掉自动滚动更新 Pod 的容器、标签、资源请求或限制、以及注解。
-
-<!--
-### On Delete
-
-The `OnDelete` update strategy implements the legacy (1.6 and prior) behavior. When a StatefulSet's
-`.spec.updateStrategy.type` is set to `OnDelete`, the StatefulSet controller will not automatically
-update the Pods in a StatefulSet. Users must manually delete Pods to cause the controller to
-create new Pods that reflect modifications made to a StatefulSet's `.spec.template`.
--->
-### 关于删除策略  {#on-delete}
-
-`OnDelete` 更新策略实现了 1.6 及以前版本的历史遗留行为。当 StatefulSet 的
-`.spec.updateStrategy.type` 设置为 `OnDelete` 时，它的控制器将不会自动更新
-StatefulSet 中的 Pod。
-用户必须手动删除 Pod 以便让控制器创建新的 Pod，以此来对 StatefulSet 的
-`.spec.template` 的变动作出反应。
-
-<!--
-### Rolling Updates
-
-The `RollingUpdate` update strategy implements automated, rolling update for the Pods in a
-StatefulSet. It is the default strategy when `.spec.updateStrategy` is left unspecified. When a StatefulSet's `.spec.updateStrategy.type` is set to `RollingUpdate`, the
-StatefulSet controller will delete and recreate each Pod in the StatefulSet. It will proceed
-in the same order as Pod termination (from the largest ordinal to the smallest), updating
-each Pod one at a time. It will wait until an updated Pod is Running and Ready prior to
-updating its predecessor.
--->
-### 滚动更新 {#rolling-updates}
-
-`RollingUpdate` 更新策略对 StatefulSet 中的 Pod 执行自动的滚动更新。
-在没有声明 `.spec.updateStrategy` 时，`RollingUpdate` 是默认配置。
-当 StatefulSet 的 `.spec.updateStrategy.type` 被设置为 `RollingUpdate` 时，
-StatefulSet 控制器会删除和重建 StatefulSet 中的每个 Pod。
-它将按照与 Pod 终止相同的顺序（从最大序号到最小序号）进行，每次更新一个 Pod。
-它会等到被更新的 Pod 进入 Running 和 Ready 状态，然后再更新其前身。
-
-<!--
-#### Partitions
-
-The `RollingUpdate` update strategy can be partitioned, by specifying a
-`.spec.updateStrategy.rollingUpdate.partition`. If a partition is specified, all Pods with an
-ordinal that is greater than or equal to the partition will be updated when the StatefulSet's
-`.spec.template` is updated. All Pods with an ordinal that is less than the partition will not
-be updated, and, even if they are deleted, they will be recreated at the previous version. If a
-StatefulSet's `.spec.updateStrategy.rollingUpdate.partition` is greater than its `.spec.replicas`,
-updates to its `.spec.template` will not be propagated to its Pods.
-In most cases you will not need to use a partition, but they are useful if you want to stage an
-update, roll out a canary, or perform a phased roll out.
--->
-#### 分区   {#partitions}
-
-通过声明 `.spec.updateStrategy.rollingUpdate.partition` 的方式，`RollingUpdate`
-更新策略可以实现分区。
-如果声明了一个分区，当 StatefulSet 的 `.spec.template` 被更新时，
-所有序号大于等于该分区序号的 Pod 都会被更新。
-所有序号小于该分区序号的 Pod 都不会被更新，并且，即使他们被删除也会依据之前的版本进行重建。
-如果 StatefulSet 的 `.spec.updateStrategy.rollingUpdate.partition` 大于它的
-`.spec.replicas`，对它的 `.spec.template` 的更新将不会传递到它的 Pod。
-在大多数情况下，你不需要使用分区，但如果你希望进行阶段更新、执行金丝雀或执行
-分阶段上线，则这些分区会非常有用。
-
-<!--
-#### Forced Rollback
-
-When using [Rolling Updates](#rolling-updates) with the default
-[Pod Management Policy](#pod-management-policies) (`OrderedReady`),
-it's possible to get into a broken state that requires manual intervention to repair.
-
-If you update the Pod template to a configuration that never becomes Running and
-Ready (for example, due to a bad binary or application-level configuration error),
-StatefulSet will stop the rollout and wait.
--->
-#### 强制回滚 {#forced-rollback}
-
-在默认 [Pod 管理策略](#pod-management-policies)(`OrderedReady`) 下使用
-[滚动更新](#rolling-updates) ，可能进入需要人工干预才能修复的损坏状态。
-
-如果更新后 Pod 模板配置进入无法运行或就绪的状态（例如，由于错误的二进制文件
-或应用程序级配置错误），StatefulSet 将停止回滚并等待。
-
-<!--
-In this state, it's not enough to revert the Pod template to a good configuration.
-Due to a [known issue](https://github.com/kubernetes/kubernetes/issues/67250),
-StatefulSet will continue to wait for the broken Pod to become Ready
-(which never happens) before it will attempt to revert it back to the working
-configuration.
-
-After reverting the template, you must also delete any Pods that StatefulSet had
-already attempted to run with the bad configuration.
-StatefulSet will then begin to recreate the Pods using the reverted template.
--->
-在这种状态下，仅将 Pod 模板还原为正确的配置是不够的。由于
-[已知问题](https://github.com/kubernetes/kubernetes/issues/67250)，StatefulSet
-将继续等待损坏状态的 Pod 准备就绪（永远不会发生），然后再尝试将其恢复为正常工作配置。
-
-恢复模板后，还必须删除 StatefulSet 尝试使用错误的配置来运行的 Pod。这样，
-StatefulSet 才会开始使用被还原的模板来重新创建 Pod。
-
-## {{% heading "whatsnext" %}}
-
-<!--
-* Follow an example of [deploying a stateful application](/docs/tutorials/stateful-application/basic-stateful-set/).
-* Follow an example of [deploying Cassandra with Stateful Sets](/docs/tutorials/stateful-application/cassandra/).
-* Follow an example of [running a replicated stateful application](/docs/tasks/run-application/run-replicated-stateful-application/).
--->
-* 示例一：[部署有状态应用](/zh/docs/tutorials/stateful-application/basic-stateful-set/)。
-* 示例二：[使用 StatefulSet 部署 Cassandra](/zh/docs/tutorials/stateful-application/cassandra/)。
-* 示例三：[运行多副本的有状态应用程序](/zh/docs/tasks/run-application/run-replicated-stateful-application/)。
diff --git a/content/zh/docs/concepts/workloads/controllers/ttlafterfinished.md b/content/zh/docs/concepts/workloads/controllers/ttlafterfinished.md
deleted file mode 100644
index 291b88e0d7..0000000000
--- a/content/zh/docs/concepts/workloads/controllers/ttlafterfinished.md
+++ /dev/null
@@ -1,143 +0,0 @@
----
-title: 已完成资源的 TTL 控制器
-content_type: concept
-weight: 70
----
-<!--
-title: TTL Controller for Finished Resources
-content_type: concept
-weight: 70
--->
-
-<!-- overview -->
-
-{{< feature-state for_k8s_version="v1.21" state="beta" >}}
-
-<!--
-The TTL controller provides a TTL mechanism to limit the lifetime of resource
-objects that have finished execution. TTL controller only handles
-{{< glossary_tooltip text="Jobs" term_id="job" >}} for now,
-and may be expanded to handle other resources that will finish execution,
-such as Pods and custom resources.
--->
-TTL 控制器提供了一种 TTL 机制来限制已完成执行的资源对象的生命周期。
-TTL 控制器目前只处理 {{< glossary_tooltip text="Job" term_id="job" >}}，
-可能以后会扩展以处理将完成执行的其他资源，例如 Pod 和自定义资源。
-
-<!--
-This feature is currently beta and enabled by default, and can be disabled via 
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
-`TTLAfterFinished` in both kube-apiserver and kube-controller-manager.
--->
-此功能目前是 Beta 版而自动启用，并且可以通过 `kube-apiserver` 和
-`kube-controller-manager` 上的
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
-`TTLAfterFinished` 禁用。
-
-<!-- body -->
-
-<!--
-## TTL Controller
-
-The TTL controller only supports Jobs for now. A cluster operator can use this feature to clean
-up finished Jobs (either `Complete` or `Failed`) automatically by specifying the
-`.spec.ttlSecondsAfterFinished` field of a Job, as in this
-[example](/docs/concepts/workloads/controllers/job/#clean-up-finished-jobs-automatically).
--->
-## TTL 控制器
-
-TTL 控制器现在只支持 Job。集群操作员可以通过指定 Job 的 `.spec.ttlSecondsAfterFinished`
-字段来自动清理已结束的作业（`Complete` 或 `Failed`），如
-[示例](/zh/docs/concepts/workloads/controllers/job/#clean-up-finished-jobs-automatically)
-所示。
-
-<!--
-The TTL controller will assume that a resource is eligible to be cleaned up
-TTL seconds after the resource has finished, in other words, when the TTL has expired. When the
-TTL controller cleans up a resource, it will delete it cascadingly, i.e. delete
-its dependent objects together with it. Note that when the resource is deleted,
-its lifecycle guarantees, such as finalizers, will be honored.
--->
-TTL 控制器假设资源能在执行完成后的 TTL 秒内被清理，也就是当 TTL 过期后。
-当 TTL 控制器清理资源时，它将做级联删除操作，即删除资源对象的同时也删除其依赖对象。
-注意，当资源被删除时，由该资源的生命周期保证其终结器（Finalizers）等被执行。
-
-<!--
-The TTL seconds can be set at any time. Here are some examples for setting the
-`.spec.ttlSecondsAfterFinished` field of a Job:
--->
-可以随时设置 TTL 秒。以下是设置 Job 的 `.spec.ttlSecondsAfterFinished` 字段的一些示例：
-
-<!--
-* Specify this field in the resource manifest, so that a Job can be cleaned up
-  automatically some time after it finishes.
-* Set this field of existing, already finished resources, to adopt this new feature.
-* Use a
-  [mutating admission webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks)
-  to set this field dynamically at resource creation time. Cluster administrators can
-  use this to enforce a TTL policy for finished resources.
-* Use a
-  [mutating admission webhook](/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks)
-  to set this field dynamically after the resource has finished, and choose
-  different TTL values based on resource status, labels, etc.
--->
-* 在资源清单（manifest）中指定此字段，以便 Job 在完成后的某个时间被自动清除。
-* 将此字段设置为现有的、已完成的资源，以采用此新功能。
-* 在创建资源时使用 [mutating admission webhook](/zh/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks)
-  动态设置该字段。集群管理员可以使用它对完成的资源强制执行 TTL 策略。
-* 使用 [mutating admission webhook](/zh/docs/reference/access-authn-authz/extensible-admission-controllers/#admission-webhooks)
-  在资源完成后动态设置该字段，并根据资源状态、标签等选择不同的 TTL 值。
-
-<!--
-## Caveat
-
-### Updating TTL Seconds
-
-Note that the TTL period, e.g. `.spec.ttlSecondsAfterFinished` field of Jobs,
-can be modified after the resource is created or has finished. However, once the
-Job becomes eligible to be deleted (when the TTL has expired), the system won't
-guarantee that the Jobs will be kept, even if an update to extend the TTL
-returns a successful API response.
--->
-## 警告
-
-### 更新 TTL 秒
-
-请注意，在创建资源或已经执行结束后，仍可以修改其 TTL 周期，例如 Job 的
-`.spec.ttlSecondsAfterFinished` 字段。
-但是一旦 Job 变为可被删除状态（当其 TTL 已过期时），即使您通过 API 增加其 TTL
-时长得到了成功的响应，系统也不保证 Job 将被保留。
-
-<!--
-### Time Skew
-
-Because TTL controller uses timestamps stored in the Kubernetes resources to
-determine whether the TTL has expired or not, this feature is sensitive to time
-skew in the cluster, which may cause TTL controller to clean up resource objects
-at the wrong time.
--->
-### 时间偏差  {#time-skew}
-
-由于 TTL 控制器使用存储在 Kubernetes 资源中的时间戳来确定 TTL 是否已过期，
-因此该功能对集群中的时间偏差很敏感，这可能导致 TTL 控制器在错误的时间清理资源对象。
-
-<!--
-In Kubernetes, it's required to run NTP on all nodes
-(see [#6159](https://github.com/kubernetes/kubernetes/issues/6159#issuecomment-93844058))
-to avoid time skew. Clocks aren't always correct, but the difference should be
-very small. Please be aware of this risk when setting a non-zero TTL.
--->
-在 Kubernetes 中，需要在所有节点上运行 NTP（参见
-[#6159](https://github.com/kubernetes/kubernetes/issues/6159#issuecomment-93844058)）
-以避免时间偏差。时钟并不总是如此正确，但差异应该很小。
-设置非零 TTL 时请注意避免这种风险。
-
-## {{% heading "whatsnext" %}}
-
-<!--
-* [Clean up Jobs automatically](/docs/concepts/workloads/controllers/jobs-run-to-completion/#clean-up-finished-jobs-automatically)
-* [Design doc](https://github.com/kubernetes/enhancements/blob/master/keps/sig-apps/592-ttl-after-finish/README.md)
--->
-* [自动清理 Job](/zh/docs/concepts/workloads/controllers/job/#clean-up-finished-jobs-automatically)
-* [设计文档](https://github.com/kubernetes/enhancements/blob/master/keps/sig-apps/592-ttl-after-finish/README.md)
-
diff --git a/content/zh/docs/concepts/workloads/pods/pod-topology-spread-constraints.md b/content/zh/docs/concepts/workloads/pods/pod-topology-spread-constraints.md
deleted file mode 100644
index 06adbc26f3..0000000000
--- a/content/zh/docs/concepts/workloads/pods/pod-topology-spread-constraints.md
+++ /dev/null
@@ -1,648 +0,0 @@
----
-title: Pod 拓扑分布约束
-content_type: concept
-weight: 40
----
-
-<!--
-title: Pod Topology Spread Constraints
-content_type: concept
-weight: 40
--->
-
-{{< feature-state for_k8s_version="v1.19" state="stable" >}}
-<!--
-leave this shortcode in place until the note about EvenPodsSpread is obsolete
--->
-
-<!-- overview -->
-
-<!--
-You can use _topology spread constraints_ to control how {{< glossary_tooltip text="Pods" term_id="Pod" >}} are spread across your cluster among failure-domains such as regions, zones, nodes, and other user-defined topology domains. This can help to achieve high availability as well as efficient resource utilization.
--->
-你可以使用 _拓扑分布约束（Topology Spread Constraints）_ 来控制
-{{< glossary_tooltip text="Pods" term_id="Pod" >}} 在集群内故障域
-之间的分布，例如区域（Region）、可用区（Zone）、节点和其他用户自定义拓扑域。
-这样做有助于实现高可用并提升资源利用率。
-
-<!--
-{{< note >}}
-In versions of Kubernetes before v1.18, you must enable the `EvenPodsSpread`
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/) on
-the [API server](/docs/concepts/overview/components/#kube-apiserver) and the
-[scheduler](/docs/reference/generated/kube-scheduler/) in order to use Pod
-topology spread constraints.
-{{< /note >}}
--->
-
-{{< note >}}
-在 v1.18 之前的 Kubernetes 版本中，如果要使用 Pod 拓扑扩展约束，你必须在
-[API 服务器](/zh/docs/concepts/overview/components/#kube-apiserver)
-和[调度器](/zh/docs/reference/command-line-tools-reference/kube-scheduler/)
-中启用 `EvenPodsSpread` [特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)。
-{{< /note >}}
-
-<!-- body -->
-
-<!--
-## Prerequisites
-
-### Node Labels
--->
-## 先决条件   {#prerequisites}
-
-### 节点标签   {#node-labels}
-
-<!--
-Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in. For example, a Node might have labels: `node=node1,zone=us-east-1a,region=us-east-1`
--->
-拓扑分布约束依赖于节点标签来标识每个节点所在的拓扑域。
-例如，某节点可能具有标签：`node=node1,zone=us-east-1a,region=us-east-1`
-
-<!--
-Suppose you have a 4-node cluster with the following labels:
--->
-假设你拥有具有以下标签的一个 4 节点集群：
-
-```
-NAME    STATUS   ROLES    AGE     VERSION   LABELS
-node1   Ready    <none>   4m26s   v1.16.0   node=node1,zone=zoneA
-node2   Ready    <none>   3m58s   v1.16.0   node=node2,zone=zoneA
-node3   Ready    <none>   3m17s   v1.16.0   node=node3,zone=zoneB
-node4   Ready    <none>   2m43s   v1.16.0   node=node4,zone=zoneB
-```
-
-<!--
-Then the cluster is logically viewed as below:
--->
-然后从逻辑上看集群如下：
-
-{{<mermaid>}}
-graph TB
-    subgraph "zoneB"
-        n3(Node3)
-        n4(Node4)
-    end
-    subgraph "zoneA"
-        n1(Node1)
-        n2(Node2)
-    end
-
-    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-    class n1,n2,n3,n4 k8s;
-    class zoneA,zoneB cluster;
-{{< /mermaid >}}
-
-<!--
-
-Instead of manually applying labels, you can also reuse the [well-known labels](/docs/reference/labels-annotations-taints/) that are created and populated automatically on most clusters.
--->
-你可以复用在大多数集群上自动创建和填充的
-[常用标签](/zh/docs/reference/labels-annotations-taints/)，
-而不是手动添加标签。
-
-<!--
-## Spread Constraints for Pods
--->
-## Pod 的分布约束    {#spread-constraints-for-pods}
-
-### API
-
-<!--
-The API field `pod.spec.topologySpreadConstraints` is defined as below:
--->
-`pod.spec.topologySpreadConstraints` 字段定义如下所示：
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: mypod
-spec:
-  topologySpreadConstraints:
-    - maxSkew: <integer>
-      topologyKey: <string>
-      whenUnsatisfiable: <string>
-      labelSelector: <object>
-```
-
-<!--
-You can define one or multiple `topologySpreadConstraint` to instruct the kube-scheduler how to place each incoming Pod in relation to the existing Pods across your cluster. The fields are:
--->
-你可以定义一个或多个 `topologySpreadConstraint` 来指示 kube-scheduler
-如何根据与现有的 Pod 的关联关系将每个传入的 Pod 部署到集群中。字段包括：
-
-<!--
-- **maxSkew** describes the degree to which Pods may be unevenly distributed.
-  It's the maximum permitted difference between the number of matching Pods in
-  any two topology domains of a given topology type. It must be greater than
-  zero. Its semantics differs according to the value of `whenUnsatisfiable`:
-  - when `whenUnsatisfiable` equals to "DoNotSchedule", `maxSkew` is the maximum
-    permitted difference between the number of matching pods in the target
-    topology and the global minimum.
-  - when `whenUnsatisfiable` equals to "ScheduleAnyway", scheduler gives higher
-    precedence to topologies that would help reduce the skew.
-- **topologyKey** is the key of node labels. If two Nodes are labelled with this key and have identical values for that label, the scheduler treats both Nodes as being in the same topology. The scheduler tries to place a balanced number of Pods into each topology domain.
-- **whenUnsatisfiable** indicates how to deal with a Pod if it doesn't satisfy the spread constraint:
-    - `DoNotSchedule` (default) tells the scheduler not to schedule it.
-    - `ScheduleAnyway` tells the scheduler to still schedule it while prioritizing nodes that minimize the skew.
-- **labelSelector** is used to find matching Pods. Pods that match this label selector are counted to determine the number of Pods in their corresponding topology domain. See [Label Selectors](/docs/concepts/overview/working-with-objects/labels/#label-selectors) for more details.
--->
-
-- **maxSkew** 描述 Pod 分布不均的程度。这是给定拓扑类型中任意两个拓扑域中
-  匹配的 pod 之间的最大允许差值。它必须大于零。取决于 `whenUnsatisfiable` 的
-  取值，其语义会有不同。
-  - 当 `whenUnsatisfiable` 等于 "DoNotSchedule" 时，`maxSkew` 是目标拓扑域
-    中匹配的 Pod 数与全局最小值之间可存在的差异。
-  - 当 `whenUnsatisfiable` 等于 "ScheduleAnyway" 时，调度器会更为偏向能够降低
-    偏差值的拓扑域。
-- **topologyKey** 是节点标签的键。如果两个节点使用此键标记并且具有相同的标签值，
-  则调度器会将这两个节点视为处于同一拓扑域中。调度器试图在每个拓扑域中放置数量
-  均衡的 Pod。
-- **whenUnsatisfiable** 指示如果 Pod 不满足分布约束时如何处理：
-  - `DoNotSchedule`（默认）告诉调度器不要调度。
-  - `ScheduleAnyway` 告诉调度器仍然继续调度，只是根据如何能将偏差最小化来对
-    节点进行排序。
-- **labelSelector** 用于查找匹配的 pod。匹配此标签的 Pod 将被统计，以确定相应
-  拓扑域中 Pod 的数量。
-  有关详细信息，请参考[标签选择算符](/zh/docs/concepts/overview/working-with-objects/labels/#label-selectors)。
-
-<!--
-You can read more about this field by running `kubectl explain Pod.spec.topologySpreadConstraints`.
--->
-你可以执行 `kubectl explain Pod.spec.topologySpreadConstraints` 命令以
-了解关于 topologySpreadConstraints 的更多信息。
-
-<!--
-### Example: One TopologySpreadConstraint
-
-Suppose you have a 4-node cluster where 3 Pods labeled `foo:bar` are located in node1, node2 and node3 respectively:
--->
-### 例子：单个 TopologySpreadConstraint
-
-假设你拥有一个 4 节点集群，其中标记为 `foo:bar` 的 3 个 Pod 分别位于
-node1、node2 和 node3 中：
-
-{{<mermaid>}}
-graph BT
-    subgraph "zoneB"
-        p3(Pod) --> n3(Node3)
-        n4(Node4)
-    end
-    subgraph "zoneA"
-        p1(Pod) --> n1(Node1)
-        p2(Pod) --> n2(Node2)
-    end
-
-    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-    class n1,n2,n3,n4,p1,p2,p3 k8s;
-    class zoneA,zoneB cluster;
-{{< /mermaid >}}
-
-<!--
-If we want an incoming Pod to be evenly spread with existing Pods across zones, the spec can be given as:
--->
-如果希望新来的 Pod 均匀分布在现有的可用区域，则可以按如下设置其规约：
-
-{{< codenew file="pods/topology-spread-constraints/one-constraint.yaml" >}}
-
-<!--
-`topologyKey: zone` implies the even distribution will only be applied to the nodes which have label pair "zone:&lt;any value&gt;" present. `whenUnsatisfiable: DoNotSchedule` tells the scheduler to let it stay pending if the incoming Pod can’t satisfy the constraint.
--->
-`topologyKey: zone` 意味着均匀分布将只应用于存在标签键值对为
-"zone:&lt;any value&gt;" 的节点。
-`whenUnsatisfiable: DoNotSchedule` 告诉调度器如果新的 Pod 不满足约束，
-则让它保持悬决状态。
-
-<!--
-If the scheduler placed this incoming Pod into "zoneA", the Pods distribution would become [3, 1],
-hence the actual skew is 2 (3 - 1) - which violates `maxSkew: 1`. In this example, the incoming Pod can only be placed onto "zoneB":
--->
-如果调度器将新的 Pod 放入 "zoneA"，Pods 分布将变为 [3, 1]，因此实际的偏差
-为 2（3 - 1）。这违反了 `maxSkew: 1` 的约定。此示例中，新 Pod 只能放置在
-"zoneB" 上：
-
-{{<mermaid>}}
-graph BT
-    subgraph "zoneB"
-        p3(Pod) --> n3(Node3)
-        p4(mypod) --> n4(Node4)
-    end
-    subgraph "zoneA"
-        p1(Pod) --> n1(Node1)
-        p2(Pod) --> n2(Node2)
-    end
-
-    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-    class n1,n2,n3,n4,p1,p2,p3 k8s;
-    class p4 plain;
-    class zoneA,zoneB cluster;
-{{< /mermaid >}}
-
-或者
-
-{{<mermaid>}}
-graph BT
-    subgraph "zoneB"
-        p3(Pod) --> n3(Node3)
-        p4(mypod) --> n3
-        n4(Node4)
-    end
-    subgraph "zoneA"
-        p1(Pod) --> n1(Node1)
-        p2(Pod) --> n2(Node2)
-    end
-
-    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-    class n1,n2,n3,n4,p1,p2,p3 k8s;
-    class p4 plain;
-    class zoneA,zoneB cluster;
-{{< /mermaid >}}
-
-<!--
-You can tweak the Pod spec to meet various kinds of requirements:
--->
-你可以调整 Pod 规约以满足各种要求：
-
-<!--
-- Change `maxSkew` to a bigger value like "2" so that the incoming Pod can be placed onto "zoneA" as well.
-- Change `topologyKey` to "node" so as to distribute the Pods evenly across nodes instead of zones. In the above example, if `maxSkew` remains "1", the incoming Pod can only be placed onto "node4".
-- Change `whenUnsatisfiable: DoNotSchedule` to `whenUnsatisfiable: ScheduleAnyway` to ensure the incoming Pod to be always schedulable (suppose other scheduling APIs are satisfied). However, it’s preferred to be placed onto the topology domain which has fewer matching Pods. (Be aware that this preferability is jointly normalized with other internal scheduling priorities like resource usage ratio, etc.)
--->
-- 将 `maxSkew` 更改为更大的值，比如 "2"，这样新的 Pod 也可以放在 "zoneA" 上。
-- 将 `topologyKey` 更改为 "node"，以便将 Pod 均匀分布在节点上而不是区域中。
-  在上面的例子中，如果 `maxSkew` 保持为 "1"，那么传入的 Pod 只能放在 "node4" 上。
-- 将 `whenUnsatisfiable: DoNotSchedule` 更改为 `whenUnsatisfiable: ScheduleAnyway`，
-  以确保新的 Pod 始终可以被调度（假设满足其他的调度 API）。
-  但是，最好将其放置在匹配 Pod 数量较少的拓扑域中。
-  （请注意，这一优先判定会与其他内部调度优先级（如资源使用率等）排序准则一起进行标准化。）
-
-<!--
-### Example: Multiple TopologySpreadConstraints
--->
-### 例子：多个 TopologySpreadConstraints
-
-<!--
-This builds upon the previous example. Suppose you have a 4-node cluster where 3 Pods labeled `foo:bar` are located in node1, node2 and node3 respectively (`P` represents Pod):
--->
-下面的例子建立在前面例子的基础上。假设你拥有一个 4 节点集群，其中 3 个标记为 `foo:bar` 的
-Pod 分别位于 node1、node2 和 node3 上：
-
-{{<mermaid>}}
-graph BT
-    subgraph "zoneB"
-        p3(Pod) --> n3(Node3)
-        n4(Node4)
-    end
-    subgraph "zoneA"
-        p1(Pod) --> n1(Node1)
-        p2(Pod) --> n2(Node2)
-    end
-
-    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-    class n1,n2,n3,n4,p1,p2,p3 k8s;
-    class p4 plain;
-    class zoneA,zoneB cluster;
-{{< /mermaid >}}
-
-<!--
-You can use 2 TopologySpreadConstraints to control the Pods spreading on both zone and node:
--->
-可以使用 2 个 TopologySpreadConstraint 来控制 Pod 在 区域和节点两个维度上的分布：
-
-{{< codenew file="pods/topology-spread-constraints/two-constraints.yaml" >}}
-
-<!--
-In this case, to match the first constraint, the incoming Pod can only be placed onto "zoneB"; while in terms of the second constraint, the incoming Pod can only be placed onto "node4". Then the results of 2 constraints are ANDed, so the only viable option is to place on "node4".
--->
-在这种情况下，为了匹配第一个约束，新的 Pod 只能放置在 "zoneB" 中；而在第二个约束中，
-新的 Pod 只能放置在 "node4" 上。最后两个约束的结果加在一起，唯一可行的选择是放置
-在 "node4" 上。
-
-<!--
-Multiple constraints can lead to conflicts. Suppose you have a 3-node cluster across 2 zones:
--->
-多个约束之间可能存在冲突。假设有一个跨越 2 个区域的 3 节点集群：
-
-{{<mermaid>}}
-graph BT
-    subgraph "zoneB"
-        p4(Pod) --> n3(Node3)
-        p5(Pod) --> n3
-    end
-    subgraph "zoneA"
-        p1(Pod) --> n1(Node1)
-        p2(Pod) --> n1
-        p3(Pod) --> n2(Node2)
-    end
-
-    classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-    classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-    classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-    class n1,n2,n3,n4,p1,p2,p3,p4,p5 k8s;
-    class zoneA,zoneB cluster;
-{{< /mermaid >}}
-
-
-<!--
-If you apply "two-constraints.yaml" to this cluster, you will notice "mypod" stays in `Pending` state. This is because: to satisfy the first constraint, "mypod" can only be put to "zoneB"; while in terms of the second constraint, "mypod" can only put to "node2". Then a joint result of "zoneB" and "node2" returns nothing.
--->
-如果对集群应用 "two-constraints.yaml"，会发现 "mypod" 处于 `Pending` 状态。
-这是因为：为了满足第一个约束，"mypod" 只能放在 "zoneB" 中，而第二个约束要求
-"mypod" 只能放在 "node2" 上。Pod 调度无法满足两种约束。
-
-<!--
-To overcome this situation, you can either increase the `maxSkew` or modify one of the constraints to use `whenUnsatisfiable: ScheduleAnyway`.
--->
-为了克服这种情况，你可以增加 `maxSkew` 或修改其中一个约束，让其使用
-`whenUnsatisfiable: ScheduleAnyway`。
-
-<!--
-### Conventions
-
-There are some implicit conventions worth noting here:
--->
-### 约定   {#conventions}
-
-这里有一些值得注意的隐式约定：
-
-<!--
-- Only the Pods holding the same namespace as the incoming Pod can be matching candidates.
-
-- Nodes without `topologySpreadConstraints[*].topologyKey` present will be bypassed. It implies that:
-
-    1. the Pods located on those nodes do not impact `maxSkew` calculation - in the above example, suppose "node1" does not have label "zone", then the 2 Pods will be disregarded, hence the incomingPod will be scheduled into "zoneA".
-
-    2. the incoming Pod has no chances to be scheduled onto this kind of nodes - in the above example, suppose a "node5" carrying label `{zone-typo: zoneC}` joins the cluster, it will be bypassed due to the absence of label key "zone".
--->
-- 只有与新的 Pod 具有相同命名空间的 Pod 才能作为匹配候选者。
-- 没有 `topologySpreadConstraints[*].topologyKey` 的节点将被忽略。这意味着：
-  1. 位于这些节点上的 Pod 不影响 `maxSkew` 的计算。
-     在上面的例子中，假设 "node1" 没有标签 "zone"，那么 2 个 Pod 将被忽略，
-     因此传入的 Pod 将被调度到 "zoneA" 中。
-
-  2. 新的 Pod 没有机会被调度到这类节点上。
-     在上面的例子中，假设一个带有标签 `{zone-typo: zoneC}` 的 "node5" 加入到集群，
-     它将由于没有标签键 "zone" 而被忽略。
-
-<!--
-- Be aware of what will happen if the incomingPod’s `topologySpreadConstraints[*].labelSelector` doesn’t match its own labels. In the above example, if we remove the incoming Pod’s labels, it can still be placed onto "zoneB" since the constraints are still satisfied. However, after the placement, the degree of imbalance of the cluster remains unchanged - it’s still zoneA having 2 Pods which hold label {foo:bar}, and zoneB having 1 Pod which holds label {foo:bar}. So if this is not what you expect, we recommend the workload’s `topologySpreadConstraints[*].labelSelector` to match its own labels.
--->
-- 注意，如果新 Pod 的 `topologySpreadConstraints[*].labelSelector` 与自身的
-  标签不匹配，将会发生什么。
-  在上面的例子中，如果移除新 Pod 上的标签，Pod 仍然可以调度到 "zoneB"，因为约束仍然满足。
-  然而，在调度之后，集群的不平衡程度保持不变。zoneA 仍然有 2 个带有 {foo:bar} 标签的 Pod，
-  zoneB 有 1 个带有 {foo:bar} 标签的 Pod。
-  因此，如果这不是你所期望的，建议工作负载的 `topologySpreadConstraints[*].labelSelector`
-  与其自身的标签匹配。
-
-<!--
-- If the incoming Pod has `spec.nodeSelector` or `spec.affinity.nodeAffinity` defined, nodes not matching them will be bypassed.
-    Suppose you have a 5-node cluster ranging from zoneA to zoneC:
--->
-- 如果新 Pod 定义了 `spec.nodeSelector` 或 `spec.affinity.nodeAffinity`，则
-  不匹配的节点会被忽略。
-
-  假设你有一个跨越 zoneA 到 zoneC 的 5 节点集群：
-
-  {{<mermaid>}}
-  graph BT
-      subgraph "zoneB"
-          p3(Pod) --> n3(Node3)
-          n4(Node4)
-      end
-      subgraph "zoneA"
-          p1(Pod) --> n1(Node1)
-          p2(Pod) --> n2(Node2)
-      end
-
-  classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-  classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-  classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-  class n1,n2,n3,n4,p1,p2,p3 k8s;
-  class p4 plain;
-  class zoneA,zoneB cluster;
-  {{< /mermaid >}}
-
-  {{<mermaid>}}
-  graph BT
-      subgraph "zoneC"
-          n5(Node5)
-      end
-
-  classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-  classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-  classDef cluster fill:#fff,stroke:#bbb,stroke-width:2px,color:#326ce5;
-  class n5 k8s;
-  class zoneC cluster;
-  {{< /mermaid >}}
-
-  <!--
-  and you know that "zoneC" must be excluded. In this case, you can compose the yaml as below, so that "mypod" will be placed onto "zoneB" instead of "zoneC". Similarly `spec.nodeSelector` is also respected.
-  -->
-  而且你知道 "zoneC" 必须被排除在外。在这种情况下，可以按如下方式编写 yaml，
-  以便将 "mypod" 放置在 "zoneB" 上，而不是 "zoneC" 上。同样，`spec.nodeSelector`
-  也要一样处理。
-
-  {{< codenew file="pods/topology-spread-constraints/one-constraint-with-nodeaffinity.yaml" >}}
-
-<!--
-### Cluster-level default constraints
-
-It is possible to set default topology spread constraints for a cluster. Default
-topology spread constraints are applied to a Pod if, and only if:
-
-- It doesn't define any constraints in its `.spec.topologySpreadConstraints`.
-- It belongs to a service, replication controller, replica set or stateful set.
--->
-### 集群级别的默认约束   {#cluster-level-default-constraints}
-
-为集群设置默认的拓扑分布约束也是可能的。默认拓扑分布约束在且仅在以下条件满足
-时才会应用到 Pod 上：
-
-- Pod 没有在其 `.spec.topologySpreadConstraints` 设置任何约束；
-- Pod 隶属于某个服务、副本控制器、ReplicaSet 或 StatefulSet。
-
-<!--
-Default constraints can be set as part of the `PodTopologySpread` plugin args
-in a [scheduling profile](/docs/reference/scheduling/config/#profiles).
-The constraints are specified with the same [API above](#api), except that
-`labelSelector` must be empty. The selectors are calculated from the services,
-replication controllers, replica sets or stateful sets that the Pod belongs to.
-
-An example configuration might look like follows:
--->
-你可以在 [调度方案（Scheduling Profile）](/zh/docs/reference/scheduling/config/#profiles)
-中将默认约束作为 `PodTopologySpread` 插件参数的一部分来设置。
-约束的设置采用[如前所述的 API](#api)，只是 `labelSelector` 必须为空。
-选择算符是根据 Pod 所属的服务、副本控制器、ReplicaSet 或 StatefulSet 来设置的。
-
-配置的示例可能看起来像下面这个样子：
-
-```yaml
-apiVersion: kubescheduler.config.k8s.io/v1beta1
-kind: KubeSchedulerConfiguration
-
-profiles:
-  - pluginConfig:
-      - name: PodTopologySpread
-        args:
-          defaultConstraints:
-            - maxSkew: 1
-              topologyKey: topology.kubernetes.io/zone
-              whenUnsatisfiable: ScheduleAnyway
-          defaultingType: List
-```
-
-{{< note >}}
-<!--
-The score produced by default scheduling constraints might conflict with the
-score produced by the
-[`SelectorSpread` plugin](/docs/reference/scheduling/config/#scheduling-plugins).
-It is recommended that you disable this plugin in the scheduling profile when
-using default constraints for `PodTopologySpread`.
--->
-默认调度约束所生成的评分可能与
-[`SelectorSpread` 插件](/zh/docs/reference/scheduling/config/#scheduling-plugins).
-所生成的评分有冲突。
-建议你在为 `PodTopologySpread` 设置默认约束是禁用调度方案中的该插件。
-{{< /note >}}
-
-<!--
-#### Internal default constraints
--->
-#### 内部默认约束    {#internal-default-constraints}
-
-{{< feature-state for_k8s_version="v1.20" state="beta" >}}
-
-<!--
-With the `DefaultPodTopologySpread` feature gate, enabled by default, the
-legacy `SelectorSpread` plugin is disabled.
-kube-scheduler uses the following default topology constraints for the
-`PodTopologySpread` plugin configuration:
--->
-当你使用了默认启用的 `DefaultPodTopologySpread` 特性门控时，原来的
-`SelectorSpread` 插件会被禁用。
-kube-scheduler 会使用下面的默认拓扑约束作为 `PodTopologySpread` 插件的
-配置：
-
-```yaml
-defaultConstraints:
-  - maxSkew: 3
-    topologyKey: "kubernetes.io/hostname"
-    whenUnsatisfiable: ScheduleAnyway
-  - maxSkew: 5
-    topologyKey: "topology.kubernetes.io/zone"
-    whenUnsatisfiable: ScheduleAnyway
-```
-
-<!--
-Also, the legacy `SelectorSpread` plugin, which provides an equivalent behavior,
-is disabled.
--->
-此外，原来用于提供等同行为的 `SelectorSpread` 插件也会被禁用。
-
-<!--
-If your nodes are not expected to have **both** `kubernetes.io/hostname` and
-`topology.kubernetes.io/zone` labels set, define your own constraints
-instead of using the Kubernetes defaults.
-
-The `PodTopologySpread` plugin does not score the nodes that don't have
-the topology keys specified in the spreading constraints.
--->
-{{< note >}}
-如果你的节点不会 **同时** 设置 `kubernetes.io/hostname` 和
-`topology.kubernetes.io/zone` 标签，你应该定义自己的约束而不是使用
-Kubernetes 的默认约束。
-
-插件 `PodTopologySpread` 不会为未设置分布约束中所给拓扑键的节点评分。
-{{< /note >}}
-
-<!--
-If you don't want to use the default Pod spreading constraints for your cluster,
-you can disable those defaults by setting `defaultingType` to `List` and leaving
-empty `defaultConstraints` in the `PodTopologySpread` plugin configuration:
--->
-如果你不想为集群使用默认的 Pod 分布约束，你可以通过设置 `defaultingType` 参数为 `List` 和
-将 `PodTopologySpread` 插件配置中的 `defaultConstraints` 参数置空来禁用默认 Pod 分布约束。
-
-```yaml
-apiVersion: kubescheduler.config.k8s.io/v1beta1
-kind: KubeSchedulerConfiguration
-
-profiles:
-  - pluginConfig:
-      - name: PodTopologySpread
-        args:
-          defaultConstraints: []
-          defaultingType: List
-```
-
-<!--
-## Comparison with PodAffinity/PodAntiAffinity
-
-In Kubernetes, directives related to "Affinity" control how Pods are
-scheduled - more packed or more scattered.
--->
-## 与 PodAffinity/PodAntiAffinity 相比较
-
-在 Kubernetes 中，与“亲和性”相关的指令控制 Pod 的调度方式（更密集或更分散）。
-
-<!--
-- For `PodAffinity`, you can try to pack any number of Pods into qualifying
-topology domain(s)
-- For `PodAntiAffinity`, only one Pod can be scheduled into a
-single topology domain.
--->
-- 对于 `PodAffinity`，你可以尝试将任意数量的 Pod 集中到符合条件的拓扑域中。
-- 对于 `PodAntiAffinity`，只能将一个 Pod 调度到某个拓扑域中。
-
-<!--
-For finer control, you can specify topology spread constraints to distribute
-Pods across different topology domains - to achieve either high availability or
-cost-saving. This can also help on rolling update workloads and scaling out
-replicas smoothly. See
-[Motivation](https://github.com/kubernetes/enhancements/tree/master/keps/sig-scheduling/895-pod-topology-spread#motivation)
-for more details.
-
-
-The "EvenPodsSpread" feature provides flexible options to distribute Pods evenly across different
-topology domains - to achieve high availability or cost-saving. This can also help on rolling update
-workloads and scaling out replicas smoothly.
-See [Motivation](https://github.com/kubernetes/enhancements/blob/master/keps/sig-scheduling/20190221-pod-topology-spread.md#motivation) for more details.
--->
-要实现更细粒度的控制，你可以设置拓扑分布约束来将 Pod 分布到不同的拓扑域下，
-从而实现高可用性或节省成本。这也有助于工作负载的滚动更新和平稳地扩展副本规模。
-有关详细信息，请参考
-[动机](https://github.com/kubernetes/enhancements/blob/master/keps/sig-scheduling/20190221-pod-topology-spread.md#motivation)文档。
-
-<!--
-## Known Limitations
-
-- Scaling down a Deployment may result in imbalanced Pods distribution.
-- Pods matched on tainted nodes are respected. See [Issue 80921](https://github.com/kubernetes/kubernetes/issues/80921)
--->
-## 已知局限性
-
-- Deployment 缩容操作可能导致 Pod 分布不平衡。
-- 具有污点的节点上的 Pods 也会被统计。
-  参考 [Issue 80921](https://github.com/kubernetes/kubernetes/issues/80921)。
-
-## {{% heading "whatsnext" %}}
-
-<!--
-- [Blog: Introducing PodTopologySpread](https://kubernetes.io/blog/2020/05/introducing-podtopologyspread/)
-  explains `maxSkew` in details, as well as bringing up some advanced usage examples.
--->
-- [博客: PodTopologySpread介绍](https://kubernetes.io/blog/2020/05/introducing-podtopologyspread/)
-  详细解释了 `maxSkew`，并给出了一些高级的使用示例。
diff --git a/content/zh/docs/contribute/_index.md b/content/zh/docs/contribute/_index.md
deleted file mode 100644
index 90615038e7..0000000000
--- a/content/zh/docs/contribute/_index.md
+++ /dev/null
@@ -1,206 +0,0 @@
----
-content_type: concept
-title: 为 Kubernetes 文档出一份力
-linktitle: 贡献
-main_menu: true
-no_list: true
-weight: 80
-card:
-  name: contribute
-  weight: 10
-  title: 开始贡献
----
-<!--
----
-content_type: concept
-title: Contribute to Kubernetes docs
-linktitle: Contribute
-main_menu: true
-no_list: true
-weight: 80
-card:
-  name: contribute
-  weight: 10
-  title: Start contributing
----
--->
-
-<!-- overview -->
-
-<!--
-*Kubernetes welcomes improvements from all contributors, new and experienced!*
--->
-*Kubernetes 欢迎来自所有贡献者的改进，无论你是新人和有经验的贡献者！*
-
-<!--
-{{< note >}}
-To learn more about contributing to Kubernetes in general, see the
-[contributor documentation](https://www.kubernetes.dev/docs/).
-{{< /note >}}
--->
-{{< note >}}
-要了解有关为 Kubernetes 做出贡献的更多信息，请参阅
-[贡献者文档](https://www.kubernetes.dev/docs/).
-{{< /note >}}
-<!--
-This website is maintained by [Kubernetes SIG Docs](/docs/contribute/#get-involved-with-sig-docs).
-
-Kubernetes documentation contributors:
-
-- Improve existing content
-- Create new content
-- Translate the documentation
-- Manage and publish the documentation parts of the Kubernetes release cycle
-
-Kubernetes documentation welcomes improvements from all contributors, new and experienced!
--->
-
-本网站由 [Kubernetes SIG（特别兴趣小组） Docs](/zh/docs/contribute/#get-involved-with-SIG-Docs) 维护。
-
-Kubernetes 文档项目的贡献者:
-
-- 改进现有内容
-- 创建新内容
-- 翻译文档
-- 管理并发布 Kubernetes 周期性发行版的文档
-
-Kubernetes 文档欢迎来自各方贡献者的改进，无论新手还是高手！
-
-<!-- body -->
-
-<!-- 
-## Getting started
-
-Anyone can open an issue about documentation, or contribute a change with a
-pull request (PR) to the
-[`kubernetes/website` GitHub repository](https://github.com/kubernetes/website).
-You need to be comfortable with
-[git](https://git-scm.com/) and
-[GitHub](https://lab.github.com/)
-to work effectively in the Kubernetes community.
-
--->
-## 入门 {#getting-started}
-
-任何人都可以提出文档方面的问题（issue），或贡献一个变更，用拉取请求（PR）的方式提交到
-[GitHub 上的 `kubernetes/website` 仓库](https://github.com/kubernetes/website)。
-当然你需要熟练使用 [git](https://git-scm.com/) 和 [GitHub](https://lab.github.com/) 才能在 Kubernetes 社区中有效工作。
-<!-- 
-To get involved with documentation:
-
-1. Sign the CNCF [Contributor License Agreement](https://github.com/kubernetes/community/blob/master/CLA.md).
-1. Familiarize yourself with the [documentation repository](https://github.com/kubernetes/website)
-   and the website's [static site generator](https://gohugo.io).
-1. Make sure you understand the basic processes for
-   [opening a pull request](/docs/contribute/new-content/open-a-pr/) and
-   [reviewing changes](/docs/contribute/review/reviewing-prs/).
-
-Some tasks require more trust and more access in the Kubernetes organization.
-See [Participating in SIG Docs](/docs/contribute/participate/) for more details about
-roles and permissions.
--->
-如何参与文档编制:
-
-1. 签署 CNCF 的[贡献者许可协议](https://github.com/kubernetes/community/blob/master/CLA.md)。
-2. 熟悉[文档仓库](https://github.com/kubernetes/website)
-   和网站的[静态站点生成器](https://gohugo.io)。
-3. 确保理解
-   [发起 PR](/zh/docs/contribute/new-content/open-a-pr/) 和
-   [审查变更](/zh/docs/contribute/review/reviewing-prs/)的基本流程。
-
-有些任务要求 Kubernetes 组织内更高的信任级别和访问权限。
-阅读[参与 SIG Docs 工作](/zh/docs/contribute/participate/) ，获取角色和权限的更多细节。
-
-<!--
-## Your first contribution
-
-- Read the [Contribution overview](/docs/contribute/new-content/overview/) to
-  learn about the different ways you can contribute.
-- Check [`kubernetes/website` issues list](https://github.com/kubernetes/website/issues/)
-  for issues that make good entry points.
-- [Open a pull request using GitHub](/docs/contribute/new-content/open-a-pr/#changes-using-github)
-  to existing documentation and learn more about filing issues in GitHub.
-- [Review pull requests](/docs/contribute/review/reviewing-prs/) from other
-  Kubernetes community members for accuracy and language.
-- Read the Kubernetes [content](/docs/contribute/style/content-guide/) and
-  [style guides](/docs/contribute/style/style-guide/) so you can leave informed comments.
-- Learn about [page content types](/docs/contribute/style/page-content-types/)
-  and [Hugo shortcodes](/docs/contribute/style/hugo-shortcodes/).
--->
-## 第一次贡献 {#your-first-contribution}
-
-- 通读[贡献概述](/zh/docs/contribute/new-content/overview/)，了解参与贡献的不同方式。
-- 查看[`kubernetes/website` 问题列表](https://github.com/kubernetes/website/issues/)
-  ，检索最适合作为切入点的问题。
-- 在现有文档上，
-  [使用 GitHub 提交 PR ](/zh/docs/contribute/new-content/open-a-pr/#changes-using-github)，
-  掌握在 GitHub 上登记 Issue 的方法。
-- Kubernetes 社区其他成员会[评审 PR ](/zh/docs/contribute/review/reviewing-prs/)，
-  以确保文档精准和语言流畅。
-- 阅读 kubernetes 的[内容指南](/zh/docs/contribute/style/content-guide/)和
-  [风格指南](/zh/docs/contribute/style/style-guide/)，以发表有见地的评论。
-- 了解[页面内容类型](/zh/docs/contribute/style/page-content-types/)和 
-  [Hugo 短代码](/zh/docs/contribute/style/hugo-shortcodes/)。
-
-<!--
-## Next steps
-
-- Learn to [work from a local clone](/docs/contribute/new-content/open-a-pr/#fork-the-repo)
-  of the repository.
-- Document [features in a release](/docs/contribute/new-content/new-features/).
-- Participate in [SIG Docs](/docs/contribute/participate/), and become a
-  [member or reviewer](/docs/contribute/participate/roles-and-responsibilities/).
-  
-- Start or help with a [localization](/docs/contribute/localization/).
--->
-## 下一步 {#next-teps}
-
-- 学习在仓库的[本地克隆中工作](/zh/docs/contribute/new-content/open-a-pr/#fork-the-repo)。
-- 为[发行版的特性](/zh/docs/contribute/new-content/new-features/)编写文档。
-- 加入 [SIG Docs](/zh/docs/contribute/participate/), 并成为[成员或评审者](/zh/docs/contribute/participate/roles-and-responsibilities/)。
-  
-- 开始或帮助[本地化](/zh/docs/contribute/localization/) 工作。
-
-<!--
-## Get involved with SIG Docs
-
-[SIG Docs](/docs/contribute/participate/) is the group of contributors who
-publish and maintain Kubernetes documentation and the website. Getting
-involved with SIG Docs is a great way for Kubernetes contributors (feature
-development or otherwise) to have a large impact on the Kubernetes project.
-
-SIG Docs communicates with different methods:
-
-- [Join `#sig-docs` on the Kubernetes Slack instance](https://slack.k8s.io/). Make sure to
-  introduce yourself!
-- [Join the `kubernetes-sig-docs` mailing list](https://groups.google.com/forum/#!forum/kubernetes-sig-docs),
-  where broader discussions take place and official decisions are recorded.
-- Join the [weekly SIG Docs video meeting](https://github.com/kubernetes/community/tree/master/sig-docs). Meetings are always announced on `#sig-docs` and added to the [Kubernetes community meetings calendar](https://calendar.google.com/calendar/embed?src=cgnt364vd8s86hr2phapfjc6uk%40group.calendar.google.com&ctz=America/Los_Angeles). You'll need to download the [Zoom client](https://zoom.us/download) or dial in using a phone.
--->
-## 参与 SIG Docs 工作 {#get-involved-with-SIG-Docs}
-
-[SIG Docs](/zh/docs/contribute/participate/) 是负责发布、维护 Kubernetes 文档的贡献者团体。
-参与 SIG Docs 是 Kubernetes 贡献者（开发者和其他人员）对 Kubernetes 项目产生重大影响力的好方式。
-
-SIG Docs 的几种沟通方式:
-
-- [加入 Kubernetes 在 Slack 上的`#sig-docs` 频道](https://slack.k8s.io/)。
-  一定记得自我介绍!
-- [加入`kubernetes-sig-docs` 邮件列表](https://groups.google.com/forum/#!forum/kubernetes-sig-docs),
-  这里有更广泛的讨论，和官方决策的记录。
-- 参加 [SIG Docs 的每周视频会议](https://github.com/kubernetes/community/tree/master/sig-docs)。会议总是在 `#sig-docs` 上发出公告，同时添加到 
-  [Kubernetes社区会议日历](https://calendar.google.com/calendar/embed?src=cgnt364vd8s86hr2phapfjc6uk%40group.calendar.google.com&ctz=America/Los_Angeles)。
-  你需要下载 [Zoom 客户端软件](https://zoom.us/download)，或电话拨号接入。
-
-<!--
-## Other ways to contribute
-
-- Visit the [Kubernetes community site](/community/). Participate on Twitter or Stack Overflow, learn about local Kubernetes meetups and events, and more.
-- Read the [contributor cheatsheet](https://github.com/kubernetes/community/tree/master/contributors/guide/contributor-cheatsheet) to get involved with Kubernetes feature development.
-- Submit a [blog post or case study](/docs/contribute/new-content/blogs-case-studies/).
--->
-## 其他贡献方式 {#other-ways-to-contribute}
-
-- 访问 [Kubernetes 社区网站](/zh/community/)。 参与 Twitter 或 Stack Overflow, 了解 Kubernetes 当地的聚会和活动, 等等。
-- 阅读[贡献者备忘单](https://github.com/kubernetes/community/tree/master/contributors/guide/contributor-cheatsheet)，参与 Kubernetes 功能开发。
-- 提交一篇[博客文章或案例研究](/zh/docs/contribute/new-content/blogs-case-studies/)。
diff --git a/content/zh/docs/contribute/new-content/_index.md b/content/zh/docs/contribute/new-content/_index.md
deleted file mode 100644
index e498891fa9..0000000000
--- a/content/zh/docs/contribute/new-content/_index.md
+++ /dev/null
@@ -1,4 +0,0 @@
----
-title: 贡献新内容
-weight: 20
----
diff --git a/content/zh/docs/contribute/new-content/open-a-pr.md b/content/zh/docs/contribute/new-content/open-a-pr.md
deleted file mode 100644
index 7d2919b713..0000000000
--- a/content/zh/docs/contribute/new-content/open-a-pr.md
+++ /dev/null
@@ -1,882 +0,0 @@
----
-title: 发起拉取请求（PR）
-content_type: concept
-weight: 10
-card:
-  name: contribute
-  weight: 40
----
-<!--
-title: Opening a pull request
-content_type: concept
-weight: 10
-card:
-  name: contribute
-  weight: 40
--->
-
-<!-- overview -->
-<!--
-{{< note >}}
-**Code developers**: If you are documenting a new feature for an
-upcoming Kubernetes release, see
-[Document a new feature](/docs/contribute/new-content/new-features/).
-{{< /note >}}
-
-To contribute new content pages or improve existing content pages, open a pull request (PR). Make sure you follow all the requirements in the [Before you begin](/docs/contribute/new-content/overview/#before-you-begin) section.
--->
-{{< note >}}
-**代码开发者们**：如果你在为下一个 Kubernetes 发行版本中的某功能特性
-撰写文档，请参考[为新功能撰写文档](/zh/docs/contribute/new-content/new-features/)。
-{{< /note >}}
-
-要贡献新的内容页面或者改进已有内容页面，请发起拉取请求（PR）。
-请确保你满足了[开始之前](/zh/docs/contribute/new-content/overview/#before-you-begin)
-节中所列举的所有要求。
-
-<!--
-If your change is small, or you're unfamiliar with git, read [Changes using
-GitHub](#changes-using-github) to learn how to edit a page.
-
-If your changes are large, read [Work from a local fork](#fork-the-repo) to
-learn how to make changes locally on your computer.
--->
-如果你所提交的变更足够小，或者你对 git 工具不熟悉，可以阅读
-[使用 GitHub 提交变更](#changes-using-github)以了解如何编辑页面。
-
-如果所提交的变更较大，请阅读[基于本地克隆副本开展工作](#fork-the-repo)以学习
-如何在你本地计算机上构造变更。
-
-<!-- body -->
-
-<!--
-## Changes using GitHub
-
-If you're less experienced with git workflows, here's an easier method of
-opening a pull request.
-
-1.  On the page where you see the issue, select the pencil icon at the top right.
-    You can also scroll to the bottom of the page and select **Edit this page**.
-2.  Make your changes in the GitHub markdown editor.
-3.  Below the editor, fill in the **Propose file change**
-    form. In the first field, give your commit message a title. In
-    the second field, provide a description.
--->
-## 使用 GitHub 提交变更 {#changes-using-github}
-
-如果你在 git 工作流方面欠缺经验，这里有一种发起拉取请求的更为简单的方法。
-
-1. 在你发现问题的网页，选择右上角的铅笔图标。你也可以滚动到页面底端，选择
-   **编辑此页面**。
-2. 在 GitHub 的 Markdown 编辑器中修改内容。
-3. 在编辑器的下方，填写 **建议文件变更** 表单。
-   在第一个字段中，为你的提交消息取一个标题。
-   在第二个字段中，为你的提交写一些描述文字。
-
-   {{< note >}}
-   不要在提交消息中使用 [GitHub 关键词](https://help.github.com/en/github/managing-your-work-on-github/linking-a-pull-request-to-an-issue#linking-a-pull-request-to-an-issue-using-a-keyword)
-   你可以在后续的 PR 描述中使用这些关键词。
-   {{< /note >}}
-<!--
-4.  Select **Propose file change**.
-
-5.  Select **Create pull request**.
-
-6.  The **Open a pull request** screen appears. Fill in the form:
-
-    - The **Subject** field of the pull request defaults to the commit summary.
-    You can change it if needed.
-    - The **Body** contains your extended commit message, if you have one,
-    and some template text. Add the
-    details the template text asks for, then delete the extra template text.
-    - Leave the **Allow edits from maintainers** checkbox selected.
--->
-4. 选择 **Propose File Change**.
-5. 选择 **Create pull request**.
-6. 在 **Open a pull request** 屏幕上填写表单：
-
-    - **Subject** 字段默认为提交的概要信息。你可以根据需要修改它。
-    - **Body** 字段包含更为详细的提交消息，如果你之前有填写过的话，以及一些模板文字。
-      填写模板所要求的详细信息，之后删除多余的模板文字。
-    - 确保 **Allow edits from maintainers** 复选框被勾选。
-
-   <!--
-   PR descriptions are a great way to help reviewers understand your change. For
-   more information, see [Opening a PR](#open-a-pr).
-   -->
-   {{< note >}}
-   PR 描述信息是帮助 PR 评阅人了解你所提议的变更的重要途径。
-   更多信息请参考[发起一个 PR](#open-a-pr).
-   {{< /note >}}
-
-<!-- 7.  Select **Create pull request**.  -->
-7. 选择 **Create pull request**.
-
-<!--
-### Addressing feedback in GitHub
-
-Before merging a pull request, Kubernetes community members review and
-approve it. The `k8s-ci-robot` suggests reviewers based on the nearest
-owner mentioned in the pages. If you have someone specific in mind,
-leave a comment with their GitHub username in it.
--->
-### 在 GitHub 上处理反馈意见
-
-在合并 PR 之前，Kubernetes 社区成员会评阅并批准它。
-`k8s-ci-robot` 会基于页面中最近提及的属主来建议评阅人（reviewers）。
-如果你希望特定某人来评阅，可以留下评论，提及该用户的 GitHub 用户名。
-
-<!--
-If a reviewer asks you to make changes:
-
-1. Go to the **Files changed** tab.
-2. Select the pencil (edit) icon on any files changed by the
-pull request.
-3. Make the changes requested.
-4. Commit the changes.
-
-If you are waiting on a reviewer, reach out once every 7 days. You can also post a message in the `#sig-docs` Slack channel.
-
-When your review is complete, a reviewer merges your PR and your changes go live a few minutes later.
--->
-如果某个评阅人请你修改 PR：
-
-1. 前往 **Files changed** Tab 页面；
-1. 选择 PR 所修改的任何文件所对应的铅笔（edit）图标；
-1. 根据建议作出修改；
-1. 提交所作修改。
-
-如果你希望等待评阅人的反馈，可以每 7 天左右联系一次。
-你也可以在 `#sig-docs` Slack 频道发送消息。
-
-当评阅过程结束，某个评阅人会合并你的 PR。
-几分钟之后，你所做的变更就会上线了。
-
-<!--
-## Work from a local fork {#fork-the-repo}
-
-If you're more experienced with git, or if your changes are larger than a few lines,
-work from a local fork.
-
-Make sure you have [git](https://git-scm.com/book/en/v2/Getting-Started-Installing-Git) installed on your computer. You can also use a git UI application.
--->
-## 基于本地克隆副本开展工作 {#work-from-a-local-fork}
-
-如果你有 git 的使用经验，或者你要提议的修改不仅仅几行，请使用本地克隆副本
-来开展工作。
-
-首先要确保你在本地计算机上安装了 [git](https://git-scm.com/book/en/v2/Getting-Started-Installing-Git)。
-你也可以使用 git 的带用户界面的应用。
-
-<!--
-### Fork the kubernetes/website repository
-
-1. Navigate to the [`kubernetes/website`](https://github.com/kubernetes/website/) repository.
-2. Select **Fork**.
--->
-### 派生 kubernetes/website 仓库
-
-1. 前往 [`kubernetes/website`](https://github.com/kubernetes/website/) 仓库；
-2. 选择 **Fork**.
-
-<!--
-### Create a local clone and set the upstream
-
-3. In a terminal window, clone your fork:
--->
-### 创建一个本地克隆副本并指定 upstream 仓库
-
-3. 打开终端窗口，克隆你所派生的副本：
-
-    ```bash
-    git clone git@github.com/<github_username>/website
-    ```
-
-<!--
-4. Navigate to the new `website` directory. Set the `kubernetes/website` repository as the `upstream` remote:
--->
-4. 前往新的 `website` 目录，将 `kubernetes/website` 仓库设置为 `upstream`
-   远端：
-
-      ```bash
-      cd website
-      git remote add upstream https://github.com/kubernetes/website.git
-      ```
-
-<!--
-5. Confirm your `origin` and `upstream` repositories:
--->
-5. 确认你现在有两个仓库，`origin` 和 `upstream`：
-
-    ```bash
-    git remote -v
-    ```
-
-    <!-- Output is similar to: -->
-    输出类似于：
-
-    ```bash
-    origin	git@github.com:<github_username>/website.git (fetch)
-    origin	git@github.com:<github_username>/website.git (push)
-    upstream	https://github.com/kubernetes/website.git (fetch)
-    upstream	https://github.com/kubernetes/website.git (push)
-    ```
-<!--
-6. Fetch commits from your fork's `origin/master` and `kubernetes/website`'s `upstream/main`:
--->
-6. 从你的克隆副本取回 `origin/master` 分支，从 `kubernetes/website` 取回 `upstream/main`：
-
-    ```bash
-    git fetch origin
-    git fetch upstream
-    ```
-   <!--
-   This makes sure your local repository is up to date before you start making changes.
-   -->
-   这样可以确保你本地的仓库在开始工作前是最新的。
-
-   <!--
-    This workflow is different than the [Kubernetes Community GitHub Workflow](https://github.com/kubernetes/community/blob/master/contributors/guide/github-workflow.md). You do not need to merge your local copy of `main` with `upstream/main` before pushing updates to your fork.
-   -->
-    {{< note >}}
-    此工作流程与 [Kubernetes 社区 GitHub 工作流](https://github.com/kubernetes/community/blob/master/contributors/guide/github-workflow.md)有所不同。
-    在推送你的变更到你的远程派生副本库之前，你不需要将你本地的 `main` 与 `upstream/main` 合并。
-    {{< /note >}}
-
-<!--
-### Create a branch
-
-1. Decide which branch base to your work on:
-
-  - For improvements to existing content, use `upstream/main`.
-  - For new content about existing features, use `upstream/main`.
-  - For localized content, use the localization's conventions. For more information, see [localizing Kubernetes documentation](/docs/contribute/localization/).
-  - For new features in an upcoming Kubernetes release, use the feature branch. For more information, see [documenting for a release](/docs/contribute/new-content/new-features/).
-  - For long-running efforts that multiple SIG Docs contributors collaborate on,
-    like content reorganization, use a specific feature branch created for that
-    effort.
-
-    If you need help choosing a branch, ask in the `#sig-docs` Slack channel.
--->
-### 创建一个分支
-
-1. 决定你要基于哪个分支来开展工作：
-
-   - 针对已有内容的改进，请使用 `upstream/main`；
-   - 针对已有功能特性的新文档内容，请使用 `upstream/main`；
-   - 对于本地化内容，请基于本地化的约定。
-     可参考[对 Kubernetes 文档进行本地化](/zh/docs/contribute/localization/)了解详细信息。
-   - 对于在下一个 Kubernetes 版本中新功能特性的文档，使用独立的功能特性分支。
-     参考[为发行版本功能特性撰写文档](/zh/docs/contribute/new-content/new-features/)了解更多信息。
-   - 对于很多 SIG Docs 共同参与的，需较长时间才完成的任务，例如内容的重构，
-     请使用为该任务创建的特性分支。
-
-   如果你在选择分支上需要帮助，请在 `#sig-docs` Slack 频道提问。
-
-<!--
-2. Create a new branch based on the branch identified in step 1. This example assumes the base branch is `upstream/main`:
--->
-2. 基于第一步中选定的分支，创建新分支。
-   下面的例子假定基础分支是 `upstream/main`：
-
-    ```bash
-    git checkout -b <my_new_branch> upstream/main
-    ```
-<!--
-3.  Make your changes using a text editor.
--->
-3. 使用文本编辑器开始构造变更。
-
-<!--
-At any time, use the `git status` command to see what files you've changed.
--->
-在任何时候，都可以使用 `git status` 命令查看你所改变了的文件列表。
-
-<!--
-### Commit your changes
-
-When you are ready to submit a pull request, commit your changes.
--->
-### 提交你的变更
-
-当你准备好发起拉取请求（PR）时，提交你所做的变更。
-
-<!--
-1. In your local repository, check which files you need to commit:
-
-    ```bash
-    git status
-    ```
-
-    Output is similar to:
-
-    ```bash
-    On branch <my_new_branch>
-    Your branch is up to date with 'origin/<my_new_branch>'.
-
-    Changes not staged for commit:
-    (use "git add <file>..." to update what will be committed)
-    (use "git checkout -- <file>..." to discard changes in working directory)
-
-    modified:   content/en/docs/contribute/new-content/contributing-content.md
-
-    no changes added to commit (use "git add" and/or "git commit -a")
-    ```
--->
-1. 在你的本地仓库中，检查你要提交的文件：
-
-    ```bash
-    git status
-    ```
-
-    输出类似于：
-
-    ```bash
-    On branch <my_new_branch>
-    Your branch is up to date with 'origin/<my_new_branch>'.
-
-    Changes not staged for commit:
-    (use "git add <file>..." to update what will be committed)
-    (use "git checkout -- <file>..." to discard changes in working directory)
-
-    modified:   content/en/docs/contribute/new-content/contributing-content.md
-
-    no changes added to commit (use "git add" and/or "git commit -a")
-    ```
-
-<!--
-2. Add the files listed under **Changes not staged for commit** to the commit:
-
-    ```bash
-    git add <your_file_name>
-    ```
-
-    Repeat this for each file.
--->
-2. 将 **Changes not staged for commit** 下列举的文件添加到提交中：
-
-    ```bash
-    git add <your_file_name>
-    ```
-
-    针对每个文件重复此操作。
-<!--
-3.  After adding all the files, create a commit:
-
-    ```bash
-    git commit -m "Your commit message"
-    ```
-
-    {{< note >}}
-    Do not use any [GitHub Keywords](https://help.github.com/en/github/managing-your-work-on-github/linking-a-pull-request-to-an-issue#linking-a-pull-request-to-an-issue-using-a-keyword) in your commit message. You can add those to the pull request
-    description later.
-    {{< /note >}}
--->
-3. 添加完所有文件之后，创建一个提交（commit）：
-
-    ```bash
-    git commit -m "Your commit message"
-    ```
-
-    {{< note >}}
-    不要在提交消息中使用任何 [GitHub 关键字](https://help.github.com/en/github/managing-your-work-on-github/linking-a-pull-request-to-an-issue#linking-a-pull-request-to-an-issue-using-a-keyword)。
-    你可以在后面创建 PR 时使用这些关键字。
-    {{< /note >}}
-<!--
-4. Push your local branch and its new commit to your remote fork:
-
-    ```bash
-    git push origin <my_new_branch>
-    ```
--->
-4. 推送你本地分支及其中的新提交到你的远程派生副本库：
-
-    ```bash
-    git push origin <my_new_branch>
-    ```
-
-<!--
-### Preview your changes locally {#preview-locally}
-
-It's a good idea to preview your changes locally before pushing them or opening a pull request. A preview lets you catch build errors or markdown formatting problems.
-
-You can either build the website's container image or run Hugo locally. Building the container image is slower but displays [Hugo shortcodes](/docs/contribute/style/hugo-shortcodes/), which can be useful for debugging.
--->
-### 在本地预览你的变更 {#preview-locally}
-
-在推送变更或者发起 PR 之前在本地查看一下预览是个不错的注意。
-通过预览你可以发现构建错误或者 Markdown 格式问题。
-
-你可以构造网站的容器镜像或者在本地运行 Hugo。
-构造容器镜像的方式比较慢，不过能够显示 [Hugo 短代码（shortcodes）](/zh/docs/contribute/style/hugo-shortcodes/)，
-因此对于调试是很有用的。
-
-{{< tabs name="tab_with_hugo" >}}
-{{% tab name="在容器内执行 Hugo" %}}
-
-<!--
-The following commmand uses Docker as the default container engine.
-You can set up the `CONTAINER_ENGINE` to override this behavior.
--->
-{{< note >}}
-下面的命令中使用 Docker 作为默认的容器引擎。
-如果需要重载这一行为，可以设置 `CONTAINER_ENGINE`。
-{{< /note >}}
-
-<!--
-1.  Build the image locally:
--->
-1. 在本地构造镜像；
-
-      ```bash
-      # 使用 docker (默认)
-      make container-image
-
-      ### 或 ###
-
-      # 使用 podman
-      CONTAINER_ENGINE=podman make container-image
-      ```
-
-<!--
-2. After building the `kubernetes-hugo` image locally, build and serve the site:
--->
-2. 在本地构造了 `kubernetes-hugo` 镜像之后，可以构造并启动网站：
-
-      ```bash
-      # 使用 docker (默认)
-      make container-serve
-
-      ### 或 ###
-
-      # 使用 podman
-      CONTAINER_ENGINE=podman make container-serve
-      ```
-<!--
-3.  In a web browser, navigate to `https://localhost:1313`. Hugo watches the
-    changes and rebuilds the site as needed.
-4.  To stop the local Hugo instance, go back to the terminal and type `Ctrl+C`,
-    or close the terminal window.
--->
-3. 启动浏览器，浏览 `https://localhost:1313`。
-   Hugo 会监测文件的变更并根据需要重新构建网站。
-
-4. 要停止本地 Hugo 实例，可返回到终端并输入 `Ctrl+C`，或者关闭终端窗口。
-
-{{% /tab %}}
-{{% tab name="在命令行执行 Hugo" %}}
-
-<!--
-Alternately, install and use the `hugo` command on your computer:
--->
-另一种方式是，在你的本地计算机上安装并使用 `hugo` 命令：
-
-<!--
-1.  Install the [Hugo](https://gohugo.io/getting-started/installing/) version specified in [`website/netlify.toml`](https://raw.githubusercontent.com/kubernetes/website/main/netlify.toml).
-2.  In a terminal, go to your Kubernetes website repository and start the Hugo server:
--->
-1. 安装 [`website/netlify.toml`](https://raw.githubusercontent.com/kubernetes/website/main/netlify.toml)
-   文件中指定的 [Hugo](https://gohugo.io/getting-started/installing/) 版本。
-
-2. 启动一个终端窗口，进入 Kubernetes 网站仓库目录，启动 Hugo 服务器：
-
-      ```bash
-      cd <path_to_your_repo>/website
-      hugo server
-      ```
-<!--
-3.  In your browser’s address bar, enter `https://localhost:1313`.
-4.  To stop the local Hugo instance, go back to the terminal and type `Ctrl+C`,
-    or close the terminal window.
--->
-3. 在浏览器的地址栏输入： `https://localhost:1313`。
-4. 要停止本地 Hugo 实例，返回到终端窗口并输入 `Ctrl+C` 或者关闭终端窗口。
-{{% /tab %}}
-{{< /tabs >}}
-
-<!--
-### Open a pull request from your fork to kubernetes/website {#open-a-pr}
--->
-### 从你的克隆副本向 kubernetes/website 发起拉取请求（PR） {#open-a-pr}
-
-<!--
-1. In a web browser, go to the [`kubernetes/website`](https://github.com/kubernetes/website/) repository.
-2. Select **New Pull Request**.
-3. Select **compare across forks**.
-4. From the **head repository** drop-down menu, select your fork.
-5. From the **compare** drop-down menu, select your branch.
-6. Select **Create Pull Request**.
-7. Add a description for your pull request:
-    - **Title** (50 characters or less): Summarize the intent of the change.
-    - **Description**: Describe the change in more detail.
-      - If there is a related GitHub issue, include `Fixes #12345` or `Closes #12345` in the description. GitHub's automation closes the mentioned issue after merging the PR if used. If there are other related PRs, link those as well.
-      - If you want advice on something specific, include any questions you'd like reviewers to think about in your description.
-8. Select the **Create pull request** button.
-
-   Congratulations! Your pull request is available in [Pull requests](https://github.com/kubernetes/website/pulls).
--->
-1. 在 Web 浏览器中，前往 [`kubernetes/website`](https://github.com/kubernetes/website/) 仓库；
-2. 点击 **New Pull Request**；
-3. 选择 **compare across forks**；
-4. 从 **head repository** 下拉菜单中，选取你的派生仓库；
-5. 从 **compare** 下拉菜单中，选择你的分支；
-6. 点击 **Create Pull Request**；
-7. 为你的拉取请求添加一个描述：
-    - **Title** （不超过 50 个字符）：总结变更的目的；
-    - **Description**：给出变更的详细信息；
-      - 如果存在一个相关联的 GitHub Issue，可以在描述中包含 `Fixes #12345` 或
-        `Closes #12345`。GitHub 的自动化设施能够在当前 PR 被合并时自动关闭所提及
-        的 Issue。如果有其他相关联的 PR，也可以添加对它们的链接。
-      - 如果你尤其希望获得某方面的建议，可以在描述中包含你希望评阅人思考的问题。
-8. 点击 **Create pull request** 按钮。
-
-   祝贺你! 你的拉取请求现在出现在 [Pull Requests](https://github.com/kubernetes/website/pulls) 列表中了！
-
-<!--
-After opening a PR, GitHub runs automated tests and tries to deploy a preview using [Netlify](https://www.netlify.com/).
-
-  - If the Netlify build fails, select **Details** for more information.
-  - If the Netlify build succeeds, select **Details** opens a staged version of the Kubernetes website with your changes applied. This is how reviewers check your changes.
-
-GitHub also automatically assigns labels to a PR, to help reviewers. You can add them too, if needed. For more information, see [Adding and removing issue labels](/docs/contribute/review/for-approvers/#adding-and-removing-issue-labels).
--->
-在发起 PR 之后，GitHub 会执行一些自动化的测试，并尝试使用
-[Netlify](https://www.netlify.com/) 部署一个预览版本。
-
-  - 如果 Netlify 构建操作失败，可选择 **Details** 了解详细信息。
-  - 如果 Netlify 构建操作成功，选择 **Details** 会打开 Kubernetes 的一个预览
-    版本，其中包含了你所作的变更。评阅人也使用这一功能来检查你的变更。
-
-GitHub 也会自动为 PR 分派一些标签，以帮助评阅人。
-如果有需要，你也可以向 PR 添加标签。
-欲了解相关详细信息，可以参考
-[添加和删除 Issue 标签](/zh/docs/contribute/review/for-approvers/#adding-and-removing-issue-labels)。
-
-<!--
-### Addressing feedback locally
-
-1. After making your changes, amend your previous commit:
--->
-### 在本地处理反馈
-
-1. 在本地完成修改之后，可以修补（amend）你之前的提交：
-
-    ```bash
-    git commit -a --amend
-    ```
-
-    <!--
-    - `-a`: commits all changes
-    - `--amend`: amends the previous commit, rather than creating a new one
-    -->
-    - `-a`：提交所有修改
-    - `--amend`：对前一次提交进行增补，而不是创建新的提交
-
-<!--
-2. Update your commit message if needed.
-3. Use `git push origin <my_new_branch>` to push your changes and re-run the Netlify tests.
--->
-2. 如果有必要，更新你的提交消息；
-3. 使用 `git push origin <my_new_branch>` 来推送你的变更，重新出发 Netlify 测试。
-
-   <!--
-   If you use `git commit -m` instead of amending, you must
-   [squash your commits](#squashing-commits) before merging.
-   -->
-   {{< note >}}
-   如果你使用 `git commit -m` 而不是增补参数，在 PR 最终合并之前你必须
-   [squash 你的提交](#squashing-commits)。
-   {{< /note >}}
-
-<!--
-#### Changes from reviewers
-
-Sometimes reviewers commit to your pull request. Before making any other changes, fetch those commits.
-
-1. Fetch commits from your remote fork and rebase your working branch:
--->
-#### 来自评阅人的修改
-
-有时评阅人会向你的 PR 中提交修改。在作出其他修改之前，请先取回这些提交。
-
-1. 从你的远程派生副本仓库取回提交，让你的工作分支基于所取回的分支：
-
-    ```bash
-    git fetch origin
-    git rebase origin/<your-branch-name>
-    ```
-<!--
-2. After rebasing, force-push new changes to your fork:
--->
-2. 变更基线（rebase）操作完成之后，强制推送本地的新改动到你的派生仓库：
-
-    ```bash
-    git push --force-with-lease origin <your-branch-name>
-    ```
-
-<!--
-#### Merge conflicts and rebasing
-
-{{< note >}}
-For more information, see [Git Branching - Basic Branching and Merging](https://git-scm.com/book/en/v2/Git-Branching-Basic-Branching-and-Merging#_basic_merge_conflicts), [Advanced Merging](https://git-scm.com/book/en/v2/Git-Tools-Advanced-Merging), or ask in the `#sig-docs` Slack channel for help.
-{{< /note >}}
--->
-#### 合并冲突和重设基线
-
-{{< note >}}
-要了解更多信息，可参考
-[Git 分支管理 - 基本分支和合并](https://git-scm.com/book/en/v2/Git-Branching-Basic-Branching-and-Merging#_basic_merge_conflicts)、
-[高级合并](https://git-scm.com/book/en/v2/Git-Tools-Advanced-Merging)、
-或者在 `#sig-docs` Slack 频道寻求帮助。
-{{< /note >}}
-
-<!--
-If another contributor commits changes to the same file in another PR, it can create a merge conflict. You must resolve all merge conflicts in your PR.
-
-1. Update your fork and rebase your local branch:
--->
-如果另一个贡献者在别的 PR 中提交了对同一文件的修改，这可能会造成合并冲突。
-你必须在你的 PR 中解决所有合并冲突。
-
-1. 更新你的派生副本，重设本地分支的基线：
-
-   ```bash
-   git fetch origin
-   git rebase origin/<your-branch-name>
-   ```
-
-   <!-- Then force-push the changes to your fork:-->
-   之后强制推送修改到你的派生副本仓库：
-
-   ```bash
-   git push --force-with-lease origin <your-branch-name>
-   ```
-<!--
-2. Fetch changes from `kubernetes/website`'s `upstream/main` and rebase your branch:
--->
-2. 从 `kubernetes/website` 的 `upstream/main` 分支取回更改，然后重设本地分支的基线：
-
-   ```bash
-   git fetch upstream
-   git rebase upstream/main
-   ```
-<!--
-3. Inspect the results of the rebase:
--->
-3. 检查重设基线操作之后的状态：
-
-   ```bash
-   git status
-   ```
-
-   <!-- This results in a number of files marked as conflicted. -->
-   你会看到一组存在冲突的文件。
-
-<!--
-4. Open each conflicted file and look for the conflict markers: `>>>`, `<<<`, and `===`. Resolve the conflict and delete the conflict marker.
--->
-4. 打开每个存在冲突的文件，查找冲突标记：`>>>`、`<<<` 和 `===`。
-   解决完冲突之后删除冲突标记。
-
-    <!--
-    For more information, see [How conflicts are presented](https://git-scm.com/docs/git-merge#_how_conflicts_are_presented).
-    -->
-    {{< note >}}
-    进一步的详细信息可参见
-    [冲突是怎样表示的](https://git-scm.com/docs/git-merge#_how_conflicts_are_presented).
-    {{< /note >}}
-
-<!--
-5. Add the files to the changeset:
--->
-5. 添加文件到变更集合：
-
-    ```bash
-    git add <filename>
-    ```
-<!--
-6.  Continue the rebase:
--->
-6. 继续执行基线变更（rebase）操作：
-
-    ```bash
-    git rebase --continue
-    ```
-
-<!--
-7.  Repeat steps 2 to 5 as needed.
-
-    After applying all commits, the `git status` command shows that the rebase is complete.
--->
-7. 根据需要重复步骤 2 到 5。
-
-   在应用完所有提交之后，`git status` 命令会显示 rebase 操作完成。
-
-<!--
-8. Force-push the branch to your fork:
--->
-8. 将分支强制推送到你的派生仓库：
-
-    ```bash
-    git push --force-with-lease origin <your-branch-name>
-    ```
-
-    <!-- The pull request no longer shows any conflicts. -->
-    PR 不再显示存在冲突。
-
-<!--
-### Squashing commits
--->
-### 压缩（Squashing）提交 {#squashing-commits}
-
-<!--
-For more information, see [Git Tools - Rewriting History](https://git-scm.com/book/en/v2/Git-Tools-Rewriting-History), or ask in the `#sig-docs` Slack channel for help.
--->
-{{< note >}}
-要了解更多信息，可参看
-[Git Tools - Rewriting History](https://git-scm.com/book/en/v2/Git-Tools-Rewriting-History)，
-或者在 `#sig-docs` Slack 频道寻求帮助。
-{{< /note >}}
-
-<!--
-If your PR has multiple commits, you must squash them into a single commit before merging your PR. You can check the number of commits on your PR's **Commits** tab or by running the `git log` command locally.
--->
-如果你的 PR 包含多个提交（commits），你必须将其压缩成一个提交才能被合并。
-你可以在 PR 的 **Commits** Tab 页面查看提交个数，也可以在本地通过
-`git log` 命令查看提交个数。
-
-<!-- This topic assumes `vim` as the command line text editor.-->
-{{< note >}}
-本主题假定使用 `vim` 作为命令行文本编辑器。
-{{< /note >}}
-
-<!--
-1. Start an interactive rebase:
--->
-1. 启动一个交互式的 rebase 操作：
-
-    ```bash
-    git rebase -i HEAD~<number_of_commits_in_branch>
-    ```
-
-    <!--
-    Squashing commits is a form of rebasing. The `-i` switch tells git you want to rebase interactively. `HEAD~<number_of_commits_in_branch` indicates how many commits to look at for the rebase.
-    -->
-    压缩提交的过程也是一种重设基线的过程。
-    这里的 `-i` 开关告诉 git 你希望交互式地执行重设基线操作。
-    `HEAD~<number_of_commits_in_branch` 表明在 rebase 操作中查看多少个提交。
-
-    <!--Output is similar to:-->
-    输出类似于；
-
-    ```bash
-    pick d875112ca Original commit
-    pick 4fa167b80 Address feedback 1
-    pick 7d54e15ee Address feedback 2
-
-    # Rebase 3d18sf680..7d54e15ee onto 3d183f680 (3 commands)
-
-    ...
-
-    # These lines can be re-ordered; they are executed from top to bottom.
-    ```
-
-    <!--
-    The first section of the output lists the commits in the rebase. The second section lists the options for each commit. Changing the word `pick` changes the status of the commit once the rebase is complete.
-
-    For the purposes of rebasing, focus on `squash` and `pick`.
-    -->
-    输出的第一部分列举了重设基线操作中的提交。
-    第二部分给出每个提交的选项。
-    改变单词 `pick` 就可以改变重设基线操作之后提交的状态。
-
-    就重设基线操作本身，我们关注 `squash` 和 `pick` 选项。
-
-    <!--
-    For more information, see [Interactive Mode](https://git-scm.com/docs/git-rebase#_interactive_mode).
-    -->
-    {{< note >}}
-    进一步的详细信息可参考 [Interactive Mode](https://git-scm.com/docs/git-rebase#_interactive_mode)。
-    {{< /note >}}
-
-<!--
-2. Start editing the file.
-    Change the original text:
--->
-
-2. 开始编辑文件。
-
-    修改原来的文本：
-
-    ```bash
-    pick d875112ca Original commit
-    pick 4fa167b80 Address feedback 1
-    pick 7d54e15ee Address feedback 2
-    ```
-
-    <!-- To: -->
-    使之成为：
-
-    ```bash
-    pick d875112ca Original commit
-    squash 4fa167b80 Address feedback 1
-    squash 7d54e15ee Address feedback 2
-    ```
-
-    <!--
-    This squashes commits `4fa167b80 Address feedback 1` and `7d54e15ee Address feedback 2` into `d875112ca Original commit`, leaving only `d875112ca Original commit` as a part of the timeline.
-    -->
-    以上编辑操作会压缩提交 `4fa167b80 Address feedback 1` 和 `7d54e15ee Address feedback 2`
-    到 `d875112ca Original commit` 中，只留下 `d875112ca Original commit` 成为时间线中的一部分。
-
-<!--
-3. Save and exit your file.
-4. Push your squashed commit:
--->
-3. 保存文件并退出编辑器。
-
-4. 推送压缩后的提交：
-
-    ```bash
-    git push --force-with-lease origin <branch_name>
-    ```
-
-<!--
-## Contribute to other repos
-
-The [Kubernetes project](https://github.com/kubernetes) contains 50+ repositories. Many of these repositories contain documentation: user-facing help text, error messages, API references or code comments.
-
-If you see text you'd like to improve, use GitHub to search all repositories in the Kubernetes organization.
-This can help you figure out where to submit your issue or PR.
--->
-## 贡献到其他仓库
-
-[Kubernetes 项目](https://github.com/kubernetes)包含大约 50 多个仓库。
-这些仓库中很多都有文档：提供给最终用户的帮助文本、错误信息、API 参考或者代码注释等。
-
-如果你发现有些文本需要改进，可以使用 GitHub 来搜索 Kubernetes 组织下的所有仓库。
-这样有助于发现要在哪里提交 Issue 或 PR。
-
-<!--
-Each repository has its own processes and procedures. Before you file an
-issue or submit a PR, read that repository's `README.md`, `CONTRIBUTING.md`, and
-`code-of-conduct.md`, if they exist.
-
-Most repositories use issue and PR templates. Have a look through some open
-issues and PRs to get a feel for that team's processes. Make sure to fill out
-the templates with as much detail as possible when you file issues or PRs.
--->
-每个仓库有其自己的流程和过程。在登记 Issue 或者发起 PR 之前，记得阅读仓库的
-`README.md`、`CONTRIBUTING.md` 和 `code-of-conduct.md` 文件，如果有的话。
-
-大多数仓库都有自己的 Issue 和 PR 模版。通过查看一些待解决的 Issues 和
-PR，也可以添加对它们的链接。你可以多少了解该团队的流程。
-在登记 Issue 或提出 PR 时，务必尽量填充所给的模版，多提供详细信息。
-
-## {{% heading "whatsnext" %}}
-
-<!--
-- Read [Reviewing](/docs/contribute/reviewing/revewing-prs) to learn more about the review process.
--->
-- 阅读[评阅](/zh/docs/contribute/review/reviewing-prs)节，学习评阅过程。
-
diff --git a/content/zh/docs/contribute/new-content/overview.md b/content/zh/docs/contribute/new-content/overview.md
deleted file mode 100644
index 76dd64c211..0000000000
--- a/content/zh/docs/contribute/new-content/overview.md
+++ /dev/null
@@ -1,122 +0,0 @@
----
-title: 贡献新内容概述
-linktitle: 概述
-content_type: concept
-main_menu: true
-weight: 5
----
-<!--
-title: Contributing new content overview
-linktitle: Overview
-content_type: concept
-main_menu: true
-weight: 5
--->
-
-<!-- overview -->
-<!--
-This section contains information you should know before contributing new content.
--->
-本节包含贡献新内容之前你需要知晓的一些信息。
-
-<!-- body -->
-
-<!--
-## Contributing basics
-
-- Write Kubernetes documentation in Markdown and build the Kubernetes site using [Hugo](https://gohugo.io/).
-- The source is in [GitHub](https://github.com/kubernetes/website). You can find Kubernetes documentation at `/content/en/docs/`. Some of the reference documentation is automatically generated from scripts in the `update-imported-docs/` directory.
-- [Page content types](/docs/contribute/style/page-content-types/) describe the presentation of documentation content in Hugo.
-- In addition to the standard Hugo shortcodes, we use a number of [custom Hugo shortcodes](/docs/contribute/style/hugo-shortcodes/) in our documentation to control the presentation of content.
-- Documentation source is available in multiple languages in `/content/`. Each language has its own folder with a two-letter code determined by the [ISO 639-1 standard](https://www.loc.gov/standards/iso639-2/php/code_list.php). For example, English documentation source is stored in `/content/en/docs/`.
-- For more information about contributing to documentation in multiple languages or starting a new translation, see [localization](/docs/contribute/localization).
--->
-## 基本知识
-
-- 使用 Markdown 来编写 Kubernetes 文档并使用 [Hugo](https://gohugo.io/) 来构建网站
-- 源代码位于 [GitHub](https://github.com/kubernetes/website) 仓库中。
-  你可以在 `/content/en/docs/` 目录下找到 Kubernetes 文档。
-  某些参考文档是使用位于 `update-imported-docs/` 目录下的脚本自动生成的。
-- [页面内容类型](/zh/docs/contribute/style/page-content-types/)使用 Hugo 描述文档内容的表现。
-- 除了基本的 Hugo 短代码（shortcodes）外，我们还在文档中使用一些
-  [定制的 Hugo 短代码](/zh/docs/contribute/style/hugo-shortcodes/)以控制内容的表现。
-- 文档的源代码有多种语言形式，位于`/content/` 目录下。
-  每种语言都有自己的由两个字母代表的目录，这两个字母是基于
-  [ISO 639-1 标准](https://www.loc.gov/standards/iso639-2/php/code_list.php)来确定的。
-  例如，英语文档源码位于`/content/en/docs/` 目录下。
-- 关于在多种语言中为文档做贡献的详细信息，以及如何启动一种新的语言翻译，
-  可参考[本地化](/zh/docs/contribute/localization)文档。
-
-<!--
-## Before you begin {#before-you-begin}
-### Sign the CNCF CLA {#sign-the-cla}
-
-All Kubernetes contributors **must** read the [Contributor guide](https://github.com/kubernetes/community/blob/master/contributors/guide/README.md) and [sign the Contributor License Agreement (CLA)](https://github.com/kubernetes/community/blob/master/CLA.md).
-
-Pull requests from contributors who haven't signed the CLA fail the automated tests. The name and email you provide must match those found in your `git config`, and your git name and email must match those used for the CNCF CLA.
--->
-## 开始之前 {#before-you-begin}
-
-### 签署 CNCF CLA {#sign-the-cla}
-
-所有 Kubernetes 贡献者 **必须** 阅读
-[贡献者指南](https://github.com/kubernetes/community/blob/master/contributors/guide/README.md)
-并[签署贡献者授权同意书（Contributor License Agreement，CLA）](https://github.com/kubernetes/community/blob/master/CLA.md)。
-
-来自尚未签署 CLA 的贡献者的 PR 无法通过自动化服务的测试。
-你所提供的姓名和邮件地址必须与 `git config` 中所找到的完全相同，
-而且你的 git 用户名和邮件地址必须与用来签署 CNCF CLA 的一致。
-
-<!--
-### Choose which Git branch to use
-
-When opening a pull request, you need to know in advance which branch to base your work on.
-
-Scenario | Branch
-:---------|:------------
-Existing or new English language content for the current release | `main`
-Content for a feature change release | The branch which corresponds to the major and minor version the feature change is in, using the pattern `dev-release-<version>`. For example, if a feature changes in the `{{< latest-version >}}` release, then add documentation changes to the ``dev-{{< release-branch >}}`` branch.
-Content in other languages (localizations) | Use the localization's convention. See the [Localization branching strategy](/docs/contribute/localization/#branching-strategy) for more information.
-
-If you're still not sure which branch to choose, ask in `#sig-docs` on Slack.
--->
-### 选择要使用的分支
-
-在发起拉取请求时，你需要预先知道要基于哪个分支来开展工作。
-
-场景      | 分支
-:---------|:------------
-针对当前发行版本的，对现有英文内容的修改或新的英文内容 | `main`
-针对功能特性变更的内容 | 功能特性所对应的版本所对应的分支，分支名字模式为 `dev-<version>`。例如，如果某功能特性在 `v{{< skew nextMinorVersion >}}` 版本发生变化，则对应的文档变化要添加到 ``dev-{{< skew nextMinorVersion >}}`` 分支。
-其他语言的内容（本地化）| 基于本地化团队的约定。参见[本地化分支策略](/zh/docs/contribute/localization/#branching-strategy)了解更多信息。
-
-如果你仍不能确定要选择哪个分支，请在 `#sig-docs` Slack 频道上提问。
-
-<!--
-If you already submitted your pull request and you know that the base branch
-was wrong, you (and only you, the submitter) can change it.
--->
-{{< note >}}
-如果你已经提交了你的 PR，并且你发现所针对的分支选错了，你（且只能是你）可以重新选择分支。
-{{< /note >}}
-
-<!--
-### Languages per PR
-Limit pull requests to one language per PR. If you need to make an identical change to the same code sample in multiple languages, open a separate PR for each language.
--->
-### 每个 PR 牵涉的语言
-
-请限制每个 PR 仅涉及一种语言。
-如果你需要对多种语言下的同一代码示例进行相同的修改，也请为每种语言发起一个独立的 PR。
-
-<!--
-## Tools for contributors
-The [doc contributors tools](https://github.com/kubernetes/website/tree/main/content/en/docs/doc-contributor-tools) directory in the `kubernetes/website` repository contains tools to help your contribution journey go more smoothly.
--->
-
-## 为贡献者提供的工具
-
-`kubernetes/website` 仓库的
-[文档贡献者工具](https://github.com/kubernetes/website/tree/main/content/en/docs/doc-contributor-tools)
-目录中包含了一些工具，能够助你的贡献过程更为顺畅。
-
diff --git a/content/zh/docs/home/supported-doc-versions.md b/content/zh/docs/home/supported-doc-versions.md
deleted file mode 100644
index 1556a62497..0000000000
--- a/content/zh/docs/home/supported-doc-versions.md
+++ /dev/null
@@ -1,13 +0,0 @@
----
-title: Kubernetes 文档支持的版本
-content_type: custom
-layout: supported-versions
-card:
-  name: about
-  weight: 10
-  title: Kubernetes 文档支持的版本
----
-
-<!-- overview -->
-
-本网站包含当前版本和之前四个版本的 Kubernetes 文档。
diff --git a/content/zh/docs/reference/_index.md b/content/zh/docs/reference/_index.md
deleted file mode 100644
index f28e5b1e5d..0000000000
--- a/content/zh/docs/reference/_index.md
+++ /dev/null
@@ -1,168 +0,0 @@
----
-title: 参考
-linkTitle: "参考"
-main_menu: true
-weight: 70
-content_type: concept
-no_list: true
----
-
-<!--
-title: Reference
-approvers:
-- chenopis
-linkTitle: "Reference"
-main_menu: true
-weight: 70
-content_type: concept
-no_list: true
--->
-
-<!-- overview -->
-
-<!--
-This section of the Kubernetes documentation contains references.
--->
-这是 Kubernetes 文档的参考部分。
-
-<!-- body -->
-
-<!--
-## API Reference
-
-* [Glossary](/docs/reference/glossary/) -  a comprehensive, standardized list of Kubernetes terminology
-
-* [Kubernetes API Reference](/docs/reference/kubernetes-api/)
-* [One-page API Reference for Kubernetes {{< param "version" >}}](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)
-* [Using The Kubernetes API](/docs/reference/using-api/) - overview of the API for Kubernetes.
-* [API access control](/docs/reference/access-authn-authz/) - details on how Kubernetes controls API access
-* [Well-Known Labels, Annotations and Taints](/docs/reference/labels-annotations-taints/)
--->
-## API 参考
-
-* [术语表](/zh/docs/reference/glossary/) -  一个全面的标准化的 Kubernetes 术语表
-
-* [Kubernetes API 单页参考](/zh/docs/reference/kubernetes-api/)
-* [Kubernetes API 参考 {{< param "version" >}}](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/)。
-* [使用 Kubernetes API ](/zh/docs/reference/using-api/) - Kubernetes 的 API 概述
-* [API 的访问控制](/zh/docs/reference/access-authn-authz/) - 关于 Kubernetes 如何控制 API 访问的详细信息
-* [常见的标签、注解和污点](/zh/docs/reference/labels-annotations-taints/)
-
-<!--
-## Officially supported client libraries
-
-To call the Kubernetes API from a programming language, you can use
-[client libraries](/docs/reference/using-api/client-libraries/). Officially supported
-client libraries:
-
-- [Kubernetes Go client library](https://github.com/kubernetes/client-go/)
-- [Kubernetes Python client library](https://github.com/kubernetes-client/python)
-- [Kubernetes Java client library](https://github.com/kubernetes-client/java)
-- [Kubernetes JavaScript client library](https://github.com/kubernetes-client/javascript)
-- [Kubernetes Dotnet client library](https://github.com/kubernetes-client/csharp)
-- [Kubernetes Haskell Client library](https://github.com/kubernetes-client/haskell)
--->
-## 官方支持的客户端库
-
-如果您需要通过编程语言调用 Kubernetes API，您可以使用
-[客户端库](/zh/docs/reference/using-api/client-libraries/)。以下是官方支持的客户端库：
-
-- [Kubernetes Go 语言客户端库](https://github.com/kubernetes/client-go/)
-- [Kubernetes Python 语言客户端库](https://github.com/kubernetes-client/python)
-- [Kubernetes Java 语言客户端库](https://github.com/kubernetes-client/java)
-- [Kubernetes JavaScript 语言客户端库](https://github.com/kubernetes-client/javascript)
-- [Kubernetes Dotnet 语言客户端库](https://github.com/kubernetes-client/csharp)
-- [Kubernetes Haskell 语言客户端库](https://github.com/kubernetes-client/haskell)
-
-<!--
-## CLI
-
-* [kubectl](/docs/reference/kubectl/overview/) - Main CLI tool for running commands and managing Kubernetes clusters.
-    * [JSONPath](/docs/reference/kubectl/jsonpath/) - Syntax guide for using [JSONPath expressions](https://goessner.net/articles/JsonPath/) with kubectl.
-* [kubeadm](/docs/reference/setup-tools/kubeadm/) - CLI tool to easily provision a secure Kubernetes cluster.
--->
-## CLI
-
-* [kubectl](/zh/docs/reference/kubectl/overview/) - 主要的 CLI 工具，用于运行命令和管理 Kubernetes 集群。
-    * [JSONPath](/zh/docs/reference/kubectl/jsonpath/) - 通过 kubectl 使用
-      [JSONPath 表达式](https://goessner.net/articles/JsonPath/) 的语法指南。
-* [kubeadm](/zh/docs/reference/setup-tools/kubeadm/) - 此 CLI 工具可轻松配置安全的 Kubernetes 集群。
-
-<!--
-## Components
-
-* [kubelet](/docs/reference/command-line-tools-reference/kubelet/) - The
-  primary agent that runs on each node. The kubelet takes a set of PodSpecs
-  and ensures that the described containers are running and healthy.
-* [kube-apiserver](/docs/reference/command-line-tools-reference/kube-apiserver/) -
-  REST API that validates and configures data for API objects such as  pods,
-  services, replication controllers.
-* [kube-controller-manager](/docs/reference/command-line-tools-reference/kube-controller-manager/) - Daemon that embeds the core control loops shipped with Kubernetes.
-* [kube-proxy](/docs/reference/command-line-tools-reference/kube-proxy/) - Can
-  do simple TCP/UDP stream forwarding or round-robin TCP/UDP forwarding across
-  a set of back-ends.
-* [kube-scheduler](/docs/reference/command-line-tools-reference/kube-scheduler/) - Scheduler that manages availability, performance, and capacity.
-  
-  * [Scheduler Policies](/docs/reference/scheduling/policies)
-  * [Scheduler Profiles](/docs/reference/scheduling/config#profiles)
--->
-## 组件
-
-* [kubelet](/zh/docs/reference/command-line-tools-reference/kubelet/) -
-  在每个节点上运行的主代理。kubelet 接收一组 PodSpecs 并确保其所描述的容器健康地运行。
-* [kube-apiserver](/zh/docs/reference/command-line-tools-reference/kube-apiserver/) -
-  REST API，用于验证和配置 API 对象（如 Pod、服务或副本控制器等）的数据。
-* [kube-controller-manager](/zh/docs/reference/command-line-tools-reference/kube-controller-manager/) -
-  一个守护进程，其中包含 Kubernetes 所附带的核心控制回路。
-* [kube-proxy](/zh/docs/reference/command-line-tools-reference/kube-proxy/) -
-  可进行简单的 TCP/UDP 流转发或针对一组后端执行轮流 TCP/UDP 转发。
-* [kube-scheduler](/zh/docs/reference/command-line-tools-reference/kube-scheduler/) -
-  一个调度程序，用于管理可用性、性能和容量。
-  
-  * [调度策略](/zh/docs/reference/scheduling/policies)
-  * [调度配置](/zh/docs/reference/scheduling/config#profiles)
-
-<!--
-## Config APIs
-
-This section hosts the documentation for "unpublished" APIs which are used to
-configure  kubernetes components or tools. Most of these APIs are not exposed
-by the API server in a RESTful way though they are essential for a user or an
-operator to use or manage a cluster.
-
-* [kubelet configuration (v1beta1)](/docs/reference/config-api/kubelet-config.v1beta1/)
-* [kube-scheduler configuration (v1beta1)](/docs/reference/config-api/kube-scheduler-config.v1beta1/)
-* [kube-scheduler policy reference (v1)](/docs/reference/config-api/kube-scheduler-policy-config.v1/)
-* [kube-proxy configuration (v1alpha1)](/docs/reference/config-api/kube-proxy-config.v1alpha1/)
-* [`audit.k8s.io/v1` API](/docs/reference/config-api/apiserver-audit.v1/)
-* [Client authentication API (v1beta1)](/docs/reference/config-api/client-authentication.v1beta1/)
-* [WebhookAdmission configuration (v1)](/docs/reference/config-api/apiserver-webhookadmission.v1/)
--->
-## 配置 API
-
-本节包含用于配置 kubernetes 组件或工具的 "未发布" API 的文档。
-尽管这些 API 对于用户或操作者使用或管理集群来说是必不可少的，
-它们大都没有以 RESTful 的方式在 API 服务器上公开。
-
-* [kubelet 配置 (v1beta1)](/zh/docs/reference/config-api/kubelet-config.v1beta1/)
-* [kube-scheduler 配置 (v1beta1)](/zh/docs/reference/config-api/kube-scheduler-config.v1beta1/)
-* [kube-scheduler 策略参考 (v1)](/zh/docs/reference/config-api/kube-scheduler-policy-config.v1/)
-* [kube-proxy 配置 (v1alpha1)](/zh/docs/reference/config-api/kube-proxy-config.v1alpha1/)
-* [`audit.k8s.io/v1` API](/zh/docs/reference/config-api/apiserver-audit.v1/)
-* [客户端认证 API (v1beta1)](/zh/docs/reference/config-api/client-authentication.v1beta1/)
-* [WebhookAdmission 配置 (v1)](/zh/docs/reference/config-api/apiserver-webhookadmission.v1/)
-
-<!--
-## Design Docs
-
-An archive of the design docs for Kubernetes functionality. Good starting points are
-[Kubernetes Architecture](https://git.k8s.io/community/contributors/design-proposals/architecture/architecture.md) and
-[Kubernetes Design Overview](https://git.k8s.io/community/contributors/design-proposals).
--->
-## 设计文档
-
-Kubernetes 功能的设计文档归档，不妨考虑从
-[Kubernetes 架构](https://git.k8s.io/community/contributors/design-proposals/architecture/architecture.md) 和
-[Kubernetes 设计概述](https://git.k8s.io/community/contributors/design-proposals)
-开始阅读。
-
diff --git a/content/zh/docs/reference/access-authn-authz/_index.md b/content/zh/docs/reference/access-authn-authz/_index.md
deleted file mode 100644
index 4a67bd9440..0000000000
--- a/content/zh/docs/reference/access-authn-authz/_index.md
+++ /dev/null
@@ -1,56 +0,0 @@
----
-title: 访问 API
-weight: 20
-no_list: true
----
-
-<!--
-title: API Access Control
-weight: 20
-no_list: true
--->
-
-<!--
-For an introduction to how Kubernetes implements and controls API access,
-read [Controlling Access to the Kubernetes API](/docs/concepts/security/controlling-access/).
-
-Reference documentation:
--->
-关于 Kubernetes 如何实现和控制 API 访问的介绍性材料，可阅读
-[控制 Kubernetes API 的访问](/zh/docs/concepts/security/controlling-access/)。
-
-参考文档：
-
-<!--
-- [Authenticating](/docs/reference/access-authn-authz/authentication/)
-   - [Authenticating with Bootstrap Tokens](/docs/reference/access-authn-authz/bootstrap-tokens/)
-- [Admission Controllers](/docs/reference/access-authn-authz/admission-controllers/)
-   - [Dynamic Admission Control](/docs/reference/access-authn-authz/extensible-admission-controllers/)
-- [Authorization](/docs/reference/access-authn-authz/authorization/)
-   - [Role Based Access Control](/docs/reference/access-authn-authz/rbac/)
-   - [Attribute Based Access Control](/docs/reference/access-authn-authz/abac/)
-   - [Node Authorization](/docs/reference/access-authn-authz/node/)
-   - [Webhook Authorization](/docs/reference/access-authn-authz/webhook/)
-- [Certificate Signing Requests](/docs/reference/access-authn-authz/certificate-signing-requests/)
-   - including [CSR approval](/docs/reference/access-authn-authz/certificate-signing-requests/#approval-rejection)
-     and [certificate signing](/docs/reference/access-authn-authz/certificate-signing-requests/#signing)
-- Service accounts
-  - [Developer guide](/docs/tasks/configure-pod-container/configure-service-account/)
-  - [Administration](/docs/reference/access-authn-authz/service-accounts-admin/)
--->
-- [身份认证](/zh/docs/reference/access-authn-authz/authentication/)
-   - [使用启动引导令牌来执行身份认证](/zh/docs/reference/access-authn-authz/bootstrap-tokens/)
-- [准入控制器](/zh/docs/reference/access-authn-authz/admission-controllers/)
-   - [动态准入控制](/zh/docs/reference/access-authn-authz/extensible-admission-controllers/)
-- [鉴权与授权](/zh/docs/reference/access-authn-authz/authorization/)
-   - [基于角色的访问控制](/zh/docs/reference/access-authn-authz/rbac/)
-   - [基于属性的访问控制](/zh/docs/reference/access-authn-authz/abac/)
-   - [节点鉴权](/zh/docs/reference/access-authn-authz/node/)
-   - [Webhook 鉴权](/zh/docs/reference/access-authn-authz/webhook/)
-- [证书签名请求](/zh/docs/reference/access-authn-authz/certificate-signing-requests/)
-   - 包含 [CSR 的批复](/zh/docs/reference/access-authn-authz/certificate-signing-requests/#approval-rejection)
-     和[证书签名](/zh/docs/reference/access-authn-authz/certificate-signing-requests/#signing)
-- 服务账号
-  - [开发者指南](/zh/docs/tasks/configure-pod-container/configure-service-account/)
-  - [管理文档](/zh/docs/reference/access-authn-authz/service-accounts-admin/)
-
diff --git a/content/zh/docs/reference/command-line-tools-reference/kubelet.md b/content/zh/docs/reference/command-line-tools-reference/kubelet.md
deleted file mode 100644
index f542978d01..0000000000
--- a/content/zh/docs/reference/command-line-tools-reference/kubelet.md
+++ /dev/null
@@ -1,2460 +0,0 @@
----
-title: kubelet
-content_type: tool-reference
-weight: 28
----
-
-## {{% heading "synopsis" %}}
-
-
-<!--
-The kubelet is the primary "node agent" that runs on each
-node. It can register the node with the apiserver using one of: the hostname; a flag to override the hostname; or specific logic for a cloud provider.
--->
-kubelet 是在每个 Node 节点上运行的主要 “节点代理”。它可以使用以下之一向 apiserver 注册：
-主机名（hostname）；覆盖主机名的参数；某云驱动的特定逻辑。
-
-<!--
-The kubelet works in terms of a PodSpec. A PodSpec is a YAML or JSON object
-that describes a pod. The kubelet takes a set of PodSpecs that are provided through various mechanisms (primarily through the apiserver) and ensures that the containers described in those PodSpecs are running and healthy. The kubelet doesn't manage containers which were not created by Kubernetes.
--->
-kubelet 是基于 PodSpec 来工作的。每个 PodSpec 是一个描述 Pod 的 YAML 或 JSON 对象。
-kubelet 接受通过各种机制（主要是通过 apiserver）提供的一组 PodSpec，并确保这些
-PodSpec 中描述的容器处于运行状态且运行状况良好。
-kubelet 不管理不是由 Kubernetes 创建的容器。
-
-<!--
-Other than from an PodSpec from the apiserver, there are three ways that a container manifest can be provided to the Kubelet.
--->
-除了来自 apiserver 的 PodSpec 之外，还可以通过以下三种方式将容器清单（manifest）提供给 kubelet。
-
-<!--
-File: Path passed as a flag on the command line. Files under this path will be monitored periodically for updates. The monitoring period is 20s by default and is configurable via a flag.
--->
-文件（File）：利用命令行参数传递路径。kubelet 周期性地监视此路径下的文件是否有更新。
-监视周期默认为 20s，且可通过参数进行配置。
-
-<!--
-HTTP endpoint: HTTP endpoint passed as a parameter on the command line. This endpoint is checked every 20 seconds (also configurable with a flag).
--->
-HTTP 端点（HTTP endpoint）：利用命令行参数指定 HTTP 端点。
-此端点的监视周期默认为 20 秒，也可以使用参数进行配置。
-
-<!--
-HTTP server: The kubelet can also listen for HTTP and respond to a simple API (underspec'd currently) to submit a new manifest.
--->
-HTTP 服务器（HTTP server）：kubelet 还可以侦听 HTTP 并响应简单的 API
-（目前没有完整规范）来提交新的清单。
-
-```
-kubelet [flags]
-```
-
-## {{% heading "options" %}}
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--add-dir-header</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If true, adds the file directory to the header
--->
-设置为 true 表示将文件目录添加到日志消息的头部
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--address ip&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：0.0.0.0</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The IP address for the Kubelet to serve on (set to `0.0.0.0` for all IPv4 interfaces and `::` for all IPv6 interfaces)  (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-kubelet 用来提供服务的 IP 地址（设置为<code>0.0.0.0</code> 表示使用所有 IPv4 接口，
-设置为 <code>::</code> 表示使用所有 IPv6 接口）。已弃用：应在 <code>--config</code> 所给的
-配置文件中进行设置。（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--allowed-unsafe-sysctls strings</td>
-</tr>  
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Comma-separated whitelist of unsafe sysctls or unsafe sysctl patterns (ending in `*`). Use these at your own risk. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-用逗号分隔的字符串序列设置允许使用的非安全的 sysctls 或 sysctl 模式（以 <code>*</code> 结尾) 。
-使用此参数时风险自担。已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）.
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--alsologtostderr</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-log to standard error as well as files
--->
-设置为 true 表示将日志输出到文件的同时输出到 stderr
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--anonymous-auth&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：true</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Enables anonymous requests to the Kubelet server. Requests that are not rejected by another authentication method are treated as anonymous requests. Anonymous requests have a username of `system:anonymous`, and a group name of `system:unauthenticated`. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-设置为 true 表示 kubelet 服务器可以接受匿名请求。未被任何认证组件拒绝的请求将被视为匿名请求。
-匿名请求的用户名为 <code>system:anonymous</code>，用户组为 <code>system:unauthenticated</code>。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--authentication-token-webhook</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Use the TokenReview API to determine authentication for bearer tokens. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-使用 <code>TokenReview</code> API 对持有者令牌进行身份认证。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--authentication-token-webhook-cache-ttl duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：<code>2m0s</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The duration to cache responses from the webhook token authenticator. (default 2m0s) (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-对 Webhook 令牌认证组件所返回的响应的缓存时间。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--authorization-mode string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Authorization mode for Kubelet server. Valid options are `AlwaysAllow` or `Webhook`. `Webhook` mode uses the `SubjectAccessReview` API to determine authorization. (default "AlwaysAllow" when `--config` flag is not provided; "Webhook" when `--config` flag presents.) (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-kubelet 服务器的鉴权模式。可选值包括：<code>AlwaysAllow</code>、<code>Webhook</code>。<code>Webhook</code> 模式使用 <code>SubjectAccessReview</code> API 鉴权。
-当 <code>--config</code> 参数未被设置时，默认值为 <code>AlwaysAllow</code>，当使用了
-<code>--config</code> 时，默认值为 <code>Webhook</code>。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--authorization-webhook-cache-authorized-ttl duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default:-->默认值：<code>5m0s</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The duration to cache 'authorized' responses from the webhook authorizer. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-对 Webhook 认证组件所返回的 “Authorized（已授权）” 应答的缓存时间。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--authorization-webhook-cache-unauthorized-ttl duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `30s`-->默认值：<code>30s</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The duration to cache 'unauthorized' responses from the webhook authorizer. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-对 Webhook 认证组件所返回的 “Unauthorized（未授权）” 应答的缓存时间。
-<code>--config</code> 时，默认值为 <code>Webhook</code>。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--azure-container-registry-config string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Path to the file container Azure container registry configuration information.
--->
-包含 Azure 容器镜像库配置信息的文件的路径。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--bootstrap-kubeconfig string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Path to a kubeconfig file that will be used to get client certificate for kubelet. If the file specified by `--kubeconfig` does not exist, the bootstrap kubeconfig is used to request a client certificate from the API server. On success, a kubeconfig file referencing the generated client certificate and key is written to the path specified by `--kubeconfig`. The client certificate and key file will be stored in the directory pointed by `--cert-dir`.
--->
-某 kubeconfig 文件的路径，该文件将用于获取 kubelet 的客户端证书。
-如果 <code>--kubeconfig</code> 所指定的文件不存在，则使用引导所用 kubeconfig
-从 API 服务器请求客户端证书。成功后，将引用生成的客户端证书和密钥的 kubeconfig
-写入 --kubeconfig 所指定的路径。客户端证书和密钥文件将存储在 <code>--cert-dir</code>
-所指的目录。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--cert-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `/var/lib/kubelet/pki`-->默认值：<code>/var/lib/kubelet/pki</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The directory where the TLS certs are located. If `--tls-cert-file` and `--tls-private-key-file` are provided, this flag will be ignored.
--->
-TLS 证书所在的目录。如果设置了 <code>--tls-cert-file</code> 和 <code>--tls-private-key-file</code>，
-则此标志将被忽略。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--cgroup-driver string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!-- Default: `cgroupfs`-->默认值：<code>cgroupfs</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Driver that the kubelet uses to manipulate cgroups on the host.  Possible values: `cgroupfs`, `systemd`. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-kubelet 用来操作本机 cgroup 时使用的驱动程序。支持的选项包括 <code>cgroupfs</code>
-和 <code>systemd</code>。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-/td>
-</tr>
-
-<tr>
-<td colspan="2">--cgroup-root string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `''`-->默认值：<code>""</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Optional root cgroup to use for pods. This is handled by the container runtime on a best effort basis. Default: '', which means use the container runtime default. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-可选的选项，为 Pod 设置根 cgroup。容器运行时会尽可能使用此配置。
-默认值 <code>""</code> 意味着将使用容器运行时的默认设置。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--cgroups-per-qos&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!-- Default: `true`-->默认值：<code>true</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Enable creation of QoS cgroup hierarchy, if true top level QoS and pod cgroups are created. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-启用创建 QoS cgroup 层次结构。此值为 true 时 kubelet 为 QoS 和 Pod 创建顶级的 cgroup。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--chaos-chance float</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If &gt; 0.0, introduce random client errors and latency. Intended for testing. (DEPRECATED: will be removed in a future version.)
--->
-如果此值大于 0.0，则引入随机客户端错误和延迟。用于测试。
-已启用：将在未来版本中移除。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--client-ca-file string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If set, any request presenting a client certificate signed by one of the authorities in the client-ca-file is authenticated with an identity corresponding to the CommonName of the client certificate. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-如果设置了此参数，则使用对应文件中机构之一检查请求中所携带的客户端证书。
-若客户端证书通过身份认证，则其对应身份为其证书中所设置的 CommonName。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--cloud-config string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The path to the cloud provider configuration file. Empty string for no configuration file. (DEPRECATED: will be removed in 1.23, in favor of removing cloud providers code from Kubelet.)
--->
-云驱动配置文件的路径。空字符串表示没有配置文件。
-已弃用：将在 1.23 版本中移除，以便于从 kubelet 中去除云驱动代码。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--cloud-provider string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The provider for cloud services. Set to empty string for running with no cloud provider. If set, the cloud provider determines the name of the node (consult cloud provider documentation to determine if and how the hostname is used). (DEPRECATED: will be removed in 1.23, in favor of removing cloud provider code from Kubelet.)
--->
-云服务的提供者。设置为空字符串表示在没有云驱动的情况下运行。
-如果设置了此标志，则云驱动负责确定节点的名称（参考云提供商文档以确定是否以及如何使用主机名）。
-已弃用：将在 1.23 版本中移除，以便于从 kubelet 中去除云驱动代码。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--cluster-dns strings</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Comma-separated list of DNS server IP address. This value is used for containers DNS server in case of Pods with "dnsPolicy=ClusterFirst". Note: all DNS servers appearing in the list MUST serve the same set of records otherwise name resolution within the cluster may not work correctly. There is no guarantee as to which DNS server may be contacted for name resolution. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-DNS 服务器的 IP 地址，以逗号分隔。此标志值用于 Pod 中设置了 “<code>dnsPolicy=ClusterFirst</code>”
-时为容器提供 DNS 服务。注意：列表中出现的所有 DNS 服务器必须包含相同的记录组，
-否则集群中的名称解析可能无法正常工作。至于名称解析过程中会牵涉到哪些 DNS 服务器，
-这一点无法保证。
-<code>--config</code> 时，默认值为 <code>Webhook</code>。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--cluster-domain string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Domain for this cluster. If set, kubelet will configure all containers to search this domain in addition to the host's search domains (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-集群的域名。如果设置了此值，kubelet 除了将主机的搜索域配置到所有容器之外，还会为其
-配置所搜这里指定的域名。
-<code>--config</code> 时，默认值为 <code>Webhook</code>。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--cni-bin-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!-- Default: `/opt/cni/bin`-->默认值：<code>/opt/cni/bin</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-&lt;Warning: Alpha feature&gt; A comma-separated list of full paths of directories in which to search for CNI plugin binaries. This docker-specific flag only works when container-runtime is set to `docker`.
--->
-&lt;警告：alpha 特性&gt; 此值为以逗号分隔的完整路径列表。
-kubelet 将在所指定路径中搜索 CNI 插件的可执行文件。
-仅当容器运行环境设置为 <code>docker</code> 时，此特定于 docker 的参数才有效。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--cni-cache-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!-- Default: `/var/lib/cni/cache`-->默认值：<code>/var/lib/cni/cache</code></td>
-</tr>
-<tr>                                            
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-&lt;Warning: Alpha feature&gt; The full path of the directory in which CNI should store cache files. This docker-specific flag only works when container-runtime is set to `docker`.
--->
-&lt;警告：alpha 特性&gt; 此值为一个目录的全路径名。CNI 将在其中缓存文件。
-仅当容器运行环境设置为 <code>docker</code> 时，此特定于 docker 的参数才有效。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--cni-conf-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!-- Default: `/etc/cni/net.d`-->默认值：<code>/etc/cni/net.d</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-&lt;Warning: Alpha feature&gt; The full path of the directory in which to search for CNI config files. This docker-specific flag only works when container-runtime is set to `docker`.
--->
-&lt;警告：alpha 特性&gt; 此值为某目录的全路径名。kubelet 将在其中搜索 CNI 配置文件。
-仅当容器运行环境设置为 <code>docker</code> 时，此特定于 docker 的参数才有效。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--config string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The Kubelet will load its initial configuration from this file. The path may be absolute or relative; relative paths start at the Kubelet's current working directory. Omit this flag to use the built-in default configuration values. Command-line flags override configuration from this file.
--->
-kubelet 将从此标志所指的文件中加载其初始配置。此路径可以是绝对路径，也可以是相对路径。
-相对路径按 kubelet 的当前工作目录起计。省略此参数时 kubelet 会使用内置的默认配置值。
-命令行参数会覆盖此文件中的配置。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--container-log-max-files int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 5-->默认值：5</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Set the maximum number of container log files that can be present for a container. The number must be &ge; 2. This flag can only be used with `--container-runtime=remote`. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-设置容器的日志文件个数上限。此值必须不小于 2。
-此标志只能与 <code>--container-runtime=remote</code> 标志一起使用。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>    
-
-<tr>
-<td colspan="2">--container-log-max-size string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!-- Default: `10Mi`-->默认值：<code>10Mi</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Set the maximum size (e.g. 10Mi) of container log file before it is rotated. This flag can only be used with `--container-runtime=remote`.  (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-设置容器日志文件在轮换生成新文件时之前的最大值（例如，<code>10Mi</code>）。
-此标志只能与 <code>--container-runtime=remote</code> 标志一起使用。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--container-runtime string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `docker`-->默认值：<code>docker</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The container runtime to use. Possible values: `docker`, `remote`.
--->
-要使用的容器运行时。目前支持 <code>docker<code>、</code>remote</code>。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--container-runtime-endpoint string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `unix:///var/run/dockershim.sock`-->默认值：<code>unix:///var/run/dockershim.sock</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-[Experimental] The endpoint of remote runtime service. Currently unix socket endpoint is supported on Linux, while npipe and tcp endpoints are supported on windows. Examples: `unix:///var/run/dockershim.sock`, `npipe:////./pipe/dockershim`.
--->
-[实验性特性] 远程运行时服务的端点。目前支持 Linux 系统上的 UNIX 套接字和
-Windows 系统上的 npipe 和 TCP 端点。例如：
-<code>unix:///var/run/dockershim.sock</code>、
-<code>npipe:////./pipe/dockershim</code>。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--contention-profiling</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Enable lock contention profiling, if profiling is enabled (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-当启用了性能分析时，启用锁竞争分析。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--cpu-cfs-quota&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `true`-->默认值：<code>true</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Enable CPU CFS quota enforcement for containers that specify CPU limits (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-为设置了 CPU 限制的容器启用 CPU CFS 配额保障。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--cpu-cfs-quota-period duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `100ms`-->默认值：<code>100ms</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Sets CPU CFS quota period value, `cpu.cfs_period_us`, defaults to Linux Kernel default. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-设置 CPU CFS 配额周期 <code>cpu.cfs_period_us</code>。默认使用 Linux 内核所设置的默认值 。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--cpu-manager-policy string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值：<code>none</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-CPU Manager policy to use. Possible values: 'none', 'static'. Default: 'none' (default "none") (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-要使用的 CPU 管理器策略。可选值包括：<code>none</code> 和 <code>static</code>。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--cpu-manager-reconcile-period duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `10s`-->默认值：<code>10s</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-&lt;Warning: Alpha feature&gt; CPU Manager reconciliation period. Examples: `10s`, or `1m`. If not supplied, defaults to node status update frequency. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-&lt;警告：alpha 特性&gt; 设置 CPU 管理器的调和时间。例如：<code>10s</code> 或者 <code>1m</code>。
-如果未设置，默认使用节点状态更新频率。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--docker-endpoint string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `unix:///var/run/docker.sock`-->默认值：<code>unix:///var/run/docker.sock</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Use this for the `docker` endpoint to communicate with. This docker-specific flag only works when container-runtime is set to `docker`.
--->
-使用这里的端点与 docker 端点通信。
-仅当容器运行环境设置为 <code>docker</code> 时，此特定于 docker 的参数才有效。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--dynamic-config-dir string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The Kubelet will use this directory for checkpointing downloaded configurations and tracking configuration health. The Kubelet will create this directory if it does not already exist. The path may be absolute or relative; relative paths start at the Kubelet's current working directory. Providing this flag enables dynamic Kubelet configuration. The `DynamicKubeletConfig` feature gate must be enabled to pass this flag; this gate currently defaults to `true` because the feature is beta.
--->
-kubelet 使用此目录来保存所下载的配置，跟踪配置运行状况。
-如果目录不存在，则 kubelet 创建该目录。此路径可以是绝对路径，也可以是相对路径。
-相对路径从 kubelet 的当前工作目录计算。
-设置此参数将启用动态 kubelet 配置。必须启用 <code>DynamicKubeletConfig</code>
-特性门控之后才能设置此标志；由于此特性为 beta 阶段，对应的特性门控当前默认为
-<code>true</code>。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--enable-controller-attach-detach&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `true`-->默认值：<code>true</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Enables the Attach/Detach controller to manage attachment/detachment of volumes scheduled to this node, and disables kubelet from executing any attach/detach operations.
--->
-启用 Attach/Detach 控制器来挂接和摘除调度到该节点的卷，同时禁用 kubelet 执行挂接和摘除操作。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--enable-debugging-handlers&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: `true`</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Enables server endpoints for log collection and local running of containers and commands (default true) (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-启用服务器上用于日志收集和在本地运行容器和命令的端点。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--enable-server&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!-- Default: `true`--></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Enable the Kubelet's server. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-启用 kubelet 服务器。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--enforce-node-allocatable strings&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: `pods`</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-A comma separated list of levels of node allocatable enforcement to be enforced by kubelet. Acceptable options are `none`, `pods`, `system-reserved`, and `kube-reserved`. If the latter two options are specified, `--system-reserved-cgroup` and `--kube-reserved-cgroup` must also be set, respectively. If `none` is specified, no additional options should be set. See https://kubernetes.io/docs/tasks/administer-cluster/reserve-compute-resources/ for more details. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-用逗号分隔的列表，包含由 kubelet 强制执行的节点可分配资源级别。
-可选配置为：<code>none</code>、<code>pods</code>、<code>system-reserved</code> 和 <code>kube-reserved</code>。
-在设置 <code>system-reserved</code> 和 <code>kube-reserved</code> 这两个值时，同时要求设置
-<code>--system-reserved-cgroup</code> 和 <code>--kube-reserved-cgroup</code> 这两个参数。
-如果设置为 <code>none</code>，则不需要设置其他参数。
-<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/reserve-compute-resources/">参考相关文档</a>。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--event-burst int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!-- Default: 10-->默认值：10</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Maximum size of a bursty event records, temporarily allows event records to burst to this number, while still not exceeding `--event-qps`. Only used if `--event-qps` &gt; 0. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-事件记录的个数的突发峰值上限，在遵从 <code>--event-qps</code> 阈值约束的前提下
-临时允许事件记录达到此数目。仅在 <code>--event-qps</code> 大于 0 时使用。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--event-qps int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 5</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If &gt; `0`, limit event creations per second to this value. If `0`, unlimited. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-设置大于 0 的值表示限制每秒可生成的事件数量。设置为 0 表示不限制。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--eviction-hard string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `imagefs.available<15%,memory.available<100Mi,nodefs.available<10%`-->默认值：<code>imagefs.available&lt;15%,memory.available&lt;100Mi,nodefs.available&lt;10%</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-A set of eviction thresholds (e.g. `memory.available<1Gi`) that if met would trigger a pod eviction. On a Linux node, the default value also includes `nodefs.inodesFree<5%`. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-触发 Pod 驱逐操作的一组硬性门限（例如：<code>memory.available&lt;1Gi</code>
-（内存可用值小于 1 G））设置。在 Linux 节点上，默认值还包括
-<code>nodefs.inodesFree<5%</code>。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--eviction-max-pod-grace-period int32</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Maximum allowed grace period (in seconds) to use when terminating pods in response to a soft eviction threshold being met. If negative, defer to pod specified value. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-响应满足软性驱逐阈值（Soft Eviction Threshold）而终止 Pod 时使用的最长宽限期（以秒为单位）。
-如果设置为负数，则遵循 Pod 的指定值。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--eviction-minimum-reclaim mapStringString</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-A set of minimum reclaims (e.g. `imagefs.available=2Gi`) that describes the minimum amount of resource the kubelet will reclaim when performing a pod eviction if that resource is under pressure. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-当某资源压力过大时，kubelet 将执行 Pod 驱逐操作。
-此参数设置软性驱逐操作需要回收的资源的最小数量（例如：<code>imagefs.available=2Gi</code>）。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--eviction-pressure-transition-period duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `5m0s`-->默认值：<code>5m0s</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Duration for which the kubelet has to wait before transitioning out of an eviction pressure condition. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-kubelet 在驱逐压力状况解除之前的最长等待时间。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--eviction-soft mapStringString</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-A set of eviction thresholds (e.g. `memory.available>1.5Gi`) that if met over a corresponding grace period would trigger a pod eviction. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-设置一组驱逐阈值（例如：<code>memory.available&lt;1.5Gi</code>）。
-如果在相应的宽限期内达到该阈值，则会触发 Pod 驱逐操作。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--eviction-soft-grace-period mapStringString</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-A set of eviction grace periods (e.g. `memory.available=1m30s`) that correspond to how long a soft eviction threshold must hold before triggering a pod eviction. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-设置一组驱逐宽限期（例如，<code>memory.available=1m30s</code>），对应于触发软性 Pod
-驱逐操作之前软性驱逐阈值所需持续的时间长短。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--exit-on-lock-contention</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Whether kubelet should exit upon lock-file contention.
--->
-设置为 true 表示当发生锁文件竞争时 kubelet 可以退出。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--experimental-allocatable-ignore-eviction&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `false`-->默认值：<code>false</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-When set to `true`, Hard eviction thresholds will be ignored while calculating node allocatable. See https://kubernetes.io/docs/tasks/administer-cluster/reserve-compute-resources/ for more details. (DEPRECATED: will be removed in 1.23)
--->
-设置为 <code>true</code> 表示在计算节点可分配资源数量时忽略硬性逐出阈值设置。
-参考<a href="https://kubernetes.io/docs/tasks/administer-cluster/reserve-compute-resources/">
-相关文档</a>。
-已启用：将在 1.23 版本中移除。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--experimental-bootstrap-kubeconfig string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-(DEPRECATED: Use --bootstrap-kubeconfig)
--->
-已弃用：应使用 <code>--bootstrap-kubeconfig</code> 标志
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--experimental-check-node-capabilities-before-mount</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-[Experimental] if set to `true`, the kubelet will check the underlying node for required components (binaries, etc.) before performing the mount (DEPRECATED: will be removed in 1.23, in favor of using CSI.)
--->
-[实验性特性] 设置为 <code>true</code> 表示 kubelet 在进行挂载卷操作之前要
-在本节点上检查所需的组件（如可执行文件等）是否存在。
-已弃用：将在 1.23 版本中移除，以便使用 CSI。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--experimental-kernel-memcg-notification</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If enabled, the kubelet will integrate with the kernel memcg notification to determine if memory eviction thresholds are crossed rather than polling. This flag will be removed in 1.23. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-设置为 true 表示 kubelet 将会集成内核的 memcg 通知机制而不是使用轮询机制来
-判断是否达到了内存驱逐阈值。
-此标志将在 1.23 版本移除。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--experimental-log-sanitization</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-[Experimental] When enabled prevents logging of fields tagged as sensitive (passwords, keys, tokens). Runtime log sanitization may introduce significant computation overhead and therefore should not be enabled in production. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-[试验性功能] 启用此标志之后，kubelet 会避免将标记为敏感的字段（密码、密钥、令牌等）
-写入日志中。运行时的日志清理可能会带来相当的计算开销，因此不应该在
-产品环境中启用。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</tr>
-
-<tr>
-<td colspan="2">--experimental-mounter-path string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `mount`-->默认值：<code>mount</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-[Experimental] Path of mounter binary. Leave empty to use the default `mount`. (DEPRECATED: will be removed in 1.23, in favor of using CSI.)
--->
-[实验性特性] 卷挂载器（mounter）的可执行文件的路径。设置为空表示使用默认挂载器 <code>mount</code>。
-已弃用：将在 1.23 版本移除以支持 CSI。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--fail-swap-on&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `true`-->默认值：<code>true</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Makes the Kubelet fail to start if swap is enabled on the node. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-设置为 true 表示如果主机启用了交换分区，kubelet 将直接失败。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--feature-gates mapStringBool</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-A set of `key=value` pairs that describe feature gates for alpha/experimental features. Options are:<br/>
-APIListChunking=true|false (BETA - default=true)<br/>
-APIPriorityAndFairness=true|false (BETA - default=true)<br/>
-APIResponseCompression=true|false (BETA - default=true)<br/>
-APIServerIdentity=true|false (ALPHA - default=false)<br/>
-AllAlpha=true|false (ALPHA - default=false)<br/>
-AllBeta=true|false (BETA - default=false)<br/>
-AllowInsecureBackendProxy=true|false (BETA - default=true)<br/>
-AnyVolumeDataSource=true|false (ALPHA - default=false)<br/>
-AppArmor=true|false (BETA - default=true)<br/>
-BalanceAttachedNodeVolumes=true|false (ALPHA - default=false)<br/>
-BoundServiceAccountTokenVolume=true|false (ALPHA - default=false)<br/>
-CPUManager=true|false (BETA - default=true)<br/>
-CSIInlineVolume=true|false (BETA - default=true)<br/>
-CSIMigration=true|false (BETA - default=true)<br/>
-CSIMigrationAWS=true|false (BETA - default=false)<br/>
-CSIMigrationAWSComplete=true|false (ALPHA - default=false)<br/>
-CSIMigrationAzureDisk=true|false (BETA - default=false)<br/>
-CSIMigrationAzureDiskComplete=true|false (ALPHA - default=false)<br/>
-CSIMigrationAzureFile=true|false (ALPHA - default=false)<br/>
-CSIMigrationAzureFileComplete=true|false (ALPHA - default=false)<br/>
-CSIMigrationGCE=true|false (BETA - default=false)<br/>
-CSIMigrationGCEComplete=true|false (ALPHA - default=false)<br/>
-CSIMigrationOpenStack=true|false (BETA - default=false)<br/>
-CSIMigrationOpenStackComplete=true|false (ALPHA - default=false)<br/>
-CSIMigrationvSphere=true|false (BETA - default=false)<br/>
-CSIMigrationvSphereComplete=true|false (BETA - default=false)<br/>
-CSIServiceAccountToken=true|false (ALPHA - default=false)<br/>
-CSIStorageCapacity=true|false (ALPHA - default=false)<br/>
-CSIVolumeFSGroupPolicy=true|false (BETA - default=true)<br/>
-ConfigurableFSGroupPolicy=true|false (BETA - default=true)<br/>
-CronJobControllerV2=true|false (ALPHA - default=false)<br/>
-CustomCPUCFSQuotaPeriod=true|false (ALPHA - default=false)<br/>
-DefaultPodTopologySpread=true|false (BETA - default=true)<br/>
-DevicePlugins=true|false (BETA - default=true)<br/>
-DisableAcceleratorUsageMetrics=true|false (BETA - default=true)<br/>
-DownwardAPIHugePages=true|false (ALPHA - default=false)<br/>
-DynamicKubeletConfig=true|false (BETA - default=true)<br/>
-EfficientWatchResumption=true|false (ALPHA - default=false)<br/>
-EndpointSlice=true|false (BETA - default=true)<br/>
-EndpointSliceNodeName=true|false (ALPHA - default=false)<br/>
-EndpointSliceProxying=true|false (BETA - default=true)<br/>
-EndpointSliceTerminatingCondition=true|false (ALPHA - default=false)<br/>
-EphemeralContainers=true|false (ALPHA - default=false)<br/>
-ExpandCSIVolumes=true|false (BETA - default=true)<br/>
-ExpandInUsePersistentVolumes=true|false (BETA - default=true)<br/>
-ExpandPersistentVolumes=true|false (BETA - default=true)<br/>
-ExperimentalHostUserNamespaceDefaulting=true|false (BETA - default=false)<br/>
-GenericEphemeralVolume=true|false (ALPHA - default=false)<br/>
-GracefulNodeShutdown=true|false (ALPHA - default=false)<br/>
-HPAContainerMetrics=true|false (ALPHA - default=false)<br/>
-HPAScaleToZero=true|false (ALPHA - default=false)<br/>
-HugePageStorageMediumSize=true|false (BETA - default=true)<br/>
-IPv6DualStack=true|false (ALPHA - default=false)<br/>
-ImmutableEphemeralVolumes=true|false (BETA - default=true)<br/>
-KubeletCredentialProviders=true|false (ALPHA - default=false)<br/>
-KubeletPodResources=true|false (BETA - default=true)<br/>
-LegacyNodeRoleBehavior=true|false (BETA - default=true)<br/>
-LocalStorageCapacityIsolation=true|false (BETA - default=true)<br/>
-LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - default=false)<br/>
-MixedProtocolLBService=true|false (ALPHA - default=false)<br/>
-NodeDisruptionExclusion=true|false (BETA - default=true)<br/>
-NonPreemptingPriority=true|false (BETA - default=true)<br/>
-PodDisruptionBudget=true|false (BETA - default=true)<br/>
-PodOverhead=true|false (BETA - default=true)<br/>
-ProcMountType=true|false (ALPHA - default=false)<br/>
-QOSReserved=true|false (ALPHA - default=false)<br/>
-RemainingItemCount=true|false (BETA - default=true)<br/>
-RemoveSelfLink=true|false (BETA - default=true)<br/>
-RootCAConfigMap=true|false (BETA - default=true)<br/>
-RotateKubeletServerCertificate=true|false (BETA - default=true)<br/>
-RunAsGroup=true|false (BETA - default=true)<br/>
-ServerSideApply=true|false (BETA - default=true)<br/>
-ServiceAccountIssuerDiscovery=true|false (BETA - default=true)<br/>
-ServiceLBNodePortControl=true|false (ALPHA - default=false)<br/>
-ServiceNodeExclusion=true|false (BETA - default=true)<br/>
-ServiceTopology=true|false (ALPHA - default=false)<br/>
-SetHostnameAsFQDN=true|false (BETA - default=true)<br/>
-SizeMemoryBackedVolumes=true|false (ALPHA - default=false)<br/>
-StorageVersionAPI=true|false (ALPHA - default=false)<br/>
-StorageVersionHash=true|false (BETA - default=true)<br/>
-Sysctls=true|false (BETA - default=true)<br/>
-TTLAfterFinished=true|false (ALPHA - default=false)<br/>
-TopologyManager=true|false (BETA - default=true)<br/>
-ValidateProxyRedirects=true|false (BETA - default=true)<br/>
-WarningHeaders=true|false (BETA - default=true)<br/>
-WinDSR=true|false (ALPHA - default=false)<br/>
-WinOverlay=true|false (BETA - default=true)<br/>
-WindowsEndpointSliceProxying=true|false (ALPHA - default=false)<br/>
-(DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-用于 alpha 实验性质的特性开关组，每个开关以 key=value 形式表示。当前可用开关包括：
-APIListChunking=true|false (BETA - 默认值为 true)<br/>
-APIPriorityAndFairness=true|false (BETA - 默认值为 true)<br/>
-APIResponseCompression=true|false (BETA - 默认值为 true)<br/>
-APIServerIdentity=true|false (ALPHA - 默认值为 false)<br/>
-AllAlpha=true|false (ALPHA - 默认值为 false)<br/>
-AllBeta=true|false (BETA - 默认值为 false)<br/>
-AllowInsecureBackendProxy=true|false (BETA - 默认值为 true)<br/>
-AnyVolumeDataSource=true|false (ALPHA - 默认值为 false)<br/>
-AppArmor=true|false (BETA - 默认值为 true)<br/>
-BalanceAttachedNodeVolumes=true|false (ALPHA - 默认值为 false)<br/>
-BoundServiceAccountTokenVolume=true|false (ALPHA - 默认值为 false)<br/>
-CPUManager=true|false (BETA - 默认值为 true)<br/>
-CSIInlineVolume=true|false (BETA - 默认值为 true)<br/>
-CSIMigration=true|false (BETA - 默认值为 true)<br/>
-CSIMigrationAWS=true|false (BETA - 默认值为 false)<br/>
-CSIMigrationAWSComplete=true|false (ALPHA - 默认值为 false)<br/>
-CSIMigrationAzureDisk=true|false (BETA - 默认值为 false)<br/>
-CSIMigrationAzureDiskComplete=true|false (ALPHA - 默认值为 false)<br/>
-CSIMigrationAzureFile=true|false (ALPHA - 默认值为 false)<br/>
-CSIMigrationAzureFileComplete=true|false (ALPHA - 默认值为 false)<br/>
-CSIMigrationGCE=true|false (BETA - 默认值为 false)<br/>
-CSIMigrationGCEComplete=true|false (ALPHA - 默认值为 false)<br/>
-CSIMigrationOpenStack=true|false (BETA - 默认值为 false)<br/>
-CSIMigrationOpenStackComplete=true|false (ALPHA - 默认值为 false)<br/>
-CSIMigrationvSphere=true|false (BETA - 默认值为 false)<br/>
-CSIMigrationvSphereComplete=true|false (BETA - 默认值为 false)<br/>
-CSIServiceAccountToken=true|false (ALPHA - 默认值为 false)<br/>
-CSIStorageCapacity=true|false (ALPHA - 默认值为 false)<br/>
-CSIVolumeFSGroupPolicy=true|false (BETA - 默认值为 true)<br/>
-ConfigurableFSGroupPolicy=true|false (BETA - 默认值为 true)<br/>
-CronJobControllerV2=true|false (ALPHA - 默认值为 false)<br/>
-CustomCPUCFSQuotaPeriod=true|false (ALPHA - 默认值为 false)<br/>
-DefaultPodTopologySpread=true|false (BETA - 默认值为 true)<br/>
-DevicePlugins=true|false (BETA - 默认值为 true)<br/>
-DisableAcceleratorUsageMetrics=true|false (BETA - 默认值为 true)<br/>
-DownwardAPIHugePages=true|false (ALPHA - 默认值为 false)<br/>
-DynamicKubeletConfig=true|false (BETA - 默认值为 true)<br/>
-EfficientWatchResumption=true|false (ALPHA - 默认值为 false)<br/>
-EndpointSlice=true|false (BETA - 默认值为 true)<br/>
-EndpointSliceNodeName=true|false (ALPHA - 默认值为 false)<br/>
-EndpointSliceProxying=true|false (BETA - 默认值为 true)<br/>
-EndpointSliceTerminatingCondition=true|false (ALPHA - 默认值为 false)<br/>
-EphemeralContainers=true|false (ALPHA - 默认值为 false)<br/>
-ExpandCSIVolumes=true|false (BETA - 默认值为 true)<br/>
-ExpandInUsePersistentVolumes=true|false (BETA - 默认值为 true)<br/>
-ExpandPersistentVolumes=true|false (BETA - 默认值为 true)<br/>
-ExperimentalHostUserNamespaceDefaulting=true|false (BETA - 默认值为 false)<br/>
-GenericEphemeralVolume=true|false (ALPHA - 默认值为 false)<br/>
-GracefulNodeShutdown=true|false (ALPHA - 默认值为 false)<br/>
-HPAContainerMetrics=true|false (ALPHA - 默认值为 false)<br/>
-HPAScaleToZero=true|false (ALPHA - 默认值为 false)<br/>
-HugePageStorageMediumSize=true|false (BETA - 默认值为 true)<br/>
-IPv6DualStack=true|false (ALPHA - 默认值为 false)<br/>
-ImmutableEphemeralVolumes=true|false (BETA - 默认值为 true)<br/>
-KubeletCredentialProviders=true|false (ALPHA - 默认值为 false)<br/>
-KubeletPodResources=true|false (BETA - 默认值为 true)<br/>
-LegacyNodeRoleBehavior=true|false (BETA - 默认值为 true)<br/>
-LocalStorageCapacityIsolation=true|false (BETA - 默认值为 true)<br/>
-LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - 默认值为 false)<br/>
-MixedProtocolLBService=true|false (ALPHA - 默认值为 false)<br/>
-NodeDisruptionExclusion=true|false (BETA - 默认值为 true)<br/>
-NonPreemptingPriority=true|false (BETA - 默认值为 true)<br/>
-PodDisruptionBudget=true|false (BETA - 默认值为 true)<br/>
-PodOverhead=true|false (BETA - 默认值为 true)<br/>
-ProcMountType=true|false (ALPHA - 默认值为 false)<br/>
-QOSReserved=true|false (ALPHA - 默认值为 false)<br/>
-RemainingItemCount=true|false (BETA - 默认值为 true)<br/>
-RemoveSelfLink=true|false (BETA - 默认值为 true)<br/>
-RootCAConfigMap=true|false (BETA - 默认值为 true)<br/>
-RotateKubeletServerCertificate=true|false (BETA - 默认值为 true)<br/>
-RunAsGroup=true|false (BETA - 默认值为 true)<br/>
-ServerSideApply=true|false (BETA - 默认值为 true)<br/>
-ServiceAccountIssuerDiscovery=true|false (BETA - 默认值为 true)<br/>
-ServiceLBNodePortControl=true|false (ALPHA - 默认值为 false)<br/>
-ServiceNodeExclusion=true|false (BETA - 默认值为 true)<br/>
-ServiceTopology=true|false (ALPHA - 默认值为 false)<br/>
-SetHostnameAsFQDN=true|false (BETA - 默认值为 true)<br/>
-SizeMemoryBackedVolumes=true|false (ALPHA - 默认值为 false)<br/>
-StorageVersionAPI=true|false (ALPHA - 默认值为 false)<br/>
-StorageVersionHash=true|false (BETA - 默认值为 true)<br/>
-Sysctls=true|false (BETA - 默认值为 true)<br/>
-TTLAfterFinished=true|false (ALPHA - 默认值为 false)<br/>
-TopologyManager=true|false (BETA - 默认值为 true)<br/>
-ValidateProxyRedirects=true|false (BETA - 默认值为 true)<br/>
-WarningHeaders=true|false (BETA - 默认值为 true)<br/>
-WinDSR=true|false (ALPHA - 默认值为 false)<br/>
-WinOverlay=true|false (BETA - 默认值为 true)<br/>
-WindowsEndpointSliceProxying=true|false (ALPHA - 默认值为 false)<br/>
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--file-check-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `20s`-->默认值：<code>20s</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Duration between checking config files for new data. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-检查配置文件中新数据的时间间隔。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--hairpin-mode string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `promiscuous-bridge`-->默认值：<code>promiscuous-bridge</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-How should the kubelet setup hairpin NAT. This allows endpoints of a Service to load balance back to themselves if they should try to access their own Service. Valid values are `promiscuous-bridge`, `hairpin-veth` and `none`. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-设置 kubelet 执行发夹模式（hairpin）网络地址转译的方式。
-该模式允许后端端点对其自身服务的访问能够再次经由负载均衡转发回自身。
-可选项包括 “<code>promiscuous-bridge</code>”、“<code>hairpin-veth</code>” 和 “<code>none</code>”。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--healthz-bind-address ip&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `127.0.0.1`-->默认值：<code>127.0.0.1</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The IP address for the healthz server to serve on (set to `0.0.0.0` for all IPv4 interfaces and `::` for all IPv6 interfaces). (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-用于运行 healthz 服务器的 IP 地址（设置为 <code>0.0.0.0</code> 表示使用所有 IPv4 接口，
-设置为 <code>::</code> 表示使用所有 IPv6 接口。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--healthz-port int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 10248-->默认值：10248</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The port of the localhost healthz endpoint (set to `0` to disable). (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-本地 healthz 端点使用的端口（设置为 0 表示禁用）。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-help for kubelet
--->
-kubelet 操作的帮助命令
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--hostname-override string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If non-empty, will use this string as identification instead of the actual hostname. If `--cloud-provider` is set, the cloud provider determines the name of the node (consult cloud provider documentation to determine if and how the hostname is used).
--->
-如果为非空，将使用此字符串而不是实际的主机名作为节点标识。如果设置了
-<code>--cloud-provider</code>，则云驱动将确定节点的名称
-（请查阅云服务商文档以确定是否以及如何使用主机名）。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--housekeeping-interval duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `10s`-->默认值：<code>10s</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Interval between container housekeepings (default 10s)
--->
-清理容器操作的时间间隔。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--http-check-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `20s`-->默认值：<code>20s</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Duration between checking HTTP for new data. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-HTTP 服务以获取新数据的时间间隔。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--image-credential-provider-bin-dir string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The path to the directory where credential provider plugin binaries are located.
--->
-指向凭据提供组件可执行文件所在目录的路径。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--image-credential-provider-config string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The path to the credential provider plugin config file.</td>
--->
-指向凭据提供插件配置文件所在目录的路径。
-</tr>
-
-<tr>
-<td colspan="2">--image-gc-high-threshold int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 85-->默认值：85</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The percent of disk usage after which image garbage collection is always run. Values must be within the range [0, 100], To disable image garbage collection, set to 100.   (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-镜像垃圾回收上限。磁盘使用空间达到该百分比时，镜像垃圾回收将持续工作。
-值必须在 [0，100] 范围内。要禁用镜像垃圾回收，请设置为 100。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--image-gc-low-threshold int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 80-->默认值：80</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The percent of disk usage before which image garbage collection is never run. Lowest disk usage to garbage collect to. Values must be within the range [0, 100] and should not be larger than that of `--image-gc-high-threshold`. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-镜像垃圾回收下限。磁盘使用空间在达到该百分比之前，镜像垃圾回收操作不会运行。
-值必须在 [0，100] 范围内，并且不得大于 <code>--image-gc-high-threshold</code>的值。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--image-pull-progress-deadline duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `1m0s`-->默认值：<code>1m0s</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If no pulling progress is made before this deadline, the image pulling will be cancelled. This docker-specific flag only works when container-runtime is set to `docker`.
--->
-如果在该参数值所设置的期限之前没有拉取镜像的进展，镜像拉取操作将被取消。
-仅当容器运行环境设置为 <code>docker</code> 时，此特定于 docker 的参数才有效。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--image-service-endpoint string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-[Experimental] The endpoint of remote image service. If not specified, it will be the same with `--container-runtime-endpoint` by default. Currently UNIX socket endpoint is supported on Linux, while npipe and TCP endpoints are supported on Windows.  Examples: `unix:///var/run/dockershim.sock`, `npipe:////./pipe/dockershim`
--->
-[实验性特性] 远程镜像服务的端点。若未设定则默认情况下使用 <code>--container-runtime-endpoint</code>
-的值。目前支持的类型包括在 Linux 系统上的 UNIX 套接字端点和 Windows 系统上的 npipe 和 TCP 端点。
-例如：<code>unix:///var/run/dockershim.sock</code>、<code>npipe:////./pipe/dockershim</code>。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--iptables-drop-bit int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 15-->默认值：15</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The bit of the `fwmark` space to mark packets for dropping. Must be within the range [0, 31]. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-标记数据包将被丢弃的 fwmark 位设置。必须在 [0，31] 范围内。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--iptables-masquerade-bit int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 14-->默认值：14</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The bit of the `fwmark` space to mark packets for SNAT. Must be within the range [0, 31]. Please match this parameter with corresponding parameter in `kube-proxy`. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-标记数据包将进行 SNAT 的 fwmark 空间位设置。必须在 [0，31] 范围内。
-请将此参数与 <code>kube-proxy</code> 中的相应参数匹配。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--keep-terminated-pod-volumes</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Keep terminated pod volumes mounted to the node after the pod terminates. Can be useful for debugging volume related issues. (DEPRECATED: will be removed in a future version)
--->
-设置为 true 表示 Pod 终止后仍然保留之前挂载过的卷，常用于调试与卷有关的问题。
-已弃用：将未来版本中移除。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--kernel-memcg-notification</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If enabled, the kubelet will integrate with the kernel memcg notification to determine if memory eviction thresholds are crossed rather than polling. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-若启用，则 kubelet 将与内核中的 memcg 通知机制集成，不再使用轮询的方式来判定
-是否 Pod 达到内存驱逐阈值。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--kube-api-burst int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 10-->默认值：10</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Burst to use while talking with kubernetes apiserver. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-每秒发送到 apiserver 的突发请求数量上限。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--kube-api-content-type string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `application/vnd.kubernetes.protobuf`-->默认值：<code>application/vnd.kubernetes.protobuf</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Content type of requests sent to apiserver. (default "application/vnd.kubernetes.protobuf") (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-发送到 apiserver 的请求的内容类型。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--kube-api-qps int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 5-->默认值：5</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-QPS to use while talking with kubernetes apiserver. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-与 apiserver 通信的每秒查询个数（QPS）。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--kube-reserved mapStringString&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: &lt;None&gt;-->默认值：&lt;None&gt;</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-A set of `<resource name>=<resource quantity>` (e.g. `cpu=200m,memory=500Mi,ephemeral-storage=1Gi,pid='100'`) pairs that describe resources reserved for kubernetes system components. Currently `cpu`, `memory` and local `ephemeral-storage` for root file system are supported. See http://kubernetes.io/docs/user-guide/compute-resources for more detail. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-kubernetes 系统预留的资源配置，以一组 <code>资源名称=资源数量</code> 格式表示。
-（例如：<code>cpu=200m,memory=500Mi,ephemeral-storage=1Gi,pid='100'</code>）。
-当前支持 <code>cpu</code>、<code>memory</code> 和用于根文件系统的 <code>ephemeral-storage</code>。
-请参阅<a href="http://kubernetes.io/zh/docs/concepts/configuration/manage-resources-containers/">相关文档</a>获取更多信息。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--kube-reserved-cgroup string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `''`-->默认值：<code>""</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Absolute name of the top level cgroup that is used to manage kubernetes components for which compute resources were reserved via `--kube-reserved` flag. Ex. `/kube-reserved`. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-给出某个顶层 cgroup 绝对名称，该 cgroup 用于管理通过标志 <code>--kube-reserved</code>
-为 kubernetes 组件所预留的计算资源。例如：<code>"/kube-reserved"</code>。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--kubeconfig string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Path to a kubeconfig file, specifying how to connect to the API server. Providing `--kubeconfig` enables API server mode, omitting `--kubeconfig` enables standalone mode. 
--->
-kubeconfig 配置文件的路径，指定如何连接到 API 服务器。
-提供 <code>--kubeconfig</code> 将启用 API 服务器模式，而省略 <code>--kubeconfig</code> 将启用独立模式。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--kubelet-cgroups string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Optional absolute name of cgroups to create and run the Kubelet in. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-用于创建和运行 kubelet 的 cgroup 的绝对名称。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--lock-file string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-<Warning: Alpha feature> The path to file for kubelet to use as a lock file.
--->
-&lt;警告：alpha 特性&gt; kubelet 使用的锁文件的路径。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--log-backtrace-at traceLocation&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `:0`-->默认值：<code>:0</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-When logging hits line `<file>:<N>`, emit a stack trace.
--->
-形式为 <code>&lt;file&gt;:&lt;N&gt;</code>。
-当日志逻辑执行到命中 &lt;file&gt; 的第 &lt;N&gt; 行时，转储调用堆栈。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--log-dir string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If non-empty, write log files in this directory
--->
-如果此值为非空，则在所指定的目录中写入日志文件。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--log-file string</td>  
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If non-empty, use this log file
--->
-如果此值非空，使用所给字符串作为日志文件名。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--log-file-max-size uint&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 1800-->默认值：1800</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Defines the maximum size a log file can grow to. Unit is megabytes. If the value is 0, the maximum file size is unlimited.
--->
-设置日志文件的最大值。单位为兆字节（M）。如果值为 0，则表示文件大小无限制。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--log-flush-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `5s`-->默认值：<code>5s</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Maximum number of seconds between log flushes
--->
-两次日志刷新之间的最大秒数（默认值为 5s）。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--logging-format string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `text`-->默认值：<code>"text"</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Sets the log format. Permitted formats: `text`, `json`.\nNon-default formats don't honor these flags: `--add-dir-header`, `--alsologtostderr`, `--log-backtrace-at`, `--log_dir`, `--log-file`, `--log-file-max-size`, `--logtostderr`, `--skip_headers`, `--skip_log_headers`, `--stderrthreshold`, `--log-flush-frequency`.\nNon-default choices are currently alpha and subject to change without warning. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-设置日志文件格式。可以设置的格式有：<code>"text"</code>、<code>"json"</code>。
-非默认的格式不会使用以下标志的配置：<code>--add-dir-header</code>, <code>--alsologtostderr</code>,
-<code>--log-backtrace-at</code>, <code>--log-dir</code>, <code>--log-file</code>,
-<code>--log-file-max-size</code>, <code>--logtostderr</code>, <code>--skip-headers</code>,
-<code>--skip-log-headers</code>, <code>--stderrthreshold</code>, <code>--log-flush-frequency</code>。
-非默认选项的其它值都应视为 Alpha 特性，将来出现更改时不会额外警告。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--logtostderr&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `true`-->默认值：<code>true</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-log to standard error instead of files (default true)
--->
-日志输出到 stderr 而不是文件。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--make-iptables-util-chains&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `true`-->默认值：<code>true</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If true, kubelet will ensure `iptables` utility rules are present on host. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-设置为 true 表示 kubelet 将确保 <code>iptables</code> 规则在主机上存在。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--manifest-url string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-URL for accessing additional Pod specifications to run (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-用于访问要运行的其他 Pod 规范的 URL。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--manifest-url-header string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Comma-separated list of HTTP headers to use when accessing the URL provided to `--manifest-url`. Multiple headers with the same name will be added in the same order provided. This flag can be repeatedly invoked. For example: `--manifest-url-header 'a:hello,b:again,c:world' --manifest-url-header 'b:beautiful'` (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-取值为由 HTTP 头部组成的逗号分隔列表，在访问 <code>--manifest-url</code> 所给出的 URL 时使用。
-名称相同的多个头部将按所列的顺序添加。该参数可以多次使用。例如：
-<code>--manifest-url-header 'a:hello,b:again,c:world' --manifest-url-header 'b:beautiful'</code>。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-<tr>
-<td colspan="2">--master-service-namespace string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `default`-->默认值：<code>default</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The namespace from which the kubernetes master services should be injected into pods. (DEPRECATED: This flag will be removed in a future version.)
--->
-kubelet 向 Pod 注入 Kubernetes 主控服务信息时使用的命名空间。
-已弃用：此标志将在未来的版本中删除。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--max-open-files int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 1000000-->默认值：1000000</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Number of files that can be opened by Kubelet process. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-kubelet 进程可以打开的最大文件数量。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--max-pods int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 110-->默认值：110</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Number of Pods that can run on this Kubelet. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-此 kubelet 能运行的 Pod 最大数量。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--maximum-dead-containers int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: -1-->默认值：-1</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Maximum number of old instances of containers to retain globally. Each container takes up some disk space. To disable, set to a negative number. (DEPRECATED: Use `--eviction-hard` or `--eviction-soft` instead. Will be removed in a future version.)
--->
-设置全局可保留的已停止容器实例个数上限。
-每个实例会占用一些磁盘空间。要禁用，请设置为负数。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--maximum-dead-containers-per-container int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 1-->默认值：1</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Maximum number of old instances to retain per container. Each container takes up some disk space. (DEPRECATED: Use --eviction-hard or --eviction-soft instead. Will be removed in a future version.)
--->
-每个已停止容器可以保留的的最大实例数量。每个容器占用一些磁盘空间。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--minimum-container-ttl-duration duration</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Minimum age for a finished container before it is garbage collected.  Examples: '300ms', '10s' or '2h45m' (DEPRECATED: Use --eviction-hard or --eviction-soft instead. Will be removed in a future version.)
--->
-已结束的容器在被垃圾回收清理之前的最少存活时间。
-例如：<code>300ms</code>、<code>10s</code> 或者 <code>2h45m</code>。
-已弃用：请改用 <code>--eviction-hard</code> 或者 <code>--eviction-soft</code>。
-此标志将在未来的版本中删除。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--minimum-image-ttl-duration duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `2m0s`-->默认值：<code>2m0s</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Minimum age for an unused image before it is garbage collected.  Examples: `300ms`, `10s` or `2h45m`. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-不再使用的镜像在被垃圾回收清理之前的最少存活时间。
-例如：<code>300ms</code>、<code>10s</code> 或者 <code>2h45m</code>。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--network-plugin string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-<Warning: Alpha feature> The name of the network plugin to be invoked for various events in kubelet/pod lifecycle. This docker-specific flag only works when container-runtime is set to docker.
--->
-&lt;警告：alpha 特性&gt; 设置 kubelet/Pod 生命周期中各种事件调用的网络插件的名称。
-仅当容器运行环境设置为 <code>docker</code> 时，此特定于 docker 的参数才有效。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--network-plugin-mtu int32</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-<Warning: Alpha feature> The MTU to be passed to the network plugin, to override the default. Set to 0 to use the default 1460 MTU. This docker-specific flag only works when container-runtime is set to docker.
--->
-&lt;警告：alpha 特性&gt; 传递给网络插件的 MTU 值，将覆盖默认值。
-设置为 0 则使用默认的 MTU 1460。仅当容器运行环境设置为 <code>docker</code> 时，
-此特定于 docker 的参数才有效。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--node-ip string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-IP address of the node. If set, kubelet will use this IP address for the node
--->
-节点的 IP 地址。如果设置，kubelet 将使用该 IP 地址作为节点的 IP 地址。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--node-labels mapStringString</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-&lt;Warning: Alpha feature&gt;Labels to add when registering the node in the cluster. Labels must be `key=value pairs` separated by `,`. Labels in the `kubernetes.io` namespace must begin with an allowed prefix (`kubelet.kubernetes.io`, `node.kubernetes.io`) or be in the specifically allowed set (`beta.kubernetes.io/arch`, `beta.kubernetes.io/instance-type`, `beta.kubernetes.io/os`, `failure-domain.beta.kubernetes.io/region`, `failure-domain.beta.kubernetes.io/zone`, `kubernetes.io/arch`, `kubernetes.io/hostname`, `kubernetes.io/os`, `node.kubernetes.io/instance-type`, `topology.kubernetes.io/region`, `topology.kubernetes.io/zone`)
--->
-&lt;警告：alpha 特性&gt; kubelet 在集群中注册本节点时设置的标签。标签以
-<code>key=value</code> 的格式表示，多个标签以逗号分隔。名字空间 <code>kubernetes.io</code>
-中的标签必须以 <code>kubelet.kubernetes.io</code> 或 <code>node.kubernetes.io</code> 为前缀，
-或者在以下明确允许范围内：
-<code>beta.kubernetes.io/arch</code>, <code>beta.kubernetes.io/instance-type</code>,
-<code>beta.kubernetes.io/os</code>, <code>failure-domain.beta.kubernetes.io/region</code>,
-<code>failure-domain.beta.kubernetes.io/zone</code>, <code>kubernetes.io/arch</code>,
-<code>kubernetes.io/hostname</code>, <code>kubernetes.io/os</code>,
-<code>node.kubernetes.io/instance-type</code>, <code>topology.kubernetes.io/region</code>,
-<code>topology.kubernetes.io/zone</code>。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--node-status-max-images int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 50-->默认值：50</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The maximum number of images to report in `node.status.images`. If `-1` is specified, no cap will be applied. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-在 <code>node.status.images</code> 中可以报告的最大镜像数量。如果指定为 -1，则不设上限。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--node-status-update-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `10s`-->默认值：<code>10s</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Specifies how often kubelet posts node status to master. Note: be cautious when changing the constant, it must work with nodeMonitorGracePeriod in Node controller. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-指定 kubelet 向主控节点汇报节点状态的时间间隔。注意：更改此常量时请务必谨慎，
-它必须与节点控制器中的 <code>nodeMonitorGracePeriod</code> 一起使用。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--non-masquerade-cidr string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `10.0.0.0/8`-->默认值：<code>10.0.0.0/8</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Traffic to IPs outside this range will use IP masquerade. Set to '0.0.0.0/0' to never masquerade. (default "10.0.0.0/8") (DEPRECATED: will be removed in a future version)
--->
-kubelet 向该 IP 段之外的 IP 地址发送的流量将使用 IP 伪装技术。
-设置为 <code>0.0.0.0/0</code> 则不使用伪装。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--one-output</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If true, only write logs to their native severity level (vs also writing to each lower severity level.
--->
-如果设置此标志为 <code>true</code>，则仅将日志写入其原来的严重性级别中，
-而不是同时将其写入更低严重性级别中。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--oom-score-adj int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: -999-->默认值：-999</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The oom-score-adj value for kubelet process. Values must be within the range [-1000, 1000] (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-kubelet 进程的 oom-score-adj 参数值。有效范围为 <code>[-1000，1000]</code>。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--pod-cidr string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The CIDR to use for pod IP addresses, only used in standalone mode. In cluster mode, this is obtained from the master. For IPv6, the maximum number of IP's allocated is 65536 (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-用于给 Pod 分配 IP 地址的 CIDR 地址池，仅在独立运行模式下使用。
-在集群模式下，CIDR 设置是从主服务器获取的。对于 IPv6，分配的 IP 的最大数量为 65536。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--pod-infra-container-image string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `k8s.gcr.io/pause:3.2`-->默认值：<code>k8s.gcr.io/pause:3.2</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
- Specified image will not be pruned by the image garbage collector. When container-runtime is set to `docker`, all containers in each pod will use the network/ipc namespaces from this image. Other CRI implementations have their own configuration to set this image.
--->
-所指定的镜像不会被镜像垃圾收集器删除。
-当容器运行环境设置为 <code>docker</code> 时，各个 Pod 中的所有容器都会
-使用此镜像中的网络和 IPC 名字空间。
-其他 CRI 实现有自己的配置来设置此镜像。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--pod-manifest-path string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Path to the directory containing static pod files to run, or the path to a single static pod file. Files starting with dots will be ignored. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-设置包含要运行的静态 Pod 的文件的路径，或单个静态 Pod 文件的路径。以点（<code>.</code>）
-开头的文件将被忽略。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--pod-max-pids int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: -1-->默认值：-1</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Set the maximum number of processes per pod.  If `-1`, the kubelet defaults to the node allocatable PID capacity. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-设置每个 Pod 中的最大进程数目。如果为 -1，则 kubelet 使用节点可分配的 PID 容量作为默认值。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--pods-per-core int32</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Number of Pods per core that can run on this Kubelet. The total number of Pods on this Kubelet cannot exceed `--max-pods`, so `--max-pods` will be used if this calculation results in a larger number of Pods allowed on the Kubelet. A value of `0` disables this limit. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-kubelet 在每个处理器核上可运行的 Pod 数量。此 kubelet 上的 Pod 总数不能超过
-<code>--max-pods</code> 标志值。因此，如果此计算结果导致在 kubelet 
-上允许更多数量的 Pod，则使用 <code>--max-pods</code> 值。值为 0 表示不作限制。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--port int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 10250-->默认值：10250</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The port for the Kubelet to serve on. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-kubelet 服务监听的本机端口号。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--protect-kernel-defaults</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Default kubelet behaviour for kernel tuning. If set, kubelet errors if any of kernel tunables is different than kubelet defaults. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-设置 kubelet 的默认内核调整行为。如果已设置该参数，当任何内核可调参数与
-kubelet 默认值不同时，kubelet 都会出错。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--provider-id string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Unique identifier for identifying the node in a machine database, i.e cloud provider. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-设置主机数据库（即，云驱动）中用来标识节点的唯一标识。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--qos-reserved mapStringString</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-&lt;Warning: Alpha feature&gt; A set of `<resource name>=<percentage>` (e.g. `memory=50%`) pairs that describe how pod resource requests are reserved at the QoS level. Currently only memory is supported. Requires the `QOSReserved` feature gate to be enabled. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-&lt;警告：alpha 特性&gt; 设置在指定的 QoS 级别预留的 Pod 资源请求，以一组
-<code>"资源名称=百分比"</code> 的形式进行设置，例如 <code>memory=50%</code>。
-当前仅支持内存（memory）。要求启用 <code>QOSReserved</code> 特性门控。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--read-only-port int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 10255-->默认值：10255</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The read-only port for the Kubelet to serve on with no authentication/authorization (set to `0` to disable). (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-kubelet 可以在没有身份验证/鉴权的情况下提供只读服务的端口（设置为 0 表示禁用）。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--really-crash-for-testing</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If true, when panics occur crash. Intended for testing. (DEPRECATED: will be removed in a future version.)
--->
-设置为 true 表示发生失效时立即崩溃。仅用于测试。
-已弃用：将在未来版本中移除。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--redirect-container-streaming</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Enables container streaming redirect. If false, kubelet will proxy container streaming data between the API server and container runtime; if `true`, kubelet will return an HTTP redirect to the API server, and the API server will access container runtime directly. The proxy approach is more secure, but introduces some overhead. The redirect approach is more performant, but less secure because the connection between apiserver and container runtime may not be authenticated. (DEPRECATED: Container streaming redirection will be removed from the kubelet in v1.20, and this flag will be removed in v1.22. For more details, see http://git.k8s.io/enhancements/keps/sig-node/20191205-container-streaming-requests.md)
--->
-启用容器流数据重定向。如果设置为 false，则 kubelet 将在 apiserver 和容器运行时
-之间转发容器流数据；如果设置为 true，则 kubelet 将返回指向 apiserver 的 HTTP 重定向信息，
-而 apiserver 将直接访问容器运行时。代理方法更安全，但会带来一些开销。
-重定向方法性能更高，但安全性较低，因为 apiserver 和容器运行时之间的连接可能未通过身份验证。<br/>
-已弃用：容器流数据重定向会在 v1.20 中从 kubelet 中移除，此标志会在 v1.22
-中移除。
-相关信息可参见<a href="http://git.k8s.io/enhancements/keps/sig-node/20191205-container-streaming-requests.md">改进说明</a>。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--register-node&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `true`-->默认值：<code>true</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Register the node with the API server. If `--kubeconfig` is not provided, this flag is irrelevant, as the Kubelet won't have an API server to register with.
--->
-将本节点注册到 API 服务器。如果未提供 <code>--kubeconfig</code> 标志设置，
-则此参数无关紧要，因为 kubelet 将没有要注册的 API 服务器。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--register-schedulable&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `true`-->默认值：true</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Register the node as schedulable. Won't have any effect if `--register-node` is false. (DEPRECATED: will be removed in a future version)
--->
-注册本节点为可调度的节点。当 <code>--register-node</code>标志为 false 时此设置无效。
-已弃用：此参数将在未来的版本中删除。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--register-with-taints mapStringString</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Register the node with the given list of taints (comma separated `<key>=<value>:<effect>`). No-op if `--register-node` is `false`. (DEPRECATED: will be removed in a future version)
--->
-设置本节点的污点标记，格式为 <code>&lt;key&gt;=&lt;value&gt;:&lt;effect&gt;</code>，
-以逗号分隔。当 <code>--register-node</code> 为 false 时此标志无效。
-已弃用：将在未来版本中移除。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--registry-burst int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 10-->默认值：10</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Maximum size of a bursty pulls, temporarily allows pulls to burst to this number, while still not exceeding `--registry-qps`. Only used if `--registry-qps > 0`. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-设置突发性镜像拉取的个数上限，在不超过 <code>--registration-qps</code> 设置值的前提下
-暂时允许此参数所给的镜像拉取个数。仅在 <code>--registry-qps</code> 大于 0 时使用。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--registry-qps int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 5</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If &gt; 0, limit registry pull QPS to this value.  If `0`, unlimited. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-如此值大于 0，可用来限制镜像仓库的 QPS 上限。设置为 0，表示不受限制。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--reserved-cpus string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-A comma-separated list of CPUs or CPU ranges that are reserved for system and kubernetes usage. This specific list will supersede cpu counts in `--system-reserved` and `--kube-reserved`. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-用逗号分隔的一组 CPU 或 CPU 范围列表，给出为系统和 Kubernetes 保留使用的 CPU。
-此列表所给出的设置优先于通过 <code>--system-reserved</code> 和
-<code>--kube-reskube-reserved</code> 所保留的 CPU 个数配置。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--resolv-conf string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `/etc/resolv.conf`-->默认值：<code>/etc/resolv.conf</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Resolver configuration file used as the basis for the container DNS resolution configuration. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-名字解析服务的配置文件名，用作容器 DNS 解析配置的基础。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--root-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `/var/lib/kubelet`-->默认值：<code>/var/lib/kubelet</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Directory path for managing kubelet files (volume mounts, etc).
--->
-设置用于管理 kubelet 文件的根目录（例如挂载卷的相关文件等）。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--rotate-certificates</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-&lt;Warning: Beta feature&gt; Auto rotate the kubelet client certificates by requesting new certificates from the `kube-apiserver` when the certificate expiration approaches. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-&lt;警告：Beta 特性&gt; 设置当客户端证书即将过期时 kubelet 自动从
-<code>kube-apiserver</code> 请求新的证书进行轮换。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--rotate-server-certificates</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Auto-request and rotate the kubelet serving certificates by requesting new certificates from the `kube-apiserver` when the certificate expiration approaches. Requires the `RotateKubeletServerCertificate` feature gate to be enabled, and approval of the submitted `CertificateSigningRequest` objects. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-当 kubelet 的服务证书即将过期时自动从 kube-apiserver 请求新的证书进行轮换。
-要求启用 <code>RotateKubeletServerCertificate</code> 特性门控，以及对提交的
-<code>CertificateSigningRequest</code> 对象进行批复（Approve）操作。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--runonce</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If `true`, exit after spawning pods from local manifests or remote urls. Exclusive with `--enable-server` (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-设置为 true 表示从本地清单或远程 URL 创建完 Pod 后立即退出 kubelet 进程。
-与 <code>--enable-server</code> 标志互斥。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--runtime-cgroups string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Optional absolute name of cgroups to create and run the runtime in.
--->
-设置用于创建和运行容器运行时的 cgroup 的绝对名称。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--runtime-request-timeout duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `2m0s`-->默认值：<code>2m0s</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Timeout of all runtime requests except long running request - `pull`, `logs`, `exec` and `attach`. When timeout exceeded, kubelet will cancel the request, throw out an error and retry later. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-设置除了长时间运行的请求（包括 <code>pull</code>、<code>logs</code>、<code>exec</code>
-和 <code>attach</code> 等操作）之外的其他运行时请求的超时时间。
-到达超时时间时，请求会被取消，抛出一个错误并会等待重试。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--seccomp-profile-root string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `/var/lib/kubelet/seccomp`-->默认值：<code>/var/lib/kubelet/seccomp</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-&lt;Warning: Alpha feature&gt; Directory path for seccomp profiles. (DEPRECATED: will be removed in 1.23, in favor of using the `<root-dir>/seccomp` directory)
--->
-&lt;警告：alpha 特性&gt; seccomp 配置文件目录。
-已弃用：将在 1.23 版本中移除，以使用 <code>&lt;root-dir&gt;/seccomp</code> 目录。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--serialize-image-pulls&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `true`-->默认值：<code>true</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Pull images one at a time. We recommend *not* changing the default value on nodes that run docker daemon with version &lt; 1.9 or an `aufs` storage backend. Issue #10959 has more details. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-逐一拉取镜像。建议 *不要* 在 docker 守护进程版本低于 1.9 或启用了 Aufs 存储后端的节点上
-更改默认值。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--skip-headers</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If true, avoid header prefixes in the log messages
--->
-设置为 true 时在日志消息中去掉标头前缀。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--skip-log-headers</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If true, avoid headers when opening log files
--->
-设置为 true，打开日志文件时去掉标头。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--stderrthreshold int&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: 2-->默认值：2</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-logs at or above this threshold go to stderr.
--->
-设置严重程度达到或超过此阈值的日志输出到标准错误输出。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--streaming-connection-idle-timeout duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `4h0m0s`-->默认值：<code>4h0m0s</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Maximum time a streaming connection can be idle before the connection is automatically closed. `0` indicates no timeout. Example: `5m`. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-设置流连接在自动关闭之前可以空闲的最长时间。0 表示没有超时限制。
-例如：<code>5m</code>。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--sync-frequency duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `1m0s`-->默认值：<code>1m0s</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Max period between synchronizing running containers and config. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-在运行中的容器与其配置之间执行同步操作的最长时间间隔。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--system-cgroups /</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Optional absolute name of cgroups in which to place all non-kernel processes that are not already inside a cgroup under `/`. Empty for no container. Rolling back the flag requires a reboot. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-此标志值为一个 cgroup 的绝对名称，用于所有尚未放置在根目录下某 cgroup 内的非内核进程。
-空值表示不指定 cgroup。回滚该参数需要重启机器。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--system-reserved mapStringString&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: none-->默认值：无</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-A set of `<resource name>=<resource quantity>` (e.g. `cpu=200m,memory=500Mi,ephemeral-storage=1Gi,pid='100'`) pairs that describe resources reserved for non-kubernetes components. Currently only `cpu` and `memory` are supported. See http://kubernetes.io/docs/user-guide/compute-resources for more detail. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-系统预留的资源配置，以一组 <code>资源名称=资源数量</code> 的格式表示，
-（例如：<code>cpu=200m,memory=500Mi,ephemeral-storage=1Gi,pid='100'</code>）。
-目前仅支持 <code>cpu</code> 和 <code>memory</code> 的设置。
-更多细节可参考
-<a href="http://kubernetes.io/zh/docs/concepts/configuration/manage-resources-containers/">相关文档</a>。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--system-reserved-cgroup string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `''`-->默认值：<code>""</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Absolute name of the top level cgroup that is used to manage non-kubernetes components for which compute resources were reserved via `--system-reserved` flag. Ex. `/system-reserved`. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-此标志给出一个顶层 cgroup 绝对名称，该 cgroup 用于管理非 kubernetes 组件，
-这些组件的计算资源通过 <code>--system-reserved</code> 标志进行预留。
-例如 <code>"/system-reserved"</code>。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--tls-cert-file string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-File containing x509 Certificate used for serving HTTPS (with intermediate certs, if any, concatenated after server cert). If `--tls-cert-file` and `--tls-private-key-file` are not provided, a self-signed certificate and key are generated for the public address and saved to the directory passed to `--cert-dir`. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-包含 x509 证书的文件路径，用于 HTTPS 认证。
-如果有中间证书，则中间证书要串接在在服务器证书之后。
-如果未提供 <code>--tls-cert-file</code> 和 <code>--tls-private-key-file</code>，
-kubelet 会为公开地址生成自签名证书和密钥，并将其保存到通过
-<code>--cert-dir</code> 指定的目录中。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--tls-cipher-suites string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Comma-separated list of cipher suites for the server. If omitted, the default Go cipher suites will be used. Possible values: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305,TLS_ECDHE_ECDSA_WITH_RC4_128_SHA,TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305,TLS_ECDHE_RSA_WITH_RC4_128_SHA,TLS_RSA_WITH_3DES_EDE_CBC_SHA,TLS_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_128_CBC_SHA256,TLS_RSA_WITH_AES_128_GCM_SHA256,TLS_RSA_WITH_AES_256_CBC_SHA,TLS_RSA_WITH_AES_256_GCM_SHA384,TLS_RSA_WITH_RC4_128_SHA (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-服务器端加密算法列表，以逗号分隔。如果不设置，则使用 Go 语言加密包的默认算法列表。<br/>
-可选加密算法包括：TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305,TLS_ECDHE_ECDSA_WITH_RC4_128_SHA,TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305,TLS_ECDHE_RSA_WITH_RC4_128_SHA,TLS_RSA_WITH_3DES_EDE_CBC_SHA,TLS_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_128_CBC_SHA256,TLS_RSA_WITH_AES_128_GCM_SHA256,TLS_RSA_WITH_AES_256_CBC_SHA,TLS_RSA_WITH_AES_256_GCM_SHA384,TLS_RSA_WITH_RC4_128_SHA <br/>
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--tls-min-version string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Minimum TLS version supported. Possible values: `VersionTLS10`, `VersionTLS11`, `VersionTLS12`, `VersionTLS13` (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-设置支持的最小 TLS 版本号，可选的版本号包括：<code>VersionTLS10</code>、
-<code>VersionTLS11</code>、<code>VersionTLS12</code> 和 <code>VersionTLS13</code>。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--tls-private-key-file string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-File containing x509 private key matching `--tls-cert-file`. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-包含与 <code>--tls-cert-file</code> 对应的 x509 私钥文件路径。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--topology-manager-policy string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `none`-->默认值：<code>none</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Topology Manager policy to use. Possible values: `none`, `best-effort`, `restricted`, `single-numa-node`. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-设置拓扑管理策略（Topology Manager policy）。可选值包括：<code>none</code>、
-<code>best-effort</code>、<code>restricted</code> 和 <code>single-numa-node</code>。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--topology-manager-scope string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `container`-->默认值：<code>container</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Scope to which topology hints applied. Topology Manager collects hints from Hint Providers and applies them to defined scope to ensure the pod admission. Possible values: 'container' (default), 'pod'. (default "container") (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's --config flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-拓扑提示信息使用范围。拓扑管理器从提示提供者（Hints Providers）处收集提示信息，
-并将其应用到所定义的范围以确保 Pod 准入。
-可选值包括：<code>container</code>（默认）、<code>pod</code>。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">-v, --v Level</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-number for the log level verbosity
--->
-设置 kubelet 日志级别详细程度的数值。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--version version[=true]</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Print version information and quit
--->
-打印 kubelet 版本信息并退出。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--vmodule moduleSpec</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Comma-separated list of `pattern=N` settings for file-filtered logging
--->
-以逗号分隔的 <code>pattern=N</code> 设置列表，用于文件过滤的日志记录
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--volume-plugin-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `/usr/libexec/kubernetes/kubelet-plugins/volume/exec/`-->默认值：<code>/usr/libexec/kubernetes/kubelet-plugins/volume/exec/</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The full path of the directory in which to search for additional third party volume plugins. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-用来搜索第三方存储卷插件的目录。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--volume-stats-agg-period duration&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<!--Default: `1m0s`-->默认值：<code>1m0s</code></td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Specifies interval for kubelet to calculate and cache the volume disk usage for all pods and volumes. To disable volume calculations, set to `0`. (DEPRECATED: This parameter should be set via the config file specified by the Kubelet's `--config` flag. See https://kubernetes.io/docs/tasks/administer-cluster/kubelet-config-file/ for more information.)
--->
-指定 kubelet 计算和缓存所有 Pod 和卷的磁盘用量总值的时间间隔。要禁用磁盘用量计算，
-请设置为 0。
-已弃用：应在 <code>--config</code> 所给的配置文件中进行设置。
-（<a href="https://kubernetes.io/zh/docs/tasks/administer-cluster/kubelet-config-file/">进一步了解</a>）
-</td>
-</tr>
-</tbody>
-</table>
-
diff --git a/content/zh/docs/reference/config-api/apiserver-webhookadmission.v1.md b/content/zh/docs/reference/config-api/apiserver-webhookadmission.v1.md
deleted file mode 100644
index fb45ca7b1a..0000000000
--- a/content/zh/docs/reference/config-api/apiserver-webhookadmission.v1.md
+++ /dev/null
@@ -1,46 +0,0 @@
----
-title: WebhookAdmission Configuration (v1)
-content_type: tool-reference
-package: apiserver.config.k8s.io/v1
-auto_generated: true
----
-Package v1 is the v1 version of the API.
-
-## Resource Types 
-
-
-- [WebhookAdmission](#apiserver-config-k8s-io-v1-WebhookAdmission)
-  
-    
-
-
-## `WebhookAdmission`     {#apiserver-config-k8s-io-v1-WebhookAdmission}
-    
-
-
-
-
-WebhookAdmission provides configuration for the webhook admission controller.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>apiserver.config.k8s.io/v1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>WebhookAdmission</code></td></tr>
-    
-
-  
-  
-<tr><td><code>kubeConfigFile</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   KubeConfigFile is the path to the kubeconfig file.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-  
diff --git a/content/zh/docs/reference/config-api/client-authentication.v1beta1.md b/content/zh/docs/reference/config-api/client-authentication.v1beta1.md
deleted file mode 100644
index e78edd23f6..0000000000
--- a/content/zh/docs/reference/config-api/client-authentication.v1beta1.md
+++ /dev/null
@@ -1,252 +0,0 @@
----
-title: Client Authentication (v1beta1)
-content_type: tool-reference
-package: client.authentication.k8s.io/v1beta1
-auto_generated: true
----
-
-
-## Resource Types 
-
-
-- [ExecCredential](#client-authentication-k8s-io-v1beta1-ExecCredential)
-  
-    
-
-
-## `ExecCredential`     {#client-authentication-k8s-io-v1beta1-ExecCredential}
-    
-
-
-
-
-ExecCredential is used by exec-based plugins to communicate credentials to
-HTTP transports.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>client.authentication.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>ExecCredential</code></td></tr>
-    
-
-  
-  
-<tr><td><code>spec</code> <B>[Required]</B><br/>
-<a href="#client-authentication-k8s-io-v1beta1-ExecCredentialSpec"><code>ExecCredentialSpec</code></a>
-</td>
-<td>
-   Spec holds information passed to the plugin by the transport.</td>
-</tr>
-    
-  
-<tr><td><code>status</code><br/>
-<a href="#client-authentication-k8s-io-v1beta1-ExecCredentialStatus"><code>ExecCredentialStatus</code></a>
-</td>
-<td>
-   Status is filled in by the plugin and holds the credentials that the transport
-should use to contact the API.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `Cluster`     {#client-authentication-k8s-io-v1beta1-Cluster}
-    
-
-
-
-**Appears in:**
-
-- [ExecCredentialSpec](#client-authentication-k8s-io-v1beta1-ExecCredentialSpec)
-
-
-Cluster contains information to allow an exec plugin to communicate
-with the kubernetes cluster being authenticated to.
-
-To ensure that this struct contains everything someone would need to communicate
-with a kubernetes cluster (just like they would via a kubeconfig), the fields
-should shadow "k8s.io/client-go/tools/clientcmd/api/v1".Cluster, with the exception
-of CertificateAuthority, since CA data will always be passed to the plugin as bytes.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>server</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Server is the address of the kubernetes cluster (https://hostname:port).</td>
-</tr>
-    
-  
-<tr><td><code>tls-server-name</code><br/>
-<code>string</code>
-</td>
-<td>
-   TLSServerName is passed to the server for SNI and is used in the client to
-check server certificates against. If ServerName is empty, the hostname
-used to contact the server is used.</td>
-</tr>
-    
-  
-<tr><td><code>insecure-skip-tls-verify</code><br/>
-<code>bool</code>
-</td>
-<td>
-   InsecureSkipTLSVerify skips the validity check for the server's certificate.
-This will make your HTTPS connections insecure.</td>
-</tr>
-    
-  
-<tr><td><code>certificate-authority-data</code><br/>
-<code>[]byte</code>
-</td>
-<td>
-   CAData contains PEM-encoded certificate authority certificates.
-If empty, system roots should be used.</td>
-</tr>
-    
-  
-<tr><td><code>proxy-url</code><br/>
-<code>string</code>
-</td>
-<td>
-   ProxyURL is the URL to the proxy to be used for all requests to this
-cluster.</td>
-</tr>
-    
-  
-<tr><td><code>config</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/runtime/#RawExtension"><code>k8s.io/apimachinery/pkg/runtime.RawExtension</code></a>
-</td>
-<td>
-   Config holds additional config data that is specific to the exec
-plugin with regards to the cluster being authenticated to.
-
-This data is sourced from the clientcmd Cluster object's
-extensions[client.authentication.k8s.io/exec] field:
-
-clusters:
-- name: my-cluster
-  cluster:
-    ...
-    extensions:
-    - name: client.authentication.k8s.io/exec  # reserved extension name for per cluster exec config
-      extension:
-        audience: 06e3fbd18de8  # arbitrary config
-
-In some environments, the user config may be exactly the same across many clusters
-(i.e. call this exec plugin) minus some details that are specific to each cluster
-such as the audience.  This field allows the per cluster config to be directly
-specified with the cluster info.  Using this field to store secret data is not
-recommended as one of the prime benefits of exec plugins is that no secrets need
-to be stored directly in the kubeconfig.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ExecCredentialSpec`     {#client-authentication-k8s-io-v1beta1-ExecCredentialSpec}
-    
-
-
-
-**Appears in:**
-
-- [ExecCredential](#client-authentication-k8s-io-v1beta1-ExecCredential)
-
-
-ExecCredentialSpec holds request and runtime specific information provided by
-the transport.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>cluster</code><br/>
-<a href="#client-authentication-k8s-io-v1beta1-Cluster"><code>Cluster</code></a>
-</td>
-<td>
-   Cluster contains information to allow an exec plugin to communicate with the
-kubernetes cluster being authenticated to. Note that Cluster is non-nil only
-when provideClusterInfo is set to true in the exec provider config (i.e.,
-ExecConfig.ProvideClusterInfo).</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ExecCredentialStatus`     {#client-authentication-k8s-io-v1beta1-ExecCredentialStatus}
-    
-
-
-
-**Appears in:**
-
-- [ExecCredential](#client-authentication-k8s-io-v1beta1-ExecCredential)
-
-
-ExecCredentialStatus holds credentials for the transport to use.
-
-Token and ClientKeyData are sensitive fields. This data should only be
-transmitted in-memory between client and exec plugin process. Exec plugin
-itself should at least be protected via file permissions.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>expirationTimestamp</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.20/#time-v1-meta"><code>meta/v1.Time</code></a>
-</td>
-<td>
-   ExpirationTimestamp indicates a time when the provided credentials expire.</td>
-</tr>
-    
-  
-<tr><td><code>token</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Token is a bearer token used by the client for request authentication.</td>
-</tr>
-    
-  
-<tr><td><code>clientCertificateData</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   PEM-encoded client TLS certificates (including intermediates, if any).</td>
-</tr>
-    
-  
-<tr><td><code>clientKeyData</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   PEM-encoded private key for the above certificate.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-  
diff --git a/content/zh/docs/reference/config-api/kube-proxy-config.v1alpha1.md b/content/zh/docs/reference/config-api/kube-proxy-config.v1alpha1.md
deleted file mode 100644
index 86315856b2..0000000000
--- a/content/zh/docs/reference/config-api/kube-proxy-config.v1alpha1.md
+++ /dev/null
@@ -1,601 +0,0 @@
----
-title: kube-proxy Configuration (v1alpha1)
-content_type: tool-reference
-package: kubeproxy.config.k8s.io/v1alpha1
-auto_generated: true
----
-
-
-## Resource Types 
-
-
-- [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
-  
-    
-
-
-## `KubeProxyConfiguration`     {#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration}
-    
-
-
-
-
-KubeProxyConfiguration contains everything necessary to configure the
-Kubernetes proxy server.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubeproxy.config.k8s.io/v1alpha1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>KubeProxyConfiguration</code></td></tr>
-    
-
-  
-  
-<tr><td><code>featureGates</code> <B>[Required]</B><br/>
-<code>map[string]bool</code>
-</td>
-<td>
-   featureGates is a map of feature names to bools that enable or disable alpha/experimental features.</td>
-</tr>
-    
-  
-<tr><td><code>bindAddress</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   bindAddress is the IP address for the proxy server to serve on (set to 0.0.0.0
-for all interfaces)</td>
-</tr>
-    
-  
-<tr><td><code>healthzBindAddress</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   healthzBindAddress is the IP address and port for the health check server to serve on,
-defaulting to 0.0.0.0:10256</td>
-</tr>
-    
-  
-<tr><td><code>metricsBindAddress</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   metricsBindAddress is the IP address and port for the metrics server to serve on,
-defaulting to 127.0.0.1:10249 (set to 0.0.0.0 for all interfaces)</td>
-</tr>
-    
-  
-<tr><td><code>bindAddressHardFail</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   bindAddressHardFail, if true, kube-proxy will treat failure to bind to a port as fatal and exit</td>
-</tr>
-    
-  
-<tr><td><code>enableProfiling</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   enableProfiling enables profiling via web interface on /debug/pprof handler.
-Profiling handlers will be handled by metrics server.</td>
-</tr>
-    
-  
-<tr><td><code>clusterCIDR</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   clusterCIDR is the CIDR range of the pods in the cluster. It is used to
-bridge traffic coming from outside of the cluster. If not provided,
-no off-cluster bridging will be performed.</td>
-</tr>
-    
-  
-<tr><td><code>hostnameOverride</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   hostnameOverride, if non-empty, will be used as the identity instead of the actual hostname.</td>
-</tr>
-    
-  
-<tr><td><code>clientConnection</code> <B>[Required]</B><br/>
-<a href="#ClientConnectionConfiguration"><code>ClientConnectionConfiguration</code></a>
-</td>
-<td>
-   clientConnection specifies the kubeconfig file and client connection settings for the proxy
-server to use when communicating with the apiserver.</td>
-</tr>
-    
-  
-<tr><td><code>iptables</code> <B>[Required]</B><br/>
-<a href="#kubeproxy-config-k8s-io-v1alpha1-KubeProxyIPTablesConfiguration"><code>KubeProxyIPTablesConfiguration</code></a>
-</td>
-<td>
-   iptables contains iptables-related configuration options.</td>
-</tr>
-    
-  
-<tr><td><code>ipvs</code> <B>[Required]</B><br/>
-<a href="#kubeproxy-config-k8s-io-v1alpha1-KubeProxyIPVSConfiguration"><code>KubeProxyIPVSConfiguration</code></a>
-</td>
-<td>
-   ipvs contains ipvs-related configuration options.</td>
-</tr>
-    
-  
-<tr><td><code>oomScoreAdj</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   oomScoreAdj is the oom-score-adj value for kube-proxy process. Values must be within
-the range [-1000, 1000]</td>
-</tr>
-    
-  
-<tr><td><code>mode</code> <B>[Required]</B><br/>
-<a href="#kubeproxy-config-k8s-io-v1alpha1-ProxyMode"><code>ProxyMode</code></a>
-</td>
-<td>
-   mode specifies which proxy mode to use.</td>
-</tr>
-    
-  
-<tr><td><code>portRange</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   portRange is the range of host ports (beginPort-endPort, inclusive) that may be consumed
-in order to proxy service traffic. If unspecified (0-0) then ports will be randomly chosen.</td>
-</tr>
-    
-  
-<tr><td><code>udpIdleTimeout</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   udpIdleTimeout is how long an idle UDP connection will be kept open (e.g. '250ms', '2s').
-Must be greater than 0. Only applicable for proxyMode=userspace.</td>
-</tr>
-    
-  
-<tr><td><code>conntrack</code> <B>[Required]</B><br/>
-<a href="#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConntrackConfiguration"><code>KubeProxyConntrackConfiguration</code></a>
-</td>
-<td>
-   conntrack contains conntrack-related configuration options.</td>
-</tr>
-    
-  
-<tr><td><code>configSyncPeriod</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   configSyncPeriod is how often configuration from the apiserver is refreshed. Must be greater
-than 0.</td>
-</tr>
-    
-  
-<tr><td><code>nodePortAddresses</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   nodePortAddresses is the --nodeport-addresses value for kube-proxy process. Values must be valid
-IP blocks. These values are as a parameter to select the interfaces where nodeport works.
-In case someone would like to expose a service on localhost for local visit and some other interfaces for
-particular purpose, a list of IP blocks would do that.
-If set it to "127.0.0.0/8", kube-proxy will only select the loopback interface for NodePort.
-If set it to a non-zero IP block, kube-proxy will filter that down to just the IPs that applied to the node.
-An empty string slice is meant to select all network interfaces.</td>
-</tr>
-    
-  
-<tr><td><code>winkernel</code> <B>[Required]</B><br/>
-<a href="#kubeproxy-config-k8s-io-v1alpha1-KubeProxyWinkernelConfiguration"><code>KubeProxyWinkernelConfiguration</code></a>
-</td>
-<td>
-   winkernel contains winkernel-related configuration options.</td>
-</tr>
-    
-  
-<tr><td><code>showHiddenMetricsForVersion</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   ShowHiddenMetricsForVersion is the version for which you want to show hidden metrics.</td>
-</tr>
-    
-  
-<tr><td><code>detectLocalMode</code> <B>[Required]</B><br/>
-<a href="#kubeproxy-config-k8s-io-v1alpha1-LocalMode"><code>LocalMode</code></a>
-</td>
-<td>
-   DetectLocalMode determines mode to use for detecting local traffic, defaults to LocalModeClusterCIDR</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `KubeProxyConntrackConfiguration`     {#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConntrackConfiguration}
-    
-
-
-
-**Appears in:**
-
-- [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
-
-
-KubeProxyConntrackConfiguration contains conntrack settings for
-the Kubernetes proxy server.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>maxPerCore</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   maxPerCore is the maximum number of NAT connections to track
-per CPU core (0 to leave the limit as-is and ignore min).</td>
-</tr>
-    
-  
-<tr><td><code>min</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   min is the minimum value of connect-tracking records to allocate,
-regardless of conntrackMaxPerCore (set maxPerCore=0 to leave the limit as-is).</td>
-</tr>
-    
-  
-<tr><td><code>tcpEstablishedTimeout</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   tcpEstablishedTimeout is how long an idle TCP connection will be kept open
-(e.g. '2s').  Must be greater than 0 to set.</td>
-</tr>
-    
-  
-<tr><td><code>tcpCloseWaitTimeout</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   tcpCloseWaitTimeout is how long an idle conntrack entry
-in CLOSE_WAIT state will remain in the conntrack
-table. (e.g. '60s'). Must be greater than 0 to set.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `KubeProxyIPTablesConfiguration`     {#kubeproxy-config-k8s-io-v1alpha1-KubeProxyIPTablesConfiguration}
-    
-
-
-
-**Appears in:**
-
-- [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
-
-
-KubeProxyIPTablesConfiguration contains iptables-related configuration
-details for the Kubernetes proxy server.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>masqueradeBit</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   masqueradeBit is the bit of the iptables fwmark space to use for SNAT if using
-the pure iptables proxy mode. Values must be within the range [0, 31].</td>
-</tr>
-    
-  
-<tr><td><code>masqueradeAll</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   masqueradeAll tells kube-proxy to SNAT everything if using the pure iptables proxy mode.</td>
-</tr>
-    
-  
-<tr><td><code>syncPeriod</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   syncPeriod is the period that iptables rules are refreshed (e.g. '5s', '1m',
-'2h22m').  Must be greater than 0.</td>
-</tr>
-    
-  
-<tr><td><code>minSyncPeriod</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   minSyncPeriod is the minimum period that iptables rules are refreshed (e.g. '5s', '1m',
-'2h22m').</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `KubeProxyIPVSConfiguration`     {#kubeproxy-config-k8s-io-v1alpha1-KubeProxyIPVSConfiguration}
-    
-
-
-
-**Appears in:**
-
-- [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
-
-
-KubeProxyIPVSConfiguration contains ipvs-related configuration
-details for the Kubernetes proxy server.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>syncPeriod</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   syncPeriod is the period that ipvs rules are refreshed (e.g. '5s', '1m',
-'2h22m').  Must be greater than 0.</td>
-</tr>
-    
-  
-<tr><td><code>minSyncPeriod</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   minSyncPeriod is the minimum period that ipvs rules are refreshed (e.g. '5s', '1m',
-'2h22m').</td>
-</tr>
-    
-  
-<tr><td><code>scheduler</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   ipvs scheduler</td>
-</tr>
-    
-  
-<tr><td><code>excludeCIDRs</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   excludeCIDRs is a list of CIDR's which the ipvs proxier should not touch
-when cleaning up ipvs services.</td>
-</tr>
-    
-  
-<tr><td><code>strictARP</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   strict ARP configure arp_ignore and arp_announce to avoid answering ARP queries
-from kube-ipvs0 interface</td>
-</tr>
-    
-  
-<tr><td><code>tcpTimeout</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   tcpTimeout is the timeout value used for idle IPVS TCP sessions.
-The default value is 0, which preserves the current timeout value on the system.</td>
-</tr>
-    
-  
-<tr><td><code>tcpFinTimeout</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   tcpFinTimeout is the timeout value used for IPVS TCP sessions after receiving a FIN.
-The default value is 0, which preserves the current timeout value on the system.</td>
-</tr>
-    
-  
-<tr><td><code>udpTimeout</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   udpTimeout is the timeout value used for IPVS UDP packets.
-The default value is 0, which preserves the current timeout value on the system.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `KubeProxyWinkernelConfiguration`     {#kubeproxy-config-k8s-io-v1alpha1-KubeProxyWinkernelConfiguration}
-    
-
-
-
-**Appears in:**
-
-- [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
-
-
-KubeProxyWinkernelConfiguration contains Windows/HNS settings for
-the Kubernetes proxy server.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>networkName</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   networkName is the name of the network kube-proxy will use
-to create endpoints and policies</td>
-</tr>
-    
-  
-<tr><td><code>sourceVip</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   sourceVip is the IP address of the source VIP endoint used for
-NAT when loadbalancing</td>
-</tr>
-    
-  
-<tr><td><code>enableDSR</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   enableDSR tells kube-proxy whether HNS policies should be created
-with DSR</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `LocalMode`     {#kubeproxy-config-k8s-io-v1alpha1-LocalMode}
-    
-(Alias of `string`)
-
-
-**Appears in:**
-
-- [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
-
-
-LocalMode represents modes to detect local traffic from the node
-
-
-    
-
-
-## `ProxyMode`     {#kubeproxy-config-k8s-io-v1alpha1-ProxyMode}
-    
-(Alias of `string`)
-
-
-**Appears in:**
-
-- [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
-
-
-ProxyMode represents modes used by the Kubernetes proxy server.
-
-Currently, three modes of proxy are available in Linux platform: 'userspace' (older, going to be EOL), 'iptables'
-(newer, faster), 'ipvs'(newest, better in performance and scalability).
-
-Two modes of proxy are available in Windows platform: 'userspace'(older, stable) and 'kernelspace' (newer, faster).
-
-In Linux platform, if proxy mode is blank, use the best-available proxy (currently iptables, but may change in the
-future). If the iptables proxy is selected, regardless of how, but the system's kernel or iptables versions are
-insufficient, this always falls back to the userspace proxy. IPVS mode will be enabled when proxy mode is set to 'ipvs',
-and the fall back path is firstly iptables and then userspace.
-
-In Windows platform, if proxy mode is blank, use the best-available proxy (currently userspace, but may change in the
-future). If winkernel proxy is selected, regardless of how, but the Windows kernel can't support this mode of proxy,
-this always falls back to the userspace proxy.
-
-
-    
-  
-  
-    
-
-## `ClientConnectionConfiguration`     {#ClientConnectionConfiguration}
-    
-
-
-
-**Appears in:**
-
-- [KubeProxyConfiguration](#kubeproxy-config-k8s-io-v1alpha1-KubeProxyConfiguration)
-
-
-ClientConnectionConfiguration contains details for constructing a client.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>kubeconfig</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   kubeconfig is the path to a KubeConfig file.</td>
-</tr>
-    
-  
-<tr><td><code>acceptContentTypes</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   acceptContentTypes defines the Accept header sent by clients when connecting to a server, overriding the
-default value of 'application/json'. This field will control all connections to the server used by a particular
-client.</td>
-</tr>
-    
-  
-<tr><td><code>contentType</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   contentType is the content type used when sending data to the server from this client.</td>
-</tr>
-    
-  
-<tr><td><code>qps</code> <B>[Required]</B><br/>
-<code>float32</code>
-</td>
-<td>
-   qps controls the number of queries per second allowed for this connection.</td>
-</tr>
-    
-  
-<tr><td><code>burst</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   burst allows extra queries to accumulate when a client is exceeding its rate.</td>
-</tr>
-    
-  
-</tbody>
-</table>
diff --git a/content/zh/docs/reference/config-api/kube-scheduler-config.v1beta1.md b/content/zh/docs/reference/config-api/kube-scheduler-config.v1beta1.md
deleted file mode 100644
index ac32e65674..0000000000
--- a/content/zh/docs/reference/config-api/kube-scheduler-config.v1beta1.md
+++ /dev/null
@@ -1,2156 +0,0 @@
----
-title: kube-scheduler Configuration (v1beta1)
-content_type: tool-reference
-package: kubescheduler.config.k8s.io/v1
-auto_generated: true
----
-
-
-## Resource Types 
-
-
-- [Policy](#kubescheduler-config-k8s-io-v1-Policy)
-- [DefaultPreemptionArgs](#kubescheduler-config-k8s-io-v1beta1-DefaultPreemptionArgs)
-- [InterPodAffinityArgs](#kubescheduler-config-k8s-io-v1beta1-InterPodAffinityArgs)
-- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta1-KubeSchedulerConfiguration)
-- [NodeAffinityArgs](#kubescheduler-config-k8s-io-v1beta1-NodeAffinityArgs)
-- [NodeLabelArgs](#kubescheduler-config-k8s-io-v1beta1-NodeLabelArgs)
-- [NodeResourcesFitArgs](#kubescheduler-config-k8s-io-v1beta1-NodeResourcesFitArgs)
-- [NodeResourcesLeastAllocatedArgs](#kubescheduler-config-k8s-io-v1beta1-NodeResourcesLeastAllocatedArgs)
-- [NodeResourcesMostAllocatedArgs](#kubescheduler-config-k8s-io-v1beta1-NodeResourcesMostAllocatedArgs)
-- [PodTopologySpreadArgs](#kubescheduler-config-k8s-io-v1beta1-PodTopologySpreadArgs)
-- [RequestedToCapacityRatioArgs](#kubescheduler-config-k8s-io-v1beta1-RequestedToCapacityRatioArgs)
-- [ServiceAffinityArgs](#kubescheduler-config-k8s-io-v1beta1-ServiceAffinityArgs)
-- [VolumeBindingArgs](#kubescheduler-config-k8s-io-v1beta1-VolumeBindingArgs)
-  
-    
-
-
-## `Policy`     {#kubescheduler-config-k8s-io-v1-Policy}
-    
-
-
-
-
-Policy describes a struct for a policy resource used in api.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>Policy</code></td></tr>
-    
-
-  
-  
-<tr><td><code>predicates</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-PredicatePolicy"><code>[]PredicatePolicy</code></a>
-</td>
-<td>
-   Holds the information to configure the fit predicate functions</td>
-</tr>
-    
-  
-<tr><td><code>priorities</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-PriorityPolicy"><code>[]PriorityPolicy</code></a>
-</td>
-<td>
-   Holds the information to configure the priority functions</td>
-</tr>
-    
-  
-<tr><td><code>extenders</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-LegacyExtender"><code>[]LegacyExtender</code></a>
-</td>
-<td>
-   Holds the information to communicate with the extender(s)</td>
-</tr>
-    
-  
-<tr><td><code>hardPodAffinitySymmetricWeight</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   RequiredDuringScheduling affinity is not symmetric, but there is an implicit PreferredDuringScheduling affinity rule
-corresponding to every RequiredDuringScheduling affinity rule.
-HardPodAffinitySymmetricWeight represents the weight of implicit PreferredDuringScheduling affinity rule, in the range 1-100.</td>
-</tr>
-    
-  
-<tr><td><code>alwaysCheckAllPredicates</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   When AlwaysCheckAllPredicates is set to true, scheduler checks all
-the configured predicates even after one or more of them fails.
-When the flag is set to false, scheduler skips checking the rest
-of the predicates after it finds one predicate that failed.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ExtenderManagedResource`     {#kubescheduler-config-k8s-io-v1-ExtenderManagedResource}
-    
-
-
-
-**Appears in:**
-
-- [Extender](#kubescheduler-config-k8s-io-v1beta1-Extender)
-
-- [LegacyExtender](#kubescheduler-config-k8s-io-v1-LegacyExtender)
-
-
-ExtenderManagedResource describes the arguments of extended resources
-managed by an extender.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Name is the extended resource name.</td>
-</tr>
-    
-  
-<tr><td><code>ignoredByScheduler</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   IgnoredByScheduler indicates whether kube-scheduler should ignore this
-resource when applying predicates.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ExtenderTLSConfig`     {#kubescheduler-config-k8s-io-v1-ExtenderTLSConfig}
-    
-
-
-
-**Appears in:**
-
-- [Extender](#kubescheduler-config-k8s-io-v1beta1-Extender)
-
-- [LegacyExtender](#kubescheduler-config-k8s-io-v1-LegacyExtender)
-
-
-ExtenderTLSConfig contains settings to enable TLS with extender
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>insecure</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   Server should be accessed without verifying the TLS certificate. For testing only.</td>
-</tr>
-    
-  
-<tr><td><code>serverName</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   ServerName is passed to the server for SNI and is used in the client to check server
-certificates against. If ServerName is empty, the hostname used to contact the
-server is used.</td>
-</tr>
-    
-  
-<tr><td><code>certFile</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Server requires TLS client certificate authentication</td>
-</tr>
-    
-  
-<tr><td><code>keyFile</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Server requires TLS client certificate authentication</td>
-</tr>
-    
-  
-<tr><td><code>caFile</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Trusted root certificates for server</td>
-</tr>
-    
-  
-<tr><td><code>certData</code> <B>[Required]</B><br/>
-<code>[]byte</code>
-</td>
-<td>
-   CertData holds PEM-encoded bytes (typically read from a client certificate file).
-CertData takes precedence over CertFile</td>
-</tr>
-    
-  
-<tr><td><code>keyData</code> <B>[Required]</B><br/>
-<code>[]byte</code>
-</td>
-<td>
-   KeyData holds PEM-encoded bytes (typically read from a client certificate key file).
-KeyData takes precedence over KeyFile</td>
-</tr>
-    
-  
-<tr><td><code>caData</code> <B>[Required]</B><br/>
-<code>[]byte</code>
-</td>
-<td>
-   CAData holds PEM-encoded bytes (typically read from a root certificates bundle).
-CAData takes precedence over CAFile</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `LabelPreference`     {#kubescheduler-config-k8s-io-v1-LabelPreference}
-    
-
-
-
-**Appears in:**
-
-- [PriorityArgument](#kubescheduler-config-k8s-io-v1-PriorityArgument)
-
-
-LabelPreference holds the parameters that are used to configure the corresponding priority function
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>label</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Used to identify node "groups"</td>
-</tr>
-    
-  
-<tr><td><code>presence</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   This is a boolean flag
-If true, higher priority is given to nodes that have the label
-If false, higher priority is given to nodes that do not have the label</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `LabelsPresence`     {#kubescheduler-config-k8s-io-v1-LabelsPresence}
-    
-
-
-
-**Appears in:**
-
-- [PredicateArgument](#kubescheduler-config-k8s-io-v1-PredicateArgument)
-
-
-LabelsPresence holds the parameters that are used to configure the corresponding predicate in scheduler policy configuration.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>labels</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   The list of labels that identify node "groups"
-All of the labels should be either present (or absent) for the node to be considered a fit for hosting the pod</td>
-</tr>
-    
-  
-<tr><td><code>presence</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   The boolean flag that indicates whether the labels should be present or absent from the node</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `LegacyExtender`     {#kubescheduler-config-k8s-io-v1-LegacyExtender}
-    
-
-
-
-**Appears in:**
-
-- [Policy](#kubescheduler-config-k8s-io-v1-Policy)
-
-
-LegacyExtender holds the parameters used to communicate with the extender. If a verb is unspecified/empty,
-it is assumed that the extender chose not to provide that extension.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>urlPrefix</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   URLPrefix at which the extender is available</td>
-</tr>
-    
-  
-<tr><td><code>filterVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the filter call, empty if not supported. This verb is appended to the URLPrefix when issuing the filter call to extender.</td>
-</tr>
-    
-  
-<tr><td><code>preemptVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the preempt call, empty if not supported. This verb is appended to the URLPrefix when issuing the preempt call to extender.</td>
-</tr>
-    
-  
-<tr><td><code>prioritizeVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the prioritize call, empty if not supported. This verb is appended to the URLPrefix when issuing the prioritize call to extender.</td>
-</tr>
-    
-  
-<tr><td><code>weight</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   The numeric multiplier for the node scores that the prioritize call generates.
-The weight should be a positive integer</td>
-</tr>
-    
-  
-<tr><td><code>bindVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the bind call, empty if not supported. This verb is appended to the URLPrefix when issuing the bind call to extender.
-If this method is implemented by the extender, it is the extender's responsibility to bind the pod to apiserver. Only one extender
-can implement this function.</td>
-</tr>
-    
-  
-<tr><td><code>enableHttps</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   EnableHTTPS specifies whether https should be used to communicate with the extender</td>
-</tr>
-    
-  
-<tr><td><code>tlsConfig</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ExtenderTLSConfig"><code>ExtenderTLSConfig</code></a>
-</td>
-<td>
-   TLSConfig specifies the transport layer security config</td>
-</tr>
-    
-  
-<tr><td><code>httpTimeout</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/time#Duration"><code>time.Duration</code></a>
-</td>
-<td>
-   HTTPTimeout specifies the timeout duration for a call to the extender. Filter timeout fails the scheduling of the pod. Prioritize
-timeout is ignored, k8s/other extenders priorities are used to select the node.</td>
-</tr>
-    
-  
-<tr><td><code>nodeCacheCapable</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   NodeCacheCapable specifies that the extender is capable of caching node information,
-so the scheduler should only send minimal information about the eligible nodes
-assuming that the extender already cached full details of all nodes in the cluster</td>
-</tr>
-    
-  
-<tr><td><code>managedResources</code><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ExtenderManagedResource"><code>[]ExtenderManagedResource</code></a>
-</td>
-<td>
-   ManagedResources is a list of extended resources that are managed by
-this extender.
-- A pod will be sent to the extender on the Filter, Prioritize and Bind
-  (if the extender is the binder) phases iff the pod requests at least
-  one of the extended resources in this list. If empty or unspecified,
-  all pods will be sent to this extender.
-- If IgnoredByScheduler is set to true for a resource, kube-scheduler
-  will skip checking the resource in predicates.</td>
-</tr>
-    
-  
-<tr><td><code>ignorable</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   Ignorable specifies if the extender is ignorable, i.e. scheduling should not
-fail when the extender returns an error or is not reachable.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PredicateArgument`     {#kubescheduler-config-k8s-io-v1-PredicateArgument}
-    
-
-
-
-**Appears in:**
-
-- [PredicatePolicy](#kubescheduler-config-k8s-io-v1-PredicatePolicy)
-
-
-PredicateArgument represents the arguments to configure predicate functions in scheduler policy configuration.
-Only one of its members may be specified
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>serviceAffinity</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ServiceAffinity"><code>ServiceAffinity</code></a>
-</td>
-<td>
-   The predicate that provides affinity for pods belonging to a service
-It uses a label to identify nodes that belong to the same "group"</td>
-</tr>
-    
-  
-<tr><td><code>labelsPresence</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-LabelsPresence"><code>LabelsPresence</code></a>
-</td>
-<td>
-   The predicate that checks whether a particular node has a certain label
-defined or not, regardless of value</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PredicatePolicy`     {#kubescheduler-config-k8s-io-v1-PredicatePolicy}
-    
-
-
-
-**Appears in:**
-
-- [Policy](#kubescheduler-config-k8s-io-v1-Policy)
-
-
-PredicatePolicy describes a struct of a predicate policy.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Identifier of the predicate policy
-For a custom predicate, the name can be user-defined
-For the Kubernetes provided predicates, the name is the identifier of the pre-defined predicate</td>
-</tr>
-    
-  
-<tr><td><code>argument</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-PredicateArgument"><code>PredicateArgument</code></a>
-</td>
-<td>
-   Holds the parameters to configure the given predicate</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PriorityArgument`     {#kubescheduler-config-k8s-io-v1-PriorityArgument}
-    
-
-
-
-**Appears in:**
-
-- [PriorityPolicy](#kubescheduler-config-k8s-io-v1-PriorityPolicy)
-
-
-PriorityArgument represents the arguments to configure priority functions in scheduler policy configuration.
-Only one of its members may be specified
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>serviceAntiAffinity</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ServiceAntiAffinity"><code>ServiceAntiAffinity</code></a>
-</td>
-<td>
-   The priority function that ensures a good spread (anti-affinity) for pods belonging to a service
-It uses a label to identify nodes that belong to the same "group"</td>
-</tr>
-    
-  
-<tr><td><code>labelPreference</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-LabelPreference"><code>LabelPreference</code></a>
-</td>
-<td>
-   The priority function that checks whether a particular node has a certain label
-defined or not, regardless of value</td>
-</tr>
-    
-  
-<tr><td><code>requestedToCapacityRatioArguments</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-RequestedToCapacityRatioArguments"><code>RequestedToCapacityRatioArguments</code></a>
-</td>
-<td>
-   The RequestedToCapacityRatio priority function is parametrized with function shape.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PriorityPolicy`     {#kubescheduler-config-k8s-io-v1-PriorityPolicy}
-    
-
-
-
-**Appears in:**
-
-- [Policy](#kubescheduler-config-k8s-io-v1-Policy)
-
-
-PriorityPolicy describes a struct of a priority policy.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Identifier of the priority policy
-For a custom priority, the name can be user-defined
-For the Kubernetes provided priority functions, the name is the identifier of the pre-defined priority function</td>
-</tr>
-    
-  
-<tr><td><code>weight</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   The numeric multiplier for the node scores that the priority function generates
-The weight should be non-zero and can be a positive or a negative integer</td>
-</tr>
-    
-  
-<tr><td><code>argument</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-PriorityArgument"><code>PriorityArgument</code></a>
-</td>
-<td>
-   Holds the parameters to configure the given priority function</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `RequestedToCapacityRatioArguments`     {#kubescheduler-config-k8s-io-v1-RequestedToCapacityRatioArguments}
-    
-
-
-
-**Appears in:**
-
-- [PriorityArgument](#kubescheduler-config-k8s-io-v1-PriorityArgument)
-
-
-RequestedToCapacityRatioArguments holds arguments specific to RequestedToCapacityRatio priority function.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>shape</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-UtilizationShapePoint"><code>[]UtilizationShapePoint</code></a>
-</td>
-<td>
-   Array of point defining priority function shape.</td>
-</tr>
-    
-  
-<tr><td><code>resources</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ResourceSpec"><code>[]ResourceSpec</code></a>
-</td>
-<td>
-   <span class="text-muted">No description provided.</span>
-   </td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ResourceSpec`     {#kubescheduler-config-k8s-io-v1-ResourceSpec}
-    
-
-
-
-**Appears in:**
-
-- [RequestedToCapacityRatioArguments](#kubescheduler-config-k8s-io-v1-RequestedToCapacityRatioArguments)
-
-
-ResourceSpec represents single resource and weight for bin packing of priority RequestedToCapacityRatioArguments.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Name of the resource to be managed by RequestedToCapacityRatio function.</td>
-</tr>
-    
-  
-<tr><td><code>weight</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   Weight of the resource.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ServiceAffinity`     {#kubescheduler-config-k8s-io-v1-ServiceAffinity}
-    
-
-
-
-**Appears in:**
-
-- [PredicateArgument](#kubescheduler-config-k8s-io-v1-PredicateArgument)
-
-
-ServiceAffinity holds the parameters that are used to configure the corresponding predicate in scheduler policy configuration.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>labels</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   The list of labels that identify node "groups"
-All of the labels should match for the node to be considered a fit for hosting the pod</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ServiceAntiAffinity`     {#kubescheduler-config-k8s-io-v1-ServiceAntiAffinity}
-    
-
-
-
-**Appears in:**
-
-- [PriorityArgument](#kubescheduler-config-k8s-io-v1-PriorityArgument)
-
-
-ServiceAntiAffinity holds the parameters that are used to configure the corresponding priority function
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>label</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Used to identify node "groups"</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `UtilizationShapePoint`     {#kubescheduler-config-k8s-io-v1-UtilizationShapePoint}
-    
-
-
-
-**Appears in:**
-
-- [RequestedToCapacityRatioArguments](#kubescheduler-config-k8s-io-v1-RequestedToCapacityRatioArguments)
-
-
-UtilizationShapePoint represents single point of priority function shape.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>utilization</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   Utilization (x axis). Valid values are 0 to 100. Fully utilized node maps to 100.</td>
-</tr>
-    
-  
-<tr><td><code>score</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   Score assigned to given utilization (y axis). Valid values are 0 to 10.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-  
-  
-    
-
-## `ClientConnectionConfiguration`     {#ClientConnectionConfiguration}
-    
-
-
-
-**Appears in:**
-
-- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta1-KubeSchedulerConfiguration)
-
-
-ClientConnectionConfiguration contains details for constructing a client.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>kubeconfig</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   kubeconfig is the path to a KubeConfig file.</td>
-</tr>
-    
-  
-<tr><td><code>acceptContentTypes</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   acceptContentTypes defines the Accept header sent by clients when connecting to a server, overriding the
-default value of 'application/json'. This field will control all connections to the server used by a particular
-client.</td>
-</tr>
-    
-  
-<tr><td><code>contentType</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   contentType is the content type used when sending data to the server from this client.</td>
-</tr>
-    
-  
-<tr><td><code>qps</code> <B>[Required]</B><br/>
-<code>float32</code>
-</td>
-<td>
-   qps controls the number of queries per second allowed for this connection.</td>
-</tr>
-    
-  
-<tr><td><code>burst</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   burst allows extra queries to accumulate when a client is exceeding its rate.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-
-## `DebuggingConfiguration`     {#DebuggingConfiguration}
-    
-
-
-
-**Appears in:**
-
-- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta1-KubeSchedulerConfiguration)
-
-
-DebuggingConfiguration holds configuration for Debugging related features.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>enableProfiling</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   enableProfiling enables profiling via web interface host:port/debug/pprof/</td>
-</tr>
-    
-  
-<tr><td><code>enableContentionProfiling</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   enableContentionProfiling enables lock contention profiling, if
-enableProfiling is true.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-
-## `LeaderElectionConfiguration`     {#LeaderElectionConfiguration}
-    
-
-
-
-**Appears in:**
-
-- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta1-KubeSchedulerConfiguration)
-
-
-LeaderElectionConfiguration defines the configuration of leader election
-clients for components that can run with leader election enabled.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>leaderElect</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   leaderElect enables a leader election client to gain leadership
-before executing the main loop. Enable this when running replicated
-components for high availability.</td>
-</tr>
-    
-  
-<tr><td><code>leaseDuration</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   leaseDuration is the duration that non-leader candidates will wait
-after observing a leadership renewal until attempting to acquire
-leadership of a led but unrenewed leader slot. This is effectively the
-maximum duration that a leader can be stopped before it is replaced
-by another candidate. This is only applicable if leader election is
-enabled.</td>
-</tr>
-    
-  
-<tr><td><code>renewDeadline</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   renewDeadline is the interval between attempts by the acting master to
-renew a leadership slot before it stops leading. This must be less
-than or equal to the lease duration. This is only applicable if leader
-election is enabled.</td>
-</tr>
-    
-  
-<tr><td><code>retryPeriod</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   retryPeriod is the duration the clients should wait between attempting
-acquisition and renewal of a leadership. This is only applicable if
-leader election is enabled.</td>
-</tr>
-    
-  
-<tr><td><code>resourceLock</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   resourceLock indicates the resource object type that will be used to lock
-during leader election cycles.</td>
-</tr>
-    
-  
-<tr><td><code>resourceName</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   resourceName indicates the name of resource object that will be used to lock
-during leader election cycles.</td>
-</tr>
-    
-  
-<tr><td><code>resourceNamespace</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   resourceName indicates the namespace of resource object that will be used to lock
-during leader election cycles.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-
-## `LoggingConfiguration`     {#LoggingConfiguration}
-    
-
-
-
-**Appears in:**
-
-- [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
-
-
-LoggingConfiguration contains logging options
-Refer [Logs Options](https://github.com/kubernetes/component-base/blob/master/logs/options.go) for more information.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>format</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Format Flag specifies the structure of log messages.
-default value of format is `text`</td>
-</tr>
-    
-  
-<tr><td><code>sanitization</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   [Experimental] When enabled prevents logging of fields tagged as sensitive (passwords, keys, tokens).
-Runtime log sanitization may introduce significant computation overhead and therefore should not be enabled in production.`)</td>
-</tr>
-    
-  
-</tbody>
-</table>
-  
-    
-
-
-## `DefaultPreemptionArgs`     {#kubescheduler-config-k8s-io-v1beta1-DefaultPreemptionArgs}
-    
-
-
-
-
-DefaultPreemptionArgs holds arguments used to configure the
-DefaultPreemption plugin.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>DefaultPreemptionArgs</code></td></tr>
-    
-
-  
-  
-<tr><td><code>minCandidateNodesPercentage</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   MinCandidateNodesPercentage is the minimum number of candidates to
-shortlist when dry running preemption as a percentage of number of nodes.
-Must be in the range [0, 100]. Defaults to 10% of the cluster size if
-unspecified.</td>
-</tr>
-    
-  
-<tr><td><code>minCandidateNodesAbsolute</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   MinCandidateNodesAbsolute is the absolute minimum number of candidates to
-shortlist. The likely number of candidates enumerated for dry running
-preemption is given by the formula:
-numCandidates = max(numNodes &lowast; minCandidateNodesPercentage, minCandidateNodesAbsolute)
-We say "likely" because there are other factors such as PDB violations
-that play a role in the number of candidates shortlisted. Must be at least
-0 nodes. Defaults to 100 nodes if unspecified.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `InterPodAffinityArgs`     {#kubescheduler-config-k8s-io-v1beta1-InterPodAffinityArgs}
-    
-
-
-
-
-InterPodAffinityArgs holds arguments used to configure the InterPodAffinity plugin.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>InterPodAffinityArgs</code></td></tr>
-    
-
-  
-  
-<tr><td><code>hardPodAffinityWeight</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   HardPodAffinityWeight is the scoring weight for existing pods with a
-matching hard affinity to the incoming pod.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `KubeSchedulerConfiguration`     {#kubescheduler-config-k8s-io-v1beta1-KubeSchedulerConfiguration}
-    
-
-
-
-
-KubeSchedulerConfiguration configures a scheduler
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>KubeSchedulerConfiguration</code></td></tr>
-    
-
-  
-  
-<tr><td><code>parallelism</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   Parallelism defines the amount of parallelism in algorithms for scheduling a Pods. Must be greater than 0. Defaults to 16</td>
-</tr>
-    
-  
-<tr><td><code>leaderElection</code> <B>[Required]</B><br/>
-<a href="#LeaderElectionConfiguration"><code>LeaderElectionConfiguration</code></a>
-</td>
-<td>
-   LeaderElection defines the configuration of leader election client.</td>
-</tr>
-    
-  
-<tr><td><code>clientConnection</code> <B>[Required]</B><br/>
-<a href="#ClientConnectionConfiguration"><code>ClientConnectionConfiguration</code></a>
-</td>
-<td>
-   ClientConnection specifies the kubeconfig file and client connection
-settings for the proxy server to use when communicating with the apiserver.</td>
-</tr>
-    
-  
-<tr><td><code>healthzBindAddress</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   HealthzBindAddress is the IP address and port for the health check server to serve on,
-defaulting to 0.0.0.0:10251</td>
-</tr>
-    
-  
-<tr><td><code>metricsBindAddress</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   MetricsBindAddress is the IP address and port for the metrics server to
-serve on, defaulting to 0.0.0.0:10251.</td>
-</tr>
-    
-  
-<tr><td><code>DebuggingConfiguration</code> <B>[Required]</B><br/>
-<a href="#DebuggingConfiguration"><code>DebuggingConfiguration</code></a>
-</td>
-<td>(Members of <code>DebuggingConfiguration</code> are embedded into this type.)
-   DebuggingConfiguration holds configuration for Debugging related features
-TODO: We might wanna make this a substruct like Debugging componentbaseconfigv1alpha1.DebuggingConfiguration</td>
-</tr>
-    
-  
-<tr><td><code>percentageOfNodesToScore</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   PercentageOfNodesToScore is the percentage of all nodes that once found feasible
-for running a pod, the scheduler stops its search for more feasible nodes in
-the cluster. This helps improve scheduler's performance. Scheduler always tries to find
-at least "minFeasibleNodesToFind" feasible nodes no matter what the value of this flag is.
-Example: if the cluster size is 500 nodes and the value of this flag is 30,
-then scheduler stops finding further feasible nodes once it finds 150 feasible ones.
-When the value is 0, default percentage (5%--50% based on the size of the cluster) of the
-nodes will be scored.</td>
-</tr>
-    
-  
-<tr><td><code>podInitialBackoffSeconds</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   PodInitialBackoffSeconds is the initial backoff for unschedulable pods.
-If specified, it must be greater than 0. If this value is null, the default value (1s)
-will be used.</td>
-</tr>
-    
-  
-<tr><td><code>podMaxBackoffSeconds</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   PodMaxBackoffSeconds is the max backoff for unschedulable pods.
-If specified, it must be greater than podInitialBackoffSeconds. If this value is null,
-the default value (10s) will be used.</td>
-</tr>
-    
-  
-<tr><td><code>profiles</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-KubeSchedulerProfile"><code>[]KubeSchedulerProfile</code></a>
-</td>
-<td>
-   Profiles are scheduling profiles that kube-scheduler supports. Pods can
-choose to be scheduled under a particular profile by setting its associated
-scheduler name. Pods that don't specify any scheduler name are scheduled
-with the "default-scheduler" profile, if present here.</td>
-</tr>
-    
-  
-<tr><td><code>extenders</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-Extender"><code>[]Extender</code></a>
-</td>
-<td>
-   Extenders are the list of scheduler extenders, each holding the values of how to communicate
-with the extender. These extenders are shared by all scheduler profiles.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `NodeAffinityArgs`     {#kubescheduler-config-k8s-io-v1beta1-NodeAffinityArgs}
-    
-
-
-
-
-NodeAffinityArgs holds arguments to configure the NodeAffinity plugin.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>NodeAffinityArgs</code></td></tr>
-    
-
-  
-  
-<tr><td><code>addedAffinity</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.20/#nodeaffinity-v1-core"><code>core/v1.NodeAffinity</code></a>
-</td>
-<td>
-   AddedAffinity is applied to all Pods additionally to the NodeAffinity
-specified in the PodSpec. That is, Nodes need to satisfy AddedAffinity
-AND .spec.NodeAffinity. AddedAffinity is empty by default (all Nodes
-match).
-When AddedAffinity is used, some Pods with affinity requirements that match
-a specific Node (such as Daemonset Pods) might remain unschedulable.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `NodeLabelArgs`     {#kubescheduler-config-k8s-io-v1beta1-NodeLabelArgs}
-    
-
-
-
-
-NodeLabelArgs holds arguments used to configure the NodeLabel plugin.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>NodeLabelArgs</code></td></tr>
-    
-
-  
-  
-<tr><td><code>presentLabels</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   PresentLabels should be present for the node to be considered a fit for hosting the pod</td>
-</tr>
-    
-  
-<tr><td><code>absentLabels</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   AbsentLabels should be absent for the node to be considered a fit for hosting the pod</td>
-</tr>
-    
-  
-<tr><td><code>presentLabelsPreference</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   Nodes that have labels in the list will get a higher score.</td>
-</tr>
-    
-  
-<tr><td><code>absentLabelsPreference</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   Nodes that don't have labels in the list will get a higher score.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `NodeResourcesFitArgs`     {#kubescheduler-config-k8s-io-v1beta1-NodeResourcesFitArgs}
-    
-
-
-
-
-NodeResourcesFitArgs holds arguments used to configure the NodeResourcesFit plugin.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>NodeResourcesFitArgs</code></td></tr>
-    
-
-  
-  
-<tr><td><code>ignoredResources</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   IgnoredResources is the list of resources that NodeResources fit filter
-should ignore.</td>
-</tr>
-    
-  
-<tr><td><code>ignoredResourceGroups</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   IgnoredResourceGroups defines the list of resource groups that NodeResources fit filter should ignore.
-e.g. if group is ["example.com"], it will ignore all resource names that begin
-with "example.com", such as "example.com/aaa" and "example.com/bbb".
-A resource group name can't contain '/'.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `NodeResourcesLeastAllocatedArgs`     {#kubescheduler-config-k8s-io-v1beta1-NodeResourcesLeastAllocatedArgs}
-    
-
-
-
-
-NodeResourcesLeastAllocatedArgs holds arguments used to configure NodeResourcesLeastAllocated plugin.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>NodeResourcesLeastAllocatedArgs</code></td></tr>
-    
-
-  
-  
-<tr><td><code>resources</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-ResourceSpec"><code>[]ResourceSpec</code></a>
-</td>
-<td>
-   Resources to be managed, if no resource is provided, default resource set with both
-the weight of "cpu" and "memory" set to "1" will be applied.
-Resource with "0" weight will not accountable for the final score.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `NodeResourcesMostAllocatedArgs`     {#kubescheduler-config-k8s-io-v1beta1-NodeResourcesMostAllocatedArgs}
-    
-
-
-
-
-NodeResourcesMostAllocatedArgs holds arguments used to configure NodeResourcesMostAllocated plugin.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>NodeResourcesMostAllocatedArgs</code></td></tr>
-    
-
-  
-  
-<tr><td><code>resources</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-ResourceSpec"><code>[]ResourceSpec</code></a>
-</td>
-<td>
-   Resources to be managed, if no resource is provided, default resource set with both
-the weight of "cpu" and "memory" set to "1" will be applied.
-Resource with "0" weight will not accountable for the final score.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PodTopologySpreadArgs`     {#kubescheduler-config-k8s-io-v1beta1-PodTopologySpreadArgs}
-    
-
-
-
-
-PodTopologySpreadArgs holds arguments used to configure the PodTopologySpread plugin.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>PodTopologySpreadArgs</code></td></tr>
-    
-
-  
-  
-<tr><td><code>defaultConstraints</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.20/#topologyspreadconstraint-v1-core"><code>[]core/v1.TopologySpreadConstraint</code></a>
-</td>
-<td>
-   DefaultConstraints defines topology spread constraints to be applied to
-Pods that don't define any in `pod.spec.topologySpreadConstraints`.
-`.defaultConstraints[&lowast;].labelSelectors` must be empty, as they are
-deduced from the Pod's membership to Services, ReplicationControllers,
-ReplicaSets or StatefulSets.
-When not empty, .defaultingType must be "List".</td>
-</tr>
-    
-  
-<tr><td><code>defaultingType</code><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PodTopologySpreadConstraintsDefaulting"><code>PodTopologySpreadConstraintsDefaulting</code></a>
-</td>
-<td>
-   DefaultingType determines how .defaultConstraints are deduced. Can be one
-of "System" or "List".
-
-- "System": Use kubernetes defined constraints that spread Pods among
-  Nodes and Zones.
-- "List": Use constraints defined in .defaultConstraints.
-
-Defaults to "List" if feature gate DefaultPodTopologySpread is disabled
-and to "System" if enabled.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `RequestedToCapacityRatioArgs`     {#kubescheduler-config-k8s-io-v1beta1-RequestedToCapacityRatioArgs}
-    
-
-
-
-
-RequestedToCapacityRatioArgs holds arguments used to configure RequestedToCapacityRatio plugin.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>RequestedToCapacityRatioArgs</code></td></tr>
-    
-
-  
-  
-<tr><td><code>shape</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-UtilizationShapePoint"><code>[]UtilizationShapePoint</code></a>
-</td>
-<td>
-   Points defining priority function shape</td>
-</tr>
-    
-  
-<tr><td><code>resources</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-ResourceSpec"><code>[]ResourceSpec</code></a>
-</td>
-<td>
-   Resources to be managed</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ServiceAffinityArgs`     {#kubescheduler-config-k8s-io-v1beta1-ServiceAffinityArgs}
-    
-
-
-
-
-ServiceAffinityArgs holds arguments used to configure the ServiceAffinity plugin.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>ServiceAffinityArgs</code></td></tr>
-    
-
-  
-  
-<tr><td><code>affinityLabels</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   AffinityLabels are homogeneous for pods that are scheduled to a node.
-(i.e. it returns true IFF this pod can be added to this node such that all other pods in
-the same service are running on nodes with the exact same values for Labels).</td>
-</tr>
-    
-  
-<tr><td><code>antiAffinityLabelsPreference</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   AntiAffinityLabelsPreference are the labels to consider for service anti affinity scoring.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `VolumeBindingArgs`     {#kubescheduler-config-k8s-io-v1beta1-VolumeBindingArgs}
-    
-
-
-
-
-VolumeBindingArgs holds arguments used to configure the VolumeBinding plugin.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>VolumeBindingArgs</code></td></tr>
-    
-
-  
-  
-<tr><td><code>bindTimeoutSeconds</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   BindTimeoutSeconds is the timeout in seconds in volume binding operation.
-Value must be non-negative integer. The value zero indicates no waiting.
-If this value is nil, the default value (600) will be used.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `Extender`     {#kubescheduler-config-k8s-io-v1beta1-Extender}
-    
-
-
-
-**Appears in:**
-
-- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta1-KubeSchedulerConfiguration)
-
-
-Extender holds the parameters used to communicate with the extender. If a verb is unspecified/empty,
-it is assumed that the extender chose not to provide that extension.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>urlPrefix</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   URLPrefix at which the extender is available</td>
-</tr>
-    
-  
-<tr><td><code>filterVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the filter call, empty if not supported. This verb is appended to the URLPrefix when issuing the filter call to extender.</td>
-</tr>
-    
-  
-<tr><td><code>preemptVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the preempt call, empty if not supported. This verb is appended to the URLPrefix when issuing the preempt call to extender.</td>
-</tr>
-    
-  
-<tr><td><code>prioritizeVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the prioritize call, empty if not supported. This verb is appended to the URLPrefix when issuing the prioritize call to extender.</td>
-</tr>
-    
-  
-<tr><td><code>weight</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   The numeric multiplier for the node scores that the prioritize call generates.
-The weight should be a positive integer</td>
-</tr>
-    
-  
-<tr><td><code>bindVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the bind call, empty if not supported. This verb is appended to the URLPrefix when issuing the bind call to extender.
-If this method is implemented by the extender, it is the extender's responsibility to bind the pod to apiserver. Only one extender
-can implement this function.</td>
-</tr>
-    
-  
-<tr><td><code>enableHTTPS</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   EnableHTTPS specifies whether https should be used to communicate with the extender</td>
-</tr>
-    
-  
-<tr><td><code>tlsConfig</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ExtenderTLSConfig"><code>ExtenderTLSConfig</code></a>
-</td>
-<td>
-   TLSConfig specifies the transport layer security config</td>
-</tr>
-    
-  
-<tr><td><code>httpTimeout</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   HTTPTimeout specifies the timeout duration for a call to the extender. Filter timeout fails the scheduling of the pod. Prioritize
-timeout is ignored, k8s/other extenders priorities are used to select the node.</td>
-</tr>
-    
-  
-<tr><td><code>nodeCacheCapable</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   NodeCacheCapable specifies that the extender is capable of caching node information,
-so the scheduler should only send minimal information about the eligible nodes
-assuming that the extender already cached full details of all nodes in the cluster</td>
-</tr>
-    
-  
-<tr><td><code>managedResources</code><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ExtenderManagedResource"><code>[]ExtenderManagedResource</code></a>
-</td>
-<td>
-   ManagedResources is a list of extended resources that are managed by
-this extender.
-- A pod will be sent to the extender on the Filter, Prioritize and Bind
-  (if the extender is the binder) phases iff the pod requests at least
-  one of the extended resources in this list. If empty or unspecified,
-  all pods will be sent to this extender.
-- If IgnoredByScheduler is set to true for a resource, kube-scheduler
-  will skip checking the resource in predicates.</td>
-</tr>
-    
-  
-<tr><td><code>ignorable</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   Ignorable specifies if the extender is ignorable, i.e. scheduling should not
-fail when the extender returns an error or is not reachable.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `KubeSchedulerProfile`     {#kubescheduler-config-k8s-io-v1beta1-KubeSchedulerProfile}
-    
-
-
-
-**Appears in:**
-
-- [KubeSchedulerConfiguration](#kubescheduler-config-k8s-io-v1beta1-KubeSchedulerConfiguration)
-
-
-KubeSchedulerProfile is a scheduling profile.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>schedulerName</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   SchedulerName is the name of the scheduler associated to this profile.
-If SchedulerName matches with the pod's "spec.schedulerName", then the pod
-is scheduled with this profile.</td>
-</tr>
-    
-  
-<tr><td><code>plugins</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-Plugins"><code>Plugins</code></a>
-</td>
-<td>
-   Plugins specify the set of plugins that should be enabled or disabled.
-Enabled plugins are the ones that should be enabled in addition to the
-default plugins. Disabled plugins are any of the default plugins that
-should be disabled.
-When no enabled or disabled plugin is specified for an extension point,
-default plugins for that extension point will be used if there is any.
-If a QueueSort plugin is specified, the same QueueSort Plugin and
-PluginConfig must be specified for all profiles.</td>
-</tr>
-    
-  
-<tr><td><code>pluginConfig</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginConfig"><code>[]PluginConfig</code></a>
-</td>
-<td>
-   PluginConfig is an optional set of custom plugin arguments for each plugin.
-Omitting config args for a plugin is equivalent to using the default config
-for that plugin.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `Plugin`     {#kubescheduler-config-k8s-io-v1beta1-Plugin}
-    
-
-
-
-**Appears in:**
-
-- [PluginSet](#kubescheduler-config-k8s-io-v1beta1-PluginSet)
-
-
-Plugin specifies a plugin name and its weight when applicable. Weight is used only for Score plugins.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Name defines the name of plugin</td>
-</tr>
-    
-  
-<tr><td><code>weight</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   Weight defines the weight of plugin, only used for Score plugins.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PluginConfig`     {#kubescheduler-config-k8s-io-v1beta1-PluginConfig}
-    
-
-
-
-**Appears in:**
-
-- [KubeSchedulerProfile](#kubescheduler-config-k8s-io-v1beta1-KubeSchedulerProfile)
-
-
-PluginConfig specifies arguments that should be passed to a plugin at the time of initialization.
-A plugin that is invoked at multiple extension points is initialized once. Args can have arbitrary structure.
-It is up to the plugin to process these Args.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Name defines the name of plugin being configured</td>
-</tr>
-    
-  
-<tr><td><code>args</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/runtime/#RawExtension"><code>k8s.io/apimachinery/pkg/runtime.RawExtension</code></a>
-</td>
-<td>
-   Args defines the arguments passed to the plugins at the time of initialization. Args can have arbitrary structure.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PluginSet`     {#kubescheduler-config-k8s-io-v1beta1-PluginSet}
-    
-
-
-
-**Appears in:**
-
-- [Plugins](#kubescheduler-config-k8s-io-v1beta1-Plugins)
-
-
-PluginSet specifies enabled and disabled plugins for an extension point.
-If an array is empty, missing, or nil, default plugins at that extension point will be used.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>enabled</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-Plugin"><code>[]Plugin</code></a>
-</td>
-<td>
-   Enabled specifies plugins that should be enabled in addition to default plugins.
-These are called after default plugins and in the same order specified here.</td>
-</tr>
-    
-  
-<tr><td><code>disabled</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-Plugin"><code>[]Plugin</code></a>
-</td>
-<td>
-   Disabled specifies default plugins that should be disabled.
-When all default plugins need to be disabled, an array containing only one "&lowast;" should be provided.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `Plugins`     {#kubescheduler-config-k8s-io-v1beta1-Plugins}
-    
-
-
-
-**Appears in:**
-
-- [KubeSchedulerProfile](#kubescheduler-config-k8s-io-v1beta1-KubeSchedulerProfile)
-
-
-Plugins include multiple extension points. When specified, the list of plugins for
-a particular extension point are the only ones enabled. If an extension point is
-omitted from the config, then the default set of plugins is used for that extension point.
-Enabled plugins are called in the order specified here, after default plugins. If they need to
-be invoked before default plugins, default plugins must be disabled and re-enabled here in desired order.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>queueSort</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginSet"><code>PluginSet</code></a>
-</td>
-<td>
-   QueueSort is a list of plugins that should be invoked when sorting pods in the scheduling queue.</td>
-</tr>
-    
-  
-<tr><td><code>preFilter</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginSet"><code>PluginSet</code></a>
-</td>
-<td>
-   PreFilter is a list of plugins that should be invoked at "PreFilter" extension point of the scheduling framework.</td>
-</tr>
-    
-  
-<tr><td><code>filter</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginSet"><code>PluginSet</code></a>
-</td>
-<td>
-   Filter is a list of plugins that should be invoked when filtering out nodes that cannot run the Pod.</td>
-</tr>
-    
-  
-<tr><td><code>postFilter</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginSet"><code>PluginSet</code></a>
-</td>
-<td>
-   PostFilter is a list of plugins that are invoked after filtering phase, no matter whether filtering succeeds or not.</td>
-</tr>
-    
-  
-<tr><td><code>preScore</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginSet"><code>PluginSet</code></a>
-</td>
-<td>
-   PreScore is a list of plugins that are invoked before scoring.</td>
-</tr>
-    
-  
-<tr><td><code>score</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginSet"><code>PluginSet</code></a>
-</td>
-<td>
-   Score is a list of plugins that should be invoked when ranking nodes that have passed the filtering phase.</td>
-</tr>
-    
-  
-<tr><td><code>reserve</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginSet"><code>PluginSet</code></a>
-</td>
-<td>
-   Reserve is a list of plugins invoked when reserving/unreserving resources
-after a node is assigned to run the pod.</td>
-</tr>
-    
-  
-<tr><td><code>permit</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginSet"><code>PluginSet</code></a>
-</td>
-<td>
-   Permit is a list of plugins that control binding of a Pod. These plugins can prevent or delay binding of a Pod.</td>
-</tr>
-    
-  
-<tr><td><code>preBind</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginSet"><code>PluginSet</code></a>
-</td>
-<td>
-   PreBind is a list of plugins that should be invoked before a pod is bound.</td>
-</tr>
-    
-  
-<tr><td><code>bind</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginSet"><code>PluginSet</code></a>
-</td>
-<td>
-   Bind is a list of plugins that should be invoked at "Bind" extension point of the scheduling framework.
-The scheduler call these plugins in order. Scheduler skips the rest of these plugins as soon as one returns success.</td>
-</tr>
-    
-  
-<tr><td><code>postBind</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1beta1-PluginSet"><code>PluginSet</code></a>
-</td>
-<td>
-   PostBind is a list of plugins that should be invoked after a pod is successfully bound.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PodTopologySpreadConstraintsDefaulting`     {#kubescheduler-config-k8s-io-v1beta1-PodTopologySpreadConstraintsDefaulting}
-    
-(Alias of `string`)
-
-
-**Appears in:**
-
-- [PodTopologySpreadArgs](#kubescheduler-config-k8s-io-v1beta1-PodTopologySpreadArgs)
-
-
-PodTopologySpreadConstraintsDefaulting defines how to set default constraints
-for the PodTopologySpread plugin.
-
-
-    
-
-
-## `ResourceSpec`     {#kubescheduler-config-k8s-io-v1beta1-ResourceSpec}
-    
-
-
-
-**Appears in:**
-
-- [NodeResourcesLeastAllocatedArgs](#kubescheduler-config-k8s-io-v1beta1-NodeResourcesLeastAllocatedArgs)
-
-- [NodeResourcesMostAllocatedArgs](#kubescheduler-config-k8s-io-v1beta1-NodeResourcesMostAllocatedArgs)
-
-- [RequestedToCapacityRatioArgs](#kubescheduler-config-k8s-io-v1beta1-RequestedToCapacityRatioArgs)
-
-
-ResourceSpec represents single resource and weight for bin packing of priority RequestedToCapacityRatioArguments.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Name of the resource to be managed by RequestedToCapacityRatio function.</td>
-</tr>
-    
-  
-<tr><td><code>weight</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   Weight of the resource.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `UtilizationShapePoint`     {#kubescheduler-config-k8s-io-v1beta1-UtilizationShapePoint}
-    
-
-
-
-**Appears in:**
-
-- [RequestedToCapacityRatioArgs](#kubescheduler-config-k8s-io-v1beta1-RequestedToCapacityRatioArgs)
-
-
-UtilizationShapePoint represents single point of priority function shape.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>utilization</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   Utilization (x axis). Valid values are 0 to 100. Fully utilized node maps to 100.</td>
-</tr>
-    
-  
-<tr><td><code>score</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   Score assigned to given utilization (y axis). Valid values are 0 to 10.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-  
diff --git a/content/zh/docs/reference/config-api/kube-scheduler-policy-config.v1.md b/content/zh/docs/reference/config-api/kube-scheduler-policy-config.v1.md
deleted file mode 100644
index e694f7ecbc..0000000000
--- a/content/zh/docs/reference/config-api/kube-scheduler-policy-config.v1.md
+++ /dev/null
@@ -1,799 +0,0 @@
----
-title: kube-scheduler Policy Configuration (v1)
-content_type: tool-reference
-package: kubescheduler.config.k8s.io/v1
-auto_generated: true
----
-
-
-## Resource Types 
-
-
-- [Policy](#kubescheduler-config-k8s-io-v1-Policy)
-  
-    
-
-
-## `Policy`     {#kubescheduler-config-k8s-io-v1-Policy}
-    
-
-
-
-
-Policy describes a struct for a policy resource used in api.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubescheduler.config.k8s.io/v1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>Policy</code></td></tr>
-    
-
-  
-  
-<tr><td><code>predicates</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-PredicatePolicy"><code>[]PredicatePolicy</code></a>
-</td>
-<td>
-   Holds the information to configure the fit predicate functions</td>
-</tr>
-    
-  
-<tr><td><code>priorities</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-PriorityPolicy"><code>[]PriorityPolicy</code></a>
-</td>
-<td>
-   Holds the information to configure the priority functions</td>
-</tr>
-    
-  
-<tr><td><code>extenders</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-LegacyExtender"><code>[]LegacyExtender</code></a>
-</td>
-<td>
-   Holds the information to communicate with the extender(s)</td>
-</tr>
-    
-  
-<tr><td><code>hardPodAffinitySymmetricWeight</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   RequiredDuringScheduling affinity is not symmetric, but there is an implicit PreferredDuringScheduling affinity rule
-corresponding to every RequiredDuringScheduling affinity rule.
-HardPodAffinitySymmetricWeight represents the weight of implicit PreferredDuringScheduling affinity rule, in the range 1-100.</td>
-</tr>
-    
-  
-<tr><td><code>alwaysCheckAllPredicates</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   When AlwaysCheckAllPredicates is set to true, scheduler checks all
-the configured predicates even after one or more of them fails.
-When the flag is set to false, scheduler skips checking the rest
-of the predicates after it finds one predicate that failed.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ExtenderManagedResource`     {#kubescheduler-config-k8s-io-v1-ExtenderManagedResource}
-    
-
-
-
-**Appears in:**
-
-- [Extender](#kubescheduler-config-k8s-io-v1beta1-Extender)
-
-- [LegacyExtender](#kubescheduler-config-k8s-io-v1-LegacyExtender)
-
-
-ExtenderManagedResource describes the arguments of extended resources
-managed by an extender.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Name is the extended resource name.</td>
-</tr>
-    
-  
-<tr><td><code>ignoredByScheduler</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   IgnoredByScheduler indicates whether kube-scheduler should ignore this
-resource when applying predicates.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ExtenderTLSConfig`     {#kubescheduler-config-k8s-io-v1-ExtenderTLSConfig}
-    
-
-
-
-**Appears in:**
-
-- [Extender](#kubescheduler-config-k8s-io-v1beta1-Extender)
-
-- [LegacyExtender](#kubescheduler-config-k8s-io-v1-LegacyExtender)
-
-
-ExtenderTLSConfig contains settings to enable TLS with extender
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>insecure</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   Server should be accessed without verifying the TLS certificate. For testing only.</td>
-</tr>
-    
-  
-<tr><td><code>serverName</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   ServerName is passed to the server for SNI and is used in the client to check server
-certificates against. If ServerName is empty, the hostname used to contact the
-server is used.</td>
-</tr>
-    
-  
-<tr><td><code>certFile</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Server requires TLS client certificate authentication</td>
-</tr>
-    
-  
-<tr><td><code>keyFile</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Server requires TLS client certificate authentication</td>
-</tr>
-    
-  
-<tr><td><code>caFile</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Trusted root certificates for server</td>
-</tr>
-    
-  
-<tr><td><code>certData</code> <B>[Required]</B><br/>
-<code>[]byte</code>
-</td>
-<td>
-   CertData holds PEM-encoded bytes (typically read from a client certificate file).
-CertData takes precedence over CertFile</td>
-</tr>
-    
-  
-<tr><td><code>keyData</code> <B>[Required]</B><br/>
-<code>[]byte</code>
-</td>
-<td>
-   KeyData holds PEM-encoded bytes (typically read from a client certificate key file).
-KeyData takes precedence over KeyFile</td>
-</tr>
-    
-  
-<tr><td><code>caData</code> <B>[Required]</B><br/>
-<code>[]byte</code>
-</td>
-<td>
-   CAData holds PEM-encoded bytes (typically read from a root certificates bundle).
-CAData takes precedence over CAFile</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `LabelPreference`     {#kubescheduler-config-k8s-io-v1-LabelPreference}
-    
-
-
-
-**Appears in:**
-
-- [PriorityArgument](#kubescheduler-config-k8s-io-v1-PriorityArgument)
-
-
-LabelPreference holds the parameters that are used to configure the corresponding priority function
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>label</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Used to identify node "groups"</td>
-</tr>
-    
-  
-<tr><td><code>presence</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   This is a boolean flag
-If true, higher priority is given to nodes that have the label
-If false, higher priority is given to nodes that do not have the label</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `LabelsPresence`     {#kubescheduler-config-k8s-io-v1-LabelsPresence}
-    
-
-
-
-**Appears in:**
-
-- [PredicateArgument](#kubescheduler-config-k8s-io-v1-PredicateArgument)
-
-
-LabelsPresence holds the parameters that are used to configure the corresponding predicate in scheduler policy configuration.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>labels</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   The list of labels that identify node "groups"
-All of the labels should be either present (or absent) for the node to be considered a fit for hosting the pod</td>
-</tr>
-    
-  
-<tr><td><code>presence</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   The boolean flag that indicates whether the labels should be present or absent from the node</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `LegacyExtender`     {#kubescheduler-config-k8s-io-v1-LegacyExtender}
-    
-
-
-
-**Appears in:**
-
-- [Policy](#kubescheduler-config-k8s-io-v1-Policy)
-
-
-LegacyExtender holds the parameters used to communicate with the extender. If a verb is unspecified/empty,
-it is assumed that the extender chose not to provide that extension.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>urlPrefix</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   URLPrefix at which the extender is available</td>
-</tr>
-    
-  
-<tr><td><code>filterVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the filter call, empty if not supported. This verb is appended to the URLPrefix when issuing the filter call to extender.</td>
-</tr>
-    
-  
-<tr><td><code>preemptVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the preempt call, empty if not supported. This verb is appended to the URLPrefix when issuing the preempt call to extender.</td>
-</tr>
-    
-  
-<tr><td><code>prioritizeVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the prioritize call, empty if not supported. This verb is appended to the URLPrefix when issuing the prioritize call to extender.</td>
-</tr>
-    
-  
-<tr><td><code>weight</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   The numeric multiplier for the node scores that the prioritize call generates.
-The weight should be a positive integer</td>
-</tr>
-    
-  
-<tr><td><code>bindVerb</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Verb for the bind call, empty if not supported. This verb is appended to the URLPrefix when issuing the bind call to extender.
-If this method is implemented by the extender, it is the extender's responsibility to bind the pod to apiserver. Only one extender
-can implement this function.</td>
-</tr>
-    
-  
-<tr><td><code>enableHttps</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   EnableHTTPS specifies whether https should be used to communicate with the extender</td>
-</tr>
-    
-  
-<tr><td><code>tlsConfig</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ExtenderTLSConfig"><code>ExtenderTLSConfig</code></a>
-</td>
-<td>
-   TLSConfig specifies the transport layer security config</td>
-</tr>
-    
-  
-<tr><td><code>httpTimeout</code> <B>[Required]</B><br/>
-<a href="https://godoc.org/time#Duration"><code>time.Duration</code></a>
-</td>
-<td>
-   HTTPTimeout specifies the timeout duration for a call to the extender. Filter timeout fails the scheduling of the pod. Prioritize
-timeout is ignored, k8s/other extenders priorities are used to select the node.</td>
-</tr>
-    
-  
-<tr><td><code>nodeCacheCapable</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   NodeCacheCapable specifies that the extender is capable of caching node information,
-so the scheduler should only send minimal information about the eligible nodes
-assuming that the extender already cached full details of all nodes in the cluster</td>
-</tr>
-    
-  
-<tr><td><code>managedResources</code><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ExtenderManagedResource"><code>[]ExtenderManagedResource</code></a>
-</td>
-<td>
-   ManagedResources is a list of extended resources that are managed by
-this extender.
-- A pod will be sent to the extender on the Filter, Prioritize and Bind
-  (if the extender is the binder) phases iff the pod requests at least
-  one of the extended resources in this list. If empty or unspecified,
-  all pods will be sent to this extender.
-- If IgnoredByScheduler is set to true for a resource, kube-scheduler
-  will skip checking the resource in predicates.</td>
-</tr>
-    
-  
-<tr><td><code>ignorable</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   Ignorable specifies if the extender is ignorable, i.e. scheduling should not
-fail when the extender returns an error or is not reachable.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PredicateArgument`     {#kubescheduler-config-k8s-io-v1-PredicateArgument}
-    
-
-
-
-**Appears in:**
-
-- [PredicatePolicy](#kubescheduler-config-k8s-io-v1-PredicatePolicy)
-
-
-PredicateArgument represents the arguments to configure predicate functions in scheduler policy configuration.
-Only one of its members may be specified
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>serviceAffinity</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ServiceAffinity"><code>ServiceAffinity</code></a>
-</td>
-<td>
-   The predicate that provides affinity for pods belonging to a service
-It uses a label to identify nodes that belong to the same "group"</td>
-</tr>
-    
-  
-<tr><td><code>labelsPresence</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-LabelsPresence"><code>LabelsPresence</code></a>
-</td>
-<td>
-   The predicate that checks whether a particular node has a certain label
-defined or not, regardless of value</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PredicatePolicy`     {#kubescheduler-config-k8s-io-v1-PredicatePolicy}
-    
-
-
-
-**Appears in:**
-
-- [Policy](#kubescheduler-config-k8s-io-v1-Policy)
-
-
-PredicatePolicy describes a struct of a predicate policy.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Identifier of the predicate policy
-For a custom predicate, the name can be user-defined
-For the Kubernetes provided predicates, the name is the identifier of the pre-defined predicate</td>
-</tr>
-    
-  
-<tr><td><code>argument</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-PredicateArgument"><code>PredicateArgument</code></a>
-</td>
-<td>
-   Holds the parameters to configure the given predicate</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PriorityArgument`     {#kubescheduler-config-k8s-io-v1-PriorityArgument}
-    
-
-
-
-**Appears in:**
-
-- [PriorityPolicy](#kubescheduler-config-k8s-io-v1-PriorityPolicy)
-
-
-PriorityArgument represents the arguments to configure priority functions in scheduler policy configuration.
-Only one of its members may be specified
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>serviceAntiAffinity</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ServiceAntiAffinity"><code>ServiceAntiAffinity</code></a>
-</td>
-<td>
-   The priority function that ensures a good spread (anti-affinity) for pods belonging to a service
-It uses a label to identify nodes that belong to the same "group"</td>
-</tr>
-    
-  
-<tr><td><code>labelPreference</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-LabelPreference"><code>LabelPreference</code></a>
-</td>
-<td>
-   The priority function that checks whether a particular node has a certain label
-defined or not, regardless of value</td>
-</tr>
-    
-  
-<tr><td><code>requestedToCapacityRatioArguments</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-RequestedToCapacityRatioArguments"><code>RequestedToCapacityRatioArguments</code></a>
-</td>
-<td>
-   The RequestedToCapacityRatio priority function is parametrized with function shape.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `PriorityPolicy`     {#kubescheduler-config-k8s-io-v1-PriorityPolicy}
-    
-
-
-
-**Appears in:**
-
-- [Policy](#kubescheduler-config-k8s-io-v1-Policy)
-
-
-PriorityPolicy describes a struct of a priority policy.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Identifier of the priority policy
-For a custom priority, the name can be user-defined
-For the Kubernetes provided priority functions, the name is the identifier of the pre-defined priority function</td>
-</tr>
-    
-  
-<tr><td><code>weight</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   The numeric multiplier for the node scores that the priority function generates
-The weight should be non-zero and can be a positive or a negative integer</td>
-</tr>
-    
-  
-<tr><td><code>argument</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-PriorityArgument"><code>PriorityArgument</code></a>
-</td>
-<td>
-   Holds the parameters to configure the given priority function</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `RequestedToCapacityRatioArguments`     {#kubescheduler-config-k8s-io-v1-RequestedToCapacityRatioArguments}
-    
-
-
-
-**Appears in:**
-
-- [PriorityArgument](#kubescheduler-config-k8s-io-v1-PriorityArgument)
-
-
-RequestedToCapacityRatioArguments holds arguments specific to RequestedToCapacityRatio priority function.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>shape</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-UtilizationShapePoint"><code>[]UtilizationShapePoint</code></a>
-</td>
-<td>
-   Array of point defining priority function shape.</td>
-</tr>
-    
-  
-<tr><td><code>resources</code> <B>[Required]</B><br/>
-<a href="#kubescheduler-config-k8s-io-v1-ResourceSpec"><code>[]ResourceSpec</code></a>
-</td>
-<td>
-   <span class="text-muted">No description provided.</span>
-   </td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ResourceSpec`     {#kubescheduler-config-k8s-io-v1-ResourceSpec}
-    
-
-
-
-**Appears in:**
-
-- [RequestedToCapacityRatioArguments](#kubescheduler-config-k8s-io-v1-RequestedToCapacityRatioArguments)
-
-
-ResourceSpec represents single resource and weight for bin packing of priority RequestedToCapacityRatioArguments.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>name</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Name of the resource to be managed by RequestedToCapacityRatio function.</td>
-</tr>
-    
-  
-<tr><td><code>weight</code> <B>[Required]</B><br/>
-<code>int64</code>
-</td>
-<td>
-   Weight of the resource.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ServiceAffinity`     {#kubescheduler-config-k8s-io-v1-ServiceAffinity}
-    
-
-
-
-**Appears in:**
-
-- [PredicateArgument](#kubescheduler-config-k8s-io-v1-PredicateArgument)
-
-
-ServiceAffinity holds the parameters that are used to configure the corresponding predicate in scheduler policy configuration.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>labels</code> <B>[Required]</B><br/>
-<code>[]string</code>
-</td>
-<td>
-   The list of labels that identify node "groups"
-All of the labels should match for the node to be considered a fit for hosting the pod</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ServiceAntiAffinity`     {#kubescheduler-config-k8s-io-v1-ServiceAntiAffinity}
-    
-
-
-
-**Appears in:**
-
-- [PriorityArgument](#kubescheduler-config-k8s-io-v1-PriorityArgument)
-
-
-ServiceAntiAffinity holds the parameters that are used to configure the corresponding priority function
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>label</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Used to identify node "groups"</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `UtilizationShapePoint`     {#kubescheduler-config-k8s-io-v1-UtilizationShapePoint}
-    
-
-
-
-**Appears in:**
-
-- [RequestedToCapacityRatioArguments](#kubescheduler-config-k8s-io-v1-RequestedToCapacityRatioArguments)
-
-
-UtilizationShapePoint represents single point of priority function shape.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>utilization</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   Utilization (x axis). Valid values are 0 to 100. Fully utilized node maps to 100.</td>
-</tr>
-    
-  
-<tr><td><code>score</code> <B>[Required]</B><br/>
-<code>int32</code>
-</td>
-<td>
-   Score assigned to given utilization (y axis). Valid values are 0 to 10.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-  
diff --git a/content/zh/docs/reference/config-api/kubelet-config.v1beta1.md b/content/zh/docs/reference/config-api/kubelet-config.v1beta1.md
deleted file mode 100644
index bee05b68db..0000000000
--- a/content/zh/docs/reference/config-api/kubelet-config.v1beta1.md
+++ /dev/null
@@ -1,1604 +0,0 @@
----
-title: Kubelet Configuration (v1beta1)
-content_type: tool-reference
-package: kubelet.config.k8s.io/v1beta1
-auto_generated: true
----
-
-
-## Resource Types 
-
-
-- [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
-- [SerializedNodeConfigSource](#kubelet-config-k8s-io-v1beta1-SerializedNodeConfigSource)
-  
-    
-
-
-## `KubeletConfiguration`     {#kubelet-config-k8s-io-v1beta1-KubeletConfiguration}
-    
-
-
-
-
-KubeletConfiguration contains the configuration for the Kubelet
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubelet.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>KubeletConfiguration</code></td></tr>
-    
-
-  
-  
-<tr><td><code>enableServer</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   enableServer enables Kubelet's secured server.
-Note: Kubelet's insecure port is controlled by the readOnlyPort option.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may disrupt components that interact with the Kubelet server.
-Default: true</td>
-</tr>
-    
-  
-<tr><td><code>staticPodPath</code><br/>
-<code>string</code>
-</td>
-<td>
-   staticPodPath is the path to the directory containing local (static) pods to
-run, or the path to a single static pod file.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-the set of static pods specified at the new path may be different than the
-ones the Kubelet initially started with, and this may disrupt your node.
-Default: ""</td>
-</tr>
-    
-  
-<tr><td><code>syncFrequency</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   syncFrequency is the max period between synchronizing running
-containers and config.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-shortening this duration may have a negative performance impact, especially
-as the number of Pods on the node increases. Alternatively, increasing this
-duration will result in longer refresh times for ConfigMaps and Secrets.
-Default: "1m"</td>
-</tr>
-    
-  
-<tr><td><code>fileCheckFrequency</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   fileCheckFrequency is the duration between checking config files for
-new data
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-shortening the duration will cause the Kubelet to reload local Static Pod
-configurations more frequently, which may have a negative performance impact.
-Default: "20s"</td>
-</tr>
-    
-  
-<tr><td><code>httpCheckFrequency</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   httpCheckFrequency is the duration between checking http for new data
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-shortening the duration will cause the Kubelet to poll staticPodURL more
-frequently, which may have a negative performance impact.
-Default: "20s"</td>
-</tr>
-    
-  
-<tr><td><code>staticPodURL</code><br/>
-<code>string</code>
-</td>
-<td>
-   staticPodURL is the URL for accessing static pods to run
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-the set of static pods specified at the new URL may be different than the
-ones the Kubelet initially started with, and this may disrupt your node.
-Default: ""</td>
-</tr>
-    
-  
-<tr><td><code>staticPodURLHeader</code><br/>
-<code>map[string][]string</code>
-</td>
-<td>
-   staticPodURLHeader is a map of slices with HTTP headers to use when accessing the podURL
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may disrupt the ability to read the latest set of static pods from StaticPodURL.
-Default: nil</td>
-</tr>
-    
-  
-<tr><td><code>address</code><br/>
-<code>string</code>
-</td>
-<td>
-   address is the IP address for the Kubelet to serve on (set to 0.0.0.0
-for all interfaces).
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may disrupt components that interact with the Kubelet server.
-Default: "0.0.0.0"</td>
-</tr>
-    
-  
-<tr><td><code>port</code><br/>
-<code>int32</code>
-</td>
-<td>
-   port is the port for the Kubelet to serve on.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may disrupt components that interact with the Kubelet server.
-Default: 10250</td>
-</tr>
-    
-  
-<tr><td><code>readOnlyPort</code><br/>
-<code>int32</code>
-</td>
-<td>
-   readOnlyPort is the read-only port for the Kubelet to serve on with
-no authentication/authorization.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may disrupt components that interact with the Kubelet server.
-Default: 0 (disabled)</td>
-</tr>
-    
-  
-<tr><td><code>tlsCertFile</code><br/>
-<code>string</code>
-</td>
-<td>
-   tlsCertFile is the file containing x509 Certificate for HTTPS. (CA cert,
-if any, concatenated after server cert). If tlsCertFile and
-tlsPrivateKeyFile are not provided, a self-signed certificate
-and key are generated for the public address and saved to the directory
-passed to the Kubelet's --cert-dir flag.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may disrupt components that interact with the Kubelet server.
-Default: ""</td>
-</tr>
-    
-  
-<tr><td><code>tlsPrivateKeyFile</code><br/>
-<code>string</code>
-</td>
-<td>
-   tlsPrivateKeyFile is the file containing x509 private key matching tlsCertFile
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may disrupt components that interact with the Kubelet server.
-Default: ""</td>
-</tr>
-    
-  
-<tr><td><code>tlsCipherSuites</code><br/>
-<code>[]string</code>
-</td>
-<td>
-   TLSCipherSuites is the list of allowed cipher suites for the server.
-Values are from tls package constants (https://golang.org/pkg/crypto/tls/#pkg-constants).
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may disrupt components that interact with the Kubelet server.
-Default: nil</td>
-</tr>
-    
-  
-<tr><td><code>tlsMinVersion</code><br/>
-<code>string</code>
-</td>
-<td>
-   TLSMinVersion is the minimum TLS version supported.
-Values are from tls package constants (https://golang.org/pkg/crypto/tls/#pkg-constants).
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may disrupt components that interact with the Kubelet server.
-Default: ""</td>
-</tr>
-    
-  
-<tr><td><code>rotateCertificates</code><br/>
-<code>bool</code>
-</td>
-<td>
-   rotateCertificates enables client certificate rotation. The Kubelet will request a
-new certificate from the certificates.k8s.io API. This requires an approver to approve the
-certificate signing requests.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-disabling it may disrupt the Kubelet's ability to authenticate with the API server
-after the current certificate expires.
-Default: false</td>
-</tr>
-    
-  
-<tr><td><code>serverTLSBootstrap</code><br/>
-<code>bool</code>
-</td>
-<td>
-   serverTLSBootstrap enables server certificate bootstrap. Instead of self
-signing a serving certificate, the Kubelet will request a certificate from
-the certificates.k8s.io API. This requires an approver to approve the
-certificate signing requests. The RotateKubeletServerCertificate feature
-must be enabled.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-disabling it will stop the renewal of Kubelet server certificates, which can
-disrupt components that interact with the Kubelet server in the long term,
-due to certificate expiration.
-Default: false</td>
-</tr>
-    
-  
-<tr><td><code>authentication</code><br/>
-<a href="#kubelet-config-k8s-io-v1beta1-KubeletAuthentication"><code>KubeletAuthentication</code></a>
-</td>
-<td>
-   authentication specifies how requests to the Kubelet's server are authenticated
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may disrupt components that interact with the Kubelet server.
-Defaults:
-  anonymous:
-    enabled: false
-  webhook:
-    enabled: true
-    cacheTTL: "2m"</td>
-</tr>
-    
-  
-<tr><td><code>authorization</code><br/>
-<a href="#kubelet-config-k8s-io-v1beta1-KubeletAuthorization"><code>KubeletAuthorization</code></a>
-</td>
-<td>
-   authorization specifies how requests to the Kubelet's server are authorized
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may disrupt components that interact with the Kubelet server.
-Defaults:
-  mode: Webhook
-  webhook:
-    cacheAuthorizedTTL: "5m"
-    cacheUnauthorizedTTL: "30s"</td>
-</tr>
-    
-  
-<tr><td><code>registryPullQPS</code><br/>
-<code>int32</code>
-</td>
-<td>
-   registryPullQPS is the limit of registry pulls per second.
-Set to 0 for no limit.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may impact scalability by changing the amount of traffic produced
-by image pulls.
-Default: 5</td>
-</tr>
-    
-  
-<tr><td><code>registryBurst</code><br/>
-<code>int32</code>
-</td>
-<td>
-   registryBurst is the maximum size of bursty pulls, temporarily allows
-pulls to burst to this number, while still not exceeding registryPullQPS.
-Only used if registryPullQPS > 0.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may impact scalability by changing the amount of traffic produced
-by image pulls.
-Default: 10</td>
-</tr>
-    
-  
-<tr><td><code>eventRecordQPS</code><br/>
-<code>int32</code>
-</td>
-<td>
-   eventRecordQPS is the maximum event creations per second. If 0, there
-is no limit enforced.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may impact scalability by changing the amount of traffic produced by
-event creations.
-Default: 5</td>
-</tr>
-    
-  
-<tr><td><code>eventBurst</code><br/>
-<code>int32</code>
-</td>
-<td>
-   eventBurst is the maximum size of a burst of event creations, temporarily
-allows event creations to burst to this number, while still not exceeding
-eventRecordQPS. Only used if eventRecordQPS > 0.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may impact scalability by changing the amount of traffic produced by
-event creations.
-Default: 10</td>
-</tr>
-    
-  
-<tr><td><code>enableDebuggingHandlers</code><br/>
-<code>bool</code>
-</td>
-<td>
-   enableDebuggingHandlers enables server endpoints for log access
-and local running of containers and commands, including the exec,
-attach, logs, and portforward features.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-disabling it may disrupt components that interact with the Kubelet server.
-Default: true</td>
-</tr>
-    
-  
-<tr><td><code>enableContentionProfiling</code><br/>
-<code>bool</code>
-</td>
-<td>
-   enableContentionProfiling enables lock contention profiling, if enableDebuggingHandlers is true.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-enabling it may carry a performance impact.
-Default: false</td>
-</tr>
-    
-  
-<tr><td><code>healthzPort</code><br/>
-<code>int32</code>
-</td>
-<td>
-   healthzPort is the port of the localhost healthz endpoint (set to 0 to disable)
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may disrupt components that monitor Kubelet health.
-Default: 10248</td>
-</tr>
-    
-  
-<tr><td><code>healthzBindAddress</code><br/>
-<code>string</code>
-</td>
-<td>
-   healthzBindAddress is the IP address for the healthz server to serve on
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may disrupt components that monitor Kubelet health.
-Default: "127.0.0.1"</td>
-</tr>
-    
-  
-<tr><td><code>oomScoreAdj</code><br/>
-<code>int32</code>
-</td>
-<td>
-   oomScoreAdj is The oom-score-adj value for kubelet process. Values
-must be within the range [-1000, 1000].
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may impact the stability of nodes under memory pressure.
-Default: -999</td>
-</tr>
-    
-  
-<tr><td><code>clusterDomain</code><br/>
-<code>string</code>
-</td>
-<td>
-   clusterDomain is the DNS domain for this cluster. If set, kubelet will
-configure all containers to search this domain in addition to the
-host's search domains.
-Dynamic Kubelet Config (beta): Dynamically updating this field is not recommended,
-as it should be kept in sync with the rest of the cluster.
-Default: ""</td>
-</tr>
-    
-  
-<tr><td><code>clusterDNS</code><br/>
-<code>[]string</code>
-</td>
-<td>
-   clusterDNS is a list of IP addresses for the cluster DNS server. If set,
-kubelet will configure all containers to use this for DNS resolution
-instead of the host's DNS servers.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-changes will only take effect on Pods created after the update. Draining
-the node is recommended before changing this field.
-Default: nil</td>
-</tr>
-    
-  
-<tr><td><code>streamingConnectionIdleTimeout</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   streamingConnectionIdleTimeout is the maximum time a streaming connection
-can be idle before the connection is automatically closed.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may impact components that rely on infrequent updates over streaming
-connections to the Kubelet server.
-Default: "4h"</td>
-</tr>
-    
-  
-<tr><td><code>nodeStatusUpdateFrequency</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   nodeStatusUpdateFrequency is the frequency that kubelet computes node
-status. If node lease feature is not enabled, it is also the frequency that
-kubelet posts node status to master.
-Note: When node lease feature is not enabled, be cautious when changing the
-constant, it must work with nodeMonitorGracePeriod in nodecontroller.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may impact node scalability, and also that the node controller's
-nodeMonitorGracePeriod must be set to N&lowast;NodeStatusUpdateFrequency,
-where N is the number of retries before the node controller marks
-the node unhealthy.
-Default: "10s"</td>
-</tr>
-    
-  
-<tr><td><code>nodeStatusReportFrequency</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   nodeStatusReportFrequency is the frequency that kubelet posts node
-status to master if node status does not change. Kubelet will ignore this
-frequency and post node status immediately if any change is detected. It is
-only used when node lease feature is enabled. nodeStatusReportFrequency's
-default value is 1m. But if nodeStatusUpdateFrequency is set explicitly,
-nodeStatusReportFrequency's default value will be set to
-nodeStatusUpdateFrequency for backward compatibility.
-Default: "1m"</td>
-</tr>
-    
-  
-<tr><td><code>nodeLeaseDurationSeconds</code><br/>
-<code>int32</code>
-</td>
-<td>
-   nodeLeaseDurationSeconds is the duration the Kubelet will set on its corresponding Lease,
-when the NodeLease feature is enabled. This feature provides an indicator of node
-health by having the Kubelet create and periodically renew a lease, named after the node,
-in the kube-node-lease namespace. If the lease expires, the node can be considered unhealthy.
-The lease is currently renewed every 10s, per KEP-0009. In the future, the lease renewal interval
-may be set based on the lease duration.
-Requires the NodeLease feature gate to be enabled.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-decreasing the duration may reduce tolerance for issues that temporarily prevent
-the Kubelet from renewing the lease (e.g. a short-lived network issue).
-Default: 40</td>
-</tr>
-    
-  
-<tr><td><code>imageMinimumGCAge</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   imageMinimumGCAge is the minimum age for an unused image before it is
-garbage collected.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may trigger or delay garbage collection, and may change the image overhead
-on the node.
-Default: "2m"</td>
-</tr>
-    
-  
-<tr><td><code>imageGCHighThresholdPercent</code><br/>
-<code>int32</code>
-</td>
-<td>
-   imageGCHighThresholdPercent is the percent of disk usage after which
-image garbage collection is always run. The percent is calculated as
-this field value out of 100.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may trigger or delay garbage collection, and may change the image overhead
-on the node.
-Default: 85</td>
-</tr>
-    
-  
-<tr><td><code>imageGCLowThresholdPercent</code><br/>
-<code>int32</code>
-</td>
-<td>
-   imageGCLowThresholdPercent is the percent of disk usage before which
-image garbage collection is never run. Lowest disk usage to garbage
-collect to. The percent is calculated as this field value out of 100.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may trigger or delay garbage collection, and may change the image overhead
-on the node.
-Default: 80</td>
-</tr>
-    
-  
-<tr><td><code>volumeStatsAggPeriod</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   How frequently to calculate and cache volume disk usage for all pods
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-shortening the period may carry a performance impact.
-Default: "1m"</td>
-</tr>
-    
-  
-<tr><td><code>kubeletCgroups</code><br/>
-<code>string</code>
-</td>
-<td>
-   kubeletCgroups is the absolute name of cgroups to isolate the kubelet in
-Dynamic Kubelet Config (beta): This field should not be updated without a full node
-reboot. It is safest to keep this value the same as the local config.
-Default: ""</td>
-</tr>
-    
-  
-<tr><td><code>systemCgroups</code><br/>
-<code>string</code>
-</td>
-<td>
-   systemCgroups is absolute name of cgroups in which to place
-all non-kernel processes that are not already in a container. Empty
-for no container. Rolling back the flag requires a reboot.
-Dynamic Kubelet Config (beta): This field should not be updated without a full node
-reboot. It is safest to keep this value the same as the local config.
-Default: ""</td>
-</tr>
-    
-  
-<tr><td><code>cgroupRoot</code><br/>
-<code>string</code>
-</td>
-<td>
-   cgroupRoot is the root cgroup to use for pods. This is handled by the
-container runtime on a best effort basis.
-Dynamic Kubelet Config (beta): This field should not be updated without a full node
-reboot. It is safest to keep this value the same as the local config.
-Default: ""</td>
-</tr>
-    
-  
-<tr><td><code>cgroupsPerQOS</code><br/>
-<code>bool</code>
-</td>
-<td>
-   Enable QoS based Cgroup hierarchy: top level cgroups for QoS Classes
-And all Burstable and BestEffort pods are brought up under their
-specific top level QoS cgroup.
-Dynamic Kubelet Config (beta): This field should not be updated without a full node
-reboot. It is safest to keep this value the same as the local config.
-Default: true</td>
-</tr>
-    
-  
-<tr><td><code>cgroupDriver</code><br/>
-<code>string</code>
-</td>
-<td>
-   driver that the kubelet uses to manipulate cgroups on the host (cgroupfs or systemd)
-Dynamic Kubelet Config (beta): This field should not be updated without a full node
-reboot. It is safest to keep this value the same as the local config.
-Default: "cgroupfs"</td>
-</tr>
-    
-  
-<tr><td><code>cpuManagerPolicy</code><br/>
-<code>string</code>
-</td>
-<td>
-   CPUManagerPolicy is the name of the policy to use.
-Requires the CPUManager feature gate to be enabled.
-Dynamic Kubelet Config (beta): This field should not be updated without a full node
-reboot. It is safest to keep this value the same as the local config.
-Default: "none"</td>
-</tr>
-    
-  
-<tr><td><code>cpuManagerReconcilePeriod</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   CPU Manager reconciliation period.
-Requires the CPUManager feature gate to be enabled.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-shortening the period may carry a performance impact.
-Default: "10s"</td>
-</tr>
-    
-  
-<tr><td><code>topologyManagerPolicy</code><br/>
-<code>string</code>
-</td>
-<td>
-   TopologyManagerPolicy is the name of the policy to use.
-Policies other than "none" require the TopologyManager feature gate to be enabled.
-Dynamic Kubelet Config (beta): This field should not be updated without a full node
-reboot. It is safest to keep this value the same as the local config.
-Default: "none"</td>
-</tr>
-    
-  
-<tr><td><code>topologyManagerScope</code><br/>
-<code>string</code>
-</td>
-<td>
-   TopologyManagerScope represents the scope of topology hint generation
-that topology manager requests and hint providers generate.
-"pod" scope requires the TopologyManager feature gate to be enabled.
-Default: "container"</td>
-</tr>
-    
-  
-<tr><td><code>qosReserved</code><br/>
-<code>map[string]string</code>
-</td>
-<td>
-   qosReserved is a set of resource name to percentage pairs that specify
-the minimum percentage of a resource reserved for exclusive use by the
-guaranteed QoS tier.
-Currently supported resources: "memory"
-Requires the QOSReserved feature gate to be enabled.
-Dynamic Kubelet Config (beta): This field should not be updated without a full node
-reboot. It is safest to keep this value the same as the local config.
-Default: nil</td>
-</tr>
-    
-  
-<tr><td><code>runtimeRequestTimeout</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   runtimeRequestTimeout is the timeout for all runtime requests except long running
-requests - pull, logs, exec and attach.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may disrupt components that interact with the Kubelet server.
-Default: "2m"</td>
-</tr>
-    
-  
-<tr><td><code>hairpinMode</code><br/>
-<code>string</code>
-</td>
-<td>
-   hairpinMode specifies how the Kubelet should configure the container
-bridge for hairpin packets.
-Setting this flag allows endpoints in a Service to loadbalance back to
-themselves if they should try to access their own Service. Values:
-  "promiscuous-bridge": make the container bridge promiscuous.
-  "hairpin-veth":       set the hairpin flag on container veth interfaces.
-  "none":               do nothing.
-Generally, one must set --hairpin-mode=hairpin-veth to achieve hairpin NAT,
-because promiscuous-bridge assumes the existence of a container bridge named cbr0.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may require a node reboot, depending on the network plugin.
-Default: "promiscuous-bridge"</td>
-</tr>
-    
-  
-<tr><td><code>maxPods</code><br/>
-<code>int32</code>
-</td>
-<td>
-   maxPods is the number of pods that can run on this Kubelet.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-changes may cause Pods to fail admission on Kubelet restart, and may change
-the value reported in Node.Status.Capacity[v1.ResourcePods], thus affecting
-future scheduling decisions. Increasing this value may also decrease performance,
-as more Pods can be packed into a single node.
-Default: 110</td>
-</tr>
-    
-  
-<tr><td><code>podCIDR</code><br/>
-<code>string</code>
-</td>
-<td>
-   The CIDR to use for pod IP addresses, only used in standalone mode.
-In cluster mode, this is obtained from the master.
-Dynamic Kubelet Config (beta): This field should always be set to the empty default.
-It should only set for standalone Kubelets, which cannot use Dynamic Kubelet Config.
-Default: ""</td>
-</tr>
-    
-  
-<tr><td><code>podPidsLimit</code><br/>
-<code>int64</code>
-</td>
-<td>
-   PodPidsLimit is the maximum number of pids in any pod.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-lowering it may prevent container processes from forking after the change.
-Default: -1</td>
-</tr>
-    
-  
-<tr><td><code>resolvConf</code><br/>
-<code>string</code>
-</td>
-<td>
-   ResolverConfig is the resolver configuration file used as the basis
-for the container DNS resolution configuration.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-changes will only take effect on Pods created after the update. Draining
-the node is recommended before changing this field.
-Default: "/etc/resolv.conf"</td>
-</tr>
-    
-  
-<tr><td><code>runOnce</code><br/>
-<code>bool</code>
-</td>
-<td>
-   RunOnce causes the Kubelet to check the API server once for pods,
-run those in addition to the pods specified by static pod files, and exit.
-Default: false</td>
-</tr>
-    
-  
-<tr><td><code>cpuCFSQuota</code><br/>
-<code>bool</code>
-</td>
-<td>
-   cpuCFSQuota enables CPU CFS quota enforcement for containers that
-specify CPU limits.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-disabling it may reduce node stability.
-Default: true</td>
-</tr>
-    
-  
-<tr><td><code>cpuCFSQuotaPeriod</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   CPUCFSQuotaPeriod is the CPU CFS quota period value, cpu.cfs_period_us.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-limits set for containers will result in different cpu.cfs_quota settings. This
-will trigger container restarts on the node being reconfigured.
-Default: "100ms"</td>
-</tr>
-    
-  
-<tr><td><code>nodeStatusMaxImages</code><br/>
-<code>int32</code>
-</td>
-<td>
-   nodeStatusMaxImages caps the number of images reported in Node.Status.Images.
-Note: If -1 is specified, no cap will be applied. If 0 is specified, no image is returned.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-different values can be reported on node status.
-Default: 50</td>
-</tr>
-    
-  
-<tr><td><code>maxOpenFiles</code><br/>
-<code>int64</code>
-</td>
-<td>
-   maxOpenFiles is Number of files that can be opened by Kubelet process.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may impact the ability of the Kubelet to interact with the node's filesystem.
-Default: 1000000</td>
-</tr>
-    
-  
-<tr><td><code>contentType</code><br/>
-<code>string</code>
-</td>
-<td>
-   contentType is contentType of requests sent to apiserver.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may impact the ability for the Kubelet to communicate with the API server.
-If the Kubelet loses contact with the API server due to a change to this field,
-the change cannot be reverted via dynamic Kubelet config.
-Default: "application/vnd.kubernetes.protobuf"</td>
-</tr>
-    
-  
-<tr><td><code>kubeAPIQPS</code><br/>
-<code>int32</code>
-</td>
-<td>
-   kubeAPIQPS is the QPS to use while talking with kubernetes apiserver
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may impact scalability by changing the amount of traffic the Kubelet
-sends to the API server.
-Default: 5</td>
-</tr>
-    
-  
-<tr><td><code>kubeAPIBurst</code><br/>
-<code>int32</code>
-</td>
-<td>
-   kubeAPIBurst is the burst to allow while talking with kubernetes apiserver
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may impact scalability by changing the amount of traffic the Kubelet
-sends to the API server.
-Default: 10</td>
-</tr>
-    
-  
-<tr><td><code>serializeImagePulls</code><br/>
-<code>bool</code>
-</td>
-<td>
-   serializeImagePulls when enabled, tells the Kubelet to pull images one
-at a time. We recommend &lowast;not&lowast; changing the default value on nodes that
-run docker daemon with version  < 1.9 or an Aufs storage backend.
-Issue #10959 has more details.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may impact the performance of image pulls.
-Default: true</td>
-</tr>
-    
-  
-<tr><td><code>evictionHard</code><br/>
-<code>map[string]string</code>
-</td>
-<td>
-   Map of signal names to quantities that defines hard eviction thresholds. For example: {"memory.available": "300Mi"}.
-To explicitly disable, pass a 0% or 100% threshold on an arbitrary resource.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may trigger or delay Pod evictions.
-Default:
-  memory.available:  "100Mi"
-  nodefs.available:  "10%"
-  nodefs.inodesFree: "5%"
-  imagefs.available: "15%"</td>
-</tr>
-    
-  
-<tr><td><code>evictionSoft</code><br/>
-<code>map[string]string</code>
-</td>
-<td>
-   Map of signal names to quantities that defines soft eviction thresholds.
-For example: {"memory.available": "300Mi"}.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may trigger or delay Pod evictions, and may change the allocatable reported
-by the node.
-Default: nil</td>
-</tr>
-    
-  
-<tr><td><code>evictionSoftGracePeriod</code><br/>
-<code>map[string]string</code>
-</td>
-<td>
-   Map of signal names to quantities that defines grace periods for each soft eviction signal.
-For example: {"memory.available": "30s"}.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may trigger or delay Pod evictions.
-Default: nil</td>
-</tr>
-    
-  
-<tr><td><code>evictionPressureTransitionPeriod</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   Duration for which the kubelet has to wait before transitioning out of an eviction pressure condition.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-lowering it may decrease the stability of the node when the node is overcommitted.
-Default: "5m"</td>
-</tr>
-    
-  
-<tr><td><code>evictionMaxPodGracePeriod</code><br/>
-<code>int32</code>
-</td>
-<td>
-   Maximum allowed grace period (in seconds) to use when terminating pods in
-response to a soft eviction threshold being met. This value effectively caps
-the Pod's TerminationGracePeriodSeconds value during soft evictions.
-Note: Due to issue #64530, the behavior has a bug where this value currently just
-overrides the grace period during soft eviction, which can increase the grace
-period from what is set on the Pod. This bug will be fixed in a future release.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-lowering it decreases the amount of time Pods will have to gracefully clean
-up before being killed during a soft eviction.
-Default: 0</td>
-</tr>
-    
-  
-<tr><td><code>evictionMinimumReclaim</code><br/>
-<code>map[string]string</code>
-</td>
-<td>
-   Map of signal names to quantities that defines minimum reclaims, which describe the minimum
-amount of a given resource the kubelet will reclaim when performing a pod eviction while
-that resource is under pressure. For example: {"imagefs.available": "2Gi"}
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may change how well eviction can manage resource pressure.
-Default: nil</td>
-</tr>
-    
-  
-<tr><td><code>podsPerCore</code><br/>
-<code>int32</code>
-</td>
-<td>
-   podsPerCore is the maximum number of pods per core. Cannot exceed MaxPods.
-If 0, this field is ignored.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-changes may cause Pods to fail admission on Kubelet restart, and may change
-the value reported in Node.Status.Capacity[v1.ResourcePods], thus affecting
-future scheduling decisions. Increasing this value may also decrease performance,
-as more Pods can be packed into a single node.
-Default: 0</td>
-</tr>
-    
-  
-<tr><td><code>enableControllerAttachDetach</code><br/>
-<code>bool</code>
-</td>
-<td>
-   enableControllerAttachDetach enables the Attach/Detach controller to
-manage attachment/detachment of volumes scheduled to this node, and
-disables kubelet from executing any attach/detach operations
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-changing which component is responsible for volume management on a live node
-may result in volumes refusing to detach if the node is not drained prior to
-the update, and if Pods are scheduled to the node before the
-volumes.kubernetes.io/controller-managed-attach-detach annotation is updated by the
-Kubelet. In general, it is safest to leave this value set the same as local config.
-Default: true</td>
-</tr>
-    
-  
-<tr><td><code>protectKernelDefaults</code><br/>
-<code>bool</code>
-</td>
-<td>
-   protectKernelDefaults, if true, causes the Kubelet to error if kernel
-flags are not as it expects. Otherwise the Kubelet will attempt to modify
-kernel flags to match its expectation.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-enabling it may cause the Kubelet to crash-loop if the Kernel is not configured as
-Kubelet expects.
-Default: false</td>
-</tr>
-    
-  
-<tr><td><code>makeIPTablesUtilChains</code><br/>
-<code>bool</code>
-</td>
-<td>
-   If true, Kubelet ensures a set of iptables rules are present on host.
-These rules will serve as utility rules for various components, e.g. KubeProxy.
-The rules will be created based on IPTablesMasqueradeBit and IPTablesDropBit.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-disabling it will prevent the Kubelet from healing locally misconfigured iptables rules.
-Default: true</td>
-</tr>
-    
-  
-<tr><td><code>iptablesMasqueradeBit</code><br/>
-<code>int32</code>
-</td>
-<td>
-   iptablesMasqueradeBit is the bit of the iptables fwmark space to mark for SNAT
-Values must be within the range [0, 31]. Must be different from other mark bits.
-Warning: Please match the value of the corresponding parameter in kube-proxy.
-TODO: clean up IPTablesMasqueradeBit in kube-proxy
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it needs to be coordinated with other components, like kube-proxy, and the update
-will only be effective if MakeIPTablesUtilChains is enabled.
-Default: 14</td>
-</tr>
-    
-  
-<tr><td><code>iptablesDropBit</code><br/>
-<code>int32</code>
-</td>
-<td>
-   iptablesDropBit is the bit of the iptables fwmark space to mark for dropping packets.
-Values must be within the range [0, 31]. Must be different from other mark bits.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it needs to be coordinated with other components, like kube-proxy, and the update
-will only be effective if MakeIPTablesUtilChains is enabled.
-Default: 15</td>
-</tr>
-    
-  
-<tr><td><code>featureGates</code><br/>
-<code>map[string]bool</code>
-</td>
-<td>
-   featureGates is a map of feature names to bools that enable or disable alpha/experimental
-features. This field modifies piecemeal the built-in default values from
-"k8s.io/kubernetes/pkg/features/kube_features.go".
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider the
-documentation for the features you are enabling or disabling. While we
-encourage feature developers to make it possible to dynamically enable
-and disable features, some changes may require node reboots, and some
-features may require careful coordination to retroactively disable.
-Default: nil</td>
-</tr>
-    
-  
-<tr><td><code>failSwapOn</code><br/>
-<code>bool</code>
-</td>
-<td>
-   failSwapOn tells the Kubelet to fail to start if swap is enabled on the node.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-setting it to true will cause the Kubelet to crash-loop if swap is enabled.
-Default: true</td>
-</tr>
-    
-  
-<tr><td><code>containerLogMaxSize</code><br/>
-<code>string</code>
-</td>
-<td>
-   A quantity defines the maximum size of the container log file before it is rotated.
-For example: "5Mi" or "256Ki".
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may trigger log rotation.
-Default: "10Mi"</td>
-</tr>
-    
-  
-<tr><td><code>containerLogMaxFiles</code><br/>
-<code>int32</code>
-</td>
-<td>
-   Maximum number of container log files that can be present for a container.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-lowering it may cause log files to be deleted.
-Default: 5</td>
-</tr>
-    
-  
-<tr><td><code>configMapAndSecretChangeDetectionStrategy</code><br/>
-<a href="#kubelet-config-k8s-io-v1beta1-ResourceChangeDetectionStrategy"><code>ResourceChangeDetectionStrategy</code></a>
-</td>
-<td>
-   ConfigMapAndSecretChangeDetectionStrategy is a mode in which
-config map and secret managers are running.
-Default: "Watch"</td>
-</tr>
-    
-  
-<tr><td><code>systemReserved</code><br/>
-<code>map[string]string</code>
-</td>
-<td>
-   systemReserved is a set of ResourceName=ResourceQuantity (e.g. cpu=200m,memory=150G)
-pairs that describe resources reserved for non-kubernetes components.
-Currently only cpu and memory are supported.
-See http://kubernetes.io/docs/user-guide/compute-resources for more detail.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may not be possible to increase the reserved resources, because this
-requires resizing cgroups. Always look for a NodeAllocatableEnforced event
-after updating this field to ensure that the update was successful.
-Default: nil</td>
-</tr>
-    
-  
-<tr><td><code>kubeReserved</code><br/>
-<code>map[string]string</code>
-</td>
-<td>
-   A set of ResourceName=ResourceQuantity (e.g. cpu=200m,memory=150G) pairs
-that describe resources reserved for kubernetes system components.
-Currently cpu, memory and local storage for root file system are supported.
-See http://kubernetes.io/docs/user-guide/compute-resources for more detail.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may not be possible to increase the reserved resources, because this
-requires resizing cgroups. Always look for a NodeAllocatableEnforced event
-after updating this field to ensure that the update was successful.
-Default: nil</td>
-</tr>
-    
-  
-<tr><td><code>reservedSystemCPUs</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   This ReservedSystemCPUs option specifies the cpu list reserved for the host level system threads and kubernetes related threads.
-This provide a "static" CPU list rather than the "dynamic" list by system-reserved and kube-reserved.
-This option overwrites CPUs provided by system-reserved and kube-reserved.</td>
-</tr>
-    
-  
-<tr><td><code>showHiddenMetricsForVersion</code><br/>
-<code>string</code>
-</td>
-<td>
-   The previous version for which you want to show hidden metrics.
-Only the previous minor version is meaningful, other values will not be allowed.
-The format is <major>.<minor>, e.g.: '1.16'.
-The purpose of this format is make sure you have the opportunity to notice if the next release hides additional metrics,
-rather than being surprised when they are permanently removed in the release after that.
-Default: ""</td>
-</tr>
-    
-  
-<tr><td><code>systemReservedCgroup</code><br/>
-<code>string</code>
-</td>
-<td>
-   This flag helps kubelet identify absolute name of top level cgroup used to enforce `SystemReserved` compute resource reservation for OS system daemons.
-Refer to [Node Allocatable](https://git.k8s.io/community/contributors/design-proposals/node/node-allocatable.md) doc for more information.
-Dynamic Kubelet Config (beta): This field should not be updated without a full node
-reboot. It is safest to keep this value the same as the local config.
-Default: ""</td>
-</tr>
-    
-  
-<tr><td><code>kubeReservedCgroup</code><br/>
-<code>string</code>
-</td>
-<td>
-   This flag helps kubelet identify absolute name of top level cgroup used to enforce `KubeReserved` compute resource reservation for Kubernetes node system daemons.
-Refer to [Node Allocatable](https://git.k8s.io/community/contributors/design-proposals/node/node-allocatable.md) doc for more information.
-Dynamic Kubelet Config (beta): This field should not be updated without a full node
-reboot. It is safest to keep this value the same as the local config.
-Default: ""</td>
-</tr>
-    
-  
-<tr><td><code>enforceNodeAllocatable</code><br/>
-<code>[]string</code>
-</td>
-<td>
-   This flag specifies the various Node Allocatable enforcements that Kubelet needs to perform.
-This flag accepts a list of options. Acceptable options are `none`, `pods`, `system-reserved` & `kube-reserved`.
-If `none` is specified, no other options may be specified.
-Refer to [Node Allocatable](https://git.k8s.io/community/contributors/design-proposals/node/node-allocatable.md) doc for more information.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-removing enforcements may reduce the stability of the node. Alternatively, adding
-enforcements may reduce the stability of components which were using more than
-the reserved amount of resources; for example, enforcing kube-reserved may cause
-Kubelets to OOM if it uses more than the reserved resources, and enforcing system-reserved
-may cause system daemons to OOM if they use more than the reserved resources.
-Default: ["pods"]</td>
-</tr>
-    
-  
-<tr><td><code>allowedUnsafeSysctls</code><br/>
-<code>[]string</code>
-</td>
-<td>
-   A comma separated whitelist of unsafe sysctls or sysctl patterns (ending in &lowast;).
-Unsafe sysctl groups are kernel.shm&lowast;, kernel.msg&lowast;, kernel.sem, fs.mqueue.&lowast;, and net.&lowast;.
-These sysctls are namespaced but not allowed by default.  For example: "kernel.msg&lowast;,net.ipv4.route.min_pmtu"
-Default: []</td>
-</tr>
-    
-  
-<tr><td><code>volumePluginDir</code><br/>
-<code>string</code>
-</td>
-<td>
-   volumePluginDir is the full path of the directory in which to search
-for additional third party volume plugins.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that changing
-the volumePluginDir may disrupt workloads relying on third party volume plugins.
-Default: "/usr/libexec/kubernetes/kubelet-plugins/volume/exec/"</td>
-</tr>
-    
-  
-<tr><td><code>providerID</code><br/>
-<code>string</code>
-</td>
-<td>
-   providerID, if set, sets the unique id of the instance that an external provider (i.e. cloudprovider)
-can use to identify a specific node.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may impact the ability of the Kubelet to interact with cloud providers.
-Default: ""</td>
-</tr>
-    
-  
-<tr><td><code>kernelMemcgNotification</code><br/>
-<code>bool</code>
-</td>
-<td>
-   kernelMemcgNotification, if set, the kubelet will integrate with the kernel memcg notification
-to determine if memory eviction thresholds are crossed rather than polling.
-Dynamic Kubelet Config (beta): If dynamically updating this field, consider that
-it may impact the way Kubelet interacts with the kernel.
-Default: false</td>
-</tr>
-    
-  
-<tr><td><code>logging</code> <B>[Required]</B><br/>
-<a href="#LoggingConfiguration"><code>LoggingConfiguration</code></a>
-</td>
-<td>
-   Logging specifies the options of logging.
-Refer [Logs Options](https://github.com/kubernetes/component-base/blob/master/logs/options.go) for more information.
-Defaults:
-  Format: text</td>
-</tr>
-    
-  
-<tr><td><code>enableSystemLogHandler</code><br/>
-<code>bool</code>
-</td>
-<td>
-   enableSystemLogHandler enables system logs via web interface host:port/logs/
-Default: true</td>
-</tr>
-    
-  
-<tr><td><code>shutdownGracePeriod</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   ShutdownGracePeriod specifies the total duration that the node should delay the shutdown and total grace period for pod termination during a node shutdown.
-Default: "30s"</td>
-</tr>
-    
-  
-<tr><td><code>shutdownGracePeriodCriticalPods</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   ShutdownGracePeriodCriticalPods specifies the duration used to terminate critical pods during a node shutdown. This should be less than ShutdownGracePeriod.
-For example, if ShutdownGracePeriod=30s, and ShutdownGracePeriodCriticalPods=10s, during a node shutdown the first 20 seconds would be reserved for gracefully terminating normal pods, and the last 10 seconds would be reserved for terminating critical pods.
-Default: "10s"</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `SerializedNodeConfigSource`     {#kubelet-config-k8s-io-v1beta1-SerializedNodeConfigSource}
-    
-
-
-
-
-SerializedNodeConfigSource allows us to serialize v1.NodeConfigSource.
-This type is used internally by the Kubelet for tracking checkpointed dynamic configs.
-It exists in the kubeletconfig API group because it is classified as a versioned input to the Kubelet.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-<tr><td><code>apiVersion</code><br/>string</td><td><code>kubelet.config.k8s.io/v1beta1</code></td></tr>
-<tr><td><code>kind</code><br/>string</td><td><code>SerializedNodeConfigSource</code></td></tr>
-    
-
-  
-  
-<tr><td><code>source</code><br/>
-<a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.20/#nodeconfigsource-v1-core"><code>core/v1.NodeConfigSource</code></a>
-</td>
-<td>
-   Source is the source that we are serializing</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `HairpinMode`     {#kubelet-config-k8s-io-v1beta1-HairpinMode}
-    
-(Alias of `string`)
-
-
-
-HairpinMode denotes how the kubelet should configure networking to handle
-hairpin packets.
-
-
-    
-
-
-## `KubeletAnonymousAuthentication`     {#kubelet-config-k8s-io-v1beta1-KubeletAnonymousAuthentication}
-    
-
-
-
-**Appears in:**
-
-- [KubeletAuthentication](#kubelet-config-k8s-io-v1beta1-KubeletAuthentication)
-
-
-
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>enabled</code><br/>
-<code>bool</code>
-</td>
-<td>
-   enabled allows anonymous requests to the kubelet server.
-Requests that are not rejected by another authentication method are treated as anonymous requests.
-Anonymous requests have a username of system:anonymous, and a group name of system:unauthenticated.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `KubeletAuthentication`     {#kubelet-config-k8s-io-v1beta1-KubeletAuthentication}
-    
-
-
-
-**Appears in:**
-
-- [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
-
-
-
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>x509</code><br/>
-<a href="#kubelet-config-k8s-io-v1beta1-KubeletX509Authentication"><code>KubeletX509Authentication</code></a>
-</td>
-<td>
-   x509 contains settings related to x509 client certificate authentication</td>
-</tr>
-    
-  
-<tr><td><code>webhook</code><br/>
-<a href="#kubelet-config-k8s-io-v1beta1-KubeletWebhookAuthentication"><code>KubeletWebhookAuthentication</code></a>
-</td>
-<td>
-   webhook contains settings related to webhook bearer token authentication</td>
-</tr>
-    
-  
-<tr><td><code>anonymous</code><br/>
-<a href="#kubelet-config-k8s-io-v1beta1-KubeletAnonymousAuthentication"><code>KubeletAnonymousAuthentication</code></a>
-</td>
-<td>
-   anonymous contains settings related to anonymous authentication</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `KubeletAuthorization`     {#kubelet-config-k8s-io-v1beta1-KubeletAuthorization}
-    
-
-
-
-**Appears in:**
-
-- [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
-
-
-
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>mode</code><br/>
-<a href="#kubelet-config-k8s-io-v1beta1-KubeletAuthorizationMode"><code>KubeletAuthorizationMode</code></a>
-</td>
-<td>
-   mode is the authorization mode to apply to requests to the kubelet server.
-Valid values are AlwaysAllow and Webhook.
-Webhook mode uses the SubjectAccessReview API to determine authorization.</td>
-</tr>
-    
-  
-<tr><td><code>webhook</code><br/>
-<a href="#kubelet-config-k8s-io-v1beta1-KubeletWebhookAuthorization"><code>KubeletWebhookAuthorization</code></a>
-</td>
-<td>
-   webhook contains settings related to Webhook authorization.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `KubeletAuthorizationMode`     {#kubelet-config-k8s-io-v1beta1-KubeletAuthorizationMode}
-    
-(Alias of `string`)
-
-
-**Appears in:**
-
-- [KubeletAuthorization](#kubelet-config-k8s-io-v1beta1-KubeletAuthorization)
-
-
-
-
-
-    
-
-
-## `KubeletWebhookAuthentication`     {#kubelet-config-k8s-io-v1beta1-KubeletWebhookAuthentication}
-    
-
-
-
-**Appears in:**
-
-- [KubeletAuthentication](#kubelet-config-k8s-io-v1beta1-KubeletAuthentication)
-
-
-
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>enabled</code><br/>
-<code>bool</code>
-</td>
-<td>
-   enabled allows bearer token authentication backed by the tokenreviews.authentication.k8s.io API</td>
-</tr>
-    
-  
-<tr><td><code>cacheTTL</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   cacheTTL enables caching of authentication results</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `KubeletWebhookAuthorization`     {#kubelet-config-k8s-io-v1beta1-KubeletWebhookAuthorization}
-    
-
-
-
-**Appears in:**
-
-- [KubeletAuthorization](#kubelet-config-k8s-io-v1beta1-KubeletAuthorization)
-
-
-
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>cacheAuthorizedTTL</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   cacheAuthorizedTTL is the duration to cache 'authorized' responses from the webhook authorizer.</td>
-</tr>
-    
-  
-<tr><td><code>cacheUnauthorizedTTL</code><br/>
-<a href="https://godoc.org/k8s.io/apimachinery/pkg/apis/meta/v1#Duration"><code>meta/v1.Duration</code></a>
-</td>
-<td>
-   cacheUnauthorizedTTL is the duration to cache 'unauthorized' responses from the webhook authorizer.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `KubeletX509Authentication`     {#kubelet-config-k8s-io-v1beta1-KubeletX509Authentication}
-    
-
-
-
-**Appears in:**
-
-- [KubeletAuthentication](#kubelet-config-k8s-io-v1beta1-KubeletAuthentication)
-
-
-
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>clientCAFile</code><br/>
-<code>string</code>
-</td>
-<td>
-   clientCAFile is the path to a PEM-encoded certificate bundle. If set, any request presenting a client certificate
-signed by one of the authorities in the bundle is authenticated with a username corresponding to the CommonName,
-and groups corresponding to the Organization in the client certificate.</td>
-</tr>
-    
-  
-</tbody>
-</table>
-    
-
-
-## `ResourceChangeDetectionStrategy`     {#kubelet-config-k8s-io-v1beta1-ResourceChangeDetectionStrategy}
-    
-(Alias of `string`)
-
-
-**Appears in:**
-
-- [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
-
-
-ResourceChangeDetectionStrategy denotes a mode in which internal
-managers (secret, configmap) are discovering object changes.
-
-
-    
-  
-  
-    
-
-## `LoggingConfiguration`     {#LoggingConfiguration}
-    
-
-
-
-**Appears in:**
-
-- [KubeletConfiguration](#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)
-
-
-LoggingConfiguration contains logging options
-Refer [Logs Options](https://github.com/kubernetes/component-base/blob/master/logs/options.go) for more information.
-
-<table class="table">
-<thead><tr><th width="30%">Field</th><th>Description</th></tr></thead>
-<tbody>
-    
-
-  
-<tr><td><code>format</code> <B>[Required]</B><br/>
-<code>string</code>
-</td>
-<td>
-   Format Flag specifies the structure of log messages.
-default value of format is `text`</td>
-</tr>
-    
-  
-<tr><td><code>sanitization</code> <B>[Required]</B><br/>
-<code>bool</code>
-</td>
-<td>
-   [Experimental] When enabled prevents logging of fields tagged as sensitive (passwords, keys, tokens).
-Runtime log sanitization may introduce significant computation overhead and therefore should not be enabled in production.`)</td>
-</tr>
-    
-  
-</tbody>
-</table>
diff --git a/content/zh/docs/reference/glossary/kube-apiserver.md b/content/zh/docs/reference/glossary/kube-apiserver.md
deleted file mode 100644
index 05f9605b2a..0000000000
--- a/content/zh/docs/reference/glossary/kube-apiserver.md
+++ /dev/null
@@ -1,47 +0,0 @@
----
-title: kube-apiserver
-id: kube-apiserver
-date: 2018-04-12
-full_link: /zh/docs/reference/command-line-tools-reference/kube-apiserver/
-short_description: >
-  提供 Kubernetes API 服务的控制面组件。
-
-aka: 
-tags:
-- architecture
-- fundamental
----
-
-<!--
-title: kube-apiserver
-id: kube-apiserver
-date: 2018-04-12
-full_link: /zh/docs/reference/command-line-tools-reference/kube-apiserver/
-short_description: >
-  Control plane component that serves the Kubernetes API. 
-
-aka: 
-tags:
-- architecture
-- fundamental
--->
-
-<!--
- The API server is a component of the Kubernetes
-{{< glossary_tooltip text="control plane" term_id="control-plane" >}} that exposes the Kubernetes API.
-The API server is the front end for the Kubernetes control plane.
--->
-API 服务器是 Kubernetes {{< glossary_tooltip text="控制面" term_id="control-plane" >}}的组件，
-该组件公开了 Kubernetes API。
-API 服务器是 Kubernetes 控制面的前端。
-
-<!--more--> 
-
-<!--
-The main implementation of a Kubernetes API server is [kube-apiserver](/docs/reference/generated/kube-apiserver/).
-kube-apiserver is designed to scale horizontally&mdash;that is, it scales by deploying more instances.
-You can run several instances of kube-apiserver and balance traffic between those instances.
--->
-Kubernetes API 服务器的主要实现是 [kube-apiserver](/zh/docs/reference/command-line-tools-reference/kube-apiserver/)。
-kube-apiserver 设计上考虑了水平伸缩，也就是说，它可通过部署多个实例进行伸缩。
-你可以运行 kube-apiserver 的多个实例，并在这些实例之间平衡流量。
diff --git a/content/zh/docs/reference/glossary/kube-controller-manager.md b/content/zh/docs/reference/glossary/kube-controller-manager.md
deleted file mode 100644
index 43aa192d17..0000000000
--- a/content/zh/docs/reference/glossary/kube-controller-manager.md
+++ /dev/null
@@ -1,40 +0,0 @@
----
-title: kube-controller-manager
-id: kube-controller-manager
-date: 2018-04-12
-full_link: /docs/reference/generated/kube-controller-manager/
-short_description: >
-  主节点上运行控制器的组件。
-
-aka: 
-tags:
-- architecture
-- fundamental
----
-
-<!--
----
-title: kube-controller-manager
-id: kube-controller-manager
-date: 2018-04-12
-full_link: /docs/reference/generated/kube-controller-manager/
-short_description: >
-  Component on the master that runs controllers.
-
-aka: 
-tags:
-- architecture
-- fundamental
----
--->
-
-<!--
- Control plane component that runs {{< glossary_tooltip text="controller" term_id="controller" >}} processes.
--->
-运行{{< glossary_tooltip text="控制器" term_id="controller" >}}进程的控制平面组件。
-
-<!--more--> 
-
-从逻辑上讲，每个{{< glossary_tooltip text="控制器" term_id="controller" >}}都是一个单独的进程，
-但是为了降低复杂性，它们都被编译到同一个可执行文件，并在一个进程中运行。
-
diff --git a/content/zh/docs/reference/glossary/kube-proxy.md b/content/zh/docs/reference/glossary/kube-proxy.md
deleted file mode 100644
index 2b1048147f..0000000000
--- a/content/zh/docs/reference/glossary/kube-proxy.md
+++ /dev/null
@@ -1,42 +0,0 @@
----
-title: kube-proxy
-id: kube-proxy
-date: 2018-04-12
-full_link: /zh/docs/reference/command-line-tools-reference/kube-proxy/
-short_description: >
-  `kube-proxy` 是集群中每个节点上运行的网络代理。
-
-aka:
-tags:
-- fundamental
-- networking
----
-<!-- ---
-title: kube-proxy
-id: kube-proxy
-date: 2018-04-12
-full_link: /zh/docs/reference/command-line-tools-reference/kube-proxy/
-short_description: >
-  `kube-proxy` is a network proxy that runs on each node in the cluster.
-
-aka:
-tags:
-- fundamental
-- networking
---- -->
- <!-- [kube-proxy](/docs/reference/command-line-tools-reference/kube-proxy/) is a
-network proxy that runs on each node in your cluster, implementing part of
-the Kubernetes {{< glossary_tooltip term_id="service">}} concept. -->
-[kube-proxy](/zh/docs/reference/command-line-tools-reference/kube-proxy/) 是集群中每个节点上运行的网络代理，
-实现 Kubernetes {{< glossary_tooltip term_id="service">}} 概念的一部分。
-
-<!--more-->
-
-<!-- kube-proxy maintains network rules on nodes. These network rules allow
-network communication to your Pods from network sessions inside or outside
-of your cluster. -->
-kube-proxy 维护节点上的网络规则。这些网络规则允许从集群内部或外部的网络会话与 Pod 进行网络通信。
-
-<!-- kube-proxy uses the operating system packet filtering layer if there is one
-and it's available. Otherwise, kube-proxy forwards the traffic itself. -->
-如果操作系统提供了数据包过滤层并可用的话，kube-proxy 会通过它来实现网络规则。否则， kube-proxy 仅转发流量本身。
diff --git a/content/zh/docs/reference/glossary/kubectl.md b/content/zh/docs/reference/glossary/kubectl.md
deleted file mode 100644
index 2c8bde22eb..0000000000
--- a/content/zh/docs/reference/glossary/kubectl.md
+++ /dev/null
@@ -1,43 +0,0 @@
----
-title: Kubectl
-id: kubectl
-date: 2018-04-12
-full_link: /docs/user-guide/kubectl-overview/
-short_description: >
-  kubectl 是用来和 Kubernetes API 服务器进行通信的命令行工具。
-
-aka: 
-tags:
-- tool
-- fundamental
----
-
-<!--
----
-title: Kubectl
-id: kubectl
-date: 2018-04-12
-full_link: /docs/user-guide/kubectl-overview/
-short_description: >
-  A command line tool for communicating with a Kubernetes API server.
-
-aka: 
-tags:
-- tool
-- fundamental
----
--->
-
-<!--
- A command line tool for communicating with a {{< glossary_tooltip text="Kubernetes API" term_id="kubernetes-api" >}} server.
--->
-
- kubectl 是用来和 {{< glossary_tooltip text="Kubernetes API" term_id="kubernetes-api" >}} 服务器进行通信的命令行工具。
-
-<!--more--> 
-
-<!--
-You can use kubectl to create, inspect, update, and delete Kubernetes objects.
--->
-
-您可以使用 kubectl 创建、检查、更新和删除 Kubernetes 对象。
diff --git a/content/zh/docs/reference/glossary/namespace.md b/content/zh/docs/reference/glossary/namespace.md
deleted file mode 100644
index 27e2e5018f..0000000000
--- a/content/zh/docs/reference/glossary/namespace.md
+++ /dev/null
@@ -1,42 +0,0 @@
----
-title: 名字空间（Namespace）
-id: namespace
-date: 2018-04-12
-full_link: /zh/docs/concepts/overview/working-with-objects/namespaces/
-short_description: >
-  名字空间是 Kubernetes 为了在同一物理集群上支持多个虚拟集群而使用的一种抽象。
-
-aka: 
-tags:
-- fundamental
----
-
-<!--
----
-title: Namespace
-id: namespace
-date: 2018-04-12
-full_link: /docs/concepts/overview/working-with-objects/namespaces/
-short_description: >
-  An abstraction used by Kubernetes to support multiple virtual clusters on the same physical cluster.
-
-aka: 
-tags:
-- fundamental
----
--->
-
-<!--
- An abstraction used by Kubernetes to support multiple virtual clusters on the same physical {{< glossary_tooltip text="cluster" term_id="cluster" >}}.
--->
-
-名字空间是 Kubernetes 为了在同一物理集群上支持多个虚拟集群而使用的一种抽象。
-
-<!--more--> 
-
-<!--
-Namespaces are used to organize objects in a cluster and provide a way to divide cluster resources. Names of resources need to be unique within a namespace, but not across namespaces.
--->
-
-名字空间用来组织集群中对象，并为集群资源划分提供了一种方法。同一名字空间内的资源名称必须唯一，但跨名字空间时不作要求。
-在一些文档里名字空间也称为命名空间。
diff --git a/content/zh/docs/reference/glossary/secret.md b/content/zh/docs/reference/glossary/secret.md
deleted file mode 100644
index ef1c8e9516..0000000000
--- a/content/zh/docs/reference/glossary/secret.md
+++ /dev/null
@@ -1,45 +0,0 @@
----
-title: Secret
-id: secret
-date: 2018-04-12
-full_link: /zh/docs/concepts/configuration/secret/
-short_description: >
-  Secret 用于存储敏感信息，如密码、 OAuth 令牌和 SSH 密钥。
-
-aka: 
-tags:
-- core-object
-- security
----
-
-<!--
----
-title: Secret
-id: secret
-date: 2018-04-12
-full_link: /docs/concepts/configuration/secret/
-short_description: >
-  Stores sensitive information, such as passwords, OAuth tokens, and ssh keys.
-
-aka: 
-tags:
-- core-object
-- security
----
--->
-
-<!--
- Stores sensitive information, such as passwords, OAuth tokens, and ssh keys.
--->
-
- Secret 用于存储敏感信息，如密码、 OAuth 令牌和 SSH 密钥。
-
-<!--more--> 
-
-<!--
-Allows for more control over how sensitive information is used and reduces the risk of accidental exposure, including [encryption](/docs/tasks/administer-cluster/encrypt-data/#ensure-all-secrets-are-encrypted) at rest.  A {{< glossary_tooltip text="Pod" term_id="pod" >}} references the secret as a file in a volume mount or by the kubelet pulling images for a pod. Secrets are great for confidential data and [ConfigMaps](/docs/tasks/configure-pod-container/configure-pod-configmap/) for non-confidential data.
--->
-
-Secret 允许用户对如何使用敏感信息进行更多的控制，并减少信息意外暴露的风险，包括静态[encryption（加密）](/zh/docs/tasks/administer-cluster/encrypt-data/#ensure-all-secrets-are-encrypted)。
-{{< glossary_tooltip text="Pod" term_id="pod" >}} 通过挂载卷中的文件的方式引用 Secret，或者通过 kubelet 为 pod 拉取镜像时引用。
-Secret 非常适合机密数据使用，而 [ConfigMaps](/zh/docs/tasks/configure-pod-container/configure-pod-configmap/) 适用于非机密数据。
diff --git a/content/zh/docs/reference/glossary/service-broker.md b/content/zh/docs/reference/glossary/service-broker.md
deleted file mode 100644
index b8afe97d70..0000000000
--- a/content/zh/docs/reference/glossary/service-broker.md
+++ /dev/null
@@ -1,47 +0,0 @@
----
-title: 服务代理（Service Broker）
-id: service-broker
-date: 2018-04-12
-full_link: 
-short_description: >
-  由第三方提供并维护的一组托管服务的访问端点。
-
-aka: 
-tags:
-- extension
----
-
-<!--
----
-title: Service Broker
-id: service-broker
-date: 2018-04-12
-full_link: 
-short_description: >
-  An endpoint for a set of Managed Services offered and maintained by a third-party.
-
-aka: 
-tags:
-- extension
----
--->
-
-<!--
- An endpoint for a set of {{< glossary_tooltip text="Managed Services" term_id="managed-service" >}} offered and maintained by a third-party.
--->
-由第三方提供并维护的一组{{< glossary_tooltip text="托管服务" term_id="managed-service">}}的访问端点。
-
-<!--more--> 
-
-<!--
-{{< glossary_tooltip text="Service Brokers" term_id="service-broker" >}} implement the
-[Open Service Broker API spec](https://github.com/openservicebrokerapi/servicebroker/blob/v2.13/spec.md)
-and provide a standard interface for applications to use their Managed Services.
-[Service Catalog](/docs/concepts/extend-kubernetes/service-catalog/) provides a way to
-list, provision, and bind with Managed Services offered by Service Brokers.
--->
-
-{{< glossary_tooltip text="服务代理（Service Brokers）" term_id="service-broker">}}会实现
-[开放服务代理 API 规范](https://github.com/openservicebrokerapi/servicebroker/blob/v2.13/spec.md)
-并为应用提供使用其托管服务的标准接口。
-[服务目录（Service Catalog）](/zh/docs/concepts/extend-kubernetes/service-catalog/)则提供一种方法，用来列举、供应和绑定服务代理商所提供的托管服务。
diff --git a/content/zh/docs/reference/glossary/service-catalog.md b/content/zh/docs/reference/glossary/service-catalog.md
deleted file mode 100644
index 134085e034..0000000000
--- a/content/zh/docs/reference/glossary/service-catalog.md
+++ /dev/null
@@ -1,45 +0,0 @@
----
-title: 服务目录（Service Catalog）
-id: service-catalog
-date: 2018-04-12
-full_link: 
-short_description: >
-  服务目录是一种扩展 API，它能让 Kubernetes 集群中运行的应用易于使用外部托管的软件服务，例如云供应商提供的数据仓库服务。
-  
-aka: 
-tags:
-- extension
----
-
-<!--
----
-title: Service Catalog
-id: service-catalog
-date: 2018-04-12
-full_link: 
-short_description: >
-  An extension API that enables applications running in Kubernetes clusters to easily use external managed software offerings, such as a datastore service offered by a cloud provider.
-
-aka: 
-tags:
-- extension
----
--->
-
-
-<!--
- An extension API that enables applications running in Kubernetes clusters to easily use external managed software offerings, such as a datastore service offered by a cloud provider.
--->
-
-服务目录是一种扩展 API，它能让 Kubernetes 集群中运行的应用易于使用外部托管的的软件服务，例如云供应商提供的数据仓库服务。
-
-<!--more--> 
-
-<!--
-It provides a way to list, provision, and bind with external {{< glossary_tooltip text="Managed Services" term_id="managed-service" >}} from {{< glossary_tooltip text="Service Brokers" term_id="service-broker" >}} without needing detailed knowledge about how those services are created or managed.
--->
-
-服务目录可以检索、供应、和绑定由 {{< glossary_tooltip text="服务代理人（Service Brokers）" term_id="service-broker" >}}
-提供的外部{{< glossary_tooltip text="托管服务（Managed Services）" term_id="managed-service" >}}，
-而无需知道那些服务具体是怎样创建和托管的。
-
diff --git a/content/zh/docs/reference/issues-security/security.md b/content/zh/docs/reference/issues-security/security.md
deleted file mode 100644
index ba62808259..0000000000
--- a/content/zh/docs/reference/issues-security/security.md
+++ /dev/null
@@ -1,138 +0,0 @@
----
-title: Kubernetes 安全和信息披露
-content_type: concept
-weight: 20
----
-
-<!--
-title: Kubernetes Security and Disclosure Information
-aliases: [/security/]
-reviewers:
-- eparis
-- erictune
-- philips
-- jessfraz
-content_type: concept
-weight: 20
--->
-
-<!-- overview -->
-<!--
-This page describes Kubernetes security and disclosure information.
--->
-本页面介绍 Kubernetes 安全和信息披露相关的内容。
-
-
-<!-- body -->
-<!--
-## Security Announcements
--->
-## 安全公告
-
-<!--
-Join the [kubernetes-security-announce](https://groups.google.com/forum/#!forum/kubernetes-security-announce) group for emails about security and major API announcements.
--->
-加入 [kubernetes-security-announce](https://groups.google.com/forum/#!forum/kubernetes-security-announce) 组，以获取关于安全性和主要 API 公告的电子邮件。
-
-<!--
-You can also subscribe to an RSS feed of the above using [this link](https://groups.google.com/forum/feed/kubernetes-security-announce/msgs/rss_v2_0.xml?num=50).
--->
-你也可以使用[此链接](https://groups.google.com/forum/feed/kubernetes-security-announce/msgs/rss_v2_0.xml?num=50) 订阅上述的 RSS 反馈。
-
-<!--
-## Report a Vulnerability
--->
-## 报告一个漏洞
-
-<!--
-We’re extremely grateful for security researchers and users that report vulnerabilities to the Kubernetes Open Source Community. All reports are thoroughly investigated by a set of community volunteers.
--->
-我们非常感谢向 Kubernetes 开源社区报告漏洞的安全研究人员和用户。
-所有的报告都由社区志愿者进行彻底调查。
-
-<!--
-To make a report, please email the private [security@kubernetes.io](mailto:security@kubernetes.io) list with the security details and the details expected for [all Kubernetes bug reports](https://git.k8s.io/kubernetes/.github/ISSUE_TEMPLATE/bug-report.md).
--->
-如需报告，请连同安全细节以及预期的[所有 Kubernetes bug 报告](https://git.k8s.io/kubernetes/.github/ISSUE_TEMPLATE/bug-report.md)
-详细信息电子邮件到[security@kubernetes.io](mailto:security@kubernetes.io)列表。
-
-<!--
-You can also email the private [security@kubernetes.io](mailto:security@kubernetes.io) list with the security details and the details expected for [all Kubernetes bug reports](https://git.k8s.io/kubernetes/.github/ISSUE_TEMPLATE/bug-report.md).
--->
-你还可以通过电子邮件向私有 [security@kubernetes.io](mailto:security@kubernetes.io) 列表发送电子邮件，邮件中应该包含[所有 Kubernetes 错误报告](https://git.k8s.io/kubernetes/.github/ISSUE_TEMPLATE/bug-report.md)所需的详细信息。
-<!--
-You may encrypt your email to this list using the GPG keys of the [Product Security Committee members](https://git.k8s.io/security/README.md#product-security-committee-psc). Encryption using GPG is NOT required to make a disclosure.
--->
-你可以使用[产品安全团队成员](https://git.k8s.io/security/README.md#product-security-committee-psc) 
-的 GPG 密钥加密你的电子邮件到此列表。使用 GPG 加密不需要公开。
-
-<!--
-### When Should I Report a Vulnerability?
--->
-### 我应该在什么时候报告漏洞？
-
-<!--
-- You think you discovered a potential security vulnerability in Kubernetes
-- You are unsure how a vulnerability affects Kubernetes
-- You think you discovered a vulnerability in another project that Kubernetes depends on
-   - For projects with their own vulnerability reporting and disclosure process, please report it directly there
--->
-- 你认为在 Kubernetes 中发现了一个潜在的安全漏洞
-- 你不确定漏洞如何影响 Kubernetes
-- 你认为你在 Kubernetes 依赖的另一个项目中发现了一个漏洞
-- 对于具有漏洞报告和披露流程的项目，请直接在该项目处报告
-
-<!--
-### When Should I NOT Report a Vulnerability?
--->
-### 我什么时候不应该报告漏洞？
-
-<!--
-- You need help tuning Kubernetes components for security
-- You need help applying security related updates
-- Your issue is not security related
--->
-- 你需要帮助调整 Kubernetes 组件的安全性
-- 你需要帮助应用与安全相关的更新
-- 你的问题与安全无关
-
-<!--
-## Security Vulnerability Response
--->
-## 安全漏洞响应
-
-<!--
-Each report is acknowledged and analyzed by Product Security Team members within 3 working days. This will set off the [Security Release Process](https://git.k8s.io/sig-release/security-release-process-documentation/security-release-process.md#disclosures).
--->
-每个报告在 3 个工作日内由产品安全团队成员确认和分析。这将启动[安全发布过程](https://git.k8s.io/sig-release/security-release-process-documentation/security-release-process.md#disclosures)。
-
-<!--
-Any vulnerability information shared with Product Security Team stays within Kubernetes project and will not be disseminated to other projects unless it is necessary to get the issue fixed.
--->
-与产品安全团队共享的任何漏洞信息都保留在 Kubernetes 项目中，除非有必要修复该问题，否则不会传播到其他项目。
-
-<!--
-As the security issue moves from triage, to identified fix, to release planning we will keep the reporter updated.
--->
-随着安全问题从分类、识别修复、发布计划等方面的进展，我们将不断更新报告。
-
-<!--
-## Public Disclosure Timing
--->
-## 公开披露时间
-
-<!--
-A public disclosure date is negotiated by the Kubernetes product security team and the bug submitter. We prefer to fully disclose the bug as soon as possible once a user mitigation is available.
--->
-公开披露日期由 Kubernetes 产品安全团队和 bug 提交者协商。我们倾向于在用户缓解措施可用时尽快完全披露该 bug。
-
-<!--
-It is reasonable to delay disclosure when the bug or the fix is not yet fully understood, the solution is not well-tested, or for vendor coordination.
--->
-当 bug 或其修复还没有被完全理解，解决方案没有经过良好的测试，或者为了处理供应商协调问题时，延迟披露是合理的。
-
-<!--
-The timeframe for disclosure is from immediate (especially if it's already publicly known) to a few weeks. As a basic default, we expect report date to disclosure date to be on the order of 7 days. The Kubernetes product security team holds the final say when setting a disclosure date.
--->
-信息披露的时间范围从即时（尤其是已经公开的）到几周。作为一个基本的约定，我们希望报告日期到披露日期的间隔是 7 天。在设置披露日期时，Kubernetes 产品安全团队拥有最终决定权。
-
diff --git a/content/zh/docs/reference/kubectl/_index.md b/content/zh/docs/reference/kubectl/_index.md
deleted file mode 100644
index 5c679220a6..0000000000
--- a/content/zh/docs/reference/kubectl/_index.md
+++ /dev/null
@@ -1,4 +0,0 @@
----
-title: "kubectl"
-weight: 60
----
diff --git a/content/zh/docs/reference/kubectl/conventions.md b/content/zh/docs/reference/kubectl/conventions.md
deleted file mode 100644
index d8f372086e..0000000000
--- a/content/zh/docs/reference/kubectl/conventions.md
+++ /dev/null
@@ -1,130 +0,0 @@
----
-title: kubectl 的用法约定
-reviewers:
-- janetkuo
-content_type: concept
----
-
-<!--
----
-title: kubectl Usage Conventions
-reviewers:
-- janetkuo
-content_type: concept
----
--->
-
-<!-- overview -->
-<!--
-Recommended usage conventions for `kubectl`.
--->
-`kubectl` 的推荐用法约定。
-
-
-<!-- body -->
-
-<!--
-## Using `kubectl` in Reusable Scripts
--->
-## 在可重用脚本中使用 `kubectl`
-
-<!--
-For a stable output in a script:
--->
-对于脚本中的稳定输出：
-
-<!--
-* Request one of the machine-oriented output forms, such as `-o name`, `-o json`, `-o yaml`, `-o go-template`, or `-o jsonpath`.
-* Fully-qualify the version. For example, `jobs.v1.batch/myjob`. This will ensure that kubectl does not use its default version that can change over time.
-* Don't rely on context, preferences, or other implicit states.
--->
-
-* 请求一个面向机器的输出格式，例如 `-o name`、`-o json`、`-o yaml`、`-o go template` 或 `-o jsonpath`。
-* 完全限定版本。例如 `jobs.v1.batch/myjob`。这将确保 kubectl 不会使用其默认版本，该版本会随着时间的推移而更改。
-* 不要依赖上下文、首选项或其他隐式状态。
-
-<!--
-## Best Practices
--->
-## 最佳实践
-
-### `kubectl run`
-
-<!--
-For `kubectl run` to satisfy infrastructure as code:
--->
-若希望 `kubectl run` 满足基础设施即代码的要求：
-
-<!--
-* Tag the image with a version-specific tag and don't move that tag to a new version. For example, use `:v1234`, `v1.2.3`, `r03062016-1-4`, rather than `:latest` (For more information, see [Best Practices for Configuration](/docs/concepts/configuration/overview/#container-images)).
-* Check in the script for an image that is heavily parameterized.
-* Switch to configuration files checked into source control for features that are needed, but not expressible via `kubectl run` flags.
--->
-
-* 使用特定版本的标签标记镜像，不要将该标签移动到新版本。例如，使用 `:v1234`、`v1.2.3`、`r03062016-1-4`，而不是 `:latest`（有关详细信息，请参阅[配置的最佳实践](/zh/docs/concepts/configuration/overview/#container-images))。
-* 使用基于版本控制的脚本来运行包含大量参数的镜像。
-* 对于无法通过 `kubectl run` 参数来表示的功能特性，使用基于源码控制的配置文件，以记录要使用的功能特性。
-
-<!--
-You can use the `--dry-run=client` flag to preview the object that would be sent to your cluster, without really submitting it.
--->
-你可以使用 `--dry-run=client` 参数来预览而不真正提交即将下发到集群的对象实例：
-
-{{< note >}}
-<!--
-All `kubectl run` generators are deprecated.
-See the Kubernetes v1.17 documentation for a [list](https://v1-17.docs.kubernetes.io/docs/reference/kubectl/conventions/#generators) of generators and how they were used.
--->
-所有的 `kubectl run` 生成器已弃用。
-查阅 Kubernetes v1.17 文档中的生成器[列表](https://v1-17.docs.kubernetes.io/docs/reference/kubectl/conventions/#generators)以及它们的用法。
-{{< /note >}}
-
-<!--
-#### Generators
--->
-#### 生成器
-<!--
-You can generate the following resources with a kubectl command, `kubectl create --dry-run=client -o yaml`:
-
-* `clusterrole`: Create a ClusterRole.
-* `clusterrolebinding`: Create a ClusterRoleBinding for a particular ClusterRole.
-* `configmap`: Create a ConfigMap from a local file, directory or literal value.
-* `cronjob`: Create a CronJob with the specified name.
-* `deployment`: Create a Deployment with the specified name.
-* `job`: Create a Job with the specified name.
-* `namespace`: Create a Namespace with the specified name.
-* `poddisruptionbudget`: Create a PodDisruptionBudget with the specified name.
-* `priorityclass`: Create a PriorityClass with the specified name.
-* `quota`: Create a Quota with the specified name.
-* `role`: Create a Role with single rule.
-* `rolebinding`: Create a RoleBinding for a particular Role or ClusterRole.
-* `secret`: Create a Secret using specified subcommand.
-* `service`: Create a Service using specified subcommand.
-* `serviceaccount`: Create a ServiceAccount with the specified name.
-
--->
-你可以使用 kubectl 命令生成以下资源， `kubectl create --dry-run=client -o yaml`：
-
-* `clusterrole`:         创建 ClusterRole。
-* `clusterrolebinding`:  为特定的 ClusterRole 创建 ClusterRoleBinding。
-* `configmap`:           使用本地文件、目录或文本值创建 Configmap。
-* `cronjob`:             使用指定的名称创建 Cronjob。
-* `deployment`:          使用指定的名称创建 Deployment。
-* `job`:                 使用指定的名称创建 Job。
-* `namespace`:           使用指定的名称创建名称空间。
-* `poddisruptionbudget`: 使用指定名称创建 Pod 干扰预算。
-* `priorityclass`:       使用指定的名称创建 Priorityclass。
-* `quota`:               使用指定的名称创建配额。
-* `role`:                使用单一规则创建角色。
-* `rolebinding`:         为特定角色或 ClusterRole 创建 RoleBinding。
-* `secret`:              使用指定的子命令创建 Secret。
-* `service`:             使用指定的子命令创建服务。
-* `serviceaccount`:      使用指定的名称创建服务帐户。
-
-
-### `kubectl apply`
-
-<!--
-* You can use `kubectl apply` to create or update resources. For more information about using kubectl apply to update resources, see [Kubectl Book](https://kubectl.docs.kubernetes.io).
--->
-* 您可以使用 `kubectl apply` 命令创建或更新资源。有关使用 kubectl apply 更新资源的详细信息，请参阅 [Kubectl 文档](https://kubectl.docs.kubernetes.io)。
diff --git a/content/zh/docs/reference/labels-annotations-taints.md b/content/zh/docs/reference/labels-annotations-taints.md
deleted file mode 100644
index e4b1fdfe70..0000000000
--- a/content/zh/docs/reference/labels-annotations-taints.md
+++ /dev/null
@@ -1,519 +0,0 @@
----
-title: 常见的标签、注解和污点
-content_type: concept
-weight: 20
----
-<!-- 
----
-title: Well-Known Labels, Annotations and Taints
-content_type: concept
-weight: 20
----
--->
-
-<!-- overview -->
-
-<!-- 
-Kubernetes reserves all labels and annotations in the kubernetes.io namespace.
-
-This document serves both as a reference to the values and as a coordination point for assigning values.
--->
-Kubernetes 预留命名空间 kubernetes.io 用于所有的标签和注解。
-
-本文档有两个作用，一是作为可用值的参考，二是作为赋值的协调点。
-
-<!-- body -->
-
-## kubernetes.io/arch
-
-示例：`kubernetes.io/arch=amd64`
-
-用于：Node
-
-<!-- 
-The Kubelet populates this with `runtime.GOARCH` as defined by Go. This can be handy if you are mixing arm and x86 nodes.
--->
-Kubelet 用 Go 定义的 `runtime.GOARCH` 生成该标签的键值。在混合使用 arm 和 x86 节点的场景中，此键值可以带来极大便利。
-
-## kubernetes.io/os
-
-示例：`kubernetes.io/os=linux`
-
-用于：Node
-
-<!-- 
-The Kubelet populates this with `runtime.GOOS` as defined by Go. This can be handy if you are mixing operating systems in your cluster (for example: mixing Linux and Windows nodes).
--->
-Kubelet 用 Go 定义的 `runtime.GOOS` 生成该标签的键值。在混合使用异构操作系统场景下（例如：混合使用 Linux 和 Windows 节点），此键值可以带来极大便利。
-
-## kubernetes.io/metadata.name
-
-示例：`kubernetes.io/metadata.name=mynamespace`
-
-用于：Namespaces
-
-<!--
-When the `NamespaceDefaultLabelName`
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled,
-the Kubernetes API server sets this label on all namespaces. The label value is set to
-the name of the namespace.
-
-This is useful if you want to target a specific namespace with a label
-{{< glossary_tooltip text="selector" term_id="selector" >}}.
--->
-当 `NamespaceDefaultLabelName` [特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
-被启用时，Kubernetes API 服务器会在所有命名空间上设置此标签。标签值被设置为命名空间的名称。
-
-如果你想使用标签 {{< glossary_tooltip text="选择器" term_id="selector" >}} 来指向特定的命名空间，这很有用。
-
-## beta.kubernetes.io/arch (deprecated)
-
-<!-- 
-This label has been deprecated. Please use `kubernetes.io/arch` instead.
--->
-此标签已被弃用，取而代之的是 `kubernetes.io/arch`.
-
-## beta.kubernetes.io/os (deprecated)
-
-<!-- 
-This label has been deprecated. Please use `kubernetes.io/os` instead.
--->
-此标签已被弃用，取而代之的是 `kubernetes.io/os`.
-
-## kubernetes.io/hostname {#kubernetesiohostname}
-
-示例：`kubernetes.io/hostname=ip-172-20-114-199.ec2.internal`
-
-用于：Node
-
-<!-- 
-The Kubelet populates this label with the hostname. Note that the hostname can be changed from the "actual" hostname by passing the `--hostname-override` flag to the `kubelet`.
-
-This label is also used as part of the topology hierarchy.  See [topology.kubernetes.io/zone](#topologykubernetesiozone) for more information.
--->
-Kubelet 用主机名生成此标签。需要注意的是主机名可修改，这是把“实际的”主机名通过参数 `--hostname-override` 传给 `kubelet` 实现的。
-
-此标签也可用做拓扑层次的一个部分。更多信息参见[topology.kubernetes.io/zone](#topologykubernetesiozone)。
-
-## controller.kubernetes.io/pod-deletion-cost {#pod-deletion-cost}
-
-示例：`controller.kubernetes.io/pod-deletion-cost=10`
-
-用于：Pod
-
-<!--
-This annotation is used to set [Pod Deletion Cost](/docs/concepts/workloads/controllers/replicaset/#pod-deletion-cost)
-which allows users to influence ReplicaSet downscaling order. The annotation parses into an `int32` type.
--->
-该注解用于设置 [Pod 删除开销](/zh/docs/concepts/workloads/controllers/replicaset/#pod-deletion-cost)，
-允许用户影响 ReplicaSet 的缩减顺序。该注解解析为 `int32` 类型。
-
-## beta.kubernetes.io/instance-type (deprecated)
-
-{{< note >}} 
-<!-- 
-Starting in v1.17, this label is deprecated in favor of [node.kubernetes.io/instance-type](#nodekubernetesioinstance-type).
--->
-从 v1.17 起，此标签被弃用，取而代之的是 [node.kubernetes.io/instance-type](#nodekubernetesioinstance-type). 
-{{< /note >}}
-
-
-## node.kubernetes.io/instance-type {#nodekubernetesioinstance-type}
-
-示例：`node.kubernetes.io/instance-type=m3.medium`
-
-用于：Node
-
-<!-- 
-The Kubelet populates this with the instance type as defined by the `cloudprovider`.
-This will be set only if you are using a `cloudprovider`. This setting is handy
-if you want to target certain workloads to certain instance types, but typically you want
-to rely on the Kubernetes scheduler to perform resource-based scheduling. You should aim to schedule based on properties rather than on instance types (for example: require a GPU, instead of requiring a `g2.2xlarge`).
--->
-Kubelet 用 `cloudprovider` 定义的实例类型生成此标签。
-所以只有用到 `cloudprovider` 的场合，才会设置此标签。
-此标签非常有用，特别是在你希望把特定工作负载打到特定实例类型的时候，但更常见的调度方法是基于 Kubernetes 调度器来执行基于资源的调度。
-你应该聚焦于使用基于属性的调度方式，而尽量不要依赖实例类型（例如：应该申请一个 GPU，而不是 `g2.2xlarge`）。
-
-## failure-domain.beta.kubernetes.io/region (deprecated) {#failure-domainbetakubernetesioregion}
-
-参见 [topology.kubernetes.io/region](#topologykubernetesioregion).
-
-{{< note >}} 
-<!-- 
-Starting in v1.17, this label is deprecated in favor of [topology.kubernetes.io/region](#topologykubernetesioregion). 
--->
-从 v1.17 开始，此标签被弃用，取而代之的是 [topology.kubernetes.io/region](#topologykubernetesioregion). 
-{{< /note >}}
-
-## failure-domain.beta.kubernetes.io/zone (deprecated) {#failure-domainbetakubernetesiozone}
-
-参见 [topology.kubernetes.io/zone](#topologykubernetesiozone).
-
-{{< note >}} 
-<!-- 
-Starting in v1.17, this label is deprecated in favor of [topology.kubernetes.io/zone](#topologykubernetesiozone). 
--->
-从 v1.17 开始，此标签被弃用，取而代之的是 [topology.kubernetes.io/zone](#topologykubernetesiozone). 
-{{< /note >}}
-
-## statefulset.kubernetes.io/pod-name {#statefulsetkubernetesiopod-name}
-
-示例：`statefulset.kubernetes.io/pod-name=mystatefulset-7`
-
-<!--
-When a StatefulSet controller creates a Pod for the StatefulSet, the control plane
-sets this label on that Pod. The value of the label is the name of the Pod being created.
-
-See [Pod Name Label](/docs/concepts/workloads/controllers/statefulset/#pod-name-label) in the
-StatefulSet topic for more details.
--->
-当 StatefulSet 控制器为 StatefulSet 创建 Pod 时，控制平面会在该 Pod 上设置此标签。
-标签的值是正在创建的 Pod 的名称。
-
-更多细节请参见 StatefulSet 文章中的 [Pod 名称标签](/zh/docs/concepts/workloads/controllers/statefulset/#pod-name-label)。
-
-## topology.kubernetes.io/region {#topologykubernetesioregion}
-
-示例
-
-`topology.kubernetes.io/region=us-east-1`
-
-参见 [topology.kubernetes.io/zone](#topologykubernetesiozone).
-
-## topology.kubernetes.io/zone {#topologykubernetesiozone}
-
-示例:
-
-`topology.kubernetes.io/zone=us-east-1c`
-
-用于：Node, PersistentVolume
-
-<!-- 
-On Node: The `kubelet` or the external `cloud-controller-manager` populates this with the information as provided by the `cloudprovider`.  This will be set only if you are using a `cloudprovider`. However, you should consider setting this on nodes if it makes sense in your topology.
-
-On PersistentVolume: topology-aware volume provisioners will automatically set node affinity constraints on `PersistentVolumes`.
--->
-Node 场景：`kubelet` 或外部的 `cloud-controller-manager` 用 `cloudprovider` 提供的信息生成此标签。
-所以只有在用到 `cloudprovider` 的场景下，此标签才会被设置。
-但如果此标签在你的拓扑中有意义，你也可以考虑在 node 上设置它。
-
-PersistentVolume 场景：拓扑自感知的卷制备程序将在 `PersistentVolumes` 上自动设置节点亲和性限制。
-
-<!-- 
-A zone represents a logical failure domain.  It is common for Kubernetes clusters to span multiple zones for increased availability.  While the exact definition of a zone is left to infrastructure implementations, common properties of a zone include very low network latency within a zone, no-cost network traffic within a zone, and failure independence from other zones.  For example, nodes within a zone might share a network switch, but nodes in different zones should not.
--->
-一个可用区（zone）表示一个逻辑故障域。Kubernetes 集群通常会跨越多个可用区以提高可用性。
-虽然可用区的确切定义留给基础设施来决定，但可用区常见的属性包括：可用区内的网络延迟非常低，可用区内的网络通讯没成本，独立于其他可用区的故障域。
-例如，一个可用区中的节点可以共享交换机，但不同可用区则不会。
-
-<!-- 
-A region represents a larger domain, made up of one or more zones.  It is uncommon for Kubernetes clusters to span multiple regions,  While the exact definition of a zone or region is left to infrastructure implementations, common properties of a region include higher network latency between them than within them, non-zero cost for network traffic between them, and failure independence from other zones or regions.  For example, nodes within a region might share power infrastructure (e.g. a UPS or generator), but nodes in different regions typically would not.
--->
-一个地区（region）表示一个更大的域，由一个到多个可用区组成。对于 Kubernetes 来说，跨越多个地区的集群很罕见。
-虽然可用区和地区的确切定义留给基础设施来决定，但地区的常见属性包括：地区间比地区内更高的网络延迟，地区间网络流量更高的成本，独立于其他可用区或是地区的故障域。例如，一个地区内的节点可以共享电力基础设施（例如 UPS 或发电机），但不同地区内的节点显然不会。
-
-<!-- 
-Kubernetes makes a few assumptions about the structure of zones and regions:
-1) regions and zones are hierarchical: zones are strict subsets of regions and no zone can be in 2 regions
-2) zone names are unique across regions; for example region "africa-east-1" might be comprised of zones "africa-east-1a" and "africa-east-1b"
--->
-Kubernetes 对可用区和地区的结构做出一些假设：
-1）地区和可用区是层次化的：可用区是地区的严格子集，任何可用区都不能再 2 个地区中出现。
-2）可用区名字在地区中独一无二：例如地区 "africa-east-1" 可由可用区 "africa-east-1a" 和 "africa-east-1b" 构成。
-
-<!-- 
-It should be safe to assume that topology labels do not change.  Even though labels are strictly mutable, consumers of them can assume that a given node is not going to be moved between zones without being destroyed and recreated.
--->
-你可以安全的假定拓扑类的标签是固定不变的。即使标签严格来说是可变的，但使用者依然可以假定一个节点只有通过销毁、重建的方式，才能在可用区间移动。
-
-<!-- 
-Kubernetes can use this information in various ways.  For example, the scheduler automatically tries to spread the Pods in a ReplicaSet across nodes in a single-zone cluster (to reduce the impact of node failures, see [kubernetes.io/hostname](#kubernetesiohostname)). With multiple-zone clusters, this spreading behavior also applies to zones (to reduce the impact of zone failures). This is achieved via _SelectorSpreadPriority_.
--->
-Kubernetes 能以多种方式使用这些信息。
-例如，调度器自动地尝试将 ReplicaSet 中的 Pod 打散在单可用区集群的不同节点上（以减少节点故障的影响，参见[kubernetes.io/hostname](#kubernetesiohostname)）。
-在多可用区的集群中，这类打散分布的行为也会应用到可用区（以减少可用区故障的影响）。
-做到这一点靠的是 _SelectorSpreadPriority_。
-
-<!-- 
-_SelectorSpreadPriority_ is a best effort placement. If the zones in your cluster are heterogeneous (for example: different numbers of nodes, different types of nodes, or different pod resource requirements), this placement might prevent equal spreading of your Pods across zones. If desired, you can use homogenous zones (same number and types of nodes) to reduce the probability of unequal spreading.
--->
-_SelectorSpreadPriority_ 是一种最大能力分配方法（best effort）。如果集群中的可用区是异构的（例如：不同数量的节点，不同类型的节点，或不同的 Pod 资源需求），这种分配方法可以防止平均分配 Pod 到可用区。如果需要，你可以用同构的可用区（相同数量和类型的节点）来减少潜在的不平衡分布。
-
-<!-- 
-The scheduler (through the _VolumeZonePredicate_ predicate) also will ensure that Pods, that claim a given volume, are only placed into the same zone as that volume. Volumes cannot be attached across zones.
--->
-调度器（通过 _VolumeZonePredicate_ 的预测）也会保障声明了某卷的 Pod 只能分配到该卷相同的可用区。
-卷不支持跨可用区挂载。
-
-<!-- 
-If `PersistentVolumeLabel` does not support automatic labeling of your PersistentVolumes, you should consider
-adding the labels manually (or adding support for `PersistentVolumeLabel`). With `PersistentVolumeLabel`, the scheduler prevents Pods from mounting volumes in a different zone. If your infrastructure doesn't have this constraint, you don't need to add the zone labels to the volumes at all.
--->
-如果 `PersistentVolumeLabel` 不支持给 PersistentVolume 自动打标签，你可以考虑手动加标签（或增加 `PersistentVolumeLabel` 支持）。
-有了 `PersistentVolumeLabel`，调度器可以防止 Pod 挂载不同可用区中的卷。
-如果你的基础架构没有此限制，那你根本就没有必要给卷增加 zone 标签。
-
-## node.kubernetes.io/windows-build {#nodekubernetesiowindows-build}
-
-示例: `node.kubernetes.io/windows-build=10.0.17763`
-
-用于：Node
-
-<!-- 
-When the kubelet is running on Microsoft Windows, it automatically labels its node to record the version of Windows Server in use.
-
-The label's value is in the format "MajorVersion.MinorVersion.BuildNumber".
--->
-当 kubelet 运行于 Microsoft Windows，它给节点自动打标签，以记录 Windows Server 的版本。
-
-标签值的格式为 "主版本.次版本.构建号"
-
-## service.kubernetes.io/headless {#servicekubernetesioheadless}
-
-示例：`service.kubernetes.io/headless=""`
-
-用于：Service
-
-<!-- 
-The control plane adds this label to an Endpoints object when the owning Service is headless.
--->
-在无头（headless）服务的场景下，控制平面为 Endpoint 对象添加此标签。
-
-## kubernetes.io/service-name {#kubernetesioservice-name}
-
-示例：`kubernetes.io/service-name="nginx"`
-
-用于：Service
-
-<!-- 
-Kubernetes uses this label to differentiate multiple Services. Used currently for `ELB`(Elastic Load Balancer) only.
--->
-Kubernetes 用此标签区分多个服务。当前仅用于 `ELB`(Elastic Load Balancer)。
-
-## endpointslice.kubernetes.io/managed-by {#endpointslicekubernetesiomanaged-by}
-
-示例：`endpointslice.kubernetes.io/managed-by="controller"`
-
-用于：EndpointSlices
-
-<!-- 
-The label is used to indicate the controller or entity that manages an EndpointSlice. This label aims to enable different EndpointSlice objects to be managed by different controllers or entities within the same cluster.
--->
-此标签用来指向管理 EndpointSlice 的控制器或实体。
-此标签的目的是用集群中不同的控制器或实体来管理不同的 EndpointSlice。
-
-## endpointslice.kubernetes.io/skip-mirror {#endpointslicekubernetesioskip-mirror}
-
-示例：`endpointslice.kubernetes.io/skip-mirror="true"`
-
-用于：Endpoints
-
-<!-- 
-The label can be set to `"true"` on an Endpoints resource to indicate that the EndpointSliceMirroring controller should not mirror this resource with EndpointSlices.
--->
-此标签在 Endpoints 资源上设为 `"true"` 指示 EndpointSliceMirroring 控制器不要镜像此 EndpointSlices 资源。
-
-## service.kubernetes.io/service-proxy-name {#servicekubernetesioservice-proxy-name}
-
-示例：`service.kubernetes.io/service-proxy-name="foo-bar"`
-
-用于：Service
-
-<!-- 
-The kube-proxy has this label for custom proxy, which delegates service control to custom proxy.
--->
-kube-proxy 把此标签用于客户代理，将服务控制委托给客户代理。
-
-## experimental.windows.kubernetes.io/isolation-type
-
-示例：`experimental.windows.kubernetes.io/isolation-type: "hyperv"`
-
-用于：Pod
-
-<!-- 
-The annotation is used to run Windows containers with Hyper-V isolation. To use Hyper-V isolation feature and create a Hyper-V isolated container, the kubelet should be started with feature gates HyperVContainer=true and the Pod should include the annotation experimental.windows.kubernetes.io/isolation-type=hyperv.
-
-< note >
-You can only set this annotation on Pods that have a single container.
-< /note >
--->
-此注解用于运行 Hyper-V 隔离的 Windows 容器。
-要使用 Hyper-V 隔离特性，并创建  Hyper-V 隔离容器，kubelet 应该用特性门控 HyperVContainer=true 来启动，并且 Pod 应该包含注解 `experimental.windows.kubernetes.io/isolation-type=hyperv`。
-
-{{< note >}}
-你只能在单容器 Pod 上设置此注解。
-{{< /note >}}
-
-## ingressclass.kubernetes.io/is-default-class
-
-示例：`ingressclass.kubernetes.io/is-default-class: "true"`
-
-用于：IngressClass
-
-<!-- 
-When a single IngressClass resource has this annotation set to `"true"`, new Ingress resource without a class specified will be assigned this default class.
--->
-当唯一的 IngressClass 资源将此注解的值设为 "true"，没有指定类型的新 Ingress 资源将使用此默认类型。
-
-## kubernetes.io/ingress.class (deprecated)
-
-{{< note >}} 
-<!-- 
-Starting in v1.18, this annotation is deprecated in favor of `spec.ingressClassName`.
--->
-从 v1.18 开始，此注解被弃用，取而代之的是 `spec.ingressClassName`。
-{{< /note >}}
-
-## storageclass.kubernetes.io/is-default-class
-
-示例：`storageclass.kubernetes.io/is-default-class=true`
-
-用于：StorageClass
-
-<!--
-When a single StorageClass resource has this annotation set to `"true"`, new Physical Volume Claim resource without a class specified will be assigned this default class.
--->
-当单个的 StorageClass 资源将这个注解设置为 `"true"` 时，新的持久卷申领（PVC）
-资源若未指定类别，将被设定为此默认类别。
-
-## alpha.kubernetes.io/provided-node-ip
-
-示例：`alpha.kubernetes.io/provided-node-ip: "10.0.0.1"`
-
-用于：Node
-
-<!-- 
-The kubelet can set this annotation on a Node to denote its configured IPv4 address.
-
-When kubelet is started with the "external" cloud provider, it sets this annotation on the Node to denote an IP address set from the command line flag (`--node-ip`). This IP is verified with the cloud provider as valid by the cloud-controller-manager.
--->
-kubectl 在 Node 上设置此注解，表示它的 IPv4 地址。
-
-当 kubectl 由外部的云供应商启动时，在 Node 上设置此注解，表示由命令行标记(`--node-ip`)设置的 IP 地址。
-cloud-controller-manager 向云供应商验证此 IP 是否有效。
-
-## batch.kubernetes.io/job-completion-index
-
-示例：`batch.kubernetes.io/job-completion-index: "3"`
-
-用于：Pod
-
-<!--
-The Job controller in the kube-controller-manager sets this annotation for Pods
-created with Indexed [completion mode](/docs/concepts/workloads/controllers/job/#completion-mode).
--->
-kube-controller-manager 中的 Job 控制器给创建使用索引
-[完成模式](/zh/docs/concepts/workloads/controllers/job/#completion-mode)
-的 Pod 设置此注解。
-
-## kubectl.kubernetes.io/default-container
-
-示例：`kubectl.kubernetes.io/default-container: "front-end-app"`
-
-<!--
-The value of the annotation is the container name that is default for this Pod. For example, `kubectl logs` or `kubectl exec` without `-c` or `--container` flag will use this default container.
--->
-注解的值是此 Pod 的默认容器名称。
-例如，`kubectl logs` 或 `kubectl exec` 没有 `-c` 或 `--container` 参数时，将使用这个默认的容器。
-
-## endpoints.kubernetes.io/over-capacity
-
-示例：`endpoints.kubernetes.io/over-capacity:warning`
-
-用于：Endpoints
-
-<!-- 
-In Kubernetes clusters v1.21 (or later), the Endpoints controller adds this annotation to an Endpoints resource if it has more than 1000 endpoints. The annotation indicates that the Endpoints resource is over capacity.
-
-**The taints listed below are always used on Nodes**
--->
-在 Kubernetes 集群 v1.21（或更高版本）中，如果 Endpoint 超过 1000 个，Endpoint 控制器
-就会向其添加这个注解。该注解表示 Endpoint 资源已超过容量。
-
-**以下列出的污点只能用于 Node**
-
-## node.kubernetes.io/not-ready
-
-示例：`node.kubernetes.io/not-ready:NoExecute`
-
-<!-- 
-The node controller detects whether a node is ready by monitoring its health and adds or removes this taint accordingly.
--->
-节点控制器通过健康监控来检测节点是否就绪，并据此添加/删除此污点。
-
-## node.kubernetes.io/unreachable
-
-示例：`node.kubernetes.io/unreachable:NoExecute`
-
-<!-- 
-The node controller adds the taint to a node corresponding to the [NodeCondition](/docs/concepts/architecture/nodes/#condition) `Ready` being `Unknown`.
--->
-如果 [NodeCondition](/docs/concepts/architecture/nodes/#condition) 的 `Ready` 键值为 `Unknown`，节点控制器将添加污点到 node。
-
-## node.kubernetes.io/unschedulable
-
-示例：`node.kubernetes.io/unschedulable:NoSchedule`
-
-<!-- 
-The taint will be added to a node when initializing the node to avoid race condition.
--->
-当初始化节点时，添加此污点，来避免竟态的发生。
-
-## node.kubernetes.io/memory-pressure
-
-示例：`node.kubernetes.io/memory-pressure:NoSchedule`
-
-<!-- 
-The kubelet detects memory pressure based on `memory.available` and `allocatableMemory.available` observed on a Node. The observed values are then compared to the corresponding thresholds that can be set on the kubelet to determine if the Node condition and taint should be added/removed.
--->
-kubelet 依据节点上观测到的 `memory.available` 和 `allocatableMemory.available` 来检测内存压力。
-用观测值对比 kubelet 设置的阈值，以判断节点状态和污点是否可以被添加/移除。
-
-## node.kubernetes.io/disk-pressure
-
-示例：`node.kubernetes.io/disk-pressure:NoSchedule`
-
-<!-- 
-The kubelet detects disk pressure based on `imagefs.available`, `imagefs.inodesFree`, `nodefs.available` and `nodefs.inodesFree`(Linux only) observed on a Node. The observed values are then compared to the corresponding thresholds that can be set on the kubelet to determine if the Node condition and taint should be added/removed.
--->
-kubelet 依据节点上观测到的 `imagefs.available`、`imagefs.inodesFree`、`nodefs.available` 和 `nodefs.inodesFree`(仅 Linux) 来判断磁盘压力。 
-用观测值对比 kubelet 设置的阈值，以确定节点状态和污点是否可以被添加/移除。
-
-## node.kubernetes.io/network-unavailable
-
-示例：`node.kubernetes.io/network-unavailable:NoSchedule`
-
-<!-- 
-This is initially set by the kubelet when the cloud provider used indicates a requirement for additional network configuration. Only when the route on the cloud is configured properly will the taint be removed by the cloud provider.
--->
-它初始由 kubectl 设置，云供应商用它来指示对额外网络配置的需求。
-仅当云中的路由器配置妥当后，云供应商才会移除此污点。
-
-## node.kubernetes.io/pid-pressure
-
-示例：`node.kubernetes.io/pid-pressure:NoSchedule`
-
-<!-- 
-The kubelet checks D-value of the size of `/proc/sys/kernel/pid_max` and the PIDs consumed by Kubernetes on a node to get the number of available PIDs that referred to as the `pid.available` metric. The metric is then compared to the corresponding threshold that can be set on the kubelet to determine if the node condition and taint should be added/removed.
--->
-kubelet 检查 `/proc/sys/kernel/pid_max` 尺寸的 D 值（D-value），以及节点上 Kubernetes 消耗掉的 PID，以获取可用的 PID 数量，此数量可通过指标 `pid.available` 得到。
-然后用此指标对比 kubelet 设置的阈值，以确定节点状态和污点是否可以被添加/移除。
-
-## node.cloudprovider.kubernetes.io/uninitialized
-
-示例：`node.cloudprovider.kubernetes.io/uninitialized:NoSchedule`
-
-<!-- 
-Sets this taint on a node to mark it as unusable, when kubelet is started with the "external" cloud provider, until a controller from the cloud-controller-manager initializes this node, and then removes the taint.
--->
-当 kubelet 由外部云供应商启动时，在节点上设置此污点以标记节点不可用，直到一个 cloud-controller-manager 控制器初始化此节点之后，才会移除此污点。
-
-## node.cloudprovider.kubernetes.io/shutdown
-
-示例：`node.cloudprovider.kubernetes.io/shutdown:NoSchedule`
-
-<!-- 
-If a Node is in a cloud provider specified shutdown state, the Node gets tainted accordingly with `node.cloudprovider.kubernetes.io/shutdown` and the taint effect of `NoSchedule`.
--->
-如果一个云供应商的节点被指定为关机状态，节点被打上污点 `node.cloudprovider.kubernetes.io/shutdown`，污点的影响为 `NoSchedule`。
diff --git a/content/zh/docs/reference/scheduling/config.md b/content/zh/docs/reference/scheduling/config.md
deleted file mode 100644
index 99c9557e57..0000000000
--- a/content/zh/docs/reference/scheduling/config.md
+++ /dev/null
@@ -1,518 +0,0 @@
----
-title: 调度器配置
-content_type: concept
-weight: 20
----
-<!--
-title: Scheduler Configuration
-content_type: concept
-weight: 20
--->
-{{< feature-state for_k8s_version="v1.19" state="beta" >}}
-
-<!--
-You can customize the behavior of the `kube-scheduler` by writing a configuration
-file and passing its path as a command line argument.
--->
-你可以通过编写配置文件，并将其路径传给 `kube-scheduler` 的命令行参数，定制 `kube-scheduler` 的行为。
-
-<!-- overview -->
-
-<!-- body -->
-<!--
-A scheduling Profile allows you to configure the different stages of scheduling
-in the {{< glossary_tooltip text="kube-scheduler" term_id="kube-scheduler" >}}.
-Each stage is exposed in a extension point. Plugins provide scheduling behaviors
-by implementing one or more of these extension points.
--->
-调度模板（Profile）允许你配置 {{< glossary_tooltip text="kube-scheduler" term_id="kube-scheduler" >}}
-中的不同调度阶段。每个阶段都暴露于某个扩展点中。插件通过实现一个或多个扩展点来提供调度行为。
-
-<!--
-You can specify scheduling profiles by running `kube-scheduler --config <filename>`,
-using the 
-[KubeSchedulerConfiguration (v1beta1)](/docs/reference/config-api/kube-scheduler-config.v1beta1/)
-struct.
--->
-你可以通过运行 `kube-scheduler --config <filename>` 来设置调度模板，
-使用 [KubeSchedulerConfiguration (v1beta1)](/docs/reference/config-api/kube-scheduler-config.v1beta1/) 结构体。
-
-<!-- A minimal configuration looks as follows: -->
-最简单的配置如下：
-
-```yaml
-apiVersion: kubescheduler.config.k8s.io/v1beta1
-kind: KubeSchedulerConfiguration
-clientConnection:
-  kubeconfig: /etc/srv/kubernetes/kube-scheduler/kubeconfig
-```
-
-<!-- ## Profiles -->
-## 配置文件    {#profiles}
-
-<!--  
-A scheduling Profile allows you to configure the different stages of scheduling
-in the {{< glossary_tooltip text="kube-scheduler" term_id="kube-scheduler" >}}.
-Each stage is exposed in an [extension point](#extension-points).
-[Plugins](#scheduling-plugins) provide scheduling behaviors by implementing one
-or more of these extension points.
--->
-通过调度配置文件，你可以配置 {{< glossary_tooltip text="kube-scheduler" term_id="kube-scheduler" >}} 在不同阶段的调度行为。
-每个阶段都在一个[扩展点](#extension-points)中公开。
-[调度插件](#scheduling-plugins)通过实现一个或多个扩展点，来提供调度行为。
-
-<!--  
-You can configure a single instance of `kube-scheduler` to run
-[multiple profiles](#multiple-profiles).
--->
-你可以配置同一 `kube-scheduler` 实例使用[多个配置文件](#multiple-profiles)。
-
-<!-- ### Extension points -->
-### 扩展点    {#extensions-points}
-
-<!--  
-Scheduling happens in a series of stages that are exposed through the following
-extension points:
--->
-调度行为发生在一系列阶段中，这些阶段是通过以下扩展点公开的：
-
-<!--  
-1. `QueueSort`: These plugins provide an ordering function that is used to
-   sort pending Pods in the scheduling queue. Exactly one queue sort plugin
-   may be enabled at a time.
--->
-1. `QueueSort`：这些插件对调度队列中的悬决的 Pod 排序。
-   一次只能启用一个队列排序插件。
-<!--
-2. `PreFilter`: These plugins are used to pre-process or check information
-   about a Pod or the cluster before filtering. They can mark a pod as
-   unschedulable.
- -->
-2. `PreFilter`：这些插件用于在过滤之前预处理或检查 Pod 或集群的信息。
-   它们可以将 Pod 标记为不可调度。
-<!--
-3. `Filter`: These plugins are the equivalent of Predicates in a scheduling
-   Policy and are used to filter out nodes that can not run the Pod. Filters
-   are called in the configured order. A pod is marked as unschedulable if no
-   nodes pass all the filters.
--->
-3. `Filter`：这些插件相当于调度策略中的断言（Predicates），用于过滤不能运行 Pod 的节点。
-   过滤器的调用顺序是可配置的。
-   如果没有一个节点通过所有过滤器的筛选，Pod 将会被标记为不可调度。
-<!--
-4. `PreScore`: This is an informational extension point that can be used
-   for doing pre-scoring work.
--->
-4. `PreScore`：这是一个信息扩展点，可用于预打分工作。
-<!--  
-5. `Score`: These plugins provide a score to each node that has passed the
-   filtering phase. The scheduler will then select the node with the highest
-   weighted scores sum.
--->
-5. `Score`：这些插件给通过筛选阶段的节点打分。调度器会选择得分最高的节点。
-<!--  
-6. `Reserve`: This is an informational extension point that notifies plugins
-   when resources have been reserved for a given Pod. Plugins also implement an
-   `Unreserve` call that gets called in the case of failure during or after
-   `Reserve`.
--->
-6. `Reserve`：这是一个信息扩展点，当资源已经预留给 Pod 时，会通知插件。
-   这些插件还实现了 `Unreserve` 接口，在 `Reserve` 期间或之后出现故障时调用。
-<!-- 7. `Permit`: These plugins can prevent or delay the binding of a Pod. -->
-7. `Permit`：这些插件可以阻止或延迟 Pod 绑定。
-<!-- 8. `PreBind`: These plugins perform any work required before a Pod is bound.-->
-8. `PreBind`：这些插件在 Pod 绑定节点之前执行。
-<!--  
-9. `Bind`: The plugins bind a Pod to a Node. Bind plugins are called in order
-   and once one has done the binding, the remaining plugins are skipped. At
-   least one bind plugin is required.
--->
-9. `Bind`：这个插件将 Pod 与节点绑定。绑定插件是按顺序调用的，只要有一个插件完成了绑定，其余插件都会跳过。绑定插件至少需要一个。
-<!--
-10. `PostBind`: This is an informational extension point that is called after
-   a Pod has been bound.
--->
-10.  `PostBind`：这是一个信息扩展点，在 Pod 绑定了节点之后调用。
-
-<!--
-For each extension point, you could disable specific [default plugins](#scheduling-plugins)
-or enable your own. For example:
--->
-对每个扩展点，你可以禁用[默认插件](#scheduling-plugins)或者是启用自己的插件，例如：
-
-```yaml
-apiVersion: kubescheduler.config.k8s.io/v1beta1
-kind: KubeSchedulerConfiguration
-profiles:
-  - plugins:
-      score:
-        disabled:
-        - name: NodeResourcesLeastAllocated
-        enabled:
-        - name: MyCustomPluginA
-          weight: 2
-        - name: MyCustomPluginB
-          weight: 1
-```
-
-<!--
-You can use `*` as name in the disabled array to disable all default plugins
-for that extension point. This can also be used to rearrange plugins order, if
-desired.
--->
-你可以在 `disabled` 数组中使用 `*` 禁用该扩展点的所有默认插件。
-如果需要，这个字段也可以用来对插件重新顺序。
-
-<!-- ### Scheduling plugins -->
-### 调度插件    {#scheduling-plugin}
-
-<!--
-1. `UnReserve`: This is an informational extension point that is called if
-   a Pod is rejected after being reserved and put on hold by a `Permit` plugin.
--->
-1. `UnReserve`：这是一个信息扩展点，如果一个 Pod 在预留后被拒绝，并且被 `Permit` 插件搁置，它就会被调用。
-
-<!-- ## Scheduling plugins -->
-## 调度插件   {#scheduling-plugins}
-
-<!--  
-The following plugins, enabled by default, implement one or more of these
-extension points:
--->
-下面默认启用的插件实现了一个或多个扩展点：
-
-<!--  
-- `SelectorSpread`: Favors spreading across nodes for Pods that belong to
-  {{< glossary_tooltip text="Services" term_id="service" >}},
-  {{< glossary_tooltip text="ReplicaSets" term_id="replica-set" >}} and
-  {{< glossary_tooltip text="StatefulSets" term_id="statefulset" >}}.
-  Extension points: `PreScore`, `Score`.
--->
-- `SelectorSpread`：对于属于 {{< glossary_tooltip text="Services" term_id="service" >}}、
-  {{< glossary_tooltip text="ReplicaSets" term_id="replica-set" >}} 和
-  {{< glossary_tooltip text="StatefulSets" term_id="statefulset" >}} 的 Pod，偏好跨多个节点部署。
-
-  实现的扩展点：`PreScore`，`Score`。
-<!--  
-- `ImageLocality`: Favors nodes that already have the container images that the
-  Pod runs.
-  Extension points: `Score`.
--->
-- `ImageLocality`：选择已经存在 Pod 运行所需容器镜像的节点。
-
-  实现的扩展点：`Score`。
-<!--  
-- `TaintToleration`: Implements
-  [taints and tolerations](/docs/concepts/scheduling-eviction/taint-and-toleration/).
-  Implements extension points: `Filter`, `Prescore`, `Score`.
--->
-- `TaintToleration`：实现了[污点和容忍](/zh/docs/concepts/scheduling-eviction/taint-and-toleration/)。
-
-  实现的扩展点：`Filter`，`Prescore`，`Score`。
-<!--  
-- `NodeName`: Checks if a Pod spec node name matches the current node.
-  Extension points: `Filter`.
--->
-- `NodeName`：检查 Pod 指定的节点名称与当前节点是否匹配。
-
-  实现的扩展点：`Filter`。
-<!--  
-- `NodePorts`: Checks if a node has free ports for the requested Pod ports.
-  Extension points: `PreFilter`, `Filter`.
--->
-- `NodePorts`：检查 Pod 请求的端口在节点上是否可用。
-
-  实现的扩展点：`PreFilter`，`Filter`。
-<!--  
-- `NodePreferAvoidPods`: Scores nodes according to the node
-  {{< glossary_tooltip text=" " term_id="annotation" >}}
-  `scheduler.alpha.kubernetes.io/preferAvoidPods`.
-  Extension points: `Score`.
--->
-- `NodePreferAvoidPods`：基于节点的 {{< glossary_tooltip text="注解" term_id="annotation" >}}
-  `scheduler.alpha.kubernetes.io/preferAvoidPods` 打分。
-
-  实现的扩展点：`Score`。
-<!--  
-- `NodeAffinity`: Implements
-  [node selectors](/docs/concepts/scheduling-eviction/assign-pod-node/#nodeselector)
-  and [node affinity](/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity).
-  Extension points: `Filter`, `Score`.
--->
-- `NodeAffinity`：实现了[节点选择器](/zh/docs/concepts/scheduling-eviction/assign-pod-node/#nodeselector)
-  和[节点亲和性](/zh/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity)。
-
-  实现的扩展点：`Filter`，`Score`.
-<!--  
-- `PodTopologySpread`: Implements
-  [Pod topology spread](/docs/concepts/workloads/pods/pod-topology-spread-constraints/).
-  Extension points: `PreFilter`, `Filter`, `PreScore`, `Score`.
--->
-- `PodTopologySpread`：实现了 [Pod 拓扑分布](/zh/docs/concepts/workloads/pods/pod-topology-spread-constraints/)。
-
-  实现的扩展点：`PreFilter`，`Filter`，`PreScore`，`Score`。
-<!--  
-- `NodeUnschedulable`: Filters out nodes that have `.spec.unschedulable` set to
-  true.
-  Extension points: `Filter`.
--->
-- `NodeUnschedulable`：过滤 `.spec.unschedulable` 值为 true 的节点。
-
-  实现的扩展点：`Filter`。
-<!--  
-- `NodeResourcesFit`: Checks if the node has all the resources that the Pod is
-  requesting.
-  Extension points: `PreFilter`, `Filter`.
--->
-- `NodeResourcesFit`：检查节点是否拥有 Pod 请求的所有资源。
-
-  实现的扩展点：`PreFilter`，`Filter`。
-<!--  
-- `NodeResourcesBalancedAllocation`: Favors nodes that would obtain a more
-  balanced resource usage if the Pod is scheduled there.
-  Extension points: `Score`.
--->
-- `NodeResourcesBalancedAllocation`：调度 Pod 时，选择资源使用更为均衡的节点。
-
-  实现的扩展点：`Score`。
-<!--  
-- `NodeResourcesLeastAllocated`: Favors nodes that have a low allocation of
-  resources.
-  Extension points: `Score`.
--->
-- `NodeResourcesLeastAllocated`：选择资源分配较少的节点。
-
-  实现的扩展点：`Score`。
-<!--  
-- `VolumeBinding`: Checks if the node has or if it can bind the requested
-  {{< glossary_tooltip text="volumes" term_id="volume" >}}.
-  Extension points: `PreFilter`, `Filter`, `Reserve`, `PreBind`, `Score`.
-  {{< note >}}
-  `Score` extension point is enabled when `VolumeCapacityPriority` feature is
-  enabled. It prioritizes the smallest PVs that can fit the requested volume
-  size.
-  {{< /note >}}
--->
-- `VolumeBinding`：检查节点是否有请求的卷，或是否可以绑定请求的卷。
-  实现的扩展点: `PreFilter`、`Filter`、`Reserve`、`PreBind` 和 `Score`。
-  {{< note >}}
-  当 `VolumeCapacityPriority` 特性被启用时，`Score` 扩展点也被启用。
-  它优先考虑可以满足所需卷大小的最小 PV。
-  {{< /note >}}
-  
-<!--
-- `VolumeRestrictions`: Checks that volumes mounted in the node satisfy
-  restrictions that are specific to the volume provider.
-  Extension points: `Filter`.
--->
-- `VolumeRestrictions`：检查挂载到节点上的卷是否满足卷提供程序的限制。
-
-  实现的扩展点：`Filter`。
-<!--  
-- `VolumeZone`: Checks that volumes requested satisfy any zone requirements they
-  might have.
-  Extension points: `Filter`.
--->
-- `VolumeZone`：检查请求的卷是否在任何区域都满足。
-
-  实现的扩展点：`Filter`。
-<!--
-- `NodeVolumeLimits`: Checks that CSI volume limits can be satisfied for the
-  node.
-  Extension points: `Filter`.
--->
-- `NodeVolumeLimits`：检查该节点是否满足 CSI 卷限制。
-
-  实现的扩展点：`Filter`。
-<!--  
-- `EBSLimits`: Checks that AWS EBS volume limits can be satisfied for the node.
-  Extension points: `Filter`.
--->
-- `EBSLimits`：检查节点是否满足 AWS EBS 卷限制。
-
-  实现的扩展点：`Filter`。
-<!--  
-- `GCEPDLimits`: Checks that GCP-PD volume limits can be satisfied for the node.
-  Extension points: `Filter`.
--->
-- `GCEPDLimits`：检查该节点是否满足 GCP-PD 卷限制。
-
-  实现的扩展点：`Filter`。
-<!--  
-- `AzureDiskLimits`: Checks that Azure disk volume limits can be satisfied for
-  the node.
-  Extension points: `Filter`.
--->
-- `AzureDiskLimits`：检查该节点是否满足 Azure 卷限制。
-
-  实现的扩展点：`Filter`。
-<!--  
-- `InterPodAffinity`: Implements
-  [inter-Pod affinity and anti-affinity](/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity).
-  Extension points: `PreFilter`, `Filter`, `PreScore`, `Score`.
--->
-- `InterPodAffinity`：实现 [Pod 间亲和性与反亲和性](/zh/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity)。
-
-  实现的扩展点：`PreFilter`，`Filter`，`PreScore`，`Score`。
-<!--  
-- `PrioritySort`: Provides the default priority based sorting.
-  Extension points: `QueueSort`.
--->
-- `PrioritySort`：提供默认的基于优先级的排序。
-
-  实现的扩展点：`QueueSort`。
-<!--  
-- `DefaultBinder`: Provides the default binding mechanism.
-  Extension points: `Bind`.
--->
-- `DefaultBinder`：提供默认的绑定机制。
-
-  实现的扩展点：`Bind`。
-<!--  
-- `DefaultPreemption`: Provides the default preemption mechanism.
-  Extension points: `PostFilter`.
--->
-- `DefaultPreemption`：提供默认的抢占机制。
-
-  实现的扩展点：`PostFilter`。
-
-<!--  
-You can also enable the following plugins, through the component config APIs,
-that are not enabled by default:
--->
-你也可以通过组件配置 API 启用以下插件（默认不启用）:
-
-<!--  
-- `NodeResourcesMostAllocated`: Favors nodes that have a high allocation of
-  resources.
-  Extension points: `Score`.
--->
-- `NodeResourcesMostAllocated`：选择已分配资源多的节点。
-
-  实现的扩展点：`Score`。
-<!--  
-- `RequestedToCapacityRatio`: Favor nodes according to a configured function of
-  the allocated resources.
-  Extension points: `Score`.
--->
-- `RequestedToCapacityRatio`：根据已分配资源的某函数设置选择节点。
-
-  实现的扩展点：`Score`。
-<!--  
-- `CinderVolume`: Checks that OpenStack Cinder volume limits can be satisfied
-  for the node.
-  Extension points: `Filter`.
--->
-- `CinderVolume`：检查该节点是否满足 OpenStack Cinder 卷限制。
-
-  实现的扩展点：`Filter`。
-<!--  
-- `NodeLabel`: Filters and / or scores a node according to configured
-  {{< glossary_tooltip text="label(s)" term_id="label" >}}.
-  Extension points: `Filter`, `Score`.
--->
-- `NodeLabel`：根据配置的 {{< glossary_tooltip text="标签" term_id="label" >}}
-  过滤节点和/或给节点打分。
-
-  实现的扩展点：`Filter`，`Score`。
-<!--  
-- `ServiceAffinity`: Checks that Pods that belong to a
-  {{< glossary_tooltip term_id="service" >}} fit in a set of nodes defined by
-  configured labels. This plugin also favors spreading the Pods belonging to a
-  Service across nodes.
-  Extension points: `PreFilter`, `Filter`, `Score`.
--->
-- `ServiceAffinity`：检查属于某个 {{< glossary_tooltip term_id="service" >}} 的 Pod
-  与配置的标签所定义的节点集是否适配。
-  这个插件还支持将属于某个 Service 的 Pod 分散到各个节点。
-
-  实现的扩展点：`PreFilter`，`Filter`，`Score`。
-
-<!-- ### Multiple profiles -->
-### 多配置文件    {#multiple-profiles}
-
-<!--  
-You can configure `kube-scheduler` to run more than one profile.
-Each profile has an associated scheduler name and can have a different set of
-plugins configured in its [extension points](#extension-points).
--->
-你可以配置 `kube-scheduler` 运行多个配置文件。
-每个配置文件都有一个关联的调度器名称，并且可以在其扩展点中配置一组不同的插件。
-
-<!--  
-With the following sample configuration, the scheduler will run with two
-profiles: one with the default plugins and one with all scoring plugins
-disabled.
--->
-使用下面的配置样例，调度器将运行两个配置文件：一个使用默认插件，另一个禁用所有打分插件。
-
-```yaml
-apiVersion: kubescheduler.config.k8s.io/v1beta1
-kind: KubeSchedulerConfiguration
-profiles:
-  - schedulerName: default-scheduler
-  - schedulerName: no-scoring-scheduler
-    plugins:
-      preScore:
-        disabled:
-        - name: '*'
-      score:
-        disabled:
-        - name: '*'
-```
-
-<!--  
-Pods that want to be scheduled according to a specific profile can include
-the corresponding scheduler name in its `.spec.schedulerName`.
--->
-对于那些希望根据特定配置文件来进行调度的 Pod，可以在 `.spec.schedulerName` 字段指定相应的调度器名称。
-
-<!--  
-By default, one profile with the scheduler name `default-scheduler` is created.
-This profile includes the default plugins described above. When declaring more
-than one profile, a unique scheduler name for each of them is required.
--->
-默认情况下，将创建一个调度器名为 `default-scheduler` 的配置文件。
-这个配置文件包括上面描述的所有默认插件。
-声明多个配置文件时，每个配置文件中调度器名称必须唯一。
-
-<!--  
-If a Pod doesn't specify a scheduler name, kube-apiserver will set it to
-`default-scheduler`. Therefore, a profile with this scheduler name should exist
-to get those pods scheduled.
--->
-如果 Pod 未指定调度器名称，kube-apiserver 将会把调度器名设置为 `default-scheduler`。
-因此，应该存在一个调度器名为 `default-scheduler` 的配置文件来调度这些 Pod。
-
-{{< note >}}
-<!--  
-Pod's scheduling events have `.spec.schedulerName` as the ReportingController.
-Events for leader election use the scheduler name of the first profile in the
-list.
--->
-Pod 的调度事件把 `.spec.schedulerName` 字段值作为 ReportingController。
-领导者选举事件使用列表中第一个配置文件的调度器名称。
-{{< /note >}}
-
-{{< note >}}
-<!--  
-All profiles must use the same plugin in the QueueSort extension point and have
-the same configuration parameters (if applicable). This is because the scheduler
-only has one pending pods queue.
--->
-所有配置文件必须在 QueueSort 扩展点使用相同的插件，并具有相同的配置参数（如果适用）。
-这是因为调度器只有一个保存 pending 状态 Pod 的队列。
-
-{{< /note >}}
-
-## {{% heading "whatsnext" %}}
-
-<!--  
-* Read the [kube-scheduler reference](https://kubernetes.io/docs/reference/command-line-tools-reference/kube-scheduler/)
-* Learn about [scheduling](/docs/concepts/scheduling-eviction/kube-scheduler/)
-* Read the [kube-scheduler configuration (v1beta1)](/docs/reference/config-api/kube-scheduler-config.v1beta1/) reference
--->
-* 阅读 [kube-scheduler 参考](/zh/docs/reference/command-line-tools-reference/kube-scheduler/)
-* 了解[调度](/zh/docs/concepts/scheduling-eviction/kube-scheduler/)
-* 阅读 [kube-scheduler 配置 (v1beta1)](/zh/docs/reference/config-api/kube-scheduler-config.v1beta1/) 参考
-
diff --git a/content/zh/docs/reference/scheduling/policies.md b/content/zh/docs/reference/scheduling/policies.md
deleted file mode 100644
index 20a7ca04bf..0000000000
--- a/content/zh/docs/reference/scheduling/policies.md
+++ /dev/null
@@ -1,237 +0,0 @@
----
-title: 调度策略
-content_type: concept
-weight: 10
----
-<!--  
-title: Scheduling Policies
-content_type: concept
-weight: 10
--->
-
-<!-- overview -->
-
-<!--  
-A scheduling Policy can be used to specify the *predicates* and *priorities*
-that the {{< glossary_tooltip text="kube-scheduler" term_id="kube-scheduler" >}}
-runs to [filter and score nodes](/docs/concepts/scheduling-eviction/kube-scheduler/#kube-scheduler-implementation),
-respectively.
--->
-{{< glossary_tooltip text="kube-scheduler" term_id="kube-scheduler" >}}
-根据调度策略指定的*断言（predicates）*和*优先级（priorities）*
-分别对节点进行[过滤和打分](/zh/docs/concepts/scheduling-eviction/kube-scheduler/#kube-scheduler-implementation)。
-
-<!--  
-You can set a scheduling policy by running
-`kube-scheduler --policy-config-file <filename>` or
-`kube-scheduler --policy-configmap <ConfigMap>`
-and using the [Policy type](/zh/docs/reference/config-api/kube-scheduler-policy-config.v1/).
--->
-你可以通过执行 `kube-scheduler --policy-config-file <filename>` 或
-`kube-scheduler --policy-configmap <ConfigMap>` 
-设置并使用[调度策略](/zh/docs/reference/config-api/kube-scheduler-policy-config.v1/)。
-
-
-<!-- body -->
-
-<!-- ## Predicates -->
-## 断言    {#predicates}
-
-
-<!-- The following *predicates* implement filtering: -->
-以下*断言*实现了过滤接口：
-
-<!-- 
-- `PodFitsHostPorts`: Checks if a Node has free ports (the network protocol kind)
-  for the Pod ports the Pod is requesting. 
--->
-- `PodFitsHostPorts`：检查 Pod 请求的端口（网络协议类型）在节点上是否可用。
-
-<!-- - `PodFitsHost`: Checks if a Pod specifies a specific Node by its hostname. -->
-- `PodFitsHost`：检查 Pod 是否通过主机名指定了 Node。
-
-<!-- 
-- `PodFitsResources`: Checks if the Node has free resources (eg, CPU and Memory)
-  to meet the requirement of the Pod.
--->
-- `PodFitsResources`：检查节点的空闲资源（例如，CPU和内存）是否满足 Pod 的要求。
-
-<!--  
-- `MatchNodeSelector`: Checks if a Pod's Node {{< glossary_tooltip term_id="selector" >}}
-   matches the Node's {{< glossary_tooltip text="label(s)" term_id="label" >}}.
--->
-- `MatchNodeSelector`：检查 Pod 的节点{{< glossary_tooltip text="选择算符" term_id="selector" >}}
-  和节点的 {{< glossary_tooltip text="标签" term_id="label" >}} 是否匹配。
-
-<!--  
-- `NoVolumeZoneConflict`: Evaluate if the {{< glossary_tooltip text="Volumes" term_id="volume" >}}
-  that a Pod requests are available on the Node, given the failure zone restrictions for
-  that storage.
--->
-- `NoVolumeZoneConflict`：给定该存储的故障区域限制，
-  评估 Pod 请求的{{< glossary_tooltip text="卷" term_id="volume" >}}在节点上是否可用。
-
-<!--  
-- `NoDiskConflict`: Evaluates if a Pod can fit on a Node due to the volumes it requests,
-   and those that are already mounted.
--->
-- `NoDiskConflict`：根据 Pod 请求的卷是否在节点上已经挂载，评估 Pod 和节点是否匹配。
-
-<!--  
-- `MaxCSIVolumeCount`: Decides how many {{< glossary_tooltip text="CSI" term_id="csi" >}}
-  volumes should be attached, and whether that's over a configured limit.
--->
-- `MaxCSIVolumeCount`：决定附加 {{< glossary_tooltip text="CSI" term_id="csi" >}} 卷的数量，判断是否超过配置的限制。
-
-<!--  
-- `CheckNodeMemoryPressure`: If a Node is reporting memory pressure, and there's no
-  configured exception, the Pod won't be scheduled there.
--->
-- `CheckNodeMemoryPressure`：如果节点正上报内存压力，并且没有异常配置，则不会把 Pod 调度到此节点上。
-
-<!--  
-- `CheckNodePIDPressure`: If a Node is reporting that process IDs are scarce, and
-  there's no configured exception, the Pod won't be scheduled there.
--->
-- `CheckNodePIDPressure`：如果节点正上报进程 ID 稀缺，并且没有异常配置，则不会把 Pod 调度到此节点上。
-
-<!--  
-- `CheckNodeDiskPressure`: If a Node is reporting storage pressure (a filesystem that
-   is full or nearly full), and there's no configured exception, the Pod won't be
-   scheduled there.
--->
-- `CheckNodeDiskPressure`：如果节点正上报存储压力（文件系统已满或几乎已满），并且没有异常配置，则不会把 Pod 调度到此节点上。
-
-<!--  
-- `CheckNodeCondition`: Nodes can report that they have a completely full filesystem,
-  that networking isn't available or that kubelet is otherwise not ready to run Pods.
-  If such a condition is set for a Node, and there's no configured exception, the Pod
-  won't be scheduled there.
--->
-- `CheckNodeCondition`：节点可用上报自己的文件系统已满，网络不可用或者 kubelet 尚未准备好运行 Pod。
-  如果节点上设置了这样的状况，并且没有异常配置，则不会把 Pod 调度到此节点上。
-
-<!--  
-- `PodToleratesNodeTaints`: checks if a Pod's {{< glossary_tooltip text="tolerations" term_id="toleration" >}}
-  can tolerate the Node's {{< glossary_tooltip text="taints" term_id="taint" >}}.
--->
-- `PodToleratesNodeTaints`：检查 Pod 的{{< glossary_tooltip text="容忍" term_id="toleration" >}}
-  是否能容忍节点的{{< glossary_tooltip text="污点" term_id="taint" >}}。
-
-<!-- 
-- `CheckVolumeBinding`: Evaluates if a Pod can fit due to the volumes it requests.
-  This applies for both bound and unbound
-  {{< glossary_tooltip text="PVCs" term_id="persistent-volume-claim" >}}. 
--->
-- `CheckVolumeBinding`：基于 Pod 的卷请求，评估 Pod 是否适合节点，这里的卷包括绑定的和未绑定的
-  {{< glossary_tooltip text="PVCs" term_id="persistent-volume-claim" >}} 都适用。
-
-
-<!-- ## Priorities -->
-## 优先级    {#priorities}
-
-<!-- The following *priorities* implement scoring: -->
-以下*优先级*实现了打分接口：
-
-<!--  
-- `SelectorSpreadPriority`: Spreads Pods across hosts, considering Pods that
-   belong to the same {{< glossary_tooltip text="Service" term_id="service" >}},
-   {{< glossary_tooltip term_id="statefulset" >}} or
-   {{< glossary_tooltip term_id="replica-set" >}}.
--->
-- `SelectorSpreadPriority`：属于同一 {{< glossary_tooltip text="Service" term_id="service" >}}、
-  {{< glossary_tooltip term_id="statefulset" >}} 或
-  {{< glossary_tooltip term_id="replica-set" >}} 的 Pod，跨主机部署。
-
-<!--  
-- `InterPodAffinityPriority`: Implements preferred
-  [inter pod affininity and antiaffinity](/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity).
--->
-- `InterPodAffinityPriority`：实现了 [Pod 间亲和性与反亲和性](/zh/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity)的优先级。
-
-<!--
-- `LeastRequestedPriority`: Favors nodes with fewer requested resources. In other
-  words, the more Pods that are placed on a Node, and the more resources those
-  Pods use, the lower the ranking this policy will give.  
--->
-- `LeastRequestedPriority`：偏向最少请求资源的节点。 
-  换句话说，节点上的 Pod 越多，使用的资源就越多，此策略给出的排名就越低。
-
-<!--  
-- `MostRequestedPriority`: Favors nodes with most requested resources. This policy
-  will fit the scheduled Pods onto the smallest number of Nodes needed to run your
-  overall set of workloads.
--->
-- `MostRequestedPriority`：支持最多请求资源的节点。
-  该策略将 Pod 调度到整体工作负载所需的最少的一组节点上。
-
-<!-- - `RequestedToCapacityRatioPriority`: Creates a requestedToCapacity based ResourceAllocationPriority using default resource scoring function shape. -->
-- `RequestedToCapacityRatioPriority`：使用默认的打分方法模型，创建基于 ResourceAllocationPriority 的 requestedToCapacity。
-
-<!-- - `BalancedResourceAllocation`: Favors nodes with balanced resource usage. -->
-- `BalancedResourceAllocation`：偏向平衡资源使用的节点。
-
-<!-- 
-- `NodePreferAvoidPodsPriority`: Prioritizes nodes according to the node annotation
-  `scheduler.alpha.kubernetes.io/preferAvoidPods`. You can use this to hint that
-  two different Pods shouldn't run on the same Node. 
-  -->
-- `NodePreferAvoidPodsPriority`：根据节点的注解 `scheduler.alpha.kubernetes.io/preferAvoidPods` 对节点进行优先级排序。
-  你可以使用它来暗示两个不同的 Pod 不应在同一节点上运行。
-
-<!--  
-- `NodeAffinityPriority`: Prioritizes nodes according to node affinity scheduling
-   preferences indicated in PreferredDuringSchedulingIgnoredDuringExecution.
-   You can read more about this in [Assigning Pods to Nodes](/docs/concepts/scheduling-eviction/assign-pod-node/).
--->
-- `NodeAffinityPriority`：根据节点亲和中 PreferredDuringSchedulingIgnoredDuringExecution 字段对节点进行优先级排序。
-  你可以在[将 Pod 分配给节点](/zh/docs/concepts/scheduling-eviction/assign-pod-node/)中了解更多。
-
-<!--  
-- `TaintTolerationPriority`: Prepares the priority list for all the nodes, based on
-  the number of intolerable taints on the node. This policy adjusts a node's rank
-  taking that list into account.
--->
-- `TaintTolerationPriority`：根据节点上无法忍受的污点数量，给所有节点进行优先级排序。
-  此策略会根据排序结果调整节点的等级。
-
-<!-- 
-- `ImageLocalityPriority`: Favors nodes that already have the
-  {{< glossary_tooltip text="container images" term_id="image" >}} for that
-  Pod cached locally.
--->
-- `ImageLocalityPriority`：偏向已在本地缓存 Pod 所需容器镜像的节点。
-
-<!-- 
-- `ServiceSpreadingPriority`: For a given Service, this policy aims to make sure that
-  the Pods for the Service run on different nodes. It favours scheduling onto nodes
-  that don't have Pods for the service already assigned there. The overall outcome is
-  that the Service becomes more resilient to a single Node failure.
--->
-- `ServiceSpreadingPriority`：对于给定的 Service，此策略旨在确保该 Service 关联的 Pod 在不同的节点上运行。
-  它偏向把 Pod 调度到没有该服务的节点。
-  整体来看，Service 对于单个节点故障变得更具弹性。
-
-<!-- - `EqualPriority`: Gives an equal weight of one to all nodes. -->
-- `EqualPriority`：给予所有节点相等的权重。
-
-<!-- 
-- `EvenPodsSpreadPriority`: Implements preferred
-  [pod topology spread constraints](/docs/concepts/workloads/pods/pod-topology-spread-constraints/). 
--->
-- `EvenPodsSpreadPriority`：实现了 [Pod 拓扑扩展约束](/zh/docs/concepts/workloads/pods/pod-topology-spread-constraints/)的优先级排序。
-
-
-
-## {{% heading "whatsnext" %}}
-
-<!--  
-* Learn about [scheduling](/docs/concepts/scheduling-eviction/kube-scheduler/)
-* Learn about [kube-scheduler Configuration](/docs/reference/scheduling/config/)
-* Read the [kube-scheduler configuration reference (v1beta1)](/docs/reference/config-api/kube-scheduler-config.v1beta1)
-* Read the [kube-scheduler Policy reference (v1)](/docs/reference/config-api/kube-scheduler-policy-config.v1/)
--->
-* 了解[调度](/zh/docs/concepts/scheduling-eviction/kube-scheduler/)
-* 了解 [kube-scheduler 配置](/zh/docs/reference/scheduling/config/)
-* 阅读 [kube-scheduler 配置参考 (v1beta1)](/zh/docs/reference/config-api/kube-scheduler-config.v1beta1)
-* 阅读 [kube-scheduler 策略参考 (v1)](/zh/docs/reference/config-api/kube-scheduler-policy-config.v1/)
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_alpha.md b/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_alpha.md
deleted file mode 100644
index f6978fcb6d..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_alpha.md
+++ /dev/null
@@ -1,69 +0,0 @@
-
-<!-- 
-### Synopsis 
--->
-
-### 概要
-
-<!--
-Kubeadm experimental sub-commands
--->
-
-kubeadm 实验子命令
-
-<!--
-### Options
--->
-
-### 选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-help for alpha
--->
-alpha 操作的帮助命令
-</td>
-</tr>
-
-</tbody>
-</table>
-
-<!--
-### Options inherited from parent commands
--->
-
-### 从父命令继承的选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--rootfs string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
--->
-[实验] 指向 '真实' 宿主机的根文件系统的路径。
-</td>
-</tr>
-
-</tbody>
-</table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs.md b/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs.md
deleted file mode 100644
index 9e34c47542..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs.md
+++ /dev/null
@@ -1,58 +0,0 @@
-
-<!--
-### Synopsis
--->
-### 概要
-
-<!--
-Commands related to handling kubernetes certificates
--->
-与处理 kubernetes 证书相关的命令
-
-<!--
-### Options
--->
-### 选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<!-- td></td><td style="line-height: 130%; word-wrap: break-word;">help for certs</td -->
-<td></td><td style="line-height: 130%; word-wrap: break-word;"><!-- help for certs-->certs 命令的帮助</td>
-</tr>
-
-</tbody>
-</table>
-
-<!--
-### Options inherited from parent commands
--->
-### 继承于父命令的选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--rootfs string</td>
-</tr>
-<tr>
-<!-- td></td><td style="line-height: 130%; word-wrap: break-word;">[EXPERIMENTAL] The path to the 'real' host root filesystem.</td -->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">[实验] 到'真实'主机根文件系统的路径。</td>
-</tr>
-
-</tbody>
-</table>
-
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_check-expiration.md b/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_check-expiration.md
deleted file mode 100644
index e01e7fa4fe..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_certs_check-expiration.md
+++ /dev/null
@@ -1,82 +0,0 @@
-<!--
-### Synopsis
--->
-### 概要
-
-<!-- 
-Checks expiration for the certificates in the local PKI managed by kubeadm.
--->
-检查 kubeadm 管理的本地 PKI 中证书的到期时间。
-
-```
-kubeadm certs check-expiration [flags]
-```
-
-<!--
-### Options
--->
-### 选项 
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<!--
-<td colspan="2">--cert-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/kubernetes/pki"</td> 
--->
-<td colspan="2">--cert-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值: "/etc/kubernetes/pki"</td>
-</tr>
-<tr>
-<!--
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The path where to save the certificates</td>
--->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">保存证书的路径</td>
-</tr>
-
-<tr>
-<td colspan="2">--config string</td>
-</tr>
-<tr>
-<!-- td></td><td style="line-height: 130%; word-wrap: break-word;">Path to a kubeadm configuration file.</td -->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">kubeadm 配置文件的路径</td>
-</tr>
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<!-- td></td><td style="line-height: 130%; word-wrap: break-word;">help for check-expiration</td -->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">check-expiration 的帮助命令</td>
-</tr>
-
-</tbody>
-</table>
-
-<!--
-### Options inherited from parent commands
--->
-### 继承于父命令的选项 
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--rootfs string</td>
-</tr>
-<tr>
-<!-- td></td><td style="line-height: 130%; word-wrap: break-word;">[EXPERIMENTAL] The path to the 'real' host root filesystem.</td -->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">[实验] 到'真实'主机根文件系统的路径。</td>
-</tr>
-
-</tbody>
-</table>
-
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_print_init-defaults.md b/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_print_init-defaults.md
deleted file mode 100644
index 2f20499dba..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_config_print_init-defaults.md
+++ /dev/null
@@ -1,108 +0,0 @@
-
-<!--
-### Synopsis
--->
-### 概要
-
-<!--
-This command prints objects such as the default init configuration that is used for 'kubeadm init'.
--->
-
-此命令打印对象，例如用于 'kubeadm init' 的默认 init 配置对象。
-
-<!--
-Note that sensitive values like the Bootstrap Token fields are replaced with placeholder values like {"abcdef.0123456789abcdef" "" "nil" &lt;nil&gt; [] []} in order to pass validation but
-not perform the real computation for creating a token.
--->
-
-请注意，Bootstrap Token 字段之类的敏感值已替换为 {"abcdef.0123456789abcdef" "" "nil" &lt;nil&gt; [] []} 之类的占位符值以通过验证，但不执行创建令牌的实际计算。
-
-```
-kubeadm config print init-defaults [flags]
-```
-
-<!--
-### Options
--->
-
-### 选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--component-configs stringSlice</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-A comma-separated list for component config API objects to print the default values for. Available values: [KubeProxyConfiguration KubeletConfiguration]. If this flag is not set, no component configs will be printed.
--->
-组件配置 API 对象的逗号分隔列表，打印其默认值。可用值：[KubeProxyConfiguration KubeletConfiguration]。如果未设置此参数，则不会打印任何组件配置。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-help for init-defaults
--->
-init-defaults 操作的帮助命令
-</td>
-</tr>
-
-</tbody>
-</table>
-
-<!--
-### Options inherited from parent commands
--->
-
-### 从父命令继承的选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">
-<!--
---kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/kubernetes/admin.conf"
--->
---kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值："/etc/kubernetes/admin.conf"
-</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.
--->
-与集群通信时使用的 kubeconfig 文件。如果未设置该参数，则可以在一组标准位置中搜索现有的 kubeconfig 文件。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--rootfs string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
--->
-[实验] 到 '真实' 主机根文件系统的路径。
-</td>
-</tr>
-
-</tbody>
-</table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase.md b/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase.md
deleted file mode 100644
index 3052b2a5b6..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase.md
+++ /dev/null
@@ -1,67 +0,0 @@
-
-<!--
-### Synopsis
--->
-
-### 概要
-
-<!--
-Use this command to invoke single phase of the init workflow
--->
-
-使用此命令可以调用 init 工作流程的单个阶段
-
-<!--
-### Options
--->
-
-### 选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- help for phase -->
-phase 操作的帮助命令
-</td>
-</tr>
-
-</tbody>
-</table>
-
-<!--
-### Options inherited from parent commands
--->
-
-### 继承于父命令的选择项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--rootfs string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
--->
-[实验] 到 '真实' 主机根文件系统的路径。
-</td>
-</tr>
-
-</tbody>
-</table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_controller-manager.md b/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_controller-manager.md
deleted file mode 100644
index d35b86f363..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_control-plane_controller-manager.md
+++ /dev/null
@@ -1,165 +0,0 @@
-
-<!--
-### Synopsis
--->
-### 概要
-
-<!--
-Generates the kube-controller-manager static Pod manifest
--->
-生成 kube-controller-manager 静态 Pod 清单
-
-```
-kubeadm init phase control-plane controller-manager [flags]
-```
-
-<!--
-### Options
--->
-### 选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<!-- td colspan="2">--cert-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/kubernetes/pki"</td -->
-<td colspan="2">--cert-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值："/etc/kubernetes/pki"</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-The path where to save and store the certificates.
--->
-存储证书的路径。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--config string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Path to a kubeadm configuration file.
--->
-kubeadm 配置文件的路径。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--controller-manager-extra-args mapStringString</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-A set of extra flags to pass to the Controller Manager or override default ones in form of &lt;flagname&gt;=&lt;value&gt;
--->
-一组 &lt;flagname&gt;=&lt; 形式的额外参数，传递给控制器管理器（Controller Manager）
-或者覆盖其默认配置值
-</td>
-</tr>
-
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--Path to a directory that contains files named "target[suffix][+patchtype].extension". For example, "kube-apiserver0+merge.yaml" or just "etcd.json". "patchtype" can be one of "strategic", "merge" or "json" and they match the patch formats supported by kubectl. The default "patchtype" is "strategic". "extension" must be either "json" or "yaml". "suffix" is an optional string that can be used to determine which patches are applied first alpha-numerically.-->
-包含名为 "target[suffix][+patchtype].extension" 的文件的目录。
-例如，"kube-apiserver0+merge.yaml" 或者 "etcd.json"。
-"patchtype" 可以是 "strategic"、"merge" 或 "json" 之一，分别与 kubectl
-所支持的 patch 格式相匹配。默认的 "patchtype" 是 "strategic"。
-"extension" 必须是 "json" 或 "yaml"。
-"suffix" 是一个可选的字符串，用来确定按字母顺序排序时首先应用哪些 patch。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-help for controller-manager
--->
-controller-manager 操作的帮助命令
-</td>
-</tr>
-
-<tr>
-<td colspan="2">
-<!--
---image-repository string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "k8s.gcr.io"
--->
---image-repository string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值："k8s.gcr.io"
-</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Choose a container registry to pull control plane images from
--->
-选择要从中拉取控制平面镜像的容器仓库
-</td>
-</tr>
-
-<tr>
-<td colspan="2">
-<!--
---kubernetes-version string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "stable-1"
--->
---kubernetes-version string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值："stable-1"
-</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Choose a specific Kubernetes version for the control plane.
--->
-为控制平面选择特定的 Kubernetes 版本。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--pod-network-cidr string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Specify range of IP addresses for the pod network. If set, the control plane will automatically allocate CIDRs for every node.
--->
-指定 Pod 网络的 IP 地址范围。如果设置，控制平面将自动为每个节点分配 CIDR。
-</td>
-</tr>
-
-</tbody>
-</table>
-
-<!--
-### Options inherited from parent commands
--->
-### 从父命令继承的选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--rootfs string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
--->
-[实验] 到 '真实' 主机根文件系统的路径。
-</td>
-</tr>
-
-</tbody>
-</table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-finalize_experimental-cert-rotation.md b/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-finalize_experimental-cert-rotation.md
deleted file mode 100644
index 77517935ca..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_init_phase_kubelet-finalize_experimental-cert-rotation.md
+++ /dev/null
@@ -1,75 +0,0 @@
-
-<!-- ### Synopsis -->
-### 概要
-
-
-
-<!-- Enable kubelet client certificate rotation -->
-启用 kubelet 客户端证书轮换
-
-```
-kubeadm init phase kubelet-finalize experimental-cert-rotation [flags]
-```
-
-<!-- ### Options -->
-### 选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--cert-dir string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/kubernetes/pki"</td>
-</tr>
-<tr>
-<!-- <td></td><td style="line-height: 130%; word-wrap: break-word;">The path where to save and store the certificates.</td> -->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">保存和存储证书的路径。</td>
-</tr>
-
-<tr>
-<td colspan="2">--config string</td>
-</tr>
-<tr>
-<!-- <td></td><td style="line-height: 130%; word-wrap: break-word;">Path to a kubeadm configuration file.</td> -->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">kubeadm 配置文件的路径。</td>
-</tr>
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<!-- <td></td><td style="line-height: 130%; word-wrap: break-word;">help for experimental-cert-rotation</td> -->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">experimental-cert-rotation 操作的帮助命令</td>
-</tr>
-
-</tbody>
-</table>
-
-
-
-<!-- ### Options inherited from parent commands -->
-### 继承于父命令的选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--rootfs string</td>
-</tr>
-<tr>
-<!-- <td></td><td style="line-height: 130%; word-wrap: break-word;">[EXPERIMENTAL] The path to the 'real' host root filesystem.</td> -->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">[实验] 到'真实'主机根文件系统的路径。</td>
-</tr>
-
-</tbody>
-</table>
-
-
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase.md b/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase.md
deleted file mode 100644
index ee327bcc75..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase.md
+++ /dev/null
@@ -1,65 +0,0 @@
-
-<!--
-### Synopsis
--->
-
-### 概要
-
-<!--
-Use this command to invoke single phase of the join workflow
--->
-
-使用此命令来调用 `join` 工作流程的某个阶段
-
-<!--
-### Options
--->
-
-### 选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- help for phase -->
-phase 操作的帮助命令
-</td>
-</tr>
-
-</tbody>
-</table>
-
-<!--
-### Options inherited from parent commands
--->
-
-### 从父命令中继承的选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--rootfs string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- [EXPERIMENTAL] The path to the 'real' host root filesystem.  -->
-[实验] 指向 '真实' 宿主机根文件系统的路径。
-</td>
-</tr>
-
-</tbody>
-</table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_all.md b/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_all.md
deleted file mode 100644
index a051439f2c..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_all.md
+++ /dev/null
@@ -1,121 +0,0 @@
-
-<!--
-### Synopsis
--->
-
-### 概要
-
-<!--
-Joins a machine as a control plane instance
--->
-
-添加作为控制平面实例的机器
-
-```
-kubeadm join phase control-plane-join all [flags]
-```
-
-<!--
-### Options
--->
-
-### 选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--apiserver-advertise-address string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If the node should host a new control plane instance, the IP address the API Server will advertise it's listening on. If not set the default network interface will be used.
--->
-如果该节点托管一个新的控制平面实例，则 API 服务器将公布其正在侦听的 IP 地址。如果未设置，则使用默认网络接口。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--config string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Path to kubeadm config file.
--->
-kubeadm 配置文件的路径。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--experimental-control-plane</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Create a new control plane instance on this node
--->
-在此节点上创建一个新的控制平面实例
-</td>
-</tr>
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-help for all
--->
-all 操作的帮助命令      
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--node-name string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Specify the node name.
--->
-指定节点名称。
-</td>
-</tr>
-
-</tbody>
-</table>
-
-<!--
-### Options inherited from parent commands
--->
-
-### 从父命令继承的选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--rootfs string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
--->
-[实验] 到 '真实' 主机根文件系统的路径。
-</td>
-</tr>
-
-</tbody>
-</table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_update-status.md b/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_update-status.md
deleted file mode 100644
index 0fce61c11b..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-join_update-status.md
+++ /dev/null
@@ -1,113 +0,0 @@
-
-<!-- 
-### Synopsis 
--->
-
-## 概要
-
-<!-- 
-Register the new control-plane node into the ClusterStatus maintained in the kubeadm-config ConfigMap 
--->
-
-将新的控制平面节点注册到 kubeadm-config ConfigMap 维护的 ClusterStatus 中
-
-```
-kubeadm join phase control-plane-join update-status [flags]
-```
-
-<!-- 
-### Options 
--->
-
-### 选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--apiserver-advertise-address string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If the node should host a new control plane instance, the IP address the API Server will advertise it's listening on. If not set the default network interface will be used.
--->
-如果该节点托管一个新的控制平面实例，则 API 服务器将公布其正在侦听的 IP 地址。如果未设置，则使用默认网络接口。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--config string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- Path to kubeadm config file.  -->
-kubeadm 配置文件的路径。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--control-plane</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- Create a new control plane instance on this node -->
-在此节点上创建一个新的控制平面实例
-</td>
-</tr>
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- help for update-status -->
-update-status 操作的帮助命令
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--node-name string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- Specify the node name.  -->
-指定节点名称。
-</td>
-</tr>
-
-</tbody>
-</table>
-
-
-
-<!--
-### Options inherited from parent commands
--->
-
-### 从父命令中继承的选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--rootfs string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- [EXPERIMENTAL] The path to the 'real' host root filesystem.  -->
-[实验] 到 '真实' 主机根文件系统的路径。
-</td>
-</tr>
-
-</tbody>
-</table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_control-plane.md b/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_control-plane.md
deleted file mode 100644
index 7f3da71e80..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_control-plane.md
+++ /dev/null
@@ -1,142 +0,0 @@
-
-<!--
-### Synopsis
--->
-
-### 概要
-
-<!--
-Generate the manifests for the new control plane components
--->
-
-为新的控制平面组件生成清单（manifest）
-
-```
-kubeadm join phase control-plane-prepare control-plane [flags]
-```
-
-<!--
-### Options
--->
-
-### 选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--apiserver-advertise-address string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If the node should host a new control plane instance, the IP address the API Server will advertise it's listening on. If not set the default network interface will be used.
--->
-对于将要托管新的控制平面实例的节点，指定 API 服务器将公布的其正在侦听的 IP 地址。如果未设置，则使用默认网络接口。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">
-<!--
---apiserver-bind-port int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 6443
--->
---apiserver-bind-port int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值：6443
-</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If the node should host a new control plane instance, the port for the API Server to bind to.
--->
-针对将要托管新的控制平面实例的节点，设置 API 服务器要绑定的端口。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--config string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Path to kubeadm config file.
--->
-kubeadm 配置文件的路径。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--control-plane</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Create a new control plane instance on this node
--->
-在此节点上创建一个新的控制平面实例
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--experimental-patches string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--  
-Path to a directory that contains files named "target[suffix][+patchtype].extension". For example, "kube-apiserver0+merge.yaml" or just "etcd.json". "patchtype" can be one of "strategic", "merge" or "json" and they match the patch formats supported by kubectl. The default "patchtype" is "strategic". "extension" must be either "json" or "yaml". "suffix" is an optional string that can be used to determine which patches are applied first alpha-numerically.
--->
-包含名为 "target[suffix][+patchtype].extension" 的文件的目录的路径。
-例如，"kube-apiserver0+merge.yaml" 或仅仅是 "etcd.json"。
-"patchtype" 可以是 "strategic"、"merge" 或 "json" 之一，并且它们与 kubectl 支持的补丁格式匹配。
-默认的 "patchtype" 为 "strategic"。 "extension" 必须为 "json" 或 "yaml"。 
-"suffix" 是一个可选字符串，可用于确定首先按字母顺序应用哪些补丁。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-help for control-plane
--->
-control-plane 操作的帮助命令
-</td>
-</tr>
-
-</tbody>
-</table>
-
-<!--
-### Options inherited from parent commands
--->
-
-### 从父命令中继承的选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--rootfs string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
--->
-[实验] 指向 '真实' 宿主机根文件系统的路径。
-</td>
-</tr>
-
-</tbody>
-</table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_download-certs.md b/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_download-certs.md
deleted file mode 100644
index 975f69e966..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_download-certs.md
+++ /dev/null
@@ -1,181 +0,0 @@
-
-<!--
-### Synopsis
--->
-
-### 概要
-
-<!--
-[EXPERIMENTAL] Download certificates shared among control-plane nodes from the kubeadm-certs Secret
--->
-
-[实验]从 kubeadm-certs Secret 下载控制平面节点之间共享的证书
-
-```
-kubeadm join phase control-plane-prepare download-certs [api-server-endpoint] [flags]
-```
-
-<!--
-### Options
--->
-
-### 选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--certificate-key string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Use this key to decrypt the certificate secrets uploaded by init.
--->
-使用此密钥可以解密由 init 上传的证书 secret。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--config string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Path to kubeadm config file.
--->
-kubeadm 配置文件的路径。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--control-plane</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Create a new control plane instance on this node
--->
-在此节点上创建一个新的控制平面实例
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--discovery-file string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-For file-based discovery, a file or URL from which to load cluster information.
--->
-对于基于文件的发现，给出用于加载集群信息的文件或者 URL。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--discovery-token string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-For token-based discovery, the token used to validate cluster information fetched from the API server.
--->
-对于基于令牌的发现，该令牌用于验证从 API 服务器获取的集群信息。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--discovery-token-ca-cert-hash stringSlice</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-For token-based discovery, validate that the root CA public key matches this hash (format: "&lt;type&gt;:&lt;value&gt;").
--->
-对于基于令牌的发现，请验证根 CA 公钥是否匹配此哈希值（格式："&lt;type&gt;:&lt;value&gt;"）。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--discovery-token-unsafe-skip-ca-verification</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-For token-based discovery, allow joining without --discovery-token-ca-cert-hash pinning.
--->
-对于基于令牌的发现，允许在未关联 --discovery-token-ca-cert-hash 参数的情况下添加节点。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-help for kubeconfig
--->
-kubeconfig 操作的帮助命令
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--tls-bootstrap-token string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Specify the token used to temporarily authenticate with the Kubernetes Control Plane while joining the node.
--->
-指定在加入节点时用于临时通过 Kubernetes 控制平面进行身份验证的令牌。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--token string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Use this token for both discovery-token and tls-bootstrap-token when those values are not provided.
--->
-如果未提供这些值，则将它们用于 discovery-token 令牌和 tls-bootstrap 令牌。
-</td>
-</tr>
-
-</tbody>
-</table>
-
-<!--
-### Options inherited from parent commands
--->
-
-### 从父命令中继承的选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--rootfs string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
--->
-[实验] 指向 '真实' 宿主机根文件系统的路径。
-</td>
-</tr>
-
-</tbody>
-</table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_kubeconfig.md b/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_kubeconfig.md
deleted file mode 100644
index 4ae6068268..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_control-plane-prepare_kubeconfig.md
+++ /dev/null
@@ -1,180 +0,0 @@
-
-<!--
-### Synopsis
--->
-### 概要
-
-<!--
-Generate the kubeconfig for the new control plane components
--->
-
-为新的控制平面组件生成 kubeconfig
-
-```
-kubeadm join phase control-plane-prepare kubeconfig [api-server-endpoint] [flags]
-```
-
-<!--
-### Options
--->
-
-### 选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--certificate-key string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Use this key to decrypt the certificate secrets uploaded by init.
--->
-使用此密钥可以解密由 init 上传的证书 secret。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--config string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Path to kubeadm config file.
--->
-kubeadm 配置文件的路径。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--control-plane</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Create a new control plane instance on this node
--->
-在此节点上创建一个新的控制平面实例
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--discovery-file string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-For file-based discovery, a file or URL from which to load cluster information.
--->
-对于基于文件的发现，给出用于加载集群信息的文件或者 URL。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--discovery-token string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-For token-based discovery, the token used to validate cluster information fetched from the API server.
--->
-对于基于令牌的发现，该令牌用于验证从 API 服务器获取的集群信息。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--discovery-token-ca-cert-hash stringSlice</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-For token-based discovery, validate that the root CA public key matches this hash (format: "&lt;type&gt;:&lt;value&gt;").
--->
-对于基于令牌的发现，请验证根 CA 公钥是否匹配此哈希值（格式："&lt;type&gt;:&lt;value&gt;"）。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--discovery-token-unsafe-skip-ca-verification</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-For token-based discovery, allow joining without --discovery-token-ca-cert-hash pinning.
--->
-对于基于令牌的发现，允许在未关联 --discovery-token-ca-cert-hash 参数的情况下添加节点。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-help for kubeconfig
--->
-kubeconfig 操作的帮助命令
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--tls-bootstrap-token string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Specify the token used to temporarily authenticate with the Kubernetes Control Plane while joining the node.
--->
-指定在加入节点时用于临时通过 Kubernetes 控制平面进行身份验证的令牌。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--token string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Use this token for both discovery-token and tls-bootstrap-token when those values are not provided.
--->
-如果未提供这些值，则将它们用于 discovery-token 令牌和 tls-bootstrap 令牌。
-</td>
-</tr>
-
-</tbody>
-</table>
-
-<!--
-### Options inherited from parent commands
--->
-
-### 从父命令中继承的选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--rootfs string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
--->
-[实验] 指向 '真实' 宿主机根文件系统的路径。
-</td>
-</tr>
-
-</tbody>
-</table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_preflight.md b/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_preflight.md
deleted file mode 100644
index 97ad892e9d..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_join_phase_preflight.md
+++ /dev/null
@@ -1,258 +0,0 @@
-
-<!--
-### Synopsis
--->
-
-### 概要
-
-<!--
-Run pre-flight checks for kubeadm join.
--->
-
-运行 kubeadm join 命令添加节点前检查。
-
-```
-kubeadm join phase preflight [api-server-endpoint] [flags]
-```
-
-<!--
-### Examples
-# Run join pre-flight checks using a config file.
--->
-
-### 示例
-
-```
-# 使用配置文件运行 kubeadm join 命令添加节点前检查。
-kubeadm join phase preflight --config kubeadm-config.yml
-```
-
-<!--
-### Options
--->
-
-### 选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--apiserver-advertise-address string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If the node should host a new control plane instance, the IP address the API Server will advertise it's listening on. If not set the default network interface will be used.
--->
-对于将要托管新的控制平面实例的节点，指定 API 服务器将公布的其正在侦听的 IP 地址。如果未设置，则使用默认网络接口。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">
-<!--
---apiserver-bind-port int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: 6443
--->
---apiserver-bind-port int32&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值：6443
-</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-If the node should host a new control plane instance, the port for the API Server to bind to.
--->
-针对将要托管新的控制平面实例的节点，设置 API 服务器要绑定的端口。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--certificate-key string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Use this key to decrypt the certificate secrets uploaded by init.
--->
-使用此密钥可以解密由 `init` 操作上传的证书 secret。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--config string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Path to kubeadm config file.
--->
-kubeadm 配置文件的路径。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--control-plane</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Create a new control plane instance on this node
--->
-在此节点上创建一个新的控制平面实例
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--cri-socket string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Path to the CRI socket to connect. If empty kubeadm will try to auto-detect this value; use this option only if you have more than one CRI installed or if you have non-standard CRI socket.
--->
-提供给 CRI 套接字建立连接的路径。如果为空，则 kubeadm 将尝试自动检测该值；仅当安装了多个 CRI 或具有非标准 CRI 套接字时，才使用此选项。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--discovery-file string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-For file-based discovery, a file or URL from which to load cluster information.
--->
-对于基于文件的发现，给出用于加载集群信息的文件或者 URL。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--discovery-token string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-For token-based discovery, the token used to validate cluster information fetched from the API server.
--->
-对于基于令牌的发现，该令牌用于验证从 API 服务器获取的集群信息。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--discovery-token-ca-cert-hash stringSlice</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-For token-based discovery, validate that the root CA public key matches this hash (format: "&lt;type&gt;:&lt;value&gt;").
--->
-对于基于令牌的发现，验证根 CA 公钥是否匹配此哈希值（格式："&lt;type&gt;:&lt;value&gt;"）。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--discovery-token-unsafe-skip-ca-verification</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-For token-based discovery, allow joining without --discovery-token-ca-cert-hash pinning.
--->
-对于基于令牌的发现，允许在未关联 --discovery-token-ca-cert-hash 参数的情况下添加节点。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-help for preflight
--->
-preflight 操作的帮助命令
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--ignore-preflight-errors stringSlice</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-A list of checks whose errors will be shown as warnings. Example: 'IsPrivilegedUser,Swap'. Value 'all' ignores errors from all checks.
--->
-错误将显示为警告的检查列表；例如：'IsPrivilegedUser,Swap'。取值为 'all' 时将忽略检查中的所有错误。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--node-name string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Specify the node name.
--->
-指定节点名称。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--tls-bootstrap-token string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Specify the token used to temporarily authenticate with the Kubernetes Control Plane while joining the node.
--->
-指定在加入节点时用于临时通过 Kubernetes 控制平面进行身份验证的令牌。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--token string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Use this token for both discovery-token and tls-bootstrap-token when those values are not provided.
--->
-如果未提供这些值，则将它们用于 discovery-token 令牌和 tls-bootstrap 令牌。
-</td>
-</tr>
-
-</tbody>
-</table>
-
-<!--
-### Options inherited from parent commands
--->
-
-### 从父命令继承的选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--rootfs string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
--->
-[实验] 指向 '真实' 宿主机根文件系统的路径。
-</td>
-</tr>
-
-</tbody>
-</table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_preflight.md b/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_preflight.md
deleted file mode 100644
index 976749eb5e..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_preflight.md
+++ /dev/null
@@ -1,97 +0,0 @@
-
-<!--
-### Synopsis
--->
-
-### 概要
-
-<!--
-Run pre-flight checks for kubeadm reset.
--->
-
-kubeadm reset（重置）前运行启动前检查。
-
-```
-kubeadm reset phase preflight [flags]
-```
-
-<!--
-### Options
--->
-
-### 选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">-f, --force</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-Reset the node without prompting for confirmation.
--->
-在不提示确认的情况下重置节点。
-</td>
-</tr>
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-help for preflight
--->
-preflight 操作的帮助命令
-</td>
-</tr>
-
-<tr>
-<td colspan="2">--ignore-preflight-errors stringSlice</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-A list of checks whose errors will be shown as warnings. Example: 'IsPrivilegedUser,Swap'. Value 'all' ignores errors from all checks.
--->
-错误将显示为警告的检查列表；例如：'IsPrivilegedUser,Swap'。取值为 'all' 时将忽略检查中的所有错误。
-</td>
-</tr>
-
-</tbody>
-</table>
-
-<!--
-### Options inherited from parent commands
--->
-
-### 从父命令继承的选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--rootfs string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--
-[EXPERIMENTAL] The path to the 'real' host root filesystem.
--->
-[实验] 指向 '真实' 宿主机根文件系统的路径。
-</td>
-</tr>
-
-</tbody>
-</table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_remove-etcd-member.md b/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_remove-etcd-member.md
deleted file mode 100644
index 27f978a773..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_remove-etcd-member.md
+++ /dev/null
@@ -1,73 +0,0 @@
-<!--
-### Synopsis
--->
-
-### 概要
-
-<!--
-Upload configuration about the current state, so that 'kubeadm upgrade' can later know how to configure the upgraded cluster.
--->
-
-上传关于当前状态的配置，以便 'kubeadm upgrade' 以后可以知道如何配置升级后的集群。
-
-```
-kubeadm config upload [flags]
-```
-
-<!--
-### Options
--->
-
-### 选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">upload 操作的帮助信息</td>
-</tr>
-
-</tbody>
-</table>
-
-
-<!--
-### Options inherited from parent commands
--->
-
-### 从父命令继承的选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<!-- td colspan="2">kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/kubernetes/admin.conf"</td -->
-<td colspan="2">--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值： "/etc/kubernetes/admin.conf"</td>
-</tr>
-<tr>
-<!-- td></td><td style="line-height: 130%; word-wrap: break-word;">The KubeConfig file to use when talking to the cluster. If the flag is not set, a set of standard locations are searched for an existing KubeConfig file.</td -->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">用于和集群通信的 KubeConfig 文件。如果它没有被设置，那么 kubeadm 将会搜索一个已经存在于标准路径的 KubeConfig 文件。</td>
-</tr>
-
-<tr>
-<td colspan="2">--rootfs string</td>
-</tr>
-<tr>
-<!-- td></td><td style="line-height: 130%; word-wrap: break-word;">[EXPERIMENTAL] The path to the 'real' host root filesystem.</td -->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">[实验] 到'真实'主机根文件系统的路径。</td>
-</tr>
-
-</tbody>
-</table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_update-cluster-status.md b/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_update-cluster-status.md
deleted file mode 100644
index 149af508d9..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_reset_phase_update-cluster-status.md
+++ /dev/null
@@ -1,69 +0,0 @@
-
-<!--
-### Synopsis
--->
-
-### 概要
-
-<!--
-Remove this node from the ClusterStatus object if the node is a control plane node.
--->
-
-如果该节点是控制平面节点，从 ClusterStatus 对象中删除该节点。
-
-```
-kubeadm reset phase update-cluster-status [flags]
-```
-
-<!--
-### Options
--->
-
-### 选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- help for update-cluster-status -->
-update-cluster-status 操作的帮助命令
-</td>
-</tr>
-
-</tbody>
-</table>
-
-<!--
-### Options inherited from parent commands
--->
-
-### 从父命令继承的选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--rootfs string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!-- [EXPERIMENTAL] The path to the 'real' host root filesystem.  -->
-[实验] 指向 '真实' 宿主机根文件系统的路径。
-</td>
-</tr>
-
-</tbody>
-</table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_control-plane.md b/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_control-plane.md
deleted file mode 100644
index 4235ef59b5..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_control-plane.md
+++ /dev/null
@@ -1,142 +0,0 @@
-<!--
-### Synopsis
--->
-
-### 概要
-
-<!--
-Upgrade the control plane instance deployed on this node, if any
--->
-
-升级部署在此节点上的控制平面实例，如果有的话
-
-```
-kubeadm upgrade node phase control-plane [flags]
-```
-
-<!--
-### Options
--->
-
-### 选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--certificate-renewal</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">更新在升级期间变更的组件使用的证书。</td>
-</tr>
-<!-- 
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Perform the renewal of certificates used by component changed during upgrades.</td>
--->
-
-<tr>
-<td colspan="2">--dry-run</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">不改变任何状态，只输出将要执行的动作。</td>
-</tr>
-<!--
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Do not change any state, just output the actions that would be performed.</td>
--->
-
-<tr>
-<td colspan="2">--etcd-upgrade&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值: true</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">执行 etcd 的升级。</td>
-</tr>
-<!--
-<td colspan="2">--etcd-upgrade&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: true</td> 
--->
-
-<!--
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Perform the upgrade of etcd.</td>
--->
-
-<tr>
-<td colspan="2">--experimental-patches string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">
-<!--  
-Path to a directory that contains files named "target[suffix][+patchtype].extension". For example, "kube-apiserver0+merge.yaml" or just "etcd.json". "patchtype" can be one of "strategic", "merge" or "json" and they match the patch formats supported by kubectl. The default "patchtype" is "strategic". "extension" must be either "json" or "yaml". "suffix" is an optional string that can be used to determine which patches are applied first alpha-numerically.
--->
-包含名为 "target[suffix][+patchtype].extension" 的文件的目录的路径。
-例如，"kube-apiserver0+merge.yaml" 或仅仅是 "etcd.json"。
-"patchtype" 可以是 "strategic"、"merge" 或 "json" 之一，并且它们与 kubectl 支持的补丁格式匹配。
-默认的 "patchtype" 为 "strategic"。 "extension" 必须为 "json" 或 "yaml"。 
-"suffix" 是一个可选字符串，可用于确定首先按字母顺序应用哪些补丁。
-</td>
-</tr>
-
-<!--
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The path where kustomize patches for static pod manifests are stored.</td>
--->
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">control-plane 的帮助信息</td>
-</tr>
-
-<!--
-<td></td><td style="line-height: 130%; word-wrap: break-word;">help for control-plane</td>
--->
-
-<tr>
-<td colspan="2">--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值: "/etc/kubernetes/admin.conf"</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">用于和集群通信的 KubeConfig 文件。如果它没有被设置，那么 kubeadm 将会搜索一个已经存在于标准路径的 KubeConfig 文件。</td>
-</tr>
-
-<!--
-<td colspan="2">--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/kubernetes/admin.conf"</td>
--->
-
-<!--
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.</td>
--->
-
-</tbody>
-</table>
-
-
-
-<!--
-### Options inherited from parent commands
--->
-
-### 从父命令继承的选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--rootfs string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">[实验] 到'真实'主机根文件系统的路径。</td>
-</tr>
-<!--
-<td></td><td style="line-height: 130%; word-wrap: break-word;">[EXPERIMENTAL] The path to the 'real' host root filesystem.</td>
--->
-
-</tbody>
-</table>
-
-
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_kubelet-config.md b/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_kubelet-config.md
deleted file mode 100644
index c4d3e22985..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_kubelet-config.md
+++ /dev/null
@@ -1,84 +0,0 @@
-
-<!-- ### Synopsis -->
-
-### 概要
-
-<!--
-Downloads the kubelet configuration from a ConfigMap of the form "kubelet-config-1.X" in the cluster, where X is the minor version of the kubelet. kubeadm uses the kubelet-version parameter to determine what the desired kubelet version is. 
--->
-
-从群集中 "kubelet-config-1.X" 的 ConfigMap 下载 kubelet 配置，其中 X 是kubelet 的次要版本。
-kubeadm 使用 --kubelet-version 参数来确定所需的 kubelet 版本。
-
-```
-kubeadm upgrade node phase kubelet-config [flags]
-```
-
-<!--
-### Options
--->
-
-### 选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--dry-run</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">不改变任何状态，只输出将要执行的操作</td>
-</tr>
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">配置操作的帮助信息</td>
-</tr>
-
-<tr>
-<td colspan="2">--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;默认值： "/etc/kubernetes/kubelet.conf"</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">用于和集群通信的 KubeConfig 文件。如果它没有被设置，那么 kubeadm 将会搜索一个已经存在于标准路径的 KubeConfig 文件。</td>
-</tr>
-
-<tr>
-<td colspan="2">--kubelet-version string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">升级后的 kubelet 的*期望*版本。</td>
-</tr>
-
-</tbody>
-</table>
-
-
-### 从父命令继承的选项
-
-<!--
-### Options inherited from parent commands
--->
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--rootfs string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">[实验] 到'真实'主机根文件系统的路径。</td>
-</tr>
-
-</tbody>
-</table>
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_preflight.md b/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_preflight.md
deleted file mode 100644
index 2fd33ffc63..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_node_phase_preflight.md
+++ /dev/null
@@ -1,69 +0,0 @@
-
-<!-- ### Synopsis -->
-### 概要
-
-
-<!-- Run pre-flight checks for kubeadm upgrade node. -->
-
-执行 kubeadm 升级节点的预检。
-
-```
-kubeadm upgrade node phase preflight [flags]
-```
-
-<!-- ### Options -->
-### 选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<!-- <td></td><td style="line-height: 130%; word-wrap: break-word;">help for preflight</td> -->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">preflight 操作的帮助命令</td>
-</tr>
-
-<tr>
-<td colspan="2">--ignore-preflight-errors stringSlice</td>
-</tr>
-<tr>
-<!-- 
-<td></td><td style="line-height: 130%; word-wrap: break-word;">A list of checks whose errors will be shown as warnings. Example: 'IsPrivilegedUser,Swap'. Value 'all' ignores errors from all checks.</td> 
--->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">错误将显示为警告的检查清单。示例：'IsPrivilegedUser,Swap'。值为'all'表示忽略所有检查的错误。</td>
-</tr>
-
-</tbody>
-</table>
-
-
-
-<!-- ### Options inherited from parent commands -->
-### 继承于父命令的选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--rootfs string</td>
-</tr>
-<tr>
-<!-- <td></td><td style="line-height: 130%; word-wrap: break-word;">[EXPERIMENTAL] The path to the 'real' host root filesystem.</td> -->
-<td></td><td style="line-height: 130%; word-wrap: break-word;">[实验] 到'真实'主机根文件系统的路径。</td>
-</tr>
-
-</tbody>
-</table>
-
-
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_plan.md b/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_plan.md
deleted file mode 100644
index 88f2510b6e..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/generated/kubeadm_upgrade_plan.md
+++ /dev/null
@@ -1,201 +0,0 @@
-<!--
-
-```
-### Synopsis
-
-
-Check which versions are available to upgrade to and validate whether your current cluster is upgradeable. To skip the internet check, pass in the optional [version] parameter
-
-​```
-kubeadm upgrade plan [version] [flags]
-​```
-
-### Options
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--allow-experimental-upgrades</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Show unstable versions of Kubernetes as an upgrade alternative and allow upgrading to an alpha/beta/release candidate versions of Kubernetes.</td>
-</tr>
-
-<tr>
-<td colspan="2">--allow-release-candidate-upgrades</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Show release candidate versions of Kubernetes as an upgrade alternative and allow upgrading to a release candidate versions of Kubernetes.</td>
-</tr>
-
-<tr>
-<td colspan="2">--config string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Path to a kubeadm configuration file.</td>
-</tr>
-
-<tr>
-<td colspan="2">--feature-gates string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">A set of key=value pairs that describe feature gates for various features. Options are:<br/>IPv6DualStack=true|false (ALPHA - default=false)<br/>PublicKeysECDSA=true|false (ALPHA - default=false)</td>
-</tr>
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">help for plan</td>
-</tr>
-
-<tr>
-<td colspan="2">--ignore-preflight-errors stringSlice</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">A list of checks whose errors will be shown as warnings. Example: 'IsPrivilegedUser,Swap'. Value 'all' ignores errors from all checks.</td>
-</tr>
-
-<tr>
-<td colspan="2">--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/kubernetes/admin.conf"</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations can be searched for an existing kubeconfig file.</td>
-</tr>
-
-<tr>
-<td colspan="2">--print-config</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">Specifies whether the configuration file that will be used in the upgrade should be printed or not.</td>
-</tr>
-
-</tbody>
-</table>
-
-
-
-### Options inherited from parent commands
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--rootfs string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">[EXPERIMENTAL] The path to the 'real' host root filesystem.</td>
-</tr>
-
-</tbody>
-</table>
-```
-
--->
-
-
-### 概述
-
-检查可升级到哪些版本，并验证您当前的集群是否可升级。 要跳过互联网检查，请传递可选的 [version] 参数 
-
-```
-kubeadm upgrade plan [version] [flags]
-```
-
-### 选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--allow-experimental-upgrades</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">显示不稳定版本的 Kubernetes 作为升级替代方案，并允许升级到 Kubernetes 的 Alpha/Beta/发行候选版本。</td>
-</tr>
-
-<tr>
-<td colspan="2">--allow-release-candidate-upgrades</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">显示 Kubernetes 的发行候选版本作为升级选择，并允许升级到 Kubernetes 的发行候选版本。</td>
-</tr>
-
-<tr>
-<td colspan="2">--config string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">配置文件的路径。</td>
-</tr>
-
-<tr>
-<td colspan="2">--feature-gates string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">一组描述各种特征特性门控的键值对。选项有：IPv6DualStack=true|false (ALPHA - default=false) PublicKeysECDSA=true|false (ALPHA - default=false)</td>
-</tr>
-
-<tr>
-<td colspan="2">-h, --help</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">帮助</td>
-</tr>
-
-<tr>
-<td colspan="2">--ignore-preflight-errors stringSlice</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">检查清单，其错误将显示为警告。 例如：“IsPrivilegedUser，Swap”。 值 “all” 忽略所有检查的错误。</td>
-</tr>
-
-<tr>
-<td colspan="2">--kubeconfig string&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Default: "/etc/kubernetes/admin.conf"</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">与集群通信时使用的 kubeconfig 文件。 如果标志为未设置，则可以在一组标准位置中搜索现有的 kubeconfig 文件。</td>
-</tr>
-
-<tr>
-<td colspan="2">--print-config</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">指定是否打印将在升级中使用的配置文件。</td>
-</tr>
-
-</tbody>
-</table>
-
-
-
-### 从父命令继承的选项
-
-   <table style="width: 100%; table-layout: fixed;">
-<colgroup>
-<col span="1" style="width: 10px;" />
-<col span="1" />
-</colgroup>
-<tbody>
-
-<tr>
-<td colspan="2">--rootfs string</td>
-</tr>
-<tr>
-<td></td><td style="line-height: 130%; word-wrap: break-word;">[EXPERIMENTAL] “真实”主机根文件系统的路径。</td>
-</tr>
-
-</tbody>
-</table>
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-config.md b/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-config.md
deleted file mode 100644
index 363335f25c..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-config.md
+++ /dev/null
@@ -1,84 +0,0 @@
----
-title: kubeadm config
-content_type: concept
-weight: 50
----
-
-<!-- overview -->
-<!--
-During `kubeadm init`, kubeadm uploads the `ClusterConfiguration` object to your cluster
-in a ConfigMap called `kubeadm-config` in the `kube-system` namespace. This configuration is then read during
-`kubeadm join`, `kubeadm reset` and `kubeadm upgrade`. To view this ConfigMap call `kubeadm config view`.
--->
-在 `kubeadm init` 执行期间，kubeadm 将 `ClusterConfiguration` 对象上传
-到你的集群的 `kube-system` 名字空间下名为 `kubeadm-config` 的 ConfigMap 对象中。
-然后在 `kubeadm join`、`kubeadm reset` 和 `kubeadm upgrade` 执行期间读取此配置。 
-要查看此 ConfigMap，请调用 `kubeadm config view`。
-
-<!--
-You can use `kubeadm config print` to print the default configuration and `kubeadm config migrate` to
-convert your old configuration files to a newer version. `kubeadm config images list` and
-`kubeadm config images pull` can be used to list and pull the images that kubeadm requires.
--->
-你可以使用 `kubeadm config print` 命令打印默认配置，
-并使用 `kubeadm config migrate` 命令将旧版本的配置转化成新版本。
-`kubeadm config images list` 和 `kubeadm config images pull`
-命令可以用来列出并拉取 kubeadm 所需的镜像。
-
-<!--
-For more information navigate to
-[Using kubeadm init with a configuration file](/docs/reference/setup-tools/kubeadm/kubeadm-init/#config-file)
-or [Using kubeadm join with a configuration file](/docs/reference/setup-tools/kubeadm/kubeadm-join/#config-file).
--->
-更多信息请浏览[使用带配置文件的 kubeadm init](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init/#config-file)
-或[使用带配置文件的 kubeadm join](/zh/docs/reference/setup-tools/kubeadm/kubeadm-join/#config-file).
-
-<!--
-You can also configure several kubelet-configuration options with `kubeadm init`. These options will be the same on any node in your cluster. 
-See [Configuring each kubelet in your cluster using kubeadm](/docs/setup/production-environment/tools/kubeadm/kubelet-integration/) for details.
--->
-你也可以在使用 `kubeadm init` 命令时配置若干 kubelet 配置选项。
-这些选项对于集群中所有节点而言都是相同的。
-参阅[使用 kubeadm 来配置集群中的各个 kubelet](/zh/docs/setup/production-environment/tools/kubeadm/kubelet-integration/)
-了解详细信息。
- 
-<!--
-In Kubernetes v1.13.0 and later to list/pull kube-dns images instead of the CoreDNS image
-the `--config` method described [here](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-addon)
-has to be used.
--->
-在 Kubernetes v1.13.0 及更高版本中，要列出/拉取 kube-dns 镜像而不是 CoreDNS 镜像，
-必须使用[这里](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/#cmd-phase-addon)
-所描述的 `--config` 方法。
-
-<!-- body -->
-## kubeadm config upload from-file {#cmd-config-from-file}
-
-## kubeadm config print{#cmd-config-view}
-{{< include "generated/kubeadm_config_print.md" >}}
-
-## kubeadm config print init-defaults {#cmd-config-print-init-defaults}
-{{< include "generated/kubeadm_config_print_init-defaults.md" >}}
-
-## kubeadm config print join-defaults {#cmd-config-print-join-defaults}
-{{< include "generated/kubeadm_config_print_join-defaults.md" >}}
-
-## kubeadm config migrate {#cmd-config-migrate}
-{{< include "generated/kubeadm_config_migrate.md" >}}
-
-## kubeadm config images list {#cmd-config-images-list}
-{{< include "generated/kubeadm_config_images_list.md" >}}
-
-## kubeadm config images pull {#cmd-config-images-pull}
-{{< include "generated/kubeadm_config_images_pull.md" >}}
-
-## {{% heading "whatsnext" %}}
-
-<!--
-* [kubeadm upgrade](/docs/reference/setup-tools/kubeadm/kubeadm-upgrade/) to upgrade a Kubernetes cluster to a newer version
--->
-
-* [kubeadm upgrade](/zh/docs/reference/setup-tools/kubeadm/kubeadm-upgrade/)
-  将 Kubernetes 集群升级到更新版本 [kubeadm upgrade]
-
-
diff --git a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-init.md b/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-init.md
deleted file mode 100644
index 6914bdee27..0000000000
--- a/content/zh/docs/reference/setup-tools/kubeadm/kubeadm-init.md
+++ /dev/null
@@ -1,534 +0,0 @@
----
-title: kubeadm init
-content_type: concept
-weight: 20
----
-
-<!--
-reviewers:
-- luxas
-- jbeda
-title: kubeadm init
-content_type: concept
-weight: 20
--->
-<!-- overview -->
-
-<!--
-This command initializes a Kubernetes control-plane node.
--->
-此命令初始化一个 Kubernetes 控制平面节点。
-
-<!-- body -->
-
-{{< include "generated/kubeadm_init.md" >}}
-
-<!--
-### Init workflow {#init-workflow}
--->
-### Init 命令的工作流程 {#init-workflow}
-
-<!--
-`kubeadm init` bootstraps a Kubernetes control-plane node by executing the
-following steps:
--->
-`kubeadm init` 命令通过执行下列步骤来启动一个 Kubernetes 控制平面节点。
-
-<!--
-1. Runs a series of pre-flight checks to validate the system state
-   before making changes. Some checks only trigger warnings, others are
-   considered errors and will exit kubeadm until the problem is corrected or the
-   user specifies `--ignore-preflight-errors=<list-of-errors>`.
--->
-1. 在做出变更前运行一系列的预检项来验证系统状态。一些检查项目仅仅触发警告，
-   其它的则会被视为错误并且退出 kubeadm，除非问题得到解决或者用户指定了
-   `--ignore-preflight-errors=<错误列表>` 参数。
-
-<!--
-1. Generates a self-signed CA to set up identities for each component in the cluster. The user can provide their
-   own CA cert and/or key by dropping it in the cert directory configured via `--cert-dir`
-   (`/etc/kubernetes/pki` by default).
-   The APIServer certs will have additional SAN entries for any `--apiserver-cert-extra-sans` arguments, lowercased if necessary.
--->
-2. 生成一个自签名的 CA 证书来为集群中的每一个组件建立身份标识。
-   用户可以通过将其放入 `--cert-dir` 配置的证书目录中（默认为 `/etc/kubernetes/pki`）
-   来提供他们自己的 CA 证书以及/或者密钥。
-   APIServer 证书将为任何 `--apiserver-cert-extra-sans` 参数值提供附加的 SAN 条目，必要时将其小写。
-
-<!--
-1. Writes kubeconfig files in `/etc/kubernetes/`  for
-   the kubelet, the controller-manager and the scheduler to use to connect to the
-   API server, each with its own identity, as well as an additional
-   kubeconfig file for administration named `admin.conf`.
--->
-3. 将 kubeconfig 文件写入 `/etc/kubernetes/` 目录以便 kubelet、控制器管理器和调度器用来连接到
-   API 服务器，它们每一个都有自己的身份标识，同时生成一个名为 `admin.conf` 的独立的 kubeconfig
-   文件，用于管理操作。
-
-<!--
-1. Generates static Pod manifests for the API server,
-   controller-manager and scheduler. In case an external etcd is not provided,
-   an additional static Pod manifest is generated for etcd.
-
-   Static Pod manifests are written to `/etc/kubernetes/manifests`; the kubelet
-   watches this directory for Pods to create on startup.
-
-   Once control plane Pods are up and running, the `kubeadm init` sequence can continue.
--->
-4. 为 API 服务器、控制器管理器和调度器生成静态 Pod 的清单文件。假使没有提供一个外部的 etcd
-   服务的话，也会为 etcd 生成一份额外的静态 Pod 清单文件。
-
-   静态 Pod 的清单文件被写入到 `/etc/kubernetes/manifests` 目录; 
-   kubelet 会监视这个目录以便在系统启动的时候创建 Pod。
-
-   一旦控制平面的 Pod 都运行起来， `kubeadm init` 的工作流程就继续往下执行。
-
-<!--
-1. Apply labels and taints to the control-plane node so that no additional workloads will
-   run there.
--->
-5. 对控制平面节点应用标签和污点标记以便不会在它上面运行其它的工作负载。
-
-<!--
-1. Generates the token that additional nodes can use to register
-   themselves with a control-plane in the future. Optionally, the user can provide a
-   token via `--token`, as described in the
-   [kubeadm token](/docs/reference/setup-tools/kubeadm/kubeadm-token/) docs.
--->
-6. 生成令牌，将来其他节点可使用该令牌向控制平面注册自己。
-   如 [kubeadm token](/zh/docs/reference/setup-tools/kubeadm/kubeadm-token/) 文档所述，
-   用户可以选择通过 `--token` 提供令牌。
-
-<!--
-1. Makes all the necessary configurations for allowing node joining with the
-   [Bootstrap Tokens](/docs/reference/access-authn-authz/bootstrap-tokens/) and
-   [TLS Bootstrap](/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/)
-   mechanism:
-
-   - Write a ConfigMap for making available all the information required
-     for joining, and set up related RBAC access rules.
-
-   - Let Bootstrap Tokens access the CSR signing API.
-
-   - Configure auto-approval for new CSR requests.
-
-   See [kubeadm join](/docs/reference/setup-tools/kubeadm/kubeadm-join/) for additional info.
--->
-7. 为了使得节点能够遵照[启动引导令牌](/zh/docs/reference/access-authn-authz/bootstrap-tokens/)
-   和 [TLS 启动引导](/zh/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/)
-   这两份文档中描述的机制加入到集群中，kubeadm 会执行所有的必要配置：
-
-   - 创建一个 ConfigMap 提供添加集群节点所需的信息，并为该 ConfigMap 设置相关的 RBAC 访问规则。
-
-   - 允许启动引导令牌访问 CSR 签名 API。
-
-   - 配置自动签发新的 CSR 请求。
-
-   更多相关信息，请查看 [kubeadm join](/zh/docs/reference/setup-tools/kubeadm/kubeadm-join/)。
-   
-<!-- 
-1. Installs a DNS server (CoreDNS) and the kube-proxy addon components via the API server.
-   In Kubernetes version 1.11 and later CoreDNS is the default DNS server.
-   Please note that although the DNS server is deployed, it will not be scheduled until CNI is installed.
-
-   {{< warning >}}
-   kube-dns usage with kubeadm is deprecated as of v1.18 and is removed in v1.21.
-   {{< /warning >}}
--->
-8. 通过 API 服务器安装一个 DNS 服务器 (CoreDNS) 和 kube-proxy 附加组件。
-   在 Kubernetes 版本 1.11 和更高版本中，CoreDNS 是默认的 DNS 服务器。
-   请注意，尽管已部署 DNS 服务器，但直到安装 CNI 时才调度它。
-
-   {{< warning >}}
-   从 v1.18 开始，在 kubeadm 中使用 kube-dns 的支持已被废弃，并已在 v1.21 版本中删除。
-   {{< /warning >}}
-
-<!--
-### Using init phases with kubeadm {#init-phases}
-
-Kubeadm allows you to create a control-plane node in phases using the `kubeadm init phase` command.
--->
-### 在 kubeadm 中使用 init phases {#init-phases}
-
-Kubeadm 允许你使用 `kubeadm init phase` 命令分阶段创建控制平面节点。
-
-<!--
-To view the ordered list of phases and sub-phases you can call `kubeadm init -help`. The list will be located at the top of the help screen and each phase will have a description next to it.
-Note that by calling `kubeadm init` all of the phases and sub-phases will be executed in this exact order.
--->
-要查看阶段和子阶段的有序列表，可以调用 `kubeadm init --help`。
-该列表将位于帮助屏幕的顶部，每个阶段旁边都有一个描述。
-注意，通过调用 `kubeadm init`，所有阶段和子阶段都将按照此确切顺序执行。
-
-<!--
-Some phases have unique flags, so if you want to have a look at the list of available options add `-help`, for example:
--->
-某些阶段具有唯一的标志，因此，如果要查看可用选项的列表，请添加 `--help`，例如：
-
-```shell
-sudo kubeadm init phase control-plane controller-manager --help
-```
-
-<!--
-You can also use `-help` to see the list of sub-phases for a certain parent phase:
--->
-你也可以使用 `--help` 查看特定父阶段的子阶段列表：
-
-```shell
-sudo kubeadm init phase control-plane --help
-```
-
-<!--
-`kubeadm init` also exposes a flag called `-skip-phases` that can be used to skip certain phases. The flag accepts a list of phase names and the names can be taken from the above ordered list.
--->
-`kubeadm init` 还公开了一个名为 `--skip-phases` 的参数，该参数可用于跳过某些阶段。
-参数接受阶段名称列表，并且这些名称可以从上面的有序列表中获取。
-
-<!--
-An example:
--->
-例如：
-
-<!--
-# you can now modify the control plane and etcd manifest files
--->
-```shell
-sudo kubeadm init phase control-plane all --config=configfile.yaml
-sudo kubeadm init phase etcd local --config=configfile.yaml
-# 你现在可以修改控制平面和 etcd 清单文件
-sudo kubeadm init --skip-phases=control-plane,etcd --config=configfile.yaml
-```
-
-<!--
-What this example would do is write the manifest files for the control plane and etcd in `/etc/kubernetes/manifests` based on the configuration in `configfile.yaml`. This allows you to modify the files and then skip these phases using `-skip-phases`. By calling the last command you will create a control plane node with the custom manifest files.
--->
-该示例将执行的操作是基于 `configfile.yaml` 中的配置在 `/etc/kubernetes/manifests` 
-中写入控制平面和 etcd 的清单文件。
-这允许你修改文件，然后使用 `--skip-phases` 跳过这些阶段。
-通过调用最后一个命令，你将使用自定义清单文件创建一个控制平面节点。
-
-<!--
-### Using kubeadm init with a configuration file {#config-file}
--->
-### 结合一份配置文件来使用 kubeadm init {#config-file}
-
-<!--
-The config file is still considered beta and may change in future versions.
--->
-{{< caution >}}
-配置文件的功能仍然处于 alpha 状态并且在将来的版本中可能会改变。
-{{< /caution >}}
-
-<!--
-It's possible to configure `kubeadm init` with a configuration file instead of command
-line flags, and some more advanced features may only be available as
-configuration file options. This file is passed using the `--config` flag and it must
-contain a `ClusterConfiguration` structure and optionally more structures separated by `---\n`
-Mixing `--config` with others flags may not be allowed in some cases.
--->
-通过一份配置文件而不是使用命令行参数来配置 `kubeadm init` 命令是可能的，
-但是一些更加高级的功能只能够通过配置文件设定。
-这份配置文件通过 `--config` 选项参数指定的，
-它必须包含 `ClusterConfiguration` 结构，并可能包含更多由 `---\n` 分隔的结构。
-在某些情况下，可能不允许将 `--config` 与其他标志混合使用。
-
-<!--
-The default configuration can be printed out using the
-[kubeadm config print](/docs/reference/setup-tools/kubeadm/kubeadm-config/) command.
-
-If your configuration is not using the latest version it is **recommended** that you migrate using
-the [kubeadm config migrate](/docs/reference/setup-tools/kubeadm/kubeadm-config/) command.
-
-For more information on the fields and usage of the configuration you can navigate to our API reference
-page and pick a version from [the list](https://pkg.go.dev/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm#section-directories).
--->
-可以使用 [kubeadm config print](/zh/docs/reference/setup-tools/kubeadm/kubeadm-config/)
-命令打印出默认配置。
-
-如果你的配置没有使用最新版本，
-**推荐**使用 [kubeadm config migrate](/zh/docs/reference/setup-tools/kubeadm/kubeadm-config/)
-命令进行迁移。
-
-有关配置的字段和用法的更多信息，
-你可以访问 API 参考页面并从
-[列表](https://pkg.go.dev/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm#section-directories)
-中选择一个版本。
-
-<!--
-### Adding kube-proxy parameters {#kube-proxy}
--->
-### 添加 kube-proxy 参数 {#kube-proxy}
-
-<!--
-For information about kube-proxy parameters in the kubeadm configuration see:
-- [kube-proxy reference](/docs/reference/config-api/kube-proxy-config.v1alpha1/)
-
-For information about enabling IPVS mode with kubeadm see:
-- [IPVS](https://github.com/kubernetes/kubernetes/blob/master/pkg/proxy/ipvs/README.md)
--->
-kubeadm 配置中有关 kube-proxy 的说明请查看：
-
-- [kube-proxy 参考](/zh/docs/reference/config-api/kube-proxy-config.v1alpha1/)
-
-使用 kubeadm 启用 IPVS 模式的说明请查看：
-
-- [IPVS](https://github.com/kubernetes/kubernetes/blob/master/pkg/proxy/ipvs/README.md)
-
-<!--
-### Passing custom flags to control plane components {#control-plane-flags}
--->
-### 向控制平面组件传递自定义的命令行参数 {#control-plane-flags}
-
-<!--
-For information about passing flags to control plane components see:
-- [control-plane-flags](/docs/setup/production-environment/tools/kubeadm/control-plane-flags/) -->
-有关向控制平面组件传递命令行参数的说明请查看：
-[控制平面命令行参数](/zh/docs/setup/production-environment/tools/kubeadm/control-plane-flags/)
-
-<!--
-### Using custom images {#custom-images}
--->
-### 使用自定义的镜像 {#custom-images}
-
-<!--
-By default, kubeadm pulls images from `k8s.gcr.io`. If the
-requested Kubernetes version is a CI label (such as `ci/latest`)
-`gcr.io/k8s-staging-ci-images` is used.
--->
-默认情况下, kubeadm 会从 `k8s.gcr.io` 仓库拉取镜像。如果请求的 Kubernetes 版本是 CI 标签
-（例如 `ci/latest`），则使用 `gcr.io/k8s-staging-ci-images`。
-
-<!--
-You can override this behavior by using [kubeadm with a configuration file](#config-file).
--->
-你可以通过使用[带有配置文件的 kubeadm](#config-file) 来重写此操作。
-
-<!--
-Allowed customization are:
-
-* To provide an alternative `imageRepository` to be used instead of
-  `k8s.gcr.io`.
-* To set `useHyperKubeImage` to `true` to use the HyperKube image.
-* To provide a specific `imageRepository` and `imageTag` for etcd or DNS add-on.
--->
-允许的自定义功能有：
-
-* 使用其他的 `imageRepository` 来代替 `k8s.gcr.io`。
-* 将 `useHyperKubeImage` 设置为 `true`，使用 HyperKube 镜像。
-* 为 etcd 或 DNS 附件提供特定的 `imageRepository` 和 `imageTag`。
-
-<!--
-Please note that the configuration field `kubernetesVersion` or the command line flag
-`-kubernetes-version` affect the version of the images.
--->
-请注意配置文件中的配置项 `kubernetesVersion` 或者命令行参数 `--kubernetes-version`
-会影响到镜像的版本。
-
-<!--
-### Uploading control-plane certificates to the cluster
--->
-### 将控制平面证书上传到集群
-
-<!--
-By adding the flag `-upload-certs` to `kubeadm init` you can temporary upload
-the control-plane certificates to a Secret in the cluster. Please note that this Secret
-will expire automatically after 2 hours. The certificates are encrypted using
-a 32byte key that can be specified using `-certificate-key`. The same key can be used
-to download the certificates when additional control-plane nodes are joining, by passing
-`-control-plane` and `-certificate-key` to `kubeadm join`.
--->
-通过将参数 `--upload-certs` 添加到 `kubeadm init`，你可以将控制平面证书临时上传到集群中的 Secret。
-请注意，此 Secret 将在 2 小时后自动过期。证书使用 32 字节密钥加密，可以使用 `--certificate-key` 指定。
-通过将 `--control-plane` 和 `--certificate-key` 传递给 `kubeadm join`，
-可以在添加其他控制平面节点时使用相同的密钥下载证书。
-
-<!--
-The following phase command can be used to re-upload the certificates after expiration:
--->
-以下阶段命令可用于证书到期后重新上传证书：
-
-```shell
-kubeadm init phase upload-certs --upload-certs --certificate-key=SOME_VALUE --config=SOME_YAML_FILE
-```
-
-<!--
-If the flag `-certificate-key` is not passed to `kubeadm init` and
-`kubeadm init phase upload-certs` a new key will be generated automatically.
--->
-如果未将参数 `--certificate-key` 传递给 `kubeadm init` 和 `kubeadm init phase upload-certs`，
-则会自动生成一个新密钥。
-
-<!--
-The following command can be used to generate a new key on demand:
--->
-以下命令可用于按需生成新密钥：
-
-```shell
-kubeadm certs certificate-key
-```
-
-<!-- ### Certificate management with kubeadm -->
-### 使用 kubeadm 管理证书
-
-<!--  
-For detailed information on certificate management with kubeadm see
-[Certificate Management with kubeadm](/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/).
-The document includes information about using external CA, custom certificates
-and certificate renewal.
--->
-有关使用 kubeadm 进行证书管理的详细信息，请参阅
-[使用 kubeadm 进行证书管理](/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-certs/)。
-该文档包括有关使用外部 CA，自定义证书和证书更新的信息。
-
-<!--
-### Managing the kubeadm drop-in file for the kubelet {#kubelet-drop-in}
--->
-### 管理 kubeadm 为 kubelet 提供的 systemd 配置文件 {#kubelet-drop-in}
-
-<!--
-The `kubeadm` package ships with a configuration file for running the `kubelet` by `systemd`. Note that the kubeadm CLI never touches this drop-in file. This drop-in file is part of the kubeadm DEB/RPM package.
--->
-`kubeadm` 包自带了关于 `systemd` 如何运行 `kubelet` 的配置文件。
-请注意 `kubeadm` 客户端命令行工具永远不会修改这份 `systemd` 配置文件。
-这份 `systemd` 配置文件属于 kubeadm DEB/RPM 包。
-
-<!--
-For further information, see [Managing the kubeadm drop-in file for systemd](/docs/setup/production-environment/tools/kubeadm/kubelet-integration/#the-kubelet-drop-in-file-for-systemd).
--->
-有关更多信息，请阅读
-[管理 systemd 的 kubeadm 内嵌文件](/zh/docs/setup/production-environment/tools/kubeadm/kubelet-integration/#the-kubelet-drop-in-file-for-systemd)。
-
-<!--
-### Use kubeadm with CRI runtimes
--->
-### 结合 CRI 运行时使用 kubeadm
-
-<!--
-By default kubeadm attempts to detect your container runtime. For more details on this detection, see
-the [kubeadm CRI installation guide](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#installing-runtime).
--->
-默认情况下，kubeadm 尝试检测你的容器运行环境。有关此检测的更多详细信息，请参见
-[kubeadm CRI 安装指南](/zh/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#installing-runtime)。
-
-<!--
-### Setting the node name
--->
-### 设置节点的名称
-
-<!--
-By default, `kubeadm` assigns a node name based on a machine's host address. You can override this setting with the `-node-name` flag.
-The flag passes the appropriate [`-hostname-override`](/docs/reference/command-line-tools-reference/kubelet/#options)
-value to the kubelet.
--->
-默认情况下, `kubeadm` 基于机器的主机地址分配一个节点名称。你可以使用 `--node-name` 参数覆盖此设置。
-此标识将合适的
-[`--hostname-override`](/zh/docs/reference/command-line-tools-reference/kubelet/#options)
-值传递给 kubelet。
-
-<!--
-### Running kubeadm without an internet connection
--->
-### 在没有互联网连接的情况下运行 kubeadm
-
-<!--
-For running kubeadm without an internet connection you have to pre-pull the required control-plane images.
--->
-要在没有互联网连接的情况下运行 kubeadm，你必须提前拉取所需的控制平面镜像。
-
-<!--
-You can list and pull the images using the `kubeadm config images` sub-command:
--->
-你可以使用 `kubeadm config images` 子命令列出并拉取镜像：
-
-```shell
-kubeadm config images list
-kubeadm config images pull
-```
-
-<!--
-All images that kubeadm requires such as `k8s.gcr.io/kube-*`, `k8s.gcr.io/etcd` and `k8s.gcr.io/pause` support multiple architectures.
--->
-kubeadm 需要的所有镜像，例如 `k8s.gcr.io/kube-*`、`k8s.gcr.io/etcd` 和 `k8s.gcr.io/pause`
-都支持多种架构。
-
-<!--
-### Automating kubeadm
--->
-### kubeadm 自动化
-
-<!--
-Rather than copying the token you obtained from `kubeadm init` to each node, as
-in the [basic kubeadm tutorial](/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/), you can parallelize the
-token distribution for easier automation. To implement this automation, you must
-know the IP address that the control-plane node will have after it is started,
-or use a DNS name or an address of a load balancer.
--->
-除了像文档 [kubeadm 基础教程](/zh/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/)
-中所描述的那样，将从 `kubeadm init` 取得的令牌复制到每个节点，
-你还可以并行地分发令牌以实现简单自动化。
-要实现自动化，你必须知道控制平面节点启动后将拥有的 IP 地址，或使用 DNS 名称或负载均衡器的地址。
-
-<!--
-1.  Generate a token. This token must have the form  `<6 character string>.<16
-character string>`. More formally, it must match the regex: `[a-z0-9]{6}\.[a-z0-9]{16}`.
-kubeadm can generate a token for you:
--->
-1. 生成一个令牌。这个令牌必须具有以下格式：`< 6 个字符的字符串>.< 16 个字符的字符串>`。
-   更加正式的说法是，它必须符合以下正则表达式：`[a-z0-9]{6}\.[a-z0-9]{16}`。
-   
-   kubeadm 可以为你生成一个令牌：
-
-   ```shell
-   kubeadm token generate
-   ```
-
-<!--
-2.  Start both the control-plane node and the worker nodes concurrently with this token.
-As they come up they should find each other and form the cluster. The same `-token` argument can be used on both `kubeadm init` and `kubeadm join`. 
--->
-2. 使用这个令牌同时启动控制平面节点和工作节点。它们一旦运行起来应该就会互相寻找对方并且建立集群。
-   同样的 `--token` 参数可以同时用于 `kubeadm init` 和 `kubeadm join` 命令。
-
-<!--
-3.  Similar can be done for `-certificate-key` when joining additional control-plane nodes. The key can be generated using:
--->
-3. 当加入其他控制平面节点时，可以对 `--certificate-key` 执行类似的操作。可以使用以下方式生成密钥：
-
-   ```shell
-   kubeadm certs certificate-key
-   ```
-
-<!--
-Once the cluster is up, you can grab the admin credentials from the control-plane node
-at `/etc/kubernetes/admin.conf` and use that to talk to the cluster.
--->
-一旦集群启动起来，你就可以从控制平面节点的 `/etc/kubernetes/admin.conf` 文件获取管理凭证，
-并使用这个凭证同集群通信。
-
-<!--
-Note that this style of bootstrap has some relaxed security guarantees because
-it does not allow the root CA hash to be validated with
-`-discovery-token-ca-cert-hash` (since it's not generated when the nodes are
-provisioned). For details, see the [kubeadm join](/docs/reference/setup-tools/kubeadm/kubeadm-join/).
--->
-注意这种搭建集群的方式在安全保证上会有一些宽松，因为这种方式不允许使用 `--discovery-token-ca-cert-hash` 
-来验证根 CA 的哈希值（因为当配置节点的时候，它还没有被生成）。
-更多信息请参阅 [kubeadm join](/zh/docs/reference/setup-tools/kubeadm/kubeadm-join/) 文档。
-
-## {{% heading "whatsnext" %}}
-
-<!--
-* [kubeadm init phase](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/) to understand more about
-`kubeadm init` phases
-* [kubeadm join](/docs/reference/setup-tools/kubeadm/kubeadm-join/) to bootstrap a Kubernetes worker node and join it to the cluster
-* [kubeadm upgrade](/docs/reference/setup-tools/kubeadm/kubeadm-upgrade/) to upgrade a Kubernetes cluster to a newer version
-* [kubeadm reset](/docs/reference/setup-tools/kubeadm/kubeadm-reset/) to revert any changes made to this host by `kubeadm init` or `kubeadm join`
--->
-* 进一步阅读了解 [kubeadm init phase](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init-phase/)
-* [kubeadm join](/zh/docs/reference/setup-tools/kubeadm/kubeadm-join/)
-  启动一个 Kubernetes 工作节点并且将其加入到集群
-* [kubeadm upgrade](/zh/docs/reference/setup-tools/kubeadm/kubeadm-upgrade/)
-  将 Kubernetes 集群升级到新版本
-* [kubeadm reset](/zh/docs/reference/setup-tools/kubeadm/kubeadm-reset/)
-  恢复 `kubeadm init` 或 `kubeadm join` 命令对节点所作的变更
-
diff --git a/content/zh/docs/reference/using-api/api-concepts.md b/content/zh/docs/reference/using-api/api-concepts.md
deleted file mode 100644
index 4637ef108f..0000000000
--- a/content/zh/docs/reference/using-api/api-concepts.md
+++ /dev/null
@@ -1,1156 +0,0 @@
----
-title: Kubernetes API 概念
-content_type: concept
-weight: 20
----
-<!--
-title: Kubernetes API Concepts
-reviewers:
-- smarterclayton
-- lavalamp
-- liggitt
-content_type: concept
-weight: 20
--->
-
-<!-- overview -->
-<!--
-This page describes common concepts in the Kubernetes API.
--->
-本页描述 Kubernetes API 的通用概念。
-
-<!-- body -->
-<!--
-The Kubernetes API is a resource-based (RESTful) programmatic interface provided via HTTP. It supports retrieving, creating,
-updating, and deleting primary resources via the standard HTTP verbs (POST, PUT, PATCH, DELETE, GET), includes additional subresources for many objects that allow fine grained authorization (such as binding a pod to a node), and can accept and serve those resources in different representations for convenience or efficiency. It also supports efficient change notifications on resources via "watches" and consistent lists to allow other components to effectively cache and synchronize the state of resources.
--->
-Kubernetes API 是基于资源的（RESTful）、通过 HTTP 提供的编程接口。
-API 支持通过标准的 HTTP 动词（POST、PUT、PATCH、DELETE 和  GET）
-检视、创建、更新和删除主要资源，为很多允许细粒度权限控制的对象提供子资源
-（如将 Pod 绑定到节点上），并且出于便利性或效率考虑，支持并提供这些资源的
-不同表示形式。
-Kubernetes  API 还通过 "watch" 和一致性的列表支持高效的资源变更通知，
-从而允许其他组件对资源的状态进行高效的缓存和同步。
-
-<!--
-## Standard API terminology
-
-Most Kubernetes API resource types are [objects](/docs/concepts/overview/working-with-objects/kubernetes-objects/#kubernetes-objects): they represent a concrete instance of a concept on the cluster, like a pod or namespace. A smaller number of API resource types are "virtual" - they often represent operations rather than objects, such as a permission check (use a POST with a JSON-encoded body of `SubjectAccessReview` to the `subjectaccessreviews` resource). All objects will have a unique name to allow idempotent creation and retrieval, but virtual resource types may not have unique names if they are not retrievable or do not rely on idempotency.
--->
-## 标准 API 术语  {#standard-api-terminology}
-
-大多数 Kubernetes API 资源类型都是
-[对象](/zh/docs/concepts/overview/working-with-objects/kubernetes-objects/#kubernetes-objects)：
-它们代表的是集群中某一概念的具体实例，例如一个 Pod 或名字空间。
-为数不多的几个 API 资源类型是“虚拟的” - 它们通常代表的是操作而非对象本身，
-例如访问权限检查（使用 POST 请求发送一个 JSON 编码的 `SubjectAccessReview`
-负载到 `subjectaccessreviews` 资源）。
-所有对象都有一个唯一的名字，以便支持幂等的创建和检视操作，不过如果虚拟资源类型
-不可检视或者不要求幂等，可以不具有唯一的名字。
-
-<!--
-Kubernetes generally leverages standard RESTful terminology to describe the API concepts:
-
-* A **resource type** is the name used in the URL (`pods`, `namespaces`, `services`)
-* All resource types have a concrete representation in JSON (their object schema) which is called a **kind**
-* A list of instances of a resource type is known as a **collection**
-* A single instance of the resource type is called a **resource**
--->
-Kubernetes 一般会利用标准的 RESTful 术语来描述 API 概念：
-
-* **资源类型（Resource Type）** 是在 URL 中使用的名称（`pods`、`namespaces`、`services`）
-* 所有资源类型都有具有一个 JSON 形式（其对象的模式定义）的具体表示，称作**类别（Kind）**
-* 某资源类型的实例的列表称作 **集合（Collection）**
-* 资源类型的单个实例被称作 **资源（Resource）**
-
-<!--
-All resource types are either scoped by the cluster (`/apis/GROUP/VERSION/*`) or to a namespace (`/apis/GROUP/VERSION/namespaces/NAMESPACE/*`). A namespace-scoped resource type will be deleted when its namespace is deleted and access to that resource type is controlled by authorization checks on the namespace scope. The following paths are used to retrieve collections and resources:
-
-* Cluster-scoped resources:
-  * `GET /apis/GROUP/VERSION/RESOURCETYPE` - return the collection of resources of the resource type
-  * `GET /apis/GROUP/VERSION/RESOURCETYPE/NAME` - return the resource with NAME under the resource type
-* Namespace-scoped resources:
-  * `GET /apis/GROUP/VERSION/RESOURCETYPE` - return the collection of all instances of the resource type across all namespaces
-  * `GET /apis/GROUP/VERSION/namespaces/NAMESPACE/RESOURCETYPE` - return collection of all instances of the resource type in NAMESPACE
-  * `GET /apis/GROUP/VERSION/namespaces/NAMESPACE/RESOURCETYPE/NAME` - return the instance of the resource type with NAME in NAMESPACE
--->
-所有资源类型要么是集群作用域的（`/apis/GROUP/VERSION/*`），要么是名字空间
-作用域的（`/apis/GROUP/VERSION/namespaces/NAMESPACE/*`）。
-名字空间作用域的资源类型会在其名字空间被删除时也被删除，并且对该资源类型的
-访问是由定义在名字空间域中的授权检查来控制的。
-下列路径用来检视集合和资源：
-
-* 集群作用域的资源：
-  * `GET /apis/GROUP/VERSION/RESOURCETYPE` - 返回指定资源类型的资源的集合
-  * `GET /apis/GROUP/VERSION/RESOURCETYPE/NAME` - 返回指定资源类型下名称为 NAME 的资源
-* 名字空间作用域的资源：
-  * `GET /apis/GROUP/VERSION/RESOURCETYPE` - 返回所有名字空间中指定资源类型的全部实例的集合
-  * `GET /apis/GROUP/VERSION/namespaces/NAMESPACE/RESOURCETYPE` - 返回名字空间 NAMESPACE 内给定资源类型的全部实例的集合
-  * `GET /apis/GROUP/VERSION/namespaces/NAMESPACE/RESOURCETYPE/NAME` - 返回名字空间 NAMESPACE 中给定资源类型的名称为 NAME 的实例
-
-<!--
-Since a namespace is a cluster-scoped resource type, you can retrieve the list of all namespaces with `GET /api/v1/namespaces` and details about a particular namespace with `GET /api/v1/namespaces/NAME`.
-
-Almost all object resource types support the standard HTTP verbs - GET, POST, PUT, PATCH, and DELETE. Kubernetes uses the term **list** to describe returning a collection of resources to distinguish from retrieving a single resource which is usually called a **get**.
--->
-由于名字空间本身是一个集群作用域的资源类型，你可以通过 `GET /api/v1/namespaces/`
-检视所有名字空间的列表，使用 `GET /api/v1/namespaces/NAME` 查看特定名字空间的
-详细信息。
-
-几乎所有对象资源类型都支持标准的 HTTP 动词 - GET、POST、PUT、PATCH 和 DELETE。
-Kubernetes 使用术语 **list** 来描述返回资源集合的操作，以便与返回单个资源的、
-通常称作 **get** 的操作相区分。
-
-<!--
-Some resource types will have one or more sub-resources, represented as sub paths below the resource:
-
-* Cluster-scoped subresource: `GET /apis/GROUP/VERSION/RESOURCETYPE/NAME/SUBRESOURCE`
-* Namespace-scoped subresource: `GET /apis/GROUP/VERSION/namespaces/NAMESPACE/RESOURCETYPE/NAME/SUBRESOURCE`
-
-The verbs supported for each subresource will differ depending on the object - see the API documentation more information. It is not possible to access sub-resources across multiple resources - generally a new virtual resource type would be used if that becomes necessary.
--->
-某些资源类型有一个或多个子资源（Sub-resource），表现为对应资源下面的子路径：
-
-* 集群作用域的子资源：`GET /apis/GROUP/VERSION/RESOURCETYPE/NAME/SUBRESOURCE`
-* 名字空间作用域的子资源：`GET /apis/GROUP/VERSION/namespaces/NAMESPACE/RESOURCETYPE/NAME/SUBRESOURCE`
-
-取决于对象是什么，每个子资源所支持的动词有所不同 - 参见 API 文档以了解更多信息。
-跨多个资源来访问其子资源是不可能的 - 如果需要这一能力，则通常意味着需要一种
-新的虚拟资源类型了。
-
-<!--
-## Efficient detection of changes
-
-To enable clients to build a model of the current state of a cluster, all Kubernetes object resource types are required to support consistent lists and an incremental change notification feed called a **watch**.  Every Kubernetes object has a `resourceVersion` field representing the version of that resource as stored in the underlying database. When retrieving a collection of resources (either namespace or cluster scoped), the response from the server will contain a `resourceVersion` value that can be used to initiate a watch against the server. The server will return all changes (creates, deletes, and updates) that occur after the supplied `resourceVersion`. This allows a client to fetch the current state and then watch for changes without missing any updates. If the client watch is disconnected they can restart a new watch from the last returned `resourceVersion`, or perform a new collection request and begin again. See [Resource Version Semantics](#resource-versions) for more detail.
-
-For example:
--->
-## 高效检测变更  {#efficient-detection-of-changes}
-
-为了使客户端能够构造一个模型来表达集群的当前状态，所有 Kubernetes 对象资源类型
-都需要支持一致的列表和一个称作 **watch** 的增量变更通知信源（feed）。
-每个 Kubernetes 对象都有一个 `resourceVersion` 字段，代表该资源在下层数据库中
-存储的版本。检视资源集合（名字空间作用域或集群作用域）时，服务器返回的响应
-中会包含 `resourceVersion` 值，可用来向服务器发起 watch 请求。
-服务器会返回所提供的 `resourceVersion` 之后发生的所有变更（创建、删除和更新）。
-这使得客户端能够取回当前的状态并监视其变更，且不会错过任何变更事件。
-客户端的监视连接被断开时，可以从最后返回的 `resourceVersion` 重启新的监视连接，
-或者执行一个新的集合请求之后从头开始监视操作。
-参阅[资源版本语义](#resource-versions)以了解更多细节。
-
-例如：
-
-<!--
-1. List all of the pods in a given namespace.
--->
-1. 列举给定名字空间中的所有 Pods：
-
-   ```console
-   GET /api/v1/namespaces/test/pods
-   ---
-   200 OK
-   Content-Type: application/json
-   {
-     "kind": "PodList",
-     "apiVersion": "v1",
-     "metadata": {"resourceVersion":"10245"},
-     "items": [...]
-   }
-   ```
-
-<!--
-2. Starting from resource version 10245, receive notifications of any creates, deletes, or updates as individual JSON objects.
--->
-2. 从资源版本 10245 开始，以 JSON 对象的形式接收所有创建、删除或更新操作的通知：
-
-   ```console
-   GET /api/v1/namespaces/test/pods?watch=1&resourceVersion=10245
-   ---
-   200 OK
-   Transfer-Encoding: chunked
-   Content-Type: application/json
-
-   {
-     "type": "ADDED",
-     "object": {"kind": "Pod", "apiVersion": "v1", "metadata": {"resourceVersion": "10596", ...}, ...}
-   }
-   {
-     "type": "MODIFIED",
-     "object": {"kind": "Pod", "apiVersion": "v1", "metadata": {"resourceVersion": "11020", ...}, ...}
-   }
-   ...
-   ```
-
-<!--
-A given Kubernetes server will only preserve a historical list of changes for a limited time. Clusters using etcd3 preserve changes in the last 5 minutes by default.  When the requested watch operations fail because the historical version of that resource is not available, clients must handle the case by recognizing the status code `410 Gone`, clearing their local cache, performing a list operation, and starting the watch from the `resourceVersion` returned by that new list operation. Most client libraries offer some form of standard tool for this logic. (In Go this is called a `Reflector` and is located in the `k8s.io/client-go/cache` package.)
--->
-给定的 Kubernetes 服务器只会保留一定的时间内发生的历史变更列表。
-使用 etcd3 的集群默认保存过去 5 分钟内发生的变更。
-当所请求的 watch 操作因为资源的历史版本不存在而失败，客户端必须能够处理
-因此而返回的状态代码 `410 Gone`，清空其本地的缓存，重新执行 list 操作，
-并基于新的 list 操作所返回的 `resourceVersion` 来开始新的 watch 操作。
-大多数客户端库都能够提供某种形式的、包含此逻辑的工具。
-（在 Go 语言客户端库中，这一设施称作 `Reflector`，位于
-`k8s.io/client-go/cache` 包中。)
-
-<!--
-### Watch bookmarks
-
-To mitigate the impact of short history window, we introduced a concept of `bookmark` watch event. It is a special kind of event to mark that all changes up to a given `resourceVersion` the client is requesting have already been sent. Object returned in that event is of the type requested by the request, but only `resourceVersion` field is set, e.g.:
--->
-### 监视书签  {#Watch-bookmark}
-
-为了处理历史窗口过短的问题，我们引入了 `bookmark（书签）` 监视事件的概念。
-该事件是一种特殊事件，用来标示客户端所请求的、指定的 `resourceVersion` 之前
-的所有变更都以被发送。该事件中返回的对象是所请求的资源类型，但其中仅包含
-`resourceVersion` 字段，例如：
-
-```console
-GET /api/v1/namespaces/test/pods?watch=1&resourceVersion=10245&allowWatchBookmarks=true
----
-200 OK
-Transfer-Encoding: chunked
-Content-Type: application/json
-
-{
-  "type": "ADDED",
-  "object": {"kind": "Pod", "apiVersion": "v1", "metadata": {"resourceVersion": "10596", ...}, ...}
-}
-...
-{
-  "type": "BOOKMARK",
-  "object": {"kind": "Pod", "apiVersion": "v1", "metadata": {"resourceVersion": "12746"} }
-}
-```
-
-<!--
-`Bookmark` events can be requested by `allowWatchBookmarks=true` option in watch requests, but clients shouldn't assume bookmarks are returned at any specific interval, nor may they assume the server will send any `bookmark` event.
--->
-通过在 watch 请求中设置 `allowWatchBookmarks=true` 选项，可以请求 `bookmark`
-事件，但是客户端不能假定服务器端会按某特定时间间隔返回书签事件，甚至也不能
-假定服务器一定会发送 `bookmark` 事件。
-
-<!--
-## Retrieving large results sets in chunks
--->
-## 分块检视大体量结果  {#retrieving-large-results-sets-in-chunks}
-
-{{< feature-state for_k8s_version="v1.9" state="beta" >}}
-
-<!--
-On large clusters, retrieving the collection of some resource types may result in very large responses that can impact the server and client. For instance, a cluster may have tens of thousands of pods, each of which is 1-2kb of encoded JSON. Retrieving all pods across all namespaces may result in a very large response (10-20MB) and consume a large amount of server resources. Starting in Kubernetes 1.9 the server supports the ability to break a single large collection request into many smaller chunks while preserving the consistency of the total request. Each chunk can be returned sequentially which reduces both the total size of the request and allows user-oriented clients to display results incrementally to improve responsiveness.
--->
-在较大规模的集群中，检视某些资源类型的集合时可能会返回较大体量的响应数据，对
-服务器和客户端都会造成影响。例如，某集群可能包含数万个 Pod，每个 Pod 的 JSON
-编码都有 1-2 KB 的大小。返回所有名字空间的全部 Pod 时，其结果可能体量很大
-（10-20 MB）且耗用大量的服务器资源。
-从 Kubernetes 1.9 开始，服务器支持将单一的大体量集合请求分解成多个小数据块
-同时还保证整个请求的一致性的能力。
-各个数据块可以按顺序返回，进而降低请求的尺寸，允许面向用户的客户端以增量形式
-呈现返回结果，改进系统响应效果。
-
-<!--
-To retrieve a single list in chunks, two new parameters `limit` and `continue`
-are supported on collection requests and a new field `continue` is returned
-from all list operations in the list `metadata` field. A client should specify
-the maximum results they wish to receive in each chunk with `limit` and the
-server will return up to `limit` resources in the result and include a
-`continue` value if there are more resources in the collection. The client can
-then pass this `continue` value to the server on the next request to instruct
-the server to return the next chunk of results. By continuing until the server
-returns an empty `continue` value the client can consume the full set of
-results.
--->
-为了用分块的形式返回一个列表，集合请求上可以设置两个新的参数 `limit` 和
-`continue`，并且所有 list 操作的返回结果列表的 `metadata` 字段中会包含一个
-新的 `continue` 字段。
-客户端应该将 `limit` 设置为希望在每个数据块中收到的结果个数上限，而服务器则
-会在结果中至多返回 `limit` 个资源并在集合中还有更多资源的时候包含一个
-`continue` 值。客户端在下次请求时则可以将此 `continue` 值传递给服务器，
-告知后者要从何处开始返回结果的下一个数据块。
-通过重复这一操作直到服务器端返回空的 `continue` 值，客户端可以受到结果的
-全集。
-
-<!--
-Like a watch operation, a `continue` token will expire after a short amount of time (by default 5 minutes) and return a `410 Gone` if more results cannot be returned. In this case, the client will need to start from the beginning or omit the `limit` parameter.
-
-For example, if there are 1,253 pods on the cluster and the client wants to receive chunks of 500 pods at a time, they would request those chunks as follows:
--->
-与 watch 操作类似，`continue` 令牌也会在很短的时间（默认为 5 分钟）内过期，
-并在无法返回更多结果时返回 `410 Gone` 代码。
-这时，客户端需要从头开始执行上述检视操作或者忽略 `limit` 参数。
-
-例如，如果集群上有 1253 个 Pods，客户端希望每次收到包含至多 500 个 Pod 的
-数据块，它应按下面的步骤来请求数据块：
-
-<!--
-1. List all of the pods on a cluster, retrieving up to 500 pods each time.
--->
-1. 列举集群中所有 Pod，每次接收至多 500 个 Pods：
-
-```console
-GET /api/v1/pods?limit=500
----
-200 OK
-Content-Type: application/json
-
-{
-  "kind": "PodList",
-  "apiVersion": "v1",
-  "metadata": {
-    "resourceVersion":"10245",
-    "continue": "ENCODED_CONTINUE_TOKEN",
-    ...
-  },
-  "items": [...] // returns pods 1-500
-}
-```
-<!--
-2. Continue the previous call, retrieving the next set of 500 pods.
--->
-2. 继续前面的调用，返回下一组 500 个 Pods：
-
-```console
-GET /api/v1/pods?limit=500&continue=ENCODED_CONTINUE_TOKEN
----
-200 OK
-Content-Type: application/json
-
-{
-  "kind": "PodList",
-  "apiVersion": "v1",
-  "metadata": {
-    "resourceVersion":"10245",
-    "continue": "ENCODED_CONTINUE_TOKEN_2",
-    ...
-  },
-  "items": [...] // returns pods 501-1000
-}
-```
-
-<!--
-3. Continue the previous call, retrieving the last 253 pods.
--->
-3. 继续前面的调用，返回最后 253 个 Pods：
-
-```console
-GET /api/v1/pods?limit=500&continue=ENCODED_CONTINUE_TOKEN_2
----
-200 OK
-Content-Type: application/json
-
-{
-  "kind": "PodList",
-  "apiVersion": "v1",
-  "metadata": {
-    "resourceVersion":"10245",
-    "continue": "", // continue token is empty because we have reached the end of the list
-    ...
-  },
-  "items": [...] // returns pods 1001-1253
-}
-```
-
-<!--
-Note that the `resourceVersion` of the list remains constant across each request, indicating the server is showing us a consistent snapshot of the pods. Pods that are created, updated, or deleted after version `10245` would not be shown unless the user makes a list request without the `continue` token.  This allows clients to break large requests into smaller chunks and then perform a watch operation on the full set without missing any updates.
--->
-注意 list 操作的 `resourceVersion` 在每个请求中都设置的是同一个数值，
-这表明服务器要向我们展示一个一致的 Pods 快照视图。
-在版本 `10245` 之后创建、更新或删除的 Pods 都不会显示出来，除非用户发出
-list 请求时不指定 `continue` 令牌。
-这一设计使得客户端能够将较大的响应切分为较小的数据块，且能够对较大的集合
-执行监视动作而不会错失任何更新事件。
-
-<!--
-## Receiving resources as Tables
-
-The output from the `kubectl get` command is a simple tabular representation of one or more instances of a particular resource type. In the past, clients were required to reproduce the tabular and describe output implemented in `kubectl` to perform simple lists of objects.
-A few limitations of that approach include non-trivial logic when dealing with certain objects. Additionally, types provided by API aggregation or third party resources are not known at compile time. This means that generic implementations had to be in place for types unrecognized by a client.
--->
-## 以表格形式接收资源  {#receiving-resources-as-tables}
-
-`kubectl get` 命令的输出是一个包含一个或多个资源的简单表格形式。
-过去，客户端需要重复 `kubectl` 中所实现的表格输出和描述输出逻辑，以执行
-简单的对象列表操作。
-这一方法在处理某些对象时，需要引入不容忽视的逻辑。
-此外，[API 聚合](/zh/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)
-和[定制资源](/zh/docs/concepts/extend-kubernetes/api-extension/custom-resources/)
-所提供的资源类型都是编译时不可预知的。这意味着，客户端必须针对无法
-识别的类型提供通用的实现逻辑。
-
-<!--
-In order to avoid potential limitations as described above, clients may request the Table representation of objects, delegating specific details of printing to the server. The Kubernetes API implements standard HTTP content type negotiation: passing an `Accept` header containing a value of `application/json;as=Table;g=meta.k8s.io;v=v1beta1` with a `GET` call will request that the server return objects in the Table content type.
-
-For example:
--->
-为了避免上述各种潜在的局限性，客户端可以请求服务器端返回对象的表格（Table）
-表现形式，从而将打印输出的特定细节委托给服务器。
-Kubernetes API 实现标准的 HTTP 内容类型（Content Type）协商：为 `GET` 调用
-传入一个值为 `application/json;as=Table;g=meta.k8s.io;v=v1beta1` 的 `Accept`
-头部即可请求服务器以 Table 的内容类型返回对象。
-
-例如，以 Table 格式列举集群中所有 Pods：
-
-```console
-GET /api/v1/pods
-Accept: application/json;as=Table;g=meta.k8s.io;v=v1beta1
----
-200 OK
-Content-Type: application/json
-
-{
-    "kind": "Table",
-    "apiVersion": "meta.k8s.io/v1beta1",
-    ...
-    "columnDefinitions": [
-        ...
-    ]
-}
-```
-
-<!--
-For API resource types that do not have a custom Table definition on the
-server, a default Table response is returned by the server, consisting of the
-resource's `name` and `creationTimestamp` fields.
--->
-对于在服务器上不存在定制的 Table 定义的 API 资源类型而言，服务器会返回
-一个默认的 Table 响应，其中包含资源的 `name` 和 `creationTimestamp` 字段。
-
-```console
-GET /apis/crd.example.com/v1alpha1/namespaces/default/resources
----
-200 OK
-Content-Type: application/json
-...
-
-{
-    "kind": "Table",
-    "apiVersion": "meta.k8s.io/v1beta1",
-    ...
-    "columnDefinitions": [
-        {
-            "name": "Name",
-            "type": "string",
-            ...
-        },
-        {
-            "name": "Created At",
-            "type": "date",
-            ...
-        }
-    ]
-}
-```
-
-<!--
-Table responses are available beginning in version 1.10 of the kube-apiserver.
-As such, not all API resource types will support a Table response,
-specifically when using a client against older clusters. Clients that must
-work against all resource types, or can potentially deal with older clusters,
-should specify multiple content types in their `Accept` header to support
-fallback to non-Tabular JSON:
--->
-`kube-apiserver` 从 1.10 版本开始提供 Table 响应。
-因此，并非所有 API 资源类型都支持 Table 响应，尤其是使用客户端访问较老的集群时。
-如果客户端需要能够处理所有资源类型，或者有可能需要与较老的集群交互，
-则需要在其 `Accept` 头部设定多个内容类型值，以便可以回退到非表格形式的 JSON
-表示。
-
-```
-Accept: application/json;as=Table;g=meta.k8s.io;v=v1beta1, application/json
-```
-
-<!--
-## Alternate representations of resources
-
-By default, Kubernetes returns objects serialized to JSON with content type `application/json`. This is the default serialization format for the API. However, clients may request the more efficient Protobuf representation of these objects for better performance at scale. The Kubernetes API implements standard HTTP content type negotiation: passing an `Accept` header with a `GET` call will request that the server return objects in the provided content type, while sending an object in Protobuf to the server for a `PUT` or `POST` call takes the `Content-Type` header. The server will return a `Content-Type` header if the requested format is supported, or the `406 Not acceptable` error if an invalid content type is provided.
-
-See the API documentation for a list of supported content types for each API.
-
-For example:
--->
-## 资源的其他表示形式  {#alternate-representations-of-resources}
-
-默认情况下，Kubernetes 返回 JSON 序列化的的对象并设定内容类型为
-`application/json`。这是 API 的默认序列化格式。
-不过，客户端也可出于大规模环境中更佳性能的需求而请求对象的更为高效的 Protobuf
-表现形式。
-Kubernetes API 实现了标准的 HTTP 内容类型协商：为 `GET` 调用传递一个 `Accept`
-头部来请求服务器以所指定的内容类型返回对象，同时在通过 `PUT` 或 `POST` 调用
-向服务器发送 Protobuf 格式的对象时提供 `Content-Type` 头部。
-服务器会能够支持所请求的格式时返回 `Content-Type` 头部，并在所提供的内容类型
-不合法时返回 `406 Not acceptable（无法接受）` 错误。
-
-请参阅 API 文档了解每个 API 所支持的内容类型。
-
-例如：
-
-<!--
-1. List all of the pods on a cluster in Protobuf format.
--->
-1. 以 Protobuf 格式列举集群上的所有 Pods：
-
-```console
-GET /api/v1/pods
-Accept: application/vnd.kubernetes.protobuf
----
-200 OK
-Content-Type: application/vnd.kubernetes.protobuf
-
-... binary encoded PodList object
-```
-
-<!--
-2. Create a pod by sending Protobuf encoded data to the server, but request a response in JSON.
--->
-2. 通过向服务器发送 Protobuf 编码的数据创建 Pod，但请求以 JSON 形式接收响应：
-
-```console
-POST /api/v1/namespaces/test/pods
-Content-Type: application/vnd.kubernetes.protobuf
-Accept: application/json
-... binary encoded Pod object
----
-200 OK
-Content-Type: application/json
-
-{
-  "kind": "Pod",
-  "apiVersion": "v1",
-  ...
-}
-```
-
-<!--
-Not all API resource types will support Protobuf, specifically those defined
-via Custom Resource Definitions or those that are API extensions. Clients that
-must work against all resource types should specify multiple content types in
-their `Accept` header to support fallback to JSON:
--->
-并非所有 API 资源类型都支持 Protobuf，尤其是那些通过定制资源定义（CRD）或通过
-API 扩展而加入的资源。如果客户端必须能够处理所有资源类型，则应在其 `Accept`
-头部指定多种内容类型以便可以回退到 JSON 格式：
-
-```console
-Accept: application/vnd.kubernetes.protobuf, application/json
-```
-
-<!--
-### Protobuf encoding
-
-Kubernetes uses an envelope wrapper to encode Protobuf responses. That wrapper starts with a 4 byte magic number to help identify content in disk or in etcd as Protobuf (as opposed to JSON), and then is followed by a Protobuf encoded wrapper message, which describes the encoding and type of the underlying object and then contains the object.
-
-The wrapper format is:
--->
-### Protobuf encoding
-
-Kubernetes 使用封套形式来对 Protobuf 响应进行编码。
-封套外层由 4 个字节的特殊数字开头，便于从磁盘文件或 etcd 中辩识 Protobuf
-格式的（而不是 JSON）数据。
-接下来存放的是 Protobuf 编码的封套消息，其中描述下层对象的编码和类型，最后
-才是对象本身。
-
-封套格式如下：
-
-<!--
-```console
-A four byte magic number prefix:
-  Bytes 0-3: "k8s\x00" [0x6b, 0x38, 0x73, 0x00]
-
-An encoded Protobuf message with the following IDL:
-  message Unknown {
-    // typeMeta should have the string values for "kind" and "apiVersion" as set on the JSON object
-    optional TypeMeta typeMeta = 1;
-
-    // raw will hold the complete serialized object in protobuf. See the protobuf definitions in the client libraries for a given kind.
-    optional bytes raw = 2;
-
-    // contentEncoding is encoding used for the raw data. Unspecified means no encoding.
-    optional string contentEncoding = 3;
-
-    // contentType is the serialization method used to serialize 'raw'. Unspecified means application/vnd.kubernetes.protobuf and is usually
-    // omitted.
-    optional string contentType = 4;
-  }
-
-  message TypeMeta {
-    // apiVersion is the group/version for this type
-    optional string apiVersion = 1;
-    // kind is the name of the object schema. A protobuf definition should exist for this object.
-    optional string kind = 2;
-  }
-```
--->
-```console
-四个字节的特殊数字前缀：
-  字节 0-3: "k8s\x00" [0x6b, 0x38, 0x73, 0x00]
-
-使用下面 IDL 来编码的 Protobuf 消息：
-  message Unknown {
-    // typeMeta 应该包含 "kind" 和 "apiVersion" 的字符串值，就像
-    // 对应的 JSON 对象中所设置的那样
-    optional TypeMeta typeMeta = 1;
-
-    // raw 中将保存用 protobuf 序列化的完整对象。
-    // 参阅客户端库中为指定 kind 所作的 protobuf 定义
-    optional bytes raw = 2;
-
-    // contentEncoding 用于 raw 数据的编码格式。未设置此值意味着没有特殊编码。
-    optional string contentEncoding = 3;
-
-    // contentType 包含 raw 数据所采用的序列化方法。
-    // 未设置此值意味着  application/vnd.kubernetes.protobuf，且通常被忽略
-    optional string contentType = 4;
-  }
-
-  message TypeMeta {
-    // apiVersion 是 type 对应的组名/版本
-    optional string apiVersion = 1;
-    // kind 是对象模式定义的名称。此对象应该存在一个 protobuf 定义。
-    optional string kind = 2;
-  }
-```
-
-<!--
-Clients that receive a response in `application/vnd.kubernetes.protobuf` that does not match the expected prefix should reject the response, as future versions may need to alter the serialization format in an incompatible way and will do so by changing the prefix.
--->
-收到 `application/vnd.kubernetes.protobuf` 格式响应的客户端在响应与预期的前缀
-不匹配时应该拒绝响应，因为将来的版本可能需要以某种不兼容的方式更改序列化格式，
-并且这种更改是通过变更前缀完成的。
-
-<!--
-## Resource deletion
-
-Resources are deleted in two phases: 1) finalization, and 2) removal.
--->
-## 资源删除  {#resource-deletion}
-
-资源删除要经过两个阶段：1) 终止（finalization），和 2）去除。
-
-```json
-{
-  "kind": "ConfigMap",
-  "apiVersion": "v1",
-  "metadata": {
-    "finalizers": {"url.io/neat-finalization", "other-url.io/my-finalizer"},
-    "deletionTimestamp": nil,
-  }
-}
-```
-
-<!--
-When a client first deletes a resource, the `.metadata.deletionTimestamp` is
-set to the current time.  Once the `.metadata.deletionTimestamp` is set,
-external controllers that act on finalizers may start performing their cleanup
-work at any time, in any order.  Order is NOT enforced because it introduces
-significant risk of stuck `.metadata.finalizers`.  `.metadata.finalizers` is a
-shared field, any actor with permission can reorder it.  If the finalizer list
-is processed in order, then this can lead to a situation in which the
-component responsible for the first finalizer in the list is waiting for a
-signal (field value, external system, or other) produced by a component
-responsible for a finalizer later in the list, resulting in a deadlock.
-Without enforced ordering finalizers are free to order amongst themselves and
-are not vulnerable to ordering changes in the list.
-
-Once the last finalizer is removed, the resource is actually removed from
-etcd.
--->
-当客户端首先删除某资源时，其 `.metadata.deletionTimestamp` 会被设置为当前时间。
-一旦 `.metadata.deletionTimestamp` 被设置，则对终结器（finalizers）执行动作
-的外部控制器就可以在任何时候、以任何顺序执行其清理工作。
-这里不强调顺序是因为很可能带来 `.metadata.finalizers` 被锁定的风险。
-`.metadata.finalizers` 是一个共享的字段，任何具有相关权限的主体都可以对其
-执行重排序的操作。如果终结器列表要按顺序处理，则很可能导致负责列表中第一个
-终结器的组件要等待负责列表中排序靠后的终结器的组件的信号（可能是字段值变更、
-外部系统或者其他形式），从而导致死锁行为。
-在不对终结器顺序作强制要求的情况下，终结器可以自行排序，且不会因为其在列表
-中的顺序而引入任何不稳定因素。
-
-当最后一个终结器也被移除时，资源才真正从 etcd 中移除。
-
-<!--
-## Single resource API
-
-API verbs GET, CREATE, UPDATE, PATCH, DELETE and PROXY support single resources only.
-These verbs with single resource support have no support for submitting
-multiple resources together in an ordered or unordered list or transaction.
-Clients including kubectl will parse a list of resources and make
-single-resource API requests.
-
-API verbs LIST and WATCH support getting multiple resources, and
-DELETECOLLECTION supports deleting multiple resources.
--->
-## 单个资源 API  {#single-resource-api}
-
-API 动词 GET、CREATE、UPDATE、PATCH、DELETE 和 PROXY 仅支持单个资源。
-这些支持单一资源的动词不支持以有序或无序列表甚或事务的形式同时提交给
-多个资源。
-包括 kubectl 在内的客户端将解析资源的列表，并执行单一资源的 API 请求。
-
-API 动词 LIST 和 WATCH 支持获取多个资源，而 DELETECOLLECTION 支持删除多个
-资源。
-
-<!--
-## Dry-run
--->
-## 试运行  {#dry-run}
-
-{{< feature-state for_k8s_version="v1.18" state="stable" >}}
-
-<!--
-The modifying verbs (`POST`, `PUT`, `PATCH`, and `DELETE`) can accept requests in a _dry run_ mode. Dry run mode helps to evaluate a request through the typical request stages (admission chain, validation, merge conflicts) up until persisting objects to storage. The response body for the request is as close as possible to a non-dry-run response. The system guarantees that dry-run requests will not be persisted in storage or have any other side effects.
--->
-修改性质的动词（`POST`、`PUT`、`PATCH` 和 `DELETE`）可以支持 _试运行（dry
-run）_ 模式的请求。试运行模式可帮助通过典型的请求阶段（准入控制链、合法性
-检查、合并冲突）来评估请求，只是最终的对象不会写入存储。请求的响应主体与
-非试运行模式下的响应尽可能接近。系统会保证试运行模式的请求不会被写入到存储
-中，也不会产生其他副作用。
-
-<!--
-### Make a dry-run request
-
-Dry-run is triggered by setting the `dryRun` query parameter. This parameter is a string, working as an enum, and the only accepted values are:
-
-* `All`: Every stage runs as normal, except for the final storage stage. Admission controllers are run to check that the request is valid, mutating controllers mutate the request, merge is performed on `PATCH`, fields are defaulted, and schema validation occurs. The changes are not persisted to the underlying storage, but the final object which would have been persisted is still returned to the user, along with the normal status code. If the request would trigger an admission controller which would have side effects, the request will be failed rather than risk an unwanted side effect. All built in admission control plugins support dry-run. Additionally, admission webhooks can declare in their [configuration object](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#webhook-v1beta1-admissionregistration-k8s-io) that they do not have side effects by setting the sideEffects field to "None". If a webhook actually does have side effects, then the sideEffects field should be set to "NoneOnDryRun", and the webhook should also be modified to understand the `DryRun` field in AdmissionReview, and prevent side effects on dry-run requests.
-* Leave the value empty, which is also the default: Keep the default modifying behavior.
-
-For example:
--->
-### 发起试运行请求  {#make-a-dry-run-request}
-
-通过设置 `dryRun` 查询参数可以触发试运行模式。此参数是一个字符串，以枚举值
-的形式工作且可接受的值只有：
-
-* `All`：每个阶段被会正常运行，除了最后的存储阶段。准入控制器会被运行来检查请求
-  是否合法，变更性（Mutating）控制器会变更请求，`PATCH` 请求也会触发合并操作，
-  对象字段的默认值也会被设置，且基于模式定义的合法性检查也会被执行。
-  所生成的变更不会被写入到下层的持久性存储中，但本来会写入到数据库中的最终对象
-  会和正常的状态代码一起被返回给用户。如果请求会触发准入控制器而该准入控制器
-  带有一定的副作用，则请求会失败而不是冒险产生不希望的副作用。
-  所有的内置准入控制器插件都支持试运行模式。此外，准入控制 Webhook 也可在其
-  [配置对象](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#webhook-v1beta1-admissionregistration-k8s-io)
-  中通过将 `sideEffects` 字段设置为 "None" 来声明自身不会产生副作用。
-  如果某 Webhook 确实会产生副作用，那么 `sideEffects` 字段应该设置为 "NoneOnDryRun"，
-  并且 Webhook 应该被更改以支持 AdmissionReview 中的 `dryRun` 字段，从而避免
-  在试运行时产生副作用。
-
-* 空字符串（也即默认值）：保留默认的修改行为。
-
-例如：
-
-```console
-POST /api/v1/namespaces/test/pods?dryRun=All
-Content-Type: application/json
-Accept: application/json
-```
-
-<!--
-The response would look the same as for non-dry-run request, but the values of some generated fields may differ.
--->
-响应会与非试运行模式请求的响应看起来相同，只是某些生成字段的值可能会不同。
-
-<!--
-### Dry-run authorization
-
-Authorization for dry-run and non-dry-run requests is identical. Thus, to make
-a dry-run request, the user must be authorized to make the non-dry-run request.
-
-For example, to run a dry-run `PATCH` for Deployments, you must have the
-`PATCH` permission for Deployments, as in the example of the RBAC rule below.
--->
-### 试运行的授权    {#dry-run-authorization}
-
-试运行和非试运行请求的鉴权是完全相同的。因此，要发起一个试运行请求，用户必须
-被授权执行非试运行请求。
-
-例如，要在 Deployment 对象上试运行 `PATCH` 操作，你必须具有对 Deployment 执行
-`PATCH` 操作的访问权限，如下面的 RBAC 规则所示：
-
-```yaml
-rules:
-- apiGroups: ["extensions", "apps"]
-  resources: ["deployments"]
-  verbs: ["patch"]
-```
-
-<!--
-See [Authorization Overview](/docs/reference/access-authn-authz/authorization/).
--->
-参阅[鉴权概述](/zh/docs/reference/access-authn-authz/authorization/)以了解鉴权细节。
-
-<!--
-### Generated values
-
-Some values of an object are typically generated before the object is persisted. It is important not to rely upon the values of these fields set by a dry-run request, since these values will likely be different in dry-run mode from when the real request is made. Some of these fields are:
-
-* `name`: if `generateName` is set, `name` will have a unique random name
-* `creationTimestamp`/`deletionTimestamp`: records the time of creation/deletion
-* `UID`: uniquely identifies the object and is randomly generated (non-deterministic)
-* `resourceVersion`: tracks the persisted version of the object
-* Any field set by a mutating admission controller
-* For the `Service` resource: Ports or IPs that kube-apiserver assigns to v1.Service objects
--->
-### 生成的值  {#generated-values}
-
-对象的某些值通常是在对象被写入数据库之前生成的。很重要的一点是不要依赖试运行
-请求为这些字段所设置的值，因为试运行模式下所得到的这些值与真实请求所获得的
-值很可能不同。这类字段有：
-
-* `name`：如果设置了 `generateName` 字段，则 `name` 会获得一个唯一的随机名称
-* `creationTimestamp`/`deletionTimestamp`：记录对象的创建/删除时间
-* `UID`：唯一性标识对象，取值随机生成（非确定性）
-* `resourceVersion`： 跟踪对象的持久化（存储）版本
-* 变更性准入控制器所设置的字段
-* 对于 `Service` 资源：`kube-apiserver` 为 `v1.Service` 对象分配的端口和 IP
-
-<!--
-## Server Side Apply
--->
-## 服务器端应用  {#server-side-apply}
-
-{{< feature-state for_k8s_version="v1.16" state="beta" >}}
-
-<!--
-Starting from Kubernetes v1.18, you can enable the
-[Server Side Apply](/docs/reference/using-api/server-side-apply/)
-feature so that the control plane tracks managed fields for all newly created objects.
-Server Side Apply provides a clear pattern for managing field conflicts,
-offers server-side `Apply` and `Update` operations, and replaces the
-client-side functionality of `kubectl apply`. For more details about this
-feature, see the section on
-[Server Side Apply](/docs/reference/using-api/server-side-apply/).
--->
-从 Kubernetes v1.18 开始，可以启用[服务器端应用](/zh/docs/reference/using-api/server-side-apply/)功能
-特性，启用该特性后，控制面会跟踪所有新创建的对象的托管字段。服务器端应用提供了一种简洁的模式来管理字段冲突，提供服务器端的 `Apply` 和 `Update` 操作，并取代了
-`kubectl apply` 的客户端功能。有关该特性的详细描述，请参见[服务器端应用](/zh/docs/reference/using-api/server-side-apply/)章节
-
-<!--
-## Resource Versions
-
-Resource versions are strings that identify the server's internal version of an object. Resource versions can be used by clients to determine when objects have changed, or to express data consistency requirements when getting, listing and watching resources. Resource versions must be treated as opaque by clients and passed unmodified back to the server. For example, clients must not assume resource versions are numeric, and may only compare two resource version for equality (i.e. must not compare resource versions for greater-than or less-than relationships).
--->
-## 资源版本   {#resource-versions}
-
-资源版本采用字符串来表达，用来标示对象的服务器端内部版本。
-客户端可以使用资源版本来判定对象是否被更改，或者在读取、列举或监视资源时
-用来表达数据一致性需求。
-客户端必需将资源版本视为不透明的对象，将其原封不动地传递回服务器端。
-例如，客户端一定不能假定资源版本是某种数值标识，也不可以对两个资源版本值
-进行比较看其是否相同（也就是不可以比较两个版本值以判断其中一个比另一个
-大或小）。
-
-<!--
-### ResourceVersion in metadata
-
-Clients find resource versions in resources, including the resources in watch events, and list responses returned from the server:
-
-[v1.meta/ObjectMeta](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#objectmeta-v1-meta) - The `metadata.resourceVersion` of a resource instance identifies the resource version the instance was last modified at.
-
-[v1.meta/ListMeta](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#listmeta-v1-meta) - The `metadata.resourceVersion` of a resource collection (i.e. a list response) identifies the resource version at which the list response was constructed.
--->
-### `metadata` 中的 `resourceVersion`  {#resourceVersion-in-metadata}
-
-客户端可以在资源中看到资源版本信息，这里的资源包括从服务器返回的 Watch 事件
-以及 list 操作响应：
-
-[v1.meta/ObjectMeta](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#objectmeta-v1-meta) - 资源
-的 `metadata.resourceVersion` 值标明该实例上次被更改时的资源版本。
-
-[v1.meta/ListMeta](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#listmeta-v1-meta) - 资源集合
-（即 list 操作的响应）的 `metadata.resourceVersion` 所标明的是 list 响应被构造
-时的资源版本。
-
-<!--
-### The ResourceVersion Parameter
-
-The get, list and watch operations support the `resourceVersion` parameter.
-
-The exact meaning of this parameter differs depending on the operation and the value of `resourceVersion`.
-
-For get and list, the semantics of resource version are:
-
-**Get:**
--->
-### `resourceVersion` 参数   {#the-resourceversion-parameter}
-
-GET、LIST 和 WATCH 操作都支持 `resourceVersion` 参数。
-
-参数的具体含义取决于所执行的操作和所给的 `resourceVersion` 值：
-
-对于 GET 和 LIST 而言，资源版本的语义为：
-
-**GET：**
-
-<!--
-| resourceVersion unset | resourceVersion="0" | resourceVersion="{value other than 0}" |
-|------------------------|---------------------|----------------------------------------|
-| Most Recent           | Any                 | Not older than                         |
--->
-| resourceVersion 未设置 | resourceVersion="0" | resourceVersion="\<非零值\>" |
-|------------------------|---------------------|----------------------------------------|
-| 最新版本               | 任何版本            | 不老于给定版本                         |
-
-
-**LIST：**
-
-<!--
-v1.19+ API servers and newer support the `resourceVersionMatch` parameter, which
-determines how resourceVersion is applied to list calls.  It is highly
-recommended that `resourceVersionMatch` be set for list calls where
-`resourceVersion` is set. If `resourceVersion` is unset, `resourceVersionMatch`
-is not allowed.  For backward compatibility, clients must tolerate the server
-ignoring `resourceVersionMatch`:
--->
-v1.19 及以上版本的 API 服务器支持 `resourceVersionMatch` 参数，用以确定如何对
-LIST 调用应用 resourceVersion 值。
-强烈建议在为 LIST 调用设置了 `resourceVersion` 时也设置 `resourceVersionMatch`。
-如果 `resourceVersion` 未设置，则 `resourceVersionMatch` 是不允许设置的。
-为了向后兼容，客户端必须能够容忍服务器在某些场景下忽略 `resourceVersionMatch` 的行为：
-
-<!--
-- When using `resourceVersionMatch=NotOlderThan` and limit is set, clients must
-  handle HTTP 410 "Gone" responses. For example, the client might retry with a
-  newer `resourceVersion` or fall back to `resourceVersion=""`.
-
-- When using `resourceVersionMatch=Exact` and `limit` is unset, clients must
-  verify that the `resourceVersion` in the `ListMeta` of the response matches
-  the requested `resourceVersion`, and handle the case where it does not. For
-  example, the client might fall back to a request with `limit` set.
--->
-- 当设置 `resourceVersionMatch=NotOlderThan` 且指定了 `limit` 时，客户端必须能够
-  处理 HTTP 410 "Gone" 响应。例如，客户端可以使用更新一点的 `resourceVersion`
-  来重试，或者回退到 `resourceVersion=""` （即允许返回任何版本）。
-
-- 当设置了 `resourceVersionMatch=Exact` 且未指定 `limit` 时，客户端必须验证
-  响应数据中 `ListMeta` 的 `resourceVersion` 与所请求的 `resourceVersion` 匹配，
-  并处理二者可能不匹配的情况。例如，客户端可以重试设置了 `limit` 的请求。
-
-<!--
-Unless you have strong consistency requirements, using `resourceVersionMatch=NotOlderThan` and
-a known `resourceVersion` is preferable since it can achieve better performance and scalability
-of your cluster than leaving `resourceVersion` and `resourceVersionMatch` unset, which requires
-quorum read to be served.
--->
-除非你对一致性有着非常强烈的需求，使用 `resourceVersionMatch=NotOlderThan`
-同时为 `resourceVersion` 设定一个已知值是优选的交互方式，因为与不设置
-`resourceVersion` 和 `resourceVersionMatch` 相比，这种配置可以取得更好的
-集群性能和可扩缩性。后者需要提供带票选能力的读操作。
-
-<!--
-{{</* table caption="resourceVersionMatch and paging parameters for list" */>}}
-
-| resourceVersionMatch param            | paging params                 | resourceVersion unset | resourceVersion="0"                       | resourceVersion="{value other than 0}" |
-|---------------------------------------|-------------------------------|-----------------------|-------------------------------------------|----------------------------------------|
-| resourceVersionMatch unset            | limit unset                   | Most Recent           | Any                                       | Not older than                         |
-| resourceVersionMatch unset            | limit=\<n\>, continue unset     | Most Recent           | Any                                       | Exact                                  |
-| resourceVersionMatch unset            | limit=\<n\>, continue=\<token\> | Continue Token, Exact | Invalid, treated as Continue Token, Exact | Invalid, HTTP `400 Bad Request`        |
-| resourceVersionMatch=Exact [1]        | limit unset                   | Invalid               | Invalid                                   | Exact                                  |
-| resourceVersionMatch=Exact [1]        | limit=\<n\>, continue unset     | Invalid               | Invalid                                   | Exact                                  |
-| resourceVersionMatch=NotOlderThan [1] | limit unset                   | Invalid               | Any                                       | Not older than                         |
-| resourceVersionMatch=NotOlderThan [1] | limit=\<n\>, continue unset     | Invalid               | Any                                       | Not older than                         |
-
-{{</* /table */>}}
-
-**Footnotes:**
-
-[1] If the server does not honor the `resourceVersionMatch` parameter, it is treated as if it is unset.
--->
-
-{{< table caption="list 操作的 resourceVersionMatch 与分页参数" >}}
-
-| resourceVersionMatch 参数               | 分页参数                        | resourceVersion 未设置  | resourceVersion="0"                     | resourceVersion="\<非零值\>"     |
-|-----------------------------------------|---------------------------------|-------------------------|-----------------------------------------|----------------------------------|
-| resourceVersionMatch 未设置             | limit 未设置                      | 最新版本                | 任意版本                                | 不老于指定版本                   |
-| resourceVersionMatch 未设置             | limit=\<n\>, continue 未设置        | 最新版本                | 任意版本                                | 精确匹配                         |
-| resourceVersionMatch 未设置             | limit=\<n\>, continue=\<token\>     | 从 token 开始、精确匹配 | 非法请求，视为从 token 开始、精确匹配  | 非法请求，返回 HTTP `400 Bad Request` |
-| resourceVersionMatch=Exact [1]         | limit 未设置                      | 非法请求                | 非法请求                                | 精确匹配                         |
-| resourceVersionMatch=Exact [1]         | limit=\<n\>, continue 未设置        | 非法请求                | 非法请求                                | 精确匹配                         |
-| resourceVersionMatch=NotOlderThan [1]  | limit 未设置             | 非法请求                | 任意版本                                | 不老于指定版本                   |
-| resourceVersionMatch=NotOlderThan [1]  | limit=\<n\>, continue 未设置 | 非法请求                | 任意版本                                | 不老于指定版本                   |
-
-{{< /table >}}
-
-**脚注：**
-
-[1] 如果服务器无法正确处理 `resourceVersionMatch` 参数，其行为与未设置该参数相同。
-</small>
-
-<!--
-The meaning of the get and list semantics are:
-
-- **Most Recent:** Return data at the most recent resource version. The returned data must be
-  consistent (i.e. served from etcd via a quorum read).
-- **Any:** Return data at any resource version. The newest available resource version is preferred,
-  but strong consistency is not required; data at any resource version may be served. It is possible
-  for the request to return data at a much older resource version that the client has previously
-  observed, particularly in high availability configurations, due to partitions or stale
-  caches. Clients that cannot tolerate this should not use this semantic.
--->
-GET 和 LIST 操作的语义含义如下：
-
-- **最新版本：** 返回资源版本为最新的数据。所返回的数据必须一致
-  （通过票选读操作从 etcd 中取出）。
-- **任意版本：** 返回任意资源版本的数据。优选最新可用的资源版本，不过不能保证
-  强一致性；返回的数据可能是任何资源版本的。请求返回的数据有可能是客户端以前
-  看到过的很老的资源版本。尤其在某些高可用配置环境中，网络分区或者高速缓存
-  未被更新等状态都可能导致这种状况。不能容忍这种不一致性的客户端不应采用此
-  语义。
-<!--
-- **Not older than:** Return data at least as new as the provided resourceVersion. The newest
-  available data is preferred, but any data not older than the provided resourceVersion may be
-  served.  For list requests to servers that honor the resourceVersionMatch parameter, this
-  guarantees that resourceVersion in the ListMeta is not older than the requested resourceVersion,
-  but does not make any guarantee about the resourceVersion in the ObjectMeta of the list items
-  since ObjectMeta.resourceVersion tracks when an object was last updated, not how up-to-date the
-  object is when served.
-- **Exact:** Return data at the exact resource version provided. If the provided resourceVersion is
-  unavailable, the server responds with HTTP 410 "Gone".  For list requests to servers that honor the
-  resourceVersionMatch parameter, this guarantees that resourceVersion in the ListMeta is the same as
-  the requested resourceVersion, but does not make any guarantee about the resourceVersion in the
-  ObjectMeta of the list items since ObjectMeta.resourceVersion tracks when an object was last
-  updated, not how up-to-date the object is when served.
-- **Continue Token, Exact:** Return data at the resource version of the initial paginated list
-  call. The returned Continue Tokens are responsible for keeping track of the initially provided
-  resource version for all paginated list calls after the initial paginated list call.
--->
-- **不老于指定版本：** 返回至少比所提供的 `resourceVersion` 还要新的数据。
-  优选最新的可用数据，不过最终提供的可能是不老于所给 `resourceVersion` 的任何版本。
-  对于发给能够正确处理 `resourceVersionMatch` 参数的服务器的 LIST 请求，此语义
-  保证 `ListMeta` 中的 `resourceVersion` 不老于请求的 `resourceVersion`，不过
-  不对列表条目之 `ObjectMeta` 的 `resourceVersion` 提供任何保证。
-  这是因为 `ObjectMeta.resourceVersion` 所跟踪的是列表条目对象上次更新的时间，
-  而不是对象被返回时是否是最新。
-
-- **确定版本：** 返回精确匹配所给资源版本的数据。如果所指定的 resourceVersion
-  的数据不可用，服务器会响应 HTTP 410 "Gone"。
-  对于发送给能够正确处理 `resourceVersionMatch` 参数的服务器的 LIST 请求而言，
-  此语义会保证 ListMeta 中的 `resourceVersion` 与所请求的 `resourceVersion`
-  匹配， 不过不对列表条目之 `ObjectMeta` 的 `resourceVersion` 提供任何保证。
-  这是因为 `ObjectMeta.resourceVersion` 所跟踪的是列表条目对象上次更新的时间，
-  而不是对象被返回时是否是最新。
-
-- **Continue 令牌、精确匹配：** 返回原先带分页参数的 LIST 调用中指定的资源版本的数据。
-  在最初的带分页参数的 LIST 调用之后，所有分页式的 LIST 调用都使用所返回的 Continue
-  令牌来跟踪最初提供的资源版本，
-
-<!--
-For watch, the semantics of resource version are:
--->
-对于 WATCH 操作而言，资源版本的语义如下：
-
-**WATCH：**
-
-<!--
-{{< table caption="resourceVersion for watch" >}}
-
-| resourceVersion unset               | resourceVersion="0"        | resourceVersion="{value other than 0}" |
-|-------------------------------------|----------------------------|----------------------------------------|
-| Get State and Start at Most Recent  | Get State and Start at Any | Start at Exact                         |
-
-{{< /table >}}
--->
-
-{{< table caption="watch 操作的 resourceVersion 设置" >}}
-
-| resourceVersion 未设置    | resourceVersion="0"      | resourceVersion="\<非零值\>" |
-|---------------------------|--------------------------|------------------------------|
-| 读取状态并从最新版本开始  | 读取状态并从任意版本开始 | 从指定版本开始               |
-
-{{< /table >}}
-
-<!--
-The meaning of the watch semantics are:
-
-- **Get State and Start at Most Recent:** Start a watch at the most recent
-  resource version, which must be consistent (i.e. served from etcd via a
-  quorum read). To establish initial state, the watch begins with synthetic
-  "Added" events of all resources instances that exist at the starting resource
-  version. All following watch events are for all changes that occurred after
-  the resource version the watch started at.
--->
-WATCH 操作语义的含义如下：
-
-- **读取状态并从最新版本开始：** 从最新的资源版本开始 WATCH 操作。这里的
-  最新版本必须是一致的（即通过票选读操作从 etcd 中取出）。为了建立初始状态，
-  WATCH 首先会处理一组合成的 "Added" 事件，这些事件涵盖在初始资源版本中存在
-  的所有资源实例。
-  所有后续的 WATCH 事件都是关于 WATCH 开始时所处资源版本之后发生的变更。
-
-<!--
-- **Get State and Start at Any:** Warning: Watches initialize this way may
-  return arbitrarily stale data! Please review this semantic before using it,
-  and favor the other semantics where possible. Start a watch at any resource
-  version, the most recent resource version available is preferred, but not
-  required; any starting resource version is allowed. It is possible for the
-  watch to start at a much older resource version that the client has previously
-  observed, particularly in high availability configurations, due to partitions
-  or stale caches. Clients that cannot tolerate this should not start a watch
-  with this semantic. To establish initial state, the watch begins with
-  synthetic "Added" events for all resources instances that exist at the
-  starting resource version. All following watch events are for all changes that
-  occurred after the resource version the watch started at.
--->
-- **读取状态并从任意版本开始：** 警告：通过这种方式初始化的 WATCH 操作可能会
-  返回任何状态的停滞数据。请在使用此语义之前执行复核，并在可能的情况下采用其他
-  语义。此语义会从任意资源版本开始执行 WATCH 操作，优选最新的可用的资源版本，
-  不过不是必须的；采用任何资源版本作为起始版本都是被允许的。
-  WATCH 操作有可能起始于客户端已经观测到的很老的版本。在高可用配置环境中，因为
-  网络分裂或者高速缓存未及时更新的原因都会造成此现象。
-  如果客户端不能容忍这种不一致性，就不要使用此语义来启动 WATCH 操作。
-  为了建立初始状态，WATCH 首先会处理一组合成的 "Added" 事件，这些事件涵盖在
-  初始资源版本中存在的所有资源实例。
-  所有后续的 WATCH 事件都是关于 WATCH 开始时所处资源版本之后发生的变更。
-
-<!--
-- **Start at Exact:** Start a watch at an exact resource version. The watch
-  events are for all changes after the provided resource version. Unlike "Get
-  State and Start at Most Recent" and "Get State and Start at Any", the watch is
-  not started with synthetic "Added" events for the provided resource version.
-  The client is assumed to already have the initial state at the starting
-  resource version since the client provided the resource version.
--->
-- **从指定版本开始：** 从某确切资源版本开始执行 WATCH 操作。WATCH 事件都是
-  关于 WATCH 开始时所处资源版本之后发生的变更。与前面两种语义不同，WATCH 操作
-  开始的时候不会生成或处理为所提供资源版本合成的 "Added" 事件。
-  我们假定客户端既然能够提供确切资源版本，就应该已经拥有了起始资源版本对应的初始状态。
-
-<!--
-### "410 Gone" responses
-
-Servers are not required to serve all older resource versions and may return a
-HTTP `410 (Gone)` status code if a client requests a resourceVersion older
-than the server has retained. Clients must be able to tolerate `410 (Gone)`
-responses. See [Efficient detection of
-changes](#efficient-detection-of-changes) for details on how to handle `410
-(Gone)` responses when watching resources.
-
-If you request a a resourceVersion outside the applicable limit then,
-depending on whether a request is served from cache or not, the API server may
-reply with a `410 Gone` HTTP response.
--->
-### "410 Gone" 响应     {#410-gone-responses}
-
-服务器不需要提供所有老的资源版本，在客户端请求的是早于服务器端所保留版本的
-`resourceVersion` 时，可以返回 HTTP `410 (Gone)` 状态码。
-客户端必须能够容忍 `410 (Gone)` 响应。
-参阅[高效检测变更](#efficient-detection-of-changes)以了解如何在监测资源时
-处理 `410 (Gone)` 响应。
-
-如果所请求的 `resourceVersion` 超出了可应用的 `limit`，那么取决于请求是否
-是通过高速缓存来满足的，API 服务器可能会返回一个 `410 Gone` HTTP 响应。
-
-<!--
-### Unavailable resource versions
-
-Servers are not required to serve unrecognized resource versions. List and Get requests for unrecognized resource versions may wait briefly for the resource version to become available, should timeout with a `504 (Gateway Timeout)` if the provided resource versions does not become available in a reasonable amount of time, and may respond with a `Retry-After` response header indicating how many seconds a client should wait before retrying the request. Currently the kube-apiserver also identifies these responses with a "Too large resource version" message. Watch requests for a unrecognized resource version may wait indefinitely (until the request timeout) for the resource version to become available.
--->
-### 不可用的资源版本  {#unavailable-resource-versions}
-
-服务器不必未无法识别的资源版本提供服务。针对无法识别的资源版本的 LIST 和 GET 请求
-可能会短暂等待，以期资源版本可用。如果所给的资源版本在一定的时间段内仍未变得
-可用，服务器应该超时并返回 `504 (Gateway Timeout)`，且可在响应中添加
-`Retry-After` 响应头部字段，标明客户端在再次尝试之前应该等待多少秒钟。
-目前，`kube-apiserver` 也能使用 `Too large resource version（资源版本过高）`
-消息来标识这类响应。针对某无法识别的资源版本的 WATCH 操作可能会无限期
-（直到请求超时）地等待下去，直到资源版本可用。
-
diff --git a/content/zh/docs/setup/learning-environment/_index.md b/content/zh/docs/setup/learning-environment/_index.md
deleted file mode 100644
index f68e52a439..0000000000
--- a/content/zh/docs/setup/learning-environment/_index.md
+++ /dev/null
@@ -1,51 +0,0 @@
----
-title: 学习环境
-weight: 20
----
-
-<!--
-{{/* There is a Netlify redirect from this page to /docs/tasks/tools/ */}}
-{{/* This page content only exists to provide a navigation stub */}}
-{{/* and to protect in case that redirect is one day removed. */}}
-
-{{/* If you're localizing this page, you only need to copy the front matter */}}
-{{/* and add a redirect into "/static/_redirects", for YOUR localization. */}}
--->
-
-## kind
-
-<!--
-[`kind`](https://kind.sigs.k8s.io/docs/) lets you run Kubernetes on
-your local computer. This tool requires that you have
-[Docker](https://docs.docker.com/get-docker/) installed and configured.
-
-The kind [Quick Start](https://kind.sigs.k8s.io/docs/user/quick-start/) page
-shows you what you need to do to get up and running with kind.
--->
-你可以使用 [`kind`](https://kind.sigs.k8s.io/docs/) 来在本地计算机上运行 Kubernetes。
-此工具要求你已经安装并配置了 [Docker](https://docs.docker.com/get-docker/)。
-
-kind [快速入门](https://kind.sigs.k8s.io/docs/user/quick-start/)页面
-为你展示了如何开始使用 kind 的相关信息。 
-
-## minikube
-
-<!--
-Like `kind`, [`minikube`](https://minikube.sigs.k8s.io/) is a tool that lets you run Kubernetes
-locally. `minikube` runs a single-node Kubernetes cluster on your personal
-computer (including Windows, macOS and Linux PCs) so that you can try out
-Kubernetes, or for daily development work.
-
-You can follow the official
-[Get Started!](https://minikube.sigs.k8s.io/docs/start/) guide if your focus is
-on getting the tool installed.
--->
-与 `kind` 类似，[`minikube`](https://minikube.sigs.k8s.io/) 是一个允许你在
-本地运行 Kubernetes 的工具。`minikube` 在你的个人计算机上运行一个单节点的
-Kubernetes 集群（包括 Windows、macOS 和 Linux PC 机），这样你可以尝试
-Kubernetes 或者执行每天的开发工作。
-
-如果你所关注的是如何安装该工具，可以查阅官方的
-[Get Started!](https://minikube.sigs.k8s.io/docs/start/)
-文档。
-
diff --git a/content/zh/docs/setup/production-environment/container-runtimes.md b/content/zh/docs/setup/production-environment/container-runtimes.md
deleted file mode 100644
index 655db08c84..0000000000
--- a/content/zh/docs/setup/production-environment/container-runtimes.md
+++ /dev/null
@@ -1,696 +0,0 @@
----
-title: 容器运行时
-content_type: concept
-weight: 20
----
-<!--
-reviewers:
-- vincepri
-- bart0sh
-title: Container runtimes
-content_type: concept
-weight: 20
--->
-
-<!-- overview -->
-
-<!-- 
-You need to install a
-{{< glossary_tooltip text="container runtime" term_id="container-runtime" >}}
-into each node in the cluster so that Pods can run there. This page outlines
-what is involved and describes related tasks for setting up nodes.
- -->
-你需要在集群内每个节点上安装一个
-{{< glossary_tooltip text="容器运行时" term_id="container-runtime" >}}
-以使 Pod 可以运行在上面。本文概述了所涉及的内容并描述了与节点设置相关的任务。
-
-<!-- body -->
-
-<!-- 
-This page lists details for using several common container runtimes with
-Kubernetes, on Linux:
- -->
-本文列出了在 Linux 上结合 Kubernetes 使用的几种通用容器运行时的详细信息： 
-
-- [containerd](#containerd)
-- [CRI-O](#cri-o)
-- [Docker](#docker)
-
-<!-- 
-{{< note >}}
-For other operating systems, look for documentation specific to your platform.
-{{< /note >}}
- -->
-提示：对于其他操作系统，请查阅特定于你所使用平台的相关文档。
-
-<!--
-## Cgroup drivers
--->
-## Cgroup 驱动程序
-
-<!--
-Control groups are used to constrain resources that are allocated to processes.
-
-When [systemd](https://www.freedesktop.org/wiki/Software/systemd/) is chosen as the init
-system for a Linux distribution, the init process generates and consumes a root control group
-(`cgroup`) and acts as a cgroup manager.
-Systemd has a tight integration with cgroups and allocates a cgroup per systemd unit. It's possible
-to configure your container runtime and the kubelet to use `cgroupfs`. Using `cgroupfs` alongside
-systemd means that there will be two different cgroup managers.
--->
-控制组用来约束分配给进程的资源。
-
-当某个 Linux 系统发行版使用 [systemd](https://www.freedesktop.org/wiki/Software/systemd/)
-作为其初始化系统时，初始化进程会生成并使用一个 root 控制组 (`cgroup`), 并充当 cgroup 管理器。
-Systemd 与 cgroup 集成紧密，并将为每个 systemd 单元分配一个 cgroup。
-你也可以配置容器运行时和 kubelet 使用 `cgroupfs`。
-连同 systemd 一起使用 `cgroupfs` 意味着将有两个不同的 cgroup 管理器。
-
-<!--
-A single cgroup manager simplifies the view of what resources are being allocated
-and will by default have a more consistent view of the available and in-use resources.
-When there are two cgroup managers on a system, you end up with two views of those resources.
-In the field, people have reported cases where nodes that are configured to use `cgroupfs`
-for the kubelet and Docker, but `systemd` for the rest of the processes, become unstable under
-resource pressure.
--->
-单个 cgroup 管理器将简化分配资源的视图，并且默认情况下将对可用资源和使用
-中的资源具有更一致的视图。
-当有两个管理器共存于一个系统中时，最终将对这些资源产生两种视图。
-在此领域人们已经报告过一些案例，某些节点配置让 kubelet 和 docker 使用
-`cgroupfs`，而节点上运行的其余进程则使用 systemd; 这类节点在资源压力下
-会变得不稳定。
-
-<!--
-Changing the settings such that your container runtime and kubelet use `systemd` as the cgroup driver
-stabilized the system. To configure this for Docker, set `native.cgroupdriver=systemd`.
--->
-更改设置，令容器运行时和 kubelet 使用 `systemd` 作为 cgroup 驱动，以此使系统更为稳定。
-对于 Docker, 设置 `native.cgroupdriver=systemd` 选项。
-
-<!--
-{{< caution >}}
-Changing the cgroup driver of a Node that has joined a cluster is a sensitive operation. 
-If the kubelet has created Pods using the semantics of one cgroup driver, changing the container
-runtime to another cgroup driver can cause errors when trying to re-create the Pod sandbox
-for such existing Pods. Restarting the kubelet may not solve such errors.
-
-If you have automation that makes it feasible, replace the node with another using the updated
-configuration, or reinstall it using automation.
-{{< /caution >}}
--->
-注意：更改已加入集群的节点的 cgroup 驱动是一项敏感的操作。
-如果 kubelet 已经使用某 cgroup 驱动的语义创建了 pod，更改运行时以使用
-别的 cgroup 驱动，当为现有 Pods 重新创建 PodSandbox 时会产生错误。
-重启 kubelet 也可能无法解决此类问题。
-如果你有切实可行的自动化方案，使用其他已更新配置的节点来替换该节点，
-或者使用自动化方案来重新安装。
-
-<!--
-## Cgroup v2
-
-Cgroup v2 is the next version of the cgroup Linux API.  Differently than cgroup v1, there is a single
-hierarchy instead of a different one for each controller.
--->
-## Cgroup v2
-Cgroup v2 是 cgroup Linux API 的下一个版本。与 cgroup v1 不同的是，
-Cgroup v2 只有一个层次结构，而不是每个控制器有一个不同的层次结构。
-
-<!--
-The new version offers several improvements over cgroup v1, some of these improvements are:
-
-- cleaner and easier to use API
-- safe sub-tree delegation to containers
-- newer features like Pressure Stall Information
--->
-新版本对 cgroup v1 进行了多项改进，其中一些改进是：
-
-- 更简洁、更易于使用的 API
-- 可将安全子树委派给容器
-- 更新的功能，如压力失速信息（Pressure Stall Information）
-
-<!--
-Even if the kernel supports a hybrid configuration where some controllers are managed by cgroup v1
-and some others by cgroup v2, Kubernetes supports only the same cgroup version to manage all the
-controllers.
-
-If systemd doesn't use cgroup v2 by default, you can configure the system to use it by adding
-`systemd.unified_cgroup_hierarchy=1` to the kernel command line.
--->
-尽管内核支持混合配置，即其中一些控制器由 cgroup v1 管理，另一些由 cgroup v2 管理，
-Kubernetes 仅支持使用同一 cgroup 版本来管理所有控制器。
-
-如果 systemd 默认不使用 cgroup v2，你可以通过在内核命令行中添加 
-`systemd.unified_cgroup_hierarchy=1` 来配置系统去使用它。
-
-```shell
-# dnf install -y grubby && \
-  sudo grubby \
-  --update-kernel=ALL \
-  --args=”systemd.unified_cgroup_hierarchy=1"
-```
-
-<!--
-To apply the configuration, it is necessary to reboot the node.
-
-There should not be any noticeable difference in the user experience when switching to cgroup v2, unless
-users are accessing the cgroup file system directly, either on the node or from within the containers.
-
-In order to use it, cgroup v2 must be supported by the CRI runtime as well.
--->
-要应用配置，必须重新启动节点。
-
-切换到 cgroup v2 时，用户体验不应有任何明显差异，
-除非用户直接在节点上或在容器内访问 cgroup 文件系统。
-为了使用它，CRI 运行时也必须支持 cgroup v2。
-
-<!-- 
-### Migrating to the `systemd` driver in kubeadm managed clusters
--->
-### 将 kubeadm 托管的集群迁移到 `systemd` 驱动
-
-<!-- 
-Follow this [Migration guide](/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver)
-if you wish to migrate to the `systemd` cgroup driver in existing kubeadm managed clusters.
--->
-如果你想迁移到现有 kubeadm 托管集群中的 `systemd` cgroup 驱动程序，
-遵循此[迁移指南](/zh/docs/tasks/administer-cluster/kubeadm/configure-cgroup-driver)。
-
-<!-- 
-## Container runtimes
- -->
-## 容器运行时
-
-{{% thirdparty-content %}}
-
-### containerd
-
-<!--
-This section contains the necessary steps to use containerd as CRI runtime.
-
-Use the following commands to install Containerd on your system:
-
-Install and configure prerequisites:
--->
-本节包含使用 containerd 作为 CRI 运行时的必要步骤。
-
-使用以下命令在系统上安装 Containerd：
-
-安装和配置的先决条件：
-
-```shell
-cat <<EOF | sudo tee /etc/modules-load.d/containerd.conf
-overlay
-br_netfilter
-EOF
-
-sudo modprobe overlay
-sudo modprobe br_netfilter
-
-# 设置必需的 sysctl 参数，这些参数在重新启动后仍然存在。
-cat <<EOF | sudo tee /etc/sysctl.d/99-kubernetes-cri.conf
-net.bridge.bridge-nf-call-iptables  = 1
-net.ipv4.ip_forward                 = 1
-net.bridge.bridge-nf-call-ip6tables = 1
-EOF
-
-# 应用 sysctl 参数而无需重新启动
-sudo sysctl --system
-```
-
-<!--
-Install containerd:
--->
-安装 containerd:
-
-{{< tabs name="tab-cri-containerd-installation" >}}
-{{% tab name="Linux" %}}
-
-<!--
-1. Install the `containerd.io` package from the official Docker repositories.
-   Instructions for setting up the Docker repository for your respective Linux distribution and
-   installing the `containerd.io` package can be found at
-   [Install Docker Engine](https://docs.docker.com/engine/install/#server).
--->
-1. 从官方Docker仓库安装 `containerd.io` 软件包。可以在
-   [安装 Docker 引擎](https://docs.docker.com/engine/install/#server)
-   中找到有关为各自的 Linux 发行版设置 Docker 存储库和安装 `containerd.io`
-   软件包的说明。
-
-<!--
-2. Configure containerd:
--->
-2. 配置 containerd：
-
-   ```shell
-   sudo mkdir -p /etc/containerd
-   containerd config default | sudo tee /etc/containerd/config.toml
-   ```
-
-<!--
-3. Restart containerd:
--->
-3. 重新启动 containerd:
-
-   ```shell
-   sudo systemctl restart containerd
-   ```
-
-{{% /tab %}}
-{{% tab name="Windows (PowerShell)" %}}
-
-<!--
-Start a Powershell session, set `$Version` to the desired version (ex: `$Version=1.4.3`),
-and then run the following commands:
--->
-启动 Powershell 会话，将 `$Version` 设置为所需的版本（例如：`$Version=1.4.3`），
-然后运行以下命令：
-
-<!--
-1. Download containerd:
--->
-1. 下载 containerd：
-
-   ```powershell
-   curl.exe -L https://github.com/containerd/containerd/releases/download/v$Version/containerd-$Version-windows-amd64.tar.gz -o containerd-windows-amd64.tar.gz
-   tar.exe xvf .\containerd-windows-amd64.tar.gz
-   ```
-<!--
-2. Extract and configure:
--->
-2. 提取并配置：
-
-   ```powershell
-   Copy-Item -Path ".\bin\" -Destination "$Env:ProgramFiles\containerd" -Recurse -Force
-   cd $Env:ProgramFiles\containerd\
-   .\containerd.exe config default | Out-File config.toml -Encoding ascii
-
-   # 检查配置。根据你的配置，可能需要调整：
-   # - sandbox_image (Kubernetes pause 镜像)
-   # - cni bin_dir 和 conf_dir 位置
-   Get-Content config.toml
-
-   # (可选 - 不过强烈建议) 禁止 Windows Defender 扫描 containerd
-   Add-MpPreference -ExclusionProcess "$Env:ProgramFiles\containerd\containerd.exe"
-   ```
-<!--
-3. Start containerd:
--->
-3. 启动 containerd:
-
-   ```powershell
-   .\containerd.exe --register-service
-   Start-Service containerd
-   ```
-
-{{% /tab %}}
-{{< /tabs >}}
-
-<!-- 
-#### Using the `systemd` cgroup driver {#containerd-systemd}
---> 
-
-#### 使用 `systemd` cgroup 驱动程序 {#containerd-systemd}
-
-<!-- 
-To use the `systemd` cgroup driver in `/etc/containerd/config.toml` with `runc`, set
--->
-结合 `runc` 使用 `systemd` cgroup 驱动，在 `/etc/containerd/config.toml` 中设置 
-
-```
-[plugins."io.containerd.grpc.v1.cri".containerd.runtimes.runc]
-  ...
-  [plugins."io.containerd.grpc.v1.cri".containerd.runtimes.runc.options]
-    SystemdCgroup = true
-```
-
-<!--
-If you apply this change make sure to restart containerd again:
--->
-如果您应用此更改，请确保再次重新启动 containerd：
-
-```shell
-sudo systemctl restart containerd
-```
-
-<!--
-When using kubeadm, manually configure the
-[cgroup driver for kubelet](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#configure-cgroup-driver-used-by-kubelet-on-control-plane-node).
--->
-当使用 kubeadm 时，请手动配置
-[kubelet 的 cgroup 驱动](/zh/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#configure-cgroup-driver-used-by-kubelet-on-control-plane-node).
-
-### CRI-O
-
-<!--
-This section contains the necessary steps to install CRI-O as a container runtime.
-
-Use the following commands to install CRI-O on your system:
--->
-本节包含安装 CRI-O 作为容器运行时的必要步骤。
-
-使用以下命令在系统中安装 CRI-O：
-
-{{< note >}}
-<!--
-The CRI-O major and minor versions must match the Kubernetes major and minor versions.
-For more information, see the [CRI-O compatibility matrix](https://github.com/cri-o/cri-o#compatibility-matrix-cri-o--kubernetes).
--->
-CRI-O 的主要以及次要版本必须与 Kubernetes 的主要和次要版本相匹配。
-更多信息请查阅
-[CRI-O 兼容性列表](https://github.com/cri-o/cri-o#compatibility-matrix-cri-o--kubernetes)。
-{{< /note >}}
-
-<!--
-Install and configure prerequisites:
--->
-安装并配置前置环境：
-
-```shell
-
-# 创建 .conf 文件以在启动时加载模块
-cat <<EOF | sudo tee /etc/modules-load.d/crio.conf
-overlay
-br_netfilter
-EOF
-
-sudo modprobe overlay
-sudo modprobe br_netfilter
-
-# 配置 sysctl 参数，这些配置在重启之后仍然起作用
-cat <<EOF | sudo tee /etc/sysctl.d/99-kubernetes-cri.conf
-net.bridge.bridge-nf-call-iptables  = 1
-net.ipv4.ip_forward                 = 1
-net.bridge.bridge-nf-call-ip6tables = 1
-EOF
-
-sudo sysctl --system
-```
-
-{{< tabs name="tab-cri-cri-o-installation" >}}
-{{% tab name="Debian" %}}
-
-<!-- 
-To install CRI-O on the following operating systems, set the environment variable `OS`
-to the appropriate value from the following table:
-
-| Operating system | `$OS`             |
-| ---------------- | ----------------- |
-| Debian Unstable  | `Debian_Unstable` |
-| Debian Testing   | `Debian_Testing`  |
-
-<br />
-Then, set `$VERSION` to the CRI-O version that matches your Kubernetes version.
-For instance, if you want to install CRI-O 1.20, set `VERSION=1.20`.
-You can pin your installation to a specific release.
-To install version 1.20.0, set `VERSION=1.20:1.20.0`.
-<br />
-
-Then run
--->
-在下列操作系统上安装 CRI-O, 使用下表中合适的值设置环境变量 `OS`:
-
-| 操作系统          | `$OS`             |
-| ---------------- | ----------------- |
-| Debian Unstable  | `Debian_Unstable` |
-| Debian Testing   | `Debian_Testing`  |
-
-<br />
-然后，将 `$VERSION` 设置为与你的 Kubernetes 相匹配的 CRI-O 版本。
-例如，如果你要安装 CRI-O 1.20, 请设置 `VERSION=1.20`.
-你也可以安装一个特定的发行版本。
-例如要安装 1.20.0 版本，设置 `VERSION=1.20.0:1.20.0`.
-<br />
-
-然后执行
-
-```shell
-cat <<EOF | sudo tee /etc/apt/sources.list.d/devel:kubic:libcontainers:stable.list
-deb https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/$OS/ /
-EOF
-cat <<EOF | sudo tee /etc/apt/sources.list.d/devel:kubic:libcontainers:stable:cri-o:$VERSION.list
-deb http://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable:/cri-o:/$VERSION/$OS/ /
-EOF
-
-curl -L https://download.opensuse.org/repositories/devel:kubic:libcontainers:stable:cri-o:$VERSION/$OS/Release.key | sudo apt-key --keyring /etc/apt/trusted.gpg.d/libcontainers.gpg add -
-curl -L https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/$OS/Release.key | sudo apt-key --keyring /etc/apt/trusted.gpg.d/libcontainers.gpg add -
-
-sudo apt-get update
-sudo apt-get install cri-o cri-o-runc
-```
-
-{{% /tab %}}
-
-{{% tab name="Ubuntu" %}}
-
-<!-- 
-To install on the following operating systems, set the environment variable `OS`
-to the appropriate field in the following table:
-
-| Operating system | `$OS`             |
-| ---------------- | ----------------- |
-| Ubuntu 20.04     | `xUbuntu_20.04`   |
-| Ubuntu 19.10     | `xUbuntu_19.10`   |
-| Ubuntu 19.04     | `xUbuntu_19.04`   |
-| Ubuntu 18.04     | `xUbuntu_18.04`   |
-
-<br />
-Then, set `$VERSION` to the CRI-O version that matches your Kubernetes version.
-For instance, if you want to install CRI-O 1.20, set `VERSION=1.20`.
-You can pin your installation to a specific release.
-To install version 1.20.0, set `VERSION=1.20:1.20.0`.
-<br />
-
-Then run
--->
-在下列操作系统上安装 CRI-O, 使用下表中合适的值设置环境变量 `OS`:
-
-| 操作系统          | `$OS`             |
-| ---------------- | ----------------- |
-| Ubuntu 20.04     | `xUbuntu_20.04`   |
-| Ubuntu 19.10     | `xUbuntu_19.10`   |
-| Ubuntu 19.04     | `xUbuntu_19.04`   |
-| Ubuntu 18.04     | `xUbuntu_18.04`   |
-
-<br />
-然后，将 `$VERSION` 设置为与你的 Kubernetes 相匹配的 CRI-O 版本。
-例如，如果你要安装 CRI-O 1.20, 请设置 `VERSION=1.20`.
-你也可以安装一个特定的发行版本。
-例如要安装 1.20.0 版本，设置 `VERSION=1.20:1.20.0`.
-<br />
-
-然后执行
-
-```shell
-cat <<EOF | sudo tee /etc/apt/sources.list.d/devel:kubic:libcontainers:stable.list
-deb https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/$OS/ /
-EOF
-cat <<EOF | sudo tee /etc/apt/sources.list.d/devel:kubic:libcontainers:stable:cri-o:$VERSION.list
-deb http://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable:/cri-o:/$VERSION/$OS/ /
-EOF
-
-curl -L https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/$OS/Release.key | sudo apt-key --keyring /etc/apt/trusted.gpg.d/libcontainers.gpg add -
-curl -L https://download.opensuse.org/repositories/devel:kubic:libcontainers:stable:cri-o:$VERSION/$OS/Release.key | sudo apt-key --keyring /etc/apt/trusted.gpg.d/libcontainers-cri-o.gpg add -
-
-sudo apt-get update
-sudo apt-get install cri-o cri-o-runc
-```
- 
-{{% /tab %}}
-
-{{% tab name="CentOS" %}}
-
-<!-- 
-To install on the following operating systems, set the environment variable `OS`
-to the appropriate field in the following table:
-
-| Operating system | `$OS`             |
-| ---------------- | ----------------- |
-| Centos 8         | `CentOS_8`        |
-| Centos 8 Stream  | `CentOS_8_Stream` |
-| Centos 7         | `CentOS_7`        |
-
-<br />
-Then, set `$VERSION` to the CRI-O version that matches your Kubernetes version.
-For instance, if you want to install CRI-O 1.20, set `VERSION=1.20`.
-You can pin your installation to a specific release.
-To install version 1.20.0, set `VERSION=1.20:1.20.0`.
-<br />
-
-Then run
--->
-在下列操作系统上安装 CRI-O, 使用下表中合适的值设置环境变量 `OS`:
-
-| 操作系统          | `$OS`             |
-| ---------------- | ----------------- |
-| Centos 8         | `CentOS_8`        |
-| Centos 8 Stream  | `CentOS_8_Stream` |
-| Centos 7         | `CentOS_7`        |
-
-<br />
-然后，将 `$VERSION` 设置为与你的 Kubernetes 相匹配的 CRI-O 版本。
-例如，如果你要安装 CRI-O 1.20, 请设置 `VERSION=1.20`.
-你也可以安装一个特定的发行版本。
-例如要安装 1.20.0 版本，设置 `VERSION=1.20:1.20.0`.
-<br />
-
-然后执行
-
-```shell
-sudo curl -L -o /etc/yum.repos.d/devel:kubic:libcontainers:stable.repo https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/$OS/devel:kubic:libcontainers:stable.repo
-sudo curl -L -o /etc/yum.repos.d/devel:kubic:libcontainers:stable:cri-o:$VERSION.repo https://download.opensuse.org/repositories/devel:kubic:libcontainers:stable:cri-o:$VERSION/$OS/devel:kubic:libcontainers:stable:cri-o:$VERSION.repo
-sudo yum install cri-o
-```
-
-{{% /tab %}}
-
-{{% tab name="openSUSE Tumbleweed" %}}
-
-```shell
-sudo zypper install cri-o
-```
-{{% /tab %}}
-{{% tab name="Fedora" %}}
-
-<!-- 
-Set `$VERSION` to the CRI-O version that matches your Kubernetes version.
-For instance, if you want to install CRI-O 1.20, `VERSION=1.20`.
-
-You can find available versions with:
-```shell
-sudo dnf module list cri-o
-```
-CRI-O does not support pinning to specific releases on Fedora.
-
-Then run
--->
-将 `$VERSION` 设置为与你的 Kubernetes 相匹配的 CRI-O 版本。
-例如，如果要安装 CRI-O 1.20，请设置 `VERSION=1.20`。
-你可以用下列命令查找可用的版本：
-
-```shell
-sudo dnf module list cri-o
-```
-
-CRI-O 不支持在 Fedora 上固定到特定的版本。
-
-然后执行
-
-```shell
-sudo dnf module enable cri-o:$VERSION
-sudo dnf install cri-o --now
-```
-
-{{% /tab %}}
-{{< /tabs >}}
-
-<!-- 
-Start CRI-O:
--->
-启动 CRI-O：
-
-```shell
-sudo systemctl daemon-reload
-sudo systemctl enable crio --now
-```
-
-<!--
-Refer to the [CRI-O installation guide](https://github.com/cri-o/cri-o/blob/master/install.md)
-for more information.
- -->
-参阅[CRI-O 安装指南](https://github.com/cri-o/cri-o/blob/master/install.md)
-了解进一步的详细信息。
-
-<!--
-#### cgroup driver
-
-CRI-O uses the systemd cgroup driver per default. To switch to the `cgroupfs`
-cgroup driver, either edit `/etc/crio/crio.conf` or place a drop-in
-configuration in `/etc/crio/crio.conf.d/02-cgroup-manager.conf`, for example:
--->
-#### cgroup 驱动
-
-默认情况下，CRI-O 使用 systemd cgroup 驱动程序。要切换到 `cgroupfs`
-驱动程序，或者编辑 `/ etc / crio / crio.conf` 或放置一个插件
-在 `/etc/crio/crio.conf.d/02-cgroup-manager.conf` 中的配置，例如：
-
-```toml
-[crio.runtime]
-conmon_cgroup = "pod"
-cgroup_manager = "cgroupfs"
-```
-
-<!-- 
-Please also note the changed `conmon_cgroup`, which has to be set to the value
-`pod` when using CRI-O with `cgroupfs`. It is generally necessary to keep the
-cgroup driver configuration of the kubelet (usually done via kubeadm) and CRI-O
-in sync.
- -->
-另请注意更改后的 `conmon_cgroup`，将 CRI-O 与 `cgroupfs` 一起使用时，
-必须将其设置为 `pod`。通常有必要保持 kubelet 的 cgroup 驱动程序配置
-（通常透过 kubeadm 完成）和 CRI-O 一致。
-
-### Docker
-
-<!--
-1. On each of your nodes, install the Docker for your Linux distribution as per
-   [Install Docker Engine](https://docs.docker.com/engine/install/#server).
-   You can find the latest validated version of Docker in this
-   [dependencies](https://git.k8s.io/kubernetes/build/dependencies.yaml) file.
- -->
-1. 在每个节点上，根据[安装 Docker 引擎](https://docs.docker.com/engine/install/#server)
-   为你的 Linux 发行版安装 Docker。
-   你可以在此文件中找到最新的经过验证的 Docker 版本
-   [依赖关系](https://git.k8s.io/kubernetes/build/dependencies.yaml)。
-
-<!--
-2. Configure the Docker daemon, in particular to use systemd for the management of the container’s cgroups.
- -->
-2. 配置 Docker 守护程序，尤其是使用 systemd 来管理容器的 cgroup。
-
-   ```shell
-   sudo mkdir /etc/docker
-   cat <<EOF | sudo tee /etc/docker/daemon.json
-   {
-     "exec-opts": ["native.cgroupdriver=systemd"],
-     "log-driver": "json-file",
-     "log-opts": {
-       "max-size": "100m"
-     },
-     "storage-driver": "overlay2"
-   }
-   EOF
-   ```
-
-   {{< note >}}
-   <!--
-   `overlay2` is the preferred storage driver for systems running Linux kernel version 4.0 or higher,
-   or RHEL or CentOS using version 3.10.0-514 and above.
-   -->
-   对于运行 Linux 内核版本 4.0 或更高版本，或使用 3.10.0-51 及更高版本的 RHEL
-   或 CentOS 的系统，`overlay2`是首选的存储驱动程序。
-   {{< /note >}}
-
-<!--
-3. Restart Docker and enable on boot:
--->
-3. 重新启动 Docker 并在启动时启用：
-
-   ```shell
-   sudo systemctl enable docker
-   sudo systemctl daemon-reload
-   sudo systemctl restart docker
-   ```
-
-{{< note >}}
-<!--
-For more information refer to
-  - [Configure the Docker daemon](https://docs.docker.com/config/daemon/)
-  - [Control Docker with systemd](https://docs.docker.com/config/daemon/systemd/)
--->
-有关更多信息，请参阅
-
-- [配置 Docker 守护程序](https://docs.docker.com/config/daemon/)
-- [使用 systemd 控制 Docker](https://docs.docker.com/config/daemon/systemd/)
-{{< /note >}}
-
diff --git a/content/zh/docs/setup/production-environment/tools/kubeadm/high-availability.md b/content/zh/docs/setup/production-environment/tools/kubeadm/high-availability.md
deleted file mode 100644
index f389dacf5f..0000000000
--- a/content/zh/docs/setup/production-environment/tools/kubeadm/high-availability.md
+++ /dev/null
@@ -1,663 +0,0 @@
----
-title: 利用 kubeadm 创建高可用集群
-content_type: task
-weight: 60
----
-
-<!--
-reviewers:
-- sig-cluster-lifecycle
-title: Creating Highly Available clusters with kubeadm
-content_type: task
-weight: 60
--->
-
-<!-- overview -->
-
-<!--
-This page explains two different approaches to setting up a highly available Kubernetes
-cluster using kubeadm:
-
-- With stacked control plane nodes. This approach requires less infrastructure. The etcd members
-and control plane nodes are co-located.
-- With an external etcd cluster. This approach requires more infrastructure. The
-control plane nodes and etcd members are separated.
-
--->
-本文讲述了使用 kubeadm 设置一个高可用的 Kubernetes 集群的两种不同方式：
-
-- 使用具有堆叠的控制平面节点。这种方法所需基础设施较少。etcd 成员和控制平面节点位于同一位置。
-- 使用外部集群。这种方法所需基础设施较多。控制平面的节点和 etcd 成员是分开的。
-
-<!--
-Before proceeding, you should carefully consider which approach best meets the needs of your applications
-and environment. [This comparison topic](/docs/setup/production-environment/tools/kubeadm/ha-topology/) outlines the advantages and disadvantages of each.
-
-If you encounter issues with setting up the HA cluster, please provide us with feedback
-in the kubeadm [issue tracker](https://github.com/kubernetes/kubeadm/issues/new).
-
-See also [The upgrade documentation](/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade-1-15).
--->
-在下一步之前，你应该仔细考虑哪种方法更好的满足你的应用程序和环境的需求。 
-[这是对比文档](/zh/docs/setup/production-environment/tools/kubeadm/ha-topology/) 讲述了每种方法的优缺点。
-
-如果你在安装 HA 集群时遇到问题，请在 kubeadm [问题跟踪](https://github.com/kubernetes/kubeadm/issues/new)里向我们提供反馈。
-
-你也可以阅读 [升级文件](/zh/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/)
-<!--
-This page does not address running your cluster on a cloud provider. In a cloud
-environment, neither approach documented here works with Service objects of type
-LoadBalancer, or with dynamic PersistentVolumes.
--->
-{{< caution >}}
-这篇文档没有讲述在云提供商上运行集群的问题。在云环境中，此处记录的方法不适用于类型为 LoadBalancer 的服务对象，或者具有动态的 PersistentVolumes。
-{{< /caution >}}
-
-
-
-## {{% heading "prerequisites" %}}
-
-
-<!--
-For both methods you need this infrastructure:
-
-- Three machines that meet [kubeadm's minimum requirements](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#before-you-begin) for
-  the control-plane nodes
-- Three machines that meet [kubeadm's minimum
-  requirements](/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#before-you-begin) for the workers
-- Full network connectivity between all machines in the cluster (public or
-  private network)
-- sudo privileges on all machines
-- SSH access from one device to all nodes in the system
-- `kubeadm` and `kubelet` installed on all machines. `kubectl` is optional.
--->
-对于这两种方法，你都需要以下基础设施：
-
-- 配置满足 [kubeadm 的最低要求](/zh/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#before-you-begin)
-  的三台机器作为控制面节点
-- 配置满足 [kubeadm 的最低要求](/zh/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#before-you-begin)
-  的三台机器作为工作节点
-- 在集群中，确保所有计算机之间存在全网络连接（公网或私网）
-- 在所有机器上具有 sudo 权限
-- 从某台设备通过 SSH 访问系统中所有节点的能力
-- 所有机器上已经安装 `kubeadm` 和 `kubelet`，`kubectl` 是可选的。
-
-<!--
-For the external etcd cluster only, you also need:
-
-- Three additional machines for etcd members
--->
-仅对于外部 etcd 集群来说，你还需要：
-
-- 给 etcd 成员使用的另外三台机器
-
-<!-- steps -->
-
-<!--
-## First steps for both methods
-
-### Create load balancer for kube-apiserver
--->
-## 这两种方法的第一步
-
-### 为 kube-apiserver 创建负载均衡器
-
-{{< note >}}
-<!--
-There are many configurations for load balancers. The following example is only one
-option. Your cluster requirements may need a different configuration.
--->
-使用负载均衡器需要许多配置。你的集群搭建可能需要不同的配置。
-下面的例子只是其中的一方面配置。
-{{< /note >}}
-
-<!--
-1.  Create a kube-apiserver load balancer with a name that resolves to DNS.
-
-    - In a cloud environment you should place your control plane nodes behind a TCP
-      forwarding load balancer. This load balancer distributes traffic to all
-      healthy control plane nodes in its target list. The health check for
-      an apiserver is a TCP check on the port the kube-apiserver listens on
-      (default value `:6443`).
-
-    - It is not recommended to use an IP address directly in a cloud environment.
-
-    - The load balancer must be able to communicate with all control plane nodes
-      on the apiserver port. It must also allow incoming traffic on its
-      listening port.
-
-    - Make sure the address of the load balancer always matches
-      the address of kubeadm's `ControlPlaneEndpoint`.
-
-    - Read the [Options for Software Load Balancing](https://github.com/kubernetes/kubeadm/blob/master/docs/ha-considerations.md#options-for-software-load-balancing)
-      guide for more details.
--->
-1.  创建一个名为 kube-apiserver 的负载均衡器解析 DNS。
-
-    - 在云环境中，应该将控制平面节点放置在 TCP 后面转发负载平衡。
-      该负载均衡器将流量分配给目标列表中所有运行状况良好的控制平面节点。
-      API 服务器的健康检查是在 kube-apiserver 的监听端口（默认值 `:6443`）
-      上进行的一个 TCP 检查。
-
-    - 不建议在云环境中直接使用 IP 地址。
-
-    - 负载均衡器必须能够在 API 服务器端口上与所有控制平面节点通信。
-      它还必须允许其监听端口的入站流量。
-
-    - 确保负载均衡器的地址始终匹配 kubeadm 的 `ControlPlaneEndpoint` 地址。
-
-    - 阅读[软件负载平衡选项指南](https://github.com/kubernetes/kubeadm/blob/master/docs/ha-considerations.md#options-for-software-load-balancing)
-      以获取更多详细信息。
-
-<!--
-1.  Add the first control plane nodes to the load balancer and test the
-    connection:
-
-    ```sh
-    nc -v LOAD_BALANCER_IP PORT
-    ```
-
-    - A connection refused error is expected because the apiserver is not yet
-      running. A timeout, however, means the load balancer cannot communicate
-      with the control plane node. If a timeout occurs, reconfigure the load
-      balancer to communicate with the control plane node.
-
-1.  Add the remaining control plane nodes to the load balancer target group.
--->
-2.  添加第一个控制平面节点到负载均衡器并测试连接：
-
-    ```shell
-    nc -v LOAD_BALANCER_IP PORT
-    ```
-
-    - 由于 apiserver 尚未运行，预期会出现一个连接拒绝错误。
-      然而超时意味着负载均衡器不能和控制平面节点通信。
-      如果发生超时，请重新配置负载均衡器与控制平面节点进行通信。
-
-3.  将其余控制平面节点添加到负载均衡器目标组。
-
-<!--
-## Stacked control plane and etcd nodes
-
-### Steps for the first control plane node
--->
-## 使用堆控制平面和 etcd 节点
-
-### 控制平面节点的第一步
-
-<!--
-1.  Initialize the control plane:
-
-    ```sh
-    sudo kubeadm init --control-plane-endpoint "LOAD_BALANCER_DNS:LOAD_BALANCER_PORT" --upload-certs
-    ```
-    - You can use the `--kubernetes-version` flag to set the Kubernetes version to use.
-    It is recommended that the versions of kubeadm, kubelet, kubectl and Kubernetes match.
-    - The `--control-plane-endpoint` flag should be set to the address or DNS and port of the load balancer.
-
-    - The `--upload-certs` flag is used to upload the certificates that should be shared
-    across all the control-plane instances to the cluster. If instead, you prefer to copy certs across
-    control-plane nodes manually or using automation tools, please remove this flag and refer to [Manual
-    certificate distribution](#manual-certs) section bellow.
--->
-1.  初始化控制平面：
-
-    ```shell
-    sudo kubeadm init --control-plane-endpoint "LOAD_BALANCER_DNS:LOAD_BALANCER_PORT" --upload-certs
-    ```
-
-    - 你可以使用 `--kubernetes-version` 标志来设置要使用的 Kubernetes 版本。
-      建议将 kubeadm、kebelet、kubectl 和 Kubernetes 的版本匹配。
-    - 这个 `--control-plane-endpoint` 标志应该被设置成负载均衡器的地址或 DNS 和端口。
-    - 这个 `--upload-certs` 标志用来将在所有控制平面实例之间的共享证书上传到集群。
-      如果正好相反，你更喜欢手动地通过控制平面节点或者使用自动化
-      工具复制证书，请删除此标志并参考如下部分[证书分配手册](#manual-certs)。
-
-    {{< note >}}
-    <!--
-    The `kubeadm init` flags `--config` and `--certificate-key` cannot be mixed, therefore if you want
-    to use the [kubeadm configuration](https://godoc.org/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta3) you must add the `certificateKey` field in the appropriate config locations (under `InitConfiguration` and `JoinConfiguration: controlPlane`).
-    -->
-    标志 `kubeadm init`、`--config` 和 `--certificate-key` 不能混合使用，
-    因此如果你要使用
-    [kubeadm 配置](https://godoc.org/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta3)，
-    你必须在相应的配置文件
-    （位于 `InitConfiguration` 和 `JoinConfiguration: controlPlane`）添加 `certificateKey` 字段。
-    {{< /note >}}
-
-    {{< note >}}
-    <!--
-    Some CNI network plugins like Calico require a CIDR such as `192.168.0.0/16` and
-    some like Weave do not. See the [CNI network documentation](/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/#pod-network).
-    To add a pod CIDR pass the flag `--pod-network-cidr`, or if you are using a kubeadm configuration file
-    set the `podSubnet` field under the `networking` object of `ClusterConfiguration`.
-    -->
-    一些 CNI 网络插件如 Calico 需要 CIDR 例如 `192.168.0.0/16` 和一些像 Weave 没有。参考
-    [CNI 网络文档](/zh/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/#pod-network)。
-    通过传递 `--pod-network-cidr` 标志添加 pod CIDR，或者你可以使用 kubeadm
-    配置文件，在 `ClusterConfiguration` 的 `networking` 对象下设置 `podSubnet` 字段。
-    {{< /note >}}
-
-    <!--
-    - The output looks similar to:
-    -->
-    - 输出类似于：
-
-      ```sh
-      ...
-      You can now join any number of control-plane node by running the following command on each as a root:
-      kubeadm join 192.168.0.200:6443 --token 9vr73a.a8uxyaju799qwdjv --discovery-token-ca-cert-hash sha256:7c2e69131a36ae2a042a339b33381c6d0d43887e2de83720eff5359e26aec866 --control-plane --certificate-key f8902e114ef118304e561c3ecd4d0b543adc226b7a07f675f56564185ffe0c07
-
-      Please note that the certificate-key gives access to cluster sensitive data, keep it secret!
-      As a safeguard, uploaded-certs will be deleted in two hours; If necessary, you can use kubeadm init phase upload-certs to reload certs afterward.
-
-      Then you can join any number of worker nodes by running the following on each as root:
-        kubeadm join 192.168.0.200:6443 --token 9vr73a.a8uxyaju799qwdjv --discovery-token-ca-cert-hash sha256:7c2e69131a36ae2a042a339b33381c6d0d43887e2de83720eff5359e26aec866
-      ```
-
-    <!--
-    - Copy this output to a text file. You will need it later to join control plane and worker nodes to the cluster.
-    - When `--upload-certs` is used with `kubeadm init`, the certificates of the primary control plane
-    are encrypted and uploaded in the `kubeadm-certs` Secret.
-    - To re-upload the certificates and generate a new decryption key, use the following command on a control plane
-    node that is already joined to the cluster:
-    -->
-    - 将此输出复制到文本文件。 稍后你将需要它来将控制平面节点和工作节点加入集群。
-    - 当 `--upload-certs` 与 `kubeadm init` 一起使用时，主控制平面的证书
-      被加密并上传到 `kubeadm-certs` Secret 中。
-    - 要重新上传证书并生成新的解密密钥，请在已加入集群节点的控制平面上使用以下命令：
-
-      ```shell
-      sudo kubeadm init phase upload-certs --upload-certs
-      ```
-    <!--
-    - You can also specify a custom `--certificate-key` during `init` that can later be used by `join`.
-      To generate such a key you can use the following command:
-    -->
-    - 你还可以在 `init` 期间指定自定义的 `--certificate-key`，以后可以由 `join` 使用。
-      要生成这样的密钥，可以使用以下命令：
-
-      ```shell
-      kubeadm certs certificate-key
-      ```
-
-    {{< note >}}
-    <!--
-    The `kubeadm-certs` Secret and decryption key expire after two hours.
-    -->
-    `kubeadm-certs` 密钥和解密密钥会在两个小时后失效。
-    {{< /note >}}
-
-    {{< caution >}}
-    <!--
-    As stated in the command output, the certificate key gives access to cluster sensitive data, keep it secret!
-    -->
-    正如命令输出中所述，证书密钥可访问群集敏感数据。请妥善保管！
-    {{< /caution >}}
-
-<!--
-1.  Apply the CNI plugin of your choice:
-    [Follow these instructions](/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/#pod-network) to install the CNI provider. Make sure the configuration corresponds to the Pod CIDR specified in the kubeadm configuration file if applicable.
-
-    In this example we are using Weave Net:
--->
-2.  应用你所选择的 CNI 插件：
-    [请遵循以下指示](/zh/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/#pod-network)
-    安装 CNI 提供程序。如果适用，请确保配置与 kubeadm 配置文件中指定的 Pod
-    CIDR 相对应。
-
-    在此示例中，我们使用 Weave Net：
-
-    ```shell
-    kubectl apply -f "https://cloud.weave.works/k8s/net?k8s-version=$(kubectl version | base64 | tr -d '\n')"
-    ```
-
-<!--
-1.  Type the following and watch the pods of the control plane components get started:
--->
-3.  输入以下内容，并查看控制平面组件的 Pods 启动：
-
-    ```shell
-    kubectl get pod -n kube-system -w
-    ```
-
-<!--
-### Steps for the rest of the control plane nodes
--->
-### 其余控制平面节点的步骤
-
-{{< note >}}
-<!--
-Since kubeadm version 1.15 you can join multiple control-plane nodes in parallel.
-Prior to this version, you must join new control plane nodes sequentially, only after
-the first node has finished initializing.
--->
-从 kubeadm 1.15 版本开始，你可以并行加入多个控制平面节点。
-在此版本之前，你必须在第一个节点初始化后才能依序的增加新的控制平面节点。
-{{< /note >}}
-
-<!--
-For each additional control plane node you should:
-
-1.  Execute the join command that was previously given to you by the `kubeadm init` output on the first node.
-    It should look something like this:
-
-    ```sh
-    sudo kubeadm join 192.168.0.200:6443 --token 9vr73a.a8uxyaju799qwdjv --discovery-token-ca-cert-hash sha256:7c2e69131a36ae2a042a339b33381c6d0d43887e2de83720eff5359e26aec866 --control-plane --certificate-key f8902e114ef118304e561c3ecd4d0b543adc226b7a07f675f56564185ffe0c07
-    ```
-
-    - The `--control-plane` flag tells `kubeadm join` to create a new control plane.
-    - The `--certificate-key ...` will cause the control plane certificates to be downloaded
-    from the `kubeadm-certs` Secret in the cluster and be decrypted using the given key.
-
--->
-对于每个其他控制平面节点，你应该：
-
-1.  执行先前由第一个节点上的 `kubeadm init` 输出提供给你的 join 命令。
-    它看起来应该像这样：
-
-    ```sh
-    sudo kubeadm join 192.168.0.200:6443 --token 9vr73a.a8uxyaju799qwdjv --discovery-token-ca-cert-hash sha256:7c2e69131a36ae2a042a339b33381c6d0d43887e2de83720eff5359e26aec866 --control-plane --certificate-key f8902e114ef118304e561c3ecd4d0b543adc226b7a07f675f56564185ffe0c07
-    ```
-
-    - 这个 `--control-plane` 命令通知 `kubeadm join` 创建一个新的控制平面。
-    - `--certificate-key ...` 将导致从集群中的 `kubeadm-certs` Secret 下载
-      控制平面证书并使用给定的密钥进行解密。
-
-<!--
-## External etcd nodes
-
-Setting up a cluster with external etcd nodes is similar to the procedure used for stacked etcd
-with the exception that you should setup etcd first, and you should pass the etcd information
-in the kubeadm config file.
--->
-## 外部 etcd 节点
-
-使用外部 etcd 节点设置集群类似于用于堆叠 etcd 的过程，
-不同之处在于你应该首先设置 etcd，并在 kubeadm 配置文件中传递 etcd 信息。
-
-<!--
-### Set up the etcd cluster
-
-1.  Follow [these instructions](/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm/) to set up the etcd cluster.
-
-1.  Setup SSH as described [here](#manual-certs).
-
-1.  Copy the following files from any etcd node in the cluster to the first control plane node:
-
-    ```sh
-    export CONTROL_PLANE="ubuntu@10.0.0.7"
-    scp /etc/kubernetes/pki/etcd/ca.crt "${CONTROL_PLANE}":
-    scp /etc/kubernetes/pki/apiserver-etcd-client.crt "${CONTROL_PLANE}":
-    scp /etc/kubernetes/pki/apiserver-etcd-client.key "${CONTROL_PLANE}":
-    ```
-
-    - Replace the value of `CONTROL_PLANE` with the `user@host` of the first control-plane machine.
--->
-### 设置 ectd 集群
-
-1.  按照 [这些指示](/zh/docs/setup/production-environment/tools/kubeadm/setup-ha-etcd-with-kubeadm/) 
-    去设置 etcd 集群。
-
-1.  根据[这里](#manual-certs)的描述配置 SSH。
-
-1.  将以下文件从集群中的任何 etcd 节点复制到第一个控制平面节点：
-
-    ```shell
-    export CONTROL_PLANE="ubuntu@10.0.0.7"
-    scp /etc/kubernetes/pki/etcd/ca.crt "${CONTROL_PLANE}":
-    scp /etc/kubernetes/pki/apiserver-etcd-client.crt "${CONTROL_PLANE}":
-    scp /etc/kubernetes/pki/apiserver-etcd-client.key "${CONTROL_PLANE}":
-    ```
-
-    - 用第一台控制平面机的 `user@host` 替换 `CONTROL_PLANE` 的值。
-
-<!--
-### Set up the first control plane node
-
-1.  Create a file called `kubeadm-config.yaml` with the following contents:
-
-    ```yaml
-    apiVersion: kubeadm.k8s.io/v1beta3
-    kind: ClusterConfiguration
-    kubernetesVersion: stable
-    controlPlaneEndpoint: "LOAD_BALANCER_DNS:LOAD_BALANCER_PORT"
-    etcd:
-        external:
-            endpoints:
-            - https://ETCD_0_IP:2379
-            - https://ETCD_1_IP:2379
-            - https://ETCD_2_IP:2379
-            caFile: /etc/kubernetes/pki/etcd/ca.crt
-            certFile: /etc/kubernetes/pki/apiserver-etcd-client.crt
-            keyFile: /etc/kubernetes/pki/apiserver-etcd-client.key
-    ```
--->
-
-### 设置第一个控制平面节点
-
-1.  用以下内容创建一个名为 `kubeadm-config.yaml` 的文件：
-
-    ```yaml
-    apiVersion: kubeadm.k8s.io/v1beta2
-    kind: ClusterConfiguration
-    kubernetesVersion: stable
-    controlPlaneEndpoint: "LOAD_BALANCER_DNS:LOAD_BALANCER_PORT"
-    etcd:
-        external:
-            endpoints:
-            - https://ETCD_0_IP:2379
-            - https://ETCD_1_IP:2379
-            - https://ETCD_2_IP:2379
-            caFile: /etc/kubernetes/pki/etcd/ca.crt
-            certFile: /etc/kubernetes/pki/apiserver-etcd-client.crt
-            keyFile: /etc/kubernetes/pki/apiserver-etcd-client.key
-    ```
-
-    {{< note >}}
-    <!--
-    The difference between stacked etcd and external etcd here is that the external etcd setup requires
-    a configuration file with the etcd endpoints under the `external` object for `etcd`.
-    In the case of the stacked etcd topology this is managed automatically.
-    -->
-    这里的内部（stacked） etcd 和外部 etcd 之前的区别在于设置外部 etcd
-    需要一个 `etcd` 的 `external` 对象下带有 etcd 端点的配置文件。
-    如果是内部 etcd，是自动管理的。
-    {{< /note >}}
-
-    <!--
-    -  Replace the following variables in the config template with the appropriate values for your cluster:
-    -->
-    - 在你的集群中，将配置模板中的以下变量替换为适当值：
-
-      - `LOAD_BALANCER_DNS`
-      - `LOAD_BALANCER_PORT`
-      - `ETCD_0_IP`
-      - `ETCD_1_IP`
-      - `ETCD_2_IP`
-
-<!--
-The following steps are similar to the stacked etcd setup:
--->
-以下的步骤与设置内置 etcd 的集群是相似的：
-
-<!--
-1.  Run `sudo kubeadm init --config kubeadm-config.yaml --upload-certs` on this node.
-
-1.  Write the output join commands that are returned to a text file for later use.
-
-1.  Apply the CNI plugin of your choice. The given example is for Weave Net:
--->
-1. 在节点上运行 `sudo kubeadm init --config kubeadm-config.yaml --upload-certs` 命令。
-
-1. 记下输出的 join 命令，这些命令将在以后使用。
-
-1. 应用你选择的 CNI 插件。以下示例适用于 Weave Net：
-
-   ```shell
-   kubectl apply -f "https://cloud.weave.works/k8s/net?k8s-version=$(kubectl version | base64 | tr -d '\n')"
-   ```
-
-<!--
-### Steps for the rest of the control plane nodes
-
-The steps are the same as for the stacked etcd setup:
-
-- Make sure the first control plane node is fully initialized.
-- Join each control plane node with the join command you saved to a text file. It's recommended
-to join the control plane nodes one at a time.
-- Don't forget that the decryption key from `--certificate-key` expires after two hours, by default.
--->
-### 其他控制平面节点的步骤
-
-步骤与设置内置 etcd 相同：
-
-- 确保第一个控制平面节点已完全初始化。
-- 使用保存到文本文件的 join 命令将每个控制平面节点连接在一起。
-  建议一次加入一个控制平面节点。
-- 不要忘记默认情况下，`--certificate-key` 中的解密秘钥会在两个小时后过期。
-
-<!--
-## Common tasks after bootstrapping control plane
-
-### Install workers
--->
-## 列举控制平面之后的常见任务
-
-### 安装工作节点
-
-<!--
-Worker nodes can be joined to the cluster with the command you stored previously
-as the output from the `kubeadm init` command:
--->
-你可以使用之前存储的 `kubeadm init` 命令的输出将工作节点加入集群中：
-
-```sh
-sudo kubeadm join 192.168.0.200:6443 --token 9vr73a.a8uxyaju799qwdjv --discovery-token-ca-cert-hash sha256:7c2e69131a36ae2a042a339b33381c6d0d43887e2de83720eff5359e26aec866
-```
-
-<!--
-## Manual certificate distribution {#manual-certs}
-
-If you choose to not use `kubeadm init` with the `--upload-certs` flag this means that
-you are going to have to manually copy the certificates from the primary control plane node to the
-joining control plane nodes.
-
-There are many ways to do this. In the following example we are using `ssh` and `scp`:
-
-SSH is required if you want to control all nodes from a single machine.
--->
-## 手动证书分发 {#manual-certs}
-
-如果你选择不将 `kubeadm init` 与 `--upload-certs` 命令一起使用，
-则意味着你将必须手动将证书从主控制平面节点复制到
-将要加入的控制平面节点上。
-
-有许多方法可以实现这种操作。在下面的例子中我们使用 `ssh` 和 `scp`：
-
-如果要在单独的一台计算机控制所有节点，则需要 SSH。
-
-<!--
-1. Enable ssh-agent on your main device that has access to all other nodes in
-   the system:
--->
-1. 在你的主设备上启用 ssh-agent，要求该设备能访问系统中的所有其他节点：
-
-   ```shell
-   eval $(ssh-agent)
-   ```
-
-<!--
-1. Add your SSH identity to the session:
--->
-2. 将 SSH 身份添加到会话中：
-
-   ```shell
-   ssh-add ~/.ssh/path_to_private_key
-   ```
-
-<!--
-1. SSH between nodes to check that the connection is working correctly.
--->
-3. 检查节点间的 SSH 以确保连接是正常运行的
-
-   <!--
-   - When you SSH to any node, make sure to add the `-A` flag:
-   -->
-   - SSH 到任何节点时，请确保添加 `-A` 标志：
-
-     ```shell
-     ssh -A 10.0.0.7
-     ```
-
-   <!--
-   - When using sudo on any node, make sure to preserve the environment so SSH
-     forwarding works:
-   -->
-   - 当在任何节点上使用 sudo 时，请确保保持环境变量设置，以便 SSH
-     转发能够正常工作：
-
-     ```shell
-     sudo -E -s
-     ```
-<!--
-1. After configuring SSH on all the nodes you should run the following script on the first control plane node after
-   running `kubeadm init`. This script will copy the certificates from the first control plane node to the other
-   control plane nodes:
--->
-4. 在所有节点上配置 SSH 之后，你应该在运行过 `kubeadm init` 命令的第一个
-   控制平面节点上运行以下脚本。
-   该脚本会将证书从第一个控制平面节点复制到另一个控制平面节点：
-
-   <!--
-   In the following example, replace `CONTROL_PLANE_IPS` with the IP addresses of the
-   other control plane nodes.
-   -->
-   在以下示例中，用其他控制平面节点的 IP 地址替换 `CONTROL_PLANE_IPS`。
-
-   ```sh
-   USER=ubuntu # 可定制
-   CONTROL_PLANE_IPS="10.0.0.7 10.0.0.8"
-   for host in ${CONTROL_PLANE_IPS}; do
-       scp /etc/kubernetes/pki/ca.crt "${USER}"@$host:
-       scp /etc/kubernetes/pki/ca.key "${USER}"@$host:
-       scp /etc/kubernetes/pki/sa.key "${USER}"@$host:
-       scp /etc/kubernetes/pki/sa.pub "${USER}"@$host:
-       scp /etc/kubernetes/pki/front-proxy-ca.crt "${USER}"@$host:
-       scp /etc/kubernetes/pki/front-proxy-ca.key "${USER}"@$host:
-       scp /etc/kubernetes/pki/etcd/ca.crt "${USER}"@$host:etcd-ca.crt
-       scp /etc/kubernetes/pki/etcd/ca.key "${USER}"@$host:etcd-ca.key
-   done
-   ```
-
-   {{< caution >}}
-   <!--
-   Copy only the certificates in the above list. kubeadm will take care of generating the rest of the certificates
-   with the required SANs for the joining control-plane instances. If you copy all the certificates by mistake,
-   the creation of additional nodes could fail due to a lack of required SANs.
-   -->
-   只需要复制上面列表中的证书。kubeadm 将负责生成其余证书以及加入控制平面实例所需的 SAN。
-   如果你错误地复制了所有证书，由于缺少所需的 SAN，创建其他节点可能会失败。
-   {{< /caution >}}
-
-<!--
-1. Then on each joining control plane node you have to run the following script before running `kubeadm join`.
-   This script will move the previously copied certificates from the home directory to `/etc/kubernetes/pki`:
--->
-5. 然后，在每个即将加入集群的控制平面节点上，你必须先运行以下脚本，然后
-   再运行 `kubeadm join`。
-   该脚本会将先前复制的证书从主目录移动到 `/etc/kubernetes/pki`：
-
-   ```shell
-   USER=ubuntu # 可定制
-   mkdir -p /etc/kubernetes/pki/etcd
-   mv /home/${USER}/ca.crt /etc/kubernetes/pki/
-   mv /home/${USER}/ca.key /etc/kubernetes/pki/
-   mv /home/${USER}/sa.pub /etc/kubernetes/pki/
-   mv /home/${USER}/sa.key /etc/kubernetes/pki/
-   mv /home/${USER}/front-proxy-ca.crt /etc/kubernetes/pki/
-   mv /home/${USER}/front-proxy-ca.key /etc/kubernetes/pki/
-   mv /home/${USER}/etcd-ca.crt /etc/kubernetes/pki/etcd/ca.crt
-   mv /home/${USER}/etcd-ca.key /etc/kubernetes/pki/etcd/ca.key
-   ```
-
diff --git a/content/zh/docs/setup/production-environment/windows/_index.md b/content/zh/docs/setup/production-environment/windows/_index.md
deleted file mode 100644
index 79e0cab400..0000000000
--- a/content/zh/docs/setup/production-environment/windows/_index.md
+++ /dev/null
@@ -1,4 +0,0 @@
----
-title: "Windows Kubernetes"
-weight: 50
----
diff --git a/content/zh/docs/setup/production-environment/windows/intro-windows-in-kubernetes.md b/content/zh/docs/setup/production-environment/windows/intro-windows-in-kubernetes.md
deleted file mode 100644
index 286ede85a4..0000000000
--- a/content/zh/docs/setup/production-environment/windows/intro-windows-in-kubernetes.md
+++ /dev/null
@@ -1,2359 +0,0 @@
----
-title: Kubernetes 对 Windows 的支持
-content_type: concept
-weight: 65
----
-<!--
-reviewers:
-- jayunit100
-- jsturtevant
-- marosset
-- perithompson
-title: Intro to Windows support in Kubernetes
-content_type: concept
-weight: 65
--->
-
-<!-- overview -->
-
-<!--
-Windows applications constitute a large portion of the services and
-applications that run in many organizations.
-[Windows containers](https://aka.ms/windowscontainers) provide a modern way to
-encapsulate processes and package dependencies, making it easier to use DevOps
-practices and follow cloud native patterns for Windows applications.
-Kubernetes has become the defacto standard container orchestrator, and the
-release of Kubernetes 1.14 includes production support for scheduling Windows
-containers on Windows nodes in a Kubernetes cluster, enabling a vast ecosystem
-of Windows applications to leverage the power of Kubernetes. Organizations
-with investments in Windows-based applications and Linux-based applications
-don't have to look for separate orchestrators to manage their workloads,
-leading to increased operational efficiencies across their deployments,
-regardless of operating system.
--->
-在很多组织中，其服务和应用的很大比例是 Windows 应用。
-[Windows 容器](https://aka.ms/windowscontainers)提供了一种对进程和包依赖关系
-进行封装的现代方式，这使得用户更容易采用 DevOps 实践，令 Windows 应用同样遵从
-云原生模式。
-Kubernetes 已经成为事实上的标准容器编排器，Kubernetes 1.14 发行版本中包含了将
-Windows 容器调度到 Kubernetes 集群中 Windows 节点上的生产级支持，从而使得巨大
-的 Windows 应用生态圈能够充分利用 Kubernetes 的能力。
-对于同时投入基于 Windows 应用和 Linux 应用的组织而言，他们不必寻找不同的编排系统
-来管理其工作负载，其跨部署的运维效率得以大幅提升，而不必关心所用操作系统。 
-
-<!-- body -->
-
-<!--
-## Windows containers in Kubernetes
-
-To enable the orchestration of Windows containers in Kubernetes, include
-Windows nodes in your existing Linux cluster. Scheduling Windows containers in
-{{< glossary_tooltip text="Pods" term_id="pod" >}} on Kubernetes is similar to
-scheduling Linux-based containers.
--->
-## kubernetes 中的 Windows 容器  {#windows-containers-in-kubernetes}
-
-若要在 Kubernetes 中启用对 Windows 容器的编排，可以在现有的 Linux 集群中
-包含 Windows 节点。在 Kubernetes 上调度 {{< glossary_tooltip text="Pods" term_id="pod" >}}
-中的 Windows 容器与调用基于 Linux 的容器类似。
-
-<!--
-In order to run Windows containers, your Kubernetes cluster must include
-multiple operating systems, with control plane nodes running Linux and workers
-running either Windows or Linux depending on your workload needs. Windows
-Server 2019 is the only Windows operating system supported, enabling
-[Kubernetes Node](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/architecture/architecture.md#the-kubernetes-node)
-on Windows (including kubelet,
-[container runtime](https://docs.microsoft.com/en-us/virtualization/windowscontainers/deploy-containers/containerd),
-and kube-proxy). For a detailed explanation of Windows distribution channels
-see the [Microsoft documentation](https://docs.microsoft.com/en-us/windows-server/get-started-19/servicing-channels-19).
--->
-为了运行 Windows 容器，你的 Kubernetes 集群必须包含多个操作系统，控制面
-节点运行 Linux，工作节点则可以根据负载需要运行 Windows 或 Linux。
-Windows Server 2019 是唯一被支持的 Windows 操作系统，在 Windows 上启用
-[Kubernetes 节点](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/architecture/architecture.md#the-kubernetes-node)
-支持（包括 kubelet, [容器运行时](https://docs.microsoft.com/en-us/virtualization/windowscontainers/deploy-containers/containerd)、
-以及 kube-proxy）。关于 Windows 发行版渠道的详细讨论，可参见
-[Microsoft 文档](https://docs.microsoft.com/en-us/windows-server/get-started-19/servicing-channels-19)。
-
-<!--
-The Kubernetes control plane, including the
-[master components](/docs/concepts/overview/components/),
-continues to run on Linux. 
-There are no plans to have a Windows-only Kubernetes cluster.
--->
-{{< note >}}
-Kubernetes 控制面，包括[主控组件](/zh/docs/concepts/overview/components/)，
-继续在 Linux 上运行。
-目前没有支持完全是 Windows 节点的 Kubernetes 集群的计划。
-{{< /note >}}
-
-<!--
-In this document, when we talk about Windows containers we mean Windows
-containers with process isolation. Windows containers with
-[Hyper-V isolation](https://docs.microsoft.com/en-us/virtualization/windowscontainers/manage-containers/hyperv-container)
-is planned for a future release.
--->
-{{< note >}}
-在本文中，当我们讨论 Windows 容器时，我们所指的是具有进程隔离能力的 Windows
-容器。具有 [Hyper-V 隔离能力](https://docs.microsoft.com/en-us/virtualization/windowscontainers/manage-containers/hyperv-container)
-的 Windows 容器计划在将来发行版本中推出。
-{{< /note >}}
-
-<!--
-## Supported Functionality and Limitations
-
-### Supported Functionality
-
-#### Windows OS Version Support
-
-Refer to the following table for Windows operating system support in
-Kubernetes. A single heterogeneous Kubernetes cluster can have both Windows
-and Linux worker nodes. Windows containers have to be scheduled on Windows
-nodes and Linux containers on Linux nodes.
--->
-## 支持的功能与局限性  {#supported-functionality-and-limitations}
-
-### 支持的功能    {#supported-functionality}
-
-#### Windows 操作系统版本支持    {#windows-os-version-support}
-
-参考下面的表格，了解 Kubernetes 中支持的 Windows 操作系统。
-同一个异构的 Kubernetes 集群中可以同时包含 Windows 和 Linux 工作节点。
-Windows 容器仅能调度到 Windows 节点，Linux 容器则只能调度到 Linux 节点。
-
-| Kubernetes 版本 | Windows Server LTSC 版本 | Windows Server SAC 版本 |
-| --- | --- | --- | --- |
-| *Kubernetes v1.20* | Windows Server 2019 | Windows Server ver 1909, Windows Server ver 2004 |
-| *Kubernetes v1.21* | Windows Server 2019 | Windows Server ver 2004, Windows Server ver 20H2 |
-| *Kubernetes v1.22* | Windows Server 2019 | Windows Server ver 2004, Windows Server ver 20H2 |
-
-<!--
-Information on the different Windows Server servicing channels including their
-support models can be found at
-[Windows Server servicing channels](https://docs.microsoft.com/en-us/windows-server/get-started-19/servicing-channels-19).
--->
-关于不同的 Windows Server 版本的服务渠道，包括其支持模式等相关信息可以在
-[Windows Server servicing channels](https://docs.microsoft.com/en-us/windows-server/get-started-19/servicing-channels-19)
-找到。
-
-<!--
-We don't expect all Windows customers to update the operating system for their
-apps frequently. Upgrading your applications is what dictates and necessitates
-upgrading or introducing new nodes to the cluster. For the customers that
-chose to upgrade their operating system for containers running on Kubernetes,
-we will offer guidance and step-by-step instructions when we add support for a
-new operating system version. This guidance will include recommended upgrade
-procedures for upgrading user applications together with cluster nodes.
-Windows nodes adhere to Kubernetes
-[version-skew policy](/docs/setup/release/version-skew-policy/) (node to control plane
-versioning) the same way as Linux nodes do today.
--->
-我们并不指望所有 Windows 客户都为其应用频繁地更新操作系统。
-对应用的更新是向集群中引入新代码的根本原因。
-对于想要更新运行于 Kubernetes 之上的容器中操作系统的客户，我们会在添加对新
-操作系统版本的支持时提供指南和分步的操作指令。
-该指南会包含与集群节点一起来升级用户应用的建议升级步骤。
-Windows 节点遵从 Kubernetes
-[版本偏差策略](/zh/docs/setup/release/version-skew-policy/)（节点到控制面的
-版本控制），与 Linux 节点的现行策略相同。
-
-<!--
-The Windows Server Host Operating System is subject to the
-[Windows Server ](https://www.microsoft.com/en-us/cloud-platform/windows-server-pricing)
-licensing. The Windows Container images are subject to the
-[Supplemental License Terms for Windows containers](https://docs.microsoft.com/en-us/virtualization/windowscontainers/images-eula).
--->
-Windows Server 主机操作系统会受
-[Windows Server](https://www.microsoft.com/en-us/cloud-platform/windows-server-pricing)
-授权策略控制。Windows 容器镜像则遵从
-[Windows 容器的补充授权条款](https://docs.microsoft.com/en-us/virtualization/windowscontainers/images-eula)
-约定。
-
-<!--
-Windows containers with process isolation have strict compatibility rules,
-[where the host OS version must match the container base image OS version](https://docs.microsoft.com/en-us/virtualization/windowscontainers/deploy-containers/version-compatibility).
-Once we support Windows containers with Hyper-V isolation in Kubernetes, the
-limitation and compatibility rules will change.
--->
-带进程隔离的 Windows 容器受一些严格的兼容性规则约束，
-[其中宿主 OS 版本必须与容器基准镜像的 OS 版本相同](https://docs.microsoft.com/en-us/virtualization/windowscontainers/deploy-containers/version-compatibility)。
-一旦我们在 Kubernetes 中支持带 Hyper-V 隔离的 Windows 容器，
-这一约束和兼容性规则也会发生改变。
-
-<!--
-#### Pause Image
-
-Kubernetes maintains a multi-architecture image that includes support for Windows.
-For Kubernetes v1.22 the recommended pause image is `k8s.gcr.io/pause:3.5`.
-The [source code](https://github.com/kubernetes/kubernetes/tree/master/build/pause)
-is available on GitHub.
-
-Microsoft maintains a multi-architecture image with Linux and Windows amd64 support at `mcr.microsoft.com/oss/kubernetes/pause:3.5`.
-This image is built from the same source as the Kubernetes maintained image but all of the Windows binaries are [authenticode signed](https://docs.microsoft.com/en-us/windows-hardware/drivers/install/authenticode) by Microsoft.
-The Microsoft maintained image is recommended for production environments when signed binaries are required.
--->
-#### Pause 镜像   {#pause-image}
-
-Kubernetes 维护着一个多体系结构镜像，其中包括对 Windows 的支持。
-对于 Kubernetes v1.22，推荐的 pause 镜像是 `k8s.gcr.io/pause:3.5`。
-[源代码](https://github.com/kubernetes/kubernetes/tree/master/build/pause)可在 GitHub 上找到。
-
-Microsoft 维护了一个支持 Linux 和 Windows amd64 的多体系结构镜像： `mcr.microsoft.com/oss/kubernetes/pause:3.5`。
-此镜像与 Kubernetes 维护的镜像是从同一来源构建，但所有 Windows 二进制文件
-均由 Microsoft [签名](https://docs.microsoft.com/en-us/windows-hardware/drivers/install/authenticode)。
-当生产环境需要被签名的二进制文件时，建议使用 Microsoft 维护的镜像。
-
-<!--
-#### Compute
-
-From an API and kubectl perspective, Windows containers behave in much the
-same way as Linux-based containers. However, there are some notable
-differences in key functionality which are outlined in the
-[limitation section](#limitations).
--->
-#### 计算    {#compute}
-
-从 API 和 kubectl 的角度，Windows 容器的表现在很大程度上与基于 Linux 的容器
-是相同的。不过也有一些与关键功能相关的差别值得注意，这些差别列举于
-[局限性](#limitations)小节中。
-
-<!--
-Key Kubernetes elements work the same way in Windows as they do in Linux. In
-this section, we talk about some of the key workload enablers and how they map
-to Windows.
--->
-关键性的 Kubernetes 元素在 Windows 下与其在 Linux 下工作方式相同。我们在本节中
-讨论一些关键性的负载支撑组件及其在 Windows 中的映射。
-
-* [Pods](/zh/docs/concepts/workloads/pods/)
-
-  <!--
-  A Pod is the basic building block of Kubernetes–the smallest and simplest
-  unit in the Kubernetes object model that you create or deploy. You may not
-  deploy Windows and Linux containers in the same Pod. All containers in a Pod
-  are scheduled onto a single Node where each Node represents a specific
-  platform and architecture. The following Pod capabilities, properties and
-  events are supported with Windows containers:
-  -->
-  Pod 是 Kubernetes 中最基本的构造模块，是 Kubernetes 对象模型中你可以创建或部署的
-  最小、最简单元。你不可以在同一 Pod 中部署 Windows 和 Linux 容器。
-  Pod 中的所有容器都会被调度到同一节点（Node），而每个节点代表的是一种特定的平台
-  和体系结构。Windows 容器支持 Pod 的以下能力、属性和事件：
-
-  <!--
-  * Single or multiple containers per Pod with process isolation and volume sharing
-  * Pod status fields
-  * Readiness and Liveness probes
-  * postStart & preStop container lifecycle events
-  * ConfigMap, Secrets: as environment variables or volumes
-  * EmptyDir
-  * Named pipe host mounts
-  * Resource limits
-  -->
-  * 在带进程隔离和卷共享支持的 Pod 中运行一个或多个容器
-  * Pod 状态字段
-  * 就绪态（Readiness）和活跃性（Liveness）探针
-  * postStart 和 preStop 容器生命周期事件
-  * ConfigMap、Secrets：用作环境变量或卷
-  * emptyDir 卷
-  * 从宿主系统挂载命名管道
-  * 资源限制
-
-* [控制器（Controllers）](/zh/docs/concepts/workloads/controllers/)
-
-  <!--
-  Kubernetes controllers handle the desired state of Pods. The following
-  workload controllers are supported with Windows containers:
-  -->
-  Kubernetes 控制器处理 Pod 的期望状态。Windows 容器支持以下负载控制器：
-
-  * ReplicaSet
-  * ReplicationController
-  * Deployment
-  * StatefulSet
-  * DaemonSet
-  * Job
-  * CronJob
-
-* [服务（Services）](/zh/docs/concepts/services-networking/service/)
-
-  <!--
-  A Kubernetes Service is an abstraction which defines a logical set of Pods
-  and a policy by which to access them - sometimes called a micro-service. You
-  can use services for cross-operating system connectivity. In Windows, services
-  can utilize the following types, properties and capabilities:
-  -->
-  Kubernetes Service 是一种抽象对象，用来定义 Pod 的一个逻辑集合及用来访问这些
-  Pod 的策略。Service 有时也称作微服务（Micro-service）。你可以使用服务来实现
-  跨操作系统的连接。在 Windows 系统中，服务可以使用下面的类型、属性和能力：
-
-  * Service 环境变量
-  * NodePort
-  * ClusterIP
-  * LoadBalancer
-  * ExternalName
-  * 无头（Headless）服务
-
-<!--
-Pods, Controllers and Services are critical elements to managing Windows
-workloads on Kubernetes. However, on their own they are not enough to enable
-the proper lifecycle management of Windows workloads in a dynamic cloud native
-environment. We added support for the following features:
-
-* Pod and container metrics
-* Horizontal Pod Autoscaler support
-* kubectl Exec
-* Resource Quotas
-* Scheduler preemption
--->
-Pods、控制器和服务是在 Kubernetes 上管理 Windows 负载的关键元素。
-不过，在一个动态的云原生环境中，这些元素本身还不足以用来正确管理
-Windows 负载的生命周期。我们为此添加了如下功能特性：
-
-* Pod 和容器的度量（Metrics）
-* 对水平 Pod 自动扩展的支持
-* 对 kubectl exec 命令的支持
-* 资源配额
-* 调度器抢占
-
-<!--
-#### Container Runtime
-
-##### Docker EE
--->
-#### 容器运行时    {#container-runtime}
-
-##### Docker EE
-
-{{< feature-state for_k8s_version="v1.14" state="stable" >}}
-
-<!--
-Docker EE-basic 19.03+ is the recommended container runtime for all Windows
-Server versions. This works with the dockershim code included in the kubelet.
--->
-Docker EE-basic 19.03+ 是建议所有 Windows Server 版本采用的容器运行时。
-该容器运行时能够与 kubelet 中的 dockershim 代码协同工作。
-
-##### CRI-ContainerD
-
-{{< feature-state for_k8s_version="v1.20" state="stable" >}}
-
-<!--
-{{< glossary_tooltip term_id="containerd" text="ContainerD" >}} 1.4.0+ can
-also be used as the container runtime for Windows Kubernetes nodes.
--->
-{{< glossary_tooltip term_id="containerd" text="ContainerD" >}} 1.4.0+
-也可作为 Windows Kubernetes 节点上的容器运行时。
-
-<!--
-#### Persistent Storage
-
-Kubernetes [volumes](/docs/concepts/storage/volumes/) enable complex
-applications, with data persistence and Pod volume sharing requirements, to be
-deployed on Kubernetes. Management of persistent volumes associated with a
-specific storage back-end or protocol includes actions such as:
-provisioning/de-provisioning/resizing of volumes, attaching/detaching a volume
-to/from a Kubernetes node and mounting/dismounting a volume to/from individual
-containers in a pod that needs to persist data. The code implementing these
-volume management actions for a specific storage back-end or protocol is
-shipped in the form of a Kubernetes volume
-[plugin](/docs/concepts/storage/volumes/#types-of-volumes). The following
-broad classes of Kubernetes volume plugins are supported on Windows:
--->
-#### 持久性存储   {#persistent-storage}
-
-使用 Kubernetes [卷](/zh/docs/concepts/storage/volumes/)，对数据持久性和 Pod 卷
-共享有需求的复杂应用也可以部署到 Kubernetes 上。
-管理与特定存储后端或协议相关的持久卷时，相关的操作包括：对卷的配备（Provisioning）、
-去配（De-provisioning）和调整大小，将卷挂接到 Kubernetes 节点或从节点上解除挂接，
-将卷挂载到需要持久数据的 Pod 中的某容器或从容器上卸载。
-负责实现为特定存储后端或协议实现卷管理动作的代码以 Kubernetes 卷
-[插件](/zh/docs/concepts/storage/volumes/#types-of-volumes)的形式发布。
-Windows 支持以下大类的 Kubernetes 卷插件：
-
-<!--
-##### In-Tree Volume Plugins
-
-Code associated with in-tree volume plugins ship as part of the core
-Kubernetes code base. Deployment of in-tree volume plugins do not require
-installation of additional scripts or deployment of separate containerized
-plugin components. These plugins can handle: provisioning/de-provisioning and
-resizing of volumes in the storage backend, attaching/detaching of volumes
-to/from a Kubernetes node and mounting/dismounting a volume to/from individual
-containers in a pod. The following in-tree plugins support Windows nodes:
--->
-##### 树内卷插件   {#in-tree-volume-plugins}
-
-与树内卷插件（In-Tree Volume Plugin）相关的代码都作为核心 Kubernetes 代码基
-的一部分发布。树内卷插件的部署不需要安装额外的脚本，也不需要额外部署独立的
-容器化插件组件。这些插件可以处理：对应存储后端上存储卷的配备、去配和尺寸更改，
-将卷挂接到 Kubernetes 或从其上解挂，以及将卷挂载到 Pod 中各个容器上或从其上
-卸载。以下树内插件支持 Windows 节点：
-
-* [awsElasticBlockStore](/zh/docs/concepts/storage/volumes/#awselasticblockstore)
-* [azureDisk](/zh/docs/concepts/storage/volumes/#azuredisk)
-* [azureFile](/zh/docs/concepts/storage/volumes/#azurefile)
-* [gcePersistentDisk](/zh/docs/concepts/storage/volumes/#gcepersistentdisk)
-* [vsphereVolume](/zh/docs/concepts/storage/volumes/#vspherevolume)
-
-<!--
-##### FlexVolume Plugins
-
-Code associated with [FlexVolume](/docs/concepts/storage/volumes/#flexVolume)
-plugins ship as out-of-tree scripts or binaries that need to be deployed
-directly on the host. FlexVolume plugins handle attaching/detaching of volumes
-to/from a Kubernetes node and mounting/dismounting a volume to/from individual
-containers in a pod. Provisioning/De-provisioning of persistent volumes
-associated with FlexVolume plugins may be handled through an external
-provisioner that is typically separate from the FlexVolume plugins. The
-following FlexVolume
-[plugins](https://github.com/Microsoft/K8s-Storage-Plugins/tree/master/flexvolume/windows),
-deployed as powershell scripts on the host, support Windows nodes:
--->
-##### FlexVolume 插件   {#flexvolume-plugins}
-
-与 [FlexVolume](/zh/docs/concepts/storage/volumes/#flexVolume) 插件相关的代码是作为
-树外（Out-of-tree）脚本或可执行文件来发布的，因此需要在宿主系统上直接部署。
-FlexVolume 插件处理将卷挂接到 Kubernetes 节点或从其上解挂、将卷挂载到 Pod 中
-各个容器上或从其上卸载等操作。对于与 FlexVolume 插件相关联的持久卷的配备和
-去配操作，可以通过外部的配置程序来处理。这类配置程序通常与 FlexVolume 插件
-相分离。下面的 FlexVolume
-[插件](https://github.com/Microsoft/K8s-Storage-Plugins/tree/master/flexvolume/windows)
-可以以 PowerShell 脚本的形式部署到宿主系统上，支持 Windows 节点：
-
-* [SMB](https://github.com/microsoft/K8s-Storage-Plugins/tree/master/flexvolume/windows/plugins/microsoft.com~smb.cmd)
-* [iSCSI](https://github.com/microsoft/K8s-Storage-Plugins/tree/master/flexvolume/windows/plugins/microsoft.com~iscsi.cmd)
-
-<!--
-##### CSI Plugins
--->
-##### CSI 插件   {#csi-plugins}
-
-{{< feature-state for_k8s_version="v1.22" state="stable" >}}
-
-<!--
-Code associated with {{< glossary_tooltip text="CSI" term_id="csi" >}} plugins
-ship as out-of-tree scripts and binaries that are typically distributed as
-container images and deployed using standard Kubernetes constructs like
-DaemonSets and StatefulSets. CSI plugins handle a wide range of volume
-management actions in Kubernetes: provisioning/de-provisioning/resizing of
-volumes, attaching/detaching of volumes to/from a Kubernetes node and
-mounting/dismounting a volume to/from individual containers in a pod,
-backup/restore of persistent data using snapshots and cloning.
--->
-与 {{< glossary_tooltip text="CSI" term_id="csi" >}} 插件相关联的代码作为
-树外脚本和可执行文件来发布且通常发布为容器镜像形式，并使用 DaemonSet 和
-StatefulSet 这类标准的 Kubernetes 构造体来部署。
-CSI 插件处理 Kubernetes 中的很多卷管理操作：对卷的配备、去配和调整大小，
-将卷挂接到 Kubernetes 节点或从节点上解除挂接，将卷挂载到需要持久数据的 Pod
-中的某容器或从容器上卸载，使用快照和克隆来备份或恢复持久数据。
-
-<!--
-CSI plugins communicate with a CSI node plugin which performs the local storage operations.
-On Windows nodes CSI node plugins typically call APIs exposed by the community-managed
-[csi-proxy](https://github.com/kubernetes-csi/csi-proxy) which handles the local storage operations.
-
-Please refer to the deployment guide of the environment where you wish to deploy a Windows CSI plugin
-for further details around installation.
-You may also refer to the following [installation steps](https://github.com/kubernetes-csi/csi-proxy#installation).
--->
-来支持；csi-proxy 是一个社区管理的、独立的可执行文件，需要预安装在每个
-Windows 节点之上。请参考你要部署的 CSI 插件的部署指南以进一步了解其细节。
-
-CSI 插件与执行本地存储操作的 CSI 节点插件通信。
-在 Windows 节点上，CSI 节点插件通常调用处理本地存储操作的 [csi-proxy](https://github.com/kubernetes-csi/csi-proxy) 
-公开的 API, csi-proxy 由社区管理。
-
-有关安装的更多详细信息，请参阅你要部署的 Windows CSI 插件的环境部署指南。
-你也可以参考以下[安装步骤](https://github.com/kubernetes-csi/csi-proxy#installation) 。
-
-<!--
-#### Networking
-
-Networking for Windows containers is exposed through
-[CNI plugins](/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/).
-Windows containers function similarly to virtual machines in regards to
-networking. Each container has a virtual network adapter (vNIC) which is
-connected to a Hyper-V virtual switch (vSwitch). The Host Networking Service
-(HNS) and the Host Compute Service (HCS) work together to create containers
-and attach container vNICs to networks. HCS is responsible for the management
-of containers whereas HNS is responsible for the management of networking
-resources such as:
--->
-#### 联网     {#networking}
-
-Windows 容器的联网是通过
-[CNI 插件](/zh/docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/)
-来暴露出来的。Windows 容器的联网行为与虚拟机的联网行为类似。
-每个容器有一块虚拟的网络适配器（vNIC）连接到 Hyper-V 的虚拟交换机（vSwitch）。
-宿主的联网服务（Host Networking Service，HNS）和宿主计算服务（Host Compute
-Service，HCS）协同工作，创建容器并将容器的虚拟网卡连接到网络上。
-HCS 负责管理容器，HNS 则负责管理网络资源，例如：
-
-<!--
-* Virtual networks (including creation of vSwitches)
-* Endpoints / vNICs
-* Namespaces
-* Policies (Packet encapsulations, Load-balancing rules, ACLs, NAT'ing rules, etc.)
-
-The following service spec types are supported:
--->
-* 虚拟网络（包括创建 vSwitch）
-* 端点（Endpoint）/ vNIC
-* 名字空间（Namespace）
-* 策略（报文封装、负载均衡规则、访问控制列表、网络地址转译规则等等）
-
-支持的服务规约类型如下：
-
-* NodePort
-* ClusterIP
-* LoadBalancer
-* ExternalName
-
-<!--
-##### Network modes
-
-Windows supports five different networking drivers/modes: L2bridge, L2tunnel,
-Overlay, Transparent, and NAT. In a heterogeneous cluster with Windows and
-Linux worker nodes, you need to select a networking solution that is
-compatible on both Windows and Linux. The following out-of-tree plugins are
-supported on Windows, with recommendations on when to use each CNI:
--->
-##### 网络模式    {#network-modes}
-
-Windows 支持五种不同的网络驱动/模式：二层桥接（L2bridge）、二层隧道（L2tunnel）、
-覆盖网络（Overlay）、透明网络（Transparent）和网络地址转译（NAT）。
-在一个包含 Windows 和 Linux 工作节点的异构集群中，你需要选择一种对 Windows 和
-Linux 兼容的联网方案。下面是 Windows 上支持的一些树外插件及何时使用某种
-CNI 插件的建议：
-
-<table>
- <thead>
-  <tr>
-   <th><!--Network Driver-->网络驱动</th>
-   <th><!--Description-->描述</th>
-   <th><!--Container Packet Modifications-->容器报文更改</th>
-   <th><!--Network Plugins-->网络插件</th>
-   <th><!--Network Plugin Characteristics-->网络插件特点</th>
-  </tr>
- </thead>
- <tbody>
-  <tr>
-   <td>L2bridge</td>
-   <td><!--Containers are attached to an external vSwitch. Containers are attached
-      to the underlay network, although the physical network doesn't need to learn
-      the container. MACs because they are rewritten on ingress/egress.-->
-      容器挂接到外部 vSwitch 上。容器挂接到下层网络之上，但由于容器的 MAC
-      地址在入站和出站时被重写，物理网络不需要这些地址。
-   </td>
-   <td>
-      <!--MAC is rewritten to host MAC, IP may be rewritten to host IP using HNS
-      OutboundNAT policy.-->
-      MAC 地址被重写为宿主系统的 MAC 地址，IP 地址也可能依据 HNS OutboundNAT
-      策略重写为宿主的 IP 地址。     
-   </td>
-   <td>
-    <a href="https://github.com/containernetworking/plugins/tree/master/plugins/main/windows/win-bridge">win-bridge<a>、
-    <a href="https://github.com/Azure/azure-container-networking/blob/master/docs/cni.md">Azure-CNI</a>、
-    <!--Flannel host-gateway uses win-bridge-->
-    Flannel 宿主网关（host-gateway）使用 win-bridge
-   </td>
-   <td>
-     <!--win-bridge uses L2bridge network mode,
-     connects containers to the underlay of hosts, offering best performance.
-     Requires user-defined routes (UDR) for inter-node connectivity.-->
-     win-bridge 使用二层桥接（L2bridge）网络模式，将容器连接到下层宿主系统上，
-    从而提供最佳性能。需要用户定义的路由（User-Defined Routes，UDR）才能
-    实现节点间的连接。
-   </td>
-  </tr>
-  <tr>
-   <td>L2Tunnel</td>
-   <td>
-    <!--This is a special case of l2bridge, but only used on Azure. All packets
-    are sent to the virtualization host where SDN policy is applied.-->
-    这是二层桥接的一种特殊情形，但仅被用于 Azure 上。
-    所有报文都被发送到虚拟化环境中的宿主机上并根据 SDN 策略进行处理。
-   </td>
-   <td>
-    <!--MAC rewritten, IP visible on the underlay network-->
-    MAC 地址被改写，IP 地址在下层网络上可见。
-   </td>
-   <td>
-    <a href="https://github.com/Azure/azure-container-networking/blob/master/docs/cni.md">Azure-CNI</a>
-   </td>
-   <td>
-     <!-- Azure-CNI allows integration of containers with Azure vNET, and allows them
-      to leverage the set of capabilities that
-      <a href="https://azure.microsoft.com/en-us/services/virtual-network/">Azure Virtual Network</a>
-      provides. For example, securely connect to Azure services or use Azure NSGs.
-      See <a href="https://docs.microsoft.com/en-us/azure/aks/concepts-network#azure-cni-advanced-networking">azure-cni</a>
-      for some examples.-->
-     Azure-CNI 使得容器能够与 Azure vNET 集成，并允许容器利用
-     [Azure 虚拟网络](https://azure.microsoft.com/en-us/services/virtual-network/)
-     所提供的功能特性集合。例如，可以安全地连接到 Azure 服务上或者使用 Azure NSG。
-     你可以参考
-     [azure-cni](https://docs.microsoft.com/en-us/azure/aks/concepts-network#azure-cni-advanced-networking)
-     所提供的一些示例。
-   </td>
-  </tr>
-  <tr>
-   <td><!--Overlay (Overlay networking for Windows in Kubernetes is in <B>Alpha</B> stage)-->覆盖网络（Kubernetes 中为 Windows 提供的覆盖网络支持处于 *alpha* 阶段）</td>
-   <td>
-    <!--Containers are given a vNIC connected to an external vSwitch. Each overlay
-    network gets its own IP subnet, defined by a custom IP prefix.The overlay
-    network driver uses VXLAN encapsulation.-->
-    每个容器会获得一个连接到外部 vSwitch 的虚拟网卡（vNIC）。
-    每个覆盖网络都有自己的、通过定制 IP 前缀来定义的 IP 子网。
-    覆盖网络驱动使用 VxLAN 封装。
-   </td>
-   <td>
-    <!--Encapsulated with an outer header.-->
-    封装于外层包头内。
-   </td>
-   <td>
-    <a href="https://github.com/containernetworking/plugins/tree/master/plugins/main/windows/win-overlay">Win-overlay</a>、
-    Flannel VXLAN<!--(uses win-overlay)-->（使用 win-overlay）
-   </td>
-   <td>
-    <!--win-overlay should be used when virtual container networks are desired to
-    be isolated from underlay of hosts (e.g. for security reasons). Allows for IPs
-    to be re-used for different overlay networks (which have different VNID tags)
-    if you are restricted on IPs in your datacenter.  This option requires
-    <a href="https://support.microsoft.com/help/4489899">KB4489899</a> on Windows Server
-    2019.-->
-    当（比如出于安全原因）期望虚拟容器网络与下层宿主网络隔离时，
-    应该使用 win-overlay。如果你的数据中心可用 IP 地址受限，
-    覆盖网络允许你在不同的网络中复用 IP 地址（每个覆盖网络有不同的 VNID 标签）。
-    这一选项要求在 Windows Server 2009 上安装
-    [KB4489899](https://support.microsoft.com/help/4489899) 补丁。
-   </td>
-  </tr>
-  <tr>
-   <td>
-    <!--Transparent (special use case for <a href="https://github.com/openvswitch/ovn-kubernetes">ovn-kubernetes</a>)-->
-    透明网络（[ovn-kubernetes](https://github.com/openvswitch/ovn-kubernetes) 的特殊用例） 
-   </td>
-   <td>
-    <!--Requires an external vSwitch. Containers are attached to an external
-    vSwitch which enables intra-pod communication via logical networks (logical
-    switches and routers).-->
-    需要一个外部 vSwitch。容器挂接到某外部 vSwitch 上，该 vSwitch
-    通过逻辑网络（逻辑交换机和路由器）允许 Pod 间通信。
-   </td>
-   <td>
-    <!--Packet is encapsulated either via
-    <a href="https://datatracker.ietf.org/doc/draft-gross-geneve/">GENEVE</a>,
-    <a href="https://datatracker.ietf.org/doc/draft-davie-stt/">STT</a> tunneling to reach
-    pods which are not on the same host.<br/> Packets are forwarded or dropped
-    via the tunnel metadata information supplied by the ovn network controller.
-    <br/>
-    NAT is done for north-south communication.
-    -->
-    报文或者通过 [GENEVE](https://datatracker.ietf.org/doc/draft-gross-geneve/) 来封装，
-    或者通过 [STT](https://datatracker.ietf.org/doc/draft-davie-stt/) 隧道来封装，
-    以便能够到达不在同一宿主系统上的每个 Pod。<br/>
-    报文通过 OVN 网络控制器所提供的隧道元数据信息来判定是转发还是丢弃。<br/>
-    北-南向通信通过 NAT 网络地址转译来实现。
-   </td>
-   <td>
-    <a href="https://github.com/openvswitch/ovn-kubernetes">ovn-kubernetes</a>
-   </td>
-   <td>
-     <!-- Deploy via <a href="https://github.com/openvswitch/ovn-kubernetes/tree/master/contrib">Ansible</a>.
-     Distributed ACLs can be applied via Kubernetes policies. IPAM support.
-     Load-balancing can be achieved without kube-proxy. NATing is done without
-     using iptables/netsh.-->
-     [通过 Ansible 来部署](https://github.com/openvswitch/ovn-kubernetes/tree/master/contrib)。
-     所发布的 ACL 可以通过 Kubernetes 策略来应用实施。支持 IPAM 。
-     负载均衡能力不依赖 kube-proxy。
-     网络地址转译（NAT）也不需要 iptables 或 netsh。
-   </td>
-  </tr>
-  <tr>
-   <td><!--NAT (<B>not used in Kubernetes</B>)-->NAT（<B>未在 Kubernetes 中使用</B>）</td>
-   <td>
-    <!--Containers are given a vNIC connected to an internal vSwitch. DNS/DHCP is
-    provided using an internal component called
-    <a href="https://blogs.technet.microsoft.com/virtualization/2016/05/25/windows-nat-winnat-capabilities-and-limitations">WinNAT</a>.-->
-    容器获得一个连接到某内部 vSwitch 的 vNIC 接口。
-    DNS/DHCP 服务通过名为
-    [WinNAT](https://blogs.technet.microsoft.com/virtualization/2016/05/25/windows-nat-winnat-capabilities-and-limitations/)
-    的内部组件来提供。
-   </td>
-   <td>
-    <!--MAC and IP is rewritten to host MAC/IP.-->
-    MAC 地址和 IP 地址都被重写为宿主系统的 MAC 地址和 IP 地址。
-   </td>
-   <td>
-    <a href="https://github.com/Microsoft/windows-container-networking/tree/master/plugins/nat">nat</a>
-   </td>
-   <td>
-    <!--Included here for completeness-->
-    列在此表中仅出于完整性考虑
-   </td>
-  </tr>
- </tbody>
-</table>
-
-<!--
-As outlined above, the [Flannel](https://github.com/coreos/flannel) CNI
-[meta plugin](https://github.com/containernetworking/plugins/tree/master/plugins/meta/flannel)
-is also supported on
-[Windows](https://github.com/containernetworking/plugins/tree/master/plugins/meta/flannel#windows-support-experimental)
-via the [VXLAN network backend](https://github.com/coreos/flannel/blob/master/Documentation/backends.md#vxlan)
-(**alpha support** ; delegates to win-overlay) and
-[host-gateway network backend](https://github.com/coreos/flannel/blob/master/Documentation/backends.md#host-gw)
-(stable support; delegates to win-bridge). This plugin supports delegating to
-one of the reference CNI plugins (win-overlay, win-bridge), to work in
-conjunction with Flannel daemon on Windows (Flanneld) for automatic node
-subnet lease assignment and HNS network creation. This plugin reads in its own
-configuration file (cni.conf), and aggregates it with the environment
-variables from the FlannelD generated subnet.env file. It then delegates to
-one of the reference CNI plugins for network plumbing, and sends the correct
-configuration containing the node-assigned subnet to the IPAM plugin (e.g.
-host-local).
--->
-如前所述，[Flannel](https://github.com/coreos/flannel) CNI
-[meta 插件](https://github.com/containernetworking/plugins/tree/master/plugins/meta/flannel)
-在 Windows 上也是
-[被支持](https://github.com/containernetworking/plugins/tree/master/plugins/meta/flannel#windows-support-experimental)
-的，方法是通过 [VXLAN 网络后端](https://github.com/coreos/flannel/blob/master/Documentation/backends.md#vxlan)
-（**alpha 阶段** ：委托给 win-overlay）和 
-[主机-网关（host-gateway）网络后端](https://github.com/coreos/flannel/blob/master/Documentation/backends.md#host-gw)
-（稳定版本；委托给 win-bridge 实现）。
-此插件支持将操作委托给所引用的 CNI 插件（win-overlay、win-bridge）之一，
-从而能够与 Windows 上的 Flannel 守护进程（Flanneld）一同工作，自动为节点
-分配子网租期，创建 HNS 网络。
-该插件读入其自身的配置文件（cni.conf），并将其与 FlannelD 所生成的 subnet.env
-文件中的环境变量整合，之后将其操作委托给所引用的 CNI 插件之一以完成网络发现，
-并将包含节点所被分配的子网信息的正确配置发送给 IPAM 插件（例如 host-local）。
-
-<!--
-For the node, pod, and service objects, the following network flows are
-supported for TCP/UDP traffic:
-
-* Pod -> Pod (IP)
-* Pod -> Pod (Name)
-* Pod -> Service (Cluster IP)
-* Pod -> Service (PQDN, but only if there are no ".")
-* Pod -> Service (FQDN)
-* Pod -> External (IP)
-* Pod -> External (DNS)
-* Node -> Pod
-* Pod -> Node
--->
-对于节点、Pod 和服务对象，可针对 TCP/UDP 流量支持以下网络数据流：
-
-* Pod -> Pod （IP 寻址）
-* Pod -> Pod （名字寻址）
-* Pod -> 服务（集群 IP）
-* Pod -> 服务（部分限定域名，仅适用于名称中不包含“.”的情形）
-* Pod -> 服务（全限定域名）
-* Pod -> 集群外部（IP 寻址）
-* Pod -> 集群外部（DNS 寻址）
-* 节点 -> Pod
-* Pod -> 节点
-
-<!--
-##### IP address management (IPAM) {#ipam}
-
-The following IPAM options are supported on Windows:
-
-* [Host-local](https://github.com/containernetworking/plugins/tree/master/plugins/ipam/host-local)
-* HNS IPAM (Inbox platform IPAM, this is a fallback when no IPAM is set)
-* [Azure-vnet-ipam](https://github.com/Azure/azure-container-networking/blob/master/docs/ipam.md) (for azure-cni only)
--->
-##### IP 地址管理（IPAM）       {#ipam}
-
-Windows 上支持以下 IPAM 选项：
-
-* [host-local](https://github.com/containernetworking/plugins/tree/master/plugins/ipam/host-local)
-* HNS IPAM (Inbox 平台 IPAM，未指定 IPAM 时的默认设置）
-* [Azure-vnet-ipam](https://github.com/Azure/azure-container-networking/blob/master/docs/ipam.md)（仅适用于 azure-cni ）
-
-<!--
-##### Load balancing and Services
-
-On Windows, you can use the following settings to configure Services and load
-balancing behavior:
--->
-##### 负载均衡与服务     {#load-balancing-and-services}
-
-在 Windows 系统上，你可以使用以下配置来设定服务和负载均衡行为：
-
-{{< table caption="Windows 服务设置" >}}
-
-<table>
- <thead>
-  <tr>
-   <th><!--Feature-->功能特性</th>
-   <th><!--Description-->描述</th>
-   <th><!--Supported Kubernetes version-->所支持的 Kubernetes 版本</th>
-   <th><!--Supported Windows OS build-->所支持的 Windows OS 版本</th>
-   <th><!--How to enable-->如何启用</th>
-  </tr>
- <thead>
- <tbody>
-  <tr>
-   <td><!--Session affinity-->会话亲和性</td>
-   <td>
-    <!--Ensures that connections from a particular client are passed to the same
-    Pod each time.-->
-    确保来自特定客户的连接每次都被交给同一 Pod。
-   </td>
-   <td>v1.20+</td>
-   <td>
-    <!--a href="https://blogs.windows.com/windowsexperience/2020/01/28/announcing-windows-server-vnext-insider-preview-build-19551/">Windows Server vNext Insider Preview Build 19551</a> (or higher)-->
-    [Windows Server vNext Insider Preview Build 19551](https://blogs.windows.com/windowsexperience/2020/01/28/announcing-windows-server-vnext-insider-preview-build-19551/)
-    或更高版本
-   </td>
-   <td>
-    <!--Set <code>service.spec.sessionAffinity</code> to "ClientIP"-->
-    将 <code>service.spec.sessionAffinitys</code> 设置为 "ClientIP"
-   </td>
-  </tr>
-  <tr>
-   <td><!--Direct Server Return (DSR)-->直接服务器返回（DSR）</td>
-   <td>
-    <!--Load balancing mode where the IP address fixups and the LBNAT occurs at
-    the container vSwitch port directly; service traffic arrives with the source
-    IP set as the originating pod IP.
-    -->
-    这是一种负载均衡模式，IP 地址的修正和负载均衡地址转译（LBNAT）
-    直接在容器的 vSwitch 端口上处理；服务流量到达时，其源端 IP 地址
-    设置为来源 Pod 的 IP。
-   </td>
-   <td>v1.20+</td>
-   <td>
-    Windows Server 2019
-   </td>
-   <td>
-    <!--Set the following flags in kube-proxy:
-    <code>--feature-gates="WinDSR=true" --enable-dsr=true</code>-->
-    为 kube-proxy 设置标志：`--feature-gates="WinDSR=true" --enable-dsr=true`
-   </td>
-  </tr>
-  <tr>
-   <td><!--Preserve-Destination-->保留目标地址</td>
-   <td>
-    <!--Skips DNAT of service traffic, thereby preserving the virtual IP of the target
-    service in packets reaching the backend Pod. Also disables node-node forwarding.-->
-    对服务流量略过 DNAT 步骤，这样就可以在到达后端 Pod 的报文中保留目标服务的
-    虚拟 IP 地址。还要禁止节点之间的转发。 
-   </td>
-   <td>v1.20+</td>
-   <td><!--Windows Server, version 1903 (or higher)-->Windows Server 1903 或更高版本</td>
-   <td>
-    <!--Set <code>"preserve-destination": "true"</code> in service annotations
-    and enable DSR in kube-proxy.-->
-    在服务注解中设置 `"preserve-destination": "true"` 并启用
-    kube-proxy 中的 DSR 标志。
-   </td>
-  </tr>
-  <tr>
-   <td><!--IPv4/IPv6 dual-stack networking-->IPv4/IPv6 双栈网络</td>
-   <td>
-    <!--Native IPv4-to-IPv4 in parallel with IPv6-to-IPv6 communications to, from,
-    and within a cluster-->
-    在集群内外同时支持原生的 IPv4-到-IPv4 和 IPv6-到-IPv6 通信。
-   </td>
-   <td>v1.19+</td>
-   <td><!--Windows Server, version 2004 (or higher)-->Windows Server 2004 或更高版本</td>
-   <td>
-    <!--See <a href="#ipv4ipv6-dual-stack">IPv4/IPv6 dual-stack</a>-->
-    参见 [IPv4/IPv6 双栈网络](#ipv4ipv6-dual-stack)
-   </td>
-  </tr>
-  <tr>
-   <td><!--Client IP preservation-->保留客户端 IP</td>
-   <td>
-    <!--Ensures that source IP of incoming ingress traffic gets preserved. Also
-    disables node-node forwarding.-->
-    确保入站流量的源 IP 地址被保留。同样要禁止节点之间的转发。
-   </td>
-   <td>v1.20+</td>
-   <td><!--Windows Server, version 2019 (or higher)-->Windows Server 2019 或更高版本</td>
-   <td>
-    <!--Set <code>service.spec.externalTrafficPolicy</code> to "Local" and enable
-    DSR in kube-proxy.-->
-    将 <code>service.spec.externalTrafficPolicy</code> 设置为 "Local"，
-    并在 kube-proxy 上启用 DSR。
-   </td>
-  </tr>
- </tbody>
-</table>
-
-{{< /table >}}
-
-<!--
-#### IPv4/IPv6 dual-stack
-
-You can enable IPv4/IPv6 dual-stack networking for `l2bridge` networks using
-the `IPv6DualStack` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/). See
-[enable IPv4/IPv6 dual stack](/docs/concepts/services-networking/dual-stack#enable-ipv4ipv6-dual-stack)
-for more details.
--->
-#### IPv4/IPv6 双栈支持   {#ipv4ipv6-dual-stack}
-
-你可以通过使用 `IPv6DualStack`
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
-来为 `l2bridge` 网络启用 IPv4/IPv6 双栈联网支持。
-进一步的细节可参见
-[启用 IPv4/IPv6 双协议栈](/zh/docs/concepts/services-networking/dual-stack#enable-ipv4ipv6-dual-stack)。
-
-<!--
-On Windows, using IPv6 with Kubernetes require Windows Server, version 2004
-(kernel version 10.0.19041.610) or later.
-
-Overlay (VXLAN) networks on Windows do not support dual-stack networking today.
--->
-对 Windows 而言，在 Kubernetes 中使用 IPv6 需要
-Windows Server 2004 （内核版本 10.0.19041.610）或更高版本。
-
-目前 Windows 上的覆盖网络（VXLAN）还不支持双协议栈联网。
-
-<!--
-### Limitations
-
-Windows is only supported as a worker node in the Kubernetes architecture and
-component matrix. This means that a Kubernetes cluster must always include
-Linux master nodes, zero or more Linux worker nodes, and zero or more Windows
-worker nodes.
--->
-### 局限性    {#limitations}
-
-在 Kubernetes 架构和节点阵列中仅支持将 Windows 作为工作节点使用。
-这意味着 Kubernetes 集群必须总是包含 Linux 主控节点，零个或者多个 Linux
-工作节点以及零个或者多个 Windows 工作节点。
-
-<!--
-#### Resource Handling
-
-Linux cgroups are used as a pod boundary for resource controls in Linux.
-Containers are created within that boundary for network, process and file
-system isolation. The cgroups APIs can be used to gather cpu/io/memory stats.
-In contrast, Windows uses a Job object per container with a system namespace
-filter to contain all processes in a container and provide logical isolation
-from the host. There is no way to run a Windows container without the
-namespace filtering in place. This means that system privileges cannot be
-asserted in the context of the host, and thus privileged containers are not
-available on Windows. Containers cannot assume an identity from the host
-because the Security Account Manager (SAM) is separate.
--->
-#### 资源处理 {#resource-handling}
-
-Linux 上使用 Linux 控制组（CGroups）作为 Pod 的边界，以实现资源控制。
-容器都创建于这一边界之内，从而实现网络、进程和文件系统的隔离。
-控制组 CGroups API 可用来收集 CPU、I/O 和内存的统计信息。
-与此相比，Windows 为每个容器创建一个带有系统名字空间过滤设置的 Job 对象，
-以容纳容器中的所有进程并提供其与宿主系统间的逻辑隔离。
-没有现成的名字空间过滤设置是无法运行 Windows 容器的。
-这也意味着，系统特权无法在宿主环境中评估，因而 Windows 上也就不存在特权容器。
-归咎于独立存在的安全账号管理器（Security Account Manager，SAM），容器也不能
-获得宿主系统上的任何身份标识。
-
-<!--
-#### Resource Reservations
-
-##### Memory Reservations
-
-Windows does not have an out-of-memory process killer as Linux does. Windows
-always treats all user-mode memory allocations as virtual, and pagefiles are
-mandatory. The net effect is that Windows won't reach out of memory conditions
-the same way Linux does, and processes page to disk instead of being subject
-to out of memory (OOM) termination. If memory is over-provisioned and all
-physical memory is exhausted, then paging can slow down performance.
--->
-#### 资源预留   {#resource-reservations}
-
-##### 内存预留    {#memory-reservations}
-
-Windows 不像 Linux 一样有一个内存耗尽（Out-of-memory）进程杀手（Process
-Killer）机制。Windows 总是将用户态的内存分配视为虚拟请求，页面文件（Pagefile）
-是必需的。这一差异的直接结果是 Windows 不会像 Linux 那样出现内存耗尽的状况，
-系统会将进程内存页面写入磁盘而不会因内存耗尽而终止进程。
-当内存被过量使用且所有物理内存都被用光时，系统的换页行为会导致性能下降。
-
-<!--
-Keeping memory usage within reasonable bounds is possible using the kubelet
-parameters `--kubelet-reserve` and/or `--system-reserve` to account for memory
-usage on the node (outside of containers). This reduces
-[NodeAllocatable](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)).
--->
-使用 kubelet 参数 `--kubelet-reserve` 与/或 `-system-reserve` 可以统计
-节点上的内存用量（各容器之外），进而可能将内存用量限制在一个合理的范围，。
-这样做会减少节点可分配内存
-（[NodeAllocatable](/zh/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)）。
-
-<!--
-As you deploy workloads, use resource limits (must set only limits or limits
-must equal requests) on containers. This also subtracts from NodeAllocatable
-and prevents the scheduler from adding more pods once a node is full.
--->
-在你部署工作负载时，对容器使用资源限制（必须仅设置 limits 或者让 limits 等于
-requests 值）。这也会从 NodeAllocatable 中耗掉部分内存量，从而避免在节点
-负荷已满时调度器继续向节点添加 Pods。
-
-<!--
-A best practice to avoid over-provisioning is to configure the kubelet with a
-system reserved memory of at least 2GB to account for Windows, Docker, and
-Kubernetes processes.
--->
-避免过量分配的最佳实践是为 kubelet 配置至少 2 GB 的系统预留内存，以供
-Windows、Docker 和 Kubernetes 进程使用。
-
-<!--
-##### CPU Reservations
-
-To account for Windows, Docker and other Kubernetes host processes it is
-recommended to reserve a percentage of CPU so they are able to respond to
-events. This value needs to be scaled based on the number of CPU cores
-available on the Windows node.To determine this percentage a user should
-identify the maximum pod density for each of their nodes and monitor the CPU
-usage of the system services choosing a value that meets their workload needs.
--->
-##### CPU 预留   {#cpu-reservations}
-
-为了统计 Windows、Docker 和其他 Kubernetes 宿主进程的 CPU 用量，建议
-预留一定比例的 CPU，以便对事件作出相应。此值需要根据 Windows 节点上
-CPU 核的个数来调整，要确定此百分比值，用户需要为其所有节点确定 Pod
-密度的上线，并监控系统服务的 CPU 用量，从而选择一个符合其负载需求的值。
-
-<!--
-Keeping CPU usage within reasonable bounds is possible using the kubelet
-parameters `--kubelet-reserve` and/or `--system-reserve` to account for CPU
-usage on the node (outside of containers). This reduces
-[NodeAllocatable](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable). 
--->
-使用 kubelet 参数 `--kubelet-reserve` 与/或 `-system-reserve` 可以统计
-节点上的 CPU 用量（各容器之外），进而可能将 CPU 用量限制在一个合理的范围，。
-这样做会减少节点可分配 CPU
-（[NodeAllocatable](/zh/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)）。
-
-<!--
-##### Feature Restrictions
-
-* TerminationGracePeriod: not implemented
-* Single file mapping: to be implemented with CRI-ContainerD
-* Termination message: to be implemented with CRI-ContainerD
-* Privileged Containers: not currently supported in Windows containers
-* HugePages: not currently supported in Windows containers
-* The existing node problem detector is Linux-only and requires privileged
-  containers. In general, we don't expect this to be used on Windows because
-  privileged containers are not supported
-* Not all features of shared namespaces are supported (see API section for
-  more details)
--->
-##### 功能特性限制    {#feature-restrictions}
-
-* 终止宽限期（Termination Grace Period）：未实现
-* 单文件映射：将用 CRI-ContainerD 来实现
-* 终止消息（Termination message）：将用 CRI-ContainerD 来实现
-* 特权容器：Windows 容器当前不支持
-* 巨页（Huge Pages）：Windows 容器当前不支持
-* 现有的节点问题探测器（Node Problem Detector）仅适用于 Linux，且要求使用特权容器。
-  一般而言，我们不设想此探测器能用于 Windows 节点，因为 Windows 不支持特权容器。
-* 并非支持共享名字空间的所有功能特性（参见 API 节以了解详细信息）
-
-<!--
-#### Difference in behavior of flags when compared to Linux
-
-The behavior of the following kubelet flags is different on Windows nodes as described below:
-
-* `--kubelet-reserve`, `--system-reserve` , and `--eviction-hard` flags update
-  Node Allocatable
-* Eviction by using `--enforce-node-allocable` is not implemented
-* Eviction by using `--eviction-hard` and `--eviction-soft` are not implemented
-* MemoryPressure Condition is not implemented
-* There are no OOM eviction actions taken by the kubelet
-* Kubelet running on the windows node does not have memory restrictions.
-  `--kubelet-reserve` and `--system-reserve` do not set limits on kubelet or
-  processes running on the host. This means kubelet or a process on the host
-  could cause memory resource starvation outside the node-allocatable and
-  scheduler
-* An additional flag to set the priority of the kubelet process is available
-  on the Windows nodes called `--windows-priorityclass`. This flag allows
-  kubelet process to get more CPU time slices when compared to other processes
-  running on the Windows host. More information on the allowable values and
-  their meaning is available at
-  [Windows Priority Classes](https://docs.microsoft.com/en-us/windows/win32/procthread/scheduling-priorities#priority-class).
-  In order for kubelet to always have enough CPU cycles it is recommended to set
-  this flag to `ABOVE_NORMAL_PRIORITY_CLASS` and above
--->
-#### 与 Linux 相比参数行为的差别
-
-以下 kubelet 参数的行为在 Windows 节点上有些不同，描述如下：
-
-* `--kubelet-reserve`、`--system-reserve` 和 `--eviction-hard` 标志
-  会更新节点可分配资源量
-* 未实现通过使用 `--enforce-node-allocable` 来完成的 Pod 驱逐
-* 未实现通过使用 `--eviction-hard` 和 `--eviction-soft` 来完成的 Pod 驱逐
-* `MemoryPressure` 状况未实现
-* `kubelet` 不会采取措施来执行基于 OOM 的驱逐动作
-* Windows 节点上运行的 kubelet 没有内存约束。
-  `--kubelet-reserve` 和 `--system-reserve` 不会为 kubelet 或宿主系统上运行
-  的进程设限。这意味着 kubelet 或宿主系统上的进程可能导致内存资源紧张，
-  而这一情况既不受节点可分配量影响，也不会被调度器感知。
-* 在 Windows 节点上存在一个额外的参数用来设置 kubelet 进程的优先级，称作
-  `--windows-priorityclass`。此参数允许 kubelet 进程获得与 Windows 宿主上
-  其他进程相比更多的 CPU 时间片。
-  关于可用参数值及其含义的进一步信息可参考
-  [Windows Priority Classes](https://docs.microsoft.com/en-us/windows/win32/procthread/scheduling-priorities#priority-class)。
-  为了让 kubelet 总能够获得足够的 CPU 周期，建议将此参数设置为
-  `ABOVE_NORMAL_PRIORITY_CLASS` 或更高。
-
-<!--
-#### Storage
-
-Windows has a layered filesystem driver to mount container layers and create a
-copy filesystem based on NTFS. All file paths in the container are resolved
-only within the context of that container.
-
-* With Docker Volume mounts can only target a directory in the container, and
-  not an individual file. This limitation does not exist with CRI-containerD.
-
-* Volume mounts cannot project files or directories back to the host
-  filesystem
-
-* Read-only filesystems are not supported because write access is always
-  required for the Windows registry and SAM database. However, read-only
-  volumes are supported
-* Volume user-masks and permissions are not available. Because the SAM is not
-  shared between the host & container, there's no mapping between them. All
-  permissions are resolved within the context of the container
--->
-#### 存储     {#storage}
-
-Windows 上包含一个分层的文件系统来挂载容器的分层，并会基于 NTFS 来创建一个
-拷贝文件系统。容器中的所有文件路径都仅在该容器的上下文内完成解析。
-
-* Docker 卷挂载仅可针对容器中的目录进行，不可针对独立的文件。
-  这一限制不适用于 CRI-containerD。
-* 卷挂载无法将文件或目录投射回宿主文件系统。
-* 不支持只读文件系统，因为 Windows 注册表和 SAM 数据库总是需要写访问权限。
-  不过，Windows 支持只读的卷。
-* 不支持卷的用户掩码和访问许可，因为宿主与容器之间并不共享 SAM，二者之间不存在
-  映射关系。所有访问许可都是在容器上下文中解析的。
-
-<!--
-As a result, the following storage functionality is not supported on Windows nodes
-
-* Volume subpath mounts. Only the entire volume can be mounted in a Windows container.
-* Subpath volume mounting for Secrets
-* Host mount projection
-* DefaultMode (due to UID/GID dependency)
-* Read-only root filesystem. Mapped volumes still support readOnly
-* Block device mapping
-* Memory as the storage medium
-* File system features like uui/guid, per-user Linux filesystem permissions
-* NFS based storage/volume support
-* Expanding the mounted volume (resizefs)
--->
-因此，Windows 节点上不支持以下存储功能特性：
-
-* 卷的子路径挂载；只能在 Windows 容器上挂载整个卷。
-* 为 Secret 执行子路径挂载；
-* 宿主挂载投射；
-* 默认访问模式 defaultMode（因为该特性依赖 UID/GID）；
-* 只读的根文件系统；映射的卷仍然支持 `readOnly`；
-* 块设备映射；
-* 将内存作为存储介质；
-* 类似 UUID/GUID、每用户不同的 Linux 文件系统访问许可等文件系统特性；
-* 基于 NFS 的存储和卷支持；
-* 扩充已挂载卷（resizefs）。
-
-<!--
-#### Networking {#networking-limitations}
-
-Windows Container Networking differs in some important ways from Linux
-networking. The [Microsoft documentation for Windows Container Networking](https://docs.microsoft.com/en-us/virtualization/windowscontainers/container-networking/architecture)
-contains additional details and background.
--->
-#### 联网   {#networking-limitations}
-
-Windows 容器联网与 Linux 联网有着非常重要的差别。
-[Microsoft documentation for Windows Container Networking](https://docs.microsoft.com/en-us/virtualization/windowscontainers/container-networking/architecture)
-中包含额外的细节和背景信息。
-
-<!--
-The Windows host networking service and virtual switch implement namespacing
-and can create virtual NICs as needed for a pod or container. However, many
-configurations such as DNS, routes, and metrics are stored in the Windows
-registry database rather than /etc/... files as they are on Linux. The Windows
-registry for the container is separate from that of the host, so concepts like
-mapping /etc/resolv.conf from the host into a container don't have the same
-effect they would on Linux. These must be configured using Windows APIs run in
-the context of that container. Therefore CNI implementations need to call the
-HNS instead of relying on file mappings to pass network details into the pod
-or container.
--->
-Windows 宿主联网服务和虚拟交换机实现了名字空间隔离，可以根据需要为 Pod 或容器
-创建虚拟的网络接口（NICs）。不过，很多类似 DNS、路由、度量值之类的配置数据都
-保存在 Windows 注册表数据库中而不是像 Linux 一样保存在 `/etc/...` 文件中。
-Windows 为容器提供的注册表与宿主系统的注册表是分离的，因此类似于将 /etc/resolv.conf
-文件从宿主系统映射到容器中的做法不会产生与 Linux 系统相同的效果。
-这些信息必须在容器内部使用 Windows API 来配置。
-因此，CNI 实现需要调用 HNS，而不是依赖文件映射来将网络细节传递到 Pod
-或容器中。
-
-<!--
-The following networking functionality is not supported on Windows nodes
-
-* Host networking mode is not available for Windows pods
-
-* Local NodePort access from the node itself fails (works for other nodes or
-  external clients)
-
-* Accessing service VIPs from nodes will be available with a future release of
-  Windows Server
-
-* A single service can only support up to 64 backend pods / unique destination IPs
-
-* Overlay networking support in kube-proxy is a beta feature. In addition, it
-  requires
-  [KB4482887](https://support.microsoft.com/en-us/help/4482887/windows-10-update-kb4482887)
-  to be installed on Windows Server 2019
-
-* Local Traffic Policy in non-DSR mode
-* Windows containers connected to overlay networks do not support
-  communicating over the IPv6 stack. There is outstanding Windows platform
-  work required to enable this network driver to consume IPv6 addresses and
-  subsequent Kubernetes work in kubelet, kube-proxy, and CNI plugins.
--->
-Windows 节点不支持以下联网功能：
-
-* Windows Pod 不能使用宿主网络模式；
-* 从节点本地访问 NodePort 会失败（但从其他节点或外部客户端可访问）
-* Windows Server 的未来版本中会支持从节点访问服务的 VIP；
-* 每个服务最多支持 64 个后端 Pod 或独立的目标 IP 地址；
-* kube-proxy 的覆盖网络支持是 Beta 特性。此外，它要求在 Windows Server 2019 上安装
-  [KB4482887](https://support.microsoft.com/en-us/help/4482887/windows-10-update-kb4482887) 补丁；
-* 非 DSR（保留目标地址）模式下的本地流量策略；
-* 连接到覆盖网络的 Windows 容器不支持使用 IPv6 协议栈通信。
-  要使得这一网络驱动支持 IPv6 地址需要在 Windows 平台上开展大量的工作，
-  还需要在 Kubernetes 侧修改 kubelet、kube-proxy 以及 CNI 插件。
-<!--
-* Outbound communication using the ICMP protocol via the win-overlay,
-  win-bridge, and Azure-CNI plugin. Specifically, the Windows data plane
-  ([VFP](https://www.microsoft.com/en-us/research/project/azure-virtual-filtering-platform/))
-  doesn't support ICMP packet transpositions. This means:
-
-  * ICMP packets directed to destinations within the same network (e.g. pod to
-    pod communication via ping) work as expected and without any limitations
-
-  * TCP/UDP packets work as expected and without any limitations
-
-  * ICMP packets directed to pass through a remote network (e.g. pod to
-    external internet communication via ping) cannot be transposed and thus
-    will not be routed back to their source
-
-  * Since TCP/UDP packets can still be transposed, one can substitute `ping
-    <destination>` with `curl <destination>` to be able to debug connectivity
-    to the outside world.
--->
-* 通过 win-overlay、win-bridge 和 Azure-CNI 插件使用 ICMP 协议向集群外通信。
-  尤其是，Windows 数据面
-  （[VFP](https://www.microsoft.com/en-us/research/project/azure-virtual-filtering-platform/)）
-  不支持转换 ICMP 报文。这意味着：
-
-  * 指向同一网络内目标地址的 ICMP 报文（例如 Pod 之间的 ping 通信）是可以工作的，
-    没有局限性；
-  * TCP/UDP 报文可以正常工作，没有局限性；
-  * 指向远程网络的 ICMP 报文（例如，从 Pod 中 ping 外部互联网的通信）无法被转换，
-    因此也无法被路由回到其源点；
-  * 由于 TCP/UDP 包仍可被转换，用户可以将 `ping <目标>` 操作替换为 `curl <目标>`
-    以便能够调试与外部世界的网络连接。
-
-<!--
-These features were added in Kubernetes v1.15:
-
-* `kubectl port-forward`
--->
-Kubernetes v1.15 中添加了以下功能特性：
-
-* `kubectl port-forward`
-
-<!--
-##### CNI Plugins
-
-* Windows reference network plugins win-bridge and win-overlay do not
-  currently implement [CNI spec](https://github.com/containernetworking/cni/blob/master/SPEC.md) v0.4.0
-  due to missing "CHECK" implementation.
-* The Flannel VXLAN CNI has the following limitations on Windows:
-
-  1. Node-pod connectivity isn't possible by design. It's only possible for
-     local pods with Flannel v0.12.0 (or higher).
-  1. We are restricted to using VNI 4096 and UDP port 4789. The VNI limitation
-     is being worked on and will be overcome in a future release (open-source
-     flannel changes). See the official
-     [Flannel VXLAN](https://github.com/coreos/flannel/blob/master/Documentation/backends.md#vxlan)
-     backend docs for more details on these parameters.
--->
-##### CNI 插件    {#cni-plugins}
-
-* Windows 参考网络插件 win-bridge 和 win-overlay 当前未实现
-  [CNI spec](https://github.com/containernetworking/cni/blob/master/SPEC.md) v0.4.0，
-  原因是缺少检查（CHECK）用的实现。
-
-* Windows 上的 Flannel VXLAN CNI 有以下局限性：
-
-  1. 其设计上不支持从节点到 Pod 的连接。
-     只有在 Flannel v0.12.0 或更高版本后才有可能访问本地 Pods。
-  2. 我们被限制只能使用 VNI 4096 和 UDP 端口 4789。
-     VNI 的限制正在被解决，会在将来的版本中消失（开源的 Flannel 更改）。
-     参见官方的 [Flannel VXLAN](https://github.com/coreos/flannel/blob/master/Documentation/backends.md#vxlan)
-     后端文档以了解关于这些参数的详细信息。
-
-##### DNS {#dns-limitations}
-
-<!--
-* ClusterFirstWithHostNet is not supported for DNS. Windows treats all names
-  with a '.' as a FQDN and skips PQDN resolution
-
-* On Linux, you have a DNS suffix list, which is used when trying to resolve
-  PQDNs. On Windows, we only have 1 DNS suffix, which is the DNS suffix
-  associated with that pod's namespace (`mydns.svc.cluster.local` for example).
-  Windows can resolve FQDNs and services or names resolvable with just that
-  suffix. For example, a pod spawned in the default namespace, will have the DNS
-  suffix `default.svc.cluster.local`. On a Windows pod, you can resolve both
-  `kubernetes.default.svc.cluster.local` and `kubernetes`, but not the
-  in-betweens, like `kubernetes.default` or `kubernetes.default.svc`.
-
-* On Windows, there are multiple DNS resolvers that can be used. As these come
-  with slightly different behaviors, using the `Resolve-DNSName` utility for
-  name query resolutions is recommended.
--->
-* 不支持 DNS 的 ClusterFirstWithHostNet 配置。Windows 将所有包含 “.” 的名字
-  视为全限定域名（FQDN），因而不会对其执行部分限定域名（PQDN）解析。
-
-* 在 Linux 上，你可以有一个 DNS 后缀列表供解析部分限定域名时使用。
-  在 Windows 上，我们只有一个 DNS 后缀，即与该 Pod 名字空间相关联的 DNS
-  后缀（例如 `mydns.svc.cluster.local`）。
-  Windows 可以解析全限定域名、或者恰好可用该后缀来解析的服务名称。
-  例如，在 default 名字空间中生成的 Pod 会获得 DNS 后缀
-  `default.svc.cluster.local`。在 Windows Pod 中，你可以解析
-  `kubernetes.default.svc.cluster.local` 和 `kubernetes`，但无法解析二者
-  之间的形式，如 `kubernetes.default` 或 `kubernetes.default.svc`。
-
-* 在 Windows 上，可以使用的 DNS 解析程序有很多。由于这些解析程序彼此之间
-  会有轻微的行为差别，建议使用 `Resolve-DNSName` 工具来完成名字查询解析。
-
-<!--
-##### IPv6
-
-Kubernetes on Windows does not support single-stack "IPv6-only" networking.
-However,dual-stack IPv4/IPv6 networking for pods and nodes with single-family
-services is supported.
-See [IPv4/IPv6 dual-stack networking](#ipv4ipv6-dual-stack) for more details.
--->
-##### IPv6
-
-Windows 上的 Kubernetes 不支持单协议栈的“只用 IPv6”联网选项。
-不过，系统支持在 IPv4/IPv6 双协议栈的 Pod 和节点上运行单协议家族的服务。
-更多细节可参阅 [IPv4/IPv6 双协议栈联网](#ipv4ipv6-dual-stack)一节。
-
-<!--
-##### Session affinity
-
-Setting the maximum session sticky time for Windows services using
-`service.spec.sessionAffinityConfig.clientIP.timeoutSeconds` is not supported.
--->
-##### 会话亲和性    {#session-affinity}
-
-不支持使用 `service.spec.sessionAffinityConfig.clientIP.timeoutSeconds` 来为
-Windows 服务设置最大会话粘滞时间。
-
-<!--
-##### Security
-
-Secrets are written in clear text on the node's volume (as compared to
-tmpfs/in-memory on linux). This means customers have to do two things
-
-1. Use file ACLs to secure the secrets file location
-1. Use volume-level encryption using
-   [BitLocker](https://docs.microsoft.com/en-us/windows/security/information-protection/bitlocker/bitlocker-how-to-deploy-on-windows-server)
--->
-##### 安全性     {#security}
-
-Secret 以明文形式写入节点的卷中（而不是像 Linux 那样写入内存或 tmpfs 中）。
-这意味着客户必须做以下两件事：
-
-1. 使用文件访问控制列表来保护 Secret 文件所在的位置
-1. 使用 [BitLocker](https://docs.microsoft.com/en-us/windows/security/information-protection/bitlocker/bitlocker-how-to-deploy-on-windows-server)
-   来执行卷层面的加密
-
-<!--
-[RunAsUserName](/docs/tasks/configure-pod-container/configure-runasusername)
-can be specified for Windows Pod's or Container's to execute the Container
-processes as a node-default user. This is roughly equivalent to
-[RunAsUser](/docs/concepts/policy/pod-security-policy/#users-and-groups).
-
-Linux specific pod security context privileges such as SELinux, AppArmor,
-Seccomp, Capabilities (POSIX Capabilities), and others are not supported.
-
-In addition, as mentioned already, privileged containers are not supported on
-Windows.
--->
-用户可以为 Windows Pods 或 Container 设置
-[`RunAsUserName`](/zh/docs/tasks/configure-pod-container/configure-runasusername)
-以便以非节点默认用户来执行容器中的进程。这大致等价于设置
-[`RunAsUser`](/zh/docs/concepts/policy/pod-security-policy/#users-and-groups)。
-
-不支持特定于 Linux 的 Pod 安全上下文特权，例如 SELinux、AppArmor、Seccomp、
-权能字（POSIX 权能字）等等。
-
-此外，如前所述，Windows 不支持特权容器。
-
-<!--
-#### API
-
-There are no differences in how most of the Kubernetes APIs work for Windows.
-The subtleties around what's different come down to differences in the OS and
-container runtime. In certain situations, some properties on workload APIs
-such as Pod or Container were designed with an assumption that they are
-implemented on Linux, failing to run on Windows.
-
-At a high level, these OS concepts are different:
--->
-#### API
-
-对 Windows 而言，大多数 Kubernetes API 的工作方式没有变化。
-一些不易察觉的差别通常体现在 OS 和容器运行时上的不同。
-在某些场合，负载 API （如 Pod 或 Container）的某些属性在设计时假定其
-在 Linux 上实现，因此会无法在 Windows 上运行。
-
-在较高层面，不同的 OS 概念有：
-
-<!--
-* Identity - Linux uses userID (UID) and groupID (GID) which are represented
-  as integer types. User and group names are not canonical - they are an alias
-  in `/etc/groups` or `/etc/passwd` back to UID+GID. Windows uses a larger
-  binary security identifier (SID) which is stored in the Windows Security
-  Access Manager (SAM) database. This database is not shared between the host
-  and containers, or between containers.
-
-* File permissions - Windows uses an access control list based on SIDs, rather
-  than a bitmask of permissions and UID+GID
--->
-* 身份标识 - Linux 使用证书类型来表示用户 ID（UID）和组 ID（GID）。用户和组名
-  没有特定标准，它们是 `/etc/groups` 或 `/etc/passwd` 中的别名表项，会映射回
-  UID+GID。Windows 使用一个更大的二进制安全标识符（SID），保存在 Windows
-  安全访问管理器（Security Access Manager，SAM）数据库中。此数据库并不在宿主系统
-  与容器间，或者任意两个容器之间共享。
-
-* 文件许可 - Windows 使用基于 SID 的访问控制列表，而不是基于 UID+GID 的访问权限位掩码。
-
-<!--
-* File paths - convention on Windows is to use `\` instead of `/`. The Go IO
-  libraries accept both types of file path separators. However, when you're
-  setting a path or command line that's interpreted inside a container, `\` may
-  be needed.
-
-* Signals - Windows interactive apps handle termination differently, and can
-  implement one or more of these:
-
-  * A UI thread handles well-defined messages including `WM_CLOSE`
-
-  * Console apps handle ctrl-c or ctrl-break using a Control Handler
-
-  * Services register a Service Control Handler function that can accept
-    `SERVICE_CONTROL_STOP` control codes
--->
-* 文件路径 - Windows 上的习惯是使用 `\` 而非 `/`。Go 语言的 IO
-  库同时接受这两种文件路径分隔符。不过，当你在指定要在容器内解析的路径或命令行时，
-  可能需要使用 `\`。
-
-* 信号（Signal） - Windows 交互式应用以不同方式来处理终止事件，并可实现以下方式之一或组合：
-
-  * UI 线程处理包含 `WM_CLOSE` 在内的良定的消息
-
-  * 控制台应用使用控制处理程序来处理 Ctrl-C 或 Ctrl-Break
-
-  * 服务会注册服务控制处理程序，接受 `SERVICE_CONTROL_STOP` 控制代码
-
-<!--
-Exit Codes follow the same convention where 0 is success, nonzero is failure.
-The specific error codes may differ across Windows and Linux. However, exit
-codes passed from the Kubernetes components (kubelet, kube-proxy) are
-unchanged.
--->
-退出代码遵从相同的习惯，0 表示成功，非 0 值表示失败。
-特定的错误代码在 Windows 和 Linux 上可能会不同。不过，从 Kubernetes 组件
-（kubelet、kube-proxy）所返回的退出代码是没有变化的。
-
-<!--
-##### V1.Container
-
-* V1.Container.ResourceRequirements.limits.cpu and
-  V1.Container.ResourceRequirements.limits.memory - Windows doesn't use hard
-  limits for CPU allocations. Instead, a share system is used. The existing
-  fields based on millicores are scaled into relative shares that are followed
-  by the Windows scheduler.
-  See [kuberuntime/helpers_windows.go](https://github.com/kubernetes/kubernetes/blob/master/pkg/kubelet/kuberuntime/helpers_windows.go),
-  and [resource controls in Microsoft docs](https://docs.microsoft.com/en-us/virtualization/windowscontainers/manage-containers/resource-controls)
-
-  * Huge pages are not implemented in the Windows container runtime, and are
-    not available. They require
-    [asserting a user privilege](https://docs.microsoft.com/en-us/windows/desktop/Memory/large-page-support)
-    that's not configurable for containers.
--->
-* `v1.Container.ResourceRequirements.limits.cpu` 和
-  `v1.Container.ResourceRequirements.limits.memory` - Windows
-  不对 CPU 分配设置硬性的限制。与之相反，Windows 使用一个份额（share）系统。
-  基于毫核（millicores）的现有字段值会被缩放为相对的份额值，供 Windows 调度器使用。
-  参见 [kuberuntime/helpers_windows.go](https://github.com/kubernetes/kubernetes/blob/master/pkg/kubelet/kuberuntime/helpers_windows.go) 和
-  [Microsoft 文档中关于资源控制的部分](https://docs.microsoft.com/en-us/virtualization/windowscontainers/manage-containers/resource-controls)。
-
-  * Windows 容器运行时中没有实现巨页支持，因此相关特性不可用。
-    巨页支持需要[判定用户的特权](https://docs.microsoft.com/en-us/windows/desktop/Memory/large-page-support)
-    而这一特性无法在容器级别配置。
-
-<!--
-* V1.Container.ResourceRequirements.requests.cpu and
-  V1.Container.ResourceRequirements.requests.memory - Requests are subtracted
-  from node available resources, so they can be used to avoid overprovisioning a
-  node. However, they cannot be used to guarantee resources in an
-  overprovisioned node. They should be applied to all containers as a best
-  practice if the operator wants to avoid overprovisioning entirely.
-
-* V1.Container.SecurityContext.allowPrivilegeEscalation - not possible on
-  Windows, none of the capabilities are hooked up
--->
-* `v1.Container.ResourceRequirements.requests.cpu` 和
-  `v1.Container.ResourceRequirements.requests.memory` - 请求
-  值会从节点可分配资源中扣除，从而可用来避免节点上的资源过量分配。
-  但是，它们无法用来在一个已经过量分配的节点上提供资源保障。
-  如果操作员希望彻底避免过量分配，作为最佳实践，他们就需要为所有容器设置资源请求值。
-
-* `v1.Container.SecurityContext.allowPrivilegeEscalation` - 在 Windows
-  上无法实现，对应的权能无一可在 Windows 上生效。
-
-<!--
-* V1.Container.SecurityContext.Capabilities - POSIX capabilities are not
-  implemented on Windows
-
-* V1.Container.SecurityContext.privileged - Windows doesn't support privileged
-  containers
-
-* V1.Container.SecurityContext.procMount - Windows doesn't have a /proc
-  filesystem
-
-* V1.Container.SecurityContext.readOnlyRootFilesystem - not possible on
-  Windows, write access is required for registry & system processes to run
-  inside the container
--->
-* `v1.Container.SecurityContext.Capabilities` - Windows 上未实现 POSIX 权能机制
-* `v1.Container.SecurityContext.privileged` - Windows 不支持特权容器
-* `v1.Container.SecurityContext.procMount` - Windows 不包含 `/proc` 文件系统
-* `v1.Container.SecurityContext.readOnlyRootFilesystem` - 在 Windows 上无法实现，
-  要在容器内使用注册表或运行系统进程就必需写访问权限。
-
-<!--
-* V1.Container.SecurityContext.runAsGroup - not possible on Windows, no GID
-  support
-
-* V1.Container.SecurityContext.runAsNonRoot - Windows does not have a root
-  user. The closest equivalent is ContainerAdministrator which is an identity
-  that doesn't exist on the node.
-
-* V1.Container.SecurityContext.runAsUser - not possible on Windows, no UID
-  support as int.
-
-* V1.Container.SecurityContext.seLinuxOptions - not possible on Windows, no SELinux
-
-* V1.Container.terminationMessagePath - this has some limitations in that
-  Windows doesn't support mapping single files. The default value is
-  `/dev/termination-log`, which does work because it does not exist on Windows by
-  default.
--->
-* `v1.Container.SecurityContext.runAsGroup` - 在 Windows 上无法实现，没有 GID 支持
-
-* `v1.Container.SecurityContext.runAsNonRoot` - Windows 上没有 root 用户。
-  与之最接近的等价用户是 `ContainerAdministrator`，而该身份标识在节点上并不存在。
-
-* `v1.Container.SecurityContext.runAsUser` - 在 Windows 上无法实现，
-  因为没有作为整数支持的 GID。
-
-* `v1.Container.SecurityContext.seLinuxOptions` - 在 Windows 上无法实现，
-  因为没有 SELinux
-
-* `V1.Container.terminationMessagePath` - 因为 Windows 不支持单个文件的映射，这一功能
-  在 Windows 上也受限。默认值 `/dev/termination-log` 在 Windows 上也无法使用因为
-  对应路径在 Windows 上不存在。
-
-<!--
-##### V1.Pod
-
-* V1.Pod.hostIPC, v1.pod.hostpid - host namespace sharing is not possible on Windows
-
-* V1.Pod.hostNetwork - There is no Windows OS support to share the host network
-
-* V1.Pod.dnsPolicy - ClusterFirstWithHostNet - is not supported because Host
-  Networking is not supported on Windows.
-
-* V1.Pod.podSecurityContext - see V1.PodSecurityContext below
-
-* V1.Pod.shareProcessNamespace - this is a beta feature, and depends on Linux
-  namespaces which are not implemented on Windows. Windows cannot share
-  process namespaces or the container's root filesystem. Only the network can be
-  shared.
--->
-##### V1.Pod
-
-* `v1.Pod.hostIPC`、`v1.Pod.hostPID` - Windows 不支持共享宿主系统的名字空间
-* `v1.Pod.hostNetwork` - Windows 操作系统不支持共享宿主网络
-* `v1.Pod.dnsPolicy` - 不支持 `ClusterFirstWithHostNet`，因为 Windows 不支持宿主网络
-* `v1.Pod.podSecurityContext` - 参见下面的 `v1.PodSecurityContext`
-* `v1.Pod.shareProcessNamespace` - 此为 Beta 特性且依赖于 Windows 上未实现
-  的 Linux 名字空间。
-  Windows 无法共享进程名字空间或者容器的根文件系统。只能共享网络。
-
-<!--
-* V1.Pod.terminationGracePeriodSeconds - this is not fully implemented in
-  Docker on Windows, see:
-  [reference](https://github.com/moby/moby/issues/25982). The behavior today is
-  that the `ENTRYPOINT` process is sent `CTRL_SHUTDOWN_EVENT`, then Windows waits 5
-  seconds by default, and finally shuts down all processes using the normal
-  Windows shutdown behavior. The 5 second default is actually in the Windows
-  registry [inside the container](https://github.com/moby/moby/issues/25982#issuecomment-426441183),
-  so it can be overridden when the container is built.
-
-* V1.Pod.volumeDevices - this is a beta feature, and is not implemented on
-  Windows. Windows cannot attach raw block devices to pods.
--->
-* `v1.Pod.terminationGracePeriodSeconds` - 这一特性未在 Windows 版本的 Docker 中完全实现。
-  参见[问题报告](https://github.com/moby/moby/issues/25982)。
-  目前实现的行为是向 `ENTRYPOINT` 进程发送 `CTRL_SHUTDOWN_EVENT` 事件，之后 Windows 默认
-  等待 5 秒钟，并最终使用正常的 Windows 关机行为关闭所有进程。
-  这里的 5 秒钟默认值实际上保存在
-  [容器内](https://github.com/moby/moby/issues/25982#issuecomment-426441183)
-  的 Windows 注册表中，因此可以在构造容器时重载。
-
-* `v1.Pod.volumeDevices` - 此为 Beta 特性且未在 Windows 上实现。Windows 无法挂接
-  原生的块设备到 Pod 中。
-
-<!--
-* V1.Pod.volumes - EmptyDir, Secret, ConfigMap, HostPath - all work and have
-  tests in TestGrid
-
-  * V1.emptyDirVolumeSource - the Node default medium is disk on Windows.
-    Memory is not supported, as Windows does not have a built-in RAM disk.
-
-* V1.VolumeMount.mountPropagation - mount propagation is not supported on Windows.
--->
-* `v1.Pod.volumes` - `emptyDir`、`secret`、`configMap` 和 `hostPath`
-  都可正常工作且在 TestGrid 中测试。
-
-  * `v1.emptyDir.volumeSource` - Windows 上节点的默认介质是磁盘。
-    不支持将内存作为介质，因为 Windows 不支持内置的 RAM 磁盘。
-
-* `v1.VolumeMount.mountPropagation` - Windows 上不支持挂载传播。
-
-<!--
-##### V1.PodSecurityContext
-
-None of the PodSecurityContext fields work on Windows. They're listed here for
-reference.
-
-* V1.PodSecurityContext.SELinuxOptions - SELinux is not available on Windows
-
-* V1.PodSecurityContext.RunAsUser - provides a UID, not available on Windows
-
-* V1.PodSecurityContext.RunAsGroup - provides a GID, not available on Windows
-
-* V1.PodSecurityContext.RunAsNonRoot - Windows does not have a root user. The
-  closest equivalent is ContainerAdministrator which is an identity that
-  doesn't exist on the node.
-
-* V1.PodSecurityContext.SupplementalGroups - provides GID, not available on Windows
-
-* V1.PodSecurityContext.Sysctls - these are part of the Linux sysctl
-  interface. There's no equivalent on Windows.
--->
-##### V1.PodSecurityContext
-
-PodSecurityContext 的所有选项在 Windows 上都无法工作。这些选项列在下面仅供参考。
-
-* `v1.PodSecurityContext.seLinuxOptions` - Windows 上无 SELinux
-
-* `v1.PodSecurityContext.runAsUser` - 提供 UID；Windows 不支持
-
-* `v1.PodSecurityContext.runAsGroup` - 提供 GID；Windows 不支持
-
-* `v1.PodSecurityContext.runAsNonRoot` - Windows 上没有 root 用户
-  最接近的等价账号是 `ContainerAdministrator`，而该身份标识在节点上不存在
-
-* `v1.PodSecurityContext.supplementalGroups` - 提供 GID；Windows 不支持
-
-* `v1.PodSecurityContext.sysctls` - 这些是 Linux sysctl 接口的一部分；Windows 上
-  没有等价机制。
-
-<!--
-#### Operating System Version Restrictions
-
-Windows has strict compatibility rules, where the host OS version must match
-the container base image OS version. Only Windows containers with a container
-operating system of Windows Server 2019 are supported. Hyper-V isolation of
-containers, enabling some backward compatibility of Windows container image
-versions, is planned for a future release.
--->
-#### 操作系统版本限制  {#operating-system-version-restrictions}
-
-Windows 有着严格的兼容性规则，宿主 OS 的版本必须与容器基准镜像 OS 的版本匹配。
-目前仅支持容器操作系统为 Windows Server 2019 的 Windows 容器。
-对于容器的 Hyper-V 隔离、允许一定程度上的 Windows 容器镜像版本向后兼容性等等，
-都是将来版本计划的一部分。
-
-<!--
-## Getting Help and Troubleshooting {#troubleshooting}
-
-Your main source of help for troubleshooting your Kubernetes cluster should
-start with this
-[section](/docs/tasks/debug-application-cluster/troubleshooting/). Some
-additional, Windows-specific troubleshooting help is included in this section.
-Logs are an important element of troubleshooting issues in Kubernetes. Make
-sure to include them any time you seek troubleshooting assistance from other
-contributors. Follow the instructions in the SIG-Windows
-[contributing guide on gathering logs](https://github.com/kubernetes/community/blob/master/sig-windows/CONTRIBUTING.md#gathering-logs).
--->
-## 获取帮助和故障排查     {#troubleshooting}
-
-对你的 Kubernetes 集群进行排查的主要帮助信息来源应该是
-[这份文档](/docs/tasks/debug-application-cluster/troubleshooting/)。
-该文档中包含了一些额外的、特定于 Windows 系统的故障排查帮助信息。
-Kubernetes 中日志是故障排查的一个重要元素。确保你在尝试从其他贡献者那里获得
-故障排查帮助时提供日志信息。你可以按照 SIG-Windows
-[贡献指南和收集日志](https://github.com/kubernetes/community/blob/master/sig-windows/CONTRIBUTING.md#gathering-logs)
-所给的指令来操作。
-
-<!--
-* How do I know start.ps1 completed successfully?
-
-  You should see kubelet, kube-proxy, and (if you chose Flannel as your
-  networking solution) flanneld host-agent processes running on your node, with
-  running logs being displayed in separate PowerShell windows. In addition to
-  this, your Windows node should be listed as "Ready" in your Kubernetes
-  cluster.
--->
-* 我怎样知道 `start.ps1` 是否已成功完成？
-
-  你应该能看到节点上运行的 kubelet、kube-proxy 和（如果你选择 Flannel
-  作为联网方案）flanneld 宿主代理进程，它们的运行日志显示在不同的
-  PowerShell 窗口中。此外，你的 Windows 节点应该在你的 Kubernetes 集群
-  列举为 "Ready" 节点。
-
-<!--
-* Can I configure the Kubernetes node processes to run in the background as services?
-
-  Kubelet and kube-proxy are already configured to run as native Windows
-  Services, offering resiliency by re-starting the services automatically in the
-  event of failure (for example a process crash). You have two options for
-  configuring these node components as services.
--->
-* 我可以将 Kubernetes 节点进程配置为服务运行在后台么？
-
-  kubelet 和 kube-proxy 都已经被配置为以本地 Windows 服务运行，
-  并且在出现失效事件（例如进程意外结束）时通过自动重启服务来提供一定的弹性。
-  你有两种办法将这些节点组件配置为服务。
-
-  <!--
-  * As native Windows Services
-
-    Kubelet & kube-proxy can be run as native Windows Services using `sc.exe`.
-
-    ```powershell
-    # Create the services for kubelet and kube-proxy in two separate commands
-    sc.exe create <component_name> binPath= "<path_to_binary> -service <other_args>"
-
-    # Please note that if the arguments contain spaces, they must be escaped.
-    sc.exe create kubelet binPath= "C:\kubelet.exe --service --hostname-override 'minion' <other_args>"
-
-    # Start the services
-    Start-Service kubelet
-    Start-Service kube-proxy
-
-    # Stop the service
-    Stop-Service kubelet (-Force)
-    Stop-Service kube-proxy (-Force)
-
-    # Query the service status
-    Get-Service kubelet
-    Get-Service kube-proxy
-    ```
-  -->
-  * 以本地 Windows 服务的形式
-
-    Kubelet 和 kube-proxy 可以用 `sc.exe` 以本地 Windows 服务的形式运行：
-
-    ```powershell
-    # 用两个单独的命令为 kubelet 和 kube-proxy 创建服务
-    sc.exe create <组件名称> binPath="<可执行文件路径> -service <其它参数>"
-
-    # 请注意如果参数中包含空格，必须使用转义
-    sc.exe create kubelet binPath= "C:\kubelet.exe --service --hostname-override 'minion' <其它参数>"
-
-    # 启动服务
-    Start-Service kubelet
-    Start-Service kube-proxy
-
-    # 停止服务
-    Stop-Service kubelet (-Force)
-    Stop-Service kube-proxy (-Force)
-
-    # 查询服务状态
-    Get-Service kubelet
-    Get-Service kube-proxy
-    ```
-
-  <!--
-  * Using nssm.exe
-
-    You can also always use alternative service managers like
-    [nssm.exe](https://nssm.cc/) to run these processes (flanneld, kubelet &
-    kube-proxy) in the background for you. You can use this [sample
-    script](https://github.com/Microsoft/SDN/tree/master/Kubernetes/flannel/register-svc.ps1),
-    leveraging `nssm.exe` to register kubelet, kube-proxy, and `flanneld.exe` to run
-    as Windows services in the background.
-  -->
-  * 使用 nssm.exe
-
-    你也总是可以使用替代的服务管理器，例如[nssm.exe](https://nssm.cc/)，来为你在后台运行
-    这些进程（`flanneld`、`kubelet` 和 `kube-proxy`）。你可以使用这一
-    [示例脚本](https://github.com/Microsoft/SDN/tree/master/Kubernetes/flannel/register-svc.ps1)，
-    利用 `nssm.exe` 将 `kubelet`、`kube-proxy` 和 `flanneld.exe` 注册为要在后台运行的
-    Windows 服务。
-
-    <!--
-    ```powershell
-    register-svc.ps1 -NetworkMode <Network mode> -ManagementIP <Windows Node IP> -ClusterCIDR <Cluster subnet> -KubeDnsServiceIP <Kube-dns Service IP> -LogDir <Directory to place logs>
-    ```
-    -->
-    ```powershell
-    register-svc.ps1 -NetworkMode <网络模式> -ManagementIP <Windows 节点 IP> -ClusterCIDR <集群子网> -KubeDnsServiceIP <kube-dns 服务 IP> -LogDir <日志目录>
-    ```
-
-    <!--
-    The parameters are explained below:
-    -->
-    这里的参数解释如下：
-
-    <!--
-    - `NetworkMode`: The network mode l2bridge (flannel host-gw, also the
-      default value) or overlay (flannel vxlan) chosen as a network solution
-    - `ManagementIP`: The IP address assigned to the Windows node. You can use
-      `ipconfig` to find this.
-    - `ClusterCIDR`: The cluster subnet range. (Default: 10.244.0.0/16)
-    - `KubeDnsServiceIP`: The Kubernetes DNS service IP. (Default: 10.96.0.10)
-    - `LogDir`: The directory where kubelet and kube-proxy logs are redirected
-      into their respective output files. (Default value C:\k)
-    -->
-    - `NetworkMode`：网络模式 l2bridge（flannel host-gw，也是默认值）或
-      overlay（flannel vxlan）选做网络方案
-    - `ManagementIP`：分配给 Windows 节点的 IP 地址。你可以使用 ipconfig 得到此值
-    - `ClusterCIDR`：集群子网范围（默认值为 10.244.0.0/16）
-    - `KubeDnsServiceIP`：Kubernetes DNS 服务 IP（默认值为 10.96.0.10）
-    - `LogDir`：kubelet 和 kube-proxy 的日志会被重定向到这一目录中的对应输出文件，
-      默认值为 `C:\k`。
-
-    <!--
-    If the above referenced script is not suitable, you can manually configure
-    `nssm.exe` using the following examples.
-
-    Register flanneld.exe:
-    -->
-    若以上所引用的脚本不适合，你可以使用下面的例子手动配置 `nssm.exe`。
-
-    注册 flanneld.exe：
-
-    ```powershell
-    nssm install flanneld C:\flannel\flanneld.exe
-    nssm set flanneld AppParameters --kubeconfig-file=c:\k\config --iface=<ManagementIP> --ip-masq=1 --kube-subnet-mgr=1
-    nssm set flanneld AppEnvironmentExtra NODE_NAME=<hostname>
-    nssm set flanneld AppDirectory C:\flannel
-    nssm start flanneld
-    ```
-
-    <!--
-    Register kubelet.exe:
-    -->
-    注册 kubelet.exe：
-
-    ```powershell
-    nssm install kubelet C:\k\kubelet.exe
-    nssm set kubelet AppParameters --hostname-override=<hostname> --v=6 --pod-infra-container-image=k8s.gcr.io/pause:3.5 --resolv-conf="" --allow-privileged=true --enable-debugging-handlers --cluster-dns=<DNS-service-IP> --cluster-domain=cluster.local --kubeconfig=c:\k\config --hairpin-mode=promiscuous-bridge --image-pull-progress-deadline=20m --cgroups-per-qos=false  --log-dir=<log directory> --logtostderr=false --enforce-node-allocatable="" --network-plugin=cni --cni-bin-dir=c:\k\cni --cni-conf-dir=c:\k\cni\config
-    nssm set kubelet AppDirectory C:\k
-    nssm start kubelet
-    ```
-
-    <!--
-    Register kube-proxy.exe (l2bridge / host-gw):
-    -->
-    注册 kube-proxy.exe（二层网桥模式和主机网关模式）
-
-    ```powershell
-    nssm install kube-proxy C:\k\kube-proxy.exe
-    nssm set kube-proxy AppDirectory c:\k
-    nssm set kube-proxy AppParameters --v=4 --proxy-mode=kernelspace --hostname-override=<hostname>--kubeconfig=c:\k\config --enable-dsr=false --log-dir=<log directory> --logtostderr=false
-    nssm.exe set kube-proxy AppEnvironmentExtra KUBE_NETWORK=cbr0
-    nssm set kube-proxy DependOnService kubelet
-    nssm start kube-proxy
-    ```
-
-    <!--
-    Register kube-proxy.exe (overlay / vxlan):
-    -->
-    注册 kube-proxy.exe（覆盖网络模式或 VxLAN 模式）
-
-    ```powershell
-    nssm install kube-proxy C:\k\kube-proxy.exe
-    nssm set kube-proxy AppDirectory c:\k
-    nssm set kube-proxy AppParameters --v=4 --proxy-mode=kernelspace --feature-gates="WinOverlay=true" --hostname-override=<hostname> --kubeconfig=c:\k\config --network-name=vxlan0 --source-vip=<source-vip> --enable-dsr=false --log-dir=<log directory> --logtostderr=false
-    nssm set kube-proxy DependOnService kubelet
-    nssm start kube-proxy
-    ```
-
-    <!--
-    For initial troubleshooting, you can use the following flags in
-    [nssm.exe](https://nssm.cc/) to redirect stdout and stderr to a output file:
-
-    ```powershell
-    nssm set <Service Name> AppStdout C:\k\mysvc.log
-    nssm set <Service Name> AppStderr C:\k\mysvc.log
-    ```
-
-    For additional details, see official [nssm usage](https://nssm.cc/usage) docs.
-    -->
-    作为初始的故障排查操作，你可以使用在 [nssm.exe](https://nssm.cc/) 中使用下面的标志
-    以便将标准输出和标准错误输出重定向到一个输出文件：
-
-    ```powershell
-    nssm set <服务名称> AppStdout C:\k\mysvc.log
-    nssm set <服务名称> AppStderr C:\k\mysvc.log
-    ```
-
-    要了解更多的细节，可参见官方的 [nssm 用法](https://nssm.cc/usage)文档。
-
-<!--
-* My Windows Pods do not have network connectivity
-
-  If you are using virtual machines, ensure that MAC spoofing is enabled on
-  all the VM network adapter(s).
--->
-* 我的 Windows Pods 无发连接网络
-
-  如果你在使用虚拟机，请确保 VM 网络适配器均已开启 MAC 侦听（Spoofing）。
-
-<!--
-* My Windows Pods cannot ping external resources
-
-  Windows Pods do not have outbound rules programmed for the ICMP protocol
-  today. However, TCP/UDP is supported. When trying to demonstrate connectivity
-  to resources outside of the cluster, please substitute `ping <IP>` with
-  corresponding `curl <IP>` commands.
--->
-* 我的 Windows Pods 无法 ping 外部资源
-
-  Windows Pods 目前没有为 ICMP 协议提供出站规则。不过 TCP/UDP 是支持的。
-  尝试与集群外资源连接时，可以将 `ping <IP>` 命令替换为对应的 `curl <IP>` 命令。
-
-  <!--
-  If you are still facing problems, most likely your network configuration in
-  [cni.conf](https://github.com/Microsoft/SDN/blob/master/Kubernetes/flannel/l2bridge/cni/config/cni.conf)
-  deserves some extra attention. You can always edit this static file. The
-  configuration update will apply to any newly created Kubernetes resources.
-  -->
-  如果你还遇到问题，很可能你在
-  [cni.conf](https://github.com/Microsoft/SDN/blob/master/Kubernetes/flannel/l2bridge/cni/config/cni.conf)
-  中的网络配置值得额外的注意。你总是可以编辑这一静态文件。
-  配置的更新会应用到所有新创建的 Kubernetes 资源上。
-
-  <!--
-  One of the Kubernetes networking requirements (see
-  [Kubernetes network model](/docs/concepts/cluster-administration/networking/))
-  is for cluster communication to occur without NAT internally. To honor this
-  requirement, there is an
-  [ExceptionList](https://github.com/Microsoft/SDN/blob/master/Kubernetes/flannel/l2bridge/cni/config/cni.conf#L20)
-  for all the communication where we do not want outbound NAT to occur. However,
-  this also means that you need to exclude the external IP you are trying to
-  query from the ExceptionList. Only then will the traffic originating from your
-  Windows pods be SNAT'ed correctly to receive a response from the outside
-  world. In this regard, your ExceptionList in `cni.conf` should look as
-  follows:
-  -->
-  Kubernetes 网络的需求之一（参见
-  [Kubernetes 网络模型](/zh/docs/concepts/cluster-administration/networking/)）
-  是集群内部无需网络地址转译（NAT）即可实现通信。
-  为了符合这一要求，对所有我们不希望出站时发生 NAT 的通信都存在一个
-  [ExceptionList](https://github.com/Microsoft/SDN/blob/master/Kubernetes/flannel/l2bridge/cni/config/cni.conf#L20)。
-  然而这也意味着你需要将你要查询的外部 IP 从 ExceptionList 中移除。
-  只有这时，从你的 Windows Pod 发起的网络请求才会被正确地通过 SNAT 转换以接收到
-  来自外部世界的响应。
-  就此而言，你在 `cni.conf` 中的 `ExceptionList` 应该看起来像这样：
-
-  <!--
-  ```conf
-  "ExceptionList": [
-       "10.244.0.0/16",  # Cluster subnet
-       "10.96.0.0/12",   # Service subnet
-       "10.127.130.0/24" # Management (host) subnet
-  ]
-  ```
-  -->
-  ```conf
-  "ExceptionList": [
-      "10.244.0.0/16",  # 集群子网
-      "10.96.0.0/12",   # 服务子网
-      "10.127.130.0/24" # 管理（主机）子网
-  ]
-  ```
-
-<!--
-* My Windows node cannot access NodePort service
-
-  Local NodePort access from the node itself fails. This is a known
-  limitation. NodePort access works from other nodes or external clients.
--->
-* 我的 Windows 节点无法访问 NodePort 服务
-
-  从节点自身发起的本地 NodePort 请求会失败。这是一个已知的局限。
-  NodePort 服务的访问从其他节点或者外部客户端都可正常进行。
-
-<!--
-* vNICs and HNS endpoints of containers are being deleted
-
-  This issue can be caused when the `hostname-override` parameter is not
-  passed to
-  [kube-proxy](/docs/reference/command-line-tools-reference/kube-proxy/).
-  To resolve it, users need to pass the hostname to kube-proxy as follows:
--->
-* 容器的 vNICs 和 HNS 端点被删除了
-
-  这一问题可能因为 `hostname-override` 参数未能传递给
-  [kube-proxy](/zh/docs/reference/command-line-tools-reference/kube-proxy/)
-  而导致。解决这一问题时，用户需要按如下方式将主机名传递给 kube-proxy：
-
-  ```powershell
-  C:\k\kube-proxy.exe --hostname-override=$(hostname)
-  ```
-
-<!--
-* With flannel my nodes are having issues after rejoining a cluster
-
-  Whenever a previously deleted node is being re-joined to the cluster,
-  flannelD tries to assign a new pod subnet to the node. Users should remove the
-  old pod subnet configuration files in the following paths:
--->
-* 使用 Flannel 时，我的节点在重新加入集群时遇到问题
-
-  无论何时，当一个之前被删除的节点被重新添加到集群时，flannelD 都会将为节点分配
-  一个新的 Pod 子网。 
-  用户需要将将下面路径中的老的 Pod 子网配置文件删除：
-
-  ```powershell
-  Remove-Item C:\k\SourceVip.json
-  Remove-Item C:\k\SourceVipRequest.json
-  ```
-
-<!--
-* After launching `start.ps1`, flanneld is stuck in "Waiting for the Network
-  to be created"
-
-  There are numerous reports of this
-  [issue](https://github.com/coreos/flannel/issues/1066); most likely it is a
-  timing issue for when the management IP of the flannel network is set. A
-  workaround is to simply relaunch start.ps1 or relaunch it manually as follows:
-
-  ```powershell
-  PS C:> [Environment]::SetEnvironmentVariable("NODE_NAME", "<Windows_Worker_Hostname>")
-  PS C:> C:\flannel\flanneld.exe --kubeconfig-file=c:\k\config --iface=<Windows_Worker_Node_IP> --ip-masq=1 --kube-subnet-mgr=1
-  ```
--->
-* 在启动了 `start.ps1` 之后，flanneld 一直停滞在 "Waiting for the Network
-  to be created" 状态
-
-  关于这一[问题](https://github.com/coreos/flannel/issues/1066)有很多的报告；
-  最可能的一种原因是关于何时设置 Flannel 网络的管理 IP 的时间问题。
-  一种解决办法是重新启动 `start.ps1` 或者按如下方式手动重启之：
-
-  ```powershell
-  [Environment]::SetEnvironmentVariable("NODE_NAME", "<Windows 工作节点主机名>")
-  C:\flannel\flanneld.exe --kubeconfig-file=c:\k\config --iface=<Windows 工作节点 IP> --ip-masq=1 --kube-subnet-mgr=1
-  ```
-
-<!--
-* My Windows Pods cannot launch because of missing `/run/flannel/subnet.env`
-
-  This indicates that Flannel didn't launch correctly. You can either try to
-  restart flanneld.exe or you can copy the files over manually from
-  `/run/flannel/subnet.env` on the Kubernetes master to
-  `C:\run\flannel\subnet.env` on the Windows worker node and modify the
-  `FLANNEL_SUBNET` row to a different number. For example, if node subnet
-  10.244.4.1/24 is desired:
--->
-* 我的 Windows Pods 无法启动，因为缺少 `/run/flannel/subnet.env` 文件
-
-  这表明 Flannel 网络未能正确启动。你可以尝试重启 flanneld.exe 或者将文件手动地
-  从 Kubernetes 主控节点的 `/run/flannel/subnet.env` 路径复制到 Windows 工作
-  节点的 `C:\run\flannel\subnet.env` 路径，并将 `FLANNEL_SUBNET` 行改为一个
-  不同的数值。例如，如果期望节点子网为 `10.244.4.1/24`：
-
-  ```none
-  FLANNEL_NETWORK=10.244.0.0/16
-  FLANNEL_SUBNET=10.244.4.1/24
-  FLANNEL_MTU=1500
-  FLANNEL_IPMASQ=true
-  ```
-<!--
-* My Windows node cannot access my services using the service IP
-
-  This is a known limitation of the current networking stack on Windows.
-  Windows Pods are able to access the service IP however.
--->
-* 我的 Windows 节点无法使用服务 IP 访问我的服务
-
-  这是 Windows 上当前网络协议栈的一个已知的限制。
-  Windows Pods 能够访问服务 IP。
-
-<!--
-* No network adapter is found when starting kubelet
-
-  The Windows networking stack needs a virtual adapter for Kubernetes
-  networking to work. If the following commands return no results (in an admin
-  shell), virtual network creation — a necessary prerequisite for Kubelet to
-  work — has failed:
--->
-* 启动 kubelet 时找不到网络适配器
-
-  Windows 网络堆栈需要一个虚拟的适配器，这样 Kubernetes 网络才能工作。
-  如果下面的命令（在管理员 Shell 中）没有任何返回结果，证明虚拟网络创建
-  （kubelet 正常工作的必要前提之一）失败了：
-
-  ```powershell
-  Get-HnsNetwork | ? Name -ieq "cbr0"
-  Get-NetAdapter | ? Name -Like "vEthernet (Ethernet*"
-  ```
-
-  <!--
-  Often it is worthwhile to modify the
-  [InterfaceName](https://github.com/microsoft/SDN/blob/master/Kubernetes/flannel/start.ps1#L7)
-  parameter of the start.ps1 script, in cases where the host's network adapter
-  isn't "Ethernet". Otherwise, consult the output of the `start-kubelet.ps1`
-  script to see if there are errors during virtual network creation.
-  -->
-  当宿主系统的网络适配器名称不是 "Ethernet" 时，通常值得更改 `start.ps1` 脚本中的
-  [InterfaceName](https://github.com/microsoft/SDN/blob/master/Kubernetes/flannel/start.ps1#L7)
-  参数来重试。否则可以查验 `start-kubelet.ps1` 的输出，看看是否在虚拟网络创建
-  过程中报告了其他错误。
-
-<!--
-* My Pods are stuck at "Container Creating" or restarting over and over
-
-  Check that your pause image is compatible with your OS version. The
-  [instructions](https://docs.microsoft.com/en-us/virtualization/windowscontainers/kubernetes/deploying-resources)
-  assume that both the OS and the containers are version 1803. If you have a
-  later version of Windows, such as an Insider build, you need to adjust the
-  images accordingly. Please refer to the Microsoft's [Docker
-  repository](https://hub.docker.com/u/microsoft/) for images. Regardless, both
-  the pause image Dockerfile and the sample service expect the image to be
-  tagged as :latest.
--->
-* 我的 Pods 停滞在 "Container Creating" 状态或者反复重启
-
-  检查你的 pause 镜像是与你的 OS 版本兼容的。
-  [这里的指令](https://docs.microsoft.com/en-us/virtualization/windowscontainers/kubernetes/deploying-resources)
-  假定你的 OS 和容器版本都是 1803。如果你安装的是更新版本的 Windows，比如说
-  某个 Insider 构造版本，你需要相应地调整要使用的镜像。
-  请参照 Microsoft 的 [Docker 仓库](https://hub.docker.com/u/microsoft/)
-  了解镜像。不管怎样，pause 镜像的 Dockerfile 和示例服务都期望镜像的标签
-  为 `:latest`。
-
-<!--
-* DNS resolution is not properly working
-
-  Check the DNS limitations for Windows in this [section](#dns-limitations).
--->
-* DNS 解析无法正常工作
-
-  参阅 Windows 上 [DNS 相关的局限](#dns-limitations) 节。
-
-<!--
-* `kubectl port-forward` fails with "unable to do port forwarding: wincat not found"
-
-  Port forwarding support for Windows requires wincat.exe to be available in the
-  [pause infrastructure container](#pause-image).
-  Ensure you are using a supported image that is compatable with your Windows OS version.
-  If you would like to build your own pause infrastructure container be sure to include
-  [wincat](https://github.com/kubernetes/kubernetes/tree/master/build/pause/windows/wincat).
--->
-* `kubectl port-forward` 失败，错误信息为 "unable to do port forwarding: wincat not found"
-
-  此功能是在 Kubernetes v1.15 中实现的，pause 基础设施容器
-  `mcr.microsoft.com/oss/kubernetes/pause:3.4.1` 中包含了 wincat.exe。
-  请确保你使用的是这些版本或者更新版本。
-  如果你想要自行构造你自己的 pause 基础设施容器，要确保其中包含了
-  [wincat](https://github.com/kubernetes-sigs/sig-windows-tools/tree/master/cmd/wincat)
-  
-  Windows 的端口转发支持需要在 [pause 基础设施容器](#pause-image) 中提供 wincat.exe。
-  确保你使用的是与你的 Windows 操作系统版本兼容的受支持镜像。
-  如果你想构建自己的 pause 基础架构容器，请确保包含 [wincat](https://github.com/kubernetes/kubernetes/tree/master/build/pause/windows/wincat).。
-
-<!--
-* My Kubernetes installation is failing because my Windows Server node is
-  behind a proxy
-
-  If you are behind a proxy, the following PowerShell environment variables must be defined:
--->
-* 我的 Kubernetes 安装失败，因为我的 Windows Server 节点在防火墙后面
-
-  如果你处于防火墙之后，那么必须定义如下 PowerShell 环境变量：
-
-  ```PowerShell
-  [Environment]::SetEnvironmentVariable("HTTP_PROXY", "http://proxy.example.com:80/", [EnvironmentVariableTarget]::Machine)
-  [Environment]::SetEnvironmentVariable("HTTPS_PROXY", "http://proxy.example.com:443/", [EnvironmentVariableTarget]::Machine)
-  ```
-
-<!--
-* What is a `pause` container?
-
-  In a Kubernetes Pod, an infrastructure or "pause" container is first created
-  to host the container endpoint. Containers that belong to the same pod,
-  including infrastructure and worker containers, share a common network
-  namespace and endpoint (same IP and port space). Pause containers are needed
-  to accommodate worker containers crashing or restarting without losing any of
-  the networking configuration.
-
-  Refer to the [pause image](#pause-image) section to find the recommended version
-  of the pause image.
--->
-* `pause` 容器是什么？
-
-  在一个 Kubernetes Pod 中，一个基础设施容器，或称 "pause" 容器，会被首先创建出来，
-  用以托管容器端点。属于同一 Pod 的容器，包括基础设施容器和工作容器，会共享相同的
-  网络名字空间和端点（相同的 IP 和端口空间）。我们需要 pause 容器来工作容器崩溃或
-  重启的状况，以确保不会丢失任何网络配置。
-
-  请参阅 [pause 镜像](#pause-image) 部分以查找 pause 镜像的推荐版本。
-
-<!--
-### Further investigation
-
-If these steps don't resolve your problem, you can get help running Windows
-containers on Windows nodes in Kubernetes through:
-
-* StackOverflow [Windows Server Container](https://stackoverflow.com/questions/tagged/windows-server-container) topic
-
-* Kubernetes Official Forum [discuss.kubernetes.io](https://discuss.kubernetes.io/)
-
-* Kubernetes Slack [#SIG-Windows Channel](https://kubernetes.slack.com/messages/sig-windows)
--->
-### 进一步探究    {#further-investigation}
-
-如果以上步骤未能解决你遇到的问题，你可以通过以下方式获得在 Kubernetes 
-中的 Windows 节点上运行 Windows 容器的帮助：
-
-* StackOverflow [Windows Server Container](https://stackoverflow.com/questions/tagged/windows-server-container) 主题
-* Kubernetes 官方论坛 [discuss.kubernetes.io](https://discuss.kubernetes.io/)
-* Kubernetes Slack [#SIG-Windows 频道](https://kubernetes.slack.com/messages/sig-windows)
-
-<!--
-## Reporting Issues and Feature Requests
-
-If you have what looks like a bug, or you would like to make a feature
-request, please use the
-[GitHub issue tracking system](https://github.com/kubernetes/kubernetes/issues).
-You can open issues on
-[GitHub](https://github.com/kubernetes/kubernetes/issues/new/choose) and
-assign them to SIG-Windows. You should first search the list of issues in case
-it was reported previously and comment with your experience on the issue and
-add additional logs. SIG-Windows Slack is also a great avenue to get some
-initial support and troubleshooting ideas prior to creating a ticket.
--->
-## 报告问题和功能需求  {#reporting-issues-and-feature-requests}
-
-如果你遇到看起来像是软件缺陷的问题，或者你想要提起某种功能需求，请使用
-[GitHub 问题跟踪系统](https://github.com/kubernetes/kubernetes/issues)。
-你可以在 [GitHub](https://github.com/kubernetes/kubernetes/issues/new/choose)
-上发起 Issue 并将其指派给 SIG-Windows。你应该首先搜索 Issue 列表，看看是否
-该 Issue 以前曾经被报告过，以评论形式将你在该 Issue 上的体验追加进去，并附上
-额外的日志信息。SIG-Windows Slack 频道也是一个获得初步支持的好渠道，可以在
-生成新的 Ticket 之前对一些想法进行故障分析。
-
-<!--
-If filing a bug, please include detailed information about how to reproduce
-the problem, such as:
-
-* Kubernetes version: kubectl version
-* Environment details: Cloud provider, OS distro, networking choice and
-  configuration, and Docker version
-* Detailed steps to reproduce the problem
-* [Relevant logs](https://github.com/kubernetes/community/blob/master/sig-windows/CONTRIBUTING.md#gathering-logs)
-* Tag the issue sig/windows by commenting on the issue with `/sig windows` to
-  bring it to a SIG-Windows member's attention
--->
-在登记软件缺陷时，请给出如何重现该问题的详细信息，例如：
-
-* Kubernetes 版本：kubectl 版本
-* 环境细节：云平台、OS 版本、网络选型和配置情况以及 Docker 版本
-* 重现该问题的详细步骤
-* [相关的日志](https://github.com/kubernetes/community/blob/master/sig-windows/CONTRIBUTING.md#gathering-logs)
-* 通过为该 Issue 添加 `/sig windows` 评论为其添加 `sig/windows` 标签，
-  进而引起 SIG-Windows 成员的注意。
-
-## {{% heading "whatsnext" %}}
-
-<!--
-We have a lot of features in our roadmap. An abbreviated high level list is
-included below, but we encourage you to view our
-[roadmap project](https://github.com/orgs/kubernetes/projects/8) and help us make
-Windows support better by
-[contributing](https://github.com/kubernetes/community/blob/master/sig-windows/).
--->
-在我们的未来蓝图中包含很多功能特性（要实现）。下面是一个浓缩的简要列表，不过我们
-鼓励你查看我们的 [roadmap 项目](https://github.com/orgs/kubernetes/projects/8)并
-通过[贡献](https://github.com/kubernetes/community/blob/master/sig-windows/)的方式
-帮助我们把 Windows 支持做得更好。
-
-<!--
-### Hyper-V isolation
-
-Hyper-V isolation is requried to enable the following use cases for Windows
-containers in Kubernetes:
-
-* Hypervisor-based isolation between pods for additional security
-
-* Backwards compatibility allowing a node to run a newer Windows Server
-  version without requiring containers to be rebuilt
-
-* Specific CPU/NUMA settings for a pod
-
-* Memory isolation and reservations
--->
-### Hyper-V 隔离  {#hyper-v-isolation}
-
-要满足 Kubernetes 中 Windows 容器的如下用例，需要利用 Hyper-V 隔离：
-
-* 在 Pod 之间实施基于监管程序（Hypervisor）的隔离，以增强安全性
-* 出于向后兼容需要，允许添加运行新 Windows Server 版本的节点时不必
-  重新创建容器
-* 为 Pod 设置特定的 CPU/NUMA 配置
-* 实施内存隔离与预留
-
-<!--
-### Deployment with kubeadm and cluster API
-
-Kubeadm is becoming the de facto standard for users to deploy a Kubernetes
-cluster. Windows node support in kubeadm is currently a work-in-progress but a
-guide is available
-[here](/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes/). We are
-also making investments in cluster API to ensure Windows nodes are properly
-provisioned.
--->
-### 使用 kubeadm 和 Cluster API 来部署  {#deployment-with-kubeadm-and-cluster-api}
-
-kubeadm 已经成为用户部署 Kubernetes 集群的事实标准。
-kubeadm 对 Windows 节点的支持目前还在开发过程中，不过你可以阅读相关的
-[指南](/zh/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes/)。
-我们也在投入资源到 Cluster API，以确保 Windows 节点被正确配置。
-
diff --git a/content/zh/docs/setup/production-environment/windows/user-guide-windows-containers.md b/content/zh/docs/setup/production-environment/windows/user-guide-windows-containers.md
deleted file mode 100644
index 88c23e548f..0000000000
--- a/content/zh/docs/setup/production-environment/windows/user-guide-windows-containers.md
+++ /dev/null
@@ -1,470 +0,0 @@
----
-title: Kubernetes 中 Windows 容器的调度指南
-content_type: concept
-weight: 75
----
-<!--
-reviewers:
-- jayunit100
-- jsturtevant
-- marosset
-- perithompson
-title: Guide for scheduling Windows containers in Kubernetes
-content_type: concept
-weight: 75
--->
-
-<!-- overview -->
-
-<!--
-Windows applications constitute a large portion of the services and applications that run in many organizations.
-This guide walks you through the steps to configure and deploy a Windows container in Kubernetes.
--->
-Windows 应用程序构成了许多组织中运行的服务和应用程序的很大一部分。
-本指南将引导您完成在 Kubernetes 中配置和部署 Windows 容器的步骤。
-
-<!-- body -->
-
-<!--
-## Objectives
-
-* Configure an example deployment to run Windows containers on the Windows node
-* (Optional) Configure an Active Directory Identity for your Pod using Group Managed Service Accounts (GMSA)
--->
-## 目标
-
-* 配置一个示例 deployment 以在 Windows 节点上运行 Windows 容器
-* （可选）使用组托管服务帐户（GMSA）为您的 Pod 配置 Active Directory 身份
-
-<!--
-## Before you begin
-
-* Create a Kubernetes cluster that includes a
-control plane and a [worker node running Windows Server](/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes/)
-* It is important to note that creating and deploying services and workloads on Kubernetes
-behaves in much the same way for Linux and Windows containers.
-[Kubectl commands](/docs/reference/kubectl/overview/) to interface with the cluster are identical.
-The example in the section below is provided to jumpstart your experience with Windows containers.
--->
-## 在你开始之前
-
-* 创建一个 Kubernetes 集群，其中包括一个控制平面和
-  [运行 Windows 服务器的工作节点](/zh/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes/)
-* 重要的是要注意，对于 Linux 和 Windows 容器，在 Kubernetes 
-  上创建和部署服务和工作负载的行为几乎相同。
-  与集群接口的 [kubectl 命令](/zh/docs/reference/kubectl/overview/)相同。
-  提供以下部分中的示例只是为了快速启动  Windows 容器的使用体验。
-
-<!--
-## Getting Started: Deploying a Windows container
-
-To deploy a Windows container on Kubernetes, you must first create an example application.
-The example YAML file below creates a simple webserver application.
-Create a service spec named `win-webserver.yaml` with the contents below:
--->
-## 入门：部署 Windows 容器
-
-要在 Kubernetes 上部署 Windows 容器，您必须首先创建一个示例应用程序。
-下面的示例 YAML  文件创建了一个简单的 Web 服务器应用程序。
-创建一个名为  `win-webserver.yaml`  的服务规约，其内容如下：
-
-```yaml
-apiVersion: v1
-kind: Service
-metadata:
-  name: win-webserver
-  labels:
-    app: win-webserver
-spec:
-  ports:
-    # the port that this service should serve on
-    - port: 80
-      targetPort: 80
-  selector:
-    app: win-webserver
-  type: NodePort
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app: win-webserver
-  name: win-webserver
-spec:
-  replicas: 2
-  selector:
-    matchLabels:
-      app: win-webserver
-  template:
-    metadata:
-      labels:
-        app: win-webserver
-      name: win-webserver
-    spec:
-     containers:
-      - name: windowswebserver
-        image: mcr.microsoft.com/windows/servercore:ltsc2019
-        command:
-        - powershell.exe
-        - -command
-        - "<#code used from https://gist.github.com/19WAS85/5424431#> ; $$listener = New-Object System.Net.HttpListener ; $$listener.Prefixes.Add('http://*:80/') ; $$listener.Start() ; $$callerCounts = @{} ; Write-Host('Listening at http://*:80/') ; while ($$listener.IsListening) { ;$$context = $$listener.GetContext() ;$$requestUrl = $$context.Request.Url ;$$clientIP = $$context.Request.RemoteEndPoint.Address ;$$response = $$context.Response ;Write-Host '' ;Write-Host('> {0}' -f $$requestUrl) ;  ;$$count = 1 ;$$k=$$callerCounts.Get_Item($$clientIP) ;if ($$k -ne $$null) { $$count += $$k } ;$$callerCounts.Set_Item($$clientIP, $$count) ;$$ip=(Get-NetAdapter | Get-NetIpAddress); $$header='<html><body><H1>Windows Container Web Server</H1>' ;$$callerCountsString='' ;$$callerCounts.Keys | % { $$callerCountsString+='<p>IP {0} callerCount {1} ' -f $$ip[1].IPAddress,$$callerCounts.Item($$_) } ;$$footer='</body></html>' ;$$content='{0}{1}{2}' -f $$header,$$callerCountsString,$$footer ;Write-Output $$content ;$$buffer = [System.Text.Encoding]::UTF8.GetBytes($$content) ;$$response.ContentLength64 = $$buffer.Length ;$$response.OutputStream.Write($$buffer, 0, $$buffer.Length) ;$$response.Close() ;$$responseStatus = $$response.StatusCode ;Write-Host('< {0}' -f $$responseStatus)  } ; "
-     nodeSelector:
-      kubernetes.io/os: windows
-```
-
-<!--
-Port mapping is also supported, but for simplicity in this example
-the container port 80 is exposed directly to the service.
--->
-{{< note >}}
-端口映射也是支持的，但为简单起见，在此示例中容器端口 80 直接暴露给服务。
-{{< /note >}}
-
-<!--
-1. Check that all nodes are healthy:
-
-    ```bash
-    kubectl get nodes
-    ```
-
-1. Deploy the service and watch for pod updates:
-
-    ```bash
-    kubectl apply -f win-webserver.yaml
-    kubectl get pods -o wide -w
-    ```
-
-    When the service is deployed correctly both Pods are marked as Ready. To exit the watch command, press Ctrl+C.
-
-1. Check that the deployment succeeded. To verify:
-
-    * Two containers per pod on the Windows node, use `docker ps` 
-    * Two pods listed from the Linux control plane node, use `kubectl get pods` 
-    * Node-to-pod communication across the network, `curl` port 80 of your pod IPs from the Linux control plane node 
-      to check for a web server response
-    * Pod-to-pod communication, ping between pods (and across hosts, if you have more than one Windows node)
-      using docker exec or kubectl exec
-    * Service-to-pod communication, `curl` the virtual service IP (seen under `kubectl get services`)
-      from the Linux control plane node and from individual pods
-    * Service discovery, `curl` the service name with the Kubernetes [default DNS suffix](/docs/concepts/services-networking/dns-pod-service/#services)
-    * Inbound connectivity, `curl` the NodePort from the Linux control plane node or machines outside of the cluster
-    * Outbound connectivity, `curl` external IPs from inside the pod using kubectl exec
--->
-1. 检查所有节点是否健康：
-
-   ```bash
-   kubectl get nodes
-   ```
-
-1. 部署服务并观察 pod 更新：
-
-   ```bash
-   kubectl apply -f win-webserver.yaml
-   kubectl get pods -o wide -w
-   ```
-
-   正确部署服务后，两个 Pod 都标记为“Ready”。要退出 watch 命令，请按 Ctrl + C。
-
-1. 检查部署是否成功。验证：
-
-   * Windows 节点上每个 Pod 有两个容器，使用  `docker ps` 
-   * Linux 控制平面节点列出两个 Pod，使用  `kubectl get pods` 
-   * 跨网络的节点到 Pod 通信，从 Linux 控制平面节点 `curl` 您的 pod IPs 的端口80，以检查 Web 服务器响应
-   * Pod 到 Pod 的通信，使用 docker exec 或 kubectl exec 在 Pod 之间
-     （以及跨主机，如果你有多个 Windows 节点）进行 ping 操作
-   * 服务到 Pod 的通信，从 Linux 控制平面节点和各个 Pod 中 `curl` 虚拟服务 IP
-     （在 `kubectl get services` 下可见）
-   * 服务发现，使用 Kubernetes `curl` 服务名称
-     [默认 DNS 后缀](/zh/docs/concepts/services-networking/dns-pod-service/#services)
-   * 入站连接，从 Linux 控制平面节点或集群外部的计算机 `curl` NodePort
-   * 出站连接，使用 kubectl exec 从 Pod 内部 curl 外部 IP
-
-<!--
-Windows container hosts are not able to access the IP of services scheduled on them due to current platform limitations of the Windows networking stack.
-Only Windows pods are able to access service IPs.
--->
-{{< note >}}
-由于当前平台对 Windows 网络堆栈的限制，Windows 容器主机无法访问在其上调度的服务的 IP。只有 Windows pods 才能访问服务 IP。
-{{< /note >}}
-
-<!--
-## Observability
-
-### Capturing logs from workloads
--->
-## 可观测性  {#observability}
-
-### 抓取来自工作负载的日志
-
-<!--
-Logs are an important element of observability; they enable users to gain insights
-into the operational aspect of workloads and are a key ingredient to troubleshooting issues.
-Because Windows containers and workloads inside Windows containers behave differently from Linux containers,
-users had a hard time collecting logs, limiting operational visibility.
-Windows workloads for example are usually configured to log to ETW (Event Tracing for Windows)
-or push entries to the application event log.
-[LogMonitor](https://github.com/microsoft/windows-container-tools/tree/master/LogMonitor), an open source tool by Microsoft,
-is the recommended way to monitor configured log sources inside a Windows container.
-LogMonitor supports monitoring event logs, ETW providers, and custom application logs,
-piping them to STDOUT for consumption by `kubectl logs <pod>`.
--->
-日志是可观测性的重要一环；使用日志用户可以获得对负载运行状况的洞察，
-因而日志是故障排查的一个重要手法。
-因为 Windows 容器中的 Windows 容器和负载与 Linux 容器的行为不同，
-用户很难收集日志，因此运行状态的可见性很受限。
-例如，Windows 工作负载通常被配置为将日志输出到 Windows 事件跟踪
-（Event Tracing for Windows，ETW），或者将日志条目推送到应用的事件日志中。
-[LogMonitor](https://github.com/microsoft/windows-container-tools/tree/master/LogMonitor)
-是 Microsoft 提供的一个开源工具，是监视 Windows 容器中所配置的日志源
-的推荐方式。
-LogMonitor 支持监视时间日志、ETW 提供者模块以及自定义的应用日志，
-并使用管道的方式将其输出到标准输出（stdout），以便 `kubectl logs <pod>`
-这类命令能够读取这些数据。
-
-<!--
-Follow the instructions in the LogMonitor GitHub page to copy its binaries and configuration files
-to all your containers and add the necessary entrypoints for LogMonitor to push your logs to STDOUT.
--->
-请遵照 LogMonitor GitHub 页面上的指令，将其可执行文件和配置文件复制到
-你的所有容器中，并为其添加必要的入口点（Entrypoint），以便 LogMonitor
-能够将你的日志输出推送到标准输出（stdout）。
-
-
-<!--
-## Using configurable Container usernames
-
-Starting with Kubernetes v1.16, Windows containers can be configured to run their entrypoints and processes
-with different usernames than the image defaults.
-The way this is achieved is a bit different from the way it is done for Linux containers.
-Learn more about it [here](/docs/tasks/configure-pod-container/configure-runasusername/).
--->
-## 使用可配置的容器用户名
-
-从 Kubernetes v1.16 开始，可以为 Windows  容器配置与其镜像默认值不同的用户名
-来运行其入口点和进程。
-此能力的实现方式和 Linux 容器有些不同。
-在[此处](/zh/docs/tasks/configure-pod-container/configure-runasusername/)
-可了解更多信息。
-
-<!--
-## Managing Workload Identity with Group Managed Service Accounts
-
-Starting with Kubernetes v1.14, Windows container workloads can be configured to use Group Managed Service Accounts (GMSA).
-Group Managed Service Accounts are a specific type of Active Directory account that provides automatic password management,
-simplified service principal name (SPN) management, and the ability to delegate the management to other administrators across multiple servers.
-Containers configured with a GMSA can access external Active Directory Domain resources while carrying the identity configured with the GMSA.
-Learn more about configuring and using GMSA for Windows containers [here](/docs/tasks/configure-pod-container/configure-gmsa/).
--->
-## 使用组托管服务帐户管理工作负载身份
-
-从 Kubernetes v1.14 开始，可以将 Windows 容器工作负载配置为使用组托管服务帐户（GMSA）。
-组托管服务帐户是 Active Directory 帐户的一种特定类型，它提供自动密码管理，
-简化的服务主体名称（SPN）管理以及将管理委派给跨多台服务器的其他管理员的功能。
-配置了 GMSA 的容器可以访问外部 Active Directory 域资源，同时携带通过 GMSA 配置的身份。
-在[此处](/zh/docs/tasks/configure-pod-container/configure-gmsa/)了解有关为
-Windows 容器配置和使用 GMSA 的更多信息。
-
-<!--
-## Taints and Tolerations
--->
-## 污点和容忍度
-
-<!--
-Users today need to use some combination of taints and node selectors in order to
-keep Linux and Windows workloads on their respective OS-specific nodes.
-This likely imposes a burden only on Windows users. The recommended approach is outlined below,
-with one of its main goals being that this approach should not break compatibility for existing Linux workloads.
--->
-目前，用户需要将 Linux 和 Windows 工作负载运行在各自特定的操作系统的节点上，
-因而需要结合使用污点和节点选择算符。 这可能仅给 Windows 用户造成不便。
-推荐的方法概述如下，其主要目标之一是该方法不应破坏与现有 Linux 工作负载的兼容性。
-
-<!--
-### Ensuring OS-specific workloads land on the appropriate container host
--->
-### 确保特定操作系统的工作负载落在适当的容器主机上
-
-<!--
-Users can ensure Windows containers can be scheduled on the appropriate host using Taints and Tolerations.
-All Kubernetes nodes today have the following default labels:
--->
-用户可以使用污点和容忍度确保 Windows 容器可以调度在适当的主机上。目前所有 Kubernetes 节点都具有以下默认标签：
-
-* kubernetes.io/os = [windows|linux]
-* kubernetes.io/arch = [amd64|arm64|...]
-
-<!--
-If a Pod specification does not specify a nodeSelector like `"kubernetes.io/os": windows`,
-it is possible the Pod can be scheduled on any host, Windows or Linux.
-This can be problematic since a Windows container can only run on Windows and a Linux container can only run on Linux.
-The best practice is to use a nodeSelector.
--->
-如果 Pod 规范未指定诸如 `"kubernetes.io/os": windows` 之类的 nodeSelector，则该 Pod 
-可能会被调度到任何主机（Windows 或 Linux）上。
-这是有问题的，因为 Windows 容器只能在 Windows 上运行，而 Linux 容器只能在 Linux 上运行。
-最佳实践是使用 nodeSelector。
-
-<!--
-However, we understand that in many cases users have a pre-existing large number of deployments for Linux containers,
-as well as an ecosystem of off-the-shelf configurations, such as community Helm charts, and programmatic Pod generation cases, such as with Operators.
-In those situations, you may be hesitant to make the configuration change to add nodeSelectors.
-The alternative is to use Taints. Because the kubelet can set Taints during registration,
-it could easily be modified to automatically add a taint when running on Windows only.
--->
-但是，我们了解到，在许多情况下，用户都有既存的大量的 Linux 容器部署，以及一个现成的配置生态系统，
-例如社区 Helm charts，以及程序化 Pod 生成案例，例如 Operators。
-在这些情况下，您可能会不愿意更改配置添加 nodeSelector。替代方法是使用污点。
-由于 kubelet 可以在注册期间设置污点，因此可以轻松修改它，使其仅在 Windows 上运行时自动添加污点。
-
-<!--
-For example:  `--register-with-taints='os=windows:NoSchedule'`
--->
-例如：`--register-with-taints='os=windows:NoSchedule'`
-
-<!--
-By adding a taint to all Windows nodes, nothing will be scheduled on them (that includes existing Linux Pods).
-In order for a Windows Pod to be scheduled on a Windows node,
-it would need both the nodeSelector and the appropriate matching toleration to choose Windows.
--->
-向所有 Windows 节点添加污点后，Kubernetes 将不会在它们上调度任何负载（包括现有的 Linux Pod）。
-为了使某 Windows Pod 调度到 Windows 节点上，该 Pod 需要 nodeSelector 和合适的匹配的容忍度设置来选择 Windows，
-
-```yaml
-nodeSelector:
-  kubernetes.io/os: windows
-  node.kubernetes.io/windows-build: '10.0.17763'
-tolerations:
-  - key: "os"
-    operator: "Equal"
-    value: "windows"
-    effect: "NoSchedule"
-```
-
-<!--
-### Handling multiple Windows versions in the same cluster
--->
-### 处理同一集群中的多个 Windows 版本
-
-<!--
-The Windows Server version used by each pod must match that of the node. If you want to use multiple Windows
-Server versions in the same cluster, then you should set additional node labels and nodeSelectors.
--->
-每个 Pod 使用的 Windows Server 版本必须与该节点的 Windows Server 版本相匹配。
-如果要在同一集群中使用多个 Windows Server 版本，则应该设置其他节点标签和
-nodeSelector。
-
-<!--
-Kubernetes 1.17 automatically adds a new label `node.kubernetes.io/windows-build` to simplify this.
-If you're running an older version, then it's recommended to add this label manually to Windows nodes.
--->
-Kubernetes 1.17 自动添加了一个新标签 `node.kubernetes.io/windows-build` 来简化此操作。 
-如果您运行的是旧版本，则建议手动将此标签添加到 Windows 节点。
-
-<!--
-This label reflects the Windows major, minor, and build number that need to match for compatibility.
-Here are values used today for each Windows Server version.
--->
-此标签反映了需要兼容的 Windows 主要、次要和内部版本号。以下是当前每个
-Windows Server 版本使用的值。
-
-| 产品名称                             |   内部编号             |
-|--------------------------------------|------------------------|
-| Windows Server 2019                  | 10.0.17763             |
-| Windows Server version 1809          | 10.0.17763             |
-| Windows Server version 1903          | 10.0.18362             |
-
-
-<!--
-### Simplifying with RuntimeClass
--->
-### 使用 RuntimeClass 简化
-
-<!--
-[RuntimeClass] can be used to simplify the process of using taints and tolerations.
-A cluster administrator can create a `RuntimeClass` object which is used to encapsulate these taints and tolerations.
--->
-[RuntimeClass](/zh/docs/concepts/containers/runtime-class/) 可用于
-简化使用污点和容忍度的过程。
-集群管理员可以创建 `RuntimeClass` 对象，用于封装这些污点和容忍度。
-
-<!--
-1. Save this file to `runtimeClasses.yml`. It includes the appropriate `nodeSelector`
-   for the Windows OS, architecture, and version.
--->
-1. 将此文件保存到 `runtimeClasses.yml` 文件。
-   它包括适用于 Windows 操作系统、体系结构和版本的 `nodeSelector`。
-
-   ```yaml
-   apiVersion: node.k8s.io/v1
-   kind: RuntimeClass
-   metadata:
-     name: windows-2019
-   handler: 'docker'
-   scheduling:
-     nodeSelector:
-       kubernetes.io/os: 'windows'
-       kubernetes.io/arch: 'amd64'
-       node.kubernetes.io/windows-build: '10.0.17763'
-     tolerations:
-     - effect: NoSchedule
-       key: os
-       operator: Equal
-       value: "windows"
-   ```
-
-<!--
-1. Run `kubectl create -f runtimeClasses.yml` using as a cluster administrator
-1. Add `runtimeClassName: windows-2019` as appropriate to Pod specs
--->
-2. 集群管理员执行 `kubectl create -f runtimeClasses.yml` 操作
-3. 根据需要向 Pod 规约中添加 `runtimeClassName: windows-2019`
-
-<!--
-For example:
--->
-例如：
-
-```yaml
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: iis-2019
-  labels:
-    app: iis-2019
-spec:
-  replicas: 1
-  template:
-    metadata:
-      name: iis-2019
-      labels:
-        app: iis-2019
-    spec:
-      runtimeClassName: windows-2019
-      containers:
-      - name: iis
-        image: mcr.microsoft.com/windows/servercore/iis:windowsservercore-ltsc2019
-        resources:
-          limits:
-            cpu: 1
-            memory: 800Mi
-          requests:
-            cpu: .1
-            memory: 300Mi
-        ports:
-          - containerPort: 80
- selector:
-    matchLabels:
-      app: iis-2019
----
-apiVersion: v1
-kind: Service
-metadata:
-  name: iis
-spec:
-  type: LoadBalancer
-  ports:
-  - protocol: TCP
-    port: 80
-  selector:
-    app: iis-2019
-```
diff --git a/content/zh/docs/tasks/access-application-cluster/access-cluster.md b/content/zh/docs/tasks/access-application-cluster/access-cluster.md
deleted file mode 100644
index 52099d3a2a..0000000000
--- a/content/zh/docs/tasks/access-application-cluster/access-cluster.md
+++ /dev/null
@@ -1,674 +0,0 @@
----
-title: 访问集群
-weight: 20
-content_type: concept
----
-
-<!--
-title: Accessing Clusters
-weight: 20
-content_type: concept
--->
-
-<!-- overview -->
-
-<!--
-This topic discusses multiple ways to interact with clusters.
--->
-本文阐述多种与集群交互的方法。
-
-{{< toc >}}
-
-<!-- body -->
-
-<!--
-## Accessing for the first time with kubectl
-
-When accessing the Kubernetes API for the first time, we suggest using the
-Kubernetes CLI, `kubectl`.
-
-To access a cluster, you need to know the location of the cluster and have credentials
-to access it.  Typically, this is automatically set-up when you work through
-a [Getting started guide](/docs/setup/),
-or someone else setup the cluster and provided you with credentials and a location.
-
-Check the location and credentials that kubectl knows about with this command:
--->
-## 使用 kubectl 完成集群的第一次访问
-
-当你第一次访问 Kubernetes API 的时候，我们建议你使用 Kubernetes CLI，`kubectl`。
-
-访问集群时，你需要知道集群的地址并且拥有访问的凭证。通常，这些在你通过
-[启动安装](/zh/docs/setup/)安装集群时都是自动安装好的，或者其他人安装时
-也应该提供了凭证和集群地址。
-
-通过以下命令检查 kubectl 是否知道集群地址及凭证：
-
-```shell
-kubectl config view
-```
-
-<!--
-Many of the [examples](/docs/user-guide/kubectl-cheatsheet) provide an introduction to using
-kubectl and complete documentation is found in the [kubectl manual](/docs/user-guide/kubectl-overview).
--->
-有许多 [例子](/zh/docs/reference/kubectl/cheatsheet/) 介绍了如何使用 kubectl，
-可以在 [kubectl手册](/zh/docs/reference/kubectl/overview/) 中找到更完整的文档。
-
-<!--
-## Directly accessing the REST API
-
-Kubectl handles locating and authenticating to the apiserver.
-If you want to directly access the REST API with an http client like
-curl or wget, or a browser, there are several ways to locate and authenticate:
-
-  - Run kubectl in proxy mode.
-    - Recommended approach.
-    - Uses stored apiserver location.
-    - Verifies identity of apiserver using self-signed cert.  No MITM possible.
-    - Authenticates to apiserver.
-    - In future, may do intelligent client-side load-balancing and failover.
-  - Provide the location and credentials directly to the http client.
-    - Alternate approach.
-    - Works with some types of client code that are confused by using a proxy.
-    - Need to import a root cert into your browser to protect against MITM.
--->
-## 直接访问 REST API
-
-Kubectl 处理 apiserver 的定位和身份验证。
-如果要使用 curl 或 wget 等 http 客户端或浏览器直接访问 REST API，可以通过
-多种方式查找和验证：
-
-- 以代理模式运行 kubectl。
-  - 推荐此方式。
-  - 使用已存储的 apiserver 地址。
-  - 使用自签名的证书来验证 apiserver 的身份。杜绝 MITM 攻击。
-  - 对 apiserver 进行身份验证。
-  - 未来可能会实现智能化的客户端负载均衡和故障恢复。
-- 直接向 http 客户端提供位置和凭据。
-  - 可选的方案。
-  - 适用于代理可能引起混淆的某些客户端类型。
-  - 需要引入根证书到你的浏览器以防止 MITM 攻击。
-
-<!--
-### Using kubectl proxy
-
-The following command runs kubectl in a mode where it acts as a reverse proxy.  It handles
-locating the apiserver and authenticating.
-Run it like this:
--->
-### 使用 kubectl proxy
-
-以下命令以反向代理的模式运行 kubectl。它处理 apiserver 的定位和验证。
-像这样运行：
-
-```shell
-kubectl proxy --port=8080 &
-```
-
-<!--
-See [kubectl proxy](/docs/reference/generated/kubectl/kubectl-commands/#proxy) for more details.
-
-Then you can explore the API with curl, wget, or a browser, replacing localhost
-with [::1] for IPv6, like so:
--->
-参阅 [kubectl proxy](/docs/reference/generated/kubectl/kubectl-commands/#proxy)
-获取更多详细信息。
-
-然后，你可以使用 curl、wget 或浏览器访问 API，如果是 IPv6 则用 [::1] 替换 localhost，
-如下所示：
-
-```shell
-curl http://localhost:8080/api/
-```
-```json
-{
-  "kind": "APIVersions",
-  "versions": [
-    "v1"
-  ],
-  "serverAddressByClientCIDRs": [
-    {
-      "clientCIDR": "0.0.0.0/0",
-      "serverAddress": "10.0.1.149:443"
-    }
-  ]
-}
-```
-
-<!--
-### Without kubectl proxy
-
-In Kubernetes version 1.3 or later, `kubectl config view` no longer displays the token. Use `kubectl describe secret...` to get the token for the default service account, like this:
--->
-### 不使用 kubectl proxy
-
-在 Kubernetes 1.3 或更高版本中，`kubectl config view` 不再显示 token。
-使用 `kubectl describe secret ...` 来获取默认服务帐户的 token，如下所示：
-
-`grep/cut` 方法实现：
-
-```shell
-APISERVER=$(kubectl config view | grep server | cut -f 2- -d ":" | tr -d " ")
-TOKEN=$(kubectl describe secret $(kubectl get secrets | grep default | cut -f1 -d ' ') | grep -E '^token' | cut -f2 -d':' | tr -d ' ')
-curl $APISERVER/api --header "Authorization: Bearer $TOKEN" --insecure
-```
-```json
-{
-  "kind": "APIVersions",
-  "versions": [
-    "v1"
-  ],
-  "serverAddressByClientCIDRs": [
-    {
-      "clientCIDR": "0.0.0.0/0",
-      "serverAddress": "10.0.1.149:443"
-    }
-  ]
-}
-```
-
-`jsonpath` 方法实现：
-
-```shell
-APISERVER=$(kubectl config view --minify -o jsonpath='{.clusters[0].cluster.server}')
-TOKEN=$(kubectl get secret $(kubectl get serviceaccount default -o jsonpath='{.secrets[0].name}') -o jsonpath='{.data.token}' | base64 --decode )
-curl $APISERVER/api --header "Authorization: Bearer $TOKEN" --insecure
-```
-
-```json
-{
-  "kind": "APIVersions",
-  "versions": [
-    "v1"
-  ],
-  "serverAddressByClientCIDRs": [
-    {
-      "clientCIDR": "0.0.0.0/0",
-      "serverAddress": "10.0.1.149:443"
-    }
-  ]
-}
-```
-
-<!--
-The above examples use the `--insecure` flag.  This leaves it subject to MITM
-attacks.  When kubectl accesses the cluster it uses a stored root certificate
-and client certificates to access the server.  (These are installed in the
-`~/.kube` directory).  Since cluster certificates are typically self-signed, it
-may take special configuration to get your http client to use root
-certificate.
-
-On some clusters, the apiserver does not require authentication; it may serve
-on localhost, or be protected by a firewall.  There is not a standard
-for this.  [Configuring Access to the API](/docs/admin/accessing-the-api)
-describes how a cluster admin can configure this.  Such approaches may conflict
-with future high-availability support.
--->
-上面的例子使用了 `--insecure` 参数，这使得它很容易受到 MITM 攻击。
-当 kubectl 访问集群时，它使用存储的根证书和客户端证书来访问服务器
-（它们安装在 `~/.kube` 目录中）。
-由于集群证书通常是自签名的，因此可能需要特殊配置才能让你的 http 客户端使用根证书。
-
-在一些集群中，apiserver 不需要身份验证；它可能只服务于 localhost，或者被防火墙保护，
-这个没有一定的标准。
-[配置对 API 的访问](/zh/docs/concepts/security/controlling-access/)
-描述了集群管理员如何进行配置。此类方法可能与未来的高可用性支持相冲突。
-
-<!--
-## Programmatic access to the API
-
-Kubernetes officially supports [Go](#go-client) and [Python](#python-client)
-client libraries.
-
-### Go client
-
-* To get the library, run the following command: `go get k8s.io/client-go/<version number>/kubernetes`. See [https://github.com/kubernetes/client-go](https://github.com/kubernetes/client-go) to see which versions are supported.
-* Write an application atop of the client-go clients. Note that client-go defines its own API objects, so if needed, please import API definitions from client-go rather than from the main repository, e.g., `import "k8s.io/client-go/1.4/pkg/api/v1"` is correct.
-
-The Go client can use the same [kubeconfig file](/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
-as the kubectl CLI does to locate and authenticate to the apiserver. See this [example](https://git.k8s.io/client-go/examples/out-of-cluster-client-configuration/main.go).
-
-If the application is deployed as a Pod in the cluster, please refer to the [next section](#accessing-the-api-from-a-pod).
--->
-## 以编程方式访问 API
-
-Kubernetes 官方提供对 [Go](#go-client) 和 [Python](#python-client) 的客户端库支持。
-
-### Go 客户端
-
-* 想要获得这个库，请运行命令：`go get k8s.io/client-go/<version number>/kubernetes`。
-  参阅 [https://github.com/kubernetes/client-go](https://github.com/kubernetes/client-go)
-  来查看目前支持哪些版本。
-* 基于这个 client-go 客户端库编写应用程序。
-  请注意，client-go 定义了自己的 API 对象，因此如果需要，请从 client-go 而不是从主存储库
-  导入 API 定义，例如，`import "k8s.io/client-go/1.4/pkg/api/v1"` 才是对的。
-
-Go 客户端可以像 kubectl CLI 一样使用相同的
-[kubeconfig 文件](/zh/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
-来定位和验证 apiserver。可参阅
-[示例](https://git.k8s.io/client-go/examples/out-of-cluster-client-configuration/main.go)。
-
-如果应用程序以 Pod 的形式部署在集群中，那么请参阅
-[下一章](#accessing-the-api-from-a-pod)。
-
-<!--
-### Python client
-
-To use [Python client](https://github.com/kubernetes-client/python), run the following command: `pip install kubernetes`. See [Python Client Library page](https://github.com/kubernetes-client/python) for more installation options.
-
-The Python client can use the same [kubeconfig file](/docs/concepts/cluster-administration/authenticate-across-clusters-kubeconfig/)
-as the kubectl CLI does to locate and authenticate to the apiserver. See this [example](https://github.com/kubernetes-client/python/tree/master/examples).
-
-### Other languages
-
-There are [client libraries](/docs/reference/using-api/client-libraries/) for accessing the API from other languages.
-See documentation for other libraries for how they authenticate.
--->
-### Python 客户端
-
-如果想要使用 [Python 客户端](https://github.com/kubernetes-client/python)，
-请运行命令：`pip install kubernetes`。参阅
-[Python Client Library page](https://github.com/kubernetes-client/python)
-以获得更详细的安装参数。
-
-Python 客户端可以像 kubectl CLI 一样使用相同的
-[kubeconfig 文件](/zh/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
-来定位和验证 apiserver，可参阅
-[示例](https://github.com/kubernetes-client/python/tree/master/examples)。
-
-### 其它语言
-
-目前有多个[客户端库](/zh/docs/reference/using-api/client-libraries/)
-为其它语言提供访问 API 的方法。
-参阅其它库的相关文档以获取他们是如何验证的。
-
-<!--
-## Accessing the API from a Pod
-
-When accessing the API from a pod, locating and authenticating
-to the apiserver are somewhat different.
-
-The recommended way to locate the apiserver within the pod is with
-the `kubernetes.default.svc` DNS name, which resolves to a Service IP which in turn
-will be routed to an apiserver.
-
-The recommended way to authenticate to the apiserver is with a
-[service account](/docs/tasks/configure-pod-container/configure-service-account/) credential. By kube-system, a pod
-is associated with a service account, and a credential (token) for that
-service account is placed into the filesystem tree of each container in that pod,
-at `/var/run/secrets/kubernetes.io/serviceaccount/token`.
--->
-### 从 Pod 中访问 API   {#accessing-the-api-from-a-pod}
-
-当你从 Pod 中访问 API 时，定位和验证 apiserver 会有些许不同。
-
-在 Pod 中定位 apiserver 的推荐方式是通过 `kubernetes.default.svc`
-这个 DNS 名称，该名称将会解析为服务 IP，然后服务 IP 将会路由到 apiserver。
-
-向 apiserver 进行身份验证的推荐方法是使用
-[服务帐户](/zh/docs/tasks/configure-pod-container/configure-service-account/) 凭据。
-通过 kube-system，Pod 与服务帐户相关联，并且该服务帐户的凭证（token）
-被放置在该 Pod 中每个容器的文件系统中，位于
-`/var/run/secrets/kubernetes.io/serviceaccount/token`。
-
-<!--
-If available, a certificate bundle is placed into the filesystem tree of each
-container at `/var/run/secrets/kubernetes.io/serviceaccount/ca.crt`, and should be
-used to verify the serving certificate of the apiserver.
-
-Finally, the default namespace to be used for namespaced API operations is placed in a file
-at `/var/run/secrets/kubernetes.io/serviceaccount/namespace` in each container.
--->
-如果可用，则将证书放入每个容器的文件系统中的
-`/var/run/secrets/kubernetes.io/serviceaccount/ca.crt`，
-并且应该用于验证 apiserver 的服务证书。
-
-最后，名字空间作用域的 API 操作所使用的 default 名字空间将被放置在
-每个容器的 `/var/run/secrets/kubernetes.io/serviceaccount/namespace`
-文件中。
-
-<!--
-From within a pod the recommended ways to connect to API are:
-
-  - run `kubectl proxy` in a sidecar container in the pod, or as a background
-    process within the container. This proxies the
-    Kubernetes API to the localhost interface of the pod, so that other processes
-    in any container of the pod can access it.
-  - use the Go client library, and create a client using the `rest.InClusterConfig()` and `kubernetes.NewForConfig()` functions.
-    They handle locating and authenticating to the apiserver. [example](https://git.k8s.io/client-go/examples/in-cluster-client-configuration/main.go)
-
-In each case, the credentials of the pod are used to communicate securely with the apiserver.
--->
-在 Pod 中，建议连接 API 的方法是：
-
-- 在 Pod 的边车容器中运行 `kubectl proxy`，或者以后台进程的形式运行。
-  这将把 Kubernetes API 代理到当前 Pod 的 localhost 接口，
-  所以 Pod 中的所有容器中的进程都能访问它。
-- 使用 Go 客户端库，并使用 `rest.InClusterConfig()` 和
-  `kubernetes.NewForConfig()` 函数创建一个客户端。
-  他们处理 apiserver 的定位和身份验证。
-  [示例](https://git.k8s.io/client-go/examples/in-cluster-client-configuration/main.go)
-
-在每种情况下，Pod 的凭证都是为了与 apiserver 安全地通信。
-
-<!--
-## Accessing services running on the cluster
-
-The previous section was about connecting the Kubernetes API server.  This section is about
-connecting to other services running on Kubernetes cluster.  In Kubernetes, the
-[nodes](/docs/admin/node), [pods](/docs/user-guide/pods) and [services](/docs/user-guide/services) all have
-their own IPs.  In many cases, the node IPs, pod IPs, and some service IPs on a cluster will not be
-routable, so they will not be reachable from a machine outside the cluster,
-such as your desktop machine.
--->
-## 访问集群中正在运行的服务  {#accessing-services-running-on-the-cluster}
-
-上一节介绍了如何连接 Kubernetes API 服务。本节介绍如何连接到 Kubernetes
-集群上运行的其他服务。
-在 Kubernetes 中，[节点](/zh/docs/concepts/architecture/nodes/)、
-[pods](/zh/docs/concepts/workloads/pods/) 和
-[服务](/zh/docs/concepts/services-networking/service/) 都有自己的 IP。
-在许多情况下，集群上的节点 IP、Pod IP 和某些服务 IP 将无法路由，
-因此无法从集群外部的计算机（例如桌面计算机）访问它们。
-
-<!--
-### Ways to connect
-
-You have several options for connecting to nodes, pods and services from outside the cluster:
-
-  - Access services through public IPs.
-    - Use a service with type `NodePort` or `LoadBalancer` to make the service reachable outside
-      the cluster.  See the [services](/docs/user-guide/services) and
-      [kubectl expose](/docs/reference/generated/kubectl/kubectl-commands/#expose) documentation.
-    - Depending on your cluster environment, this may only expose the service to your corporate network,
-      or it may expose it to the internet.  Think about whether the service being exposed is secure.
-      Does it do its own authentication?
-    - Place pods behind services.  To access one specific pod from a set of replicas, such as for debugging,
-      place a unique label on the pod and create a new service which selects this label.
-    - In most cases, it should not be necessary for application developer to directly access
-      nodes via their nodeIPs.
--->
-### 连接的方法   {#ways-to-connect}
-
-有多种方式可以从集群外部连接节点、Pod 和服务：
-
-- 通过公共 IP 访问服务。
-
-  - 类型为 `NodePort` 或 `LoadBalancer` 的服务，集群外部可以访问。
-    请参阅 [服务](/zh/docs/concepts/services-networking/service/) 和
-    [kubectl expose](/docs/reference/generated/kubectl/kubectl-commands/#expose) 文档。
-  - 取决于你的集群环境，该服务可能仅暴露给你的公司网络，或者也可能暴露给
-    整个互联网。
-    请考虑公开该服务是否安全。它是否进行自己的身份验证？
-  - 在服务后端放置 Pod。要从一组副本中访问一个特定的 Pod，例如进行调试，
-    请在 Pod 上设置一个唯一的标签，然后创建一个选择此标签的新服务。
-  - 在大多数情况下，应用程序开发人员不应该通过其 nodeIP 直接访问节点。
-
-<!--
-  - Access services, nodes, or pods using the Proxy Verb.
-    - Does apiserver authentication and authorization prior to accessing the remote service.
-      Use this if the services are not secure enough to expose to the internet, or to gain
-      access to ports on the node IP, or for debugging.
-    - Proxies may cause problems for some web applications.
-    - Only works for HTTP/HTTPS.
-    - Described [here](#manually-constructing-apiserver-proxy-urls).
--->
-- 使用 proxy 动词访问服务、节点或者 Pod。
-  - 在访问远程服务之前进行 apiserver 身份验证和授权。
-    如果服务不能够安全地暴露到互联网，或者服务不能获得节点 IP 端口的
-    访问权限，或者是为了调试，那么请使用此选项。
-  - 代理可能会给一些 web 应用带来问题。
-  - 只适用于 HTTP/HTTPS。
-  - 更多详细信息在[这里](#manually-constructing-apiserver-proxy-urls)。
-
-<!--
-  - Access from a node or pod in the cluster.
-    - Run a pod, and then connect to a shell in it using [kubectl exec](/docs/reference/generated/kubectl/kubectl-commands/#exec).
-      Connect to other nodes, pods, and services from that shell.
-    - Some clusters may allow you to ssh to a node in the cluster.  From there you may be able to
-      access cluster services.  This is a non-standard method, and will work on some clusters but
-      not others.  Browsers and other tools may or may not be installed.  Cluster DNS may not work.
--->
-- 从集群中的节点或者 Pod 中访问。
-
-  - 运行一个 Pod，然后使用 [kubectl exec](/docs/reference/generated/kubectl/kubectl-commands/#exec)
-    来连接 Pod 里的 Shell。
-    然后从 Shell 中连接其它的节点、Pod 和服务。
-  - 有些集群可能允许你通过 SSH 连接到节点，从那你可能可以访问集群的服务。
-    这是一个非正式的方式，可能可以运行在个别的集群上。
-    浏览器和其它一些工具可能没有被安装。集群的 DNS 可能无法使用。
-
-<!--
-### Discovering builtin services
-
-Typically, there are several services which are started on a cluster by kube-system. Get a list of these
-with the `kubectl cluster-info` command:
--->
-### 发现内建服务
-
-通常来说，集群中会有 kube-system 创建的一些运行的服务。
-
-通过 `kubectl cluster-info` 命令获得这些服务列表：
-
-```shell
-kubectl cluster-info
-```
-
-```
-Kubernetes master is running at https://104.197.5.247
-elasticsearch-logging is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy
-kibana-logging is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/kibana-logging/proxy
-kube-dns is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/kube-dns/proxy
-grafana is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/monitoring-grafana/proxy
-heapster is running at https://104.197.5.247/api/v1/namespaces/kube-system/services/monitoring-heapster/proxy
-```
-
-<!--
-This shows the proxy-verb URL for accessing each service.
-For example, this cluster has cluster-level logging enabled (using Elasticsearch), which can be reached
-at `https://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/` if suitable credentials are passed.  Logging can also be reached through a kubectl proxy, for example at:
-`http://localhost:8080/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/`.
-(See [Access Clusters Using the Kubernetes API](/docs/tasks/administer-cluster/access-cluster-api/) for how to pass credentials or use kubectl proxy.)
--->
-这展示了访问每个服务的 proxy-verb URL。
-例如，如果集群启动了集群级别的日志（使用 Elasticsearch），并且传递合适的凭证，
-那么可以通过
-`https://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/`
-进行访问。日志也能通过 kubectl 代理获取，例如：
-`http://localhost:8080/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/`。
-（参阅[使用 Kubernetes API 访问集群](/zh/docs/tasks/administer-cluster/access-cluster-api/)
-了解如何传递凭据，或者使用 kubectl proxy）
-<!--
-#### Manually constructing apiserver proxy URLs
-
-As mentioned above, you use the `kubectl cluster-info` command to retrieve the service's proxy URL. To create proxy URLs that include service endpoints, suffixes, and parameters, you append to the service's proxy URL:
-`http://`*`kubernetes_master_address`*`/api/v1/namespaces/`*`namespace_name`*`/services/`*`service_name[:port_name]`*`/proxy`
-
-If you haven't specified a name for your port, you don't have to specify *port_name* in the URL. You can also use the port number in place of the *port_name* for both named and unnamed ports.
-
-By default, the API server proxies to your service using http. To use https, prefix the service name with `https:`:
-`http://`*`kubernetes_master_address`*`/api/v1/namespaces/`*`namespace_name`*`/services/`*`https:service_name:[port_name]`*`/proxy`
-
-The supported formats for the name segment of the URL are:
-
-* `<service_name>` - proxies to the default or unnamed port using http
-* `<service_name>:<port_name>` - proxies to the specified port name or port number using http
-* `https:<service_name>:` - proxies to the default or unnamed port using https (note the trailing colon)
-* `https:<service_name>:<port_name>` - proxies to the specified port name or port number using https
--->
-#### 手动构建 apiserver 代理 URL {#manually-constructing-apiserver-proxy-urls}
-
-如上所述，你可以使用 `kubectl cluster-info` 命令来获得服务的代理 URL。
-要创建包含服务端点、后缀和参数的代理 URL，需添加到服务的代理 URL：
-`http://`*`kubernetes_master_address`*`/api/v1/namespaces/`*`namespace_name`*`/services/`*`service_name[:port_name]`*`/proxy`
-
-如果尚未为端口指定名称，则不必在 URL 中指定 *port_name*。
-对于已命名和未命名的端口，也可以使用端口号代替 *port_name*。
-
-默认情况下，API server 使用 HTTP 代理你的服务。
-要使用 HTTPS，请在服务名称前加上 `https:`：
-`http://`*`kubernetes_master_address`*`/api/v1/namespaces/`*`namespace_name`*`/services/`*`https:service_name:[port_name]`*`/proxy`
-
-URL 名称段支持的格式为：
-
-* `<service_name>` - 使用 http 代理到默认或未命名的端口
-* `<service_name>:<port_name>` - 使用 http 代理到指定的端口名称或端口号
-* `https:<service_name>:` - 使用 https 代理到默认或未命名的端口（注意后面的冒号）
-* `https:<service_name>:<port_name>` - 使用 https 代理到指定的端口名称或端口号
-
-<!--
-##### Examples
-
- * To access the Elasticsearch service endpoint `_search?q=user:kimchy`, you would use:   `http://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/_search?q=user:kimchy`
- * To access the Elasticsearch cluster health information `_cluster/health?pretty=true`, you would use:   `https://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/_cluster/health?pretty=true`
--->
-##### 示例
-
-* 要访问 Elasticsearch  服务端点 `_search?q=user:kimchy`，你需要使用：
-  `http://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/_search?q=user:kimchy`
-* 要访问 Elasticsearch 集群健康信息 `_cluster/health?pretty=true`，你需要使用：
-  `https://104.197.5.247/api/v1/namespaces/kube-system/services/elasticsearch-logging/proxy/_cluster/health?pretty=true`
-
-```json
-  {
-    "cluster_name" : "kubernetes_logging",
-    "status" : "yellow",
-    "timed_out" : false,
-    "number_of_nodes" : 1,
-    "number_of_data_nodes" : 1,
-    "active_primary_shards" : 5,
-    "active_shards" : 5,
-    "relocating_shards" : 0,
-    "initializing_shards" : 0,
-    "unassigned_shards" : 5
-  }
-```
-
-<!--
-### Using web browsers to access services running on the cluster
-
-You may be able to put an apiserver proxy url into the address bar of a browser. However:
-
-  - Web browsers cannot usually pass tokens, so you may need to use basic (password) auth.  Apiserver can be configured to accept basic auth,
-    but your cluster may not be configured to accept basic auth.
-  - Some web apps may not work, particularly those with client side javascript that construct urls in a
-    way that is unaware of the proxy path prefix.
--->
-### 使用 web 浏览器访问运行在集群上的服务
-
-你可以在浏览器地址栏中输入 apiserver 代理 URL。但是：
-
-- Web 浏览器通常不能传递令牌，因此你可能需要使用基本（密码）身份验证。
-  Apiserver 可以配置为接受基本身份验证，但你的集群可能未进行配置。
-- 某些 Web 应用程序可能无法运行，尤其是那些使用客户端 javascript 
-  以不知道代理路径前缀的方式构建 URL 的应用程序。
-
-<!--
-## Requesting redirects
-
-The redirect capabilities have been deprecated and removed.  Please use a proxy (see below) instead.
--->
-## 请求重定向
-
-重定向功能已弃用并被删除。请改用代理（见下文）。
-
-<!--
-## So Many Proxies
-
-There are several different proxies you may encounter when using Kubernetes:
-
-1.  The [kubectl proxy](#directly-accessing-the-rest-api):
-
-    - runs on a user's desktop or in a pod
-    - proxies from a localhost address to the Kubernetes apiserver
-    - client to proxy uses HTTP
-    - proxy to apiserver uses HTTPS
-    - locates apiserver
-    - adds authentication headers
-
--->
-## 多种代理
-
-使用 Kubernetes 时可能会遇到几种不同的代理：
-
-1. [kubectl 代理](#directly-accessing-the-rest-api)：
-
-   - 在用户的桌面或 Pod 中运行
-   - 代理从本地主机地址到 Kubernetes apiserver
-   - 客户端到代理将使用 HTTP
-   - 代理到 apiserver 使用 HTTPS
-   - 定位 apiserver
-   - 添加身份验证头部
-
-<!--
-1.  The [apiserver proxy](#discovering-builtin-services):
-
-    - is a bastion built into the apiserver
-    - connects a user outside of the cluster to cluster IPs which otherwise might not be reachable
-    - runs in the apiserver processes
-    - client to proxy uses HTTPS (or http if apiserver so configured)
-    - proxy to target may use HTTP or HTTPS as chosen by proxy using available information
-    - can be used to reach a Node, Pod, or Service
-    - does load balancing when used to reach a Service
--->
-2. [apiserver 代理](#discovering-builtin-services)：
-
-   - 内置于 apiserver 中
-   - 将集群外部的用户连接到集群 IP，否则这些 IP 可能无法访问
-   - 运行在 apiserver 进程中
-   - 客户端代理使用 HTTPS（也可配置为 http）
-   - 代理将根据可用的信息决定使用 HTTP 或者 HTTPS 代理到目标
-   - 可用于访问节点、Pod 或服务
-   - 在访问服务时进行负载平衡
-
-<!--
-1.  The [kube proxy](/docs/concepts/services-networking/service/#ips-and-vips):
-
-    - runs on each node
-    - proxies UDP and TCP
-    - does not understand HTTP
-    - provides load balancing
-    - is only used to reach services
--->
-3. [kube proxy](/zh/docs/concepts/services-networking/service/#ips-and-vips)：
-
-   - 运行在每个节点上
-   - 代理 UDP 和 TCP
-   - 不能代理 HTTP
-   - 提供负载均衡
-   - 只能用来访问服务
-
-<!--
-1.  A Proxy/Load-balancer in front of apiserver(s):
-
-    - existence and implementation varies from cluster to cluster (e.g. nginx)
-    - sits between all clients and one or more apiservers
-    - acts as load balancer if there are several apiservers.
--->
-4. 位于 apiserver 之前的 Proxy/Load-balancer：
-
-   - 存在和实现因集群而异（例如 nginx）
-   - 位于所有客户和一个或多个 apiserver 之间
-   - 如果有多个 apiserver，则充当负载均衡器
-
-<!--
-1.  Cloud Load Balancers on external services:
-
-    - are provided by some cloud providers (e.g. AWS ELB, Google Cloud Load Balancer)
-    - are created automatically when the Kubernetes service has type `LoadBalancer`
-    - use UDP/TCP only
-    - implementation varies by cloud provider.
-
-Kubernetes users will typically not need to worry about anything other than the first two types.  The cluster admin
-will typically ensure that the latter types are setup correctly.
--->
-5. 外部服务上的云负载均衡器：
-
-   - 由一些云提供商提供（例如 AWS ELB，Google Cloud Load Balancer）
-   - 当 Kubernetes 服务类型为 `LoadBalancer` 时自动创建
-   - 只使用 UDP/TCP
-   - 具体实现因云提供商而异。
-
-除了前两种类型之外，Kubernetes 用户通常不需要担心任何其他问题。
-集群管理员通常会确保后者的正确配置。
diff --git a/content/zh/docs/tasks/access-application-cluster/create-external-load-balancer.md b/content/zh/docs/tasks/access-application-cluster/create-external-load-balancer.md
deleted file mode 100644
index 75fe4b6e13..0000000000
--- a/content/zh/docs/tasks/access-application-cluster/create-external-load-balancer.md
+++ /dev/null
@@ -1,320 +0,0 @@
----
-title: 创建外部负载均衡器
-content_type: task
-weight: 80
----
-
-<!--
-title: Create an External Load Balancer
-content_type: task
-weight: 80
--->
-
-<!-- overview -->
-
-<!--
-This page shows how to create an External Load Balancer.
--->
-本文展示如何创建一个外部负载均衡器。
-
-<!-- 
-This feature is only available for cloud providers or environments which support external load balancers. 
--->
-{{< note >}}
-此功能仅适用于支持外部负载均衡器的云提供商或环境。
-{{< /note >}}
-
-<!--
-When creating a service, you have the option of automatically creating a
-cloud network load balancer. This provides an externally-accessible IP address
-that sends traffic to the correct port on your cluster nodes
-_provided your cluster runs in a supported environment and is configured with
-the correct cloud load balancer provider package_.
--->
-创建服务时，你可以选择自动创建云网络负载均衡器。这提供了一个外部可访问的 IP 地址，
-可将流量分配到集群节点上的正确端口上
-（ _假设集群在支持的环境中运行，并配置了正确的云负载平衡器提供商包_）。
-
-<!--
-For information on provisioning and using an Ingress resource that can give
-services externally-reachable URLs, load balance the traffic, terminate SSL etc.,
-please check the [Ingress](/docs/concepts/services-networking/ingress/)
-documentation.
--->
-有关如何配置和使用 Ingress 资源为服务提供外部可访问的 URL、负载均衡流量、终止 SSL 等功能，
-请查看 [Ingress](/zh/docs/concepts/services-networking/ingress/) 文档。
-
-## {{% heading "prerequisites" %}}
-
-* {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-<!-- steps -->
-
-<!--
-## Configuration file
-
-To create an external load balancer, add the following line to your
-[service configuration file](/docs/concepts/services-networking/service/#loadbalancer):
--->
-## 配置文件
-
-要创建外部负载均衡器，请将以下内容添加到
-[服务配置文件](/zh/docs/concepts/services-networking/service/#loadbalancer)：
-
-```yaml
-    type: LoadBalancer
-```
-
-<!--
-Your configuration file might look like:
--->
-你的配置文件可能会如下所示：
-
-```yaml
-apiVersion: v1
-kind: Service
-metadata:
-  name: example-service
-spec:
-  selector:
-    app: example
-  ports:
-    - port: 8765
-      targetPort: 9376
-  type: LoadBalancer
-```
-
-<!--
-## Using kubectl
-
-You can alternatively create the service with the `kubectl expose` command and
-its `--type=LoadBalancer` flag:
--->
-## 使用 kubectl
-
-你也可以使用 `kubectl expose` 命令及其 `--type=LoadBalancer` 参数创建服务：
-
-```bash
-kubectl expose rc example --port=8765 --target-port=9376 \
-        --name=example-service --type=LoadBalancer
-```
-
-<!--
-This command creates a new service using the same selectors as the referenced
-resource (in the case of the example above, a replication controller named
-`example`).
-
-For more information, including optional flags, refer to the
-[`kubectl expose` reference](/docs/reference/generated/kubectl/kubectl-commands/#expose).
--->
-此命令通过使用与引用资源（在上面的示例的情况下，名为 `example` 的 replication controller）相同的选择器来创建一个新的服务。
-
-更多信息（包括更多的可选参数），请参阅
-[`kubectl expose` 指南](/docs/reference/generated/kubectl/kubectl-commands/#expose)。
-
-<!--
-## Finding your IP address
-
-You can find the IP address created for your service by getting the service
-information through `kubectl`:
--->
-## 找到你的 IP 地址
-
-你可以通过 `kubectl` 获取服务信息，找到为你的服务创建的 IP 地址：
-
-```bash
-kubectl describe services example-service
-```
-
-<!--
-which should produce output like this:
--->
-这将获得如下输出：
-
-```bash
-    Name:                   example-service
-    Namespace:              default
-    Labels:                 <none>
-    Annotations:            <none>
-    Selector:               app=example
-    Type:                   LoadBalancer
-    IP:                     10.67.252.103
-    LoadBalancer Ingress:   192.0.2.89
-    Port:                   <unnamed> 80/TCP
-    NodePort:               <unnamed> 32445/TCP
-    Endpoints:              10.64.0.4:80,10.64.1.5:80,10.64.2.4:80
-    Session Affinity:       None
-    Events:                 <none>
-```
-
-<!--
-The IP address is listed next to `LoadBalancer Ingress`.
--->
-IP 地址列在 `LoadBalancer Ingress` 旁边。
-
-<!--
-If you are running your service on Minikube, you can find the assigned IP address and port with:
--->
-{{< note >}}
-如果你在 Minikube 上运行服务，你可以通过以下命令找到分配的 IP 地址和端口：
-
-```bash
-minikube service example-service --url
-```
-{{< /note >}}
-
-<!--
-## Preserving the client source IP
-
-Due to the implementation of this feature, the source IP seen in the target
-container is *not the original source IP* of the client. To enable
-preservation of the client IP, the following fields can be configured in the
-service spec (supported in GCE/Google Kubernetes Engine environments):
--->
-## 保留客户端源 IP
-
-由于此功能的实现，目标容器中看到的源 IP 将 *不是客户端的原始源 IP*。
-要启用保留客户端 IP，可以在服务的 spec 中配置以下字段（支持 GCE/Google Kubernetes Engine  环境）：
-
-<!--
-* `service.spec.externalTrafficPolicy` - denotes if this Service desires to route
-external traffic to node-local or cluster-wide endpoints. There are two available
-options: Cluster (default) and Local. Cluster obscures the client source
-IP and may cause a second hop to another node, but should have good overall
-load-spreading. Local preserves the client source IP and avoids a second hop
-for LoadBalancer and NodePort type services, but risks potentially imbalanced
-traffic spreading.
--->
-* `service.spec.externalTrafficPolicy` - 表示此服务是否希望将外部流量路由到节点本地或集群范围的端点。
-  有两个可用选项：Cluster（默认）和 Local。
-  Cluster 隐藏了客户端源 IP，可能导致第二跳到另一个节点，但具有良好的整体负载分布。
-  Local 保留客户端源 IP 并避免 LoadBalancer 和 NodePort 类型服务的第二跳，
-  但存在潜在的不均衡流量传播风险。
-
-<!--
-* `service.spec.healthCheckNodePort` - specifies the health check nodePort
-(numeric port number) for the service. If `healthCheckNodePort` isn't specified,
-the service controller allocates a port from your cluster's NodePort range. You
-can configure that range by setting an API server command line option,
-`--service-node-port-range`. It will use the
-user-specified `healthCheckNodePort` value if specified by the client. It only has an
-effect when `type` is set to LoadBalancer and `externalTrafficPolicy` is set
-to Local.
--->
-* `service.spec.healthCheckNodePort` - 指定服务的 healthcheck nodePort（数字端口号）。
-  如果未指定 `healthCheckNodePort`，服务控制器从集群的 NodePort 范围内分配一个端口。
-  你可以通过设置 API 服务器的命令行选项 `--service-node-port-range` 来配置上述范围。
-  它将会使用用户指定的 `healthCheckNodePort` 值（如果被客户端指定）。
-  仅当 `type`  设置为 LoadBalancer 并且 `externalTrafficPolicy` 设置为 Local 时才生效。
-
-<!--
-Setting `externalTrafficPolicy` to Local in the Service configuration file
-activates this feature.
--->
-可以通过在服务的配置文件中将 `externalTrafficPolicy` 设置为 Local 来激活此功能。
-
-```yaml
-apiVersion: v1
-kind: Service
-metadata:
-  name: example-service
-spec:
-  selector:
-    app: example
-  ports:
-    - port: 8765
-      targetPort: 9376
-  externalTrafficPolicy: Local
-  type: LoadBalancer
-```
-
-<!--
-## Garbage Collecting Load Balancers
-
-In usual case, the correlating load balancer resources in cloud provider should
-be cleaned up soon after a LoadBalancer type Service is deleted. But it is known
-that there are various corner cases where cloud resources are orphaned after the
-associated Service is deleted. Finalizer Protection for Service LoadBalancers was
-introduced to prevent this from happening. By using finalizers, a Service resource
-will never be deleted until the correlating load balancer resources are also deleted.
--->
-## 回收负载均衡器
-
-在通常情况下，应在删除 LoadBalancer 类型服务后立即清除云提供商中的相关负载均衡器资源。
-但是，众所周知，在删除关联的服务后，云资源被孤立的情况很多。
-引入了针对服务负载均衡器的终结器保护，以防止这种情况发生。
-通过使用终结器，在删除相关的负载均衡器资源之前，也不会删除服务资源。
-
-<!--
-Specifically, if a Service has `type` LoadBalancer, the service controller will attach
-a finalizer named `service.kubernetes.io/load-balancer-cleanup`.
-The finalizer will only be removed after the load balancer resource is cleaned up.
-This prevents dangling load balancer resources even in corner cases such as the
-service controller crashing.
--->
-具体来说，如果服务具有 `type` LoadBalancer，则服务控制器将附加一个名为
-`service.kubernetes.io/load-balancer-cleanup` 的终结器。
-仅在清除负载均衡器资源后才能删除终结器。
-即使在诸如服务控制器崩溃之类的极端情况下，这也可以防止负载均衡器资源悬空。
-
-<!--
-## External Load Balancer Providers
-
-It is important to note that the datapath for this functionality is provided by a load balancer external to the Kubernetes cluster.
--->
-## 外部负载均衡器提供商
-
-请务必注意，此功能的数据路径由 Kubernetes 集群外部的负载均衡器提供。
-
-<!--
-When the Service `type` is set to LoadBalancer, Kubernetes provides functionality equivalent to `type` equals ClusterIP to pods
-within the cluster and extends it by programming the (external to Kubernetes) load balancer with entries for the Kubernetes
-pods. The Kubernetes service controller automates the creation of the external load balancer, health checks (if needed),
-firewall rules (if needed) and retrieves the external IP allocated by the cloud provider and populates it in the service
-object.
--->
-当服务 `type` 设置为 LoadBalancer 时，Kubernetes 向集群中的 Pod 提供的功能等同于
-`type` 等于  ClusterIP，并通过使用 Kubernetes pod 的条目对负载均衡器（从外部到 Kubernetes）
-进行编程来扩展它。 
-Kubernetes 服务控制器自动创建外部负载均衡器、健康检查（如果需要）、防火墙规则（如果需要），
-并获取云提供商分配的外部 IP 并将其填充到服务对象中。
-
-<!--
-## Caveats and Limitations when preserving source IPs
-
-GCE/AWS load balancers do not provide weights for their target pools. This was not an issue with the old LB
-kube-proxy rules which would correctly balance across all endpoints.
--->
-## 保留源 IP 时的注意事项和限制
-
-GCE/AWS 负载均衡器不为其目标池提供权重。
-对于旧的 LB kube-proxy 规则来说，这不是一个问题，它可以在所有端点之间正确平衡。
-
-<!--
-With the new functionality, the external traffic is not equally load balanced across pods, but rather
-equally balanced at the node level (because GCE/AWS and other external LB implementations do not have the ability
-for specifying the weight per node, they balance equally across all target nodes, disregarding the number of
-pods on each node).
--->
-使用新功能，外部流量不会在 pod 之间平均负载，而是在节点级别平均负载
-（因为 GCE/AWS 和其他外部 LB 实现无法指定每个节点的权重，
-因此它们的平衡跨所有目标节点，并忽略每个节点上的 Pod 数量）。
-
-<!--
-We can, however, state that for NumServicePods << NumNodes or NumServicePods >> NumNodes, a fairly close-to-equal
-distribution will be seen, even without weights.
--->
-但是，我们可以声明，对于 `NumServicePods << NumNodes` 或 `NumServicePods >> NumNodes` 时，
-即使没有权重，也会看到接近相等的分布。
-
-<!--
-Once the external load balancers provide weights, this functionality can be added to the LB programming path.
-*Future Work: No support for weights is provided for the 1.4 release, but may be added at a future date*
-
-Internal pod to pod traffic should behave similar to ClusterIP services, with equal probability across all pods.
--->
-一旦外部负载平衡器提供权重，就可以将此功能添加到 LB 编程路径中。
-*未来工作：1.4 版本不提供权重支持，但可能会在将来版本中添加*
-
-内部 Pod 到 Pod 的流量应该与 ClusterIP 服务类似，所有 Pod 的概率相同。
-
diff --git a/content/zh/docs/tasks/administer-cluster/certificates.md b/content/zh/docs/tasks/administer-cluster/certificates.md
deleted file mode 100644
index a61ad671c0..0000000000
--- a/content/zh/docs/tasks/administer-cluster/certificates.md
+++ /dev/null
@@ -1,366 +0,0 @@
----
-title: 证书
-content_type: task
-weight: 20
----
-<!-- 
----
-title: Certificates
-content_type: task
-weight: 20
----
--->
-
-<!-- overview -->
-
-<!-- 
-When using client certificate authentication, you can generate certificates
-manually through `easyrsa`, `openssl` or `cfssl`.
--->
-在使用客户端证书认证的场景下，你可以通过 `easyrsa`、`openssl` 或 `cfssl` 等工具以手工方式生成证书。
-
-<!-- body -->
-
-### easyrsa
-
-<!-- 
-**easyrsa** can manually generate certificates for your cluster.
--->
-**easyrsa** 支持以手工方式为你的集群生成证书。
-
-<!-- 
-1.  Download, unpack, and initialize the patched version of easyrsa3.
--->
-1.  下载、解压、初始化打过补丁的 easyrsa3。
-
-        curl -LO https://storage.googleapis.com/kubernetes-release/easy-rsa/easy-rsa.tar.gz
-        tar xzf easy-rsa.tar.gz
-        cd easy-rsa-master/easyrsa3
-        ./easyrsa init-pki
-
-    <!-- 
-    1.  Generate a new certificate authority (CA). `--batch` sets automatic mode;
-    `--req-cn` specifies the Common Name (CN) for the CA's new root certificate.
-    -->
-1.  生成新的证书颁发机构（CA）。参数 `--batch` 用于设置自动模式；
-    参数 `--req-cn` 用于设置新的根证书的通用名称（CN）。
-
-        ./easyrsa --batch "--req-cn=${MASTER_IP}@`date +%s`" build-ca nopass
-
-    <!-- 
-    1.  Generate server certificate and key.
-    The argument `--subject-alt-name` sets the possible IPs and DNS names the API server will
-    be accessed with. The `MASTER_CLUSTER_IP` is usually the first IP from the service CIDR
-    that is specified as the `--service-cluster-ip-range` argument for both the API server and
-    the controller manager component. The argument `--days` is used to set the number of days
-    after which the certificate expires.
-    The sample below also assumes that you are using `cluster.local` as the default
-    DNS domain name.
-    -->
-1.  生成服务器证书和秘钥。
-    参数 `--subject-alt-name` 设置 API 服务器的 IP 和 DNS 名称。
-    `MASTER_CLUSTER_IP` 用于 API 服务器和控制管理器，通常取 CIDR 的第一个 IP，由 `--service-cluster-ip-range` 的参数提供。
-    参数 `--days` 用于设置证书的过期时间。
-    下面的示例假定你的默认 DNS 域名为 `cluster.local`。
-
-        ./easyrsa --subject-alt-name="IP:${MASTER_IP},"\
-        "IP:${MASTER_CLUSTER_IP},"\
-        "DNS:kubernetes,"\
-        "DNS:kubernetes.default,"\
-        "DNS:kubernetes.default.svc,"\
-        "DNS:kubernetes.default.svc.cluster,"\
-        "DNS:kubernetes.default.svc.cluster.local" \
-        --days=10000 \
-        build-server-full server nopass
-
-    <!-- 
-    1.  Copy `pki/ca.crt`, `pki/issued/server.crt`, and `pki/private/server.key` to your directory.
-    1.  Fill in and add the following parameters into the API server start parameters:
-    -->
-1.  拷贝文件 `pki/ca.crt`、`pki/issued/server.crt` 和 `pki/private/server.key` 到你的目录中。
-1.  在 API 服务器的启动参数中添加以下参数：
-
-        --client-ca-file=/yourdirectory/ca.crt
-        --tls-cert-file=/yourdirectory/server.crt
-        --tls-private-key-file=/yourdirectory/server.key
-
-### openssl
-
-<!-- 
-**openssl** can manually generate certificates for your cluster.
--->
-**openssl** 支持以手工方式为你的集群生成证书。
-
-<!-- 
-1.  Generate a ca.key with 2048bit:
--->
-1.  生成一个 2048 位的 ca.key 文件
-
-        openssl genrsa -out ca.key 2048
-
-    <!-- 
-    1.  According to the ca.key generate a ca.crt (use -days to set the certificate effective time):
-    -->
-1.  在 ca.key 文件的基础上，生成 ca.crt 文件（用参数 -days 设置证书有效期）
-
-        openssl req -x509 -new -nodes -key ca.key -subj "/CN=${MASTER_IP}" -days 10000 -out ca.crt
-
-    <!-- 
-    1.  Generate a server.key with 2048bit:
-    -->
-1.  生成一个 2048 位的 server.key 文件：
-
-        openssl genrsa -out server.key 2048
-
-    <!-- 
-    1.  Create a config file for generating a Certificate Signing Request (CSR).
-    Be sure to substitute the values marked with angle brackets (e.g. `<MASTER_IP>`)
-    with real values before saving this to a file (e.g. `csr.conf`).
-    Note that the value for `MASTER_CLUSTER_IP` is the service cluster IP for the
-    API server as described in previous subsection.
-    The sample below also assumes that you are using `cluster.local` as the default
-    DNS domain name.
-    -->
-1.  创建一个用于生成证书签名请求（CSR）的配置文件。
-    保存文件（例如：`csr.conf`）前，记得用真实值替换掉尖括号中的值（例如：`<MASTER_IP>`）。
-    注意：`MASTER_CLUSTER_IP` 就像前一小节所述，它的值是 API 服务器的服务集群 IP。
-    下面的例子假定你的默认 DNS 域名为 `cluster.local`。
-
-        [ req ]
-        default_bits = 2048
-        prompt = no
-        default_md = sha256
-        req_extensions = req_ext
-        distinguished_name = dn
-
-        [ dn ]
-        C = <country>
-        ST = <state>
-        L = <city>
-        O = <organization>
-        OU = <organization unit>
-        CN = <MASTER_IP>
-
-        [ req_ext ]
-        subjectAltName = @alt_names
-
-        [ alt_names ]
-        DNS.1 = kubernetes
-        DNS.2 = kubernetes.default
-        DNS.3 = kubernetes.default.svc
-        DNS.4 = kubernetes.default.svc.cluster
-        DNS.5 = kubernetes.default.svc.cluster.local
-        IP.1 = <MASTER_IP>
-        IP.2 = <MASTER_CLUSTER_IP>
-
-        [ v3_ext ]
-        authorityKeyIdentifier=keyid,issuer:always
-        basicConstraints=CA:FALSE
-        keyUsage=keyEncipherment,dataEncipherment
-        extendedKeyUsage=serverAuth,clientAuth
-        subjectAltName=@alt_names
-
-    <!-- 
-    1.  Generate the certificate signing request based on the config file:
-    -->
-1.  基于上面的配置文件生成证书签名请求：
-
-        openssl req -new -key server.key -out server.csr -config csr.conf
-
-    <!-- 
-    1.  Generate the server certificate using the ca.key, ca.crt and server.csr:
-    -->
-1.  基于 ca.key、ca.key 和 server.csr 等三个文件生成服务端证书：
-
-        openssl x509 -req -in server.csr -CA ca.crt -CAkey ca.key \
-        -CAcreateserial -out server.crt -days 10000 \
-        -extensions v3_ext -extfile csr.conf
-
-    <!-- 
-    1.  View the certificate:
-    -->
-1.  查看证书：
-
-        openssl x509  -noout -text -in ./server.crt
-
-<!-- 
-Finally, add the same parameters into the API server start parameters.
--->
-最后，为 API 服务器添加相同的启动参数。
-
-### cfssl
-
-<!-- 
-**cfssl** is another tool for certificate generation.
--->
-**cfssl** 是另一个用于生成证书的工具。
-
-<!-- 
-1.  Download, unpack and prepare the command line tools as shown below.
-    Note that you may need to adapt the sample commands based on the hardware
-    architecture and cfssl version you are using.
--->
-1.  下载、解压并准备如下所示的命令行工具。
-    注意：你可能需要根据所用的硬件体系架构和 cfssl 版本调整示例命令。
-
-        curl -L https://github.com/cloudflare/cfssl/releases/download/v1.5.0/cfssl_1.5.0_linux_amd64 -o cfssl
-        chmod +x cfssl
-        curl -L https://github.com/cloudflare/cfssl/releases/download/v1.5.0/cfssljson_1.5.0_linux_amd64 -o cfssljson
-        chmod +x cfssljson
-        curl -L https://github.com/cloudflare/cfssl/releases/download/v1.5.0/cfssl-certinfo_1.5.0_linux_amd64 -o cfssl-certinfo
-        chmod +x cfssl-certinfo
-
-    <!-- 
-    1.  Create a directory to hold the artifacts and initialize cfssl:
-    -->
-1.  创建一个目录，用它保存所生成的构件和初始化 cfssl：
-
-        mkdir cert
-        cd cert
-        ../cfssl print-defaults config > config.json
-        ../cfssl print-defaults csr > csr.json
-
-    <!-- 
-    1.  Create a JSON config file for generating the CA file, for example, `ca-config.json`:
-    -->
-1.  创建一个 JSON 配置文件来生成 CA 文件，例如：`ca-config.json`：
-
-        {
-          "signing": {
-            "default": {
-              "expiry": "8760h"
-            },
-            "profiles": {
-              "kubernetes": {
-                "usages": [
-                  "signing",
-                  "key encipherment",
-                  "server auth",
-                  "client auth"
-                ],
-                "expiry": "8760h"
-              }
-            }
-          }
-        }
-
-    <!-- 
-    1.  Create a JSON config file for CA certificate signing request (CSR), for example,
-    `ca-csr.json`. Be sure to replace the values marked with angle brackets with
-    real values you want to use.
-    -->
-1.  创建一个 JSON 配置文件，用于 CA 证书签名请求（CSR），例如：`ca-csr.json`。
-    确认用你需要的值替换掉尖括号中的值。
-
-        {
-          "CN": "kubernetes",
-          "key": {
-            "algo": "rsa",
-            "size": 2048
-          },
-          "names":[{
-            "C": "<country>",
-            "ST": "<state>",
-            "L": "<city>",
-            "O": "<organization>",
-            "OU": "<organization unit>"
-          }]
-        }
-
-    <!-- 
-    1.  Generate CA key (`ca-key.pem`) and certificate (`ca.pem`):
-    -->
-1.  生成 CA 秘钥文件（`ca-key.pem`）和证书文件（`ca.pem`）：
-
-        ../cfssl gencert -initca ca-csr.json | ../cfssljson -bare ca
-
-    <!-- 
-    1.  Create a JSON config file for generating keys and certificates for the API
-    server, for example, `server-csr.json`. Be sure to replace the values in angle brackets with
-    real values you want to use. The `MASTER_CLUSTER_IP` is the service cluster
-    IP for the API server as described in previous subsection.
-    The sample below also assumes that you are using `cluster.local` as the default
-    DNS domain name.
-    -->
-1.  创建一个 JSON 配置文件，用来为 API 服务器生成秘钥和证书，例如：`server-csr.json`。
-    确认用你需要的值替换掉尖括号中的值。`MASTER_CLUSTER_IP` 是为 API 服务器 指定的服务集群 IP，就像前面小节描述的那样。
-    以下示例假定你的默认 DSN 域名为`cluster.local`。
-
-        {
-          "CN": "kubernetes",
-          "hosts": [
-            "127.0.0.1",
-            "<MASTER_IP>",
-            "<MASTER_CLUSTER_IP>",
-            "kubernetes",
-            "kubernetes.default",
-            "kubernetes.default.svc",
-            "kubernetes.default.svc.cluster",
-            "kubernetes.default.svc.cluster.local"
-          ],
-          "key": {
-            "algo": "rsa",
-            "size": 2048
-          },
-          "names": [{
-            "C": "<country>",
-            "ST": "<state>",
-            "L": "<city>",
-            "O": "<organization>",
-            "OU": "<organization unit>"
-          }]
-        }
-
-    <!-- 
-    1.  Generate the key and certificate for the API server, which are by default
-    saved into file `server-key.pem` and `server.pem` respectively:
-    -->
-1.  为 API 服务器生成秘钥和证书，默认会分别存储为`server-key.pem` 和 `server.pem` 两个文件。
-
-        ../cfssl gencert -ca=ca.pem -ca-key=ca-key.pem \
-        --config=ca-config.json -profile=kubernetes \
-        server-csr.json | ../cfssljson -bare server
-
-<!-- 
-## Distributing Self-Signed CA Certificate
--->
-## 分发自签名的 CA 证书
-
-<!-- 
-A client node may refuse to recognize a self-signed CA certificate as valid.
-For a non-production deployment, or for a deployment that runs behind a company
-firewall, you can distribute a self-signed CA certificate to all clients and
-refresh the local list for valid certificates.
-
-On each client, perform the following operations:
--->
-客户端节点可能不认可自签名 CA 证书的有效性。
-对于非生产环境，或者运行在公司防火墙后的环境，你可以分发自签名的 CA 证书到所有客户节点，并刷新本地列表以使证书生效。
-
-在每一个客户节点，执行以下操作：
-
-```bash
-sudo cp ca.crt /usr/local/share/ca-certificates/kubernetes.crt
-sudo update-ca-certificates
-```
-
-```
-Updating certificates in /etc/ssl/certs...
-1 added, 0 removed; done.
-Running hooks in /etc/ca-certificates/update.d....
-done.
-```
-
-<!-- 
-## Certificates API
--->
-## 证书 API {#certificates-api}
-
-<!-- 
-You can use the `certificates.k8s.io` API to provision
-x509 certificates to use for authentication as documented
-[here](/docs/tasks/tls/managing-tls-in-a-cluster).
--->
-你可以通过 `certificates.k8s.io` API 提供 x509 证书，用来做身份验证，
-如[本](/zh/docs/tasks/tls/managing-tls-in-a-cluster)文档所述。
-
diff --git a/content/zh/docs/tasks/administer-cluster/coredns.md b/content/zh/docs/tasks/administer-cluster/coredns.md
deleted file mode 100644
index f68ce54759..0000000000
--- a/content/zh/docs/tasks/administer-cluster/coredns.md
+++ /dev/null
@@ -1,191 +0,0 @@
----
-title: 使用 CoreDNS 进行服务发现
-min-kubernetes-server-version: v1.9
-content_type: task
----
-
-<!--
-reviewers:
-- johnbelamaric
-title: Using CoreDNS for Service Discovery
-min-kubernetes-server-version: v1.9
-content_type: task
--->
-
-<!-- overview -->
-
-<!--
-This page describes the CoreDNS upgrade process and how to install CoreDNS instead of kube-dns.
--->
-此页面介绍了 CoreDNS 升级过程以及如何安装 CoreDNS 而不是 kube-dns。
-
-## {{% heading "prerequisites" %}}
-
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-<!-- steps -->
-
-<!--
-## About CoreDNS
-
-[CoreDNS](https://coredns.io) is a flexible, extensible DNS server that can serve as the Kubernetes cluster DNS.
-Like Kubernetes, the CoreDNS project is hosted by the {{< glossary_tooltip text="CNCF" term_id="cncf" >}}.
--->
-## 关于 CoreDNS
-
-[CoreDNS](https://coredns.io) 是一个灵活可扩展的 DNS 服务器，可以作为 Kubernetes 集群 DNS。
-与 Kubernetes 一样，CoreDNS 项目由 {{< glossary_tooltip text="CNCF" term_id="cncf" >}} 托管。
-
-<!--
-You can use CoreDNS instead of kube-dns in your cluster by replacing kube-dns in an existing
-deployment, or by using tools like kubeadm that will deploy and upgrade the cluster for you.
--->
-通过在现有的集群中替换 kube-dns，可以在集群中使用 CoreDNS 代替 kube-dns 部署，
-或者使用 kubeadm 等工具来为你部署和升级集群。
-
-<!--
-## Installing CoreDNS
-
-For manual deployment or replacement of kube-dns, see the documentation at the
-[CoreDNS GitHub project.](https://github.com/coredns/deployment/tree/master/kubernetes)
--->
-## 安装 CoreDNS
-
-有关手动部署或替换 kube-dns，请参阅
-[CoreDNS GitHub 工程](https://github.com/coredns/deployment/tree/master/kubernetes)。
-
-<!--
-## Migrating to CoreDNS
-
-### Upgrading an existing cluster with kubeadm
--->
-
-## 迁移到 CoreDNS
-
-### 使用 kubeadm 升级现有集群
-
-<!--
-In Kubernetes version 1.10 and later, you can also move to CoreDNS when you use `kubeadm` to upgrade
-a cluster that is using `kube-dns`. In this case, `kubeadm` will generate the CoreDNS configuration
-("Corefile") based upon the `kube-dns` ConfigMap, preserving configurations for federation,
-stub domains, and upstream name server.
--->
-在 Kubernetes 1.10 及更高版本中，当你使用 `kubeadm` 升级使用 `kube-dns` 的集群时，你还可以迁移到 CoreDNS。
-在本例中 `kubeadm` 将生成 CoreDNS 配置（"Corefile"）基于 `kube-dns` ConfigMap，
-保存联邦、存根域和上游名称服务器的配置。
-
-<!--
-If you are moving from kube-dns to CoreDNS, make sure to set the `CoreDNS` feature gate to `true`
-during an upgrade. For example, here is what a `v1.11.0` upgrade would look like:
--->
-如果你正在从 kube-dns 迁移到 CoreDNS，请确保在升级期间将 `CoreDNS` 特性门设置为 `true`。
-例如，`v1.11.0` 升级应该是这样的:
-
-```
-kubeadm upgrade apply v1.11.0 --feature-gates=CoreDNS=true
-```
-
-<!--
-In Kubernetes version 1.13 and later the `CoreDNS` feature gate is removed and CoreDNS
-is used by default. Follow the guide outlined [here](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase#cmd-phase-addon) if you want
-your upgraded cluster to use kube-dns.
--->
-在 Kubernetes 版本 1.13 和更高版本中，`CoreDNS`特性门已经删除，CoreDNS 在默认情况下使用。
-如果你想升级集群以使用 kube-dns，请遵循
-[此处](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init-phase#cmd-phase-addon) 。
-
-<!--
-In versions prior to 1.11 the Corefile will be **overwritten** by the one created during upgrade.
-**You should save your existing ConfigMap if you have customized it.** You may re-apply your
-customizations after the new ConfigMap is up and running.
--->
-在 1.11 之前的版本中，核心文件将被升级过程中创建的文件覆盖。
-**如果已对其进行自定义，则应保存现有的 ConfigMap。** 
-在新的 ConfigMap 启动并运行后，你可以重新应用自定义。
-
-<!--
-If you are running CoreDNS in Kubernetes version 1.11 and later, during upgrade,
-your existing Corefile will be retained.
--->
-如果你在 Kubernetes 1.11 及更高版本中运行 CoreDNS，则在升级期间，将保留现有的 Corefile。
-
-<!--
-## Installing kube-dns instead of CoreDNS with kubeadm
--->
-## 使用 kubeadm 安装 kube-dns 而不是 CoreDNS
-
-<!--
-In Kubernetes 1.11, CoreDNS has graduated to General Availability (GA)
-and is installed by default.
--->
-{{< note >}}
-在 Kubernetes 1.11 中，CoreDNS 已经升级到通用可用性（GA），并默认安装。
-{{< /note >}}
-
-<!--
-In Kubernetes 1.18, kube-dns usage with kubeadm has been deprecated and will be removed in a future version.
--->
-{{< warning >}}
-在 Kubernetes 1.18 中，用 kubeadm 来安装 kube-dns 这一做法已经被废弃，
-会在将来版本中移除。
-{{< /warning >}}
-
-<!--
-To install kube-dns on versions prior to 1.13, set the `CoreDNS` feature gate
-value to `false`:
--->
-若要在 1.13 之前版本上安装 kube-dns，请将 `CoreDNS` 特性门控设置为 `false`：
-
-```shell
-kubeadm init --feature-gates=CoreDNS=false
-```
-
-<!--
-For versions 1.13 and later, follow the guide outlined [here](/docs/reference/setup-tools/kubeadm/kubeadm-init-phase#cmd-phase-addon).
--->
-对于 1.13 版和更高版本，请遵循
-[此处](/zh/docs/reference/setup-tools/kubeadm/kubeadm-init-phase#cmd-phase-addon)概述到指南。
-
-<!--
-## Upgrading CoreDNS 
-
-CoreDNS is available in Kubernetes since v1.9. 
-You can check the version of CoreDNS shipped with Kubernetes and the changes made to CoreDNS [here](https://github.com/coredns/deployment/blob/master/kubernetes/CoreDNS-k8s_version.md).
--->
-## 升级 CoreDNS 
-
-从 v1.9 起，Kubernetes 提供了 CoreDNS。
-你可以在[此处](https://github.com/coredns/deployment/blob/master/kubernetes/CoreDNS-k8s_version.md)
-查看 Kubernetes 随附的 CoreDNS 版本以及对 CoreDNS 所做的更改。
-
-<!--
-CoreDNS can be upgraded manually in case you want to only upgrade CoreDNS or use your own custom image.
-There is a helpful [guideline and walkthrough](https://github.com/coredns/deployment/blob/master/kubernetes/Upgrading_CoreDNS.md) available to ensure a smooth upgrade.
--->
-如果你只想升级 CoreDNS 或使用自己的自定义镜像，则可以手动升级 CoreDNS。
-参看[指南和演练](https://github.com/coredns/deployment/blob/master/kubernetes/Upgrading_CoreDNS.md)
-文档了解如何平滑升级。
-
-
-<!--
-## Tuning CoreDNS
-
-When resource utilisation is a concern, it may be useful to tune the configuration of CoreDNS. For more details, check out the
-[documentation on scaling CoreDNS]((https://github.com/coredns/deployment/blob/master/kubernetes/Scaling_CoreDNS.md)).
--->
-## CoreDNS 调优
-
-当资源利用方面有问题时，优化 CoreDNS 的配置可能是有用的。
-有关详细信息，请参阅[有关扩缩 CoreDNS 的文档](https://github.com/coredns/deployment/blob/master/kubernetes/Scaling_CoreDNS.md)。
-
-## {{% heading "whatsnext" %}}
-
-<!--
-You can configure [CoreDNS](https://coredns.io) to support many more use cases than
-kube-dns by modifying the `Corefile`. For more information, see the
-[CoreDNS site](https://coredns.io/2017/05/08/custom-dns-entries-for-kubernetes/).
--->
-你可以通过修改 `Corefile` 来配置 [CoreDNS](https://coredns.io)，以支持比 kube-dns 更多的用例。
-请参考 [CoreDNS 网站](https://coredns.io/2017/05/08/custom-dns-entries-for-kubernetes/)
-以了解更多信息。
-
diff --git a/content/zh/docs/tasks/administer-cluster/enabling-service-topology.md b/content/zh/docs/tasks/administer-cluster/enabling-service-topology.md
deleted file mode 100644
index d97171de3e..0000000000
--- a/content/zh/docs/tasks/administer-cluster/enabling-service-topology.md
+++ /dev/null
@@ -1,76 +0,0 @@
----
-title: 开启服务拓扑
-content_type: task
----
-
-<!-- overview -->
-<!--
-This page provides an overview of enabling Service Topology in Kubernetes.
--->
-本页面提供了在 Kubernetes 中启用服务拓扑的概述。
-
-## {{% heading "prerequisites" %}}
-
-  {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-
-<!-- steps -->
-<!--
-## Introduction
-
-_Service Topology_ enables a service to route traffic based upon the Node
-topology of the cluster. For example, a service can specify that traffic be
-preferentially routed to endpoints that are on the same Node as the client, or
-in the same availability zone.
--->
-## 介绍
-
-_服务拓扑（Service Topology）_ 使服务能够根据集群中的 Node 拓扑来路由流量。
-比如，服务可以指定将流量优先路由到与客户端位于同一节点或者同一可用区域的端点上。
-
-<!--
-## Prerequisites
-
-The following prerequisites are needed in order to enable topology aware service
-routing:
-
-   * Kubernetes 1.17 or later
-   * {{< glossary_tooltip text="Kube-proxy" term_id="kube-proxy" >}} running in iptables mode or IPVS mode
-   * Enable [Endpoint Slices](/docs/concepts/services-networking/endpoint-slices/)
--->
-## 先决条件
-
-需要下面列的先决条件，才能启用拓扑感知的服务路由：
-
-   * Kubernetes 1.17 或更新版本
-   * {{< glossary_tooltip text="Kube-proxy" term_id="kube-proxy" >}} 以 iptables 或者 IPVS 模式运行
-   * 启用[端点切片](/zh/docs/concepts/services-networking/endpoint-slices/)
-
-<!--
-## Enable Service Topology
-
-{{< feature-state for_k8s_version="v1.17" state="alpha" >}}
-
-To enable service topology, enable the `ServiceTopology` and `EndpointSlice` feature gate for all Kubernetes components:
--->
-## 启用服务拓扑
-
-{{< feature-state for_k8s_version="v1.17" state="alpha" >}}
-
-要启用服务拓扑功能，需要为所有 Kubernetes 组件启用 `ServiceTopology` 和 `EndpointSlice` 特性门控：
-
-```
---feature-gates="ServiceTopology=true,EndpointSlice=true"
-```
-
-
-## {{% heading "whatsnext" %}}
-
-<!--
-* Read about the [Service Topology](/docs/concepts/services-networking/service-topology) concept
-* Read about [Endpoint Slices](/docs/concepts/services-networking/endpoint-slices)
-* Read [Connecting Applications with Services](/docs/concepts/services-networking/connect-applications-service/)
--->
-* 阅读[服务拓扑](/zh/docs/concepts/services-networking/service-topology)概念
-* 阅读[端点切片](/zh/docs/concepts/services-networking/endpoint-slices)
-* 阅读[通过服务来连接应用](/zh/docs/concepts/services-networking/connect-applications-service/)
\ No newline at end of file
diff --git a/content/zh/docs/tasks/administer-cluster/enabling-topology-aware-hints.md b/content/zh/docs/tasks/administer-cluster/enabling-topology-aware-hints.md
deleted file mode 100644
index 14b5bea3a5..0000000000
--- a/content/zh/docs/tasks/administer-cluster/enabling-topology-aware-hints.md
+++ /dev/null
@@ -1,72 +0,0 @@
----
-title: 启用拓扑感知提示
-content_type: task
-min-kubernetes-server-version: 1.21
----
-<!-- 
----
-reviewers:
-- robscott
-title: Enabling Topology Aware Hints
-content_type: task
-min-kubernetes-server-version: 1.21
----
--->
-
-<!-- overview -->
-{{< feature-state for_k8s_version="v1.21" state="alpha" >}}
-
-<!-- 
-_Topology Aware Hints_ enable topology aware routing with topology hints
-included in {{< glossary_tooltip text="EndpointSlices" term_id="endpoint-slice" >}}.
-This approach tries to keep traffic close to where it originated from;
-you might do this to reduce costs, or to improve network performance.
--->
-_拓扑感知提示_ 启用具有拓扑感知能力的路由，其中拓扑感知信息包含在
-{{< glossary_tooltip text="EndpointSlices" term_id="endpoint-slice" >}} 中。
-此功能尽量将流量限制在它的发起区域附近；
-可以降低成本，或者提高网络性能。
-
-## {{% heading "prerequisites" %}}
-
-  {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-<!-- 
-The following prerequisite is needed in order to enable topology aware hints:
-
-* Configure the {{< glossary_tooltip text="kube-proxy" term_id="kube-proxy" >}} to run in
-  iptables mode or IPVS mode
-* Ensure that you have not disabled EndpointSlices
--->
-为了启用拓扑感知提示，先要满足以下先决条件：
-
-* 配置 {{< glossary_tooltip text="kube-proxy" term_id="kube-proxy" >}}
-  以 iptables 或 IPVS 模式运行
-* 确保未禁用 EndpointSlices
-
-<!-- 
-## Enable Topology Aware Hints
--->
-## 启动拓扑感知提示 {#enable-topology-aware-hints}
-
-<!-- 
-To enable service topology hints, enable the `TopologyAwareHints` [feature
-gate](/docs/reference/command-line-tools-reference/feature-gates/) for the
-kube-apiserver, kube-controller-manager, and kube-proxy:
--->
-要启用服务拓扑感知，请启用 kube-apiserver、kube-controller-manager、和 kube-proxy 的
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)
-`TopologyAwareHints`。
-
-```
---feature-gates="TopologyAwareHints=true"
-```
-
-## {{% heading "whatsnext" %}}
-
-<!-- 
-* Read about [Topology Aware Hints](/docs/concepts/services-networking/topology-aware-hints) for Services
-* Read [Connecting Applications with Services](/docs/concepts/services-networking/connect-applications-service/)
--->
-* 参阅面向服务的[拓扑感知提示](/zh/docs/concepts/services-networking/topology-aware-hints) 
-* 参阅[用服务连通应用](/zh/docs/concepts/services-networking/connect-applications-service/)
diff --git a/content/zh/docs/tasks/administer-cluster/encrypt-data.md b/content/zh/docs/tasks/administer-cluster/encrypt-data.md
deleted file mode 100644
index 2b62f86725..0000000000
--- a/content/zh/docs/tasks/administer-cluster/encrypt-data.md
+++ /dev/null
@@ -1,355 +0,0 @@
----
-title: 静态加密 Secret 数据
-content_type: task
----
-
-<!--
-reviewers:
-- smarterclayton
-title: Encrypting Secret Data at Rest
-content_type: task
--->
-
-<!-- overview -->
-<!--
-This page shows how to enable and configure encryption of secret data at rest.
--->
-本文展示如何启用和配置静态 Secret 数据的加密
-
-## {{% heading "prerequisites" %}}
-
-* {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-<!--
-* etcd v3 or later is required
--->
-* 需要 etcd v3 或者更高版本
-
-<!-- steps -->
-
-<!--
-## Configuration and determining whether encryption at rest is already enabled
-
-The `kube-apiserver` process accepts an argument `-experimental-encryption-provider-config`
-that controls how API data is encrypted in etcd. An example configuration
-is provided below.
-
-## Understanding the encryption at rest configuration.
--->
-## 配置并确定是否已启用静态数据加密
-
-`kube-apiserver` 的参数 `--experimental-encryption-provider-config` 控制 API 数据在 etcd 中的加密方式。
-下面提供一个配置示例。
-
-## 理解静态数据加密
-
-```yaml
-apiVersion: apiserver.config.k8s.io/v1
-kind: EncryptionConfiguration
-resources:
-  - resources:
-    - secrets
-    providers:
-    - identity: {}
-    - aesgcm:
-        keys:
-        - name: key1
-          secret: c2VjcmV0IGlzIHNlY3VyZQ==
-        - name: key2
-          secret: dGhpcyBpcyBwYXNzd29yZA==
-    - aescbc:
-        keys:
-        - name: key1
-          secret: c2VjcmV0IGlzIHNlY3VyZQ==
-        - name: key2
-          secret: dGhpcyBpcyBwYXNzd29yZA==
-    - secretbox:
-        keys:
-        - name: key1
-          secret: YWJjZGVmZ2hpamtsbW5vcHFyc3R1dnd4eXoxMjM0NTY=
-```
-
-<!--
-Each `resources` array item is a separate config and contains a complete configuration. The
-`resources.resources` field is an array of Kubernetes resource names (`resource` or `resource.group`)
-that should be encrypted. The `providers` array is an ordered list of the possible encryption
-providers. Only one provider type may be specified per entry (`identity` or `aescbc` may be provided,
-but not both in the same item).
--->
-每个 `resources` 数组项目是一个单独的完整的配置。
-`resources.resources` 字段是要加密的 Kubernetes 资源名称（`resource` 或 `resource.group`）的数组。
-`providers` 数组是可能的加密 provider 的有序列表。
-每个条目只能指定一个 provider 类型（可以是 `identity` 或 `aescbc`，但不能在同一个项目中同时指定）。
-
-<!--
-The first provider in the list is used to encrypt resources going into storage. When reading
-resources from storage each provider that matches the stored data attempts to decrypt the data in
-order. If no provider can read the stored data due to a mismatch in format or secret key, an error
-is returned which prevents clients from accessing that resource.
--->
-列表中的第一个 provider 用于加密进入存储的资源。
-当从存储器读取资源时，与存储的数据匹配的所有 provider 将按顺序尝试解密数据。
-如果由于格式或密钥不匹配而导致没有 provider 能够读取存储的数据，则会返回一个错误，以防止客户端访问该资源。
-
-<!--
-**IMPORTANT:** If any resource is not readable via the encryption config (because keys were changed),
-the only recourse is to delete that key from the underlying etcd directly. Calls that attempt to
-read that resource will fail until it is deleted or a valid decryption key is provided.
--->
-{{< caution >}}
-**重要：** 如果通过加密配置无法读取资源（因为密钥已更改），唯一的方法是直接从底层 etcd 中删除该密钥。
-任何尝试读取资源的调用将会失败，直到它被删除或提供有效的解密密钥。
-{{< /caution >}}
-
-### Providers:
-
-<!--
-Name | Encryption | Strength | Speed | Key Length | Other Considerations
------|------------|----------|-------|------------|---------------------
-`identity` | None | N/A | N/A | N/A | Resources written as-is without encryption. When set as the first provider, the resource will be decrypted as new values are written.
-`aescbc` | AES-CBC with PKCS#7 padding | Strongest | Fast | 32-byte | The recommended choice for encryption at rest but may be slightly slower than `secretbox`.
-`secretbox` | XSalsa20 and Poly1305 | Strong | Faster | 32-byte | A newer standard and may not be considered acceptable in environments that require high levels of review.
-`aesgcm` | AES-GCM with random nonce | Must be rotated every 200k writes | Fastest | 16, 24, or 32-byte | Is not recommended for use except when an automated key rotation scheme is implemented.
-`kms` | Uses envelope encryption scheme: Data is encrypted by data encryption keys (DEKs) using AES-CBC with PKCS#7 padding, DEKs are encrypted by key encryption keys (KEKs) according to configuration in Key Management Service (KMS) | Strongest | Fast | 32-bytes |  The recommended choice for using a third party tool for key management. Simplifies key rotation, with a new DEK generated for each encryption, and KEK rotation controlled by the user. [Configure the KMS provider](/docs/tasks/administer-cluster/kms-provider/)
-
-Each provider supports multiple keys - the keys are tried in order for decryption, and if the provider
-is the first provider, the first key is used for encryption.
--->
-{{< table caption="Kubernetes 静态数据加密的 Providers" >}}
-名称 | 加密类型   | 强度     | 速度  | 密钥长度   | 其它事项
------|------------|----------|-------|------------|---------------------
-`identity` | 无 | N/A | N/A | N/A | 不加密写入的资源。当设置为第一个 provider 时，资源将在新值写入时被解密。
-`aescbc` | 填充 PKCS#7 的 AES-CBC | 最强 | 快 | 32字节 | 建议使用的加密项，但可能比 `secretbox` 稍微慢一些。
-`secretbox` | XSalsa20 和 Poly1305 | 强 | 更快 | 32字节 | 较新的标准，在需要高度评审的环境中可能不被接受。
-`aesgcm` | 带有随机数的 AES-GCM | 必须每 200k 写入一次 | 最快 | 16, 24 或者 32字节 | 建议不要使用，除非实施了自动密钥循环方案。
-`kms` | 使用信封加密方案：数据使用带有 PKCS#7 填充的 AES-CBC 通过数据加密密钥（DEK）加密，DEK 根据 Key Management Service（KMS）中的配置通过密钥加密密钥（Key Encryption Keys，KEK）加密 | 最强 | 快 | 32字节 | 建议使用第三方工具进行密钥管理。为每个加密生成新的 DEK，并由用户控制 KEK 轮换来简化密钥轮换。[配置 KMS 提供程序](/zh/docs/tasks/administer-cluster/kms-provider/)
-
-每个 provider 都支持多个密钥 - 在解密时会按顺序使用密钥，如果是第一个 provider，则第一个密钥用于加密。
-
-<!--
-__Storing the raw encryption key in the EncryptionConfig only moderately improves your security posture, compared to no encryption.
-Please use `kms` provider for additional security.__ By default, the `identity` provider is used to protect secrets in etcd, which
-provides no encryption. `EncryptionConfiguration` was introduced to encrypt secrets locally, with a locally managed key.
--->
-__在 EncryptionConfig 中保存原始的加密密钥与不加密相比只会略微地提升安全级别。
-请使用 `kms` 驱动以获得更强的安全性。__
-默认情况下，`identity` 驱动被用来对 etcd 中的 Secret 提供保护，
-而这个驱动不提供加密能力。
-`EncryptionConfiguration` 的引入是为了能够使用本地管理的密钥来在本地加密 Secret 数据。
-
-<!--
-Encrypting secrets with a locally managed key protects against an etcd compromise, but it fails to protect against a host compromise.
-Since the encryption keys are stored on the host in the EncryptionConfig YAML file, a skilled attacker can access that file and
-extract the encryption keys.
--->
-使用本地管理的密钥来加密 Secret 能够保护数据免受 etcd 破坏的影响，不过无法针对
-主机被侵入提供防护。
-这是因为加密的密钥保存在主机上的 EncryptionConfig YAML 文件中，有经验的入侵者
-仍能访问该文件并从中提取出加密密钥。
-
-<!--
-Envelope encryption creates dependence on a separate key, not stored in Kubernetes. In this case, an attacker would need to compromise etcd, the kubeapi-server, and the third-party KMS provider to retrieve the plaintext values, providing a higher level of security than locally-stored encryption keys.
--->
-封套加密（Envelope Encryption）引入了对独立密钥的依赖，而这个密钥并不保存在 Kubernetes 中。
-在这种情况下下，入侵者需要攻破 etcd、kube-apiserver 和第三方的 KMS
-驱动才能获得明文数据，因而这种方案提供了比本地保存加密密钥更高的安全级别。
-
-<!--
-## Encrypting your data
-
-Create a new encryption config file:
--->
-## 加密你的数据
-
-创建一个新的加密配置文件：
-
-```yaml
-apiVersion: apiserver.config.k8s.io/v1
-kind: EncryptionConfiguration
-resources:
-  - resources:
-    - secrets
-    providers:
-    - aescbc:
-        keys:
-        - name: key1
-          secret: <BASE 64 ENCODED SECRET>
-    - identity: {}
-```
-
-<!--
-To create a new secret perform the following steps:
-
-1. Generate a 32 byte random key and base64 encode it. If you're on Linux or Mac OS X, run the following command:
--->
-遵循如下步骤来创建一个新的 secret：
-
-1. 生成一个 32 字节的随机密钥并进行 base64 编码。如果你在 Linux 或 Mac OS X 上，请运行以下命令：
-
-   ```
-   head -c 32 /dev/urandom | base64
-   ```
-
-<!--
-2. Place that value in the secret field.
-3. Set the `--experimental-encryption-provider-config` flag on the `kube-apiserver` to point to the location of the config file.
-4. Restart your API server.
-
-**IMPORTANT:** Your config file contains keys that can decrypt content in etcd, so you must properly restrict permissions on your masters so only the user who runs the kube-apiserver can read it.
--->
-2. 将这个值放入到 secret 字段中。
-3. 设置 `kube-apiserver` 的 `--experimental-encryption-provider-config` 参数，将其指向
-   配置文件所在位置。
-4. 重启你的 API server。
-
-
-{{< caution >}}
-你的配置文件包含可以解密 etcd 内容的密钥，因此你必须正确限制主控节点的访问权限，
-以便只有能运行 kube-apiserver 的用户才能读取它。
-{{< /caution >}}
-
-<!--
-## Verifying that data is encrypted
-
-Data is encrypted when written to etcd. After restarting your `kube-apiserver`, any newly created or
-updated secret should be encrypted when stored. To check, you can use the `etcdctl` command line
-program to retrieve the contents of your secret.
-
-1. Create a new secret called `secret1` in the `default` namespace:
--->
-## 验证数据已被加密
-
-数据在写入 etcd 时会被加密。重新启动你的 `kube-apiserver` 后，任何新创建或更新的密码在存储时都应该被加密。
-如果想要检查，你可以使用 `etcdctl` 命令行程序来检索你的加密内容。
-
-1. 创建一个新的 secret，名称为 `secret1`，命名空间为 `default`：
-
-   ```shell
-   kubectl create secret generic secret1 -n default --from-literal=mykey=mydata
-   ```
-
-<!--
-2. Using the etcdctl commandline, read that secret out of etcd:
--->
-2. 使用 etcdctl 命令行，从 etcd 中读取 secret：
-   ```shell
-   ETCDCTL_API=3 etcdctl get /registry/secrets/default/secret1 [...] | hexdump -C
-   ```
-
-   <!--
-   where `[...]` must be the additional arguments for connecting to the etcd server.
-   -->
-   这里的 `[...]` 是用来连接 etcd 服务的额外参数。
-
-<!--
-3. Verify the stored secret is prefixed with `k8s:enc:aescbc:v1:` which indicates the `aescbc` provider has encrypted the resulting data.
-4. Verify the secret is correctly decrypted when retrieved via the API:
--->
-3. 验证存储的密钥前缀是否为 `k8s:enc:aescbc:v1:`，这表明 `aescbc` provider 已加密结果数据。
-4. 通过 API 检索，验证 secret 是否被正确解密：
-
-   ```shell
-   kubectl describe secret secret1 -n default
-   ```
-
-   <!--
-   should match `mykey: mydata`, mydata is encoded, check [decoding a secret](/docs/tasks/configmap-secret/managing-secret-using-kubectl/#decoding-secret) to
-   completely decode the secret.
-   -->
-   其输出应该是 `mykey: bXlkYXRh`，`mydata` 数据是被加密过的，请参阅
-   [解密 Secret](/zh/docs/tasks/configmap-secret/managing-secret-using-kubectl/#decoding-secret)
-   了解如何完全解码 Secret 内容。
-
-<!--
-## Ensure all secrets are encrypted
-
-Since secrets are encrypted on write, performing an update on a secret will encrypt that content.
--->
-## 确保所有 Secret 都被加密
-
-由于 Secret 是在写入时被加密，因此对 Secret 执行更新也会加密该内容。
-
-```
-kubectl get secrets --all-namespaces -o json | kubectl replace -f -
-```
-
-<!--
-The command above reads all secrets and then updates them to apply server side encryption.
--->
-上面的命令读取所有 Secret，然后使用服务端加密来更新其内容。
-
-<!--
-If an error occurs due to a conflicting write, retry the command.
-For larger clusters, you may wish to subdivide the secrets by namespace or script an update.
--->
-{{< note >}}
-如果由于冲突写入而发生错误，请重试该命令。
-对于较大的集群，你可能希望通过命名空间或更新脚本来对 Secret 进行划分。
-{{< /note >}}
-
-<!--
-## Rotating a decryption key
-
-Changing the secret without incurring downtime requires a multi step operation, especially in
-the presence of a highly available deployment where multiple `kube-apiserver` processes are running.
-
-1. Generate a new key and add it as the second key entry for the current provider on all servers
-2. Restart all `kube-apiserver` processes to ensure each server can decrypt using the new key
-3. Make the new key the first entry in the `keys` array so that it is used for encryption in the config
-4. Restart all `kube-apiserver` processes to ensure each server now encrypts using the new key
-5. Run `kubectl get secrets -all-namespaces -o json | kubectl replace -f -` to encrypt all existing secrets with the new key
-6. Remove the old decryption key from the config after you back up etcd with the new key in use and update all secrets
-
-With a single `kube-apiserver`, step 2 may be skipped.
--->
-## 轮换解密密钥
-
-在不发生停机的情况下更改 Secret 需要多步操作，特别是在有多个 `kube-apiserver` 进程正在运行的
-高可用环境中。
-
-1. 生成一个新密钥并将其添加为所有服务器上当前提供程序的第二个密钥条目
-2. 重新启动所有 `kube-apiserver` 进程以确保每台服务器都可以使用新密钥进行解密
-3. 将新密钥设置为 `keys` 数组中的第一个条目，以便在配置中使用其进行加密
-4. 重新启动所有 `kube-apiserver` 进程以确保每个服务器现在都使用新密钥进行加密
-5. 运行 `kubectl get secrets --all-namespaces -o json | kubectl replace -f -` 以用新密钥加密所有现有的秘密
-6. 在使用新密钥备份 etcd 后，从配置中删除旧的解密密钥并更新所有密钥
-
-如果只有一个 `kube-apiserver`，第 2 步可能可以忽略。
-
-<!--
-## Decrypting all data
-
-To disable encryption at rest place the `identity` provider as the first entry in the config:
--->
-## 解密所有数据
-
-要禁用 rest 加密，请将 `identity` provider 作为配置中的第一个条目：
-
-```yaml
-apiVersion: apiserver.config.k8s.io/v1
-kind: EncryptionConfiguration
-resources:
-  - resources:
-    - secrets
-    providers:
-    - identity: {}
-    - aescbc:
-        keys:
-        - name: key1
-          secret: <BASE 64 ENCODED SECRET>
-```
-
-<!--
-and restart all `kube-apiserver` processes. Then run
--->
-并重新启动所有 `kube-apiserver` 进程。然后运行：
-
-```
-kubectl get secrets -all-namespaces -o json | kubectl replace -f -`
-```
-
-<!--
-to force all secrets to be decrypted.
--->
-以强制解密所有 secret。
-
diff --git a/content/zh/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods.md b/content/zh/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods.md
deleted file mode 100644
index 0f6d8d1312..0000000000
--- a/content/zh/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods.md
+++ /dev/null
@@ -1,40 +0,0 @@
----
-title: 关键插件 Pod 的调度保证
-content_type: concept
----
-
-<!-- overview -->
-
-<!-- 
-In addition to Kubernetes core components like api-server, scheduler, controller-manager running on a master machine
-there are a number of add-ons which, for various reasons, must run on a regular cluster node (rather than the Kubernetes master).
-Some of these add-ons are critical to a fully functional cluster, such as metrics-server, DNS, and UI.
-A cluster may stop working properly if a critical add-on is evicted (either manually or as a side effect of another operation like upgrade)
-and becomes pending (for example when the cluster is highly utilized and either there are other pending pods that schedule into the space
-vacated by the evicted critical add-on pod or the amount of resources available on the node changed for some other reason).
--->
-除了在主机上运行的 Kubernetes 核心组件（如 api-server 、scheduler 、controller-manager）之外，还有许多插件，由于各种原因，
-必须在常规集群节点（而不是 Kubernetes 主节点）上运行。
-其中一些插件对于功能完备的群集至关重要，例如 Heapster、DNS 和 UI。
-如果关键插件被逐出（手动或作为升级等其他操作的副作用）或者变成挂起状态，群集可能会停止正常工作。
-关键插件进入挂起状态的例子有：集群利用率过高；被逐出的关键插件 Pod 释放了空间，但该空间被之前悬决的 Pod 占用；由于其它原因导致节点上可用资源的总量发生变化。
-
-
-
-<!-- body -->
-
-<!--
-### Marking pod as critical
--->
-### 标记关键 Pod
-
-<!--
-To be considered critical, the pod has to run in the `kube-system` namespace (configurable via flag) and
-* Have the priorityClassName set as "system-cluster-critical" or "system-node-critical", the latter being the highest for entire cluster. Alternatively, you could add an annotation `scheduler.alpha.kubernetes.io/critical-pod` as key and empty string as value to your pod, but this annotation is deprecated as of version 1.13 and will be removed in 1.14.
--->
-要将 pod 标记为关键性（critical），pod 必须在 kube-system 命名空间中运行（可通过参数配置）。
-同时，需要将 `priorityClassName` 设置为 `system-cluster-critical` 或 `system-node-critical` ，后者是整个群集的最高级别。
-或者，也可以为 Pod 添加名为 `scheduler.alpha.kubernetes.io/critical-pod`、值为空字符串的注解。
-不过，这一注解从 1.13 版本开始不再推荐使用，并将在 1.14 中删除。
-
-
diff --git a/content/zh/docs/tasks/administer-cluster/highly-available-master.md b/content/zh/docs/tasks/administer-cluster/highly-available-master.md
deleted file mode 100644
index 6144a634c8..0000000000
--- a/content/zh/docs/tasks/administer-cluster/highly-available-master.md
+++ /dev/null
@@ -1,396 +0,0 @@
----
-title: 搭建高可用的 Kubernetes Masters
-content_type: task
----
-
-<!--
-reviewers:
-- jszczepkowski
-title: Set up High-Availability Kubernetes Masters
-content_type: task
--->
-
-<!-- overview -->
-
-{{< feature-state for_k8s_version="1.5" state="alpha" >}}
-
-<!--
-You can replicate Kubernetes masters in `kube-up` or `kube-down` scripts for Google Compute Engine.
-This document describes how to use kube-up/down scripts to manage highly available (HA) masters and how HA masters are implemented for use with GCE.
--->
-你可以在谷歌计算引擎（GCE）的 `kubeup` 或 `kube-down` 脚本中复制 Kubernetes Master。
-本文描述了如何使用 kube-up/down 脚本来管理高可用（HA）的 Master，
-以及如何使用 GCE 实现高可用控制节点。
-
-## {{% heading "prerequisites" %}}
-
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-<!-- steps -->
-<!--
-## Starting an HA-compatible cluster
-
-To create a new HA-compatible cluster, you must set the following flags in your `kube-up` script:
--->
-## 启动一个兼容高可用的集群
-
-要创建一个新的兼容高可用的集群，你必须在 `kubeup` 脚本中设置以下标志:
-
-<!--
-* `MULTIZONE=true` - to prevent removal of master replicas kubelets from zones different than server's default zone.
-Required if you want to run master replicas in different zones, which is recommended.
-
-* `ENABLE_ETCD_QUORUM_READ=true` - to ensure that reads from all API servers will return most up-to-date data.
-If true, reads will be directed to leader etcd replica.
-Setting this value to true is optional: reads will be more reliable but will also be slower.
-
-Optionally, you can specify a GCE zone where the first master replica is to be created.
-Set the following flag:
-
-* `KUBE_GCE_ZONE=zone` - zone where the first master replica will run.
-
-The following sample command sets up a HA-compatible cluster in the GCE zone europe-west1-b:
-
-```shell
-MULTIZONE=true KUBE_GCE_ZONE=europe-west1-b  ENABLE_ETCD_QUORUM_READS=true ./cluster/kube-up.sh
-```
-
-Note that the commands above create a cluster with one master;
-however, you can add new master replicas to the cluster with subsequent commands.
--->
-* `MULTIZONE=true` - 为了防止从不同于服务器的默认区域的区域中删除 kubelets 副本。
-  如果你希望在不同的区域运行副本，那么这一项是必需并且推荐的。
-
-* `ENABLE_ETCD_QUORUM_READ=true` - 确保从所有 API 服务器读取数据时将返回最新的数据。
-  如果为 true，读操作将被定向到主 etcd 副本。可以选择将这个值设置为 true，
-  那么读取将更可靠，但也会更慢。
-
-你还可以指定一个 GCE 区域，在这里创建第一个主节点副本。设置以下标志:
-
-* `KUBE_GCE_ZONE=zone` - 将运行第一个主节点副本的区域。
-
-下面的命令演示在 GCE  europe-west1-b 区域中设置一个兼容高可用的集群:
-
-```shell
-MULTIZONE=true KUBE_GCE_ZONE=europe-west1-b  ENABLE_ETCD_QUORUM_READS=true ./cluster/kube-up.sh
-```
-
-注意，上面的命令创建一个只有单一主节点的集群;
-但是，你可以使用后续命令将新的主节点副本添加到集群中。
-
-<!--
-## Adding a new master replica
-
-After you have created an HA-compatible cluster, you can add master replicas to it.
-You add master replicas by using a `kube-up` script with the following flags:
-
-* `KUBE_REPLICATE_EXISTING_MASTER=true` - to create a replica of an existing
-master.
-
-* `KUBE_GCE_ZONE=zone` - zone where the master replica will run.
-Must be in the same region as other replicas' zones.
-
-You don't need to set the `MULTIZONE` or `ENABLE_ETCD_QUORUM_READS` flags,
-as those are inherited from when you started your HA-compatible cluster.
-
-The following sample command replicates the master on an existing HA-compatible cluster:
-
-```shell
-KUBE_GCE_ZONE=europe-west1-c KUBE_REPLICATE_EXISTING_MASTER=true ./cluster/kube-up.sh
-```
--->
-## 增加一个新的主节点副本
-
-在创建了兼容高可用的集群之后，可以向其中添加主节点副本。
-你可以使用带有如下标记的 `kubeup` 脚本添加主节点副本:
-
-* `KUBE_REPLICATE_EXISTING_MASTER=true` - 创建一个已经存在的主节点的副本。
-
-* `KUBE_GCE_ZONE=zone` -主节点副本将运行的区域。必须与其他副本位于同一区域。
-
-你无需设置 `MULTIZONE` 或 `ENABLE_ETCD_QUORUM_READS` 标志，因为他们可以从兼容高可用的集群中继承。
-
-使用下面的命令可以复制现有兼容高可用的集群上的 Master:
-
-```shell
-KUBE_GCE_ZONE=europe-west1-c KUBE_REPLICATE_EXISTING_MASTER=true ./cluster/kube-up.sh
-```
-<!--
-## Removing a master replica
-
-You can remove a master replica from an HA cluster by using a `kube-down` script with the following flags:
-
-* `KUBE_DELETE_NODES=false` - to restrain deletion of kubelets.
-
-* `KUBE_GCE_ZONE=zone` - the zone from where master replica will be removed.
-
-* `KUBE_REPLICA_NAME=replica_name` - (optional) the name of master replica to remove.
-If empty: any replica from the given zone will be removed.
-
-The following sample command removes a master replica from an existing HA cluster:
-
-```shell
-KUBE_DELETE_NODES=false KUBE_GCE_ZONE=europe-west1-c ./cluster/kube-down.sh
-```
--->
-## 删除主节点副本
-
-你可以使用一个 `kube-down` 脚本从高可用集群中删除一个主节点副本，并可以使用以下标记:
-
-* `KUBE_DELETE_NODES=false` - 限制删除 kubelets。
-
-* `KUBE_GCE_ZONE=zone` - 将移除主节点副本的区域。
-
-* `KUBE_REPLICA_NAME=replica_name` - （可选）要删除的主节点副本的名称。
-如果为空：将删除给定区域中的所有副本。
-
-使用下面的命令可以从一个现有的高可用集群中删除一个 Master副本:
-
-```shell
-KUBE_DELETE_NODES=false KUBE_GCE_ZONE=europe-west1-c ./cluster/kube-down.sh
-```
-<!--
-## Handling master replica failures
-
-If one of the master replicas in your HA cluster fails,
-the best practice is to remove the replica from your cluster and add a new replica in the same zone.
-The following sample commands demonstrate this process:
-
-1. Remove the broken replica:
-
-```shell
-KUBE_DELETE_NODES=false KUBE_GCE_ZONE=replica_zone KUBE_REPLICA_NAME=replica_name ./cluster/kube-down.sh
-```
-
-<ol start="2"><li>Add a new replica in place of the old one:</li></ol>
-
-```shell
-KUBE_GCE_ZONE=replica-zone KUBE_REPLICATE_EXISTING_MASTER=true ./cluster/kube-up.sh
-```
--->
-## 处理主节点副本失败
-
-如果高可用集群中的一个主节点副本失败，最佳实践是从集群中删除副本，
-并在相同的区域中添加一个新副本。
-下面的命令演示了这个过程:
-
-1. 删除失败的副本:
-
-```shell
-KUBE_DELETE_NODES=false KUBE_GCE_ZONE=replica_zone KUBE_REPLICA_NAME=replica_name ./cluster/kube-down.sh
-```
-
-<ol start="2"><li>在原有位置增加一个新副本：</li></ol>
-
-```shell
-KUBE_GCE_ZONE=replica-zone KUBE_REPLICATE_EXISTING_MASTER=true ./cluster/kube-up.sh
-```
-<!--
-## Best practices for replicating masters for HA clusters
-
-* Try to place master replicas in different zones. During a zone failure, all masters placed inside the zone will fail.
-To survive zone failure, also place nodes in multiple zones
-(see [multiple-zones](/docs/setup/best-practices/multiple-zones/) for details).
-
-* Do not use a cluster with two master replicas. Consensus on a two-replica cluster requires both replicas running when changing persistent state.
-As a result, both replicas are needed and a failure of any replica turns cluster into majority failure state.
-A two-replica cluster is thus inferior, in terms of HA, to a single replica cluster.
-
-* When you add a master replica, cluster state (etcd) is copied to a new instance.
-If the cluster is large, it may take a long time to duplicate its state.
-This operation may be sped up by migrating etcd data directory, as described [here](https://coreos.com/etcd/docs/latest/admin_guide.html#member-migration)
-(we are considering adding support for etcd data dir migration in future).
--->
-
-## 高可用集群复制主节点的最佳实践
-
-* 尝试将主节点副本放置在不同的区域。在某区域故障时，放置在该区域内的所有主机都将失败。
-  为了在区域故障中幸免，请同样将工作节点放置在多区域中
-  （详情请见[多区域](/zh/docs/setup/best-practices/multiple-zones/)）。
-
-* 不要使用具有两个主节点副本的集群。在双副本集群上达成一致需要在更改持久状态时
-  两个副本都处于运行状态。
-  因此，两个副本都是需要的，任一副本的失败都会将集群带入多数失败状态。
-  因此，就高可用而言，双副本集群不如单个副本集群。
-
-* 添加主节点副本时，集群状态（etcd）会被复制到一个新实例。如果集群很大，
-  可能需要很长时间才能复制它的状态。
-  这个操作可以通过迁移 etcd 数据存储来加速, 详情参见
-  [这里](https://coreos.com/etcd/docs/latest/admin_guide.html#member-migration)
-  （我们正在考虑在未来添加对迁移 etcd 数据存储的支持）。
-
-<!-- discussion -->
-<!--
-## Implementation notes
-
-![ha-master-gce](/images/docs/ha-master-gce.png)
--->
-## 实现说明
-
-![ha-master-gce](/images/docs/ha-master-gce.png)
-
-<!--
-### Overview
-
-Each of master replicas will run the following components in the following mode:
-
-* etcd instance: all instances will be clustered together using consensus;
-
-* API server: each server will talk to local etcd - all API servers in the cluster will be available;
-
-* controllers, scheduler, and cluster auto-scaler: will use lease mechanism - only one instance of each of them will be active in the cluster;
-
-* add-on manager: each manager will work independently trying to keep add-ons in sync.
-
-In addition, there will be a load balancer in front of API servers that will route external and internal traffic to them.
--->
-### 概述
-
-每个主节点副本将以以下模式运行以下组件:
-
-* etcd 实例： 所有实例将会以共识方式组建集群；
-
-* API 服务器： 每个服务器将与本地 etcd 通信——集群中的所有 API 服务器都可用;
-
-* 控制器、调度器和集群自动扩缩器：将使用租约机制 —— 每个集群中只有一个实例是可用的；
-
-* 插件管理器：每个管理器将独立工作，试图保持插件同步。
-
-此外，在 API 服务器前面将有一个负载均衡器，用于将外部和内部通信路由到他们。
-
-<!--
-### Load balancing
-
-When starting the second master replica, a load balancer containing the two replicas will be created
-and the IP address of the first replica will be promoted to IP address of load balancer.
-Similarly, after removal of the penultimate master replica, the load balancer will be removed and its IP address will be assigned to the last remaining replica.
-Please note that creation and removal of load balancer are complex operations and it may take some time (~20 minutes) for them to propagate.
--->
-### 负载均衡
-
-启动第二个主节点副本时，将创建一个包含两个副本的负载均衡器，
-并将第一个副本的 IP 地址提升为负载均衡器的 IP 地址。
-类似地，在删除倒数第二个主节点副本之后，将删除负载均衡器，
-并将其 IP 地址分配给最后一个剩余的副本。
-请注意，创建和删除负载均衡器是复杂的操作，可能需要一些时间（约20分钟）来同步。
-
-<!--
-###主节点service & kubelets
-
-Instead of trying to keep an up-to-date list of Kubernetes apiserver in the Kubernetes service,
-the system directs all traffic to the external IP:
-
-* in one master cluster the IP points to the single master,
-
-* in multi-master cluster the IP points to the load balancer in-front of the masters.
-
-Similarly, the external IP will be used by kubelets to communicate with master.
--->
-### 主节点服务 & kubelets
-
-Kubernetes 并不试图在其服务中保持 apiserver 的列表为最新，
-相反，它将将所有访问请求指向外部 IP：
-
-* 在拥有一个主节点的集群中，IP 指向单一的主节点，
-* 在拥有多个主节点的集群中，IP 指向主节点前面的负载均衡器。
-
-类似地，kubelets 将使用外部 IP 与主节点通信。
-
-<!--
-### Master certificates
-
-Kubernetes generates主节点TLS certificates for the external public IP and local IP for each replica.
-There are no certificates for the ephemeral public IP for replicas;
-to access a replica via its ephemeral public IP, you must skip TLS verification.
--->
-### 主节点证书
-
-Kubernetes 为每个副本的外部公共 IP 和本地 IP 生成主节点 TLS 证书。
-副本的临时公共 IP 没有证书；
-要通过其临时公共 IP 访问副本，必须跳过 TLS 检查。
-
-<!--
-### Clustering etcd
-
-To allow etcd clustering, ports needed to communicate between etcd instances will be opened (for inside cluster communication).
-To make such deployment secure, communication between etcd instances is authorized using SSL.
--->
-### etcd 集群
-
-为了允许 etcd 组建集群，需开放 etcd 实例之间通信所需的端口（用于集群内部通信）。
-为了使这种部署安全，etcd 实例之间的通信使用 SSL 进行鉴权。
-
-<!--
-### API server identity
--->
-### API 服务器标识
-
-{{< feature-state state="alpha"  for_k8s_version="v1.20" >}}
-
-<!--
-The API Server Identity feature is controlled by a
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates/)
-and is not enabled by default. You can activate API Server Identity by enabling
-the feature gate named `APIServerIdentity` when you start the
-{{< glossary_tooltip text="API Server" term_id="kube-apiserver" >}}:
--->
-使用 API 服务器标识功能需要启用[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)，
-该功能默认不启用。
-你可以在启动 {{< glossary_tooltip text="API 服务器" term_id="kube-apiserver" >}} 的时候启用特性门控 `APIServerIdentity` 来激活 API 服务器标识：
-
-<!--
-```shell
-kube-apiserver \
---feature-gates=APIServerIdentity=true \
- # …and other flags as usual
-```
--->
-```shell
-kube-apiserver \
---feature-gates=APIServerIdentity=true \
- # …其他标记照常
-```
-
-<!--
-During bootstrap, each kube-apiserver assigns a unique ID to itself. The ID is
-in the format of `kube-apiserver-{UUID}`. Each kube-apiserver creates a
-[Lease](/docs/reference/generated/kubernetes-api/{{< param "version" >}}//#lease-v1-coordination-k8s-io)
-in the _kube-system_ {{< glossary_tooltip text="namespaces" term_id="namespace">}}.
--->
-在启动引导过程中，每个 kube-apiserver 会给自己分配一个唯一 ID。
-该 ID 的格式是 `kube-apiserver-{UUID}`。
-每个 kube-apiserver 会在 _kube-system_ {{< glossary_tooltip text="名字空间" term_id="namespace">}} 里创建一个 [`Lease` 对象](/docs/reference/generated/kubernetes-api/{{< param "version" >}}//#lease-v1-coordination-k8s-io)。
-<!--
-The Lease name is the unique ID for the kube-apiserver. The Lease contains a
-label `k8s.io/component=kube-apiserver`. Each kube-apiserver refreshes its
-Lease every `IdentityLeaseRenewIntervalSeconds` (defaults to 10s). Each
-kube-apiserver also checks all the kube-apiserver identity Leases every
-`IdentityLeaseDurationSeconds` (defaults to 3600s), and deletes Leases that
-hasn't got refreshed for more than `IdentityLeaseDurationSeconds`.
-`IdentityLeaseRenewIntervalSeconds` and `IdentityLeaseDurationSeconds` can be
-configured by kube-apiserver flags `identity-lease-renew-interval-seconds`
-and `identity-lease-duration-seconds`.
--->
-`Lease` 对象的名字是 kube-apiserver 的唯一 ID。
-`Lease` 对象包含一个标签 `k8s.io/component=kube-apiserver`。
-每个 kube-apiserver 每过 `IdentityLeaseRenewIntervalSeconds`（默认是 10 秒）就会刷新它的 `Lease` 对象。
-每个 kube-apiserver 每过 `IdentityLeaseDurationSeconds`（默认是 3600 秒）也会检查所有 kube-apiserver 的标识 `Lease` 对象，
-并且会删除超过 `IdentityLeaseDurationSeconds` 时间还没被刷新的 `Lease` 对象。
-可以在 kube-apiserver 的 `identity-lease-renew-interval-seconds`
-和 `identity-lease-duration-seconds` 标记里配置 `IdentityLeaseRenewIntervalSeconds` 和 `IdentityLeaseDurationSeconds`。
-
-<!--
-Enabling this feature is a prerequisite for using features that involve HA API
-server coordination (for example, the `StorageVersionAPI` feature gate).
--->
-启用该功能是使用 HA API 服务器协调相关功能（例如，`StorageVersionAPI` 特性门控）的前提条件。
-
-<!--
-## Additional reading
-
-[Automated HA master deployment - design doc](https://git.k8s.io/community/contributors/design-proposals/cluster-lifecycle/ha_master.md)
--->
-## 拓展阅读
-
-[自动化高可用集群部署 - 设计文档](https://git.k8s.io/community/contributors/design-proposals/cluster-lifecycle/ha_master.md)
-
diff --git a/content/zh/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes.md b/content/zh/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes.md
deleted file mode 100644
index 2af5662965..0000000000
--- a/content/zh/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes.md
+++ /dev/null
@@ -1,341 +0,0 @@
----
-title: 添加 Windows 节点
-min-kubernetes-server-version: 1.17
-content_type: tutorial
-weight: 30
----
-<!--
-reviewers:
-- michmike
-- patricklang
-title: Adding Windows nodes
-min-kubernetes-server-version: 1.17
-content_type: tutorial
-weight: 30
--->
-
-<!-- overview -->
-
-{{< feature-state for_k8s_version="v1.18" state="beta" >}}
-
-<!--
-You can use Kubernetes to run a mixture of Linux and Windows nodes, so you can mix Pods that run on Linux on with Pods that run on Windows. This page shows how to register Windows nodes to your cluster.
--->
-你可以使用 Kubernetes 来混合运行 Linux 和 Windows 节点，这样你就可以
-混合使用运行于 Linux 上的 Pod 和运行于 Windows 上的 Pod。
-本页面展示如何将 Windows 节点注册到你的集群。
-
-## {{% heading "prerequisites" %}}
-
-{{< version-check >}}
-
-<!--
-* Obtain a [Windows Server 2019 license](https://www.microsoft.com/en-us/cloud-platform/windows-server-pricing)
-(or higher) in order to configure the Windows node that hosts Windows containers.
-If you are using VXLAN/Overlay networking you must have also have [KB4489899](https://support.microsoft.com/help/4489899) installed.
-
-* A Linux-based Kubernetes kubeadm cluster in which you have access to the control plane (see [Creating a single control-plane cluster with kubeadm](/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/)).
--->
-* 获取 [Windows Server 2019 或更高版本的授权](https://www.microsoft.com/en-us/cloud-platform/windows-server-pricing)
-  以便配置托管 Windows 容器的 Windows 节点。
-  如果你在使用 VXLAN/覆盖（Overlay）联网设施，则你还必须安装 [KB4489899](https://support.microsoft.com/help/4489899)。
-
-* 一个利用 kubeadm 创建的基于 Linux 的 Kubernetes 集群；你能访问该集群的控制面
-  （参见[使用 kubeadm 创建一个单控制面的集群](/zh/docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/))。
-
-## {{% heading "objectives" %}}
-
-<!--
-* Register a Windows node to the cluster
-* Configure networking so Pods and Services on Linux and Windows can communicate with each other
--->
-* 将一个 Windows 节点注册到集群上
-* 配置网络，以便 Linux 和 Windows 上的 Pod 和 Service 之间能够相互通信。
-
-<!-- lessoncontent -->
-
-<!--
-## Getting Started: Adding a Windows Node to Your Cluster
-
-### Networking Configuration
-
-Once you have a Linux-based Kubernetes control-plane node you are ready to choose a networking solution. This guide illustrates using Flannel in VXLAN mode for simplicity.
--->
-## 开始行动：向你的集群添加一个 Windows 节点
-
-### 联网配置   {#networking-configuration}
-
-一旦你有了一个基于 Linux 的 Kubernetes 控制面节点，你就可以为其选择联网方案。
-出于简单考虑，本指南展示如何使用 VXLAN 模式的 Flannel。
-
-<!--
-#### Configuring Flannel
-
-1. Prepare Kubernetes control plane for Flannel
-
-    Some minor preparation is recommended on the Kubernetes control plane in our cluster. It is recommended to enable bridged IPv4 traffic to iptables chains when using Flannel. The following command must be run on all Linux nodes:
-
-    ```bash
-    sudo sysctl net.bridge.bridge-nf-call-iptables=1
-    ```
--->
-#### 配置 Flannel  {#configuring-flannel}
-
-1. 为 Flannel 准备 Kubernetes 的控制面
-
-   在我们的集群中，建议对 Kubernetes 的控制面进行少许准备处理。
-   建议在使用 Flannel 时为 iptables 链启用桥接方式的 IPv4 流处理，
-   必须在所有 Linux 节点上执行如下命令：
-
-   ```bash
-   sudo sysctl net.bridge.bridge-nf-call-iptables=1
-   ```
-
-<!--
-1. Download & configure Flannel for Linux
-
-    Download the most recent Flannel manifest:
-
-    ```bash
-    wget https://raw.githubusercontent.com/coreos/flannel/master/Documentation/kube-flannel.yml
-    ```
-
-    Modify the `net-conf.json` section of the flannel manifest in order to set the VNI to 4096 and the Port to 4789. It should look as follows:
-
-    ```json
-    net-conf.json: |
-        {
-          "Network": "10.244.0.0/16",
-          "Backend": {
-            "Type": "vxlan",
-            "VNI": 4096,
-            "Port": 4789
-          }
-        }
-    ```
-
-    The VNI must be set to 4096 and port 4789 for Flannel on Linux to interoperate with Flannel on Windows. See the [VXLAN documentation](https://github.com/coreos/flannel/blob/master/Documentation/backends.md#vxlan).
-    for an explanation of these fields.
-
-    To use L2Bridge/Host-gateway mode instead change the value of `Type` to `"host-gw"` and omit `VNI` and `Port`.
--->
-2. 下载并配置 Linux 版本的 Flannel
-
-   下载最新的 Flannel 清单文件：
-
-   ```bash
-   wget https://raw.githubusercontent.com/coreos/flannel/master/Documentation/kube-flannel.yml
-   ```
-
-   修改 Flannel 清单中的 `net-conf.json` 部分，将 VNI 设置为 4096，并将 Port 设置为 4789。
-   结果看起来像下面这样：
-
-   ```json
-   net-conf.json: |
-       {
-         "Network": "10.244.0.0/16",
-         "Backend": {
-            "Type": "vxlan",
-            "VNI": 4096,
-            "Port": 4789
-       }
-   }
-   ```
-
-   {{< note >}}
-   在 Linux 节点上 VNI 必须设置为 4096，端口必须设置为 4789，这样才能令其与 Windows 上的
-   Flannel 互操作。关于这些字段的详细说明，请参见
-   [VXLAN 文档](https://github.com/coreos/flannel/blob/master/Documentation/backends.md#vxlan)。
-   {{< /note >}}
-
-   {{< note >}}
-   如要使用 L2Bridge/Host-gateway 模式，则可将 `Type` 值设置为
-   `"host-gw"`，并忽略 `VNI` 和 `Port` 的设置。
-   {{< /note >}}
-
-<!--
-1. Apply the Flannel manifest and validate
-
-    Let's apply the Flannel configuration:
-
-    ```bash
-    kubectl apply -f kube-flannel.yml
-    ```
-
-    After a few minutes, you should see all the pods as running if the Flannel pod network was deployed.
-
-    ```bash
-    kubectl get pods -n kube-system
-    ```
-
-    The output should include the Linux flannel DaemonSet as running:
-
-    ```
-    NAMESPACE     NAME                                      READY        STATUS    RESTARTS   AGE
-    ...
-    kube-system   kube-flannel-ds-54954                     1/1          Running   0          1m
-    ```
--->
-3. 应用 Flannel 清单并验证
-
-   首先应用 Flannel 配置：
-
-   ```bash
-   kubectl apply -f kube-flannel.yml
-   ```
-
-   几分钟之后，如果 Flannel Pod 网络被正确部署，你应该会看到所有 Pods 都处于运行中状态。
-
-   ```bash
-   kubectl get pods -n kube-system
-   ```
-
-   输出中应该包含处于运行中状态的 Linux Flannel DaemonSet：
-
-   ```
-   NAMESPACE     NAME                                      READY        STATUS    RESTARTS   AGE
-   ...
-   kube-system   kube-flannel-ds-54954                     1/1          Running   0          1m
-   ```
-
-<!--
-1. Add Windows Flannel and kube-proxy DaemonSets
-
-    Now you can add Windows-compatible versions of Flannel and kube-proxy. In order
-    to ensure that you get a compatible version of kube-proxy, you'll need to substitute
-    the tag of the image. The following example shows usage for Kubernetes {{< param "fullversion" >}},
-    but you should adjust the version for your own deployment.
-
-    ```bash
-    curl -L https://github.com/kubernetes-sigs/sig-windows-tools/releases/latest/download/kube-proxy.yml | sed 's/VERSION/{{< param "fullversion" >}}/g' | kubectl apply -f -
-    kubectl apply -f https://github.com/kubernetes-sigs/sig-windows-tools/releases/latest/download/flannel-overlay.yml
-    ```
-
-    If you're using host-gateway use https://github.com/kubernetes-sigs/sig-windows-tools/releases/latest/download/flannel-host-gw.yml instead
-
-If you're using a different interface rather than Ethernet (i.e. "Ethernet0 2") on the Windows nodes, you have to modify the line:
-
-```powershell
-wins cli process run --path /k/flannel/setup.exe --args "--mode=overlay --interface=Ethernet"
-```
-
-in the `flannel-host-gw.yml` or `flannel-overlay.yml` file and specify your interface accordingly.
-
-```bash
-# Example
-curl -L https://github.com/kubernetes-sigs/sig-windows-tools/releases/latest/download/flannel-overlay.yml | sed 's/Ethernet/Ethernet0 2/g' | kubectl apply -f -
-```
--->    
-4. 添加 Windows Flannel 和 kube-proxy DaemonSet
-
-   现在你可以添加 Windows 兼容版本的 Flannel 和 kube-proxy。为了确保你能获得兼容
-   版本的 kube-proxy，你需要替换镜像中的标签。
-   下面的例子中展示的是针对 Kubernetes {{< param "fullversion" >}} 版本的用法，
-   不过你应该根据你自己的集群部署调整其中的版本号。
-
-   ```bash
-   curl -L https://github.com/kubernetes-sigs/sig-windows-tools/releases/latest/download/kube-proxy.yml | sed 's/VERSION/{{< param "fullversion" >}}/g' | kubectl apply -f -
-   kubectl apply -f https://github.com/kubernetes-sigs/sig-windows-tools/releases/latest/download/flannel-overlay.yml
-   ```
-
-   {{< note >}}
-   如果你在使用 host-gateway 模式，则应该使用
-   https://github.com/kubernetes-sigs/sig-windows-tools/releases/latest/download/flannel-host-gw.yml
-   这一清单。
-   {{< /note >}}
-
-   {{< note >}}
-   如果你在 Windows 节点上使用的不是以太网（即，"Ethernet0 2"）接口，你需要
-   修改 `flannel-host-gw.yml` 或 `flannel-overlay.yml` 文件中的下面这行：
-
-   ```powershell
-   wins cli process run --path /k/flannel/setup.exe --args "--mode=overlay --interface=Ethernet"
-   ```
-
-   在其中根据情况设置要使用的网络接口。
-
-   ```bash
-   # Example
-   curl -L https://github.com/kubernetes-sigs/sig-windows-tools/releases/latest/download/flannel-overlay.yml | sed 's/Ethernet/Ethernet0 2/g' | kubectl apply -f -
-   ```
-   {{< /note >}}
-
-<!--
-### Joining a Windows worker node
-
-You must install the `Containers` feature and install Docker. Instructions
-to do so are available at [Install Docker Engine - Enterprise on Windows Servers](https://docs.mirantis.com/docker-enterprise/v3.1/dockeree-products/docker-engine-enterprise/dee-windows.html).
-
-All code snippets in Windows sections are to be run in a PowerShell environment
-with elevated permissions (Administrator) on the Windows worker node.
--->
-### 加入 Windows 工作节点   {#joining-a-windows-worker-node}
-
-你必须安装 `Containers` 功能特性并安装 Docker 工具。相关的指令可以在
-[Install Docker Engine - Enterprise on Windows Servers](https://hub.docker.com/editions/enterprise/docker-ee-server-windows)
-处找到。
-
-Windows 节的所有代码片段都需要在 PowerShell 环境中执行，并且要求在
-Windows 工作节点上具有提升的权限（Administrator）。
-
-<!--
-1. Install wins, kubelet, and kubeadm.
--->
-1. 安装 wins、kubelet 和 kubeadm
-
-   ```PowerShell
-   curl.exe -LO https://github.com/kubernetes-sigs/sig-windows-tools/releases/latest/download/PrepareNode.ps1
-   .\PrepareNode.ps1 -KubernetesVersion {{< param "fullversion" >}}
-   ```
-
-<!--
-1. Run `kubeadm` to join the node
-
-    Use the command that was given to you when you ran `kubeadm init` on a control plane host.
-    If you no longer have this command, or the token has expired, you can run `kubeadm token create -print-join-command`
-    (on a control plane host) to generate a new token and join command.
--->
-2. 运行 `kubeadm` 添加节点
-
-   当你在控制面主机上运行 `kubeadm init` 时，输出了一个命令。现在运行这个命令。
-   如果你找不到这个命令，或者命令中对应的令牌已经过期，你可以（在一个控制面主机上）运行
-   `kubeadm token create --print-join-command` 来生成新的令牌和 join 命令。
-
-<!--
-#### Verifying your installation
-
-You should now be able to view the Windows node in your cluster by running:
--->
-#### 检查你的安装   {#verifying-your-installation}
-
-你现在应该能够通过运行下面的命令来查看集群中的 Windows 节点了：
-
-```bash
-kubectl get nodes -o wide
-```
-
-<!--
-If your new node is in the `NotReady` state it is likely because the flannel image is still downloading.
-You can check the progress as before by checking on the flannel pods in the `kube-system` namespace:
--->
-如果你的新节点处于 `NotReady` 状态，很可能的原因是系统仍在下载 Flannel 镜像。
-你可以像之前一样，通过检查 `kube-system` 名字空间中的 Flannel Pods 来了解
-安装进度。
-
-```shell
-kubectl -n kube-system get pods -l app=flannel
-```
-
-<!--
-Once the flannel Pod is running, your node should enter the `Ready` state and then be available to handle workloads.
--->
-一旦 Flannel Pod 运行起来，你的节点就应该能进入 `Ready` 状态并可
-用来处理负载。
-
-## {{% heading "whatsnext" %}}
-
-<!--
-- [Upgrading Windows kubeadm nodes](/docs/tasks/administer-cluster/kubeadm/upgrading-windows-nodes)
--->
-- [升级 kubeadm 安装的 Windows 节点](/zh/docs/tasks/administer-cluster/kubeadm/upgrading-windows-nodes)
-
diff --git a/content/zh/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace.md b/content/zh/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace.md
deleted file mode 100644
index cc516e24cd..0000000000
--- a/content/zh/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace.md
+++ /dev/null
@@ -1,285 +0,0 @@
----
-title: 为命名空间配置默认的 CPU 请求和限制
-content_type: task
-weight: 20
----
-
-<!--
-title: Configure Default CPU Requests and Limits for a Namespace
-content_type: task
-weight: 20
--->
-
-<!-- overview -->
-<!--
-This page shows how to configure default CPU requests and limits for a namespace.
-A Kubernetes cluster can be divided into namespaces. If a Container is created in a namespace
-that has a default CPU limit, and the Container does not specify its own CPU limit, then
-the Container is assigned the default CPU limit. Kubernetes assigns a default CPU request
-under certain conditions that are explained later in this topic.
--->
-本章介绍怎样为命名空间配置默认的 CPU 请求和限制。
-一个 Kubernetes 集群可被划分为多个命名空间。如果在配置了 CPU 限制的命名空间创建容器，
-并且该容器没有声明自己的 CPU 限制，那么这个容器会被指定默认的 CPU 限制。
-Kubernetes 在一些特定情况还会指定 CPU 请求，本文后续章节将会对其进行解释。
-
-## {{% heading "prerequisites" %}}
-
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-<!-- steps -->
-
-<!--
-## Create a namespace
-
-Create a namespace so that the resources you create in this exercise are
-isolated from the rest of your cluster.
--->
-## 创建命名空间
-
-创建一个命名空间，以便本练习中创建的资源和集群的其余部分相隔离。
-
-```shell
-kubectl create namespace default-cpu-example
-```
-
-<!--
-## Create a LimitRange and a Pod
-
-Here's the configuration file for a LimitRange object. The configuration specifies
-a default CPU request and a default CPU limit.
--->
-## 创建 LimitRange 和 Pod
-
-这里给出了 LimitRange 对象的配置文件。该配置声明了一个默认的 CPU 请求和一个默认的 CPU 限制。
-
-{{< codenew file="admin/resource/cpu-defaults.yaml" >}}
-
-<!--
-Create the LimitRange in the default-cpu-example namespace:
--->
-在命名空间 default-cpu-example 中创建 LimitRange 对象：
-
-```shell
-kubectl apply -f https://k8s.io/examples/admin/resource/cpu-defaults.yaml --namespace=default-cpu-example
-```
-
-<!--
-Now if a Container is created in the default-cpu-example namespace, and the
-Container does not specify its own values for CPU request and CPU limit,
-the Container is given a default CPU request of 0.5 and a default
-CPU limit of 1.
-
-Here's the configuration file for a Pod that has one Container. The Container
-does not specify a CPU request and limit.
--->
-现在如果在 default-cpu-example 命名空间创建一个容器，该容器没有声明自己的 CPU 请求和限制时，
-将会给它指定默认的 CPU 请求0.5和默认的 CPU 限制值1.
-
-这里给出了包含一个容器的 Pod 的配置文件。该容器没有声明 CPU 请求和限制。
-
-{{< codenew file="admin/resource/cpu-defaults-pod.yaml" >}}
-
-<!--
-Create the Pod.
--->
-创建 Pod。
-
-```shell
-kubectl apply -f https://k8s.io/examples/admin/resource/cpu-defaults-pod.yaml --namespace=default-cpu-example
-```
-
-<!--
-View the Pod's specification:
--->
-查看该 Pod 的声明：
-
-```shell
-kubectl get pod default-cpu-demo --output=yaml --namespace=default-cpu-example
-```
-
-<!--
-The output shows that the Pod's Container has a CPU request of 500 millicpus and
-a CPU limit of 1 cpu. These are the default values specified by the LimitRange.
--->
-输出显示该 Pod 的容器有一个500 millicpus的 CPU 请求和一个1 cpu的 CPU 限制。这些是 LimitRange 声明的默认值。
-
-```shell
-containers:
-- image: nginx
-  imagePullPolicy: Always
-  name: default-cpu-demo-ctr
-  resources:
-    limits:
-      cpu: "1"
-    requests:
-      cpu: 500m
-```
-
-<!--
-## What if you specify a Container's limit, but not its request?
-
-Here's the configuration file for a Pod that has one Container. The Container
-specifies a CPU limit, but not a request:
--->
-## 你只声明容器的限制，而不声明请求会怎么样？
-
-这是包含一个容器的 Pod 的配置文件。该容器声明了 CPU 限制，而没有声明 CPU 请求。
-
-{{< codenew file="admin/resource/cpu-defaults-pod-2.yaml" >}}
-
-<!--
-Create the Pod:
--->
-创建 Pod
-
-```shell
-kubectl apply -f https://k8s.io/examples/admin/resource/cpu-defaults-pod-2.yaml --namespace=default-cpu-example
-```
-
-<!--
-View the Pod specification:
--->
-查看 Pod 的声明：
-
-```
-kubectl get pod default-cpu-demo-2 --output=yaml --namespace=default-cpu-example
-```
-
-<!--
-The output shows that the Container's CPU request is set to match its CPU limit.
-Notice that the Container was not assigned the default CPU request value of 0.5 cpu.
--->
-输出显示该容器的 CPU 请求和 CPU 限制设置相同。注意该容器没有被指定默认的 CPU 请求值0.5 cpu。
-
-```
-resources:
-  limits:
-    cpu: "1"
-  requests:
-    cpu: "1"
-```
-
-<!--
-## What if you specify a Container's request, but not its limit?
-
-Here's the configuration file for a Pod that has one Container. The Container
-specifies a CPU request, but not a limit:
--->
-## 你只声明容器的请求，而不声明它的限制会怎么样？
-
-这里给出了包含一个容器的 Pod 的配置文件。该容器声明了 CPU 请求，而没有声明 CPU 限制。
-
-{{< codenew file="admin/resource/cpu-defaults-pod-3.yaml" >}}
-
-<!--
-Create the Pod:
--->
-创建 Pod：
-
-```shell
-kubectl apply -f https://k8s.io/examples/admin/resource/cpu-defaults-pod-3.yaml --namespace=default-cpu-example
-```
-
-<!--
-View the Pod specification:
--->
-查看 Pod 的规约：
-
-```
-kubectl get pod default-cpu-demo-3 --output=yaml --namespace=default-cpu-example
-```
-
-<!--
-The output shows that the Container's CPU request is set to the value specified in the
-Container's configuration file. The Container's CPU limit is set to 1 cpu, which is the
-default CPU limit for the namespace.
--->
-结果显示该容器的 CPU 请求被设置为容器配置文件中声明的数值。
-容器的CPU限制被设置为 1 CPU，即该命名空间的默认 CPU 限制值。
-
-```
-resources:
-  limits:
-    cpu: "1"
-  requests:
-    cpu: 750m
-```
-
-<!--
-## Motivation for default CPU limits and requests
-
-If your namespace has a
-[resource quota](/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/),
-it is helpful to have a default value in place for CPU limit.
-Here are two of the restrictions that a resource quota imposes on a namespace:
-
-* Every Container that runs in the namespace must have its own CPU limit.
-* The total amount of CPU used by all Containers in the namespace must not exceed a specified limit.
-
-If a Container does not specify its own CPU limit, it is given the default limit, and then
-it can be allowed to run in a namespace that is restricted by a quota.
--->
-## 默认 CPU 限制和请求的动机
-
-如果你的命名空间有一个
-[资源配额](/zh/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)，
-那么有一个默认的 CPU 限制是有帮助的。这里有资源配额强加给命名空间的两条限制：
-
-* 命名空间中运行的每个容器必须有自己的 CPU 限制。
-* 命名空间中所有容器使用的 CPU 总和不能超过一个声明值。
-
-如果容器没有声明自己的 CPU 限制，将会给它一个默认限制，这样它就能被允许运行在一个有配额限制的命名空间中。
-
-<!--
-## Clean up
-
-Delete your namespace:
-
-```shell
-kubectl delete namespace default-cpu-example
-```
--->
-## 清理
-
-删除你的命名空间：
-
-```shell
-kubectl delete namespace constraints-cpu-example
-```
-
-## {{% heading "whatsnext" %}}
-
-<!--
-### For cluster administrators
-
-* [Configure Default Memory Requests and Limits for a Namespace](/docs/tasks/administer-cluster/memory-default-namespace/)
-* [Configure Minimum and Maximum Memory Constraints for a Namespace](/docs/tasks/administer-cluster/memory-constraint-namespace/)
-* [Configure Minimum and Maximum CPU Constraints for a Namespace](/docs/tasks/administer-cluster/cpu-constraint-namespace/)
-* [Configure Memory and CPU Quotas for a Namespace](/docs/tasks/administer-cluster/quota-memory-cpu-namespace/)
-* [Configure a Pod Quota for a Namespace](/docs/tasks/administer-cluster/quota-pod-namespace/)
-* [Configure Quotas for API Objects](/docs/tasks/administer-cluster/quota-api-object/)
--->
-### 集群管理员参考
-
-* [为命名空间配置默认内存请求和限制](/zh/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)
-* [为命名空间配置内存限制的最小值和最大值](/zh/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)
-* [为命名空间配置 CPU 限制的最小值和最大值](/zh/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
-* [为命名空间配置内存和 CPU 配额](/zh/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
-* [为命名空间配置 Pod 配额](/zh/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace/)
-* [为 API 对象配置配额](/zh/docs/tasks/administer-cluster/quota-api-object/)
-
-<!--
-### For app developers
-
-* [Assign Memory Resources to Containers and Pods](/docs/tasks/configure-pod-container/assign-memory-resource/)
-* [Assign CPU Resources to Containers and Pods](/docs/tasks/configure-pod-container/assign-cpu-resource/)
-* [Configure Quality of Service for Pods](/docs/tasks/configure-pod-container/quality-service-pod/)
--->
-### 应用开发者参考
-
-* [为容器和 Pod 分配内存资源](/zh/docs/tasks/configure-pod-container/assign-memory-resource/)
-* [为容器和 Pod 分配 CPU 资源](/zh/docs/tasks/configure-pod-container/assign-cpu-resource/)
-* [为 Pod 配置服务质量](/zh/docs/tasks/configure-pod-container/quality-service-pod/)
-
-
diff --git a/content/zh/docs/tasks/administer-cluster/manage-resources/memory-default-namespace.md b/content/zh/docs/tasks/administer-cluster/manage-resources/memory-default-namespace.md
deleted file mode 100644
index 2a1345364c..0000000000
--- a/content/zh/docs/tasks/administer-cluster/manage-resources/memory-default-namespace.md
+++ /dev/null
@@ -1,305 +0,0 @@
----
-title: 为命名空间配置默认的内存请求和限制
-content_type: task
-weight: 10
----
-
-<!--
-title: Configure Default Memory Requests and Limits for a Namespace
-content_type: task
-weight: 10
--->
-
-<!-- overview -->
-
-<!--
-This page shows how to configure default memory requests and limits for a namespace.
-If a Container is created in a namespace that has a default memory limit, and the Container
-does not specify its own memory limit, then the Container is assigned the default memory limit.
-Kubernetes assigns a default memory request under certain conditions that are explained later in this topic.
--->
-
-本文介绍怎样给命名空间配置默认的内存请求和限制。
-如果在一个有默认内存限制的命名空间创建容器，该容器没有声明自己的内存限制时，
-将会被指定默认内存限制。
-Kubernetes 还为某些情况指定了默认的内存请求，本章后面会进行介绍。
-
-## {{% heading "prerequisites" %}}
-
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-<!--
-Each node in your cluster must have at least 2 GiB of memory.
--->
-你的集群中的每个节点必须至少有 2 GiB 的内存。
-
-<!-- steps -->
-
-<!--
-## Create a namespace
-
-Create a namespace so that the resources you create in this exercise are
-isolated from the rest of your cluster.
--->
-## 创建命名空间
-
-创建一个命名空间，以便本练习中所建的资源与集群的其余资源相隔离。
-
-```shell
-kubectl create namespace default-mem-example
-```
-
-<!--
-## Create a LimitRange and a Pod
-
-Here's the configuration file for a LimitRange object. The configuration specifies
-a default memory request and a default memory limit.
--->
-## 创建 LimitRange 和 Pod
-
-这里给出了一个限制范围对象的配置文件。该配置声明了一个默认的内存请求和一个默认的内存限制。
-
-{{< codenew file="admin/resource/memory-defaults.yaml" >}}
-
-<!--
-Create the LimitRange in the default-mem-example namespace:
--->
-在 default-mem-example 命名空间创建限制范围：
-
-```shell
-kubectl apply -f https://k8s.io/examples/admin/resource/memory-defaults.yaml --namespace=default-mem-example
-```
-
-<!--
-Now if a Container is created in the default-mem-example namespace, and the
-Container does not specify its own values for memory request and memory limit,
-the Container is given a default memory request of 256 MiB and a default
-memory limit of 512 MiB.
-
-Here's the configuration file for a Pod that has one Container. The Container
-does not specify a memory request and limit.
--->
-现在，如果在 default-mem-example 命名空间创建容器，并且该容器没有声明自己的内存请求和限制值，
-它将被指定默认的内存请求 256 MiB 和默认的内存限制 512 MiB。
-
-下面是具有一个容器的 Pod 的配置文件。
-容器未指定内存请求和限制。
-
-{{< codenew file="admin/resource/memory-defaults-pod.yaml" >}}
-
-<!--
-Create the Pod.
--->
-创建 Pod
-
-```shell
-kubectl apply -f https://k8s.io/examples/admin/resource/memory-defaults-pod.yaml --namespace=default-mem-example
-```
-
-<!--
-View detailed information about the Pod:
--->
-查看 Pod 的详情：
-
-```shell
-kubectl get pod default-mem-demo --output=yaml --namespace=default-mem-example
-```
-
-<!--
-The output shows that the Pod's Container has a memory request of 256 MiB and
-a memory limit of 512 MiB. These are the default values specified by the LimitRange.
--->
-输出内容显示该 Pod 的容器有 256 MiB 的内存请求和 512 MiB 的内存限制。
-这些都是 LimitRange 设置的默认值。
-
-```shell
-containers:
-- image: nginx
-  imagePullPolicy: Always
-  name: default-mem-demo-ctr
-  resources:
-    limits:
-      memory: 512Mi
-    requests:
-      memory: 256Mi
-```
-
-<!--
-Delete your Pod:
--->
-删除你的 Pod：
-
-```shell
-kubectl delete pod default-mem-demo --namespace=default-mem-example
-```
-
-<!--
-## What if you specify a Container's limit, but not its request?
-
-Here's the configuration file for a Pod that has one Container. The Container
-specifies a memory limit, but not a request:
--->
-## 声明容器的限制而不声明它的请求会怎么样？
-
-这里给出了包含一个容器的 Pod 的配置文件。该容器声明了内存限制，而没有声明内存请求：
-
-{{< codenew file="admin/resource/memory-defaults-pod-2.yaml" >}}
-
-<!--
-Create the Pod:
--->
-创建 Pod：
-
-```shell
-kubectl apply -f https://k8s.io/examples/admin/resource/memory-defaults-pod-2.yaml --namespace=default-mem-example
-```
-
-<!--
-View detailed information about the Pod:
--->
-查看 Pod 的详情：
-
-```shell
-kubectl get pod default-mem-demo-2 --output=yaml --namespace=default-mem-example
-```
-
-<!--
-The output shows that the Container's memory request is set to match its memory limit.
-Notice that the Container was not assigned the default memory request value of 256Mi.
--->
-输出结果显示容器的内存请求被设置为它的内存限制相同的值。注意该容器没有被指定默认的内存请求值 256MiB。
-
-```
-resources:
-  limits:
-    memory: 1Gi
-  requests:
-    memory: 1Gi
-```
-
-<!--
-## What if you specify a Container's request, but not its limit?
--->
-## 声明容器的内存请求而不声明内存限制会怎么样？
-
-<!--
-Here's the configuration file for a Pod that has one Container. The Container
-specifies a memory request, but not a limit:
--->
-这里给出了一个包含一个容器的 Pod 的配置文件。该容器声明了内存请求，但没有内存限制：
-
-{{< codenew file="admin/resource/memory-defaults-pod-3.yaml" >}}
-
-<!--
-Create the Pod:
--->
-创建 Pod：
-
-```shell
-kubectl apply -f https://k8s.io/examples/admin/resource/memory-defaults-pod-3.yaml --namespace=default-mem-example
-```
-
-<!--
-View the Pod's specification:
--->
-查看 Pod 声明：
-
-```shell
-kubectl get pod default-mem-demo-3 --output=yaml --namespace=default-mem-example
-```
-
-<!--
-The output shows that the Container's memory request is set to the value specified in the
-Container's configuration file. The Container's memory limit is set to 512Mi, which is the
-default memory limit for the namespace.
--->
-输出结果显示该容器的内存请求被设置为了容器配置文件中声明的数值。
-容器的内存限制被设置为 512MiB，即命名空间的默认内存限制。
-
-```
-resources:
-  limits:
-    memory: 512Mi
-  requests:
-    memory: 128Mi
-```
-
-<!--
-## Motivation for default memory limits and requests
-
-If your namespace has a resource quota,
-it is helpful to have a default value in place for memory limit.
-Here are two of the restrictions that a resource quota imposes on a namespace:
--->
-## 设置默认内存限制和请求的动机
-
-如果你的命名空间有资源配额，那么默认内存限制是很有帮助的。
-下面是一个例子，通过资源配额为命名空间设置两项约束：
-
-<!--
-* Every Container that runs in the namespace must have its own memory limit.
-* The total amount of memory used by all Containers in the namespace must not exceed a specified limit.
--->
-* 运行在命名空间中的每个容器必须有自己的内存限制。
-* 命名空间中所有容器的内存使用量之和不能超过声明的限制值。
-
-<!--
-If a Container does not specify its own memory limit, it is given the default limit, and then
-it can be allowed to run in a namespace that is restricted by a quota.
--->
-如果一个容器没有声明自己的内存限制，会被指定默认限制，然后它才会被允许在限定了配额的命名空间中运行。
-
-<!--
-## Clean up
-
-Delete your namespace:
--->
-## 清理
-
-删除你的命名空间：
-
-```shell
-kubectl delete namespace default-mem-example
-```
-
-## {{% heading "whatsnext" %}}
-
-<!--
-### For cluster administrators
-
-* [Configure Default CPU Requests and Limits for a Namespace](/docs/tasks/administer-cluster/cpu-default-namespace/)
-
-* [Configure Minimum and Maximum Memory Constraints for a Namespace](/docs/tasks/administer-cluster/memory-constraint-namespace/)
-
-* [Configure Minimum and Maximum CPU Constraints for a Namespace](/docs/tasks/administer-cluster/cpu-constraint-namespace/)
-
-* [Configure Memory and CPU Quotas for a Namespace](/docs/tasks/administer-cluster/quota-memory-cpu-namespace/)
-
-* [Configure a Pod Quota for a Namespace](/docs/tasks/administer-cluster/quota-pod-namespace/)
-
-* [Configure Quotas for API Objects](/docs/tasks/administer-cluster/quota-api-object/)
--->
-### 集群管理员参考
-
-* [为命名空间配置默认的 CPU 请求和限制](/zh/docs/tasks/administer-cluster/manage-resources/cpu-default-namespace/)
-* [为命名空间配置最小和最大内存限制](/zh/docs/tasks/administer-cluster/manage-resources/memory-constraint-namespace/)
-* [为命名空间配置最小和最大 CPU 限制](/zh/docs/tasks/administer-cluster/manage-resources/cpu-constraint-namespace/)
-* [为命名空间配置内存和 CPU 配额](/zh/docs/tasks/administer-cluster/manage-resources/quota-memory-cpu-namespace/)
-* [为命名空间配置 Pod 配额](/zh/docs/tasks/administer-cluster/manage-resources/quota-pod-namespace/)
-* [为 API 对象配置配额](/zh/docs/tasks/administer-cluster/quota-api-object/)
-
-<!--
-### For app developers
-
-* [Assign Memory Resources to Containers and Pods](/docs/tasks/configure-pod-container/assign-memory-resource/)
-
-* [Assign CPU Resources to Containers and Pods](/docs/tasks/configure-pod-container/assign-cpu-resource/)
-
-* [Configure Quality of Service for Pods](/docs/tasks/configure-pod-container/quality-service-pod/)
--->
-### 应用开发者参考
-
-* [为容器和 Pod 分配内存资源](/zh/docs/tasks/configure-pod-container/assign-memory-resource/)
-* [为容器和 Pod 分配 CPU 资源](/zh/docs/tasks/configure-pod-container/assign-cpu-resource/)
-* [为 Pod 配置服务质量](/zh/docs/tasks/configure-pod-container/quality-service-pod/)
-
diff --git a/content/zh/docs/tasks/administer-cluster/migrating-from-dockershim/_index.md b/content/zh/docs/tasks/administer-cluster/migrating-from-dockershim/_index.md
deleted file mode 100644
index 1f3e2b823a..0000000000
--- a/content/zh/docs/tasks/administer-cluster/migrating-from-dockershim/_index.md
+++ /dev/null
@@ -1,42 +0,0 @@
----
-title: "从 dockershim 迁移"
-weight: 10
-content_type: task 
----
-<!-- 
-title: "Migrating from dockershim"
-weight: 10
-content_type: task 
--->
-
-<!-- overview -->
-
-<!-- 
-This section presents information you need to know when migrating from
-dockershim to other container runtimes.
--->
-本节提供从 dockershim 迁移到其他容器运行时的必备知识。
-
-<!-- 
-Since the announcement of [dockershim deprecation](/blog/2020/12/08/kubernetes-1-20-release-announcement/#dockershim-deprecation)
-in Kubernetes 1.20, there were questions on how this will affect various workloads and Kubernetes
-installations. You can find this blog post useful to understand the problem better: [Dockershim Deprecation FAQ](/blog/2020/12/02/dockershim-faq/)
--->
-自从 Kubernetes 1.20 宣布
-[弃用 dockershim](/zh/blog/2020/12/08/kubernetes-1-20-release-announcement/#dockershim-deprecation)，
-各类疑问随之而来：这对各类工作负载和 Kubernetes 部署会产生什么影响。
-你会发现这篇博文对于更好地理解此问题非常有用：
-[弃用 Dockershim 常见问题](/zh/blog/2020/12/02/dockershim-faq/)
-
-<!-- It is recommended to migrate from dockershim to alternative container runtimes.
-Check out [container runtimes](/docs/setup/production-environment/container-runtimes/)
-section to know your options. Make sure to
-[report issues](https://github.com/kubernetes/kubernetes/issues) you encountered
-with the migration. So the issue can be fixed in a timely manner and your cluster would be
-ready for dockershim removal.
--->
-建议从 dockershim 迁移到其他替代的容器运行时。
-请参阅[容器运行时](/zh/docs/setup/production-environment/container-runtimes/)
-一节以了解可用的备选项。
-当在迁移过程中遇到麻烦，请[上报问题](https://github.com/kubernetes/kubernetes/issues)。
-那么问题就可以及时修复，你的集群也可以进入移除 dockershim 前的就绪状态。
diff --git a/content/zh/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents.md b/content/zh/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents.md
deleted file mode 100644
index b22c7d4b67..0000000000
--- a/content/zh/docs/tasks/administer-cluster/migrating-from-dockershim/migrating-telemetry-and-security-agents.md
+++ /dev/null
@@ -1,157 +0,0 @@
----
-title: 从 dockershim 迁移遥测和安全代理
-content_type: task 
-weight: 70
----
-<!-- 
-title: Migrating telemetry and security agents from dockershim
-content_type: task 
-reviewers:
-- SergeyKanzhelev
-weight: 70
--->
-
-<!-- overview -->
-
-<!-- 
-With Kubernetes 1.20 dockershim was deprecated. From the
-[Dockershim Deprecation FAQ](/blog/2020/12/02/dockershim-faq/)
-you might already know that most apps do not have a direct dependency on runtime hosting
-containers. However, there are still a lot of telemetry and security agents
-that has a dependency on docker to collect containers metadata, logs and
-metrics. This document aggregates information on how to detect tese
-dependencies and links on how to migrate these agents to use generic tools or
-alternative runtimes.
--->
-在 Kubernetes 1.20 版本中，dockershim 被弃用。
-在博文[弃用 Dockershim 常见问题](/zh/blog/2020/12/02/dockershim-faq/)中，
-你大概已经了解到，大多数应用并没有直接通过运行时来托管容器。
-但是，仍然有大量的遥测和安全代理依赖 docker 来收集容器元数据、日志和指标。
-本文汇总了一些信息和链接：信息用于阐述如何探查这些依赖，链接用于解释如何迁移这些代理去使用通用的工具或其他容器运行。
-
-<!-- 
-## Telemetry and security agents 
--->
-## 遥测和安全代理 {#telemetry-and-security-agents}
-
-<!-- 
-There are a few ways agents may run on Kubernetes cluster. Agents may run on
-nodes directly or as DaemonSets.
--->
-为了让代理运行在 Kubernetes 集群中，我们有几种办法。
-代理既可以直接在节点上运行，也可以作为守护进程运行。
-
-<!-- 
-### Why do telemetry agents rely on Docker?
--->
-### 为什么遥测代理依赖于 Docker？ {#why-do-telemetry-agents-relyon-docker}
-
-<!-- 
-Historically, Kubernetes was built on top of Docker. Kubernetes is managing
-networking and scheduling, Docker was placing and operating containers on a
-node. So you can get scheduling-related metadata like a pod name from Kubernetes
-and containers state information from Docker. Over time more runtimes were
-created to manage containers. Also there are projects and Kubernetes features
-that generalize container status information extraction across many runtimes.
--->
-因为历史原因，Kubernetes 建立在 Docker 之上。
-Kubernetes 管理网络和调度，Docker 则在具体的节点上定位并操作容器。
-所以，你可以从 Kubernetes 取得调度相关的元数据，比如 Pod 名称；从 Docker 取得容器状态信息。
-后来，人们开发了更多的运行时来管理容器。
-同时一些项目和 Kubernetes 特性也不断涌现，支持跨多个运行时收集容器状态信息。
-
-<!-- 
-Some agents are tied specifically to the Docker tool. The agents may run
-commands like [`docker ps`](https://docs.docker.com/engine/reference/commandline/ps/)
-or [`docker top`](https://docs.docker.com/engine/reference/commandline/top/) to list
-containers and processes or [docker logs](https://docs.docker.com/engine/reference/commandline/logs/)
-to subscribe on docker logs. With the deprecating of Docker as a container runtime,
-these commands will not work any longer.
--->
-一些代理和 Docker 工具紧密绑定。此类代理可以这样运行命令，比如用
-[`docker ps`](https://docs.docker.com/engine/reference/commandline/ps/)
-或 [`docker top`](https://docs.docker.com/engine/reference/commandline/top/)
-这类命令来列出容器和进程，用
-[docker logs](https://docs.docker.com/engine/reference/commandline/logs/)
-订阅 Docker 的日志。
-但随着 Docker 作为容器运行时被弃用，这些命令将不再工作。
-
-<!-- 
-### Identify DaemonSets that depend on Docker {#identify-docker-dependency }
--->
-### 识别依赖于 Docker 的 DaemonSet {#identify-docker-dependency}
-
-<!-- 
-If a pod wants to make calls to the `dockerd` running on the node, the pod must either:
-
-- mount the filesystem containing the Docker daemon's privileged socket, as a
-  {{< glossary_tooltip text="volume" term_id="volume" >}}; or
-- mount the specific path of the Docker daemon's privileged socket directly, also as a volume.
--->
-如果某 Pod 想调用运行在节点上的 `dockerd`，该 Pod 必须满足以下两个条件之一：
-
-- 将包含 Docker 守护进程特权套接字的文件系统挂载为一个{{< glossary_tooltip text="卷" term_id="volume" >}}；或
-- 直接以卷的形式挂载 Docker 守护进程特权套接字的特定路径。
-
-<!-- 
-For example: on COS images, Docker exposes its Unix domain socket at
-`/var/run/docker.sock` This means that the pod spec will include a
-`hostPath` volume mount of `/var/run/docker.sock`.
--->
-举例来说：在 COS 镜像中，Docker 通过 `/var/run/docker.sock` 开放其 Unix 域套接字。
-这意味着 Pod 的规约中需要包含 `hostPath` 卷以挂载 `/var/run/docker.sock`。
-
-<!-- 
-Here's a sample shell script to find Pods that have a mount directly mapping the
-Docker socket. This script outputs the namespace and name of the pod. You can
-remove the grep `/var/run/docker.sock` to review other mounts.
--->
-下面是一个 shell 示例脚本，用于查找包含直接映射 Docker 套接字的挂载点的 Pod。
-你也可以删掉 grep `/var/run/docker.sock` 这一代码片段以查看其它挂载信息。
-
-```bash
-kubectl get pods --all-namespaces \
--o=jsonpath='{range .items[*]}{"\n"}{.metadata.namespace}{":\t"}{.metadata.name}{":\t"}{range .spec.volumes[*]}{.hostPath.path}{", "}{end}{end}' \
-| sort \
-| grep '/var/run/docker.sock'
-```
-
-<!-- 
-There are alternative ways for a pod to access Docker on the host. For instance, the parent
-directory `/var/run` may be mounted instead of the full path (like in [this
-example](https://gist.github.com/itaysk/7bc3e56d69c4d72a549286d98fd557dd)).
-The script above only detects the most common uses.
--->
-{{< note >}}
-对于 Pod 来说，访问宿主机上的 Docker 还有其他方式。
-例如，可以挂载 `/var/run` 的父目录而非其完整路径
-（就像[这个例子](https://gist.github.com/itaysk/7bc3e56d69c4d72a549286d98fd557dd)）。
-上述脚本只检测最常见的使用方式。
-{{< /note >}}
-
-<!-- 
-### Detecting Docker dependency from node agents
--->
-### 检测节点代理对 Docker 的依赖性 {#detecting-docker-dependency-from-node-agents}
-
-<!-- 
-In case your cluster nodes are customized and install additional security and
-telemetry agents on the node, make sure to check with the vendor of the agent whether it has dependency on Docker.
--->
-在你的集群节点被定制、且在各个节点上均安装了额外的安全和遥测代理的场景下，
-一定要和代理的供应商确认：该代理是否依赖于 Docker。
-
-<!-- 
-### Telemetry and security agent vendors
--->
-### 遥测和安全代理的供应商 {#telemetry-and-security-agent-vendors}
-
-<!-- 
-We keep the work in progress version of migration instructions for various telemetry and security agent vendors
-in [Google doc](https://docs.google.com/document/d/1ZFi4uKit63ga5sxEiZblfb-c23lFhvy6RXVPikS8wf0/edit#).
-Please contact the vendor to get up to date instructions for migrating from dockershim.
--->
-我们通过
-[谷歌文档](https://docs.google.com/document/d/1ZFi4uKit63ga5sxEiZblfb-c23lFhvy6RXVPikS8wf0/edit#)
-提供了为各类遥测和安全代理供应商准备的持续更新的迁移指导。
-请与供应商联系，获取从 dockershim 迁移的最新说明。
diff --git a/content/zh/docs/tasks/administer-cluster/network-policy-provider/_index.md b/content/zh/docs/tasks/administer-cluster/network-policy-provider/_index.md
deleted file mode 100644
index 09e8282a3d..0000000000
--- a/content/zh/docs/tasks/administer-cluster/network-policy-provider/_index.md
+++ /dev/null
@@ -1,4 +0,0 @@
----
-title: 安装网络规则驱动
-weight: 30
----
diff --git a/content/zh/docs/tasks/administer-cluster/nodelocaldns.md b/content/zh/docs/tasks/administer-cluster/nodelocaldns.md
deleted file mode 100644
index 46d92d0c8f..0000000000
--- a/content/zh/docs/tasks/administer-cluster/nodelocaldns.md
+++ /dev/null
@@ -1,210 +0,0 @@
----
-reviewers:
-- bowei
-- zihongz
-title: 在 Kubernetes 集群中使用 NodeLocal DNSCache
-content_type: task
----
-<!--
----
-reviewers:
-- bowei
-- zihongz
-title: Using NodeLocal DNSCache in Kubernetes clusters
-content_type: task
----
--->
-
-<!-- overview -->
-{{< feature-state for_k8s_version="v1.18" state="stable" >}}
-<!--
-This page provides an overview of NodeLocal DNSCache feature in Kubernetes.
--->
-本页概述了 Kubernetes 中的 NodeLocal DNSCache 功能。
-
-
-
-## {{% heading "prerequisites" %}}
-
-
- {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-
- <!-- steps -->
-
-<!--
-## Introduction
--->
-## 引言
-
-<!--
-NodeLocal DNSCache improves Cluster DNS performance by running a dns caching agent on cluster nodes as a DaemonSet. In today's architecture, Pods in ClusterFirst DNS mode reach out to a kube-dns serviceIP for DNS queries. This is translated to a kube-dns/CoreDNS endpoint via iptables rules added by kube-proxy. With this new architecture, Pods will reach out to the dns caching agent running on the same node, thereby avoiding iptables DNAT rules and connection tracking. The local caching agent will query kube-dns service for cache misses of cluster hostnames(cluster.local suffix by default).
--->
-NodeLocal DNSCache 通过在集群节点上作为 DaemonSet 运行 dns 缓存代理来提高集群 DNS 性能。
-在当今的体系结构中，处于 ClusterFirst DNS 模式的 Pod 可以连接到 kube-dns serviceIP 进行 DNS 查询。
-通过 kube-proxy 添加的 iptables 规则将其转换为 kube-dns/CoreDNS 端点。
-借助这种新架构，Pods 将可以访问在同一节点上运行的 dns 缓存代理，从而避免了 iptables DNAT 规则和连接跟踪。
-本地缓存代理将查询 kube-dns 服务以获取集群主机名的缓存缺失（默认为 cluster.local 后缀）。
-
-<!--
-## Motivation
--->
-## 动机
-
-<!--
-* With the current DNS architecture, it is possible that Pods with the highest DNS QPS have to reach out to a different node, if there is no local kube-dns/CoreDNS instance.
-Having a local cache will help improve the latency in such scenarios.
--->
-* 使用当前的 DNS 体系结构，如果没有本地 kube-dns/CoreDNS 实例，则具有最高 DNS QPS 的 Pod 可能必须延伸到另一个节点。
-在这种脚本下，拥有本地缓存将有助于改善延迟。
-
-<!--
-* Skipping iptables DNAT and connection tracking will help reduce [conntrack races](https://github.com/kubernetes/kubernetes/issues/56903) and avoid UDP DNS entries filling up conntrack table.
--->
-* 跳过 iptables DNAT 和连接跟踪将有助于减少 [conntrack 竞争](https://github.com/kubernetes/kubernetes/issues/56903)并避免 UDP DNS 条目填满 conntrack 表。
-
-<!--
-* Connections from local caching agent to kube-dns servie can be upgraded to TCP. TCP conntrack entries will be removed on connection close in contrast with UDP entries that have to timeout ([default](https://www.kernel.org/doc/Documentation/networking/nf_conntrack-sysctl.txt) `nf_conntrack_udp_timeout` is 30 seconds)
--->
-* 从本地缓存代理到 kube-dns 服务的连接可以升级到 TCP 。
-TCP conntrack 条目将在连接关闭时被删除，相反 UDP 条目必须超时([默认](https://www.kernel.org/doc/Documentation/networking/nf_conntrack-sysctl.txt) `nf_conntrack_udp_timeout` 是 30 秒)
-
-<!--
-* Upgrading DNS queries from UDP to TCP would reduce tail latency attributed to dropped UDP packets and DNS timeouts usually up to 30s (3 retries + 10s timeout). Since the nodelocal cache listens for UDP DNS queries, applications don't need to be changed.
--->
-* 将 DNS 查询从 UDP 升级到 TCP 将减少归因于丢弃的 UDP 数据包和 DNS 超时的尾部等待时间，通常长达 30 秒（3 次重试+ 10 秒超时）。
-
-<!--
-* Metrics & visibility into dns requests at a node level.
--->
-* 在节点级别对 dns 请求的度量和可见性。
-
-<!--
-* Negative caching can be re-enabled, thereby reducing number of queries to kube-dns service.
--->
-* 可以重新启用负缓存，从而减少对 kube-dns 服务的查询数量。
-
-<!--
-## Architecture Diagram
--->
-## 架构图
-
-<!--
-This is the path followed by DNS Queries after NodeLocal DNSCache is enabled:
--->
-启用 NodeLocal DNSCache 之后，这是 DNS 查询所遵循的路径：
-
-
-<!--
-{{< figure src="/images/docs/nodelocaldns.svg" alt="NodeLocal DNSCache flow" title="Nodelocal DNSCache flow" caption="This image shows how NodeLocal DNSCache handles DNS queries." >}}
--->
-{{< figure src="/images/docs/nodelocaldns.svg" alt="NodeLocal DNSCache 流" title="Nodelocal DNSCache 流" caption="此图显示了 NodeLocal DNSCache 如何处理 DNS 查询。" >}}
-
-<!--
-## Configuration
--->
-## 配置
-<!--
-{{< note >}} The local listen IP address for NodeLocal DNSCache can be any address that can be guaranteed to not collide with any existing IP in your cluster. It's recommended to use an address with a local scope, per example, from the link-local range 169.254.0.0/16 for IPv4 or from the Unique Local Address range in IPv6 fd00::/8.
-{{< /note >}}
--->
-{{< note >}} 
-NodeLocal DNSCache 的本地侦听 IP 地址可以是任何地址，只要该地址不和你的集群里现有的 IP 地址发生冲突。
-推荐使用本地范围内的地址，例如，IPv4 链路本地区段 169.254.0.0/16 内的地址，
-或者 IPv6 唯一本地地址区段 fd00::/8 内的地址。
-{{< /note >}}
-
-<!--
-This feature can be enabled using the following steps:
--->
-可以使用以下步骤启动此功能：
-
-<!--
-* Prepare a manifest similar to the sample [`nodelocaldns.yaml`](https://github.com/kubernetes/kubernetes/blob/master/cluster/addons/dns/nodelocaldns/nodelocaldns.yaml) and save it as `nodelocaldns.yaml.`
--->
-* 根据示例 [`nodelocaldns.yaml`](https://github.com/kubernetes/kubernetes/blob/master/cluster/addons/dns/nodelocaldns/nodelocaldns.yaml) 
-  准备一个清单，把它保存为 `nodelocaldns.yaml`。
-<!--
-* If using IPv6, the CoreDNS configuration file need to enclose all the IPv6 addresses into square brackets if used in IP:Port format. 
-If you are using the sample manifest from the previous point, this will require to modify [the configuration line L70](https://github.com/kubernetes/kubernetes/blob/b2ecd1b3a3192fbbe2b9e348e095326f51dc43dd/cluster/addons/dns/nodelocaldns/nodelocaldns.yaml#L70) like this `health [__PILLAR__LOCAL__DNS__]:8080`
--->
-* 如果使用 IPv6，在使用 IP:Port 格式的时候需要把 CoreDNS 配置文件里的所有 IPv6 地址用方括号包起来。
-  如果你使用上述的示例清单，需要把 [配置行 L70](https://github.com/kubernetes/kubernetes/blob/b2ecd1b3a3192fbbe2b9e348e095326f51dc43dd/cluster/addons/dns/nodelocaldns/nodelocaldns.yaml#L70) 
-  修改为 `health [__PILLAR__LOCAL__DNS__]:8080`。
-<!--
-* Substitute the variables in the manifest with the right values:
-
-     * kubedns=`kubectl get svc kube-dns -n kube-system -o jsonpath={.spec.clusterIP}`
-
-     * domain=`<cluster-domain>`
-
-     * localdns=`<node-local-address>`
-
-     `<cluster-domain>` is "cluster.local" by default. `<node-local-address>` is the local listen IP address chosen for NodeLocal DNSCache.
--->
-* 把清单里的变量更改为正确的值：
-     * kubedns=`kubectl get svc kube-dns -n kube-system -o jsonpath={.spec.clusterIP}`
-
-     * domain=`<cluster-domain>`
-
-     * localdns=`<node-local-address>`
-
-     `<cluster-domain>` 的默认值是 "cluster.local"。 `<node-local-address>` 是 NodeLocal DNSCache 选择的本地侦听 IP 地址。
-
-<!--
-   * If kube-proxy is running in IPTABLES mode:
-
-     ``` bash
-     sed -i "s/__PILLAR__LOCAL__DNS__/$localdns/g; s/__PILLAR__DNS__DOMAIN__/$domain/g; s/__PILLAR__DNS__SERVER__/$kubedns/g" nodelocaldns.yaml
-     ```
-
-     `__PILLAR__CLUSTER__DNS__` and `__PILLAR__UPSTREAM__SERVERS__` will be populated by the node-local-dns pods.
-     In this mode, node-local-dns pods listen on both the kube-dns service IP as well as `<node-local-address>`, so pods can lookup DNS records using either IP address.
--->   
-   * 如果 kube-proxy 运行在 IPTABLES 模式：
-
-     ``` bash
-     sed -i "s/__PILLAR__LOCAL__DNS__/$localdns/g; s/__PILLAR__DNS__DOMAIN__/$domain/g; s/__PILLAR__DNS__SERVER__/$kubedns/g" nodelocaldns.yaml
-     ```
-
-     node-local-dns Pods 会设置 `__PILLAR__CLUSTER__DNS__` 和 `__PILLAR__UPSTREAM__SERVERS__`。
-     在此模式下, node-local-dns Pods 会同时侦听 kube-dns 服务的 IP 地址和 `<node-local-address>` 的地址，
-     以便 Pods 可以使用其中任何一个 IP 地址来查询 DNS 记录。
-<!--
-  * If kube-proxy is running in IPVS mode:
-
-    ``` bash
-     sed -i "s/__PILLAR__LOCAL__DNS__/$localdns/g; s/__PILLAR__DNS__DOMAIN__/$domain/g; s/,__PILLAR__DNS__SERVER__//g; s/__PILLAR__CLUSTER__DNS__/$kubedns/g" nodelocaldns.yaml
-    ```
-     In this mode, node-local-dns pods listen only on `<node-local-address>`. The node-local-dns interface cannot bind the kube-dns cluster IP since the interface used for IPVS loadbalancing already uses this address.
-     `__PILLAR__UPSTREAM__SERVERS__` will be populated by the node-local-dns pods.
--->
-   * 如果 kube-proxy 运行在 IPVS 模式：
-
-     ``` bash
-     sed -i "s/__PILLAR__LOCAL__DNS__/$localdns/g; s/__PILLAR__DNS__DOMAIN__/$domain/g; s/__PILLAR__DNS__SERVER__//g; s/__PILLAR__CLUSTER__DNS__/$kubedns/g" nodelocaldns.yaml
-     ```
-
-     在此模式下，node-local-dns Pods 只会侦听 `<node-local-address>` 的地址。
-     node-local-dns 接口不能绑定 kube-dns 的集群 IP 地址，因为 IPVS 负载均衡
-     使用的接口已经占用了该地址。
-     node-local-dns Pods 会设置 `__PILLAR__UPSTREAM__SERVERS__`。
-     
-<!--
-* Run `kubectl create -f nodelocaldns.yaml`
-* If using kube-proxy in IPVS mode, `--cluster-dns` flag to kubelet needs to be modified to use `<node-local-address>` that NodeLocal DNSCache is listening on.
-  Otherwise, there is no need to modify the value of the `--cluster-dns` flag, since NodeLocal DNSCache listens on both the kube-dns service IP as well as `<node-local-address>`.
--->
-* 运行 `kubectl create -f nodelocaldns.yaml`
-* 如果 kube-proxy 运行在 IPVS 模式，需要修改 kubelet 的 `--cluster-dns` 参数为 NodeLocal DNSCache 正在侦听的 `<node-local-address>` 地址。
-  否则，不需要修改 `--cluster-dns` 参数，因为 NodeLocal DNSCache 会同时侦听 kube-dns 服务的 IP 地址和 `<node-local-address>` 的地址。
-
-<!--
-Once enabled, node-local-dns Pods will run in the kube-system namespace on each of the cluster nodes. This Pod runs [CoreDNS](https://github.com/coredns/coredns) in cache mode, so all CoreDNS metrics exposed by the different plugins will be available on a per-node basis.
-
-You can disable this feature by removing the DaemonSet, using `kubectl delete -f <manifest>` . You should also revert any changes you made to the kubelet configuration.
--->
-启用后，node-local-dns Pods 将在每个集群节点上的 kube-system 名字空间中运行。
-此 Pod 在缓存模式下运行 [CoreDNS](https://github.com/coredns/coredns) ，因此每个节点都可以使用不同插件公开的所有 CoreDNS 指标。
-
-如果要禁用该功能，你可以使用 `kubectl delete -f <manifest>` 来删除 DaemonSet。你还应该恢复你对 kubelet 配置所做的所有改动。
diff --git a/content/zh/docs/tasks/administer-cluster/out-of-resource.md b/content/zh/docs/tasks/administer-cluster/out-of-resource.md
deleted file mode 100644
index dd6d5afad3..0000000000
--- a/content/zh/docs/tasks/administer-cluster/out-of-resource.md
+++ /dev/null
@@ -1,709 +0,0 @@
----
-title: 配置资源不足时的处理方式
-content_type: concept
----
-<!--
-reviewers:
-- derekwaynecarr
-- vishh
-- timstclair
-title: Configure Out Of Resource Handling
-content_type: concept
--->
-
-<!-- overview -->
-
-<!--
-This page explains how to configure out of resource handling with `kubelet`.
-
-The `kubelet` needs to preserve node stability when available compute resources
-are low. This is especially important when dealing with incompressible
-compute resources, such as memory or disk space. If such resources are exhausted,
-nodes become unstable.
--->
-本页介绍如何使用 `kubelet` 配置资源不足时的处理方式。
-
-当可用计算资源较少时，`kubelet`需要保证节点稳定性。
-这在处理如内存和硬盘之类的不可压缩资源时尤为重要。
-如果任意一种资源耗尽，节点将会变得不稳定。
-
-<!-- body -->
-
-
-<!--
-### Eviction Signals
-
-The `kubelet` supports eviction decisions based on the signals described in the following
-table. The value of each signal is described in the Description column, which is based on
-the `kubelet` summary API.
--->
-### 驱逐信号
-
-`kubelet` 支持按照以下表格中描述的信号触发驱逐决定。
-每个信号的值在 description 列描述，基于 `kubelet` 摘要 API。
-
-<!--
-| Eviction Signal            | Description                                                         |
-|----------------------------|---------------------------------------------------------------------|
-| `memory.available` | `memory.available` := `node.status.capacity[memory]` - `node.stats.memory.workingSet` |
-| `nodefs.available` | `nodefs.available` := `node.stats.fs.available` |
-| `nodefs.inodesFree` | `nodefs.inodesFree` := `node.stats.fs.inodesFree` |
-| `imagefs.available` | `imagefs.available` := `node.stats.runtime.imagefs.available` |
-| `imagefs.inodesFree` | `imagefs.inodesFree` := `node.stats.runtime.imagefs.inodesFree` |
-| `pid.available`      | `pid.available` := `node.stats.rlimit.maxpid` - `node.stats.rlimit.curproc`           |
--->
-| 驱逐信号                   | 描述                                                                |
-|----------------------------|---------------------------------------------------------------------|
-| `memory.available` | `memory.available` := `node.status.capacity[memory]` - `node.stats.memory.workingSet` |
-| `nodefs.available` | `nodefs.available` := `node.stats.fs.available` |
-| `nodefs.inodesFree` | `nodefs.inodesFree` := `node.stats.fs.inodesFree` |
-| `imagefs.available` | `imagefs.available` := `node.stats.runtime.imagefs.available` |
-| `imagefs.inodesFree` | `imagefs.inodesFree` := `node.stats.runtime.imagefs.inodesFree` |
-| `pid.available`      | `pid.available` := `node.stats.rlimit.maxpid` - `node.stats.rlimit.curproc`           |
-<!--
-Each of the above signals supports either a literal or percentage based value.
-The percentage based value is calculated relative to the total capacity
-associated with each signal.
--->
-上面的每个信号都支持字面值或百分比的值。基于百分比的值的计算与每个信号对应的总容量相关。
-
-<!--
-The value for `memory.available` is derived from the cgroupfs instead of tools
-like `free -m`. This is important because `free -m` does not work in a
-container, and if users use the [node
-allocatable](/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable) feature, out of resource decisions
-are made local to the end user Pod part of the cgroup hierarchy as well as the
-root node. This
-[script](/examples/admin/resource/memory-available.sh)
-reproduces the same set of steps that the `kubelet` performs to calculate
-`memory.available`. The `kubelet` excludes inactive_file (i.e. # of bytes of
-file-backed memory on inactive LRU list) from its calculation as it assumes that
-memory is reclaimable under pressure.
--->
-`memory.available` 的值从 cgroupfs 获取，而不是通过类似 `free -m` 的工具。
-这很重要，因为 `free -m` 不能在容器中工作，并且如果用户使用了
-[节点可分配资源](/zh/docs/tasks/administer-cluster/reserve-compute-resources/#node-allocatable)
-特性，资源不足的判定将同时在本地 cgroup 层次结构的终端用户 Pod 部分和根节点做出。
-这个[脚本](/zh/examples/admin/resource/memory-available.sh)
-复现了与 `kubelet` 计算 `memory.available` 相同的步骤。
-`kubelet` 将 `inactive_file`（意即活动 LRU 列表上基于文件后端的内存字节数）从计算中排除，
-因为它假设内存在出现压力时将被回收。
-
-
-<!--
-`kubelet` supports only two filesystem partitions.
-
-1. The `nodefs` filesystem that kubelet uses for volumes, daemon logs, etc.
-2. The `imagefs` filesystem that container runtimes uses for storing images and
-   container writable layers.
--->
-`kubelet` 只支持两种文件系统分区。
-
-1. `nodefs` 文件系统，kubelet 将其用于卷和守护程序日志等。
-2. `imagefs` 文件系统，容器运行时用于保存镜像和容器可写层。
-
-<!--
-`imagefs` is optional. `kubelet` auto-discovers these filesystems using
-cAdvisor. `kubelet` does not care about any other filesystems. Any other types
-of configurations are not currently supported by the kubelet. For example, it is
-*not OK* to store volumes and logs in a dedicated `filesystem`.
-
-In future releases, the `kubelet` will deprecate the existing [garbage
-collection](/docs/concepts/cluster-administration/kubelet-garbage-collection/)
-support in favor of eviction in response to disk pressure.
--->
-`imagefs` 可选。`kubelet` 使用 cAdvisor 自动发现这些文件系统。
-`kubelet` 不关心其它文件系统。当前不支持配置任何其它类型。
-例如，在专用 `filesytem` 中存储卷和日志是 _不可以_ 的。
-
-在将来的发布中，`kubelet`将废除当前存在的
-[垃圾回收](/zh/docs/concepts/cluster-administration/kubelet-garbage-collection/)
-机制，这种机制目前支持将驱逐操作作为对磁盘压力的响应。
-
-<!--
-### Eviction Thresholds
-
-The `kubelet` supports the ability to specify eviction thresholds that trigger the `kubelet` to reclaim resources.
-
-Each threshold has the following form:
-
-`[eviction-signal][operator][quantity]`
-
-where:
-
-* `eviction-signal` is an eviction signal token as defined in the previous table.
-* `operator` is the desired relational operator, such as `<` (less than).
-* `quantity` is the eviction threshold quantity, such as `1Gi`. These tokens must
-match the quantity representation used by Kubernetes. An eviction threshold can also
-be expressed as a percentage using the `%` token.
-
-For example, if a node has `10Gi` of total memory and you want trigger eviction if
-the available memory falls below `1Gi`, you can define the eviction threshold as
-either `memory.available<10%` or `memory.available<1Gi`. You cannot use both.
--->
-### 驱逐阈值
-
-`kubelet`支持指定驱逐阈值，用于触发 `kubelet` 回收资源。
-
-每个阈值形式如下：
-
-`[eviction-signal][operator][quantity]`
-
-* 合法的 `eviction-signal` 标志如上所示。
-* `operator` 是所需的关系运算符，例如 `<`。
-* `quantity` 是驱逐阈值值标志，例如 `1Gi`。合法的标志必须匹配 Kubernetes 使用的数量表示。
-  驱逐阈值也可以使用 `%` 标记表示百分比。
-
-举例说明，如果一个节点有 `10Gi` 内存，希望在可用内存下降到 `1Gi` 以下时引起驱逐操作，
-则驱逐阈值可以使用下面任意一种方式指定（但不是两者同时）。
-
-* `memory.available<10%`
-* `memory.available<1Gi`
-
-<!--
-#### Soft Eviction Thresholds
-
-A soft eviction threshold pairs an eviction threshold with a required
-administrator-specified grace period. No action is taken by the `kubelet`
-to reclaim resources associated with the eviction signal until that grace
-period has been exceeded. If no grace period is provided, the `kubelet`
-returns an error on startup.
--->
-#### 软驱逐阈值
-
-软驱逐阈值使用一对由驱逐阈值和管理员必须指定的宽限期组成的配置对。在超过宽限期前，`kubelet`不会采取任何动作回收和驱逐信号关联的资源。如果没有提供宽限期，`kubelet`启动时将报错。
-
-<!--
-In addition, if a soft eviction threshold has been met, an operator can
-specify a maximum allowed Pod termination grace period to use when evicting
-pods from the node. If specified, the `kubelet` uses the lesser value among
-the `pod.Spec.TerminationGracePeriodSeconds` and the max allowed grace period.
-If not specified, the `kubelet` kills Pods immediately with no graceful
-termination.
--->
-此外，如果达到了软驱逐阈值，操作员可以指定从节点驱逐 pod 时，在宽限期内允许结束的 pod 的最大数量。
-如果指定了 `pod.Spec.TerminationGracePeriodSeconds` 值，
-`kubelet` 将使用它和宽限期二者中较小的一个。
-如果没有指定，`kubelet`将立即终止 pod，而不会优雅结束它们。
-
-<!--
-To configure soft eviction thresholds, the following flags are supported:
-
-* `eviction-soft` describes a set of eviction thresholds (e.g. `memory.available<1.5Gi`) that if met over a
-corresponding grace period would trigger a Pod eviction.
-* `eviction-soft-grace-period` describes a set of eviction grace periods (e.g. `memory.available=1m30s`) that
-correspond to how long a soft eviction threshold must hold before triggering a Pod eviction.
-* `eviction-max-pod-grace-period` describes the maximum allowed grace period (in seconds) to use when terminating
-pods in response to a soft eviction threshold being met.
--->
-软驱逐阈值的配置支持下列标记：
-
-* `eviction-soft` 描述了驱逐阈值的集合（例如 `memory.available<1.5Gi`），如果在宽限期之外满足条件将触发 pod 驱逐。
-* `eviction-soft-grace-period` 描述了驱逐宽限期的集合（例如 `memory.available=1m30s`），对应于在驱逐 pod 前软驱逐阈值应该被控制的时长。
-* `eviction-max-pod-grace-period` 描述了当满足软驱逐阈值并终止 pod 时允许的最大宽限期值（秒数）。
-
-<!--
-#### Hard Eviction Thresholds
-
-A hard eviction threshold has no grace period, and if observed, the `kubelet`
-will take immediate action to reclaim the associated starved resource. If a
-hard eviction threshold is met, the `kubelet` kills the Pod immediately
-with no graceful termination.
-
-To configure hard eviction thresholds, the following flag is supported:
-
-* `eviction-hard` describes a set of eviction thresholds (e.g. `memory.available<1Gi`) that if met
-would trigger a Pod eviction.
-
-The `kubelet` has the following default hard eviction threshold:
-
-* `memory.available<100Mi`
-* `nodefs.available<10%`
-* `imagefs.available<15%`
-
-On a Linux node, the default value also includes `nodefs.inodesFree<5%`.
-
--->
-#### 硬驱逐阈值
-
-硬驱逐阈值没有宽限期，一旦察觉，`kubelet` 将立即采取行动回收关联的短缺资源。
-如果满足硬驱逐阈值，`kubelet` 将立即结束 Pod 而不是体面地终止它们。
-
-硬驱逐阈值的配置支持下列标记：
-
-* `eviction-hard` 描述了驱逐阈值的集合（例如 `memory.available<1Gi`），如果满足条件将触发 Pod 驱逐。
-
-`kubelet` 有如下所示的默认硬驱逐阈值：
-
-* `memory.available<100Mi`
-* `nodefs.available<10%`
-* `imagefs.available<15%`
-
-在Linux节点上，默认值还包括 `nodefs.inodesFree<5％`。
-
-<!--
-### Eviction Monitoring Interval
-
-The `kubelet` evaluates eviction thresholds per its configured housekeeping interval.
-
-* `housekeeping-interval` is the interval between container housekeepings.
--->
-### 驱逐监控时间间隔
-
-`kubelet` 根据其配置的整理时间间隔计算驱逐阈值。
-
-* `housekeeping-interval` 是容器管理时间间隔。
-
-<!--
-### Node Conditions
-
-The `kubelet` maps one or more eviction signals to a corresponding node condition.
-
-If a hard eviction threshold has been met, or a soft eviction threshold has been met
-independent of its associated grace period, the `kubelet` reports a condition that
-reflects the node is under pressure.
--->
-### 节点状态
-
-`kubelet` 会将一个或多个驱逐信号映射到对应的节点状态。
-
-如果满足硬驱逐阈值，或者满足独立于其关联宽限期的软驱逐阈值时，`kubelet`将报告节点处于压力下的状态。
-
-<!--
-The following node conditions are defined that correspond to the specified eviction signal.
-
-| Node Condition | Eviction Signal  | Description                                                      |
-|-------------------------|-------------------------------|--------------------------------------------|
-| `MemoryPressure` | `memory.available` | Available memory on the node has satisfied an eviction threshold |
-| `DiskPressure` | `nodefs.available`, `nodefs.inodesFree`, `imagefs.available`, or `imagefs.inodesFree` | Available disk space and inodes on either the node's root filesystem or image filesystem has satisfied an eviction threshold |
-| `PIDPressure`     | `pid.available`                                                                       | Available processes identifiers on the (Linux) node has fallen below an eviction threshold                                   |   
-
-The `kubelet` continues to report node status updates at the frequency specified by
-`--node-status-update-frequency` which defaults to `10s`.
--->
-下列节点状态根据相应的驱逐信号定义。
-
-| 节点状态 | 驱逐信号  | 描述                                                      |
-|-------------------------|-------------------------------|--------------------------------------------|
-| `MemoryPressure` | `memory.available` | 节点上可用内存量达到逐出阈值 |
-| `DiskPressure` | `nodefs.available`, `nodefs.inodesFree`, `imagefs.available`, 或 `imagefs.inodesFree` | 节点或者节点的根文件系统或镜像文件系统上可用磁盘空间和 i 节点个数达到逐出阈值 |
-| `PIDPressure`     | `pid.available`                                                                       | 在（Linux）节点上的可用进程标识符已降至驱逐阈值以下                                   |   
-
-`kubelet` 将以 `--node-status-update-frequency` 指定的频率连续报告节点状态更新，其默认值为 `10s`。
-
-<!--
-### Oscillation of node conditions
-
-If a node is oscillating above and below a soft eviction threshold, but not exceeding
-its associated grace period, it would cause the corresponding node condition to
-constantly oscillate between true and false, and could cause poor scheduling decisions
-as a consequence.
-
-To protect against this oscillation, the following flag is defined to control how
-long the `kubelet` must wait before transitioning out of a pressure condition.
-
-* `eviction-pressure-transition-period` is the duration for which the `kubelet` has
-to wait before transitioning out of an eviction pressure condition.
-
-The `kubelet` would ensure that it has not observed an eviction threshold being met
-for the specified pressure condition for the period specified before toggling the
-condition back to `false`.
--->
-### 节点状态振荡
-
-如果节点在软驱逐阈值的上下振荡，但没有超过关联的宽限期时，将引起对应节点的状态持续在
-true 和 false 间跳变，并导致不好的调度结果。
-
-为了防止这种振荡，可以定义下面的标志，用于控制 `kubelet` 从压力状态中退出之前必须等待的时间。
-
-* `eviction-pressure-transition-period` 是 `kubelet` 从压力状态中退出之前必须等待的时长。
-
-`kubelet` 将确保在设定的时间段内没有发现和指定压力条件相对应的驱逐阈值被满足时，才会将状态变回 `false`。
-
-<!--
-### Reclaiming node level resources
-
-If an eviction threshold has been met and the grace period has passed,
-the `kubelet` initiates the process of reclaiming the pressured resource
-until it has observed the signal has gone below its defined threshold.
-
-The `kubelet` attempts to reclaim node level resources prior to evicting end-user Pods. If
-disk pressure is observed, the `kubelet` reclaims node level resources differently if the
-machine has a dedicated `imagefs` configured for the container runtime.
--->
-### 回收节点层级资源
-
-如果满足驱逐阈值并超过了宽限期，`kubelet`将启动回收压力资源的过程，直到它发现低于设定阈值的信号为止。
-
-`kubelet` 将尝试在驱逐终端用户 pod 前回收节点层级资源。
-发现磁盘压力时，如果节点针对容器运行时配置有独占的 `imagefs`，`kubelet`回收节点层级资源的方式将会不同。
-
-<!--
-#### With `imagefs`
-
-If `nodefs` filesystem has met eviction thresholds, `kubelet` frees up disk space by deleting the dead Pods and their containers.
-
-If `imagefs` filesystem has met eviction thresholds, `kubelet` frees up disk space by deleting all unused images.
-
-#### Without `imagefs`
-
-If `nodefs` filesystem has met eviction thresholds, `kubelet` frees up disk space in the following order:
-
-1. Delete dead Pods and their containers
-2. Delete all unused images
--->
-#### 使用 `imagefs`
-
-如果 `nodefs` 文件系统满足驱逐阈值，`kubelet`通过驱逐 pod 及其容器来释放磁盘空间。
-
-如果 `imagefs` 文件系统满足驱逐阈值，`kubelet`通过删除所有未使用的镜像来释放磁盘空间。
-
-#### 未使用 `imagefs`
-
-如果 `nodefs` 满足驱逐阈值，`kubelet`将以下面的顺序释放磁盘空间：
-
-1. 删除停止运行的 pod/container
-2. 删除全部没有使用的镜像
-
-<!--
-### Evicting end-user Pods
-
-If the `kubelet` is unable to reclaim sufficient resource on the node, `kubelet` begins evicting Pods.
-
-The `kubelet` ranks Pods for eviction first by whether or not their usage of the starved resource exceeds requests,
-then by [Priority](/docs/concepts/configuration/pod-priority-preemption/), and then by the consumption of the starved compute resource relative to the Pods' scheduling requests.
-
--->
-### 驱逐最终用户的 pod
-
-如果 `kubelet` 在节点上无法回收足够的资源，`kubelet`将开始驱逐 pod。
-
-`kubelet` 首先根据他们对短缺资源的使用是否超过请求来排除 pod 的驱逐行为，
-然后通过[优先级](/zh/docs/concepts/configuration/pod-priority-preemption/)，
-然后通过相对于 pod 的调度请求消耗急需的计算资源。
-
-<!--
-As a result, `kubelet` ranks and evicts Pods in the following order:
-
-* `BestEffort` or `Burstable` Pods whose usage of a starved resource exceeds its request.
-Such pods are ranked by Priority, and then usage above request.
-* `Guaranteed` pods and `Burstable` pods whose usage is beneath requests are evicted last.
-`Guaranteed` Pods are guaranteed only when requests and limits are specified for all
-the containers and they are equal. Such pods are guaranteed to never be evicted because
-of another Pod's resource consumption. If a system daemon (such as `kubelet`, `docker`,
-and `journald`) is consuming more resources than were reserved via `system-reserved` or
-`kube-reserved` allocations, and the node only has `Guaranteed` or `Burstable` Pods using
-less than requests remaining, then the node must choose to evict such a Pod in order to
-preserve node stability and to limit the impact of the unexpected consumption to other Pods.
-In this case, it will choose to evict pods of Lowest Priority first.
--->
-`kubelet` 按以下顺序对要驱逐的 pod 排名：
-
-* `BestEffort` 或 `Burstable`，其对短缺资源的使用超过了其请求，此类 pod 按优先级排序，然后使用高于请求。
-* `Guaranteed` pod 和 `Burstable` pod，其使用率低于请求，最后被驱逐。
-  `Guaranteed` Pod 只有为所有的容器指定了要求和限制并且它们相等时才能得到保证。
-  由于另一个 Pod 的资源消耗，这些 Pod 保证永远不会被驱逐。
-  如果系统守护进程（例如 `kubelet`、`docker`、和 `journald`）消耗的资源多于通过
-  `system-reserved` 或 `kube-reserved` 分配保留的资源，并且该节点只有 `Guaranteed` 或
-  `Burstable` Pod 使用少于剩余的请求，然后节点必须选择驱逐这样的 Pod
-  以保持节点的稳定性并限制意外消耗对其他 pod 的影响。
-  在这种情况下，它将首先驱逐优先级最低的 pod。
-
-<!--
-If necessary, `kubelet` evicts Pods one at a time to reclaim disk when `DiskPressure`
-is encountered. If the `kubelet` is responding to `inode` starvation, it reclaims
-`inodes` by evicting Pods with the lowest quality of service first. If the `kubelet`
-is responding to lack of available disk, it ranks Pods within a quality of service
-that consumes the largest amount of disk and kill those first.
--->
-必要时，`kubelet`会在遇到 `DiskPressure` 时逐个驱逐 Pod 来回收磁盘空间。
-如果 `kubelet` 响应 `inode` 短缺，它会首先驱逐服务质量最低的 Pod 来回收 `inodes`。
-如果 `kubelet` 响应缺少可用磁盘，它会将 Pod 排在服务质量范围内，该服务会消耗大量的磁盘并首先结束这些磁盘。
-
-<!--
-#### With `imagefs`
-
-If `nodefs` is triggering evictions, `kubelet` sorts Pods based on the usage on `nodefs`
-- local volumes + logs of all its containers.
-
-If `imagefs` is triggering evictions, `kubelet` sorts Pods based on the writable layer usage of all its containers.
-
-#### Without `imagefs`
-
-If `nodefs` is triggering evictions, `kubelet` sorts Pods based on their total disk usage
-- local volumes + logs & writable layer of all its containers.
--->
-#### 使用 `imagefs`
-
-如果是 `nodefs` 触发驱逐，`kubelet`将按 `nodefs` 用量 - 本地卷 + pod 的所有容器日志的总和对其排序。
-
-如果是 `imagefs` 触发驱逐，`kubelet`将按 pod 所有可写层的用量对其进行排序。
-
-#### 未使用 `imagefs`
-
-如果是 `nodefs` 触发驱逐，`kubelet`会根据磁盘的总使用情况对 pod 进行排序 - 本地卷 + 所有容器的日志及其可写层。
-
-<!--
-### Minimum eviction reclaim
-
-In certain scenarios, eviction of Pods could result in reclamation of small amount of resources. This can result in
-`kubelet` hitting eviction thresholds in repeated successions. In addition to that, eviction of resources like `disk`,
- is time consuming.
--->
-### 最小驱逐回收
-
-在某些场景，驱逐 pod 会导致回收少量资源。这将导致 `kubelet` 反复碰到驱逐阈值。除此之外，对如 `disk` 这类资源的驱逐时比较耗时的。
-
-<!--
-To mitigate these issues, `kubelet` can have a per-resource `minimum-reclaim`. Whenever `kubelet` observes
-resource pressure, `kubelet` attempts to reclaim at least `minimum-reclaim` amount of resource below
-the configured eviction threshold.
-
-For example, with the following configuration:
--->
-为了减少这类问题，`kubelet`可以为每个资源配置一个 `minimum-reclaim`。
-当 `kubelet` 发现资源压力时，`kubelet`将尝试至少回收驱逐阈值之下 `minimum-reclaim` 数量的资源。
-
-例如使用下面的配置：
-
-```
---eviction-hard=memory.available<500Mi,nodefs.available<1Gi,imagefs.available<100Gi
---eviction-minimum-reclaim="memory.available=0Mi,nodefs.available=500Mi,imagefs.available=2Gi"`
-```
-
-<!--
-If an eviction threshold is triggered for `memory.available`, the `kubelet` works to ensure
-that `memory.available` is at least `500Mi`. For `nodefs.available`, the `kubelet` works
-to ensure that `nodefs.available` is at least `1.5Gi`, and for `imagefs.available` it
-works to ensure that `imagefs.available` is at least `102Gi` before no longer reporting pressure
-on their associated resources.
-
-The default `eviction-minimum-reclaim` is `0` for all resources.
--->
-如果 `memory.available` 驱逐阈值被触发，`kubelet` 将保证 `memory.available` 至少为 `500Mi`。
-对于 `nodefs.available`，`kubelet` 将保证 `nodefs.available` 至少为 `1.5Gi`。
-对于 `imagefs.available`，`kubelet` 将保证 `imagefs.available` 至少为 `102Gi`，
-直到不再有相关资源报告压力为止。
-
-所有资源的默认 `eviction-minimum-reclaim` 值为 `0`。
-
-<!--
-### Scheduler
-
-The node reports a condition when a compute resource is under pressure. The
-scheduler views that condition as a signal to dissuade placing additional
-pods on the node.
-
-| Node Condition    | Scheduler Behavior                               |
-| ---------------- | ------------------------------------------------ |
-| `MemoryPressure` | No new `BestEffort` Pods are scheduled to the node. |
-| `DiskPressure` | No new Pods are scheduled to the node. |
--->
-### 调度器
-
-当资源处于压力之下时，节点将报告状态。调度器将那种状态视为一种信号，阻止更多 pod 调度到这个节点上。
-
-| 节点状态    | 调度器行为                               |
-| ---------------- | ------------------------------------------------ |
-| `MemoryPressure` | 新的 `BestEffort` Pod 不会被调度到该节点 |
-| `DiskPressure` | 没有新的 Pod 会被调度到该节点 |
-
-<!--
-## Node OOM Behavior
-
-If the node experiences a system OOM (out of memory) event prior to the `kubelet` is able to reclaim memory,
-the node depends on the [oom_killer](https://lwn.net/Articles/391222/) to respond.
-
-The `kubelet` sets a `oom_score_adj` value for each container based on the quality of service for the Pod.
--->
-## 节点 OOM 行为
-
-如果节点在 `kubelet` 回收内存之前经历了系统 OOM（内存不足）事件，它将基于
-[oom-killer](https://lwn.net/Articles/391222/) 做出响应。
-
-`kubelet` 基于 pod 的 service 质量为每个容器设置一个 `oom_score_adj` 值。
-
-<!--
-| Quality of Service | oom_score_adj |
-|----------------------------|-----------------------------------------------------------------------|
-| `Guaranteed` | -998 |
-| `BestEffort` | 1000 |
-| `Burstable` | min(max(2, 1000 - (1000 * memoryRequestBytes) / machineMemoryCapacityBytes), 999) |
--->
-
-| Service 质量 | oom_score_adj |
-|----------------------------|-----------------------------------------------------------------------|
-| `Guaranteed` | -998 |
-| `BestEffort` | 1000 |
-| `Burstable` | min(max(2, 1000 - (1000 * memoryRequestBytes) / machineMemoryCapacityBytes), 999) |
-
-<!--
-If the `kubelet` is unable to reclaim memory prior to a node experiencing system OOM, the `oom_killer` calculates
-an `oom_score` based on the percentage of memory it's using on the node, and then add the `oom_score_adj` to get an
-effective `oom_score` for the container, and then kills the container with the highest score.
-
-The intended behavior should be that containers with the lowest quality of service that
-are consuming the largest amount of memory relative to the scheduling request should be killed first in order
-to reclaim memory.
-
-Unlike Pod eviction, if a Pod container is OOM killed, it may be restarted by the `kubelet` based on its `RestartPolicy`.
--->
-如果 `kubelet` 在节点经历系统 OOM 之前无法回收内存，`oom_killer` 将基于它在节点上
-使用的内存百分比算出一个 `oom_score`，并加上 `oom_score_adj` 得到容器的有效
-`oom_score`，然后结束得分最高的容器。
-
-预期的行为应该是拥有最低服务质量并消耗和调度请求相关内存量最多的容器第一个被结束，以回收内存。
-
-和 pod 驱逐不同，如果一个 Pod 的容器是被 OOM 结束的，基于其 `RestartPolicy`，
-它可能会被 `kubelet` 重新启动。
-
-<!--
-## Best Practices
-
-The following sections describe best practices for out of resource handling.
-
-### Schedulable resources and eviction policies
-
-Consider the following scenario:
-
-* Node memory capacity: `10Gi`
-* Operator wants to reserve 10% of memory capacity for system daemons (kernel, `kubelet`, etc.)
-* Operator wants to evict Pods at 95% memory utilization to reduce incidence of system OOM.
-
-To facilitate this scenario, the `kubelet` would be launched as follows:
--->
-## 最佳实践
-
-以下部分描述了资源外处理的最佳实践。
-
-### 可调度资源和驱逐策略
-
-考虑以下场景：
-
-* 节点内存容量：`10Gi`
-* 操作员希望为系统守护进程保留 10% 内存容量（内核、`kubelet`等）。
-* 操作员希望在内存用量达到 95% 时驱逐 pod，以减少对系统的冲击并防止系统 OOM 的发生。
-
-为了促成这个场景，`kubelet`将像下面这样启动：
-
-```
---eviction-hard=memory.available<500Mi
---system-reserved=memory=1.5Gi
-```
-
-<!--
-Implicit in this configuration is the understanding that "System reserved" should include the amount of memory
-covered by the eviction threshold.
-
-To reach that capacity, either some Pod is using more than its request, or the system is using more than `1.5Gi - 500Mi = 1Gi`.
-
-This configuration ensures that the scheduler does not place Pods on a node that immediately induce memory pressure
-and trigger eviction assuming those Pods use less than their configured request.
--->
-这个配置的暗示是理解系统保留应该包含被驱逐阈值覆盖的内存数量。
-
-要达到这个容量，要么某些 pod 使用了超过它们请求的资源，要么系统使用的内存超过 `1.5Gi - 500Mi = 1Gi`。
-
-这个配置将保证在 pod 使用量都不超过它们配置的请求值时，如果可能立即引起内存压力并触发驱逐时，调度器不会将 pod 放到这个节点上。
-
-<!--
-### DaemonSet
-
-It is never desired for `kubelet` to evict a `DaemonSet` Pod, since the Pod is
-immediately recreated and rescheduled back to the same node.
-
-At the moment, the `kubelet` has no ability to distinguish a Pod created
-from `DaemonSet` versus any other object. If/when that information is
-available, the `kubelet` could pro-actively filter those Pods from the
-candidate set of Pods provided to the eviction strategy.
-
-In general, it is strongly recommended that `DaemonSet` not
-create `BestEffort` Pods to avoid being identified as a candidate Pod
-for eviction. Instead `DaemonSet` should ideally launch `Guaranteed` Pods.
--->
-### DaemonSet
-
-我们永远都不希望 `kubelet` 驱逐一个从 `DaemonSet` 派生的 Pod，因为这个 Pod 将立即被重建并调度回相同的节点。
-
-目前，`kubelet`没有办法区分一个 Pod 是由 `DaemonSet` 还是其他对象创建。
-如果/当这个信息可用时，`kubelet` 可能会预先将这些 pod 从提供给驱逐策略的候选集合中过滤掉。
-
-总之，强烈推荐 `DaemonSet` 不要创建 `BestEffort` 的 Pod，防止其被识别为驱逐的候选 Pod。
-相反，理想情况下 `DaemonSet` 应该启动 `Guaranteed` 的 pod。
-
-<!--
-## Deprecation of existing feature flags to reclaim disk
-
-`kubelet` has been freeing up disk space on demand to keep the node stable.
-
-As disk based eviction matures, the following `kubelet` flags are marked for deprecation
-in favor of the simpler configuration supported around eviction.
--->
-## 现有的回收磁盘特性标签已被弃用
-
-`kubelet` 已经按需求清空了磁盘空间以保证节点稳定性。
-
-当磁盘驱逐成熟时，下面的 `kubelet` 标志将被标记为废弃的，以简化支持驱逐的配置。
-
-<!--
-| Existing Flag | New Flag |
-| ------------- | -------- |
-| `--image-gc-high-threshold` | `--eviction-hard` or `eviction-soft` |
-| `--image-gc-low-threshold` | `--eviction-minimum-reclaim` |
-| `--maximum-dead-containers` | deprecated |
-| `--maximum-dead-containers-per-container` | deprecated |
-| `--minimum-container-ttl-duration` | deprecated |
-| `--low-diskspace-threshold-mb` | `--eviction-hard` or `eviction-soft` |
-| `--outofdisk-transition-frequency` | `--eviction-pressure-transition-period` |
--->
-
-| 现有标签 | 新标签 |
-| ------------- | -------- |
-| `--image-gc-high-threshold` | `--eviction-hard` or `eviction-soft` |
-| `--image-gc-low-threshold` | `--eviction-minimum-reclaim` |
-| `--maximum-dead-containers` | deprecated |
-| `--maximum-dead-containers-per-container` | deprecated |
-| `--minimum-container-ttl-duration` | deprecated |
-| `--low-diskspace-threshold-mb` | `--eviction-hard` or `eviction-soft` |
-| `--outofdisk-transition-frequency` | `--eviction-pressure-transition-period` |
-
-<!--
-## Known issues
-
-The following sections describe known issues related to out of resource handling.
--->
-## 已知问题
-
-以下部分描述了与资源外处理有关的已知问题。
-
-<!--
-### kubelet may not observe memory pressure right away
-
-The `kubelet` currently polls `cAdvisor` to collect memory usage stats at a regular interval. If memory usage
-increases within that window rapidly, the `kubelet` may not observe `MemoryPressure` fast enough, and the `OOMKiller`
-will still be invoked. We intend to integrate with the `memcg` notification API in a future release to reduce this
-latency, and instead have the kernel tell us when a threshold has been crossed immediately.
--->
-### kubelet 可能无法立即发现内存压力
-
-`kubelet`当前通过以固定的时间间隔轮询 `cAdvisor` 来收集内存使用数据。如果内存使用在那个时间窗口内迅速增长，`kubelet`可能不能足够快的发现 `MemoryPressure`，`OOMKiller`将不会被调用。我们准备在将来的发行版本中通过集成 `memcg` 通知 API 来减小这种延迟。当超过阈值时，内核将立即告诉我们。
-
-<!--
-If you are not trying to achieve extreme utilization, but a sensible measure of overcommit, a viable workaround for
-this issue is to set eviction thresholds at approximately 75% capacity. This increases the ability of this feature
-to prevent system OOMs, and promote eviction of workloads so cluster state can rebalance.
--->
-如果您想处理可察觉的超量使用而不要求极端精准，可以设置驱逐阈值为大约 75% 容量作为这个问题的变通手段。这将增强这个特性的能力，防止系统 OOM，并提升负载卸载能力，以再次平衡集群状态。
-
-<!--
-### kubelet may evict more Pods than needed
-
-The Pod eviction may evict more Pods than needed due to stats collection timing gap. This can be mitigated by adding
-the ability to get root container stats on an on-demand basis [(https://github.com/google/cadvisor/issues/1247)](https://github.com/google/cadvisor/issues/1247) in the future.
--->
-### kubelet 可能会驱逐超过需求数量的 pod
-
-由于状态采集的时间差，驱逐操作可能驱逐比所需的更多的 pod。将来可通过添加从根容器获取所需状态的能力
-[https://github.com/google/cadvisor/issues/1247](https://github.com/google/cadvisor/issues/1247)
-来减缓这种状况。
-
diff --git a/content/zh/docs/tasks/administer-cluster/reconfigure-kubelet.md b/content/zh/docs/tasks/administer-cluster/reconfigure-kubelet.md
deleted file mode 100644
index 7d34460c24..0000000000
--- a/content/zh/docs/tasks/administer-cluster/reconfigure-kubelet.md
+++ /dev/null
@@ -1,668 +0,0 @@
----
-title: 在运行中的集群上重新配置节点的 kubelet
-content_type: task
----
-
-<!--
-reviewers:
-- mtaufen
-- dawnchen
-title: Reconfigure a Node's Kubelet in a Live Cluster
-content_type: task
--->
-
-<!-- overview -->
-
-{{< feature-state for_k8s_version="v1.22" state="deprecated" >}}
-
-<!--
-Caution: Dynamic Kubelet Configuration feature is deprecated and should not be used. Please switch to alternative means distributing configuration to the Nodes of your cluster.
--->
-{{< caution >}}
-[动态 kubelet 配置](https://github.com/kubernetes/enhancements/issues/281)
-已经废弃不建议使用。请选择其他方法将配置分发到集群中的节点。
-{{< /caution >}}
-
-<!--
-[Dynamic Kubelet Configuration](https://github.com/kubernetes/enhancements/issues/281)
-allows you to change the configuration of each Kubelet in a live Kubernetes
-cluster by deploying a ConfigMap and configuring each Node to use it.
--->
-[动态 kubelet 配置](https://github.com/kubernetes/enhancements/issues/281)
-允许你通过部署一个所有节点都会使用的 ConfigMap 
-达到在运行中的 Kubernetes 集群中更改 kubelet 配置的目的。
-
-<!--
-All kubelet configuration parameters can be changed dynamically,
-but this is unsafe for some parameters. Before deciding to change a parameter
-dynamically, you need a strong understanding of how that change will affect your
-cluster's behavior. Always carefully test configuration changes on a small set
-of nodes before rolling them out cluster-wide. Advice on configuring specific
-fields is available in the inline
-[`KubeletConfiguration`](/docs/reference/config-api/kubelet-config.v1beta1/).
--->
-{{< warning >}}
-所有 kubelet 配置参数都可以被动态更改，但对某些参数来说这类更改是不安全的。
-在决定动态更改参数之前，你需要深刻理解这个改动将会如何影响集群的行为。
-在将变更扩散到整个集群之前，你需要先在小规模的节点集合上仔细地测试这些配置变动。
-特定字段相关的配置建议可以在文档
-[`KubeletConfiguration`](/docs/reference/config-api/kubelet-config.v1beta1/)中找到。
-{{< /warning >}}
-
-## {{% heading "prerequisites" %}}
-
-<!--
-You need to have a Kubernetes cluster.
-You also need kubectl v1.11 or higher, configured to communicate with your cluster.
-{{< version-check >}}
-Your cluster API server version (eg v1.12) must be no more than one minor
-version away from the version of kubectl that you are using. For example,
-if your cluster is running v1.16 then you can use kubectl v1.15, v1.16
-or v1.17; other combinations
-[aren't supported](/docs/setup/release/version-skew-policy/#kubectl).
--->
-你需要一个 Kubernetes 集群。
-你需要 v1.11 或更高版本的 kubectl，并配置好与集群的通信。
-{{< version-check >}}
-你的集群 API 服务器版本（如 v1.12）不能和你的 kubectl
-版本相差超过一个小版本号。
-例如，如果你的集群在运行 v1.16，那么你可以使用 v1.15、v1.16、v1.17 的 kubectl，
-所有其他的组合都是
-[不支持的](/zh/docs/setup/release/version-skew-policy/#kubectl)。
-
-<!--
-Some of the examples use the command line tool
-[jq](https://stedolan.github.io/jq/). You do not need `jq` to complete the task,
-because there are manual alternatives.
-
-For each node that you're reconfiguring, you must set the kubelet
-`-dynamic-config-dir` flag to a writable directory.
--->
-在某些例子中使用了命令行工具 [jq](https://stedolan.github.io/jq/)。
-你并不一定需要 `jq` 才能完成这些任务，因为总是有一些手工替代的方式。
-
-针对你重新配置的每个节点，你必须设置 kubelet 的标志
-`-dynamic-config-dir`，使之指向一个可写的目录。
-
-<!-- steps -->
-
-<!--
-## Reconfiguring the kubelet on a running node in your cluster
-
-### Basic Workflow Overview
--->
-## 重配置 集群中运行节点上的 kubelet 
-
-### 基本工作流程概览
-
-<!--
-The basic workflow for configuring a Kubelet in a live cluster is as follows:
-
-1. Write a YAML or JSON configuration file containing the
-   kubelet's configuration.
-2. Wrap this file in a ConfigMap and save it to the Kubernetes control plane.
-3. Update the Kubelet's corresponding Node object to use this ConfigMap.
--->
-在运行中的集群中配置 kubelet 的基本工作流程如下：
-
-1. 编写一个包含 kubelet 配置的 YAML 或 JSON 文件。
-2. 将此文件包装在 ConfigMap 中并将其保存到 Kubernetes 控制平面。
-3. 更新 kubelet 所在节点对象以使用此 ConfigMap。
-
-<!--
-Each kubelet watches a configuration reference on its respective Node object.
-When this reference changes, the Kubelet downloads the new configuration,
-updates a local reference to refer to the file, and exits.
-For the feature to work correctly, you must be running an OS-level service
-manager (such as systemd), which will restart the Kubelet if it exits. When the
-Kubelet is restarted, it will begin using the new configuration.
--->
-每个 kubelet 都会在其各自的节点对象上监测（Watch）配置引用。当引用更改时，kubelet 将下载新的配置文件，
-更新本地引用指向该文件，然后退出。
-为了使该功能正常地工作，你必须运行操作系统级别的服务管理器（如 systemd），
-它将会在 kubelet 退出后将其重启。
-kubelet 重新启动时，将开始使用新配置。
-
-<!--
-The new configuration completely overrides configuration provided by `--config`,
-and is overridden by command-line flags. Unspecified values in the new configuration
-will receive default values appropriate to the configuration version
-(e.g. `kubelet.config.k8s.io/v1beta1`), unless overridden by flags.
--->
-新配置将会完全地覆盖 `--config` 所提供的配置，并被命令行标志覆盖。
-新配置中未指定的值将收到适合配置版本的默认值
-(e.g. `kubelet.config.k8s.io/v1beta1`)，除非被命令行标志覆盖。
-
-<!--
-The status of the Node's Kubelet configuration is reported via
-`Node.Spec.Status.Config`. Once you have updated a Node to use the new
-ConfigMap, you can observe this status to confirm that the Node is using the
-intended configuration.
--->
-节点 kubelet 配置状态可通过 `node.spec.status.config` 获取。
-一旦你更新了一个节点去使用新的 ConfigMap，
-就可以通过观察此状态来确认该节点是否正在使用预期配置。
-
-<!--
-This document describes editing Nodes using `kubectl edit`.
-There are other ways to modify a Node's spec, including `kubectl patch`, for
-example, which facilitate scripted workflows.
--->
-本文中使用命令 `kubectl edit` 来编辑节点，还有其他的方式可以修改节点的规约，
-比如更利于脚本化工作流程的 `kubectl patch`。
-
-<!--
-This document only describes a single Node consuming each ConfigMap. Keep in
-mind that it is also valid for multiple Nodes to consume the same ConfigMap.
--->
-本文仅仅讲述在单节点上使用每个 ConfigMap。请注意对于多个节点使用相同的 ConfigMap
-也是合法的。
-
-<!--
-While it is *possible* to change the configuration by
-updating the ConfigMap in-place, this causes all Kubelets configured with
-that ConfigMap to update simultaneously. It is much safer to treat ConfigMaps
-as immutable by convention, aided by `kubectl`'s `-append-hash` option,
-and incrementally roll out updates to `Node.Spec.ConfigSource`.
--->
-{{< warning >}}
-尽管通过就地更新 ConfigMap 来更改配置是 *可能的*。
-但是这样做会导致所有使用该 ConfigMap 配置的 kubelet 同时更新。
-更安全的做法是按惯例将 ConfigMap 视为不可变更的，借助于
-`kubectl` 的 `--append-hash` 选项逐步把更新推广到 `node.spec.configSource`。
-{{< /warning >}}
-
-<!--
-### Automatic RBAC rules for Node Authorizer
-
-Previously, you were required to manually create RBAC rules
-to allow Nodes to access their assigned ConfigMaps. The Node Authorizer now
-automatically configures these rules.
--->
-### 节点鉴权器的自动 RBAC 规则
-
-以前，你需要手动创建 RBAC 规则以允许节点访问其分配的 ConfigMap。节点鉴权器现在
-能够自动配置这些规则。
-
-<!--
-### Generating a file that contains the current configuration
-
-The Dynamic Kubelet Configuration feature allows you to provide an override for
-the entire configuration object, rather than a per-field overlay. This is a
-simpler model that makes it easier to trace the source of configuration values
-and debug issues. The compromise, however, is that you must start with knowledge
-of the existing configuration to ensure that you only change the fields you
-intend to change.
--->
-### 生成包含当前配置的文件
-
-动态 kubelet 配置特性允许你为整个配置对象提供一个重载配置，而不是靠单个字段的叠加。 
-这是一个更简单的模型，可以更轻松地跟踪配置值的来源，更便于调试问题。
-然而，相应的代价是你必须首先了解现有配置，以确保你只更改你打算修改的字段。
-
-<!--
-The kubelet loads settings from its configuration file, but you can set command
-line flags to override the configuration in the file. This means that if you
-only know the contents of the configuration file, and you don't know the
-command line overrides, then you do not know the running configuration either.
--->
-组件 kubelet 从其配置文件中加载配置数据，不过你可以通过设置命令行标志
-来重载文件中的一些配置。这意味着，如果你仅知道配置文件的内容，而你不知道
-命令行重载了哪些配置，你就无法知道 kubelet 的运行时配置是什么。
-
-<!--
-Because you need to know the running configuration in order to override it,
-you can fetch the running configuration from the kubelet. You can generate a
-config file containing a Node's current configuration by accessing the kubelet's
-`configz` endpoint, through `kubectl proxy`. The next section explains how to
-do this.
--->
-因为你需要知道运行时所使用的配置才能重载之，你可以从 kubelet 取回其运行时配置。
-你可以通过访问 kubelet 的 `configz` 末端来生成包含节点当前配置的配置文件；
-这一操作可以通过 `kubectl proxy` 来完成。
-下一节解释如何完成这一操作。
-
-<!--
-The kubelet's `configz` endpoint is there to help with debugging, and is not
-a stable part of kubelet behavior.
-Do not rely on the behavior of this endpoint for production scenarios or for
-use with automated tools.
--->
-{{< caution >}}
-组件 `kubelet` 上的 `configz` 末端是用来协助调试的，并非 kubelet 稳定行为的一部分。
-请不要在产品环境下依赖此末端的行为，也不要在自动化工具中使用此末端。
-{{< /caution >}}
-
-<!--
-For more information on configuring the kubelet via a configuration file, see
-[Set kubelet parameters via a config file](/docs/tasks/administer-cluster/kubelet-config-file)).
--->
-关于如何使用配置文件来配置 kubelet 行为的更多信息可参见
-[通过配置文件设置 kubelet 参数](/zh/docs/tasks/administer-cluster/kubelet-config-file)
-文档。
-
-<!-- #### Generate the configuration file -->
-#### 生成配置文件
-
-<!--
-The steps below use the `jq` command to streamline working with JSON.
-To follow the tasks as written, you need to have `jq` installed. You can
-adapt the steps if you prefer to extract the `kubeletconfig` subobject manually.
--->
-{{< note >}}
-下面的任务步骤中使用了 `jq` 命令以方便处理 JSON 数据。为了完成这里讲述的任务，
-你需要安装 `jq`。如果你更希望手动提取 `kubeletconfig` 子对象，也可以对这里
-的对应步骤做一些调整。
-{{< /note >}}
-
-<!--
-1. Choose a Node to reconfigure. In this example, the name of this Node is
-   referred to as `NODE_NAME`.
-2. Start the kubectl proxy in the background using the following command:
--->
-1. 选择要重新配置的节点。在本例中，此节点的名称为 `NODE_NAME`。
-2. 使用以下命令在后台启动 kubectl 代理：
-
-   ```shell
-   kubectl proxy --port=8001 &
-   ```
-<!--
-3. Run the following command to download and unpack the configuration from the
-   `configz` endpoint. The command is long, so be careful when copying and
-   pasting. **If you use zsh**, note that common zsh configurations add backslashes
-   to escape the opening and closing curly braces around the variable name in the URL.
-   For example: `${NODE_NAME}` will be rewritten as `$\{NODE_NAME\}` during the paste.
-   You must remove the backslashes before running the command, or the command will fail.
--->
-3. 运行以下命令从 `configz` 端点中下载并解压配置。这个命令很长，因此在复制粘贴时要小心。
-   **如果你使用 zsh**，请注意常见的 zsh 配置要添加反斜杠转义 URL 中变量名称周围的大括号。
-   例如：在粘贴时，`${NODE_NAME}` 将被重写为 `$\{NODE_NAME\}`。
-   你必须在运行命令之前删除反斜杠，否则命令将失败。
-
-   ```bash
-   NODE_NAME="the-name-of-the-node-you-are-reconfiguring"; curl -sSL "http://localhost:8001/api/v1/nodes/${NODE_NAME}/proxy/configz" | jq '.kubeletconfig|.kind="KubeletConfiguration"|.apiVersion="kubelet.config.k8s.io/v1beta1"' > kubelet_configz_${NODE_NAME}
-   ```
-
-<!--
-You need to manually add the `kind` and `apiVersion` to the downloaded
-object，because they are not reported by the `configz` endpoint。
--->
-{{< note >}}
-你需要手动将 `kind` 和 `apiVersion` 添加到下载对象中，因为它们不是由 `configz` 末端
-返回的。
-{{< /note >}}
-
-<!--
-#### Edit the configuration file
-
-Using a text editor, change one of the parameters in the
-file generated by the previous procedure. For example, you
-might edit the QPS parameter `eventRecordQPS`.
--->
-#### 修改配置文件
-
-使用文本编辑器，改变上述操作生成的文件中一个参数。
-例如，你或许会修改 QPS 参数 `eventRecordQPS`。
-
-<!--
-#### Push the configuration file to the control plane
-
-Push the edited configuration file to the control plane with the
-following command:
--->
-#### 把配置文件推送到控制平面
-
-用以下命令把编辑后的配置文件推送到控制平面：
-
-```bash
-kubectl -n kube-system create configmap my-node-config \
-  --from-file=kubelet=kubelet_configz_${NODE_NAME} \
-  --append-hash -o yaml
-```
-
-<!--
-This is an example of a valid response:
--->
-下面是合法响应的一个例子：
-
-```yaml
-apiVersion: v1
-kind: ConfigMap
-metadata:
-  creationTimestamp: 2017-09-14T20:23:33Z
-  name: my-node-config-gkt4c2m4b2
-  namespace: kube-system
-  resourceVersion: "119980"
-  selfLink: /api/v1/namespaces/kube-system/configmaps/my-node-config-gkt4c2m4b2
-  uid: 946d785e-998a-11e7-a8dd-42010a800006
-data:
-  kubelet: |
-    {...}
-```
-
-<!--
-You created that ConfigMap inside the `kube-system` namespace because the kubelet
-is a Kubernetes system component.
--->
-你会在 `kube-system` 命名空间中创建 ConfigMap，因为 kubelet 是 Kubernetes 的系统组件。
-
-<!--
-The `-append-hash` option appends a short checksum of the ConfigMap contents
-to the name. This is convenient for an edit-then-push workflow, because it
-automatically, yet deterministically, generates new names for new ConfigMaps.
-The name that includes this generated hash is referred to as `CONFIG_MAP_NAME`
-in the following examples.
--->
-`--append-hash` 选项给 ConfigMap 内容附加了一个简短校验和。
-这对于先编辑后推送的工作流程很方便，
-因为它自动并确定地为新 ConfigMap 生成新的名称。
-在以下示例中，包含生成的哈希字符串的对象名被称为 `CONFIG_MAP_NAME`。
-
-<!--
-#### Set the Node to use the new configuration
-
-
-Edit the Node's reference to point to the new ConfigMap with the
-following command:
--->
-#### 配置节点使用新的配置
-
-```bash
-kubectl edit node ${NODE_NAME}
-```
-
-<!--
-In your text editor, add the following YAML under `spec`:
--->
-在你的文本编辑器中，在 `spec` 下增添以下 YAML：
-
-```yaml
-configSource:
-    configMap:
-        name: CONFIG_MAP_NAME
-        namespace: kube-system
-        kubeletConfigKey: kubelet
-```
-
-<!--
-You must specify all three of `name`, `namespace`, and `kubeletConfigKey`.
-The `kubeletConfigKey` parameter shows the Kubelet which key of the ConfigMap
-contains its config.
--->
-你必须同时指定 `name`、`namespace` 和 `kubeletConfigKey` 这三个属性。
-`kubeletConfigKey` 这个参数通知 kubelet ConfigMap 中的哪个键下面包含所要的配置。
-
-<!--
-#### Observe that the Node begins using the new configuration
-
-Retrieve the Node using the `kubectl get node ${NODE_NAME} -o yaml` command and inspect
-`Node.Status.Config`. The config sources corresponding to the `active`,
-`assigned`, and `lastKnownGood` configurations are reported in the status.
-
-- The `active` configuration is the version the Kubelet is currently running with.
-- The `assigned` configuration is the latest version the Kubelet has resolved based on
-  `Node.Spec.ConfigSource`.
-- The `lastKnownGood` configuration is the version the
-  Kubelet will fall back to if an invalid config is assigned in `Node.Spec.ConfigSource`.
--->
-#### 观察节点开始使用新配置
-
-用 `kubectl get node ${NODE_NAME} -o yaml` 命令读取节点并检查 `node.status.config` 内容。
-状态部分报告了对应 `active`（使用中的）配置、`assigned`（被赋予的）配置和
-`lastKnownGood`（最近已知可用的）配置的配置源。
-
-- `active` 是 kubelet 当前运行时所使用的版本。
-- `assigned` 参数是 kubelet 基于 `node.spec.configSource` 所解析出来的最新版本。
-- `lastKnownGood` 参数是 kubelet 的回退版本；如果在 `node.spec.configSource` 中
-  包含了无效的配置值，kubelet 可以回退到这个版本。
-
-<!--
-The`lastKnownGood` configuration might not be present if it is set to its default value,
-the local config deployed with the node. The status will update `lastKnownGood` to
-match a valid `assigned` config after the Kubelet becomes comfortable with the config.
-The details of how the Kubelet determines a config should become the `lastKnownGood` are
-not guaranteed by the API, but is currently implemented as a 10-minute grace period.
--->
-如果用本地配置部署节点，使其设置成默认值，这个 `lastKnownGood` 配置可能不存在。
-在 kubelet 配置好后，将更新 `lastKnownGood` 为一个有效的 `assigned` 配置。
-决定如何确定某配置成为 `lastKnownGood` 配置的细节并不在 API 保障范畴，
-不过目前实现中采用了 10 分钟的宽限期。
-
-<!--
-You can use the following command (using `jq`) to filter down
-to the config status:
--->
-你可以使用以下命令（使用 `jq`）过滤出配置状态：
-
-```bash
-kubectl get no ${NODE_NAME} -o json | jq '.status.config'
-```
-
-<!--
-The following is an example response:
--->
-以下是一个响应示例：
-
-```json
-{
-  "active": {
-    "configMap": {
-      "kubeletConfigKey": "kubelet",
-      "name": "my-node-config-9mbkccg2cc",
-      "namespace": "kube-system",
-      "resourceVersion": "1326",
-      "uid": "705ab4f5-6393-11e8-b7cc-42010a800002"
-    }
-  },
-  "assigned": {
-    "configMap": {
-      "kubeletConfigKey": "kubelet",
-      "name": "my-node-config-9mbkccg2cc",
-      "namespace": "kube-system",
-      "resourceVersion": "1326",
-      "uid": "705ab4f5-6393-11e8-b7cc-42010a800002"
-    }
-  },
-  "lastKnownGood": {
-    "configMap": {
-      "kubeletConfigKey": "kubelet",
-      "name": "my-node-config-9mbkccg2cc",
-      "namespace": "kube-system",
-      "resourceVersion": "1326",
-      "uid": "705ab4f5-6393-11e8-b7cc-42010a800002"
-    }
-  }
-}
-```
-
-<!--
-If you do not have `jq`, you can look at the whole response and find `Node.Status.Config`
-by eye.
--->
-如果你没有安装 `jq`，你可以查看整个响应对象，查找其中的 `node.status.config`
-部分。
-
-<!--
-If an error occurs, the Kubelet reports it in the `Node.Status.Config.Error`
-structure. Possible errors are listed in
-[Understanding Node.Status.Config.Error messages](#understanding-node-config-status-errors).
-You can search for the identical text in the Kubelet log for additional details
-and context about the error.
--->
-如果发生错误，kubelet 会在 `Node.Status.Config.Error` 中显示出错误信息的结构体。
-错误可能出现在列表[理解节点状态配置错误信息](#understanding-node-config-status-errors)中。
-你可以在 kubelet 日志中搜索相同的文本以获取更多详细信息和有关错误的上下文。
-
-<!--
-#### Make more changes
-
-Follow the workflow above to make more changes and push them again. Each time
-you push a ConfigMap with new contents, the -append-hash kubectl option creates
-the ConfigMap with a new name. The safest rollout strategy is to first create a
-new ConfigMap, and then update the Node to use the new ConfigMap.
--->
-#### 做出更多的改变   {#make-more-changes}
-
-按照下面的工作流程做出更多的改变并再次推送它们。
-你每次推送一个 ConfigMap 的新内容时，kubeclt 的 `--append-hash` 选项都会给
-ConfigMap 创建一个新的名称。
-最安全的上线策略是首先创建一个新的 ConfigMap，然后更新节点以使用新的 ConfigMap。
-
-<!--
-#### Reset the Node to use its local default configuration
-
-To reset the Node to use the configuration it was provisioned with, edit the
-Node using `kubectl edit node ${NODE_NAME}` and remove the
-`Node.Spec.ConfigSource` field.
--->
-#### 重置节点以使用其本地默认配置
-
-要重置节点，使其使用节点创建时使用的配置，可以用
-`kubectl edit node $ {NODE_NAME}` 命令编辑节点，并删除 `node.spec.configSource`
-字段。
-
-<!-- 
-#### Observe that the Node is using its local default configuration
-
-After removing this subfield, `Node.Status.Config` eventually becomes
-empty, since all config sources have been reset to `nil`, which indicates that
-the local default config is `assigned`, `active`, and `lastKnownGood`, and no
-error is reported.
--->
-#### 观察节点正在使用本地默认配置
-
-在删除此字段后，`node.status.config` 最终变成空，所有配置源都已重置为 `nil`。
-这表示本地默认配置成为了 `assigned`、`active` 和 `lastKnownGood` 配置，
-并且没有报告错误。
-
-<!-- discussion -->
-
-<!--
-## `kubectl patch` example
-
-You can change a Node's configSource using several different mechanisms.
-This example uses `kubectl patch`:
--->
-## `kubectl patch` 示例
-
-你可以使用几种不同的机制来更改节点的 configSource。
-
-本例使用`kubectl patch`：
-
-```bash
-kubectl patch node ${NODE_NAME} -p "{\"spec\":{\"configSource\":{\"configMap\":{\"name\":\"${CONFIG_MAP_NAME}\",\"namespace\":\"kube-system\",\"kubeletConfigKey\":\"kubelet\"}}}}"
-```
-<!--
-## Understanding how the Kubelet checkpoints config
-
-When a new config is assigned to the Node, the Kubelet downloads and unpacks the
-config payload as a set of files on the local disk. The Kubelet also records metadata
-that locally tracks the assigned and last-known-good config sources, so that the
-Kubelet knows which config to use across restarts, even if the API server becomes
-unavailable. After checkpointing a config and the relevant metadata, the Kubelet
-exits if it detects that the assigned config has changed. When the Kubelet is
-restarted by the OS-level service manager (such as `systemd`), it reads the new
-metadata and uses the new config.
--->
-## 了解 Kubelet 如何为配置生成检查点
-
-当为节点赋予新配置时，kubelet 会下载并解压配置负载为本地磁盘上的一组文件。
-kubelet 还记录一些元数据，用以在本地跟踪已赋予的和最近已知良好的配置源，以便
-kubelet 在重新启动时知道使用哪个配置，即使 API 服务器变为不可用。
-在为配置信息和相关元数据生成检查点之后，如果检测到已赋予的配置发生改变，则 kubelet 退出。
-当 kubelet 被 OS 级服务管理器（例如 `systemd`）重新启动时，它会读取新的元数据并使用新配置。
-
-<!--
-The recorded metadata is fully resolved, meaning that it contains all necessary
-information to choose a specific config version - typically a `UID` and `ResourceVersion`.
-This is in contrast to `Node.Spec.ConfigSource`, where the intended config is declared
-via the idempotent `namespace/name` that identifies the target ConfigMap; the Kubelet
-tries to use the latest version of this ConfigMap.
--->
-当记录的元数据已被完全解析时，意味着它包含选择一个指定的配置版本所需的所有信息
--- 通常是 `UID` 和 `ResourceVersion`。
-这与 `node.spec.configSource` 形成对比，后者通过幂等的 `namespace/name` 声明来标识
-目标 ConfigMap；kubelet 尝试使用此 ConfigMap 的最新版本。
-
-<!--
-When you are debugging problems on a node, you can inspect the Kubelet's config
-metadata and checkpoints. The structure of the Kubelet's checkpointing directory is:
--->
-当你在调试节点上问题时，可以检查 kubelet 的配置元数据和检查点。kubelet 的检查点目录结构是：
-
-<!--
-```none
-- -dynamic-config-dir (root for managing dynamic config)
-| - meta
-  | - assigned (encoded kubeletconfig/v1beta1.SerializedNodeConfigSource object, indicating the assigned config)
-  | - last-known-good (encoded kubeletconfig/v1beta1.SerializedNodeConfigSource object, indicating the last-known-good config)
-| - checkpoints
-  | - uid1 (dir for versions of object identified by uid1)
-    | - resourceVersion1 (dir for unpacked files from resourceVersion1 of object with uid1)
-    | - ...
-  | - ...
-```
--->
-
-```none
-- --dynamic-config-dir （用于管理动态配置的根目录）
-|-- meta
-  | - assigned （编码后的 kubeletconfig/v1beta1.SerializedNodeConfigSource 对象，对应赋予的配置）
-  | - last-known-good （编码后的 kubeletconfig/v1beta1.SerializedNodeConfigSource 对象，对应最近已知可用配置）
-| - checkpoints
-  | - uid1 （用 uid1 来标识的对象版本目录)
-    | - resourceVersion1 （uid1 对象 resourceVersion1 版本下所有解压文件的目录）
-    | - ...
-  | - ...
-```
-
-<!-- 
-## Understanding `Node.Status.Config.Error` messages {#understanding-node-config-status-errors}
-
-The following table describes error messages that can occur
-when using Dynamic Kubelet Config. You can search for the identical text
-in the Kubelet log for additional details and context about the error.
--->
-## 理解 `Node.Status.Config.Error` 消息 {#understanding-node-config-status-errors}
-
-下表描述了使用动态 kubelet 配置时可能发生的错误消息。
-你可以在 kubelet 日志中搜索相同的文本来获取有关错误的其他详细信息和上下文。
-
-<!--
-Error Message    | Possible Causes
-:----------------| :----------------
-failed to load config, see Kubelet log for details | The kubelet likely could not parse the downloaded config payload, or encountered a filesystem error attempting to load the payload from disk.
-failed to validate config, see Kubelet log for details | The configuration in the payload, combined with any command-line flag overrides, and the sum of feature gates from flags, the config file, and the remote payload, was determined to be invalid by the kubelet.
-invalid NodeConfigSource, exactly one subfield must be non-nil, but all were nil | Since Node.Spec.ConfigSource is validated by the API server to contain at least one non-nil subfield, this likely means that the kubelet is older than the API server and does not recognize a newer source type.
-failed to sync: failed to download config, see Kubelet log for details | The kubelet could not download the config. It is possible that Node.Spec.ConfigSource could not be resolved to a concrete API object, or that network errors disrupted the download attempt. The kubelet will retry the download when in this error state.
-failed to sync: internal failure, see Kubelet log for details | The kubelet encountered some internal problem and failed to update its config as a result. Examples include filesystem errors and reading objects from the internal informer cache.
-internal failure, see Kubelet log for details | The kubelet encountered some internal problem while manipulating config, outside of the configuration sync loop.
--->
-
-{{< table caption = "理解 node.status.config.error 消息" >}}
- 错误信息        | 可能的原因
-:----------------| :----------------
-failed to load config, see Kubelet log for details | kubelet 可能无法解析下载配置的有效负载，或者当尝试从磁盘中加载有效负载时，遇到文件系统错误。
-failed to validate config, see Kubelet log for details | 有效负载中的配置，与命令行标志所产生的覆盖配置以及特行门控的组合、配置文件本身、远程负载被 kubelet 判定为无效。
-invalid NodeConfigSource, exactly one subfield must be non-nil, but all were nil | 由于 API 服务器负责对 node.spec.configSource 执行验证，检查其中是否包含至少一个非空子字段，这个消息可能意味着 kubelet 比 API 服务器版本低，因而无法识别更新的源类型。
-failed to sync: failed to download config, see Kubelet log for details | kubelet 无法下载配置数据。可能是 node.spec.configSource 无法解析为具体的 API 对象，或者网络错误破坏了下载。处于此错误状态时，kubelet 将重新尝试下载。
-failed to sync: internal failure, see Kubelet log for details | kubelet 遇到了一些内部问题，因此无法更新其配置。 例如：发生文件系统错误或无法从内部缓存中读取对象。
-internal failure, see Kubelet log for details | 在对配置进行同步的循环之外操作配置时，kubelet 遇到了一些内部问题。
-
-{{< /table >}}
-
-## {{% heading "whatsnext" %}}
-
-<!--
-- For more information on configuring the kubelet via a configuration file, see
-[Set kubelet parameters via a config file](/docs/tasks/administer-cluster/kubelet-config-file).
-- See the reference documentation for [`NodeConfigSource`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#nodeconfigsource-v1-core)
-- Learn more about kubelet configuration by checking the
-  [`KubeletConfiguration`](/docs/reference/config-api/kubelet-config.v1beta1/)
-  reference.
--->
-- 关于如何通过配置文件来配置 kubelet 的更多细节信息，可参阅
-  [使用配置文件设置 kubelet 参数](/zh/docs/tasks/administer-cluster/kubelet-config-file).
-- 阅读 API 文档中 [`NodeConfigSource`](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#nodeconfigsource-v1-core) 说明
-- 查阅[`KubeletConfiguration`](/docs/reference/config-api/kubelet-config.v1beta1/)文献进一步了解 kubelet 
-  配置信息。
\ No newline at end of file
diff --git a/content/zh/docs/tasks/administer-cluster/securing-a-cluster.md b/content/zh/docs/tasks/administer-cluster/securing-a-cluster.md
deleted file mode 100644
index ee3a9cf5fa..0000000000
--- a/content/zh/docs/tasks/administer-cluster/securing-a-cluster.md
+++ /dev/null
@@ -1,440 +0,0 @@
----
-title: 保护集群安全
-content_type: task
----
-<!--
-reviewers:
-- smarterclayton
-- liggitt
-- ericchiang
-- destijl
-title: Securing a Cluster
-content_type: task
--->
-
-<!-- overview -->
-
-<!--
-This document covers topics related to protecting a cluster from accidental or malicious access
-and provides recommendations on overall security.
--->
-本文档涉及与保护集群免受意外或恶意访问有关的主题，并对总体安全性提出建议。
-
-## {{% heading "prerequisites" %}}
-
-* {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-<!-- steps -->
-
-<!--
-## Controlling access to the Kubernetes API
-
-As Kubernetes is entirely API driven, controlling and limiting who can access the cluster and what actions
-they are allowed to perform is the first line of defense.
--->
-## 控制对 Kubernetes API 的访问
-
-因为 Kubernetes 是完全通过 API 驱动的，所以，控制和限制谁可以通过 API 访问集群，以及允许这些访问者执行什么样的 API 动作，就成为了安全控制的第一道防线。
-
-<!--
-### Use Transport Layer Security (TLS) for all API traffic
-
-Kubernetes expects that all API communication in the cluster is encrypted by default with TLS, and the
-majority of installation methods will allow the necessary certificates to be created and distributed to
-the cluster components. Note that some components and installation methods may enable local ports over
-HTTP and administrators should familiarize themselves with the settings of each component to identify
-potentially unsecured traffic.
--->
-### 为所有 API 交互使用传输层安全 （TLS）
-
-Kubernetes 期望集群中所有的 API 通信在默认情况下都使用 TLS 加密，大多数安装方法也允许创建所需的证书并且分发到集群组件中。请注意，某些组件和安装方法可能使用 HTTP 来访问本地端口， 管理员应该熟悉每个组件的设置，以识别潜在的不安全的流量。
-
-<!--
-### API Authentication
-
-Choose an authentication mechanism for the API servers to use that matches the common access patterns
-when you install a cluster. For instance, small single user clusters may wish to use a simple certificate
-or static Bearer token approach. Larger clusters may wish to integrate an existing OIDC or LDAP server that
-allow users to be subdivided into groups.
-
-All API clients must be authenticated, even those that are part of the infrastructure like nodes,
-proxies, the scheduler, and volume plugins. These clients are typically [service accounts](/docs/reference/access-authn-authz/service-accounts-admin/) or use x509 client certificates, and they are created automatically at cluster startup or are setup as part of the cluster installation.
-
-Consult the [authentication reference document](/docs/reference/access-authn-authz/authentication/) for more information.
--->
-### API 认证
-
-安装集群时，选择一个 API 服务器的身份验证机制，去使用与之匹配的公共访问模式。
-例如，小型的单用户集群可能希望使用简单的证书或静态承载令牌方法。
-更大的集群则可能希望整合现有的、OIDC、LDAP 等允许用户分组的服务器。
-
-所有 API 客户端都必须经过身份验证，即使它是基础设施的一部分，比如节点、代理、调度程序和卷插件。
-这些客户端通常使用 [服务帐户](/zh/docs/reference/access-authn-authz/service-accounts-admin/)
-或 X509 客户端证书，并在集群启动时自动创建或是作为集群安装的一部分进行设置。
-
-如果你希望获取更多信息，请参考[认证参考文档](/zh/docs/reference/access-authn-authz/authentication/)。
-
-<!--
-### API Authorization
-
-Once authenticated, every API call is also expected to pass an authorization check. Kubernetes ships
-an integrated [Role-Based Access Control (RBAC)](/docs/reference/access-authn-authz/rbac/) component that matches an incoming user or group to a
-set of permissions bundled into roles. These permissions combine verbs (get, create, delete) with
-resources (pods, services, nodes) and can be namespace or cluster scoped. A set of out of the box
-roles are provided that offer reasonable default separation of responsibility depending on what
-actions a client might want to perform. It is recommended that you use the [Node](/docs/reference/access-authn-authz/node/) and [RBAC](/docs/reference/access-authn-authz/rbac/) authorizers together, in combination with the
-[NodeRestriction](/docs/reference/access-authn-authz/admission-controllers/#noderestriction) admission plugin.
--->
-### API 授权
-
-一旦通过身份认证，每个 API 的调用都将通过鉴权检查。
-Kubernetes 集成[基于角色的访问控制（RBAC）](/zh/docs/reference/access-authn-authz/rbac/)组件，
-将传入的用户或组与一组绑定到角色的权限匹配。
-这些权限将动作（get，create，delete）和资源（pod，service, node）在命名空间或者集群范围内结合起来，
-根据客户可能希望执行的操作，提供了一组提供合理的违约责任分离的外包角色。
-建议你将[节点](/zh/docs/reference/access-authn-authz/node/) 和
-[RBAC](/zh/docs/reference/access-authn-authz/rbac/) 一起作为授权者，再与
-[NodeRestriction](/zh/docs/reference/access-authn-authz/admission-controllers/#noderestriction)
-准入插件结合使用。
-
-<!--
-As with authentication, simple and broad roles may be appropriate for smaller clusters, but as
-more users interact with the cluster, it may become necessary to separate teams into separate
-namespaces with more limited roles.
--->
-与身份验证一样，简单而广泛的角色可能适合于较小的集群，但是随着更多的用户与集群交互，
-可能需要将团队划分成有更多角色限制的单独的命名空间。
-
-<!--
-With authorization, it is important to understand how updates on one object may cause actions in
-other places. For instance, a user may not be able to create pods directly, but allowing them to
-create a deployment, which creates pods on their behalf, will let them create those pods
-indirectly. Likewise, deleting a node from the API will result in the pods scheduled to that node
-being terminated and recreated on other nodes. The out of the box roles represent a balance
-between flexibility and the common use cases, but more limited roles should be carefully reviewed
-to prevent accidental escalation. You can make roles specific to your use case if the out-of-box ones don't meet your needs.
-
-Consult the [authorization reference section](/docs/reference/access-authn-authz/authorization/) for more information.
--->
-就鉴权而言，理解怎么样更新一个对象可能导致在其它地方的发生什么样的行为是非常重要的。
-例如，用户可能不能直接创建 Pod，但允许他们通过创建一个 Deployment 来创建这些 Pod，
-这将让他们间接创建这些 Pod。
-同样地，从 API 删除一个节点将导致调度到这些节点上的 Pod 被中止，并在其他节点上重新创建。
-原生的角色设计代表了灵活性和常见用例之间的平衡，但有限制的角色应该仔细审查，
-以防止意外升级。如果外包角色不满足你的需求，则可以为用例指定特定的角色。
-
-如果你希望获取更多信息，请参阅[鉴权参考](/zh/docs/reference/access-authn-authz/authorization/)。
-
-<!--
-## Controlling access to the Kubelet
-
-Kubelets expose HTTPS endpoints which grant powerful control over the node and containers. By default Kubelets allow unauthenticated access to this API.
-
-Production clusters should enable Kubelet authentication and authorization.
-
-Consult the [Kubelet authentication/authorization reference](/docs/admin/kubelet-authentication-authorization) for more information.
--->
-## 控制对 Kubelet 的访问
-
-Kubelet 公开 HTTPS 端点，这些端点授予节点和容器强大的控制权。
-默认情况下，Kubelet 允许对此 API 进行未经身份验证的访问。
-
-生产级别的集群应启用 Kubelet 身份验证和授权。
-
-如果你希望获取更多信息，请参考
-[Kubelet 身份验证/授权参考](/zh/docs/reference/command-line-tools-reference/kubelet-authentication-authorization/)。
-
-<!--
-## Controlling the capabilities of a workload or user at runtime
-
-Authorization in Kubernetes is intentionally high level, focused on coarse actions on resources.
-More powerful controls exist as **policies** to limit by use case how those objects act on the
-cluster, themselves, and other resources.
--->
-## 控制运行时负载或用户的能力
-
-Kubernetes 中的授权故意设置为了高层级，它侧重于对资源的粗粒度行为。
-更强大的控制是以通过用例限制这些对象如何作用于集群、自身和其他资源上的**策略**存在的。
-
-<!--
-### Limiting resource usage on a cluster
-
-[Resource quota](/docs/concepts/policy/resource-quotas/) limits the number or capacity of
-resources granted to a namespace. This is most often used to limit the amount of CPU, memory,
-or persistent disk a namespace can allocate, but can also control how many pods, services, or
-volumes exist in each namespace.
-
-[Limit ranges](/docs/tasks/administer-cluster/memory-default-namespace/) restrict the maximum or minimum size of some of the
-resources above, to prevent users from requesting unreasonably high or low values for commonly
-reserved resources like memory, or to provide default limits when none are specified.
--->
-### 限制集群上的资源使用
-
-[资源配额](/zh/docs/concepts/policy/resource-quotas/)
-限制了授予命名空间的资源的数量或容量。
-这通常用于限制命名空间可以分配的 CPU、内存或持久磁盘的数量，但也可以控制
-每个命名空间中有多少个 Pod、服务或卷的存在。
-
-[限制范围](/zh/docs/tasks/administer-cluster/manage-resources/memory-default-namespace/)限制
-上述某些资源的最大值或者最小值，以防止用户使用类似内存这样的通用保留资源时请求
-不合理的过高或过低的值，或者在没有指定的情况下提供默认限制。
-
-<!--
-### Controlling what privileges containers run with
-
-A pod definition contains a [security context](/docs/tasks/configure-pod-container/security-context/)
-that allows it to request access to running as a specific Linux user on a node (like root),
-access to run privileged or access the host network, and other controls that would otherwise
-allow it to run unfettered on a hosting node. [Pod security policies](/docs/concepts/policy/pod-security-policy/)
-can limit which users or service accounts can provide dangerous security context settings. For example, pod security policies can limit volume mounts, especially `hostPath`, which are aspects of a pod that should be controlled.
--->
-### 控制容器运行的特权
-
-Pod 定义包含了一个[安全上下文](/zh/docs/tasks/configure-pod-container/security-context/)，
-用于描述允许它请求访问某个节点上的特定 Linux 用户（如 root）、获得特权或访问主机网络、
-以及允许它在主机节点上不受约束地运行的其它控件。
-[Pod 安全策略](/zh/docs/concepts/policy/pod-security-policy/)
-可以限制哪些用户或服务帐户可以提供危险的安全上下文设置。
-例如，Pod 的安全策略可以限制卷挂载，尤其是 `hostpath`，这些都是 Pod 应该控制的一些方面。
-
-<!--
-Generally, most application workloads need limited access to host resources so they can
-successfully run as a root process (uid 0) without access to host information. However,
-considering the privileges associated with the root user, you should write application
-containers to run as a non-root user. Similarly, administrators who wish to prevent
-client applications from escaping their containers should use a restrictive pod security
-policy.
--->
-一般来说，大多数应用程序需要限制对主机资源的访问，
-他们可以在不能访问主机信息的情况下成功以根进程（UID 0）运行。
-但是，考虑到与 root 用户相关的特权，在编写应用程序容器时，你应该使用非 root 用户运行。
-类似地，希望阻止客户端应用程序逃避其容器的管理员，应该使用限制性的 pod 安全策略。
-
-<!--
-### Restricting network access
-
-The [network policies](/docs/tasks/administer-cluster/declare-network-policy/) for a namespace
-allows application authors to restrict which pods in other namespaces may access pods and ports
-within their namespaces. Many of the supported [Kubernetes networking providers](/docs/concepts/cluster-administration/networking/)
-now respect network policy.
--->
-### 限制网络访问
-
-基于命名空间的[网络策略](/zh/docs/tasks/administer-cluster/declare-network-policy/)
-允许应用程序作者限制其它命名空间中的哪些 Pod 可以访问它们命名空间内的 Pod 和端口。
-现在已经有许多支持网络策略的
-[Kubernetes 网络供应商](/zh/docs/concepts/cluster-administration/networking/)。
-
-<!--
-Quota and limit ranges can also be used to control whether users may request node ports or
-load balanced services, which on many clusters can control whether those users applications
-are visible outside of the cluster.
-
-Additional protections may be available that control network rules on a per plugin or per
-environment basis, such as per-node firewalls, physically separating cluster nodes to
-prevent cross talk, or advanced networking policy.
--->
-对于可以控制用户的应用程序是否在集群之外可见的许多集群，配额和限制范围也可用于
-控制用户是否可以请求节点端口或负载均衡服务。
-
-在插件或者环境基础上控制网络规则可以增加额外的保护措施，比如节点防火墙、物理分离
-群集节点以防止串扰、或者高级的网络策略。
-
-<!--
-### Restricting cloud metadata API access
-
-Cloud platforms (AWS, Azure, GCE, etc.) often expose metadata services locally to instances.
-By default these APIs are accessible by pods running on an instance and can contain cloud
-credentials for that node, or provisioning data such as kubelet credentials. These credentials
-can be used to escalate within the cluster or to other cloud services under the same account.
-
-When running Kubernetes on a cloud platform limit permissions given to instance credentials, use
-[network policies](/docs/tasks/administer-cluster/declare-network-policy/) to restrict pod access
-to the metadata API, and avoid using provisioning data to deliver secrets.
--->
-### 限制云 metadata API 访问
-
-云平台（AWS,  Azure, GCE 等）经常讲 metadate 本地服务暴露给实例。
-默认情况下，这些 API 可由运行在实例上的 Pod 访问，并且可以包含
-该云节点的凭据或配置数据（如 kubelet 凭据）。
-这些凭据可以用于在集群内升级或在同一账户下升级到其他云服务。
-
-在云平台上运行 Kubernetes 时，限制对实例凭据的权限，使用
-[网络策略](/zh/docs/tasks/administer-cluster/declare-network-policy/)
-限制对 metadata API 的 pod 访问，并避免使用配置数据来传递机密。
-
-<!--
-### Controlling which nodes pods may access
-
-By default, there are no restrictions on which nodes may run a pod.  Kubernetes offers a
-[rich set of policies for controlling placement of pods onto nodes](/docs/concepts/configuration/assign-pod-node/)
-and the [taint based pod placement and eviction](/docs/concepts/configuration/taint-and-toleration/)
-that are available to end users. For many clusters use of these policies to separate workloads
-can be a convention that authors adopt or enforce via tooling.
-
-As an administrator, a beta admission plugin `PodNodeSelector` can be used to force pods
-within a namespace to default or require a specific node selector, and if end users cannot
-alter namespaces, this can strongly limit the placement of all of the pods in a specific workload.
--->
-### 控制 Pod 可以访问哪些节点
-
-默认情况下，对哪些节点可以运行 pod 没有任何限制。
-Kubernetes 给最终用户提供了
-[一组丰富的策略用于控制 pod 放在节点上的位置](/zh/docs/concepts/scheduling-eviction/assign-pod-node/)，
-以及[基于污点的 Pod 放置和驱逐](/zh/docs/concepts/scheduling-eviction/taint-and-toleration/)。
-对于许多集群，可以约定由作者采用或者强制通过工具使用这些策略来分离工作负载。
-
-对于管理员，Beta 阶段的准入插件 `PodNodeSelector` 可用于强制命名空间中的 Pod
-使用默认或需要使用特定的节点选择器。
-如果最终用户无法改变命名空间，这可以强烈地限制所有的 pod 在特定工作负载的位置。
-
-<!--
-## Protecting cluster components from compromise
-
-This section describes some common patterns for protecting clusters from compromise.
--->
-## 保护集群组件免受破坏
-
-本节描述保护集群免受破坏的一些常见模式。
-
-<!--
-### Restrict access to etcd
-
-Write access to the etcd backend for the API is equivalent to gaining root on the entire cluster,
-and read access can be used to escalate fairly quickly. Administrators should always use strong
-credentials from the API servers to their etcd server, such as mutual auth via TLS client certificates,
-and it is often recommended to isolate the etcd servers behind a firewall that only the API servers
-may access.
-
-{{< caution >}}
-Allowing other components within the cluster to access the master etcd instance with
-read or write access to the full keyspace is equivalent to granting cluster-admin access. Using
-separate etcd instances for non-master components or using etcd ACLs to restrict read and write
-access to a subset of the keyspace is strongly recommended.
-{{< /caution >}}
--->
-### 限制访问 etcd
-
-对于 API 来说，拥有 etcd 后端的写访问权限，相当于获得了整个集群的 root 权限，
-并且可以使用写访问权限来相当快速地升级。
-从 API 服务器访问它们的 etcd 服务器，管理员应该使用广受信任的凭证，
-如通过 TLS 客户端证书的相互认证。
-通常，我们建议将 etcd 服务器隔离到只有API服务器可以访问的防火墙后面。
-
-{{< caution >}}
-允许集群中其它组件拥有读或写全空间的权限去访问 etcd 实例，相当于授予群集管理员访问的权限。
-对于非主控组件，强烈推荐使用单独的 etcd 实例，或者使用 etcd 的访问控制列表
-去限制只能读或者写空间的一个子集。
-{{< /caution >}}
-
-<!--
-### Enable audit logging
-
-The [audit logger](/docs/tasks/debug-application-cluster/audit/) is a beta feature that records actions taken by the
-API for later analysis in the event of a compromise. It is recommended to enable audit logging
-and archive the audit file on a secure server.
--->
-### 开启审计日志
-
-[审计日志](/zh/docs/tasks/debug-application-cluster/audit/)是 Beta 特性，
-负责记录 API 操作以便在发生破坏时进行事后分析。
-建议启用审计日志，并将审计文件归档到安全服务器上。
-
-<!--
-### Restrict access to alpha or beta features
-
-Alpha and beta Kubernetes features are in active development and may have limitations or bugs
-that result in security vulnerabilities. Always assess the value an alpha or beta feature may
-provide against the possible risk to your security posture. When in doubt, disable features you
-do not use.
--->
-### 限制使用 alpha 和 beta 特性
-
-Kubernetes 的 alpha 和 beta 特性还在努力开发中，可能存在导致安全漏洞的缺陷或错误。
-要始终评估 alpha 和 beta 特性可能为你的安全态势带来的风险。
-当你怀疑存在风险时，可以禁用那些不需要使用的特性。
-
-<!--
-### Rotate infrastructure credentials frequently
-
-The shorter the lifetime of a secret or credential the harder it is for an attacker to make
-use of that credential. Set short lifetimes on certificates and automate their rotation. Use
-an authentication provider that can control how long issued tokens are available and use short
-lifetimes where possible. If you use service account tokens in external integrations, plan to
-rotate those tokens frequently. For example, once the bootstrap phase is complete, a bootstrap token used for setting up nodes should be revoked or its authorization removed.
--->
-### 频繁回收基础设施证书
-
-一个 Secret 或凭据的寿命越短，攻击者就越难使用该凭据。
-在证书上设置短生命周期并实现自动回收，是控制安全的一个好方法。
-因此，使用身份验证提供程序时，应该要求可以控制发布令牌的可用时间，并尽可能使用短寿命。
-如果在外部集成中使用服务帐户令牌，则应该频繁地回收这些令牌。
-例如，一旦引导阶段完成，就应该撤销用于设置节点的引导令牌，或者取消它的授权。
-
-<!--
-### Review third party integrations before enabling them
-
-Many third party integrations to Kubernetes may alter the security profile of your cluster. When
-enabling an integration, always review the permissions that an extension requests before granting
-it access. For example, many security integrations may request access to view all secrets on
-your cluster which is effectively making that component a cluster admin. When in doubt,
-restrict the integration to functioning in a single namespace if possible.
-
-Components that create pods may also be unexpectedly powerful if they can do so inside namespaces
-like the `kube-system` namespace, because those pods can gain access to service account secrets
-or run with elevated permissions if those service accounts are granted access to permissive
-[pod security policies](/docs/concepts/policy/pod-security-policy/).
--->
-### 在启用第三方集成之前，请先审查它们
-
-许多集成到 Kubernetes 的第三方都可以改变你集群的安全配置。
-启用集成时，在授予访问权限之前，你应该始终检查扩展所请求的权限。
-例如，许多安全集成可以请求访问来查看集群上的所有 Secret，
-从而有效地使该组件成为集群管理。
-当有疑问时，如果可能的话，将集成限制在单个命名空间中运行。
-
-如果组件创建的 Pod 能够在命名空间中做一些类似 `kube-system` 命名空间中的事情，
-那么它也可能是出乎意料的强大。
-因为这些 Pod 可以访问服务账户的 Secret，或者，如果这些服务帐户被授予访问许可的
-[Pod 安全策略](/zh/docs/concepts/policy/pod-security-policy/)的权限，它们能以高权限运行。
-
-<!--
-### Encrypt secrets at rest
-
-In general, the etcd database will contain any information accessible via the Kubernetes API
-and may grant an attacker significant visibility into the state of your cluster. Always encrypt
-your backups using a well reviewed backup and encryption solution, and consider using full disk
-encryption where possible.
-
-Kubernetes 1.7 contains [encryption at rest](/docs/tasks/administer-cluster/encrypt-data/), an alpha feature that will encrypt `Secret` resources in etcd, preventing
-parties that gain access to your etcd backups from viewing the content of those secrets. While
-this feature is currently experimental, it may offer an additional level of defense when backups
-are not encrypted or an attacker gains read access to etcd.
--->
-### 对 Secret 进行静态加密
-
-一般情况下，etcd 数据库包含了通过 Kubernetes API 可以访问到的所有信息，
-并且可以授予攻击者对集群状态的可见性。
-始终使用经过良好审查的备份和加密解决方案来加密备份，并考虑在可能的情况下使用全磁盘加密。
-
-Kubernetes 1.7 包含了[静态数据加密](/zh/docs/tasks/administer-cluster/encrypt-data/)，
-它是一个 alpha 特性，会加密 etcd 里面的 `Secret` 资源，以防止某一方通过查看
-etcd 的备份文件查看到这些 Secret 的内容。虽然目前这还只是实验性的功能，
-但是在备份没有加密或者攻击者获取到 etcd 的读访问权限的时候，它能提供额外的防御层级。
-
-<!--
-### Receiving alerts for security updates and reporting vulnerabilities
-
-Join the [kubernetes-announce](https://groups.google.com/forum/#!forum/kubernetes-announce)
-group for emails about security announcements. See the [security reporting](/security/)
-page for more on how to report vulnerabilities.
--->
-### 接收安全更新和报告漏洞的警报
-
-加入 [kubernetes-announce](https://groups.google.com/forum/#!forum/kubernetes-announce)
-组，能够获取有关安全公告的邮件。有关如何报告漏洞的更多信息，请参见
-[安全报告](/zh/docs/reference/issues-security/security/)页面。
-
-
-
-
diff --git a/content/zh/docs/tasks/configmap-secret/managing-secret-using-config-file.md b/content/zh/docs/tasks/configmap-secret/managing-secret-using-config-file.md
deleted file mode 100644
index 7e155136ed..0000000000
--- a/content/zh/docs/tasks/configmap-secret/managing-secret-using-config-file.md
+++ /dev/null
@@ -1,268 +0,0 @@
----
-title: 使用配置文件管理 Secret
-content_type: task
-weight: 20
-description: 使用资源配置文件创建 Secret 对象。
----
-<!--  
-title: Managing Secrets using Configuration File
-content_type: task
-weight: 20
-description: Creating Secret objects using resource configuration file.
--->
-
-<!-- overview -->
-
-## {{% heading "prerequisites" %}}
-
-{{< include "task-tutorial-prereqs.md" >}}
-
-<!-- steps -->
-
-<!-- ## Create the Config file -->
-## 创建配置文件    {#create-the-config-file}
-
-<!-- 
-You can create a Secret in a file first, in JSON or YAML format, and then
-create that object.  The
-[Secret](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#secret-v1-core)
-resource contains two maps: `data` and `stringData`.
-The `data` field is used to store arbitrary data, encoded using base64. The
-`stringData` field is provided for convenience, and it allows you to provide
-Secret data as unencoded strings.
-The keys of `data` and `stringData` must consist of alphanumeric characters,
-`-`, `_` or `.`. 
--->
-你可以先用 JSON 或 YAML 格式在文件中创建 Secret，然后创建该对象。
-[Secret](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#secret-v1-core)
-资源包含2个键值对： `data` 和 `stringData`。
-`data` 字段用来存储 base64 编码的任意数据。
-提供 `stringData` 字段是为了方便，它允许 Secret 使用未编码的字符串。
-`data` 和 `stringData` 的键必须由字母、数字、`-`，`_` 或 `.` 组成。
-
-<!--  
-For example, to store two strings in a Secret using the `data` field, convert
-the strings to base64 as follows:
--->
-例如，要使用 Secret 的 `data` 字段存储两个字符串，请将字符串转换为 base64 ，如下所示：
-
-```shell
-echo -n 'admin' | base64
-```
-
-<!-- The output is similar to: -->
-输出类似于：
-
-```
-YWRtaW4=
-```
-
-```shell
-echo -n '1f2d1e2e67df' | base64
-```
-
-<!-- The output is similar to: -->
-输出类似于：
-
-```
-MWYyZDFlMmU2N2Rm
-```
-
-<!-- Write a Secret config file that looks like this: -->
-编写一个 Secret 配置文件，如下所示：
-
-```yaml
-apiVersion: v1
-kind: Secret
-metadata:
-  name: mysecret
-type: Opaque
-data:
-  username: YWRtaW4=
-  password: MWYyZDFlMmU2N2Rm
-```
-
-<!-- 
-Note that the name of a Secret object must be a valid
-[DNS subdomain name](/docs/concepts/overview/working-with-objects/names#dns-subdomain-names). 
--->
-注意，Secret 对象的名称必须是有效的 [DNS 子域名](/zh/docs/concepts/overview/working-with-objects/names#dns-subdomain-names). 
-
-{{< note >}}
-<!--  
-The serialized JSON and YAML values of Secret data are encoded as base64
-strings. Newlines are not valid within these strings and must be omitted. When
-using the `base64` utility on Darwin/macOS, users should avoid using the `-b`
-option to split long lines. Conversely, Linux users *should* add the option
-`-w 0` to `base64` commands or the pipeline `base64 | tr -d '\n'` if the `-w`
-option is not available.
--->
-Secret 数据的 JSON 和 YAML 序列化结果是以 base64 编码的。
-换行符在这些字符串中无效，必须省略。
-在 Darwin/macOS 上使用 `base64` 工具时，用户不应该使用 `-b` 选项分割长行。
-相反地，Linux 用户 *应该* 在 `base64` 地命令中添加 `-w 0` 选项，
-或者在 `-w` 选项不可用的情况下，输入 `base64 | tr -d '\n'`。
-{{< /note >}}
-
-<!-- 
-For certain scenarios, you may wish to use the `stringData` field instead. This
-field allows you to put a non-base64 encoded string directly into the Secret,
-and the string will be encoded for you when the Secret is created or updated.
--->
-对于某些场景，你可能希望使用 `stringData` 字段。
-这字段可以将一个非 base64 编码的字符串直接放入 Secret 中，
-当创建或更新该 Secret 时，此字段将被编码。
-
-<!--  
-A practical example of this might be where you are deploying an application
-that uses a Secret to store a configuration file, and you want to populate
-parts of that configuration file during your deployment process.
--->
-上述用例的实际场景可能是这样：当你部署应用时，使用 Secret 存储配置文件，
-你希望在部署过程中，填入部分内容到该配置文件。
-
-<!-- For example, if your application uses the following configuration file: -->
-例如，如果你的应用程序使用以下配置文件:
-
-```yaml
-apiUrl: "https://my.api.com/api/v1"
-username: "<user>"
-password: "<password>"
-```
-
-<!-- You could store this in a Secret using the following definition: -->
-你可以使用以下定义将其存储在 Secret 中:
-
-```yaml
-apiVersion: v1
-kind: Secret
-metadata:
-  name: mysecret
-type: Opaque
-stringData:
-  config.yaml: |
-    apiUrl: "https://my.api.com/api/v1"
-    username: <user>
-    password: <password>
-```
-
-<!-- ## Create the Secret object -->
-## 创建 Secret 对象    {#create-the-secret-object}
-
-<!-- Now create the Secret using [`kubectl apply`](/docs/reference/generated/kubectl/kubectl-commands#apply): -->
-现在使用 [`kubectl apply`](/docs/reference/generated/kubectl/kubectl-commands#apply) 创建 Secret：
-
-```shell
-kubectl apply -f ./secret.yaml
-```
-
-<!-- The output is similar to: -->
-输出类似于：
-
-```
-secret/mysecret created
-```
-
-<!-- ## Check the Secret -->
-## 检查 Secret   {#check-the-secret}
-
-<!--  
-The `stringData` field is a write-only convenience field. It is never output when
-retrieving Secrets. For example, if you run the following command:
--->
-`stringData` 字段是只写的。获取 Secret 时，此字段永远不会输出。
-例如，如果你运行以下命令：
-
-
-```shell
-kubectl get secret mysecret -o yaml
-```
-
-<!-- The output is similar to: -->
-输出类似于：
-
-```yaml
-apiVersion: v1
-data:
-  config.yaml: YXBpVXJsOiAiaHR0cHM6Ly9teS5hcGkuY29tL2FwaS92MSIKdXNlcm5hbWU6IHt7dXNlcm5hbWV9fQpwYXNzd29yZDoge3twYXNzd29yZH19
-kind: Secret
-metadata:
-  creationTimestamp: 2018-11-15T20:40:59Z
-  name: mysecret
-  namespace: default
-  resourceVersion: "7225"
-  uid: c280ad2e-e916-11e8-98f2-025000000001
-type: Opaque
-```
-
-<!--  
-The commands `kubectl get` and `kubectl describe` avoid showing the contents of a `Secret` by
-default. This is to protect the `Secret` from being exposed accidentally to an onlooker,
-or from being stored in a terminal log.
-To check the actual content of the encoded data, please refer to
-[decoding secret](/docs/tasks/configmap-secret/managing-secret-using-kubectl/#decoding-secret).
--->
-命令 `kubectl get` 和 `kubectl describe` 默认不显示 `Secret` 的内容。
-这是为了防止 `Secret` 意外地暴露给旁观者或者保存在终端日志中。
-检查编码数据的实际内容，请参考[解码 secret](/zh/docs/tasks/configmap-secret/managing-secret-using-kubectl/#decoding-secret).
-
-<!-- 
-If a field, such as `username`, is specified in both `data` and `stringData`,
-the value from `stringData` is used. For example, the following Secret definition: 
--->
-如果在 `data` 和 `stringData` 中都指定了一个字段，比如 `username`，字段值来自 `stringData`。
-例如，下面的 Secret 定义:
-
-```yaml
-apiVersion: v1
-kind: Secret
-metadata:
-  name: mysecret
-type: Opaque
-data:
-  username: YWRtaW4=
-stringData:
-  username: administrator
-```
-
-<!-- Results in the following Secret: -->
-结果有以下 Secret：
-
-```yaml
-apiVersion: v1
-data:
-  username: YWRtaW5pc3RyYXRvcg==
-kind: Secret
-metadata:
-  creationTimestamp: 2018-11-15T20:46:46Z
-  name: mysecret
-  namespace: default
-  resourceVersion: "7579"
-  uid: 91460ecb-e917-11e8-98f2-025000000001
-type: Opaque
-```
-
-<!-- Where `YWRtaW5pc3RyYXRvcg==` decodes to `administrator`. -->
-其中 `YWRtaW5pc3RyYXRvcg==` 解码成 `administrator`。
-
-<!-- ## Clean Up -->
-## 清理    {#clean-up}
-
-<!-- To delete the Secret you have created: -->
-删除你创建的 Secret：
-
-```shell
-kubectl delete secret mysecret
-```
-
-## {{% heading "whatsnext" %}}
-
-<!-- 
-- Read more about the [Secret concept](/docs/concepts/configuration/secret/)
-- Learn how to [manage Secrets with the `kubectl` command](/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
-- Learn how to [manage Secrets using kustomize](/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
--->
-- 进一步阅读 [Secret 概念](/zh/docs/concepts/configuration/secret/)
-- 了解如何[使用 `kubectl` 命令管理 Secret](/zh/docs/tasks/configmap-secret/managing-secret-using-kubectl/)
-- 了解如何[使用 kustomize 管理 Secret](/zh/docs/tasks/configmap-secret/managing-secret-using-kustomize/)
-
diff --git a/content/zh/docs/tasks/configure-pod-container/pull-image-private-registry.md b/content/zh/docs/tasks/configure-pod-container/pull-image-private-registry.md
deleted file mode 100644
index 6ddd85537b..0000000000
--- a/content/zh/docs/tasks/configure-pod-container/pull-image-private-registry.md
+++ /dev/null
@@ -1,266 +0,0 @@
----
-title: 从私有仓库拉取镜像
-content_type: task
-weight: 100
----
-
-<!--
-title: Pull an Image from a Private Registry
-content_type: task
-weight: 100
--->
-
-<!-- overview -->
-
-<!--
-This page shows how to create a Pod that uses a Secret to pull an image from a
-private Docker registry or repository.
--->
-本文介绍如何使用 Secret 从私有的 Docker 镜像仓库或代码仓库拉取镜像来创建 Pod。
-
-## {{% heading "prerequisites" %}}
-
-* {{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-<!--
-* To do this exercise, you need a
-[Docker ID](https://docs.docker.com/docker-id/) and password.
--->
-你需要 [Docker ID](https://docs.docker.com/docker-id/) 和密码来进行本练习。
-
-<!-- steps -->
-
-<!--
-## Log in to Docker
-
-On your laptop, you must authenticate with a registry in order to pull a private image:
--->
-## 登录 Docker 镜像仓库
-
-在个人电脑上，要想拉取私有镜像必须在镜像仓库上进行身份验证。
-
-```shell
-docker login
-```
-
-<!--
-When prompted, enter your Docker username and password.
-
-The login process creates or updates a `config.json` file that holds an authorization token.
-
-View the `config.json` file:
--->
-当出现提示时，输入 Docker 用户名和密码。
-
-登录过程会创建或更新保存有授权令牌的 `config.json` 文件。
-
-查看 `config.json` 文件：
-
-```shell
-cat ~/.docker/config.json
-```
-
-<!--
-The output contains a section similar to this:
--->
-输出结果包含类似于以下内容的部分：
-
-```json
-{
-    "auths": {
-        "https://index.docker.io/v1/": {
-            "auth": "c3R...zE2"
-        }
-    }
-}
-```
-
-<!--
-If you use a Docker credentials store, you won't see that `auth` entry but a `credsStore` entry with the name of the store as value.
--->
-{{< note >}}
-如果使用 Docker 凭证仓库，则不会看到 `auth` 条目，看到的将是以仓库名称作为值的 `credsStore` 条目。
-{{< /note >}}
-
-<!--
-## Create a Secret in the cluster that holds your authorization token
-
-A Kubernetes cluster uses the Secret of `docker-registry` type to authenticate with a container registry to pull a private image.
-
-Create this Secret, naming it `regcred`:
--->
-## 在集群中创建保存授权令牌的 Secret
-
-Kubernetes 集群使用 `docker-registry` 类型的 Secret 来通过容器仓库的身份验证，进而提取私有映像。
-
-创建 Secret，命名为 `regcred`：
-
-<!--
-kubectl create secret docker-registry regcred --docker-server=<your-registry-server> --docker-username=<your-name> --docker-password=<your-pword> --docker-email=<your-email>
--->
-```shell
-kubectl create secret docker-registry regcred \
-  --docker-server=<你的镜像仓库服务器> \
-  --docker-username=<你的用户名> \
-  --docker-password=<你的密码> \
-  --docker-email=<你的邮箱地址>
-```
-
-<!--
-where:
-
-* `<your-registry-server>` is your Private Docker Registry FQDN.
-  Use `https://index.docker.io/v2/` for DockerHub.
-* `<your-name>` is your Docker username.
-* `<your-pword>` is your Docker password.
-* `<your-email>` is your Docker email.
-
-You have successfully set your Docker credentials in the cluster as a Secret called `regcred`.
--->
-在这里：
-
-* `<your-registry-server>` 是你的私有 Docker 仓库全限定域名（FQDN）。
-  DockerHub 使用 `https://index.docker.io/v2/`。
-* `<your-name>` 是你的 Docker 用户名。
-* `<your-pword>` 是你的 Docker 密码。
-* `<your-email>` 是你的 Docker 邮箱。
-
-这样你就成功地将集群中的 Docker 凭据设置为名为 `regcred` 的 Secret。
-
-<!--
-## Inspecting the Secret `regcred`
-
-To understand the contents of the `regcred` Secret you created, start by viewing the Secret in YAML format:
--->
-## 检查 Secret `regcred`
-
-要了解你创建的 `regcred` Secret 的内容，可以用 YAML 格式进行查看：
-
-```shell
-kubectl get secret regcred --output=yaml
-```
-
-<!-- The output is similar to this: -->
-输出和下面类似：
-
-```yaml
-apiVersion: v1
-data:
-  .dockerconfigjson: eyJodHRwczovL2luZGV4L ... J0QUl6RTIifX0=
-kind: Secret
-metadata:
-  ...
-  name: regcred
-  ...
-type: kubernetes.io/dockerconfigjson
-```
-
-<!--
-The value of the `.dockerconfigjson` field is a base64 representation of your Docker credentials.
-
-To understand what is in the `.dockerconfigjson` field, convert the secret data to a
-readable format:
--->
-`.dockerconfigjson` 字段的值是 Docker 凭据的 base64 表示。
-
-要了解 `dockerconfigjson` 字段中的内容，请将 Secret 数据转换为可读格式：
-
-```shell
-kubectl get secret regcred --output="jsonpath={.data.\.dockerconfigjson}" | base64 --decode
-```
-
-<!-- The output is similar to this: -->
-输出和下面类似：
-
-```json
-{"auths":{"yourprivateregistry.com":{"username":"janedoe","password":"xxxxxxxxxxx","email":"jdoe@example.com","auth":"c3R...zE2"}}}
-```
-
-<!--
-To understand what is in the `auth` field, convert the base64-encoded data to a readable format:
--->
-要了解 `auth` 字段中的内容，请将 base64 编码过的数据转换为可读格式：
-
-```shell
-echo "c3R...zE2" | base64 --decode
-```
-
-<!--
-The output, username and password concatenated with a `:`, is similar to this:
--->
-输出结果中，用户名和密码用 `:` 链接，类似下面这样：
-
-```none
-janedoe:xxxxxxxxxxx
-```
-
-<!--
-Notice that the Secret data contains the authorization token similar to your local `~/.docker/config.json` file.
-
-You have successfully set your Docker credentials as a Secret called `regcred` in the cluster.
--->
-注意，Secret 数据包含与本地 `~/.docker/config.json` 文件类似的授权令牌。
-
-这样你就已经成功地将 Docker 凭据设置为集群中的名为 `regcred` 的 Secret。
-
-<!--
-## Create a Pod that uses your Secret
-
-Here is a configuration file for a Pod that needs access to your Docker credentials in `regcred`:
--->
-## 创建一个使用你的 Secret 的 Pod
-
-下面是一个 Pod 配置文件，它需要访问 `regcred` 中的 Docker 凭据：
-
-{{< codenew file="pods/private-reg-pod.yaml" >}}
-
-<!-- Download the above file: -->
-下载上述文件：
-
-```shell
-wget -O my-private-reg-pod.yaml https://k8s.io/examples/pods/private-reg-pod.yaml
-```
-
-<!--
-In file `my-private-reg-pod.yaml`, replace `<your-private-image>` with the path to an image in a private registry such as:
--->
-在`my-private-reg-pod.yaml` 文件中，使用私有仓库的镜像路径替换 `<your-private-image>`，例如：
-
-```none
-janedoe/jdoe-private:v1
-```
-
-<!--
-To pull the image from the private registry, Kubernetes needs credentials.
-The `imagePullSecrets` field in the configuration file specifies that
-Kubernetes should get the credentials from a Secret named `regcred`.
-
-Create a Pod that uses your Secret, and verify that the Pod is running:
--->
-要从私有仓库拉取镜像，Kubernetes 需要凭证。
-配置文件中的 `imagePullSecrets` 字段表明 Kubernetes 应该通过名为 `regcred` 的 Secret 获取凭证。
-
-创建使用了你的 Secret 的 Pod，并检查它是否正常运行：
-
-```shell
-kubectl apply -f my-private-reg-pod.yaml
-kubectl get pod private-reg
-```
-
-## {{% heading "whatsnext" %}}
-
-<!--
-* Learn more about [Secrets](/docs/concepts/configuration/secret/).
-* Learn more about [using a private registry](/docs/concepts/containers/images/#using-a-private-registry).
-* See [kubectl create secret docker-registry](/docs/reference/generated/kubectl/kubectl-commands/#-em-secret-docker-registry-em-).
-* See [Secret](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#secret-v1-core).
-* See the `imagePullSecrets` field of [PodSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core).
--->
-
-* 进一步了解 [Secret](/zh/docs/concepts/configuration/secret/)
-* 进一步了解 [使用私有仓库](/zh/docs/concepts/containers/images/#using-a-private-registry)
-* 参考 [kubectl create secret docker-registry](/docs/reference/generated/kubectl/kubectl-commands/#-em-secret-docker-registry-em-)
-* 参考 [Secret](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#secret-v1-core)
-* 参考 [PodSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core) 中的 `imagePullSecrets` 字段
-
-
diff --git a/content/zh/docs/tasks/configure-pod-container/share-process-namespace.md b/content/zh/docs/tasks/configure-pod-container/share-process-namespace.md
deleted file mode 100644
index 91e9e53733..0000000000
--- a/content/zh/docs/tasks/configure-pod-container/share-process-namespace.md
+++ /dev/null
@@ -1,187 +0,0 @@
----
-title: 在 Pod 中的容器之间共享进程命名空间
-min-kubernetes-server-version: v1.10
-content_type: task
-weight: 160
----
-<!--
----
-title: Share Process Namespace between Containers in a Pod
-min-kubernetes-server-version: v1.10
-reviewers:
-- verb
-- yujuhong
-- dchen1107
-content_type: task
-weight: 160
----
--->
-
-<!-- overview -->
-
-{{< feature-state state="stable" for_k8s_version="v1.17" >}}
-
-<!--
-This page shows how to configure process namespace sharing for a pod. When
-process namespace sharing is enabled, processes in a container are visible
-to all other containers in that pod.
--->
-此页面展示如何为 pod 配置进程命名空间共享。
-当启用进程命名空间共享时，容器中的进程对该 pod 中的所有其他容器都是可见的。
-
-<!--
-You can use this feature to configure cooperating containers, such as a log
-handler sidecar container, or to troubleshoot container images that don't
-include debugging utilities like a shell.
--->
-您可以使用此功能来配置协作容器，比如日志处理 sidecar 容器，或者对那些不包含诸如 shell 等调试实用工具的镜像进行故障排查。
-
-
-
-## {{% heading "prerequisites" %}}
-
-
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-
-
-<!-- steps -->
-
-<!--
-## Configure a Pod
--->
-## 配置 Pod
-
-<!--
-Process Namespace Sharing is enabled using the `ShareProcessNamespace` field of
-`v1.PodSpec`. For example:
--->
-进程命名空间共享使用 `v1.PodSpec` 中的 `ShareProcessNamespace` 字段启用。例如：
-
-{{< codenew file="pods/share-process-namespace.yaml" >}}
-
-<!--
-1. Create the pod `nginx` on your cluster:
-
-    ```shell
-    kubectl apply -f https://k8s.io/examples/pods/share-process-namespace.yaml
-    ```
-
-1. Attach to the `shell` container and run `ps`:
-
-    ```shell
-    kubectl attach -it nginx -c shell
-    ```
-
-    If you don't see a command prompt, try pressing enter.
-
-    ```
-    / # ps ax
-    PID   USER     TIME  COMMAND
-        1 root      0:00 /pause
-        8 root      0:00 nginx: master process nginx -g daemon off;
-       14 101       0:00 nginx: worker process
-       15 root      0:00 sh
-       21 root      0:00 ps ax
-    ```
--->
-1. 在集群中创建 `nginx` pod：
-
-    ```shell
-    kubectl apply -f https://k8s.io/examples/pods/share-process-namespace.yaml
-    ```
-1. 获取容器 `shell`，执行 `ps`：
-
-    ```shell
-    kubectl attach -it nginx -c shell
-    ```
-    如果没有看到命令提示符，请按 enter 回车键。
-
-    ```
-    / # ps ax
-    PID   USER     TIME  COMMAND
-        1 root      0:00 /pause
-        8 root      0:00 nginx: master process nginx -g daemon off;
-       14 101       0:00 nginx: worker process
-       15 root      0:00 sh
-       21 root      0:00 ps ax
-    ```
-<!--
-You can signal processes in other containers. For example, send `SIGHUP` to
-nginx to restart the worker process. This requires the `SYS_PTRACE` capability.
--->
-您可以在其他容器中对进程发出信号。例如，发送 `SIGHUP` 到 nginx 以重启工作进程。这需要 `SYS_PTRACE` 功能。
-
-```
-/ # kill -HUP 8
-/ # ps ax
-PID   USER     TIME  COMMAND
-    1 root      0:00 /pause
-    8 root      0:00 nginx: master process nginx -g daemon off;
-   15 root      0:00 sh
-   22 101       0:00 nginx: worker process
-   23 root      0:00 ps ax
-```
-
-<!--
-It's even possible to access another container image using the
-`/proc/$pid/root` link.
--->
-甚至可以使用 `/proc/$pid/root` 链接访问另一个容器镜像。
-
-```
-/ # head /proc/8/root/etc/nginx/nginx.conf
-
-user  nginx;
-worker_processes  1;
-
-error_log  /var/log/nginx/error.log warn;
-pid        /var/run/nginx.pid;
-
-
-events {
-    worker_connections  1024;
-```
-
-
-
-<!-- discussion -->
-
-<!--
-## Understanding Process Namespace Sharing
--->
-## 理解进程命名空间共享
-
-<!--
-Pods share many resources so it makes sense they would also share a process
-namespace. Some container images may expect to be isolated from other
-containers, though, so it's important to understand these differences:
--->
-Pod 共享许多资源，因此它们共享进程命名空间是很有意义的。
-不过，有些容器镜像可能希望与其他容器隔离，因此了解这些差异很重要:
-
-<!--
-1. **The container process no longer has PID 1.** Some container images refuse
-   to start without PID 1 (for example, containers using `systemd`) or run
-   commands like `kill -HUP 1` to signal the container process. In pods with a
-   shared process namespace, `kill -HUP 1` will signal the pod sandbox.
-   (`/pause` in the above example.)
-
-1. **Processes are visible to other containers in the pod.** This includes all
-   information visible in `/proc`, such as passwords that were passed as arguments
-   or environment variables. These are protected only by regular Unix permissions.
-
-1. **Container filesystems are visible to other containers in the pod through the
-   `/proc/$pid/root` link.** This makes debugging easier, but it also means
-   that filesystem secrets are protected only by filesystem permissions.
--->
-
-1. **容器进程不再具有 PID 1。** 在没有 PID 1 的情况下，一些容器镜像拒绝启动（例如，使用 `systemd` 的容器)，或者拒绝执行 `kill -HUP 1` 之类的命令来通知容器进程。在具有共享进程命名空间的 pod 中，`kill -HUP 1` 将通知 pod 沙箱（在上面的例子中是 `/pause`）。
-
-2. **进程对 pod 中的其他容器可见。** 这包括 `/proc` 中可见的所有信息，例如作为参数或环境变量传递的密码。这些仅受常规 Unix 权限的保护。
-
-3. **容器文件系统通过 `/proc/$pid/root` 链接对 pod 中的其他容器可见。** 这使调试更加容易，但也意味着文件系统安全性只受文件系统权限的保护。
-
-
-
-
diff --git a/content/zh/docs/tasks/debug-application-cluster/_index.md b/content/zh/docs/tasks/debug-application-cluster/_index.md
deleted file mode 100644
index 15912bf00c..0000000000
--- a/content/zh/docs/tasks/debug-application-cluster/_index.md
+++ /dev/null
@@ -1,5 +0,0 @@
----
-title: "监控、日志和排错"
-weight: 80
-description: 设置监视和日志记录以对集群进行故障排除或调试容器化应用。
----
diff --git a/content/zh/docs/tasks/debug-application-cluster/debug-application-introspection.md b/content/zh/docs/tasks/debug-application-cluster/debug-application-introspection.md
deleted file mode 100644
index 7210356959..0000000000
--- a/content/zh/docs/tasks/debug-application-cluster/debug-application-introspection.md
+++ /dev/null
@@ -1,541 +0,0 @@
----
-reviewers:
-- janetkuo
-- thockin
-content_type: concept
-title: 应用自测与调试
----
-
-<!-- overview -->
-
-<!--
-Once your application is running, you'll inevitably need to debug problems with it.
-Earlier we described how you can use `kubectl get pods` to retrieve simple status information about
-your pods. But there are a number of ways to get even more information about your application.
--->
-运行应用时，不可避免的需要定位问题。
-前面我们介绍了如何使用 `kubectl get pods` 来查询 pod 的简单信息。
-除此之外，还有一系列的方法来获取应用的更详细信息。
-
-<!-- body -->
-
-<!--
-## Using `kubectl describe pod` to fetch details about pods
--->
-## 使用 `kubectl describe pod` 命令获取 Pod 详情
-
-<!--
-For this example we'll use a Deployment to create two pods, similar to the earlier example.
--->
-与之前的例子类似，我们使用一个 Deployment 来创建两个 Pod。
-
-{{< codenew file="application/nginx-with-request.yaml" >}}
-
-<!--
-Create deployment by running following command:
--->
-使用如下命令创建 Deployment：
-
-```shell
-kubectl apply -f https://k8s.io/examples/application/nginx-with-request.yaml
-```
-
-```
-deployment.apps/nginx-deployment created
-```
-
-<!--
-Check pod status by following command:
--->
-使用如下命令查看 Pod 状态：
-
-```shell
-kubectl get pods
-```
-
-```
-NAME                                READY     STATUS    RESTARTS   AGE
-nginx-deployment-1006230814-6winp   1/1       Running   0          11s
-nginx-deployment-1006230814-fmgu3   1/1       Running   0          11s
-```
-
-<!--
-We can retrieve a lot more information about each of these pods using `kubectl describe pod`. For example:
--->
-我们可以使用 `kubectl describe pod` 命令来查询每个 Pod 的更多信息，比如：
-
-```shell
-kubectl describe pod nginx-deployment-1006230814-6winp
-```
-
-```
-Name:		nginx-deployment-1006230814-6winp
-Namespace:	default
-Node:		kubernetes-node-wul5/10.240.0.9
-Start Time:	Thu, 24 Mar 2016 01:39:49 +0000
-Labels:		app=nginx,pod-template-hash=1006230814
-Annotations:    kubernetes.io/created-by={"kind":"SerializedReference","apiVersion":"v1","reference":{"kind":"ReplicaSet","namespace":"default","name":"nginx-deployment-1956810328","uid":"14e607e7-8ba1-11e7-b5cb-fa16" ...
-Status:		Running
-IP:		10.244.0.6
-Controllers:	ReplicaSet/nginx-deployment-1006230814
-Containers:
-  nginx:
-    Container ID:	docker://90315cc9f513c724e9957a4788d3e625a078de84750f244a40f97ae355eb1149
-    Image:		nginx
-    Image ID:		docker://6f62f48c4e55d700cf3eb1b5e33fa051802986b77b874cc351cce539e5163707
-    Port:		80/TCP
-    QoS Tier:
-      cpu:	Guaranteed
-      memory:	Guaranteed
-    Limits:
-      cpu:	500m
-      memory:	128Mi
-    Requests:
-      memory:		128Mi
-      cpu:		500m
-    State:		Running
-      Started:		Thu, 24 Mar 2016 01:39:51 +0000
-    Ready:		True
-    Restart Count:	0
-    Environment:        <none>
-    Mounts:
-      /var/run/secrets/kubernetes.io/serviceaccount from default-token-5kdvl (ro)
-Conditions:
-  Type          Status
-  Initialized   True
-  Ready         True
-  PodScheduled  True
-Volumes:
-  default-token-4bcbi:
-    Type:	Secret (a volume populated by a Secret)
-    SecretName:	default-token-4bcbi
-    Optional:   false
-QoS Class:      Guaranteed
-Node-Selectors: <none>
-Tolerations:    <none>
-Events:
-  FirstSeen	LastSeen	Count	From					SubobjectPath		Type		Reason		Message
-  ---------	--------	-----	----					-------------		--------	------		-------
-  54s		54s		1	{default-scheduler }						Normal		Scheduled	Successfully assigned nginx-deployment-1006230814-6winp to kubernetes-node-wul5
-  54s		54s		1	{kubelet kubernetes-node-wul5}	spec.containers{nginx}	Normal		Pulling		pulling image "nginx"
-  53s		53s		1	{kubelet kubernetes-node-wul5}	spec.containers{nginx}	Normal		Pulled		Successfully pulled image "nginx"
-  53s		53s		1	{kubelet kubernetes-node-wul5}	spec.containers{nginx}	Normal		Created		Created container with docker id 90315cc9f513
-  53s		53s		1	{kubelet kubernetes-node-wul5}	spec.containers{nginx}	Normal		Started		Started container with docker id 90315cc9f513
-```
-
-<!--
-Here you can see configuration information about the container(s) and Pod (labels, resource requirements, etc.), 
-as well as status information about the container(s) and Pod (state, readiness, restart count, events, etc.).
--->
-这里可以看到容器和 Pod 的标签、资源需求等配置信息，还可以看到状态、就绪态、
-重启次数、事件等状态信息。
-
-<!--
-The container state is one of Waiting, Running, or Terminated. 
-Depending on the state, additional information will be provided -- here you can see that for a container in Running state, the system tells you when the container started.
--->
-容器状态是 Waiting、Running 和 Terminated 之一。
-根据状态的不同，还有对应的额外的信息 —— 在这里你可以看到，
-对于处于运行状态的容器，系统会告诉你容器的启动时间。
-
-<!--
-Ready tells you whether the container passed its last readiness probe. 
-(In this case, the container does not have a readiness probe configured; the container is assumed to be ready if no readiness probe is configured.)
--->
-Ready 指示是否通过了最后一个就绪态探测。
-(在本例中，容器没有配置就绪态探测；如果没有配置就绪态探测，则假定容器已经就绪。)
-
-<!--
-Restart Count tells you how many times the container has been restarted; 
-this information can be useful for detecting crash loops in containers that are configured with a restart policy of 'always.'
--->
-Restart Count 告诉你容器已重启的次数；
-这些信息对于定位配置了 “Always” 重启策略的容器持续崩溃问题非常有用。
-
-<!--
-Currently the only Condition associated with a Pod is the binary Ready condition, 
-which indicates that the pod is able to service requests and should be added to the load balancing pools of all matching services.
--->
-目前，唯一与 Pod 有关的状态是 Ready 状况，该状况表明 Pod 能够为请求提供服务，
-并且应该添加到相应服务的负载均衡池中。
-
-<!--
-Lastly, you see a log of recent events related to your Pod. 
-The system compresses multiple identical events by indicating the first and last time it was seen and the number of times it was seen. 
-"From" indicates the component that is logging the event, 
-"SubobjectPath" tells you which object (e.g. container within the pod) is being referred to, 
-and "Reason" and "Message" tell you what happened.
--->
-最后，你还可以看到与 Pod 相关的近期事件。
-系统通过指示第一次和最后一次看到事件以及看到该事件的次数来压缩多个相同的事件。
-“From” 标明记录事件的组件，
-“SubobjectPath” 告诉你引用了哪个对象（例如 Pod 中的容器），
-“Reason” 和 “Message” 告诉你发生了什么。
-
-<!--
-## Example: debugging Pending Pods
-
-A common scenario that you can detect using events is when you've created a Pod that won't fit on any node. 
-For example, the Pod might request more resources than are free on any node, 
-or it might specify a label selector that doesn't match any nodes. 
-Let's say we created the previous Deployment with 5 replicas (instead of 2) and requesting 600 millicores instead of 500, 
-on a four-node cluster where each (virtual) machine has 1 CPU. 
-In that case one of the Pods will not be able to schedule. 
-(Note that because of the cluster addon pods such as fluentd, skydns, etc., that run on each node, if we requested 1000 millicores then none of the Pods would be able to schedule.)
--->
-## 例子: 调试 Pending 状态的 Pod
-
-可以使用事件来调试的一个常见的场景是，你创建 Pod 无法被调度到任何节点。
-比如，Pod 请求的资源比较多，没有任何一个节点能够满足，或者它指定了一个标签，没有节点可匹配。
-假定我们创建之前的 Deployment 时指定副本数是 5（不再是 2），并且请求 600 毫核（不再是 500），
-对于一个 4 个节点的集群，若每个节点只有 1 个 CPU，这时至少有一个 Pod 不能被调度。
-（需要注意的是，其他集群插件 Pod，比如 fluentd、skydns 等等会在每个节点上运行，
-如果我们需求 1000 毫核，将不会有 Pod 会被调度。）
-
-```shell
-kubectl get pods
-```
-
-```
-NAME                                READY     STATUS    RESTARTS   AGE
-nginx-deployment-1006230814-6winp   1/1       Running   0          7m
-nginx-deployment-1006230814-fmgu3   1/1       Running   0          7m
-nginx-deployment-1370807587-6ekbw   1/1       Running   0          1m
-nginx-deployment-1370807587-fg172   0/1       Pending   0          1m
-nginx-deployment-1370807587-fz9sd   0/1       Pending   0          1m
-```
-
-<!--
-To find out why the nginx-deployment-1370807587-fz9sd pod is not running, we can use `kubectl describe pod` on the pending Pod and look at its events:
--->
-为了查找 Pod nginx-deployment-1370807587-fz9sd 没有运行的原因，我们可以使用
-`kubectl describe pod` 命令描述 Pod，查看其事件：
-
-```shell
-kubectl describe pod nginx-deployment-1370807587-fz9sd
-```
-
-```
-  Name:		nginx-deployment-1370807587-fz9sd
-  Namespace:	default
-  Node:		/
-  Labels:		app=nginx,pod-template-hash=1370807587
-  Status:		Pending
-  IP:
-  Controllers:	ReplicaSet/nginx-deployment-1370807587
-  Containers:
-    nginx:
-      Image:	nginx
-      Port:	80/TCP
-      QoS Tier:
-        memory:	Guaranteed
-        cpu:	Guaranteed
-      Limits:
-        cpu:	1
-        memory:	128Mi
-      Requests:
-        cpu:	1
-        memory:	128Mi
-      Environment Variables:
-  Volumes:
-    default-token-4bcbi:
-      Type:	Secret (a volume populated by a Secret)
-      SecretName:	default-token-4bcbi
-  Events:
-    FirstSeen	LastSeen	Count	From			        SubobjectPath	Type		Reason			    Message
-    ---------	--------	-----	----			        -------------	--------	------			    -------
-    1m		    48s		    7	    {default-scheduler }			        Warning		FailedScheduling	pod (nginx-deployment-1370807587-fz9sd) failed to fit in any node
-  fit failure on node (kubernetes-node-6ta5): Node didn't have enough resource: CPU, requested: 1000, used: 1420, capacity: 2000
-  fit failure on node (kubernetes-node-wul5): Node didn't have enough resource: CPU, requested: 1000, used: 1100, capacity: 2000
-```
-
-<!--
-Here you can see the event generated by the scheduler saying that the Pod failed to schedule for reason `FailedScheduling` (and possibly others).  
-The message tells us that there were not enough resources for the Pod on any of the nodes.
--->
-这里你可以看到由调度器记录的事件，它表明了 Pod 不能被调度的原因是 `FailedScheduling`（也可能是其他值）。
-其 message 部分表明没有任何节点拥有足够多的资源。
-
-<!--
-To correct this situation, you can use `kubectl scale` to update your Deployment to specify four or fewer replicas. (Or you could leave the one Pod pending, which is harmless.)
--->
-要纠正这种情况，可以使用 `kubectl scale` 更新 Deployment，以指定 4 个或更少的副本。
-(或者你可以让 Pod 继续保持这个状态，这是无害的。)
-
-<!--
-Events such as the ones you saw at the end of `kubectl describe pod` are persisted in etcd and 
-provide high-level information on what is happening in the cluster. 
-To list all events you can use
--->
-你在 `kubectl describe pod` 结尾处看到的事件都保存在 etcd 中，
-并提供关于集群中正在发生的事情的高级信息。
-如果需要列出所有事件，可使用命令：
-
-```shell
-kubectl get events
-```
-
-<!--
-but you have to remember that events are namespaced. 
-This means that if you're interested in events for some namespaced object 
-(e.g. what happened with Pods in namespace `my-namespace`) you need to explicitly provide a namespace to the command:
--->
-但是，需要注意的是，事件是区分名字空间的。
-如果你对某些名字空间域的对象（比如 `my-namespace` 名字下的 Pod）的事件感兴趣,
-你需要显式地在命令行中指定名字空间：
-
-```shell
-kubectl get events --namespace=my-namespace
-```
-
-<!--
-To see events from all namespaces, you can use the `--all-namespaces` argument.
--->
-查看所有 namespace 的事件，可使用 `--all-namespaces` 参数。
-
-<!--
-In addition to `kubectl describe pod`, another way to get extra information about a pod (beyond what is provided by `kubectl get pod`) is 
-to pass the `-o yaml` output format flag to `kubectl get pod`. 
-This will give you, in YAML format, even more information than `kubectl describe pod`--essentially all of the information the system has about the Pod. 
-Here you will see things like annotations (which are key-value metadata without the label restrictions, that is used internally by Kubernetes system components), 
-restart policy, ports, and volumes.
--->
-除了 `kubectl describe pod` 以外，另一种获取 Pod 额外信息（除了 `kubectl get pod`）的方法
-是给 `kubectl get pod` 增加 `-o yaml` 输出格式参数。
-该命令将以 YAML 格式为你提供比 `kubectl describe pod` 更多的信息 —— 实际上是系统拥有的关于 Pod 的所有信息。
-在这里，你将看到注解（没有标签限制的键值元数据，由 Kubernetes 系统组件在内部使用）、
-重启策略、端口和卷等。
-
-```shell
-kubectl get pod nginx-deployment-1006230814-6winp -o yaml
-```
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  annotations:
-    kubernetes.io/created-by: |
-      {"kind":"SerializedReference","apiVersion":"v1","reference":{"kind":"ReplicaSet","namespace":"default","name":"nginx-deployment-1006230814","uid":"4c84c175-f161-11e5-9a78-42010af00005","apiVersion":"extensions","resourceVersion":"133434"}}
-  creationTimestamp: 2016-03-24T01:39:50Z
-  generateName: nginx-deployment-1006230814-
-  labels:
-    app: nginx
-    pod-template-hash: "1006230814"
-  name: nginx-deployment-1006230814-6winp
-  namespace: default
-  resourceVersion: "133447"
-  uid: 4c879808-f161-11e5-9a78-42010af00005
-spec:
-  containers:
-  - image: nginx
-    imagePullPolicy: Always
-    name: nginx
-    ports:
-    - containerPort: 80
-      protocol: TCP
-    resources:
-      limits:
-        cpu: 500m
-        memory: 128Mi
-      requests:
-        cpu: 500m
-        memory: 128Mi
-    terminationMessagePath: /dev/termination-log
-    volumeMounts:
-    - mountPath: /var/run/secrets/kubernetes.io/serviceaccount
-      name: default-token-4bcbi
-      readOnly: true
-  dnsPolicy: ClusterFirst
-  nodeName: kubernetes-node-wul5
-  restartPolicy: Always
-  securityContext: {}
-  serviceAccount: default
-  serviceAccountName: default
-  terminationGracePeriodSeconds: 30
-  volumes:
-  - name: default-token-4bcbi
-    secret:
-      secretName: default-token-4bcbi
-status:
-  conditions:
-  - lastProbeTime: null
-    lastTransitionTime: 2016-03-24T01:39:51Z
-    status: "True"
-    type: Ready
-  containerStatuses:
-  - containerID: docker://90315cc9f513c724e9957a4788d3e625a078de84750f244a40f97ae355eb1149
-    image: nginx
-    imageID: docker://6f62f48c4e55d700cf3eb1b5e33fa051802986b77b874cc351cce539e5163707
-    lastState: {}
-    name: nginx
-    ready: true
-    restartCount: 0
-    state:
-      running:
-        startedAt: 2016-03-24T01:39:51Z
-  hostIP: 10.240.0.9
-  phase: Running
-  podIP: 10.244.0.6
-  startTime: 2016-03-24T01:39:49Z
-```
-
-<!--
-## Example: debugging a down/unreachable node
-
-Sometimes when debugging it can be useful to look at the status of a node 
--- for example, because you've noticed strange behavior of a Pod that's running on the node, 
-or to find out why a Pod won't schedule onto the node. 
-As with Pods, you can use `kubectl describe node` and `kubectl get node -o yaml` to 
-retrieve detailed information about nodes. 
-For example, here's what you'll see if a node is down 
-(disconnected from the network, or kubelet dies and won't restart, etc.). 
-Notice the events that show the node is NotReady, and 
-also notice that the pods are no longer running 
-(they are evicted after five minutes of NotReady status).
--->
-## 示例：调试宕机或无法联系的节点
-
-有时候，在调试时，查看节点的状态是很有用的 —— 例如，因为你已经注意到节点上运行的 Pod 的奇怪行为，
-或者想了解为什么 Pod 不会调度到节点上。
-与 Pod 一样，你可以使用 `kubectl describe node` 和 `kubectl get node -o yaml` 来查询节点的详细信息。
-例如，如果某个节点宕机（与网络断开连接，或者 kubelet 挂掉无法重新启动等等），你将看到以下情况。
-请注意显示节点未就绪的事件，也请注意 Pod 不再运行(它们在5分钟未就绪状态后被驱逐)。
-
-```shell
-kubectl get nodes
-```
-
-```
-NAME                     STATUS       ROLES     AGE     VERSION
-kubernetes-node-861h     NotReady     <none>    1h      v1.13.0
-kubernetes-node-bols     Ready        <none>    1h      v1.13.0
-kubernetes-node-st6x     Ready        <none>    1h      v1.13.0
-kubernetes-node-unaj     Ready        <none>    1h      v1.13.0
-```
-
-```shell
-kubectl describe node kubernetes-node-861h
-```
-
-```none
-Name:			kubernetes-node-861h
-Role
-Labels:		 kubernetes.io/arch=amd64
-           kubernetes.io/os=linux
-           kubernetes.io/hostname=kubernetes-node-861h
-Annotations:        node.alpha.kubernetes.io/ttl=0
-                    volumes.kubernetes.io/controller-managed-attach-detach=true
-Taints:             <none>
-CreationTimestamp:	Mon, 04 Sep 2017 17:13:23 +0800
-Phase:
-Conditions:
-  Type		Status		LastHeartbeatTime			LastTransitionTime			Reason					Message
-  ----    ------    -----------------     ------------------      ------          -------
-  OutOfDisk             Unknown         Fri, 08 Sep 2017 16:04:28 +0800         Fri, 08 Sep 2017 16:20:58 +0800         NodeStatusUnknown       Kubelet stopped posting node status.
-  MemoryPressure        Unknown         Fri, 08 Sep 2017 16:04:28 +0800         Fri, 08 Sep 2017 16:20:58 +0800         NodeStatusUnknown       Kubelet stopped posting node status.
-  DiskPressure          Unknown         Fri, 08 Sep 2017 16:04:28 +0800         Fri, 08 Sep 2017 16:20:58 +0800         NodeStatusUnknown       Kubelet stopped posting node status.
-  Ready                 Unknown         Fri, 08 Sep 2017 16:04:28 +0800         Fri, 08 Sep 2017 16:20:58 +0800         NodeStatusUnknown       Kubelet stopped posting node status.
-Addresses:	10.240.115.55,104.197.0.26
-Capacity:
- cpu:           2
- hugePages:     0
- memory:        4046788Ki
- pods:          110
-Allocatable:
- cpu:           1500m
- hugePages:     0
- memory:        1479263Ki
- pods:          110
-System Info:
- Machine ID:                    8e025a21a4254e11b028584d9d8b12c4
- System UUID:                   349075D1-D169-4F25-9F2A-E886850C47E3
- Boot ID:                       5cd18b37-c5bd-4658-94e0-e436d3f110e0
- Kernel Version:                4.4.0-31-generic
- OS Image:                      Debian GNU/Linux 8 (jessie)
- Operating System:              linux
- Architecture:                  amd64
- Container Runtime Version:     docker://1.12.5
- Kubelet Version:               v1.6.9+a3d1dfa6f4335
- Kube-Proxy Version:            v1.6.9+a3d1dfa6f4335
-ExternalID:                     15233045891481496305
-Non-terminated Pods:            (9 in total)
-  Namespace                     Name                                            CPU Requests    CPU Limits      Memory Requests Memory Limits
-  ---------                     ----                                            ------------    ----------      --------------- -------------
-......
-Allocated resources:
-  (Total limits may be over 100 percent, i.e., overcommitted.)
-  CPU Requests  CPU Limits      Memory Requests         Memory Limits
-  ------------  ----------      ---------------         -------------
-  900m (60%)    2200m (146%)    1009286400 (66%)        5681286400 (375%)
-Events:         <none>
-```
-
-```shell
-kubectl get node kubernetes-node-861h -o yaml
-```
-
-```yaml
-apiVersion: v1
-kind: Node
-metadata:
-  creationTimestamp: 2015-07-10T21:32:29Z
-  labels:
-    kubernetes.io/hostname: kubernetes-node-861h
-  name: kubernetes-node-861h
-  resourceVersion: "757"
-  selfLink: /api/v1/nodes/kubernetes-node-861h
-  uid: 2a69374e-274b-11e5-a234-42010af0d969
-spec:
-  externalID: "15233045891481496305"
-  podCIDR: 10.244.0.0/24
-  providerID: gce://striped-torus-760/us-central1-b/kubernetes-node-861h
-status:
-  addresses:
-  - address: 10.240.115.55
-    type: InternalIP
-  - address: 104.197.0.26
-    type: ExternalIP
-  capacity:
-    cpu: "1"
-    memory: 3800808Ki
-    pods: "100"
-  conditions:
-  - lastHeartbeatTime: 2015-07-10T21:34:32Z
-    lastTransitionTime: 2015-07-10T21:35:15Z
-    reason: Kubelet stopped posting node status.
-    status: Unknown
-    type: Ready
-  nodeInfo:
-    bootID: 4e316776-b40d-4f78-a4ea-ab0d73390897
-    containerRuntimeVersion: docker://Unknown
-    kernelVersion: 3.16.0-0.bpo.4-amd64
-    kubeProxyVersion: v0.21.1-185-gffc5a86098dc01
-    kubeletVersion: v0.21.1-185-gffc5a86098dc01
-    machineID: ""
-    osImage: Debian GNU/Linux 7 (wheezy)
-    systemUUID: ABE5F6B4-D44B-108B-C46A-24CCE16C8B6E
-```
-
-## {{% heading "whatsnext" %}}
-
-<!--
-Learn about additional debugging tools, including:
--->
-了解更多的调试工具：
-
-<!--
-* [Logging](/docs/concepts/cluster-administration/logging/)
-* [Monitoring](/docs/tasks/debug-application-cluster/resource-usage-monitoring/)
-* [Getting into containers via `exec`](/docs/tasks/debug-application-cluster/get-shell-running-container/)
-* [Connecting to containers via proxies](/docs/tasks/extend-kubernetes/http-proxy-access-api/)
-* [Connecting to containers via port forwarding](/docs/tasks/access-application-cluster/port-forward-access-application-cluster/)
-* [Inspect Kubernetes node with crictl](/docs/tasks/debug-application-cluster/crictl/)
--->
-* [日志](/zh/docs/concepts/cluster-administration/logging/)
-* [监控](/zh/docs/tasks/debug-application-cluster/resource-usage-monitoring/)
-* [使用 `exec` 进入容器](/zh/docs/tasks/debug-application-cluster/get-shell-running-container/)
-* [使用代理连接容器](/zh/docs/tasks/extend-kubernetes/http-proxy-access-api/)
-* [使用端口转发连接容器](/zh/docs/tasks/access-application-cluster/port-forward-access-application-cluster/)
-* [使用 crictl 检查节点](/zh/docs/tasks/debug-application-cluster/crictl/)
-
diff --git a/content/zh/docs/tasks/debug-application-cluster/debug-cluster.md b/content/zh/docs/tasks/debug-application-cluster/debug-cluster.md
deleted file mode 100644
index f97364dd4c..0000000000
--- a/content/zh/docs/tasks/debug-application-cluster/debug-cluster.md
+++ /dev/null
@@ -1,252 +0,0 @@
----
-title: 集群故障排查
-content_type: concept
----
-<!--
-reviewers:
-- davidopp
-title: Troubleshoot Clusters
-content_type: concept
--->
-
-<!-- overview -->
-
-<!--
-This doc is about cluster troubleshooting; we assume you have already ruled out your application as the root cause of the
-problem you are experiencing. See
-the [application troubleshooting guide](/docs/tasks/debug-application-cluster/debug-application) for tips on application debugging.
-You may also visit [troubleshooting document](/docs/tasks/debug-application-cluster/troubleshooting/) for more information.
--->
-本篇文档是介绍集群故障排查的；我们假设对于你碰到的问题，你已经排除了是由应用程序造成的。
-对于应用的调试，请参阅
-[应用故障排查指南](/zh/docs/tasks/debug-application-cluster/debug-application/)。
-你也可以访问[故障排查](/zh/docs/tasks/debug-application-cluster/troubleshooting/)
-来获取更多的信息。
-
-<!-- body -->
-
-<!--
-## Listing your cluster
-
-The first thing to debug in your cluster is if your nodes are all registered correctly.
-
-Run
--->
-## 列举集群节点
-
-调试的第一步是查看所有的节点是否都已正确注册。
-
-运行
-
-```shell
-kubectl get nodes
-```
-
-<!--
-And verify that all of the nodes you expect to see are present and that they are all in the `Ready` state.
-
-To get detailed information about the overall health of your cluster, you can run:
--->
-验证你所希望看见的所有节点都能够显示出来，并且都处于 `Ready` 状态。
-
-为了了解你的集群的总体健康状况详情，你可以运行：
-
-```shell
-kubectl cluster-info dump
-```
-
-<!--
-## Looking at logs
-
-For now, digging deeper into the cluster requires logging into the relevant machines.  Here are the locations
-of the relevant log files.  (note that on systemd-based systems, you may need to use `journalctl` instead)
--->
-## 查看日志
-
-到这里，挖掘出集群更深层的信息就需要登录到相关的机器上。下面是相关日志文件所在的位置。
-（注意，对于基于 systemd 的系统，你可能需要使用`journalctl`）。
-
-<!--
-### Master
-
-   * `/var/log/kube-apiserver.log` - API Server, responsible for serving the API
-   * `/var/log/kube-scheduler.log` - Scheduler, responsible for making scheduling decisions
-   * `/var/log/kube-controller-manager.log` - Controller that manages replication controllers
--->
-### 主控节点
-
-* `/var/log/kube-apiserver.log` - API 服务器, 提供API服务
-* `/var/log/kube-scheduler.log` - 调度器, 负责产生调度决策
-* `/var/log/kube-controller-manager.log` - 管理副本控制器的控制器
-
-<!--
-### Worker Nodes
-
-* `/var/log/kubelet.log` - Kubelet, responsible for running containers on the node
-* `/var/log/kube-proxy.log` - Kube Proxy, responsible for service load balancing
--->
-
-### 工作节点
-
-* `/var/log/kubelet.log` - `kubelet`，负责在节点运行容器
-* `/var/log/kube-proxy.log` - `kube-proxy`, 负责服务的负载均衡
-
-
-<!--
-## A general overview of cluster failure modes
-
-This is an incomplete list of things that could go wrong, and how to adjust your cluster setup to mitigate the problems.
--->
-## 集群故障模式的一般性概述
-
-下面是一个不完整的列表，列举了一些可能的出错场景，以及通过调整集群配置来解决相关问题的方法。
-
-<!--
-### Root causes:
-
-  - VM(s) shutdown
-  - Network partition within cluster, or between cluster and users
-  - Crashes in Kubernetes software
-  - Data loss or unavailability of persistent storage (e.g. GCE PD or AWS EBS volume)
-  - Operator error, for example misconfigured Kubernetes software or application software
--->
-### 根本原因
-
-  - VM(s) 关机
-  - 集群之间，或者集群和用户之间网络分裂
-  - Kubernetes 软件本身崩溃
-  - 数据丢失或者持久化存储不可用（如：GCE PD 或 AWS EBS 卷）
-  - 操作错误，如：Kubernetes 或者应用程序配置错误
-
-<!--
-### Specific scenarios:
-
-  - Apiserver VM shutdown or apiserver crashing
-    - Results
-      - unable to stop, update, or start new pods, services, replication controller
-      - existing pods and services should continue to work normally, unless they depend on the Kubernetes API
-  - Apiserver backing storage lost
-    - Results
-      - apiserver should fail to come up
-      - kubelets will not be able to reach it but will continue to run the same pods and provide the same service proxying
-      - manual recovery or recreation of apiserver state necessary before apiserver is restarted
--->
-### 具体情况:
-
-- API 服务器所在的 VM 关机或者 API 服务器崩溃
-  - 结果
-    - 不能停止、更新或者启动新的 Pod、服务或副本控制器
-    - 现有的 Pod 和服务在不依赖 Kubernetes API 的情况下应该能继续正常工作
-- API 服务器的后端存储丢失
-  - 结果
-    - API 服务器应该不能启动
-    - kubelet 将不能访问 API 服务器，但是能够继续运行之前的 Pod 和提供相同的服务代理
-    - 在 API 服务器重启之前，需要手动恢复或者重建 API 服务器的状态
-<!--
-  - Supporting services (node controller, replication controller manager, scheduler, etc) VM shutdown or crashes
-    - currently those are colocated with the apiserver, and their unavailability has similar consequences as apiserver
-    - in future, these will be replicated as well and may not be co-located
-    - they do not have their own persistent state
-  - Individual node (VM or physical machine) shuts down
-    - Results
-      - pods on that Node stop running
-  - Network partition
-    - Results
-      - partition A thinks the nodes in partition B are down; partition B thinks the apiserver is down. (Assuming the master VM ends up in partition A.)
--->
-- Kubernetes 服务组件（节点控制器、副本控制器管理器、调度器等）所在的 VM 关机或者崩溃
-  - 当前，这些控制器是和 API 服务器在一起运行的，它们不可用的现象是与 API 服务器类似的
-  - 将来，这些控制器也会复制为多份，并且可能不在运行于同一节点上
-  - 它们没有自己的持久状态
-- 单个节点（VM 或者物理机）关机
-  - 结果
-    - 此节点上的所有 Pod 都停止运行
-- 网络分裂
-  - 结果
-    - 分区 A 认为分区 B 中所有的节点都已宕机；分区 B 认为 API 服务器宕机
-      （假定主控节点所在的 VM 位于分区 A 内)。
-<!--
-  - Kubelet software fault
-    - Results
-      - crashing kubelet cannot start new pods on the node
-      - kubelet might delete the pods or not
-      - node marked unhealthy
-      - replication controllers start new pods elsewhere
-  - Cluster operator error
-    - Results
-      - loss of pods, services, etc
-      - lost of apiserver backing store
-      - users unable to read API
-      - etc.
--->
-- kubelet 软件故障
-  - 结果
-    - 崩溃的 kubelet 就不能在其所在的节点上启动新的 Pod
-    - kubelet 可能删掉 Pod 或者不删
-    - 节点被标识为非健康态
-    - 副本控制器会在其它的节点上启动新的 Pod
-- 集群操作错误
-  - 结果
-    - 丢失 Pod 或服务等等
-    - 丢失 API 服务器的后端存储
-    - 用户无法读取API
-    - 等等
-
-<!--
-### Mitigations:
-
-- Action: Use IaaS provider's automatic VM restarting feature for IaaS VMs
-  - Mitigates: Apiserver VM shutdown or apiserver crashing
-  - Mitigates: Supporting services VM shutdown or crashes
-
-- Action: Use IaaS providers reliable storage (e.g. GCE PD or AWS EBS volume) for VMs with apiserver+etcd
-  - Mitigates: Apiserver backing storage lost
-
-- Action: Use [high-availability](/docs/setup/production-environment/tools/kubeadm/high-availability/) configuration
-  - Mitigates: Control plane node shutdown or control plane components (scheduler, API server, controller-manager) crashing
-    - Will tolerate one or more simultaneous node or component failures
-  - Mitigates: API server backing storage (i.e., etcd's data directory) lost
-    - Assumes HA (highly-available) etcd configuration
--->
-### 缓解措施：
-
-- 措施：对于 IaaS 上的 VMs，使用 IaaS 的自动 VM 重启功能
-  - 缓解：API 服务器 VM 关机或 API 服务器崩溃
-  - 缓解：Kubernetes 服务组件所在的 VM 关机或崩溃
-
-- 措施: 对于运行 API 服务器和 etcd 的 VM，使用 IaaS 提供的可靠的存储（例如 GCE PD 或者 AWS EBS 卷）
-  - 缓解：API 服务器后端存储的丢失
-
-- 措施：使用[高可用性](/zh/docs/setup/production-environment/tools/kubeadm/high-availability/)的配置
-  - 缓解：主控节点 VM 关机或者主控节点组件（调度器、API 服务器、控制器管理器）崩馈
-    - 将容许一个或多个节点或组件同时出现故障
-  - 缓解：API 服务器后端存储（例如 etcd 的数据目录）丢失
-    - 假定你使用了高可用的 etcd 配置
-
-<!--
-- Action: Snapshot apiserver PDs/EBS-volumes periodically
-  - Mitigates: Apiserver backing storage lost
-  - Mitigates: Some cases of operator error
-  - Mitigates: Some cases of Kubernetes software fault
-
-- Action: use replication controller and services in front of pods
-  - Mitigates: Node shutdown
-  - Mitigates: Kubelet software fault
-
-- Action: applications (containers) designed to tolerate unexpected restarts
-  - Mitigates: Node shutdown
-  - Mitigates: Kubelet software fault
--->
-- 措施：定期对 API 服务器的 PDs/EBS 卷执行快照操作
-  - 缓解：API 服务器后端存储丢失
-  - 缓解：一些操作错误的场景
-  - 缓解：一些 Kubernetes 软件本身故障的场景
-
-- 措施：在 Pod 的前面使用副本控制器或服务
-  - 缓解：节点关机
-  - 缓解：kubelet 软件故障
-
-- 措施：应用（容器）设计成容许异常重启
-  - 缓解：节点关机
-  - 缓解：kubelet 软件故障
-
diff --git a/content/zh/docs/tasks/debug-application-cluster/debug-pod-replication-controller.md b/content/zh/docs/tasks/debug-application-cluster/debug-pod-replication-controller.md
deleted file mode 100644
index d3de42728c..0000000000
--- a/content/zh/docs/tasks/debug-application-cluster/debug-pod-replication-controller.md
+++ /dev/null
@@ -1,188 +0,0 @@
----
-title: 调试 Pods 和 ReplicationControllers
-content_type: task
----
-<!-- 
-reviewers:
-- bprashanth
-title: Debug Pods and ReplicationControllers
-content_type: task
--->
-
-<!-- overview -->
-
-<!-- 
-This page shows how to debug Pods and ReplicationControllers. 
--->
-此页面展示如何调试 Pod 和 ReplicationController。
-
-
-## {{% heading "prerequisites" %}}
-
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-<!-- 
-* You should be familiar with the basics of
-  [Pods](/docs/concepts/workloads/pods/) and [Pod Lifecycle](/docs/concepts/workloads/pods/pod-lifecycle/). 
--->
-* 你应该先熟悉 [Pods](/zh/docs/concepts/workloads/pods/) 和
-  [Pod 生命周期](/zh/docs/concepts/workloads/pods/pod-lifecycle/) 的基础概念。 
-
-<!-- steps -->
-
-<!-- 
-## Debugging Pods 
-
-The first step in debugging a pod is taking a look at it. Check the current
-state of the pod and recent events with the following command: 
--->
-## 调试 Pod  {#debugging-pods}
-
-调试一个 pod 的第一步是观察它。使用下面的命令检查 Pod 的当前状态和最近事件：
-
-```shell
-kubectl describe pods ${POD_NAME}
-```
-
-<!-- 
-Look at the state of the containers in the pod. Are they all `Running`?  Have
-there been recent restarts?
-
-Continue debugging depending on the state of the pods. 
--->
-看看 Pod 中的容器的状态。它们都是 `Running` 吗？最近有重启吗？
-
-根据 Pod 的状态继续调试。
-
-<!-- 
-### My pod stays pending 
--->
-
-<!-- 
-If a pod is stuck in `Pending` it means that it can not be scheduled onto a
-node. Generally this is because there are insufficient resources of one type or
-another that prevent scheduling. Look at the output of the `kubectl describe
-...` command above. There should be messages from the scheduler about why it
-can not schedule your pod. Reasons include: 
--->
-### 我的 Pod 停滞在 Pending 状态
-
-如果 Pod 被卡在 `Pending` 状态，就意味着它不能调度在某个节点上。一般来说，这是因为某种类型的资源不足而
-导致无法调度。 查看上面的命令 `kubectl describe ...` 的输出。调度器的消息中应该会包含无法调度 Pod 的原因。
-原因包括：
-
-<!-- 
-#### Insufficient resources 
-
-You may have exhausted the supply of CPU or Memory in your cluster. In this
-case you can try several things:
-
-* Add more nodes to the cluster.
-
-* [Terminate unneeded pods](/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)
-  to make room for pending pods.
-
-* Check that the pod is not larger than your nodes. For example, if all
-  nodes have a capacity of `cpu:1`, then a pod with a request of `cpu: 1.1`
-  will never be scheduled.
-
-    You can check node capacities with the `kubectl get nodes -o <format>`
-    command. Here are some example command lines that extract the necessary
-    information: 
--->
-#### 资源不足
-
-你可能已经耗尽了集群中供应的 CPU 或内存。在这个情况下你可以尝试几件事情：
-
-* 向集群中添加节点。
-
-* [终止不需要的 Pod](/zh/docs/concepts/workloads/pods/pod-lifecycle/#pod-termination)
-  为 Pending 状态的 Pod 提供空间。
-
-* 检查该 Pod 是否不大于你的节点。例如，如果全部节点具有 `cpu:1` 容量，那么具有
-  请求为 `cpu: 1.1` 的 Pod 永远不会被调度。
-
-  你可以使用 `kubectl get nodes -o <format>` 命令来检查节点容量。
-  下面是一些能够提取必要信息的命令示例：
-
-  ```shell
-  kubectl get nodes -o yaml | egrep '\sname:|cpu:|memory:'
-  kubectl get nodes -o json | jq '.items[] | {name: .metadata.name, cap: .status.capacity}'
-  ```
-
-<!-- 
-  The [resource quota](/docs/concepts/policy/resource-quotas/)
-  feature can be configured to limit the total amount of
-  resources that can be consumed. If used in conjunction with namespaces, it can
-  prevent one team from hogging all the resources. 
--->
-  可以考虑配置[资源配额](/zh/docs/concepts/policy/resource-quotas/) 来限制可耗用的资源总量。
-  如果与命名空间一起使用，它可以防止一个团队吞噬所有的资源。
-
-<!-- 
-#### Using hostPort 
-
-When you bind a pod to a `hostPort` there are a limited number of places that
-the pod can be scheduled. In most cases, `hostPort` is unnecessary; try using a
-service object to expose your pod. If you do require `hostPort` then you can
-only schedule as many pods as there are nodes in your container cluster. 
--->
-#### 使用hostPort
-
-当你将一个 Pod 绑定到某 `hostPort` 时，这个 Pod 能被调度的位置数量有限。
-在大多数情况下，`hostPort` 是不必要的; 尝试使用服务对象来暴露你的 Pod。
-如果你需要 `hostPort`，那么你可以调度的 Pod 数量不能超过集群的节点个数。
-
-<!-- 
-### My pod stays waiting 
-
-If a pod is stuck in the `Waiting` state, then it has been scheduled to a
-worker node, but it can't run on that machine. Again, the information from
-`kubectl describe ...` should be informative. The most common cause of
-`Waiting` pods is a failure to pull the image. There are three things to check: 
-
-* Make sure that you have the name of the image correct.
-* Have you pushed the image to the repository?
-* Run a manual `docker pull <image>` on your machine to see if the image can be
-  pulled.
--->
-### 我的 Pod 一直在 Waiting
-
-如果 Pod 一直停滞在 `Waiting` 状态，那么它已被调度在某个工作节点，但它不能在该机器上运行。
-再次，来自 `kubectl describe ...` 的内容应该是可以是很有用的。
-最常见的原因 `Waiting` 的 Pod 是无法拉取镜像。有三件事要检查：
-
-* 确保你的镜像的名称正确。
-* 你是否将镜像推送到存储库？
-* 在你的机器上手动运行 `docker pull <image>`，看看是否可以拉取镜像。
-
-<!-- 
-### My pod is crashing or otherwise unhealthy 
-
-Once your pod has been scheduled, the methods described in [Debug Running Pods](
-/docs/tasks/debug-application-cluster/debug-running-pod/) are available for debugging.
--->
-### 我的 Pod 一直 Crashing 或者其他不健康状态
-
-一旦 Pod 已经被调度，就可以依据
-[调试运行中的 Pod](/zh/docs/tasks/debug-application-cluster/debug-running-pod/)
-展开进一步的调试工作。
-
-<!-- 
-## Debugging ReplicationControllers 
-
-ReplicationControllers are fairly straightforward. They can either create pods
-or they can't. If they can't create pods, then please refer to the
-[instructions above](#debugging-pods) to debug your pods. 
--->
-## 调试 Replication Controller
-
-Replication Controller 相当简单。它们或者能或者不能创建 Pod。如果它们无法创建 Pod，
-请参考[上面的说明](#debugging_pods) 来调试你的 Pod。
-
-<!-- 
-You can also use `kubectl describe rc ${CONTROLLER_NAME}` to inspect events
-related to the replication controller. 
--->
-你也可以使用 `kubectl describe rc ${CONTROLLER_NAME}` 来检查和副本控制器有关的事件。
-
diff --git a/content/zh/docs/tasks/debug-application-cluster/debug-running-pod.md b/content/zh/docs/tasks/debug-application-cluster/debug-running-pod.md
deleted file mode 100644
index 0eb101d4c3..0000000000
--- a/content/zh/docs/tasks/debug-application-cluster/debug-running-pod.md
+++ /dev/null
@@ -1,507 +0,0 @@
----
-title: 调试运行中的 Pod
-content_type: task
----
-
-<!-- overview -->
-<!--
-This page explains how to debug Pods running (or crashing) on a Node.
--->
-本页解释如何在节点上调试运行中（或崩溃）的 Pod。
-
-## {{% heading "prerequisites" %}}
-
-<!--
-* Your {{< glossary_tooltip text="Pod" term_id="pod" >}} should already be
-  scheduled and running. If your Pod is not yet running, start with [Troubleshoot
-  Applications](/docs/tasks/debug-application-cluster/debug-application/).
-* For some of the advanced debugging steps you need to know on which Node the
-  Pod is running and have shell access to run commands on that Node. You don't
-  need that access to run the standard debug steps that use `kubectl`.
--->
-* 你的 {{< glossary_tooltip text="Pod" term_id="pod" >}} 应该已经被调度并正在运行中，
-  如果你的 Pod 还没有运行，请参阅
-  [应用问题排查](/zh/docs/tasks/debug-application-cluster/debug-application/)。
-
-* 对于一些高级调试步骤，你应该知道 Pod 具体运行在哪个节点上，在该节点上有权限去运行一些命令。
-  你不需要任何访问权限就可以使用 `kubectl` 去运行一些标准调试步骤。
-
-<!-- steps -->
-
-<!--
-## Examining pod logs {#examine-pod-logs}
-
-First, look at the logs of the affected container:
-
-```shell
-kubectl logs ${POD_NAME} ${CONTAINER_NAME}
-```
-
-If your container has previously crashed, you can access the previous container's crash log with:
-
-```shell
-kubectl logs --previous ${POD_NAME} ${CONTAINER_NAME}
-```
--->
-## 检查 Pod 的日志 {#examine-pod-logs}
-
-首先，查看受到影响的容器的日志：
-
-```shell
-kubectl logs ${POD_NAME} ${CONTAINER_NAME}
-```
-
-如果你的容器之前崩溃过，你可以通过下面命令访问之前容器的崩溃日志：
-
-```shell
-kubectl logs --previous ${POD_NAME} ${CONTAINER_NAME}
-```
-
-<!--
-## Debugging with container exec {#container-exec}
-
-```shell
-kubectl exec ${POD_NAME} -c ${CONTAINER_NAME} -- ${CMD} ${ARG1} ${ARG2} ... ${ARGN}
-```
-
-As an example, to look at the logs from a running Cassandra pod, you might run
-
-```shell
-kubectl exec cassandra -- cat /var/log/cassandra/system.log
-```
-
-You can run a shell that's connected to your terminal using the `-i` and `-t`
-arguments to `kubectl exec`, for example:
-
-```shell
-kubectl exec -it cassandra -- sh
-```
-
-For more details, see [Get a Shell to a Running Container](
-/docs/tasks/debug-application-cluster/get-shell-running-container/).
--->
-## 使用容器 exec 进行调试 {#container-exec}
-
-如果 {{< glossary_tooltip text="容器镜像" term_id="image" >}} 包含调试程序，
-比如从 Linux 和 Windows 操作系统基础镜像构建的镜像，你可以使用 `kubectl exec` 命令
-在特定的容器中运行一些命令：
-
-```shell
-kubectl exec ${POD_NAME} -c ${CONTAINER_NAME} -- ${CMD} ${ARG1} ${ARG2} ... ${ARGN}
-```
-{{< note >}}
-`-c ${CONTAINER_NAME}` 是可选择的。如果Pod中仅包含一个容器，就可以忽略它。
-{{< /note >}}
-
-例如，要查看正在运行的 Cassandra pod中的日志，可以运行：
-
-```shell
-kubectl exec cassandra -- cat /var/log/cassandra/system.log
-```
-
-你可以在 `kubectl exec` 命令后面加上 `-i` 和 `-t` 来运行一个连接到你的终端的 Shell，比如：
-
-```shell
-kubectl exec -it cassandra -- sh
-```
-
-若要了解更多内容，可查看[获取正在运行容器的 Shell](/zh/docs/tasks/debug-application-cluster/get-shell-running-container/)。
-
-<!--
-## Debugging with an ephemeral debug container {#ephemeral-container}
-
-{{< feature-state state="alpha" for_k8s_version="v1.22" >}}
-
-{{< glossary_tooltip text="Ephemeral containers" term_id="ephemeral-container" >}}
-are useful for interactive troubleshooting when `kubectl exec` is insufficient
-because a container has crashed or a container image doesn't include debugging
-utilities, such as with [distroless images](
-https://github.com/GoogleContainerTools/distroless).
--->
-## 使用临时调试容器来进行调试 {#ephemeral-container}
-
-{{< feature-state state="alpha" for_k8s_version="v1.22" >}}
-
-当由于容器崩溃或容器镜像不包含调试程序（例如[无发行版镜像](https://github.com/GoogleContainerTools/distroless)等）
-而导致 `kubectl exec` 无法运行时，{{< glossary_tooltip text="临时容器" term_id="ephemeral-container" >}}对于排除交互式故障很有用。
-
-<!--
-### Example debugging using ephemeral containers {#ephemeral-container-example}
-
-The examples in this section require the `EphemeralContainers` [feature gate](
-/docs/reference/command-line-tools-reference/feature-gates/) enabled in your
-cluster and `kubectl` version v1.22 or later.
-
-You can use the `kubectl debug` command to add ephemeral containers to a
-running Pod. First, create a pod for the example:
-
-```shell
-kubectl run ephemeral-demo --image=k8s.gcr.io/pause:3.1 --restart=Never
-```
-
-This section use the `pause` container image in examples because it does not
-contain debugging utilities, but this method works with all container
-images.
--->
-## 使用临时容器来调试的例子 {#ephemeral-container-example}
-
-{{< note >}}
-本示例需要你的集群已经开启 `EphemeralContainers`
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)，
-`kubectl` 版本为 v1.22 或者更高。
-{{< /note >}}
-
-你可以使用 `kubectl debug` 命令来给正在运行中的 Pod 增加一个临时容器。
-首先，像示例一样创建一个 pod：
-
-```shell
-kubectl run ephemeral-demo --image=k8s.gcr.io/pause:3.1 --restart=Never
-```
-
-{{< note >}}
-本节示例中使用 `pause` 容器镜像，因为它不包含调试程序，但是这个方法适用于所有容器镜像。
-{{< /note >}}
-
-<!--
-If you attempt to use `kubectl exec` to create a shell you will see an error
-because there is no shell in this container image.
-
-```shell
-kubectl exec -it ephemeral-demo -- sh
-```
-
-```
-OCI runtime exec failed: exec failed: container_linux.go:346: starting container process caused "exec: \"sh\": executable file not found in $PATH": unknown
-```
-
-You can instead add a debugging container using `kubectl debug`. If you
-specify the `-i`/`--interactive` argument, `kubectl` will automatically attach
-to the console of the Ephemeral Container.
-
-```shell
-kubectl debug -it ephemeral-demo --image=busybox --target=ephemeral-demo
-```
-
-```
-Defaulting debug container name to debugger-8xzrl.
-If you don't see a command prompt, try pressing enter.
-/ #
-```
--->
-如果你尝试使用 `kubectl exec` 来创建一个 shell，你将会看到一个错误，因为这个容器镜像中没有 shell。
-
-```shell
-kubectl exec -it ephemeral-demo -- sh
-```
-
-```
-OCI runtime exec failed: exec failed: container_linux.go:346: starting container process caused "exec: \"sh\": executable file not found in $PATH": unknown
-```
-
-你可以改为使用 `kubectl debug` 添加调试容器。
-如果你指定 `-i` 或者 `--interactive` 参数，`kubectl` 将自动挂接到临时容器的控制台。
-
-```shell
-kubectl debug -it ephemeral-demo --image=busybox --target=ephemeral-demo
-```
-
-```
-Defaulting debug container name to debugger-8xzrl.
-If you don't see a command prompt, try pressing enter.
-/ #
-```
-
-<!--
-This command adds a new busybox container and attaches to it. The `--target`
-parameter targets the process namespace of another container. It's necessary
-here because `kubectl run` does not enable [process namespace sharing](
-/docs/tasks/configure-pod-container/share-process-namespace/) in the pod it
-creates.
-
-The `--target` parameter must be supported by the {{< glossary_tooltip
-text="Container Runtime" term_id="container-runtime" >}}. When not supported,
-the Ephemeral Container may not be started, or it may be started with an
-isolated process namespace so that `ps` does not reveal processes in other containers.
-
-You can view the state of the newly created ephemeral container using `kubectl describe`:
--->
-此命令添加一个新的 busybox 容器并将其挂接到该容器。`--target` 参数指定另一个容器的进程命名空间。
-这是必需的，因为 `kubectl run` 不能在它创建的pod中启用
-[共享进程命名空间](/zh/docs/tasks/configure-pod-container/share-process-namespace/)。
-
-{{< note >}}
-{{< glossary_tooltip text="容器运行时" term_id="container-runtime" >}}必须支持`--target`参数。
-如果不支持，则临时容器可能不会启动，或者可能使用隔离的进程命名空间启动，
-以便 `ps` 不显示其他容器内的进程。
-{{< /note >}}
-
-你可以使用 `kubectl describe` 查看新创建的临时容器的状态：
-
-```shell
-kubectl describe pod ephemeral-demo
-```
-
-```
-...
-Ephemeral Containers:
-  debugger-8xzrl:
-    Container ID:   docker://b888f9adfd15bd5739fefaa39e1df4dd3c617b9902082b1cfdc29c4028ffb2eb
-    Image:          busybox
-    Image ID:       docker-pullable://busybox@sha256:1828edd60c5efd34b2bf5dd3282ec0cc04d47b2ff9caa0b6d4f07a21d1c08084
-    Port:           <none>
-    Host Port:      <none>
-    State:          Running
-      Started:      Wed, 12 Feb 2020 14:25:42 +0100
-    Ready:          False
-    Restart Count:  0
-    Environment:    <none>
-    Mounts:         <none>
-...
-```
-
-<!--
-Use `kubectl delete` to remove the Pod when you're finished:
--->
-使用 `kubectl delete` 来移除已经结束掉的 Pod：
-
-```shell
-kubectl delete pod ephemeral-demo
-```
-
-<!--
-## Debugging using a copy of the Pod
--->
-## 通过 Pod 副本调试
-
-<!--
-Sometimes Pod configuration options make it difficult to troubleshoot in certain
-situations. For example, you can't run `kubectl exec` to troubleshoot your
-container if your container image does not include a shell or if your application
-crashes on startup. In these situations you can use `kubectl debug` to create a
-copy of the Pod with configuration values changed to aid debugging.
--->
-有些时候 Pod 的配置参数使得在某些情况下很难执行故障排查。
-例如，在容器镜像中不包含 shell 或者你的应用程序在启动时崩溃的情况下，
-就不能通过运行 `kubectl exec` 来排查容器故障。
-在这些情况下，你可以使用 `kubectl debug` 来创建 Pod 的副本，通过更改配置帮助调试。
-
-<!--
-### Copying a Pod while adding a new container
--->
-### 在添加新的容器时创建 Pod 副本
-
-<!--
-Adding a new container can be useful when your application is running but not
-behaving as you expect and you'd like to add additional troubleshooting
-utilities to the Pod.
--->
-当应用程序正在运行但其表现不符合预期时，你会希望在 Pod 中添加额外的调试工具，
-这时添加新容器是很有用的。
-
-<!--
-For example, maybe your application's container images are built on `busybox`
-but you need debugging utilities not included in `busybox`. You can simulate
-this scenario using `kubectl run`:
--->
-例如，应用的容器镜像是建立在 `busybox` 的基础上，
-但是你需要 `busybox` 中并不包含的调试工具。
-你可以使用 `kubectl run` 模拟这个场景:
-
-```shell
-kubectl run myapp --image=busybox --restart=Never -- sleep 1d
-```
-<!--
-Run this command to create a copy of `myapp` named `myapp-debug` that adds a
-new Ubuntu container for debugging:
--->
-通过运行以下命令，建立 `myapp` 的一个名为 `myapp-debug` 的副本，
-新增了一个用于调试的 Ubuntu 容器，
-
-```shell
-kubectl debug myapp -it --image=ubuntu --share-processes --copy-to=myapp-debug
-```
-
-```
-Defaulting debug container name to debugger-w7xmf.
-If you don't see a command prompt, try pressing enter.
-root@myapp-debug:/#
-```
-<!--
-{{< note >}}
-* `kubectl debug` automatically generates a container name if you don't choose
-  one using the `--container` flag.
-* The `-i` flag causes `kubectl debug` to attach to the new container by
-  default.  You can prevent this by specifying `--attach=false`. If your session
-  becomes disconnected you can reattach using `kubectl attach`.
-* The `--share-processes` allows the containers in this Pod to see processes
-  from the other containers in the Pod. For more information about how this
-  works, see [Share Process Namespace between Containers in a Pod](
-  /docs/tasks/configure-pod-container/share-process-namespace/).
-{{< /note >}}
--->
-{{< note >}}
-* 如果你没有使用 `--container` 指定新的容器名，`kubectl debug` 会自动生成的。
-* 默认情况下，`-i` 标志使 `kubectl debug` 附加到新容器上。
-  你可以通过指定 `--attach=false` 来防止这种情况。
-  如果你的会话断开连接，你可以使用 `kubectl attach` 重新连接。
-* `--share-processes` 允许在此 Pod 中的其他容器中查看该容器的进程。
-  参阅[在 Pod 中的容器之间共享进程命名空间](/zh/docs/tasks/configure-pod-container/share-process-namespace/)
-  获取更多信息。
-{{< /note >}}
-
-<!--
-Don't forget to clean up the debugging Pod when you're finished with it:
--->
-不要忘了清理调试 Pod：
-
-```shell
-kubectl delete pod myapp myapp-debug
-```
-
-<!--
-### Copying a Pod while changing its command
--->
-### 在改变 Pod 命令时创建 Pod 副本
-
-<!--
-Sometimes it's useful to change the command for a container, for example to
-add a debugging flag or because the application is crashing.
--->
-有时更改容器的命令很有用，例如添加调试标志或因为应用崩溃。
-
-<!--
-To simulate a crashing application, use `kubectl run` to create a container
-that immediately exits:
--->
-为了模拟应用崩溃的场景，使用 `kubectl run` 命令创建一个立即退出的容器：
-
-```
-kubectl run --image=busybox myapp -- false
-```
-
-<!--
-You can see using `kubectl describe pod myapp` that this container is crashing:
--->
-使用 `kubectl describe pod myapp` 命令，你可以看到容器崩溃了：
-
-```
-Containers:
-  myapp:
-    Image:         busybox
-    ...
-    Args:
-      false
-    State:          Waiting
-      Reason:       CrashLoopBackOff
-    Last State:     Terminated
-      Reason:       Error
-      Exit Code:    1
-```
-
-<!--
-You can use `kubectl debug` to create a copy of this Pod with the command
-changed to an interactive shell:
--->
-你可以使用 `kubectl debug` 命令创建该 Pod 的一个副本，
-在该副本中命令改变为交互式 shell：
-
-```
-kubectl debug myapp -it --copy-to=myapp-debug --container=myapp -- sh
-```
-
-```
-If you don't see a command prompt, try pressing enter.
-/ #
-```
-
-<!--
-Now you have an interactive shell that you can use to perform tasks like
-checking filesystem paths or running the container command manually.
--->
-现在你有了一个可以执行类似检查文件系统路径或者手动运行容器命令的交互式 shell。 
-
-<!--
-{{< note >}}
-* To change the command of a specific container you must
-  specify its name using `--container` or `kubectl debug` will instead
-  create a new container to run the command you specified.
-* The `-i` flag causes `kubectl debug` to attach to the container by default.
-  You can prevent this by specifying `--attach=false`. If your session becomes
-  disconnected you can reattach using `kubectl attach`.
-{{< /note >}}
--->
-{{< note >}}
-* 要更改指定容器的命令，你必须用 `--container` 命令指定容器的名字，
-  否则 `kubectl debug` 将建立一个新的容器运行你指定的命令。
-* 默认情况下，标志 `-i` 使 `kubectl debug` 附加到容器。
-  你可通过指定 `--attach=false` 来防止这种情况。
-  如果你的断开连接，可以使用 `kubectl attach` 重新连接。
-{{< /note >}} 
-
-<!--
-Don't forget to clean up the debugging Pod when you're finished with it:
--->
-不要忘了清理调试 Pod：
-
-```shell
-kubectl delete pod myapp myapp-debug
-```
-<!--
-### Copying a Pod while changing container images
-
-In some situations you may want to change a misbehaving Pod from its normal
-production container images to an image containing a debugging build or
-additional utilities.
-
-As an example, create a Pod using `kubectl run`:
--->
-### 在更改容器镜像时创建 Pod 副本
-
-在某些情况下，你可能想从正常生产容器镜像中
-把行为异常的 Pod 改变为包含调试版本或者附加应用的镜像。
-
-下面的例子，用 `kubectl run`创建一个 Pod：
-
-```
-kubectl run myapp --image=busybox --restart=Never -- sleep 1d
-```
-<!--
-Now use `kubectl debug` to make a copy and change its container image
-to `ubuntu`:
--->
-现在可以使用 `kubectl debug`  创建一个副本
-并改变容器镜像为 `ubuntu`：
-
-```
-kubectl debug myapp --copy-to=myapp-debug --set-image=*=ubuntu
-```
-
-<!--
-The syntax of `--set-image` uses the same `container_name=image` syntax as
-`kubectl set image`. `*=ubuntu` means change the image of all containers
-to `ubuntu`.
-
-Don't forget to clean up the debugging Pod when you're finished with it:
--->
-`--set-image` 与 `container_name=image` 使用相同的 `kubectl set image` 语法。
-`*=ubuntu` 表示把所有容器的镜像改为 `ubuntu`。
-
-```shell
-kubectl delete pod myapp myapp-debug
-```
-
-<!--
-## Debugging via a shell on the node {#node-shell-session}
-
-If none of these approaches work, you can find the host machine that the pod is
-running on and SSH into that host, but this should generally not be necessary
-given tools in the Kubernetes API. Therefore, if you find yourself needing to
-ssh into a machine, please file a feature request on GitHub describing your use
-case and why these tools are insufficient.
--->
-## 在节点上通过 shell 来调试 {#node-shell-session}
-
-如果这些方法都不起作用，你可以找到运行 Pod 的主机并通过 SSH 进入该主机，
-但是如果使用 Kubernetes API 中的工具，则通常不需要这样做。
-因此，如果你发现自己需要使用 ssh 进入主机，请在GitHub 上提交功能请求，
-以描述你的用例以及这些工具不足的原因。
diff --git a/content/zh/docs/tasks/debug-application-cluster/local-debugging.md b/content/zh/docs/tasks/debug-application-cluster/local-debugging.md
deleted file mode 100644
index 99bb4fc56f..0000000000
--- a/content/zh/docs/tasks/debug-application-cluster/local-debugging.md
+++ /dev/null
@@ -1,114 +0,0 @@
----
-title: 在本地开发和调试服务
-content_type: task
----
-
-<!--
-title: Developing and debugging services locally
-content_type: task
--->
-
-<!-- overview -->
-
-<!--
-Kubernetes applications usually consist of multiple, separate services, each running in its own container. Developing and debugging these services on a remote Kubernetes cluster can be cumbersome, requiring you to [get a shell on a running container](/docs/tasks/debug-application-cluster/get-shell-running-container/) and running your tools inside the remote shell.
--->
-Kubernetes 应用程序通常由多个独立的服务组成，每个服务都在自己的容器中运行。
-在远端的 Kubernetes 集群上开发和调试这些服务可能很麻烦，需要
-[在运行的容器上打开 Shell](/zh/docs/tasks/debug-application-cluster/get-shell-running-container/)，
-然后在远端 Shell 中运行你所需的工具。
-
-<!--
-`telepresence` is a tool to ease the process of developing and debugging services locally, while proxying the service to a remote Kubernetes cluster. Using `telepresence` allows you to use custom tools, such as a debugger and IDE, for a local service and provides the service full access to ConfigMap, secrets, and the services running on the remote cluster.
--->
-`telepresence` 是一种工具，用于在本地轻松开发和调试服务，同时将服务代理到远程 Kubernetes 集群。
-使用 `telepresence` 可以为本地服务使用自定义工具（如调试器和 IDE），
-并提供对 Configmap、Secret 和远程集群上运行的服务的完全访问。
-
-<!--
-This document describes using `telepresence` to develop and debug services running on a remote cluster locally.
--->
-本文档描述如何在本地使用 `telepresence` 开发和调试远程集群上运行的服务。
-
-## {{% heading "prerequisites" %}}
-
-<!--
-* Kubernetes cluster is installed
-* `kubectl` is configured to communicate with the cluster
-* [Telepresence](https://www.telepresence.io/reference/install) is installed
--->
-
-* Kubernetes 集群安装完毕
-* 配置好 `kubectl` 与集群交互
-* [Telepresence](https://www.telepresence.io/reference/install) 安装完毕
-
-<!-- steps -->
-
-<!--
-## Getting a shell on a remote cluster
-
-Open a terminal and run `telepresence` with no arguments to get a `telepresence` shell. This shell runs locally, giving you full access to your local filesystem.
--->
-打开终端，不带参数运行 `telepresence`，以打开 `telepresence` Shell。
-这个 Shell 在本地运行，使你可以完全访问本地文件系统。
-
-<!--
-The `telepresence` shell can be used in a variety of ways. For example, write a shell script on your laptop, and run it directly from the shell in real time. You can do this on a remote shell as well, but you might not be able to use your preferred code editor, and the script is deleted when the container is terminated.
-
-Enter `exit` to quit and close the shell.
--->
-`telepresence` Shell 的使用方式多种多样。
-例如，在你的笔记本电脑上写一个 Shell 脚本，然后直接在 Shell 中实时运行它。
-你也可以在远端 Shell 上执行此操作，但这样可能无法使用首选的代码编辑器，并且在容器终止时脚本将被删除。
-
-<!--
-## Developing or debugging an existing service
-
-When developing an application on Kubernetes, you typically program or debug a single service. The service might require access to other services for testing and debugging. One option is to use the continuous deployment pipeline, but even the fastest deployment pipeline introduces a delay in the program or debug cycle.
--->
-## 开发和调试现有的服务
-
-在 Kubernetes 上开发应用程序时，通常对单个服务进行编程或调试。
-服务可能需要访问其他服务以进行测试和调试。
-一种选择是使用连续部署流水线，但即使最快的部署流水线也会在程序或调试周期中引入延迟。
-
-<!--
-Use the `--swap-deployment` option to swap an existing deployment with the Telepresence proxy. Swapping allows you to run a service locally and connect to the remote Kubernetes cluster. The services in the remote cluster can now access the locally running instance.
-
-To run telepresence with `--swap-deployment`, enter:
--->
-使用 `--swap-deployment` 选项将现有部署与 Telepresence 代理交换。
-交换允许你在本地运行服务并能够连接到远端的 Kubernetes 集群。
-远端集群中的服务现在就可以访问本地运行的实例。
-
-要运行 telepresence 并带有 `--swap-deployment` 选项，请输入：
-
-`telepresence --swap-deployment $DEPLOYMENT_NAME`
-
-<!--
-where $DEPLOYMENT_NAME is the name of your existing deployment.
-
-Running this command spawns a shell. In the shell, start your service. You can then make edits to the source code locally, save, and see the changes take effect immediately. You can also run your service in a debugger, or any other local development tool.
--->
-这里的 `$DEPLOYMENT_NAME` 是你现有的部署名称。
-
-运行此命令将生成 Shell。在该 Shell 中，启动你的服务。
-然后，你就可以在本地对源代码进行编辑、保存并能看到更改立即生效。
-你还可以在调试器或任何其他本地开发工具中运行服务。
-
-## {{% heading "whatsnext" %}}
-
-<!--
-If you're interested in a hands-on tutorial, check out [this tutorial](https://cloud.google.com/community/tutorials/developing-services-with-k8s) that walks through locally developing the Guestbook application on Google Kubernetes Engine.
--->
-如果你对实践教程感兴趣，请查看[本教程](https://cloud.google.com/community/tutorials/developing-services-with-k8s)，其中介绍了在 Google Kubernetes Engine 上本地开发 Guestbook 应用程序。
-
-<!--
-Telepresence has [numerous proxying options](https://www.telepresence.io/reference/methods), depending on your situation.
-
-For further reading, visit the [Telepresence website](https://www.telepresence.io).
--->
-Telepresence 有[多种代理选项](https://www.telepresence.io/reference/methods)，以满足你的各种情况。
-
-要了解更多信息，请访问 [Telepresence 网站](https://www.telepresence.io)。
-
diff --git a/content/zh/docs/tasks/debug-application-cluster/resource-metrics-pipeline.md b/content/zh/docs/tasks/debug-application-cluster/resource-metrics-pipeline.md
deleted file mode 100644
index 4906ea970f..0000000000
--- a/content/zh/docs/tasks/debug-application-cluster/resource-metrics-pipeline.md
+++ /dev/null
@@ -1,142 +0,0 @@
----
-title: 资源指标管道
-content_type: concept
----
-<!--
-reviewers:
-- fgrzadkowski
-- piosz
-title: Resource metrics pipeline
-content_type: concept
--->
-
-<!-- overview -->
-
-<!--
-Resource usage metrics, such as container CPU and memory usage,
-are available in Kubernetes through the Metrics API. These metrics can be accessed either directly
-by the user with the `kubectl top` command, or by a controller in the cluster, for example
-Horizontal Pod Autoscaler, to make decisions.
--->
-资源使用指标，例如容器 CPU 和内存使用率，可通过 Metrics API 在 Kubernetes 中获得。
-这些指标可以直接被用户访问，比如使用 `kubectl top` 命令行，或者被集群中的控制器
-（例如 Horizontal Pod Autoscalers) 使用来做决策。
-
-<!-- body -->
-
-<!--
-## The Metrics API
-
-Through the Metrics API, you can get the amount of resource currently used
-by a given node or a given pod. This API doesn't store the metric values,
-so it's not possible, for example, to get the amount of resources used by a
-given node 10 minutes ago.
--->
-## Metrics API   {#the-metrics-api}
-
-通过 Metrics API，你可以获得指定节点或 Pod 当前使用的资源量。
-此 API 不存储指标值，因此想要获取某个指定节点 10 分钟前的
-资源使用量是不可能的。
-
-<!--
-The API is no different from any other API:
--->
-此 API 与其他 API 没有区别：
-
-<!--
-- it is discoverable through the same endpoint as the other Kubernetes APIs under the path: `/apis/metrics.k8s.io/`
-- it offers the same security, scalability, and reliability guarantees
--->
-- 此 API 和其它 Kubernetes API 一起位于同一端点（endpoint）之下且可发现，
-  路径为 `/apis/metrics.k8s.io/` 
-- 它具有相同的安全性、可扩展性和可靠性保证
-
-<!--
-The API is defined in [k8s.io/metrics](https://github.com/kubernetes/metrics/blob/master/pkg/apis/metrics/v1beta1/types.go)
-repository. You can find more information about the API there.
--->
-Metrics API 在 [k8s.io/metrics](https://github.com/kubernetes/metrics/blob/master/pkg/apis/metrics/v1beta1/types.go)
-仓库中定义。你可以在那里找到有关 Metrics API 的更多信息。
-
-<!--
-The API requires metrics server to be deployed in the cluster. Otherwise it will be not available.
--->
-{{< note >}}
-Metrics API 需要在集群中部署 Metrics Server。否则它将不可用。
-{{< /note >}}
-
-<!--
-## Measuring Resource Usage
-
-### CPU
-
-CPU is reported as the average usage, in
-[CPU cores](/docs/concepts/configuration/manage-resources-containers/#meaning-of-cpu),
-over a period of time. This value is derived by taking a rate over a cumulative CPU counter
-provided by the kernel (in both Linux and Windows kernels).
-The kubelet chooses the window for the rate calculation.
--->
-## 度量资源用量   {#measuring-resource-usage}
-
-### CPU
-
-CPU 用量按其一段时间内的平均值统计，单位为
-[CPU 核](/zh/docs/concepts/configuration/manage-resources-containers/#meaning-of-cpu)。
-此度量值通过在内核（包括 Linux 和 Windows）提供的累积 CPU 计数器乘以一个系数得到。
-`kubelet` 组件负责选择计算系数所使用的窗口大小。
-
-<!--
-### Memory
-
-Memory is reported as the working set, in bytes, at the instant the metric was collected.
-In an ideal world, the "working set" is the amount of memory in-use that cannot be freed under memory pressure.
-However, calculation of the working set varies by host OS, and generally makes heavy use of heuristics to produce an estimate.
-It includes all anonymous (non-file-backed) memory since Kubernetes does not support swap.
-The metric typically also includes some cached (file-backed) memory, because the host OS cannot always reclaim such pages.
--->
-### 内存  {#memory}
-
-内存用量按工作集（Working Set）的大小字节数统计，其数值为收集度量值的那一刻的内存用量。
-如果一切都很理想化，“工作集” 是任务在使用的内存总量，该内存是不可以在内存压力较大
-的情况下被释放的。
-不过，具体的工作集计算方式取决于宿主 OS，有很大不同，且通常都大量使用启发式
-规则来给出一个估计值。
-其中包含所有匿名内存使用（没有后台文件提供存储者），因为 Kubernetes 不支持交换分区。
-度量值通常包含一些高速缓存（有后台文件提供存储）内存，因为宿主操作系统并不是总能
-回收这些页面。
-
-<!--
-## Metrics Server
-
-[Metrics Server](https://github.com/kubernetes-sigs/metrics-server) is a cluster-wide aggregator of resource usage data.
-By default, it is deployed in clusters created by `kube-up.sh` script
-as a Deployment object. If you use a different Kubernetes setup mechanism you can deploy it using the provided
-[deployment components.yaml](https://github.com/kubernetes-sigs/metrics-server/releases) file.
--->
-## Metrics 服务器    {#metrics-server}
-
-[Metrics 服务器](https://github.com/kubernetes-sigs/metrics-server)
-是集群范围资源用量数据的聚合器。
-默认情况下，在由 `kube-up.sh` 脚本创建的集群中会以 Deployment 的形式被部署。
-如果你使用其他 Kubernetes 安装方法，则可以使用提供的
-[部署组件 components.yaml](https://github.com/kubernetes-incubator/metrics-server/tree/master/deploy)
-来部署。
-
-<!--
-Metric server collects metrics from the Summary API, exposed by
-[Kubelet](/docs/reference/command-line-tools-reference/kubelet/) on each node, and is registered with the main API server via
-[Kubernetes aggregator](/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/).
--->
-Metric 服务器从每个节点上的 [kubelet](/zh/docs/reference/command-line-tools-reference/kubelet/)
-公开的 Summary API 中采集指标信息。
-该 API 通过
-[Kubernetes 聚合器](/zh/docs/concepts/extend-kubernetes/api-extension/apiserver-aggregation/)
-注册到主 API 服务器上。
-
-<!--
-Learn more about the metrics server in
-[the design doc](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/instrumentation/metrics-server.md).
--->
-在[设计文档](https://github.com/kubernetes/community/blob/master/contributors/design-proposals/instrumentation/metrics-server.md)
-中可以了解到有关 Metrics 服务器的更多信息。
-
diff --git a/content/zh/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information.md b/content/zh/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information.md
deleted file mode 100644
index 69b0b9ee0d..0000000000
--- a/content/zh/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information.md
+++ /dev/null
@@ -1,407 +0,0 @@
----
-title: 通过文件将 Pod 信息呈现给容器
-content_type: task
-weight: 40
----
-
-<!-- overview -->
-
-<!--
-This page shows how a Pod can use a DownwardAPIVolumeFile to expose information
-about itself to Containers running in the Pod. A DownwardAPIVolumeFile can expose
-Pod fields and Container fields.
--->
-此页面描述 Pod 如何使用 DownwardAPIVolumeFile 把自己的信息呈现给 Pod 中运行的容器。
-DownwardAPIVolumeFile 可以呈现 Pod 的字段和容器字段。
-
-## {{% heading "prerequisites" %}}
-
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-<!-- steps -->
-
-<!--
-## The Downward API
-
-There are two ways to expose Pod and Container fields to a running Container:
-
-* [Environment variables](/docs/tasks/inject-data-application/environment-variable-expose-pod-information/#the-downward-api)
-* Volume Files
--->
-## Downward API
-
-有两种方式可以将 Pod 和 Container 字段呈现给运行中的容器：
-
-* [环境变量](/zh/docs/tasks/inject-data-application/environment-variable-expose-pod-information/#the-downward-api)
-* 卷文件
-
-这两种呈现 Pod 和 Container 字段的方式都称为 *Downward API*。
-
-<!--
-## Store Pod fields
-
-In this exercise, you create a Pod that has one Container.
-Here is the configuration file for the Pod:
--->
-## 存储 Pod 字段
-
-在这个练习中，你将创建一个包含一个容器的 Pod。Pod 的配置文件如下：
-
-{{< codenew file="pods/inject/dapi-volume.yaml" >}}
-
-<!--
-In the configuration file, you can see that the Pod has a `downwardAPI` Volume,
-and the Container mounts the Volume at `/etc/podinfo`.
-
-Look at the `items` array under `downwardAPI`. Each element of the array is a
-[DownwardAPIVolumeFile](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#downwardapivolumefile-v1-core).
-The first element specifies that the value of the Pod's
-`metadata.labels` field should be stored in a file named `labels`.
-The second element specifies that the value of the Pod's `annotations`
-field should be stored in a file named `annotations`.
--->
-在配置文件中，你可以看到 Pod 有一个 `downwardAPI` 类型的卷，并且挂载到容器中的
-`/etc/podinfo` 目录。
-
-查看 `downwardAPI` 下面的 `items` 数组。
-每个数组元素都是一个 
-[DownwardAPIVolumeFile](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#downwardapivolumefile-v1-core)
-对象。
-第一个元素指示 Pod 的 `metadata.labels` 字段的值保存在名为 `labels` 的文件中。
-第二个元素指示 Pod 的 `annotations` 字段的值保存在名为 `annotations` 的文件中。
-
-<!--
-The fields in this example are Pod fields. They are not
-fields of the Container in the Pod.
--->
-{{< note >}}
-本示例中的字段是Pod字段，不是Pod中容器的字段。
-{{< /note >}}
-
-<!--
-Create the Pod:
--->
-创建 Pod：
-
-```shell
-kubectl apply -f https://k8s.io/examples/pods/inject/dapi-volume.yaml
-```
-
-<!--
-Verify that the Container in the Pod is running:
--->
-验证Pod中的容器运行正常：
-
-```shell
-kubectl get pods
-```
-
-<!--
-View the Container's logs:
--->
-查看容器的日志：
-
-```shell
-kubectl logs kubernetes-downwardapi-volume-example
-```
-
-<!--
-The output shows the contents of the labels file and the annotations file:
--->
-输出显示 `labels` 和 `annotations` 文件的内容：
-
-```
-cluster="test-cluster1"
-rack="rack-22"
-zone="us-est-coast"
-
-build="two"
-builder="john-doe"
-```
-
-<!--
-Get a shell into the Container that is running in your Pod:
--->
-进入 Pod 中运行的容器，打开一个 Shell：
-
-```shell
-kubectl exec -it kubernetes-downwardapi-volume-example -- sh
-```
-
-<!--
-In your shell, view the `labels` file:
--->
-在该 Shell中，查看 `labels` 文件：
-
-```shell
-/# cat /etc/podinfo/labels
-```
-
-<!--
-The output shows that all of the Pod's labels have been written
-to the `labels` file:
--->
-输出显示 Pod 的所有标签都已写入 `labels` 文件。
-
-```
-cluster="test-cluster1"
-rack="rack-22"
-zone="us-est-coast"
-```
-
-<!--
-Similarly, view the `annotations` file:
--->
-同样，查看`annotations`文件：
-
-```shell
-/# cat /etc/podinfo/annotations
-```
-
-<!--
-View the files in the `/etc/podinfo` directory:
--->
-查看`/etc/podinfo`目录下的文件：
-
-```shell
-/# ls -laR /etc/podinfo
-```
-
-<!--
-In the output, you can see that the `labels` and `annotations` files
-are in a temporary subdirectory: in this example,
-`..2982_06_02_21_47_53.299460680`. In the `/etc/podinfo` directory, `..data` is
-a symbolic link to the temporary subdirectory. Also in the `/etc/podinfo` directory,
-`labels` and `annotations` are symbolic links.
--->
-在输出中可以看到，`labels` 和 `annotations` 文件都在一个临时子目录中。
-在这个例子，`..2982_06_02_21_47_53.299460680`。
-在 `/etc/podinfo` 目录中，`..data` 是一个指向临时子目录
-的符号链接。`/etc/podinfo` 目录中，`labels` 和 `annotations` 也是符号链接。
-
-```
-drwxr-xr-x  ... Feb 6 21:47 ..2982_06_02_21_47_53.299460680
-lrwxrwxrwx  ... Feb 6 21:47 ..data -> ..2982_06_02_21_47_53.299460680
-lrwxrwxrwx  ... Feb 6 21:47 annotations -> ..data/annotations
-lrwxrwxrwx  ... Feb 6 21:47 labels -> ..data/labels
-
-/etc/podinfo/..2982_06_02_21_47_53.299460680:
-total 8
--rw-r--r--  ... Feb  6 21:47 annotations
--rw-r--r--  ... Feb  6 21:47 labels
-```
-
-<!--
-Using symbolic links enables dynamic atomic refresh of the metadata; updates are
-written to a new temporary directory, and the `..data` symlink is updated
-atomically using
-[rename(2)](http://man7.org/linux/man-pages/man2/rename.2.html).
--->
-用符号链接可实现元数据的动态原子性刷新；更新将写入一个新的临时目录，
-然后通过使用[rename(2)](http://man7.org/linux/man-pages/man2/rename.2.html)
-完成 `..data` 符号链接的原子性更新。
-
-<!--
-A container using Downward API as a
-[subPath](/docs/concepts/storage/volumes/#using-subpath) volume mount will not
-receive Downward API updates.
--->
-{{< note >}}
-如果容器以
-[subPath](/zh/docs/concepts/storage/volumes/#using-subpath)卷挂载方式来使用
-Downward API，则该容器无法收到更新事件。
-{{< /note >}}
-
-退出 Shell：
-
-```shell
-/# exit
-```
-
-## 存储容器字段
-
-<!--
-The preceding exercise, you stored Pod fields in a DownwardAPIVolumeFile.
-In this next exercise, you store Container fields. Here is the configuration
-file for a Pod that has one Container:
--->
-前面的练习中，你将 Pod 字段保存到 DownwardAPIVolumeFile 中。
-接下来这个练习，你将存储 Container 字段。这里是包含一个容器的 Pod 的配置文件：
-
-{{< codenew file="pods/inject/dapi-volume-resources.yaml" >}}
-
-<!--
-In the configuration file, you can see that the Pod has a `downwardAPI` Volume,
-and the Container mounts the Volume at `/etc/podinfo`.
-
-Look at the `items` array under `downwardAPI`. Each element of the array is a
-DownwardAPIVolumeFile.
-
-The first element specifies that in the Container named `client-container`,
-the value of the `limits.cpu` field in the format specified by `1m` should be
-stored in a file named `cpu_limit`. The `divisor` field is optional and has the
-default value of `1` which means cores for cpu and bytes for memory.
-
-Create the Pod:
--->
-在这个配置文件中，你可以看到 Pod 有一个 `downwardAPI` 类型的卷，并且挂载到容器的
-`/etc/podinfo` 目录。
-
-查看 `downwardAPI` 下面的 `items` 数组。每个数组元素都是一个 DownwardAPIVolumeFile。
-
-第一个元素指定名为 `client-container` 的容器中 `limits.cpu` 字段的值应保存在名为
-`cpu_limit` 的文件中。
-
-创建Pod：
-
-```shell
-kubectl apply -f https://k8s.io/examples/pods/inject/dapi-volume-resources.yaml
-```
-
-<!--
-Get a shell into the Container that is running in your Pod:
--->
-打开一个 Shell，进入 Pod 中运行的容器：
-
-```
-kubectl exec -it kubernetes-downwardapi-volume-example-2 -- sh
-```
-
-<!--
-In your shell, view the `cpu_limit` file:
--->
-在 Shell 中，查看 `cpu_limit` 文件：
-
-```shell
-/# cat /etc/podinfo/cpu_limit
-```
-
-<!--
-You can use similar commands to view the `cpu_request`, `mem_limit` and
-`mem_request` files.
--->
-你可以使用同样的命令查看 `cpu_request`、`mem_limit` 和 `mem_request` 文件.
-
-<!-- discussion -->
-<!--
-## Capabilities of the Downward API
--->
-## Downward API 的能力
-
-<!--
-The following information is available to containers through environment
-variables and `downwardAPI` volumes:
-
-* Information available via `fieldRef`:
-  * `metadata.name` - the pod's name
-  * `metadata.namespace` - the pod's namespace
-  * `metadata.uid` - the pod's UID
-  * `metadata.labels['<KEY>']` - the value of the pod's label `<KEY>` (for example, `metadata.labels['mylabel']`)
-  * `metadata.annotations['<KEY>']` - the value of the pod's annotation `<KEY>` (for example, `metadata.annotations['myannotation']`)
--->
-下面这些信息可以通过环境变量和 `downwardAPI` 卷提供给容器：
-
-* 能通过 `fieldRef` 获得的：
-  * `metadata.name` - Pod 名称
-  * `metadata.namespace` - Pod 名字空间
-  * `metadata.uid` - Pod 的 UID
-  * `metadata.labels['<KEY>']` - Pod 标签 `<KEY>` 的值 (例如, `metadata.labels['mylabel']`）
-  * `metadata.annotations['<KEY>']` - Pod 的注解 `<KEY>` 的值（例如, `metadata.annotations['myannotation']`）
-
-<!--
-* Information available via `resourceFieldRef`:
-  * A Container's CPU limit
-  * A Container's CPU request
-  * A Container's memory limit
-  * A Container's memory request
-  * A Container's hugepages limit (providing that the `DownwardAPIHugePages` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled)
-  * A Container's hugepages request (providing that the `DownwardAPIHugePages` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) is enabled)
-  * A Container's ephemeral-storage limit
-  * A Container's ephemeral-storage request
--->
-* 能通过 `resourceFieldRef` 获得的：
-  * 容器的 CPU 约束值
-  * 容器的 CPU 请求值
-  * 容器的内存约束值
-  * 容器的内存请求值
-  * 容器的巨页限制值（前提是启用了 `DownwardAPIHugePages` [特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)）
-  * 容器的巨页请求值（前提是启用了 `DownwardAPIHugePages` [特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates/)）
-  * 容器的临时存储约束值
-  * 容器的临时存储请求值
-
-<!--
-In addition, the following information is available through
-`downwardAPI` volume `fieldRef`:
--->
-此外，以下信息可通过 `downwardAPI` 卷从 `fieldRef` 获得：
-<!--
-* `metadata.labels` - all of the pod’s labels, formatted as `label-key="escaped-label-value"` with one label per line
-* `metadata.annotations` - all of the pod’s annotations, formatted as `annotation-key="escaped-annotation-value"` with one annotation per line
--->
-* `metadata.labels` - Pod 的所有标签，以 `label-key="escaped-label-value"` 格式显示，每行显示一个标签
-* `metadata.annotations` - Pod 的所有注解，以 `annotation-key="escaped-annotation-value"`
-  格式显示，每行显示一个标签
-
-<!--
-The following information is available through environment variables:
--->
-以下信息可通过环境变量获得：
-
-* `status.podIP` - 节点 IP
-* `spec.serviceAccountName` - Pod 服务帐号名称, 版本要求 v1.4.0-alpha.3
-* `spec.nodeName` - 节点名称, 版本要求 v1.4.0-alpha.3
-* `status.hostIP` - 节点 IP, 版本要求 v1.7.0-alpha.1
-
-<!--
-If CPU and memory limits are not specified for a Container, the
-Downward API defaults to the node allocatable value for CPU and memory.
--->
-{{< note >}}
-如果容器未指定 CPU 和内存限制，则 Downward API 默认将节点可分配值
-视为容器的 CPU 和内存限制。
-{{< /note >}}
-
-<!--
-## Project keys to specific paths and file permissions
-
-You can project keys to specific paths and specific permissions on a per-file
-basis. For more information, see
-[Secrets](/docs/concepts/configuration/secret/).
--->
-## 投射键名到指定路径并且指定文件权限
-
-你可以将键名投射到指定路径并且指定每个文件的访问权限。
-更多信息，请参阅[Secrets](/zh/docs/concepts/configuration/secret/).
-
-<!--
-## Motivation for the Downward API
-
-It is sometimes useful for a Container to have information about itself, without
-being overly coupled to Kubernetes. The Downward API allows containers to consume
-information about themselves or the cluster without using the Kubernetes client
-or API server.
-
-An example is an existing application that assumes a particular well-known
-environment variable holds a unique identifier. One possibility is to wrap the
-application, but that is tedious and error prone, and it violates the goal of low
-coupling. A better option would be to use the Pod's name as an identifier, and
-inject the Pod's name into the well-known environment variable.
--->
-## Downward API的动机
-
-对于容器来说，有时候拥有自己的信息是很有用的，可避免与 Kubernetes 过度耦合。
-Downward API 使得容器使用自己或者集群的信息，而不必通过 Kubernetes 客户端或
-API 服务器来获得。
-
-一个例子是有一个现有的应用假定要用一个非常熟悉的环境变量来保存一个唯一标识。
-一种可能是给应用增加处理层，但这样是冗余和易出错的，而且它违反了低耦合的目标。
-更好的选择是使用 Pod 名称作为标识，把 Pod 名称注入这个环境变量中。
-
-## {{% heading "whatsnext" %}}
-
-* [PodSpec](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#podspec-v1-core)
-* [Volume](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#volume-v1-core)
-* [DownwardAPIVolumeSource](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#downwardapivolumesource-v1-core)
-* [DownwardAPIVolumeFile](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#downwardapivolumefile-v1-core)
-* [ResourceFieldSelector](/docs/reference/generated/kubernetes-api/{{< param "version" >}}/#resourcefieldselector-v1-core)
-
diff --git a/content/zh/docs/tasks/service-catalog/_index.md b/content/zh/docs/tasks/service-catalog/_index.md
deleted file mode 100644
index 1d12ab1465..0000000000
--- a/content/zh/docs/tasks/service-catalog/_index.md
+++ /dev/null
@@ -1,5 +0,0 @@
----
-title: "安装服务目录"
-weight: 150
-description: 安装服务目录扩展 API。
----
diff --git a/content/zh/docs/tasks/service-catalog/install-service-catalog-using-helm.md b/content/zh/docs/tasks/service-catalog/install-service-catalog-using-helm.md
deleted file mode 100644
index a8c6988d83..0000000000
--- a/content/zh/docs/tasks/service-catalog/install-service-catalog-using-helm.md
+++ /dev/null
@@ -1,158 +0,0 @@
----
-title: 使用 Helm 安装 Service Catalog
-content_type: task
----
-<!--
-title: Install Service Catalog using Helm
-reviewers:
-- chenopis
-content_type: task
--->
-
-<!-- overview -->
-{{< glossary_definition term_id="service-catalog" length="all" prepend="服务目录（Service Catalog）是" >}}
-
-<!--
-Use [Helm](https://helm.sh/) to install Service Catalog on your Kubernetes cluster. Up to date information on this process can be found at the [kubernetes-incubator/service-catalog](https://github.com/kubernetes-incubator/service-catalog/blob/master/docs/install.md) repo.
--->
-使用 [Helm](https://helm.sh/) 在 Kubernetes 集群上安装 Service Catalog。
-要获取有关此过程的最新信息，请浏览 [kubernetes-incubator/service-catalog](https://github.com/kubernetes-incubator/service-catalog/blob/master/docs/install.md) 仓库。
-
-
-## {{% heading "prerequisites" %}}
-
-<!--
-* Understand the key concepts of [Service Catalog](/docs/concepts/service-catalog/).
-* Service Catalog requires a Kubernetes cluster running version 1.7 or higher.
-* You must have a Kubernetes cluster with cluster DNS enabled.
-    * If you are using a cloud-based Kubernetes cluster or {{< glossary_tooltip text="Minikube" term_id="minikube" >}}, you may already have cluster DNS enabled.
-    * If you are using `hack/local-up-cluster.sh`, ensure that the `KUBE_ENABLE_CLUSTER_DNS` environment variable is set, then run the install script.
-* [Install and setup kubectl](/docs/tasks/tools/) v1.7 or higher. Make sure it is configured to connect to the Kubernetes cluster.
-* Install [Helm](http://helm.sh/) v2.7.0 or newer.
-    * Follow the [Helm install instructions](https://github.com/kubernetes/helm/blob/master/docs/install.md).
-    * If you already have an appropriate version of Helm installed, execute `helm init` to install Tiller, the server-side component of Helm.
--->
-* 理解[服务目录](/zh/docs/concepts/extend-kubernetes/service-catalog/) 的关键概念。
-* Service Catalog 需要 Kubernetes 集群版本在 1.7 或更高版本。
-* 你必须启用 Kubernetes 集群的 DNS 功能。
-    * 如果使用基于云的 Kubernetes 集群或 {{< glossary_tooltip text="Minikube" term_id="minikube" >}}，则可能已经启用了集群 DNS。
-    * 如果你正在使用 `hack/local-up-cluster.sh`，请确保设置了 `KUBE_ENABLE_CLUSTER_DNS` 环境变量，然后运行安装脚本。
-* [安装和设置 v1.7 或更高版本的 kubectl](/zh/docs/tasks/tools/)，确保将其配置为连接到 Kubernetes 集群。
-* 安装 v2.7.0 或更高版本的 [Helm](https://helm.sh/)。
-    * 遵照 [Helm 安装说明](https://helm.sh/docs/intro/install/)。
-    * 如果已经安装了适当版本的 Helm，请执行 `helm init` 来安装 Helm 的服务器端组件 Tiller。
-
-<!-- steps -->
-<!--
-## Add the service-catalog Helm repository
-
-Once Helm is installed, add the *service-catalog* Helm repository to your local machine by executing the following command:
--->
-## 添加 service-catalog Helm 仓库
-
-安装 Helm 后，通过执行以下命令将 *service-catalog* Helm 存储库添加到本地计算机：
-
-```shell
-helm repo add svc-cat https://kubernetes-sigs.github.io/service-catalog
-```
-
-<!--
-Check to make sure that it installed successfully by executing the following command:
--->
-通过执行以下命令进行检查，以确保安装成功：
-
-```shell
-helm search service-catalog
-```
-
-<!--
-If the installation was successful, the command should output the following:
--->
-如果安装成功，该命令应输出以下内容：
-
-```
-NAME            VERSION DESCRIPTION
-svc-cat/catalog 0.0.1   service-catalog API server and controller-manag...
-```
-
-<!--
-## Enable RBAC
-
-Your Kubernetes cluster must have RBAC enabled, which requires your Tiller Pod(s) to have `cluster-admin` access.
-
-If you are using Minikube, run the `minikube start` command with the following flag:
--->
-## 启用 RBAC
-
-你的 Kubernetes 集群必须启用 RBAC，这需要你的 Tiller Pod 具有 `cluster-admin` 访问权限。
-
-如果你使用的是 Minikube，请使用以下参数运行 `minikube start` 命令：
-
-```shell
-minikube start --extra-config=apiserver.Authorization.Mode=RBAC
-```
-
-<!--
-If you are using `hack/local-up-cluster.sh`, set the `AUTHORIZATION_MODE` environment variable with the following values:
--->
-如果你使用 `hack/local-up-cluster.sh`，请使用以下值设置 `AUTHORIZATION_MODE` 环境变量：
-
-```
-AUTHORIZATION_MODE=Node,RBAC hack/local-up-cluster.sh -O
-```
-
-<!--
-By default, `helm init` installs the Tiller Pod into the `kube-system` namespace, with Tiller configured to use the `default` service account.
--->
-默认情况下，`helm init` 将 Tiller Pod 安装到 `kube-system` 命名空间，Tiller 配置为使用 `default` 服务帐户。
-
-<!--
-If you used the `--tiller-namespace` or `--service-account` flags when running `helm init`, the `--serviceaccount` flag in the following command needs to be adjusted to reference the appropriate namespace and ServiceAccount name.
--->
-{{< note >}}
-如果在运行 `helm init` 时使用了 `--tiller-namespace` 或 `--service-account` 参数，
-则需要调整以下命令中的 `--serviceaccount` 参数以引用相应的名字空间和服务账号名称。
-{{< /note >}}
-
-<!--
-Configure Tiller to have `cluster-admin` access:
--->
-配置 Tiller 以获得 `cluster-admin` 访问权限：
-
-```shell
-kubectl create clusterrolebinding tiller-cluster-admin \
-    --clusterrole=cluster-admin \
-    --serviceaccount=kube-system:default
-```
-
-<!--
-## Install Service Catalog in your Kubernetes cluster
-
-Install Service Catalog from the root of the Helm repository using the following command:
--->
-## 在 Kubernetes 集群中安装 Service Catalog
-
-使用以下命令从 Helm 存储库的根目录安装 Service Catalog：
-
-{{< tabs name="helm-versions" >}}
-{{% tab name="Helm version 3" %}}
-```shell
-helm install catalog svc-cat/catalog --namespace catalog
-```
-{{% /tab %}}
-{{% tab name="Helm version 2" %}}
-
-```shell
-helm install svc-cat/catalog --name catalog --namespace catalog
-```
-{{% /tab %}}
-{{< /tabs >}}
-
-## {{% heading "whatsnext" %}}
-
-<!--
-* View [sample service brokers](https://github.com/openservicebrokerapi/servicebroker/blob/master/gettingStarted.md#sample-service-brokers).
-* Explore the [kubernetes-incubator/service-catalog](https://github.com/kubernetes-incubator/service-catalog) project.
--->
-* 查看[示例服务代理](https://github.com/openservicebrokerapi/servicebroker/blob/mastergettingStarted.md#sample-service-brokers)。
-* 探索 [kubernetes-incubator/service-catalog](https://github.com/kubernetes-incubator/service-catalog) 项目。
diff --git a/content/zh/docs/tasks/service-catalog/install-service-catalog-using-sc.md b/content/zh/docs/tasks/service-catalog/install-service-catalog-using-sc.md
deleted file mode 100644
index 4602fc56d8..0000000000
--- a/content/zh/docs/tasks/service-catalog/install-service-catalog-using-sc.md
+++ /dev/null
@@ -1,132 +0,0 @@
----
-title: 使用 SC 安装服务目录
-reviewers:
-- chenopis
-content_type: task
----
-
-<!--
-title: Install Service Catalog using SC
-reviewers:
-- chenopis
-content_type: task
--->
-
-<!-- overview -->
-{{< glossary_definition term_id="service-catalog" length="all" prepend="服务目录（Service Catalog）是" >}}
-
-<!--
-You can use the GCP [Service Catalog Installer](https://github.com/GoogleCloudPlatform/k8s-service-catalog#installation)
-tool to easily install or uninstall Service Catalog on your Kubernetes cluster, linking it to
-Google Cloud projects.
-
-Service Catalog can work with any kind of managed service, not only Google Cloud.
--->
-使用 GCP [服务目录安装程序](https://github.com/GoogleCloudPlatform/k8s-service-catalog#installation)
-工具可以轻松地在 Kubernetes 集群上安装或卸载服务目录，并将其链接到 Google Cloud 项目。
-
-服务目录不仅可以与 Google Cloud 一起使用，还可以与任何类型的托管服务一起使用。
-
-## {{% heading "prerequisites" %}}
-
-<!--
-* Understand the key concepts of [Service Catalog](/docs/concepts/extend-kubernetes/service-catalog/).
-* Install [Go 1.6+](https://golang.org/dl/) and set the `GOPATH`.
-* Install the [cfssl](https://github.com/cloudflare/cfssl) tool needed for generating SSL artifacts.
-* Service Catalog requires Kubernetes version 1.7+.
-* [Install and setup kubectl](/docs/tasks/tools/) so that it is configured to connect to a Kubernetes v1.7+ cluster.
-* The kubectl user must be bound to the *cluster-admin* role for it to install Service Catalog. To ensure that this is true, run the following command:
-
-        kubectl create clusterrolebinding cluster-admin-binding --clusterrole=cluster-admin --user=<user-name>
--->
-* 了解[服务目录](/zh/docs/concepts/extend-kubernetes/service-catalog/)
-  的主要概念。
-* 安装 [Go 1.6+](https://golang.org/dl/) 以及设置 `GOPATH`。
-* 安装生成 SSL 工件所需的 [cfssl](https://github.com/cloudflare/cfssl) 工具。
-* 服务目录需要 Kubernetes 1.7+ 版本。
-* [安装和设置 kubectl](/zh/docs/tasks/tools/)，
-  以便将其配置为连接到 Kubernetes v1.7+ 集群。
-* 要安装服务目录，kubectl 用户必须绑定到 *cluster-admin* 角色。
-  为了确保这是正确的，请运行以下命令：
-
-  ```shell
-  kubectl create clusterrolebinding cluster-admin-binding --clusterrole=cluster-admin --user=<user-name>
-  ```
-
-<!-- steps -->
-<!--
-## Install `sc` in your local environment
-
-The installer runs on your local computer as a CLI tool named `sc`.
-
-Install using `go get`:
--->
-## 在本地环境中安装 `sc`
-
-安装程序在你的本地计算机上以 CLI 工具的形式运行，名为 `sc`。
-
-使用 `go get` 安装：
-
-```shell
-go get github.com/GoogleCloudPlatform/k8s-service-catalog/installer/cmd/sc
-```
-
-<!--
-`sc` should now be installed in your `GOPATH/bin` directory.
--->
-现在，`sc` 应该已经被安装在 `GOPATH/bin` 目录中了。
-
-<!--
-## Install Service Catalog in your Kubernetes cluster
-
-First, verify that all dependencies have been installed. Run:
--->
-## 在 Kubernetes 集群中安装服务目录
-
-首先，检查是否已经安装了所有依赖项。运行：
-
-```shell
-sc check
-```
-
-<!--
-If the check is successful, it should return:
--->
-如检查通过，应输出：
-
-```
-Dependency check passed. You are good to go.
-```
-
-<!--
-Next, run the install command and specify the `storageclass` that you want to use for the backup:
--->
-接下来，运行安装命令并指定要用于备份的 `storageclass`：
-
-```shell
-sc install --etcd-backup-storageclass "standard"
-```
-
-<!--
-## Uninstall Service Catalog
-
-If you would like to uninstall Service Catalog from your Kubernetes cluster using the `sc` tool, run:
--->
-## 卸载服务目录
-
-如果您想使用 `sc` 工具从 Kubernetes 集群卸载服务目录，请运行：
-
-```shell
-sc uninstall
-```
-
-## {{% heading "whatsnext" %}}
-
-<!--
-* View [sample service brokers](https://github.com/openservicebrokerapi/servicebroker/blob/master/gettingStarted.md#sample-service-brokers).
-* Explore the [kubernetes-sigs/service-catalog](https://github.com/kubernetes-sigs/service-catalog) project.
--->
-* 查看[服务代理示例](https://github.com/openservicebrokerapi/servicebroker/blob/master/gettingStarted.md#sample-service-brokers)。
-* 探索 [kubernetes-sigs/service-catalog](https://github.com/kubernetes-sigs/service-catalog) 项目。
-
-
diff --git a/content/zh/docs/tasks/tls/managing-tls-in-a-cluster.md b/content/zh/docs/tasks/tls/managing-tls-in-a-cluster.md
deleted file mode 100644
index 128749344e..0000000000
--- a/content/zh/docs/tasks/tls/managing-tls-in-a-cluster.md
+++ /dev/null
@@ -1,351 +0,0 @@
----
-title: 管理集群中的 TLS 认证
-content_type: task
----
-<!--
-title: Manage TLS Certificates in a Cluster
-content_type: task
-reviewers:
-- mikedanese
-- beacham
-- liggit
--->
-
-<!-- overview -->
-<!--
-Kubernetes provides a `certificates.k8s.io` API, which lets you provision TLS
-certificates signed by a Certificate Authority (CA) that you control. These CA
-and certificates can be used by your workloads to establish trust.
-
-`certificates.k8s.io` API uses a protocol that is similar to the [ACME
-draft](https://github.com/ietf-wg-acme/acme/).
--->
-Kubernetes 提供 `certificates.k8s.io` API，可让你配置由你控制的证书颁发机构（CA）
-签名的 TLS 证书。 你的工作负载可以使用这些 CA 和证书来建立信任。
-
-`certificates.k8s.io` API使用的协议类似于
-[ACME 草案](https://github.com/ietf-wg-acme/acme/)。
-
-{{< note >}}
-<!--
-Certificates created using the `certificates.k8s.io` API are signed by a
-dedicated CA. It is possible to configure your cluster to use the cluster root
-CA for this purpose, but you should never rely on this. Do not assume that
-these certificates will validate against the cluster root CA.
--->
-使用 `certificates.k8s.io` API 创建的证书由指定 CA 颁发。将集群配置为使用集群根目录
-CA 可以达到这个目的，但是你永远不要依赖这一假定。不要以为
-这些证书将针对群根目录 CA 进行验证。
-{{< /note >}}
-
-## {{% heading "prerequisites" %}}
-
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-<!-- steps -->
-
-<!--
-## Trusting TLS in a Cluster
-
-Trusting the custom CA from an application running as a pod usually requires
-some extra application configuration. You will need to add the CA certificate
-bundle to the list of CA certificates that the TLS client or server trusts. For
-example, you would do this with a golang TLS config by parsing the certificate
-chain and adding the parsed certificates to the `RootCAs` field in the
-[`tls.Config`](https://godoc.org/crypto/tls#Config) struct.
-
-You can distribute the CA certificate as a
-[ConfigMap](/docs/tasks/configure-pod-container/configure-pod-configmap) that your
-pods have access to use.
--->
-## 集群中的 TLS 信任
-
-信任 Pod 中运行的应用程序所提供的 CA 通常需要一些额外的应用程序配置。
-你需要将 CA 证书包添加到 TLS 客户端或服务器信任的 CA 证书列表中。
-例如，你可以使用 Golang TLS 配置通过解析证书链并将解析的证书添加到
-[`tls.Config`](https://godoc.org/crypto/tls#Config) 结构中的 `RootCAs`
-字段中。
-
-你可以用你的应用能够访问到的
-[ConfigMap](/zh/docs/tasks/configure-pod-container/configure-pod-configmap)
-的形式来发布 CA 证书。
-
-<!--
-## Requesting a Certificate
-
-The following section demonstrates how to create a TLS certificate for a
-Kubernetes service accessed through DNS.
-
-{{< note >}}
-This tutorial uses CFSSL: Cloudflare's PKI and TLS toolkit [click here](https://blog.cloudflare.com/introducing-cfssl/) to know more.
-{{< /note >}}
--->
-## 请求证书
-
-以下部分演示如何为通过 DNS 访问的 Kubernetes 服务创建 TLS 证书。
-
-{{< note >}}
-本教程使用 CFSSL：Cloudflare's PKI 和 TLS 工具包
-[点击此处](https://blog.cloudflare.com/introducing-cfssl/)了解更多信息。
-{{< /note >}}
-
-<!--
-## Download and install CFSSL
-
-The cfssl tools used in this example can be downloaded at
-[https://github.com/cloudflare/cfssl/releases](https://github.com/cloudflare/cfssl/releases).
--->
-## 下载并安装 CFSSL
-
-本例中使用的 cfssl 工具可以在 [github.com/cloudflare/cfssl/releases](https://github.com/cloudflare/cfssl/releases) 下载。
-
-<!--
-## Create a Certificate Signing Request
-
-Generate a private key and certificate signing request (or CSR) by running
-the following command:
--->
-## 创建证书签名请求
-
-通过运行以下命令生成私钥和证书签名请求（或 CSR）:
-
-```shell
-cat <<EOF | cfssl genkey - | cfssljson -bare server
-{
-  "hosts": [
-    "my-svc.my-namespace.svc.cluster.local",
-    "my-pod.my-namespace.pod.cluster.local",
-    "192.0.2.24",
-    "10.0.34.2"
-  ],
-  "CN": "system:node:my-pod.my-namespace.pod.cluster.local",
-  "key": {
-    "algo": "ecdsa",
-    "size": 256
-  },
-  "names": [
-    {
-      "O": "system:nodes"
-    }
-  ]
-}
-EOF
-```
-
-<!--
-Where `192.0.2.24` is the service's cluster IP,
-`my-svc.my-namespace.svc.cluster.local` is the service's DNS name,
-`10.0.34.2` is the pod's IP and `my-pod.my-namespace.pod.cluster.local`
-is the pod's DNS name. You should see the following output:
--->
-其中 `192.0.2.24` 是服务的集群 IP，`my-svc.my-namespace.svc.cluster.local`
-是服务的 DNS 名称，`10.0.34.2` 是 Pod 的 IP，而
-`my-pod.my-namespace.pod.cluster.local` 是 Pod 的 DNS 名称。
-你能看到以下的输出：
-
-```
-2017/03/21 06:48:17 [INFO] generate received request
-2017/03/21 06:48:17 [INFO] received CSR
-2017/03/21 06:48:17 [INFO] generating key: ecdsa-256
-2017/03/21 06:48:17 [INFO] encoded CSR
-```
-
-<!--
-This command generates two files; it generates `server.csr` containing the PEM
-encoded [pkcs#10](https://tools.ietf.org/html/rfc2986) certification request,
-and `server-key.pem` containing the PEM encoded key to the certificate that
-is still to be created.
--->
-此命令生成两个文件；它生成包含 PEM 编码
-[pkcs#10](https://tools.ietf.org/html/rfc2986) 证书请求的 `server.csr`，
-以及 PEM 编码密钥的 `server-key.pem`，用于待生成的证书。
-
-<!--
-## Create a Certificate Signing Request object to send to the Kubernetes API
-
-Generate a CSR yaml blob and send it to the apiserver by running the following
-command:
--->
-## 创建证书签名请求对象发送到 Kubernetes API
-
-使用以下命令创建 CSR YAML 文件，并发送到 API 服务器：
-
-```shell
-cat <<EOF | kubectl apply -f -
-apiVersion: certificates.k8s.io/v1
-kind: CertificateSigningRequest
-metadata:
-  name: my-svc.my-namespace
-spec:
-  request: $(cat server.csr | base64 | tr -d '\n')
-  signerName: kubernetes.io/kubelet-serving
-  usages:
-  - digital signature
-  - key encipherment
-  - server auth
-EOF
-```
-
-<!--
-Notice that the `server.csr` file created in step 1 is base64 encoded
-and stashed in the `.spec.request` field. We are also requesting a
-certificate with the "digital signature", "key encipherment", and "server
-auth" key usages, signed by the `kubernetes.io/kubelet-serving` signer.
-A specific `signerName` must be requested.
-View documentation for [supported signer names](/docs/reference/access-authn-authz/certificate-signing-requests/#signers)
-for more information.
-
-The CSR should now be visible from the API in a Pending state. You can see
-it by running:
--->
-请注意，在步骤 1 中创建的 `server.csr` 文件是 base64 编码并存储在
-`.spec.request` 字段中的。我们还要求提供 “digital signature（数字签名）”，
-“密钥加密（key encipherment）” 和 “服务器身份验证（server auth）” 密钥用途，
-由 `kubernetes.io/kubelet-serving` 签名程序签名的证书。
-你也可以要求使用特定的 `signerName`。更多信息可参阅
-[支持的签署者名称](/zh/docs/reference/access-authn-authz/certificate-signing-requests/#signers)。
-
-在 API server 中可以看到这些 CSR 处于 Pending 状态。执行下面的命令你将可以看到：
-
-```shell
-kubectl describe csr my-svc.my-namespace
-```
-
-```none
-Name:                   my-svc.my-namespace
-Labels:                 <none>
-Annotations:            <none>
-CreationTimestamp:      Tue, 21 Mar 2017 07:03:51 -0700
-Requesting User:        yourname@example.com
-Status:                 Pending
-Subject:
-        Common Name:    my-svc.my-namespace.svc.cluster.local
-        Serial Number:
-Subject Alternative Names:
-        DNS Names:      my-svc.my-namespace.svc.cluster.local
-        IP Addresses:   192.0.2.24
-                        10.0.34.2
-Events: <none>
-```
-
-<!--
-## Get the Certificate Signing Request Approved
-
-Approving the certificate signing request is either done by an automated
-approval process or on a one off basis by a cluster administrator. More
-information on what this involves is covered below.
--->
-## 批准证书签名请求
-
-批准证书签名请求是通过自动批准过程完成的，或由集群管理员一次性完成。
-有关这方面涉及的更多信息，请参见下文。
-
-<!--
-## Download the Certificate and Use It
-
-Once the CSR is signed and approved you should see the following:
--->
-## 下载证书并使用它
-
-CSR 被签署并获得批准后，你应该看到以下内容：
-
-```shell
-kubectl get csr
-```
-
-```none
-NAME                  AGE       REQUESTOR               CONDITION
-my-svc.my-namespace   10m       yourname@example.com    Approved,Issued
-```
-
-<!--
-You can download the issued certificate and save it to a `server.crt` file
-by running the following:
--->
-你可以通过运行以下命令下载颁发的证书并将其保存到 `server.crt` 文件中：
-
-```shell
-kubectl get csr my-svc.my-namespace -o jsonpath='{.status.certificate}' \
-    | base64 --decode > server.crt
-```
-
-<!--
-Now you can use `server.crt` and `server-key.pem` as the keypair to start
-your HTTPS server.
--->
-现在你可以将 `server.crt` 和 `server-key.pem` 作为键值对来启动 HTTPS 服务器。
-
-<!--
-## Approving Certificate Signing Requests
-
-A Kubernetes administrator (with appropriate permissions) can manually approve
-(or deny) Certificate Signing Requests by using the `kubectl certificate
-approve` and `kubectl certificate deny` commands. However if you intend
-to make heavy usage of this API, you might consider writing an automated
-certificates controller.
--->
-## 批准证书签名请求
-
-Kubernetes 管理员（具有适当权限）可以使用 `kubectl certificate approve` 和
-`kubectl certificate deny` 命令手动批准（或拒绝）证书签名请求。
-但是，如果你打算大量使用此 API，则可以考虑编写自动化的证书控制器。
-
-<!--
-Whether a machine or a human using kubectl as above, the role of the approver is
-to verify that the CSR satisfies two requirements:
--->
-无论上述机器或人使用 kubectl，批准者的作用是验证 CSR 满足如下两个要求：
-
-<!--
-1. The subject of the CSR controls the private key used to sign the CSR. This
-   addresses the threat of a third party masquerading as an authorized subject.
-   In the above example, this step would be to verify that the pod controls the
-   private key used to generate the CSR.
-2. The subject of the CSR is authorized to act in the requested context. This
-   addresses the threat of an undesired subject joining the cluster. In the
-   above example, this step would be to verify that the pod is allowed to
-   participate in the requested service.
--->
-1. CSR 的 subject 控制用于签署 CSR 的私钥。这解决了伪装成授权主体的第三方的威胁。
-   在上述示例中，此步骤将验证该 Pod 控制了用于生成 CSR 的私钥。
-2. CSR 的 subject 被授权在请求的上下文中执行。
-   这点用于处理不期望的主体被加入集群的威胁。
-   在上述示例中，此步骤将是验证该 Pod 是否被允许加入到所请求的服务中。
-
-<!--
-If and only if these two requirements are met, the approver should approve
-the CSR and otherwise should deny the CSR.
--->
-当且仅当满足这两个要求时，审批者应该批准 CSR，否则拒绝 CSR。
-
-<!--
-## A Word of Warning on the Approval Permission
-
-The ability to approve CSRs decides who trusts who within the cluster. This
-includes who the Kubernetes API trusts. The ability to approve CSRs should
-not be granted broadly or lightly. The requirements of the challenge
-noted in the previous section and the repercussions of issuing a specific
-certificate should be fully understood before granting this permission.
--->
-## 关于批准权限的警告
-
-批准 CSR 的能力决定了群集中的信任关系。这也包括 Kubernetes API 所信任的人。
-批准 CSR 的能力不能过于广泛和轻率。
-在给予本许可之前，应充分了解上一节中提到的挑战和发布特定证书的后果。
-
-<!--
-## A Note to Cluster Administrators
-
-This tutorial assumes that a signer is setup to serve the certificates API. The
-Kubernetes controller manager provides a default implementation of a signer. To
-enable it, pass the `--cluster-signing-cert-file` and
-`--cluster-signing-key-file` parameters to the controller manager with paths to
-your Certificate Authority's keypair.
--->
-## 给集群管理员的一个建议
-
-本教程假设已经为 certificates API 配置了签名者。Kubernetes 控制器管理器
-提供了一个签名者的默认实现。要启用它，请为控制器管理器设置
-`--cluster-signing-cert-file` 和 `--cluster-signing-key-file` 参数，
-使之取值为你的证书机构的密钥对的路径。
-
diff --git a/content/zh/docs/tasks/tools/included/install-kubectl-gcloud.md b/content/zh/docs/tasks/tools/included/install-kubectl-gcloud.md
deleted file mode 100644
index e73932851d..0000000000
--- a/content/zh/docs/tasks/tools/included/install-kubectl-gcloud.md
+++ /dev/null
@@ -1,37 +0,0 @@
----
-title: "通过 gcloud 安装 kubectl"
-description: "用各个特定操作系统标签页中包含的 gcloud 指令片段安装 kubectl。"
-headless: true
----
-<!-- 
----
-title: "gcloud kubectl install"
-description: "How to install kubectl with gcloud snippet for inclusion in each OS-specific tab."
-headless: true
----
--->
-
-<!-- 
-You can install kubectl as part of the Google Cloud SDK.
--->
-kubectl 可以作为 Google Cloud SDK 的一部分被安装。
-
-<!-- 
-1. Install the [Google Cloud SDK](https://cloud.google.com/sdk/).
-1. Run the `kubectl` installation command:
--->
-1. 安装 [Google Cloud SDK](https://cloud.google.com/sdk/)。
-1. 运行安装 `kubectl` 的命令：
-
-   ```shell
-   gcloud components install kubectl
-   ```
-
-   <!-- 
-   1. Test to ensure the version you installed is up-to-date:
-   -->
-1. 验证一下，确保安装的是最新的版本：
-
-   ```shell
-   kubectl version --client
-   ```
\ No newline at end of file
diff --git a/content/zh/docs/tutorials/clusters/_index.md b/content/zh/docs/tutorials/clusters/_index.md
deleted file mode 100644
index 1c8e1495fb..0000000000
--- a/content/zh/docs/tutorials/clusters/_index.md
+++ /dev/null
@@ -1,4 +0,0 @@
----
-title: "集群"
-weight: 60
----
diff --git a/content/zh/docs/tutorials/clusters/apparmor.md b/content/zh/docs/tutorials/clusters/apparmor.md
deleted file mode 100644
index 786fb2ae18..0000000000
--- a/content/zh/docs/tutorials/clusters/apparmor.md
+++ /dev/null
@@ -1,621 +0,0 @@
----
-title: 使用 AppArmor 限制容器对资源的访问
-content_type: tutorial
-weight: 10
----
-<!-- ---
-reviewers:
-- stclair
-title: Restrict a Container's Access to Resources with AppArmor
-content_type: tutorial
-weight: 10
---- -->
-
-<!-- overview -->
-
-{{< feature-state for_k8s_version="v1.4" state="beta" >}}
-
-
-<!-- AppArmor is a Linux kernel security module that supplements the standard Linux user and group based
-permissions to confine programs to a limited set of resources. AppArmor can be configured for any
-application to reduce its potential attack surface and provide greater in-depth defense. It is
-configured through profiles tuned to allow the access needed by a specific program or container,
-such as Linux capabilities, network access, file permissions, etc. Each profile can be run in either
-*enforcing* mode, which blocks access to disallowed resources, or *complain* mode, which only reports
-violations. -->
-Apparmor 是一个 Linux 内核安全模块，它补充了标准的基于 Linux 用户和组的安全模块将程序限制为有限资源集的权限。
-AppArmor 可以配置为任何应用程序减少潜在的攻击面，并且提供更加深入的防御。
-AppArmor 是通过配置文件进行配置的，这些配置文件被调整为允许特定程序或者容器访问，如 Linux 功能、网络访问、文件权限等。
-每个配置文件都可以在*强制（enforcing）*模式（阻止访问不允许的资源）或*投诉（complain）*模式
-（仅报告冲突）下运行。
-
-
-
-
-## {{% heading "objectives" %}}
-
-
-<!-- * See an example of how to load a profile on a node
-* Learn how to enforce the profile on a Pod
-* Learn how to check that the profile is loaded
-* See what happens when a profile is violated
-* See what happens when a profile cannot be loaded -->
-* 查看如何在节点上加载配置文件示例
-* 了解如何在 Pod 上强制执行配置文件
-* 了解如何检查配置文件是否已加载
-* 查看违反配置文件时会发生什么情况
-* 查看无法加载配置文件时会发生什么情况
-
-
-
-## {{% heading "prerequisites" %}}
-
-
-<!-- Make sure: -->
-务必：
-
-<!-- 1. Kubernetes version is at least v1.4 -- Kubernetes support for AppArmor was added in
-   v1.4. Kubernetes components older than v1.4 are not aware of the new AppArmor annotations, and
-   will **silently ignore** any AppArmor settings that are provided. To ensure that your Pods are
-   receiving the expected protections, it is important to verify the Kubelet version of your nodes:
-
-   ```shell
-   kubectl get nodes -o=jsonpath=$'{range .items[*]}{@.metadata.name}: {@.status.nodeInfo.kubeletVersion}\n{end}'
-   ```
-   ```
-   gke-test-default-pool-239f5d02-gyn2: v1.4.0
-   gke-test-default-pool-239f5d02-x1kf: v1.4.0
-   gke-test-default-pool-239f5d02-xwux: v1.4.0
-   ``` -->
-1. Kubernetes 版本至少是 v1.4 -- AppArmor 在 Kubernetes v1.4 版本中才添加了对 AppArmor 的支持。早于 v1.4 版本的 Kubernetes 组件不知道新的 AppArmor 注释，并且将会 **默认忽略** 提供的任何 AppArmor 设置。为了确保您的 Pods 能够得到预期的保护，必须验证节点的 Kubelet 版本：
-
-  ```shell
-   kubectl get nodes -o=jsonpath=$'{range .items[*]}{@.metadata.name}: {@.status.nodeInfo.kubeletVersion}\n{end}'
-   ```
-   ```
-   gke-test-default-pool-239f5d02-gyn2: v1.4.0
-   gke-test-default-pool-239f5d02-x1kf: v1.4.0
-   gke-test-default-pool-239f5d02-xwux: v1.4.0
-   ```
-
-<!-- 2. AppArmor kernel module is enabled -- For the Linux kernel to enforce an AppArmor profile, the
-   AppArmor kernel module must be installed and enabled. Several distributions enable the module by
-   default, such as Ubuntu and SUSE, and many others provide optional support. To check whether the
-   module is enabled, check the `/sys/module/apparmor/parameters/enabled` file:
-
-   ```shell
-   cat /sys/module/apparmor/parameters/enabled
-   Y
-   ```
-
-   If the Kubelet contains AppArmor support (>= v1.4), it will refuse to run a Pod with AppArmor
-   options if the kernel module is not enabled.
-
-  {{< note >}}
-  Ubuntu carries many AppArmor patches that have not been merged into the upstream Linux
-  kernel, including patches that add additional hooks and features. Kubernetes has only been
-  tested with the upstream version, and does not promise support for other features.
-  {{< /note >}} -->
-2. AppArmor 内核模块已启用 -- 要使 Linux 内核强制执行 AppArmor 配置文件，必须安装并且启动 AppArmor 内核模块。默认情况下，有几个发行版支持该模块，如 Ubuntu 和 SUSE，还有许多发行版提供可选支持。要检查模块是否已启用，请检查
-`/sys/module/apparmor/parameters/enabled` 文件：
-  ```shell
-   cat /sys/module/apparmor/parameters/enabled
-   Y
-   ```
-   如果 Kubelet 包含 AppArmor 支持(>=v1.4)，如果内核模块未启用，它将拒绝运行带有 AppArmor 选项的 Pod。
-
-  {{< note >}}
-  Ubuntu 携带了许多没有合并到上游 Linux 内核中的 AppArmor 补丁，包括添加附加钩子和特性的补丁。Kubernetes 只在上游版本中测试过，不承诺支持其他特性。
-  {{< /note >}}
-
-<!-- 3. Container runtime is Docker -- Currently the only Kubernetes-supported container runtime that
-   also supports AppArmor is Docker. As more runtimes add AppArmor support, the options will be
-   expanded. You can verify that your nodes are running docker with:
-
-   ```shell
-   kubectl get nodes -o=jsonpath=$'{range .items[*]}{@.metadata.name}: {@.status.nodeInfo.containerRuntimeVersion}\n{end}'
-   ```
-   ```
-   gke-test-default-pool-239f5d02-gyn2: docker://1.11.2
-   gke-test-default-pool-239f5d02-x1kf: docker://1.11.2
-   gke-test-default-pool-239f5d02-xwux: docker://1.11.2
-   ```
-
-   If the Kubelet contains AppArmor support (>= v1.4), it will refuse to run a Pod with AppArmor
-   options if the runtime is not Docker. -->
-3. Docker 作为容器运行环境 -- 目前，支持 Kubernetes 运行的容器中只有 Docker 也支持 AppArmor。随着更多的运行时添加 AppArmor 的支持，可选项将会增多。您可以使用以下命令验证节点是否正在运行 Docker:
-   ```shell
-   kubectl get nodes -o=jsonpath=$'{range .items[*]}{@.metadata.name}: {@.status.nodeInfo.containerRuntimeVersion}\n{end}'
-   ```
-   ```
-   gke-test-default-pool-239f5d02-gyn2: docker://1.11.2
-   gke-test-default-pool-239f5d02-x1kf: docker://1.11.2
-   gke-test-default-pool-239f5d02-xwux: docker://1.11.2
-   ```
-
-   如果 Kubelet 包含 AppArmor 支持(>=v1.4)，如果运行环境不是 Docker，它将拒绝运行带有 AppArmor 选项的 Pod。
-
-<!-- 4. Profile is loaded -- AppArmor is applied to a Pod by specifying an AppArmor profile that each
-   container should be run with. If any of the specified profiles is not already loaded in the
-   kernel, the Kubelet (>= v1.4) will reject the Pod. You can view which profiles are loaded on a
-   node by checking the `/sys/kernel/security/apparmor/profiles` file. For example:
-
-   ```shell
-   ssh gke-test-default-pool-239f5d02-gyn2 "sudo cat /sys/kernel/security/apparmor/profiles | sort"
-   ```
-   ```
-   apparmor-test-deny-write (enforce)
-   apparmor-test-audit-write (enforce)
-   docker-default (enforce)
-   k8s-nginx (enforce)
-   ```
-
-   For more details on loading profiles on nodes, see
-   [Setting up nodes with profiles](#setting-up-nodes-with-profiles). -->
-4. 配置文件已加载 -- 通过指定每个容器都应使用 AppArmor 配置文件，AppArmor 应用于 Pod。如果指定的任何配置文件尚未加载到内核， Kubelet (>=v1.4) 将拒绝 Pod。通过检查 `/sys/kernel/security/apparmor/profiles` 文件，可以查看节点加载了哪些配置文件。例如:
-
-   ```shell
-   ssh gke-test-default-pool-239f5d02-gyn2 "sudo cat /sys/kernel/security/apparmor/profiles | sort"
-   ```
-   ```
-   apparmor-test-deny-write (enforce)
-   apparmor-test-audit-write (enforce)
-   docker-default (enforce)
-   k8s-nginx (enforce)
-   ```
-
-   <!-- For more details on loading profiles on nodes, see
-   [Setting up nodes with profiles](#setting-up-nodes-with-profiles). -->
-   有关在节点上加载配置文件的详细信息，请参见[使用配置文件设置节点](#setting-up-nodes-with-profiles)。
-
-<!-- As long as the Kubelet version includes AppArmor support (>= v1.4), the Kubelet will reject a Pod
-with AppArmor options if any of the prerequisites are not met. You can also verify AppArmor support
-on nodes by checking the node ready condition message (though this is likely to be removed in a
-later release): -->
-只要 Kubelet 版本包含 AppArmor 支持(>=v1.4)，如果不满足任何先决条件，Kubelet 将拒绝带有 AppArmor 选项的 Pod。您还可以通过检查节点就绪状况消息来验证节点上的 AppArmor 支持(尽管这可能会在以后的版本中删除)：
-
-```shell
-kubectl get nodes -o=jsonpath=$'{range .items[*]}{@.metadata.name}: {.status.conditions[?(@.reason=="KubeletReady")].message}\n{end}'
-```
-```
-gke-test-default-pool-239f5d02-gyn2: kubelet is posting ready status. AppArmor enabled
-gke-test-default-pool-239f5d02-x1kf: kubelet is posting ready status. AppArmor enabled
-gke-test-default-pool-239f5d02-xwux: kubelet is posting ready status. AppArmor enabled
-```
-
-
-
-<!-- lessoncontent -->
-
-<!-- ## Securing a Pod -->
-## 保护 Pod
-
-{{< note >}}
-<!-- AppArmor is currently in beta, so options are specified as annotations. Once support graduates to
-general availability, the annotations will be replaced with first-class fields (more details in
-[Upgrade path to GA](#upgrade-path-to-general-availability)). -->
-AppArmor 目前处于测试阶段，因此选项被指定为注释。一旦 AppArmor 被授予支持通用，注释将替换为首要的字段(更多详情参见[升级到 GA 的途径](#upgrade-path-to-general-availability))。
-{{< /note >}}
-
-<!-- AppArmor profiles are specified *per-container*. To specify the AppArmor profile to run a Pod
-container with, add an annotation to the Pod's metadata: -->
-AppArmor 配置文件被指定为 *per-container*。要指定要用其运行 Pod 容器的 AppArmor 配置文件，请向 Pod 的元数据添加注释：
-
-```yaml
-container.apparmor.security.beta.kubernetes.io/<container_name>: <profile_ref>
-```
-
-<!-- Where `<container_name>` is the name of the container to apply the profile to, and `<profile_ref>`
-specifies the profile to apply. The `profile_ref` can be one of: -->
-`<container_name>` 的名称是容器的简称，用以描述简介，并且简称为 `<profile_ref>` 。`<profile_ref>` 可以作为其中之一：
-
-<!-- * `runtime/default` to apply the runtime's default profile
-* `localhost/<profile_name>` to apply the profile loaded on the host with the name `<profile_name>`
-* `unconfined` to indicate that no profiles will be loaded -->
-* `runtime/default` 应用运行时的默认配置
-* `localhost/<profile_name>` 应用在名为 `<profile_name>` 的主机上加载的配置文件
-* `unconfined` 表示不加载配置文件
-
-<!-- See the [API Reference](#api-reference) for the full details on the annotation and profile name formats. -->
-有关注释和配置文件名称格式的详细信息，请参阅[API 参考](#api-reference)。
-
-<!-- Kubernetes AppArmor enforcement works by first checking that all the prerequisites have been
-met, and then forwarding the profile selection to the container runtime for enforcement. If the
-prerequisites have not been met, the Pod will be rejected, and will not run. -->
-Kubernetes AppArmor 强制执行方式首先通过检查所有先决条件都已满足，然后将配置文件选择转发到容器运行时进行强制执行。如果未满足先决条件， Pod 将被拒绝，并且不会运行。
-
-<!-- To verify that the profile was applied, you can look for the AppArmor security option listed in the container created event: -->
-要验证是否应用了配置文件，可以查找容器创建事件中列出的 AppArmor 安全选项：
-
-```shell
-kubectl get events | grep Created
-```
-```
-22s        22s         1         hello-apparmor     Pod       spec.containers{hello}   Normal    Created     {kubelet e2e-test-stclair-node-pool-31nt}   Created container with docker id 269a53b202d3; Security:[seccomp=unconfined apparmor=k8s-apparmor-example-deny-write]
-```
-
-<!-- You can also verify directly that the container's root process is running with the correct profile by checking its proc attr: -->
-您还可以通过检查容器的 proc attr，直接验证容器的根进程是否以正确的配置文件运行：
-
-```shell
-kubectl exec <pod_name> cat /proc/1/attr/current
-```
-```
-k8s-apparmor-example-deny-write (enforce)
-```
-
-<!-- ## Example -->
-## 举例
-
-<!-- *This example assumes you have already set up a cluster with AppArmor support.* -->
-*本例假设您已经使用 AppArmor 支持设置了一个集群。*
-
-<!-- First, we need to load the profile we want to use onto our nodes. This profile denies all file writes: -->
-首先，我们需要将要使用的配置文件加载到节点上。配置文件拒绝所有文件写入：
-
-```shell
-#include <tunables/global>
-profile k8s-apparmor-example-deny-write flags=(attach_disconnected) {
-  #include <abstractions/base>
-  file,
-  # Deny all file writes.
-  deny /** w,
-}
-```
-
-<!-- Since we don't know where the Pod will be scheduled, we'll need to load the profile on all our
-nodes. For this example we'll use SSH to install the profiles, but other approaches are
-discussed in [Setting up nodes with profiles](#setting-up-nodes-with-profiles). 
--->
-由于我们不知道 Pod 将被调度到哪里，我们需要在所有节点上加载配置文件。
-在本例中，我们将使用 SSH 来安装概要文件，但是在[使用配置文件设置节点](#setting-up-nodes-with-profiles)
-中讨论了其他方法。
-
-```shell
-NODES=(
-    # The SSH-accessible domain names of your nodes
-    gke-test-default-pool-239f5d02-gyn2.us-central1-a.my-k8s
-    gke-test-default-pool-239f5d02-x1kf.us-central1-a.my-k8s
-    gke-test-default-pool-239f5d02-xwux.us-central1-a.my-k8s)
-for NODE in ${NODES[*]}; do ssh $NODE 'sudo apparmor_parser -q <<EOF
-#include <tunables/global>
-
-profile k8s-apparmor-example-deny-write flags=(attach_disconnected) {
-  #include <abstractions/base>
-
-  file,
-
-  # Deny all file writes.
-  deny /** w,
-}
-EOF'
-done
-```
-
-<!-- Next, we'll run a simple "Hello AppArmor" pod with the deny-write profile: -->
-接下来，我们将运行一个带有拒绝写入配置文件的简单 "Hello AppArmor" pod：
-
-{{< codenew file="pods/security/hello-apparmor.yaml" >}}
-
-```shell
-kubectl create -f ./hello-apparmor.yaml
-```
-
-<!-- If we look at the pod events, we can see that the Pod container was created with the AppArmor
-profile "k8s-apparmor-example-deny-write": -->
-如果我们查看 pod 事件，我们可以看到 pod 容器是用 AppArmor 配置文件 "k8s-apparmor-example-deny-write" 所创建的：
-
-```shell
-kubectl get events | grep hello-apparmor
-```
-```
-14s        14s         1         hello-apparmor   Pod                                Normal    Scheduled   {default-scheduler }                           Successfully assigned hello-apparmor to gke-test-default-pool-239f5d02-gyn2
-14s        14s         1         hello-apparmor   Pod       spec.containers{hello}   Normal    Pulling     {kubelet gke-test-default-pool-239f5d02-gyn2}   pulling image "busybox"
-13s        13s         1         hello-apparmor   Pod       spec.containers{hello}   Normal    Pulled      {kubelet gke-test-default-pool-239f5d02-gyn2}   Successfully pulled image "busybox"
-13s        13s         1         hello-apparmor   Pod       spec.containers{hello}   Normal    Created     {kubelet gke-test-default-pool-239f5d02-gyn2}   Created container with docker id 06b6cd1c0989; Security:[seccomp=unconfined apparmor=k8s-apparmor-example-deny-write]
-13s        13s         1         hello-apparmor   Pod       spec.containers{hello}   Normal    Started     {kubelet gke-test-default-pool-239f5d02-gyn2}   Started container with docker id 06b6cd1c0989
-```
-
-<!-- We can verify that the container is actually running with that profile by checking its proc attr: -->
-我们可以通过检查该配置文件的 proc attr 来验证容器是否实际使用该配置文件运行：
-
-```shell
-kubectl exec hello-apparmor cat /proc/1/attr/current
-```
-```
-k8s-apparmor-example-deny-write (enforce)
-```
-
-<!-- Finally, we can see what happens if we try to violate the profile by writing to a file: -->
-最后，我们可以看到如果试图通过写入文件来违反配置文件，会发生什么情况：
-
-```shell
-kubectl exec hello-apparmor touch /tmp/test
-```
-```
-touch: /tmp/test: Permission denied
-error: error executing remote command: command terminated with non-zero exit code: Error executing in Docker Container: 1
-```
-
-<!-- To wrap up, let's look at what happens if we try to specify a profile that hasn't been loaded: -->
-最后，让我们看看如果我们试图指定一个尚未加载的配置文件会发生什么：
-
-```shell
-kubectl create -f /dev/stdin <<EOF
-```
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: hello-apparmor-2
-  annotations:
-    container.apparmor.security.beta.kubernetes.io/hello: localhost/k8s-apparmor-example-allow-write
-spec:
-  containers:
-  - name: hello
-    image: busybox
-    command: [ "sh", "-c", "echo 'Hello AppArmor!' && sleep 1h" ]
-EOF
-pod/hello-apparmor-2 created
-```
-
-```shell
-kubectl describe pod hello-apparmor-2
-```
-```
-Name:          hello-apparmor-2
-Namespace:     default
-Node:          gke-test-default-pool-239f5d02-x1kf/
-Start Time:    Tue, 30 Aug 2016 17:58:56 -0700
-Labels:        <none>
-Annotations:   container.apparmor.security.beta.kubernetes.io/hello=localhost/k8s-apparmor-example-allow-write
-Status:        Pending
-Reason:        AppArmor
-Message:       Pod Cannot enforce AppArmor: profile "k8s-apparmor-example-allow-write" is not loaded
-IP:
-Controllers:   <none>
-Containers:
-  hello:
-    Container ID:
-    Image:     busybox
-    Image ID:
-    Port:
-    Command:
-      sh
-      -c
-      echo 'Hello AppArmor!' && sleep 1h
-    State:              Waiting
-      Reason:           Blocked
-    Ready:              False
-    Restart Count:      0
-    Environment:        <none>
-    Mounts:
-      /var/run/secrets/kubernetes.io/serviceaccount from default-token-dnz7v (ro)
-Conditions:
-  Type          Status
-  Initialized   True
-  Ready         False
-  PodScheduled  True
-Volumes:
-  default-token-dnz7v:
-    Type:    Secret (a volume populated by a Secret)
-    SecretName:    default-token-dnz7v
-    Optional:   false
-QoS Class:      BestEffort
-Node-Selectors: <none>
-Tolerations:    <none>
-Events:
-  FirstSeen    LastSeen    Count    From                        SubobjectPath    Type        Reason        Message
-  ---------    --------    -----    ----                        -------------    --------    ------        -------
-  23s          23s         1        {default-scheduler }                         Normal      Scheduled     Successfully assigned hello-apparmor-2 to e2e-test-stclair-node-pool-t1f5
-  23s          23s         1        {kubelet e2e-test-stclair-node-pool-t1f5}             Warning        AppArmor    Cannot enforce AppArmor: profile "k8s-apparmor-example-allow-write" is not loaded
-```
-
-<!-- Note the pod status is Pending, with a helpful error message: `Pod Cannot enforce AppArmor: profile
-"k8s-apparmor-example-allow-write" is not loaded`. An event was also recorded with the same message. -->
-注意 pod 呈现 Pending 状态，并且显示一条有用的错误信息：`Pod Cannot enforce AppArmor: profile
-"k8s-apparmor-example-allow-write" 未加载`。还用相同的消息记录了一个事件。
-
-<!-- ## Administration -->
-## 管理
-
-<!-- ### Setting up nodes with profiles -->
-### 使用配置文件设置节点
-
-<!-- Kubernetes does not currently provide any native mechanisms for loading AppArmor profiles onto
-nodes. There are lots of ways to setup the profiles though, such as: -->
-Kubernetes 目前不提供任何本地机制来将 AppArmor 配置文件加载到节点上。有很多方法可以设置配置文件，例如：
-
-<!-- * Through a [DaemonSet](/docs/concepts/workloads/controllers/daemonset/) that runs a Pod on each node to
-  ensure the correct profiles are loaded. An example implementation can be found
-  [here](https://git.k8s.io/kubernetes/test/images/apparmor-loader).
-* At node initialization time, using your node initialization scripts (e.g. Salt, Ansible, etc.) or
-  image.
-* By copying the profiles to each node and loading them through SSH, as demonstrated in the
-  [Example](#example). -->
-* 通过在每个节点上运行 Pod 的[DaemonSet](/zh/docs/concepts/workloads/controllers/daemonset/)确保加载了正确的配置文件。可以找到一个示例实现[这里](https://git.k8s.io/kubernetes/test/images/apparmor-loader)。
-* 在节点初始化时，使用节点初始化脚本(例如 Salt 、Ansible 等)或镜像。
-* 通过将配置文件复制到每个节点并通过 SSH 加载它们，如[示例](#example)。
-
-<!-- The scheduler is not aware of which profiles are loaded onto which node, so the full set of profiles
-must be loaded onto every node.  An alternative approach is to add a node label for each profile (or
-class of profiles) on the node, and use a
-[node selector](/docs/concepts/configuration/assign-pod-node/) to ensure the Pod is run on a
-node with the required profile. -->
-调度程序不知道哪些配置文件加载到哪个节点上，因此必须将全套配置文件加载到每个节点上。另一种方法是为节点上的每个配置文件(或配置文件类)添加节点标签，并使用[节点选择器](/zh/docs/concepts/configuration/assign pod node/)确保 Pod 在具有所需配置文件的节点上运行。
-
-<!-- ### Restricting profiles with the PodSecurityPolicy -->
-### 使用 PodSecurityPolicy 限制配置文件
-
-{{< note >}}
-<!-- 
-PodSecurityPolicy is deprecated in Kubernetes v1.21, and will be removed in v1.25.
-See [PodSecurityPolicy documentation](/docs/concepts/policy/pod-security-policy/) for more information.
--->
-PodSecurityPolicy 在 Kubernetes v1.21 版本中已被废弃，将在 v1.25 版本移除。
-查看 [PodSecurityPolicy 文档](/zh/docs/concepts/policy/pod-security-policy/)获取更多信息。
-{{< /note >}}
-
-<!-- If the PodSecurityPolicy extension is enabled, cluster-wide AppArmor restrictions can be applied. To
-enable the PodSecurityPolicy, the following flag must be set on the `apiserver`: -->
-如果启用了 PodSecurityPolicy 扩展，则可以应用群集范围的 AppArmor 限制。要启用 PodSecurityPolicy，必须在“apiserver”上设置以下标志：
-
-```
---enable-admission-plugins=PodSecurityPolicy[,others...]
-```
-
-<!-- The AppArmor options can be specified as annotations on the PodSecurityPolicy: -->
-AppArmor 选项可以指定为 PodSecurityPolicy 上的注释：
-
-```yaml
-apparmor.security.beta.kubernetes.io/defaultProfileName: <profile_ref>
-apparmor.security.beta.kubernetes.io/allowedProfileNames: <profile_ref>[,others...]
-```
-
-<!-- The default profile name option specifies the profile to apply to containers by default when none is
-specified. The allowed profile names option specifies a list of profiles that Pod containers are
-allowed to be run with. If both options are provided, the default must be allowed. The profiles are
-specified in the same format as on containers. See the [API Reference](#api-reference) for the full
-specification. -->
-默认配置文件名选项指定默认情况下在未指定任何配置文件时应用于容器的配置文件。节点允许配置文件名选项指定允许 Pod 容器运行时的配置文件列表。配置文件的指定格式与容器上的相同。完整规范见[API 参考](#api-reference)。
-
-<!-- ### Disabling AppArmor -->
-### 禁用 AppArmor
-
-<!-- If you do not want AppArmor to be available on your cluster, it can be disabled by a command-line flag: -->
-如果您不希望 AppArmor 在集群上可用，可以通过命令行标志禁用它：
-
-```
---feature-gates=AppArmor=false
-```
-
-<!-- When disabled, any Pod that includes an AppArmor profile will fail validation with a "Forbidden"
-error. Note that by default docker always enables the "docker-default" profile on non-privileged
-pods (if the AppArmor kernel module is enabled), and will continue to do so even if the feature-gate
-is disabled. The option to disable AppArmor will be removed when AppArmor graduates to general
-availability (GA). -->
-禁用时，任何包含 AppArmor 配置文件的 Pod 都将因 "Forbidden" 错误而导致验证失败。注意，默认情况下，docker 总是在非特权 pods 上启用 "docker-default" 配置文件(如果 AppArmor 内核模块已启用)，并且即使功能门已禁用，也将继续启用该配置文件。当 AppArmor 应用于通用(GA)时，禁用 Apparmor 的选项将被删除。
-
-<!-- ### Upgrading to Kubernetes v1.4 with AppArmor -->
-### 使用 AppArmor 升级到 Kubernetes v1.4
-
-<!-- No action is required with respect to AppArmor to upgrade your cluster to v1.4. However, if any
-existing pods had an AppArmor annotation, they will not go through validation (or PodSecurityPolicy
-admission). If permissive profiles are loaded on the nodes, a malicious user could pre-apply a
-permissive profile to escalate the pod privileges above the docker-default. If this is a concern, it
-is recommended to scrub the cluster of any pods containing an annotation with
-`apparmor.security.beta.kubernetes.io`. -->
-不需要对 AppArmor 执行任何操作即可将集群升级到 v1.4。但是，如果任何现有的 pods 有一个 AppArmor 注释，它们将不会通过验证(或 PodSecurityPolicy 认证)。如果节点上加载了许可配置文件，恶意用户可以预先应用许可配置文件，将 pod 权限提升到 docker-default 权限之上。如果存在这个问题，建议清除包含 `apparmor.security.beta.kubernetes.io` 注释的任何 pods 的集群。
-
-<!-- ### Upgrade path to General Availability -->
-### 升级到一般可用性的途径
-
-<!-- When AppArmor is ready to be graduated to general availability (GA), the options currently specified
-through annotations will be converted to fields. Supporting all the upgrade and downgrade paths
-through the transition is very nuanced, and will be explained in detail when the transition
-occurs. We will commit to supporting both fields and annotations for at least 2 releases, and will
-explicitly reject the annotations for at least 2 releases after that. -->
-当 Apparmor 准备升级到通用(GA)时，当前指定的选项通过注释将转换为字段。通过转换支持所有升级和降级路径是非常微妙的，并将在转换发生时详细解释。我们将承诺在至少两个版本中同时支持字段和注释，并在之后的至少两个版本中显式拒绝注释。
-
-<!-- ## Authoring Profiles -->
-## 编写配置文件
-
-<!-- Getting AppArmor profiles specified correctly can be a tricky business. Fortunately there are some
-tools to help with that: -->
-获得正确指定的 AppArmor 配置文件可能是一件棘手的事情。幸运的是，有一些工具可以帮助您做到这一点：
-
-<!-- * `aa-genprof` and `aa-logprof` generate profile rules by monitoring an application's activity and
-  logs, and admitting the actions it takes. Further instructions are provided by the
-  [AppArmor documentation](https://gitlab.com/apparmor/apparmor/wikis/Profiling_with_tools).
-* [bane](https://github.com/jfrazelle/bane) is an AppArmor profile generator for Docker that uses a
-  simplified profile language. -->
-* `aa-genprof` and `aa-logprof` 通过监视应用程序的活动和日志并承认它所采取的操作来生成配置文件规则。更多说明由[AppArmor 文档](https://gitlab.com/apparmor/apparmor/wikis/Profiling_with_tools)提供。
-* [bane](https://github.com/jfrazelle/bane)是一个用于 Docker的 AppArmor 档案生成器，它使用简化的档案语言。
-
-<!-- It is recommended to run your application through Docker on a development workstation to generate
-the profiles, but there is nothing preventing running the tools on the Kubernetes node where your
-Pod is running. -->
-建议在开发工作站上通过 Docker 运行应用程序以生成配置文件，但是没有什么可以阻止在运行 Pod 的 Kubernetes 节点上运行工具。
-
-<!-- To debug problems with AppArmor, you can check the system logs to see what, specifically, was
-denied. AppArmor logs verbose messages to `dmesg`, and errors can usually be found in the system
-logs or through `journalctl`. More information is provided in
-[AppArmor failures](https://gitlab.com/apparmor/apparmor/wikis/AppArmor_Failures). -->
-想要调试 AppArmor 的问题，您可以检查系统日志，查看具体拒绝了什么。AppArmor 将详细消息记录到 `dmesg` ，错误通常可以在系统日志中或通过 `journalctl` 找到。更多详细信息见[AppArmor 失败](https://gitlab.com/apparmor/apparmor/wikis/AppArmor_Failures)。
-
-<!-- ## API Reference -->
-## API 参考
-
-<!-- ### Pod Annotation -->
-### Pod 注释
-
-<!-- Specifying the profile a container will run with: -->
-指定容器将使用的配置文件：
-
-<!-- - **key**: `container.apparmor.security.beta.kubernetes.io/<container_name>`
-  Where `<container_name>` matches the name of a container in the Pod.
-  A separate profile can be specified for each container in the Pod.
-- **value**: a profile reference, described below -->
-- **key**: `container.apparmor.security.beta.kubernetes.io/<container_name>` 中的 `<container_name>` 匹配 Pod 中的容器名称。
-  可以为 Pod 中的每个容器指定单独的配置文件。
-- **value**: 配置文件参考，如下所述
-
-<!-- ### Profile Reference -->
-### 配置文件参考
-
-<!-- - `runtime/default`: Refers to the default runtime profile.
-  - Equivalent to not specifying a profile (without a PodSecurityPolicy default), except it still
-    requires AppArmor to be enabled.
-  - For Docker, this resolves to the
-    [`docker-default`](https://docs.docker.com/engine/security/apparmor/) profile for non-privileged
-    containers, and unconfined (no profile) for privileged containers.
-- `localhost/<profile_name>`: Refers to a profile loaded on the node (localhost) by name.
-  - The possible profile names are detailed in the
-    [core policy reference](https://gitlab.com/apparmor/apparmor/wikis/AppArmor_Core_Policy_Reference#profile-names-and-attachment-specifications).
-- `unconfined`: This effectively disables AppArmor on the container. -->
-- `runtime/default`: 指默认运行时配置文件。
-  - 等同于不指定配置文件(没有 PodSecurityPolicy 默认值)，除非它仍然需要启用 AppArmor。
-  - 对于 Docker，这将解析为非特权容器的[`Docker default`](https://docs.docker.com/engine/security/apparmor/)配置文件，特权容器的配置文件为未定义(无配置文件)。
-- `localhost/<profile_name>`: 指按名称加载到节点(localhost)上的配置文件。
-  - 可能的配置文件名在 [核心策略参考](https://gitlab.com/apparmor/apparmor/wikis/AppArmor_Core_Policy_Reference#profile-names-and-attachment-specifications)。
-- `unconfined`: 这有效地禁用了容器上的 AppArmor 。
-
-<!-- Any other profile reference format is invalid. -->
-任何其他配置文件引用格式无效。
-
-<!-- ### PodSecurityPolicy Annotations -->
-### PodSecurityPolicy 注解
-
-<!-- Specifying the default profile to apply to containers when none is provided: -->
-指定在未提供容器时应用于容器的默认配置文件：
-
-<!-- * **key**: `apparmor.security.beta.kubernetes.io/defaultProfileName`
-* **value**: a profile reference, described above -->
-* **key**: `apparmor.security.beta.kubernetes.io/defaultProfileName`
-* **value**: 如上述文件参考所述
-
-<!-- Specifying the list of profiles Pod containers is allowed to specify: -->
-上面描述的指定配置文件， Pod 容器列表的配置文件引用允许指定：
-
-<!-- * **key**: `apparmor.security.beta.kubernetes.io/allowedProfileNames`
-* **value**: a comma-separated list of profile references (described above)
-  - Although an escaped comma is a legal character in a profile name, it cannot be explicitly
-    allowed here. -->
-* **key**: `apparmor.security.beta.kubernetes.io/allowedProfileNames`
-* **value**: 配置文件引用的逗号分隔列表(如上所述)
-  - 尽管转义逗号是配置文件名中的合法字符，但此处不能显式允许。
-
-
-
-## {{% heading "whatsnext" %}}
-
-
-<!-- Additional resources: -->
-其他资源
-
-<!-- * [Quick guide to the AppArmor profile language](https://gitlab.com/apparmor/apparmor/wikis/QuickProfileLanguage)
-* [AppArmor core policy reference](https://gitlab.com/apparmor/apparmor/wikis/Policy_Layout) -->
-* [Apparmor 配置文件语言快速指南](https://gitlab.com/apparmor/apparmor/wikis/QuickProfileLanguage)
-* [Apparmor 核心策略参考](https://gitlab.com/apparmor/apparmor/wikis/Policy_Layout)
-
-
diff --git a/content/zh/docs/tutorials/clusters/seccomp.md b/content/zh/docs/tutorials/clusters/seccomp.md
deleted file mode 100644
index d724d605b6..0000000000
--- a/content/zh/docs/tutorials/clusters/seccomp.md
+++ /dev/null
@@ -1,626 +0,0 @@
----
-title: 使用 Seccomp 限制容器的系统调用
-content_type: tutorial
-weight: 20
-min-kubernetes-server-version: v1.22
----
-
-<!-- overview -->
-
-{{< feature-state for_k8s_version="v1.19" state="stable" >}}
-
-<!--
-Seccomp stands for secure computing mode and has been a feature of the Linux
-kernel since version 2.6.12. It can be used to sandbox the privileges of a
-process, restricting the calls it is able to make from userspace into the
-kernel. Kubernetes lets you automatically apply seccomp profiles loaded onto a
-Node to your Pods and containers.
-
-Identifying the privileges required for your workloads can be difficult. In this
-tutorial, you will go through how to load seccomp profiles into a local
-Kubernetes cluster, how to apply them to a Pod, and how you can begin to craft
-profiles that give only the necessary privileges to your container processes.
--->
-Seccomp 代表安全计算模式，自 2.6.12 版本以来一直是 Linux 内核的功能。
-它可以用来对进程的特权进行沙盒处理，从而限制了它可以从用户空间向内核进行的调用。
-Kubernetes 允许你将加载到节点上的 seccomp 配置文件自动应用于 Pod 和容器。
-
-确定工作负载所需的特权可能很困难。在本教程中，你将了解如何将 seccomp 配置文件
-加载到本地 Kubernetes 集群中，如何将它们应用到 Pod，以及如何开始制作仅向容器
-进程提供必要特权的配置文件。
-
-## {{% heading "objectives" %}}
-
-<!--
-* Learn how to load seccomp profiles on a node
-* Learn how to apply a seccomp profile to a container
-* Observe auditing of syscalls made by a container process
-* Observe behavior when a missing profile is specified
-* Observe a violation of a seccomp profile
-* Learn how to create fine-grained seccomp profiles
-* Learn how to apply a container runtime default seccomp profile
--->
-* 了解如何在节点上加载 seccomp 配置文件
-* 了解如何将 seccomp 配置文件应用于容器
-* 观察由容器进程进行的系统调用的审核
-* 观察当指定了一个不存在的配置文件时的行为
-* 观察违反 seccomp 配置的情况
-* 了解如何创建精确的 seccomp 配置文件
-* 了解如何应用容器运行时默认 seccomp 配置文件
-
-## {{% heading "prerequisites" %}}
-
-{{< version-check >}}
-
-<!--
-In order to complete all steps in this tutorial, you must install
-[kind](https://kind.sigs.k8s.io/docs/user/quick-start/) and
-[kubectl](/docs/tasks/tools/). This tutorial will show examples
-both alpha (new in v1.22) and generally available seccomp functionality. You should
-make sure that your cluster is [configured
-correctly](https://kind.sigs.k8s.io/docs/user/quick-start/#setting-kubernetes-version)
-for the version you are using.
--->
-为了完成本教程中的所有步骤，你必须安装 [kind](https://kind.sigs.k8s.io/docs/user/quick-start/) 
-和 [kubectl](/zh/docs/tasks/tools/)。本教程将显示同时具有 alpha（v1.22 新版本）
-和通常可用的 seccomp 功能的示例。
-你应该确保为所使用的版本[正确配置](https://kind.sigs.k8s.io/docs/user/quick-start/#setting-kubernetes-version)了集群。
-
-<!-- steps -->
-
-<!-- 
-## Enable the use of `RuntimeDefault` as the default seccomp profile for all workloads
-
-{{< feature-state state="alpha" for_k8s_version="v1.22" >}}
-
-`SeccompDefault` is an optional kubelet
-[feature gate](/docs/reference/command-line-tools-reference/feature-gates) as
-well as corresponding `--seccomp-default`
-[command line flag](/docs/reference/command-line-tools-reference/kubelet).
-Both have to be enabled simultaneously to use the feature.
--->
-## 启用 `RuntimeDefault` 作为所有工作负载的默认 seccomp 配置文件
-
-{{< feature-state state="alpha" for_k8s_version="v1.22" >}}
-
-`SeccompDefault` 是一个可选的 kubelet
-[特性门控](/zh/docs/reference/command-line-tools-reference/feature-gates)，
-相应地，`--seccomp-default` 是此特性门控的
-[命令行标志](/zh/docs/reference/command-line-tools-reference/kubelet)。
-必须同时启用两者才能使用该功能。
-
-<!-- 
-If enabled, the kubelet will use the `RuntimeDefault` seccomp profile by default, which is 
-defined by the container runtime, instead of using the `Unconfined` (seccomp disabled) mode. 
-The default profiles aim to provide a strong set
-of security defaults while preserving the functionality of the workload. It is
-possible that the default profiles differ between container runtimes and their
-release versions, for example when comparing those from CRI-O and containerd.
--->
-如果启用，kubelet 将默认使用 `RuntimeDefault` seccomp 配置，
-而不是使用 `Unconfined`（禁用 seccomp）模式，该配置由容器运行时定义。
-默认配置旨在提供一组强大的安全默认值设置，同时避免影响工作负载的功能。
-不同的容器运行时之间及其不同的发布版本之间的默认配置可能不同，
-例如在比较 CRI-O 和 containerd 的配置文件时（就会发现这点）。
-
-<!-- 
-Some workloads may require a lower amount of syscall restrictions than others.
-This means that they can fail during runtime even with the `RuntimeDefault`
-profile. To mitigate such a failure, you can:
-
-- Run the workload explicitly as `Unconfined`.
-- Disable the `SeccompDefault` feature for the nodes. Also making sure that
-  workloads get scheduled on nodes where the feature is disabled.
-- Create a custom seccomp profile for the workload.
--->
-某些工作负载可能相比其他工作负载需要更少的系统调用限制。
-这意味着即使使用 `RuntimeDefault` 配置文件，它们也可能在运行时失败。
-要处理此类失效，你可以：
-
-- 将工作负载显式运行为 `Unconfined`。
-- 禁用节点的 `SeccompDefault` 功能。
-  还要确保工作负载被安排在禁用该功能的节点上。
-- 为工作负载创建自定义 seccomp 配置文件。
-
-<!-- 
-If you were introducing this feature into production-like cluster, the Kubernetes project
-recommends that you enable this feature gate on a subset of your nodes and then
-test workload execution before rolling the change out cluster-wide.
-
-More detailed information about a possible upgrade and downgrade strategy can be
-found in the [related Kubernetes Enhancement Proposal (KEP)](https://github.com/kubernetes/enhancements/tree/a70cc18/keps/sig-node/2413-seccomp-by-default#upgrade--downgrade-strategy).
--->
-如果你将此功能引入到类似生产的集群中，
-Kubernetes 项目建议你在节点的子集上启用此特性门控，
-然后在集群范围内推出更改之前测试工作负载的执行情况。
-
-有关可能的升级和降级策略的更多详细信息，
-请参见[相关 Kubernetes 增强提案 (KEP)](https://github.com/kubernetes/enhancements/tree/a70cc18/keps/sig-node/2413-seccomp-by-default#upgrade--downgrade-strategy)。
-
-<!-- 
-Since the feature is in alpha state it is disabled per default. To enable it,
-pass the flags `--feature-gates=SeccompDefault=true --seccomp-default` to the
-`kubelet` CLI or enable it via the [kubelet configuration
-file](/docs/tasks/administer-cluster/kubelet-config-file/). To enable the
-feature gate in [kind](https://kind.sigs.k8s.io), ensure that `kind` provides
-the minimum required Kubernetes version and enables the `SeccompDefault` feature
-[in the kind configuration](https://kind.sigs.k8s.io/docs/user/quick-start/#enable-feature-gates-in-your-cluster):
--->
-由于该功能处于 alpha 状态，因此默认情况下是被禁用的。要启用它，
-请将标志 `--feature-gates=SeccompDefault=true --seccomp-default` 
-传递给 `kubelet` CLI 或通过
-[kubelet 配置文件](/zh/docs/tasks/administer-cluster/kubelet-config-file/)启用它。
-要在 [kind](https://kind.sigs.k8s.io) 中启用特性门控，
-请确保 `kind` 提供所需的最低 Kubernetes 版本并
-[在 kind 配置中](https://kind.sigs.k8s.io/docs/user/quick-start/#enable-feature-gates-in-your-cluster)
-启用 `SeccompDefault` 功能：
-
-```yaml
-kind: Cluster
-apiVersion: kind.x-k8s.io/v1alpha4
-featureGates:
-  SeccompDefault: true
-```
-
-<!--
-## Create Seccomp Profiles
-
-The contents of these profiles will be explored later on, but for now go ahead
-and download them into a directory named `profiles/` so that they can be loaded
-into the cluster.
--->
-## 创建 Seccomp 文件
-
-这些配置文件的内容将在以后进行探讨，但现在继续进行，并将其下载到名为 `profiles/` 的目录中，以便可以将其加载到集群中。
-
-{{< tabs name="tab_with_code" >}}
-{{{< tab name="audit.json" >}}
-{{< codenew file="pods/security/seccomp/profiles/audit.json" >}}
-{{< /tab >}}
-{{< tab name="violation.json" >}}
-{{< codenew file="pods/security/seccomp/profiles/violation.json" >}}
-{{< /tab >}}}
-{{< tab name="fine-grained.json" >}}
-{{< codenew file="pods/security/seccomp/profiles/fine-grained.json" >}}
-{{< /tab >}}}
-{{< /tabs >}}
-
-<!--
-## Create a Local Kubernetes Cluster with Kind
-
-For simplicity, [kind](https://kind.sigs.k8s.io/) can be used to create a single
-node cluster with the seccomp profiles loaded. Kind runs Kubernetes in Docker,
-so each node of the cluster is a container. This allows for files
-to be mounted in the filesystem of each container similar to loading files
-onto a node.
-
-Download the example above, and save it to a file named `kind.yaml`. Then create
-the cluster with the configuration.
--->
-## 使用 Kind 创建一个本地 Kubernetes 集群
-
-为简单起见，可以使用 [kind](https://kind.sigs.k8s.io/) 创建一个已经加载 seccomp 配置文件的单节点集群。
-Kind 在 Docker 中运行 Kubernetes，因此集群的每个节点都是一个容器。这允许将文件挂载到每个容器的文件系统中，
-类似于将文件挂载到节点上。
-
-{{< codenew file="pods/security/seccomp/kind.yaml" >}}
-<br>
-
-下载上面的这个示例，并将其保存为 `kind.yaml`。然后使用这个配置创建集群。
-
-```
-kind create cluster --config=kind.yaml
-```
-
-<!--
-Once the cluster is ready, identify the container running as the single node
-cluster:
--->
-一旦这个集群已经就绪，找到作为单节点集群运行的容器：
-
-```
-docker ps
-```
-
-<!--
-You should see output indicating that a container is running with name
-`kind-control-plane`.
--->
-你应该看到输出显示正在运行的容器名称为 `kind-control-plane`。
-
-```
-CONTAINER ID        IMAGE                  COMMAND                  CREATED             STATUS              PORTS                       NAMES
-6a96207fed4b        kindest/node:v1.18.2   "/usr/local/bin/entr…"   27 seconds ago      Up 24 seconds       127.0.0.1:42223->6443/tcp   kind-control-plane
-```
-
-<!--
-If observing the filesystem of that container, one should see that the
-`profiles/` directory has been successfully loaded into the default seccomp path
-of the kubelet. Use `docker exec` to run a command in the Pod:
--->
-如果观察该容器的文件系统，则应该看到 `profiles/` 目录已成功加载到 kubelet 的默认 seccomp 路径中。
-使用 `docker exec` 在 Pod 中运行命令：
-
-```
-docker exec -it 6a96207fed4b ls /var/lib/kubelet/seccomp/profiles
-```
-
-```
-audit.json  fine-grained.json  violation.json
-```
-
-<!--
-## Create a Pod with a seccomp profile for syscall auditing
-
-To start off, apply the `audit.json` profile, which will log all syscalls of the
-process, to a new Pod.
-
-Download the correct manifest for your Kubernetes version:
--->
-## 使用 seccomp 配置文件创建 Pod 以进行系统调用审核
-
-首先，将 `audit.json` 配置文件应用到新的 Pod 中，该配置文件将记录该进程的所有系统调用。
-
-为你的 Kubernetes 版本下载正确的清单：
-
-{{< tabs name="audit_pods" >}}
-{{< tab name="v1.19 或更新版本（GA）" >}}
-{{< codenew file="pods/security/seccomp/ga/audit-pod.yaml" >}}
-{{< /tab >}}}
-{{{< tab name="v1.19之前版本（alpha）" >}}
-{{< codenew file="pods/security/seccomp/alpha/audit-pod.yaml" >}}
-{{< /tab >}}
-{{< /tabs >}}
-<br>
-
-<!--
-Create the Pod in the cluster:
--->
-在集群中创建 Pod：
-
-```
-kubectl apply -f audit-pod.yaml
-```
-
-<!--
-This profile does not restrict any syscalls, so the Pod should start
-successfully.
--->
-这个配置文件并不限制任何系统调用，所以这个 Pod 应该会成功启动。
-
-```
-kubectl get pod/audit-pod
-```
-
-```
-NAME        READY   STATUS    RESTARTS   AGE
-audit-pod   1/1     Running   0          30s
-```
-
-<!--
-In order to be able to interact with this endpoint exposed by this
-container,create a NodePort Service that allows access to the endpoint from
-inside the kind control plane container.
--->
-为了能够与该容器公开的端点进行交互，请创建一个 NodePort 服务，
-该服务允许从 kind 控制平面容器内部访问该端点。
-
-```
-kubectl expose pod/audit-pod --type NodePort --port 5678
-```
-
-<!--
-Check what port the Service has been assigned on the node.
--->
-检查这个服务在这个节点上被分配了什么端口。
-
-```
-kubectl get svc/audit-pod
-```
-
-```
-NAME        TYPE       CLUSTER-IP      EXTERNAL-IP   PORT(S)          AGE
-audit-pod   NodePort   10.111.36.142   <none>        5678:32373/TCP   72s
-```
-
-<!--
-Now you can `curl` the endpoint from inside the kind control plane container at
-the port exposed by this Service. Use `docker exec` to run a command in the Pod:
--->
-现在你可以使用 `curl` 命令从 kind 控制平面容器内部通过该服务暴露出来的端口来访问这个端点。
-
-```
-docker exec -it 6a96207fed4b curl localhost:32373
-```
-
-```
-just made some syscalls!
-```
-
-<!--
-You can see that the process is running, but what syscalls did it actually make?
-Because this Pod is running in a local cluster, you should be able to see those
-in `/var/log/syslog`. Open up a new terminal window and `tail` the output for
-calls from `http-echo`:
-
-```
-tail -f /var/log/syslog | grep 'http-echo'
-```
-
-You should already see some logs of syscalls made by `http-echo`, and if you
-`curl` the endpoint in the control plane container you will see more written.
--->
-你可以看到该进程正在运行，但是实际上执行了哪些系统调用？因为该 Pod 是在本地集群中运行的，
-你应该可以在 `/var/log/syslog` 日志中看到这些。打开一个新的终端窗口，使用 `tail` 命令来
-查看来自 `http-echo` 的调用输出：
-
-```
-tail -f /var/log/syslog | grep 'http-echo'
-```
-
-你应该已经可以看到 `http-echo` 发出的一些系统调用日志，
-如果你在控制面板容器内 `curl` 了这个端点，你会看到更多的日志。
-
-```
-Jul  6 15:37:40 my-machine kernel: [369128.669452] audit: type=1326 audit(1594067860.484:14536): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=29064 comm="http-echo" exe="/http-echo" sig=0 arch=c000003e syscall=51 compat=0 ip=0x46fe1f code=0x7ffc0000
-Jul  6 15:37:40 my-machine kernel: [369128.669453] audit: type=1326 audit(1594067860.484:14537): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=29064 comm="http-echo" exe="/http-echo" sig=0 arch=c000003e syscall=54 compat=0 ip=0x46fdba code=0x7ffc0000
-Jul  6 15:37:40 my-machine kernel: [369128.669455] audit: type=1326 audit(1594067860.484:14538): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=29064 comm="http-echo" exe="/http-echo" sig=0 arch=c000003e syscall=202 compat=0 ip=0x455e53 code=0x7ffc0000
-Jul  6 15:37:40 my-machine kernel: [369128.669456] audit: type=1326 audit(1594067860.484:14539): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=29064 comm="http-echo" exe="/http-echo" sig=0 arch=c000003e syscall=288 compat=0 ip=0x46fdba code=0x7ffc0000
-Jul  6 15:37:40 my-machine kernel: [369128.669517] audit: type=1326 audit(1594067860.484:14540): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=29064 comm="http-echo" exe="/http-echo" sig=0 arch=c000003e syscall=0 compat=0 ip=0x46fd44 code=0x7ffc0000
-Jul  6 15:37:40 my-machine kernel: [369128.669519] audit: type=1326 audit(1594067860.484:14541): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=29064 comm="http-echo" exe="/http-echo" sig=0 arch=c000003e syscall=270 compat=0 ip=0x4559b1 code=0x7ffc0000
-Jul  6 15:38:40 my-machine kernel: [369188.671648] audit: type=1326 audit(1594067920.488:14559): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=29064 comm="http-echo" exe="/http-echo" sig=0 arch=c000003e syscall=270 compat=0 ip=0x4559b1 code=0x7ffc0000
-Jul  6 15:38:40 my-machine kernel: [369188.671726] audit: type=1326 audit(1594067920.488:14560): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=29064 comm="http-echo" exe="/http-echo" sig=0 arch=c000003e syscall=202 compat=0 ip=0x455e53 code=0x7ffc0000
-```
-
-<!--
-You can begin to understand the syscalls required by the `http-echo` process by
-looking at the `syscall=` entry on each line. While these are unlikely to
-encompass all syscalls it uses, it can serve as a basis for a seccomp profile
-for this container.
-
-Clean up that Pod and Service before moving to the next section:
-
-```
-kubectl delete pod/audit-pod
-kubectl delete svc/audit-pod
-```
--->
-通过查看每一行上的 `syscall=` 条目，你可以开始了解 `http-echo` 进程所需的系统调用。
-尽管这些不太可能包含它使用的所有系统调用，但它可以作为该容器的 seccomp 配置文件的基础。
-
-开始下一节之前，请清理该 Pod 和 Service：
-
-```
-kubectl delete pod/audit-pod
-kubectl delete svc/audit-pod
-```
-
-<!--
-## Create Pod with seccomp Profile that Causes Violation
-
-For demonstration, apply a profile to the Pod that does not allow for any
-syscalls.
-
-Download the correct manifest for your Kubernetes version:
--->
-## 使用导致违规的 seccomp 配置文件创建 Pod
-
-为了进行演示，请将不允许任何系统调用的配置文件应用于 Pod。
-
-为你的 Kubernetes 版本下载正确的清单：
-
-{{< tabs name="violation_pods" >}}
-{{< tab name="v1.19 或更新版本（GA）" >}}
-{{< codenew file="pods/security/seccomp/ga/violation-pod.yaml" >}}
-{{< /tab >}}}
-{{{< tab name="v1.19 之前版本（alpha）" >}}
-{{< codenew file="pods/security/seccomp/alpha/violation-pod.yaml" >}}
-{{< /tab >}}
-{{< /tabs >}}
-<br>
-
-<!--
-Create the Pod in the cluster:
--->
-在集群中创建 Pod：
-
-```
-kubectl apply -f violation-pod.yaml
-```
-
-<!--
-If you check the status of the Pod, you should see that it failed to start.
--->
-如果你检查 Pod 的状态，你将会看到该 Pod 启动失败。
-
-```
-kubectl get pod/violation-pod
-```
-
-```
-NAME            READY   STATUS             RESTARTS   AGE
-violation-pod   0/1     CrashLoopBackOff   1          6s
-```
-
-<!--
-As seen in the previous example, the `http-echo` process requires quite a few
-syscalls. Here seccomp has been instructed to error on any syscall by setting
-`"defaultAction": "SCMP_ACT_ERRNO"`. This is extremely secure, but removes the
-ability to do anything meaningful. What you really want is to give workloads
-only the privileges they need.
-
-Clean up that Pod and Service before moving to the next section:
--->
-如上例所示，`http-echo` 进程需要大量的系统调用。通过设置 `"defaultAction": "SCMP_ACT_ERRNO"`，
-来指示 seccomp 在任何系统调用上均出错。这是非常安全的，但是会删除执行有意义的操作的能力。
-你真正想要的只是给工作负载所需的特权。
-
-开始下一节之前，请清理该 Pod 和 Service：
-
-```
-kubectl delete pod/violation-pod
-kubectl delete svc/violation-pod
-```
-
-<!--
-## Create Pod with seccomp Profile that Only Allows Necessary Syscalls
-
-If you take a look at the `fine-pod.json`, you will notice some of the syscalls
-seen in the first example where the profile set `"defaultAction":
-"SCMP_ACT_LOG"`. Now the profile is setting `"defaultAction": "SCMP_ACT_ERRNO"`,
-but explicitly allowing a set of syscalls in the `"action": "SCMP_ACT_ALLOW"`
-block. Ideally, the container will run successfully and you will see no messages
-sent to `syslog`.
-
-Download the correct manifest for your Kubernetes version:
--->
-## 使用设置仅允许需要的系统调用的 seccomp 配置文件来创建 Pod
-
-如果你看一下 `fine-pod.json` 文件，你会注意到在第一个示例中配置文件设置为 `"defaultAction": "SCMP_ACT_LOG"` 的一些系统调用。
-现在，配置文件设置为 `"defaultAction": "SCMP_ACT_ERRNO"`，但是在 `"action": "SCMP_ACT_ALLOW"` 块中明确允许一组系统调用。
-理想情况下，容器将成功运行，并且你将不会看到任何发送到 `syslog` 的消息。
-
-为你的 Kubernetes 版本下载正确的清单：
-
-{{< tabs name="fine_pods" >}}
-{{< tab name="v1.19 或更新版本（GA）" >}}
-{{< codenew file="pods/security/seccomp/ga/fine-pod.yaml" >}}
-{{< /tab >}}}
-{{{< tab name="v1.19 之前版本（alpha）" >}}
-{{< codenew file="pods/security/seccomp/alpha/fine-pod.yaml" >}}
-{{< /tab >}}
-{{< /tabs >}}
-<br>
-
-<!--
-Create the Pod in your cluster:
--->
-在你的集群上创建Pod：
-
-```
-kubectl apply -f fine-pod.yaml
-```
-
-<!--
-The Pod should start successfully.
--->
-Pod 应该被成功启动。
-
-```
-kubectl get pod/fine-pod
-```
-
-```
-NAME        READY   STATUS    RESTARTS   AGE
-fine-pod   1/1     Running   0          30s
-```
-
-<!--
-Open up a new terminal window and `tail` the output for calls from `http-echo`:
--->
-打开一个新的终端窗口，使用 `tail` 命令查看来自 `http-echo` 的调用的输出：
-
-```
-tail -f /var/log/syslog | grep 'http-echo'
-```
-
-<!--
-Expose the Pod with a NodePort Service:
--->
-使用 NodePort 服务为该 Pod 开一个端口：
-
-```
-kubectl expose pod/fine-pod --type NodePort --port 5678
-```
-
-<!--
-Check what port the Service has been assigned on the node:
--->
-检查服务在该节点被分配了什么端口：
-
-```
-kubectl get svc/fine-pod
-```
-
-```
-NAME        TYPE       CLUSTER-IP      EXTERNAL-IP   PORT(S)          AGE
-fine-pod    NodePort   10.111.36.142   <none>        5678:32373/TCP   72s
-```
-
-<!--
-`curl` the endpoint from inside the kind control plane container:
--->
-使用 `curl` 命令从 kind 控制面板容器内部请求这个端点：
-
-```
-docker exec -it 6a96207fed4b curl localhost:32373
-```
-
-```
-just made some syscalls!
-```
-
-<!--
-You should see no output in the `syslog` because the profile allowed all
-necessary syscalls and specified that an error should occur if one outside of
-the list is invoked. This is an ideal situation from a security perspective, but
-required some effort in analyzing the program. It would be nice if there was a
-simple way to get closer to this security without requiring as much effort.
-
-Clean up that Pod and Service before moving to the next section:
--->
-你会看到 `syslog` 中没有任何输出，因为这个配置文件允许了所有需要的系统调用，
-并指定如果有发生列表之外的系统调用将发生错误。从安全角度来看，这是理想的情况，
-但是在分析程序时需要多付出一些努力。如果有一种简单的方法无需花费太多精力就能更接近此安全性，那就太好了。
-
-开始下一节之前，请清理该 Pod 和 Service：
-
-```
-kubectl delete pod/fine-pod
-kubectl delete svc/fine-pod
-```
-
-<!--
-## Create Pod that uses the Container Runtime Default seccomp Profile
-
-Most container runtimes provide a sane set of default syscalls that are allowed
-or not. The defaults can easily be applied in Kubernetes by using the
-`runtime/default` annotation or setting the seccomp type in the security context
-of a pod or container to `RuntimeDefault`.
-
-Download the correct manifest for your Kubernetes version:
--->
-## 使用容器运行时默认的 seccomp 配置文件创建 Pod
-
-大多数容器运行时都提供一组允许或不允许的默认系统调用。通过使用 `runtime/default` 注释
-或将 Pod 或容器的安全上下文中的 seccomp 类型设置为 `RuntimeDefault`，可以轻松地在 Kubernetes 中应用默认值。
-
-为你的 Kubernetes 版本下载正确的清单：
-
-{{< tabs name="default_pods" >}}
-{{< tab name="v1.19 或更新版本（GA）" >}}
-{{< codenew file="pods/security/seccomp/ga/default-pod.yaml" >}}
-{{< /tab >}}}
-{{{< tab name="v1.19 之前版本（alpha）" >}}
-{{< codenew file="pods/security/seccomp/alpha/default-pod.yaml" >}}
-{{< /tab >}}
-{{< /tabs >}}
-<br>
-
-<!--
-The default seccomp profile should provide adequate access for most workloads.
--->
-默认的 seccomp 配置文件应该为大多数工作负载提供足够的权限。
-
-## {{% heading "whatsnext" %}}
-
-<!--
-Additional resources:
-
-* [A seccomp Overview](https://lwn.net/Articles/656307/)
-* [Seccomp Security Profiles for Docker](https://docs.docker.com/engine/security/seccomp/)
--->
-额外的资源：
-
-* [seccomp 概要](https://lwn.net/Articles/656307/)
-* [Seccomp 在 Docker 中的安全配置](https://docs.docker.com/engine/security/seccomp/)
\ No newline at end of file
diff --git a/content/zh/docs/tutorials/kubernetes-basics/create-cluster/_index.md b/content/zh/docs/tutorials/kubernetes-basics/create-cluster/_index.md
deleted file mode 100644
index a3e250856e..0000000000
--- a/content/zh/docs/tutorials/kubernetes-basics/create-cluster/_index.md
+++ /dev/null
@@ -1,4 +0,0 @@
----
-title: 创建集群
-weight: 10
----
diff --git a/content/zh/docs/tutorials/services/source-ip.md b/content/zh/docs/tutorials/services/source-ip.md
deleted file mode 100644
index 26baeebbd9..0000000000
--- a/content/zh/docs/tutorials/services/source-ip.md
+++ /dev/null
@@ -1,405 +0,0 @@
----
-
-title: 使用 Source IP
-content_type: tutorial
----
-
-<!-- overview -->
-
-
-Kubernetes 集群中运行的应用通过 Service 抽象来互相查找、通信和与外部世界沟通。本文介绍被发送到不同类型 Services 的数据包源 IP 的变化过程，你可以根据你的需求改变这些行为。
-
-
-
-## {{% heading "prerequisites" %}}
-
-
-{{< include "task-tutorial-prereqs.md" >}} {{< version-check >}}
-
-
-## 术语表
-
-
-本文使用了下列术语：
-
-* [NAT](https://en.wikipedia.org/wiki/Network_address_translation): 网络地址转换
-* [Source NAT](https://en.wikipedia.org/wiki/Network_address_translation#SNAT): 替换数据包的源 IP, 通常为节点的 IP
-* [Destination NAT](https://en.wikipedia.org/wiki/Network_address_translation#DNAT): 替换数据包的目的 IP, 通常为 Pod 的 IP
-* [VIP](/zh/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies): 一个虚拟 IP, 例如分配给每个 Kubernetes Service 的 IP
-* [Kube-proxy](/zh/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies): 一个网络守护程序，在每个节点上协调 Service VIP 管理
-
-
-## 准备工作
-
-
-你必须拥有一个正常工作的 Kubernetes 1.5 集群来运行此文档中的示例。该示例使用一个简单的 nginx webserver，通过一个HTTP消息头返回它接收到请求的源IP。你可以像下面这样创建它：
-
-```console
-kubectl create deployment source-ip-app --image=k8s.gcr.io/echoserver:1.4
-```
-输出结果为
-```
-deployment.apps/source-ip-app created
-```
-
-
-
-## {{% heading "objectives" %}}
-
-
-
-* 通过多种类型的 Services 暴露一个简单应用
-* 理解每种 Service 类型如何处理源 IP NAT
-* 理解保留源IP所涉及的折中
-
-
-
-
-<!-- lessoncontent -->
-
-
-## Type=ClusterIP 类型 Services 的 Source IP
-
-
-如果你的 kube-proxy 运行在 [iptables 模式](/zh/docs/user-guide/services/#proxy-mode-iptables)下，从集群内部发送到 ClusterIP 的包永远不会进行源地址 NAT，这从 Kubernetes 1.2 开始是默认选项。Kube-proxy 通过一个 `proxyMode` endpoint 暴露它的模式。
-
-```console
-kubectl get nodes
-```
-输出结果与以下结果类似:
-```
-NAME                           STATUS     ROLES    AGE     VERSION
-kubernetes-node-6jst   Ready      <none>   2h      v1.13.0
-kubernetes-node-cx31   Ready      <none>   2h      v1.13.0
-kubernetes-node-jj1t   Ready      <none>   2h      v1.13.0
-```
-从其中一个节点中得到代理模式
-```console
-kubernetes-node-6jst $ curl localhost:10249/proxyMode
-```
-输出结果为：
-```
-iptables
-```
-
-你可以通过在source IP应用上创建一个Service来测试源IP保留。
-
-```console
-kubectl expose deployment source-ip-app --name=clusterip --port=80 --target-port=8080
-```
-输出结果为：
-```
-service/clusterip exposed
-```
-```console
-kubectl get svc clusterip
-```
-输出结果与以下结果类似：
-```
-NAME         TYPE        CLUSTER-IP    EXTERNAL-IP   PORT(S)   AGE
-clusterip    ClusterIP   10.0.170.92   <none>        80/TCP    51s
-```
-
-
-从相同集群中的一个 pod 访问这个 `ClusterIP`：
-
-```shell
-kubectl run busybox -it --image=busybox --restart=Never --rm
-```
-输出结果与以下结果类似：
-```
-Waiting for pod default/busybox to be running, status is Pending, pod ready: false
-If you don't see a command prompt, try pressing enter.
-```
-
-然后你可以在 Pod 内运行命令：
-
-```shell
-# 在终端内使用"kubectl run"执行
-
-ip addr
-```
-```
-1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue
-    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
-    inet 127.0.0.1/8 scope host lo
-       valid_lft forever preferred_lft forever
-    inet6 ::1/128 scope host
-       valid_lft forever preferred_lft forever
-3: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1460 qdisc noqueue
-    link/ether 0a:58:0a:f4:03:08 brd ff:ff:ff:ff:ff:ff
-    inet 10.244.3.8/24 scope global eth0
-       valid_lft forever preferred_lft forever
-    inet6 fe80::188a:84ff:feb0:26a5/64 scope link
-       valid_lft forever preferred_lft forever
-```
-
-然后使用 `wget` 去请求本地 Web 服务器
-```shell
-# 用名为 "clusterip" 的服务的 IPv4 地址替换 "10.0.170.92"
-
-wget -qO - 10.0.170.92
-```
-```
-CLIENT VALUES:
-client_address=10.244.3.8
-command=GET
-...
-```
-
-无论客户端 pod 和 服务端 pod 是否在相同的节点上，client_address 始终是客户端 pod 的 IP 地址。
-
-
-## Type=NodePort 类型 Services 的 Source IP
-
-
-从 Kubernetes 1.5 开始，发送给类型为 [Type=NodePort](/zh/docs/user-guide/services/#type-nodeport) Services 的数据包默认进行源地址 NAT。你可以通过创建一个 `NodePort` Service 来进行测试：
-
-```console
-kubectl expose deployment source-ip-app --name=nodeport --port=80 --target-port=8080 --type=NodePort
-```
-输出结果为：
-```
-service/nodeport exposed
-```
-
-```console
-NODEPORT=$(kubectl get -o jsonpath="{.spec.ports[0].nodePort}" services nodeport)
-NODES=$(kubectl get nodes -o jsonpath='{ $.items[*].status.addresses[?(@.type=="InternalIP")].address }')
-```
-
-如果你的集群运行在一个云服务上，你可能需要为上面报告的 `nodes:nodeport` 开启一条防火墙规则。
-现在，你可以通过上面分配的节点端口从外部访问这个 Service。
-
-```console
-for node in $NODES; do curl -s $node:$NODEPORT | grep -i client_address; done
-```
-输出结果与以下结果类似：
-```
-client_address=10.180.1.1
-client_address=10.240.0.5
-client_address=10.240.0.3
-```
-
-请注意，这些并不是正确的客户端 IP，它们是集群的内部 IP。这是所发生的事情：
-
-* 客户端发送数据包到 `node2:nodePort`
-* `node2` 使用它自己的 IP 地址替换数据包的源 IP 地址（SNAT）
-* `node2` 使用 pod IP 地址替换数据包的目的 IP 地址
-* 数据包被路由到 node 1，然后交给 endpoint
-* Pod 的回复被路由回 node2
-* Pod 的回复被发送回给客户端
-
-
-用图表示：
-
-{{< mermaid >}}
-graph LR;
-  client(client)-->node2[节点 2];
-  node2-->client;
-  node2-. SNAT .->node1[节点 1];
-  node1-. SNAT .->node2;
-  node1-->endpoint(端点);
-
-  classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-  classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-  class node1,node2,endpoint k8s;
-  class client plain;
-{{</ mermaid >}}
-
-
-为了防止这种情况发生，Kubernetes 提供了一个特性来保留客户端的源 IP 地址[(点击此处查看可用特性)](/zh/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip)。设置 `service.spec.externalTrafficPolicy` 的值为 `Local`，请求就只会被代理到本地 endpoints 而不会被转发到其它节点。这样就保留了最初的源 IP 地址。如果没有本地 endpoints，发送到这个节点的数据包将会被丢弃。这样在应用到数据包的任何包处理规则下，你都能依赖这个正确的 source-ip 使数据包通过并到达 endpoint。
-
-
-设置 `service.spec.externalTrafficPolicy` 字段如下：
-
-```console
-kubectl patch svc nodeport -p '{"spec":{"externalTrafficPolicy":"Local"}}'
-```
-输出结果为：
-```
-service/nodeport patched
-```
-
-
-现在，重新运行测试：
-
-```console
-for node in $NODES; do curl --connect-timeout 1 -s $node:$NODEPORT | grep -i client_address; done
-```
-输出结果为：
-```
-client_address=104.132.1.79
-```
-
-
-请注意，你只从 endpoint pod 运行的那个节点得到了一个回复，这个回复有*正确的*客户端 IP。
-
-
-这是发生的事情：
-
-* 客户端发送数据包到 `node2:nodePort`，它没有任何 endpoints
-* 数据包被丢弃
-* 客户端发送数据包到 `node1:nodePort`，它*有*endpoints
-* node1 使用正确的源 IP 地址将数据包路由到 endpoint
-
-
-用图表示：
-
-{{< mermaid >}}
-graph TD;
-  client --> node1[节点 1];
-  client(client) --x node2[节点 2];
-  node1 --> endpoint(端点);
-  endpoint --> node1;
-
-  classDef plain fill:#ddd,stroke:#fff,stroke-width:4px,color:#000;
-  classDef k8s fill:#326ce5,stroke:#fff,stroke-width:4px,color:#fff;
-  class node1,node2,endpoint k8s;
-  class client plain;
-{{</ mermaid >}}
-
-
-
-## Type=LoadBalancer 类型 Services 的 Source IP
-
-
-从Kubernetes1.5开始，发送给类型为 [Type=LoadBalancer](/zh/docs/user-guide/services/#type-nodeport) Services 的数据包默认进行源地址 NAT，这是因为所有处于 `Ready` 状态的可调度 Kubernetes 节点对于负载均衡的流量都是符合条件的。所以如果数据包到达一个没有 endpoint 的节点，系统将把这个包代理到*有* endpoint 的节点，并替换数据包的源 IP 为节点的 IP（如前面章节所述）。
-
-
-你可以通过在一个 loadbalancer 上暴露这个 source-ip-app 来进行测试。
-
-```console
-kubectl expose deployment source-ip-app --name=loadbalancer --port=80 --target-port=8080 --type=LoadBalancer
-```
-输出结果为：
-```
-service/loadbalancer exposed
-```
-
-打印Service的IPs：
-```console
-kubectl get svc loadbalancer
-```
-输出结果与以下结果类似：
-```
-NAME           TYPE           CLUSTER-IP    EXTERNAL-IP       PORT(S)   AGE
-loadbalancer   LoadBalancer   10.0.65.118   104.198.149.140   80/TCP    5m
-```
-
-```console
-curl 104.198.149.140
-```
-输出结果与以下结果类似：
-```
-CLIENT VALUES:
-client_address=10.240.0.5
-...
-```
-
-
-然而，如果你的集群运行在 Google Kubernetes Engine/GCE 上，可以通过设置 service.spec.externalTrafficPolicy 字段值为 Local ，故意导致健康检查失败来强制使没有 endpoints 的节点把自己从负载均衡流量的可选节点列表中删除。
-
-
-用图表示：
-
-![Source IP with externalTrafficPolicy](/images/docs/sourceip-externaltrafficpolicy.svg)
-
-
-你可以设置 annotation 来进行测试：
-
-```console
-kubectl patch svc loadbalancer -p '{"spec":{"externalTrafficPolicy":"Local"}}'
-```
-
-
-你应该能够立即看到 Kubernetes 分配的 `service.spec.healthCheckNodePort` 字段：
-
-```console
-kubectl get svc loadbalancer -o yaml | grep -i healthCheckNodePort
-```
-输出结果与以下结果类似：
-```
-  healthCheckNodePort: 32122
-```
-
-
-`service.spec.healthCheckNodePort` 字段指向每个节点在 `/healthz` 路径上提供的用于健康检查的端口。你可以这样测试：
-
-```console
-kubectl get pod -o wide -l run=source-ip-app
-```
-输出结果与以下结果类似：
-```
-NAME                            READY     STATUS    RESTARTS   AGE       IP             NODE
-source-ip-app-826191075-qehz4   1/1       Running   0          20h       10.180.1.136   kubernetes-node-6jst
-```
-使用 curl 命令发送请求到每个节点的 `/healthz` 路径。
-```console
-kubernetes-node-6jst $ curl localhost:32122/healthz
-```
-输出结果与以下结果类似：
-```
-1 Service Endpoints found
-```
-```console
-kubernetes-node-jj1t $ curl localhost:32122/healthz
-```
-输出结果与以下结果类似：
-```
-No Service Endpoints Found
-```
-
-
-主节点运行的 service 控制器负责分配 cloud loadbalancer。在这样做的同时，它也会分配指向每个节点的 HTTP 健康检查的 port/path。等待大约 10 秒钟之后，没有 endpoints 的两个节点的健康检查会失败，然后 curl 负载均衡器的 ip：
-
-```console
-curl 104.198.149.140
-```
-输出结果与以下结果类似：
-```
-CLIENT VALUES:
-client_address=104.132.1.79
-...
-```
-
-
-__跨平台支持__
-
-
-从 Kubernetes 1.5 开始，通过类型为 Type=LoadBalancer 的 Services 进行源 IP 保存的支持仅在一部分 cloudproviders 中实现（GCP and Azure）。你的集群运行的 cloudprovider 可能以某些不同的方式满足 loadbalancer 的要求：
-
-
-1. 使用一个代理终止客户端连接并打开一个到你的 nodes/endpoints 的新连接。在这种情况下，源 IP 地址将永远是云负载均衡器的地址而不是客户端的。
-
-2. 使用一个包转发器，因此从客户端发送到负载均衡器 VIP 的请求在拥有客户端源 IP 地址的节点终止，而不被中间代理。
-
-
-第一类负载均衡器必须使用一种它和后端之间约定的协议来和真实的客户端 IP 通信，例如 HTTP [X-FORWARDED-FOR](https://en.wikipedia.org/wiki/X-Forwarded-For) 头，或者 [proxy 协议](https://www.haproxy.org/download/1.8/doc/proxy-protocol.txt)。
-第二类负载均衡器可以通过简单的在保存于 Service 的 `service.spec.healthCheckNodePort` 字段上创建一个 HTTP 健康检查点来使用上面描述的特性。
-
-
-
-## {{% heading "cleanup" %}}
-
-
-
-删除服务：
-
-```console
-$ kubectl delete svc -l app=source-ip-app
-```
-
-
-删除 Deployment、ReplicaSet 和 Pod：
-
-```console
-$ kubectl delete deployment source-ip-app
-```
-
-
-
-## {{% heading "whatsnext" %}}
-
-
-* 进一步学习 [通过 services 连接应用](/zh/docs/concepts/services-networking/connect-applications-service/)
diff --git a/content/zh/examples/README.md b/content/zh/examples/README.md
deleted file mode 100644
index dac0f47105..0000000000
--- a/content/zh/examples/README.md
+++ /dev/null
@@ -1,17 +0,0 @@
-注意：这些测试是从 kubernetes 导入的代码实际上并不打算在存储库之外使用。
-这就导致了供应商依赖问题。因此，我们必须在 travis 配置这些行:
-<!--
-Note: These tests are importing code from kubernetes that isn't really
-meant to be used outside the repo. This causes vendoring problems. As
-a result, we have to work around those with these lines in the travis
-config:
--->
-
-```
-- rm $GOPATH/src/k8s.io/kubernetes/vendor/k8s.io/apimachinery
-- rm $GOPATH/src/k8s.io/kubernetes/vendor/k8s.io/apiserver
-- rm $GOPATH/src/k8s.io/kubernetes/vendor/k8s.io/client-go
-- cp -r $GOPATH/src/k8s.io/kubernetes/vendor/* $GOPATH/src/
-- rm -rf $GOPATH/src/k8s.io/kubernetes/vendor/*
-- cp -r $GOPATH/src/k8s.io/kubernetes/staging/src/* $GOPATH/src/
-```
diff --git a/content/zh/examples/admin/dns/dns-horizontal-autoscaler.yaml b/content/zh/examples/admin/dns/dns-horizontal-autoscaler.yaml
deleted file mode 100644
index dff87cf851..0000000000
--- a/content/zh/examples/admin/dns/dns-horizontal-autoscaler.yaml
+++ /dev/null
@@ -1,33 +0,0 @@
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: dns-autoscaler
-  namespace: kube-system
-  labels:
-    k8s-app: dns-autoscaler
-spec:
-  selector:
-    matchLabels:
-      k8s-app: dns-autoscaler
-  template:
-    metadata:
-      labels:
-        k8s-app: dns-autoscaler
-    spec:
-      containers:
-      - name: autoscaler
-        image: k8s.gcr.io/cluster-proportional-autoscaler-amd64:1.6.0
-        resources:
-          requests:
-            cpu: 20m
-            memory: 10Mi
-        command:
-        - /cluster-proportional-autoscaler
-        - --namespace=kube-system
-        - --configmap=dns-autoscaler
-        - --target=<SCALE_TARGET>
-        # When cluster is using large nodes(with more cores), "coresPerReplica" should dominate.
-        # If using small nodes, "nodesPerReplica" should dominate.
-        - --default-params={"linear":{"coresPerReplica":256,"nodesPerReplica":16,"min":1}}
-        - --logtostderr=true
-        - --v=2
diff --git a/content/zh/examples/admin/konnectivity/egress-selector-configuration.yaml b/content/zh/examples/admin/konnectivity/egress-selector-configuration.yaml
deleted file mode 100644
index c85f25ea51..0000000000
--- a/content/zh/examples/admin/konnectivity/egress-selector-configuration.yaml
+++ /dev/null
@@ -1,21 +0,0 @@
-apiVersion: apiserver.k8s.io/v1beta1
-kind: EgressSelectorConfiguration
-egressSelections:
-# Since we want to control the egress traffic to the cluster, we use the
-# "cluster" as the name. Other supported values are "etcd", and "master".
-- name: cluster
-  connection:
-    # This controls the protocol between the API Server and the Konnectivity
-    # server. Supported values are "GRPC" and "HTTPConnect". There is no
-    # end user visible difference between the two modes. You need to set the
-    # Konnectivity server to work in the same mode.
-    proxyProtocol: GRPC
-    transport:
-      # This controls what transport the API Server uses to communicate with the
-      # Konnectivity server. UDS is recommended if the Konnectivity server
-      # locates on the same machine as the API Server. You need to configure the
-      # Konnectivity server to listen on the same UDS socket.
-      # The other supported transport is "tcp". You will need to set up TLS 
-      # config to secure the TCP transport.
-      uds:
-        udsName: /etc/kubernetes/konnectivity-server/konnectivity-server.socket
diff --git a/content/zh/examples/application/guestbook/frontend-service.yaml b/content/zh/examples/application/guestbook/frontend-service.yaml
deleted file mode 100644
index 410c6bbaf2..0000000000
--- a/content/zh/examples/application/guestbook/frontend-service.yaml
+++ /dev/null
@@ -1,19 +0,0 @@
-# SOURCE: https://cloud.google.com/kubernetes-engine/docs/tutorials/guestbook
-apiVersion: v1
-kind: Service
-metadata:
-  name: frontend
-  labels:
-    app: guestbook
-    tier: frontend
-spec:
-  # if your cluster supports it, uncomment the following to automatically create
-  # an external load-balanced IP for the frontend service.
-  # type: LoadBalancer
-  #type: LoadBalancer
-  ports:
-    # the port that this service should serve on
-  - port: 80
-  selector:
-    app: guestbook
-    tier: frontend
\ No newline at end of file
diff --git a/content/zh/examples/application/mysql/mysql-configmap.yaml b/content/zh/examples/application/mysql/mysql-configmap.yaml
deleted file mode 100644
index 46d34e422c..0000000000
--- a/content/zh/examples/application/mysql/mysql-configmap.yaml
+++ /dev/null
@@ -1,16 +0,0 @@
-apiVersion: v1
-kind: ConfigMap
-metadata:
-  name: mysql
-  labels:
-    app: mysql
-data:
-  master.cnf: |
-    # Apply this config only on the master.
-    [mysqld]
-    log-bin
-  slave.cnf: |
-    # Apply this config only on slaves.
-    [mysqld]
-    super-read-only
-
diff --git a/content/zh/examples/audit/audit-policy.yaml b/content/zh/examples/audit/audit-policy.yaml
deleted file mode 100644
index 25b8fd0070..0000000000
--- a/content/zh/examples/audit/audit-policy.yaml
+++ /dev/null
@@ -1,68 +0,0 @@
-apiVersion: audit.k8s.io/v1 # This is required.
-kind: Policy
-# Don't generate audit events for all requests in RequestReceived stage.
-omitStages:
-  - "RequestReceived"
-rules:
-  # Log pod changes at RequestResponse level
-  - level: RequestResponse
-    resources:
-    - group: ""
-      # Resource "pods" doesn't match requests to any subresource of pods,
-      # which is consistent with the RBAC policy.
-      resources: ["pods"]
-  # Log "pods/log", "pods/status" at Metadata level
-  - level: Metadata
-    resources:
-    - group: ""
-      resources: ["pods/log", "pods/status"]
-
-  # Don't log requests to a configmap called "controller-leader"
-  - level: None
-    resources:
-    - group: ""
-      resources: ["configmaps"]
-      resourceNames: ["controller-leader"]
-
-  # Don't log watch requests by the "system:kube-proxy" on endpoints or services
-  - level: None
-    users: ["system:kube-proxy"]
-    verbs: ["watch"]
-    resources:
-    - group: "" # core API group
-      resources: ["endpoints", "services"]
-
-  # Don't log authenticated requests to certain non-resource URL paths.
-  - level: None
-    userGroups: ["system:authenticated"]
-    nonResourceURLs:
-    - "/api*" # Wildcard matching.
-    - "/version"
-
-  # Log the request body of configmap changes in kube-system.
-  - level: Request
-    resources:
-    - group: "" # core API group
-      resources: ["configmaps"]
-    # This rule only applies to resources in the "kube-system" namespace.
-    # The empty string "" can be used to select non-namespaced resources.
-    namespaces: ["kube-system"]
-
-  # Log configmap and secret changes in all other namespaces at the Metadata level.
-  - level: Metadata
-    resources:
-    - group: "" # core API group
-      resources: ["secrets", "configmaps"]
-
-  # Log all other resources in core and extensions at the Request level.
-  - level: Request
-    resources:
-    - group: "" # core API group
-    - group: "extensions" # Version of group should NOT be included.
-
-  # A catch-all rule to log all other requests at the Metadata level.
-  - level: Metadata
-    # Long-running requests like watches that fall under this rule will not
-    # generate an audit event in RequestReceived.
-    omitStages:
-      - "RequestReceived"
diff --git a/content/zh/examples/service/access/frontend-nginx.conf b/content/zh/examples/service/access/frontend-nginx.conf
deleted file mode 100644
index 39a911a09a..0000000000
--- a/content/zh/examples/service/access/frontend-nginx.conf
+++ /dev/null
@@ -1,14 +0,0 @@
-# The identifier Backend is internal to nginx, and used to name this specific upstream
-upstream Backend {
-    # hello is the internal DNS name used by the backend Service inside Kubernetes
-    server hello;
-}
-
-server {
-    listen 80;
-
-    location / {
-        # The following statement will proxy traffic to the upstream named Backend
-        proxy_pass http://Backend;
-    }
-}
diff --git a/content/zh/examples/service/nginx-service.yaml b/content/zh/examples/service/nginx-service.yaml
deleted file mode 100644
index 810f0ec7d8..0000000000
--- a/content/zh/examples/service/nginx-service.yaml
+++ /dev/null
@@ -1,16 +0,0 @@
-apiVersion: v1
-kind: Service
-metadata:
-  name: nginx-service
-spec:
-  ports:
-  - port: 8000 # the port that this service should serve on
-    # the container on each pod to connect to, can be a name
-    # (e.g. 'www') or a number (e.g. 80)
-    targetPort: 80
-    protocol: TCP
-  # just like the selector in the deployment,
-  # but this time it identifies the set of pods to load balance
-  # traffic to.
-  selector:
-    app: nginx
diff --git a/content/zh/includes/default-storage-class-prereqs.md b/content/zh/includes/default-storage-class-prereqs.md
deleted file mode 100644
index 2ebaa45228..0000000000
--- a/content/zh/includes/default-storage-class-prereqs.md
+++ /dev/null
@@ -1,9 +0,0 @@
-您需要有一个带有默认[StorageClass](/docs/concepts/storage/storage-classes/)的动态持续卷供应程序，或者自己[静态的提供持久卷](/docs/user-guide/persistent-volumes/#provisioning)来满足这里使用的[持久卷请求](/docs/user-guide/persistent-volumes/#persistentvolumeclaims)。
-
-<!--
-You need to either have a dynamic PersistentVolume provisioner with a default
-[StorageClass](/docs/concepts/storage/storage-classes/),
-or [statically provision PersistentVolumes](/docs/user-guide/persistent-volumes/#provisioning)
-yourself to satisfy the [PersistentVolumeClaims](/docs/user-guide/persistent-volumes/#persistentvolumeclaims)
-used here.
--->
diff --git a/content/zh/includes/task-tutorial-prereqs.md b/content/zh/includes/task-tutorial-prereqs.md
deleted file mode 100644
index 822c01fe19..0000000000
--- a/content/zh/includes/task-tutorial-prereqs.md
+++ /dev/null
@@ -1,13 +0,0 @@
-你必须拥有一个 Kubernetes 的集群，同时你的 Kubernetes 集群必须带有 kubectl 命令行工具。
-如果你还没有集群，你可以通过 [Minikube](/zh/docs/tasks/tools/#minikube) 构建一
-个你自己的集群，或者你可以使用下面任意一个 Kubernetes 工具构建：
-<!--
-You need to have a Kubernetes cluster, and the kubectl command-line tool must
-be configured to communicate with your cluster. If you do not already have a
-cluster, you can create one by using
-[minikube](/docs/tasks/tools/#minikube)
-or you can use one of these Kubernetes playgrounds:
--->
-
-* [Katacoda](https://www.katacoda.com/courses/kubernetes/playground)
-* [玩转 Kubernetes](http://labs.play-with-k8s.com/)
diff --git a/content/zh/partners/_index.html b/content/zh/partners/_index.html
deleted file mode 100644
index 3bbe08cdf4..0000000000
--- a/content/zh/partners/_index.html
+++ /dev/null
@@ -1,109 +0,0 @@
----
-title: 合作伙伴
-bigheader: Kubernetes 合作伙伴
-abstract: 发展 Kubernetes 生态圈
-class: gridPage
-cid: partners
----
-
-<!--
-title: Partners
-bigheader: Kubernetes Partners
-abstract: Growing the Kubernetes ecosystem.
-class: gridPage
-cid: partners
--->
-
-<section id="users">
-    <main class="main-section">
-        <!-- <h5>Kubernetes works with partners to create a strong, vibrant codebase that supports a spectrum of complementary platforms.</h5> -->
-        <h5>Kubernetes 与合作伙伴携手打造一个强大、活跃的代码库，支持一系列互补平台。</h5>
-        <div class="col-container">
-          <div class="col-nav">
-            <center>
-              <h5>
-                <!-- <b>Kubernetes Certified Service Providers</b> -->
-                <b>Kubernetes 认证服务提供商</b>
-              </h5>
-              <!-- <br>Vetted service providers with deep experience helping enterprises successfully adopt Kubernetes. -->
-              <br>经过审核的服务提供商在帮助企业成功采用 Kubernetes 方面有深厚的经验。
-              <br><br><br>
-              <!-- <button id="kcsp" class="button" onClick="updateSrc(this.id)">See KCSP Partners</button> -->
-              <button id="kcsp" class="button" onClick="updateSrc(this.id)">参见 KCSP 合作伙伴</button>
-              <!-- <br><br>Interested in becoming a <a href="https://www.cncf.io/certification/kcsp/">KCSP</a>? -->
-              <br><br>想要成为<a href="https://www.cncf.io/certification/kcsp/">KCSP</a>吗?
-            </center>
-          </div>
-          <div class="col-nav">
-            <center>
-              <h5>
-                <!-- b>Certified Kubernetes Distributions, Hosted Platforms, and Installers</b -->
-                <b>Kubernetes 认证的发行版本、托管平台以及安装工具</b>
-              <!-- </h5>Software conformance ensures that every vendor’s version of Kubernetes supports the required APIs. -->
-              </h5>软件合规性确保各厂商的 Kubernetes 版本都支持必需的 API。
-              <br><br><br>
-              <!-- <button id="conformance" class="button" onClick="updateSrc(this.id)">See Conformance Partners</button> -->
-              <button id="conformance" class="button" onClick="updateSrc(this.id)">参见合规性合作伙伴</button>
-              <!-- <br><br>Interested in becoming<a href="https://www.cncf.io/certification/software-conformance/">Kubernetes Certified</a>? -->
-            <br><br>想要成为<a href="https://www.cncf.io/certification/software-conformance/">Kubernetes 认证的厂商</a>吗?
-          </center>
-          </div>
-          <div class="col-nav">
-            <center>
-              <!-- <h5><b>Kubernetes Training Partners</b></h5> -->
-              <h5><b>Kubernetes 培训合作伙伴</b></h5>
-              <!-- <br>Vetted training providers who have deep experience in cloud native technology training. -->
-              <br>经过审核的培训机构在云原生技术培训方面有深厚的经验。
-              <br><br><br><br>
-              <!-- <button id="ktp" class="button" onClick="updateSrc(this.id)">See KTP Partners</button> -->
-              <button id="ktp" class="button" onClick="updateSrc(this.id)">参见 KTP 合作伙伴</button>
-              <!-- <br><br>Interested in becoming a <a href="https://www.cncf.io/certification/training/">KTP</a>? -->
-              <br><br>想要成为<a href="https://www.cncf.io/certification/training/">KTP</a>吗?
-            </center>
-          </div>
-        </div>
-<script src="https://code.jquery.com/jquery-3.3.1.min.js" integrity="sha256-FgpCb/KJQlLNfOu91ta32o/NMZxltwRo8QtmkMRdAu8=" crossorigin="anonymous"></script>
-<script type="text/javascript">
-
-			var defaultLink = "https://landscape.cncf.io/category=kubernetes-certified-service-provider&format=card-mode&grouping=category&embed=yes";
-			var firstLink = "https://landscape.cncf.io/category=certified-kubernetes-distribution,certified-kubernetes-hosted,certified-kubernetes-installer&format=card-mode&grouping=category&embed=yes";
-      var secondLink = "https://landscape.cncf.io/category=kubernetes-training-partner&format=card-mode&grouping=category&embed=yes";
-
-      function updateSrc(buttonId) {
-      	if (buttonId == "kcsp") {
-        		$("#landscape").attr("src",defaultLink);
-            window.location.hash = "#kcsp";
-        }
-        if (buttonId == "conformance") {
-         		$("#landscape").attr("src",firstLink);
-            window.location.hash = "#conformance";
-        }
-        if (buttonId == "ktp") {
-        		$("#landscape").attr("src",secondLink);
-            window.location.hash = "#ktp";
-        }
-      }
-
-      // Automatically load the correct iframe based on the URL fragment
-      document.addEventListener('DOMContentLoaded', function() {
-        var showContent = "kcsp";
-        if (window.location.hash) {
-          console.log('hash is:', window.location.hash.substring(1));
-          showContent = window.location.hash.substring(1);
-        }
-        updateSrc(showContent);
-      });
-</script>
-<body>
-    <div id="frameHolder">
-      <iframe id="landscape" title="CNCF Landscape" frameBorder="0" scrolling="no" style="width: 1px; min-width: 100%" src=""></iframe>
-      <script src="https://landscape.cncf.io/iframeResizer.js"></script>
-    </div>
-</body>
-    </main>
-</section>
-
-<style>
-    {{< include "partner-style.css" >}}
-</style>
-
diff --git a/data/announcements/scheduled.yaml b/data/announcements/scheduled.yaml
index 831ad1ebb6..319b3a1662 100644
--- a/data/announcements/scheduled.yaml
+++ b/data/announcements/scheduled.yaml
@@ -30,6 +30,15 @@
 # leave the "announcements" key in place
 announcements:
 
+- name: Dockershim removal
+  startTime: 2022-04-07T00:00:00 # Added in PR: https://github.com/kubernetes/website/pull/32805
+  endTime: 2022-05-09T00:00:00 
+  style: "background: #326ce5"
+  title: "Dockershim removed from Kubernetes"
+  message: |
+    As of Kubernetes 1.24, Dockershim is no longer included in Kubernetes.
+    Read the [Dockershim Removal FAQ](/dockershim) to see what this means to you.
+
 - name: Kubecon 2020 NA
   startTime: 2020-10-26T00:00:00 # Added in https://github.com/kubernetes/website/pull/24714
   endTime: 2020-11-23T00:00:00 # Removed in https://github.com/kubernetes/website/pull/25173
@@ -94,3 +103,16 @@ announcements:
   message: |
     2 days of incredible opportunities to collaborate, learn + share with the entire community!<br />
     December 9 + 10, 2021.
+
+- name: Kubecon 2022 EU
+  startTime: 2022-05-10T00:00:00  #Added in https://github.com/kubernetes/website/pull/33578
+  endTime: 2022-05-20T18:00:00
+  style: >-
+    background: linear-gradient(90deg, rgb(253, 225, 203) 0%, rgb(236, 107, 67) 75%, rgb(236, 107, 67) 100%);
+    color: #000;
+  title: |
+    <img src ="/images/announcements/kccnc-eu-2022-black.svg" style="float: right; height: 80px;" />
+    <a href= "https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/">KubeCon + CloudNativeCon EU 2022</a> <em> Valencia, Spain + Virtual</em>.
+  message: |
+    5 days of incredible opportunites to collaborate, learn + share with the entire community!<br />
+    May 16 - 20, 2022.
diff --git a/data/i18n/en/en.toml b/data/i18n/en/en.toml
index e32d8819d2..6c57982f9b 100644
--- a/data/i18n/en/en.toml
+++ b/data/i18n/en/en.toml
@@ -36,6 +36,9 @@ other = " documentation is no longer actively maintained. The version you are cu
 [deprecation_file_warning]
 other = "Deprecated"
 
+[dockershim_message]
+other = """Dockershim has been removed from the Kubernetes project as of release 1.24. Read the <a href="/dockershim">Dockershim Removal FAQ</a> for further details."""
+
 [docs_label_browse]
 other = "Browse Docs"
 
@@ -69,6 +72,9 @@ other = "Were you looking for:"
 [examples_heading]
 other = "Examples"
 
+[feature_state]
+other = "FEATURE STATE:"
+
 [feedback_heading]
 other = "Feedback"
 
@@ -87,6 +93,9 @@ other = ","
 [input_placeholder_email_address]
 other = "email address"
 
+[javascript_required]
+other = "JavaScript must be [enabled](https://www.enable-javascript.com/) to view this content"
+
 [latest_release]
 other = "Latest Release:"
 
@@ -189,6 +198,10 @@ other = "Read about"
 [main_read_more]
 other = "Read more"
 
+[not_applicable]
+# Localization teams: it's OK to use a longer text here
+other = "n/a"
+
 [note]
 other = "Note:"
 
@@ -198,6 +211,9 @@ other = "Objectives"
 [options_heading]
 other = "Options"
 
+[outdated_blog__message]
+other = "This article is more than one year old. Older articles may contain outdated content. Check that the information in the page has not become incorrect since its publication."
+
 [post_create_issue]
 other = "Create an issue"
 
@@ -207,6 +223,17 @@ other = "Before you begin"
 [previous_patches]
 other = "Patch Releases:"
 
+[release_date_after]
+other = ")"
+
+[release_date_before]
+other = "(released: "
+
+# See https://gohugo.io/functions/format/#gos-layout-string
+# Use a suitable format for your locale
+[release_date_format]
+other = "2006-01-02"
+
 [seealso_heading]
 other = "See Also"
 
@@ -217,7 +244,17 @@ other = "Subscribe"
 other = "Synopsis"
 
 [thirdparty_message]
-other = """This section links to third party projects that provide functionality required by Kubernetes. The Kubernetes project authors aren't responsible for these projects. This page follows <a href="https://github.com/cncf/foundation/blob/master/website-guidelines.md" target="_blank">CNCF website guidelines</a> by listing projects alphabetically. To add a project to this list, read the <a href="/docs/contribute/style/content-guide/#third-party-content">content guide</a> before submitting a change."""
+other = """This section links to third party projects that provide functionality required by Kubernetes. The Kubernetes project authors aren't responsible for these projects, which are listed alphabetically. To add a project to this list, read the <a href="/docs/contribute/style/content-guide/#third-party-content">content guide</a> before submitting a change. <a href="#third-party-content-disclaimer">More information.</a>"""
+
+[thirdparty_message_edit_disclaimer]
+other="""Third party content advice"""
+
+
+[thirdparty_message_single_item]
+other = """&#128711; This item links to a third party project or product that is not part of Kubernetes itself. <a class="alert-more-info" href="#third-party-content-disclaimer">More information</a>"""
+
+[thirdparty_message_disclaimer]
+other = """<p>Items on this page refer to third party products or projects that provide functionality required by Kubernetes. The Kubernetes project authors aren't responsible for those third-party products or projects. See the <a href="https://github.com/cncf/foundation/blob/master/website-guidelines.md" target="_blank">CNCF website guidelines</a> for more details.</p><p>You should read the <a href="/docs/contribute/style/content-guide/#third-party-content">content guide</a> before proposing a change that adds an extra third-party link.</p>"""
 
 [ui_search_placeholder]
 other = "Search"
@@ -238,4 +275,4 @@ other = "Versions"
 other = "Warning:"
 
 [whatsnext_heading]
-other = "What's next"
\ No newline at end of file
+other = "What's next"
diff --git a/data/i18n/ja/ja.toml b/data/i18n/ja/ja.toml
index a7a103f435..3fdeebe8d2 100644
--- a/data/i18n/ja/ja.toml
+++ b/data/i18n/ja/ja.toml
@@ -184,6 +184,12 @@ other = "購読する"
 [ui_search_placeholder]
 other = "検索"
 
+[thirdparty_message]
+other = """このセクションでは、Kubernetesが必要とする機能を提供するサードパーティープロジェクトにリンクしています。これらのプロジェクトはアルファベット順に記載されていて、Kubernetesプロジェクトの作者は責任を持ちません。このリストにプロジェクトを追加するには、変更を提出する前に<a href="/docs/contribute/style/content-guide/#third-party-content">content guide</a>をお読みください。<a href="#third-party-content-disclaimer">詳細はこちら。</a>"""
+
+[thirdparty_message_disclaimer]
+other = """<p>このページの項目は、Kubernetesが必要とする機能を提供するサードパーティー製品またはプロジェクトです。Kubernetesプロジェクトの作者は、それらのサードパーティー製品またはプロジェクトに責任を負いません。詳しくは、<a href="https://github.com/cncf/foundation/blob/master/website-guidelines.md" target="_blank">CNCFウェブサイトのガイドライン</a>をご覧ください。第三者のリンクを追加するような変更を提案する前に、<a href="/docs/contribute/style/content-guide/#third-party-content">コンテンツガイド</a>を読むべきです。</p>"""
+
 [version_check_mustbe]
 other = "作業するKubernetesサーバーは次のバージョンである必要があります: "
 
diff --git a/data/i18n/ko/ko.toml b/data/i18n/ko/ko.toml
index f79f689b88..d66169c2a3 100644
--- a/data/i18n/ko/ko.toml
+++ b/data/i18n/ko/ko.toml
@@ -1,11 +1,5 @@
 # i18n strings for the Korean translation.
 # NOTE: Please keep the entries in alphabetical order when editing
-[announcement_title]
-other = "Black lives matter."
-
-[announcement_message]
-other = "우리는 흑인 공동체를 지지합니다.<br/>인종차별은 용납될 수 없습니다.<br/> 인종차별은 [쿠버네티스 프로젝트의 핵심 가치](https://git.k8s.io/community/values.md)에 상충되며 우리 공동체는 이를 용인하지 않습니다."
-
 [caution]
 other = "주의:"
 
@@ -42,6 +36,9 @@ other = " 문서는 더 이상 적극적으로 관리되지 않음. 현재 보
 [deprecation_file_warning]
 other = "사용 중단됨(deprecated)"
 
+[dockershim_message]
+other = """Dockershim은 쿠버네티스 릴리스 1.24부터 쿠버네티스 프로젝트에서 제거되었다. 더 자세한 내용은 <a href="/dockershim">Dockershim 제거 FAQ</a>를 참고한다."""
+
 [docs_label_browse]
 other = "문서 둘러보기"
 
@@ -63,12 +60,21 @@ other = "최신 버전"
 [docs_version_other_heading]
 other = "이전 버전"
 
+[end_of_life]
+other = "지원 종료:"
+
+[envvars_heading]
+other = "환경 변수"
+
 [error_404_were_you_looking_for]
 other = "무엇과 관련된 정보를 찾으시나요?"
 
 [examples_heading]
 other = "예시"
 
+[feature_state]
+other = "기능 상태:"
+
 [feedback_heading]
 other = "피드백"
 
@@ -81,9 +87,18 @@ other = "네"
 [feedback_no]
 other = "아니요"
 
+[inline_list_separator]
+other = ","
+
 [input_placeholder_email_address]
 other = "전자 우편 주소"
 
+[javascript_required]
+other = "이 컨텐츠를 보려면 자바스크립트가 [활성화](https://www.enable-javascript.com/)되어 있어야 합니다."
+
+[latest_release]
+other = "최신 릴리스:"
+
 [latest_version]
 other = "최신 버전."
 
@@ -183,6 +198,10 @@ other = "읽어 보기"
 [main_read_more]
 other = "더 읽기"
 
+[not_applicable]
+# Localization teams: it's OK to use a longer text here
+other = "해당되지 않음"
+
 [note]
 other = "참고:"
 
@@ -192,12 +211,29 @@ other = "목적"
 [options_heading]
 other = "옵션"
 
+[outdated_blog__message]
+other = "이 글은 작성일로부터 1년 이상 지났습니다. 오래된 글은 더 이상 유효하지 않은 컨텐츠를 포함하고 있을 수 있습니다. 이 페이지의 정보가 틀리지 않았는지 다시 한 번 확인하세요."
+
 [post_create_issue]
 other = "이슈 생성"
 
 [prerequisites_heading]
 other = "시작하기 전에"
 
+[previous_patches]
+other = "패치 릴리스:"
+
+[release_date_after]
+other = "에 릴리스됨)"
+
+[release_date_before]
+other = "("
+
+# See https://gohugo.io/functions/format/#gos-layout-string
+# Use a suitable format for your locale
+[release_date_format]
+other = "2006-01-02"
+
 [seealso_heading]
 other = "더 보기"
 
@@ -210,6 +246,16 @@ other = "시놉시스"
 [thirdparty_message]
 other = """이 섹션은 쿠버네티스에 필요한 기능을 제공하는 써드파티 프로젝트와 관련이 있다. 쿠버네티스 프로젝트 작성자는 써드파티 프로젝트에 책임이 없다. 이 페이지는 <a href="https://github.com/cncf/foundation/blob/master/website-guidelines.md" target="_blank">CNCF 웹사이트 가이드라인</a>에 따라 프로젝트를 알파벳 순으로 나열한다. 이 목록에 프로젝트를 추가하려면 변경사항을 제출하기 전에 <a href="/contribute/style/content-guide/#third-party-content">콘텐츠 가이드</a>를 읽어본다."""
 
+[thirdparty_message_edit_disclaimer]
+other="""써드파티 컨텐츠 안내"""
+
+
+[thirdparty_message_single_item]
+other = """&#128711; 이 항목은 쿠버네티스에 속하지 않는 써드파티 프로젝트 또는 제품의 링크로 연결됩니다. <a class="alert-more-info" href="#third-party-content-disclaimer">추가 정보</a>"""
+
+[thirdparty_message_disclaimer]
+other = """<p>이 페이지는 쿠버네티스가 필요로 하는 기능을 제공하는 써드파티 프로젝트 또는 제품에 대해 언급하고 있습니다. 쿠버네티스 프로젝트 저자들은 이러한 써드파티 프로젝트 또는 제품에 대해 책임지지 않습니다. <a href="https://github.com/cncf/foundation/blob/master/website-guidelines.md" target="_blank">CNCF 웹사이트 가이드라인</a>에서 더 자세한 내용을 확인합니다.</p><p>다른 써드파티 링크를 추가하는 변경을 제안하기 전에, <a href="/docs/contribute/style/content-guide/#third-party-content">컨텐츠 가이드</a>를 확인해야 합니다.</p>"""
+
 [ui_search_placeholder]
 other = "검색하기"
 
diff --git a/data/i18n/pt/pt-br.toml b/data/i18n/pt/pt-br.toml
index 3f55a665b3..3301cd3295 100644
--- a/data/i18n/pt/pt-br.toml
+++ b/data/i18n/pt/pt-br.toml
@@ -32,7 +32,7 @@ other = "Descontinuado"
 other = "Você está vendo a documentação do Kubernetes versão:"
 
 [deprecation_warning]
-other = " a documentação não é mais mantida ativamente. A versão que você está visualizando no momento é uma captura instantânea estática. Para obter documentação atualizada, consulte "
+other = " a documentação não é mais mantida ativamente. A versão que você está visualizando no momento é uma cópia estática. Para obter a documentação atualizada, consulte "
 
 [docs_label_browse]
 other = "Procurar documentos"
@@ -98,7 +98,7 @@ other = "indicadores abaixo para uma maior explicação sobre um termo em partic
 other = "Clique nos"
 
 [layouts_docs_glossary_description]
-other = "Este glossário pretende ser uma lista padronizada e abrangente da terminologia do Kubernetes. Inclui termos técnicos específicos dos K8s, além de termos mais gerais que fornecem um contexto útil."
+other = "Este glossário tem por objetivo ser uma lista padronizada e abrangente da terminologia do Kubernetes. Inclui termos técnicos específicos do K8s, além de termos mais gerais que fornecem um contexto útil."
 
 [layouts_docs_glossary_deselect_all]
 other = "Desmarcar tudo"
@@ -119,7 +119,7 @@ other = "Abra um bug no repositório do GitHub se você deseja "
 other = "ou"
 
 [layouts_docs_partials_feedback_problem]
-other = "reportar um problema"
+other = "relatar um problema"
 
 [layouts_docs_partials_feedback_thanks]
 other = "Obrigado pelo feedback. Se você tiver uma pergunta específica sobre como utilizar o Kubernetes, faça em"
@@ -133,7 +133,7 @@ other = "Buscando resultados.."
 other = "por"
 
 [main_cncf_project]
-other = """Nós somos uma <a href="https://cncf.io/">CNCF</a> projeto graduado</p>"""
+other = """Nós somos um projeto graduado da <a href="https://cncf.io/">CNCF</a></p>"""
 
 [main_community_explore]
 other = "Explore a comunidade"
@@ -210,10 +210,10 @@ other = """Esta seção tem links para projetos de terceiros que fornecem a func
 other = "Procurar"
 
 [version_check_mustbeorlater]
-other = "O seu servidor Kubernetes deve estar em ou depois da versão "
+other = "O seu servidor Kubernetes deve estar numa versão igual ou superior a "
 
 [version_check_mustbe]
-other = "Seu servidor Kubernetes deve ser versão"
+other = "O seu servidor Kubernetes deve estar na versão "
 
 [version_check_tocheck]
 other = "Para verificar a versão, digite "
@@ -225,7 +225,7 @@ other = "Versões"
 other = "Aviso:"
 
 [whatsnext_heading]
-other = "Qual é o próximo"
+other = "Próximos passos"
 
 [print_printable_section]
 other = "Essa é a versão completa de impressão dessa seção"
diff --git a/data/i18n/zh/OWNERS b/data/i18n/zh-cn/OWNERS
similarity index 100%
rename from data/i18n/zh/OWNERS
rename to data/i18n/zh-cn/OWNERS
diff --git a/data/i18n/zh/zh.toml b/data/i18n/zh-cn/zh-cn.toml
similarity index 67%
rename from data/i18n/zh/zh.toml
rename to data/i18n/zh-cn/zh-cn.toml
index dcf32839f8..3220f77d81 100644
--- a/data/i18n/zh/zh.toml
+++ b/data/i18n/zh-cn/zh-cn.toml
@@ -1,4 +1,4 @@
-# i18n strings for the Chinese version of the site (https://kubernetes.io/zh/)
+# i18n strings for the Chinese version of the site (https://kubernetes.io/zh-cn/)
 # 注意：修改此文件时请维持字符串名称的字母顺序并与英文版保持一致
 
 [caution]
@@ -37,6 +37,9 @@ other = " 版本的文档已不再维护。您现在看到的版本来自于一
 [deprecation_file_warning]
 other = "已过时"
 
+[dockershim_message]
+other = """自 1.24 版起，Dockershim 已从 Kubernetes 项目中移除。阅读 <a href="/zh-cn/dockershim">Dockershim 移除的常见问题</a>了解更多详情。"""
+
 [docs_label_browse]
 other = "浏览文档"
 
@@ -49,9 +52,30 @@ other = "我是..."
 [docs_label_users]
 other = "用户"
 
+[docs_version_current]
+other = "（本文档）"
+
+[docs_version_latest_heading]
+other = "最新版本"
+
+[docs_version_other_heading]
+other = "较老版本"
+
+[end_of_life]
+other = "不再支持："
+
+[envvars_heading]
+other = "环境变量"
+
+[error_404_were_you_looking_for]
+other = "你是否在搜索："
+
 [examples_heading]
 other = "示例"
 
+[feature_state]
+other = "特性状态："
+
 [feedback_heading]
 other = "反馈"
 
@@ -64,9 +88,21 @@ other = "此页是否对您有帮助？"
 [feedback_yes]
 other = "是"
 
+[inline_list_separator]
+other = "、"
+
 [input_placeholder_email_address]
 other = "电子邮件地址"
 
+[javascript_required]
+other = "必须[启用](https://www.enable-javascript.com/) JavaScript 才能查看此页内容"
+
+[katacoda_removal_warning]
+other = """本页面上的此在线教程在 <time datetime="2022-06-15">2022 年 6 月 15 日</time>后[无法继续使用](https://www.oreilly.com/online-learning/leveraging-katacoda-technology.html)。"""
+
+[latest_release]
+other = "最新发行版本："
+
 [latest_version]
 other = "最新版本。"
 
@@ -136,12 +172,6 @@ other = """Linux 基金会&reg;。保留所有权利。Linux 基金会已注册
 [main_documentation_license]
 other = """The Kubernetes 作者 | 文档发布基于 <a href="https://git.k8s.io/website/LICENSE" class="light-text">CC BY 4.0</a> 授权许可"""
 
-[main_edit_this_page]
-other = "修改本页面"
-
-[main_github_create_an_issue]
-other = "报告 GitHub 问题"
-
 [main_github_invite]
 other = "想要修改 Kubernetes 的核心源代码？"
 
@@ -170,7 +200,11 @@ other = "页面最后一次修改于"
 other = "了解"
 
 [main_read_more]
-other = "了解更多"
+other = "进一步了解"
+
+[not_applicable]
+# Localization teams: it's OK to use a longer text here
+other = "不适用"
 
 [note]
 other = "说明："
@@ -181,12 +215,26 @@ other = "教程目标"
 [options_heading]
 other = "选项"
 
-[post_create_child_page]
-other = "创建子页面"
+[outdated_blog__message]
+other = "这篇文章已经一年多了，较旧的文章可能包含过时的内容。请检查从发表以来，页面中的信息是否变得不正确。"
 
 [prerequisites_heading]
 other = "准备开始"
 
+[previous_patches]
+other = "补丁版本："
+
+[release_date_after]
+other = "）"
+
+[release_date_before]
+other = "(发布日期: "
+
+# See https://gohugo.io/functions/format/#gos-layout-string
+# Use a suitable format for your locale
+[release_date_format]
+other = "2006-01-02"
+
 [seealso_heading]
 other = "另请参见"
 
@@ -199,6 +247,16 @@ other = "简介"
 [thirdparty_message]
 other = """本部分链接到提供 Kubernetes 所需功能的第三方项目。Kubernetes 项目作者不负责这些项目。此页面遵循<a href="https://github.com/cncf/foundation/blob/master/website-guidelines.md" target="_blank">CNCF 网站指南</a>，按字母顺序列出项目。要将项目添加到此列表中，请在提交更改之前阅读<a href="/docs/contribute/style/content-guide/#third-party-content">内容指南</a>。"""
 
+[thirdparty_message_edit_disclaimer]
+other="""第三方内容建议"""
+
+
+[thirdparty_message_single_item]
+other = """&#128711; 本条目指向第三方项目或产品，而该项目（产品）不是 Kubernetes 的一部分。<a class="alert-more-info" href="#third-party-content-disclaimer">更多信息</a>"""
+
+[thirdparty_message_disclaimer]
+other = """<p>本页面中的条目引用了第三方产品或项目，这些产品（项目）提供了 Kubernetes 所需的功能。Kubernetes 项目的开发人员不对这些第三方产品（项目）负责。请参阅<a href="https://github.com/cncf/foundation/blob/master/website-guidelines.md" target="_blank">CNCF 网站指南</a>了解更多细节。</p><p>在提交更改建议，向本页添加新的第三方链接之前，你应该先阅读<a href="/zh-cn/docs/contribute/style/content-guide/#third-party-content">内容指南。</p>"""
+
 [ui_search_placeholder]
 other = "搜索"
 
@@ -219,12 +277,3 @@ other = "警告："
 
 [whatsnext_heading]
 other = "接下来"
-
-[docs_version_latest_heading]
-other = "当前版本"
-
-[docs_version_other_heading]
-other = "往期版本"
-
-[docs_version_current]
-other = "(此文档)"
diff --git a/data/releases/schedule.yaml b/data/releases/schedule.yaml
index 99abec370e..5f56b2cbb2 100644
--- a/data/releases/schedule.yaml
+++ b/data/releases/schedule.yaml
@@ -1,118 +1,95 @@
 schedules:
+- release: 1.24
+  releaseDate: 2022-05-03
+  next: 1.24.4
+  cherryPickDeadline: 2022-08-12
+  targetDate: 2022-08-17
+  endOfLifeDate: 2023-07-28
+  previousPatches:
+    - release: 1.24.3
+      cherryPickDeadline: 2022-07-08
+      targetDate: 2022-07-13
+    - release: 1.24.2
+      cherryPickDeadline: 2022-06-10
+      targetDate: 2022-06-15
+    - release: 1.24.1
+      cherryPickDeadline: 2022-05-20
+      targetDate: 2022-05-24
+- release: 1.23
+  releaseDate: 2021-12-07
+  next: 1.23.10
+  cherryPickDeadline: 2022-08-12
+  targetDate: 2022-08-17
+  endOfLifeDate: 2023-02-28
+  previousPatches:
+    - release: 1.23.9
+      cherryPickDeadline: 2022-07-08
+      targetDate: 2022-07-13
+    - release: 1.23.8
+      cherryPickDeadline: 2022-06-10
+      targetDate: 2022-06-15
+    - release: 1.23.7
+      cherryPickDeadline: 2022-05-20
+      targetDate: 2022-05-24
+    - release: 1.23.6
+      cherryPickDeadline: 2022-04-08
+      targetDate: 2022-04-13
+    - release: 1.23.5
+      cherryPickDeadline: 2022-03-11
+      targetDate: 2022-03-16
+    - release: 1.23.4
+      cherryPickDeadline: 2022-02-11
+      targetDate: 2022-02-16
+    - release: 1.23.3
+      cherryPickDeadLine: 2022-01-24
+      targetDate: 2022-01-25
+      note: "Out-of-Bound Release https://groups.google.com/a/kubernetes.io/g/dev/c/Xl1sm-CItaY"
+    - release: 1.23.2
+      cherryPickDeadline: 2022-01-14
+      targetDate: 2022-01-19
+    - release: 1.23.1
+      cherryPickDeadline: 2021-12-14
+      targetDate: 2021-12-16
 - release: 1.22
-  next: 1.22.2
-  cherryPickDeadline: 2021-09-10
-  targetDate: 2021-09-15
+  releaseDate: 2021-08-04
+  next: 1.22.13
+  cherryPickDeadline: 2022-08-12
+  targetDate: 2022-08-17
   endOfLifeDate: 2022-10-28
   previousPatches:
+    - release: 1.22.12
+      cherryPickDeadline: 2022-07-08
+      targetDate: 2022-07-13
+    - release: 1.22.11
+      cherryPickDeadline: 2022-06-10
+      targetDate: 2022-06-15
+    - release: 1.22.10
+      cherryPickDeadline: 2022-05-20
+      targetDate: 2022-05-24
+    - release: 1.22.9
+      cherryPickDeadline: 2022-04-08
+      targetDate: 2022-04-13
+    - release: 1.22.8
+      cherryPickDeadline: 2022-03-11
+      targetDate: 2022-03-16
+    - release: 1.22.7
+      cherryPickDeadline: 2022-02-11
+      targetDate: 2022-02-16
+    - release: 1.22.6
+      cherryPickDeadline: 2022-01-14
+      targetDate: 2022-01-19
+    - release: 1.22.5
+      cherryPickDeadline: 2021-12-10
+      targetDate: 2021-12-15
+    - release: 1.22.4
+      cherryPickDeadline: 2021-11-12
+      targetDate: 2021-11-17
+    - release: 1.22.3
+      cherryPickDeadline: 2021-10-22
+      targetDate: 2021-10-27
+    - release: 1.22.2
+      cherryPickDeadline: 2021-09-10
+      targetDate: 2021-09-15
     - release: 1.22.1
       cherryPickDeadline: 2021-08-16
       targetDate: 2021-08-19
-- release: 1.21
-  next: 1.21.5
-  cherryPickDeadline: 2021-09-10
-  targetDate: 2021-09-15
-  endOfLifeDate: 2022-06-28
-  previousPatches:
-    - release: 1.21.4
-      cherryPickDeadline: 2021-08-07
-      targetDate: 2021-08-11
-    - release: 1.21.3
-      cherryPickDeadline: 2021-07-10
-      targetDate: 2021-07-14
-    - release: 1.21.2
-      cherryPickDeadline: 2021-06-12
-      targetDate: 2021-06-16
-    - release: 1.21.1
-      cherryPickDeadline: 2021-05-07
-      targetDate: 2021-05-12
-      note: Regression https://groups.google.com/g/kubernetes-dev/c/KuF8s2zueFs
-- release: 1.20
-  next: 1.20.11
-  cherryPickDeadline: 2021-09-10
-  targetDate: 2021-09-15
-  endOfLifeDate: 2022-02-28
-  previousPatches:
-    - release: 1.20.10
-      cherryPickDeadline: 2021-08-07
-      targetDate: 2021-08-11
-    - release: 1.20.9
-      cherryPickDeadline: 2021-07-10
-      targetDate: 2021-07-14
-    - release: 1.20.8
-      cherryPickDeadline: 2021-06-12
-      targetDate: 2021-06-16
-    - release: 1.20.7
-      cherryPickDeadline: 2021-05-07
-      targetDate: 2021-05-12
-      note: Regression https://groups.google.com/g/kubernetes-dev/c/KuF8s2zueFs
-    - release: 1.20.6
-      cherryPickDeadline: 2021-04-09
-      targetDate: 2021-04-14
-    - release: 1.20.5
-      cherryPickDeadline: 2021-03-12
-      targetDate: 2021-03-17
-    - release: 1.20.4
-      cherryPickDeadline: 2021-02-12
-      targetDate: 2021-02-18
-    - release: 1.20.3
-      cherryPickDeadline: 2021-02-12
-      targetDate: 2021-02-17
-      note: "Conformance Tests Issue https://groups.google.com/g/kubernetes-dev/c/oUpY9vWgzJo"
-    - release: 1.20.2
-      cherryPickDeadline: 2021-01-08
-      targetDate: 2021-01-13
-    - release: 1.20.1
-      cherryPickDeadline: 2020-12-11
-      targetDate: 2020-12-18
-      note: "Tagging Issue https://groups.google.com/g/kubernetes-dev/c/dNH2yknlCBA"
-- release: 1.19
-  next: 1.19.15
-  cherryPickDeadline: 2021-09-10
-  targetDate: 2021-09-15
-  endOfLifeDate: 2021-10-28
-  previousPatches:
-    - release: 1.19.14
-      cherryPickDeadline: 2021-08-07
-      targetDate: 2021-08-11
-    - release: 1.19.13
-      cherryPickDeadline: 2021-07-10
-      targetDate: 2021-07-14
-    - release: 1.19.12
-      cherryPickDeadline: 2021-06-12
-      targetDate: 2021-06-16
-    - release: 1.19.11
-      cherryPickDeadline: 2021-05-07
-      targetDate: 2021-05-12
-      note: Regression https://groups.google.com/g/kubernetes-dev/c/KuF8s2zueFs
-    - release: 1.19.10
-      cherryPickDeadline: 2021-04-09
-      targetDate: 2021-04-14
-    - release: 1.19.9
-      cherryPickDeadline: 2021-03-12
-      targetDate: 2021-03-17
-    - release: 1.19.8
-      cherryPickDeadline: 2021-02-12
-      targetDate: 2021-02-17
-    - release: 1.19.7
-      cherryPickDeadline: 2021-01-08
-      targetDate: 2021-01-13
-    - release: 1.19.6
-      cherryPickDeadline: 2020-12-11
-      targetDate: 2020-12-18
-      note: "Tagging Issue https://groups.google.com/g/kubernetes-dev/c/dNH2yknlCBA"
-    - release: 1.19.5
-      cherryPickDeadline: 2020-12-04
-      targetDate: 2020-12-09
-    - release: 1.19.4
-      cherryPickDeadline: 2020-11-06
-      targetDate: 2020-11-11
-    - release: 1.19.3
-      cherryPickDeadline: 2020-10-09
-      targetDate: 2020-10-14
-    - release: 1.19.2
-      cherryPickDeadline: 2020-09-11
-      targetDate: 2020-09-16
-    - release: 1.19.1
-      cherryPickDeadline: 2020-09-04
-      targetDate: 2020-09-09
diff --git a/deprecated/assets/sass/_base.sass b/deprecated/assets/sass/_base.sass
deleted file mode 100644
index 7306433631..0000000000
--- a/deprecated/assets/sass/_base.sass
+++ /dev/null
@@ -1,1904 +0,0 @@
-@import "reset"
-
-// TEXT
-$h1-font-size: 32px
-$h1-line-height: 40px
-
-$h2-font-size: 28px
-$h2-line-height: 60px
-
-$h3-font-size: 24px
-$h3-line-height: 32px
-
-$h4-font-size: 20px
-$h4-line-height: 40px
-
-$h5-font-size: 16px
-$h5-line-height: 36px
-
-$p-font-size: 14px
-$p-line-height: 22px
-
-
-// header
-$full-width-paddingX: 20px
-
-$main-width: 100%
-$main-max-width: 100%
-
-$header-height: 80px
-
-$logo-width: 180px
-
-$nav-buttons-margin-left: 30px
-
-$hamburger-size: 50px
-
-
-// main nav
-$main-nav-padding: 140px 0 30px
-$main-nav-h5-margin-bottom: 1em
-$main-nav-h3-margin-bottom: 0.6em
-$nav-box-width: 20%
-$nav-box-sibling-margin-left: calc(20% / 3)
-$main-nav-main-sibling-margin-top: 60px
-$main-nav-left-button-size: 50px
-$main-nav-left-button-font-size: 18px
-
-
-// hero
-$hero-padding-top: 80px
-$headline-wrapper-margin-bottom: 40px
-$quickstart-button-padding: 0 50px
-$vendor-strip-height: 88px
-$vendor-strip-font-size: 16px
-
-// video
-$video-section-height: 200px
-
-@import "size"
-
-////////////////////////////////////////////////////////////////////////////////////////////////////
-////////////////////////////////////////////////////////////////////////////////////////////////////
-////////////////////////////////////////////////////////////////////////////////////////////////////
-
-body
-  background-color: white
-
-section
-  position: relative
-  background-color: white
-
-section, header, footer
-  .main-section
-    position: relative
-    margin: auto
-
-p
-  font-size: 14px
-  font-weight: 400
-
-
-.button
-  display: inline-block
-  border-radius: 6px
-  padding: 0 20px
-  line-height: 40px
-  color: white
-  background-color: $blue
-  text-decoration: none
-  font-size: 1rem
-
-#cellophane
-  position: fixed
-  top: 0
-  left: 0
-  width: 100%
-  height: 100%
-  display: none
-
-
-// HEADER
-header
-  position: fixed
-  top: 0
-  left: 0
-  width: 100%
-  z-index: 8888
-  background-color: transparent
-  box-shadow: 0 0 0 transparent
-  transition: 0.3s
-  text-align: center
-  overflow: hidden
-
-
-.logo
-  position: relative
-  float: left
-  display: block
-  width: 180px
-  height: 88px
-  top: 0
-  left: 0
-  transform: none
-  background-image: url(/images/nav_logo.svg)
-  background-size: contain
-  background-position: center center
-  background-repeat: no-repeat
-
-#blog
-  &.flip-nav, &.open-nav
-    .logo
-      background-image: url(../images/nav_logo2.svg)
-
-// Blog post tables
-.blog-content
-  table
-    max-width: 100%
-    border: 1px solid #ccc
-    border-spacing: 0
-    margin-top: 30px
-    margin-bottom: 30px
-    @media screen and (max-width: 425px)
-      display: block
-      overflow-x: auto
-
-    thead
-      border-bottom: 2px solid #ccc
-
-      tr
-        th
-          padding: .5rem
-          font-size: 1.5rem
-
-    tbody
-      tr
-        td
-          padding: .5rem
-          border-bottom: 1px solid #ccc
-          border-left: 1px solid #ccc
-          padding-right: 5rem
-
-#docs
-  .flyout-button
-    position: fixed
-    top: 20px
-    left: 20px
-    width: 50px
-    height: 50px
-    background-image: url(/images/toc_icon.png)
-    background-position: center center
-    background-repeat: no-repeat
-    background-size: auto
-    border-radius: 50%
-    transition: 0.3s
-    z-index: 99999
-
-  &.open-nav .flyout-button
-    display: none
-
-  .logo
-    position: absolute
-    top: 40px
-    left: 50%
-    transform: translate(-50%, -50%)
-    display: block
-    width: 45px
-    height: 44px
-    background-image: url(/images/favicon.png)
-
-  &.flip-nav .flyout-button
-    background-image: url(/images/toc_icon_grey.png)
-
-
-.nav-buttons
-  float: right
-
-#viewDocs, #tryKubernetes
-  display: none
-
-#viewDocs
-  border: 2px solid white
-  background-color: transparent
-  transition: 0.3s
-
-  &:hover
-    background-color: white
-    color: $dark-grey
-
-#tryKubernetes
-  width: 0
-  padding: 0 0
-  border: 1px solid transparent
-  background-color: transparent
-  text-align: center
-  white-space: nowrap
-  vertical-align: middle
-  overflow: hidden
-  transition: 0.3s
-
-#hamburger
-  display: inline-block
-  position: relative
-  vertical-align: middle
-  padding: 0
-  border: 0
-  background: none
-
-  div, &:before, &:after
-    position: absolute
-    left: 15%
-    width: 70%
-    height: 2px
-    background-color: $blue
-    transition: 0.3s
-    content: ""
-
-  div
-    top: calc(50% - 1px)
-
-  &:before
-    top: 24%
-
-  &:after
-    bottom: 24%
-
-  &:hover
-    div, &:before, &:after
-      background-color: white
-
-#mainNav
-
-  h5
-    color: $blue
-    font-weight: normal
-
-  .main-section
-    white-space: nowrap
-    overflow: hidden
-    clear: both
-
-  .nav-box
-    float: left
-    white-space: normal
-
-  h3
-    a
-      color: $blue
-      text-decoration: none
-
-// Global Nav - 12/9/2016 Update
-
-ul.global-nav
-  display: none
-
-  li
-    display: inline-block
-    margin-right: 14px
-
-    a
-      color: #fff
-      font-weight: 400
-      padding: 0
-      position: relative
-
-      &.active:after
-        position: absolute
-        width: 100%
-        height: 2px
-        content: ''
-        bottom: -4px
-        left: 0
-        background: #fff
-
-      .ui-icon
-        filter: brightness(0) invert(1)
-
-    ul
-      display: none
-      position: fixed
-      top: 40px
-      text-align: left
-
-      li
-        display: block
-        height: 28px
-
-        a
-          background: $dark-grey
-          color: #fff
-          padding: 7px
-
-      li:last-child
-        a
-          border-radius: 7px
-
-  li:hover
-    ul
-      display: block
-
-
-.flip-nav, .open-nav
-  ul.global-nav li a
-    color: $dark-grey
-
-    .ui-icon
-      filter: brightness(0)
-
-.flip-nav ul.global-nav li ul li a
-  background: #fff
-  color: $dark-grey
-
-.flip-nav ul.global-nav li a.active:after, .flip-nav ul.global-nav li ul li a.active:after, .open-nav ul.global-nav li a.active:after
-  background: $blue
-
-// FLIP NAV
-.flip-nav
-  header
-    background-color: white
-
-
-// OPEN NAV
-.open-nav
-  body
-    overflow: hidden
-
-  #cellophane
-    display: block
-    z-index: 9998
-
-  header
-    background-color: #e8e8e8
-    z-index: 9999
-
-  #hamburger
-    div
-      opacity: 0
-
-    &:before, &:after
-      left: 12px
-      transform-origin: 0 1px
-
-    &:before
-      transform: rotate(45deg)
-
-    &:after
-      transform: rotate(-45deg)
-
-.open-nav, .y-enough
-  #tryKubernetes
-    width: auto
-    padding: 0 20px
-    background-color: $blue
-    border-color: $blue
-
-
-.flip-nav, .open-nav
-  header
-    box-shadow: 0 1px 2px $medium-grey
-
-  #viewDocs
-    border-color: $dark-grey
-    color: $dark-grey
-
-    &:hover
-      border-color: $blue
-      background-color: $blue
-      color: white
-
-  #hamburger:hover
-    div, &:before, &:after
-      background-color: $dark-grey
-
-
-
-// HERO
-#hero
-  background-image: url(/images/texture.png)
-  background-color: $dark-grey
-  text-align: center
-  padding-left: 0
-  padding-right: 0
-  margin-bottom: 0
-  position: relative
-
-  &.bot-bar:after
-    display: block
-    margin-bottom: -20px
-    height: 8px
-    width: 100%
-    background-color: transparentize(white, 0.9)
-    content: ''
-
-  &.no-sub
-
-    h5
-      display: none
-
-    h1
-      margin-bottom: 20px
-
-#home #hero:after
-  display: none
-
-// VENDOR STRIP
-#vendorStrip
-  position: relative
-  background-color: transparentize(white, 0.9)
-  font-weight: 100
-  white-space: nowrap
-  text-align: center
-
-  li a
-    color: transparentize(white, 0.5)
-
-    &.YAH
-      color: white
-      position: relative
-
-
-// FOOTER
-footer
-  width: 100%
-  background-image: url(/images/texture.png)
-  background-color: $dark-grey
-  overflow-x: hidden
-
-  .main-section
-    padding: 20px 0
-
-  nav
-    a
-      width: 100%
-      text-align: center
-      display: inline-block
-      margin: 10px 0
-      font-size: 24px
-      font-weight: 300
-      color: white
-      text-decoration: none
-
-
-  .social
-    margin: 20px 0
-
-    div
-      text-align: center
-      margin-bottom: 20px
-
-    div:last-child
-      margin: 30px 0
-
-    span
-      display: block
-      margin-bottom: 8px
-
-    input
-      text-align: center
-
-
-
-#search, #wishField
-  background-color: transparent
-  padding: 10px
-  font-size: 16px
-  font-weight: 100
-  color: white
-  border: 1px solid white
-  transition: 0.3s
-
-  &:focus
-    background-color: $light-grey
-    color: $dark-grey
-
-.social a
-  display: inline-block
-  background-image: url(/images/social_sprite.svg)
-  background-repeat: no-repeat
-  background-size: 350px
-  width: 50px
-  height: 50px
-  border-radius: 5px
-  margin-right: 10px
-
-  &:hover
-    background-color: #fff
-
-  span
-    position: absolute
-    display: block
-    height: 0
-    overflow: hidden
-
-  &.button
-    background-image: none
-    width: auto
-    height: auto
-
-    &:hover
-      color: $blue
-
-a.twitter
-  background-position: 0 0
-
-  &:hover
-    background-position: 0 100%
-
-a.stack-overflow
-  background-position: -50px 0
-
-  &:hover
-    background-position: -50px 100%
-
-a.slack
-  background-position: -100px 0
-
-  &:hover
-    background-position: -100px 100%
-
-a.github
-  background-position: -150px 0
-
-  &:hover
-    background-position: -150px 100%
-
-a.mailing-list
-  background-position: -200px 0
-
-  &:hover
-    background-position: -200px 100%
-
-a.calendar
-  background-position: -250px 0
-
-  &:hover
-    background-position: -250px 100%
-
-a.youtube
-  background-position: -300px 0
-
-  &:hover
-    background-position: -300px 100%
-
-#viewDocs
-  display: none
-
-section
-  background-color: white
-
-#hero
-  background-color: $dark-grey
-
-  h5
-    margin: 20px 0
-    line-height: 28px
-
-#vendorStrip
-  position: relative
-
-  ul
-    float: left
-
-  li
-    display: inline-block
-    height: 100%
-    margin-right: 10px
-    &:last-child
-      margin-right: 0
-
-  a
-    display: block
-    height: 100%
-    color: white
-    font-size: 0.75em
-    font-weight: bold
-
-  li + li
-    margin-left: 0
-
-
-#docs
-  #hero
-    &.light-text.no-sub
-      padding-bottom: 0px
-
-  #vendorStrip
-    line-height: 44px
-    max-width: 100%
-    -webkit-overflow-scrolling: touch
-
-    ul
-      float: none
-      overflow-x: auto
-
-    #searchBox
-      float: none
-      display: block
-      width: 80%
-      margin: 0 auto
-      height: 44px
-      line-height: 44px
-      position: relative
-
-      &:before
-        position: absolute
-        width: 15px
-        height: 15px
-        content: ''
-        right: 8px
-        top: 7px
-        background-image: url(/images/search-icon.svg)
-        background-repeat: no-repeat
-        background-size: 100% 100%
-        z-index: 1
-
-    #search
-      width: 100%
-      padding: 0 10px
-      height: 30px
-      line-height: 30px
-      font-size: 16px
-      vertical-align: top
-      background: #fff
-      border: none
-      border-radius: 4px
-      position: relative
-
-
-#encyclopedia
-  position: relative
-  padding: 50px 20px 20px 20px
-  overflow: hidden
-  font-size: 14px
-
-  & > div
-    height: 100%
-
-#docsToc
-  position: fixed
-  background-color: white
-  top: 0
-  left: 0
-  width: 0
-  height: 100vh
-  overflow: hidden
-  padding: 50px 0
-  z-index: 999999
-  transition: 0.3s
-
-  .yah
-    & > .title
-      background-color: $light-grey
-      border-left: 3px solid $blue
-      padding: 7.5px 10px 7.5px 18px
-      margin-left: -3px
-      color: $blue
-
-.open-toc
-  body
-    overflow: hidden
-
-  #docsToc
-    padding: 50px 20px
-    width: 400px
-    max-width: 100vw
-    overflow-y: auto
-
-.pi-accordion
-  & > .container:first-child > .item:first-child > .title:first-child
-    padding-left: 0
-    font-size: 1.5em
-    font-weight: 700
-
-  & > .container:first-child > .item.yah:first-child > .title:first-child
-    margin-left: -20px !important
-
-  .item
-    overflow: hidden
-
-  .title
-    color: $dark-grey
-    position: relative
-    padding: 7.5px 10px 7.5px 18px
-    cursor: pointer
-    transition: 0.3s
-
-    &:hover
-      color: $blue
-
-  a.item > .title
-    color: black
-
-    &:hover
-      color: $blue
-
-  div.item > .title
-    &:before
-      content: ""
-      position: absolute
-      top: 12px
-      left: 2px
-      border-style: solid
-      border-width: 5px 0 5px 8px
-      border-color: transparent transparent transparent $blue
-      transform: rotate(0deg)
-      transition: 0.3s
-
-  .wrapper
-    position: relative
-    width: 100%
-    transition: height 0.3s
-
-  .content
-    padding-left: 20px
-    opacity: 0
-    transition: 0.3s
-
-  .item.on
-    & > .title:before
-      transform: rotate(90deg)
-
-    & > .wrapper > .content
-      opacity: 1
-
-
-dt
-  margin-bottom: 8px
-
-dd
-  margin-bottom: 16px
-
-.pi-pushmenu
-  display: none
-  position: fixed
-  top: 0
-  width: 100%
-  height: 100%
-  opacity: 0
-  transition: opacity 0.3s
-
-  &.on
-    opacity: 1
-
-  .overlay
-    position: fixed
-    top: 0
-    left: 0
-    width: 100%
-    height: 100%
-    background-color: rgba(0, 0, 0, 0.4)
-
-  .sled
-    position: absolute
-    top: 0
-    width: 0
-    height: 100%
-    background-color: white
-    overflow: auto
-    transition: 0.3s
-
-  &.on .sled
-    width: 400px
-    max-width: 100vw
-
-  .top-bar
-    height: 0
-    line-height: 60px
-    background-color: #444
-
-  ul
-    margin-top: 25px
-
-  li
-    position: relative
-    display: block
-    width: 100%
-    min-height: 45px
-    padding: 0 60px 0 20px
-    border-bottom: 1px solid #cccccc
-
-  a
-    display: inline-block
-    width: 100%
-    height: 45px
-    line-height: 45px
-    font-family: "Roboto", sans-serif
-    font-size: 20px
-    color: $blue
-
-  .button
-    background: none
-    padding: 0
-
-  ul ul
-    padding: 0 20px
-
-    li
-      min-height: 40px
-
-    a
-      height: 40px
-      line-height: 40px
-      font-size: 18px
-      color: lighten(#222222, 20%)
-
-.push-menu-close-button
-  position: absolute
-  top: 0
-  right: 0
-  width: 50px
-  height: 50px
-
-  &:before, &:after
-    content: ""
-    position: absolute
-    top: calc(50% - 1px)
-    left: 25%
-    width: 50%
-    height: 2px
-    background-color: black
-
-  &:before
-    transform: rotate(45deg)
-
-  &:after
-    transform: rotate(-45deg)
-
-#docsContent
-  position: relative
-  float: right
-  width: 100%
-
-  $toc-margin: 15px
-  $header-clearance: $header-height + 20px
-
-  * + h2, * + h3, * + h4, * + h5, * + h6
-    margin-top: 30px
-
-  h1, h2, h3, h4, h5, h6
-    line-height: normal
-    font-weight: 500
-    margin-bottom: 30px
-    padding-bottom: 10px
-
-    // Make sure anchor links aren't hidden by the header
-    &:before
-      display: block
-      content: " "
-      margin-top: -$header-clearance
-      height: $header-clearance
-      visibility: hidden
-
-  h1,h2
-    border-bottom: 1px solid #cccccc
-
-  h1
-    font-size: 32px
-    padding-right: 60px
-
-  h2
-    font-size: 28px
-
-  h3
-    font-size: 24px
-    font-weight: 300
-    margin-bottom: 5px
-
-  h4
-    font-size: 20px
-    margin-bottom: 0px
-
-  h5, h6
-    font-size: 16px
-    font-weight: 500
-
-  p
-    font-size: 16px
-    font-weight: 300
-    line-height: 1.75em
-
-  p + p
-    margin-top: 10px
-
-  code
-    display: inline-block
-    box-sizing: border-box
-    background-color: $light-grey
-    color: $dark-grey
-    font-family: $mono-font
-    vertical-align: baseline
-    font-size: 14px
-    padding: 2px 4px
-
-  a code
-    color: $blue
-    text-decoration: underline
-
-  pre .pi, pre .s
-    margin: 0
-    padding: 0
-
-  .highlight code span, code, pre code
-    font-family: "Roboto Mono", monospace
-
-  code, pre code
-    color: #303030
-
-  pre code
-    padding: 0
-
-  pre
-    background-color: #f7f7f7
-    display: block
-    margin: 20px 0
-    padding: 15px
-    position: relative
-    overflow-x: auto
-
-  h1 code, h2 code, h3 code, h4 code, h5 code, h6 code
-    font-size: inherit
-    background-color: transparent
-
-  .includecode
-    table-layout: fixed
-
-  .includecode, .includecode th, .includecode td
-    padding: 0 !important
-
-  .includecode th
-    text-align: right !important
-    padding: 10px !important
-
-  .includecode th a, .includecode th a code
-    color: white !important
-    background-color: transparent !important
-
-  .includecode pre
-    margin: 0 !important
-
-  ul li
-    list-style: disc
-
-  ol ul li
-    list-style: disc
-
-  ol li
-    list-style: decimal
-
-  ul, ol
-    margin: 20px 0
-    padding-left: 30px
-    font-weight: 300
-
-  ul ul, ol ol, ul ol, ol ul
-    margin: 0.75em 0
-
-  li
-    margin-bottom: 0.75em
-    font-size: 16px
-    line-height: 1.75em
-
-  table
-    width: 100%
-    border: 1px solid #ccc
-    border-spacing: 0
-    margin-top: 30px
-    margin-bottom: 30px
-
-  thead, tr:nth-child(even)
-    background-color: $light-grey
-
-  thead
-    background-color: #555
-    color: white
-
-  th, td
-    padding: 8px
-    text-align: left
-    margin: 0
-
-  th
-    font-weight: normal
-
-  td
-    font-size: 0.85em
-
-  #editPageButton
-    position: absolute
-    top: -25px
-    right: 5px
-    width: 50px
-    height: 50px
-    line-height: 50px
-    border-radius: 50%
-    white-space: nowrap
-    text-indent: 50px
-    overflow: hidden
-    background: $blue url(/images/icon-pencil.svg) no-repeat
-    background-position: 12px 10px
-    background-size: 29px 29px
-
-  #markdown-toc, #TableOfContents
-    margin-bottom: 20px
-
-    ul, li
-      list-style: disc
-      color: $blue
-
-    ul
-      padding: 0 15px
-      margin: 0
-
-    li
-      padding: 0
-      line-height: 1.5em
-      margin-bottom: 0
-
-    a
-      position: relative
-      color: $blue
-      font-weight: 700
-
-  img
-    max-width: 100%
-
-  #TableOfContents
-    & > ul > li
-      list-style: none
-
-    ul, li
-      list-style: disk
-
-  a.button
-    border-radius: 2px
-    text-decoration: none
-
-    &:visited
-      color: white
-
-  a.issue
-    margin-left: 0px
-
-.gridPageHome .flyout-button
-  display: none
-
-.feedback--no
-  margin-left: 1em
-
-.feedback--prompt
-  margin-bottom: 1em
-
-.feedback--response
-  margin-top: 1em
-
-.feedback--button__disabled
-  background-color: #f7f7f7
-  color: graytext
-
-.feedback--response__hidden
-  display: none
-
-.fixed footer
-  position: fixed
-  bottom: 0
-
-.miceType
-  clear: both
-  font-size: 11px
-  line-height: 18px
-  color: #aaa
-
-
-html.search #docsContent
-  position: relative
-  float: none
-  width: 90%
-  max-width: 850px
-  margin: 0 auto
-
-  #editPageButton
-    display: none
-
-  table
-    border: 0
-    margin-bottom: 0
-
-  td
-    padding: 0
-
-  h1
-    margin-bottom: 0
-    border-bottom: 0
-    padding-bottom: 0
-    padding-left: 8px
-
-// ocean nodes
-$ocean-nodes-padding-Y: 60px
-$ocean-nodes-main-margin-bottom: 60px
-$ocean-nodes-h3-margin-bottom: 30px
-
-// video
-$video-section-height: 200px
-
-// features
-$features-h3-margin-bottom: 20px
-$feature-box-div-width: 100%
-$feature-box-margin-bottom: 0
-$feature-box-div-margin-bottom: 40px
-
-
-// Home-specific
-
-#home
-  &.flip-nav, &.open-nav
-    .logo
-      background-image: url(/images/nav_logo2.svg)
-
-  #hero
-    margin-bottom: 0
-    padding-bottom: 1px
-
-    .main-section
-      padding: 0 10px
-      margin-bottom: 30px
-
-    #vendorStrip
-      display: none
-
-  // Add logo to CNCF section
-  section#cncf
-    padding-top: 60px
-    padding-bottom: 140px
-    background-image: url(/images/cncf-color.svg)
-    background-position: center 100px
-    background-repeat: no-repeat
-    background-size: 300px
-
-
-
-// OCEAN NODES
-#oceanNodes
-  padding-top: $ocean-nodes-padding-Y
-  padding-bottom: $ocean-nodes-padding-Y
-
-  a
-    color: $blue
-
-  .main-section
-    margin-bottom: $ocean-nodes-padding-Y
-    min-height: 160px
-
-  .image-wrapper
-    max-width: 75%
-    margin: 0 auto 20px
-    text-align: center
-
-    img
-      width: 100%
-      max-width: 160px
-
-  .main-section:first-child
-    .image-wrapper
-      max-width: 100%
-
-      img
-        max-width: 491px
-
-  h3
-    margin-bottom: $ocean-nodes-h3-margin-bottom
-
-
-// Video thingy
-#video
-  height: $video-section-height
-
-#video
-  width: 100%
-  position: relative
-  background-position: center center
-  background-size: cover
-
-
-  & > .light-text
-    display: none
-    position: absolute
-    top: 50%
-    left: 75%
-    width: 575px
-    padding-right: 80px
-    transform: translate(-50%, -50%)
-    color: white
-
-  h2
-    font-size: 32px
-    line-height: 44px
-    margin-bottom: 20px
-
-  p
-    margin-bottom: 20px
-
-  #desktopKCButton
-    position: absolute
-    font-size: 18px
-    background-color: $dark-grey
-    border-radius: 8px
-    color: $white
-    padding: 20px 10px 20px 10px
-
-  #desktopShowVideoButton
-    position: relative
-    font-size: 24px
-    background-color: white
-    border-radius: 8px
-    color: $blue
-    padding: 15px 30px 15px 80px
-    margin-bottom: 15px
-
-    &:before
-      content: ""
-      position: absolute
-      @include pureCenter(40px)
-      width: 0
-      height: 0
-      border-style: solid
-      border-width: 10px 0 10px 20px
-      border-color: transparent transparent transparent $blue
-
-  #mobileShowVideoButton
-    @include pureCenter
-    width: 80px
-    height: 80px
-    border-radius: 50%
-    background-color: transparent
-    border: 5px solid rgba(255, 255, 255, 0.2)
-    overflow: visible
-
-    &:after
-      @include pureCenter
-      left: 40px
-      content: ""
-      width: 0
-      height: 0
-      border-style: solid
-      border-width: 20px 0 20px 30px
-      border-color: transparent transparent transparent #ffffff
-
-#videoPlayer
-  @include fullScreen
-  background-color: rgba(0, 0, 0, 0.9)
-  display: none
-
-  iframe
-    @include pureCenter
-    @include maintain-aspect-ratio
-
-  #closeButton
-    position: absolute
-    top: 20px
-    right: 20px
-    width: 50px
-    height: 50px
-    border: 2px solid transparent
-    transition: 0.3s
-
-    &:before, &:after
-      content: ""
-      position: absolute
-      top: calc(50% - 1px)
-      left: 10%
-      width: 80%
-      height: 2px
-      background-color: white
-
-    &:before
-      transform: rotate(45deg)
-
-    &:after
-      transform: rotate(-45deg)
-
-    &:hover
-      border-color: white
-
-// KubeWeekly
-#kubeweekly
-  background-color: $light-grey
-  padding-top: 60px
-  padding-bottom: 140px
-  background-size: auto
-  font-family: "Roboto Mono", monospace !important
-  font-size: 24px
-  font-weight: bold
-
-  h5
-    font-size: 20px
-
-.subscribe-button
-  border-radius: 6px
-  padding: 0 20px
-  line-height: 31px
-  color: white
-  background-color: blue
-  text-decoration: none
-  font-size: 14px
-
-// Features
-#features
-  padding-top: 140px
-  background-color: $light-grey
-  background-image: url(/images/wheel.svg)
-  background-position: center 60px
-  background-repeat: no-repeat
-  background-size: 60px
-
-.feature-box
-  //padding: 50px 0
-  width: 100%
-  overflow: hidden
-  clear: both
-
-  h4
-    line-height: normal
-    margin-bottom: 15px
-
-  & > div:first-child
-    float: left
-
-  & > div:last-child
-    float: right
-
-#features
-  h3
-    margin-bottom: $features-h3-margin-bottom
-
-  .feature-box
-    margin-bottom: $feature-box-margin-bottom
-
-    & > div
-      width: $feature-box-div-width
-      margin-bottom: $feature-box-div-margin-bottom
-
-
-
-
-// Community
-
-#community, .gridPage
-  &.open-nav, &.flip-nav
-    .logo
-      background-image: url(/images/nav_logo2.svg)
-
-  #hero
-    padding-bottom: 20px
-
-  #mainContent
-    padding: 20px 0
-
-    .main-section
-      max-width: none
-
-    a
-      color: $blue
-
-    .content
-      margin-bottom: 30px
-      padding: 30px 0
-
-      h1, h2, h3, h4, h5, h6, p
-        line-height: normal
-        max-width: 1200px
-        padding: 0 20px
-        margin: 0 auto 20px
-
-      &:nth-child(even)
-        background-color: $light-grey
-
-    .company-logos
-      text-align: center
-      max-width: 1200px
-      margin: 0 auto
-
-      img
-        width: auto
-        margin: 10px
-        background-color: $light-grey
-
-    .partner-logos
-      text-align: center
-      max-width: 1200px
-      margin: 0 auto
-
-      img
-        width: auto
-        margin: 10px
-        background-color: $white
-        box-shadow: 0 5px 5px rgba(0,0,0,.24),0 0 5px rgba(0,0,0,.12)
-
-    #calendarMeetings
-      position: relative
-      width: 80vw
-      height: 60vw
-      max-width: 1200px
-      max-height: 900px
-      margin: 20px auto
-
-    #calendarEvents
-      position: relative
-      width: 80vw
-      height: 30vw
-      max-width: 1200px
-      max-height: 450px
-      margin: 20px auto
-
-    iframe
-      position: absolute
-      border: 0
-      width: 100%
-      height: 100%
-
-// Dialog
-.ui-icon
-  display: inline-block !important
-
-#feature-state-dialog-link
-  text-decoration: none !important
-  padding: 5px !important
-  a:visited
-    color: #454545 !important
-  a code
-    display: inline-block !important
-    box-sizing: border-box !important
-    background-color: #f7f7f7 !important
-    color: #303030 !important
-    font-family: "Roboto Mono", monospace !important
-    vertical-align: baseline !important
-    font-size: 14px !important
-    font-weight: bold !important
-    padding: 0px 4px !important
-
-#feature-state-dialog
-  background: #fff !important
-  border: 1px solid #ddd !important
-  padding: 0.5em 1em !important
-
-  ul, li
-    list-style: disc !important
-    margin: 4px 12px !important
-
-  p
-    margin: 8px 0px !important
-
-  code
-    display: inline-block !important
-    box-sizing: border-box !important
-    background-color: #f7f7f7 !important
-    color: #303030 !important
-    font-family: "Roboto Mono", monospace !important
-    vertical-align: baseline !important
-    font-size: 14px !important
-    font-weight: bold !important
-    padding: 0px 4px !important
-
-.ui-dialog
-  background: #f7f7f7 !important
-  padding: 0.5em
-
-.ui-dialog-content
-  position: relative
-  float: right
-  width: 100%
-
-  $toc-margin: 15px
-  $header-clearance: $header-height + 20px
-
-  * + h2, * + h3, * + h4, * + h5, * + h6
-    margin-top: 30px
-
-  h1, h2, h3, h4, h5, h6
-    line-height: normal
-    font-weight: 500
-    margin-bottom: 30px
-    padding-bottom: 10px
-
-    // Make sure anchor links aren't hidden by the header
-    &:before
-      display: block
-      content: " "
-      margin-top: -$header-clearance
-      height: $header-clearance
-      visibility: hidden
-
-  h1,h2
-    border-bottom: 1px solid #cccccc
-
-  h1
-    font-size: 32px
-    padding-right: 60px
-
-  h2
-    font-size: 28px
-
-  h3
-    font-size: 24px
-    font-weight: 300
-    margin-bottom: 5px
-
-  h4
-    font-size: 20px
-    margin-bottom: 0px
-
-  h5, h6
-    font-size: 16px
-    font-weight: 500
-
-  p
-    font-size: 16px
-    font-weight: 300
-    line-height: 1.75em
-
-  p + p
-    margin-top: 10px
-
-  code
-    display: inline-block
-    box-sizing: border-box
-    background-color: $light-grey
-    color: $dark-grey
-    font-family: $mono-font
-    vertical-align: baseline
-    font-size: 14px
-    font-weight: bold
-    padding: 2px 4px
-
-  a code
-    color: $blue
-    text-decoration: underline
-
-  pre .pi, pre .s
-    margin: 0
-    padding: 0
-
-  .highlight code span, code, pre code
-    font-family: "Roboto Mono", monospace
-
-  code, pre code
-    color: #303030
-
-  pre code
-    padding: 0
-
-  pre
-    background-color: #f7f7f7
-    display: block
-    margin: 20px 0
-    padding: 15px
-    position: relative
-    overflow-x: auto
-
-  h1 code, h2 code, h3 code, h4 code, h5 code, h6 code
-    font-family: inherit
-    font-size: inherit
-    background-color: transparent
-
-  .includecode
-    table-layout: fixed
-
-  .includecode, .includecode th, .includecode td
-    padding: 0 !important
-
-  .includecode th
-    text-align: right !important
-    padding: 10px !important
-
-  .includecode th a, .includecode th a code
-    color: white !important
-    background-color: transparent !important
-
-  .includecode pre
-    margin: 0 !important
-
-  ul li
-    list-style: disc
-
-  ol li
-    list-style: decimal
-
-  ul, ol
-    margin: 20px 0
-    padding-left: 30px
-    font-weight: 300
-
-  ul ul, ol ol, ul ol, ol ul
-    margin: 0.75em 0
-
-  li
-    margin-bottom: 0.75em
-    font-size: 16px
-    line-height: 1.75em
-
-  table
-    width: 100%
-    border: 1px solid #ccc
-    border-spacing: 0
-    margin-top: 30px
-    margin-bottom: 30px
-
-  thead, tr:nth-child(even)
-    background-color: $light-grey
-
-  thead
-    background-color: #555
-    color: white
-
-  th, td
-    padding: 8px
-    text-align: left
-    margin: 0
-
-  th
-    font-weight: normal
-
-  td
-    font-size: 0.85em
-
-  #editPageButton
-    position: absolute
-    top: -25px
-    right: 5px
-    width: 50px
-    height: 50px
-    line-height: 50px
-    border-radius: 50%
-    white-space: nowrap
-    text-indent: 50px
-    overflow: hidden
-    background: $blue url(/images/icon-pencil.svg) no-repeat
-    background-position: 12px 10px
-    background-size: 29px 29px
-
-  #markdown-toc
-    margin-bottom: 20px
-
-    ul, li
-      list-style: disc
-      color: $blue
-
-    ul
-      padding: 0 15px
-      margin: 0
-
-    li
-      padding: 0
-      line-height: 1.5em
-      margin-bottom: 0
-
-    a
-      position: relative
-      color: $blue
-      font-weight: 700
-
-  img
-    max-width: 100%
-
-  a
-    //font-weight: 700
-    text-decoration: underline
-
-  //	a:visited
-  //		color: blueviolet
-
-  a.button
-    border-radius: 2px
-    text-decoration: none
-
-    &:visited
-      color: white
-
-  a.issue
-    margin-left: 0px
-
-.ui-dialog-buttonpane
-  background: #f7f7f7 !important
-
-// Tabs
-.ui-widget-header
-  background: transparent !important
-  background-color: transparent !important
-  border: 0px !important
-
-.ui-tabs
-  ul, ol, li
-    padding: 0px !important
-    list-style: none !important
-    margin-bottom: 0px !important
-    margin-left: 4px !important
-
-.ui-tabs-panel
-  ul li
-    list-style: disc !important
-
-  ol li
-    list-style: decimal !important
-
-.ui-widget-content
-  border: 0px !important
-
-  p a
-    color: $blue
-
-  table
-    margin: 0px !important
-
-.ui-tabs .ui-tabs-panel
-  border: 1px solid #ccc !important
-
-.ui-tabs-anchor
-  text-decoration: none !important
-
-// Talk to us
-#talkToUs
-  h3, h4
-    text-align: center
-
-  h3
-    margin-bottom: 15px
-
-  h4
-    line-height: normal
-    margin-bottom: 50px
-
-    br
-      display: none
-
-  #bigSocial
-    overflow: hidden
-
-    div
-      width: 100%
-      float: left
-      padding: 30px
-      padding-top: 110px
-      background-position: center top
-      background-size: auto
-      background-repeat: no-repeat
-
-    div:nth-child(1)
-      background-image: url(/images/twitter_icon.png)
-
-    div:nth-child(2)
-      background-image: url(/images/github_icon.png)
-
-    div:nth-child(3)
-      background-image: url(/images/slack_icon.png)
-
-    div:nth-child(4)
-      background-image: url(/images/stackoverflow_icon.png)
-
-    div + div
-      margin-top: 20px
-      margin-left: 0
-
-    a
-      display: inline-block
-      color: $blue
-      font-size: 24px
-      font-weight: 400
-      text-decoration: none
-      margin-bottom: 15px
-
-    a, p
-      text-align: center
-      width: 100%
-
-
-#home
-  #talkToUs
-    .main-section
-      padding: 30px 0
-
-    h5
-      font-size: 20px
-
-
-  #caseStudiesWrapper
-    position: relative
-    text-align: center
-    margin-bottom: 30px
-
-    img
-      padding-bottom: 1rem
-      max-width: 100%
-
-    div
-      position: relative
-      display: inline-block
-      vertical-align: top
-      width: 100%
-      min-height: 230px
-      margin-bottom: 60px
-      padding-right: 1rem
-      background-position: top center
-
-    p
-      font-size: 20px
-
-    a
-      position: absolute
-      bottom: -30px
-      left: 50%
-      transform: translateX(-50%)
-      color: $blue
-      font-weight: 400
-
-
-/* Google Search */
-.cse .gsc-control-cse, .gsc-control-cse
-  padding: 0
-
-.gsc-control-cse table, .gsc-control-cse-en table
-  margin: 0px !important
-
-.gsc-above-wrapper-area
-  border-bottom: 0
-
-
-/* Bing Search */
-#bing-results-container
-  margin-top: 30px
-  margin-left: 20px
-
-.bing-result
-  margin-bottom: 20px
-
-.bing-result-name a
-  font-size: 16px
-  color: #0000CC
-
-
-.bing-result-url
-  color: #008000
-  font-size: 13px
-
-.bing-result-snippet
-  color: #000
-  font-size: 11px
-
-#bing-pagination-container
-  margin: 10px
-  margin-left: 20px
-
-.bing-page-anchor
-  text-decoration: none!important
-  cursor: pointer
-  color: #0000CC
-  margin-right: 8px
-
-// This Sass ensures a sticky footer at the bottom
-.page
-  display: flex
-  flex-direction: column
-  min-height: 100vh
-
-  .page-content
-    flex: 1
-
-// 404 page
-.container-404
-  text-align: center
-  margin: 3.5rem 0
-
-  ul li a
-    font-size: 1.5rem
-
-// GitHub info/edit buttons
-#pre-footer
-  margin-top: 2rem
-
-  .button
-    font-size: 1.1rem
-
-    &:first-of-type
-      margin-right: .75rem
-
-  .lastedit
-    margin-top: 1rem
-    font-size: 1rem
diff --git a/deprecated/assets/sass/_case-studies.sass b/deprecated/assets/sass/_case-studies.sass
deleted file mode 100644
index 1b359c1773..0000000000
--- a/deprecated/assets/sass/_case-studies.sass
+++ /dev/null
@@ -1,99 +0,0 @@
-// SASS for Case Studies pages go here:
-
-hr
-  background-color: #999999
-
-h2
-  margin-bottom: 15px !important
-
-.subhead
-  padding-bottom: 2% !important
-  padding-top: 0% !important
-
-.details
-  margin-left: 1.9%
-  padding-right: 5%
-  font-size: 16px !important
-  padding-bottom: 2% !important
-
-.section1
-  margin-bottom: 3%
-  .cols
-    width: 80% !important
-    margin-left: 6.8%
-    padding-top: 1.5%
-    .col1
-      width: 52% !important
-      font-weight: 300 !important
-    .col2
-      width: 46% !important
-
-.banner2text
-  width: 63%
-  padding-top: 10%
-  padding-left: 0% !important
-  float: initial !important
-  text-align: center
-  margin: 0 auto
-  position: relative
-
-.banner3text, .banner4text, .banner5text
-  width: 63%
-  padding-left: 0% !important
-  float: initial !important
-  text-align: center
-  margin: 0 auto
-  position: relative
-
-.fullcol
-  float: initial !important
-
-body footer
-  background-color: #585858 !important
-
-.section1
-  float: left !important
-
-.banner1
-  padding-left: 11.9% !important
-
-.banner2
-  float: initial !important
-  padding-bottom: 2% !important
-
-footer
-  padding: 0% 7%
-
-.banner4, .banner3, .banner5
-  float: initial !important
-
-@media screen and (max-width: 910px)
-  .banner2text
-    width: 47%
-    padding-top: 45%
-  .details
-    margin-left: 0%
-    margin-bottom: 3%
-  .subhead
-    padding-bottom: 0% !important
-    padding-top: 0% !important
-  .banner3
-    width: 100% !important
-
-@media screen and (max-width: 780px)
-  .section1 .cols
-    width: 100% !important
-    margin-left: 0%
-    padding-top: 5%
-    .col1, .col2
-      width: 100% !important
-      margin-left: 0% !important
-  .fullcol
-    width: 90% !important
-    margin-left: 5% !important
-  .banner1
-    padding-left: 10% !important
-    margin-bottom: 6% !important
-  .banner2text
-    padding-top: 60% !important
-    padding-bottom: 2% !important
diff --git a/deprecated/assets/sass/_desktop.sass b/deprecated/assets/sass/_desktop.sass
deleted file mode 100644
index 1e6a49aef7..0000000000
--- a/deprecated/assets/sass/_desktop.sass
+++ /dev/null
@@ -1,304 +0,0 @@
-$main-max-width: 1200px
-$vendor-strip-height: 44px
-$video-section-height: 550px
-
-@media screen and (min-width: 1100px)
-  #hamburger
-    display: none
-
-  ul.global-nav
-    display: inline-block
-
-  #docs #vendorStrip #searchBox:before
-    top: 15px
-
-  #vendorStrip
-    height: $vendor-strip-height
-    line-height: $vendor-strip-height
-
-    li
-      a.YAH
-        &:after
-          content: ""
-          display: block
-          position: absolute
-          left: 0
-          bottom: 0
-          width: 100%
-          height: 4px
-          background-color: $blue
-
-
-    #searchBox
-      float: right
-
-
-  #home
-    #hero
-      #vendorStrip
-        display: block
-
-  #docs
-    #hero
-      h1, h5
-        text-align: left
-
-      #vendorStrip
-        ul
-          float: left
-
-        #searchBox
-          float: right
-          width: 250px
-
-        #search
-          vertical-align: middle
-
-    .flyout-button
-      display: none
-
-    .logo
-      position: relative
-      float: left
-      display: block
-      width: 180px
-      height: 88px
-      top: 0
-      left: 0
-      transform: none
-      background-image: url(../images/nav_logo.svg)
-
-    &.flip-nav, &.open-nav
-      .logo
-        background-image: url(../images/nav_logo2.svg)
-
-
-  #encyclopedia
-    padding: 50px 50px 100px 100px
-    clear: both
-
-  #docsToc
-    position: relative
-    float: left
-    padding: 0 20px
-    left: 0
-    width: 350px
-    z-index: auto
-
-    .push-menu-close-button
-      display: none
-
-  #docsContent
-    width: calc(100% - 400px)
-
-    #editPageButton
-      right: -25px
-
-  section, header, footer
-    .main-section
-      max-width: $main-max-width
-
-  header, #vendorStrip, #encyclopedia, #hero h1, #hero h5, #docs #hero h1, #docs #hero h5,
-  #community #hero h1, .gridPage #hero h1, #community #hero h5, .gridPage #hero h5
-    padding-left: 100px
-    padding-right: 100px
-
-  #vendorStrip
-    padding-right: 10px
-
-  #home
-    section, header
-      .main-section
-        max-width: 1000px
-
-  #oceanNodes
-    .main-section
-      position: relative
-      max-width: 830px
-
-      &:nth-child(1)
-        max-width: 1000px
-        padding-right: 475px
-
-        h3, p
-          text-align: left
-
-        .image-wrapper
-          position: absolute
-          max-width: 48%
-          transform: translateY(-50%)
-
-          img
-            width: 425px
-
-        //.content
-        //	width: 50%
-
-
-  #video
-    height: $video-section-height
-    position: relative
-    background-position: center center
-    background-size: cover
-
-
-
-  #talkToUs
-    h4
-      br
-        display: block
-
-    #bigSocial
-      div
-        width: calc(25% - 18px)
-
-      div + div
-        margin-left: 20px
-      //
-      //div:nth-child(3), div:nth-child(4)
-      //	margin-top: 0
-
-
-  //#home #bigSocial
-  //	div
-  //		width: calc(33% - 15px)
-  //
-  //	div:nth-child(3)
-  //		margin-top: inherit
-
-  // FOOTER
-  footer
-    width: 100%
-    background-image: url(../images/texture.png)
-    background-color: $dark-grey
-
-    .main-section
-      padding: 20px 0
-
-    nav
-      overflow: hidden
-      margin-bottom: 20px
-      display: flex
-      justify-content: space-between
-
-      a
-        width: auto
-        float: left
-        font-size: 24px
-        font-weight: 300
-        white-space: nowrap
-
-    .social
-      padding: 0
-      max-width: 1200px
-
-      div
-        float: left
-
-      div:last-child
-        float: right
-
-  #search, #wishField
-    background-color: transparent
-    padding: 10px
-    font-size: 16px
-    font-weight: 100
-    color: white
-    border: 1px solid white
-    transition: 0.3s
-
-    &:focus
-      background-color: $light-grey
-      color: $dark-grey
-
-  .social a
-    display: inline-block
-    background-image: url(../images/social_sprite.svg)
-    background-repeat: no-repeat
-    background-size: 350px
-    width: 50px
-    height: 50px
-    border-radius: 5px
-    margin-right: 10px
-
-    &:hover
-      background-color: #fff
-
-    span
-      position: absolute
-      display: block
-      height: 0
-      overflow: hidden
-
-  a.twitter
-    background-position: 0 0
-
-    &:hover
-      background-position: 0 100%
-
-  a.stack-overflow
-    background-position: -50px 0
-
-    &:hover
-      background-position: -50px 100%
-
-  a.slack
-    background-position: -100px 0
-
-    &:hover
-      background-position: -100px 100%
-
-  a.github
-    background-position: -150px 0
-
-    &:hover
-      background-position: -150px 100%
-
-  a.mailing-list
-    background-position: -200px 0
-
-    &:hover
-      background-position: -200px 100%
-
-  a.calendar
-    background-position: -250px 0
-
-    &:hover
-      background-position: -250px 100%
-
-  a.youtube
-    background-position: -300px 0
-
-    &:hover
-      background-position: -300px 100%
-
-  #community, .gridPage
-    #hero
-      text-align: left
-
-      h1
-        padding: 20px 100px
-
-    #tryKubernetes
-      width: auto
-      background-color: $blue
-      padding: 0 20px
-
-  #bigSocial
-    div
-      width: calc(25% - 18px)
-
-
-  #home #caseStudiesWrapper
-    div
-      width: 24%
-      min-height: 260px
-
-@media screen and (min-width: 1300px)
-  #vendorStrip
-    padding-right: 100px
-
-@media screen and (min-width: 456px)
-  #vendorStrip
-    li + li
-      margin-left: 20px
diff --git a/deprecated/assets/sass/_reset.sass b/deprecated/assets/sass/_reset.sass
deleted file mode 100755
index 8ef13fead0..0000000000
--- a/deprecated/assets/sass/_reset.sass
+++ /dev/null
@@ -1,61 +0,0 @@
-html, body
-  margin: 0
-  padding: 0
-
-
-input, button
-  outline: none
-
-button
-  cursor: pointer
-
-ul, li
-  list-style: none
-
-ul
-  margin: 0
-  padding: 0
-	
-a
-  text-decoration: none
-
-// CONVENIENCE
-.clear
-  display: block
-  clear: both
-
-.light-text
-  color: white
-
-.right
-  float: right
-
-.left
-  float: left
-
-.center
-  text-align: center
-
-
-//mixins
-@mixin fullScreen
-  position: fixed
-  top: 0
-  left: 0
-  width: 100vw
-  height: 100vh
-
-
-@mixin pureCenter($left: 50%, $top: 50%)
-  position: absolute
-  top: $top
-  left: $left
-  transform: translate(-50%, -50%)
-
-
-@mixin maintain-aspect-ratio ($width-factor: 16, $height-factor: 9, $target-width: 80vw, $target-height: 80vh)
-  width: $target-width
-  height: $target-width * ($height-factor / $width-factor)
-  max-width: $target-height * ($width-factor / $height-factor)
-  max-height: $target-height
-
diff --git a/deprecated/assets/sass/_size.sass b/deprecated/assets/sass/_size.sass
deleted file mode 100644
index 470a2f5765..0000000000
--- a/deprecated/assets/sass/_size.sass
+++ /dev/null
@@ -1,86 +0,0 @@
-h1
-  font-size: $h1-font-size
-  line-height: $h1-line-height
-
-h2
-  font-size: $h2-font-size
-  line-height: $h2-line-height
-
-h3
-  font-size: $h3-font-size
-  line-height: $h3-line-height
-
-h4
-  font-size: $h4-font-size
-  line-height: $h4-line-height
-
-h5
-  font-size: $h5-font-size
-  line-height: $h5-line-height
-
-p
-  font-size: $p-font-size
-  line-height: $p-line-height
-
-section, header, #vendorStrip
-  padding-left: $full-width-paddingX
-  padding-right: $full-width-paddingX
-
-  .main-section
-    width: $main-width
-    max-width: $main-max-width
-
-header
-  height: $header-height
-
-.nav-buttons
-  height: $header-height
-  line-height: $header-height
-
-  .button + *
-    margin-left: $nav-buttons-margin-left
-
-#hamburger
-  width: $hamburger-size
-  height: $hamburger-size
-
-#mainNav
-  padding: $main-nav-padding
-
-  h5
-    margin-bottom: $main-nav-h5-margin-bottom
-
-  h3
-    margin-bottom: $main-nav-h3-margin-bottom
-
-  .nav-box
-    width: $nav-box-width
-
-  .nav-box + .nav-box
-    margin-left: $nav-box-sibling-margin-left
-
-  .main-secton + .main-section
-    margin-top: $main-nav-main-sibling-margin-top
-
-  .left .button
-    height: $main-nav-left-button-size
-    line-height: $main-nav-left-button-size
-    font-size: $main-nav-left-button-font-size
-
-.open-nav, .y-enough
-  #tryKubernetes
-    margin-left: $nav-buttons-margin-left
-
-#hero
-  padding-top: $hero-padding-top
-
-#docs
-  #hero
-    h1, h5
-      padding-left: $full-width-paddingX
-      padding-right: $full-width-paddingX
-
-#vendorStrip
-  height: $vendor-strip-height
-  line-height: $vendor-strip-height
-  font-size: $vendor-strip-font-size
diff --git a/deprecated/assets/sass/_skin.sass b/deprecated/assets/sass/_skin.sass
deleted file mode 100755
index 5f901d03c1..0000000000
--- a/deprecated/assets/sass/_skin.sass
+++ /dev/null
@@ -1,25 +0,0 @@
-$blue: #3371e3
-$light-grey: #f7f7f7
-$dark-grey: #303030
-$medium-grey: #4c4c4c
-$white: #ffffff
-
-$base-font: 'Roboto', sans-serif
-$mono-font: 'Roboto Mono', monospace
-
-
-*, .button
-  box-sizing: border-box
-  font-family: $base-font
-  background: none
-  margin: 0
-  border: 0
-
-body
-  font-family: $base-font
-
-h1, h2, h5, p
-  font-weight: 300
-
-h3, h4
-  font-weight: 400
diff --git a/deprecated/assets/sass/_tablet.sass b/deprecated/assets/sass/_tablet.sass
deleted file mode 100644
index a8d1ce36ed..0000000000
--- a/deprecated/assets/sass/_tablet.sass
+++ /dev/null
@@ -1,250 +0,0 @@
-// TEXT
-//$h1-font-size: 60px
-//$h1-line-height: 80px
-//
-//$h2-font-size: 42px
-//$h2-line-height: 60px
-//
-//$h3-font-size: 26px
-//$h3-line-height: 32px
-//
-//$h4-font-size: 26px
-//$h4-line-height: 40px
-//
-//$h5-font-size: 18px
-//$h5-line-height: 36px
-//
-//$p-font-size: 20px
-//$p-line-height: 28px
-
-
-// header
-$full-width-paddingX: 20px
-
-$main-width: 100%
-$main-max-width: 100%
-
-$header-height: 80px
-
-$logo-width: 180px
-
-$nav-buttons-margin-left: 30px
-
-$hamburger-size: 50px
-
-
-// main nav
-$main-nav-padding: 140px 0 30px
-$main-nav-h5-margin-bottom: 1em
-$main-nav-h3-margin-bottom: 0.6em
-$nav-box-width: 20%
-$nav-box-sibling-margin-left: calc(20% / 3)
-$main-nav-main-sibling-margin-top: 60px
-$main-nav-left-button-size: 50px
-$main-nav-left-button-font-size: 18px
-
-
-// hero
-$hero-padding-top: 80px
-$headline-wrapper-margin-bottom: 40px
-$quickstart-button-padding: 0 50px
-$vendor-strip-font-size: 16px
-
-//video
-$video-section-height: 400px
-
-//features
-$features-h3-margin-bottom: 40px
-$feature-box-margin-bottom: 60px
-$feature-box-div-margin-bottom: 0
-$feature-box-div-width: 45%
-
-
-
-////////////////////////////////////////////////////////////////////////////////////////////////////
-////////////////////////////////////////////////////////////////////////////////////////////////////
-////////////////////////////////////////////////////////////////////////////////////////////////////
-
-@media screen and (min-width: 750px)
-  @import "size"
-
-  p
-    font-size: 16px
-    line-height: 24px
-    letter-spacing: 0.1px
-
-  h1
-    font-size: 36px
-    line-height: 44px
-
-  h3
-    font-size: 28px
-    line-height: 36px
-
-  h4
-    font-size: 24px
-    line-height: 40px
-
-
-
-  #home
-    #viewDocs, #tryKubernetes
-      display: inline-block
-
-  #vendorStrip
-    display: block
-    text-align: center
-
-    img
-      max-height: 24px
-      vertical-align: middle
-      margin: 0 30px
-
-  #docs
-    #vendorStrip
-      li
-        a
-          font-size: 1em
-          font-weight: normal
-
-        li + li
-          margin-left: 60px
-
-
-  #oceanNodes
-    h3
-      text-align: left
-      margin-bottom: 18px
-
-    main, .main-section
-      position: relative
-      clear: both
-      display: table
-      height: 160px
-
-      .content
-        display: table-cell
-        position: relative
-        vertical-align: middle
-
-      .image-wrapper
-        position: absolute
-        top: 50%
-        max-width: 25%
-        max-height: 100%
-        transform: translateY(-50%)
-        width: 100%
-
-      &:nth-child(odd)
-        padding-right: 210px
-
-        .image-wrapper
-          right: 0
-          text-align: right
-
-      &:nth-child(even)
-        padding-left: 210px
-
-        .image-wrapper
-          left: 0
-          text-align: left
-
-      &:nth-child(1)
-        padding-right: 0
-
-        h3, p
-          text-align: center
-
-        .image-wrapper
-          position: relative
-          display: block
-          float: none
-          max-width: 100%
-          transform: none
-
-        .content
-          display: block
-
-      img
-        width: 100%
-
-
-  #video
-    height: $video-section-height
-    display: block
-
-    & > .light-text
-      display: block
-
-  #mobileShowVideoButton
-    display: none
-
-  #features
-    padding-bottom: 60px
-
-    .feature-box
-      margin-bottom: 30px
-
-      &:last-child
-        margin-bottom: 0
-
-    h3
-      margin-bottom: $features-h3-margin-bottom
-
-    .feature-box
-      & > div
-        width: $feature-box-div-width
-        margin-bottom: $feature-box-div-margin-bottom
-
-  #talkToUs
-    #bigSocial
-      div
-        width: calc(50% - 15px)
-
-      div + div
-        margin-top: 0
-
-      div:nth-child(2)
-        margin-left: 20px
-
-      div:nth-child(3)
-
-      div:nth-child(4)
-        margin-left: 20px
-
-      a
-        display: inline-block
-        color: $blue
-        font-weight: 400
-        text-decoration: none
-
-  // FOOTER
-  footer
-    nav
-      text-align: center
-      a
-        width: auto
-        padding: 0 20px
-
-    .social
-      text-align: center
-
-      div
-        display: inline-block
-
-      div:last-child
-        display: block
-        margin: 0
-
-      span
-        display: inline-block
-        margin-right: 10px
-
-      input
-        text-align: left
-
-
-
-  #home #caseStudiesWrapper
-    div
-      width: 48%
diff --git a/deprecated/assets/sass/style.sass b/deprecated/assets/sass/style.sass
deleted file mode 100755
index 25a7ef9e42..0000000000
--- a/deprecated/assets/sass/style.sass
+++ /dev/null
@@ -1,11 +0,0 @@
-@import "reset"
-@import "skin"
-
-// media queries
-@import "base"
-@import "tablet"
-@import "desktop"
-
-{{ if .Params.case_study_styles }}
-@import "case-studies"
-{{ end }}
diff --git a/deprecated/content/en/docs/user-journeys/users/application-developer/advanced.md b/deprecated/content/en/docs/user-journeys/users/application-developer/advanced.md
deleted file mode 100644
index dde720f1b6..0000000000
--- a/deprecated/content/en/docs/user-journeys/users/application-developer/advanced.md
+++ /dev/null
@@ -1,120 +0,0 @@
----
-reviewers:
-- chenopis
-layout: docsportal
-css: /css/style_user_journeys.css
-js: https://use.fontawesome.com/4bcc658a89.js, https://cdnjs.cloudflare.com/ajax/libs/prefixfree/1.0.7/prefixfree.min.js
-title: Advanced Topics
-track: "USERS › APPLICATION DEVELOPER › ADVANCED"
-content_template: templates/user-journey-content
----
-
-{{% capture overview %}}
-
-{{< note  >}}
-This page assumes that you're familiar with core Kubernetes concepts, and are comfortable deploying your own apps. If not, you should review the {{< link text="Intermediate App Developer" url="/docs/user-journeys/users/application-developer/intermediate/" >}} topics first.
-{{< /note  >}}
-After checking out the current page and its linked sections, you should have a better understanding of the following:
-* Advanced features that you can leverage in your application
-* The various ways of extending the Kubernetes API
-
-{{% /capture %}}
-
-
-{{% capture body %}}
-
-## Deploy an application with advanced features
-
-Now you know the set of API objects that Kubernetes provides. Understanding the difference between a {{< glossary_tooltip term_id="daemonset" >}} and a {{< glossary_tooltip term_id="deployment" >}} is oftentimes sufficient for app deployment. That being said, it's also worth familiarizing yourself with Kubernetes's lesser known features. They can be quite powerful when applied to the right use cases.
-
-#### Container-level features
-
-As you may know, it's an antipattern to migrate an entire app (e.g. containerized Rails app, MySQL database, and all) into a single Pod. That being said, there are some very useful patterns that go beyond a 1:1 correspondence between a container and its Pod:
-
-* **Sidecar container**: Although your Pod should still have a single main container, you can add a secondary container that acts as a helper (see a {{< link text="logging example" url="/docs/concepts/cluster-administration/logging/#sidecar-container-with-a-logging-agent" >}}). Two containers within a single Pod can communicate {{< link text="via a shared volume" url="/docs/tasks/access-application-cluster/communicate-containers-same-pod-shared-volume/" >}}.
-* **Init containers**: *Init containers* run before any of a Pod's *app containers* (such as main and sidecar containers). {{< link text="Read more" url="/docs/concepts/workloads/pods/init-containers/" >}}, see an {{< link text="nginx server example" url="/docs/tasks/configure-pod-container/configure-pod-initialization/" >}}, and {{< link text="learn how to debug these containers" url="/docs/tasks/debug-application-cluster/debug-init-containers/" >}}.
-
-#### Pod configuration
-
-Usually, you use {{< glossary_tooltip text="labels" term_id="label" >}} and {{< glossary_tooltip text="annotations" term_id="annotation" >}} to attach metadata to your resources. To inject data into your resources, you'd likely create {{< glossary_tooltip text="ConfigMaps" term_id="configmap" >}} (for nonconfidential data) or {{< glossary_tooltip text="Secrets" term_id="secret" >}} (for confidential data).
-
-Below are some other, lesser-known ways of configuring your resources' Pods:
-
-* **Taints and Tolerations** - These provide a way for nodes to "attract" or "repel" your Pods. They are often used when an application needs to be deployed onto specific hardware, such as GPUs for scientific computing. {{< link text="Read more" url="/docs/concepts/configuration/taint-and-toleration/" >}}.
-* **Downward API** - This allows your containers to consume information about themselves or the cluster, without being overly coupled to the Kubernetes API server. This can be achieved with {{< link text="environment variables" url="/docs/tasks/inject-data-application/environment-variable-expose-pod-information/" >}} or {{< link text="DownwardAPIVolumeFiles" url="/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/" >}}.
-* **Pod Presets** - Normally, to mount runtime requirements (such as environmental variables, ConfigMaps, and Secrets) into a resource, you specify them in the resource's configuration file. {{< link text="PodPresets" url="/docs/concepts/workloads/pods/podpreset/" >}} allow you to dynamically inject these requirements instead, when the resource is created. For instance, this allows team A to mount any number of new Secrets into the resources created by teams B and C, without requiring action from B and C. {{< link text="See an example" url="/docs/tasks/inject-data-application/podpreset/" >}}.
-
-#### Additional API Objects
-
-{{< note  >}}
-Before setting up the following resources, check to see if they are the responsibility of your organization's {{< glossary_tooltip text="cluster operators" term_id="cluster-operator" >}}.
-{{< /note  >}}
-* **{{< glossary_tooltip text="Horizontal Pod Autoscaler (HPA)" term_id="horizontal-pod-autoscaler" >}}** - These resources are a great way to automate the process of scaling your application when CPU usage or other {{< link text="custom metrics" url="https://github.com/kubernetes/community/blob/master/contributors/design-proposals/instrumentation/custom-metrics-api.md" >}} spike. {{< link text="See an example" url="/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/" >}} to understand how HPAs are set up.
-
-* **Federated cluster objects** - If you are running an application on multiple Kubernetes clusters using *federation*, you need to deploy the federated version of the standard Kubernetes API objects. For reference, check out the guides for setting up {{< link text="Federated ConfigMaps" url="/docs/tasks/administer-federation/configmap/" >}} and {{< link text="Federated Deployments" url="/docs/tasks/administer-federation/deployment/" >}}.
-
-## Extend the Kubernetes API
-
-Kubernetes is designed with extensibility in mind. If the API resources and features mentioned above are not enough for your needs, there are ways to customize its behavior without having to modify core Kubernetes code.
-
-#### Understand Kubernetes's default behavior
-
-Before making any customizations, it's important that you understand the general abstraction behind Kubernetes API objects. Although Deployments and Secrets may seem quite different, the following concepts are true for *any* object:
-
-* **Kubernetes objects are a way of storing structured data about your cluster.**
-  In the case of Deployments, this data represents desired state (such as "How many replicas should be running?"), but it can also be general metadata (such as database credentials).
-* **Kubernetes objects are modified via the {{< glossary_tooltip text="Kubernetes API" term_id="kubernetes-api" >}}**.
-  In other words, you can make `GET` and `POST` requests to a specific resource path (such as `<api-server-url>/api/v1/namespaces/default/deployments`) to read and write the corresponding object type.
-* **By leveraging the {{< link text="Controller pattern" url="/docs/concepts/api-extension/custom-resources/#custom-controllers" >}}, Kubernetes objects can be used to enforce desired state**. For simplicity, you can think of the Controller pattern as the following continuous loop:
-
-  <div class="emphasize-box" markdown="1">
-  1. Check current state (number of replicas, container image, etc)
-  2. Compare current state to desired state
-  3. Update if there's a mismatch
-  </div>
-
-  These states are obtained from the Kubernetes API.
-
-  {{< note  >}}
-  Not all Kubernetes objects need to have a Controller. Though Deployments trigger the cluster to make state changes, ConfigMaps act purely as storage.
-  {{< /note  >}}
-#### Create Custom Resources
-
-Based on the ideas above, you can define a new {{< link text="Custom Resource" url="/docs/concepts/api-extension/custom-resources/#custom-resources" >}} that is just as legitimate as a Deployment. For example, you might want to define a `Backup` object for periodic backups, if `CronJobs` don't provide all the functionality you need.
-
-There are two main ways of setting up custom resources:
-1. **Custom Resource Definitions (CRDs)** - This method requires the least amount of implementation work. See {{< link text="an example" url="/docs/tasks/access-kubernetes-api/extend-api-custom-resource-definitions/" >}}.
-2. **API aggregation** - This method requires some {{< link text="pre-configuration" url="/docs/tasks/access-kubernetes-api/configure-aggregation-layer/" >}} before you actually {{< link text="set up a separate, extension API server" url="/docs/tasks/access-kubernetes-api/setup-extension-api-server/" >}}.
-
-Note that unlike standard Kubernetes objects, which rely on the built-in {{< link text="`kube-controller-manager`" url="/docs/reference/generated/kube-controller-manager/" >}}, you'll need to write and run your own {{< link text="custom controllers" url="https://github.com/kubernetes/sample-controller" >}}.
-
-You may also find the following info helpful:
-* {{< link text="How to know if custom resources are right for your use case" url="/docs/concepts/api-extension/custom-resources/#should-i-use-a-configmap-or-a-custom-resource" >}}
-* {{< link text="How to decide between CRDs and API aggregation" url="/docs/concepts/api-extension/custom-resources/#choosing-a-method-for-adding-custom-resources" >}}
-
-#### Service Catalog
-
-If you want to consume or provide complete services (rather than individual resources), **{{< glossary_tooltip text="Service Catalog" term_id="service-catalog" >}}** provides a {{< link text="specification" url="https://github.com/openservicebrokerapi/servicebroker" >}} for doing so. These services are registered using {{< glossary_tooltip text="Service Brokers" term_id="service-broker" >}} (see {{< link text="some examples" url="https://github.com/openservicebrokerapi/servicebroker/blob/master/gettingStarted.md#example-service-brokers" >}}).
-
-If you do not have a {{< glossary_tooltip text="cluster operator" term_id="cluster-operator" >}} to manage the installation of Service Catalog, you can do so using {{< link text="Helm" url="/docs/tasks/service-catalog/install-service-catalog-using-helm/" >}} or an {{< link text="installer binary" url="/docs/tasks/service-catalog/install-service-catalog-using-sc/" >}}.
-
-
-## Explore additional resources
-
-#### References
-
-The following topics are also useful for building more complex applications:
-
-* {{< link text="Other points of extensibility within Kubernetes" url="/docs/concepts/overview/extending/" >}} -  A conceptual overview of where you can hook into the Kubernetes architecture.
-* {{< link text="Kubernetes Client Libraries" url="/docs/reference/using-api/client-libraries/" >}} - Useful for building apps that need to interact heavily with the Kubernetes API.
-
-#### What's next
-Congrats on completing the Application Developer user journey! You've covered the majority of features that Kubernetes has to offer. What now?
-
-* If you'd like to suggest new features or keep up with the latest developments around Kubernetes app development, consider joining a {{< glossary_tooltip term_id="sig" >}} such as {{< link text="SIG Apps" url="https://github.com/kubernetes/community/tree/master/sig-apps" >}}.
-
-* If you are interested in learning more about the inner workings of Kubernetes (e.g. networking), consider checking out the {{< link text="Cluster Operator journey" url="/docs/user-journeys/users/cluster-operator/foundational/" >}}.
-
-{{% /capture %}}
-
-
diff --git a/deprecated/content/en/docs/user-journeys/users/application-developer/foundational.md b/deprecated/content/en/docs/user-journeys/users/application-developer/foundational.md
deleted file mode 100644
index 43226f1bad..0000000000
--- a/deprecated/content/en/docs/user-journeys/users/application-developer/foundational.md
+++ /dev/null
@@ -1,260 +0,0 @@
----
-reviewers:
-- chenopis
-layout: docsportal
-css: /css/style_user_journeys.css
-js: https://use.fontawesome.com/4bcc658a89.js, https://cdnjs.cloudflare.com/ajax/libs/prefixfree/1.0.7/prefixfree.min.js
-title: Foundational
-track: "USERS › APPLICATION DEVELOPER › FOUNDATIONAL"
-content_template: templates/user-journey-content
----
-
-{{% capture overview %}}
-If you're a developer looking to run applications on Kubernetes, this page and its linked topics can help you get started with the fundamentals. Though this page primarily describes development workflows, {{< link text="the subsequent page in the series" url="/docs/home/?path=users&persona=app-developer&level=intermediate" >}} covers more advanced, production setups.
-
-{{< note  >}}
-**A quick note**<br>This app developer "user journey" is *not* a comprehensive overview of Kubernetes. It focuses more on *what* you develop, test, and deploy to Kubernetes, rather than *how* the underlying infrastructure works.<br><br>Though it's possible for a single person to manage both, in many organizations, it’s common to assign the latter to a dedicated {{< glossary_tooltip text="cluster operator" term_id="cluster-operator" >}}.
-{{< /note  >}}
-{{% /capture %}}
-
-
-{{% capture body %}}
-## Get started with a cluster
-
-#### Web-based environment
-
-If you're brand new to Kubernetes and simply want to experiment without setting up a full development environment, *web-based environments* are a good place to start:
-
-* {{< link text="Kubernetes Basics" url="/docs/tutorials/kubernetes-basics/#basics-modules" >}} - Introduces you to six common Kubernetes workflows. Each section walks you through browser-based, interactive exercises complete with their own Kubernetes environment.
-
-* {{< link text="Katacoda" url="https://www.katacoda.com/courses/kubernetes/playground" >}} - The playground equivalent of the environment used in *Kubernetes Basics* above. Katacoda also provides {{< link text="more advanced tutorials" url="https://www.katacoda.com/courses/kubernetes/" >}}, such as "Liveness and Readiness Healthchecks".
-
-
-* {{< link text="Play with Kubernetes" url="http://labs.play-with-k8s.com/" >}} - A less structured environment than the *Katacoda* playground, for those who are more comfortable with Kubernetes concepts and want to explore further. It supports the ability to spin up multiple nodes.
-
-
-#### Minikube (recommended)
-
-Web-based environments are easy to access, but are not persistent. If you want to continue exploring Kubernetes in a workspace that you can come back to and change, *Minikube* is a good option.
-
-Minikube can be installed locally, and runs a simple, single-node Kubernetes cluster inside a virtual machine (VM). This cluster is fully functioning and contains all core Kubernetes components. Many developers have found this sufficient for local application development.
-
-* {{< link text="Install Minikube" url="/docs/tasks/tools/install-minikube/" >}}.
-
-* {{< link text="Install kubectl" url="/docs/tasks/tools/install-kubectl/" >}}. ({{< glossary_tooltip text="What is kubectl?" term_id="kubectl" >}})
-
-* *(Optional)* {{< link text="Install Docker" url="/docs/setup/production-environment/container-runtimes/#docker" >}} if you plan to run your Minikube cluster as part of a local development environment.
-
-   Minikube includes a Docker daemon, but if you're developing applications locally, you'll want an independent Docker instance to support your workflow. This allows you to create {{< glossary_tooltip text="containers" term_id="container" >}} and push them to a container registry.
-
-   {{< note  >}}
-   Version 1.12 is recommended for full compatibility with Kubernetes, but a few other versions are tested and known to work.
-   {{< /note  >}}
-
-You can get basic information about your cluster with the commands `kubectl cluster-info` and `kubectl get nodes`. However, to get a good idea of what's really going on, you need to deploy an application to your cluster. This is covered in the next section.
-
-#### MicroK8s
-
-On Linux, *MicroK8s* is a good alternative to Minikube for a local
-install of Kubernetes:
-
-* Runs on the native OS, so there is no overhead from running a virtual machine.
-* Always provides the latest stable version of Kubernetes, using built-in auto-upgrade functionality.
-* Installs in less than a minute.
-
-* {{< link text="Install microk8s" url="https://microk8s.io/" >}}.
-
-After you install MicroK8s, you can use its tab-completion
-functionality. All MicroK8s commands start with `microk8s.`. Type
-`microk8s.` (with the period) and then use the tab key to see a list
-of available commands.
-
-It also includes commands to enable Kubernetes subsystems. For example:
-
-* the Kubernetes Dashboard
-* the DNS service
-* GPU passthrough (for NVIDIA)
-* Ingress
-* Istio
-* Metrics server
-* Registry
-* Storage
-
-## Deploy an application
-
-#### Basic workloads
-
-The following examples demonstrate the fundamentals of deploying Kubernetes apps:
-
-  * **Stateless apps**: {{< link text="Deploy a simple nginx server" url="/docs/tasks/run-application/run-stateless-application-deployment/" >}}.
-
-  * **Stateful apps**: {{< link text="Deploy a MySQL database" url="/docs/tasks/run-application/run-single-instance-stateful-application/" >}}.
-
-Through these deployment tasks, you'll gain familiarity with the following:
-
-* General concepts
-
-  * **Configuration files** - Written in YAML or JSON, these files describe the desired state of your application in terms of Kubernetes API objects. A file can include one or more API object descriptions (*manifests*). (See [the example YAML](/docs/tasks/run-application/run-stateless-application-deployment/#creating-and-exploring-an-nginx-deployment) from the stateless app).
-
-  * **{{< glossary_tooltip text="Pods" term_id="pod" >}}** - This is the basic unit for all of the workloads you run on Kubernetes. These workloads, such as *Deployments* and *Jobs*, are composed of one or more Pods. To learn more, check out {{< link text="this explanation of Pods and Nodes" url="/docs/tutorials/kubernetes-basics/explore-intro/" >}}.
-
-* Common workload objects
-  * **{{< glossary_tooltip text="Deployment" term_id="deployment" >}}** - The most common way of running *X* copies (Pods) of your application. Supports rolling updates to your container images.
-
-  * **{{< glossary_tooltip text="Service" term_id="service" >}}** - By itself, a Deployment can't receive traffic. Setting up a Service is one of the simplest ways to configure a Deployment to receive and loadbalance requests. Depending on the `type` of Service used, these requests can come from external client apps or be limited to apps within the same cluster. A Service is tied to a specific Deployment using {{< glossary_tooltip text="label" term_id="label" >}} selection.
-
-The subsequent topics are also useful to know for basic application deployment.
-
-#### Metadata
-
-You can also specify custom information about your Kubernetes API objects by attaching key/value fields. Kubernetes provides two ways of doing this:
-
-* **{{< glossary_tooltip text="Labels" term_id="label" >}}** - Identifying metadata that you can use to sort and select sets of API objects. Labels have many applications, including the following:
-
-  * *To keep the right number of replicas (Pods) running in a Deployment.* The specified label (`app: nginx` in the {{< link text="stateless app example" url="/docs/tasks/run-application/run-stateless-application-deployment/#creating-and-exploring-an-nginx-deployment" >}}) is used to stamp the Deployment's newly created Pods (as the value of the `spec.template.labels` configuration field), and to query which Pods it already manages (as the value of `spec.selector.matchLabels`).
-
-  * *To tie a Service to a Deployment* using the `selector` field, which is demonstrated in the {{< link text="stateful app example" url="/docs/tasks/run-application/run-single-instance-stateful-application/#deploy-mysql" >}}.
-
-  * *To look for specific subset of Kubernetes objects, when you are using {{< glossary_tooltip text="kubectl" term_id="kubectl" >}}.* For instance, the command `kubectl get deployments --selector=app=nginx` only displays Deployments from the nginx app.
-
-* **{{< glossary_tooltip text="Annotations" term_id="annotation" >}}** - Nonidentifying metadata that you can attach to API objects, usually if you don't intend to use them for sorting purposes. These often serve as supplementary data about an app's deployment, such as Git SHAs, PR numbers, or URL pointers to observability dashboards.
-
-
-#### Storage
-
-You'll also want to think about storage. Kubernetes provides different types of storage API objects for different storage needs:
-
-* **{{< glossary_tooltip text="Volumes" term_id="volume" >}}** -  Let you define storage for your cluster that is tied to the lifecycle of a Pod. It is therefore more persistent than container storage. Learn {{< link text="how to configure volume storage" url="/docs/tasks/configure-pod-container/configure-volume-storage/" >}}, or {{< link text="read more about volume storage" url="/docs/concepts/storage/volumes/" >}}.
-
-* **{{< glossary_tooltip text="PersistentVolumes" term_id="persistent-volume" >}}** and **{{< glossary_tooltip text="PersistentVolumeClaims" term_id="persistent-volume-claim" >}}** - Let you define storage at the cluster level. Typically a cluster operator defines the PersistentVolume objects for the cluster, and cluster users (application developers, you) define the PersistentVolumeClaim objects that your application requires. Learn {{< link text="how to set up persistent storage for your cluster" url="/docs/tasks/configure-pod-container/configure-persistent-volume-storage/" >}} or {{< link text="read more about persistent volumes" url="/docs/concepts/storage/persistent-volumes/" >}}.
-
-#### Configuration
-
-To avoid having to unnecessarily rebuild your container images, you should decouple your application's *configuration data* from the code required to run it. There are a couple ways of doing this, which you should choose according to your use case:
-
-<!-- Using HTML tables because the glossary_tooltip isn't compatible with the Markdown approach -->
-<table>
-  <thead>
-    <tr>
-      <th>Approach</th>
-      <th>Type of Data</th>
-      <th>How it's mounted</th>
-      <th>Example</th>
-    </tr>
-  </thead>
-  <tr>
-    <td><a href="/docs/tasks/inject-data-application/define-environment-variable-container/">Using a manifest's container definition</a></td>
-    <td>Non-confidential</td>
-    <td>Environment variable</td>
-    <td>Command-line flag</td>
-  </tr>
-  <tr>
-    <td>Using <b>{{< glossary_tooltip text="ConfigMaps" term_id="configmap" >}}</b></td>
-    <td>Non-confidential</td>
-    <td>Environment variable OR local file</td>
-    <td>nginx configuration</td>
-  </tr>
-  <tr>
-    <td>Using <b>{{< glossary_tooltip text="Secrets" term_id="secret" >}}</b></td>
-    <td>Confidential</td>
-    <td>Environment variable OR local file</td>
-    <td>Database credentials</td>
-  </tr>
-</table>
-
-{{< note  >}}
-If you have any data that you want to keep private, you should be using a Secret. Otherwise there is nothing stopping that data from being exposed to malicious users.
-{{< /note  >}}
-
-## Understand basic Kubernetes architecture
-
-As an app developer, you don't need to know everything about the inner workings of Kubernetes, but you may find it helpful to understand it at a high level.
-
-#### What Kubernetes offers
-
-Say that your team is deploying an ordinary Rails application. You've run some calculations and determined that you need five instances of your app running at any given time, in order to handle external traffic.
-
-If you're not running Kubernetes or a similar automated system, you might find the following scenario familiar:
-
-{{< note >}}
-1. One instance of your app (a complete machine instance or just a container) goes down.</li>
-
-1. Because your team has monitoring set up, this pages the person on call.</li>
-
-1. The on-call person has to go in, investigate, and manually spin up a new instance.</li>
-
-1. Depending how your team handles DNS/networking, the on-call person may also need to also update the service discovery mechanism to point at the IP of the new Rails instance rather than the old.</li>
-{{< /note >}}
-
-This process can be tedious and also inconvenient, especially if (2) happens in the early hours of the morning!
-
-**If you have Kubernetes set up, however, manual intervention is not as necessary.** The Kubernetes {{< link text="control plane" url="/docs/concepts/overview/components/#master-components" >}}, which runs on your cluster's master node, gracefully handles (3) and (4) on your behalf. As a result, Kubernetes is often referred to as a *self-healing* system.
-
-There are two key parts of the control plane that facilitate this behavior: the *Kubernetes API server* and the *Controllers*.
-
-#### Kubernetes API server
-
-For Kubernetes to be useful, it needs to know *what* sort of cluster state you want it to maintain. Your YAML or JSON *configuration files* declare this desired state in terms of one or more API objects, such as {{< glossary_tooltip text="Deployments" term_id="deployment" >}}. To make updates to your cluster's state, you submit these files to the {{< glossary_tooltip text="Kubernetes API" term_id="kubernetes-api" >}} server (`kube-apiserver`).
-
-Examples of state include but are not limited to the following:
-
-* The applications or other workloads to run
-* The container images for your applications and workloads
-* Allocation of network and disk resources
-
-Note that the API server is just the gateway, and that object data is actually stored in a highly available datastore called {{< link text="*etcd*" url="https://github.com/coreos/etcd" >}}. For most intents and purposes, though, you can focus on the API server. Most reads and writes to cluster state take place as API requests.
-
-For more information, see {{< link text="Understanding Kubernetes Objects" url="/docs/concepts/overview/working-with-objects/kubernetes-objects/" >}}.
-
-#### Controllers
-
-Once you’ve declared your desired state through the Kubernetes API, the *controllers* work to make the cluster’s current state match this desired state.
-
-The standard controller processes are {{< link text="`kube-controller-manager`" url="/docs/reference/generated/kube-controller-manager/" >}} and {{< link text="`cloud-controller-manager`" url="/docs/concepts/overview/components/#cloud-controller-manager" >}}, but you can also write your own controllers as well.
-
-All of these controllers implement a *control loop*. For simplicity, you can think of this as the following:
-
-{{< note >}}
-1. What is the current state of the cluster (X)?
-
-1. What is the desired state of the cluster (Y)?
-
-1. X == Y ?
-
-   * `true` - Do nothing.
-   * `false` - Perform tasks to get to Y, such as starting or restarting containers,
-   or scaling the number of replicas of a given application. Return to 1.
-{{< /note >}}
-
-By continuously looping, these controllers ensure the cluster can pick up new updates and avoid drifting from the desired state. These ideas are covered in more detail {{< link text="here" url="/docs/concepts/" >}}.
-
-## Additional resources
-
-The Kubernetes documentation is rich in detail. Here's a curated list of resources to help you start digging deeper.
-
-### Basic concepts
-
-* {{< link text="More about the components that run Kubernetes" url="/docs/concepts/overview/components/" >}}
-
-* {{< link text="Understanding Kubernetes objects" url="/docs/concepts/overview/working-with-objects/kubernetes-objects/" >}}
-
-* {{< link text="More about Node objects" url="/docs/concepts/architecture/nodes/" >}}
-
-* {{< link text="More about Pod objects" url="/docs/concepts/workloads/pods/pod-overview/" >}}
-
-### Tutorials
-
-* {{< link text="Kubernetes Basics" url="/docs/tutorials/kubernetes-basics/" >}}
-
-* {{< link text="Hello Minikube" url="/docs/tutorials/stateless-application/hello-minikube/" >}} *(Runs on Mac only)*
-
-* {{< link text="Kubernetes object management" url="/docs/tutorials/object-management-kubectl/object-management/" >}}
-
-### What's next
-
-If you feel fairly comfortable with the topics on this page and want to learn more, check out the following user journeys:
-
-* {{< link text="Intermediate App Developer" url="/docs/user-journeys/users/application-developer/intermediate/" >}} - Dive deeper, with the next level of this journey.
-* {{< link text="Foundational Cluster Operator" url="/docs/user-journeys/users/cluster-operator/foundational/" >}} - Build breadth, by exploring other journeys.
-
-{{% /capture %}}
diff --git a/deprecated/content/en/docs/user-journeys/users/application-developer/intermediate.md b/deprecated/content/en/docs/user-journeys/users/application-developer/intermediate.md
deleted file mode 100644
index 1a3915f224..0000000000
--- a/deprecated/content/en/docs/user-journeys/users/application-developer/intermediate.md
+++ /dev/null
@@ -1,166 +0,0 @@
----
-reviewers:
-- chenopis
-layout: docsportal
-css: /css/style_user_journeys.css
-js: https://use.fontawesome.com/4bcc658a89.js, https://cdnjs.cloudflare.com/ajax/libs/prefixfree/1.0.7/prefixfree.min.js
-title: Intermediate
-track: "USERS › APPLICATION DEVELOPER › INTERMEDIATE"
-content_template: templates/user-journey-content
----
-
-
-{{% capture overview %}}
-
-{{< note  >}}
-  This page assumes that you've experimented with Kubernetes before. At this point, you should have basic experience interacting with a Kubernetes cluster (locally with Minikube, or elsewhere), and using API objects like Deployments to run your applications.<br><br>If not, you should review the {{< link text="Beginner App Developer" url="/docs/user-journeys/users/application-developer/foundational/" >}} topics first.
-{{< /note  >}}
-After checking out the current page and its linked sections, you should have a better understanding of the following:
-
-* Additional Kubernetes workload patterns, beyond Deployments
-* What it takes to make a Kubernetes application production-ready
-* Community tools that can improve your development workflow
-
-{{% /capture %}}
-
-
-{{% capture body %}}
-
-## Learn additional workload patterns
-
-As your Kubernetes use cases become more complex, you may find it helpful to familiarize yourself with more of the toolkit that Kubernetes provides. {{< link text="Basic workload" url="/docs/user-journeys/users/application-developer/foundational/#section-2" >}} objects like {{< glossary_tooltip text="Deployments" term_id="deployment" >}} make it straightforward to run, update, and scale applications, but they are not ideal for every scenario.
-
-The following API objects provide functionality for additional workload types, whether they are *persistent* or *terminating*.
-
-#### Persistent workloads
-
-Like Deployments, these API objects run indefinitely on a cluster until they are manually terminated. They are best for long-running applications.
-
-*  **{{< glossary_tooltip text="StatefulSets" term_id="statefulset" >}}** - Like Deployments, StatefulSets allow you to specify that a
-   certain number of replicas should be running for your application.
-
-    {{< note  >}} It's misleading to say that Deployments can't handle stateful workloads. Using {{< glossary_tooltip text="PersistentVolumes" term_id="persistent-volume" >}}, you can persist data beyond the lifecycle of any individual Pod in your Deployment.
-    {{< /note  >}}
-
-    However, StatefulSets can provide stronger guarantees about "recovery" behavior than Deployments. StatefulSets maintain a sticky, stable identity for their Pods. The following table provides some concrete examples of what this might look like:
-
-    |   | Deployment | StatefulSet |
-    |---|---|---|
-    | **Example Pod name** | `example-b1c4` | `example-0` |
-    | **When a Pod dies** | Reschedule on *any* node, with new name `example-a51z` | Reschedule on same node, as `example-0` |
-    | **When a node becomes unreachable** | Pod(s) are scheduled onto new node, with new names | Pod(s) are marked as "Unknown", and aren't rescheduled unless the Node object is forcefully deleted |
-
-    In practice, this means that StatefulSets are best suited for scenarios where replicas (Pods) need to coordinate their workloads in a strongly consistent manner. Guaranteeing an identity for each Pod helps avoid {{< link text="split-brain" url="https://en.wikipedia.org/wiki/Split-brain_(computing)" >}} side effects in the case when a node becomes unreachable ({{< link text="network partition" url="https://en.wikipedia.org/wiki/Network_partition" >}}). This makes StatefulSets a great fit for distributed datastores like Cassandra or Elasticsearch.
-
-
-* **{{< glossary_tooltip text="DaemonSets" term_id="daemonset" >}}** - DaemonSets run continuously on every node in your cluster, even as nodes are added or swapped in. This guarantee is particularly useful for setting up global behavior across your cluster, such as:
-
-  * Logging and monitoring, from applications like `fluentd`
-  * Network proxy or {{< link text="service mesh" url="https://www.linux.com/news/whats-service-mesh-and-why-do-i-need-one" >}}
-
-
-#### Terminating workloads
-
-In contrast to Deployments, these API objects are finite. They stop once the specified number of Pods have completed successfully.
-
-* **{{< glossary_tooltip text="Jobs" term_id="job" >}}** - You can use these for one-off tasks like running a script or setting up a work queue. These tasks can be executed sequentially or in parallel. These tasks should be relatively independent, as Jobs do not support closely communicating parallel processes. {{< link text="Read more about Job patterns" url="/docs/concepts/workloads/controllers/jobs-run-to-completion/#job-patterns" >}}.
-
-* **{{< glossary_tooltip text="CronJobs" term_id="cronjob" >}}** - These are similar to Jobs, but allow you to schedule their execution for a specific time or for periodic recurrence. You might use CronJobs to send reminder emails or to run backup jobs. They are set up with a similar syntax as *crontab*.
-
-#### Other resources
-
-For more info, you can check out {{< link text="a list of additional Kubernetes resource types" url="/docs/reference/kubectl/overview/#resource-types" >}} as well as the {{< link text="API reference docs" url="{{ reference_docs_url }}" >}}.
-
-There may be additional features not mentioned here that you may find useful, which are covered in the {{< link text="full Kubernetes documentation" url="/docs/home/?path=browse" >}}.
-
-## Deploy a production-ready workload
-
-The beginner tutorials on this site, such as the {{< link text="Guestbook app" url="/docs/tutorials/stateless-application/guestbook/" >}}, are geared towards getting workloads up and running on your cluster. This prototyping is great for building your intuition around Kubernetes! However, in order to reliably and securely promote your workloads to production, you need to follow some additional best practices.
-
-#### Declarative configuration
-
-You are likely interacting with your Kubernetes cluster via {{< glossary_tooltip text="kubectl" term_id="kubectl" >}}. kubectl can be used to debug the current state of your cluster (such as checking the number of nodes), or to modify live Kubernetes objects (such as updating a workload's replica count with `kubectl scale`).
-
-When using kubectl to update your Kubernetes objects, it's important to be aware that different commands correspond to different approaches:
-
-* {{< link text="Purely imperative" url="/docs/tutorials/object-management-kubectl/imperative-object-management-command/" >}}
-* {{< link text="Imperative with local configuration files" url="/docs/tutorials/object-management-kubectl/imperative-object-management-configuration/" >}} (typically YAML)
-* {{< link text="Declarative with local configuration files" url="/docs/tutorials/object-management-kubectl/declarative-object-management-configuration/" >}} (typically YAML)
-
-There are pros and cons to each approach, though the declarative approach (such as `kubectl apply -f`) may be most helpful in production. With this approach, you rely on local YAML files as the source of truth about your desired state. This enables you to version control your configuration, which is helpful for code reviews and audit tracking.
-
-For additional configuration best practices, familiarize yourself with {{< link text="this guide" url="/docs/concepts/configuration/overview/" >}}.
-
-#### Security
-
-You may be familiar with the *principle of least privilege*---if you are too generous with permissions when writing or using software, the negative effects of a compromise can escalate out of control. Would you be cautious handing out `sudo` privileges to software on your OS? If so, you should be just as careful when granting your workload permissions to the {{< glossary_tooltip text="Kubernetes API" term_id="kubernetes-api" >}} server! The API server is the gateway for your cluster's source of truth; it provides endpoints to read or modify cluster state.
-
-You (or your {{< glossary_tooltip text="cluster operator" term_id="cluster-operator" >}}) can lock down API access with the following:
-
-* **{{< glossary_tooltip text="ServiceAccounts" term_id="service-account" >}}** - An "identity" that your Pods can be tied to
-* **{{< glossary_tooltip text="RBAC" term_id="rbac" >}}** - One way of granting your ServiceAccount explicit permissions
-
-For even more comprehensive reading about security best practices, consider checking out the following topics:
-
-* {{< link text="Authentication" url="/docs/reference/access-authn-authz/authentication/" >}} (Is the user who they say they are?)
-* {{< link text="Authorization" url="/docs/admin/authorization/" >}} (Does the user actually have permissions to do what they're asking?)
-
-#### Resource isolation and management
-
-If your workloads are operating in a *multi-tenant* environment with multiple teams or projects, your container(s) are not necessarily running alone on their node(s). They are sharing node resources with other containers which you do not own.
-
-Even if your cluster operator is managing the cluster on your behalf, it is helpful to be aware of the following:
-
-* **{{< glossary_tooltip text="Namespaces" term_id="namespace" >}}**, used for isolation
-* **{{< link text="Resource quotas" url="/docs/concepts/policy/resource-quotas/" >}}**, which affect what your team's workloads can use
-* **{{< link text="Memory" url="/docs/tasks/configure-pod-container/assign-memory-resource/" >}} and {{< link text="CPU" url="/docs/tasks/configure-pod-container/assign-cpu-resource/" >}} requests**, for a given Pod or container
-* **{{< link text="Monitoring" url="/docs/tasks/debug-application-cluster/resource-usage-monitoring/" >}}**, both on the cluster level and the app level
-
-This list may not be completely comprehensive, but many teams have existing processes that take care of all this. If this is not the case, you'll find the Kubernetes documentation fairly rich in detail.
-
-## Improve your dev workflow with tooling
-
-As an app developer, you'll likely encounter the following tools in your workflow.
-
-#### kubectl
-
-`kubectl` is a command-line tool that allows you to easily read or modify your Kubernetes cluster. It provides convenient, short commands for common operations like scaling app instances and getting node info. How does kubectl do this? It's basically just a user-friendly wrapper for making API requests. It's written using {{< link text="client-go" url="https://github.com/kubernetes/client-go/#client-go" >}}, the Go library for the Kubernetes API.
-
-To learn about the most commonly used kubectl commands, check out the {{< link text="kubectl cheatsheet" url="/docs/reference/kubectl/cheatsheet/" >}}. It explains topics such as the following:
-
-* {{< link text="kubeconfig files" url="/docs/tasks/access-application-cluster/configure-access-multiple-clusters/" >}} - Your kubeconfig file tells kubectl what cluster to talk to, and can reference multiple clusters (such as dev and prod).
-* {{< link text="The various output formats available" url="/docs/reference/kubectl/cheatsheet/#formatting-output" >}} - This is useful to know when you are using `kubectl get` to list information about certain API objects.
-
-* {{< link text="The JSONPath output format" url="/docs/reference/kubectl/jsonpath/" >}} - This is related to the output formats above. JSONPath is especially useful for parsing specific subfields out of `kubectl get` output (such as the URL of a {{< glossary_tooltip text="Service" term_id="service" >}}).
-
-* {{< link text="`kubectl run` vs `kubectl apply`" url="/docs/reference/kubectl/conventions/" >}} - This ties into the [declarative configuration](#declarative-configuration) discussion in the previous section.
-
-For the full list of kubectl commands and their options, check out {{< link text="the reference guide" url="/docs/reference/generated/kubectl/kubectl-commands" >}}.
-
-#### Helm
-
-To leverage pre-packaged configurations from the community, you can use **{{< glossary_tooltip text="Helm charts" term_id="helm-chart" >}}**.
-
-Helm charts package up YAML configurations for specific apps like Jenkins and Postgres. You can then install and run these apps on your cluster with minimal extra configuration. This approach makes the most sense for "off-the-shelf" components which do not require much custom implementation logic.
-
-For writing your own Kubernetes app configurations, there is a {{< link text="thriving ecosystem of tools" url="https://docs.google.com/a/heptio.com/spreadsheets/d/1FCgqz1Ci7_VCz_wdh8vBitZ3giBtac_H8SBw4uxnrsE/edit?usp=drive_web" >}} that you may find useful.
-
-## Explore additional resources
-
-#### References
-Now that you're fairly familiar with Kubernetes, you may find it useful to browse the following reference pages. Doing so provides a high level view of what other features may exist:
-
-* {{< link text="Commonly used `kubectl` commands" url="/docs/reference/kubectl/cheatsheet/" >}}
-* {{< link text="Kubernetes API reference" url="{{ reference_docs_url }}" >}}
-* {{< link text="Standardized Glossary" url="/docs/reference/glossary/" >}}
-
-In addition, {{< link text="the Kubernetes Blog" url="https://kubernetes.io/blog/" >}} often has helpful posts on Kubernetes design patterns and case studies.
-
-#### What's next
-If you feel fairly comfortable with the topics on this page and want to learn more, check out the following user journeys:
-
-* {{< link text="Advanced App Developer" url="/docs/user-journeys/users/application-developer/advanced/" >}} - Dive deeper, with the next level of this journey.
-* {{< link text="Foundational Cluster Operator" url="/docs/user-journeys/users/cluster-operator/foundational/" >}} - Build breadth, by exploring other journeys.
-{{% /capture %}}
-
-
diff --git a/deprecated/content/en/docs/user-journeys/users/cluster-operator/foundational.md b/deprecated/content/en/docs/user-journeys/users/cluster-operator/foundational.md
deleted file mode 100644
index e74b7c5964..0000000000
--- a/deprecated/content/en/docs/user-journeys/users/cluster-operator/foundational.md
+++ /dev/null
@@ -1,96 +0,0 @@
----
-reviewers:
-- chenopis
-layout: docsportal
-css: /css/style_user_journeys.css
-js: https://use.fontawesome.com/4bcc658a89.js, https://cdnjs.cloudflare.com/ajax/libs/prefixfree/1.0.7/prefixfree.min.js
-title: Foundational
-track: "USERS › CLUSTER OPERATOR › FOUNDATIONAL"
-content_template: templates/user-journey-content
----
-
-{{% capture overview %}}
-
-If you want to learn how to get started managing and operating a Kubernetes cluster, this page and the linked topics introduce you to the foundational concepts and tasks.
-This page introduces you to a Kubernetes cluster and key concepts to understand and manage it. The content focuses primarily on the cluster itself rather than the software running within the cluster.
-
-{{% /capture %}}
-
-<!-- Foundational
-Nodes, Pods, Networks, Deployments, Services, ConfigMaps, Secrets
-Labels, Selectors, Annotations
-Metrics
--->
-
-{{% capture body %}}
-
-## Get an overview of Kubernetes
-
-If you have not already done so, start your understanding by reading through [What is Kubernetes?](/docs/concepts/overview/what-is-kubernetes/), which introduces a number of basic concepts and terms.
-
-Kubernetes is quite flexible, and a cluster can be run in a wide variety of places. You can interact with Kubernetes entirely on your own laptop or local development machine with it running within a virtual machine. Kubernetes can also run on virtual machines hosted either locally or in a cloud provider, and you can run a Kubernetes cluster on bare metal.
-
-A cluster is made up of one or more [Nodes](/docs/concepts/architecture/nodes/); where a node is a physical or virtual machine.
-If there is more than one node in your cluster then the nodes are connected with a [cluster network](/docs/concepts/cluster-administration/networking/).
-Regardless of how many nodes, all Kubernetes clusters generally have the same components, which are described in [Kubernetes Components](/docs/concepts/overview/components).
-
-
-## Learn about Kubernetes basics
-
-A good way to become familiar with how to manage and operate a Kubernetes cluster is by setting one up.
-One of the most compact ways to experiment with a cluster is [Installing and using Minikube](/docs/tasks/tools/install-minikube/).
-Minikube is a command line tool for setting up and running a single-node cluster within a virtual machine on your local laptop or development computer. Minikube is even available through your browser at the [Katacoda Kubernetes Playground](https://www.katacoda.com/courses/kubernetes/playground).
-Katacoda provides a browser-based connection to a single-node cluster, using minikube behind the scenes, to support a number of tutorials to explore Kubernetes. You can also leverage the web-based [Play with Kubernetes](http://labs.play-with-k8s.com/) to the same ends - a temporary cluster to play with on the web.
-
-You interact with Kubernetes either through a dashboard, an API, or using a command-line tool (such as `kubectl`) that interacts with the Kubernetes API.
-Be familiar with [Organizing Cluster Access](/docs/concepts/configuration/organize-cluster-access-kubeconfig/) by using configuration files.
-The Kubernetes API exposes a number of resources that provide the building blocks and abstractions that are used to run software on Kubernetes.
-Learn more about these resources at [Understanding Kubernetes Objects](/docs/concepts/overview/working-with-objects/kubernetes-objects).
-These resources are covered in a number of articles within the Kubernetes documentation.
-
-* [Pod Overview](/docs/concepts/workloads/pods/pod-overview/)
-  * [Pods](/docs/concepts/workloads/pods/pod/)
-  * [ReplicaSets](/docs/concepts/workloads/controllers/replicaset/)
-  * [Deployments](/docs/concepts/workloads/controllers/deployment/)
-  * [Garbage Collection](/docs/concepts/workloads/controllers/garbage-collection/)
-  * [Container Images](/docs/concepts/containers/images/)
-  * [Container Environment Variables](/docs/concepts/containers/container-environment-variables/)
-* [Labels and Selectors](/docs/concepts/overview/working-with-objects/labels/)
-* [Namespaces](/docs/concepts/overview/working-with-objects/namespaces/)
-  * [Namespaces Walkthrough](/docs/tasks/administer-cluster/namespaces-walkthrough/)
-* [Services](/docs/concepts/services-networking/service/)
-* [Annotations](/docs/concepts/overview/working-with-objects/annotations/)
-* [ConfigMaps](/docs/tasks/configure-pod-container/configure-pod-configmap/)
-* [Secrets](/docs/concepts/configuration/secret/)
-
-As a cluster operator you may not need to use all these resources, although you should be familiar with them to understand how the cluster is being used.
-There are a number of additional resources that you should be aware of, some listed under [Intermediate Resources](/docs/user-journeys/users/cluster-operator/intermediate#section-1).
-You should also be familiar with [how to manage kubernetes resources](/docs/concepts/cluster-administration/manage-deployment/)
-and [supported versions and version skew between cluster components](/docs/setup/release/version-skew-policy/).
-
-## Get information about your cluster
-
-You can [access clusters using the Kubernetes API](/docs/tasks/administer-cluster/access-cluster-api/).
-If you are not already familiar with how to do this, you can review the [introductory tutorial](/docs/tutorials/kubernetes-basics/explore-intro/).
-Using `kubectl`, you can retrieve information about your Kubernetes cluster very quickly.
-To get basic information about the nodes in your cluster run the command `kubectl get nodes`.
-You can get more detailed information for the same nodes with the command `kubectl describe nodes`.
-You can see the status of the core of kubernetes with the command `kubectl get componentstatuses`.
-
-Some additional resources for getting information about your cluster and how it is operating include:
-
-* [Tools for Monitoring Compute, Storage, and Network Resources](/docs/tasks/debug-application-cluster/resource-usage-monitoring/)
-* [Resource metrics pipeline](/docs/tasks/debug-application-cluster/resource-metrics-pipeline/)
-  * [Metrics](/docs/concepts/cluster-administration/controller-metrics/)
-
-## Explore additional resources
-
-### Tutorials
-
-* [Kubernetes Basics](/docs/tutorials/kubernetes-basics/)
-* [Configuring Redis with a ConfigMap](/docs/tutorials/configuration/configure-redis-using-configmap/)
-* Stateless Applications
-  * [Deploying PHP Guestbook with Redis](/docs/tutorials/stateless-application/guestbook/)
-  * [Expose an External IP address to access an application](/docs/tutorials/stateless-application/expose-external-ip-address/)
-
-{{% /capture %}}
diff --git a/deprecated/content/en/docs/user-journeys/users/cluster-operator/intermediate.md b/deprecated/content/en/docs/user-journeys/users/cluster-operator/intermediate.md
deleted file mode 100644
index b590e4862c..0000000000
--- a/deprecated/content/en/docs/user-journeys/users/cluster-operator/intermediate.md
+++ /dev/null
@@ -1,109 +0,0 @@
----
-reviewers:
-- chenopis
-layout: docsportal
-css: /css/style_user_journeys.css
-js: https://use.fontawesome.com/4bcc658a89.js, https://cdnjs.cloudflare.com/ajax/libs/prefixfree/1.0.7/prefixfree.min.js
-title: Intermediate
-track: "USERS > CLUSTER OPERATOR > INTERMEDIATE"
-content_template: templates/user-journey-content
----
-
-{{% capture overview %}}
-
-If you are a cluster operator looking to expand your grasp of Kubernetes, this page and its linked topics extend the information provided on the [foundational cluster operator page](/docs/user-journeys/users/cluster-operator/foundational). From this page you can get information on key Kubernetes tasks needed to manage a complete production cluster.
-
-{{% /capture %}}
-
-{{% capture body %}}
-
-## Work with ingress, networking, storage, and workloads
-
-Introductions to Kubernetes typically discuss simple stateless applications. As you move into more complex development, testing, and production environments, you need to consider more complex cases:
-
-Communication: Ingress and Networking
-
-* [Ingress](/docs/concepts/services-networking/ingress/)
-
-Storage: Volumes and PersistentVolumes
-
-* [Volumes](/docs/concepts/storage/volumes/)
-* [Persistent Volumes](/docs/concepts/storage/persistent-volumes/)
-
-Workloads
-
-* [DaemonSets](/docs/concepts/workloads/controllers/daemonset/)
-* [Stateful Sets](/docs/concepts/workloads/controllers/statefulset/)
-* [Jobs](/docs/concepts/workloads/controllers/jobs-run-to-completion/)
-* [CronJobs](/docs/concepts/workloads/controllers/cron-jobs/)
-
-Pods
-
-* [Pod Lifecycle](/docs/concepts/workloads/pods/pod-lifecycle/)
-  * [Init Containers](/docs/concepts/workloads/pods/init-containers/)
-  * [Pod Presets](/docs/concepts/workloads/pods/podpreset/)
-  * [Container Lifecycle Hooks](/docs/concepts/containers/container-lifecycle-hooks/)
-
-And how Pods work with scheduling, priority, disruptions:
-
-* [Taints and Tolerations](/docs/concepts/configuration/taint-and-toleration/)
-* [Pods and Priority](/docs/concepts/configuration/pod-priority-preemption/)
-* [Disruptions](/docs/concepts/workloads/pods/disruptions/)
-* [Assigning Pods to Nodes](/docs/concepts/configuration/assign-pod-node/)
-* [Managing Compute Resources for Containers](/docs/concepts/configuration/manage-compute-resources-container/)
-* [Configuration Best Practices](/docs/concepts/configuration/overview/)
-
-## Implement security best practices
-
-Securing your cluster includes work beyond the scope of Kubernetes itself.
-
-In Kubernetes, you configure access control:
-
-* [Controlling Access to the Kubernetes API](/docs/reference/access-authn-authz/controlling-access/)
-* [Authenticating](/docs/reference/access-authn-authz/authentication/)
-* [Using Admission Controllers](/docs/reference/access-authn-authz/admission-controllers/)
-
-You also configure authorization. That is, you determine not just how users and services authenticate to the API server, or whether they have access, but also what resources they have access to. Role-based access control (RBAC) is the recommended mechanism for controlling authorization to Kubernetes resources. Other authorization modes are available for more specific use cases.
-
-* [Authorization Overview](/docs/reference/access-authn-authz/authorization/)
-* [Using RBAC Authorization](/docs/reference/access-authn-authz/rbac/)
-
-You should create Secrets to hold sensitive data such as passwords, tokens, or keys. Be aware, however, that there are limitations to the protections that a Secret can provide. See [the Risks section of the Secrets documentation](/docs/concepts/configuration/secret/#risks).
-
-<!-- TODO: Other security content? -->
-
-## Implement custom logging and monitoring
-
-Monitoring the health and state of your cluster is important. Collecting metrics, logging, and providing access to that information are common needs. Kubernetes provides some basic logging structure, and you may want to use additional tools to help aggregate and analyze log data.
-
-Start with the [basics on Kubernetes logging](/docs/concepts/cluster-administration/logging/) to understand how containers do logging and common patterns. Cluster operators often want to add something to gather and aggregate those logs. See the following topics:
-
-* [Logging Using Elasticsearch and Kibana](/docs/tasks/debug-application-cluster/logging-elasticsearch-kibana/)
-* [Logging Using Stackdriver](/docs/tasks/debug-application-cluster/logging-stackdriver/)
-
-Like log aggregation, many clusters utilize additional software to help capture metrics and display them. There is an overview of tools at [Tools for Monitoring Compute, Storage, and Network Resources](/docs/tasks/debug-application-cluster/resource-usage-monitoring/).
-Kubernetes also supports a [resource metrics pipeline](/docs/tasks/debug-application-cluster/resource-metrics-pipeline/) which can be used by Horizontal Pod Autoscaler with custom metrics.
-
-[Prometheus](https://prometheus.io/), another {{< glossary_tooltip text="CNCF" term_id="cncf" >}} project, is a common choice to support capture and temporary collection of metrics. There are several options for installing Prometheus, including using the [stable/prometheus](https://github.com/kubernetes/charts/tree/master/stable/prometheus) [helm](https://helm.sh/) chart, and CoreOS provides a [prometheus operator](https://github.com/coreos/prometheus-operator) and [kube-prometheus](https://github.com/coreos/prometheus-operator/tree/master/contrib/kube-prometheus), which adds on Grafana dashboards and common configurations.
-
-A common configuration on [Minikube](https://github.com/kubernetes/minikube) and some Kubernetes clusters uses [Heapster](https://github.com/kubernetes/heapster)
-[along with InfluxDB and Grafana](https://github.com/kubernetes/heapster/blob/master/docs/influxdb.md).
-There is a [walkthrough of how to install this configuration in your cluster](https://blog.kublr.com/how-to-utilize-the-heapster-influxdb-grafana-stack-in-kubernetes-for-monitoring-pods-4a553f4d36c9).
-As of Kubernetes 1.11, Heapster is deprecated, as per [sig-instrumentation](https://github.com/kubernetes/community/tree/master/sig-instrumentation).  See [Prometheus vs. Heapster vs. Kubernetes Metrics APIs](https://brancz.com/2018/01/05/prometheus-vs-heapster-vs-kubernetes-metrics-apis/) for more information alternatives.
-
-Hosted monitoring, APM, or data analytics services such as [Datadog](https://docs.datadoghq.com/integrations/kubernetes/) or [Instana](https://www.instana.com/supported-integrations/kubernetes-monitoring/) also offer Kubernetes integration.
-
-## Additional resources
-
-Cluster Administration:
-
-* [Troubleshoot Clusters](/docs/tasks/debug-application-cluster/debug-cluster/)
-* [Debug Pods and Replication Controllers](/docs/tasks/debug-application-cluster/debug-pod-replication-controller/)
-* [Debug Init Containers](/docs/tasks/debug-application-cluster/debug-init-containers/)
-* [Debug Stateful Sets](/docs/tasks/debug-application-cluster/debug-stateful-set/)
-* [Debug Applications](/docs/tasks/debug-application-cluster/debug-application/)
-* [Using explorer to investigate your cluster](https://github.com/kubernetes/examples/blob/master/staging/explorer/README.md)
-
-{{% /capture %}}
-
-
diff --git a/go.mod b/go.mod
index a472ae517d..8b81afc7d0 100644
--- a/go.mod
+++ b/go.mod
@@ -1,40 +1,116 @@
 module k8s.io/website
 
-go 1.16
+go 1.17
 
 require (
-	github.com/google/go-cmp v0.5.6 // indirect
-	k8s.io/apimachinery v0.22.0
+	k8s.io/apimachinery v0.23.0
 	k8s.io/kubernetes v0.0.0
 )
 
-replace (
-	k8s.io/api => k8s.io/api v0.22.0
-	k8s.io/apiextensions-apiserver => k8s.io/apiextensions-apiserver v0.22.0
-	k8s.io/apimachinery => k8s.io/apimachinery v0.22.0
-	k8s.io/apiserver => k8s.io/apiserver v0.22.0
-	k8s.io/cli-runtime => k8s.io/cli-runtime v0.22.0
-	k8s.io/client-go => k8s.io/client-go v0.22.0
-	k8s.io/cloud-provider => k8s.io/cloud-provider v0.22.0
-	k8s.io/cluster-bootstrap => k8s.io/cluster-bootstrap v0.22.0
-	k8s.io/code-generator => k8s.io/code-generator v0.22.0
-	k8s.io/component-base => k8s.io/component-base v0.22.0
-	k8s.io/component-helpers => k8s.io/component-helpers v0.22.0
-	k8s.io/controller-manager => k8s.io/controller-manager v0.22.0
-	k8s.io/cri-api => k8s.io/cri-api v0.22.0
-	k8s.io/csi-translation-lib => k8s.io/csi-translation-lib v0.22.0
-	k8s.io/kube-aggregator => k8s.io/kube-aggregator v0.22.0
-	k8s.io/kube-controller-manager => k8s.io/kube-controller-manager v0.22.0
-	k8s.io/kube-proxy => k8s.io/kube-proxy v0.22.0
-	k8s.io/kube-scheduler => k8s.io/kube-scheduler v0.22.0
-	k8s.io/kubectl => k8s.io/kubectl v0.22.0
-	k8s.io/kubelet => k8s.io/kubelet v0.22.0
-	k8s.io/kubernetes => ../kubernetes
-	k8s.io/legacy-cloud-providers => k8s.io/legacy-cloud-providers v0.22.0
-	k8s.io/metrics => k8s.io/metrics v0.22.0
-	k8s.io/mount-utils => k8s.io/mount-utils v0.22.0
-	k8s.io/pod-security-admission => k8s.io/pod-security-admission v0.22.0
-	k8s.io/sample-apiserver => k8s.io/sample-apiserver v0.22.0
-	k8s.io/sample-cli-plugin => k8s.io/sample-cli-plugin v0.22.0
-	k8s.io/sample-controller => k8s.io/sample-controller v0.22.0
+require (
+	cloud.google.com/go v0.97.0 // indirect
+	github.com/beorn7/perks v1.0.1 // indirect
+	github.com/blang/semver v3.5.1+incompatible // indirect
+	github.com/cespare/xxhash/v2 v2.1.1 // indirect
+	github.com/coreos/go-semver v0.3.0 // indirect
+	github.com/coreos/go-systemd/v22 v22.3.2 // indirect
+	github.com/cyphar/filepath-securejoin v0.2.2 // indirect
+	github.com/davecgh/go-spew v1.1.1 // indirect
+	github.com/docker/distribution v2.7.1+incompatible // indirect
+	github.com/felixge/httpsnoop v1.0.1 // indirect
+	github.com/go-logr/logr v1.2.0 // indirect
+	github.com/gogo/protobuf v1.3.2 // indirect
+	github.com/golang/protobuf v1.5.2 // indirect
+	github.com/google/go-cmp v0.5.6 // indirect
+	github.com/google/gofuzz v1.1.0 // indirect
+	github.com/google/uuid v1.1.2 // indirect
+	github.com/googleapis/gnostic v0.5.5 // indirect
+	github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0 // indirect
+	github.com/grpc-ecosystem/grpc-gateway v1.16.0 // indirect
+	github.com/json-iterator/go v1.1.12 // indirect
+	github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369 // indirect
+	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
+	github.com/modern-go/reflect2 v1.0.2 // indirect
+	github.com/opencontainers/go-digest v1.0.0 // indirect
+	github.com/opencontainers/runc v1.0.2 // indirect
+	github.com/pkg/errors v0.9.1 // indirect
+	github.com/prometheus/client_golang v1.11.0 // indirect
+	github.com/prometheus/client_model v0.2.0 // indirect
+	github.com/prometheus/common v0.28.0 // indirect
+	github.com/prometheus/procfs v0.6.0 // indirect
+	github.com/robfig/cron/v3 v3.0.1 // indirect
+	github.com/spf13/pflag v1.0.5 // indirect
+	go.etcd.io/etcd/api/v3 v3.5.0 // indirect
+	go.etcd.io/etcd/client/pkg/v3 v3.5.0 // indirect
+	go.etcd.io/etcd/client/v3 v3.5.0 // indirect
+	go.opentelemetry.io/contrib v0.20.0 // indirect
+	go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.20.0 // indirect
+	go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.20.0 // indirect
+	go.opentelemetry.io/otel v0.20.0 // indirect
+	go.opentelemetry.io/otel/exporters/otlp v0.20.0 // indirect
+	go.opentelemetry.io/otel/metric v0.20.0 // indirect
+	go.opentelemetry.io/otel/sdk v0.20.0 // indirect
+	go.opentelemetry.io/otel/sdk/export/metric v0.20.0 // indirect
+	go.opentelemetry.io/otel/sdk/metric v0.20.0 // indirect
+	go.opentelemetry.io/otel/trace v0.20.0 // indirect
+	go.opentelemetry.io/proto/otlp v0.7.0 // indirect
+	go.uber.org/atomic v1.7.0 // indirect
+	go.uber.org/multierr v1.6.0 // indirect
+	go.uber.org/zap v1.19.0 // indirect
+	golang.org/x/net v0.0.0-20210825183410-e898025ed96a // indirect
+	golang.org/x/oauth2 v0.0.0-20211005180243-6b3c2da341f1 // indirect
+	golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359 // indirect
+	golang.org/x/term v0.0.0-20210615171337-6886f2dfbf5b // indirect
+	golang.org/x/text v0.3.7 // indirect
+	golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac // indirect
+	google.golang.org/appengine v1.6.7 // indirect
+	google.golang.org/genproto v0.0.0-20211021150943-2b146023228c // indirect
+	google.golang.org/grpc v1.40.0 // indirect
+	google.golang.org/protobuf v1.27.1 // indirect
+	gopkg.in/inf.v0 v0.9.1 // indirect
+	gopkg.in/yaml.v2 v2.4.0 // indirect
+	gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b // indirect
+	k8s.io/api v0.23.0 // indirect
+	k8s.io/apiserver v0.23.0 // indirect
+	k8s.io/client-go v0.23.0 // indirect
+	k8s.io/component-base v0.23.0 // indirect
+	k8s.io/component-helpers v0.23.0 // indirect
+	k8s.io/klog/v2 v2.30.0 // indirect
+	k8s.io/kube-openapi v0.0.0-20211115234752-e816edb12b65 // indirect
+	k8s.io/utils v0.0.0-20210930125809-cb0fa318a74b // indirect
+	sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.0.25 // indirect
+	sigs.k8s.io/json v0.0.0-20211020170558-c049b76a60c6 // indirect
+	sigs.k8s.io/structured-merge-diff/v4 v4.1.2 // indirect
+	sigs.k8s.io/yaml v1.2.0 // indirect
+)
+
+replace (
+	k8s.io/api => k8s.io/api v0.23.0
+	k8s.io/apiextensions-apiserver => k8s.io/apiextensions-apiserver v0.23.0
+	k8s.io/apimachinery => k8s.io/apimachinery v0.23.0
+	k8s.io/apiserver => k8s.io/apiserver v0.23.0
+	k8s.io/cli-runtime => k8s.io/cli-runtime v0.23.0
+	k8s.io/client-go => k8s.io/client-go v0.23.0
+	k8s.io/cloud-provider => k8s.io/cloud-provider v0.23.0
+	k8s.io/cluster-bootstrap => k8s.io/cluster-bootstrap v0.23.0
+	k8s.io/code-generator => k8s.io/code-generator v0.23.0
+	k8s.io/component-base => k8s.io/component-base v0.23.0
+	k8s.io/component-helpers => k8s.io/component-helpers v0.23.0
+	k8s.io/controller-manager => k8s.io/controller-manager v0.23.0
+	k8s.io/cri-api => k8s.io/cri-api v0.23.0
+	k8s.io/csi-translation-lib => k8s.io/csi-translation-lib v0.23.0
+	k8s.io/kube-aggregator => k8s.io/kube-aggregator v0.23.0
+	k8s.io/kube-controller-manager => k8s.io/kube-controller-manager v0.23.0
+	k8s.io/kube-proxy => k8s.io/kube-proxy v0.23.0
+	k8s.io/kube-scheduler => k8s.io/kube-scheduler v0.23.0
+	k8s.io/kubectl => k8s.io/kubectl v0.23.0
+	k8s.io/kubelet => k8s.io/kubelet v0.23.0
+	k8s.io/kubernetes => ../kubernetes
+	k8s.io/legacy-cloud-providers => k8s.io/legacy-cloud-providers v0.23.0
+	k8s.io/metrics => k8s.io/metrics v0.23.0
+	k8s.io/mount-utils => k8s.io/mount-utils v0.23.0
+	k8s.io/pod-security-admission => k8s.io/pod-security-admission v0.23.0
+	k8s.io/sample-apiserver => k8s.io/sample-apiserver v0.23.0
+	k8s.io/sample-cli-plugin => k8s.io/sample-cli-plugin v0.23.0
+	k8s.io/sample-controller => k8s.io/sample-controller v0.23.0
 )
diff --git a/go.sum b/go.sum
index c9bd6c742c..fecc8dd249 100644
--- a/go.sum
+++ b/go.sum
@@ -1,4 +1,4 @@
-bitbucket.org/bertimus9/systemstat v0.0.0-20180207000608-0eeff89b0690 h1:N9r8OBSXAgEUfho3SQtZLY8zo6E1OdOMvelvP22aVFc=
+bazil.org/fuse v0.0.0-20160811212531-371fbbdaa898/go.mod h1:Xbm+BRKSBEpa4q4hTSxohYNQpsxXPbPry4JJWOB3LB8=
 bitbucket.org/bertimus9/systemstat v0.0.0-20180207000608-0eeff89b0690/go.mod h1:Ulb78X89vxKYgdL24HMTiXYHlyHEvruOj1ZPlqeNEZM=
 cloud.google.com/go v0.26.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw=
 cloud.google.com/go v0.34.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw=
@@ -8,414 +8,255 @@ cloud.google.com/go v0.44.2/go.mod h1:60680Gw3Yr4ikxnPRS/oxxkBccT6SA1yMk63TGekxK
 cloud.google.com/go v0.45.1/go.mod h1:RpBamKRgapWJb87xiFSdk4g1CME7QZg3uwTez+TSTjc=
 cloud.google.com/go v0.46.3/go.mod h1:a6bKKbmY7er1mI7TEI4lsAkts/mkhTSZK8w33B4RAg0=
 cloud.google.com/go v0.50.0/go.mod h1:r9sluTvynVuxRIOHXQEHMFffphuXHOMZMycpNR5e6To=
-cloud.google.com/go v0.51.0/go.mod h1:hWtGJ6gnXH+KgDv+V0zFGDvpi07n3z8ZNj3T1RW0Gcw=
 cloud.google.com/go v0.52.0/go.mod h1:pXajvRH/6o3+F9jDHZWQ5PbGhn+o8w9qiu/CffaVdO4=
 cloud.google.com/go v0.53.0/go.mod h1:fp/UouUEsRkN6ryDKNW/Upv/JBKnv6WDthjR6+vze6M=
-cloud.google.com/go v0.54.0 h1:3ithwDMr7/3vpAMXiH+ZQnYbuIsh+OPhUPMFC9enmn0=
 cloud.google.com/go v0.54.0/go.mod h1:1rq2OEkV3YMf6n/9ZvGWI3GWw0VoqH/1x2nd8Is/bPc=
+cloud.google.com/go v0.56.0/go.mod h1:jr7tqZxxKOVYizybht9+26Z/gUq7tiRzu+ACVAMbKVk=
+cloud.google.com/go v0.57.0/go.mod h1:oXiQ6Rzq3RAkkY7N6t3TcE6jE+CIBBbA36lwQ1JyzZs=
+cloud.google.com/go v0.62.0/go.mod h1:jmCYTdRCQuc1PHIIJ/maLInMho30T/Y0M4hTdTShOYc=
+cloud.google.com/go v0.65.0/go.mod h1:O5N8zS7uWy9vkA9vayVHs65eM1ubvY4h553ofrNHObY=
+cloud.google.com/go v0.72.0/go.mod h1:M+5Vjvlc2wnp6tjzE102Dw08nGShTscUx2nZMufOKPI=
+cloud.google.com/go v0.74.0/go.mod h1:VV1xSbzvo+9QJOxLDaJfTjx5e+MePCpCWwvftOeQmWk=
+cloud.google.com/go v0.78.0/go.mod h1:QjdrLG0uq+YwhjoVOLsS1t7TW8fs36kLs4XO5R5ECHg=
+cloud.google.com/go v0.79.0/go.mod h1:3bzgcEeQlzbuEAYu4mrWhKqWjmpprinYgKJLgKHnbb8=
+cloud.google.com/go v0.81.0/go.mod h1:mk/AM35KwGk/Nm2YSeZbxXdrNK3KZOYHmLkOqC2V6E0=
+cloud.google.com/go v0.83.0/go.mod h1:Z7MJUsANfY0pYPdw0lbnivPx4/vhy/e2FEkSkF7vAVY=
+cloud.google.com/go v0.84.0/go.mod h1:RazrYuxIK6Kb7YrzzhPoLmCVzl7Sup4NrbKPg8KHSUM=
+cloud.google.com/go v0.87.0/go.mod h1:TpDYlFy7vuLzZMMZ+B6iRiELaY7z/gJPaqbMx6mlWcY=
+cloud.google.com/go v0.90.0/go.mod h1:kRX0mNRHe0e2rC6oNakvwQqzyDmg57xJ+SZU1eT2aDQ=
+cloud.google.com/go v0.93.3/go.mod h1:8utlLll2EF5XMAV15woO4lSbWQlk8rer9aLOfLh7+YI=
+cloud.google.com/go v0.94.1/go.mod h1:qAlAugsXlC+JWO+Bke5vCtc9ONxjQT3drlTTnAplMW4=
+cloud.google.com/go v0.97.0 h1:3DXvAyifywvq64LfkKaMOmkWPS1CikIQdMe2lY9vxU8=
+cloud.google.com/go v0.97.0/go.mod h1:GF7l59pYBVlXQIBLx3a761cZ41F9bBH3JUlihCt2Udc=
 cloud.google.com/go/bigquery v1.0.1/go.mod h1:i/xbL2UlR5RvWAURpBYZTtm/cXjCha9lbfbpx4poX+o=
 cloud.google.com/go/bigquery v1.3.0/go.mod h1:PjpwJnslEMmckchkHFfq+HTD2DmtT67aNFKH1/VBDHE=
-cloud.google.com/go/bigquery v1.4.0 h1:xE3CPsOgttP4ACBePh79zTKALtXwn/Edhcr16R5hMWU=
 cloud.google.com/go/bigquery v1.4.0/go.mod h1:S8dzgnTigyfTmLBfrtrhyYhwRxG72rYxvftPBK2Dvzc=
+cloud.google.com/go/bigquery v1.5.0/go.mod h1:snEHRnqQbz117VIFhE8bmtwIDY80NLUZUMb4Nv6dBIg=
+cloud.google.com/go/bigquery v1.7.0/go.mod h1://okPTzCYNXSlb24MZs83e2Do+h+VXtc4gLoIoXIAPc=
+cloud.google.com/go/bigquery v1.8.0/go.mod h1:J5hqkt3O0uAFnINi6JXValWIb1v0goeZM77hZzJN/fQ=
 cloud.google.com/go/datastore v1.0.0/go.mod h1:LXYbyblFSglQ5pkeyhO+Qmw7ukd3C+pD7TKLgZqpHYE=
-cloud.google.com/go/datastore v1.1.0 h1:/May9ojXjRkPBNVrq+oWLqmWCkr4OU5uRY29bu0mRyQ=
 cloud.google.com/go/datastore v1.1.0/go.mod h1:umbIZjpQpHh4hmRpGhH4tLFup+FVzqBi1b3c64qFpCk=
-cloud.google.com/go/firestore v1.1.0 h1:9x7Bx0A9R5/M9jibeJeZWqjeVEIxYW9fZYqB9a70/bY=
 cloud.google.com/go/firestore v1.1.0/go.mod h1:ulACoGHTpvq5r8rxGJ4ddJZBZqakUQqClKRT5SZwBmk=
 cloud.google.com/go/pubsub v1.0.1/go.mod h1:R0Gpsv3s54REJCy4fxDixWD93lHJMoZTyQ2kNxGRt3I=
 cloud.google.com/go/pubsub v1.1.0/go.mod h1:EwwdRX2sKPjnvnqCa270oGRyludottCI76h+R3AArQw=
-cloud.google.com/go/pubsub v1.2.0 h1:Lpy6hKgdcl7a3WGSfJIFmxmcdjSpP6OmBEfcOv1Y680=
 cloud.google.com/go/pubsub v1.2.0/go.mod h1:jhfEVHT8odbXTkndysNHCcx0awwzvfOlguIAii9o8iA=
+cloud.google.com/go/pubsub v1.3.1/go.mod h1:i+ucay31+CNRpDW4Lu78I4xXG+O1r/MAHgjpRVR+TSU=
 cloud.google.com/go/storage v1.0.0/go.mod h1:IhtSnM/ZTZV8YYJWCY8RULGVqBDmpoyjwiyrjsg+URw=
 cloud.google.com/go/storage v1.5.0/go.mod h1:tpKbwo567HUNpVclU5sGELwQWBDZ8gh0ZeosJ0Rtdos=
-cloud.google.com/go/storage v1.6.0 h1:UDpwYIwla4jHGzZJaEJYx1tOejbgSoNqsAfHAUYe2r8=
 cloud.google.com/go/storage v1.6.0/go.mod h1:N7U0C8pVQ/+NIKOBQyamJIeKQKkZ+mxpohlUTyfDhBk=
+cloud.google.com/go/storage v1.8.0/go.mod h1:Wv1Oy7z6Yz3DshWRJFhqM/UCfaWIRTdp0RXyy7KQOVs=
+cloud.google.com/go/storage v1.10.0/go.mod h1:FLPqc6j+Ki4BU591ie1oL6qBQGu2Bl/tZ9ullr3+Kg0=
 dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9/go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU=
-dmitri.shuralyov.com/gpu/mtl v0.0.0-20201218220906-28db891af037 h1:+PdD6GLKejR9DizMAKT5DpSAkKswvZrurk1/eEt9+pw=
 dmitri.shuralyov.com/gpu/mtl v0.0.0-20201218220906-28db891af037/go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU=
-github.com/Azure/azure-sdk-for-go v43.0.0+incompatible/go.mod h1:9XXNKU+eRnpl9moKnB4QOLf1HestfXbmab5FXxiDBjc=
-github.com/Azure/azure-sdk-for-go v55.0.0+incompatible h1:L4/vUGbg1Xkw5L20LZD+hJI5I+ibWSytqQ68lTCfLwY=
 github.com/Azure/azure-sdk-for-go v55.0.0+incompatible/go.mod h1:9XXNKU+eRnpl9moKnB4QOLf1HestfXbmab5FXxiDBjc=
 github.com/Azure/go-ansiterm v0.0.0-20170929234023-d6e3b3328b78/go.mod h1:LmzpDX56iTiv29bbRTIsUNlaFfuhWRQBWjQdVyAevI8=
 github.com/Azure/go-ansiterm v0.0.0-20210608223527-2377c96fe795/go.mod h1:LmzpDX56iTiv29bbRTIsUNlaFfuhWRQBWjQdVyAevI8=
-github.com/Azure/go-ansiterm v0.0.0-20210617225240-d185dfc1b5a1 h1:UQHMgLO+TxOElx5B5HZ4hJQsoJ/PvUvKRhJHDQXO8P8=
 github.com/Azure/go-ansiterm v0.0.0-20210617225240-d185dfc1b5a1/go.mod h1:xomTg63KZ2rFqZQzSB4Vz2SUXa1BpHTVz9L5PTmPC4E=
-github.com/Azure/go-autorest v14.2.0+incompatible h1:V5VMDjClD3GiElqLWO7mz2MxNAK/vTfRHdAubSIPRgs=
 github.com/Azure/go-autorest v14.2.0+incompatible/go.mod h1:r+4oMnoxhatjLLJ6zxSWATqVooLgysK6ZNox3g/xq24=
-github.com/Azure/go-autorest/autorest v0.11.12/go.mod h1:eipySxLmqSyC5s5k1CLupqet0PSENBEDP93LQ9a8QYw=
-github.com/Azure/go-autorest/autorest v0.11.18 h1:90Y4srNYrwOtAgVo3ndrQkTYn6kf1Eg/AjTFJ8Is2aM=
 github.com/Azure/go-autorest/autorest v0.11.18/go.mod h1:dSiJPy22c3u0OtOKDNttNgqpNFY/GeWa7GH/Pz56QRA=
-github.com/Azure/go-autorest/autorest/adal v0.9.5/go.mod h1:B7KF7jKIeC9Mct5spmyCB/A8CG/sEz1vwIRGv/bbw7A=
-github.com/Azure/go-autorest/autorest/adal v0.9.13 h1:Mp5hbtOePIzM8pJVRa3YLrWWmZtoxRXqUEzCfJt3+/Q=
 github.com/Azure/go-autorest/autorest/adal v0.9.13/go.mod h1:W/MM4U6nLxnIskrw4UwWzlHfGjwUS50aOsc/I3yuU8M=
-github.com/Azure/go-autorest/autorest/date v0.3.0 h1:7gUk1U5M/CQbp9WoqinNzJar+8KY+LPI6wiWrP/myHw=
 github.com/Azure/go-autorest/autorest/date v0.3.0/go.mod h1:BI0uouVdmngYNUzGWeSYnokU+TrmwEsOqdt8Y6sso74=
-github.com/Azure/go-autorest/autorest/mocks v0.4.1 h1:K0laFcLE6VLTOwNgSxaGbUcLPuGXlNkbVvq4cW4nIHk=
 github.com/Azure/go-autorest/autorest/mocks v0.4.1/go.mod h1:LTp+uSrOhSkaKrUy935gNZuuIPPVsHlr9DSOxSayd+k=
-github.com/Azure/go-autorest/autorest/to v0.2.0/go.mod h1:GunWKJp1AEqgMaGLV+iocmRAJWqST1wQYhyyjXJ3SJc=
-github.com/Azure/go-autorest/autorest/to v0.4.0 h1:oXVqrxakqqV1UZdSazDOPOLvOIz+XA683u8EctwboHk=
 github.com/Azure/go-autorest/autorest/to v0.4.0/go.mod h1:fE8iZBn7LQR7zH/9XU2NcPR4o9jEImooCeWJcYV/zLE=
-github.com/Azure/go-autorest/autorest/validation v0.1.0 h1:ISSNzGUh+ZSzizJWOWzs8bwpXIePbGLW4z/AmUFGH5A=
 github.com/Azure/go-autorest/autorest/validation v0.1.0/go.mod h1:Ha3z/SqBeaalWQvokg3NZAlQTalVMtOIAs1aGK7G6u8=
-github.com/Azure/go-autorest/logger v0.2.0/go.mod h1:T9E3cAhj2VqvPOtCYAvby9aBXkZmbF5NWuPV8+WeEW8=
-github.com/Azure/go-autorest/logger v0.2.1 h1:IG7i4p/mDa2Ce4TRyAO8IHnVhAVF3RFU+ZtXWSmf4Tg=
 github.com/Azure/go-autorest/logger v0.2.1/go.mod h1:T9E3cAhj2VqvPOtCYAvby9aBXkZmbF5NWuPV8+WeEW8=
-github.com/Azure/go-autorest/tracing v0.6.0 h1:TYi4+3m5t6K48TGI9AUdb+IzbnSxvnvUMfuitfgcfuo=
 github.com/Azure/go-autorest/tracing v0.6.0/go.mod h1:+vhtPC754Xsa23ID7GlGsrdKBpUA79WCAKPPZVC2DeU=
-github.com/BurntSushi/toml v0.3.1 h1:WXkYYl6Yr3qBf1K79EBnL4mak0OimBfB0XUf9Vl28OQ=
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
-github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802 h1:1BDTz0u9nC3//pOCMdNH+CiXJVYJh5UQNCOBG7jbELc=
 github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo=
-github.com/GoogleCloudPlatform/k8s-cloud-provider v0.0.0-20200415212048-7901bc822317 h1:JhyuWIqYrstW7KHMjk/fTqU0xtMpBOHuiTA2FVc7L4E=
-github.com/GoogleCloudPlatform/k8s-cloud-provider v0.0.0-20200415212048-7901bc822317/go.mod h1:DF8FZRxMHMGv/vP2lQP6h+dYzzjpuRn24VeRiYn3qjQ=
-github.com/JeffAshton/win_pdh v0.0.0-20161109143554-76bb4ee9f0ab h1:UKkYhof1njT1/xq4SEg5z+VpTgjmNeHwPGRQl7takDI=
+github.com/GoogleCloudPlatform/k8s-cloud-provider v1.16.1-0.20210702024009-ea6160c1d0e3/go.mod h1:8XasY4ymP2V/tn2OOV9ZadmiTE1FIB/h3W+yNlPttKw=
 github.com/JeffAshton/win_pdh v0.0.0-20161109143554-76bb4ee9f0ab/go.mod h1:3VYc5hodBMJ5+l/7J4xAyMeuM2PNuepvHlGs8yilUCA=
-github.com/MakeNowJust/heredoc v0.0.0-20170808103936-bb23615498cd h1:sjQovDkwrZp8u+gxLtPgKGjk5hCxuy2hrRejBTA9xFU=
 github.com/MakeNowJust/heredoc v0.0.0-20170808103936-bb23615498cd/go.mod h1:64YHyfSL2R96J44Nlwm39UHepQbyR5q10x7iYa1ks2E=
-github.com/Microsoft/go-winio v0.4.15-0.20190919025122-fc70bd9a86b5/go.mod h1:tTuCMEN+UleMWgg9dVx4Hu52b1bJo+59jBh3ajtinzw=
-github.com/Microsoft/go-winio v0.4.15 h1:qkLXKzb1QoVatRyd/YlXZ/Kg0m5K3SPuoD82jjSOaBc=
 github.com/Microsoft/go-winio v0.4.15/go.mod h1:tTuCMEN+UleMWgg9dVx4Hu52b1bJo+59jBh3ajtinzw=
-github.com/Microsoft/hcsshim v0.8.10-0.20200715222032-5eafd1556990 h1:1xpVY4dSUSbW3PcSGxZJhI8Z+CJiqbd933kM7HIinTc=
-github.com/Microsoft/hcsshim v0.8.10-0.20200715222032-5eafd1556990/go.mod h1:ay/0dTb7NsG8QMDfsRfLHgZo/6xAJShLe1+ePPflihk=
+github.com/Microsoft/go-winio v0.4.17/go.mod h1:JPGBdM1cNvN/6ISo+n8V5iA4v8pBzdOpzfwIujj1a84=
+github.com/Microsoft/hcsshim v0.8.22/go.mod h1:91uVCVzvX2QD16sMCenoxxXo6L1wJnLMX2PSufFMtF0=
 github.com/NYTimes/gziphandler v0.0.0-20170623195520-56545f4a5d46/go.mod h1:3wb06e3pkSAbeQ52E9H9iFoQsEEwGN64994WTCIhntQ=
-github.com/NYTimes/gziphandler v1.1.1 h1:ZUDjpQae29j0ryrS0u/B8HZfJBtBQHjqw2rQ2cqUQ3I=
 github.com/NYTimes/gziphandler v1.1.1/go.mod h1:n/CVRwUEOgIxrgPvAQhUUr9oeUtvrhMomdKFjzJNB0c=
-github.com/OneOfOne/xxhash v1.2.2 h1:KMrpdQIwFcEqXDklaen+P1axHaj9BSKzvpUUfnHldSE=
 github.com/OneOfOne/xxhash v1.2.2/go.mod h1:HSdplMjZKSmBqAxg5vPj2TmRDmfkzw+cTzAElWljhcU=
-github.com/PuerkitoBio/purell v1.1.0/go.mod h1:c11w/QuzBsJSee3cPx9rAFu61PvFxuPbtSwDGJws/X0=
-github.com/PuerkitoBio/purell v1.1.1 h1:WEQqlqaGbrPkxLJWfBwQmfEAE1Z7ONdDLqrN38tNFfI=
 github.com/PuerkitoBio/purell v1.1.1/go.mod h1:c11w/QuzBsJSee3cPx9rAFu61PvFxuPbtSwDGJws/X0=
-github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578 h1:d+Bc7a5rLufV/sSk/8dngufqelfh6jnri85riMAaF/M=
 github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578/go.mod h1:uGdkoq3SwY9Y+13GIhn11/XLaGBb4BfwItxLd5jeuXE=
-github.com/agnivade/levenshtein v1.0.1/go.mod h1:CURSv5d9Uaml+FovSIICkLbAUZ9S4RqaHDIsdSBg7lM=
-github.com/ajstarks/svgo v0.0.0-20180226025133-644b8db467af h1:wVe6/Ea46ZMeNkQjjBW6xcqyQA/j5e0D6GytH95g0gQ=
 github.com/ajstarks/svgo v0.0.0-20180226025133-644b8db467af/go.mod h1:K08gAheRH3/J6wwsYMMT4xOr94bZjxIelGM0+d/wbFw=
 github.com/alecthomas/template v0.0.0-20160405071501-a0175ee3bccc/go.mod h1:LOuyumcjzFXgccqObfd/Ljyb9UuFJ6TxHnclSeseNhc=
-github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751 h1:JYp7IbQjafoB+tBA3gMyHYHrpOtNuDiK/uB5uXxq5wM=
 github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751/go.mod h1:LOuyumcjzFXgccqObfd/Ljyb9UuFJ6TxHnclSeseNhc=
 github.com/alecthomas/units v0.0.0-20151022065526-2efee857e7cf/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
 github.com/alecthomas/units v0.0.0-20190717042225-c3de453c63f4/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
-github.com/alecthomas/units v0.0.0-20190924025748-f65c72e2690d h1:UQZhZ2O0vMHr2cI+DC1Mbh0TJxzA3RcLoMsFw+aXw7E=
 github.com/alecthomas/units v0.0.0-20190924025748-f65c72e2690d/go.mod h1:rBZYJk541a8SKzHPHnH3zbiI+7dagKZ0cgpgrD7Fyho=
-github.com/andreyvit/diff v0.0.0-20170406064948-c7f18ee00883/go.mod h1:rCTlJbsFo29Kk6CurOXKm700vrz8f0KW0JNfpkRJY/8=
-github.com/antihax/optional v1.0.0 h1:xK2lYat7ZLaVVcIuj82J8kIro4V6kDe0AUDFboUCwcg=
 github.com/antihax/optional v1.0.0/go.mod h1:uupD/76wgC+ih3iEmQUL+0Ugr19nfwCT1kdvxnR2qWY=
-github.com/armon/circbuf v0.0.0-20150827004946-bbbad097214e h1:QEF07wC0T1rKkctt1RINW/+RMTVmiwxETico2l3gxJA=
+github.com/antlr/antlr4/runtime/Go/antlr v0.0.0-20210826220005-b48c857c3a0e/go.mod h1:F7bn7fEU90QkQ3tnmaTx3LTKLEDqnwWODIYppRQ5hnY=
 github.com/armon/circbuf v0.0.0-20150827004946-bbbad097214e/go.mod h1:3U/XgcO3hCbHZ8TKRvWD2dDTCfh9M9ya+I9JpbB7O8o=
-github.com/armon/consul-api v0.0.0-20180202201655-eb2c6b5be1b6 h1:G1bPvciwNyF7IUmKXNt9Ak3m6u9DE1rF+RmtIkBpVdA=
 github.com/armon/consul-api v0.0.0-20180202201655-eb2c6b5be1b6/go.mod h1:grANhF5doyWs3UAsr3K4I6qtAmlQcZDesFNEHPZAzj8=
-github.com/armon/go-metrics v0.0.0-20180917152333-f0300d1749da h1:8GUt8eRujhVEGZFFEjBj46YV4rDjvGrNxb0KMWYkL2I=
 github.com/armon/go-metrics v0.0.0-20180917152333-f0300d1749da/go.mod h1:Q73ZrmVTwzkszR9V5SSuryQ31EELlFMUz1kKyl939pY=
-github.com/armon/go-radix v0.0.0-20180808171621-7fddfc383310 h1:BUAU3CGlLvorLI26FmByPp2eC2qla6E1Tw+scpcg/to=
 github.com/armon/go-radix v0.0.0-20180808171621-7fddfc383310/go.mod h1:ufUuZ+zHj4x4TnLV4JWEpy2hxWSpsRywHrMgIH9cCH8=
-github.com/asaskevich/govalidator v0.0.0-20180720115003-f9ffefc3facf/go.mod h1:lB+ZfQJz7igIIfQNfa7Ml4HSf2uFQQRzpGGRXenZAgY=
-github.com/asaskevich/govalidator v0.0.0-20190424111038-f61b66f89f4a h1:idn718Q4B6AGu/h5Sxe66HYVdqdGu2l9Iebqhi/AEoA=
 github.com/asaskevich/govalidator v0.0.0-20190424111038-f61b66f89f4a/go.mod h1:lB+ZfQJz7igIIfQNfa7Ml4HSf2uFQQRzpGGRXenZAgY=
-github.com/auth0/go-jwt-middleware v0.0.0-20170425171159-5493cabe49f7/go.mod h1:LWMyo4iOLWXHGdBki7NIht1kHru/0wM179h+d3g8ATM=
-github.com/auth0/go-jwt-middleware v1.0.1 h1:/fsQ4vRr4zod1wKReUH+0A3ySRjGiT9G34kypO/EKwI=
 github.com/auth0/go-jwt-middleware v1.0.1/go.mod h1:YSeUX3z6+TF2H+7padiEqNJ73Zy9vXW72U//IgN0BIM=
 github.com/aws/aws-sdk-go v1.35.24/go.mod h1:tlPOdRjfxPBpNIwqDj61rmsnA85v9jc0Ps9+muhnW+k=
-github.com/aws/aws-sdk-go v1.38.49 h1:E31vxjCe6a5I+mJLmUGaZobiWmg9KdWaud9IfceYeYQ=
 github.com/aws/aws-sdk-go v1.38.49/go.mod h1:hcU610XS61/+aQV88ixoOzUoG7v3b31pl2zKMmprdro=
-github.com/benbjohnson/clock v1.0.3 h1:vkLuvpK4fmtSCuo60+yC63p7y0BmQ8gm5ZXGuBCJyXg=
 github.com/benbjohnson/clock v1.0.3/go.mod h1:bGMdMPoPVvcYyt1gHDf4J2KE153Yf9BuiUKYMaxlTDM=
+github.com/benbjohnson/clock v1.1.0 h1:Q92kusRqC1XV2MjkWETPvjJVqKetz1OzxZB7mHJLju8=
+github.com/benbjohnson/clock v1.1.0/go.mod h1:J11/hYXuz8f4ySSvYwY0FKfm+ezbsZBKZxNJlLklBHA=
 github.com/beorn7/perks v0.0.0-20180321164747-3a771d992973/go.mod h1:Dwedo/Wpr24TaqPxmxbtue+5NUziq4I4S80YR8gNf3Q=
 github.com/beorn7/perks v1.0.0/go.mod h1:KWe93zE9D1o94FZ5RNwFwVgaQK1VOXiVxmqh+CedLV8=
 github.com/beorn7/perks v1.0.1 h1:VlbKKnNfV8bJzeqoa4cOKqO6bYr3WgKZxO8Z16+hsOM=
 github.com/beorn7/perks v1.0.1/go.mod h1:G2ZrVWU2WbWT9wwq4/hrbKbnv/1ERSJQ0ibhJ6rlkpw=
-github.com/bgentry/speakeasy v0.1.0 h1:ByYyxL9InA1OWqxJqqp2A5pYHUrCiAL6K3J+LKSsQkY=
 github.com/bgentry/speakeasy v0.1.0/go.mod h1:+zsyZBPWlz7T6j88CTgSN5bM796AkVf0kBD4zp0CCIs=
-github.com/bifurcation/mint v0.0.0-20180715133206-93c51c6ce115/go.mod h1:zVt7zX3K/aDCk9Tj+VM7YymsX66ERvzCJzw8rFCX2JU=
-github.com/bits-and-blooms/bitset v1.2.0 h1:Kn4yilvwNtMACtf1eYDlG8H77R07mZSPbMjLyS07ChA=
 github.com/bits-and-blooms/bitset v1.2.0/go.mod h1:gIdJ4wp64HaoK2YrL1Q5/N7Y16edYb8uY+O0FJTyyDA=
-github.com/bketelsen/crypt v0.0.3-0.20200106085610-5cbc8cc4026c h1:+0HFd5KSZ/mm3JmhmrDukiId5iR6w4+BdFtfSy4yWIc=
 github.com/bketelsen/crypt v0.0.3-0.20200106085610-5cbc8cc4026c/go.mod h1:MKsuJmJgSg28kpZDP6UIiPt0e0Oz0kqKNGyRaWEPv84=
+github.com/bketelsen/crypt v0.0.4/go.mod h1:aI6NrJ0pMGgvZKL1iVgXLnfIFJtfV+bKCoqOes/6LfM=
 github.com/blang/semver v3.5.0+incompatible/go.mod h1:kRBLl5iJ+tD4TcOOxsy/0fnwebNt5EWlYSAyrTnjyyk=
 github.com/blang/semver v3.5.1+incompatible h1:cQNTCjp13qL8KC3Nbxr/y2Bqb63oX6wdnnjpJbkM4JQ=
 github.com/blang/semver v3.5.1+incompatible/go.mod h1:kRBLl5iJ+tD4TcOOxsy/0fnwebNt5EWlYSAyrTnjyyk=
-github.com/boltdb/bolt v1.3.1 h1:JQmyP4ZBrce+ZQu0dY660FMfatumYDLun9hBCUVIkF4=
 github.com/boltdb/bolt v1.3.1/go.mod h1:clJnj/oiGkjum5o1McbSZDSLxVThjynRyGBgiAx27Ps=
-github.com/caddyserver/caddy v1.0.3/go.mod h1:G+ouvOY32gENkJC+jhgl62TyhvqEsFaDiZ4uw0RzP1E=
-github.com/cenkalti/backoff v2.1.1+incompatible/go.mod h1:90ReRw6GdpyfrHakVjL/QHaoyV4aDUVVkXQJJJ3NXXM=
-github.com/census-instrumentation/opencensus-proto v0.2.1 h1:glEXhBS5PSLLv4IXzLA5yPRVX4bilULVyxxbrfOtDAk=
 github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
 github.com/certifi/gocertifi v0.0.0-20191021191039-0944d244cd40/go.mod h1:sGbDF6GwGcLpkNXPUTkMRoywsNa/ol15pxFe6ERfguA=
-github.com/certifi/gocertifi v0.0.0-20200922220541-2c3bb06c6054 h1:uH66TXeswKn5PW5zdZ39xEwfS9an067BirqA+P4QaLI=
 github.com/certifi/gocertifi v0.0.0-20200922220541-2c3bb06c6054/go.mod h1:sGbDF6GwGcLpkNXPUTkMRoywsNa/ol15pxFe6ERfguA=
 github.com/cespare/xxhash v1.1.0 h1:a6HrQnmkObjyL+Gs60czilIUGqrzKutQD6XZog3p+ko=
 github.com/cespare/xxhash v1.1.0/go.mod h1:XrSqR1VqqWfGrhpAt58auRo0WTKS1nRRg3ghfAqPWnc=
 github.com/cespare/xxhash/v2 v2.1.1 h1:6MnRN8NT7+YBpUIWxHtefFZOKTAPgGjpQSxqLNn0+qY=
 github.com/cespare/xxhash/v2 v2.1.1/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
-github.com/chai2010/gettext-go v0.0.0-20160711120539-c6fed771bfd5 h1:7aWHqerlJ41y6FOsEUvknqgXnGmJyJSbjhAWq5pO4F8=
 github.com/chai2010/gettext-go v0.0.0-20160711120539-c6fed771bfd5/go.mod h1:/iP1qXHoty45bqomnu2LM+VVyAEdWN+vtSHGlQgyxbw=
-github.com/checkpoint-restore/go-criu/v4 v4.1.0/go.mod h1:xUQBLp4RLc5zJtWY++yjOoMoB5lihDt7fai+75m+rGw=
-github.com/checkpoint-restore/go-criu/v5 v5.0.0 h1:TW8f/UvntYoVDMN1K2HlT82qH1rb0sOjpGw3m6Ym+i4=
 github.com/checkpoint-restore/go-criu/v5 v5.0.0/go.mod h1:cfwC0EG7HMUenopBsUf9d89JlCLQIfgVcNsNN0t6T2M=
-github.com/cheekybits/genny v0.0.0-20170328200008-9127e812e1e9/go.mod h1:+tQajlRqAUrPI7DOSpB0XAqZYtQakVtB7wXkRAgjxjQ=
-github.com/chzyer/logex v1.1.10 h1:Swpa1K6QvQznwJRcfTfQJmTE72DqScAa40E+fbHEXEE=
 github.com/chzyer/logex v1.1.10/go.mod h1:+Ywpsq7O8HXn0nuIou7OrIPyXbp3wmkHB+jjWRnGsAI=
-github.com/chzyer/readline v0.0.0-20180603132655-2972be24d48e h1:fY5BOSpyZCqRo5OhCuC+XN+r/bBCmeuuJtjz+bCNIf8=
 github.com/chzyer/readline v0.0.0-20180603132655-2972be24d48e/go.mod h1:nSuG5e5PlCu98SY8svDHJxuZscDgtXS6KTTbou5AhLI=
-github.com/chzyer/test v0.0.0-20180213035817-a1ea475d72b1 h1:q763qf9huN11kDQavWsoZXJNW3xEE4JJyHa5Q25/sd8=
 github.com/chzyer/test v0.0.0-20180213035817-a1ea475d72b1/go.mod h1:Q3SI9o4m/ZMnBNeIyt5eFwwo7qiLfzFZmjNmxjkiQlU=
-github.com/cilium/ebpf v0.0.0-20200110133405-4032b1d8aae3/go.mod h1:MA5e5Lr8slmEg9bt0VpxxWqJlO4iwu3FBdHUzV7wQVg=
-github.com/cilium/ebpf v0.2.0/go.mod h1:To2CFviqOWL/M0gIMsvSMlqe7em/l1ALkX1PyjrX2Qs=
-github.com/cilium/ebpf v0.5.0/go.mod h1:4tRaxcgiL706VnOzHOdBlY8IEAIdxINsQBcU4xJJXRs=
-github.com/cilium/ebpf v0.6.2 h1:iHsfF/t4aW4heW2YKfeHrVPGdtYTL4C4KocpM8KTSnI=
+github.com/cilium/ebpf v0.4.0/go.mod h1:4tRaxcgiL706VnOzHOdBlY8IEAIdxINsQBcU4xJJXRs=
 github.com/cilium/ebpf v0.6.2/go.mod h1:4tRaxcgiL706VnOzHOdBlY8IEAIdxINsQBcU4xJJXRs=
-github.com/client9/misspell v0.3.4 h1:ta993UF76GwbvJcIo3Y68y/M3WxlpEHPWIGDkJYwzJI=
 github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw=
-github.com/clusterhq/flocker-go v0.0.0-20160920122132-2b8b7259d313 h1:eIHD9GNM3Hp7kcRW5mvcz7WTR3ETeoYYKwpgA04kaXE=
 github.com/clusterhq/flocker-go v0.0.0-20160920122132-2b8b7259d313/go.mod h1:P1wt9Z3DP8O6W3rvwCt0REIlshg1InHImaLW0t3ObY0=
 github.com/cncf/udpa/go v0.0.0-20191209042840-269d4d468f6f/go.mod h1:M8M6+tZqaGXZJjfX53e64911xZQV5JYwmTeXPW+k8Sc=
-github.com/cncf/udpa/go v0.0.0-20201120205902-5459f2c99403 h1:cqQfy1jclcSy/FwLjemeg3SR1yaINm74aQyupQ0Bl8M=
+github.com/cncf/udpa/go v0.0.0-20200629203442-efcf912fb354/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
 github.com/cncf/udpa/go v0.0.0-20201120205902-5459f2c99403/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
-github.com/cockroachdb/datadriven v0.0.0-20190809214429-80d97fb3cbaa h1:OaNxuTZr7kxeODyLWsRMC+OD03aFUH+mW6r2d+MWa5Y=
-github.com/cockroachdb/datadriven v0.0.0-20190809214429-80d97fb3cbaa/go.mod h1:zn76sxSg3SzpJ0PPJaLDCu+Bu0Lg3sKTORVIj19EIF8=
-github.com/cockroachdb/datadriven v0.0.0-20200714090401-bf6692d28da5 h1:xD/lrqdvwsc+O2bjSSi3YqY73Ke3LAiSCx49aCesA0E=
+github.com/cncf/xds/go v0.0.0-20210312221358-fbca930ec8ed/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cockroachdb/datadriven v0.0.0-20200714090401-bf6692d28da5/go.mod h1:h6jFvWxBdQXxjopDMZyH2UVceIRfR84bdzbkoKrsWNo=
-github.com/cockroachdb/errors v1.2.4 h1:Lap807SXTH5tri2TivECb/4abUkMZC9zRoLarvcKDqs=
 github.com/cockroachdb/errors v1.2.4/go.mod h1:rQD95gz6FARkaKkQXUksEje/d9a6wBJoCr5oaCLELYA=
-github.com/cockroachdb/logtags v0.0.0-20190617123548-eb05cc24525f h1:o/kfcElHqOiXqcou5a3rIlMc7oJbMQkeLk0VQJ7zgqY=
 github.com/cockroachdb/logtags v0.0.0-20190617123548-eb05cc24525f/go.mod h1:i/u985jwjWRlyHXQbwatDASoW0RMlZ/3i9yJHE2xLkI=
-github.com/container-storage-interface/spec v1.3.0/go.mod h1:6URME8mwIBbpVyZV93Ce5St17xBiQJQY67NDsuohiy4=
-github.com/container-storage-interface/spec v1.5.0 h1:lvKxe3uLgqQeVQcrnL2CPQKISoKjTJxojEs9cBk+HXo=
 github.com/container-storage-interface/spec v1.5.0/go.mod h1:8K96oQNkJ7pFcC2R9Z1ynGGBB1I93kcS6PGg3SsOk8s=
-github.com/containerd/cgroups v0.0.0-20200531161412-0dbf7f05ba59 h1:qWj4qVYZ95vLWwqyNJCQg7rDsG5wPdze0UaPolH7DUk=
-github.com/containerd/cgroups v0.0.0-20200531161412-0dbf7f05ba59/go.mod h1:pA0z1pT8KYB3TCXK/ocprsh7MAkoW8bZVzPdih9snmM=
-github.com/containerd/console v0.0.0-20180822173158-c12b1e7919c1/go.mod h1:Tj/on1eG8kiEhd0+fhSDzsPAFESxzBBvdyEgyryXffw=
+github.com/containerd/cgroups v1.0.1/go.mod h1:0SJrPIenamHDcZhEcJMNBB85rHcUsw4f25ZfBiPYRkU=
 github.com/containerd/console v1.0.1/go.mod h1:XUsP6YE/mKtz6bxc+I8UiKKTP04qjQL4qcS3XoQ5xkw=
-github.com/containerd/console v1.0.2 h1:Pi6D+aZXM+oUw1czuKgH5IJ+y0jhYcwBJfx5/Ghn9dE=
 github.com/containerd/console v1.0.2/go.mod h1:ytZPjGgY2oeTkAONYafi2kSj0aYggsf8acV1PGKCbzQ=
-github.com/containerd/containerd v1.3.2/go.mod h1:bC6axHOhabU15QhwfG7w5PipXdVtMXFTttgp+kVtyUA=
-github.com/containerd/containerd v1.4.4 h1:rtRG4N6Ct7GNssATwgpvMGfnjnwfjnu/Zs9W3Ikzq+M=
-github.com/containerd/containerd v1.4.4/go.mod h1:bC6axHOhabU15QhwfG7w5PipXdVtMXFTttgp+kVtyUA=
-github.com/containerd/continuity v0.0.0-20190426062206-aaeac12a7ffc h1:TP+534wVlf61smEIq1nwLLAjQVEK2EADoW3CX9AuT+8=
-github.com/containerd/continuity v0.0.0-20190426062206-aaeac12a7ffc/go.mod h1:GL3xCUCBDV3CZiTSEKksMWbLE66hEyuu9qyDOOqM47Y=
-github.com/containerd/fifo v0.0.0-20190226154929-a9fb20d87448 h1:PUD50EuOMkXVcpBIA/R95d56duJR9VxhwncsFbNnxW4=
-github.com/containerd/fifo v0.0.0-20190226154929-a9fb20d87448/go.mod h1:ODA38xgv3Kuk8dQz2ZQXpnv/UZZUHUCL7pnLehbXgQI=
-github.com/containerd/go-runc v0.0.0-20180907222934-5a6d9f37cfa3 h1:esQOJREg8nw8aXj6uCN5dfW5cKUBiEJ/+nni1Q/D/sw=
-github.com/containerd/go-runc v0.0.0-20180907222934-5a6d9f37cfa3/go.mod h1:IV7qH3hrUgRmyYrtgEeGWJfWbgcHL9CSRruz2Vqcph0=
-github.com/containerd/ttrpc v0.0.0-20190828154514-0e0f228740de/go.mod h1:PvCDdDGpgqzQIzDW1TphrGLssLDZp2GuS+X5DkEJB8o=
-github.com/containerd/ttrpc v1.0.2 h1:2/O3oTZN36q2xRolk0a2WWGgh7/Vf/liElg5hFYLX9U=
+github.com/containerd/containerd v1.4.9/go.mod h1:bC6axHOhabU15QhwfG7w5PipXdVtMXFTttgp+kVtyUA=
+github.com/containerd/containerd v1.4.11/go.mod h1:bC6axHOhabU15QhwfG7w5PipXdVtMXFTttgp+kVtyUA=
+github.com/containerd/continuity v0.1.0/go.mod h1:ICJu0PwR54nI0yPEnJ6jcS+J7CZAUXrLh8lPo2knzsM=
+github.com/containerd/fifo v1.0.0/go.mod h1:ocF/ME1SX5b1AOlWi9r677YJmCPSwwWnQ9O123vzpE4=
+github.com/containerd/go-runc v1.0.0/go.mod h1:cNU0ZbCgCQVZK4lgG3P+9tn9/PaJNmoDXPpoJhDR+Ok=
 github.com/containerd/ttrpc v1.0.2/go.mod h1:UAxOpgT9ziI0gJrmKvgcZivgxOp8iFPSk8httJEt98Y=
-github.com/containerd/typeurl v0.0.0-20180627222232-a93fcdb778cd/go.mod h1:Cm3kwCdlkCfMSHURc+r6fwoGH6/F1hH3S4sg0rLFWPc=
-github.com/containerd/typeurl v1.0.1 h1:PvuK4E3D5S5q6IqsPDCy928FhP0LUIGcmZ/Yhgp5Djw=
-github.com/containerd/typeurl v1.0.1/go.mod h1:TB1hUtrpaiO88KEK56ijojHS1+NeF0izUACaJW2mdXg=
-github.com/containernetworking/cni v0.8.0/go.mod h1:LGwApLUm2FpoOfxTDEeq8T9ipbpZ61X79hmU3w8FmsY=
-github.com/containernetworking/cni v0.8.1 h1:7zpDnQ3T3s4ucOuJ/ZCLrYBxzkg0AELFfII3Epo9TmI=
+github.com/containerd/typeurl v1.0.2/go.mod h1:9trJWW2sRlGub4wZJRTW83VtbOLS6hwcDZXTn6oPz9s=
 github.com/containernetworking/cni v0.8.1/go.mod h1:LGwApLUm2FpoOfxTDEeq8T9ipbpZ61X79hmU3w8FmsY=
-github.com/coredns/caddy v1.1.0 h1:ezvsPrT/tA/7pYDBZxu0cT0VmWk75AfIaf6GSYCNMf0=
 github.com/coredns/caddy v1.1.0/go.mod h1:A6ntJQlAWuQfFlsd9hvigKbo2WS0VUs2l1e2F+BawD4=
-github.com/coredns/corefile-migration v1.0.11/go.mod h1:RMy/mXdeDlYwzt0vdMEJvT2hGJ2I86/eO0UdXmH9XNI=
-github.com/coredns/corefile-migration v1.0.12 h1:TJGATo0YLQJVIKJZLajXE1IrhRFtYTR1cYsGIT1YNEk=
-github.com/coredns/corefile-migration v1.0.12/go.mod h1:NJOI8ceUF/NTgEwtjD+TUq3/BnH/GF7WAM3RzCa3hBo=
-github.com/coreos/bbolt v1.3.2 h1:wZwiHHUieZCquLkDL0B8UhzreNWsPHooDAG3q34zk0s=
+github.com/coredns/corefile-migration v1.0.14/go.mod h1:XnhgULOEouimnzgn0t4WPuFDN2/PJQcTxdWKC5eXNGE=
 github.com/coreos/bbolt v1.3.2/go.mod h1:iRUV2dpdMOn7Bo10OQBFzIJO9kkE559Wcmn+qkEiiKk=
 github.com/coreos/etcd v3.3.10+incompatible/go.mod h1:uF7uidLiAD3TWHmW31ZFd/JWoc32PjwdhPthX9715RE=
-github.com/coreos/etcd v3.3.13+incompatible h1:8F3hqu9fGYLBifCmRCJsicFqDx/D68Rt3q1JMazcgBQ=
 github.com/coreos/etcd v3.3.13+incompatible/go.mod h1:uF7uidLiAD3TWHmW31ZFd/JWoc32PjwdhPthX9715RE=
-github.com/coreos/go-oidc v2.1.0+incompatible h1:sdJrfw8akMnCuUlaZU3tE/uYXFgfqom8DBE9so9EBsM=
 github.com/coreos/go-oidc v2.1.0+incompatible/go.mod h1:CgnwVTmzoESiwO9qyAFEMiHoZ1nMCKZlZ9V6mm3/LKc=
 github.com/coreos/go-semver v0.2.0/go.mod h1:nnelYz7RCh+5ahJtPPxZlU+153eP4D4r3EedlOD2RNk=
 github.com/coreos/go-semver v0.3.0 h1:wkHLiw0WNATZnSG7epLsujiMCgPAc9xhjJ4tgnAxmfM=
 github.com/coreos/go-semver v0.3.0/go.mod h1:nnelYz7RCh+5ahJtPPxZlU+153eP4D4r3EedlOD2RNk=
-github.com/coreos/go-systemd v0.0.0-20180511133405-39ca1b05acc7/go.mod h1:F5haX7vjVVG0kc13fIWeqUViNPyEJxv/OmvnBo0Yme4=
 github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e h1:Wf6HqHfScWJN9/ZjdUKyjop4mf3Qdd+1TvvltAvM3m8=
 github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e/go.mod h1:F5haX7vjVVG0kc13fIWeqUViNPyEJxv/OmvnBo0Yme4=
-github.com/coreos/go-systemd/v22 v22.0.0/go.mod h1:xO0FLkIi5MaZafQlIrOotqXZ90ih+1atmu1JpKERPPk=
 github.com/coreos/go-systemd/v22 v22.1.0/go.mod h1:xO0FLkIi5MaZafQlIrOotqXZ90ih+1atmu1JpKERPPk=
-github.com/coreos/go-systemd/v22 v22.3.1/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc=
 github.com/coreos/go-systemd/v22 v22.3.2 h1:D9/bQk5vlXQFZ6Kwuu6zaiXJ9oTPe68++AzAJc1DzSI=
 github.com/coreos/go-systemd/v22 v22.3.2/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc=
-github.com/coreos/pkg v0.0.0-20160727233714-3ac0863d7acf/go.mod h1:E3G3o1h8I7cfcXa63jLwjI0eiQQMgzzUDFVpN/nH/eA=
-github.com/coreos/pkg v0.0.0-20180928190104-399ea9e2e55f h1:lBNOc5arjvs8E5mO2tbpBpLoyyu8B6e44T7hJy6potg=
 github.com/coreos/pkg v0.0.0-20180928190104-399ea9e2e55f/go.mod h1:E3G3o1h8I7cfcXa63jLwjI0eiQQMgzzUDFVpN/nH/eA=
 github.com/cpuguy83/go-md2man/v2 v2.0.0-20190314233015-f79a8a8ca69d/go.mod h1:maD7wRr/U5Z6m/iR4s+kqSMx2CaBsrgA7czyZG/E6dU=
-github.com/cpuguy83/go-md2man/v2 v2.0.0 h1:EoUDS0afbrsXAZ9YQ9jdu/mZ2sXgT1/2yyNng4PGlyM=
 github.com/cpuguy83/go-md2man/v2 v2.0.0/go.mod h1:maD7wRr/U5Z6m/iR4s+kqSMx2CaBsrgA7czyZG/E6dU=
-github.com/creack/pty v1.1.7/go.mod h1:lj5s0c3V2DBrqTV7llrYr5NG6My20zk30Fl46Y7DoTY=
 github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
-github.com/creack/pty v1.1.11 h1:07n33Z8lZxZ2qwegKbObQohDhXDQxiMMz1NOUGYlesw=
 github.com/creack/pty v1.1.11/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
 github.com/cyphar/filepath-securejoin v0.2.2 h1:jCwT2GTP+PY5nBz3c/YL5PAIbusElVrPujOBSCj8xRg=
 github.com/cyphar/filepath-securejoin v0.2.2/go.mod h1:FpkQEhXnPnOthhzymB7CGsFk2G9VLXONKD9G7QGMM+4=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
-github.com/daviddengcn/go-colortext v0.0.0-20160507010035-511bcaf42ccd h1:uVsMphB1eRx7xB1njzL3fuMdWRN8HtVzoUOItHMwv5c=
 github.com/daviddengcn/go-colortext v0.0.0-20160507010035-511bcaf42ccd/go.mod h1:dv4zxwHi5C/8AeI+4gX4dCWOIvNi7I6JCSX0HvlKPgE=
-github.com/dgrijalva/jwt-go v3.2.0+incompatible h1:7qlOGliEKZXTDg6OTjfoBKDXWrumCAMpl/TFQ4/5kLM=
 github.com/dgrijalva/jwt-go v3.2.0+incompatible/go.mod h1:E3ru+11k8xSBh+hMPgOLZmtrrCbhqsmaPHjLKYnJCaQ=
-github.com/dgryski/go-sip13 v0.0.0-20181026042036-e10d5fee7954 h1:RMLoZVzv4GliuWafOuPuQDKSm1SJph7uCRnnS61JAn4=
 github.com/dgryski/go-sip13 v0.0.0-20181026042036-e10d5fee7954/go.mod h1:vAd38F8PWV+bWy6jNmig1y/TA+kYO4g3RSRF0IAv0no=
-github.com/dnaeon/go-vcr v1.0.1 h1:r8L/HqC0Hje5AXMu1ooW8oyQyOFv4GxqpL0nRP7SLLY=
 github.com/dnaeon/go-vcr v1.0.1/go.mod h1:aBB1+wY4s93YsC3HHjMBMrwTj2R9FHDzUr9KyGc8n1E=
-github.com/docker/distribution v2.7.1-0.20190205005809-0d3efadf0154+incompatible/go.mod h1:J2gT2udsDAN96Uj4KfcMRqY0/ypR+oyYUYmja8H+y+w=
 github.com/docker/distribution v2.7.1+incompatible h1:a5mlkVzth6W5A4fOsS3D2EO5BUmsJpcB+cRlLU7cSug=
 github.com/docker/distribution v2.7.1+incompatible/go.mod h1:J2gT2udsDAN96Uj4KfcMRqY0/ypR+oyYUYmja8H+y+w=
-github.com/docker/docker v20.10.2+incompatible h1:vFgEHPqWBTp4pTjdLwjAA4bSo3gvIGOYwuJTlEjVBCw=
-github.com/docker/docker v20.10.2+incompatible/go.mod h1:eEKB0N0r5NX/I1kEveEz05bcu8tLC/8azJZsviup8Sk=
-github.com/docker/go-connections v0.4.0 h1:El9xVISelRB7BuFusrZozjnkIM5YnzCViNKohAFqRJQ=
+github.com/docker/docker v20.10.7+incompatible/go.mod h1:eEKB0N0r5NX/I1kEveEz05bcu8tLC/8azJZsviup8Sk=
 github.com/docker/go-connections v0.4.0/go.mod h1:Gbd7IOopHjR8Iph03tsViu4nIes5XhDvyHbTtUxmeec=
-github.com/docker/go-units v0.3.3/go.mod h1:fgPhTUdO+D/Jk86RDLlptpiXQzgHJF7gydDDbaIK4Dk=
-github.com/docker/go-units v0.4.0 h1:3uh0PgVws3nIA0Q+MwDC8yjEPf9zjRfZZWXZYDct3Tw=
 github.com/docker/go-units v0.4.0/go.mod h1:fgPhTUdO+D/Jk86RDLlptpiXQzgHJF7gydDDbaIK4Dk=
-github.com/docopt/docopt-go v0.0.0-20180111231733-ee0de3bc6815 h1:bWDMxwH3px2JBh6AyO7hdCn/PkvCZXii8TGj7sbtEbQ=
 github.com/docopt/docopt-go v0.0.0-20180111231733-ee0de3bc6815/go.mod h1:WwZ+bS3ebgob9U8Nd0kOddGdZWjyMGR8Wziv+TBNwSE=
-github.com/dustin/go-humanize v0.0.0-20171111073723-bb3d318650d4/go.mod h1:HtrtbFcZ19U5GC7JDqmcUSB87Iq5E25KnS6fMYU6eOk=
 github.com/dustin/go-humanize v1.0.0 h1:VSnTsYCnlFHaM2/igO1h6X3HA71jcobQuxemgkq4zYo=
 github.com/dustin/go-humanize v1.0.0/go.mod h1:HtrtbFcZ19U5GC7JDqmcUSB87Iq5E25KnS6fMYU6eOk=
-github.com/elazarl/goproxy v0.0.0-20180725130230-947c36da3153 h1:yUdfgN0XgIJw7foRItutHYUIhlcKzcSf5vDpdhQAKTc=
 github.com/elazarl/goproxy v0.0.0-20180725130230-947c36da3153/go.mod h1:/Zj4wYkgs4iZTTu3o/KG3Itv/qCCa8VVMlb3i9OVuzc=
 github.com/emicklei/go-restful v0.0.0-20170410110728-ff4f55a20633/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
-github.com/emicklei/go-restful v2.9.5+incompatible h1:spTtZBk5DYEvbxMVutUuTyh1Ao2r4iyvLdACqsl/Ljk=
 github.com/emicklei/go-restful v2.9.5+incompatible/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
 github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.4/go.mod h1:6rpuAdCZL397s3pYoYcLgu1mIlRU8Am5FuJP05cCM98=
+github.com/envoyproxy/go-control-plane v0.9.7/go.mod h1:cwu0lG7PUMfa9snN8LXBig5ynNVH9qI8YYLbd1fK2po=
 github.com/envoyproxy/go-control-plane v0.9.9-0.20201210154907-fd9021fe5dad/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
-github.com/envoyproxy/go-control-plane v0.9.9-0.20210217033140-668b12f5399d h1:QyzYnTnPE15SQyUeqU6qLbWxMkwyAyu+vGksa0b7j00=
 github.com/envoyproxy/go-control-plane v0.9.9-0.20210217033140-668b12f5399d/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
-github.com/envoyproxy/protoc-gen-validate v0.1.0 h1:EQciDnbrYxy13PgWoY8AqoxGiPrpgBZ1R8UNe3ddc+A=
+github.com/envoyproxy/go-control-plane v0.9.9-0.20210512163311-63b5d3c536b0/go.mod h1:hliV/p42l8fGbc6Y9bQ70uLwIvmJyVE5k4iMKlh8wCQ=
 github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c=
-github.com/euank/go-kmsg-parser v2.0.0+incompatible h1:cHD53+PLQuuQyLZeriD1V/esuG4MuU0Pjs5y6iknohY=
 github.com/euank/go-kmsg-parser v2.0.0+incompatible/go.mod h1:MhmAMZ8V4CYH4ybgdRwPr2TU5ThnS43puaKEMpja1uw=
-github.com/evanphx/json-patch v4.5.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
-github.com/evanphx/json-patch v4.9.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
-github.com/evanphx/json-patch v4.11.0+incompatible h1:glyUF9yIYtMHzn8xaKw5rMhdWcwsYV8dZHIq5567/xs=
 github.com/evanphx/json-patch v4.11.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
-github.com/exponent-io/jsonpath v0.0.0-20151013193312-d6023ce2651d h1:105gxyaGwCFad8crR9dcMQWvV9Hvulu6hwUh4tWPJnM=
+github.com/evanphx/json-patch v4.12.0+incompatible h1:4onqiflcdA9EOZ4RxV643DvftH5pOlLGNtQ5lPWQu84=
+github.com/evanphx/json-patch v4.12.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
 github.com/exponent-io/jsonpath v0.0.0-20151013193312-d6023ce2651d/go.mod h1:ZZMPRZwes7CROmyNKgQzC3XPs6L/G2EJLHddWejkmf4=
-github.com/fatih/camelcase v1.0.0 h1:hxNvNX/xYBp0ovncs8WyWZrOrpBNub/JfaMvbURyft8=
 github.com/fatih/camelcase v1.0.0/go.mod h1:yN2Sb0lFhZJUdVvtELVWefmrXpuZESvPmqwoZc+/fpc=
-github.com/fatih/color v1.7.0 h1:DkWD4oS2D8LGGgTQ6IvwJJXSL5Vp2ffcQg58nFV38Ys=
 github.com/fatih/color v1.7.0/go.mod h1:Zm6kSWBoL9eyXnKyktHP6abPY2pDugNf5KwzbycvMj4=
 github.com/felixge/httpsnoop v1.0.1 h1:lvB5Jl89CsZtGIWuTcDM1E/vkVs49/Ml7JJe07l8SPQ=
 github.com/felixge/httpsnoop v1.0.1/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
-github.com/flynn/go-shlex v0.0.0-20150515145356-3f9db97f8568 h1:BHsljHzVlRcyQhjrss6TZTdY2VfCqZPbv5k3iBFa2ZQ=
 github.com/flynn/go-shlex v0.0.0-20150515145356-3f9db97f8568/go.mod h1:xEzjJPgXI435gkrCt3MPfRiAkVrwSbHsst4LCFVfpJc=
-github.com/fogleman/gg v1.2.1-0.20190220221249-0403632d5b90 h1:WXb3TSNmHp2vHoCroCIB1foO/yQ36swABL8aOVeDpgg=
 github.com/fogleman/gg v1.2.1-0.20190220221249-0403632d5b90/go.mod h1:R/bRT+9gY/C5z7JzPU0zXsXHKM4/ayA+zqcVNZzPa1k=
 github.com/form3tech-oss/jwt-go v3.2.2+incompatible/go.mod h1:pbq4aXjuKjdthFRnoDwaVPLA+WlJuPGy+QneDUgJi2k=
 github.com/form3tech-oss/jwt-go v3.2.3+incompatible h1:7ZaBxOI7TMoYBfyA3cQHErNNyAWIKUMIwqxEtgHOs5c=
 github.com/form3tech-oss/jwt-go v3.2.3+incompatible/go.mod h1:pbq4aXjuKjdthFRnoDwaVPLA+WlJuPGy+QneDUgJi2k=
-github.com/frankban/quicktest v1.11.3 h1:8sXhOn0uLys67V8EsXLc6eszDs8VXWxL3iRvebPhedY=
 github.com/frankban/quicktest v1.11.3/go.mod h1:wRf/ReqHper53s+kmmSZizM8NamnL3IM0I9ntUbOk+k=
 github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
 github.com/fsnotify/fsnotify v1.4.9 h1:hsms1Qyu0jgnwNXIxa+/V/PDsU6CfLf6CNO8H7IWoS4=
 github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
-github.com/fvbommel/sortorder v1.0.1 h1:dSnXLt4mJYH25uDDGa3biZNQsozaUWDSWeKJ0qqFfzE=
 github.com/fvbommel/sortorder v1.0.1/go.mod h1:uk88iVf1ovNn1iLfgUVU2F9o5eO30ui720w+kxuqRs0=
-github.com/getsentry/raven-go v0.2.0 h1:no+xWJRb5ZI7eE8TWgIq1jLulQiIoLG0IfYxv5JYMGs=
+github.com/getkin/kin-openapi v0.76.0/go.mod h1:660oXbgy5JFMKreazJaQTw7o+X00qeSyhcnluiMv+Xg=
 github.com/getsentry/raven-go v0.2.0/go.mod h1:KungGk8q33+aIAZUIVWZDr2OfAEBsO49PX4NzFV5kcQ=
-github.com/ghodss/yaml v1.0.0 h1:wQHKEahhL6wmXdzwWG11gIVCkOv05bNOh+Rxn0yngAk=
 github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04=
-github.com/globalsign/mgo v0.0.0-20180905125535-1ca0a4f7cbcb/go.mod h1:xkRDCp4j0OGD1HRkm4kmhM+pmpv3AKq5SU7GMg4oO/Q=
-github.com/globalsign/mgo v0.0.0-20181015135952-eeefdecb41b8/go.mod h1:xkRDCp4j0OGD1HRkm4kmhM+pmpv3AKq5SU7GMg4oO/Q=
-github.com/go-acme/lego v2.5.0+incompatible/go.mod h1:yzMNe9CasVUhkquNvti5nAtPmG94USbYxYrZfTkIn0M=
-github.com/go-bindata/go-bindata v3.1.1+incompatible/go.mod h1:xK8Dsgwmeed+BBsSy2XTopBn/8uK2HWuGSnA11C3Joo=
-github.com/go-errors/errors v1.0.1 h1:LUHzmkK3GUKUrL/1gfBUxAHzcev3apQlezX/+O7ma6w=
 github.com/go-errors/errors v1.0.1/go.mod h1:f4zRHt4oKfwPJE5k8C9vpYG+aDHdBFUsgrm6/TyX73Q=
-github.com/go-gl/glfw v0.0.0-20190409004039-e6da0acd62b1 h1:QbL/5oDUmRBzO9/Z7Seo6zf912W/a6Sr4Eu0G/3Jho0=
 github.com/go-gl/glfw v0.0.0-20190409004039-e6da0acd62b1/go.mod h1:vR7hzQXu2zJy9AVAgeJqvqgH9Q5CA+iKCZ2gyEVpxRU=
 github.com/go-gl/glfw/v3.3/glfw v0.0.0-20191125211704-12ad95a8df72/go.mod h1:tQ2UAYgL5IevRw8kRxooKSPJfGvJ9fJQFa0TUsXzTg8=
-github.com/go-gl/glfw/v3.3/glfw v0.0.0-20200222043503-6f7a984d4dc4 h1:WtGNWLvXpe6ZudgnXrq0barxBImvnnJoMEhXAzcbM0I=
 github.com/go-gl/glfw/v3.3/glfw v0.0.0-20200222043503-6f7a984d4dc4/go.mod h1:tQ2UAYgL5IevRw8kRxooKSPJfGvJ9fJQFa0TUsXzTg8=
 github.com/go-kit/kit v0.8.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2as=
-github.com/go-kit/kit v0.9.0 h1:wDJmvq38kDhkVxi50ni9ykkdUr1PKgqKOoi01fa0Mdk=
 github.com/go-kit/kit v0.9.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2as=
-github.com/go-kit/log v0.1.0 h1:DGJh0Sm43HbOeYDNnVZFl8BvcYVvjD5bqYJvp0REbwQ=
 github.com/go-kit/log v0.1.0/go.mod h1:zbhenjAZHb184qTLMA9ZjW7ThYL0H2mk7Q6pNt4vbaY=
 github.com/go-logfmt/logfmt v0.3.0/go.mod h1:Qt1PoO58o5twSAckw1HlFXLmHsOX5/0LbT9GBnD5lWE=
 github.com/go-logfmt/logfmt v0.4.0/go.mod h1:3RMwSq7FuexP4Kalkev3ejPJsZTpXXBr9+V4qmtdjCk=
-github.com/go-logfmt/logfmt v0.5.0 h1:TrB8swr/68K7m9CcGut2g3UOihhbcbiMAYiuTXdEih4=
 github.com/go-logfmt/logfmt v0.5.0/go.mod h1:wCYkCAKZfumFQihp8CzCvQ3paCTfi41vtzG1KdI/P7A=
 github.com/go-logr/logr v0.1.0/go.mod h1:ixOQHD9gLJUVQQ2ZOR7zLEifBX6tGkNJF4QyIY7sIas=
 github.com/go-logr/logr v0.2.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
-github.com/go-logr/logr v0.4.0 h1:K7/B1jt6fIBQVd4Owv2MqGQClcgf0R266+7C/QjRcLc=
-github.com/go-logr/logr v0.4.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
-github.com/go-openapi/analysis v0.0.0-20180825180245-b006789cd277/go.mod h1:k70tL6pCuVxPJOHXQ+wIac1FUrvNkHolPie/cLEU6hI=
-github.com/go-openapi/analysis v0.17.0/go.mod h1:IowGgpVeD0vNm45So8nr+IcQ3pxVtpRoBWb8PVZO0ik=
-github.com/go-openapi/analysis v0.18.0/go.mod h1:IowGgpVeD0vNm45So8nr+IcQ3pxVtpRoBWb8PVZO0ik=
-github.com/go-openapi/analysis v0.19.2/go.mod h1:3P1osvZa9jKjb8ed2TPng3f0i/UY9snX6gxi44djMjk=
-github.com/go-openapi/analysis v0.19.5/go.mod h1:hkEAkxagaIvIP7VTn8ygJNkd4kAYON2rCu0v0ObL0AU=
-github.com/go-openapi/errors v0.17.0/go.mod h1:LcZQpmvG4wyF5j4IhA73wkLFQg+QJXOQHVjmcZxhka0=
-github.com/go-openapi/errors v0.18.0/go.mod h1:LcZQpmvG4wyF5j4IhA73wkLFQg+QJXOQHVjmcZxhka0=
-github.com/go-openapi/errors v0.19.2/go.mod h1:qX0BLWsyaKfvhluLejVpVNwNRdXZhEbTA4kxxpKBC94=
-github.com/go-openapi/jsonpointer v0.17.0/go.mod h1:cOnomiV+CVVwFLk0A/MExoFMjwdsUdVpsRhURCKh+3M=
-github.com/go-openapi/jsonpointer v0.18.0/go.mod h1:cOnomiV+CVVwFLk0A/MExoFMjwdsUdVpsRhURCKh+3M=
-github.com/go-openapi/jsonpointer v0.19.2/go.mod h1:3akKfEdA7DF1sugOqz1dVQHBcuDBPKZGEoHC/NkiQRg=
+github.com/go-logr/logr v1.2.0 h1:QK40JKJyMdUDz+h+xvCsru/bJhvG0UxvePV0ufL/AcE=
+github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
+github.com/go-logr/zapr v1.2.0/go.mod h1:Qa4Bsj2Vb+FAVeAKsLD8RLQ+YRJB8YDmOAKxaBQf7Ro=
 github.com/go-openapi/jsonpointer v0.19.3/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
-github.com/go-openapi/jsonpointer v0.19.5 h1:gZr+CIYByUqjcgeLXnQu2gHYQC9o73G2XUeOFYEICuY=
 github.com/go-openapi/jsonpointer v0.19.5/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
-github.com/go-openapi/jsonreference v0.17.0/go.mod h1:g4xxGn04lDIRh0GJb5QlpE3HfopLOL6uZrK/VgnsK9I=
-github.com/go-openapi/jsonreference v0.18.0/go.mod h1:g4xxGn04lDIRh0GJb5QlpE3HfopLOL6uZrK/VgnsK9I=
-github.com/go-openapi/jsonreference v0.19.2/go.mod h1:jMjeRr2HHw6nAVajTXJ4eiUwohSTlpa0o73RUL1owJc=
 github.com/go-openapi/jsonreference v0.19.3/go.mod h1:rjx6GuL8TTa9VaixXglHmQmIL98+wF9xc8zWvFonSJ8=
-github.com/go-openapi/jsonreference v0.19.5 h1:1WJP/wi4OjB4iV8KVbH73rQaoialJrqv8gitZLxGLtM=
 github.com/go-openapi/jsonreference v0.19.5/go.mod h1:RdybgQwPxbL4UEjuAruzK1x3nE69AqPYEJeo/TWfEeg=
-github.com/go-openapi/loads v0.17.0/go.mod h1:72tmFy5wsWx89uEVddd0RjRWPZm92WRLhf7AC+0+OOU=
-github.com/go-openapi/loads v0.18.0/go.mod h1:72tmFy5wsWx89uEVddd0RjRWPZm92WRLhf7AC+0+OOU=
-github.com/go-openapi/loads v0.19.0/go.mod h1:72tmFy5wsWx89uEVddd0RjRWPZm92WRLhf7AC+0+OOU=
-github.com/go-openapi/loads v0.19.2/go.mod h1:QAskZPMX5V0C2gvfkGZzJlINuP7Hx/4+ix5jWFxsNPs=
-github.com/go-openapi/loads v0.19.4/go.mod h1:zZVHonKd8DXyxyw4yfnVjPzBjIQcLt0CCsn0N0ZrQsk=
-github.com/go-openapi/runtime v0.0.0-20180920151709-4f900dc2ade9/go.mod h1:6v9a6LTXWQCdL8k1AO3cvqx5OtZY/Y9wKTgaoP6YRfA=
-github.com/go-openapi/runtime v0.19.0/go.mod h1:OwNfisksmmaZse4+gpV3Ne9AyMOlP1lt4sK4FXt0O64=
-github.com/go-openapi/runtime v0.19.4/go.mod h1:X277bwSUBxVlCYR3r7xgZZGKVvBd/29gLDlFGtJ8NL4=
-github.com/go-openapi/spec v0.17.0/go.mod h1:XkF/MOi14NmjsfZ8VtAKf8pIlbZzyoTvZsdfssdxcBI=
-github.com/go-openapi/spec v0.18.0/go.mod h1:XkF/MOi14NmjsfZ8VtAKf8pIlbZzyoTvZsdfssdxcBI=
-github.com/go-openapi/spec v0.19.2/go.mod h1:sCxk3jxKgioEJikev4fgkNmwS+3kuYdJtcsZsD5zxMY=
-github.com/go-openapi/spec v0.19.3/go.mod h1:FpwSN1ksY1eteniUU7X0N/BgJ7a4WvBFVA8Lj9mJglo=
-github.com/go-openapi/spec v0.19.5/go.mod h1:Hm2Jr4jv8G1ciIAo+frC/Ft+rR2kQDh8JHKHb3gWUSk=
-github.com/go-openapi/strfmt v0.17.0/go.mod h1:P82hnJI0CXkErkXi8IKjPbNBM6lV6+5pLP5l494TcyU=
-github.com/go-openapi/strfmt v0.18.0/go.mod h1:P82hnJI0CXkErkXi8IKjPbNBM6lV6+5pLP5l494TcyU=
-github.com/go-openapi/strfmt v0.19.0/go.mod h1:+uW+93UVvGGq2qGaZxdDeJqSAqBqBdl+ZPMF/cC8nDY=
-github.com/go-openapi/strfmt v0.19.3/go.mod h1:0yX7dbo8mKIvc3XSKp7MNfxw4JytCfCD6+bY1AVL9LU=
-github.com/go-openapi/strfmt v0.19.5/go.mod h1:eftuHTlB/dI8Uq8JJOyRlieZf+WkkxUuk0dgdHXr2Qk=
-github.com/go-openapi/swag v0.17.0/go.mod h1:AByQ+nYG6gQg71GINrmuDXCPWdL640yX49/kXLo40Tg=
-github.com/go-openapi/swag v0.18.0/go.mod h1:AByQ+nYG6gQg71GINrmuDXCPWdL640yX49/kXLo40Tg=
-github.com/go-openapi/swag v0.19.2/go.mod h1:POnQmlKehdgb5mhVOsnJFsivZCEZ/vjK9gh66Z9tfKk=
 github.com/go-openapi/swag v0.19.5/go.mod h1:POnQmlKehdgb5mhVOsnJFsivZCEZ/vjK9gh66Z9tfKk=
-github.com/go-openapi/swag v0.19.14 h1:gm3vOOXfiuw5i9p5N9xJvfjvuofpyvLA9Wr6QfK5Fng=
 github.com/go-openapi/swag v0.19.14/go.mod h1:QYRuS/SOXUCsnplDa677K7+DxSOj6IPNl/eQntq43wQ=
-github.com/go-openapi/validate v0.18.0/go.mod h1:Uh4HdOzKt19xGIGm1qHf/ofbX1YQ4Y+MYsct2VUrAJ4=
-github.com/go-openapi/validate v0.19.2/go.mod h1:1tRCw7m3jtI8eNWEEliiAqUIcBztB2KDnRCRMUi7GTA=
-github.com/go-openapi/validate v0.19.8/go.mod h1:8DJv2CVJQ6kGNpFW6eV9N3JviE1C85nY1c2z52x1Gk4=
-github.com/go-ozzo/ozzo-validation v3.5.0+incompatible h1:sUy/in/P6askYr16XJgTKq/0SZhiWsdg4WZGaLsGQkM=
 github.com/go-ozzo/ozzo-validation v3.5.0+incompatible/go.mod h1:gsEKFIVnabGBt6mXmxK0MoFy+cZoTJY6mu5Ll3LVLBU=
-github.com/go-stack/stack v1.8.0 h1:5SgMzNM5HxrEjV0ww2lTmX6E2Izsfxas4+YHWRs3Lsk=
 github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY=
-github.com/gobuffalo/here v0.6.0/go.mod h1:wAG085dHOYqUpf+Ap+WOdrPTp5IYcDAs/x7PLa8Y5fM=
 github.com/godbus/dbus/v5 v5.0.3/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
-github.com/godbus/dbus/v5 v5.0.4 h1:9349emZab16e7zQvpmsbtjc18ykshndd8y2PG3sgJbA=
 github.com/godbus/dbus/v5 v5.0.4/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
-github.com/gofrs/uuid v4.0.0+incompatible h1:1SD/1F5pU8p29ybwgQSwpQk+mwdRrXCYuPhW6m+TnJw=
 github.com/gofrs/uuid v4.0.0+incompatible/go.mod h1:b2aQJv3Z4Fp6yNu3cdSllBxTCLRxnplIgP/c0N/04lM=
 github.com/gogo/protobuf v1.1.1/go.mod h1:r8qH/GZQm5c6nD/R0oafs1akxWv10x8SbQlK7atdtwQ=
 github.com/gogo/protobuf v1.2.1/go.mod h1:hp+jE20tsWTFYpLwKvXlhS1hjn+gTNwPg2I6zVXpSg4=
 github.com/gogo/protobuf v1.3.1/go.mod h1:SlYgWuQ5SjCEi6WLHjHCa1yvBfUnHcTbrrZtXPKa29o=
 github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q=
 github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q=
-github.com/golang/freetype v0.0.0-20170609003504-e2365dfdc4a0 h1:DACJavvAHhabrF08vX0COfcOBJRhZ8lUbR+ZWIs0Y5g=
 github.com/golang/freetype v0.0.0-20170609003504-e2365dfdc4a0/go.mod h1:E/TSTwGwJL78qG/PmXZO1EjYhfJinVAhrmmHX6Z8B9k=
-github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b h1:VKtxabqXZkF25pY9ekfRL6a582T4P37/31XEstQ5p58=
 github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b/go.mod h1:SBH7ygxi8pfUlaOkMMuAQtPIUF8ecWP5IEl/CR7VP2Q=
-github.com/golang/groupcache v0.0.0-20160516000752-02826c3e7903/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
+github.com/golang/glog v1.0.0/go.mod h1:EWib/APOK0SL3dFbYqvxE3UYd8E6s1ouQ7iEp/0LWV4=
 github.com/golang/groupcache v0.0.0-20190129154638-5b532d6fd5ef/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/groupcache v0.0.0-20190702054246-869f871628b6/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/groupcache v0.0.0-20191227052852-215e87163ea7/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
-github.com/golang/groupcache v0.0.0-20200121045136-8c9f03a8e57e h1:1r7pUrabqp18hOBcwBwiTsbnFeTZHV9eER/QT5JVZxY=
 github.com/golang/groupcache v0.0.0-20200121045136-8c9f03a8e57e/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
-github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da h1:oI5xCqsCo564l8iNU+DwB5epxmsaqB+rhGL0m5jtYqE=
 github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/mock v1.1.1/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfbm0A=
 github.com/golang/mock v1.2.0/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfbm0A=
 github.com/golang/mock v1.3.1/go.mod h1:sBzyDLLjw3U8JLTeZvSv8jJB+tU5PVekmnlKIyFUx0Y=
 github.com/golang/mock v1.4.0/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt3cw=
 github.com/golang/mock v1.4.1/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt3cw=
-github.com/golang/mock v1.4.4 h1:l75CXGRSwbaYNpl/Z2X1XIIAMSCquvXgpVZDhwEIJsc=
+github.com/golang/mock v1.4.3/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt3cw=
 github.com/golang/mock v1.4.4/go.mod h1:l3mdAwkq5BuhzHwde/uurv3sEJeZMXNpwsxVWU71h+4=
+github.com/golang/mock v1.5.0/go.mod h1:CWnOUgYIOo4TcNZ0wHX3YZCqsaM1I1Jvs6v3mP3KVu8=
+github.com/golang/mock v1.6.0/go.mod h1:p6yTPP+5HYm5mzsMV8JkE6ZKdX+/wYM6Hr+LicevLPs=
 github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.2/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
@@ -429,28 +270,29 @@ github.com/golang/protobuf v1.4.0-rc.4.0.20200313231945-b860323f09d0/go.mod h1:W
 github.com/golang/protobuf v1.4.0/go.mod h1:jodUvKwWbYaEsadDk5Fwe5c77LiNKVO9IDvqG2KuDX0=
 github.com/golang/protobuf v1.4.1/go.mod h1:U8fpvMrcmy5pZrNK1lt4xCsGvpyWQ/VVv6QDs8UjoX8=
 github.com/golang/protobuf v1.4.2/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
-github.com/golang/protobuf v1.4.3 h1:JjCZWpVbqXDqFVmTfYWEVTMIYrL/NPdPSCHPJ0T/raM=
 github.com/golang/protobuf v1.4.3/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
 github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
 github.com/golang/protobuf v1.5.1/go.mod h1:DopwsBzvsk0Fs44TXzsVbJyPhcCPeIwnvohx4u74HPM=
 github.com/golang/protobuf v1.5.2 h1:ROPKBNFfQgOUMifHyP+KYbvpjbdoFNs+aK7DXlji0Tw=
 github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
-github.com/golangplus/testing v0.0.0-20180327235837-af21d9c3145e h1:KhcknUwkWHKZPbFy2P7jH5LKJ3La+0ZeknkkmrSgqb0=
+github.com/golang/snappy v0.0.3/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
 github.com/golangplus/testing v0.0.0-20180327235837-af21d9c3145e/go.mod h1:0AA//k/eakGydO4jKRoRL2j92ZKSzTgj9tclaCrvXHk=
 github.com/google/btree v0.0.0-20180813153112-4030bb1f1f0c/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
-github.com/google/btree v1.0.0 h1:0udJVsspx3VBr5FwtLhQQtuAsVc79tTq0ocGIPAU6qo=
 github.com/google/btree v1.0.0/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
 github.com/google/btree v1.0.1 h1:gK4Kx5IaGY9CD5sPJ36FHiBJ6ZXl0kilRiiCj+jdYp4=
 github.com/google/btree v1.0.1/go.mod h1:xXMiIv4Fb/0kKde4SpL7qlzvu5cMJDRkFDxJfI9uaxA=
-github.com/google/cadvisor v0.39.0/go.mod h1:rjQFmK4jPCpxeUdLq9bYhNFFsjgGOtpnDmDeap0+nsw=
-github.com/google/cadvisor v0.39.2 h1:SzgL5IYoMZEFVA9usi0xCy8SXSVXKQ6aL/rYs/kQjXE=
-github.com/google/cadvisor v0.39.2/go.mod h1:kN93gpdevu+bpS227TyHVZyCU5bbqCzTj5T9drl34MI=
+github.com/google/cadvisor v0.43.0/go.mod h1:+RdMSbc3FVr5NYCD2dOEJy/LI0jYJ/0xJXkzWXEyiFQ=
+github.com/google/cel-go v0.9.0/go.mod h1:U7ayypeSkw23szu4GaQTPJGx66c20mx8JklMSxrmI1w=
+github.com/google/cel-spec v0.6.0/go.mod h1:Nwjgxy5CbjlPrtCWjeDjUyKMl8w41YBYGjsyDdqk0xA=
 github.com/google/go-cmp v0.2.0/go.mod h1:oXzfMopK8JAjlY9xF4vHSVASa0yLyX7SntLO5aqRK0M=
 github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
+github.com/google/go-cmp v0.4.1/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
+github.com/google/go-cmp v0.5.1/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.2/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
+github.com/google/go-cmp v0.5.3/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.4/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.6 h1:BKbKCqvP6I+rmFHt06ZmyQtvB8xAkWdhFyr0ZUNZcxQ=
@@ -458,322 +300,208 @@ github.com/google/go-cmp v0.5.6/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/gofuzz v1.1.0 h1:Hsa8mG0dQ46ij8Sl2AYJDUv1oA9/d6Vk+3LG99Oe02g=
 github.com/google/gofuzz v1.1.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
-github.com/google/martian v2.1.0+incompatible h1:/CP5g8u/VJHijgedC/Legn3BAbAaWPgecwXBIDzw5no=
 github.com/google/martian v2.1.0+incompatible/go.mod h1:9I4somxYTbIHy5NJKHRl3wXiIaQGbYVAs8BPL6v8lEs=
+github.com/google/martian/v3 v3.0.0/go.mod h1:y5Zk1BBys9G+gd6Jrk0W3cC1+ELVxBWuIGO+w/tUAp0=
+github.com/google/martian/v3 v3.1.0/go.mod h1:y5Zk1BBys9G+gd6Jrk0W3cC1+ELVxBWuIGO+w/tUAp0=
+github.com/google/martian/v3 v3.2.1/go.mod h1:oBOf6HBosgwRXnUGWUB05QECsc6uvmMiJ3+6W4l/CUk=
 github.com/google/pprof v0.0.0-20181206194817-3ea8567a2e57/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
 github.com/google/pprof v0.0.0-20190515194954-54271f7e092f/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
 github.com/google/pprof v0.0.0-20191218002539-d4f498aebedc/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
 github.com/google/pprof v0.0.0-20200212024743-f11f1df84d12/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
-github.com/google/pprof v0.0.0-20200229191704-1ebb73c60ed3 h1:SRgJV+IoxM5MKyFdlSUeNy6/ycRUF2yBAKdAQswoHUk=
 github.com/google/pprof v0.0.0-20200229191704-1ebb73c60ed3/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
-github.com/google/renameio v0.1.0 h1:GOZbcHa3HfsPKPlmyPyN2KEohoMXOhdMbHrvbpl2QaA=
+github.com/google/pprof v0.0.0-20200430221834-fc25d7d30c6d/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
+github.com/google/pprof v0.0.0-20200708004538-1a94d8640e99/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
+github.com/google/pprof v0.0.0-20201023163331-3e6fc7fc9c4c/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20201203190320-1bf35d6f28c2/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20210122040257-d980be63207e/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20210226084205-cbba55b83ad5/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20210601050228-01bbb1931b22/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20210609004039-a478d1d731e9/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
-github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510/go.mod h1:pupxD2MaaD3pAXIBCelhxNneeOaAeabZDe5s4K6zSpQ=
-github.com/google/uuid v1.0.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/google/uuid v1.1.1/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/google/uuid v1.1.2 h1:EVhdT+1Kseyi1/pUmXKaFxYsDNy9RQYkMWRH68J/W7Y=
 github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+vpHVxEJEs9eg=
-github.com/googleapis/gax-go/v2 v2.0.5 h1:sjZBwGj9Jlw33ImPtvFviGYvseOtDM7hkSKB7+Tv3SM=
 github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
-github.com/googleapis/gnostic v0.4.1/go.mod h1:LRhVm6pbyptWbWbuZ38d1eyptfvIytN3ir6b65WBswg=
+github.com/googleapis/gax-go/v2 v2.1.0/go.mod h1:Q3nei7sK6ybPYH7twZdmQpAd1MKb7pfu6SK+H1/DsU0=
 github.com/googleapis/gnostic v0.5.1/go.mod h1:6U4PtQXGIEt/Z3h5MAT7FNofLnw9vXk2cUuW7uA/OeU=
 github.com/googleapis/gnostic v0.5.5 h1:9fHAtK0uDfpveeqqo1hkEZJcFvYXAiCN3UutL8F9xHw=
 github.com/googleapis/gnostic v0.5.5/go.mod h1:7+EbHbldMins07ALC74bsA81Ovc97DwqyJO1AENw9kA=
-github.com/gophercloud/gophercloud v0.1.0 h1:P/nh25+rzXouhytV2pUHBb65fnds26Ghl8/391+sT5o=
 github.com/gophercloud/gophercloud v0.1.0/go.mod h1:vxM41WHh5uqHVBMZHzuwNOHh8XEoIEcSTewFxm1c5g8=
 github.com/gopherjs/gopherjs v0.0.0-20181017120253-0766667cb4d1/go.mod h1:wJfORRmW1u3UXTncJ5qlYoELFm8eSnnEO6hX4iZ3EWY=
-github.com/gopherjs/gopherjs v0.0.0-20200217142428-fce0ec30dd00 h1:l5lAOZEym3oK3SQ2HBHWsJUfbNBiTXJDeW2QDxw9AQ0=
 github.com/gopherjs/gopherjs v0.0.0-20200217142428-fce0ec30dd00/go.mod h1:wJfORRmW1u3UXTncJ5qlYoELFm8eSnnEO6hX4iZ3EWY=
 github.com/gorilla/mux v1.7.4/go.mod h1:DVbg23sWSpFRCP0SfiEN6jmj59UnW/n46BH5rLB71So=
-github.com/gorilla/mux v1.8.0 h1:i40aqfkR1h2SlN9hojwV5ZA91wcXFOvkdNIeFDP5koI=
 github.com/gorilla/mux v1.8.0/go.mod h1:DVbg23sWSpFRCP0SfiEN6jmj59UnW/n46BH5rLB71So=
-github.com/gorilla/websocket v0.0.0-20170926233335-4201258b820c/go.mod h1:E7qHFY5m1UJ88s3WnNqhKjPHQ0heANvMoAMk2YaljkQ=
 github.com/gorilla/websocket v1.4.0/go.mod h1:E7qHFY5m1UJ88s3WnNqhKjPHQ0heANvMoAMk2YaljkQ=
 github.com/gorilla/websocket v1.4.2 h1:+/TMaTYc4QFitKJxsQ7Yye35DkWvkdLcvGKqM+x0Ufc=
 github.com/gorilla/websocket v1.4.2/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
-github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 h1:pdN6V1QBWetyv/0+wjACpqVH+eVULgEjkurDLq3goeM=
 github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7/go.mod h1:FecbI9+v66THATjSRHfNgh1IVFe/9kFxbXtjV0ctIMA=
 github.com/grpc-ecosystem/go-grpc-middleware v1.0.0/go.mod h1:FiyG127CGDf3tlThmgyCl78X/SZQqEOJBCDaAfeWzPs=
-github.com/grpc-ecosystem/go-grpc-middleware v1.0.1-0.20190118093823-f849b5445de4 h1:z53tR0945TRRQO/fLEVPI6SMv7ZflF0TEaTAoU7tOzg=
-github.com/grpc-ecosystem/go-grpc-middleware v1.0.1-0.20190118093823-f849b5445de4/go.mod h1:FiyG127CGDf3tlThmgyCl78X/SZQqEOJBCDaAfeWzPs=
 github.com/grpc-ecosystem/go-grpc-middleware v1.3.0 h1:+9834+KizmvFV7pXQGSXQTsaWhq2GjuNUt0aUU0YBYw=
 github.com/grpc-ecosystem/go-grpc-middleware v1.3.0/go.mod h1:z0ButlSOZa5vEBq9m2m2hlwIgKw+rp3sdCBRoJY+30Y=
 github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0 h1:Ovs26xHkKqVztRpIrF/92BcuyuQ/YW4NSIpoGtfXNho=
 github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0/go.mod h1:8NvIoxWQoOIhqOTXgfV/d3M/q6VIi02HzZEHgUlZvzk=
 github.com/grpc-ecosystem/grpc-gateway v1.9.0/go.mod h1:vNeuVxBJEsws4ogUvrchl83t/GYV9WGTSLVdBhOQFDY=
-github.com/grpc-ecosystem/grpc-gateway v1.9.5 h1:UImYN5qQ8tuGpGE16ZmjvcTtTw24zw1QAp/SlnNrZhI=
-github.com/grpc-ecosystem/grpc-gateway v1.9.5/go.mod h1:vNeuVxBJEsws4ogUvrchl83t/GYV9WGTSLVdBhOQFDY=
 github.com/grpc-ecosystem/grpc-gateway v1.16.0 h1:gmcG1KaJ57LophUzW0Hy8NmPhnMZb4M0+kPpLofRdBo=
 github.com/grpc-ecosystem/grpc-gateway v1.16.0/go.mod h1:BDjrQk3hbvj6Nolgz8mAMFbcEtjT1g+wF4CSlocrBnw=
-github.com/hashicorp/consul/api v1.1.0 h1:BNQPM9ytxj6jbjjdRPioQ94T6YXriSopn0i8COv6SRA=
 github.com/hashicorp/consul/api v1.1.0/go.mod h1:VmuI/Lkw1nC05EYQWNKwWGbkg+FbDBtguAZLlVdkD9Q=
-github.com/hashicorp/consul/sdk v0.1.1 h1:LnuDWGNsoajlhGyHJvuWW6FVqRl8JOTPqS6CPTsYjhY=
 github.com/hashicorp/consul/sdk v0.1.1/go.mod h1:VKf9jXwCTEY1QZP2MOLRhb5i/I/ssyNV1vwHyQBF0x8=
-github.com/hashicorp/errwrap v1.0.0 h1:hLrqtEDnRye3+sgx6z4qVLNuviH3MR5aQ0ykNJa/UYA=
 github.com/hashicorp/errwrap v1.0.0/go.mod h1:YH+1FKiLXxHSkmPseP+kNlulaMuP3n2brvKWEqk/Jc4=
-github.com/hashicorp/go-cleanhttp v0.5.1 h1:dH3aiDG9Jvb5r5+bYHsikaOUIpcM0xvgMXVoDkXMzJM=
 github.com/hashicorp/go-cleanhttp v0.5.1/go.mod h1:JpRdi6/HCYpAwUzNwuwqhbovhLtngrth3wmdIIUrZ80=
-github.com/hashicorp/go-immutable-radix v1.0.0 h1:AKDB1HM5PWEA7i4nhcpwOrO2byshxBjXVn/J/3+z5/0=
 github.com/hashicorp/go-immutable-radix v1.0.0/go.mod h1:0y9vanUI8NX6FsYoO3zeMjhV/C5i9g4Q3DwcSNZ4P60=
-github.com/hashicorp/go-msgpack v0.5.3 h1:zKjpN5BK/P5lMYrLmBHdBULWbJ0XpYR+7NGzqkZzoD4=
 github.com/hashicorp/go-msgpack v0.5.3/go.mod h1:ahLV/dePpqEmjfWmKiqvPkv/twdG7iPBM1vqhUKIvfM=
-github.com/hashicorp/go-multierror v1.0.0 h1:iVjPR7a6H0tWELX5NxNe7bYopibicUzc7uPribsnS6o=
 github.com/hashicorp/go-multierror v1.0.0/go.mod h1:dHtQlpGsu+cZNNAkkCN/P3hoUDHhCYQXV3UM06sGGrk=
-github.com/hashicorp/go-rootcerts v1.0.0 h1:Rqb66Oo1X/eSV1x66xbDccZjhJigjg0+e82kpwzSwCI=
 github.com/hashicorp/go-rootcerts v1.0.0/go.mod h1:K6zTfqpRlCUIjkwsN4Z+hiSfzSTQa6eBIzfwKfwNnHU=
-github.com/hashicorp/go-sockaddr v1.0.0 h1:GeH6tui99pF4NJgfnhp+L6+FfobzVW3Ah46sLo0ICXs=
 github.com/hashicorp/go-sockaddr v1.0.0/go.mod h1:7Xibr9yA9JjQq1JpNB2Vw7kxv8xerXegt+ozgdvDeDU=
-github.com/hashicorp/go-syslog v1.0.0 h1:KaodqZuhUoZereWVIYmpUgZysurB1kBLX2j0MwMrUAE=
 github.com/hashicorp/go-syslog v1.0.0/go.mod h1:qPfqrKkXGihmCqbJM2mZgkZGvKG1dFdvsLplgctolz4=
 github.com/hashicorp/go-uuid v1.0.0/go.mod h1:6SBZvOh/SIDV7/2o3Jml5SYk/TvGqwFJ/bN7x4byOro=
-github.com/hashicorp/go-uuid v1.0.1 h1:fv1ep09latC32wFoVwnqcnKJGnMSdBanPczbHAYm1BE=
 github.com/hashicorp/go-uuid v1.0.1/go.mod h1:6SBZvOh/SIDV7/2o3Jml5SYk/TvGqwFJ/bN7x4byOro=
-github.com/hashicorp/go.net v0.0.1 h1:sNCoNyDEvN1xa+X0baata4RdcpKwcMS6DH+xwfqPgjw=
 github.com/hashicorp/go.net v0.0.1/go.mod h1:hjKkEWcCURg++eb33jQU7oqQcI9XDCnUzHA0oac0k90=
-github.com/hashicorp/golang-lru v0.0.0-20180201235237-0fb14efe8c47/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
-github.com/hashicorp/golang-lru v0.5.1 h1:0hERBMJE1eitiLkihrMvRVBYAkpHzc/J3QdDN+dAcgU=
 github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
-github.com/hashicorp/hcl v1.0.0 h1:0Anlzjpi4vEasTeNFn2mLJgTSwt0+6sfsiTG8qcWGx4=
 github.com/hashicorp/hcl v1.0.0/go.mod h1:E5yfLk+7swimpb2L/Alb/PJmXilQ/rhwaUYs4T20WEQ=
-github.com/hashicorp/logutils v1.0.0 h1:dLEQVugN8vlakKOUE3ihGLTZJRB4j+M2cdTm/ORI65Y=
 github.com/hashicorp/logutils v1.0.0/go.mod h1:QIAnNjmIWmVIIkWDTG1z5v++HQmx9WQRO+LraFDTW64=
-github.com/hashicorp/mdns v1.0.0 h1:WhIgCr5a7AaVH6jPUwjtRuuE7/RDufnUvzIr48smyxs=
 github.com/hashicorp/mdns v1.0.0/go.mod h1:tL+uN++7HEJ6SQLQ2/p+z2pH24WQKWjBPkE0mNTz8vQ=
-github.com/hashicorp/memberlist v0.1.3 h1:EmmoJme1matNzb+hMpDuR/0sbJSUisxyqBGG676r31M=
 github.com/hashicorp/memberlist v0.1.3/go.mod h1:ajVTdAv/9Im8oMAAj5G31PhhMCZJV2pPBoIllUwCN7I=
-github.com/hashicorp/serf v0.8.2 h1:YZ7UKsJv+hKjqGVUUbtE3HNj79Eln2oQ75tniF6iPt0=
 github.com/hashicorp/serf v0.8.2/go.mod h1:6hOLApaqBFA1NXqRQAsxw9QxuDEvNxSQRwA/JwenrHc=
-github.com/heketi/heketi v10.2.0+incompatible/go.mod h1:bB9ly3RchcQqsQ9CpyaQwvva7RS5ytVoSoholZQON6o=
-github.com/heketi/heketi v10.3.0+incompatible h1:X4DBFPzcyWZWhia32d94UhDECQJHH0M5kpRb1gxxUHk=
 github.com/heketi/heketi v10.3.0+incompatible/go.mod h1:bB9ly3RchcQqsQ9CpyaQwvva7RS5ytVoSoholZQON6o=
-github.com/heketi/tests v0.0.0-20151005000721-f3775cbcefd6 h1:oJ/NLadJn5HoxvonA6VxG31lg0d6XOURNA09BTtM4fY=
 github.com/heketi/tests v0.0.0-20151005000721-f3775cbcefd6/go.mod h1:xGMAM8JLi7UkZt1i4FQeQy0R2T8GLUwQhOP5M1gBhy4=
-github.com/hpcloud/tail v1.0.0 h1:nfCOvKYfkgYP8hkirhJocXT2+zOD8yUNjXaWfTlyFKI=
 github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
-github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6 h1:UDMh68UUwekSh5iP2OMhRRZJiiBccgV7axzUG8vi56c=
 github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
-github.com/imdario/mergo v0.3.5 h1:JboBksRwiiAJWvIYJVo46AfV+IAIKZpfrSzVKj42R4Q=
+github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/imdario/mergo v0.3.5/go.mod h1:2EnlNZ0deacrJVfApfmtdGgDfMuh/nq6Ok1EcJh5FfA=
-github.com/inconshreveable/mousetrap v1.0.0 h1:Z8tu5sraLXCXIcARxBp/8cbvlwVa7Z1NHg9XEKhtSvM=
 github.com/inconshreveable/mousetrap v1.0.0/go.mod h1:PxqpIevigyE2G7u3NXJIT2ANytuPF1OarO4DADm73n8=
-github.com/ishidawataru/sctp v0.0.0-20190723014705-7c296d48a2b5 h1:qPmlgoeRS18y2dT+iAH5vEKZgIqgiPi2Y8UCu/b7Aq8=
 github.com/ishidawataru/sctp v0.0.0-20190723014705-7c296d48a2b5/go.mod h1:DM4VvS+hD/kDi1U1QsX2fnZowwBhqD0Dk3bRPKF/Oc8=
-github.com/jimstudt/http-authentication v0.0.0-20140401203705-3eca13d6893a/go.mod h1:wK6yTYYcgjHE1Z1QtXACPDjcFJyBskHEdagmnq3vsP8=
-github.com/jmespath/go-jmespath v0.4.0 h1:BEgLn5cpjn8UN1mAw4NjwDrS35OdebyEtFe+9YPoQUg=
 github.com/jmespath/go-jmespath v0.4.0/go.mod h1:T8mJZnbsbmF+m6zOOFylbeCJqk5+pHWvzYPziyZiYoo=
-github.com/jmespath/go-jmespath/internal/testify v1.5.1 h1:shLQSRRSCCPj3f2gpwzGwWFoC7ycTf1rcQZHOlsJ6N8=
 github.com/jmespath/go-jmespath/internal/testify v1.5.1/go.mod h1:L3OGu8Wl2/fWfCI6z80xFu9LTZmf1ZRjMHUOPmWr69U=
-github.com/jonboulle/clockwork v0.1.0 h1:VKV+ZcuP6l3yW9doeqz6ziZGgcynBVQO+obU0+0hcPo=
 github.com/jonboulle/clockwork v0.1.0/go.mod h1:Ii8DK3G1RaLaWxj9trq07+26W01tbo22gdxWY5EU2bo=
 github.com/jonboulle/clockwork v0.2.2 h1:UOGuzwb1PwsrDAObMuhUnj0p5ULPj8V/xJ7Kx9qUBdQ=
 github.com/jonboulle/clockwork v0.2.2/go.mod h1:Pkfl5aHPm1nk2H9h0bjmnJD/BcgbGXUBGnn1kMkgxc8=
-github.com/josharian/intern v1.0.0 h1:vlS4z54oSdjm0bgjRigI+G1HpF+tI+9rE5LLzOg8HmY=
 github.com/josharian/intern v1.0.0/go.mod h1:5DoeVV0s6jJacbCEi61lwdGj/aVlrQvzHFFd8Hwg//Y=
-github.com/jpillora/backoff v1.0.0 h1:uvFg412JmmHBHw7iwprIxkPMI+sGQ4kzOWsMeHnm2EA=
 github.com/jpillora/backoff v1.0.0/go.mod h1:J/6gKK9jxlEcS3zixgDgUAsiuZ7yrSoa/FX5e0EB2j4=
 github.com/json-iterator/go v1.1.6/go.mod h1:+SdeFBvtyEkXs7REEP0seUULqWtbJapLOCVDaaPEHmU=
-github.com/json-iterator/go v1.1.7/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
-github.com/json-iterator/go v1.1.10 h1:Kz6Cvnvv2wGdaG/V8yMvfkmNiXq9Ya2KUv4rouJJr68=
 github.com/json-iterator/go v1.1.10/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
-github.com/json-iterator/go v1.1.11 h1:uVUAXhF2To8cbw/3xN3pxj6kk7TYKs98NIrTqPlMWAQ=
 github.com/json-iterator/go v1.1.11/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
+github.com/json-iterator/go v1.1.12 h1:PV8peI4a0ysnczrg+LtxykD8LfKY9ML6u2jnxaEnrnM=
+github.com/json-iterator/go v1.1.12/go.mod h1:e30LSqwooZae/UwlEbR2852Gd8hjQvJoHmT4TnhNGBo=
 github.com/jstemmer/go-junit-report v0.0.0-20190106144839-af01ea7f8024/go.mod h1:6v2b51hI/fHJwM22ozAgKL4VKDeJcHhJFhtBdhmNjmU=
-github.com/jstemmer/go-junit-report v0.9.1 h1:6QPYqodiu3GuPL+7mfx+NwDdp2eTkp9IfEUpgAwUN0o=
 github.com/jstemmer/go-junit-report v0.9.1/go.mod h1:Brl9GWCQeLvo8nXZwPNNblvFj/XSXhF0NWZEnDohbsk=
-github.com/jtolds/gls v4.20.0+incompatible h1:xdiiI2gbIgH/gLH7ADydsJ1uDOEzR8yvV7C0MuV77Wo=
 github.com/jtolds/gls v4.20.0+incompatible/go.mod h1:QJZ7F/aHp+rZTRtaJ1ow/lLfFfVYBRgL+9YlvaHOwJU=
 github.com/julienschmidt/httprouter v1.2.0/go.mod h1:SYymIcj16QtmaHHD7aYtjjsJG7VTCxuUUipMqKk8s4w=
-github.com/julienschmidt/httprouter v1.3.0 h1:U0609e9tgbseu3rBINet9P48AI/D3oJs4dN7jwJOQ1U=
 github.com/julienschmidt/httprouter v1.3.0/go.mod h1:JR6WtHb+2LUe8TCKY3cZOxFyyO8IZAc4RVcycCCAKdM=
-github.com/jung-kurt/gofpdf v1.0.3-0.20190309125859-24315acbbda5 h1:PJr+ZMXIecYc1Ey2zucXdR73SMBtgjPgwa31099IMv0=
 github.com/jung-kurt/gofpdf v1.0.3-0.20190309125859-24315acbbda5/go.mod h1:7Id9E/uU8ce6rXgefFLlgrJj/GYY22cpxn+r32jIOes=
-github.com/karrick/godirwalk v1.16.1 h1:DynhcF+bztK8gooS0+NDJFrdNZjJ3gzVzC545UNA9iw=
 github.com/karrick/godirwalk v1.16.1/go.mod h1:j4mkqPuvaLI8mp1DroR3P6ad7cyYd4c1qeJ3RV7ULlk=
 github.com/kisielk/errcheck v1.1.0/go.mod h1:EZBBE59ingxPouuu3KfxchcWSUPOHkagtvWXihfKN4Q=
 github.com/kisielk/errcheck v1.2.0/go.mod h1:/BMXB+zMLi60iA8Vv6Ksmxu/1UDYcXs4uQLJ+jE2L00=
-github.com/kisielk/errcheck v1.5.0 h1:e8esj/e4R+SAOwFwN+n3zr0nYeCyeweozKfO23MvHzY=
 github.com/kisielk/errcheck v1.5.0/go.mod h1:pFxgyoBC7bSaBwPgfKdkLd5X25qrDl4LWUI2bnpBCr8=
-github.com/kisielk/gotool v1.0.0 h1:AV2c/EiW3KqPNT9ZKl07ehoAGi4C5/01Cfbblndcapg=
 github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck=
-github.com/klauspost/cpuid v1.2.0/go.mod h1:Pj4uuM528wm8OyEC2QMXAi2YiTZ96dNQPGgoMS4s3ek=
 github.com/konsorten/go-windows-terminal-sequences v1.0.1/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ=
 github.com/konsorten/go-windows-terminal-sequences v1.0.2/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ=
-github.com/konsorten/go-windows-terminal-sequences v1.0.3 h1:CE8S1cTafDpPvMhIxNJKvHsGVBgn1xWYf1NbHQhywc8=
 github.com/konsorten/go-windows-terminal-sequences v1.0.3/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ=
-github.com/kr/logfmt v0.0.0-20140226030751-b84e30acd515 h1:T+h1c/A9Gawja4Y9mFVWj2vyii2bbUNDw3kt9VxK2EY=
+github.com/kr/fs v0.1.0/go.mod h1:FFnZGqtBN9Gxj7eW1uZ42v5BccTP0vu6NEaFoC2HwRg=
 github.com/kr/logfmt v0.0.0-20140226030751-b84e30acd515/go.mod h1:+0opPa2QZZtGFBFZlji/RkVcI2GknAs/DXo4wKdlNEc=
 github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
 github.com/kr/pretty v0.2.0/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfnI=
-github.com/kr/pretty v0.2.1 h1:Fmg33tUaq4/8ym9TJN1x7sLJnHVwhP33CNkpYV/7rwI=
 github.com/kr/pretty v0.2.1/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfnI=
-github.com/kr/pty v1.1.1 h1:VkoXIwSboBpnk99O/KFauAEILuNHv5DVFKZMBN/gUgw=
 github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
-github.com/kr/pty v1.1.5/go.mod h1:9r2w37qlBe7rQ6e1fg1S/9xpWHSnaqNdHD3WcMdbPDA=
 github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
 github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
 github.com/kr/text v0.2.0/go.mod h1:eLer722TekiGuMkidMxC/pM04lWEeraHUUmBw8l2grE=
-github.com/kylelemons/godebug v0.0.0-20170820004349-d65d576e9348/go.mod h1:B69LEHPfb2qLo0BaaOLcbitczOKLWTsrBG9LczfCD4k=
-github.com/libopenstorage/openstorage v1.0.0 h1:GLPam7/0mpdP8ZZtKjbfcXJBTIA/T1O6CBErVEFEyIM=
 github.com/libopenstorage/openstorage v1.0.0/go.mod h1:Sp1sIObHjat1BeXhfMqLZ14wnOzEhNx2YQedreMcUyc=
-github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de h1:9TO3cAIGXtEhnIaL+V+BEER86oLrvS+kWobKpbJuye0=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de/go.mod h1:zAbeS9B/r2mtpb6U+EI2rYA5OAXxsYw6wTamcNW+zcE=
-github.com/lithammer/dedent v1.1.0 h1:VNzHMVCBNG1j0fh3OrsFRkVUwStdDArbgBWoPAffktY=
 github.com/lithammer/dedent v1.1.0/go.mod h1:jrXYCQtgg0nJiN+StA2KgR7w6CiQNv9Fd/Z9BP0jIOc=
-github.com/lpabon/godbc v0.1.1 h1:ilqjArN1UOENJJdM34I2YHKmF/B0gGq4VLoSGy9iAao=
 github.com/lpabon/godbc v0.1.1/go.mod h1:Jo9QV0cf3U6jZABgiJ2skINAXb9j8m51r07g4KI92ZA=
-github.com/lucas-clemente/aes12 v0.0.0-20171027163421-cd47fb39b79f/go.mod h1:JpH9J1c9oX6otFSgdUHwUBUizmKlrMjxWnIAjff4m04=
-github.com/lucas-clemente/quic-clients v0.1.0/go.mod h1:y5xVIEoObKqULIKivu+gD/LU90pL73bTdtQjPBvtCBk=
-github.com/lucas-clemente/quic-go v0.10.2/go.mod h1:hvaRS9IHjFLMq76puFJeWNfmn+H70QZ/CXoxqw9bzao=
-github.com/lucas-clemente/quic-go-certificates v0.0.0-20160823095156-d2f86524cced/go.mod h1:NCcRLrOTZbzhZvixZLlERbJtDtYsmMw8Jc4vS8Z0g58=
 github.com/magiconair/properties v1.8.0/go.mod h1:PppfXfuXeibc/6YijjN8zIbojt8czPbwD3XqdrwzmxQ=
-github.com/magiconair/properties v1.8.1 h1:ZC2Vc7/ZFkGmsVC9KvOjumD+G5lXy2RtTKyzRKO2BQ4=
 github.com/magiconair/properties v1.8.1/go.mod h1:PppfXfuXeibc/6YijjN8zIbojt8czPbwD3XqdrwzmxQ=
-github.com/mailru/easyjson v0.0.0-20180823135443-60711f1a8329/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
-github.com/mailru/easyjson v0.0.0-20190312143242-1de009706dbe/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
+github.com/magiconair/properties v1.8.5/go.mod h1:y3VJvCyxH9uVvJTWEGAELF3aiYNyPKd5NZ3oSwXrF60=
 github.com/mailru/easyjson v0.0.0-20190614124828-94de47d64c63/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.0.0-20190626092158-b2ccc519800e/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.7.0/go.mod h1:KAzv3t3aY1NaHWoQz1+4F1ccyAH66Jk7yos7ldAVICs=
-github.com/mailru/easyjson v0.7.6 h1:8yTIVnZgCoiM1TgqoeTl+LfU5Jg6/xL3QhGQnimLYnA=
 github.com/mailru/easyjson v0.7.6/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
-github.com/markbates/pkger v0.17.1/go.mod h1:0JoVlrol20BSywW79rN3kdFFsE5xYM+rSCQDXbLhiuI=
-github.com/marten-seemann/qtls v0.2.3/go.mod h1:xzjG7avBwGGbdZ8dTGxlBnLArsVKLvwmjgmPuiQEcYk=
-github.com/mattn/go-colorable v0.0.9 h1:UVL0vNpWh04HeJXV0KLcaT7r06gOH2l4OW6ddYRUIY4=
 github.com/mattn/go-colorable v0.0.9/go.mod h1:9vuHe8Xs5qXnSaW/c/ABM9alt+Vo+STaOChaDxuIBZU=
-github.com/mattn/go-isatty v0.0.3 h1:ns/ykhmWi7G9O+8a448SecJU3nSMBXJfqQkl0upE1jI=
 github.com/mattn/go-isatty v0.0.3/go.mod h1:M+lRXTBqGeGNdLjl/ufCoiOlB5xdOkqRJdNxMWT7Zi4=
-github.com/mattn/go-isatty v0.0.4/go.mod h1:M+lRXTBqGeGNdLjl/ufCoiOlB5xdOkqRJdNxMWT7Zi4=
-github.com/mattn/go-runewidth v0.0.2/go.mod h1:LwmH8dsx7+W8Uxz3IHJYH5QSwggIsqBzpuz5H//U1FU=
-github.com/mattn/go-runewidth v0.0.7 h1:Ei8KR0497xHyKJPAv59M1dkC+rOZCMBJ+t3fZ+twI54=
 github.com/mattn/go-runewidth v0.0.7/go.mod h1:H031xJmbD/WCDINGzjvQ9THkh0rPKHF+m2gUSrubnMI=
 github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0=
 github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369 h1:I0XW9+e1XWDxdcEniV4rQAIOPUGDq67JSCiRCgGCZLI=
 github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369/go.mod h1:BSXmuO+STAnVfrANrmjBb36TMTDstsz7MSK+HVaYKv4=
-github.com/mholt/certmagic v0.6.2-0.20190624175158-6a42ef9fe8c2/go.mod h1:g4cOPxcjV0oFq3qwpjSA30LReKD8AoIfwAY9VvG35NY=
-github.com/miekg/dns v1.0.14 h1:9jZdLNd/P4+SfEJ0TNyxYpsK8N4GtfylBLqtbYN1sbA=
 github.com/miekg/dns v1.0.14/go.mod h1:W1PPwlIAgtquWBMBEV9nkV9Cazfe8ScdGz/Lj7v3Nrg=
-github.com/miekg/dns v1.1.3/go.mod h1:W1PPwlIAgtquWBMBEV9nkV9Cazfe8ScdGz/Lj7v3Nrg=
-github.com/miekg/dns v1.1.35/go.mod h1:KNUDUusw/aVsxyTYZM1oqvCicbwhgbNgztCETuNZ7xM=
-github.com/mindprince/gonvml v0.0.0-20190828220739-9ebdce4bb989 h1:PS1dLCGtD8bb9RPKJrc8bS7qHL6JnW1CZvwzH9dPoUs=
 github.com/mindprince/gonvml v0.0.0-20190828220739-9ebdce4bb989/go.mod h1:2eu9pRWp8mo84xCg6KswZ+USQHjwgRhNp06sozOdsTY=
-github.com/mistifyio/go-zfs v2.1.2-0.20190413222219-f784269be439+incompatible h1:aKW/4cBs+yK6gpqU3K/oIwk9Q/XICqd3zOX/UFuvqmk=
 github.com/mistifyio/go-zfs v2.1.2-0.20190413222219-f784269be439+incompatible/go.mod h1:8AuVvqP/mXw1px98n46wfvcGfQ4ci2FwoAjKYxuo3Z4=
-github.com/mitchellh/cli v1.0.0 h1:iGBIsUe3+HZ/AD/Vd7DErOt5sU9fa8Uj7A2s1aggv1Y=
 github.com/mitchellh/cli v1.0.0/go.mod h1:hNIlj7HEI86fIcpObd7a0FcrxTWetlwJDGcceTlRvqc=
 github.com/mitchellh/go-homedir v1.0.0/go.mod h1:SfyaCUpYCn1Vlf4IUYiD9fPX4A5wJrkLzIz1N1q0pr0=
-github.com/mitchellh/go-homedir v1.1.0 h1:lukF9ziXFxDFPkA1vsr5zpc1XuPDn/wFntq5mG+4E0Y=
 github.com/mitchellh/go-homedir v1.1.0/go.mod h1:SfyaCUpYCn1Vlf4IUYiD9fPX4A5wJrkLzIz1N1q0pr0=
-github.com/mitchellh/go-testing-interface v1.0.0 h1:fzU/JVNcaqHQEcVFAKeR41fkiLdIPrefOvVG1VZ96U0=
 github.com/mitchellh/go-testing-interface v1.0.0/go.mod h1:kRemZodwjscx+RGhAo8eIhFbs2+BFgRtFPeD/KE+zxI=
-github.com/mitchellh/go-wordwrap v1.0.0 h1:6GlHJ/LTGMrIJbwgdqdl2eEH8o+Exx/0m8ir9Gns0u4=
 github.com/mitchellh/go-wordwrap v1.0.0/go.mod h1:ZXFpozHsX6DPmq2I0TCekCxypsnAUbP2oI0UX1GXzOo=
-github.com/mitchellh/gox v0.4.0 h1:lfGJxY7ToLJQjHHwi0EX6uYBdK78egf954SQl13PQJc=
 github.com/mitchellh/gox v0.4.0/go.mod h1:Sd9lOJ0+aimLBi73mGofS1ycjY8lL3uZM3JPS42BGNg=
-github.com/mitchellh/iochan v1.0.0 h1:C+X3KsSTLFVBr/tK1eYN/vs4rJcvsiLU338UhYPJWeY=
 github.com/mitchellh/iochan v1.0.0/go.mod h1:JwYml1nuB7xOzsp52dPpHFffvOCDupsG0QubkSMEySY=
 github.com/mitchellh/mapstructure v0.0.0-20160808181253-ca63d7c062ee/go.mod h1:FVVH3fgwuzCH5S8UJGiWEs2h04kUh9fWfEaFds41c1Y=
-github.com/mitchellh/mapstructure v1.1.2 h1:fmNYVwqnSfB9mZU6OS2O6GsXM+wcskZDuKQzvN1EDeE=
 github.com/mitchellh/mapstructure v1.1.2/go.mod h1:FVVH3fgwuzCH5S8UJGiWEs2h04kUh9fWfEaFds41c1Y=
-github.com/moby/ipvs v1.0.1 h1:aoZ7fhLTXgDbzVrAnvV+XbKOU8kOET7B3+xULDF/1o0=
+github.com/mitchellh/mapstructure v1.4.1/go.mod h1:bFUtVrKA4DC2yAKiSyO/QUcy7e+RRV2QTWOzhPopBRo=
 github.com/moby/ipvs v1.0.1/go.mod h1:2pngiyseZbIKXNv7hsKj3O9UEz30c53MT9005gt2hxQ=
-github.com/moby/spdystream v0.2.0 h1:cjW1zVyyoiM0T7b6UoySUFqzXMoqRckQtXwGPiBhOM8=
 github.com/moby/spdystream v0.2.0/go.mod h1:f7i0iNDQJ059oMTcWxx8MA/zKFIuD/lY+0GqbN2Wy8c=
-github.com/moby/sys/mountinfo v0.4.0/go.mod h1:rEr8tzG/lsIZHBtN/JjGG+LMYx9eXgW2JI+6q0qou+A=
-github.com/moby/sys/mountinfo v0.4.1 h1:1O+1cHA1aujwEwwVMa2Xm2l+gIpUHyd3+D+d7LZh1kM=
 github.com/moby/sys/mountinfo v0.4.1/go.mod h1:rEr8tzG/lsIZHBtN/JjGG+LMYx9eXgW2JI+6q0qou+A=
 github.com/moby/term v0.0.0-20201216013528-df9cb8a40635/go.mod h1:FBS0z0QWA44HXygs7VXDUOGoN/1TV3RuWkLO04am3wc=
-github.com/moby/term v0.0.0-20210610120745-9d4ed1856297 h1:yH0SvLzcbZxcJXho2yh7CqdENGMQe73Cw3woZBpPli0=
 github.com/moby/term v0.0.0-20210610120745-9d4ed1856297/go.mod h1:vgPCkQMyxTZ7IDy8SXRufE172gr8+K/JE/7hHFxHW3A=
 github.com/modern-go/concurrent v0.0.0-20180228061459-e0a39a4cb421/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
 github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd h1:TRLaZ9cD/w8PVh93nsPXa1VrQ6jlwL5oN8l14QlcNfg=
 github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
 github.com/modern-go/reflect2 v0.0.0-20180701023420-4b7aa43c6742/go.mod h1:bx2lNnkwVCuqBIxFjflWJWanXIb3RllmbCylyMrvgv0=
-github.com/modern-go/reflect2 v1.0.1 h1:9f412s+6RmYXLWZSEzVVgPGK7C2PphHj5RJrvfx9AWI=
 github.com/modern-go/reflect2 v1.0.1/go.mod h1:bx2lNnkwVCuqBIxFjflWJWanXIb3RllmbCylyMrvgv0=
-github.com/mohae/deepcopy v0.0.0-20170603005431-491d3605edfb h1:e+l77LJOEqXTIQihQJVkA6ZxPOUmfPM5e4H7rcpgtSk=
+github.com/modern-go/reflect2 v1.0.2 h1:xBagoLtFs94CBntxluKeaWgTMpvLxC4ur3nMaC9Gz0M=
+github.com/modern-go/reflect2 v1.0.2/go.mod h1:yWuevngMOJpCy52FWWMvUC8ws7m/LJsjYzDa0/r8luk=
 github.com/mohae/deepcopy v0.0.0-20170603005431-491d3605edfb/go.mod h1:TaXosZuwdSHYgviHp1DAtfrULt5eUgsSMsZf+YrPgl8=
-github.com/monochromegane/go-gitignore v0.0.0-20200626010858-205db1a8cc00 h1:n6/2gBQ3RWajuToeY6ZtZTIKv2v7ThUy5KKusIT0yc0=
 github.com/monochromegane/go-gitignore v0.0.0-20200626010858-205db1a8cc00/go.mod h1:Pm3mSP3c5uWn86xMLZ5Sa7JB9GsEZySvHYXCTK4E9q4=
-github.com/morikuni/aec v1.0.0 h1:nP9CBfwrvYnBRgY6qfDQkygYDmYwOilePFkwzv4dU8A=
 github.com/morikuni/aec v1.0.0/go.mod h1:BbKIizmSmc5MMPqRYbxO4ZU0S0+P200+tUnFx7PXmsc=
-github.com/mrunalp/fileutils v0.5.0 h1:NKzVxiH7eSk+OQ4M+ZYW1K6h27RUV3MI6NUTsHhU6Z4=
 github.com/mrunalp/fileutils v0.5.0/go.mod h1:M1WthSahJixYnrXQl/DFQuteStB1weuxD2QJNHXfbSQ=
 github.com/munnerz/goautoneg v0.0.0-20120707110453-a547fc61f48d/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
-github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq1c1nUAm88MOHcQC9l5mIlSMApZMrHA=
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
-github.com/mvdan/xurls v1.1.0 h1:OpuDelGQ1R1ueQ6sSryzi6P+1RtBpfQHM8fJwlE45ww=
 github.com/mvdan/xurls v1.1.0/go.mod h1:tQlNn3BED8bE/15hnSL2HLkDeLWpNPAwtw7wkEq44oU=
 github.com/mwitkow/go-conntrack v0.0.0-20161129095857-cc309e4a2223/go.mod h1:qRWi+5nqEBWmkhHvq77mSJWrCKwh8bxhgT7d/eI7P4U=
-github.com/mwitkow/go-conntrack v0.0.0-20190716064945-2f068394615f h1:KUppIJq7/+SVif2QVs3tOP0zanoHgBEVAwHxUSIzRqU=
 github.com/mwitkow/go-conntrack v0.0.0-20190716064945-2f068394615f/go.mod h1:qRWi+5nqEBWmkhHvq77mSJWrCKwh8bxhgT7d/eI7P4U=
-github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f h1:y5//uYreIhSUg3J1GEMiLbxo1LJaP8RfCpH6pymGZus=
 github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f/go.mod h1:ZdcZmHo+o7JKHSa8/e818NopupXU1YMK5fe1lsApnBw=
-github.com/naoina/go-stringutil v0.1.0/go.mod h1:XJ2SJL9jCtBh+P9q5btrd/Ylo8XwT/h1USek5+NqSA0=
-github.com/naoina/toml v0.1.1/go.mod h1:NBIhNtsFMo3G2szEBne+bO4gS192HuIYRqfvOWb4i1E=
 github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e h1:fD57ERR4JtEqsWbfPhv4DMiApHyliiK5xCTNVSPiaAs=
 github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e/go.mod h1:zD1mROLANZcx1PVRCS0qkT7pwLkGfwJo4zjcN/Tysno=
 github.com/nxadm/tail v1.4.4 h1:DQuhQpB1tVlglWS2hLQ5OV6B5r8aGxSrPc5Qo6uTN78=
 github.com/nxadm/tail v1.4.4/go.mod h1:kenIhsEOeOJmVchQTgglprH7qJGnHDVpk1VPCcaMI8A=
-github.com/oklog/ulid v1.3.1 h1:EGfNDEx6MqHz8B3uNV6QAib1UR2Lm97sHi3ocA6ESJ4=
 github.com/oklog/ulid v1.3.1/go.mod h1:CirwcVhetQ6Lv90oh/F+FBtV6XMibvdAFo93nm5qn4U=
-github.com/olekukonko/tablewriter v0.0.0-20170122224234-a0225b3f23b5/go.mod h1:vsDQFd/mU46D+Z4whnwzcISnGGzXWMclvtLoiIKAKIo=
-github.com/olekukonko/tablewriter v0.0.4 h1:vHD/YYe1Wolo78koG299f7V/VAS08c6IpCLn+Ejf/w8=
 github.com/olekukonko/tablewriter v0.0.4/go.mod h1:zq6QwlOf5SlnkVbMSr5EoBv3636FWnp+qbPhuoO21uA=
 github.com/onsi/ginkgo v0.0.0-20170829012221-11459a886d9c/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
 github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
-github.com/onsi/ginkgo v1.8.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
-github.com/onsi/ginkgo v1.11.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.14.0 h1:2mOpI4JVVPBN+WQRa0WKH2eXR+Ey+uK4n7Zj0aYpIQA=
 github.com/onsi/ginkgo v1.14.0/go.mod h1:iSB4RoI2tjJc9BBv4NKIKWKya62Rps+oPG/Lv9klQyY=
 github.com/onsi/gomega v0.0.0-20170829124025-dcabb60a477c/go.mod h1:C1qb7wdrVGGVU+Z6iS04AVkA3Q65CEZX59MT0QO5uiA=
-github.com/onsi/gomega v1.5.0/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1CpauHY=
-github.com/onsi/gomega v1.7.0/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1CpauHY=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1 h1:o0+MgICZLuZ7xjH7Vx6zS/zcu93/BEp1VwkIW1mEXCE=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
-github.com/opencontainers/go-digest v0.0.0-20180430190053-c9281466c8b2/go.mod h1:cMLVZDEM3+U2I4VmLI6N8jQYUd2OVphdqWwCJHrFt2s=
 github.com/opencontainers/go-digest v1.0.0 h1:apOUWs51W5PlhuyGyz9FCeeBIOUDA/6nW8Oi/yOhh5U=
 github.com/opencontainers/go-digest v1.0.0/go.mod h1:0JzlMkj0TRzQZfJkVvzbP0HBR3IKzErnv2BNG4W4MAM=
-github.com/opencontainers/image-spec v1.0.1 h1:JMemWkRwHx4Zj+fVxWoMCFm/8sYGGrUVojFA6h/TRcI=
 github.com/opencontainers/image-spec v1.0.1/go.mod h1:BtxoFyWECRxE4U/7sNtV5W15zMzWCbyJoFRP3s7yZA0=
-github.com/opencontainers/runc v0.0.0-20190115041553-12f6a991201f/go.mod h1:qT5XzbpPznkRYVz/mWwUaVBUv2rmF59PVA73FjuZG0U=
-github.com/opencontainers/runc v1.0.0-rc93/go.mod h1:3NOsor4w32B2tC0Zbl8Knk4Wg84SM2ImC1fxBuqJ/H0=
-github.com/opencontainers/runc v1.0.0-rc95/go.mod h1:z+bZxa/+Tz/FmYVWkhUajJdzFeOqjc5vrqskhVyHGUM=
-github.com/opencontainers/runc v1.0.1 h1:G18PGckGdAm3yVQRWDVQ1rLSLntiniKJ0cNRT2Tm5gs=
-github.com/opencontainers/runc v1.0.1/go.mod h1:aTaHFFwQXuA71CiyxOdFFIorAoemI04suvGRQFzWTD0=
+github.com/opencontainers/runc v1.0.2 h1:opHZMaswlyxz1OuGpBE53Dwe4/xF7EZTY0A2L/FpCOg=
+github.com/opencontainers/runc v1.0.2/go.mod h1:aTaHFFwQXuA71CiyxOdFFIorAoemI04suvGRQFzWTD0=
 github.com/opencontainers/runtime-spec v1.0.2/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/opencontainers/runtime-spec v1.0.3-0.20200929063507-e6143ca7d51d/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
-github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
-github.com/opencontainers/selinux v1.8.0/go.mod h1:RScLhm78qiWa2gbVCcGkC7tCGdgk3ogry1nUQF8Evvo=
-github.com/opencontainers/selinux v1.8.2 h1:c4ca10UMgRcvZ6h0K4HtS15UaVSBEaE+iln2LVpAuGc=
 github.com/opencontainers/selinux v1.8.2/go.mod h1:MUIHuUEvKB1wtJjQdOyYRgOnLD2xAPP8dBsCoU0KuF8=
-github.com/opentracing/opentracing-go v1.1.0 h1:pWlfV3Bxv7k65HYwkikxat0+s3pV4bsqf19k25Ur8rU=
 github.com/opentracing/opentracing-go v1.1.0/go.mod h1:UkNAQd3GIcIGf0SeVgPpRdFStlNbqXla1AfSYxPUl2o=
-github.com/pascaldekloe/goe v0.0.0-20180627143212-57f6aae5913c h1:Lgl0gzECD8GnQ5QCWA8o6BtfL6mDH5rQgM4/fX3avOs=
 github.com/pascaldekloe/goe v0.0.0-20180627143212-57f6aae5913c/go.mod h1:lzWF7FIEvWOWxwDKqyGYQf6ZUaNfKdP144TG7ZOy1lc=
-github.com/pborman/uuid v1.2.0/go.mod h1:X/NO0urCmaxf9VXbdlT7C2Yzkj2IKimNn4k+gtPdI/k=
-github.com/pelletier/go-toml v1.2.0 h1:T5zMGML61Wp+FlcbWjRDT7yAxhJNAiPPLOFECq181zc=
 github.com/pelletier/go-toml v1.2.0/go.mod h1:5z9KED0ma1S8pY6P1sdut58dfprrGBbd/94hg7ilaic=
-github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=
+github.com/pelletier/go-toml v1.9.3/go.mod h1:u1nR/EPcESfeI/szUZKdtJ0xRNbUoANCkoOuaOx1Y+c=
 github.com/peterbourgon/diskv v2.0.1+incompatible/go.mod h1:uqqh8zWWbv1HBMNONnaR/tNboyR3/BZd58JJSHlUSCU=
 github.com/pkg/errors v0.8.0/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pkg/errors v0.8.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
 github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
+github.com/pkg/sftp v1.10.1/go.mod h1:lYOWFsE0bwd1+KfKJaKeuokY15vzFx25BLbzYYoAxZI=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
-github.com/posener/complete v1.1.1 h1:ccV59UEOTzVDnDUEFdT95ZzHVZ+5+158q8+SJb2QV5w=
 github.com/posener/complete v1.1.1/go.mod h1:em0nMJCgc9GFtwrmVmEMR/ZL6WyhyjMBndrE9hABlRI=
-github.com/pquerna/cachecontrol v0.0.0-20171018203845-0dec1b30a021 h1:0XM1XL/OFFJjXsYXlG30spTkV/E9+gmd5GD1w2HE8xM=
 github.com/pquerna/cachecontrol v0.0.0-20171018203845-0dec1b30a021/go.mod h1:prYjPmNq4d1NPVmpShWobRqXY3q7Vp+80DqgxxUrUIA=
 github.com/prometheus/client_golang v0.9.1/go.mod h1:7SWBe2y4D6OKWSNQJUaRYU/AaXPKyh/dDVn+NZz0KFw=
 github.com/prometheus/client_golang v0.9.3/go.mod h1:/TN21ttK/J9q6uSwhBd54HahCDft0ttaMvbicHlPoso=
 github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5FsnadC4Ky3P0J6CfImo=
-github.com/prometheus/client_golang v1.7.1 h1:NTGy1Ja9pByO+xAeH/qiWnLrKtr3hJPNjaVUwnjpdpA=
 github.com/prometheus/client_golang v1.7.1/go.mod h1:PY5Wy2awLA44sXw4AOSfFBetzPP4j5+D6mVACh+pe2M=
 github.com/prometheus/client_golang v1.11.0 h1:HNkLOAEQMIDv/K+04rukrLx6ch7msSRwf3/SASFAGtQ=
 github.com/prometheus/client_golang v1.11.0/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
@@ -785,157 +513,103 @@ github.com/prometheus/client_model v0.2.0/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6T
 github.com/prometheus/common v0.0.0-20181113130724-41aa239b4cce/go.mod h1:daVV7qP5qjZbuso7PdcryaAu0sAZbrN9i7WWcTMWvro=
 github.com/prometheus/common v0.4.0/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
 github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
-github.com/prometheus/common v0.10.0 h1:RyRA7RzGXQZiW+tGMr7sxa85G1z0yOpM1qq5c8lNawc=
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
-github.com/prometheus/common v0.26.0 h1:iMAkS2TDoNWnKM+Kopnx/8tnEStIfpYA0ur0xQzzhMQ=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
-github.com/prometheus/procfs v0.0.0-20180125133057-cb4147076ac7/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
+github.com/prometheus/common v0.28.0 h1:vGVfV9KrDTvWt5boZO0I19g2E3CsWfpPPKZM9dt3mEw=
+github.com/prometheus/common v0.28.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.0-20190507164030-5867b95ac084/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
 github.com/prometheus/procfs v0.0.0-20190522114515-bc1a522cf7b1/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
 github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
 github.com/prometheus/procfs v0.1.3/go.mod h1:lV6e/gmhEcM9IjHGsFOCxxuZ+z1YqCvr4OA4YeYWdaU=
-github.com/prometheus/procfs v0.2.0 h1:wH4vA7pcjKuZzjF7lM8awk4fnuJO6idemZXoKnULUx4=
-github.com/prometheus/procfs v0.2.0/go.mod h1:lV6e/gmhEcM9IjHGsFOCxxuZ+z1YqCvr4OA4YeYWdaU=
 github.com/prometheus/procfs v0.6.0 h1:mxy4L2jP6qMonqmq+aTtOx1ifVWUgG/TAmntgbh3xv4=
 github.com/prometheus/procfs v0.6.0/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1xBZuNvfVA=
-github.com/prometheus/tsdb v0.7.1 h1:YZcsG11NqnK4czYLrWd9mpEuAJIHVQLwdrleYfszMAA=
 github.com/prometheus/tsdb v0.7.1/go.mod h1:qhTCs0VvXwvX/y3TZrWD7rabWM+ijKTux40TwIPHuXU=
-github.com/quobyte/api v0.1.8 h1:+sOX1gIlC/OaLipqVZWrHgly9Kh9Qo8OygeS0mWAg30=
 github.com/quobyte/api v0.1.8/go.mod h1:jL7lIHrmqQ7yh05OJ+eEEdHr0u/kmT1Ff9iHd+4H6VI=
-github.com/remyoudompheng/bigfft v0.0.0-20170806203942-52369c62f446 h1:/NRJ5vAYoqz+7sG51ubIDHXeWO8DlTSrToPu6q11ziA=
 github.com/remyoudompheng/bigfft v0.0.0-20170806203942-52369c62f446/go.mod h1:uYEyJGbgTkfkS4+E/PavXkNJcbFIpEtjt2B0KDQ5+9M=
-github.com/robfig/cron v1.1.0 h1:jk4/Hud3TTdcrJgUOBgsqrZBarcxl6ADIjSC2iniwLY=
-github.com/robfig/cron v1.1.0/go.mod h1:JGuDeoQd7Z6yL4zQhZ3OPEVHB7fL6Ka6skscFHfmt2k=
 github.com/robfig/cron/v3 v3.0.1 h1:WdRxkvbJztn8LMz/QEvLN5sBU+xKpSqwwUO1Pjr4qDs=
 github.com/robfig/cron/v3 v3.0.1/go.mod h1:eQICP3HwyT7UooqI/z+Ov+PtYAWygg1TEWWzGIFLtro=
 github.com/rogpeppe/fastuuid v0.0.0-20150106093220-6724a57986af/go.mod h1:XWv6SoW27p1b0cqNHllgS5HIMJraePCO15w5zCzIWYg=
-github.com/rogpeppe/fastuuid v1.2.0 h1:Ppwyp6VYCF1nvBTXL3trRso7mXMlRrw9ooo375wvi2s=
 github.com/rogpeppe/fastuuid v1.2.0/go.mod h1:jVj6XXZzXRy/MSR5jhDC/2q6DgLz+nrA6LYCDYWNEvQ=
-github.com/rogpeppe/go-internal v1.3.0 h1:RR9dF3JtopPvtkroDZuVD7qquD0bnHlKSqaQhgwt8yk=
 github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFRclV5y23lUDJ4=
-github.com/rubiojr/go-vhd v0.0.0-20200706105327-02e210299021 h1:if3/24+h9Sq6eDx8UUz1SO9cT9tizyIsATfB7b4D3tc=
 github.com/rubiojr/go-vhd v0.0.0-20200706105327-02e210299021/go.mod h1:DM5xW0nvfNNm2uytzsvhI3OnX8uzaRAg8UX/CnDqbto=
-github.com/russross/blackfriday v0.0.0-20170610170232-067529f716f4/go.mod h1:JO/DiYxRf+HjHt06OyowR9PTA263kcR/rfWxYHBV53g=
-github.com/russross/blackfriday v1.5.2 h1:HyvC0ARfnZBqnXwABFeSZHpKvJHJJfPz81GNueLj0oo=
 github.com/russross/blackfriday v1.5.2/go.mod h1:JO/DiYxRf+HjHt06OyowR9PTA263kcR/rfWxYHBV53g=
-github.com/russross/blackfriday/v2 v2.0.1 h1:lPqVAte+HuHNfhJ/0LC98ESWRz8afy9tM/0RK8m9o+Q=
 github.com/russross/blackfriday/v2 v2.0.1/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
-github.com/ryanuber/columnize v0.0.0-20160712163229-9b3edd62028f h1:UFr9zpz4xgTnIE5yIMtWAMngCdZ9p/+q6lTbgelo80M=
 github.com/ryanuber/columnize v0.0.0-20160712163229-9b3edd62028f/go.mod h1:sm1tb6uqfes/u+d4ooFouqFdy9/2g9QGwK3SQygK0Ts=
-github.com/satori/go.uuid v1.2.0/go.mod h1:dA0hQrYB0VpLJoorglMZABFdXlWrHn1NEOzdhQKdks0=
-github.com/sean-/seed v0.0.0-20170313163322-e2103e2c3529 h1:nn5Wsu0esKSJiIVhscUtVbo7ada43DJhG55ua/hjS5I=
 github.com/sean-/seed v0.0.0-20170313163322-e2103e2c3529/go.mod h1:DxrIzT+xaE7yg65j358z/aeFdxmN0P9QXhEzd20vsDc=
-github.com/seccomp/libseccomp-golang v0.9.1 h1:NJjM5DNFOs0s3kYE1WUOr6G8V97sdt46rlXTMfXGWBo=
 github.com/seccomp/libseccomp-golang v0.9.1/go.mod h1:GbW5+tmTXfcxTToHLXlScSlAvWlF4P2Ca7zGrPiEpWo=
-github.com/sergi/go-diff v1.0.0/go.mod h1:0CfEIISq7TuYL3j771MWULgwwjU+GofnZX9QAmXWZgo=
-github.com/sergi/go-diff v1.1.0 h1:we8PVUC3FE2uYfodKH/nBHMSetSfHDR6scGdBi+erh0=
 github.com/sergi/go-diff v1.1.0/go.mod h1:STckp+ISIX8hZLjrqAeVduY0gWCT9IjLuqbuNXdaHfM=
-github.com/shurcooL/sanitized_anchor_name v1.0.0 h1:PdmoCO6wvbs+7yrJyMORt4/BmY5IYyJwS/kOiWx8mHo=
 github.com/shurcooL/sanitized_anchor_name v1.0.0/go.mod h1:1NzhyTcUVG4SuEtjjoZeVRXNmyL/1OwPU0+IJeTBvfc=
 github.com/sirupsen/logrus v1.2.0/go.mod h1:LxeOpSwHxABJmUn/MG1IvRgCAasNZTLOkJPxbbu5VWo=
 github.com/sirupsen/logrus v1.4.1/go.mod h1:ni0Sbl8bgC9z8RoU9G6nDWqqs/fq4eDPysMBDgk/93Q=
 github.com/sirupsen/logrus v1.4.2/go.mod h1:tLMulIdttU9McNUspp0xgXVQah82FyeX6MwdIuYE2rE=
 github.com/sirupsen/logrus v1.6.0/go.mod h1:7uNnSEd1DgxDLC74fIahvMZmmYsHGZGEOFrfsX/uA88=
-github.com/sirupsen/logrus v1.7.0 h1:ShrD1U9pZB12TX0cVy0DtePoCH97K8EtX+mg7ZARUtM=
 github.com/sirupsen/logrus v1.7.0/go.mod h1:yWOB1SBYBC5VeMP7gHvWumXLIWorT60ONWic61uBYv0=
 github.com/sirupsen/logrus v1.8.1 h1:dJKuHgqk1NNQlqoA6BTlM1Wf9DOH3NBjQyu0h9+AZZE=
 github.com/sirupsen/logrus v1.8.1/go.mod h1:yWOB1SBYBC5VeMP7gHvWumXLIWorT60ONWic61uBYv0=
 github.com/smartystreets/assertions v0.0.0-20180927180507-b2de0cb4f26d/go.mod h1:OnSkiWE9lh6wB0YB77sQom3nweQdgAjqCqsofrRNTgc=
-github.com/smartystreets/assertions v1.1.0 h1:MkTeG1DMwsrdH7QtLXy5W+fUxWq+vmb6cLmyJ7aRtF0=
 github.com/smartystreets/assertions v1.1.0/go.mod h1:tcbTF8ujkAEcZ8TElKY+i30BzYlVhC/LOxJk7iOWnoo=
-github.com/smartystreets/goconvey v1.6.4 h1:fv0U8FUIMPNf1L9lnHLvLhgicrIVChEkdzIKYqbNC9s=
 github.com/smartystreets/goconvey v1.6.4/go.mod h1:syvi0/a8iFYH4r/RixwvyeAJjdLS9QV7WQ/tjFTllLA=
-github.com/soheilhy/cmux v0.1.4 h1:0HKaf1o97UwFjHH9o5XsHUOF+tqmdA7KEzXLpiyaw0E=
 github.com/soheilhy/cmux v0.1.4/go.mod h1:IM3LyeVVIOuxMH7sFAkER9+bJ4dT7Ms6E4xg4kGIyLM=
 github.com/soheilhy/cmux v0.1.5 h1:jjzc5WVemNEDTLwv9tlmemhC73tI08BNOIGwBOo10Js=
 github.com/soheilhy/cmux v0.1.5/go.mod h1:T7TcVDs9LWfQgPlPsdngu6I6QIoyIFZDDC6sNE1GqG0=
-github.com/spaolacci/murmur3 v0.0.0-20180118202830-f09979ecbc72 h1:qLC7fQah7D6K1B0ujays3HV9gkFtllcxhzImRR7ArPQ=
 github.com/spaolacci/murmur3 v0.0.0-20180118202830-f09979ecbc72/go.mod h1:JwIasOWyU6f++ZhiEuf87xNszmSA2myDM2Kzu9HwQUA=
 github.com/spf13/afero v1.1.2/go.mod h1:j4pytiNVoe2o6bmDsKpLACNPDBIoEAkihy7loJ1B0CQ=
-github.com/spf13/afero v1.2.2 h1:5jhuqJyZCZf2JRofRvN/nIFgIWNzPa3/Vz8mYylgbWc=
 github.com/spf13/afero v1.2.2/go.mod h1:9ZxEEn6pIJ8Rxe320qSDBk6AsU0r9pR7Q4OcevTdifk=
-github.com/spf13/cast v1.3.0 h1:oget//CVOEoFewqQxwr0Ej5yjygnqGkvggSE/gB35Q8=
+github.com/spf13/afero v1.6.0 h1:xoax2sJ2DT8S8xA2paPFjDCScCNeWsg75VG0DLRreiY=
+github.com/spf13/afero v1.6.0/go.mod h1:Ai8FlHk4v/PARR026UzYexafAt9roJ7LcLMAmO6Z93I=
 github.com/spf13/cast v1.3.0/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
-github.com/spf13/cobra v0.0.3/go.mod h1:1l0Ry5zgKvJasoi3XT1TypsSe7PqH0Sj9dhYf7v3XqQ=
+github.com/spf13/cast v1.3.1/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
 github.com/spf13/cobra v1.0.0/go.mod h1:/6GTrnGXV9HjY+aR4k0oJ5tcvakLuG6EuKReYlHNrgE=
-github.com/spf13/cobra v1.1.1/go.mod h1:WnodtKOvamDL/PwE2M4iKs8aMDBZ5Q5klgD3qfVJQMI=
-github.com/spf13/cobra v1.1.3 h1:xghbfqPkxzxP3C/f3n5DdpAbdKLj4ZE4BWQI362l53M=
 github.com/spf13/cobra v1.1.3/go.mod h1:pGADOWyqRD/YMrPZigI/zbliZ2wVD/23d+is3pSWzOo=
-github.com/spf13/jwalterweatherman v1.0.0 h1:XHEdyB+EcvlqZamSM4ZOMGlc93t6AcsBEu9Gc1vn7yk=
+github.com/spf13/cobra v1.2.1/go.mod h1:ExllRjgxM/piMAM+3tAZvg8fsklGAf3tPfi+i8t68Nk=
 github.com/spf13/jwalterweatherman v1.0.0/go.mod h1:cQK4TGJAtQXfYWX+Ddv3mKDzgVb68N+wFjFa4jdeBTo=
 github.com/spf13/jwalterweatherman v1.1.0/go.mod h1:aNWZUN0dPAAO/Ljvb5BEdw96iTZ0EXowPYD95IqWIGo=
 github.com/spf13/pflag v0.0.0-20170130214245-9ff6c6923cff/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=
-github.com/spf13/pflag v1.0.1/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=
 github.com/spf13/pflag v1.0.3/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=
 github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
 github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
 github.com/spf13/viper v1.4.0/go.mod h1:PTJ7Z/lr49W6bUbkmS1V3by4uWynFiR9p7+dSq/yZzE=
-github.com/spf13/viper v1.7.0 h1:xVKxvI7ouOI5I+U9s2eeiUfMaWBVoXA3AWskkrqK0VM=
 github.com/spf13/viper v1.7.0/go.mod h1:8WkrPz2fc9jxqZNCJI/76HCieCp4Q8HaLFoCha5qpdg=
-github.com/stoewer/go-strcase v1.2.0 h1:Z2iHWqGXH00XYgqDmNgQbIBxf3wrNq0F3feEy0ainaU=
+github.com/spf13/viper v1.8.1/go.mod h1:o0Pch8wJ9BVSWGQMbra6iw0oQ5oktSIBaujf1rJH9Ns=
 github.com/stoewer/go-strcase v1.2.0/go.mod h1:IBiWB2sKIp3wVVQ3Y035++gc+knqhUQag1KpM8ahLw8=
-github.com/storageos/go-api v2.2.0+incompatible h1:U0SablXoZIg06gvSlg8BCdzq1C/SkHVygOVX95Z2MU0=
 github.com/storageos/go-api v2.2.0+incompatible/go.mod h1:ZrLn+e0ZuF3Y65PNF6dIwbJPZqfmtCXxFm9ckv0agOY=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
-github.com/stretchr/objx v0.2.0 h1:Hbg2NidpLE8veEBkEZTL3CvlkUIVzuU9jDplZO54c48=
 github.com/stretchr/objx v0.2.0/go.mod h1:qt09Ya8vawLte6SNmTgCsAVtYtaKzEcn8ATUoHMkEqE=
 github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
 github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
 github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4=
 github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
-github.com/stretchr/testify v1.6.1 h1:hDPOHmpOpP40lSULcqw7IrRb/u7w6RpDC9399XyoNd0=
 github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.0 h1:nwc3DEeHmmLAfoZucVR881uASk0Mfjw8xYJ99tb5CcY=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/subosito/gotenv v1.2.0 h1:Slr1R9HxAlEKefgq5jn9U+DnETlIUa6HfgEzj0g5d7s=
 github.com/subosito/gotenv v1.2.0/go.mod h1:N0PQaV/YGNqwC0u51sEeR/aUtSLEXKX9iv69rRypqCw=
-github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635 h1:kdXcSzyDtseVEc4yCz2qF8ZrQvIDBJLl4S1c3GCXmoI=
 github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
-github.com/thecodeteam/goscaleio v0.1.0/go.mod h1:68sdkZAsK8bvEwBlbQnlLS+xU+hvLYM/iQ8KXej1AwM=
-github.com/tidwall/pretty v1.0.0/go.mod h1:XNkn88O1ChpSDQmQeStsy+sBenx6DDtFZJxhVysOjyk=
-github.com/tmc/grpc-websocket-proxy v0.0.0-20170815181823-89b8d40f7ca8/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
-github.com/tmc/grpc-websocket-proxy v0.0.0-20190109142713-0ad062ec5ee5 h1:LnC5Kc/wtumK+WB441p7ynQJzVuNRJiqddSIE3IlSEQ=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20190109142713-0ad062ec5ee5/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20201229170055-e5319fda7802 h1:uruHq4dN7GR16kFc5fp3d1RIYzJW5onx8Ybykw2YQFA=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20201229170055-e5319fda7802/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
-github.com/ugorji/go v1.1.4 h1:j4s+tAvLfL3bZyefP2SEWmhBzmuIlH/eqNuPdFPgngw=
 github.com/ugorji/go v1.1.4/go.mod h1:uQMGLiO92mf5W77hV/PUCpI3pbzQx3CRekS0kk+RGrc=
-github.com/urfave/cli v1.20.0/go.mod h1:70zkFmudgCuE/ngEzBv17Jvp/497gISqfk5gWijbERA=
 github.com/urfave/cli v1.22.1/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0=
-github.com/urfave/cli v1.22.2 h1:gsqYFH8bb9ekPA12kRo0hfjngWQjkJPlN9R0N78BoUo=
 github.com/urfave/cli v1.22.2/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0=
-github.com/urfave/negroni v1.0.0 h1:kIimOitoypq34K7TG7DUaJ9kq/N4Ofuwi1sjz0KipXc=
 github.com/urfave/negroni v1.0.0/go.mod h1:Meg73S6kFm/4PpbYdq35yYWoCZ9mS/YSx+lKnmiohz4=
-github.com/vektah/gqlparser v1.1.2/go.mod h1:1ycwN7Ij5njmMkPPAOaRFY4rET2Enx7IkVv3vaXspKw=
-github.com/vishvananda/netlink v1.1.0 h1:1iyaYNBLmP6L0220aDnYQpo1QEV4t4hJ+xEEhhJH8j0=
 github.com/vishvananda/netlink v1.1.0/go.mod h1:cTgwzPIzzgDAYoQrMm0EdrjRUBkTqKYppBueQtXaqoE=
 github.com/vishvananda/netns v0.0.0-20191106174202-0a2b9b5464df/go.mod h1:JP3t17pCcGlemwknint6hfoeCVQrEMVwxRLRjXpq+BU=
-github.com/vishvananda/netns v0.0.0-20200728191858-db3c7e526aae h1:4hwBBUfQCFe3Cym0ZtKyq7L16eZUtYKs+BaHDN6mAns=
 github.com/vishvananda/netns v0.0.0-20200728191858-db3c7e526aae/go.mod h1:DD4vA1DwXk04H54A1oHXtwZmA0grkVMdPxx/VGLCah0=
-github.com/vmware/govmomi v0.20.3 h1:gpw/0Ku+6RgF3jsi7fnCLmlcikBHfKBCUcu1qgc16OU=
 github.com/vmware/govmomi v0.20.3/go.mod h1:URlwyTFZX72RmxtxuaFL2Uj3fD1JTvZdx59bHWk6aFU=
-github.com/willf/bitset v1.1.11 h1:N7Z7E9UvjW+sGsEl7k/SJrvY2reP1A07MrGuCjIOjRE=
-github.com/willf/bitset v1.1.11/go.mod h1:83CECat5yLh5zVOf4P1ErAgKA5UDvKtgyUABdr3+MjI=
 github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2 h1:eY9dn8+vbi4tKz5Qo6v2eYzo7kUS51QINcR5jNpbZS8=
 github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2/go.mod h1:UETIi67q53MR2AWcXfiuqkDkRtnGDLqkBTpCHuJHxtU=
-github.com/xlab/treeprint v0.0.0-20181112141820-a009c3971eca h1:1CFlNzQhALwjS9mBAUkycX616GzgsuYUOCHA5+HSlXI=
 github.com/xlab/treeprint v0.0.0-20181112141820-a009c3971eca/go.mod h1:ce1O1j6UtZfjr22oyGxGLbauSBp2YVXpARAosm7dHBg=
-github.com/xordataexchange/crypt v0.0.3-0.20170626215501-b2862e3d0a77 h1:ESFSdwYZvkeru3RtdrYueztKhOBCSAAzS4Gf+k0tEow=
 github.com/xordataexchange/crypt v0.0.3-0.20170626215501-b2862e3d0a77/go.mod h1:aYKd//L2LvnjZzWKhF00oedf4jCCReLcmhLdhm1A27Q=
+github.com/yuin/goldmark v1.1.25/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
+github.com/yuin/goldmark v1.1.32/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
-github.com/yuin/goldmark v1.3.5 h1:dPmz1Snjq0kmkz159iL7S6WzdahUTHnHB5M56WFVifs=
 github.com/yuin/goldmark v1.3.5/go.mod h1:mwnBkeHKe2W/ZEtQ+71ViKU8L12m81fl3OWwC1Zlc8k=
+github.com/yuin/goldmark v1.4.0/go.mod h1:mwnBkeHKe2W/ZEtQ+71ViKU8L12m81fl3OWwC1Zlc8k=
 go.etcd.io/bbolt v1.3.2/go.mod h1:IbVyRI1SCnLcuJnV2u8VeU0CEYM7e686BmAb1XKL+uU=
-go.etcd.io/bbolt v1.3.3/go.mod h1:IbVyRI1SCnLcuJnV2u8VeU0CEYM7e686BmAb1XKL+uU=
-go.etcd.io/bbolt v1.3.5 h1:XAzx9gjCb0Rxj7EoqcClPD1d5ZBxZJk0jbuoPHenBt0=
-go.etcd.io/bbolt v1.3.5/go.mod h1:G5EMThwa9y8QZGBClrRx5EY+Yw9kAhnjy3bSjsnlVTQ=
 go.etcd.io/bbolt v1.3.6 h1:/ecaJf0sk1l4l6V4awd65v2C3ILy7MSj+s/x1ADCIMU=
 go.etcd.io/bbolt v1.3.6/go.mod h1:qXsaaIqmgQH0T+OPdb99Bf+PKfBBQVAdyD6TY9G8XM4=
-go.etcd.io/etcd v0.5.0-alpha.5.0.20200910180754-dd1b699fc489 h1:1JFLBqwIgdyHN1ZtgjTBwO+blA6gVOmZurpiMEsETKo=
-go.etcd.io/etcd v0.5.0-alpha.5.0.20200910180754-dd1b699fc489/go.mod h1:yVHk9ub3CSBatqGNg7GRmsnfLWtoW60w4eDYfh7vHDg=
 go.etcd.io/etcd/api/v3 v3.5.0 h1:GsV3S+OfZEOCNXdtNkBSR7kgLobAa/SO6tCxRa0GAYw=
 go.etcd.io/etcd/api/v3 v3.5.0/go.mod h1:cbVKeC6lCfl7j/8jBhAK6aIYO9XOjdptoxU/nLQcPvs=
 go.etcd.io/etcd/client/pkg/v3 v3.5.0 h1:2aQv6F436YnN7I4VbI8PPYrBhu+SmrTaADcf8Mi/6PU=
@@ -950,14 +624,13 @@ go.etcd.io/etcd/raft/v3 v3.5.0 h1:kw2TmO3yFTgE+F0mdKkG7xMxkit2duBDa2Hu6D/HMlw=
 go.etcd.io/etcd/raft/v3 v3.5.0/go.mod h1:UFOHSIvO/nKwd4lhkwabrTD3cqW5yVyYYf/KlD00Szc=
 go.etcd.io/etcd/server/v3 v3.5.0 h1:jk8D/lwGEDlQU9kZXUFMSANkE22Sg5+mW27ip8xcF9E=
 go.etcd.io/etcd/server/v3 v3.5.0/go.mod h1:3Ah5ruV+M+7RZr0+Y/5mNLwC+eQlni+mQmOVdCRJoS4=
-go.mongodb.org/mongo-driver v1.0.3/go.mod h1:u7ryQJ+DOzQmeO7zB6MHyr8jkEQvC8vH7qLUO4lqsUM=
-go.mongodb.org/mongo-driver v1.1.1/go.mod h1:u7ryQJ+DOzQmeO7zB6MHyr8jkEQvC8vH7qLUO4lqsUM=
-go.mongodb.org/mongo-driver v1.1.2/go.mod h1:u7ryQJ+DOzQmeO7zB6MHyr8jkEQvC8vH7qLUO4lqsUM=
 go.opencensus.io v0.21.0/go.mod h1:mSImk1erAIZhrmZN+AvHh14ztQfjbGwt4TtuofqLduU=
 go.opencensus.io v0.22.0/go.mod h1:+kGneAE2xo2IficOXnaByMWTGM9T73dGwxeWcUqIpI8=
 go.opencensus.io v0.22.2/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
-go.opencensus.io v0.22.3 h1:8sGtKOrtQqkN1bp2AtX+misvLIlOmsEsNd+9NIcPEm8=
 go.opencensus.io v0.22.3/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
+go.opencensus.io v0.22.4/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
+go.opencensus.io v0.22.5/go.mod h1:5pWMHQbX5EPX2/62yrJeAkowc+lfs/XD7Uxpq3pI6kk=
+go.opencensus.io v0.23.0/go.mod h1:XItmlyltB5F7CS4xOC1DcqMoFqwtC6OG2xF7mCv7P7E=
 go.opentelemetry.io/contrib v0.20.0 h1:ubFQUn0VCZ0gPwIoJfBJVpeBlyRMxu8Mm/huKWYd9p0=
 go.opentelemetry.io/contrib v0.20.0/go.mod h1:G/EtFaa6qaN7+LxqfIAT3GiZa7Wv5DTBUzl5H4LY0Kc=
 go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.20.0 h1:sO4WKdPAudZGKPcpZT4MJn6JaDmpyLrMPDGGyA1SttE=
@@ -982,39 +655,31 @@ go.opentelemetry.io/otel/trace v0.20.0 h1:1DL6EXUdcg95gukhuRRvLDO/4X5THh/5dIV52l
 go.opentelemetry.io/otel/trace v0.20.0/go.mod h1:6GjCW8zgDjwGHGa6GkyeB8+/5vjT16gUEi0Nf1iBdgw=
 go.opentelemetry.io/proto/otlp v0.7.0 h1:rwOQPCuKAKmwGKq2aVNnYIibI6wnV7EvzgfTCzcdGg8=
 go.opentelemetry.io/proto/otlp v0.7.0/go.mod h1:PqfVotwruBrMGOCsRd/89rSnXhoiJIqeYNgFYFoEGnI=
-go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 h1:+FNtrFTmVw0YZGpBGX56XDee331t6JAXeK2bcyhLOOc=
 go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5/go.mod h1:nmDLcffg48OtT/PSW0Hg7FvpRQsQh5OSqIylirxKC7o=
-go.uber.org/atomic v1.3.2/go.mod h1:gD2HeocX3+yG+ygLZcrzQJaqmWj9AIm7n08wl/qW/PE=
-go.uber.org/atomic v1.4.0 h1:cxzIVoETapQEqDhQu3QfnvXAV4AlzcvUCxkVUFw3+EU=
 go.uber.org/atomic v1.4.0/go.mod h1:gD2HeocX3+yG+ygLZcrzQJaqmWj9AIm7n08wl/qW/PE=
 go.uber.org/atomic v1.7.0 h1:ADUqmZGgLDDfbSL9ZmPxKTybcoEYHgpYfELNoN+7hsw=
 go.uber.org/atomic v1.7.0/go.mod h1:fEN4uk6kAWBTFdckzkM89CLk9XfWZrxpCo0nPH17wJc=
 go.uber.org/goleak v1.1.10 h1:z+mqJhf6ss6BSfSM671tgKyZBFPTTJM+HLxnhPC3wu0=
 go.uber.org/goleak v1.1.10/go.mod h1:8a7PlsEVH3e/a/GLqe5IIrQx6GzcnRmZEufDUTk4A7A=
-go.uber.org/multierr v1.1.0 h1:HoEmRHQPVSqub6w2z2d2EOVs2fjyFRGyofhKuyDq0QI=
 go.uber.org/multierr v1.1.0/go.mod h1:wR5kodmAFQ0UK8QlbwjlSNy0Z68gJhDJUG5sjR94q/0=
 go.uber.org/multierr v1.6.0 h1:y6IPFStTAIT5Ytl7/XYmHvzXQ7S3g/IeZW9hyZ5thw4=
 go.uber.org/multierr v1.6.0/go.mod h1:cdWPpRnG4AhwMwsgIHip0KRBQjJy5kYEpYjJxpXp9iU=
-go.uber.org/zap v1.10.0 h1:ORx85nbTijNz8ljznvCMR1ZBIPKFn3jQrag10X2AsuM=
 go.uber.org/zap v1.10.0/go.mod h1:vwi/ZaCAaUcBkycHslxD9B2zi4UTXhF60s6SWpuDF0Q=
-go.uber.org/zap v1.17.0 h1:MTjgFu6ZLKvY6Pvaqk97GlxNBuMpV4Hy/3P6tRGlI2U=
 go.uber.org/zap v1.17.0/go.mod h1:MXVU+bhUf/A7Xi2HNOnopQOrmycQ5Ih87HtOu4q5SSo=
+go.uber.org/zap v1.19.0 h1:mZQZefskPPCMIBCSEH0v2/iUqqLrYtaeqwD6FUGUnFE=
+go.uber.org/zap v1.19.0/go.mod h1:xg/QME4nWcxGxrpdeYfq7UvYrLh66cuVKdrbD1XF/NI=
 golang.org/x/crypto v0.0.0-20180904163835-0709b304e793/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
 golang.org/x/crypto v0.0.0-20181029021203-45a5f77698d3/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
-golang.org/x/crypto v0.0.0-20190123085648-057139ce5d2b/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
 golang.org/x/crypto v0.0.0-20190211182817-74369b46fc67/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
-golang.org/x/crypto v0.0.0-20190228161510-8dd112bcdc25/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
-golang.org/x/crypto v0.0.0-20190320223903-b7391e95e576/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20190510104115-cbcb75029529/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
-golang.org/x/crypto v0.0.0-20190611184440-5c40567a22f8/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
-golang.org/x/crypto v0.0.0-20190617133340-57b3e21c3d56/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
+golang.org/x/crypto v0.0.0-20190820162420-60c769a6c586/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20201002170205-7f63de1d35b0/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/crypto v0.0.0-20210220033148-5ea612d1eb83 h1:/ZScEX8SfEmUGRHs0gxpqteO5nfNW6axyZbBdw9A12g=
-golang.org/x/crypto v0.0.0-20210220033148-5ea612d1eb83/go.mod h1:jdWPYTVW3xRLrWPugEBEK3UY2ZEsg3UU495nc5E+M+I=
+golang.org/x/crypto v0.0.0-20210817164053-32db794688a5 h1:HWj/xjIHfjYU5nVXpTM0s39J9CbLn7Cc5a7IC5rwsMQ=
+golang.org/x/crypto v0.0.0-20210817164053-32db794688a5/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/exp v0.0.0-20180321215751-8460e604b9de/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20180807140117-3d87b88a115f/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
@@ -1030,11 +695,9 @@ golang.org/x/exp v0.0.0-20191227195350-da58074b4299/go.mod h1:2RIsYlXP63K8oxa1u0
 golang.org/x/exp v0.0.0-20200119233911-0405dc783f0a/go.mod h1:2RIsYlXP63K8oxa1u096TMicItID8zy7Y6sNkU49FU4=
 golang.org/x/exp v0.0.0-20200207192155-f17229e696bd/go.mod h1:J/WKrq2StrnmMY6+EHIKF9dgMWnmCNThgcyBT1FY9mM=
 golang.org/x/exp v0.0.0-20200224162631-6cc2880d07d6/go.mod h1:3jZMyOhIsHpP37uCMkUooju7aAi5cS1Q23tOzKc+0MU=
-golang.org/x/exp v0.0.0-20210220032938-85be41e4509f h1:GrkO5AtFUU9U/1f5ctbIBXtBGeSJbWwIYfIsTcFMaX4=
 golang.org/x/exp v0.0.0-20210220032938-85be41e4509f/go.mod h1:I6l2HNBLBZEcrOoCpyKLdY2lHoRZ8lI4x60KMCQDft4=
 golang.org/x/image v0.0.0-20180708004352-c73c2afc3b81/go.mod h1:ux5Hcp/YLpHSI86hEcLt0YII63i6oz57MZXIpbrjZUs=
 golang.org/x/image v0.0.0-20190227222117-0694c2d4d067/go.mod h1:kZ7UVZpmo3dzQBMxlp+ypCbDeSB+sBbTgSJuh5dn5js=
-golang.org/x/image v0.0.0-20190802002840-cff245a6509b h1:+qEpEAPhDZ1o0x3tHzZTQDArnOixOzGD9HUJfcg0mb4=
 golang.org/x/image v0.0.0-20190802002840-cff245a6509b/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0=
 golang.org/x/lint v0.0.0-20181026193005-c67002cb31c3/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE=
 golang.org/x/lint v0.0.0-20190227174305-5b3e6a55c961/go.mod h1:wehouNa3lNwaWXcvxsM5YxQ5yQlVC4a0KAMCusXpPoU=
@@ -1046,11 +709,11 @@ golang.org/x/lint v0.0.0-20190930215403-16217165b5de/go.mod h1:6SW0HCj/g11FgYtHl
 golang.org/x/lint v0.0.0-20191125180803-fdd1cda4f05f/go.mod h1:5qLYkcX4OjUUV8bRuDixDT3tpyyb+LUpUlRWLxfhWrs=
 golang.org/x/lint v0.0.0-20200130185559-910be7a94367/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
 golang.org/x/lint v0.0.0-20200302205851-738671d3881b/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
+golang.org/x/lint v0.0.0-20201208152925-83fdc39ff7b5/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
 golang.org/x/lint v0.0.0-20210508222113-6edffad5e616 h1:VLliZ0d+/avPrXXH+OakdXhpJuEoBZuwh1m2j7U6Iug=
 golang.org/x/lint v0.0.0-20210508222113-6edffad5e616/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
 golang.org/x/mobile v0.0.0-20190312151609-d3739f865fa6/go.mod h1:z+o9i4GpDbdi3rU15maQ/Ox0txvL9dWGYEHz965HBQE=
 golang.org/x/mobile v0.0.0-20190719004257-d2bd2a29d028/go.mod h1:E/iHnbuqvinMTCcRqshq8CkpyQDoeVncDDYHnLhea+o=
-golang.org/x/mobile v0.0.0-20201217150744-e6ae53a27f4f h1:kgfVkAEEQXXQ0qc6dH7n6y37NAYmTFmz0YRwrRjgxKw=
 golang.org/x/mobile v0.0.0-20201217150744-e6ae53a27f4f/go.mod h1:skQtrUTUwhdJvXM/2KKJzY8pDgNr9I/FOMqDVRPBUS4=
 golang.org/x/mod v0.0.0-20190513183733-4bf6d317e70e/go.mod h1:mXi4GBBbnImb6dmsKGUJ2LatrhH/nqhxcFungHvyanc=
 golang.org/x/mod v0.1.0/go.mod h1:0QHyrYULN0/3qlju5TqG8bIK38QM8yzMo5ekMj3DlcY=
@@ -1060,22 +723,19 @@ golang.org/x/mod v0.1.1-0.20191209134235-331c550502dd/go.mod h1:s0Qsj1ACt9ePp/hM
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.1-0.20200828183125-ce943fd02449/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.4.2 h1:Gz96sIWK3OalVv/I/qNygP42zyoKp3xptRVCWRFEBvo=
+golang.org/x/mod v0.4.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
+golang.org/x/mod v0.4.1/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20181005035420-146acd28ed58/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20181023162649-9b4f9f5ad519/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20181114220301-adae6a3d119a/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20181201002055-351d144fa1fc/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20181220203305-927f97764cc3/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190108225652-1e06a53dbb7e/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20190125091013-d26f9f9a57f3/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190320064053-1272bf9dcd53/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190328230028-74de082e2cca/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190501004415-9ce7a6920f09/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190503192946-f4e77d36d62c/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
@@ -1083,11 +743,9 @@ golang.org/x/net v0.0.0-20190522155817-f3200d17e092/go.mod h1:HSz+uSET+XFnRR8LxR
 golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
 golang.org/x/net v0.0.0-20190613194153-d28f0bde5980/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20190628185345-da137c7871d7/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20190724013045-ca1201d0de80/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20190813141303-74dc4d7220e7/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20190827160401-ba9fcec4b297/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20190923162816-aa69164e4478/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20191004110552-13f9640d40b9/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20191209160850-c0dbc17a3553/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200114155413-6afb5195e5aa/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200202094626-16171245cfb2/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
@@ -1095,33 +753,58 @@ golang.org/x/net v0.0.0-20200222125558-5a598a2470a0/go.mod h1:z5CRVTTTmAJ677TzLL
 golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200301022130-244492dfa37a/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200324143707-d3edc9973b7e/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
+golang.org/x/net v0.0.0-20200501053045-e0ff5e5a1de5/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
+golang.org/x/net v0.0.0-20200506145744-7e3656a0809f/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
+golang.org/x/net v0.0.0-20200513185701-a91f0712d120/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
+golang.org/x/net v0.0.0-20200520182314-0ba52f642ac2/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20200625001655-4c5254603344/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
+golang.org/x/net v0.0.0-20200707034311-ab3426394381/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
 golang.org/x/net v0.0.0-20200822124328-c89045814202/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
+golang.org/x/net v0.0.0-20201031054903-ff519b6c9102/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20201110031124-69a78807bb2b/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20201202161906-c7110b5ffcbb/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
+golang.org/x/net v0.0.0-20201209123823-ac852fbbde11/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20201224014010-6772e930b67b/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
-golang.org/x/net v0.0.0-20210224082022-3d97a244fca7 h1:OgUuv8lsRpBibGNbSizVwKWlysjaNzmC9gYMhPVfqFM=
-golang.org/x/net v0.0.0-20210224082022-3d97a244fca7/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
+golang.org/x/net v0.0.0-20210119194325-5f4716e94777/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
+golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
+golang.org/x/net v0.0.0-20210316092652-d523dce5a7f4/go.mod h1:RBQZq4jEuRlivfhVLdyRGr576XBO4/greRjx4P4O3yc=
 golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
-golang.org/x/net v0.0.0-20210520170846-37e1c6afe023 h1:ADo5wSpq2gqaCGQWzk7S5vd//0iyyLeAratkEoG5dLE=
-golang.org/x/net v0.0.0-20210520170846-37e1c6afe023/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.0.0-20210503060351-7fd8e65b6420/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.0.0-20210805182204-aaa1db679c0d/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.0.0-20210825183410-e898025ed96a h1:bRuuGXV8wwSdGTB+CtJf+FjgO1APK1CoO39T4BN/XBw=
+golang.org/x/net v0.0.0-20210825183410-e898025ed96a/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20191202225959-858c2ad4c8b6/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
-golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d h1:TzXSXBo42m9gQenoE3b9BGiEpg5IG2JkU5FkPIawgtw=
 golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
+golang.org/x/oauth2 v0.0.0-20200902213428-5d25da1a8d43/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20201109201403-9fd604954f58/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20201208152858-08078c50e5b5/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20210218202405-ba52d332ba99/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20210220000619-9bb904979d93/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20210313182246-cd4f82c27b84/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20210402161424-2e8d93401602/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20210427180440-81ed05c6b58c/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20210628180205-a41e5a781914/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20210805134026-6f1e6394065a/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20210819190943-2bc19b11175f/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20211005180243-6b3c2da341f1 h1:B333XXssMuKQeBwiNODx4TupZy7bf4sxFZnN2ZOcvUE=
+golang.org/x/oauth2 v0.0.0-20211005180243-6b3c2da341f1/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190227155943-e225da77a7e6/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190911185100-cd5d95a43a6e/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sync v0.0.0-20200317015054-43a5402ce75a/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sync v0.0.0-20200625203802-6e8e738ad208/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201207232520-09787c993a3a/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20210220032951-036812b2e83c h1:5KslGYwFpkhGh+Q16bwMP3cOontH8FOep7tGV86Y7SQ=
 golang.org/x/sync v0.0.0-20210220032951-036812b2e83c/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sys v0.0.0-20180823144017-11551d06cbcc/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
@@ -1130,25 +813,19 @@ golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5h
 golang.org/x/sys v0.0.0-20181026203630-95b1ffbd15a5/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20181107165924-66b7b1311ac8/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20181116152217-5ac8a444bdc5/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20190124100055-b90733256f2e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190209173611-3b5209105503/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20190228124157-a34e9553db1e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190312061237-fead79001313/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190321052220-f7bb7a8bee54/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190422165155-953cdadca894/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190502145724-3ef323f4f1fd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190507160741-ecd444e8653b/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190606165138-5da285871e9c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190606203320-7fc4e5ec1444/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190616124812-15dcb6c0061f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190624142023-c5567b49c5d0/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190726091711-fc99dfbffb4e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190826190057-c7b8b68b1456/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190904154756-749cb33beabd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190916202348-b4ddaad3f8a3/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190924154521-2837fb4f24fe/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191001151750-bb3f8db39f24/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191002063906-3421d5a6bb1c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191005200804-aed5e4c7ecf9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -1160,57 +837,74 @@ golang.org/x/sys v0.0.0-20191204072324-ce4227a45e2e/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20191228213918-04cbcbbfeed8/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200106162015-b016eb3dc98e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200113162924-86b910548bc1/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200116001909-b77594299b42/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200120151820-655fe14d7479/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200122134326-e047566fdf82/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200124204421-9fbb57f87de9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200202164722-d101bd2416d5/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200212091648-12a6c2dcc1e4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200217220822-9197077df867/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200223170610-d5e6a3e2c0ae/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200302150141-5c8b2ff67527/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200323222414-85ca7c5b95cd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20200331124033-c3d80250170d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20200501052902-10377860bb8e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20200511232937-7e40ca221e25/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20200515095857-1151b9dac4a9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200519105757-fe76b779f299/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20200523222454-059865788121/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200615200032-f1bc736245b1/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200625212154-ddb9806d33ae/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20200803210538-64077c9b5642/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200831180312-196b9ba8737a/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20200905004654-be1d3432aa8f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200909081042-eff7692f9009/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200916030750-2334cc1a136f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200923182605-d9f96fdee20d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20201201145000-ef89a241ccb3/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210104204734-6f8348627aad/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210119212857-b64e53b001e4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210124154548-22da62e12c0c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210225134936-a50acf3fe073/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210220050731-9a76102bfb43/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210305230114-8fe3ee5dd75b/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210315160823-c6e025ad8005/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210320140829-1e4c9ba3b0c4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210324051608-47abb6519492/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210330210617-4fbd30eecc44/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210403161142-5e06dd20ab57/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210426230700-d19ff857e887 h1:dXfMednGJh/SUUFjTLsWJz3P+TQt9qnR11GgeI3vWKs=
 golang.org/x/sys v0.0.0-20210426230700-d19ff857e887/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210503080704-8803ae5d1324/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210510120138-977fb7262007/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210514084401-e8d321eab015/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210616094352-59db8d763f22 h1:RqytpXGR1iVNX7psjB3ff8y7sNFinVFvkx1c8SjBkio=
+golang.org/x/sys v0.0.0-20210603125802-9665404d3644/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210616094352-59db8d763f22/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/term v0.0.0-20201117132131-f5c789dd3221/go.mod h1:Nr5EML6q2oocZ2LXRh80K7BxOlk5/8JxuGnuhpl+muw=
+golang.org/x/sys v0.0.0-20210630005230-0f9fa26af87c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210806184541-e5e7981a1069/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210809222454-d867a43fc93e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210823070655-63515b42dcdf/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210831042530-f4d43177bf5e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210908233432-aa78b53d3365/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359 h1:2B5p2L5IfGiD7+b9BOoRMC6DgObAVZV+Fsp050NqXik=
+golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.0.0-20210220032956-6a3ed077a48d h1:SZxvLBoTP5yHO3Frd4z4vrF+DBX9vMVanchswa69toE=
-golang.org/x/term v0.0.0-20210220032956-6a3ed077a48d/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
+golang.org/x/term v0.0.0-20210615171337-6886f2dfbf5b h1:9zKuko04nR4gjZ4+DNjHqRlAJqbJETHwiNKDqTfOjfE=
+golang.org/x/term v0.0.0-20210615171337-6886f2dfbf5b/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.4 h1:0YWbFKbhXG/wIiuHDSKpS0Iy7FSA+u45VtBMfQcFTTc=
 golang.org/x/text v0.3.4/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.5/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.6 h1:aRYxNxv6iGQlyVaZmk6ZgYEDa+Jg18DxebPSrd6bg1M=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/time v0.0.0-20180412165947-fbb02b2291d2/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
+golang.org/x/text v0.3.7 h1:olpwvP2KacW1ZWvsR7uQhoyTYvKAupfQrRGBFM352Gk=
+golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/time v0.0.0-20200630173020-3af7569d3a1e/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/time v0.0.0-20210220033141-f8bda1e9f3ba h1:O8mE0/t419eoIwhTFpKVkHiTs/Igowgfkj25AcZrtiE=
 golang.org/x/time v0.0.0-20210220033141-f8bda1e9f3ba/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac h1:7zkz7BUtwNFFqcowJ+RIgu2MaV/MapERkDIy+mwPyjs=
 golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
@@ -1219,7 +913,6 @@ golang.org/x/tools v0.0.0-20180525024113-a5b4c53f6e8b/go.mod h1:n7NCudcB/nEzxVGm
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20181030221726-6c7e314b6563/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190114222345-bf090417da8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
-golang.org/x/tools v0.0.0-20190125232054-d66bd3c5d5a6/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190206041539-40960b6deb8e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190226205152-f727befe758c/go.mod h1:9Yl7xja0Znq3iFh3HoIrodX9oNMXvdceNzlUR8zjMvY=
 golang.org/x/tools v0.0.0-20190311212946-11955173bddd/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
@@ -1230,8 +923,6 @@ golang.org/x/tools v0.0.0-20190425150028-36563e24a262/go.mod h1:RgjU9mgBXZiqYHBn
 golang.org/x/tools v0.0.0-20190506145303-2d16b83fe98c/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
 golang.org/x/tools v0.0.0-20190524140312-2c0ae7006135/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
 golang.org/x/tools v0.0.0-20190606124116-d0a3d012864b/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
-golang.org/x/tools v0.0.0-20190614205625-5aca471b1d59/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
-golang.org/x/tools v0.0.0-20190617190820-da514acc4774/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190621195816-6e04913cbbac/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190624222133-a101b041ded4/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190628153133-6cdbf07be9d0/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
@@ -1245,7 +936,6 @@ golang.org/x/tools v0.0.0-20191115202509-3a792d9c32b2/go.mod h1:b+2E5dAYhXwXZwtn
 golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191125144606-a911d9008d1f/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191130070609-6e064ea0cf2d/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20191216052735-49a3e744a425/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
 golang.org/x/tools v0.0.0-20191216173652-a0e659d51361/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
 golang.org/x/tools v0.0.0-20191227053925-7b8e75db28f4/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
 golang.org/x/tools v0.0.0-20200117012304-6edc0a871e69/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
@@ -1256,13 +946,33 @@ golang.org/x/tools v0.0.0-20200204074204-1cc6d1ef6c74/go.mod h1:TB2adYChydJhpapK
 golang.org/x/tools v0.0.0-20200207183749-b753a1ba74fa/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
 golang.org/x/tools v0.0.0-20200212150539-ea181f53ac56/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
 golang.org/x/tools v0.0.0-20200224181240-023911ca70b2/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
+golang.org/x/tools v0.0.0-20200227222343-706bc42d1f0d/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
 golang.org/x/tools v0.0.0-20200304193943-95d2e580d8eb/go.mod h1:o4KQGtdN14AW+yjsvvwRTJJuXz8XRtIHtEnmAXLyFUw=
+golang.org/x/tools v0.0.0-20200312045724-11d5b4c81c7d/go.mod h1:o4KQGtdN14AW+yjsvvwRTJJuXz8XRtIHtEnmAXLyFUw=
+golang.org/x/tools v0.0.0-20200331025713-a30bf2db82d4/go.mod h1:Sl4aGygMT6LrqrWclx+PTx3U+LnKx/seiNR+3G19Ar8=
+golang.org/x/tools v0.0.0-20200501065659-ab2804fb9c9d/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
 golang.org/x/tools v0.0.0-20200505023115-26f46d2f7ef8/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
+golang.org/x/tools v0.0.0-20200512131952-2bc93b1c0c88/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
+golang.org/x/tools v0.0.0-20200515010526-7d3b6ebf133d/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
+golang.org/x/tools v0.0.0-20200618134242-20370b0cb4b2/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
 golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
+golang.org/x/tools v0.0.0-20200729194436-6467de6f59a7/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
+golang.org/x/tools v0.0.0-20200804011535-6c149bb5ef0d/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
+golang.org/x/tools v0.0.0-20200825202427-b303f430e36d/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
+golang.org/x/tools v0.0.0-20200904185747-39188db58858/go.mod h1:Cj7w3i3Rnn0Xh82ur9kSqwfTHTeVxaDqrfMjpcNT6bE=
+golang.org/x/tools v0.0.0-20201110124207-079ba7bd75cd/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
+golang.org/x/tools v0.0.0-20201201161351-ac6f37ff4c2a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
+golang.org/x/tools v0.0.0-20201208233053-a543418bbed2/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
+golang.org/x/tools v0.0.0-20210105154028-b0ab187a4818/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.1.0/go.mod h1:xkSsbof2nBLbhDlRMhhhyNLN/zl3eTqcnHD5viDpcZ0=
-golang.org/x/tools v0.1.2 h1:kRBLX7v7Af8W7Gdbbc908OJcdgtK8bOz9Uaj8/F1ACA=
+golang.org/x/tools v0.1.1/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
 golang.org/x/tools v0.1.2/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
+golang.org/x/tools v0.1.3/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
+golang.org/x/tools v0.1.4/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
+golang.org/x/tools v0.1.5/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
+golang.org/x/tools v0.1.6-0.20210820212750-d4cc65f0b2ff h1:VX/uD7MK0AHXGiScH3fsieUQUcpmRERPDYtqZdJnA+Q=
+golang.org/x/tools v0.1.6-0.20210820212750-d4cc65f0b2ff/go.mod h1:YD9qOF0M9xpSpdWTBbzEl5e/RnCefISl8E5Noe10jFM=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
@@ -1270,12 +980,9 @@ golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1 h1:go1bK/D/BFZV2I8cIQd1N
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 gonum.org/v1/gonum v0.0.0-20180816165407-929014505bf4/go.mod h1:Y+Yx5eoAFn32cQvJDxZx5Dpnq+c3wtXuadVZAcxbbBo=
 gonum.org/v1/gonum v0.0.0-20190331200053-3d26580ed485/go.mod h1:2ltnJ7xHfj0zHS40VVPYEAAMTa3ZGguvHGBSJeRWqE0=
-gonum.org/v1/gonum v0.6.2 h1:4r+yNT0+8SWcOkXP+63H2zQbN+USnC73cjGUxnDF94Q=
 gonum.org/v1/gonum v0.6.2/go.mod h1:9mxDZsDKxgMAuccQkewq682L+0eCu4dCN2yonUJTCLU=
 gonum.org/v1/netlib v0.0.0-20190313105609-8cb42192e0e0/go.mod h1:wa6Ws7BG/ESfp6dHfk7C6KdzKA7wR7u/rKwOGE66zvw=
-gonum.org/v1/netlib v0.0.0-20190331212654-76723241ea4e h1:jRyg0XfpwWlhEV8mDfdNGBeSJM2fuyh9Yjrnd8kF2Ts=
 gonum.org/v1/netlib v0.0.0-20190331212654-76723241ea4e/go.mod h1:kS+toOQn6AQKjmKJ7gzohV1XkqsFehRA2FbsbkopSuQ=
-gonum.org/v1/plot v0.0.0-20190515093506-e2840ee46a6b h1:Qh4dB5D/WpoUUp3lSod7qgoyEHbDGPUWjIbnqdqqe1k=
 gonum.org/v1/plot v0.0.0-20190515093506-e2840ee46a6b/go.mod h1:Wt8AAjI+ypCyYX3nZBvf6cAIx93T+c/OS2HFAYskSZc=
 google.golang.org/api v0.4.0/go.mod h1:8k5glujaEP+g9n7WNsDg8QP6cUVNI86fCNMcbazEtwE=
 google.golang.org/api v0.7.0/go.mod h1:WtwebWUNSVBH/HAw79HIFXZNqEvBhG+Ra+ax0hx3E3M=
@@ -1284,17 +991,37 @@ google.golang.org/api v0.9.0/go.mod h1:o4eAsZoiT+ibD93RtjEohWalFOjRDx6CVaqeizhEn
 google.golang.org/api v0.13.0/go.mod h1:iLdEw5Ide6rF15KTC1Kkl0iskquN2gFfn9o9XIsbkAI=
 google.golang.org/api v0.14.0/go.mod h1:iLdEw5Ide6rF15KTC1Kkl0iskquN2gFfn9o9XIsbkAI=
 google.golang.org/api v0.15.0/go.mod h1:iLdEw5Ide6rF15KTC1Kkl0iskquN2gFfn9o9XIsbkAI=
-google.golang.org/api v0.15.1-0.20200106000736-b8fc810ca6b5/go.mod h1:iLdEw5Ide6rF15KTC1Kkl0iskquN2gFfn9o9XIsbkAI=
 google.golang.org/api v0.17.0/go.mod h1:BwFmGc8tA3vsd7r/7kR8DY7iEEGSU04BFxCo5jP/sfE=
 google.golang.org/api v0.18.0/go.mod h1:BwFmGc8tA3vsd7r/7kR8DY7iEEGSU04BFxCo5jP/sfE=
-google.golang.org/api v0.20.0 h1:jz2KixHX7EcCPiQrySzPdnYT7DbINAypCqKZ1Z7GM40=
+google.golang.org/api v0.19.0/go.mod h1:BwFmGc8tA3vsd7r/7kR8DY7iEEGSU04BFxCo5jP/sfE=
 google.golang.org/api v0.20.0/go.mod h1:BwFmGc8tA3vsd7r/7kR8DY7iEEGSU04BFxCo5jP/sfE=
+google.golang.org/api v0.22.0/go.mod h1:BwFmGc8tA3vsd7r/7kR8DY7iEEGSU04BFxCo5jP/sfE=
+google.golang.org/api v0.24.0/go.mod h1:lIXQywCXRcnZPGlsd8NbLnOjtAoL6em04bJ9+z0MncE=
+google.golang.org/api v0.28.0/go.mod h1:lIXQywCXRcnZPGlsd8NbLnOjtAoL6em04bJ9+z0MncE=
+google.golang.org/api v0.29.0/go.mod h1:Lcubydp8VUV7KeIHD9z2Bys/sm/vGKnG1UHuDBSrHWM=
+google.golang.org/api v0.30.0/go.mod h1:QGmEvQ87FHZNiUVJkT14jQNYJ4ZJjdRF23ZXz5138Fc=
+google.golang.org/api v0.35.0/go.mod h1:/XrVsuzM0rZmrsbjJutiuftIzeuTQcEeaYcSk/mQ1dg=
+google.golang.org/api v0.36.0/go.mod h1:+z5ficQTmoYpPn8LCUNVpK5I7hwkpjbcgqA7I34qYtE=
+google.golang.org/api v0.40.0/go.mod h1:fYKFpnQN0DsDSKRVRcQSDQNtqWPfM9i+zNPxepjRCQ8=
+google.golang.org/api v0.41.0/go.mod h1:RkxM5lITDfTzmyKFPt+wGrCJbVfniCr2ool8kTBzRTU=
+google.golang.org/api v0.43.0/go.mod h1:nQsDGjRXMo4lvh5hP0TKqF244gqhGcr/YSIykhUk/94=
+google.golang.org/api v0.44.0/go.mod h1:EBOGZqzyhtvMDoxwS97ctnh0zUmYY6CxqXsc1AvkYD8=
+google.golang.org/api v0.46.0/go.mod h1:ceL4oozhkAiTID8XMmJBsIxID/9wMXJVVFXPg4ylg3I=
+google.golang.org/api v0.47.0/go.mod h1:Wbvgpq1HddcWVtzsVLyfLp8lDg6AA241LmgIL59tHXo=
+google.golang.org/api v0.48.0/go.mod h1:71Pr1vy+TAZRPkPs/xlCf5SsU8WjuAWv1Pfjbtukyy4=
+google.golang.org/api v0.50.0/go.mod h1:4bNT5pAuq5ji4SRZm+5QIkjny9JAyVD/3gaSihNefaw=
+google.golang.org/api v0.51.0/go.mod h1:t4HdrdoNgyN5cbEfm7Lum0lcLDLiise1F8qDKX00sOU=
+google.golang.org/api v0.54.0/go.mod h1:7C4bFFOvVDGXjfDTAsgGwDgAxRDeQ4X8NvUedIt6z3k=
+google.golang.org/api v0.55.0/go.mod h1:38yMfeP1kfjsl8isn0tliTjIb1rJXcQi4UXlbqivdVE=
+google.golang.org/api v0.57.0/go.mod h1:dVPlbZyBo2/OjBpmvNdpn2GRm6rPy75jyU7bmhdrMgI=
 google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM=
 google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/appengine v1.5.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/appengine v1.6.1/go.mod h1:i06prIuMbXzDqacNJfV5OdTW448YApPu5ww/cMBSeb0=
-google.golang.org/appengine v1.6.5 h1:tycE03LOZYQNhDpS27tcQdAzLCVMaj7QT2SXxebnpCM=
 google.golang.org/appengine v1.6.5/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
+google.golang.org/appengine v1.6.6/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
+google.golang.org/appengine v1.6.7 h1:FZR1q0exgwxzPzp/aF+VccGrSfxfPpkBqjIIEq3ru6c=
+google.golang.org/appengine v1.6.7/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
 google.golang.org/genproto v0.0.0-20180817151627-c66870c02cf8/go.mod h1:JiN7NxoALGmiZfu7CAH4rXhgtRTLTxftemlI0sWmxmc=
 google.golang.org/genproto v0.0.0-20190307195333-5fe7a883aa19/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
 google.golang.org/genproto v0.0.0-20190418145605-e7d98fc518a7/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
@@ -1313,32 +1040,78 @@ google.golang.org/genproto v0.0.0-20200122232147-0452cf42e150/go.mod h1:n3cpQtvx
 google.golang.org/genproto v0.0.0-20200204135345-fa8e72b47b90/go.mod h1:GmwEX6Z4W5gMy59cAlVYjN9JhxgbQH6Gn+gFDQe2lzA=
 google.golang.org/genproto v0.0.0-20200212174721-66ed5ce911ce/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
 google.golang.org/genproto v0.0.0-20200224152610-e50cd9704f63/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
+google.golang.org/genproto v0.0.0-20200228133532-8c2c7df3a383/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
 google.golang.org/genproto v0.0.0-20200305110556-506484158171/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
+google.golang.org/genproto v0.0.0-20200312145019-da6875a35672/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
+google.golang.org/genproto v0.0.0-20200331122359-1ee6d9798940/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
 google.golang.org/genproto v0.0.0-20200423170343-7949de9c1215/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
+google.golang.org/genproto v0.0.0-20200430143042-b979b6f78d84/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
+google.golang.org/genproto v0.0.0-20200511104702-f5ebc3bea380/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
 google.golang.org/genproto v0.0.0-20200513103714-09dca8ec2884/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
+google.golang.org/genproto v0.0.0-20200515170657-fc4c6c6a6587/go.mod h1:YsZOwe1myG/8QRHRsmBRE1LrgQY60beZKjly0O1fX9U=
 google.golang.org/genproto v0.0.0-20200526211855-cb27e3aa2013/go.mod h1:NbSheEEYHJ7i3ixzK3sjbqSGDJWnxyFXZblF3eUsNvo=
+google.golang.org/genproto v0.0.0-20200618031413-b414f8b61790/go.mod h1:jDfRM7FcilCzHH/e9qn6dsT145K34l5v+OpcnNgKAAA=
+google.golang.org/genproto v0.0.0-20200729003335-053ba62fc06f/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20200804131852-c06518451d9c/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20200825200019-8632dd797987/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20200904004341-0bd0a958aa1d/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20201019141844-1ed22bb0c154/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20201110150050-8816d57aaa9a h1:pOwg4OoaRYScjmR4LlLgdtnyoHYTSAVhhqe5uPdpII8=
-google.golang.org/genproto v0.0.0-20201110150050-8816d57aaa9a/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20210602131652-f16073e35f0c h1:wtujag7C+4D6KMoulW9YauvK2lgdvCMS260jsqqBXr0=
+google.golang.org/genproto v0.0.0-20201102152239-715cce707fb0/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20201109203340-2640f1f9cdfb/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20201201144952-b05cb90ed32e/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20201210142538-e3217bee35cc/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20201214200347-8c77b98c765d/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20210222152913-aa3ee6e6a81c/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20210303154014-9728d6b83eeb/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20210310155132-4ce2db91004e/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20210319143718-93e7006c17a6/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20210402141018-6c239bbf2bb1/go.mod h1:9lPAdzaEmUacj36I+k7YKbEc5CXzPIeORRgDAUOu28A=
+google.golang.org/genproto v0.0.0-20210429181445-86c259c2b4ab/go.mod h1:P3QM42oQyzQSnHPnZ/vqoCdDmzH28fzWByN9asMeM8A=
+google.golang.org/genproto v0.0.0-20210513213006-bf773b8c8384/go.mod h1:P3QM42oQyzQSnHPnZ/vqoCdDmzH28fzWByN9asMeM8A=
 google.golang.org/genproto v0.0.0-20210602131652-f16073e35f0c/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
+google.golang.org/genproto v0.0.0-20210604141403-392c879c8b08/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
+google.golang.org/genproto v0.0.0-20210608205507-b6d2f5bf0d7d/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
+google.golang.org/genproto v0.0.0-20210624195500-8bfb893ecb84/go.mod h1:SzzZ/N+nwJDaO1kznhnlzqS8ocJICar6hYhVyhi++24=
+google.golang.org/genproto v0.0.0-20210713002101-d411969a0d9a/go.mod h1:AxrInvYm1dci+enl5hChSFPOmmUF1+uAa/UsgNRWd7k=
+google.golang.org/genproto v0.0.0-20210716133855-ce7ef5c701ea/go.mod h1:AxrInvYm1dci+enl5hChSFPOmmUF1+uAa/UsgNRWd7k=
+google.golang.org/genproto v0.0.0-20210728212813-7823e685a01f/go.mod h1:ob2IJxKrgPT52GcgX759i1sleT07tiKowYBGbczaW48=
+google.golang.org/genproto v0.0.0-20210805201207-89edb61ffb67/go.mod h1:ob2IJxKrgPT52GcgX759i1sleT07tiKowYBGbczaW48=
+google.golang.org/genproto v0.0.0-20210813162853-db860fec028c/go.mod h1:cFeNkxwySK631ADgubI+/XFU/xp8FD5KIVV4rj8UC5w=
+google.golang.org/genproto v0.0.0-20210821163610-241b8fcbd6c8/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
+google.golang.org/genproto v0.0.0-20210828152312-66f60bf46e71/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
+google.golang.org/genproto v0.0.0-20210831024726-fe130286e0e2/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
+google.golang.org/genproto v0.0.0-20210903162649-d08c68adba83/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
+google.golang.org/genproto v0.0.0-20210924002016-3dee208752a0/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
+google.golang.org/genproto v0.0.0-20211021150943-2b146023228c h1:FqrtZMB5Wr+/RecOM3uPJNPfWR8Upb5hAPnt7PU6i4k=
+google.golang.org/genproto v0.0.0-20211021150943-2b146023228c/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
 google.golang.org/grpc v1.21.0/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
 google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
 google.golang.org/grpc v1.23.0/go.mod h1:Y5yQAOtifL1yxbo5wqy6BxZv8vAUGQwXBOALyacEbxg=
-google.golang.org/grpc v1.23.1/go.mod h1:Y5yQAOtifL1yxbo5wqy6BxZv8vAUGQwXBOALyacEbxg=
 google.golang.org/grpc v1.25.1/go.mod h1:c3i+UQWmh7LiEpx4sFZnkU36qjEYZ0imhYfXVyQciAY=
 google.golang.org/grpc v1.26.0/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk=
 google.golang.org/grpc v1.27.0/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk=
-google.golang.org/grpc v1.27.1 h1:zvIju4sqAGvwKspUQOhwnpcqSbzi7/H6QomNNjTL4sk=
 google.golang.org/grpc v1.27.1/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk=
+google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKal+60=
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
+google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
+google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
+google.golang.org/grpc v1.31.1/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.33.1/go.mod h1:fr5YgcSWrqhRRxogOsw7RzIpsmvOZ6IcH4kBYTpR3n0=
+google.golang.org/grpc v1.33.2/go.mod h1:JMHMWHQWaTccqQQlmk3MJZS+GWXOdAesneDmEnv2fbc=
+google.golang.org/grpc v1.34.0/go.mod h1:WotjhfgOW/POjDeRt8vscBtXq+2VjORFy659qA51WJ8=
+google.golang.org/grpc v1.35.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
 google.golang.org/grpc v1.36.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
+google.golang.org/grpc v1.36.1/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
 google.golang.org/grpc v1.37.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
-google.golang.org/grpc v1.38.0 h1:/9BgsAsa5nWe26HqOlvlgJnqBuktYOLCgjCPqsa56W0=
+google.golang.org/grpc v1.37.1/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
 google.golang.org/grpc v1.38.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
+google.golang.org/grpc v1.39.0/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnDzfrE=
+google.golang.org/grpc v1.39.1/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnDzfrE=
+google.golang.org/grpc v1.40.0 h1:AGJ0Ih4mHjSeibYkFGh1dD9KJ/eOtZ93I6hoHhukQ5Q=
+google.golang.org/grpc v1.40.0/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
+google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
 google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=
 google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM=
@@ -1348,39 +1121,31 @@ google.golang.org/protobuf v1.22.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2
 google.golang.org/protobuf v1.23.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
 google.golang.org/protobuf v1.23.1-0.20200526195155-81db48ad09cc/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
 google.golang.org/protobuf v1.24.0/go.mod h1:r/3tXBNzIEhYS9I1OUVjXDlt8tc493IdKGjtUeSXeh4=
-google.golang.org/protobuf v1.25.0 h1:Ejskq+SyPohKW+1uil0JJMtmHCgJPJ/qWTxr8qp+R4c=
 google.golang.org/protobuf v1.25.0/go.mod h1:9JNX74DMeImyA3h4bdi1ymwjUzf21/xIlbajtzgsN7c=
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
-google.golang.org/protobuf v1.26.0 h1:bxAC2xTBsZGibn2RTntX0oH50xLsqy1OxA9tTL3p/lk=
 google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
-gopkg.in/alecthomas/kingpin.v2 v2.2.6 h1:jMFz6MfLP0/4fUyZle81rXUoxOBFi19VUFKVDOQfozc=
+google.golang.org/protobuf v1.27.1 h1:SnqbnDw1V7RiZcXPx5MEeqPv2s79L9i7BJUlG/+RurQ=
+google.golang.org/protobuf v1.27.1/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
 gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLkstjWtayDeSgw=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f h1:BLraFXnmrev5lT+xlilqcH8XK9/i0At2xKjWk4p6zsU=
 gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
-gopkg.in/cheggaaa/pb.v1 v1.0.25/go.mod h1:V/YB90LKu/1FcN3WVnfiiE5oMCibMjukxqG/qStrOgw=
-gopkg.in/errgo.v2 v2.1.0 h1:0vLT13EuvQ0hNvakwLuFZ/jYrLp5F3kcWHXdRggjCE8=
 gopkg.in/errgo.v2 v2.1.0/go.mod h1:hNsd1EY+bozCKY1Ytp96fpM3vjJbqLJn88ws8XvfDNI=
-gopkg.in/fsnotify.v1 v1.4.7 h1:xOHLXZwVvI9hhs+cLKq5+I5onOuwQLhQwiu63xxlHs4=
 gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
-gopkg.in/gcfg.v1 v1.2.0 h1:0HIbH907iBTAntm+88IJV2qmJALDAh8sPekI9Vc1fm0=
 gopkg.in/gcfg.v1 v1.2.0/go.mod h1:yesOnuUOFQAhST5vPY4nbZsb/huCgGGXlipJsBn0b3o=
 gopkg.in/inf.v0 v0.9.1 h1:73M5CoZyi3ZLMOyDlQh031Cx6N9NDJ2Vvfl76EDAgDc=
 gopkg.in/inf.v0 v0.9.1/go.mod h1:cWUDdTG/fYaXco+Dcufb5Vnc6Gp2YChqWtbxRZE0mXw=
-gopkg.in/ini.v1 v1.51.0 h1:AQvPpx3LzTDM0AjnIRlVFwFFGC+npRopjZxLJj6gdno=
 gopkg.in/ini.v1 v1.51.0/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
-gopkg.in/mcuadros/go-syslog.v2 v2.2.1/go.mod h1:l5LPIyOOyIdQquNg+oU6Z3524YwrcqEm0aKH+5zpt2U=
+gopkg.in/ini.v1 v1.62.0/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
 gopkg.in/natefinch/lumberjack.v2 v2.0.0 h1:1Lc07Kr7qY4U2YPouBjpCLxpiyxIVoxqXgkXLknAOE8=
 gopkg.in/natefinch/lumberjack.v2 v2.0.0/go.mod h1:l0ndWWf7gzL7RNwBG7wST/UCcT4T24xpD6X8LsfU/+k=
-gopkg.in/resty.v1 v1.12.0 h1:CuXP0Pjfw9rOuY6EP+UvtNvt5DSqHpIxILZKT/quCZI=
 gopkg.in/resty.v1 v1.12.0/go.mod h1:mDo4pnntr5jdWRML875a/NmxYqAlA73dVijT2AXvQQo=
 gopkg.in/square/go-jose.v2 v2.2.2 h1:orlkJ3myw8CN1nVQHBFfloD+L3egixIa4FvUP6RosSA=
 gopkg.in/square/go-jose.v2 v2.2.2/go.mod h1:M9dMgbHiYLoDGQrXy7OpJDJWiKiU//h+vD76mk0e1AI=
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 h1:uRGJdciOHaEIrze2W8Q3AKkepLTh2hOroT7a+7czfdQ=
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7/go.mod h1:dt/ZhP58zS4L8KSrWDmTeBkI65Dw0HsyUHuEVlX15mw=
-gopkg.in/warnings.v0 v0.1.1 h1:XM28wIgFzaBmeZ5dNHIpWLQpt/9DGKxk+rCg/22nnYE=
 gopkg.in/warnings.v0 v0.1.1/go.mod h1:jksf8JmL6Qr/oQM2OXTHunEvvTAsrWBLb6OOjuVWRNI=
 gopkg.in/yaml.v2 v2.0.0-20170812160011-eb3733d160e7/go.mod h1:JAlM8MvJe8wmxCU4Bli9HhUf9+ttbYbLASfIpnQbh74=
 gopkg.in/yaml.v2 v2.2.1/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
@@ -1388,167 +1153,88 @@ gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.3/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.4/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.5/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
-gopkg.in/yaml.v2 v2.2.7/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.8/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.3.0/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY=
 gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
-gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c h1:dUUwHk2QECo/6vqA44rthZ8ie2QXMNeKRTHCNY2nXvo=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.0-20200615113413-eeeca48fe776/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b h1:h8qDotaEPuJATrMmW04NCwg7v22aHH28wwpauUhK9Oo=
 gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-gotest.tools v2.2.0+incompatible h1:VsBPFP1AI068pPrMxtb/S8Zkgf9xEmTLJjfM+P5UIEo=
-gotest.tools v2.2.0+incompatible/go.mod h1:DsYFclhRJ6vuDpmuTbkuFWG+y2sxOXAzmJt81HFBacw=
 gotest.tools/v3 v3.0.2/go.mod h1:3SzNCllyD9/Y+b5r9JIKQ474KzkZyqLqEfYqMsX94Bk=
-gotest.tools/v3 v3.0.3 h1:4AuOwCGf4lLR9u3YOe2awrHygurzhO/HeQ6laiA6Sx0=
 gotest.tools/v3 v3.0.3/go.mod h1:Z7Lb0S5l+klDB31fvDQX8ss/FlKDxtlFlw3Oa8Ymbl8=
 honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.0-20190106161140-3f1c8253044a/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.0-20190418001031-e561f6794a2a/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
-honnef.co/go/tools v0.0.1-2020.1.3 h1:sXmLre5bzIR6ypkjXCDI3jHPssRhc8KD/Ome589sc3U=
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-k8s.io/api v0.21.0 h1:gu5iGF4V6tfVCQ/R+8Hc0h7H1JuEhzyEi9S4R5LM8+Y=
-k8s.io/api v0.21.0/go.mod h1:+YbrhBBGgsxbF6o6Kj4KJPJnBmAKuXDeS3E18bgHNVU=
-k8s.io/api v0.22.0 h1:elCpMZ9UE8dLdYxr55E06TmSeji9I3KH494qH70/y+c=
-k8s.io/api v0.22.0/go.mod h1:0AoXXqst47OI/L0oGKq9DG61dvGRPXs7X4/B7KyjBCU=
-k8s.io/apiextensions-apiserver v0.21.0/go.mod h1:gsQGNtGkc/YoDG9loKI0V+oLZM4ljRPjc/sql5tmvzc=
-k8s.io/apiextensions-apiserver v0.22.0 h1:QTuZIQggaE7N8FTjur+1zxLmEPziphK7nNm8t+VNO3g=
-k8s.io/apiextensions-apiserver v0.22.0/go.mod h1:+9w/QQC/lwH2qTbpqndXXjwBgidlSmytvIUww16UACE=
-k8s.io/apimachinery v0.21.0 h1:3Fx+41if+IRavNcKOz09FwEXDBG6ORh6iMsTSelhkMA=
-k8s.io/apimachinery v0.21.0/go.mod h1:jbreFvJo3ov9rj7eWT7+sYiRx+qZuCYXwWT1bcDswPY=
-k8s.io/apimachinery v0.22.0 h1:CqH/BdNAzZl+sr3tc0D3VsK3u6ARVSo3GWyLmfIjbP0=
-k8s.io/apimachinery v0.22.0/go.mod h1:O3oNtNadZdeOMxHFVxOreoznohCpy0z6mocxbZr7oJ0=
-k8s.io/apiserver v0.21.0 h1:1hWMfsz+cXxB77k6/y0XxWxwl6l9OF26PC9QneUVn1Q=
-k8s.io/apiserver v0.21.0/go.mod h1:w2YSn4/WIwYuxG5zJmcqtRdtqgW/J2JRgFAqps3bBpg=
-k8s.io/apiserver v0.22.0 h1:KZh2asnRBjawLLfPOi6qiD+A2jaNt31HCnZG6AX3Qcs=
-k8s.io/apiserver v0.22.0/go.mod h1:04kaIEzIQrTGJ5syLppQWvpkLJXQtJECHmae+ZGc/nc=
-k8s.io/cli-runtime v0.21.0/go.mod h1:XoaHP93mGPF37MkLbjGVYqg3S1MnsFdKtiA/RZzzxOo=
-k8s.io/cli-runtime v0.22.0 h1:xM0UJ91iPKvPeooS/LS4U3sPVRAeUrUslJ0sUtE7a7Q=
-k8s.io/cli-runtime v0.22.0/go.mod h1:An6zELQ7udUI0GaXvkuMqyopPA14dIgNqpH8cZu1vig=
-k8s.io/client-go v0.21.0 h1:n0zzzJsAQmJngpC0IhgFcApZyoGXPrDIAD601HD09ag=
-k8s.io/client-go v0.21.0/go.mod h1:nNBytTF9qPFDEhoqgEPaarobC8QPae13bElIVHzIglA=
-k8s.io/client-go v0.22.0 h1:sD6o9O6tCwUKCENw8v+HFsuAbq2jCu8cWC61/ydwA50=
-k8s.io/client-go v0.22.0/go.mod h1:GUjIuXR5PiEv/RVK5OODUsm6eZk7wtSWZSaSJbpFdGg=
-k8s.io/cloud-provider v0.21.0/go.mod h1:z17TQgu3JgUFjcgby8sj5X86YdVK5Pbt+jm/eYMZU9M=
-k8s.io/cloud-provider v0.22.0 h1:eK0swLQ1TZCLefRbgwEo/ZS4ZDo6FkOJDkDIBITshyw=
-k8s.io/cloud-provider v0.22.0/go.mod h1:UsQNOxrStwOXoDfVNgEbKgcQt2BYuHGKobixm0zKTis=
-k8s.io/cluster-bootstrap v0.21.0/go.mod h1:rs7i1JpBCa56YNmnYxFJuoUghIwpMzDidY8ZmqiRnrQ=
-k8s.io/cluster-bootstrap v0.22.0 h1:XYx5fIoYJuD0+EyKXA5HXU7yc9beVHSe5hy6XRdx5jU=
-k8s.io/cluster-bootstrap v0.22.0/go.mod h1:VeZXiGfH+yfnC2KtvkSwNTAqahg6yiCV/szbWpoI+3k=
-k8s.io/code-generator v0.21.0/go.mod h1:hUlps5+9QaTrKx+jiM4rmq7YmH8wPOIko64uZCHDh6Q=
-k8s.io/code-generator v0.22.0 h1:wIo+6NuAEf+aP6dblF+fPJOkY/VnM6wqNHusiW/eQ3o=
-k8s.io/code-generator v0.22.0/go.mod h1:eV77Y09IopzeXOJzndrDyCI88UBok2h6WxAlBwpxa+o=
-k8s.io/component-base v0.21.0 h1:tLLGp4BBjQaCpS/KiuWh7m2xqvAdsxLm4ATxHSe5Zpg=
-k8s.io/component-base v0.21.0/go.mod h1:qvtjz6X0USWXbgmbfXR+Agik4RZ3jv2Bgr5QnZzdPYw=
-k8s.io/component-base v0.22.0 h1:ZTmX8hUqH9T9gc0mM42O+KDgtwTYbVTt2MwmLP0eK8A=
-k8s.io/component-base v0.22.0/go.mod h1:SXj6Z+V6P6GsBhHZVbWCw9hFjUdUYnJerlhhPnYCBCg=
-k8s.io/component-helpers v0.21.0 h1:SoWLsd63LI5uwofcHVSO4jtlmZEJRycfwNBKU4eAGPQ=
-k8s.io/component-helpers v0.21.0/go.mod h1:tezqefP7lxfvJyR+0a+6QtVrkZ/wIkyMLK4WcQ3Cj8U=
-k8s.io/component-helpers v0.22.0 h1:OoTOtxTkg/T16FRS1K/WfABzxliTCq3RTbFHMBSod/o=
-k8s.io/component-helpers v0.22.0/go.mod h1:YNIbQI59ayNiU8JHlPIxVkOUYycbKhk5Niy0pcyJOEY=
-k8s.io/controller-manager v0.21.0/go.mod h1:Ohy0GRNRKPVjB8C8G+dV+4aPn26m8HYUI6ejloUBvUA=
-k8s.io/controller-manager v0.22.0 h1:zFQx0Ji0IMv7z0gYC0Ruy0YQxtf1Lo2TQo9UqWNcKME=
-k8s.io/controller-manager v0.22.0/go.mod h1:KCFcmFIjh512sVIm1EhAPJ+4miASDvbZA5eO/2nbr2M=
-k8s.io/cri-api v0.21.0/go.mod h1:nJbXlTpXwYCYuGMR7v3PQb1Du4WOGj2I9085xMVjr3I=
-k8s.io/cri-api v0.22.0 h1:YECUji0xxCTCWFO/TUkrL1b44Ip6mZJbiqP6Us/+Vys=
-k8s.io/cri-api v0.22.0/go.mod h1:mj5DGUtElRyErU5AZ8EM0ahxbElYsaLAMTPhLPQ40Eg=
-k8s.io/csi-translation-lib v0.21.0/go.mod h1:edq+UMpgqEx3roTuGF/03uIuSOsI986jtu65+ytLlkA=
-k8s.io/csi-translation-lib v0.22.0 h1:mqyE5LVIn2jBEH1B9lSzgPwws3rzgJpflMPTbQJuXy8=
-k8s.io/csi-translation-lib v0.22.0/go.mod h1:wb6bRqDth2jcHfty7mLdQc7nfknHhIkAlAZgSgplXhc=
+honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
+k8s.io/api v0.23.0 h1:WrL1gb73VSC8obi8cuYETJGXEoFNEh3LU0Pt+Sokgro=
+k8s.io/api v0.23.0/go.mod h1:8wmDdLBHBNxtOIytwLstXt5E9PddnZb0GaMcqsvDBpg=
+k8s.io/apiextensions-apiserver v0.23.0/go.mod h1:xIFAEEDlAZgpVBl/1VSjGDmLoXAWRG40+GsWhKhAxY4=
+k8s.io/apimachinery v0.23.0 h1:mIfWRMjBuMdolAWJ3Fd+aPTMv3X9z+waiARMpvvb0HQ=
+k8s.io/apimachinery v0.23.0/go.mod h1:fFCTTBKvKcwTPFzjlcxp91uPFZr+JA0FubU4fLzzFYc=
+k8s.io/apiserver v0.23.0 h1:Ds/QveXWi9aJ8ISB0CJa4zBNc5njxAs5u3rmMIexqCY=
+k8s.io/apiserver v0.23.0/go.mod h1:Cec35u/9zAepDPPFyT+UMrgqOCjgJ5qtfVJDxjZYmt4=
+k8s.io/cli-runtime v0.23.0/go.mod h1:B5N3YH0KP1iKr6gEuJ/RRmGjO0mJQ/f/JrsmEiPQAlU=
+k8s.io/client-go v0.23.0 h1:vcsOqyPq7XV3QmQRCBH/t9BICJM9Q1M18qahjv+rebY=
+k8s.io/client-go v0.23.0/go.mod h1:hrDnpnK1mSr65lHHcUuIZIXDgEbzc7/683c6hyG4jTA=
+k8s.io/cloud-provider v0.23.0/go.mod h1:vY9zulPUCjwCg9TBMh5Qi42JUZUNecQNF7FojNELWws=
+k8s.io/cluster-bootstrap v0.23.0/go.mod h1:VltEnKWfrRTiKgOXp3ts3vh7yqNlH6KFKFflo9GtCBg=
+k8s.io/code-generator v0.23.0/go.mod h1:vQvOhDXhuzqiVfM/YHp+dmg10WDZCchJVObc9MvowsE=
+k8s.io/component-base v0.23.0 h1:UAnyzjvVZ2ZR1lF35YwtNY6VMN94WtOnArcXBu34es8=
+k8s.io/component-base v0.23.0/go.mod h1:DHH5uiFvLC1edCpvcTDV++NKULdYYU6pR9Tt3HIKMKI=
+k8s.io/component-helpers v0.23.0 h1:qNbqN10QTefiWcCOPkHL/0nn81sdKVv6ZgEXcSyot/U=
+k8s.io/component-helpers v0.23.0/go.mod h1:liXMh6FZS4qamKtMJQ7uLHnFe3tlC86RX5mJEk/aerg=
+k8s.io/controller-manager v0.23.0/go.mod h1:6/IKItSv6p9FY3mSbHgsOYmt4y+HDxiC5hEFg9rJVc8=
+k8s.io/cri-api v0.23.0/go.mod h1:2edENu3/mkyW3c6fVPPPaVGEFbLRacJizBbSp7ZOLOo=
+k8s.io/csi-translation-lib v0.23.0/go.mod h1:ho0ljka+BEcdlvFrG08L8FpYi6QJeSGgQLWeVOAeeM8=
 k8s.io/gengo v0.0.0-20200413195148-3a45101e95ac/go.mod h1:ezvh/TsK7cY6rbqRK0oQQ8IAqLxYwwyPxAX1Pzy0ii0=
-k8s.io/gengo v0.0.0-20201214224949-b6c5ce23f027 h1:Uusb3oh8XcdzDF/ndlI4ToKTYVlkCSJP39SRY2mfRAw=
-k8s.io/gengo v0.0.0-20201214224949-b6c5ce23f027/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
-k8s.io/heapster v1.2.0-beta.1/go.mod h1:h1uhptVXMwC8xtZBYsPXKVi8fpdlYkTs6k949KozGrM=
+k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
-k8s.io/klog/v2 v2.8.0 h1:Q3gmuM9hKEjefWFFYF0Mat+YyFJvsUyYuwyNNJ5C9Ts=
-k8s.io/klog/v2 v2.8.0/go.mod h1:hy9LJ/NvuK+iVyP4Ehqva4HxZG/oXyIS3n3Jmire4Ec=
-k8s.io/klog/v2 v2.9.0 h1:D7HV+n1V57XeZ0m6tdRkfknthUaM06VFbWldOFh8kzM=
-k8s.io/klog/v2 v2.9.0/go.mod h1:hy9LJ/NvuK+iVyP4Ehqva4HxZG/oXyIS3n3Jmire4Ec=
-k8s.io/kube-aggregator v0.21.0/go.mod h1:sIaa9L4QCBo9gjPyoGJns4cBjYVLq3s49FxF7m/1A0A=
-k8s.io/kube-aggregator v0.22.0 h1:he3plI8vlaPJxR9vsy/lL5ga1V8CoA8M8x1Bn8eTCeM=
-k8s.io/kube-aggregator v0.22.0/go.mod h1:zHTepg0Q4tKzru7Pwg1QYHWrU/wrvIXM8hUdDAH66qg=
-k8s.io/kube-controller-manager v0.21.0/go.mod h1:QGJ1P7eU4FQq8evpCHN5e4QwPpcr2sbWFJBO/DKBUrw=
-k8s.io/kube-controller-manager v0.22.0 h1:9IP8Q1JQE6jVv5Vy4Ay8BBFp1oqgZw2fGKV7c4Frp80=
-k8s.io/kube-controller-manager v0.22.0/go.mod h1:E/EYMoCj8bbPRmu19JF4B9QLyQL8Tywg+9Q/rg+F80U=
-k8s.io/kube-openapi v0.0.0-20210305001622-591a79e4bda7/go.mod h1:wXW5VT87nVfh/iLV8FpR2uDvrFyomxbtb1KivDbvPTE=
-k8s.io/kube-openapi v0.0.0-20210421082810-95288971da7e h1:KLHHjkdQFomZy8+06csTWZ0m1343QqxZhR2LJ1OxCYM=
+k8s.io/klog/v2 v2.4.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
+k8s.io/klog/v2 v2.30.0 h1:bUO6drIvCIsvZ/XFgfxoGFQU/a4Qkh0iAlvUR7vlHJw=
+k8s.io/klog/v2 v2.30.0/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
+k8s.io/kube-aggregator v0.23.0/go.mod h1:b1vpoaTWKZjCzvbe1KXFw3vPbISrghJsg7/RI8oZUME=
+k8s.io/kube-controller-manager v0.23.0/go.mod h1:iHapRJJBe+fWu6hG3ye43YMFEeZcnIlRxDUS72bwJoE=
 k8s.io/kube-openapi v0.0.0-20210421082810-95288971da7e/go.mod h1:vHXdDvt9+2spS2Rx9ql3I8tycm3H9FDfdUoIuKCefvw=
-k8s.io/kube-proxy v0.21.0/go.mod h1:36jW3e6+5iQql9tHrLjVrmwpPsbhTywoI6OCFL7MWRs=
-k8s.io/kube-proxy v0.22.0 h1:0wiIlhvkujEI//2JgKbWvlfnd2xsOV9TjXA6R4sHR0k=
-k8s.io/kube-proxy v0.22.0/go.mod h1:2ckKSCr8kZ0kNNCgxM7lt0g5CAaY767djotK4AEFPmI=
-k8s.io/kube-scheduler v0.21.0/go.mod h1:wf1oi1NHSsFYfG7lKwxJVmnQNBnhL9vOMXztcKQu5IU=
-k8s.io/kube-scheduler v0.22.0 h1:zk4+z/vyv9MAlppaYgv5PpPdvaq8bOYwIzUVu3dRVTs=
-k8s.io/kube-scheduler v0.22.0/go.mod h1:n6tdYAiaoqXGLazCwIpOEg42qby0VMDs1KmN4DjQf50=
-k8s.io/kubectl v0.21.0/go.mod h1:EU37NukZRXn1TpAkMUoy8Z/B2u6wjHDS4aInsDzVvks=
-k8s.io/kubectl v0.22.0 h1:EBb7xLUaidG/YXAI5AXam3lK2VlnoFShhlMjnJVTbGA=
-k8s.io/kubectl v0.22.0/go.mod h1:eeuP92uZbVL2UnOaf0nj9OjtI0hi/nekHU+0isURer0=
-k8s.io/kubelet v0.21.0/go.mod h1:G5ZxMTVev9t4bhmsSxDAWhH6wXDYEVHVVFyYsw4laR4=
-k8s.io/kubelet v0.22.0 h1:cVu1RWuikW9dMJSXDG2f6k81u7NuURrnzphgY/tQxZE=
-k8s.io/kubelet v0.22.0/go.mod h1:CMdsuh9OFgbpeE+n46GpVMDecLlI0HxSRHMoNrTmJk4=
-k8s.io/legacy-cloud-providers v0.21.0/go.mod h1:bNxo7gDg+PGkBmT/MFZswLTWdSWK9kAlS1s8DJca5q4=
-k8s.io/legacy-cloud-providers v0.22.0 h1:CL+nxjE1o2KxV2l+ySYadvieJYA/jdYU8PHWDIdy0JU=
-k8s.io/legacy-cloud-providers v0.22.0/go.mod h1:2tKlbeA9r0OYnBHyqHcnO1EoAeqYXw2IZH99DYwwErM=
-k8s.io/metrics v0.21.0/go.mod h1:L3Ji9EGPP1YBbfm9sPfEXSpnj8i24bfQbAFAsW0NueQ=
-k8s.io/metrics v0.22.0 h1:fQ9Rc0ZAfTBevXSyjSk2yogoNHmS0ae+IFLVGHs8h/g=
-k8s.io/metrics v0.22.0/go.mod h1:eYnwafAUNLLpVmY/msoq0RKIKH5C4TzfjKnMZ0Xrt3A=
-k8s.io/mount-utils v0.21.0/go.mod h1:dwXbIPxKtTjrBEaX1aK/CMEf1KZ8GzMHpe3NEBfdFXI=
-k8s.io/mount-utils v0.22.0 h1:yNUW+1HO+ZhYDEZ7a/14Un7nqW8Md4zeuLnenGCGDi4=
-k8s.io/mount-utils v0.22.0/go.mod h1:gUi5ht+05KHYc/vJ9q9wbvG3MCYBeOsB5FdTyM60Pzo=
-k8s.io/pod-security-admission v0.22.0 h1:WL+XUFyH++IyrFMMOKvL43Sx8hxH9GiawhV7ymOXAsc=
-k8s.io/pod-security-admission v0.22.0/go.mod h1:xKTKO4nzxLDROM+RRndSU7kCZc2XcBYRKLYS+gYuqfo=
-k8s.io/sample-apiserver v0.21.0/go.mod h1:yMffYq14yQZtuVPVBGaBJ+3Scb2xHT6QeqFfk3v+AEY=
-k8s.io/sample-apiserver v0.22.0 h1:cpTwo4/nJgKczOBTE/o4Xa3qVhwO2Llnnjgs9YdM/58=
-k8s.io/sample-apiserver v0.22.0/go.mod h1:Bkl0f9E1Moxwjvqct7kzDlTvNUTavsworU5FTPlVooA=
-k8s.io/system-validators v1.4.0/go.mod h1:bPldcLgkIUK22ALflnsXk8pvkTEndYdNuaHH6gRrl0Q=
-k8s.io/system-validators v1.5.0 h1:gGgluCTkpKc/zUszjamp4LFfMVM0wuYG2qjIFL4MMeQ=
-k8s.io/system-validators v1.5.0/go.mod h1:bPldcLgkIUK22ALflnsXk8pvkTEndYdNuaHH6gRrl0Q=
-k8s.io/utils v0.0.0-20201110183641-67b214c5f920 h1:CbnUZsM497iRC5QMVkHwyl8s2tB3g7yaSHkYPkpgelw=
+k8s.io/kube-openapi v0.0.0-20211115234752-e816edb12b65 h1:E3J9oCLlaobFUqsjG9DfKbP2BmgwBL2p7pn0A3dG9W4=
+k8s.io/kube-openapi v0.0.0-20211115234752-e816edb12b65/go.mod h1:sX9MT8g7NVZM5lVL/j8QyCCJe8YSMW30QvGZWaCIDIk=
+k8s.io/kube-proxy v0.23.0/go.mod h1:AFPfNIiOeDhHVtfN7ZfE1Wd8aP5qYov3khPu4VFeBb4=
+k8s.io/kube-scheduler v0.23.0/go.mod h1:BXDjbJEXtr9PU5/XzLtWMNG6Mid4GYBSGVWzP72UxKk=
+k8s.io/kubectl v0.23.0/go.mod h1:TfcGEs3u4dkmoC2eku1GYymdGaMtPMcaLLFrX/RB2kI=
+k8s.io/kubelet v0.23.0/go.mod h1:A4DxfIt5Ka+rz54HAFhs1bgiFjJT6lcaAYUcACZl1/k=
+k8s.io/legacy-cloud-providers v0.23.0/go.mod h1:tM5owPlhLyEYJC2FLHgcGu1jks5ANvH2JlY03mnUYU4=
+k8s.io/metrics v0.23.0/go.mod h1:NDiZTwppEtAuKJ1Rxt3S4dhyRzdp6yUcJf0vo023dPo=
+k8s.io/mount-utils v0.23.0/go.mod h1:9pFhzVjxle1osJUo++9MFDat9HPkQUOoHCn+eExZ3Ew=
+k8s.io/pod-security-admission v0.23.0/go.mod h1:vGExA081PHZFK9Yma4kuPtfWwy5zxbEUhniiUDKFicM=
+k8s.io/sample-apiserver v0.23.0/go.mod h1:o0U/1hkfndbnLg1OfVHQiG08lmDkYJq7qljCuwjoTrI=
+k8s.io/system-validators v1.6.0/go.mod h1:bPldcLgkIUK22ALflnsXk8pvkTEndYdNuaHH6gRrl0Q=
 k8s.io/utils v0.0.0-20201110183641-67b214c5f920/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
-k8s.io/utils v0.0.0-20210707171843-4b05e18ac7d9 h1:imL9YgXQ9p7xmPzHFm/vVd/cF78jad+n4wK1ABwYtMM=
-k8s.io/utils v0.0.0-20210707171843-4b05e18ac7d9/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
-modernc.org/cc v1.0.0 h1:nPibNuDEx6tvYrUAtvDTTw98rx5juGsa5zuDnKwEEQQ=
+k8s.io/utils v0.0.0-20210802155522-efc7438f0176/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
+k8s.io/utils v0.0.0-20210930125809-cb0fa318a74b h1:wxEMGetGMur3J1xuGLQY7GEQYg9bZxKn3tKo5k/eYcs=
+k8s.io/utils v0.0.0-20210930125809-cb0fa318a74b/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
 modernc.org/cc v1.0.0/go.mod h1:1Sk4//wdnYJiUIxnW8ddKpaOJCF37yAdqYnkxUpaYxw=
-modernc.org/golex v1.0.0 h1:wWpDlbK8ejRfSyi0frMyhilD3JBvtcx2AdGDnU+JtsE=
 modernc.org/golex v1.0.0/go.mod h1:b/QX9oBD/LhixY6NDh+IdGv17hgB+51fET1i2kPSmvk=
-modernc.org/mathutil v1.0.0 h1:93vKjrJopTPrtTNpZ8XIovER7iCIH1QU7wNbOQXC60I=
 modernc.org/mathutil v1.0.0/go.mod h1:wU0vUrJsVWBZ4P6e7xtFJEhFSNsfRLJ8H458uRjg03k=
-modernc.org/strutil v1.0.0 h1:XVFtQwFVwc02Wk+0L/Z/zDDXO81r5Lhe6iMKmGX3KhE=
 modernc.org/strutil v1.0.0/go.mod h1:lstksw84oURvj9y3tn8lGvRxyRC1S2+g5uuIzNfIOBs=
-modernc.org/xc v1.0.0 h1:7ccXrupWZIS3twbUGrtKmHS2DXY6xegFua+6O3xgAFU=
 modernc.org/xc v1.0.0/go.mod h1:mRNCo0bvLjGhHO9WsyuKVU4q0ceiDDDoEeWDJHrNx8I=
-rsc.io/binaryregexp v0.2.0 h1:HfqmD5MEmC0zvwBuF187nq9mdnXjXsSivRiXN7SmRkE=
 rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8=
-rsc.io/pdf v0.1.1 h1:k1MczvYDUvJBe93bYd7wrZLLUEcLZAuF824/I4e5Xr4=
 rsc.io/pdf v0.1.1/go.mod h1:n8OzWcQ6Sp37PL01nO98y4iUCRdTGarVfzxY20ICaU4=
-rsc.io/quote/v3 v3.1.0 h1:9JKUTTIUgS6kzR9mK1YuGKv6Nl+DijDNIc0ghT58FaY=
 rsc.io/quote/v3 v3.1.0/go.mod h1:yEA65RcK8LyAZtP9Kv3t0HmxON59tX3rD+tICJqUlj0=
-rsc.io/sampler v1.3.0 h1:7uVkIFmeBqHfdjD+gZwtXXI+RODJ2Wc4O7MPEh/QiW4=
 rsc.io/sampler v1.3.0/go.mod h1:T1hPZKmBbMNahiBKFy5HrXp6adAjACjK9JXDnKaTXpA=
-sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.0.15 h1:4uqm9Mv+w2MmBYD+F4qf/v6tDFUdPOk29C095RbU5mY=
-sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.0.15/go.mod h1:LEScyzhFmoF5pso/YSeBstl57mOzx9xlU9n85RGrDQg=
-sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.0.22 h1:fmRfl9WJ4ApJn7LxNuED4m0t18qivVQOxP6aAYG9J6c=
-sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.0.22/go.mod h1:LEScyzhFmoF5pso/YSeBstl57mOzx9xlU9n85RGrDQg=
-sigs.k8s.io/kustomize/api v0.8.5/go.mod h1:M377apnKT5ZHJS++6H4rQoCHmWtt6qTpp3mbe7p6OLY=
-sigs.k8s.io/kustomize/api v0.8.11 h1:LzQzlq6Z023b+mBtc6v72N2mSHYmN8x7ssgbf/hv0H8=
-sigs.k8s.io/kustomize/api v0.8.11/go.mod h1:a77Ls36JdfCWojpUqR6m60pdGY1AYFix4AH83nJtY1g=
-sigs.k8s.io/kustomize/cmd/config v0.9.7/go.mod h1:MvXCpHs77cfyxRmCNUQjIqCmZyYsbn5PyQpWiq44nW0=
-sigs.k8s.io/kustomize/cmd/config v0.9.13 h1:lqOf0QcFhNvgZkgrPINNRs7TxEO7IGVtLMyUJId3oRE=
-sigs.k8s.io/kustomize/cmd/config v0.9.13/go.mod h1:7547FLF8W/lTaDf0BDqFTbZxM9zqwEJqCKN9sSR0xSs=
-sigs.k8s.io/kustomize/kustomize/v4 v4.0.5/go.mod h1:C7rYla7sI8EnxHE/xEhRBSHMNfcL91fx0uKmUlUhrBk=
-sigs.k8s.io/kustomize/kustomize/v4 v4.2.0 h1:RKgbyHgzuHQZ35sBDzWcbnR3HBlJSYdSN0H+sx3tUkk=
-sigs.k8s.io/kustomize/kustomize/v4 v4.2.0/go.mod h1:MOkR6fmhwG7hEDRXBYELTi5GSFcLwfqwzTRHW3kv5go=
-sigs.k8s.io/kustomize/kyaml v0.10.15/go.mod h1:mlQFagmkm1P+W4lZJbJ/yaxMd8PqMRSC4cPcfUVt5Hg=
-sigs.k8s.io/kustomize/kyaml v0.11.0 h1:9KhiCPKaVyuPcgOLJXkvytOvjMJLoxpjodiycb4gHsA=
-sigs.k8s.io/kustomize/kyaml v0.11.0/go.mod h1:GNMwjim4Ypgp/MueD3zXHLRJEjz7RvtPae0AwlvEMFM=
+sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.0.25 h1:DEQ12ZRxJjsglk5JIi5bLgpKaHihGervKmg5uryaEHw=
+sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.0.25/go.mod h1:Mlj9PNLmG9bZ6BHFwFKDo5afkpWyUISkb9Me0GnK66I=
+sigs.k8s.io/json v0.0.0-20211020170558-c049b76a60c6 h1:fD1pz4yfdADVNfFmcP2aBEtudwUQ1AlLnRBALr33v3s=
+sigs.k8s.io/json v0.0.0-20211020170558-c049b76a60c6/go.mod h1:p4QtZmO4uMYipTQNzagwnNoseA6OxSUutVw05NhYDRs=
+sigs.k8s.io/kustomize/api v0.10.1/go.mod h1:2FigT1QN6xKdcnGS2Ppp1uIWrtWN28Ms8A3OZUZhwr8=
+sigs.k8s.io/kustomize/cmd/config v0.10.2/go.mod h1:K2aW7nXJ0AaT+VA/eO0/dzFLxmpFcTzudmAgDwPY1HQ=
+sigs.k8s.io/kustomize/kustomize/v4 v4.4.1/go.mod h1:qOKJMMz2mBP+vcS7vK+mNz4HBLjaQSWRY22EF6Tb7Io=
+sigs.k8s.io/kustomize/kyaml v0.13.0/go.mod h1:FTJxEZ86ScK184NpGSAQcfEqee0nul8oLCK30D47m4E=
 sigs.k8s.io/structured-merge-diff/v4 v4.0.2/go.mod h1:bJZC9H9iH24zzfZ/41RGcq60oK1F7G282QMXDPYydCw=
-sigs.k8s.io/structured-merge-diff/v4 v4.1.0 h1:C4r9BgJ98vrKnnVCjwCSXcWjWe0NKcUQkmzDXZXGwH8=
-sigs.k8s.io/structured-merge-diff/v4 v4.1.0/go.mod h1:bJZC9H9iH24zzfZ/41RGcq60oK1F7G282QMXDPYydCw=
 sigs.k8s.io/structured-merge-diff/v4 v4.1.2 h1:Hr/htKFmJEbtMgS/UD0N+gtgctAqz81t3nu+sPzynno=
 sigs.k8s.io/structured-merge-diff/v4 v4.1.2/go.mod h1:j/nl6xW8vLS49O8YvXW1ocPhZawJtm+Yrr7PPRQ0Vg4=
-sigs.k8s.io/yaml v1.1.0/go.mod h1:UJmg0vDUVViEyp3mgSv9WPwZCDxu4rQW1olrI1uml+o=
 sigs.k8s.io/yaml v1.2.0 h1:kr/MCeFWJWTwyaHoR9c8EjH9OumOmoF9YGiZd7lFm/Q=
 sigs.k8s.io/yaml v1.2.0/go.mod h1:yfXDCHCao9+ENCvLSE62v9VSji2MKu5jeNfTrofGhJc=
diff --git a/i18n/zh-cn.toml b/i18n/zh-cn.toml
new file mode 120000
index 0000000000..6c092af81a
--- /dev/null
+++ b/i18n/zh-cn.toml
@@ -0,0 +1 @@
+../data/i18n/zh-cn/zh-cn.toml
\ No newline at end of file
diff --git a/i18n/zh.toml b/i18n/zh.toml
deleted file mode 120000
index e4758b4160..0000000000
--- a/i18n/zh.toml
+++ /dev/null
@@ -1 +0,0 @@
-../data/i18n/zh/zh.toml
\ No newline at end of file
diff --git a/layouts/_default/baseof.html b/layouts/_default/baseof.html
index 612bddbb2c..aeb9d0229f 100644
--- a/layouts/_default/baseof.html
+++ b/layouts/_default/baseof.html
@@ -1,31 +1,29 @@
 <!doctype html>
 <html lang="{{ .Site.Language.Lang }}" class="{{.Params.class}} no-js">
-  <head>
+{{- if eq hugo.Environment "preview" -}}
+  <!-- deploy preview -->
+{{- end -}}
+  <head{{- if hugo.IsProduction}} class="live-site"{{- end -}}>
     {{ partial "head.html" . }}
   </head>
-  <body class="td-{{ .Kind }}{{- if ne .Params.cid "" -}}{{- printf " cid-%s" (lower .Params.cid) -}}{{- end -}}">
+  <body class="td-{{ .Kind }}{{- if ne (lower .Params.cid) "" -}}{{- printf " cid-%s" (lower .Params.cid) -}}{{- end -}}">
     <header>
       {{ partial "navbar.html" . }}
-    </header>
-    {{ block "announcement" . }}
-      {{ if .IsHome }}
-        {{ partial "frontpage-announcement.html" . }}
-      {{ else }}
+      {{ block "announcement" . }}
         {{ partial "announcement.html" . }}
       {{ end }}
-    {{ end }}
 		{{ block "hero" . }}
 		<!--  HERO  -->
 		<section class="header-hero text-white pb-4 light-text">
 			<div class="main-section">
 				<div id="headlineWrapper">
 					<h1>{{ block "hero-title" . }}{{ .Params.bigheader | default .Title }}{{ end }}</h1>
-					<h5>{{ .Params.abstract }}</h5>
 				</div>
 				{{ block "hero-more" . }}{{ end }}
 			</div>
 		</section>
 		{{ block "post-hero" . }}
+    </header>
       {{ block "deprecated" . }}
         {{ if or .IsHome ( eq .Params.cid "partners" ) ( eq .Params.cid "community" ) }}
           {{ partial "deprecation-warning.html" . }}
@@ -37,8 +35,8 @@
       <main role="main" class="td-main">
         {{ block "main" . }}{{ end }}
       </main>
-      {{ partial "footer.html" . }}
     </div>
+    {{ partialCached "footer.html" . }}
     {{ partialCached "scripts.html" . }}
   </body>
 </html>
\ No newline at end of file
diff --git a/layouts/_default/search.html b/layouts/_default/search.html
index 286e476de1..e8aa22ba29 100644
--- a/layouts/_default/search.html
+++ b/layouts/_default/search.html
@@ -3,18 +3,18 @@
   <head>
     {{ partial "head.html" . }}
   </head>
-  <body class="td-search {{- if ne .Params.cid "" -}}{{- printf " cid-%s" (lower .Params.cid) -}}{{- end -}}">
+  <body class="td-search {{- if ne (lower .Params.cid) "" -}}{{- printf " cid-%s" (lower .Params.cid) -}}{{- end -}}">
     <header>
       {{ partial "navbar.html" . }}
-      <div class="header-filler"></div>
-    </header>
-    {{ block "announcement" . }}
-      {{ if .IsHome }}
-        {{ partial "frontpage-announcement.html" . }}
-      {{ else }}
+      {{ block "announcement" . }}
         {{ partial "announcement.html" . }}
       {{ end }}
-    {{ end }}
+      {{ block "hero" . }}
+        <section class="header-hero filler">
+        </section>
+         {{ block "hero-more" . }}{{ end }}
+      {{ end }}
+    </header>
     <div class="td-outer">
       <main role="main" class="td-main">
         <section class="row td-search-result">
@@ -48,8 +48,8 @@
           </div>
         </section>
       </main>
-    {{ partial "footer.html" . }}
     </div>
+    {{ partial "footer.html" . }}
     {{ partialCached "scripts.html" . }}
   </body>
 </html>
diff --git a/layouts/blog/baseof.html b/layouts/blog/baseof.html
index d801da9d8a..4163c5b474 100644
--- a/layouts/blog/baseof.html
+++ b/layouts/blog/baseof.html
@@ -12,6 +12,7 @@
     <header>
       {{ partial "navbar.html" . }}
       {{ partial "announcement.html" . }}
+      {{ block "hero" . }}
       <section class="header-hero text-center text-white font-bold pb-4">
         <h1>
           {{ $sectionHeading := .Site.GetPage "section" .Section }}
@@ -20,6 +21,8 @@
           {{ end }}
         </h1>
       </section>
+         {{ block "hero-more" . }}{{ end }}
+      {{ end }}
     </header>
     <div class="container-fluid td-outer">
       <div class="td-main">
diff --git a/layouts/case-studies/list.html b/layouts/case-studies/list.html
index 0064737743..4f57dfa6ce 100644
--- a/layouts/case-studies/list.html
+++ b/layouts/case-studies/list.html
@@ -76,3 +76,6 @@
 	<a href="{{ .page.RelPermalink }}"{{ if $isForeignLanguage }} target="_blank"{{ end }}>{{ T "main_read_about"}} {{ .page.LinkTitle }}</a>
 </div>
 {{ end }}
+{{ define "announcement" }}
+<!-- skip announcement -->
+{{ end }}
diff --git a/layouts/community/list.html b/layouts/community/list.html
index a9eb9f73ce..9ce1091f30 100644
--- a/layouts/community/list.html
+++ b/layouts/community/list.html
@@ -1,4 +1,3 @@
 {{ define "main" }}
-<link rel="stylesheet" type="text/css" href="{{ "css/newcommunity.css" | relURL }}">
-    {{ .Content }}
+  {{ .Content }}
 {{ end }}
\ No newline at end of file
diff --git a/layouts/docs/baseof.html b/layouts/docs/baseof.html
index cc6237938b..846073bcf1 100644
--- a/layouts/docs/baseof.html
+++ b/layouts/docs/baseof.html
@@ -8,7 +8,11 @@
     <header>
       {{ partial "navbar.html" . }}
       {{ partial "announcement.html" . }}
-      <div class="header-filler"></div>
+      {{ block "hero" . }}
+        <section class="header-hero filler">
+        </section>
+         {{ block "hero-more" . }}{{ end }}
+      {{ end }}
     </header>
     <div class="container-fluid td-outer">
       <div class="td-main">
@@ -22,6 +26,11 @@
               {{ partial "deprecation-warning.html" . }}
             {{ end }}
               {{ block "main" . }}{{ end }}
+              {{- if .HasShortcode "thirdparty-content" -}}
+                {{ block "thirdparty-disclaimer" . }}
+                  {{ partial "docs/thirdparty-disclaimer.html" . }}
+                {{- end -}}
+              {{- end -}}
             {{ if (and (not .Params.hide_feedback) (.Site.Params.ui.feedback.enable) (.Site.GoogleAnalytics)) }}
               {{ partial "feedback.html" .Site.Params.ui.feedback }}
             {{ end }}
@@ -36,8 +45,8 @@
           </div>
         </div>
       </div>
-      {{ partial "footer.html" . }}
     </div>
+    {{ partial "footer.html" . }}
     {{ partial "scripts.html" . }}
   </body>
 </html>
diff --git a/layouts/docs/docsportal_home.html b/layouts/docs/docsportal_home.html
index 899e648a68..330197ea1c 100644
--- a/layouts/docs/docsportal_home.html
+++ b/layouts/docs/docsportal_home.html
@@ -1,7 +1,4 @@
 {{ define "main" }}
-    {{ if not .Params.notitle }}
-	 <h1>{{ .Title }}</h1>
-    {{ end }}
     {{ template "docs-portal-content" . }}
 {{ end }}
 
@@ -19,4 +16,11 @@
     </div>
   </div>
 </section>
-{{ end }}
\ No newline at end of file
+{{ end }}
+{{ define "hero" }}
+    <section class="header-hero text-white pb-4 light-text ">
+    {{ if not .Params.notitle }}
+    <h1>{{ .Title }}</h1>
+    {{ end }}
+    </section>
+{{ end }}
diff --git a/layouts/docs/list.html b/layouts/docs/list.html
index 81403b5396..fc02b249af 100644
--- a/layouts/docs/list.html
+++ b/layouts/docs/list.html
@@ -1,17 +1,43 @@
 {{ define "main" }}
-	<div class="td-content">
-		{{ $hasContent := false }}
-		{{ with .File }}
-			{{ if ne .Filename "" }}
-				{{ $hasContent =  (ge (len $.RawContent) 100) }}
-			{{ end }}
-		{{ end }}
-		{{ if $hasContent }}
-			{{ partial "docs/content-page" (dict "ctx" $ "page" $ ) }}
-		{{ else }}
-			<h1>{{ .Title }}</h1>
-			{{ with .Params.description }}<div class="lead">{{ . | markdownify }}</div>{{ end }}
-		{{ end }}
-		{{ partial "section-index.html" . }}
-	</div>
+{{- $child_of_first_section := false -}}
+{{- with .Parent -}}
+{{- if eq .CurrentSection .FirstSection -}}
+{{- $child_of_first_section = true -}}
+{{- end -}}
+{{- end -}}
+    <div class="td-content">
+        {{ $hasContent := false }}
+        {{ with .File }}
+            {{ if ne .Filename "" }}
+                {{ $hasContent =  (ge (len $.RawContent) 100) }}
+            {{ end }}
+        {{ end }}
+        {{ if $hasContent }}
+            {{- if $child_of_first_section -}}
+            {{ partial "docs/top-section-page" (dict "ctx" $ "page" $ ) }}
+            {{- else -}}
+            {{ partial "docs/content-page" (dict "ctx" $ "page" $ ) }}
+            {{- end -}}
+        {{ else }}
+            <h1>{{ .Title }}</h1>
+            {{ with .Params.description }}<div class="lead">{{ . | markdownify }}</div>{{ end }}
+        {{ end }}
+        {{ partial "section-index.html" . }}
+    </div>
+{{ end }}
+{{ define "hero" }}
+{{- $child_of_first_section := false -}}
+{{- with .Parent -}}
+{{- if eq .CurrentSection .FirstSection -}}
+{{- $child_of_first_section = true -}}
+{{- end -}}
+{{- end -}}
+{{- if $child_of_first_section -}}
+        <section class="header-hero text-white pb-4 light-text ">
+           <h1>{{ .Title }}</h1>
+        </section>
+{{- else -}}
+        <section class="header-hero filler">
+        </section>
+{{- end -}}
 {{ end }}
diff --git a/layouts/docs/single.html b/layouts/docs/single.html
index dec5eb46b6..935b7fd051 100644
--- a/layouts/docs/single.html
+++ b/layouts/docs/single.html
@@ -1,4 +1,12 @@
 {{ define "main" }}
     <div class="td-content">
     {{ partial "docs/content-page" (dict "ctx" . "page" .) }}
+    </div>
+{{ end }}
+{{ define "hero-more" }}
+{{ if .IsHome }}
+{{ with site.GetPage "section" "docs/tutorials/kubernetes-basics" }}
+<a href="{{ .RelPermalink }}" id="quickstartButton" class="button">{{ .LinkTitle }}</a>
+{{ end }}
+{{ end }}
 {{ end }}
\ No newline at end of file
diff --git a/layouts/index.headers b/layouts/index.headers
index 2402097ae6..09bb5d3e31 100644
--- a/layouts/index.headers
+++ b/layouts/index.headers
@@ -1,4 +1,4 @@
-{{- if eq (getenv "HUGO_ENV") "production" }}
+{{- if eq hugo.Environment "production" }}
 {{- $cssFilesFromConfig := site.Params.pushAssets.css -}}
 {{- $jsFilesFromConfig := site.Params.pushAssets.js -}}
 {{- $pages := site.RegularPages -}}
@@ -13,7 +13,7 @@
   {{- end -}}
 {{- range $pages }}
 {{- if or (.Params.deprecated) (eq .Params.class "gridPage") (.Params.case_study_styles) (.Params.css) (.Params.js) }}
-{{ .URL }}
+{{ .RelPermalink }}
   {{- if eq .Params.class "gridPage" }}
   Link: </css/gridpage.css>; rel=preload; as=style
   {{- end -}}
diff --git a/layouts/partials/announcement.html b/layouts/partials/announcement.html
index b1d68292db..bff71bfe4c 100644
--- a/layouts/partials/announcement.html
+++ b/layouts/partials/announcement.html
@@ -15,18 +15,18 @@
     {{- if or (eq .endTime nil ) (gt ( time .endTime ) now ) -}}
       {{- if not $announcementShown -}}
       {{- $announcementShown = true -}}
-  <section lang="en" id="announcement" style="background-color: #3371e3; color: #fff; {{ .style | safeCSS }}">
+  <div lang="en" id="announcement" style="background-color: #3371e3; color: #fff; {{ .style | safeCSS }}">
     <aside>
-      <div class="content announcement main-section" data-nosnippet>
+      <div class="announcement-main" data-nosnippet>
         {{ if .title }}
-        <h4 class="announcement">
+        <h4>
             {{ .title | markdownify }}
         </h4>
         {{ end }}
-        <p class="announcement">{{ .message | markdownify }}</p>
+        <p>{{ .message | markdownify }}</p>
       </div>
     </aside>
-  </section>
+  </div>
       {{- end -}}
       {{- end -}}
     {{- end -}}
diff --git a/layouts/partials/deprecation-warning.html b/layouts/partials/deprecation-warning.html
index 6b5bc1f2e2..588a1cad9f 100644
--- a/layouts/partials/deprecation-warning.html
+++ b/layouts/partials/deprecation-warning.html
@@ -1,6 +1,6 @@
 {{ if (.Site.Param "deprecated") }}
 <section id="deprecation-warning">
-  <div class="content deprecation-warning">
+  <div class="content deprecation-warning pageinfo">
     <h3>
       {{ T "deprecation_title" }} {{ .Param "version" }}
     </h3>
@@ -9,4 +9,10 @@
     </p>
   </div>
 </section>
+{{ else if and (eq .Section "blog") (not .Params.evergreen) .Date (.Date.Before (now.AddDate -1 0 0)) -}}
+<section id="deprecation-warning">
+  <div class="content deprecation-warning pageinfo outdated-blog">
+    <p>{{ T "outdated_blog__message" }}</p>
+  </div>
+</section>
 {{ end }}
\ No newline at end of file
diff --git a/layouts/partials/docs/thirdparty-disclaimer.html b/layouts/partials/docs/thirdparty-disclaimer.html
new file mode 100644
index 0000000000..0eca49d071
--- /dev/null
+++ b/layouts/partials/docs/thirdparty-disclaimer.html
@@ -0,0 +1,3 @@
+<div class="pageinfo pageinfo-secondary" id="third-party-content-disclaimer">
+{{ T "thirdparty_message_disclaimer" | safeHTML }}
+</div>
diff --git a/layouts/partials/docs/top-section-page.html b/layouts/partials/docs/top-section-page.html
new file mode 100644
index 0000000000..69834b3c53
--- /dev/null
+++ b/layouts/partials/docs/top-section-page.html
@@ -0,0 +1 @@
+{{ .page.Content }}
diff --git a/layouts/partials/frontpage-announcement.html b/layouts/partials/frontpage-announcement.html
deleted file mode 100644
index e70a387301..0000000000
--- a/layouts/partials/frontpage-announcement.html
+++ /dev/null
@@ -1,34 +0,0 @@
-{{ $dateRegExp := "^[0-9]{4}-1[0-2]|0[1-9]-(?:3[01]|0[1-9]|[12][0-9])T(?:2[0-3]|[01][0-9]):(?:[0-5][0-9]):(?:60|[0-5][0-9])$" }}
-{{ $announcementShown := false }}
-{{ range $.Site.Data.announcements }}
-  {{ range .announcements }}
-  {{ if or ( eq .endTime nil ) ( eq .message nil ) }}
-    {{ errorf "Invalid announcement: %#v" . }}
-  {{ end }}
-  {{ if and (ne .startTime nil ) (lt ( len ( findRE $dateRegExp .startTime ) ) 1 ) }}
-    {{ errorf "Invalid announcement start time: %#v" .startTime }}
-  {{ end }}
-  {{ if lt ( len ( findRE $dateRegExp .endTime ) ) 1 }}
-    {{ errorf "Invalid announcement end time: %#v" .endTime }}
-  {{ end }}
-  {{ if or (eq .startTime nil ) (lt ( time .startTime ) now ) }}
-    {{- if or (eq .endTime nil ) (gt ( time .endTime ) now ) -}}
-      {{- if not $announcementShown -}}
-      {{- $announcementShown = true -}}
-  <section lang="en" id="fp-announcement" style="background-color: #3371e3; color: #fff; {{ .style | safeCSS }}">
-    <aside>
-      <div class="content announcement main-section" data-nosnippet>
-        {{ if .title }}
-        <h4 class="announcement">
-            {{ .title | markdownify }}
-        </h4>
-        {{ end }}
-        <p class="announcement">{{ .message | markdownify }}</p>
-      </div>
-    </aside>
-  </section>
-      {{- end -}}
-      {{- end -}}
-    {{- end -}}
-  {{ end }}
-{{ end }}
\ No newline at end of file
diff --git a/layouts/partials/head.html b/layouts/partials/head.html
index c15f9ba05d..ccfb47f8f1 100644
--- a/layouts/partials/head.html
+++ b/layouts/partials/head.html
@@ -1,5 +1,12 @@
 {{- $isBlogPost := eq .Section "blog" }}
 {{- $ogType := cond (.IsHome) "website" "article" }}
+<!-- per-page robot indexing controls -->
+{{- if hugo.IsProduction -}}
+<meta name="ROBOTS" content="INDEX, FOLLOW">
+{{- else -}}
+<meta name="ROBOTS" content="NOINDEX, NOFOLLOW">
+{{- end -}}
+{{- if in (slice "production" "nonprod") hugo.Environment -}}
 <!-- Global site tag (gtag.js) - Google Analytics -->
 <script async src="https://www.googletagmanager.com/gtag/js?id=UA-36037335-10"></script>
 <script>
@@ -9,6 +16,7 @@
 
   gtag('config', 'UA-36037335-10');
 </script>
+{{- end -}}
 
 <!-- alternative translations -->
 {{ range .Translations -}}
@@ -19,21 +27,15 @@
 <meta charset="utf-8">
 <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
 {{ hugo.Generator }}
-{{ if eq (getenv "HUGO_ENV") "production" }}
-<META NAME="ROBOTS" CONTENT="INDEX, FOLLOW">
-{{ else }}
-<META NAME="ROBOTS" CONTENT="NOINDEX, NOFOLLOW">
-{{ end }}
 {{ range .AlternativeOutputFormats -}}
 <link rel="{{ .Rel }}" type="{{ .MediaType.Type }}" href="{{ .Permalink | safeURL }}">
 {{ end -}}
 {{ partialCached "favicons.html" . }}
 <title>{{ if .IsHome }}{{ .Site.Title }}{{ else }}{{ with .Title }}{{ . }} | {{ end }}{{ .Site.Title }}{{ end }}</title>
 {{- template "_internal/opengraph.html" . -}}
-{{- template "_internal/google_news.html" . -}}
 {{- template "_internal/schema.html" . -}}
 {{- template "_internal/twitter_cards.html" . -}}
-{{ if eq (getenv "HUGO_ENV") "production" }}
+{{- if hugo.IsProduction -}}
 {{ template "_internal/google_analytics_async.html" . }}
 {{ end }}
 {{ partialCached "head-css.html" . "asdf" }}
@@ -91,6 +93,14 @@
 <script async src="{{ "js/mermaid.min.js" | relURL }}"></script>
 {{ end }}
 
+{{- if eq (lower .Params.cid) "community" -}}
+{{- if eq .Params.community_styles_migrated true -}}
+<link href="/css/community.css" rel="stylesheet"><!-- legacy styles -->
+{{- else -}}
+<link href="/css/legacy_community.css" rel="stylesheet">
+{{- end -}}
+<script defer src="https://platform.twitter.com/widgets.js" charset="utf-8"></script>
+{{- end -}}
 <script src="{{ "js/script.js" | relURL }}"></script>
 {{ with .Params.js }}{{ range (split . ",") }}<script src="{{ (trim . " ") | relURL }}"></script><!-- custom js added -->
 {{ end }}{{ else }}<!-- no custom js detected -->{{ end }}
diff --git a/layouts/partials/navbar.html b/layouts/partials/navbar.html
index 63726a0f7e..b243965a41 100644
--- a/layouts/partials/navbar.html
+++ b/layouts/partials/navbar.html
@@ -1,5 +1,5 @@
 {{ $cover := .HasShortcode "blocks/cover" }}
-<nav class="js-navbar-scroll navbar navbar-expand navbar-dark {{ if $cover}} td-navbar-cover {{ end }} flex-row td-navbar" data-auto-burger="primary">
+<nav class="js-navbar-scroll navbar navbar-expand navbar-dark {{ if $cover}} td-navbar-cover {{ end }} flex-column flex-md-row td-navbar" data-auto-burger="primary">
         <a class="navbar-brand" href="{{ .Site.Home.RelPermalink }}"></a>
 	<div class="td-navbar-nav-scroll ml-md-auto" id="main_navbar">
 		
@@ -10,7 +10,7 @@
 			{{ with site.GetPage "section" . }}
 			<li class="nav-item mr-2 mb-lg-0">
 				{{ $active := eq .Section $.Section }}
-				<a class="nav-link{{if $active }} active{{end}}" href="{{ .RelPermalink }}" >{{ .Title }}</span></a>
+				<a class="nav-link{{if $active }} active{{end}}" href="{{ .RelPermalink }}" >{{ .Title }}</a>
 			</li>
 			{{ end }}
 			{{ end }}
diff --git a/layouts/partials/page-meta-links.html b/layouts/partials/page-meta-links.html
index 529bcea29c..35d19ea73d 100644
--- a/layouts/partials/page-meta-links.html
+++ b/layouts/partials/page-meta-links.html
@@ -1,6 +1,7 @@
 {{/* template adapted from Docsy theme */}}
-{{ if .Path }}
-  {{ $pathFormatted := replace .Path "\\" "/" }}
+
+{{ if .File.Path }}
+  {{ $pathFormatted := replace .File.Path "\\" "/" }}
   {{ $gh_repo := ($.Param "github_repo") }}
   {{ $gh_subdir := ($.Param "github_subdir") }}
   {{ $gh_project_repo := ($.Param "github_project_repo") }}
@@ -24,6 +25,10 @@
 
     {{ if not (.Param "auto_generated") }}
     <a href="{{ $editURL }}" target="_blank"><i class="fa fa-edit fa-fw"></i> {{ T "post_edit_this" }}</a>
+    {{- if .HasShortcode "thirdparty-content" -}}
+    <a href="#third-party-content-disclaimer" class="third-party-disclaimer-link"><i class="fa fa-icon-circle fa-fw"></i> {{ T "thirdparty_message_edit_disclaimer" | safeHTML }}</a>
+    {{- end }}
+
     <a href="{{ $newPageURL }}" target="_blank"><i class="fa fa-edit fa-fw"></i> {{ T "post_create_child_page" }}</a>
     {{ end }}
 
diff --git a/layouts/partials/scripts.html b/layouts/partials/scripts.html
index 2ee8155b11..07b8ee8a67 100644
--- a/layouts/partials/scripts.html
+++ b/layouts/partials/scripts.html
@@ -3,7 +3,7 @@
 <script src="/js/bootstrap-4.3.1.min.js" integrity="sha384-JjSmVgyd0p3pXB1rRibZUAYoIIy6OrQ6VrjIEaFf/nJGzIxFDsf4x0xIM+B07jRM" crossorigin="anonymous"></script>
 
 {{ if .Site.Params.mermaid.enable }}
-<script src="/js//mermaid.min.js" crossorigin="anonymous"></script>
+<script src="/js/mermaid.min.js" crossorigin="anonymous"></script>
 
 {{ end }}
 
diff --git a/layouts/partials/sidebar-tree.html b/layouts/partials/sidebar-tree.html
index f1a3c9926a..3b246d86f1 100644
--- a/layouts/partials/sidebar-tree.html
+++ b/layouts/partials/sidebar-tree.html
@@ -69,7 +69,7 @@
           {{ range . }}
             {{ with (where $.section.Translations ".Lang" . ) -}}
               {{ $p := index . 0 -}}
-              {{ $pages =  $pages | lang.Merge (union $p.Pages $p.Sections) -}}
+              {{ $pages = where ( $pages | lang.Merge (union $p.Pages $p.Sections)) ".Params.toc_hide" "!=" true -}}
             {{ end -}}
           {{ end -}}
         {{ end -}}
diff --git a/layouts/shortcodes/api-reference.html b/layouts/shortcodes/api-reference.html
new file mode 100644
index 0000000000..90590ba52d
--- /dev/null
+++ b/layouts/shortcodes/api-reference.html
@@ -0,0 +1,9 @@
+{{ $base := "docs/reference/kubernetes-api" }}
+{{ $pageArg := .Get "page" }}
+{{ $anchorArg := .Get "anchor" }}
+{{ $textArg := .Get "text" }}
+{{ $pagePath := path.Join $base $pageArg }}
+{{ $page := site.GetPage "page" $pagePath }}
+{{ with $page }}{{else}}{{ range where site.Home.AllTranslations "Language.Lang" "en" }}{{ $page = .Site.GetPage "page" $pagePath }}{{ end }}{{ end }}
+{{ $metadata := $page.Params.api_metadata }}
+<a href="{{ $page.RelPermalink }}{{if $anchorArg}}#{{ $anchorArg }}{{end}}">{{if $textArg}}{{ $textArg }}{{else if $anchorArg}}{{ $anchorArg }}{{else}}{{ $metadata.kind }}{{end}}</a>
\ No newline at end of file
diff --git a/layouts/shortcodes/caution.html b/layouts/shortcodes/caution.html
index 82563d8c2c..6df243b7c0 100644
--- a/layouts/shortcodes/caution.html
+++ b/layouts/shortcodes/caution.html
@@ -1,3 +1,3 @@
-<blockquote class="caution callout">
-  <div><strong>{{ T "caution" }}</strong> {{ trim .Inner " \n" | markdownify }}</div>
-</blockquote>
+<div class="alert alert-warning caution callout" role="alert">
+  <strong>{{ T "caution" }}</strong> {{ trim .Inner " \n" | markdownify }}
+</div>
diff --git a/layouts/shortcodes/codenew.html b/layouts/shortcodes/codenew.html
index 4c860be19d..30b6aae4f0 100644
--- a/layouts/shortcodes/codenew.html
+++ b/layouts/shortcodes/codenew.html
@@ -4,7 +4,7 @@
 {{ $fileDir := path.Split $file }}
 {{ $bundlePath := path.Join .Page.File.Dir $fileDir.Dir }}
 {{ $filename := printf "/content/%s/examples/%s" .Page.Lang $file | safeURL }}
-{{ $ghlink := printf "https://%s/main%s" site.Params.githubwebsiteraw $filename | safeURL }}
+{{ $ghlink := printf "https://%s/%s%s" site.Params.githubwebsiteraw (default "main" site.Params.docsbranch) $filename | safeURL }}
 {{/* First assume this is a bundle and the file is inside it. */}}
 {{ $resource := $p.Resources.GetMatch (printf "%s*" $file ) }}
 {{ with $resource }}
diff --git a/layouts/shortcodes/dockershim-removal.html b/layouts/shortcodes/dockershim-removal.html
new file mode 100644
index 0000000000..6ccd07f35e
--- /dev/null
+++ b/layouts/shortcodes/dockershim-removal.html
@@ -0,0 +1,3 @@
+<div class="alert alert-secondary callout note" role="alert">
+  <strong>{{ T "note" | safeHTML }}</strong> {{ T "dockershim_message" | safeHTML }}
+</div>
diff --git a/layouts/shortcodes/feature-state.html b/layouts/shortcodes/feature-state.html
index 745c5f396e..828241f50e 100644
--- a/layouts/shortcodes/feature-state.html
+++ b/layouts/shortcodes/feature-state.html
@@ -3,9 +3,9 @@
 {{ $for_k8s_version := .Get "for_k8s_version" | default (.Page.Param "version")}}
 {{ $is_valid := strings.Contains $valid_states $state }}
 {{ if not $is_valid }}
-{{ errorf "%q is not a valid feature-state, use one of %q" $valid_states }}
+{{ errorf "%q is not a valid feature-state, use one of %q" $state $valid_states }}
 {{ else }}
 <div style="margin-top: 10px; margin-bottom: 10px;">
-<b>FEATURE STATE:</b> <code>Kubernetes {{ $for_k8s_version }} [{{ $state }}]</code>
+  <b>{{ T "feature_state" }}</b> <code>Kubernetes {{ $for_k8s_version }} [{{ $state }}]</code>
 </div>
-{{ end }}
\ No newline at end of file
+{{ end }}
diff --git a/layouts/shortcodes/katacoda-tutorial.html b/layouts/shortcodes/katacoda-tutorial.html
new file mode 100644
index 0000000000..a17b4871a2
--- /dev/null
+++ b/layouts/shortcodes/katacoda-tutorial.html
@@ -0,0 +1 @@
+<script defer src="https://katacoda.com/embed.js"></script>
diff --git a/layouts/shortcodes/mermaid.html b/layouts/shortcodes/mermaid.html
index ff20843db3..ecd1da5324 100644
--- a/layouts/shortcodes/mermaid.html
+++ b/layouts/shortcodes/mermaid.html
@@ -1,10 +1,11 @@
+<figure>
 <div class="mermaid">
     {{.Inner}}
 </div>
+</figure>
 <!-- Hide content and error if JS is disabled. -->
 <noscript>
-    <style type="text/css">
-    .mermaid { display:none; }
-    </style>
-    <h4>[JavaScript must be <a href="https://www.enable-javascript.com/">enabled</a> to view content]</h4>
+  <div class="alert alert-secondary callout" role="alert">
+    <em class="javascript-required">{{ T "javascript_required" | markdownify }}</em>
+  </div>
 </noscript>
\ No newline at end of file
diff --git a/layouts/shortcodes/note.html b/layouts/shortcodes/note.html
index eba93f8b7e..8362b1f33f 100644
--- a/layouts/shortcodes/note.html
+++ b/layouts/shortcodes/note.html
@@ -1,3 +1,3 @@
-<blockquote class="note callout">
-  <div><strong>{{ T "note" }}</strong> {{ trim .Inner " \n" | markdownify }}</div>
-</blockquote>
\ No newline at end of file
+<div class="alert alert-info note callout" role="alert">
+  <strong>{{ T "note" }}</strong> {{ trim .Inner " \n" | markdownify }}
+</div>
\ No newline at end of file
diff --git a/layouts/shortcodes/release-data.html b/layouts/shortcodes/release-data.html
index d998847dfc..0dbafc7acf 100644
--- a/layouts/shortcodes/release-data.html
+++ b/layouts/shortcodes/release-data.html
@@ -1,34 +1,44 @@
 {{ range $data := .Site.Data.releases.schedule.schedules }}
 {{- $dataVersion := printf "%.2f" $data.release  -}}
-<h2>{{ $dataVersion }}</h2>
-
-<br>
+{{- $dataIdVersion := replace ( printf "%.2f" $data.release ) "." "-" | anchorize -}}
+<h3 id="release-v{{ $dataIdVersion }}">{{ $dataVersion }}</h3>
 
+<div class="release-details">
 {{ if not $data.previousPatches }}
-<b>{{ T "latest_release" }}</b> {{ printf "%s.0" $dataVersion }}
-<br>
-<b>{{ T "end_of_life" }}</b> {{ printf "%s" $data.endOfLifeDate }}
-<br>
-<b>{{ T "previous_patches" }}</b> n/a
-{{ end }}
-
-{{ if $data.previousPatches }}
-<b>{{ T "latest_release" }}</b> {{ index $data.previousPatches 0 "release" }} (released: {{ index $data.previousPatches 0 "targetDate" }})
-<br>
-<b>{{ T "end_of_life" }}</b> {{ printf "%s" $data.endOfLifeDate }}
-<br>
+<!-- initial minor release -->
+<div>
+    <b class="release-inline-heading">{{ T "latest_release" }}</b><span class="release-inline-value">{{ printf "%s.0" $dataVersion }}{{ if isset $data "releaseDate" }} {{ T "release_date_before" }}<time datetime="{{ time.Format "2006-01-02" $data.releaseDate }}">{{ time.Format ( T "release_date_format") $data.releaseDate }}</time>{{ T "release_date_after" }}{{- end -}}</span>
+</div>
+<div>
+   <b class="release-inline-heading">{{ T "end_of_life" }}</b><span class="release-eoldate release-inline-value"><time datetime="{{ time.Format "2006-01-02" $data.endOfLifeDate }}">{{ time.Format ( T "release_date_format") $data.endOfLifeDate }}</time></span>
+</div>
+<div>
+    <b class="release-inline-heading">{{ T "previous_patches" }}</b> <span class="notapplicable release-inline-value">{{ T "not_applicable" }}</span>
+</div>
+{{- else -}}
+<div>
+    <b class="release-inline-heading">{{ T "latest_release" }}</b><span class="release-inline-value">{{ index $data.previousPatches 0 "release" }} {{ T "release_date_before" }}<time datetime="{{ time.Format "2006-01-02" ( index $data.previousPatches 0 "targetDate" ) }}">{{ time.Format ( T "release_date_format") ( index $data.previousPatches 0 "targetDate" ) }}</time>{{ T "release_date_after" }}</span>
+</div>
+<div>
+    <b class="release-inline-heading">{{ T "end_of_life" }}</b><span class="release-eoldate release-inline-value"><time datetime="{{ time.Format "2006-01-02" $data.endOfLifeDate }}">{{ time.Format ( T "release_date_format") $data.endOfLifeDate }}</time></span>
+</div>
+<div>
 <b>{{ T "previous_patches" }}</b>
-    {{ range $previousPatchesList := $data.previousPatches }}
-        {{range $previous_patches_key, $previous_patches_value := $previousPatchesList }}
-            {{ if eq $previous_patches_key "release" }}<a href="https://git.k8s.io/kubernetes/CHANGELOG/CHANGELOG-{{ $dataVersion }}.md#v{{ replace $previous_patches_value `.` `` }}">{{ printf "%s" $previous_patches_value }}{{ T "inline_list_separator" }} </a>
-            {{ end }}
-        {{ end }}
-    {{ end }}
-{{ end }}
+    <span class="release-prevpatches release-inline-value">
+    {{- range $key, $value := sort $data.previousPatches ".targetDate" "asc" -}}
+        {{ if $key }}{{ T "inline_list_separator" }}{{ end }}
+        <a href="https://git.k8s.io/kubernetes/CHANGELOG/CHANGELOG-{{ $dataVersion }}.md#v{{ replace .release `.` `` }}">{{ printf "%s" .release }}</a>
+    {{- end -}}
+    </span>
+</div>
 
+{{- end -}}
+<!-- not yet localized, mark as English -->
+<p lang="en">
+Complete {{ $dataVersion }} <a href="/releases/patch-releases/#{{ replace $dataVersion `.` `-` }}">Schedule</a>
+and <a href="https://git.k8s.io/kubernetes/CHANGELOG/CHANGELOG-{{ $dataVersion }}.md">Changelog</a>
+</p>
 
-<br>
-Complete {{ $dataVersion }} <a href="/releases/patch-releases/#{{ replace $dataVersion `.` `-` }}">Schedule</a> and <a href="https://git.k8s.io/kubernetes/CHANGELOG/CHANGELOG-{{ $dataVersion }}.md">Changelog</a>
-
+</div>
 
 {{ end }}
diff --git a/layouts/shortcodes/skew.html b/layouts/shortcodes/skew.html
index 13f44091b9..901a745ee1 100644
--- a/layouts/shortcodes/skew.html
+++ b/layouts/shortcodes/skew.html
@@ -54,11 +54,36 @@
     {{- $latestVersionAddMinor = printf "%s%s%d" (index $versionArray 0) $seperator $latestVersionAddMinor -}}
     {{- $latestVersionAddMinor -}}
 {{- end -}}
+
+{{- $currentVersion := site.Params.version -}}
+{{- $currentVersion := (replace $currentVersion "v" "") -}}
+{{- $currentVersionArray := split $currentVersion "." -}}
+{{- $currentMinorVersion := int (index $currentVersionArray 1) -}}
+
+<!-- output latestVersion based on captured arg -->
+{{- if eq $version "currentVersion" -}}
+    {{- $currentVersion -}}
+{{- end -}}
+
+<!-- output currentVersionAddMinor based on captured args -->
+{{- if eq $version "currentVersionAddMinor" -}}
+    {{- $seperator := .Get 2 -}}
+    {{- if eq $seperator "" -}}
+        {{- $seperator = "." -}}
+    {{- end -}}
+    {{- $currentVersionAddMinor := int (.Get 1) -}}
+    {{- $currentVersionAddMinor = add $currentMinorVersion $currentVersionAddMinor -}}
+    {{- $currentVersionAddMinor = printf "%s%s%d" (index $versionArray 0) $seperator $currentVersionAddMinor -}}
+    {{- $currentVersionAddMinor -}}
+{{- end -}}
+
 <!--
 example shortcode use:
 - skew nextMinorVersion
 - skew latestVersion
+- skew currentVersion
 - skew prevMinorVersion
 - skew oldestMinorVersion
 - skew latestVersionAddMinor -1 "-"
+- skew currentVersionAddMinor -1 "-"
 -->
\ No newline at end of file
diff --git a/layouts/shortcodes/thirdparty-content.html b/layouts/shortcodes/thirdparty-content.html
index 5a98081e49..36fbdef13e 100644
--- a/layouts/shortcodes/thirdparty-content.html
+++ b/layouts/shortcodes/thirdparty-content.html
@@ -1,4 +1,9 @@
-<blockquote class="callout caution" role="alert">
-  <strong>{{ T "caution" | safeHTML }}</strong>
+{{- $single := .Get "single" | default "false" -}}
+<div class="alert alert-secondary callout third-party-content" role="alert">
+{{- if not (eq $single "true" ) -}}
+  <strong>{{ T "note" | safeHTML }}</strong>
   {{ T "thirdparty_message" | safeHTML }}
-</blockquote>
+{{- else -}}
+  {{ T "thirdparty_message_single_item" | safeHTML }}
+{{- end -}}
+</div>
diff --git a/layouts/shortcodes/warning.html b/layouts/shortcodes/warning.html
index a6a5f67abd..ec4639bd16 100644
--- a/layouts/shortcodes/warning.html
+++ b/layouts/shortcodes/warning.html
@@ -1,3 +1,4 @@
-<blockquote class="warning callout">
-  <div><strong>{{ T "warning" }}</strong> {{ trim .Inner " \n" | markdownify }}</div>
-</blockquote>
+<div class="alert alert-danger warning callout" role="alert">
+  <strong>{{ T "warning" }}</strong> {{ trim .Inner " \n" | markdownify }}
+</div>
+
diff --git a/netlify.toml b/netlify.toml
index 981d398bad..e705fa5436 100644
--- a/netlify.toml
+++ b/netlify.toml
@@ -8,7 +8,7 @@ command = "git submodule update --init --recursive --depth 1 && make non-product
 
 [build.environment]
 NODE_VERSION = "10.20.0"
-HUGO_VERSION = "0.87.0"
+HUGO_VERSION = "0.101.0"
 RUBY_VERSION = "3.0.1"
 
 [context.production.environment]
@@ -20,17 +20,10 @@ HUGO_ENABLEGITINFO = "true"
 command = "git submodule update --init --recursive --depth 1 && make deploy-preview"
 
 [context.branch-deploy]
-command = "git submodule update --init --recursive --depth 1 && make deploy-preview"
+command = "git submodule update --init --recursive --depth 1 && make non-production-build"
 
-[context.master]
-# This context is triggered by the `master` branch and allows search indexing
+[context.main]
+# This context is triggered by the `main` branch and allows search indexing
 # DO NOT REMOVE THIS (contact @kubernetes/sig-docs-leads)
 publish = "public"
 command = "git submodule update --init --recursive --depth 1 && make production-build"
-
-# adding in headers to prevent clickjacking
-[[headers]]
-  for = "/*"
-  [headers.values]
-    X-Frame-Options = "DENY"
-    X-XSS-Protection = "1; mode=block"
diff --git a/scripts/.spelling_failures b/scripts/.spelling_failures
new file mode 100644
index 0000000000..8b0d9e0815
--- /dev/null
+++ b/scripts/.spelling_failures
@@ -0,0 +1,10 @@
+content/en/blog/_posts/2016-05-00-Coreosfest2016-Kubernetes-Community.md
+content/en/blog/_posts/2016-10-00-Dynamic-Provisioning-And-Storage-In-Kubernetes.md
+content/en/blog/_posts/2017-02-00-Postgresql-Clusters-Kubernetes-Statefulsets.md
+content/en/blog/_posts/2018-06-28-Airflow-Kubernetes-Operator.md
+content/en/blog/_posts/2018-10-02-network-bootable-farm-with-ltsp.md
+content/en/blog/_posts/2019-03-19-kubeedge-k8s-based-edge-intro.md
+content/en/blog/_posts/2020-05-06-third-party-dual-sourced-content.md
+content/en/blog/_posts/2020-05-21-wsl2-dockerdesktop-k8s.md
+content/en/blog/_posts/2020-07-27-kubernetes-1-17-release-interview.md
+
diff --git a/scripts/README.md b/scripts/README.md
index 02e3e66ff0..9f1e9fdfbe 100644
--- a/scripts/README.md
+++ b/scripts/README.md
@@ -147,11 +147,11 @@ since a localized version has been committed.
 
 The following example checks a single file:
 
-    ./scripts/lsync.sh content/zh/docs/concepts/_index.md
+    ./scripts/lsync.sh content/zh-cn/docs/concepts/_index.md
 
 The following command checks a subdirectory:
 
-    ./scripts/lsync.sh content/zh/docs/concepts/
+    ./scripts/lsync.sh content/zh-cn/docs/concepts/
 
 ## check-ctrlcode.py
 
diff --git a/scripts/get-changed-urls.sh b/scripts/get-changed-urls.sh
new file mode 100755
index 0000000000..4ccb57d7e1
--- /dev/null
+++ b/scripts/get-changed-urls.sh
@@ -0,0 +1,48 @@
+#!/bin/bash
+
+# This script lists URLs changed by the target PR. You can jump to target page quickly by clicking those.
+# Syntax: get-changed-urls.sh <PR number> [<page top URL>]
+# Example: 
+# $ get-changed-urls.sh 28542
+# http://localhost:1313/ja/docs/concepts/configuration/manage-resources-containers
+# http://localhost:1313/ja/docs/concepts/policy/limit-range
+# http://localhost:1313/ja/docs/concepts/policy/resource-quotas
+# http://localhost:1313/ja/docs/reference/command-line-tools-reference/feature-gates
+# http://localhost:1313/ja/docs/setup/best-practices/cluster-large
+#
+# If no <page top URL> is passed, it will assume "http://localhost:1313".
+# It's the default endpoint for "make container-serve" or "make serve".
+# Please look at the README(https://github.com/kubernetes/website#using-this-repository) to serve endpoint.
+# Or you can pass any strings to <page top URL>.
+# You can get URLs for upstream by passing <page top URL> as "https://kubernetes.io".
+
+set -e
+
+if [[ ${1} == "" ]]
+then
+	echo "This script prints all URLs updated by target PR number."
+	echo "You can jump to updated pages quickly when PR review."
+	echo "This is intended for using with \"make container-serve\"."
+	echo ""
+	echo "Syntax: get-changed-urls.sh <PR number> [<page top URL>]"
+	echo "Example: get-changed-urls.sh 12345"
+	echo "If no <page top URL> is passed, it will assume \"http://localhost:1313\""
+	exit 1
+fi
+
+PAGE_TOP=${2:-"http://localhost:1313"}
+
+GITHUB_REPOSITORY="kubernetes/website"
+PR_NUM=${1}
+
+# URL for calling GitHub API
+# For detail: https://docs.github.com/en/rest/reference/pulls#list-pull-requests-files
+GITHUB_API_URL="https://api.github.com/repos/${GITHUB_REPOSITORY}/pulls/${PR_NUM}/files"
+
+# Get files included in target PR
+URLS=$(curl --silent -X GET ${GITHUB_API_URL} | jq -r '.[].filename' | \
+	sed -e "s/^content\/en//g" -e "s/^content//g" -e "s/.md$//g" | grep "docs" | xargs -I {} echo ${PAGE_TOP}{})
+for u in ${URLS}
+do
+	echo ${u}
+done
diff --git a/scripts/linkchecker.py b/scripts/linkchecker.py
index 6a5ea7d089..ece90b5c98 100755
--- a/scripts/linkchecker.py
+++ b/scripts/linkchecker.py
@@ -1,13 +1,12 @@
 #!/usr/bin/env python3
 #
 # This a link checker for Kubernetes documentation website.
-# - We cover the following cases for the language you provide via `-l`, which
-#   defaults to 'en'.
-# - If the language specified is not English (`en`), we check if you are
-#   actually using the localized links. For example, if you specify `zh` as
-#   the language, and for link target `/docs/foo/bar`, we check if the English
-#   version exists AND if the Chinese version exists as well. A checking record
-#   is produced if the link can use the localized version.
+#
+# If the language to check is not English (`en`), we check if you are actually
+# using the localized links. For example, if you checking
+# `content/zh-cn/docs/foo/bar`, we check if the English version exists AND if the
+# Chinese version exists as well.  A checking record is produced if the link
+# can use the localized version.
 #
 # Usage: linkchecker.py -h
 #
@@ -35,6 +34,8 @@
 #   + /docs/bar                : is a redirect entry, or
 #   + /docs/bar                : is something we don't understand
 #
+# + {{ < api-reference page="" anchor="" ... > }}
+# + {{ < api-reference page="" > }}
 
 import argparse
 import glob
@@ -62,16 +63,22 @@ BAD_LINK_TYPES = {
 C_RED = "\033[31m"
 C_GREEN = "\033[32m"
 C_YELLOW = "\033[33m"
-C_GRAY  = "\033[90m"
+C_GRAY = "\033[90m"
 C_CYAN = "\033[36m"
 C_END = "\033[0m"
 
 # Command line arguments shared across functions
 ARGS = None
+# Command line parser
+PARSER = None
+# Language as parsed from the file path
+LANG = None
 # Global result dictionary keyed by page examined
 RESULT = {}
 # Cached redirect entries
 REDIRECTS = {}
+# Cached anchors in target pages
+ANCHORS = {}
 
 
 def new_record(level, message, target):
@@ -86,7 +93,7 @@ def new_record(level, message, target):
     global ARGS
 
     # Skip info when verbose
-    if ARGS.verbose == False and level == "INFO":
+    if ARGS.verbose is False and level == "INFO":
         return None
 
     result = None
@@ -95,9 +102,9 @@ def new_record(level, message, target):
     else:
         target = C_GRAY + target + C_END
         if level == "INFO":
-            result =  target + ": " + C_GREEN  + message + C_END 
+            result = target + ": " + C_GREEN + message + C_END
         elif level == "WARNING":
-            result = target + ": " + C_YELLOW+ message + C_END
+            result = target + ": " + C_YELLOW + message + C_END
         else:  # default to error
             result = target + ": " + C_RED + message + C_END
 
@@ -283,7 +290,7 @@ def check_target(page, anchor, target):
 
     # link to English or localized page
     if (target.startswith("/docs/") or
-            target.startswith("/" + ARGS.lang + "/docs/")):
+            target.startswith("/" + LANG + "/docs/")):
 
         # target is shared reference (kubectl or kubernetes-api?
         if (target.find("/docs/reference/generated/kubectl/") >= 0 or
@@ -302,22 +309,22 @@ def check_target(page, anchor, target):
         if ok:
             # We do't do additional checks for English site even if it has
             # links to a non-English page
-            if ARGS.lang == "en":
+            if LANG == "en":
                 return None
 
             # If we are already checking localized link, fine
-            if target.startswith("/" + ARGS.lang + "/docs/"):
+            if target.startswith("/" + LANG + "/docs/"):
                 return None
 
             # additional check for localization even if English target exists
-            base = os.path.join(ROOT, "content", ARGS.lang)
+            base = os.path.join(ROOT, "content", LANG)
             found = check_file_exists(base, target)
             if not found:
                 # Still to be translated
                 return None
             msg = ("Localized page detected, please append '/%s' to the target"
-                   % ARGS.lang)
-            return new_record("ERROR", "Link not using localized page", target)
+                   % LANG)
+            return new_record("ERROR", msg, target)
 
         # taget might be a redirect entry
         real_target = get_redirect(target)
@@ -331,6 +338,49 @@ def check_target(page, anchor, target):
     return new_record("WARNING", msg, target)
 
 
+def check_anchor(target, anchor):
+    """Check if an anchor is defined in the target page
+
+    :param target: The target page to check
+    :param anchor: Anchor string to find in the target page
+    """
+    if target not in ANCHORS:
+        try:
+            with open(target, "r") as f:
+                data = f.readlines()
+        except Exception as ex:
+            print("[Error] failed in reading markdown file: " + str(ex))
+            return
+        content = "\n".join(strip_comments(data))
+        anchor_pattern1 = r"<a name=\"(.*?)\""
+        regex1 = re.compile(anchor_pattern1)
+        anchor_pattern2 = r"{#(.*?)}"
+        regex2 = re.compile(anchor_pattern2)
+        ANCHORS[target] = regex1.findall(content) + regex2.findall(content)
+    return anchor in ANCHORS[target]
+
+
+def check_apiref_target(target, anchor):
+    """Check a link to an API reference page.
+
+    :param target: The link target string to check
+    :param anchor: Anchor string from the content page
+    """
+    base = os.path.join(ROOT, "content", "en", "docs", "reference",
+                        "kubernetes-api")
+    ok = check_file_exists(base + "/", target)
+    if not ok:
+        return new_record("ERROR", "API reference page not found", target)
+
+    if anchor is None:
+        return
+
+    target_page = os.path.join(base, target)+".md"
+    if not check_anchor(target_page, anchor):
+        return new_record("ERROR", "Anchor not found in API reference page",
+                          target+"#"+anchor)
+
+
 def validate_links(page):
     """Find and validate links on a content page.
 
@@ -355,6 +405,27 @@ def validate_links(page):
         r = check_target(page, m[0], m[1])
         if r:
             records.append(r)
+
+    # searches for pattern: {{< api-reference page="" anchor=""
+    apiref_re = r"{{ *< *api-reference page=\"([^\"]*?)\" *anchor=\"(.*?)\""
+    regex = re.compile(apiref_re)
+
+    matches = regex.findall(content)
+    for m in matches:
+        r = check_apiref_target(m[0], m[1])
+        if r:
+            records.append(r)
+
+    # searches for pattern: {{< api-reference page=""
+    apiref_re = r"{{ *< *api-reference page=\"([^\"]*?)\""
+    regex = re.compile(apiref_re)
+
+    matches = regex.findall(content)
+    for m in matches:
+        r = check_apiref_target(m, None)
+        if r:
+            records.append(r)
+
     if len(records):
         RESULT[page] = records
 
@@ -364,31 +435,38 @@ def parse_arguments():
 
     Result is returned and saved into global variable ARGS.
     """
-    parser = argparse.ArgumentParser(description="Links checker for docs.")
-    parser.add_argument("-l", dest="lang", default="en", metavar="<LANG>",
-                        help=("two letter language code, e.g. 'zh'. "
-                              "(default='en')"))
-    parser.add_argument("-v", dest="verbose", action="store_true",
-                        help="switch on verbose level")
-    parser.add_argument("-f", dest="filter", default="/docs/**/*.md",
-                        metavar="<FILTER>",
-                        help=("File pattern to scan, e.g. '/docs/foo.md'. "
-                              "(default='/docs/**/*.md')"))
-    parser.add_argument("-n", "--no-color", action="store_true",
-                        help="Suppress colored printing.")
+    global PARSER
 
-    return parser.parse_args()
+    PARSER = argparse.ArgumentParser(description="Links checker for docs.")
+    PARSER.add_argument("-v", dest="verbose", action="store_true",
+                        help="switch on verbose level")
+    PARSER.add_argument("-n", "--no-color", action="store_true",
+                        help="Suppress colored printing.")
+    PARSER.add_argument("-f", dest="filter", default="content/en/docs/**/*.md",
+                        metavar="<FILTER>",
+                        help=("File pattern to scan. "
+                              "(default='content/en/docs/**/*.md')"))
+
+    return PARSER.parse_args()
 
 
 def main():
     """The main entry of the program."""
-    global ARGS, ROOT, REDIRECTS
+    global ARGS, ROOT, REDIRECTS, PARSER, LANG
 
     ARGS = parse_arguments()
-    print("Language: " + ARGS.lang)
     ROOT = os.path.join(os.path.dirname(__file__), '..')
-    content_dir = os.path.join(ROOT, 'content')
-    lang_dir = os.path.join(content_dir, ARGS.lang)
+
+    print(ARGS.filter)
+    parts = ARGS.filter.split("/", 2)
+    if len(parts) != 3 or parts[0] != "content":
+        print("ERROR:\nPlease specify file pattern in the format "
+              "'content/<lang>/<path-pattern>', for example:\n"
+              "'content/zh-cn/docs/concepts/**/*.md'\n")
+        PARSER.print_help()
+        sys.exit(-1)
+
+    LANG = parts[1]
 
     # read redirects data
     redirects_fn = os.path.join(ROOT, "static", "_redirects")
@@ -411,7 +489,7 @@ def main():
         print("[Error] failed in reading redirects file: " + str(ex))
         return
 
-    folders = [f for f in glob.glob(lang_dir + ARGS.filter, recursive=True)]
+    folders = [f for f in glob.glob(ARGS.filter, recursive=True)]
     for page in folders:
         validate_links(page)
 
diff --git a/scripts/lsync.sh b/scripts/lsync.sh
index 934e3b91ef..32c29ac417 100755
--- a/scripts/lsync.sh
+++ b/scripts/lsync.sh
@@ -7,7 +7,7 @@ if [ "$#" -ne 1 ] ; then
   echo -e "\nThis script checks if the English version of a page has changed since a " >&2
   echo -e "localized page has been committed.\n" >&2
   echo -e "Usage:\n\t$0 <PATH>\n" >&2
-  echo -e "Example:\n\t$0 content/zh/docs/concepts/_index.md\n" >&2
+  echo -e "Example:\n\t$0 content/zh-cn/docs/concepts/_index.md\n" >&2
   exit 1
 fi
 
@@ -20,7 +20,7 @@ fi
 if [ -d "$1" ] ; then
   SYNCED=1
   for f in `find $1 -name "*.md"` ; do
-    EN_VERSION=`echo $f | sed "s/content\/..\//content\/en\//g"`
+    EN_VERSION=`echo $f | sed "s/content\/.\{2,5\}\//content\/en\//g"`
     if [ ! -e $EN_VERSION ]; then
       echo -e "**removed**\t$EN_VERSION"
       SYNCED=0
@@ -43,7 +43,7 @@ fi
 LOCALIZED="$1"
 
 # Try get the English version
-EN_VERSION=`echo $LOCALIZED | sed "s/content\/..\//content\/en\//g"`
+EN_VERSION=`echo $LOCALIZED | sed "s/content\/.\{2,5\}\//content\/en\//g"`
 if [ ! -e $EN_VERSION ]; then
   echo "$EN_VERSION has been removed."
   exit 3
diff --git a/scripts/verify-spelling.sh b/scripts/verify-spelling.sh
index c259d65ddb..2871dfa76a 100755
--- a/scripts/verify-spelling.sh
+++ b/scripts/verify-spelling.sh
@@ -15,14 +15,14 @@
 # limitations under the License.
 ##########
 # This script verifies mispellings in location. Today it only supports
-# verifying English locale but can be modified in a future to support 
-# also other locales.
+# verifying English locale but can be modified in a future to support
+# other locales also
 # You need to run this script inside the root directory of "website" git repo.
-# 
+#
 # Syntax: verify-spelling.sh LOCALE
 # Example: verify-spelling.sh en
 # If no locale is passed, it will assume "en"
-# 
+#
 # Requirements:
 # - go v1.14 or superior version
 
@@ -34,6 +34,8 @@ set -o pipefail
 
 TOOL_VERSION="v0.3.4"
 
+KUBE_ROOT=$(dirname "${BASH_SOURCE[0]}")/..
+
 LANGUAGE="${1:-en}"
 # cd to the root path
 ROOT="$(cd "$(dirname "${BASH_SOURCE[0]}")/.." && pwd -P)"
@@ -60,10 +62,15 @@ cd "${ROOT}"
 RES=0
 echo "Checking spelling..."
 ERROR_LOG="${TMP_DIR}/errors.log"
-git ls-files | grep content/${LANGUAGE} | xargs misspell > "${ERROR_LOG}"
+
+# NOTE we usually don't correct old blog articles, so we ignore them in
+# this file.
+skipping_file="${KUBE_ROOT}/scripts/.spelling_failures"
+failing_packages=$(sed "s| | -e |g" "${skipping_file}")
+git ls-files -z | grep --null-data "^content/${LANGUAGE}" | grep --null-data -v -e "${failing_packages}" | xargs -0 -r misspell > "${ERROR_LOG}"
 if [[ -s "${ERROR_LOG}" ]]; then
   sed 's/^/error: /' "${ERROR_LOG}" # add 'error' to each line to highlight in e2e status
-  echo "Found spelling errors!"
+  echo "Found spelling errors!" >&2
   RES=1
 fi
 exit "${RES}"
diff --git a/static/_redirects b/static/_redirects
index e85f749c55..e41eab46bd 100644
--- a/static/_redirects
+++ b/static/_redirects
@@ -19,19 +19,20 @@
 /ru/docs/     /ru/docs/home/ 301!
 /uk/docs/     /uk/docs/home/ 301!
 /vi/docs/     /vi/docs/home/ 301!
-/zh/docs/     /zh/docs/home/ 301!
+/zh/docs/     /zh-cn/docs/home/ 301!
+/zh-cn/docs/     /zh-cn/docs/home/ 301!
 /blog/2018/03/kubernetes-1.10-stabilizing-storage-security-networking/     /blog/2018/03/26/kubernetes-1.10-stabilizing-storage-security-networking/     301!
 /blog/2020/08/25/kubernetes-release-1.19-accentuate-the-paw-sitive/     /blog/2020/08/26/kubernetes-release-1.19-accentuate-the-paw-sitive/     301!
 /docs/admin/     /docs/concepts/cluster-administration/ 301
 /docs/admin/add-ons/     /docs/concepts/cluster-administration/addons/ 301
 /docs/admin/addons/     /docs/concepts/cluster-administration/addons/ 301
 /docs/admin/apparmor/     /docs/tutorials/clusters/apparmor/ 301
-/docs/admin/audit/     /docs/tasks/debug-application-cluster/audit/ 301
+/docs/admin/audit/     /docs/tasks/debug/debug-cluster/audit/ 301
 /docs/admin/authorization/rbac.md     /docs/admin/authorization/rbac/ 301
 /docs/admin/cluster-components/     /docs/concepts/overview/components/ 301
 /docs/admin/cluster-management/     /docs/tasks/administer-cluster/ 302
 /id/docs/admin/cluster-management/     /id/docs/tasks/administer-cluster/ 302
-/docs/admin/cluster-troubleshooting/     /docs/tasks/debug-application-cluster/debug-cluster/ 301
+/docs/admin/cluster-troubleshooting/     /docs/tasks/debug/debug-cluster/ 301
 /docs/admin/daemons/     /docs/concepts/workloads/controllers/daemonset/ 301
 /docs/admin/disruptions/     /docs/concepts/workloads/pods/disruptions/ 301
 /docs/admin/dns/     /docs/concepts/services-networking/dns-pod-service/ 301
@@ -39,11 +40,11 @@
 /docs/admin/etcd_upgrade/     /docs/tasks/administer-cluster/configure-upgrade-etcd/ 301
 /docs/admin/extensible-admission-controllers.md     /docs/reference/access-authn-authz/extensible-admission-controllers/ 301
 /docs/admin/garbage-collection/     /docs/concepts/cluster-administration/kubelet-garbage-collection/ 301
-/docs/admin/ha-master-gce/     /docs/tasks/administer-cluster/highly-available-master/ 301
-/docs/admin/ha-master-gce.md/     /docs/tasks/administer-cluster/highly-available-master/ 301
+/docs/admin/ha-master-gce/     /docs/setup/production-environment/#production-control-plane 301
+/docs/admin/ha-master-gce.md/     /docs/setup/production-environment/#production-control-plane 301
 /docs/admin/high-availability/      /docs/setup/production-environment/tools/kubeadm/high-availability/   301
-/docs/admin/kubelet-authentication-authorization/     /docs/reference/command-line-tools-reference/kubelet-authentication-authorization/ 301
-/docs/admin/kubelet-tls-bootstrapping/     /docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/ 301
+/docs/admin/kubelet-authentication-authorization/     /docs/reference/access-authn-authz/kubelet-authn-authz/ 301
+/docs/admin/kubelet-tls-bootstrapping/     /docs/reference/access-authn-authz/kubelet-tls-bootstrapping/ 301
 /docs/admin/limitrange/     /docs/tasks/administer-cluster/cpu-memory-limit/ 301
 /docs/admin/limitrange/Limits/     /docs/tasks/administer-cluster/limit-storage-consumption/#limitrange-to-limit-requests-for-storage/ 301
 /docs/admin/master-node-communication/     /docs/concepts/architecture/master-node-communication/ 301
@@ -57,7 +58,7 @@
 /docs/admin/node-allocatable.md     /docs/tasks/administer-cluster/reserve-compute-resources/ 301
 /docs/admin/node-conformance.md     /docs/admin/node-conformance/ 301
 /docs/admin/node-conformance/       /docs/setup/best-practices/node-conformance/ 301
-/docs/admin/node-problem/     /docs/tasks/debug-application-cluster/monitor-node-health/ 301
+/docs/admin/node-problem/     /docs/tasks/debug/debug-cluster/monitor-node-health/ 301
 /docs/admin/out-of-resource/     /docs/concepts/scheduling-eviction/node-pressure-eviction/ 301
 /docs/admin/rescheduler/     /docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/ 301
 /docs/admin/resourcequota/*     /docs/concepts/policy/resource-quotas/ 301
@@ -83,7 +84,7 @@
 /docs/concepts/containers/overview/     /docs/concepts/containers/ 301
 /docs/concepts/cluster-administration/cluster-administration-overview/     /docs/concepts/cluster-administration/ 301
 /docs/concepts/cluster-administration/access-cluster/     /docs/tasks/access-application-cluster/access-cluster/ 301
-/docs/concepts/cluster-administration/audit/     /docs/tasks/debug-application-cluster/audit/ 301
+/docs/concepts/cluster-administration/audit/     /docs/tasks/debug/debug-cluster/audit/ 301
 /docs/concepts/cluster-administration/authenticate-across-clusters-kubeconfig   /docs/tasks/access-application-cluster/authenticate-across-clusters-kubeconfig/ 301
 /docs/concepts/cluster-administration/cluster-management/     /docs/tasks/administer-cluster/ 302
 /docs/concepts/cluster-administration/configure-etcd/     /docs/tasks/administer-cluster/configure-upgrade-etcd/ 301
@@ -94,7 +95,7 @@
 /docs/concepts/cluster-administration/master-node-communication/     /docs/concepts/architecture/master-node-communication/ 301
 /docs/concepts/cluster-administration/network-plugins/     /docs/concepts/extend-kubernetes/compute-storage-net/network-plugins/ 301
 /docs/concepts/cluster-administration/out-of-resource/     /docs/concepts/scheduling-eviction/node-pressure-eviction/ 301
-/docs/concepts/cluster-administration/resource-usage-monitoring /docs/tasks/debug-application-cluster/resource-usage-monitoring/ 301
+/docs/concepts/cluster-administration/resource-usage-monitoring /docs/tasks/debug/debug-cluster/resource-usage-monitoring/ 301
 /docs/concepts/cluster-administration/monitoring/ /docs/concepts/cluster-administration/system-metrics/ 301
 /docs/concepts/cluster-administration/controller-metrics/ /docs/concepts/cluster-administration/system-metrics/ 301
 /docs/concepts/cluster-administration/sysctl-cluster/ /docs/tasks/administer-cluster/sysctl-cluster/ 301
@@ -158,9 +159,12 @@
 /docs/concepts/workloads/controllers/statefulset.md     /docs/concepts/workloads/controllers/statefulset/ 301!
 /docs/concepts/workloads/pods/pod/     /docs/concepts/workloads/pods/ 301
 /docs/concepts/workloads/pods/pod-overview/     /docs/concepts/workloads/pods/ 301
+/docs/concepts/workloads/pods/pod-topology-spread-constraints/ /docs/concepts/scheduling-eviction/topology-spread-constraints/ 301
 /docs/concepts/workloads/pods/init-containers/Kubernetes/     /docs/concepts/workloads/pods/init-containers/ 301
 
-/docs/consumer-guideline/pod-security-coverage/     /docs/concepts/policy/pod-security-policy/ 301
+/docs/concepts/policy/pod-security-policy/      /docs/concepts/security/pod-security-policy/ 301
+/docs/consumer-guideline/pod-security-coverage/     /docs/concepts/security/pod-security-policy/ 301
+/zh-cn/docs/concepts/policy/pod-security-policy/      /zh-cn/docs/concepts/security/pod-security-policy/ 301
 
 /docs/contribute/create-pull-request/     /docs/home/contribute/create-pull-request/ 301
 /docs/contribute/page-templates/     /docs/home/contribute/page-templates/ 301
@@ -170,6 +174,7 @@
 /docs/contribute/write-new-topic/        /docs/home/contribute/write-new-topic/ 301
 /docs/contribute/start/        /docs/contribute/ 301
 /docs/contribute/intermediate/        /docs/contribute/ 301
+/docs/contribute/new-content/overview/        /docs/contribute/new-content/ 301
 
 /docs/deprecate/     /docs/reference/using-api/deprecation-policy/ 301
 /docs/deprecated/     /docs/reference/using-api/deprecation-policy/ 301
@@ -214,6 +219,8 @@
 
 /docs/reference/glossary/maintainer/    /docs/reference/glossary/approver/ 301
 
+/docs/reference/kubectl/overview/    /docs/reference/kubectl/ 301
+/zh/docs/reference/kubectl/overview/    /zh-cn/docs/reference/kubectl/ 301
 /docs/reference/kubectl/kubectl-cmds/     /docs/reference/generated/kubectl/kubectl-commands/ 301!
 /docs/reference/kubectl/kubectl/kubectl_*    /docs/reference/generated/kubectl/kubectl-commands#:splat 301
 /docs/reference/scheduling/profiles/    /docs/reference/scheduling/config/#profiles 301
@@ -227,7 +234,8 @@
 
 /docs/reference/kubernetes-api/labels-annotations-taints/ /docs/reference/labels-annotations-taints/ 301
 
-/docs/reporting-security-issues/     /security/ 301
+/docs/reporting-security-issues/     /docs/reference/issues-security/security/ 301
+/security/ /docs/reference/issues-security/security/ 302
 
 /docs/roadmap/     https://github.com/kubernetes/kubernetes/milestones/ 301
 /docs/samples/     /docs/tutorials/ 301
@@ -243,10 +251,12 @@
 /docs/tasks/access-kubernetes-api/extend-api-custom-resource-definitions/     /docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/ 301
 /docs/tasks/access-kubernetes-api/setup-extension-api-server/     /docs/tasks/extend-kubernetes/setup-extension-api-server/ 301
 
+/docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-deprecation-affects-you/   /docs/tasks/administer-cluster/migrating-from-dockershim/check-if-dockershim-removal-affects-you/ 301
+/docs/tasks/administer-cluster/access-cluster-services/     /docs/tasks/access-application-cluster/access-cluster-services/ 301
 /docs/tasks/administer-cluster/apply-resource-quota-limit/     /docs/tasks/administer-cluster/quota-api-object/ 301
 /docs/tasks/administer-cluster/assign-pods-nodes/     /docs/tasks/configure-pod-container/assign-pods-nodes/ 301
 /docs/tasks/administer-cluster/calico-network-policy/     /docs/tasks/administer-cluster/network-policy-provider/calico-network-policy/ 301
-/docs/tasks/administer-cluster/certificate-rotation/     /docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/ 301
+/docs/tasks/administer-cluster/certificate-rotation/     /docs/reference/access-authn-authz/kubelet-tls-bootstrapping/ 301
 /docs/tasks/administer-cluster/cilium-network-policy/     /docs/tasks/administer-cluster/network-policy-provider/cilium-network-policy/ 301
 /docs/tasks/administer-cluster/configure-namespace-isolation/     /docs/concepts/services-networking/network-policies/ 301
 /docs/tasks/administer-cluster/configure-multiple-schedulers/     /docs/tasks/extend-kubernetes/configure-multiple-schedulers/ 301
@@ -258,6 +268,7 @@
 /docs/tasks/administer-cluster/default-memory-request-limit/     /docs/tasks/configure-pod-container/assign-memory-resource/#specify-a-memory-request-and-a-memory-limit/ 301
 /docs/tasks/administer-cluster/developing-cloud-controller-manager.md     /docs/tasks/administer-cluster/developing-cloud-controller-manager/ 301
 /docs/tasks/administer-cluster/enabling-endpointslices/ /docs/concepts/services-networking/endpoint-slices/ 301
+/docs/tasks/administer-cluster/highly-available-control-plane/    /docs/setup/production-environment/#production-control-plane 301
 /docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade-1-13     /docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/ 301
 /docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade-ha-1-13     /docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/ 301
 /docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade-1-14     /docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/ 301
@@ -295,15 +306,14 @@
 /docs/tasks/configure-pod-container/projected-volume/     /docs/tasks/configure-pod-container/configure-projected-volume-storage/ 301
 /docs/tasks/configure-pod-container/romana-network-policy/     /docs/tasks/administer-cluster/romana-network-policy/ 301
 /docs/tasks/configure-pod-container/weave-network-policy/     /docs/tasks/administer-cluster/weave-network-policy/ 301
-/docs/tasks/debug-application-cluster/sematext-logging-monitoring/     https://sematext.com/kubernetes/ 301
 /docs/tasks/job/work-queue-1/     /docs/concepts/workloads/controllers/job/ 301
 /id/docs/tasks/job/work-queue-1/     /id/docs/concepts/workloads/controllers/job/ 301
 /docs/tasks/setup-konnectivity/setup-konnectivity/   /docs/tasks/extend-kubernetes/setup-konnectivity/ 301
-/docs/tasks/kubectl/get-shell-running-container/     /docs/tasks/debug-application-cluster/get-shell-running-container/ 301
+/docs/tasks/kubectl/get-shell-running-container/     /docs/tasks/debug/debug-application/get-shell-running-container/ 301
 /docs/tasks/kubectl/install/     /docs/tasks/tools/ 301
 /docs/tasks/tools/install-kubectl/     /docs/tasks/tools/ 301
 /docs/tasks/kubectl/list-all-running-container-images/     /docs/tasks/access-application-cluster/list-all-running-container-images/ 301
-/docs/tasks/manage-stateful-set/debugging-a-statefulset/     /docs/tasks/debug-application-cluster/debug-stateful-set/ 301
+/docs/tasks/manage-stateful-set/debugging-a-statefulset/     /docs/tasks/debug/debug-application/debug-statefulset/ 301
 /docs/tasks/manage-stateful-set/delete-pods/     /docs/tasks/run-application/delete-stateful-set/ 301
 /docs/tasks/manage-stateful-set/deleting-a-statefulset/     /docs/tasks/run-application/delete-stateful-set/ 301
 /docs/tasks/manage-stateful-set/scale-stateful-set/     /docs/tasks/run-application/scale-stateful-set/ 301
@@ -312,14 +322,33 @@
 /docs/tasks/stateful-sets/deleting-pods/     /docs/tasks/run-application/force-delete-stateful-set-pod/ 301
 /ja/docs/tasks/tools/install-minikube/     https://minikube.sigs.k8s.io/docs/start/ 302
 /id/docs/tasks/tools/install-minikube/     https://minikube.sigs.k8s.io/docs/start/ 302
-/docs/tasks/troubleshoot/debug-init-containers/     /docs/tasks/debug-application-cluster/debug-init-containers/ 301
+/docs/tasks/troubleshoot/debug-init-containers/     /docs/tasks/debug/debug-application/debug-init-containers/ 301
 /docs/tasks/web-ui-dashboard/     /docs/tasks/access-application-cluster/web-ui-dashboard/ 301
 
+/docs/tasks/debug-application-cluster/troubleshooting/     /docs/tasks/debug/ 301
+/docs/tasks/debug-application-cluster/     /docs/tasks/debug/ 301
+/docs/tasks/debug-application-cluster/debug-init-containers/     /docs/tasks/debug/debug-application/debug-init-containers/ 301
+/docs/tasks/debug-application-cluster/debug-application/     /docs/tasks/debug/debug-application/debug-pods/ 301
+/docs/tasks/debug-application-cluster/debug-pod-replication-controller/     /docs/tasks/debug/debug-application/debug-pods/ 301
+/docs/tasks/debug-application-cluster/debug-application-introspection/     /docs/tasks/debug/debug-application/debug-running-pod/ 301
+/docs/tasks/debug-application-cluster/debug-running-pod/     /docs/tasks/debug/debug-application/debug-running-pod/ 301
+/docs/tasks/debug-application-cluster/debug-service/     /docs/tasks/debug/debug-application/debug-service/ 301
+/docs/tasks/debug-application-cluster/debug-stateful-set/     /docs/tasks/debug/debug-application/debug-statefulset/ 301
+/docs/tasks/debug-application-cluster/determine-reason-pod-failure/     /docs/tasks/debug/debug-application/determine-reason-pod-failure/ 301
+/docs/tasks/debug-application-cluster/get-shell-running-container/     /docs/tasks/debug/debug-application/get-shell-running-container/ 301
+/docs/tasks/debug-application-cluster/debug-cluster/     /docs/tasks/debug/debug-cluster/ 301
+/docs/tasks/debug-application-cluster/audit/     /docs/tasks/debug/debug-cluster/audit/ 301
+/docs/tasks/debug-application-cluster/crictl/     /docs/tasks/debug/debug-cluster/crictl/ 301
+/docs/tasks/debug-application-cluster/local-debugging/     /docs/tasks/debug/debug-cluster/local-debugging/ 301
+/docs/tasks/debug-application-cluster/monitor-node-health/     /docs/tasks/debug/debug-cluster/monitor-node-health/ 301
+/docs/tasks/debug-application-cluster/resource-metrics-pipeline/     /docs/tasks/debug/debug-cluster/resource-metrics-pipeline/ 301
+/docs/tasks/debug-application-cluster/resource-usage-monitoring/     /docs/tasks/debug/debug-cluster/resource-usage-monitoring/ 301
+
 /docs/templatedemos/*     /docs/home/contribute/page-templates/ 301
 /docs/tools/     /docs/reference/tools/ 301
 /docs/tools/kompose/user-guide/     /docs/tasks/configure-pod-container/translate-compose-kubernetes/ 301
 /docs/tools/kompose/     /docs/tasks/configure-pod-container/translate-compose-kubernetes/ 301
-/docs/troubleshooting/     /docs/tasks/debug-application-cluster/troubleshooting/ 301
+/docs/troubleshooting/     /docs/tasks/debug/ 301
 
 /docs/tutorials/clusters/multiple-schedulers/     /docs/tasks/administer-cluster/configure-multiple-schedulers/ 301
 /docs/tutorials/connecting-apps/connecting-frontend-backend/     /docs/tasks/access-application-cluster/connecting-frontend-backend/ 301
@@ -333,6 +362,8 @@
 /docs/tutorials/kubernetes-basics/expose-intro/     /docs/tutorials/kubernetes-basics/expose/expose-intro/ 301
 /docs/tutorials/kubernetes-basics/scale-interactive/     /docs/tutorials/kubernetes-basics/scale/scale-interactive/ 301
 /docs/tutorials/kubernetes-basics/scale-intro/     /docs/tutorials/kubernetes-basics/scale/scale-intro/ 301
+/docs/tutorials/clusters/apparmor/     /docs/tutorials/security/apparmor/   301
+/docs/tutorials/clusters/seccomp/      /docs/tutorials/security/seccomp/    301
 /ja/docs/tutorials/kubernetes-basics/scale-intro/     /ja/docs/tutorials/kubernetes-basics/scale/scale-intro/ 301
 /ko/docs/tutorials/kubernetes-basics/scale-intro/     /ko/docs/tutorials/kubernetes-basics/scale/scale-intro/ 301
 /docs/tutorials/kubernetes-basics/update-interactive/    /docs/tutorials/kubernetes-basics/update/update-interactive/ 301
@@ -356,7 +387,7 @@
 /docs/user-guide/accessing-the-cluster/     /docs/tasks/access-application-cluster/access-cluster/ 301
 /docs/user-guide/add-entries-to-pod-etc-hosts-with-host-aliases/     /docs/concepts/services-networking/add-entries-to-pod-etc-hosts-with-host-aliases/ 301
 /docs/user-guide/annotations/     /docs/concepts/overview/working-with-objects/annotations/ 301
-/docs/user-guide/application-troubleshooting/     /docs/tasks/debug-application-cluster/debug-application/ 301
+/docs/user-guide/application-troubleshooting/     /docs/tasks/debug/debug-application/debug-pods/ 301
 /docs/user-guide/compute-resources/     /docs/concepts/configuration/manage-compute-resources-container/ 301
 /docs/user-guide/config-best-practices/     /docs/concepts/configuration/overview/ 301
 /docs/user-guide/configmap/     /docs/tasks/configure-pod-container/configure-pod-configmap/ 301
@@ -368,8 +399,8 @@
 /docs/user-guide/container-environment/     /docs/concepts/containers/container-lifecycle-hooks/ 301
 /docs/user-guide/containers/     /docs/tasks/inject-data-application/define-command-argument-container/ 301
 /docs/user-guide/cron-jobs/     /docs/concepts/workloads/controllers/cron-jobs/ 301
-/docs/user-guide/debugging-pods-and-replication-controllers/     /docs/tasks/debug-application-cluster/debug-pod-replication-controller/ 301
-/docs/user-guide/debugging-services/     /docs/tasks/debug-application-cluster/debug-service/ 301
+/docs/user-guide/debugging-pods-and-replication-controllers/     /docs/tasks/debug/debug-application/debug-pods/ 301
+/docs/user-guide/debugging-services/     /docs/tasks/debug/debug-application/debug-service/ 301
 /docs/user-guide/deploying-applications/     /docs/tasks/run-application/run-stateless-application-deployment/ 301
 /docs/user-guide/deployments/     /docs/concepts/workloads/controllers/deployment/ 301
 /docs/user-guide/docker-cli-to-kubectl/     /docs/reference/kubectl/docker-cli-to-kubectl/
@@ -388,7 +419,7 @@
 /docs/user-guide/images/     /docs/concepts/containers/images/ 301
 /docs/user-guide/ingress/     /docs/concepts/services-networking/ingress/ 301
 /docs/user-guide/ingress.md     /docs/concepts/services-networking/ingress/ 301
-/docs/user-guide/introspection-and-debugging/     /docs/tasks/debug-application-cluster/debug-application-introspection/ 301
+/docs/user-guide/introspection-and-debugging/     /docs/tasks/debug/debug-application/debug-running-pod/ 301
 /docs/user-guide/jsonpath/     /docs/reference/kubectl/jsonpath/
 /docs/user-guide/jobs/     /docs/concepts/workloads/controllers/job/ 301
 /id/docs/user-guide/jobs/     /id/docs/concepts/workloads/controllers/job/ 301
@@ -396,7 +427,7 @@
 /docs/user-guide/jobs/work-queue-1/     /docs/tasks/job/coarse-parallel-processing-work-queue/ 301
 /docs/user-guide/jobs/work-queue-2/     /docs/tasks/job/fine-parallel-processing-work-queue/ 301
 /docs/user-guide/kubeconfig-file/     /docs/tasks/access-application-cluster/authenticate-across-clusters-kubeconfig/ 301
-/docs/user-guide/kubectl-overview/     /docs/reference/kubectl/overview/
+/docs/user-guide/kubectl-overview/     /docs/reference/kubectl/ 301
 /docs/user-guide/kubectl/     /docs/reference/generated/kubectl/kubectl-options/
 /docs/user-guide/kubectl-conventions/     /docs/reference/kubectl/conventions/
 /docs/user-guide/kubectl-cheatsheet/     /docs/reference/kubectl/cheatsheet/
@@ -408,7 +439,7 @@
 /docs/user-guide/logging/     /docs/concepts/cluster-administration/logging/ 301
 /docs/user-guide/logging/overview/     /docs/concepts/cluster-administration/logging/ 301
 /docs/user-guide/managing-deployments/     /docs/concepts/cluster-administration/manage-deployment/ 301
-/docs/user-guide/monitoring/     /docs/tasks/debug-application-cluster/resource-usage-monitoring/ 301
+/docs/user-guide/monitoring/     /docs/tasks/debug/debug-cluster/resource-usage-monitoring/ 301
 /docs/user-guide/namespaces/     /docs/concepts/overview/working-with-objects/namespaces/ 301
 /docs/user-guide/networkpolicies/     /docs/concepts/services-networking/network-policies/ 301
 /docs/user-guide/node-selection/     /docs/concepts/scheduling-eviction/assign-pod-node/ 301
@@ -418,7 +449,7 @@
 /docs/user-guide/persistent-volumes/index     /docs/concepts/storage/persistent-volumes/ 301
 /docs/user-guide/persistent-volumes/index.md     /docs/concepts/storage/persistent-volumes/ 301
 /docs/user-guide/persistent-volumes/walkthrough/     /docs/tasks/configure-pod-container/configure-persistent-volume-storage/ 301
-/docs/user-guide/pod-security-policy/     /docs/concepts/policy/pod-security-policy/ 301
+/docs/user-guide/pod-security-policy/     /docs/concepts/security/pod-security-policy/ 301
 /docs/user-guide/pod-states/     /docs/concepts/workloads/pods/pod-lifecycle/ 301
 /docs/user-guide/pod-templates/     /docs/concepts/workloads/pods/#pod-templates 301
 /docs/user-guide/pods/     /docs/concepts/workloads/pods/pod/ 301
@@ -480,7 +511,6 @@
 /editdocs/     /docs/contribute/     301
 /docs/home/editdocs/  /docs/contribute/ 301
 
-
 /docs/admin/accessing-the-api/     /docs/concepts/overview/kubernetes-api/ 301
 /docs/admin/admission-controllers/     /docs/reference/access-authn-authz/admission-controllers/ 301
 /docs/admin/authentication/     /docs/reference/access-authn-authz/authentication/ 301
@@ -494,9 +524,14 @@
 /docs/admin/authorization/webhook/     /docs/reference/access-authn-authz/webhook/ 301
 /docs/admin/authorization/     /docs/reference/access-authn-authz/authorization/ 301
 /docs/admin/high-availability/building/     /docs/setup/production-environment/tools/kubeadm/high-availability/   301
+
 /code-of-conduct/     /community/code-of-conduct/   301
 /values/     /community/values/   302
 
+/dockershim /blog/2022/02/17/dockershim-faq/ 302
+/dockershim/ /blog/2022/02/17/dockershim-faq/ 302
+
+
 /docs/setup/release/notes/     /releases/notes/   302
 /docs/setup/release/                 /releases/   301
 /docs/setup/version-skew-policy/     /releases/version-skew-policy/   301
@@ -506,7 +541,7 @@
 /id/docs/setup/minikube/     /id/docs/tasks/tools/ 302
 /docs/setup/learning-environment/     /docs/tasks/tools/  302!
 /id/docs/setup/learning-environment/     /id/docs/tasks/tools/  302!
-/zh/docs/setup/learning-environment/     /zh/docs/tasks/tools/  302!
+/zh/docs/setup/learning-environment/     /zh-cn/docs/tasks/tools/  302!
 /hi/docs/setup/learning-environment/     /hi/docs/tasks/tools/ 302!
 /docs/setup/learning-environment/kind/  /docs/tasks/tools/  302
 /id/docs/setup/learning-environment/kind/  /id/docs/tasks/tools/  302
@@ -532,8 +567,12 @@
 /docs/setup/on-premises-vm/ovirt/     /docs/setup/production-environment/on-premises-vm/ovirt/   301
 /docs/setup/windows/intro-windows-in-kubernetes/     /docs/setup/production-environment/windows/intro-windows-in-kubernetes/   301
 /docs/setup/windows/user-guide-windows-nodes/     /docs/tasks/administer-cluster/kubeadm/adding-windows-nodes/   301
+/docs/setup/production-environment/windows/user-guide-windows-containers/     /docs/concepts/windows/user-guide/   301
 /docs/setup/production-environment/windows/user-guide-windows-nodes/     /docs/tasks/administer-cluster/kubeadm/adding-windows-nodes/   301
+/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes/     /docs/setup/production-environment/tools/kubeadm/create-cluster-kubeadm/   301
 /docs/setup/windows/user-guide-windows-containers/     /docs/setup/production-environment/windows/user-guide-windows-containers/   301
+/docs/setup/production-environment/windows/intro-windows-in-kubernetes/     /docs/concepts/windows/intro/   301
+/docs/setup/production-environment/windows/     /docs/concepts/windows/   301
 /docs/setup/multiple-zones/     /docs/setup/best-practices/multiple-zones/   301
 /docs/setup/cluster-large/     /docs/setup/best-practices/cluster-large/   301
 /docs/setup/node-conformance/     /docs/setup/best-practices/node-conformance/   301
@@ -544,4 +583,5 @@
 /docs/concepts/configuration/pod-overhead/     /docs/concepts/scheduling-eviction/pod-overhead/   301
 /id/docs/concepts/configuration/pod-overhead/     /id/docs/concepts/scheduling-eviction/pod-overhead/   301
 
-/pt/*         /pt-br/:splat  302!
\ No newline at end of file
+/pt/*         /pt-br/:splat  302!
+/zh/*         /zh-cn/:splat  302!
diff --git a/static/css/community.css b/static/css/community.css
index 9bd94d3dab..99ad2948fa 100644
--- a/static/css/community.css
+++ b/static/css/community.css
@@ -1,19 +1,425 @@
-div.community_main h1, h2, h3 {
-  border-bottom: 1px solid #cccccc;
-  margin-bottom: 30px;
-  padding-bottom: 10px;
-  padding-top: 10px;
+body.cid-community #banner {
+  aspect-ratio: 1500 / 293; /* match source image */
+  display: block;
+  width: 100%;
+  margin: 0 0 2.5em 0;
+  max-height: min(calc(2.5vw + min(24em, calc(2 * 293px))), 50vh);
+  object-fit: cover;
+  overflow: clip;
 }
 
-div.community_main {
-  padding: 50px 100px;
+body.cid-community .community-section #h2 {
+  font-weight: 200;
+  margin-top: 1em;
+  margin-bottom: 0.5em;
+  text-align: center;
+  letter-spacing: 0.15em;
+  text-transform: uppercase;
 }
 
-div.community_main ul, 
-div.community_main li {
-  list-style: disc;
-  list-style-position: inside;
-  padding: 10px 0;
-  font-size: 16px;
+body.cid-community .community-section h2:before,
+body.cid-community .community-section h2:after {
+  background-color: #aaaaaa;
+  content: "";
+  display: inline-block;
+  height: 1px;
+  position: relative;
+  vertical-align: middle;
+  width: 35%;
+}
+
+body.cid-community .community-section h2:before {
+  right: 0.5em;
+  margin-left: -50%;
+}
+
+body.cid-community .community-section h2:after {
+  left: 0.5em;
+  margin-right: -50%;
+}
+
+body.cid-community .community-section, body.cid-community #navigation-items {
+  max-width: min(85vw,100em);
+  margin-left: auto;
+  margin-right: auto;
+}
+
+body.cid-community .community-section {
+  margin-top: 1em;
+  margin-bottom: 1em;
+  padding: 0.5em 0;
+  justify-content: space-evenly;
+  align-items: baseline;
+  align-content: space-between;
+  min-height: 10em;
+  text-align: center; /* overridden for paragraphs */
+}
+
+body.cid-community .community-section:first-child {
+  padding-top: max(3vh,1.5em);
+}
+
+body.cid-community #navigation-items {
+  padding: 0.25em;
+
+  width: 100vw;
+  max-width: initial;
+
+  margin-top: 2.5em;
+  margin-bottom: 2.5em;
+
+  gap: 1.25em;
+
+  border-bottom: 1px solid #aaaaaa;
+  border-top: 1px solid #aaaaaa;
+  display: flex;
+  flex-direction: row;
+  flex-wrap: wrap;
+}
+
+/* Allow fallback if calc() fails */
+body.cid-community #navigation-items {
+  padding-left: calc((100vw - min(85vw,120em))/2);
+  padding-right: calc((100vw - min(85vw,120em))/2);
+}
+
+body.cid-community #navigation-items .community-nav-item {
+  flex-grow: 1;
+  text-align: center;
+  letter-spacing: 0.08em;
+  padding-top: 0.2em;
+  padding-bottom: 0.2em;
+  word-spacing: initial;
+  text-decoration: none;
+  text-transform: uppercase;
   font-weight: 400;
+  color: #303030;
+  background: #ffffff;
+  font-size: 1.1em;
+  padding: 0.2em;
+  margin: 0;
+  max-width: 75vw;
+  min-width: 10%;
+  min-height: 2em;
 }
+
+body.cid-community .community-section > p:not(.community-simple) {
+  line-height: 1.5em;
+  text-align: initial;
+}
+
+body.cid-community .community-section#introduction,
+body.cid-community .community-section#introduction > p {
+  line-height: 1.75em;
+  font-weight: 300;
+  letter-spacing: 0.04em;
+}
+
+body.cid-community #gallery {
+  display: flex;
+  max-width: 100vw;
+  gap: 0.75rem;
+  justify-content: center;
+  margin-left: auto;
+  margin-right: auto;
+}
+
+body.cid-community #gallery img {
+  display: block;
+  flex-basis: 0;
+  flex-grow: 0;
+  height: min(20em, 90vh);
+}
+
+/* see media queries later in file */
+body.cid-community #gallery img.community-gallery-mobile {
+  display: none;
+}
+
+
+
+
+body.cid-community .community-section#events {
+  width: 100vw;
+  max-width: initial;
+  margin-bottom: 0;
+
+  /* no events
+  background-image: url('/images/community/event-bg.jpg');
+  background-size: 100% auto;
+  background-position: center;
+  color: #fff;
+  */
+  display: none;
+}
+
+body.cid-community .community-section#values {
+  width: 100vw;
+  max-width: initial;
+  background-image: url('/images/community/event-bg.jpg');
+  color: #fff;
+  padding: 2em;
+  margin-top: 3em;
+}
+body.cid-community .community-section#values {
+  padding-left: calc((100vw - min(75vw,120em))/2);
+  padding-right: calc((100vw - min(75vw,120em))/2);
+}
+
+body.cid-community .community-section#meetups {
+  width: 100vw;
+  max-width: initial;
+  margin-top: 0;
+
+  background: url('/images/community/kubernetes-community-final.jpg'), url('/images/community/kubernetes-community-column.png');
+  background-position: 80% center, left center;
+  background-repeat: no-repeat, repeat;
+  background-size: auto 100%, cover;
+  color: #fff;
+
+  width: 100vw;
+  /* fallback in case calc() fails */
+  padding: 5vw;
+  padding-bottom: 1em;
+  min-height: min(24em,50vh);
+}
+
+body.cid-community .community-section#meetups {
+  padding-left: calc((100vw - min(75vw,100em))/2);
+  padding-right: calc((100vw - min(75vw,100em))/2);
+}
+
+body.cid-community a.community-cta-button {
+  appearance: button;
+  display: inline-block;
+  margin: 0.75em auto 0 auto; /* gap before button */
+
+  background-color: #0662EE;
+  color: white;
+
+  border-radius: 6px;
+  padding: 0.75em;
+  min-height: 3em;
+  min-width: max(5vw, 9em);
+
+  text-align: center;
+}
+
+body.cid-community a.community-cta-button > span.community-cta {
+  color: inherit;
+  background: transparent;
+
+  letter-spacing: 0.02em;
+  font-weight: bold;
+  text-transform: uppercase;
+}
+
+body.cid-community .fullbutton {
+  appearance: button;
+  display: inline-block;
+  margin: auto;
+  margin-top: 2rem;
+  background-color: #0662EE;
+  color: white;
+  font-size: 1.5em;
+  border-radius: 0.3333em;
+  padding: 0.5em;
+  letter-spacing: 0.07em;
+  font-weight: bold;
+}
+
+body.cid-community #videos {
+  width: 100vw;
+  max-width: initial;
+  padding: 0.5em 5vw 5% 5vw; /* fallback in case calc() fails */
+  background-color: #eeeeee;
+  margin-top: 4em;
+}
+
+body.cid-community #videos {
+  padding-left: calc((100vw - min(95vw,160em))/2);
+  padding-right: calc((100vw - min(95vw,160em))/2);
+}
+
+body.cid-community #videos .container {
+  display: flex;
+  flex-wrap: wrap;
+  gap: max(12px,2em);
+  max-width: 95vw;
+  justify-content: center;
+  margin-left: auto;
+  margin-right: auto;
+}
+
+
+body.cid-community .video {
+  width: min(80vw,max(31%, 24em));
+  flex-basis: 31%;
+  flex-shrink: 1;
+}
+
+body.cid-community .video .videocta {
+  display: block;
+  margin: 0.25em 0 0em 0;
+  text-align: center;
+  padding: 0.25em;
+  padding-bottom: 2em;
+  text-align: center;
+  color: #0662EE;
+  text-transform: uppercase;
+  font-weight: bold;
+  letter-spacing: 0.06em;
+  line-height: 1.25em;
+  clear: both;
+}
+
+body.cid-community .video iframe {
+  min-width: 95%;
+  height: auto;
+  aspect-ratio: 16 / 9;
+}
+
+body.cid-community #resources {
+  margin-top: 5%;
+  margin-bottom: 3%;
+}
+
+body.cid-community #resources .container {
+  width: 100%;
+  display: flex;
+  flex-wrap: none;
+  gap: 2em;
+  justify-content: center;
+  margin-left: auto;
+  margin-right: auto;
+}
+
+
+body.cid-community #resources .container > .community-resource {
+  flex-basis: auto;
+  width: 100%;
+  flex-shrink: 1;
+}
+
+body.cid-community #resources .container > .community-resource img {
+  max-height: min(6em, 50vh);
+  width: auto;
+  display: block;
+  margin: 1em auto 0.75em auto;
+}
+
+body.cid-community #resources .container > .community-resource a {
+  text-transform: uppercase;
+}
+
+body.cid-community .resourcebox {
+  height: 100%;
+  min-height: 370px;
+}
+
+
+
+
+body.cid-community .community-section.community-frame {
+  width: 100vw;
+}
+
+body.cid-community .community-section.community-frame .twittercol1 {
+  width: 100%;
+}
+
+body.cid-community details > summary {
+  color: #303030;
+}
+
+body.cid-community #cncf-code-of-conduct-intro,
+body.cid-community #cncf-code-of-conduct {
+  max-width: min(90vw, 100em);
+  padding-left: 0.5em;
+  padding-right: 0.5em;
+  margin-left: auto;
+  margin-right: auto;
+}
+
+body.cid-community #cncf-code-of-conduct {
+  padding-bottom: 8em;
+  padding-top: 0.25em;
+  margin-top: 0;
+}
+
+/* duplication not needed */
+body.cid-community #values-legacy h1 {
+  display: none;
+}
+
+body.cid-community #values-legacy h2,
+body.cid-community #cncf-code-of-conduct h2 {
+  margin-top: 0.25em;
+  margin-bottom: 1em;
+  color: #0662EE;
+}
+
+body.cid-community #values-legacy h2:before,
+body.cid-community #values-legacy h2:after,
+body.cid-community #cncf-code-of-conduct h2:before,
+body.cid-community #cncf-code-of-conduct h2:after {
+  display: none; /* skip decoration */
+}
+
+
+@media only screen and (max-width: 640px) {
+  body.cid-community #navigation-items {
+    justify-content: flex-start;
+    text-align: left;
+    gap: min(2px,0.125em);
+  }
+  body.cid-community #navigation-items div.community-nav-item {
+    width: 100%;
+    text-align: left;
+    min-height: initial;
+    flex-shrink: 0;
+  }
+  body.cid-community .video {
+    max-width: 80vw;
+    flex-basis: auto;
+  }
+  body.cid-community #resources .container {
+    flex-wrap: wrap;
+  }
+  body.cid-community #resources .container .community-resource {
+    max-width: min(80vw, 24rem);
+  }
+  body.cid-community a.community-cta-button {
+    font-size: 1.5rem;
+  }
+}
+
+@media only screen and (max-width: 1024px) {
+  body.cid-community #gallery img.community-gallery-desktop {
+    display: none;
+  }
+  body.cid-community #gallery img.community-gallery-mobile {
+    display: initial;
+    max-width: 95vw;
+    height: auto;
+  }
+  body.cid-community .video {
+    flex-basis: max(30em,80vw);
+    max-width: max(32em, 75vw);
+  }
+  body.cid-community .video .videocta {
+    padding-bottom: 0.5em;
+  }
+}
+
+@media only screen and (min-width: 1024px) {
+  body.cid-community br.optional {
+    display: none;
+  }
+  body.cid-community .community-section:not(:first-of-type) {
+    min-height: max(20em,18vh);
+  }
+  body.cid-community .community-section#meetups p:last-of-type {
+   margin-bottom: 6em; /* extra space for background */
+  }
+}
\ No newline at end of file
diff --git a/static/css/gridpage.css b/static/css/gridpage.css
index 7da7f1973d..4069185e0e 100644
--- a/static/css/gridpage.css
+++ b/static/css/gridpage.css
@@ -21,6 +21,15 @@
     padding: 0 30px 0 0;
     margin-bottom: 50px;
     min-height: 152px;
+  
+}
+/* 
+ * Remove the height of the H2 element pseudo-class and set the appropriate spacing 
+ * to avoid mistakenly overriding the styles of other elements 
+ */
+.launch-card h2::before {
+    margin-top: 1rem ;
+    height: 0 ;
 }
 
 .gridPage p {
diff --git a/static/css/newcommunity.css b/static/css/legacy_community.css
similarity index 96%
rename from static/css/newcommunity.css
rename to static/css/legacy_community.css
index 993cd89e1a..80b0404344 100644
--- a/static/css/newcommunity.css
+++ b/static/css/legacy_community.css
@@ -1,3 +1,22 @@
+div.community_main h1, h2, h3 {
+  border-bottom: 1px solid #cccccc;
+  margin-bottom: 30px;
+  padding-bottom: 10px;
+  padding-top: 10px;
+}
+
+div.community_main {
+  padding: 50px 100px;
+}
+
+div.community_main ul, 
+div.community_main li {
+  list-style: disc;
+  list-style-position: inside;
+  padding: 10px 0;
+  font-size: 16px;
+  font-weight: 400;
+}
 .SandboxRoot.env-bp-430 .timeline-Tweet-text {
 
   font-size: 13pt !important;
@@ -59,11 +78,6 @@ code {
   margin-top: 25px;
 }
 
-
-footer {
-  float: left !important;
-}
-
 p {
   font-weight: 300 !important;
 }
@@ -85,7 +99,7 @@ body {
   font-weight: 300;
   /* letter-spacing:0.03em; */
   /* font-size:15px; */
-  margin: 0 auto;
+  margin: 0;
 
 }
 
@@ -311,8 +325,7 @@ a {
 
 .resources {
   width: 100%;
-  margin-top;
-  5%;
+  margin-top: 5%;
   margin-bottom: 3%;
   float: left;
 }
@@ -491,13 +504,7 @@ h2:after {
     font-weight: bold;
 
   }
-
-  /* .fullbutton {
-
-    padding: 3% !important;
-
-
-  } */
+  
 }
 
 @media (max-width:1000px) {
@@ -636,11 +643,9 @@ h2:after {
 
   body {
     overflow-x: hidden;
-    line-height: 1.5em;
     margin-top: 1%;
     letter-spacing: 0.03em;
     /* font-size: 13px; */
-    margin: 0 auto;
 
   }
 
@@ -762,8 +767,7 @@ h2:after {
 
   .resources {
     width: 100%;
-    margin-top;
-    8%;
+    margin-top: 8%;
     margin-bottom: 8%;
     float: left;
   }
@@ -776,10 +780,6 @@ h2:after {
     margin-left: 5%;
   }
 
-
-
-
-
   .contributor {
     float: left;
     width: 100%;
@@ -855,7 +855,4 @@ h2:after {
     font-size: 0.7em !important;
   }
 
-
-
-
 }
\ No newline at end of file
diff --git a/static/css/training.css b/static/css/training.css
index 489bd1e0b2..7c9f767825 100644
--- a/static/css/training.css
+++ b/static/css/training.css
@@ -124,6 +124,25 @@ body.cid-training #get-certified .col-nav a.button {
   body.cid-training section.call-to-action .main-section > div.call-to-action > div {
     padding: 0 2rem 0 2rem;
   }
+  body.cid-training section.call-to-action .main-section > div.call-to-action div.cta-image {
+    padding: 0 2rem 0 2rem;
+    /* Change display to CSS Grid layout with 2 columns that autofill */
+    display: grid; 
+    grid-template-columns: repeat(auto-fill, minmax(50%, 1fr));
+  }
+  /* Make the CTA text fill 100% of the viewport */
+  body.cid-training section.call-to-action .main-section > div.call-to-action > div.cta-text {
+    width: 100%;
+  }
+
+  /* Resize the div that contains the images so that the images wrap 2 at a time
+ and have no margin issues */
+
+  body.cid-training section.call-to-action .main-section > div.call-to-action {
+    width: 60%;
+    margin: auto;
+    padding-top: 20px;
+  }
 }
 
 
diff --git a/static/docs/reference/generated/kubectl/kubectl-commands.html b/static/docs/reference/generated/kubectl/kubectl-commands.html
index 06cfbabb1d..5977811849 100644
--- a/static/docs/reference/generated/kubectl/kubectl-commands.html
+++ b/static/docs/reference/generated/kubectl/kubectl-commands.html
@@ -12,7 +12,7 @@
 <link rel="stylesheet" href="stylesheet.css" type="text/css">
 </head>
 <body>
-<div id="sidebar-wrapper" class="side-nav side-bar-nav"><ul><li class="nav-level-1 strong-nav"><a href="#-strong-getting-started-strong-" class="nav-item"><strong>GETTING STARTED</strong></a></li></ul><ul><li class="nav-level-1"><a href="#create" class="nav-item">create</a></li><ul id="create-nav" style="display: none;"><li class="nav-level-2"><a href="#-em-clusterrole-em-" class="nav-item"><em>clusterrole</em></a></li><li class="nav-level-2"><a href="#-em-clusterrolebinding-em-" class="nav-item"><em>clusterrolebinding</em></a></li><li class="nav-level-2"><a href="#-em-configmap-em-" class="nav-item"><em>configmap</em></a></li><li class="nav-level-2"><a href="#-em-cronjob-em-" class="nav-item"><em>cronjob</em></a></li><li class="nav-level-2"><a href="#-em-deployment-em-" class="nav-item"><em>deployment</em></a></li><li class="nav-level-2"><a href="#-em-ingress-em-" class="nav-item"><em>ingress</em></a></li><li class="nav-level-2"><a href="#-em-job-em-" class="nav-item"><em>job</em></a></li><li class="nav-level-2"><a href="#-em-namespace-em-" class="nav-item"><em>namespace</em></a></li><li class="nav-level-2"><a href="#-em-poddisruptionbudget-em-" class="nav-item"><em>poddisruptionbudget</em></a></li><li class="nav-level-2"><a href="#-em-priorityclass-em-" class="nav-item"><em>priorityclass</em></a></li><li class="nav-level-2"><a href="#-em-quota-em-" class="nav-item"><em>quota</em></a></li><li class="nav-level-2"><a href="#-em-role-em-" class="nav-item"><em>role</em></a></li><li class="nav-level-2"><a href="#-em-rolebinding-em-" class="nav-item"><em>rolebinding</em></a></li><li class="nav-level-2"><a href="#-em-secret-em-" class="nav-item"><em>secret</em></a></li><li class="nav-level-2"><a href="#-em-secret-docker-registry-em-" class="nav-item"><em>secret docker-registry</em></a></li><li class="nav-level-2"><a href="#-em-secret-generic-em-" class="nav-item"><em>secret generic</em></a></li><li class="nav-level-2"><a href="#-em-secret-tls-em-" class="nav-item"><em>secret tls</em></a></li><li class="nav-level-2"><a href="#-em-service-em-" class="nav-item"><em>service</em></a></li><li class="nav-level-2"><a href="#-em-service-clusterip-em-" class="nav-item"><em>service clusterip</em></a></li><li class="nav-level-2"><a href="#-em-service-externalname-em-" class="nav-item"><em>service externalname</em></a></li><li class="nav-level-2"><a href="#-em-service-loadbalancer-em-" class="nav-item"><em>service loadbalancer</em></a></li><li class="nav-level-2"><a href="#-em-service-nodeport-em-" class="nav-item"><em>service nodeport</em></a></li><li class="nav-level-2"><a href="#-em-serviceaccount-em-" class="nav-item"><em>serviceaccount</em></a></li></ul></ul><ul><li class="nav-level-1"><a href="#get" class="nav-item">get</a></li></ul><ul><li class="nav-level-1"><a href="#run" class="nav-item">run</a></li></ul><ul><li class="nav-level-1"><a href="#expose" class="nav-item">expose</a></li></ul><ul><li class="nav-level-1"><a href="#delete" class="nav-item">delete</a></li></ul><ul><li class="nav-level-1 strong-nav"><a href="#-strong-app-management-strong-" class="nav-item"><strong>APP MANAGEMENT</strong></a></li></ul><ul><li class="nav-level-1"><a href="#apply" class="nav-item">apply</a></li><ul id="apply-nav" style="display: none;"><li class="nav-level-2"><a href="#-em-edit-last-applied-em-" class="nav-item"><em>edit-last-applied</em></a></li><li class="nav-level-2"><a href="#-em-set-last-applied-em-" class="nav-item"><em>set-last-applied</em></a></li><li class="nav-level-2"><a href="#-em-view-last-applied-em-" class="nav-item"><em>view-last-applied</em></a></li></ul></ul><ul><li class="nav-level-1"><a href="#annotate" class="nav-item">annotate</a></li></ul><ul><li class="nav-level-1"><a href="#autoscale" class="nav-item">autoscale</a></li></ul><ul><li class="nav-level-1"><a href="#debug" class="nav-item">debug</a></li></ul><ul><li class="nav-level-1"><a href="#diff" class="nav-item">diff</a></li></ul><ul><li class="nav-level-1"><a href="#edit" class="nav-item">edit</a></li></ul><ul><li class="nav-level-1"><a href="#kustomize" class="nav-item">kustomize</a></li></ul><ul><li class="nav-level-1"><a href="#label" class="nav-item">label</a></li></ul><ul><li class="nav-level-1"><a href="#patch" class="nav-item">patch</a></li></ul><ul><li class="nav-level-1"><a href="#replace" class="nav-item">replace</a></li></ul><ul><li class="nav-level-1"><a href="#rollout" class="nav-item">rollout</a></li><ul id="rollout-nav" style="display: none;"><li class="nav-level-2"><a href="#-em-history-em-" class="nav-item"><em>history</em></a></li><li class="nav-level-2"><a href="#-em-pause-em-" class="nav-item"><em>pause</em></a></li><li class="nav-level-2"><a href="#-em-restart-em-" class="nav-item"><em>restart</em></a></li><li class="nav-level-2"><a href="#-em-resume-em-" class="nav-item"><em>resume</em></a></li><li class="nav-level-2"><a href="#-em-status-em-" class="nav-item"><em>status</em></a></li><li class="nav-level-2"><a href="#-em-undo-em-" class="nav-item"><em>undo</em></a></li></ul></ul><ul><li class="nav-level-1"><a href="#scale" class="nav-item">scale</a></li></ul><ul><li class="nav-level-1"><a href="#set" class="nav-item">set</a></li><ul id="set-nav" style="display: none;"><li class="nav-level-2"><a href="#-em-env-em-" class="nav-item"><em>env</em></a></li><li class="nav-level-2"><a href="#-em-image-em-" class="nav-item"><em>image</em></a></li><li class="nav-level-2"><a href="#-em-resources-em-" class="nav-item"><em>resources</em></a></li><li class="nav-level-2"><a href="#-em-selector-em-" class="nav-item"><em>selector</em></a></li><li class="nav-level-2"><a href="#-em-serviceaccount-em--1" class="nav-item"><em>serviceaccount</em></a></li><li class="nav-level-2"><a href="#-em-subject-em-" class="nav-item"><em>subject</em></a></li></ul></ul><ul><li class="nav-level-1"><a href="#wait" class="nav-item">wait</a></li></ul><ul><li class="nav-level-1 strong-nav"><a href="#-strong-working-with-apps-strong-" class="nav-item"><strong>WORKING WITH APPS</strong></a></li></ul><ul><li class="nav-level-1"><a href="#attach" class="nav-item">attach</a></li></ul><ul><li class="nav-level-1"><a href="#auth" class="nav-item">auth</a></li><ul id="auth-nav" style="display: none;"><li class="nav-level-2"><a href="#-em-can-i-em-" class="nav-item"><em>can-i</em></a></li><li class="nav-level-2"><a href="#-em-reconcile-em-" class="nav-item"><em>reconcile</em></a></li></ul></ul><ul><li class="nav-level-1"><a href="#cp" class="nav-item">cp</a></li></ul><ul><li class="nav-level-1"><a href="#describe" class="nav-item">describe</a></li></ul><ul><li class="nav-level-1"><a href="#exec" class="nav-item">exec</a></li></ul><ul><li class="nav-level-1"><a href="#logs" class="nav-item">logs</a></li></ul><ul><li class="nav-level-1"><a href="#port-forward" class="nav-item">port-forward</a></li></ul><ul><li class="nav-level-1"><a href="#proxy" class="nav-item">proxy</a></li></ul><ul><li class="nav-level-1"><a href="#top" class="nav-item">top</a></li><ul id="top-nav" style="display: none;"><li class="nav-level-2"><a href="#-em-node-em-" class="nav-item"><em>node</em></a></li><li class="nav-level-2"><a href="#-em-pod-em-" class="nav-item"><em>pod</em></a></li></ul></ul><ul><li class="nav-level-1 strong-nav"><a href="#-strong-cluster-management-strong-" class="nav-item"><strong>CLUSTER MANAGEMENT</strong></a></li></ul><ul><li class="nav-level-1"><a href="#api-versions" class="nav-item">api-versions</a></li></ul><ul><li class="nav-level-1"><a href="#certificate" class="nav-item">certificate</a></li><ul id="certificate-nav" style="display: none;"><li class="nav-level-2"><a href="#-em-approve-em-" class="nav-item"><em>approve</em></a></li><li class="nav-level-2"><a href="#-em-deny-em-" class="nav-item"><em>deny</em></a></li></ul></ul><ul><li class="nav-level-1"><a href="#cluster-info" class="nav-item">cluster-info</a></li><ul id="cluster-info-nav" style="display: none;"><li class="nav-level-2"><a href="#-em-dump-em-" class="nav-item"><em>dump</em></a></li></ul></ul><ul><li class="nav-level-1"><a href="#cordon" class="nav-item">cordon</a></li></ul><ul><li class="nav-level-1"><a href="#drain" class="nav-item">drain</a></li></ul><ul><li class="nav-level-1"><a href="#taint" class="nav-item">taint</a></li></ul><ul><li class="nav-level-1"><a href="#uncordon" class="nav-item">uncordon</a></li></ul><ul><li class="nav-level-1 strong-nav"><a href="#-strong-kubectl-settings-and-usage-strong-" class="nav-item"><strong>KUBECTL SETTINGS AND USAGE</strong></a></li></ul><ul><li class="nav-level-1"><a href="#alpha" class="nav-item">alpha</a></li></ul><ul><li class="nav-level-1"><a href="#api-resources" class="nav-item">api-resources</a></li></ul><ul><li class="nav-level-1"><a href="#completion" class="nav-item">completion</a></li></ul><ul><li class="nav-level-1"><a href="#config" class="nav-item">config</a></li><ul id="config-nav" style="display: none;"><li class="nav-level-2"><a href="#-em-current-context-em-" class="nav-item"><em>current-context</em></a></li><li class="nav-level-2"><a href="#-em-delete-cluster-em-" class="nav-item"><em>delete-cluster</em></a></li><li class="nav-level-2"><a href="#-em-delete-context-em-" class="nav-item"><em>delete-context</em></a></li><li class="nav-level-2"><a href="#-em-delete-user-em-" class="nav-item"><em>delete-user</em></a></li><li class="nav-level-2"><a href="#-em-get-clusters-em-" class="nav-item"><em>get-clusters</em></a></li><li class="nav-level-2"><a href="#-em-get-contexts-em-" class="nav-item"><em>get-contexts</em></a></li><li class="nav-level-2"><a href="#-em-get-users-em-" class="nav-item"><em>get-users</em></a></li><li class="nav-level-2"><a href="#-em-rename-context-em-" class="nav-item"><em>rename-context</em></a></li><li class="nav-level-2"><a href="#-em-set-em-" class="nav-item"><em>set</em></a></li><li class="nav-level-2"><a href="#-em-set-cluster-em-" class="nav-item"><em>set-cluster</em></a></li><li class="nav-level-2"><a href="#-em-set-context-em-" class="nav-item"><em>set-context</em></a></li><li class="nav-level-2"><a href="#-em-set-credentials-em-" class="nav-item"><em>set-credentials</em></a></li><li class="nav-level-2"><a href="#-em-unset-em-" class="nav-item"><em>unset</em></a></li><li class="nav-level-2"><a href="#-em-use-context-em-" class="nav-item"><em>use-context</em></a></li><li class="nav-level-2"><a href="#-em-view-em-" class="nav-item"><em>view</em></a></li></ul></ul><ul><li class="nav-level-1"><a href="#explain" class="nav-item">explain</a></li></ul><ul><li class="nav-level-1"><a href="#options" class="nav-item">options</a></li></ul><ul><li class="nav-level-1"><a href="#plugin" class="nav-item">plugin</a></li><ul id="plugin-nav" style="display: none;"><li class="nav-level-2"><a href="#-em-list-em-" class="nav-item"><em>list</em></a></li></ul></ul><ul><li class="nav-level-1"><a href="#version" class="nav-item">version</a></li></ul><br/><div class="copyright"><a href="https://github.com/kubernetes/kubernetes">Copyright 2020 The Kubernetes Authors.</a></div></div>
+<div id="sidebar-wrapper" class="side-nav side-bar-nav"><ul><li class="nav-level-1 strong-nav"><a href="#-strong-getting-started-strong-" class="nav-item"><strong>GETTING STARTED</strong></a></li></ul><ul><li class="nav-level-1"><a href="#create" class="nav-item">create</a></li><ul id="create-nav" style="display: none;"><li class="nav-level-2"><a href="#-em-clusterrole-em-" class="nav-item"><em>clusterrole</em></a></li><li class="nav-level-2"><a href="#-em-clusterrolebinding-em-" class="nav-item"><em>clusterrolebinding</em></a></li><li class="nav-level-2"><a href="#-em-configmap-em-" class="nav-item"><em>configmap</em></a></li><li class="nav-level-2"><a href="#-em-cronjob-em-" class="nav-item"><em>cronjob</em></a></li><li class="nav-level-2"><a href="#-em-deployment-em-" class="nav-item"><em>deployment</em></a></li><li class="nav-level-2"><a href="#-em-ingress-em-" class="nav-item"><em>ingress</em></a></li><li class="nav-level-2"><a href="#-em-job-em-" class="nav-item"><em>job</em></a></li><li class="nav-level-2"><a href="#-em-namespace-em-" class="nav-item"><em>namespace</em></a></li><li class="nav-level-2"><a href="#-em-poddisruptionbudget-em-" class="nav-item"><em>poddisruptionbudget</em></a></li><li class="nav-level-2"><a href="#-em-priorityclass-em-" class="nav-item"><em>priorityclass</em></a></li><li class="nav-level-2"><a href="#-em-quota-em-" class="nav-item"><em>quota</em></a></li><li class="nav-level-2"><a href="#-em-role-em-" class="nav-item"><em>role</em></a></li><li class="nav-level-2"><a href="#-em-rolebinding-em-" class="nav-item"><em>rolebinding</em></a></li><li class="nav-level-2"><a href="#-em-secret-em-" class="nav-item"><em>secret</em></a></li><li class="nav-level-2"><a href="#-em-secret-docker-registry-em-" class="nav-item"><em>secret docker-registry</em></a></li><li class="nav-level-2"><a href="#-em-secret-generic-em-" class="nav-item"><em>secret generic</em></a></li><li class="nav-level-2"><a href="#-em-secret-tls-em-" class="nav-item"><em>secret tls</em></a></li><li class="nav-level-2"><a href="#-em-service-em-" class="nav-item"><em>service</em></a></li><li class="nav-level-2"><a href="#-em-service-clusterip-em-" class="nav-item"><em>service clusterip</em></a></li><li class="nav-level-2"><a href="#-em-service-externalname-em-" class="nav-item"><em>service externalname</em></a></li><li class="nav-level-2"><a href="#-em-service-loadbalancer-em-" class="nav-item"><em>service loadbalancer</em></a></li><li class="nav-level-2"><a href="#-em-service-nodeport-em-" class="nav-item"><em>service nodeport</em></a></li><li class="nav-level-2"><a href="#-em-serviceaccount-em-" class="nav-item"><em>serviceaccount</em></a></li><li class="nav-level-2"><a href="#-em-token-em-" class="nav-item"><em>token</em></a></li></ul></ul><ul><li class="nav-level-1"><a href="#get" class="nav-item">get</a></li></ul><ul><li class="nav-level-1"><a href="#run" class="nav-item">run</a></li></ul><ul><li class="nav-level-1"><a href="#expose" class="nav-item">expose</a></li></ul><ul><li class="nav-level-1"><a href="#delete" class="nav-item">delete</a></li></ul><ul><li class="nav-level-1 strong-nav"><a href="#-strong-app-management-strong-" class="nav-item"><strong>APP MANAGEMENT</strong></a></li></ul><ul><li class="nav-level-1"><a href="#apply" class="nav-item">apply</a></li><ul id="apply-nav" style="display: none;"><li class="nav-level-2"><a href="#-em-edit-last-applied-em-" class="nav-item"><em>edit-last-applied</em></a></li><li class="nav-level-2"><a href="#-em-set-last-applied-em-" class="nav-item"><em>set-last-applied</em></a></li><li class="nav-level-2"><a href="#-em-view-last-applied-em-" class="nav-item"><em>view-last-applied</em></a></li></ul></ul><ul><li class="nav-level-1"><a href="#annotate" class="nav-item">annotate</a></li></ul><ul><li class="nav-level-1"><a href="#autoscale" class="nav-item">autoscale</a></li></ul><ul><li class="nav-level-1"><a href="#debug" class="nav-item">debug</a></li></ul><ul><li class="nav-level-1"><a href="#diff" class="nav-item">diff</a></li></ul><ul><li class="nav-level-1"><a href="#edit" class="nav-item">edit</a></li></ul><ul><li class="nav-level-1"><a href="#kustomize" class="nav-item">kustomize</a></li></ul><ul><li class="nav-level-1"><a href="#label" class="nav-item">label</a></li></ul><ul><li class="nav-level-1"><a href="#patch" class="nav-item">patch</a></li></ul><ul><li class="nav-level-1"><a href="#replace" class="nav-item">replace</a></li></ul><ul><li class="nav-level-1"><a href="#rollout" class="nav-item">rollout</a></li><ul id="rollout-nav" style="display: none;"><li class="nav-level-2"><a href="#-em-history-em-" class="nav-item"><em>history</em></a></li><li class="nav-level-2"><a href="#-em-pause-em-" class="nav-item"><em>pause</em></a></li><li class="nav-level-2"><a href="#-em-restart-em-" class="nav-item"><em>restart</em></a></li><li class="nav-level-2"><a href="#-em-resume-em-" class="nav-item"><em>resume</em></a></li><li class="nav-level-2"><a href="#-em-status-em-" class="nav-item"><em>status</em></a></li><li class="nav-level-2"><a href="#-em-undo-em-" class="nav-item"><em>undo</em></a></li></ul></ul><ul><li class="nav-level-1"><a href="#scale" class="nav-item">scale</a></li></ul><ul><li class="nav-level-1"><a href="#set" class="nav-item">set</a></li><ul id="set-nav" style="display: none;"><li class="nav-level-2"><a href="#-em-env-em-" class="nav-item"><em>env</em></a></li><li class="nav-level-2"><a href="#-em-image-em-" class="nav-item"><em>image</em></a></li><li class="nav-level-2"><a href="#-em-resources-em-" class="nav-item"><em>resources</em></a></li><li class="nav-level-2"><a href="#-em-selector-em-" class="nav-item"><em>selector</em></a></li><li class="nav-level-2"><a href="#-em-serviceaccount-em--1" class="nav-item"><em>serviceaccount</em></a></li><li class="nav-level-2"><a href="#-em-subject-em-" class="nav-item"><em>subject</em></a></li></ul></ul><ul><li class="nav-level-1"><a href="#wait" class="nav-item">wait</a></li></ul><ul><li class="nav-level-1 strong-nav"><a href="#-strong-working-with-apps-strong-" class="nav-item"><strong>WORKING WITH APPS</strong></a></li></ul><ul><li class="nav-level-1"><a href="#attach" class="nav-item">attach</a></li></ul><ul><li class="nav-level-1"><a href="#auth" class="nav-item">auth</a></li><ul id="auth-nav" style="display: none;"><li class="nav-level-2"><a href="#-em-can-i-em-" class="nav-item"><em>can-i</em></a></li><li class="nav-level-2"><a href="#-em-reconcile-em-" class="nav-item"><em>reconcile</em></a></li></ul></ul><ul><li class="nav-level-1"><a href="#cp" class="nav-item">cp</a></li></ul><ul><li class="nav-level-1"><a href="#describe" class="nav-item">describe</a></li></ul><ul><li class="nav-level-1"><a href="#exec" class="nav-item">exec</a></li></ul><ul><li class="nav-level-1"><a href="#logs" class="nav-item">logs</a></li></ul><ul><li class="nav-level-1"><a href="#port-forward" class="nav-item">port-forward</a></li></ul><ul><li class="nav-level-1"><a href="#proxy" class="nav-item">proxy</a></li></ul><ul><li class="nav-level-1"><a href="#top" class="nav-item">top</a></li><ul id="top-nav" style="display: none;"><li class="nav-level-2"><a href="#-em-node-em-" class="nav-item"><em>node</em></a></li><li class="nav-level-2"><a href="#-em-pod-em-" class="nav-item"><em>pod</em></a></li></ul></ul><ul><li class="nav-level-1 strong-nav"><a href="#-strong-cluster-management-strong-" class="nav-item"><strong>CLUSTER MANAGEMENT</strong></a></li></ul><ul><li class="nav-level-1"><a href="#api-versions" class="nav-item">api-versions</a></li></ul><ul><li class="nav-level-1"><a href="#certificate" class="nav-item">certificate</a></li><ul id="certificate-nav" style="display: none;"><li class="nav-level-2"><a href="#-em-approve-em-" class="nav-item"><em>approve</em></a></li><li class="nav-level-2"><a href="#-em-deny-em-" class="nav-item"><em>deny</em></a></li></ul></ul><ul><li class="nav-level-1"><a href="#cluster-info" class="nav-item">cluster-info</a></li><ul id="cluster-info-nav" style="display: none;"><li class="nav-level-2"><a href="#-em-dump-em-" class="nav-item"><em>dump</em></a></li></ul></ul><ul><li class="nav-level-1"><a href="#cordon" class="nav-item">cordon</a></li></ul><ul><li class="nav-level-1"><a href="#drain" class="nav-item">drain</a></li></ul><ul><li class="nav-level-1"><a href="#taint" class="nav-item">taint</a></li></ul><ul><li class="nav-level-1"><a href="#uncordon" class="nav-item">uncordon</a></li></ul><ul><li class="nav-level-1 strong-nav"><a href="#-strong-kubectl-settings-and-usage-strong-" class="nav-item"><strong>KUBECTL SETTINGS AND USAGE</strong></a></li></ul><ul><li class="nav-level-1"><a href="#alpha" class="nav-item">alpha</a></li><ul id="alpha-nav" style="display: none;"><li class="nav-level-2"><a href="#-em-events-em-" class="nav-item"><em>events</em></a></li></ul></ul><ul><li class="nav-level-1"><a href="#api-resources" class="nav-item">api-resources</a></li></ul><ul><li class="nav-level-1"><a href="#completion" class="nav-item">completion</a></li></ul><ul><li class="nav-level-1"><a href="#config" class="nav-item">config</a></li><ul id="config-nav" style="display: none;"><li class="nav-level-2"><a href="#-em-current-context-em-" class="nav-item"><em>current-context</em></a></li><li class="nav-level-2"><a href="#-em-delete-cluster-em-" class="nav-item"><em>delete-cluster</em></a></li><li class="nav-level-2"><a href="#-em-delete-context-em-" class="nav-item"><em>delete-context</em></a></li><li class="nav-level-2"><a href="#-em-delete-user-em-" class="nav-item"><em>delete-user</em></a></li><li class="nav-level-2"><a href="#-em-get-clusters-em-" class="nav-item"><em>get-clusters</em></a></li><li class="nav-level-2"><a href="#-em-get-contexts-em-" class="nav-item"><em>get-contexts</em></a></li><li class="nav-level-2"><a href="#-em-get-users-em-" class="nav-item"><em>get-users</em></a></li><li class="nav-level-2"><a href="#-em-rename-context-em-" class="nav-item"><em>rename-context</em></a></li><li class="nav-level-2"><a href="#-em-set-em-" class="nav-item"><em>set</em></a></li><li class="nav-level-2"><a href="#-em-set-cluster-em-" class="nav-item"><em>set-cluster</em></a></li><li class="nav-level-2"><a href="#-em-set-context-em-" class="nav-item"><em>set-context</em></a></li><li class="nav-level-2"><a href="#-em-set-credentials-em-" class="nav-item"><em>set-credentials</em></a></li><li class="nav-level-2"><a href="#-em-unset-em-" class="nav-item"><em>unset</em></a></li><li class="nav-level-2"><a href="#-em-use-context-em-" class="nav-item"><em>use-context</em></a></li><li class="nav-level-2"><a href="#-em-view-em-" class="nav-item"><em>view</em></a></li></ul></ul><ul><li class="nav-level-1"><a href="#explain" class="nav-item">explain</a></li></ul><ul><li class="nav-level-1"><a href="#options" class="nav-item">options</a></li></ul><ul><li class="nav-level-1"><a href="#plugin" class="nav-item">plugin</a></li><ul id="plugin-nav" style="display: none;"><li class="nav-level-2"><a href="#-em-list-em-" class="nav-item"><em>list</em></a></li></ul></ul><ul><li class="nav-level-1"><a href="#version" class="nav-item">version</a></li></ul><br/><div class="copyright"><a href="https://github.com/kubernetes/kubernetes">Copyright 2020 The Kubernetes Authors.</a></div></div>
 <div id="wrapper">
 <div id="code-tabs-wrapper" class="code-tabs"><ul class="code-tab-list"><li class="code-tab" id="example">example</li></ul></div>
 <div id="page-content-wrapper" class="body-content container-fluid"><h1 id="-strong-getting-started-strong-"><strong>GETTING STARTED</strong></h1>
@@ -38,12 +38,11 @@ inspect them.</p>
 <pre class="code-block example"><code class="lang-shell">cat pod.json | kubectl <span class="hljs-keyword">create</span> -f -
 </code></pre>
 <blockquote class="code-block example">
-<p> Edit the data in docker-registry.yaml in JSON then create the resource using the edited data</p>
+<p> Edit the data in registry.yaml in JSON then create the resource using the edited data</p>
 </blockquote>
-<pre class="code-block example"><code class="lang-shell">kubectl <span class="hljs-keyword">create</span> -f docker-registry.yaml --<span class="hljs-keyword">edit</span> -o json
+<pre class="code-block example"><code class="lang-shell">kubectl <span class="hljs-keyword">create</span> -f registry.yaml --<span class="hljs-keyword">edit</span> -o json
 </code></pre>
-<p>Create a resource from a file or from stdin.</p>
-<p> JSON and YAML formats are accepted.</p>
+<p>Create a resource from a file or from stdin.<br><br> JSON and YAML formats are accepted.</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl create -f FILENAME</code></p>
 <h3 id="flags">Flags</h3>
@@ -97,7 +96,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>raw</td>
@@ -127,7 +126,7 @@ inspect them.</p>
 <td>selector</td>
 <td>l</td>
 <td></td>
-<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2) </td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
 </tr>
 <tr>
 <td>show-managed-fields</td>
@@ -144,8 +143,8 @@ inspect them.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 <tr>
 <td>windows-line-endings</td>
@@ -235,7 +234,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>resource</td>
@@ -270,8 +269,8 @@ inspect them.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 <tr>
 <td>verb</td>
@@ -336,7 +335,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>save-config</td>
@@ -365,8 +364,8 @@ inspect them.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 </tbody>
 </table>
@@ -395,7 +394,7 @@ inspect them.</p>
 <blockquote class="code-block example">
 <p> Create a new config map named my-config from an env file</p>
 </blockquote>
-<pre class="code-block example"><code class="lang-shell">kubectl <span class="hljs-keyword">create</span> configmap my-config --<span class="hljs-keyword">from</span>-env-file=<span class="hljs-keyword">path</span>/<span class="hljs-keyword">to</span>/bar.env
+<pre class="code-block example"><code class="lang-shell">kubectl <span class="hljs-keyword">create</span> configmap my-config --<span class="hljs-keyword">from</span>-env-file=<span class="hljs-keyword">path</span>/<span class="hljs-keyword">to</span>/foo.env --<span class="hljs-keyword">from</span>-env-file=<span class="hljs-keyword">path</span>/<span class="hljs-keyword">to</span>/bar.env
 </code></pre>
 <p>Create a config map based on a file, directory, or specified literal value.</p>
 <p> A single config map may package one or more key/value pairs.</p>
@@ -441,8 +440,8 @@ inspect them.</p>
 <tr>
 <td>from-env-file</td>
 <td></td>
-<td></td>
-<td>Specify the path to a file to read lines of key=val pairs to create a configmap (i.e. a Docker .env file). </td>
+<td>[]</td>
+<td>Specify the path to a file to read lines of key=val pairs to create a configmap. </td>
 </tr>
 <tr>
 <td>from-file</td>
@@ -460,7 +459,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>save-config</td>
@@ -483,8 +482,8 @@ inspect them.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 </tbody>
 </table>
@@ -542,7 +541,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>restart</td>
@@ -577,8 +576,8 @@ inspect them.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 </tbody>
 </table>
@@ -646,7 +645,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>port</td>
@@ -681,8 +680,8 @@ inspect them.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 </tbody>
 </table>
@@ -793,7 +792,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>rule</td>
@@ -822,8 +821,8 @@ inspect them.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 </tbody>
 </table>
@@ -892,7 +891,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>save-config</td>
@@ -915,8 +914,8 @@ inspect them.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 </tbody>
 </table>
@@ -963,7 +962,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>save-config</td>
@@ -986,8 +985,8 @@ inspect them.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 </tbody>
 </table>
@@ -1051,7 +1050,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>save-config</td>
@@ -1080,8 +1079,8 @@ inspect them.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 </tbody>
 </table>
@@ -1150,7 +1149,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>preemption-policy</td>
@@ -1179,8 +1178,8 @@ inspect them.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 <tr>
 <td>value</td>
@@ -1244,7 +1243,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>save-config</td>
@@ -1273,8 +1272,8 @@ inspect them.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 </tbody>
 </table>
@@ -1336,7 +1335,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>resource</td>
@@ -1371,8 +1370,8 @@ inspect them.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 <tr>
 <td>verb</td>
@@ -1437,7 +1436,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>role</td>
@@ -1472,8 +1471,8 @@ inspect them.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 </tbody>
 </table>
@@ -1573,7 +1572,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>save-config</td>
@@ -1596,8 +1595,8 @@ inspect them.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 </tbody>
 </table>
@@ -1624,9 +1623,9 @@ inspect them.</p>
 <pre class="code-block example"><code class="lang-shell">kubectl create<span class="hljs-built_in"> secret </span>generic my-secret <span class="hljs-attribute">--from-file</span>=ssh-privatekey=path/to/id_rsa <span class="hljs-attribute">--from-literal</span>=passphrase=topsecret
 </code></pre>
 <blockquote class="code-block example">
-<p> Create a new secret named my-secret from an env file</p>
+<p> Create a new secret named my-secret from env files</p>
 </blockquote>
-<pre class="code-block example"><code class="lang-shell">kubectl create<span class="hljs-built_in"> secret </span>generic my-secret <span class="hljs-attribute">--from-env-file</span>=path/to/bar.env
+<pre class="code-block example"><code class="lang-shell">kubectl create<span class="hljs-built_in"> secret </span>generic my-secret <span class="hljs-attribute">--from-env-file</span>=path/to/foo.env <span class="hljs-attribute">--from-env-file</span>=path/to/bar.env
 </code></pre>
 <p>Create a secret based on a file, directory, or specified literal value.</p>
 <p> A single secret may package one or more key/value pairs.</p>
@@ -1672,8 +1671,8 @@ inspect them.</p>
 <tr>
 <td>from-env-file</td>
 <td></td>
-<td></td>
-<td>Specify the path to a file to read lines of key=val pairs to create a secret (i.e. a Docker .env file). </td>
+<td>[]</td>
+<td>Specify the path to a file to read lines of key=val pairs to create a secret. </td>
 </tr>
 <tr>
 <td>from-file</td>
@@ -1691,7 +1690,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>save-config</td>
@@ -1720,8 +1719,8 @@ inspect them.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 </tbody>
 </table>
@@ -1787,7 +1786,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>save-config</td>
@@ -1810,8 +1809,8 @@ inspect them.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 </tbody>
 </table>
@@ -1874,7 +1873,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>save-config</td>
@@ -1903,8 +1902,8 @@ inspect them.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 </tbody>
 </table>
@@ -1958,7 +1957,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>save-config</td>
@@ -1987,8 +1986,8 @@ inspect them.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 </tbody>
 </table>
@@ -2035,7 +2034,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>save-config</td>
@@ -2064,8 +2063,8 @@ inspect them.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 </tbody>
 </table>
@@ -2118,7 +2117,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>save-config</td>
@@ -2147,8 +2146,8 @@ inspect them.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 </tbody>
 </table>
@@ -2195,7 +2194,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>save-config</td>
@@ -2218,8 +2217,110 @@ inspect them.</p>
 <tr>
 <td>validate</td>
 <td></td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
+</tr>
+</tbody>
+</table>
+<hr>
+<h2 id="-em-token-em-"><em>token</em></h2>
+<blockquote class="code-block example">
+<p> Request a token to authenticate to the kube-apiserver as the service account &quot;myapp&quot; in the current namespace</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell">kubectl <span class="hljs-keyword">create</span> <span class="hljs-built_in">token</span> myapp
+</code></pre>
+<blockquote class="code-block example">
+<p> Request a token for a service account in a custom namespace</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell">kubectl <span class="hljs-built_in">create</span> <span class="hljs-keyword">token</span> myapp <span class="hljs-comment">--namespace myns</span>
+</code></pre>
+<blockquote class="code-block example">
+<p> Request a token with a custom expiration</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell">kubectl <span class="hljs-built_in">create</span> <span class="hljs-keyword">token</span> myapp <span class="hljs-comment">--duration 10m</span>
+</code></pre>
+<blockquote class="code-block example">
+<p> Request a token with a custom audience</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell">kubectl <span class="hljs-keyword">create</span> <span class="hljs-built_in">token</span> myapp --audience https:<span class="hljs-comment">//example.com</span>
+</code></pre>
+<blockquote class="code-block example">
+<p> Request a token bound to an instance of a Secret object</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell">kubectl create token myapp --bound-object-kind<span class="hljs-built_in"> Secret </span>--bound-object-name mysecret
+</code></pre>
+<blockquote class="code-block example">
+<p> Request a token bound to an instance of a Secret object with a specific uid</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell">kubectl create token myapp --bound-object-kind Secret --bound-object-name mysecret --bound-object-uid <span class="hljs-number">0d4691ed</span>-<span class="hljs-number">659b-4935</span>-a832-355f77ee47cc
+</code></pre>
+<p>Request a service account token.</p>
+<h3 id="usage">Usage</h3>
+<p><code>$ kubectl create token SERVICE_ACCOUNT_NAME</code></p>
+<h3 id="flags">Flags</h3>
+<table>
+<thead>
+<tr>
+<th>Name</th>
+<th>Shorthand</th>
+<th>Default</th>
+<th>Usage</th>
+</tr>
+</thead>
+<tbody>
+<tr>
+<td>allow-missing-template-keys</td>
+<td></td>
 <td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>If true, ignore any errors in templates when a field or map key is missing in the template. Only applies to golang and jsonpath output formats. </td>
+</tr>
+<tr>
+<td>audience</td>
+<td></td>
+<td>[]</td>
+<td>Audience of the requested token. If unset, defaults to requesting a token for use with the Kubernetes API server. May be repeated to request a token valid for multiple audiences. </td>
+</tr>
+<tr>
+<td>bound-object-kind</td>
+<td></td>
+<td></td>
+<td>Kind of an object to bind the token to. Supported kinds are Pod, Secret. If set, --bound-object-name must be provided. </td>
+</tr>
+<tr>
+<td>bound-object-name</td>
+<td></td>
+<td></td>
+<td>Name of an object to bind the token to. The token will expire when the object is deleted. Requires --bound-object-kind. </td>
+</tr>
+<tr>
+<td>bound-object-uid</td>
+<td></td>
+<td></td>
+<td>UID of an object to bind the token to. Requires --bound-object-kind and --bound-object-name. If unset, the UID of the existing object is used. </td>
+</tr>
+<tr>
+<td>duration</td>
+<td></td>
+<td>0s</td>
+<td>Requested lifetime of the issued token. The server may return a token with a longer or shorter lifetime. </td>
+</tr>
+<tr>
+<td>output</td>
+<td>o</td>
+<td></td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
+</tr>
+<tr>
+<td>show-managed-fields</td>
+<td></td>
+<td>false</td>
+<td>If true, keep the managedFields when printing objects in JSON or YAML format. </td>
+</tr>
+<tr>
+<td>template</td>
+<td></td>
+<td></td>
+<td>Template string or path to template file to use when -o=go-template, -o=go-template-file. The template format is golang templates <span>[</span><a href="http://golang.org/pkg/text/template/#pkg-overview">http://golang.org/pkg/text/template/#pkg-overview</a><span>]</span>. </td>
 </tr>
 </tbody>
 </table>
@@ -2280,13 +2381,14 @@ inspect them.</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell">kubectl <span class="hljs-builtin-name">get</span> rc/web service/frontend pods/web-pod-13je7
 </code></pre>
-<p>Display one or many resources.</p>
-<p> Prints a table of the most important information about the specified resources. You can filter the list using a label selector and the --selector flag. If the desired resource type is namespaced you will only see results in your current namespace unless you pass --all-namespaces.</p>
-<p> Uninitialized objects are not shown unless --include-uninitialized is passed.</p>
-<p> By specifying the output as &#39;template&#39; and providing a Go template as the value of the --template flag, you can filter the attributes of the fetched resources.</p>
-<p>Use &quot;kubectl api-resources&quot; for a complete list of supported resources.</p>
+<blockquote class="code-block example">
+<p> List status subresource for a single pod.</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell">kubectl <span class="hljs-keyword">get</span> pod web-pod<span class="hljs-number">-13</span>je7 <span class="hljs-comment">--subresource status</span>
+</code></pre>
+<p>Display one or many resources.<br><br> Prints a table of the most important information about the specified resources. You can filter the list using a label selector and the --selector flag. If the desired resource type is namespaced you will only see results in your current namespace unless you pass --all-namespaces.<br><br> By specifying the output as &#39;template&#39; and providing a Go template as the value of the --template flag, you can filter the attributes of the fetched resources.<br><br>Use &quot;kubectl api-resources&quot; for a complete list of supported resources.</p>
 <h3 id="usage">Usage</h3>
-<p><code>$ kubectl get [(-o|--output=)json|yaml|name|go-template|go-template-file|template|templatefile|jsonpath|jsonpath-as-json|jsonpath-file|custom-columns-file|custom-columns|wide] (TYPE[.VERSION][.GROUP] [NAME | -l label] | TYPE[.VERSION][.GROUP]/NAME ...) [flags]</code></p>
+<p><code>$ kubectl get [(-o|--output=)json|yaml|name|go-template|go-template-file|template|templatefile|jsonpath|jsonpath-as-json|jsonpath-file|custom-columns|custom-columns-file|wide] (TYPE[.VERSION][.GROUP] [NAME | -l label] | TYPE[.VERSION][.GROUP]/NAME ...) [flags]</code></p>
 <h3 id="flags">Flags</h3>
 <table>
 <thead>
@@ -2356,7 +2458,7 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file&#124;custom-columns-file&#124;custom-columns&#124;wide See custom columns <span>[</span><a href="https://kubernetes.io/docs/reference/kubectl/overview/#custom-columns">https://kubernetes.io/docs/reference/kubectl/overview/#custom-columns</a><span>]</span>, golang template <span>[</span><a href="http://golang.org/pkg/text/template/#pkg-overview">http://golang.org/pkg/text/template/#pkg-overview</a><span>]</span> and jsonpath template <span>[</span><a href="https://kubernetes.io/docs/reference/kubectl/jsonpath/">https://kubernetes.io/docs/reference/kubectl/jsonpath/</a><span>]</span>. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file, custom-columns, custom-columns-file, wide). See custom columns <span>[</span><a href="https://kubernetes.io/docs/reference/kubectl/overview/#custom-columns">https://kubernetes.io/docs/reference/kubectl/overview/#custom-columns</a><span>]</span>, golang template <span>[</span><a href="http://golang.org/pkg/text/template/#pkg-overview">http://golang.org/pkg/text/template/#pkg-overview</a><span>]</span> and jsonpath template <span>[</span><a href="https://kubernetes.io/docs/reference/kubectl/jsonpath/">https://kubernetes.io/docs/reference/kubectl/jsonpath/</a><span>]</span>. </td>
 </tr>
 <tr>
 <td>output-watch-events</td>
@@ -2380,7 +2482,7 @@ inspect them.</p>
 <td>selector</td>
 <td>l</td>
 <td></td>
-<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2) </td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
 </tr>
 <tr>
 <td>server-print</td>
@@ -2413,6 +2515,12 @@ inspect them.</p>
 <td>If non-empty, sort list types using this field specification.  The field specification is expressed as a JSONPath expression (e.g. &#39;{.metadata.name}&#39;). The field in the API resource specified by this JSONPath expression must be an integer or a string. </td>
 </tr>
 <tr>
+<td>subresource</td>
+<td></td>
+<td></td>
+<td>If specified, gets the subresource of the requested object. Must be one of <span>[</span>status scale<span>]</span>. This flag is alpha and may change in the future. </td>
+</tr>
+<tr>
 <td>template</td>
 <td></td>
 <td></td>
@@ -2428,7 +2536,7 @@ inspect them.</p>
 <td>watch</td>
 <td>w</td>
 <td>false</td>
-<td>After listing/getting the requested object, watch for changes. Uninitialized objects are excluded if no object name is provided. </td>
+<td>After listing/getting the requested object, watch for changes. </td>
 </tr>
 <tr>
 <td>watch-only</td>
@@ -2545,7 +2653,7 @@ inspect them.</p>
 <td>expose</td>
 <td></td>
 <td>false</td>
-<td>If true, service is created for the container(s) which are run </td>
+<td>If true, create a ClusterIP service associated with the pod.  Requires <code>--port</code>. </td>
 </tr>
 <tr>
 <td>field-manager</td>
@@ -2572,12 +2680,6 @@ inspect them.</p>
 <td>Period of time in seconds given to the resource to terminate gracefully. Ignored if negative. Set to 1 for immediate shutdown. Can only be set to 0 when --force is true (force deletion). </td>
 </tr>
 <tr>
-<td>hostport</td>
-<td></td>
-<td>-1</td>
-<td>The host port mapping for the container port. To demonstrate a single-machine container. </td>
-</tr>
-<tr>
 <td>image</td>
 <td></td>
 <td></td>
@@ -2587,7 +2689,7 @@ inspect them.</p>
 <td>image-pull-policy</td>
 <td></td>
 <td></td>
-<td>The image pull policy for the container. If left empty, this value will not be specified by the client and defaulted by the server </td>
+<td>The image pull policy for the container.  If left empty, this value will not be specified by the client and defaulted by the server. </td>
 </tr>
 <tr>
 <td>kustomize</td>
@@ -2599,7 +2701,7 @@ inspect them.</p>
 <td>labels</td>
 <td>l</td>
 <td></td>
-<td>Comma separated labels to apply to the pod(s). Will override previous values. </td>
+<td>Comma separated labels to apply to the pod. Will override previous values. </td>
 </tr>
 <tr>
 <td>leave-stdin-open</td>
@@ -2608,16 +2710,16 @@ inspect them.</p>
 <td>If the pod is started in interactive mode or with stdin, leave stdin open after the first attach completes. By default, stdin will be closed after the first attach completes. </td>
 </tr>
 <tr>
-<td>limits</td>
-<td></td>
-<td></td>
-<td>The resource requirement limits for this container.  For example, &#39;cpu=200m,memory=512Mi&#39;.  Note that server side components may assign limits depending on the server configuration, such as limit ranges. </td>
-</tr>
-<tr>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
+</tr>
+<tr>
+<td>override-type</td>
+<td></td>
+<td>merge</td>
+<td>The method used to override the generated object: json, merge, or strategic. </td>
 </tr>
 <tr>
 <td>overrides</td>
@@ -2662,12 +2764,6 @@ inspect them.</p>
 <td>Process the directory used in -f, --filename recursively. Useful when you want to manage related manifests organized within the same directory. </td>
 </tr>
 <tr>
-<td>requests</td>
-<td></td>
-<td></td>
-<td>The resource requirement requests for this container.  For example, &#39;cpu=100m,memory=256Mi&#39;.  Note that server side components may assign requests depending on the server configuration, such as limit ranges. </td>
-</tr>
-<tr>
 <td>restart</td>
 <td></td>
 <td>Always</td>
@@ -2677,7 +2773,7 @@ inspect them.</p>
 <td>rm</td>
 <td></td>
 <td>false</td>
-<td>If true, delete resources created in this command for attached containers. </td>
+<td>If true, delete the pod after it exits.  Only valid when attaching to the container, e.g. with &#39;--attach&#39; or with &#39;-i/--stdin&#39;. </td>
 </tr>
 <tr>
 <td>save-config</td>
@@ -2686,12 +2782,6 @@ inspect them.</p>
 <td>If true, the configuration of current object will be saved in its annotation. Otherwise, the annotation will be unchanged. This flag is useful when you want to perform kubectl apply on this object in the future. </td>
 </tr>
 <tr>
-<td>serviceaccount</td>
-<td></td>
-<td></td>
-<td>Service account to set in the pod spec. </td>
-</tr>
-<tr>
 <td>show-managed-fields</td>
 <td></td>
 <td>false</td>
@@ -2701,7 +2791,7 @@ inspect them.</p>
 <td>stdin</td>
 <td>i</td>
 <td>false</td>
-<td>Keep stdin open on the container(s) in the pod, even if nothing is attached. </td>
+<td>Keep stdin open on the container in the pod, even if nothing is attached. </td>
 </tr>
 <tr>
 <td>template</td>
@@ -2719,7 +2809,7 @@ inspect them.</p>
 <td>tty</td>
 <td>t</td>
 <td>false</td>
-<td>Allocated a TTY for each container in the pod. </td>
+<td>Allocate a TTY for the container in the pod. </td>
 </tr>
 <tr>
 <td>wait</td>
@@ -2766,10 +2856,7 @@ inspect them.</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell">kubectl expose deployment nginx <span class="hljs-attribute">--port</span>=80 <span class="hljs-attribute">--target-port</span>=8000
 </code></pre>
-<p>Expose a resource as a new Kubernetes service.</p>
-<p> Looks up a deployment, service, replica set, replication controller or pod by name and uses the selector for that resource as the selector for a new service on the specified port. A deployment or replica set will be exposed as a service only if its selector is convertible to a selector that service supports, i.e. when the selector contains only the matchLabels component. Note that if no port is specified via --port and the exposed resource has multiple ports, all will be re-used by the new service. Also if no labels are specified, the new service will re-use the labels from the resource it exposes.</p>
-<p> Possible resources include (case insensitive):</p>
-<p> pod (po), service (svc), replicationcontroller (rc), deployment (deploy), replicaset (rs)</p>
+<p>Expose a resource as a new Kubernetes service.<br><br> Looks up a deployment, service, replica set, replication controller or pod by name and uses the selector for that resource as the selector for a new service on the specified port. A deployment or replica set will be exposed as a service only if its selector is convertible to a selector that service supports, i.e. when the selector contains only the matchLabels component. Note that if no port is specified via --port and the exposed resource has multiple ports, all will be re-used by the new service. Also if no labels are specified, the new service will re-use the labels from the resource it exposes.<br><br> Possible resources include (case insensitive):<br><br> pod (po), service (svc), replicationcontroller (rc), deployment (deploy), replicaset (rs)</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl expose (-f FILENAME | TYPE NAME) [--port=port] [--protocol=TCP|UDP|SCTP] [--target-port=number-or-name] [--name=name] [--external-ip=external-ip-of-service] [--type=type]</code></p>
 <h3 id="flags">Flags</h3>
@@ -2796,12 +2883,6 @@ inspect them.</p>
 <td>ClusterIP to be assigned to the service. Leave empty to auto-allocate, or set to &#39;None&#39; to create a headless service. </td>
 </tr>
 <tr>
-<td>container-port</td>
-<td></td>
-<td></td>
-<td>Synonym for --target-port </td>
-</tr>
-<tr>
 <td>dry-run</td>
 <td></td>
 <td>none</td>
@@ -2826,12 +2907,6 @@ inspect them.</p>
 <td>Filename, directory, or URL to files identifying the resource to expose a service </td>
 </tr>
 <tr>
-<td>generator</td>
-<td></td>
-<td>service/v2</td>
-<td>The name of the API generator to use. There are 2 generators: &#39;service/v1&#39; and &#39;service/v2&#39;. The only difference between them is that service port in v1 is named &#39;default&#39;, while it is left unnamed in v2. Default is &#39;service/v2&#39;. </td>
-</tr>
-<tr>
 <td>kustomize</td>
 <td>k</td>
 <td></td>
@@ -2859,7 +2934,13 @@ inspect them.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
+</tr>
+<tr>
+<td>override-type</td>
+<td></td>
+<td>merge</td>
+<td>The method used to override the generated object: json, merge, or strategic. </td>
 </tr>
 <tr>
 <td>overrides</td>
@@ -2948,6 +3029,11 @@ inspect them.</p>
 <pre class="code-block example"><code class="lang-shell">kubectl <span class="hljs-keyword">delete</span> -k dir
 </code></pre>
 <blockquote class="code-block example">
+<p> Delete resources from all files that end with &#39;.json&#39; - i.e. expand wildcard characters in file names</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell"><span class="hljs-attribute">kubectl</span> apply -f <span class="hljs-string">'*.json'</span>
+</code></pre>
+<blockquote class="code-block example">
 <p> Delete a pod based on the type and name in the JSON passed into stdin</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell">cat pod.json | kubectl <span class="hljs-keyword">delete</span> -f -
@@ -2977,11 +3063,7 @@ inspect them.</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell">kubectl <span class="hljs-built_in">delete</span> pods <span class="hljs-comment">--all</span>
 </code></pre>
-<p>Delete resources by file names, stdin, resources and names, or by resources and label selector.</p>
-<p> JSON and YAML formats are accepted. Only one type of argument may be specified: file names, resources and names, or resources and label selector.</p>
-<p> Some resources, such as pods, support graceful deletion. These resources define a default period before they are forcibly terminated (the grace period) but you may override that value with the --grace-period flag, or pass --now to set a grace-period of 1. Because these resources often represent entities in the cluster, deletion may not be acknowledged immediately. If the node hosting a pod is down or cannot reach the API server, termination may take significantly longer than the grace period. To force delete a resource, you must specify the --force flag. Note: only a subset of resources support graceful deletion. In absence of the support, the --grace-period flag is ignored.</p>
-<p> IMPORTANT: Force deleting pods does not wait for confirmation that the pod&#39;s processes have been terminated, which can leave those processes running until the node detects the deletion and completes graceful deletion. If your processes use shared storage or talk to a remote API and depend on the name of the pod to identify themselves, force deleting those pods may result in multiple processes running on different machines using the same identification which may lead to data corruption or inconsistency. Only force delete pods when you are sure the pod is terminated, or if your application can tolerate multiple copies of the same pod running at once. Also, if you force delete pods, the scheduler may place new pods on those nodes before the node has released those resources and causing those pods to be evicted immediately.</p>
-<p> Note that the delete command does NOT do resource version checks, so if someone submits an update to a resource right when you submit a delete, their update will be lost along with the rest of the resource.</p>
+<p>Delete resources by file names, stdin, resources and names, or by resources and label selector.<br><br> JSON and YAML formats are accepted. Only one type of argument may be specified: file names, resources and names, or resources and label selector.<br><br> Some resources, such as pods, support graceful deletion. These resources define a default period before they are forcibly terminated (the grace period) but you may override that value with the --grace-period flag, or pass --now to set a grace-period of 1. Because these resources often represent entities in the cluster, deletion may not be acknowledged immediately. If the node hosting a pod is down or cannot reach the API server, termination may take significantly longer than the grace period. To force delete a resource, you must specify the --force flag. Note: only a subset of resources support graceful deletion. In absence of the support, the --grace-period flag is ignored.<br><br> IMPORTANT: Force deleting pods does not wait for confirmation that the pod&#39;s processes have been terminated, which can leave those processes running until the node detects the deletion and completes graceful deletion. If your processes use shared storage or talk to a remote API and depend on the name of the pod to identify themselves, force deleting those pods may result in multiple processes running on different machines using the same identification which may lead to data corruption or inconsistency. Only force delete pods when you are sure the pod is terminated, or if your application can tolerate multiple copies of the same pod running at once. Also, if you force delete pods, the scheduler may place new pods on those nodes before the node has released those resources and causing those pods to be evicted immediately.<br><br> Note that the delete command does NOT do resource version checks, so if someone submits an update to a resource right when you submit a delete, their update will be lost along with the rest of the resource.<br><br> After a CustomResourceDefinition is deleted, invalidation of discovery cache may take up to 10 minutes. If you don&#39;t want to wait, you might want to run &quot;kubectl api-resources&quot; to refresh the discovery cache.</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl delete ([-f FILENAME] | [-k DIRECTORY] | TYPE [(NAME | -l label | --all)])</code></p>
 <h3 id="flags">Flags</h3>
@@ -2999,7 +3081,7 @@ inspect them.</p>
 <td>all</td>
 <td></td>
 <td>false</td>
-<td>Delete all resources, including uninitialized ones, in the namespace of the specified resource types. </td>
+<td>Delete all resources, in the namespace of the specified resource types. </td>
 </tr>
 <tr>
 <td>all-namespaces</td>
@@ -3083,7 +3165,7 @@ inspect them.</p>
 <td>selector</td>
 <td>l</td>
 <td></td>
-<td>Selector (label query) to filter on, not including uninitialized ones. </td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
 </tr>
 <tr>
 <td>timeout</td>
@@ -3120,6 +3202,11 @@ viewing your workloads in a Kubernetes cluster.</p>
 <pre class="code-block example"><code class="lang-shell">cat pod.json | <span class="hljs-type">kubectl</span> <span class="hljs-built_in">apply</span> -f -
 </code></pre>
 <blockquote class="code-block example">
+<p> Apply the configuration from all files that end with &#39;.json&#39; - i.e. expand wildcard characters in file names</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell"><span class="hljs-attribute">kubectl</span> apply -f <span class="hljs-string">'*.json'</span>
+</code></pre>
+<blockquote class="code-block example">
 <p> Note: --prune is still in Alpha # Apply the configuration in manifest.yaml that matches label app=nginx and delete all other resources that are not in the file and match label app=nginx</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell">kubectl apply --prune -f manifest.yaml -l <span class="hljs-attribute">app</span>=nginx
@@ -3129,9 +3216,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell"><span class="hljs-comment">kubectl</span> <span class="hljs-comment">apply</span> --<span class="hljs-comment">prune</span> <span class="hljs-literal">-</span><span class="hljs-comment">f</span> <span class="hljs-comment">manifest</span><span class="hljs-string">.</span><span class="hljs-comment">yaml</span> --<span class="hljs-comment">all</span> --<span class="hljs-comment">prune</span><span class="hljs-literal">-</span><span class="hljs-comment">whitelist=core/v1/ConfigMap</span>
 </code></pre>
-<p>Apply a configuration to a resource by file name or stdin. The resource name must be specified. This resource will be created if it doesn&#39;t exist yet. To use &#39;apply&#39;, always create the resource initially with either &#39;apply&#39; or &#39;create --save-config&#39;.</p>
-<p> JSON and YAML formats are accepted.</p>
-<p> Alpha Disclaimer: the --prune functionality is not yet complete. Do not use unless you are aware of what the current state is. See <a href="https://issues.k8s.io/34274">https://issues.k8s.io/34274</a>.</p>
+<p>Apply a configuration to a resource by file name or stdin. The resource name must be specified. This resource will be created if it doesn&#39;t exist yet. To use &#39;apply&#39;, always create the resource initially with either &#39;apply&#39; or &#39;create --save-config&#39;.<br><br> JSON and YAML formats are accepted.<br><br> Alpha Disclaimer: the --prune functionality is not yet complete. Do not use unless you are aware of what the current state is. See <a href="https://issues.k8s.io/34274">https://issues.k8s.io/34274</a>.</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl apply (-f FILENAME | -k DIRECTORY)</code></p>
 <h3 id="flags">Flags</h3>
@@ -3215,7 +3300,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>overwrite</td>
@@ -3227,7 +3312,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>prune</td>
 <td></td>
 <td>false</td>
-<td>Automatically delete resource objects, including the uninitialized ones, that do not appear in the configs and are created by either apply or create --save-config. Should be used with either -l or --all. </td>
+<td>Automatically delete resource objects, that do not appear in the configs and are created by either apply or create --save-config. Should be used with either -l or --all. </td>
 </tr>
 <tr>
 <td>prune-whitelist</td>
@@ -3251,7 +3336,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>selector</td>
 <td>l</td>
 <td></td>
-<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2) </td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
 </tr>
 <tr>
 <td>server-side</td>
@@ -3280,8 +3365,8 @@ viewing your workloads in a Kubernetes cluster.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 <tr>
 <td>wait</td>
@@ -3349,7 +3434,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>record</td>
@@ -3376,6 +3461,12 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>Template string or path to template file to use when -o=go-template, -o=go-template-file. The template format is golang templates <span>[</span><a href="http://golang.org/pkg/text/template/#pkg-overview">http://golang.org/pkg/text/template/#pkg-overview</a><span>]</span>. </td>
 </tr>
 <tr>
+<td>validate</td>
+<td></td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
+</tr>
+<tr>
 <td>windows-line-endings</td>
 <td></td>
 <td>false</td>
@@ -3442,7 +3533,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>show-managed-fields</td>
@@ -3507,7 +3598,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>output</td>
 <td>o</td>
 <td>yaml</td>
-<td>Output format. Must be one of yaml&#124;json </td>
+<td>Output format. Must be one of (yaml, json) </td>
 </tr>
 <tr>
 <td>recursive</td>
@@ -3519,7 +3610,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>selector</td>
 <td>l</td>
 <td></td>
-<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2) </td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
 </tr>
 </tbody>
 </table>
@@ -3555,10 +3646,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell">kubectl annotate pods foo <span class="hljs-keyword">description</span>-
 </code></pre>
-<p>Update the annotations on one or more resources.</p>
-<p> All Kubernetes objects support the ability to store additional data with the object as annotations. Annotations are key/value pairs that can be larger than labels and include arbitrary string values such as structured JSON. Tools and system extensions may use annotations to store their own data.</p>
-<p> Attempting to set an annotation that already exists will fail unless --overwrite is set. If --resource-version is specified and does not match the current resource version on the server the command will fail.</p>
-<p>Use &quot;kubectl api-resources&quot; for a complete list of supported resources.</p>
+<p>Update the annotations on one or more resources.<br><br> All Kubernetes objects support the ability to store additional data with the object as annotations. Annotations are key/value pairs that can be larger than labels and include arbitrary string values such as structured JSON. Tools and system extensions may use annotations to store their own data.<br><br> Attempting to set an annotation that already exists will fail unless --overwrite is set. If --resource-version is specified and does not match the current resource version on the server the command will fail.<br><br>Use &quot;kubectl api-resources&quot; for a complete list of supported resources.</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl annotate [--overwrite] (-f FILENAME | TYPE NAME) KEY_1=VAL_1 ... KEY_N=VAL_N [--resource-version=version]</code></p>
 <h3 id="flags">Flags</h3>
@@ -3576,7 +3664,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>all</td>
 <td></td>
 <td>false</td>
-<td>Select all resources, including uninitialized ones, in the namespace of the specified resource types. </td>
+<td>Select all resources, in the namespace of the specified resource types. </td>
 </tr>
 <tr>
 <td>all-namespaces</td>
@@ -3636,7 +3724,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>overwrite</td>
@@ -3666,7 +3754,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>selector</td>
 <td>l</td>
 <td></td>
-<td>Selector (label query) to filter on, not including uninitialized ones, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). </td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
 </tr>
 <tr>
 <td>show-managed-fields</td>
@@ -3694,8 +3782,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell">kubectl autoscale rc foo <span class="hljs-attribute">--max</span>=5 <span class="hljs-attribute">--cpu-percent</span>=80
 </code></pre>
-<p>Creates an autoscaler that automatically chooses and sets the number of pods that run in a Kubernetes cluster.</p>
-<p> Looks up a deployment, replica set, stateful set, or replication controller by name and creates an autoscaler that uses the given resource as a reference. An autoscaler can automatically increase or decrease number of pods deployed within the system as needed.</p>
+<p>Creates an autoscaler that automatically chooses and sets the number of pods that run in a Kubernetes cluster.<br><br> Looks up a deployment, replica set, stateful set, or replication controller by name and creates an autoscaler that uses the given resource as a reference. An autoscaler can automatically increase or decrease number of pods deployed within the system as needed.</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl autoscale (-f FILENAME | TYPE NAME | TYPE/NAME) [--min=MINPODS] --max=MAXPODS [--cpu-percent=CPU]</code></p>
 <h3 id="flags">Flags</h3>
@@ -3767,7 +3854,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>record</td>
@@ -3838,14 +3925,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell">kubectl debug <span class="hljs-keyword">node</span><span class="hljs-title">/mynode</span> -it --<span class="hljs-attr">image=</span>busybox
 </code></pre>
-<p>Debug cluster resources using interactive debugging containers.</p>
-<p> &#39;debug&#39; provides automation for common debugging tasks for cluster objects identified by resource and name. Pods will be used by default if no resource is specified.</p>
-<p> The action taken by &#39;debug&#39; varies depending on what resource is specified. Supported actions include:</p>
-<ul>
-<li>Workload: Create a copy of an existing pod with certain attributes changed, for example changing the image tag to a new version.</li>
-<li>Workload: Add an ephemeral container to an already running pod, for example to add debugging utilities without restarting the pod.</li>
-<li>Node: Create a new pod that runs in the node&#39;s host namespaces and can access the node&#39;s filesystem.</li>
-</ul>
+<p>Debug cluster resources using interactive debugging containers.<br><br> &#39;debug&#39; provides automation for common debugging tasks for cluster objects identified by resource and name. Pods will be used by default if no resource is specified.<br><br> The action taken by &#39;debug&#39; varies depending on what resource is specified. Supported actions include:<br><br>  <em>  Workload: Create a copy of an existing pod with certain attributes changed, for example changing the image tag to a new version.<br>  </em>  Workload: Add an ephemeral container to an already running pod, for example to add debugging utilities without restarting the pod.<br>  *  Node: Create a new pod that runs in the node&#39;s host namespaces and can access the node&#39;s filesystem.</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl debug (POD | TYPE[[.VERSION].GROUP]/NAME) [ -- COMMAND [args...] ]</code></p>
 <h3 id="flags">Flags</h3>
@@ -3963,12 +4043,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell">cat service.yaml <span class="hljs-string">| kubectl diff -f -</span>
 </code></pre>
-<p>Diff configurations specified by file name or stdin between the current online configuration, and the configuration as it would be if applied.</p>
-<p> The output is always YAML.</p>
-<p> KUBECTL_EXTERNAL_DIFF environment variable can be used to select your own diff command. Users can use external commands with params too, example: KUBECTL_EXTERNAL_DIFF=&quot;colordiff -N -u&quot;</p>
-<p> By default, the &quot;diff&quot; command available in your path will be run with the &quot;-u&quot; (unified diff) and &quot;-N&quot; (treat absent files as empty) options.</p>
-<p> Exit status: 0 No differences were found. 1 Differences were found. &gt;1 Kubectl or diff failed with an error.</p>
-<p> Note: KUBECTL_EXTERNAL_DIFF, if used, is expected to follow that convention.</p>
+<p>Diff configurations specified by file name or stdin between the current online configuration, and the configuration as it would be if applied.<br><br> The output is always YAML.<br><br> KUBECTL_EXTERNAL_DIFF environment variable can be used to select your own diff command. Users can use external commands with params too, example: KUBECTL_EXTERNAL_DIFF=&quot;colordiff -N -u&quot;<br><br> By default, the &quot;diff&quot; command available in your path will be run with the &quot;-u&quot; (unified diff) and &quot;-N&quot; (treat absent files as empty) options.<br><br> Exit status: 0 No differences were found. 1 Differences were found. &gt;1 Kubectl or diff failed with an error.<br><br> Note: KUBECTL_EXTERNAL_DIFF, if used, is expected to follow that convention.</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl diff -f FILENAME</code></p>
 <h3 id="flags">Flags</h3>
@@ -4007,6 +4082,18 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>Process the kustomization directory. This flag can&#39;t be used together with -f or -R. </td>
 </tr>
 <tr>
+<td>prune</td>
+<td></td>
+<td>false</td>
+<td>Include resources that would be deleted by pruning. Can be used with -l and default shows all resources would be pruned </td>
+</tr>
+<tr>
+<td>prune-allowlist</td>
+<td></td>
+<td>[]</td>
+<td>Overwrite the default whitelist with &lt;group/version/kind&gt; for --prune </td>
+</tr>
+<tr>
 <td>recursive</td>
 <td>R</td>
 <td>false</td>
@@ -4016,7 +4103,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>selector</td>
 <td>l</td>
 <td></td>
-<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2) </td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
 </tr>
 <tr>
 <td>server-side</td>
@@ -4029,14 +4116,14 @@ viewing your workloads in a Kubernetes cluster.</p>
 <hr>
 <h1 id="edit">edit</h1>
 <blockquote class="code-block example">
-<p> Edit the service named &#39;docker-registry&#39;</p>
+<p> Edit the service named &#39;registry&#39;</p>
 </blockquote>
-<pre class="code-block example"><code class="lang-shell">kubectl <span class="hljs-builtin-name">edit</span> svc/docker-registry
+<pre class="code-block example"><code class="lang-shell">kubectl <span class="hljs-builtin-name">edit</span> svc/registry
 </code></pre>
 <blockquote class="code-block example">
 <p> Use an alternative editor</p>
 </blockquote>
-<pre class="code-block example"><code class="lang-shell"><span class="hljs-attribute">KUBE_EDITOR</span>=<span class="hljs-string">"nano"</span> kubectl <span class="hljs-builtin-name">edit</span> svc/docker-registry
+<pre class="code-block example"><code class="lang-shell"><span class="hljs-attribute">KUBE_EDITOR</span>=<span class="hljs-string">"nano"</span> kubectl <span class="hljs-builtin-name">edit</span> svc/registry
 </code></pre>
 <blockquote class="code-block example">
 <p> Edit the job &#39;myjob&#39; in JSON using the v1 API format</p>
@@ -4048,12 +4135,12 @@ viewing your workloads in a Kubernetes cluster.</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell">kubectl <span class="hljs-keyword">edit</span> deployment/mydeployment -o yaml --<span class="hljs-keyword">save</span>-config
 </code></pre>
-<p>Edit a resource from the default editor.</p>
-<p> The edit command allows you to directly edit any API resource you can retrieve via the command-line tools. It will open the editor defined by your KUBE_EDITOR, or EDITOR environment variables, or fall back to &#39;vi&#39; for Linux or &#39;notepad&#39; for Windows. You can edit multiple objects, although changes are applied one at a time. The command accepts file names as well as command-line arguments, although the files you point to must be previously saved versions of resources.</p>
-<p> Editing is done with the API version used to fetch the resource. To edit using a specific API version, fully-qualify the resource, version, and group.</p>
-<p> The default format is YAML. To edit in JSON, specify &quot;-o json&quot;.</p>
-<p> The flag --windows-line-endings can be used to force Windows line endings, otherwise the default for your operating system will be used.</p>
-<p> In the event an error occurs while updating, a temporary file will be created on disk that contains your unapplied changes. The most common error when updating a resource is another editor changing the resource on the server. When this occurs, you will have to apply your changes to the newer version of the resource, or update your temporary saved copy to include the latest resource version.</p>
+<blockquote class="code-block example">
+<p> Edit the deployment/mydeployment&#39;s status subresource</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell">kubectl <span class="hljs-builtin-name">edit</span> deployment mydeployment <span class="hljs-attribute">--subresource</span>=<span class="hljs-string">'status'</span>
+</code></pre>
+<p>Edit a resource from the default editor.<br><br> The edit command allows you to directly edit any API resource you can retrieve via the command-line tools. It will open the editor defined by your KUBE_EDITOR, or EDITOR environment variables, or fall back to &#39;vi&#39; for Linux or &#39;notepad&#39; for Windows. You can edit multiple objects, although changes are applied one at a time. The command accepts file names as well as command-line arguments, although the files you point to must be previously saved versions of resources.<br><br> Editing is done with the API version used to fetch the resource. To edit using a specific API version, fully-qualify the resource, version, and group.<br><br> The default format is YAML. To edit in JSON, specify &quot;-o json&quot;.<br><br> The flag --windows-line-endings can be used to force Windows line endings, otherwise the default for your operating system will be used.<br><br> In the event an error occurs while updating, a temporary file will be created on disk that contains your unapplied changes. The most common error when updating a resource is another editor changing the resource on the server. When this occurs, you will have to apply your changes to the newer version of the resource, or update your temporary saved copy to include the latest resource version.</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl edit (RESOURCE/NAME | -f FILENAME)</code></p>
 <h3 id="flags">Flags</h3>
@@ -4095,7 +4182,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>output-patch</td>
@@ -4128,6 +4215,12 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>If true, keep the managedFields when printing objects in JSON or YAML format. </td>
 </tr>
 <tr>
+<td>subresource</td>
+<td></td>
+<td></td>
+<td>If specified, edit will operate on the subresource of the requested object. Must be one of <span>[</span>status<span>]</span>. This flag is alpha and may change in the future. </td>
+</tr>
+<tr>
 <td>template</td>
 <td></td>
 <td></td>
@@ -4136,8 +4229,8 @@ viewing your workloads in a Kubernetes cluster.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 <tr>
 <td>windows-line-endings</td>
@@ -4284,13 +4377,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell">kubectl <span class="hljs-keyword">label</span><span class="bash"> pods foo bar-</span>
 </code></pre>
-<p>Update the labels on a resource.</p>
-<ul>
-<li>A label key and value must begin with a letter or number, and may contain letters, numbers, hyphens, dots, and underscores, up to  63 characters each.</li>
-<li>Optionally, the key can begin with a DNS subdomain prefix and a single &#39;/&#39;, like example.com/my-app.</li>
-<li>If --overwrite is true, then existing labels can be overwritten, otherwise attempting to overwrite a label will result in an error.</li>
-<li>If --resource-version is specified, then updates will use this resource version, otherwise the existing resource-version will be used.</li>
-</ul>
+<p>Update the labels on a resource.<br><br>  <em>  A label key and value must begin with a letter or number, and may contain letters, numbers, hyphens, dots, and underscores, up to  63 characters each.<br>  </em>  Optionally, the key can begin with a DNS subdomain prefix and a single &#39;/&#39;, like example.com/my-app.<br>  <em>  If --overwrite is true, then existing labels can be overwritten, otherwise attempting to overwrite a label will result in an error.<br>  </em>  If --resource-version is specified, then updates will use this resource version, otherwise the existing resource-version will be used.</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl label [--overwrite] (-f FILENAME | TYPE NAME) KEY_1=VAL_1 ... KEY_N=VAL_N [--resource-version=version]</code></p>
 <h3 id="flags">Flags</h3>
@@ -4308,7 +4395,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>all</td>
 <td></td>
 <td>false</td>
-<td>Select all resources, including uninitialized ones, in the namespace of the specified resource types </td>
+<td>Select all resources, in the namespace of the specified resource types </td>
 </tr>
 <tr>
 <td>all-namespaces</td>
@@ -4368,7 +4455,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>overwrite</td>
@@ -4398,7 +4485,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>selector</td>
 <td>l</td>
 <td></td>
-<td>Selector (label query) to filter on, not including uninitialized ones, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). </td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
 </tr>
 <tr>
 <td>show-managed-fields</td>
@@ -4441,8 +4528,12 @@ viewing your workloads in a Kubernetes cluster.</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell">kubectl patch pod valid-pod --<span class="hljs-class"><span class="hljs-keyword">type</span></span>=<span class="hljs-symbol">'jso</span>n' -p='[{<span class="hljs-string">"op"</span>: <span class="hljs-string">"replace"</span>, <span class="hljs-string">"path"</span>: <span class="hljs-string">"/spec/containers/0/image"</span>, <span class="hljs-string">"value"</span>:<span class="hljs-string">"new image"</span>}]'
 </code></pre>
-<p>Update fields of a resource using strategic merge patch, a JSON merge patch, or a JSON patch.</p>
-<p> JSON and YAML formats are accepted.</p>
+<blockquote class="code-block example">
+<p> Update a deployment&#39;s replicas through the scale subresource using a merge patch.</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell">kubectl patch deployment nginx-deployment --subresource=<span class="hljs-symbol">'scal</span>e' --<span class="hljs-class"><span class="hljs-keyword">type</span></span>=<span class="hljs-symbol">'merg</span>e' -p '{<span class="hljs-string">"spec"</span>:{<span class="hljs-string">"replicas"</span>:<span class="hljs-number">2</span>}}'
+</code></pre>
+<p>Update fields of a resource using strategic merge patch, a JSON merge patch, or a JSON patch.<br><br> JSON and YAML formats are accepted.</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl patch (-f FILENAME | TYPE NAME) [-p PATCH|--patch-file FILE]</code></p>
 <h3 id="flags">Flags</h3>
@@ -4496,7 +4587,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>patch</td>
@@ -4529,6 +4620,12 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>If true, keep the managedFields when printing objects in JSON or YAML format. </td>
 </tr>
 <tr>
+<td>subresource</td>
+<td></td>
+<td></td>
+<td>If specified, patch will operate on the subresource of the requested object. Must be one of <span>[</span>status scale<span>]</span>. This flag is alpha and may change in the future. </td>
+</tr>
+<tr>
 <td>template</td>
 <td></td>
 <td></td>
@@ -4564,9 +4661,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell">kubectl replace <span class="hljs-params">--force</span> -f <span class="hljs-string">./pod.json</span>
 </code></pre>
-<p>Replace a resource by file name or stdin.</p>
-<p> JSON and YAML formats are accepted. If replacing an existing resource, the complete resource spec must be provided. This can be obtained by</p>
-<p>  $ kubectl get TYPE NAME -o yaml</p>
+<p>Replace a resource by file name or stdin.<br><br> JSON and YAML formats are accepted. If replacing an existing resource, the complete resource spec must be provided. This can be obtained by<br><br>  $ kubectl get TYPE NAME -o yaml</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl replace -f FILENAME</code></p>
 <h3 id="flags">Flags</h3>
@@ -4632,7 +4727,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>raw</td>
@@ -4659,6 +4754,12 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>If true, keep the managedFields when printing objects in JSON or YAML format. </td>
 </tr>
 <tr>
+<td>subresource</td>
+<td></td>
+<td></td>
+<td>If specified, replace will operate on the subresource of the requested object. Must be one of <span>[</span>status scale<span>]</span>. This flag is alpha and may change in the future. </td>
+</tr>
+<tr>
 <td>template</td>
 <td></td>
 <td></td>
@@ -4673,8 +4774,8 @@ viewing your workloads in a Kubernetes cluster.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 <tr>
 <td>wait</td>
@@ -4696,13 +4797,17 @@ viewing your workloads in a Kubernetes cluster.</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell">kubectl rollout <span class="hljs-keyword">status</span> daemonset/foo
 </code></pre>
-<p>Manage the rollout of a resource.</p>
-<p> Valid resource types include:</p>
-<ul>
-<li>deployments</li>
-<li>daemonsets</li>
-<li>statefulsets</li>
-</ul>
+<blockquote class="code-block example">
+<p> Restart a deployment</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell">kubectl rollout <span class="hljs-built_in">restart</span> deployment/abc
+</code></pre>
+<blockquote class="code-block example">
+<p> Restart deployments with the app=nginx label</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell">kubectl rollout <span class="hljs-keyword">restart</span> deployment <span class="hljs-comment">--selector=app=nginx</span>
+</code></pre>
+<p>Manage the rollout of one or many resources.<br>  <br> Valid resource types include:<br><br>  <em>  deployments<br>  </em>  daemonsets<br>  *  statefulsets</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl rollout SUBCOMMAND</code></p>
 <hr>
@@ -4753,7 +4858,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>recursive</td>
@@ -4768,6 +4873,12 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>See the details, including podTemplate of the revision specified </td>
 </tr>
 <tr>
+<td>selector</td>
+<td>l</td>
+<td></td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
+</tr>
+<tr>
 <td>show-managed-fields</td>
 <td></td>
 <td>false</td>
@@ -4831,7 +4942,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>recursive</td>
@@ -4840,6 +4951,12 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>Process the directory used in -f, --filename recursively. Useful when you want to manage related manifests organized within the same directory. </td>
 </tr>
 <tr>
+<td>selector</td>
+<td>l</td>
+<td></td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
+</tr>
+<tr>
 <td>show-managed-fields</td>
 <td></td>
 <td>false</td>
@@ -4865,6 +4982,11 @@ viewing your workloads in a Kubernetes cluster.</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell">kubectl rollout <span class="hljs-built_in">restart</span> daemonset/abc
 </code></pre>
+<blockquote class="code-block example">
+<p> Restart deployments with the app=nginx label</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell">kubectl rollout <span class="hljs-keyword">restart</span> deployment <span class="hljs-comment">--selector=app=nginx</span>
+</code></pre>
 <p>Restart a resource.</p>
 <p>   Resource rollout will be restarted.</p>
 <h3 id="usage">Usage</h3>
@@ -4908,7 +5030,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>recursive</td>
@@ -4917,6 +5039,12 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>Process the directory used in -f, --filename recursively. Useful when you want to manage related manifests organized within the same directory. </td>
 </tr>
 <tr>
+<td>selector</td>
+<td>l</td>
+<td></td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
+</tr>
+<tr>
 <td>show-managed-fields</td>
 <td></td>
 <td>false</td>
@@ -4980,7 +5108,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>recursive</td>
@@ -4989,6 +5117,12 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>Process the directory used in -f, --filename recursively. Useful when you want to manage related manifests organized within the same directory. </td>
 </tr>
 <tr>
+<td>selector</td>
+<td>l</td>
+<td></td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
+</tr>
+<tr>
 <td>show-managed-fields</td>
 <td></td>
 <td>false</td>
@@ -5049,6 +5183,12 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>Pin to a specific revision for showing its status. Defaults to 0 (last revision). </td>
 </tr>
 <tr>
+<td>selector</td>
+<td>l</td>
+<td></td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
+</tr>
+<tr>
 <td>timeout</td>
 <td></td>
 <td>0s</td>
@@ -5121,7 +5261,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>recursive</td>
@@ -5130,6 +5270,12 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>Process the directory used in -f, --filename recursively. Useful when you want to manage related manifests organized within the same directory. </td>
 </tr>
 <tr>
+<td>selector</td>
+<td>l</td>
+<td></td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
+</tr>
+<tr>
 <td>show-managed-fields</td>
 <td></td>
 <td>false</td>
@@ -5176,9 +5322,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell">kubectl scale <span class="hljs-attribute">--replicas</span>=3 statefulset/web
 </code></pre>
-<p>Set a new size for a deployment, replica set, replication controller, or stateful set.</p>
-<p> Scale also allows users to specify one or more preconditions for the scale action.</p>
-<p> If --current-replicas or --resource-version is specified, it is validated before the scale is attempted, and it is guaranteed that the precondition holds true when the scale is sent to the server.</p>
+<p>Set a new size for a deployment, replica set, replication controller, or stateful set.<br><br> Scale also allows users to specify one or more preconditions for the scale action.<br><br> If --current-replicas or --resource-version is specified, it is validated before the scale is attempted, and it is guaranteed that the precondition holds true when the scale is sent to the server.</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl scale [--resource-version=version] [--current-replicas=count] --replicas=COUNT (-f FILENAME | TYPE NAME)</code></p>
 <h3 id="flags">Flags</h3>
@@ -5232,7 +5376,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>record</td>
@@ -5262,7 +5406,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>selector</td>
 <td>l</td>
 <td></td>
-<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2) </td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
 </tr>
 <tr>
 <td>show-managed-fields</td>
@@ -5286,8 +5430,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 </table>
 <hr>
 <h1 id="set">set</h1>
-<p>Configure application resources.</p>
-<p> These commands help you make changes to existing application resources.</p>
+<p>Configure application resources.<br><br> These commands help you make changes to existing application resources.</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl set SUBCOMMAND</code></p>
 <hr>
@@ -5441,7 +5584,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>overwrite</td>
@@ -5471,7 +5614,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>selector</td>
 <td>l</td>
 <td></td>
-<td>Selector (label query) to filter on </td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
 </tr>
 <tr>
 <td>show-managed-fields</td>
@@ -5529,7 +5672,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>all</td>
 <td></td>
 <td>false</td>
-<td>Select all resources, including uninitialized ones, in the namespace of the specified resource types </td>
+<td>Select all resources, in the namespace of the specified resource types </td>
 </tr>
 <tr>
 <td>allow-missing-template-keys</td>
@@ -5571,7 +5714,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>record</td>
@@ -5589,7 +5732,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>selector</td>
 <td>l</td>
 <td></td>
-<td>Selector (label query) to filter on, not including uninitialized ones, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2) </td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
 </tr>
 <tr>
 <td>show-managed-fields</td>
@@ -5647,7 +5790,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>all</td>
 <td></td>
 <td>false</td>
-<td>Select all resources, including uninitialized ones, in the namespace of the specified resource types </td>
+<td>Select all resources, in the namespace of the specified resource types </td>
 </tr>
 <tr>
 <td>allow-missing-template-keys</td>
@@ -5701,7 +5844,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>record</td>
@@ -5725,7 +5868,7 @@ viewing your workloads in a Kubernetes cluster.</p>
 <td>selector</td>
 <td>l</td>
 <td></td>
-<td>Selector (label query) to filter on, not including uninitialized ones,supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2) </td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
 </tr>
 <tr>
 <td>show-managed-fields</td>
@@ -5804,7 +5947,7 @@ kubectl create deployment my-dep -o yaml <span class="hljs-attribute">--dry-run<
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>record</td>
@@ -5870,7 +6013,7 @@ kubectl create deployment my-dep -o yaml <span class="hljs-attribute">--dry-run<
 <td>all</td>
 <td></td>
 <td>false</td>
-<td>Select all resources, including uninitialized ones, in the namespace of the specified resource types </td>
+<td>Select all resources, in the namespace of the specified resource types </td>
 </tr>
 <tr>
 <td>allow-missing-template-keys</td>
@@ -5912,7 +6055,7 @@ kubectl create deployment my-dep -o yaml <span class="hljs-attribute">--dry-run<
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>record</td>
@@ -5975,7 +6118,7 @@ kubectl create deployment my-dep -o yaml <span class="hljs-attribute">--dry-run<
 <td>all</td>
 <td></td>
 <td>false</td>
-<td>Select all resources, including uninitialized ones, in the namespace of the specified resource types </td>
+<td>Select all resources, in the namespace of the specified resource types </td>
 </tr>
 <tr>
 <td>allow-missing-template-keys</td>
@@ -6023,7 +6166,7 @@ kubectl create deployment my-dep -o yaml <span class="hljs-attribute">--dry-run<
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>recursive</td>
@@ -6035,7 +6178,7 @@ kubectl create deployment my-dep -o yaml <span class="hljs-attribute">--dry-run<
 <td>selector</td>
 <td>l</td>
 <td></td>
-<td>Selector (label query) to filter on, not including uninitialized ones, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2) </td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
 </tr>
 <tr>
 <td>serviceaccount</td>
@@ -6065,22 +6208,24 @@ kubectl create deployment my-dep -o yaml <span class="hljs-attribute">--dry-run<
 <pre class="code-block example"><code class="lang-shell">kubectl <span class="hljs-built_in">wait</span> <span class="hljs-comment">--for=condition=Ready pod/busybox1</span>
 </code></pre>
 <blockquote class="code-block example">
-<p> The default value of status condition is true; you can set it to false</p>
+<p> The default value of status condition is true; you can wait for other targets after an equal delimiter (compared after Unicode simple case folding, which is a more general form of case-insensitivity):</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell">kubectl <span class="hljs-built_in">wait</span> --<span class="hljs-keyword">for</span>=condition=Ready=<span class="hljs-literal">false</span> pod/busybox1
 </code></pre>
 <blockquote class="code-block example">
+<p> Wait for the pod &quot;busybox1&quot; to contain the status phase to be &quot;Running&quot;.</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell">kubectl <span class="hljs-built_in">wait</span> --<span class="hljs-keyword">for</span>=jsonpath=<span class="hljs-string">'{.status.phase}'</span>=Running pod/busybox1
+</code></pre>
+<blockquote class="code-block example">
 <p> Wait for the pod &quot;busybox1&quot; to be deleted, with a timeout of 60s, after having issued the &quot;delete&quot; command</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell">kubectl delete pod/busybox1
 kubectl wait <span class="hljs-attribute">--for</span>=delete pod/busybox1 <span class="hljs-attribute">--timeout</span>=60s
 </code></pre>
-<p>Experimental: Wait for a specific condition on one or many resources.</p>
-<p> The command takes multiple resources and waits until the specified condition is seen in the Status field of every given resource.</p>
-<p> Alternatively, the command can wait for the given set of resources to be deleted by providing the &quot;delete&quot; keyword as the value to the --for flag.</p>
-<p> A successful message will be printed to stdout indicating when the specified condition has been met. You can use -o option to change to output destination.</p>
+<p>Experimental: Wait for a specific condition on one or many resources.<br><br> The command takes multiple resources and waits until the specified condition is seen in the Status field of every given resource.<br><br> Alternatively, the command can wait for the given set of resources to be deleted by providing the &quot;delete&quot; keyword as the value to the --for flag.<br><br> A successful message will be printed to stdout indicating when the specified condition has been met. You can use -o option to change to output destination.</p>
 <h3 id="usage">Usage</h3>
-<p><code>$ kubectl wait ([-f FILENAME] | resource.group/resource.name | resource.group [(-l label | --all)]) [--for=delete|--for condition=available]</code></p>
+<p><code>$ kubectl wait ([-f FILENAME] | resource.group/resource.name | resource.group [(-l label | --all)]) [--for=delete|--for condition=available|--for=jsonpath=&#39;{}&#39;=value]</code></p>
 <h3 id="flags">Flags</h3>
 <table>
 <thead>
@@ -6126,7 +6271,7 @@ kubectl wait <span class="hljs-attribute">--for</span>=delete pod/busybox1 <span
 <td>for</td>
 <td></td>
 <td></td>
-<td>The condition to wait on: <span>[</span>delete&#124;condition=condition-name<span>]</span>. The default status value of condition-name is true, you can set false with condition=condition-name=false </td>
+<td>The condition to wait on: <span>[</span>delete&#124;condition=condition-name<span>[</span>=condition-value<span>]</span>&#124;jsonpath=&#39;{JSONPath expression}&#39;=JSONPath Condition<span>]</span>. The default condition-value is true.  Condition values are compared after Unicode simple case folding, which is a more general form of case-insensitivity. </td>
 </tr>
 <tr>
 <td>local</td>
@@ -6138,7 +6283,7 @@ kubectl wait <span class="hljs-attribute">--for</span>=delete pod/busybox1 <span
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>recursive</td>
@@ -6291,7 +6436,7 @@ applications.</p>
 <pre class="code-block example"><code class="lang-shell">kubectl auth can-i --list --<span class="hljs-keyword">namespace</span>=<span class="hljs-symbol">foo</span>
 </code></pre>
 <p>Check whether an action is allowed.</p>
-<p> VERB is a logical Kubernetes API verb like &#39;get&#39;, &#39;list&#39;, &#39;watch&#39;, &#39;delete&#39;, etc. TYPE is a Kubernetes resource. Shortcuts and groups will be resolved. NONRESOURCEURL is a partial URL that starts with &quot;/&quot;. NAME is the name of a particular Kubernetes resource.</p>
+<p> VERB is a logical Kubernetes API verb like &#39;get&#39;, &#39;list&#39;, &#39;watch&#39;, &#39;delete&#39;, etc. TYPE is a Kubernetes resource. Shortcuts and groups will be resolved. NONRESOURCEURL is a partial URL that starts with &quot;/&quot;. NAME is the name of a particular Kubernetes resource. This command pairs nicely with impersonation. See --as global flag.</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl auth can-i VERB [TYPE | TYPE/NAME | NONRESOURCEURL]</code></p>
 <h3 id="flags">Flags</h3>
@@ -6390,7 +6535,7 @@ applications.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>recursive</td>
@@ -6482,6 +6627,12 @@ applications.</p>
 <td>false</td>
 <td>The copied file/directory&#39;s ownership and permissions will not be preserved in the container </td>
 </tr>
+<tr>
+<td>retries</td>
+<td></td>
+<td>0</td>
+<td>Set number of retries to complete a copy operation from a container. Specify 0 to disable or any negative value for infinite retrying. The default is 0 (no retry). </td>
+</tr>
 </tbody>
 </table>
 <hr>
@@ -6512,15 +6663,11 @@ applications.</p>
 <pre class="code-block example"><code class="lang-shell">kubectl describe po -l <span class="hljs-attribute">name</span>=myLabel
 </code></pre>
 <blockquote class="code-block example">
-<p> Describe all pods managed by the &#39;frontend&#39; replication controller (rc-created pods # get the name of the rc as a prefix in the pod the name)</p>
+<p> Describe all pods managed by the &#39;frontend&#39; replication controller # (rc-created pods get the name of the rc as a prefix in the pod name)</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell"><span class="hljs-attribute">kubectl describe pods frontend</span>
 </code></pre>
-<p>Show details of a specific resource or group of resources.</p>
-<p> Print a detailed description of the selected resources, including related resources such as events or controllers. You may select a single object by name, all objects of that type, provide a name prefix, or label selector. For example:</p>
-<p>  $ kubectl describe TYPE NAME_PREFIX</p>
-<p> will first check for an exact match on TYPE and NAME_PREFIX. If no such resource exists, it will output details for every resource that has a name prefixed with NAME_PREFIX.</p>
-<p>Use &quot;kubectl api-resources&quot; for a complete list of supported resources.</p>
+<p>Show details of a specific resource or group of resources.<br><br> Print a detailed description of the selected resources, including related resources such as events or controllers. You may select a single object by name, all objects of that type, provide a name prefix, or label selector. For example:<br><br>  $ kubectl describe TYPE NAME_PREFIX<br>  <br> will first check for an exact match on TYPE and NAME_PREFIX. If no such resource exists, it will output details for every resource that has a name prefixed with NAME_PREFIX.<br><br>Use &quot;kubectl api-resources&quot; for a complete list of supported resources.</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl describe (-f FILENAME | TYPE [NAME_PREFIX | -l label] | TYPE/NAME)</code></p>
 <h3 id="flags">Flags</h3>
@@ -6568,7 +6715,7 @@ applications.</p>
 <td>selector</td>
 <td>l</td>
 <td></td>
-<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2) </td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
 </tr>
 <tr>
 <td>show-events</td>
@@ -6797,7 +6944,7 @@ applications.</p>
 <td>selector</td>
 <td>l</td>
 <td></td>
-<td>Selector (label query) to filter on. </td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
 </tr>
 <tr>
 <td>since</td>
@@ -6862,9 +7009,7 @@ applications.</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell">kubectl port-forward pod/mypod :<span class="hljs-number">5000</span>
 </code></pre>
-<p>Forward one or more local ports to a pod.</p>
-<p> Use resource type/name such as deployment/mydeployment to select a pod. Resource type defaults to &#39;pod&#39; if omitted.</p>
-<p> If there are multiple pods matching the criteria, a pod will be selected automatically. The forwarding session ends when the selected pod terminates, and a rerun of the command is needed to resume forwarding.</p>
+<p>Forward one or more local ports to a pod.<br><br> Use resource type/name such as deployment/mydeployment to select a pod. Resource type defaults to &#39;pod&#39; if omitted.<br><br> If there are multiple pods matching the criteria, a pod will be selected automatically. The forwarding session ends when the selected pod terminates, and a rerun of the command is needed to resume forwarding.</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl port-forward TYPE/NAME [options] [LOCAL_PORT:]REMOTE_PORT [...[LOCAL_PORT_N:]REMOTE_PORT_N]</code></p>
 <h3 id="flags">Flags</h3>
@@ -6963,6 +7108,12 @@ applications.</p>
 <td>Prefix to serve the proxied API under. </td>
 </tr>
 <tr>
+<td>append-server-path</td>
+<td></td>
+<td>false</td>
+<td>If true, enables automatic path appending of the kube context server path to each request. </td>
+</tr>
+<tr>
 <td>disable-filter</td>
 <td></td>
 <td>false</td>
@@ -7014,9 +7165,7 @@ applications.</p>
 </table>
 <hr>
 <h1 id="top">top</h1>
-<p>Display Resource (CPU/Memory) usage.</p>
-<p> The top command allows you to see the resource consumption for nodes or pods.</p>
-<p> This command requires Metrics Server to be correctly configured and working on the server.</p>
+<p>Display Resource (CPU/Memory) usage.<br><br> The top command allows you to see the resource consumption for nodes or pods.<br><br> This command requires Metrics Server to be correctly configured and working on the server.</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl top</code></p>
 <hr>
@@ -7056,7 +7205,13 @@ applications.</p>
 <td>selector</td>
 <td>l</td>
 <td></td>
-<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2) </td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
+</tr>
+<tr>
+<td>show-capacity</td>
+<td></td>
+<td>false</td>
+<td>Print node resources based on Capacity instead of Allocatable(default) of the nodes. </td>
 </tr>
 <tr>
 <td>sort-by</td>
@@ -7138,7 +7293,7 @@ applications.</p>
 <td>selector</td>
 <td>l</td>
 <td></td>
-<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2) </td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
 </tr>
 <tr>
 <td>sort-by</td>
@@ -7221,7 +7376,7 @@ applications.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>recursive</td>
@@ -7293,7 +7448,7 @@ applications.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>recursive</td>
@@ -7384,7 +7539,7 @@ applications.</p>
 <td>output</td>
 <td>o</td>
 <td>json</td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>output-directory</td>
@@ -7443,7 +7598,7 @@ applications.</p>
 <td>selector</td>
 <td>l</td>
 <td></td>
-<td>Selector (label query) to filter on </td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
 </tr>
 </tbody>
 </table>
@@ -7459,11 +7614,7 @@ applications.</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell">kubectl drain foo <span class="hljs-attribute">--grace-period</span>=900
 </code></pre>
-<p>Drain node in preparation for maintenance.</p>
-<p> The given node will be marked unschedulable to prevent new pods from arriving. &#39;drain&#39; evicts the pods if the API server supports <a href="https://kubernetes.io/docs/concepts/workloads/pods/disruptions/">https://kubernetes.io/docs/concepts/workloads/pods/disruptions/</a> . Otherwise, it will use normal DELETE to delete the pods. The &#39;drain&#39; evicts or deletes all pods except mirror pods (which cannot be deleted through the API server).  If there are daemon set-managed pods, drain will not proceed without --ignore-daemonsets, and regardless it will not delete any daemon set-managed pods, because those pods would be immediately replaced by the daemon set controller, which ignores unschedulable markings.  If there are any pods that are neither mirror pods nor managed by a replication controller, replica set, daemon set, stateful set, or job, then drain will not delete any pods unless you use --force.  --force will also allow deletion to proceed if the managing resource of one or more pods is missing.</p>
-<p> &#39;drain&#39; waits for graceful termination. You should not operate on the machine until the command completes.</p>
-<p> When you are ready to put the node back into service, use kubectl uncordon, which will make the node schedulable again.</p>
-<p> <a href="https://kubernetes.io/images/docs/kubectl_drain.svg">https://kubernetes.io/images/docs/kubectl_drain.svg</a></p>
+<p>Drain node in preparation for maintenance.<br><br> The given node will be marked unschedulable to prevent new pods from arriving. &#39;drain&#39; evicts the pods if the API server supports <a href="https://kubernetes.io/docs/concepts/workloads/pods/disruptions/">https://kubernetes.io/docs/concepts/workloads/pods/disruptions/</a> . Otherwise, it will use normal DELETE to delete the pods. The &#39;drain&#39; evicts or deletes all pods except mirror pods (which cannot be deleted through the API server).  If there are daemon set-managed pods, drain will not proceed without --ignore-daemonsets, and regardless it will not delete any daemon set-managed pods, because those pods would be immediately replaced by the daemon set controller, which ignores unschedulable markings.  If there are any pods that are neither mirror pods nor managed by a replication controller, replica set, daemon set, stateful set, or job, then drain will not delete any pods unless you use --force.  --force will also allow deletion to proceed if the managing resource of one or more pods is missing.<br><br> &#39;drain&#39; waits for graceful termination. You should not operate on the machine until the command completes.<br><br> When you are ready to put the node back into service, use kubectl uncordon, which will make the node schedulable again.<br><br> <a href="https://kubernetes.io/images/docs/kubectl_drain.svg">https://kubernetes.io/images/docs/kubectl_drain.svg</a></p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl drain NODE</code></p>
 <h3 id="flags">Flags</h3>
@@ -7511,7 +7662,7 @@ applications.</p>
 <td>force</td>
 <td></td>
 <td>false</td>
-<td>Continue even if there are pods not managed by a ReplicationController, ReplicaSet, Job, DaemonSet or StatefulSet. </td>
+<td>Continue even if there are pods that do not declare a controller. </td>
 </tr>
 <tr>
 <td>grace-period</td>
@@ -7526,12 +7677,6 @@ applications.</p>
 <td>Ignore DaemonSet-managed pods. </td>
 </tr>
 <tr>
-<td>ignore-errors</td>
-<td></td>
-<td>false</td>
-<td>Ignore errors occurred between drain nodes in group. </td>
-</tr>
-<tr>
 <td>pod-selector</td>
 <td></td>
 <td></td>
@@ -7541,7 +7686,7 @@ applications.</p>
 <td>selector</td>
 <td>l</td>
 <td></td>
-<td>Selector (label query) to filter on </td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
 </tr>
 <tr>
 <td>skip-wait-for-delete-timeout</td>
@@ -7584,15 +7729,7 @@ applications.</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell"><span class="hljs-selector-tag">kubectl</span> <span class="hljs-selector-tag">taint</span> <span class="hljs-selector-tag">nodes</span> <span class="hljs-selector-tag">foo</span> <span class="hljs-selector-tag">bar</span><span class="hljs-selector-pseudo">:NoSchedule</span>
 </code></pre>
-<p>Update the taints on one or more nodes.</p>
-<ul>
-<li>A taint consists of a key, value, and effect. As an argument here, it is expressed as key=value:effect.</li>
-<li>The key must begin with a letter or number, and may contain letters, numbers, hyphens, dots, and underscores, up to  253 characters.</li>
-<li>Optionally, the key can begin with a DNS subdomain prefix and a single &#39;/&#39;, like example.com/my-app.</li>
-<li>The value is optional. If given, it must begin with a letter or number, and may contain letters, numbers, hyphens, dots, and underscores, up to  63 characters.</li>
-<li>The effect must be NoSchedule, PreferNoSchedule or NoExecute.</li>
-<li>Currently taint can only apply to node.</li>
-</ul>
+<p>Update the taints on one or more nodes.<br><br>  <em>  A taint consists of a key, value, and effect. As an argument here, it is expressed as key=value:effect.<br>  </em>  The key must begin with a letter or number, and may contain letters, numbers, hyphens, dots, and underscores, up to  253 characters.<br>  <em>  Optionally, the key can begin with a DNS subdomain prefix and a single &#39;/&#39;, like example.com/my-app.<br>  </em>  The value is optional. If given, it must begin with a letter or number, and may contain letters, numbers, hyphens, dots, and underscores, up to  63 characters.<br>  <em>  The effect must be NoSchedule, PreferNoSchedule or NoExecute.<br>  </em>  Currently taint can only apply to node.</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl taint NODE NAME KEY_1=VAL_1:TAINT_EFFECT_1 ... KEY_N=VAL_N:TAINT_EFFECT_N</code></p>
 <h3 id="flags">Flags</h3>
@@ -7634,7 +7771,7 @@ applications.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>overwrite</td>
@@ -7646,7 +7783,7 @@ applications.</p>
 <td>selector</td>
 <td>l</td>
 <td></td>
-<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2) </td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
 </tr>
 <tr>
 <td>show-managed-fields</td>
@@ -7663,8 +7800,8 @@ applications.</p>
 <tr>
 <td>validate</td>
 <td></td>
-<td>true</td>
-<td>If true, use a schema to validate the input before sending it </td>
+<td>strict</td>
+<td>Must be one of: strict (or true), warn, ignore (or false).<br>        &quot;true&quot; or &quot;strict&quot; will use a schema to validate the input and fail the request if invalid. It will perform server side validation if ServerSideFieldValidation is enabled on the api-server, but will fall back to less reliable client-side validation if not.<br>        &quot;warn&quot; will warn about unknown or duplicate fields without blocking the request if server-side field validation is enabled on the API server, and behave as &quot;ignore&quot; otherwise.<br>        &quot;false&quot; or &quot;ignore&quot; will not perform any schema validation, silently dropping any unknown or duplicate fields. </td>
 </tr>
 </tbody>
 </table>
@@ -7699,7 +7836,7 @@ applications.</p>
 <td>selector</td>
 <td>l</td>
 <td></td>
-<td>Selector (label query) to filter on </td>
+<td>Selector (label query) to filter on, supports &#39;=&#39;, &#39;==&#39;, and &#39;!=&#39;.(e.g. -l key1=value1,key2=value2). Matching objects must satisfy all of the specified label constraints. </td>
 </tr>
 </tbody>
 </table>
@@ -7710,6 +7847,64 @@ applications.</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl alpha</code></p>
 <hr>
+<h2 id="-em-events-em-"><em>events</em></h2>
+<blockquote class="code-block example">
+<p> List recent events in the default namespace.</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell"><span class="hljs-attribute">kubectl alpha events</span>
+</code></pre>
+<blockquote class="code-block example">
+<p> List recent events in all namespaces.</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell">kubectl alpha events <span class="hljs-comment">--all-namespaces</span>
+</code></pre>
+<blockquote class="code-block example">
+<p> List recent events for the specified pod, then wait for more events and list them as they arrive.</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell"><span class="hljs-comment">kubectl</span> <span class="hljs-comment">alpha</span> <span class="hljs-comment">events</span> --<span class="hljs-comment">for</span> <span class="hljs-comment">pod/web</span><span class="hljs-literal">-</span><span class="hljs-comment">pod</span><span class="hljs-literal">-</span><span class="hljs-comment">13je7</span> --<span class="hljs-comment">watch</span>
+</code></pre>
+<p>Experimental: Display events</p>
+<p> Prints a table of the most important information about events. You can request events for a namespace, for all namespace, or filtered to only those pertaining to a specified resource.</p>
+<h3 id="usage">Usage</h3>
+<p><code>$ kubectl alpha events [--for TYPE/NAME] [--watch]</code></p>
+<h3 id="flags">Flags</h3>
+<table>
+<thead>
+<tr>
+<th>Name</th>
+<th>Shorthand</th>
+<th>Default</th>
+<th>Usage</th>
+</tr>
+</thead>
+<tbody>
+<tr>
+<td>all-namespaces</td>
+<td>A</td>
+<td>false</td>
+<td>If present, list the requested object(s) across all namespaces. Namespace in current context is ignored even if specified with --namespace. </td>
+</tr>
+<tr>
+<td>chunk-size</td>
+<td></td>
+<td>500</td>
+<td>Return large lists in chunks rather than all at once. Pass 0 to disable. This flag is beta and may change in the future. </td>
+</tr>
+<tr>
+<td>for</td>
+<td></td>
+<td></td>
+<td>Filter events to only those pertaining to the specified resource. </td>
+</tr>
+<tr>
+<td>watch</td>
+<td>w</td>
+<td>false</td>
+<td>After listing the requested events, watch for more events. </td>
+</tr>
+</tbody>
+</table>
+<hr>
 <h1 id="api-resources">api-resources</h1>
 <blockquote class="code-block example">
 <p> Print the supported API resources</p>
@@ -7783,7 +7978,7 @@ applications.</p>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: wide&#124;name. </td>
+<td>Output format. One of: (wide, name). </td>
 </tr>
 <tr>
 <td>sort-by</td>
@@ -7844,26 +8039,45 @@ source <span class="hljs-variable">$HOME</span>/.bash_profile</span>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell"><span class="hljs-attribute">kubectl</span> completion zsh &gt; <span class="hljs-string">"<span class="hljs-variable">${fpath[1]}</span>/_kubectl"</span>
 </code></pre>
-<p>Output shell completion code for the specified shell (bash or zsh). The shell code must be evaluated to provide interactive completion of kubectl commands.  This can be done by sourcing it from the .bash_profile.</p>
-<p> Detailed instructions on how to do this are available here:</p>
-<p>  for macOS:
-  <a href="https://kubernetes.io/docs/tasks/tools/install-kubectl-macos/#enable-shell-autocompletion">https://kubernetes.io/docs/tasks/tools/install-kubectl-macos/#enable-shell-autocompletion</a></p>
-<p>  for linux:
-  <a href="https://kubernetes.io/docs/tasks/tools/install-kubectl-linux/#enable-shell-autocompletion">https://kubernetes.io/docs/tasks/tools/install-kubectl-linux/#enable-shell-autocompletion</a></p>
-<p>  for windows:
-  <a href="https://kubernetes.io/docs/tasks/tools/install-kubectl-windows/#enable-shell-autocompletion">https://kubernetes.io/docs/tasks/tools/install-kubectl-windows/#enable-shell-autocompletion</a></p>
-<p> Note for zsh users: <span>[</span>1<span>]</span> zsh completions are only supported in versions of zsh &gt;= 5.2.</p>
+<blockquote class="code-block example">
+<p> Load the kubectl completion code for fish[2] into the current shell</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell">kubectl completion fish <span class="hljs-string">| source</span>
+</code></pre>
+<blockquote class="code-block example">
+<p> To load completions for each session, execute once:</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell">kubectl completion fish &gt; ~<span class="hljs-regexp">/.config/</span>fish<span class="hljs-regexp">/completions/</span>kubectl.fish
+</code></pre>
+<blockquote class="code-block example">
+<p> Load the kubectl completion code for powershell into the current shell</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell">kubectl completion powershell | <span class="hljs-keyword">Out</span>-<span class="hljs-keyword">String</span> | Invoke-<span class="hljs-keyword">Expression</span>
+</code></pre>
+<blockquote class="code-block example">
+<p> Set kubectl completion code for powershell to run on startup ## Save completion code to a script and execute in the profile</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell">kubectl completion powershell &gt; $HOME\.kube\completion.ps1
+<span class="hljs-keyword">Add</span><span class="bash">-Content <span class="hljs-variable">$PROFILE</span> <span class="hljs-string">"<span class="hljs-variable">$HOME</span>\.kube\completion.ps1"</span></span>
+</code></pre>
+<blockquote class="code-block example#">
+<p> Execute completion code in the profile</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell">Add-Content $PROFILE <span class="hljs-string">"if (Get-Command kubectl -ErrorAction SilentlyContinue) {</span>
+kubectl completion powershell <span class="hljs-string">| Out-String | Invoke-Expression</span>
+}<span class="hljs-string">"</span>
+</code></pre>
+<blockquote class="code-block example#">
+<p> Add completion code directly to the $PROFILE script</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell"><span class="hljs-attribute">kubectl</span> completion powershell &gt;&gt; <span class="hljs-variable">$PROFILE</span>
+</code></pre>
+<p>Output shell completion code for the specified shell (bash, zsh, fish, or powershell). The shell code must be evaluated to provide interactive completion of kubectl commands.  This can be done by sourcing it from the .bash_profile.<br><br> Detailed instructions on how to do this are available here:<br><br>  for macOS:<br>  <a href="https://kubernetes.io/docs/tasks/tools/install-kubectl-macos/#enable-shell-autocompletion">https://kubernetes.io/docs/tasks/tools/install-kubectl-macos/#enable-shell-autocompletion</a><br>  <br>  for linux:<br>  <a href="https://kubernetes.io/docs/tasks/tools/install-kubectl-linux/#enable-shell-autocompletion">https://kubernetes.io/docs/tasks/tools/install-kubectl-linux/#enable-shell-autocompletion</a><br>  <br>  for windows:<br>  <a href="https://kubernetes.io/docs/tasks/tools/install-kubectl-windows/#enable-shell-autocompletion">https://kubernetes.io/docs/tasks/tools/install-kubectl-windows/#enable-shell-autocompletion</a><br>  <br> Note for zsh users: <span>[</span>1<span>]</span> zsh completions are only supported in versions of zsh &gt;= 5.2.</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl completion SHELL</code></p>
 <hr>
 <h1 id="config">config</h1>
-<p>Modify kubeconfig files using subcommands like &quot;kubectl config set current-context my-context&quot;</p>
-<p> The loading order follows these rules:</p>
-<ol>
-<li>If the --kubeconfig flag is set, then only that file is loaded. The flag may only be set once and no merging takes place.</li>
-<li>If $KUBECONFIG environment variable is set, then it is used as a list of paths (normal path delimiting rules for your system). These paths are merged. When a value is modified, it is modified in the file that defines the stanza. When a value is created, it is created in the first file that exists. If no files in the chain exist, then it creates the last file in the list.</li>
-<li>Otherwise, ${HOME}/.kube/config is used and no merging takes place.</li>
-</ol>
+<p>Modify kubeconfig files using subcommands like &quot;kubectl config set current-context my-context&quot;<br><br> The loading order follows these rules:<br><br>  1.  If the --kubeconfig flag is set, then only that file is loaded. The flag may only be set once and no merging takes place.<br>  2.  If $KUBECONFIG environment variable is set, then it is used as a list of paths (normal path delimiting rules for your system). These paths are merged. When a value is modified, it is modified in the file that defines the stanza. When a value is created, it is created in the first file that exists. If no files in the chain exist, then it creates the last file in the list.<br>  3.  Otherwise, ${HOME}/.kube/config is used and no merging takes place.</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl config SUBCOMMAND</code></p>
 <hr>
@@ -7952,7 +8166,7 @@ source <span class="hljs-variable">$HOME</span>/.bash_profile</span>
 <td>output</td>
 <td>o</td>
 <td></td>
-<td>Output format. One of: name </td>
+<td>Output format. One of: (name). </td>
 </tr>
 </tbody>
 </table>
@@ -8039,7 +8253,7 @@ source <span class="hljs-variable">$HOME</span>/.bash_profile</span>
 <pre class="code-block example"><code class="lang-shell">kubectl<span class="hljs-built_in"> config </span>set-cluster e2e --embed-certs <span class="hljs-attribute">--certificate-authority</span>=~/.kube/e2e/kubernetes.ca.crt
 </code></pre>
 <blockquote class="code-block example">
-<p> Disable cert checking for the dev cluster entry</p>
+<p> Disable cert checking for the e2e cluster entry</p>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell">kubectl<span class="hljs-built_in"> config </span>set-cluster e2e <span class="hljs-attribute">--insecure-skip-tls-verify</span>=<span class="hljs-literal">true</span>
 </code></pre>
@@ -8048,6 +8262,11 @@ source <span class="hljs-variable">$HOME</span>/.bash_profile</span>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell">kubectl<span class="hljs-built_in"> config </span>set-cluster e2e <span class="hljs-attribute">--tls-server-name</span>=my-cluster-name
 </code></pre>
+<blockquote class="code-block example">
+<p> Set proxy url for the e2e cluster entry</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell">kubectl<span class="hljs-built_in"> config </span>set-cluster e2e <span class="hljs-attribute">--proxy-url</span>=https://1.2.3.4
+</code></pre>
 <p>Set a cluster entry in kubeconfig.</p>
 <p> Specifying a name that already exists will merge new fields on top of existing values for those fields.</p>
 <h3 id="usage">Usage</h3>
@@ -8069,6 +8288,12 @@ source <span class="hljs-variable">$HOME</span>/.bash_profile</span>
 <td>false</td>
 <td>embed-certs for the cluster entry in kubeconfig </td>
 </tr>
+<tr>
+<td>proxy-url</td>
+<td></td>
+<td></td>
+<td>proxy-url for the cluster entry in kubeconfig </td>
+</tr>
 </tbody>
 </table>
 <hr>
@@ -8305,7 +8530,7 @@ source <span class="hljs-variable">$HOME</span>/.bash_profile</span>
 <td>output</td>
 <td>o</td>
 <td>yaml</td>
-<td>Output format. One of: json&#124;yaml&#124;name&#124;go-template&#124;go-template-file&#124;template&#124;templatefile&#124;jsonpath&#124;jsonpath-as-json&#124;jsonpath-file. </td>
+<td>Output format. One of: (json, yaml, name, go-template, go-template-file, template, templatefile, jsonpath, jsonpath-as-json, jsonpath-file). </td>
 </tr>
 <tr>
 <td>raw</td>
@@ -8339,11 +8564,7 @@ source <span class="hljs-variable">$HOME</span>/.bash_profile</span>
 </blockquote>
 <pre class="code-block example"><code class="lang-shell"><span class="hljs-selector-tag">kubectl</span> <span class="hljs-selector-tag">explain</span> <span class="hljs-selector-tag">pods</span><span class="hljs-selector-class">.spec</span><span class="hljs-selector-class">.containers</span>
 </code></pre>
-<p>List the fields for supported resources.</p>
-<p> This command describes the fields associated with each supported API resource. Fields are identified via a simple JSONPath identifier:</p>
-<p>  &lt;type&gt;.&lt;fieldName&gt;<span>[</span>.&lt;fieldName&gt;<span>]</span></p>
-<p> Add the --recursive flag to display all of the fields at once without descriptions. Information about each field is retrieved from the server in OpenAPI format.</p>
-<p>Use &quot;kubectl api-resources&quot; for a complete list of supported resources.</p>
+<p>List the fields for supported resources.<br><br> This command describes the fields associated with each supported API resource. Fields are identified via a simple JSONPath identifier:<br><br>  &lt;type&gt;.&lt;fieldName&gt;<span>[</span>.&lt;fieldName&gt;<span>]</span><br>  <br> Add the --recursive flag to display all of the fields at once without descriptions. Information about each field is retrieved from the server in OpenAPI format.<br><br>Use &quot;kubectl api-resources&quot; for a complete list of supported resources.</p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl explain RESOURCE</code></p>
 <h3 id="flags">Flags</h3>
@@ -8383,13 +8604,16 @@ source <span class="hljs-variable">$HOME</span>/.bash_profile</span>
 <p><code>$ kubectl options</code></p>
 <hr>
 <h1 id="plugin">plugin</h1>
-<p>Provides utilities for interacting with plugins.</p>
-<p> Plugins provide extended functionality that is not part of the major command-line distribution. Please refer to the documentation and examples for more information about how write your own plugins.</p>
-<p> The easiest way to discover and install plugins is via the kubernetes sub-project krew. To install krew, visit <a href="https://krew.sigs.k8s.io/docs/user-guide/setup/install/">https://krew.sigs.k8s.io/docs/user-guide/setup/install/</a></p>
+<p>Provides utilities for interacting with plugins.<br><br> Plugins provide extended functionality that is not part of the major command-line distribution. Please refer to the documentation and examples for more information about how write your own plugins.<br><br> The easiest way to discover and install plugins is via the kubernetes sub-project krew. To install krew, visit <a href="https://krew.sigs.k8s.io/docs/user-guide/setup/install/">https://krew.sigs.k8s.io/docs/user-guide/setup/install/</a></p>
 <h3 id="usage">Usage</h3>
 <p><code>$ kubectl plugin [flags]</code></p>
 <hr>
 <h2 id="-em-list-em-"><em>list</em></h2>
+<blockquote class="code-block example">
+<p> List all available plugins</p>
+</blockquote>
+<pre class="code-block example"><code class="lang-shell">kubectl <span class="hljs-keyword">plugin</span> <span class="hljs-keyword">list</span>
+</code></pre>
 <p>List all available plugin files on a user&#39;s PATH.</p>
 <p> Available plugin files are those that are: - executable - anywhere on the user&#39;s PATH - begin with &quot;kubectl-&quot;</p>
 <h3 id="usage">Usage</h3>
diff --git a/static/docs/reference/generated/kubectl/navData.js b/static/docs/reference/generated/kubectl/navData.js
index e6f8f066de..e4ee521832 100644
--- a/static/docs/reference/generated/kubectl/navData.js
+++ b/static/docs/reference/generated/kubectl/navData.js
@@ -1 +1 @@
-(function(){navData = {"toc":[{"section":"version","subsections":[]},{"section":"plugin","subsections":[{"section":"-em-list-em-"}]},{"section":"options","subsections":[]},{"section":"explain","subsections":[]},{"section":"config","subsections":[{"section":"-em-view-em-"},{"section":"-em-use-context-em-"},{"section":"-em-unset-em-"},{"section":"-em-set-credentials-em-"},{"section":"-em-set-context-em-"},{"section":"-em-set-cluster-em-"},{"section":"-em-set-em-"},{"section":"-em-rename-context-em-"},{"section":"-em-get-users-em-"},{"section":"-em-get-contexts-em-"},{"section":"-em-get-clusters-em-"},{"section":"-em-delete-user-em-"},{"section":"-em-delete-context-em-"},{"section":"-em-delete-cluster-em-"},{"section":"-em-current-context-em-"}]},{"section":"completion","subsections":[]},{"section":"api-resources","subsections":[]},{"section":"alpha","subsections":[]},{"section":"-strong-kubectl-settings-and-usage-strong-","subsections":[]},{"section":"uncordon","subsections":[]},{"section":"taint","subsections":[]},{"section":"drain","subsections":[]},{"section":"cordon","subsections":[]},{"section":"cluster-info","subsections":[{"section":"-em-dump-em-"}]},{"section":"certificate","subsections":[{"section":"-em-deny-em-"},{"section":"-em-approve-em-"}]},{"section":"api-versions","subsections":[]},{"section":"-strong-cluster-management-strong-","subsections":[]},{"section":"top","subsections":[{"section":"-em-pod-em-"},{"section":"-em-node-em-"}]},{"section":"proxy","subsections":[]},{"section":"port-forward","subsections":[]},{"section":"logs","subsections":[]},{"section":"exec","subsections":[]},{"section":"describe","subsections":[]},{"section":"cp","subsections":[]},{"section":"auth","subsections":[{"section":"-em-reconcile-em-"},{"section":"-em-can-i-em-"}]},{"section":"attach","subsections":[]},{"section":"-strong-working-with-apps-strong-","subsections":[]},{"section":"wait","subsections":[]},{"section":"set","subsections":[{"section":"-em-subject-em-"},{"section":"-em-serviceaccount-em--1"},{"section":"-em-selector-em-"},{"section":"-em-resources-em-"},{"section":"-em-image-em-"},{"section":"-em-env-em-"}]},{"section":"scale","subsections":[]},{"section":"rollout","subsections":[{"section":"-em-undo-em-"},{"section":"-em-status-em-"},{"section":"-em-resume-em-"},{"section":"-em-restart-em-"},{"section":"-em-pause-em-"},{"section":"-em-history-em-"}]},{"section":"replace","subsections":[]},{"section":"patch","subsections":[]},{"section":"label","subsections":[]},{"section":"kustomize","subsections":[]},{"section":"edit","subsections":[]},{"section":"diff","subsections":[]},{"section":"debug","subsections":[]},{"section":"autoscale","subsections":[]},{"section":"annotate","subsections":[]},{"section":"apply","subsections":[{"section":"-em-view-last-applied-em-"},{"section":"-em-set-last-applied-em-"},{"section":"-em-edit-last-applied-em-"}]},{"section":"-strong-app-management-strong-","subsections":[]},{"section":"delete","subsections":[]},{"section":"expose","subsections":[]},{"section":"run","subsections":[]},{"section":"get","subsections":[]},{"section":"create","subsections":[{"section":"-em-serviceaccount-em-"},{"section":"-em-service-nodeport-em-"},{"section":"-em-service-loadbalancer-em-"},{"section":"-em-service-externalname-em-"},{"section":"-em-service-clusterip-em-"},{"section":"-em-service-em-"},{"section":"-em-secret-tls-em-"},{"section":"-em-secret-generic-em-"},{"section":"-em-secret-docker-registry-em-"},{"section":"-em-secret-em-"},{"section":"-em-rolebinding-em-"},{"section":"-em-role-em-"},{"section":"-em-quota-em-"},{"section":"-em-priorityclass-em-"},{"section":"-em-poddisruptionbudget-em-"},{"section":"-em-namespace-em-"},{"section":"-em-job-em-"},{"section":"-em-ingress-em-"},{"section":"-em-deployment-em-"},{"section":"-em-cronjob-em-"},{"section":"-em-configmap-em-"},{"section":"-em-clusterrolebinding-em-"},{"section":"-em-clusterrole-em-"}]},{"section":"-strong-getting-started-strong-","subsections":[]}],"flatToc":["version","-em-list-em-","plugin","options","explain","-em-view-em-","-em-use-context-em-","-em-unset-em-","-em-set-credentials-em-","-em-set-context-em-","-em-set-cluster-em-","-em-set-em-","-em-rename-context-em-","-em-get-users-em-","-em-get-contexts-em-","-em-get-clusters-em-","-em-delete-user-em-","-em-delete-context-em-","-em-delete-cluster-em-","-em-current-context-em-","config","completion","api-resources","alpha","-strong-kubectl-settings-and-usage-strong-","uncordon","taint","drain","cordon","-em-dump-em-","cluster-info","-em-deny-em-","-em-approve-em-","certificate","api-versions","-strong-cluster-management-strong-","-em-pod-em-","-em-node-em-","top","proxy","port-forward","logs","exec","describe","cp","-em-reconcile-em-","-em-can-i-em-","auth","attach","-strong-working-with-apps-strong-","wait","-em-subject-em-","-em-serviceaccount-em--1","-em-selector-em-","-em-resources-em-","-em-image-em-","-em-env-em-","set","scale","-em-undo-em-","-em-status-em-","-em-resume-em-","-em-restart-em-","-em-pause-em-","-em-history-em-","rollout","replace","patch","label","kustomize","edit","diff","debug","autoscale","annotate","-em-view-last-applied-em-","-em-set-last-applied-em-","-em-edit-last-applied-em-","apply","-strong-app-management-strong-","delete","expose","run","get","-em-serviceaccount-em-","-em-service-nodeport-em-","-em-service-loadbalancer-em-","-em-service-externalname-em-","-em-service-clusterip-em-","-em-service-em-","-em-secret-tls-em-","-em-secret-generic-em-","-em-secret-docker-registry-em-","-em-secret-em-","-em-rolebinding-em-","-em-role-em-","-em-quota-em-","-em-priorityclass-em-","-em-poddisruptionbudget-em-","-em-namespace-em-","-em-job-em-","-em-ingress-em-","-em-deployment-em-","-em-cronjob-em-","-em-configmap-em-","-em-clusterrolebinding-em-","-em-clusterrole-em-","create","-strong-getting-started-strong-"]};})();
\ No newline at end of file
+(function(){navData = {"toc":[{"section":"version","subsections":[]},{"section":"plugin","subsections":[{"section":"-em-list-em-"}]},{"section":"options","subsections":[]},{"section":"explain","subsections":[]},{"section":"config","subsections":[{"section":"-em-view-em-"},{"section":"-em-use-context-em-"},{"section":"-em-unset-em-"},{"section":"-em-set-credentials-em-"},{"section":"-em-set-context-em-"},{"section":"-em-set-cluster-em-"},{"section":"-em-set-em-"},{"section":"-em-rename-context-em-"},{"section":"-em-get-users-em-"},{"section":"-em-get-contexts-em-"},{"section":"-em-get-clusters-em-"},{"section":"-em-delete-user-em-"},{"section":"-em-delete-context-em-"},{"section":"-em-delete-cluster-em-"},{"section":"-em-current-context-em-"}]},{"section":"completion","subsections":[]},{"section":"api-resources","subsections":[]},{"section":"alpha","subsections":[{"section":"-em-events-em-"}]},{"section":"-strong-kubectl-settings-and-usage-strong-","subsections":[]},{"section":"uncordon","subsections":[]},{"section":"taint","subsections":[]},{"section":"drain","subsections":[]},{"section":"cordon","subsections":[]},{"section":"cluster-info","subsections":[{"section":"-em-dump-em-"}]},{"section":"certificate","subsections":[{"section":"-em-deny-em-"},{"section":"-em-approve-em-"}]},{"section":"api-versions","subsections":[]},{"section":"-strong-cluster-management-strong-","subsections":[]},{"section":"top","subsections":[{"section":"-em-pod-em-"},{"section":"-em-node-em-"}]},{"section":"proxy","subsections":[]},{"section":"port-forward","subsections":[]},{"section":"logs","subsections":[]},{"section":"exec","subsections":[]},{"section":"describe","subsections":[]},{"section":"cp","subsections":[]},{"section":"auth","subsections":[{"section":"-em-reconcile-em-"},{"section":"-em-can-i-em-"}]},{"section":"attach","subsections":[]},{"section":"-strong-working-with-apps-strong-","subsections":[]},{"section":"wait","subsections":[]},{"section":"set","subsections":[{"section":"-em-subject-em-"},{"section":"-em-serviceaccount-em--1"},{"section":"-em-selector-em-"},{"section":"-em-resources-em-"},{"section":"-em-image-em-"},{"section":"-em-env-em-"}]},{"section":"scale","subsections":[]},{"section":"rollout","subsections":[{"section":"-em-undo-em-"},{"section":"-em-status-em-"},{"section":"-em-resume-em-"},{"section":"-em-restart-em-"},{"section":"-em-pause-em-"},{"section":"-em-history-em-"}]},{"section":"replace","subsections":[]},{"section":"patch","subsections":[]},{"section":"label","subsections":[]},{"section":"kustomize","subsections":[]},{"section":"edit","subsections":[]},{"section":"diff","subsections":[]},{"section":"debug","subsections":[]},{"section":"autoscale","subsections":[]},{"section":"annotate","subsections":[]},{"section":"apply","subsections":[{"section":"-em-view-last-applied-em-"},{"section":"-em-set-last-applied-em-"},{"section":"-em-edit-last-applied-em-"}]},{"section":"-strong-app-management-strong-","subsections":[]},{"section":"delete","subsections":[]},{"section":"expose","subsections":[]},{"section":"run","subsections":[]},{"section":"get","subsections":[]},{"section":"create","subsections":[{"section":"-em-token-em-"},{"section":"-em-serviceaccount-em-"},{"section":"-em-service-nodeport-em-"},{"section":"-em-service-loadbalancer-em-"},{"section":"-em-service-externalname-em-"},{"section":"-em-service-clusterip-em-"},{"section":"-em-service-em-"},{"section":"-em-secret-tls-em-"},{"section":"-em-secret-generic-em-"},{"section":"-em-secret-docker-registry-em-"},{"section":"-em-secret-em-"},{"section":"-em-rolebinding-em-"},{"section":"-em-role-em-"},{"section":"-em-quota-em-"},{"section":"-em-priorityclass-em-"},{"section":"-em-poddisruptionbudget-em-"},{"section":"-em-namespace-em-"},{"section":"-em-job-em-"},{"section":"-em-ingress-em-"},{"section":"-em-deployment-em-"},{"section":"-em-cronjob-em-"},{"section":"-em-configmap-em-"},{"section":"-em-clusterrolebinding-em-"},{"section":"-em-clusterrole-em-"}]},{"section":"-strong-getting-started-strong-","subsections":[]}],"flatToc":["version","-em-list-em-","plugin","options","explain","-em-view-em-","-em-use-context-em-","-em-unset-em-","-em-set-credentials-em-","-em-set-context-em-","-em-set-cluster-em-","-em-set-em-","-em-rename-context-em-","-em-get-users-em-","-em-get-contexts-em-","-em-get-clusters-em-","-em-delete-user-em-","-em-delete-context-em-","-em-delete-cluster-em-","-em-current-context-em-","config","completion","api-resources","-em-events-em-","alpha","-strong-kubectl-settings-and-usage-strong-","uncordon","taint","drain","cordon","-em-dump-em-","cluster-info","-em-deny-em-","-em-approve-em-","certificate","api-versions","-strong-cluster-management-strong-","-em-pod-em-","-em-node-em-","top","proxy","port-forward","logs","exec","describe","cp","-em-reconcile-em-","-em-can-i-em-","auth","attach","-strong-working-with-apps-strong-","wait","-em-subject-em-","-em-serviceaccount-em--1","-em-selector-em-","-em-resources-em-","-em-image-em-","-em-env-em-","set","scale","-em-undo-em-","-em-status-em-","-em-resume-em-","-em-restart-em-","-em-pause-em-","-em-history-em-","rollout","replace","patch","label","kustomize","edit","diff","debug","autoscale","annotate","-em-view-last-applied-em-","-em-set-last-applied-em-","-em-edit-last-applied-em-","apply","-strong-app-management-strong-","delete","expose","run","get","-em-token-em-","-em-serviceaccount-em-","-em-service-nodeport-em-","-em-service-loadbalancer-em-","-em-service-externalname-em-","-em-service-clusterip-em-","-em-service-em-","-em-secret-tls-em-","-em-secret-generic-em-","-em-secret-docker-registry-em-","-em-secret-em-","-em-rolebinding-em-","-em-role-em-","-em-quota-em-","-em-priorityclass-em-","-em-poddisruptionbudget-em-","-em-namespace-em-","-em-job-em-","-em-ingress-em-","-em-deployment-em-","-em-cronjob-em-","-em-configmap-em-","-em-clusterrolebinding-em-","-em-clusterrole-em-","create","-strong-getting-started-strong-"]};})();
\ No newline at end of file
diff --git a/static/docs/reference/generated/kubernetes-api/v1.23/index.html b/static/docs/reference/generated/kubernetes-api/v1.23/index.html
new file mode 100644
index 0000000000..1d1d5e8afc
--- /dev/null
+++ b/static/docs/reference/generated/kubernetes-api/v1.23/index.html
@@ -0,0 +1,43998 @@
+<!DOCTYPE html>
+<HTML>
+<HEAD>
+<META charset="UTF-8">
+<TITLE>Kubernetes API Reference Docs</TITLE>
+<LINK rel="shortcut icon" href="favicon.ico" type="image/vnd.microsoft.icon">
+<LINK rel="stylesheet" href="/css/bootstrap-4.3.1.min.css">
+<LINK rel="stylesheet" href="/css/fontawesome-4.7.0.min.css" type="text/css">
+<LINK rel="stylesheet" href="/css/style_apiref.css" type="text/css">
+</HEAD>
+<BODY>
+<DIV id="wrapper" class="container-fluid">
+<DIV class="row">
+<DIV id="sidebar-wrapper" class="col-xs-4 col-sm-3 col-md-2 side-nav side-bar-nav">
+<UL>
+ <LI class="nav-level-1 strong-nav"><A href="#-strong-api-overview-strong-" class="nav-item"><STRONG>Overview</STRONG></A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1 strong-nav"><A href="#-strong-api-groups-strong-" class="nav-item"><STRONG>API Groups</STRONG></A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1 strong-nav"><A href="#-strong-workloads-apis-strong-" class="nav-item"><STRONG>WORKLOADS APIS</STRONG></A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#container-v1-core" class="nav-item">Container v1 core</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#cronjob-v1-batch" class="nav-item">CronJob v1 batch</A></LI>
+ <UL id="cronjob-v1-batch-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-cronjob-v1-batch-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-cronjob-v1-batch-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-cronjob-v1-batch" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-cronjob-v1-batch" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-cronjob-v1-batch" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-cronjob-v1-batch" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-cronjob-v1-batch" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-cronjob-v1-batch-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-cronjob-v1-batch-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-cronjob-v1-batch" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-cronjob-v1-batch" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-cronjob-v1-batch" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-cronjob-v1-batch" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-cronjob-v1-batch" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-cronjob-v1-batch" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-cronjob-v1-batch-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-cronjob-v1-batch-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-cronjob-v1-batch" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-cronjob-v1-batch" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-cronjob-v1-batch" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#daemonset-v1-apps" class="nav-item">DaemonSet v1 apps</A></LI>
+ <UL id="daemonset-v1-apps-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-daemonset-v1-apps-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-daemonset-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-daemonset-v1-apps" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-daemonset-v1-apps" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-daemonset-v1-apps" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-daemonset-v1-apps" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-daemonset-v1-apps" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-daemonset-v1-apps-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-daemonset-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-daemonset-v1-apps" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-daemonset-v1-apps" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-daemonset-v1-apps" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-daemonset-v1-apps" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-daemonset-v1-apps" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-daemonset-v1-apps" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-daemonset-v1-apps-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-daemonset-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-daemonset-v1-apps" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-daemonset-v1-apps" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-daemonset-v1-apps" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#deployment-v1-apps" class="nav-item">Deployment v1 apps</A></LI>
+ <UL id="deployment-v1-apps-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-deployment-v1-apps-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-deployment-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-deployment-v1-apps" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-deployment-v1-apps" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-deployment-v1-apps" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-deployment-v1-apps" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-deployment-v1-apps" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-deployment-v1-apps-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-deployment-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-deployment-v1-apps" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-deployment-v1-apps" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-deployment-v1-apps" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-deployment-v1-apps" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-deployment-v1-apps" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-deployment-v1-apps" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-deployment-v1-apps-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-deployment-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-deployment-v1-apps" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-deployment-v1-apps" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-deployment-v1-apps" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-misc-operations-deployment-v1-apps-strong-" class="nav-item"><STRONG>Misc Operations</STRONG></A></LI>
+   <UL id="-strong-misc-operations-deployment-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-scale-deployment-v1-apps" class="nav-item">Read Scale</A></LI>
+    <LI class="nav-level-2"><A href="#replace-scale-deployment-v1-apps" class="nav-item">Replace Scale</A></LI>
+    <LI class="nav-level-2"><A href="#patch-scale-deployment-v1-apps" class="nav-item">Patch Scale</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#job-v1-batch" class="nav-item">Job v1 batch</A></LI>
+ <UL id="job-v1-batch-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-job-v1-batch-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-job-v1-batch-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-job-v1-batch" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-job-v1-batch" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-job-v1-batch" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-job-v1-batch" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-job-v1-batch" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-job-v1-batch-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-job-v1-batch-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-job-v1-batch" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-job-v1-batch" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-job-v1-batch" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-job-v1-batch" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-job-v1-batch" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-job-v1-batch" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-job-v1-batch-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-job-v1-batch-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-job-v1-batch" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-job-v1-batch" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-job-v1-batch" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#pod-v1-core" class="nav-item">Pod v1 core</A></LI>
+ <UL id="pod-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-pod-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-pod-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-pod-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#create-eviction-pod-v1-core" class="nav-item">Create Eviction</A></LI>
+    <LI class="nav-level-2"><A href="#patch-pod-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-pod-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-pod-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-pod-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-pod-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-pod-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-pod-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-pod-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-pod-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-pod-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-pod-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-pod-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-pod-v1-core-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-pod-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-pod-v1-core" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-pod-v1-core" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-pod-v1-core" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-ephemeralcontainers-operations-pod-v1-core-strong-" class="nav-item"><STRONG>EphemeralContainers Operations</STRONG></A></LI>
+   <UL id="-strong-ephemeralcontainers-operations-pod-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-ephemeralcontainers-pod-v1-core" class="nav-item">Patch EphemeralContainers</A></LI>
+    <LI class="nav-level-2"><A href="#read-ephemeralcontainers-pod-v1-core" class="nav-item">Read EphemeralContainers</A></LI>
+    <LI class="nav-level-2"><A href="#replace-ephemeralcontainers-pod-v1-core" class="nav-item">Replace EphemeralContainers</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-proxy-operations-pod-v1-core-strong-" class="nav-item"><STRONG>Proxy Operations</STRONG></A></LI>
+   <UL id="-strong-proxy-operations-pod-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-connect-portforward-pod-v1-core" class="nav-item">Create Connect Portforward</A></LI>
+    <LI class="nav-level-2"><A href="#create-connect-proxy-pod-v1-core" class="nav-item">Create Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#create-connect-proxy-path-pod-v1-core" class="nav-item">Create Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#delete-connect-proxy-pod-v1-core" class="nav-item">Delete Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#delete-connect-proxy-path-pod-v1-core" class="nav-item">Delete Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#get-connect-portforward-pod-v1-core" class="nav-item">Get Connect Portforward</A></LI>
+    <LI class="nav-level-2"><A href="#get-connect-proxy-pod-v1-core" class="nav-item">Get Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#get-connect-proxy-path-pod-v1-core" class="nav-item">Get Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#head-connect-proxy-pod-v1-core" class="nav-item">Head Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#head-connect-proxy-path-pod-v1-core" class="nav-item">Head Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#replace-connect-proxy-pod-v1-core" class="nav-item">Replace Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#replace-connect-proxy-path-pod-v1-core" class="nav-item">Replace Connect Proxy Path</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-misc-operations-pod-v1-core-strong-" class="nav-item"><STRONG>Misc Operations</STRONG></A></LI>
+   <UL id="-strong-misc-operations-pod-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-log-pod-v1-core" class="nav-item">Read Log</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#replicaset-v1-apps" class="nav-item">ReplicaSet v1 apps</A></LI>
+ <UL id="replicaset-v1-apps-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-replicaset-v1-apps-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-replicaset-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-replicaset-v1-apps" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-replicaset-v1-apps" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-replicaset-v1-apps" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-replicaset-v1-apps" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-replicaset-v1-apps" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-replicaset-v1-apps-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-replicaset-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-replicaset-v1-apps" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-replicaset-v1-apps" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-replicaset-v1-apps" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-replicaset-v1-apps" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-replicaset-v1-apps" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-replicaset-v1-apps" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-replicaset-v1-apps-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-replicaset-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-replicaset-v1-apps" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-replicaset-v1-apps" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-replicaset-v1-apps" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-misc-operations-replicaset-v1-apps-strong-" class="nav-item"><STRONG>Misc Operations</STRONG></A></LI>
+   <UL id="-strong-misc-operations-replicaset-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-scale-replicaset-v1-apps" class="nav-item">Read Scale</A></LI>
+    <LI class="nav-level-2"><A href="#replace-scale-replicaset-v1-apps" class="nav-item">Replace Scale</A></LI>
+    <LI class="nav-level-2"><A href="#patch-scale-replicaset-v1-apps" class="nav-item">Patch Scale</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#replicationcontroller-v1-core" class="nav-item">ReplicationController v1 core</A></LI>
+ <UL id="replicationcontroller-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-replicationcontroller-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-replicationcontroller-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-replicationcontroller-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-replicationcontroller-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-replicationcontroller-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-replicationcontroller-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-replicationcontroller-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-replicationcontroller-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-replicationcontroller-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-replicationcontroller-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-replicationcontroller-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-replicationcontroller-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-replicationcontroller-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-replicationcontroller-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-replicationcontroller-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-replicationcontroller-v1-core-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-replicationcontroller-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-replicationcontroller-v1-core" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-replicationcontroller-v1-core" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-replicationcontroller-v1-core" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-misc-operations-replicationcontroller-v1-core-strong-" class="nav-item"><STRONG>Misc Operations</STRONG></A></LI>
+   <UL id="-strong-misc-operations-replicationcontroller-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-scale-replicationcontroller-v1-core" class="nav-item">Read Scale</A></LI>
+    <LI class="nav-level-2"><A href="#replace-scale-replicationcontroller-v1-core" class="nav-item">Replace Scale</A></LI>
+    <LI class="nav-level-2"><A href="#patch-scale-replicationcontroller-v1-core" class="nav-item">Patch Scale</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#statefulset-v1-apps" class="nav-item">StatefulSet v1 apps</A></LI>
+ <UL id="statefulset-v1-apps-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-statefulset-v1-apps-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-statefulset-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-statefulset-v1-apps" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-statefulset-v1-apps" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-statefulset-v1-apps" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-statefulset-v1-apps" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-statefulset-v1-apps" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-statefulset-v1-apps-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-statefulset-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-statefulset-v1-apps" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-statefulset-v1-apps" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-statefulset-v1-apps" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-statefulset-v1-apps" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-statefulset-v1-apps" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-statefulset-v1-apps" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-statefulset-v1-apps-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-statefulset-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-statefulset-v1-apps" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-statefulset-v1-apps" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-statefulset-v1-apps" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-misc-operations-statefulset-v1-apps-strong-" class="nav-item"><STRONG>Misc Operations</STRONG></A></LI>
+   <UL id="-strong-misc-operations-statefulset-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-scale-statefulset-v1-apps" class="nav-item">Read Scale</A></LI>
+    <LI class="nav-level-2"><A href="#replace-scale-statefulset-v1-apps" class="nav-item">Replace Scale</A></LI>
+    <LI class="nav-level-2"><A href="#patch-scale-statefulset-v1-apps" class="nav-item">Patch Scale</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1 strong-nav"><A href="#-strong-service-apis-strong-" class="nav-item"><STRONG>SERVICE APIS</STRONG></A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#endpoints-v1-core" class="nav-item">Endpoints v1 core</A></LI>
+ <UL id="endpoints-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-endpoints-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-endpoints-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-endpoints-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-endpoints-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-endpoints-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-endpoints-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-endpoints-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-endpoints-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-endpoints-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-endpoints-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-endpoints-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-endpoints-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-endpoints-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-endpoints-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-endpoints-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#endpointslice-v1-discovery-k8s-io" class="nav-item">EndpointSlice v1 discovery.k8s.io</A></LI>
+ <UL id="endpointslice-v1-discovery-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-endpointslice-v1-discovery-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-endpointslice-v1-discovery-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-endpointslice-v1-discovery-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-endpointslice-v1-discovery-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-endpointslice-v1-discovery-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-endpointslice-v1-discovery-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-endpointslice-v1-discovery-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-endpointslice-v1-discovery-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-endpointslice-v1-discovery-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-endpointslice-v1-discovery-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-endpointslice-v1-discovery-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-endpointslice-v1-discovery-k8s-io" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-endpointslice-v1-discovery-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-endpointslice-v1-discovery-k8s-io" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-endpointslice-v1-discovery-k8s-io" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#ingress-v1-networking-k8s-io" class="nav-item">Ingress v1 networking.k8s.io</A></LI>
+ <UL id="ingress-v1-networking-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-ingress-v1-networking-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-ingress-v1-networking-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-ingress-v1-networking-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-ingress-v1-networking-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-ingress-v1-networking-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-ingress-v1-networking-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-ingress-v1-networking-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-ingress-v1-networking-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-ingress-v1-networking-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-ingress-v1-networking-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-ingress-v1-networking-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-ingress-v1-networking-k8s-io" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-ingress-v1-networking-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-ingress-v1-networking-k8s-io" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-ingress-v1-networking-k8s-io" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-ingress-v1-networking-k8s-io-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-ingress-v1-networking-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-ingress-v1-networking-k8s-io" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-ingress-v1-networking-k8s-io" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-ingress-v1-networking-k8s-io" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#ingressclass-v1-networking-k8s-io" class="nav-item">IngressClass v1 networking.k8s.io</A></LI>
+ <UL id="ingressclass-v1-networking-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-ingressclass-v1-networking-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-ingressclass-v1-networking-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-ingressclass-v1-networking-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-ingressclass-v1-networking-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-ingressclass-v1-networking-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-ingressclass-v1-networking-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-ingressclass-v1-networking-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-ingressclass-v1-networking-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-ingressclass-v1-networking-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-ingressclass-v1-networking-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-ingressclass-v1-networking-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-ingressclass-v1-networking-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-ingressclass-v1-networking-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#service-v1-core" class="nav-item">Service v1 core</A></LI>
+ <UL id="service-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-service-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-service-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-service-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-service-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-service-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-service-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-service-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-service-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-service-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-service-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-service-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-service-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-service-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-service-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-service-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-service-v1-core-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-service-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-service-v1-core" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-service-v1-core" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-service-v1-core" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-proxy-operations-service-v1-core-strong-" class="nav-item"><STRONG>Proxy Operations</STRONG></A></LI>
+   <UL id="-strong-proxy-operations-service-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-connect-proxy-service-v1-core" class="nav-item">Create Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#create-connect-proxy-path-service-v1-core" class="nav-item">Create Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#delete-connect-proxy-service-v1-core" class="nav-item">Delete Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#delete-connect-proxy-path-service-v1-core" class="nav-item">Delete Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#get-connect-proxy-service-v1-core" class="nav-item">Get Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#get-connect-proxy-path-service-v1-core" class="nav-item">Get Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#head-connect-proxy-service-v1-core" class="nav-item">Head Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#head-connect-proxy-path-service-v1-core" class="nav-item">Head Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#replace-connect-proxy-service-v1-core" class="nav-item">Replace Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#replace-connect-proxy-path-service-v1-core" class="nav-item">Replace Connect Proxy Path</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1 strong-nav"><A href="#-strong-config-and-storage-apis-strong-" class="nav-item"><STRONG>CONFIG AND STORAGE APIS</STRONG></A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#configmap-v1-core" class="nav-item">ConfigMap v1 core</A></LI>
+ <UL id="configmap-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-configmap-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-configmap-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-configmap-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-configmap-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-configmap-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-configmap-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-configmap-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-configmap-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-configmap-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-configmap-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-configmap-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-configmap-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-configmap-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-configmap-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-configmap-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#csidriver-v1-storage-k8s-io" class="nav-item">CSIDriver v1 storage.k8s.io</A></LI>
+ <UL id="csidriver-v1-storage-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-csidriver-v1-storage-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-csidriver-v1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-csidriver-v1-storage-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-csidriver-v1-storage-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-csidriver-v1-storage-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-csidriver-v1-storage-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-csidriver-v1-storage-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-csidriver-v1-storage-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-csidriver-v1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-csidriver-v1-storage-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-csidriver-v1-storage-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-csidriver-v1-storage-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-csidriver-v1-storage-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#csinode-v1-storage-k8s-io" class="nav-item">CSINode v1 storage.k8s.io</A></LI>
+ <UL id="csinode-v1-storage-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-csinode-v1-storage-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-csinode-v1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-csinode-v1-storage-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-csinode-v1-storage-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-csinode-v1-storage-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-csinode-v1-storage-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-csinode-v1-storage-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-csinode-v1-storage-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-csinode-v1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-csinode-v1-storage-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-csinode-v1-storage-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-csinode-v1-storage-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-csinode-v1-storage-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#secret-v1-core" class="nav-item">Secret v1 core</A></LI>
+ <UL id="secret-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-secret-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-secret-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-secret-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-secret-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-secret-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-secret-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-secret-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-secret-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-secret-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-secret-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-secret-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-secret-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-secret-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-secret-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-secret-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#persistentvolumeclaim-v1-core" class="nav-item">PersistentVolumeClaim v1 core</A></LI>
+ <UL id="persistentvolumeclaim-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-persistentvolumeclaim-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-persistentvolumeclaim-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-persistentvolumeclaim-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-persistentvolumeclaim-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-persistentvolumeclaim-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-persistentvolumeclaim-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-persistentvolumeclaim-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-persistentvolumeclaim-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-persistentvolumeclaim-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-persistentvolumeclaim-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-persistentvolumeclaim-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-persistentvolumeclaim-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-persistentvolumeclaim-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-persistentvolumeclaim-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-persistentvolumeclaim-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-persistentvolumeclaim-v1-core-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-persistentvolumeclaim-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-persistentvolumeclaim-v1-core" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-persistentvolumeclaim-v1-core" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-persistentvolumeclaim-v1-core" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#storageclass-v1-storage-k8s-io" class="nav-item">StorageClass v1 storage.k8s.io</A></LI>
+ <UL id="storageclass-v1-storage-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-storageclass-v1-storage-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-storageclass-v1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-storageclass-v1-storage-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-storageclass-v1-storage-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-storageclass-v1-storage-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-storageclass-v1-storage-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-storageclass-v1-storage-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-storageclass-v1-storage-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-storageclass-v1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-storageclass-v1-storage-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-storageclass-v1-storage-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-storageclass-v1-storage-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-storageclass-v1-storage-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">CSIStorageCapacity v1beta1 storage.k8s.io</A></LI>
+ <UL id="csistoragecapacity-v1beta1-storage-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#volume-v1-core" class="nav-item">Volume v1 core</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#volumeattachment-v1-storage-k8s-io" class="nav-item">VolumeAttachment v1 storage.k8s.io</A></LI>
+ <UL id="volumeattachment-v1-storage-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-volumeattachment-v1-storage-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-volumeattachment-v1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-volumeattachment-v1-storage-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-volumeattachment-v1-storage-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-volumeattachment-v1-storage-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-volumeattachment-v1-storage-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-volumeattachment-v1-storage-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-volumeattachment-v1-storage-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-volumeattachment-v1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-volumeattachment-v1-storage-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-volumeattachment-v1-storage-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-volumeattachment-v1-storage-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-volumeattachment-v1-storage-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-volumeattachment-v1-storage-k8s-io-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-volumeattachment-v1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-volumeattachment-v1-storage-k8s-io" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-volumeattachment-v1-storage-k8s-io" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-volumeattachment-v1-storage-k8s-io" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1 strong-nav"><A href="#-strong-metadata-apis-strong-" class="nav-item"><STRONG>METADATA APIS</STRONG></A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#controllerrevision-v1-apps" class="nav-item">ControllerRevision v1 apps</A></LI>
+ <UL id="controllerrevision-v1-apps-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-controllerrevision-v1-apps-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-controllerrevision-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-controllerrevision-v1-apps" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-controllerrevision-v1-apps" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-controllerrevision-v1-apps" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-controllerrevision-v1-apps" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-controllerrevision-v1-apps" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-controllerrevision-v1-apps-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-controllerrevision-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-controllerrevision-v1-apps" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-controllerrevision-v1-apps" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-controllerrevision-v1-apps" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-controllerrevision-v1-apps" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-controllerrevision-v1-apps" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-controllerrevision-v1-apps" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">CustomResourceDefinition v1 apiextensions.k8s.io</A></LI>
+ <UL id="customresourcedefinition-v1-apiextensions-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#event-v1-events-k8s-io" class="nav-item">Event v1 events.k8s.io</A></LI>
+ <UL id="event-v1-events-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-event-v1-events-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-event-v1-events-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-event-v1-events-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-event-v1-events-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-event-v1-events-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-event-v1-events-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-event-v1-events-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-event-v1-events-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-event-v1-events-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-event-v1-events-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-event-v1-events-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-event-v1-events-k8s-io" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-event-v1-events-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-event-v1-events-k8s-io" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-event-v1-events-k8s-io" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#limitrange-v1-core" class="nav-item">LimitRange v1 core</A></LI>
+ <UL id="limitrange-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-limitrange-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-limitrange-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-limitrange-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-limitrange-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-limitrange-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-limitrange-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-limitrange-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-limitrange-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-limitrange-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-limitrange-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-limitrange-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-limitrange-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-limitrange-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-limitrange-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-limitrange-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#horizontalpodautoscaler-v1-autoscaling" class="nav-item">HorizontalPodAutoscaler v1 autoscaling</A></LI>
+ <UL id="horizontalpodautoscaler-v1-autoscaling-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-horizontalpodautoscaler-v1-autoscaling-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-horizontalpodautoscaler-v1-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-horizontalpodautoscaler-v1-autoscaling-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-horizontalpodautoscaler-v1-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-horizontalpodautoscaler-v1-autoscaling" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-horizontalpodautoscaler-v1-autoscaling" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-horizontalpodautoscaler-v1-autoscaling-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-horizontalpodautoscaler-v1-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">MutatingWebhookConfiguration v1 admissionregistration.k8s.io</A></LI>
+ <UL id="mutatingwebhookconfiguration-v1-admissionregistration-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">ValidatingWebhookConfiguration v1 admissionregistration.k8s.io</A></LI>
+ <UL id="validatingwebhookconfiguration-v1-admissionregistration-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-validatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-validatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-validatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-validatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-validatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-validatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-validatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-validatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-validatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-validatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-validatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-validatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-validatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#podtemplate-v1-core" class="nav-item">PodTemplate v1 core</A></LI>
+ <UL id="podtemplate-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-podtemplate-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-podtemplate-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-podtemplate-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-podtemplate-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-podtemplate-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-podtemplate-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-podtemplate-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-podtemplate-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-podtemplate-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-podtemplate-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-podtemplate-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-podtemplate-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-podtemplate-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-podtemplate-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-podtemplate-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#poddisruptionbudget-v1-policy" class="nav-item">PodDisruptionBudget v1 policy</A></LI>
+ <UL id="poddisruptionbudget-v1-policy-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-poddisruptionbudget-v1-policy-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-poddisruptionbudget-v1-policy-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-poddisruptionbudget-v1-policy" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-poddisruptionbudget-v1-policy" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-poddisruptionbudget-v1-policy" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-poddisruptionbudget-v1-policy" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-poddisruptionbudget-v1-policy" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-poddisruptionbudget-v1-policy-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-poddisruptionbudget-v1-policy-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-poddisruptionbudget-v1-policy" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-poddisruptionbudget-v1-policy" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-poddisruptionbudget-v1-policy" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-poddisruptionbudget-v1-policy" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-poddisruptionbudget-v1-policy" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-poddisruptionbudget-v1-policy" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-poddisruptionbudget-v1-policy-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-poddisruptionbudget-v1-policy-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-poddisruptionbudget-v1-policy" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-poddisruptionbudget-v1-policy" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-poddisruptionbudget-v1-policy" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#priorityclass-v1-scheduling-k8s-io" class="nav-item">PriorityClass v1 scheduling.k8s.io</A></LI>
+ <UL id="priorityclass-v1-scheduling-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-priorityclass-v1-scheduling-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-priorityclass-v1-scheduling-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-priorityclass-v1-scheduling-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-priorityclass-v1-scheduling-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-priorityclass-v1-scheduling-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-priorityclass-v1-scheduling-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-priorityclass-v1-scheduling-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-priorityclass-v1-scheduling-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-priorityclass-v1-scheduling-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-priorityclass-v1-scheduling-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-priorityclass-v1-scheduling-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-priorityclass-v1-scheduling-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-priorityclass-v1-scheduling-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#podsecuritypolicy-v1beta1-policy" class="nav-item">PodSecurityPolicy v1beta1 policy</A></LI>
+ <UL id="podsecuritypolicy-v1beta1-policy-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-podsecuritypolicy-v1beta1-policy-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-podsecuritypolicy-v1beta1-policy-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-podsecuritypolicy-v1beta1-policy" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-podsecuritypolicy-v1beta1-policy" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-podsecuritypolicy-v1beta1-policy" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-podsecuritypolicy-v1beta1-policy" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-podsecuritypolicy-v1beta1-policy" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-podsecuritypolicy-v1beta1-policy-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-podsecuritypolicy-v1beta1-policy-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-podsecuritypolicy-v1beta1-policy" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-podsecuritypolicy-v1beta1-policy" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-podsecuritypolicy-v1beta1-policy" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-podsecuritypolicy-v1beta1-policy" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1 strong-nav"><A href="#-strong-cluster-apis-strong-" class="nav-item"><STRONG>CLUSTER APIS</STRONG></A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#apiservice-v1-apiregistration-k8s-io" class="nav-item">APIService v1 apiregistration.k8s.io</A></LI>
+ <UL id="apiservice-v1-apiregistration-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-apiservice-v1-apiregistration-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-apiservice-v1-apiregistration-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-apiservice-v1-apiregistration-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-apiservice-v1-apiregistration-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-apiservice-v1-apiregistration-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-apiservice-v1-apiregistration-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-apiservice-v1-apiregistration-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-apiservice-v1-apiregistration-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-apiservice-v1-apiregistration-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-apiservice-v1-apiregistration-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-apiservice-v1-apiregistration-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-apiservice-v1-apiregistration-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-apiservice-v1-apiregistration-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-apiservice-v1-apiregistration-k8s-io-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-apiservice-v1-apiregistration-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-apiservice-v1-apiregistration-k8s-io" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-apiservice-v1-apiregistration-k8s-io" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-apiservice-v1-apiregistration-k8s-io" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#binding-v1-core" class="nav-item">Binding v1 core</A></LI>
+ <UL id="binding-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-binding-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-binding-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-binding-v1-core" class="nav-item">Create</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">CertificateSigningRequest v1 certificates.k8s.io</A></LI>
+ <UL id="certificatesigningrequest-v1-certificates-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-certificatesigningrequest-v1-certificates-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-certificatesigningrequest-v1-certificates-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-certificatesigningrequest-v1-certificates-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#clusterrole-v1-rbac-authorization-k8s-io" class="nav-item">ClusterRole v1 rbac.authorization.k8s.io</A></LI>
+ <UL id="clusterrole-v1-rbac-authorization-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-clusterrole-v1-rbac-authorization-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-clusterrole-v1-rbac-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-clusterrole-v1-rbac-authorization-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-clusterrole-v1-rbac-authorization-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-clusterrole-v1-rbac-authorization-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-clusterrole-v1-rbac-authorization-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-clusterrole-v1-rbac-authorization-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-clusterrole-v1-rbac-authorization-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-clusterrole-v1-rbac-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-clusterrole-v1-rbac-authorization-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-clusterrole-v1-rbac-authorization-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-clusterrole-v1-rbac-authorization-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-clusterrole-v1-rbac-authorization-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#clusterrolebinding-v1-rbac-authorization-k8s-io" class="nav-item">ClusterRoleBinding v1 rbac.authorization.k8s.io</A></LI>
+ <UL id="clusterrolebinding-v1-rbac-authorization-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-clusterrolebinding-v1-rbac-authorization-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-clusterrolebinding-v1-rbac-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-clusterrolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-clusterrolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-clusterrolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-clusterrolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-clusterrolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-clusterrolebinding-v1-rbac-authorization-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-clusterrolebinding-v1-rbac-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-clusterrolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-clusterrolebinding-v1-rbac-authorization-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-clusterrolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-clusterrolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#componentstatus-v1-core" class="nav-item">ComponentStatus v1 core</A></LI>
+ <UL id="componentstatus-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-componentstatus-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-componentstatus-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-componentstatus-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-componentstatus-v1-core" class="nav-item">List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">FlowSchema v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+ <UL id="flowschema-v1beta1-flowcontrol-apiserver-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#lease-v1-coordination-k8s-io" class="nav-item">Lease v1 coordination.k8s.io</A></LI>
+ <UL id="lease-v1-coordination-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-lease-v1-coordination-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-lease-v1-coordination-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-lease-v1-coordination-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-lease-v1-coordination-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-lease-v1-coordination-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-lease-v1-coordination-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-lease-v1-coordination-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-lease-v1-coordination-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-lease-v1-coordination-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-lease-v1-coordination-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-lease-v1-coordination-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-lease-v1-coordination-k8s-io" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-lease-v1-coordination-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-lease-v1-coordination-k8s-io" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-lease-v1-coordination-k8s-io" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#localsubjectaccessreview-v1-authorization-k8s-io" class="nav-item">LocalSubjectAccessReview v1 authorization.k8s.io</A></LI>
+ <UL id="localsubjectaccessreview-v1-authorization-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-localsubjectaccessreview-v1-authorization-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-localsubjectaccessreview-v1-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-localsubjectaccessreview-v1-authorization-k8s-io" class="nav-item">Create</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#namespace-v1-core" class="nav-item">Namespace v1 core</A></LI>
+ <UL id="namespace-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-namespace-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-namespace-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-namespace-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-namespace-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-namespace-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-namespace-v1-core" class="nav-item">Delete</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-namespace-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-namespace-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-namespace-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-namespace-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-namespace-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-namespace-v1-core" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-namespace-v1-core-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-namespace-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-namespace-v1-core" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-namespace-v1-core" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-namespace-v1-core" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#node-v1-core" class="nav-item">Node v1 core</A></LI>
+ <UL id="node-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-node-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-node-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-node-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-node-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-node-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-node-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-node-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-node-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-node-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-node-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-node-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-node-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-node-v1-core" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-node-v1-core-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-node-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-node-v1-core" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-node-v1-core" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-node-v1-core" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-proxy-operations-node-v1-core-strong-" class="nav-item"><STRONG>Proxy Operations</STRONG></A></LI>
+   <UL id="-strong-proxy-operations-node-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-connect-proxy-node-v1-core" class="nav-item">Create Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#create-connect-proxy-path-node-v1-core" class="nav-item">Create Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#delete-connect-proxy-node-v1-core" class="nav-item">Delete Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#delete-connect-proxy-path-node-v1-core" class="nav-item">Delete Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#get-connect-proxy-node-v1-core" class="nav-item">Get Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#get-connect-proxy-path-node-v1-core" class="nav-item">Get Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#head-connect-proxy-node-v1-core" class="nav-item">Head Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#head-connect-proxy-path-node-v1-core" class="nav-item">Head Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#replace-connect-proxy-node-v1-core" class="nav-item">Replace Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#replace-connect-proxy-path-node-v1-core" class="nav-item">Replace Connect Proxy Path</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#persistentvolume-v1-core" class="nav-item">PersistentVolume v1 core</A></LI>
+ <UL id="persistentvolume-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-persistentvolume-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-persistentvolume-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-persistentvolume-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-persistentvolume-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-persistentvolume-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-persistentvolume-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-persistentvolume-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-persistentvolume-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-persistentvolume-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-persistentvolume-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-persistentvolume-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-persistentvolume-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-persistentvolume-v1-core" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-persistentvolume-v1-core-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-persistentvolume-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-persistentvolume-v1-core" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-persistentvolume-v1-core" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-persistentvolume-v1-core" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">PriorityLevelConfiguration v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+ <UL id="prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#resourcequota-v1-core" class="nav-item">ResourceQuota v1 core</A></LI>
+ <UL id="resourcequota-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-resourcequota-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-resourcequota-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-resourcequota-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-resourcequota-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-resourcequota-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-resourcequota-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-resourcequota-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-resourcequota-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-resourcequota-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-resourcequota-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-resourcequota-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-resourcequota-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-resourcequota-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-resourcequota-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-resourcequota-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-resourcequota-v1-core-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-resourcequota-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-resourcequota-v1-core" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-resourcequota-v1-core" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-resourcequota-v1-core" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#role-v1-rbac-authorization-k8s-io" class="nav-item">Role v1 rbac.authorization.k8s.io</A></LI>
+ <UL id="role-v1-rbac-authorization-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-role-v1-rbac-authorization-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-role-v1-rbac-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-role-v1-rbac-authorization-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-role-v1-rbac-authorization-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-role-v1-rbac-authorization-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-role-v1-rbac-authorization-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-role-v1-rbac-authorization-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-role-v1-rbac-authorization-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-role-v1-rbac-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-role-v1-rbac-authorization-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-role-v1-rbac-authorization-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-role-v1-rbac-authorization-k8s-io" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-role-v1-rbac-authorization-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-role-v1-rbac-authorization-k8s-io" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-role-v1-rbac-authorization-k8s-io" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">RoleBinding v1 rbac.authorization.k8s.io</A></LI>
+ <UL id="rolebinding-v1-rbac-authorization-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-rolebinding-v1-rbac-authorization-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-rolebinding-v1-rbac-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-rolebinding-v1-rbac-authorization-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-rolebinding-v1-rbac-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#runtimeclass-v1-node-k8s-io" class="nav-item">RuntimeClass v1 node.k8s.io</A></LI>
+ <UL id="runtimeclass-v1-node-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-runtimeclass-v1-node-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-runtimeclass-v1-node-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-runtimeclass-v1-node-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-runtimeclass-v1-node-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-runtimeclass-v1-node-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-runtimeclass-v1-node-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-runtimeclass-v1-node-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-runtimeclass-v1-node-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-runtimeclass-v1-node-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-runtimeclass-v1-node-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-runtimeclass-v1-node-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-runtimeclass-v1-node-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-runtimeclass-v1-node-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#selfsubjectaccessreview-v1-authorization-k8s-io" class="nav-item">SelfSubjectAccessReview v1 authorization.k8s.io</A></LI>
+ <UL id="selfsubjectaccessreview-v1-authorization-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-selfsubjectaccessreview-v1-authorization-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-selfsubjectaccessreview-v1-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-selfsubjectaccessreview-v1-authorization-k8s-io" class="nav-item">Create</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#selfsubjectrulesreview-v1-authorization-k8s-io" class="nav-item">SelfSubjectRulesReview v1 authorization.k8s.io</A></LI>
+ <UL id="selfsubjectrulesreview-v1-authorization-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-selfsubjectrulesreview-v1-authorization-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-selfsubjectrulesreview-v1-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-selfsubjectrulesreview-v1-authorization-k8s-io" class="nav-item">Create</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#serviceaccount-v1-core" class="nav-item">ServiceAccount v1 core</A></LI>
+ <UL id="serviceaccount-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-serviceaccount-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-serviceaccount-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-serviceaccount-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-serviceaccount-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-serviceaccount-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-serviceaccount-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-serviceaccount-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-serviceaccount-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-serviceaccount-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-serviceaccount-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-serviceaccount-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-serviceaccount-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-serviceaccount-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-serviceaccount-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-serviceaccount-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">StorageVersion v1alpha1 internal.apiserver.k8s.io</A></LI>
+ <UL id="storageversion-v1alpha1-internal-apiserver-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#subjectaccessreview-v1-authorization-k8s-io" class="nav-item">SubjectAccessReview v1 authorization.k8s.io</A></LI>
+ <UL id="subjectaccessreview-v1-authorization-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-subjectaccessreview-v1-authorization-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-subjectaccessreview-v1-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-subjectaccessreview-v1-authorization-k8s-io" class="nav-item">Create</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#tokenrequest-v1-authentication-k8s-io" class="nav-item">TokenRequest v1 authentication.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#tokenreview-v1-authentication-k8s-io" class="nav-item">TokenReview v1 authentication.k8s.io</A></LI>
+ <UL id="tokenreview-v1-authentication-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-tokenreview-v1-authentication-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-tokenreview-v1-authentication-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-tokenreview-v1-authentication-k8s-io" class="nav-item">Create</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#networkpolicy-v1-networking-k8s-io" class="nav-item">NetworkPolicy v1 networking.k8s.io</A></LI>
+ <UL id="networkpolicy-v1-networking-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-networkpolicy-v1-networking-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-networkpolicy-v1-networking-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-networkpolicy-v1-networking-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-networkpolicy-v1-networking-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-networkpolicy-v1-networking-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-networkpolicy-v1-networking-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-networkpolicy-v1-networking-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-networkpolicy-v1-networking-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-networkpolicy-v1-networking-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-networkpolicy-v1-networking-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-networkpolicy-v1-networking-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-networkpolicy-v1-networking-k8s-io" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-networkpolicy-v1-networking-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-networkpolicy-v1-networking-k8s-io" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-networkpolicy-v1-networking-k8s-io" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1 strong-nav"><A href="#-strong-definitions-strong-" class="nav-item"><STRONG>DEFINITIONS</STRONG></A></LI>
+</UL>
+ <UL id="-strong-definitions-strong--nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2"><A href="#apigroup-v1-meta" class="nav-item">APIGroup v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#apiresource-v1-meta" class="nav-item">APIResource v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#apiservicecondition-v1-apiregistration-k8s-io" class="nav-item">APIServiceCondition v1 apiregistration.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#apiversions-v1-meta" class="nav-item">APIVersions v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#awselasticblockstorevolumesource-v1-core" class="nav-item">AWSElasticBlockStoreVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#affinity-v1-core" class="nav-item">Affinity v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#aggregationrule-v1-rbac-authorization-k8s-io" class="nav-item">AggregationRule v1 rbac.authorization.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#allowedcsidriver-v1beta1-policy" class="nav-item">AllowedCSIDriver v1beta1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#allowedflexvolume-v1beta1-policy" class="nav-item">AllowedFlexVolume v1beta1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#allowedhostpath-v1beta1-policy" class="nav-item">AllowedHostPath v1beta1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#attachedvolume-v1-core" class="nav-item">AttachedVolume v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#azurediskvolumesource-v1-core" class="nav-item">AzureDiskVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#azurefilepersistentvolumesource-v1-core" class="nav-item">AzureFilePersistentVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#azurefilevolumesource-v1-core" class="nav-item">AzureFileVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#boundobjectreference-v1-authentication-k8s-io" class="nav-item">BoundObjectReference v1 authentication.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#csinodedriver-v1-storage-k8s-io" class="nav-item">CSINodeDriver v1 storage.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#csipersistentvolumesource-v1-core" class="nav-item">CSIPersistentVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#csivolumesource-v1-core" class="nav-item">CSIVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#capabilities-v1-core" class="nav-item">Capabilities v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#cephfspersistentvolumesource-v1-core" class="nav-item">CephFSPersistentVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#cephfsvolumesource-v1-core" class="nav-item">CephFSVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#certificatesigningrequestcondition-v1-certificates-k8s-io" class="nav-item">CertificateSigningRequestCondition v1 certificates.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#cinderpersistentvolumesource-v1-core" class="nav-item">CinderPersistentVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#cindervolumesource-v1-core" class="nav-item">CinderVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#clientipconfig-v1-core" class="nav-item">ClientIPConfig v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#componentcondition-v1-core" class="nav-item">ComponentCondition v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#condition-v1-meta" class="nav-item">Condition v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#configmapenvsource-v1-core" class="nav-item">ConfigMapEnvSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#configmapkeyselector-v1-core" class="nav-item">ConfigMapKeySelector v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#configmapnodeconfigsource-v1-core" class="nav-item">ConfigMapNodeConfigSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#configmapprojection-v1-core" class="nav-item">ConfigMapProjection v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#configmapvolumesource-v1-core" class="nav-item">ConfigMapVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#containerimage-v1-core" class="nav-item">ContainerImage v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#containerport-v1-core" class="nav-item">ContainerPort v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#containerresourcemetricsource-v2-autoscaling" class="nav-item">ContainerResourceMetricSource v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#containerresourcemetricstatus-v2-autoscaling" class="nav-item">ContainerResourceMetricStatus v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#containerstate-v1-core" class="nav-item">ContainerState v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#containerstaterunning-v1-core" class="nav-item">ContainerStateRunning v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#containerstateterminated-v1-core" class="nav-item">ContainerStateTerminated v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#containerstatewaiting-v1-core" class="nav-item">ContainerStateWaiting v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#crossversionobjectreference-v1-autoscaling" class="nav-item">CrossVersionObjectReference v1 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#customresourcecolumndefinition-v1-apiextensions-k8s-io" class="nav-item">CustomResourceColumnDefinition v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#customresourceconversion-v1-apiextensions-k8s-io" class="nav-item">CustomResourceConversion v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#customresourcedefinitioncondition-v1-apiextensions-k8s-io" class="nav-item">CustomResourceDefinitionCondition v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#customresourcedefinitionnames-v1-apiextensions-k8s-io" class="nav-item">CustomResourceDefinitionNames v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#customresourcedefinitionversion-v1-apiextensions-k8s-io" class="nav-item">CustomResourceDefinitionVersion v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#customresourcesubresourcescale-v1-apiextensions-k8s-io" class="nav-item">CustomResourceSubresourceScale v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#customresourcesubresourcestatus-v1-apiextensions-k8s-io" class="nav-item">CustomResourceSubresourceStatus v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#customresourcesubresources-v1-apiextensions-k8s-io" class="nav-item">CustomResourceSubresources v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#customresourcevalidation-v1-apiextensions-k8s-io" class="nav-item">CustomResourceValidation v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#daemonendpoint-v1-core" class="nav-item">DaemonEndpoint v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#daemonsetcondition-v1-apps" class="nav-item">DaemonSetCondition v1 apps</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#daemonsetupdatestrategy-v1-apps" class="nav-item">DaemonSetUpdateStrategy v1 apps</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#deleteoptions-v1-meta" class="nav-item">DeleteOptions v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#deploymentcondition-v1-apps" class="nav-item">DeploymentCondition v1 apps</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#downwardapiprojection-v1-core" class="nav-item">DownwardAPIProjection v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#downwardapivolumefile-v1-core" class="nav-item">DownwardAPIVolumeFile v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#downwardapivolumesource-v1-core" class="nav-item">DownwardAPIVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#emptydirvolumesource-v1-core" class="nav-item">EmptyDirVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#endpoint-v1-discovery-k8s-io" class="nav-item">Endpoint v1 discovery.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#endpointaddress-v1-core" class="nav-item">EndpointAddress v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#endpointconditions-v1-discovery-k8s-io" class="nav-item">EndpointConditions v1 discovery.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#endpointhints-v1-discovery-k8s-io" class="nav-item">EndpointHints v1 discovery.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#endpointport-v1-core" class="nav-item">EndpointPort v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#endpointsubset-v1-core" class="nav-item">EndpointSubset v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#envfromsource-v1-core" class="nav-item">EnvFromSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#envvar-v1-core" class="nav-item">EnvVar v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#envvarsource-v1-core" class="nav-item">EnvVarSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#ephemeralcontainer-v1-core" class="nav-item">EphemeralContainer v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#ephemeralvolumesource-v1-core" class="nav-item">EphemeralVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#eventseries-v1-events-k8s-io" class="nav-item">EventSeries v1 events.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#eventsource-v1-core" class="nav-item">EventSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#eviction-v1-policy" class="nav-item">Eviction v1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#execaction-v1-core" class="nav-item">ExecAction v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#externaldocumentation-v1-apiextensions-k8s-io" class="nav-item">ExternalDocumentation v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#externalmetricsource-v2-autoscaling" class="nav-item">ExternalMetricSource v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#externalmetricstatus-v2-autoscaling" class="nav-item">ExternalMetricStatus v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#fcvolumesource-v1-core" class="nav-item">FCVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#fsgroupstrategyoptions-v1beta1-policy" class="nav-item">FSGroupStrategyOptions v1beta1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#fieldsv1-v1-meta" class="nav-item">FieldsV1 v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#flexpersistentvolumesource-v1-core" class="nav-item">FlexPersistentVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#flexvolumesource-v1-core" class="nav-item">FlexVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#flockervolumesource-v1-core" class="nav-item">FlockerVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#flowdistinguishermethod-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">FlowDistinguisherMethod v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">FlowSchema v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#flowschemacondition-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">FlowSchemaCondition v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#forzone-v1-discovery-k8s-io" class="nav-item">ForZone v1 discovery.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#gcepersistentdiskvolumesource-v1-core" class="nav-item">GCEPersistentDiskVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#grpcaction-v1-core" class="nav-item">GRPCAction v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#gitrepovolumesource-v1-core" class="nav-item">GitRepoVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#glusterfspersistentvolumesource-v1-core" class="nav-item">GlusterfsPersistentVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#glusterfsvolumesource-v1-core" class="nav-item">GlusterfsVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#groupsubject-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">GroupSubject v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#groupversionfordiscovery-v1-meta" class="nav-item">GroupVersionForDiscovery v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#hpascalingpolicy-v2-autoscaling" class="nav-item">HPAScalingPolicy v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#hpascalingrules-v2-autoscaling" class="nav-item">HPAScalingRules v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#httpgetaction-v1-core" class="nav-item">HTTPGetAction v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#httpheader-v1-core" class="nav-item">HTTPHeader v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#httpingresspath-v1-networking-k8s-io" class="nav-item">HTTPIngressPath v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#httpingressrulevalue-v1-networking-k8s-io" class="nav-item">HTTPIngressRuleValue v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#horizontalpodautoscaler-v2-autoscaling" class="nav-item">HorizontalPodAutoscaler v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#horizontalpodautoscalerbehavior-v2-autoscaling" class="nav-item">HorizontalPodAutoscalerBehavior v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#horizontalpodautoscalercondition-v2-autoscaling" class="nav-item">HorizontalPodAutoscalerCondition v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#hostalias-v1-core" class="nav-item">HostAlias v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#hostpathvolumesource-v1-core" class="nav-item">HostPathVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#hostportrange-v1beta1-policy" class="nav-item">HostPortRange v1beta1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#idrange-v1beta1-policy" class="nav-item">IDRange v1beta1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#ipblock-v1-networking-k8s-io" class="nav-item">IPBlock v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#iscsipersistentvolumesource-v1-core" class="nav-item">ISCSIPersistentVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#iscsivolumesource-v1-core" class="nav-item">ISCSIVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#ingressbackend-v1-networking-k8s-io" class="nav-item">IngressBackend v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#ingressclassparametersreference-v1-networking-k8s-io" class="nav-item">IngressClassParametersReference v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#ingressrule-v1-networking-k8s-io" class="nav-item">IngressRule v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#ingressservicebackend-v1-networking-k8s-io" class="nav-item">IngressServiceBackend v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#ingresstls-v1-networking-k8s-io" class="nav-item">IngressTLS v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#json-v1-apiextensions-k8s-io" class="nav-item">JSON v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#jsonschemaprops-v1-apiextensions-k8s-io" class="nav-item">JSONSchemaProps v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#jsonschemapropsorarray-v1-apiextensions-k8s-io" class="nav-item">JSONSchemaPropsOrArray v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#jsonschemapropsorbool-v1-apiextensions-k8s-io" class="nav-item">JSONSchemaPropsOrBool v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#jobcondition-v1-batch" class="nav-item">JobCondition v1 batch</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#jobtemplatespec-v1-batch" class="nav-item">JobTemplateSpec v1 batch</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#keytopath-v1-core" class="nav-item">KeyToPath v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#labelselector-v1-meta" class="nav-item">LabelSelector v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#labelselectorrequirement-v1-meta" class="nav-item">LabelSelectorRequirement v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#lifecycle-v1-core" class="nav-item">Lifecycle v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#lifecyclehandler-v1-core" class="nav-item">LifecycleHandler v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#limitrangeitem-v1-core" class="nav-item">LimitRangeItem v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#limitresponse-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">LimitResponse v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#limitedprioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">LimitedPriorityLevelConfiguration v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#listmeta-v1-meta" class="nav-item">ListMeta v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#loadbalanceringress-v1-core" class="nav-item">LoadBalancerIngress v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#loadbalancerstatus-v1-core" class="nav-item">LoadBalancerStatus v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#localobjectreference-v1-core" class="nav-item">LocalObjectReference v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#localvolumesource-v1-core" class="nav-item">LocalVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#managedfieldsentry-v1-meta" class="nav-item">ManagedFieldsEntry v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#metricidentifier-v2-autoscaling" class="nav-item">MetricIdentifier v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#metricspec-v2-autoscaling" class="nav-item">MetricSpec v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#metricstatus-v2-autoscaling" class="nav-item">MetricStatus v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#metrictarget-v2-autoscaling" class="nav-item">MetricTarget v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#metricvaluestatus-v2-autoscaling" class="nav-item">MetricValueStatus v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#microtime-v1-meta" class="nav-item">MicroTime v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#mutatingwebhook-v1-admissionregistration-k8s-io" class="nav-item">MutatingWebhook v1 admissionregistration.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nfsvolumesource-v1-core" class="nav-item">NFSVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#namespacecondition-v1-core" class="nav-item">NamespaceCondition v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#networkpolicyegressrule-v1-networking-k8s-io" class="nav-item">NetworkPolicyEgressRule v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#networkpolicyingressrule-v1-networking-k8s-io" class="nav-item">NetworkPolicyIngressRule v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#networkpolicypeer-v1-networking-k8s-io" class="nav-item">NetworkPolicyPeer v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#networkpolicyport-v1-networking-k8s-io" class="nav-item">NetworkPolicyPort v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nodeaddress-v1-core" class="nav-item">NodeAddress v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nodeaffinity-v1-core" class="nav-item">NodeAffinity v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nodecondition-v1-core" class="nav-item">NodeCondition v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nodeconfigsource-v1-core" class="nav-item">NodeConfigSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nodeconfigstatus-v1-core" class="nav-item">NodeConfigStatus v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nodedaemonendpoints-v1-core" class="nav-item">NodeDaemonEndpoints v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nodeselector-v1-core" class="nav-item">NodeSelector v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nodeselectorrequirement-v1-core" class="nav-item">NodeSelectorRequirement v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nodeselectorterm-v1-core" class="nav-item">NodeSelectorTerm v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nodesysteminfo-v1-core" class="nav-item">NodeSystemInfo v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nonresourceattributes-v1-authorization-k8s-io" class="nav-item">NonResourceAttributes v1 authorization.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nonresourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">NonResourcePolicyRule v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nonresourcerule-v1-authorization-k8s-io" class="nav-item">NonResourceRule v1 authorization.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#objectfieldselector-v1-core" class="nav-item">ObjectFieldSelector v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#objectmeta-v1-meta" class="nav-item">ObjectMeta v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#objectmetricsource-v2-autoscaling" class="nav-item">ObjectMetricSource v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#objectmetricstatus-v2-autoscaling" class="nav-item">ObjectMetricStatus v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#objectreference-v1-core" class="nav-item">ObjectReference v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#overhead-v1-node-k8s-io" class="nav-item">Overhead v1 node.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#ownerreference-v1-meta" class="nav-item">OwnerReference v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#patch-v1-meta" class="nav-item">Patch v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#persistentvolumeclaimcondition-v1-core" class="nav-item">PersistentVolumeClaimCondition v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#persistentvolumeclaimtemplate-v1-core" class="nav-item">PersistentVolumeClaimTemplate v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#persistentvolumeclaimvolumesource-v1-core" class="nav-item">PersistentVolumeClaimVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#photonpersistentdiskvolumesource-v1-core" class="nav-item">PhotonPersistentDiskVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#podaffinity-v1-core" class="nav-item">PodAffinity v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#podaffinityterm-v1-core" class="nav-item">PodAffinityTerm v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#podantiaffinity-v1-core" class="nav-item">PodAntiAffinity v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#podcondition-v1-core" class="nav-item">PodCondition v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#poddnsconfig-v1-core" class="nav-item">PodDNSConfig v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#poddnsconfigoption-v1-core" class="nav-item">PodDNSConfigOption v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#podip-v1-core" class="nav-item">PodIP v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#podos-v1-core" class="nav-item">PodOS v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#podreadinessgate-v1-core" class="nav-item">PodReadinessGate v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#podsecuritycontext-v1-core" class="nav-item">PodSecurityContext v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#podsmetricsource-v2-autoscaling" class="nav-item">PodsMetricSource v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#podsmetricstatus-v2-autoscaling" class="nav-item">PodsMetricStatus v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#policyrule-v1-rbac-authorization-k8s-io" class="nav-item">PolicyRule v1 rbac.authorization.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#policyruleswithsubjects-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">PolicyRulesWithSubjects v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#portstatus-v1-core" class="nav-item">PortStatus v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#portworxvolumesource-v1-core" class="nav-item">PortworxVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#preconditions-v1-meta" class="nav-item">Preconditions v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#preferredschedulingterm-v1-core" class="nav-item">PreferredSchedulingTerm v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">PriorityLevelConfiguration v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#prioritylevelconfigurationcondition-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">PriorityLevelConfigurationCondition v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#prioritylevelconfigurationreference-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">PriorityLevelConfigurationReference v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#probe-v1-core" class="nav-item">Probe v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#projectedvolumesource-v1-core" class="nav-item">ProjectedVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#quantity-resource-core" class="nav-item">Quantity resource core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#queuingconfiguration-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">QueuingConfiguration v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#quobytevolumesource-v1-core" class="nav-item">QuobyteVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#rbdpersistentvolumesource-v1-core" class="nav-item">RBDPersistentVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#rbdvolumesource-v1-core" class="nav-item">RBDVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#replicasetcondition-v1-apps" class="nav-item">ReplicaSetCondition v1 apps</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#replicationcontrollercondition-v1-core" class="nav-item">ReplicationControllerCondition v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#resourceattributes-v1-authorization-k8s-io" class="nav-item">ResourceAttributes v1 authorization.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#resourcefieldselector-v1-core" class="nav-item">ResourceFieldSelector v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#resourcemetricsource-v2-autoscaling" class="nav-item">ResourceMetricSource v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#resourcemetricstatus-v2-autoscaling" class="nav-item">ResourceMetricStatus v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#resourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">ResourcePolicyRule v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#resourcerequirements-v1-core" class="nav-item">ResourceRequirements v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#resourcerule-v1-authorization-k8s-io" class="nav-item">ResourceRule v1 authorization.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#roleref-v1-rbac-authorization-k8s-io" class="nav-item">RoleRef v1 rbac.authorization.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#rollingupdatestatefulsetstrategy-v1-apps" class="nav-item">RollingUpdateStatefulSetStrategy v1 apps</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#rulewithoperations-v1-admissionregistration-k8s-io" class="nav-item">RuleWithOperations v1 admissionregistration.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#runasgroupstrategyoptions-v1beta1-policy" class="nav-item">RunAsGroupStrategyOptions v1beta1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#runasuserstrategyoptions-v1beta1-policy" class="nav-item">RunAsUserStrategyOptions v1beta1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#runtimeclassstrategyoptions-v1beta1-policy" class="nav-item">RuntimeClassStrategyOptions v1beta1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#selinuxoptions-v1-core" class="nav-item">SELinuxOptions v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#selinuxstrategyoptions-v1beta1-policy" class="nav-item">SELinuxStrategyOptions v1beta1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#scale-v1-autoscaling" class="nav-item">Scale v1 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#scaleiopersistentvolumesource-v1-core" class="nav-item">ScaleIOPersistentVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#scaleiovolumesource-v1-core" class="nav-item">ScaleIOVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#scheduling-v1-node-k8s-io" class="nav-item">Scheduling v1 node.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#scopeselector-v1-core" class="nav-item">ScopeSelector v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#scopedresourceselectorrequirement-v1-core" class="nav-item">ScopedResourceSelectorRequirement v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#seccompprofile-v1-core" class="nav-item">SeccompProfile v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#secretenvsource-v1-core" class="nav-item">SecretEnvSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#secretkeyselector-v1-core" class="nav-item">SecretKeySelector v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#secretprojection-v1-core" class="nav-item">SecretProjection v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#secretreference-v1-core" class="nav-item">SecretReference v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#secretvolumesource-v1-core" class="nav-item">SecretVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#securitycontext-v1-core" class="nav-item">SecurityContext v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#serveraddressbyclientcidr-v1-meta" class="nav-item">ServerAddressByClientCIDR v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#serverstorageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">ServerStorageVersion v1alpha1 internal.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#serviceaccountsubject-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">ServiceAccountSubject v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#serviceaccounttokenprojection-v1-core" class="nav-item">ServiceAccountTokenProjection v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#servicebackendport-v1-networking-k8s-io" class="nav-item">ServiceBackendPort v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#serviceport-v1-core" class="nav-item">ServicePort v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#servicereference-v1-admissionregistration-k8s-io" class="nav-item">ServiceReference v1 admissionregistration.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#sessionaffinityconfig-v1-core" class="nav-item">SessionAffinityConfig v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#statefulsetcondition-v1-apps" class="nav-item">StatefulSetCondition v1 apps</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#statefulsetpersistentvolumeclaimretentionpolicy-v1-apps" class="nav-item">StatefulSetPersistentVolumeClaimRetentionPolicy v1 apps</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#statefulsetupdatestrategy-v1-apps" class="nav-item">StatefulSetUpdateStrategy v1 apps</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#status-v1-meta" class="nav-item">Status v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#statuscause-v1-meta" class="nav-item">StatusCause v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#statusdetails-v1-meta" class="nav-item">StatusDetails v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#storageospersistentvolumesource-v1-core" class="nav-item">StorageOSPersistentVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#storageosvolumesource-v1-core" class="nav-item">StorageOSVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#storageversioncondition-v1alpha1-internal-apiserver-k8s-io" class="nav-item">StorageVersionCondition v1alpha1 internal.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#subject-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Subject v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#subjectrulesreviewstatus-v1-authorization-k8s-io" class="nav-item">SubjectRulesReviewStatus v1 authorization.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#supplementalgroupsstrategyoptions-v1beta1-policy" class="nav-item">SupplementalGroupsStrategyOptions v1beta1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#sysctl-v1-core" class="nav-item">Sysctl v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#tcpsocketaction-v1-core" class="nav-item">TCPSocketAction v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#taint-v1-core" class="nav-item">Taint v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#time-v1-meta" class="nav-item">Time v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#toleration-v1-core" class="nav-item">Toleration v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#topologyselectorlabelrequirement-v1-core" class="nav-item">TopologySelectorLabelRequirement v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#topologyselectorterm-v1-core" class="nav-item">TopologySelectorTerm v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#topologyspreadconstraint-v1-core" class="nav-item">TopologySpreadConstraint v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#typedlocalobjectreference-v1-core" class="nav-item">TypedLocalObjectReference v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#uncountedterminatedpods-v1-batch" class="nav-item">UncountedTerminatedPods v1 batch</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#userinfo-v1-authentication-k8s-io" class="nav-item">UserInfo v1 authentication.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#usersubject-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">UserSubject v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#validatingwebhook-v1-admissionregistration-k8s-io" class="nav-item">ValidatingWebhook v1 admissionregistration.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#validationrule-v1-apiextensions-k8s-io" class="nav-item">ValidationRule v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#volumeattachmentsource-v1-storage-k8s-io" class="nav-item">VolumeAttachmentSource v1 storage.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#volumedevice-v1-core" class="nav-item">VolumeDevice v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#volumeerror-v1-storage-k8s-io" class="nav-item">VolumeError v1 storage.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#volumemount-v1-core" class="nav-item">VolumeMount v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#volumenodeaffinity-v1-core" class="nav-item">VolumeNodeAffinity v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#volumenoderesources-v1-storage-k8s-io" class="nav-item">VolumeNodeResources v1 storage.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#volumeprojection-v1-core" class="nav-item">VolumeProjection v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#vspherevirtualdiskvolumesource-v1-core" class="nav-item">VsphereVirtualDiskVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#watchevent-v1-meta" class="nav-item">WatchEvent v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#webhookclientconfig-v1-admissionregistration-k8s-io" class="nav-item">WebhookClientConfig v1 admissionregistration.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#webhookconversion-v1-apiextensions-k8s-io" class="nav-item">WebhookConversion v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#weightedpodaffinityterm-v1-core" class="nav-item">WeightedPodAffinityTerm v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#windowssecuritycontextoptions-v1-core" class="nav-item">WindowsSecurityContextOptions v1 core</A></LI>
+ </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1 strong-nav"><A href="#-strong-old-api-versions-strong-" class="nav-item"><STRONG>OLD API VERSIONS</STRONG></A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#csistoragecapacity-v1alpha1-storage-k8s-io" class="nav-item">CSIStorageCapacity v1alpha1 storage.k8s.io</A></LI>
+ <UL id="csistoragecapacity-v1alpha1-storage-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-csistoragecapacity-v1alpha1-storage-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-csistoragecapacity-v1alpha1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-csistoragecapacity-v1alpha1-storage-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-csistoragecapacity-v1alpha1-storage-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-csistoragecapacity-v1alpha1-storage-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-csistoragecapacity-v1alpha1-storage-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-csistoragecapacity-v1alpha1-storage-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-csistoragecapacity-v1alpha1-storage-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-csistoragecapacity-v1alpha1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-csistoragecapacity-v1alpha1-storage-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-csistoragecapacity-v1alpha1-storage-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-csistoragecapacity-v1alpha1-storage-k8s-io" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-csistoragecapacity-v1alpha1-storage-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-csistoragecapacity-v1alpha1-storage-k8s-io" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-csistoragecapacity-v1alpha1-storage-k8s-io" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#containerresourcemetricsource-v2beta2-autoscaling" class="nav-item">ContainerResourceMetricSource v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#containerresourcemetricsource-v2beta1-autoscaling" class="nav-item">ContainerResourceMetricSource v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#containerresourcemetricstatus-v2beta2-autoscaling" class="nav-item">ContainerResourceMetricStatus v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#containerresourcemetricstatus-v2beta1-autoscaling" class="nav-item">ContainerResourceMetricStatus v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#cronjob-v1beta1-batch" class="nav-item">CronJob v1beta1 batch</A></LI>
+ <UL id="cronjob-v1beta1-batch-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-cronjob-v1beta1-batch-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-cronjob-v1beta1-batch-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-cronjob-v1beta1-batch" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-cronjob-v1beta1-batch" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-cronjob-v1beta1-batch" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-cronjob-v1beta1-batch" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-cronjob-v1beta1-batch" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-cronjob-v1beta1-batch-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-cronjob-v1beta1-batch-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-cronjob-v1beta1-batch" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-cronjob-v1beta1-batch" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-cronjob-v1beta1-batch" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-cronjob-v1beta1-batch" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-cronjob-v1beta1-batch" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-cronjob-v1beta1-batch" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-cronjob-v1beta1-batch-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-cronjob-v1beta1-batch-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-cronjob-v1beta1-batch" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-cronjob-v1beta1-batch" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-cronjob-v1beta1-batch" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#crossversionobjectreference-v2-autoscaling" class="nav-item">CrossVersionObjectReference v2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#crossversionobjectreference-v2beta2-autoscaling" class="nav-item">CrossVersionObjectReference v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#crossversionobjectreference-v2beta1-autoscaling" class="nav-item">CrossVersionObjectReference v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#endpoint-v1beta1-discovery-k8s-io" class="nav-item">Endpoint v1beta1 discovery.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#endpointconditions-v1beta1-discovery-k8s-io" class="nav-item">EndpointConditions v1beta1 discovery.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#endpointhints-v1beta1-discovery-k8s-io" class="nav-item">EndpointHints v1beta1 discovery.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#endpointport-v1-discovery-k8s-io" class="nav-item">EndpointPort v1 discovery.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#endpointport-v1beta1-discovery-k8s-io" class="nav-item">EndpointPort v1beta1 discovery.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#endpointslice-v1beta1-discovery-k8s-io" class="nav-item">EndpointSlice v1beta1 discovery.k8s.io</A></LI>
+ <UL id="endpointslice-v1beta1-discovery-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-endpointslice-v1beta1-discovery-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-endpointslice-v1beta1-discovery-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-endpointslice-v1beta1-discovery-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-endpointslice-v1beta1-discovery-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-endpointslice-v1beta1-discovery-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-endpointslice-v1beta1-discovery-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-endpointslice-v1beta1-discovery-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-endpointslice-v1beta1-discovery-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-endpointslice-v1beta1-discovery-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-endpointslice-v1beta1-discovery-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-endpointslice-v1beta1-discovery-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-endpointslice-v1beta1-discovery-k8s-io" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-endpointslice-v1beta1-discovery-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-endpointslice-v1beta1-discovery-k8s-io" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-endpointslice-v1beta1-discovery-k8s-io" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#event-v1-core" class="nav-item">Event v1 core</A></LI>
+ <UL id="event-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-event-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-event-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-event-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-event-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-event-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-event-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-event-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-event-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-event-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-event-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-event-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-event-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-event-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-event-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-event-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#event-v1beta1-events-k8s-io" class="nav-item">Event v1beta1 events.k8s.io</A></LI>
+ <UL id="event-v1beta1-events-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-event-v1beta1-events-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-event-v1beta1-events-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-event-v1beta1-events-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-event-v1beta1-events-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-event-v1beta1-events-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-event-v1beta1-events-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-event-v1beta1-events-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-event-v1beta1-events-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-event-v1beta1-events-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-event-v1beta1-events-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-event-v1beta1-events-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-event-v1beta1-events-k8s-io" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-event-v1beta1-events-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-event-v1beta1-events-k8s-io" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-event-v1beta1-events-k8s-io" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#eventseries-v1-core" class="nav-item">EventSeries v1 core</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#eventseries-v1beta1-events-k8s-io" class="nav-item">EventSeries v1beta1 events.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#externalmetricsource-v2beta2-autoscaling" class="nav-item">ExternalMetricSource v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#externalmetricsource-v2beta1-autoscaling" class="nav-item">ExternalMetricSource v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#externalmetricstatus-v2beta2-autoscaling" class="nav-item">ExternalMetricStatus v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#externalmetricstatus-v2beta1-autoscaling" class="nav-item">ExternalMetricStatus v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#flowdistinguishermethod-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">FlowDistinguisherMethod v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">FlowSchema v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+ <UL id="flowschema-v1beta1-flowcontrol-apiserver-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#flowschemacondition-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">FlowSchemaCondition v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#forzone-v1beta1-discovery-k8s-io" class="nav-item">ForZone v1beta1 discovery.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#groupsubject-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">GroupSubject v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#hpascalingpolicy-v2beta2-autoscaling" class="nav-item">HPAScalingPolicy v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#hpascalingrules-v2beta2-autoscaling" class="nav-item">HPAScalingRules v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#horizontalpodautoscaler-v1-autoscaling" class="nav-item">HorizontalPodAutoscaler v1 autoscaling</A></LI>
+ <UL id="horizontalpodautoscaler-v1-autoscaling-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-horizontalpodautoscaler-v1-autoscaling-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-horizontalpodautoscaler-v1-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-horizontalpodautoscaler-v1-autoscaling-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-horizontalpodautoscaler-v1-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-horizontalpodautoscaler-v1-autoscaling" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-horizontalpodautoscaler-v1-autoscaling" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-horizontalpodautoscaler-v1-autoscaling-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-horizontalpodautoscaler-v1-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">HorizontalPodAutoscaler v2beta2 autoscaling</A></LI>
+ <UL id="horizontalpodautoscaler-v2beta2-autoscaling-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">HorizontalPodAutoscaler v2beta1 autoscaling</A></LI>
+ <UL id="horizontalpodautoscaler-v2beta1-autoscaling-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#horizontalpodautoscalerbehavior-v2beta2-autoscaling" class="nav-item">HorizontalPodAutoscalerBehavior v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#horizontalpodautoscalercondition-v2beta2-autoscaling" class="nav-item">HorizontalPodAutoscalerCondition v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#horizontalpodautoscalercondition-v2beta1-autoscaling" class="nav-item">HorizontalPodAutoscalerCondition v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#jobtemplatespec-v1beta1-batch" class="nav-item">JobTemplateSpec v1beta1 batch</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#limitresponse-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">LimitResponse v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#limitedprioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">LimitedPriorityLevelConfiguration v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#metricidentifier-v2beta2-autoscaling" class="nav-item">MetricIdentifier v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#metricspec-v2beta2-autoscaling" class="nav-item">MetricSpec v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#metricspec-v2beta1-autoscaling" class="nav-item">MetricSpec v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#metricstatus-v2beta2-autoscaling" class="nav-item">MetricStatus v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#metricstatus-v2beta1-autoscaling" class="nav-item">MetricStatus v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#metrictarget-v2beta2-autoscaling" class="nav-item">MetricTarget v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#metricvaluestatus-v2beta2-autoscaling" class="nav-item">MetricValueStatus v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#nonresourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">NonResourcePolicyRule v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#objectmetricsource-v2beta2-autoscaling" class="nav-item">ObjectMetricSource v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#objectmetricsource-v2beta1-autoscaling" class="nav-item">ObjectMetricSource v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#objectmetricstatus-v2beta2-autoscaling" class="nav-item">ObjectMetricStatus v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#objectmetricstatus-v2beta1-autoscaling" class="nav-item">ObjectMetricStatus v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#overhead-v1beta1-node-k8s-io" class="nav-item">Overhead v1beta1 node.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#overhead-v1alpha1-node-k8s-io" class="nav-item">Overhead v1alpha1 node.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#poddisruptionbudget-v1beta1-policy" class="nav-item">PodDisruptionBudget v1beta1 policy</A></LI>
+ <UL id="poddisruptionbudget-v1beta1-policy-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-poddisruptionbudget-v1beta1-policy-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-poddisruptionbudget-v1beta1-policy-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-poddisruptionbudget-v1beta1-policy" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-poddisruptionbudget-v1beta1-policy" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-poddisruptionbudget-v1beta1-policy" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-poddisruptionbudget-v1beta1-policy" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-poddisruptionbudget-v1beta1-policy" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-poddisruptionbudget-v1beta1-policy-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-poddisruptionbudget-v1beta1-policy-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-poddisruptionbudget-v1beta1-policy" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-poddisruptionbudget-v1beta1-policy" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-poddisruptionbudget-v1beta1-policy" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-poddisruptionbudget-v1beta1-policy" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-poddisruptionbudget-v1beta1-policy" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-poddisruptionbudget-v1beta1-policy" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-poddisruptionbudget-v1beta1-policy-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-poddisruptionbudget-v1beta1-policy-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-poddisruptionbudget-v1beta1-policy" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-poddisruptionbudget-v1beta1-policy" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-poddisruptionbudget-v1beta1-policy" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#podsmetricsource-v2beta2-autoscaling" class="nav-item">PodsMetricSource v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#podsmetricsource-v2beta1-autoscaling" class="nav-item">PodsMetricSource v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#podsmetricstatus-v2beta2-autoscaling" class="nav-item">PodsMetricStatus v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#podsmetricstatus-v2beta1-autoscaling" class="nav-item">PodsMetricStatus v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#policyruleswithsubjects-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">PolicyRulesWithSubjects v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">PriorityLevelConfiguration v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+ <UL id="prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#prioritylevelconfigurationcondition-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">PriorityLevelConfigurationCondition v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#prioritylevelconfigurationreference-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">PriorityLevelConfigurationReference v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#queuingconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">QueuingConfiguration v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#resourcemetricsource-v2beta2-autoscaling" class="nav-item">ResourceMetricSource v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#resourcemetricsource-v2beta1-autoscaling" class="nav-item">ResourceMetricSource v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#resourcemetricstatus-v2beta2-autoscaling" class="nav-item">ResourceMetricStatus v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#resourcemetricstatus-v2beta1-autoscaling" class="nav-item">ResourceMetricStatus v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#resourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">ResourcePolicyRule v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#runtimeclass-v1beta1-node-k8s-io" class="nav-item">RuntimeClass v1beta1 node.k8s.io</A></LI>
+ <UL id="runtimeclass-v1beta1-node-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-runtimeclass-v1beta1-node-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-runtimeclass-v1beta1-node-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-runtimeclass-v1beta1-node-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-runtimeclass-v1beta1-node-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-runtimeclass-v1beta1-node-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-runtimeclass-v1beta1-node-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-runtimeclass-v1beta1-node-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-runtimeclass-v1beta1-node-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-runtimeclass-v1beta1-node-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-runtimeclass-v1beta1-node-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-runtimeclass-v1beta1-node-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-runtimeclass-v1beta1-node-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-runtimeclass-v1beta1-node-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#runtimeclass-v1alpha1-node-k8s-io" class="nav-item">RuntimeClass v1alpha1 node.k8s.io</A></LI>
+ <UL id="runtimeclass-v1alpha1-node-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-runtimeclass-v1alpha1-node-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-runtimeclass-v1alpha1-node-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-runtimeclass-v1alpha1-node-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-runtimeclass-v1alpha1-node-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-runtimeclass-v1alpha1-node-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-runtimeclass-v1alpha1-node-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-runtimeclass-v1alpha1-node-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-runtimeclass-v1alpha1-node-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-runtimeclass-v1alpha1-node-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-runtimeclass-v1alpha1-node-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-runtimeclass-v1alpha1-node-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-runtimeclass-v1alpha1-node-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-runtimeclass-v1alpha1-node-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#scheduling-v1beta1-node-k8s-io" class="nav-item">Scheduling v1beta1 node.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#scheduling-v1alpha1-node-k8s-io" class="nav-item">Scheduling v1alpha1 node.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#serviceaccountsubject-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">ServiceAccountSubject v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#servicereference-v1-apiextensions-k8s-io" class="nav-item">ServiceReference v1 apiextensions.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#servicereference-v1-apiregistration-k8s-io" class="nav-item">ServiceReference v1 apiregistration.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#subject-v1-rbac-authorization-k8s-io" class="nav-item">Subject v1 rbac.authorization.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#subject-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Subject v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#tokenrequest-v1-storage-k8s-io" class="nav-item">TokenRequest v1 storage.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#usersubject-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">UserSubject v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#webhookclientconfig-v1-apiextensions-k8s-io" class="nav-item">WebhookClientConfig v1 apiextensions.k8s.io</A></LI>
+</UL>
+</DIV>
+<DIV id="page-content-wrapper" class="col-xs-8 offset-xs-4 col-sm-9 offset-sm-3 col-md-10 offset-md-2 body-content">
+<DIV class="row">
+  <DIV class="col-md-6 copyright">
+ <a href="https://github.com/kubernetes/kubernetes">Copyright 2016-2021 The Kubernetes Authors.</a>
+  </DIV>
+  <DIV class="col-md-6 text-right">
+    <DIV>Generated at: 2021-12-07 16:19:07 (EST)</DIV>
+    <DIV>API Version: <a href="https://github.com/kubernetes/kubernetes/blob/release-1.23/api/openapi-spec/swagger.json">v1.23.0</a></DIV>
+  </DIV>
+</DIV><H1 id="-strong-api-overview-strong-"><STRONG>API OVERVIEW</STRONG></H1>
+
+<P>Welcome to the Kubernetes API.  You can use the Kubernetes API to read
+and write Kubernetes resource objects via a Kubernetes API endpoint.</P>
+
+<H2 id="resource-categories">Resource Categories</H2>
+
+<P>This is a high-level overview of the basic types of resources provide by the Kubernetes API and their primary functions.</P>
+<P><B>Workloads</B> are objects you use to manage and run your containers on the cluster.</P>
+<P><B>Discovery &amp; LB</B> resources are objects you use to "stitch" your workloads together into an externally accessible, load-balanced Service.</P>
+<P><B>Config &amp; Storage</B> resources are objects you use to inject initialization data into your applications, and to persist data that is external to your container.</P>
+<P><B>Cluster</B> resources objects define how the cluster itself is configured; these are typically used only by cluster operators.</P>
+<P><B>Metadata</B> resources are objects you use to configure the behavior of other resources within the cluster, such as <code>HorizontalPodAutoscaler</code> for scaling workloads.</P>
+
+<HR />
+
+<H2 id="resource-objects">Resource Objects</H2>
+
+<P>Resource objects typically have 3 components:</P>
+<UL>
+<LI><B>Resource ObjectMeta</B>: This is metadata about the resource, such as its name, type, api version, annotations, and labels.  This contains
+fields that maybe updated both by the end user and the system (e.g. annotations).</LI>
+<LI><B>ResourceSpec</B>: This is defined by the user and describes the desired state of system.  Fill this in when creating or updating an object.</LI>
+<LI><B>ResourceStatus</B>: This is filled in by the server and reports the current state of the system.  In most cases, users don't need to change this.</LI>
+</UL>
+
+<HR />
+
+<H2 id="resource-operations">Resource Operations</H2>
+
+<P>Most resources provide the following Operations:</P>
+
+<H4 id="resource-operations-create">Create</H4>
+
+<P>Create operations will create the resource in the storage backend.  After a resource is create the system will apply
+the desired state.</P>
+
+<H4 id="resource-operations-update">Update</H4>
+
+<P>Updates come in 2 forms: <B>Replace</B> and <B>Patch</B>:
+
+<UL>
+<LI><B>Replace</B>:
+Replacing a resource object will update the resource by replacing the existing spec with the provided one.  For
+read-then-write operations this is safe because an optimistic lock failure will occur if the resource was modified
+between the read and write. <I>Note</I>: The <I>ResourceStatus</I> will be ignored by the system and will not be updated.
+To update the status, one must invoke the specific status update operation.<BR />
+
+Note: Replacing a resource object may not result immediately in changes being propagated to downstream objects.  For instance
+replacing a <CODE>ConfigMap</CODE> or <CODE>Secret</CODE> resource will not result in all <I>Pod</I>s seeing the changes unless the <I>Pod</I>s are
+restarted out of band.</P></LI>
+
+<LI><B>Patch</B>:
+Patch will apply a change to a specific field.  How the change is merged is defined per field.  Lists may either be
+replaced or merged.  Merging lists will not preserve ordering.<BR />
+
+<B>Patches will never cause optimistic locking failures, and the last write will win.</B>  Patches are recommended
+when the full state is not read before an update, or when failing on optimistic locking is undesirable. <I>When patching
+complex types, arrays and maps, how the patch is applied is defined on a per-field basis and may either replace
+the field's current value, or merge the contents into the current value.</I></LI>
+</UL>
+
+<H4 id="resource-operations-read">Read</H4>
+
+<P>Reads come in 3 forms: <B>Get</B>, <B>List</B> and <B>Watch</B>:<P>
+
+<UL>
+<LI><B>Get</B>: Get will retrieve a specific resource object by name.</LI>
+<LI><B>List</B>: List will retrieve all resource objects of a specific type within a namespace, and the results can be restricted to resources matching a selector query.<BR />
+<B>List All Namespaces</B>: Like <B>List</B> but retrieves resources across all namespaces.</LI>
+<LI><B>Watch</B>: Watch will stream results for an object(s) as it is updated.  Similar to a callback, watch is used to respond to resource changes.</LI>
+</UL>
+
+<H4 id="resource-operations-read">Delete</H4>
+
+<P>Delete will delete a resource.  Depending on the specific resource, child objects may or may not be garbage collected by the server.  See
+notes on specific resource objects for details.</P>
+
+<H4 id="resource-operations-additional">Additional Operations</H4>
+
+<P>Resources may define additional operations specific to that resource type.</P>
+
+<UL>
+	<LI><B>Rollback</B>: Rollback a PodTemplate to a previous version.  Only available for some resource types.</LI>
+	<LI><B>Read / Write Scale</B>: Read or Update the number of replicas for the given resource.  Only available for some resource types.</LI>
+	<LI><B>Read / Write Status</B>: Read or Update the Status for a resource object.  The Status can only changed through these update operations.</LI>
+</UL>
+<HR />
+<H1 id="-strong-api-groups-strong-"><STRONG>API Groups</STRONG></H1>
+<P>The API Groups and their versions are summarized in the following table.</P><TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>admissionregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>apiregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>authentication.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v1, v2, v2beta2, v2beta1</CODE></TD></TR>
+<TR><TD><CODE>batch</CODE></TD><TD><CODE>v1, v1beta1</CODE></TD></TR>
+<TR><TD><CODE>certificates.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>coordination.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1, v1beta1</CODE></TD></TR>
+<TR><TD><CODE>events.k8s.io</CODE></TD><TD><CODE>v1, v1beta1</CODE></TD></TR>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2, v1beta1</CODE></TD></TR>
+<TR><TD><CODE>internal.apiserver.k8s.io</CODE></TD><TD><CODE>v1alpha1</CODE></TD></TR>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>node.k8s.io</CODE></TD><TD><CODE>v1, v1beta1, v1alpha1</CODE></TD></TR>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1, v1beta1</CODE></TD></TR>
+<TR><TD><CODE>rbac.authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>scheduling.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1, v1beta1, v1alpha1</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="-strong-workloads-apis-strong-"><STRONG>WORKLOADS</STRONG></H1>
+
+<P>Workloads resources are responsible for managing and running your containers on the cluster. <A href="#container-v1-core">Containers</A> are created
+by Controllers through <A href="#pod-v1-core">Pods</A>. Pods run Containers and provide environmental dependencies such as shared or
+persistent storage <A href="#volume-v1-core">Volumes</A> and <A href="#configmap-v1-core">Configuration</A> or <A href="#secret-v1-core">Secret</A>
+data injected into the container.</P>
+
+<P>The most common Controllers are:</P>
+<UL>
+<LI><A href="#deployment-v1-apps">Deployments</A> for stateless persistent apps (e.g. HTTP servers).</LI>
+<LI><A href="#statefulset-v1-apps">StatefulSets</A> for stateful persistent apps (e.g. databases).</LI>
+<LI><A href="#job-v1-batch">Jobs</A> for run-to-completion apps (e.g. batch Jobs).</LI>
+</UL>
+
+<HR />
+<H1 id="container-v1-core">Container v1 core</H1>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#example-container-v1-core" aria-controls="example-container-v1-core"
+  aria-expanded="false">example</BUTTON>
+<DIV class="collapse" id="example-container-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Container Config to run nginx (must be embedded in a PodSpec to run).</DIV>
+  <DIV class="panel-body">
+<PRE class="example"><CODE class="lang-yaml">
+name: nginx
+# Run the nginx:1.14 image
+image: nginx:1.14
+
+</CODE></PRE></DIV></DIV></DIV>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Container</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-warning col-md-8"><P><I class="fa fa-warning"></I> <B>Warning:</B></P><P>Containers are only ever created within the context of a <a href="#pod-v1-core">Pod</a>.  This is usually done using a Controller.  See Controllers: <a href="#deployment-v1-apps">Deployment</a>, <a href="#job-v1-batch">Job</a>, or <a href="#statefulset-v1-apps">StatefulSet</a></P></DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>args</CODE><BR /><I>string array</I></TD><TD>Arguments to the entrypoint. The docker image&#39;s CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container&#39;s environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. &#34;$$(VAR_NAME)&#34; will produce the string literal &#34;$(VAR_NAME)&#34;. Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell</TD></TR>
+<TR><TD><CODE>command</CODE><BR /><I>string array</I></TD><TD>Entrypoint array. Not executed within a shell. The docker image&#39;s ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container&#39;s environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. &#34;$$(VAR_NAME)&#34; will produce the string literal &#34;$(VAR_NAME)&#34;. Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell</TD></TR>
+<TR><TD><CODE>env</CODE><BR /><I><a href="#envvar-v1-core">EnvVar</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>name</I></TD><TD>List of environment variables to set in the container. Cannot be updated.</TD></TR>
+<TR><TD><CODE>envFrom</CODE><BR /><I><a href="#envfromsource-v1-core">EnvFromSource</a> array</I></TD><TD>List of sources to populate environment variables in the container. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.</TD></TR>
+<TR><TD><CODE>image</CODE><BR /><I>string</I></TD><TD>Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images This field is optional to allow higher level config management to default or override container images in workload controllers like Deployments and StatefulSets.</TD></TR>
+<TR><TD><CODE>imagePullPolicy</CODE><BR /><I>string</I></TD><TD>Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images  Possible enum values:  - `&#34;Always&#34;` means that kubelet always attempts to pull the latest image. Container will fail If the pull fails.  - `&#34;IfNotPresent&#34;` means that kubelet pulls if the image isn&#39;t present on disk. Container will fail if the image isn&#39;t present and the pull fails.  - `&#34;Never&#34;` means that kubelet never pulls an image, but only uses a local image. Container will fail if the image isn&#39;t present</TD></TR>
+<TR><TD><CODE>lifecycle</CODE><BR /><I><a href="#lifecycle-v1-core">Lifecycle</a></I></TD><TD>Actions that the management system should take in response to container lifecycle events. Cannot be updated.</TD></TR>
+<TR><TD><CODE>livenessProbe</CODE><BR /><I><a href="#probe-v1-core">Probe</a></I></TD><TD>Periodic probe of container liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the container specified as a DNS_LABEL. Each container in a pod must have a unique name (DNS_LABEL). Cannot be updated.</TD></TR>
+<TR><TD><CODE>ports</CODE><BR /><I><a href="#containerport-v1-core">ContainerPort</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>containerPort</I></TD><TD>List of ports to expose from the container. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default &#34;0.0.0.0&#34; address inside a container will be accessible from the network. Cannot be updated.</TD></TR>
+<TR><TD><CODE>readinessProbe</CODE><BR /><I><a href="#probe-v1-core">Probe</a></I></TD><TD>Periodic probe of container service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes</TD></TR>
+<TR><TD><CODE>resources</CODE><BR /><I><a href="#resourcerequirements-v1-core">ResourceRequirements</a></I></TD><TD>Compute Resources required by this container. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/</TD></TR>
+<TR><TD><CODE>securityContext</CODE><BR /><I><a href="#securitycontext-v1-core">SecurityContext</a></I></TD><TD>SecurityContext defines the security options the container should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/</TD></TR>
+<TR><TD><CODE>startupProbe</CODE><BR /><I><a href="#probe-v1-core">Probe</a></I></TD><TD>StartupProbe indicates that the Pod has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod&#39;s lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes</TD></TR>
+<TR><TD><CODE>stdin</CODE><BR /><I>boolean</I></TD><TD>Whether this container should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the container will always result in EOF. Default is false.</TD></TR>
+<TR><TD><CODE>stdinOnce</CODE><BR /><I>boolean</I></TD><TD>Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the container is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false</TD></TR>
+<TR><TD><CODE>terminationMessagePath</CODE><BR /><I>string</I></TD><TD>Optional: Path at which the file to which the container&#39;s termination message will be written is mounted into the container&#39;s filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.</TD></TR>
+<TR><TD><CODE>terminationMessagePolicy</CODE><BR /><I>string</I></TD><TD>Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the container status message on both success and failure. FallbackToLogsOnError will use the last chunk of container log output if the termination message file is empty and the container exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.  Possible enum values:  - `&#34;FallbackToLogsOnError&#34;` will read the most recent contents of the container logs for the container status message when the container exits with an error and the terminationMessagePath has no contents.  - `&#34;File&#34;` is the default behavior and will set the container status message to the contents of the container&#39;s terminationMessagePath when the container exits.</TD></TR>
+<TR><TD><CODE>tty</CODE><BR /><I>boolean</I></TD><TD>Whether this container should allocate a TTY for itself, also requires &#39;stdin&#39; to be true. Default is false.</TD></TR>
+<TR><TD><CODE>volumeDevices</CODE><BR /><I><a href="#volumedevice-v1-core">VolumeDevice</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>devicePath</I></TD><TD>volumeDevices is the list of block devices to be used by the container.</TD></TR>
+<TR><TD><CODE>volumeMounts</CODE><BR /><I><a href="#volumemount-v1-core">VolumeMount</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>mountPath</I></TD><TD>Pod volumes to mount into the container&#39;s filesystem. Cannot be updated.</TD></TR>
+<TR><TD><CODE>workingDir</CODE><BR /><I>string</I></TD><TD>Container&#39;s working directory. If not specified, the container runtime&#39;s default will be used, which might be configured in the container image. Cannot be updated.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="containerstatus-v1-core">ContainerStatus v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podstatus-v1-core">PodStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>containerID</CODE><BR /><I>string</I></TD><TD>Container&#39;s ID in the format &#39;docker://&lt;container_id&gt;&#39;.</TD></TR>
+<TR><TD><CODE>image</CODE><BR /><I>string</I></TD><TD>The image the container is running. More info: https://kubernetes.io/docs/concepts/containers/images.</TD></TR>
+<TR><TD><CODE>imageID</CODE><BR /><I>string</I></TD><TD>ImageID of the container&#39;s image.</TD></TR>
+<TR><TD><CODE>lastState</CODE><BR /><I><a href="#containerstate-v1-core">ContainerState</a></I></TD><TD>Details about the container&#39;s last termination condition.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>This must be a DNS_LABEL. Each container in a pod must have a unique name. Cannot be updated.</TD></TR>
+<TR><TD><CODE>ready</CODE><BR /><I>boolean</I></TD><TD>Specifies whether the container has passed its readiness probe.</TD></TR>
+<TR><TD><CODE>restartCount</CODE><BR /><I>integer</I></TD><TD>The number of times the container has been restarted.</TD></TR>
+<TR><TD><CODE>started</CODE><BR /><I>boolean</I></TD><TD>Specifies whether the container has passed its startup probe. Initialized as false, becomes true after startupProbe is considered successful. Resets to false when the container is restarted, or if kubelet loses state temporarily. Is always true when no startupProbe is defined.</TD></TR>
+<TR><TD><CODE>state</CODE><BR /><I><a href="#containerstate-v1-core">ContainerState</a></I></TD><TD>Details about the container&#39;s current condition.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="cronjob-v1-batch">CronJob v1 batch</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>batch</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CronJob</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#cronjob-v1beta1-batch">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#cronjoblist-v1-batch">CronJobList [batch/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#cronjobspec-v1-batch">CronJobSpec</a></I></TD><TD>Specification of the desired behavior of a cron job, including the schedule. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#cronjobstatus-v1-batch">CronJobStatus</a></I></TD><TD>Current status of a cron job. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="cronjobspec-v1-batch">CronJobSpec v1 batch</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#cronjob-v1-batch">CronJob [batch/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>concurrencyPolicy</CODE><BR /><I>string</I></TD><TD>Specifies how to treat concurrent executions of a Job. Valid values are: - &#34;Allow&#34; (default): allows CronJobs to run concurrently; - &#34;Forbid&#34;: forbids concurrent runs, skipping next run if previous run hasn&#39;t finished yet; - &#34;Replace&#34;: cancels currently running job and replaces it with a new one  Possible enum values:  - `&#34;Allow&#34;` allows CronJobs to run concurrently.  - `&#34;Forbid&#34;` forbids concurrent runs, skipping next run if previous hasn&#39;t finished yet.  - `&#34;Replace&#34;` cancels currently running job and replaces it with a new one.</TD></TR>
+<TR><TD><CODE>failedJobsHistoryLimit</CODE><BR /><I>integer</I></TD><TD>The number of failed finished jobs to retain. Value must be non-negative integer. Defaults to 1.</TD></TR>
+<TR><TD><CODE>jobTemplate</CODE><BR /><I><a href="#jobtemplatespec-v1-batch">JobTemplateSpec</a></I></TD><TD>Specifies the job that will be created when executing a CronJob.</TD></TR>
+<TR><TD><CODE>schedule</CODE><BR /><I>string</I></TD><TD>The schedule in Cron format, see https://en.wikipedia.org/wiki/Cron.</TD></TR>
+<TR><TD><CODE>startingDeadlineSeconds</CODE><BR /><I>integer</I></TD><TD>Optional deadline in seconds for starting the job if it misses scheduled time for any reason.  Missed jobs executions will be counted as failed ones.</TD></TR>
+<TR><TD><CODE>successfulJobsHistoryLimit</CODE><BR /><I>integer</I></TD><TD>The number of successful finished jobs to retain. Value must be non-negative integer. Defaults to 3.</TD></TR>
+<TR><TD><CODE>suspend</CODE><BR /><I>boolean</I></TD><TD>This flag tells the controller to suspend subsequent executions, it does not apply to already started executions.  Defaults to false.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="cronjobstatus-v1-batch">CronJobStatus v1 batch</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#cronjob-v1-batch">CronJob [batch/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>active</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a> array</I></TD><TD>A list of pointers to currently running jobs.</TD></TR>
+<TR><TD><CODE>lastScheduleTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Information when was the last time the job was successfully scheduled.</TD></TR>
+<TR><TD><CODE>lastSuccessfulTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Information when was the last time the job successfully completed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="cronjoblist-v1-batch">CronJobList v1 batch</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#cronjob-v1-batch">CronJob</a> array</I></TD><TD>items is the list of CronJobs.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-cronjob-v1-batch-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-cronjob-v1-batch">Create</H2>
+<P>create a CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/batch/v1/namespaces/{namespace}/cronjobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-cronjob-v1-batch">Patch</H2>
+<P>partially update the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-cronjob-v1-batch">Replace</H2>
+<P>replace the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-cronjob-v1-batch">Delete</H2>
+<P>delete a CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-cronjob-v1-batch">Delete Collection</H2>
+<P>delete collection of CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/batch/v1/namespaces/{namespace}/cronjobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-cronjob-v1-batch-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-cronjob-v1-batch">Read</H2>
+<P>read the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-cronjob-v1-batch">List</H2>
+<P>list or watch objects of kind CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/namespaces/{namespace}/cronjobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjoblist-v1-batch">CronJobList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-cronjob-v1-batch">List All Namespaces</H2>
+<P>list or watch objects of kind CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/cronjobs</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjoblist-v1-batch">CronJobList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-cronjob-v1-batch">Watch</H2>
+<P>watch changes to an object of kind CronJob. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/watch/namespaces/{namespace}/cronjobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-cronjob-v1-batch">Watch List</H2>
+<P>watch individual changes to a list of CronJob. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/watch/namespaces/{namespace}/cronjobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-cronjob-v1-batch">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of CronJob. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/watch/cronjobs</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-cronjob-v1-batch-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-cronjob-v1-batch">Patch Status</H2>
+<P>partially update status of the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-cronjob-v1-batch">Read Status</H2>
+<P>read status of the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-cronjob-v1-batch">Replace Status</H2>
+<P>replace status of the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="daemonset-v1-apps">DaemonSet v1 apps</H1>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#example-daemonset-v1-apps" aria-controls="example-daemonset-v1-apps"
+  aria-expanded="false">example</BUTTON>
+<DIV class="collapse" id="example-daemonset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">DaemonSet Config to print the `hostname` on each Node in the cluster every 10 seconds.</DIV>
+  <DIV class="panel-body">
+<PRE class="example"><CODE class="lang-yaml">
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  # Unique key of the DaemonSet instance
+  name: daemonset-example
+spec:
+  selector:
+    matchLabels:
+      app: daemonset-example
+  template:
+    metadata:
+      labels:
+        app: daemonset-example
+    spec:
+      containers:
+      # This container is run once on each Node in the cluster
+      - name: daemonset-example
+        image: ubuntu:trusty
+        command:
+        - /bin/sh
+        args:
+        - -c
+        # This script is run through `sh -c &lt;script&gt;`
+        - &gt;-
+          while [ true ]; do
+          echo &#34;DaemonSet running on $(hostname)&#34; ;
+          sleep 10 ;
+          done
+</CODE></PRE></DIV></DIV></DIV>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>DaemonSet</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#daemonsetlist-v1-apps">DaemonSetList [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#daemonsetspec-v1-apps">DaemonSetSpec</a></I></TD><TD>The desired behavior of this daemon set. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#daemonsetstatus-v1-apps">DaemonSetStatus</a></I></TD><TD>The current status of this daemon set. This data may be out of date by some window of time. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="daemonsetspec-v1-apps">DaemonSetSpec v1 apps</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#daemonset-v1-apps">DaemonSet [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>minReadySeconds</CODE><BR /><I>integer</I></TD><TD>The minimum number of seconds for which a newly created DaemonSet pod should be ready without any of its container crashing, for it to be considered available. Defaults to 0 (pod will be considered available as soon as it is ready).</TD></TR>
+<TR><TD><CODE>revisionHistoryLimit</CODE><BR /><I>integer</I></TD><TD>The number of old history to retain to allow rollback. This is a pointer to distinguish between explicit zero and not specified. Defaults to 10.</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>A label query over pods that are managed by the daemon set. Must match in order to be controlled. It must match the pod template&#39;s labels. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors</TD></TR>
+<TR><TD><CODE>template</CODE><BR /><I><a href="#podtemplatespec-v1-core">PodTemplateSpec</a></I></TD><TD>An object that describes the pod that will be created. The DaemonSet will create exactly one copy of this pod on every node that matches the template&#39;s node selector (or on every node if no node selector is specified). More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#pod-template</TD></TR>
+<TR><TD><CODE>updateStrategy</CODE><BR /><I><a href="#daemonsetupdatestrategy-v1-apps">DaemonSetUpdateStrategy</a></I></TD><TD>An update strategy to replace existing DaemonSet pods with new pods.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="daemonsetstatus-v1-apps">DaemonSetStatus v1 apps</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#daemonset-v1-apps">DaemonSet [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>collisionCount</CODE><BR /><I>integer</I></TD><TD>Count of hash collisions for the DaemonSet. The DaemonSet controller uses this field as a collision avoidance mechanism when it needs to create the name for the newest ControllerRevision.</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#daemonsetcondition-v1-apps">DaemonSetCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Represents the latest available observations of a DaemonSet&#39;s current state.</TD></TR>
+<TR><TD><CODE>currentNumberScheduled</CODE><BR /><I>integer</I></TD><TD>The number of nodes that are running at least 1 daemon pod and are supposed to run the daemon pod. More info: https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/</TD></TR>
+<TR><TD><CODE>desiredNumberScheduled</CODE><BR /><I>integer</I></TD><TD>The total number of nodes that should be running the daemon pod (including nodes correctly running the daemon pod). More info: https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/</TD></TR>
+<TR><TD><CODE>numberAvailable</CODE><BR /><I>integer</I></TD><TD>The number of nodes that should be running the daemon pod and have one or more of the daemon pod running and available (ready for at least spec.minReadySeconds)</TD></TR>
+<TR><TD><CODE>numberMisscheduled</CODE><BR /><I>integer</I></TD><TD>The number of nodes that are running the daemon pod, but are not supposed to run the daemon pod. More info: https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/</TD></TR>
+<TR><TD><CODE>numberReady</CODE><BR /><I>integer</I></TD><TD>numberReady is the number of nodes that should be running the daemon pod and have one or more of the daemon pod running with a Ready Condition.</TD></TR>
+<TR><TD><CODE>numberUnavailable</CODE><BR /><I>integer</I></TD><TD>The number of nodes that should be running the daemon pod and have none of the daemon pod running and available (ready for at least spec.minReadySeconds)</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>The most recent generation observed by the daemon set controller.</TD></TR>
+<TR><TD><CODE>updatedNumberScheduled</CODE><BR /><I>integer</I></TD><TD>The total number of nodes that are running updated daemon pod</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="daemonsetlist-v1-apps">DaemonSetList v1 apps</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#daemonset-v1-apps">DaemonSet</a> array</I></TD><TD>A list of daemon sets.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="rollingupdatedaemonset-v1-apps">RollingUpdateDaemonSet v1 apps</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#daemonsetupdatestrategy-v1-apps">DaemonSetUpdateStrategy [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>maxSurge</CODE></TD><TD>The maximum number of nodes with an existing available DaemonSet pod that can have an updated DaemonSet pod during during an update. Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). This can not be 0 if MaxUnavailable is 0. Absolute number is calculated from percentage by rounding up to a minimum of 1. Default value is 0. Example: when this is set to 30%, at most 30% of the total number of nodes that should be running the daemon pod (i.e. status.desiredNumberScheduled) can have their a new pod created before the old pod is marked as deleted. The update starts by launching new pods on 30% of nodes. Once an updated pod is available (Ready for at least minReadySeconds) the old DaemonSet pod on that node is marked deleted. If the old pod becomes unavailable for any reason (Ready transitions to false, is evicted, or is drained) an updated pod is immediatedly created on that node without considering surge limits. Allowing surge implies the possibility that the resources consumed by the daemonset on any given node can double if the readiness check fails, and so resource intensive daemonsets should take into account that they may cause evictions during disruption. This is beta field and enabled/disabled by DaemonSetUpdateSurge feature gate.</TD></TR>
+<TR><TD><CODE>maxUnavailable</CODE></TD><TD>The maximum number of DaemonSet pods that can be unavailable during the update. Value can be an absolute number (ex: 5) or a percentage of total number of DaemonSet pods at the start of the update (ex: 10%). Absolute number is calculated from percentage by rounding up. This cannot be 0 if MaxSurge is 0 Default value is 1. Example: when this is set to 30%, at most 30% of the total number of nodes that should be running the daemon pod (i.e. status.desiredNumberScheduled) can have their pods stopped for an update at any given time. The update starts by stopping at most 30% of those DaemonSet pods and then brings up new DaemonSet pods in their place. Once the new pods are available, it then proceeds onto other DaemonSet pods, thus ensuring that at least 70% of original number of DaemonSet pods are available at all times during the update.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-daemonset-v1-apps-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-daemonset-v1-apps">Create</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-create-daemonset-v1-apps" aria-controls="req-kubectl-create-daemonset-v1-apps"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-create-daemonset-v1-apps" aria-controls="req-curl-create-daemonset-v1-apps"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-create-daemonset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ echo 'apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  name: daemonset-example
+spec:
+  selector:
+    matchLabels:
+      app: daemonset-example
+  template:
+    metadata:
+      labels:
+        app: daemonset-example
+    spec:
+      containers:
+      - name: daemonset-example
+        image: ubuntu:trusty
+        command:
+        - /bin/sh
+        args:
+        - -c
+        - >-
+          while [ true ]; do
+          echo "DaemonSet running on $(hostname)" ;
+          sleep 10 ;
+          done
+' | kubectl create -f -
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-create-daemonset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X POST -H 'Content-Type: application/yaml' --data '
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  name: daemonset-example
+spec:
+  selector:
+    matchLabels:
+      app: daemonset-example
+  template:
+    metadata:
+      labels:
+        app: daemonset-example
+    spec:
+      containers:
+      - name: daemonset-example
+        image: ubuntu:trusty
+        command:
+        - /bin/sh
+        args:
+        - -c
+        - >-
+          while [ true ]; do
+          echo "DaemonSet running on $(hostname)" ;
+          sleep 10 ;
+          done
+' http://127.0.0.1:8001/apis/apps/v1/namespaces/default/daemonsets
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-create-daemonset-v1-apps" aria-controls="res-kubectl-create-daemonset-v1-apps"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-create-daemonset-v1-apps" aria-controls="res-curl-create-daemonset-v1-apps"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-create-daemonset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+daemonset "daemonset-example" created
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-create-daemonset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "DaemonSet",
+  "apiVersion": "apps/v1",
+  "metadata": {
+    "name": "daemonset-example",
+    "namespace": "default",
+    "selfLink": "/apis/apps/v1/namespaces/default/daemonsets/daemonset-example",
+    "uid": "65552ced-b0e2-11e6-aef0-42010af00229",
+    "resourceVersion": "3558",
+    "generation": 1,
+    "creationTimestamp": "2016-11-22T18:35:09Z",
+    "labels": {
+      "app": "daemonset-example"
+    }
+  },
+  "spec": {
+    "selector": {
+      "matchLabels": {
+        "app": "daemonset-example"
+      }
+    },
+    "template": {
+      "metadata": {
+        "creationTimestamp": null,
+        "labels": {
+          "app": "daemonset-example"
+        }
+      },
+      "spec": {
+        "containers": [
+          {
+            "name": "daemonset-example",
+            "image": "ubuntu:trusty",
+            "command": [
+              "/bin/sh"
+            ],
+            "args": [
+              "-c",
+              "while [ true ]; do echo \"DaemonSet running on $(hostname)\" ; sleep 10 ; done"
+            ],
+            "resources": {},
+            "terminationMessagePath": "/dev/termination-log",
+            "imagePullPolicy": "IfNotPresent"
+          }
+        ],
+        "restartPolicy": "Always",
+        "terminationGracePeriodSeconds": 30,
+        "dnsPolicy": "ClusterFirst",
+        "securityContext": {}
+      }
+    }
+  },
+  "status": {
+    "currentNumberScheduled": 0,
+    "numberMisscheduled": 0,
+    "desiredNumberScheduled": 0
+  }
+}
+</CODE></PRE></DIV></DIV></DIV>
+<P>create a DaemonSet</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/apps/v1/namespaces/{namespace}/daemonsets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-daemonset-v1-apps">Patch</H2>
+<P>partially update the specified DaemonSet</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the DaemonSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-daemonset-v1-apps">Replace</H2>
+<P>replace the specified DaemonSet</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the DaemonSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-daemonset-v1-apps">Delete</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-delete-daemonset-v1-apps" aria-controls="req-kubectl-delete-daemonset-v1-apps"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-delete-daemonset-v1-apps" aria-controls="req-curl-delete-daemonset-v1-apps"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-delete-daemonset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl delete daemonset daemonset-example
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-delete-daemonset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X DELETE -H 'Content-Type: application/yaml' --data '
+gracePeriodSeconds: 0
+orphanDependents: false
+' 'http://127.0.0.1:8001/apis/apps/v1/namespaces/default/daemonsets/daemonset-example'
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-delete-daemonset-v1-apps" aria-controls="res-kubectl-delete-daemonset-v1-apps"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-delete-daemonset-v1-apps" aria-controls="res-curl-delete-daemonset-v1-apps"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-delete-daemonset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+daemonset "daemonset-example" deleted
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-delete-daemonset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Status",
+  "apiVersion": "v1",
+  "metadata": {},
+  "status": "Success",
+  "code": 200
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<P>delete a DaemonSet</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the DaemonSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-daemonset-v1-apps">Delete Collection</H2>
+<P>delete collection of DaemonSet</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apps/v1/namespaces/{namespace}/daemonsets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-daemonset-v1-apps-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-daemonset-v1-apps">Read</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-read-daemonset-v1-apps" aria-controls="req-kubectl-read-daemonset-v1-apps"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-read-daemonset-v1-apps" aria-controls="req-curl-read-daemonset-v1-apps"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-read-daemonset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl get daemonset daemonset-example -o json
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-read-daemonset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X GET http://127.0.0.1:8001/apis/apps/v1/namespaces/default/daemonsets/daemonset-example
+</CODE></PRE></DIV></DIV></DIV>
+<P>read the specified DaemonSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the DaemonSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-daemonset-v1-apps">List</H2>
+<P>list or watch objects of kind DaemonSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/daemonsets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#daemonsetlist-v1-apps">DaemonSetList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-daemonset-v1-apps">List All Namespaces</H2>
+<P>list or watch objects of kind DaemonSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/daemonsets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#daemonsetlist-v1-apps">DaemonSetList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-daemonset-v1-apps">Watch</H2>
+<P>watch changes to an object of kind DaemonSet. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/namespaces/{namespace}/daemonsets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the DaemonSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-daemonset-v1-apps">Watch List</H2>
+<P>watch individual changes to a list of DaemonSet. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/namespaces/{namespace}/daemonsets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-daemonset-v1-apps">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of DaemonSet. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/daemonsets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-daemonset-v1-apps-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-daemonset-v1-apps">Patch Status</H2>
+<P>partially update status of the specified DaemonSet</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the DaemonSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-daemonset-v1-apps">Read Status</H2>
+<P>read status of the specified DaemonSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the DaemonSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-daemonset-v1-apps">Replace Status</H2>
+<P>replace status of the specified DaemonSet</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the DaemonSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="deployment-v1-apps">Deployment v1 apps</H1>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#example-deployment-v1-apps" aria-controls="example-deployment-v1-apps"
+  aria-expanded="false">example</BUTTON>
+<DIV class="collapse" id="example-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Deployment Config to run 3 nginx instances (max rollback set to 10 revisions).</DIV>
+  <DIV class="panel-body">
+<PRE class="example"><CODE class="lang-yaml">
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  # Unique key of the Deployment instance
+  name: deployment-example
+spec:
+  # 3 Pods should exist at all times.
+  replicas: 3
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        # Apply this label to pods and default
+        # the Deployment label selector to this value
+        app: nginx
+    spec:
+      containers:
+      - name: nginx
+        # Run this image
+        image: nginx:1.14
+
+</CODE></PRE></DIV></DIV></DIV>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Deployment</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#deploymentlist-v1-apps">DeploymentList [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#deploymentspec-v1-apps">DeploymentSpec</a></I></TD><TD>Specification of the desired behavior of the Deployment.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#deploymentstatus-v1-apps">DeploymentStatus</a></I></TD><TD>Most recently observed status of the Deployment.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="deploymentspec-v1-apps">DeploymentSpec v1 apps</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#deployment-v1-apps">Deployment [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>minReadySeconds</CODE><BR /><I>integer</I></TD><TD>Minimum number of seconds for which a newly created pod should be ready without any of its container crashing, for it to be considered available. Defaults to 0 (pod will be considered available as soon as it is ready)</TD></TR>
+<TR><TD><CODE>paused</CODE><BR /><I>boolean</I></TD><TD>Indicates that the deployment is paused.</TD></TR>
+<TR><TD><CODE>progressDeadlineSeconds</CODE><BR /><I>integer</I></TD><TD>The maximum time in seconds for a deployment to make progress before it is considered to be failed. The deployment controller will continue to process failed deployments and a condition with a ProgressDeadlineExceeded reason will be surfaced in the deployment status. Note that progress will not be estimated during the time a deployment is paused. Defaults to 600s.</TD></TR>
+<TR><TD><CODE>replicas</CODE><BR /><I>integer</I></TD><TD>Number of desired pods. This is a pointer to distinguish between explicit zero and not specified. Defaults to 1.</TD></TR>
+<TR><TD><CODE>revisionHistoryLimit</CODE><BR /><I>integer</I></TD><TD>The number of old ReplicaSets to retain to allow rollback. This is a pointer to distinguish between explicit zero and not specified. Defaults to 10.</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>Label selector for pods. Existing ReplicaSets whose pods are selected by this will be the ones affected by this deployment. It must match the pod template&#39;s labels.</TD></TR>
+<TR><TD><CODE>strategy</CODE><BR /><I><a href="#deploymentstrategy-v1-apps">DeploymentStrategy</a></I><BR /><B>patch strategy</B>: <I>retainKeys</I></TD><TD>The deployment strategy to use to replace existing pods with new ones.</TD></TR>
+<TR><TD><CODE>template</CODE><BR /><I><a href="#podtemplatespec-v1-core">PodTemplateSpec</a></I></TD><TD>Template describes the pods that will be created.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="deploymentstatus-v1-apps">DeploymentStatus v1 apps</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#deployment-v1-apps">Deployment [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>availableReplicas</CODE><BR /><I>integer</I></TD><TD>Total number of available pods (ready for at least minReadySeconds) targeted by this deployment.</TD></TR>
+<TR><TD><CODE>collisionCount</CODE><BR /><I>integer</I></TD><TD>Count of hash collisions for the Deployment. The Deployment controller uses this field as a collision avoidance mechanism when it needs to create the name for the newest ReplicaSet.</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#deploymentcondition-v1-apps">DeploymentCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Represents the latest available observations of a deployment&#39;s current state.</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>The generation observed by the deployment controller.</TD></TR>
+<TR><TD><CODE>readyReplicas</CODE><BR /><I>integer</I></TD><TD>readyReplicas is the number of pods targeted by this Deployment with a Ready Condition.</TD></TR>
+<TR><TD><CODE>replicas</CODE><BR /><I>integer</I></TD><TD>Total number of non-terminated pods targeted by this deployment (their labels match the selector).</TD></TR>
+<TR><TD><CODE>unavailableReplicas</CODE><BR /><I>integer</I></TD><TD>Total number of unavailable pods targeted by this deployment. This is the total number of pods that are still required for the deployment to have 100% available capacity. They may either be pods that are running but not yet available or pods that still have not been created.</TD></TR>
+<TR><TD><CODE>updatedReplicas</CODE><BR /><I>integer</I></TD><TD>Total number of non-terminated pods targeted by this deployment that have the desired template spec.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="deploymentlist-v1-apps">DeploymentList v1 apps</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#deployment-v1-apps">Deployment</a> array</I></TD><TD>Items is the list of Deployments.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="deploymentstrategy-v1-apps">DeploymentStrategy v1 apps</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#deploymentspec-v1-apps">DeploymentSpec [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rollingUpdate</CODE><BR /><I><a href="#rollingupdatedeployment-v1-apps">RollingUpdateDeployment</a></I></TD><TD>Rolling update config params. Present only if DeploymentStrategyType = RollingUpdate.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of deployment. Can be &#34;Recreate&#34; or &#34;RollingUpdate&#34;. Default is RollingUpdate.  Possible enum values:  - `&#34;Recreate&#34;` Kill all existing pods before creating new ones.  - `&#34;RollingUpdate&#34;` Replace the old ReplicaSets by new one using rolling update i.e gradually scale down the old ReplicaSets and scale up the new one.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="rollingupdatedeployment-v1-apps">RollingUpdateDeployment v1 apps</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#deploymentstrategy-v1-apps">DeploymentStrategy [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>maxSurge</CODE></TD><TD>The maximum number of pods that can be scheduled above the desired number of pods. Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). This can not be 0 if MaxUnavailable is 0. Absolute number is calculated from percentage by rounding up. Defaults to 25%. Example: when this is set to 30%, the new ReplicaSet can be scaled up immediately when the rolling update starts, such that the total number of old and new pods do not exceed 130% of desired pods. Once old pods have been killed, new ReplicaSet can be scaled up further, ensuring that total number of pods running at any time during the update is at most 130% of desired pods.</TD></TR>
+<TR><TD><CODE>maxUnavailable</CODE></TD><TD>The maximum number of pods that can be unavailable during the update. Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). Absolute number is calculated from percentage by rounding down. This can not be 0 if MaxSurge is 0. Defaults to 25%. Example: when this is set to 30%, the old ReplicaSet can be scaled down to 70% of desired pods immediately when the rolling update starts. Once new pods are ready, old ReplicaSet can be scaled down further, followed by scaling up the new ReplicaSet, ensuring that the total number of pods available at all times during the update is at least 70% of desired pods.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-deployment-v1-apps-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-deployment-v1-apps">Create</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-create-deployment-v1-apps" aria-controls="req-kubectl-create-deployment-v1-apps"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-create-deployment-v1-apps" aria-controls="req-curl-create-deployment-v1-apps"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-create-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ echo 'apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: deployment-example
+spec:
+  replicas: 3
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      - name: nginx
+        image: nginx:1.14
+        ports:
+        - containerPort: 80
+' | kubectl create -f -
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-create-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X POST -H 'Content-Type: application/yaml' --data '
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: deployment-example
+spec:
+  replicas: 3
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      - name: nginx
+        image: nginx:1.14
+        ports:
+        - containerPort: 80
+' http://127.0.0.1:8001/apis/apps/v1/namespaces/default/deployments
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-create-deployment-v1-apps" aria-controls="res-kubectl-create-deployment-v1-apps"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-create-deployment-v1-apps" aria-controls="res-curl-create-deployment-v1-apps"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-create-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+deployment "deployment-example" created
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-create-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Deployment",
+  "apiVersion": "apps/v1",
+  "metadata": {
+    "name": "deployment-example",
+    "namespace": "default",
+    "selfLink": "/apis/apps/v1/namespaces/default/deployments/deployment-example",
+    "uid": "4ccca349-9cb1-11e6-9c54-42010a800148",
+    "resourceVersion": "2118306",
+    "generation": 1,
+    "creationTimestamp": "2016-10-28T01:53:19Z",
+    "labels": {
+      "app": "nginx"
+    }
+  },
+  "spec": {
+    "replicas": 3,
+    "selector": {
+      "matchLabels": {
+        "app": "nginx"
+      }
+    },
+    "template": {
+      "metadata": {
+        "creationTimestamp": null,
+        "labels": {
+          "app": "nginx"
+        }
+      },
+      "spec": {
+        "containers": [
+          {
+            "name": "nginx",
+            "image": "nginx:1.14",
+            "ports": [
+              {
+                "containerPort": 80,
+                "protocol": "TCP"
+              }
+            ],
+            "resources": {},
+            "terminationMessagePath": "/dev/termination-log",
+            "imagePullPolicy": "IfNotPresent"
+          }
+        ],
+        "restartPolicy": "Always",
+        "terminationGracePeriodSeconds": 30,
+        "dnsPolicy": "ClusterFirst",
+        "securityContext": {}
+      }
+    },
+    "strategy": {
+      "type": "RollingUpdate",
+      "rollingUpdate": {
+        "maxUnavailable": 1,
+        "maxSurge": 1
+      }
+    },
+    "revisionHistoryLimit": 10
+  },
+  "status": {}
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<P>create a Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/apps/v1/namespaces/{namespace}/deployments</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-deployment-v1-apps">Patch</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-patch-deployment-v1-apps" aria-controls="req-kubectl-patch-deployment-v1-apps"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-patch-deployment-v1-apps" aria-controls="req-curl-patch-deployment-v1-apps"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-patch-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl patch deployment deployment-example -p \
+	'{"spec":{"template":{"spec":{"containers":[{"name":"nginx","image":"nginx:1.16"}]}}}}'
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-patch-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X PATCH -H 'Content-Type: application/strategic-merge-patch+json' --data '
+{"spec":{"template":{"spec":{"containers":[{"name":"nginx","image":"nginx:1.16"}]}}}}' \
+	'http://127.0.0.1:8001/apis/apps/v1/namespaces/default/deployments/deployment-example'
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-patch-deployment-v1-apps" aria-controls="res-kubectl-patch-deployment-v1-apps"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-patch-deployment-v1-apps" aria-controls="res-curl-patch-deployment-v1-apps"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-patch-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+"deployment-example" patched
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-patch-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Deployment",
+  "apiVersion": "apps/v1",
+  "metadata": {
+    "name": "deployment-example",
+    "namespace": "default",
+    "selfLink": "/apis/apps/v1/namespaces/default/deployments/deployment-example",
+    "uid": "5dc3a8e6-b0ee-11e6-aef0-42010af00229",
+    "resourceVersion": "164489",
+    "generation": 11,
+    "creationTimestamp": "2016-11-22T20:00:50Z",
+    "labels": {
+      "app": "nginx"
+    },
+    "annotations": {
+      "deployment.kubernetes.io/revision": "5"
+    }
+  },
+  "spec": {
+    "replicas": 3,
+    "selector": {
+      "matchLabels": {
+        "app": "nginx"
+      }
+    },
+    "template": {
+      "metadata": {
+        "creationTimestamp": null,
+        "labels": {
+          "app": "nginx"
+        }
+      },
+      "spec": {
+        "containers": [
+          {
+            "name": "nginx",
+            "image": "nginx:1.16",
+            "ports": [
+              {
+                "containerPort": 80,
+                "protocol": "TCP"
+              }
+            ],
+            "resources": {},
+            "terminationMessagePath": "/dev/termination-log",
+            "imagePullPolicy": "IfNotPresent"
+          }
+        ],
+        "restartPolicy": "Always",
+        "terminationGracePeriodSeconds": 30,
+        "dnsPolicy": "ClusterFirst",
+        "securityContext": {}
+      }
+    },
+    "strategy": {
+      "type": "RollingUpdate",
+      "rollingUpdate": {
+        "maxUnavailable": 1,
+        "maxSurge": 1
+      }
+    },
+    "revisionHistoryLimit": 10
+  },
+  "status": {
+    "observedGeneration": 10,
+    "replicas": 3,
+    "updatedReplicas": 3,
+    "availableReplicas": 3
+  }
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<P>partially update the specified Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/deployments/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Deployment</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-deployment-v1-apps">Replace</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-replace-deployment-v1-apps" aria-controls="req-kubectl-replace-deployment-v1-apps"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-replace-deployment-v1-apps" aria-controls="req-curl-replace-deployment-v1-apps"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-replace-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ echo 'apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: deployment-example
+spec:
+  replicas: 3
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      - name: nginx
+        image: nginx:1.16
+        ports:
+        - containerPort: 80
+' | kubectl replace -f -
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-replace-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X PUT -H 'Content-Type: application/yaml' --data '
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: deployment-example
+spec:
+  replicas: 3
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      - name: nginx
+        image: nginx:1.16
+        ports:
+        - containerPort: 80
+' http://127.0.0.1:8001/apis/apps/v1/namespaces/default/deployments/deployment-example
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-replace-deployment-v1-apps" aria-controls="res-kubectl-replace-deployment-v1-apps"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-replace-deployment-v1-apps" aria-controls="res-curl-replace-deployment-v1-apps"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-replace-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+deployment "deployment-example" replaced
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-replace-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Deployment",
+  "apiVersion": "apps/v1",
+  "metadata": {
+    "name": "deployment-example",
+    "namespace": "default",
+    "selfLink": "/apis/apps/v1/namespaces/default/deployments/deployment-example",
+    "uid": "4ccca349-9cb1-11e6-9c54-42010a800148",
+    "resourceVersion": "2119082",
+    "generation": 5,
+    "creationTimestamp": "2016-10-28T01:53:19Z",
+    "labels": {
+      "app": "nginx"
+    }
+  },
+  "spec": {
+    "replicas": 3,
+    "selector": {
+      "matchLabels": {
+        "app": "nginx"
+      }
+    },
+    "template": {
+      "metadata": {
+        "creationTimestamp": null,
+        "labels": {
+          "app": "nginx"
+        }
+      },
+      "spec": {
+        "containers": [
+          {
+            "name": "nginx",
+            "image": "nginx:1.16",
+            "ports": [
+              {
+                "containerPort": 80,
+                "protocol": "TCP"
+              }
+            ],
+            "resources": {},
+            "terminationMessagePath": "/dev/termination-log",
+            "imagePullPolicy": "IfNotPresent"
+          }
+        ],
+        "restartPolicy": "Always",
+        "terminationGracePeriodSeconds": 30,
+        "dnsPolicy": "ClusterFirst",
+        "securityContext": {}
+      }
+    },
+    "strategy": {
+      "type": "RollingUpdate",
+      "rollingUpdate": {
+        "maxUnavailable": 1,
+        "maxSurge": 1
+      }
+    },
+    "revisionHistoryLimit": 10
+  },
+  "status": {
+    "observedGeneration": 4,
+    "replicas": 3,
+    "updatedReplicas": 3,
+    "availableReplicas": 3
+  }
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<P>replace the specified Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/deployments/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Deployment</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-deployment-v1-apps">Delete</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-delete-deployment-v1-apps" aria-controls="req-kubectl-delete-deployment-v1-apps"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-delete-deployment-v1-apps" aria-controls="req-curl-delete-deployment-v1-apps"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-delete-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl delete deployment deployment-example
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-delete-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X DELETE -H 'Content-Type: application/yaml' --data '
+gracePeriodSeconds: 0
+orphanDependents: false
+' 'http://127.0.0.1:8001/apis/apps/v1/namespaces/default/deployments/deployment-example'
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-delete-deployment-v1-apps" aria-controls="res-kubectl-delete-deployment-v1-apps"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-delete-deployment-v1-apps" aria-controls="res-curl-delete-deployment-v1-apps"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-delete-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+deployment "deployment-example" deleted
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-delete-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Status",
+  "apiVersion": "v1",
+  "metadata": {},
+  "status": "Success",
+  "code": 200
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<P>delete a Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apps/v1/namespaces/{namespace}/deployments/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Deployment</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-deployment-v1-apps">Delete Collection</H2>
+<P>delete collection of Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apps/v1/namespaces/{namespace}/deployments</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-deployment-v1-apps-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-deployment-v1-apps">Read</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-read-deployment-v1-apps" aria-controls="req-kubectl-read-deployment-v1-apps"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-read-deployment-v1-apps" aria-controls="req-curl-read-deployment-v1-apps"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-read-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl get deployment deployment-example -o json
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-read-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X GET http://127.0.0.1:8001/apis/apps/v1/namespaces/default/deployments/deployment-example
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-read-deployment-v1-apps" aria-controls="res-kubectl-read-deployment-v1-apps"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-read-deployment-v1-apps" aria-controls="res-curl-read-deployment-v1-apps"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-read-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+{
+  "kind": "Deployment",
+  "apiVersion": "apps/v1",
+  "metadata": {
+    "name": "deployment-example",
+    "namespace": "default",
+    "selfLink": "/apis/apps/v1/namespaces/default/deployments/deployment-example",
+    "uid": "1b33145a-9c63-11e6-9c54-42010a800148",
+    "resourceVersion": "2064726",
+    "generation": 4,
+    "creationTimestamp": "2016-10-27T16:33:35Z",
+    "labels": {
+      "app": "nginx"
+    },
+    "annotations": {
+      "deployment.kubernetes.io/revision": "1"
+    }
+  },
+  "spec": {
+    "replicas": 3,
+    "selector": {
+      "matchLabels": {
+        "app": "nginx"
+      }
+    },
+    "template": {
+      "metadata": {
+        "creationTimestamp": null,
+        "labels": {
+          "app": "nginx"
+        }
+      },
+      "spec": {
+        "containers": [
+          {
+            "name": "nginx",
+            "image": "nginx:1.14",
+            "ports": [
+              {
+                "containerPort": 80,
+                "protocol": "TCP"
+              }
+            ],
+            "resources": {},
+            "terminationMessagePath": "/dev/termination-log",
+            "imagePullPolicy": "IfNotPresent"
+          }
+        ],
+        "restartPolicy": "Always",
+        "terminationGracePeriodSeconds": 30,
+        "dnsPolicy": "ClusterFirst",
+        "securityContext": {}
+      }
+    },
+    "strategy": {
+      "type": "RollingUpdate",
+      "rollingUpdate": {
+        "maxUnavailable": 1,
+        "maxSurge": 1
+      }
+    }
+  },
+  "status": {
+    "observedGeneration": 4,
+    "replicas": 3,
+    "updatedReplicas": 3,
+    "availableReplicas": 3
+  }
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-read-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Deployment",
+  "apiVersion": "apps/v1",
+  "metadata": {
+    "name": "deployment-example",
+    "namespace": "default",
+    "selfLink": "/apis/apps/v1/namespaces/default/deployments/deployment-example",
+    "uid": "1b33145a-9c63-11e6-9c54-42010a800148",
+    "resourceVersion": "2064726",
+    "generation": 4,
+    "creationTimestamp": "2016-10-27T16:33:35Z",
+    "labels": {
+      "app": "nginx"
+    },
+    "annotations": {
+      "deployment.kubernetes.io/revision": "1"
+    }
+  },
+  "spec": {
+    "replicas": 3,
+    "selector": {
+      "matchLabels": {
+        "app": "nginx"
+      }
+    },
+    "template": {
+      "metadata": {
+        "creationTimestamp": null,
+        "labels": {
+          "app": "nginx"
+        }
+      },
+      "spec": {
+        "containers": [
+          {
+            "name": "nginx",
+            "image": "nginx:1.14",
+            "ports": [
+              {
+                "containerPort": 80,
+                "protocol": "TCP"
+              }
+            ],
+            "resources": {},
+            "terminationMessagePath": "/dev/termination-log",
+            "imagePullPolicy": "IfNotPresent"
+          }
+        ],
+        "restartPolicy": "Always",
+        "terminationGracePeriodSeconds": 30,
+        "dnsPolicy": "ClusterFirst",
+        "securityContext": {}
+      }
+    },
+    "strategy": {
+      "type": "RollingUpdate",
+      "rollingUpdate": {
+        "maxUnavailable": 1,
+        "maxSurge": 1
+      }
+    }
+  },
+  "status": {
+    "observedGeneration": 4,
+    "replicas": 3,
+    "updatedReplicas": 3,
+    "availableReplicas": 3
+  }
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<P>read the specified Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/deployments/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Deployment</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-deployment-v1-apps">List</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-list-deployment-v1-apps" aria-controls="req-kubectl-list-deployment-v1-apps"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-list-deployment-v1-apps" aria-controls="req-curl-list-deployment-v1-apps"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-list-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl get deployment -o json
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-list-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X GET 'http://127.0.0.1:8001/apis/apps/v1/namespaces/default/deployments'
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-list-deployment-v1-apps" aria-controls="res-kubectl-list-deployment-v1-apps"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-list-deployment-v1-apps" aria-controls="res-curl-list-deployment-v1-apps"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-list-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+{
+  "kind": "List",
+  "apiVersion": "v1",
+  "metadata": {},
+  "items": [
+    {
+      "kind": "Deployment",
+      "apiVersion": "app/v1beta1",
+      "metadata": {
+        "name": "docs",
+        "namespace": "default",
+        "selfLink": "/apis/app/v1beta1/namespaces/default/deployments/docs",
+        "uid": "ef49e1d2-915e-11e6-be81-42010a80003f",
+        "resourceVersion": "1924126",
+        "generation": 21,
+        "creationTimestamp": "2016-10-13T16:06:00Z",
+        "labels": {
+          "run": "docs"
+        },
+        "annotations": {
+          "deployment.kubernetes.io/revision": "10",
+          "replicatingperfection.net/push-image": "true"
+        }
+      },
+      "spec": {
+        "replicas": 1,
+        "selector": {
+          "matchLabels": {
+            "run": "docs"
+          }
+        },
+        "template": {
+          "metadata": {
+            "creationTimestamp": null,
+            "labels": {
+              "auto-pushed-image-pwittrock/api-docs": "1477496453",
+              "run": "docs"
+            }
+          },
+          "spec": {
+            "containers": [
+              {
+                "name": "docs",
+                "image": "pwittrock/api-docs:v9",
+                "resources": {},
+                "terminationMessagePath": "/dev/termination-log",
+                "imagePullPolicy": "Always"
+              }
+            ],
+            "restartPolicy": "Always",
+            "terminationGracePeriodSeconds": 30,
+            "dnsPolicy": "ClusterFirst",
+            "securityContext": {}
+          }
+        },
+        "strategy": {
+          "type": "RollingUpdate",
+          "rollingUpdate": {
+            "maxUnavailable": 1,
+            "maxSurge": 1
+          }
+        }
+      },
+      "status": {
+        "observedGeneration": 21,
+        "replicas": 1,
+        "updatedReplicas": 1,
+        "availableReplicas": 1
+      }
+    },
+    {
+      "kind": "Deployment",
+      "apiVersion": "app/v1beta1",
+      "metadata": {
+        "name": "deployment-example",
+        "namespace": "default",
+        "selfLink": "/apis/app/v1beta1/namespaces/default/deployments/deployment-example",
+        "uid": "1b33145a-9c63-11e6-9c54-42010a800148",
+        "resourceVersion": "2064726",
+        "generation": 4,
+        "creationTimestamp": "2016-10-27T16:33:35Z",
+        "labels": {
+          "app": "nginx"
+        },
+        "annotations": {
+          "deployment.kubernetes.io/revision": "1"
+        }
+      },
+      "spec": {
+        "replicas": 3,
+        "selector": {
+          "matchLabels": {
+            "app": "nginx"
+          }
+        },
+        "template": {
+          "metadata": {
+            "creationTimestamp": null,
+            "labels": {
+              "app": "nginx"
+            }
+          },
+          "spec": {
+            "containers": [
+              {
+                "name": "nginx",
+                "image": "nginx:1.14",
+                "ports": [
+                  {
+                    "containerPort": 80,
+                    "protocol": "TCP"
+                  }
+                ],
+                "resources": {},
+                "terminationMessagePath": "/dev/termination-log",
+                "imagePullPolicy": "IfNotPresent"
+              }
+            ],
+            "restartPolicy": "Always",
+            "terminationGracePeriodSeconds": 30,
+            "dnsPolicy": "ClusterFirst",
+            "securityContext": {}
+          }
+        },
+        "strategy": {
+          "type": "RollingUpdate",
+          "rollingUpdate": {
+            "maxUnavailable": 1,
+            "maxSurge": 1
+          }
+        }
+      },
+      "status": {
+        "observedGeneration": 4,
+        "replicas": 3,
+        "updatedReplicas": 3,
+        "availableReplicas": 3
+      }
+    }
+  ]
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-list-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "List",
+  "apiVersion": "v1",
+  "metadata": {},
+  "items": [
+    {
+      "kind": "Deployment",
+      "apiVersion": "app/v1beta1",
+      "metadata": {
+        "name": "docs",
+        "namespace": "default",
+        "selfLink": "/apis/app/v1beta1/namespaces/default/deployments/docs",
+        "uid": "ef49e1d2-915e-11e6-be81-42010a80003f",
+        "resourceVersion": "1924126",
+        "generation": 21,
+        "creationTimestamp": "2016-10-13T16:06:00Z",
+        "labels": {
+          "run": "docs"
+        },
+        "annotations": {
+          "deployment.kubernetes.io/revision": "10",
+          "replicatingperfection.net/push-image": "true"
+        }
+      },
+      "spec": {
+        "replicas": 1,
+        "selector": {
+          "matchLabels": {
+            "run": "docs"
+          }
+        },
+        "template": {
+          "metadata": {
+            "creationTimestamp": null,
+            "labels": {
+              "auto-pushed-image-pwittrock/api-docs": "1477496453",
+              "run": "docs"
+            }
+          },
+          "spec": {
+            "containers": [
+              {
+                "name": "docs",
+                "image": "pwittrock/api-docs:v9",
+                "resources": {},
+                "terminationMessagePath": "/dev/termination-log",
+                "imagePullPolicy": "Always"
+              }
+            ],
+            "restartPolicy": "Always",
+            "terminationGracePeriodSeconds": 30,
+            "dnsPolicy": "ClusterFirst",
+            "securityContext": {}
+          }
+        },
+        "strategy": {
+          "type": "RollingUpdate",
+          "rollingUpdate": {
+            "maxUnavailable": 1,
+            "maxSurge": 1
+          }
+        }
+      },
+      "status": {
+        "observedGeneration": 21,
+        "replicas": 1,
+        "updatedReplicas": 1,
+        "availableReplicas": 1
+      }
+    },
+    {
+      "kind": "Deployment",
+      "apiVersion": "app/v1beta1",
+      "metadata": {
+        "name": "deployment-example",
+        "namespace": "default",
+        "selfLink": "/apis/app/v1beta1/namespaces/default/deployments/deployment-example",
+        "uid": "1b33145a-9c63-11e6-9c54-42010a800148",
+        "resourceVersion": "2064726",
+        "generation": 4,
+        "creationTimestamp": "2016-10-27T16:33:35Z",
+        "labels": {
+          "app": "nginx"
+        },
+        "annotations": {
+          "deployment.kubernetes.io/revision": "1"
+        }
+      },
+      "spec": {
+        "replicas": 3,
+        "selector": {
+          "matchLabels": {
+            "app": "nginx"
+          }
+        },
+        "template": {
+          "metadata": {
+            "creationTimestamp": null,
+            "labels": {
+              "app": "nginx"
+            }
+          },
+          "spec": {
+            "containers": [
+              {
+                "name": "nginx",
+                "image": "nginx:1.14",
+                "ports": [
+                  {
+                    "containerPort": 80,
+                    "protocol": "TCP"
+                  }
+                ],
+                "resources": {},
+                "terminationMessagePath": "/dev/termination-log",
+                "imagePullPolicy": "IfNotPresent"
+              }
+            ],
+            "restartPolicy": "Always",
+            "terminationGracePeriodSeconds": 30,
+            "dnsPolicy": "ClusterFirst",
+            "securityContext": {}
+          }
+        },
+        "strategy": {
+          "type": "RollingUpdate",
+          "rollingUpdate": {
+            "maxUnavailable": 1,
+            "maxSurge": 1
+          }
+        }
+      },
+      "status": {
+        "observedGeneration": 4,
+        "replicas": 3,
+        "updatedReplicas": 3,
+        "availableReplicas": 3
+      }
+    }
+  ]
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<P>list or watch objects of kind Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/deployments</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#deploymentlist-v1-apps">DeploymentList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-deployment-v1-apps">List All Namespaces</H2>
+<P>list or watch objects of kind Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/deployments</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#deploymentlist-v1-apps">DeploymentList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-deployment-v1-apps">Watch</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-watch-deployment-v1-apps" aria-controls="req-kubectl-watch-deployment-v1-apps"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-watch-deployment-v1-apps" aria-controls="req-curl-watch-deployment-v1-apps"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-watch-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl get deployment deployment-example --watch -o json
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-watch-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X GET 'http://127.0.0.1:8001/apis/apps/v1/watch/namespaces/default/deployments/deployment-example'
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-watch-deployment-v1-apps" aria-controls="res-kubectl-watch-deployment-v1-apps"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-watch-deployment-v1-apps" aria-controls="res-curl-watch-deployment-v1-apps"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-watch-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+{
+	"type": "ADDED",
+	"object": {
+		"kind": "Deployment",
+		"apiVersion": "apps/v1",
+		"metadata": {
+			"name": "deployment-example",
+			"namespace": "default",
+			"selfLink": "/apis/apps/v1/namespaces/default/deployments/deployment-example",
+			"uid": "64c12290-9cbf-11e6-9c54-42010a800148",
+			"resourceVersion": "2128095",
+			"generation": 2,
+			"creationTimestamp": "2016-10-28T03:34:12Z",
+			"labels": {
+				"app": "nginx"
+			},
+			"annotations": {
+				"deployment.kubernetes.io/revision": "3"
+			}
+		},
+		"spec": {
+			"replicas": 3,
+			"selector": {
+				"matchLabels": {
+					"app": "nginx"
+				}
+			},
+			"template": {
+				"metadata": {
+					"creationTimestamp": null,
+					"labels": {
+						"app": "nginx"
+					}
+				},
+				"spec": {
+					"containers": [
+						{
+							"name": "nginx",
+							"image": "nginx:1.14",
+							"ports": [
+								{
+									"containerPort": 80,
+									"protocol": "TCP"
+								}
+							],
+							"resources": {
+							},
+							"terminationMessagePath": "/dev/termination-log",
+							"imagePullPolicy": "IfNotPresent"
+						}
+					],
+					"restartPolicy": "Always",
+					"terminationGracePeriodSeconds": 30,
+					"dnsPolicy": "ClusterFirst",
+					"securityContext": {
+					}
+				}
+			},
+			"strategy": {
+				"type": "RollingUpdate",
+				"rollingUpdate": {
+					"maxUnavailable": 1,
+					"maxSurge": 1
+				}
+			}
+		},
+		"status": {
+			"observedGeneration": 2,
+			"replicas": 3,
+			"updatedReplicas": 3,
+			"availableReplicas": 3
+		}
+	}
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-watch-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+	"type": "ADDED",
+	"object": {
+		"kind": "Deployment",
+		"apiVersion": "apps/v1",
+		"metadata": {
+			"name": "deployment-example",
+			"namespace": "default",
+			"selfLink": "/apis/apps/v1/namespaces/default/deployments/deployment-example",
+			"uid": "64c12290-9cbf-11e6-9c54-42010a800148",
+			"resourceVersion": "2128095",
+			"generation": 2,
+			"creationTimestamp": "2016-10-28T03:34:12Z",
+			"labels": {
+				"app": "nginx"
+			},
+			"annotations": {
+				"deployment.kubernetes.io/revision": "3"
+			}
+		},
+		"spec": {
+			"replicas": 3,
+			"selector": {
+				"matchLabels": {
+					"app": "nginx"
+				}
+			},
+			"template": {
+				"metadata": {
+					"creationTimestamp": null,
+					"labels": {
+						"app": "nginx"
+					}
+				},
+				"spec": {
+					"containers": [
+						{
+							"name": "nginx",
+							"image": "nginx:1.14",
+							"ports": [
+								{
+									"containerPort": 80,
+									"protocol": "TCP"
+								}
+							],
+							"resources": {
+							},
+							"terminationMessagePath": "/dev/termination-log",
+							"imagePullPolicy": "IfNotPresent"
+						}
+					],
+					"restartPolicy": "Always",
+					"terminationGracePeriodSeconds": 30,
+					"dnsPolicy": "ClusterFirst",
+					"securityContext": {
+					}
+				}
+			},
+			"strategy": {
+				"type": "RollingUpdate",
+				"rollingUpdate": {
+					"maxUnavailable": 1,
+					"maxSurge": 1
+				}
+			}
+		},
+		"status": {
+			"observedGeneration": 2,
+			"replicas": 3,
+			"updatedReplicas": 3,
+			"availableReplicas": 3
+		}
+	}
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<P>watch changes to an object of kind Deployment. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/namespaces/{namespace}/deployments/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Deployment</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-deployment-v1-apps">Watch List</H2>
+<P>watch individual changes to a list of Deployment. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/namespaces/{namespace}/deployments</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-deployment-v1-apps">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Deployment. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/deployments</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-deployment-v1-apps-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-deployment-v1-apps">Patch Status</H2>
+<P>partially update status of the specified Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/deployments/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Deployment</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-deployment-v1-apps">Read Status</H2>
+<P>read status of the specified Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/deployments/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Deployment</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-deployment-v1-apps">Replace Status</H2>
+<P>replace status of the specified Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/deployments/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Deployment</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-misc-operations-deployment-v1-apps-strong-"><STRONG>Misc Operations</STRONG></H2>
+<H2 id="read-scale-deployment-v1-apps">Read Scale</H2>
+<P>read scale of the specified Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/deployments/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-scale-deployment-v1-apps">Replace Scale</H2>
+<P>replace scale of the specified Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/deployments/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-scale-deployment-v1-apps">Patch Scale</H2>
+<P>partially update scale of the specified Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/deployments/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="job-v1-batch">Job v1 batch</H1>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#example-job-v1-batch" aria-controls="example-job-v1-batch"
+  aria-expanded="false">example</BUTTON>
+<DIV class="collapse" id="example-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Job Config to print pi up to 2000 digits (then exit).</DIV>
+  <DIV class="panel-body">
+<PRE class="example"><CODE class="lang-yaml">
+apiVersion: batch/v1
+kind: Job
+metadata:
+  # Unique key of the Job instance
+  name: example-job
+spec:
+  template:
+    metadata:
+      name: example-job
+    spec:
+      containers:
+      - name: pi
+        image: perl
+        command: [&#34;perl&#34;]
+        args: [&#34;-Mbignum=bpi&#34;, &#34;-wle&#34;, &#34;print bpi(2000)&#34;]
+      # Do not restart containers after they exit
+      restartPolicy: Never
+
+</CODE></PRE></DIV></DIV></DIV>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>batch</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Job</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#joblist-v1-batch">JobList [batch/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#jobspec-v1-batch">JobSpec</a></I></TD><TD>Specification of the desired behavior of a job. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#jobstatus-v1-batch">JobStatus</a></I></TD><TD>Current status of a job. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="jobspec-v1-batch">JobSpec v1 batch</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#job-v1-batch">Job [batch/v1]</a></LI>
+  <LI><a href="#jobtemplatespec-v1-batch">JobTemplateSpec [batch/v1]</a></LI>
+  <LI><a href="#jobtemplatespec-v1beta1-batch">JobTemplateSpec [batch/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>activeDeadlineSeconds</CODE><BR /><I>integer</I></TD><TD>Specifies the duration in seconds relative to the startTime that the job may be continuously active before the system tries to terminate it; value must be positive integer. If a Job is suspended (at creation or through an update), this timer will effectively be stopped and reset when the Job is resumed again.</TD></TR>
+<TR><TD><CODE>backoffLimit</CODE><BR /><I>integer</I></TD><TD>Specifies the number of retries before marking this job failed. Defaults to 6</TD></TR>
+<TR><TD><CODE>completionMode</CODE><BR /><I>string</I></TD><TD>CompletionMode specifies how Pod completions are tracked. It can be `NonIndexed` (default) or `Indexed`.  `NonIndexed` means that the Job is considered complete when there have been .spec.completions successfully completed Pods. Each Pod completion is homologous to each other.  `Indexed` means that the Pods of a Job get an associated completion index from 0 to (.spec.completions - 1), available in the annotation batch.kubernetes.io/job-completion-index. The Job is considered complete when there is one successfully completed Pod for each index. When value is `Indexed`, .spec.completions must be specified and `.spec.parallelism` must be less than or equal to 10^5. In addition, The Pod name takes the form `$(job-name)-$(index)-$(random-string)`, the Pod hostname takes the form `$(job-name)-$(index)`.  This field is beta-level. More completion modes can be added in the future. If the Job controller observes a mode that it doesn&#39;t recognize, the controller skips updates for the Job.</TD></TR>
+<TR><TD><CODE>completions</CODE><BR /><I>integer</I></TD><TD>Specifies the desired number of successfully finished pods the job should be run with.  Setting to nil means that the success of any pod signals the success of all pods, and allows parallelism to have any positive value.  Setting to 1 means that parallelism is limited to 1 and the success of that pod signals the success of the job. More info: https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/</TD></TR>
+<TR><TD><CODE>manualSelector</CODE><BR /><I>boolean</I></TD><TD>manualSelector controls generation of pod labels and pod selectors. Leave `manualSelector` unset unless you are certain what you are doing. When false or unset, the system pick labels unique to this job and appends those labels to the pod template.  When true, the user is responsible for picking unique labels and specifying the selector.  Failure to pick a unique label may cause this and other jobs to not function correctly.  However, You may see `manualSelector=true` in jobs that were created with the old `extensions/v1beta1` API. More info: https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/#specifying-your-own-pod-selector</TD></TR>
+<TR><TD><CODE>parallelism</CODE><BR /><I>integer</I></TD><TD>Specifies the maximum desired number of pods the job should run at any given time. The actual number of pods running in steady state will be less than this number when ((.spec.completions - .status.successful) &lt; .spec.parallelism), i.e. when the work left to do is less than max parallelism. More info: https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>A label query over pods that should match the pod count. Normally, the system sets this field for you. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors</TD></TR>
+<TR><TD><CODE>suspend</CODE><BR /><I>boolean</I></TD><TD>Suspend specifies whether the Job controller should create Pods or not. If a Job is created with suspend set to true, no Pods are created by the Job controller. If a Job is suspended after creation (i.e. the flag goes from false to true), the Job controller will delete all active Pods associated with this Job. Users must design their workload to gracefully handle this. Suspending a Job will reset the StartTime field of the Job, effectively resetting the ActiveDeadlineSeconds timer too. Defaults to false.  This field is beta-level, gated by SuspendJob feature flag (enabled by default).</TD></TR>
+<TR><TD><CODE>template</CODE><BR /><I><a href="#podtemplatespec-v1-core">PodTemplateSpec</a></I></TD><TD>Describes the pod that will be created when executing a job. More info: https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/</TD></TR>
+<TR><TD><CODE>ttlSecondsAfterFinished</CODE><BR /><I>integer</I></TD><TD>ttlSecondsAfterFinished limits the lifetime of a Job that has finished execution (either Complete or Failed). If this field is set, ttlSecondsAfterFinished after the Job finishes, it is eligible to be automatically deleted. When the Job is being deleted, its lifecycle guarantees (e.g. finalizers) will be honored. If this field is unset, the Job won&#39;t be automatically deleted. If this field is set to zero, the Job becomes eligible to be deleted immediately after it finishes.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="jobstatus-v1-batch">JobStatus v1 batch</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#job-v1-batch">Job [batch/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>active</CODE><BR /><I>integer</I></TD><TD>The number of pending and running pods.</TD></TR>
+<TR><TD><CODE>completedIndexes</CODE><BR /><I>string</I></TD><TD>CompletedIndexes holds the completed indexes when .spec.completionMode = &#34;Indexed&#34; in a text format. The indexes are represented as decimal integers separated by commas. The numbers are listed in increasing order. Three or more consecutive numbers are compressed and represented by the first and last element of the series, separated by a hyphen. For example, if the completed indexes are 1, 3, 4, 5 and 7, they are represented as &#34;1,3-5,7&#34;.</TD></TR>
+<TR><TD><CODE>completionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Represents time when the job was completed. It is not guaranteed to be set in happens-before order across separate operations. It is represented in RFC3339 form and is in UTC. The completion time is only set when the job finishes successfully.</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#jobcondition-v1-batch">JobCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>The latest available observations of an object&#39;s current state. When a Job fails, one of the conditions will have type &#34;Failed&#34; and status true. When a Job is suspended, one of the conditions will have type &#34;Suspended&#34; and status true; when the Job is resumed, the status of this condition will become false. When a Job is completed, one of the conditions will have type &#34;Complete&#34; and status true. More info: https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/</TD></TR>
+<TR><TD><CODE>failed</CODE><BR /><I>integer</I></TD><TD>The number of pods which reached phase Failed.</TD></TR>
+<TR><TD><CODE>ready</CODE><BR /><I>integer</I></TD><TD>The number of pods which have a Ready condition.  This field is alpha-level. The job controller populates the field when the feature gate JobReadyPods is enabled (disabled by default).</TD></TR>
+<TR><TD><CODE>startTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Represents time when the job controller started processing a job. When a Job is created in the suspended state, this field is not set until the first time it is resumed. This field is reset every time a Job is resumed from suspension. It is represented in RFC3339 form and is in UTC.</TD></TR>
+<TR><TD><CODE>succeeded</CODE><BR /><I>integer</I></TD><TD>The number of pods which reached phase Succeeded.</TD></TR>
+<TR><TD><CODE>uncountedTerminatedPods</CODE><BR /><I><a href="#uncountedterminatedpods-v1-batch">UncountedTerminatedPods</a></I></TD><TD>UncountedTerminatedPods holds the UIDs of Pods that have terminated but the job controller hasn&#39;t yet accounted for in the status counters.  The job controller creates pods with a finalizer. When a pod terminates (succeeded or failed), the controller does three steps to account for it in the job status: (1) Add the pod UID to the arrays in this field. (2) Remove the pod finalizer. (3) Remove the pod UID from the arrays while increasing the corresponding     counter.  This field is beta-level. The job controller only makes use of this field when the feature gate JobTrackingWithFinalizers is enabled (enabled by default). Old jobs might not be tracked using this field, in which case the field remains null.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="joblist-v1-batch">JobList v1 batch</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#job-v1-batch">Job</a> array</I></TD><TD>items is the list of Jobs.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-job-v1-batch-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-job-v1-batch">Create</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-create-job-v1-batch" aria-controls="req-kubectl-create-job-v1-batch"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-create-job-v1-batch" aria-controls="req-curl-create-job-v1-batch"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-create-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ echo 'apiVersion: batch/v1
+kind: Job
+metadata:
+  name: example-job
+spec:
+  template:
+    metadata:
+      name: example-job
+    spec:
+      containers:
+      - name: pi
+        image: perl
+        command: ["perl",  "-Mbignum=bpi", "-wle", "print bpi(2000)"]
+      restartPolicy: Never
+' | kubectl create -f -
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-create-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X POST -H 'Content-Type: application/yaml' --data '
+apiVersion: batch/v1
+kind: Job
+metadata:
+  name: example-job
+spec:
+  template:
+    metadata:
+      name: example-job
+    spec:
+      containers:
+      - name: pi
+        image: perl
+        command: ["perl",  "-Mbignum=bpi", "-wle", "print bpi(2000)"]
+      restartPolicy: Never
+' http://127.0.0.1:8001/apis/batch/v1/namespaces/default/jobs
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-create-job-v1-batch" aria-controls="res-kubectl-create-job-v1-batch"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-create-job-v1-batch" aria-controls="res-curl-create-job-v1-batch"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-create-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+job "example-job" created
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-create-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Job",
+  "apiVersion": "batch/v1",
+  "metadata": {
+    "name": "example-job",
+    "namespace": "default",
+    "selfLink": "/apis/batch/v1/namespaces/default/jobs/example-job",
+    "uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+    "resourceVersion": "7479",
+    "creationTimestamp": "2016-11-04T18:45:25Z"
+  },
+  "spec": {
+    "parallelism": 1,
+    "completions": 1,
+    "selector": {
+      "matchLabels": {
+        "controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7"
+      }
+    },
+    "template": {
+      "metadata": {
+        "name": "example-job",
+        "creationTimestamp": null,
+        "labels": {
+          "controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+          "job-name": "example-job"
+        }
+      },
+      "spec": {
+        "containers": [
+          {
+            "name": "pi",
+            "image": "perl",
+            "command": [
+              "perl",
+              "-Mbignum=bpi",
+              "-wle",
+              "print bpi(2000)"
+            ],
+            "resources": {},
+            "terminationMessagePath": "/dev/termination-log",
+            "imagePullPolicy": "Always"
+          }
+        ],
+        "restartPolicy": "Never",
+        "terminationGracePeriodSeconds": 30,
+        "dnsPolicy": "ClusterFirst",
+        "securityContext": {}
+      }
+    }
+  },
+  "status": {}
+}
+</CODE></PRE></DIV></DIV></DIV>
+<P>create a Job</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/batch/v1/namespaces/{namespace}/jobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#job-v1-batch">Job</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-job-v1-batch">Patch</H2>
+<P>partially update the specified Job</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/batch/v1/namespaces/{namespace}/jobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Job</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-job-v1-batch">Replace</H2>
+<P>replace the specified Job</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/batch/v1/namespaces/{namespace}/jobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Job</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#job-v1-batch">Job</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-job-v1-batch">Delete</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-delete-job-v1-batch" aria-controls="req-kubectl-delete-job-v1-batch"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-delete-job-v1-batch" aria-controls="req-curl-delete-job-v1-batch"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-delete-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl delete job example-job
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-delete-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X DELETE -H 'Content-Type: application/yaml' --data '
+gracePeriodSeconds: 0
+orphanDependents: false
+' 'http://127.0.0.1:8001/apis/batch/v1/namespaces/default/jobs/example-job'
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-delete-job-v1-batch" aria-controls="res-kubectl-delete-job-v1-batch"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-delete-job-v1-batch" aria-controls="res-curl-delete-job-v1-batch"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-delete-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+job "example-job" deleted
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-delete-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Status",
+  "apiVersion": "v1",
+  "metadata": {},
+  "status": "Success",
+  "code": 200
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<P>delete a Job</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/batch/v1/namespaces/{namespace}/jobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Job</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-job-v1-batch">Delete Collection</H2>
+<P>delete collection of Job</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/batch/v1/namespaces/{namespace}/jobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-job-v1-batch-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-job-v1-batch">Read</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-read-job-v1-batch" aria-controls="req-kubectl-read-job-v1-batch"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-read-job-v1-batch" aria-controls="req-curl-read-job-v1-batch"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-read-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl get job example-job -o json
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-read-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X GET http://127.0.0.1:8001/apis/batch/v1/namespaces/default/jobs/example-job
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-read-job-v1-batch" aria-controls="res-kubectl-read-job-v1-batch"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-read-job-v1-batch" aria-controls="res-curl-read-job-v1-batch"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-read-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+{
+  "kind": "Job",
+  "apiVersion": "batch/v1",
+  "metadata": {
+    "name": "example-job",
+    "namespace": "default",
+    "selfLink": "/apis/batch/v1/namespaces/default/jobs/example-job",
+    "uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+    "resourceVersion": "7482",
+    "creationTimestamp": "2016-11-04T18:45:25Z"
+  },
+  "spec": {
+    "parallelism": 1,
+    "completions": 1,
+    "selector": {
+      "matchLabels": {
+        "controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7"
+      }
+    },
+    "template": {
+      "metadata": {
+        "name": "example-job",
+        "creationTimestamp": null,
+        "labels": {
+          "controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+          "job-name": "example-job"
+        }
+      },
+      "spec": {
+        "containers": [
+          {
+            "name": "pi",
+            "image": "perl",
+            "command": [
+              "perl",
+              "-Mbignum=bpi",
+              "-wle",
+              "print bpi(2000)"
+            ],
+            "resources": {},
+            "terminationMessagePath": "/dev/termination-log",
+            "imagePullPolicy": "Always"
+          }
+        ],
+        "restartPolicy": "Never",
+        "terminationGracePeriodSeconds": 30,
+        "dnsPolicy": "ClusterFirst",
+        "securityContext": {}
+      }
+    }
+  },
+  "status": {
+    "startTime": "2016-11-04T18:45:25Z",
+    "active": 1
+  }
+}
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-read-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Job",
+  "apiVersion": "batch/v1",
+  "metadata": {
+    "name": "example-job",
+    "namespace": "default",
+    "selfLink": "/apis/batch/v1/namespaces/default/jobs/example-job",
+    "uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+    "resourceVersion": "7482",
+    "creationTimestamp": "2016-11-04T18:45:25Z"
+  },
+  "spec": {
+    "parallelism": 1,
+    "completions": 1,
+    "selector": {
+      "matchLabels": {
+        "controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7"
+      }
+    },
+    "template": {
+      "metadata": {
+        "name": "example-job",
+        "creationTimestamp": null,
+        "labels": {
+          "controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+          "job-name": "example-job"
+        }
+      },
+      "spec": {
+        "containers": [
+          {
+            "name": "pi",
+            "image": "perl",
+            "command": [
+              "perl",
+              "-Mbignum=bpi",
+              "-wle",
+              "print bpi(2000)"
+            ],
+            "resources": {},
+            "terminationMessagePath": "/dev/termination-log",
+            "imagePullPolicy": "Always"
+          }
+        ],
+        "restartPolicy": "Never",
+        "terminationGracePeriodSeconds": 30,
+        "dnsPolicy": "ClusterFirst",
+        "securityContext": {}
+      }
+    }
+  },
+  "status": {
+    "startTime": "2016-11-04T18:45:25Z",
+    "active": 1
+  }
+}
+</CODE></PRE></DIV></DIV></DIV>
+<P>read the specified Job</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/namespaces/{namespace}/jobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Job</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-job-v1-batch">List</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-list-job-v1-batch" aria-controls="req-kubectl-list-job-v1-batch"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-list-job-v1-batch" aria-controls="req-curl-list-job-v1-batch"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-list-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl get job -o json
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-list-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X GET 'http://127.0.0.1:8001/apis/batch/v1/namespaces/default/jobs'
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-list-job-v1-batch" aria-controls="res-kubectl-list-job-v1-batch"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-list-job-v1-batch" aria-controls="res-curl-list-job-v1-batch"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-list-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+{
+  "kind": "JobList",
+  "apiVersion": "batch/v1",
+  "metadata": {
+    "selfLink": "/apis/batch/v1/namespaces/default/jobs",
+    "resourceVersion": "7589"
+  },
+  "items": [
+    {
+      "metadata": {
+        "name": "",
+        "namespace": "default",
+        "selfLink": "/apis/batch/v1/namespaces/default/jobs/",
+        "uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+        "resourceVersion": "7482",
+        "creationTimestamp": "2016-11-04T18:45:25Z"
+      },
+      "spec": {
+        "parallelism": 1,
+        "completions": 1,
+        "selector": {
+          "matchLabels": {
+            "controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7"
+          }
+        },
+        "template": {
+          "metadata": {
+            "name": "",
+            "creationTimestamp": null,
+            "labels": {
+              "controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+              "job-name": ""
+            }
+          },
+          "spec": {
+            "containers": [
+              {
+                "name": "pi",
+                "image": "perl",
+                "command": [
+                  "perl",
+                  "-Mbignum=bpi",
+                  "-wle",
+                  "print bpi(2000)"
+                ],
+                "resources": {},
+                "terminationMessagePath": "/dev/termination-log",
+                "imagePullPolicy": "Always"
+              }
+            ],
+            "restartPolicy": "Never",
+            "terminationGracePeriodSeconds": 30,
+            "dnsPolicy": "ClusterFirst",
+            "securityContext": {}
+          }
+        }
+      },
+      "status": {
+        "startTime": "2016-11-04T18:45:25Z",
+        "active": 1
+      }
+    }
+  ]
+}
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-list-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "JobList",
+  "apiVersion": "batch/v1",
+  "metadata": {
+    "selfLink": "/apis/batch/v1/namespaces/default/jobs",
+    "resourceVersion": "7589"
+  },
+  "items": [
+    {
+      "metadata": {
+        "name": "",
+        "namespace": "default",
+        "selfLink": "/apis/batch/v1/namespaces/default/jobs/",
+        "uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+        "resourceVersion": "7482",
+        "creationTimestamp": "2016-11-04T18:45:25Z"
+      },
+      "spec": {
+        "parallelism": 1,
+        "completions": 1,
+        "selector": {
+          "matchLabels": {
+            "controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7"
+          }
+        },
+        "template": {
+          "metadata": {
+            "name": "",
+            "creationTimestamp": null,
+            "labels": {
+              "controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+              "job-name": ""
+            }
+          },
+          "spec": {
+            "containers": [
+              {
+                "name": "pi",
+                "image": "perl",
+                "command": [
+                  "perl",
+                  "-Mbignum=bpi",
+                  "-wle",
+                  "print bpi(2000)"
+                ],
+                "resources": {},
+                "terminationMessagePath": "/dev/termination-log",
+                "imagePullPolicy": "Always"
+              }
+            ],
+            "restartPolicy": "Never",
+            "terminationGracePeriodSeconds": 30,
+            "dnsPolicy": "ClusterFirst",
+            "securityContext": {}
+          }
+        }
+      },
+      "status": {
+        "startTime": "2016-11-04T18:45:25Z",
+        "active": 1
+      }
+    }
+  ]
+}
+</CODE></PRE></DIV></DIV></DIV>
+<P>list or watch objects of kind Job</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/namespaces/{namespace}/jobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#joblist-v1-batch">JobList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-job-v1-batch">List All Namespaces</H2>
+<P>list or watch objects of kind Job</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/jobs</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#joblist-v1-batch">JobList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-job-v1-batch">Watch</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-watch-job-v1-batch" aria-controls="req-kubectl-watch-job-v1-batch"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-watch-job-v1-batch" aria-controls="req-curl-watch-job-v1-batch"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-watch-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl get job example-job --watch -o json
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-watch-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X GET 'http://127.0.0.1:8001/apis/batch/v1/watch/namespaces/default/jobs/example-job'
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-watch-job-v1-batch" aria-controls="res-kubectl-watch-job-v1-batch"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-watch-job-v1-batch" aria-controls="res-curl-watch-job-v1-batch"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-watch-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+{
+	"type": "ADDED",
+	"object": {
+		"kind": "Job",
+		"apiVersion": "batch/v1",
+		"metadata": {
+			"name": "example-job",
+			"namespace": "default",
+			"selfLink": "/apis/batch/v1/namespaces/default/jobs/example-job",
+			"uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+			"resourceVersion": "7482",
+			"creationTimestamp": "2016-11-04T18:45:25Z"
+		},
+		"spec": {
+			"parallelism": 1,
+			"completions": 1,
+			"selector": {
+				"matchLabels": {
+					"controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7"
+				}
+			},
+			"template": {
+				"metadata": {
+					"name": "example-job",
+					"creationTimestamp": null,
+					"labels": {
+						"controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+						"job-name": "example-job"
+					}
+				},
+				"spec": {
+					"containers": [
+						{
+							"name": "pi",
+							"image": "perl",
+							"command": [
+								"perl",
+								"-Mbignum=bpi",
+								"-wle",
+								"print bpi(2000)"
+							],
+							"resources": {
+							},
+							"terminationMessagePath": "/dev/termination-log",
+							"imagePullPolicy": "Always"
+						}
+					],
+					"restartPolicy": "Never",
+					"terminationGracePeriodSeconds": 30,
+					"dnsPolicy": "ClusterFirst",
+					"securityContext": {
+					}
+				}
+			}
+		},
+		"status": {
+			"startTime": "2016-11-04T18:45:25Z",
+			"active": 1
+		}
+	}
+}
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-watch-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+	"type": "ADDED",
+	"object": {
+		"kind": "Job",
+		"apiVersion": "batch/v1",
+		"metadata": {
+			"name": "example-job",
+			"namespace": "default",
+			"selfLink": "/apis/batch/v1/namespaces/default/jobs/example-job",
+			"uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+			"resourceVersion": "7482",
+			"creationTimestamp": "2016-11-04T18:45:25Z"
+		},
+		"spec": {
+			"parallelism": 1,
+			"completions": 1,
+			"selector": {
+				"matchLabels": {
+					"controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7"
+				}
+			},
+			"template": {
+				"metadata": {
+					"name": "example-job",
+					"creationTimestamp": null,
+					"labels": {
+						"controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+						"job-name": "example-job"
+					}
+				},
+				"spec": {
+					"containers": [
+						{
+							"name": "pi",
+							"image": "perl",
+							"command": [
+								"perl",
+								"-Mbignum=bpi",
+								"-wle",
+								"print bpi(2000)"
+							],
+							"resources": {
+							},
+							"terminationMessagePath": "/dev/termination-log",
+							"imagePullPolicy": "Always"
+						}
+					],
+					"restartPolicy": "Never",
+					"terminationGracePeriodSeconds": 30,
+					"dnsPolicy": "ClusterFirst",
+					"securityContext": {
+					}
+				}
+			}
+		},
+		"status": {
+			"startTime": "2016-11-04T18:45:25Z",
+			"active": 1
+		}
+	}
+}
+</CODE></PRE></DIV></DIV></DIV>
+<P>watch changes to an object of kind Job. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/watch/namespaces/{namespace}/jobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Job</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-job-v1-batch">Watch List</H2>
+<P>watch individual changes to a list of Job. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/watch/namespaces/{namespace}/jobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-job-v1-batch">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Job. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/watch/jobs</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-job-v1-batch-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-job-v1-batch">Patch Status</H2>
+<P>partially update status of the specified Job</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/batch/v1/namespaces/{namespace}/jobs/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Job</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-job-v1-batch">Read Status</H2>
+<P>read status of the specified Job</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/namespaces/{namespace}/jobs/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Job</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-job-v1-batch">Replace Status</H2>
+<P>replace status of the specified Job</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/batch/v1/namespaces/{namespace}/jobs/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Job</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#job-v1-batch">Job</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="pod-v1-core">Pod v1 core</H1>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#example-pod-v1-core" aria-controls="example-pod-v1-core"
+  aria-expanded="false">example</BUTTON>
+<DIV class="collapse" id="example-pod-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Pod Config to print "Hello World".</DIV>
+  <DIV class="panel-body">
+<PRE class="example"><CODE class="lang-yaml">
+apiVersion: v1
+kind: Pod
+metadata:
+  name: pod-example
+spec:
+  containers:
+  - name: ubuntu
+    image: ubuntu:trusty
+    command: [&#34;echo&#34;]
+    args: [&#34;Hello World&#34;]
+
+</CODE></PRE></DIV></DIV></DIV>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Pod</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-warning col-md-8"><P><I class="fa fa-warning"></I> <B>Warning:</B></P><P>It is recommended that users create Pods only through a Controller, and not directly.  See Controllers: <a href="#deployment-v1-apps">Deployment</a>, <a href="#job-v1-batch">Job</a>, or <a href="#statefulset-v1-apps">StatefulSet</a>.</P></DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podlist-v1-core">PodList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#podspec-v1-core">PodSpec</a></I></TD><TD>Specification of the desired behavior of the pod. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#podstatus-v1-core">PodStatus</a></I></TD><TD>Most recently observed status of the pod. This data may not be up to date. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="podspec-v1-core">PodSpec v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#pod-v1-core">Pod [core/v1]</a></LI>
+  <LI><a href="#podtemplatespec-v1-core">PodTemplateSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>activeDeadlineSeconds</CODE><BR /><I>integer</I></TD><TD>Optional duration in seconds the pod may be active on the node relative to StartTime before the system will actively try to mark it failed and kill associated containers. Value must be a positive integer.</TD></TR>
+<TR><TD><CODE>affinity</CODE><BR /><I><a href="#affinity-v1-core">Affinity</a></I></TD><TD>If specified, the pod&#39;s scheduling constraints</TD></TR>
+<TR><TD><CODE>automountServiceAccountToken</CODE><BR /><I>boolean</I></TD><TD>AutomountServiceAccountToken indicates whether a service account token should be automatically mounted.</TD></TR>
+<TR><TD><CODE>containers</CODE><BR /><I><a href="#container-v1-core">Container</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>name</I></TD><TD>List of containers belonging to the pod. Containers cannot currently be added or removed. There must be at least one container in a Pod. Cannot be updated.</TD></TR>
+<TR><TD><CODE>dnsConfig</CODE><BR /><I><a href="#poddnsconfig-v1-core">PodDNSConfig</a></I></TD><TD>Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.</TD></TR>
+<TR><TD><CODE>dnsPolicy</CODE><BR /><I>string</I></TD><TD>Set DNS policy for the pod. Defaults to &#34;ClusterFirst&#34;. Valid values are &#39;ClusterFirstWithHostNet&#39;, &#39;ClusterFirst&#39;, &#39;Default&#39; or &#39;None&#39;. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. To have DNS options set along with hostNetwork, you have to specify DNS policy explicitly to &#39;ClusterFirstWithHostNet&#39;.  Possible enum values:  - `&#34;ClusterFirst&#34;` indicates that the pod should use cluster DNS first unless hostNetwork is true, if it is available, then fall back on the default (as determined by kubelet) DNS settings.  - `&#34;ClusterFirstWithHostNet&#34;` indicates that the pod should use cluster DNS first, if it is available, then fall back on the default (as determined by kubelet) DNS settings.  - `&#34;Default&#34;` indicates that the pod should use the default (as determined by kubelet) DNS settings.  - `&#34;None&#34;` indicates that the pod should use empty DNS settings. DNS parameters such as nameservers and search paths should be defined via DNSConfig.</TD></TR>
+<TR><TD><CODE>enableServiceLinks</CODE><BR /><I>boolean</I></TD><TD>EnableServiceLinks indicates whether information about services should be injected into pod&#39;s environment variables, matching the syntax of Docker links. Optional: Defaults to true.</TD></TR>
+<TR><TD><CODE>ephemeralContainers</CODE><BR /><I><a href="#ephemeralcontainer-v1-core">EphemeralContainer</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>name</I></TD><TD>List of ephemeral containers run in this pod. Ephemeral containers may be run in an existing pod to perform user-initiated actions such as debugging. This list cannot be specified when creating a pod, and it cannot be modified by updating the pod spec. In order to add an ephemeral container to an existing pod, use the pod&#39;s ephemeralcontainers subresource. This field is beta-level and available on clusters that haven&#39;t disabled the EphemeralContainers feature gate.</TD></TR>
+<TR><TD><CODE>hostAliases</CODE><BR /><I><a href="#hostalias-v1-core">HostAlias</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>ip</I></TD><TD>HostAliases is an optional list of hosts and IPs that will be injected into the pod&#39;s hosts file if specified. This is only valid for non-hostNetwork pods.</TD></TR>
+<TR><TD><CODE>hostIPC</CODE><BR /><I>boolean</I></TD><TD>Use the host&#39;s ipc namespace. Optional: Default to false.</TD></TR>
+<TR><TD><CODE>hostNetwork</CODE><BR /><I>boolean</I></TD><TD>Host networking requested for this pod. Use the host&#39;s network namespace. If this option is set, the ports that will be used must be specified. Default to false.</TD></TR>
+<TR><TD><CODE>hostPID</CODE><BR /><I>boolean</I></TD><TD>Use the host&#39;s pid namespace. Optional: Default to false.</TD></TR>
+<TR><TD><CODE>hostname</CODE><BR /><I>string</I></TD><TD>Specifies the hostname of the Pod If not specified, the pod&#39;s hostname will be set to a system-defined value.</TD></TR>
+<TR><TD><CODE>imagePullSecrets</CODE><BR /><I><a href="#localobjectreference-v1-core">LocalObjectReference</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>name</I></TD><TD>ImagePullSecrets is an optional list of references to secrets in the same namespace to use for pulling any of the images used by this PodSpec. If specified, these secrets will be passed to individual puller implementations for them to use. For example, in the case of docker, only DockerConfig type secrets are honored. More info: https://kubernetes.io/docs/concepts/containers/images#specifying-imagepullsecrets-on-a-pod</TD></TR>
+<TR><TD><CODE>initContainers</CODE><BR /><I><a href="#container-v1-core">Container</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>name</I></TD><TD>List of initialization containers belonging to the pod. Init containers are executed in order prior to containers being started. If any init container fails, the pod is considered to have failed and is handled according to its restartPolicy. The name for an init container or normal container must be unique among all containers. Init containers may not have Lifecycle actions, Readiness probes, Liveness probes, or Startup probes. The resourceRequirements of an init container are taken into account during scheduling by finding the highest request/limit for each resource type, and then using the max of of that value or the sum of the normal containers. Limits are applied to init containers in a similar fashion. Init containers cannot currently be added or removed. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/init-containers/</TD></TR>
+<TR><TD><CODE>nodeName</CODE><BR /><I>string</I></TD><TD>NodeName is a request to schedule this pod onto a specific node. If it is non-empty, the scheduler simply schedules this pod onto that node, assuming that it fits resource requirements.</TD></TR>
+<TR><TD><CODE>nodeSelector</CODE><BR /><I>object</I></TD><TD>NodeSelector is a selector which must be true for the pod to fit on a node. Selector which must match a node&#39;s labels for the pod to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/</TD></TR>
+<TR><TD><CODE>os</CODE><BR /><I><a href="#podos-v1-core">PodOS</a></I></TD><TD>Specifies the OS of the containers in the pod. Some pod and container fields are restricted if this is set.  If the OS field is set to linux, the following fields must be unset: -securityContext.windowsOptions  If the OS field is set to windows, following fields must be unset: - spec.hostPID - spec.hostIPC - spec.securityContext.seLinuxOptions - spec.securityContext.seccompProfile - spec.securityContext.fsGroup - spec.securityContext.fsGroupChangePolicy - spec.securityContext.sysctls - spec.shareProcessNamespace - spec.securityContext.runAsUser - spec.securityContext.runAsGroup - spec.securityContext.supplementalGroups - spec.containers[*].securityContext.seLinuxOptions - spec.containers[*].securityContext.seccompProfile - spec.containers[*].securityContext.capabilities - spec.containers[*].securityContext.readOnlyRootFilesystem - spec.containers[*].securityContext.privileged - spec.containers[*].securityContext.allowPrivilegeEscalation - spec.containers[*].securityContext.procMount - spec.containers[*].securityContext.runAsUser - spec.containers[*].securityContext.runAsGroup This is an alpha field and requires the IdentifyPodOS feature</TD></TR>
+<TR><TD><CODE>overhead</CODE><BR /><I>object</I></TD><TD>Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. This field will be autopopulated at admission time by the RuntimeClass admission controller. If the RuntimeClass admission controller is enabled, overhead must not be set in Pod create requests. The RuntimeClass admission controller will reject Pod create requests which have the overhead already set. If RuntimeClass is configured and selected in the PodSpec, Overhead will be set to the value defined in the corresponding RuntimeClass, otherwise it will remain unset and treated as zero. More info: https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.md This field is beta-level as of Kubernetes v1.18, and is only honored by servers that enable the PodOverhead feature.</TD></TR>
+<TR><TD><CODE>preemptionPolicy</CODE><BR /><I>string</I></TD><TD>PreemptionPolicy is the Policy for preempting pods with lower priority. One of Never, PreemptLowerPriority. Defaults to PreemptLowerPriority if unset. This field is beta-level, gated by the NonPreemptingPriority feature-gate.</TD></TR>
+<TR><TD><CODE>priority</CODE><BR /><I>integer</I></TD><TD>The priority value. Various system components use this field to find the priority of the pod. When Priority Admission Controller is enabled, it prevents users from setting this field. The admission controller populates this field from PriorityClassName. The higher the value, the higher the priority.</TD></TR>
+<TR><TD><CODE>priorityClassName</CODE><BR /><I>string</I></TD><TD>If specified, indicates the pod&#39;s priority. &#34;system-node-critical&#34; and &#34;system-cluster-critical&#34; are two special keywords which indicate the highest priorities with the former being the highest priority. Any other name must be defined by creating a PriorityClass object with that name. If not specified, the pod priority will be default or zero if there is no default.</TD></TR>
+<TR><TD><CODE>readinessGates</CODE><BR /><I><a href="#podreadinessgate-v1-core">PodReadinessGate</a> array</I></TD><TD>If specified, all readiness gates will be evaluated for pod readiness. A pod is ready when all its containers are ready AND all conditions specified in the readiness gates have status equal to &#34;True&#34; More info: https://git.k8s.io/enhancements/keps/sig-network/580-pod-readiness-gates</TD></TR>
+<TR><TD><CODE>restartPolicy</CODE><BR /><I>string</I></TD><TD>Restart policy for all containers within the pod. One of Always, OnFailure, Never. Default to Always. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy  Possible enum values:  - `&#34;Always&#34;`  - `&#34;Never&#34;`  - `&#34;OnFailure&#34;`</TD></TR>
+<TR><TD><CODE>runtimeClassName</CODE><BR /><I>string</I></TD><TD>RuntimeClassName refers to a RuntimeClass object in the node.k8s.io group, which should be used to run this pod.  If no RuntimeClass resource matches the named class, the pod will not be run. If unset or empty, the &#34;legacy&#34; RuntimeClass will be used, which is an implicit class with an empty definition that uses the default runtime handler. More info: https://git.k8s.io/enhancements/keps/sig-node/585-runtime-class This is a beta feature as of Kubernetes v1.14.</TD></TR>
+<TR><TD><CODE>schedulerName</CODE><BR /><I>string</I></TD><TD>If specified, the pod will be dispatched by specified scheduler. If not specified, the pod will be dispatched by default scheduler.</TD></TR>
+<TR><TD><CODE>securityContext</CODE><BR /><I><a href="#podsecuritycontext-v1-core">PodSecurityContext</a></I></TD><TD>SecurityContext holds pod-level security attributes and common container settings. Optional: Defaults to empty.  See type description for default values of each field.</TD></TR>
+<TR><TD><CODE>serviceAccount</CODE><BR /><I>string</I></TD><TD>DeprecatedServiceAccount is a depreciated alias for ServiceAccountName. Deprecated: Use serviceAccountName instead.</TD></TR>
+<TR><TD><CODE>serviceAccountName</CODE><BR /><I>string</I></TD><TD>ServiceAccountName is the name of the ServiceAccount to use to run this pod. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/</TD></TR>
+<TR><TD><CODE>setHostnameAsFQDN</CODE><BR /><I>boolean</I></TD><TD>If true the pod&#39;s hostname will be configured as the pod&#39;s FQDN, rather than the leaf name (the default). In Linux containers, this means setting the FQDN in the hostname field of the kernel (the nodename field of struct utsname). In Windows containers, this means setting the registry value of hostname for the registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters to FQDN. If a pod does not have FQDN, this has no effect. Default to false.</TD></TR>
+<TR><TD><CODE>shareProcessNamespace</CODE><BR /><I>boolean</I></TD><TD>Share a single process namespace between all of the containers in a pod. When this is set containers will be able to view and signal processes from other containers in the same pod, and the first process in each container will not be assigned PID 1. HostPID and ShareProcessNamespace cannot both be set. Optional: Default to false.</TD></TR>
+<TR><TD><CODE>subdomain</CODE><BR /><I>string</I></TD><TD>If specified, the fully qualified Pod hostname will be &#34;&lt;hostname&gt;.&lt;subdomain&gt;.&lt;pod namespace&gt;.svc.&lt;cluster domain&gt;&#34;. If not specified, the pod will not have a domainname at all.</TD></TR>
+<TR><TD><CODE>terminationGracePeriodSeconds</CODE><BR /><I>integer</I></TD><TD>Optional duration in seconds the pod needs to terminate gracefully. May be decreased in delete request. Value must be non-negative integer. The value zero indicates stop immediately via the kill signal (no opportunity to shut down). If this value is nil, the default grace period will be used instead. The grace period is the duration in seconds after the processes running in the pod are sent a termination signal and the time when the processes are forcibly halted with a kill signal. Set this value longer than the expected cleanup time for your process. Defaults to 30 seconds.</TD></TR>
+<TR><TD><CODE>tolerations</CODE><BR /><I><a href="#toleration-v1-core">Toleration</a> array</I></TD><TD>If specified, the pod&#39;s tolerations.</TD></TR>
+<TR><TD><CODE>topologySpreadConstraints</CODE><BR /><I><a href="#topologyspreadconstraint-v1-core">TopologySpreadConstraint</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>topologyKey</I></TD><TD>TopologySpreadConstraints describes how a group of pods ought to spread across topology domains. Scheduler will schedule pods in a way which abides by the constraints. All topologySpreadConstraints are ANDed.</TD></TR>
+<TR><TD><CODE>volumes</CODE><BR /><I><a href="#volume-v1-core">Volume</a> array</I><BR /><B>patch strategy</B>: <I>merge,retainKeys</I><BR /><B>patch merge key</B>: <I>name</I></TD><TD>List of volumes that can be mounted by containers belonging to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="podstatus-v1-core">PodStatus v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#pod-v1-core">Pod [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#podcondition-v1-core">PodCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Current service state of pod. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-conditions</TD></TR>
+<TR><TD><CODE>containerStatuses</CODE><BR /><I><a href="#containerstatus-v1-core">ContainerStatus</a> array</I></TD><TD>The list has one entry per container in the manifest. Each entry is currently the output of `docker inspect`. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-and-container-status</TD></TR>
+<TR><TD><CODE>ephemeralContainerStatuses</CODE><BR /><I><a href="#containerstatus-v1-core">ContainerStatus</a> array</I></TD><TD>Status for any ephemeral containers that have run in this pod. This field is beta-level and available on clusters that haven&#39;t disabled the EphemeralContainers feature gate.</TD></TR>
+<TR><TD><CODE>hostIP</CODE><BR /><I>string</I></TD><TD>IP address of the host to which the pod is assigned. Empty if not yet scheduled.</TD></TR>
+<TR><TD><CODE>initContainerStatuses</CODE><BR /><I><a href="#containerstatus-v1-core">ContainerStatus</a> array</I></TD><TD>The list has one entry per init container in the manifest. The most recent successful init container will have ready = true, the most recently started container will have startTime set. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-and-container-status</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>A human readable message indicating details about why the pod is in this condition.</TD></TR>
+<TR><TD><CODE>nominatedNodeName</CODE><BR /><I>string</I></TD><TD>nominatedNodeName is set only when this pod preempts other pods on the node, but it cannot be scheduled right away as preemption victims receive their graceful termination periods. This field does not guarantee that the pod will be scheduled on this node. Scheduler may decide to place the pod elsewhere if other nodes become available sooner. Scheduler may also decide to give the resources on this node to a higher priority pod that is created after preemption. As a result, this field may be different than PodSpec.nodeName when the pod is scheduled.</TD></TR>
+<TR><TD><CODE>phase</CODE><BR /><I>string</I></TD><TD>The phase of a Pod is a simple, high-level summary of where the Pod is in its lifecycle. The conditions array, the reason and message fields, and the individual container status arrays contain more detail about the pod&#39;s status. There are five possible phase values:  Pending: The pod has been accepted by the Kubernetes system, but one or more of the container images has not been created. This includes time before being scheduled as well as time spent downloading images over the network, which could take a while. Running: The pod has been bound to a node, and all of the containers have been created. At least one container is still running, or is in the process of starting or restarting. Succeeded: All containers in the pod have terminated in success, and will not be restarted. Failed: All containers in the pod have terminated, and at least one container has terminated in failure. The container either exited with non-zero status or was terminated by the system. Unknown: For some reason the state of the pod could not be obtained, typically due to an error in communicating with the host of the pod.  More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-phase  Possible enum values:  - `&#34;Failed&#34;` means that all containers in the pod have terminated, and at least one container has terminated in a failure (exited with a non-zero exit code or was stopped by the system).  - `&#34;Pending&#34;` means the pod has been accepted by the system, but one or more of the containers has not been started. This includes time before being bound to a node, as well as time spent pulling images onto the host.  - `&#34;Running&#34;` means the pod has been bound to a node and all of the containers have been started. At least one container is still running or is in the process of being restarted.  - `&#34;Succeeded&#34;` means that all containers in the pod have voluntarily terminated with a container exit code of 0, and the system is not going to restart any of these containers.  - `&#34;Unknown&#34;` means that for some reason the state of the pod could not be obtained, typically due to an error in communicating with the host of the pod. Deprecated: It isn&#39;t being set since 2015 (74da3b14b0c0f658b3bb8d2def5094686d0e9095)</TD></TR>
+<TR><TD><CODE>podIP</CODE><BR /><I>string</I></TD><TD>IP address allocated to the pod. Routable at least within the cluster. Empty if not yet allocated.</TD></TR>
+<TR><TD><CODE>podIPs</CODE><BR /><I><a href="#podip-v1-core">PodIP</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>ip</I></TD><TD>podIPs holds the IP addresses allocated to the pod. If this field is specified, the 0th entry must match the podIP field. Pods may be allocated at most 1 value for each of IPv4 and IPv6. This list is empty if no IPs have been allocated yet.</TD></TR>
+<TR><TD><CODE>qosClass</CODE><BR /><I>string</I></TD><TD>The Quality of Service (QOS) classification assigned to the pod based on resource requirements See PodQOSClass type for available QOS classes More info: https://git.k8s.io/community/contributors/design-proposals/node/resource-qos.md  Possible enum values:  - `&#34;BestEffort&#34;` is the BestEffort qos class.  - `&#34;Burstable&#34;` is the Burstable qos class.  - `&#34;Guaranteed&#34;` is the Guaranteed qos class.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>A brief CamelCase message indicating details about why the pod is in this state. e.g. &#39;Evicted&#39;</TD></TR>
+<TR><TD><CODE>startTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>RFC 3339 date and time at which the object was acknowledged by the Kubelet. This is before the Kubelet pulled the container image(s) for the pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="podlist-v1-core">PodList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#pod-v1-core">Pod</a> array</I></TD><TD>List of pods. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-pod-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-pod-v1-core">Create</H2>
+<P>create a Pod</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/pods</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="create-eviction-pod-v1-core">Create Eviction</H2>
+<P>create eviction of a Pod</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/pods/{name}/eviction</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Eviction</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#eviction-v1-policy">Eviction</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#eviction-v1-policy">Eviction</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#eviction-v1-policy">Eviction</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#eviction-v1-policy">Eviction</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-pod-v1-core">Patch</H2>
+<P>partially update the specified Pod</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/pods/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-pod-v1-core">Replace</H2>
+<P>replace the specified Pod</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/pods/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-pod-v1-core">Delete</H2>
+<P>delete a Pod</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/pods/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-pod-v1-core">Delete Collection</H2>
+<P>delete collection of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/pods</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-pod-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-pod-v1-core">Read</H2>
+<P>read the specified Pod</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/pods/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-pod-v1-core">List</H2>
+<P>list or watch objects of kind Pod</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/pods</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podlist-v1-core">PodList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-pod-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind Pod</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/pods</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podlist-v1-core">PodList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-pod-v1-core">Watch</H2>
+<P>watch changes to an object of kind Pod. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/pods/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-pod-v1-core">Watch List</H2>
+<P>watch individual changes to a list of Pod. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/pods</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-pod-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Pod. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/pods</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-pod-v1-core-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-pod-v1-core">Patch Status</H2>
+<P>partially update status of the specified Pod</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/pods/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-pod-v1-core">Read Status</H2>
+<P>read status of the specified Pod</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/pods/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-pod-v1-core">Replace Status</H2>
+<P>replace status of the specified Pod</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/pods/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-ephemeralcontainers-operations-pod-v1-core-strong-"><STRONG>EphemeralContainers Operations</STRONG></H2>
+<H2 id="patch-ephemeralcontainers-pod-v1-core">Patch EphemeralContainers</H2>
+<P>partially update ephemeralcontainers of the specified Pod</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/pods/{name}/ephemeralcontainers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-ephemeralcontainers-pod-v1-core">Read EphemeralContainers</H2>
+<P>read ephemeralcontainers of the specified Pod</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/pods/{name}/ephemeralcontainers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-ephemeralcontainers-pod-v1-core">Replace EphemeralContainers</H2>
+<P>replace ephemeralcontainers of the specified Pod</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/pods/{name}/ephemeralcontainers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-proxy-operations-pod-v1-core-strong-"><STRONG>Proxy Operations</STRONG></H2>
+<H2 id="create-connect-portforward-pod-v1-core">Create Connect Portforward</H2>
+<P>connect POST requests to portforward of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/pods/{name}/portforward</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodPortForwardOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ports</CODE></TD><TD>List of ports to forward Required when using WebSockets</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="create-connect-proxy-pod-v1-core">Create Connect Proxy</H2>
+<P>connect POST requests to proxy of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/pods/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="create-connect-proxy-path-pod-v1-core">Create Connect Proxy Path</H2>
+<P>connect POST requests to proxy of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/pods/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-connect-proxy-pod-v1-core">Delete Connect Proxy</H2>
+<P>connect DELETE requests to proxy of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/pods/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-connect-proxy-path-pod-v1-core">Delete Connect Proxy Path</H2>
+<P>connect DELETE requests to proxy of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/pods/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="get-connect-portforward-pod-v1-core">Get Connect Portforward</H2>
+<P>connect GET requests to portforward of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/pods/{name}/portforward</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodPortForwardOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ports</CODE></TD><TD>List of ports to forward Required when using WebSockets</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="get-connect-proxy-pod-v1-core">Get Connect Proxy</H2>
+<P>connect GET requests to proxy of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/pods/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="get-connect-proxy-path-pod-v1-core">Get Connect Proxy Path</H2>
+<P>connect GET requests to proxy of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/pods/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="head-connect-proxy-pod-v1-core">Head Connect Proxy</H2>
+<P>connect HEAD requests to proxy of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>HEAD /api/v1/namespaces/{namespace}/pods/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="head-connect-proxy-path-pod-v1-core">Head Connect Proxy Path</H2>
+<P>connect HEAD requests to proxy of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>HEAD /api/v1/namespaces/{namespace}/pods/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-connect-proxy-pod-v1-core">Replace Connect Proxy</H2>
+<P>connect PUT requests to proxy of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/pods/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-connect-proxy-path-pod-v1-core">Replace Connect Proxy Path</H2>
+<P>connect PUT requests to proxy of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/pods/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-misc-operations-pod-v1-core-strong-"><STRONG>Misc Operations</STRONG></H2>
+<H2 id="read-log-pod-v1-core">Read Log</H2>
+<P>read log of the specified Pod</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/pods/{name}/log</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>container</CODE></TD><TD>The container for which to stream logs. Defaults to only container if there is one container in the pod.</TD></TR>
+<TR><TD><CODE>follow</CODE></TD><TD>Follow the log stream of the pod. Defaults to false.</TD></TR>
+<TR><TD><CODE>insecureSkipTLSVerifyBackend</CODE></TD><TD>insecureSkipTLSVerifyBackend indicates that the apiserver should not confirm the validity of the serving certificate of the backend it is connecting to.  This will make the HTTPS connection between the apiserver and the backend insecure. This means the apiserver cannot verify the log data it is receiving came from the real kubelet.  If the kubelet is configured to verify the apiserver's TLS credentials, it does not mean the connection to the real kubelet is vulnerable to a man in the middle attack (e.g. an attacker could not intercept the actual log data coming from the real kubelet).</TD></TR>
+<TR><TD><CODE>limitBytes</CODE></TD><TD>If set, the number of bytes to read from the server before terminating the log output. This may not display a complete final line of logging, and may return slightly more or slightly less than the specified limit.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>previous</CODE></TD><TD>Return previous terminated container logs. Defaults to false.</TD></TR>
+<TR><TD><CODE>sinceSeconds</CODE></TD><TD>A relative time in seconds before the current time from which to show logs. If this value precedes the time a pod was started, only logs since the pod start will be returned. If this value is in the future, no logs will be returned. Only one of sinceSeconds or sinceTime may be specified.</TD></TR>
+<TR><TD><CODE>tailLines</CODE></TD><TD>If set, the number of lines from the end of the logs to show. If not specified, logs are shown from the creation of the container or sinceSeconds or sinceTime</TD></TR>
+<TR><TD><CODE>timestamps</CODE></TD><TD>If true, add an RFC3339 or RFC3339Nano timestamp at the beginning of every line of log output. Defaults to false.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="replicaset-v1-apps">ReplicaSet v1 apps</H1>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#example-replicaset-v1-apps" aria-controls="example-replicaset-v1-apps"
+  aria-expanded="false">example</BUTTON>
+<DIV class="collapse" id="example-replicaset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">ReplicaSet Config to run 3 nginx instances.</DIV>
+  <DIV class="panel-body">
+<PRE class="example"><CODE class="lang-yaml">
+apiVersion: apps/v1
+kind: ReplicaSet
+metadata:
+  # Unique key of the ReplicaSet instance
+  name: replicaset-example
+spec:
+  # 3 Pods should exist at all times.
+  replicas: 3
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      # Run the nginx image
+      - name: nginx
+        image: nginx:1.14
+
+</CODE></PRE></DIV></DIV></DIV>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ReplicaSet</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-warning col-md-8"><P><I class="fa fa-warning"></I> <B>Warning:</B></P><P>In many cases it is recommended to create a <a href="#deployment-v1-apps">Deployment</a> instead of ReplicaSet.</P></DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#replicasetlist-v1-apps">ReplicaSetList [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>If the Labels of a ReplicaSet are empty, they are defaulted to be the same as the Pod(s) that the ReplicaSet manages. Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#replicasetspec-v1-apps">ReplicaSetSpec</a></I></TD><TD>Spec defines the specification of the desired behavior of the ReplicaSet. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#replicasetstatus-v1-apps">ReplicaSetStatus</a></I></TD><TD>Status is the most recently observed status of the ReplicaSet. This data may be out of date by some window of time. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="replicasetspec-v1-apps">ReplicaSetSpec v1 apps</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#replicaset-v1-apps">ReplicaSet [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>minReadySeconds</CODE><BR /><I>integer</I></TD><TD>Minimum number of seconds for which a newly created pod should be ready without any of its container crashing, for it to be considered available. Defaults to 0 (pod will be considered available as soon as it is ready)</TD></TR>
+<TR><TD><CODE>replicas</CODE><BR /><I>integer</I></TD><TD>Replicas is the number of desired replicas. This is a pointer to distinguish between explicit zero and unspecified. Defaults to 1. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller/#what-is-a-replicationcontroller</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>Selector is a label query over pods that should match the replica count. Label keys and values that must match in order to be controlled by this replica set. It must match the pod template&#39;s labels. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors</TD></TR>
+<TR><TD><CODE>template</CODE><BR /><I><a href="#podtemplatespec-v1-core">PodTemplateSpec</a></I></TD><TD>Template is the object that describes the pod that will be created if insufficient replicas are detected. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#pod-template</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="replicasetstatus-v1-apps">ReplicaSetStatus v1 apps</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#replicaset-v1-apps">ReplicaSet [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>availableReplicas</CODE><BR /><I>integer</I></TD><TD>The number of available replicas (ready for at least minReadySeconds) for this replica set.</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#replicasetcondition-v1-apps">ReplicaSetCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Represents the latest available observations of a replica set&#39;s current state.</TD></TR>
+<TR><TD><CODE>fullyLabeledReplicas</CODE><BR /><I>integer</I></TD><TD>The number of pods that have labels matching the labels of the pod template of the replicaset.</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>ObservedGeneration reflects the generation of the most recently observed ReplicaSet.</TD></TR>
+<TR><TD><CODE>readyReplicas</CODE><BR /><I>integer</I></TD><TD>readyReplicas is the number of pods targeted by this ReplicaSet with a Ready Condition.</TD></TR>
+<TR><TD><CODE>replicas</CODE><BR /><I>integer</I></TD><TD>Replicas is the most recently oberved number of replicas. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller/#what-is-a-replicationcontroller</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="replicasetlist-v1-apps">ReplicaSetList v1 apps</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#replicaset-v1-apps">ReplicaSet</a> array</I></TD><TD>List of ReplicaSets. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-replicaset-v1-apps-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-replicaset-v1-apps">Create</H2>
+<P>create a ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/apps/v1/namespaces/{namespace}/replicasets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-replicaset-v1-apps">Patch</H2>
+<P>partially update the specified ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/replicasets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicaSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-replicaset-v1-apps">Replace</H2>
+<P>replace the specified ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/replicasets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicaSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-replicaset-v1-apps">Delete</H2>
+<P>delete a ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apps/v1/namespaces/{namespace}/replicasets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicaSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-replicaset-v1-apps">Delete Collection</H2>
+<P>delete collection of ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apps/v1/namespaces/{namespace}/replicasets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-replicaset-v1-apps-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-replicaset-v1-apps">Read</H2>
+<P>read the specified ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/replicasets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicaSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-replicaset-v1-apps">List</H2>
+<P>list or watch objects of kind ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/replicasets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicasetlist-v1-apps">ReplicaSetList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-replicaset-v1-apps">List All Namespaces</H2>
+<P>list or watch objects of kind ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/replicasets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicasetlist-v1-apps">ReplicaSetList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-replicaset-v1-apps">Watch</H2>
+<P>watch changes to an object of kind ReplicaSet. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/namespaces/{namespace}/replicasets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicaSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-replicaset-v1-apps">Watch List</H2>
+<P>watch individual changes to a list of ReplicaSet. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/namespaces/{namespace}/replicasets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-replicaset-v1-apps">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of ReplicaSet. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/replicasets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-replicaset-v1-apps-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-replicaset-v1-apps">Patch Status</H2>
+<P>partially update status of the specified ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/replicasets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicaSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-replicaset-v1-apps">Read Status</H2>
+<P>read status of the specified ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/replicasets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicaSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-replicaset-v1-apps">Replace Status</H2>
+<P>replace status of the specified ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/replicasets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicaSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-misc-operations-replicaset-v1-apps-strong-"><STRONG>Misc Operations</STRONG></H2>
+<H2 id="read-scale-replicaset-v1-apps">Read Scale</H2>
+<P>read scale of the specified ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/replicasets/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-scale-replicaset-v1-apps">Replace Scale</H2>
+<P>replace scale of the specified ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/replicasets/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-scale-replicaset-v1-apps">Patch Scale</H2>
+<P>partially update scale of the specified ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/replicasets/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="replicationcontroller-v1-core">ReplicationController v1 core</H1>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#example-replicationcontroller-v1-core" aria-controls="example-replicationcontroller-v1-core"
+  aria-expanded="false">example</BUTTON>
+<DIV class="collapse" id="example-replicationcontroller-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">ReplicationController Config to run 3 nginx instances.</DIV>
+  <DIV class="panel-body">
+<PRE class="example"><CODE class="lang-yaml">
+apiVersion: v1
+kind: ReplicationController
+metadata:
+  # Unique key of the ReplicationController instance
+  name: replicationcontroller-example
+spec:
+  # 3 Pods should exist at all times.
+  replicas: 3
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      # Run the nginx image
+      - name: nginx
+        image: nginx:1.14
+
+</CODE></PRE></DIV></DIV></DIV>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ReplicationController</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-warning col-md-8"><P><I class="fa fa-warning"></I> <B>Warning:</B></P><P>In many cases it is recommended to create a <a href="#deployment-v1-apps">Deployment</a> instead of a ReplicationController.</P></DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#replicationcontrollerlist-v1-core">ReplicationControllerList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>If the Labels of a ReplicationController are empty, they are defaulted to be the same as the Pod(s) that the replication controller manages. Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#replicationcontrollerspec-v1-core">ReplicationControllerSpec</a></I></TD><TD>Spec defines the specification of the desired behavior of the replication controller. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#replicationcontrollerstatus-v1-core">ReplicationControllerStatus</a></I></TD><TD>Status is the most recently observed status of the replication controller. This data may be out of date by some window of time. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="replicationcontrollerspec-v1-core">ReplicationControllerSpec v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#replicationcontroller-v1-core">ReplicationController [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>minReadySeconds</CODE><BR /><I>integer</I></TD><TD>Minimum number of seconds for which a newly created pod should be ready without any of its container crashing, for it to be considered available. Defaults to 0 (pod will be considered available as soon as it is ready)</TD></TR>
+<TR><TD><CODE>replicas</CODE><BR /><I>integer</I></TD><TD>Replicas is the number of desired replicas. This is a pointer to distinguish between explicit zero and unspecified. Defaults to 1. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#what-is-a-replicationcontroller</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I>object</I></TD><TD>Selector is a label query over pods that should match the Replicas count. If Selector is empty, it is defaulted to the labels present on the Pod template. Label keys and values that must match in order to be controlled by this replication controller, if empty defaulted to labels on Pod template. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors</TD></TR>
+<TR><TD><CODE>template</CODE><BR /><I><a href="#podtemplatespec-v1-core">PodTemplateSpec</a></I></TD><TD>Template is the object that describes the pod that will be created if insufficient replicas are detected. This takes precedence over a TemplateRef. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#pod-template</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="replicationcontrollerstatus-v1-core">ReplicationControllerStatus v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#replicationcontroller-v1-core">ReplicationController [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>availableReplicas</CODE><BR /><I>integer</I></TD><TD>The number of available replicas (ready for at least minReadySeconds) for this replication controller.</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#replicationcontrollercondition-v1-core">ReplicationControllerCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Represents the latest available observations of a replication controller&#39;s current state.</TD></TR>
+<TR><TD><CODE>fullyLabeledReplicas</CODE><BR /><I>integer</I></TD><TD>The number of pods that have labels matching the labels of the pod template of the replication controller.</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>ObservedGeneration reflects the generation of the most recently observed replication controller.</TD></TR>
+<TR><TD><CODE>readyReplicas</CODE><BR /><I>integer</I></TD><TD>The number of ready replicas for this replication controller.</TD></TR>
+<TR><TD><CODE>replicas</CODE><BR /><I>integer</I></TD><TD>Replicas is the most recently oberved number of replicas. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#what-is-a-replicationcontroller</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="replicationcontrollerlist-v1-core">ReplicationControllerList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#replicationcontroller-v1-core">ReplicationController</a> array</I></TD><TD>List of replication controllers. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-replicationcontroller-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-replicationcontroller-v1-core">Create</H2>
+<P>create a ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/replicationcontrollers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-replicationcontroller-v1-core">Patch</H2>
+<P>partially update the specified ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/replicationcontrollers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicationController</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-replicationcontroller-v1-core">Replace</H2>
+<P>replace the specified ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/replicationcontrollers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicationController</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-replicationcontroller-v1-core">Delete</H2>
+<P>delete a ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/replicationcontrollers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicationController</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-replicationcontroller-v1-core">Delete Collection</H2>
+<P>delete collection of ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/replicationcontrollers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-replicationcontroller-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-replicationcontroller-v1-core">Read</H2>
+<P>read the specified ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/replicationcontrollers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicationController</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-replicationcontroller-v1-core">List</H2>
+<P>list or watch objects of kind ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/replicationcontrollers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicationcontrollerlist-v1-core">ReplicationControllerList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-replicationcontroller-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/replicationcontrollers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicationcontrollerlist-v1-core">ReplicationControllerList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-replicationcontroller-v1-core">Watch</H2>
+<P>watch changes to an object of kind ReplicationController. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/replicationcontrollers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicationController</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-replicationcontroller-v1-core">Watch List</H2>
+<P>watch individual changes to a list of ReplicationController. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/replicationcontrollers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-replicationcontroller-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of ReplicationController. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/replicationcontrollers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-replicationcontroller-v1-core-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-replicationcontroller-v1-core">Patch Status</H2>
+<P>partially update status of the specified ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/replicationcontrollers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicationController</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-replicationcontroller-v1-core">Read Status</H2>
+<P>read status of the specified ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/replicationcontrollers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicationController</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-replicationcontroller-v1-core">Replace Status</H2>
+<P>replace status of the specified ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/replicationcontrollers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicationController</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-misc-operations-replicationcontroller-v1-core-strong-"><STRONG>Misc Operations</STRONG></H2>
+<H2 id="read-scale-replicationcontroller-v1-core">Read Scale</H2>
+<P>read scale of the specified ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/replicationcontrollers/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-scale-replicationcontroller-v1-core">Replace Scale</H2>
+<P>replace scale of the specified ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/replicationcontrollers/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-scale-replicationcontroller-v1-core">Patch Scale</H2>
+<P>partially update scale of the specified ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/replicationcontrollers/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="statefulset-v1-apps">StatefulSet v1 apps</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>StatefulSet</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#statefulsetlist-v1-apps">StatefulSetList [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#statefulsetspec-v1-apps">StatefulSetSpec</a></I></TD><TD>Spec defines the desired identities of pods in this set.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#statefulsetstatus-v1-apps">StatefulSetStatus</a></I></TD><TD>Status is the current status of Pods in this StatefulSet. This data may be out of date by some window of time.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="statefulsetspec-v1-apps">StatefulSetSpec v1 apps</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#statefulset-v1-apps">StatefulSet [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>minReadySeconds</CODE><BR /><I>integer</I></TD><TD>Minimum number of seconds for which a newly created pod should be ready without any of its container crashing for it to be considered available. Defaults to 0 (pod will be considered available as soon as it is ready) This is an alpha field and requires enabling StatefulSetMinReadySeconds feature gate.</TD></TR>
+<TR><TD><CODE>persistentVolumeClaimRetentionPolicy</CODE><BR /><I><a href="#statefulsetpersistentvolumeclaimretentionpolicy-v1-apps">StatefulSetPersistentVolumeClaimRetentionPolicy</a></I></TD><TD>persistentVolumeClaimRetentionPolicy describes the lifecycle of persistent volume claims created from volumeClaimTemplates. By default, all persistent volume claims are created as needed and retained until manually deleted. This policy allows the lifecycle to be altered, for example by deleting persistent volume claims when their stateful set is deleted, or when their pod is scaled down. This requires the StatefulSetAutoDeletePVC feature gate to be enabled, which is alpha.  +optional</TD></TR>
+<TR><TD><CODE>podManagementPolicy</CODE><BR /><I>string</I></TD><TD>podManagementPolicy controls how pods are created during initial scale up, when replacing pods on nodes, or when scaling down. The default policy is `OrderedReady`, where pods are created in increasing order (pod-0, then pod-1, etc) and the controller will wait until each pod is ready before continuing. When scaling down, the pods are removed in the opposite order. The alternative policy is `Parallel` which will create pods in parallel to match the desired scale without waiting, and on scale down will delete all pods at once.  Possible enum values:  - `&#34;OrderedReady&#34;` will create pods in strictly increasing order on scale up and strictly decreasing order on scale down, progressing only when the previous pod is ready or terminated. At most one pod will be changed at any time.  - `&#34;Parallel&#34;` will create and delete pods as soon as the stateful set replica count is changed, and will not wait for pods to be ready or complete termination.</TD></TR>
+<TR><TD><CODE>replicas</CODE><BR /><I>integer</I></TD><TD>replicas is the desired number of replicas of the given Template. These are replicas in the sense that they are instantiations of the same Template, but individual replicas also have a consistent identity. If unspecified, defaults to 1.</TD></TR>
+<TR><TD><CODE>revisionHistoryLimit</CODE><BR /><I>integer</I></TD><TD>revisionHistoryLimit is the maximum number of revisions that will be maintained in the StatefulSet&#39;s revision history. The revision history consists of all revisions not represented by a currently applied StatefulSetSpec version. The default value is 10.</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>selector is a label query over pods that should match the replica count. It must match the pod template&#39;s labels. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors</TD></TR>
+<TR><TD><CODE>serviceName</CODE><BR /><I>string</I></TD><TD>serviceName is the name of the service that governs this StatefulSet. This service must exist before the StatefulSet, and is responsible for the network identity of the set. Pods get DNS/hostnames that follow the pattern: pod-specific-string.serviceName.default.svc.cluster.local where &#34;pod-specific-string&#34; is managed by the StatefulSet controller.</TD></TR>
+<TR><TD><CODE>template</CODE><BR /><I><a href="#podtemplatespec-v1-core">PodTemplateSpec</a></I></TD><TD>template is the object that describes the pod that will be created if insufficient replicas are detected. Each pod stamped out by the StatefulSet will fulfill this Template, but have a unique identity from the rest of the StatefulSet.</TD></TR>
+<TR><TD><CODE>updateStrategy</CODE><BR /><I><a href="#statefulsetupdatestrategy-v1-apps">StatefulSetUpdateStrategy</a></I></TD><TD>updateStrategy indicates the StatefulSetUpdateStrategy that will be employed to update Pods in the StatefulSet when a revision is made to Template.</TD></TR>
+<TR><TD><CODE>volumeClaimTemplates</CODE><BR /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a> array</I></TD><TD>volumeClaimTemplates is a list of claims that pods are allowed to reference. The StatefulSet controller is responsible for mapping network identities to claims in a way that maintains the identity of a pod. Every claim in this list must have at least one matching (by name) volumeMount in one container in the template. A claim in this list takes precedence over any volumes in the template, with the same name.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="statefulsetstatus-v1-apps">StatefulSetStatus v1 apps</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#statefulset-v1-apps">StatefulSet [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>availableReplicas</CODE><BR /><I>integer</I></TD><TD>Total number of available pods (ready for at least minReadySeconds) targeted by this statefulset. This is a beta field and enabled/disabled by StatefulSetMinReadySeconds feature gate.</TD></TR>
+<TR><TD><CODE>collisionCount</CODE><BR /><I>integer</I></TD><TD>collisionCount is the count of hash collisions for the StatefulSet. The StatefulSet controller uses this field as a collision avoidance mechanism when it needs to create the name for the newest ControllerRevision.</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#statefulsetcondition-v1-apps">StatefulSetCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Represents the latest available observations of a statefulset&#39;s current state.</TD></TR>
+<TR><TD><CODE>currentReplicas</CODE><BR /><I>integer</I></TD><TD>currentReplicas is the number of Pods created by the StatefulSet controller from the StatefulSet version indicated by currentRevision.</TD></TR>
+<TR><TD><CODE>currentRevision</CODE><BR /><I>string</I></TD><TD>currentRevision, if not empty, indicates the version of the StatefulSet used to generate Pods in the sequence [0,currentReplicas).</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>observedGeneration is the most recent generation observed for this StatefulSet. It corresponds to the StatefulSet&#39;s generation, which is updated on mutation by the API Server.</TD></TR>
+<TR><TD><CODE>readyReplicas</CODE><BR /><I>integer</I></TD><TD>readyReplicas is the number of pods created for this StatefulSet with a Ready Condition.</TD></TR>
+<TR><TD><CODE>replicas</CODE><BR /><I>integer</I></TD><TD>replicas is the number of Pods created by the StatefulSet controller.</TD></TR>
+<TR><TD><CODE>updateRevision</CODE><BR /><I>string</I></TD><TD>updateRevision, if not empty, indicates the version of the StatefulSet used to generate Pods in the sequence [replicas-updatedReplicas,replicas)</TD></TR>
+<TR><TD><CODE>updatedReplicas</CODE><BR /><I>integer</I></TD><TD>updatedReplicas is the number of Pods created by the StatefulSet controller from the StatefulSet version indicated by updateRevision.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="statefulsetlist-v1-apps">StatefulSetList v1 apps</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#statefulset-v1-apps">StatefulSet</a> array</I></TD><TD>Items is the list of stateful sets.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-statefulset-v1-apps-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-statefulset-v1-apps">Create</H2>
+<P>create a StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/apps/v1/namespaces/{namespace}/statefulsets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-statefulset-v1-apps">Patch</H2>
+<P>partially update the specified StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StatefulSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-statefulset-v1-apps">Replace</H2>
+<P>replace the specified StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StatefulSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-statefulset-v1-apps">Delete</H2>
+<P>delete a StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StatefulSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-statefulset-v1-apps">Delete Collection</H2>
+<P>delete collection of StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apps/v1/namespaces/{namespace}/statefulsets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-statefulset-v1-apps-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-statefulset-v1-apps">Read</H2>
+<P>read the specified StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StatefulSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-statefulset-v1-apps">List</H2>
+<P>list or watch objects of kind StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/statefulsets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#statefulsetlist-v1-apps">StatefulSetList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-statefulset-v1-apps">List All Namespaces</H2>
+<P>list or watch objects of kind StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/statefulsets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#statefulsetlist-v1-apps">StatefulSetList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-statefulset-v1-apps">Watch</H2>
+<P>watch changes to an object of kind StatefulSet. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/namespaces/{namespace}/statefulsets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StatefulSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-statefulset-v1-apps">Watch List</H2>
+<P>watch individual changes to a list of StatefulSet. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/namespaces/{namespace}/statefulsets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-statefulset-v1-apps">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of StatefulSet. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/statefulsets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-statefulset-v1-apps-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-statefulset-v1-apps">Patch Status</H2>
+<P>partially update status of the specified StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StatefulSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-statefulset-v1-apps">Read Status</H2>
+<P>read status of the specified StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StatefulSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-statefulset-v1-apps">Replace Status</H2>
+<P>replace status of the specified StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StatefulSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-misc-operations-statefulset-v1-apps-strong-"><STRONG>Misc Operations</STRONG></H2>
+<H2 id="read-scale-statefulset-v1-apps">Read Scale</H2>
+<P>read scale of the specified StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-scale-statefulset-v1-apps">Replace Scale</H2>
+<P>replace scale of the specified StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-scale-statefulset-v1-apps">Patch Scale</H2>
+<P>partially update scale of the specified StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="-strong-service-apis-strong-"><STRONG>SERVICE APIs</STRONG></H1>
+
+<P>Service API resources are responsible for stitching your workloads together into an accessible Loadbalanced Service.  By default,
+<A href="#-strong-workloads-strong">Workloads</A> are only accessible within the cluster, and they must be exposed externally using a either
+a *LoadBalancer* or *NodePort* <A href="#service-v1-core">Service</A>.  For development, internally accessible
+Workloads can be accessed via proxy through the api master using the <code>kubectl proxy</code> command.</P>
+
+<P>Common resource types:</P>
+
+<UL>
+	<LI><A href="#service-v1-core">Services</A> for providing a single ip endpoint loadbalanced across multiple Workload replicas.</LI>
+	<LI><A href="#ingress-v1beta1-extensions">Ingress</A> for providing a https(s) endpoint http(s) routed to one or more *Services*.</LI>
+</UL>
+<HR />
+<H1 id="endpoints-v1-core">Endpoints v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Endpoints</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpointslist-v1-core">EndpointsList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>subsets</CODE><BR /><I><a href="#endpointsubset-v1-core">EndpointSubset</a> array</I></TD><TD>The set of all endpoints is the union of all subsets. Addresses are placed into subsets according to the IPs they share. A single address with multiple ports, some of which are ready and some of which are not (because they come from different containers) will result in the address being displayed in different subsets for the different ports. No address will appear in both Addresses and NotReadyAddresses in the same subset. Sets of addresses and ports that comprise a service.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="endpointslist-v1-core">EndpointsList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#endpoints-v1-core">Endpoints</a> array</I></TD><TD>List of endpoints.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-endpoints-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-endpoints-v1-core">Create</H2>
+<P>create Endpoints</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/endpoints</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#endpoints-v1-core">Endpoints</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpoints-v1-core">Endpoints</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#endpoints-v1-core">Endpoints</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#endpoints-v1-core">Endpoints</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-endpoints-v1-core">Patch</H2>
+<P>partially update the specified Endpoints</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/endpoints/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Endpoints</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpoints-v1-core">Endpoints</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#endpoints-v1-core">Endpoints</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-endpoints-v1-core">Replace</H2>
+<P>replace the specified Endpoints</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/endpoints/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Endpoints</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#endpoints-v1-core">Endpoints</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpoints-v1-core">Endpoints</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#endpoints-v1-core">Endpoints</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-endpoints-v1-core">Delete</H2>
+<P>delete Endpoints</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/endpoints/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Endpoints</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-endpoints-v1-core">Delete Collection</H2>
+<P>delete collection of Endpoints</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/endpoints</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-endpoints-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-endpoints-v1-core">Read</H2>
+<P>read the specified Endpoints</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/endpoints/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Endpoints</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpoints-v1-core">Endpoints</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-endpoints-v1-core">List</H2>
+<P>list or watch objects of kind Endpoints</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/endpoints</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslist-v1-core">EndpointsList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-endpoints-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind Endpoints</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/endpoints</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslist-v1-core">EndpointsList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-endpoints-v1-core">Watch</H2>
+<P>watch changes to an object of kind Endpoints. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/endpoints/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Endpoints</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-endpoints-v1-core">Watch List</H2>
+<P>watch individual changes to a list of Endpoints. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/endpoints</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-endpoints-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Endpoints. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/endpoints</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="endpointslice-v1-discovery-k8s-io">EndpointSlice v1 discovery.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EndpointSlice</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#endpointslice-v1beta1-discovery-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpointslicelist-v1-discovery-k8s-io">EndpointSliceList [discovery/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>addressType</CODE><BR /><I>string</I></TD><TD>addressType specifies the type of address carried by this EndpointSlice. All addresses in this slice must be the same type. This field is immutable after creation. The following address types are currently supported: * IPv4: Represents an IPv4 Address. * IPv6: Represents an IPv6 Address. * FQDN: Represents a Fully Qualified Domain Name.  Possible enum values:  - `&#34;FQDN&#34;` represents a FQDN.  - `&#34;IPv4&#34;` represents an IPv4 Address.  - `&#34;IPv6&#34;` represents an IPv6 Address.</TD></TR>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>endpoints</CODE><BR /><I><a href="#endpoint-v1-discovery-k8s-io">Endpoint</a> array</I></TD><TD>endpoints is a list of unique endpoints in this slice. Each slice may include a maximum of 1000 endpoints.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata.</TD></TR>
+<TR><TD><CODE>ports</CODE><BR /><I><a href="#endpointport-v1-discovery-k8s-io">EndpointPort</a> array</I></TD><TD>ports specifies the list of network ports exposed by each endpoint in this slice. Each port must have a unique name. When ports is empty, it indicates that there are no defined ports. When a port is defined with a nil port value, it indicates &#34;all ports&#34;. Each slice may include a maximum of 100 ports.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="endpointslicelist-v1-discovery-k8s-io">EndpointSliceList v1 discovery</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice</a> array</I></TD><TD>List of endpoint slices</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-endpointslice-v1-discovery-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-endpointslice-v1-discovery-k8s-io">Create</H2>
+<P>create an EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-endpointslice-v1-discovery-k8s-io">Patch</H2>
+<P>partially update the specified EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the EndpointSlice</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-endpointslice-v1-discovery-k8s-io">Replace</H2>
+<P>replace the specified EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the EndpointSlice</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-endpointslice-v1-discovery-k8s-io">Delete</H2>
+<P>delete an EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the EndpointSlice</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-endpointslice-v1-discovery-k8s-io">Delete Collection</H2>
+<P>delete collection of EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-endpointslice-v1-discovery-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-endpointslice-v1-discovery-k8s-io">Read</H2>
+<P>read the specified EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the EndpointSlice</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-endpointslice-v1-discovery-k8s-io">List</H2>
+<P>list or watch objects of kind EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslicelist-v1-discovery-k8s-io">EndpointSliceList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-endpointslice-v1-discovery-k8s-io">List All Namespaces</H2>
+<P>list or watch objects of kind EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1/endpointslices</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslicelist-v1-discovery-k8s-io">EndpointSliceList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-endpointslice-v1-discovery-k8s-io">Watch</H2>
+<P>watch changes to an object of kind EndpointSlice. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1/watch/namespaces/{namespace}/endpointslices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the EndpointSlice</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-endpointslice-v1-discovery-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of EndpointSlice. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1/watch/namespaces/{namespace}/endpointslices</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-endpointslice-v1-discovery-k8s-io">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of EndpointSlice. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1/watch/endpointslices</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="ingress-v1-networking-k8s-io">Ingress v1 networking.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Ingress</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingresslist-v1-networking-k8s-io">IngressList [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#ingressspec-v1-networking-k8s-io">IngressSpec</a></I></TD><TD>Spec is the desired state of the Ingress. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#ingressstatus-v1-networking-k8s-io">IngressStatus</a></I></TD><TD>Status is the current state of the Ingress. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="ingressspec-v1-networking-k8s-io">IngressSpec v1 networking</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingress-v1-networking-k8s-io">Ingress [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>defaultBackend</CODE><BR /><I><a href="#ingressbackend-v1-networking-k8s-io">IngressBackend</a></I></TD><TD>DefaultBackend is the backend that should handle requests that don&#39;t match any rule. If Rules are not specified, DefaultBackend must be specified. If DefaultBackend is not set, the handling of requests that do not match any of the rules will be up to the Ingress controller.</TD></TR>
+<TR><TD><CODE>ingressClassName</CODE><BR /><I>string</I></TD><TD>IngressClassName is the name of the IngressClass cluster resource. The associated IngressClass defines which controller will implement the resource. This replaces the deprecated `kubernetes.io/ingress.class` annotation. For backwards compatibility, when that annotation is set, it must be given precedence over this field. The controller may emit a warning if the field and annotation have different values. Implementations of this API should ignore Ingresses without a class specified. An IngressClass resource may be marked as default, which can be used to set a default value for this field. For more information, refer to the IngressClass documentation.</TD></TR>
+<TR><TD><CODE>rules</CODE><BR /><I><a href="#ingressrule-v1-networking-k8s-io">IngressRule</a> array</I></TD><TD>A list of host rules used to configure the Ingress. If unspecified, or no rule matches, all traffic is sent to the default backend.</TD></TR>
+<TR><TD><CODE>tls</CODE><BR /><I><a href="#ingresstls-v1-networking-k8s-io">IngressTLS</a> array</I></TD><TD>TLS configuration. Currently the Ingress only supports a single TLS port, 443. If multiple members of this list specify different hosts, they will be multiplexed on the same port according to the hostname specified through the SNI TLS extension, if the ingress controller fulfilling the ingress supports SNI.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="ingressstatus-v1-networking-k8s-io">IngressStatus v1 networking</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingress-v1-networking-k8s-io">Ingress [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>loadBalancer</CODE><BR /><I><a href="#loadbalancerstatus-v1-core">LoadBalancerStatus</a></I></TD><TD>LoadBalancer contains the current status of the load-balancer.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="ingresslist-v1-networking-k8s-io">IngressList v1 networking</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a> array</I></TD><TD>Items is the list of Ingress.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-ingress-v1-networking-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-ingress-v1-networking-k8s-io">Create</H2>
+<P>create an Ingress</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-ingress-v1-networking-k8s-io">Patch</H2>
+<P>partially update the specified Ingress</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Ingress</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-ingress-v1-networking-k8s-io">Replace</H2>
+<P>replace the specified Ingress</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Ingress</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-ingress-v1-networking-k8s-io">Delete</H2>
+<P>delete an Ingress</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Ingress</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-ingress-v1-networking-k8s-io">Delete Collection</H2>
+<P>delete collection of Ingress</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-ingress-v1-networking-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-ingress-v1-networking-k8s-io">Read</H2>
+<P>read the specified Ingress</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Ingress</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-ingress-v1-networking-k8s-io">List</H2>
+<P>list or watch objects of kind Ingress</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingresslist-v1-networking-k8s-io">IngressList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-ingress-v1-networking-k8s-io">List All Namespaces</H2>
+<P>list or watch objects of kind Ingress</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/ingresses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingresslist-v1-networking-k8s-io">IngressList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-ingress-v1-networking-k8s-io">Watch</H2>
+<P>watch changes to an object of kind Ingress. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/watch/namespaces/{namespace}/ingresses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Ingress</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-ingress-v1-networking-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of Ingress. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/watch/namespaces/{namespace}/ingresses</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-ingress-v1-networking-k8s-io">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Ingress. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/watch/ingresses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-ingress-v1-networking-k8s-io-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-ingress-v1-networking-k8s-io">Patch Status</H2>
+<P>partially update status of the specified Ingress</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Ingress</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-ingress-v1-networking-k8s-io">Read Status</H2>
+<P>read status of the specified Ingress</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Ingress</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-ingress-v1-networking-k8s-io">Replace Status</H2>
+<P>replace status of the specified Ingress</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Ingress</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="ingressclass-v1-networking-k8s-io">IngressClass v1 networking.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>IngressClass</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingressclasslist-v1-networking-k8s-io">IngressClassList [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#ingressclassspec-v1-networking-k8s-io">IngressClassSpec</a></I></TD><TD>Spec is the desired state of the IngressClass. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="ingressclassspec-v1-networking-k8s-io">IngressClassSpec v1 networking</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingressclass-v1-networking-k8s-io">IngressClass [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>controller</CODE><BR /><I>string</I></TD><TD>Controller refers to the name of the controller that should handle this class. This allows for different &#34;flavors&#34; that are controlled by the same controller. For example, you may have different Parameters for the same implementing controller. This should be specified as a domain-prefixed path no more than 250 characters in length, e.g. &#34;acme.io/ingress-controller&#34;. This field is immutable.</TD></TR>
+<TR><TD><CODE>parameters</CODE><BR /><I><a href="#ingressclassparametersreference-v1-networking-k8s-io">IngressClassParametersReference</a></I></TD><TD>Parameters is a link to a custom resource containing additional configuration for the controller. This is optional if the controller does not require extra parameters.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="ingressclasslist-v1-networking-k8s-io">IngressClassList v1 networking</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#ingressclass-v1-networking-k8s-io">IngressClass</a> array</I></TD><TD>Items is the list of IngressClasses.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-ingressclass-v1-networking-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-ingressclass-v1-networking-k8s-io">Create</H2>
+<P>create an IngressClass</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/networking.k8s.io/v1/ingressclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#ingressclass-v1-networking-k8s-io">IngressClass</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingressclass-v1-networking-k8s-io">IngressClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#ingressclass-v1-networking-k8s-io">IngressClass</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#ingressclass-v1-networking-k8s-io">IngressClass</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-ingressclass-v1-networking-k8s-io">Patch</H2>
+<P>partially update the specified IngressClass</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/networking.k8s.io/v1/ingressclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the IngressClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingressclass-v1-networking-k8s-io">IngressClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#ingressclass-v1-networking-k8s-io">IngressClass</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-ingressclass-v1-networking-k8s-io">Replace</H2>
+<P>replace the specified IngressClass</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/networking.k8s.io/v1/ingressclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the IngressClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#ingressclass-v1-networking-k8s-io">IngressClass</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingressclass-v1-networking-k8s-io">IngressClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#ingressclass-v1-networking-k8s-io">IngressClass</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-ingressclass-v1-networking-k8s-io">Delete</H2>
+<P>delete an IngressClass</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/networking.k8s.io/v1/ingressclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the IngressClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-ingressclass-v1-networking-k8s-io">Delete Collection</H2>
+<P>delete collection of IngressClass</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/networking.k8s.io/v1/ingressclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-ingressclass-v1-networking-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-ingressclass-v1-networking-k8s-io">Read</H2>
+<P>read the specified IngressClass</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/ingressclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the IngressClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingressclass-v1-networking-k8s-io">IngressClass</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-ingressclass-v1-networking-k8s-io">List</H2>
+<P>list or watch objects of kind IngressClass</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/ingressclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingressclasslist-v1-networking-k8s-io">IngressClassList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-ingressclass-v1-networking-k8s-io">Watch</H2>
+<P>watch changes to an object of kind IngressClass. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/watch/ingressclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the IngressClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-ingressclass-v1-networking-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of IngressClass. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/watch/ingressclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="service-v1-core">Service v1 core</H1>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#example-service-v1-core" aria-controls="example-service-v1-core"
+  aria-expanded="false">example</BUTTON>
+<DIV class="collapse" id="example-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Service Config to load balance traffic across all Pods with the app=nginx label.  Receives on and sends to port 80.  Exposes an externally accessible endpoint.</DIV>
+  <DIV class="panel-body">
+<PRE class="example"><CODE class="lang-yaml">
+kind: Service
+apiVersion: v1
+metadata:
+  # Unique key of the Service instance
+  name: service-example
+spec:
+  ports:
+    # Accept traffic sent to port 80
+    - name: http
+      port: 80
+      targetPort: 80
+  selector:
+    # Loadbalance traffic across Pods matching
+    # this label selector
+    app: nginx
+  # Create an HA proxy in the cloud provider
+  # with an External IP address - *Only supported
+  # by some cloud providers*
+  type: LoadBalancer
+
+</CODE></PRE></DIV></DIV></DIV>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Service</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#servicelist-v1-core">ServiceList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#servicespec-v1-core">ServiceSpec</a></I></TD><TD>Spec defines the behavior of a service. https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#servicestatus-v1-core">ServiceStatus</a></I></TD><TD>Most recently observed status of the service. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="servicespec-v1-core">ServiceSpec v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#service-v1-core">Service [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allocateLoadBalancerNodePorts</CODE><BR /><I>boolean</I></TD><TD>allocateLoadBalancerNodePorts defines if NodePorts will be automatically allocated for services with type LoadBalancer.  Default is &#34;true&#34;. It may be set to &#34;false&#34; if the cluster load-balancer does not rely on NodePorts.  If the caller requests specific NodePorts (by specifying a value), those requests will be respected, regardless of this field. This field may only be set for services with type LoadBalancer and will be cleared if the type is changed to any other type. This field is beta-level and is only honored by servers that enable the ServiceLBNodePortControl feature.</TD></TR>
+<TR><TD><CODE>clusterIP</CODE><BR /><I>string</I></TD><TD>clusterIP is the IP address of the service and is usually assigned randomly. If an address is specified manually, is in-range (as per system configuration), and is not in use, it will be allocated to the service; otherwise creation of the service will fail. This field may not be changed through updates unless the type field is also being changed to ExternalName (which requires this field to be blank) or the type field is being changed from ExternalName (in which case this field may optionally be specified, as describe above).  Valid values are &#34;None&#34;, empty string (&#34;&#34;), or a valid IP address. Setting this to &#34;None&#34; makes a &#34;headless service&#34; (no virtual IP), which is useful when direct endpoint connections are preferred and proxying is not required.  Only applies to types ClusterIP, NodePort, and LoadBalancer. If this field is specified when creating a Service of type ExternalName, creation will fail. This field will be wiped when updating a Service to type ExternalName. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies</TD></TR>
+<TR><TD><CODE>clusterIPs</CODE><BR /><I>string array</I></TD><TD>ClusterIPs is a list of IP addresses assigned to this service, and are usually assigned randomly.  If an address is specified manually, is in-range (as per system configuration), and is not in use, it will be allocated to the service; otherwise creation of the service will fail. This field may not be changed through updates unless the type field is also being changed to ExternalName (which requires this field to be empty) or the type field is being changed from ExternalName (in which case this field may optionally be specified, as describe above).  Valid values are &#34;None&#34;, empty string (&#34;&#34;), or a valid IP address.  Setting this to &#34;None&#34; makes a &#34;headless service&#34; (no virtual IP), which is useful when direct endpoint connections are preferred and proxying is not required.  Only applies to types ClusterIP, NodePort, and LoadBalancer. If this field is specified when creating a Service of type ExternalName, creation will fail. This field will be wiped when updating a Service to type ExternalName.  If this field is not specified, it will be initialized from the clusterIP field.  If this field is specified, clients must ensure that clusterIPs[0] and clusterIP have the same value.  This field may hold a maximum of two entries (dual-stack IPs, in either order). These IPs must correspond to the values of the ipFamilies field. Both clusterIPs and ipFamilies are governed by the ipFamilyPolicy field. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies</TD></TR>
+<TR><TD><CODE>externalIPs</CODE><BR /><I>string array</I></TD><TD>externalIPs is a list of IP addresses for which nodes in the cluster will also accept traffic for this service.  These IPs are not managed by Kubernetes.  The user is responsible for ensuring that traffic arrives at a node with this IP.  A common example is external load-balancers that are not part of the Kubernetes system.</TD></TR>
+<TR><TD><CODE>externalName</CODE><BR /><I>string</I></TD><TD>externalName is the external reference that discovery mechanisms will return as an alias for this service (e.g. a DNS CNAME record). No proxying will be involved.  Must be a lowercase RFC-1123 hostname (https://tools.ietf.org/html/rfc1123) and requires `type` to be &#34;ExternalName&#34;.</TD></TR>
+<TR><TD><CODE>externalTrafficPolicy</CODE><BR /><I>string</I></TD><TD>externalTrafficPolicy denotes if this Service desires to route external traffic to node-local or cluster-wide endpoints. &#34;Local&#34; preserves the client source IP and avoids a second hop for LoadBalancer and Nodeport type services, but risks potentially imbalanced traffic spreading. &#34;Cluster&#34; obscures the client source IP and may cause a second hop to another node, but should have good overall load-spreading.  Possible enum values:  - `&#34;Cluster&#34;` specifies node-global (legacy) behavior.  - `&#34;Local&#34;` specifies node-local endpoints behavior.</TD></TR>
+<TR><TD><CODE>healthCheckNodePort</CODE><BR /><I>integer</I></TD><TD>healthCheckNodePort specifies the healthcheck nodePort for the service. This only applies when type is set to LoadBalancer and externalTrafficPolicy is set to Local. If a value is specified, is in-range, and is not in use, it will be used.  If not specified, a value will be automatically allocated.  External systems (e.g. load-balancers) can use this port to determine if a given node holds endpoints for this service or not.  If this field is specified when creating a Service which does not need it, creation will fail. This field will be wiped when updating a Service to no longer need it (e.g. changing type).</TD></TR>
+<TR><TD><CODE>internalTrafficPolicy</CODE><BR /><I>string</I></TD><TD>InternalTrafficPolicy specifies if the cluster internal traffic should be routed to all endpoints or node-local endpoints only. &#34;Cluster&#34; routes internal traffic to a Service to all endpoints. &#34;Local&#34; routes traffic to node-local endpoints only, traffic is dropped if no node-local endpoints are ready. The default value is &#34;Cluster&#34;.</TD></TR>
+<TR><TD><CODE>ipFamilies</CODE><BR /><I>string array</I></TD><TD>IPFamilies is a list of IP families (e.g. IPv4, IPv6) assigned to this service. This field is usually assigned automatically based on cluster configuration and the ipFamilyPolicy field. If this field is specified manually, the requested family is available in the cluster, and ipFamilyPolicy allows it, it will be used; otherwise creation of the service will fail. This field is conditionally mutable: it allows for adding or removing a secondary IP family, but it does not allow changing the primary IP family of the Service. Valid values are &#34;IPv4&#34; and &#34;IPv6&#34;.  This field only applies to Services of types ClusterIP, NodePort, and LoadBalancer, and does apply to &#34;headless&#34; services. This field will be wiped when updating a Service to type ExternalName.  This field may hold a maximum of two entries (dual-stack families, in either order).  These families must correspond to the values of the clusterIPs field, if specified. Both clusterIPs and ipFamilies are governed by the ipFamilyPolicy field.</TD></TR>
+<TR><TD><CODE>ipFamilyPolicy</CODE><BR /><I>string</I></TD><TD>IPFamilyPolicy represents the dual-stack-ness requested or required by this Service. If there is no value provided, then this field will be set to SingleStack. Services can be &#34;SingleStack&#34; (a single IP family), &#34;PreferDualStack&#34; (two IP families on dual-stack configured clusters or a single IP family on single-stack clusters), or &#34;RequireDualStack&#34; (two IP families on dual-stack configured clusters, otherwise fail). The ipFamilies and clusterIPs fields depend on the value of this field. This field will be wiped when updating a service to type ExternalName.</TD></TR>
+<TR><TD><CODE>loadBalancerClass</CODE><BR /><I>string</I></TD><TD>loadBalancerClass is the class of the load balancer implementation this Service belongs to. If specified, the value of this field must be a label-style identifier, with an optional prefix, e.g. &#34;internal-vip&#34; or &#34;example.com/internal-vip&#34;. Unprefixed names are reserved for end-users. This field can only be set when the Service type is &#39;LoadBalancer&#39;. If not set, the default load balancer implementation is used, today this is typically done through the cloud provider integration, but should apply for any default implementation. If set, it is assumed that a load balancer implementation is watching for Services with a matching class. Any default load balancer implementation (e.g. cloud providers) should ignore Services that set this field. This field can only be set when creating or updating a Service to type &#39;LoadBalancer&#39;. Once set, it can not be changed. This field will be wiped when a service is updated to a non &#39;LoadBalancer&#39; type.</TD></TR>
+<TR><TD><CODE>loadBalancerIP</CODE><BR /><I>string</I></TD><TD>Only applies to Service Type: LoadBalancer LoadBalancer will get created with the IP specified in this field. This feature depends on whether the underlying cloud-provider supports specifying the loadBalancerIP when a load balancer is created. This field will be ignored if the cloud-provider does not support the feature.</TD></TR>
+<TR><TD><CODE>loadBalancerSourceRanges</CODE><BR /><I>string array</I></TD><TD>If specified and supported by the platform, this will restrict traffic through the cloud-provider load-balancer will be restricted to the specified client IPs. This field will be ignored if the cloud-provider does not support the feature.&#34; More info: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/</TD></TR>
+<TR><TD><CODE>ports</CODE><BR /><I><a href="#serviceport-v1-core">ServicePort</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>port</I></TD><TD>The list of ports that are exposed by this service. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies</TD></TR>
+<TR><TD><CODE>publishNotReadyAddresses</CODE><BR /><I>boolean</I></TD><TD>publishNotReadyAddresses indicates that any agent which deals with endpoints for this Service should disregard any indications of ready/not-ready. The primary use case for setting this field is for a StatefulSet&#39;s Headless Service to propagate SRV DNS records for its Pods for the purpose of peer discovery. The Kubernetes controllers that generate Endpoints and EndpointSlice resources for Services interpret this to mean that all endpoints are considered &#34;ready&#34; even if the Pods themselves are not. Agents which consume only Kubernetes generated endpoints through the Endpoints or EndpointSlice resources can safely assume this behavior.</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I>object</I></TD><TD>Route service traffic to pods with label keys and values matching this selector. If empty or not present, the service is assumed to have an external process managing its endpoints, which Kubernetes will not modify. Only applies to types ClusterIP, NodePort, and LoadBalancer. Ignored if type is ExternalName. More info: https://kubernetes.io/docs/concepts/services-networking/service/</TD></TR>
+<TR><TD><CODE>sessionAffinity</CODE><BR /><I>string</I></TD><TD>Supports &#34;ClientIP&#34; and &#34;None&#34;. Used to maintain session affinity. Enable client IP based session affinity. Must be ClientIP or None. Defaults to None. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies  Possible enum values:  - `&#34;ClientIP&#34;` is the Client IP based.  - `&#34;None&#34;` - no session affinity.</TD></TR>
+<TR><TD><CODE>sessionAffinityConfig</CODE><BR /><I><a href="#sessionaffinityconfig-v1-core">SessionAffinityConfig</a></I></TD><TD>sessionAffinityConfig contains the configurations of session affinity.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type determines how the Service is exposed. Defaults to ClusterIP. Valid options are ExternalName, ClusterIP, NodePort, and LoadBalancer. &#34;ClusterIP&#34; allocates a cluster-internal IP address for load-balancing to endpoints. Endpoints are determined by the selector or if that is not specified, by manual construction of an Endpoints object or EndpointSlice objects. If clusterIP is &#34;None&#34;, no virtual IP is allocated and the endpoints are published as a set of endpoints rather than a virtual IP. &#34;NodePort&#34; builds on ClusterIP and allocates a port on every node which routes to the same endpoints as the clusterIP. &#34;LoadBalancer&#34; builds on NodePort and creates an external load-balancer (if supported in the current cloud) which routes to the same endpoints as the clusterIP. &#34;ExternalName&#34; aliases this service to the specified externalName. Several other fields do not apply to ExternalName services. More info: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types  Possible enum values:  - `&#34;ClusterIP&#34;` means a service will only be accessible inside the cluster, via the cluster IP.  - `&#34;ExternalName&#34;` means a service consists of only a reference to an external name that kubedns or equivalent will return as a CNAME record, with no exposing or proxying of any pods involved.  - `&#34;LoadBalancer&#34;` means a service will be exposed via an external load balancer (if the cloud provider supports it), in addition to &#39;NodePort&#39; type.  - `&#34;NodePort&#34;` means a service will be exposed on one port of every node, in addition to &#39;ClusterIP&#39; type.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="servicestatus-v1-core">ServiceStatus v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#service-v1-core">Service [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#condition-v1-meta">Condition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Current service state</TD></TR>
+<TR><TD><CODE>loadBalancer</CODE><BR /><I><a href="#loadbalancerstatus-v1-core">LoadBalancerStatus</a></I></TD><TD>LoadBalancer contains the current status of the load-balancer, if one is present.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="servicelist-v1-core">ServiceList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#service-v1-core">Service</a> array</I></TD><TD>List of services</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-service-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-service-v1-core">Create</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-create-service-v1-core" aria-controls="req-kubectl-create-service-v1-core"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-create-service-v1-core" aria-controls="req-curl-create-service-v1-core"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-create-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ echo 'kind: Service
+apiVersion: v1
+metadata:
+  name: service-example
+spec:
+  ports:
+    - name: http
+      port: 80
+      targetPort: 80
+  selector:
+      app: nginx
+  type: LoadBalancer
+' | kubectl create -f -
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-create-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X POST -H 'Content-Type: application/yaml' --data '
+kind: Service
+apiVersion: v1
+metadata:
+  name: service-example
+spec:
+  ports:
+    - name: http
+      port: 80
+      targetPort: 80
+  selector:
+      app: nginx
+  type: LoadBalancer
+' http://127.0.0.1:8001/api/v1/namespaces/default/services
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-create-service-v1-core" aria-controls="res-kubectl-create-service-v1-core"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-create-service-v1-core" aria-controls="res-curl-create-service-v1-core"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-create-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+service "service-example" created
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-create-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Service",
+  "apiVersion": "v1",
+  "metadata": {
+    "name": "service-example",
+    "namespace": "default",
+    "selfLink": "/api/v1/namespaces/default/services/service-example",
+    "uid": "93e5c731-9d30-11e6-9c54-42010a800148",
+    "resourceVersion": "2205767",
+    "creationTimestamp": "2016-10-28T17:04:24Z"
+  },
+  "spec": {
+    "ports": [
+      {
+        "name": "http",
+        "protocol": "TCP",
+        "port": 80,
+        "targetPort": 80,
+        "nodePort": 32417
+      }
+    ],
+    "selector": {
+      "app": "nginx"
+    },
+    "clusterIP": "10.183.250.161",
+    "type": "LoadBalancer",
+    "sessionAffinity": "None"
+  },
+  "status": {
+    "loadBalancer": {}
+  }
+}
+</CODE></PRE></DIV></DIV></DIV>
+<P>create a Service</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/services</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#service-v1-core">Service</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-service-v1-core">Patch</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-patch-service-v1-core" aria-controls="req-kubectl-patch-service-v1-core"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-patch-service-v1-core" aria-controls="req-curl-patch-service-v1-core"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-patch-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl patch service  -p \
+	'{"spec":{"ports":[{"name":"http","port":80,"targetPort":8080}]}}'
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-patch-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X PATCH -H 'Content-Type: application/strategic-merge-patch+json' --data '
+{"spec":{"ports":[{"name":"http","port":80,"targetPort":8080}]}}' \
+	'http://127.0.0.1:8001/api/v1/namespaces/default/services/'
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-patch-service-v1-core" aria-controls="res-kubectl-patch-service-v1-core"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-patch-service-v1-core" aria-controls="res-curl-patch-service-v1-core"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-patch-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+"" patched
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-patch-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Service",
+  "apiVersion": "v1",
+  "metadata": {
+    "name": "deployment-example",
+    "namespace": "default",
+    "selfLink": "/api/v1/namespaces/default/services/deployment-example",
+    "uid": "93e5c731-9d30-11e6-9c54-42010a800148",
+    "resourceVersion": "2205995",
+    "creationTimestamp": "2016-10-28T17:04:24Z"
+  },
+  "spec": {
+    "ports": [
+      {
+        "name": "http",
+        "protocol": "TCP",
+        "port": 80,
+        "targetPort": 8080,
+        "nodePort": 32417
+      }
+    ],
+    "selector": {
+      "app": "nginx"
+    },
+    "clusterIP": "10.183.250.161",
+    "type": "LoadBalancer",
+    "sessionAffinity": "None"
+  },
+  "status": {
+    "loadBalancer": {
+      "ingress": [
+        {
+          "ip": "104.198.186.106"
+        }
+      ]
+    }
+  }
+}
+</CODE></PRE></DIV></DIV></DIV>
+<P>partially update the specified Service</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/services/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Service</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-service-v1-core">Replace</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-replace-service-v1-core" aria-controls="req-kubectl-replace-service-v1-core"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-replace-service-v1-core" aria-controls="req-curl-replace-service-v1-core"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-replace-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ echo 'apiVersion: v1
+kind: Service
+metadata:
+  name: deployment-example
+  resourceVersion: "2205995"
+spec:
+  clusterIP: 10.183.250.161
+  ports:
+  - name: http
+    nodePort: 32417
+    port: 80
+    protocol: TCP
+    targetPort: 8080
+  selector:
+    app: nginx
+  sessionAffinity: None
+  type: LoadBalancer
+' | kubectl replace -f -
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-replace-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X PUT -H 'Content-Type: application/yaml' --data '
+apiVersion: v1
+kind: Service
+metadata:
+  name: deployment-example
+  resourceVersion: "2205995"
+spec:
+  clusterIP: 10.183.250.161
+  ports:
+  - name: http
+    nodePort: 32417
+    port: 80
+    protocol: TCP
+    targetPort: 8080
+  selector:
+    app: nginx
+  sessionAffinity: None
+  type: LoadBalancer
+' http://127.0.0.1:8001/api/v1/namespaces/default/services/deployment-example
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-replace-service-v1-core" aria-controls="res-kubectl-replace-service-v1-core"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-replace-service-v1-core" aria-controls="res-curl-replace-service-v1-core"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-replace-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+service "deployment-example" replaced
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-replace-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Service",
+  "apiVersion": "v1",
+  "metadata": {
+    "name": "deployment-example",
+    "namespace": "default",
+    "selfLink": "/api/v1/namespaces/default/services/deployment-example",
+    "uid": "93e5c731-9d30-11e6-9c54-42010a800148",
+    "resourceVersion": "2208672",
+    "creationTimestamp": "2016-10-28T17:04:24Z"
+  },
+  "spec": {
+    "ports": [
+      {
+        "name": "http",
+        "protocol": "TCP",
+        "port": 80,
+        "targetPort": 8080,
+        "nodePort": 32417
+      }
+    ],
+    "selector": {
+      "app": "nginx"
+    },
+    "clusterIP": "10.183.250.161",
+    "type": "LoadBalancer",
+    "sessionAffinity": "None"
+  },
+  "status": {
+    "loadBalancer": {
+      "ingress": [
+        {
+          "ip": "104.198.186.106"
+        }
+      ]
+    }
+  }
+}
+</CODE></PRE></DIV></DIV></DIV>
+<P>replace the specified Service</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/services/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Service</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#service-v1-core">Service</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-service-v1-core">Delete</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-delete-service-v1-core" aria-controls="req-kubectl-delete-service-v1-core"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-delete-service-v1-core" aria-controls="req-curl-delete-service-v1-core"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-delete-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl delete service deployment-example
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-delete-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X DELETE -H 'Content-Type: application/yaml' --data '
+gracePeriodSeconds: 0
+orphanDependents: false
+' 'http://127.0.0.1:8001/api/v1/namespaces/default/services/deployment-example'
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-delete-service-v1-core" aria-controls="res-kubectl-delete-service-v1-core"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-delete-service-v1-core" aria-controls="res-curl-delete-service-v1-core"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-delete-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+service "deployment-example" deleted
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-delete-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Status",
+  "apiVersion": "v1",
+  "metadata": {},
+  "status": "Success",
+  "code": 200
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<P>delete a Service</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/services/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Service</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-service-v1-core">Delete Collection</H2>
+<P>delete collection of Service</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/services</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-service-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-service-v1-core">Read</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-read-service-v1-core" aria-controls="req-kubectl-read-service-v1-core"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-read-service-v1-core" aria-controls="req-curl-read-service-v1-core"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-read-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl get service deployment-example -o json
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-read-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X GET http://127.0.0.1:8001/api/v1/namespaces/default/services/deployment-example
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-read-service-v1-core" aria-controls="res-kubectl-read-service-v1-core"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-read-service-v1-core" aria-controls="res-curl-read-service-v1-core"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-read-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+{
+  "kind": "Service",
+  "apiVersion": "v1",
+  "metadata": {
+    "name": "deployment-example",
+    "namespace": "default",
+    "selfLink": "/api/v1/namespaces/default/services/deployment-example",
+    "uid": "93e5c731-9d30-11e6-9c54-42010a800148",
+    "resourceVersion": "2205995",
+    "creationTimestamp": "2016-10-28T17:04:24Z"
+  },
+  "spec": {
+    "ports": [
+      {
+        "name": "http",
+        "protocol": "TCP",
+        "port": 80,
+        "targetPort": 8080,
+        "nodePort": 32417
+      }
+    ],
+    "selector": {
+      "app": "nginx"
+    },
+    "clusterIP": "10.183.250.161",
+    "type": "LoadBalancer",
+    "sessionAffinity": "None"
+  },
+  "status": {
+    "loadBalancer": {
+      "ingress": [
+        {
+          "ip": "104.198.186.106"
+        }
+      ]
+    }
+  }
+}
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-read-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Service",
+  "apiVersion": "v1",
+  "metadata": {
+    "name": "deployment-example",
+    "namespace": "default",
+    "selfLink": "/api/v1/namespaces/default/services/deployment-example",
+    "uid": "93e5c731-9d30-11e6-9c54-42010a800148",
+    "resourceVersion": "2205995",
+    "creationTimestamp": "2016-10-28T17:04:24Z"
+  },
+  "spec": {
+    "ports": [
+      {
+        "name": "http",
+        "protocol": "TCP",
+        "port": 80,
+        "targetPort": 8080,
+        "nodePort": 32417
+      }
+    ],
+    "selector": {
+      "app": "nginx"
+    },
+    "clusterIP": "10.183.250.161",
+    "type": "LoadBalancer",
+    "sessionAffinity": "None"
+  },
+  "status": {
+    "loadBalancer": {
+      "ingress": [
+        {
+          "ip": "104.198.186.106"
+        }
+      ]
+    }
+  }
+}
+</CODE></PRE></DIV></DIV></DIV>
+<P>read the specified Service</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/services/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Service</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-service-v1-core">List</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-list-service-v1-core" aria-controls="req-kubectl-list-service-v1-core"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-list-service-v1-core" aria-controls="req-curl-list-service-v1-core"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-list-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl get service -o json
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-list-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X GET 'http://127.0.0.1:8001/api/v1/namespaces/default/services'
+</CODE></PRE></DIV></DIV></DIV>
+<P>list or watch objects of kind Service</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/services</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#servicelist-v1-core">ServiceList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-service-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind Service</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/services</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#servicelist-v1-core">ServiceList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-service-v1-core">Watch</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-watch-service-v1-core" aria-controls="req-kubectl-watch-service-v1-core"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-watch-service-v1-core" aria-controls="req-curl-watch-service-v1-core"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-watch-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl get service deployment-example --watch -o json
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-watch-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X GET 'http://127.0.0.1:8001/api/v1/watch/namespaces/default/services/deployment-example'
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-watch-service-v1-core" aria-controls="res-kubectl-watch-service-v1-core"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-watch-service-v1-core" aria-controls="res-curl-watch-service-v1-core"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-watch-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+{
+	"type": "ADDED",
+	"object": {
+		"kind": "Service",
+		"apiVersion": "v1",
+		"metadata": {
+			"name": "deployment-example",
+			"namespace": "default",
+			"selfLink": "/api/v1/namespaces/default/services/deployment-example",
+			"uid": "93e5c731-9d30-11e6-9c54-42010a800148",
+			"resourceVersion": "2205995",
+			"creationTimestamp": "2016-10-28T17:04:24Z"
+		},
+		"spec": {
+			"ports": [
+				{
+					"name": "http",
+					"protocol": "TCP",
+					"port": 80,
+					"targetPort": 8080,
+					"nodePort": 32417
+				}
+			],
+			"selector": {
+				"app": "nginx"
+			},
+			"clusterIP": "10.183.250.161",
+			"type": "LoadBalancer",
+			"sessionAffinity": "None"
+		},
+		"status": {
+			"loadBalancer": {
+				"ingress": [
+					{
+						"ip": "104.198.186.106"
+					}
+				]
+			}
+		}
+	}
+}
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-watch-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+	"type": "ADDED",
+	"object": {
+		"kind": "Service",
+		"apiVersion": "v1",
+		"metadata": {
+			"name": "deployment-example",
+			"namespace": "default",
+			"selfLink": "/api/v1/namespaces/default/services/deployment-example",
+			"uid": "93e5c731-9d30-11e6-9c54-42010a800148",
+			"resourceVersion": "2205995",
+			"creationTimestamp": "2016-10-28T17:04:24Z"
+		},
+		"spec": {
+			"ports": [
+				{
+					"name": "http",
+					"protocol": "TCP",
+					"port": 80,
+					"targetPort": 8080,
+					"nodePort": 32417
+				}
+			],
+			"selector": {
+				"app": "nginx"
+			},
+			"clusterIP": "10.183.250.161",
+			"type": "LoadBalancer",
+			"sessionAffinity": "None"
+		},
+		"status": {
+			"loadBalancer": {
+				"ingress": [
+					{
+						"ip": "104.198.186.106"
+					}
+				]
+			}
+		}
+	}
+}
+</CODE></PRE></DIV></DIV></DIV>
+<P>watch changes to an object of kind Service. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/services/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Service</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-service-v1-core">Watch List</H2>
+<P>watch individual changes to a list of Service. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/services</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-service-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Service. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/services</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-service-v1-core-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-service-v1-core">Patch Status</H2>
+<P>partially update status of the specified Service</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/services/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Service</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-service-v1-core">Read Status</H2>
+<P>read status of the specified Service</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/services/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Service</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-service-v1-core">Replace Status</H2>
+<P>replace status of the specified Service</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/services/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Service</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#service-v1-core">Service</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-proxy-operations-service-v1-core-strong-"><STRONG>Proxy Operations</STRONG></H2>
+<H2 id="create-connect-proxy-service-v1-core">Create Connect Proxy</H2>
+<P>connect POST requests to proxy of Service</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/services/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the part of URLs that include service endpoints, suffixes, and parameters to use for the current proxy request to service. For example, the whole request URL is http://localhost/api/v1/namespaces/kube-system/services/elasticsearch-logging/_search?q=user:kimchy. Path is _search?q=user:kimchy.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="create-connect-proxy-path-service-v1-core">Create Connect Proxy Path</H2>
+<P>connect POST requests to proxy of Service</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/services/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the part of URLs that include service endpoints, suffixes, and parameters to use for the current proxy request to service. For example, the whole request URL is http://localhost/api/v1/namespaces/kube-system/services/elasticsearch-logging/_search?q=user:kimchy. Path is _search?q=user:kimchy.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-connect-proxy-service-v1-core">Delete Connect Proxy</H2>
+<P>connect DELETE requests to proxy of Service</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/services/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the part of URLs that include service endpoints, suffixes, and parameters to use for the current proxy request to service. For example, the whole request URL is http://localhost/api/v1/namespaces/kube-system/services/elasticsearch-logging/_search?q=user:kimchy. Path is _search?q=user:kimchy.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-connect-proxy-path-service-v1-core">Delete Connect Proxy Path</H2>
+<P>connect DELETE requests to proxy of Service</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/services/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the part of URLs that include service endpoints, suffixes, and parameters to use for the current proxy request to service. For example, the whole request URL is http://localhost/api/v1/namespaces/kube-system/services/elasticsearch-logging/_search?q=user:kimchy. Path is _search?q=user:kimchy.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="get-connect-proxy-service-v1-core">Get Connect Proxy</H2>
+<P>connect GET requests to proxy of Service</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/services/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the part of URLs that include service endpoints, suffixes, and parameters to use for the current proxy request to service. For example, the whole request URL is http://localhost/api/v1/namespaces/kube-system/services/elasticsearch-logging/_search?q=user:kimchy. Path is _search?q=user:kimchy.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="get-connect-proxy-path-service-v1-core">Get Connect Proxy Path</H2>
+<P>connect GET requests to proxy of Service</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/services/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the part of URLs that include service endpoints, suffixes, and parameters to use for the current proxy request to service. For example, the whole request URL is http://localhost/api/v1/namespaces/kube-system/services/elasticsearch-logging/_search?q=user:kimchy. Path is _search?q=user:kimchy.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="head-connect-proxy-service-v1-core">Head Connect Proxy</H2>
+<P>connect HEAD requests to proxy of Service</P>
+<H3>HTTP Request</H3>
+<CODE>HEAD /api/v1/namespaces/{namespace}/services/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the part of URLs that include service endpoints, suffixes, and parameters to use for the current proxy request to service. For example, the whole request URL is http://localhost/api/v1/namespaces/kube-system/services/elasticsearch-logging/_search?q=user:kimchy. Path is _search?q=user:kimchy.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="head-connect-proxy-path-service-v1-core">Head Connect Proxy Path</H2>
+<P>connect HEAD requests to proxy of Service</P>
+<H3>HTTP Request</H3>
+<CODE>HEAD /api/v1/namespaces/{namespace}/services/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the part of URLs that include service endpoints, suffixes, and parameters to use for the current proxy request to service. For example, the whole request URL is http://localhost/api/v1/namespaces/kube-system/services/elasticsearch-logging/_search?q=user:kimchy. Path is _search?q=user:kimchy.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-connect-proxy-service-v1-core">Replace Connect Proxy</H2>
+<P>connect PUT requests to proxy of Service</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/services/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the part of URLs that include service endpoints, suffixes, and parameters to use for the current proxy request to service. For example, the whole request URL is http://localhost/api/v1/namespaces/kube-system/services/elasticsearch-logging/_search?q=user:kimchy. Path is _search?q=user:kimchy.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-connect-proxy-path-service-v1-core">Replace Connect Proxy Path</H2>
+<P>connect PUT requests to proxy of Service</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/services/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the part of URLs that include service endpoints, suffixes, and parameters to use for the current proxy request to service. For example, the whole request URL is http://localhost/api/v1/namespaces/kube-system/services/elasticsearch-logging/_search?q=user:kimchy. Path is _search?q=user:kimchy.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="-strong-config-and-storage-apis-strong-"><STRONG>CONFIG & STORAGE</STRONG></H1>
+
+<P>Config and Storage resources are responsible for injecting data into your applications and persisting data externally to your container.</P>
+
+<P>Common resource types:</P>
+<UL>
+<LI><A href="#configmap-v1-core">ConfigMaps</A> for providing text key value pairs injected into the application through environment variables, command line arguments, or files</LI>
+<LI><A href="#secret-v1-core">Secrets</A> for providing binary data injected into the application through files</LI>
+<LI><A href="#volume-v1-core">Volumes</A> for providing a filesystem external to the Container.  Maybe shared across Containers within the same Pod and have a lifetime persisting beyond a Container or Pod.</LI>
+</UL>
+<HR />
+<H1 id="configmap-v1-core">ConfigMap v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ConfigMap</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#configmaplist-v1-core">ConfigMapList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>binaryData</CODE><BR /><I>object</I></TD><TD>BinaryData contains the binary data. Each key must consist of alphanumeric characters, &#39;-&#39;, &#39;_&#39; or &#39;.&#39;. BinaryData can contain byte sequences that are not in the UTF-8 range. The keys stored in BinaryData must not overlap with the ones in the Data field, this is enforced during validation process. Using this field will require 1.10+ apiserver and kubelet.</TD></TR>
+<TR><TD><CODE>data</CODE><BR /><I>object</I></TD><TD>Data contains the configuration data. Each key must consist of alphanumeric characters, &#39;-&#39;, &#39;_&#39; or &#39;.&#39;. Values with non-UTF-8 byte sequences must use the BinaryData field. The keys stored in Data must not overlap with the keys in the BinaryData field, this is enforced during validation process.</TD></TR>
+<TR><TD><CODE>immutable</CODE><BR /><I>boolean</I></TD><TD>Immutable, if set to true, ensures that data stored in the ConfigMap cannot be updated (only object metadata can be modified). If not set to true, the field can be modified at any time. Defaulted to nil.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="configmaplist-v1-core">ConfigMapList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#configmap-v1-core">ConfigMap</a> array</I></TD><TD>Items is the list of ConfigMaps.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-configmap-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-configmap-v1-core">Create</H2>
+<P>create a ConfigMap</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/configmaps</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#configmap-v1-core">ConfigMap</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#configmap-v1-core">ConfigMap</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#configmap-v1-core">ConfigMap</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#configmap-v1-core">ConfigMap</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-configmap-v1-core">Patch</H2>
+<P>partially update the specified ConfigMap</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/configmaps/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ConfigMap</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#configmap-v1-core">ConfigMap</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#configmap-v1-core">ConfigMap</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-configmap-v1-core">Replace</H2>
+<P>replace the specified ConfigMap</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/configmaps/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ConfigMap</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#configmap-v1-core">ConfigMap</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#configmap-v1-core">ConfigMap</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#configmap-v1-core">ConfigMap</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-configmap-v1-core">Delete</H2>
+<P>delete a ConfigMap</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/configmaps/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ConfigMap</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-configmap-v1-core">Delete Collection</H2>
+<P>delete collection of ConfigMap</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/configmaps</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-configmap-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-configmap-v1-core">Read</H2>
+<P>read the specified ConfigMap</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/configmaps/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ConfigMap</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#configmap-v1-core">ConfigMap</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-configmap-v1-core">List</H2>
+<P>list or watch objects of kind ConfigMap</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/configmaps</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#configmaplist-v1-core">ConfigMapList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-configmap-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind ConfigMap</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/configmaps</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#configmaplist-v1-core">ConfigMapList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-configmap-v1-core">Watch</H2>
+<P>watch changes to an object of kind ConfigMap. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/configmaps/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ConfigMap</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-configmap-v1-core">Watch List</H2>
+<P>watch individual changes to a list of ConfigMap. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/configmaps</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-configmap-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of ConfigMap. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/configmaps</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="csidriver-v1-storage-k8s-io">CSIDriver v1 storage.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CSIDriver</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csidriverlist-v1-storage-k8s-io">CSIDriverList [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object metadata. metadata.Name indicates the name of the CSI driver that this object refers to; it MUST be the same name returned by the CSI GetPluginName() call for that driver. The driver name must be 63 characters or less, beginning and ending with an alphanumeric character ([a-z0-9A-Z]) with dashes (-), dots (.), and alphanumerics between. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#csidriverspec-v1-storage-k8s-io">CSIDriverSpec</a></I></TD><TD>Specification of the CSI Driver.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="csidriverspec-v1-storage-k8s-io">CSIDriverSpec v1 storage</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csidriver-v1-storage-k8s-io">CSIDriver [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>attachRequired</CODE><BR /><I>boolean</I></TD><TD>attachRequired indicates this CSI volume driver requires an attach operation (because it implements the CSI ControllerPublishVolume() method), and that the Kubernetes attach detach controller should call the attach volume interface which checks the volumeattachment status and waits until the volume is attached before proceeding to mounting. The CSI external-attacher coordinates with CSI volume driver and updates the volumeattachment status when the attach operation is complete. If the CSIDriverRegistry feature gate is enabled and the value is specified to false, the attach operation will be skipped. Otherwise the attach operation will be called.  This field is immutable.</TD></TR>
+<TR><TD><CODE>fsGroupPolicy</CODE><BR /><I>string</I></TD><TD>Defines if the underlying volume supports changing ownership and permission of the volume before being mounted. Refer to the specific FSGroupPolicy values for additional details.  This field is immutable.  Defaults to ReadWriteOnceWithFSType, which will examine each volume to determine if Kubernetes should modify ownership and permissions of the volume. With the default policy the defined fsGroup will only be applied if a fstype is defined and the volume&#39;s access mode contains ReadWriteOnce.</TD></TR>
+<TR><TD><CODE>podInfoOnMount</CODE><BR /><I>boolean</I></TD><TD>If set to true, podInfoOnMount indicates this CSI volume driver requires additional pod information (like podName, podUID, etc.) during mount operations. If set to false, pod information will not be passed on mount. Default is false. The CSI driver specifies podInfoOnMount as part of driver deployment. If true, Kubelet will pass pod information as VolumeContext in the CSI NodePublishVolume() calls. The CSI driver is responsible for parsing and validating the information passed in as VolumeContext. The following VolumeConext will be passed if podInfoOnMount is set to true. This list might grow, but the prefix will be used. &#34;csi.storage.k8s.io/pod.name&#34;: pod.Name &#34;csi.storage.k8s.io/pod.namespace&#34;: pod.Namespace &#34;csi.storage.k8s.io/pod.uid&#34;: string(pod.UID) &#34;csi.storage.k8s.io/ephemeral&#34;: &#34;true&#34; if the volume is an ephemeral inline volume                                 defined by a CSIVolumeSource, otherwise &#34;false&#34;  &#34;csi.storage.k8s.io/ephemeral&#34; is a new feature in Kubernetes 1.16. It is only required for drivers which support both the &#34;Persistent&#34; and &#34;Ephemeral&#34; VolumeLifecycleMode. Other drivers can leave pod info disabled and/or ignore this field. As Kubernetes 1.15 doesn&#39;t support this field, drivers can only support one mode when deployed on such a cluster and the deployment determines which mode that is, for example via a command line parameter of the driver.  This field is immutable.</TD></TR>
+<TR><TD><CODE>requiresRepublish</CODE><BR /><I>boolean</I></TD><TD>RequiresRepublish indicates the CSI driver wants `NodePublishVolume` being periodically called to reflect any possible change in the mounted volume. This field defaults to false.  Note: After a successful initial NodePublishVolume call, subsequent calls to NodePublishVolume should only update the contents of the volume. New mount points will not be seen by a running container.</TD></TR>
+<TR><TD><CODE>storageCapacity</CODE><BR /><I>boolean</I></TD><TD>If set to true, storageCapacity indicates that the CSI volume driver wants pod scheduling to consider the storage capacity that the driver deployment will report by creating CSIStorageCapacity objects with capacity information.  The check can be enabled immediately when deploying a driver. In that case, provisioning new volumes with late binding will pause until the driver deployment has published some suitable CSIStorageCapacity object.  Alternatively, the driver can be deployed with the field unset or false and it can be flipped later when storage capacity information has been published.  This field was immutable in Kubernetes &lt;= 1.22 and now is mutable.  This is a beta field and only available when the CSIStorageCapacity feature is enabled. The default is false.</TD></TR>
+<TR><TD><CODE>tokenRequests</CODE><BR /><I><a href="#tokenrequest-v1-storage-k8s-io">TokenRequest</a> array</I></TD><TD>TokenRequests indicates the CSI driver needs pods&#39; service account tokens it is mounting volume for to do necessary authentication. Kubelet will pass the tokens in VolumeContext in the CSI NodePublishVolume calls. The CSI driver should parse and validate the following VolumeContext: &#34;csi.storage.k8s.io/serviceAccount.tokens&#34;: {   &#34;&lt;audience&gt;&#34;: {     &#34;token&#34;: &lt;token&gt;,     &#34;expirationTimestamp&#34;: &lt;expiration timestamp in RFC3339&gt;,   },   ... }  Note: Audience in each TokenRequest should be different and at most one token is empty string. To receive a new token after expiry, RequiresRepublish can be used to trigger NodePublishVolume periodically.</TD></TR>
+<TR><TD><CODE>volumeLifecycleModes</CODE><BR /><I>string array</I></TD><TD>volumeLifecycleModes defines what kind of volumes this CSI volume driver supports. The default if the list is empty is &#34;Persistent&#34;, which is the usage defined by the CSI specification and implemented in Kubernetes via the usual PV/PVC mechanism. The other mode is &#34;Ephemeral&#34;. In this mode, volumes are defined inline inside the pod spec with CSIVolumeSource and their lifecycle is tied to the lifecycle of that pod. A driver has to be aware of this because it is only going to get a NodePublishVolume call for such a volume. For more information about implementing this mode, see https://kubernetes-csi.github.io/docs/ephemeral-local-volumes.html A driver can support one or more of these modes and more modes may be added in the future. This field is beta.  This field is immutable.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="csidriverlist-v1-storage-k8s-io">CSIDriverList v1 storage</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a> array</I></TD><TD>items is the list of CSIDriver</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-csidriver-v1-storage-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-csidriver-v1-storage-k8s-io">Create</H2>
+<P>create a CSIDriver</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/storage.k8s.io/v1/csidrivers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-csidriver-v1-storage-k8s-io">Patch</H2>
+<P>partially update the specified CSIDriver</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/storage.k8s.io/v1/csidrivers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIDriver</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-csidriver-v1-storage-k8s-io">Replace</H2>
+<P>replace the specified CSIDriver</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/storage.k8s.io/v1/csidrivers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIDriver</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-csidriver-v1-storage-k8s-io">Delete</H2>
+<P>delete a CSIDriver</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1/csidrivers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIDriver</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-csidriver-v1-storage-k8s-io">Delete Collection</H2>
+<P>delete collection of CSIDriver</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1/csidrivers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-csidriver-v1-storage-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-csidriver-v1-storage-k8s-io">Read</H2>
+<P>read the specified CSIDriver</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/csidrivers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIDriver</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-csidriver-v1-storage-k8s-io">List</H2>
+<P>list or watch objects of kind CSIDriver</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/csidrivers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csidriverlist-v1-storage-k8s-io">CSIDriverList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-csidriver-v1-storage-k8s-io">Watch</H2>
+<P>watch changes to an object of kind CSIDriver. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/watch/csidrivers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIDriver</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-csidriver-v1-storage-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of CSIDriver. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/watch/csidrivers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="csinode-v1-storage-k8s-io">CSINode v1 storage.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CSINode</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csinodelist-v1-storage-k8s-io">CSINodeList [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>metadata.name must be the Kubernetes node name.</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#csinodespec-v1-storage-k8s-io">CSINodeSpec</a></I></TD><TD>spec is the specification of CSINode</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="csinodespec-v1-storage-k8s-io">CSINodeSpec v1 storage</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csinode-v1-storage-k8s-io">CSINode [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>drivers</CODE><BR /><I><a href="#csinodedriver-v1-storage-k8s-io">CSINodeDriver</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>name</I></TD><TD>drivers is a list of information of all CSI Drivers existing on a node. If all drivers in the list are uninstalled, this can become empty.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="csinodelist-v1-storage-k8s-io">CSINodeList v1 storage</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a> array</I></TD><TD>items is the list of CSINode</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-csinode-v1-storage-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-csinode-v1-storage-k8s-io">Create</H2>
+<P>create a CSINode</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/storage.k8s.io/v1/csinodes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-csinode-v1-storage-k8s-io">Patch</H2>
+<P>partially update the specified CSINode</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/storage.k8s.io/v1/csinodes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSINode</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-csinode-v1-storage-k8s-io">Replace</H2>
+<P>replace the specified CSINode</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/storage.k8s.io/v1/csinodes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSINode</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-csinode-v1-storage-k8s-io">Delete</H2>
+<P>delete a CSINode</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1/csinodes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSINode</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-csinode-v1-storage-k8s-io">Delete Collection</H2>
+<P>delete collection of CSINode</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1/csinodes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-csinode-v1-storage-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-csinode-v1-storage-k8s-io">Read</H2>
+<P>read the specified CSINode</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/csinodes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSINode</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-csinode-v1-storage-k8s-io">List</H2>
+<P>list or watch objects of kind CSINode</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/csinodes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csinodelist-v1-storage-k8s-io">CSINodeList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-csinode-v1-storage-k8s-io">Watch</H2>
+<P>watch changes to an object of kind CSINode. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/watch/csinodes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSINode</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-csinode-v1-storage-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of CSINode. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/watch/csinodes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="secret-v1-core">Secret v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Secret</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#secretlist-v1-core">SecretList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>data</CODE><BR /><I>object</I></TD><TD>Data contains the secret data. Each key must consist of alphanumeric characters, &#39;-&#39;, &#39;_&#39; or &#39;.&#39;. The serialized form of the secret data is a base64 encoded string, representing the arbitrary (possibly non-string) data value here. Described in https://tools.ietf.org/html/rfc4648#section-4</TD></TR>
+<TR><TD><CODE>immutable</CODE><BR /><I>boolean</I></TD><TD>Immutable, if set to true, ensures that data stored in the Secret cannot be updated (only object metadata can be modified). If not set to true, the field can be modified at any time. Defaulted to nil.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>stringData</CODE><BR /><I>object</I></TD><TD>stringData allows specifying non-binary secret data in string form. It is provided as a write-only input field for convenience. All keys and values are merged into the data field on write, overwriting any existing values. The stringData field is never output when reading from the API.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Used to facilitate programmatic handling of secret data. More info: https://kubernetes.io/docs/concepts/configuration/secret/#secret-types</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="secretlist-v1-core">SecretList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#secret-v1-core">Secret</a> array</I></TD><TD>Items is a list of secret objects. More info: https://kubernetes.io/docs/concepts/configuration/secret</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-secret-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-secret-v1-core">Create</H2>
+<P>create a Secret</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/secrets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#secret-v1-core">Secret</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#secret-v1-core">Secret</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#secret-v1-core">Secret</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#secret-v1-core">Secret</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-secret-v1-core">Patch</H2>
+<P>partially update the specified Secret</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/secrets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Secret</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#secret-v1-core">Secret</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#secret-v1-core">Secret</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-secret-v1-core">Replace</H2>
+<P>replace the specified Secret</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/secrets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Secret</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#secret-v1-core">Secret</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#secret-v1-core">Secret</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#secret-v1-core">Secret</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-secret-v1-core">Delete</H2>
+<P>delete a Secret</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/secrets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Secret</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-secret-v1-core">Delete Collection</H2>
+<P>delete collection of Secret</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/secrets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-secret-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-secret-v1-core">Read</H2>
+<P>read the specified Secret</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/secrets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Secret</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#secret-v1-core">Secret</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-secret-v1-core">List</H2>
+<P>list or watch objects of kind Secret</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/secrets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#secretlist-v1-core">SecretList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-secret-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind Secret</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/secrets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#secretlist-v1-core">SecretList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-secret-v1-core">Watch</H2>
+<P>watch changes to an object of kind Secret. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/secrets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Secret</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-secret-v1-core">Watch List</H2>
+<P>watch individual changes to a list of Secret. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/secrets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-secret-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Secret. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/secrets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="persistentvolumeclaim-v1-core">PersistentVolumeClaim v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PersistentVolumeClaim</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-bullhorn"></I> A <a href="#persistentvolume-v1-core">PersistentVolume</a> must be allocated in the cluster to use this.</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumeclaimlist-v1-core">PersistentVolumeClaimList [core/v1]</a></LI>
+  <LI><a href="#statefulsetspec-v1-apps">StatefulSetSpec [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#persistentvolumeclaimspec-v1-core">PersistentVolumeClaimSpec</a></I></TD><TD>Spec defines the desired characteristics of a volume requested by a pod author. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#persistentvolumeclaimstatus-v1-core">PersistentVolumeClaimStatus</a></I></TD><TD>Status represents the current information/status of a persistent volume claim. Read-only. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="persistentvolumeclaimspec-v1-core">PersistentVolumeClaimSpec v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim [core/v1]</a></LI>
+  <LI><a href="#persistentvolumeclaimtemplate-v1-core">PersistentVolumeClaimTemplate [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>accessModes</CODE><BR /><I>string array</I></TD><TD>AccessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1</TD></TR>
+<TR><TD><CODE>dataSource</CODE><BR /><I><a href="#typedlocalobjectreference-v1-core">TypedLocalObjectReference</a></I></TD><TD>This field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field.</TD></TR>
+<TR><TD><CODE>dataSourceRef</CODE><BR /><I><a href="#typedlocalobjectreference-v1-core">TypedLocalObjectReference</a></I></TD><TD>Specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef   allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef   preserves all values, and generates an error if a disallowed value is   specified. (Alpha) Using this field requires the AnyVolumeDataSource feature gate to be enabled.</TD></TR>
+<TR><TD><CODE>resources</CODE><BR /><I><a href="#resourcerequirements-v1-core">ResourceRequirements</a></I></TD><TD>Resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>A label query over volumes to consider for binding.</TD></TR>
+<TR><TD><CODE>storageClassName</CODE><BR /><I>string</I></TD><TD>Name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1</TD></TR>
+<TR><TD><CODE>volumeMode</CODE><BR /><I>string</I></TD><TD>volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.</TD></TR>
+<TR><TD><CODE>volumeName</CODE><BR /><I>string</I></TD><TD>VolumeName is the binding reference to the PersistentVolume backing this claim.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="persistentvolumeclaimstatus-v1-core">PersistentVolumeClaimStatus v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>accessModes</CODE><BR /><I>string array</I></TD><TD>AccessModes contains the actual access modes the volume backing the PVC has. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1</TD></TR>
+<TR><TD><CODE>allocatedResources</CODE><BR /><I>object</I></TD><TD>The storage resource within AllocatedResources tracks the capacity allocated to a PVC. It may be larger than the actual capacity when a volume expansion operation is requested. For storage quota, the larger value from allocatedResources and PVC.spec.resources is used. If allocatedResources is not set, PVC.spec.resources alone is used for quota calculation. If a volume expansion capacity request is lowered, allocatedResources is only lowered if there are no expansion operations in progress and if the actual volume capacity is equal or lower than the requested capacity. This is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.</TD></TR>
+<TR><TD><CODE>capacity</CODE><BR /><I>object</I></TD><TD>Represents the actual resources of the underlying volume.</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#persistentvolumeclaimcondition-v1-core">PersistentVolumeClaimCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Current Condition of persistent volume claim. If underlying persistent volume is being resized then the Condition will be set to &#39;ResizeStarted&#39;.</TD></TR>
+<TR><TD><CODE>phase</CODE><BR /><I>string</I></TD><TD>Phase represents the current phase of PersistentVolumeClaim.  Possible enum values:  - `&#34;Bound&#34;` used for PersistentVolumeClaims that are bound  - `&#34;Lost&#34;` used for PersistentVolumeClaims that lost their underlying PersistentVolume. The claim was bound to a PersistentVolume and this volume does not exist any longer and all data on it was lost.  - `&#34;Pending&#34;` used for PersistentVolumeClaims that are not yet bound</TD></TR>
+<TR><TD><CODE>resizeStatus</CODE><BR /><I>string</I></TD><TD>ResizeStatus stores status of resize operation. ResizeStatus is not set by default but when expansion is complete resizeStatus is set to empty string by resize controller or kubelet. This is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="persistentvolumeclaimlist-v1-core">PersistentVolumeClaimList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a> array</I></TD><TD>A list of persistent volume claims. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-persistentvolumeclaim-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-persistentvolumeclaim-v1-core">Create</H2>
+<P>create a PersistentVolumeClaim</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/persistentvolumeclaims</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-persistentvolumeclaim-v1-core">Patch</H2>
+<P>partially update the specified PersistentVolumeClaim</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolumeClaim</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-persistentvolumeclaim-v1-core">Replace</H2>
+<P>replace the specified PersistentVolumeClaim</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolumeClaim</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-persistentvolumeclaim-v1-core">Delete</H2>
+<P>delete a PersistentVolumeClaim</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolumeClaim</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-persistentvolumeclaim-v1-core">Delete Collection</H2>
+<P>delete collection of PersistentVolumeClaim</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/persistentvolumeclaims</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-persistentvolumeclaim-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-persistentvolumeclaim-v1-core">Read</H2>
+<P>read the specified PersistentVolumeClaim</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolumeClaim</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-persistentvolumeclaim-v1-core">List</H2>
+<P>list or watch objects of kind PersistentVolumeClaim</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/persistentvolumeclaims</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolumeclaimlist-v1-core">PersistentVolumeClaimList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-persistentvolumeclaim-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind PersistentVolumeClaim</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/persistentvolumeclaims</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolumeclaimlist-v1-core">PersistentVolumeClaimList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-persistentvolumeclaim-v1-core">Watch</H2>
+<P>watch changes to an object of kind PersistentVolumeClaim. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/persistentvolumeclaims/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolumeClaim</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-persistentvolumeclaim-v1-core">Watch List</H2>
+<P>watch individual changes to a list of PersistentVolumeClaim. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/persistentvolumeclaims</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-persistentvolumeclaim-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of PersistentVolumeClaim. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/persistentvolumeclaims</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-persistentvolumeclaim-v1-core-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-persistentvolumeclaim-v1-core">Patch Status</H2>
+<P>partially update status of the specified PersistentVolumeClaim</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolumeClaim</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-persistentvolumeclaim-v1-core">Read Status</H2>
+<P>read status of the specified PersistentVolumeClaim</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolumeClaim</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-persistentvolumeclaim-v1-core">Replace Status</H2>
+<P>replace status of the specified PersistentVolumeClaim</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolumeClaim</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="storageclass-v1-storage-k8s-io">StorageClass v1 storage.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>StorageClass</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#storageclasslist-v1-storage-k8s-io">StorageClassList [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowVolumeExpansion</CODE><BR /><I>boolean</I></TD><TD>AllowVolumeExpansion shows whether the storage class allow volume expand</TD></TR>
+<TR><TD><CODE>allowedTopologies</CODE><BR /><I><a href="#topologyselectorterm-v1-core">TopologySelectorTerm</a> array</I></TD><TD>Restrict the node topologies where volumes can be dynamically provisioned. Each volume plugin defines its own supported topology specifications. An empty TopologySelectorTerm list means there is no topology restriction. This field is only honored by servers that enable the VolumeScheduling feature.</TD></TR>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>mountOptions</CODE><BR /><I>string array</I></TD><TD>Dynamically provisioned PersistentVolumes of this storage class are created with these mountOptions, e.g. [&#34;ro&#34;, &#34;soft&#34;]. Not validated - mount of the PVs will simply fail if one is invalid.</TD></TR>
+<TR><TD><CODE>parameters</CODE><BR /><I>object</I></TD><TD>Parameters holds the parameters for the provisioner that should create volumes of this storage class.</TD></TR>
+<TR><TD><CODE>provisioner</CODE><BR /><I>string</I></TD><TD>Provisioner indicates the type of the provisioner.</TD></TR>
+<TR><TD><CODE>reclaimPolicy</CODE><BR /><I>string</I></TD><TD>Dynamically provisioned PersistentVolumes of this storage class are created with this reclaimPolicy. Defaults to Delete.</TD></TR>
+<TR><TD><CODE>volumeBindingMode</CODE><BR /><I>string</I></TD><TD>VolumeBindingMode indicates how PersistentVolumeClaims should be provisioned and bound.  When unset, VolumeBindingImmediate is used. This field is only honored by servers that enable the VolumeScheduling feature.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="storageclasslist-v1-storage-k8s-io">StorageClassList v1 storage</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a> array</I></TD><TD>Items is the list of StorageClasses</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-storageclass-v1-storage-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-storageclass-v1-storage-k8s-io">Create</H2>
+<P>create a StorageClass</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/storage.k8s.io/v1/storageclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-storageclass-v1-storage-k8s-io">Patch</H2>
+<P>partially update the specified StorageClass</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/storage.k8s.io/v1/storageclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-storageclass-v1-storage-k8s-io">Replace</H2>
+<P>replace the specified StorageClass</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/storage.k8s.io/v1/storageclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-storageclass-v1-storage-k8s-io">Delete</H2>
+<P>delete a StorageClass</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1/storageclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-storageclass-v1-storage-k8s-io">Delete Collection</H2>
+<P>delete collection of StorageClass</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1/storageclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-storageclass-v1-storage-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-storageclass-v1-storage-k8s-io">Read</H2>
+<P>read the specified StorageClass</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/storageclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-storageclass-v1-storage-k8s-io">List</H2>
+<P>list or watch objects of kind StorageClass</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/storageclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageclasslist-v1-storage-k8s-io">StorageClassList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-storageclass-v1-storage-k8s-io">Watch</H2>
+<P>watch changes to an object of kind StorageClass. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/watch/storageclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-storageclass-v1-storage-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of StorageClass. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/watch/storageclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity v1beta1 storage.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>CSIStorageCapacity</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#csistoragecapacity-v1alpha1-storage-k8s-io">v1alpha1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csistoragecapacitylist-v1beta1-storage-k8s-io">CSIStorageCapacityList [storage/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>capacity</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>Capacity is the value reported by the CSI driver in its GetCapacityResponse for a GetCapacityRequest with topology and parameters that match the previous fields.  The semantic is currently (CSI spec 1.2) defined as: The available capacity, in bytes, of the storage that can be used to provision volumes. If not set, that information is currently unavailable and treated like zero capacity.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>maximumVolumeSize</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>MaximumVolumeSize is the value reported by the CSI driver in its GetCapacityResponse for a GetCapacityRequest with topology and parameters that match the previous fields.  This is defined since CSI spec 1.4.0 as the largest size that may be used in a CreateVolumeRequest.capacity_range.required_bytes field to create a volume with the same parameters as those in GetCapacityRequest. The corresponding value in the Kubernetes API is ResourceRequirements.Requests in a volume claim.</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. The name has no particular meaning. It must be be a DNS subdomain (dots allowed, 253 characters). To ensure that there are no conflicts with other CSI drivers on the cluster, the recommendation is to use csisc-&lt;uuid&gt;, a generated name, or a reverse-domain name which ends with the unique CSI driver name.  Objects are namespaced.  More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>nodeTopology</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>NodeTopology defines which nodes have access to the storage for which capacity was reported. If not set, the storage is not accessible from any node in the cluster. If empty, the storage is accessible from all nodes. This field is immutable.</TD></TR>
+<TR><TD><CODE>storageClassName</CODE><BR /><I>string</I></TD><TD>The name of the StorageClass that the reported capacity applies to. It must meet the same requirements as the name of a StorageClass object (non-empty, DNS subdomain). If that object no longer exists, the CSIStorageCapacity object is obsolete and should be removed by its creator. This field is immutable.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="csistoragecapacitylist-v1beta1-storage-k8s-io">CSIStorageCapacityList v1beta1 storage</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a> array</I></TD><TD>Items is the list of CSIStorageCapacity objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-csistoragecapacity-v1beta1-storage-k8s-io">Create</H2>
+<P>create a CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-csistoragecapacity-v1beta1-storage-k8s-io">Patch</H2>
+<P>partially update the specified CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIStorageCapacity</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-csistoragecapacity-v1beta1-storage-k8s-io">Replace</H2>
+<P>replace the specified CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIStorageCapacity</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-csistoragecapacity-v1beta1-storage-k8s-io">Delete</H2>
+<P>delete a CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIStorageCapacity</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-csistoragecapacity-v1beta1-storage-k8s-io">Delete Collection</H2>
+<P>delete collection of CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-csistoragecapacity-v1beta1-storage-k8s-io">Read</H2>
+<P>read the specified CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIStorageCapacity</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-csistoragecapacity-v1beta1-storage-k8s-io">List</H2>
+<P>list or watch objects of kind CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacitylist-v1beta1-storage-k8s-io">CSIStorageCapacityList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io">List All Namespaces</H2>
+<P>list or watch objects of kind CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1beta1/csistoragecapacities</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacitylist-v1beta1-storage-k8s-io">CSIStorageCapacityList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-csistoragecapacity-v1beta1-storage-k8s-io">Watch</H2>
+<P>watch changes to an object of kind CSIStorageCapacity. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1beta1/watch/namespaces/{namespace}/csistoragecapacities/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIStorageCapacity</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-csistoragecapacity-v1beta1-storage-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of CSIStorageCapacity. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1beta1/watch/namespaces/{namespace}/csistoragecapacities</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of CSIStorageCapacity. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1beta1/watch/csistoragecapacities</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="volume-v1-core">Volume v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Volume</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>awsElasticBlockStore</CODE><BR /><I><a href="#awselasticblockstorevolumesource-v1-core">AWSElasticBlockStoreVolumeSource</a></I></TD><TD>AWSElasticBlockStore represents an AWS Disk resource that is attached to a kubelet&#39;s host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore</TD></TR>
+<TR><TD><CODE>azureDisk</CODE><BR /><I><a href="#azurediskvolumesource-v1-core">AzureDiskVolumeSource</a></I></TD><TD>AzureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.</TD></TR>
+<TR><TD><CODE>azureFile</CODE><BR /><I><a href="#azurefilevolumesource-v1-core">AzureFileVolumeSource</a></I></TD><TD>AzureFile represents an Azure File Service mount on the host and bind mount to the pod.</TD></TR>
+<TR><TD><CODE>cephfs</CODE><BR /><I><a href="#cephfsvolumesource-v1-core">CephFSVolumeSource</a></I></TD><TD>CephFS represents a Ceph FS mount on the host that shares a pod&#39;s lifetime</TD></TR>
+<TR><TD><CODE>cinder</CODE><BR /><I><a href="#cindervolumesource-v1-core">CinderVolumeSource</a></I></TD><TD>Cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md</TD></TR>
+<TR><TD><CODE>configMap</CODE><BR /><I><a href="#configmapvolumesource-v1-core">ConfigMapVolumeSource</a></I></TD><TD>ConfigMap represents a configMap that should populate this volume</TD></TR>
+<TR><TD><CODE>csi</CODE><BR /><I><a href="#csivolumesource-v1-core">CSIVolumeSource</a></I></TD><TD>CSI (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).</TD></TR>
+<TR><TD><CODE>downwardAPI</CODE><BR /><I><a href="#downwardapivolumesource-v1-core">DownwardAPIVolumeSource</a></I></TD><TD>DownwardAPI represents downward API about the pod that should populate this volume</TD></TR>
+<TR><TD><CODE>emptyDir</CODE><BR /><I><a href="#emptydirvolumesource-v1-core">EmptyDirVolumeSource</a></I></TD><TD>EmptyDir represents a temporary directory that shares a pod&#39;s lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir</TD></TR>
+<TR><TD><CODE>ephemeral</CODE><BR /><I><a href="#ephemeralvolumesource-v1-core">EphemeralVolumeSource</a></I></TD><TD>Ephemeral represents a volume that is handled by a cluster storage driver. The volume&#39;s lifecycle is tied to the pod that defines it - it will be created before the pod starts, and deleted when the pod is removed.  Use this if: a) the volume is only needed while the pod runs, b) features of normal volumes like restoring from snapshot or capacity    tracking are needed, c) the storage driver is specified through a storage class, and d) the storage driver supports dynamic volume provisioning through    a PersistentVolumeClaim (see EphemeralVolumeSource for more    information on the connection between this volume type    and PersistentVolumeClaim).  Use PersistentVolumeClaim or one of the vendor-specific APIs for volumes that persist for longer than the lifecycle of an individual pod.  Use CSI for light-weight local ephemeral volumes if the CSI driver is meant to be used that way - see the documentation of the driver for more information.  A pod can use both types of ephemeral volumes and persistent volumes at the same time.</TD></TR>
+<TR><TD><CODE>fc</CODE><BR /><I><a href="#fcvolumesource-v1-core">FCVolumeSource</a></I></TD><TD>FC represents a Fibre Channel resource that is attached to a kubelet&#39;s host machine and then exposed to the pod.</TD></TR>
+<TR><TD><CODE>flexVolume</CODE><BR /><I><a href="#flexvolumesource-v1-core">FlexVolumeSource</a></I></TD><TD>FlexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin.</TD></TR>
+<TR><TD><CODE>flocker</CODE><BR /><I><a href="#flockervolumesource-v1-core">FlockerVolumeSource</a></I></TD><TD>Flocker represents a Flocker volume attached to a kubelet&#39;s host machine. This depends on the Flocker control service being running</TD></TR>
+<TR><TD><CODE>gcePersistentDisk</CODE><BR /><I><a href="#gcepersistentdiskvolumesource-v1-core">GCEPersistentDiskVolumeSource</a></I></TD><TD>GCEPersistentDisk represents a GCE Disk resource that is attached to a kubelet&#39;s host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk</TD></TR>
+<TR><TD><CODE>gitRepo</CODE><BR /><I><a href="#gitrepovolumesource-v1-core">GitRepoVolumeSource</a></I></TD><TD>GitRepo represents a git repository at a particular revision. DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod&#39;s container.</TD></TR>
+<TR><TD><CODE>glusterfs</CODE><BR /><I><a href="#glusterfsvolumesource-v1-core">GlusterfsVolumeSource</a></I></TD><TD>Glusterfs represents a Glusterfs mount on the host that shares a pod&#39;s lifetime. More info: https://examples.k8s.io/volumes/glusterfs/README.md</TD></TR>
+<TR><TD><CODE>hostPath</CODE><BR /><I><a href="#hostpathvolumesource-v1-core">HostPathVolumeSource</a></I></TD><TD>HostPath represents a pre-existing file or directory on the host machine that is directly exposed to the container. This is generally used for system agents or other privileged things that are allowed to see the host machine. Most containers will NOT need this. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath</TD></TR>
+<TR><TD><CODE>iscsi</CODE><BR /><I><a href="#iscsivolumesource-v1-core">ISCSIVolumeSource</a></I></TD><TD>ISCSI represents an ISCSI Disk resource that is attached to a kubelet&#39;s host machine and then exposed to the pod. More info: https://examples.k8s.io/volumes/iscsi/README.md</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Volume&#39;s name. Must be a DNS_LABEL and unique within the pod. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names</TD></TR>
+<TR><TD><CODE>nfs</CODE><BR /><I><a href="#nfsvolumesource-v1-core">NFSVolumeSource</a></I></TD><TD>NFS represents an NFS mount on the host that shares a pod&#39;s lifetime More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs</TD></TR>
+<TR><TD><CODE>persistentVolumeClaim</CODE><BR /><I><a href="#persistentvolumeclaimvolumesource-v1-core">PersistentVolumeClaimVolumeSource</a></I></TD><TD>PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims</TD></TR>
+<TR><TD><CODE>photonPersistentDisk</CODE><BR /><I><a href="#photonpersistentdiskvolumesource-v1-core">PhotonPersistentDiskVolumeSource</a></I></TD><TD>PhotonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine</TD></TR>
+<TR><TD><CODE>portworxVolume</CODE><BR /><I><a href="#portworxvolumesource-v1-core">PortworxVolumeSource</a></I></TD><TD>PortworxVolume represents a portworx volume attached and mounted on kubelets host machine</TD></TR>
+<TR><TD><CODE>projected</CODE><BR /><I><a href="#projectedvolumesource-v1-core">ProjectedVolumeSource</a></I></TD><TD>Items for all in one resources secrets, configmaps, and downward API</TD></TR>
+<TR><TD><CODE>quobyte</CODE><BR /><I><a href="#quobytevolumesource-v1-core">QuobyteVolumeSource</a></I></TD><TD>Quobyte represents a Quobyte mount on the host that shares a pod&#39;s lifetime</TD></TR>
+<TR><TD><CODE>rbd</CODE><BR /><I><a href="#rbdvolumesource-v1-core">RBDVolumeSource</a></I></TD><TD>RBD represents a Rados Block Device mount on the host that shares a pod&#39;s lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md</TD></TR>
+<TR><TD><CODE>scaleIO</CODE><BR /><I><a href="#scaleiovolumesource-v1-core">ScaleIOVolumeSource</a></I></TD><TD>ScaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.</TD></TR>
+<TR><TD><CODE>secret</CODE><BR /><I><a href="#secretvolumesource-v1-core">SecretVolumeSource</a></I></TD><TD>Secret represents a secret that should populate this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret</TD></TR>
+<TR><TD><CODE>storageos</CODE><BR /><I><a href="#storageosvolumesource-v1-core">StorageOSVolumeSource</a></I></TD><TD>StorageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.</TD></TR>
+<TR><TD><CODE>vsphereVolume</CODE><BR /><I><a href="#vspherevirtualdiskvolumesource-v1-core">VsphereVirtualDiskVolumeSource</a></I></TD><TD>VsphereVolume represents a vSphere volume attached and mounted on kubelets host machine</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="volumeattachment-v1-storage-k8s-io">VolumeAttachment v1 storage.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>VolumeAttachment</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volumeattachmentlist-v1-storage-k8s-io">VolumeAttachmentList [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#volumeattachmentspec-v1-storage-k8s-io">VolumeAttachmentSpec</a></I></TD><TD>Specification of the desired attach/detach volume behavior. Populated by the Kubernetes system.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#volumeattachmentstatus-v1-storage-k8s-io">VolumeAttachmentStatus</a></I></TD><TD>Status of the VolumeAttachment request. Populated by the entity completing the attach or detach operation, i.e. the external-attacher.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="volumeattachmentspec-v1-storage-k8s-io">VolumeAttachmentSpec v1 storage</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>attacher</CODE><BR /><I>string</I></TD><TD>Attacher indicates the name of the volume driver that MUST handle this request. This is the name returned by GetPluginName().</TD></TR>
+<TR><TD><CODE>nodeName</CODE><BR /><I>string</I></TD><TD>The node that the volume should be attached to.</TD></TR>
+<TR><TD><CODE>source</CODE><BR /><I><a href="#volumeattachmentsource-v1-storage-k8s-io">VolumeAttachmentSource</a></I></TD><TD>Source represents the volume that should be attached.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="volumeattachmentstatus-v1-storage-k8s-io">VolumeAttachmentStatus v1 storage</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>attachError</CODE><BR /><I><a href="#volumeerror-v1-storage-k8s-io">VolumeError</a></I></TD><TD>The last error encountered during attach operation, if any. This field must only be set by the entity completing the attach operation, i.e. the external-attacher.</TD></TR>
+<TR><TD><CODE>attached</CODE><BR /><I>boolean</I></TD><TD>Indicates the volume is successfully attached. This field must only be set by the entity completing the attach operation, i.e. the external-attacher.</TD></TR>
+<TR><TD><CODE>attachmentMetadata</CODE><BR /><I>object</I></TD><TD>Upon successful attach, this field is populated with any information returned by the attach operation that must be passed into subsequent WaitForAttach or Mount calls. This field must only be set by the entity completing the attach operation, i.e. the external-attacher.</TD></TR>
+<TR><TD><CODE>detachError</CODE><BR /><I><a href="#volumeerror-v1-storage-k8s-io">VolumeError</a></I></TD><TD>The last error encountered during detach operation, if any. This field must only be set by the entity completing the detach operation, i.e. the external-attacher.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="volumeattachmentlist-v1-storage-k8s-io">VolumeAttachmentList v1 storage</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a> array</I></TD><TD>Items is the list of VolumeAttachments</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-volumeattachment-v1-storage-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-volumeattachment-v1-storage-k8s-io">Create</H2>
+<P>create a VolumeAttachment</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/storage.k8s.io/v1/volumeattachments</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-volumeattachment-v1-storage-k8s-io">Patch</H2>
+<P>partially update the specified VolumeAttachment</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/storage.k8s.io/v1/volumeattachments/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the VolumeAttachment</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-volumeattachment-v1-storage-k8s-io">Replace</H2>
+<P>replace the specified VolumeAttachment</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/storage.k8s.io/v1/volumeattachments/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the VolumeAttachment</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-volumeattachment-v1-storage-k8s-io">Delete</H2>
+<P>delete a VolumeAttachment</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1/volumeattachments/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the VolumeAttachment</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-volumeattachment-v1-storage-k8s-io">Delete Collection</H2>
+<P>delete collection of VolumeAttachment</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1/volumeattachments</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-volumeattachment-v1-storage-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-volumeattachment-v1-storage-k8s-io">Read</H2>
+<P>read the specified VolumeAttachment</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/volumeattachments/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the VolumeAttachment</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-volumeattachment-v1-storage-k8s-io">List</H2>
+<P>list or watch objects of kind VolumeAttachment</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/volumeattachments</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#volumeattachmentlist-v1-storage-k8s-io">VolumeAttachmentList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-volumeattachment-v1-storage-k8s-io">Watch</H2>
+<P>watch changes to an object of kind VolumeAttachment. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/watch/volumeattachments/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the VolumeAttachment</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-volumeattachment-v1-storage-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of VolumeAttachment. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/watch/volumeattachments</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-volumeattachment-v1-storage-k8s-io-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-volumeattachment-v1-storage-k8s-io">Patch Status</H2>
+<P>partially update status of the specified VolumeAttachment</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/storage.k8s.io/v1/volumeattachments/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the VolumeAttachment</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-volumeattachment-v1-storage-k8s-io">Read Status</H2>
+<P>read status of the specified VolumeAttachment</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/volumeattachments/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the VolumeAttachment</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-volumeattachment-v1-storage-k8s-io">Replace Status</H2>
+<P>replace status of the specified VolumeAttachment</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/storage.k8s.io/v1/volumeattachments/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the VolumeAttachment</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="-strong-metadata-apis-strong-"><STRONG>METADATA</STRONG></H1>
+
+<P>Metadata resources are responsible for configuring behavior of your other Resources within the Cluster.</P>
+
+<P>Common resource types:</P>
+<UL>
+<LI><A href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</A> (HPA) for automatically scaling the replicacount of your workloads in response to load.</LI>
+<LI><A href="#poddisruptionbudget-v1alpha1">PodDisruptionBudget</A> for configuring how many replicas in a given workload maybe made concurrently unavailable when performing maintenance.</LI>
+<LI><A href="#event-v1-core">Event</A> for notification of resource lifecycle events in the cluster.</LI>
+</UL>
+<HR />
+<H1 id="controllerrevision-v1-apps">ControllerRevision v1 apps</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ControllerRevision</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#controllerrevisionlist-v1-apps">ControllerRevisionList [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>data</CODE></TD><TD>Data is the serialized representation of the state.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>revision</CODE><BR /><I>integer</I></TD><TD>Revision indicates the revision of the state represented by Data.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="controllerrevisionlist-v1-apps">ControllerRevisionList v1 apps</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#controllerrevision-v1-apps">ControllerRevision</a> array</I></TD><TD>Items is the list of ControllerRevisions</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-controllerrevision-v1-apps-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-controllerrevision-v1-apps">Create</H2>
+<P>create a ControllerRevision</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/apps/v1/namespaces/{namespace}/controllerrevisions</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#controllerrevision-v1-apps">ControllerRevision</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#controllerrevision-v1-apps">ControllerRevision</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#controllerrevision-v1-apps">ControllerRevision</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#controllerrevision-v1-apps">ControllerRevision</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-controllerrevision-v1-apps">Patch</H2>
+<P>partially update the specified ControllerRevision</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/controllerrevisions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ControllerRevision</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#controllerrevision-v1-apps">ControllerRevision</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#controllerrevision-v1-apps">ControllerRevision</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-controllerrevision-v1-apps">Replace</H2>
+<P>replace the specified ControllerRevision</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/controllerrevisions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ControllerRevision</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#controllerrevision-v1-apps">ControllerRevision</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#controllerrevision-v1-apps">ControllerRevision</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#controllerrevision-v1-apps">ControllerRevision</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-controllerrevision-v1-apps">Delete</H2>
+<P>delete a ControllerRevision</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apps/v1/namespaces/{namespace}/controllerrevisions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ControllerRevision</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-controllerrevision-v1-apps">Delete Collection</H2>
+<P>delete collection of ControllerRevision</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apps/v1/namespaces/{namespace}/controllerrevisions</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-controllerrevision-v1-apps-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-controllerrevision-v1-apps">Read</H2>
+<P>read the specified ControllerRevision</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/controllerrevisions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ControllerRevision</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#controllerrevision-v1-apps">ControllerRevision</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-controllerrevision-v1-apps">List</H2>
+<P>list or watch objects of kind ControllerRevision</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/controllerrevisions</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#controllerrevisionlist-v1-apps">ControllerRevisionList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-controllerrevision-v1-apps">List All Namespaces</H2>
+<P>list or watch objects of kind ControllerRevision</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/controllerrevisions</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#controllerrevisionlist-v1-apps">ControllerRevisionList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-controllerrevision-v1-apps">Watch</H2>
+<P>watch changes to an object of kind ControllerRevision. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/namespaces/{namespace}/controllerrevisions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ControllerRevision</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-controllerrevision-v1-apps">Watch List</H2>
+<P>watch individual changes to a list of ControllerRevision. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/namespaces/{namespace}/controllerrevisions</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-controllerrevision-v1-apps">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of ControllerRevision. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/controllerrevisions</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition v1 apiextensions.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CustomResourceDefinition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcedefinitionlist-v1-apiextensions-k8s-io">CustomResourceDefinitionList [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#customresourcedefinitionspec-v1-apiextensions-k8s-io">CustomResourceDefinitionSpec</a></I></TD><TD>spec describes how the user wants the resources to appear</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#customresourcedefinitionstatus-v1-apiextensions-k8s-io">CustomResourceDefinitionStatus</a></I></TD><TD>status indicates the actual state of the CustomResourceDefinition</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="customresourcedefinitionspec-v1-apiextensions-k8s-io">CustomResourceDefinitionSpec v1 apiextensions</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conversion</CODE><BR /><I><a href="#customresourceconversion-v1-apiextensions-k8s-io">CustomResourceConversion</a></I></TD><TD>conversion defines conversion settings for the CRD.</TD></TR>
+<TR><TD><CODE>group</CODE><BR /><I>string</I></TD><TD>group is the API group of the defined custom resource. The custom resources are served under `/apis/&lt;group&gt;/...`. Must match the name of the CustomResourceDefinition (in the form `&lt;names.plural&gt;.&lt;group&gt;`).</TD></TR>
+<TR><TD><CODE>names</CODE><BR /><I><a href="#customresourcedefinitionnames-v1-apiextensions-k8s-io">CustomResourceDefinitionNames</a></I></TD><TD>names specify the resource and kind names for the custom resource.</TD></TR>
+<TR><TD><CODE>preserveUnknownFields</CODE><BR /><I>boolean</I></TD><TD>preserveUnknownFields indicates that object fields which are not specified in the OpenAPI schema should be preserved when persisting to storage. apiVersion, kind, metadata and known fields inside metadata are always preserved. This field is deprecated in favor of setting `x-preserve-unknown-fields` to true in `spec.versions[*].schema.openAPIV3Schema`. See https://kubernetes.io/docs/tasks/access-kubernetes-api/custom-resources/custom-resource-definitions/#pruning-versus-preserving-unknown-fields for details.</TD></TR>
+<TR><TD><CODE>scope</CODE><BR /><I>string</I></TD><TD>scope indicates whether the defined custom resource is cluster- or namespace-scoped. Allowed values are `Cluster` and `Namespaced`.</TD></TR>
+<TR><TD><CODE>versions</CODE><BR /><I><a href="#customresourcedefinitionversion-v1-apiextensions-k8s-io">CustomResourceDefinitionVersion</a> array</I></TD><TD>versions is the list of all API versions of the defined custom resource. Version names are used to compute the order in which served versions are listed in API discovery. If the version string is &#34;kube-like&#34;, it will sort above non &#34;kube-like&#34; version strings, which are ordered lexicographically. &#34;Kube-like&#34; versions start with a &#34;v&#34;, then are followed by a number (the major version), then optionally the string &#34;alpha&#34; or &#34;beta&#34; and another number (the minor version). These are sorted first by GA &gt; beta &gt; alpha (where GA is a version with no suffix such as beta or alpha), and then by comparing major version, then minor version. An example sorted list of versions: v10, v2, v1, v11beta2, v10beta3, v3beta1, v12alpha1, v11alpha2, foo1, foo10.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="customresourcedefinitionstatus-v1-apiextensions-k8s-io">CustomResourceDefinitionStatus v1 apiextensions</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>acceptedNames</CODE><BR /><I><a href="#customresourcedefinitionnames-v1-apiextensions-k8s-io">CustomResourceDefinitionNames</a></I></TD><TD>acceptedNames are the names that are actually being used to serve discovery. They may be different than the names in spec.</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#customresourcedefinitioncondition-v1-apiextensions-k8s-io">CustomResourceDefinitionCondition</a> array</I></TD><TD>conditions indicate state for particular aspects of a CustomResourceDefinition</TD></TR>
+<TR><TD><CODE>storedVersions</CODE><BR /><I>string array</I></TD><TD>storedVersions lists all versions of CustomResources that were ever persisted. Tracking these versions allows a migration path for stored versions in etcd. The field is mutable so a migration controller can finish a migration to another version (ensuring no old objects are left in storage), and then remove the rest of the versions from this list. Versions may not be removed from `spec.versions` while they exist in this list.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="customresourcedefinitionlist-v1-apiextensions-k8s-io">CustomResourceDefinitionList v1 apiextensions</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a> array</I></TD><TD>items list individual CustomResourceDefinition objects</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard object&#39;s metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-customresourcedefinition-v1-apiextensions-k8s-io">Create</H2>
+<P>create a CustomResourceDefinition</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/apiextensions.k8s.io/v1/customresourcedefinitions</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-customresourcedefinition-v1-apiextensions-k8s-io">Patch</H2>
+<P>partially update the specified CustomResourceDefinition</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CustomResourceDefinition</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-customresourcedefinition-v1-apiextensions-k8s-io">Replace</H2>
+<P>replace the specified CustomResourceDefinition</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CustomResourceDefinition</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-customresourcedefinition-v1-apiextensions-k8s-io">Delete</H2>
+<P>delete a CustomResourceDefinition</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CustomResourceDefinition</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-customresourcedefinition-v1-apiextensions-k8s-io">Delete Collection</H2>
+<P>delete collection of CustomResourceDefinition</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apiextensions.k8s.io/v1/customresourcedefinitions</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-customresourcedefinition-v1-apiextensions-k8s-io">Read</H2>
+<P>read the specified CustomResourceDefinition</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CustomResourceDefinition</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-customresourcedefinition-v1-apiextensions-k8s-io">List</H2>
+<P>list or watch objects of kind CustomResourceDefinition</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apiextensions.k8s.io/v1/customresourcedefinitions</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#customresourcedefinitionlist-v1-apiextensions-k8s-io">CustomResourceDefinitionList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-customresourcedefinition-v1-apiextensions-k8s-io">Watch</H2>
+<P>watch changes to an object of kind CustomResourceDefinition. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apiextensions.k8s.io/v1/watch/customresourcedefinitions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CustomResourceDefinition</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-customresourcedefinition-v1-apiextensions-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of CustomResourceDefinition. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apiextensions.k8s.io/v1/watch/customresourcedefinitions</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-customresourcedefinition-v1-apiextensions-k8s-io">Patch Status</H2>
+<P>partially update status of the specified CustomResourceDefinition</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CustomResourceDefinition</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-customresourcedefinition-v1-apiextensions-k8s-io">Read Status</H2>
+<P>read status of the specified CustomResourceDefinition</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CustomResourceDefinition</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-customresourcedefinition-v1-apiextensions-k8s-io">Replace Status</H2>
+<P>replace status of the specified CustomResourceDefinition</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CustomResourceDefinition</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="event-v1-events-k8s-io">Event v1 events.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>events.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Event</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#event-v1beta1-events-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#eventlist-v1-events-k8s-io">EventList [events/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>action</CODE><BR /><I>string</I></TD><TD>action is what action was taken/failed regarding to the regarding object. It is machine-readable. This field cannot be empty for new Events and it can have at most 128 characters.</TD></TR>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>deprecatedCount</CODE><BR /><I>integer</I></TD><TD>deprecatedCount is the deprecated field assuring backward compatibility with core.v1 Event type.</TD></TR>
+<TR><TD><CODE>deprecatedFirstTimestamp</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>deprecatedFirstTimestamp is the deprecated field assuring backward compatibility with core.v1 Event type.</TD></TR>
+<TR><TD><CODE>deprecatedLastTimestamp</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>deprecatedLastTimestamp is the deprecated field assuring backward compatibility with core.v1 Event type.</TD></TR>
+<TR><TD><CODE>deprecatedSource</CODE><BR /><I><a href="#eventsource-v1-core">EventSource</a></I></TD><TD>deprecatedSource is the deprecated field assuring backward compatibility with core.v1 Event type.</TD></TR>
+<TR><TD><CODE>eventTime</CODE><BR /><I><a href="#microtime-v1-meta">MicroTime</a></I></TD><TD>eventTime is the time when this Event was first observed. It is required.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>note</CODE><BR /><I>string</I></TD><TD>note is a human-readable description of the status of this operation. Maximal length of the note is 1kB, but libraries should be prepared to handle values up to 64kB.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>reason is why the action was taken. It is human-readable. This field cannot be empty for new Events and it can have at most 128 characters.</TD></TR>
+<TR><TD><CODE>regarding</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>regarding contains the object this Event is about. In most cases it&#39;s an Object reporting controller implements, e.g. ReplicaSetController implements ReplicaSets and this event is emitted because it acts on some changes in a ReplicaSet object.</TD></TR>
+<TR><TD><CODE>related</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>related is the optional secondary object for more complex actions. E.g. when regarding object triggers a creation or deletion of related object.</TD></TR>
+<TR><TD><CODE>reportingController</CODE><BR /><I>string</I></TD><TD>reportingController is the name of the controller that emitted this Event, e.g. `kubernetes.io/kubelet`. This field cannot be empty for new Events.</TD></TR>
+<TR><TD><CODE>reportingInstance</CODE><BR /><I>string</I></TD><TD>reportingInstance is the ID of the controller instance, e.g. `kubelet-xyzf`. This field cannot be empty for new Events and it can have at most 128 characters.</TD></TR>
+<TR><TD><CODE>series</CODE><BR /><I><a href="#eventseries-v1-events-k8s-io">EventSeries</a></I></TD><TD>series is data about the Event series this event represents or nil if it&#39;s a singleton Event.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type is the type of this event (Normal, Warning), new types could be added in the future. It is machine-readable. This field cannot be empty for new Events.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="eventlist-v1-events-k8s-io">EventList v1 events</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#event-v1-events-k8s-io">Event</a> array</I></TD><TD>items is a list of schema objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-event-v1-events-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-event-v1-events-k8s-io">Create</H2>
+<P>create an Event</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/events.k8s.io/v1/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#event-v1-events-k8s-io">Event</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1-events-k8s-io">Event</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#event-v1-events-k8s-io">Event</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#event-v1-events-k8s-io">Event</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-event-v1-events-k8s-io">Patch</H2>
+<P>partially update the specified Event</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/events.k8s.io/v1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1-events-k8s-io">Event</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#event-v1-events-k8s-io">Event</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-event-v1-events-k8s-io">Replace</H2>
+<P>replace the specified Event</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/events.k8s.io/v1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#event-v1-events-k8s-io">Event</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1-events-k8s-io">Event</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#event-v1-events-k8s-io">Event</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-event-v1-events-k8s-io">Delete</H2>
+<P>delete an Event</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/events.k8s.io/v1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-event-v1-events-k8s-io">Delete Collection</H2>
+<P>delete collection of Event</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/events.k8s.io/v1/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-event-v1-events-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-event-v1-events-k8s-io">Read</H2>
+<P>read the specified Event</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1-events-k8s-io">Event</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-event-v1-events-k8s-io">List</H2>
+<P>list or watch objects of kind Event</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#eventlist-v1-events-k8s-io">EventList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-event-v1-events-k8s-io">List All Namespaces</H2>
+<P>list or watch objects of kind Event</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1/events</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#eventlist-v1-events-k8s-io">EventList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-event-v1-events-k8s-io">Watch</H2>
+<P>watch changes to an object of kind Event. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1/watch/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-event-v1-events-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of Event. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1/watch/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-event-v1-events-k8s-io">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Event. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1/watch/events</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="limitrange-v1-core">LimitRange v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>LimitRange</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#limitrangelist-v1-core">LimitRangeList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#limitrangespec-v1-core">LimitRangeSpec</a></I></TD><TD>Spec defines the limits enforced. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="limitrangespec-v1-core">LimitRangeSpec v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#limitrange-v1-core">LimitRange [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>limits</CODE><BR /><I><a href="#limitrangeitem-v1-core">LimitRangeItem</a> array</I></TD><TD>Limits is the list of LimitRangeItem objects that are enforced.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="limitrangelist-v1-core">LimitRangeList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#limitrange-v1-core">LimitRange</a> array</I></TD><TD>Items is a list of LimitRange objects. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-limitrange-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-limitrange-v1-core">Create</H2>
+<P>create a LimitRange</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/limitranges</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#limitrange-v1-core">LimitRange</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#limitrange-v1-core">LimitRange</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#limitrange-v1-core">LimitRange</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#limitrange-v1-core">LimitRange</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-limitrange-v1-core">Patch</H2>
+<P>partially update the specified LimitRange</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/limitranges/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the LimitRange</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#limitrange-v1-core">LimitRange</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#limitrange-v1-core">LimitRange</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-limitrange-v1-core">Replace</H2>
+<P>replace the specified LimitRange</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/limitranges/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the LimitRange</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#limitrange-v1-core">LimitRange</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#limitrange-v1-core">LimitRange</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#limitrange-v1-core">LimitRange</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-limitrange-v1-core">Delete</H2>
+<P>delete a LimitRange</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/limitranges/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the LimitRange</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-limitrange-v1-core">Delete Collection</H2>
+<P>delete collection of LimitRange</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/limitranges</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-limitrange-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-limitrange-v1-core">Read</H2>
+<P>read the specified LimitRange</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/limitranges/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the LimitRange</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#limitrange-v1-core">LimitRange</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-limitrange-v1-core">List</H2>
+<P>list or watch objects of kind LimitRange</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/limitranges</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#limitrangelist-v1-core">LimitRangeList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-limitrange-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind LimitRange</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/limitranges</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#limitrangelist-v1-core">LimitRangeList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-limitrange-v1-core">Watch</H2>
+<P>watch changes to an object of kind LimitRange. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/limitranges/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the LimitRange</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-limitrange-v1-core">Watch List</H2>
+<P>watch individual changes to a list of LimitRange. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/limitranges</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-limitrange-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of LimitRange. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/limitranges</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler v1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>HorizontalPodAutoscaler</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#horizontalpodautoscaler-v2-autoscaling">v2</a>
+<a href="#horizontalpodautoscaler-v2beta2-autoscaling">v2beta2</a>
+<a href="#horizontalpodautoscaler-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerlist-v1-autoscaling">HorizontalPodAutoscalerList [autoscaling/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#horizontalpodautoscalerspec-v1-autoscaling">HorizontalPodAutoscalerSpec</a></I></TD><TD>behaviour of autoscaler. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#horizontalpodautoscalerstatus-v1-autoscaling">HorizontalPodAutoscalerStatus</a></I></TD><TD>current information about the autoscaler.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerspec-v1-autoscaling">HorizontalPodAutoscalerSpec v1 autoscaling</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler [autoscaling/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>maxReplicas</CODE><BR /><I>integer</I></TD><TD>upper limit for the number of pods that can be set by the autoscaler; cannot be smaller than MinReplicas.</TD></TR>
+<TR><TD><CODE>minReplicas</CODE><BR /><I>integer</I></TD><TD>minReplicas is the lower limit for the number of replicas to which the autoscaler can scale down.  It defaults to 1 pod.  minReplicas is allowed to be 0 if the alpha feature gate HPAScaleToZero is enabled and at least one Object or External metric is configured.  Scaling is active as long as at least one metric value is available.</TD></TR>
+<TR><TD><CODE>scaleTargetRef</CODE><BR /><I><a href="#crossversionobjectreference-v1-autoscaling">CrossVersionObjectReference</a></I></TD><TD>reference to scaled resource; horizontal pod autoscaler will learn the current resource consumption and will set the desired number of pods by using its Scale subresource.</TD></TR>
+<TR><TD><CODE>targetCPUUtilizationPercentage</CODE><BR /><I>integer</I></TD><TD>target average CPU utilization (represented as a percentage of requested CPU) over all the pods; if not specified the default autoscaling policy will be used.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerstatus-v1-autoscaling">HorizontalPodAutoscalerStatus v1 autoscaling</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler [autoscaling/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>currentCPUUtilizationPercentage</CODE><BR /><I>integer</I></TD><TD>current average CPU utilization over all pods, represented as a percentage of requested CPU, e.g. 70 means that an average pod is using now 70% of its requested CPU.</TD></TR>
+<TR><TD><CODE>currentReplicas</CODE><BR /><I>integer</I></TD><TD>current number of replicas of pods managed by this autoscaler.</TD></TR>
+<TR><TD><CODE>desiredReplicas</CODE><BR /><I>integer</I></TD><TD>desired number of replicas of pods managed by this autoscaler.</TD></TR>
+<TR><TD><CODE>lastScaleTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>last time the HorizontalPodAutoscaler scaled the number of pods; used by the autoscaler to control how often the number of pods is changed.</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>most recent generation observed by this autoscaler.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerlist-v1-autoscaling">HorizontalPodAutoscalerList v1 autoscaling</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a> array</I></TD><TD>list of horizontal pod autoscaler objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-horizontalpodautoscaler-v1-autoscaling-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-horizontalpodautoscaler-v1-autoscaling">Create</H2>
+<P>create a HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-horizontalpodautoscaler-v1-autoscaling">Patch</H2>
+<P>partially update the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-horizontalpodautoscaler-v1-autoscaling">Replace</H2>
+<P>replace the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-horizontalpodautoscaler-v1-autoscaling">Delete</H2>
+<P>delete a HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-horizontalpodautoscaler-v1-autoscaling">Delete Collection</H2>
+<P>delete collection of HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-horizontalpodautoscaler-v1-autoscaling-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-horizontalpodautoscaler-v1-autoscaling">Read</H2>
+<P>read the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-horizontalpodautoscaler-v1-autoscaling">List</H2>
+<P>list or watch objects of kind HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscalerlist-v1-autoscaling">HorizontalPodAutoscalerList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-horizontalpodautoscaler-v1-autoscaling">List All Namespaces</H2>
+<P>list or watch objects of kind HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v1/horizontalpodautoscalers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscalerlist-v1-autoscaling">HorizontalPodAutoscalerList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-horizontalpodautoscaler-v1-autoscaling">Watch</H2>
+<P>watch changes to an object of kind HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v1/watch/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-horizontalpodautoscaler-v1-autoscaling">Watch List</H2>
+<P>watch individual changes to a list of HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v1/watch/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-horizontalpodautoscaler-v1-autoscaling">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v1/watch/horizontalpodautoscalers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-horizontalpodautoscaler-v1-autoscaling-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-horizontalpodautoscaler-v1-autoscaling">Patch Status</H2>
+<P>partially update status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-horizontalpodautoscaler-v1-autoscaling">Read Status</H2>
+<P>read status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-horizontalpodautoscaler-v1-autoscaling">Replace Status</H2>
+<P>replace status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration v1 admissionregistration.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>admissionregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>MutatingWebhookConfiguration</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#mutatingwebhookconfigurationlist-v1-admissionregistration-k8s-io">MutatingWebhookConfigurationList [admissionregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object metadata; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata.</TD></TR>
+<TR><TD><CODE>webhooks</CODE><BR /><I><a href="#mutatingwebhook-v1-admissionregistration-k8s-io">MutatingWebhook</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>name</I></TD><TD>Webhooks is a list of webhooks and the affected resources and operations.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="mutatingwebhookconfigurationlist-v1-admissionregistration-k8s-io">MutatingWebhookConfigurationList v1 admissionregistration</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration</a> array</I></TD><TD>List of MutatingWebhookConfiguration.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">Create</H2>
+<P>create a MutatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">Patch</H2>
+<P>partially update the specified MutatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the MutatingWebhookConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">Replace</H2>
+<P>replace the specified MutatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the MutatingWebhookConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">Delete</H2>
+<P>delete a MutatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the MutatingWebhookConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">Delete Collection</H2>
+<P>delete collection of MutatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">Read</H2>
+<P>read the specified MutatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the MutatingWebhookConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">List</H2>
+<P>list or watch objects of kind MutatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#mutatingwebhookconfigurationlist-v1-admissionregistration-k8s-io">MutatingWebhookConfigurationList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">Watch</H2>
+<P>watch changes to an object of kind MutatingWebhookConfiguration. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/admissionregistration.k8s.io/v1/watch/mutatingwebhookconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the MutatingWebhookConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of MutatingWebhookConfiguration. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/admissionregistration.k8s.io/v1/watch/mutatingwebhookconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration v1 admissionregistration.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>admissionregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ValidatingWebhookConfiguration</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#validatingwebhookconfigurationlist-v1-admissionregistration-k8s-io">ValidatingWebhookConfigurationList [admissionregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object metadata; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata.</TD></TR>
+<TR><TD><CODE>webhooks</CODE><BR /><I><a href="#validatingwebhook-v1-admissionregistration-k8s-io">ValidatingWebhook</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>name</I></TD><TD>Webhooks is a list of webhooks and the affected resources and operations.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="validatingwebhookconfigurationlist-v1-admissionregistration-k8s-io">ValidatingWebhookConfigurationList v1 admissionregistration</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration</a> array</I></TD><TD>List of ValidatingWebhookConfiguration.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-validatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-validatingwebhookconfiguration-v1-admissionregistration-k8s-io">Create</H2>
+<P>create a ValidatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-validatingwebhookconfiguration-v1-admissionregistration-k8s-io">Patch</H2>
+<P>partially update the specified ValidatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ValidatingWebhookConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-validatingwebhookconfiguration-v1-admissionregistration-k8s-io">Replace</H2>
+<P>replace the specified ValidatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ValidatingWebhookConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-validatingwebhookconfiguration-v1-admissionregistration-k8s-io">Delete</H2>
+<P>delete a ValidatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ValidatingWebhookConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-validatingwebhookconfiguration-v1-admissionregistration-k8s-io">Delete Collection</H2>
+<P>delete collection of ValidatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-validatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-validatingwebhookconfiguration-v1-admissionregistration-k8s-io">Read</H2>
+<P>read the specified ValidatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ValidatingWebhookConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-validatingwebhookconfiguration-v1-admissionregistration-k8s-io">List</H2>
+<P>list or watch objects of kind ValidatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#validatingwebhookconfigurationlist-v1-admissionregistration-k8s-io">ValidatingWebhookConfigurationList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-validatingwebhookconfiguration-v1-admissionregistration-k8s-io">Watch</H2>
+<P>watch changes to an object of kind ValidatingWebhookConfiguration. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/admissionregistration.k8s.io/v1/watch/validatingwebhookconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ValidatingWebhookConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-validatingwebhookconfiguration-v1-admissionregistration-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of ValidatingWebhookConfiguration. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/admissionregistration.k8s.io/v1/watch/validatingwebhookconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="podtemplate-v1-core">PodTemplate v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodTemplate</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podtemplatelist-v1-core">PodTemplateList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>template</CODE><BR /><I><a href="#podtemplatespec-v1-core">PodTemplateSpec</a></I></TD><TD>Template defines the pods that will be created from this pod template. https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="podtemplatespec-v1-core">PodTemplateSpec v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#daemonsetspec-v1-apps">DaemonSetSpec [apps/v1]</a></LI>
+  <LI><a href="#deploymentspec-v1-apps">DeploymentSpec [apps/v1]</a></LI>
+  <LI><a href="#jobspec-v1-batch">JobSpec [batch/v1]</a></LI>
+  <LI><a href="#podtemplate-v1-core">PodTemplate [core/v1]</a></LI>
+  <LI><a href="#replicasetspec-v1-apps">ReplicaSetSpec [apps/v1]</a></LI>
+  <LI><a href="#replicationcontrollerspec-v1-core">ReplicationControllerSpec [core/v1]</a></LI>
+  <LI><a href="#statefulsetspec-v1-apps">StatefulSetSpec [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#podspec-v1-core">PodSpec</a></I></TD><TD>Specification of the desired behavior of the pod. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="podtemplatelist-v1-core">PodTemplateList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#podtemplate-v1-core">PodTemplate</a> array</I></TD><TD>List of pod templates</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-podtemplate-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-podtemplate-v1-core">Create</H2>
+<P>create a PodTemplate</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/podtemplates</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-podtemplate-v1-core">Patch</H2>
+<P>partially update the specified PodTemplate</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/podtemplates/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodTemplate</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-podtemplate-v1-core">Replace</H2>
+<P>replace the specified PodTemplate</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/podtemplates/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodTemplate</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-podtemplate-v1-core">Delete</H2>
+<P>delete a PodTemplate</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/podtemplates/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodTemplate</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-podtemplate-v1-core">Delete Collection</H2>
+<P>delete collection of PodTemplate</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/podtemplates</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-podtemplate-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-podtemplate-v1-core">Read</H2>
+<P>read the specified PodTemplate</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/podtemplates/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodTemplate</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-podtemplate-v1-core">List</H2>
+<P>list or watch objects of kind PodTemplate</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/podtemplates</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podtemplatelist-v1-core">PodTemplateList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-podtemplate-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind PodTemplate</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/podtemplates</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podtemplatelist-v1-core">PodTemplateList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-podtemplate-v1-core">Watch</H2>
+<P>watch changes to an object of kind PodTemplate. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/podtemplates/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodTemplate</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-podtemplate-v1-core">Watch List</H2>
+<P>watch individual changes to a list of PodTemplate. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/podtemplates</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-podtemplate-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of PodTemplate. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/podtemplates</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="poddisruptionbudget-v1-policy">PodDisruptionBudget v1 policy</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodDisruptionBudget</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#poddisruptionbudget-v1beta1-policy">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#poddisruptionbudgetlist-v1-policy">PodDisruptionBudgetList [policy/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#poddisruptionbudgetspec-v1-policy">PodDisruptionBudgetSpec</a></I></TD><TD>Specification of the desired behavior of the PodDisruptionBudget.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#poddisruptionbudgetstatus-v1-policy">PodDisruptionBudgetStatus</a></I></TD><TD>Most recently observed status of the PodDisruptionBudget.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="poddisruptionbudgetspec-v1-policy">PodDisruptionBudgetSpec v1 policy</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget [policy/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>maxUnavailable</CODE></TD><TD>An eviction is allowed if at most &#34;maxUnavailable&#34; pods selected by &#34;selector&#34; are unavailable after the eviction, i.e. even in absence of the evicted pod. For example, one can prevent all voluntary evictions by specifying 0. This is a mutually exclusive setting with &#34;minAvailable&#34;.</TD></TR>
+<TR><TD><CODE>minAvailable</CODE></TD><TD>An eviction is allowed if at least &#34;minAvailable&#34; pods selected by &#34;selector&#34; will still be available after the eviction, i.e. even in the absence of the evicted pod.  So for example you can prevent all voluntary evictions by specifying &#34;100%&#34;.</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I><BR /><B>patch strategy</B>: <I>replace</I></TD><TD>Label query over pods whose evictions are managed by the disruption budget. A null selector will match no pods, while an empty ({}) selector will select all pods within the namespace.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="poddisruptionbudgetstatus-v1-policy">PodDisruptionBudgetStatus v1 policy</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget [policy/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#condition-v1-meta">Condition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Conditions contain conditions for PDB. The disruption controller sets the DisruptionAllowed condition. The following are known values for the reason field (additional reasons could be added in the future): - SyncFailed: The controller encountered an error and wasn&#39;t able to compute               the number of allowed disruptions. Therefore no disruptions are               allowed and the status of the condition will be False. - InsufficientPods: The number of pods are either at or below the number                     required by the PodDisruptionBudget. No disruptions are                     allowed and the status of the condition will be False. - SufficientPods: There are more pods than required by the PodDisruptionBudget.                   The condition will be True, and the number of allowed                   disruptions are provided by the disruptionsAllowed property.</TD></TR>
+<TR><TD><CODE>currentHealthy</CODE><BR /><I>integer</I></TD><TD>current number of healthy pods</TD></TR>
+<TR><TD><CODE>desiredHealthy</CODE><BR /><I>integer</I></TD><TD>minimum desired number of healthy pods</TD></TR>
+<TR><TD><CODE>disruptedPods</CODE><BR /><I>object</I></TD><TD>DisruptedPods contains information about pods whose eviction was processed by the API server eviction subresource handler but has not yet been observed by the PodDisruptionBudget controller. A pod will be in this map from the time when the API server processed the eviction request to the time when the pod is seen by PDB controller as having been marked for deletion (or after a timeout). The key in the map is the name of the pod and the value is the time when the API server processed the eviction request. If the deletion didn&#39;t occur and a pod is still there it will be removed from the list automatically by PodDisruptionBudget controller after some time. If everything goes smooth this map should be empty for the most of the time. Large number of entries in the map may indicate problems with pod deletions.</TD></TR>
+<TR><TD><CODE>disruptionsAllowed</CODE><BR /><I>integer</I></TD><TD>Number of pod disruptions that are currently allowed.</TD></TR>
+<TR><TD><CODE>expectedPods</CODE><BR /><I>integer</I></TD><TD>total number of pods counted by this disruption budget</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>Most recent generation observed when updating this PDB status. DisruptionsAllowed and other status information is valid only if observedGeneration equals to PDB&#39;s object generation.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="poddisruptionbudgetlist-v1-policy">PodDisruptionBudgetList v1 policy</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a> array</I></TD><TD>Items is a list of PodDisruptionBudgets</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-poddisruptionbudget-v1-policy-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-poddisruptionbudget-v1-policy">Create</H2>
+<P>create a PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-poddisruptionbudget-v1-policy">Patch</H2>
+<P>partially update the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-poddisruptionbudget-v1-policy">Replace</H2>
+<P>replace the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-poddisruptionbudget-v1-policy">Delete</H2>
+<P>delete a PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-poddisruptionbudget-v1-policy">Delete Collection</H2>
+<P>delete collection of PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-poddisruptionbudget-v1-policy-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-poddisruptionbudget-v1-policy">Read</H2>
+<P>read the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-poddisruptionbudget-v1-policy">List</H2>
+<P>list or watch objects of kind PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudgetlist-v1-policy">PodDisruptionBudgetList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-poddisruptionbudget-v1-policy">List All Namespaces</H2>
+<P>list or watch objects of kind PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1/poddisruptionbudgets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudgetlist-v1-policy">PodDisruptionBudgetList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-poddisruptionbudget-v1-policy">Watch</H2>
+<P>watch changes to an object of kind PodDisruptionBudget. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1/watch/namespaces/{namespace}/poddisruptionbudgets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-poddisruptionbudget-v1-policy">Watch List</H2>
+<P>watch individual changes to a list of PodDisruptionBudget. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1/watch/namespaces/{namespace}/poddisruptionbudgets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-poddisruptionbudget-v1-policy">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of PodDisruptionBudget. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1/watch/poddisruptionbudgets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-poddisruptionbudget-v1-policy-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-poddisruptionbudget-v1-policy">Patch Status</H2>
+<P>partially update status of the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-poddisruptionbudget-v1-policy">Read Status</H2>
+<P>read status of the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-poddisruptionbudget-v1-policy">Replace Status</H2>
+<P>replace status of the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="priorityclass-v1-scheduling-k8s-io">PriorityClass v1 scheduling.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>scheduling.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PriorityClass</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#priorityclasslist-v1-scheduling-k8s-io">PriorityClassList [scheduling/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>description</CODE><BR /><I>string</I></TD><TD>description is an arbitrary string that usually provides guidelines on when this priority class should be used.</TD></TR>
+<TR><TD><CODE>globalDefault</CODE><BR /><I>boolean</I></TD><TD>globalDefault specifies whether this PriorityClass should be considered as the default priority for pods that do not have any priority class. Only one PriorityClass can be marked as `globalDefault`. However, if more than one PriorityClasses exists with their `globalDefault` field set to true, the smallest value of such global default PriorityClasses will be used as the default priority.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>preemptionPolicy</CODE><BR /><I>string</I></TD><TD>PreemptionPolicy is the Policy for preempting pods with lower priority. One of Never, PreemptLowerPriority. Defaults to PreemptLowerPriority if unset. This field is beta-level, gated by the NonPreemptingPriority feature-gate.</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I>integer</I></TD><TD>The value of this priority class. This is the actual priority that pods receive when they have the name of this class in their pod spec.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="priorityclasslist-v1-scheduling-k8s-io">PriorityClassList v1 scheduling</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass</a> array</I></TD><TD>items is the list of PriorityClasses</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-priorityclass-v1-scheduling-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-priorityclass-v1-scheduling-k8s-io">Create</H2>
+<P>create a PriorityClass</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/scheduling.k8s.io/v1/priorityclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-priorityclass-v1-scheduling-k8s-io">Patch</H2>
+<P>partially update the specified PriorityClass</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/scheduling.k8s.io/v1/priorityclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-priorityclass-v1-scheduling-k8s-io">Replace</H2>
+<P>replace the specified PriorityClass</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/scheduling.k8s.io/v1/priorityclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-priorityclass-v1-scheduling-k8s-io">Delete</H2>
+<P>delete a PriorityClass</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/scheduling.k8s.io/v1/priorityclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-priorityclass-v1-scheduling-k8s-io">Delete Collection</H2>
+<P>delete collection of PriorityClass</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/scheduling.k8s.io/v1/priorityclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-priorityclass-v1-scheduling-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-priorityclass-v1-scheduling-k8s-io">Read</H2>
+<P>read the specified PriorityClass</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/scheduling.k8s.io/v1/priorityclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-priorityclass-v1-scheduling-k8s-io">List</H2>
+<P>list or watch objects of kind PriorityClass</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/scheduling.k8s.io/v1/priorityclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#priorityclasslist-v1-scheduling-k8s-io">PriorityClassList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-priorityclass-v1-scheduling-k8s-io">Watch</H2>
+<P>watch changes to an object of kind PriorityClass. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/scheduling.k8s.io/v1/watch/priorityclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-priorityclass-v1-scheduling-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of PriorityClass. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/scheduling.k8s.io/v1/watch/priorityclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="podsecuritypolicy-v1beta1-policy">PodSecurityPolicy v1beta1 policy</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>PodSecurityPolicy</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicylist-v1beta1-policy">PodSecurityPolicyList [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec</a></I></TD><TD>spec defines the policy enforced.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec v1beta1 policy</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowPrivilegeEscalation</CODE><BR /><I>boolean</I></TD><TD>allowPrivilegeEscalation determines if a pod can request to allow privilege escalation. If unspecified, defaults to true.</TD></TR>
+<TR><TD><CODE>allowedCSIDrivers</CODE><BR /><I><a href="#allowedcsidriver-v1beta1-policy">AllowedCSIDriver</a> array</I></TD><TD>AllowedCSIDrivers is an allowlist of inline CSI drivers that must be explicitly set to be embedded within a pod spec. An empty value indicates that any CSI driver can be used for inline ephemeral volumes. This is a beta field, and is only honored if the API server enables the CSIInlineVolume feature gate.</TD></TR>
+<TR><TD><CODE>allowedCapabilities</CODE><BR /><I>string array</I></TD><TD>allowedCapabilities is a list of capabilities that can be requested to add to the container. Capabilities in this field may be added at the pod author&#39;s discretion. You must not list a capability in both allowedCapabilities and requiredDropCapabilities.</TD></TR>
+<TR><TD><CODE>allowedFlexVolumes</CODE><BR /><I><a href="#allowedflexvolume-v1beta1-policy">AllowedFlexVolume</a> array</I></TD><TD>allowedFlexVolumes is an allowlist of Flexvolumes.  Empty or nil indicates that all Flexvolumes may be used.  This parameter is effective only when the usage of the Flexvolumes is allowed in the &#34;volumes&#34; field.</TD></TR>
+<TR><TD><CODE>allowedHostPaths</CODE><BR /><I><a href="#allowedhostpath-v1beta1-policy">AllowedHostPath</a> array</I></TD><TD>allowedHostPaths is an allowlist of host paths. Empty indicates that all host paths may be used.</TD></TR>
+<TR><TD><CODE>allowedProcMountTypes</CODE><BR /><I>string array</I></TD><TD>AllowedProcMountTypes is an allowlist of allowed ProcMountTypes. Empty or nil indicates that only the DefaultProcMountType may be used. This requires the ProcMountType feature flag to be enabled.</TD></TR>
+<TR><TD><CODE>allowedUnsafeSysctls</CODE><BR /><I>string array</I></TD><TD>allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none. Each entry is either a plain sysctl name or ends in &#34;*&#34; in which case it is considered as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed. Kubelet has to allowlist all allowed unsafe sysctls explicitly to avoid rejection.  Examples: e.g. &#34;foo/*&#34; allows &#34;foo/bar&#34;, &#34;foo/baz&#34;, etc. e.g. &#34;foo.*&#34; allows &#34;foo.bar&#34;, &#34;foo.baz&#34;, etc.</TD></TR>
+<TR><TD><CODE>defaultAddCapabilities</CODE><BR /><I>string array</I></TD><TD>defaultAddCapabilities is the default set of capabilities that will be added to the container unless the pod spec specifically drops the capability.  You may not list a capability in both defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly allowed, and need not be included in the allowedCapabilities list.</TD></TR>
+<TR><TD><CODE>defaultAllowPrivilegeEscalation</CODE><BR /><I>boolean</I></TD><TD>defaultAllowPrivilegeEscalation controls the default setting for whether a process can gain more privileges than its parent process.</TD></TR>
+<TR><TD><CODE>forbiddenSysctls</CODE><BR /><I>string array</I></TD><TD>forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none. Each entry is either a plain sysctl name or ends in &#34;*&#34; in which case it is considered as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.  Examples: e.g. &#34;foo/*&#34; forbids &#34;foo/bar&#34;, &#34;foo/baz&#34;, etc. e.g. &#34;foo.*&#34; forbids &#34;foo.bar&#34;, &#34;foo.baz&#34;, etc.</TD></TR>
+<TR><TD><CODE>fsGroup</CODE><BR /><I><a href="#fsgroupstrategyoptions-v1beta1-policy">FSGroupStrategyOptions</a></I></TD><TD>fsGroup is the strategy that will dictate what fs group is used by the SecurityContext.</TD></TR>
+<TR><TD><CODE>hostIPC</CODE><BR /><I>boolean</I></TD><TD>hostIPC determines if the policy allows the use of HostIPC in the pod spec.</TD></TR>
+<TR><TD><CODE>hostNetwork</CODE><BR /><I>boolean</I></TD><TD>hostNetwork determines if the policy allows the use of HostNetwork in the pod spec.</TD></TR>
+<TR><TD><CODE>hostPID</CODE><BR /><I>boolean</I></TD><TD>hostPID determines if the policy allows the use of HostPID in the pod spec.</TD></TR>
+<TR><TD><CODE>hostPorts</CODE><BR /><I><a href="#hostportrange-v1beta1-policy">HostPortRange</a> array</I></TD><TD>hostPorts determines which host port ranges are allowed to be exposed.</TD></TR>
+<TR><TD><CODE>privileged</CODE><BR /><I>boolean</I></TD><TD>privileged determines if a pod can request to be run as privileged.</TD></TR>
+<TR><TD><CODE>readOnlyRootFilesystem</CODE><BR /><I>boolean</I></TD><TD>readOnlyRootFilesystem when set to true will force containers to run with a read only root file system.  If the container specifically requests to run with a non-read only root file system the PSP should deny the pod. If set to false the container may run with a read only root file system if it wishes but it will not be forced to.</TD></TR>
+<TR><TD><CODE>requiredDropCapabilities</CODE><BR /><I>string array</I></TD><TD>requiredDropCapabilities are the capabilities that will be dropped from the container.  These are required to be dropped and cannot be added.</TD></TR>
+<TR><TD><CODE>runAsGroup</CODE><BR /><I><a href="#runasgroupstrategyoptions-v1beta1-policy">RunAsGroupStrategyOptions</a></I></TD><TD>RunAsGroup is the strategy that will dictate the allowable RunAsGroup values that may be set. If this field is omitted, the pod&#39;s RunAsGroup can take any value. This field requires the RunAsGroup feature gate to be enabled.</TD></TR>
+<TR><TD><CODE>runAsUser</CODE><BR /><I><a href="#runasuserstrategyoptions-v1beta1-policy">RunAsUserStrategyOptions</a></I></TD><TD>runAsUser is the strategy that will dictate the allowable RunAsUser values that may be set.</TD></TR>
+<TR><TD><CODE>runtimeClass</CODE><BR /><I><a href="#runtimeclassstrategyoptions-v1beta1-policy">RuntimeClassStrategyOptions</a></I></TD><TD>runtimeClass is the strategy that will dictate the allowable RuntimeClasses for a pod. If this field is omitted, the pod&#39;s runtimeClassName field is unrestricted. Enforcement of this field depends on the RuntimeClass feature gate being enabled.</TD></TR>
+<TR><TD><CODE>seLinux</CODE><BR /><I><a href="#selinuxstrategyoptions-v1beta1-policy">SELinuxStrategyOptions</a></I></TD><TD>seLinux is the strategy that will dictate the allowable labels that may be set.</TD></TR>
+<TR><TD><CODE>supplementalGroups</CODE><BR /><I><a href="#supplementalgroupsstrategyoptions-v1beta1-policy">SupplementalGroupsStrategyOptions</a></I></TD><TD>supplementalGroups is the strategy that will dictate what supplemental groups are used by the SecurityContext.</TD></TR>
+<TR><TD><CODE>volumes</CODE><BR /><I>string array</I></TD><TD>volumes is an allowlist of volume plugins. Empty indicates that no volumes may be used. To allow all volumes you may use &#39;\*&#39;.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="podsecuritypolicylist-v1beta1-policy">PodSecurityPolicyList v1beta1 policy</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a> array</I></TD><TD>items is a list of schema objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-podsecuritypolicy-v1beta1-policy-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-podsecuritypolicy-v1beta1-policy">Create</H2>
+<P>create a PodSecurityPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/policy/v1beta1/podsecuritypolicies</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-podsecuritypolicy-v1beta1-policy">Patch</H2>
+<P>partially update the specified PodSecurityPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/policy/v1beta1/podsecuritypolicies/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodSecurityPolicy</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-podsecuritypolicy-v1beta1-policy">Replace</H2>
+<P>replace the specified PodSecurityPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/policy/v1beta1/podsecuritypolicies/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodSecurityPolicy</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-podsecuritypolicy-v1beta1-policy">Delete</H2>
+<P>delete a PodSecurityPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/policy/v1beta1/podsecuritypolicies/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodSecurityPolicy</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-podsecuritypolicy-v1beta1-policy">Delete Collection</H2>
+<P>delete collection of PodSecurityPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/policy/v1beta1/podsecuritypolicies</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-podsecuritypolicy-v1beta1-policy-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-podsecuritypolicy-v1beta1-policy">Read</H2>
+<P>read the specified PodSecurityPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1beta1/podsecuritypolicies/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodSecurityPolicy</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-podsecuritypolicy-v1beta1-policy">List</H2>
+<P>list or watch objects of kind PodSecurityPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1beta1/podsecuritypolicies</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podsecuritypolicylist-v1beta1-policy">PodSecurityPolicyList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-podsecuritypolicy-v1beta1-policy">Watch</H2>
+<P>watch changes to an object of kind PodSecurityPolicy. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1beta1/watch/podsecuritypolicies/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodSecurityPolicy</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-podsecuritypolicy-v1beta1-policy">Watch List</H2>
+<P>watch individual changes to a list of PodSecurityPolicy. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1beta1/watch/podsecuritypolicies</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="-strong-cluster-apis-strong-"><strong>CLUSTER</strong></H1>
+
+<P>Cluster resources are responsible for defining configuration of the cluster itself, and are generally only used by cluster operators.</P>
+
+<HR />
+<H1 id="apiservice-v1-apiregistration-k8s-io">APIService v1 apiregistration.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>APIService</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apiservicelist-v1-apiregistration-k8s-io">APIServiceList [apiregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#apiservicespec-v1-apiregistration-k8s-io">APIServiceSpec</a></I></TD><TD>Spec contains information for locating and communicating with a server</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#apiservicestatus-v1-apiregistration-k8s-io">APIServiceStatus</a></I></TD><TD>Status contains derived information about an API server</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="apiservicespec-v1-apiregistration-k8s-io">APIServiceSpec v1 apiregistration</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apiservice-v1-apiregistration-k8s-io">APIService [apiregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>caBundle</CODE><BR /><I>string</I></TD><TD>CABundle is a PEM encoded CA bundle which will be used to validate an API server&#39;s serving certificate. If unspecified, system trust roots on the apiserver are used.</TD></TR>
+<TR><TD><CODE>group</CODE><BR /><I>string</I></TD><TD>Group is the API group name this server hosts</TD></TR>
+<TR><TD><CODE>groupPriorityMinimum</CODE><BR /><I>integer</I></TD><TD>GroupPriorityMininum is the priority this group should have at least. Higher priority means that the group is preferred by clients over lower priority ones. Note that other versions of this group might specify even higher GroupPriorityMininum values such that the whole group gets a higher priority. The primary sort is based on GroupPriorityMinimum, ordered highest number to lowest (20 before 10). The secondary sort is based on the alphabetical comparison of the name of the object.  (v1.bar before v1.foo) We&#39;d recommend something like: *.k8s.io (except extensions) at 18000 and PaaSes (OpenShift, Deis) are recommended to be in the 2000s</TD></TR>
+<TR><TD><CODE>insecureSkipTLSVerify</CODE><BR /><I>boolean</I></TD><TD>InsecureSkipTLSVerify disables TLS certificate verification when communicating with this server. This is strongly discouraged.  You should use the CABundle instead.</TD></TR>
+<TR><TD><CODE>service</CODE><BR /><I><a href="#servicereference-v1-apiregistration-k8s-io">ServiceReference</a></I></TD><TD>Service is a reference to the service for this API server.  It must communicate on port 443. If the Service is nil, that means the handling for the API groupversion is handled locally on this server. The call will simply delegate to the normal handler chain to be fulfilled.</TD></TR>
+<TR><TD><CODE>version</CODE><BR /><I>string</I></TD><TD>Version is the API version this server hosts.  For example, &#34;v1&#34;</TD></TR>
+<TR><TD><CODE>versionPriority</CODE><BR /><I>integer</I></TD><TD>VersionPriority controls the ordering of this API version inside of its group.  Must be greater than zero. The primary sort is based on VersionPriority, ordered highest to lowest (20 before 10). Since it&#39;s inside of a group, the number can be small, probably in the 10s. In case of equal version priorities, the version string will be used to compute the order inside a group. If the version string is &#34;kube-like&#34;, it will sort above non &#34;kube-like&#34; version strings, which are ordered lexicographically. &#34;Kube-like&#34; versions start with a &#34;v&#34;, then are followed by a number (the major version), then optionally the string &#34;alpha&#34; or &#34;beta&#34; and another number (the minor version). These are sorted first by GA &gt; beta &gt; alpha (where GA is a version with no suffix such as beta or alpha), and then by comparing major version, then minor version. An example sorted list of versions: v10, v2, v1, v11beta2, v10beta3, v3beta1, v12alpha1, v11alpha2, foo1, foo10.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="apiservicestatus-v1-apiregistration-k8s-io">APIServiceStatus v1 apiregistration</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apiservice-v1-apiregistration-k8s-io">APIService [apiregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#apiservicecondition-v1-apiregistration-k8s-io">APIServiceCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Current service state of apiService.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="apiservicelist-v1-apiregistration-k8s-io">APIServiceList v1 apiregistration</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a> array</I></TD><TD>Items is the list of APIService</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-apiservice-v1-apiregistration-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-apiservice-v1-apiregistration-k8s-io">Create</H2>
+<P>create an APIService</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/apiregistration.k8s.io/v1/apiservices</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-apiservice-v1-apiregistration-k8s-io">Patch</H2>
+<P>partially update the specified APIService</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apiregistration.k8s.io/v1/apiservices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the APIService</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-apiservice-v1-apiregistration-k8s-io">Replace</H2>
+<P>replace the specified APIService</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apiregistration.k8s.io/v1/apiservices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the APIService</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-apiservice-v1-apiregistration-k8s-io">Delete</H2>
+<P>delete an APIService</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apiregistration.k8s.io/v1/apiservices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the APIService</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-apiservice-v1-apiregistration-k8s-io">Delete Collection</H2>
+<P>delete collection of APIService</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apiregistration.k8s.io/v1/apiservices</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-apiservice-v1-apiregistration-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-apiservice-v1-apiregistration-k8s-io">Read</H2>
+<P>read the specified APIService</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apiregistration.k8s.io/v1/apiservices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the APIService</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-apiservice-v1-apiregistration-k8s-io">List</H2>
+<P>list or watch objects of kind APIService</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apiregistration.k8s.io/v1/apiservices</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#apiservicelist-v1-apiregistration-k8s-io">APIServiceList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-apiservice-v1-apiregistration-k8s-io">Watch</H2>
+<P>watch changes to an object of kind APIService. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apiregistration.k8s.io/v1/watch/apiservices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the APIService</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-apiservice-v1-apiregistration-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of APIService. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apiregistration.k8s.io/v1/watch/apiservices</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-apiservice-v1-apiregistration-k8s-io-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-apiservice-v1-apiregistration-k8s-io">Patch Status</H2>
+<P>partially update status of the specified APIService</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apiregistration.k8s.io/v1/apiservices/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the APIService</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-apiservice-v1-apiregistration-k8s-io">Read Status</H2>
+<P>read status of the specified APIService</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apiregistration.k8s.io/v1/apiservices/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the APIService</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-apiservice-v1-apiregistration-k8s-io">Replace Status</H2>
+<P>replace status of the specified APIService</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apiregistration.k8s.io/v1/apiservices/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the APIService</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="binding-v1-core">Binding v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Binding</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>The target object that you want to bind to the standard object.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-binding-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-binding-v1-core">Create</H2>
+<P>create a Binding</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/bindings</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#binding-v1-core">Binding</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#binding-v1-core">Binding</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#binding-v1-core">Binding</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#binding-v1-core">Binding</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest v1 certificates.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>certificates.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CertificateSigningRequest</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#certificatesigningrequestlist-v1-certificates-k8s-io">CertificateSigningRequestList [certificates/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD></TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#certificatesigningrequestspec-v1-certificates-k8s-io">CertificateSigningRequestSpec</a></I></TD><TD>spec contains the certificate request, and is immutable after creation. Only the request, signerName, expirationSeconds, and usages fields can be set on creation. Other fields are derived by Kubernetes and cannot be modified by users.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#certificatesigningrequeststatus-v1-certificates-k8s-io">CertificateSigningRequestStatus</a></I></TD><TD>status contains information about whether the request is approved or denied, and the certificate issued by the signer, or the failure condition indicating signer failure.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="certificatesigningrequestspec-v1-certificates-k8s-io">CertificateSigningRequestSpec v1 certificates</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest [certificates/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>expirationSeconds</CODE><BR /><I>integer</I></TD><TD>expirationSeconds is the requested duration of validity of the issued certificate. The certificate signer may issue a certificate with a different validity duration so a client must check the delta between the notBefore and and notAfter fields in the issued certificate to determine the actual duration.  The v1.22+ in-tree implementations of the well-known Kubernetes signers will honor this field as long as the requested duration is not greater than the maximum duration they will honor per the --cluster-signing-duration CLI flag to the Kubernetes controller manager.  Certificate signers may not honor this field for various reasons:    1. Old signer that is unaware of the field (such as the in-tree      implementations prior to v1.22)   2. Signer whose configured maximum is shorter than the requested duration   3. Signer whose configured minimum is longer than the requested duration  The minimum valid value for expirationSeconds is 600, i.e. 10 minutes.  As of v1.22, this field is beta and is controlled via the CSRDuration feature gate.</TD></TR>
+<TR><TD><CODE>extra</CODE><BR /><I>object</I></TD><TD>extra contains extra attributes of the user that created the CertificateSigningRequest. Populated by the API server on creation and immutable.</TD></TR>
+<TR><TD><CODE>groups</CODE><BR /><I>string array</I></TD><TD>groups contains group membership of the user that created the CertificateSigningRequest. Populated by the API server on creation and immutable.</TD></TR>
+<TR><TD><CODE>request</CODE><BR /><I>string</I></TD><TD>request contains an x509 certificate signing request encoded in a &#34;CERTIFICATE REQUEST&#34; PEM block. When serialized as JSON or YAML, the data is additionally base64-encoded.</TD></TR>
+<TR><TD><CODE>signerName</CODE><BR /><I>string</I></TD><TD>signerName indicates the requested signer, and is a qualified name.  List/watch requests for CertificateSigningRequests can filter on this field using a &#34;spec.signerName=NAME&#34; fieldSelector.  Well-known Kubernetes signers are:  1. &#34;kubernetes.io/kube-apiserver-client&#34;: issues client certificates that can be used to authenticate to kube-apiserver.   Requests for this signer are never auto-approved by kube-controller-manager, can be issued by the &#34;csrsigning&#34; controller in kube-controller-manager.  2. &#34;kubernetes.io/kube-apiserver-client-kubelet&#34;: issues client certificates that kubelets use to authenticate to kube-apiserver.   Requests for this signer can be auto-approved by the &#34;csrapproving&#34; controller in kube-controller-manager, and can be issued by the &#34;csrsigning&#34; controller in kube-controller-manager.  3. &#34;kubernetes.io/kubelet-serving&#34; issues serving certificates that kubelets use to serve TLS endpoints, which kube-apiserver can connect to securely.   Requests for this signer are never auto-approved by kube-controller-manager, and can be issued by the &#34;csrsigning&#34; controller in kube-controller-manager.  More details are available at https://k8s.io/docs/reference/access-authn-authz/certificate-signing-requests/#kubernetes-signers  Custom signerNames can also be specified. The signer defines:  1. Trust distribution: how trust (CA bundles) are distributed.  2. Permitted subjects: and behavior when a disallowed subject is requested.  3. Required, permitted, or forbidden x509 extensions in the request (including whether subjectAltNames are allowed, which types, restrictions on allowed values) and behavior when a disallowed extension is requested.  4. Required, permitted, or forbidden key usages / extended key usages.  5. Expiration/certificate lifetime: whether it is fixed by the signer, configurable by the admin.  6. Whether or not requests for CA certificates are allowed.</TD></TR>
+<TR><TD><CODE>uid</CODE><BR /><I>string</I></TD><TD>uid contains the uid of the user that created the CertificateSigningRequest. Populated by the API server on creation and immutable.</TD></TR>
+<TR><TD><CODE>usages</CODE><BR /><I>string array</I></TD><TD>usages specifies a set of key usages requested in the issued certificate.  Requests for TLS client certificates typically request: &#34;digital signature&#34;, &#34;key encipherment&#34;, &#34;client auth&#34;.  Requests for TLS serving certificates typically request: &#34;key encipherment&#34;, &#34;digital signature&#34;, &#34;server auth&#34;.  Valid values are:  &#34;signing&#34;, &#34;digital signature&#34;, &#34;content commitment&#34;,  &#34;key encipherment&#34;, &#34;key agreement&#34;, &#34;data encipherment&#34;,  &#34;cert sign&#34;, &#34;crl sign&#34;, &#34;encipher only&#34;, &#34;decipher only&#34;, &#34;any&#34;,  &#34;server auth&#34;, &#34;client auth&#34;,  &#34;code signing&#34;, &#34;email protection&#34;, &#34;s/mime&#34;,  &#34;ipsec end system&#34;, &#34;ipsec tunnel&#34;, &#34;ipsec user&#34;,  &#34;timestamping&#34;, &#34;ocsp signing&#34;, &#34;microsoft sgc&#34;, &#34;netscape sgc&#34;</TD></TR>
+<TR><TD><CODE>username</CODE><BR /><I>string</I></TD><TD>username contains the name of the user that created the CertificateSigningRequest. Populated by the API server on creation and immutable.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="certificatesigningrequeststatus-v1-certificates-k8s-io">CertificateSigningRequestStatus v1 certificates</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest [certificates/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>certificate</CODE><BR /><I>string</I></TD><TD>certificate is populated with an issued certificate by the signer after an Approved condition is present. This field is set via the /status subresource. Once populated, this field is immutable.  If the certificate signing request is denied, a condition of type &#34;Denied&#34; is added and this field remains empty. If the signer cannot issue the certificate, a condition of type &#34;Failed&#34; is added and this field remains empty.  Validation requirements:  1. certificate must contain one or more PEM blocks.  2. All PEM blocks must have the &#34;CERTIFICATE&#34; label, contain no headers, and the encoded data   must be a BER-encoded ASN.1 Certificate structure as described in section 4 of RFC5280.  3. Non-PEM content may appear before or after the &#34;CERTIFICATE&#34; PEM blocks and is unvalidated,   to allow for explanatory text as described in section 5.2 of RFC7468.  If more than one PEM block is present, and the definition of the requested spec.signerName does not indicate otherwise, the first block is the issued certificate, and subsequent blocks should be treated as intermediate certificates and presented in TLS handshakes.  The certificate is encoded in PEM format.  When serialized as JSON or YAML, the data is additionally base64-encoded, so it consists of:      base64(     -----BEGIN CERTIFICATE-----     ...     -----END CERTIFICATE-----     )</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#certificatesigningrequestcondition-v1-certificates-k8s-io">CertificateSigningRequestCondition</a> array</I></TD><TD>conditions applied to the request. Known conditions are &#34;Approved&#34;, &#34;Denied&#34;, and &#34;Failed&#34;.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="certificatesigningrequestlist-v1-certificates-k8s-io">CertificateSigningRequestList v1 certificates</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a> array</I></TD><TD>items is a collection of CertificateSigningRequest objects</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-certificatesigningrequest-v1-certificates-k8s-io">Create</H2>
+<P>create a CertificateSigningRequest</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/certificates.k8s.io/v1/certificatesigningrequests</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-certificatesigningrequest-v1-certificates-k8s-io">Patch</H2>
+<P>partially update the specified CertificateSigningRequest</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CertificateSigningRequest</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-certificatesigningrequest-v1-certificates-k8s-io">Replace</H2>
+<P>replace the specified CertificateSigningRequest</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CertificateSigningRequest</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-certificatesigningrequest-v1-certificates-k8s-io">Delete</H2>
+<P>delete a CertificateSigningRequest</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CertificateSigningRequest</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-certificatesigningrequest-v1-certificates-k8s-io">Delete Collection</H2>
+<P>delete collection of CertificateSigningRequest</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/certificates.k8s.io/v1/certificatesigningrequests</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-certificatesigningrequest-v1-certificates-k8s-io">Read</H2>
+<P>read the specified CertificateSigningRequest</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CertificateSigningRequest</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-certificatesigningrequest-v1-certificates-k8s-io">List</H2>
+<P>list or watch objects of kind CertificateSigningRequest</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/certificates.k8s.io/v1/certificatesigningrequests</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#certificatesigningrequestlist-v1-certificates-k8s-io">CertificateSigningRequestList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-certificatesigningrequest-v1-certificates-k8s-io">Watch</H2>
+<P>watch changes to an object of kind CertificateSigningRequest. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/certificates.k8s.io/v1/watch/certificatesigningrequests/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CertificateSigningRequest</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-certificatesigningrequest-v1-certificates-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of CertificateSigningRequest. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/certificates.k8s.io/v1/watch/certificatesigningrequests</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-certificatesigningrequest-v1-certificates-k8s-io">Patch Status</H2>
+<P>partially update status of the specified CertificateSigningRequest</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CertificateSigningRequest</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-certificatesigningrequest-v1-certificates-k8s-io">Read Status</H2>
+<P>read status of the specified CertificateSigningRequest</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CertificateSigningRequest</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-certificatesigningrequest-v1-certificates-k8s-io">Replace Status</H2>
+<P>replace status of the specified CertificateSigningRequest</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CertificateSigningRequest</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="clusterrole-v1-rbac-authorization-k8s-io">ClusterRole v1 rbac.authorization.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rbac.authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ClusterRole</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#clusterrolelist-v1-rbac-authorization-k8s-io">ClusterRoleList [rbac/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>aggregationRule</CODE><BR /><I><a href="#aggregationrule-v1-rbac-authorization-k8s-io">AggregationRule</a></I></TD><TD>AggregationRule is an optional field that describes how to build the Rules for this ClusterRole. If AggregationRule is set, then the Rules are controller managed and direct changes to Rules will be stomped by the controller.</TD></TR>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata.</TD></TR>
+<TR><TD><CODE>rules</CODE><BR /><I><a href="#policyrule-v1-rbac-authorization-k8s-io">PolicyRule</a> array</I></TD><TD>Rules holds all the PolicyRules for this ClusterRole</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="clusterrolelist-v1-rbac-authorization-k8s-io">ClusterRoleList v1 rbac</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole</a> array</I></TD><TD>Items is a list of ClusterRoles</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard object&#39;s metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-clusterrole-v1-rbac-authorization-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-clusterrole-v1-rbac-authorization-k8s-io">Create</H2>
+<P>create a ClusterRole</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/rbac.authorization.k8s.io/v1/clusterroles</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-clusterrole-v1-rbac-authorization-k8s-io">Patch</H2>
+<P>partially update the specified ClusterRole</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/rbac.authorization.k8s.io/v1/clusterroles/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ClusterRole</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-clusterrole-v1-rbac-authorization-k8s-io">Replace</H2>
+<P>replace the specified ClusterRole</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/rbac.authorization.k8s.io/v1/clusterroles/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ClusterRole</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-clusterrole-v1-rbac-authorization-k8s-io">Delete</H2>
+<P>delete a ClusterRole</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/rbac.authorization.k8s.io/v1/clusterroles/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ClusterRole</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-clusterrole-v1-rbac-authorization-k8s-io">Delete Collection</H2>
+<P>delete collection of ClusterRole</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/rbac.authorization.k8s.io/v1/clusterroles</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-clusterrole-v1-rbac-authorization-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-clusterrole-v1-rbac-authorization-k8s-io">Read</H2>
+<P>read the specified ClusterRole</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/clusterroles/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ClusterRole</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-clusterrole-v1-rbac-authorization-k8s-io">List</H2>
+<P>list or watch objects of kind ClusterRole</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/clusterroles</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#clusterrolelist-v1-rbac-authorization-k8s-io">ClusterRoleList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-clusterrole-v1-rbac-authorization-k8s-io">Watch</H2>
+<P>watch changes to an object of kind ClusterRole. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/watch/clusterroles/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ClusterRole</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-clusterrole-v1-rbac-authorization-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of ClusterRole. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/watch/clusterroles</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding v1 rbac.authorization.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rbac.authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ClusterRoleBinding</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#clusterrolebindinglist-v1-rbac-authorization-k8s-io">ClusterRoleBindingList [rbac/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata.</TD></TR>
+<TR><TD><CODE>roleRef</CODE><BR /><I><a href="#roleref-v1-rbac-authorization-k8s-io">RoleRef</a></I></TD><TD>RoleRef can only reference a ClusterRole in the global namespace. If the RoleRef cannot be resolved, the Authorizer must return an error.</TD></TR>
+<TR><TD><CODE>subjects</CODE><BR /><I><a href="#subject-v1-rbac-authorization-k8s-io">Subject</a> array</I></TD><TD>Subjects holds references to the objects the role applies to.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="clusterrolebindinglist-v1-rbac-authorization-k8s-io">ClusterRoleBindingList v1 rbac</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding</a> array</I></TD><TD>Items is a list of ClusterRoleBindings</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard object&#39;s metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-clusterrolebinding-v1-rbac-authorization-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-clusterrolebinding-v1-rbac-authorization-k8s-io">Create</H2>
+<P>create a ClusterRoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/rbac.authorization.k8s.io/v1/clusterrolebindings</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-clusterrolebinding-v1-rbac-authorization-k8s-io">Patch</H2>
+<P>partially update the specified ClusterRoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/rbac.authorization.k8s.io/v1/clusterrolebindings/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ClusterRoleBinding</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-clusterrolebinding-v1-rbac-authorization-k8s-io">Replace</H2>
+<P>replace the specified ClusterRoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/rbac.authorization.k8s.io/v1/clusterrolebindings/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ClusterRoleBinding</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-clusterrolebinding-v1-rbac-authorization-k8s-io">Delete</H2>
+<P>delete a ClusterRoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/rbac.authorization.k8s.io/v1/clusterrolebindings/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ClusterRoleBinding</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-clusterrolebinding-v1-rbac-authorization-k8s-io">Delete Collection</H2>
+<P>delete collection of ClusterRoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/rbac.authorization.k8s.io/v1/clusterrolebindings</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-clusterrolebinding-v1-rbac-authorization-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-clusterrolebinding-v1-rbac-authorization-k8s-io">Read</H2>
+<P>read the specified ClusterRoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/clusterrolebindings/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ClusterRoleBinding</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-clusterrolebinding-v1-rbac-authorization-k8s-io">List</H2>
+<P>list or watch objects of kind ClusterRoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/clusterrolebindings</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#clusterrolebindinglist-v1-rbac-authorization-k8s-io">ClusterRoleBindingList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-clusterrolebinding-v1-rbac-authorization-k8s-io">Watch</H2>
+<P>watch changes to an object of kind ClusterRoleBinding. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/watch/clusterrolebindings/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ClusterRoleBinding</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-clusterrolebinding-v1-rbac-authorization-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of ClusterRoleBinding. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/watch/clusterrolebindings</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="componentstatus-v1-core">ComponentStatus v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ComponentStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#componentstatuslist-v1-core">ComponentStatusList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#componentcondition-v1-core">ComponentCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>List of component conditions observed</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="componentstatuslist-v1-core">ComponentStatusList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#componentstatus-v1-core">ComponentStatus</a> array</I></TD><TD>List of ComponentStatus objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-componentstatus-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-componentstatus-v1-core">Read</H2>
+<P>read the specified ComponentStatus</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/componentstatuses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ComponentStatus</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#componentstatus-v1-core">ComponentStatus</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-componentstatus-v1-core">List</H2>
+<P>list objects of kind ComponentStatus</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/componentstatuses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#componentstatuslist-v1-core">ComponentStatusList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>FlowSchema</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschemalist-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaList [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>`metadata` is the standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#flowschemaspec-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaSpec</a></I></TD><TD>`spec` is the specification of the desired behavior of a FlowSchema. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#flowschemastatus-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaStatus</a></I></TD><TD>`status` is the current status of a FlowSchema. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="flowschemaspec-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaSpec v1beta1 flowcontrol</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>distinguisherMethod</CODE><BR /><I><a href="#flowdistinguishermethod-v1beta1-flowcontrol-apiserver-k8s-io">FlowDistinguisherMethod</a></I></TD><TD>`distinguisherMethod` defines how to compute the flow distinguisher for requests that match this schema. `nil` specifies that the distinguisher is disabled and thus will always be the empty string.</TD></TR>
+<TR><TD><CODE>matchingPrecedence</CODE><BR /><I>integer</I></TD><TD>`matchingPrecedence` is used to choose among the FlowSchemas that match a given request. The chosen FlowSchema is among those with the numerically lowest (which we take to be logically highest) MatchingPrecedence.  Each MatchingPrecedence value must be ranged in [1,10000]. Note that if the precedence is not specified, it will be set to 1000 as default.</TD></TR>
+<TR><TD><CODE>priorityLevelConfiguration</CODE><BR /><I><a href="#prioritylevelconfigurationreference-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationReference</a></I></TD><TD>`priorityLevelConfiguration` should reference a PriorityLevelConfiguration in the cluster. If the reference cannot be resolved, the FlowSchema will be ignored and marked as invalid in its status. Required.</TD></TR>
+<TR><TD><CODE>rules</CODE><BR /><I><a href="#policyruleswithsubjects-v1beta1-flowcontrol-apiserver-k8s-io">PolicyRulesWithSubjects</a> array</I></TD><TD>`rules` describes which requests will match this flow schema. This FlowSchema matches a request if and only if at least one member of rules matches the request. if it is an empty slice, there will be no requests matching the FlowSchema.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="flowschemastatus-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaStatus v1beta1 flowcontrol</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#flowschemacondition-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaCondition</a> array</I></TD><TD>`conditions` is a list of the current states of FlowSchema.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="flowschemalist-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaList v1beta1 flowcontrol</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a> array</I></TD><TD>`items` is a list of FlowSchemas.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>`metadata` is the standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Create</H2>
+<P>create a FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Patch</H2>
+<P>partially update the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Replace</H2>
+<P>replace the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Delete</H2>
+<P>delete a FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Delete Collection</H2>
+<P>delete collection of FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Read</H2>
+<P>read the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">List</H2>
+<P>list or watch objects of kind FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschemalist-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Watch</H2>
+<P>watch changes to an object of kind FlowSchema. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/watch/flowschemas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of FlowSchema. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/watch/flowschemas</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Patch Status</H2>
+<P>partially update status of the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Read Status</H2>
+<P>read status of the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Replace Status</H2>
+<P>replace status of the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="lease-v1-coordination-k8s-io">Lease v1 coordination.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>coordination.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Lease</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#leaselist-v1-coordination-k8s-io">LeaseList [coordination/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#leasespec-v1-coordination-k8s-io">LeaseSpec</a></I></TD><TD>Specification of the Lease. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="leasespec-v1-coordination-k8s-io">LeaseSpec v1 coordination</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#lease-v1-coordination-k8s-io">Lease [coordination/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>acquireTime</CODE><BR /><I><a href="#microtime-v1-meta">MicroTime</a></I></TD><TD>acquireTime is a time when the current lease was acquired.</TD></TR>
+<TR><TD><CODE>holderIdentity</CODE><BR /><I>string</I></TD><TD>holderIdentity contains the identity of the holder of a current lease.</TD></TR>
+<TR><TD><CODE>leaseDurationSeconds</CODE><BR /><I>integer</I></TD><TD>leaseDurationSeconds is a duration that candidates for a lease need to wait to force acquire it. This is measure against time of last observed RenewTime.</TD></TR>
+<TR><TD><CODE>leaseTransitions</CODE><BR /><I>integer</I></TD><TD>leaseTransitions is the number of transitions of a lease between holders.</TD></TR>
+<TR><TD><CODE>renewTime</CODE><BR /><I><a href="#microtime-v1-meta">MicroTime</a></I></TD><TD>renewTime is a time when the current holder of a lease has last updated the lease.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="leaselist-v1-coordination-k8s-io">LeaseList v1 coordination</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#lease-v1-coordination-k8s-io">Lease</a> array</I></TD><TD>Items is a list of schema objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-lease-v1-coordination-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-lease-v1-coordination-k8s-io">Create</H2>
+<P>create a Lease</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#lease-v1-coordination-k8s-io">Lease</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#lease-v1-coordination-k8s-io">Lease</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#lease-v1-coordination-k8s-io">Lease</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#lease-v1-coordination-k8s-io">Lease</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-lease-v1-coordination-k8s-io">Patch</H2>
+<P>partially update the specified Lease</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Lease</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#lease-v1-coordination-k8s-io">Lease</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#lease-v1-coordination-k8s-io">Lease</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-lease-v1-coordination-k8s-io">Replace</H2>
+<P>replace the specified Lease</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Lease</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#lease-v1-coordination-k8s-io">Lease</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#lease-v1-coordination-k8s-io">Lease</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#lease-v1-coordination-k8s-io">Lease</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-lease-v1-coordination-k8s-io">Delete</H2>
+<P>delete a Lease</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Lease</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-lease-v1-coordination-k8s-io">Delete Collection</H2>
+<P>delete collection of Lease</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-lease-v1-coordination-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-lease-v1-coordination-k8s-io">Read</H2>
+<P>read the specified Lease</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Lease</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#lease-v1-coordination-k8s-io">Lease</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-lease-v1-coordination-k8s-io">List</H2>
+<P>list or watch objects of kind Lease</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#leaselist-v1-coordination-k8s-io">LeaseList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-lease-v1-coordination-k8s-io">List All Namespaces</H2>
+<P>list or watch objects of kind Lease</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/coordination.k8s.io/v1/leases</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#leaselist-v1-coordination-k8s-io">LeaseList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-lease-v1-coordination-k8s-io">Watch</H2>
+<P>watch changes to an object of kind Lease. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/coordination.k8s.io/v1/watch/namespaces/{namespace}/leases/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Lease</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-lease-v1-coordination-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of Lease. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/coordination.k8s.io/v1/watch/namespaces/{namespace}/leases</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-lease-v1-coordination-k8s-io">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Lease. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/coordination.k8s.io/v1/watch/leases</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="localsubjectaccessreview-v1-authorization-k8s-io">LocalSubjectAccessReview v1 authorization.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>LocalSubjectAccessReview</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#subjectaccessreviewspec-v1-authorization-k8s-io">SubjectAccessReviewSpec</a></I></TD><TD>Spec holds information about the request being evaluated.  spec.namespace must be equal to the namespace you made the request against.  If empty, it is defaulted.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#subjectaccessreviewstatus-v1-authorization-k8s-io">SubjectAccessReviewStatus</a></I></TD><TD>Status is filled in by the server and indicates whether the request is allowed or not</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-localsubjectaccessreview-v1-authorization-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-localsubjectaccessreview-v1-authorization-k8s-io">Create</H2>
+<P>create a LocalSubjectAccessReview</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/authorization.k8s.io/v1/namespaces/{namespace}/localsubjectaccessreviews</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#localsubjectaccessreview-v1-authorization-k8s-io">LocalSubjectAccessReview</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#localsubjectaccessreview-v1-authorization-k8s-io">LocalSubjectAccessReview</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#localsubjectaccessreview-v1-authorization-k8s-io">LocalSubjectAccessReview</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#localsubjectaccessreview-v1-authorization-k8s-io">LocalSubjectAccessReview</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="namespace-v1-core">Namespace v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Namespace</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#namespacelist-v1-core">NamespaceList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#namespacespec-v1-core">NamespaceSpec</a></I></TD><TD>Spec defines the behavior of the Namespace. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#namespacestatus-v1-core">NamespaceStatus</a></I></TD><TD>Status describes the current status of a Namespace. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="namespacespec-v1-core">NamespaceSpec v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#namespace-v1-core">Namespace [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>finalizers</CODE><BR /><I>string array</I></TD><TD>Finalizers is an opaque list of values that must be empty to permanently remove object from storage. More info: https://kubernetes.io/docs/tasks/administer-cluster/namespaces/</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="namespacestatus-v1-core">NamespaceStatus v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#namespace-v1-core">Namespace [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#namespacecondition-v1-core">NamespaceCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Represents the latest available observations of a namespace&#39;s current state.</TD></TR>
+<TR><TD><CODE>phase</CODE><BR /><I>string</I></TD><TD>Phase is the current lifecycle phase of the namespace. More info: https://kubernetes.io/docs/tasks/administer-cluster/namespaces/  Possible enum values:  - `&#34;Active&#34;` means the namespace is available for use in the system  - `&#34;Terminating&#34;` means the namespace is undergoing graceful termination</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="namespacelist-v1-core">NamespaceList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#namespace-v1-core">Namespace</a> array</I></TD><TD>Items is the list of Namespace objects in the list. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-namespace-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-namespace-v1-core">Create</H2>
+<P>create a Namespace</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-namespace-v1-core">Patch</H2>
+<P>partially update the specified Namespace</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Namespace</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-namespace-v1-core">Replace</H2>
+<P>replace the specified Namespace</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Namespace</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-namespace-v1-core">Delete</H2>
+<P>delete a Namespace</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Namespace</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-namespace-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-namespace-v1-core">Read</H2>
+<P>read the specified Namespace</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Namespace</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-namespace-v1-core">List</H2>
+<P>list or watch objects of kind Namespace</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#namespacelist-v1-core">NamespaceList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-namespace-v1-core">Watch</H2>
+<P>watch changes to an object of kind Namespace. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Namespace</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-namespace-v1-core">Watch List</H2>
+<P>watch individual changes to a list of Namespace. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-namespace-v1-core-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-namespace-v1-core">Patch Status</H2>
+<P>partially update status of the specified Namespace</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Namespace</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-namespace-v1-core">Read Status</H2>
+<P>read status of the specified Namespace</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Namespace</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-namespace-v1-core">Replace Status</H2>
+<P>replace status of the specified Namespace</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Namespace</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="node-v1-core">Node v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Node</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodelist-v1-core">NodeList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#nodespec-v1-core">NodeSpec</a></I></TD><TD>Spec defines the behavior of a node. https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#nodestatus-v1-core">NodeStatus</a></I></TD><TD>Most recently observed status of the node. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="nodespec-v1-core">NodeSpec v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#node-v1-core">Node [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>configSource</CODE><BR /><I><a href="#nodeconfigsource-v1-core">NodeConfigSource</a></I></TD><TD>Deprecated. If specified, the source of the node&#39;s configuration. The DynamicKubeletConfig feature gate must be enabled for the Kubelet to use this field. This field is deprecated as of 1.22: https://git.k8s.io/enhancements/keps/sig-node/281-dynamic-kubelet-configuration</TD></TR>
+<TR><TD><CODE>externalID</CODE><BR /><I>string</I></TD><TD>Deprecated. Not all kubelets will set this field. Remove field after 1.13. see: https://issues.k8s.io/61966</TD></TR>
+<TR><TD><CODE>podCIDR</CODE><BR /><I>string</I></TD><TD>PodCIDR represents the pod IP range assigned to the node.</TD></TR>
+<TR><TD><CODE>podCIDRs</CODE><BR /><I>string array</I><BR /><B>patch strategy</B>: <I>merge</I></TD><TD>podCIDRs represents the IP ranges assigned to the node for usage by Pods on that node. If this field is specified, the 0th entry must match the podCIDR field. It may contain at most 1 value for each of IPv4 and IPv6.</TD></TR>
+<TR><TD><CODE>providerID</CODE><BR /><I>string</I></TD><TD>ID of the node assigned by the cloud provider in the format: &lt;ProviderName&gt;://&lt;ProviderSpecificNodeID&gt;</TD></TR>
+<TR><TD><CODE>taints</CODE><BR /><I><a href="#taint-v1-core">Taint</a> array</I></TD><TD>If specified, the node&#39;s taints.</TD></TR>
+<TR><TD><CODE>unschedulable</CODE><BR /><I>boolean</I></TD><TD>Unschedulable controls node schedulability of new pods. By default, node is schedulable. More info: https://kubernetes.io/docs/concepts/nodes/node/#manual-node-administration</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="nodestatus-v1-core">NodeStatus v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#node-v1-core">Node [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>addresses</CODE><BR /><I><a href="#nodeaddress-v1-core">NodeAddress</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>List of addresses reachable to the node. Queried from cloud provider, if available. More info: https://kubernetes.io/docs/concepts/nodes/node/#addresses Note: This field is declared as mergeable, but the merge key is not sufficiently unique, which can cause data corruption when it is merged. Callers should instead use a full-replacement patch. See http://pr.k8s.io/79391 for an example.</TD></TR>
+<TR><TD><CODE>allocatable</CODE><BR /><I>object</I></TD><TD>Allocatable represents the resources of a node that are available for scheduling. Defaults to Capacity.</TD></TR>
+<TR><TD><CODE>capacity</CODE><BR /><I>object</I></TD><TD>Capacity represents the total resources of a node. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#capacity</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#nodecondition-v1-core">NodeCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Conditions is an array of current observed node conditions. More info: https://kubernetes.io/docs/concepts/nodes/node/#condition</TD></TR>
+<TR><TD><CODE>config</CODE><BR /><I><a href="#nodeconfigstatus-v1-core">NodeConfigStatus</a></I></TD><TD>Status of the config assigned to the node via the dynamic Kubelet config feature.</TD></TR>
+<TR><TD><CODE>daemonEndpoints</CODE><BR /><I><a href="#nodedaemonendpoints-v1-core">NodeDaemonEndpoints</a></I></TD><TD>Endpoints of daemons running on the Node.</TD></TR>
+<TR><TD><CODE>images</CODE><BR /><I><a href="#containerimage-v1-core">ContainerImage</a> array</I></TD><TD>List of container images on this node</TD></TR>
+<TR><TD><CODE>nodeInfo</CODE><BR /><I><a href="#nodesysteminfo-v1-core">NodeSystemInfo</a></I></TD><TD>Set of ids/uuids to uniquely identify the node. More info: https://kubernetes.io/docs/concepts/nodes/node/#info</TD></TR>
+<TR><TD><CODE>phase</CODE><BR /><I>string</I></TD><TD>NodePhase is the recently observed lifecycle phase of the node. More info: https://kubernetes.io/docs/concepts/nodes/node/#phase The field is never populated, and now is deprecated.  Possible enum values:  - `&#34;Pending&#34;` means the node has been created/added by the system, but not configured.  - `&#34;Running&#34;` means the node has been configured and has Kubernetes components running.  - `&#34;Terminated&#34;` means the node has been removed from the cluster.</TD></TR>
+<TR><TD><CODE>volumesAttached</CODE><BR /><I><a href="#attachedvolume-v1-core">AttachedVolume</a> array</I></TD><TD>List of volumes that are attached to the node.</TD></TR>
+<TR><TD><CODE>volumesInUse</CODE><BR /><I>string array</I></TD><TD>List of attachable volumes in use (mounted) by the node.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="nodelist-v1-core">NodeList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#node-v1-core">Node</a> array</I></TD><TD>List of nodes</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-node-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-node-v1-core">Create</H2>
+<P>create a Node</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/nodes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#node-v1-core">Node</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-node-v1-core">Patch</H2>
+<P>partially update the specified Node</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/nodes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Node</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-node-v1-core">Replace</H2>
+<P>replace the specified Node</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/nodes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Node</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#node-v1-core">Node</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-node-v1-core">Delete</H2>
+<P>delete a Node</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/nodes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Node</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-node-v1-core">Delete Collection</H2>
+<P>delete collection of Node</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/nodes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-node-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-node-v1-core">Read</H2>
+<P>read the specified Node</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/nodes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Node</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-node-v1-core">List</H2>
+<P>list or watch objects of kind Node</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/nodes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#nodelist-v1-core">NodeList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-node-v1-core">Watch</H2>
+<P>watch changes to an object of kind Node. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/nodes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Node</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-node-v1-core">Watch List</H2>
+<P>watch individual changes to a list of Node. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/nodes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-node-v1-core-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-node-v1-core">Patch Status</H2>
+<P>partially update status of the specified Node</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/nodes/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Node</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-node-v1-core">Read Status</H2>
+<P>read status of the specified Node</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/nodes/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Node</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-node-v1-core">Replace Status</H2>
+<P>replace status of the specified Node</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/nodes/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Node</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#node-v1-core">Node</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-proxy-operations-node-v1-core-strong-"><STRONG>Proxy Operations</STRONG></H2>
+<H2 id="create-connect-proxy-node-v1-core">Create Connect Proxy</H2>
+<P>connect POST requests to proxy of Node</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/nodes/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NodeProxyOptions</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to node.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="create-connect-proxy-path-node-v1-core">Create Connect Proxy Path</H2>
+<P>connect POST requests to proxy of Node</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/nodes/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NodeProxyOptions</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to node.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-connect-proxy-node-v1-core">Delete Connect Proxy</H2>
+<P>connect DELETE requests to proxy of Node</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/nodes/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NodeProxyOptions</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to node.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-connect-proxy-path-node-v1-core">Delete Connect Proxy Path</H2>
+<P>connect DELETE requests to proxy of Node</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/nodes/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NodeProxyOptions</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to node.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="get-connect-proxy-node-v1-core">Get Connect Proxy</H2>
+<P>connect GET requests to proxy of Node</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/nodes/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NodeProxyOptions</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to node.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="get-connect-proxy-path-node-v1-core">Get Connect Proxy Path</H2>
+<P>connect GET requests to proxy of Node</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/nodes/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NodeProxyOptions</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to node.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="head-connect-proxy-node-v1-core">Head Connect Proxy</H2>
+<P>connect HEAD requests to proxy of Node</P>
+<H3>HTTP Request</H3>
+<CODE>HEAD /api/v1/nodes/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NodeProxyOptions</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to node.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="head-connect-proxy-path-node-v1-core">Head Connect Proxy Path</H2>
+<P>connect HEAD requests to proxy of Node</P>
+<H3>HTTP Request</H3>
+<CODE>HEAD /api/v1/nodes/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NodeProxyOptions</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to node.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-connect-proxy-node-v1-core">Replace Connect Proxy</H2>
+<P>connect PUT requests to proxy of Node</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/nodes/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NodeProxyOptions</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to node.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-connect-proxy-path-node-v1-core">Replace Connect Proxy Path</H2>
+<P>connect PUT requests to proxy of Node</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/nodes/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NodeProxyOptions</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to node.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="persistentvolume-v1-core">PersistentVolume v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PersistentVolume</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-bullhorn"></I> These are assigned to <a href="#pod-v1-core">Pods</a> using <a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaims</a>.</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumelist-v1-core">PersistentVolumeList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec</a></I></TD><TD>Spec defines a specification of a persistent volume owned by the cluster. Provisioned by an administrator. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistent-volumes</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#persistentvolumestatus-v1-core">PersistentVolumeStatus</a></I></TD><TD>Status represents the current information/status for the persistent volume. Populated by the system. Read-only. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistent-volumes</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="persistentvolumespec-v1-core">PersistentVolumeSpec v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolume-v1-core">PersistentVolume [core/v1]</a></LI>
+  <LI><a href="#volumeattachmentsource-v1-storage-k8s-io">VolumeAttachmentSource [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>accessModes</CODE><BR /><I>string array</I></TD><TD>AccessModes contains all ways the volume can be mounted. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes</TD></TR>
+<TR><TD><CODE>awsElasticBlockStore</CODE><BR /><I><a href="#awselasticblockstorevolumesource-v1-core">AWSElasticBlockStoreVolumeSource</a></I></TD><TD>AWSElasticBlockStore represents an AWS Disk resource that is attached to a kubelet&#39;s host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore</TD></TR>
+<TR><TD><CODE>azureDisk</CODE><BR /><I><a href="#azurediskvolumesource-v1-core">AzureDiskVolumeSource</a></I></TD><TD>AzureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.</TD></TR>
+<TR><TD><CODE>azureFile</CODE><BR /><I><a href="#azurefilepersistentvolumesource-v1-core">AzureFilePersistentVolumeSource</a></I></TD><TD>AzureFile represents an Azure File Service mount on the host and bind mount to the pod.</TD></TR>
+<TR><TD><CODE>capacity</CODE><BR /><I>object</I></TD><TD>A description of the persistent volume&#39;s resources and capacity. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#capacity</TD></TR>
+<TR><TD><CODE>cephfs</CODE><BR /><I><a href="#cephfspersistentvolumesource-v1-core">CephFSPersistentVolumeSource</a></I></TD><TD>CephFS represents a Ceph FS mount on the host that shares a pod&#39;s lifetime</TD></TR>
+<TR><TD><CODE>cinder</CODE><BR /><I><a href="#cinderpersistentvolumesource-v1-core">CinderPersistentVolumeSource</a></I></TD><TD>Cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md</TD></TR>
+<TR><TD><CODE>claimRef</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>ClaimRef is part of a bi-directional binding between PersistentVolume and PersistentVolumeClaim. Expected to be non-nil when bound. claim.VolumeName is the authoritative bind between PV and PVC. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#binding</TD></TR>
+<TR><TD><CODE>csi</CODE><BR /><I><a href="#csipersistentvolumesource-v1-core">CSIPersistentVolumeSource</a></I></TD><TD>CSI represents storage that is handled by an external CSI driver (Beta feature).</TD></TR>
+<TR><TD><CODE>fc</CODE><BR /><I><a href="#fcvolumesource-v1-core">FCVolumeSource</a></I></TD><TD>FC represents a Fibre Channel resource that is attached to a kubelet&#39;s host machine and then exposed to the pod.</TD></TR>
+<TR><TD><CODE>flexVolume</CODE><BR /><I><a href="#flexpersistentvolumesource-v1-core">FlexPersistentVolumeSource</a></I></TD><TD>FlexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin.</TD></TR>
+<TR><TD><CODE>flocker</CODE><BR /><I><a href="#flockervolumesource-v1-core">FlockerVolumeSource</a></I></TD><TD>Flocker represents a Flocker volume attached to a kubelet&#39;s host machine and exposed to the pod for its usage. This depends on the Flocker control service being running</TD></TR>
+<TR><TD><CODE>gcePersistentDisk</CODE><BR /><I><a href="#gcepersistentdiskvolumesource-v1-core">GCEPersistentDiskVolumeSource</a></I></TD><TD>GCEPersistentDisk represents a GCE Disk resource that is attached to a kubelet&#39;s host machine and then exposed to the pod. Provisioned by an admin. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk</TD></TR>
+<TR><TD><CODE>glusterfs</CODE><BR /><I><a href="#glusterfspersistentvolumesource-v1-core">GlusterfsPersistentVolumeSource</a></I></TD><TD>Glusterfs represents a Glusterfs volume that is attached to a host and exposed to the pod. Provisioned by an admin. More info: https://examples.k8s.io/volumes/glusterfs/README.md</TD></TR>
+<TR><TD><CODE>hostPath</CODE><BR /><I><a href="#hostpathvolumesource-v1-core">HostPathVolumeSource</a></I></TD><TD>HostPath represents a directory on the host. Provisioned by a developer or tester. This is useful for single-node development and testing only! On-host storage is not supported in any way and WILL NOT WORK in a multi-node cluster. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath</TD></TR>
+<TR><TD><CODE>iscsi</CODE><BR /><I><a href="#iscsipersistentvolumesource-v1-core">ISCSIPersistentVolumeSource</a></I></TD><TD>ISCSI represents an ISCSI Disk resource that is attached to a kubelet&#39;s host machine and then exposed to the pod. Provisioned by an admin.</TD></TR>
+<TR><TD><CODE>local</CODE><BR /><I><a href="#localvolumesource-v1-core">LocalVolumeSource</a></I></TD><TD>Local represents directly-attached storage with node affinity</TD></TR>
+<TR><TD><CODE>mountOptions</CODE><BR /><I>string array</I></TD><TD>A list of mount options, e.g. [&#34;ro&#34;, &#34;soft&#34;]. Not validated - mount will simply fail if one is invalid. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes/#mount-options</TD></TR>
+<TR><TD><CODE>nfs</CODE><BR /><I><a href="#nfsvolumesource-v1-core">NFSVolumeSource</a></I></TD><TD>NFS represents an NFS mount on the host. Provisioned by an admin. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs</TD></TR>
+<TR><TD><CODE>nodeAffinity</CODE><BR /><I><a href="#volumenodeaffinity-v1-core">VolumeNodeAffinity</a></I></TD><TD>NodeAffinity defines constraints that limit what nodes this volume can be accessed from. This field influences the scheduling of pods that use this volume.</TD></TR>
+<TR><TD><CODE>persistentVolumeReclaimPolicy</CODE><BR /><I>string</I></TD><TD>What happens to a persistent volume when released from its claim. Valid options are Retain (default for manually created PersistentVolumes), Delete (default for dynamically provisioned PersistentVolumes), and Recycle (deprecated). Recycle must be supported by the volume plugin underlying this PersistentVolume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#reclaiming  Possible enum values:  - `&#34;Delete&#34;` means the volume will be deleted from Kubernetes on release from its claim. The volume plugin must support Deletion.  - `&#34;Recycle&#34;` means the volume will be recycled back into the pool of unbound persistent volumes on release from its claim. The volume plugin must support Recycling.  - `&#34;Retain&#34;` means the volume will be left in its current phase (Released) for manual reclamation by the administrator. The default policy is Retain.</TD></TR>
+<TR><TD><CODE>photonPersistentDisk</CODE><BR /><I><a href="#photonpersistentdiskvolumesource-v1-core">PhotonPersistentDiskVolumeSource</a></I></TD><TD>PhotonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine</TD></TR>
+<TR><TD><CODE>portworxVolume</CODE><BR /><I><a href="#portworxvolumesource-v1-core">PortworxVolumeSource</a></I></TD><TD>PortworxVolume represents a portworx volume attached and mounted on kubelets host machine</TD></TR>
+<TR><TD><CODE>quobyte</CODE><BR /><I><a href="#quobytevolumesource-v1-core">QuobyteVolumeSource</a></I></TD><TD>Quobyte represents a Quobyte mount on the host that shares a pod&#39;s lifetime</TD></TR>
+<TR><TD><CODE>rbd</CODE><BR /><I><a href="#rbdpersistentvolumesource-v1-core">RBDPersistentVolumeSource</a></I></TD><TD>RBD represents a Rados Block Device mount on the host that shares a pod&#39;s lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md</TD></TR>
+<TR><TD><CODE>scaleIO</CODE><BR /><I><a href="#scaleiopersistentvolumesource-v1-core">ScaleIOPersistentVolumeSource</a></I></TD><TD>ScaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.</TD></TR>
+<TR><TD><CODE>storageClassName</CODE><BR /><I>string</I></TD><TD>Name of StorageClass to which this persistent volume belongs. Empty value means that this volume does not belong to any StorageClass.</TD></TR>
+<TR><TD><CODE>storageos</CODE><BR /><I><a href="#storageospersistentvolumesource-v1-core">StorageOSPersistentVolumeSource</a></I></TD><TD>StorageOS represents a StorageOS volume that is attached to the kubelet&#39;s host machine and mounted into the pod More info: https://examples.k8s.io/volumes/storageos/README.md</TD></TR>
+<TR><TD><CODE>volumeMode</CODE><BR /><I>string</I></TD><TD>volumeMode defines if a volume is intended to be used with a formatted filesystem or to remain in raw block state. Value of Filesystem is implied when not included in spec.</TD></TR>
+<TR><TD><CODE>vsphereVolume</CODE><BR /><I><a href="#vspherevirtualdiskvolumesource-v1-core">VsphereVirtualDiskVolumeSource</a></I></TD><TD>VsphereVolume represents a vSphere volume attached and mounted on kubelets host machine</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="persistentvolumestatus-v1-core">PersistentVolumeStatus v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolume-v1-core">PersistentVolume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>A human-readable message indicating details about why the volume is in this state.</TD></TR>
+<TR><TD><CODE>phase</CODE><BR /><I>string</I></TD><TD>Phase indicates if a volume is available, bound to a claim, or released by a claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#phase  Possible enum values:  - `&#34;Available&#34;` used for PersistentVolumes that are not yet bound Available volumes are held by the binder and matched to PersistentVolumeClaims  - `&#34;Bound&#34;` used for PersistentVolumes that are bound  - `&#34;Failed&#34;` used for PersistentVolumes that failed to be correctly recycled or deleted after being released from a claim  - `&#34;Pending&#34;` used for PersistentVolumes that are not available  - `&#34;Released&#34;` used for PersistentVolumes where the bound PersistentVolumeClaim was deleted released volumes must be recycled before becoming available again this phase is used by the persistent volume claim binder to signal to another process to reclaim the resource</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>Reason is a brief CamelCase string that describes any failure and is meant for machine parsing and tidy display in the CLI.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="persistentvolumelist-v1-core">PersistentVolumeList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#persistentvolume-v1-core">PersistentVolume</a> array</I></TD><TD>List of persistent volumes. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-persistentvolume-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-persistentvolume-v1-core">Create</H2>
+<P>create a PersistentVolume</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/persistentvolumes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-persistentvolume-v1-core">Patch</H2>
+<P>partially update the specified PersistentVolume</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/persistentvolumes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolume</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-persistentvolume-v1-core">Replace</H2>
+<P>replace the specified PersistentVolume</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/persistentvolumes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolume</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-persistentvolume-v1-core">Delete</H2>
+<P>delete a PersistentVolume</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/persistentvolumes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolume</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-persistentvolume-v1-core">Delete Collection</H2>
+<P>delete collection of PersistentVolume</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/persistentvolumes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-persistentvolume-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-persistentvolume-v1-core">Read</H2>
+<P>read the specified PersistentVolume</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/persistentvolumes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolume</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-persistentvolume-v1-core">List</H2>
+<P>list or watch objects of kind PersistentVolume</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/persistentvolumes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolumelist-v1-core">PersistentVolumeList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-persistentvolume-v1-core">Watch</H2>
+<P>watch changes to an object of kind PersistentVolume. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/persistentvolumes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolume</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-persistentvolume-v1-core">Watch List</H2>
+<P>watch individual changes to a list of PersistentVolume. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/persistentvolumes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-persistentvolume-v1-core-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-persistentvolume-v1-core">Patch Status</H2>
+<P>partially update status of the specified PersistentVolume</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/persistentvolumes/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolume</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-persistentvolume-v1-core">Read Status</H2>
+<P>read status of the specified PersistentVolume</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/persistentvolumes/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolume</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-persistentvolume-v1-core">Replace Status</H2>
+<P>replace status of the specified PersistentVolume</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/persistentvolumes/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolume</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>PriorityLevelConfiguration</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#prioritylevelconfigurationlist-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationList [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>`metadata` is the standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#prioritylevelconfigurationspec-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationSpec</a></I></TD><TD>`spec` is the specification of the desired behavior of a &#34;request-priority&#34;. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#prioritylevelconfigurationstatus-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationStatus</a></I></TD><TD>`status` is the current status of a &#34;request-priority&#34;. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="prioritylevelconfigurationspec-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationSpec v1beta1 flowcontrol</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>limited</CODE><BR /><I><a href="#limitedprioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">LimitedPriorityLevelConfiguration</a></I></TD><TD>`limited` specifies how requests are handled for a Limited priority level. This field must be non-empty if and only if `type` is `&#34;Limited&#34;`.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>`type` indicates whether this priority level is subject to limitation on request execution.  A value of `&#34;Exempt&#34;` means that requests of this priority level are not subject to a limit (and thus are never queued) and do not detract from the capacity made available to other priority levels.  A value of `&#34;Limited&#34;` means that (a) requests of this priority level _are_ subject to limits and (b) some of the server&#39;s limited capacity is made available exclusively to this priority level. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="prioritylevelconfigurationstatus-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationStatus v1beta1 flowcontrol</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#prioritylevelconfigurationcondition-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationCondition</a> array</I></TD><TD>`conditions` is the current state of &#34;request-priority&#34;.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="prioritylevelconfigurationlist-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationList v1beta1 flowcontrol</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a> array</I></TD><TD>`items` is a list of request-priorities.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>`metadata` is the standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Create</H2>
+<P>create a PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Patch</H2>
+<P>partially update the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Replace</H2>
+<P>replace the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Delete</H2>
+<P>delete a PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Delete Collection</H2>
+<P>delete collection of PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Read</H2>
+<P>read the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">List</H2>
+<P>list or watch objects of kind PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfigurationlist-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Watch</H2>
+<P>watch changes to an object of kind PriorityLevelConfiguration. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/watch/prioritylevelconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of PriorityLevelConfiguration. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/watch/prioritylevelconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Patch Status</H2>
+<P>partially update status of the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Read Status</H2>
+<P>read status of the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Replace Status</H2>
+<P>replace status of the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="resourcequota-v1-core">ResourceQuota v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ResourceQuota</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#resourcequotalist-v1-core">ResourceQuotaList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#resourcequotaspec-v1-core">ResourceQuotaSpec</a></I></TD><TD>Spec defines the desired quota. https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#resourcequotastatus-v1-core">ResourceQuotaStatus</a></I></TD><TD>Status defines the actual enforced quota and its current usage. https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="resourcequotaspec-v1-core">ResourceQuotaSpec v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#resourcequota-v1-core">ResourceQuota [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>hard</CODE><BR /><I>object</I></TD><TD>hard is the set of desired hard limits for each named resource. More info: https://kubernetes.io/docs/concepts/policy/resource-quotas/</TD></TR>
+<TR><TD><CODE>scopeSelector</CODE><BR /><I><a href="#scopeselector-v1-core">ScopeSelector</a></I></TD><TD>scopeSelector is also a collection of filters like scopes that must match each object tracked by a quota but expressed using ScopeSelectorOperator in combination with possible values. For a resource to match, both scopes AND scopeSelector (if specified in spec), must be matched.</TD></TR>
+<TR><TD><CODE>scopes</CODE><BR /><I>string array</I></TD><TD>A collection of filters that must match each object tracked by a quota. If not specified, the quota matches all objects.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="resourcequotastatus-v1-core">ResourceQuotaStatus v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#resourcequota-v1-core">ResourceQuota [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>hard</CODE><BR /><I>object</I></TD><TD>Hard is the set of enforced hard limits for each named resource. More info: https://kubernetes.io/docs/concepts/policy/resource-quotas/</TD></TR>
+<TR><TD><CODE>used</CODE><BR /><I>object</I></TD><TD>Used is the current observed total usage of the resource in the namespace.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="resourcequotalist-v1-core">ResourceQuotaList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#resourcequota-v1-core">ResourceQuota</a> array</I></TD><TD>Items is a list of ResourceQuota objects. More info: https://kubernetes.io/docs/concepts/policy/resource-quotas/</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-resourcequota-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-resourcequota-v1-core">Create</H2>
+<P>create a ResourceQuota</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/resourcequotas</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-resourcequota-v1-core">Patch</H2>
+<P>partially update the specified ResourceQuota</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/resourcequotas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ResourceQuota</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-resourcequota-v1-core">Replace</H2>
+<P>replace the specified ResourceQuota</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/resourcequotas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ResourceQuota</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-resourcequota-v1-core">Delete</H2>
+<P>delete a ResourceQuota</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/resourcequotas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ResourceQuota</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-resourcequota-v1-core">Delete Collection</H2>
+<P>delete collection of ResourceQuota</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/resourcequotas</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-resourcequota-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-resourcequota-v1-core">Read</H2>
+<P>read the specified ResourceQuota</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/resourcequotas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ResourceQuota</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-resourcequota-v1-core">List</H2>
+<P>list or watch objects of kind ResourceQuota</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/resourcequotas</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#resourcequotalist-v1-core">ResourceQuotaList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-resourcequota-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind ResourceQuota</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/resourcequotas</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#resourcequotalist-v1-core">ResourceQuotaList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-resourcequota-v1-core">Watch</H2>
+<P>watch changes to an object of kind ResourceQuota. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/resourcequotas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ResourceQuota</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-resourcequota-v1-core">Watch List</H2>
+<P>watch individual changes to a list of ResourceQuota. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/resourcequotas</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-resourcequota-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of ResourceQuota. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/resourcequotas</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-resourcequota-v1-core-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-resourcequota-v1-core">Patch Status</H2>
+<P>partially update status of the specified ResourceQuota</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/resourcequotas/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ResourceQuota</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-resourcequota-v1-core">Read Status</H2>
+<P>read status of the specified ResourceQuota</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/resourcequotas/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ResourceQuota</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-resourcequota-v1-core">Replace Status</H2>
+<P>replace status of the specified ResourceQuota</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/resourcequotas/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ResourceQuota</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="role-v1-rbac-authorization-k8s-io">Role v1 rbac.authorization.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rbac.authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Role</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#rolelist-v1-rbac-authorization-k8s-io">RoleList [rbac/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata.</TD></TR>
+<TR><TD><CODE>rules</CODE><BR /><I><a href="#policyrule-v1-rbac-authorization-k8s-io">PolicyRule</a> array</I></TD><TD>Rules holds all the PolicyRules for this Role</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="rolelist-v1-rbac-authorization-k8s-io">RoleList v1 rbac</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#role-v1-rbac-authorization-k8s-io">Role</a> array</I></TD><TD>Items is a list of Roles</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard object&#39;s metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-role-v1-rbac-authorization-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-role-v1-rbac-authorization-k8s-io">Create</H2>
+<P>create a Role</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#role-v1-rbac-authorization-k8s-io">Role</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#role-v1-rbac-authorization-k8s-io">Role</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#role-v1-rbac-authorization-k8s-io">Role</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#role-v1-rbac-authorization-k8s-io">Role</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-role-v1-rbac-authorization-k8s-io">Patch</H2>
+<P>partially update the specified Role</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Role</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#role-v1-rbac-authorization-k8s-io">Role</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#role-v1-rbac-authorization-k8s-io">Role</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-role-v1-rbac-authorization-k8s-io">Replace</H2>
+<P>replace the specified Role</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Role</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#role-v1-rbac-authorization-k8s-io">Role</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#role-v1-rbac-authorization-k8s-io">Role</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#role-v1-rbac-authorization-k8s-io">Role</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-role-v1-rbac-authorization-k8s-io">Delete</H2>
+<P>delete a Role</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Role</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-role-v1-rbac-authorization-k8s-io">Delete Collection</H2>
+<P>delete collection of Role</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-role-v1-rbac-authorization-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-role-v1-rbac-authorization-k8s-io">Read</H2>
+<P>read the specified Role</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Role</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#role-v1-rbac-authorization-k8s-io">Role</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-role-v1-rbac-authorization-k8s-io">List</H2>
+<P>list or watch objects of kind Role</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#rolelist-v1-rbac-authorization-k8s-io">RoleList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-role-v1-rbac-authorization-k8s-io">List All Namespaces</H2>
+<P>list or watch objects of kind Role</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/roles</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#rolelist-v1-rbac-authorization-k8s-io">RoleList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-role-v1-rbac-authorization-k8s-io">Watch</H2>
+<P>watch changes to an object of kind Role. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/watch/namespaces/{namespace}/roles/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Role</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-role-v1-rbac-authorization-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of Role. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/watch/namespaces/{namespace}/roles</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-role-v1-rbac-authorization-k8s-io">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Role. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/watch/roles</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="rolebinding-v1-rbac-authorization-k8s-io">RoleBinding v1 rbac.authorization.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rbac.authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>RoleBinding</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#rolebindinglist-v1-rbac-authorization-k8s-io">RoleBindingList [rbac/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata.</TD></TR>
+<TR><TD><CODE>roleRef</CODE><BR /><I><a href="#roleref-v1-rbac-authorization-k8s-io">RoleRef</a></I></TD><TD>RoleRef can reference a Role in the current namespace or a ClusterRole in the global namespace. If the RoleRef cannot be resolved, the Authorizer must return an error.</TD></TR>
+<TR><TD><CODE>subjects</CODE><BR /><I><a href="#subject-v1-rbac-authorization-k8s-io">Subject</a> array</I></TD><TD>Subjects holds references to the objects the role applies to.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="rolebindinglist-v1-rbac-authorization-k8s-io">RoleBindingList v1 rbac</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding</a> array</I></TD><TD>Items is a list of RoleBindings</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard object&#39;s metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-rolebinding-v1-rbac-authorization-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-rolebinding-v1-rbac-authorization-k8s-io">Create</H2>
+<P>create a RoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-rolebinding-v1-rbac-authorization-k8s-io">Patch</H2>
+<P>partially update the specified RoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RoleBinding</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-rolebinding-v1-rbac-authorization-k8s-io">Replace</H2>
+<P>replace the specified RoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RoleBinding</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-rolebinding-v1-rbac-authorization-k8s-io">Delete</H2>
+<P>delete a RoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RoleBinding</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-rolebinding-v1-rbac-authorization-k8s-io">Delete Collection</H2>
+<P>delete collection of RoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-rolebinding-v1-rbac-authorization-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-rolebinding-v1-rbac-authorization-k8s-io">Read</H2>
+<P>read the specified RoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RoleBinding</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-rolebinding-v1-rbac-authorization-k8s-io">List</H2>
+<P>list or watch objects of kind RoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#rolebindinglist-v1-rbac-authorization-k8s-io">RoleBindingList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-rolebinding-v1-rbac-authorization-k8s-io">List All Namespaces</H2>
+<P>list or watch objects of kind RoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/rolebindings</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#rolebindinglist-v1-rbac-authorization-k8s-io">RoleBindingList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-rolebinding-v1-rbac-authorization-k8s-io">Watch</H2>
+<P>watch changes to an object of kind RoleBinding. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/watch/namespaces/{namespace}/rolebindings/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RoleBinding</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-rolebinding-v1-rbac-authorization-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of RoleBinding. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/watch/namespaces/{namespace}/rolebindings</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-rolebinding-v1-rbac-authorization-k8s-io">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of RoleBinding. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/watch/rolebindings</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="runtimeclass-v1-node-k8s-io">RuntimeClass v1 node.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>node.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>RuntimeClass</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#runtimeclass-v1beta1-node-k8s-io">v1beta1</a>
+<a href="#runtimeclass-v1alpha1-node-k8s-io">v1alpha1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#runtimeclasslist-v1-node-k8s-io">RuntimeClassList [node/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>handler</CODE><BR /><I>string</I></TD><TD>Handler specifies the underlying runtime and configuration that the CRI implementation will use to handle pods of this class. The possible values are specific to the node &amp; CRI configuration.  It is assumed that all handlers are available on every node, and handlers of the same name are equivalent on every node. For example, a handler called &#34;runc&#34; might specify that the runc OCI runtime (using native Linux containers) will be used to run the containers in a pod. The Handler must be lowercase, conform to the DNS Label (RFC 1123) requirements, and is immutable.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>overhead</CODE><BR /><I><a href="#overhead-v1-node-k8s-io">Overhead</a></I></TD><TD>Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. For more details, see  https://kubernetes.io/docs/concepts/scheduling-eviction/pod-overhead/ This field is in beta starting v1.18 and is only honored by servers that enable the PodOverhead feature.</TD></TR>
+<TR><TD><CODE>scheduling</CODE><BR /><I><a href="#scheduling-v1-node-k8s-io">Scheduling</a></I></TD><TD>Scheduling holds the scheduling constraints to ensure that pods running with this RuntimeClass are scheduled to nodes that support it. If scheduling is nil, this RuntimeClass is assumed to be supported by all nodes.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="runtimeclasslist-v1-node-k8s-io">RuntimeClassList v1 node</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass</a> array</I></TD><TD>Items is a list of schema objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-runtimeclass-v1-node-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-runtimeclass-v1-node-k8s-io">Create</H2>
+<P>create a RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/node.k8s.io/v1/runtimeclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-runtimeclass-v1-node-k8s-io">Patch</H2>
+<P>partially update the specified RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/node.k8s.io/v1/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-runtimeclass-v1-node-k8s-io">Replace</H2>
+<P>replace the specified RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/node.k8s.io/v1/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-runtimeclass-v1-node-k8s-io">Delete</H2>
+<P>delete a RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/node.k8s.io/v1/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-runtimeclass-v1-node-k8s-io">Delete Collection</H2>
+<P>delete collection of RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/node.k8s.io/v1/runtimeclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-runtimeclass-v1-node-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-runtimeclass-v1-node-k8s-io">Read</H2>
+<P>read the specified RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/node.k8s.io/v1/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-runtimeclass-v1-node-k8s-io">List</H2>
+<P>list or watch objects of kind RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/node.k8s.io/v1/runtimeclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclasslist-v1-node-k8s-io">RuntimeClassList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-runtimeclass-v1-node-k8s-io">Watch</H2>
+<P>watch changes to an object of kind RuntimeClass. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/node.k8s.io/v1/watch/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-runtimeclass-v1-node-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of RuntimeClass. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/node.k8s.io/v1/watch/runtimeclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="selfsubjectaccessreview-v1-authorization-k8s-io">SelfSubjectAccessReview v1 authorization.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SelfSubjectAccessReview</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#selfsubjectaccessreviewspec-v1-authorization-k8s-io">SelfSubjectAccessReviewSpec</a></I></TD><TD>Spec holds information about the request being evaluated.  user and groups must be empty</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#subjectaccessreviewstatus-v1-authorization-k8s-io">SubjectAccessReviewStatus</a></I></TD><TD>Status is filled in by the server and indicates whether the request is allowed or not</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="selfsubjectaccessreviewspec-v1-authorization-k8s-io">SelfSubjectAccessReviewSpec v1 authorization</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#selfsubjectaccessreview-v1-authorization-k8s-io">SelfSubjectAccessReview [authorization/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nonResourceAttributes</CODE><BR /><I><a href="#nonresourceattributes-v1-authorization-k8s-io">NonResourceAttributes</a></I></TD><TD>NonResourceAttributes describes information for a non-resource access request</TD></TR>
+<TR><TD><CODE>resourceAttributes</CODE><BR /><I><a href="#resourceattributes-v1-authorization-k8s-io">ResourceAttributes</a></I></TD><TD>ResourceAuthorizationAttributes describes information for a resource access request</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-selfsubjectaccessreview-v1-authorization-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-selfsubjectaccessreview-v1-authorization-k8s-io">Create</H2>
+<P>create a SelfSubjectAccessReview</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/authorization.k8s.io/v1/selfsubjectaccessreviews</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#selfsubjectaccessreview-v1-authorization-k8s-io">SelfSubjectAccessReview</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#selfsubjectaccessreview-v1-authorization-k8s-io">SelfSubjectAccessReview</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#selfsubjectaccessreview-v1-authorization-k8s-io">SelfSubjectAccessReview</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#selfsubjectaccessreview-v1-authorization-k8s-io">SelfSubjectAccessReview</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="selfsubjectrulesreview-v1-authorization-k8s-io">SelfSubjectRulesReview v1 authorization.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SelfSubjectRulesReview</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#selfsubjectrulesreviewspec-v1-authorization-k8s-io">SelfSubjectRulesReviewSpec</a></I></TD><TD>Spec holds information about the request being evaluated.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#subjectrulesreviewstatus-v1-authorization-k8s-io">SubjectRulesReviewStatus</a></I></TD><TD>Status is filled in by the server and indicates the set of actions a user can perform.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="selfsubjectrulesreviewspec-v1-authorization-k8s-io">SelfSubjectRulesReviewSpec v1 authorization</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#selfsubjectrulesreview-v1-authorization-k8s-io">SelfSubjectRulesReview [authorization/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>Namespace to evaluate rules for. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-selfsubjectrulesreview-v1-authorization-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-selfsubjectrulesreview-v1-authorization-k8s-io">Create</H2>
+<P>create a SelfSubjectRulesReview</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/authorization.k8s.io/v1/selfsubjectrulesreviews</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#selfsubjectrulesreview-v1-authorization-k8s-io">SelfSubjectRulesReview</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#selfsubjectrulesreview-v1-authorization-k8s-io">SelfSubjectRulesReview</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#selfsubjectrulesreview-v1-authorization-k8s-io">SelfSubjectRulesReview</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#selfsubjectrulesreview-v1-authorization-k8s-io">SelfSubjectRulesReview</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="serviceaccount-v1-core">ServiceAccount v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ServiceAccount</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#serviceaccountlist-v1-core">ServiceAccountList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>automountServiceAccountToken</CODE><BR /><I>boolean</I></TD><TD>AutomountServiceAccountToken indicates whether pods running as this service account should have an API token automatically mounted. Can be overridden at the pod level.</TD></TR>
+<TR><TD><CODE>imagePullSecrets</CODE><BR /><I><a href="#localobjectreference-v1-core">LocalObjectReference</a> array</I></TD><TD>ImagePullSecrets is a list of references to secrets in the same namespace to use for pulling any images in pods that reference this ServiceAccount. ImagePullSecrets are distinct from Secrets because Secrets can be mounted in the pod, but ImagePullSecrets are only accessed by the kubelet. More info: https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>secrets</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>name</I></TD><TD>Secrets is the list of secrets allowed to be used by pods running using this ServiceAccount. More info: https://kubernetes.io/docs/concepts/configuration/secret</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="serviceaccountlist-v1-core">ServiceAccountList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#serviceaccount-v1-core">ServiceAccount</a> array</I></TD><TD>List of ServiceAccounts. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-serviceaccount-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-serviceaccount-v1-core">Create</H2>
+<P>create a ServiceAccount</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/serviceaccounts</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-serviceaccount-v1-core">Patch</H2>
+<P>partially update the specified ServiceAccount</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/serviceaccounts/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceAccount</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-serviceaccount-v1-core">Replace</H2>
+<P>replace the specified ServiceAccount</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/serviceaccounts/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceAccount</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-serviceaccount-v1-core">Delete</H2>
+<P>delete a ServiceAccount</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/serviceaccounts/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceAccount</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-serviceaccount-v1-core">Delete Collection</H2>
+<P>delete collection of ServiceAccount</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/serviceaccounts</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-serviceaccount-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-serviceaccount-v1-core">Read</H2>
+<P>read the specified ServiceAccount</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/serviceaccounts/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceAccount</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-serviceaccount-v1-core">List</H2>
+<P>list or watch objects of kind ServiceAccount</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/serviceaccounts</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#serviceaccountlist-v1-core">ServiceAccountList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-serviceaccount-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind ServiceAccount</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/serviceaccounts</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#serviceaccountlist-v1-core">ServiceAccountList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-serviceaccount-v1-core">Watch</H2>
+<P>watch changes to an object of kind ServiceAccount. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/serviceaccounts/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceAccount</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-serviceaccount-v1-core">Watch List</H2>
+<P>watch individual changes to a list of ServiceAccount. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/serviceaccounts</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-serviceaccount-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of ServiceAccount. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/serviceaccounts</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion v1alpha1 internal.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>internal.apiserver.k8s.io</CODE></TD><TD><CODE>v1alpha1</CODE></TD><TD><CODE>StorageVersion</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#storageversionlist-v1alpha1-internal-apiserver-k8s-io">StorageVersionList [apiserverinternal/v1alpha1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>The name is &lt;group&gt;.&lt;resource&gt;.</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#storageversionspec-v1alpha1-internal-apiserver-k8s-io">StorageVersionSpec</a></I></TD><TD>Spec is an empty spec. It is here to comply with Kubernetes API style.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#storageversionstatus-v1alpha1-internal-apiserver-k8s-io">StorageVersionStatus</a></I></TD><TD>API server instances report the version they can decode and the version they encode objects to when persisting objects in the backend.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="storageversionspec-v1alpha1-internal-apiserver-k8s-io">StorageVersionSpec v1alpha1 apiserverinternal</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion [apiserverinternal/v1alpha1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+</TBODY>
+</TABLE>
+<H3 id="storageversionstatus-v1alpha1-internal-apiserver-k8s-io">StorageVersionStatus v1alpha1 apiserverinternal</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion [apiserverinternal/v1alpha1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>commonEncodingVersion</CODE><BR /><I>string</I></TD><TD>If all API server instances agree on the same encoding storage version, then this field is set to that version. Otherwise this field is left empty. API servers should finish updating its storageVersionStatus entry before serving write operations, so that this field will be in sync with the reality.</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#storageversioncondition-v1alpha1-internal-apiserver-k8s-io">StorageVersionCondition</a> array</I></TD><TD>The latest available observations of the storageVersion&#39;s state.</TD></TR>
+<TR><TD><CODE>storageVersions</CODE><BR /><I><a href="#serverstorageversion-v1alpha1-internal-apiserver-k8s-io">ServerStorageVersion</a> array</I></TD><TD>The reported versions per API server instance.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="storageversionlist-v1alpha1-internal-apiserver-k8s-io">StorageVersionList v1alpha1 apiserverinternal</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a> array</I></TD><TD>Items holds a list of StorageVersion</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-storageversion-v1alpha1-internal-apiserver-k8s-io">Create</H2>
+<P>create a StorageVersion</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/internal.apiserver.k8s.io/v1alpha1/storageversions</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-storageversion-v1alpha1-internal-apiserver-k8s-io">Patch</H2>
+<P>partially update the specified StorageVersion</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/internal.apiserver.k8s.io/v1alpha1/storageversions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageVersion</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-storageversion-v1alpha1-internal-apiserver-k8s-io">Replace</H2>
+<P>replace the specified StorageVersion</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/internal.apiserver.k8s.io/v1alpha1/storageversions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageVersion</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-storageversion-v1alpha1-internal-apiserver-k8s-io">Delete</H2>
+<P>delete a StorageVersion</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/internal.apiserver.k8s.io/v1alpha1/storageversions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageVersion</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-storageversion-v1alpha1-internal-apiserver-k8s-io">Delete Collection</H2>
+<P>delete collection of StorageVersion</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/internal.apiserver.k8s.io/v1alpha1/storageversions</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-storageversion-v1alpha1-internal-apiserver-k8s-io">Read</H2>
+<P>read the specified StorageVersion</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/internal.apiserver.k8s.io/v1alpha1/storageversions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageVersion</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-storageversion-v1alpha1-internal-apiserver-k8s-io">List</H2>
+<P>list or watch objects of kind StorageVersion</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/internal.apiserver.k8s.io/v1alpha1/storageversions</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageversionlist-v1alpha1-internal-apiserver-k8s-io">StorageVersionList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-storageversion-v1alpha1-internal-apiserver-k8s-io">Watch</H2>
+<P>watch changes to an object of kind StorageVersion. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/internal.apiserver.k8s.io/v1alpha1/watch/storageversions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageVersion</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-storageversion-v1alpha1-internal-apiserver-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of StorageVersion. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/internal.apiserver.k8s.io/v1alpha1/watch/storageversions</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-storageversion-v1alpha1-internal-apiserver-k8s-io">Patch Status</H2>
+<P>partially update status of the specified StorageVersion</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/internal.apiserver.k8s.io/v1alpha1/storageversions/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageVersion</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-storageversion-v1alpha1-internal-apiserver-k8s-io">Read Status</H2>
+<P>read status of the specified StorageVersion</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/internal.apiserver.k8s.io/v1alpha1/storageversions/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageVersion</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-storageversion-v1alpha1-internal-apiserver-k8s-io">Replace Status</H2>
+<P>replace status of the specified StorageVersion</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/internal.apiserver.k8s.io/v1alpha1/storageversions/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageVersion</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="subjectaccessreview-v1-authorization-k8s-io">SubjectAccessReview v1 authorization.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SubjectAccessReview</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#subjectaccessreviewspec-v1-authorization-k8s-io">SubjectAccessReviewSpec</a></I></TD><TD>Spec holds information about the request being evaluated</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#subjectaccessreviewstatus-v1-authorization-k8s-io">SubjectAccessReviewStatus</a></I></TD><TD>Status is filled in by the server and indicates whether the request is allowed or not</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="subjectaccessreviewspec-v1-authorization-k8s-io">SubjectAccessReviewSpec v1 authorization</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#localsubjectaccessreview-v1-authorization-k8s-io">LocalSubjectAccessReview [authorization/v1]</a></LI>
+  <LI><a href="#subjectaccessreview-v1-authorization-k8s-io">SubjectAccessReview [authorization/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>extra</CODE><BR /><I>object</I></TD><TD>Extra corresponds to the user.Info.GetExtra() method from the authenticator.  Since that is input to the authorizer it needs a reflection here.</TD></TR>
+<TR><TD><CODE>groups</CODE><BR /><I>string array</I></TD><TD>Groups is the groups you&#39;re testing for.</TD></TR>
+<TR><TD><CODE>nonResourceAttributes</CODE><BR /><I><a href="#nonresourceattributes-v1-authorization-k8s-io">NonResourceAttributes</a></I></TD><TD>NonResourceAttributes describes information for a non-resource access request</TD></TR>
+<TR><TD><CODE>resourceAttributes</CODE><BR /><I><a href="#resourceattributes-v1-authorization-k8s-io">ResourceAttributes</a></I></TD><TD>ResourceAuthorizationAttributes describes information for a resource access request</TD></TR>
+<TR><TD><CODE>uid</CODE><BR /><I>string</I></TD><TD>UID information about the requesting user.</TD></TR>
+<TR><TD><CODE>user</CODE><BR /><I>string</I></TD><TD>User is the user you&#39;re testing for. If you specify &#34;User&#34; but not &#34;Groups&#34;, then is it interpreted as &#34;What if User were not a member of any groups</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="subjectaccessreviewstatus-v1-authorization-k8s-io">SubjectAccessReviewStatus v1 authorization</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#localsubjectaccessreview-v1-authorization-k8s-io">LocalSubjectAccessReview [authorization/v1]</a></LI>
+  <LI><a href="#selfsubjectaccessreview-v1-authorization-k8s-io">SelfSubjectAccessReview [authorization/v1]</a></LI>
+  <LI><a href="#subjectaccessreview-v1-authorization-k8s-io">SubjectAccessReview [authorization/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowed</CODE><BR /><I>boolean</I></TD><TD>Allowed is required. True if the action would be allowed, false otherwise.</TD></TR>
+<TR><TD><CODE>denied</CODE><BR /><I>boolean</I></TD><TD>Denied is optional. True if the action would be denied, otherwise false. If both allowed is false and denied is false, then the authorizer has no opinion on whether to authorize the action. Denied may not be true if Allowed is true.</TD></TR>
+<TR><TD><CODE>evaluationError</CODE><BR /><I>string</I></TD><TD>EvaluationError is an indication that some error occurred during the authorization check. It is entirely possible to get an error and be able to continue determine authorization status in spite of it. For instance, RBAC can be missing a role, but enough roles are still present and bound to reason about the request.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>Reason is optional.  It indicates why a request was allowed or denied.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-subjectaccessreview-v1-authorization-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-subjectaccessreview-v1-authorization-k8s-io">Create</H2>
+<P>create a SubjectAccessReview</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/authorization.k8s.io/v1/subjectaccessreviews</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#subjectaccessreview-v1-authorization-k8s-io">SubjectAccessReview</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#subjectaccessreview-v1-authorization-k8s-io">SubjectAccessReview</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#subjectaccessreview-v1-authorization-k8s-io">SubjectAccessReview</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#subjectaccessreview-v1-authorization-k8s-io">SubjectAccessReview</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="tokenrequest-v1-authentication-k8s-io">TokenRequest v1 authentication.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authentication.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>TokenRequest</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#tokenrequestspec-v1-authentication-k8s-io">TokenRequestSpec</a></I></TD><TD>Spec holds information about the request being evaluated</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#tokenrequeststatus-v1-authentication-k8s-io">TokenRequestStatus</a></I></TD><TD>Status is filled in by the server and indicates whether the token can be authenticated.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="tokenrequestspec-v1-authentication-k8s-io">TokenRequestSpec v1 authentication</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#tokenrequest-v1-authentication-k8s-io">TokenRequest [authentication/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>audiences</CODE><BR /><I>string array</I></TD><TD>Audiences are the intendend audiences of the token. A recipient of a token must identitfy themself with an identifier in the list of audiences of the token, and otherwise should reject the token. A token issued for multiple audiences may be used to authenticate against any of the audiences listed but implies a high degree of trust between the target audiences.</TD></TR>
+<TR><TD><CODE>boundObjectRef</CODE><BR /><I><a href="#boundobjectreference-v1-authentication-k8s-io">BoundObjectReference</a></I></TD><TD>BoundObjectRef is a reference to an object that the token will be bound to. The token will only be valid for as long as the bound object exists. NOTE: The API server&#39;s TokenReview endpoint will validate the BoundObjectRef, but other audiences may not. Keep ExpirationSeconds small if you want prompt revocation.</TD></TR>
+<TR><TD><CODE>expirationSeconds</CODE><BR /><I>integer</I></TD><TD>ExpirationSeconds is the requested duration of validity of the request. The token issuer may return a token with a different validity duration so a client needs to check the &#39;expiration&#39; field in a response.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="tokenrequeststatus-v1-authentication-k8s-io">TokenRequestStatus v1 authentication</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#tokenrequest-v1-authentication-k8s-io">TokenRequest [authentication/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>expirationTimestamp</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>ExpirationTimestamp is the time of expiration of the returned token.</TD></TR>
+<TR><TD><CODE>token</CODE><BR /><I>string</I></TD><TD>Token is the opaque bearer token.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="tokenreview-v1-authentication-k8s-io">TokenReview v1 authentication.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authentication.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>TokenReview</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#tokenreviewspec-v1-authentication-k8s-io">TokenReviewSpec</a></I></TD><TD>Spec holds information about the request being evaluated</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#tokenreviewstatus-v1-authentication-k8s-io">TokenReviewStatus</a></I></TD><TD>Status is filled in by the server and indicates whether the request can be authenticated.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="tokenreviewspec-v1-authentication-k8s-io">TokenReviewSpec v1 authentication</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#tokenreview-v1-authentication-k8s-io">TokenReview [authentication/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>audiences</CODE><BR /><I>string array</I></TD><TD>Audiences is a list of the identifiers that the resource server presented with the token identifies as. Audience-aware token authenticators will verify that the token was intended for at least one of the audiences in this list. If no audiences are provided, the audience will default to the audience of the Kubernetes apiserver.</TD></TR>
+<TR><TD><CODE>token</CODE><BR /><I>string</I></TD><TD>Token is the opaque bearer token.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="tokenreviewstatus-v1-authentication-k8s-io">TokenReviewStatus v1 authentication</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#tokenreview-v1-authentication-k8s-io">TokenReview [authentication/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>audiences</CODE><BR /><I>string array</I></TD><TD>Audiences are audience identifiers chosen by the authenticator that are compatible with both the TokenReview and token. An identifier is any identifier in the intersection of the TokenReviewSpec audiences and the token&#39;s audiences. A client of the TokenReview API that sets the spec.audiences field should validate that a compatible audience identifier is returned in the status.audiences field to ensure that the TokenReview server is audience aware. If a TokenReview returns an empty status.audience field where status.authenticated is &#34;true&#34;, the token is valid against the audience of the Kubernetes API server.</TD></TR>
+<TR><TD><CODE>authenticated</CODE><BR /><I>boolean</I></TD><TD>Authenticated indicates that the token was associated with a known user.</TD></TR>
+<TR><TD><CODE>error</CODE><BR /><I>string</I></TD><TD>Error indicates that the token couldn&#39;t be checked</TD></TR>
+<TR><TD><CODE>user</CODE><BR /><I><a href="#userinfo-v1-authentication-k8s-io">UserInfo</a></I></TD><TD>User is the UserInfo associated with the provided token.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-tokenreview-v1-authentication-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-tokenreview-v1-authentication-k8s-io">Create</H2>
+<P>create a TokenReview</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/authentication.k8s.io/v1/tokenreviews</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#tokenreview-v1-authentication-k8s-io">TokenReview</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#tokenreview-v1-authentication-k8s-io">TokenReview</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#tokenreview-v1-authentication-k8s-io">TokenReview</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#tokenreview-v1-authentication-k8s-io">TokenReview</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="networkpolicy-v1-networking-k8s-io">NetworkPolicy v1 networking.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NetworkPolicy</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#networkpolicylist-v1-networking-k8s-io">NetworkPolicyList [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#networkpolicyspec-v1-networking-k8s-io">NetworkPolicySpec</a></I></TD><TD>Specification of the desired behavior for this NetworkPolicy.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="networkpolicyspec-v1-networking-k8s-io">NetworkPolicySpec v1 networking</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>egress</CODE><BR /><I><a href="#networkpolicyegressrule-v1-networking-k8s-io">NetworkPolicyEgressRule</a> array</I></TD><TD>List of egress rules to be applied to the selected pods. Outgoing traffic is allowed if there are no NetworkPolicies selecting the pod (and cluster policy otherwise allows the traffic), OR if the traffic matches at least one egress rule across all of the NetworkPolicy objects whose podSelector matches the pod. If this field is empty then this NetworkPolicy limits all outgoing traffic (and serves solely to ensure that the pods it selects are isolated by default). This field is beta-level in 1.8</TD></TR>
+<TR><TD><CODE>ingress</CODE><BR /><I><a href="#networkpolicyingressrule-v1-networking-k8s-io">NetworkPolicyIngressRule</a> array</I></TD><TD>List of ingress rules to be applied to the selected pods. Traffic is allowed to a pod if there are no NetworkPolicies selecting the pod (and cluster policy otherwise allows the traffic), OR if the traffic source is the pod&#39;s local node, OR if the traffic matches at least one ingress rule across all of the NetworkPolicy objects whose podSelector matches the pod. If this field is empty then this NetworkPolicy does not allow any traffic (and serves solely to ensure that the pods it selects are isolated by default)</TD></TR>
+<TR><TD><CODE>podSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>Selects the pods to which this NetworkPolicy object applies. The array of ingress rules is applied to any pods selected by this field. Multiple network policies can select the same set of pods. In this case, the ingress rules for each are combined additively. This field is NOT optional and follows standard label selector semantics. An empty podSelector matches all pods in this namespace.</TD></TR>
+<TR><TD><CODE>policyTypes</CODE><BR /><I>string array</I></TD><TD>List of rule types that the NetworkPolicy relates to. Valid options are [&#34;Ingress&#34;], [&#34;Egress&#34;], or [&#34;Ingress&#34;, &#34;Egress&#34;]. If this field is not specified, it will default based on the existence of Ingress or Egress rules; policies that contain an Egress section are assumed to affect Egress, and all policies (whether or not they contain an Ingress section) are assumed to affect Ingress. If you want to write an egress-only policy, you must explicitly specify policyTypes [ &#34;Egress&#34; ]. Likewise, if you want to write a policy that specifies that no egress is allowed, you must specify a policyTypes value that include &#34;Egress&#34; (since such a policy would not include an Egress section and would otherwise default to just [ &#34;Ingress&#34; ]). This field is beta-level in 1.8</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="networkpolicylist-v1-networking-k8s-io">NetworkPolicyList v1 networking</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a> array</I></TD><TD>Items is a list of schema objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-networkpolicy-v1-networking-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-networkpolicy-v1-networking-k8s-io">Create</H2>
+<P>create a NetworkPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-networkpolicy-v1-networking-k8s-io">Patch</H2>
+<P>partially update the specified NetworkPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NetworkPolicy</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-networkpolicy-v1-networking-k8s-io">Replace</H2>
+<P>replace the specified NetworkPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NetworkPolicy</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-networkpolicy-v1-networking-k8s-io">Delete</H2>
+<P>delete a NetworkPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NetworkPolicy</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-networkpolicy-v1-networking-k8s-io">Delete Collection</H2>
+<P>delete collection of NetworkPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-networkpolicy-v1-networking-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-networkpolicy-v1-networking-k8s-io">Read</H2>
+<P>read the specified NetworkPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NetworkPolicy</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-networkpolicy-v1-networking-k8s-io">List</H2>
+<P>list or watch objects of kind NetworkPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#networkpolicylist-v1-networking-k8s-io">NetworkPolicyList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-networkpolicy-v1-networking-k8s-io">List All Namespaces</H2>
+<P>list or watch objects of kind NetworkPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/networkpolicies</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#networkpolicylist-v1-networking-k8s-io">NetworkPolicyList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-networkpolicy-v1-networking-k8s-io">Watch</H2>
+<P>watch changes to an object of kind NetworkPolicy. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/watch/namespaces/{namespace}/networkpolicies/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NetworkPolicy</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-networkpolicy-v1-networking-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of NetworkPolicy. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/watch/namespaces/{namespace}/networkpolicies</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-networkpolicy-v1-networking-k8s-io">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of NetworkPolicy. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/watch/networkpolicies</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="-strong-definitions-strong-"><STRONG>DEFINITIONS</STRONG></H1>
+
+<P>This section contains definitions for objects used in the Kubernetes APIs.</P>
+<H2 id="apigroup-v1-meta">APIGroup v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>APIGroup</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>APIGroup contains the name, the supported versions, and the preferred version of a group.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apigrouplist-v1-meta">APIGroupList [meta/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the group.</TD></TR>
+<TR><TD><CODE>preferredVersion</CODE><BR /><I><a href="#groupversionfordiscovery-v1-meta">GroupVersionForDiscovery</a></I></TD><TD>preferredVersion is the version preferred by the API server, which probably is the storage version.</TD></TR>
+<TR><TD><CODE>serverAddressByClientCIDRs</CODE><BR /><I><a href="#serveraddressbyclientcidr-v1-meta">ServerAddressByClientCIDR</a> array</I></TD><TD>a map of client CIDR to server address that is serving this group. This is to help clients reach servers in the most network-efficient way possible. Clients can use the appropriate server address as per the CIDR that they match. In case of multiple matches, clients should use the longest matching CIDR. The server returns only those CIDRs that it thinks that the client can match. For example: the master will return an internal IP CIDR only, if the client reaches the server using an internal IP. Server looks at X-Forwarded-For header or X-Real-Ip header or request.RemoteAddr (in that order) to get the client IP.</TD></TR>
+<TR><TD><CODE>versions</CODE><BR /><I><a href="#groupversionfordiscovery-v1-meta">GroupVersionForDiscovery</a> array</I></TD><TD>versions are the versions supported in this group.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="apiresource-v1-meta">APIResource v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>APIResource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>APIResource specifies the name of a resource and whether it is namespaced.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apiresourcelist-v1-meta">APIResourceList [meta/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>categories</CODE><BR /><I>string array</I></TD><TD>categories is a list of the grouped resources this resource belongs to (e.g. &#39;all&#39;)</TD></TR>
+<TR><TD><CODE>group</CODE><BR /><I>string</I></TD><TD>group is the preferred group of the resource.  Empty implies the group of the containing resource list. For subresources, this may have a different value, for example: Scale&#34;.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>kind is the kind for the resource (e.g. &#39;Foo&#39; is the kind for a resource &#39;foo&#39;)</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the plural name of the resource.</TD></TR>
+<TR><TD><CODE>namespaced</CODE><BR /><I>boolean</I></TD><TD>namespaced indicates if a resource is namespaced or not.</TD></TR>
+<TR><TD><CODE>shortNames</CODE><BR /><I>string array</I></TD><TD>shortNames is a list of suggested short names of the resource.</TD></TR>
+<TR><TD><CODE>singularName</CODE><BR /><I>string</I></TD><TD>singularName is the singular name of the resource.  This allows clients to handle plural and singular opaquely. The singularName is more correct for reporting status on a single item and both singular and plural are allowed from the kubectl CLI interface.</TD></TR>
+<TR><TD><CODE>storageVersionHash</CODE><BR /><I>string</I></TD><TD>The hash value of the storage version, the version this resource is converted to when written to the data store. Value must be treated as opaque by clients. Only equality comparison on the value is valid. This is an alpha feature and may change or be removed in the future. The field is populated by the apiserver only if the StorageVersionHash feature gate is enabled. This field will remain optional even if it graduates.</TD></TR>
+<TR><TD><CODE>verbs</CODE><BR /><I>string array</I></TD><TD>verbs is a list of supported kube verbs (this includes get, list, watch, create, update, patch, delete, deletecollection, and proxy)</TD></TR>
+<TR><TD><CODE>version</CODE><BR /><I>string</I></TD><TD>version is the preferred version of the resource.  Empty implies the version of the containing resource list For subresources, this may have a different value, for example: v1 (while inside a v1beta1 version of the core resource&#39;s group)&#34;.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="apiservicecondition-v1-apiregistration-k8s-io">APIServiceCondition v1 apiregistration.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>APIServiceCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>APIServiceCondition describes the state of an APIService at a particular point</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apiservicestatus-v1-apiregistration-k8s-io">APIServiceStatus [apiregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>Human-readable message indicating details about last transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>Unique, one-word, CamelCase reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status is the status of the condition. Can be True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type is the type of the condition.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="apiversions-v1-meta">APIVersions v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>APIVersions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>APIVersions lists the versions that are available, to allow clients to discover the API at /api, which is the root path of the legacy v1 API.</P>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>serverAddressByClientCIDRs</CODE><BR /><I><a href="#serveraddressbyclientcidr-v1-meta">ServerAddressByClientCIDR</a> array</I></TD><TD>a map of client CIDR to server address that is serving this group. This is to help clients reach servers in the most network-efficient way possible. Clients can use the appropriate server address as per the CIDR that they match. In case of multiple matches, clients should use the longest matching CIDR. The server returns only those CIDRs that it thinks that the client can match. For example: the master will return an internal IP CIDR only, if the client reaches the server using an internal IP. Server looks at X-Forwarded-For header or X-Real-Ip header or request.RemoteAddr (in that order) to get the client IP.</TD></TR>
+<TR><TD><CODE>versions</CODE><BR /><I>string array</I></TD><TD>versions are the api versions that are available.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="awselasticblockstorevolumesource-v1-core">AWSElasticBlockStoreVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>AWSElasticBlockStoreVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Persistent Disk resource in AWS.
+
+An AWS EBS disk must exist before mounting to a container. The disk must also be in the same AWS zone as the kubelet. An AWS EBS disk can only be mounted as read/write once. AWS EBS volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore</TD></TR>
+<TR><TD><CODE>partition</CODE><BR /><I>integer</I></TD><TD>The partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as &#34;1&#34;. Similarly, the volume partition for /dev/sda is &#34;0&#34; (or you can leave the property empty).</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>Specify &#34;true&#34; to force and set the ReadOnly property in VolumeMounts to &#34;true&#34;. If omitted, the default is &#34;false&#34;. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore</TD></TR>
+<TR><TD><CODE>volumeID</CODE><BR /><I>string</I></TD><TD>Unique ID of the persistent disk resource in AWS (Amazon EBS volume). More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="affinity-v1-core">Affinity v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Affinity</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Affinity is a group of affinity scheduling rules.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nodeAffinity</CODE><BR /><I><a href="#nodeaffinity-v1-core">NodeAffinity</a></I></TD><TD>Describes node affinity scheduling rules for the pod.</TD></TR>
+<TR><TD><CODE>podAffinity</CODE><BR /><I><a href="#podaffinity-v1-core">PodAffinity</a></I></TD><TD>Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).</TD></TR>
+<TR><TD><CODE>podAntiAffinity</CODE><BR /><I><a href="#podantiaffinity-v1-core">PodAntiAffinity</a></I></TD><TD>Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="aggregationrule-v1-rbac-authorization-k8s-io">AggregationRule v1 rbac.authorization.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rbac.authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>AggregationRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>AggregationRule describes how to locate ClusterRoles to aggregate into the ClusterRole</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole [rbac/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>clusterRoleSelectors</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a> array</I></TD><TD>ClusterRoleSelectors holds a list of selectors which will be used to find ClusterRoles and create the rules. If any of the selectors match, then the ClusterRole&#39;s permissions will be added</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="allowedcsidriver-v1beta1-policy">AllowedCSIDriver v1beta1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>AllowedCSIDriver</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>AllowedCSIDriver represents a single inline CSI Driver that is allowed to be used.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the registered name of the CSI driver</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="allowedflexvolume-v1beta1-policy">AllowedFlexVolume v1beta1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>AllowedFlexVolume</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>AllowedFlexVolume represents a single Flexvolume that is allowed to be used.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>driver</CODE><BR /><I>string</I></TD><TD>driver is the name of the Flexvolume driver.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="allowedhostpath-v1beta1-policy">AllowedHostPath v1beta1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>AllowedHostPath</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>AllowedHostPath defines the host volume conditions that will be enabled by a policy for pods to use. It requires the path prefix to be defined.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pathPrefix</CODE><BR /><I>string</I></TD><TD>pathPrefix is the path prefix that the host volume must match. It does not support `*`. Trailing slashes are trimmed when validating the path prefix with a host path.  Examples: `/foo` would allow `/foo`, `/foo/` and `/foo/bar` `/foo` would not allow `/food` or `/etc/foo`</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>when set to true, will allow host volumes matching the pathPrefix only if all volume mounts are readOnly.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="attachedvolume-v1-core">AttachedVolume v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>AttachedVolume</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>AttachedVolume describes a volume attached to a node</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodestatus-v1-core">NodeStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>devicePath</CODE><BR /><I>string</I></TD><TD>DevicePath represents the device path where the volume should be available</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the attached volume</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="azurediskvolumesource-v1-core">AzureDiskVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>AzureDiskVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>AzureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>cachingMode</CODE><BR /><I>string</I></TD><TD>Host Caching mode: None, Read Only, Read Write.</TD></TR>
+<TR><TD><CODE>diskName</CODE><BR /><I>string</I></TD><TD>The Name of the data disk in the blob storage</TD></TR>
+<TR><TD><CODE>diskURI</CODE><BR /><I>string</I></TD><TD>The URI the data disk in the blob storage</TD></TR>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Expected values Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="azurefilepersistentvolumesource-v1-core">AzureFilePersistentVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>AzureFilePersistentVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>AzureFile represents an Azure File Service mount on the host and bind mount to the pod.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.</TD></TR>
+<TR><TD><CODE>secretName</CODE><BR /><I>string</I></TD><TD>the name of secret that contains Azure Storage Account Name and Key</TD></TR>
+<TR><TD><CODE>secretNamespace</CODE><BR /><I>string</I></TD><TD>the namespace of the secret that contains Azure Storage Account Name and Key default is the same as the Pod</TD></TR>
+<TR><TD><CODE>shareName</CODE><BR /><I>string</I></TD><TD>Share Name</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="azurefilevolumesource-v1-core">AzureFileVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>AzureFileVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>AzureFile represents an Azure File Service mount on the host and bind mount to the pod.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.</TD></TR>
+<TR><TD><CODE>secretName</CODE><BR /><I>string</I></TD><TD>the name of secret that contains Azure Storage Account Name and Key</TD></TR>
+<TR><TD><CODE>shareName</CODE><BR /><I>string</I></TD><TD>Share Name</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="boundobjectreference-v1-authentication-k8s-io">BoundObjectReference v1 authentication.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authentication.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>BoundObjectReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>BoundObjectReference is a reference to an object that a token is bound to.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#tokenrequestspec-v1-authentication-k8s-io">TokenRequestSpec [authentication/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>API version of the referent.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind of the referent. Valid kinds are &#39;Pod&#39; and &#39;Secret&#39;.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent.</TD></TR>
+<TR><TD><CODE>uid</CODE><BR /><I>string</I></TD><TD>UID of the referent.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="csinodedriver-v1-storage-k8s-io">CSINodeDriver v1 storage.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CSINodeDriver</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CSINodeDriver holds information about the specification of one CSI driver installed on a node</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csinodespec-v1-storage-k8s-io">CSINodeSpec [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allocatable</CODE><BR /><I><a href="#volumenoderesources-v1-storage-k8s-io">VolumeNodeResources</a></I></TD><TD>allocatable represents the volume resources of a node that are available for scheduling. This field is beta.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>This is the name of the CSI driver that this object refers to. This MUST be the same name returned by the CSI GetPluginName() call for that driver.</TD></TR>
+<TR><TD><CODE>nodeID</CODE><BR /><I>string</I></TD><TD>nodeID of the node from the driver point of view. This field enables Kubernetes to communicate with storage systems that do not share the same nomenclature for nodes. For example, Kubernetes may refer to a given node as &#34;node1&#34;, but the storage system may refer to the same node as &#34;nodeA&#34;. When Kubernetes issues a command to the storage system to attach a volume to a specific node, it can use this field to refer to the node name using the ID that the storage system will understand, e.g. &#34;nodeA&#34; instead of &#34;node1&#34;. This field is required.</TD></TR>
+<TR><TD><CODE>topologyKeys</CODE><BR /><I>string array</I></TD><TD>topologyKeys is the list of keys supported by the driver. When a driver is initialized on a cluster, it provides a set of topology keys that it understands (e.g. &#34;company.com/zone&#34;, &#34;company.com/region&#34;). When a driver is initialized on a node, it provides the same topology keys along with values. Kubelet will expose these topology keys as labels on its own node object. When Kubernetes does topology aware provisioning, it can use this list to determine which labels it should retrieve from the node object and pass back to the driver. It is possible for different nodes to use different topology keys. This can be empty if driver does not support topology.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="csipersistentvolumesource-v1-core">CSIPersistentVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CSIPersistentVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents storage that is managed by an external CSI volume driver (Beta feature)</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>controllerExpandSecretRef</CODE><BR /><I><a href="#secretreference-v1-core">SecretReference</a></I></TD><TD>ControllerExpandSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI ControllerExpandVolume call. This is an alpha field and requires enabling ExpandCSIVolumes feature gate. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.</TD></TR>
+<TR><TD><CODE>controllerPublishSecretRef</CODE><BR /><I><a href="#secretreference-v1-core">SecretReference</a></I></TD><TD>ControllerPublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI ControllerPublishVolume and ControllerUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.</TD></TR>
+<TR><TD><CODE>driver</CODE><BR /><I>string</I></TD><TD>Driver is the name of the driver to use for this volume. Required.</TD></TR>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;.</TD></TR>
+<TR><TD><CODE>nodePublishSecretRef</CODE><BR /><I><a href="#secretreference-v1-core">SecretReference</a></I></TD><TD>NodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.</TD></TR>
+<TR><TD><CODE>nodeStageSecretRef</CODE><BR /><I><a href="#secretreference-v1-core">SecretReference</a></I></TD><TD>NodeStageSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodeStageVolume and NodeStageVolume and NodeUnstageVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>Optional: The value to pass to ControllerPublishVolumeRequest. Defaults to false (read/write).</TD></TR>
+<TR><TD><CODE>volumeAttributes</CODE><BR /><I>object</I></TD><TD>Attributes of the volume to publish.</TD></TR>
+<TR><TD><CODE>volumeHandle</CODE><BR /><I>string</I></TD><TD>VolumeHandle is the unique volume name returned by the CSI volume plugin’s CreateVolume to refer to the volume on all subsequent calls. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="csivolumesource-v1-core">CSIVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CSIVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a source location of a volume to mount, managed by an external CSI driver</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>driver</CODE><BR /><I>string</I></TD><TD>Driver is the name of the CSI driver that handles this volume. Consult with your admin for the correct name as registered in the cluster.</TD></TR>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>Filesystem type to mount. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. If not provided, the empty value is passed to the associated CSI driver which will determine the default filesystem to apply.</TD></TR>
+<TR><TD><CODE>nodePublishSecretRef</CODE><BR /><I><a href="#localobjectreference-v1-core">LocalObjectReference</a></I></TD><TD>NodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and  may be empty if no secret is required. If the secret object contains more than one secret, all secret references are passed.</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>Specifies a read-only configuration for the volume. Defaults to false (read/write).</TD></TR>
+<TR><TD><CODE>volumeAttributes</CODE><BR /><I>object</I></TD><TD>VolumeAttributes stores driver-specific properties that are passed to the CSI driver. Consult your driver&#39;s documentation for supported values.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="capabilities-v1-core">Capabilities v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Capabilities</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Adds and removes POSIX capabilities from running containers.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#securitycontext-v1-core">SecurityContext [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>add</CODE><BR /><I>string array</I></TD><TD>Added capabilities</TD></TR>
+<TR><TD><CODE>drop</CODE><BR /><I>string array</I></TD><TD>Removed capabilities</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="cephfspersistentvolumesource-v1-core">CephFSPersistentVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CephFSPersistentVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Ceph Filesystem mount that lasts the lifetime of a pod Cephfs volumes do not support ownership management or SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>monitors</CODE><BR /><I>string array</I></TD><TD>Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>Optional: Used as the mounted root, rather than the full Ceph tree, default is /</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>secretFile</CODE><BR /><I>string</I></TD><TD>Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#secretreference-v1-core">SecretReference</a></I></TD><TD>Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>user</CODE><BR /><I>string</I></TD><TD>Optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="cephfsvolumesource-v1-core">CephFSVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CephFSVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Ceph Filesystem mount that lasts the lifetime of a pod Cephfs volumes do not support ownership management or SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>monitors</CODE><BR /><I>string array</I></TD><TD>Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>Optional: Used as the mounted root, rather than the full Ceph tree, default is /</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>secretFile</CODE><BR /><I>string</I></TD><TD>Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#localobjectreference-v1-core">LocalObjectReference</a></I></TD><TD>Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>user</CODE><BR /><I>string</I></TD><TD>Optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="certificatesigningrequestcondition-v1-certificates-k8s-io">CertificateSigningRequestCondition v1 certificates.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>certificates.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CertificateSigningRequestCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CertificateSigningRequestCondition describes a condition of a CertificateSigningRequest object</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#certificatesigningrequeststatus-v1-certificates-k8s-io">CertificateSigningRequestStatus [certificates/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>lastTransitionTime is the time the condition last transitioned from one status to another. If unset, when a new condition type is added or an existing condition&#39;s status is changed, the server defaults this to the current time.</TD></TR>
+<TR><TD><CODE>lastUpdateTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>lastUpdateTime is the time of the last update to this condition</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>message contains a human readable message with details about the request state</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>reason indicates a brief reason for the request state</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>status of the condition, one of True, False, Unknown. Approved, Denied, and Failed conditions may not be &#34;False&#34; or &#34;Unknown&#34;.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type of the condition. Known conditions are &#34;Approved&#34;, &#34;Denied&#34;, and &#34;Failed&#34;.  An &#34;Approved&#34; condition is added via the /approval subresource, indicating the request was approved and should be issued by the signer.  A &#34;Denied&#34; condition is added via the /approval subresource, indicating the request was denied and should not be issued by the signer.  A &#34;Failed&#34; condition is added via the /status subresource, indicating the signer failed to issue the certificate.  Approved and Denied conditions are mutually exclusive. Approved, Denied, and Failed conditions cannot be removed once added.  Only one condition of a given type is allowed.  Possible enum values:  - `&#34;Approved&#34;` Approved indicates the request was approved and should be issued by the signer.  - `&#34;Denied&#34;` Denied indicates the request was denied and should not be issued by the signer.  - `&#34;Failed&#34;` Failed indicates the signer failed to issue the certificate.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="cinderpersistentvolumesource-v1-core">CinderPersistentVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CinderPersistentVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a cinder volume resource in Openstack. A Cinder volume must exist before mounting to a container. The volume must also be in the same region as the kubelet. Cinder volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>Filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#secretreference-v1-core">SecretReference</a></I></TD><TD>Optional: points to a secret object containing parameters used to connect to OpenStack.</TD></TR>
+<TR><TD><CODE>volumeID</CODE><BR /><I>string</I></TD><TD>volume id used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="cindervolumesource-v1-core">CinderVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CinderVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a cinder volume resource in Openstack. A Cinder volume must exist before mounting to a container. The volume must also be in the same region as the kubelet. Cinder volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>Filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#localobjectreference-v1-core">LocalObjectReference</a></I></TD><TD>Optional: points to a secret object containing parameters used to connect to OpenStack.</TD></TR>
+<TR><TD><CODE>volumeID</CODE><BR /><I>string</I></TD><TD>volume id used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="clientipconfig-v1-core">ClientIPConfig v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ClientIPConfig</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ClientIPConfig represents the configurations of Client IP based session affinity.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#sessionaffinityconfig-v1-core">SessionAffinityConfig [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>timeoutSeconds</CODE><BR /><I>integer</I></TD><TD>timeoutSeconds specifies the seconds of ClientIP type session sticky time. The value must be &gt;0 &amp;&amp; &lt;=86400(for 1 day) if ServiceAffinity == &#34;ClientIP&#34;. Default value is 10800(for 3 hours).</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="componentcondition-v1-core">ComponentCondition v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ComponentCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Information about the condition of a component.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#componentstatus-v1-core">ComponentStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>error</CODE><BR /><I>string</I></TD><TD>Condition error code for a component. For example, a health check error code.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>Message about the condition for a component. For example, information about a health check.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status of the condition for a component. Valid values for &#34;Healthy&#34;: &#34;True&#34;, &#34;False&#34;, or &#34;Unknown&#34;.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of condition for a component. Valid value: &#34;Healthy&#34;</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="condition-v1-meta">Condition v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Condition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Condition contains details for one aspect of the current state of this API Resource.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#poddisruptionbudgetstatus-v1-policy">PodDisruptionBudgetStatus [policy/v1]</a></LI>
+  <LI><a href="#poddisruptionbudgetstatus-v1beta1-policy">PodDisruptionBudgetStatus [policy/v1beta1]</a></LI>
+  <LI><a href="#servicestatus-v1-core">ServiceStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>lastTransitionTime is the last time the condition transitioned from one status to another. This should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>message is a human readable message indicating details about the transition. This may be an empty string.</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>observedGeneration represents the .metadata.generation that the condition was set based upon. For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date with respect to the current state of the instance.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>reason contains a programmatic identifier indicating the reason for the condition&#39;s last transition. Producers of specific condition types may define expected values and meanings for this field, and whether the values are considered a guaranteed API. The value should be a CamelCase string. This field may not be empty.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>status of the condition, one of True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type of condition in CamelCase or in foo.example.com/CamelCase.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="configmapenvsource-v1-core">ConfigMapEnvSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ConfigMapEnvSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ConfigMapEnvSource selects a ConfigMap to populate the environment variables with.
+
+The contents of the target ConfigMap&#39;s Data field will represent the key-value pairs as environment variables.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#envfromsource-v1-core">EnvFromSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names</TD></TR>
+<TR><TD><CODE>optional</CODE><BR /><I>boolean</I></TD><TD>Specify whether the ConfigMap must be defined</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="configmapkeyselector-v1-core">ConfigMapKeySelector v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ConfigMapKeySelector</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Selects a key from a ConfigMap.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#envvarsource-v1-core">EnvVarSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>key</CODE><BR /><I>string</I></TD><TD>The key to select.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names</TD></TR>
+<TR><TD><CODE>optional</CODE><BR /><I>boolean</I></TD><TD>Specify whether the ConfigMap or its key must be defined</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="configmapnodeconfigsource-v1-core">ConfigMapNodeConfigSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ConfigMapNodeConfigSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ConfigMapNodeConfigSource contains the information to reference a ConfigMap as a config source for the Node. This API is deprecated since 1.22: https://git.k8s.io/enhancements/keps/sig-node/281-dynamic-kubelet-configuration</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodeconfigsource-v1-core">NodeConfigSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>kubeletConfigKey</CODE><BR /><I>string</I></TD><TD>KubeletConfigKey declares which key of the referenced ConfigMap corresponds to the KubeletConfiguration structure This field is required in all cases.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the metadata.name of the referenced ConfigMap. This field is required in all cases.</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>Namespace is the metadata.namespace of the referenced ConfigMap. This field is required in all cases.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE><BR /><I>string</I></TD><TD>ResourceVersion is the metadata.ResourceVersion of the referenced ConfigMap. This field is forbidden in Node.Spec, and required in Node.Status.</TD></TR>
+<TR><TD><CODE>uid</CODE><BR /><I>string</I></TD><TD>UID is the metadata.UID of the referenced ConfigMap. This field is forbidden in Node.Spec, and required in Node.Status.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="configmapprojection-v1-core">ConfigMapProjection v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ConfigMapProjection</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Adapts a ConfigMap into a projected volume.
+
+The contents of the target ConfigMap&#39;s Data field will be presented in a projected volume as files using the keys in the Data field as the file names, unless the items element is populated with specific mappings of keys to paths. Note that this is identical to a configmap volume source without the default mode.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volumeprojection-v1-core">VolumeProjection [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#keytopath-v1-core">KeyToPath</a> array</I></TD><TD>If unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the &#39;..&#39; path or start with &#39;..&#39;.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names</TD></TR>
+<TR><TD><CODE>optional</CODE><BR /><I>boolean</I></TD><TD>Specify whether the ConfigMap or its keys must be defined</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="configmapvolumesource-v1-core">ConfigMapVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ConfigMapVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Adapts a ConfigMap into a volume.
+
+The contents of the target ConfigMap&#39;s Data field will be presented in a volume as files using the keys in the Data field as the file names, unless the items element is populated with specific mappings of keys to paths. ConfigMap volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>defaultMode</CODE><BR /><I>integer</I></TD><TD>Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#keytopath-v1-core">KeyToPath</a> array</I></TD><TD>If unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the &#39;..&#39; path or start with &#39;..&#39;.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names</TD></TR>
+<TR><TD><CODE>optional</CODE><BR /><I>boolean</I></TD><TD>Specify whether the ConfigMap or its keys must be defined</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="containerimage-v1-core">ContainerImage v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ContainerImage</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Describe a container image</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodestatus-v1-core">NodeStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>names</CODE><BR /><I>string array</I></TD><TD>Names by which this image is known. e.g. [&#34;k8s.gcr.io/hyperkube:v1.0.7&#34;, &#34;dockerhub.io/google_containers/hyperkube:v1.0.7&#34;]</TD></TR>
+<TR><TD><CODE>sizeBytes</CODE><BR /><I>integer</I></TD><TD>The size of the image in bytes.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="containerport-v1-core">ContainerPort v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ContainerPort</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ContainerPort represents a network port in a single container.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#container-v1-core">Container [core/v1]</a></LI>
+  <LI><a href="#ephemeralcontainer-v1-core">EphemeralContainer [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>containerPort</CODE><BR /><I>integer</I></TD><TD>Number of port to expose on the pod&#39;s IP address. This must be a valid port number, 0 &lt; x &lt; 65536.</TD></TR>
+<TR><TD><CODE>hostIP</CODE><BR /><I>string</I></TD><TD>What host IP to bind the external port to.</TD></TR>
+<TR><TD><CODE>hostPort</CODE><BR /><I>integer</I></TD><TD>Number of port to expose on the host. If specified, this must be a valid port number, 0 &lt; x &lt; 65536. If HostNetwork is specified, this must match ContainerPort. Most containers do not need this.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>If specified, this must be an IANA_SVC_NAME and unique within the pod. Each named port in a pod must have a unique name. Name for the port that can be referred to by services.</TD></TR>
+<TR><TD><CODE>protocol</CODE><BR /><I>string</I></TD><TD>Protocol for port. Must be UDP, TCP, or SCTP. Defaults to &#34;TCP&#34;.  Possible enum values:  - `&#34;SCTP&#34;` is the SCTP protocol.  - `&#34;TCP&#34;` is the TCP protocol.  - `&#34;UDP&#34;` is the UDP protocol.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="containerresourcemetricsource-v2-autoscaling">ContainerResourceMetricSource v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>ContainerResourceMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ContainerResourceMetricSource indicates how to scale on a resource metric known to Kubernetes, as specified in requests and limits, describing each pod in the current scale target (e.g. CPU or memory).  The values will be averaged together before being compared to the target.  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.  Only one &#34;target&#34; type should be set.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#containerresourcemetricsource-v2beta2-autoscaling">v2beta2</a>
+<a href="#containerresourcemetricsource-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2-autoscaling">MetricSpec [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>container</CODE><BR /><I>string</I></TD><TD>container is the name of the container in the pods of the scaling target</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the resource in question.</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#metrictarget-v2-autoscaling">MetricTarget</a></I></TD><TD>target specifies the target value for the given metric</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="containerresourcemetricstatus-v2-autoscaling">ContainerResourceMetricStatus v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>ContainerResourceMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ContainerResourceMetricStatus indicates the current value of a resource metric known to Kubernetes, as specified in requests and limits, describing a single container in each pod in the current scale target (e.g. CPU or memory).  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#containerresourcemetricstatus-v2beta2-autoscaling">v2beta2</a>
+<a href="#containerresourcemetricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2-autoscaling">MetricStatus [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>container</CODE><BR /><I>string</I></TD><TD>Container is the name of the container in the pods of the scaling target</TD></TR>
+<TR><TD><CODE>current</CODE><BR /><I><a href="#metricvaluestatus-v2-autoscaling">MetricValueStatus</a></I></TD><TD>current contains the current value for the given metric</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the name of the resource in question.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="containerstate-v1-core">ContainerState v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ContainerState</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ContainerState holds a possible state of container. Only one of its members may be specified. If none of them is specified, the default one is ContainerStateWaiting.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#containerstatus-v1-core">ContainerStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>running</CODE><BR /><I><a href="#containerstaterunning-v1-core">ContainerStateRunning</a></I></TD><TD>Details about a running container</TD></TR>
+<TR><TD><CODE>terminated</CODE><BR /><I><a href="#containerstateterminated-v1-core">ContainerStateTerminated</a></I></TD><TD>Details about a terminated container</TD></TR>
+<TR><TD><CODE>waiting</CODE><BR /><I><a href="#containerstatewaiting-v1-core">ContainerStateWaiting</a></I></TD><TD>Details about a waiting container</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="containerstaterunning-v1-core">ContainerStateRunning v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ContainerStateRunning</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ContainerStateRunning is a running state of a container.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#containerstate-v1-core">ContainerState [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>startedAt</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Time at which the container was last (re-)started</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="containerstateterminated-v1-core">ContainerStateTerminated v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ContainerStateTerminated</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ContainerStateTerminated is a terminated state of a container.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#containerstate-v1-core">ContainerState [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>containerID</CODE><BR /><I>string</I></TD><TD>Container&#39;s ID in the format &#39;docker://&lt;container_id&gt;&#39;</TD></TR>
+<TR><TD><CODE>exitCode</CODE><BR /><I>integer</I></TD><TD>Exit status from the last termination of the container</TD></TR>
+<TR><TD><CODE>finishedAt</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Time at which the container last terminated</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>Message regarding the last termination of the container</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>(brief) reason from the last termination of the container</TD></TR>
+<TR><TD><CODE>signal</CODE><BR /><I>integer</I></TD><TD>Signal from the last termination of the container</TD></TR>
+<TR><TD><CODE>startedAt</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Time at which previous execution of the container started</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="containerstatewaiting-v1-core">ContainerStateWaiting v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ContainerStateWaiting</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ContainerStateWaiting is a waiting state of a container.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#containerstate-v1-core">ContainerState [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>Message regarding why the container is not yet running.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>(brief) reason the container is not yet running.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="crossversionobjectreference-v1-autoscaling">CrossVersionObjectReference v1 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CrossVersionObjectReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CrossVersionObjectReference contains enough information to let you identify the referred resource.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#crossversionobjectreference-v2-autoscaling">v2</a>
+<a href="#crossversionobjectreference-v2beta2-autoscaling">v2beta2</a>
+<a href="#crossversionobjectreference-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerspec-v1-autoscaling">HorizontalPodAutoscalerSpec [autoscaling/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>API version of the referent</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds&#34;</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="customresourcecolumndefinition-v1-apiextensions-k8s-io">CustomResourceColumnDefinition v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CustomResourceColumnDefinition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CustomResourceColumnDefinition specifies a column for server side printing.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcedefinitionversion-v1-apiextensions-k8s-io">CustomResourceDefinitionVersion [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>description</CODE><BR /><I>string</I></TD><TD>description is a human readable description of this column.</TD></TR>
+<TR><TD><CODE>format</CODE><BR /><I>string</I></TD><TD>format is an optional OpenAPI type definition for this column. The &#39;name&#39; format is applied to the primary identifier column to assist in clients identifying column is the resource name. See https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md#data-types for details.</TD></TR>
+<TR><TD><CODE>jsonPath</CODE><BR /><I>string</I></TD><TD>jsonPath is a simple JSON path (i.e. with array notation) which is evaluated against each custom resource to produce the value for this column.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is a human readable name for the column.</TD></TR>
+<TR><TD><CODE>priority</CODE><BR /><I>integer</I></TD><TD>priority is an integer defining the relative importance of this column compared to others. Lower numbers are considered higher priority. Columns that may be omitted in limited space scenarios should be given a priority greater than 0.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type is an OpenAPI type definition for this column. See https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md#data-types for details.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="customresourceconversion-v1-apiextensions-k8s-io">CustomResourceConversion v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CustomResourceConversion</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CustomResourceConversion describes how to convert different versions of a CR.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcedefinitionspec-v1-apiextensions-k8s-io">CustomResourceDefinitionSpec [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>strategy</CODE><BR /><I>string</I></TD><TD>strategy specifies how custom resources are converted between versions. Allowed values are: - `None`: The converter only change the apiVersion and would not touch any other field in the custom resource. - `Webhook`: API Server will call to an external webhook to do the conversion. Additional information   is needed for this option. This requires spec.preserveUnknownFields to be false, and spec.conversion.webhook to be set.</TD></TR>
+<TR><TD><CODE>webhook</CODE><BR /><I><a href="#webhookconversion-v1-apiextensions-k8s-io">WebhookConversion</a></I></TD><TD>webhook describes how to call the conversion webhook. Required when `strategy` is set to `Webhook`.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="customresourcedefinitioncondition-v1-apiextensions-k8s-io">CustomResourceDefinitionCondition v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CustomResourceDefinitionCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CustomResourceDefinitionCondition contains details for the current condition of this pod.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcedefinitionstatus-v1-apiextensions-k8s-io">CustomResourceDefinitionStatus [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>lastTransitionTime last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>message is a human-readable message indicating details about last transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>reason is a unique, one-word, CamelCase reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>status is the status of the condition. Can be True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type is the type of the condition. Types include Established, NamesAccepted and Terminating.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="customresourcedefinitionnames-v1-apiextensions-k8s-io">CustomResourceDefinitionNames v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CustomResourceDefinitionNames</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CustomResourceDefinitionNames indicates the names to serve this CustomResourceDefinition</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcedefinitionspec-v1-apiextensions-k8s-io">CustomResourceDefinitionSpec [apiextensions/v1]</a></LI>
+  <LI><a href="#customresourcedefinitionstatus-v1-apiextensions-k8s-io">CustomResourceDefinitionStatus [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>categories</CODE><BR /><I>string array</I></TD><TD>categories is a list of grouped resources this custom resource belongs to (e.g. &#39;all&#39;). This is published in API discovery documents, and used by clients to support invocations like `kubectl get all`.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>kind is the serialized kind of the resource. It is normally CamelCase and singular. Custom resource instances will use this value as the `kind` attribute in API calls.</TD></TR>
+<TR><TD><CODE>listKind</CODE><BR /><I>string</I></TD><TD>listKind is the serialized kind of the list for this resource. Defaults to &#34;`kind`List&#34;.</TD></TR>
+<TR><TD><CODE>plural</CODE><BR /><I>string</I></TD><TD>plural is the plural name of the resource to serve. The custom resources are served under `/apis/&lt;group&gt;/&lt;version&gt;/.../&lt;plural&gt;`. Must match the name of the CustomResourceDefinition (in the form `&lt;names.plural&gt;.&lt;group&gt;`). Must be all lowercase.</TD></TR>
+<TR><TD><CODE>shortNames</CODE><BR /><I>string array</I></TD><TD>shortNames are short names for the resource, exposed in API discovery documents, and used by clients to support invocations like `kubectl get &lt;shortname&gt;`. It must be all lowercase.</TD></TR>
+<TR><TD><CODE>singular</CODE><BR /><I>string</I></TD><TD>singular is the singular name of the resource. It must be all lowercase. Defaults to lowercased `kind`.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="customresourcedefinitionversion-v1-apiextensions-k8s-io">CustomResourceDefinitionVersion v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CustomResourceDefinitionVersion</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CustomResourceDefinitionVersion describes a version for CRD.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcedefinitionspec-v1-apiextensions-k8s-io">CustomResourceDefinitionSpec [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>additionalPrinterColumns</CODE><BR /><I><a href="#customresourcecolumndefinition-v1-apiextensions-k8s-io">CustomResourceColumnDefinition</a> array</I></TD><TD>additionalPrinterColumns specifies additional columns returned in Table output. See https://kubernetes.io/docs/reference/using-api/api-concepts/#receiving-resources-as-tables for details. If no columns are specified, a single column displaying the age of the custom resource is used.</TD></TR>
+<TR><TD><CODE>deprecated</CODE><BR /><I>boolean</I></TD><TD>deprecated indicates this version of the custom resource API is deprecated. When set to true, API requests to this version receive a warning header in the server response. Defaults to false.</TD></TR>
+<TR><TD><CODE>deprecationWarning</CODE><BR /><I>string</I></TD><TD>deprecationWarning overrides the default warning returned to API clients. May only be set when `deprecated` is true. The default warning indicates this version is deprecated and recommends use of the newest served version of equal or greater stability, if one exists.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the version name, e.g. “v1”, “v2beta1”, etc. The custom resources are served under this version at `/apis/&lt;group&gt;/&lt;version&gt;/...` if `served` is true.</TD></TR>
+<TR><TD><CODE>schema</CODE><BR /><I><a href="#customresourcevalidation-v1-apiextensions-k8s-io">CustomResourceValidation</a></I></TD><TD>schema describes the schema used for validation, pruning, and defaulting of this version of the custom resource.</TD></TR>
+<TR><TD><CODE>served</CODE><BR /><I>boolean</I></TD><TD>served is a flag enabling/disabling this version from being served via REST APIs</TD></TR>
+<TR><TD><CODE>storage</CODE><BR /><I>boolean</I></TD><TD>storage indicates this version should be used when persisting custom resources to storage. There must be exactly one version with storage=true.</TD></TR>
+<TR><TD><CODE>subresources</CODE><BR /><I><a href="#customresourcesubresources-v1-apiextensions-k8s-io">CustomResourceSubresources</a></I></TD><TD>subresources specify what subresources this version of the defined custom resource have.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="customresourcesubresourcescale-v1-apiextensions-k8s-io">CustomResourceSubresourceScale v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CustomResourceSubresourceScale</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CustomResourceSubresourceScale defines how to serve the scale subresource for CustomResources.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcesubresources-v1-apiextensions-k8s-io">CustomResourceSubresources [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>labelSelectorPath</CODE><BR /><I>string</I></TD><TD>labelSelectorPath defines the JSON path inside of a custom resource that corresponds to Scale `status.selector`. Only JSON paths without the array notation are allowed. Must be a JSON Path under `.status` or `.spec`. Must be set to work with HorizontalPodAutoscaler. The field pointed by this JSON path must be a string field (not a complex selector struct) which contains a serialized label selector in string form. More info: https://kubernetes.io/docs/tasks/access-kubernetes-api/custom-resources/custom-resource-definitions#scale-subresource If there is no value under the given path in the custom resource, the `status.selector` value in the `/scale` subresource will default to the empty string.</TD></TR>
+<TR><TD><CODE>specReplicasPath</CODE><BR /><I>string</I></TD><TD>specReplicasPath defines the JSON path inside of a custom resource that corresponds to Scale `spec.replicas`. Only JSON paths without the array notation are allowed. Must be a JSON Path under `.spec`. If there is no value under the given path in the custom resource, the `/scale` subresource will return an error on GET.</TD></TR>
+<TR><TD><CODE>statusReplicasPath</CODE><BR /><I>string</I></TD><TD>statusReplicasPath defines the JSON path inside of a custom resource that corresponds to Scale `status.replicas`. Only JSON paths without the array notation are allowed. Must be a JSON Path under `.status`. If there is no value under the given path in the custom resource, the `status.replicas` value in the `/scale` subresource will default to 0.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="customresourcesubresourcestatus-v1-apiextensions-k8s-io">CustomResourceSubresourceStatus v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CustomResourceSubresourceStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CustomResourceSubresourceStatus defines how to serve the status subresource for CustomResources. Status is represented by the `.status` JSON path inside of a CustomResource. When set, * exposes a /status subresource for the custom resource * PUT requests to the /status subresource take a custom resource object, and ignore changes to anything except the status stanza * PUT/POST/PATCH requests to the custom resource ignore changes to the status stanza</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcesubresources-v1-apiextensions-k8s-io">CustomResourceSubresources [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+</TBODY>
+</TABLE>
+<H2 id="customresourcesubresources-v1-apiextensions-k8s-io">CustomResourceSubresources v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CustomResourceSubresources</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CustomResourceSubresources defines the status and scale subresources for CustomResources.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcedefinitionversion-v1-apiextensions-k8s-io">CustomResourceDefinitionVersion [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>scale</CODE><BR /><I><a href="#customresourcesubresourcescale-v1-apiextensions-k8s-io">CustomResourceSubresourceScale</a></I></TD><TD>scale indicates the custom resource should serve a `/scale` subresource that returns an `autoscaling/v1` Scale object.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#customresourcesubresourcestatus-v1-apiextensions-k8s-io">CustomResourceSubresourceStatus</a></I></TD><TD>status indicates the custom resource should serve a `/status` subresource. When enabled: 1. requests to the custom resource primary endpoint ignore changes to the `status` stanza of the object. 2. requests to the custom resource `/status` subresource ignore changes to anything other than the `status` stanza of the object.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="customresourcevalidation-v1-apiextensions-k8s-io">CustomResourceValidation v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CustomResourceValidation</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CustomResourceValidation is a list of validation methods for CustomResources.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcedefinitionversion-v1-apiextensions-k8s-io">CustomResourceDefinitionVersion [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>openAPIV3Schema</CODE><BR /><I><a href="#jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps</a></I></TD><TD>openAPIV3Schema is the OpenAPI v3 schema to use for validation and pruning.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="daemonendpoint-v1-core">DaemonEndpoint v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>DaemonEndpoint</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>DaemonEndpoint contains information about a single Daemon endpoint.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodedaemonendpoints-v1-core">NodeDaemonEndpoints [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>Port</CODE><BR /><I>integer</I></TD><TD>Port number of the given endpoint.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="daemonsetcondition-v1-apps">DaemonSetCondition v1 apps</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>DaemonSetCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>DaemonSetCondition describes the state of a DaemonSet at a certain point.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#daemonsetstatus-v1-apps">DaemonSetStatus [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>A human readable message indicating details about the transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>The reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status of the condition, one of True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of DaemonSet condition.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="daemonsetupdatestrategy-v1-apps">DaemonSetUpdateStrategy v1 apps</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>DaemonSetUpdateStrategy</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>DaemonSetUpdateStrategy is a struct used to control the update strategy for a DaemonSet.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#daemonsetspec-v1-apps">DaemonSetSpec [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rollingUpdate</CODE><BR /><I><a href="#rollingupdatedaemonset-v1-apps">RollingUpdateDaemonSet</a></I></TD><TD>Rolling update config params. Present only if type = &#34;RollingUpdate&#34;.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of daemon set update. Can be &#34;RollingUpdate&#34; or &#34;OnDelete&#34;. Default is RollingUpdate.  Possible enum values:  - `&#34;OnDelete&#34;` Replace the old daemons only when it&#39;s killed  - `&#34;RollingUpdate&#34;` Replace the old daemons by new ones using rolling update i.e replace them on each node one after the other.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="deleteoptions-v1-meta">DeleteOptions v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>DeleteOptions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>DeleteOptions may be provided when deleting an API object.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#eviction-v1-policy">Eviction [policy/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>dryRun</CODE><BR /><I>string array</I></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE><BR /><I>integer</I></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE><BR /><I>boolean</I></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the &#34;orphan&#34; finalizer will be added to/removed from the object&#39;s finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>preconditions</CODE><BR /><I><a href="#preconditions-v1-meta">Preconditions</a></I></TD><TD>Must be fulfilled before a deletion is carried out. If not possible, a 409 Conflict status will be returned.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE><BR /><I>string</I></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: &#39;Orphan&#39; - orphan the dependents; &#39;Background&#39; - allow the garbage collector to delete the dependents in the background; &#39;Foreground&#39; - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="deploymentcondition-v1-apps">DeploymentCondition v1 apps</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>DeploymentCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>DeploymentCondition describes the state of a deployment at a certain point.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#deploymentstatus-v1-apps">DeploymentStatus [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>lastUpdateTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>The last time this condition was updated.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>A human readable message indicating details about the transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>The reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status of the condition, one of True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of deployment condition.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="downwardapiprojection-v1-core">DownwardAPIProjection v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>DownwardAPIProjection</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents downward API info for projecting into a projected volume. Note that this is identical to a downwardAPI volume source without the default mode.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volumeprojection-v1-core">VolumeProjection [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#downwardapivolumefile-v1-core">DownwardAPIVolumeFile</a> array</I></TD><TD>Items is a list of DownwardAPIVolume file</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="downwardapivolumefile-v1-core">DownwardAPIVolumeFile v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>DownwardAPIVolumeFile</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>DownwardAPIVolumeFile represents information to create the file containing the pod field</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#downwardapiprojection-v1-core">DownwardAPIProjection [core/v1]</a></LI>
+  <LI><a href="#downwardapivolumesource-v1-core">DownwardAPIVolumeSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fieldRef</CODE><BR /><I><a href="#objectfieldselector-v1-core">ObjectFieldSelector</a></I></TD><TD>Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.</TD></TR>
+<TR><TD><CODE>mode</CODE><BR /><I>integer</I></TD><TD>Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the &#39;..&#39; path. Must be utf-8 encoded. The first item of the relative path must not start with &#39;..&#39;</TD></TR>
+<TR><TD><CODE>resourceFieldRef</CODE><BR /><I><a href="#resourcefieldselector-v1-core">ResourceFieldSelector</a></I></TD><TD>Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="downwardapivolumesource-v1-core">DownwardAPIVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>DownwardAPIVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>DownwardAPIVolumeSource represents a volume containing downward API info. Downward API volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>defaultMode</CODE><BR /><I>integer</I></TD><TD>Optional: mode bits to use on created files by default. Must be a Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#downwardapivolumefile-v1-core">DownwardAPIVolumeFile</a> array</I></TD><TD>Items is a list of downward API volume file</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="emptydirvolumesource-v1-core">EmptyDirVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EmptyDirVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents an empty directory for a pod. Empty directory volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>medium</CODE><BR /><I>string</I></TD><TD>What type of storage medium should back this directory. The default is &#34;&#34; which means to use the node&#39;s default medium. Must be an empty string (default) or Memory. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir</TD></TR>
+<TR><TD><CODE>sizeLimit</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>Total amount of local storage required for this EmptyDir volume. The size limit is also applicable for memory medium. The maximum usage on memory medium EmptyDir would be the minimum value between the SizeLimit specified here and the sum of memory limits of all containers in a pod. The default is nil which means that the limit is undefined. More info: http://kubernetes.io/docs/user-guide/volumes#emptydir</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="endpoint-v1-discovery-k8s-io">Endpoint v1 discovery.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Endpoint</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Endpoint represents a single logical &#34;backend&#34; implementing a service.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#endpoint-v1beta1-discovery-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice [discovery/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>addresses</CODE><BR /><I>string array</I></TD><TD>addresses of this endpoint. The contents of this field are interpreted according to the corresponding EndpointSlice addressType field. Consumers must handle different types of addresses in the context of their own capabilities. This must contain at least one address but no more than 100.</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#endpointconditions-v1-discovery-k8s-io">EndpointConditions</a></I></TD><TD>conditions contains information about the current status of the endpoint.</TD></TR>
+<TR><TD><CODE>deprecatedTopology</CODE><BR /><I>object</I></TD><TD>deprecatedTopology contains topology information part of the v1beta1 API. This field is deprecated, and will be removed when the v1beta1 API is removed (no sooner than kubernetes v1.24).  While this field can hold values, it is not writable through the v1 API, and any attempts to write to it will be silently ignored. Topology information can be found in the zone and nodeName fields instead.</TD></TR>
+<TR><TD><CODE>hints</CODE><BR /><I><a href="#endpointhints-v1-discovery-k8s-io">EndpointHints</a></I></TD><TD>hints contains information associated with how an endpoint should be consumed.</TD></TR>
+<TR><TD><CODE>hostname</CODE><BR /><I>string</I></TD><TD>hostname of this endpoint. This field may be used by consumers of endpoints to distinguish endpoints from each other (e.g. in DNS names). Multiple endpoints which use the same hostname should be considered fungible (e.g. multiple A values in DNS). Must be lowercase and pass DNS Label (RFC 1123) validation.</TD></TR>
+<TR><TD><CODE>nodeName</CODE><BR /><I>string</I></TD><TD>nodeName represents the name of the Node hosting this endpoint. This can be used to determine endpoints local to a Node. This field can be enabled with the EndpointSliceNodeName feature gate.</TD></TR>
+<TR><TD><CODE>targetRef</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>targetRef is a reference to a Kubernetes object that represents this endpoint.</TD></TR>
+<TR><TD><CODE>zone</CODE><BR /><I>string</I></TD><TD>zone is the name of the Zone this endpoint exists in.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="endpointaddress-v1-core">EndpointAddress v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EndpointAddress</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>EndpointAddress is a tuple that describes single IP address.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpointsubset-v1-core">EndpointSubset [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>hostname</CODE><BR /><I>string</I></TD><TD>The Hostname of this endpoint</TD></TR>
+<TR><TD><CODE>ip</CODE><BR /><I>string</I></TD><TD>The IP of this endpoint. May not be loopback (127.0.0.0/8), link-local (169.254.0.0/16), or link-local multicast ((224.0.0.0/24). IPv6 is also accepted but not fully supported on all platforms. Also, certain kubernetes components, like kube-proxy, are not IPv6 ready.</TD></TR>
+<TR><TD><CODE>nodeName</CODE><BR /><I>string</I></TD><TD>Optional: Node hosting this endpoint. This can be used to determine endpoints local to a node.</TD></TR>
+<TR><TD><CODE>targetRef</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>Reference to object providing the endpoint.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="endpointconditions-v1-discovery-k8s-io">EndpointConditions v1 discovery.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EndpointConditions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>EndpointConditions represents the current condition of an endpoint.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#endpointconditions-v1beta1-discovery-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpoint-v1-discovery-k8s-io">Endpoint [discovery/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ready</CODE><BR /><I>boolean</I></TD><TD>ready indicates that this endpoint is prepared to receive traffic, according to whatever system is managing the endpoint. A nil value indicates an unknown state. In most cases consumers should interpret this unknown state as ready. For compatibility reasons, ready should never be &#34;true&#34; for terminating endpoints.</TD></TR>
+<TR><TD><CODE>serving</CODE><BR /><I>boolean</I></TD><TD>serving is identical to ready except that it is set regardless of the terminating state of endpoints. This condition should be set to true for a ready endpoint that is terminating. If nil, consumers should defer to the ready condition. This field can be enabled with the EndpointSliceTerminatingCondition feature gate.</TD></TR>
+<TR><TD><CODE>terminating</CODE><BR /><I>boolean</I></TD><TD>terminating indicates that this endpoint is terminating. A nil value indicates an unknown state. Consumers should interpret this unknown state to mean that the endpoint is not terminating. This field can be enabled with the EndpointSliceTerminatingCondition feature gate.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="endpointhints-v1-discovery-k8s-io">EndpointHints v1 discovery.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EndpointHints</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>EndpointHints provides hints describing how an endpoint should be consumed.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#endpointhints-v1beta1-discovery-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpoint-v1-discovery-k8s-io">Endpoint [discovery/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>forZones</CODE><BR /><I><a href="#forzone-v1-discovery-k8s-io">ForZone</a> array</I></TD><TD>forZones indicates the zone(s) this endpoint should be consumed by to enable topology aware routing.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="endpointport-v1-core">EndpointPort v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EndpointPort</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>EndpointPort is a tuple that describes a single port.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#endpointport-v1beta1-discovery-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpointsubset-v1-core">EndpointSubset [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>appProtocol</CODE><BR /><I>string</I></TD><TD>The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and http://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>The name of this port.  This must match the &#39;name&#39; field in the corresponding ServicePort. Must be a DNS_LABEL. Optional only if one port is defined.</TD></TR>
+<TR><TD><CODE>port</CODE><BR /><I>integer</I></TD><TD>The port number of the endpoint.</TD></TR>
+<TR><TD><CODE>protocol</CODE><BR /><I>string</I></TD><TD>The IP protocol for this port. Must be UDP, TCP, or SCTP. Default is TCP.  Possible enum values:  - `&#34;SCTP&#34;` is the SCTP protocol.  - `&#34;TCP&#34;` is the TCP protocol.  - `&#34;UDP&#34;` is the UDP protocol.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="endpointsubset-v1-core">EndpointSubset v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EndpointSubset</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>EndpointSubset is a group of addresses with a common set of ports. The expanded set of endpoints is the Cartesian product of Addresses x Ports. For example, given:
+  {
+    Addresses: [{&#34;ip&#34;: &#34;10.10.1.1&#34;}, {&#34;ip&#34;: &#34;10.10.2.2&#34;}],
+    Ports:     [{&#34;name&#34;: &#34;a&#34;, &#34;port&#34;: 8675}, {&#34;name&#34;: &#34;b&#34;, &#34;port&#34;: 309}]
+  }
+The resulting set of endpoints can be viewed as:
+    a: [ 10.10.1.1:8675, 10.10.2.2:8675 ],
+    b: [ 10.10.1.1:309, 10.10.2.2:309 ]</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpoints-v1-core">Endpoints [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>addresses</CODE><BR /><I><a href="#endpointaddress-v1-core">EndpointAddress</a> array</I></TD><TD>IP addresses which offer the related ports that are marked as ready. These endpoints should be considered safe for load balancers and clients to utilize.</TD></TR>
+<TR><TD><CODE>notReadyAddresses</CODE><BR /><I><a href="#endpointaddress-v1-core">EndpointAddress</a> array</I></TD><TD>IP addresses which offer the related ports but are not currently marked as ready because they have not yet finished starting, have recently failed a readiness check, or have recently failed a liveness check.</TD></TR>
+<TR><TD><CODE>ports</CODE><BR /><I><a href="#endpointport-v1-core">EndpointPort</a> array</I></TD><TD>Port numbers available on the related IP addresses.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="envfromsource-v1-core">EnvFromSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EnvFromSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>EnvFromSource represents the source of a set of ConfigMaps</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#container-v1-core">Container [core/v1]</a></LI>
+  <LI><a href="#ephemeralcontainer-v1-core">EphemeralContainer [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>configMapRef</CODE><BR /><I><a href="#configmapenvsource-v1-core">ConfigMapEnvSource</a></I></TD><TD>The ConfigMap to select from</TD></TR>
+<TR><TD><CODE>prefix</CODE><BR /><I>string</I></TD><TD>An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#secretenvsource-v1-core">SecretEnvSource</a></I></TD><TD>The Secret to select from</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="envvar-v1-core">EnvVar v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EnvVar</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>EnvVar represents an environment variable present in a Container.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#container-v1-core">Container [core/v1]</a></LI>
+  <LI><a href="#ephemeralcontainer-v1-core">EphemeralContainer [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the environment variable. Must be a C_IDENTIFIER.</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I>string</I></TD><TD>Variable references $(VAR_NAME) are expanded using the previously defined environment variables in the container and any service environment variables. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. &#34;$$(VAR_NAME)&#34; will produce the string literal &#34;$(VAR_NAME)&#34;. Escaped references will never be expanded, regardless of whether the variable exists or not. Defaults to &#34;&#34;.</TD></TR>
+<TR><TD><CODE>valueFrom</CODE><BR /><I><a href="#envvarsource-v1-core">EnvVarSource</a></I></TD><TD>Source for the environment variable&#39;s value. Cannot be used if value is not empty.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="envvarsource-v1-core">EnvVarSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EnvVarSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>EnvVarSource represents a source for the value of an EnvVar.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#envvar-v1-core">EnvVar [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>configMapKeyRef</CODE><BR /><I><a href="#configmapkeyselector-v1-core">ConfigMapKeySelector</a></I></TD><TD>Selects a key of a ConfigMap.</TD></TR>
+<TR><TD><CODE>fieldRef</CODE><BR /><I><a href="#objectfieldselector-v1-core">ObjectFieldSelector</a></I></TD><TD>Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels[&#39;&lt;KEY&gt;&#39;]`, `metadata.annotations[&#39;&lt;KEY&gt;&#39;]`, spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.</TD></TR>
+<TR><TD><CODE>resourceFieldRef</CODE><BR /><I><a href="#resourcefieldselector-v1-core">ResourceFieldSelector</a></I></TD><TD>Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.</TD></TR>
+<TR><TD><CODE>secretKeyRef</CODE><BR /><I><a href="#secretkeyselector-v1-core">SecretKeySelector</a></I></TD><TD>Selects a key of a secret in the pod&#39;s namespace</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="ephemeralcontainer-v1-core">EphemeralContainer v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EphemeralContainer</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>An EphemeralContainer is a temporary container that you may add to an existing Pod for user-initiated activities such as debugging. Ephemeral containers have no resource or scheduling guarantees, and they will not be restarted when they exit or when a Pod is removed or restarted. The kubelet may evict a Pod if an ephemeral container causes the Pod to exceed its resource allocation.
+
+To add an ephemeral container, use the ephemeralcontainers subresource of an existing Pod. Ephemeral containers may not be removed or restarted.
+
+This is a beta feature available on clusters that haven&#39;t disabled the EphemeralContainers feature gate.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>args</CODE><BR /><I>string array</I></TD><TD>Arguments to the entrypoint. The docker image&#39;s CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container&#39;s environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. &#34;$$(VAR_NAME)&#34; will produce the string literal &#34;$(VAR_NAME)&#34;. Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell</TD></TR>
+<TR><TD><CODE>command</CODE><BR /><I>string array</I></TD><TD>Entrypoint array. Not executed within a shell. The docker image&#39;s ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container&#39;s environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. &#34;$$(VAR_NAME)&#34; will produce the string literal &#34;$(VAR_NAME)&#34;. Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell</TD></TR>
+<TR><TD><CODE>env</CODE><BR /><I><a href="#envvar-v1-core">EnvVar</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>name</I></TD><TD>List of environment variables to set in the container. Cannot be updated.</TD></TR>
+<TR><TD><CODE>envFrom</CODE><BR /><I><a href="#envfromsource-v1-core">EnvFromSource</a> array</I></TD><TD>List of sources to populate environment variables in the container. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.</TD></TR>
+<TR><TD><CODE>image</CODE><BR /><I>string</I></TD><TD>Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images</TD></TR>
+<TR><TD><CODE>imagePullPolicy</CODE><BR /><I>string</I></TD><TD>Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images  Possible enum values:  - `&#34;Always&#34;` means that kubelet always attempts to pull the latest image. Container will fail If the pull fails.  - `&#34;IfNotPresent&#34;` means that kubelet pulls if the image isn&#39;t present on disk. Container will fail if the image isn&#39;t present and the pull fails.  - `&#34;Never&#34;` means that kubelet never pulls an image, but only uses a local image. Container will fail if the image isn&#39;t present</TD></TR>
+<TR><TD><CODE>lifecycle</CODE><BR /><I><a href="#lifecycle-v1-core">Lifecycle</a></I></TD><TD>Lifecycle is not allowed for ephemeral containers.</TD></TR>
+<TR><TD><CODE>livenessProbe</CODE><BR /><I><a href="#probe-v1-core">Probe</a></I></TD><TD>Probes are not allowed for ephemeral containers.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the ephemeral container specified as a DNS_LABEL. This name must be unique among all containers, init containers and ephemeral containers.</TD></TR>
+<TR><TD><CODE>ports</CODE><BR /><I><a href="#containerport-v1-core">ContainerPort</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>containerPort</I></TD><TD>Ports are not allowed for ephemeral containers.</TD></TR>
+<TR><TD><CODE>readinessProbe</CODE><BR /><I><a href="#probe-v1-core">Probe</a></I></TD><TD>Probes are not allowed for ephemeral containers.</TD></TR>
+<TR><TD><CODE>resources</CODE><BR /><I><a href="#resourcerequirements-v1-core">ResourceRequirements</a></I></TD><TD>Resources are not allowed for ephemeral containers. Ephemeral containers use spare resources already allocated to the pod.</TD></TR>
+<TR><TD><CODE>securityContext</CODE><BR /><I><a href="#securitycontext-v1-core">SecurityContext</a></I></TD><TD>Optional: SecurityContext defines the security options the ephemeral container should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.</TD></TR>
+<TR><TD><CODE>startupProbe</CODE><BR /><I><a href="#probe-v1-core">Probe</a></I></TD><TD>Probes are not allowed for ephemeral containers.</TD></TR>
+<TR><TD><CODE>stdin</CODE><BR /><I>boolean</I></TD><TD>Whether this container should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the container will always result in EOF. Default is false.</TD></TR>
+<TR><TD><CODE>stdinOnce</CODE><BR /><I>boolean</I></TD><TD>Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the container is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false</TD></TR>
+<TR><TD><CODE>targetContainerName</CODE><BR /><I>string</I></TD><TD>If set, the name of the container from PodSpec that this ephemeral container targets. The ephemeral container will be run in the namespaces (IPC, PID, etc) of this container. If not set then the ephemeral container uses the namespaces configured in the Pod spec.  The container runtime must implement support for this feature. If the runtime does not support namespace targeting then the result of setting this field is undefined.</TD></TR>
+<TR><TD><CODE>terminationMessagePath</CODE><BR /><I>string</I></TD><TD>Optional: Path at which the file to which the container&#39;s termination message will be written is mounted into the container&#39;s filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.</TD></TR>
+<TR><TD><CODE>terminationMessagePolicy</CODE><BR /><I>string</I></TD><TD>Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the container status message on both success and failure. FallbackToLogsOnError will use the last chunk of container log output if the termination message file is empty and the container exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.  Possible enum values:  - `&#34;FallbackToLogsOnError&#34;` will read the most recent contents of the container logs for the container status message when the container exits with an error and the terminationMessagePath has no contents.  - `&#34;File&#34;` is the default behavior and will set the container status message to the contents of the container&#39;s terminationMessagePath when the container exits.</TD></TR>
+<TR><TD><CODE>tty</CODE><BR /><I>boolean</I></TD><TD>Whether this container should allocate a TTY for itself, also requires &#39;stdin&#39; to be true. Default is false.</TD></TR>
+<TR><TD><CODE>volumeDevices</CODE><BR /><I><a href="#volumedevice-v1-core">VolumeDevice</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>devicePath</I></TD><TD>volumeDevices is the list of block devices to be used by the container.</TD></TR>
+<TR><TD><CODE>volumeMounts</CODE><BR /><I><a href="#volumemount-v1-core">VolumeMount</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>mountPath</I></TD><TD>Pod volumes to mount into the container&#39;s filesystem. Subpath mounts are not allowed for ephemeral containers. Cannot be updated.</TD></TR>
+<TR><TD><CODE>workingDir</CODE><BR /><I>string</I></TD><TD>Container&#39;s working directory. If not specified, the container runtime&#39;s default will be used, which might be configured in the container image. Cannot be updated.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="ephemeralvolumesource-v1-core">EphemeralVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EphemeralVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents an ephemeral volume that is handled by a normal storage driver.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>volumeClaimTemplate</CODE><BR /><I><a href="#persistentvolumeclaimtemplate-v1-core">PersistentVolumeClaimTemplate</a></I></TD><TD>Will be used to create a stand-alone PVC to provision the volume. The pod in which this EphemeralVolumeSource is embedded will be the owner of the PVC, i.e. the PVC will be deleted together with the pod.  The name of the PVC will be `&lt;pod name&gt;-&lt;volume name&gt;` where `&lt;volume name&gt;` is the name from the `PodSpec.Volumes` array entry. Pod validation will reject the pod if the concatenated name is not valid for a PVC (for example, too long).  An existing PVC with that name that is not owned by the pod will *not* be used for the pod to avoid using an unrelated volume by mistake. Starting the pod is then blocked until the unrelated PVC is removed. If such a pre-created PVC is meant to be used by the pod, the PVC has to updated with an owner reference to the pod once the pod exists. Normally this should not be necessary, but it may be useful when manually reconstructing a broken cluster.  This field is read-only and no changes will be made by Kubernetes to the PVC after it has been created.  Required, must not be nil.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="eventseries-v1-events-k8s-io">EventSeries v1 events.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>events.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EventSeries</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>EventSeries contain information on series of events, i.e. thing that was/is happening continuously for some time. How often to update the EventSeries is up to the event reporters. The default event reporter in &#34;k8s.io/client-go/tools/events/event_broadcaster.go&#34; shows how this struct is updated on heartbeats and can guide customized reporter implementations.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#eventseries-v1beta1-events-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#event-v1-events-k8s-io">Event [events/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>count</CODE><BR /><I>integer</I></TD><TD>count is the number of occurrences in this series up to the last heartbeat time.</TD></TR>
+<TR><TD><CODE>lastObservedTime</CODE><BR /><I><a href="#microtime-v1-meta">MicroTime</a></I></TD><TD>lastObservedTime is the time when last Event from the series was seen before last heartbeat.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="eventsource-v1-core">EventSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EventSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>EventSource contains information for an event.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#event-v1-core">Event [core/v1]</a></LI>
+  <LI><a href="#event-v1-events-k8s-io">Event [events/v1]</a></LI>
+  <LI><a href="#event-v1beta1-events-k8s-io">Event [events/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>component</CODE><BR /><I>string</I></TD><TD>Component from which the event is generated.</TD></TR>
+<TR><TD><CODE>host</CODE><BR /><I>string</I></TD><TD>Node name on which the event is generated.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="eviction-v1-policy">Eviction v1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Eviction</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Eviction evicts a pod from its node subject to certain policies and safety constraints. This is a subresource of Pod.  A request to cause such an eviction is created by POSTing to .../pods/&lt;pod name&gt;/evictions.</P>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>deleteOptions</CODE><BR /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD>DeleteOptions may be provided</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>ObjectMeta describes the pod that is being evicted.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="execaction-v1-core">ExecAction v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ExecAction</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ExecAction describes a &#34;run in container&#34; action.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#lifecyclehandler-v1-core">LifecycleHandler [core/v1]</a></LI>
+  <LI><a href="#probe-v1-core">Probe [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>command</CODE><BR /><I>string array</I></TD><TD>Command is the command line to execute inside the container, the working directory for the command  is root (&#39;/&#39;) in the container&#39;s filesystem. The command is simply exec&#39;d, it is not run inside a shell, so traditional shell instructions (&#39;|&#39;, etc) won&#39;t work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="externaldocumentation-v1-apiextensions-k8s-io">ExternalDocumentation v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ExternalDocumentation</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ExternalDocumentation allows referencing an external resource for extended documentation.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>description</CODE><BR /><I>string</I></TD><TD></TD></TR>
+<TR><TD><CODE>url</CODE><BR /><I>string</I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="externalmetricsource-v2-autoscaling">ExternalMetricSource v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>ExternalMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ExternalMetricSource indicates how to scale on a metric not associated with any Kubernetes object (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#externalmetricsource-v2beta2-autoscaling">v2beta2</a>
+<a href="#externalmetricsource-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2-autoscaling">MetricSpec [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#metrictarget-v2-autoscaling">MetricTarget</a></I></TD><TD>target specifies the target value for the given metric</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="externalmetricstatus-v2-autoscaling">ExternalMetricStatus v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>ExternalMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ExternalMetricStatus indicates the current value of a global metric not associated with any Kubernetes object.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#externalmetricstatus-v2beta2-autoscaling">v2beta2</a>
+<a href="#externalmetricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2-autoscaling">MetricStatus [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>current</CODE><BR /><I><a href="#metricvaluestatus-v2-autoscaling">MetricValueStatus</a></I></TD><TD>current contains the current value for the given metric</TD></TR>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="fcvolumesource-v1-core">FCVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>FCVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Fibre Channel volume. Fibre Channel volumes can only be mounted as read/write once. Fibre Channel volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified.</TD></TR>
+<TR><TD><CODE>lun</CODE><BR /><I>integer</I></TD><TD>Optional: FC target lun number</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.</TD></TR>
+<TR><TD><CODE>targetWWNs</CODE><BR /><I>string array</I></TD><TD>Optional: FC target worldwide names (WWNs)</TD></TR>
+<TR><TD><CODE>wwids</CODE><BR /><I>string array</I></TD><TD>Optional: FC volume world wide identifiers (wwids) Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="fsgroupstrategyoptions-v1beta1-policy">FSGroupStrategyOptions v1beta1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>FSGroupStrategyOptions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>FSGroupStrategyOptions defines the strategy type and options used to create the strategy.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ranges</CODE><BR /><I><a href="#idrange-v1beta1-policy">IDRange</a> array</I></TD><TD>ranges are the allowed ranges of fs groups.  If you would like to force a single fs group then supply a single range with the same start and end. Required for MustRunAs.</TD></TR>
+<TR><TD><CODE>rule</CODE><BR /><I>string</I></TD><TD>rule is the strategy that will dictate what FSGroup is used in the SecurityContext.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="fieldsv1-v1-meta">FieldsV1 v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>FieldsV1</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>FieldsV1 stores a set of fields in a data structure like a Trie, in JSON format.
+
+Each key is either a &#39;.&#39; representing the field itself, and will always map to an empty set, or a string representing a sub-field or item. The string will follow one of these four formats: &#39;f:&lt;name&gt;&#39;, where &lt;name&gt; is the name of a field in a struct, or key in a map &#39;v:&lt;value&gt;&#39;, where &lt;value&gt; is the exact json formatted value of a list item &#39;i:&lt;index&gt;&#39;, where &lt;index&gt; is position of a item in a list &#39;k:&lt;keys&gt;&#39;, where &lt;keys&gt; is a map of  a list item&#39;s key fields to their unique values If a key maps to an empty Fields value, the field that key represents is part of the set.
+
+The exact format is defined in sigs.k8s.io/structured-merge-diff</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#managedfieldsentry-v1-meta">ManagedFieldsEntry [meta/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+</TBODY>
+</TABLE>
+<H2 id="flexpersistentvolumesource-v1-core">FlexPersistentVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>FlexPersistentVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>FlexPersistentVolumeSource represents a generic persistent volume resource that is provisioned/attached using an exec based plugin.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>driver</CODE><BR /><I>string</I></TD><TD>Driver is the name of the driver to use for this volume.</TD></TR>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. The default filesystem depends on FlexVolume script.</TD></TR>
+<TR><TD><CODE>options</CODE><BR /><I>object</I></TD><TD>Optional: Extra command options if any.</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#secretreference-v1-core">SecretReference</a></I></TD><TD>Optional: SecretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="flexvolumesource-v1-core">FlexVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>FlexVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>FlexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>driver</CODE><BR /><I>string</I></TD><TD>Driver is the name of the driver to use for this volume.</TD></TR>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. The default filesystem depends on FlexVolume script.</TD></TR>
+<TR><TD><CODE>options</CODE><BR /><I>object</I></TD><TD>Optional: Extra command options if any.</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#localobjectreference-v1-core">LocalObjectReference</a></I></TD><TD>Optional: SecretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="flockervolumesource-v1-core">FlockerVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>FlockerVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Flocker volume mounted by the Flocker agent. One and only one of datasetName and datasetUUID should be set. Flocker volumes do not support ownership management or SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>datasetName</CODE><BR /><I>string</I></TD><TD>Name of the dataset stored as metadata -&gt; name on the dataset for Flocker should be considered as deprecated</TD></TR>
+<TR><TD><CODE>datasetUUID</CODE><BR /><I>string</I></TD><TD>UUID of the dataset. This is unique identifier of a Flocker dataset</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="flowdistinguishermethod-v1beta2-flowcontrol-apiserver-k8s-io">FlowDistinguisherMethod v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>FlowDistinguisherMethod</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>FlowDistinguisherMethod specifies the method of a flow distinguisher.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#flowdistinguishermethod-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschemaspec-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaSpec [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>`type` is the type of flow distinguisher method The supported types are &#34;ByUser&#34; and &#34;ByNamespace&#34;. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>FlowSchema</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>FlowSchema defines the schema of a group of flows. Note that a flow is made up of a set of inbound API requests with similar attributes and is identified by a pair of strings: the name of the FlowSchema and a &#34;flow distinguisher&#34;.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschemalist-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaList [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>`metadata` is the standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#flowschemaspec-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaSpec</a></I></TD><TD>`spec` is the specification of the desired behavior of a FlowSchema. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#flowschemastatus-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaStatus</a></I></TD><TD>`status` is the current status of a FlowSchema. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="flowschemacondition-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaCondition v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>FlowSchemaCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>FlowSchemaCondition describes conditions for a FlowSchema.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#flowschemacondition-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschemastatus-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaStatus [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>`lastTransitionTime` is the last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>`message` is a human-readable message indicating details about last transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>`reason` is a unique, one-word, CamelCase reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>`status` is the status of the condition. Can be True, False, Unknown. Required.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>`type` is the type of the condition. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="forzone-v1-discovery-k8s-io">ForZone v1 discovery.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ForZone</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ForZone provides information about which zones should consume this endpoint.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#forzone-v1beta1-discovery-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpointhints-v1-discovery-k8s-io">EndpointHints [discovery/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name represents the name of the zone.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="gcepersistentdiskvolumesource-v1-core">GCEPersistentDiskVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>GCEPersistentDiskVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Persistent Disk resource in Google Compute Engine.
+
+A GCE PD must exist before mounting to a container. The disk must also be in the same GCE project and zone as the kubelet. A GCE PD can only be mounted as read/write once or read-only many times. GCE PDs support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk</TD></TR>
+<TR><TD><CODE>partition</CODE><BR /><I>integer</I></TD><TD>The partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as &#34;1&#34;. Similarly, the volume partition for /dev/sda is &#34;0&#34; (or you can leave the property empty). More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk</TD></TR>
+<TR><TD><CODE>pdName</CODE><BR /><I>string</I></TD><TD>Unique name of the PD resource in GCE. Used to identify the disk in GCE. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="grpcaction-v1-core">GRPCAction v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>GRPCAction</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P></P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#probe-v1-core">Probe [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>port</CODE><BR /><I>integer</I></TD><TD>Port number of the gRPC service. Number must be in the range 1 to 65535.</TD></TR>
+<TR><TD><CODE>service</CODE><BR /><I>string</I></TD><TD>Service is the name of the service to place in the gRPC HealthCheckRequest (see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).  If this is not specified, the default behavior is defined by gRPC.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="gitrepovolumesource-v1-core">GitRepoVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>GitRepoVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a volume that is populated with the contents of a git repository. Git repo volumes do not support ownership management. Git repo volumes support SELinux relabeling.
+
+DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod&#39;s container.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>directory</CODE><BR /><I>string</I></TD><TD>Target directory name. Must not contain or start with &#39;..&#39;.  If &#39;.&#39; is supplied, the volume directory will be the git repository.  Otherwise, if specified, the volume will contain the git repository in the subdirectory with the given name.</TD></TR>
+<TR><TD><CODE>repository</CODE><BR /><I>string</I></TD><TD>Repository URL</TD></TR>
+<TR><TD><CODE>revision</CODE><BR /><I>string</I></TD><TD>Commit hash for the specified revision.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="glusterfspersistentvolumesource-v1-core">GlusterfsPersistentVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>GlusterfsPersistentVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Glusterfs mount that lasts the lifetime of a pod. Glusterfs volumes do not support ownership management or SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>endpoints</CODE><BR /><I>string</I></TD><TD>EndpointsName is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod</TD></TR>
+<TR><TD><CODE>endpointsNamespace</CODE><BR /><I>string</I></TD><TD>EndpointsNamespace is the namespace that contains Glusterfs endpoint. If this field is empty, the EndpointNamespace defaults to the same namespace as the bound PVC. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>Path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>ReadOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="glusterfsvolumesource-v1-core">GlusterfsVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>GlusterfsVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Glusterfs mount that lasts the lifetime of a pod. Glusterfs volumes do not support ownership management or SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>endpoints</CODE><BR /><I>string</I></TD><TD>EndpointsName is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>Path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>ReadOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="groupsubject-v1beta2-flowcontrol-apiserver-k8s-io">GroupSubject v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>GroupSubject</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>GroupSubject holds detailed information for group-kind subject.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#groupsubject-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#subject-v1beta2-flowcontrol-apiserver-k8s-io">Subject [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the user group that matches, or &#34;*&#34; to match all user groups. See https://github.com/kubernetes/apiserver/blob/master/pkg/authentication/user/user.go for some well-known group names. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="groupversionfordiscovery-v1-meta">GroupVersionForDiscovery v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>GroupVersionForDiscovery</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>GroupVersion contains the &#34;group/version&#34; and &#34;version&#34; string of a version. It is made a struct to keep extensibility.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apigroup-v1-meta">APIGroup [meta/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>groupVersion</CODE><BR /><I>string</I></TD><TD>groupVersion specifies the API group and version in the form &#34;group/version&#34;</TD></TR>
+<TR><TD><CODE>version</CODE><BR /><I>string</I></TD><TD>version specifies the version in the form of &#34;version&#34;. This is to save the clients the trouble of splitting the GroupVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="hpascalingpolicy-v2-autoscaling">HPAScalingPolicy v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>HPAScalingPolicy</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>HPAScalingPolicy is a single policy which must hold true for a specified past interval.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#hpascalingpolicy-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#hpascalingrules-v2-autoscaling">HPAScalingRules [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>periodSeconds</CODE><BR /><I>integer</I></TD><TD>PeriodSeconds specifies the window of time for which the policy should hold true. PeriodSeconds must be greater than zero and less than or equal to 1800 (30 min).</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type is used to specify the scaling policy.</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I>integer</I></TD><TD>Value contains the amount of change which is permitted by the policy. It must be greater than zero</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="hpascalingrules-v2-autoscaling">HPAScalingRules v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>HPAScalingRules</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>HPAScalingRules configures the scaling behavior for one direction. These Rules are applied after calculating DesiredReplicas from metrics for the HPA. They can limit the scaling velocity by specifying scaling policies. They can prevent flapping by specifying the stabilization window, so that the number of replicas is not set instantly, instead, the safest value from the stabilization window is chosen.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#hpascalingrules-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerbehavior-v2-autoscaling">HorizontalPodAutoscalerBehavior [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policies</CODE><BR /><I><a href="#hpascalingpolicy-v2-autoscaling">HPAScalingPolicy</a> array</I></TD><TD>policies is a list of potential scaling polices which can be used during scaling. At least one policy must be specified, otherwise the HPAScalingRules will be discarded as invalid</TD></TR>
+<TR><TD><CODE>selectPolicy</CODE><BR /><I>string</I></TD><TD>selectPolicy is used to specify which policy should be used. If not set, the default value Max is used.</TD></TR>
+<TR><TD><CODE>stabilizationWindowSeconds</CODE><BR /><I>integer</I></TD><TD>StabilizationWindowSeconds is the number of seconds for which past recommendations should be considered while scaling up or scaling down. StabilizationWindowSeconds must be greater than or equal to zero and less than or equal to 3600 (one hour). If not set, use the default values: - For scale up: 0 (i.e. no stabilization is done). - For scale down: 300 (i.e. the stabilization window is 300 seconds long).</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="httpgetaction-v1-core">HTTPGetAction v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>HTTPGetAction</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>HTTPGetAction describes an action based on HTTP Get requests.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#lifecyclehandler-v1-core">LifecycleHandler [core/v1]</a></LI>
+  <LI><a href="#probe-v1-core">Probe [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>host</CODE><BR /><I>string</I></TD><TD>Host name to connect to, defaults to the pod IP. You probably want to set &#34;Host&#34; in httpHeaders instead.</TD></TR>
+<TR><TD><CODE>httpHeaders</CODE><BR /><I><a href="#httpheader-v1-core">HTTPHeader</a> array</I></TD><TD>Custom headers to set in the request. HTTP allows repeated headers.</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>Path to access on the HTTP server.</TD></TR>
+<TR><TD><CODE>port</CODE></TD><TD>Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.</TD></TR>
+<TR><TD><CODE>scheme</CODE><BR /><I>string</I></TD><TD>Scheme to use for connecting to the host. Defaults to HTTP.  Possible enum values:  - `&#34;HTTP&#34;` means that the scheme used will be http://  - `&#34;HTTPS&#34;` means that the scheme used will be https://</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="httpheader-v1-core">HTTPHeader v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>HTTPHeader</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>HTTPHeader describes a custom header to be used in HTTP probes</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#httpgetaction-v1-core">HTTPGetAction [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>The header field name</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I>string</I></TD><TD>The header field value</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="httpingresspath-v1-networking-k8s-io">HTTPIngressPath v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>HTTPIngressPath</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>HTTPIngressPath associates a path with a backend. Incoming urls matching the path are forwarded to the backend.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#httpingressrulevalue-v1-networking-k8s-io">HTTPIngressRuleValue [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>backend</CODE><BR /><I><a href="#ingressbackend-v1-networking-k8s-io">IngressBackend</a></I></TD><TD>Backend defines the referenced service endpoint to which the traffic will be forwarded to.</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>Path is matched against the path of an incoming request. Currently it can contain characters disallowed from the conventional &#34;path&#34; part of a URL as defined by RFC 3986. Paths must begin with a &#39;/&#39; and must be present when using PathType with value &#34;Exact&#34; or &#34;Prefix&#34;.</TD></TR>
+<TR><TD><CODE>pathType</CODE><BR /><I>string</I></TD><TD>PathType determines the interpretation of the Path matching. PathType can be one of the following values: * Exact: Matches the URL path exactly. * Prefix: Matches based on a URL path prefix split by &#39;/&#39;. Matching is   done on a path element by element basis. A path element refers is the   list of labels in the path split by the &#39;/&#39; separator. A request is a   match for path p if every p is an element-wise prefix of p of the   request path. Note that if the last element of the path is a substring   of the last element in request path, it is not a match (e.g. /foo/bar   matches /foo/bar/baz, but does not match /foo/barbaz). * ImplementationSpecific: Interpretation of the Path matching is up to   the IngressClass. Implementations can treat this as a separate PathType   or treat it identically to Prefix or Exact path types. Implementations are required to support all path types.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="httpingressrulevalue-v1-networking-k8s-io">HTTPIngressRuleValue v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>HTTPIngressRuleValue</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>HTTPIngressRuleValue is a list of http selectors pointing to backends. In the example: http://&lt;host&gt;/&lt;path&gt;?&lt;searchpart&gt; -&gt; backend where where parts of the url correspond to RFC 3986, this resource will be used to match against everything after the last &#39;/&#39; and before the first &#39;?&#39; or &#39;#&#39;.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingressrule-v1-networking-k8s-io">IngressRule [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>paths</CODE><BR /><I><a href="#httpingresspath-v1-networking-k8s-io">HTTPIngressPath</a> array</I></TD><TD>A collection of paths that map requests to backends.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>HorizontalPodAutoscaler</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>HorizontalPodAutoscaler is the configuration for a horizontal pod autoscaler, which automatically manages the replica count of any resource implementing the scale subresource based on the metrics specified.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#horizontalpodautoscaler-v1-autoscaling">v1</a>
+<a href="#horizontalpodautoscaler-v2beta2-autoscaling">v2beta2</a>
+<a href="#horizontalpodautoscaler-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerlist-v2-autoscaling">HorizontalPodAutoscalerList [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>metadata is the standard object metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#horizontalpodautoscalerspec-v2-autoscaling">HorizontalPodAutoscalerSpec</a></I></TD><TD>spec is the specification for the behaviour of the autoscaler. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#horizontalpodautoscalerstatus-v2-autoscaling">HorizontalPodAutoscalerStatus</a></I></TD><TD>status is the current information about the autoscaler.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="horizontalpodautoscalerbehavior-v2-autoscaling">HorizontalPodAutoscalerBehavior v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>HorizontalPodAutoscalerBehavior</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>HorizontalPodAutoscalerBehavior configures the scaling behavior of the target in both Up and Down directions (scaleUp and scaleDown fields respectively).</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#horizontalpodautoscalerbehavior-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerspec-v2-autoscaling">HorizontalPodAutoscalerSpec [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>scaleDown</CODE><BR /><I><a href="#hpascalingrules-v2-autoscaling">HPAScalingRules</a></I></TD><TD>scaleDown is scaling policy for scaling Down. If not set, the default value is to allow to scale down to minReplicas pods, with a 300 second stabilization window (i.e., the highest recommendation for the last 300sec is used).</TD></TR>
+<TR><TD><CODE>scaleUp</CODE><BR /><I><a href="#hpascalingrules-v2-autoscaling">HPAScalingRules</a></I></TD><TD>scaleUp is scaling policy for scaling Up. If not set, the default value is the higher of:   * increase no more than 4 pods per 60 seconds   * double the number of pods per 60 seconds No stabilization is used.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="horizontalpodautoscalercondition-v2-autoscaling">HorizontalPodAutoscalerCondition v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>HorizontalPodAutoscalerCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>HorizontalPodAutoscalerCondition describes the state of a HorizontalPodAutoscaler at a certain point.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#horizontalpodautoscalercondition-v2beta2-autoscaling">v2beta2</a>
+<a href="#horizontalpodautoscalercondition-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerstatus-v2-autoscaling">HorizontalPodAutoscalerStatus [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>lastTransitionTime is the last time the condition transitioned from one status to another</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>message is a human-readable explanation containing details about the transition</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>reason is the reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>status is the status of the condition (True, False, Unknown)</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type describes the current condition</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="hostalias-v1-core">HostAlias v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>HostAlias</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the pod&#39;s hosts file.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>hostnames</CODE><BR /><I>string array</I></TD><TD>Hostnames for the above IP address.</TD></TR>
+<TR><TD><CODE>ip</CODE><BR /><I>string</I></TD><TD>IP address of the host file entry.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="hostpathvolumesource-v1-core">HostPathVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>HostPathVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a host path mapped into a pod. Host path volumes do not support ownership management or SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>Path of the directory on the host. If the path is a symlink, it will follow the link to the real path. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type for HostPath Volume Defaults to &#34;&#34; More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="hostportrange-v1beta1-policy">HostPortRange v1beta1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>HostPortRange</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>HostPortRange defines a range of host ports that will be enabled by a policy for pods to use.  It requires both the start and end to be defined.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>max</CODE><BR /><I>integer</I></TD><TD>max is the end of the range, inclusive.</TD></TR>
+<TR><TD><CODE>min</CODE><BR /><I>integer</I></TD><TD>min is the start of the range, inclusive.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="idrange-v1beta1-policy">IDRange v1beta1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>IDRange</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>IDRange provides a min/max of an allowed range of IDs.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#fsgroupstrategyoptions-v1beta1-policy">FSGroupStrategyOptions [policy/v1beta1]</a></LI>
+  <LI><a href="#runasgroupstrategyoptions-v1beta1-policy">RunAsGroupStrategyOptions [policy/v1beta1]</a></LI>
+  <LI><a href="#runasuserstrategyoptions-v1beta1-policy">RunAsUserStrategyOptions [policy/v1beta1]</a></LI>
+  <LI><a href="#supplementalgroupsstrategyoptions-v1beta1-policy">SupplementalGroupsStrategyOptions [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>max</CODE><BR /><I>integer</I></TD><TD>max is the end of the range, inclusive.</TD></TR>
+<TR><TD><CODE>min</CODE><BR /><I>integer</I></TD><TD>min is the start of the range, inclusive.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="ipblock-v1-networking-k8s-io">IPBlock v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>IPBlock</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>IPBlock describes a particular CIDR (Ex. &#34;192.168.1.1/24&#34;,&#34;2001:db9::/64&#34;) that is allowed to the pods matched by a NetworkPolicySpec&#39;s podSelector. The except entry describes CIDRs that should not be included within this rule.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#networkpolicypeer-v1-networking-k8s-io">NetworkPolicyPeer [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>cidr</CODE><BR /><I>string</I></TD><TD>CIDR is a string representing the IP Block Valid examples are &#34;192.168.1.1/24&#34; or &#34;2001:db9::/64&#34;</TD></TR>
+<TR><TD><CODE>except</CODE><BR /><I>string array</I></TD><TD>Except is a slice of CIDRs that should not be included within an IP Block Valid examples are &#34;192.168.1.1/24&#34; or &#34;2001:db9::/64&#34; Except values will be rejected if they are outside the CIDR range</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="iscsipersistentvolumesource-v1-core">ISCSIPersistentVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ISCSIPersistentVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ISCSIPersistentVolumeSource represents an ISCSI disk. ISCSI volumes can only be mounted as read/write once. ISCSI volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>chapAuthDiscovery</CODE><BR /><I>boolean</I></TD><TD>whether support iSCSI Discovery CHAP authentication</TD></TR>
+<TR><TD><CODE>chapAuthSession</CODE><BR /><I>boolean</I></TD><TD>whether support iSCSI Session CHAP authentication</TD></TR>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi</TD></TR>
+<TR><TD><CODE>initiatorName</CODE><BR /><I>string</I></TD><TD>Custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface &lt;target portal&gt;:&lt;volume name&gt; will be created for the connection.</TD></TR>
+<TR><TD><CODE>iqn</CODE><BR /><I>string</I></TD><TD>Target iSCSI Qualified Name.</TD></TR>
+<TR><TD><CODE>iscsiInterface</CODE><BR /><I>string</I></TD><TD>iSCSI Interface Name that uses an iSCSI transport. Defaults to &#39;default&#39; (tcp).</TD></TR>
+<TR><TD><CODE>lun</CODE><BR /><I>integer</I></TD><TD>iSCSI Target Lun number.</TD></TR>
+<TR><TD><CODE>portals</CODE><BR /><I>string array</I></TD><TD>iSCSI Target Portal List. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#secretreference-v1-core">SecretReference</a></I></TD><TD>CHAP Secret for iSCSI target and initiator authentication</TD></TR>
+<TR><TD><CODE>targetPortal</CODE><BR /><I>string</I></TD><TD>iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="iscsivolumesource-v1-core">ISCSIVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ISCSIVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents an ISCSI disk. ISCSI volumes can only be mounted as read/write once. ISCSI volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>chapAuthDiscovery</CODE><BR /><I>boolean</I></TD><TD>whether support iSCSI Discovery CHAP authentication</TD></TR>
+<TR><TD><CODE>chapAuthSession</CODE><BR /><I>boolean</I></TD><TD>whether support iSCSI Session CHAP authentication</TD></TR>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi</TD></TR>
+<TR><TD><CODE>initiatorName</CODE><BR /><I>string</I></TD><TD>Custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface &lt;target portal&gt;:&lt;volume name&gt; will be created for the connection.</TD></TR>
+<TR><TD><CODE>iqn</CODE><BR /><I>string</I></TD><TD>Target iSCSI Qualified Name.</TD></TR>
+<TR><TD><CODE>iscsiInterface</CODE><BR /><I>string</I></TD><TD>iSCSI Interface Name that uses an iSCSI transport. Defaults to &#39;default&#39; (tcp).</TD></TR>
+<TR><TD><CODE>lun</CODE><BR /><I>integer</I></TD><TD>iSCSI Target Lun number.</TD></TR>
+<TR><TD><CODE>portals</CODE><BR /><I>string array</I></TD><TD>iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#localobjectreference-v1-core">LocalObjectReference</a></I></TD><TD>CHAP Secret for iSCSI target and initiator authentication</TD></TR>
+<TR><TD><CODE>targetPortal</CODE><BR /><I>string</I></TD><TD>iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="ingressbackend-v1-networking-k8s-io">IngressBackend v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>IngressBackend</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>IngressBackend describes all endpoints for a given service and port.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#httpingresspath-v1-networking-k8s-io">HTTPIngressPath [networking/v1]</a></LI>
+  <LI><a href="#ingressspec-v1-networking-k8s-io">IngressSpec [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>resource</CODE><BR /><I><a href="#typedlocalobjectreference-v1-core">TypedLocalObjectReference</a></I></TD><TD>Resource is an ObjectRef to another Kubernetes resource in the namespace of the Ingress object. If resource is specified, a service.Name and service.Port must not be specified. This is a mutually exclusive setting with &#34;Service&#34;.</TD></TR>
+<TR><TD><CODE>service</CODE><BR /><I><a href="#ingressservicebackend-v1-networking-k8s-io">IngressServiceBackend</a></I></TD><TD>Service references a Service as a Backend. This is a mutually exclusive setting with &#34;Resource&#34;.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="ingressclassparametersreference-v1-networking-k8s-io">IngressClassParametersReference v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>IngressClassParametersReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>IngressClassParametersReference identifies an API object. This can be used to specify a cluster or namespace-scoped resource.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingressclassspec-v1-networking-k8s-io">IngressClassSpec [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiGroup</CODE><BR /><I>string</I></TD><TD>APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is the type of resource being referenced.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the name of resource being referenced.</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>Namespace is the namespace of the resource being referenced. This field is required when scope is set to &#34;Namespace&#34; and must be unset when scope is set to &#34;Cluster&#34;.</TD></TR>
+<TR><TD><CODE>scope</CODE><BR /><I>string</I></TD><TD>Scope represents if this refers to a cluster or namespace scoped resource. This may be set to &#34;Cluster&#34; (default) or &#34;Namespace&#34;.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="ingressrule-v1-networking-k8s-io">IngressRule v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>IngressRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>IngressRule represents the rules mapping the paths under a specified host to the related backend services. Incoming requests are first evaluated for a host match, then routed to the backend associated with the matching IngressRuleValue.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingressspec-v1-networking-k8s-io">IngressSpec [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>host</CODE><BR /><I>string</I></TD><TD>Host is the fully qualified domain name of a network host, as defined by RFC 3986. Note the following deviations from the &#34;host&#34; part of the URI as defined in RFC 3986: 1. IPs are not allowed. Currently an IngressRuleValue can only apply to    the IP in the Spec of the parent Ingress. 2. The `:` delimiter is not respected because ports are not allowed. 	  Currently the port of an Ingress is implicitly :80 for http and 	  :443 for https. Both these may change in the future. Incoming requests are matched against the host before the IngressRuleValue. If the host is unspecified, the Ingress routes all traffic based on the specified IngressRuleValue.  Host can be &#34;precise&#34; which is a domain name without the terminating dot of a network host (e.g. &#34;foo.bar.com&#34;) or &#34;wildcard&#34;, which is a domain name prefixed with a single wildcard label (e.g. &#34;*.foo.com&#34;). The wildcard character &#39;\*&#39; must appear by itself as the first DNS label and matches only a single label. You cannot have a wildcard label by itself (e.g. Host == &#34;*&#34;). Requests will be matched against the Host field in the following way: 1. If Host is precise, the request matches this rule if the http host header is equal to Host. 2. If Host is a wildcard, then the request matches this rule if the http host header is to equal to the suffix (removing the first label) of the wildcard rule.</TD></TR>
+<TR><TD><CODE>http</CODE><BR /><I><a href="#httpingressrulevalue-v1-networking-k8s-io">HTTPIngressRuleValue</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="ingressservicebackend-v1-networking-k8s-io">IngressServiceBackend v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>IngressServiceBackend</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>IngressServiceBackend references a Kubernetes Service as a Backend.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingressbackend-v1-networking-k8s-io">IngressBackend [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the referenced service. The service must exist in the same namespace as the Ingress object.</TD></TR>
+<TR><TD><CODE>port</CODE><BR /><I><a href="#servicebackendport-v1-networking-k8s-io">ServiceBackendPort</a></I></TD><TD>Port of the referenced service. A port name or port number is required for a IngressServiceBackend.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="ingresstls-v1-networking-k8s-io">IngressTLS v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>IngressTLS</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>IngressTLS describes the transport layer security associated with an Ingress.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingressspec-v1-networking-k8s-io">IngressSpec [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>hosts</CODE><BR /><I>string array</I></TD><TD>Hosts are a list of hosts included in the TLS certificate. The values in this list must match the name/s used in the tlsSecret. Defaults to the wildcard host setting for the loadbalancer controller fulfilling this Ingress, if left unspecified.</TD></TR>
+<TR><TD><CODE>secretName</CODE><BR /><I>string</I></TD><TD>SecretName is the name of the secret used to terminate TLS traffic on port 443. Field is left optional to allow TLS routing based on SNI hostname alone. If the SNI host in a listener conflicts with the &#34;Host&#34; header field used by an IngressRule, the SNI host is used for termination and value of the Host header is used for routing.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="json-v1-apiextensions-k8s-io">JSON v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>JSON</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>JSON represents any valid JSON value. These types are supported: bool, int64, float64, string, []interface{}, map[string]interface{} and nil.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+</TBODY>
+</TABLE>
+<H2 id="jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>JSONSchemaProps</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>JSONSchemaProps is a JSON-Schema following Specification Draft 4 (http://json-schema.org/).</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcevalidation-v1-apiextensions-k8s-io">CustomResourceValidation [apiextensions/v1]</a></LI>
+  <LI><a href="#jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>$ref</CODE><BR /><I>string</I></TD><TD></TD></TR>
+<TR><TD><CODE>$schema</CODE><BR /><I>string</I></TD><TD></TD></TR>
+<TR><TD><CODE>additionalItems</CODE><BR /><I><a href="#jsonschemapropsorbool-v1-apiextensions-k8s-io">JSONSchemaPropsOrBool</a></I></TD><TD></TD></TR>
+<TR><TD><CODE>additionalProperties</CODE><BR /><I><a href="#jsonschemapropsorbool-v1-apiextensions-k8s-io">JSONSchemaPropsOrBool</a></I></TD><TD></TD></TR>
+<TR><TD><CODE>allOf</CODE><BR /><I><a href="#jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps</a> array</I></TD><TD></TD></TR>
+<TR><TD><CODE>anyOf</CODE><BR /><I><a href="#jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps</a> array</I></TD><TD></TD></TR>
+<TR><TD><CODE>default</CODE><BR /><I><a href="#json-v1-apiextensions-k8s-io">JSON</a></I></TD><TD>default is a default value for undefined object fields. Defaulting is a beta feature under the CustomResourceDefaulting feature gate. Defaulting requires spec.preserveUnknownFields to be false.</TD></TR>
+<TR><TD><CODE>definitions</CODE><BR /><I>object</I></TD><TD></TD></TR>
+<TR><TD><CODE>dependencies</CODE><BR /><I>object</I></TD><TD></TD></TR>
+<TR><TD><CODE>description</CODE><BR /><I>string</I></TD><TD></TD></TR>
+<TR><TD><CODE>enum</CODE><BR /><I><a href="#json-v1-apiextensions-k8s-io">JSON</a> array</I></TD><TD></TD></TR>
+<TR><TD><CODE>example</CODE><BR /><I><a href="#json-v1-apiextensions-k8s-io">JSON</a></I></TD><TD></TD></TR>
+<TR><TD><CODE>exclusiveMaximum</CODE><BR /><I>boolean</I></TD><TD></TD></TR>
+<TR><TD><CODE>exclusiveMinimum</CODE><BR /><I>boolean</I></TD><TD></TD></TR>
+<TR><TD><CODE>externalDocs</CODE><BR /><I><a href="#externaldocumentation-v1-apiextensions-k8s-io">ExternalDocumentation</a></I></TD><TD></TD></TR>
+<TR><TD><CODE>format</CODE><BR /><I>string</I></TD><TD>format is an OpenAPI v3 format string. Unknown formats are ignored. The following formats are validated:  - bsonobjectid: a bson object ID, i.e. a 24 characters hex string - uri: an URI as parsed by Golang net/url.ParseRequestURI - email: an email address as parsed by Golang net/mail.ParseAddress - hostname: a valid representation for an Internet host name, as defined by RFC 1034, section 3.1 [RFC1034]. - ipv4: an IPv4 IP as parsed by Golang net.ParseIP - ipv6: an IPv6 IP as parsed by Golang net.ParseIP - cidr: a CIDR as parsed by Golang net.ParseCIDR - mac: a MAC address as parsed by Golang net.ParseMAC - uuid: an UUID that allows uppercase defined by the regex (?i)^[0-9a-f]{8}-?[0-9a-f]{4}-?[0-9a-f]{4}-?[0-9a-f]{4}-?[0-9a-f]{12}$ - uuid3: an UUID3 that allows uppercase defined by the regex (?i)^[0-9a-f]{8}-?[0-9a-f]{4}-?3[0-9a-f]{3}-?[0-9a-f]{4}-?[0-9a-f]{12}$ - uuid4: an UUID4 that allows uppercase defined by the regex (?i)^[0-9a-f]{8}-?[0-9a-f]{4}-?4[0-9a-f]{3}-?[89ab][0-9a-f]{3}-?[0-9a-f]{12}$ - uuid5: an UUID5 that allows uppercase defined by the regex (?i)^[0-9a-f]{8}-?[0-9a-f]{4}-?5[0-9a-f]{3}-?[89ab][0-9a-f]{3}-?[0-9a-f]{12}$ - isbn: an ISBN10 or ISBN13 number string like &#34;0321751043&#34; or &#34;978-0321751041&#34; - isbn10: an ISBN10 number string like &#34;0321751043&#34; - isbn13: an ISBN13 number string like &#34;978-0321751041&#34; - creditcard: a credit card number defined by the regex ^(?:4[0-9]{12}(?:[0-9]{3})?|5[1-5][0-9]{14}|6(?:011|5[0-9][0-9])[0-9]{12}|3[47][0-9]{13}|3(?:0[0-5]|[68][0-9])[0-9]{11}|(?:2131|1800|35\d{3})\d{11})$ with any non digit characters mixed in - ssn: a U.S. social security number following the regex ^\d{3}[- ]?\d{2}[- ]?\d{4}$ - hexcolor: an hexadecimal color code like &#34;#FFFFFF: following the regex ^#?([0-9a-fA-F]{3}|[0-9a-fA-F]{6})$ - rgbcolor: an RGB color code like rgb like &#34;rgb(255,255,2559&#34; - byte: base64 encoded binary data - password: any kind of string - date: a date string like &#34;2006-01-02&#34; as defined by full-date in RFC3339 - duration: a duration string like &#34;22 ns&#34; as parsed by Golang time.ParseDuration or compatible with Scala duration format - datetime: a date time string like &#34;2014-12-15T19:30:20.000Z&#34; as defined by date-time in RFC3339.</TD></TR>
+<TR><TD><CODE>id</CODE><BR /><I>string</I></TD><TD></TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#jsonschemapropsorarray-v1-apiextensions-k8s-io">JSONSchemaPropsOrArray</a></I></TD><TD></TD></TR>
+<TR><TD><CODE>maxItems</CODE><BR /><I>integer</I></TD><TD></TD></TR>
+<TR><TD><CODE>maxLength</CODE><BR /><I>integer</I></TD><TD></TD></TR>
+<TR><TD><CODE>maxProperties</CODE><BR /><I>integer</I></TD><TD></TD></TR>
+<TR><TD><CODE>maximum</CODE><BR /><I>number</I></TD><TD></TD></TR>
+<TR><TD><CODE>minItems</CODE><BR /><I>integer</I></TD><TD></TD></TR>
+<TR><TD><CODE>minLength</CODE><BR /><I>integer</I></TD><TD></TD></TR>
+<TR><TD><CODE>minProperties</CODE><BR /><I>integer</I></TD><TD></TD></TR>
+<TR><TD><CODE>minimum</CODE><BR /><I>number</I></TD><TD></TD></TR>
+<TR><TD><CODE>multipleOf</CODE><BR /><I>number</I></TD><TD></TD></TR>
+<TR><TD><CODE>not</CODE><BR /><I><a href="#jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps</a></I></TD><TD></TD></TR>
+<TR><TD><CODE>nullable</CODE><BR /><I>boolean</I></TD><TD></TD></TR>
+<TR><TD><CODE>oneOf</CODE><BR /><I><a href="#jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps</a> array</I></TD><TD></TD></TR>
+<TR><TD><CODE>pattern</CODE><BR /><I>string</I></TD><TD></TD></TR>
+<TR><TD><CODE>patternProperties</CODE><BR /><I>object</I></TD><TD></TD></TR>
+<TR><TD><CODE>properties</CODE><BR /><I>object</I></TD><TD></TD></TR>
+<TR><TD><CODE>required</CODE><BR /><I>string array</I></TD><TD></TD></TR>
+<TR><TD><CODE>title</CODE><BR /><I>string</I></TD><TD></TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD></TD></TR>
+<TR><TD><CODE>uniqueItems</CODE><BR /><I>boolean</I></TD><TD></TD></TR>
+<TR><TD><CODE>x-kubernetes-embedded-resource</CODE><BR /><I>boolean</I></TD><TD>x-kubernetes-embedded-resource defines that the value is an embedded Kubernetes runtime.Object, with TypeMeta and ObjectMeta. The type must be object. It is allowed to further restrict the embedded object. kind, apiVersion and metadata are validated automatically. x-kubernetes-preserve-unknown-fields is allowed to be true, but does not have to be if the object is fully specified (up to kind, apiVersion, metadata).</TD></TR>
+<TR><TD><CODE>x-kubernetes-int-or-string</CODE><BR /><I>boolean</I></TD><TD>x-kubernetes-int-or-string specifies that this value is either an integer or a string. If this is true, an empty type is allowed and type as child of anyOf is permitted if following one of the following patterns:  1) anyOf:    - type: integer    - type: string 2) allOf:    - anyOf:      - type: integer      - type: string    - ... zero or more</TD></TR>
+<TR><TD><CODE>x-kubernetes-list-map-keys</CODE><BR /><I>string array</I></TD><TD>x-kubernetes-list-map-keys annotates an array with the x-kubernetes-list-type `map` by specifying the keys used as the index of the map.  This tag MUST only be used on lists that have the &#34;x-kubernetes-list-type&#34; extension set to &#34;map&#34;. Also, the values specified for this attribute must be a scalar typed field of the child structure (no nesting is supported).  The properties specified must either be required or have a default value, to ensure those properties are present for all list items.</TD></TR>
+<TR><TD><CODE>x-kubernetes-list-type</CODE><BR /><I>string</I></TD><TD>x-kubernetes-list-type annotates an array to further describe its topology. This extension must only be used on lists and may have 3 possible values:  1) `atomic`: the list is treated as a single entity, like a scalar.      Atomic lists will be entirely replaced when updated. This extension      may be used on any type of list (struct, scalar, ...). 2) `set`:      Sets are lists that must not have multiple items with the same value. Each      value must be a scalar, an object with x-kubernetes-map-type `atomic` or an      array with x-kubernetes-list-type `atomic`. 3) `map`:      These lists are like maps in that their elements have a non-index key      used to identify them. Order is preserved upon merge. The map tag      must only be used on a list with elements of type object. Defaults to atomic for arrays.</TD></TR>
+<TR><TD><CODE>x-kubernetes-map-type</CODE><BR /><I>string</I></TD><TD>x-kubernetes-map-type annotates an object to further describe its topology. This extension must only be used when type is object and may have 2 possible values:  1) `granular`:      These maps are actual maps (key-value pairs) and each fields are independent      from each other (they can each be manipulated by separate actors). This is      the default behaviour for all maps. 2) `atomic`: the list is treated as a single entity, like a scalar.      Atomic maps will be entirely replaced when updated.</TD></TR>
+<TR><TD><CODE>x-kubernetes-preserve-unknown-fields</CODE><BR /><I>boolean</I></TD><TD>x-kubernetes-preserve-unknown-fields stops the API server decoding step from pruning fields which are not specified in the validation schema. This affects fields recursively, but switches back to normal pruning behaviour if nested properties or additionalProperties are specified in the schema. This can either be true or undefined. False is forbidden.</TD></TR>
+<TR><TD><CODE>x-kubernetes-validations</CODE><BR /><I><a href="#validationrule-v1-apiextensions-k8s-io">ValidationRule</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>rule</I></TD><TD>x-kubernetes-validations describes a list of validation rules written in the CEL expression language. This field is an alpha-level. Using this field requires the feature gate `CustomResourceValidationExpressions` to be enabled.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="jsonschemapropsorarray-v1-apiextensions-k8s-io">JSONSchemaPropsOrArray v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>JSONSchemaPropsOrArray</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>JSONSchemaPropsOrArray represents a value that can either be a JSONSchemaProps or an array of JSONSchemaProps. Mainly here for serialization purposes.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+</TBODY>
+</TABLE>
+<H2 id="jsonschemapropsorbool-v1-apiextensions-k8s-io">JSONSchemaPropsOrBool v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>JSONSchemaPropsOrBool</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>JSONSchemaPropsOrBool represents JSONSchemaProps or a boolean value. Defaults to true for the boolean property.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+</TBODY>
+</TABLE>
+<H2 id="jobcondition-v1-batch">JobCondition v1 batch</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>batch</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>JobCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>JobCondition describes current state of a job.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#jobstatus-v1-batch">JobStatus [batch/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastProbeTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time the condition was checked.</TD></TR>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time the condition transit from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>Human readable message indicating details about last transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>(brief) reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status of the condition, one of True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of job condition, Complete or Failed.  Possible enum values:  - `&#34;Complete&#34;` means the job has completed its execution.  - `&#34;Failed&#34;` means the job has failed its execution.  - `&#34;Suspended&#34;` means the job has been suspended.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="jobtemplatespec-v1-batch">JobTemplateSpec v1 batch</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>batch</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>JobTemplateSpec</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>JobTemplateSpec describes the data a Job should have when created from a template</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#jobtemplatespec-v1beta1-batch">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#cronjobspec-v1-batch">CronJobSpec [batch/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata of the jobs created from this template. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#jobspec-v1-batch">JobSpec</a></I></TD><TD>Specification of the desired behavior of the job. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="keytopath-v1-core">KeyToPath v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>KeyToPath</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Maps a string key to a path within a volume.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#configmapprojection-v1-core">ConfigMapProjection [core/v1]</a></LI>
+  <LI><a href="#configmapvolumesource-v1-core">ConfigMapVolumeSource [core/v1]</a></LI>
+  <LI><a href="#secretprojection-v1-core">SecretProjection [core/v1]</a></LI>
+  <LI><a href="#secretvolumesource-v1-core">SecretVolumeSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>key</CODE><BR /><I>string</I></TD><TD>The key to project.</TD></TR>
+<TR><TD><CODE>mode</CODE><BR /><I>integer</I></TD><TD>Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>The relative path of the file to map the key to. May not be an absolute path. May not contain the path element &#39;..&#39;. May not start with the string &#39;..&#39;.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="labelselector-v1-meta">LabelSelector v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>LabelSelector</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>A label selector is a label query over a set of resources. The result of matchLabels and matchExpressions are ANDed. An empty label selector matches all objects. A null label selector matches no objects.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#aggregationrule-v1-rbac-authorization-k8s-io">AggregationRule [rbac/v1]</a></LI>
+  <LI><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity [storage/v1beta1]</a></LI>
+  <LI><a href="#csistoragecapacity-v1alpha1-storage-k8s-io">CSIStorageCapacity [storage/v1alpha1]</a></LI>
+  <LI><a href="#daemonsetspec-v1-apps">DaemonSetSpec [apps/v1]</a></LI>
+  <LI><a href="#deploymentspec-v1-apps">DeploymentSpec [apps/v1]</a></LI>
+  <LI><a href="#externalmetricsource-v2beta1-autoscaling">ExternalMetricSource [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#externalmetricstatus-v2beta1-autoscaling">ExternalMetricStatus [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#jobspec-v1-batch">JobSpec [batch/v1]</a></LI>
+  <LI><a href="#metricidentifier-v2-autoscaling">MetricIdentifier [autoscaling/v2]</a></LI>
+  <LI><a href="#metricidentifier-v2beta2-autoscaling">MetricIdentifier [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#mutatingwebhook-v1-admissionregistration-k8s-io">MutatingWebhook [admissionregistration/v1]</a></LI>
+  <LI><a href="#networkpolicypeer-v1-networking-k8s-io">NetworkPolicyPeer [networking/v1]</a></LI>
+  <LI><a href="#networkpolicyspec-v1-networking-k8s-io">NetworkPolicySpec [networking/v1]</a></LI>
+  <LI><a href="#objectmetricsource-v2beta1-autoscaling">ObjectMetricSource [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#objectmetricstatus-v2beta1-autoscaling">ObjectMetricStatus [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#persistentvolumeclaimspec-v1-core">PersistentVolumeClaimSpec [core/v1]</a></LI>
+  <LI><a href="#podaffinityterm-v1-core">PodAffinityTerm [core/v1]</a></LI>
+  <LI><a href="#poddisruptionbudgetspec-v1-policy">PodDisruptionBudgetSpec [policy/v1]</a></LI>
+  <LI><a href="#poddisruptionbudgetspec-v1beta1-policy">PodDisruptionBudgetSpec [policy/v1beta1]</a></LI>
+  <LI><a href="#podsmetricsource-v2beta1-autoscaling">PodsMetricSource [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#podsmetricstatus-v2beta1-autoscaling">PodsMetricStatus [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#replicasetspec-v1-apps">ReplicaSetSpec [apps/v1]</a></LI>
+  <LI><a href="#statefulsetspec-v1-apps">StatefulSetSpec [apps/v1]</a></LI>
+  <LI><a href="#topologyspreadconstraint-v1-core">TopologySpreadConstraint [core/v1]</a></LI>
+  <LI><a href="#validatingwebhook-v1-admissionregistration-k8s-io">ValidatingWebhook [admissionregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>matchExpressions</CODE><BR /><I><a href="#labelselectorrequirement-v1-meta">LabelSelectorRequirement</a> array</I></TD><TD>matchExpressions is a list of label selector requirements. The requirements are ANDed.</TD></TR>
+<TR><TD><CODE>matchLabels</CODE><BR /><I>object</I></TD><TD>matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is &#34;key&#34;, the operator is &#34;In&#34;, and the values array contains only &#34;value&#34;. The requirements are ANDed.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="labelselectorrequirement-v1-meta">LabelSelectorRequirement v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>LabelSelectorRequirement</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#labelselector-v1-meta">LabelSelector [meta/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>key</CODE><BR /><I>string</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>key</I></TD><TD>key is the label key that the selector applies to.</TD></TR>
+<TR><TD><CODE>operator</CODE><BR /><I>string</I></TD><TD>operator represents a key&#39;s relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.</TD></TR>
+<TR><TD><CODE>values</CODE><BR /><I>string array</I></TD><TD>values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="lifecycle-v1-core">Lifecycle v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Lifecycle</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Lifecycle describes actions that the management system should take in response to container lifecycle events. For the PostStart and PreStop lifecycle handlers, management of the container blocks until the action is complete, unless the container process fails, in which case the handler is aborted.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#container-v1-core">Container [core/v1]</a></LI>
+  <LI><a href="#ephemeralcontainer-v1-core">EphemeralContainer [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>postStart</CODE><BR /><I><a href="#lifecyclehandler-v1-core">LifecycleHandler</a></I></TD><TD>PostStart is called immediately after a container is created. If the handler fails, the container is terminated and restarted according to its restart policy. Other management of the container blocks until the hook completes. More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks</TD></TR>
+<TR><TD><CODE>preStop</CODE><BR /><I><a href="#lifecyclehandler-v1-core">LifecycleHandler</a></I></TD><TD>PreStop is called immediately before a container is terminated due to an API request or management event such as liveness/startup probe failure, preemption, resource contention, etc. The handler is not called if the container crashes or exits. The Pod&#39;s termination grace period countdown begins before the PreStop hook is executed. Regardless of the outcome of the handler, the container will eventually terminate within the Pod&#39;s termination grace period (unless delayed by finalizers). Other management of the container blocks until the hook completes or until the termination grace period is reached. More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="lifecyclehandler-v1-core">LifecycleHandler v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>LifecycleHandler</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>LifecycleHandler defines a specific action that should be taken in a lifecycle hook. One and only one of the fields, except TCPSocket must be specified.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#lifecycle-v1-core">Lifecycle [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>exec</CODE><BR /><I><a href="#execaction-v1-core">ExecAction</a></I></TD><TD>Exec specifies the action to take.</TD></TR>
+<TR><TD><CODE>httpGet</CODE><BR /><I><a href="#httpgetaction-v1-core">HTTPGetAction</a></I></TD><TD>HTTPGet specifies the http request to perform.</TD></TR>
+<TR><TD><CODE>tcpSocket</CODE><BR /><I><a href="#tcpsocketaction-v1-core">TCPSocketAction</a></I></TD><TD>Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept for the backward compatibility. There are no validation of this field and lifecycle hooks will fail in runtime when tcp handler is specified.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="limitrangeitem-v1-core">LimitRangeItem v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>LimitRangeItem</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>LimitRangeItem defines a min/max usage limit for any resource that matches on kind.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#limitrangespec-v1-core">LimitRangeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>default</CODE><BR /><I>object</I></TD><TD>Default resource requirement limit value by resource name if resource limit is omitted.</TD></TR>
+<TR><TD><CODE>defaultRequest</CODE><BR /><I>object</I></TD><TD>DefaultRequest is the default resource requirement request value by resource name if resource request is omitted.</TD></TR>
+<TR><TD><CODE>max</CODE><BR /><I>object</I></TD><TD>Max usage constraints on this kind by resource name.</TD></TR>
+<TR><TD><CODE>maxLimitRequestRatio</CODE><BR /><I>object</I></TD><TD>MaxLimitRequestRatio if specified, the named resource must have a request and limit that are both non-zero where limit divided by request is less than or equal to the enumerated value; this represents the max burst for the named resource.</TD></TR>
+<TR><TD><CODE>min</CODE><BR /><I>object</I></TD><TD>Min usage constraints on this kind by resource name.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of resource that this limit applies to.  Possible enum values:  - `&#34;Container&#34;` Limit that applies to all containers in a namespace  - `&#34;PersistentVolumeClaim&#34;` Limit that applies to all persistent volume claims in a namespace  - `&#34;Pod&#34;` Limit that applies to all pods in a namespace</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="limitresponse-v1beta2-flowcontrol-apiserver-k8s-io">LimitResponse v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>LimitResponse</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>LimitResponse defines how to handle requests that can not be executed right now.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#limitresponse-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#limitedprioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">LimitedPriorityLevelConfiguration [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>queuing</CODE><BR /><I><a href="#queuingconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">QueuingConfiguration</a></I></TD><TD>`queuing` holds the configuration parameters for queuing. This field may be non-empty only if `type` is `&#34;Queue&#34;`.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>`type` is &#34;Queue&#34; or &#34;Reject&#34;. &#34;Queue&#34; means that requests that can not be executed upon arrival are held in a queue until they can be executed or a queuing limit is reached. &#34;Reject&#34; means that requests that can not be executed upon arrival are rejected. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="limitedprioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">LimitedPriorityLevelConfiguration v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>LimitedPriorityLevelConfiguration</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>LimitedPriorityLevelConfiguration specifies how to handle requests that are subject to limits. It addresses two issues:
+ * How are requests for this priority level limited?
+ * What should be done with requests that exceed the limit?</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#limitedprioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#prioritylevelconfigurationspec-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationSpec [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>assuredConcurrencyShares</CODE><BR /><I>integer</I></TD><TD>`assuredConcurrencyShares` (ACS) configures the execution limit, which is a limit on the number of requests of this priority level that may be exeucting at a given time.  ACS must be a positive number. The server&#39;s concurrency limit (SCL) is divided among the concurrency-controlled priority levels in proportion to their assured concurrency shares. This produces the assured concurrency value (ACV) --- the number of requests that may be executing at a time --- for each such priority level:              ACV(l) = ceil( SCL * ACS(l) / ( sum[priority levels k] ACS(k) ) )  bigger numbers of ACS mean more reserved concurrent requests (at the expense of every other PL). This field has a default value of 30.</TD></TR>
+<TR><TD><CODE>limitResponse</CODE><BR /><I><a href="#limitresponse-v1beta2-flowcontrol-apiserver-k8s-io">LimitResponse</a></I></TD><TD>`limitResponse` indicates what to do with requests that can not be executed right now</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="listmeta-v1-meta">ListMeta v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ListMeta</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ListMeta describes metadata that synthetic resources must have, including lists and various status objects. A resource may have only one of {ObjectMeta, ListMeta}.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apiservicelist-v1-apiregistration-k8s-io">APIServiceList [apiregistration/v1]</a></LI>
+  <LI><a href="#csidriverlist-v1-storage-k8s-io">CSIDriverList [storage/v1]</a></LI>
+  <LI><a href="#csinodelist-v1-storage-k8s-io">CSINodeList [storage/v1]</a></LI>
+  <LI><a href="#csistoragecapacitylist-v1beta1-storage-k8s-io">CSIStorageCapacityList [storage/v1beta1]</a></LI>
+  <LI><a href="#csistoragecapacitylist-v1alpha1-storage-k8s-io">CSIStorageCapacityList [storage/v1alpha1]</a></LI>
+  <LI><a href="#certificatesigningrequestlist-v1-certificates-k8s-io">CertificateSigningRequestList [certificates/v1]</a></LI>
+  <LI><a href="#clusterrolebindinglist-v1-rbac-authorization-k8s-io">ClusterRoleBindingList [rbac/v1]</a></LI>
+  <LI><a href="#clusterrolelist-v1-rbac-authorization-k8s-io">ClusterRoleList [rbac/v1]</a></LI>
+  <LI><a href="#componentstatuslist-v1-core">ComponentStatusList [core/v1]</a></LI>
+  <LI><a href="#configmaplist-v1-core">ConfigMapList [core/v1]</a></LI>
+  <LI><a href="#controllerrevisionlist-v1-apps">ControllerRevisionList [apps/v1]</a></LI>
+  <LI><a href="#cronjoblist-v1-batch">CronJobList [batch/v1]</a></LI>
+  <LI><a href="#cronjoblist-v1beta1-batch">CronJobList [batch/v1beta1]</a></LI>
+  <LI><a href="#customresourcedefinitionlist-v1-apiextensions-k8s-io">CustomResourceDefinitionList [apiextensions/v1]</a></LI>
+  <LI><a href="#daemonsetlist-v1-apps">DaemonSetList [apps/v1]</a></LI>
+  <LI><a href="#deploymentlist-v1-apps">DeploymentList [apps/v1]</a></LI>
+  <LI><a href="#endpointslicelist-v1-discovery-k8s-io">EndpointSliceList [discovery/v1]</a></LI>
+  <LI><a href="#endpointslicelist-v1beta1-discovery-k8s-io">EndpointSliceList [discovery/v1beta1]</a></LI>
+  <LI><a href="#endpointslist-v1-core">EndpointsList [core/v1]</a></LI>
+  <LI><a href="#eventlist-v1-core">EventList [core/v1]</a></LI>
+  <LI><a href="#eventlist-v1-events-k8s-io">EventList [events/v1]</a></LI>
+  <LI><a href="#eventlist-v1beta1-events-k8s-io">EventList [events/v1beta1]</a></LI>
+  <LI><a href="#flowschemalist-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaList [flowcontrol/v1beta2]</a></LI>
+  <LI><a href="#flowschemalist-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaList [flowcontrol/v1beta1]</a></LI>
+  <LI><a href="#horizontalpodautoscalerlist-v2-autoscaling">HorizontalPodAutoscalerList [autoscaling/v2]</a></LI>
+  <LI><a href="#horizontalpodautoscalerlist-v1-autoscaling">HorizontalPodAutoscalerList [autoscaling/v1]</a></LI>
+  <LI><a href="#horizontalpodautoscalerlist-v2beta2-autoscaling">HorizontalPodAutoscalerList [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#horizontalpodautoscalerlist-v2beta1-autoscaling">HorizontalPodAutoscalerList [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#ingressclasslist-v1-networking-k8s-io">IngressClassList [networking/v1]</a></LI>
+  <LI><a href="#ingresslist-v1-networking-k8s-io">IngressList [networking/v1]</a></LI>
+  <LI><a href="#joblist-v1-batch">JobList [batch/v1]</a></LI>
+  <LI><a href="#leaselist-v1-coordination-k8s-io">LeaseList [coordination/v1]</a></LI>
+  <LI><a href="#limitrangelist-v1-core">LimitRangeList [core/v1]</a></LI>
+  <LI><a href="#mutatingwebhookconfigurationlist-v1-admissionregistration-k8s-io">MutatingWebhookConfigurationList [admissionregistration/v1]</a></LI>
+  <LI><a href="#namespacelist-v1-core">NamespaceList [core/v1]</a></LI>
+  <LI><a href="#networkpolicylist-v1-networking-k8s-io">NetworkPolicyList [networking/v1]</a></LI>
+  <LI><a href="#nodelist-v1-core">NodeList [core/v1]</a></LI>
+  <LI><a href="#persistentvolumeclaimlist-v1-core">PersistentVolumeClaimList [core/v1]</a></LI>
+  <LI><a href="#persistentvolumelist-v1-core">PersistentVolumeList [core/v1]</a></LI>
+  <LI><a href="#poddisruptionbudgetlist-v1-policy">PodDisruptionBudgetList [policy/v1]</a></LI>
+  <LI><a href="#poddisruptionbudgetlist-v1beta1-policy">PodDisruptionBudgetList [policy/v1beta1]</a></LI>
+  <LI><a href="#podlist-v1-core">PodList [core/v1]</a></LI>
+  <LI><a href="#podsecuritypolicylist-v1beta1-policy">PodSecurityPolicyList [policy/v1beta1]</a></LI>
+  <LI><a href="#podtemplatelist-v1-core">PodTemplateList [core/v1]</a></LI>
+  <LI><a href="#priorityclasslist-v1-scheduling-k8s-io">PriorityClassList [scheduling/v1]</a></LI>
+  <LI><a href="#prioritylevelconfigurationlist-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationList [flowcontrol/v1beta2]</a></LI>
+  <LI><a href="#prioritylevelconfigurationlist-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationList [flowcontrol/v1beta1]</a></LI>
+  <LI><a href="#replicasetlist-v1-apps">ReplicaSetList [apps/v1]</a></LI>
+  <LI><a href="#replicationcontrollerlist-v1-core">ReplicationControllerList [core/v1]</a></LI>
+  <LI><a href="#resourcequotalist-v1-core">ResourceQuotaList [core/v1]</a></LI>
+  <LI><a href="#rolebindinglist-v1-rbac-authorization-k8s-io">RoleBindingList [rbac/v1]</a></LI>
+  <LI><a href="#rolelist-v1-rbac-authorization-k8s-io">RoleList [rbac/v1]</a></LI>
+  <LI><a href="#runtimeclasslist-v1-node-k8s-io">RuntimeClassList [node/v1]</a></LI>
+  <LI><a href="#runtimeclasslist-v1beta1-node-k8s-io">RuntimeClassList [node/v1beta1]</a></LI>
+  <LI><a href="#runtimeclasslist-v1alpha1-node-k8s-io">RuntimeClassList [node/v1alpha1]</a></LI>
+  <LI><a href="#secretlist-v1-core">SecretList [core/v1]</a></LI>
+  <LI><a href="#serviceaccountlist-v1-core">ServiceAccountList [core/v1]</a></LI>
+  <LI><a href="#servicelist-v1-core">ServiceList [core/v1]</a></LI>
+  <LI><a href="#statefulsetlist-v1-apps">StatefulSetList [apps/v1]</a></LI>
+  <LI><a href="#status-v1-meta">Status [meta/v1]</a></LI>
+  <LI><a href="#storageclasslist-v1-storage-k8s-io">StorageClassList [storage/v1]</a></LI>
+  <LI><a href="#storageversionlist-v1alpha1-internal-apiserver-k8s-io">StorageVersionList [apiserverinternal/v1alpha1]</a></LI>
+  <LI><a href="#validatingwebhookconfigurationlist-v1-admissionregistration-k8s-io">ValidatingWebhookConfigurationList [admissionregistration/v1]</a></LI>
+  <LI><a href="#volumeattachmentlist-v1-storage-k8s-io">VolumeAttachmentList [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>continue</CODE><BR /><I>string</I></TD><TD>continue may be set if the user set a limit on the number of items returned, and indicates that the server has more data available. The value is opaque and may be used to issue another request to the endpoint that served this list to retrieve the next set of available objects. Continuing a consistent list may not be possible if the server configuration has changed or more than a few minutes have passed. The resourceVersion field returned when using this continue value will be identical to the value in the first response, unless you have received this token from an error message.</TD></TR>
+<TR><TD><CODE>remainingItemCount</CODE><BR /><I>integer</I></TD><TD>remainingItemCount is the number of subsequent items in the list which are not included in this list response. If the list request contained label or field selectors, then the number of remaining items is unknown and the field will be left unset and omitted during serialization. If the list is complete (either because it is not chunking or because this is the last chunk), then there are no more remaining items and this field will be left unset and omitted during serialization. Servers older than v1.15 do not set this field. The intended use of the remainingItemCount is *estimating* the size of a collection. Clients should not rely on the remainingItemCount to be set or to be exact.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE><BR /><I>string</I></TD><TD>String that identifies the server&#39;s internal version of this object that can be used by clients to determine when objects have changed. Value must be treated as opaque by clients and passed unmodified back to the server. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency</TD></TR>
+<TR><TD><CODE>selfLink</CODE><BR /><I>string</I></TD><TD>selfLink is a URL representing this object. Populated by the system. Read-only.  DEPRECATED Kubernetes will stop propagating this field in 1.20 release and the field is planned to be removed in 1.21 release.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="loadbalanceringress-v1-core">LoadBalancerIngress v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>LoadBalancerIngress</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>LoadBalancerIngress represents the status of a load-balancer ingress point: traffic intended for the service should be sent to an ingress point.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#loadbalancerstatus-v1-core">LoadBalancerStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>hostname</CODE><BR /><I>string</I></TD><TD>Hostname is set for load-balancer ingress points that are DNS based (typically AWS load-balancers)</TD></TR>
+<TR><TD><CODE>ip</CODE><BR /><I>string</I></TD><TD>IP is set for load-balancer ingress points that are IP based (typically GCE or OpenStack load-balancers)</TD></TR>
+<TR><TD><CODE>ports</CODE><BR /><I><a href="#portstatus-v1-core">PortStatus</a> array</I></TD><TD>Ports is a list of records of service ports If used, every port defined in the service should have an entry in it</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="loadbalancerstatus-v1-core">LoadBalancerStatus v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>LoadBalancerStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>LoadBalancerStatus represents the status of a load-balancer.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingressstatus-v1-networking-k8s-io">IngressStatus [networking/v1]</a></LI>
+  <LI><a href="#servicestatus-v1-core">ServiceStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ingress</CODE><BR /><I><a href="#loadbalanceringress-v1-core">LoadBalancerIngress</a> array</I></TD><TD>Ingress is a list containing ingress points for the load-balancer. Traffic intended for the service should be sent to these ingress points.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="localobjectreference-v1-core">LocalObjectReference v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>LocalObjectReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>LocalObjectReference contains enough information to let you locate the referenced object inside the same namespace.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csivolumesource-v1-core">CSIVolumeSource [core/v1]</a></LI>
+  <LI><a href="#cephfsvolumesource-v1-core">CephFSVolumeSource [core/v1]</a></LI>
+  <LI><a href="#cindervolumesource-v1-core">CinderVolumeSource [core/v1]</a></LI>
+  <LI><a href="#flexvolumesource-v1-core">FlexVolumeSource [core/v1]</a></LI>
+  <LI><a href="#iscsivolumesource-v1-core">ISCSIVolumeSource [core/v1]</a></LI>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+  <LI><a href="#rbdvolumesource-v1-core">RBDVolumeSource [core/v1]</a></LI>
+  <LI><a href="#scaleiovolumesource-v1-core">ScaleIOVolumeSource [core/v1]</a></LI>
+  <LI><a href="#serviceaccount-v1-core">ServiceAccount [core/v1]</a></LI>
+  <LI><a href="#storageosvolumesource-v1-core">StorageOSVolumeSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="localvolumesource-v1-core">LocalVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>LocalVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Local represents directly-attached storage with node affinity (Beta feature)</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>Filesystem type to mount. It applies only when the Path is a block device. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. The default value is to auto-select a filesystem if unspecified.</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>The full path to the volume on the node. It can be either a directory or block device (disk, partition, ...).</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="managedfieldsentry-v1-meta">ManagedFieldsEntry v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ManagedFieldsEntry</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ManagedFieldsEntry is a workflow-id, a FieldSet and the group version of the resource that the fieldset applies to.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#objectmeta-v1-meta">ObjectMeta [meta/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the version of this resource that this field set applies to. The format is &#34;group/version&#34; just like the top-level APIVersion field. It is necessary to track the version of a field set because it cannot be automatically converted.</TD></TR>
+<TR><TD><CODE>fieldsType</CODE><BR /><I>string</I></TD><TD>FieldsType is the discriminator for the different fields format and version. There is currently only one possible value: &#34;FieldsV1&#34;</TD></TR>
+<TR><TD><CODE>fieldsV1</CODE><BR /><I><a href="#fieldsv1-v1-meta">FieldsV1</a></I></TD><TD>FieldsV1 holds the first JSON version format as described in the &#34;FieldsV1&#34; type.</TD></TR>
+<TR><TD><CODE>manager</CODE><BR /><I>string</I></TD><TD>Manager is an identifier of the workflow managing these fields.</TD></TR>
+<TR><TD><CODE>operation</CODE><BR /><I>string</I></TD><TD>Operation is the type of operation which lead to this ManagedFieldsEntry being created. The only valid values for this field are &#39;Apply&#39; and &#39;Update&#39;.</TD></TR>
+<TR><TD><CODE>subresource</CODE><BR /><I>string</I></TD><TD>Subresource is the name of the subresource used to update that object, or empty string if the object was updated through the main resource. The value of this field is used to distinguish between managers, even if they share the same name. For example, a status update will be distinct from a regular update using the same manager name. Note that the APIVersion field is not related to the Subresource field and it always corresponds to the version of the main resource.</TD></TR>
+<TR><TD><CODE>time</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Time is timestamp of when these fields were set. It should always be empty if Operation is &#39;Apply&#39;</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="metricidentifier-v2-autoscaling">MetricIdentifier v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>MetricIdentifier</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>MetricIdentifier defines the name and optionally selector for a metric</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metricidentifier-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#externalmetricsource-v2-autoscaling">ExternalMetricSource [autoscaling/v2]</a></LI>
+  <LI><a href="#externalmetricstatus-v2-autoscaling">ExternalMetricStatus [autoscaling/v2]</a></LI>
+  <LI><a href="#objectmetricsource-v2-autoscaling">ObjectMetricSource [autoscaling/v2]</a></LI>
+  <LI><a href="#objectmetricstatus-v2-autoscaling">ObjectMetricStatus [autoscaling/v2]</a></LI>
+  <LI><a href="#podsmetricsource-v2-autoscaling">PodsMetricSource [autoscaling/v2]</a></LI>
+  <LI><a href="#podsmetricstatus-v2-autoscaling">PodsMetricStatus [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the given metric</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="metricspec-v2-autoscaling">MetricSpec v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>MetricSpec</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>MetricSpec specifies how to scale based on a single metric (only `type` and one other matching field should be set at once).</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metricspec-v2beta2-autoscaling">v2beta2</a>
+<a href="#metricspec-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerspec-v2-autoscaling">HorizontalPodAutoscalerSpec [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>containerResource</CODE><BR /><I><a href="#containerresourcemetricsource-v2-autoscaling">ContainerResourceMetricSource</a></I></TD><TD>containerResource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing a single container in each pod of the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source. This is an alpha feature and can be enabled by the HPAContainerMetrics feature flag.</TD></TR>
+<TR><TD><CODE>external</CODE><BR /><I><a href="#externalmetricsource-v2-autoscaling">ExternalMetricSource</a></I></TD><TD>external refers to a global metric that is not associated with any Kubernetes object. It allows autoscaling based on information coming from components running outside of cluster (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).</TD></TR>
+<TR><TD><CODE>object</CODE><BR /><I><a href="#objectmetricsource-v2-autoscaling">ObjectMetricSource</a></I></TD><TD>object refers to a metric describing a single kubernetes object (for example, hits-per-second on an Ingress object).</TD></TR>
+<TR><TD><CODE>pods</CODE><BR /><I><a href="#podsmetricsource-v2-autoscaling">PodsMetricSource</a></I></TD><TD>pods refers to a metric describing each pod in the current scale target (for example, transactions-processed-per-second).  The values will be averaged together before being compared to the target value.</TD></TR>
+<TR><TD><CODE>resource</CODE><BR /><I><a href="#resourcemetricsource-v2-autoscaling">ResourceMetricSource</a></I></TD><TD>resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type is the type of metric source.  It should be one of &#34;ContainerResource&#34;, &#34;External&#34;, &#34;Object&#34;, &#34;Pods&#34; or &#34;Resource&#34;, each mapping to a matching field in the object. Note: &#34;ContainerResource&#34; type is available on when the feature-gate HPAContainerMetrics is enabled</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="metricstatus-v2-autoscaling">MetricStatus v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>MetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>MetricStatus describes the last-read state of a single metric.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metricstatus-v2beta2-autoscaling">v2beta2</a>
+<a href="#metricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerstatus-v2-autoscaling">HorizontalPodAutoscalerStatus [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>containerResource</CODE><BR /><I><a href="#containerresourcemetricstatus-v2-autoscaling">ContainerResourceMetricStatus</a></I></TD><TD>container resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing a single container in each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.</TD></TR>
+<TR><TD><CODE>external</CODE><BR /><I><a href="#externalmetricstatus-v2-autoscaling">ExternalMetricStatus</a></I></TD><TD>external refers to a global metric that is not associated with any Kubernetes object. It allows autoscaling based on information coming from components running outside of cluster (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).</TD></TR>
+<TR><TD><CODE>object</CODE><BR /><I><a href="#objectmetricstatus-v2-autoscaling">ObjectMetricStatus</a></I></TD><TD>object refers to a metric describing a single kubernetes object (for example, hits-per-second on an Ingress object).</TD></TR>
+<TR><TD><CODE>pods</CODE><BR /><I><a href="#podsmetricstatus-v2-autoscaling">PodsMetricStatus</a></I></TD><TD>pods refers to a metric describing each pod in the current scale target (for example, transactions-processed-per-second).  The values will be averaged together before being compared to the target value.</TD></TR>
+<TR><TD><CODE>resource</CODE><BR /><I><a href="#resourcemetricstatus-v2-autoscaling">ResourceMetricStatus</a></I></TD><TD>resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type is the type of metric source.  It will be one of &#34;ContainerResource&#34;, &#34;External&#34;, &#34;Object&#34;, &#34;Pods&#34; or &#34;Resource&#34;, each corresponds to a matching field in the object. Note: &#34;ContainerResource&#34; type is available on when the feature-gate HPAContainerMetrics is enabled</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="metrictarget-v2-autoscaling">MetricTarget v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>MetricTarget</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>MetricTarget defines the target value, average value, or average utilization of a specific metric</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metrictarget-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#containerresourcemetricsource-v2-autoscaling">ContainerResourceMetricSource [autoscaling/v2]</a></LI>
+  <LI><a href="#externalmetricsource-v2-autoscaling">ExternalMetricSource [autoscaling/v2]</a></LI>
+  <LI><a href="#objectmetricsource-v2-autoscaling">ObjectMetricSource [autoscaling/v2]</a></LI>
+  <LI><a href="#podsmetricsource-v2-autoscaling">PodsMetricSource [autoscaling/v2]</a></LI>
+  <LI><a href="#resourcemetricsource-v2-autoscaling">ResourceMetricSource [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>averageUtilization</CODE><BR /><I>integer</I></TD><TD>averageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods. Currently only valid for Resource metric source type</TD></TR>
+<TR><TD><CODE>averageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>averageValue is the target value of the average of the metric across all relevant pods (as a quantity)</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type represents whether the metric type is Utilization, Value, or AverageValue</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>value is the target value of the metric (as a quantity).</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="metricvaluestatus-v2-autoscaling">MetricValueStatus v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>MetricValueStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>MetricValueStatus holds the current value for a metric</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metricvaluestatus-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#containerresourcemetricstatus-v2-autoscaling">ContainerResourceMetricStatus [autoscaling/v2]</a></LI>
+  <LI><a href="#externalmetricstatus-v2-autoscaling">ExternalMetricStatus [autoscaling/v2]</a></LI>
+  <LI><a href="#objectmetricstatus-v2-autoscaling">ObjectMetricStatus [autoscaling/v2]</a></LI>
+  <LI><a href="#podsmetricstatus-v2-autoscaling">PodsMetricStatus [autoscaling/v2]</a></LI>
+  <LI><a href="#resourcemetricstatus-v2-autoscaling">ResourceMetricStatus [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>averageUtilization</CODE><BR /><I>integer</I></TD><TD>currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.</TD></TR>
+<TR><TD><CODE>averageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>averageValue is the current value of the average of the metric across all relevant pods (as a quantity)</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>value is the current value of the metric (as a quantity).</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="microtime-v1-meta">MicroTime v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>MicroTime</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>MicroTime is version of Time with microsecond level precision.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#event-v1-core">Event [core/v1]</a></LI>
+  <LI><a href="#event-v1-events-k8s-io">Event [events/v1]</a></LI>
+  <LI><a href="#event-v1beta1-events-k8s-io">Event [events/v1beta1]</a></LI>
+  <LI><a href="#eventseries-v1-core">EventSeries [core/v1]</a></LI>
+  <LI><a href="#eventseries-v1-events-k8s-io">EventSeries [events/v1]</a></LI>
+  <LI><a href="#eventseries-v1beta1-events-k8s-io">EventSeries [events/v1beta1]</a></LI>
+  <LI><a href="#leasespec-v1-coordination-k8s-io">LeaseSpec [coordination/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+</TBODY>
+</TABLE>
+<H2 id="mutatingwebhook-v1-admissionregistration-k8s-io">MutatingWebhook v1 admissionregistration.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>admissionregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>MutatingWebhook</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>MutatingWebhook describes an admission webhook and the resources and operations it applies to.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration [admissionregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>admissionReviewVersions</CODE><BR /><I>string array</I></TD><TD>AdmissionReviewVersions is an ordered list of preferred `AdmissionReview` versions the Webhook expects. API server will try to use first version in the list which it supports. If none of the versions specified in this list supported by API server, validation will fail for this object. If a persisted webhook configuration specifies allowed versions and does not include any versions known to the API Server, calls to the webhook will fail and be subject to the failure policy.</TD></TR>
+<TR><TD><CODE>clientConfig</CODE><BR /><I><a href="#webhookclientconfig-v1-admissionregistration-k8s-io">WebhookClientConfig</a></I></TD><TD>ClientConfig defines how to communicate with the hook. Required</TD></TR>
+<TR><TD><CODE>failurePolicy</CODE><BR /><I>string</I></TD><TD>FailurePolicy defines how unrecognized errors from the admission endpoint are handled - allowed values are Ignore or Fail. Defaults to Fail.</TD></TR>
+<TR><TD><CODE>matchPolicy</CODE><BR /><I>string</I></TD><TD>matchPolicy defines how the &#34;rules&#34; list is used to match incoming requests. Allowed values are &#34;Exact&#34; or &#34;Equivalent&#34;.  - Exact: match a request only if it exactly matches a specified rule. For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, but &#34;rules&#34; only included `apiGroups:[&#34;apps&#34;], apiVersions:[&#34;v1&#34;], resources: [&#34;deployments&#34;]`, a request to apps/v1beta1 or extensions/v1beta1 would not be sent to the webhook.  - Equivalent: match a request if modifies a resource listed in rules, even via another API group or version. For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, and &#34;rules&#34; only included `apiGroups:[&#34;apps&#34;], apiVersions:[&#34;v1&#34;], resources: [&#34;deployments&#34;]`, a request to apps/v1beta1 or extensions/v1beta1 would be converted to apps/v1 and sent to the webhook.  Defaults to &#34;Equivalent&#34;</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>The name of the admission webhook. Name should be fully qualified, e.g., imagepolicy.kubernetes.io, where &#34;imagepolicy&#34; is the name of the webhook, and kubernetes.io is the name of the organization. Required.</TD></TR>
+<TR><TD><CODE>namespaceSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>NamespaceSelector decides whether to run the webhook on an object based on whether the namespace for that object matches the selector. If the object itself is a namespace, the matching is performed on object.metadata.labels. If the object is another cluster scoped resource, it never skips the webhook.  For example, to run the webhook on any objects whose namespace is not associated with &#34;runlevel&#34; of &#34;0&#34; or &#34;1&#34;;  you will set the selector as follows: &#34;namespaceSelector&#34;: {   &#34;matchExpressions&#34;: [     {       &#34;key&#34;: &#34;runlevel&#34;,       &#34;operator&#34;: &#34;NotIn&#34;,       &#34;values&#34;: [         &#34;0&#34;,         &#34;1&#34;       ]     }   ] }  If instead you want to only run the webhook on any objects whose namespace is associated with the &#34;environment&#34; of &#34;prod&#34; or &#34;staging&#34;; you will set the selector as follows: &#34;namespaceSelector&#34;: {   &#34;matchExpressions&#34;: [     {       &#34;key&#34;: &#34;environment&#34;,       &#34;operator&#34;: &#34;In&#34;,       &#34;values&#34;: [         &#34;prod&#34;,         &#34;staging&#34;       ]     }   ] }  See https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ for more examples of label selectors.  Default to the empty LabelSelector, which matches everything.</TD></TR>
+<TR><TD><CODE>objectSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>ObjectSelector decides whether to run the webhook based on if the object has matching labels. objectSelector is evaluated against both the oldObject and newObject that would be sent to the webhook, and is considered to match if either object matches the selector. A null object (oldObject in the case of create, or newObject in the case of delete) or an object that cannot have labels (like a DeploymentRollback or a PodProxyOptions object) is not considered to match. Use the object selector only if the webhook is opt-in, because end users may skip the admission webhook by setting the labels. Default to the empty LabelSelector, which matches everything.</TD></TR>
+<TR><TD><CODE>reinvocationPolicy</CODE><BR /><I>string</I></TD><TD>reinvocationPolicy indicates whether this webhook should be called multiple times as part of a single admission evaluation. Allowed values are &#34;Never&#34; and &#34;IfNeeded&#34;.  Never: the webhook will not be called more than once in a single admission evaluation.  IfNeeded: the webhook will be called at least one additional time as part of the admission evaluation if the object being admitted is modified by other admission plugins after the initial webhook call. Webhooks that specify this option *must* be idempotent, able to process objects they previously admitted. Note: * the number of additional invocations is not guaranteed to be exactly one. * if additional invocations result in further modifications to the object, webhooks are not guaranteed to be invoked again. * webhooks that use this option may be reordered to minimize the number of additional invocations. * to validate an object after all mutations are guaranteed complete, use a validating admission webhook instead.  Defaults to &#34;Never&#34;.</TD></TR>
+<TR><TD><CODE>rules</CODE><BR /><I><a href="#rulewithoperations-v1-admissionregistration-k8s-io">RuleWithOperations</a> array</I></TD><TD>Rules describes what operations on what resources/subresources the webhook cares about. The webhook cares about an operation if it matches _any_ Rule. However, in order to prevent ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks from putting the cluster in a state which cannot be recovered from without completely disabling the plugin, ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks are never called on admission requests for ValidatingWebhookConfiguration and MutatingWebhookConfiguration objects.</TD></TR>
+<TR><TD><CODE>sideEffects</CODE><BR /><I>string</I></TD><TD>SideEffects states whether this webhook has side effects. Acceptable values are: None, NoneOnDryRun (webhooks created via v1beta1 may also specify Some or Unknown). Webhooks with side effects MUST implement a reconciliation system, since a request may be rejected by a future step in the admission chain and the side effects therefore need to be undone. Requests with the dryRun attribute will be auto-rejected if they match a webhook with sideEffects == Unknown or Some.</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE><BR /><I>integer</I></TD><TD>TimeoutSeconds specifies the timeout for this webhook. After the timeout passes, the webhook call will be ignored or the API call will fail based on the failure policy. The timeout value must be between 1 and 30 seconds. Default to 10 seconds.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nfsvolumesource-v1-core">NFSVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NFSVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents an NFS mount that lasts the lifetime of a pod. NFS volumes do not support ownership management or SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>Path that is exported by the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>ReadOnly here will force the NFS export to be mounted with read-only permissions. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs</TD></TR>
+<TR><TD><CODE>server</CODE><BR /><I>string</I></TD><TD>Server is the hostname or IP address of the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="namespacecondition-v1-core">NamespaceCondition v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NamespaceCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NamespaceCondition contains details about state of namespace.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#namespacestatus-v1-core">NamespaceStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD></TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD></TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD></TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status of the condition, one of True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of namespace controller condition.  Possible enum values:  - `&#34;NamespaceContentRemaining&#34;` contains information about resources remaining in a namespace.  - `&#34;NamespaceDeletionContentFailure&#34;` contains information about namespace deleter errors during deletion of resources.  - `&#34;NamespaceDeletionDiscoveryFailure&#34;` contains information about namespace deleter errors during resource discovery.  - `&#34;NamespaceDeletionGroupVersionParsingFailure&#34;` contains information about namespace deleter errors parsing GV for legacy types.  - `&#34;NamespaceFinalizersRemaining&#34;` contains information about which finalizers are on resources remaining in a namespace.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="networkpolicyegressrule-v1-networking-k8s-io">NetworkPolicyEgressRule v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NetworkPolicyEgressRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NetworkPolicyEgressRule describes a particular set of traffic that is allowed out of pods matched by a NetworkPolicySpec&#39;s podSelector. The traffic must match both ports and to. This type is beta-level in 1.8</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#networkpolicyspec-v1-networking-k8s-io">NetworkPolicySpec [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ports</CODE><BR /><I><a href="#networkpolicyport-v1-networking-k8s-io">NetworkPolicyPort</a> array</I></TD><TD>List of destination ports for outgoing traffic. Each item in this list is combined using a logical OR. If this field is empty or missing, this rule matches all ports (traffic not restricted by port). If this field is present and contains at least one item, then this rule allows traffic only if the traffic matches at least one port in the list.</TD></TR>
+<TR><TD><CODE>to</CODE><BR /><I><a href="#networkpolicypeer-v1-networking-k8s-io">NetworkPolicyPeer</a> array</I></TD><TD>List of destinations for outgoing traffic of pods selected for this rule. Items in this list are combined using a logical OR operation. If this field is empty or missing, this rule matches all destinations (traffic not restricted by destination). If this field is present and contains at least one item, this rule allows traffic only if the traffic matches at least one item in the to list.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="networkpolicyingressrule-v1-networking-k8s-io">NetworkPolicyIngressRule v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NetworkPolicyIngressRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NetworkPolicyIngressRule describes a particular set of traffic that is allowed to the pods matched by a NetworkPolicySpec&#39;s podSelector. The traffic must match both ports and from.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#networkpolicyspec-v1-networking-k8s-io">NetworkPolicySpec [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>from</CODE><BR /><I><a href="#networkpolicypeer-v1-networking-k8s-io">NetworkPolicyPeer</a> array</I></TD><TD>List of sources which should be able to access the pods selected for this rule. Items in this list are combined using a logical OR operation. If this field is empty or missing, this rule matches all sources (traffic not restricted by source). If this field is present and contains at least one item, this rule allows traffic only if the traffic matches at least one item in the from list.</TD></TR>
+<TR><TD><CODE>ports</CODE><BR /><I><a href="#networkpolicyport-v1-networking-k8s-io">NetworkPolicyPort</a> array</I></TD><TD>List of ports which should be made accessible on the pods selected for this rule. Each item in this list is combined using a logical OR. If this field is empty or missing, this rule matches all ports (traffic not restricted by port). If this field is present and contains at least one item, then this rule allows traffic only if the traffic matches at least one port in the list.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="networkpolicypeer-v1-networking-k8s-io">NetworkPolicyPeer v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NetworkPolicyPeer</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NetworkPolicyPeer describes a peer to allow traffic to/from. Only certain combinations of fields are allowed</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#networkpolicyegressrule-v1-networking-k8s-io">NetworkPolicyEgressRule [networking/v1]</a></LI>
+  <LI><a href="#networkpolicyingressrule-v1-networking-k8s-io">NetworkPolicyIngressRule [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ipBlock</CODE><BR /><I><a href="#ipblock-v1-networking-k8s-io">IPBlock</a></I></TD><TD>IPBlock defines policy on a particular IPBlock. If this field is set then neither of the other fields can be.</TD></TR>
+<TR><TD><CODE>namespaceSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>Selects Namespaces using cluster-scoped labels. This field follows standard label selector semantics; if present but empty, it selects all namespaces.  If PodSelector is also set, then the NetworkPolicyPeer as a whole selects the Pods matching PodSelector in the Namespaces selected by NamespaceSelector. Otherwise it selects all Pods in the Namespaces selected by NamespaceSelector.</TD></TR>
+<TR><TD><CODE>podSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>This is a label selector which selects Pods. This field follows standard label selector semantics; if present but empty, it selects all pods.  If NamespaceSelector is also set, then the NetworkPolicyPeer as a whole selects the Pods matching PodSelector in the Namespaces selected by NamespaceSelector. Otherwise it selects the Pods matching PodSelector in the policy&#39;s own Namespace.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="networkpolicyport-v1-networking-k8s-io">NetworkPolicyPort v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NetworkPolicyPort</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NetworkPolicyPort describes a port to allow traffic on</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#networkpolicyegressrule-v1-networking-k8s-io">NetworkPolicyEgressRule [networking/v1]</a></LI>
+  <LI><a href="#networkpolicyingressrule-v1-networking-k8s-io">NetworkPolicyIngressRule [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>endPort</CODE><BR /><I>integer</I></TD><TD>If set, indicates that the range of ports from port to endPort, inclusive, should be allowed by the policy. This field cannot be defined if the port field is not defined or if the port field is defined as a named (string) port. The endPort must be equal or greater than port. This feature is in Beta state and is enabled by default. It can be disabled using the Feature Gate &#34;NetworkPolicyEndPort&#34;.</TD></TR>
+<TR><TD><CODE>port</CODE></TD><TD>The port on the given protocol. This can either be a numerical or named port on a pod. If this field is not provided, this matches all port names and numbers. If present, only traffic on the specified protocol AND port will be matched.</TD></TR>
+<TR><TD><CODE>protocol</CODE><BR /><I>string</I></TD><TD>The protocol (TCP, UDP, or SCTP) which traffic must match. If not specified, this field defaults to TCP.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nodeaddress-v1-core">NodeAddress v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NodeAddress</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NodeAddress contains information for the node&#39;s address.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodestatus-v1-core">NodeStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>address</CODE><BR /><I>string</I></TD><TD>The node address.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Node address type, one of Hostname, ExternalIP or InternalIP.  Possible enum values:  - `&#34;ExternalDNS&#34;` identifies a DNS name which resolves to an IP address which has the characteristics of a NodeExternalIP. The IP it resolves to may or may not be a listed NodeExternalIP address.  - `&#34;ExternalIP&#34;` identifies an IP address which is, in some way, intended to be more usable from outside the cluster then an internal IP, though no specific semantics are defined. It may be a globally routable IP, though it is not required to be. External IPs may be assigned directly to an interface on the node, like a NodeInternalIP, or alternatively, packets sent to the external IP may be NAT&#39;ed to an internal node IP rather than being delivered directly (making the IP less efficient for node-to-node traffic than a NodeInternalIP).  - `&#34;Hostname&#34;` identifies a name of the node. Although every node can be assumed to have a NodeAddress of this type, its exact syntax and semantics are not defined, and are not consistent between different clusters.  - `&#34;InternalDNS&#34;` identifies a DNS name which resolves to an IP address which has the characteristics of a NodeInternalIP. The IP it resolves to may or may not be a listed NodeInternalIP address.  - `&#34;InternalIP&#34;` identifies an IP address which is assigned to one of the node&#39;s network interfaces. Every node should have at least one address of this type. An internal IP is normally expected to be reachable from every other node, but may not be visible to hosts outside the cluster. By default it is assumed that kube-apiserver can reach node internal IPs, though it is possible to configure clusters where this is not the case. NodeInternalIP is the default type of node IP, and does not necessarily imply that the IP is ONLY reachable internally. If a node has multiple internal IPs, no specific semantics are assigned to the additional IPs.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nodeaffinity-v1-core">NodeAffinity v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NodeAffinity</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Node affinity is a group of node affinity scheduling rules.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#affinity-v1-core">Affinity [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>preferredDuringSchedulingIgnoredDuringExecution</CODE><BR /><I><a href="#preferredschedulingterm-v1-core">PreferredSchedulingTerm</a> array</I></TD><TD>The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding &#34;weight&#34; to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.</TD></TR>
+<TR><TD><CODE>requiredDuringSchedulingIgnoredDuringExecution</CODE><BR /><I><a href="#nodeselector-v1-core">NodeSelector</a></I></TD><TD>If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nodecondition-v1-core">NodeCondition v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NodeCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NodeCondition contains condition information for a node.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodestatus-v1-core">NodeStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastHeartbeatTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time we got an update on a given condition.</TD></TR>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time the condition transit from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>Human readable message indicating details about last transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>(brief) reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status of the condition, one of True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of node condition.  Possible enum values:  - `&#34;DiskPressure&#34;` means the kubelet is under pressure due to insufficient available disk.  - `&#34;MemoryPressure&#34;` means the kubelet is under pressure due to insufficient available memory.  - `&#34;NetworkUnavailable&#34;` means that network for the node is not correctly configured.  - `&#34;PIDPressure&#34;` means the kubelet is under pressure due to insufficient available PID.  - `&#34;Ready&#34;` means kubelet is healthy and ready to accept pods.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nodeconfigsource-v1-core">NodeConfigSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NodeConfigSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NodeConfigSource specifies a source of node configuration. Exactly one subfield (excluding metadata) must be non-nil. This API is deprecated since 1.22</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodeconfigstatus-v1-core">NodeConfigStatus [core/v1]</a></LI>
+  <LI><a href="#nodespec-v1-core">NodeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>configMap</CODE><BR /><I><a href="#configmapnodeconfigsource-v1-core">ConfigMapNodeConfigSource</a></I></TD><TD>ConfigMap is a reference to a Node&#39;s ConfigMap</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nodeconfigstatus-v1-core">NodeConfigStatus v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NodeConfigStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NodeConfigStatus describes the status of the config assigned by Node.Spec.ConfigSource.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodestatus-v1-core">NodeStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>active</CODE><BR /><I><a href="#nodeconfigsource-v1-core">NodeConfigSource</a></I></TD><TD>Active reports the checkpointed config the node is actively using. Active will represent either the current version of the Assigned config, or the current LastKnownGood config, depending on whether attempting to use the Assigned config results in an error.</TD></TR>
+<TR><TD><CODE>assigned</CODE><BR /><I><a href="#nodeconfigsource-v1-core">NodeConfigSource</a></I></TD><TD>Assigned reports the checkpointed config the node will try to use. When Node.Spec.ConfigSource is updated, the node checkpoints the associated config payload to local disk, along with a record indicating intended config. The node refers to this record to choose its config checkpoint, and reports this record in Assigned. Assigned only updates in the status after the record has been checkpointed to disk. When the Kubelet is restarted, it tries to make the Assigned config the Active config by loading and validating the checkpointed payload identified by Assigned.</TD></TR>
+<TR><TD><CODE>error</CODE><BR /><I>string</I></TD><TD>Error describes any problems reconciling the Spec.ConfigSource to the Active config. Errors may occur, for example, attempting to checkpoint Spec.ConfigSource to the local Assigned record, attempting to checkpoint the payload associated with Spec.ConfigSource, attempting to load or validate the Assigned config, etc. Errors may occur at different points while syncing config. Earlier errors (e.g. download or checkpointing errors) will not result in a rollback to LastKnownGood, and may resolve across Kubelet retries. Later errors (e.g. loading or validating a checkpointed config) will result in a rollback to LastKnownGood. In the latter case, it is usually possible to resolve the error by fixing the config assigned in Spec.ConfigSource. You can find additional information for debugging by searching the error message in the Kubelet log. Error is a human-readable description of the error state; machines can check whether or not Error is empty, but should not rely on the stability of the Error text across Kubelet versions.</TD></TR>
+<TR><TD><CODE>lastKnownGood</CODE><BR /><I><a href="#nodeconfigsource-v1-core">NodeConfigSource</a></I></TD><TD>LastKnownGood reports the checkpointed config the node will fall back to when it encounters an error attempting to use the Assigned config. The Assigned config becomes the LastKnownGood config when the node determines that the Assigned config is stable and correct. This is currently implemented as a 10-minute soak period starting when the local record of Assigned config is updated. If the Assigned config is Active at the end of this period, it becomes the LastKnownGood. Note that if Spec.ConfigSource is reset to nil (use local defaults), the LastKnownGood is also immediately reset to nil, because the local default config is always assumed good. You should not make assumptions about the node&#39;s method of determining config stability and correctness, as this may change or become configurable in the future.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nodedaemonendpoints-v1-core">NodeDaemonEndpoints v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NodeDaemonEndpoints</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NodeDaemonEndpoints lists ports opened by daemons running on the Node.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodestatus-v1-core">NodeStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>kubeletEndpoint</CODE><BR /><I><a href="#daemonendpoint-v1-core">DaemonEndpoint</a></I></TD><TD>Endpoint on which Kubelet is listening.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nodeselector-v1-core">NodeSelector v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NodeSelector</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>A node selector represents the union of the results of one or more label queries over a set of nodes; that is, it represents the OR of the selectors represented by the node selector terms.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodeaffinity-v1-core">NodeAffinity [core/v1]</a></LI>
+  <LI><a href="#volumenodeaffinity-v1-core">VolumeNodeAffinity [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nodeSelectorTerms</CODE><BR /><I><a href="#nodeselectorterm-v1-core">NodeSelectorTerm</a> array</I></TD><TD>Required. A list of node selector terms. The terms are ORed.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nodeselectorrequirement-v1-core">NodeSelectorRequirement v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NodeSelectorRequirement</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodeselectorterm-v1-core">NodeSelectorTerm [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>key</CODE><BR /><I>string</I></TD><TD>The label key that the selector applies to.</TD></TR>
+<TR><TD><CODE>operator</CODE><BR /><I>string</I></TD><TD>Represents a key&#39;s relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.  Possible enum values:  - `&#34;DoesNotExist&#34;`  - `&#34;Exists&#34;`  - `&#34;Gt&#34;`  - `&#34;In&#34;`  - `&#34;Lt&#34;`  - `&#34;NotIn&#34;`</TD></TR>
+<TR><TD><CODE>values</CODE><BR /><I>string array</I></TD><TD>An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nodeselectorterm-v1-core">NodeSelectorTerm v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NodeSelectorTerm</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodeselector-v1-core">NodeSelector [core/v1]</a></LI>
+  <LI><a href="#preferredschedulingterm-v1-core">PreferredSchedulingTerm [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>matchExpressions</CODE><BR /><I><a href="#nodeselectorrequirement-v1-core">NodeSelectorRequirement</a> array</I></TD><TD>A list of node selector requirements by node&#39;s labels.</TD></TR>
+<TR><TD><CODE>matchFields</CODE><BR /><I><a href="#nodeselectorrequirement-v1-core">NodeSelectorRequirement</a> array</I></TD><TD>A list of node selector requirements by node&#39;s fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nodesysteminfo-v1-core">NodeSystemInfo v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NodeSystemInfo</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NodeSystemInfo is a set of ids/uuids to uniquely identify the node.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodestatus-v1-core">NodeStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>architecture</CODE><BR /><I>string</I></TD><TD>The Architecture reported by the node</TD></TR>
+<TR><TD><CODE>bootID</CODE><BR /><I>string</I></TD><TD>Boot ID reported by the node.</TD></TR>
+<TR><TD><CODE>containerRuntimeVersion</CODE><BR /><I>string</I></TD><TD>ContainerRuntime Version reported by the node through runtime remote API (e.g. docker://1.5.0).</TD></TR>
+<TR><TD><CODE>kernelVersion</CODE><BR /><I>string</I></TD><TD>Kernel Version reported by the node from &#39;uname -r&#39; (e.g. 3.16.0-0.bpo.4-amd64).</TD></TR>
+<TR><TD><CODE>kubeProxyVersion</CODE><BR /><I>string</I></TD><TD>KubeProxy Version reported by the node.</TD></TR>
+<TR><TD><CODE>kubeletVersion</CODE><BR /><I>string</I></TD><TD>Kubelet Version reported by the node.</TD></TR>
+<TR><TD><CODE>machineID</CODE><BR /><I>string</I></TD><TD>MachineID reported by the node. For unique machine identification in the cluster this field is preferred. Learn more from man(5) machine-id: http://man7.org/linux/man-pages/man5/machine-id.5.html</TD></TR>
+<TR><TD><CODE>operatingSystem</CODE><BR /><I>string</I></TD><TD>The Operating System reported by the node</TD></TR>
+<TR><TD><CODE>osImage</CODE><BR /><I>string</I></TD><TD>OS Image reported by the node from /etc/os-release (e.g. Debian GNU/Linux 7 (wheezy)).</TD></TR>
+<TR><TD><CODE>systemUUID</CODE><BR /><I>string</I></TD><TD>SystemUUID reported by the node. For unique machine identification MachineID is preferred. This field is specific to Red Hat hosts https://access.redhat.com/documentation/en-us/red_hat_subscription_management/1/html/rhsm/uuid</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nonresourceattributes-v1-authorization-k8s-io">NonResourceAttributes v1 authorization.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NonResourceAttributes</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NonResourceAttributes includes the authorization attributes available for non-resource requests to the Authorizer interface</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#selfsubjectaccessreviewspec-v1-authorization-k8s-io">SelfSubjectAccessReviewSpec [authorization/v1]</a></LI>
+  <LI><a href="#subjectaccessreviewspec-v1-authorization-k8s-io">SubjectAccessReviewSpec [authorization/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>Path is the URL path of the request</TD></TR>
+<TR><TD><CODE>verb</CODE><BR /><I>string</I></TD><TD>Verb is the standard HTTP verb</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nonresourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io">NonResourcePolicyRule v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>NonResourcePolicyRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NonResourcePolicyRule is a predicate that matches non-resource requests according to their verb and the target non-resource URL. A NonResourcePolicyRule matches a request if and only if both (a) at least one member of verbs matches the request and (b) at least one member of nonResourceURLs matches the request.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#nonresourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#policyruleswithsubjects-v1beta2-flowcontrol-apiserver-k8s-io">PolicyRulesWithSubjects [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nonResourceURLs</CODE><BR /><I>string array</I></TD><TD>`nonResourceURLs` is a set of url prefixes that a user should have access to and may not be empty. For example:   - &#34;/healthz&#34; is legal   - &#34;/hea*&#34; is illegal   - &#34;/hea&#34; is legal but matches nothing   - &#34;/hea/*&#34; also matches nothing   - &#34;/healthz/*&#34; matches all per-component health checks. &#34;*&#34; matches all non-resource urls. if it is present, it must be the only entry. Required.</TD></TR>
+<TR><TD><CODE>verbs</CODE><BR /><I>string array</I></TD><TD>`verbs` is a list of matching verbs and may not be empty. &#34;*&#34; matches all verbs. If it is present, it must be the only entry. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nonresourcerule-v1-authorization-k8s-io">NonResourceRule v1 authorization.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NonResourceRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NonResourceRule holds information that describes a rule for the non-resource</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#subjectrulesreviewstatus-v1-authorization-k8s-io">SubjectRulesReviewStatus [authorization/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nonResourceURLs</CODE><BR /><I>string array</I></TD><TD>NonResourceURLs is a set of partial urls that a user should have access to.  *s are allowed, but only as the full, final step in the path.  &#34;*&#34; means all.</TD></TR>
+<TR><TD><CODE>verbs</CODE><BR /><I>string array</I></TD><TD>Verb is a list of kubernetes non-resource API verbs, like: get, post, put, delete, patch, head, options.  &#34;*&#34; means all.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="objectfieldselector-v1-core">ObjectFieldSelector v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ObjectFieldSelector</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ObjectFieldSelector selects an APIVersioned field of an object.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#downwardapivolumefile-v1-core">DownwardAPIVolumeFile [core/v1]</a></LI>
+  <LI><a href="#envvarsource-v1-core">EnvVarSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>Version of the schema the FieldPath is written in terms of, defaults to &#34;v1&#34;.</TD></TR>
+<TR><TD><CODE>fieldPath</CODE><BR /><I>string</I></TD><TD>Path of the field to select in the specified API version.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="objectmeta-v1-meta">ObjectMeta v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ObjectMeta</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ObjectMeta is metadata that all persisted resources must have, which includes all objects users must create.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apiservice-v1-apiregistration-k8s-io">APIService [apiregistration/v1]</a></LI>
+  <LI><a href="#binding-v1-core">Binding [core/v1]</a></LI>
+  <LI><a href="#csidriver-v1-storage-k8s-io">CSIDriver [storage/v1]</a></LI>
+  <LI><a href="#csinode-v1-storage-k8s-io">CSINode [storage/v1]</a></LI>
+  <LI><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity [storage/v1beta1]</a></LI>
+  <LI><a href="#csistoragecapacity-v1alpha1-storage-k8s-io">CSIStorageCapacity [storage/v1alpha1]</a></LI>
+  <LI><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest [certificates/v1]</a></LI>
+  <LI><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole [rbac/v1]</a></LI>
+  <LI><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding [rbac/v1]</a></LI>
+  <LI><a href="#componentstatus-v1-core">ComponentStatus [core/v1]</a></LI>
+  <LI><a href="#configmap-v1-core">ConfigMap [core/v1]</a></LI>
+  <LI><a href="#controllerrevision-v1-apps">ControllerRevision [apps/v1]</a></LI>
+  <LI><a href="#cronjob-v1-batch">CronJob [batch/v1]</a></LI>
+  <LI><a href="#cronjob-v1beta1-batch">CronJob [batch/v1beta1]</a></LI>
+  <LI><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition [apiextensions/v1]</a></LI>
+  <LI><a href="#daemonset-v1-apps">DaemonSet [apps/v1]</a></LI>
+  <LI><a href="#deployment-v1-apps">Deployment [apps/v1]</a></LI>
+  <LI><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice [discovery/v1]</a></LI>
+  <LI><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice [discovery/v1beta1]</a></LI>
+  <LI><a href="#endpoints-v1-core">Endpoints [core/v1]</a></LI>
+  <LI><a href="#event-v1-core">Event [core/v1]</a></LI>
+  <LI><a href="#event-v1-events-k8s-io">Event [events/v1]</a></LI>
+  <LI><a href="#event-v1beta1-events-k8s-io">Event [events/v1beta1]</a></LI>
+  <LI><a href="#eviction-v1-policy">Eviction [policy/v1]</a></LI>
+  <LI><a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema [flowcontrol/v1beta2]</a></LI>
+  <LI><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema [flowcontrol/v1beta1]</a></LI>
+  <LI><a href="#horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler [autoscaling/v2]</a></LI>
+  <LI><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler [autoscaling/v1]</a></LI>
+  <LI><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#ingress-v1-networking-k8s-io">Ingress [networking/v1]</a></LI>
+  <LI><a href="#ingressclass-v1-networking-k8s-io">IngressClass [networking/v1]</a></LI>
+  <LI><a href="#job-v1-batch">Job [batch/v1]</a></LI>
+  <LI><a href="#jobtemplatespec-v1-batch">JobTemplateSpec [batch/v1]</a></LI>
+  <LI><a href="#jobtemplatespec-v1beta1-batch">JobTemplateSpec [batch/v1beta1]</a></LI>
+  <LI><a href="#lease-v1-coordination-k8s-io">Lease [coordination/v1]</a></LI>
+  <LI><a href="#limitrange-v1-core">LimitRange [core/v1]</a></LI>
+  <LI><a href="#localsubjectaccessreview-v1-authorization-k8s-io">LocalSubjectAccessReview [authorization/v1]</a></LI>
+  <LI><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration [admissionregistration/v1]</a></LI>
+  <LI><a href="#namespace-v1-core">Namespace [core/v1]</a></LI>
+  <LI><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy [networking/v1]</a></LI>
+  <LI><a href="#node-v1-core">Node [core/v1]</a></LI>
+  <LI><a href="#persistentvolume-v1-core">PersistentVolume [core/v1]</a></LI>
+  <LI><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim [core/v1]</a></LI>
+  <LI><a href="#persistentvolumeclaimtemplate-v1-core">PersistentVolumeClaimTemplate [core/v1]</a></LI>
+  <LI><a href="#pod-v1-core">Pod [core/v1]</a></LI>
+  <LI><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget [policy/v1]</a></LI>
+  <LI><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget [policy/v1beta1]</a></LI>
+  <LI><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy [policy/v1beta1]</a></LI>
+  <LI><a href="#podtemplate-v1-core">PodTemplate [core/v1]</a></LI>
+  <LI><a href="#podtemplatespec-v1-core">PodTemplateSpec [core/v1]</a></LI>
+  <LI><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass [scheduling/v1]</a></LI>
+  <LI><a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration [flowcontrol/v1beta2]</a></LI>
+  <LI><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration [flowcontrol/v1beta1]</a></LI>
+  <LI><a href="#replicaset-v1-apps">ReplicaSet [apps/v1]</a></LI>
+  <LI><a href="#replicationcontroller-v1-core">ReplicationController [core/v1]</a></LI>
+  <LI><a href="#resourcequota-v1-core">ResourceQuota [core/v1]</a></LI>
+  <LI><a href="#role-v1-rbac-authorization-k8s-io">Role [rbac/v1]</a></LI>
+  <LI><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding [rbac/v1]</a></LI>
+  <LI><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass [node/v1]</a></LI>
+  <LI><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass [node/v1beta1]</a></LI>
+  <LI><a href="#runtimeclass-v1alpha1-node-k8s-io">RuntimeClass [node/v1alpha1]</a></LI>
+  <LI><a href="#scale-v1-autoscaling">Scale [autoscaling/v1]</a></LI>
+  <LI><a href="#secret-v1-core">Secret [core/v1]</a></LI>
+  <LI><a href="#selfsubjectaccessreview-v1-authorization-k8s-io">SelfSubjectAccessReview [authorization/v1]</a></LI>
+  <LI><a href="#selfsubjectrulesreview-v1-authorization-k8s-io">SelfSubjectRulesReview [authorization/v1]</a></LI>
+  <LI><a href="#service-v1-core">Service [core/v1]</a></LI>
+  <LI><a href="#serviceaccount-v1-core">ServiceAccount [core/v1]</a></LI>
+  <LI><a href="#statefulset-v1-apps">StatefulSet [apps/v1]</a></LI>
+  <LI><a href="#storageclass-v1-storage-k8s-io">StorageClass [storage/v1]</a></LI>
+  <LI><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion [apiserverinternal/v1alpha1]</a></LI>
+  <LI><a href="#subjectaccessreview-v1-authorization-k8s-io">SubjectAccessReview [authorization/v1]</a></LI>
+  <LI><a href="#tokenrequest-v1-authentication-k8s-io">TokenRequest [authentication/v1]</a></LI>
+  <LI><a href="#tokenreview-v1-authentication-k8s-io">TokenReview [authentication/v1]</a></LI>
+  <LI><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration [admissionregistration/v1]</a></LI>
+  <LI><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>annotations</CODE><BR /><I>object</I></TD><TD>Annotations is an unstructured key value map stored with a resource that may be set by external tools to store and retrieve arbitrary metadata. They are not queryable and should be preserved when modifying objects. More info: http://kubernetes.io/docs/user-guide/annotations</TD></TR>
+<TR><TD><CODE>clusterName</CODE><BR /><I>string</I></TD><TD>The name of the cluster which the object belongs to. This is used to distinguish resources with same name and namespace in different clusters. This field is not set anywhere right now and apiserver is going to ignore it if set in create or update request.</TD></TR>
+<TR><TD><CODE>creationTimestamp</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>CreationTimestamp is a timestamp representing the server time when this object was created. It is not guaranteed to be set in happens-before order across separate operations. Clients may not set this value. It is represented in RFC3339 form and is in UTC.  Populated by the system. Read-only. Null for lists. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>deletionGracePeriodSeconds</CODE><BR /><I>integer</I></TD><TD>Number of seconds allowed for this object to gracefully terminate before it will be removed from the system. Only set when deletionTimestamp is also set. May only be shortened. Read-only.</TD></TR>
+<TR><TD><CODE>deletionTimestamp</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>DeletionTimestamp is RFC 3339 date and time at which this resource will be deleted. This field is set by the server when a graceful deletion is requested by the user, and is not directly settable by a client. The resource is expected to be deleted (no longer visible from resource lists, and not reachable by name) after the time in this field, once the finalizers list is empty. As long as the finalizers list contains items, deletion is blocked. Once the deletionTimestamp is set, this value may not be unset or be set further into the future, although it may be shortened or the resource may be deleted prior to this time. For example, a user may request that a pod is deleted in 30 seconds. The Kubelet will react by sending a graceful termination signal to the containers in the pod. After that 30 seconds, the Kubelet will send a hard termination signal (SIGKILL) to the container and after cleanup, remove the pod from the API. In the presence of network partitions, this object may still exist after this timestamp, until an administrator or automated process can determine the resource is fully terminated. If not set, graceful deletion of the object has not been requested.  Populated by the system when a graceful deletion is requested. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>finalizers</CODE><BR /><I>string array</I><BR /><B>patch strategy</B>: <I>merge</I></TD><TD>Must be empty before the object is deleted from the registry. Each entry is an identifier for the responsible component that will remove the entry from the list. If the deletionTimestamp of the object is non-nil, entries in this list can only be removed. Finalizers may be processed and removed in any order.  Order is NOT enforced because it introduces significant risk of stuck finalizers. finalizers is a shared field, any actor with permission can reorder it. If the finalizer list is processed in order, then this can lead to a situation in which the component responsible for the first finalizer in the list is waiting for a signal (field value, external system, or other) produced by a component responsible for a finalizer later in the list, resulting in a deadlock. Without enforced ordering finalizers are free to order amongst themselves and are not vulnerable to ordering changes in the list.</TD></TR>
+<TR><TD><CODE>generateName</CODE><BR /><I>string</I></TD><TD>GenerateName is an optional prefix, used by the server, to generate a unique name ONLY IF the Name field has not been provided. If this field is used, the name returned to the client will be different than the name passed. This value will also be combined with a unique suffix. The provided value has the same validation rules as the Name field, and may be truncated by the length of the suffix required to make the value unique on the server.  If this field is specified and the generated name exists, the server will NOT return a 409 - instead, it will either return 201 Created or 500 with Reason ServerTimeout indicating a unique name could not be found in the time allotted, and the client should retry (optionally after the time indicated in the Retry-After header).  Applied only if Name is not specified. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#idempotency</TD></TR>
+<TR><TD><CODE>generation</CODE><BR /><I>integer</I></TD><TD>A sequence number representing a specific generation of the desired state. Populated by the system. Read-only.</TD></TR>
+<TR><TD><CODE>labels</CODE><BR /><I>object</I></TD><TD>Map of string keys and values that can be used to organize and categorize (scope and select) objects. May match selectors of replication controllers and services. More info: http://kubernetes.io/docs/user-guide/labels</TD></TR>
+<TR><TD><CODE>managedFields</CODE><BR /><I><a href="#managedfieldsentry-v1-meta">ManagedFieldsEntry</a> array</I></TD><TD>ManagedFields maps workflow-id and version to the set of fields that are managed by that workflow. This is mostly for internal housekeeping, and users typically shouldn&#39;t need to set or understand this field. A workflow can be the user&#39;s name, a controller&#39;s name, or the name of a specific apply path like &#34;ci-cd&#34;. The set of fields is always in the version that the workflow used when modifying the object.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name must be unique within a namespace. Is required when creating resources, although some resources may allow a client to request the generation of an appropriate name automatically. Name is primarily intended for creation idempotence and configuration definition. Cannot be updated. More info: http://kubernetes.io/docs/user-guide/identifiers#names</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>Namespace defines the space within which each name must be unique. An empty namespace is equivalent to the &#34;default&#34; namespace, but &#34;default&#34; is the canonical representation. Not all objects are required to be scoped to a namespace - the value of this field for those objects will be empty.  Must be a DNS_LABEL. Cannot be updated. More info: http://kubernetes.io/docs/user-guide/namespaces</TD></TR>
+<TR><TD><CODE>ownerReferences</CODE><BR /><I><a href="#ownerreference-v1-meta">OwnerReference</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>uid</I></TD><TD>List of objects depended by this object. If ALL objects in the list have been deleted, this object will be garbage collected. If this object is managed by a controller, then an entry in this list will point to this controller, with the controller field set to true. There cannot be more than one managing controller.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE><BR /><I>string</I></TD><TD>An opaque value that represents the internal version of this object that can be used by clients to determine when objects have changed. May be used for optimistic concurrency, change detection, and the watch operation on a resource or set of resources. Clients must treat these values as opaque and passed unmodified back to the server. They may only be valid for a particular resource or set of resources.  Populated by the system. Read-only. Value must be treated as opaque by clients and . More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency</TD></TR>
+<TR><TD><CODE>selfLink</CODE><BR /><I>string</I></TD><TD>SelfLink is a URL representing this object. Populated by the system. Read-only.  DEPRECATED Kubernetes will stop propagating this field in 1.20 release and the field is planned to be removed in 1.21 release.</TD></TR>
+<TR><TD><CODE>uid</CODE><BR /><I>string</I></TD><TD>UID is the unique in time and space value for this object. It is typically generated by the server on successful creation of a resource and is not allowed to change on PUT operations.  Populated by the system. Read-only. More info: http://kubernetes.io/docs/user-guide/identifiers#uids</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="objectmetricsource-v2-autoscaling">ObjectMetricSource v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>ObjectMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ObjectMetricSource indicates how to scale on a metric describing a kubernetes object (for example, hits-per-second on an Ingress object).</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#objectmetricsource-v2beta2-autoscaling">v2beta2</a>
+<a href="#objectmetricsource-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2-autoscaling">MetricSpec [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>describedObject</CODE><BR /><I><a href="#crossversionobjectreference-v2-autoscaling">CrossVersionObjectReference</a></I></TD><TD>describedObject specifies the descriptions of a object,such as kind,name apiVersion</TD></TR>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#metrictarget-v2-autoscaling">MetricTarget</a></I></TD><TD>target specifies the target value for the given metric</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="objectmetricstatus-v2-autoscaling">ObjectMetricStatus v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>ObjectMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ObjectMetricStatus indicates the current value of a metric describing a kubernetes object (for example, hits-per-second on an Ingress object).</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#objectmetricstatus-v2beta2-autoscaling">v2beta2</a>
+<a href="#objectmetricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2-autoscaling">MetricStatus [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>current</CODE><BR /><I><a href="#metricvaluestatus-v2-autoscaling">MetricValueStatus</a></I></TD><TD>current contains the current value for the given metric</TD></TR>
+<TR><TD><CODE>describedObject</CODE><BR /><I><a href="#crossversionobjectreference-v2-autoscaling">CrossVersionObjectReference</a></I></TD><TD>DescribedObject specifies the descriptions of a object,such as kind,name apiVersion</TD></TR>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="objectreference-v1-core">ObjectReference v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ObjectReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ObjectReference contains enough information to let you inspect or modify the referred object.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#binding-v1-core">Binding [core/v1]</a></LI>
+  <LI><a href="#cronjobstatus-v1-batch">CronJobStatus [batch/v1]</a></LI>
+  <LI><a href="#cronjobstatus-v1beta1-batch">CronJobStatus [batch/v1beta1]</a></LI>
+  <LI><a href="#endpoint-v1-discovery-k8s-io">Endpoint [discovery/v1]</a></LI>
+  <LI><a href="#endpoint-v1beta1-discovery-k8s-io">Endpoint [discovery/v1beta1]</a></LI>
+  <LI><a href="#endpointaddress-v1-core">EndpointAddress [core/v1]</a></LI>
+  <LI><a href="#event-v1-core">Event [core/v1]</a></LI>
+  <LI><a href="#event-v1-events-k8s-io">Event [events/v1]</a></LI>
+  <LI><a href="#event-v1beta1-events-k8s-io">Event [events/v1beta1]</a></LI>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#serviceaccount-v1-core">ServiceAccount [core/v1]</a></LI>
+  <LI><a href="#storageospersistentvolumesource-v1-core">StorageOSPersistentVolumeSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>API version of the referent.</TD></TR>
+<TR><TD><CODE>fieldPath</CODE><BR /><I>string</I></TD><TD>If referring to a piece of an object instead of an entire object, this string should contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2]. For example, if the object reference is to a container within a pod, this would take on a value like: &#34;spec.containers{name}&#34; (where &#34;name&#34; refers to the name of the container that triggered the event) or if no container name is specified &#34;spec.containers[2]&#34; (container with index 2 in this pod). This syntax is chosen only to have some well-defined way of referencing a part of an object.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE><BR /><I>string</I></TD><TD>Specific resourceVersion to which this reference is made, if any. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency</TD></TR>
+<TR><TD><CODE>uid</CODE><BR /><I>string</I></TD><TD>UID of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="overhead-v1-node-k8s-io">Overhead v1 node.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>node.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Overhead</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Overhead structure represents the resource overhead associated with running a pod.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#overhead-v1beta1-node-k8s-io">v1beta1</a>
+<a href="#overhead-v1alpha1-node-k8s-io">v1alpha1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass [node/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>podFixed</CODE><BR /><I>object</I></TD><TD>PodFixed represents the fixed resource overhead associated with running a pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="ownerreference-v1-meta">OwnerReference v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>OwnerReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>OwnerReference contains enough information to let you identify an owning object. An owning object must be in the same namespace as the dependent, or be cluster-scoped, so there is no namespace field.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#objectmeta-v1-meta">ObjectMeta [meta/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>API version of the referent.</TD></TR>
+<TR><TD><CODE>blockOwnerDeletion</CODE><BR /><I>boolean</I></TD><TD>If true, AND if the owner has the &#34;foregroundDeletion&#34; finalizer, then the owner cannot be deleted from the key-value store until this reference is removed. Defaults to false. To set this field, a user needs &#34;delete&#34; permission of the owner, otherwise 422 (Unprocessable Entity) will be returned.</TD></TR>
+<TR><TD><CODE>controller</CODE><BR /><I>boolean</I></TD><TD>If true, this reference points to the managing controller.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent. More info: http://kubernetes.io/docs/user-guide/identifiers#names</TD></TR>
+<TR><TD><CODE>uid</CODE><BR /><I>string</I></TD><TD>UID of the referent. More info: http://kubernetes.io/docs/user-guide/identifiers#uids</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-v1-meta">Patch v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Patch</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Patch is provided to give a concrete name and type to the Kubernetes PATCH request body.</P>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+</TBODY>
+</TABLE>
+<H2 id="persistentvolumeclaimcondition-v1-core">PersistentVolumeClaimCondition v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PersistentVolumeClaimCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PersistentVolumeClaimCondition contails details about state of pvc</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumeclaimstatus-v1-core">PersistentVolumeClaimStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastProbeTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time we probed the condition.</TD></TR>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>Human-readable message indicating details about last transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>Unique, this should be a short, machine understandable string that gives the reason for condition&#39;s last transition. If it reports &#34;ResizeStarted&#34; that means the underlying persistent volume is being resized.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD></TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>   Possible enum values:  - `&#34;FileSystemResizePending&#34;` - controller resize is finished and a file system resize is pending on node  - `&#34;Resizing&#34;` - a user trigger resize of pvc has been started</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="persistentvolumeclaimtemplate-v1-core">PersistentVolumeClaimTemplate v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PersistentVolumeClaimTemplate</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PersistentVolumeClaimTemplate is used to produce PersistentVolumeClaim objects as part of an EphemeralVolumeSource.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ephemeralvolumesource-v1-core">EphemeralVolumeSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>May contain labels and annotations that will be copied into the PVC when creating it. No other fields are allowed and will be rejected during validation.</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#persistentvolumeclaimspec-v1-core">PersistentVolumeClaimSpec</a></I></TD><TD>The specification for the PersistentVolumeClaim. The entire content is copied unchanged into the PVC that gets created from this template. The same fields as in a PersistentVolumeClaim are also valid here.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="persistentvolumeclaimvolumesource-v1-core">PersistentVolumeClaimVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PersistentVolumeClaimVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PersistentVolumeClaimVolumeSource references the user&#39;s PVC in the same namespace. This volume finds the bound PV and mounts that volume for the pod. A PersistentVolumeClaimVolumeSource is, essentially, a wrapper around another type of volume that is owned by someone else (the system).</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>claimName</CODE><BR /><I>string</I></TD><TD>ClaimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>Will force the ReadOnly setting in VolumeMounts. Default false.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="photonpersistentdiskvolumesource-v1-core">PhotonPersistentDiskVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PhotonPersistentDiskVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Photon Controller persistent disk resource.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified.</TD></TR>
+<TR><TD><CODE>pdID</CODE><BR /><I>string</I></TD><TD>ID that identifies Photon Controller persistent disk</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="podaffinity-v1-core">PodAffinity v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodAffinity</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Pod affinity is a group of inter pod affinity scheduling rules.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#affinity-v1-core">Affinity [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>preferredDuringSchedulingIgnoredDuringExecution</CODE><BR /><I><a href="#weightedpodaffinityterm-v1-core">WeightedPodAffinityTerm</a> array</I></TD><TD>The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding &#34;weight&#34; to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.</TD></TR>
+<TR><TD><CODE>requiredDuringSchedulingIgnoredDuringExecution</CODE><BR /><I><a href="#podaffinityterm-v1-core">PodAffinityTerm</a> array</I></TD><TD>If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="podaffinityterm-v1-core">PodAffinityTerm v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodAffinityTerm</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key &lt;topologyKey&gt; matches that of any node on which a pod of the set of pods is running</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podaffinity-v1-core">PodAffinity [core/v1]</a></LI>
+  <LI><a href="#podantiaffinity-v1-core">PodAntiAffinity [core/v1]</a></LI>
+  <LI><a href="#weightedpodaffinityterm-v1-core">WeightedPodAffinityTerm [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>labelSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>A label query over a set of resources, in this case pods.</TD></TR>
+<TR><TD><CODE>namespaceSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means &#34;this pod&#39;s namespace&#34;. An empty selector ({}) matches all namespaces. This field is beta-level and is only honored when PodAffinityNamespaceSelector feature is enabled.</TD></TR>
+<TR><TD><CODE>namespaces</CODE><BR /><I>string array</I></TD><TD>namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means &#34;this pod&#39;s namespace&#34;</TD></TR>
+<TR><TD><CODE>topologyKey</CODE><BR /><I>string</I></TD><TD>This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="podantiaffinity-v1-core">PodAntiAffinity v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodAntiAffinity</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Pod anti affinity is a group of inter pod anti affinity scheduling rules.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#affinity-v1-core">Affinity [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>preferredDuringSchedulingIgnoredDuringExecution</CODE><BR /><I><a href="#weightedpodaffinityterm-v1-core">WeightedPodAffinityTerm</a> array</I></TD><TD>The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding &#34;weight&#34; to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.</TD></TR>
+<TR><TD><CODE>requiredDuringSchedulingIgnoredDuringExecution</CODE><BR /><I><a href="#podaffinityterm-v1-core">PodAffinityTerm</a> array</I></TD><TD>If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="podcondition-v1-core">PodCondition v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PodCondition contains details for the current condition of this pod.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podstatus-v1-core">PodStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastProbeTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time we probed the condition.</TD></TR>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>Human-readable message indicating details about last transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>Unique, one-word, CamelCase reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status is the status of the condition. Can be True, False, Unknown. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-conditions</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type is the type of the condition. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-conditions  Possible enum values:  - `&#34;ContainersReady&#34;` indicates whether all containers in the pod are ready.  - `&#34;Initialized&#34;` means that all init containers in the pod have started successfully.  - `&#34;PodScheduled&#34;` represents status of the scheduling process for this pod.  - `&#34;Ready&#34;` means the pod is able to service requests and should be added to the load balancing pools of all matching services.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="poddnsconfig-v1-core">PodDNSConfig v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodDNSConfig</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PodDNSConfig defines the DNS parameters of a pod in addition to those generated from DNSPolicy.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nameservers</CODE><BR /><I>string array</I></TD><TD>A list of DNS name server IP addresses. This will be appended to the base nameservers generated from DNSPolicy. Duplicated nameservers will be removed.</TD></TR>
+<TR><TD><CODE>options</CODE><BR /><I><a href="#poddnsconfigoption-v1-core">PodDNSConfigOption</a> array</I></TD><TD>A list of DNS resolver options. This will be merged with the base options generated from DNSPolicy. Duplicated entries will be removed. Resolution options given in Options will override those that appear in the base DNSPolicy.</TD></TR>
+<TR><TD><CODE>searches</CODE><BR /><I>string array</I></TD><TD>A list of DNS search domains for host-name lookup. This will be appended to the base search paths generated from DNSPolicy. Duplicated search paths will be removed.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="poddnsconfigoption-v1-core">PodDNSConfigOption v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodDNSConfigOption</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PodDNSConfigOption defines DNS resolver options of a pod.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#poddnsconfig-v1-core">PodDNSConfig [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Required.</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I>string</I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="podip-v1-core">PodIP v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodIP</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>IP address information for entries in the (plural) PodIPs field. Each entry includes:
+   IP: An IP address allocated to the pod. Routable at least within the cluster.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podstatus-v1-core">PodStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ip</CODE><BR /><I>string</I></TD><TD>ip is an IP address (IPv4 or IPv6) assigned to the pod</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="podos-v1-core">PodOS v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodOS</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PodOS defines the OS parameters of a pod.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the name of the operating system. The currently supported values are linux and windows. Additional value may be defined in future and can be one of: https://github.com/opencontainers/runtime-spec/blob/master/config.md#platform-specific-configuration Clients should expect to handle additional values and treat unrecognized values in this field as os: null</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="podreadinessgate-v1-core">PodReadinessGate v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodReadinessGate</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PodReadinessGate contains the reference to a pod condition</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditionType</CODE><BR /><I>string</I></TD><TD>ConditionType refers to a condition in the pod&#39;s condition list with matching type.  Possible enum values:  - `&#34;ContainersReady&#34;` indicates whether all containers in the pod are ready.  - `&#34;Initialized&#34;` means that all init containers in the pod have started successfully.  - `&#34;PodScheduled&#34;` represents status of the scheduling process for this pod.  - `&#34;Ready&#34;` means the pod is able to service requests and should be added to the load balancing pools of all matching services.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="podsecuritycontext-v1-core">PodSecurityContext v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodSecurityContext</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PodSecurityContext holds pod-level security attributes and common container settings. Some fields are also present in container.securityContext.  Field values of container.securityContext take precedence over field values of PodSecurityContext.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsGroup</CODE><BR /><I>integer</I></TD><TD>A special supplemental group that applies to all containers in a pod. Some volume types allow the Kubelet to change the ownership of that volume to be owned by the pod:  1. The owning GID will be the FSGroup 2. The setgid bit is set (new files created in the volume will be owned by FSGroup) 3. The permission bits are OR&#39;d with rw-rw----  If unset, the Kubelet will not modify the ownership and permissions of any volume. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>fsGroupChangePolicy</CODE><BR /><I>string</I></TD><TD>fsGroupChangePolicy defines behavior of changing ownership and permission of the volume before being exposed inside Pod. This field will only apply to volume types which support fsGroup based ownership(and permissions). It will have no effect on ephemeral volume types such as: secret, configmaps and emptydir. Valid values are &#34;OnRootMismatch&#34; and &#34;Always&#34;. If not specified, &#34;Always&#34; is used. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>runAsGroup</CODE><BR /><I>integer</I></TD><TD>The GID to run the entrypoint of the container process. Uses runtime default if unset. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>runAsNonRoot</CODE><BR /><I>boolean</I></TD><TD>Indicates that the container must run as a non-root user. If true, the Kubelet will validate the image at runtime to ensure that it does not run as UID 0 (root) and fail to start the container if it does. If unset or false, no such validation will be performed. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.</TD></TR>
+<TR><TD><CODE>runAsUser</CODE><BR /><I>integer</I></TD><TD>The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>seLinuxOptions</CODE><BR /><I><a href="#selinuxoptions-v1-core">SELinuxOptions</a></I></TD><TD>The SELinux context to be applied to all containers. If unspecified, the container runtime will allocate a random SELinux context for each container.  May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>seccompProfile</CODE><BR /><I><a href="#seccompprofile-v1-core">SeccompProfile</a></I></TD><TD>The seccomp options to use by the containers in this pod. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>supplementalGroups</CODE><BR /><I>integer array</I></TD><TD>A list of groups applied to the first process run in each container, in addition to the container&#39;s primary GID.  If unspecified, no groups will be added to any container. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>sysctls</CODE><BR /><I><a href="#sysctl-v1-core">Sysctl</a> array</I></TD><TD>Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported sysctls (by the container runtime) might fail to launch. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>windowsOptions</CODE><BR /><I><a href="#windowssecuritycontextoptions-v1-core">WindowsSecurityContextOptions</a></I></TD><TD>The Windows specific settings applied to all containers. If unspecified, the options within a container&#39;s SecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is linux.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="podsmetricsource-v2-autoscaling">PodsMetricSource v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>PodsMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PodsMetricSource indicates how to scale on a metric describing each pod in the current scale target (for example, transactions-processed-per-second). The values will be averaged together before being compared to the target value.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#podsmetricsource-v2beta2-autoscaling">v2beta2</a>
+<a href="#podsmetricsource-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2-autoscaling">MetricSpec [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#metrictarget-v2-autoscaling">MetricTarget</a></I></TD><TD>target specifies the target value for the given metric</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="podsmetricstatus-v2-autoscaling">PodsMetricStatus v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>PodsMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PodsMetricStatus indicates the current value of a metric describing each pod in the current scale target (for example, transactions-processed-per-second).</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#podsmetricstatus-v2beta2-autoscaling">v2beta2</a>
+<a href="#podsmetricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2-autoscaling">MetricStatus [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>current</CODE><BR /><I><a href="#metricvaluestatus-v2-autoscaling">MetricValueStatus</a></I></TD><TD>current contains the current value for the given metric</TD></TR>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="policyrule-v1-rbac-authorization-k8s-io">PolicyRule v1 rbac.authorization.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rbac.authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PolicyRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PolicyRule holds information that describes a policy rule, but does not contain information about who the rule applies to or which namespace the rule applies to.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole [rbac/v1]</a></LI>
+  <LI><a href="#role-v1-rbac-authorization-k8s-io">Role [rbac/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiGroups</CODE><BR /><I>string array</I></TD><TD>APIGroups is the name of the APIGroup that contains the resources.  If multiple API groups are specified, any action requested against one of the enumerated resources in any API group will be allowed.</TD></TR>
+<TR><TD><CODE>nonResourceURLs</CODE><BR /><I>string array</I></TD><TD>NonResourceURLs is a set of partial urls that a user should have access to.  *s are allowed, but only as the full, final step in the path Since non-resource URLs are not namespaced, this field is only applicable for ClusterRoles referenced from a ClusterRoleBinding. Rules can either apply to API resources (such as &#34;pods&#34; or &#34;secrets&#34;) or non-resource URL paths (such as &#34;/api&#34;),  but not both.</TD></TR>
+<TR><TD><CODE>resourceNames</CODE><BR /><I>string array</I></TD><TD>ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.</TD></TR>
+<TR><TD><CODE>resources</CODE><BR /><I>string array</I></TD><TD>Resources is a list of resources this rule applies to. &#39;\*&#39; represents all resources.</TD></TR>
+<TR><TD><CODE>verbs</CODE><BR /><I>string array</I></TD><TD>Verbs is a list of Verbs that apply to ALL the ResourceKinds contained in this rule. &#39;\*&#39; represents all verbs.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="policyruleswithsubjects-v1beta2-flowcontrol-apiserver-k8s-io">PolicyRulesWithSubjects v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>PolicyRulesWithSubjects</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PolicyRulesWithSubjects prescribes a test that applies to a request to an apiserver. The test considers the subject making the request, the verb being requested, and the resource to be acted upon. This PolicyRulesWithSubjects matches a request if and only if both (a) at least one member of subjects matches the request and (b) at least one member of resourceRules or nonResourceRules matches the request.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#policyruleswithsubjects-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschemaspec-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaSpec [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nonResourceRules</CODE><BR /><I><a href="#nonresourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io">NonResourcePolicyRule</a> array</I></TD><TD>`nonResourceRules` is a list of NonResourcePolicyRules that identify matching requests according to their verb and the target non-resource URL.</TD></TR>
+<TR><TD><CODE>resourceRules</CODE><BR /><I><a href="#resourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io">ResourcePolicyRule</a> array</I></TD><TD>`resourceRules` is a slice of ResourcePolicyRules that identify matching requests according to their verb and the target resource. At least one of `resourceRules` and `nonResourceRules` has to be non-empty.</TD></TR>
+<TR><TD><CODE>subjects</CODE><BR /><I><a href="#subject-v1beta2-flowcontrol-apiserver-k8s-io">Subject</a> array</I></TD><TD>subjects is the list of normal user, serviceaccount, or group that this rule cares about. There must be at least one member in this slice. A slice that includes both the system:authenticated and system:unauthenticated user groups matches every request. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="portstatus-v1-core">PortStatus v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PortStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P></P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#loadbalanceringress-v1-core">LoadBalancerIngress [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>error</CODE><BR /><I>string</I></TD><TD>Error is to record the problem with the service port The format of the error shall comply with the following rules: - built-in error values shall be specified in this file and those shall use   CamelCase names - cloud provider specific error values must have names that comply with the   format foo.example.com/CamelCase.</TD></TR>
+<TR><TD><CODE>port</CODE><BR /><I>integer</I></TD><TD>Port is the port number of the service port of which status is recorded here</TD></TR>
+<TR><TD><CODE>protocol</CODE><BR /><I>string</I></TD><TD>Protocol is the protocol of the service port of which status is recorded here The supported values are: &#34;TCP&#34;, &#34;UDP&#34;, &#34;SCTP&#34;  Possible enum values:  - `&#34;SCTP&#34;` is the SCTP protocol.  - `&#34;TCP&#34;` is the TCP protocol.  - `&#34;UDP&#34;` is the UDP protocol.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="portworxvolumesource-v1-core">PortworxVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PortworxVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PortworxVolumeSource represents a Portworx volume resource.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>FSType represents the filesystem type to mount Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified.</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.</TD></TR>
+<TR><TD><CODE>volumeID</CODE><BR /><I>string</I></TD><TD>VolumeID uniquely identifies a Portworx volume</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="preconditions-v1-meta">Preconditions v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Preconditions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Preconditions must be fulfilled before an operation (update, delete, etc.) is carried out.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#deleteoptions-v1-meta">DeleteOptions [meta/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>resourceVersion</CODE><BR /><I>string</I></TD><TD>Specifies the target ResourceVersion</TD></TR>
+<TR><TD><CODE>uid</CODE><BR /><I>string</I></TD><TD>Specifies the target UID.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="preferredschedulingterm-v1-core">PreferredSchedulingTerm v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PreferredSchedulingTerm</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it&#39;s a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodeaffinity-v1-core">NodeAffinity [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>preference</CODE><BR /><I><a href="#nodeselectorterm-v1-core">NodeSelectorTerm</a></I></TD><TD>A node selector term, associated with the corresponding weight.</TD></TR>
+<TR><TD><CODE>weight</CODE><BR /><I>integer</I></TD><TD>Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>PriorityLevelConfiguration</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PriorityLevelConfiguration represents the configuration of a priority level.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#prioritylevelconfigurationlist-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationList [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>`metadata` is the standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#prioritylevelconfigurationspec-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationSpec</a></I></TD><TD>`spec` is the specification of the desired behavior of a &#34;request-priority&#34;. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#prioritylevelconfigurationstatus-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationStatus</a></I></TD><TD>`status` is the current status of a &#34;request-priority&#34;. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="prioritylevelconfigurationcondition-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationCondition v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>PriorityLevelConfigurationCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PriorityLevelConfigurationCondition defines the condition of priority level.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#prioritylevelconfigurationcondition-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#prioritylevelconfigurationstatus-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationStatus [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>`lastTransitionTime` is the last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>`message` is a human-readable message indicating details about last transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>`reason` is a unique, one-word, CamelCase reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>`status` is the status of the condition. Can be True, False, Unknown. Required.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>`type` is the type of the condition. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="prioritylevelconfigurationreference-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationReference v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>PriorityLevelConfigurationReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PriorityLevelConfigurationReference contains information that points to the &#34;request-priority&#34; being used.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#prioritylevelconfigurationreference-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschemaspec-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaSpec [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>`name` is the name of the priority level configuration being referenced Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="probe-v1-core">Probe v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Probe</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Probe describes a health check to be performed against a container to determine whether it is alive or ready to receive traffic.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#container-v1-core">Container [core/v1]</a></LI>
+  <LI><a href="#ephemeralcontainer-v1-core">EphemeralContainer [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>exec</CODE><BR /><I><a href="#execaction-v1-core">ExecAction</a></I></TD><TD>Exec specifies the action to take.</TD></TR>
+<TR><TD><CODE>failureThreshold</CODE><BR /><I>integer</I></TD><TD>Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.</TD></TR>
+<TR><TD><CODE>grpc</CODE><BR /><I><a href="#grpcaction-v1-core">GRPCAction</a></I></TD><TD>GRPC specifies an action involving a GRPC port. This is an alpha field and requires enabling GRPCContainerProbe feature gate.</TD></TR>
+<TR><TD><CODE>httpGet</CODE><BR /><I><a href="#httpgetaction-v1-core">HTTPGetAction</a></I></TD><TD>HTTPGet specifies the http request to perform.</TD></TR>
+<TR><TD><CODE>initialDelaySeconds</CODE><BR /><I>integer</I></TD><TD>Number of seconds after the container has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes</TD></TR>
+<TR><TD><CODE>periodSeconds</CODE><BR /><I>integer</I></TD><TD>How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.</TD></TR>
+<TR><TD><CODE>successThreshold</CODE><BR /><I>integer</I></TD><TD>Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness and startup. Minimum value is 1.</TD></TR>
+<TR><TD><CODE>tcpSocket</CODE><BR /><I><a href="#tcpsocketaction-v1-core">TCPSocketAction</a></I></TD><TD>TCPSocket specifies an action involving a TCP port.</TD></TR>
+<TR><TD><CODE>terminationGracePeriodSeconds</CODE><BR /><I>integer</I></TD><TD>Optional duration in seconds the pod needs to terminate gracefully upon probe failure. The grace period is the duration in seconds after the processes running in the pod are sent a termination signal and the time when the processes are forcibly halted with a kill signal. Set this value longer than the expected cleanup time for your process. If this value is nil, the pod&#39;s terminationGracePeriodSeconds will be used. Otherwise, this value overrides the value provided by the pod spec. Value must be non-negative integer. The value zero indicates stop immediately via the kill signal (no opportunity to shut down). This is a beta field and requires enabling ProbeTerminationGracePeriod feature gate. Minimum value is 1. spec.terminationGracePeriodSeconds is used if unset.</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE><BR /><I>integer</I></TD><TD>Number of seconds after which the probe times out. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="projectedvolumesource-v1-core">ProjectedVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ProjectedVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a projected volume source</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>defaultMode</CODE><BR /><I>integer</I></TD><TD>Mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.</TD></TR>
+<TR><TD><CODE>sources</CODE><BR /><I><a href="#volumeprojection-v1-core">VolumeProjection</a> array</I></TD><TD>list of volume projections</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="quantity-resource-core">Quantity resource core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>resource</CODE></TD><TD><CODE>Quantity</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Quantity is a fixed-point representation of a number. It provides convenient marshaling/unmarshaling in JSON and YAML, in addition to String() and AsInt64() accessors.
+
+The serialization format is:
+
+&lt;quantity&gt;        ::= &lt;signedNumber&gt;&lt;suffix&gt;
+  (Note that &lt;suffix&gt; may be empty, from the &#34;&#34; case in &lt;decimalSI&gt;.)
+&lt;digit&gt;           ::= 0 | 1 | ... | 9 &lt;digits&gt;          ::= &lt;digit&gt; | &lt;digit&gt;&lt;digits&gt; &lt;number&gt;          ::= &lt;digits&gt; | &lt;digits&gt;.&lt;digits&gt; | &lt;digits&gt;. | .&lt;digits&gt; &lt;sign&gt;            ::= &#34;+&#34; | &#34;-&#34; &lt;signedNumber&gt;    ::= &lt;number&gt; | &lt;sign&gt;&lt;number&gt; &lt;suffix&gt;          ::= &lt;binarySI&gt; | &lt;decimalExponent&gt; | &lt;decimalSI&gt; &lt;binarySI&gt;        ::= Ki | Mi | Gi | Ti | Pi | Ei
+  (International System of units; See: http://physics.nist.gov/cuu/Units/binary.html)
+&lt;decimalSI&gt;       ::= m | &#34;&#34; | k | M | G | T | P | E
+  (Note that 1024 = 1Ki but 1000 = 1k; I didn&#39;t choose the capitalization.)
+&lt;decimalExponent&gt; ::= &#34;e&#34; &lt;signedNumber&gt; | &#34;E&#34; &lt;signedNumber&gt;
+
+No matter which of the three exponent forms is used, no quantity may represent a number greater than 2^63-1 in magnitude, nor may it have more than 3 decimal places. Numbers larger or more precise will be capped or rounded up. (E.g.: 0.1m will rounded up to 1m.) This may be extended in the future if we require larger or smaller quantities.
+
+When a Quantity is parsed from a string, it will remember the type of suffix it had, and will use the same type again when it is serialized.
+
+Before serializing, Quantity will be put in &#34;canonical form&#34;. This means that Exponent/suffix will be adjusted up or down (with a corresponding increase or decrease in Mantissa) such that:
+  a. No precision is lost
+  b. No fractional digits will be emitted
+  c. The exponent (or suffix) is as large as possible.
+The sign will be omitted unless the number is negative.
+
+Examples:
+  1.5 will be serialized as &#34;1500m&#34;
+  1.5Gi will be serialized as &#34;1536Mi&#34;
+
+Note that the quantity will NEVER be internally represented by a floating point number. That is the whole point of this exercise.
+
+Non-canonical values will still parse as long as they are well formed, but will be re-emitted in their canonical form. (So always use canonical form, or don&#39;t diff.)
+
+This format is intended to make it difficult to use these numbers without writing some sort of special handling code in the hopes that that will cause implementors to also use a fixed point implementation.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity [storage/v1beta1]</a></LI>
+  <LI><a href="#csistoragecapacity-v1alpha1-storage-k8s-io">CSIStorageCapacity [storage/v1alpha1]</a></LI>
+  <LI><a href="#containerresourcemetricsource-v2beta1-autoscaling">ContainerResourceMetricSource [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#containerresourcemetricstatus-v2beta1-autoscaling">ContainerResourceMetricStatus [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#emptydirvolumesource-v1-core">EmptyDirVolumeSource [core/v1]</a></LI>
+  <LI><a href="#externalmetricsource-v2beta1-autoscaling">ExternalMetricSource [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#externalmetricstatus-v2beta1-autoscaling">ExternalMetricStatus [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#metrictarget-v2-autoscaling">MetricTarget [autoscaling/v2]</a></LI>
+  <LI><a href="#metrictarget-v2beta2-autoscaling">MetricTarget [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#metricvaluestatus-v2-autoscaling">MetricValueStatus [autoscaling/v2]</a></LI>
+  <LI><a href="#metricvaluestatus-v2beta2-autoscaling">MetricValueStatus [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#objectmetricsource-v2beta1-autoscaling">ObjectMetricSource [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#objectmetricstatus-v2beta1-autoscaling">ObjectMetricStatus [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#podsmetricsource-v2beta1-autoscaling">PodsMetricSource [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#podsmetricstatus-v2beta1-autoscaling">PodsMetricStatus [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#resourcefieldselector-v1-core">ResourceFieldSelector [core/v1]</a></LI>
+  <LI><a href="#resourcemetricsource-v2beta1-autoscaling">ResourceMetricSource [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#resourcemetricstatus-v2beta1-autoscaling">ResourceMetricStatus [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+</TBODY>
+</TABLE>
+<H2 id="queuingconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">QueuingConfiguration v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>QueuingConfiguration</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>QueuingConfiguration holds the configuration parameters for queuing</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#queuingconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#limitresponse-v1beta2-flowcontrol-apiserver-k8s-io">LimitResponse [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>handSize</CODE><BR /><I>integer</I></TD><TD>`handSize` is a small positive number that configures the shuffle sharding of requests into queues.  When enqueuing a request at this priority level the request&#39;s flow identifier (a string pair) is hashed and the hash value is used to shuffle the list of queues and deal a hand of the size specified here.  The request is put into one of the shortest queues in that hand. `handSize` must be no larger than `queues`, and should be significantly smaller (so that a few heavy flows do not saturate most of the queues).  See the user-facing documentation for more extensive guidance on setting this field.  This field has a default value of 8.</TD></TR>
+<TR><TD><CODE>queueLengthLimit</CODE><BR /><I>integer</I></TD><TD>`queueLengthLimit` is the maximum number of requests allowed to be waiting in a given queue of this priority level at a time; excess requests are rejected.  This value must be positive.  If not specified, it will be defaulted to 50.</TD></TR>
+<TR><TD><CODE>queues</CODE><BR /><I>integer</I></TD><TD>`queues` is the number of queues for this priority level. The queues exist independently at each apiserver. The value must be positive.  Setting it to 1 effectively precludes shufflesharding and thus makes the distinguisher method of associated flow schemas irrelevant.  This field has a default value of 64.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="quobytevolumesource-v1-core">QuobyteVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>QuobyteVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Quobyte mount that lasts the lifetime of a pod. Quobyte volumes do not support ownership management or SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>group</CODE><BR /><I>string</I></TD><TD>Group to map volume access to Default is no group</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>ReadOnly here will force the Quobyte volume to be mounted with read-only permissions. Defaults to false.</TD></TR>
+<TR><TD><CODE>registry</CODE><BR /><I>string</I></TD><TD>Registry represents a single or multiple Quobyte Registry services specified as a string as host:port pair (multiple entries are separated with commas) which acts as the central registry for volumes</TD></TR>
+<TR><TD><CODE>tenant</CODE><BR /><I>string</I></TD><TD>Tenant owning the given Quobyte volume in the Backend Used with dynamically provisioned Quobyte volumes, value is set by the plugin</TD></TR>
+<TR><TD><CODE>user</CODE><BR /><I>string</I></TD><TD>User to map volume access to Defaults to serivceaccount user</TD></TR>
+<TR><TD><CODE>volume</CODE><BR /><I>string</I></TD><TD>Volume is a string that references an already created Quobyte volume by name.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="rbdpersistentvolumesource-v1-core">RBDPersistentVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>RBDPersistentVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Rados Block Device mount that lasts the lifetime of a pod. RBD volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd</TD></TR>
+<TR><TD><CODE>image</CODE><BR /><I>string</I></TD><TD>The rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>keyring</CODE><BR /><I>string</I></TD><TD>Keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>monitors</CODE><BR /><I>string array</I></TD><TD>A collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>pool</CODE><BR /><I>string</I></TD><TD>The rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#secretreference-v1-core">SecretReference</a></I></TD><TD>SecretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>user</CODE><BR /><I>string</I></TD><TD>The rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="rbdvolumesource-v1-core">RBDVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>RBDVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Rados Block Device mount that lasts the lifetime of a pod. RBD volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd</TD></TR>
+<TR><TD><CODE>image</CODE><BR /><I>string</I></TD><TD>The rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>keyring</CODE><BR /><I>string</I></TD><TD>Keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>monitors</CODE><BR /><I>string array</I></TD><TD>A collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>pool</CODE><BR /><I>string</I></TD><TD>The rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#localobjectreference-v1-core">LocalObjectReference</a></I></TD><TD>SecretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>user</CODE><BR /><I>string</I></TD><TD>The rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replicasetcondition-v1-apps">ReplicaSetCondition v1 apps</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ReplicaSetCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ReplicaSetCondition describes the state of a replica set at a certain point.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#replicasetstatus-v1-apps">ReplicaSetStatus [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>The last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>A human readable message indicating details about the transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>The reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status of the condition, one of True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of replica set condition.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replicationcontrollercondition-v1-core">ReplicationControllerCondition v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ReplicationControllerCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ReplicationControllerCondition describes the state of a replication controller at a certain point.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#replicationcontrollerstatus-v1-core">ReplicationControllerStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>The last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>A human readable message indicating details about the transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>The reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status of the condition, one of True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of replication controller condition.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="resourceattributes-v1-authorization-k8s-io">ResourceAttributes v1 authorization.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ResourceAttributes</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ResourceAttributes includes the authorization attributes available for resource requests to the Authorizer interface</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#selfsubjectaccessreviewspec-v1-authorization-k8s-io">SelfSubjectAccessReviewSpec [authorization/v1]</a></LI>
+  <LI><a href="#subjectaccessreviewspec-v1-authorization-k8s-io">SubjectAccessReviewSpec [authorization/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>group</CODE><BR /><I>string</I></TD><TD>Group is the API Group of the Resource.  &#34;*&#34; means all.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the name of the resource being requested for a &#34;get&#34; or deleted for a &#34;delete&#34;. &#34;&#34; (empty) means all.</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>Namespace is the namespace of the action being requested.  Currently, there is no distinction between no namespace and all namespaces &#34;&#34; (empty) is defaulted for LocalSubjectAccessReviews &#34;&#34; (empty) is empty for cluster-scoped resources &#34;&#34; (empty) means &#34;all&#34; for namespace scoped resources from a SubjectAccessReview or SelfSubjectAccessReview</TD></TR>
+<TR><TD><CODE>resource</CODE><BR /><I>string</I></TD><TD>Resource is one of the existing resource types.  &#34;*&#34; means all.</TD></TR>
+<TR><TD><CODE>subresource</CODE><BR /><I>string</I></TD><TD>Subresource is one of the existing resource types.  &#34;&#34; means none.</TD></TR>
+<TR><TD><CODE>verb</CODE><BR /><I>string</I></TD><TD>Verb is a kubernetes resource API verb, like: get, list, watch, create, update, delete, proxy.  &#34;*&#34; means all.</TD></TR>
+<TR><TD><CODE>version</CODE><BR /><I>string</I></TD><TD>Version is the API Version of the Resource.  &#34;*&#34; means all.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="resourcefieldselector-v1-core">ResourceFieldSelector v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ResourceFieldSelector</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ResourceFieldSelector represents container resources (cpu, memory) and their output format</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#downwardapivolumefile-v1-core">DownwardAPIVolumeFile [core/v1]</a></LI>
+  <LI><a href="#envvarsource-v1-core">EnvVarSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>containerName</CODE><BR /><I>string</I></TD><TD>Container name: required for volumes, optional for env vars</TD></TR>
+<TR><TD><CODE>divisor</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>Specifies the output format of the exposed resources, defaults to &#34;1&#34;</TD></TR>
+<TR><TD><CODE>resource</CODE><BR /><I>string</I></TD><TD>Required: resource to select</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="resourcemetricsource-v2-autoscaling">ResourceMetricSource v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>ResourceMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ResourceMetricSource indicates how to scale on a resource metric known to Kubernetes, as specified in requests and limits, describing each pod in the current scale target (e.g. CPU or memory).  The values will be averaged together before being compared to the target.  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.  Only one &#34;target&#34; type should be set.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#resourcemetricsource-v2beta2-autoscaling">v2beta2</a>
+<a href="#resourcemetricsource-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2-autoscaling">MetricSpec [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the resource in question.</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#metrictarget-v2-autoscaling">MetricTarget</a></I></TD><TD>target specifies the target value for the given metric</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="resourcemetricstatus-v2-autoscaling">ResourceMetricStatus v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>ResourceMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ResourceMetricStatus indicates the current value of a resource metric known to Kubernetes, as specified in requests and limits, describing each pod in the current scale target (e.g. CPU or memory).  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#resourcemetricstatus-v2beta2-autoscaling">v2beta2</a>
+<a href="#resourcemetricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2-autoscaling">MetricStatus [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>current</CODE><BR /><I><a href="#metricvaluestatus-v2-autoscaling">MetricValueStatus</a></I></TD><TD>current contains the current value for the given metric</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the name of the resource in question.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="resourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io">ResourcePolicyRule v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>ResourcePolicyRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ResourcePolicyRule is a predicate that matches some resource requests, testing the request&#39;s verb and the target resource. A ResourcePolicyRule matches a resource request if and only if: (a) at least one member of verbs matches the request, (b) at least one member of apiGroups matches the request, (c) at least one member of resources matches the request, and (d) either (d1) the request does not specify a namespace (i.e., `Namespace==&#34;&#34;`) and clusterScope is true or (d2) the request specifies a namespace and least one member of namespaces matches the request&#39;s namespace.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#resourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#policyruleswithsubjects-v1beta2-flowcontrol-apiserver-k8s-io">PolicyRulesWithSubjects [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiGroups</CODE><BR /><I>string array</I></TD><TD>`apiGroups` is a list of matching API groups and may not be empty. &#34;*&#34; matches all API groups and, if present, must be the only entry. Required.</TD></TR>
+<TR><TD><CODE>clusterScope</CODE><BR /><I>boolean</I></TD><TD>`clusterScope` indicates whether to match requests that do not specify a namespace (which happens either because the resource is not namespaced or the request targets all namespaces). If this field is omitted or false then the `namespaces` field must contain a non-empty list.</TD></TR>
+<TR><TD><CODE>namespaces</CODE><BR /><I>string array</I></TD><TD>`namespaces` is a list of target namespaces that restricts matches.  A request that specifies a target namespace matches only if either (a) this list contains that target namespace or (b) this list contains &#34;*&#34;.  Note that &#34;*&#34; matches any specified namespace but does not match a request that _does not specify_ a namespace (see the `clusterScope` field for that). This list may be empty, but only if `clusterScope` is true.</TD></TR>
+<TR><TD><CODE>resources</CODE><BR /><I>string array</I></TD><TD>`resources` is a list of matching resources (i.e., lowercase and plural) with, if desired, subresource.  For example, [ &#34;services&#34;, &#34;nodes/status&#34; ].  This list may not be empty. &#34;*&#34; matches all resources and, if present, must be the only entry. Required.</TD></TR>
+<TR><TD><CODE>verbs</CODE><BR /><I>string array</I></TD><TD>`verbs` is a list of matching verbs and may not be empty. &#34;*&#34; matches all verbs and, if present, must be the only entry. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="resourcerequirements-v1-core">ResourceRequirements v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ResourceRequirements</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ResourceRequirements describes the compute resource requirements.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#container-v1-core">Container [core/v1]</a></LI>
+  <LI><a href="#ephemeralcontainer-v1-core">EphemeralContainer [core/v1]</a></LI>
+  <LI><a href="#persistentvolumeclaimspec-v1-core">PersistentVolumeClaimSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>limits</CODE><BR /><I>object</I></TD><TD>Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/</TD></TR>
+<TR><TD><CODE>requests</CODE><BR /><I>object</I></TD><TD>Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="resourcerule-v1-authorization-k8s-io">ResourceRule v1 authorization.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ResourceRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ResourceRule is the list of actions the subject is allowed to perform on resources. The list ordering isn&#39;t significant, may contain duplicates, and possibly be incomplete.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#subjectrulesreviewstatus-v1-authorization-k8s-io">SubjectRulesReviewStatus [authorization/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiGroups</CODE><BR /><I>string array</I></TD><TD>APIGroups is the name of the APIGroup that contains the resources.  If multiple API groups are specified, any action requested against one of the enumerated resources in any API group will be allowed.  &#34;*&#34; means all.</TD></TR>
+<TR><TD><CODE>resourceNames</CODE><BR /><I>string array</I></TD><TD>ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.  &#34;*&#34; means all.</TD></TR>
+<TR><TD><CODE>resources</CODE><BR /><I>string array</I></TD><TD>Resources is a list of resources this rule applies to.  &#34;*&#34; means all in the specified apiGroups.  &#34;*/foo&#34; represents the subresource &#39;foo&#39; for all resources in the specified apiGroups.</TD></TR>
+<TR><TD><CODE>verbs</CODE><BR /><I>string array</I></TD><TD>Verb is a list of kubernetes resource API verbs, like: get, list, watch, create, update, delete, proxy.  &#34;*&#34; means all.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="roleref-v1-rbac-authorization-k8s-io">RoleRef v1 rbac.authorization.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rbac.authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>RoleRef</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>RoleRef contains information that points to the role being used</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding [rbac/v1]</a></LI>
+  <LI><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding [rbac/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiGroup</CODE><BR /><I>string</I></TD><TD>APIGroup is the group for the resource being referenced</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is the type of resource being referenced</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the name of resource being referenced</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="rollingupdatestatefulsetstrategy-v1-apps">RollingUpdateStatefulSetStrategy v1 apps</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>RollingUpdateStatefulSetStrategy</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>RollingUpdateStatefulSetStrategy is used to communicate parameter for RollingUpdateStatefulSetStrategyType.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#statefulsetupdatestrategy-v1-apps">StatefulSetUpdateStrategy [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>partition</CODE><BR /><I>integer</I></TD><TD>Partition indicates the ordinal at which the StatefulSet should be partitioned. Default value is 0.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="rulewithoperations-v1-admissionregistration-k8s-io">RuleWithOperations v1 admissionregistration.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>admissionregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>RuleWithOperations</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>RuleWithOperations is a tuple of Operations and Resources. It is recommended to make sure that all the tuple expansions are valid.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#mutatingwebhook-v1-admissionregistration-k8s-io">MutatingWebhook [admissionregistration/v1]</a></LI>
+  <LI><a href="#validatingwebhook-v1-admissionregistration-k8s-io">ValidatingWebhook [admissionregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiGroups</CODE><BR /><I>string array</I></TD><TD>APIGroups is the API groups the resources belong to. &#39;\*&#39; is all groups. If &#39;\*&#39; is present, the length of the slice must be one. Required.</TD></TR>
+<TR><TD><CODE>apiVersions</CODE><BR /><I>string array</I></TD><TD>APIVersions is the API versions the resources belong to. &#39;\*&#39; is all versions. If &#39;\*&#39; is present, the length of the slice must be one. Required.</TD></TR>
+<TR><TD><CODE>operations</CODE><BR /><I>string array</I></TD><TD>Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or * for all of those operations and any future admission operations that are added. If &#39;\*&#39; is present, the length of the slice must be one. Required.</TD></TR>
+<TR><TD><CODE>resources</CODE><BR /><I>string array</I></TD><TD>Resources is a list of resources this rule applies to.  For example: &#39;pods&#39; means pods. &#39;pods/log&#39; means the log subresource of pods. &#39;\*&#39; means all resources, but not subresources. &#39;pods/\*&#39; means all subresources of pods. &#39;\*/scale&#39; means all scale subresources. &#39;\*/\*&#39; means all resources and their subresources.  If wildcard is present, the validation rule will ensure resources do not overlap with each other.  Depending on the enclosing object, subresources might not be allowed. Required.</TD></TR>
+<TR><TD><CODE>scope</CODE><BR /><I>string</I></TD><TD>scope specifies the scope of this rule. Valid values are &#34;Cluster&#34;, &#34;Namespaced&#34;, and &#34;*&#34; &#34;Cluster&#34; means that only cluster-scoped resources will match this rule. Namespace API objects are cluster-scoped. &#34;Namespaced&#34; means that only namespaced resources will match this rule. &#34;*&#34; means that there are no scope restrictions. Subresources match the scope of their parent resource. Default is &#34;*&#34;.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="runasgroupstrategyoptions-v1beta1-policy">RunAsGroupStrategyOptions v1beta1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>RunAsGroupStrategyOptions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>RunAsGroupStrategyOptions defines the strategy type and any options used to create the strategy.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ranges</CODE><BR /><I><a href="#idrange-v1beta1-policy">IDRange</a> array</I></TD><TD>ranges are the allowed ranges of gids that may be used. If you would like to force a single gid then supply a single range with the same start and end. Required for MustRunAs.</TD></TR>
+<TR><TD><CODE>rule</CODE><BR /><I>string</I></TD><TD>rule is the strategy that will dictate the allowable RunAsGroup values that may be set.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="runasuserstrategyoptions-v1beta1-policy">RunAsUserStrategyOptions v1beta1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>RunAsUserStrategyOptions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>RunAsUserStrategyOptions defines the strategy type and any options used to create the strategy.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ranges</CODE><BR /><I><a href="#idrange-v1beta1-policy">IDRange</a> array</I></TD><TD>ranges are the allowed ranges of uids that may be used. If you would like to force a single uid then supply a single range with the same start and end. Required for MustRunAs.</TD></TR>
+<TR><TD><CODE>rule</CODE><BR /><I>string</I></TD><TD>rule is the strategy that will dictate the allowable RunAsUser values that may be set.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="runtimeclassstrategyoptions-v1beta1-policy">RuntimeClassStrategyOptions v1beta1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>RuntimeClassStrategyOptions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>RuntimeClassStrategyOptions define the strategy that will dictate the allowable RuntimeClasses for a pod.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowedRuntimeClassNames</CODE><BR /><I>string array</I></TD><TD>allowedRuntimeClassNames is an allowlist of RuntimeClass names that may be specified on a pod. A value of &#34;*&#34; means that any RuntimeClass name is allowed, and must be the only item in the list. An empty list requires the RuntimeClassName field to be unset.</TD></TR>
+<TR><TD><CODE>defaultRuntimeClassName</CODE><BR /><I>string</I></TD><TD>defaultRuntimeClassName is the default RuntimeClassName to set on the pod. The default MUST be allowed by the allowedRuntimeClassNames list. A value of nil does not mutate the Pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="selinuxoptions-v1-core">SELinuxOptions v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SELinuxOptions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>SELinuxOptions are the labels to be applied to the container</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritycontext-v1-core">PodSecurityContext [core/v1]</a></LI>
+  <LI><a href="#selinuxstrategyoptions-v1beta1-policy">SELinuxStrategyOptions [policy/v1beta1]</a></LI>
+  <LI><a href="#securitycontext-v1-core">SecurityContext [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>level</CODE><BR /><I>string</I></TD><TD>Level is SELinux level label that applies to the container.</TD></TR>
+<TR><TD><CODE>role</CODE><BR /><I>string</I></TD><TD>Role is a SELinux role label that applies to the container.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type is a SELinux type label that applies to the container.</TD></TR>
+<TR><TD><CODE>user</CODE><BR /><I>string</I></TD><TD>User is a SELinux user label that applies to the container.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="selinuxstrategyoptions-v1beta1-policy">SELinuxStrategyOptions v1beta1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>SELinuxStrategyOptions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>SELinuxStrategyOptions defines the strategy type and any options used to create the strategy.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rule</CODE><BR /><I>string</I></TD><TD>rule is the strategy that will dictate the allowable labels that may be set.</TD></TR>
+<TR><TD><CODE>seLinuxOptions</CODE><BR /><I><a href="#selinuxoptions-v1-core">SELinuxOptions</a></I></TD><TD>seLinuxOptions required to run as; required for MustRunAs More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="scale-v1-autoscaling">Scale v1 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Scale</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Scale represents a scaling request for a resource.</P>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object metadata; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata.</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#scalespec-v1-autoscaling">ScaleSpec</a></I></TD><TD>defines the behavior of the scale. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#scalestatus-v1-autoscaling">ScaleStatus</a></I></TD><TD>current status of the scale. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status. Read-only.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="scaleiopersistentvolumesource-v1-core">ScaleIOPersistentVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ScaleIOPersistentVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ScaleIOPersistentVolumeSource represents a persistent ScaleIO volume</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Default is &#34;xfs&#34;</TD></TR>
+<TR><TD><CODE>gateway</CODE><BR /><I>string</I></TD><TD>The host address of the ScaleIO API Gateway.</TD></TR>
+<TR><TD><CODE>protectionDomain</CODE><BR /><I>string</I></TD><TD>The name of the ScaleIO Protection Domain for the configured storage.</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#secretreference-v1-core">SecretReference</a></I></TD><TD>SecretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail.</TD></TR>
+<TR><TD><CODE>sslEnabled</CODE><BR /><I>boolean</I></TD><TD>Flag to enable/disable SSL communication with Gateway, default false</TD></TR>
+<TR><TD><CODE>storageMode</CODE><BR /><I>string</I></TD><TD>Indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.</TD></TR>
+<TR><TD><CODE>storagePool</CODE><BR /><I>string</I></TD><TD>The ScaleIO Storage Pool associated with the protection domain.</TD></TR>
+<TR><TD><CODE>system</CODE><BR /><I>string</I></TD><TD>The name of the storage system as configured in ScaleIO.</TD></TR>
+<TR><TD><CODE>volumeName</CODE><BR /><I>string</I></TD><TD>The name of a volume already created in the ScaleIO system that is associated with this volume source.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="scaleiovolumesource-v1-core">ScaleIOVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ScaleIOVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ScaleIOVolumeSource represents a persistent ScaleIO volume</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Default is &#34;xfs&#34;.</TD></TR>
+<TR><TD><CODE>gateway</CODE><BR /><I>string</I></TD><TD>The host address of the ScaleIO API Gateway.</TD></TR>
+<TR><TD><CODE>protectionDomain</CODE><BR /><I>string</I></TD><TD>The name of the ScaleIO Protection Domain for the configured storage.</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#localobjectreference-v1-core">LocalObjectReference</a></I></TD><TD>SecretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail.</TD></TR>
+<TR><TD><CODE>sslEnabled</CODE><BR /><I>boolean</I></TD><TD>Flag to enable/disable SSL communication with Gateway, default false</TD></TR>
+<TR><TD><CODE>storageMode</CODE><BR /><I>string</I></TD><TD>Indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.</TD></TR>
+<TR><TD><CODE>storagePool</CODE><BR /><I>string</I></TD><TD>The ScaleIO Storage Pool associated with the protection domain.</TD></TR>
+<TR><TD><CODE>system</CODE><BR /><I>string</I></TD><TD>The name of the storage system as configured in ScaleIO.</TD></TR>
+<TR><TD><CODE>volumeName</CODE><BR /><I>string</I></TD><TD>The name of a volume already created in the ScaleIO system that is associated with this volume source.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="scheduling-v1-node-k8s-io">Scheduling v1 node.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>node.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Scheduling</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Scheduling specifies the scheduling constraints for nodes supporting a RuntimeClass.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#scheduling-v1beta1-node-k8s-io">v1beta1</a>
+<a href="#scheduling-v1alpha1-node-k8s-io">v1alpha1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass [node/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nodeSelector</CODE><BR /><I>object</I></TD><TD>nodeSelector lists labels that must be present on nodes that support this RuntimeClass. Pods using this RuntimeClass can only be scheduled to a node matched by this selector. The RuntimeClass nodeSelector is merged with a pod&#39;s existing nodeSelector. Any conflicts will cause the pod to be rejected in admission.</TD></TR>
+<TR><TD><CODE>tolerations</CODE><BR /><I><a href="#toleration-v1-core">Toleration</a> array</I></TD><TD>tolerations are appended (excluding duplicates) to pods running with this RuntimeClass during admission, effectively unioning the set of nodes tolerated by the pod and the RuntimeClass.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="scopeselector-v1-core">ScopeSelector v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ScopeSelector</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>A scope selector represents the AND of the selectors represented by the scoped-resource selector requirements.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#resourcequotaspec-v1-core">ResourceQuotaSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>matchExpressions</CODE><BR /><I><a href="#scopedresourceselectorrequirement-v1-core">ScopedResourceSelectorRequirement</a> array</I></TD><TD>A list of scope selector requirements by scope of the resources.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="scopedresourceselectorrequirement-v1-core">ScopedResourceSelectorRequirement v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ScopedResourceSelectorRequirement</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>A scoped-resource selector requirement is a selector that contains values, a scope name, and an operator that relates the scope name and values.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#scopeselector-v1-core">ScopeSelector [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>operator</CODE><BR /><I>string</I></TD><TD>Represents a scope&#39;s relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist.  Possible enum values:  - `&#34;DoesNotExist&#34;`  - `&#34;Exists&#34;`  - `&#34;In&#34;`  - `&#34;NotIn&#34;`</TD></TR>
+<TR><TD><CODE>scopeName</CODE><BR /><I>string</I></TD><TD>The name of the scope that the selector applies to.  Possible enum values:  - `&#34;BestEffort&#34;` Match all pod objects that have best effort quality of service  - `&#34;CrossNamespacePodAffinity&#34;` Match all pod objects that have cross-namespace pod (anti)affinity mentioned. This is a beta feature enabled by the PodAffinityNamespaceSelector feature flag.  - `&#34;NotBestEffort&#34;` Match all pod objects that do not have best effort quality of service  - `&#34;NotTerminating&#34;` Match all pod objects where spec.activeDeadlineSeconds is nil  - `&#34;PriorityClass&#34;` Match all pod objects that have priority class mentioned  - `&#34;Terminating&#34;` Match all pod objects where spec.activeDeadlineSeconds &gt;=0</TD></TR>
+<TR><TD><CODE>values</CODE><BR /><I>string array</I></TD><TD>An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="seccompprofile-v1-core">SeccompProfile v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SeccompProfile</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>SeccompProfile defines a pod/container&#39;s seccomp profile settings. Only one profile source may be set.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritycontext-v1-core">PodSecurityContext [core/v1]</a></LI>
+  <LI><a href="#securitycontext-v1-core">SecurityContext [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>localhostProfile</CODE><BR /><I>string</I></TD><TD>localhostProfile indicates a profile defined in a file on the node should be used. The profile must be preconfigured on the node to work. Must be a descending path, relative to the kubelet&#39;s configured seccomp profile location. Must only be set if type is &#34;Localhost&#34;.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type indicates which kind of seccomp profile will be applied. Valid options are:  Localhost - a profile defined in a file on the node should be used. RuntimeDefault - the container runtime default profile should be used. Unconfined - no profile should be applied.  Possible enum values:  - `&#34;Localhost&#34;` indicates a profile defined in a file on the node should be used. The file&#39;s location relative to &lt;kubelet-root-dir&gt;/seccomp.  - `&#34;RuntimeDefault&#34;` represents the default container runtime seccomp profile.  - `&#34;Unconfined&#34;` indicates no seccomp profile is applied (A.K.A. unconfined).</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="secretenvsource-v1-core">SecretEnvSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SecretEnvSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>SecretEnvSource selects a Secret to populate the environment variables with.
+
+The contents of the target Secret&#39;s Data field will represent the key-value pairs as environment variables.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#envfromsource-v1-core">EnvFromSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names</TD></TR>
+<TR><TD><CODE>optional</CODE><BR /><I>boolean</I></TD><TD>Specify whether the Secret must be defined</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="secretkeyselector-v1-core">SecretKeySelector v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SecretKeySelector</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>SecretKeySelector selects a key of a Secret.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#envvarsource-v1-core">EnvVarSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>key</CODE><BR /><I>string</I></TD><TD>The key of the secret to select from.  Must be a valid secret key.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names</TD></TR>
+<TR><TD><CODE>optional</CODE><BR /><I>boolean</I></TD><TD>Specify whether the Secret or its key must be defined</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="secretprojection-v1-core">SecretProjection v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SecretProjection</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Adapts a secret into a projected volume.
+
+The contents of the target Secret&#39;s Data field will be presented in a projected volume as files using the keys in the Data field as the file names. Note that this is identical to a secret volume source without the default mode.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volumeprojection-v1-core">VolumeProjection [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#keytopath-v1-core">KeyToPath</a> array</I></TD><TD>If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the &#39;..&#39; path or start with &#39;..&#39;.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names</TD></TR>
+<TR><TD><CODE>optional</CODE><BR /><I>boolean</I></TD><TD>Specify whether the Secret or its key must be defined</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="secretreference-v1-core">SecretReference v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SecretReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csipersistentvolumesource-v1-core">CSIPersistentVolumeSource [core/v1]</a></LI>
+  <LI><a href="#cephfspersistentvolumesource-v1-core">CephFSPersistentVolumeSource [core/v1]</a></LI>
+  <LI><a href="#cinderpersistentvolumesource-v1-core">CinderPersistentVolumeSource [core/v1]</a></LI>
+  <LI><a href="#flexpersistentvolumesource-v1-core">FlexPersistentVolumeSource [core/v1]</a></LI>
+  <LI><a href="#iscsipersistentvolumesource-v1-core">ISCSIPersistentVolumeSource [core/v1]</a></LI>
+  <LI><a href="#rbdpersistentvolumesource-v1-core">RBDPersistentVolumeSource [core/v1]</a></LI>
+  <LI><a href="#scaleiopersistentvolumesource-v1-core">ScaleIOPersistentVolumeSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is unique within a namespace to reference a secret resource.</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>Namespace defines the space within which the secret name must be unique.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="secretvolumesource-v1-core">SecretVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SecretVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Adapts a Secret into a volume.
+
+The contents of the target Secret&#39;s Data field will be presented in a volume as files using the keys in the Data field as the file names. Secret volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>defaultMode</CODE><BR /><I>integer</I></TD><TD>Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#keytopath-v1-core">KeyToPath</a> array</I></TD><TD>If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the &#39;..&#39; path or start with &#39;..&#39;.</TD></TR>
+<TR><TD><CODE>optional</CODE><BR /><I>boolean</I></TD><TD>Specify whether the Secret or its keys must be defined</TD></TR>
+<TR><TD><CODE>secretName</CODE><BR /><I>string</I></TD><TD>Name of the secret in the pod&#39;s namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="securitycontext-v1-core">SecurityContext v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SecurityContext</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>SecurityContext holds security configuration that will be applied to a container. Some fields are present in both SecurityContext and PodSecurityContext.  When both are set, the values in SecurityContext take precedence.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#container-v1-core">Container [core/v1]</a></LI>
+  <LI><a href="#ephemeralcontainer-v1-core">EphemeralContainer [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowPrivilegeEscalation</CODE><BR /><I>boolean</I></TD><TD>AllowPrivilegeEscalation controls whether a process can gain more privileges than its parent process. This bool directly controls if the no_new_privs flag will be set on the container process. AllowPrivilegeEscalation is true always when the container is: 1) run as Privileged 2) has CAP_SYS_ADMIN Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>capabilities</CODE><BR /><I><a href="#capabilities-v1-core">Capabilities</a></I></TD><TD>The capabilities to add/drop when running containers. Defaults to the default set of capabilities granted by the container runtime. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>privileged</CODE><BR /><I>boolean</I></TD><TD>Run container in privileged mode. Processes in privileged containers are essentially equivalent to root on the host. Defaults to false. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>procMount</CODE><BR /><I>string</I></TD><TD>procMount denotes the type of proc mount to use for the containers. The default is DefaultProcMount which uses the container runtime defaults for readonly paths and masked paths. This requires the ProcMountType feature flag to be enabled. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>readOnlyRootFilesystem</CODE><BR /><I>boolean</I></TD><TD>Whether this container has a read-only root filesystem. Default is false. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>runAsGroup</CODE><BR /><I>integer</I></TD><TD>The GID to run the entrypoint of the container process. Uses runtime default if unset. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>runAsNonRoot</CODE><BR /><I>boolean</I></TD><TD>Indicates that the container must run as a non-root user. If true, the Kubelet will validate the image at runtime to ensure that it does not run as UID 0 (root) and fail to start the container if it does. If unset or false, no such validation will be performed. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.</TD></TR>
+<TR><TD><CODE>runAsUser</CODE><BR /><I>integer</I></TD><TD>The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>seLinuxOptions</CODE><BR /><I><a href="#selinuxoptions-v1-core">SELinuxOptions</a></I></TD><TD>The SELinux context to be applied to the container. If unspecified, the container runtime will allocate a random SELinux context for each container.  May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>seccompProfile</CODE><BR /><I><a href="#seccompprofile-v1-core">SeccompProfile</a></I></TD><TD>The seccomp options to use by this container. If seccomp options are provided at both the pod &amp; container level, the container options override the pod options. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>windowsOptions</CODE><BR /><I><a href="#windowssecuritycontextoptions-v1-core">WindowsSecurityContextOptions</a></I></TD><TD>The Windows specific settings applied to all containers. If unspecified, the options from the PodSecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is linux.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="serveraddressbyclientcidr-v1-meta">ServerAddressByClientCIDR v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ServerAddressByClientCIDR</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ServerAddressByClientCIDR helps the client to determine the server address that they should use, depending on the clientCIDR that they match.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apigroup-v1-meta">APIGroup [meta/v1]</a></LI>
+  <LI><a href="#apiversions-v1-meta">APIVersions [meta/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>clientCIDR</CODE><BR /><I>string</I></TD><TD>The CIDR with which clients can match their IP to figure out the server address that they should use.</TD></TR>
+<TR><TD><CODE>serverAddress</CODE><BR /><I>string</I></TD><TD>Address of this server, suitable for a client that matches the above CIDR. This can be a hostname, hostname:port, IP or IP:port.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="serverstorageversion-v1alpha1-internal-apiserver-k8s-io">ServerStorageVersion v1alpha1 internal.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>internal.apiserver.k8s.io</CODE></TD><TD><CODE>v1alpha1</CODE></TD><TD><CODE>ServerStorageVersion</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>An API server instance reports the version it can decode and the version it encodes objects to when persisting objects in the backend.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#storageversionstatus-v1alpha1-internal-apiserver-k8s-io">StorageVersionStatus [apiserverinternal/v1alpha1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiServerID</CODE><BR /><I>string</I></TD><TD>The ID of the reporting API server.</TD></TR>
+<TR><TD><CODE>decodableVersions</CODE><BR /><I>string array</I></TD><TD>The API server can decode objects encoded in these versions. The encodingVersion must be included in the decodableVersions.</TD></TR>
+<TR><TD><CODE>encodingVersion</CODE><BR /><I>string</I></TD><TD>The API server encodes the object to this version when persisting it in the backend (e.g., etcd).</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="serviceaccountsubject-v1beta2-flowcontrol-apiserver-k8s-io">ServiceAccountSubject v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>ServiceAccountSubject</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ServiceAccountSubject holds detailed information for service-account-kind subject.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#serviceaccountsubject-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#subject-v1beta2-flowcontrol-apiserver-k8s-io">Subject [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>`name` is the name of matching ServiceAccount objects, or &#34;*&#34; to match regardless of name. Required.</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>`namespace` is the namespace of matching ServiceAccount objects. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="serviceaccounttokenprojection-v1-core">ServiceAccountTokenProjection v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ServiceAccountTokenProjection</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ServiceAccountTokenProjection represents a projected service account token volume. This projection can be used to insert a service account token into the pods runtime filesystem for use against APIs (Kubernetes API Server or otherwise).</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volumeprojection-v1-core">VolumeProjection [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>audience</CODE><BR /><I>string</I></TD><TD>Audience is the intended audience of the token. A recipient of a token must identify itself with an identifier specified in the audience of the token, and otherwise should reject the token. The audience defaults to the identifier of the apiserver.</TD></TR>
+<TR><TD><CODE>expirationSeconds</CODE><BR /><I>integer</I></TD><TD>ExpirationSeconds is the requested duration of validity of the service account token. As the token approaches expiration, the kubelet volume plugin will proactively rotate the service account token. The kubelet will start trying to rotate the token if the token is older than 80 percent of its time to live or if the token is older than 24 hours.Defaults to 1 hour and must be at least 10 minutes.</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>Path is the path relative to the mount point of the file to project the token into.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="servicebackendport-v1-networking-k8s-io">ServiceBackendPort v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ServiceBackendPort</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ServiceBackendPort is the service port being referenced.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingressservicebackend-v1-networking-k8s-io">IngressServiceBackend [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the name of the port on the Service. This is a mutually exclusive setting with &#34;Number&#34;.</TD></TR>
+<TR><TD><CODE>number</CODE><BR /><I>integer</I></TD><TD>Number is the numerical port number (e.g. 80) on the Service. This is a mutually exclusive setting with &#34;Name&#34;.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="serviceport-v1-core">ServicePort v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ServicePort</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ServicePort contains information on service&#39;s port.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#servicespec-v1-core">ServiceSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>appProtocol</CODE><BR /><I>string</I></TD><TD>The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and http://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>The name of this port within the service. This must be a DNS_LABEL. All ports within a ServiceSpec must have unique names. When considering the endpoints for a Service, this must match the &#39;name&#39; field in the EndpointPort. Optional if only one ServicePort is defined on this service.</TD></TR>
+<TR><TD><CODE>nodePort</CODE><BR /><I>integer</I></TD><TD>The port on each node on which this service is exposed when type is NodePort or LoadBalancer.  Usually assigned by the system. If a value is specified, in-range, and not in use it will be used, otherwise the operation will fail.  If not specified, a port will be allocated if this Service requires one.  If this field is specified when creating a Service which does not need it, creation will fail. This field will be wiped when updating a Service to no longer need it (e.g. changing type from NodePort to ClusterIP). More info: https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport</TD></TR>
+<TR><TD><CODE>port</CODE><BR /><I>integer</I></TD><TD>The port that will be exposed by this service.</TD></TR>
+<TR><TD><CODE>protocol</CODE><BR /><I>string</I></TD><TD>The IP protocol for this port. Supports &#34;TCP&#34;, &#34;UDP&#34;, and &#34;SCTP&#34;. Default is TCP.  Possible enum values:  - `&#34;SCTP&#34;` is the SCTP protocol.  - `&#34;TCP&#34;` is the TCP protocol.  - `&#34;UDP&#34;` is the UDP protocol.</TD></TR>
+<TR><TD><CODE>targetPort</CODE></TD><TD>Number or name of the port to access on the pods targeted by the service. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME. If this is a string, it will be looked up as a named port in the target Pod&#39;s container ports. If this is not specified, the value of the &#39;port&#39; field is used (an identity map). This field is ignored for services with clusterIP=None, and should be omitted or set equal to the &#39;port&#39; field. More info: https://kubernetes.io/docs/concepts/services-networking/service/#defining-a-service</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="servicereference-v1-admissionregistration-k8s-io">ServiceReference v1 admissionregistration.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>admissionregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ServiceReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ServiceReference holds a reference to Service.legacy.k8s.io</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#webhookclientconfig-v1-admissionregistration-k8s-io">WebhookClientConfig [admissionregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>`name` is the name of the service. Required</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>`namespace` is the namespace of the service. Required</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>`path` is an optional URL path which will be sent in any request to this service.</TD></TR>
+<TR><TD><CODE>port</CODE><BR /><I>integer</I></TD><TD>If specified, the port on the service that hosting webhook. Default to 443 for backward compatibility. `port` should be a valid port number (1-65535, inclusive).</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="sessionaffinityconfig-v1-core">SessionAffinityConfig v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SessionAffinityConfig</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>SessionAffinityConfig represents the configurations of session affinity.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#servicespec-v1-core">ServiceSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>clientIP</CODE><BR /><I><a href="#clientipconfig-v1-core">ClientIPConfig</a></I></TD><TD>clientIP contains the configurations of Client IP based session affinity.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="statefulsetcondition-v1-apps">StatefulSetCondition v1 apps</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>StatefulSetCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>StatefulSetCondition describes the state of a statefulset at a certain point.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#statefulsetstatus-v1-apps">StatefulSetStatus [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>A human readable message indicating details about the transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>The reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status of the condition, one of True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of statefulset condition.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="statefulsetpersistentvolumeclaimretentionpolicy-v1-apps">StatefulSetPersistentVolumeClaimRetentionPolicy v1 apps</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>StatefulSetPersistentVolumeClaimRetentionPolicy</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>StatefulSetPersistentVolumeClaimRetentionPolicy describes the policy used for PVCs created from the StatefulSet VolumeClaimTemplates.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#statefulsetspec-v1-apps">StatefulSetSpec [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>whenDeleted</CODE><BR /><I>string</I></TD><TD>WhenDeleted specifies what happens to PVCs created from StatefulSet VolumeClaimTemplates when the StatefulSet is deleted. The default policy of `Retain` causes PVCs to not be affected by StatefulSet deletion. The `Delete` policy causes those PVCs to be deleted.</TD></TR>
+<TR><TD><CODE>whenScaled</CODE><BR /><I>string</I></TD><TD>WhenScaled specifies what happens to PVCs created from StatefulSet VolumeClaimTemplates when the StatefulSet is scaled down. The default policy of `Retain` causes PVCs to not be affected by a scaledown. The `Delete` policy causes the associated PVCs for any excess pods above the replica count to be deleted.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="statefulsetupdatestrategy-v1-apps">StatefulSetUpdateStrategy v1 apps</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>StatefulSetUpdateStrategy</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>StatefulSetUpdateStrategy indicates the strategy that the StatefulSet controller will use to perform updates. It includes any additional parameters necessary to perform the update for the indicated strategy.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#statefulsetspec-v1-apps">StatefulSetSpec [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rollingUpdate</CODE><BR /><I><a href="#rollingupdatestatefulsetstrategy-v1-apps">RollingUpdateStatefulSetStrategy</a></I></TD><TD>RollingUpdate is used to communicate parameters when Type is RollingUpdateStatefulSetStrategyType.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type indicates the type of the StatefulSetUpdateStrategy. Default is RollingUpdate.  Possible enum values:  - `&#34;OnDelete&#34;` triggers the legacy behavior. Version tracking and ordered rolling restarts are disabled. Pods are recreated from the StatefulSetSpec when they are manually deleted. When a scale operation is performed with this strategy,specification version indicated by the StatefulSet&#39;s currentRevision.  - `&#34;RollingUpdate&#34;` indicates that update will be applied to all Pods in the StatefulSet with respect to the StatefulSet ordering constraints. When a scale operation is performed with this strategy, new Pods will be created from the specification version indicated by the StatefulSet&#39;s updateRevision.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="status-v1-meta">Status v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Status</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Status is a return value for calls that don&#39;t return other objects.</P>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>code</CODE><BR /><I>integer</I></TD><TD>Suggested HTTP return code for this status, 0 if not set.</TD></TR>
+<TR><TD><CODE>details</CODE><BR /><I><a href="#statusdetails-v1-meta">StatusDetails</a></I></TD><TD>Extended data associated with the reason.  Each reason may define its own extended details. This field is optional and the data returned is not guaranteed to conform to any schema except that defined by the reason type.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>A human-readable description of the status of this operation.</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>A machine-readable description of why this operation is in the &#34;Failure&#34; status. If this value is empty there is no information available. A Reason clarifies an HTTP status code but does not override it.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status of the operation. One of: &#34;Success&#34; or &#34;Failure&#34;. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="statuscause-v1-meta">StatusCause v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>StatusCause</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>StatusCause provides more information about an api.Status failure, including cases when multiple errors are encountered.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#statusdetails-v1-meta">StatusDetails [meta/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>field</CODE><BR /><I>string</I></TD><TD>The field of the resource that has caused this error, as named by its JSON serialization. May include dot and postfix notation for nested attributes. Arrays are zero-indexed.  Fields may appear more than once in an array of causes due to fields having multiple errors. Optional.  Examples:   &#34;name&#34; - the field &#34;name&#34; on the current resource   &#34;items[0].name&#34; - the field &#34;name&#34; on the first array entry in &#34;items&#34;</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>A human-readable description of the cause of the error.  This field may be presented as-is to a reader.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>A machine-readable description of the cause of the error. If this value is empty there is no information available.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="statusdetails-v1-meta">StatusDetails v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>StatusDetails</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>StatusDetails is a set of additional properties that MAY be set by the server to provide additional information about a response. The Reason field of a Status object defines what attributes will be set. Clients must ignore fields that do not match the defined type of each attribute, and should assume that any attribute may be empty, invalid, or under defined.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#status-v1-meta">Status [meta/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>causes</CODE><BR /><I><a href="#statuscause-v1-meta">StatusCause</a> array</I></TD><TD>The Causes array includes more details associated with the StatusReason failure. Not all StatusReasons may provide detailed causes.</TD></TR>
+<TR><TD><CODE>group</CODE><BR /><I>string</I></TD><TD>The group attribute of the resource associated with the status StatusReason.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>The kind attribute of the resource associated with the status StatusReason. On some operations may differ from the requested resource Kind. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>The name attribute of the resource associated with the status StatusReason (when there is a single name which can be described).</TD></TR>
+<TR><TD><CODE>retryAfterSeconds</CODE><BR /><I>integer</I></TD><TD>If specified, the time in seconds before the operation should be retried. Some errors may indicate the client must take an alternate action - for those errors this field may indicate how long to wait before taking the alternate action.</TD></TR>
+<TR><TD><CODE>uid</CODE><BR /><I>string</I></TD><TD>UID of the resource. (when there is a single resource which can be described). More info: http://kubernetes.io/docs/user-guide/identifiers#uids</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="storageospersistentvolumesource-v1-core">StorageOSPersistentVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>StorageOSPersistentVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a StorageOS persistent volume resource.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified.</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>SecretRef specifies the secret to use for obtaining the StorageOS API credentials.  If not specified, default values will be attempted.</TD></TR>
+<TR><TD><CODE>volumeName</CODE><BR /><I>string</I></TD><TD>VolumeName is the human-readable name of the StorageOS volume.  Volume names are only unique within a namespace.</TD></TR>
+<TR><TD><CODE>volumeNamespace</CODE><BR /><I>string</I></TD><TD>VolumeNamespace specifies the scope of the volume within StorageOS.  If no namespace is specified then the Pod&#39;s namespace will be used.  This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to &#34;default&#34; if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="storageosvolumesource-v1-core">StorageOSVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>StorageOSVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a StorageOS persistent volume resource.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified.</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#localobjectreference-v1-core">LocalObjectReference</a></I></TD><TD>SecretRef specifies the secret to use for obtaining the StorageOS API credentials.  If not specified, default values will be attempted.</TD></TR>
+<TR><TD><CODE>volumeName</CODE><BR /><I>string</I></TD><TD>VolumeName is the human-readable name of the StorageOS volume.  Volume names are only unique within a namespace.</TD></TR>
+<TR><TD><CODE>volumeNamespace</CODE><BR /><I>string</I></TD><TD>VolumeNamespace specifies the scope of the volume within StorageOS.  If no namespace is specified then the Pod&#39;s namespace will be used.  This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to &#34;default&#34; if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="storageversioncondition-v1alpha1-internal-apiserver-k8s-io">StorageVersionCondition v1alpha1 internal.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>internal.apiserver.k8s.io</CODE></TD><TD><CODE>v1alpha1</CODE></TD><TD><CODE>StorageVersionCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Describes the state of the storageVersion at a certain point.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#storageversionstatus-v1alpha1-internal-apiserver-k8s-io">StorageVersionStatus [apiserverinternal/v1alpha1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>A human readable message indicating details about the transition.</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>If set, this represents the .metadata.generation that the condition was set based upon.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>The reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status of the condition, one of True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of the condition.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="subject-v1beta2-flowcontrol-apiserver-k8s-io">Subject v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>Subject</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Subject matches the originator of a request, as identified by the request authentication system. There are three ways of matching an originator; by user, group, or service account.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#subject-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+<a href="#subject-v1-rbac-authorization-k8s-io">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#policyruleswithsubjects-v1beta2-flowcontrol-apiserver-k8s-io">PolicyRulesWithSubjects [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>group</CODE><BR /><I><a href="#groupsubject-v1beta2-flowcontrol-apiserver-k8s-io">GroupSubject</a></I></TD><TD>`group` matches based on user group name.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>`kind` indicates which one of the other fields is non-empty. Required</TD></TR>
+<TR><TD><CODE>serviceAccount</CODE><BR /><I><a href="#serviceaccountsubject-v1beta2-flowcontrol-apiserver-k8s-io">ServiceAccountSubject</a></I></TD><TD>`serviceAccount` matches ServiceAccounts.</TD></TR>
+<TR><TD><CODE>user</CODE><BR /><I><a href="#usersubject-v1beta2-flowcontrol-apiserver-k8s-io">UserSubject</a></I></TD><TD>`user` matches based on username.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="subjectrulesreviewstatus-v1-authorization-k8s-io">SubjectRulesReviewStatus v1 authorization.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SubjectRulesReviewStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>SubjectRulesReviewStatus contains the result of a rules check. This check can be incomplete depending on the set of authorizers the server is configured with and any errors experienced during evaluation. Because authorization rules are additive, if a rule appears in a list it&#39;s safe to assume the subject has that permission, even if that list is incomplete.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#selfsubjectrulesreview-v1-authorization-k8s-io">SelfSubjectRulesReview [authorization/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>evaluationError</CODE><BR /><I>string</I></TD><TD>EvaluationError can appear in combination with Rules. It indicates an error occurred during rule evaluation, such as an authorizer that doesn&#39;t support rule evaluation, and that ResourceRules and/or NonResourceRules may be incomplete.</TD></TR>
+<TR><TD><CODE>incomplete</CODE><BR /><I>boolean</I></TD><TD>Incomplete is true when the rules returned by this call are incomplete. This is most commonly encountered when an authorizer, such as an external authorizer, doesn&#39;t support rules evaluation.</TD></TR>
+<TR><TD><CODE>nonResourceRules</CODE><BR /><I><a href="#nonresourcerule-v1-authorization-k8s-io">NonResourceRule</a> array</I></TD><TD>NonResourceRules is the list of actions the subject is allowed to perform on non-resources. The list ordering isn&#39;t significant, may contain duplicates, and possibly be incomplete.</TD></TR>
+<TR><TD><CODE>resourceRules</CODE><BR /><I><a href="#resourcerule-v1-authorization-k8s-io">ResourceRule</a> array</I></TD><TD>ResourceRules is the list of actions the subject is allowed to perform on resources. The list ordering isn&#39;t significant, may contain duplicates, and possibly be incomplete.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="supplementalgroupsstrategyoptions-v1beta1-policy">SupplementalGroupsStrategyOptions v1beta1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>SupplementalGroupsStrategyOptions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>SupplementalGroupsStrategyOptions defines the strategy type and options used to create the strategy.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ranges</CODE><BR /><I><a href="#idrange-v1beta1-policy">IDRange</a> array</I></TD><TD>ranges are the allowed ranges of supplemental groups.  If you would like to force a single supplemental group then supply a single range with the same start and end. Required for MustRunAs.</TD></TR>
+<TR><TD><CODE>rule</CODE><BR /><I>string</I></TD><TD>rule is the strategy that will dictate what supplemental groups is used in the SecurityContext.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="sysctl-v1-core">Sysctl v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Sysctl</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Sysctl defines a kernel parameter to be set</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritycontext-v1-core">PodSecurityContext [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of a property to set</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I>string</I></TD><TD>Value of a property to set</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="tcpsocketaction-v1-core">TCPSocketAction v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>TCPSocketAction</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>TCPSocketAction describes an action based on opening a socket</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#lifecyclehandler-v1-core">LifecycleHandler [core/v1]</a></LI>
+  <LI><a href="#probe-v1-core">Probe [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>host</CODE><BR /><I>string</I></TD><TD>Optional: Host name to connect to, defaults to the pod IP.</TD></TR>
+<TR><TD><CODE>port</CODE></TD><TD>Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="taint-v1-core">Taint v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Taint</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>The node this Taint is attached to has the &#34;effect&#34; on any pod that does not tolerate the Taint.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodespec-v1-core">NodeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>effect</CODE><BR /><I>string</I></TD><TD>Required. The effect of the taint on pods that do not tolerate the taint. Valid effects are NoSchedule, PreferNoSchedule and NoExecute.  Possible enum values:  - `&#34;NoExecute&#34;` Evict any already-running pods that do not tolerate the taint. Currently enforced by NodeController.  - `&#34;NoSchedule&#34;` Do not allow new pods to schedule onto the node unless they tolerate the taint, but allow all pods submitted to Kubelet without going through the scheduler to start, and allow all already-running pods to continue running. Enforced by the scheduler.  - `&#34;PreferNoSchedule&#34;` Like TaintEffectNoSchedule, but the scheduler tries not to schedule new pods onto the node, rather than prohibiting new pods from scheduling onto the node entirely. Enforced by the scheduler.</TD></TR>
+<TR><TD><CODE>key</CODE><BR /><I>string</I></TD><TD>Required. The taint key to be applied to a node.</TD></TR>
+<TR><TD><CODE>timeAdded</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>TimeAdded represents the time at which the taint was added. It is only written for NoExecute taints.</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I>string</I></TD><TD>The taint value corresponding to the taint key.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="time-v1-meta">Time v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Time</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apiservicecondition-v1-apiregistration-k8s-io">APIServiceCondition [apiregistration/v1]</a></LI>
+  <LI><a href="#certificatesigningrequestcondition-v1-certificates-k8s-io">CertificateSigningRequestCondition [certificates/v1]</a></LI>
+  <LI><a href="#condition-v1-meta">Condition [meta/v1]</a></LI>
+  <LI><a href="#containerstaterunning-v1-core">ContainerStateRunning [core/v1]</a></LI>
+  <LI><a href="#containerstateterminated-v1-core">ContainerStateTerminated [core/v1]</a></LI>
+  <LI><a href="#cronjobstatus-v1-batch">CronJobStatus [batch/v1]</a></LI>
+  <LI><a href="#cronjobstatus-v1beta1-batch">CronJobStatus [batch/v1beta1]</a></LI>
+  <LI><a href="#customresourcedefinitioncondition-v1-apiextensions-k8s-io">CustomResourceDefinitionCondition [apiextensions/v1]</a></LI>
+  <LI><a href="#daemonsetcondition-v1-apps">DaemonSetCondition [apps/v1]</a></LI>
+  <LI><a href="#deploymentcondition-v1-apps">DeploymentCondition [apps/v1]</a></LI>
+  <LI><a href="#event-v1-core">Event [core/v1]</a></LI>
+  <LI><a href="#event-v1-events-k8s-io">Event [events/v1]</a></LI>
+  <LI><a href="#event-v1beta1-events-k8s-io">Event [events/v1beta1]</a></LI>
+  <LI><a href="#flowschemacondition-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaCondition [flowcontrol/v1beta2]</a></LI>
+  <LI><a href="#flowschemacondition-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaCondition [flowcontrol/v1beta1]</a></LI>
+  <LI><a href="#horizontalpodautoscalercondition-v2-autoscaling">HorizontalPodAutoscalerCondition [autoscaling/v2]</a></LI>
+  <LI><a href="#horizontalpodautoscalercondition-v2beta2-autoscaling">HorizontalPodAutoscalerCondition [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#horizontalpodautoscalercondition-v2beta1-autoscaling">HorizontalPodAutoscalerCondition [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#horizontalpodautoscalerstatus-v1-autoscaling">HorizontalPodAutoscalerStatus [autoscaling/v1]</a></LI>
+  <LI><a href="#horizontalpodautoscalerstatus-v2-autoscaling">HorizontalPodAutoscalerStatus [autoscaling/v2]</a></LI>
+  <LI><a href="#horizontalpodautoscalerstatus-v2beta2-autoscaling">HorizontalPodAutoscalerStatus [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#horizontalpodautoscalerstatus-v2beta1-autoscaling">HorizontalPodAutoscalerStatus [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#jobcondition-v1-batch">JobCondition [batch/v1]</a></LI>
+  <LI><a href="#jobstatus-v1-batch">JobStatus [batch/v1]</a></LI>
+  <LI><a href="#managedfieldsentry-v1-meta">ManagedFieldsEntry [meta/v1]</a></LI>
+  <LI><a href="#namespacecondition-v1-core">NamespaceCondition [core/v1]</a></LI>
+  <LI><a href="#nodecondition-v1-core">NodeCondition [core/v1]</a></LI>
+  <LI><a href="#objectmeta-v1-meta">ObjectMeta [meta/v1]</a></LI>
+  <LI><a href="#persistentvolumeclaimcondition-v1-core">PersistentVolumeClaimCondition [core/v1]</a></LI>
+  <LI><a href="#podcondition-v1-core">PodCondition [core/v1]</a></LI>
+  <LI><a href="#podstatus-v1-core">PodStatus [core/v1]</a></LI>
+  <LI><a href="#prioritylevelconfigurationcondition-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationCondition [flowcontrol/v1beta2]</a></LI>
+  <LI><a href="#prioritylevelconfigurationcondition-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationCondition [flowcontrol/v1beta1]</a></LI>
+  <LI><a href="#replicasetcondition-v1-apps">ReplicaSetCondition [apps/v1]</a></LI>
+  <LI><a href="#replicationcontrollercondition-v1-core">ReplicationControllerCondition [core/v1]</a></LI>
+  <LI><a href="#statefulsetcondition-v1-apps">StatefulSetCondition [apps/v1]</a></LI>
+  <LI><a href="#storageversioncondition-v1alpha1-internal-apiserver-k8s-io">StorageVersionCondition [apiserverinternal/v1alpha1]</a></LI>
+  <LI><a href="#taint-v1-core">Taint [core/v1]</a></LI>
+  <LI><a href="#tokenrequeststatus-v1-authentication-k8s-io">TokenRequestStatus [authentication/v1]</a></LI>
+  <LI><a href="#volumeerror-v1-storage-k8s-io">VolumeError [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+</TBODY>
+</TABLE>
+<H2 id="toleration-v1-core">Toleration v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Toleration</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>The pod this Toleration is attached to tolerates any taint that matches the triple &lt;key,value,effect&gt; using the matching operator &lt;operator&gt;.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+  <LI><a href="#scheduling-v1-node-k8s-io">Scheduling [node/v1]</a></LI>
+  <LI><a href="#scheduling-v1beta1-node-k8s-io">Scheduling [node/v1beta1]</a></LI>
+  <LI><a href="#scheduling-v1alpha1-node-k8s-io">Scheduling [node/v1alpha1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>effect</CODE><BR /><I>string</I></TD><TD>Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.  Possible enum values:  - `&#34;NoExecute&#34;` Evict any already-running pods that do not tolerate the taint. Currently enforced by NodeController.  - `&#34;NoSchedule&#34;` Do not allow new pods to schedule onto the node unless they tolerate the taint, but allow all pods submitted to Kubelet without going through the scheduler to start, and allow all already-running pods to continue running. Enforced by the scheduler.  - `&#34;PreferNoSchedule&#34;` Like TaintEffectNoSchedule, but the scheduler tries not to schedule new pods onto the node, rather than prohibiting new pods from scheduling onto the node entirely. Enforced by the scheduler.</TD></TR>
+<TR><TD><CODE>key</CODE><BR /><I>string</I></TD><TD>Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.</TD></TR>
+<TR><TD><CODE>operator</CODE><BR /><I>string</I></TD><TD>Operator represents a key&#39;s relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.  Possible enum values:  - `&#34;Equal&#34;`  - `&#34;Exists&#34;`</TD></TR>
+<TR><TD><CODE>tolerationSeconds</CODE><BR /><I>integer</I></TD><TD>TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I>string</I></TD><TD>Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="topologyselectorlabelrequirement-v1-core">TopologySelectorLabelRequirement v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>TopologySelectorLabelRequirement</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>A topology selector requirement is a selector that matches given label. This is an alpha feature and may change in the future.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#topologyselectorterm-v1-core">TopologySelectorTerm [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>key</CODE><BR /><I>string</I></TD><TD>The label key that the selector applies to.</TD></TR>
+<TR><TD><CODE>values</CODE><BR /><I>string array</I></TD><TD>An array of string values. One value must match the label to be selected. Each entry in Values is ORed.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="topologyselectorterm-v1-core">TopologySelectorTerm v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>TopologySelectorTerm</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>A topology selector term represents the result of label queries. A null or empty topology selector term matches no objects. The requirements of them are ANDed. It provides a subset of functionality as NodeSelectorTerm. This is an alpha feature and may change in the future.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#storageclass-v1-storage-k8s-io">StorageClass [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>matchLabelExpressions</CODE><BR /><I><a href="#topologyselectorlabelrequirement-v1-core">TopologySelectorLabelRequirement</a> array</I></TD><TD>A list of topology selector requirements by labels.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="topologyspreadconstraint-v1-core">TopologySpreadConstraint v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>TopologySpreadConstraint</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>TopologySpreadConstraint specifies how to spread matching pods among the given topology.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>labelSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain.</TD></TR>
+<TR><TD><CODE>maxSkew</CODE><BR /><I>integer</I></TD><TD>MaxSkew describes the degree to which pods may be unevenly distributed. When `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 1/1/0: | zone1 | zone2 | zone3 | |   P   |   P   |       | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 1/1/1; scheduling it onto zone1(zone2) would make the ActualSkew(2-0) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence to topologies that satisfy it. It&#39;s a required field. Default value is 1 and 0 is not allowed.</TD></TR>
+<TR><TD><CODE>topologyKey</CODE><BR /><I>string</I></TD><TD>TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each &lt;key, value&gt; as a &#34;bucket&#34;, and try to put balanced number of pods into each bucket. It&#39;s a required field.</TD></TR>
+<TR><TD><CODE>whenUnsatisfiable</CODE><BR /><I>string</I></TD><TD>WhenUnsatisfiable indicates how to deal with a pod if it doesn&#39;t satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location,   but giving higher precedence to topologies that would help reduce the   skew. A constraint is considered &#34;Unsatisfiable&#34; for an incoming pod if and only if every possible node assignment for that pod would violate &#34;MaxSkew&#34; on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P |   P   |   P   | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won&#39;t make it *more* imbalanced. It&#39;s a required field.  Possible enum values:  - `&#34;DoNotSchedule&#34;` instructs the scheduler not to schedule the pod when constraints are not satisfied.  - `&#34;ScheduleAnyway&#34;` instructs the scheduler to schedule the pod even if constraints are not satisfied.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="typedlocalobjectreference-v1-core">TypedLocalObjectReference v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>TypedLocalObjectReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>TypedLocalObjectReference contains enough information to let you locate the typed referenced object inside the same namespace.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingressbackend-v1-networking-k8s-io">IngressBackend [networking/v1]</a></LI>
+  <LI><a href="#persistentvolumeclaimspec-v1-core">PersistentVolumeClaimSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiGroup</CODE><BR /><I>string</I></TD><TD>APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is the type of resource being referenced</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the name of resource being referenced</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="uncountedterminatedpods-v1-batch">UncountedTerminatedPods v1 batch</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>batch</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>UncountedTerminatedPods</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>UncountedTerminatedPods holds UIDs of Pods that have terminated but haven&#39;t been accounted in Job status counters.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#jobstatus-v1-batch">JobStatus [batch/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>failed</CODE><BR /><I>string array</I></TD><TD>Failed holds UIDs of failed Pods.</TD></TR>
+<TR><TD><CODE>succeeded</CODE><BR /><I>string array</I></TD><TD>Succeeded holds UIDs of succeeded Pods.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="userinfo-v1-authentication-k8s-io">UserInfo v1 authentication.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authentication.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>UserInfo</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>UserInfo holds the information about the user needed to implement the user.Info interface.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#tokenreviewstatus-v1-authentication-k8s-io">TokenReviewStatus [authentication/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>extra</CODE><BR /><I>object</I></TD><TD>Any additional information provided by the authenticator.</TD></TR>
+<TR><TD><CODE>groups</CODE><BR /><I>string array</I></TD><TD>The names of groups this user is a part of.</TD></TR>
+<TR><TD><CODE>uid</CODE><BR /><I>string</I></TD><TD>A unique value that identifies this user across time. If this user is deleted and another user by the same name is added, they will have different UIDs.</TD></TR>
+<TR><TD><CODE>username</CODE><BR /><I>string</I></TD><TD>The name that uniquely identifies this user among all active users.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="usersubject-v1beta2-flowcontrol-apiserver-k8s-io">UserSubject v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>UserSubject</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>UserSubject holds detailed information for user-kind subject.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#usersubject-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#subject-v1beta2-flowcontrol-apiserver-k8s-io">Subject [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>`name` is the username that matches, or &#34;*&#34; to match all usernames. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="validatingwebhook-v1-admissionregistration-k8s-io">ValidatingWebhook v1 admissionregistration.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>admissionregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ValidatingWebhook</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ValidatingWebhook describes an admission webhook and the resources and operations it applies to.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration [admissionregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>admissionReviewVersions</CODE><BR /><I>string array</I></TD><TD>AdmissionReviewVersions is an ordered list of preferred `AdmissionReview` versions the Webhook expects. API server will try to use first version in the list which it supports. If none of the versions specified in this list supported by API server, validation will fail for this object. If a persisted webhook configuration specifies allowed versions and does not include any versions known to the API Server, calls to the webhook will fail and be subject to the failure policy.</TD></TR>
+<TR><TD><CODE>clientConfig</CODE><BR /><I><a href="#webhookclientconfig-v1-admissionregistration-k8s-io">WebhookClientConfig</a></I></TD><TD>ClientConfig defines how to communicate with the hook. Required</TD></TR>
+<TR><TD><CODE>failurePolicy</CODE><BR /><I>string</I></TD><TD>FailurePolicy defines how unrecognized errors from the admission endpoint are handled - allowed values are Ignore or Fail. Defaults to Fail.</TD></TR>
+<TR><TD><CODE>matchPolicy</CODE><BR /><I>string</I></TD><TD>matchPolicy defines how the &#34;rules&#34; list is used to match incoming requests. Allowed values are &#34;Exact&#34; or &#34;Equivalent&#34;.  - Exact: match a request only if it exactly matches a specified rule. For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, but &#34;rules&#34; only included `apiGroups:[&#34;apps&#34;], apiVersions:[&#34;v1&#34;], resources: [&#34;deployments&#34;]`, a request to apps/v1beta1 or extensions/v1beta1 would not be sent to the webhook.  - Equivalent: match a request if modifies a resource listed in rules, even via another API group or version. For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, and &#34;rules&#34; only included `apiGroups:[&#34;apps&#34;], apiVersions:[&#34;v1&#34;], resources: [&#34;deployments&#34;]`, a request to apps/v1beta1 or extensions/v1beta1 would be converted to apps/v1 and sent to the webhook.  Defaults to &#34;Equivalent&#34;</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>The name of the admission webhook. Name should be fully qualified, e.g., imagepolicy.kubernetes.io, where &#34;imagepolicy&#34; is the name of the webhook, and kubernetes.io is the name of the organization. Required.</TD></TR>
+<TR><TD><CODE>namespaceSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>NamespaceSelector decides whether to run the webhook on an object based on whether the namespace for that object matches the selector. If the object itself is a namespace, the matching is performed on object.metadata.labels. If the object is another cluster scoped resource, it never skips the webhook.  For example, to run the webhook on any objects whose namespace is not associated with &#34;runlevel&#34; of &#34;0&#34; or &#34;1&#34;;  you will set the selector as follows: &#34;namespaceSelector&#34;: {   &#34;matchExpressions&#34;: [     {       &#34;key&#34;: &#34;runlevel&#34;,       &#34;operator&#34;: &#34;NotIn&#34;,       &#34;values&#34;: [         &#34;0&#34;,         &#34;1&#34;       ]     }   ] }  If instead you want to only run the webhook on any objects whose namespace is associated with the &#34;environment&#34; of &#34;prod&#34; or &#34;staging&#34;; you will set the selector as follows: &#34;namespaceSelector&#34;: {   &#34;matchExpressions&#34;: [     {       &#34;key&#34;: &#34;environment&#34;,       &#34;operator&#34;: &#34;In&#34;,       &#34;values&#34;: [         &#34;prod&#34;,         &#34;staging&#34;       ]     }   ] }  See https://kubernetes.io/docs/concepts/overview/working-with-objects/labels for more examples of label selectors.  Default to the empty LabelSelector, which matches everything.</TD></TR>
+<TR><TD><CODE>objectSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>ObjectSelector decides whether to run the webhook based on if the object has matching labels. objectSelector is evaluated against both the oldObject and newObject that would be sent to the webhook, and is considered to match if either object matches the selector. A null object (oldObject in the case of create, or newObject in the case of delete) or an object that cannot have labels (like a DeploymentRollback or a PodProxyOptions object) is not considered to match. Use the object selector only if the webhook is opt-in, because end users may skip the admission webhook by setting the labels. Default to the empty LabelSelector, which matches everything.</TD></TR>
+<TR><TD><CODE>rules</CODE><BR /><I><a href="#rulewithoperations-v1-admissionregistration-k8s-io">RuleWithOperations</a> array</I></TD><TD>Rules describes what operations on what resources/subresources the webhook cares about. The webhook cares about an operation if it matches _any_ Rule. However, in order to prevent ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks from putting the cluster in a state which cannot be recovered from without completely disabling the plugin, ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks are never called on admission requests for ValidatingWebhookConfiguration and MutatingWebhookConfiguration objects.</TD></TR>
+<TR><TD><CODE>sideEffects</CODE><BR /><I>string</I></TD><TD>SideEffects states whether this webhook has side effects. Acceptable values are: None, NoneOnDryRun (webhooks created via v1beta1 may also specify Some or Unknown). Webhooks with side effects MUST implement a reconciliation system, since a request may be rejected by a future step in the admission chain and the side effects therefore need to be undone. Requests with the dryRun attribute will be auto-rejected if they match a webhook with sideEffects == Unknown or Some.</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE><BR /><I>integer</I></TD><TD>TimeoutSeconds specifies the timeout for this webhook. After the timeout passes, the webhook call will be ignored or the API call will fail based on the failure policy. The timeout value must be between 1 and 30 seconds. Default to 10 seconds.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="validationrule-v1-apiextensions-k8s-io">ValidationRule v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ValidationRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ValidationRule describes a validation rule written in the CEL expression language.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>Message represents the message displayed when validation fails. The message is required if the Rule contains line breaks. The message must not contain line breaks. If unset, the message is &#34;failed rule: {Rule}&#34;. e.g. &#34;must be a URL with the host matching spec.host&#34;</TD></TR>
+<TR><TD><CODE>rule</CODE><BR /><I>string</I></TD><TD>Rule represents the expression which will be evaluated by CEL. ref: https://github.com/google/cel-spec The Rule is scoped to the location of the x-kubernetes-validations extension in the schema. The `self` variable in the CEL expression is bound to the scoped value. Example: - Rule scoped to the root of a resource with a status subresource: {&#34;rule&#34;: &#34;self.status.actual &lt;= self.spec.maxDesired&#34;}  If the Rule is scoped to an object with properties, the accessible properties of the object are field selectable via `self.field` and field presence can be checked via `has(self.field)`. Null valued fields are treated as absent fields in CEL expressions. If the Rule is scoped to an object with additionalProperties (i.e. a map) the value of the map are accessible via `self[mapKey]`, map containment can be checked via `mapKey in self` and all entries of the map are accessible via CEL macros and functions such as `self.all(...)`. If the Rule is scoped to an array, the elements of the array are accessible via `self[i]` and also by macros and functions. If the Rule is scoped to a scalar, `self` is bound to the scalar value. Examples: - Rule scoped to a map of objects: {&#34;rule&#34;: &#34;self.components[&#39;Widget&#39;].priority &lt; 10&#34;} - Rule scoped to a list of integers: {&#34;rule&#34;: &#34;self.values.all(value, value &gt;= 0 &amp;&amp; value &lt; 100)&#34;} - Rule scoped to a string value: {&#34;rule&#34;: &#34;self.startsWith(&#39;kube&#39;)&#34;}  The `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the object and from any x-kubernetes-embedded-resource annotated objects. No other metadata properties are accessible.  Unknown data preserved in custom resources via x-kubernetes-preserve-unknown-fields is not accessible in CEL expressions. This includes: - Unknown field values that are preserved by object schemas with x-kubernetes-preserve-unknown-fields. - Object properties where the property schema is of an &#34;unknown type&#34;. An &#34;unknown type&#34; is recursively defined as:   - A schema with no type and x-kubernetes-preserve-unknown-fields set to true   - An array where the items schema is of an &#34;unknown type&#34;   - An object where the additionalProperties schema is of an &#34;unknown type&#34;  Only property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible. Accessible property names are escaped according to the following rules when accessed in the expression: - &#39;__&#39; escapes to &#39;__underscores__&#39; - &#39;.&#39; escapes to &#39;__dot__&#39; - &#39;-&#39; escapes to &#39;__dash__&#39; - &#39;/&#39; escapes to &#39;__slash__&#39; - Property names that exactly match a CEL RESERVED keyword escape to &#39;__{keyword}__&#39;. The keywords are: 	  &#34;true&#34;, &#34;false&#34;, &#34;null&#34;, &#34;in&#34;, &#34;as&#34;, &#34;break&#34;, &#34;const&#34;, &#34;continue&#34;, &#34;else&#34;, &#34;for&#34;, &#34;function&#34;, &#34;if&#34;, 	  &#34;import&#34;, &#34;let&#34;, &#34;loop&#34;, &#34;package&#34;, &#34;namespace&#34;, &#34;return&#34;. Examples:   - Rule accessing a property named &#34;namespace&#34;: {&#34;rule&#34;: &#34;self.__namespace__ &gt; 0&#34;}   - Rule accessing a property named &#34;x-prop&#34;: {&#34;rule&#34;: &#34;self.x__dash__prop &gt; 0&#34;}   - Rule accessing a property named &#34;redact__d&#34;: {&#34;rule&#34;: &#34;self.redact__underscores__d &gt; 0&#34;}  Equality on arrays with x-kubernetes-list-type of &#39;set&#39; or &#39;map&#39; ignores element order, i.e. [1, 2] == [2, 1]. Concatenation on arrays with x-kubernetes-list-type use the semantics of the list type:   - &#39;set&#39;: `X + Y` performs a union where the array positions of all elements in `X` are preserved and     non-intersecting elements in `Y` are appended, retaining their partial order.   - &#39;map&#39;: `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values     are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with     non-intersecting keys are appended, retaining their partial order.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="volumeattachmentsource-v1-storage-k8s-io">VolumeAttachmentSource v1 storage.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>VolumeAttachmentSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>VolumeAttachmentSource represents a volume that should be attached. Right now only PersistenVolumes can be attached via external attacher, in future we may allow also inline volumes in pods. Exactly one member can be set.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volumeattachmentspec-v1-storage-k8s-io">VolumeAttachmentSpec [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>inlineVolumeSpec</CODE><BR /><I><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec</a></I></TD><TD>inlineVolumeSpec contains all the information necessary to attach a persistent volume defined by a pod&#39;s inline VolumeSource. This field is populated only for the CSIMigration feature. It contains translated fields from a pod&#39;s inline VolumeSource to a PersistentVolumeSpec. This field is beta-level and is only honored by servers that enabled the CSIMigration feature.</TD></TR>
+<TR><TD><CODE>persistentVolumeName</CODE><BR /><I>string</I></TD><TD>Name of the persistent volume to attach.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="volumedevice-v1-core">VolumeDevice v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>VolumeDevice</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>volumeDevice describes a mapping of a raw block device within a container.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#container-v1-core">Container [core/v1]</a></LI>
+  <LI><a href="#ephemeralcontainer-v1-core">EphemeralContainer [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>devicePath</CODE><BR /><I>string</I></TD><TD>devicePath is the path inside of the container that the device will be mapped to.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name must match the name of a persistentVolumeClaim in the pod</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="volumeerror-v1-storage-k8s-io">VolumeError v1 storage.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>VolumeError</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>VolumeError captures an error encountered during a volume operation.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volumeattachmentstatus-v1-storage-k8s-io">VolumeAttachmentStatus [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>String detailing the error encountered during Attach or Detach operation. This string may be logged, so it should not contain sensitive information.</TD></TR>
+<TR><TD><CODE>time</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Time the error was encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="volumemount-v1-core">VolumeMount v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>VolumeMount</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>VolumeMount describes a mounting of a Volume within a container.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#container-v1-core">Container [core/v1]</a></LI>
+  <LI><a href="#ephemeralcontainer-v1-core">EphemeralContainer [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>mountPath</CODE><BR /><I>string</I></TD><TD>Path within the container at which the volume should be mounted.  Must not contain &#39;:&#39;.</TD></TR>
+<TR><TD><CODE>mountPropagation</CODE><BR /><I>string</I></TD><TD>mountPropagation determines how mounts are propagated from the host to container and the other way around. When not set, MountPropagationNone is used. This field is beta in 1.10.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>This must match the Name of a Volume.</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>Mounted read-only if true, read-write otherwise (false or unspecified). Defaults to false.</TD></TR>
+<TR><TD><CODE>subPath</CODE><BR /><I>string</I></TD><TD>Path within the volume from which the container&#39;s volume should be mounted. Defaults to &#34;&#34; (volume&#39;s root).</TD></TR>
+<TR><TD><CODE>subPathExpr</CODE><BR /><I>string</I></TD><TD>Expanded path within the volume from which the container&#39;s volume should be mounted. Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container&#39;s environment. Defaults to &#34;&#34; (volume&#39;s root). SubPathExpr and SubPath are mutually exclusive.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="volumenodeaffinity-v1-core">VolumeNodeAffinity v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>VolumeNodeAffinity</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>VolumeNodeAffinity defines constraints that limit what nodes this volume can be accessed from.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>required</CODE><BR /><I><a href="#nodeselector-v1-core">NodeSelector</a></I></TD><TD>Required specifies hard node constraints that must be met.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="volumenoderesources-v1-storage-k8s-io">VolumeNodeResources v1 storage.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>VolumeNodeResources</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>VolumeNodeResources is a set of resource limits for scheduling of volumes.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csinodedriver-v1-storage-k8s-io">CSINodeDriver [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>count</CODE><BR /><I>integer</I></TD><TD>Maximum number of unique volumes managed by the CSI driver that can be used on a node. A volume that is both attached and mounted on a node is considered to be used once, not twice. The same rule applies for a unique volume that is shared among multiple pods on the same node. If this field is not specified, then the supported number of volumes on this node is unbounded.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="volumeprojection-v1-core">VolumeProjection v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>VolumeProjection</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Projection that may be projected along with other supported volume types</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#projectedvolumesource-v1-core">ProjectedVolumeSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>configMap</CODE><BR /><I><a href="#configmapprojection-v1-core">ConfigMapProjection</a></I></TD><TD>information about the configMap data to project</TD></TR>
+<TR><TD><CODE>downwardAPI</CODE><BR /><I><a href="#downwardapiprojection-v1-core">DownwardAPIProjection</a></I></TD><TD>information about the downwardAPI data to project</TD></TR>
+<TR><TD><CODE>secret</CODE><BR /><I><a href="#secretprojection-v1-core">SecretProjection</a></I></TD><TD>information about the secret data to project</TD></TR>
+<TR><TD><CODE>serviceAccountToken</CODE><BR /><I><a href="#serviceaccounttokenprojection-v1-core">ServiceAccountTokenProjection</a></I></TD><TD>information about the serviceAccountToken data to project</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="vspherevirtualdiskvolumesource-v1-core">VsphereVirtualDiskVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>VsphereVirtualDiskVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a vSphere volume resource.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified.</TD></TR>
+<TR><TD><CODE>storagePolicyID</CODE><BR /><I>string</I></TD><TD>Storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.</TD></TR>
+<TR><TD><CODE>storagePolicyName</CODE><BR /><I>string</I></TD><TD>Storage Policy Based Management (SPBM) profile name.</TD></TR>
+<TR><TD><CODE>volumePath</CODE><BR /><I>string</I></TD><TD>Path that identifies vSphere volume vmdk</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watchevent-v1-meta">WatchEvent v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>WatchEvent</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Event represents a single event to a watched resource.</P>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>object</CODE></TD><TD>Object is:  * If Type is Added or Modified: the new state of the object.  * If Type is Deleted: the state of the object immediately before deletion.  * If Type is Error: *Status is recommended; other types may make sense    depending on context.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="webhookclientconfig-v1-admissionregistration-k8s-io">WebhookClientConfig v1 admissionregistration.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>admissionregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>WebhookClientConfig</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>WebhookClientConfig contains the information to make a TLS connection with the webhook</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#mutatingwebhook-v1-admissionregistration-k8s-io">MutatingWebhook [admissionregistration/v1]</a></LI>
+  <LI><a href="#validatingwebhook-v1-admissionregistration-k8s-io">ValidatingWebhook [admissionregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>caBundle</CODE><BR /><I>string</I></TD><TD>`caBundle` is a PEM encoded CA bundle which will be used to validate the webhook&#39;s server certificate. If unspecified, system trust roots on the apiserver are used.</TD></TR>
+<TR><TD><CODE>service</CODE><BR /><I><a href="#servicereference-v1-admissionregistration-k8s-io">ServiceReference</a></I></TD><TD>`service` is a reference to the service for this webhook. Either `service` or `url` must be specified.  If the webhook is running within the cluster, then you should use `service`.</TD></TR>
+<TR><TD><CODE>url</CODE><BR /><I>string</I></TD><TD>`url` gives the location of the webhook, in standard URL form (`scheme://host:port/path`). Exactly one of `url` or `service` must be specified.  The `host` should not refer to a service running in the cluster; use the `service` field instead. The host might be resolved via external DNS in some apiservers (e.g., `kube-apiserver` cannot resolve in-cluster DNS as that would be a layering violation). `host` may also be an IP address.  Please note that using `localhost` or `127.0.0.1` as a `host` is risky unless you take great care to run this webhook on all hosts which run an apiserver which might need to make calls to this webhook. Such installs are likely to be non-portable, i.e., not easy to turn up in a new cluster.  The scheme must be &#34;https&#34;; the URL must begin with &#34;https://&#34;.  A path is optional, and if present may be any string permissible in a URL. You may use the path to pass an arbitrary string to the webhook, for example, a cluster identifier.  Attempting to use a user or basic auth e.g. &#34;user:password@&#34; is not allowed. Fragments (&#34;#...&#34;) and query parameters (&#34;?...&#34;) are not allowed, either.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="webhookconversion-v1-apiextensions-k8s-io">WebhookConversion v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>WebhookConversion</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>WebhookConversion describes how to call a conversion webhook</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourceconversion-v1-apiextensions-k8s-io">CustomResourceConversion [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>clientConfig</CODE><BR /><I><a href="#webhookclientconfig-v1-apiextensions-k8s-io">WebhookClientConfig</a></I></TD><TD>clientConfig is the instructions for how to call the webhook if strategy is `Webhook`.</TD></TR>
+<TR><TD><CODE>conversionReviewVersions</CODE><BR /><I>string array</I></TD><TD>conversionReviewVersions is an ordered list of preferred `ConversionReview` versions the Webhook expects. The API server will use the first version in the list which it supports. If none of the versions specified in this list are supported by API server, conversion will fail for the custom resource. If a persisted Webhook configuration specifies allowed versions and does not include any versions known to the API Server, calls to the webhook will fail.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="weightedpodaffinityterm-v1-core">WeightedPodAffinityTerm v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>WeightedPodAffinityTerm</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podaffinity-v1-core">PodAffinity [core/v1]</a></LI>
+  <LI><a href="#podantiaffinity-v1-core">PodAntiAffinity [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>podAffinityTerm</CODE><BR /><I><a href="#podaffinityterm-v1-core">PodAffinityTerm</a></I></TD><TD>Required. A pod affinity term, associated with the corresponding weight.</TD></TR>
+<TR><TD><CODE>weight</CODE><BR /><I>integer</I></TD><TD>weight associated with matching the corresponding podAffinityTerm, in the range 1-100.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="windowssecuritycontextoptions-v1-core">WindowsSecurityContextOptions v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>WindowsSecurityContextOptions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>WindowsSecurityContextOptions contain Windows-specific options and credentials.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritycontext-v1-core">PodSecurityContext [core/v1]</a></LI>
+  <LI><a href="#securitycontext-v1-core">SecurityContext [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>gmsaCredentialSpec</CODE><BR /><I>string</I></TD><TD>GMSACredentialSpec is where the GMSA admission webhook (https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the GMSA credential spec named by the GMSACredentialSpecName field.</TD></TR>
+<TR><TD><CODE>gmsaCredentialSpecName</CODE><BR /><I>string</I></TD><TD>GMSACredentialSpecName is the name of the GMSA credential spec to use.</TD></TR>
+<TR><TD><CODE>hostProcess</CODE><BR /><I>boolean</I></TD><TD>HostProcess determines if a container should be run as a &#39;Host Process&#39; container. This field is alpha-level and will only be honored by components that enable the WindowsHostProcessContainers feature flag. Setting this field without the feature flag will result in errors when validating the Pod. All of a Pod&#39;s containers must have the same effective HostProcess value (it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).  In addition, if HostProcess is true then HostNetwork must also be set to true.</TD></TR>
+<TR><TD><CODE>runAsUserName</CODE><BR /><I>string</I></TD><TD>The UserName in Windows to run the entrypoint of the container process. Defaults to the user specified in image metadata if unspecified. May also be set in PodSecurityContext. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="-strong-old-api-versions-strong-"><STRONG>OLD API VERSIONS</STRONG></H1>
+
+<P>This section contains older versions of resources shown above.</P>
+<H1 id="csistoragecapacity-v1alpha1-storage-k8s-io">CSIStorageCapacity v1alpha1 storage.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1alpha1</CODE></TD><TD><CODE>CSIStorageCapacity</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#csistoragecapacity-v1beta1-storage-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csistoragecapacitylist-v1alpha1-storage-k8s-io">CSIStorageCapacityList [storage/v1alpha1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>capacity</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>Capacity is the value reported by the CSI driver in its GetCapacityResponse for a GetCapacityRequest with topology and parameters that match the previous fields.  The semantic is currently (CSI spec 1.2) defined as: The available capacity, in bytes, of the storage that can be used to provision volumes. If not set, that information is currently unavailable and treated like zero capacity.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>maximumVolumeSize</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>MaximumVolumeSize is the value reported by the CSI driver in its GetCapacityResponse for a GetCapacityRequest with topology and parameters that match the previous fields.  This is defined since CSI spec 1.4.0 as the largest size that may be used in a CreateVolumeRequest.capacity_range.required_bytes field to create a volume with the same parameters as those in GetCapacityRequest. The corresponding value in the Kubernetes API is ResourceRequirements.Requests in a volume claim.</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. The name has no particular meaning. It must be be a DNS subdomain (dots allowed, 253 characters). To ensure that there are no conflicts with other CSI drivers on the cluster, the recommendation is to use csisc-&lt;uuid&gt;, a generated name, or a reverse-domain name which ends with the unique CSI driver name.  Objects are namespaced.  More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>nodeTopology</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>NodeTopology defines which nodes have access to the storage for which capacity was reported. If not set, the storage is not accessible from any node in the cluster. If empty, the storage is accessible from all nodes. This field is immutable.</TD></TR>
+<TR><TD><CODE>storageClassName</CODE><BR /><I>string</I></TD><TD>The name of the StorageClass that the reported capacity applies to. It must meet the same requirements as the name of a StorageClass object (non-empty, DNS subdomain). If that object no longer exists, the CSIStorageCapacity object is obsolete and should be removed by its creator. This field is immutable.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="csistoragecapacitylist-v1alpha1-storage-k8s-io">CSIStorageCapacityList v1alpha1 storage</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#csistoragecapacity-v1alpha1-storage-k8s-io">CSIStorageCapacity</a> array</I></TD><TD>Items is the list of CSIStorageCapacity objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-csistoragecapacity-v1alpha1-storage-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-csistoragecapacity-v1alpha1-storage-k8s-io">Create</H2>
+<P>create a CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/storage.k8s.io/v1alpha1/namespaces/{namespace}/csistoragecapacities</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#csistoragecapacity-v1alpha1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacity-v1alpha1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csistoragecapacity-v1alpha1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#csistoragecapacity-v1alpha1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-csistoragecapacity-v1alpha1-storage-k8s-io">Patch</H2>
+<P>partially update the specified CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/storage.k8s.io/v1alpha1/namespaces/{namespace}/csistoragecapacities/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIStorageCapacity</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacity-v1alpha1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csistoragecapacity-v1alpha1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-csistoragecapacity-v1alpha1-storage-k8s-io">Replace</H2>
+<P>replace the specified CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/storage.k8s.io/v1alpha1/namespaces/{namespace}/csistoragecapacities/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIStorageCapacity</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#csistoragecapacity-v1alpha1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacity-v1alpha1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csistoragecapacity-v1alpha1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-csistoragecapacity-v1alpha1-storage-k8s-io">Delete</H2>
+<P>delete a CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1alpha1/namespaces/{namespace}/csistoragecapacities/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIStorageCapacity</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-csistoragecapacity-v1alpha1-storage-k8s-io">Delete Collection</H2>
+<P>delete collection of CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1alpha1/namespaces/{namespace}/csistoragecapacities</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-csistoragecapacity-v1alpha1-storage-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-csistoragecapacity-v1alpha1-storage-k8s-io">Read</H2>
+<P>read the specified CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1alpha1/namespaces/{namespace}/csistoragecapacities/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIStorageCapacity</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacity-v1alpha1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-csistoragecapacity-v1alpha1-storage-k8s-io">List</H2>
+<P>list or watch objects of kind CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1alpha1/namespaces/{namespace}/csistoragecapacities</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacitylist-v1alpha1-storage-k8s-io">CSIStorageCapacityList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-csistoragecapacity-v1alpha1-storage-k8s-io">List All Namespaces</H2>
+<P>list or watch objects of kind CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1alpha1/csistoragecapacities</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacitylist-v1alpha1-storage-k8s-io">CSIStorageCapacityList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-csistoragecapacity-v1alpha1-storage-k8s-io">Watch</H2>
+<P>watch changes to an object of kind CSIStorageCapacity. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1alpha1/watch/namespaces/{namespace}/csistoragecapacities/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIStorageCapacity</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-csistoragecapacity-v1alpha1-storage-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of CSIStorageCapacity. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1alpha1/watch/namespaces/{namespace}/csistoragecapacities</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-csistoragecapacity-v1alpha1-storage-k8s-io">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of CSIStorageCapacity. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1alpha1/watch/csistoragecapacities</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="containerresourcemetricsource-v2beta2-autoscaling">ContainerResourceMetricSource v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>ContainerResourceMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#containerresourcemetricsource-v2-autoscaling">v2</a>
+<a href="#containerresourcemetricsource-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2beta2-autoscaling">MetricSpec [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>container</CODE><BR /><I>string</I></TD><TD>container is the name of the container in the pods of the scaling target</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the resource in question.</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#metrictarget-v2beta2-autoscaling">MetricTarget</a></I></TD><TD>target specifies the target value for the given metric</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="containerresourcemetricsource-v2beta1-autoscaling">ContainerResourceMetricSource v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>ContainerResourceMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#containerresourcemetricsource-v2-autoscaling">v2</a>
+<a href="#containerresourcemetricsource-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2beta1-autoscaling">MetricSpec [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>container</CODE><BR /><I>string</I></TD><TD>container is the name of the container in the pods of the scaling target</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the resource in question.</TD></TR>
+<TR><TD><CODE>targetAverageUtilization</CODE><BR /><I>integer</I></TD><TD>targetAverageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.</TD></TR>
+<TR><TD><CODE>targetAverageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>targetAverageValue is the target value of the average of the resource metric across all relevant pods, as a raw value (instead of as a percentage of the request), similar to the &#34;pods&#34; metric source type.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="containerresourcemetricstatus-v2beta2-autoscaling">ContainerResourceMetricStatus v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>ContainerResourceMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#containerresourcemetricstatus-v2-autoscaling">v2</a>
+<a href="#containerresourcemetricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2beta2-autoscaling">MetricStatus [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>container</CODE><BR /><I>string</I></TD><TD>Container is the name of the container in the pods of the scaling target</TD></TR>
+<TR><TD><CODE>current</CODE><BR /><I><a href="#metricvaluestatus-v2beta2-autoscaling">MetricValueStatus</a></I></TD><TD>current contains the current value for the given metric</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the name of the resource in question.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="containerresourcemetricstatus-v2beta1-autoscaling">ContainerResourceMetricStatus v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>ContainerResourceMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#containerresourcemetricstatus-v2-autoscaling">v2</a>
+<a href="#containerresourcemetricstatus-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2beta1-autoscaling">MetricStatus [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>container</CODE><BR /><I>string</I></TD><TD>container is the name of the container in the pods of the scaling target</TD></TR>
+<TR><TD><CODE>currentAverageUtilization</CODE><BR /><I>integer</I></TD><TD>currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.  It will only be present if `targetAverageValue` was set in the corresponding metric specification.</TD></TR>
+<TR><TD><CODE>currentAverageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>currentAverageValue is the current value of the average of the resource metric across all relevant pods, as a raw value (instead of as a percentage of the request), similar to the &#34;pods&#34; metric source type. It will always be set, regardless of the corresponding metric specification.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the resource in question.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="cronjob-v1beta1-batch">CronJob v1beta1 batch</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>batch</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>CronJob</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#cronjob-v1-batch">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#cronjoblist-v1beta1-batch">CronJobList [batch/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#cronjobspec-v1beta1-batch">CronJobSpec</a></I></TD><TD>Specification of the desired behavior of a cron job, including the schedule. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#cronjobstatus-v1beta1-batch">CronJobStatus</a></I></TD><TD>Current status of a cron job. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="cronjobspec-v1beta1-batch">CronJobSpec v1beta1 batch</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#cronjob-v1beta1-batch">CronJob [batch/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>concurrencyPolicy</CODE><BR /><I>string</I></TD><TD>Specifies how to treat concurrent executions of a Job. Valid values are: - &#34;Allow&#34; (default): allows CronJobs to run concurrently; - &#34;Forbid&#34;: forbids concurrent runs, skipping next run if previous run hasn&#39;t finished yet; - &#34;Replace&#34;: cancels currently running job and replaces it with a new one</TD></TR>
+<TR><TD><CODE>failedJobsHistoryLimit</CODE><BR /><I>integer</I></TD><TD>The number of failed finished jobs to retain. This is a pointer to distinguish between explicit zero and not specified. Defaults to 1.</TD></TR>
+<TR><TD><CODE>jobTemplate</CODE><BR /><I><a href="#jobtemplatespec-v1beta1-batch">JobTemplateSpec</a></I></TD><TD>Specifies the job that will be created when executing a CronJob.</TD></TR>
+<TR><TD><CODE>schedule</CODE><BR /><I>string</I></TD><TD>The schedule in Cron format, see https://en.wikipedia.org/wiki/Cron.</TD></TR>
+<TR><TD><CODE>startingDeadlineSeconds</CODE><BR /><I>integer</I></TD><TD>Optional deadline in seconds for starting the job if it misses scheduled time for any reason.  Missed jobs executions will be counted as failed ones.</TD></TR>
+<TR><TD><CODE>successfulJobsHistoryLimit</CODE><BR /><I>integer</I></TD><TD>The number of successful finished jobs to retain. This is a pointer to distinguish between explicit zero and not specified. Defaults to 3.</TD></TR>
+<TR><TD><CODE>suspend</CODE><BR /><I>boolean</I></TD><TD>This flag tells the controller to suspend subsequent executions, it does not apply to already started executions.  Defaults to false.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="cronjobstatus-v1beta1-batch">CronJobStatus v1beta1 batch</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#cronjob-v1beta1-batch">CronJob [batch/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>active</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a> array</I></TD><TD>A list of pointers to currently running jobs.</TD></TR>
+<TR><TD><CODE>lastScheduleTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Information when was the last time the job was successfully scheduled.</TD></TR>
+<TR><TD><CODE>lastSuccessfulTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Information when was the last time the job successfully completed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="cronjoblist-v1beta1-batch">CronJobList v1beta1 batch</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#cronjob-v1beta1-batch">CronJob</a> array</I></TD><TD>items is the list of CronJobs.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-cronjob-v1beta1-batch-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-cronjob-v1beta1-batch">Create</H2>
+<P>create a CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/batch/v1beta1/namespaces/{namespace}/cronjobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-cronjob-v1beta1-batch">Patch</H2>
+<P>partially update the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/batch/v1beta1/namespaces/{namespace}/cronjobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-cronjob-v1beta1-batch">Replace</H2>
+<P>replace the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/batch/v1beta1/namespaces/{namespace}/cronjobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-cronjob-v1beta1-batch">Delete</H2>
+<P>delete a CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/batch/v1beta1/namespaces/{namespace}/cronjobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-cronjob-v1beta1-batch">Delete Collection</H2>
+<P>delete collection of CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/batch/v1beta1/namespaces/{namespace}/cronjobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-cronjob-v1beta1-batch-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-cronjob-v1beta1-batch">Read</H2>
+<P>read the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1beta1/namespaces/{namespace}/cronjobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-cronjob-v1beta1-batch">List</H2>
+<P>list or watch objects of kind CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1beta1/namespaces/{namespace}/cronjobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjoblist-v1beta1-batch">CronJobList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-cronjob-v1beta1-batch">List All Namespaces</H2>
+<P>list or watch objects of kind CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1beta1/cronjobs</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjoblist-v1beta1-batch">CronJobList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-cronjob-v1beta1-batch">Watch</H2>
+<P>watch changes to an object of kind CronJob. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1beta1/watch/namespaces/{namespace}/cronjobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-cronjob-v1beta1-batch">Watch List</H2>
+<P>watch individual changes to a list of CronJob. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1beta1/watch/namespaces/{namespace}/cronjobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-cronjob-v1beta1-batch">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of CronJob. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1beta1/watch/cronjobs</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-cronjob-v1beta1-batch-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-cronjob-v1beta1-batch">Patch Status</H2>
+<P>partially update status of the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/batch/v1beta1/namespaces/{namespace}/cronjobs/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-cronjob-v1beta1-batch">Read Status</H2>
+<P>read status of the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1beta1/namespaces/{namespace}/cronjobs/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-cronjob-v1beta1-batch">Replace Status</H2>
+<P>replace status of the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/batch/v1beta1/namespaces/{namespace}/cronjobs/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="crossversionobjectreference-v2-autoscaling">CrossVersionObjectReference v2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>CrossVersionObjectReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#crossversionobjectreference-v1-autoscaling">v1</a>
+<a href="#crossversionobjectreference-v2beta2-autoscaling">v2beta2</a>
+<a href="#crossversionobjectreference-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerspec-v2-autoscaling">HorizontalPodAutoscalerSpec [autoscaling/v2]</a></LI>
+  <LI><a href="#objectmetricsource-v2-autoscaling">ObjectMetricSource [autoscaling/v2]</a></LI>
+  <LI><a href="#objectmetricstatus-v2-autoscaling">ObjectMetricStatus [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>API version of the referent</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds&#34;</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="crossversionobjectreference-v2beta2-autoscaling">CrossVersionObjectReference v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>CrossVersionObjectReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#crossversionobjectreference-v1-autoscaling">v1</a>
+<a href="#crossversionobjectreference-v2-autoscaling">v2</a>
+<a href="#crossversionobjectreference-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerspec-v2beta2-autoscaling">HorizontalPodAutoscalerSpec [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#objectmetricsource-v2beta2-autoscaling">ObjectMetricSource [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#objectmetricstatus-v2beta2-autoscaling">ObjectMetricStatus [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>API version of the referent</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds&#34;</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="crossversionobjectreference-v2beta1-autoscaling">CrossVersionObjectReference v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>CrossVersionObjectReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#crossversionobjectreference-v1-autoscaling">v1</a>
+<a href="#crossversionobjectreference-v2-autoscaling">v2</a>
+<a href="#crossversionobjectreference-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerspec-v2beta1-autoscaling">HorizontalPodAutoscalerSpec [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#objectmetricsource-v2beta1-autoscaling">ObjectMetricSource [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#objectmetricstatus-v2beta1-autoscaling">ObjectMetricStatus [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>API version of the referent</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds&#34;</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="endpoint-v1beta1-discovery-k8s-io">Endpoint v1beta1 discovery.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>Endpoint</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#endpoint-v1-discovery-k8s-io">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice [discovery/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>addresses</CODE><BR /><I>string array</I></TD><TD>addresses of this endpoint. The contents of this field are interpreted according to the corresponding EndpointSlice addressType field. Consumers must handle different types of addresses in the context of their own capabilities. This must contain at least one address but no more than 100.</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#endpointconditions-v1beta1-discovery-k8s-io">EndpointConditions</a></I></TD><TD>conditions contains information about the current status of the endpoint.</TD></TR>
+<TR><TD><CODE>hints</CODE><BR /><I><a href="#endpointhints-v1beta1-discovery-k8s-io">EndpointHints</a></I></TD><TD>hints contains information associated with how an endpoint should be consumed.</TD></TR>
+<TR><TD><CODE>hostname</CODE><BR /><I>string</I></TD><TD>hostname of this endpoint. This field may be used by consumers of endpoints to distinguish endpoints from each other (e.g. in DNS names). Multiple endpoints which use the same hostname should be considered fungible (e.g. multiple A values in DNS). Must be lowercase and pass DNS Label (RFC 1123) validation.</TD></TR>
+<TR><TD><CODE>nodeName</CODE><BR /><I>string</I></TD><TD>nodeName represents the name of the Node hosting this endpoint. This can be used to determine endpoints local to a Node. This field can be enabled with the EndpointSliceNodeName feature gate.</TD></TR>
+<TR><TD><CODE>targetRef</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>targetRef is a reference to a Kubernetes object that represents this endpoint.</TD></TR>
+<TR><TD><CODE>topology</CODE><BR /><I>object</I></TD><TD>topology contains arbitrary topology information associated with the endpoint. These key/value pairs must conform with the label format. https://kubernetes.io/docs/concepts/overview/working-with-objects/labels Topology may include a maximum of 16 key/value pairs. This includes, but is not limited to the following well known keys: * kubernetes.io/hostname: the value indicates the hostname of the node   where the endpoint is located. This should match the corresponding   node label. * topology.kubernetes.io/zone: the value indicates the zone where the   endpoint is located. This should match the corresponding node label. * topology.kubernetes.io/region: the value indicates the region where the   endpoint is located. This should match the corresponding node label. This field is deprecated and will be removed in future api versions.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="endpointconditions-v1beta1-discovery-k8s-io">EndpointConditions v1beta1 discovery.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>EndpointConditions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#endpointconditions-v1-discovery-k8s-io">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpoint-v1beta1-discovery-k8s-io">Endpoint [discovery/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ready</CODE><BR /><I>boolean</I></TD><TD>ready indicates that this endpoint is prepared to receive traffic, according to whatever system is managing the endpoint. A nil value indicates an unknown state. In most cases consumers should interpret this unknown state as ready. For compatibility reasons, ready should never be &#34;true&#34; for terminating endpoints.</TD></TR>
+<TR><TD><CODE>serving</CODE><BR /><I>boolean</I></TD><TD>serving is identical to ready except that it is set regardless of the terminating state of endpoints. This condition should be set to true for a ready endpoint that is terminating. If nil, consumers should defer to the ready condition. This field can be enabled with the EndpointSliceTerminatingCondition feature gate.</TD></TR>
+<TR><TD><CODE>terminating</CODE><BR /><I>boolean</I></TD><TD>terminating indicates that this endpoint is terminating. A nil value indicates an unknown state. Consumers should interpret this unknown state to mean that the endpoint is not terminating. This field can be enabled with the EndpointSliceTerminatingCondition feature gate.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="endpointhints-v1beta1-discovery-k8s-io">EndpointHints v1beta1 discovery.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>EndpointHints</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#endpointhints-v1-discovery-k8s-io">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpoint-v1beta1-discovery-k8s-io">Endpoint [discovery/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>forZones</CODE><BR /><I><a href="#forzone-v1beta1-discovery-k8s-io">ForZone</a> array</I></TD><TD>forZones indicates the zone(s) this endpoint should be consumed by to enable topology aware routing. May contain a maximum of 8 entries.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="endpointport-v1-discovery-k8s-io">EndpointPort v1 discovery.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EndpointPort</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#endpointport-v1beta1-discovery-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice [discovery/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>appProtocol</CODE><BR /><I>string</I></TD><TD>The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and http://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>The name of this port. All ports in an EndpointSlice must have a unique name. If the EndpointSlice is dervied from a Kubernetes service, this corresponds to the Service.ports[].name. Name must either be an empty string or pass DNS_LABEL validation: * must be no more than 63 characters long. * must consist of lower case alphanumeric characters or &#39;-&#39;. * must start and end with an alphanumeric character. Default is empty string.</TD></TR>
+<TR><TD><CODE>port</CODE><BR /><I>integer</I></TD><TD>The port number of the endpoint. If this is not specified, ports are not restricted and must be interpreted in the context of the specific consumer.</TD></TR>
+<TR><TD><CODE>protocol</CODE><BR /><I>string</I></TD><TD>The IP protocol for this port. Must be UDP, TCP, or SCTP. Default is TCP.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="endpointport-v1beta1-discovery-k8s-io">EndpointPort v1beta1 discovery.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>EndpointPort</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#endpointport-v1-core">v1</a>
+<a href="#endpointport-v1-discovery-k8s-io">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice [discovery/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>appProtocol</CODE><BR /><I>string</I></TD><TD>The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and http://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>The name of this port. All ports in an EndpointSlice must have a unique name. If the EndpointSlice is dervied from a Kubernetes service, this corresponds to the Service.ports[].name. Name must either be an empty string or pass DNS_LABEL validation: * must be no more than 63 characters long. * must consist of lower case alphanumeric characters or &#39;-&#39;. * must start and end with an alphanumeric character. Default is empty string.</TD></TR>
+<TR><TD><CODE>port</CODE><BR /><I>integer</I></TD><TD>The port number of the endpoint. If this is not specified, ports are not restricted and must be interpreted in the context of the specific consumer.</TD></TR>
+<TR><TD><CODE>protocol</CODE><BR /><I>string</I></TD><TD>The IP protocol for this port. Must be UDP, TCP, or SCTP. Default is TCP.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="endpointslice-v1beta1-discovery-k8s-io">EndpointSlice v1beta1 discovery.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>EndpointSlice</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#endpointslice-v1-discovery-k8s-io">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpointslicelist-v1beta1-discovery-k8s-io">EndpointSliceList [discovery/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>addressType</CODE><BR /><I>string</I></TD><TD>addressType specifies the type of address carried by this EndpointSlice. All addresses in this slice must be the same type. This field is immutable after creation. The following address types are currently supported: * IPv4: Represents an IPv4 Address. * IPv6: Represents an IPv6 Address. * FQDN: Represents a Fully Qualified Domain Name.</TD></TR>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>endpoints</CODE><BR /><I><a href="#endpoint-v1beta1-discovery-k8s-io">Endpoint</a> array</I></TD><TD>endpoints is a list of unique endpoints in this slice. Each slice may include a maximum of 1000 endpoints.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata.</TD></TR>
+<TR><TD><CODE>ports</CODE><BR /><I><a href="#endpointport-v1beta1-discovery-k8s-io">EndpointPort</a> array</I></TD><TD>ports specifies the list of network ports exposed by each endpoint in this slice. Each port must have a unique name. When ports is empty, it indicates that there are no defined ports. When a port is defined with a nil port value, it indicates &#34;all ports&#34;. Each slice may include a maximum of 100 ports.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="endpointslicelist-v1beta1-discovery-k8s-io">EndpointSliceList v1beta1 discovery</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice</a> array</I></TD><TD>List of endpoint slices</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-endpointslice-v1beta1-discovery-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-endpointslice-v1beta1-discovery-k8s-io">Create</H2>
+<P>create an EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/discovery.k8s.io/v1beta1/namespaces/{namespace}/endpointslices</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-endpointslice-v1beta1-discovery-k8s-io">Patch</H2>
+<P>partially update the specified EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/discovery.k8s.io/v1beta1/namespaces/{namespace}/endpointslices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the EndpointSlice</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-endpointslice-v1beta1-discovery-k8s-io">Replace</H2>
+<P>replace the specified EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/discovery.k8s.io/v1beta1/namespaces/{namespace}/endpointslices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the EndpointSlice</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-endpointslice-v1beta1-discovery-k8s-io">Delete</H2>
+<P>delete an EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/discovery.k8s.io/v1beta1/namespaces/{namespace}/endpointslices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the EndpointSlice</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-endpointslice-v1beta1-discovery-k8s-io">Delete Collection</H2>
+<P>delete collection of EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/discovery.k8s.io/v1beta1/namespaces/{namespace}/endpointslices</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-endpointslice-v1beta1-discovery-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-endpointslice-v1beta1-discovery-k8s-io">Read</H2>
+<P>read the specified EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1beta1/namespaces/{namespace}/endpointslices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the EndpointSlice</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-endpointslice-v1beta1-discovery-k8s-io">List</H2>
+<P>list or watch objects of kind EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1beta1/namespaces/{namespace}/endpointslices</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslicelist-v1beta1-discovery-k8s-io">EndpointSliceList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-endpointslice-v1beta1-discovery-k8s-io">List All Namespaces</H2>
+<P>list or watch objects of kind EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1beta1/endpointslices</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslicelist-v1beta1-discovery-k8s-io">EndpointSliceList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-endpointslice-v1beta1-discovery-k8s-io">Watch</H2>
+<P>watch changes to an object of kind EndpointSlice. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1beta1/watch/namespaces/{namespace}/endpointslices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the EndpointSlice</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-endpointslice-v1beta1-discovery-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of EndpointSlice. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1beta1/watch/namespaces/{namespace}/endpointslices</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-endpointslice-v1beta1-discovery-k8s-io">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of EndpointSlice. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1beta1/watch/endpointslices</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="event-v1-core">Event v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Event</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#event-v1beta1-events-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#eventlist-v1-core">EventList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>action</CODE><BR /><I>string</I></TD><TD>What action was taken/failed regarding to the Regarding object.</TD></TR>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>count</CODE><BR /><I>integer</I></TD><TD>The number of times this event has occurred.</TD></TR>
+<TR><TD><CODE>eventTime</CODE><BR /><I><a href="#microtime-v1-meta">MicroTime</a></I></TD><TD>Time when this Event was first observed.</TD></TR>
+<TR><TD><CODE>firstTimestamp</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>The time at which the event was first recorded. (Time of server receipt is in TypeMeta.)</TD></TR>
+<TR><TD><CODE>involvedObject</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>The object that this event is about.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>lastTimestamp</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>The time at which the most recent occurrence of this event was recorded.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>A human-readable description of the status of this operation.</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>This should be a short, machine understandable string that gives the reason for the transition into the object&#39;s current status.</TD></TR>
+<TR><TD><CODE>related</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>Optional secondary object for more complex actions.</TD></TR>
+<TR><TD><CODE>reportingComponent</CODE><BR /><I>string</I></TD><TD>Name of the controller that emitted this Event, e.g. `kubernetes.io/kubelet`.</TD></TR>
+<TR><TD><CODE>reportingInstance</CODE><BR /><I>string</I></TD><TD>ID of the controller instance, e.g. `kubelet-xyzf`.</TD></TR>
+<TR><TD><CODE>series</CODE><BR /><I><a href="#eventseries-v1-core">EventSeries</a></I></TD><TD>Data about the Event series this event represents or nil if it&#39;s a singleton Event.</TD></TR>
+<TR><TD><CODE>source</CODE><BR /><I><a href="#eventsource-v1-core">EventSource</a></I></TD><TD>The component reporting this event. Should be a short machine understandable string.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of this event (Normal, Warning), new types could be added in the future</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="eventlist-v1-core">EventList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#event-v1-core">Event</a> array</I></TD><TD>List of events</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-event-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-event-v1-core">Create</H2>
+<P>create an Event</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#event-v1-core">Event</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1-core">Event</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#event-v1-core">Event</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#event-v1-core">Event</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-event-v1-core">Patch</H2>
+<P>partially update the specified Event</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1-core">Event</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#event-v1-core">Event</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-event-v1-core">Replace</H2>
+<P>replace the specified Event</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#event-v1-core">Event</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1-core">Event</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#event-v1-core">Event</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-event-v1-core">Delete</H2>
+<P>delete an Event</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-event-v1-core">Delete Collection</H2>
+<P>delete collection of Event</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-event-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-event-v1-core">Read</H2>
+<P>read the specified Event</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1-core">Event</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-event-v1-core">List</H2>
+<P>list or watch objects of kind Event</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#eventlist-v1-core">EventList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-event-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind Event</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/events</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#eventlist-v1-core">EventList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-event-v1-core">Watch</H2>
+<P>watch changes to an object of kind Event. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-event-v1-core">Watch List</H2>
+<P>watch individual changes to a list of Event. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-event-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Event. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/events</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="event-v1beta1-events-k8s-io">Event v1beta1 events.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>events.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>Event</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#event-v1-events-k8s-io">v1</a>
+<a href="#event-v1-core">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#eventlist-v1beta1-events-k8s-io">EventList [events/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>action</CODE><BR /><I>string</I></TD><TD>action is what action was taken/failed regarding to the regarding object. It is machine-readable. This field can have at most 128 characters.</TD></TR>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>deprecatedCount</CODE><BR /><I>integer</I></TD><TD>deprecatedCount is the deprecated field assuring backward compatibility with core.v1 Event type.</TD></TR>
+<TR><TD><CODE>deprecatedFirstTimestamp</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>deprecatedFirstTimestamp is the deprecated field assuring backward compatibility with core.v1 Event type.</TD></TR>
+<TR><TD><CODE>deprecatedLastTimestamp</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>deprecatedLastTimestamp is the deprecated field assuring backward compatibility with core.v1 Event type.</TD></TR>
+<TR><TD><CODE>deprecatedSource</CODE><BR /><I><a href="#eventsource-v1-core">EventSource</a></I></TD><TD>deprecatedSource is the deprecated field assuring backward compatibility with core.v1 Event type.</TD></TR>
+<TR><TD><CODE>eventTime</CODE><BR /><I><a href="#microtime-v1-meta">MicroTime</a></I></TD><TD>eventTime is the time when this Event was first observed. It is required.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>note</CODE><BR /><I>string</I></TD><TD>note is a human-readable description of the status of this operation. Maximal length of the note is 1kB, but libraries should be prepared to handle values up to 64kB.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>reason is why the action was taken. It is human-readable. This field can have at most 128 characters.</TD></TR>
+<TR><TD><CODE>regarding</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>regarding contains the object this Event is about. In most cases it&#39;s an Object reporting controller implements, e.g. ReplicaSetController implements ReplicaSets and this event is emitted because it acts on some changes in a ReplicaSet object.</TD></TR>
+<TR><TD><CODE>related</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>related is the optional secondary object for more complex actions. E.g. when regarding object triggers a creation or deletion of related object.</TD></TR>
+<TR><TD><CODE>reportingController</CODE><BR /><I>string</I></TD><TD>reportingController is the name of the controller that emitted this Event, e.g. `kubernetes.io/kubelet`. This field cannot be empty for new Events.</TD></TR>
+<TR><TD><CODE>reportingInstance</CODE><BR /><I>string</I></TD><TD>reportingInstance is the ID of the controller instance, e.g. `kubelet-xyzf`. This field cannot be empty for new Events and it can have at most 128 characters.</TD></TR>
+<TR><TD><CODE>series</CODE><BR /><I><a href="#eventseries-v1beta1-events-k8s-io">EventSeries</a></I></TD><TD>series is data about the Event series this event represents or nil if it&#39;s a singleton Event.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type is the type of this event (Normal, Warning), new types could be added in the future. It is machine-readable.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="eventlist-v1beta1-events-k8s-io">EventList v1beta1 events</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#event-v1beta1-events-k8s-io">Event</a> array</I></TD><TD>items is a list of schema objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-event-v1beta1-events-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-event-v1beta1-events-k8s-io">Create</H2>
+<P>create an Event</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/events.k8s.io/v1beta1/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#event-v1beta1-events-k8s-io">Event</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1beta1-events-k8s-io">Event</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#event-v1beta1-events-k8s-io">Event</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#event-v1beta1-events-k8s-io">Event</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-event-v1beta1-events-k8s-io">Patch</H2>
+<P>partially update the specified Event</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/events.k8s.io/v1beta1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1beta1-events-k8s-io">Event</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#event-v1beta1-events-k8s-io">Event</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-event-v1beta1-events-k8s-io">Replace</H2>
+<P>replace the specified Event</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/events.k8s.io/v1beta1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#event-v1beta1-events-k8s-io">Event</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1beta1-events-k8s-io">Event</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#event-v1beta1-events-k8s-io">Event</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-event-v1beta1-events-k8s-io">Delete</H2>
+<P>delete an Event</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/events.k8s.io/v1beta1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-event-v1beta1-events-k8s-io">Delete Collection</H2>
+<P>delete collection of Event</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/events.k8s.io/v1beta1/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-event-v1beta1-events-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-event-v1beta1-events-k8s-io">Read</H2>
+<P>read the specified Event</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1beta1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1beta1-events-k8s-io">Event</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-event-v1beta1-events-k8s-io">List</H2>
+<P>list or watch objects of kind Event</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1beta1/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#eventlist-v1beta1-events-k8s-io">EventList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-event-v1beta1-events-k8s-io">List All Namespaces</H2>
+<P>list or watch objects of kind Event</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1beta1/events</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#eventlist-v1beta1-events-k8s-io">EventList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-event-v1beta1-events-k8s-io">Watch</H2>
+<P>watch changes to an object of kind Event. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1beta1/watch/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-event-v1beta1-events-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of Event. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1beta1/watch/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-event-v1beta1-events-k8s-io">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Event. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1beta1/watch/events</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="eventseries-v1-core">EventSeries v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EventSeries</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#eventseries-v1beta1-events-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#event-v1-core">Event [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>count</CODE><BR /><I>integer</I></TD><TD>Number of occurrences in this series up to the last heartbeat time</TD></TR>
+<TR><TD><CODE>lastObservedTime</CODE><BR /><I><a href="#microtime-v1-meta">MicroTime</a></I></TD><TD>Time of the last occurrence observed</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="eventseries-v1beta1-events-k8s-io">EventSeries v1beta1 events.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>events.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>EventSeries</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#eventseries-v1-events-k8s-io">v1</a>
+<a href="#eventseries-v1-core">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#event-v1beta1-events-k8s-io">Event [events/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>count</CODE><BR /><I>integer</I></TD><TD>count is the number of occurrences in this series up to the last heartbeat time.</TD></TR>
+<TR><TD><CODE>lastObservedTime</CODE><BR /><I><a href="#microtime-v1-meta">MicroTime</a></I></TD><TD>lastObservedTime is the time when last Event from the series was seen before last heartbeat.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="externalmetricsource-v2beta2-autoscaling">ExternalMetricSource v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>ExternalMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#externalmetricsource-v2-autoscaling">v2</a>
+<a href="#externalmetricsource-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2beta2-autoscaling">MetricSpec [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2beta2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#metrictarget-v2beta2-autoscaling">MetricTarget</a></I></TD><TD>target specifies the target value for the given metric</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="externalmetricsource-v2beta1-autoscaling">ExternalMetricSource v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>ExternalMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#externalmetricsource-v2-autoscaling">v2</a>
+<a href="#externalmetricsource-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2beta1-autoscaling">MetricSpec [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>metricName</CODE><BR /><I>string</I></TD><TD>metricName is the name of the metric in question.</TD></TR>
+<TR><TD><CODE>metricSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>metricSelector is used to identify a specific time series within a given metric.</TD></TR>
+<TR><TD><CODE>targetAverageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>targetAverageValue is the target per-pod value of global metric (as a quantity). Mutually exclusive with TargetValue.</TD></TR>
+<TR><TD><CODE>targetValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>targetValue is the target value of the metric (as a quantity). Mutually exclusive with TargetAverageValue.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="externalmetricstatus-v2beta2-autoscaling">ExternalMetricStatus v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>ExternalMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#externalmetricstatus-v2-autoscaling">v2</a>
+<a href="#externalmetricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2beta2-autoscaling">MetricStatus [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>current</CODE><BR /><I><a href="#metricvaluestatus-v2beta2-autoscaling">MetricValueStatus</a></I></TD><TD>current contains the current value for the given metric</TD></TR>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2beta2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="externalmetricstatus-v2beta1-autoscaling">ExternalMetricStatus v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>ExternalMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#externalmetricstatus-v2-autoscaling">v2</a>
+<a href="#externalmetricstatus-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2beta1-autoscaling">MetricStatus [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>currentAverageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>currentAverageValue is the current value of metric averaged over autoscaled pods.</TD></TR>
+<TR><TD><CODE>currentValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>currentValue is the current value of the metric (as a quantity)</TD></TR>
+<TR><TD><CODE>metricName</CODE><BR /><I>string</I></TD><TD>metricName is the name of a metric used for autoscaling in metric system.</TD></TR>
+<TR><TD><CODE>metricSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>metricSelector is used to identify a specific time series within a given metric.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="flowdistinguishermethod-v1beta1-flowcontrol-apiserver-k8s-io">FlowDistinguisherMethod v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>FlowDistinguisherMethod</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#flowdistinguishermethod-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschemaspec-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaSpec [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>`type` is the type of flow distinguisher method The supported types are &#34;ByUser&#34; and &#34;ByNamespace&#34;. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>FlowSchema</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschemalist-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaList [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>`metadata` is the standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#flowschemaspec-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaSpec</a></I></TD><TD>`spec` is the specification of the desired behavior of a FlowSchema. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#flowschemastatus-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaStatus</a></I></TD><TD>`status` is the current status of a FlowSchema. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="flowschemaspec-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaSpec v1beta1 flowcontrol</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>distinguisherMethod</CODE><BR /><I><a href="#flowdistinguishermethod-v1beta1-flowcontrol-apiserver-k8s-io">FlowDistinguisherMethod</a></I></TD><TD>`distinguisherMethod` defines how to compute the flow distinguisher for requests that match this schema. `nil` specifies that the distinguisher is disabled and thus will always be the empty string.</TD></TR>
+<TR><TD><CODE>matchingPrecedence</CODE><BR /><I>integer</I></TD><TD>`matchingPrecedence` is used to choose among the FlowSchemas that match a given request. The chosen FlowSchema is among those with the numerically lowest (which we take to be logically highest) MatchingPrecedence.  Each MatchingPrecedence value must be ranged in [1,10000]. Note that if the precedence is not specified, it will be set to 1000 as default.</TD></TR>
+<TR><TD><CODE>priorityLevelConfiguration</CODE><BR /><I><a href="#prioritylevelconfigurationreference-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationReference</a></I></TD><TD>`priorityLevelConfiguration` should reference a PriorityLevelConfiguration in the cluster. If the reference cannot be resolved, the FlowSchema will be ignored and marked as invalid in its status. Required.</TD></TR>
+<TR><TD><CODE>rules</CODE><BR /><I><a href="#policyruleswithsubjects-v1beta1-flowcontrol-apiserver-k8s-io">PolicyRulesWithSubjects</a> array</I></TD><TD>`rules` describes which requests will match this flow schema. This FlowSchema matches a request if and only if at least one member of rules matches the request. if it is an empty slice, there will be no requests matching the FlowSchema.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="flowschemastatus-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaStatus v1beta1 flowcontrol</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#flowschemacondition-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaCondition</a> array</I></TD><TD>`conditions` is a list of the current states of FlowSchema.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="flowschemalist-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaList v1beta1 flowcontrol</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a> array</I></TD><TD>`items` is a list of FlowSchemas.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>`metadata` is the standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Create</H2>
+<P>create a FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Patch</H2>
+<P>partially update the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Replace</H2>
+<P>replace the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Delete</H2>
+<P>delete a FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Delete Collection</H2>
+<P>delete collection of FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Read</H2>
+<P>read the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">List</H2>
+<P>list or watch objects of kind FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschemalist-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Watch</H2>
+<P>watch changes to an object of kind FlowSchema. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/watch/flowschemas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of FlowSchema. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/watch/flowschemas</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Patch Status</H2>
+<P>partially update status of the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Read Status</H2>
+<P>read status of the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Replace Status</H2>
+<P>replace status of the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="flowschemacondition-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaCondition v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>FlowSchemaCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#flowschemacondition-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschemastatus-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaStatus [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>`lastTransitionTime` is the last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>`message` is a human-readable message indicating details about last transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>`reason` is a unique, one-word, CamelCase reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>`status` is the status of the condition. Can be True, False, Unknown. Required.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>`type` is the type of the condition. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="forzone-v1beta1-discovery-k8s-io">ForZone v1beta1 discovery.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>ForZone</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#forzone-v1-discovery-k8s-io">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpointhints-v1beta1-discovery-k8s-io">EndpointHints [discovery/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name represents the name of the zone.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="groupsubject-v1beta1-flowcontrol-apiserver-k8s-io">GroupSubject v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>GroupSubject</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#groupsubject-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#subject-v1beta1-flowcontrol-apiserver-k8s-io">Subject [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the user group that matches, or &#34;*&#34; to match all user groups. See https://github.com/kubernetes/apiserver/blob/master/pkg/authentication/user/user.go for some well-known group names. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="hpascalingpolicy-v2beta2-autoscaling">HPAScalingPolicy v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>HPAScalingPolicy</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#hpascalingpolicy-v2-autoscaling">v2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#hpascalingrules-v2beta2-autoscaling">HPAScalingRules [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>periodSeconds</CODE><BR /><I>integer</I></TD><TD>PeriodSeconds specifies the window of time for which the policy should hold true. PeriodSeconds must be greater than zero and less than or equal to 1800 (30 min).</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type is used to specify the scaling policy.</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I>integer</I></TD><TD>Value contains the amount of change which is permitted by the policy. It must be greater than zero</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="hpascalingrules-v2beta2-autoscaling">HPAScalingRules v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>HPAScalingRules</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#hpascalingrules-v2-autoscaling">v2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerbehavior-v2beta2-autoscaling">HorizontalPodAutoscalerBehavior [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policies</CODE><BR /><I><a href="#hpascalingpolicy-v2beta2-autoscaling">HPAScalingPolicy</a> array</I></TD><TD>policies is a list of potential scaling polices which can be used during scaling. At least one policy must be specified, otherwise the HPAScalingRules will be discarded as invalid</TD></TR>
+<TR><TD><CODE>selectPolicy</CODE><BR /><I>string</I></TD><TD>selectPolicy is used to specify which policy should be used. If not set, the default value MaxPolicySelect is used.</TD></TR>
+<TR><TD><CODE>stabilizationWindowSeconds</CODE><BR /><I>integer</I></TD><TD>StabilizationWindowSeconds is the number of seconds for which past recommendations should be considered while scaling up or scaling down. StabilizationWindowSeconds must be greater than or equal to zero and less than or equal to 3600 (one hour). If not set, use the default values: - For scale up: 0 (i.e. no stabilization is done). - For scale down: 300 (i.e. the stabilization window is 300 seconds long).</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler v1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>HorizontalPodAutoscaler</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#horizontalpodautoscaler-v2-autoscaling">v2</a>
+<a href="#horizontalpodautoscaler-v2beta2-autoscaling">v2beta2</a>
+<a href="#horizontalpodautoscaler-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerlist-v1-autoscaling">HorizontalPodAutoscalerList [autoscaling/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#horizontalpodautoscalerspec-v1-autoscaling">HorizontalPodAutoscalerSpec</a></I></TD><TD>behaviour of autoscaler. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#horizontalpodautoscalerstatus-v1-autoscaling">HorizontalPodAutoscalerStatus</a></I></TD><TD>current information about the autoscaler.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerspec-v1-autoscaling">HorizontalPodAutoscalerSpec v1 autoscaling</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler [autoscaling/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>maxReplicas</CODE><BR /><I>integer</I></TD><TD>upper limit for the number of pods that can be set by the autoscaler; cannot be smaller than MinReplicas.</TD></TR>
+<TR><TD><CODE>minReplicas</CODE><BR /><I>integer</I></TD><TD>minReplicas is the lower limit for the number of replicas to which the autoscaler can scale down.  It defaults to 1 pod.  minReplicas is allowed to be 0 if the alpha feature gate HPAScaleToZero is enabled and at least one Object or External metric is configured.  Scaling is active as long as at least one metric value is available.</TD></TR>
+<TR><TD><CODE>scaleTargetRef</CODE><BR /><I><a href="#crossversionobjectreference-v1-autoscaling">CrossVersionObjectReference</a></I></TD><TD>reference to scaled resource; horizontal pod autoscaler will learn the current resource consumption and will set the desired number of pods by using its Scale subresource.</TD></TR>
+<TR><TD><CODE>targetCPUUtilizationPercentage</CODE><BR /><I>integer</I></TD><TD>target average CPU utilization (represented as a percentage of requested CPU) over all the pods; if not specified the default autoscaling policy will be used.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerstatus-v1-autoscaling">HorizontalPodAutoscalerStatus v1 autoscaling</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler [autoscaling/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>currentCPUUtilizationPercentage</CODE><BR /><I>integer</I></TD><TD>current average CPU utilization over all pods, represented as a percentage of requested CPU, e.g. 70 means that an average pod is using now 70% of its requested CPU.</TD></TR>
+<TR><TD><CODE>currentReplicas</CODE><BR /><I>integer</I></TD><TD>current number of replicas of pods managed by this autoscaler.</TD></TR>
+<TR><TD><CODE>desiredReplicas</CODE><BR /><I>integer</I></TD><TD>desired number of replicas of pods managed by this autoscaler.</TD></TR>
+<TR><TD><CODE>lastScaleTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>last time the HorizontalPodAutoscaler scaled the number of pods; used by the autoscaler to control how often the number of pods is changed.</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>most recent generation observed by this autoscaler.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerlist-v1-autoscaling">HorizontalPodAutoscalerList v1 autoscaling</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a> array</I></TD><TD>list of horizontal pod autoscaler objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-horizontalpodautoscaler-v1-autoscaling-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-horizontalpodautoscaler-v1-autoscaling">Create</H2>
+<P>create a HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-horizontalpodautoscaler-v1-autoscaling">Patch</H2>
+<P>partially update the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-horizontalpodautoscaler-v1-autoscaling">Replace</H2>
+<P>replace the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-horizontalpodautoscaler-v1-autoscaling">Delete</H2>
+<P>delete a HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-horizontalpodautoscaler-v1-autoscaling">Delete Collection</H2>
+<P>delete collection of HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-horizontalpodautoscaler-v1-autoscaling-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-horizontalpodautoscaler-v1-autoscaling">Read</H2>
+<P>read the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-horizontalpodautoscaler-v1-autoscaling">List</H2>
+<P>list or watch objects of kind HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscalerlist-v1-autoscaling">HorizontalPodAutoscalerList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-horizontalpodautoscaler-v1-autoscaling">List All Namespaces</H2>
+<P>list or watch objects of kind HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v1/horizontalpodautoscalers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscalerlist-v1-autoscaling">HorizontalPodAutoscalerList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-horizontalpodautoscaler-v1-autoscaling">Watch</H2>
+<P>watch changes to an object of kind HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v1/watch/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-horizontalpodautoscaler-v1-autoscaling">Watch List</H2>
+<P>watch individual changes to a list of HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v1/watch/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-horizontalpodautoscaler-v1-autoscaling">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v1/watch/horizontalpodautoscalers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-horizontalpodautoscaler-v1-autoscaling-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-horizontalpodautoscaler-v1-autoscaling">Patch Status</H2>
+<P>partially update status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-horizontalpodautoscaler-v1-autoscaling">Read Status</H2>
+<P>read status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-horizontalpodautoscaler-v1-autoscaling">Replace Status</H2>
+<P>replace status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>HorizontalPodAutoscaler</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#horizontalpodautoscaler-v2-autoscaling">v2</a>
+<a href="#horizontalpodautoscaler-v1-autoscaling">v1</a>
+<a href="#horizontalpodautoscaler-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerlist-v2beta2-autoscaling">HorizontalPodAutoscalerList [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>metadata is the standard object metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#horizontalpodautoscalerspec-v2beta2-autoscaling">HorizontalPodAutoscalerSpec</a></I></TD><TD>spec is the specification for the behaviour of the autoscaler. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#horizontalpodautoscalerstatus-v2beta2-autoscaling">HorizontalPodAutoscalerStatus</a></I></TD><TD>status is the current information about the autoscaler.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerspec-v2beta2-autoscaling">HorizontalPodAutoscalerSpec v2beta2 autoscaling</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>behavior</CODE><BR /><I><a href="#horizontalpodautoscalerbehavior-v2beta2-autoscaling">HorizontalPodAutoscalerBehavior</a></I></TD><TD>behavior configures the scaling behavior of the target in both Up and Down directions (scaleUp and scaleDown fields respectively). If not set, the default HPAScalingRules for scale up and scale down are used.</TD></TR>
+<TR><TD><CODE>maxReplicas</CODE><BR /><I>integer</I></TD><TD>maxReplicas is the upper limit for the number of replicas to which the autoscaler can scale up. It cannot be less that minReplicas.</TD></TR>
+<TR><TD><CODE>metrics</CODE><BR /><I><a href="#metricspec-v2beta2-autoscaling">MetricSpec</a> array</I></TD><TD>metrics contains the specifications for which to use to calculate the desired replica count (the maximum replica count across all metrics will be used).  The desired replica count is calculated multiplying the ratio between the target value and the current value by the current number of pods.  Ergo, metrics used must decrease as the pod count is increased, and vice-versa.  See the individual metric source types for more information about how each type of metric must respond. If not set, the default metric will be set to 80% average CPU utilization.</TD></TR>
+<TR><TD><CODE>minReplicas</CODE><BR /><I>integer</I></TD><TD>minReplicas is the lower limit for the number of replicas to which the autoscaler can scale down.  It defaults to 1 pod.  minReplicas is allowed to be 0 if the alpha feature gate HPAScaleToZero is enabled and at least one Object or External metric is configured.  Scaling is active as long as at least one metric value is available.</TD></TR>
+<TR><TD><CODE>scaleTargetRef</CODE><BR /><I><a href="#crossversionobjectreference-v2beta2-autoscaling">CrossVersionObjectReference</a></I></TD><TD>scaleTargetRef points to the target resource to scale, and is used to the pods for which metrics should be collected, as well as to actually change the replica count.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerstatus-v2beta2-autoscaling">HorizontalPodAutoscalerStatus v2beta2 autoscaling</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#horizontalpodautoscalercondition-v2beta2-autoscaling">HorizontalPodAutoscalerCondition</a> array</I></TD><TD>conditions is the set of conditions required for this autoscaler to scale its target, and indicates whether or not those conditions are met.</TD></TR>
+<TR><TD><CODE>currentMetrics</CODE><BR /><I><a href="#metricstatus-v2beta2-autoscaling">MetricStatus</a> array</I></TD><TD>currentMetrics is the last read state of the metrics used by this autoscaler.</TD></TR>
+<TR><TD><CODE>currentReplicas</CODE><BR /><I>integer</I></TD><TD>currentReplicas is current number of replicas of pods managed by this autoscaler, as last seen by the autoscaler.</TD></TR>
+<TR><TD><CODE>desiredReplicas</CODE><BR /><I>integer</I></TD><TD>desiredReplicas is the desired number of replicas of pods managed by this autoscaler, as last calculated by the autoscaler.</TD></TR>
+<TR><TD><CODE>lastScaleTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>lastScaleTime is the last time the HorizontalPodAutoscaler scaled the number of pods, used by the autoscaler to control how often the number of pods is changed.</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>observedGeneration is the most recent generation observed by this autoscaler.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerlist-v2beta2-autoscaling">HorizontalPodAutoscalerList v2beta2 autoscaling</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a> array</I></TD><TD>items is the list of horizontal pod autoscaler objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>metadata is the standard list metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-horizontalpodautoscaler-v2beta2-autoscaling">Create</H2>
+<P>create a HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-horizontalpodautoscaler-v2beta2-autoscaling">Patch</H2>
+<P>partially update the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-horizontalpodautoscaler-v2beta2-autoscaling">Replace</H2>
+<P>replace the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-horizontalpodautoscaler-v2beta2-autoscaling">Delete</H2>
+<P>delete a HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-horizontalpodautoscaler-v2beta2-autoscaling">Delete Collection</H2>
+<P>delete collection of HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-horizontalpodautoscaler-v2beta2-autoscaling">Read</H2>
+<P>read the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-horizontalpodautoscaler-v2beta2-autoscaling">List</H2>
+<P>list or watch objects of kind HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscalerlist-v2beta2-autoscaling">HorizontalPodAutoscalerList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-horizontalpodautoscaler-v2beta2-autoscaling">List All Namespaces</H2>
+<P>list or watch objects of kind HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta2/horizontalpodautoscalers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscalerlist-v2beta2-autoscaling">HorizontalPodAutoscalerList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-horizontalpodautoscaler-v2beta2-autoscaling">Watch</H2>
+<P>watch changes to an object of kind HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta2/watch/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-horizontalpodautoscaler-v2beta2-autoscaling">Watch List</H2>
+<P>watch individual changes to a list of HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta2/watch/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-horizontalpodautoscaler-v2beta2-autoscaling">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta2/watch/horizontalpodautoscalers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-horizontalpodautoscaler-v2beta2-autoscaling">Patch Status</H2>
+<P>partially update status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-horizontalpodautoscaler-v2beta2-autoscaling">Read Status</H2>
+<P>read status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-horizontalpodautoscaler-v2beta2-autoscaling">Replace Status</H2>
+<P>replace status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>HorizontalPodAutoscaler</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#horizontalpodautoscaler-v2-autoscaling">v2</a>
+<a href="#horizontalpodautoscaler-v1-autoscaling">v1</a>
+<a href="#horizontalpodautoscaler-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerlist-v2beta1-autoscaling">HorizontalPodAutoscalerList [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>metadata is the standard object metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#horizontalpodautoscalerspec-v2beta1-autoscaling">HorizontalPodAutoscalerSpec</a></I></TD><TD>spec is the specification for the behaviour of the autoscaler. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#horizontalpodautoscalerstatus-v2beta1-autoscaling">HorizontalPodAutoscalerStatus</a></I></TD><TD>status is the current information about the autoscaler.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerspec-v2beta1-autoscaling">HorizontalPodAutoscalerSpec v2beta1 autoscaling</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>maxReplicas</CODE><BR /><I>integer</I></TD><TD>maxReplicas is the upper limit for the number of replicas to which the autoscaler can scale up. It cannot be less that minReplicas.</TD></TR>
+<TR><TD><CODE>metrics</CODE><BR /><I><a href="#metricspec-v2beta1-autoscaling">MetricSpec</a> array</I></TD><TD>metrics contains the specifications for which to use to calculate the desired replica count (the maximum replica count across all metrics will be used).  The desired replica count is calculated multiplying the ratio between the target value and the current value by the current number of pods.  Ergo, metrics used must decrease as the pod count is increased, and vice-versa.  See the individual metric source types for more information about how each type of metric must respond.</TD></TR>
+<TR><TD><CODE>minReplicas</CODE><BR /><I>integer</I></TD><TD>minReplicas is the lower limit for the number of replicas to which the autoscaler can scale down.  It defaults to 1 pod.  minReplicas is allowed to be 0 if the alpha feature gate HPAScaleToZero is enabled and at least one Object or External metric is configured.  Scaling is active as long as at least one metric value is available.</TD></TR>
+<TR><TD><CODE>scaleTargetRef</CODE><BR /><I><a href="#crossversionobjectreference-v2beta1-autoscaling">CrossVersionObjectReference</a></I></TD><TD>scaleTargetRef points to the target resource to scale, and is used to the pods for which metrics should be collected, as well as to actually change the replica count.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerstatus-v2beta1-autoscaling">HorizontalPodAutoscalerStatus v2beta1 autoscaling</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#horizontalpodautoscalercondition-v2beta1-autoscaling">HorizontalPodAutoscalerCondition</a> array</I></TD><TD>conditions is the set of conditions required for this autoscaler to scale its target, and indicates whether or not those conditions are met.</TD></TR>
+<TR><TD><CODE>currentMetrics</CODE><BR /><I><a href="#metricstatus-v2beta1-autoscaling">MetricStatus</a> array</I></TD><TD>currentMetrics is the last read state of the metrics used by this autoscaler.</TD></TR>
+<TR><TD><CODE>currentReplicas</CODE><BR /><I>integer</I></TD><TD>currentReplicas is current number of replicas of pods managed by this autoscaler, as last seen by the autoscaler.</TD></TR>
+<TR><TD><CODE>desiredReplicas</CODE><BR /><I>integer</I></TD><TD>desiredReplicas is the desired number of replicas of pods managed by this autoscaler, as last calculated by the autoscaler.</TD></TR>
+<TR><TD><CODE>lastScaleTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>lastScaleTime is the last time the HorizontalPodAutoscaler scaled the number of pods, used by the autoscaler to control how often the number of pods is changed.</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>observedGeneration is the most recent generation observed by this autoscaler.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerlist-v2beta1-autoscaling">HorizontalPodAutoscalerList v2beta1 autoscaling</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a> array</I></TD><TD>items is the list of horizontal pod autoscaler objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>metadata is the standard list metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-horizontalpodautoscaler-v2beta1-autoscaling">Create</H2>
+<P>create a HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/autoscaling/v2beta1/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-horizontalpodautoscaler-v2beta1-autoscaling">Patch</H2>
+<P>partially update the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/autoscaling/v2beta1/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-horizontalpodautoscaler-v2beta1-autoscaling">Replace</H2>
+<P>replace the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/autoscaling/v2beta1/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-horizontalpodautoscaler-v2beta1-autoscaling">Delete</H2>
+<P>delete a HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/autoscaling/v2beta1/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-horizontalpodautoscaler-v2beta1-autoscaling">Delete Collection</H2>
+<P>delete collection of HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/autoscaling/v2beta1/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-horizontalpodautoscaler-v2beta1-autoscaling">Read</H2>
+<P>read the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta1/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-horizontalpodautoscaler-v2beta1-autoscaling">List</H2>
+<P>list or watch objects of kind HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta1/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscalerlist-v2beta1-autoscaling">HorizontalPodAutoscalerList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-horizontalpodautoscaler-v2beta1-autoscaling">List All Namespaces</H2>
+<P>list or watch objects of kind HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta1/horizontalpodautoscalers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscalerlist-v2beta1-autoscaling">HorizontalPodAutoscalerList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-horizontalpodautoscaler-v2beta1-autoscaling">Watch</H2>
+<P>watch changes to an object of kind HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta1/watch/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-horizontalpodautoscaler-v2beta1-autoscaling">Watch List</H2>
+<P>watch individual changes to a list of HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta1/watch/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-horizontalpodautoscaler-v2beta1-autoscaling">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta1/watch/horizontalpodautoscalers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-horizontalpodautoscaler-v2beta1-autoscaling">Patch Status</H2>
+<P>partially update status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/autoscaling/v2beta1/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-horizontalpodautoscaler-v2beta1-autoscaling">Read Status</H2>
+<P>read status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta1/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-horizontalpodautoscaler-v2beta1-autoscaling">Replace Status</H2>
+<P>replace status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/autoscaling/v2beta1/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="horizontalpodautoscalerbehavior-v2beta2-autoscaling">HorizontalPodAutoscalerBehavior v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>HorizontalPodAutoscalerBehavior</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#horizontalpodautoscalerbehavior-v2-autoscaling">v2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerspec-v2beta2-autoscaling">HorizontalPodAutoscalerSpec [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>scaleDown</CODE><BR /><I><a href="#hpascalingrules-v2beta2-autoscaling">HPAScalingRules</a></I></TD><TD>scaleDown is scaling policy for scaling Down. If not set, the default value is to allow to scale down to minReplicas pods, with a 300 second stabilization window (i.e., the highest recommendation for the last 300sec is used).</TD></TR>
+<TR><TD><CODE>scaleUp</CODE><BR /><I><a href="#hpascalingrules-v2beta2-autoscaling">HPAScalingRules</a></I></TD><TD>scaleUp is scaling policy for scaling Up. If not set, the default value is the higher of:   * increase no more than 4 pods per 60 seconds   * double the number of pods per 60 seconds No stabilization is used.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="horizontalpodautoscalercondition-v2beta2-autoscaling">HorizontalPodAutoscalerCondition v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>HorizontalPodAutoscalerCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#horizontalpodautoscalercondition-v2-autoscaling">v2</a>
+<a href="#horizontalpodautoscalercondition-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerstatus-v2beta2-autoscaling">HorizontalPodAutoscalerStatus [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>lastTransitionTime is the last time the condition transitioned from one status to another</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>message is a human-readable explanation containing details about the transition</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>reason is the reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>status is the status of the condition (True, False, Unknown)</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type describes the current condition</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="horizontalpodautoscalercondition-v2beta1-autoscaling">HorizontalPodAutoscalerCondition v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>HorizontalPodAutoscalerCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#horizontalpodautoscalercondition-v2-autoscaling">v2</a>
+<a href="#horizontalpodautoscalercondition-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerstatus-v2beta1-autoscaling">HorizontalPodAutoscalerStatus [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>lastTransitionTime is the last time the condition transitioned from one status to another</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>message is a human-readable explanation containing details about the transition</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>reason is the reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>status is the status of the condition (True, False, Unknown)</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type describes the current condition</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="jobtemplatespec-v1beta1-batch">JobTemplateSpec v1beta1 batch</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>batch</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>JobTemplateSpec</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#jobtemplatespec-v1-batch">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#cronjobspec-v1beta1-batch">CronJobSpec [batch/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata of the jobs created from this template. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#jobspec-v1-batch">JobSpec</a></I></TD><TD>Specification of the desired behavior of the job. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="limitresponse-v1beta1-flowcontrol-apiserver-k8s-io">LimitResponse v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>LimitResponse</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#limitresponse-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#limitedprioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">LimitedPriorityLevelConfiguration [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>queuing</CODE><BR /><I><a href="#queuingconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">QueuingConfiguration</a></I></TD><TD>`queuing` holds the configuration parameters for queuing. This field may be non-empty only if `type` is `&#34;Queue&#34;`.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>`type` is &#34;Queue&#34; or &#34;Reject&#34;. &#34;Queue&#34; means that requests that can not be executed upon arrival are held in a queue until they can be executed or a queuing limit is reached. &#34;Reject&#34; means that requests that can not be executed upon arrival are rejected. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="limitedprioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">LimitedPriorityLevelConfiguration v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>LimitedPriorityLevelConfiguration</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#limitedprioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#prioritylevelconfigurationspec-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationSpec [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>assuredConcurrencyShares</CODE><BR /><I>integer</I></TD><TD>`assuredConcurrencyShares` (ACS) configures the execution limit, which is a limit on the number of requests of this priority level that may be exeucting at a given time.  ACS must be a positive number. The server&#39;s concurrency limit (SCL) is divided among the concurrency-controlled priority levels in proportion to their assured concurrency shares. This produces the assured concurrency value (ACV) --- the number of requests that may be executing at a time --- for each such priority level:              ACV(l) = ceil( SCL * ACS(l) / ( sum[priority levels k] ACS(k) ) )  bigger numbers of ACS mean more reserved concurrent requests (at the expense of every other PL). This field has a default value of 30.</TD></TR>
+<TR><TD><CODE>limitResponse</CODE><BR /><I><a href="#limitresponse-v1beta1-flowcontrol-apiserver-k8s-io">LimitResponse</a></I></TD><TD>`limitResponse` indicates what to do with requests that can not be executed right now</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="metricidentifier-v2beta2-autoscaling">MetricIdentifier v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>MetricIdentifier</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metricidentifier-v2-autoscaling">v2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#externalmetricsource-v2beta2-autoscaling">ExternalMetricSource [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#externalmetricstatus-v2beta2-autoscaling">ExternalMetricStatus [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#objectmetricsource-v2beta2-autoscaling">ObjectMetricSource [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#objectmetricstatus-v2beta2-autoscaling">ObjectMetricStatus [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#podsmetricsource-v2beta2-autoscaling">PodsMetricSource [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#podsmetricstatus-v2beta2-autoscaling">PodsMetricStatus [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the given metric</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="metricspec-v2beta2-autoscaling">MetricSpec v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>MetricSpec</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metricspec-v2-autoscaling">v2</a>
+<a href="#metricspec-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerspec-v2beta2-autoscaling">HorizontalPodAutoscalerSpec [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>containerResource</CODE><BR /><I><a href="#containerresourcemetricsource-v2beta2-autoscaling">ContainerResourceMetricSource</a></I></TD><TD>container resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing a single container in each pod of the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source. This is an alpha feature and can be enabled by the HPAContainerMetrics feature flag.</TD></TR>
+<TR><TD><CODE>external</CODE><BR /><I><a href="#externalmetricsource-v2beta2-autoscaling">ExternalMetricSource</a></I></TD><TD>external refers to a global metric that is not associated with any Kubernetes object. It allows autoscaling based on information coming from components running outside of cluster (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).</TD></TR>
+<TR><TD><CODE>object</CODE><BR /><I><a href="#objectmetricsource-v2beta2-autoscaling">ObjectMetricSource</a></I></TD><TD>object refers to a metric describing a single kubernetes object (for example, hits-per-second on an Ingress object).</TD></TR>
+<TR><TD><CODE>pods</CODE><BR /><I><a href="#podsmetricsource-v2beta2-autoscaling">PodsMetricSource</a></I></TD><TD>pods refers to a metric describing each pod in the current scale target (for example, transactions-processed-per-second).  The values will be averaged together before being compared to the target value.</TD></TR>
+<TR><TD><CODE>resource</CODE><BR /><I><a href="#resourcemetricsource-v2beta2-autoscaling">ResourceMetricSource</a></I></TD><TD>resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type is the type of metric source.  It should be one of &#34;ContainerResource&#34;, &#34;External&#34;, &#34;Object&#34;, &#34;Pods&#34; or &#34;Resource&#34;, each mapping to a matching field in the object. Note: &#34;ContainerResource&#34; type is available on when the feature-gate HPAContainerMetrics is enabled</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="metricspec-v2beta1-autoscaling">MetricSpec v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>MetricSpec</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metricspec-v2-autoscaling">v2</a>
+<a href="#metricspec-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerspec-v2beta1-autoscaling">HorizontalPodAutoscalerSpec [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>containerResource</CODE><BR /><I><a href="#containerresourcemetricsource-v2beta1-autoscaling">ContainerResourceMetricSource</a></I></TD><TD>container resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing a single container in each pod of the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source. This is an alpha feature and can be enabled by the HPAContainerMetrics feature flag.</TD></TR>
+<TR><TD><CODE>external</CODE><BR /><I><a href="#externalmetricsource-v2beta1-autoscaling">ExternalMetricSource</a></I></TD><TD>external refers to a global metric that is not associated with any Kubernetes object. It allows autoscaling based on information coming from components running outside of cluster (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).</TD></TR>
+<TR><TD><CODE>object</CODE><BR /><I><a href="#objectmetricsource-v2beta1-autoscaling">ObjectMetricSource</a></I></TD><TD>object refers to a metric describing a single kubernetes object (for example, hits-per-second on an Ingress object).</TD></TR>
+<TR><TD><CODE>pods</CODE><BR /><I><a href="#podsmetricsource-v2beta1-autoscaling">PodsMetricSource</a></I></TD><TD>pods refers to a metric describing each pod in the current scale target (for example, transactions-processed-per-second).  The values will be averaged together before being compared to the target value.</TD></TR>
+<TR><TD><CODE>resource</CODE><BR /><I><a href="#resourcemetricsource-v2beta1-autoscaling">ResourceMetricSource</a></I></TD><TD>resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type is the type of metric source.  It should be one of &#34;ContainerResource&#34;, &#34;External&#34;, &#34;Object&#34;, &#34;Pods&#34; or &#34;Resource&#34;, each mapping to a matching field in the object. Note: &#34;ContainerResource&#34; type is available on when the feature-gate HPAContainerMetrics is enabled</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="metricstatus-v2beta2-autoscaling">MetricStatus v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>MetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metricstatus-v2-autoscaling">v2</a>
+<a href="#metricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerstatus-v2beta2-autoscaling">HorizontalPodAutoscalerStatus [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>containerResource</CODE><BR /><I><a href="#containerresourcemetricstatus-v2beta2-autoscaling">ContainerResourceMetricStatus</a></I></TD><TD>container resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing a single container in each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.</TD></TR>
+<TR><TD><CODE>external</CODE><BR /><I><a href="#externalmetricstatus-v2beta2-autoscaling">ExternalMetricStatus</a></I></TD><TD>external refers to a global metric that is not associated with any Kubernetes object. It allows autoscaling based on information coming from components running outside of cluster (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).</TD></TR>
+<TR><TD><CODE>object</CODE><BR /><I><a href="#objectmetricstatus-v2beta2-autoscaling">ObjectMetricStatus</a></I></TD><TD>object refers to a metric describing a single kubernetes object (for example, hits-per-second on an Ingress object).</TD></TR>
+<TR><TD><CODE>pods</CODE><BR /><I><a href="#podsmetricstatus-v2beta2-autoscaling">PodsMetricStatus</a></I></TD><TD>pods refers to a metric describing each pod in the current scale target (for example, transactions-processed-per-second).  The values will be averaged together before being compared to the target value.</TD></TR>
+<TR><TD><CODE>resource</CODE><BR /><I><a href="#resourcemetricstatus-v2beta2-autoscaling">ResourceMetricStatus</a></I></TD><TD>resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type is the type of metric source.  It will be one of &#34;ContainerResource&#34;, &#34;External&#34;, &#34;Object&#34;, &#34;Pods&#34; or &#34;Resource&#34;, each corresponds to a matching field in the object. Note: &#34;ContainerResource&#34; type is available on when the feature-gate HPAContainerMetrics is enabled</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="metricstatus-v2beta1-autoscaling">MetricStatus v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>MetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metricstatus-v2-autoscaling">v2</a>
+<a href="#metricstatus-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerstatus-v2beta1-autoscaling">HorizontalPodAutoscalerStatus [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>containerResource</CODE><BR /><I><a href="#containerresourcemetricstatus-v2beta1-autoscaling">ContainerResourceMetricStatus</a></I></TD><TD>container resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing a single container in each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.</TD></TR>
+<TR><TD><CODE>external</CODE><BR /><I><a href="#externalmetricstatus-v2beta1-autoscaling">ExternalMetricStatus</a></I></TD><TD>external refers to a global metric that is not associated with any Kubernetes object. It allows autoscaling based on information coming from components running outside of cluster (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).</TD></TR>
+<TR><TD><CODE>object</CODE><BR /><I><a href="#objectmetricstatus-v2beta1-autoscaling">ObjectMetricStatus</a></I></TD><TD>object refers to a metric describing a single kubernetes object (for example, hits-per-second on an Ingress object).</TD></TR>
+<TR><TD><CODE>pods</CODE><BR /><I><a href="#podsmetricstatus-v2beta1-autoscaling">PodsMetricStatus</a></I></TD><TD>pods refers to a metric describing each pod in the current scale target (for example, transactions-processed-per-second).  The values will be averaged together before being compared to the target value.</TD></TR>
+<TR><TD><CODE>resource</CODE><BR /><I><a href="#resourcemetricstatus-v2beta1-autoscaling">ResourceMetricStatus</a></I></TD><TD>resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type is the type of metric source.  It will be one of &#34;ContainerResource&#34;, &#34;External&#34;, &#34;Object&#34;, &#34;Pods&#34; or &#34;Resource&#34;, each corresponds to a matching field in the object. Note: &#34;ContainerResource&#34; type is available on when the feature-gate HPAContainerMetrics is enabled</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="metrictarget-v2beta2-autoscaling">MetricTarget v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>MetricTarget</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metrictarget-v2-autoscaling">v2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#containerresourcemetricsource-v2beta2-autoscaling">ContainerResourceMetricSource [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#externalmetricsource-v2beta2-autoscaling">ExternalMetricSource [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#objectmetricsource-v2beta2-autoscaling">ObjectMetricSource [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#podsmetricsource-v2beta2-autoscaling">PodsMetricSource [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#resourcemetricsource-v2beta2-autoscaling">ResourceMetricSource [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>averageUtilization</CODE><BR /><I>integer</I></TD><TD>averageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods. Currently only valid for Resource metric source type</TD></TR>
+<TR><TD><CODE>averageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>averageValue is the target value of the average of the metric across all relevant pods (as a quantity)</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type represents whether the metric type is Utilization, Value, or AverageValue</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>value is the target value of the metric (as a quantity).</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="metricvaluestatus-v2beta2-autoscaling">MetricValueStatus v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>MetricValueStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metricvaluestatus-v2-autoscaling">v2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#containerresourcemetricstatus-v2beta2-autoscaling">ContainerResourceMetricStatus [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#externalmetricstatus-v2beta2-autoscaling">ExternalMetricStatus [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#objectmetricstatus-v2beta2-autoscaling">ObjectMetricStatus [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#podsmetricstatus-v2beta2-autoscaling">PodsMetricStatus [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#resourcemetricstatus-v2beta2-autoscaling">ResourceMetricStatus [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>averageUtilization</CODE><BR /><I>integer</I></TD><TD>currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.</TD></TR>
+<TR><TD><CODE>averageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>averageValue is the current value of the average of the metric across all relevant pods (as a quantity)</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>value is the current value of the metric (as a quantity).</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="nonresourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io">NonResourcePolicyRule v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>NonResourcePolicyRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#nonresourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#policyruleswithsubjects-v1beta1-flowcontrol-apiserver-k8s-io">PolicyRulesWithSubjects [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nonResourceURLs</CODE><BR /><I>string array</I></TD><TD>`nonResourceURLs` is a set of url prefixes that a user should have access to and may not be empty. For example:   - &#34;/healthz&#34; is legal   - &#34;/hea*&#34; is illegal   - &#34;/hea&#34; is legal but matches nothing   - &#34;/hea/*&#34; also matches nothing   - &#34;/healthz/*&#34; matches all per-component health checks. &#34;*&#34; matches all non-resource urls. if it is present, it must be the only entry. Required.</TD></TR>
+<TR><TD><CODE>verbs</CODE><BR /><I>string array</I></TD><TD>`verbs` is a list of matching verbs and may not be empty. &#34;*&#34; matches all verbs. If it is present, it must be the only entry. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="objectmetricsource-v2beta2-autoscaling">ObjectMetricSource v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>ObjectMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#objectmetricsource-v2-autoscaling">v2</a>
+<a href="#objectmetricsource-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2beta2-autoscaling">MetricSpec [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>describedObject</CODE><BR /><I><a href="#crossversionobjectreference-v2beta2-autoscaling">CrossVersionObjectReference</a></I></TD><TD></TD></TR>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2beta2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#metrictarget-v2beta2-autoscaling">MetricTarget</a></I></TD><TD>target specifies the target value for the given metric</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="objectmetricsource-v2beta1-autoscaling">ObjectMetricSource v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>ObjectMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#objectmetricsource-v2-autoscaling">v2</a>
+<a href="#objectmetricsource-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2beta1-autoscaling">MetricSpec [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>averageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>averageValue is the target value of the average of the metric across all relevant pods (as a quantity)</TD></TR>
+<TR><TD><CODE>metricName</CODE><BR /><I>string</I></TD><TD>metricName is the name of the metric in question.</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping When unset, just the metricName will be used to gather metrics.</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#crossversionobjectreference-v2beta1-autoscaling">CrossVersionObjectReference</a></I></TD><TD>target is the described Kubernetes object.</TD></TR>
+<TR><TD><CODE>targetValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>targetValue is the target value of the metric (as a quantity).</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="objectmetricstatus-v2beta2-autoscaling">ObjectMetricStatus v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>ObjectMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#objectmetricstatus-v2-autoscaling">v2</a>
+<a href="#objectmetricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2beta2-autoscaling">MetricStatus [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>current</CODE><BR /><I><a href="#metricvaluestatus-v2beta2-autoscaling">MetricValueStatus</a></I></TD><TD>current contains the current value for the given metric</TD></TR>
+<TR><TD><CODE>describedObject</CODE><BR /><I><a href="#crossversionobjectreference-v2beta2-autoscaling">CrossVersionObjectReference</a></I></TD><TD></TD></TR>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2beta2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="objectmetricstatus-v2beta1-autoscaling">ObjectMetricStatus v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>ObjectMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#objectmetricstatus-v2-autoscaling">v2</a>
+<a href="#objectmetricstatus-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2beta1-autoscaling">MetricStatus [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>averageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>averageValue is the current value of the average of the metric across all relevant pods (as a quantity)</TD></TR>
+<TR><TD><CODE>currentValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>currentValue is the current value of the metric (as a quantity).</TD></TR>
+<TR><TD><CODE>metricName</CODE><BR /><I>string</I></TD><TD>metricName is the name of the metric in question.</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>selector is the string-encoded form of a standard kubernetes label selector for the given metric When set in the ObjectMetricSource, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#crossversionobjectreference-v2beta1-autoscaling">CrossVersionObjectReference</a></I></TD><TD>target is the described Kubernetes object.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="overhead-v1beta1-node-k8s-io">Overhead v1beta1 node.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>node.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>Overhead</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#overhead-v1-node-k8s-io">v1</a>
+<a href="#overhead-v1alpha1-node-k8s-io">v1alpha1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass [node/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>podFixed</CODE><BR /><I>object</I></TD><TD>PodFixed represents the fixed resource overhead associated with running a pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="overhead-v1alpha1-node-k8s-io">Overhead v1alpha1 node.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>node.k8s.io</CODE></TD><TD><CODE>v1alpha1</CODE></TD><TD><CODE>Overhead</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#overhead-v1-node-k8s-io">v1</a>
+<a href="#overhead-v1beta1-node-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#runtimeclassspec-v1alpha1-node-k8s-io">RuntimeClassSpec [node/v1alpha1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>podFixed</CODE><BR /><I>object</I></TD><TD>PodFixed represents the fixed resource overhead associated with running a pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="poddisruptionbudget-v1beta1-policy">PodDisruptionBudget v1beta1 policy</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>PodDisruptionBudget</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#poddisruptionbudget-v1-policy">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#poddisruptionbudgetlist-v1beta1-policy">PodDisruptionBudgetList [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#poddisruptionbudgetspec-v1beta1-policy">PodDisruptionBudgetSpec</a></I></TD><TD>Specification of the desired behavior of the PodDisruptionBudget.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#poddisruptionbudgetstatus-v1beta1-policy">PodDisruptionBudgetStatus</a></I></TD><TD>Most recently observed status of the PodDisruptionBudget.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="poddisruptionbudgetspec-v1beta1-policy">PodDisruptionBudgetSpec v1beta1 policy</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>maxUnavailable</CODE></TD><TD>An eviction is allowed if at most &#34;maxUnavailable&#34; pods selected by &#34;selector&#34; are unavailable after the eviction, i.e. even in absence of the evicted pod. For example, one can prevent all voluntary evictions by specifying 0. This is a mutually exclusive setting with &#34;minAvailable&#34;.</TD></TR>
+<TR><TD><CODE>minAvailable</CODE></TD><TD>An eviction is allowed if at least &#34;minAvailable&#34; pods selected by &#34;selector&#34; will still be available after the eviction, i.e. even in the absence of the evicted pod.  So for example you can prevent all voluntary evictions by specifying &#34;100%&#34;.</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I><BR /><B>patch strategy</B>: <I>replace</I></TD><TD>Label query over pods whose evictions are managed by the disruption budget. A null selector selects no pods. An empty selector ({}) also selects no pods, which differs from standard behavior of selecting all pods. In policy/v1, an empty selector will select all pods in the namespace.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="poddisruptionbudgetstatus-v1beta1-policy">PodDisruptionBudgetStatus v1beta1 policy</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#condition-v1-meta">Condition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Conditions contain conditions for PDB. The disruption controller sets the DisruptionAllowed condition. The following are known values for the reason field (additional reasons could be added in the future): - SyncFailed: The controller encountered an error and wasn&#39;t able to compute               the number of allowed disruptions. Therefore no disruptions are               allowed and the status of the condition will be False. - InsufficientPods: The number of pods are either at or below the number                     required by the PodDisruptionBudget. No disruptions are                     allowed and the status of the condition will be False. - SufficientPods: There are more pods than required by the PodDisruptionBudget.                   The condition will be True, and the number of allowed                   disruptions are provided by the disruptionsAllowed property.</TD></TR>
+<TR><TD><CODE>currentHealthy</CODE><BR /><I>integer</I></TD><TD>current number of healthy pods</TD></TR>
+<TR><TD><CODE>desiredHealthy</CODE><BR /><I>integer</I></TD><TD>minimum desired number of healthy pods</TD></TR>
+<TR><TD><CODE>disruptedPods</CODE><BR /><I>object</I></TD><TD>DisruptedPods contains information about pods whose eviction was processed by the API server eviction subresource handler but has not yet been observed by the PodDisruptionBudget controller. A pod will be in this map from the time when the API server processed the eviction request to the time when the pod is seen by PDB controller as having been marked for deletion (or after a timeout). The key in the map is the name of the pod and the value is the time when the API server processed the eviction request. If the deletion didn&#39;t occur and a pod is still there it will be removed from the list automatically by PodDisruptionBudget controller after some time. If everything goes smooth this map should be empty for the most of the time. Large number of entries in the map may indicate problems with pod deletions.</TD></TR>
+<TR><TD><CODE>disruptionsAllowed</CODE><BR /><I>integer</I></TD><TD>Number of pod disruptions that are currently allowed.</TD></TR>
+<TR><TD><CODE>expectedPods</CODE><BR /><I>integer</I></TD><TD>total number of pods counted by this disruption budget</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>Most recent generation observed when updating this PDB status. DisruptionsAllowed and other status information is valid only if observedGeneration equals to PDB&#39;s object generation.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="poddisruptionbudgetlist-v1beta1-policy">PodDisruptionBudgetList v1beta1 policy</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a> array</I></TD><TD>items list individual PodDisruptionBudget objects</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-poddisruptionbudget-v1beta1-policy-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-poddisruptionbudget-v1beta1-policy">Create</H2>
+<P>create a PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/policy/v1beta1/namespaces/{namespace}/poddisruptionbudgets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-poddisruptionbudget-v1beta1-policy">Patch</H2>
+<P>partially update the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/policy/v1beta1/namespaces/{namespace}/poddisruptionbudgets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-poddisruptionbudget-v1beta1-policy">Replace</H2>
+<P>replace the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/policy/v1beta1/namespaces/{namespace}/poddisruptionbudgets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-poddisruptionbudget-v1beta1-policy">Delete</H2>
+<P>delete a PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/policy/v1beta1/namespaces/{namespace}/poddisruptionbudgets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-poddisruptionbudget-v1beta1-policy">Delete Collection</H2>
+<P>delete collection of PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/policy/v1beta1/namespaces/{namespace}/poddisruptionbudgets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-poddisruptionbudget-v1beta1-policy-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-poddisruptionbudget-v1beta1-policy">Read</H2>
+<P>read the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1beta1/namespaces/{namespace}/poddisruptionbudgets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-poddisruptionbudget-v1beta1-policy">List</H2>
+<P>list or watch objects of kind PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1beta1/namespaces/{namespace}/poddisruptionbudgets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudgetlist-v1beta1-policy">PodDisruptionBudgetList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-poddisruptionbudget-v1beta1-policy">List All Namespaces</H2>
+<P>list or watch objects of kind PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1beta1/poddisruptionbudgets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudgetlist-v1beta1-policy">PodDisruptionBudgetList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-poddisruptionbudget-v1beta1-policy">Watch</H2>
+<P>watch changes to an object of kind PodDisruptionBudget. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1beta1/watch/namespaces/{namespace}/poddisruptionbudgets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-poddisruptionbudget-v1beta1-policy">Watch List</H2>
+<P>watch individual changes to a list of PodDisruptionBudget. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1beta1/watch/namespaces/{namespace}/poddisruptionbudgets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-poddisruptionbudget-v1beta1-policy">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of PodDisruptionBudget. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1beta1/watch/poddisruptionbudgets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-poddisruptionbudget-v1beta1-policy-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-poddisruptionbudget-v1beta1-policy">Patch Status</H2>
+<P>partially update status of the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/policy/v1beta1/namespaces/{namespace}/poddisruptionbudgets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-poddisruptionbudget-v1beta1-policy">Read Status</H2>
+<P>read status of the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1beta1/namespaces/{namespace}/poddisruptionbudgets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-poddisruptionbudget-v1beta1-policy">Replace Status</H2>
+<P>replace status of the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/policy/v1beta1/namespaces/{namespace}/poddisruptionbudgets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="podsmetricsource-v2beta2-autoscaling">PodsMetricSource v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>PodsMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#podsmetricsource-v2-autoscaling">v2</a>
+<a href="#podsmetricsource-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2beta2-autoscaling">MetricSpec [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2beta2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#metrictarget-v2beta2-autoscaling">MetricTarget</a></I></TD><TD>target specifies the target value for the given metric</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="podsmetricsource-v2beta1-autoscaling">PodsMetricSource v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>PodsMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#podsmetricsource-v2-autoscaling">v2</a>
+<a href="#podsmetricsource-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2beta1-autoscaling">MetricSpec [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>metricName</CODE><BR /><I>string</I></TD><TD>metricName is the name of the metric in question</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping When unset, just the metricName will be used to gather metrics.</TD></TR>
+<TR><TD><CODE>targetAverageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>targetAverageValue is the target value of the average of the metric across all relevant pods (as a quantity)</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="podsmetricstatus-v2beta2-autoscaling">PodsMetricStatus v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>PodsMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#podsmetricstatus-v2-autoscaling">v2</a>
+<a href="#podsmetricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2beta2-autoscaling">MetricStatus [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>current</CODE><BR /><I><a href="#metricvaluestatus-v2beta2-autoscaling">MetricValueStatus</a></I></TD><TD>current contains the current value for the given metric</TD></TR>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2beta2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="podsmetricstatus-v2beta1-autoscaling">PodsMetricStatus v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>PodsMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#podsmetricstatus-v2-autoscaling">v2</a>
+<a href="#podsmetricstatus-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2beta1-autoscaling">MetricStatus [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>currentAverageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>currentAverageValue is the current value of the average of the metric across all relevant pods (as a quantity)</TD></TR>
+<TR><TD><CODE>metricName</CODE><BR /><I>string</I></TD><TD>metricName is the name of the metric in question</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>selector is the string-encoded form of a standard kubernetes label selector for the given metric When set in the PodsMetricSource, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="policyruleswithsubjects-v1beta1-flowcontrol-apiserver-k8s-io">PolicyRulesWithSubjects v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>PolicyRulesWithSubjects</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#policyruleswithsubjects-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschemaspec-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaSpec [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nonResourceRules</CODE><BR /><I><a href="#nonresourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io">NonResourcePolicyRule</a> array</I></TD><TD>`nonResourceRules` is a list of NonResourcePolicyRules that identify matching requests according to their verb and the target non-resource URL.</TD></TR>
+<TR><TD><CODE>resourceRules</CODE><BR /><I><a href="#resourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io">ResourcePolicyRule</a> array</I></TD><TD>`resourceRules` is a slice of ResourcePolicyRules that identify matching requests according to their verb and the target resource. At least one of `resourceRules` and `nonResourceRules` has to be non-empty.</TD></TR>
+<TR><TD><CODE>subjects</CODE><BR /><I><a href="#subject-v1beta1-flowcontrol-apiserver-k8s-io">Subject</a> array</I></TD><TD>subjects is the list of normal user, serviceaccount, or group that this rule cares about. There must be at least one member in this slice. A slice that includes both the system:authenticated and system:unauthenticated user groups matches every request. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>PriorityLevelConfiguration</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#prioritylevelconfigurationlist-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationList [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>`metadata` is the standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#prioritylevelconfigurationspec-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationSpec</a></I></TD><TD>`spec` is the specification of the desired behavior of a &#34;request-priority&#34;. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#prioritylevelconfigurationstatus-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationStatus</a></I></TD><TD>`status` is the current status of a &#34;request-priority&#34;. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="prioritylevelconfigurationspec-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationSpec v1beta1 flowcontrol</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>limited</CODE><BR /><I><a href="#limitedprioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">LimitedPriorityLevelConfiguration</a></I></TD><TD>`limited` specifies how requests are handled for a Limited priority level. This field must be non-empty if and only if `type` is `&#34;Limited&#34;`.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>`type` indicates whether this priority level is subject to limitation on request execution.  A value of `&#34;Exempt&#34;` means that requests of this priority level are not subject to a limit (and thus are never queued) and do not detract from the capacity made available to other priority levels.  A value of `&#34;Limited&#34;` means that (a) requests of this priority level _are_ subject to limits and (b) some of the server&#39;s limited capacity is made available exclusively to this priority level. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="prioritylevelconfigurationstatus-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationStatus v1beta1 flowcontrol</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#prioritylevelconfigurationcondition-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationCondition</a> array</I></TD><TD>`conditions` is the current state of &#34;request-priority&#34;.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="prioritylevelconfigurationlist-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationList v1beta1 flowcontrol</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a> array</I></TD><TD>`items` is a list of request-priorities.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>`metadata` is the standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Create</H2>
+<P>create a PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Patch</H2>
+<P>partially update the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Replace</H2>
+<P>replace the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Delete</H2>
+<P>delete a PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Delete Collection</H2>
+<P>delete collection of PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Read</H2>
+<P>read the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">List</H2>
+<P>list or watch objects of kind PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfigurationlist-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Watch</H2>
+<P>watch changes to an object of kind PriorityLevelConfiguration. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/watch/prioritylevelconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of PriorityLevelConfiguration. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/watch/prioritylevelconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Patch Status</H2>
+<P>partially update status of the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Read Status</H2>
+<P>read status of the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Replace Status</H2>
+<P>replace status of the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="prioritylevelconfigurationcondition-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationCondition v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>PriorityLevelConfigurationCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#prioritylevelconfigurationcondition-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#prioritylevelconfigurationstatus-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationStatus [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>`lastTransitionTime` is the last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>`message` is a human-readable message indicating details about last transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>`reason` is a unique, one-word, CamelCase reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>`status` is the status of the condition. Can be True, False, Unknown. Required.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>`type` is the type of the condition. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="prioritylevelconfigurationreference-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationReference v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>PriorityLevelConfigurationReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#prioritylevelconfigurationreference-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschemaspec-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaSpec [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>`name` is the name of the priority level configuration being referenced Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="queuingconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">QueuingConfiguration v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>QueuingConfiguration</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#queuingconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#limitresponse-v1beta1-flowcontrol-apiserver-k8s-io">LimitResponse [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>handSize</CODE><BR /><I>integer</I></TD><TD>`handSize` is a small positive number that configures the shuffle sharding of requests into queues.  When enqueuing a request at this priority level the request&#39;s flow identifier (a string pair) is hashed and the hash value is used to shuffle the list of queues and deal a hand of the size specified here.  The request is put into one of the shortest queues in that hand. `handSize` must be no larger than `queues`, and should be significantly smaller (so that a few heavy flows do not saturate most of the queues).  See the user-facing documentation for more extensive guidance on setting this field.  This field has a default value of 8.</TD></TR>
+<TR><TD><CODE>queueLengthLimit</CODE><BR /><I>integer</I></TD><TD>`queueLengthLimit` is the maximum number of requests allowed to be waiting in a given queue of this priority level at a time; excess requests are rejected.  This value must be positive.  If not specified, it will be defaulted to 50.</TD></TR>
+<TR><TD><CODE>queues</CODE><BR /><I>integer</I></TD><TD>`queues` is the number of queues for this priority level. The queues exist independently at each apiserver. The value must be positive.  Setting it to 1 effectively precludes shufflesharding and thus makes the distinguisher method of associated flow schemas irrelevant.  This field has a default value of 64.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="resourcemetricsource-v2beta2-autoscaling">ResourceMetricSource v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>ResourceMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#resourcemetricsource-v2-autoscaling">v2</a>
+<a href="#resourcemetricsource-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2beta2-autoscaling">MetricSpec [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the resource in question.</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#metrictarget-v2beta2-autoscaling">MetricTarget</a></I></TD><TD>target specifies the target value for the given metric</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="resourcemetricsource-v2beta1-autoscaling">ResourceMetricSource v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>ResourceMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#resourcemetricsource-v2-autoscaling">v2</a>
+<a href="#resourcemetricsource-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2beta1-autoscaling">MetricSpec [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the resource in question.</TD></TR>
+<TR><TD><CODE>targetAverageUtilization</CODE><BR /><I>integer</I></TD><TD>targetAverageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.</TD></TR>
+<TR><TD><CODE>targetAverageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>targetAverageValue is the target value of the average of the resource metric across all relevant pods, as a raw value (instead of as a percentage of the request), similar to the &#34;pods&#34; metric source type.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="resourcemetricstatus-v2beta2-autoscaling">ResourceMetricStatus v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>ResourceMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#resourcemetricstatus-v2-autoscaling">v2</a>
+<a href="#resourcemetricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2beta2-autoscaling">MetricStatus [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>current</CODE><BR /><I><a href="#metricvaluestatus-v2beta2-autoscaling">MetricValueStatus</a></I></TD><TD>current contains the current value for the given metric</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the name of the resource in question.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="resourcemetricstatus-v2beta1-autoscaling">ResourceMetricStatus v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>ResourceMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#resourcemetricstatus-v2-autoscaling">v2</a>
+<a href="#resourcemetricstatus-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2beta1-autoscaling">MetricStatus [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>currentAverageUtilization</CODE><BR /><I>integer</I></TD><TD>currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.  It will only be present if `targetAverageValue` was set in the corresponding metric specification.</TD></TR>
+<TR><TD><CODE>currentAverageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>currentAverageValue is the current value of the average of the resource metric across all relevant pods, as a raw value (instead of as a percentage of the request), similar to the &#34;pods&#34; metric source type. It will always be set, regardless of the corresponding metric specification.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the resource in question.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="resourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io">ResourcePolicyRule v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>ResourcePolicyRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#resourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#policyruleswithsubjects-v1beta1-flowcontrol-apiserver-k8s-io">PolicyRulesWithSubjects [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiGroups</CODE><BR /><I>string array</I></TD><TD>`apiGroups` is a list of matching API groups and may not be empty. &#34;*&#34; matches all API groups and, if present, must be the only entry. Required.</TD></TR>
+<TR><TD><CODE>clusterScope</CODE><BR /><I>boolean</I></TD><TD>`clusterScope` indicates whether to match requests that do not specify a namespace (which happens either because the resource is not namespaced or the request targets all namespaces). If this field is omitted or false then the `namespaces` field must contain a non-empty list.</TD></TR>
+<TR><TD><CODE>namespaces</CODE><BR /><I>string array</I></TD><TD>`namespaces` is a list of target namespaces that restricts matches.  A request that specifies a target namespace matches only if either (a) this list contains that target namespace or (b) this list contains &#34;*&#34;.  Note that &#34;*&#34; matches any specified namespace but does not match a request that _does not specify_ a namespace (see the `clusterScope` field for that). This list may be empty, but only if `clusterScope` is true.</TD></TR>
+<TR><TD><CODE>resources</CODE><BR /><I>string array</I></TD><TD>`resources` is a list of matching resources (i.e., lowercase and plural) with, if desired, subresource.  For example, [ &#34;services&#34;, &#34;nodes/status&#34; ].  This list may not be empty. &#34;*&#34; matches all resources and, if present, must be the only entry. Required.</TD></TR>
+<TR><TD><CODE>verbs</CODE><BR /><I>string array</I></TD><TD>`verbs` is a list of matching verbs and may not be empty. &#34;*&#34; matches all verbs and, if present, must be the only entry. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="runtimeclass-v1beta1-node-k8s-io">RuntimeClass v1beta1 node.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>node.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>RuntimeClass</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#runtimeclass-v1-node-k8s-io">v1</a>
+<a href="#runtimeclass-v1alpha1-node-k8s-io">v1alpha1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#runtimeclasslist-v1beta1-node-k8s-io">RuntimeClassList [node/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>handler</CODE><BR /><I>string</I></TD><TD>Handler specifies the underlying runtime and configuration that the CRI implementation will use to handle pods of this class. The possible values are specific to the node &amp; CRI configuration.  It is assumed that all handlers are available on every node, and handlers of the same name are equivalent on every node. For example, a handler called &#34;runc&#34; might specify that the runc OCI runtime (using native Linux containers) will be used to run the containers in a pod. The Handler must be lowercase, conform to the DNS Label (RFC 1123) requirements, and is immutable.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>overhead</CODE><BR /><I><a href="#overhead-v1beta1-node-k8s-io">Overhead</a></I></TD><TD>Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. For more details, see https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.md This field is beta-level as of Kubernetes v1.18, and is only honored by servers that enable the PodOverhead feature.</TD></TR>
+<TR><TD><CODE>scheduling</CODE><BR /><I><a href="#scheduling-v1beta1-node-k8s-io">Scheduling</a></I></TD><TD>Scheduling holds the scheduling constraints to ensure that pods running with this RuntimeClass are scheduled to nodes that support it. If scheduling is nil, this RuntimeClass is assumed to be supported by all nodes.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="runtimeclasslist-v1beta1-node-k8s-io">RuntimeClassList v1beta1 node</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass</a> array</I></TD><TD>Items is a list of schema objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-runtimeclass-v1beta1-node-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-runtimeclass-v1beta1-node-k8s-io">Create</H2>
+<P>create a RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/node.k8s.io/v1beta1/runtimeclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-runtimeclass-v1beta1-node-k8s-io">Patch</H2>
+<P>partially update the specified RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/node.k8s.io/v1beta1/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-runtimeclass-v1beta1-node-k8s-io">Replace</H2>
+<P>replace the specified RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/node.k8s.io/v1beta1/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-runtimeclass-v1beta1-node-k8s-io">Delete</H2>
+<P>delete a RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/node.k8s.io/v1beta1/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-runtimeclass-v1beta1-node-k8s-io">Delete Collection</H2>
+<P>delete collection of RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/node.k8s.io/v1beta1/runtimeclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-runtimeclass-v1beta1-node-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-runtimeclass-v1beta1-node-k8s-io">Read</H2>
+<P>read the specified RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/node.k8s.io/v1beta1/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-runtimeclass-v1beta1-node-k8s-io">List</H2>
+<P>list or watch objects of kind RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/node.k8s.io/v1beta1/runtimeclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclasslist-v1beta1-node-k8s-io">RuntimeClassList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-runtimeclass-v1beta1-node-k8s-io">Watch</H2>
+<P>watch changes to an object of kind RuntimeClass. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/node.k8s.io/v1beta1/watch/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-runtimeclass-v1beta1-node-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of RuntimeClass. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/node.k8s.io/v1beta1/watch/runtimeclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="runtimeclass-v1alpha1-node-k8s-io">RuntimeClass v1alpha1 node.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>node.k8s.io</CODE></TD><TD><CODE>v1alpha1</CODE></TD><TD><CODE>RuntimeClass</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#runtimeclass-v1-node-k8s-io">v1</a>
+<a href="#runtimeclass-v1beta1-node-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#runtimeclasslist-v1alpha1-node-k8s-io">RuntimeClassList [node/v1alpha1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#runtimeclassspec-v1alpha1-node-k8s-io">RuntimeClassSpec</a></I></TD><TD>Specification of the RuntimeClass More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="runtimeclassspec-v1alpha1-node-k8s-io">RuntimeClassSpec v1alpha1 node</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#runtimeclass-v1alpha1-node-k8s-io">RuntimeClass [node/v1alpha1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>overhead</CODE><BR /><I><a href="#overhead-v1alpha1-node-k8s-io">Overhead</a></I></TD><TD>Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. For more details, see https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.md This field is beta-level as of Kubernetes v1.18, and is only honored by servers that enable the PodOverhead feature.</TD></TR>
+<TR><TD><CODE>runtimeHandler</CODE><BR /><I>string</I></TD><TD>RuntimeHandler specifies the underlying runtime and configuration that the CRI implementation will use to handle pods of this class. The possible values are specific to the node &amp; CRI configuration.  It is assumed that all handlers are available on every node, and handlers of the same name are equivalent on every node. For example, a handler called &#34;runc&#34; might specify that the runc OCI runtime (using native Linux containers) will be used to run the containers in a pod. The RuntimeHandler must be lowercase, conform to the DNS Label (RFC 1123) requirements, and is immutable.</TD></TR>
+<TR><TD><CODE>scheduling</CODE><BR /><I><a href="#scheduling-v1alpha1-node-k8s-io">Scheduling</a></I></TD><TD>Scheduling holds the scheduling constraints to ensure that pods running with this RuntimeClass are scheduled to nodes that support it. If scheduling is nil, this RuntimeClass is assumed to be supported by all nodes.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="runtimeclasslist-v1alpha1-node-k8s-io">RuntimeClassList v1alpha1 node</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#runtimeclass-v1alpha1-node-k8s-io">RuntimeClass</a> array</I></TD><TD>Items is a list of schema objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-runtimeclass-v1alpha1-node-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-runtimeclass-v1alpha1-node-k8s-io">Create</H2>
+<P>create a RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/node.k8s.io/v1alpha1/runtimeclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#runtimeclass-v1alpha1-node-k8s-io">RuntimeClass</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclass-v1alpha1-node-k8s-io">RuntimeClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#runtimeclass-v1alpha1-node-k8s-io">RuntimeClass</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#runtimeclass-v1alpha1-node-k8s-io">RuntimeClass</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-runtimeclass-v1alpha1-node-k8s-io">Patch</H2>
+<P>partially update the specified RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/node.k8s.io/v1alpha1/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclass-v1alpha1-node-k8s-io">RuntimeClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#runtimeclass-v1alpha1-node-k8s-io">RuntimeClass</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-runtimeclass-v1alpha1-node-k8s-io">Replace</H2>
+<P>replace the specified RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/node.k8s.io/v1alpha1/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation determines how the server should respond to unknown/duplicate fields in the object in the request. Introduced as alpha in 1.23, older servers or servers with the `ServerSideFieldValidation` feature disabled will discard valid values specified in  this param and not perform any server side field validation. Valid values are: - Ignore: ignores unknown/duplicate fields. - Warn: responds with a warning for each unknown/duplicate field, but successfully serves the request. - Strict: fails the request on unknown/duplicate fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#runtimeclass-v1alpha1-node-k8s-io">RuntimeClass</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclass-v1alpha1-node-k8s-io">RuntimeClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#runtimeclass-v1alpha1-node-k8s-io">RuntimeClass</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-runtimeclass-v1alpha1-node-k8s-io">Delete</H2>
+<P>delete a RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/node.k8s.io/v1alpha1/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-runtimeclass-v1alpha1-node-k8s-io">Delete Collection</H2>
+<P>delete collection of RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/node.k8s.io/v1alpha1/runtimeclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-runtimeclass-v1alpha1-node-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-runtimeclass-v1alpha1-node-k8s-io">Read</H2>
+<P>read the specified RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/node.k8s.io/v1alpha1/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclass-v1alpha1-node-k8s-io">RuntimeClass</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-runtimeclass-v1alpha1-node-k8s-io">List</H2>
+<P>list or watch objects of kind RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/node.k8s.io/v1alpha1/runtimeclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclasslist-v1alpha1-node-k8s-io">RuntimeClassList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-runtimeclass-v1alpha1-node-k8s-io">Watch</H2>
+<P>watch changes to an object of kind RuntimeClass. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/node.k8s.io/v1alpha1/watch/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-runtimeclass-v1alpha1-node-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of RuntimeClass. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/node.k8s.io/v1alpha1/watch/runtimeclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="scheduling-v1beta1-node-k8s-io">Scheduling v1beta1 node.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>node.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>Scheduling</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#scheduling-v1-node-k8s-io">v1</a>
+<a href="#scheduling-v1alpha1-node-k8s-io">v1alpha1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass [node/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nodeSelector</CODE><BR /><I>object</I></TD><TD>nodeSelector lists labels that must be present on nodes that support this RuntimeClass. Pods using this RuntimeClass can only be scheduled to a node matched by this selector. The RuntimeClass nodeSelector is merged with a pod&#39;s existing nodeSelector. Any conflicts will cause the pod to be rejected in admission.</TD></TR>
+<TR><TD><CODE>tolerations</CODE><BR /><I><a href="#toleration-v1-core">Toleration</a> array</I></TD><TD>tolerations are appended (excluding duplicates) to pods running with this RuntimeClass during admission, effectively unioning the set of nodes tolerated by the pod and the RuntimeClass.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="scheduling-v1alpha1-node-k8s-io">Scheduling v1alpha1 node.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>node.k8s.io</CODE></TD><TD><CODE>v1alpha1</CODE></TD><TD><CODE>Scheduling</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#scheduling-v1-node-k8s-io">v1</a>
+<a href="#scheduling-v1beta1-node-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#runtimeclassspec-v1alpha1-node-k8s-io">RuntimeClassSpec [node/v1alpha1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nodeSelector</CODE><BR /><I>object</I></TD><TD>nodeSelector lists labels that must be present on nodes that support this RuntimeClass. Pods using this RuntimeClass can only be scheduled to a node matched by this selector. The RuntimeClass nodeSelector is merged with a pod&#39;s existing nodeSelector. Any conflicts will cause the pod to be rejected in admission.</TD></TR>
+<TR><TD><CODE>tolerations</CODE><BR /><I><a href="#toleration-v1-core">Toleration</a> array</I></TD><TD>tolerations are appended (excluding duplicates) to pods running with this RuntimeClass during admission, effectively unioning the set of nodes tolerated by the pod and the RuntimeClass.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="serviceaccountsubject-v1beta1-flowcontrol-apiserver-k8s-io">ServiceAccountSubject v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>ServiceAccountSubject</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#serviceaccountsubject-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#subject-v1beta1-flowcontrol-apiserver-k8s-io">Subject [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>`name` is the name of matching ServiceAccount objects, or &#34;*&#34; to match regardless of name. Required.</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>`namespace` is the namespace of matching ServiceAccount objects. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="servicereference-v1-apiextensions-k8s-io">ServiceReference v1 apiextensions.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ServiceReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#webhookclientconfig-v1-apiextensions-k8s-io">WebhookClientConfig [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the service. Required</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>namespace is the namespace of the service. Required</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>path is an optional URL path at which the webhook will be contacted.</TD></TR>
+<TR><TD><CODE>port</CODE><BR /><I>integer</I></TD><TD>port is an optional service port at which the webhook will be contacted. `port` should be a valid port number (1-65535, inclusive). Defaults to 443 for backward compatibility.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="servicereference-v1-apiregistration-k8s-io">ServiceReference v1 apiregistration.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ServiceReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apiservicespec-v1-apiregistration-k8s-io">APIServiceSpec [apiregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the name of the service</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>Namespace is the namespace of the service</TD></TR>
+<TR><TD><CODE>port</CODE><BR /><I>integer</I></TD><TD>If specified, the port on the service that hosting webhook. Default to 443 for backward compatibility. `port` should be a valid port number (1-65535, inclusive).</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="subject-v1-rbac-authorization-k8s-io">Subject v1 rbac.authorization.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rbac.authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Subject</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#subject-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+<a href="#subject-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding [rbac/v1]</a></LI>
+  <LI><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding [rbac/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiGroup</CODE><BR /><I>string</I></TD><TD>APIGroup holds the API group of the referenced subject. Defaults to &#34;&#34; for ServiceAccount subjects. Defaults to &#34;rbac.authorization.k8s.io&#34; for User and Group subjects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind of object being referenced. Values defined by this API group are &#34;User&#34;, &#34;Group&#34;, and &#34;ServiceAccount&#34;. If the Authorizer does not recognized the kind value, the Authorizer should report an error.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the object being referenced.</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>Namespace of the referenced object.  If the object kind is non-namespace, such as &#34;User&#34; or &#34;Group&#34;, and this value is not empty the Authorizer should report an error.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="subject-v1beta1-flowcontrol-apiserver-k8s-io">Subject v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>Subject</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#subject-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+<a href="#subject-v1-rbac-authorization-k8s-io">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#policyruleswithsubjects-v1beta1-flowcontrol-apiserver-k8s-io">PolicyRulesWithSubjects [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>group</CODE><BR /><I><a href="#groupsubject-v1beta1-flowcontrol-apiserver-k8s-io">GroupSubject</a></I></TD><TD>`group` matches based on user group name.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>`kind` indicates which one of the other fields is non-empty. Required</TD></TR>
+<TR><TD><CODE>serviceAccount</CODE><BR /><I><a href="#serviceaccountsubject-v1beta1-flowcontrol-apiserver-k8s-io">ServiceAccountSubject</a></I></TD><TD>`serviceAccount` matches ServiceAccounts.</TD></TR>
+<TR><TD><CODE>user</CODE><BR /><I><a href="#usersubject-v1beta1-flowcontrol-apiserver-k8s-io">UserSubject</a></I></TD><TD>`user` matches based on username.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="tokenrequest-v1-storage-k8s-io">TokenRequest v1 storage.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>TokenRequest</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csidriverspec-v1-storage-k8s-io">CSIDriverSpec [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>audience</CODE><BR /><I>string</I></TD><TD>Audience is the intended audience of the token in &#34;TokenRequestSpec&#34;. It will default to the audiences of kube apiserver.</TD></TR>
+<TR><TD><CODE>expirationSeconds</CODE><BR /><I>integer</I></TD><TD>ExpirationSeconds is the duration of validity of the token in &#34;TokenRequestSpec&#34;. It has the same default value of &#34;ExpirationSeconds&#34; in &#34;TokenRequestSpec&#34;.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="usersubject-v1beta1-flowcontrol-apiserver-k8s-io">UserSubject v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>UserSubject</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#usersubject-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#subject-v1beta1-flowcontrol-apiserver-k8s-io">Subject [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>`name` is the username that matches, or &#34;*&#34; to match all usernames. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="webhookclientconfig-v1-apiextensions-k8s-io">WebhookClientConfig v1 apiextensions.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>WebhookClientConfig</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#webhookconversion-v1-apiextensions-k8s-io">WebhookConversion [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>caBundle</CODE><BR /><I>string</I></TD><TD>caBundle is a PEM encoded CA bundle which will be used to validate the webhook&#39;s server certificate. If unspecified, system trust roots on the apiserver are used.</TD></TR>
+<TR><TD><CODE>service</CODE><BR /><I><a href="#servicereference-v1-apiextensions-k8s-io">ServiceReference</a></I></TD><TD>service is a reference to the service for this webhook. Either service or url must be specified.  If the webhook is running within the cluster, then you should use `service`.</TD></TR>
+<TR><TD><CODE>url</CODE><BR /><I>string</I></TD><TD>url gives the location of the webhook, in standard URL form (`scheme://host:port/path`). Exactly one of `url` or `service` must be specified.  The `host` should not refer to a service running in the cluster; use the `service` field instead. The host might be resolved via external DNS in some apiservers (e.g., `kube-apiserver` cannot resolve in-cluster DNS as that would be a layering violation). `host` may also be an IP address.  Please note that using `localhost` or `127.0.0.1` as a `host` is risky unless you take great care to run this webhook on all hosts which run an apiserver which might need to make calls to this webhook. Such installs are likely to be non-portable, i.e., not easy to turn up in a new cluster.  The scheme must be &#34;https&#34;; the URL must begin with &#34;https://&#34;.  A path is optional, and if present may be any string permissible in a URL. You may use the path to pass an arbitrary string to the webhook, for example, a cluster identifier.  Attempting to use a user or basic auth e.g. &#34;user:password@&#34; is not allowed. Fragments (&#34;#...&#34;) and query parameters (&#34;?...&#34;) are not allowed, either.</TD></TR>
+</TBODY>
+</TABLE>
+
+</DIV>
+</DIV>
+</DIV>
+<SCRIPT src="/js/jquery-3.3.1.min.js"></SCRIPT>
+<SCRIPT src="/js/jquery.scrollTo-2.1.2.min.js"></SCRIPT>
+<SCRIPT src="/js/bootstrap-4.3.1.min.js"></SCRIPT>
+<SCRIPT src="js/navData.js"></SCRIPT>
+<SCRIPT src="/js/scroll-apiref.js"></SCRIPT>
+</BODY>
+</HTML>
diff --git a/static/docs/reference/generated/kubernetes-api/v1.23/js/navData.js b/static/docs/reference/generated/kubernetes-api/v1.23/js/navData.js
new file mode 100644
index 0000000000..3f54c376ef
--- /dev/null
+++ b/static/docs/reference/generated/kubernetes-api/v1.23/js/navData.js
@@ -0,0 +1 @@
+(function(){navData={"toc":[{"section":"webhookclientconfig-v1-apiextensions-k8s-io","subsections":[]},{"section":"usersubject-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"tokenrequest-v1-storage-k8s-io","subsections":[]},{"section":"subject-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"subject-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"servicereference-v1-apiregistration-k8s-io","subsections":[]},{"section":"servicereference-v1-apiextensions-k8s-io","subsections":[]},{"section":"serviceaccountsubject-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"scheduling-v1alpha1-node-k8s-io","subsections":[]},{"section":"scheduling-v1beta1-node-k8s-io","subsections":[]},{"section":"runtimeclass-v1alpha1-node-k8s-io","subsections":[{"section":"-strong-read-operations-runtimeclass-v1alpha1-node-k8s-io-strong-","subsections":[{"section":"watch-list-runtimeclass-v1alpha1-node-k8s-io","subsections":[]},{"section":"watch-runtimeclass-v1alpha1-node-k8s-io","subsections":[]},{"section":"list-runtimeclass-v1alpha1-node-k8s-io","subsections":[]},{"section":"read-runtimeclass-v1alpha1-node-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-runtimeclass-v1alpha1-node-k8s-io-strong-","subsections":[{"section":"delete-collection-runtimeclass-v1alpha1-node-k8s-io","subsections":[]},{"section":"delete-runtimeclass-v1alpha1-node-k8s-io","subsections":[]},{"section":"replace-runtimeclass-v1alpha1-node-k8s-io","subsections":[]},{"section":"patch-runtimeclass-v1alpha1-node-k8s-io","subsections":[]},{"section":"create-runtimeclass-v1alpha1-node-k8s-io","subsections":[]}]}]},{"section":"runtimeclass-v1beta1-node-k8s-io","subsections":[{"section":"-strong-read-operations-runtimeclass-v1beta1-node-k8s-io-strong-","subsections":[{"section":"watch-list-runtimeclass-v1beta1-node-k8s-io","subsections":[]},{"section":"watch-runtimeclass-v1beta1-node-k8s-io","subsections":[]},{"section":"list-runtimeclass-v1beta1-node-k8s-io","subsections":[]},{"section":"read-runtimeclass-v1beta1-node-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-runtimeclass-v1beta1-node-k8s-io-strong-","subsections":[{"section":"delete-collection-runtimeclass-v1beta1-node-k8s-io","subsections":[]},{"section":"delete-runtimeclass-v1beta1-node-k8s-io","subsections":[]},{"section":"replace-runtimeclass-v1beta1-node-k8s-io","subsections":[]},{"section":"patch-runtimeclass-v1beta1-node-k8s-io","subsections":[]},{"section":"create-runtimeclass-v1beta1-node-k8s-io","subsections":[]}]}]},{"section":"resourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"resourcemetricstatus-v2beta1-autoscaling","subsections":[]},{"section":"resourcemetricstatus-v2beta2-autoscaling","subsections":[]},{"section":"resourcemetricsource-v2beta1-autoscaling","subsections":[]},{"section":"resourcemetricsource-v2beta2-autoscaling","subsections":[]},{"section":"queuingconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"prioritylevelconfigurationreference-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"prioritylevelconfigurationcondition-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[{"section":"-strong-status-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"replace-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"read-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"patch-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]}]},{"section":"-strong-read-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"watch-list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"watch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"read-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"delete-collection-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"delete-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"replace-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"patch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"create-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]}]}]},{"section":"policyruleswithsubjects-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"podsmetricstatus-v2beta1-autoscaling","subsections":[]},{"section":"podsmetricstatus-v2beta2-autoscaling","subsections":[]},{"section":"podsmetricsource-v2beta1-autoscaling","subsections":[]},{"section":"podsmetricsource-v2beta2-autoscaling","subsections":[]},{"section":"poddisruptionbudget-v1beta1-policy","subsections":[{"section":"-strong-status-operations-poddisruptionbudget-v1beta1-policy-strong-","subsections":[{"section":"replace-status-poddisruptionbudget-v1beta1-policy","subsections":[]},{"section":"read-status-poddisruptionbudget-v1beta1-policy","subsections":[]},{"section":"patch-status-poddisruptionbudget-v1beta1-policy","subsections":[]}]},{"section":"-strong-read-operations-poddisruptionbudget-v1beta1-policy-strong-","subsections":[{"section":"watch-list-all-namespaces-poddisruptionbudget-v1beta1-policy","subsections":[]},{"section":"watch-list-poddisruptionbudget-v1beta1-policy","subsections":[]},{"section":"watch-poddisruptionbudget-v1beta1-policy","subsections":[]},{"section":"list-all-namespaces-poddisruptionbudget-v1beta1-policy","subsections":[]},{"section":"list-poddisruptionbudget-v1beta1-policy","subsections":[]},{"section":"read-poddisruptionbudget-v1beta1-policy","subsections":[]}]},{"section":"-strong-write-operations-poddisruptionbudget-v1beta1-policy-strong-","subsections":[{"section":"delete-collection-poddisruptionbudget-v1beta1-policy","subsections":[]},{"section":"delete-poddisruptionbudget-v1beta1-policy","subsections":[]},{"section":"replace-poddisruptionbudget-v1beta1-policy","subsections":[]},{"section":"patch-poddisruptionbudget-v1beta1-policy","subsections":[]},{"section":"create-poddisruptionbudget-v1beta1-policy","subsections":[]}]}]},{"section":"overhead-v1alpha1-node-k8s-io","subsections":[]},{"section":"overhead-v1beta1-node-k8s-io","subsections":[]},{"section":"objectmetricstatus-v2beta1-autoscaling","subsections":[]},{"section":"objectmetricstatus-v2beta2-autoscaling","subsections":[]},{"section":"objectmetricsource-v2beta1-autoscaling","subsections":[]},{"section":"objectmetricsource-v2beta2-autoscaling","subsections":[]},{"section":"nonresourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"metricvaluestatus-v2beta2-autoscaling","subsections":[]},{"section":"metrictarget-v2beta2-autoscaling","subsections":[]},{"section":"metricstatus-v2beta1-autoscaling","subsections":[]},{"section":"metricstatus-v2beta2-autoscaling","subsections":[]},{"section":"metricspec-v2beta1-autoscaling","subsections":[]},{"section":"metricspec-v2beta2-autoscaling","subsections":[]},{"section":"metricidentifier-v2beta2-autoscaling","subsections":[]},{"section":"limitedprioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"limitresponse-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"jobtemplatespec-v1beta1-batch","subsections":[]},{"section":"horizontalpodautoscalercondition-v2beta1-autoscaling","subsections":[]},{"section":"horizontalpodautoscalercondition-v2beta2-autoscaling","subsections":[]},{"section":"horizontalpodautoscalerbehavior-v2beta2-autoscaling","subsections":[]},{"section":"horizontalpodautoscaler-v2beta1-autoscaling","subsections":[{"section":"-strong-status-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-","subsections":[{"section":"replace-status-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]},{"section":"read-status-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]},{"section":"patch-status-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]}]},{"section":"-strong-read-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-","subsections":[{"section":"watch-list-all-namespaces-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]},{"section":"watch-list-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]},{"section":"watch-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]},{"section":"list-all-namespaces-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]},{"section":"list-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]},{"section":"read-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]}]},{"section":"-strong-write-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-","subsections":[{"section":"delete-collection-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]},{"section":"delete-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]},{"section":"replace-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]},{"section":"patch-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]},{"section":"create-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]}]}]},{"section":"horizontalpodautoscaler-v2beta2-autoscaling","subsections":[{"section":"-strong-status-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-","subsections":[{"section":"replace-status-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]},{"section":"read-status-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]},{"section":"patch-status-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]}]},{"section":"-strong-read-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-","subsections":[{"section":"watch-list-all-namespaces-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]},{"section":"watch-list-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]},{"section":"watch-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]},{"section":"list-all-namespaces-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]},{"section":"list-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]},{"section":"read-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]}]},{"section":"-strong-write-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-","subsections":[{"section":"delete-collection-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]},{"section":"delete-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]},{"section":"replace-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]},{"section":"patch-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]},{"section":"create-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]}]}]},{"section":"horizontalpodautoscaler-v1-autoscaling","subsections":[{"section":"-strong-status-operations-horizontalpodautoscaler-v1-autoscaling-strong-","subsections":[{"section":"replace-status-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"read-status-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"patch-status-horizontalpodautoscaler-v1-autoscaling","subsections":[]}]},{"section":"-strong-read-operations-horizontalpodautoscaler-v1-autoscaling-strong-","subsections":[{"section":"watch-list-all-namespaces-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"watch-list-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"watch-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"list-all-namespaces-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"list-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"read-horizontalpodautoscaler-v1-autoscaling","subsections":[]}]},{"section":"-strong-write-operations-horizontalpodautoscaler-v1-autoscaling-strong-","subsections":[{"section":"delete-collection-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"delete-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"replace-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"patch-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"create-horizontalpodautoscaler-v1-autoscaling","subsections":[]}]}]},{"section":"hpascalingrules-v2beta2-autoscaling","subsections":[]},{"section":"hpascalingpolicy-v2beta2-autoscaling","subsections":[]},{"section":"groupsubject-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"forzone-v1beta1-discovery-k8s-io","subsections":[]},{"section":"flowschemacondition-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[{"section":"-strong-status-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"replace-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"read-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"patch-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]}]},{"section":"-strong-read-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"watch-list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"watch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"read-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"delete-collection-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"delete-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"replace-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"patch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"create-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]}]}]},{"section":"flowdistinguishermethod-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"externalmetricstatus-v2beta1-autoscaling","subsections":[]},{"section":"externalmetricstatus-v2beta2-autoscaling","subsections":[]},{"section":"externalmetricsource-v2beta1-autoscaling","subsections":[]},{"section":"externalmetricsource-v2beta2-autoscaling","subsections":[]},{"section":"eventseries-v1beta1-events-k8s-io","subsections":[]},{"section":"eventseries-v1-core","subsections":[]},{"section":"event-v1beta1-events-k8s-io","subsections":[{"section":"-strong-read-operations-event-v1beta1-events-k8s-io-strong-","subsections":[{"section":"watch-list-all-namespaces-event-v1beta1-events-k8s-io","subsections":[]},{"section":"watch-list-event-v1beta1-events-k8s-io","subsections":[]},{"section":"watch-event-v1beta1-events-k8s-io","subsections":[]},{"section":"list-all-namespaces-event-v1beta1-events-k8s-io","subsections":[]},{"section":"list-event-v1beta1-events-k8s-io","subsections":[]},{"section":"read-event-v1beta1-events-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-event-v1beta1-events-k8s-io-strong-","subsections":[{"section":"delete-collection-event-v1beta1-events-k8s-io","subsections":[]},{"section":"delete-event-v1beta1-events-k8s-io","subsections":[]},{"section":"replace-event-v1beta1-events-k8s-io","subsections":[]},{"section":"patch-event-v1beta1-events-k8s-io","subsections":[]},{"section":"create-event-v1beta1-events-k8s-io","subsections":[]}]}]},{"section":"event-v1-core","subsections":[{"section":"-strong-read-operations-event-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-event-v1-core","subsections":[]},{"section":"watch-list-event-v1-core","subsections":[]},{"section":"watch-event-v1-core","subsections":[]},{"section":"list-all-namespaces-event-v1-core","subsections":[]},{"section":"list-event-v1-core","subsections":[]},{"section":"read-event-v1-core","subsections":[]}]},{"section":"-strong-write-operations-event-v1-core-strong-","subsections":[{"section":"delete-collection-event-v1-core","subsections":[]},{"section":"delete-event-v1-core","subsections":[]},{"section":"replace-event-v1-core","subsections":[]},{"section":"patch-event-v1-core","subsections":[]},{"section":"create-event-v1-core","subsections":[]}]}]},{"section":"endpointslice-v1beta1-discovery-k8s-io","subsections":[{"section":"-strong-read-operations-endpointslice-v1beta1-discovery-k8s-io-strong-","subsections":[{"section":"watch-list-all-namespaces-endpointslice-v1beta1-discovery-k8s-io","subsections":[]},{"section":"watch-list-endpointslice-v1beta1-discovery-k8s-io","subsections":[]},{"section":"watch-endpointslice-v1beta1-discovery-k8s-io","subsections":[]},{"section":"list-all-namespaces-endpointslice-v1beta1-discovery-k8s-io","subsections":[]},{"section":"list-endpointslice-v1beta1-discovery-k8s-io","subsections":[]},{"section":"read-endpointslice-v1beta1-discovery-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-endpointslice-v1beta1-discovery-k8s-io-strong-","subsections":[{"section":"delete-collection-endpointslice-v1beta1-discovery-k8s-io","subsections":[]},{"section":"delete-endpointslice-v1beta1-discovery-k8s-io","subsections":[]},{"section":"replace-endpointslice-v1beta1-discovery-k8s-io","subsections":[]},{"section":"patch-endpointslice-v1beta1-discovery-k8s-io","subsections":[]},{"section":"create-endpointslice-v1beta1-discovery-k8s-io","subsections":[]}]}]},{"section":"endpointport-v1beta1-discovery-k8s-io","subsections":[]},{"section":"endpointport-v1-discovery-k8s-io","subsections":[]},{"section":"endpointhints-v1beta1-discovery-k8s-io","subsections":[]},{"section":"endpointconditions-v1beta1-discovery-k8s-io","subsections":[]},{"section":"endpoint-v1beta1-discovery-k8s-io","subsections":[]},{"section":"crossversionobjectreference-v2beta1-autoscaling","subsections":[]},{"section":"crossversionobjectreference-v2beta2-autoscaling","subsections":[]},{"section":"crossversionobjectreference-v2-autoscaling","subsections":[]},{"section":"cronjob-v1beta1-batch","subsections":[{"section":"-strong-status-operations-cronjob-v1beta1-batch-strong-","subsections":[{"section":"replace-status-cronjob-v1beta1-batch","subsections":[]},{"section":"read-status-cronjob-v1beta1-batch","subsections":[]},{"section":"patch-status-cronjob-v1beta1-batch","subsections":[]}]},{"section":"-strong-read-operations-cronjob-v1beta1-batch-strong-","subsections":[{"section":"watch-list-all-namespaces-cronjob-v1beta1-batch","subsections":[]},{"section":"watch-list-cronjob-v1beta1-batch","subsections":[]},{"section":"watch-cronjob-v1beta1-batch","subsections":[]},{"section":"list-all-namespaces-cronjob-v1beta1-batch","subsections":[]},{"section":"list-cronjob-v1beta1-batch","subsections":[]},{"section":"read-cronjob-v1beta1-batch","subsections":[]}]},{"section":"-strong-write-operations-cronjob-v1beta1-batch-strong-","subsections":[{"section":"delete-collection-cronjob-v1beta1-batch","subsections":[]},{"section":"delete-cronjob-v1beta1-batch","subsections":[]},{"section":"replace-cronjob-v1beta1-batch","subsections":[]},{"section":"patch-cronjob-v1beta1-batch","subsections":[]},{"section":"create-cronjob-v1beta1-batch","subsections":[]}]}]},{"section":"containerresourcemetricstatus-v2beta1-autoscaling","subsections":[]},{"section":"containerresourcemetricstatus-v2beta2-autoscaling","subsections":[]},{"section":"containerresourcemetricsource-v2beta1-autoscaling","subsections":[]},{"section":"containerresourcemetricsource-v2beta2-autoscaling","subsections":[]},{"section":"csistoragecapacity-v1alpha1-storage-k8s-io","subsections":[{"section":"-strong-read-operations-csistoragecapacity-v1alpha1-storage-k8s-io-strong-","subsections":[{"section":"watch-list-all-namespaces-csistoragecapacity-v1alpha1-storage-k8s-io","subsections":[]},{"section":"watch-list-csistoragecapacity-v1alpha1-storage-k8s-io","subsections":[]},{"section":"watch-csistoragecapacity-v1alpha1-storage-k8s-io","subsections":[]},{"section":"list-all-namespaces-csistoragecapacity-v1alpha1-storage-k8s-io","subsections":[]},{"section":"list-csistoragecapacity-v1alpha1-storage-k8s-io","subsections":[]},{"section":"read-csistoragecapacity-v1alpha1-storage-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-csistoragecapacity-v1alpha1-storage-k8s-io-strong-","subsections":[{"section":"delete-collection-csistoragecapacity-v1alpha1-storage-k8s-io","subsections":[]},{"section":"delete-csistoragecapacity-v1alpha1-storage-k8s-io","subsections":[]},{"section":"replace-csistoragecapacity-v1alpha1-storage-k8s-io","subsections":[]},{"section":"patch-csistoragecapacity-v1alpha1-storage-k8s-io","subsections":[]},{"section":"create-csistoragecapacity-v1alpha1-storage-k8s-io","subsections":[]}]}]},{"section":"-strong-old-api-versions-strong-","subsections":[]},{"section":"windowssecuritycontextoptions-v1-core","subsections":[]},{"section":"weightedpodaffinityterm-v1-core","subsections":[]},{"section":"webhookconversion-v1-apiextensions-k8s-io","subsections":[]},{"section":"webhookclientconfig-v1-admissionregistration-k8s-io","subsections":[]},{"section":"watchevent-v1-meta","subsections":[]},{"section":"vspherevirtualdiskvolumesource-v1-core","subsections":[]},{"section":"volumeprojection-v1-core","subsections":[]},{"section":"volumenoderesources-v1-storage-k8s-io","subsections":[]},{"section":"volumenodeaffinity-v1-core","subsections":[]},{"section":"volumemount-v1-core","subsections":[]},{"section":"volumeerror-v1-storage-k8s-io","subsections":[]},{"section":"volumedevice-v1-core","subsections":[]},{"section":"volumeattachmentsource-v1-storage-k8s-io","subsections":[]},{"section":"validationrule-v1-apiextensions-k8s-io","subsections":[]},{"section":"validatingwebhook-v1-admissionregistration-k8s-io","subsections":[]},{"section":"usersubject-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"userinfo-v1-authentication-k8s-io","subsections":[]},{"section":"uncountedterminatedpods-v1-batch","subsections":[]},{"section":"typedlocalobjectreference-v1-core","subsections":[]},{"section":"topologyspreadconstraint-v1-core","subsections":[]},{"section":"topologyselectorterm-v1-core","subsections":[]},{"section":"topologyselectorlabelrequirement-v1-core","subsections":[]},{"section":"toleration-v1-core","subsections":[]},{"section":"time-v1-meta","subsections":[]},{"section":"taint-v1-core","subsections":[]},{"section":"tcpsocketaction-v1-core","subsections":[]},{"section":"sysctl-v1-core","subsections":[]},{"section":"supplementalgroupsstrategyoptions-v1beta1-policy","subsections":[]},{"section":"subjectrulesreviewstatus-v1-authorization-k8s-io","subsections":[]},{"section":"subject-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"storageversioncondition-v1alpha1-internal-apiserver-k8s-io","subsections":[]},{"section":"storageosvolumesource-v1-core","subsections":[]},{"section":"storageospersistentvolumesource-v1-core","subsections":[]},{"section":"statusdetails-v1-meta","subsections":[]},{"section":"statuscause-v1-meta","subsections":[]},{"section":"status-v1-meta","subsections":[]},{"section":"statefulsetupdatestrategy-v1-apps","subsections":[]},{"section":"statefulsetpersistentvolumeclaimretentionpolicy-v1-apps","subsections":[]},{"section":"statefulsetcondition-v1-apps","subsections":[]},{"section":"sessionaffinityconfig-v1-core","subsections":[]},{"section":"servicereference-v1-admissionregistration-k8s-io","subsections":[]},{"section":"serviceport-v1-core","subsections":[]},{"section":"servicebackendport-v1-networking-k8s-io","subsections":[]},{"section":"serviceaccounttokenprojection-v1-core","subsections":[]},{"section":"serviceaccountsubject-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"serverstorageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]},{"section":"serveraddressbyclientcidr-v1-meta","subsections":[]},{"section":"securitycontext-v1-core","subsections":[]},{"section":"secretvolumesource-v1-core","subsections":[]},{"section":"secretreference-v1-core","subsections":[]},{"section":"secretprojection-v1-core","subsections":[]},{"section":"secretkeyselector-v1-core","subsections":[]},{"section":"secretenvsource-v1-core","subsections":[]},{"section":"seccompprofile-v1-core","subsections":[]},{"section":"scopedresourceselectorrequirement-v1-core","subsections":[]},{"section":"scopeselector-v1-core","subsections":[]},{"section":"scheduling-v1-node-k8s-io","subsections":[]},{"section":"scaleiovolumesource-v1-core","subsections":[]},{"section":"scaleiopersistentvolumesource-v1-core","subsections":[]},{"section":"scale-v1-autoscaling","subsections":[]},{"section":"selinuxstrategyoptions-v1beta1-policy","subsections":[]},{"section":"selinuxoptions-v1-core","subsections":[]},{"section":"runtimeclassstrategyoptions-v1beta1-policy","subsections":[]},{"section":"runasuserstrategyoptions-v1beta1-policy","subsections":[]},{"section":"runasgroupstrategyoptions-v1beta1-policy","subsections":[]},{"section":"rulewithoperations-v1-admissionregistration-k8s-io","subsections":[]},{"section":"rollingupdatestatefulsetstrategy-v1-apps","subsections":[]},{"section":"roleref-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"resourcerule-v1-authorization-k8s-io","subsections":[]},{"section":"resourcerequirements-v1-core","subsections":[]},{"section":"resourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"resourcemetricstatus-v2-autoscaling","subsections":[]},{"section":"resourcemetricsource-v2-autoscaling","subsections":[]},{"section":"resourcefieldselector-v1-core","subsections":[]},{"section":"resourceattributes-v1-authorization-k8s-io","subsections":[]},{"section":"replicationcontrollercondition-v1-core","subsections":[]},{"section":"replicasetcondition-v1-apps","subsections":[]},{"section":"rbdvolumesource-v1-core","subsections":[]},{"section":"rbdpersistentvolumesource-v1-core","subsections":[]},{"section":"quobytevolumesource-v1-core","subsections":[]},{"section":"queuingconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"quantity-resource-core","subsections":[]},{"section":"projectedvolumesource-v1-core","subsections":[]},{"section":"probe-v1-core","subsections":[]},{"section":"prioritylevelconfigurationreference-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"prioritylevelconfigurationcondition-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"preferredschedulingterm-v1-core","subsections":[]},{"section":"preconditions-v1-meta","subsections":[]},{"section":"portworxvolumesource-v1-core","subsections":[]},{"section":"portstatus-v1-core","subsections":[]},{"section":"policyruleswithsubjects-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"policyrule-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"podsmetricstatus-v2-autoscaling","subsections":[]},{"section":"podsmetricsource-v2-autoscaling","subsections":[]},{"section":"podsecuritycontext-v1-core","subsections":[]},{"section":"podreadinessgate-v1-core","subsections":[]},{"section":"podos-v1-core","subsections":[]},{"section":"podip-v1-core","subsections":[]},{"section":"poddnsconfigoption-v1-core","subsections":[]},{"section":"poddnsconfig-v1-core","subsections":[]},{"section":"podcondition-v1-core","subsections":[]},{"section":"podantiaffinity-v1-core","subsections":[]},{"section":"podaffinityterm-v1-core","subsections":[]},{"section":"podaffinity-v1-core","subsections":[]},{"section":"photonpersistentdiskvolumesource-v1-core","subsections":[]},{"section":"persistentvolumeclaimvolumesource-v1-core","subsections":[]},{"section":"persistentvolumeclaimtemplate-v1-core","subsections":[]},{"section":"persistentvolumeclaimcondition-v1-core","subsections":[]},{"section":"patch-v1-meta","subsections":[]},{"section":"ownerreference-v1-meta","subsections":[]},{"section":"overhead-v1-node-k8s-io","subsections":[]},{"section":"objectreference-v1-core","subsections":[]},{"section":"objectmetricstatus-v2-autoscaling","subsections":[]},{"section":"objectmetricsource-v2-autoscaling","subsections":[]},{"section":"objectmeta-v1-meta","subsections":[]},{"section":"objectfieldselector-v1-core","subsections":[]},{"section":"nonresourcerule-v1-authorization-k8s-io","subsections":[]},{"section":"nonresourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"nonresourceattributes-v1-authorization-k8s-io","subsections":[]},{"section":"nodesysteminfo-v1-core","subsections":[]},{"section":"nodeselectorterm-v1-core","subsections":[]},{"section":"nodeselectorrequirement-v1-core","subsections":[]},{"section":"nodeselector-v1-core","subsections":[]},{"section":"nodedaemonendpoints-v1-core","subsections":[]},{"section":"nodeconfigstatus-v1-core","subsections":[]},{"section":"nodeconfigsource-v1-core","subsections":[]},{"section":"nodecondition-v1-core","subsections":[]},{"section":"nodeaffinity-v1-core","subsections":[]},{"section":"nodeaddress-v1-core","subsections":[]},{"section":"networkpolicyport-v1-networking-k8s-io","subsections":[]},{"section":"networkpolicypeer-v1-networking-k8s-io","subsections":[]},{"section":"networkpolicyingressrule-v1-networking-k8s-io","subsections":[]},{"section":"networkpolicyegressrule-v1-networking-k8s-io","subsections":[]},{"section":"namespacecondition-v1-core","subsections":[]},{"section":"nfsvolumesource-v1-core","subsections":[]},{"section":"mutatingwebhook-v1-admissionregistration-k8s-io","subsections":[]},{"section":"microtime-v1-meta","subsections":[]},{"section":"metricvaluestatus-v2-autoscaling","subsections":[]},{"section":"metrictarget-v2-autoscaling","subsections":[]},{"section":"metricstatus-v2-autoscaling","subsections":[]},{"section":"metricspec-v2-autoscaling","subsections":[]},{"section":"metricidentifier-v2-autoscaling","subsections":[]},{"section":"managedfieldsentry-v1-meta","subsections":[]},{"section":"localvolumesource-v1-core","subsections":[]},{"section":"localobjectreference-v1-core","subsections":[]},{"section":"loadbalancerstatus-v1-core","subsections":[]},{"section":"loadbalanceringress-v1-core","subsections":[]},{"section":"listmeta-v1-meta","subsections":[]},{"section":"limitedprioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"limitresponse-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"limitrangeitem-v1-core","subsections":[]},{"section":"lifecyclehandler-v1-core","subsections":[]},{"section":"lifecycle-v1-core","subsections":[]},{"section":"labelselectorrequirement-v1-meta","subsections":[]},{"section":"labelselector-v1-meta","subsections":[]},{"section":"keytopath-v1-core","subsections":[]},{"section":"jobtemplatespec-v1-batch","subsections":[]},{"section":"jobcondition-v1-batch","subsections":[]},{"section":"jsonschemapropsorbool-v1-apiextensions-k8s-io","subsections":[]},{"section":"jsonschemapropsorarray-v1-apiextensions-k8s-io","subsections":[]},{"section":"jsonschemaprops-v1-apiextensions-k8s-io","subsections":[]},{"section":"json-v1-apiextensions-k8s-io","subsections":[]},{"section":"ingresstls-v1-networking-k8s-io","subsections":[]},{"section":"ingressservicebackend-v1-networking-k8s-io","subsections":[]},{"section":"ingressrule-v1-networking-k8s-io","subsections":[]},{"section":"ingressclassparametersreference-v1-networking-k8s-io","subsections":[]},{"section":"ingressbackend-v1-networking-k8s-io","subsections":[]},{"section":"iscsivolumesource-v1-core","subsections":[]},{"section":"iscsipersistentvolumesource-v1-core","subsections":[]},{"section":"ipblock-v1-networking-k8s-io","subsections":[]},{"section":"idrange-v1beta1-policy","subsections":[]},{"section":"hostportrange-v1beta1-policy","subsections":[]},{"section":"hostpathvolumesource-v1-core","subsections":[]},{"section":"hostalias-v1-core","subsections":[]},{"section":"horizontalpodautoscalercondition-v2-autoscaling","subsections":[]},{"section":"horizontalpodautoscalerbehavior-v2-autoscaling","subsections":[]},{"section":"horizontalpodautoscaler-v2-autoscaling","subsections":[]},{"section":"httpingressrulevalue-v1-networking-k8s-io","subsections":[]},{"section":"httpingresspath-v1-networking-k8s-io","subsections":[]},{"section":"httpheader-v1-core","subsections":[]},{"section":"httpgetaction-v1-core","subsections":[]},{"section":"hpascalingrules-v2-autoscaling","subsections":[]},{"section":"hpascalingpolicy-v2-autoscaling","subsections":[]},{"section":"groupversionfordiscovery-v1-meta","subsections":[]},{"section":"groupsubject-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"glusterfsvolumesource-v1-core","subsections":[]},{"section":"glusterfspersistentvolumesource-v1-core","subsections":[]},{"section":"gitrepovolumesource-v1-core","subsections":[]},{"section":"grpcaction-v1-core","subsections":[]},{"section":"gcepersistentdiskvolumesource-v1-core","subsections":[]},{"section":"forzone-v1-discovery-k8s-io","subsections":[]},{"section":"flowschemacondition-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"flowschema-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"flowdistinguishermethod-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"flockervolumesource-v1-core","subsections":[]},{"section":"flexvolumesource-v1-core","subsections":[]},{"section":"flexpersistentvolumesource-v1-core","subsections":[]},{"section":"fieldsv1-v1-meta","subsections":[]},{"section":"fsgroupstrategyoptions-v1beta1-policy","subsections":[]},{"section":"fcvolumesource-v1-core","subsections":[]},{"section":"externalmetricstatus-v2-autoscaling","subsections":[]},{"section":"externalmetricsource-v2-autoscaling","subsections":[]},{"section":"externaldocumentation-v1-apiextensions-k8s-io","subsections":[]},{"section":"execaction-v1-core","subsections":[]},{"section":"eviction-v1-policy","subsections":[]},{"section":"eventsource-v1-core","subsections":[]},{"section":"eventseries-v1-events-k8s-io","subsections":[]},{"section":"ephemeralvolumesource-v1-core","subsections":[]},{"section":"ephemeralcontainer-v1-core","subsections":[]},{"section":"envvarsource-v1-core","subsections":[]},{"section":"envvar-v1-core","subsections":[]},{"section":"envfromsource-v1-core","subsections":[]},{"section":"endpointsubset-v1-core","subsections":[]},{"section":"endpointport-v1-core","subsections":[]},{"section":"endpointhints-v1-discovery-k8s-io","subsections":[]},{"section":"endpointconditions-v1-discovery-k8s-io","subsections":[]},{"section":"endpointaddress-v1-core","subsections":[]},{"section":"endpoint-v1-discovery-k8s-io","subsections":[]},{"section":"emptydirvolumesource-v1-core","subsections":[]},{"section":"downwardapivolumesource-v1-core","subsections":[]},{"section":"downwardapivolumefile-v1-core","subsections":[]},{"section":"downwardapiprojection-v1-core","subsections":[]},{"section":"deploymentcondition-v1-apps","subsections":[]},{"section":"deleteoptions-v1-meta","subsections":[]},{"section":"daemonsetupdatestrategy-v1-apps","subsections":[]},{"section":"daemonsetcondition-v1-apps","subsections":[]},{"section":"daemonendpoint-v1-core","subsections":[]},{"section":"customresourcevalidation-v1-apiextensions-k8s-io","subsections":[]},{"section":"customresourcesubresources-v1-apiextensions-k8s-io","subsections":[]},{"section":"customresourcesubresourcestatus-v1-apiextensions-k8s-io","subsections":[]},{"section":"customresourcesubresourcescale-v1-apiextensions-k8s-io","subsections":[]},{"section":"customresourcedefinitionversion-v1-apiextensions-k8s-io","subsections":[]},{"section":"customresourcedefinitionnames-v1-apiextensions-k8s-io","subsections":[]},{"section":"customresourcedefinitioncondition-v1-apiextensions-k8s-io","subsections":[]},{"section":"customresourceconversion-v1-apiextensions-k8s-io","subsections":[]},{"section":"customresourcecolumndefinition-v1-apiextensions-k8s-io","subsections":[]},{"section":"crossversionobjectreference-v1-autoscaling","subsections":[]},{"section":"containerstatewaiting-v1-core","subsections":[]},{"section":"containerstateterminated-v1-core","subsections":[]},{"section":"containerstaterunning-v1-core","subsections":[]},{"section":"containerstate-v1-core","subsections":[]},{"section":"containerresourcemetricstatus-v2-autoscaling","subsections":[]},{"section":"containerresourcemetricsource-v2-autoscaling","subsections":[]},{"section":"containerport-v1-core","subsections":[]},{"section":"containerimage-v1-core","subsections":[]},{"section":"configmapvolumesource-v1-core","subsections":[]},{"section":"configmapprojection-v1-core","subsections":[]},{"section":"configmapnodeconfigsource-v1-core","subsections":[]},{"section":"configmapkeyselector-v1-core","subsections":[]},{"section":"configmapenvsource-v1-core","subsections":[]},{"section":"condition-v1-meta","subsections":[]},{"section":"componentcondition-v1-core","subsections":[]},{"section":"clientipconfig-v1-core","subsections":[]},{"section":"cindervolumesource-v1-core","subsections":[]},{"section":"cinderpersistentvolumesource-v1-core","subsections":[]},{"section":"certificatesigningrequestcondition-v1-certificates-k8s-io","subsections":[]},{"section":"cephfsvolumesource-v1-core","subsections":[]},{"section":"cephfspersistentvolumesource-v1-core","subsections":[]},{"section":"capabilities-v1-core","subsections":[]},{"section":"csivolumesource-v1-core","subsections":[]},{"section":"csipersistentvolumesource-v1-core","subsections":[]},{"section":"csinodedriver-v1-storage-k8s-io","subsections":[]},{"section":"boundobjectreference-v1-authentication-k8s-io","subsections":[]},{"section":"azurefilevolumesource-v1-core","subsections":[]},{"section":"azurefilepersistentvolumesource-v1-core","subsections":[]},{"section":"azurediskvolumesource-v1-core","subsections":[]},{"section":"attachedvolume-v1-core","subsections":[]},{"section":"allowedhostpath-v1beta1-policy","subsections":[]},{"section":"allowedflexvolume-v1beta1-policy","subsections":[]},{"section":"allowedcsidriver-v1beta1-policy","subsections":[]},{"section":"aggregationrule-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"affinity-v1-core","subsections":[]},{"section":"awselasticblockstorevolumesource-v1-core","subsections":[]},{"section":"apiversions-v1-meta","subsections":[]},{"section":"apiservicecondition-v1-apiregistration-k8s-io","subsections":[]},{"section":"apiresource-v1-meta","subsections":[]},{"section":"apigroup-v1-meta","subsections":[]},{"section":"-strong-definitions-strong-","subsections":[]},{"section":"networkpolicy-v1-networking-k8s-io","subsections":[{"section":"-strong-read-operations-networkpolicy-v1-networking-k8s-io-strong-","subsections":[{"section":"watch-list-all-namespaces-networkpolicy-v1-networking-k8s-io","subsections":[]},{"section":"watch-list-networkpolicy-v1-networking-k8s-io","subsections":[]},{"section":"watch-networkpolicy-v1-networking-k8s-io","subsections":[]},{"section":"list-all-namespaces-networkpolicy-v1-networking-k8s-io","subsections":[]},{"section":"list-networkpolicy-v1-networking-k8s-io","subsections":[]},{"section":"read-networkpolicy-v1-networking-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-networkpolicy-v1-networking-k8s-io-strong-","subsections":[{"section":"delete-collection-networkpolicy-v1-networking-k8s-io","subsections":[]},{"section":"delete-networkpolicy-v1-networking-k8s-io","subsections":[]},{"section":"replace-networkpolicy-v1-networking-k8s-io","subsections":[]},{"section":"patch-networkpolicy-v1-networking-k8s-io","subsections":[]},{"section":"create-networkpolicy-v1-networking-k8s-io","subsections":[]}]}]},{"section":"tokenreview-v1-authentication-k8s-io","subsections":[{"section":"-strong-write-operations-tokenreview-v1-authentication-k8s-io-strong-","subsections":[{"section":"create-tokenreview-v1-authentication-k8s-io","subsections":[]}]}]},{"section":"tokenrequest-v1-authentication-k8s-io","subsections":[]},{"section":"subjectaccessreview-v1-authorization-k8s-io","subsections":[{"section":"-strong-write-operations-subjectaccessreview-v1-authorization-k8s-io-strong-","subsections":[{"section":"create-subjectaccessreview-v1-authorization-k8s-io","subsections":[]}]}]},{"section":"storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[{"section":"-strong-status-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-","subsections":[{"section":"replace-status-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]},{"section":"read-status-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]},{"section":"patch-status-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]}]},{"section":"-strong-read-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-","subsections":[{"section":"watch-list-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]},{"section":"watch-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]},{"section":"list-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]},{"section":"read-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-","subsections":[{"section":"delete-collection-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]},{"section":"delete-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]},{"section":"replace-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]},{"section":"patch-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]},{"section":"create-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]}]}]},{"section":"serviceaccount-v1-core","subsections":[{"section":"-strong-read-operations-serviceaccount-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-serviceaccount-v1-core","subsections":[]},{"section":"watch-list-serviceaccount-v1-core","subsections":[]},{"section":"watch-serviceaccount-v1-core","subsections":[]},{"section":"list-all-namespaces-serviceaccount-v1-core","subsections":[]},{"section":"list-serviceaccount-v1-core","subsections":[]},{"section":"read-serviceaccount-v1-core","subsections":[]}]},{"section":"-strong-write-operations-serviceaccount-v1-core-strong-","subsections":[{"section":"delete-collection-serviceaccount-v1-core","subsections":[]},{"section":"delete-serviceaccount-v1-core","subsections":[]},{"section":"replace-serviceaccount-v1-core","subsections":[]},{"section":"patch-serviceaccount-v1-core","subsections":[]},{"section":"create-serviceaccount-v1-core","subsections":[]}]}]},{"section":"selfsubjectrulesreview-v1-authorization-k8s-io","subsections":[{"section":"-strong-write-operations-selfsubjectrulesreview-v1-authorization-k8s-io-strong-","subsections":[{"section":"create-selfsubjectrulesreview-v1-authorization-k8s-io","subsections":[]}]}]},{"section":"selfsubjectaccessreview-v1-authorization-k8s-io","subsections":[{"section":"-strong-write-operations-selfsubjectaccessreview-v1-authorization-k8s-io-strong-","subsections":[{"section":"create-selfsubjectaccessreview-v1-authorization-k8s-io","subsections":[]}]}]},{"section":"runtimeclass-v1-node-k8s-io","subsections":[{"section":"-strong-read-operations-runtimeclass-v1-node-k8s-io-strong-","subsections":[{"section":"watch-list-runtimeclass-v1-node-k8s-io","subsections":[]},{"section":"watch-runtimeclass-v1-node-k8s-io","subsections":[]},{"section":"list-runtimeclass-v1-node-k8s-io","subsections":[]},{"section":"read-runtimeclass-v1-node-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-runtimeclass-v1-node-k8s-io-strong-","subsections":[{"section":"delete-collection-runtimeclass-v1-node-k8s-io","subsections":[]},{"section":"delete-runtimeclass-v1-node-k8s-io","subsections":[]},{"section":"replace-runtimeclass-v1-node-k8s-io","subsections":[]},{"section":"patch-runtimeclass-v1-node-k8s-io","subsections":[]},{"section":"create-runtimeclass-v1-node-k8s-io","subsections":[]}]}]},{"section":"rolebinding-v1-rbac-authorization-k8s-io","subsections":[{"section":"-strong-read-operations-rolebinding-v1-rbac-authorization-k8s-io-strong-","subsections":[{"section":"watch-list-all-namespaces-rolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"watch-list-rolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"watch-rolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"list-all-namespaces-rolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"list-rolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"read-rolebinding-v1-rbac-authorization-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-rolebinding-v1-rbac-authorization-k8s-io-strong-","subsections":[{"section":"delete-collection-rolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"delete-rolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"replace-rolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"patch-rolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"create-rolebinding-v1-rbac-authorization-k8s-io","subsections":[]}]}]},{"section":"role-v1-rbac-authorization-k8s-io","subsections":[{"section":"-strong-read-operations-role-v1-rbac-authorization-k8s-io-strong-","subsections":[{"section":"watch-list-all-namespaces-role-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"watch-list-role-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"watch-role-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"list-all-namespaces-role-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"list-role-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"read-role-v1-rbac-authorization-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-role-v1-rbac-authorization-k8s-io-strong-","subsections":[{"section":"delete-collection-role-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"delete-role-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"replace-role-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"patch-role-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"create-role-v1-rbac-authorization-k8s-io","subsections":[]}]}]},{"section":"resourcequota-v1-core","subsections":[{"section":"-strong-status-operations-resourcequota-v1-core-strong-","subsections":[{"section":"replace-status-resourcequota-v1-core","subsections":[]},{"section":"read-status-resourcequota-v1-core","subsections":[]},{"section":"patch-status-resourcequota-v1-core","subsections":[]}]},{"section":"-strong-read-operations-resourcequota-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-resourcequota-v1-core","subsections":[]},{"section":"watch-list-resourcequota-v1-core","subsections":[]},{"section":"watch-resourcequota-v1-core","subsections":[]},{"section":"list-all-namespaces-resourcequota-v1-core","subsections":[]},{"section":"list-resourcequota-v1-core","subsections":[]},{"section":"read-resourcequota-v1-core","subsections":[]}]},{"section":"-strong-write-operations-resourcequota-v1-core-strong-","subsections":[{"section":"delete-collection-resourcequota-v1-core","subsections":[]},{"section":"delete-resourcequota-v1-core","subsections":[]},{"section":"replace-resourcequota-v1-core","subsections":[]},{"section":"patch-resourcequota-v1-core","subsections":[]},{"section":"create-resourcequota-v1-core","subsections":[]}]}]},{"section":"prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[{"section":"-strong-status-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"replace-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"read-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"patch-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]}]},{"section":"-strong-read-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"watch-list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"watch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"read-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"delete-collection-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"delete-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"replace-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"patch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"create-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]}]}]},{"section":"persistentvolume-v1-core","subsections":[{"section":"-strong-status-operations-persistentvolume-v1-core-strong-","subsections":[{"section":"replace-status-persistentvolume-v1-core","subsections":[]},{"section":"read-status-persistentvolume-v1-core","subsections":[]},{"section":"patch-status-persistentvolume-v1-core","subsections":[]}]},{"section":"-strong-read-operations-persistentvolume-v1-core-strong-","subsections":[{"section":"watch-list-persistentvolume-v1-core","subsections":[]},{"section":"watch-persistentvolume-v1-core","subsections":[]},{"section":"list-persistentvolume-v1-core","subsections":[]},{"section":"read-persistentvolume-v1-core","subsections":[]}]},{"section":"-strong-write-operations-persistentvolume-v1-core-strong-","subsections":[{"section":"delete-collection-persistentvolume-v1-core","subsections":[]},{"section":"delete-persistentvolume-v1-core","subsections":[]},{"section":"replace-persistentvolume-v1-core","subsections":[]},{"section":"patch-persistentvolume-v1-core","subsections":[]},{"section":"create-persistentvolume-v1-core","subsections":[]}]}]},{"section":"node-v1-core","subsections":[{"section":"-strong-proxy-operations-node-v1-core-strong-","subsections":[{"section":"replace-connect-proxy-path-node-v1-core","subsections":[]},{"section":"replace-connect-proxy-node-v1-core","subsections":[]},{"section":"head-connect-proxy-path-node-v1-core","subsections":[]},{"section":"head-connect-proxy-node-v1-core","subsections":[]},{"section":"get-connect-proxy-path-node-v1-core","subsections":[]},{"section":"get-connect-proxy-node-v1-core","subsections":[]},{"section":"delete-connect-proxy-path-node-v1-core","subsections":[]},{"section":"delete-connect-proxy-node-v1-core","subsections":[]},{"section":"create-connect-proxy-path-node-v1-core","subsections":[]},{"section":"create-connect-proxy-node-v1-core","subsections":[]}]},{"section":"-strong-status-operations-node-v1-core-strong-","subsections":[{"section":"replace-status-node-v1-core","subsections":[]},{"section":"read-status-node-v1-core","subsections":[]},{"section":"patch-status-node-v1-core","subsections":[]}]},{"section":"-strong-read-operations-node-v1-core-strong-","subsections":[{"section":"watch-list-node-v1-core","subsections":[]},{"section":"watch-node-v1-core","subsections":[]},{"section":"list-node-v1-core","subsections":[]},{"section":"read-node-v1-core","subsections":[]}]},{"section":"-strong-write-operations-node-v1-core-strong-","subsections":[{"section":"delete-collection-node-v1-core","subsections":[]},{"section":"delete-node-v1-core","subsections":[]},{"section":"replace-node-v1-core","subsections":[]},{"section":"patch-node-v1-core","subsections":[]},{"section":"create-node-v1-core","subsections":[]}]}]},{"section":"namespace-v1-core","subsections":[{"section":"-strong-status-operations-namespace-v1-core-strong-","subsections":[{"section":"replace-status-namespace-v1-core","subsections":[]},{"section":"read-status-namespace-v1-core","subsections":[]},{"section":"patch-status-namespace-v1-core","subsections":[]}]},{"section":"-strong-read-operations-namespace-v1-core-strong-","subsections":[{"section":"watch-list-namespace-v1-core","subsections":[]},{"section":"watch-namespace-v1-core","subsections":[]},{"section":"list-namespace-v1-core","subsections":[]},{"section":"read-namespace-v1-core","subsections":[]}]},{"section":"-strong-write-operations-namespace-v1-core-strong-","subsections":[{"section":"delete-namespace-v1-core","subsections":[]},{"section":"replace-namespace-v1-core","subsections":[]},{"section":"patch-namespace-v1-core","subsections":[]},{"section":"create-namespace-v1-core","subsections":[]}]}]},{"section":"localsubjectaccessreview-v1-authorization-k8s-io","subsections":[{"section":"-strong-write-operations-localsubjectaccessreview-v1-authorization-k8s-io-strong-","subsections":[{"section":"create-localsubjectaccessreview-v1-authorization-k8s-io","subsections":[]}]}]},{"section":"lease-v1-coordination-k8s-io","subsections":[{"section":"-strong-read-operations-lease-v1-coordination-k8s-io-strong-","subsections":[{"section":"watch-list-all-namespaces-lease-v1-coordination-k8s-io","subsections":[]},{"section":"watch-list-lease-v1-coordination-k8s-io","subsections":[]},{"section":"watch-lease-v1-coordination-k8s-io","subsections":[]},{"section":"list-all-namespaces-lease-v1-coordination-k8s-io","subsections":[]},{"section":"list-lease-v1-coordination-k8s-io","subsections":[]},{"section":"read-lease-v1-coordination-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-lease-v1-coordination-k8s-io-strong-","subsections":[{"section":"delete-collection-lease-v1-coordination-k8s-io","subsections":[]},{"section":"delete-lease-v1-coordination-k8s-io","subsections":[]},{"section":"replace-lease-v1-coordination-k8s-io","subsections":[]},{"section":"patch-lease-v1-coordination-k8s-io","subsections":[]},{"section":"create-lease-v1-coordination-k8s-io","subsections":[]}]}]},{"section":"flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[{"section":"-strong-status-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"replace-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"read-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"patch-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]}]},{"section":"-strong-read-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"watch-list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"watch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"read-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"delete-collection-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"delete-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"replace-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"patch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"create-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]}]}]},{"section":"componentstatus-v1-core","subsections":[{"section":"-strong-read-operations-componentstatus-v1-core-strong-","subsections":[{"section":"list-componentstatus-v1-core","subsections":[]},{"section":"read-componentstatus-v1-core","subsections":[]}]}]},{"section":"clusterrolebinding-v1-rbac-authorization-k8s-io","subsections":[{"section":"-strong-read-operations-clusterrolebinding-v1-rbac-authorization-k8s-io-strong-","subsections":[{"section":"watch-list-clusterrolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"watch-clusterrolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"list-clusterrolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"read-clusterrolebinding-v1-rbac-authorization-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-clusterrolebinding-v1-rbac-authorization-k8s-io-strong-","subsections":[{"section":"delete-collection-clusterrolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"delete-clusterrolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"replace-clusterrolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"patch-clusterrolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"create-clusterrolebinding-v1-rbac-authorization-k8s-io","subsections":[]}]}]},{"section":"clusterrole-v1-rbac-authorization-k8s-io","subsections":[{"section":"-strong-read-operations-clusterrole-v1-rbac-authorization-k8s-io-strong-","subsections":[{"section":"watch-list-clusterrole-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"watch-clusterrole-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"list-clusterrole-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"read-clusterrole-v1-rbac-authorization-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-clusterrole-v1-rbac-authorization-k8s-io-strong-","subsections":[{"section":"delete-collection-clusterrole-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"delete-clusterrole-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"replace-clusterrole-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"patch-clusterrole-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"create-clusterrole-v1-rbac-authorization-k8s-io","subsections":[]}]}]},{"section":"certificatesigningrequest-v1-certificates-k8s-io","subsections":[{"section":"-strong-status-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-","subsections":[{"section":"replace-status-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]},{"section":"read-status-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]},{"section":"patch-status-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]}]},{"section":"-strong-read-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-","subsections":[{"section":"watch-list-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]},{"section":"watch-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]},{"section":"list-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]},{"section":"read-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-","subsections":[{"section":"delete-collection-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]},{"section":"delete-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]},{"section":"replace-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]},{"section":"patch-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]},{"section":"create-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]}]}]},{"section":"binding-v1-core","subsections":[{"section":"-strong-write-operations-binding-v1-core-strong-","subsections":[{"section":"create-binding-v1-core","subsections":[]}]}]},{"section":"apiservice-v1-apiregistration-k8s-io","subsections":[{"section":"-strong-status-operations-apiservice-v1-apiregistration-k8s-io-strong-","subsections":[{"section":"replace-status-apiservice-v1-apiregistration-k8s-io","subsections":[]},{"section":"read-status-apiservice-v1-apiregistration-k8s-io","subsections":[]},{"section":"patch-status-apiservice-v1-apiregistration-k8s-io","subsections":[]}]},{"section":"-strong-read-operations-apiservice-v1-apiregistration-k8s-io-strong-","subsections":[{"section":"watch-list-apiservice-v1-apiregistration-k8s-io","subsections":[]},{"section":"watch-apiservice-v1-apiregistration-k8s-io","subsections":[]},{"section":"list-apiservice-v1-apiregistration-k8s-io","subsections":[]},{"section":"read-apiservice-v1-apiregistration-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-apiservice-v1-apiregistration-k8s-io-strong-","subsections":[{"section":"delete-collection-apiservice-v1-apiregistration-k8s-io","subsections":[]},{"section":"delete-apiservice-v1-apiregistration-k8s-io","subsections":[]},{"section":"replace-apiservice-v1-apiregistration-k8s-io","subsections":[]},{"section":"patch-apiservice-v1-apiregistration-k8s-io","subsections":[]},{"section":"create-apiservice-v1-apiregistration-k8s-io","subsections":[]}]}]},{"section":"-strong-cluster-apis-strong-","subsections":[]},{"section":"podsecuritypolicy-v1beta1-policy","subsections":[{"section":"-strong-read-operations-podsecuritypolicy-v1beta1-policy-strong-","subsections":[{"section":"watch-list-podsecuritypolicy-v1beta1-policy","subsections":[]},{"section":"watch-podsecuritypolicy-v1beta1-policy","subsections":[]},{"section":"list-podsecuritypolicy-v1beta1-policy","subsections":[]},{"section":"read-podsecuritypolicy-v1beta1-policy","subsections":[]}]},{"section":"-strong-write-operations-podsecuritypolicy-v1beta1-policy-strong-","subsections":[{"section":"delete-collection-podsecuritypolicy-v1beta1-policy","subsections":[]},{"section":"delete-podsecuritypolicy-v1beta1-policy","subsections":[]},{"section":"replace-podsecuritypolicy-v1beta1-policy","subsections":[]},{"section":"patch-podsecuritypolicy-v1beta1-policy","subsections":[]},{"section":"create-podsecuritypolicy-v1beta1-policy","subsections":[]}]}]},{"section":"priorityclass-v1-scheduling-k8s-io","subsections":[{"section":"-strong-read-operations-priorityclass-v1-scheduling-k8s-io-strong-","subsections":[{"section":"watch-list-priorityclass-v1-scheduling-k8s-io","subsections":[]},{"section":"watch-priorityclass-v1-scheduling-k8s-io","subsections":[]},{"section":"list-priorityclass-v1-scheduling-k8s-io","subsections":[]},{"section":"read-priorityclass-v1-scheduling-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-priorityclass-v1-scheduling-k8s-io-strong-","subsections":[{"section":"delete-collection-priorityclass-v1-scheduling-k8s-io","subsections":[]},{"section":"delete-priorityclass-v1-scheduling-k8s-io","subsections":[]},{"section":"replace-priorityclass-v1-scheduling-k8s-io","subsections":[]},{"section":"patch-priorityclass-v1-scheduling-k8s-io","subsections":[]},{"section":"create-priorityclass-v1-scheduling-k8s-io","subsections":[]}]}]},{"section":"poddisruptionbudget-v1-policy","subsections":[{"section":"-strong-status-operations-poddisruptionbudget-v1-policy-strong-","subsections":[{"section":"replace-status-poddisruptionbudget-v1-policy","subsections":[]},{"section":"read-status-poddisruptionbudget-v1-policy","subsections":[]},{"section":"patch-status-poddisruptionbudget-v1-policy","subsections":[]}]},{"section":"-strong-read-operations-poddisruptionbudget-v1-policy-strong-","subsections":[{"section":"watch-list-all-namespaces-poddisruptionbudget-v1-policy","subsections":[]},{"section":"watch-list-poddisruptionbudget-v1-policy","subsections":[]},{"section":"watch-poddisruptionbudget-v1-policy","subsections":[]},{"section":"list-all-namespaces-poddisruptionbudget-v1-policy","subsections":[]},{"section":"list-poddisruptionbudget-v1-policy","subsections":[]},{"section":"read-poddisruptionbudget-v1-policy","subsections":[]}]},{"section":"-strong-write-operations-poddisruptionbudget-v1-policy-strong-","subsections":[{"section":"delete-collection-poddisruptionbudget-v1-policy","subsections":[]},{"section":"delete-poddisruptionbudget-v1-policy","subsections":[]},{"section":"replace-poddisruptionbudget-v1-policy","subsections":[]},{"section":"patch-poddisruptionbudget-v1-policy","subsections":[]},{"section":"create-poddisruptionbudget-v1-policy","subsections":[]}]}]},{"section":"podtemplate-v1-core","subsections":[{"section":"-strong-read-operations-podtemplate-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-podtemplate-v1-core","subsections":[]},{"section":"watch-list-podtemplate-v1-core","subsections":[]},{"section":"watch-podtemplate-v1-core","subsections":[]},{"section":"list-all-namespaces-podtemplate-v1-core","subsections":[]},{"section":"list-podtemplate-v1-core","subsections":[]},{"section":"read-podtemplate-v1-core","subsections":[]}]},{"section":"-strong-write-operations-podtemplate-v1-core-strong-","subsections":[{"section":"delete-collection-podtemplate-v1-core","subsections":[]},{"section":"delete-podtemplate-v1-core","subsections":[]},{"section":"replace-podtemplate-v1-core","subsections":[]},{"section":"patch-podtemplate-v1-core","subsections":[]},{"section":"create-podtemplate-v1-core","subsections":[]}]}]},{"section":"validatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[{"section":"-strong-read-operations-validatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-","subsections":[{"section":"watch-list-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"watch-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"list-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"read-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-validatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-","subsections":[{"section":"delete-collection-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"delete-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"replace-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"patch-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"create-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]}]}]},{"section":"mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[{"section":"-strong-read-operations-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-","subsections":[{"section":"watch-list-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"watch-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"list-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"read-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-","subsections":[{"section":"delete-collection-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"delete-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"replace-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"patch-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"create-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]}]}]},{"section":"horizontalpodautoscaler-v1-autoscaling","subsections":[{"section":"-strong-status-operations-horizontalpodautoscaler-v1-autoscaling-strong-","subsections":[{"section":"replace-status-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"read-status-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"patch-status-horizontalpodautoscaler-v1-autoscaling","subsections":[]}]},{"section":"-strong-read-operations-horizontalpodautoscaler-v1-autoscaling-strong-","subsections":[{"section":"watch-list-all-namespaces-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"watch-list-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"watch-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"list-all-namespaces-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"list-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"read-horizontalpodautoscaler-v1-autoscaling","subsections":[]}]},{"section":"-strong-write-operations-horizontalpodautoscaler-v1-autoscaling-strong-","subsections":[{"section":"delete-collection-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"delete-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"replace-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"patch-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"create-horizontalpodautoscaler-v1-autoscaling","subsections":[]}]}]},{"section":"limitrange-v1-core","subsections":[{"section":"-strong-read-operations-limitrange-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-limitrange-v1-core","subsections":[]},{"section":"watch-list-limitrange-v1-core","subsections":[]},{"section":"watch-limitrange-v1-core","subsections":[]},{"section":"list-all-namespaces-limitrange-v1-core","subsections":[]},{"section":"list-limitrange-v1-core","subsections":[]},{"section":"read-limitrange-v1-core","subsections":[]}]},{"section":"-strong-write-operations-limitrange-v1-core-strong-","subsections":[{"section":"delete-collection-limitrange-v1-core","subsections":[]},{"section":"delete-limitrange-v1-core","subsections":[]},{"section":"replace-limitrange-v1-core","subsections":[]},{"section":"patch-limitrange-v1-core","subsections":[]},{"section":"create-limitrange-v1-core","subsections":[]}]}]},{"section":"event-v1-events-k8s-io","subsections":[{"section":"-strong-read-operations-event-v1-events-k8s-io-strong-","subsections":[{"section":"watch-list-all-namespaces-event-v1-events-k8s-io","subsections":[]},{"section":"watch-list-event-v1-events-k8s-io","subsections":[]},{"section":"watch-event-v1-events-k8s-io","subsections":[]},{"section":"list-all-namespaces-event-v1-events-k8s-io","subsections":[]},{"section":"list-event-v1-events-k8s-io","subsections":[]},{"section":"read-event-v1-events-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-event-v1-events-k8s-io-strong-","subsections":[{"section":"delete-collection-event-v1-events-k8s-io","subsections":[]},{"section":"delete-event-v1-events-k8s-io","subsections":[]},{"section":"replace-event-v1-events-k8s-io","subsections":[]},{"section":"patch-event-v1-events-k8s-io","subsections":[]},{"section":"create-event-v1-events-k8s-io","subsections":[]}]}]},{"section":"customresourcedefinition-v1-apiextensions-k8s-io","subsections":[{"section":"-strong-status-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-","subsections":[{"section":"replace-status-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]},{"section":"read-status-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]},{"section":"patch-status-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]}]},{"section":"-strong-read-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-","subsections":[{"section":"watch-list-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]},{"section":"watch-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]},{"section":"list-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]},{"section":"read-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-","subsections":[{"section":"delete-collection-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]},{"section":"delete-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]},{"section":"replace-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]},{"section":"patch-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]},{"section":"create-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]}]}]},{"section":"controllerrevision-v1-apps","subsections":[{"section":"-strong-read-operations-controllerrevision-v1-apps-strong-","subsections":[{"section":"watch-list-all-namespaces-controllerrevision-v1-apps","subsections":[]},{"section":"watch-list-controllerrevision-v1-apps","subsections":[]},{"section":"watch-controllerrevision-v1-apps","subsections":[]},{"section":"list-all-namespaces-controllerrevision-v1-apps","subsections":[]},{"section":"list-controllerrevision-v1-apps","subsections":[]},{"section":"read-controllerrevision-v1-apps","subsections":[]}]},{"section":"-strong-write-operations-controllerrevision-v1-apps-strong-","subsections":[{"section":"delete-collection-controllerrevision-v1-apps","subsections":[]},{"section":"delete-controllerrevision-v1-apps","subsections":[]},{"section":"replace-controllerrevision-v1-apps","subsections":[]},{"section":"patch-controllerrevision-v1-apps","subsections":[]},{"section":"create-controllerrevision-v1-apps","subsections":[]}]}]},{"section":"-strong-metadata-apis-strong-","subsections":[]},{"section":"volumeattachment-v1-storage-k8s-io","subsections":[{"section":"-strong-status-operations-volumeattachment-v1-storage-k8s-io-strong-","subsections":[{"section":"replace-status-volumeattachment-v1-storage-k8s-io","subsections":[]},{"section":"read-status-volumeattachment-v1-storage-k8s-io","subsections":[]},{"section":"patch-status-volumeattachment-v1-storage-k8s-io","subsections":[]}]},{"section":"-strong-read-operations-volumeattachment-v1-storage-k8s-io-strong-","subsections":[{"section":"watch-list-volumeattachment-v1-storage-k8s-io","subsections":[]},{"section":"watch-volumeattachment-v1-storage-k8s-io","subsections":[]},{"section":"list-volumeattachment-v1-storage-k8s-io","subsections":[]},{"section":"read-volumeattachment-v1-storage-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-volumeattachment-v1-storage-k8s-io-strong-","subsections":[{"section":"delete-collection-volumeattachment-v1-storage-k8s-io","subsections":[]},{"section":"delete-volumeattachment-v1-storage-k8s-io","subsections":[]},{"section":"replace-volumeattachment-v1-storage-k8s-io","subsections":[]},{"section":"patch-volumeattachment-v1-storage-k8s-io","subsections":[]},{"section":"create-volumeattachment-v1-storage-k8s-io","subsections":[]}]}]},{"section":"volume-v1-core","subsections":[]},{"section":"csistoragecapacity-v1beta1-storage-k8s-io","subsections":[{"section":"-strong-read-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-","subsections":[{"section":"watch-list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"watch-list-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"watch-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"list-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"read-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-","subsections":[{"section":"delete-collection-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"delete-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"replace-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"patch-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"create-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]}]}]},{"section":"storageclass-v1-storage-k8s-io","subsections":[{"section":"-strong-read-operations-storageclass-v1-storage-k8s-io-strong-","subsections":[{"section":"watch-list-storageclass-v1-storage-k8s-io","subsections":[]},{"section":"watch-storageclass-v1-storage-k8s-io","subsections":[]},{"section":"list-storageclass-v1-storage-k8s-io","subsections":[]},{"section":"read-storageclass-v1-storage-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-storageclass-v1-storage-k8s-io-strong-","subsections":[{"section":"delete-collection-storageclass-v1-storage-k8s-io","subsections":[]},{"section":"delete-storageclass-v1-storage-k8s-io","subsections":[]},{"section":"replace-storageclass-v1-storage-k8s-io","subsections":[]},{"section":"patch-storageclass-v1-storage-k8s-io","subsections":[]},{"section":"create-storageclass-v1-storage-k8s-io","subsections":[]}]}]},{"section":"persistentvolumeclaim-v1-core","subsections":[{"section":"-strong-status-operations-persistentvolumeclaim-v1-core-strong-","subsections":[{"section":"replace-status-persistentvolumeclaim-v1-core","subsections":[]},{"section":"read-status-persistentvolumeclaim-v1-core","subsections":[]},{"section":"patch-status-persistentvolumeclaim-v1-core","subsections":[]}]},{"section":"-strong-read-operations-persistentvolumeclaim-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-persistentvolumeclaim-v1-core","subsections":[]},{"section":"watch-list-persistentvolumeclaim-v1-core","subsections":[]},{"section":"watch-persistentvolumeclaim-v1-core","subsections":[]},{"section":"list-all-namespaces-persistentvolumeclaim-v1-core","subsections":[]},{"section":"list-persistentvolumeclaim-v1-core","subsections":[]},{"section":"read-persistentvolumeclaim-v1-core","subsections":[]}]},{"section":"-strong-write-operations-persistentvolumeclaim-v1-core-strong-","subsections":[{"section":"delete-collection-persistentvolumeclaim-v1-core","subsections":[]},{"section":"delete-persistentvolumeclaim-v1-core","subsections":[]},{"section":"replace-persistentvolumeclaim-v1-core","subsections":[]},{"section":"patch-persistentvolumeclaim-v1-core","subsections":[]},{"section":"create-persistentvolumeclaim-v1-core","subsections":[]}]}]},{"section":"secret-v1-core","subsections":[{"section":"-strong-read-operations-secret-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-secret-v1-core","subsections":[]},{"section":"watch-list-secret-v1-core","subsections":[]},{"section":"watch-secret-v1-core","subsections":[]},{"section":"list-all-namespaces-secret-v1-core","subsections":[]},{"section":"list-secret-v1-core","subsections":[]},{"section":"read-secret-v1-core","subsections":[]}]},{"section":"-strong-write-operations-secret-v1-core-strong-","subsections":[{"section":"delete-collection-secret-v1-core","subsections":[]},{"section":"delete-secret-v1-core","subsections":[]},{"section":"replace-secret-v1-core","subsections":[]},{"section":"patch-secret-v1-core","subsections":[]},{"section":"create-secret-v1-core","subsections":[]}]}]},{"section":"csinode-v1-storage-k8s-io","subsections":[{"section":"-strong-read-operations-csinode-v1-storage-k8s-io-strong-","subsections":[{"section":"watch-list-csinode-v1-storage-k8s-io","subsections":[]},{"section":"watch-csinode-v1-storage-k8s-io","subsections":[]},{"section":"list-csinode-v1-storage-k8s-io","subsections":[]},{"section":"read-csinode-v1-storage-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-csinode-v1-storage-k8s-io-strong-","subsections":[{"section":"delete-collection-csinode-v1-storage-k8s-io","subsections":[]},{"section":"delete-csinode-v1-storage-k8s-io","subsections":[]},{"section":"replace-csinode-v1-storage-k8s-io","subsections":[]},{"section":"patch-csinode-v1-storage-k8s-io","subsections":[]},{"section":"create-csinode-v1-storage-k8s-io","subsections":[]}]}]},{"section":"csidriver-v1-storage-k8s-io","subsections":[{"section":"-strong-read-operations-csidriver-v1-storage-k8s-io-strong-","subsections":[{"section":"watch-list-csidriver-v1-storage-k8s-io","subsections":[]},{"section":"watch-csidriver-v1-storage-k8s-io","subsections":[]},{"section":"list-csidriver-v1-storage-k8s-io","subsections":[]},{"section":"read-csidriver-v1-storage-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-csidriver-v1-storage-k8s-io-strong-","subsections":[{"section":"delete-collection-csidriver-v1-storage-k8s-io","subsections":[]},{"section":"delete-csidriver-v1-storage-k8s-io","subsections":[]},{"section":"replace-csidriver-v1-storage-k8s-io","subsections":[]},{"section":"patch-csidriver-v1-storage-k8s-io","subsections":[]},{"section":"create-csidriver-v1-storage-k8s-io","subsections":[]}]}]},{"section":"configmap-v1-core","subsections":[{"section":"-strong-read-operations-configmap-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-configmap-v1-core","subsections":[]},{"section":"watch-list-configmap-v1-core","subsections":[]},{"section":"watch-configmap-v1-core","subsections":[]},{"section":"list-all-namespaces-configmap-v1-core","subsections":[]},{"section":"list-configmap-v1-core","subsections":[]},{"section":"read-configmap-v1-core","subsections":[]}]},{"section":"-strong-write-operations-configmap-v1-core-strong-","subsections":[{"section":"delete-collection-configmap-v1-core","subsections":[]},{"section":"delete-configmap-v1-core","subsections":[]},{"section":"replace-configmap-v1-core","subsections":[]},{"section":"patch-configmap-v1-core","subsections":[]},{"section":"create-configmap-v1-core","subsections":[]}]}]},{"section":"-strong-config-and-storage-apis-strong-","subsections":[]},{"section":"service-v1-core","subsections":[{"section":"-strong-proxy-operations-service-v1-core-strong-","subsections":[{"section":"replace-connect-proxy-path-service-v1-core","subsections":[]},{"section":"replace-connect-proxy-service-v1-core","subsections":[]},{"section":"head-connect-proxy-path-service-v1-core","subsections":[]},{"section":"head-connect-proxy-service-v1-core","subsections":[]},{"section":"get-connect-proxy-path-service-v1-core","subsections":[]},{"section":"get-connect-proxy-service-v1-core","subsections":[]},{"section":"delete-connect-proxy-path-service-v1-core","subsections":[]},{"section":"delete-connect-proxy-service-v1-core","subsections":[]},{"section":"create-connect-proxy-path-service-v1-core","subsections":[]},{"section":"create-connect-proxy-service-v1-core","subsections":[]}]},{"section":"-strong-status-operations-service-v1-core-strong-","subsections":[{"section":"replace-status-service-v1-core","subsections":[]},{"section":"read-status-service-v1-core","subsections":[]},{"section":"patch-status-service-v1-core","subsections":[]}]},{"section":"-strong-read-operations-service-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-service-v1-core","subsections":[]},{"section":"watch-list-service-v1-core","subsections":[]},{"section":"watch-service-v1-core","subsections":[]},{"section":"list-all-namespaces-service-v1-core","subsections":[]},{"section":"list-service-v1-core","subsections":[]},{"section":"read-service-v1-core","subsections":[]}]},{"section":"-strong-write-operations-service-v1-core-strong-","subsections":[{"section":"delete-collection-service-v1-core","subsections":[]},{"section":"delete-service-v1-core","subsections":[]},{"section":"replace-service-v1-core","subsections":[]},{"section":"patch-service-v1-core","subsections":[]},{"section":"create-service-v1-core","subsections":[]}]}]},{"section":"ingressclass-v1-networking-k8s-io","subsections":[{"section":"-strong-read-operations-ingressclass-v1-networking-k8s-io-strong-","subsections":[{"section":"watch-list-ingressclass-v1-networking-k8s-io","subsections":[]},{"section":"watch-ingressclass-v1-networking-k8s-io","subsections":[]},{"section":"list-ingressclass-v1-networking-k8s-io","subsections":[]},{"section":"read-ingressclass-v1-networking-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-ingressclass-v1-networking-k8s-io-strong-","subsections":[{"section":"delete-collection-ingressclass-v1-networking-k8s-io","subsections":[]},{"section":"delete-ingressclass-v1-networking-k8s-io","subsections":[]},{"section":"replace-ingressclass-v1-networking-k8s-io","subsections":[]},{"section":"patch-ingressclass-v1-networking-k8s-io","subsections":[]},{"section":"create-ingressclass-v1-networking-k8s-io","subsections":[]}]}]},{"section":"ingress-v1-networking-k8s-io","subsections":[{"section":"-strong-status-operations-ingress-v1-networking-k8s-io-strong-","subsections":[{"section":"replace-status-ingress-v1-networking-k8s-io","subsections":[]},{"section":"read-status-ingress-v1-networking-k8s-io","subsections":[]},{"section":"patch-status-ingress-v1-networking-k8s-io","subsections":[]}]},{"section":"-strong-read-operations-ingress-v1-networking-k8s-io-strong-","subsections":[{"section":"watch-list-all-namespaces-ingress-v1-networking-k8s-io","subsections":[]},{"section":"watch-list-ingress-v1-networking-k8s-io","subsections":[]},{"section":"watch-ingress-v1-networking-k8s-io","subsections":[]},{"section":"list-all-namespaces-ingress-v1-networking-k8s-io","subsections":[]},{"section":"list-ingress-v1-networking-k8s-io","subsections":[]},{"section":"read-ingress-v1-networking-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-ingress-v1-networking-k8s-io-strong-","subsections":[{"section":"delete-collection-ingress-v1-networking-k8s-io","subsections":[]},{"section":"delete-ingress-v1-networking-k8s-io","subsections":[]},{"section":"replace-ingress-v1-networking-k8s-io","subsections":[]},{"section":"patch-ingress-v1-networking-k8s-io","subsections":[]},{"section":"create-ingress-v1-networking-k8s-io","subsections":[]}]}]},{"section":"endpointslice-v1-discovery-k8s-io","subsections":[{"section":"-strong-read-operations-endpointslice-v1-discovery-k8s-io-strong-","subsections":[{"section":"watch-list-all-namespaces-endpointslice-v1-discovery-k8s-io","subsections":[]},{"section":"watch-list-endpointslice-v1-discovery-k8s-io","subsections":[]},{"section":"watch-endpointslice-v1-discovery-k8s-io","subsections":[]},{"section":"list-all-namespaces-endpointslice-v1-discovery-k8s-io","subsections":[]},{"section":"list-endpointslice-v1-discovery-k8s-io","subsections":[]},{"section":"read-endpointslice-v1-discovery-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-endpointslice-v1-discovery-k8s-io-strong-","subsections":[{"section":"delete-collection-endpointslice-v1-discovery-k8s-io","subsections":[]},{"section":"delete-endpointslice-v1-discovery-k8s-io","subsections":[]},{"section":"replace-endpointslice-v1-discovery-k8s-io","subsections":[]},{"section":"patch-endpointslice-v1-discovery-k8s-io","subsections":[]},{"section":"create-endpointslice-v1-discovery-k8s-io","subsections":[]}]}]},{"section":"endpoints-v1-core","subsections":[{"section":"-strong-read-operations-endpoints-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-endpoints-v1-core","subsections":[]},{"section":"watch-list-endpoints-v1-core","subsections":[]},{"section":"watch-endpoints-v1-core","subsections":[]},{"section":"list-all-namespaces-endpoints-v1-core","subsections":[]},{"section":"list-endpoints-v1-core","subsections":[]},{"section":"read-endpoints-v1-core","subsections":[]}]},{"section":"-strong-write-operations-endpoints-v1-core-strong-","subsections":[{"section":"delete-collection-endpoints-v1-core","subsections":[]},{"section":"delete-endpoints-v1-core","subsections":[]},{"section":"replace-endpoints-v1-core","subsections":[]},{"section":"patch-endpoints-v1-core","subsections":[]},{"section":"create-endpoints-v1-core","subsections":[]}]}]},{"section":"-strong-service-apis-strong-","subsections":[]},{"section":"statefulset-v1-apps","subsections":[{"section":"-strong-misc-operations-statefulset-v1-apps-strong-","subsections":[{"section":"patch-scale-statefulset-v1-apps","subsections":[]},{"section":"replace-scale-statefulset-v1-apps","subsections":[]},{"section":"read-scale-statefulset-v1-apps","subsections":[]}]},{"section":"-strong-status-operations-statefulset-v1-apps-strong-","subsections":[{"section":"replace-status-statefulset-v1-apps","subsections":[]},{"section":"read-status-statefulset-v1-apps","subsections":[]},{"section":"patch-status-statefulset-v1-apps","subsections":[]}]},{"section":"-strong-read-operations-statefulset-v1-apps-strong-","subsections":[{"section":"watch-list-all-namespaces-statefulset-v1-apps","subsections":[]},{"section":"watch-list-statefulset-v1-apps","subsections":[]},{"section":"watch-statefulset-v1-apps","subsections":[]},{"section":"list-all-namespaces-statefulset-v1-apps","subsections":[]},{"section":"list-statefulset-v1-apps","subsections":[]},{"section":"read-statefulset-v1-apps","subsections":[]}]},{"section":"-strong-write-operations-statefulset-v1-apps-strong-","subsections":[{"section":"delete-collection-statefulset-v1-apps","subsections":[]},{"section":"delete-statefulset-v1-apps","subsections":[]},{"section":"replace-statefulset-v1-apps","subsections":[]},{"section":"patch-statefulset-v1-apps","subsections":[]},{"section":"create-statefulset-v1-apps","subsections":[]}]}]},{"section":"replicationcontroller-v1-core","subsections":[{"section":"-strong-misc-operations-replicationcontroller-v1-core-strong-","subsections":[{"section":"patch-scale-replicationcontroller-v1-core","subsections":[]},{"section":"replace-scale-replicationcontroller-v1-core","subsections":[]},{"section":"read-scale-replicationcontroller-v1-core","subsections":[]}]},{"section":"-strong-status-operations-replicationcontroller-v1-core-strong-","subsections":[{"section":"replace-status-replicationcontroller-v1-core","subsections":[]},{"section":"read-status-replicationcontroller-v1-core","subsections":[]},{"section":"patch-status-replicationcontroller-v1-core","subsections":[]}]},{"section":"-strong-read-operations-replicationcontroller-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-replicationcontroller-v1-core","subsections":[]},{"section":"watch-list-replicationcontroller-v1-core","subsections":[]},{"section":"watch-replicationcontroller-v1-core","subsections":[]},{"section":"list-all-namespaces-replicationcontroller-v1-core","subsections":[]},{"section":"list-replicationcontroller-v1-core","subsections":[]},{"section":"read-replicationcontroller-v1-core","subsections":[]}]},{"section":"-strong-write-operations-replicationcontroller-v1-core-strong-","subsections":[{"section":"delete-collection-replicationcontroller-v1-core","subsections":[]},{"section":"delete-replicationcontroller-v1-core","subsections":[]},{"section":"replace-replicationcontroller-v1-core","subsections":[]},{"section":"patch-replicationcontroller-v1-core","subsections":[]},{"section":"create-replicationcontroller-v1-core","subsections":[]}]}]},{"section":"replicaset-v1-apps","subsections":[{"section":"-strong-misc-operations-replicaset-v1-apps-strong-","subsections":[{"section":"patch-scale-replicaset-v1-apps","subsections":[]},{"section":"replace-scale-replicaset-v1-apps","subsections":[]},{"section":"read-scale-replicaset-v1-apps","subsections":[]}]},{"section":"-strong-status-operations-replicaset-v1-apps-strong-","subsections":[{"section":"replace-status-replicaset-v1-apps","subsections":[]},{"section":"read-status-replicaset-v1-apps","subsections":[]},{"section":"patch-status-replicaset-v1-apps","subsections":[]}]},{"section":"-strong-read-operations-replicaset-v1-apps-strong-","subsections":[{"section":"watch-list-all-namespaces-replicaset-v1-apps","subsections":[]},{"section":"watch-list-replicaset-v1-apps","subsections":[]},{"section":"watch-replicaset-v1-apps","subsections":[]},{"section":"list-all-namespaces-replicaset-v1-apps","subsections":[]},{"section":"list-replicaset-v1-apps","subsections":[]},{"section":"read-replicaset-v1-apps","subsections":[]}]},{"section":"-strong-write-operations-replicaset-v1-apps-strong-","subsections":[{"section":"delete-collection-replicaset-v1-apps","subsections":[]},{"section":"delete-replicaset-v1-apps","subsections":[]},{"section":"replace-replicaset-v1-apps","subsections":[]},{"section":"patch-replicaset-v1-apps","subsections":[]},{"section":"create-replicaset-v1-apps","subsections":[]}]}]},{"section":"pod-v1-core","subsections":[{"section":"-strong-misc-operations-pod-v1-core-strong-","subsections":[{"section":"read-log-pod-v1-core","subsections":[]}]},{"section":"-strong-proxy-operations-pod-v1-core-strong-","subsections":[{"section":"replace-connect-proxy-path-pod-v1-core","subsections":[]},{"section":"replace-connect-proxy-pod-v1-core","subsections":[]},{"section":"head-connect-proxy-path-pod-v1-core","subsections":[]},{"section":"head-connect-proxy-pod-v1-core","subsections":[]},{"section":"get-connect-proxy-path-pod-v1-core","subsections":[]},{"section":"get-connect-proxy-pod-v1-core","subsections":[]},{"section":"get-connect-portforward-pod-v1-core","subsections":[]},{"section":"delete-connect-proxy-path-pod-v1-core","subsections":[]},{"section":"delete-connect-proxy-pod-v1-core","subsections":[]},{"section":"create-connect-proxy-path-pod-v1-core","subsections":[]},{"section":"create-connect-proxy-pod-v1-core","subsections":[]},{"section":"create-connect-portforward-pod-v1-core","subsections":[]}]},{"section":"-strong-ephemeralcontainers-operations-pod-v1-core-strong-","subsections":[{"section":"replace-ephemeralcontainers-pod-v1-core","subsections":[]},{"section":"read-ephemeralcontainers-pod-v1-core","subsections":[]},{"section":"patch-ephemeralcontainers-pod-v1-core","subsections":[]}]},{"section":"-strong-status-operations-pod-v1-core-strong-","subsections":[{"section":"replace-status-pod-v1-core","subsections":[]},{"section":"read-status-pod-v1-core","subsections":[]},{"section":"patch-status-pod-v1-core","subsections":[]}]},{"section":"-strong-read-operations-pod-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-pod-v1-core","subsections":[]},{"section":"watch-list-pod-v1-core","subsections":[]},{"section":"watch-pod-v1-core","subsections":[]},{"section":"list-all-namespaces-pod-v1-core","subsections":[]},{"section":"list-pod-v1-core","subsections":[]},{"section":"read-pod-v1-core","subsections":[]}]},{"section":"-strong-write-operations-pod-v1-core-strong-","subsections":[{"section":"delete-collection-pod-v1-core","subsections":[]},{"section":"delete-pod-v1-core","subsections":[]},{"section":"replace-pod-v1-core","subsections":[]},{"section":"patch-pod-v1-core","subsections":[]},{"section":"create-eviction-pod-v1-core","subsections":[]},{"section":"create-pod-v1-core","subsections":[]}]}]},{"section":"job-v1-batch","subsections":[{"section":"-strong-status-operations-job-v1-batch-strong-","subsections":[{"section":"replace-status-job-v1-batch","subsections":[]},{"section":"read-status-job-v1-batch","subsections":[]},{"section":"patch-status-job-v1-batch","subsections":[]}]},{"section":"-strong-read-operations-job-v1-batch-strong-","subsections":[{"section":"watch-list-all-namespaces-job-v1-batch","subsections":[]},{"section":"watch-list-job-v1-batch","subsections":[]},{"section":"watch-job-v1-batch","subsections":[]},{"section":"list-all-namespaces-job-v1-batch","subsections":[]},{"section":"list-job-v1-batch","subsections":[]},{"section":"read-job-v1-batch","subsections":[]}]},{"section":"-strong-write-operations-job-v1-batch-strong-","subsections":[{"section":"delete-collection-job-v1-batch","subsections":[]},{"section":"delete-job-v1-batch","subsections":[]},{"section":"replace-job-v1-batch","subsections":[]},{"section":"patch-job-v1-batch","subsections":[]},{"section":"create-job-v1-batch","subsections":[]}]}]},{"section":"deployment-v1-apps","subsections":[{"section":"-strong-misc-operations-deployment-v1-apps-strong-","subsections":[{"section":"patch-scale-deployment-v1-apps","subsections":[]},{"section":"replace-scale-deployment-v1-apps","subsections":[]},{"section":"read-scale-deployment-v1-apps","subsections":[]}]},{"section":"-strong-status-operations-deployment-v1-apps-strong-","subsections":[{"section":"replace-status-deployment-v1-apps","subsections":[]},{"section":"read-status-deployment-v1-apps","subsections":[]},{"section":"patch-status-deployment-v1-apps","subsections":[]}]},{"section":"-strong-read-operations-deployment-v1-apps-strong-","subsections":[{"section":"watch-list-all-namespaces-deployment-v1-apps","subsections":[]},{"section":"watch-list-deployment-v1-apps","subsections":[]},{"section":"watch-deployment-v1-apps","subsections":[]},{"section":"list-all-namespaces-deployment-v1-apps","subsections":[]},{"section":"list-deployment-v1-apps","subsections":[]},{"section":"read-deployment-v1-apps","subsections":[]}]},{"section":"-strong-write-operations-deployment-v1-apps-strong-","subsections":[{"section":"delete-collection-deployment-v1-apps","subsections":[]},{"section":"delete-deployment-v1-apps","subsections":[]},{"section":"replace-deployment-v1-apps","subsections":[]},{"section":"patch-deployment-v1-apps","subsections":[]},{"section":"create-deployment-v1-apps","subsections":[]}]}]},{"section":"daemonset-v1-apps","subsections":[{"section":"-strong-status-operations-daemonset-v1-apps-strong-","subsections":[{"section":"replace-status-daemonset-v1-apps","subsections":[]},{"section":"read-status-daemonset-v1-apps","subsections":[]},{"section":"patch-status-daemonset-v1-apps","subsections":[]}]},{"section":"-strong-read-operations-daemonset-v1-apps-strong-","subsections":[{"section":"watch-list-all-namespaces-daemonset-v1-apps","subsections":[]},{"section":"watch-list-daemonset-v1-apps","subsections":[]},{"section":"watch-daemonset-v1-apps","subsections":[]},{"section":"list-all-namespaces-daemonset-v1-apps","subsections":[]},{"section":"list-daemonset-v1-apps","subsections":[]},{"section":"read-daemonset-v1-apps","subsections":[]}]},{"section":"-strong-write-operations-daemonset-v1-apps-strong-","subsections":[{"section":"delete-collection-daemonset-v1-apps","subsections":[]},{"section":"delete-daemonset-v1-apps","subsections":[]},{"section":"replace-daemonset-v1-apps","subsections":[]},{"section":"patch-daemonset-v1-apps","subsections":[]},{"section":"create-daemonset-v1-apps","subsections":[]}]}]},{"section":"cronjob-v1-batch","subsections":[{"section":"-strong-status-operations-cronjob-v1-batch-strong-","subsections":[{"section":"replace-status-cronjob-v1-batch","subsections":[]},{"section":"read-status-cronjob-v1-batch","subsections":[]},{"section":"patch-status-cronjob-v1-batch","subsections":[]}]},{"section":"-strong-read-operations-cronjob-v1-batch-strong-","subsections":[{"section":"watch-list-all-namespaces-cronjob-v1-batch","subsections":[]},{"section":"watch-list-cronjob-v1-batch","subsections":[]},{"section":"watch-cronjob-v1-batch","subsections":[]},{"section":"list-all-namespaces-cronjob-v1-batch","subsections":[]},{"section":"list-cronjob-v1-batch","subsections":[]},{"section":"read-cronjob-v1-batch","subsections":[]}]},{"section":"-strong-write-operations-cronjob-v1-batch-strong-","subsections":[{"section":"delete-collection-cronjob-v1-batch","subsections":[]},{"section":"delete-cronjob-v1-batch","subsections":[]},{"section":"replace-cronjob-v1-batch","subsections":[]},{"section":"patch-cronjob-v1-batch","subsections":[]},{"section":"create-cronjob-v1-batch","subsections":[]}]}]},{"section":"container-v1-core","subsections":[]},{"section":"-strong-workloads-apis-strong-","subsections":[]},{"section":"-strong-api-groups-strong-","subsections":[]},{"section":"-strong-api-overview-strong-","subsections":[]}],"flatToc":["webhookclientconfig-v1-apiextensions-k8s-io","usersubject-v1beta1-flowcontrol-apiserver-k8s-io","tokenrequest-v1-storage-k8s-io","subject-v1beta1-flowcontrol-apiserver-k8s-io","subject-v1-rbac-authorization-k8s-io","servicereference-v1-apiregistration-k8s-io","servicereference-v1-apiextensions-k8s-io","serviceaccountsubject-v1beta1-flowcontrol-apiserver-k8s-io","scheduling-v1alpha1-node-k8s-io","scheduling-v1beta1-node-k8s-io","watch-list-runtimeclass-v1alpha1-node-k8s-io","watch-runtimeclass-v1alpha1-node-k8s-io","list-runtimeclass-v1alpha1-node-k8s-io","read-runtimeclass-v1alpha1-node-k8s-io","-strong-read-operations-runtimeclass-v1alpha1-node-k8s-io-strong-","delete-collection-runtimeclass-v1alpha1-node-k8s-io","delete-runtimeclass-v1alpha1-node-k8s-io","replace-runtimeclass-v1alpha1-node-k8s-io","patch-runtimeclass-v1alpha1-node-k8s-io","create-runtimeclass-v1alpha1-node-k8s-io","-strong-write-operations-runtimeclass-v1alpha1-node-k8s-io-strong-","runtimeclass-v1alpha1-node-k8s-io","watch-list-runtimeclass-v1beta1-node-k8s-io","watch-runtimeclass-v1beta1-node-k8s-io","list-runtimeclass-v1beta1-node-k8s-io","read-runtimeclass-v1beta1-node-k8s-io","-strong-read-operations-runtimeclass-v1beta1-node-k8s-io-strong-","delete-collection-runtimeclass-v1beta1-node-k8s-io","delete-runtimeclass-v1beta1-node-k8s-io","replace-runtimeclass-v1beta1-node-k8s-io","patch-runtimeclass-v1beta1-node-k8s-io","create-runtimeclass-v1beta1-node-k8s-io","-strong-write-operations-runtimeclass-v1beta1-node-k8s-io-strong-","runtimeclass-v1beta1-node-k8s-io","resourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io","resourcemetricstatus-v2beta1-autoscaling","resourcemetricstatus-v2beta2-autoscaling","resourcemetricsource-v2beta1-autoscaling","resourcemetricsource-v2beta2-autoscaling","queuingconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","prioritylevelconfigurationreference-v1beta1-flowcontrol-apiserver-k8s-io","prioritylevelconfigurationcondition-v1beta1-flowcontrol-apiserver-k8s-io","replace-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","read-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","patch-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","-strong-status-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-","watch-list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","watch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","read-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","-strong-read-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-","delete-collection-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","delete-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","replace-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","patch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","create-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","-strong-write-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-","prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","policyruleswithsubjects-v1beta1-flowcontrol-apiserver-k8s-io","podsmetricstatus-v2beta1-autoscaling","podsmetricstatus-v2beta2-autoscaling","podsmetricsource-v2beta1-autoscaling","podsmetricsource-v2beta2-autoscaling","replace-status-poddisruptionbudget-v1beta1-policy","read-status-poddisruptionbudget-v1beta1-policy","patch-status-poddisruptionbudget-v1beta1-policy","-strong-status-operations-poddisruptionbudget-v1beta1-policy-strong-","watch-list-all-namespaces-poddisruptionbudget-v1beta1-policy","watch-list-poddisruptionbudget-v1beta1-policy","watch-poddisruptionbudget-v1beta1-policy","list-all-namespaces-poddisruptionbudget-v1beta1-policy","list-poddisruptionbudget-v1beta1-policy","read-poddisruptionbudget-v1beta1-policy","-strong-read-operations-poddisruptionbudget-v1beta1-policy-strong-","delete-collection-poddisruptionbudget-v1beta1-policy","delete-poddisruptionbudget-v1beta1-policy","replace-poddisruptionbudget-v1beta1-policy","patch-poddisruptionbudget-v1beta1-policy","create-poddisruptionbudget-v1beta1-policy","-strong-write-operations-poddisruptionbudget-v1beta1-policy-strong-","poddisruptionbudget-v1beta1-policy","overhead-v1alpha1-node-k8s-io","overhead-v1beta1-node-k8s-io","objectmetricstatus-v2beta1-autoscaling","objectmetricstatus-v2beta2-autoscaling","objectmetricsource-v2beta1-autoscaling","objectmetricsource-v2beta2-autoscaling","nonresourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io","metricvaluestatus-v2beta2-autoscaling","metrictarget-v2beta2-autoscaling","metricstatus-v2beta1-autoscaling","metricstatus-v2beta2-autoscaling","metricspec-v2beta1-autoscaling","metricspec-v2beta2-autoscaling","metricidentifier-v2beta2-autoscaling","limitedprioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","limitresponse-v1beta1-flowcontrol-apiserver-k8s-io","jobtemplatespec-v1beta1-batch","horizontalpodautoscalercondition-v2beta1-autoscaling","horizontalpodautoscalercondition-v2beta2-autoscaling","horizontalpodautoscalerbehavior-v2beta2-autoscaling","replace-status-horizontalpodautoscaler-v2beta1-autoscaling","read-status-horizontalpodautoscaler-v2beta1-autoscaling","patch-status-horizontalpodautoscaler-v2beta1-autoscaling","-strong-status-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-","watch-list-all-namespaces-horizontalpodautoscaler-v2beta1-autoscaling","watch-list-horizontalpodautoscaler-v2beta1-autoscaling","watch-horizontalpodautoscaler-v2beta1-autoscaling","list-all-namespaces-horizontalpodautoscaler-v2beta1-autoscaling","list-horizontalpodautoscaler-v2beta1-autoscaling","read-horizontalpodautoscaler-v2beta1-autoscaling","-strong-read-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-","delete-collection-horizontalpodautoscaler-v2beta1-autoscaling","delete-horizontalpodautoscaler-v2beta1-autoscaling","replace-horizontalpodautoscaler-v2beta1-autoscaling","patch-horizontalpodautoscaler-v2beta1-autoscaling","create-horizontalpodautoscaler-v2beta1-autoscaling","-strong-write-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-","horizontalpodautoscaler-v2beta1-autoscaling","replace-status-horizontalpodautoscaler-v2beta2-autoscaling","read-status-horizontalpodautoscaler-v2beta2-autoscaling","patch-status-horizontalpodautoscaler-v2beta2-autoscaling","-strong-status-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-","watch-list-all-namespaces-horizontalpodautoscaler-v2beta2-autoscaling","watch-list-horizontalpodautoscaler-v2beta2-autoscaling","watch-horizontalpodautoscaler-v2beta2-autoscaling","list-all-namespaces-horizontalpodautoscaler-v2beta2-autoscaling","list-horizontalpodautoscaler-v2beta2-autoscaling","read-horizontalpodautoscaler-v2beta2-autoscaling","-strong-read-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-","delete-collection-horizontalpodautoscaler-v2beta2-autoscaling","delete-horizontalpodautoscaler-v2beta2-autoscaling","replace-horizontalpodautoscaler-v2beta2-autoscaling","patch-horizontalpodautoscaler-v2beta2-autoscaling","create-horizontalpodautoscaler-v2beta2-autoscaling","-strong-write-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-","horizontalpodautoscaler-v2beta2-autoscaling","replace-status-horizontalpodautoscaler-v1-autoscaling","read-status-horizontalpodautoscaler-v1-autoscaling","patch-status-horizontalpodautoscaler-v1-autoscaling","-strong-status-operations-horizontalpodautoscaler-v1-autoscaling-strong-","watch-list-all-namespaces-horizontalpodautoscaler-v1-autoscaling","watch-list-horizontalpodautoscaler-v1-autoscaling","watch-horizontalpodautoscaler-v1-autoscaling","list-all-namespaces-horizontalpodautoscaler-v1-autoscaling","list-horizontalpodautoscaler-v1-autoscaling","read-horizontalpodautoscaler-v1-autoscaling","-strong-read-operations-horizontalpodautoscaler-v1-autoscaling-strong-","delete-collection-horizontalpodautoscaler-v1-autoscaling","delete-horizontalpodautoscaler-v1-autoscaling","replace-horizontalpodautoscaler-v1-autoscaling","patch-horizontalpodautoscaler-v1-autoscaling","create-horizontalpodautoscaler-v1-autoscaling","-strong-write-operations-horizontalpodautoscaler-v1-autoscaling-strong-","horizontalpodautoscaler-v1-autoscaling","hpascalingrules-v2beta2-autoscaling","hpascalingpolicy-v2beta2-autoscaling","groupsubject-v1beta1-flowcontrol-apiserver-k8s-io","forzone-v1beta1-discovery-k8s-io","flowschemacondition-v1beta1-flowcontrol-apiserver-k8s-io","replace-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","read-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","patch-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","-strong-status-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-","watch-list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","watch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","read-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","-strong-read-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-","delete-collection-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","delete-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","replace-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","patch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","create-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","-strong-write-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-","flowschema-v1beta1-flowcontrol-apiserver-k8s-io","flowdistinguishermethod-v1beta1-flowcontrol-apiserver-k8s-io","externalmetricstatus-v2beta1-autoscaling","externalmetricstatus-v2beta2-autoscaling","externalmetricsource-v2beta1-autoscaling","externalmetricsource-v2beta2-autoscaling","eventseries-v1beta1-events-k8s-io","eventseries-v1-core","watch-list-all-namespaces-event-v1beta1-events-k8s-io","watch-list-event-v1beta1-events-k8s-io","watch-event-v1beta1-events-k8s-io","list-all-namespaces-event-v1beta1-events-k8s-io","list-event-v1beta1-events-k8s-io","read-event-v1beta1-events-k8s-io","-strong-read-operations-event-v1beta1-events-k8s-io-strong-","delete-collection-event-v1beta1-events-k8s-io","delete-event-v1beta1-events-k8s-io","replace-event-v1beta1-events-k8s-io","patch-event-v1beta1-events-k8s-io","create-event-v1beta1-events-k8s-io","-strong-write-operations-event-v1beta1-events-k8s-io-strong-","event-v1beta1-events-k8s-io","watch-list-all-namespaces-event-v1-core","watch-list-event-v1-core","watch-event-v1-core","list-all-namespaces-event-v1-core","list-event-v1-core","read-event-v1-core","-strong-read-operations-event-v1-core-strong-","delete-collection-event-v1-core","delete-event-v1-core","replace-event-v1-core","patch-event-v1-core","create-event-v1-core","-strong-write-operations-event-v1-core-strong-","event-v1-core","watch-list-all-namespaces-endpointslice-v1beta1-discovery-k8s-io","watch-list-endpointslice-v1beta1-discovery-k8s-io","watch-endpointslice-v1beta1-discovery-k8s-io","list-all-namespaces-endpointslice-v1beta1-discovery-k8s-io","list-endpointslice-v1beta1-discovery-k8s-io","read-endpointslice-v1beta1-discovery-k8s-io","-strong-read-operations-endpointslice-v1beta1-discovery-k8s-io-strong-","delete-collection-endpointslice-v1beta1-discovery-k8s-io","delete-endpointslice-v1beta1-discovery-k8s-io","replace-endpointslice-v1beta1-discovery-k8s-io","patch-endpointslice-v1beta1-discovery-k8s-io","create-endpointslice-v1beta1-discovery-k8s-io","-strong-write-operations-endpointslice-v1beta1-discovery-k8s-io-strong-","endpointslice-v1beta1-discovery-k8s-io","endpointport-v1beta1-discovery-k8s-io","endpointport-v1-discovery-k8s-io","endpointhints-v1beta1-discovery-k8s-io","endpointconditions-v1beta1-discovery-k8s-io","endpoint-v1beta1-discovery-k8s-io","crossversionobjectreference-v2beta1-autoscaling","crossversionobjectreference-v2beta2-autoscaling","crossversionobjectreference-v2-autoscaling","replace-status-cronjob-v1beta1-batch","read-status-cronjob-v1beta1-batch","patch-status-cronjob-v1beta1-batch","-strong-status-operations-cronjob-v1beta1-batch-strong-","watch-list-all-namespaces-cronjob-v1beta1-batch","watch-list-cronjob-v1beta1-batch","watch-cronjob-v1beta1-batch","list-all-namespaces-cronjob-v1beta1-batch","list-cronjob-v1beta1-batch","read-cronjob-v1beta1-batch","-strong-read-operations-cronjob-v1beta1-batch-strong-","delete-collection-cronjob-v1beta1-batch","delete-cronjob-v1beta1-batch","replace-cronjob-v1beta1-batch","patch-cronjob-v1beta1-batch","create-cronjob-v1beta1-batch","-strong-write-operations-cronjob-v1beta1-batch-strong-","cronjob-v1beta1-batch","containerresourcemetricstatus-v2beta1-autoscaling","containerresourcemetricstatus-v2beta2-autoscaling","containerresourcemetricsource-v2beta1-autoscaling","containerresourcemetricsource-v2beta2-autoscaling","watch-list-all-namespaces-csistoragecapacity-v1alpha1-storage-k8s-io","watch-list-csistoragecapacity-v1alpha1-storage-k8s-io","watch-csistoragecapacity-v1alpha1-storage-k8s-io","list-all-namespaces-csistoragecapacity-v1alpha1-storage-k8s-io","list-csistoragecapacity-v1alpha1-storage-k8s-io","read-csistoragecapacity-v1alpha1-storage-k8s-io","-strong-read-operations-csistoragecapacity-v1alpha1-storage-k8s-io-strong-","delete-collection-csistoragecapacity-v1alpha1-storage-k8s-io","delete-csistoragecapacity-v1alpha1-storage-k8s-io","replace-csistoragecapacity-v1alpha1-storage-k8s-io","patch-csistoragecapacity-v1alpha1-storage-k8s-io","create-csistoragecapacity-v1alpha1-storage-k8s-io","-strong-write-operations-csistoragecapacity-v1alpha1-storage-k8s-io-strong-","csistoragecapacity-v1alpha1-storage-k8s-io","-strong-old-api-versions-strong-","windowssecuritycontextoptions-v1-core","weightedpodaffinityterm-v1-core","webhookconversion-v1-apiextensions-k8s-io","webhookclientconfig-v1-admissionregistration-k8s-io","watchevent-v1-meta","vspherevirtualdiskvolumesource-v1-core","volumeprojection-v1-core","volumenoderesources-v1-storage-k8s-io","volumenodeaffinity-v1-core","volumemount-v1-core","volumeerror-v1-storage-k8s-io","volumedevice-v1-core","volumeattachmentsource-v1-storage-k8s-io","validationrule-v1-apiextensions-k8s-io","validatingwebhook-v1-admissionregistration-k8s-io","usersubject-v1beta2-flowcontrol-apiserver-k8s-io","userinfo-v1-authentication-k8s-io","uncountedterminatedpods-v1-batch","typedlocalobjectreference-v1-core","topologyspreadconstraint-v1-core","topologyselectorterm-v1-core","topologyselectorlabelrequirement-v1-core","toleration-v1-core","time-v1-meta","taint-v1-core","tcpsocketaction-v1-core","sysctl-v1-core","supplementalgroupsstrategyoptions-v1beta1-policy","subjectrulesreviewstatus-v1-authorization-k8s-io","subject-v1beta2-flowcontrol-apiserver-k8s-io","storageversioncondition-v1alpha1-internal-apiserver-k8s-io","storageosvolumesource-v1-core","storageospersistentvolumesource-v1-core","statusdetails-v1-meta","statuscause-v1-meta","status-v1-meta","statefulsetupdatestrategy-v1-apps","statefulsetpersistentvolumeclaimretentionpolicy-v1-apps","statefulsetcondition-v1-apps","sessionaffinityconfig-v1-core","servicereference-v1-admissionregistration-k8s-io","serviceport-v1-core","servicebackendport-v1-networking-k8s-io","serviceaccounttokenprojection-v1-core","serviceaccountsubject-v1beta2-flowcontrol-apiserver-k8s-io","serverstorageversion-v1alpha1-internal-apiserver-k8s-io","serveraddressbyclientcidr-v1-meta","securitycontext-v1-core","secretvolumesource-v1-core","secretreference-v1-core","secretprojection-v1-core","secretkeyselector-v1-core","secretenvsource-v1-core","seccompprofile-v1-core","scopedresourceselectorrequirement-v1-core","scopeselector-v1-core","scheduling-v1-node-k8s-io","scaleiovolumesource-v1-core","scaleiopersistentvolumesource-v1-core","scale-v1-autoscaling","selinuxstrategyoptions-v1beta1-policy","selinuxoptions-v1-core","runtimeclassstrategyoptions-v1beta1-policy","runasuserstrategyoptions-v1beta1-policy","runasgroupstrategyoptions-v1beta1-policy","rulewithoperations-v1-admissionregistration-k8s-io","rollingupdatestatefulsetstrategy-v1-apps","roleref-v1-rbac-authorization-k8s-io","resourcerule-v1-authorization-k8s-io","resourcerequirements-v1-core","resourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io","resourcemetricstatus-v2-autoscaling","resourcemetricsource-v2-autoscaling","resourcefieldselector-v1-core","resourceattributes-v1-authorization-k8s-io","replicationcontrollercondition-v1-core","replicasetcondition-v1-apps","rbdvolumesource-v1-core","rbdpersistentvolumesource-v1-core","quobytevolumesource-v1-core","queuingconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","quantity-resource-core","projectedvolumesource-v1-core","probe-v1-core","prioritylevelconfigurationreference-v1beta2-flowcontrol-apiserver-k8s-io","prioritylevelconfigurationcondition-v1beta2-flowcontrol-apiserver-k8s-io","prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","preferredschedulingterm-v1-core","preconditions-v1-meta","portworxvolumesource-v1-core","portstatus-v1-core","policyruleswithsubjects-v1beta2-flowcontrol-apiserver-k8s-io","policyrule-v1-rbac-authorization-k8s-io","podsmetricstatus-v2-autoscaling","podsmetricsource-v2-autoscaling","podsecuritycontext-v1-core","podreadinessgate-v1-core","podos-v1-core","podip-v1-core","poddnsconfigoption-v1-core","poddnsconfig-v1-core","podcondition-v1-core","podantiaffinity-v1-core","podaffinityterm-v1-core","podaffinity-v1-core","photonpersistentdiskvolumesource-v1-core","persistentvolumeclaimvolumesource-v1-core","persistentvolumeclaimtemplate-v1-core","persistentvolumeclaimcondition-v1-core","patch-v1-meta","ownerreference-v1-meta","overhead-v1-node-k8s-io","objectreference-v1-core","objectmetricstatus-v2-autoscaling","objectmetricsource-v2-autoscaling","objectmeta-v1-meta","objectfieldselector-v1-core","nonresourcerule-v1-authorization-k8s-io","nonresourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io","nonresourceattributes-v1-authorization-k8s-io","nodesysteminfo-v1-core","nodeselectorterm-v1-core","nodeselectorrequirement-v1-core","nodeselector-v1-core","nodedaemonendpoints-v1-core","nodeconfigstatus-v1-core","nodeconfigsource-v1-core","nodecondition-v1-core","nodeaffinity-v1-core","nodeaddress-v1-core","networkpolicyport-v1-networking-k8s-io","networkpolicypeer-v1-networking-k8s-io","networkpolicyingressrule-v1-networking-k8s-io","networkpolicyegressrule-v1-networking-k8s-io","namespacecondition-v1-core","nfsvolumesource-v1-core","mutatingwebhook-v1-admissionregistration-k8s-io","microtime-v1-meta","metricvaluestatus-v2-autoscaling","metrictarget-v2-autoscaling","metricstatus-v2-autoscaling","metricspec-v2-autoscaling","metricidentifier-v2-autoscaling","managedfieldsentry-v1-meta","localvolumesource-v1-core","localobjectreference-v1-core","loadbalancerstatus-v1-core","loadbalanceringress-v1-core","listmeta-v1-meta","limitedprioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","limitresponse-v1beta2-flowcontrol-apiserver-k8s-io","limitrangeitem-v1-core","lifecyclehandler-v1-core","lifecycle-v1-core","labelselectorrequirement-v1-meta","labelselector-v1-meta","keytopath-v1-core","jobtemplatespec-v1-batch","jobcondition-v1-batch","jsonschemapropsorbool-v1-apiextensions-k8s-io","jsonschemapropsorarray-v1-apiextensions-k8s-io","jsonschemaprops-v1-apiextensions-k8s-io","json-v1-apiextensions-k8s-io","ingresstls-v1-networking-k8s-io","ingressservicebackend-v1-networking-k8s-io","ingressrule-v1-networking-k8s-io","ingressclassparametersreference-v1-networking-k8s-io","ingressbackend-v1-networking-k8s-io","iscsivolumesource-v1-core","iscsipersistentvolumesource-v1-core","ipblock-v1-networking-k8s-io","idrange-v1beta1-policy","hostportrange-v1beta1-policy","hostpathvolumesource-v1-core","hostalias-v1-core","horizontalpodautoscalercondition-v2-autoscaling","horizontalpodautoscalerbehavior-v2-autoscaling","horizontalpodautoscaler-v2-autoscaling","httpingressrulevalue-v1-networking-k8s-io","httpingresspath-v1-networking-k8s-io","httpheader-v1-core","httpgetaction-v1-core","hpascalingrules-v2-autoscaling","hpascalingpolicy-v2-autoscaling","groupversionfordiscovery-v1-meta","groupsubject-v1beta2-flowcontrol-apiserver-k8s-io","glusterfsvolumesource-v1-core","glusterfspersistentvolumesource-v1-core","gitrepovolumesource-v1-core","grpcaction-v1-core","gcepersistentdiskvolumesource-v1-core","forzone-v1-discovery-k8s-io","flowschemacondition-v1beta2-flowcontrol-apiserver-k8s-io","flowschema-v1beta2-flowcontrol-apiserver-k8s-io","flowdistinguishermethod-v1beta2-flowcontrol-apiserver-k8s-io","flockervolumesource-v1-core","flexvolumesource-v1-core","flexpersistentvolumesource-v1-core","fieldsv1-v1-meta","fsgroupstrategyoptions-v1beta1-policy","fcvolumesource-v1-core","externalmetricstatus-v2-autoscaling","externalmetricsource-v2-autoscaling","externaldocumentation-v1-apiextensions-k8s-io","execaction-v1-core","eviction-v1-policy","eventsource-v1-core","eventseries-v1-events-k8s-io","ephemeralvolumesource-v1-core","ephemeralcontainer-v1-core","envvarsource-v1-core","envvar-v1-core","envfromsource-v1-core","endpointsubset-v1-core","endpointport-v1-core","endpointhints-v1-discovery-k8s-io","endpointconditions-v1-discovery-k8s-io","endpointaddress-v1-core","endpoint-v1-discovery-k8s-io","emptydirvolumesource-v1-core","downwardapivolumesource-v1-core","downwardapivolumefile-v1-core","downwardapiprojection-v1-core","deploymentcondition-v1-apps","deleteoptions-v1-meta","daemonsetupdatestrategy-v1-apps","daemonsetcondition-v1-apps","daemonendpoint-v1-core","customresourcevalidation-v1-apiextensions-k8s-io","customresourcesubresources-v1-apiextensions-k8s-io","customresourcesubresourcestatus-v1-apiextensions-k8s-io","customresourcesubresourcescale-v1-apiextensions-k8s-io","customresourcedefinitionversion-v1-apiextensions-k8s-io","customresourcedefinitionnames-v1-apiextensions-k8s-io","customresourcedefinitioncondition-v1-apiextensions-k8s-io","customresourceconversion-v1-apiextensions-k8s-io","customresourcecolumndefinition-v1-apiextensions-k8s-io","crossversionobjectreference-v1-autoscaling","containerstatewaiting-v1-core","containerstateterminated-v1-core","containerstaterunning-v1-core","containerstate-v1-core","containerresourcemetricstatus-v2-autoscaling","containerresourcemetricsource-v2-autoscaling","containerport-v1-core","containerimage-v1-core","configmapvolumesource-v1-core","configmapprojection-v1-core","configmapnodeconfigsource-v1-core","configmapkeyselector-v1-core","configmapenvsource-v1-core","condition-v1-meta","componentcondition-v1-core","clientipconfig-v1-core","cindervolumesource-v1-core","cinderpersistentvolumesource-v1-core","certificatesigningrequestcondition-v1-certificates-k8s-io","cephfsvolumesource-v1-core","cephfspersistentvolumesource-v1-core","capabilities-v1-core","csivolumesource-v1-core","csipersistentvolumesource-v1-core","csinodedriver-v1-storage-k8s-io","boundobjectreference-v1-authentication-k8s-io","azurefilevolumesource-v1-core","azurefilepersistentvolumesource-v1-core","azurediskvolumesource-v1-core","attachedvolume-v1-core","allowedhostpath-v1beta1-policy","allowedflexvolume-v1beta1-policy","allowedcsidriver-v1beta1-policy","aggregationrule-v1-rbac-authorization-k8s-io","affinity-v1-core","awselasticblockstorevolumesource-v1-core","apiversions-v1-meta","apiservicecondition-v1-apiregistration-k8s-io","apiresource-v1-meta","apigroup-v1-meta","-strong-definitions-strong-","watch-list-all-namespaces-networkpolicy-v1-networking-k8s-io","watch-list-networkpolicy-v1-networking-k8s-io","watch-networkpolicy-v1-networking-k8s-io","list-all-namespaces-networkpolicy-v1-networking-k8s-io","list-networkpolicy-v1-networking-k8s-io","read-networkpolicy-v1-networking-k8s-io","-strong-read-operations-networkpolicy-v1-networking-k8s-io-strong-","delete-collection-networkpolicy-v1-networking-k8s-io","delete-networkpolicy-v1-networking-k8s-io","replace-networkpolicy-v1-networking-k8s-io","patch-networkpolicy-v1-networking-k8s-io","create-networkpolicy-v1-networking-k8s-io","-strong-write-operations-networkpolicy-v1-networking-k8s-io-strong-","networkpolicy-v1-networking-k8s-io","create-tokenreview-v1-authentication-k8s-io","-strong-write-operations-tokenreview-v1-authentication-k8s-io-strong-","tokenreview-v1-authentication-k8s-io","tokenrequest-v1-authentication-k8s-io","create-subjectaccessreview-v1-authorization-k8s-io","-strong-write-operations-subjectaccessreview-v1-authorization-k8s-io-strong-","subjectaccessreview-v1-authorization-k8s-io","replace-status-storageversion-v1alpha1-internal-apiserver-k8s-io","read-status-storageversion-v1alpha1-internal-apiserver-k8s-io","patch-status-storageversion-v1alpha1-internal-apiserver-k8s-io","-strong-status-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-","watch-list-storageversion-v1alpha1-internal-apiserver-k8s-io","watch-storageversion-v1alpha1-internal-apiserver-k8s-io","list-storageversion-v1alpha1-internal-apiserver-k8s-io","read-storageversion-v1alpha1-internal-apiserver-k8s-io","-strong-read-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-","delete-collection-storageversion-v1alpha1-internal-apiserver-k8s-io","delete-storageversion-v1alpha1-internal-apiserver-k8s-io","replace-storageversion-v1alpha1-internal-apiserver-k8s-io","patch-storageversion-v1alpha1-internal-apiserver-k8s-io","create-storageversion-v1alpha1-internal-apiserver-k8s-io","-strong-write-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-","storageversion-v1alpha1-internal-apiserver-k8s-io","watch-list-all-namespaces-serviceaccount-v1-core","watch-list-serviceaccount-v1-core","watch-serviceaccount-v1-core","list-all-namespaces-serviceaccount-v1-core","list-serviceaccount-v1-core","read-serviceaccount-v1-core","-strong-read-operations-serviceaccount-v1-core-strong-","delete-collection-serviceaccount-v1-core","delete-serviceaccount-v1-core","replace-serviceaccount-v1-core","patch-serviceaccount-v1-core","create-serviceaccount-v1-core","-strong-write-operations-serviceaccount-v1-core-strong-","serviceaccount-v1-core","create-selfsubjectrulesreview-v1-authorization-k8s-io","-strong-write-operations-selfsubjectrulesreview-v1-authorization-k8s-io-strong-","selfsubjectrulesreview-v1-authorization-k8s-io","create-selfsubjectaccessreview-v1-authorization-k8s-io","-strong-write-operations-selfsubjectaccessreview-v1-authorization-k8s-io-strong-","selfsubjectaccessreview-v1-authorization-k8s-io","watch-list-runtimeclass-v1-node-k8s-io","watch-runtimeclass-v1-node-k8s-io","list-runtimeclass-v1-node-k8s-io","read-runtimeclass-v1-node-k8s-io","-strong-read-operations-runtimeclass-v1-node-k8s-io-strong-","delete-collection-runtimeclass-v1-node-k8s-io","delete-runtimeclass-v1-node-k8s-io","replace-runtimeclass-v1-node-k8s-io","patch-runtimeclass-v1-node-k8s-io","create-runtimeclass-v1-node-k8s-io","-strong-write-operations-runtimeclass-v1-node-k8s-io-strong-","runtimeclass-v1-node-k8s-io","watch-list-all-namespaces-rolebinding-v1-rbac-authorization-k8s-io","watch-list-rolebinding-v1-rbac-authorization-k8s-io","watch-rolebinding-v1-rbac-authorization-k8s-io","list-all-namespaces-rolebinding-v1-rbac-authorization-k8s-io","list-rolebinding-v1-rbac-authorization-k8s-io","read-rolebinding-v1-rbac-authorization-k8s-io","-strong-read-operations-rolebinding-v1-rbac-authorization-k8s-io-strong-","delete-collection-rolebinding-v1-rbac-authorization-k8s-io","delete-rolebinding-v1-rbac-authorization-k8s-io","replace-rolebinding-v1-rbac-authorization-k8s-io","patch-rolebinding-v1-rbac-authorization-k8s-io","create-rolebinding-v1-rbac-authorization-k8s-io","-strong-write-operations-rolebinding-v1-rbac-authorization-k8s-io-strong-","rolebinding-v1-rbac-authorization-k8s-io","watch-list-all-namespaces-role-v1-rbac-authorization-k8s-io","watch-list-role-v1-rbac-authorization-k8s-io","watch-role-v1-rbac-authorization-k8s-io","list-all-namespaces-role-v1-rbac-authorization-k8s-io","list-role-v1-rbac-authorization-k8s-io","read-role-v1-rbac-authorization-k8s-io","-strong-read-operations-role-v1-rbac-authorization-k8s-io-strong-","delete-collection-role-v1-rbac-authorization-k8s-io","delete-role-v1-rbac-authorization-k8s-io","replace-role-v1-rbac-authorization-k8s-io","patch-role-v1-rbac-authorization-k8s-io","create-role-v1-rbac-authorization-k8s-io","-strong-write-operations-role-v1-rbac-authorization-k8s-io-strong-","role-v1-rbac-authorization-k8s-io","replace-status-resourcequota-v1-core","read-status-resourcequota-v1-core","patch-status-resourcequota-v1-core","-strong-status-operations-resourcequota-v1-core-strong-","watch-list-all-namespaces-resourcequota-v1-core","watch-list-resourcequota-v1-core","watch-resourcequota-v1-core","list-all-namespaces-resourcequota-v1-core","list-resourcequota-v1-core","read-resourcequota-v1-core","-strong-read-operations-resourcequota-v1-core-strong-","delete-collection-resourcequota-v1-core","delete-resourcequota-v1-core","replace-resourcequota-v1-core","patch-resourcequota-v1-core","create-resourcequota-v1-core","-strong-write-operations-resourcequota-v1-core-strong-","resourcequota-v1-core","replace-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","read-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","patch-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","-strong-status-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-","watch-list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","watch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","read-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","-strong-read-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-","delete-collection-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","delete-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","replace-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","patch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","create-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","-strong-write-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-","prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","replace-status-persistentvolume-v1-core","read-status-persistentvolume-v1-core","patch-status-persistentvolume-v1-core","-strong-status-operations-persistentvolume-v1-core-strong-","watch-list-persistentvolume-v1-core","watch-persistentvolume-v1-core","list-persistentvolume-v1-core","read-persistentvolume-v1-core","-strong-read-operations-persistentvolume-v1-core-strong-","delete-collection-persistentvolume-v1-core","delete-persistentvolume-v1-core","replace-persistentvolume-v1-core","patch-persistentvolume-v1-core","create-persistentvolume-v1-core","-strong-write-operations-persistentvolume-v1-core-strong-","persistentvolume-v1-core","replace-connect-proxy-path-node-v1-core","replace-connect-proxy-node-v1-core","head-connect-proxy-path-node-v1-core","head-connect-proxy-node-v1-core","get-connect-proxy-path-node-v1-core","get-connect-proxy-node-v1-core","delete-connect-proxy-path-node-v1-core","delete-connect-proxy-node-v1-core","create-connect-proxy-path-node-v1-core","create-connect-proxy-node-v1-core","-strong-proxy-operations-node-v1-core-strong-","replace-status-node-v1-core","read-status-node-v1-core","patch-status-node-v1-core","-strong-status-operations-node-v1-core-strong-","watch-list-node-v1-core","watch-node-v1-core","list-node-v1-core","read-node-v1-core","-strong-read-operations-node-v1-core-strong-","delete-collection-node-v1-core","delete-node-v1-core","replace-node-v1-core","patch-node-v1-core","create-node-v1-core","-strong-write-operations-node-v1-core-strong-","node-v1-core","replace-status-namespace-v1-core","read-status-namespace-v1-core","patch-status-namespace-v1-core","-strong-status-operations-namespace-v1-core-strong-","watch-list-namespace-v1-core","watch-namespace-v1-core","list-namespace-v1-core","read-namespace-v1-core","-strong-read-operations-namespace-v1-core-strong-","delete-namespace-v1-core","replace-namespace-v1-core","patch-namespace-v1-core","create-namespace-v1-core","-strong-write-operations-namespace-v1-core-strong-","namespace-v1-core","create-localsubjectaccessreview-v1-authorization-k8s-io","-strong-write-operations-localsubjectaccessreview-v1-authorization-k8s-io-strong-","localsubjectaccessreview-v1-authorization-k8s-io","watch-list-all-namespaces-lease-v1-coordination-k8s-io","watch-list-lease-v1-coordination-k8s-io","watch-lease-v1-coordination-k8s-io","list-all-namespaces-lease-v1-coordination-k8s-io","list-lease-v1-coordination-k8s-io","read-lease-v1-coordination-k8s-io","-strong-read-operations-lease-v1-coordination-k8s-io-strong-","delete-collection-lease-v1-coordination-k8s-io","delete-lease-v1-coordination-k8s-io","replace-lease-v1-coordination-k8s-io","patch-lease-v1-coordination-k8s-io","create-lease-v1-coordination-k8s-io","-strong-write-operations-lease-v1-coordination-k8s-io-strong-","lease-v1-coordination-k8s-io","replace-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","read-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","patch-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","-strong-status-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-","watch-list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","watch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","read-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","-strong-read-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-","delete-collection-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","delete-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","replace-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","patch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","create-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","-strong-write-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-","flowschema-v1beta1-flowcontrol-apiserver-k8s-io","list-componentstatus-v1-core","read-componentstatus-v1-core","-strong-read-operations-componentstatus-v1-core-strong-","componentstatus-v1-core","watch-list-clusterrolebinding-v1-rbac-authorization-k8s-io","watch-clusterrolebinding-v1-rbac-authorization-k8s-io","list-clusterrolebinding-v1-rbac-authorization-k8s-io","read-clusterrolebinding-v1-rbac-authorization-k8s-io","-strong-read-operations-clusterrolebinding-v1-rbac-authorization-k8s-io-strong-","delete-collection-clusterrolebinding-v1-rbac-authorization-k8s-io","delete-clusterrolebinding-v1-rbac-authorization-k8s-io","replace-clusterrolebinding-v1-rbac-authorization-k8s-io","patch-clusterrolebinding-v1-rbac-authorization-k8s-io","create-clusterrolebinding-v1-rbac-authorization-k8s-io","-strong-write-operations-clusterrolebinding-v1-rbac-authorization-k8s-io-strong-","clusterrolebinding-v1-rbac-authorization-k8s-io","watch-list-clusterrole-v1-rbac-authorization-k8s-io","watch-clusterrole-v1-rbac-authorization-k8s-io","list-clusterrole-v1-rbac-authorization-k8s-io","read-clusterrole-v1-rbac-authorization-k8s-io","-strong-read-operations-clusterrole-v1-rbac-authorization-k8s-io-strong-","delete-collection-clusterrole-v1-rbac-authorization-k8s-io","delete-clusterrole-v1-rbac-authorization-k8s-io","replace-clusterrole-v1-rbac-authorization-k8s-io","patch-clusterrole-v1-rbac-authorization-k8s-io","create-clusterrole-v1-rbac-authorization-k8s-io","-strong-write-operations-clusterrole-v1-rbac-authorization-k8s-io-strong-","clusterrole-v1-rbac-authorization-k8s-io","replace-status-certificatesigningrequest-v1-certificates-k8s-io","read-status-certificatesigningrequest-v1-certificates-k8s-io","patch-status-certificatesigningrequest-v1-certificates-k8s-io","-strong-status-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-","watch-list-certificatesigningrequest-v1-certificates-k8s-io","watch-certificatesigningrequest-v1-certificates-k8s-io","list-certificatesigningrequest-v1-certificates-k8s-io","read-certificatesigningrequest-v1-certificates-k8s-io","-strong-read-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-","delete-collection-certificatesigningrequest-v1-certificates-k8s-io","delete-certificatesigningrequest-v1-certificates-k8s-io","replace-certificatesigningrequest-v1-certificates-k8s-io","patch-certificatesigningrequest-v1-certificates-k8s-io","create-certificatesigningrequest-v1-certificates-k8s-io","-strong-write-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-","certificatesigningrequest-v1-certificates-k8s-io","create-binding-v1-core","-strong-write-operations-binding-v1-core-strong-","binding-v1-core","replace-status-apiservice-v1-apiregistration-k8s-io","read-status-apiservice-v1-apiregistration-k8s-io","patch-status-apiservice-v1-apiregistration-k8s-io","-strong-status-operations-apiservice-v1-apiregistration-k8s-io-strong-","watch-list-apiservice-v1-apiregistration-k8s-io","watch-apiservice-v1-apiregistration-k8s-io","list-apiservice-v1-apiregistration-k8s-io","read-apiservice-v1-apiregistration-k8s-io","-strong-read-operations-apiservice-v1-apiregistration-k8s-io-strong-","delete-collection-apiservice-v1-apiregistration-k8s-io","delete-apiservice-v1-apiregistration-k8s-io","replace-apiservice-v1-apiregistration-k8s-io","patch-apiservice-v1-apiregistration-k8s-io","create-apiservice-v1-apiregistration-k8s-io","-strong-write-operations-apiservice-v1-apiregistration-k8s-io-strong-","apiservice-v1-apiregistration-k8s-io","-strong-cluster-apis-strong-","watch-list-podsecuritypolicy-v1beta1-policy","watch-podsecuritypolicy-v1beta1-policy","list-podsecuritypolicy-v1beta1-policy","read-podsecuritypolicy-v1beta1-policy","-strong-read-operations-podsecuritypolicy-v1beta1-policy-strong-","delete-collection-podsecuritypolicy-v1beta1-policy","delete-podsecuritypolicy-v1beta1-policy","replace-podsecuritypolicy-v1beta1-policy","patch-podsecuritypolicy-v1beta1-policy","create-podsecuritypolicy-v1beta1-policy","-strong-write-operations-podsecuritypolicy-v1beta1-policy-strong-","podsecuritypolicy-v1beta1-policy","watch-list-priorityclass-v1-scheduling-k8s-io","watch-priorityclass-v1-scheduling-k8s-io","list-priorityclass-v1-scheduling-k8s-io","read-priorityclass-v1-scheduling-k8s-io","-strong-read-operations-priorityclass-v1-scheduling-k8s-io-strong-","delete-collection-priorityclass-v1-scheduling-k8s-io","delete-priorityclass-v1-scheduling-k8s-io","replace-priorityclass-v1-scheduling-k8s-io","patch-priorityclass-v1-scheduling-k8s-io","create-priorityclass-v1-scheduling-k8s-io","-strong-write-operations-priorityclass-v1-scheduling-k8s-io-strong-","priorityclass-v1-scheduling-k8s-io","replace-status-poddisruptionbudget-v1-policy","read-status-poddisruptionbudget-v1-policy","patch-status-poddisruptionbudget-v1-policy","-strong-status-operations-poddisruptionbudget-v1-policy-strong-","watch-list-all-namespaces-poddisruptionbudget-v1-policy","watch-list-poddisruptionbudget-v1-policy","watch-poddisruptionbudget-v1-policy","list-all-namespaces-poddisruptionbudget-v1-policy","list-poddisruptionbudget-v1-policy","read-poddisruptionbudget-v1-policy","-strong-read-operations-poddisruptionbudget-v1-policy-strong-","delete-collection-poddisruptionbudget-v1-policy","delete-poddisruptionbudget-v1-policy","replace-poddisruptionbudget-v1-policy","patch-poddisruptionbudget-v1-policy","create-poddisruptionbudget-v1-policy","-strong-write-operations-poddisruptionbudget-v1-policy-strong-","poddisruptionbudget-v1-policy","watch-list-all-namespaces-podtemplate-v1-core","watch-list-podtemplate-v1-core","watch-podtemplate-v1-core","list-all-namespaces-podtemplate-v1-core","list-podtemplate-v1-core","read-podtemplate-v1-core","-strong-read-operations-podtemplate-v1-core-strong-","delete-collection-podtemplate-v1-core","delete-podtemplate-v1-core","replace-podtemplate-v1-core","patch-podtemplate-v1-core","create-podtemplate-v1-core","-strong-write-operations-podtemplate-v1-core-strong-","podtemplate-v1-core","watch-list-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","watch-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","list-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","read-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","-strong-read-operations-validatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-","delete-collection-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","delete-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","replace-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","patch-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","create-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","-strong-write-operations-validatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-","validatingwebhookconfiguration-v1-admissionregistration-k8s-io","watch-list-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","watch-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","list-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","read-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","-strong-read-operations-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-","delete-collection-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","delete-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","replace-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","patch-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","create-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","-strong-write-operations-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-","mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","replace-status-horizontalpodautoscaler-v1-autoscaling","read-status-horizontalpodautoscaler-v1-autoscaling","patch-status-horizontalpodautoscaler-v1-autoscaling","-strong-status-operations-horizontalpodautoscaler-v1-autoscaling-strong-","watch-list-all-namespaces-horizontalpodautoscaler-v1-autoscaling","watch-list-horizontalpodautoscaler-v1-autoscaling","watch-horizontalpodautoscaler-v1-autoscaling","list-all-namespaces-horizontalpodautoscaler-v1-autoscaling","list-horizontalpodautoscaler-v1-autoscaling","read-horizontalpodautoscaler-v1-autoscaling","-strong-read-operations-horizontalpodautoscaler-v1-autoscaling-strong-","delete-collection-horizontalpodautoscaler-v1-autoscaling","delete-horizontalpodautoscaler-v1-autoscaling","replace-horizontalpodautoscaler-v1-autoscaling","patch-horizontalpodautoscaler-v1-autoscaling","create-horizontalpodautoscaler-v1-autoscaling","-strong-write-operations-horizontalpodautoscaler-v1-autoscaling-strong-","horizontalpodautoscaler-v1-autoscaling","watch-list-all-namespaces-limitrange-v1-core","watch-list-limitrange-v1-core","watch-limitrange-v1-core","list-all-namespaces-limitrange-v1-core","list-limitrange-v1-core","read-limitrange-v1-core","-strong-read-operations-limitrange-v1-core-strong-","delete-collection-limitrange-v1-core","delete-limitrange-v1-core","replace-limitrange-v1-core","patch-limitrange-v1-core","create-limitrange-v1-core","-strong-write-operations-limitrange-v1-core-strong-","limitrange-v1-core","watch-list-all-namespaces-event-v1-events-k8s-io","watch-list-event-v1-events-k8s-io","watch-event-v1-events-k8s-io","list-all-namespaces-event-v1-events-k8s-io","list-event-v1-events-k8s-io","read-event-v1-events-k8s-io","-strong-read-operations-event-v1-events-k8s-io-strong-","delete-collection-event-v1-events-k8s-io","delete-event-v1-events-k8s-io","replace-event-v1-events-k8s-io","patch-event-v1-events-k8s-io","create-event-v1-events-k8s-io","-strong-write-operations-event-v1-events-k8s-io-strong-","event-v1-events-k8s-io","replace-status-customresourcedefinition-v1-apiextensions-k8s-io","read-status-customresourcedefinition-v1-apiextensions-k8s-io","patch-status-customresourcedefinition-v1-apiextensions-k8s-io","-strong-status-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-","watch-list-customresourcedefinition-v1-apiextensions-k8s-io","watch-customresourcedefinition-v1-apiextensions-k8s-io","list-customresourcedefinition-v1-apiextensions-k8s-io","read-customresourcedefinition-v1-apiextensions-k8s-io","-strong-read-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-","delete-collection-customresourcedefinition-v1-apiextensions-k8s-io","delete-customresourcedefinition-v1-apiextensions-k8s-io","replace-customresourcedefinition-v1-apiextensions-k8s-io","patch-customresourcedefinition-v1-apiextensions-k8s-io","create-customresourcedefinition-v1-apiextensions-k8s-io","-strong-write-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-","customresourcedefinition-v1-apiextensions-k8s-io","watch-list-all-namespaces-controllerrevision-v1-apps","watch-list-controllerrevision-v1-apps","watch-controllerrevision-v1-apps","list-all-namespaces-controllerrevision-v1-apps","list-controllerrevision-v1-apps","read-controllerrevision-v1-apps","-strong-read-operations-controllerrevision-v1-apps-strong-","delete-collection-controllerrevision-v1-apps","delete-controllerrevision-v1-apps","replace-controllerrevision-v1-apps","patch-controllerrevision-v1-apps","create-controllerrevision-v1-apps","-strong-write-operations-controllerrevision-v1-apps-strong-","controllerrevision-v1-apps","-strong-metadata-apis-strong-","replace-status-volumeattachment-v1-storage-k8s-io","read-status-volumeattachment-v1-storage-k8s-io","patch-status-volumeattachment-v1-storage-k8s-io","-strong-status-operations-volumeattachment-v1-storage-k8s-io-strong-","watch-list-volumeattachment-v1-storage-k8s-io","watch-volumeattachment-v1-storage-k8s-io","list-volumeattachment-v1-storage-k8s-io","read-volumeattachment-v1-storage-k8s-io","-strong-read-operations-volumeattachment-v1-storage-k8s-io-strong-","delete-collection-volumeattachment-v1-storage-k8s-io","delete-volumeattachment-v1-storage-k8s-io","replace-volumeattachment-v1-storage-k8s-io","patch-volumeattachment-v1-storage-k8s-io","create-volumeattachment-v1-storage-k8s-io","-strong-write-operations-volumeattachment-v1-storage-k8s-io-strong-","volumeattachment-v1-storage-k8s-io","volume-v1-core","watch-list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io","watch-list-csistoragecapacity-v1beta1-storage-k8s-io","watch-csistoragecapacity-v1beta1-storage-k8s-io","list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io","list-csistoragecapacity-v1beta1-storage-k8s-io","read-csistoragecapacity-v1beta1-storage-k8s-io","-strong-read-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-","delete-collection-csistoragecapacity-v1beta1-storage-k8s-io","delete-csistoragecapacity-v1beta1-storage-k8s-io","replace-csistoragecapacity-v1beta1-storage-k8s-io","patch-csistoragecapacity-v1beta1-storage-k8s-io","create-csistoragecapacity-v1beta1-storage-k8s-io","-strong-write-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-","csistoragecapacity-v1beta1-storage-k8s-io","watch-list-storageclass-v1-storage-k8s-io","watch-storageclass-v1-storage-k8s-io","list-storageclass-v1-storage-k8s-io","read-storageclass-v1-storage-k8s-io","-strong-read-operations-storageclass-v1-storage-k8s-io-strong-","delete-collection-storageclass-v1-storage-k8s-io","delete-storageclass-v1-storage-k8s-io","replace-storageclass-v1-storage-k8s-io","patch-storageclass-v1-storage-k8s-io","create-storageclass-v1-storage-k8s-io","-strong-write-operations-storageclass-v1-storage-k8s-io-strong-","storageclass-v1-storage-k8s-io","replace-status-persistentvolumeclaim-v1-core","read-status-persistentvolumeclaim-v1-core","patch-status-persistentvolumeclaim-v1-core","-strong-status-operations-persistentvolumeclaim-v1-core-strong-","watch-list-all-namespaces-persistentvolumeclaim-v1-core","watch-list-persistentvolumeclaim-v1-core","watch-persistentvolumeclaim-v1-core","list-all-namespaces-persistentvolumeclaim-v1-core","list-persistentvolumeclaim-v1-core","read-persistentvolumeclaim-v1-core","-strong-read-operations-persistentvolumeclaim-v1-core-strong-","delete-collection-persistentvolumeclaim-v1-core","delete-persistentvolumeclaim-v1-core","replace-persistentvolumeclaim-v1-core","patch-persistentvolumeclaim-v1-core","create-persistentvolumeclaim-v1-core","-strong-write-operations-persistentvolumeclaim-v1-core-strong-","persistentvolumeclaim-v1-core","watch-list-all-namespaces-secret-v1-core","watch-list-secret-v1-core","watch-secret-v1-core","list-all-namespaces-secret-v1-core","list-secret-v1-core","read-secret-v1-core","-strong-read-operations-secret-v1-core-strong-","delete-collection-secret-v1-core","delete-secret-v1-core","replace-secret-v1-core","patch-secret-v1-core","create-secret-v1-core","-strong-write-operations-secret-v1-core-strong-","secret-v1-core","watch-list-csinode-v1-storage-k8s-io","watch-csinode-v1-storage-k8s-io","list-csinode-v1-storage-k8s-io","read-csinode-v1-storage-k8s-io","-strong-read-operations-csinode-v1-storage-k8s-io-strong-","delete-collection-csinode-v1-storage-k8s-io","delete-csinode-v1-storage-k8s-io","replace-csinode-v1-storage-k8s-io","patch-csinode-v1-storage-k8s-io","create-csinode-v1-storage-k8s-io","-strong-write-operations-csinode-v1-storage-k8s-io-strong-","csinode-v1-storage-k8s-io","watch-list-csidriver-v1-storage-k8s-io","watch-csidriver-v1-storage-k8s-io","list-csidriver-v1-storage-k8s-io","read-csidriver-v1-storage-k8s-io","-strong-read-operations-csidriver-v1-storage-k8s-io-strong-","delete-collection-csidriver-v1-storage-k8s-io","delete-csidriver-v1-storage-k8s-io","replace-csidriver-v1-storage-k8s-io","patch-csidriver-v1-storage-k8s-io","create-csidriver-v1-storage-k8s-io","-strong-write-operations-csidriver-v1-storage-k8s-io-strong-","csidriver-v1-storage-k8s-io","watch-list-all-namespaces-configmap-v1-core","watch-list-configmap-v1-core","watch-configmap-v1-core","list-all-namespaces-configmap-v1-core","list-configmap-v1-core","read-configmap-v1-core","-strong-read-operations-configmap-v1-core-strong-","delete-collection-configmap-v1-core","delete-configmap-v1-core","replace-configmap-v1-core","patch-configmap-v1-core","create-configmap-v1-core","-strong-write-operations-configmap-v1-core-strong-","configmap-v1-core","-strong-config-and-storage-apis-strong-","replace-connect-proxy-path-service-v1-core","replace-connect-proxy-service-v1-core","head-connect-proxy-path-service-v1-core","head-connect-proxy-service-v1-core","get-connect-proxy-path-service-v1-core","get-connect-proxy-service-v1-core","delete-connect-proxy-path-service-v1-core","delete-connect-proxy-service-v1-core","create-connect-proxy-path-service-v1-core","create-connect-proxy-service-v1-core","-strong-proxy-operations-service-v1-core-strong-","replace-status-service-v1-core","read-status-service-v1-core","patch-status-service-v1-core","-strong-status-operations-service-v1-core-strong-","watch-list-all-namespaces-service-v1-core","watch-list-service-v1-core","watch-service-v1-core","list-all-namespaces-service-v1-core","list-service-v1-core","read-service-v1-core","-strong-read-operations-service-v1-core-strong-","delete-collection-service-v1-core","delete-service-v1-core","replace-service-v1-core","patch-service-v1-core","create-service-v1-core","-strong-write-operations-service-v1-core-strong-","service-v1-core","watch-list-ingressclass-v1-networking-k8s-io","watch-ingressclass-v1-networking-k8s-io","list-ingressclass-v1-networking-k8s-io","read-ingressclass-v1-networking-k8s-io","-strong-read-operations-ingressclass-v1-networking-k8s-io-strong-","delete-collection-ingressclass-v1-networking-k8s-io","delete-ingressclass-v1-networking-k8s-io","replace-ingressclass-v1-networking-k8s-io","patch-ingressclass-v1-networking-k8s-io","create-ingressclass-v1-networking-k8s-io","-strong-write-operations-ingressclass-v1-networking-k8s-io-strong-","ingressclass-v1-networking-k8s-io","replace-status-ingress-v1-networking-k8s-io","read-status-ingress-v1-networking-k8s-io","patch-status-ingress-v1-networking-k8s-io","-strong-status-operations-ingress-v1-networking-k8s-io-strong-","watch-list-all-namespaces-ingress-v1-networking-k8s-io","watch-list-ingress-v1-networking-k8s-io","watch-ingress-v1-networking-k8s-io","list-all-namespaces-ingress-v1-networking-k8s-io","list-ingress-v1-networking-k8s-io","read-ingress-v1-networking-k8s-io","-strong-read-operations-ingress-v1-networking-k8s-io-strong-","delete-collection-ingress-v1-networking-k8s-io","delete-ingress-v1-networking-k8s-io","replace-ingress-v1-networking-k8s-io","patch-ingress-v1-networking-k8s-io","create-ingress-v1-networking-k8s-io","-strong-write-operations-ingress-v1-networking-k8s-io-strong-","ingress-v1-networking-k8s-io","watch-list-all-namespaces-endpointslice-v1-discovery-k8s-io","watch-list-endpointslice-v1-discovery-k8s-io","watch-endpointslice-v1-discovery-k8s-io","list-all-namespaces-endpointslice-v1-discovery-k8s-io","list-endpointslice-v1-discovery-k8s-io","read-endpointslice-v1-discovery-k8s-io","-strong-read-operations-endpointslice-v1-discovery-k8s-io-strong-","delete-collection-endpointslice-v1-discovery-k8s-io","delete-endpointslice-v1-discovery-k8s-io","replace-endpointslice-v1-discovery-k8s-io","patch-endpointslice-v1-discovery-k8s-io","create-endpointslice-v1-discovery-k8s-io","-strong-write-operations-endpointslice-v1-discovery-k8s-io-strong-","endpointslice-v1-discovery-k8s-io","watch-list-all-namespaces-endpoints-v1-core","watch-list-endpoints-v1-core","watch-endpoints-v1-core","list-all-namespaces-endpoints-v1-core","list-endpoints-v1-core","read-endpoints-v1-core","-strong-read-operations-endpoints-v1-core-strong-","delete-collection-endpoints-v1-core","delete-endpoints-v1-core","replace-endpoints-v1-core","patch-endpoints-v1-core","create-endpoints-v1-core","-strong-write-operations-endpoints-v1-core-strong-","endpoints-v1-core","-strong-service-apis-strong-","patch-scale-statefulset-v1-apps","replace-scale-statefulset-v1-apps","read-scale-statefulset-v1-apps","-strong-misc-operations-statefulset-v1-apps-strong-","replace-status-statefulset-v1-apps","read-status-statefulset-v1-apps","patch-status-statefulset-v1-apps","-strong-status-operations-statefulset-v1-apps-strong-","watch-list-all-namespaces-statefulset-v1-apps","watch-list-statefulset-v1-apps","watch-statefulset-v1-apps","list-all-namespaces-statefulset-v1-apps","list-statefulset-v1-apps","read-statefulset-v1-apps","-strong-read-operations-statefulset-v1-apps-strong-","delete-collection-statefulset-v1-apps","delete-statefulset-v1-apps","replace-statefulset-v1-apps","patch-statefulset-v1-apps","create-statefulset-v1-apps","-strong-write-operations-statefulset-v1-apps-strong-","statefulset-v1-apps","patch-scale-replicationcontroller-v1-core","replace-scale-replicationcontroller-v1-core","read-scale-replicationcontroller-v1-core","-strong-misc-operations-replicationcontroller-v1-core-strong-","replace-status-replicationcontroller-v1-core","read-status-replicationcontroller-v1-core","patch-status-replicationcontroller-v1-core","-strong-status-operations-replicationcontroller-v1-core-strong-","watch-list-all-namespaces-replicationcontroller-v1-core","watch-list-replicationcontroller-v1-core","watch-replicationcontroller-v1-core","list-all-namespaces-replicationcontroller-v1-core","list-replicationcontroller-v1-core","read-replicationcontroller-v1-core","-strong-read-operations-replicationcontroller-v1-core-strong-","delete-collection-replicationcontroller-v1-core","delete-replicationcontroller-v1-core","replace-replicationcontroller-v1-core","patch-replicationcontroller-v1-core","create-replicationcontroller-v1-core","-strong-write-operations-replicationcontroller-v1-core-strong-","replicationcontroller-v1-core","patch-scale-replicaset-v1-apps","replace-scale-replicaset-v1-apps","read-scale-replicaset-v1-apps","-strong-misc-operations-replicaset-v1-apps-strong-","replace-status-replicaset-v1-apps","read-status-replicaset-v1-apps","patch-status-replicaset-v1-apps","-strong-status-operations-replicaset-v1-apps-strong-","watch-list-all-namespaces-replicaset-v1-apps","watch-list-replicaset-v1-apps","watch-replicaset-v1-apps","list-all-namespaces-replicaset-v1-apps","list-replicaset-v1-apps","read-replicaset-v1-apps","-strong-read-operations-replicaset-v1-apps-strong-","delete-collection-replicaset-v1-apps","delete-replicaset-v1-apps","replace-replicaset-v1-apps","patch-replicaset-v1-apps","create-replicaset-v1-apps","-strong-write-operations-replicaset-v1-apps-strong-","replicaset-v1-apps","read-log-pod-v1-core","-strong-misc-operations-pod-v1-core-strong-","replace-connect-proxy-path-pod-v1-core","replace-connect-proxy-pod-v1-core","head-connect-proxy-path-pod-v1-core","head-connect-proxy-pod-v1-core","get-connect-proxy-path-pod-v1-core","get-connect-proxy-pod-v1-core","get-connect-portforward-pod-v1-core","delete-connect-proxy-path-pod-v1-core","delete-connect-proxy-pod-v1-core","create-connect-proxy-path-pod-v1-core","create-connect-proxy-pod-v1-core","create-connect-portforward-pod-v1-core","-strong-proxy-operations-pod-v1-core-strong-","replace-ephemeralcontainers-pod-v1-core","read-ephemeralcontainers-pod-v1-core","patch-ephemeralcontainers-pod-v1-core","-strong-ephemeralcontainers-operations-pod-v1-core-strong-","replace-status-pod-v1-core","read-status-pod-v1-core","patch-status-pod-v1-core","-strong-status-operations-pod-v1-core-strong-","watch-list-all-namespaces-pod-v1-core","watch-list-pod-v1-core","watch-pod-v1-core","list-all-namespaces-pod-v1-core","list-pod-v1-core","read-pod-v1-core","-strong-read-operations-pod-v1-core-strong-","delete-collection-pod-v1-core","delete-pod-v1-core","replace-pod-v1-core","patch-pod-v1-core","create-eviction-pod-v1-core","create-pod-v1-core","-strong-write-operations-pod-v1-core-strong-","pod-v1-core","replace-status-job-v1-batch","read-status-job-v1-batch","patch-status-job-v1-batch","-strong-status-operations-job-v1-batch-strong-","watch-list-all-namespaces-job-v1-batch","watch-list-job-v1-batch","watch-job-v1-batch","list-all-namespaces-job-v1-batch","list-job-v1-batch","read-job-v1-batch","-strong-read-operations-job-v1-batch-strong-","delete-collection-job-v1-batch","delete-job-v1-batch","replace-job-v1-batch","patch-job-v1-batch","create-job-v1-batch","-strong-write-operations-job-v1-batch-strong-","job-v1-batch","patch-scale-deployment-v1-apps","replace-scale-deployment-v1-apps","read-scale-deployment-v1-apps","-strong-misc-operations-deployment-v1-apps-strong-","replace-status-deployment-v1-apps","read-status-deployment-v1-apps","patch-status-deployment-v1-apps","-strong-status-operations-deployment-v1-apps-strong-","watch-list-all-namespaces-deployment-v1-apps","watch-list-deployment-v1-apps","watch-deployment-v1-apps","list-all-namespaces-deployment-v1-apps","list-deployment-v1-apps","read-deployment-v1-apps","-strong-read-operations-deployment-v1-apps-strong-","delete-collection-deployment-v1-apps","delete-deployment-v1-apps","replace-deployment-v1-apps","patch-deployment-v1-apps","create-deployment-v1-apps","-strong-write-operations-deployment-v1-apps-strong-","deployment-v1-apps","replace-status-daemonset-v1-apps","read-status-daemonset-v1-apps","patch-status-daemonset-v1-apps","-strong-status-operations-daemonset-v1-apps-strong-","watch-list-all-namespaces-daemonset-v1-apps","watch-list-daemonset-v1-apps","watch-daemonset-v1-apps","list-all-namespaces-daemonset-v1-apps","list-daemonset-v1-apps","read-daemonset-v1-apps","-strong-read-operations-daemonset-v1-apps-strong-","delete-collection-daemonset-v1-apps","delete-daemonset-v1-apps","replace-daemonset-v1-apps","patch-daemonset-v1-apps","create-daemonset-v1-apps","-strong-write-operations-daemonset-v1-apps-strong-","daemonset-v1-apps","replace-status-cronjob-v1-batch","read-status-cronjob-v1-batch","patch-status-cronjob-v1-batch","-strong-status-operations-cronjob-v1-batch-strong-","watch-list-all-namespaces-cronjob-v1-batch","watch-list-cronjob-v1-batch","watch-cronjob-v1-batch","list-all-namespaces-cronjob-v1-batch","list-cronjob-v1-batch","read-cronjob-v1-batch","-strong-read-operations-cronjob-v1-batch-strong-","delete-collection-cronjob-v1-batch","delete-cronjob-v1-batch","replace-cronjob-v1-batch","patch-cronjob-v1-batch","create-cronjob-v1-batch","-strong-write-operations-cronjob-v1-batch-strong-","cronjob-v1-batch","container-v1-core","-strong-workloads-apis-strong-","-strong-api-groups-strong-","-strong-api-overview-strong-"]};})();
\ No newline at end of file
diff --git a/static/docs/reference/generated/kubernetes-api/v1.24/index.html b/static/docs/reference/generated/kubernetes-api/v1.24/index.html
new file mode 100644
index 0000000000..cb5e698bc3
--- /dev/null
+++ b/static/docs/reference/generated/kubernetes-api/v1.24/index.html
@@ -0,0 +1,43654 @@
+<!DOCTYPE html>
+<HTML>
+<HEAD>
+<META charset="UTF-8">
+<TITLE>Kubernetes API Reference Docs</TITLE>
+<LINK rel="shortcut icon" href="favicon.ico" type="image/vnd.microsoft.icon">
+<LINK rel="stylesheet" href="/css/bootstrap-4.3.1.min.css">
+<LINK rel="stylesheet" href="/css/fontawesome-4.7.0.min.css" type="text/css">
+<LINK rel="stylesheet" href="/css/style_apiref.css" type="text/css">
+</HEAD>
+<BODY>
+<DIV id="wrapper" class="container-fluid">
+<DIV class="row">
+<DIV id="sidebar-wrapper" class="col-xs-4 col-sm-3 col-md-2 side-nav side-bar-nav">
+<UL>
+ <LI class="nav-level-1 strong-nav"><A href="#-strong-api-overview-strong-" class="nav-item"><STRONG>Overview</STRONG></A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1 strong-nav"><A href="#-strong-api-groups-strong-" class="nav-item"><STRONG>API Groups</STRONG></A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1 strong-nav"><A href="#-strong-workloads-apis-strong-" class="nav-item"><STRONG>WORKLOADS APIS</STRONG></A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#container-v1-core" class="nav-item">Container v1 core</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#cronjob-v1-batch" class="nav-item">CronJob v1 batch</A></LI>
+ <UL id="cronjob-v1-batch-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-cronjob-v1-batch-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-cronjob-v1-batch-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-cronjob-v1-batch" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-cronjob-v1-batch" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-cronjob-v1-batch" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-cronjob-v1-batch" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-cronjob-v1-batch" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-cronjob-v1-batch-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-cronjob-v1-batch-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-cronjob-v1-batch" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-cronjob-v1-batch" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-cronjob-v1-batch" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-cronjob-v1-batch" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-cronjob-v1-batch" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-cronjob-v1-batch" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-cronjob-v1-batch-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-cronjob-v1-batch-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-cronjob-v1-batch" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-cronjob-v1-batch" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-cronjob-v1-batch" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#daemonset-v1-apps" class="nav-item">DaemonSet v1 apps</A></LI>
+ <UL id="daemonset-v1-apps-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-daemonset-v1-apps-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-daemonset-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-daemonset-v1-apps" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-daemonset-v1-apps" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-daemonset-v1-apps" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-daemonset-v1-apps" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-daemonset-v1-apps" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-daemonset-v1-apps-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-daemonset-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-daemonset-v1-apps" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-daemonset-v1-apps" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-daemonset-v1-apps" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-daemonset-v1-apps" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-daemonset-v1-apps" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-daemonset-v1-apps" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-daemonset-v1-apps-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-daemonset-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-daemonset-v1-apps" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-daemonset-v1-apps" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-daemonset-v1-apps" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#deployment-v1-apps" class="nav-item">Deployment v1 apps</A></LI>
+ <UL id="deployment-v1-apps-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-deployment-v1-apps-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-deployment-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-deployment-v1-apps" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-deployment-v1-apps" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-deployment-v1-apps" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-deployment-v1-apps" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-deployment-v1-apps" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-deployment-v1-apps-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-deployment-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-deployment-v1-apps" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-deployment-v1-apps" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-deployment-v1-apps" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-deployment-v1-apps" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-deployment-v1-apps" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-deployment-v1-apps" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-deployment-v1-apps-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-deployment-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-deployment-v1-apps" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-deployment-v1-apps" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-deployment-v1-apps" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-misc-operations-deployment-v1-apps-strong-" class="nav-item"><STRONG>Misc Operations</STRONG></A></LI>
+   <UL id="-strong-misc-operations-deployment-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-scale-deployment-v1-apps" class="nav-item">Read Scale</A></LI>
+    <LI class="nav-level-2"><A href="#replace-scale-deployment-v1-apps" class="nav-item">Replace Scale</A></LI>
+    <LI class="nav-level-2"><A href="#patch-scale-deployment-v1-apps" class="nav-item">Patch Scale</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#job-v1-batch" class="nav-item">Job v1 batch</A></LI>
+ <UL id="job-v1-batch-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-job-v1-batch-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-job-v1-batch-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-job-v1-batch" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-job-v1-batch" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-job-v1-batch" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-job-v1-batch" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-job-v1-batch" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-job-v1-batch-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-job-v1-batch-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-job-v1-batch" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-job-v1-batch" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-job-v1-batch" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-job-v1-batch" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-job-v1-batch" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-job-v1-batch" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-job-v1-batch-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-job-v1-batch-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-job-v1-batch" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-job-v1-batch" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-job-v1-batch" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#pod-v1-core" class="nav-item">Pod v1 core</A></LI>
+ <UL id="pod-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-pod-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-pod-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-pod-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#create-eviction-pod-v1-core" class="nav-item">Create Eviction</A></LI>
+    <LI class="nav-level-2"><A href="#patch-pod-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-pod-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-pod-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-pod-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-pod-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-pod-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-pod-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-pod-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-pod-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-pod-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-pod-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-pod-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-pod-v1-core-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-pod-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-pod-v1-core" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-pod-v1-core" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-pod-v1-core" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-ephemeralcontainers-operations-pod-v1-core-strong-" class="nav-item"><STRONG>EphemeralContainers Operations</STRONG></A></LI>
+   <UL id="-strong-ephemeralcontainers-operations-pod-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-ephemeralcontainers-pod-v1-core" class="nav-item">Patch EphemeralContainers</A></LI>
+    <LI class="nav-level-2"><A href="#read-ephemeralcontainers-pod-v1-core" class="nav-item">Read EphemeralContainers</A></LI>
+    <LI class="nav-level-2"><A href="#replace-ephemeralcontainers-pod-v1-core" class="nav-item">Replace EphemeralContainers</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-proxy-operations-pod-v1-core-strong-" class="nav-item"><STRONG>Proxy Operations</STRONG></A></LI>
+   <UL id="-strong-proxy-operations-pod-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-connect-portforward-pod-v1-core" class="nav-item">Create Connect Portforward</A></LI>
+    <LI class="nav-level-2"><A href="#create-connect-proxy-pod-v1-core" class="nav-item">Create Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#create-connect-proxy-path-pod-v1-core" class="nav-item">Create Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#delete-connect-proxy-pod-v1-core" class="nav-item">Delete Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#delete-connect-proxy-path-pod-v1-core" class="nav-item">Delete Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#get-connect-portforward-pod-v1-core" class="nav-item">Get Connect Portforward</A></LI>
+    <LI class="nav-level-2"><A href="#get-connect-proxy-pod-v1-core" class="nav-item">Get Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#get-connect-proxy-path-pod-v1-core" class="nav-item">Get Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#head-connect-proxy-pod-v1-core" class="nav-item">Head Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#head-connect-proxy-path-pod-v1-core" class="nav-item">Head Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#replace-connect-proxy-pod-v1-core" class="nav-item">Replace Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#replace-connect-proxy-path-pod-v1-core" class="nav-item">Replace Connect Proxy Path</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-misc-operations-pod-v1-core-strong-" class="nav-item"><STRONG>Misc Operations</STRONG></A></LI>
+   <UL id="-strong-misc-operations-pod-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-log-pod-v1-core" class="nav-item">Read Log</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#replicaset-v1-apps" class="nav-item">ReplicaSet v1 apps</A></LI>
+ <UL id="replicaset-v1-apps-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-replicaset-v1-apps-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-replicaset-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-replicaset-v1-apps" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-replicaset-v1-apps" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-replicaset-v1-apps" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-replicaset-v1-apps" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-replicaset-v1-apps" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-replicaset-v1-apps-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-replicaset-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-replicaset-v1-apps" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-replicaset-v1-apps" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-replicaset-v1-apps" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-replicaset-v1-apps" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-replicaset-v1-apps" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-replicaset-v1-apps" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-replicaset-v1-apps-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-replicaset-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-replicaset-v1-apps" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-replicaset-v1-apps" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-replicaset-v1-apps" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-misc-operations-replicaset-v1-apps-strong-" class="nav-item"><STRONG>Misc Operations</STRONG></A></LI>
+   <UL id="-strong-misc-operations-replicaset-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-scale-replicaset-v1-apps" class="nav-item">Read Scale</A></LI>
+    <LI class="nav-level-2"><A href="#replace-scale-replicaset-v1-apps" class="nav-item">Replace Scale</A></LI>
+    <LI class="nav-level-2"><A href="#patch-scale-replicaset-v1-apps" class="nav-item">Patch Scale</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#replicationcontroller-v1-core" class="nav-item">ReplicationController v1 core</A></LI>
+ <UL id="replicationcontroller-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-replicationcontroller-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-replicationcontroller-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-replicationcontroller-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-replicationcontroller-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-replicationcontroller-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-replicationcontroller-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-replicationcontroller-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-replicationcontroller-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-replicationcontroller-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-replicationcontroller-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-replicationcontroller-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-replicationcontroller-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-replicationcontroller-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-replicationcontroller-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-replicationcontroller-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-replicationcontroller-v1-core-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-replicationcontroller-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-replicationcontroller-v1-core" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-replicationcontroller-v1-core" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-replicationcontroller-v1-core" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-misc-operations-replicationcontroller-v1-core-strong-" class="nav-item"><STRONG>Misc Operations</STRONG></A></LI>
+   <UL id="-strong-misc-operations-replicationcontroller-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-scale-replicationcontroller-v1-core" class="nav-item">Read Scale</A></LI>
+    <LI class="nav-level-2"><A href="#replace-scale-replicationcontroller-v1-core" class="nav-item">Replace Scale</A></LI>
+    <LI class="nav-level-2"><A href="#patch-scale-replicationcontroller-v1-core" class="nav-item">Patch Scale</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#statefulset-v1-apps" class="nav-item">StatefulSet v1 apps</A></LI>
+ <UL id="statefulset-v1-apps-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-statefulset-v1-apps-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-statefulset-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-statefulset-v1-apps" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-statefulset-v1-apps" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-statefulset-v1-apps" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-statefulset-v1-apps" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-statefulset-v1-apps" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-statefulset-v1-apps-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-statefulset-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-statefulset-v1-apps" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-statefulset-v1-apps" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-statefulset-v1-apps" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-statefulset-v1-apps" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-statefulset-v1-apps" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-statefulset-v1-apps" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-statefulset-v1-apps-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-statefulset-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-statefulset-v1-apps" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-statefulset-v1-apps" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-statefulset-v1-apps" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-misc-operations-statefulset-v1-apps-strong-" class="nav-item"><STRONG>Misc Operations</STRONG></A></LI>
+   <UL id="-strong-misc-operations-statefulset-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-scale-statefulset-v1-apps" class="nav-item">Read Scale</A></LI>
+    <LI class="nav-level-2"><A href="#replace-scale-statefulset-v1-apps" class="nav-item">Replace Scale</A></LI>
+    <LI class="nav-level-2"><A href="#patch-scale-statefulset-v1-apps" class="nav-item">Patch Scale</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1 strong-nav"><A href="#-strong-service-apis-strong-" class="nav-item"><STRONG>SERVICE APIS</STRONG></A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#endpoints-v1-core" class="nav-item">Endpoints v1 core</A></LI>
+ <UL id="endpoints-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-endpoints-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-endpoints-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-endpoints-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-endpoints-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-endpoints-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-endpoints-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-endpoints-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-endpoints-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-endpoints-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-endpoints-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-endpoints-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-endpoints-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-endpoints-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-endpoints-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-endpoints-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#endpointslice-v1-discovery-k8s-io" class="nav-item">EndpointSlice v1 discovery.k8s.io</A></LI>
+ <UL id="endpointslice-v1-discovery-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-endpointslice-v1-discovery-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-endpointslice-v1-discovery-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-endpointslice-v1-discovery-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-endpointslice-v1-discovery-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-endpointslice-v1-discovery-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-endpointslice-v1-discovery-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-endpointslice-v1-discovery-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-endpointslice-v1-discovery-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-endpointslice-v1-discovery-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-endpointslice-v1-discovery-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-endpointslice-v1-discovery-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-endpointslice-v1-discovery-k8s-io" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-endpointslice-v1-discovery-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-endpointslice-v1-discovery-k8s-io" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-endpointslice-v1-discovery-k8s-io" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#ingress-v1-networking-k8s-io" class="nav-item">Ingress v1 networking.k8s.io</A></LI>
+ <UL id="ingress-v1-networking-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-ingress-v1-networking-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-ingress-v1-networking-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-ingress-v1-networking-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-ingress-v1-networking-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-ingress-v1-networking-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-ingress-v1-networking-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-ingress-v1-networking-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-ingress-v1-networking-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-ingress-v1-networking-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-ingress-v1-networking-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-ingress-v1-networking-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-ingress-v1-networking-k8s-io" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-ingress-v1-networking-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-ingress-v1-networking-k8s-io" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-ingress-v1-networking-k8s-io" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-ingress-v1-networking-k8s-io-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-ingress-v1-networking-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-ingress-v1-networking-k8s-io" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-ingress-v1-networking-k8s-io" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-ingress-v1-networking-k8s-io" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#ingressclass-v1-networking-k8s-io" class="nav-item">IngressClass v1 networking.k8s.io</A></LI>
+ <UL id="ingressclass-v1-networking-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-ingressclass-v1-networking-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-ingressclass-v1-networking-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-ingressclass-v1-networking-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-ingressclass-v1-networking-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-ingressclass-v1-networking-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-ingressclass-v1-networking-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-ingressclass-v1-networking-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-ingressclass-v1-networking-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-ingressclass-v1-networking-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-ingressclass-v1-networking-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-ingressclass-v1-networking-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-ingressclass-v1-networking-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-ingressclass-v1-networking-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#service-v1-core" class="nav-item">Service v1 core</A></LI>
+ <UL id="service-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-service-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-service-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-service-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-service-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-service-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-service-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-service-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-service-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-service-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-service-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-service-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-service-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-service-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-service-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-service-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-service-v1-core-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-service-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-service-v1-core" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-service-v1-core" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-service-v1-core" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-proxy-operations-service-v1-core-strong-" class="nav-item"><STRONG>Proxy Operations</STRONG></A></LI>
+   <UL id="-strong-proxy-operations-service-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-connect-proxy-service-v1-core" class="nav-item">Create Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#create-connect-proxy-path-service-v1-core" class="nav-item">Create Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#delete-connect-proxy-service-v1-core" class="nav-item">Delete Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#delete-connect-proxy-path-service-v1-core" class="nav-item">Delete Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#get-connect-proxy-service-v1-core" class="nav-item">Get Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#get-connect-proxy-path-service-v1-core" class="nav-item">Get Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#head-connect-proxy-service-v1-core" class="nav-item">Head Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#head-connect-proxy-path-service-v1-core" class="nav-item">Head Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#replace-connect-proxy-service-v1-core" class="nav-item">Replace Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#replace-connect-proxy-path-service-v1-core" class="nav-item">Replace Connect Proxy Path</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1 strong-nav"><A href="#-strong-config-and-storage-apis-strong-" class="nav-item"><STRONG>CONFIG AND STORAGE APIS</STRONG></A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#configmap-v1-core" class="nav-item">ConfigMap v1 core</A></LI>
+ <UL id="configmap-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-configmap-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-configmap-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-configmap-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-configmap-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-configmap-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-configmap-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-configmap-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-configmap-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-configmap-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-configmap-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-configmap-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-configmap-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-configmap-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-configmap-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-configmap-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#csidriver-v1-storage-k8s-io" class="nav-item">CSIDriver v1 storage.k8s.io</A></LI>
+ <UL id="csidriver-v1-storage-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-csidriver-v1-storage-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-csidriver-v1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-csidriver-v1-storage-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-csidriver-v1-storage-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-csidriver-v1-storage-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-csidriver-v1-storage-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-csidriver-v1-storage-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-csidriver-v1-storage-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-csidriver-v1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-csidriver-v1-storage-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-csidriver-v1-storage-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-csidriver-v1-storage-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-csidriver-v1-storage-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#csinode-v1-storage-k8s-io" class="nav-item">CSINode v1 storage.k8s.io</A></LI>
+ <UL id="csinode-v1-storage-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-csinode-v1-storage-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-csinode-v1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-csinode-v1-storage-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-csinode-v1-storage-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-csinode-v1-storage-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-csinode-v1-storage-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-csinode-v1-storage-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-csinode-v1-storage-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-csinode-v1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-csinode-v1-storage-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-csinode-v1-storage-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-csinode-v1-storage-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-csinode-v1-storage-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#secret-v1-core" class="nav-item">Secret v1 core</A></LI>
+ <UL id="secret-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-secret-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-secret-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-secret-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-secret-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-secret-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-secret-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-secret-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-secret-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-secret-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-secret-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-secret-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-secret-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-secret-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-secret-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-secret-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#persistentvolumeclaim-v1-core" class="nav-item">PersistentVolumeClaim v1 core</A></LI>
+ <UL id="persistentvolumeclaim-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-persistentvolumeclaim-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-persistentvolumeclaim-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-persistentvolumeclaim-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-persistentvolumeclaim-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-persistentvolumeclaim-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-persistentvolumeclaim-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-persistentvolumeclaim-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-persistentvolumeclaim-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-persistentvolumeclaim-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-persistentvolumeclaim-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-persistentvolumeclaim-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-persistentvolumeclaim-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-persistentvolumeclaim-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-persistentvolumeclaim-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-persistentvolumeclaim-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-persistentvolumeclaim-v1-core-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-persistentvolumeclaim-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-persistentvolumeclaim-v1-core" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-persistentvolumeclaim-v1-core" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-persistentvolumeclaim-v1-core" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#storageclass-v1-storage-k8s-io" class="nav-item">StorageClass v1 storage.k8s.io</A></LI>
+ <UL id="storageclass-v1-storage-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-storageclass-v1-storage-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-storageclass-v1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-storageclass-v1-storage-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-storageclass-v1-storage-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-storageclass-v1-storage-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-storageclass-v1-storage-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-storageclass-v1-storage-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-storageclass-v1-storage-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-storageclass-v1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-storageclass-v1-storage-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-storageclass-v1-storage-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-storageclass-v1-storage-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-storageclass-v1-storage-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">CSIStorageCapacity v1beta1 storage.k8s.io</A></LI>
+ <UL id="csistoragecapacity-v1beta1-storage-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#volume-v1-core" class="nav-item">Volume v1 core</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#volumeattachment-v1-storage-k8s-io" class="nav-item">VolumeAttachment v1 storage.k8s.io</A></LI>
+ <UL id="volumeattachment-v1-storage-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-volumeattachment-v1-storage-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-volumeattachment-v1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-volumeattachment-v1-storage-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-volumeattachment-v1-storage-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-volumeattachment-v1-storage-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-volumeattachment-v1-storage-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-volumeattachment-v1-storage-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-volumeattachment-v1-storage-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-volumeattachment-v1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-volumeattachment-v1-storage-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-volumeattachment-v1-storage-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-volumeattachment-v1-storage-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-volumeattachment-v1-storage-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-volumeattachment-v1-storage-k8s-io-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-volumeattachment-v1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-volumeattachment-v1-storage-k8s-io" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-volumeattachment-v1-storage-k8s-io" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-volumeattachment-v1-storage-k8s-io" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1 strong-nav"><A href="#-strong-metadata-apis-strong-" class="nav-item"><STRONG>METADATA APIS</STRONG></A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#controllerrevision-v1-apps" class="nav-item">ControllerRevision v1 apps</A></LI>
+ <UL id="controllerrevision-v1-apps-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-controllerrevision-v1-apps-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-controllerrevision-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-controllerrevision-v1-apps" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-controllerrevision-v1-apps" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-controllerrevision-v1-apps" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-controllerrevision-v1-apps" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-controllerrevision-v1-apps" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-controllerrevision-v1-apps-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-controllerrevision-v1-apps-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-controllerrevision-v1-apps" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-controllerrevision-v1-apps" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-controllerrevision-v1-apps" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-controllerrevision-v1-apps" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-controllerrevision-v1-apps" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-controllerrevision-v1-apps" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">CustomResourceDefinition v1 apiextensions.k8s.io</A></LI>
+ <UL id="customresourcedefinition-v1-apiextensions-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-customresourcedefinition-v1-apiextensions-k8s-io" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#event-v1-events-k8s-io" class="nav-item">Event v1 events.k8s.io</A></LI>
+ <UL id="event-v1-events-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-event-v1-events-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-event-v1-events-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-event-v1-events-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-event-v1-events-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-event-v1-events-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-event-v1-events-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-event-v1-events-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-event-v1-events-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-event-v1-events-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-event-v1-events-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-event-v1-events-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-event-v1-events-k8s-io" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-event-v1-events-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-event-v1-events-k8s-io" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-event-v1-events-k8s-io" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#limitrange-v1-core" class="nav-item">LimitRange v1 core</A></LI>
+ <UL id="limitrange-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-limitrange-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-limitrange-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-limitrange-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-limitrange-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-limitrange-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-limitrange-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-limitrange-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-limitrange-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-limitrange-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-limitrange-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-limitrange-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-limitrange-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-limitrange-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-limitrange-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-limitrange-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#horizontalpodautoscaler-v2-autoscaling" class="nav-item">HorizontalPodAutoscaler v2 autoscaling</A></LI>
+ <UL id="horizontalpodautoscaler-v2-autoscaling-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-horizontalpodautoscaler-v2-autoscaling-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-horizontalpodautoscaler-v2-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-horizontalpodautoscaler-v2-autoscaling" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-horizontalpodautoscaler-v2-autoscaling" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-horizontalpodautoscaler-v2-autoscaling" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-horizontalpodautoscaler-v2-autoscaling" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-horizontalpodautoscaler-v2-autoscaling" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-horizontalpodautoscaler-v2-autoscaling-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-horizontalpodautoscaler-v2-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-horizontalpodautoscaler-v2-autoscaling" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-horizontalpodautoscaler-v2-autoscaling" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-horizontalpodautoscaler-v2-autoscaling" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-horizontalpodautoscaler-v2-autoscaling" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-horizontalpodautoscaler-v2-autoscaling" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-horizontalpodautoscaler-v2-autoscaling" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-horizontalpodautoscaler-v2-autoscaling-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-horizontalpodautoscaler-v2-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-horizontalpodautoscaler-v2-autoscaling" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-horizontalpodautoscaler-v2-autoscaling" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-horizontalpodautoscaler-v2-autoscaling" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">MutatingWebhookConfiguration v1 admissionregistration.k8s.io</A></LI>
+ <UL id="mutatingwebhookconfiguration-v1-admissionregistration-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">ValidatingWebhookConfiguration v1 admissionregistration.k8s.io</A></LI>
+ <UL id="validatingwebhookconfiguration-v1-admissionregistration-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-validatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-validatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-validatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-validatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-validatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-validatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-validatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-validatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-validatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-validatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-validatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-validatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-validatingwebhookconfiguration-v1-admissionregistration-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#podtemplate-v1-core" class="nav-item">PodTemplate v1 core</A></LI>
+ <UL id="podtemplate-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-podtemplate-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-podtemplate-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-podtemplate-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-podtemplate-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-podtemplate-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-podtemplate-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-podtemplate-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-podtemplate-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-podtemplate-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-podtemplate-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-podtemplate-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-podtemplate-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-podtemplate-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-podtemplate-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-podtemplate-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#poddisruptionbudget-v1-policy" class="nav-item">PodDisruptionBudget v1 policy</A></LI>
+ <UL id="poddisruptionbudget-v1-policy-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-poddisruptionbudget-v1-policy-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-poddisruptionbudget-v1-policy-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-poddisruptionbudget-v1-policy" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-poddisruptionbudget-v1-policy" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-poddisruptionbudget-v1-policy" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-poddisruptionbudget-v1-policy" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-poddisruptionbudget-v1-policy" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-poddisruptionbudget-v1-policy-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-poddisruptionbudget-v1-policy-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-poddisruptionbudget-v1-policy" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-poddisruptionbudget-v1-policy" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-poddisruptionbudget-v1-policy" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-poddisruptionbudget-v1-policy" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-poddisruptionbudget-v1-policy" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-poddisruptionbudget-v1-policy" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-poddisruptionbudget-v1-policy-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-poddisruptionbudget-v1-policy-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-poddisruptionbudget-v1-policy" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-poddisruptionbudget-v1-policy" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-poddisruptionbudget-v1-policy" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#priorityclass-v1-scheduling-k8s-io" class="nav-item">PriorityClass v1 scheduling.k8s.io</A></LI>
+ <UL id="priorityclass-v1-scheduling-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-priorityclass-v1-scheduling-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-priorityclass-v1-scheduling-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-priorityclass-v1-scheduling-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-priorityclass-v1-scheduling-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-priorityclass-v1-scheduling-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-priorityclass-v1-scheduling-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-priorityclass-v1-scheduling-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-priorityclass-v1-scheduling-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-priorityclass-v1-scheduling-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-priorityclass-v1-scheduling-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-priorityclass-v1-scheduling-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-priorityclass-v1-scheduling-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-priorityclass-v1-scheduling-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#podsecuritypolicy-v1beta1-policy" class="nav-item">PodSecurityPolicy v1beta1 policy</A></LI>
+ <UL id="podsecuritypolicy-v1beta1-policy-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-podsecuritypolicy-v1beta1-policy-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-podsecuritypolicy-v1beta1-policy-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-podsecuritypolicy-v1beta1-policy" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-podsecuritypolicy-v1beta1-policy" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-podsecuritypolicy-v1beta1-policy" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-podsecuritypolicy-v1beta1-policy" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-podsecuritypolicy-v1beta1-policy" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-podsecuritypolicy-v1beta1-policy-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-podsecuritypolicy-v1beta1-policy-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-podsecuritypolicy-v1beta1-policy" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-podsecuritypolicy-v1beta1-policy" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-podsecuritypolicy-v1beta1-policy" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-podsecuritypolicy-v1beta1-policy" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1 strong-nav"><A href="#-strong-cluster-apis-strong-" class="nav-item"><STRONG>CLUSTER APIS</STRONG></A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#apiservice-v1-apiregistration-k8s-io" class="nav-item">APIService v1 apiregistration.k8s.io</A></LI>
+ <UL id="apiservice-v1-apiregistration-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-apiservice-v1-apiregistration-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-apiservice-v1-apiregistration-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-apiservice-v1-apiregistration-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-apiservice-v1-apiregistration-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-apiservice-v1-apiregistration-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-apiservice-v1-apiregistration-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-apiservice-v1-apiregistration-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-apiservice-v1-apiregistration-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-apiservice-v1-apiregistration-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-apiservice-v1-apiregistration-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-apiservice-v1-apiregistration-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-apiservice-v1-apiregistration-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-apiservice-v1-apiregistration-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-apiservice-v1-apiregistration-k8s-io-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-apiservice-v1-apiregistration-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-apiservice-v1-apiregistration-k8s-io" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-apiservice-v1-apiregistration-k8s-io" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-apiservice-v1-apiregistration-k8s-io" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#binding-v1-core" class="nav-item">Binding v1 core</A></LI>
+ <UL id="binding-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-binding-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-binding-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-binding-v1-core" class="nav-item">Create</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">CertificateSigningRequest v1 certificates.k8s.io</A></LI>
+ <UL id="certificatesigningrequest-v1-certificates-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-certificatesigningrequest-v1-certificates-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-certificatesigningrequest-v1-certificates-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-certificatesigningrequest-v1-certificates-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-certificatesigningrequest-v1-certificates-k8s-io" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#clusterrole-v1-rbac-authorization-k8s-io" class="nav-item">ClusterRole v1 rbac.authorization.k8s.io</A></LI>
+ <UL id="clusterrole-v1-rbac-authorization-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-clusterrole-v1-rbac-authorization-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-clusterrole-v1-rbac-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-clusterrole-v1-rbac-authorization-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-clusterrole-v1-rbac-authorization-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-clusterrole-v1-rbac-authorization-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-clusterrole-v1-rbac-authorization-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-clusterrole-v1-rbac-authorization-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-clusterrole-v1-rbac-authorization-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-clusterrole-v1-rbac-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-clusterrole-v1-rbac-authorization-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-clusterrole-v1-rbac-authorization-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-clusterrole-v1-rbac-authorization-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-clusterrole-v1-rbac-authorization-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#clusterrolebinding-v1-rbac-authorization-k8s-io" class="nav-item">ClusterRoleBinding v1 rbac.authorization.k8s.io</A></LI>
+ <UL id="clusterrolebinding-v1-rbac-authorization-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-clusterrolebinding-v1-rbac-authorization-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-clusterrolebinding-v1-rbac-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-clusterrolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-clusterrolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-clusterrolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-clusterrolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-clusterrolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-clusterrolebinding-v1-rbac-authorization-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-clusterrolebinding-v1-rbac-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-clusterrolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-clusterrolebinding-v1-rbac-authorization-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-clusterrolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-clusterrolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#componentstatus-v1-core" class="nav-item">ComponentStatus v1 core</A></LI>
+ <UL id="componentstatus-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-componentstatus-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-componentstatus-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-componentstatus-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-componentstatus-v1-core" class="nav-item">List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">FlowSchema v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ <UL id="flowschema-v1beta2-flowcontrol-apiserver-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-flowschema-v1beta2-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-flowschema-v1beta2-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-flowschema-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-flowschema-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-flowschema-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-flowschema-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-flowschema-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-flowschema-v1beta2-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-flowschema-v1beta2-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-flowschema-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-flowschema-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-flowschema-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-flowschema-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-flowschema-v1beta2-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-flowschema-v1beta2-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-flowschema-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-flowschema-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-flowschema-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#lease-v1-coordination-k8s-io" class="nav-item">Lease v1 coordination.k8s.io</A></LI>
+ <UL id="lease-v1-coordination-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-lease-v1-coordination-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-lease-v1-coordination-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-lease-v1-coordination-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-lease-v1-coordination-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-lease-v1-coordination-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-lease-v1-coordination-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-lease-v1-coordination-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-lease-v1-coordination-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-lease-v1-coordination-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-lease-v1-coordination-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-lease-v1-coordination-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-lease-v1-coordination-k8s-io" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-lease-v1-coordination-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-lease-v1-coordination-k8s-io" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-lease-v1-coordination-k8s-io" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#localsubjectaccessreview-v1-authorization-k8s-io" class="nav-item">LocalSubjectAccessReview v1 authorization.k8s.io</A></LI>
+ <UL id="localsubjectaccessreview-v1-authorization-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-localsubjectaccessreview-v1-authorization-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-localsubjectaccessreview-v1-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-localsubjectaccessreview-v1-authorization-k8s-io" class="nav-item">Create</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#namespace-v1-core" class="nav-item">Namespace v1 core</A></LI>
+ <UL id="namespace-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-namespace-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-namespace-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-namespace-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-namespace-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-namespace-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-namespace-v1-core" class="nav-item">Delete</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-namespace-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-namespace-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-namespace-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-namespace-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-namespace-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-namespace-v1-core" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-namespace-v1-core-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-namespace-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-namespace-v1-core" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-namespace-v1-core" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-namespace-v1-core" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#node-v1-core" class="nav-item">Node v1 core</A></LI>
+ <UL id="node-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-node-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-node-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-node-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-node-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-node-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-node-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-node-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-node-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-node-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-node-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-node-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-node-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-node-v1-core" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-node-v1-core-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-node-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-node-v1-core" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-node-v1-core" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-node-v1-core" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-proxy-operations-node-v1-core-strong-" class="nav-item"><STRONG>Proxy Operations</STRONG></A></LI>
+   <UL id="-strong-proxy-operations-node-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-connect-proxy-node-v1-core" class="nav-item">Create Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#create-connect-proxy-path-node-v1-core" class="nav-item">Create Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#delete-connect-proxy-node-v1-core" class="nav-item">Delete Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#delete-connect-proxy-path-node-v1-core" class="nav-item">Delete Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#get-connect-proxy-node-v1-core" class="nav-item">Get Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#get-connect-proxy-path-node-v1-core" class="nav-item">Get Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#head-connect-proxy-node-v1-core" class="nav-item">Head Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#head-connect-proxy-path-node-v1-core" class="nav-item">Head Connect Proxy Path</A></LI>
+    <LI class="nav-level-2"><A href="#replace-connect-proxy-node-v1-core" class="nav-item">Replace Connect Proxy</A></LI>
+    <LI class="nav-level-2"><A href="#replace-connect-proxy-path-node-v1-core" class="nav-item">Replace Connect Proxy Path</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#persistentvolume-v1-core" class="nav-item">PersistentVolume v1 core</A></LI>
+ <UL id="persistentvolume-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-persistentvolume-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-persistentvolume-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-persistentvolume-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-persistentvolume-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-persistentvolume-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-persistentvolume-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-persistentvolume-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-persistentvolume-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-persistentvolume-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-persistentvolume-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-persistentvolume-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-persistentvolume-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-persistentvolume-v1-core" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-persistentvolume-v1-core-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-persistentvolume-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-persistentvolume-v1-core" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-persistentvolume-v1-core" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-persistentvolume-v1-core" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">PriorityLevelConfiguration v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ <UL id="prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#resourcequota-v1-core" class="nav-item">ResourceQuota v1 core</A></LI>
+ <UL id="resourcequota-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-resourcequota-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-resourcequota-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-resourcequota-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-resourcequota-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-resourcequota-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-resourcequota-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-resourcequota-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-resourcequota-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-resourcequota-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-resourcequota-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-resourcequota-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-resourcequota-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-resourcequota-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-resourcequota-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-resourcequota-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-resourcequota-v1-core-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-resourcequota-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-resourcequota-v1-core" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-resourcequota-v1-core" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-resourcequota-v1-core" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#role-v1-rbac-authorization-k8s-io" class="nav-item">Role v1 rbac.authorization.k8s.io</A></LI>
+ <UL id="role-v1-rbac-authorization-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-role-v1-rbac-authorization-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-role-v1-rbac-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-role-v1-rbac-authorization-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-role-v1-rbac-authorization-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-role-v1-rbac-authorization-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-role-v1-rbac-authorization-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-role-v1-rbac-authorization-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-role-v1-rbac-authorization-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-role-v1-rbac-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-role-v1-rbac-authorization-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-role-v1-rbac-authorization-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-role-v1-rbac-authorization-k8s-io" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-role-v1-rbac-authorization-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-role-v1-rbac-authorization-k8s-io" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-role-v1-rbac-authorization-k8s-io" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">RoleBinding v1 rbac.authorization.k8s.io</A></LI>
+ <UL id="rolebinding-v1-rbac-authorization-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-rolebinding-v1-rbac-authorization-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-rolebinding-v1-rbac-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-rolebinding-v1-rbac-authorization-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-rolebinding-v1-rbac-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-rolebinding-v1-rbac-authorization-k8s-io" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#runtimeclass-v1-node-k8s-io" class="nav-item">RuntimeClass v1 node.k8s.io</A></LI>
+ <UL id="runtimeclass-v1-node-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-runtimeclass-v1-node-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-runtimeclass-v1-node-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-runtimeclass-v1-node-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-runtimeclass-v1-node-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-runtimeclass-v1-node-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-runtimeclass-v1-node-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-runtimeclass-v1-node-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-runtimeclass-v1-node-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-runtimeclass-v1-node-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-runtimeclass-v1-node-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-runtimeclass-v1-node-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-runtimeclass-v1-node-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-runtimeclass-v1-node-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#selfsubjectaccessreview-v1-authorization-k8s-io" class="nav-item">SelfSubjectAccessReview v1 authorization.k8s.io</A></LI>
+ <UL id="selfsubjectaccessreview-v1-authorization-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-selfsubjectaccessreview-v1-authorization-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-selfsubjectaccessreview-v1-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-selfsubjectaccessreview-v1-authorization-k8s-io" class="nav-item">Create</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#selfsubjectrulesreview-v1-authorization-k8s-io" class="nav-item">SelfSubjectRulesReview v1 authorization.k8s.io</A></LI>
+ <UL id="selfsubjectrulesreview-v1-authorization-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-selfsubjectrulesreview-v1-authorization-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-selfsubjectrulesreview-v1-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-selfsubjectrulesreview-v1-authorization-k8s-io" class="nav-item">Create</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#serviceaccount-v1-core" class="nav-item">ServiceAccount v1 core</A></LI>
+ <UL id="serviceaccount-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-serviceaccount-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-serviceaccount-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-serviceaccount-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-serviceaccount-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-serviceaccount-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-serviceaccount-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-serviceaccount-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-serviceaccount-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-serviceaccount-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-serviceaccount-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-serviceaccount-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-serviceaccount-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-serviceaccount-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-serviceaccount-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-serviceaccount-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">StorageVersion v1alpha1 internal.apiserver.k8s.io</A></LI>
+ <UL id="storageversion-v1alpha1-internal-apiserver-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-storageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#subjectaccessreview-v1-authorization-k8s-io" class="nav-item">SubjectAccessReview v1 authorization.k8s.io</A></LI>
+ <UL id="subjectaccessreview-v1-authorization-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-subjectaccessreview-v1-authorization-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-subjectaccessreview-v1-authorization-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-subjectaccessreview-v1-authorization-k8s-io" class="nav-item">Create</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#tokenrequest-v1-authentication-k8s-io" class="nav-item">TokenRequest v1 authentication.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#tokenreview-v1-authentication-k8s-io" class="nav-item">TokenReview v1 authentication.k8s.io</A></LI>
+ <UL id="tokenreview-v1-authentication-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-tokenreview-v1-authentication-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-tokenreview-v1-authentication-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-tokenreview-v1-authentication-k8s-io" class="nav-item">Create</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#networkpolicy-v1-networking-k8s-io" class="nav-item">NetworkPolicy v1 networking.k8s.io</A></LI>
+ <UL id="networkpolicy-v1-networking-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-networkpolicy-v1-networking-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-networkpolicy-v1-networking-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-networkpolicy-v1-networking-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-networkpolicy-v1-networking-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-networkpolicy-v1-networking-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-networkpolicy-v1-networking-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-networkpolicy-v1-networking-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-networkpolicy-v1-networking-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-networkpolicy-v1-networking-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-networkpolicy-v1-networking-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-networkpolicy-v1-networking-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-networkpolicy-v1-networking-k8s-io" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-networkpolicy-v1-networking-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-networkpolicy-v1-networking-k8s-io" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-networkpolicy-v1-networking-k8s-io" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-networkpolicy-v1-networking-k8s-io-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-networkpolicy-v1-networking-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-networkpolicy-v1-networking-k8s-io" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-networkpolicy-v1-networking-k8s-io" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-networkpolicy-v1-networking-k8s-io" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1 strong-nav"><A href="#-strong-definitions-strong-" class="nav-item"><STRONG>DEFINITIONS</STRONG></A></LI>
+</UL>
+ <UL id="-strong-definitions-strong--nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2"><A href="#apigroup-v1-meta" class="nav-item">APIGroup v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#apiresource-v1-meta" class="nav-item">APIResource v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#apiservicecondition-v1-apiregistration-k8s-io" class="nav-item">APIServiceCondition v1 apiregistration.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#apiversions-v1-meta" class="nav-item">APIVersions v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#awselasticblockstorevolumesource-v1-core" class="nav-item">AWSElasticBlockStoreVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#affinity-v1-core" class="nav-item">Affinity v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#aggregationrule-v1-rbac-authorization-k8s-io" class="nav-item">AggregationRule v1 rbac.authorization.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#allowedcsidriver-v1beta1-policy" class="nav-item">AllowedCSIDriver v1beta1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#allowedflexvolume-v1beta1-policy" class="nav-item">AllowedFlexVolume v1beta1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#allowedhostpath-v1beta1-policy" class="nav-item">AllowedHostPath v1beta1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#attachedvolume-v1-core" class="nav-item">AttachedVolume v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#azurediskvolumesource-v1-core" class="nav-item">AzureDiskVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#azurefilepersistentvolumesource-v1-core" class="nav-item">AzureFilePersistentVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#azurefilevolumesource-v1-core" class="nav-item">AzureFileVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#boundobjectreference-v1-authentication-k8s-io" class="nav-item">BoundObjectReference v1 authentication.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#csinodedriver-v1-storage-k8s-io" class="nav-item">CSINodeDriver v1 storage.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#csipersistentvolumesource-v1-core" class="nav-item">CSIPersistentVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#csistoragecapacity-v1-storage-k8s-io" class="nav-item">CSIStorageCapacity v1 storage.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#csivolumesource-v1-core" class="nav-item">CSIVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#capabilities-v1-core" class="nav-item">Capabilities v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#cephfspersistentvolumesource-v1-core" class="nav-item">CephFSPersistentVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#cephfsvolumesource-v1-core" class="nav-item">CephFSVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#certificatesigningrequestcondition-v1-certificates-k8s-io" class="nav-item">CertificateSigningRequestCondition v1 certificates.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#cinderpersistentvolumesource-v1-core" class="nav-item">CinderPersistentVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#cindervolumesource-v1-core" class="nav-item">CinderVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#clientipconfig-v1-core" class="nav-item">ClientIPConfig v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#componentcondition-v1-core" class="nav-item">ComponentCondition v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#condition-v1-meta" class="nav-item">Condition v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#configmapenvsource-v1-core" class="nav-item">ConfigMapEnvSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#configmapkeyselector-v1-core" class="nav-item">ConfigMapKeySelector v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#configmapnodeconfigsource-v1-core" class="nav-item">ConfigMapNodeConfigSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#configmapprojection-v1-core" class="nav-item">ConfigMapProjection v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#configmapvolumesource-v1-core" class="nav-item">ConfigMapVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#containerimage-v1-core" class="nav-item">ContainerImage v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#containerport-v1-core" class="nav-item">ContainerPort v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#containerresourcemetricsource-v2-autoscaling" class="nav-item">ContainerResourceMetricSource v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#containerresourcemetricstatus-v2-autoscaling" class="nav-item">ContainerResourceMetricStatus v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#containerstate-v1-core" class="nav-item">ContainerState v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#containerstaterunning-v1-core" class="nav-item">ContainerStateRunning v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#containerstateterminated-v1-core" class="nav-item">ContainerStateTerminated v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#containerstatewaiting-v1-core" class="nav-item">ContainerStateWaiting v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#crossversionobjectreference-v2-autoscaling" class="nav-item">CrossVersionObjectReference v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#customresourcecolumndefinition-v1-apiextensions-k8s-io" class="nav-item">CustomResourceColumnDefinition v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#customresourceconversion-v1-apiextensions-k8s-io" class="nav-item">CustomResourceConversion v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#customresourcedefinitioncondition-v1-apiextensions-k8s-io" class="nav-item">CustomResourceDefinitionCondition v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#customresourcedefinitionnames-v1-apiextensions-k8s-io" class="nav-item">CustomResourceDefinitionNames v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#customresourcedefinitionversion-v1-apiextensions-k8s-io" class="nav-item">CustomResourceDefinitionVersion v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#customresourcesubresourcescale-v1-apiextensions-k8s-io" class="nav-item">CustomResourceSubresourceScale v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#customresourcesubresourcestatus-v1-apiextensions-k8s-io" class="nav-item">CustomResourceSubresourceStatus v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#customresourcesubresources-v1-apiextensions-k8s-io" class="nav-item">CustomResourceSubresources v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#customresourcevalidation-v1-apiextensions-k8s-io" class="nav-item">CustomResourceValidation v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#daemonendpoint-v1-core" class="nav-item">DaemonEndpoint v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#daemonsetcondition-v1-apps" class="nav-item">DaemonSetCondition v1 apps</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#daemonsetupdatestrategy-v1-apps" class="nav-item">DaemonSetUpdateStrategy v1 apps</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#deleteoptions-v1-meta" class="nav-item">DeleteOptions v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#deploymentcondition-v1-apps" class="nav-item">DeploymentCondition v1 apps</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#downwardapiprojection-v1-core" class="nav-item">DownwardAPIProjection v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#downwardapivolumefile-v1-core" class="nav-item">DownwardAPIVolumeFile v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#downwardapivolumesource-v1-core" class="nav-item">DownwardAPIVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#emptydirvolumesource-v1-core" class="nav-item">EmptyDirVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#endpoint-v1-discovery-k8s-io" class="nav-item">Endpoint v1 discovery.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#endpointaddress-v1-core" class="nav-item">EndpointAddress v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#endpointconditions-v1-discovery-k8s-io" class="nav-item">EndpointConditions v1 discovery.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#endpointhints-v1-discovery-k8s-io" class="nav-item">EndpointHints v1 discovery.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#endpointport-v1-core" class="nav-item">EndpointPort v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#endpointsubset-v1-core" class="nav-item">EndpointSubset v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#envfromsource-v1-core" class="nav-item">EnvFromSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#envvar-v1-core" class="nav-item">EnvVar v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#envvarsource-v1-core" class="nav-item">EnvVarSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#ephemeralcontainer-v1-core" class="nav-item">EphemeralContainer v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#ephemeralvolumesource-v1-core" class="nav-item">EphemeralVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#eventseries-v1-events-k8s-io" class="nav-item">EventSeries v1 events.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#eventsource-v1-core" class="nav-item">EventSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#eviction-v1-policy" class="nav-item">Eviction v1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#execaction-v1-core" class="nav-item">ExecAction v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#externaldocumentation-v1-apiextensions-k8s-io" class="nav-item">ExternalDocumentation v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#externalmetricsource-v2-autoscaling" class="nav-item">ExternalMetricSource v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#externalmetricstatus-v2-autoscaling" class="nav-item">ExternalMetricStatus v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#fcvolumesource-v1-core" class="nav-item">FCVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#fsgroupstrategyoptions-v1beta1-policy" class="nav-item">FSGroupStrategyOptions v1beta1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#fieldsv1-v1-meta" class="nav-item">FieldsV1 v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#flexpersistentvolumesource-v1-core" class="nav-item">FlexPersistentVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#flexvolumesource-v1-core" class="nav-item">FlexVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#flockervolumesource-v1-core" class="nav-item">FlockerVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#flowdistinguishermethod-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">FlowDistinguisherMethod v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#flowschemacondition-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">FlowSchemaCondition v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#forzone-v1-discovery-k8s-io" class="nav-item">ForZone v1 discovery.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#gcepersistentdiskvolumesource-v1-core" class="nav-item">GCEPersistentDiskVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#grpcaction-v1-core" class="nav-item">GRPCAction v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#gitrepovolumesource-v1-core" class="nav-item">GitRepoVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#glusterfspersistentvolumesource-v1-core" class="nav-item">GlusterfsPersistentVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#glusterfsvolumesource-v1-core" class="nav-item">GlusterfsVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#groupsubject-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">GroupSubject v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#groupversionfordiscovery-v1-meta" class="nav-item">GroupVersionForDiscovery v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#hpascalingpolicy-v2-autoscaling" class="nav-item">HPAScalingPolicy v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#hpascalingrules-v2-autoscaling" class="nav-item">HPAScalingRules v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#httpgetaction-v1-core" class="nav-item">HTTPGetAction v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#httpheader-v1-core" class="nav-item">HTTPHeader v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#httpingresspath-v1-networking-k8s-io" class="nav-item">HTTPIngressPath v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#httpingressrulevalue-v1-networking-k8s-io" class="nav-item">HTTPIngressRuleValue v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#horizontalpodautoscalerbehavior-v2-autoscaling" class="nav-item">HorizontalPodAutoscalerBehavior v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#horizontalpodautoscalercondition-v2-autoscaling" class="nav-item">HorizontalPodAutoscalerCondition v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#hostalias-v1-core" class="nav-item">HostAlias v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#hostpathvolumesource-v1-core" class="nav-item">HostPathVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#hostportrange-v1beta1-policy" class="nav-item">HostPortRange v1beta1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#idrange-v1beta1-policy" class="nav-item">IDRange v1beta1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#ipblock-v1-networking-k8s-io" class="nav-item">IPBlock v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#iscsipersistentvolumesource-v1-core" class="nav-item">ISCSIPersistentVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#iscsivolumesource-v1-core" class="nav-item">ISCSIVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#ingressbackend-v1-networking-k8s-io" class="nav-item">IngressBackend v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#ingressclassparametersreference-v1-networking-k8s-io" class="nav-item">IngressClassParametersReference v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#ingressrule-v1-networking-k8s-io" class="nav-item">IngressRule v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#ingressservicebackend-v1-networking-k8s-io" class="nav-item">IngressServiceBackend v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#ingresstls-v1-networking-k8s-io" class="nav-item">IngressTLS v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#json-v1-apiextensions-k8s-io" class="nav-item">JSON v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#jsonschemaprops-v1-apiextensions-k8s-io" class="nav-item">JSONSchemaProps v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#jsonschemapropsorarray-v1-apiextensions-k8s-io" class="nav-item">JSONSchemaPropsOrArray v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#jsonschemapropsorbool-v1-apiextensions-k8s-io" class="nav-item">JSONSchemaPropsOrBool v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#jobcondition-v1-batch" class="nav-item">JobCondition v1 batch</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#jobtemplatespec-v1-batch" class="nav-item">JobTemplateSpec v1 batch</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#keytopath-v1-core" class="nav-item">KeyToPath v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#labelselector-v1-meta" class="nav-item">LabelSelector v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#labelselectorrequirement-v1-meta" class="nav-item">LabelSelectorRequirement v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#lifecycle-v1-core" class="nav-item">Lifecycle v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#lifecyclehandler-v1-core" class="nav-item">LifecycleHandler v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#limitrangeitem-v1-core" class="nav-item">LimitRangeItem v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#limitresponse-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">LimitResponse v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#limitedprioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">LimitedPriorityLevelConfiguration v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#listmeta-v1-meta" class="nav-item">ListMeta v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#loadbalanceringress-v1-core" class="nav-item">LoadBalancerIngress v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#loadbalancerstatus-v1-core" class="nav-item">LoadBalancerStatus v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#localobjectreference-v1-core" class="nav-item">LocalObjectReference v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#localvolumesource-v1-core" class="nav-item">LocalVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#managedfieldsentry-v1-meta" class="nav-item">ManagedFieldsEntry v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#metricidentifier-v2-autoscaling" class="nav-item">MetricIdentifier v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#metricspec-v2-autoscaling" class="nav-item">MetricSpec v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#metricstatus-v2-autoscaling" class="nav-item">MetricStatus v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#metrictarget-v2-autoscaling" class="nav-item">MetricTarget v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#metricvaluestatus-v2-autoscaling" class="nav-item">MetricValueStatus v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#microtime-v1-meta" class="nav-item">MicroTime v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#mutatingwebhook-v1-admissionregistration-k8s-io" class="nav-item">MutatingWebhook v1 admissionregistration.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nfsvolumesource-v1-core" class="nav-item">NFSVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#namespacecondition-v1-core" class="nav-item">NamespaceCondition v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#networkpolicyegressrule-v1-networking-k8s-io" class="nav-item">NetworkPolicyEgressRule v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#networkpolicyingressrule-v1-networking-k8s-io" class="nav-item">NetworkPolicyIngressRule v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#networkpolicypeer-v1-networking-k8s-io" class="nav-item">NetworkPolicyPeer v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#networkpolicyport-v1-networking-k8s-io" class="nav-item">NetworkPolicyPort v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nodeaddress-v1-core" class="nav-item">NodeAddress v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nodeaffinity-v1-core" class="nav-item">NodeAffinity v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nodecondition-v1-core" class="nav-item">NodeCondition v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nodeconfigsource-v1-core" class="nav-item">NodeConfigSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nodeconfigstatus-v1-core" class="nav-item">NodeConfigStatus v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nodedaemonendpoints-v1-core" class="nav-item">NodeDaemonEndpoints v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nodeselector-v1-core" class="nav-item">NodeSelector v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nodeselectorrequirement-v1-core" class="nav-item">NodeSelectorRequirement v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nodeselectorterm-v1-core" class="nav-item">NodeSelectorTerm v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nodesysteminfo-v1-core" class="nav-item">NodeSystemInfo v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nonresourceattributes-v1-authorization-k8s-io" class="nav-item">NonResourceAttributes v1 authorization.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nonresourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">NonResourcePolicyRule v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#nonresourcerule-v1-authorization-k8s-io" class="nav-item">NonResourceRule v1 authorization.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#objectfieldselector-v1-core" class="nav-item">ObjectFieldSelector v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#objectmeta-v1-meta" class="nav-item">ObjectMeta v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#objectmetricsource-v2-autoscaling" class="nav-item">ObjectMetricSource v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#objectmetricstatus-v2-autoscaling" class="nav-item">ObjectMetricStatus v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#objectreference-v1-core" class="nav-item">ObjectReference v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#overhead-v1-node-k8s-io" class="nav-item">Overhead v1 node.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#ownerreference-v1-meta" class="nav-item">OwnerReference v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#patch-v1-meta" class="nav-item">Patch v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#persistentvolumeclaimcondition-v1-core" class="nav-item">PersistentVolumeClaimCondition v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#persistentvolumeclaimtemplate-v1-core" class="nav-item">PersistentVolumeClaimTemplate v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#persistentvolumeclaimvolumesource-v1-core" class="nav-item">PersistentVolumeClaimVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#photonpersistentdiskvolumesource-v1-core" class="nav-item">PhotonPersistentDiskVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#podaffinity-v1-core" class="nav-item">PodAffinity v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#podaffinityterm-v1-core" class="nav-item">PodAffinityTerm v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#podantiaffinity-v1-core" class="nav-item">PodAntiAffinity v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#podcondition-v1-core" class="nav-item">PodCondition v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#poddnsconfig-v1-core" class="nav-item">PodDNSConfig v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#poddnsconfigoption-v1-core" class="nav-item">PodDNSConfigOption v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#podip-v1-core" class="nav-item">PodIP v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#podos-v1-core" class="nav-item">PodOS v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#podreadinessgate-v1-core" class="nav-item">PodReadinessGate v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#podsecuritycontext-v1-core" class="nav-item">PodSecurityContext v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#podsmetricsource-v2-autoscaling" class="nav-item">PodsMetricSource v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#podsmetricstatus-v2-autoscaling" class="nav-item">PodsMetricStatus v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#policyrule-v1-rbac-authorization-k8s-io" class="nav-item">PolicyRule v1 rbac.authorization.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#policyruleswithsubjects-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">PolicyRulesWithSubjects v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#portstatus-v1-core" class="nav-item">PortStatus v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#portworxvolumesource-v1-core" class="nav-item">PortworxVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#preconditions-v1-meta" class="nav-item">Preconditions v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#preferredschedulingterm-v1-core" class="nav-item">PreferredSchedulingTerm v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#prioritylevelconfigurationcondition-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">PriorityLevelConfigurationCondition v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#prioritylevelconfigurationreference-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">PriorityLevelConfigurationReference v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#probe-v1-core" class="nav-item">Probe v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#projectedvolumesource-v1-core" class="nav-item">ProjectedVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#quantity-resource-core" class="nav-item">Quantity resource core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#queuingconfiguration-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">QueuingConfiguration v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#quobytevolumesource-v1-core" class="nav-item">QuobyteVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#rbdpersistentvolumesource-v1-core" class="nav-item">RBDPersistentVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#rbdvolumesource-v1-core" class="nav-item">RBDVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#replicasetcondition-v1-apps" class="nav-item">ReplicaSetCondition v1 apps</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#replicationcontrollercondition-v1-core" class="nav-item">ReplicationControllerCondition v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#resourceattributes-v1-authorization-k8s-io" class="nav-item">ResourceAttributes v1 authorization.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#resourcefieldselector-v1-core" class="nav-item">ResourceFieldSelector v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#resourcemetricsource-v2-autoscaling" class="nav-item">ResourceMetricSource v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#resourcemetricstatus-v2-autoscaling" class="nav-item">ResourceMetricStatus v2 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#resourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">ResourcePolicyRule v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#resourcerequirements-v1-core" class="nav-item">ResourceRequirements v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#resourcerule-v1-authorization-k8s-io" class="nav-item">ResourceRule v1 authorization.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#roleref-v1-rbac-authorization-k8s-io" class="nav-item">RoleRef v1 rbac.authorization.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#rollingupdatestatefulsetstrategy-v1-apps" class="nav-item">RollingUpdateStatefulSetStrategy v1 apps</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#rulewithoperations-v1-admissionregistration-k8s-io" class="nav-item">RuleWithOperations v1 admissionregistration.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#runasgroupstrategyoptions-v1beta1-policy" class="nav-item">RunAsGroupStrategyOptions v1beta1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#runasuserstrategyoptions-v1beta1-policy" class="nav-item">RunAsUserStrategyOptions v1beta1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#runtimeclassstrategyoptions-v1beta1-policy" class="nav-item">RuntimeClassStrategyOptions v1beta1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#selinuxoptions-v1-core" class="nav-item">SELinuxOptions v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#selinuxstrategyoptions-v1beta1-policy" class="nav-item">SELinuxStrategyOptions v1beta1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#scale-v1-autoscaling" class="nav-item">Scale v1 autoscaling</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#scaleiopersistentvolumesource-v1-core" class="nav-item">ScaleIOPersistentVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#scaleiovolumesource-v1-core" class="nav-item">ScaleIOVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#scheduling-v1-node-k8s-io" class="nav-item">Scheduling v1 node.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#scopeselector-v1-core" class="nav-item">ScopeSelector v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#scopedresourceselectorrequirement-v1-core" class="nav-item">ScopedResourceSelectorRequirement v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#seccompprofile-v1-core" class="nav-item">SeccompProfile v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#secretenvsource-v1-core" class="nav-item">SecretEnvSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#secretkeyselector-v1-core" class="nav-item">SecretKeySelector v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#secretprojection-v1-core" class="nav-item">SecretProjection v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#secretreference-v1-core" class="nav-item">SecretReference v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#secretvolumesource-v1-core" class="nav-item">SecretVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#securitycontext-v1-core" class="nav-item">SecurityContext v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#serveraddressbyclientcidr-v1-meta" class="nav-item">ServerAddressByClientCIDR v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#serverstorageversion-v1alpha1-internal-apiserver-k8s-io" class="nav-item">ServerStorageVersion v1alpha1 internal.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#serviceaccountsubject-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">ServiceAccountSubject v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#serviceaccounttokenprojection-v1-core" class="nav-item">ServiceAccountTokenProjection v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#servicebackendport-v1-networking-k8s-io" class="nav-item">ServiceBackendPort v1 networking.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#serviceport-v1-core" class="nav-item">ServicePort v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#servicereference-v1-admissionregistration-k8s-io" class="nav-item">ServiceReference v1 admissionregistration.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#sessionaffinityconfig-v1-core" class="nav-item">SessionAffinityConfig v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#statefulsetcondition-v1-apps" class="nav-item">StatefulSetCondition v1 apps</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#statefulsetpersistentvolumeclaimretentionpolicy-v1-apps" class="nav-item">StatefulSetPersistentVolumeClaimRetentionPolicy v1 apps</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#statefulsetupdatestrategy-v1-apps" class="nav-item">StatefulSetUpdateStrategy v1 apps</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#status-v1-meta" class="nav-item">Status v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#statuscause-v1-meta" class="nav-item">StatusCause v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#statusdetails-v1-meta" class="nav-item">StatusDetails v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#storageospersistentvolumesource-v1-core" class="nav-item">StorageOSPersistentVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#storageosvolumesource-v1-core" class="nav-item">StorageOSVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#storageversioncondition-v1alpha1-internal-apiserver-k8s-io" class="nav-item">StorageVersionCondition v1alpha1 internal.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#subject-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">Subject v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#subjectrulesreviewstatus-v1-authorization-k8s-io" class="nav-item">SubjectRulesReviewStatus v1 authorization.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#supplementalgroupsstrategyoptions-v1beta1-policy" class="nav-item">SupplementalGroupsStrategyOptions v1beta1 policy</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#sysctl-v1-core" class="nav-item">Sysctl v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#tcpsocketaction-v1-core" class="nav-item">TCPSocketAction v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#taint-v1-core" class="nav-item">Taint v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#time-v1-meta" class="nav-item">Time v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#toleration-v1-core" class="nav-item">Toleration v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#topologyselectorlabelrequirement-v1-core" class="nav-item">TopologySelectorLabelRequirement v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#topologyselectorterm-v1-core" class="nav-item">TopologySelectorTerm v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#topologyspreadconstraint-v1-core" class="nav-item">TopologySpreadConstraint v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#typedlocalobjectreference-v1-core" class="nav-item">TypedLocalObjectReference v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#uncountedterminatedpods-v1-batch" class="nav-item">UncountedTerminatedPods v1 batch</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#userinfo-v1-authentication-k8s-io" class="nav-item">UserInfo v1 authentication.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#usersubject-v1beta2-flowcontrol-apiserver-k8s-io" class="nav-item">UserSubject v1beta2 flowcontrol.apiserver.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#validatingwebhook-v1-admissionregistration-k8s-io" class="nav-item">ValidatingWebhook v1 admissionregistration.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#validationrule-v1-apiextensions-k8s-io" class="nav-item">ValidationRule v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#volumeattachmentsource-v1-storage-k8s-io" class="nav-item">VolumeAttachmentSource v1 storage.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#volumedevice-v1-core" class="nav-item">VolumeDevice v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#volumeerror-v1-storage-k8s-io" class="nav-item">VolumeError v1 storage.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#volumemount-v1-core" class="nav-item">VolumeMount v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#volumenodeaffinity-v1-core" class="nav-item">VolumeNodeAffinity v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#volumenoderesources-v1-storage-k8s-io" class="nav-item">VolumeNodeResources v1 storage.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#volumeprojection-v1-core" class="nav-item">VolumeProjection v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#vspherevirtualdiskvolumesource-v1-core" class="nav-item">VsphereVirtualDiskVolumeSource v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#watchevent-v1-meta" class="nav-item">WatchEvent v1 meta</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#webhookclientconfig-v1-admissionregistration-k8s-io" class="nav-item">WebhookClientConfig v1 admissionregistration.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#webhookconversion-v1-apiextensions-k8s-io" class="nav-item">WebhookConversion v1 apiextensions.k8s.io</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#weightedpodaffinityterm-v1-core" class="nav-item">WeightedPodAffinityTerm v1 core</A></LI>
+ </UL>
+  <UL>
+   <LI class="nav-level-2"><A href="#windowssecuritycontextoptions-v1-core" class="nav-item">WindowsSecurityContextOptions v1 core</A></LI>
+ </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1 strong-nav"><A href="#-strong-old-api-versions-strong-" class="nav-item"><STRONG>OLD API VERSIONS</STRONG></A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">CSIStorageCapacity v1beta1 storage.k8s.io</A></LI>
+ <UL id="csistoragecapacity-v1beta1-storage-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#containerresourcemetricsource-v2beta2-autoscaling" class="nav-item">ContainerResourceMetricSource v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#containerresourcemetricsource-v2beta1-autoscaling" class="nav-item">ContainerResourceMetricSource v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#containerresourcemetricstatus-v2beta2-autoscaling" class="nav-item">ContainerResourceMetricStatus v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#containerresourcemetricstatus-v2beta1-autoscaling" class="nav-item">ContainerResourceMetricStatus v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#cronjob-v1beta1-batch" class="nav-item">CronJob v1beta1 batch</A></LI>
+ <UL id="cronjob-v1beta1-batch-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-cronjob-v1beta1-batch-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-cronjob-v1beta1-batch-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-cronjob-v1beta1-batch" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-cronjob-v1beta1-batch" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-cronjob-v1beta1-batch" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-cronjob-v1beta1-batch" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-cronjob-v1beta1-batch" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-cronjob-v1beta1-batch-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-cronjob-v1beta1-batch-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-cronjob-v1beta1-batch" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-cronjob-v1beta1-batch" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-cronjob-v1beta1-batch" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-cronjob-v1beta1-batch" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-cronjob-v1beta1-batch" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-cronjob-v1beta1-batch" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-cronjob-v1beta1-batch-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-cronjob-v1beta1-batch-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-cronjob-v1beta1-batch" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-cronjob-v1beta1-batch" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-cronjob-v1beta1-batch" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#crossversionobjectreference-v1-autoscaling" class="nav-item">CrossVersionObjectReference v1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#crossversionobjectreference-v2beta2-autoscaling" class="nav-item">CrossVersionObjectReference v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#crossversionobjectreference-v2beta1-autoscaling" class="nav-item">CrossVersionObjectReference v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#endpoint-v1beta1-discovery-k8s-io" class="nav-item">Endpoint v1beta1 discovery.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#endpointconditions-v1beta1-discovery-k8s-io" class="nav-item">EndpointConditions v1beta1 discovery.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#endpointhints-v1beta1-discovery-k8s-io" class="nav-item">EndpointHints v1beta1 discovery.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#endpointport-v1-discovery-k8s-io" class="nav-item">EndpointPort v1 discovery.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#endpointport-v1beta1-discovery-k8s-io" class="nav-item">EndpointPort v1beta1 discovery.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#endpointslice-v1beta1-discovery-k8s-io" class="nav-item">EndpointSlice v1beta1 discovery.k8s.io</A></LI>
+ <UL id="endpointslice-v1beta1-discovery-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-endpointslice-v1beta1-discovery-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-endpointslice-v1beta1-discovery-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-endpointslice-v1beta1-discovery-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-endpointslice-v1beta1-discovery-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-endpointslice-v1beta1-discovery-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-endpointslice-v1beta1-discovery-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-endpointslice-v1beta1-discovery-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-endpointslice-v1beta1-discovery-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-endpointslice-v1beta1-discovery-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-endpointslice-v1beta1-discovery-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-endpointslice-v1beta1-discovery-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-endpointslice-v1beta1-discovery-k8s-io" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-endpointslice-v1beta1-discovery-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-endpointslice-v1beta1-discovery-k8s-io" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-endpointslice-v1beta1-discovery-k8s-io" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#event-v1-core" class="nav-item">Event v1 core</A></LI>
+ <UL id="event-v1-core-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-event-v1-core-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-event-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-event-v1-core" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-event-v1-core" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-event-v1-core" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-event-v1-core" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-event-v1-core" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-event-v1-core-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-event-v1-core-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-event-v1-core" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-event-v1-core" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-event-v1-core" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-event-v1-core" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-event-v1-core" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-event-v1-core" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#event-v1beta1-events-k8s-io" class="nav-item">Event v1beta1 events.k8s.io</A></LI>
+ <UL id="event-v1beta1-events-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-event-v1beta1-events-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-event-v1beta1-events-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-event-v1beta1-events-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-event-v1beta1-events-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-event-v1beta1-events-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-event-v1beta1-events-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-event-v1beta1-events-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-event-v1beta1-events-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-event-v1beta1-events-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-event-v1beta1-events-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-event-v1beta1-events-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-event-v1beta1-events-k8s-io" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-event-v1beta1-events-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-event-v1beta1-events-k8s-io" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-event-v1beta1-events-k8s-io" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#eventseries-v1-core" class="nav-item">EventSeries v1 core</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#eventseries-v1beta1-events-k8s-io" class="nav-item">EventSeries v1beta1 events.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#externalmetricsource-v2beta2-autoscaling" class="nav-item">ExternalMetricSource v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#externalmetricsource-v2beta1-autoscaling" class="nav-item">ExternalMetricSource v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#externalmetricstatus-v2beta2-autoscaling" class="nav-item">ExternalMetricStatus v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#externalmetricstatus-v2beta1-autoscaling" class="nav-item">ExternalMetricStatus v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#flowdistinguishermethod-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">FlowDistinguisherMethod v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">FlowSchema v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+ <UL id="flowschema-v1beta1-flowcontrol-apiserver-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#flowschemacondition-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">FlowSchemaCondition v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#forzone-v1beta1-discovery-k8s-io" class="nav-item">ForZone v1beta1 discovery.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#groupsubject-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">GroupSubject v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#hpascalingpolicy-v2beta2-autoscaling" class="nav-item">HPAScalingPolicy v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#hpascalingrules-v2beta2-autoscaling" class="nav-item">HPAScalingRules v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#horizontalpodautoscaler-v1-autoscaling" class="nav-item">HorizontalPodAutoscaler v1 autoscaling</A></LI>
+ <UL id="horizontalpodautoscaler-v1-autoscaling-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-horizontalpodautoscaler-v1-autoscaling-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-horizontalpodautoscaler-v1-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-horizontalpodautoscaler-v1-autoscaling-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-horizontalpodautoscaler-v1-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-horizontalpodautoscaler-v1-autoscaling" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-horizontalpodautoscaler-v1-autoscaling" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-horizontalpodautoscaler-v1-autoscaling-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-horizontalpodautoscaler-v1-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-horizontalpodautoscaler-v1-autoscaling" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">HorizontalPodAutoscaler v2beta2 autoscaling</A></LI>
+ <UL id="horizontalpodautoscaler-v2beta2-autoscaling-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-horizontalpodautoscaler-v2beta2-autoscaling" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">HorizontalPodAutoscaler v2beta1 autoscaling</A></LI>
+ <UL id="horizontalpodautoscaler-v2beta1-autoscaling-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-horizontalpodautoscaler-v2beta1-autoscaling" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#horizontalpodautoscalerbehavior-v2beta2-autoscaling" class="nav-item">HorizontalPodAutoscalerBehavior v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#horizontalpodautoscalercondition-v2beta2-autoscaling" class="nav-item">HorizontalPodAutoscalerCondition v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#horizontalpodautoscalercondition-v2beta1-autoscaling" class="nav-item">HorizontalPodAutoscalerCondition v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#jobtemplatespec-v1beta1-batch" class="nav-item">JobTemplateSpec v1beta1 batch</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#limitresponse-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">LimitResponse v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#limitedprioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">LimitedPriorityLevelConfiguration v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#metricidentifier-v2beta2-autoscaling" class="nav-item">MetricIdentifier v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#metricspec-v2beta2-autoscaling" class="nav-item">MetricSpec v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#metricspec-v2beta1-autoscaling" class="nav-item">MetricSpec v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#metricstatus-v2beta2-autoscaling" class="nav-item">MetricStatus v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#metricstatus-v2beta1-autoscaling" class="nav-item">MetricStatus v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#metrictarget-v2beta2-autoscaling" class="nav-item">MetricTarget v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#metricvaluestatus-v2beta2-autoscaling" class="nav-item">MetricValueStatus v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#nonresourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">NonResourcePolicyRule v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#objectmetricsource-v2beta2-autoscaling" class="nav-item">ObjectMetricSource v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#objectmetricsource-v2beta1-autoscaling" class="nav-item">ObjectMetricSource v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#objectmetricstatus-v2beta2-autoscaling" class="nav-item">ObjectMetricStatus v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#objectmetricstatus-v2beta1-autoscaling" class="nav-item">ObjectMetricStatus v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#overhead-v1beta1-node-k8s-io" class="nav-item">Overhead v1beta1 node.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#poddisruptionbudget-v1beta1-policy" class="nav-item">PodDisruptionBudget v1beta1 policy</A></LI>
+ <UL id="poddisruptionbudget-v1beta1-policy-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-poddisruptionbudget-v1beta1-policy-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-poddisruptionbudget-v1beta1-policy-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-poddisruptionbudget-v1beta1-policy" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-poddisruptionbudget-v1beta1-policy" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-poddisruptionbudget-v1beta1-policy" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-poddisruptionbudget-v1beta1-policy" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-poddisruptionbudget-v1beta1-policy" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-poddisruptionbudget-v1beta1-policy-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-poddisruptionbudget-v1beta1-policy-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-poddisruptionbudget-v1beta1-policy" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-poddisruptionbudget-v1beta1-policy" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#list-all-namespaces-poddisruptionbudget-v1beta1-policy" class="nav-item">List All Namespaces</A></LI>
+    <LI class="nav-level-2"><A href="#watch-poddisruptionbudget-v1beta1-policy" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-poddisruptionbudget-v1beta1-policy" class="nav-item">Watch List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-all-namespaces-poddisruptionbudget-v1beta1-policy" class="nav-item">Watch List All Namespaces</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-poddisruptionbudget-v1beta1-policy-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-poddisruptionbudget-v1beta1-policy-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-poddisruptionbudget-v1beta1-policy" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-poddisruptionbudget-v1beta1-policy" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-poddisruptionbudget-v1beta1-policy" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#podsmetricsource-v2beta2-autoscaling" class="nav-item">PodsMetricSource v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#podsmetricsource-v2beta1-autoscaling" class="nav-item">PodsMetricSource v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#podsmetricstatus-v2beta2-autoscaling" class="nav-item">PodsMetricStatus v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#podsmetricstatus-v2beta1-autoscaling" class="nav-item">PodsMetricStatus v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#policyruleswithsubjects-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">PolicyRulesWithSubjects v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">PriorityLevelConfiguration v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+ <UL id="prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-status-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-" class="nav-item"><STRONG>Status Operations</STRONG></A></LI>
+   <UL id="-strong-status-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#patch-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Patch Status</A></LI>
+    <LI class="nav-level-2"><A href="#read-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Read Status</A></LI>
+    <LI class="nav-level-2"><A href="#replace-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Replace Status</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#prioritylevelconfigurationcondition-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">PriorityLevelConfigurationCondition v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#prioritylevelconfigurationreference-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">PriorityLevelConfigurationReference v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#queuingconfiguration-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">QueuingConfiguration v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#resourcemetricsource-v2beta2-autoscaling" class="nav-item">ResourceMetricSource v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#resourcemetricsource-v2beta1-autoscaling" class="nav-item">ResourceMetricSource v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#resourcemetricstatus-v2beta2-autoscaling" class="nav-item">ResourceMetricStatus v2beta2 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#resourcemetricstatus-v2beta1-autoscaling" class="nav-item">ResourceMetricStatus v2beta1 autoscaling</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#resourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">ResourcePolicyRule v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#runtimeclass-v1beta1-node-k8s-io" class="nav-item">RuntimeClass v1beta1 node.k8s.io</A></LI>
+ <UL id="runtimeclass-v1beta1-node-k8s-io-nav" style="display: none;">
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-write-operations-runtimeclass-v1beta1-node-k8s-io-strong-" class="nav-item"><STRONG>Write Operations</STRONG></A></LI>
+   <UL id="-strong-write-operations-runtimeclass-v1beta1-node-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#create-runtimeclass-v1beta1-node-k8s-io" class="nav-item">Create</A></LI>
+    <LI class="nav-level-2"><A href="#patch-runtimeclass-v1beta1-node-k8s-io" class="nav-item">Patch</A></LI>
+    <LI class="nav-level-2"><A href="#replace-runtimeclass-v1beta1-node-k8s-io" class="nav-item">Replace</A></LI>
+    <LI class="nav-level-2"><A href="#delete-runtimeclass-v1beta1-node-k8s-io" class="nav-item">Delete</A></LI>
+    <LI class="nav-level-2"><A href="#delete-collection-runtimeclass-v1beta1-node-k8s-io" class="nav-item">Delete Collection</A></LI>
+   </UL>
+  </UL>
+  <UL>
+   <LI class="nav-level-2 strong-nav"><A href="#-strong-read-operations-runtimeclass-v1beta1-node-k8s-io-strong-" class="nav-item"><STRONG>Read Operations</STRONG></A></LI>
+   <UL id="-strong-read-operations-runtimeclass-v1beta1-node-k8s-io-strong--nav" style="display: none;">
+    <LI class="nav-level-2"><A href="#read-runtimeclass-v1beta1-node-k8s-io" class="nav-item">Read</A></LI>
+    <LI class="nav-level-2"><A href="#list-runtimeclass-v1beta1-node-k8s-io" class="nav-item">List</A></LI>
+    <LI class="nav-level-2"><A href="#watch-runtimeclass-v1beta1-node-k8s-io" class="nav-item">Watch</A></LI>
+    <LI class="nav-level-2"><A href="#watch-list-runtimeclass-v1beta1-node-k8s-io" class="nav-item">Watch List</A></LI>
+   </UL>
+  </UL>
+ </UL>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#scheduling-v1beta1-node-k8s-io" class="nav-item">Scheduling v1beta1 node.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#serviceaccountsubject-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">ServiceAccountSubject v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#servicereference-v1-apiextensions-k8s-io" class="nav-item">ServiceReference v1 apiextensions.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#servicereference-v1-apiregistration-k8s-io" class="nav-item">ServiceReference v1 apiregistration.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#subject-v1-rbac-authorization-k8s-io" class="nav-item">Subject v1 rbac.authorization.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#subject-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">Subject v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#tokenrequest-v1-storage-k8s-io" class="nav-item">TokenRequest v1 storage.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#usersubject-v1beta1-flowcontrol-apiserver-k8s-io" class="nav-item">UserSubject v1beta1 flowcontrol.apiserver.k8s.io</A></LI>
+</UL>
+<UL>
+ <LI class="nav-level-1"><A href="#webhookclientconfig-v1-apiextensions-k8s-io" class="nav-item">WebhookClientConfig v1 apiextensions.k8s.io</A></LI>
+</UL>
+</DIV>
+<DIV id="page-content-wrapper" class="col-xs-8 offset-xs-4 col-sm-9 offset-sm-3 col-md-10 offset-md-2 body-content">
+<DIV class="row">
+  <DIV class="col-md-6 copyright">
+ <a href="https://github.com/kubernetes/kubernetes">Copyright 2016-2022 The Kubernetes Authors.</a>
+  </DIV>
+  <DIV class="col-md-6 text-right">
+    <DIV>Generated at: 2022-04-26 23:27:22 (UTC)</DIV>
+    <DIV>API Version: <a href="https://github.com/kubernetes/kubernetes/blob/release-1.24/api/openapi-spec/swagger.json">v1.24.0</a></DIV>
+  </DIV>
+</DIV><H1 id="-strong-api-overview-strong-"><STRONG>API OVERVIEW</STRONG></H1>
+
+<P>Welcome to the Kubernetes API.  You can use the Kubernetes API to read
+and write Kubernetes resource objects via a Kubernetes API endpoint.</P>
+
+<H2 id="resource-categories">Resource Categories</H2>
+
+<P>This is a high-level overview of the basic types of resources provide by the Kubernetes API and their primary functions.</P>
+<P><B>Workloads</B> are objects you use to manage and run your containers on the cluster.</P>
+<P><B>Discovery &amp; LB</B> resources are objects you use to "stitch" your workloads together into an externally accessible, load-balanced Service.</P>
+<P><B>Config &amp; Storage</B> resources are objects you use to inject initialization data into your applications, and to persist data that is external to your container.</P>
+<P><B>Cluster</B> resources objects define how the cluster itself is configured; these are typically used only by cluster operators.</P>
+<P><B>Metadata</B> resources are objects you use to configure the behavior of other resources within the cluster, such as <code>HorizontalPodAutoscaler</code> for scaling workloads.</P>
+
+<HR />
+
+<H2 id="resource-objects">Resource Objects</H2>
+
+<P>Resource objects typically have 3 components:</P>
+<UL>
+<LI><B>Resource ObjectMeta</B>: This is metadata about the resource, such as its name, type, api version, annotations, and labels.  This contains
+fields that maybe updated both by the end user and the system (e.g. annotations).</LI>
+<LI><B>ResourceSpec</B>: This is defined by the user and describes the desired state of system.  Fill this in when creating or updating an object.</LI>
+<LI><B>ResourceStatus</B>: This is filled in by the server and reports the current state of the system.  In most cases, users don't need to change this.</LI>
+</UL>
+
+<HR />
+
+<H2 id="resource-operations">Resource Operations</H2>
+
+<P>Most resources provide the following Operations:</P>
+
+<H4 id="resource-operations-create">Create</H4>
+
+<P>Create operations will create the resource in the storage backend.  After a resource is create the system will apply
+the desired state.</P>
+
+<H4 id="resource-operations-update">Update</H4>
+
+<P>Updates come in 2 forms: <B>Replace</B> and <B>Patch</B>:
+
+<UL>
+<LI><B>Replace</B>:
+Replacing a resource object will update the resource by replacing the existing spec with the provided one.  For
+read-then-write operations this is safe because an optimistic lock failure will occur if the resource was modified
+between the read and write. <I>Note</I>: The <I>ResourceStatus</I> will be ignored by the system and will not be updated.
+To update the status, one must invoke the specific status update operation.<BR />
+
+Note: Replacing a resource object may not result immediately in changes being propagated to downstream objects.  For instance
+replacing a <CODE>ConfigMap</CODE> or <CODE>Secret</CODE> resource will not result in all <I>Pod</I>s seeing the changes unless the <I>Pod</I>s are
+restarted out of band.</P></LI>
+
+<LI><B>Patch</B>:
+Patch will apply a change to a specific field.  How the change is merged is defined per field.  Lists may either be
+replaced or merged.  Merging lists will not preserve ordering.<BR />
+
+<B>Patches will never cause optimistic locking failures, and the last write will win.</B>  Patches are recommended
+when the full state is not read before an update, or when failing on optimistic locking is undesirable. <I>When patching
+complex types, arrays and maps, how the patch is applied is defined on a per-field basis and may either replace
+the field's current value, or merge the contents into the current value.</I></LI>
+</UL>
+
+<H4 id="resource-operations-read">Read</H4>
+
+<P>Reads come in 3 forms: <B>Get</B>, <B>List</B> and <B>Watch</B>:<P>
+
+<UL>
+<LI><B>Get</B>: Get will retrieve a specific resource object by name.</LI>
+<LI><B>List</B>: List will retrieve all resource objects of a specific type within a namespace, and the results can be restricted to resources matching a selector query.<BR />
+<B>List All Namespaces</B>: Like <B>List</B> but retrieves resources across all namespaces.</LI>
+<LI><B>Watch</B>: Watch will stream results for an object(s) as it is updated.  Similar to a callback, watch is used to respond to resource changes.</LI>
+</UL>
+
+<H4 id="resource-operations-read">Delete</H4>
+
+<P>Delete will delete a resource.  Depending on the specific resource, child objects may or may not be garbage collected by the server.  See
+notes on specific resource objects for details.</P>
+
+<H4 id="resource-operations-additional">Additional Operations</H4>
+
+<P>Resources may define additional operations specific to that resource type.</P>
+
+<UL>
+	<LI><B>Rollback</B>: Rollback a PodTemplate to a previous version.  Only available for some resource types.</LI>
+	<LI><B>Read / Write Scale</B>: Read or Update the number of replicas for the given resource.  Only available for some resource types.</LI>
+	<LI><B>Read / Write Status</B>: Read or Update the Status for a resource object.  The Status can only changed through these update operations.</LI>
+</UL>
+<HR />
+<H1 id="-strong-api-groups-strong-"><STRONG>API Groups</STRONG></H1>
+<P>The API Groups and their versions are summarized in the following table.</P><TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>admissionregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>apiregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>authentication.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2, v1, v2beta2, v2beta1</CODE></TD></TR>
+<TR><TD><CODE>batch</CODE></TD><TD><CODE>v1, v1beta1</CODE></TD></TR>
+<TR><TD><CODE>certificates.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>coordination.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1, v1beta1</CODE></TD></TR>
+<TR><TD><CODE>events.k8s.io</CODE></TD><TD><CODE>v1, v1beta1</CODE></TD></TR>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2, v1beta1</CODE></TD></TR>
+<TR><TD><CODE>internal.apiserver.k8s.io</CODE></TD><TD><CODE>v1alpha1</CODE></TD></TR>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>node.k8s.io</CODE></TD><TD><CODE>v1, v1beta1</CODE></TD></TR>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1, v1beta1</CODE></TD></TR>
+<TR><TD><CODE>rbac.authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>scheduling.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD></TR>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1, v1beta1</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="-strong-workloads-apis-strong-"><STRONG>WORKLOADS</STRONG></H1>
+
+<P>Workloads resources are responsible for managing and running your containers on the cluster. <A href="#container-v1-core">Containers</A> are created
+by Controllers through <A href="#pod-v1-core">Pods</A>. Pods run Containers and provide environmental dependencies such as shared or
+persistent storage <A href="#volume-v1-core">Volumes</A> and <A href="#configmap-v1-core">Configuration</A> or <A href="#secret-v1-core">Secret</A>
+data injected into the container.</P>
+
+<P>The most common Controllers are:</P>
+<UL>
+<LI><A href="#deployment-v1-apps">Deployments</A> for stateless persistent apps (e.g. HTTP servers).</LI>
+<LI><A href="#statefulset-v1-apps">StatefulSets</A> for stateful persistent apps (e.g. databases).</LI>
+<LI><A href="#job-v1-batch">Jobs</A> for run-to-completion apps (e.g. batch Jobs).</LI>
+</UL>
+
+<HR />
+<H1 id="container-v1-core">Container v1 core</H1>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#example-container-v1-core" aria-controls="example-container-v1-core"
+  aria-expanded="false">example</BUTTON>
+<DIV class="collapse" id="example-container-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Container Config to run nginx (must be embedded in a PodSpec to run).</DIV>
+  <DIV class="panel-body">
+<PRE class="example"><CODE class="lang-yaml">
+name: nginx
+# Run the nginx:1.14 image
+image: nginx:1.14
+
+</CODE></PRE></DIV></DIV></DIV>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Container</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-warning col-md-8"><P><I class="fa fa-warning"></I> <B>Warning:</B></P><P>Containers are only ever created within the context of a <a href="#pod-v1-core">Pod</a>.  This is usually done using a Controller.  See Controllers: <a href="#deployment-v1-apps">Deployment</a>, <a href="#job-v1-batch">Job</a>, or <a href="#statefulset-v1-apps">StatefulSet</a></P></DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>args</CODE><BR /><I>string array</I></TD><TD>Arguments to the entrypoint. The container image&#39;s CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container&#39;s environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. &#34;$$(VAR_NAME)&#34; will produce the string literal &#34;$(VAR_NAME)&#34;. Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell</TD></TR>
+<TR><TD><CODE>command</CODE><BR /><I>string array</I></TD><TD>Entrypoint array. Not executed within a shell. The container image&#39;s ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container&#39;s environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. &#34;$$(VAR_NAME)&#34; will produce the string literal &#34;$(VAR_NAME)&#34;. Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell</TD></TR>
+<TR><TD><CODE>env</CODE><BR /><I><a href="#envvar-v1-core">EnvVar</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>name</I></TD><TD>List of environment variables to set in the container. Cannot be updated.</TD></TR>
+<TR><TD><CODE>envFrom</CODE><BR /><I><a href="#envfromsource-v1-core">EnvFromSource</a> array</I></TD><TD>List of sources to populate environment variables in the container. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.</TD></TR>
+<TR><TD><CODE>image</CODE><BR /><I>string</I></TD><TD>Container image name. More info: https://kubernetes.io/docs/concepts/containers/images This field is optional to allow higher level config management to default or override container images in workload controllers like Deployments and StatefulSets.</TD></TR>
+<TR><TD><CODE>imagePullPolicy</CODE><BR /><I>string</I></TD><TD>Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images  </TD></TR>
+<TR><TD><CODE>lifecycle</CODE><BR /><I><a href="#lifecycle-v1-core">Lifecycle</a></I></TD><TD>Actions that the management system should take in response to container lifecycle events. Cannot be updated.</TD></TR>
+<TR><TD><CODE>livenessProbe</CODE><BR /><I><a href="#probe-v1-core">Probe</a></I></TD><TD>Periodic probe of container liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the container specified as a DNS_LABEL. Each container in a pod must have a unique name (DNS_LABEL). Cannot be updated.</TD></TR>
+<TR><TD><CODE>ports</CODE><BR /><I><a href="#containerport-v1-core">ContainerPort</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>containerPort</I></TD><TD>List of ports to expose from the container. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default &#34;0.0.0.0&#34; address inside a container will be accessible from the network. Cannot be updated.</TD></TR>
+<TR><TD><CODE>readinessProbe</CODE><BR /><I><a href="#probe-v1-core">Probe</a></I></TD><TD>Periodic probe of container service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes</TD></TR>
+<TR><TD><CODE>resources</CODE><BR /><I><a href="#resourcerequirements-v1-core">ResourceRequirements</a></I></TD><TD>Compute Resources required by this container. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/</TD></TR>
+<TR><TD><CODE>securityContext</CODE><BR /><I><a href="#securitycontext-v1-core">SecurityContext</a></I></TD><TD>SecurityContext defines the security options the container should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/</TD></TR>
+<TR><TD><CODE>startupProbe</CODE><BR /><I><a href="#probe-v1-core">Probe</a></I></TD><TD>StartupProbe indicates that the Pod has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod&#39;s lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes</TD></TR>
+<TR><TD><CODE>stdin</CODE><BR /><I>boolean</I></TD><TD>Whether this container should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the container will always result in EOF. Default is false.</TD></TR>
+<TR><TD><CODE>stdinOnce</CODE><BR /><I>boolean</I></TD><TD>Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the container is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false</TD></TR>
+<TR><TD><CODE>terminationMessagePath</CODE><BR /><I>string</I></TD><TD>Optional: Path at which the file to which the container&#39;s termination message will be written is mounted into the container&#39;s filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.</TD></TR>
+<TR><TD><CODE>terminationMessagePolicy</CODE><BR /><I>string</I></TD><TD>Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the container status message on both success and failure. FallbackToLogsOnError will use the last chunk of container log output if the termination message file is empty and the container exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.  </TD></TR>
+<TR><TD><CODE>tty</CODE><BR /><I>boolean</I></TD><TD>Whether this container should allocate a TTY for itself, also requires &#39;stdin&#39; to be true. Default is false.</TD></TR>
+<TR><TD><CODE>volumeDevices</CODE><BR /><I><a href="#volumedevice-v1-core">VolumeDevice</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>devicePath</I></TD><TD>volumeDevices is the list of block devices to be used by the container.</TD></TR>
+<TR><TD><CODE>volumeMounts</CODE><BR /><I><a href="#volumemount-v1-core">VolumeMount</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>mountPath</I></TD><TD>Pod volumes to mount into the container&#39;s filesystem. Cannot be updated.</TD></TR>
+<TR><TD><CODE>workingDir</CODE><BR /><I>string</I></TD><TD>Container&#39;s working directory. If not specified, the container runtime&#39;s default will be used, which might be configured in the container image. Cannot be updated.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="containerstatus-v1-core">ContainerStatus v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podstatus-v1-core">PodStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>containerID</CODE><BR /><I>string</I></TD><TD>Container&#39;s ID in the format &#39;&lt;type&gt;://&lt;container_id&gt;&#39;.</TD></TR>
+<TR><TD><CODE>image</CODE><BR /><I>string</I></TD><TD>The image the container is running. More info: https://kubernetes.io/docs/concepts/containers/images.</TD></TR>
+<TR><TD><CODE>imageID</CODE><BR /><I>string</I></TD><TD>ImageID of the container&#39;s image.</TD></TR>
+<TR><TD><CODE>lastState</CODE><BR /><I><a href="#containerstate-v1-core">ContainerState</a></I></TD><TD>Details about the container&#39;s last termination condition.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>This must be a DNS_LABEL. Each container in a pod must have a unique name. Cannot be updated.</TD></TR>
+<TR><TD><CODE>ready</CODE><BR /><I>boolean</I></TD><TD>Specifies whether the container has passed its readiness probe.</TD></TR>
+<TR><TD><CODE>restartCount</CODE><BR /><I>integer</I></TD><TD>The number of times the container has been restarted.</TD></TR>
+<TR><TD><CODE>started</CODE><BR /><I>boolean</I></TD><TD>Specifies whether the container has passed its startup probe. Initialized as false, becomes true after startupProbe is considered successful. Resets to false when the container is restarted, or if kubelet loses state temporarily. Is always true when no startupProbe is defined.</TD></TR>
+<TR><TD><CODE>state</CODE><BR /><I><a href="#containerstate-v1-core">ContainerState</a></I></TD><TD>Details about the container&#39;s current condition.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="cronjob-v1-batch">CronJob v1 batch</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>batch</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CronJob</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#cronjob-v1beta1-batch">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#cronjoblist-v1-batch">CronJobList [batch/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#cronjobspec-v1-batch">CronJobSpec</a></I></TD><TD>Specification of the desired behavior of a cron job, including the schedule. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#cronjobstatus-v1-batch">CronJobStatus</a></I></TD><TD>Current status of a cron job. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="cronjobspec-v1-batch">CronJobSpec v1 batch</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#cronjob-v1-batch">CronJob [batch/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>concurrencyPolicy</CODE><BR /><I>string</I></TD><TD>Specifies how to treat concurrent executions of a Job. Valid values are: - &#34;Allow&#34; (default): allows CronJobs to run concurrently; - &#34;Forbid&#34;: forbids concurrent runs, skipping next run if previous run hasn&#39;t finished yet; - &#34;Replace&#34;: cancels currently running job and replaces it with a new one  </TD></TR>
+<TR><TD><CODE>failedJobsHistoryLimit</CODE><BR /><I>integer</I></TD><TD>The number of failed finished jobs to retain. Value must be non-negative integer. Defaults to 1.</TD></TR>
+<TR><TD><CODE>jobTemplate</CODE><BR /><I><a href="#jobtemplatespec-v1-batch">JobTemplateSpec</a></I></TD><TD>Specifies the job that will be created when executing a CronJob.</TD></TR>
+<TR><TD><CODE>schedule</CODE><BR /><I>string</I></TD><TD>The schedule in Cron format, see https://en.wikipedia.org/wiki/Cron.</TD></TR>
+<TR><TD><CODE>startingDeadlineSeconds</CODE><BR /><I>integer</I></TD><TD>Optional deadline in seconds for starting the job if it misses scheduled time for any reason.  Missed jobs executions will be counted as failed ones.</TD></TR>
+<TR><TD><CODE>successfulJobsHistoryLimit</CODE><BR /><I>integer</I></TD><TD>The number of successful finished jobs to retain. Value must be non-negative integer. Defaults to 3.</TD></TR>
+<TR><TD><CODE>suspend</CODE><BR /><I>boolean</I></TD><TD>This flag tells the controller to suspend subsequent executions, it does not apply to already started executions.  Defaults to false.</TD></TR>
+<TR><TD><CODE>timeZone</CODE><BR /><I>string</I></TD><TD>The time zone for the given schedule, see https://en.wikipedia.org/wiki/List_of_tz_database_time_zones. If not specified, this will rely on the time zone of the kube-controller-manager process. ALPHA: This field is in alpha and must be enabled via the `CronJobTimeZone` feature gate.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="cronjobstatus-v1-batch">CronJobStatus v1 batch</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#cronjob-v1-batch">CronJob [batch/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>active</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a> array</I></TD><TD>A list of pointers to currently running jobs.</TD></TR>
+<TR><TD><CODE>lastScheduleTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Information when was the last time the job was successfully scheduled.</TD></TR>
+<TR><TD><CODE>lastSuccessfulTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Information when was the last time the job successfully completed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="cronjoblist-v1-batch">CronJobList v1 batch</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#cronjob-v1-batch">CronJob</a> array</I></TD><TD>items is the list of CronJobs.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-cronjob-v1-batch-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-cronjob-v1-batch">Create</H2>
+<P>create a CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/batch/v1/namespaces/{namespace}/cronjobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-cronjob-v1-batch">Patch</H2>
+<P>partially update the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-cronjob-v1-batch">Replace</H2>
+<P>replace the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-cronjob-v1-batch">Delete</H2>
+<P>delete a CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-cronjob-v1-batch">Delete Collection</H2>
+<P>delete collection of CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/batch/v1/namespaces/{namespace}/cronjobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-cronjob-v1-batch-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-cronjob-v1-batch">Read</H2>
+<P>read the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-cronjob-v1-batch">List</H2>
+<P>list or watch objects of kind CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/namespaces/{namespace}/cronjobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjoblist-v1-batch">CronJobList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-cronjob-v1-batch">List All Namespaces</H2>
+<P>list or watch objects of kind CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/cronjobs</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjoblist-v1-batch">CronJobList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-cronjob-v1-batch">Watch</H2>
+<P>watch changes to an object of kind CronJob. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/watch/namespaces/{namespace}/cronjobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-cronjob-v1-batch">Watch List</H2>
+<P>watch individual changes to a list of CronJob. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/watch/namespaces/{namespace}/cronjobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-cronjob-v1-batch">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of CronJob. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/watch/cronjobs</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-cronjob-v1-batch-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-cronjob-v1-batch">Patch Status</H2>
+<P>partially update status of the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-cronjob-v1-batch">Read Status</H2>
+<P>read status of the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-cronjob-v1-batch">Replace Status</H2>
+<P>replace status of the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/batch/v1/namespaces/{namespace}/cronjobs/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#cronjob-v1-batch">CronJob</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="daemonset-v1-apps">DaemonSet v1 apps</H1>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#example-daemonset-v1-apps" aria-controls="example-daemonset-v1-apps"
+  aria-expanded="false">example</BUTTON>
+<DIV class="collapse" id="example-daemonset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">DaemonSet Config to print the `hostname` on each Node in the cluster every 10 seconds.</DIV>
+  <DIV class="panel-body">
+<PRE class="example"><CODE class="lang-yaml">
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  # Unique key of the DaemonSet instance
+  name: daemonset-example
+spec:
+  selector:
+    matchLabels:
+      app: daemonset-example
+  template:
+    metadata:
+      labels:
+        app: daemonset-example
+    spec:
+      containers:
+      # This container is run once on each Node in the cluster
+      - name: daemonset-example
+        image: ubuntu:trusty
+        command:
+        - /bin/sh
+        args:
+        - -c
+        # This script is run through `sh -c &lt;script&gt;`
+        - &gt;-
+          while [ true ]; do
+          echo &#34;DaemonSet running on $(hostname)&#34; ;
+          sleep 10 ;
+          done
+</CODE></PRE></DIV></DIV></DIV>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>DaemonSet</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#daemonsetlist-v1-apps">DaemonSetList [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#daemonsetspec-v1-apps">DaemonSetSpec</a></I></TD><TD>The desired behavior of this daemon set. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#daemonsetstatus-v1-apps">DaemonSetStatus</a></I></TD><TD>The current status of this daemon set. This data may be out of date by some window of time. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="daemonsetspec-v1-apps">DaemonSetSpec v1 apps</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#daemonset-v1-apps">DaemonSet [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>minReadySeconds</CODE><BR /><I>integer</I></TD><TD>The minimum number of seconds for which a newly created DaemonSet pod should be ready without any of its container crashing, for it to be considered available. Defaults to 0 (pod will be considered available as soon as it is ready).</TD></TR>
+<TR><TD><CODE>revisionHistoryLimit</CODE><BR /><I>integer</I></TD><TD>The number of old history to retain to allow rollback. This is a pointer to distinguish between explicit zero and not specified. Defaults to 10.</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>A label query over pods that are managed by the daemon set. Must match in order to be controlled. It must match the pod template&#39;s labels. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors</TD></TR>
+<TR><TD><CODE>template</CODE><BR /><I><a href="#podtemplatespec-v1-core">PodTemplateSpec</a></I></TD><TD>An object that describes the pod that will be created. The DaemonSet will create exactly one copy of this pod on every node that matches the template&#39;s node selector (or on every node if no node selector is specified). More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#pod-template</TD></TR>
+<TR><TD><CODE>updateStrategy</CODE><BR /><I><a href="#daemonsetupdatestrategy-v1-apps">DaemonSetUpdateStrategy</a></I></TD><TD>An update strategy to replace existing DaemonSet pods with new pods.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="daemonsetstatus-v1-apps">DaemonSetStatus v1 apps</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#daemonset-v1-apps">DaemonSet [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>collisionCount</CODE><BR /><I>integer</I></TD><TD>Count of hash collisions for the DaemonSet. The DaemonSet controller uses this field as a collision avoidance mechanism when it needs to create the name for the newest ControllerRevision.</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#daemonsetcondition-v1-apps">DaemonSetCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Represents the latest available observations of a DaemonSet&#39;s current state.</TD></TR>
+<TR><TD><CODE>currentNumberScheduled</CODE><BR /><I>integer</I></TD><TD>The number of nodes that are running at least 1 daemon pod and are supposed to run the daemon pod. More info: https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/</TD></TR>
+<TR><TD><CODE>desiredNumberScheduled</CODE><BR /><I>integer</I></TD><TD>The total number of nodes that should be running the daemon pod (including nodes correctly running the daemon pod). More info: https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/</TD></TR>
+<TR><TD><CODE>numberAvailable</CODE><BR /><I>integer</I></TD><TD>The number of nodes that should be running the daemon pod and have one or more of the daemon pod running and available (ready for at least spec.minReadySeconds)</TD></TR>
+<TR><TD><CODE>numberMisscheduled</CODE><BR /><I>integer</I></TD><TD>The number of nodes that are running the daemon pod, but are not supposed to run the daemon pod. More info: https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/</TD></TR>
+<TR><TD><CODE>numberReady</CODE><BR /><I>integer</I></TD><TD>numberReady is the number of nodes that should be running the daemon pod and have one or more of the daemon pod running with a Ready Condition.</TD></TR>
+<TR><TD><CODE>numberUnavailable</CODE><BR /><I>integer</I></TD><TD>The number of nodes that should be running the daemon pod and have none of the daemon pod running and available (ready for at least spec.minReadySeconds)</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>The most recent generation observed by the daemon set controller.</TD></TR>
+<TR><TD><CODE>updatedNumberScheduled</CODE><BR /><I>integer</I></TD><TD>The total number of nodes that are running updated daemon pod</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="daemonsetlist-v1-apps">DaemonSetList v1 apps</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#daemonset-v1-apps">DaemonSet</a> array</I></TD><TD>A list of daemon sets.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="rollingupdatedaemonset-v1-apps">RollingUpdateDaemonSet v1 apps</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#daemonsetupdatestrategy-v1-apps">DaemonSetUpdateStrategy [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>maxSurge</CODE></TD><TD>The maximum number of nodes with an existing available DaemonSet pod that can have an updated DaemonSet pod during during an update. Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). This can not be 0 if MaxUnavailable is 0. Absolute number is calculated from percentage by rounding up to a minimum of 1. Default value is 0. Example: when this is set to 30%, at most 30% of the total number of nodes that should be running the daemon pod (i.e. status.desiredNumberScheduled) can have their a new pod created before the old pod is marked as deleted. The update starts by launching new pods on 30% of nodes. Once an updated pod is available (Ready for at least minReadySeconds) the old DaemonSet pod on that node is marked deleted. If the old pod becomes unavailable for any reason (Ready transitions to false, is evicted, or is drained) an updated pod is immediatedly created on that node without considering surge limits. Allowing surge implies the possibility that the resources consumed by the daemonset on any given node can double if the readiness check fails, and so resource intensive daemonsets should take into account that they may cause evictions during disruption. This is beta field and enabled/disabled by DaemonSetUpdateSurge feature gate.</TD></TR>
+<TR><TD><CODE>maxUnavailable</CODE></TD><TD>The maximum number of DaemonSet pods that can be unavailable during the update. Value can be an absolute number (ex: 5) or a percentage of total number of DaemonSet pods at the start of the update (ex: 10%). Absolute number is calculated from percentage by rounding up. This cannot be 0 if MaxSurge is 0 Default value is 1. Example: when this is set to 30%, at most 30% of the total number of nodes that should be running the daemon pod (i.e. status.desiredNumberScheduled) can have their pods stopped for an update at any given time. The update starts by stopping at most 30% of those DaemonSet pods and then brings up new DaemonSet pods in their place. Once the new pods are available, it then proceeds onto other DaemonSet pods, thus ensuring that at least 70% of original number of DaemonSet pods are available at all times during the update.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-daemonset-v1-apps-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-daemonset-v1-apps">Create</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-create-daemonset-v1-apps" aria-controls="req-kubectl-create-daemonset-v1-apps"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-create-daemonset-v1-apps" aria-controls="req-curl-create-daemonset-v1-apps"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-create-daemonset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ echo 'apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  name: daemonset-example
+spec:
+  selector:
+    matchLabels:
+      app: daemonset-example
+  template:
+    metadata:
+      labels:
+        app: daemonset-example
+    spec:
+      containers:
+      - name: daemonset-example
+        image: ubuntu:trusty
+        command:
+        - /bin/sh
+        args:
+        - -c
+        - >-
+          while [ true ]; do
+          echo "DaemonSet running on $(hostname)" ;
+          sleep 10 ;
+          done
+' | kubectl create -f -
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-create-daemonset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X POST -H 'Content-Type: application/yaml' --data '
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  name: daemonset-example
+spec:
+  selector:
+    matchLabels:
+      app: daemonset-example
+  template:
+    metadata:
+      labels:
+        app: daemonset-example
+    spec:
+      containers:
+      - name: daemonset-example
+        image: ubuntu:trusty
+        command:
+        - /bin/sh
+        args:
+        - -c
+        - >-
+          while [ true ]; do
+          echo "DaemonSet running on $(hostname)" ;
+          sleep 10 ;
+          done
+' http://127.0.0.1:8001/apis/apps/v1/namespaces/default/daemonsets
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-create-daemonset-v1-apps" aria-controls="res-kubectl-create-daemonset-v1-apps"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-create-daemonset-v1-apps" aria-controls="res-curl-create-daemonset-v1-apps"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-create-daemonset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+daemonset "daemonset-example" created
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-create-daemonset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "DaemonSet",
+  "apiVersion": "apps/v1",
+  "metadata": {
+    "name": "daemonset-example",
+    "namespace": "default",
+    "selfLink": "/apis/apps/v1/namespaces/default/daemonsets/daemonset-example",
+    "uid": "65552ced-b0e2-11e6-aef0-42010af00229",
+    "resourceVersion": "3558",
+    "generation": 1,
+    "creationTimestamp": "2016-11-22T18:35:09Z",
+    "labels": {
+      "app": "daemonset-example"
+    }
+  },
+  "spec": {
+    "selector": {
+      "matchLabels": {
+        "app": "daemonset-example"
+      }
+    },
+    "template": {
+      "metadata": {
+        "creationTimestamp": null,
+        "labels": {
+          "app": "daemonset-example"
+        }
+      },
+      "spec": {
+        "containers": [
+          {
+            "name": "daemonset-example",
+            "image": "ubuntu:trusty",
+            "command": [
+              "/bin/sh"
+            ],
+            "args": [
+              "-c",
+              "while [ true ]; do echo \"DaemonSet running on $(hostname)\" ; sleep 10 ; done"
+            ],
+            "resources": {},
+            "terminationMessagePath": "/dev/termination-log",
+            "imagePullPolicy": "IfNotPresent"
+          }
+        ],
+        "restartPolicy": "Always",
+        "terminationGracePeriodSeconds": 30,
+        "dnsPolicy": "ClusterFirst",
+        "securityContext": {}
+      }
+    }
+  },
+  "status": {
+    "currentNumberScheduled": 0,
+    "numberMisscheduled": 0,
+    "desiredNumberScheduled": 0
+  }
+}
+</CODE></PRE></DIV></DIV></DIV>
+<P>create a DaemonSet</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/apps/v1/namespaces/{namespace}/daemonsets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-daemonset-v1-apps">Patch</H2>
+<P>partially update the specified DaemonSet</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the DaemonSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-daemonset-v1-apps">Replace</H2>
+<P>replace the specified DaemonSet</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the DaemonSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-daemonset-v1-apps">Delete</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-delete-daemonset-v1-apps" aria-controls="req-kubectl-delete-daemonset-v1-apps"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-delete-daemonset-v1-apps" aria-controls="req-curl-delete-daemonset-v1-apps"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-delete-daemonset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl delete daemonset daemonset-example
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-delete-daemonset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X DELETE -H 'Content-Type: application/yaml' --data '
+gracePeriodSeconds: 0
+orphanDependents: false
+' 'http://127.0.0.1:8001/apis/apps/v1/namespaces/default/daemonsets/daemonset-example'
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-delete-daemonset-v1-apps" aria-controls="res-kubectl-delete-daemonset-v1-apps"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-delete-daemonset-v1-apps" aria-controls="res-curl-delete-daemonset-v1-apps"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-delete-daemonset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+daemonset "daemonset-example" deleted
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-delete-daemonset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Status",
+  "apiVersion": "v1",
+  "metadata": {},
+  "status": "Success",
+  "code": 200
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<P>delete a DaemonSet</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the DaemonSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-daemonset-v1-apps">Delete Collection</H2>
+<P>delete collection of DaemonSet</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apps/v1/namespaces/{namespace}/daemonsets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-daemonset-v1-apps-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-daemonset-v1-apps">Read</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-read-daemonset-v1-apps" aria-controls="req-kubectl-read-daemonset-v1-apps"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-read-daemonset-v1-apps" aria-controls="req-curl-read-daemonset-v1-apps"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-read-daemonset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl get daemonset daemonset-example -o json
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-read-daemonset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X GET http://127.0.0.1:8001/apis/apps/v1/namespaces/default/daemonsets/daemonset-example
+</CODE></PRE></DIV></DIV></DIV>
+<P>read the specified DaemonSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the DaemonSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-daemonset-v1-apps">List</H2>
+<P>list or watch objects of kind DaemonSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/daemonsets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#daemonsetlist-v1-apps">DaemonSetList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-daemonset-v1-apps">List All Namespaces</H2>
+<P>list or watch objects of kind DaemonSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/daemonsets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#daemonsetlist-v1-apps">DaemonSetList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-daemonset-v1-apps">Watch</H2>
+<P>watch changes to an object of kind DaemonSet. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/namespaces/{namespace}/daemonsets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the DaemonSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-daemonset-v1-apps">Watch List</H2>
+<P>watch individual changes to a list of DaemonSet. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/namespaces/{namespace}/daemonsets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-daemonset-v1-apps">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of DaemonSet. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/daemonsets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-daemonset-v1-apps-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-daemonset-v1-apps">Patch Status</H2>
+<P>partially update status of the specified DaemonSet</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the DaemonSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-daemonset-v1-apps">Read Status</H2>
+<P>read status of the specified DaemonSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the DaemonSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-daemonset-v1-apps">Replace Status</H2>
+<P>replace status of the specified DaemonSet</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/daemonsets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the DaemonSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#daemonset-v1-apps">DaemonSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="deployment-v1-apps">Deployment v1 apps</H1>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#example-deployment-v1-apps" aria-controls="example-deployment-v1-apps"
+  aria-expanded="false">example</BUTTON>
+<DIV class="collapse" id="example-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Deployment Config to run 3 nginx instances (max rollback set to 10 revisions).</DIV>
+  <DIV class="panel-body">
+<PRE class="example"><CODE class="lang-yaml">
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  # Unique key of the Deployment instance
+  name: deployment-example
+spec:
+  # 3 Pods should exist at all times.
+  replicas: 3
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        # Apply this label to pods and default
+        # the Deployment label selector to this value
+        app: nginx
+    spec:
+      containers:
+      - name: nginx
+        # Run this image
+        image: nginx:1.14
+
+</CODE></PRE></DIV></DIV></DIV>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Deployment</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#deploymentlist-v1-apps">DeploymentList [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#deploymentspec-v1-apps">DeploymentSpec</a></I></TD><TD>Specification of the desired behavior of the Deployment.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#deploymentstatus-v1-apps">DeploymentStatus</a></I></TD><TD>Most recently observed status of the Deployment.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="deploymentspec-v1-apps">DeploymentSpec v1 apps</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#deployment-v1-apps">Deployment [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>minReadySeconds</CODE><BR /><I>integer</I></TD><TD>Minimum number of seconds for which a newly created pod should be ready without any of its container crashing, for it to be considered available. Defaults to 0 (pod will be considered available as soon as it is ready)</TD></TR>
+<TR><TD><CODE>paused</CODE><BR /><I>boolean</I></TD><TD>Indicates that the deployment is paused.</TD></TR>
+<TR><TD><CODE>progressDeadlineSeconds</CODE><BR /><I>integer</I></TD><TD>The maximum time in seconds for a deployment to make progress before it is considered to be failed. The deployment controller will continue to process failed deployments and a condition with a ProgressDeadlineExceeded reason will be surfaced in the deployment status. Note that progress will not be estimated during the time a deployment is paused. Defaults to 600s.</TD></TR>
+<TR><TD><CODE>replicas</CODE><BR /><I>integer</I></TD><TD>Number of desired pods. This is a pointer to distinguish between explicit zero and not specified. Defaults to 1.</TD></TR>
+<TR><TD><CODE>revisionHistoryLimit</CODE><BR /><I>integer</I></TD><TD>The number of old ReplicaSets to retain to allow rollback. This is a pointer to distinguish between explicit zero and not specified. Defaults to 10.</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>Label selector for pods. Existing ReplicaSets whose pods are selected by this will be the ones affected by this deployment. It must match the pod template&#39;s labels.</TD></TR>
+<TR><TD><CODE>strategy</CODE><BR /><I><a href="#deploymentstrategy-v1-apps">DeploymentStrategy</a></I><BR /><B>patch strategy</B>: <I>retainKeys</I></TD><TD>The deployment strategy to use to replace existing pods with new ones.</TD></TR>
+<TR><TD><CODE>template</CODE><BR /><I><a href="#podtemplatespec-v1-core">PodTemplateSpec</a></I></TD><TD>Template describes the pods that will be created.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="deploymentstatus-v1-apps">DeploymentStatus v1 apps</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#deployment-v1-apps">Deployment [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>availableReplicas</CODE><BR /><I>integer</I></TD><TD>Total number of available pods (ready for at least minReadySeconds) targeted by this deployment.</TD></TR>
+<TR><TD><CODE>collisionCount</CODE><BR /><I>integer</I></TD><TD>Count of hash collisions for the Deployment. The Deployment controller uses this field as a collision avoidance mechanism when it needs to create the name for the newest ReplicaSet.</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#deploymentcondition-v1-apps">DeploymentCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Represents the latest available observations of a deployment&#39;s current state.</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>The generation observed by the deployment controller.</TD></TR>
+<TR><TD><CODE>readyReplicas</CODE><BR /><I>integer</I></TD><TD>readyReplicas is the number of pods targeted by this Deployment with a Ready Condition.</TD></TR>
+<TR><TD><CODE>replicas</CODE><BR /><I>integer</I></TD><TD>Total number of non-terminated pods targeted by this deployment (their labels match the selector).</TD></TR>
+<TR><TD><CODE>unavailableReplicas</CODE><BR /><I>integer</I></TD><TD>Total number of unavailable pods targeted by this deployment. This is the total number of pods that are still required for the deployment to have 100% available capacity. They may either be pods that are running but not yet available or pods that still have not been created.</TD></TR>
+<TR><TD><CODE>updatedReplicas</CODE><BR /><I>integer</I></TD><TD>Total number of non-terminated pods targeted by this deployment that have the desired template spec.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="deploymentlist-v1-apps">DeploymentList v1 apps</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#deployment-v1-apps">Deployment</a> array</I></TD><TD>Items is the list of Deployments.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="deploymentstrategy-v1-apps">DeploymentStrategy v1 apps</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#deploymentspec-v1-apps">DeploymentSpec [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rollingUpdate</CODE><BR /><I><a href="#rollingupdatedeployment-v1-apps">RollingUpdateDeployment</a></I></TD><TD>Rolling update config params. Present only if DeploymentStrategyType = RollingUpdate.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of deployment. Can be &#34;Recreate&#34; or &#34;RollingUpdate&#34;. Default is RollingUpdate.  </TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="rollingupdatedeployment-v1-apps">RollingUpdateDeployment v1 apps</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#deploymentstrategy-v1-apps">DeploymentStrategy [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>maxSurge</CODE></TD><TD>The maximum number of pods that can be scheduled above the desired number of pods. Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). This can not be 0 if MaxUnavailable is 0. Absolute number is calculated from percentage by rounding up. Defaults to 25%. Example: when this is set to 30%, the new ReplicaSet can be scaled up immediately when the rolling update starts, such that the total number of old and new pods do not exceed 130% of desired pods. Once old pods have been killed, new ReplicaSet can be scaled up further, ensuring that total number of pods running at any time during the update is at most 130% of desired pods.</TD></TR>
+<TR><TD><CODE>maxUnavailable</CODE></TD><TD>The maximum number of pods that can be unavailable during the update. Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). Absolute number is calculated from percentage by rounding down. This can not be 0 if MaxSurge is 0. Defaults to 25%. Example: when this is set to 30%, the old ReplicaSet can be scaled down to 70% of desired pods immediately when the rolling update starts. Once new pods are ready, old ReplicaSet can be scaled down further, followed by scaling up the new ReplicaSet, ensuring that the total number of pods available at all times during the update is at least 70% of desired pods.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-deployment-v1-apps-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-deployment-v1-apps">Create</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-create-deployment-v1-apps" aria-controls="req-kubectl-create-deployment-v1-apps"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-create-deployment-v1-apps" aria-controls="req-curl-create-deployment-v1-apps"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-create-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ echo 'apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: deployment-example
+spec:
+  replicas: 3
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      - name: nginx
+        image: nginx:1.14
+        ports:
+        - containerPort: 80
+' | kubectl create -f -
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-create-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X POST -H 'Content-Type: application/yaml' --data '
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: deployment-example
+spec:
+  replicas: 3
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      - name: nginx
+        image: nginx:1.14
+        ports:
+        - containerPort: 80
+' http://127.0.0.1:8001/apis/apps/v1/namespaces/default/deployments
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-create-deployment-v1-apps" aria-controls="res-kubectl-create-deployment-v1-apps"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-create-deployment-v1-apps" aria-controls="res-curl-create-deployment-v1-apps"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-create-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+deployment "deployment-example" created
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-create-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Deployment",
+  "apiVersion": "apps/v1",
+  "metadata": {
+    "name": "deployment-example",
+    "namespace": "default",
+    "selfLink": "/apis/apps/v1/namespaces/default/deployments/deployment-example",
+    "uid": "4ccca349-9cb1-11e6-9c54-42010a800148",
+    "resourceVersion": "2118306",
+    "generation": 1,
+    "creationTimestamp": "2016-10-28T01:53:19Z",
+    "labels": {
+      "app": "nginx"
+    }
+  },
+  "spec": {
+    "replicas": 3,
+    "selector": {
+      "matchLabels": {
+        "app": "nginx"
+      }
+    },
+    "template": {
+      "metadata": {
+        "creationTimestamp": null,
+        "labels": {
+          "app": "nginx"
+        }
+      },
+      "spec": {
+        "containers": [
+          {
+            "name": "nginx",
+            "image": "nginx:1.14",
+            "ports": [
+              {
+                "containerPort": 80,
+                "protocol": "TCP"
+              }
+            ],
+            "resources": {},
+            "terminationMessagePath": "/dev/termination-log",
+            "imagePullPolicy": "IfNotPresent"
+          }
+        ],
+        "restartPolicy": "Always",
+        "terminationGracePeriodSeconds": 30,
+        "dnsPolicy": "ClusterFirst",
+        "securityContext": {}
+      }
+    },
+    "strategy": {
+      "type": "RollingUpdate",
+      "rollingUpdate": {
+        "maxUnavailable": 1,
+        "maxSurge": 1
+      }
+    },
+    "revisionHistoryLimit": 10
+  },
+  "status": {}
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<P>create a Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/apps/v1/namespaces/{namespace}/deployments</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-deployment-v1-apps">Patch</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-patch-deployment-v1-apps" aria-controls="req-kubectl-patch-deployment-v1-apps"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-patch-deployment-v1-apps" aria-controls="req-curl-patch-deployment-v1-apps"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-patch-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl patch deployment deployment-example -p \
+	'{"spec":{"template":{"spec":{"containers":[{"name":"nginx","image":"nginx:1.16"}]}}}}'
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-patch-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X PATCH -H 'Content-Type: application/strategic-merge-patch+json' --data '
+{"spec":{"template":{"spec":{"containers":[{"name":"nginx","image":"nginx:1.16"}]}}}}' \
+	'http://127.0.0.1:8001/apis/apps/v1/namespaces/default/deployments/deployment-example'
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-patch-deployment-v1-apps" aria-controls="res-kubectl-patch-deployment-v1-apps"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-patch-deployment-v1-apps" aria-controls="res-curl-patch-deployment-v1-apps"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-patch-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+"deployment-example" patched
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-patch-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Deployment",
+  "apiVersion": "apps/v1",
+  "metadata": {
+    "name": "deployment-example",
+    "namespace": "default",
+    "selfLink": "/apis/apps/v1/namespaces/default/deployments/deployment-example",
+    "uid": "5dc3a8e6-b0ee-11e6-aef0-42010af00229",
+    "resourceVersion": "164489",
+    "generation": 11,
+    "creationTimestamp": "2016-11-22T20:00:50Z",
+    "labels": {
+      "app": "nginx"
+    },
+    "annotations": {
+      "deployment.kubernetes.io/revision": "5"
+    }
+  },
+  "spec": {
+    "replicas": 3,
+    "selector": {
+      "matchLabels": {
+        "app": "nginx"
+      }
+    },
+    "template": {
+      "metadata": {
+        "creationTimestamp": null,
+        "labels": {
+          "app": "nginx"
+        }
+      },
+      "spec": {
+        "containers": [
+          {
+            "name": "nginx",
+            "image": "nginx:1.16",
+            "ports": [
+              {
+                "containerPort": 80,
+                "protocol": "TCP"
+              }
+            ],
+            "resources": {},
+            "terminationMessagePath": "/dev/termination-log",
+            "imagePullPolicy": "IfNotPresent"
+          }
+        ],
+        "restartPolicy": "Always",
+        "terminationGracePeriodSeconds": 30,
+        "dnsPolicy": "ClusterFirst",
+        "securityContext": {}
+      }
+    },
+    "strategy": {
+      "type": "RollingUpdate",
+      "rollingUpdate": {
+        "maxUnavailable": 1,
+        "maxSurge": 1
+      }
+    },
+    "revisionHistoryLimit": 10
+  },
+  "status": {
+    "observedGeneration": 10,
+    "replicas": 3,
+    "updatedReplicas": 3,
+    "availableReplicas": 3
+  }
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<P>partially update the specified Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/deployments/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Deployment</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-deployment-v1-apps">Replace</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-replace-deployment-v1-apps" aria-controls="req-kubectl-replace-deployment-v1-apps"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-replace-deployment-v1-apps" aria-controls="req-curl-replace-deployment-v1-apps"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-replace-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ echo 'apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: deployment-example
+spec:
+  replicas: 3
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      - name: nginx
+        image: nginx:1.16
+        ports:
+        - containerPort: 80
+' | kubectl replace -f -
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-replace-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X PUT -H 'Content-Type: application/yaml' --data '
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: deployment-example
+spec:
+  replicas: 3
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      - name: nginx
+        image: nginx:1.16
+        ports:
+        - containerPort: 80
+' http://127.0.0.1:8001/apis/apps/v1/namespaces/default/deployments/deployment-example
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-replace-deployment-v1-apps" aria-controls="res-kubectl-replace-deployment-v1-apps"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-replace-deployment-v1-apps" aria-controls="res-curl-replace-deployment-v1-apps"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-replace-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+deployment "deployment-example" replaced
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-replace-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Deployment",
+  "apiVersion": "apps/v1",
+  "metadata": {
+    "name": "deployment-example",
+    "namespace": "default",
+    "selfLink": "/apis/apps/v1/namespaces/default/deployments/deployment-example",
+    "uid": "4ccca349-9cb1-11e6-9c54-42010a800148",
+    "resourceVersion": "2119082",
+    "generation": 5,
+    "creationTimestamp": "2016-10-28T01:53:19Z",
+    "labels": {
+      "app": "nginx"
+    }
+  },
+  "spec": {
+    "replicas": 3,
+    "selector": {
+      "matchLabels": {
+        "app": "nginx"
+      }
+    },
+    "template": {
+      "metadata": {
+        "creationTimestamp": null,
+        "labels": {
+          "app": "nginx"
+        }
+      },
+      "spec": {
+        "containers": [
+          {
+            "name": "nginx",
+            "image": "nginx:1.16",
+            "ports": [
+              {
+                "containerPort": 80,
+                "protocol": "TCP"
+              }
+            ],
+            "resources": {},
+            "terminationMessagePath": "/dev/termination-log",
+            "imagePullPolicy": "IfNotPresent"
+          }
+        ],
+        "restartPolicy": "Always",
+        "terminationGracePeriodSeconds": 30,
+        "dnsPolicy": "ClusterFirst",
+        "securityContext": {}
+      }
+    },
+    "strategy": {
+      "type": "RollingUpdate",
+      "rollingUpdate": {
+        "maxUnavailable": 1,
+        "maxSurge": 1
+      }
+    },
+    "revisionHistoryLimit": 10
+  },
+  "status": {
+    "observedGeneration": 4,
+    "replicas": 3,
+    "updatedReplicas": 3,
+    "availableReplicas": 3
+  }
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<P>replace the specified Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/deployments/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Deployment</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-deployment-v1-apps">Delete</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-delete-deployment-v1-apps" aria-controls="req-kubectl-delete-deployment-v1-apps"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-delete-deployment-v1-apps" aria-controls="req-curl-delete-deployment-v1-apps"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-delete-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl delete deployment deployment-example
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-delete-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X DELETE -H 'Content-Type: application/yaml' --data '
+gracePeriodSeconds: 0
+orphanDependents: false
+' 'http://127.0.0.1:8001/apis/apps/v1/namespaces/default/deployments/deployment-example'
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-delete-deployment-v1-apps" aria-controls="res-kubectl-delete-deployment-v1-apps"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-delete-deployment-v1-apps" aria-controls="res-curl-delete-deployment-v1-apps"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-delete-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+deployment "deployment-example" deleted
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-delete-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Status",
+  "apiVersion": "v1",
+  "metadata": {},
+  "status": "Success",
+  "code": 200
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<P>delete a Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apps/v1/namespaces/{namespace}/deployments/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Deployment</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-deployment-v1-apps">Delete Collection</H2>
+<P>delete collection of Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apps/v1/namespaces/{namespace}/deployments</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-deployment-v1-apps-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-deployment-v1-apps">Read</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-read-deployment-v1-apps" aria-controls="req-kubectl-read-deployment-v1-apps"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-read-deployment-v1-apps" aria-controls="req-curl-read-deployment-v1-apps"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-read-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl get deployment deployment-example -o json
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-read-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X GET http://127.0.0.1:8001/apis/apps/v1/namespaces/default/deployments/deployment-example
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-read-deployment-v1-apps" aria-controls="res-kubectl-read-deployment-v1-apps"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-read-deployment-v1-apps" aria-controls="res-curl-read-deployment-v1-apps"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-read-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+{
+  "kind": "Deployment",
+  "apiVersion": "apps/v1",
+  "metadata": {
+    "name": "deployment-example",
+    "namespace": "default",
+    "selfLink": "/apis/apps/v1/namespaces/default/deployments/deployment-example",
+    "uid": "1b33145a-9c63-11e6-9c54-42010a800148",
+    "resourceVersion": "2064726",
+    "generation": 4,
+    "creationTimestamp": "2016-10-27T16:33:35Z",
+    "labels": {
+      "app": "nginx"
+    },
+    "annotations": {
+      "deployment.kubernetes.io/revision": "1"
+    }
+  },
+  "spec": {
+    "replicas": 3,
+    "selector": {
+      "matchLabels": {
+        "app": "nginx"
+      }
+    },
+    "template": {
+      "metadata": {
+        "creationTimestamp": null,
+        "labels": {
+          "app": "nginx"
+        }
+      },
+      "spec": {
+        "containers": [
+          {
+            "name": "nginx",
+            "image": "nginx:1.14",
+            "ports": [
+              {
+                "containerPort": 80,
+                "protocol": "TCP"
+              }
+            ],
+            "resources": {},
+            "terminationMessagePath": "/dev/termination-log",
+            "imagePullPolicy": "IfNotPresent"
+          }
+        ],
+        "restartPolicy": "Always",
+        "terminationGracePeriodSeconds": 30,
+        "dnsPolicy": "ClusterFirst",
+        "securityContext": {}
+      }
+    },
+    "strategy": {
+      "type": "RollingUpdate",
+      "rollingUpdate": {
+        "maxUnavailable": 1,
+        "maxSurge": 1
+      }
+    }
+  },
+  "status": {
+    "observedGeneration": 4,
+    "replicas": 3,
+    "updatedReplicas": 3,
+    "availableReplicas": 3
+  }
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-read-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Deployment",
+  "apiVersion": "apps/v1",
+  "metadata": {
+    "name": "deployment-example",
+    "namespace": "default",
+    "selfLink": "/apis/apps/v1/namespaces/default/deployments/deployment-example",
+    "uid": "1b33145a-9c63-11e6-9c54-42010a800148",
+    "resourceVersion": "2064726",
+    "generation": 4,
+    "creationTimestamp": "2016-10-27T16:33:35Z",
+    "labels": {
+      "app": "nginx"
+    },
+    "annotations": {
+      "deployment.kubernetes.io/revision": "1"
+    }
+  },
+  "spec": {
+    "replicas": 3,
+    "selector": {
+      "matchLabels": {
+        "app": "nginx"
+      }
+    },
+    "template": {
+      "metadata": {
+        "creationTimestamp": null,
+        "labels": {
+          "app": "nginx"
+        }
+      },
+      "spec": {
+        "containers": [
+          {
+            "name": "nginx",
+            "image": "nginx:1.14",
+            "ports": [
+              {
+                "containerPort": 80,
+                "protocol": "TCP"
+              }
+            ],
+            "resources": {},
+            "terminationMessagePath": "/dev/termination-log",
+            "imagePullPolicy": "IfNotPresent"
+          }
+        ],
+        "restartPolicy": "Always",
+        "terminationGracePeriodSeconds": 30,
+        "dnsPolicy": "ClusterFirst",
+        "securityContext": {}
+      }
+    },
+    "strategy": {
+      "type": "RollingUpdate",
+      "rollingUpdate": {
+        "maxUnavailable": 1,
+        "maxSurge": 1
+      }
+    }
+  },
+  "status": {
+    "observedGeneration": 4,
+    "replicas": 3,
+    "updatedReplicas": 3,
+    "availableReplicas": 3
+  }
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<P>read the specified Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/deployments/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Deployment</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-deployment-v1-apps">List</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-list-deployment-v1-apps" aria-controls="req-kubectl-list-deployment-v1-apps"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-list-deployment-v1-apps" aria-controls="req-curl-list-deployment-v1-apps"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-list-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl get deployment -o json
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-list-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X GET 'http://127.0.0.1:8001/apis/apps/v1/namespaces/default/deployments'
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-list-deployment-v1-apps" aria-controls="res-kubectl-list-deployment-v1-apps"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-list-deployment-v1-apps" aria-controls="res-curl-list-deployment-v1-apps"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-list-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+{
+  "kind": "List",
+  "apiVersion": "v1",
+  "metadata": {},
+  "items": [
+    {
+      "kind": "Deployment",
+      "apiVersion": "app/v1beta1",
+      "metadata": {
+        "name": "docs",
+        "namespace": "default",
+        "selfLink": "/apis/app/v1beta1/namespaces/default/deployments/docs",
+        "uid": "ef49e1d2-915e-11e6-be81-42010a80003f",
+        "resourceVersion": "1924126",
+        "generation": 21,
+        "creationTimestamp": "2016-10-13T16:06:00Z",
+        "labels": {
+          "run": "docs"
+        },
+        "annotations": {
+          "deployment.kubernetes.io/revision": "10",
+          "replicatingperfection.net/push-image": "true"
+        }
+      },
+      "spec": {
+        "replicas": 1,
+        "selector": {
+          "matchLabels": {
+            "run": "docs"
+          }
+        },
+        "template": {
+          "metadata": {
+            "creationTimestamp": null,
+            "labels": {
+              "auto-pushed-image-pwittrock/api-docs": "1477496453",
+              "run": "docs"
+            }
+          },
+          "spec": {
+            "containers": [
+              {
+                "name": "docs",
+                "image": "pwittrock/api-docs:v9",
+                "resources": {},
+                "terminationMessagePath": "/dev/termination-log",
+                "imagePullPolicy": "Always"
+              }
+            ],
+            "restartPolicy": "Always",
+            "terminationGracePeriodSeconds": 30,
+            "dnsPolicy": "ClusterFirst",
+            "securityContext": {}
+          }
+        },
+        "strategy": {
+          "type": "RollingUpdate",
+          "rollingUpdate": {
+            "maxUnavailable": 1,
+            "maxSurge": 1
+          }
+        }
+      },
+      "status": {
+        "observedGeneration": 21,
+        "replicas": 1,
+        "updatedReplicas": 1,
+        "availableReplicas": 1
+      }
+    },
+    {
+      "kind": "Deployment",
+      "apiVersion": "app/v1beta1",
+      "metadata": {
+        "name": "deployment-example",
+        "namespace": "default",
+        "selfLink": "/apis/app/v1beta1/namespaces/default/deployments/deployment-example",
+        "uid": "1b33145a-9c63-11e6-9c54-42010a800148",
+        "resourceVersion": "2064726",
+        "generation": 4,
+        "creationTimestamp": "2016-10-27T16:33:35Z",
+        "labels": {
+          "app": "nginx"
+        },
+        "annotations": {
+          "deployment.kubernetes.io/revision": "1"
+        }
+      },
+      "spec": {
+        "replicas": 3,
+        "selector": {
+          "matchLabels": {
+            "app": "nginx"
+          }
+        },
+        "template": {
+          "metadata": {
+            "creationTimestamp": null,
+            "labels": {
+              "app": "nginx"
+            }
+          },
+          "spec": {
+            "containers": [
+              {
+                "name": "nginx",
+                "image": "nginx:1.14",
+                "ports": [
+                  {
+                    "containerPort": 80,
+                    "protocol": "TCP"
+                  }
+                ],
+                "resources": {},
+                "terminationMessagePath": "/dev/termination-log",
+                "imagePullPolicy": "IfNotPresent"
+              }
+            ],
+            "restartPolicy": "Always",
+            "terminationGracePeriodSeconds": 30,
+            "dnsPolicy": "ClusterFirst",
+            "securityContext": {}
+          }
+        },
+        "strategy": {
+          "type": "RollingUpdate",
+          "rollingUpdate": {
+            "maxUnavailable": 1,
+            "maxSurge": 1
+          }
+        }
+      },
+      "status": {
+        "observedGeneration": 4,
+        "replicas": 3,
+        "updatedReplicas": 3,
+        "availableReplicas": 3
+      }
+    }
+  ]
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-list-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "List",
+  "apiVersion": "v1",
+  "metadata": {},
+  "items": [
+    {
+      "kind": "Deployment",
+      "apiVersion": "app/v1beta1",
+      "metadata": {
+        "name": "docs",
+        "namespace": "default",
+        "selfLink": "/apis/app/v1beta1/namespaces/default/deployments/docs",
+        "uid": "ef49e1d2-915e-11e6-be81-42010a80003f",
+        "resourceVersion": "1924126",
+        "generation": 21,
+        "creationTimestamp": "2016-10-13T16:06:00Z",
+        "labels": {
+          "run": "docs"
+        },
+        "annotations": {
+          "deployment.kubernetes.io/revision": "10",
+          "replicatingperfection.net/push-image": "true"
+        }
+      },
+      "spec": {
+        "replicas": 1,
+        "selector": {
+          "matchLabels": {
+            "run": "docs"
+          }
+        },
+        "template": {
+          "metadata": {
+            "creationTimestamp": null,
+            "labels": {
+              "auto-pushed-image-pwittrock/api-docs": "1477496453",
+              "run": "docs"
+            }
+          },
+          "spec": {
+            "containers": [
+              {
+                "name": "docs",
+                "image": "pwittrock/api-docs:v9",
+                "resources": {},
+                "terminationMessagePath": "/dev/termination-log",
+                "imagePullPolicy": "Always"
+              }
+            ],
+            "restartPolicy": "Always",
+            "terminationGracePeriodSeconds": 30,
+            "dnsPolicy": "ClusterFirst",
+            "securityContext": {}
+          }
+        },
+        "strategy": {
+          "type": "RollingUpdate",
+          "rollingUpdate": {
+            "maxUnavailable": 1,
+            "maxSurge": 1
+          }
+        }
+      },
+      "status": {
+        "observedGeneration": 21,
+        "replicas": 1,
+        "updatedReplicas": 1,
+        "availableReplicas": 1
+      }
+    },
+    {
+      "kind": "Deployment",
+      "apiVersion": "app/v1beta1",
+      "metadata": {
+        "name": "deployment-example",
+        "namespace": "default",
+        "selfLink": "/apis/app/v1beta1/namespaces/default/deployments/deployment-example",
+        "uid": "1b33145a-9c63-11e6-9c54-42010a800148",
+        "resourceVersion": "2064726",
+        "generation": 4,
+        "creationTimestamp": "2016-10-27T16:33:35Z",
+        "labels": {
+          "app": "nginx"
+        },
+        "annotations": {
+          "deployment.kubernetes.io/revision": "1"
+        }
+      },
+      "spec": {
+        "replicas": 3,
+        "selector": {
+          "matchLabels": {
+            "app": "nginx"
+          }
+        },
+        "template": {
+          "metadata": {
+            "creationTimestamp": null,
+            "labels": {
+              "app": "nginx"
+            }
+          },
+          "spec": {
+            "containers": [
+              {
+                "name": "nginx",
+                "image": "nginx:1.14",
+                "ports": [
+                  {
+                    "containerPort": 80,
+                    "protocol": "TCP"
+                  }
+                ],
+                "resources": {},
+                "terminationMessagePath": "/dev/termination-log",
+                "imagePullPolicy": "IfNotPresent"
+              }
+            ],
+            "restartPolicy": "Always",
+            "terminationGracePeriodSeconds": 30,
+            "dnsPolicy": "ClusterFirst",
+            "securityContext": {}
+          }
+        },
+        "strategy": {
+          "type": "RollingUpdate",
+          "rollingUpdate": {
+            "maxUnavailable": 1,
+            "maxSurge": 1
+          }
+        }
+      },
+      "status": {
+        "observedGeneration": 4,
+        "replicas": 3,
+        "updatedReplicas": 3,
+        "availableReplicas": 3
+      }
+    }
+  ]
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<P>list or watch objects of kind Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/deployments</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#deploymentlist-v1-apps">DeploymentList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-deployment-v1-apps">List All Namespaces</H2>
+<P>list or watch objects of kind Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/deployments</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#deploymentlist-v1-apps">DeploymentList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-deployment-v1-apps">Watch</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-watch-deployment-v1-apps" aria-controls="req-kubectl-watch-deployment-v1-apps"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-watch-deployment-v1-apps" aria-controls="req-curl-watch-deployment-v1-apps"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-watch-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl get deployment deployment-example --watch -o json
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-watch-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X GET 'http://127.0.0.1:8001/apis/apps/v1/watch/namespaces/default/deployments/deployment-example'
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-watch-deployment-v1-apps" aria-controls="res-kubectl-watch-deployment-v1-apps"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-watch-deployment-v1-apps" aria-controls="res-curl-watch-deployment-v1-apps"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-watch-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+{
+	"type": "ADDED",
+	"object": {
+		"kind": "Deployment",
+		"apiVersion": "apps/v1",
+		"metadata": {
+			"name": "deployment-example",
+			"namespace": "default",
+			"selfLink": "/apis/apps/v1/namespaces/default/deployments/deployment-example",
+			"uid": "64c12290-9cbf-11e6-9c54-42010a800148",
+			"resourceVersion": "2128095",
+			"generation": 2,
+			"creationTimestamp": "2016-10-28T03:34:12Z",
+			"labels": {
+				"app": "nginx"
+			},
+			"annotations": {
+				"deployment.kubernetes.io/revision": "3"
+			}
+		},
+		"spec": {
+			"replicas": 3,
+			"selector": {
+				"matchLabels": {
+					"app": "nginx"
+				}
+			},
+			"template": {
+				"metadata": {
+					"creationTimestamp": null,
+					"labels": {
+						"app": "nginx"
+					}
+				},
+				"spec": {
+					"containers": [
+						{
+							"name": "nginx",
+							"image": "nginx:1.14",
+							"ports": [
+								{
+									"containerPort": 80,
+									"protocol": "TCP"
+								}
+							],
+							"resources": {
+							},
+							"terminationMessagePath": "/dev/termination-log",
+							"imagePullPolicy": "IfNotPresent"
+						}
+					],
+					"restartPolicy": "Always",
+					"terminationGracePeriodSeconds": 30,
+					"dnsPolicy": "ClusterFirst",
+					"securityContext": {
+					}
+				}
+			},
+			"strategy": {
+				"type": "RollingUpdate",
+				"rollingUpdate": {
+					"maxUnavailable": 1,
+					"maxSurge": 1
+				}
+			}
+		},
+		"status": {
+			"observedGeneration": 2,
+			"replicas": 3,
+			"updatedReplicas": 3,
+			"availableReplicas": 3
+		}
+	}
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-watch-deployment-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+	"type": "ADDED",
+	"object": {
+		"kind": "Deployment",
+		"apiVersion": "apps/v1",
+		"metadata": {
+			"name": "deployment-example",
+			"namespace": "default",
+			"selfLink": "/apis/apps/v1/namespaces/default/deployments/deployment-example",
+			"uid": "64c12290-9cbf-11e6-9c54-42010a800148",
+			"resourceVersion": "2128095",
+			"generation": 2,
+			"creationTimestamp": "2016-10-28T03:34:12Z",
+			"labels": {
+				"app": "nginx"
+			},
+			"annotations": {
+				"deployment.kubernetes.io/revision": "3"
+			}
+		},
+		"spec": {
+			"replicas": 3,
+			"selector": {
+				"matchLabels": {
+					"app": "nginx"
+				}
+			},
+			"template": {
+				"metadata": {
+					"creationTimestamp": null,
+					"labels": {
+						"app": "nginx"
+					}
+				},
+				"spec": {
+					"containers": [
+						{
+							"name": "nginx",
+							"image": "nginx:1.14",
+							"ports": [
+								{
+									"containerPort": 80,
+									"protocol": "TCP"
+								}
+							],
+							"resources": {
+							},
+							"terminationMessagePath": "/dev/termination-log",
+							"imagePullPolicy": "IfNotPresent"
+						}
+					],
+					"restartPolicy": "Always",
+					"terminationGracePeriodSeconds": 30,
+					"dnsPolicy": "ClusterFirst",
+					"securityContext": {
+					}
+				}
+			},
+			"strategy": {
+				"type": "RollingUpdate",
+				"rollingUpdate": {
+					"maxUnavailable": 1,
+					"maxSurge": 1
+				}
+			}
+		},
+		"status": {
+			"observedGeneration": 2,
+			"replicas": 3,
+			"updatedReplicas": 3,
+			"availableReplicas": 3
+		}
+	}
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<P>watch changes to an object of kind Deployment. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/namespaces/{namespace}/deployments/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Deployment</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-deployment-v1-apps">Watch List</H2>
+<P>watch individual changes to a list of Deployment. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/namespaces/{namespace}/deployments</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-deployment-v1-apps">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Deployment. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/deployments</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-deployment-v1-apps-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-deployment-v1-apps">Patch Status</H2>
+<P>partially update status of the specified Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/deployments/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Deployment</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-deployment-v1-apps">Read Status</H2>
+<P>read status of the specified Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/deployments/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Deployment</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-deployment-v1-apps">Replace Status</H2>
+<P>replace status of the specified Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/deployments/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Deployment</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#deployment-v1-apps">Deployment</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-misc-operations-deployment-v1-apps-strong-"><STRONG>Misc Operations</STRONG></H2>
+<H2 id="read-scale-deployment-v1-apps">Read Scale</H2>
+<P>read scale of the specified Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/deployments/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-scale-deployment-v1-apps">Replace Scale</H2>
+<P>replace scale of the specified Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/deployments/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-scale-deployment-v1-apps">Patch Scale</H2>
+<P>partially update scale of the specified Deployment</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/deployments/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="job-v1-batch">Job v1 batch</H1>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#example-job-v1-batch" aria-controls="example-job-v1-batch"
+  aria-expanded="false">example</BUTTON>
+<DIV class="collapse" id="example-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Job Config to print pi up to 2000 digits (then exit).</DIV>
+  <DIV class="panel-body">
+<PRE class="example"><CODE class="lang-yaml">
+apiVersion: batch/v1
+kind: Job
+metadata:
+  # Unique key of the Job instance
+  name: example-job
+spec:
+  template:
+    metadata:
+      name: example-job
+    spec:
+      containers:
+      - name: pi
+        image: perl
+        command: [&#34;perl&#34;]
+        args: [&#34;-Mbignum=bpi&#34;, &#34;-wle&#34;, &#34;print bpi(2000)&#34;]
+      # Do not restart containers after they exit
+      restartPolicy: Never
+
+</CODE></PRE></DIV></DIV></DIV>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>batch</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Job</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#joblist-v1-batch">JobList [batch/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#jobspec-v1-batch">JobSpec</a></I></TD><TD>Specification of the desired behavior of a job. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#jobstatus-v1-batch">JobStatus</a></I></TD><TD>Current status of a job. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="jobspec-v1-batch">JobSpec v1 batch</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#job-v1-batch">Job [batch/v1]</a></LI>
+  <LI><a href="#jobtemplatespec-v1-batch">JobTemplateSpec [batch/v1]</a></LI>
+  <LI><a href="#jobtemplatespec-v1beta1-batch">JobTemplateSpec [batch/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>activeDeadlineSeconds</CODE><BR /><I>integer</I></TD><TD>Specifies the duration in seconds relative to the startTime that the job may be continuously active before the system tries to terminate it; value must be positive integer. If a Job is suspended (at creation or through an update), this timer will effectively be stopped and reset when the Job is resumed again.</TD></TR>
+<TR><TD><CODE>backoffLimit</CODE><BR /><I>integer</I></TD><TD>Specifies the number of retries before marking this job failed. Defaults to 6</TD></TR>
+<TR><TD><CODE>completionMode</CODE><BR /><I>string</I></TD><TD>CompletionMode specifies how Pod completions are tracked. It can be `NonIndexed` (default) or `Indexed`.  `NonIndexed` means that the Job is considered complete when there have been .spec.completions successfully completed Pods. Each Pod completion is homologous to each other.  `Indexed` means that the Pods of a Job get an associated completion index from 0 to (.spec.completions - 1), available in the annotation batch.kubernetes.io/job-completion-index. The Job is considered complete when there is one successfully completed Pod for each index. When value is `Indexed`, .spec.completions must be specified and `.spec.parallelism` must be less than or equal to 10^5. In addition, The Pod name takes the form `$(job-name)-$(index)-$(random-string)`, the Pod hostname takes the form `$(job-name)-$(index)`.  More completion modes can be added in the future. If the Job controller observes a mode that it doesn&#39;t recognize, which is possible during upgrades due to version skew, the controller skips updates for the Job.</TD></TR>
+<TR><TD><CODE>completions</CODE><BR /><I>integer</I></TD><TD>Specifies the desired number of successfully finished pods the job should be run with.  Setting to nil means that the success of any pod signals the success of all pods, and allows parallelism to have any positive value.  Setting to 1 means that parallelism is limited to 1 and the success of that pod signals the success of the job. More info: https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/</TD></TR>
+<TR><TD><CODE>manualSelector</CODE><BR /><I>boolean</I></TD><TD>manualSelector controls generation of pod labels and pod selectors. Leave `manualSelector` unset unless you are certain what you are doing. When false or unset, the system pick labels unique to this job and appends those labels to the pod template.  When true, the user is responsible for picking unique labels and specifying the selector.  Failure to pick a unique label may cause this and other jobs to not function correctly.  However, You may see `manualSelector=true` in jobs that were created with the old `extensions/v1beta1` API. More info: https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/#specifying-your-own-pod-selector</TD></TR>
+<TR><TD><CODE>parallelism</CODE><BR /><I>integer</I></TD><TD>Specifies the maximum desired number of pods the job should run at any given time. The actual number of pods running in steady state will be less than this number when ((.spec.completions - .status.successful) &lt; .spec.parallelism), i.e. when the work left to do is less than max parallelism. More info: https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>A label query over pods that should match the pod count. Normally, the system sets this field for you. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors</TD></TR>
+<TR><TD><CODE>suspend</CODE><BR /><I>boolean</I></TD><TD>Suspend specifies whether the Job controller should create Pods or not. If a Job is created with suspend set to true, no Pods are created by the Job controller. If a Job is suspended after creation (i.e. the flag goes from false to true), the Job controller will delete all active Pods associated with this Job. Users must design their workload to gracefully handle this. Suspending a Job will reset the StartTime field of the Job, effectively resetting the ActiveDeadlineSeconds timer too. Defaults to false.</TD></TR>
+<TR><TD><CODE>template</CODE><BR /><I><a href="#podtemplatespec-v1-core">PodTemplateSpec</a></I></TD><TD>Describes the pod that will be created when executing a job. More info: https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/</TD></TR>
+<TR><TD><CODE>ttlSecondsAfterFinished</CODE><BR /><I>integer</I></TD><TD>ttlSecondsAfterFinished limits the lifetime of a Job that has finished execution (either Complete or Failed). If this field is set, ttlSecondsAfterFinished after the Job finishes, it is eligible to be automatically deleted. When the Job is being deleted, its lifecycle guarantees (e.g. finalizers) will be honored. If this field is unset, the Job won&#39;t be automatically deleted. If this field is set to zero, the Job becomes eligible to be deleted immediately after it finishes.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="jobstatus-v1-batch">JobStatus v1 batch</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#job-v1-batch">Job [batch/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>active</CODE><BR /><I>integer</I></TD><TD>The number of pending and running pods.</TD></TR>
+<TR><TD><CODE>completedIndexes</CODE><BR /><I>string</I></TD><TD>CompletedIndexes holds the completed indexes when .spec.completionMode = &#34;Indexed&#34; in a text format. The indexes are represented as decimal integers separated by commas. The numbers are listed in increasing order. Three or more consecutive numbers are compressed and represented by the first and last element of the series, separated by a hyphen. For example, if the completed indexes are 1, 3, 4, 5 and 7, they are represented as &#34;1,3-5,7&#34;.</TD></TR>
+<TR><TD><CODE>completionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Represents time when the job was completed. It is not guaranteed to be set in happens-before order across separate operations. It is represented in RFC3339 form and is in UTC. The completion time is only set when the job finishes successfully.</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#jobcondition-v1-batch">JobCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>The latest available observations of an object&#39;s current state. When a Job fails, one of the conditions will have type &#34;Failed&#34; and status true. When a Job is suspended, one of the conditions will have type &#34;Suspended&#34; and status true; when the Job is resumed, the status of this condition will become false. When a Job is completed, one of the conditions will have type &#34;Complete&#34; and status true. More info: https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/</TD></TR>
+<TR><TD><CODE>failed</CODE><BR /><I>integer</I></TD><TD>The number of pods which reached phase Failed.</TD></TR>
+<TR><TD><CODE>ready</CODE><BR /><I>integer</I></TD><TD>The number of pods which have a Ready condition.  This field is beta-level. The job controller populates the field when the feature gate JobReadyPods is enabled (enabled by default).</TD></TR>
+<TR><TD><CODE>startTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Represents time when the job controller started processing a job. When a Job is created in the suspended state, this field is not set until the first time it is resumed. This field is reset every time a Job is resumed from suspension. It is represented in RFC3339 form and is in UTC.</TD></TR>
+<TR><TD><CODE>succeeded</CODE><BR /><I>integer</I></TD><TD>The number of pods which reached phase Succeeded.</TD></TR>
+<TR><TD><CODE>uncountedTerminatedPods</CODE><BR /><I><a href="#uncountedterminatedpods-v1-batch">UncountedTerminatedPods</a></I></TD><TD>UncountedTerminatedPods holds the UIDs of Pods that have terminated but the job controller hasn&#39;t yet accounted for in the status counters.  The job controller creates pods with a finalizer. When a pod terminates (succeeded or failed), the controller does three steps to account for it in the job status: (1) Add the pod UID to the arrays in this field. (2) Remove the pod finalizer. (3) Remove the pod UID from the arrays while increasing the corresponding     counter.  This field is beta-level. The job controller only makes use of this field when the feature gate JobTrackingWithFinalizers is enabled (enabled by default). Old jobs might not be tracked using this field, in which case the field remains null.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="joblist-v1-batch">JobList v1 batch</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#job-v1-batch">Job</a> array</I></TD><TD>items is the list of Jobs.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-job-v1-batch-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-job-v1-batch">Create</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-create-job-v1-batch" aria-controls="req-kubectl-create-job-v1-batch"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-create-job-v1-batch" aria-controls="req-curl-create-job-v1-batch"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-create-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ echo 'apiVersion: batch/v1
+kind: Job
+metadata:
+  name: example-job
+spec:
+  template:
+    metadata:
+      name: example-job
+    spec:
+      containers:
+      - name: pi
+        image: perl
+        command: ["perl",  "-Mbignum=bpi", "-wle", "print bpi(2000)"]
+      restartPolicy: Never
+' | kubectl create -f -
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-create-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X POST -H 'Content-Type: application/yaml' --data '
+apiVersion: batch/v1
+kind: Job
+metadata:
+  name: example-job
+spec:
+  template:
+    metadata:
+      name: example-job
+    spec:
+      containers:
+      - name: pi
+        image: perl
+        command: ["perl",  "-Mbignum=bpi", "-wle", "print bpi(2000)"]
+      restartPolicy: Never
+' http://127.0.0.1:8001/apis/batch/v1/namespaces/default/jobs
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-create-job-v1-batch" aria-controls="res-kubectl-create-job-v1-batch"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-create-job-v1-batch" aria-controls="res-curl-create-job-v1-batch"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-create-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+job "example-job" created
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-create-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Job",
+  "apiVersion": "batch/v1",
+  "metadata": {
+    "name": "example-job",
+    "namespace": "default",
+    "selfLink": "/apis/batch/v1/namespaces/default/jobs/example-job",
+    "uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+    "resourceVersion": "7479",
+    "creationTimestamp": "2016-11-04T18:45:25Z"
+  },
+  "spec": {
+    "parallelism": 1,
+    "completions": 1,
+    "selector": {
+      "matchLabels": {
+        "controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7"
+      }
+    },
+    "template": {
+      "metadata": {
+        "name": "example-job",
+        "creationTimestamp": null,
+        "labels": {
+          "controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+          "job-name": "example-job"
+        }
+      },
+      "spec": {
+        "containers": [
+          {
+            "name": "pi",
+            "image": "perl",
+            "command": [
+              "perl",
+              "-Mbignum=bpi",
+              "-wle",
+              "print bpi(2000)"
+            ],
+            "resources": {},
+            "terminationMessagePath": "/dev/termination-log",
+            "imagePullPolicy": "Always"
+          }
+        ],
+        "restartPolicy": "Never",
+        "terminationGracePeriodSeconds": 30,
+        "dnsPolicy": "ClusterFirst",
+        "securityContext": {}
+      }
+    }
+  },
+  "status": {}
+}
+</CODE></PRE></DIV></DIV></DIV>
+<P>create a Job</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/batch/v1/namespaces/{namespace}/jobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#job-v1-batch">Job</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-job-v1-batch">Patch</H2>
+<P>partially update the specified Job</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/batch/v1/namespaces/{namespace}/jobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Job</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-job-v1-batch">Replace</H2>
+<P>replace the specified Job</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/batch/v1/namespaces/{namespace}/jobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Job</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#job-v1-batch">Job</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-job-v1-batch">Delete</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-delete-job-v1-batch" aria-controls="req-kubectl-delete-job-v1-batch"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-delete-job-v1-batch" aria-controls="req-curl-delete-job-v1-batch"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-delete-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl delete job example-job
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-delete-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X DELETE -H 'Content-Type: application/yaml' --data '
+gracePeriodSeconds: 0
+orphanDependents: false
+' 'http://127.0.0.1:8001/apis/batch/v1/namespaces/default/jobs/example-job'
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-delete-job-v1-batch" aria-controls="res-kubectl-delete-job-v1-batch"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-delete-job-v1-batch" aria-controls="res-curl-delete-job-v1-batch"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-delete-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+job "example-job" deleted
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-delete-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Status",
+  "apiVersion": "v1",
+  "metadata": {},
+  "status": "Success",
+  "code": 200
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<P>delete a Job</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/batch/v1/namespaces/{namespace}/jobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Job</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-job-v1-batch">Delete Collection</H2>
+<P>delete collection of Job</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/batch/v1/namespaces/{namespace}/jobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-job-v1-batch-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-job-v1-batch">Read</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-read-job-v1-batch" aria-controls="req-kubectl-read-job-v1-batch"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-read-job-v1-batch" aria-controls="req-curl-read-job-v1-batch"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-read-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl get job example-job -o json
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-read-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X GET http://127.0.0.1:8001/apis/batch/v1/namespaces/default/jobs/example-job
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-read-job-v1-batch" aria-controls="res-kubectl-read-job-v1-batch"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-read-job-v1-batch" aria-controls="res-curl-read-job-v1-batch"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-read-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+{
+  "kind": "Job",
+  "apiVersion": "batch/v1",
+  "metadata": {
+    "name": "example-job",
+    "namespace": "default",
+    "selfLink": "/apis/batch/v1/namespaces/default/jobs/example-job",
+    "uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+    "resourceVersion": "7482",
+    "creationTimestamp": "2016-11-04T18:45:25Z"
+  },
+  "spec": {
+    "parallelism": 1,
+    "completions": 1,
+    "selector": {
+      "matchLabels": {
+        "controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7"
+      }
+    },
+    "template": {
+      "metadata": {
+        "name": "example-job",
+        "creationTimestamp": null,
+        "labels": {
+          "controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+          "job-name": "example-job"
+        }
+      },
+      "spec": {
+        "containers": [
+          {
+            "name": "pi",
+            "image": "perl",
+            "command": [
+              "perl",
+              "-Mbignum=bpi",
+              "-wle",
+              "print bpi(2000)"
+            ],
+            "resources": {},
+            "terminationMessagePath": "/dev/termination-log",
+            "imagePullPolicy": "Always"
+          }
+        ],
+        "restartPolicy": "Never",
+        "terminationGracePeriodSeconds": 30,
+        "dnsPolicy": "ClusterFirst",
+        "securityContext": {}
+      }
+    }
+  },
+  "status": {
+    "startTime": "2016-11-04T18:45:25Z",
+    "active": 1
+  }
+}
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-read-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Job",
+  "apiVersion": "batch/v1",
+  "metadata": {
+    "name": "example-job",
+    "namespace": "default",
+    "selfLink": "/apis/batch/v1/namespaces/default/jobs/example-job",
+    "uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+    "resourceVersion": "7482",
+    "creationTimestamp": "2016-11-04T18:45:25Z"
+  },
+  "spec": {
+    "parallelism": 1,
+    "completions": 1,
+    "selector": {
+      "matchLabels": {
+        "controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7"
+      }
+    },
+    "template": {
+      "metadata": {
+        "name": "example-job",
+        "creationTimestamp": null,
+        "labels": {
+          "controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+          "job-name": "example-job"
+        }
+      },
+      "spec": {
+        "containers": [
+          {
+            "name": "pi",
+            "image": "perl",
+            "command": [
+              "perl",
+              "-Mbignum=bpi",
+              "-wle",
+              "print bpi(2000)"
+            ],
+            "resources": {},
+            "terminationMessagePath": "/dev/termination-log",
+            "imagePullPolicy": "Always"
+          }
+        ],
+        "restartPolicy": "Never",
+        "terminationGracePeriodSeconds": 30,
+        "dnsPolicy": "ClusterFirst",
+        "securityContext": {}
+      }
+    }
+  },
+  "status": {
+    "startTime": "2016-11-04T18:45:25Z",
+    "active": 1
+  }
+}
+</CODE></PRE></DIV></DIV></DIV>
+<P>read the specified Job</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/namespaces/{namespace}/jobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Job</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-job-v1-batch">List</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-list-job-v1-batch" aria-controls="req-kubectl-list-job-v1-batch"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-list-job-v1-batch" aria-controls="req-curl-list-job-v1-batch"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-list-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl get job -o json
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-list-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X GET 'http://127.0.0.1:8001/apis/batch/v1/namespaces/default/jobs'
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-list-job-v1-batch" aria-controls="res-kubectl-list-job-v1-batch"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-list-job-v1-batch" aria-controls="res-curl-list-job-v1-batch"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-list-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+{
+  "kind": "JobList",
+  "apiVersion": "batch/v1",
+  "metadata": {
+    "selfLink": "/apis/batch/v1/namespaces/default/jobs",
+    "resourceVersion": "7589"
+  },
+  "items": [
+    {
+      "metadata": {
+        "name": "",
+        "namespace": "default",
+        "selfLink": "/apis/batch/v1/namespaces/default/jobs/",
+        "uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+        "resourceVersion": "7482",
+        "creationTimestamp": "2016-11-04T18:45:25Z"
+      },
+      "spec": {
+        "parallelism": 1,
+        "completions": 1,
+        "selector": {
+          "matchLabels": {
+            "controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7"
+          }
+        },
+        "template": {
+          "metadata": {
+            "name": "",
+            "creationTimestamp": null,
+            "labels": {
+              "controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+              "job-name": ""
+            }
+          },
+          "spec": {
+            "containers": [
+              {
+                "name": "pi",
+                "image": "perl",
+                "command": [
+                  "perl",
+                  "-Mbignum=bpi",
+                  "-wle",
+                  "print bpi(2000)"
+                ],
+                "resources": {},
+                "terminationMessagePath": "/dev/termination-log",
+                "imagePullPolicy": "Always"
+              }
+            ],
+            "restartPolicy": "Never",
+            "terminationGracePeriodSeconds": 30,
+            "dnsPolicy": "ClusterFirst",
+            "securityContext": {}
+          }
+        }
+      },
+      "status": {
+        "startTime": "2016-11-04T18:45:25Z",
+        "active": 1
+      }
+    }
+  ]
+}
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-list-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "JobList",
+  "apiVersion": "batch/v1",
+  "metadata": {
+    "selfLink": "/apis/batch/v1/namespaces/default/jobs",
+    "resourceVersion": "7589"
+  },
+  "items": [
+    {
+      "metadata": {
+        "name": "",
+        "namespace": "default",
+        "selfLink": "/apis/batch/v1/namespaces/default/jobs/",
+        "uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+        "resourceVersion": "7482",
+        "creationTimestamp": "2016-11-04T18:45:25Z"
+      },
+      "spec": {
+        "parallelism": 1,
+        "completions": 1,
+        "selector": {
+          "matchLabels": {
+            "controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7"
+          }
+        },
+        "template": {
+          "metadata": {
+            "name": "",
+            "creationTimestamp": null,
+            "labels": {
+              "controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+              "job-name": ""
+            }
+          },
+          "spec": {
+            "containers": [
+              {
+                "name": "pi",
+                "image": "perl",
+                "command": [
+                  "perl",
+                  "-Mbignum=bpi",
+                  "-wle",
+                  "print bpi(2000)"
+                ],
+                "resources": {},
+                "terminationMessagePath": "/dev/termination-log",
+                "imagePullPolicy": "Always"
+              }
+            ],
+            "restartPolicy": "Never",
+            "terminationGracePeriodSeconds": 30,
+            "dnsPolicy": "ClusterFirst",
+            "securityContext": {}
+          }
+        }
+      },
+      "status": {
+        "startTime": "2016-11-04T18:45:25Z",
+        "active": 1
+      }
+    }
+  ]
+}
+</CODE></PRE></DIV></DIV></DIV>
+<P>list or watch objects of kind Job</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/namespaces/{namespace}/jobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#joblist-v1-batch">JobList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-job-v1-batch">List All Namespaces</H2>
+<P>list or watch objects of kind Job</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/jobs</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#joblist-v1-batch">JobList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-job-v1-batch">Watch</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-watch-job-v1-batch" aria-controls="req-kubectl-watch-job-v1-batch"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-watch-job-v1-batch" aria-controls="req-curl-watch-job-v1-batch"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-watch-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl get job example-job --watch -o json
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-watch-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X GET 'http://127.0.0.1:8001/apis/batch/v1/watch/namespaces/default/jobs/example-job'
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-watch-job-v1-batch" aria-controls="res-kubectl-watch-job-v1-batch"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-watch-job-v1-batch" aria-controls="res-curl-watch-job-v1-batch"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-watch-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+{
+	"type": "ADDED",
+	"object": {
+		"kind": "Job",
+		"apiVersion": "batch/v1",
+		"metadata": {
+			"name": "example-job",
+			"namespace": "default",
+			"selfLink": "/apis/batch/v1/namespaces/default/jobs/example-job",
+			"uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+			"resourceVersion": "7482",
+			"creationTimestamp": "2016-11-04T18:45:25Z"
+		},
+		"spec": {
+			"parallelism": 1,
+			"completions": 1,
+			"selector": {
+				"matchLabels": {
+					"controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7"
+				}
+			},
+			"template": {
+				"metadata": {
+					"name": "example-job",
+					"creationTimestamp": null,
+					"labels": {
+						"controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+						"job-name": "example-job"
+					}
+				},
+				"spec": {
+					"containers": [
+						{
+							"name": "pi",
+							"image": "perl",
+							"command": [
+								"perl",
+								"-Mbignum=bpi",
+								"-wle",
+								"print bpi(2000)"
+							],
+							"resources": {
+							},
+							"terminationMessagePath": "/dev/termination-log",
+							"imagePullPolicy": "Always"
+						}
+					],
+					"restartPolicy": "Never",
+					"terminationGracePeriodSeconds": 30,
+					"dnsPolicy": "ClusterFirst",
+					"securityContext": {
+					}
+				}
+			}
+		},
+		"status": {
+			"startTime": "2016-11-04T18:45:25Z",
+			"active": 1
+		}
+	}
+}
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-watch-job-v1-batch">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+	"type": "ADDED",
+	"object": {
+		"kind": "Job",
+		"apiVersion": "batch/v1",
+		"metadata": {
+			"name": "example-job",
+			"namespace": "default",
+			"selfLink": "/apis/batch/v1/namespaces/default/jobs/example-job",
+			"uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+			"resourceVersion": "7482",
+			"creationTimestamp": "2016-11-04T18:45:25Z"
+		},
+		"spec": {
+			"parallelism": 1,
+			"completions": 1,
+			"selector": {
+				"matchLabels": {
+					"controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7"
+				}
+			},
+			"template": {
+				"metadata": {
+					"name": "example-job",
+					"creationTimestamp": null,
+					"labels": {
+						"controller-uid": "d93a3569-a2be-11e6-a008-fa043d458cc7",
+						"job-name": "example-job"
+					}
+				},
+				"spec": {
+					"containers": [
+						{
+							"name": "pi",
+							"image": "perl",
+							"command": [
+								"perl",
+								"-Mbignum=bpi",
+								"-wle",
+								"print bpi(2000)"
+							],
+							"resources": {
+							},
+							"terminationMessagePath": "/dev/termination-log",
+							"imagePullPolicy": "Always"
+						}
+					],
+					"restartPolicy": "Never",
+					"terminationGracePeriodSeconds": 30,
+					"dnsPolicy": "ClusterFirst",
+					"securityContext": {
+					}
+				}
+			}
+		},
+		"status": {
+			"startTime": "2016-11-04T18:45:25Z",
+			"active": 1
+		}
+	}
+}
+</CODE></PRE></DIV></DIV></DIV>
+<P>watch changes to an object of kind Job. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/watch/namespaces/{namespace}/jobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Job</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-job-v1-batch">Watch List</H2>
+<P>watch individual changes to a list of Job. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/watch/namespaces/{namespace}/jobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-job-v1-batch">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Job. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/watch/jobs</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-job-v1-batch-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-job-v1-batch">Patch Status</H2>
+<P>partially update status of the specified Job</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/batch/v1/namespaces/{namespace}/jobs/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Job</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-job-v1-batch">Read Status</H2>
+<P>read status of the specified Job</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1/namespaces/{namespace}/jobs/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Job</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-job-v1-batch">Replace Status</H2>
+<P>replace status of the specified Job</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/batch/v1/namespaces/{namespace}/jobs/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Job</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#job-v1-batch">Job</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#job-v1-batch">Job</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="pod-v1-core">Pod v1 core</H1>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#example-pod-v1-core" aria-controls="example-pod-v1-core"
+  aria-expanded="false">example</BUTTON>
+<DIV class="collapse" id="example-pod-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Pod Config to print "Hello World".</DIV>
+  <DIV class="panel-body">
+<PRE class="example"><CODE class="lang-yaml">
+apiVersion: v1
+kind: Pod
+metadata:
+  name: pod-example
+spec:
+  containers:
+  - name: ubuntu
+    image: ubuntu:trusty
+    command: [&#34;echo&#34;]
+    args: [&#34;Hello World&#34;]
+
+</CODE></PRE></DIV></DIV></DIV>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Pod</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-warning col-md-8"><P><I class="fa fa-warning"></I> <B>Warning:</B></P><P>It is recommended that users create Pods only through a Controller, and not directly.  See Controllers: <a href="#deployment-v1-apps">Deployment</a>, <a href="#job-v1-batch">Job</a>, or <a href="#statefulset-v1-apps">StatefulSet</a>.</P></DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podlist-v1-core">PodList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#podspec-v1-core">PodSpec</a></I></TD><TD>Specification of the desired behavior of the pod. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#podstatus-v1-core">PodStatus</a></I></TD><TD>Most recently observed status of the pod. This data may not be up to date. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="podspec-v1-core">PodSpec v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#pod-v1-core">Pod [core/v1]</a></LI>
+  <LI><a href="#podtemplatespec-v1-core">PodTemplateSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>activeDeadlineSeconds</CODE><BR /><I>integer</I></TD><TD>Optional duration in seconds the pod may be active on the node relative to StartTime before the system will actively try to mark it failed and kill associated containers. Value must be a positive integer.</TD></TR>
+<TR><TD><CODE>affinity</CODE><BR /><I><a href="#affinity-v1-core">Affinity</a></I></TD><TD>If specified, the pod&#39;s scheduling constraints</TD></TR>
+<TR><TD><CODE>automountServiceAccountToken</CODE><BR /><I>boolean</I></TD><TD>AutomountServiceAccountToken indicates whether a service account token should be automatically mounted.</TD></TR>
+<TR><TD><CODE>containers</CODE><BR /><I><a href="#container-v1-core">Container</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>name</I></TD><TD>List of containers belonging to the pod. Containers cannot currently be added or removed. There must be at least one container in a Pod. Cannot be updated.</TD></TR>
+<TR><TD><CODE>dnsConfig</CODE><BR /><I><a href="#poddnsconfig-v1-core">PodDNSConfig</a></I></TD><TD>Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.</TD></TR>
+<TR><TD><CODE>dnsPolicy</CODE><BR /><I>string</I></TD><TD>Set DNS policy for the pod. Defaults to &#34;ClusterFirst&#34;. Valid values are &#39;ClusterFirstWithHostNet&#39;, &#39;ClusterFirst&#39;, &#39;Default&#39; or &#39;None&#39;. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. To have DNS options set along with hostNetwork, you have to specify DNS policy explicitly to &#39;ClusterFirstWithHostNet&#39;.  </TD></TR>
+<TR><TD><CODE>enableServiceLinks</CODE><BR /><I>boolean</I></TD><TD>EnableServiceLinks indicates whether information about services should be injected into pod&#39;s environment variables, matching the syntax of Docker links. Optional: Defaults to true.</TD></TR>
+<TR><TD><CODE>ephemeralContainers</CODE><BR /><I><a href="#ephemeralcontainer-v1-core">EphemeralContainer</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>name</I></TD><TD>List of ephemeral containers run in this pod. Ephemeral containers may be run in an existing pod to perform user-initiated actions such as debugging. This list cannot be specified when creating a pod, and it cannot be modified by updating the pod spec. In order to add an ephemeral container to an existing pod, use the pod&#39;s ephemeralcontainers subresource. This field is beta-level and available on clusters that haven&#39;t disabled the EphemeralContainers feature gate.</TD></TR>
+<TR><TD><CODE>hostAliases</CODE><BR /><I><a href="#hostalias-v1-core">HostAlias</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>ip</I></TD><TD>HostAliases is an optional list of hosts and IPs that will be injected into the pod&#39;s hosts file if specified. This is only valid for non-hostNetwork pods.</TD></TR>
+<TR><TD><CODE>hostIPC</CODE><BR /><I>boolean</I></TD><TD>Use the host&#39;s ipc namespace. Optional: Default to false.</TD></TR>
+<TR><TD><CODE>hostNetwork</CODE><BR /><I>boolean</I></TD><TD>Host networking requested for this pod. Use the host&#39;s network namespace. If this option is set, the ports that will be used must be specified. Default to false.</TD></TR>
+<TR><TD><CODE>hostPID</CODE><BR /><I>boolean</I></TD><TD>Use the host&#39;s pid namespace. Optional: Default to false.</TD></TR>
+<TR><TD><CODE>hostname</CODE><BR /><I>string</I></TD><TD>Specifies the hostname of the Pod If not specified, the pod&#39;s hostname will be set to a system-defined value.</TD></TR>
+<TR><TD><CODE>imagePullSecrets</CODE><BR /><I><a href="#localobjectreference-v1-core">LocalObjectReference</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>name</I></TD><TD>ImagePullSecrets is an optional list of references to secrets in the same namespace to use for pulling any of the images used by this PodSpec. If specified, these secrets will be passed to individual puller implementations for them to use. More info: https://kubernetes.io/docs/concepts/containers/images#specifying-imagepullsecrets-on-a-pod</TD></TR>
+<TR><TD><CODE>initContainers</CODE><BR /><I><a href="#container-v1-core">Container</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>name</I></TD><TD>List of initialization containers belonging to the pod. Init containers are executed in order prior to containers being started. If any init container fails, the pod is considered to have failed and is handled according to its restartPolicy. The name for an init container or normal container must be unique among all containers. Init containers may not have Lifecycle actions, Readiness probes, Liveness probes, or Startup probes. The resourceRequirements of an init container are taken into account during scheduling by finding the highest request/limit for each resource type, and then using the max of of that value or the sum of the normal containers. Limits are applied to init containers in a similar fashion. Init containers cannot currently be added or removed. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/init-containers/</TD></TR>
+<TR><TD><CODE>nodeName</CODE><BR /><I>string</I></TD><TD>NodeName is a request to schedule this pod onto a specific node. If it is non-empty, the scheduler simply schedules this pod onto that node, assuming that it fits resource requirements.</TD></TR>
+<TR><TD><CODE>nodeSelector</CODE><BR /><I>object</I></TD><TD>NodeSelector is a selector which must be true for the pod to fit on a node. Selector which must match a node&#39;s labels for the pod to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/</TD></TR>
+<TR><TD><CODE>os</CODE><BR /><I><a href="#podos-v1-core">PodOS</a></I></TD><TD>Specifies the OS of the containers in the pod. Some pod and container fields are restricted if this is set.  If the OS field is set to linux, the following fields must be unset: -securityContext.windowsOptions  If the OS field is set to windows, following fields must be unset: - spec.hostPID - spec.hostIPC - spec.securityContext.seLinuxOptions - spec.securityContext.seccompProfile - spec.securityContext.fsGroup - spec.securityContext.fsGroupChangePolicy - spec.securityContext.sysctls - spec.shareProcessNamespace - spec.securityContext.runAsUser - spec.securityContext.runAsGroup - spec.securityContext.supplementalGroups - spec.containers[*].securityContext.seLinuxOptions - spec.containers[*].securityContext.seccompProfile - spec.containers[*].securityContext.capabilities - spec.containers[*].securityContext.readOnlyRootFilesystem - spec.containers[*].securityContext.privileged - spec.containers[*].securityContext.allowPrivilegeEscalation - spec.containers[*].securityContext.procMount - spec.containers[*].securityContext.runAsUser - spec.containers[*].securityContext.runAsGroup This is a beta field and requires the IdentifyPodOS feature</TD></TR>
+<TR><TD><CODE>overhead</CODE><BR /><I>object</I></TD><TD>Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. This field will be autopopulated at admission time by the RuntimeClass admission controller. If the RuntimeClass admission controller is enabled, overhead must not be set in Pod create requests. The RuntimeClass admission controller will reject Pod create requests which have the overhead already set. If RuntimeClass is configured and selected in the PodSpec, Overhead will be set to the value defined in the corresponding RuntimeClass, otherwise it will remain unset and treated as zero. More info: https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.md</TD></TR>
+<TR><TD><CODE>preemptionPolicy</CODE><BR /><I>string</I></TD><TD>PreemptionPolicy is the Policy for preempting pods with lower priority. One of Never, PreemptLowerPriority. Defaults to PreemptLowerPriority if unset.</TD></TR>
+<TR><TD><CODE>priority</CODE><BR /><I>integer</I></TD><TD>The priority value. Various system components use this field to find the priority of the pod. When Priority Admission Controller is enabled, it prevents users from setting this field. The admission controller populates this field from PriorityClassName. The higher the value, the higher the priority.</TD></TR>
+<TR><TD><CODE>priorityClassName</CODE><BR /><I>string</I></TD><TD>If specified, indicates the pod&#39;s priority. &#34;system-node-critical&#34; and &#34;system-cluster-critical&#34; are two special keywords which indicate the highest priorities with the former being the highest priority. Any other name must be defined by creating a PriorityClass object with that name. If not specified, the pod priority will be default or zero if there is no default.</TD></TR>
+<TR><TD><CODE>readinessGates</CODE><BR /><I><a href="#podreadinessgate-v1-core">PodReadinessGate</a> array</I></TD><TD>If specified, all readiness gates will be evaluated for pod readiness. A pod is ready when all its containers are ready AND all conditions specified in the readiness gates have status equal to &#34;True&#34; More info: https://git.k8s.io/enhancements/keps/sig-network/580-pod-readiness-gates</TD></TR>
+<TR><TD><CODE>restartPolicy</CODE><BR /><I>string</I></TD><TD>Restart policy for all containers within the pod. One of Always, OnFailure, Never. Default to Always. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy  </TD></TR>
+<TR><TD><CODE>runtimeClassName</CODE><BR /><I>string</I></TD><TD>RuntimeClassName refers to a RuntimeClass object in the node.k8s.io group, which should be used to run this pod.  If no RuntimeClass resource matches the named class, the pod will not be run. If unset or empty, the &#34;legacy&#34; RuntimeClass will be used, which is an implicit class with an empty definition that uses the default runtime handler. More info: https://git.k8s.io/enhancements/keps/sig-node/585-runtime-class</TD></TR>
+<TR><TD><CODE>schedulerName</CODE><BR /><I>string</I></TD><TD>If specified, the pod will be dispatched by specified scheduler. If not specified, the pod will be dispatched by default scheduler.</TD></TR>
+<TR><TD><CODE>securityContext</CODE><BR /><I><a href="#podsecuritycontext-v1-core">PodSecurityContext</a></I></TD><TD>SecurityContext holds pod-level security attributes and common container settings. Optional: Defaults to empty.  See type description for default values of each field.</TD></TR>
+<TR><TD><CODE>serviceAccount</CODE><BR /><I>string</I></TD><TD>DeprecatedServiceAccount is a depreciated alias for ServiceAccountName. Deprecated: Use serviceAccountName instead.</TD></TR>
+<TR><TD><CODE>serviceAccountName</CODE><BR /><I>string</I></TD><TD>ServiceAccountName is the name of the ServiceAccount to use to run this pod. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/</TD></TR>
+<TR><TD><CODE>setHostnameAsFQDN</CODE><BR /><I>boolean</I></TD><TD>If true the pod&#39;s hostname will be configured as the pod&#39;s FQDN, rather than the leaf name (the default). In Linux containers, this means setting the FQDN in the hostname field of the kernel (the nodename field of struct utsname). In Windows containers, this means setting the registry value of hostname for the registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters to FQDN. If a pod does not have FQDN, this has no effect. Default to false.</TD></TR>
+<TR><TD><CODE>shareProcessNamespace</CODE><BR /><I>boolean</I></TD><TD>Share a single process namespace between all of the containers in a pod. When this is set containers will be able to view and signal processes from other containers in the same pod, and the first process in each container will not be assigned PID 1. HostPID and ShareProcessNamespace cannot both be set. Optional: Default to false.</TD></TR>
+<TR><TD><CODE>subdomain</CODE><BR /><I>string</I></TD><TD>If specified, the fully qualified Pod hostname will be &#34;&lt;hostname&gt;.&lt;subdomain&gt;.&lt;pod namespace&gt;.svc.&lt;cluster domain&gt;&#34;. If not specified, the pod will not have a domainname at all.</TD></TR>
+<TR><TD><CODE>terminationGracePeriodSeconds</CODE><BR /><I>integer</I></TD><TD>Optional duration in seconds the pod needs to terminate gracefully. May be decreased in delete request. Value must be non-negative integer. The value zero indicates stop immediately via the kill signal (no opportunity to shut down). If this value is nil, the default grace period will be used instead. The grace period is the duration in seconds after the processes running in the pod are sent a termination signal and the time when the processes are forcibly halted with a kill signal. Set this value longer than the expected cleanup time for your process. Defaults to 30 seconds.</TD></TR>
+<TR><TD><CODE>tolerations</CODE><BR /><I><a href="#toleration-v1-core">Toleration</a> array</I></TD><TD>If specified, the pod&#39;s tolerations.</TD></TR>
+<TR><TD><CODE>topologySpreadConstraints</CODE><BR /><I><a href="#topologyspreadconstraint-v1-core">TopologySpreadConstraint</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>topologyKey</I></TD><TD>TopologySpreadConstraints describes how a group of pods ought to spread across topology domains. Scheduler will schedule pods in a way which abides by the constraints. All topologySpreadConstraints are ANDed.</TD></TR>
+<TR><TD><CODE>volumes</CODE><BR /><I><a href="#volume-v1-core">Volume</a> array</I><BR /><B>patch strategy</B>: <I>merge,retainKeys</I><BR /><B>patch merge key</B>: <I>name</I></TD><TD>List of volumes that can be mounted by containers belonging to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="podstatus-v1-core">PodStatus v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#pod-v1-core">Pod [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#podcondition-v1-core">PodCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Current service state of pod. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-conditions</TD></TR>
+<TR><TD><CODE>containerStatuses</CODE><BR /><I><a href="#containerstatus-v1-core">ContainerStatus</a> array</I></TD><TD>The list has one entry per container in the manifest. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-and-container-status</TD></TR>
+<TR><TD><CODE>ephemeralContainerStatuses</CODE><BR /><I><a href="#containerstatus-v1-core">ContainerStatus</a> array</I></TD><TD>Status for any ephemeral containers that have run in this pod. This field is beta-level and available on clusters that haven&#39;t disabled the EphemeralContainers feature gate.</TD></TR>
+<TR><TD><CODE>hostIP</CODE><BR /><I>string</I></TD><TD>IP address of the host to which the pod is assigned. Empty if not yet scheduled.</TD></TR>
+<TR><TD><CODE>initContainerStatuses</CODE><BR /><I><a href="#containerstatus-v1-core">ContainerStatus</a> array</I></TD><TD>The list has one entry per init container in the manifest. The most recent successful init container will have ready = true, the most recently started container will have startTime set. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-and-container-status</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>A human readable message indicating details about why the pod is in this condition.</TD></TR>
+<TR><TD><CODE>nominatedNodeName</CODE><BR /><I>string</I></TD><TD>nominatedNodeName is set only when this pod preempts other pods on the node, but it cannot be scheduled right away as preemption victims receive their graceful termination periods. This field does not guarantee that the pod will be scheduled on this node. Scheduler may decide to place the pod elsewhere if other nodes become available sooner. Scheduler may also decide to give the resources on this node to a higher priority pod that is created after preemption. As a result, this field may be different than PodSpec.nodeName when the pod is scheduled.</TD></TR>
+<TR><TD><CODE>phase</CODE><BR /><I>string</I></TD><TD>The phase of a Pod is a simple, high-level summary of where the Pod is in its lifecycle. The conditions array, the reason and message fields, and the individual container status arrays contain more detail about the pod&#39;s status. There are five possible phase values:  Pending: The pod has been accepted by the Kubernetes system, but one or more of the container images has not been created. This includes time before being scheduled as well as time spent downloading images over the network, which could take a while. Running: The pod has been bound to a node, and all of the containers have been created. At least one container is still running, or is in the process of starting or restarting. Succeeded: All containers in the pod have terminated in success, and will not be restarted. Failed: All containers in the pod have terminated, and at least one container has terminated in failure. The container either exited with non-zero status or was terminated by the system. Unknown: For some reason the state of the pod could not be obtained, typically due to an error in communicating with the host of the pod.  More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-phase  </TD></TR>
+<TR><TD><CODE>podIP</CODE><BR /><I>string</I></TD><TD>IP address allocated to the pod. Routable at least within the cluster. Empty if not yet allocated.</TD></TR>
+<TR><TD><CODE>podIPs</CODE><BR /><I><a href="#podip-v1-core">PodIP</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>ip</I></TD><TD>podIPs holds the IP addresses allocated to the pod. If this field is specified, the 0th entry must match the podIP field. Pods may be allocated at most 1 value for each of IPv4 and IPv6. This list is empty if no IPs have been allocated yet.</TD></TR>
+<TR><TD><CODE>qosClass</CODE><BR /><I>string</I></TD><TD>The Quality of Service (QOS) classification assigned to the pod based on resource requirements See PodQOSClass type for available QOS classes More info: https://git.k8s.io/community/contributors/design-proposals/node/resource-qos.md  </TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>A brief CamelCase message indicating details about why the pod is in this state. e.g. &#39;Evicted&#39;</TD></TR>
+<TR><TD><CODE>startTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>RFC 3339 date and time at which the object was acknowledged by the Kubelet. This is before the Kubelet pulled the container image(s) for the pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="podlist-v1-core">PodList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#pod-v1-core">Pod</a> array</I></TD><TD>List of pods. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-pod-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-pod-v1-core">Create</H2>
+<P>create a Pod</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/pods</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="create-eviction-pod-v1-core">Create Eviction</H2>
+<P>create eviction of a Pod</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/pods/{name}/eviction</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Eviction</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#eviction-v1-policy">Eviction</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#eviction-v1-policy">Eviction</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#eviction-v1-policy">Eviction</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#eviction-v1-policy">Eviction</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-pod-v1-core">Patch</H2>
+<P>partially update the specified Pod</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/pods/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-pod-v1-core">Replace</H2>
+<P>replace the specified Pod</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/pods/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-pod-v1-core">Delete</H2>
+<P>delete a Pod</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/pods/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-pod-v1-core">Delete Collection</H2>
+<P>delete collection of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/pods</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-pod-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-pod-v1-core">Read</H2>
+<P>read the specified Pod</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/pods/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-pod-v1-core">List</H2>
+<P>list or watch objects of kind Pod</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/pods</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podlist-v1-core">PodList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-pod-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind Pod</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/pods</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podlist-v1-core">PodList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-pod-v1-core">Watch</H2>
+<P>watch changes to an object of kind Pod. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/pods/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-pod-v1-core">Watch List</H2>
+<P>watch individual changes to a list of Pod. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/pods</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-pod-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Pod. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/pods</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-pod-v1-core-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-pod-v1-core">Patch Status</H2>
+<P>partially update status of the specified Pod</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/pods/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-pod-v1-core">Read Status</H2>
+<P>read status of the specified Pod</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/pods/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-pod-v1-core">Replace Status</H2>
+<P>replace status of the specified Pod</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/pods/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-ephemeralcontainers-operations-pod-v1-core-strong-"><STRONG>EphemeralContainers Operations</STRONG></H2>
+<H2 id="patch-ephemeralcontainers-pod-v1-core">Patch EphemeralContainers</H2>
+<P>partially update ephemeralcontainers of the specified Pod</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/pods/{name}/ephemeralcontainers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-ephemeralcontainers-pod-v1-core">Read EphemeralContainers</H2>
+<P>read ephemeralcontainers of the specified Pod</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/pods/{name}/ephemeralcontainers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-ephemeralcontainers-pod-v1-core">Replace EphemeralContainers</H2>
+<P>replace ephemeralcontainers of the specified Pod</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/pods/{name}/ephemeralcontainers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#pod-v1-core">Pod</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-proxy-operations-pod-v1-core-strong-"><STRONG>Proxy Operations</STRONG></H2>
+<H2 id="create-connect-portforward-pod-v1-core">Create Connect Portforward</H2>
+<P>connect POST requests to portforward of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/pods/{name}/portforward</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodPortForwardOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ports</CODE></TD><TD>List of ports to forward Required when using WebSockets</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="create-connect-proxy-pod-v1-core">Create Connect Proxy</H2>
+<P>connect POST requests to proxy of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/pods/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="create-connect-proxy-path-pod-v1-core">Create Connect Proxy Path</H2>
+<P>connect POST requests to proxy of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/pods/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-connect-proxy-pod-v1-core">Delete Connect Proxy</H2>
+<P>connect DELETE requests to proxy of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/pods/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-connect-proxy-path-pod-v1-core">Delete Connect Proxy Path</H2>
+<P>connect DELETE requests to proxy of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/pods/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="get-connect-portforward-pod-v1-core">Get Connect Portforward</H2>
+<P>connect GET requests to portforward of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/pods/{name}/portforward</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodPortForwardOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ports</CODE></TD><TD>List of ports to forward Required when using WebSockets</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="get-connect-proxy-pod-v1-core">Get Connect Proxy</H2>
+<P>connect GET requests to proxy of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/pods/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="get-connect-proxy-path-pod-v1-core">Get Connect Proxy Path</H2>
+<P>connect GET requests to proxy of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/pods/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="head-connect-proxy-pod-v1-core">Head Connect Proxy</H2>
+<P>connect HEAD requests to proxy of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>HEAD /api/v1/namespaces/{namespace}/pods/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="head-connect-proxy-path-pod-v1-core">Head Connect Proxy Path</H2>
+<P>connect HEAD requests to proxy of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>HEAD /api/v1/namespaces/{namespace}/pods/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-connect-proxy-pod-v1-core">Replace Connect Proxy</H2>
+<P>connect PUT requests to proxy of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/pods/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-connect-proxy-path-pod-v1-core">Replace Connect Proxy Path</H2>
+<P>connect PUT requests to proxy of Pod</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/pods/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-misc-operations-pod-v1-core-strong-"><STRONG>Misc Operations</STRONG></H2>
+<H2 id="read-log-pod-v1-core">Read Log</H2>
+<P>read log of the specified Pod</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/pods/{name}/log</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Pod</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>container</CODE></TD><TD>The container for which to stream logs. Defaults to only container if there is one container in the pod.</TD></TR>
+<TR><TD><CODE>follow</CODE></TD><TD>Follow the log stream of the pod. Defaults to false.</TD></TR>
+<TR><TD><CODE>insecureSkipTLSVerifyBackend</CODE></TD><TD>insecureSkipTLSVerifyBackend indicates that the apiserver should not confirm the validity of the serving certificate of the backend it is connecting to.  This will make the HTTPS connection between the apiserver and the backend insecure. This means the apiserver cannot verify the log data it is receiving came from the real kubelet.  If the kubelet is configured to verify the apiserver's TLS credentials, it does not mean the connection to the real kubelet is vulnerable to a man in the middle attack (e.g. an attacker could not intercept the actual log data coming from the real kubelet).</TD></TR>
+<TR><TD><CODE>limitBytes</CODE></TD><TD>If set, the number of bytes to read from the server before terminating the log output. This may not display a complete final line of logging, and may return slightly more or slightly less than the specified limit.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>previous</CODE></TD><TD>Return previous terminated container logs. Defaults to false.</TD></TR>
+<TR><TD><CODE>sinceSeconds</CODE></TD><TD>A relative time in seconds before the current time from which to show logs. If this value precedes the time a pod was started, only logs since the pod start will be returned. If this value is in the future, no logs will be returned. Only one of sinceSeconds or sinceTime may be specified.</TD></TR>
+<TR><TD><CODE>tailLines</CODE></TD><TD>If set, the number of lines from the end of the logs to show. If not specified, logs are shown from the creation of the container or sinceSeconds or sinceTime</TD></TR>
+<TR><TD><CODE>timestamps</CODE></TD><TD>If true, add an RFC3339 or RFC3339Nano timestamp at the beginning of every line of log output. Defaults to false.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="replicaset-v1-apps">ReplicaSet v1 apps</H1>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#example-replicaset-v1-apps" aria-controls="example-replicaset-v1-apps"
+  aria-expanded="false">example</BUTTON>
+<DIV class="collapse" id="example-replicaset-v1-apps">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">ReplicaSet Config to run 3 nginx instances.</DIV>
+  <DIV class="panel-body">
+<PRE class="example"><CODE class="lang-yaml">
+apiVersion: apps/v1
+kind: ReplicaSet
+metadata:
+  # Unique key of the ReplicaSet instance
+  name: replicaset-example
+spec:
+  # 3 Pods should exist at all times.
+  replicas: 3
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      # Run the nginx image
+      - name: nginx
+        image: nginx:1.14
+
+</CODE></PRE></DIV></DIV></DIV>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ReplicaSet</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-warning col-md-8"><P><I class="fa fa-warning"></I> <B>Warning:</B></P><P>In many cases it is recommended to create a <a href="#deployment-v1-apps">Deployment</a> instead of ReplicaSet.</P></DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#replicasetlist-v1-apps">ReplicaSetList [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>If the Labels of a ReplicaSet are empty, they are defaulted to be the same as the Pod(s) that the ReplicaSet manages. Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#replicasetspec-v1-apps">ReplicaSetSpec</a></I></TD><TD>Spec defines the specification of the desired behavior of the ReplicaSet. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#replicasetstatus-v1-apps">ReplicaSetStatus</a></I></TD><TD>Status is the most recently observed status of the ReplicaSet. This data may be out of date by some window of time. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="replicasetspec-v1-apps">ReplicaSetSpec v1 apps</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#replicaset-v1-apps">ReplicaSet [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>minReadySeconds</CODE><BR /><I>integer</I></TD><TD>Minimum number of seconds for which a newly created pod should be ready without any of its container crashing, for it to be considered available. Defaults to 0 (pod will be considered available as soon as it is ready)</TD></TR>
+<TR><TD><CODE>replicas</CODE><BR /><I>integer</I></TD><TD>Replicas is the number of desired replicas. This is a pointer to distinguish between explicit zero and unspecified. Defaults to 1. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller/#what-is-a-replicationcontroller</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>Selector is a label query over pods that should match the replica count. Label keys and values that must match in order to be controlled by this replica set. It must match the pod template&#39;s labels. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors</TD></TR>
+<TR><TD><CODE>template</CODE><BR /><I><a href="#podtemplatespec-v1-core">PodTemplateSpec</a></I></TD><TD>Template is the object that describes the pod that will be created if insufficient replicas are detected. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#pod-template</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="replicasetstatus-v1-apps">ReplicaSetStatus v1 apps</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#replicaset-v1-apps">ReplicaSet [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>availableReplicas</CODE><BR /><I>integer</I></TD><TD>The number of available replicas (ready for at least minReadySeconds) for this replica set.</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#replicasetcondition-v1-apps">ReplicaSetCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Represents the latest available observations of a replica set&#39;s current state.</TD></TR>
+<TR><TD><CODE>fullyLabeledReplicas</CODE><BR /><I>integer</I></TD><TD>The number of pods that have labels matching the labels of the pod template of the replicaset.</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>ObservedGeneration reflects the generation of the most recently observed ReplicaSet.</TD></TR>
+<TR><TD><CODE>readyReplicas</CODE><BR /><I>integer</I></TD><TD>readyReplicas is the number of pods targeted by this ReplicaSet with a Ready Condition.</TD></TR>
+<TR><TD><CODE>replicas</CODE><BR /><I>integer</I></TD><TD>Replicas is the most recently oberved number of replicas. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller/#what-is-a-replicationcontroller</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="replicasetlist-v1-apps">ReplicaSetList v1 apps</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#replicaset-v1-apps">ReplicaSet</a> array</I></TD><TD>List of ReplicaSets. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-replicaset-v1-apps-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-replicaset-v1-apps">Create</H2>
+<P>create a ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/apps/v1/namespaces/{namespace}/replicasets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-replicaset-v1-apps">Patch</H2>
+<P>partially update the specified ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/replicasets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicaSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-replicaset-v1-apps">Replace</H2>
+<P>replace the specified ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/replicasets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicaSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-replicaset-v1-apps">Delete</H2>
+<P>delete a ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apps/v1/namespaces/{namespace}/replicasets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicaSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-replicaset-v1-apps">Delete Collection</H2>
+<P>delete collection of ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apps/v1/namespaces/{namespace}/replicasets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-replicaset-v1-apps-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-replicaset-v1-apps">Read</H2>
+<P>read the specified ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/replicasets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicaSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-replicaset-v1-apps">List</H2>
+<P>list or watch objects of kind ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/replicasets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicasetlist-v1-apps">ReplicaSetList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-replicaset-v1-apps">List All Namespaces</H2>
+<P>list or watch objects of kind ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/replicasets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicasetlist-v1-apps">ReplicaSetList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-replicaset-v1-apps">Watch</H2>
+<P>watch changes to an object of kind ReplicaSet. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/namespaces/{namespace}/replicasets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicaSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-replicaset-v1-apps">Watch List</H2>
+<P>watch individual changes to a list of ReplicaSet. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/namespaces/{namespace}/replicasets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-replicaset-v1-apps">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of ReplicaSet. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/replicasets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-replicaset-v1-apps-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-replicaset-v1-apps">Patch Status</H2>
+<P>partially update status of the specified ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/replicasets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicaSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-replicaset-v1-apps">Read Status</H2>
+<P>read status of the specified ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/replicasets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicaSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-replicaset-v1-apps">Replace Status</H2>
+<P>replace status of the specified ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/replicasets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicaSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#replicaset-v1-apps">ReplicaSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-misc-operations-replicaset-v1-apps-strong-"><STRONG>Misc Operations</STRONG></H2>
+<H2 id="read-scale-replicaset-v1-apps">Read Scale</H2>
+<P>read scale of the specified ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/replicasets/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-scale-replicaset-v1-apps">Replace Scale</H2>
+<P>replace scale of the specified ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/replicasets/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-scale-replicaset-v1-apps">Patch Scale</H2>
+<P>partially update scale of the specified ReplicaSet</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/replicasets/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="replicationcontroller-v1-core">ReplicationController v1 core</H1>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#example-replicationcontroller-v1-core" aria-controls="example-replicationcontroller-v1-core"
+  aria-expanded="false">example</BUTTON>
+<DIV class="collapse" id="example-replicationcontroller-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">ReplicationController Config to run 3 nginx instances.</DIV>
+  <DIV class="panel-body">
+<PRE class="example"><CODE class="lang-yaml">
+apiVersion: v1
+kind: ReplicationController
+metadata:
+  # Unique key of the ReplicationController instance
+  name: replicationcontroller-example
+spec:
+  # 3 Pods should exist at all times.
+  replicas: 3
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      # Run the nginx image
+      - name: nginx
+        image: nginx:1.14
+
+</CODE></PRE></DIV></DIV></DIV>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ReplicationController</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-warning col-md-8"><P><I class="fa fa-warning"></I> <B>Warning:</B></P><P>In many cases it is recommended to create a <a href="#deployment-v1-apps">Deployment</a> instead of a ReplicationController.</P></DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#replicationcontrollerlist-v1-core">ReplicationControllerList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>If the Labels of a ReplicationController are empty, they are defaulted to be the same as the Pod(s) that the replication controller manages. Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#replicationcontrollerspec-v1-core">ReplicationControllerSpec</a></I></TD><TD>Spec defines the specification of the desired behavior of the replication controller. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#replicationcontrollerstatus-v1-core">ReplicationControllerStatus</a></I></TD><TD>Status is the most recently observed status of the replication controller. This data may be out of date by some window of time. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="replicationcontrollerspec-v1-core">ReplicationControllerSpec v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#replicationcontroller-v1-core">ReplicationController [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>minReadySeconds</CODE><BR /><I>integer</I></TD><TD>Minimum number of seconds for which a newly created pod should be ready without any of its container crashing, for it to be considered available. Defaults to 0 (pod will be considered available as soon as it is ready)</TD></TR>
+<TR><TD><CODE>replicas</CODE><BR /><I>integer</I></TD><TD>Replicas is the number of desired replicas. This is a pointer to distinguish between explicit zero and unspecified. Defaults to 1. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#what-is-a-replicationcontroller</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I>object</I></TD><TD>Selector is a label query over pods that should match the Replicas count. If Selector is empty, it is defaulted to the labels present on the Pod template. Label keys and values that must match in order to be controlled by this replication controller, if empty defaulted to labels on Pod template. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors</TD></TR>
+<TR><TD><CODE>template</CODE><BR /><I><a href="#podtemplatespec-v1-core">PodTemplateSpec</a></I></TD><TD>Template is the object that describes the pod that will be created if insufficient replicas are detected. This takes precedence over a TemplateRef. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#pod-template</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="replicationcontrollerstatus-v1-core">ReplicationControllerStatus v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#replicationcontroller-v1-core">ReplicationController [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>availableReplicas</CODE><BR /><I>integer</I></TD><TD>The number of available replicas (ready for at least minReadySeconds) for this replication controller.</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#replicationcontrollercondition-v1-core">ReplicationControllerCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Represents the latest available observations of a replication controller&#39;s current state.</TD></TR>
+<TR><TD><CODE>fullyLabeledReplicas</CODE><BR /><I>integer</I></TD><TD>The number of pods that have labels matching the labels of the pod template of the replication controller.</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>ObservedGeneration reflects the generation of the most recently observed replication controller.</TD></TR>
+<TR><TD><CODE>readyReplicas</CODE><BR /><I>integer</I></TD><TD>The number of ready replicas for this replication controller.</TD></TR>
+<TR><TD><CODE>replicas</CODE><BR /><I>integer</I></TD><TD>Replicas is the most recently oberved number of replicas. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#what-is-a-replicationcontroller</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="replicationcontrollerlist-v1-core">ReplicationControllerList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#replicationcontroller-v1-core">ReplicationController</a> array</I></TD><TD>List of replication controllers. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-replicationcontroller-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-replicationcontroller-v1-core">Create</H2>
+<P>create a ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/replicationcontrollers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-replicationcontroller-v1-core">Patch</H2>
+<P>partially update the specified ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/replicationcontrollers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicationController</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-replicationcontroller-v1-core">Replace</H2>
+<P>replace the specified ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/replicationcontrollers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicationController</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-replicationcontroller-v1-core">Delete</H2>
+<P>delete a ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/replicationcontrollers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicationController</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-replicationcontroller-v1-core">Delete Collection</H2>
+<P>delete collection of ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/replicationcontrollers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-replicationcontroller-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-replicationcontroller-v1-core">Read</H2>
+<P>read the specified ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/replicationcontrollers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicationController</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-replicationcontroller-v1-core">List</H2>
+<P>list or watch objects of kind ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/replicationcontrollers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicationcontrollerlist-v1-core">ReplicationControllerList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-replicationcontroller-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/replicationcontrollers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicationcontrollerlist-v1-core">ReplicationControllerList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-replicationcontroller-v1-core">Watch</H2>
+<P>watch changes to an object of kind ReplicationController. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/replicationcontrollers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicationController</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-replicationcontroller-v1-core">Watch List</H2>
+<P>watch individual changes to a list of ReplicationController. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/replicationcontrollers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-replicationcontroller-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of ReplicationController. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/replicationcontrollers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-replicationcontroller-v1-core-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-replicationcontroller-v1-core">Patch Status</H2>
+<P>partially update status of the specified ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/replicationcontrollers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicationController</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-replicationcontroller-v1-core">Read Status</H2>
+<P>read status of the specified ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/replicationcontrollers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicationController</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-replicationcontroller-v1-core">Replace Status</H2>
+<P>replace status of the specified ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/replicationcontrollers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ReplicationController</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#replicationcontroller-v1-core">ReplicationController</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-misc-operations-replicationcontroller-v1-core-strong-"><STRONG>Misc Operations</STRONG></H2>
+<H2 id="read-scale-replicationcontroller-v1-core">Read Scale</H2>
+<P>read scale of the specified ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/replicationcontrollers/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-scale-replicationcontroller-v1-core">Replace Scale</H2>
+<P>replace scale of the specified ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/replicationcontrollers/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-scale-replicationcontroller-v1-core">Patch Scale</H2>
+<P>partially update scale of the specified ReplicationController</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/replicationcontrollers/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="statefulset-v1-apps">StatefulSet v1 apps</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>StatefulSet</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#statefulsetlist-v1-apps">StatefulSetList [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#statefulsetspec-v1-apps">StatefulSetSpec</a></I></TD><TD>Spec defines the desired identities of pods in this set.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#statefulsetstatus-v1-apps">StatefulSetStatus</a></I></TD><TD>Status is the current status of Pods in this StatefulSet. This data may be out of date by some window of time.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="statefulsetspec-v1-apps">StatefulSetSpec v1 apps</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#statefulset-v1-apps">StatefulSet [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>minReadySeconds</CODE><BR /><I>integer</I></TD><TD>Minimum number of seconds for which a newly created pod should be ready without any of its container crashing for it to be considered available. Defaults to 0 (pod will be considered available as soon as it is ready) This is an alpha field and requires enabling StatefulSetMinReadySeconds feature gate.</TD></TR>
+<TR><TD><CODE>persistentVolumeClaimRetentionPolicy</CODE><BR /><I><a href="#statefulsetpersistentvolumeclaimretentionpolicy-v1-apps">StatefulSetPersistentVolumeClaimRetentionPolicy</a></I></TD><TD>persistentVolumeClaimRetentionPolicy describes the lifecycle of persistent volume claims created from volumeClaimTemplates. By default, all persistent volume claims are created as needed and retained until manually deleted. This policy allows the lifecycle to be altered, for example by deleting persistent volume claims when their stateful set is deleted, or when their pod is scaled down. This requires the StatefulSetAutoDeletePVC feature gate to be enabled, which is alpha.  +optional</TD></TR>
+<TR><TD><CODE>podManagementPolicy</CODE><BR /><I>string</I></TD><TD>podManagementPolicy controls how pods are created during initial scale up, when replacing pods on nodes, or when scaling down. The default policy is `OrderedReady`, where pods are created in increasing order (pod-0, then pod-1, etc) and the controller will wait until each pod is ready before continuing. When scaling down, the pods are removed in the opposite order. The alternative policy is `Parallel` which will create pods in parallel to match the desired scale without waiting, and on scale down will delete all pods at once.  </TD></TR>
+<TR><TD><CODE>replicas</CODE><BR /><I>integer</I></TD><TD>replicas is the desired number of replicas of the given Template. These are replicas in the sense that they are instantiations of the same Template, but individual replicas also have a consistent identity. If unspecified, defaults to 1.</TD></TR>
+<TR><TD><CODE>revisionHistoryLimit</CODE><BR /><I>integer</I></TD><TD>revisionHistoryLimit is the maximum number of revisions that will be maintained in the StatefulSet&#39;s revision history. The revision history consists of all revisions not represented by a currently applied StatefulSetSpec version. The default value is 10.</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>selector is a label query over pods that should match the replica count. It must match the pod template&#39;s labels. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors</TD></TR>
+<TR><TD><CODE>serviceName</CODE><BR /><I>string</I></TD><TD>serviceName is the name of the service that governs this StatefulSet. This service must exist before the StatefulSet, and is responsible for the network identity of the set. Pods get DNS/hostnames that follow the pattern: pod-specific-string.serviceName.default.svc.cluster.local where &#34;pod-specific-string&#34; is managed by the StatefulSet controller.</TD></TR>
+<TR><TD><CODE>template</CODE><BR /><I><a href="#podtemplatespec-v1-core">PodTemplateSpec</a></I></TD><TD>template is the object that describes the pod that will be created if insufficient replicas are detected. Each pod stamped out by the StatefulSet will fulfill this Template, but have a unique identity from the rest of the StatefulSet.</TD></TR>
+<TR><TD><CODE>updateStrategy</CODE><BR /><I><a href="#statefulsetupdatestrategy-v1-apps">StatefulSetUpdateStrategy</a></I></TD><TD>updateStrategy indicates the StatefulSetUpdateStrategy that will be employed to update Pods in the StatefulSet when a revision is made to Template.</TD></TR>
+<TR><TD><CODE>volumeClaimTemplates</CODE><BR /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a> array</I></TD><TD>volumeClaimTemplates is a list of claims that pods are allowed to reference. The StatefulSet controller is responsible for mapping network identities to claims in a way that maintains the identity of a pod. Every claim in this list must have at least one matching (by name) volumeMount in one container in the template. A claim in this list takes precedence over any volumes in the template, with the same name.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="statefulsetstatus-v1-apps">StatefulSetStatus v1 apps</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#statefulset-v1-apps">StatefulSet [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>availableReplicas</CODE><BR /><I>integer</I></TD><TD>Total number of available pods (ready for at least minReadySeconds) targeted by this statefulset. This is a beta field and enabled/disabled by StatefulSetMinReadySeconds feature gate.</TD></TR>
+<TR><TD><CODE>collisionCount</CODE><BR /><I>integer</I></TD><TD>collisionCount is the count of hash collisions for the StatefulSet. The StatefulSet controller uses this field as a collision avoidance mechanism when it needs to create the name for the newest ControllerRevision.</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#statefulsetcondition-v1-apps">StatefulSetCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Represents the latest available observations of a statefulset&#39;s current state.</TD></TR>
+<TR><TD><CODE>currentReplicas</CODE><BR /><I>integer</I></TD><TD>currentReplicas is the number of Pods created by the StatefulSet controller from the StatefulSet version indicated by currentRevision.</TD></TR>
+<TR><TD><CODE>currentRevision</CODE><BR /><I>string</I></TD><TD>currentRevision, if not empty, indicates the version of the StatefulSet used to generate Pods in the sequence [0,currentReplicas).</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>observedGeneration is the most recent generation observed for this StatefulSet. It corresponds to the StatefulSet&#39;s generation, which is updated on mutation by the API Server.</TD></TR>
+<TR><TD><CODE>readyReplicas</CODE><BR /><I>integer</I></TD><TD>readyReplicas is the number of pods created for this StatefulSet with a Ready Condition.</TD></TR>
+<TR><TD><CODE>replicas</CODE><BR /><I>integer</I></TD><TD>replicas is the number of Pods created by the StatefulSet controller.</TD></TR>
+<TR><TD><CODE>updateRevision</CODE><BR /><I>string</I></TD><TD>updateRevision, if not empty, indicates the version of the StatefulSet used to generate Pods in the sequence [replicas-updatedReplicas,replicas)</TD></TR>
+<TR><TD><CODE>updatedReplicas</CODE><BR /><I>integer</I></TD><TD>updatedReplicas is the number of Pods created by the StatefulSet controller from the StatefulSet version indicated by updateRevision.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="statefulsetlist-v1-apps">StatefulSetList v1 apps</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#statefulset-v1-apps">StatefulSet</a> array</I></TD><TD>Items is the list of stateful sets.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-statefulset-v1-apps-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-statefulset-v1-apps">Create</H2>
+<P>create a StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/apps/v1/namespaces/{namespace}/statefulsets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-statefulset-v1-apps">Patch</H2>
+<P>partially update the specified StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StatefulSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-statefulset-v1-apps">Replace</H2>
+<P>replace the specified StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StatefulSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-statefulset-v1-apps">Delete</H2>
+<P>delete a StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StatefulSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-statefulset-v1-apps">Delete Collection</H2>
+<P>delete collection of StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apps/v1/namespaces/{namespace}/statefulsets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-statefulset-v1-apps-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-statefulset-v1-apps">Read</H2>
+<P>read the specified StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StatefulSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-statefulset-v1-apps">List</H2>
+<P>list or watch objects of kind StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/statefulsets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#statefulsetlist-v1-apps">StatefulSetList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-statefulset-v1-apps">List All Namespaces</H2>
+<P>list or watch objects of kind StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/statefulsets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#statefulsetlist-v1-apps">StatefulSetList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-statefulset-v1-apps">Watch</H2>
+<P>watch changes to an object of kind StatefulSet. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/namespaces/{namespace}/statefulsets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StatefulSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-statefulset-v1-apps">Watch List</H2>
+<P>watch individual changes to a list of StatefulSet. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/namespaces/{namespace}/statefulsets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-statefulset-v1-apps">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of StatefulSet. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/statefulsets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-statefulset-v1-apps-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-statefulset-v1-apps">Patch Status</H2>
+<P>partially update status of the specified StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StatefulSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-statefulset-v1-apps">Read Status</H2>
+<P>read status of the specified StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StatefulSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-statefulset-v1-apps">Replace Status</H2>
+<P>replace status of the specified StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StatefulSet</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#statefulset-v1-apps">StatefulSet</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-misc-operations-statefulset-v1-apps-strong-"><STRONG>Misc Operations</STRONG></H2>
+<H2 id="read-scale-statefulset-v1-apps">Read Scale</H2>
+<P>read scale of the specified StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-scale-statefulset-v1-apps">Replace Scale</H2>
+<P>replace scale of the specified StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-scale-statefulset-v1-apps">Patch Scale</H2>
+<P>partially update scale of the specified StatefulSet</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/statefulsets/{name}/scale</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Scale</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#scale-v1-autoscaling">Scale</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="-strong-service-apis-strong-"><STRONG>SERVICE APIs</STRONG></H1>
+
+<P>Service API resources are responsible for stitching your workloads together into an accessible Loadbalanced Service.  By default,
+<A href="#-strong-workloads-strong">Workloads</A> are only accessible within the cluster, and they must be exposed externally using a either
+a *LoadBalancer* or *NodePort* <A href="#service-v1-core">Service</A>.  For development, internally accessible
+Workloads can be accessed via proxy through the api master using the <code>kubectl proxy</code> command.</P>
+
+<P>Common resource types:</P>
+
+<UL>
+	<LI><A href="#service-v1-core">Services</A> for providing a single ip endpoint loadbalanced across multiple Workload replicas.</LI>
+	<LI><A href="#ingress-v1beta1-extensions">Ingress</A> for providing a https(s) endpoint http(s) routed to one or more *Services*.</LI>
+</UL>
+<HR />
+<H1 id="endpoints-v1-core">Endpoints v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Endpoints</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpointslist-v1-core">EndpointsList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>subsets</CODE><BR /><I><a href="#endpointsubset-v1-core">EndpointSubset</a> array</I></TD><TD>The set of all endpoints is the union of all subsets. Addresses are placed into subsets according to the IPs they share. A single address with multiple ports, some of which are ready and some of which are not (because they come from different containers) will result in the address being displayed in different subsets for the different ports. No address will appear in both Addresses and NotReadyAddresses in the same subset. Sets of addresses and ports that comprise a service.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="endpointslist-v1-core">EndpointsList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#endpoints-v1-core">Endpoints</a> array</I></TD><TD>List of endpoints.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-endpoints-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-endpoints-v1-core">Create</H2>
+<P>create Endpoints</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/endpoints</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#endpoints-v1-core">Endpoints</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpoints-v1-core">Endpoints</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#endpoints-v1-core">Endpoints</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#endpoints-v1-core">Endpoints</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-endpoints-v1-core">Patch</H2>
+<P>partially update the specified Endpoints</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/endpoints/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Endpoints</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpoints-v1-core">Endpoints</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#endpoints-v1-core">Endpoints</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-endpoints-v1-core">Replace</H2>
+<P>replace the specified Endpoints</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/endpoints/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Endpoints</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#endpoints-v1-core">Endpoints</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpoints-v1-core">Endpoints</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#endpoints-v1-core">Endpoints</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-endpoints-v1-core">Delete</H2>
+<P>delete Endpoints</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/endpoints/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Endpoints</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-endpoints-v1-core">Delete Collection</H2>
+<P>delete collection of Endpoints</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/endpoints</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-endpoints-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-endpoints-v1-core">Read</H2>
+<P>read the specified Endpoints</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/endpoints/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Endpoints</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpoints-v1-core">Endpoints</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-endpoints-v1-core">List</H2>
+<P>list or watch objects of kind Endpoints</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/endpoints</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslist-v1-core">EndpointsList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-endpoints-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind Endpoints</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/endpoints</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslist-v1-core">EndpointsList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-endpoints-v1-core">Watch</H2>
+<P>watch changes to an object of kind Endpoints. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/endpoints/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Endpoints</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-endpoints-v1-core">Watch List</H2>
+<P>watch individual changes to a list of Endpoints. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/endpoints</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-endpoints-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Endpoints. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/endpoints</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="endpointslice-v1-discovery-k8s-io">EndpointSlice v1 discovery.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EndpointSlice</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#endpointslice-v1beta1-discovery-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpointslicelist-v1-discovery-k8s-io">EndpointSliceList [discovery/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>addressType</CODE><BR /><I>string</I></TD><TD>addressType specifies the type of address carried by this EndpointSlice. All addresses in this slice must be the same type. This field is immutable after creation. The following address types are currently supported: * IPv4: Represents an IPv4 Address. * IPv6: Represents an IPv6 Address. * FQDN: Represents a Fully Qualified Domain Name.  </TD></TR>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>endpoints</CODE><BR /><I><a href="#endpoint-v1-discovery-k8s-io">Endpoint</a> array</I></TD><TD>endpoints is a list of unique endpoints in this slice. Each slice may include a maximum of 1000 endpoints.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata.</TD></TR>
+<TR><TD><CODE>ports</CODE><BR /><I><a href="#endpointport-v1-discovery-k8s-io">EndpointPort</a> array</I></TD><TD>ports specifies the list of network ports exposed by each endpoint in this slice. Each port must have a unique name. When ports is empty, it indicates that there are no defined ports. When a port is defined with a nil port value, it indicates &#34;all ports&#34;. Each slice may include a maximum of 100 ports.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="endpointslicelist-v1-discovery-k8s-io">EndpointSliceList v1 discovery</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice</a> array</I></TD><TD>List of endpoint slices</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-endpointslice-v1-discovery-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-endpointslice-v1-discovery-k8s-io">Create</H2>
+<P>create an EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-endpointslice-v1-discovery-k8s-io">Patch</H2>
+<P>partially update the specified EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the EndpointSlice</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-endpointslice-v1-discovery-k8s-io">Replace</H2>
+<P>replace the specified EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the EndpointSlice</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-endpointslice-v1-discovery-k8s-io">Delete</H2>
+<P>delete an EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the EndpointSlice</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-endpointslice-v1-discovery-k8s-io">Delete Collection</H2>
+<P>delete collection of EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-endpointslice-v1-discovery-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-endpointslice-v1-discovery-k8s-io">Read</H2>
+<P>read the specified EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the EndpointSlice</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-endpointslice-v1-discovery-k8s-io">List</H2>
+<P>list or watch objects of kind EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslicelist-v1-discovery-k8s-io">EndpointSliceList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-endpointslice-v1-discovery-k8s-io">List All Namespaces</H2>
+<P>list or watch objects of kind EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1/endpointslices</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslicelist-v1-discovery-k8s-io">EndpointSliceList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-endpointslice-v1-discovery-k8s-io">Watch</H2>
+<P>watch changes to an object of kind EndpointSlice. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1/watch/namespaces/{namespace}/endpointslices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the EndpointSlice</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-endpointslice-v1-discovery-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of EndpointSlice. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1/watch/namespaces/{namespace}/endpointslices</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-endpointslice-v1-discovery-k8s-io">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of EndpointSlice. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1/watch/endpointslices</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="ingress-v1-networking-k8s-io">Ingress v1 networking.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Ingress</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingresslist-v1-networking-k8s-io">IngressList [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#ingressspec-v1-networking-k8s-io">IngressSpec</a></I></TD><TD>Spec is the desired state of the Ingress. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#ingressstatus-v1-networking-k8s-io">IngressStatus</a></I></TD><TD>Status is the current state of the Ingress. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="ingressspec-v1-networking-k8s-io">IngressSpec v1 networking</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingress-v1-networking-k8s-io">Ingress [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>defaultBackend</CODE><BR /><I><a href="#ingressbackend-v1-networking-k8s-io">IngressBackend</a></I></TD><TD>DefaultBackend is the backend that should handle requests that don&#39;t match any rule. If Rules are not specified, DefaultBackend must be specified. If DefaultBackend is not set, the handling of requests that do not match any of the rules will be up to the Ingress controller.</TD></TR>
+<TR><TD><CODE>ingressClassName</CODE><BR /><I>string</I></TD><TD>IngressClassName is the name of the IngressClass cluster resource. The associated IngressClass defines which controller will implement the resource. This replaces the deprecated `kubernetes.io/ingress.class` annotation. For backwards compatibility, when that annotation is set, it must be given precedence over this field. The controller may emit a warning if the field and annotation have different values. Implementations of this API should ignore Ingresses without a class specified. An IngressClass resource may be marked as default, which can be used to set a default value for this field. For more information, refer to the IngressClass documentation.</TD></TR>
+<TR><TD><CODE>rules</CODE><BR /><I><a href="#ingressrule-v1-networking-k8s-io">IngressRule</a> array</I></TD><TD>A list of host rules used to configure the Ingress. If unspecified, or no rule matches, all traffic is sent to the default backend.</TD></TR>
+<TR><TD><CODE>tls</CODE><BR /><I><a href="#ingresstls-v1-networking-k8s-io">IngressTLS</a> array</I></TD><TD>TLS configuration. Currently the Ingress only supports a single TLS port, 443. If multiple members of this list specify different hosts, they will be multiplexed on the same port according to the hostname specified through the SNI TLS extension, if the ingress controller fulfilling the ingress supports SNI.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="ingressstatus-v1-networking-k8s-io">IngressStatus v1 networking</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingress-v1-networking-k8s-io">Ingress [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>loadBalancer</CODE><BR /><I><a href="#loadbalancerstatus-v1-core">LoadBalancerStatus</a></I></TD><TD>LoadBalancer contains the current status of the load-balancer.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="ingresslist-v1-networking-k8s-io">IngressList v1 networking</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a> array</I></TD><TD>Items is the list of Ingress.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-ingress-v1-networking-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-ingress-v1-networking-k8s-io">Create</H2>
+<P>create an Ingress</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-ingress-v1-networking-k8s-io">Patch</H2>
+<P>partially update the specified Ingress</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Ingress</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-ingress-v1-networking-k8s-io">Replace</H2>
+<P>replace the specified Ingress</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Ingress</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-ingress-v1-networking-k8s-io">Delete</H2>
+<P>delete an Ingress</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Ingress</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-ingress-v1-networking-k8s-io">Delete Collection</H2>
+<P>delete collection of Ingress</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-ingress-v1-networking-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-ingress-v1-networking-k8s-io">Read</H2>
+<P>read the specified Ingress</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Ingress</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-ingress-v1-networking-k8s-io">List</H2>
+<P>list or watch objects of kind Ingress</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingresslist-v1-networking-k8s-io">IngressList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-ingress-v1-networking-k8s-io">List All Namespaces</H2>
+<P>list or watch objects of kind Ingress</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/ingresses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingresslist-v1-networking-k8s-io">IngressList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-ingress-v1-networking-k8s-io">Watch</H2>
+<P>watch changes to an object of kind Ingress. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/watch/namespaces/{namespace}/ingresses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Ingress</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-ingress-v1-networking-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of Ingress. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/watch/namespaces/{namespace}/ingresses</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-ingress-v1-networking-k8s-io">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Ingress. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/watch/ingresses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-ingress-v1-networking-k8s-io-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-ingress-v1-networking-k8s-io">Patch Status</H2>
+<P>partially update status of the specified Ingress</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Ingress</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-ingress-v1-networking-k8s-io">Read Status</H2>
+<P>read status of the specified Ingress</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Ingress</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-ingress-v1-networking-k8s-io">Replace Status</H2>
+<P>replace status of the specified Ingress</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Ingress</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#ingress-v1-networking-k8s-io">Ingress</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="ingressclass-v1-networking-k8s-io">IngressClass v1 networking.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>IngressClass</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingressclasslist-v1-networking-k8s-io">IngressClassList [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#ingressclassspec-v1-networking-k8s-io">IngressClassSpec</a></I></TD><TD>Spec is the desired state of the IngressClass. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="ingressclassspec-v1-networking-k8s-io">IngressClassSpec v1 networking</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingressclass-v1-networking-k8s-io">IngressClass [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>controller</CODE><BR /><I>string</I></TD><TD>Controller refers to the name of the controller that should handle this class. This allows for different &#34;flavors&#34; that are controlled by the same controller. For example, you may have different Parameters for the same implementing controller. This should be specified as a domain-prefixed path no more than 250 characters in length, e.g. &#34;acme.io/ingress-controller&#34;. This field is immutable.</TD></TR>
+<TR><TD><CODE>parameters</CODE><BR /><I><a href="#ingressclassparametersreference-v1-networking-k8s-io">IngressClassParametersReference</a></I></TD><TD>Parameters is a link to a custom resource containing additional configuration for the controller. This is optional if the controller does not require extra parameters.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="ingressclasslist-v1-networking-k8s-io">IngressClassList v1 networking</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#ingressclass-v1-networking-k8s-io">IngressClass</a> array</I></TD><TD>Items is the list of IngressClasses.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-ingressclass-v1-networking-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-ingressclass-v1-networking-k8s-io">Create</H2>
+<P>create an IngressClass</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/networking.k8s.io/v1/ingressclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#ingressclass-v1-networking-k8s-io">IngressClass</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingressclass-v1-networking-k8s-io">IngressClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#ingressclass-v1-networking-k8s-io">IngressClass</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#ingressclass-v1-networking-k8s-io">IngressClass</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-ingressclass-v1-networking-k8s-io">Patch</H2>
+<P>partially update the specified IngressClass</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/networking.k8s.io/v1/ingressclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the IngressClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingressclass-v1-networking-k8s-io">IngressClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#ingressclass-v1-networking-k8s-io">IngressClass</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-ingressclass-v1-networking-k8s-io">Replace</H2>
+<P>replace the specified IngressClass</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/networking.k8s.io/v1/ingressclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the IngressClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#ingressclass-v1-networking-k8s-io">IngressClass</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingressclass-v1-networking-k8s-io">IngressClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#ingressclass-v1-networking-k8s-io">IngressClass</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-ingressclass-v1-networking-k8s-io">Delete</H2>
+<P>delete an IngressClass</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/networking.k8s.io/v1/ingressclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the IngressClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-ingressclass-v1-networking-k8s-io">Delete Collection</H2>
+<P>delete collection of IngressClass</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/networking.k8s.io/v1/ingressclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-ingressclass-v1-networking-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-ingressclass-v1-networking-k8s-io">Read</H2>
+<P>read the specified IngressClass</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/ingressclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the IngressClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingressclass-v1-networking-k8s-io">IngressClass</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-ingressclass-v1-networking-k8s-io">List</H2>
+<P>list or watch objects of kind IngressClass</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/ingressclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#ingressclasslist-v1-networking-k8s-io">IngressClassList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-ingressclass-v1-networking-k8s-io">Watch</H2>
+<P>watch changes to an object of kind IngressClass. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/watch/ingressclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the IngressClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-ingressclass-v1-networking-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of IngressClass. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/watch/ingressclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="service-v1-core">Service v1 core</H1>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#example-service-v1-core" aria-controls="example-service-v1-core"
+  aria-expanded="false">example</BUTTON>
+<DIV class="collapse" id="example-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Service Config to load balance traffic across all Pods with the app=nginx label.  Receives on and sends to port 80.  Exposes an externally accessible endpoint.</DIV>
+  <DIV class="panel-body">
+<PRE class="example"><CODE class="lang-yaml">
+kind: Service
+apiVersion: v1
+metadata:
+  # Unique key of the Service instance
+  name: service-example
+spec:
+  ports:
+    # Accept traffic sent to port 80
+    - name: http
+      port: 80
+      targetPort: 80
+  selector:
+    # Loadbalance traffic across Pods matching
+    # this label selector
+    app: nginx
+  # Create an HA proxy in the cloud provider
+  # with an External IP address - *Only supported
+  # by some cloud providers*
+  type: LoadBalancer
+
+</CODE></PRE></DIV></DIV></DIV>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Service</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#servicelist-v1-core">ServiceList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#servicespec-v1-core">ServiceSpec</a></I></TD><TD>Spec defines the behavior of a service. https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#servicestatus-v1-core">ServiceStatus</a></I></TD><TD>Most recently observed status of the service. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="servicespec-v1-core">ServiceSpec v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#service-v1-core">Service [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allocateLoadBalancerNodePorts</CODE><BR /><I>boolean</I></TD><TD>allocateLoadBalancerNodePorts defines if NodePorts will be automatically allocated for services with type LoadBalancer.  Default is &#34;true&#34;. It may be set to &#34;false&#34; if the cluster load-balancer does not rely on NodePorts.  If the caller requests specific NodePorts (by specifying a value), those requests will be respected, regardless of this field. This field may only be set for services with type LoadBalancer and will be cleared if the type is changed to any other type.</TD></TR>
+<TR><TD><CODE>clusterIP</CODE><BR /><I>string</I></TD><TD>clusterIP is the IP address of the service and is usually assigned randomly. If an address is specified manually, is in-range (as per system configuration), and is not in use, it will be allocated to the service; otherwise creation of the service will fail. This field may not be changed through updates unless the type field is also being changed to ExternalName (which requires this field to be blank) or the type field is being changed from ExternalName (in which case this field may optionally be specified, as describe above).  Valid values are &#34;None&#34;, empty string (&#34;&#34;), or a valid IP address. Setting this to &#34;None&#34; makes a &#34;headless service&#34; (no virtual IP), which is useful when direct endpoint connections are preferred and proxying is not required.  Only applies to types ClusterIP, NodePort, and LoadBalancer. If this field is specified when creating a Service of type ExternalName, creation will fail. This field will be wiped when updating a Service to type ExternalName. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies</TD></TR>
+<TR><TD><CODE>clusterIPs</CODE><BR /><I>string array</I></TD><TD>ClusterIPs is a list of IP addresses assigned to this service, and are usually assigned randomly.  If an address is specified manually, is in-range (as per system configuration), and is not in use, it will be allocated to the service; otherwise creation of the service will fail. This field may not be changed through updates unless the type field is also being changed to ExternalName (which requires this field to be empty) or the type field is being changed from ExternalName (in which case this field may optionally be specified, as describe above).  Valid values are &#34;None&#34;, empty string (&#34;&#34;), or a valid IP address.  Setting this to &#34;None&#34; makes a &#34;headless service&#34; (no virtual IP), which is useful when direct endpoint connections are preferred and proxying is not required.  Only applies to types ClusterIP, NodePort, and LoadBalancer. If this field is specified when creating a Service of type ExternalName, creation will fail. This field will be wiped when updating a Service to type ExternalName.  If this field is not specified, it will be initialized from the clusterIP field.  If this field is specified, clients must ensure that clusterIPs[0] and clusterIP have the same value.  This field may hold a maximum of two entries (dual-stack IPs, in either order). These IPs must correspond to the values of the ipFamilies field. Both clusterIPs and ipFamilies are governed by the ipFamilyPolicy field. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies</TD></TR>
+<TR><TD><CODE>externalIPs</CODE><BR /><I>string array</I></TD><TD>externalIPs is a list of IP addresses for which nodes in the cluster will also accept traffic for this service.  These IPs are not managed by Kubernetes.  The user is responsible for ensuring that traffic arrives at a node with this IP.  A common example is external load-balancers that are not part of the Kubernetes system.</TD></TR>
+<TR><TD><CODE>externalName</CODE><BR /><I>string</I></TD><TD>externalName is the external reference that discovery mechanisms will return as an alias for this service (e.g. a DNS CNAME record). No proxying will be involved.  Must be a lowercase RFC-1123 hostname (https://tools.ietf.org/html/rfc1123) and requires `type` to be &#34;ExternalName&#34;.</TD></TR>
+<TR><TD><CODE>externalTrafficPolicy</CODE><BR /><I>string</I></TD><TD>externalTrafficPolicy denotes if this Service desires to route external traffic to node-local or cluster-wide endpoints. &#34;Local&#34; preserves the client source IP and avoids a second hop for LoadBalancer and Nodeport type services, but risks potentially imbalanced traffic spreading. &#34;Cluster&#34; obscures the client source IP and may cause a second hop to another node, but should have good overall load-spreading.  </TD></TR>
+<TR><TD><CODE>healthCheckNodePort</CODE><BR /><I>integer</I></TD><TD>healthCheckNodePort specifies the healthcheck nodePort for the service. This only applies when type is set to LoadBalancer and externalTrafficPolicy is set to Local. If a value is specified, is in-range, and is not in use, it will be used.  If not specified, a value will be automatically allocated.  External systems (e.g. load-balancers) can use this port to determine if a given node holds endpoints for this service or not.  If this field is specified when creating a Service which does not need it, creation will fail. This field will be wiped when updating a Service to no longer need it (e.g. changing type).</TD></TR>
+<TR><TD><CODE>internalTrafficPolicy</CODE><BR /><I>string</I></TD><TD>InternalTrafficPolicy specifies if the cluster internal traffic should be routed to all endpoints or node-local endpoints only. &#34;Cluster&#34; routes internal traffic to a Service to all endpoints. &#34;Local&#34; routes traffic to node-local endpoints only, traffic is dropped if no node-local endpoints are ready. The default value is &#34;Cluster&#34;.</TD></TR>
+<TR><TD><CODE>ipFamilies</CODE><BR /><I>string array</I></TD><TD>IPFamilies is a list of IP families (e.g. IPv4, IPv6) assigned to this service. This field is usually assigned automatically based on cluster configuration and the ipFamilyPolicy field. If this field is specified manually, the requested family is available in the cluster, and ipFamilyPolicy allows it, it will be used; otherwise creation of the service will fail. This field is conditionally mutable: it allows for adding or removing a secondary IP family, but it does not allow changing the primary IP family of the Service. Valid values are &#34;IPv4&#34; and &#34;IPv6&#34;.  This field only applies to Services of types ClusterIP, NodePort, and LoadBalancer, and does apply to &#34;headless&#34; services. This field will be wiped when updating a Service to type ExternalName.  This field may hold a maximum of two entries (dual-stack families, in either order).  These families must correspond to the values of the clusterIPs field, if specified. Both clusterIPs and ipFamilies are governed by the ipFamilyPolicy field.</TD></TR>
+<TR><TD><CODE>ipFamilyPolicy</CODE><BR /><I>string</I></TD><TD>IPFamilyPolicy represents the dual-stack-ness requested or required by this Service. If there is no value provided, then this field will be set to SingleStack. Services can be &#34;SingleStack&#34; (a single IP family), &#34;PreferDualStack&#34; (two IP families on dual-stack configured clusters or a single IP family on single-stack clusters), or &#34;RequireDualStack&#34; (two IP families on dual-stack configured clusters, otherwise fail). The ipFamilies and clusterIPs fields depend on the value of this field. This field will be wiped when updating a service to type ExternalName.</TD></TR>
+<TR><TD><CODE>loadBalancerClass</CODE><BR /><I>string</I></TD><TD>loadBalancerClass is the class of the load balancer implementation this Service belongs to. If specified, the value of this field must be a label-style identifier, with an optional prefix, e.g. &#34;internal-vip&#34; or &#34;example.com/internal-vip&#34;. Unprefixed names are reserved for end-users. This field can only be set when the Service type is &#39;LoadBalancer&#39;. If not set, the default load balancer implementation is used, today this is typically done through the cloud provider integration, but should apply for any default implementation. If set, it is assumed that a load balancer implementation is watching for Services with a matching class. Any default load balancer implementation (e.g. cloud providers) should ignore Services that set this field. This field can only be set when creating or updating a Service to type &#39;LoadBalancer&#39;. Once set, it can not be changed. This field will be wiped when a service is updated to a non &#39;LoadBalancer&#39; type.</TD></TR>
+<TR><TD><CODE>loadBalancerIP</CODE><BR /><I>string</I></TD><TD>Only applies to Service Type: LoadBalancer. This feature depends on whether the underlying cloud-provider supports specifying the loadBalancerIP when a load balancer is created. This field will be ignored if the cloud-provider does not support the feature. Deprecated: This field was under-specified and its meaning varies across implementations, and it cannot support dual-stack. As of Kubernetes v1.24, users are encouraged to use implementation-specific annotations when available. This field may be removed in a future API version.</TD></TR>
+<TR><TD><CODE>loadBalancerSourceRanges</CODE><BR /><I>string array</I></TD><TD>If specified and supported by the platform, this will restrict traffic through the cloud-provider load-balancer will be restricted to the specified client IPs. This field will be ignored if the cloud-provider does not support the feature.&#34; More info: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/</TD></TR>
+<TR><TD><CODE>ports</CODE><BR /><I><a href="#serviceport-v1-core">ServicePort</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>port</I></TD><TD>The list of ports that are exposed by this service. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies</TD></TR>
+<TR><TD><CODE>publishNotReadyAddresses</CODE><BR /><I>boolean</I></TD><TD>publishNotReadyAddresses indicates that any agent which deals with endpoints for this Service should disregard any indications of ready/not-ready. The primary use case for setting this field is for a StatefulSet&#39;s Headless Service to propagate SRV DNS records for its Pods for the purpose of peer discovery. The Kubernetes controllers that generate Endpoints and EndpointSlice resources for Services interpret this to mean that all endpoints are considered &#34;ready&#34; even if the Pods themselves are not. Agents which consume only Kubernetes generated endpoints through the Endpoints or EndpointSlice resources can safely assume this behavior.</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I>object</I></TD><TD>Route service traffic to pods with label keys and values matching this selector. If empty or not present, the service is assumed to have an external process managing its endpoints, which Kubernetes will not modify. Only applies to types ClusterIP, NodePort, and LoadBalancer. Ignored if type is ExternalName. More info: https://kubernetes.io/docs/concepts/services-networking/service/</TD></TR>
+<TR><TD><CODE>sessionAffinity</CODE><BR /><I>string</I></TD><TD>Supports &#34;ClientIP&#34; and &#34;None&#34;. Used to maintain session affinity. Enable client IP based session affinity. Must be ClientIP or None. Defaults to None. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies  </TD></TR>
+<TR><TD><CODE>sessionAffinityConfig</CODE><BR /><I><a href="#sessionaffinityconfig-v1-core">SessionAffinityConfig</a></I></TD><TD>sessionAffinityConfig contains the configurations of session affinity.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type determines how the Service is exposed. Defaults to ClusterIP. Valid options are ExternalName, ClusterIP, NodePort, and LoadBalancer. &#34;ClusterIP&#34; allocates a cluster-internal IP address for load-balancing to endpoints. Endpoints are determined by the selector or if that is not specified, by manual construction of an Endpoints object or EndpointSlice objects. If clusterIP is &#34;None&#34;, no virtual IP is allocated and the endpoints are published as a set of endpoints rather than a virtual IP. &#34;NodePort&#34; builds on ClusterIP and allocates a port on every node which routes to the same endpoints as the clusterIP. &#34;LoadBalancer&#34; builds on NodePort and creates an external load-balancer (if supported in the current cloud) which routes to the same endpoints as the clusterIP. &#34;ExternalName&#34; aliases this service to the specified externalName. Several other fields do not apply to ExternalName services. More info: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types  </TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="servicestatus-v1-core">ServiceStatus v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#service-v1-core">Service [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#condition-v1-meta">Condition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Current service state</TD></TR>
+<TR><TD><CODE>loadBalancer</CODE><BR /><I><a href="#loadbalancerstatus-v1-core">LoadBalancerStatus</a></I></TD><TD>LoadBalancer contains the current status of the load-balancer, if one is present.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="servicelist-v1-core">ServiceList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#service-v1-core">Service</a> array</I></TD><TD>List of services</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-service-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-service-v1-core">Create</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-create-service-v1-core" aria-controls="req-kubectl-create-service-v1-core"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-create-service-v1-core" aria-controls="req-curl-create-service-v1-core"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-create-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ echo 'kind: Service
+apiVersion: v1
+metadata:
+  name: service-example
+spec:
+  ports:
+    - name: http
+      port: 80
+      targetPort: 80
+  selector:
+      app: nginx
+  type: LoadBalancer
+' | kubectl create -f -
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-create-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X POST -H 'Content-Type: application/yaml' --data '
+kind: Service
+apiVersion: v1
+metadata:
+  name: service-example
+spec:
+  ports:
+    - name: http
+      port: 80
+      targetPort: 80
+  selector:
+      app: nginx
+  type: LoadBalancer
+' http://127.0.0.1:8001/api/v1/namespaces/default/services
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-create-service-v1-core" aria-controls="res-kubectl-create-service-v1-core"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-create-service-v1-core" aria-controls="res-curl-create-service-v1-core"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-create-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+service "service-example" created
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-create-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Service",
+  "apiVersion": "v1",
+  "metadata": {
+    "name": "service-example",
+    "namespace": "default",
+    "selfLink": "/api/v1/namespaces/default/services/service-example",
+    "uid": "93e5c731-9d30-11e6-9c54-42010a800148",
+    "resourceVersion": "2205767",
+    "creationTimestamp": "2016-10-28T17:04:24Z"
+  },
+  "spec": {
+    "ports": [
+      {
+        "name": "http",
+        "protocol": "TCP",
+        "port": 80,
+        "targetPort": 80,
+        "nodePort": 32417
+      }
+    ],
+    "selector": {
+      "app": "nginx"
+    },
+    "clusterIP": "10.183.250.161",
+    "type": "LoadBalancer",
+    "sessionAffinity": "None"
+  },
+  "status": {
+    "loadBalancer": {}
+  }
+}
+</CODE></PRE></DIV></DIV></DIV>
+<P>create a Service</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/services</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#service-v1-core">Service</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-service-v1-core">Patch</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-patch-service-v1-core" aria-controls="req-kubectl-patch-service-v1-core"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-patch-service-v1-core" aria-controls="req-curl-patch-service-v1-core"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-patch-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl patch service  -p \
+	'{"spec":{"ports":[{"name":"http","port":80,"targetPort":8080}]}}'
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-patch-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X PATCH -H 'Content-Type: application/strategic-merge-patch+json' --data '
+{"spec":{"ports":[{"name":"http","port":80,"targetPort":8080}]}}' \
+	'http://127.0.0.1:8001/api/v1/namespaces/default/services/'
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-patch-service-v1-core" aria-controls="res-kubectl-patch-service-v1-core"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-patch-service-v1-core" aria-controls="res-curl-patch-service-v1-core"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-patch-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+"" patched
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-patch-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Service",
+  "apiVersion": "v1",
+  "metadata": {
+    "name": "deployment-example",
+    "namespace": "default",
+    "selfLink": "/api/v1/namespaces/default/services/deployment-example",
+    "uid": "93e5c731-9d30-11e6-9c54-42010a800148",
+    "resourceVersion": "2205995",
+    "creationTimestamp": "2016-10-28T17:04:24Z"
+  },
+  "spec": {
+    "ports": [
+      {
+        "name": "http",
+        "protocol": "TCP",
+        "port": 80,
+        "targetPort": 8080,
+        "nodePort": 32417
+      }
+    ],
+    "selector": {
+      "app": "nginx"
+    },
+    "clusterIP": "10.183.250.161",
+    "type": "LoadBalancer",
+    "sessionAffinity": "None"
+  },
+  "status": {
+    "loadBalancer": {
+      "ingress": [
+        {
+          "ip": "104.198.186.106"
+        }
+      ]
+    }
+  }
+}
+</CODE></PRE></DIV></DIV></DIV>
+<P>partially update the specified Service</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/services/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Service</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-service-v1-core">Replace</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-replace-service-v1-core" aria-controls="req-kubectl-replace-service-v1-core"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-replace-service-v1-core" aria-controls="req-curl-replace-service-v1-core"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-replace-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ echo 'apiVersion: v1
+kind: Service
+metadata:
+  name: deployment-example
+  resourceVersion: "2205995"
+spec:
+  clusterIP: 10.183.250.161
+  ports:
+  - name: http
+    nodePort: 32417
+    port: 80
+    protocol: TCP
+    targetPort: 8080
+  selector:
+    app: nginx
+  sessionAffinity: None
+  type: LoadBalancer
+' | kubectl replace -f -
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-replace-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X PUT -H 'Content-Type: application/yaml' --data '
+apiVersion: v1
+kind: Service
+metadata:
+  name: deployment-example
+  resourceVersion: "2205995"
+spec:
+  clusterIP: 10.183.250.161
+  ports:
+  - name: http
+    nodePort: 32417
+    port: 80
+    protocol: TCP
+    targetPort: 8080
+  selector:
+    app: nginx
+  sessionAffinity: None
+  type: LoadBalancer
+' http://127.0.0.1:8001/api/v1/namespaces/default/services/deployment-example
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-replace-service-v1-core" aria-controls="res-kubectl-replace-service-v1-core"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-replace-service-v1-core" aria-controls="res-curl-replace-service-v1-core"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-replace-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+service "deployment-example" replaced
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-replace-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Service",
+  "apiVersion": "v1",
+  "metadata": {
+    "name": "deployment-example",
+    "namespace": "default",
+    "selfLink": "/api/v1/namespaces/default/services/deployment-example",
+    "uid": "93e5c731-9d30-11e6-9c54-42010a800148",
+    "resourceVersion": "2208672",
+    "creationTimestamp": "2016-10-28T17:04:24Z"
+  },
+  "spec": {
+    "ports": [
+      {
+        "name": "http",
+        "protocol": "TCP",
+        "port": 80,
+        "targetPort": 8080,
+        "nodePort": 32417
+      }
+    ],
+    "selector": {
+      "app": "nginx"
+    },
+    "clusterIP": "10.183.250.161",
+    "type": "LoadBalancer",
+    "sessionAffinity": "None"
+  },
+  "status": {
+    "loadBalancer": {
+      "ingress": [
+        {
+          "ip": "104.198.186.106"
+        }
+      ]
+    }
+  }
+}
+</CODE></PRE></DIV></DIV></DIV>
+<P>replace the specified Service</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/services/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Service</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#service-v1-core">Service</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-service-v1-core">Delete</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-delete-service-v1-core" aria-controls="req-kubectl-delete-service-v1-core"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-delete-service-v1-core" aria-controls="req-curl-delete-service-v1-core"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-delete-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl delete service deployment-example
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-delete-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X DELETE -H 'Content-Type: application/yaml' --data '
+gracePeriodSeconds: 0
+orphanDependents: false
+' 'http://127.0.0.1:8001/api/v1/namespaces/default/services/deployment-example'
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-delete-service-v1-core" aria-controls="res-kubectl-delete-service-v1-core"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-delete-service-v1-core" aria-controls="res-curl-delete-service-v1-core"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-delete-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+service "deployment-example" deleted
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-delete-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Status",
+  "apiVersion": "v1",
+  "metadata": {},
+  "status": "Success",
+  "code": 200
+}
+
+</CODE></PRE></DIV></DIV></DIV>
+<P>delete a Service</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/services/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Service</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-service-v1-core">Delete Collection</H2>
+<P>delete collection of Service</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/services</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-service-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-service-v1-core">Read</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-read-service-v1-core" aria-controls="req-kubectl-read-service-v1-core"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-read-service-v1-core" aria-controls="req-curl-read-service-v1-core"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-read-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl get service deployment-example -o json
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-read-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X GET http://127.0.0.1:8001/api/v1/namespaces/default/services/deployment-example
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-read-service-v1-core" aria-controls="res-kubectl-read-service-v1-core"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-read-service-v1-core" aria-controls="res-curl-read-service-v1-core"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-read-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+{
+  "kind": "Service",
+  "apiVersion": "v1",
+  "metadata": {
+    "name": "deployment-example",
+    "namespace": "default",
+    "selfLink": "/api/v1/namespaces/default/services/deployment-example",
+    "uid": "93e5c731-9d30-11e6-9c54-42010a800148",
+    "resourceVersion": "2205995",
+    "creationTimestamp": "2016-10-28T17:04:24Z"
+  },
+  "spec": {
+    "ports": [
+      {
+        "name": "http",
+        "protocol": "TCP",
+        "port": 80,
+        "targetPort": 8080,
+        "nodePort": 32417
+      }
+    ],
+    "selector": {
+      "app": "nginx"
+    },
+    "clusterIP": "10.183.250.161",
+    "type": "LoadBalancer",
+    "sessionAffinity": "None"
+  },
+  "status": {
+    "loadBalancer": {
+      "ingress": [
+        {
+          "ip": "104.198.186.106"
+        }
+      ]
+    }
+  }
+}
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-read-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+  "kind": "Service",
+  "apiVersion": "v1",
+  "metadata": {
+    "name": "deployment-example",
+    "namespace": "default",
+    "selfLink": "/api/v1/namespaces/default/services/deployment-example",
+    "uid": "93e5c731-9d30-11e6-9c54-42010a800148",
+    "resourceVersion": "2205995",
+    "creationTimestamp": "2016-10-28T17:04:24Z"
+  },
+  "spec": {
+    "ports": [
+      {
+        "name": "http",
+        "protocol": "TCP",
+        "port": 80,
+        "targetPort": 8080,
+        "nodePort": 32417
+      }
+    ],
+    "selector": {
+      "app": "nginx"
+    },
+    "clusterIP": "10.183.250.161",
+    "type": "LoadBalancer",
+    "sessionAffinity": "None"
+  },
+  "status": {
+    "loadBalancer": {
+      "ingress": [
+        {
+          "ip": "104.198.186.106"
+        }
+      ]
+    }
+  }
+}
+</CODE></PRE></DIV></DIV></DIV>
+<P>read the specified Service</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/services/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Service</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-service-v1-core">List</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-list-service-v1-core" aria-controls="req-kubectl-list-service-v1-core"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-list-service-v1-core" aria-controls="req-curl-list-service-v1-core"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-list-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl get service -o json
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-list-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X GET 'http://127.0.0.1:8001/api/v1/namespaces/default/services'
+</CODE></PRE></DIV></DIV></DIV>
+<P>list or watch objects of kind Service</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/services</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#servicelist-v1-core">ServiceList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-service-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind Service</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/services</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#servicelist-v1-core">ServiceList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-service-v1-core">Watch</H2>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-kubectl-watch-service-v1-core" aria-controls="req-kubectl-watch-service-v1-core"
+  aria-expanded="false">kubectl request example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#req-curl-watch-service-v1-core" aria-controls="req-curl-watch-service-v1-core"
+  aria-expanded="false">curl request example</BUTTON>
+<DIV class="collapse" id="req-kubectl-watch-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>kubectl</CODE> command</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-shell">
+$ kubectl get service deployment-example --watch -o json
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="req-curl-watch-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading"><CODE>curl</CODE> command (<I>requires <code>kubectl proxy</code> to be running</I>)</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-shell">
+$ kubectl proxy
+$ curl -X GET 'http://127.0.0.1:8001/api/v1/watch/namespaces/default/services/deployment-example'
+</CODE></PRE></DIV></DIV></DIV>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-kubectl-watch-service-v1-core" aria-controls="res-kubectl-watch-service-v1-core"
+  aria-expanded="false">kubectl response example</BUTTON>
+<BUTTON class="btn btn-info" type="button" data-toggle="collapse"
+  data-target="#res-curl-watch-service-v1-core" aria-controls="res-curl-watch-service-v1-core"
+  aria-expanded="false">curl response example</BUTTON>
+<DIV class="collapse" id="res-kubectl-watch-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Output</DIV>
+  <DIV class="panel-body">
+<PRE class="kubectl"><CODE class="lang-json">
+{
+	"type": "ADDED",
+	"object": {
+		"kind": "Service",
+		"apiVersion": "v1",
+		"metadata": {
+			"name": "deployment-example",
+			"namespace": "default",
+			"selfLink": "/api/v1/namespaces/default/services/deployment-example",
+			"uid": "93e5c731-9d30-11e6-9c54-42010a800148",
+			"resourceVersion": "2205995",
+			"creationTimestamp": "2016-10-28T17:04:24Z"
+		},
+		"spec": {
+			"ports": [
+				{
+					"name": "http",
+					"protocol": "TCP",
+					"port": 80,
+					"targetPort": 8080,
+					"nodePort": 32417
+				}
+			],
+			"selector": {
+				"app": "nginx"
+			},
+			"clusterIP": "10.183.250.161",
+			"type": "LoadBalancer",
+			"sessionAffinity": "None"
+		},
+		"status": {
+			"loadBalancer": {
+				"ingress": [
+					{
+						"ip": "104.198.186.106"
+					}
+				]
+			}
+		}
+	}
+}
+</CODE></PRE></DIV></DIV></DIV>
+<DIV class="collapse" id="res-curl-watch-service-v1-core">
+  <DIV class="panel panel-default">
+<DIV class="panel-heading">Response Body</DIV>
+  <DIV class="panel-body">
+<PRE class="curl"><CODE class="lang-json">
+{
+	"type": "ADDED",
+	"object": {
+		"kind": "Service",
+		"apiVersion": "v1",
+		"metadata": {
+			"name": "deployment-example",
+			"namespace": "default",
+			"selfLink": "/api/v1/namespaces/default/services/deployment-example",
+			"uid": "93e5c731-9d30-11e6-9c54-42010a800148",
+			"resourceVersion": "2205995",
+			"creationTimestamp": "2016-10-28T17:04:24Z"
+		},
+		"spec": {
+			"ports": [
+				{
+					"name": "http",
+					"protocol": "TCP",
+					"port": 80,
+					"targetPort": 8080,
+					"nodePort": 32417
+				}
+			],
+			"selector": {
+				"app": "nginx"
+			},
+			"clusterIP": "10.183.250.161",
+			"type": "LoadBalancer",
+			"sessionAffinity": "None"
+		},
+		"status": {
+			"loadBalancer": {
+				"ingress": [
+					{
+						"ip": "104.198.186.106"
+					}
+				]
+			}
+		}
+	}
+}
+</CODE></PRE></DIV></DIV></DIV>
+<P>watch changes to an object of kind Service. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/services/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Service</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-service-v1-core">Watch List</H2>
+<P>watch individual changes to a list of Service. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/services</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-service-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Service. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/services</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-service-v1-core-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-service-v1-core">Patch Status</H2>
+<P>partially update status of the specified Service</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/services/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Service</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-service-v1-core">Read Status</H2>
+<P>read status of the specified Service</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/services/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Service</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-service-v1-core">Replace Status</H2>
+<P>replace status of the specified Service</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/services/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Service</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#service-v1-core">Service</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#service-v1-core">Service</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-proxy-operations-service-v1-core-strong-"><STRONG>Proxy Operations</STRONG></H2>
+<H2 id="create-connect-proxy-service-v1-core">Create Connect Proxy</H2>
+<P>connect POST requests to proxy of Service</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/services/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the part of URLs that include service endpoints, suffixes, and parameters to use for the current proxy request to service. For example, the whole request URL is http://localhost/api/v1/namespaces/kube-system/services/elasticsearch-logging/_search?q=user:kimchy. Path is _search?q=user:kimchy.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="create-connect-proxy-path-service-v1-core">Create Connect Proxy Path</H2>
+<P>connect POST requests to proxy of Service</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/services/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the part of URLs that include service endpoints, suffixes, and parameters to use for the current proxy request to service. For example, the whole request URL is http://localhost/api/v1/namespaces/kube-system/services/elasticsearch-logging/_search?q=user:kimchy. Path is _search?q=user:kimchy.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-connect-proxy-service-v1-core">Delete Connect Proxy</H2>
+<P>connect DELETE requests to proxy of Service</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/services/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the part of URLs that include service endpoints, suffixes, and parameters to use for the current proxy request to service. For example, the whole request URL is http://localhost/api/v1/namespaces/kube-system/services/elasticsearch-logging/_search?q=user:kimchy. Path is _search?q=user:kimchy.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-connect-proxy-path-service-v1-core">Delete Connect Proxy Path</H2>
+<P>connect DELETE requests to proxy of Service</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/services/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the part of URLs that include service endpoints, suffixes, and parameters to use for the current proxy request to service. For example, the whole request URL is http://localhost/api/v1/namespaces/kube-system/services/elasticsearch-logging/_search?q=user:kimchy. Path is _search?q=user:kimchy.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="get-connect-proxy-service-v1-core">Get Connect Proxy</H2>
+<P>connect GET requests to proxy of Service</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/services/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the part of URLs that include service endpoints, suffixes, and parameters to use for the current proxy request to service. For example, the whole request URL is http://localhost/api/v1/namespaces/kube-system/services/elasticsearch-logging/_search?q=user:kimchy. Path is _search?q=user:kimchy.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="get-connect-proxy-path-service-v1-core">Get Connect Proxy Path</H2>
+<P>connect GET requests to proxy of Service</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/services/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the part of URLs that include service endpoints, suffixes, and parameters to use for the current proxy request to service. For example, the whole request URL is http://localhost/api/v1/namespaces/kube-system/services/elasticsearch-logging/_search?q=user:kimchy. Path is _search?q=user:kimchy.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="head-connect-proxy-service-v1-core">Head Connect Proxy</H2>
+<P>connect HEAD requests to proxy of Service</P>
+<H3>HTTP Request</H3>
+<CODE>HEAD /api/v1/namespaces/{namespace}/services/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the part of URLs that include service endpoints, suffixes, and parameters to use for the current proxy request to service. For example, the whole request URL is http://localhost/api/v1/namespaces/kube-system/services/elasticsearch-logging/_search?q=user:kimchy. Path is _search?q=user:kimchy.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="head-connect-proxy-path-service-v1-core">Head Connect Proxy Path</H2>
+<P>connect HEAD requests to proxy of Service</P>
+<H3>HTTP Request</H3>
+<CODE>HEAD /api/v1/namespaces/{namespace}/services/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the part of URLs that include service endpoints, suffixes, and parameters to use for the current proxy request to service. For example, the whole request URL is http://localhost/api/v1/namespaces/kube-system/services/elasticsearch-logging/_search?q=user:kimchy. Path is _search?q=user:kimchy.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-connect-proxy-service-v1-core">Replace Connect Proxy</H2>
+<P>connect PUT requests to proxy of Service</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/services/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the part of URLs that include service endpoints, suffixes, and parameters to use for the current proxy request to service. For example, the whole request URL is http://localhost/api/v1/namespaces/kube-system/services/elasticsearch-logging/_search?q=user:kimchy. Path is _search?q=user:kimchy.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-connect-proxy-path-service-v1-core">Replace Connect Proxy Path</H2>
+<P>connect PUT requests to proxy of Service</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/services/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceProxyOptions</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the part of URLs that include service endpoints, suffixes, and parameters to use for the current proxy request to service. For example, the whole request URL is http://localhost/api/v1/namespaces/kube-system/services/elasticsearch-logging/_search?q=user:kimchy. Path is _search?q=user:kimchy.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="-strong-config-and-storage-apis-strong-"><STRONG>CONFIG & STORAGE</STRONG></H1>
+
+<P>Config and Storage resources are responsible for injecting data into your applications and persisting data externally to your container.</P>
+
+<P>Common resource types:</P>
+<UL>
+<LI><A href="#configmap-v1-core">ConfigMaps</A> for providing text key value pairs injected into the application through environment variables, command line arguments, or files</LI>
+<LI><A href="#secret-v1-core">Secrets</A> for providing binary data injected into the application through files</LI>
+<LI><A href="#volume-v1-core">Volumes</A> for providing a filesystem external to the Container.  Maybe shared across Containers within the same Pod and have a lifetime persisting beyond a Container or Pod.</LI>
+</UL>
+<HR />
+<H1 id="configmap-v1-core">ConfigMap v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ConfigMap</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#configmaplist-v1-core">ConfigMapList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>binaryData</CODE><BR /><I>object</I></TD><TD>BinaryData contains the binary data. Each key must consist of alphanumeric characters, &#39;-&#39;, &#39;_&#39; or &#39;.&#39;. BinaryData can contain byte sequences that are not in the UTF-8 range. The keys stored in BinaryData must not overlap with the ones in the Data field, this is enforced during validation process. Using this field will require 1.10+ apiserver and kubelet.</TD></TR>
+<TR><TD><CODE>data</CODE><BR /><I>object</I></TD><TD>Data contains the configuration data. Each key must consist of alphanumeric characters, &#39;-&#39;, &#39;_&#39; or &#39;.&#39;. Values with non-UTF-8 byte sequences must use the BinaryData field. The keys stored in Data must not overlap with the keys in the BinaryData field, this is enforced during validation process.</TD></TR>
+<TR><TD><CODE>immutable</CODE><BR /><I>boolean</I></TD><TD>Immutable, if set to true, ensures that data stored in the ConfigMap cannot be updated (only object metadata can be modified). If not set to true, the field can be modified at any time. Defaulted to nil.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="configmaplist-v1-core">ConfigMapList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#configmap-v1-core">ConfigMap</a> array</I></TD><TD>Items is the list of ConfigMaps.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-configmap-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-configmap-v1-core">Create</H2>
+<P>create a ConfigMap</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/configmaps</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#configmap-v1-core">ConfigMap</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#configmap-v1-core">ConfigMap</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#configmap-v1-core">ConfigMap</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#configmap-v1-core">ConfigMap</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-configmap-v1-core">Patch</H2>
+<P>partially update the specified ConfigMap</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/configmaps/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ConfigMap</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#configmap-v1-core">ConfigMap</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#configmap-v1-core">ConfigMap</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-configmap-v1-core">Replace</H2>
+<P>replace the specified ConfigMap</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/configmaps/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ConfigMap</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#configmap-v1-core">ConfigMap</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#configmap-v1-core">ConfigMap</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#configmap-v1-core">ConfigMap</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-configmap-v1-core">Delete</H2>
+<P>delete a ConfigMap</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/configmaps/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ConfigMap</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-configmap-v1-core">Delete Collection</H2>
+<P>delete collection of ConfigMap</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/configmaps</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-configmap-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-configmap-v1-core">Read</H2>
+<P>read the specified ConfigMap</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/configmaps/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ConfigMap</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#configmap-v1-core">ConfigMap</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-configmap-v1-core">List</H2>
+<P>list or watch objects of kind ConfigMap</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/configmaps</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#configmaplist-v1-core">ConfigMapList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-configmap-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind ConfigMap</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/configmaps</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#configmaplist-v1-core">ConfigMapList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-configmap-v1-core">Watch</H2>
+<P>watch changes to an object of kind ConfigMap. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/configmaps/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ConfigMap</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-configmap-v1-core">Watch List</H2>
+<P>watch individual changes to a list of ConfigMap. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/configmaps</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-configmap-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of ConfigMap. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/configmaps</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="csidriver-v1-storage-k8s-io">CSIDriver v1 storage.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CSIDriver</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csidriverlist-v1-storage-k8s-io">CSIDriverList [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object metadata. metadata.Name indicates the name of the CSI driver that this object refers to; it MUST be the same name returned by the CSI GetPluginName() call for that driver. The driver name must be 63 characters or less, beginning and ending with an alphanumeric character ([a-z0-9A-Z]) with dashes (-), dots (.), and alphanumerics between. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#csidriverspec-v1-storage-k8s-io">CSIDriverSpec</a></I></TD><TD>Specification of the CSI Driver.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="csidriverspec-v1-storage-k8s-io">CSIDriverSpec v1 storage</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csidriver-v1-storage-k8s-io">CSIDriver [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>attachRequired</CODE><BR /><I>boolean</I></TD><TD>attachRequired indicates this CSI volume driver requires an attach operation (because it implements the CSI ControllerPublishVolume() method), and that the Kubernetes attach detach controller should call the attach volume interface which checks the volumeattachment status and waits until the volume is attached before proceeding to mounting. The CSI external-attacher coordinates with CSI volume driver and updates the volumeattachment status when the attach operation is complete. If the CSIDriverRegistry feature gate is enabled and the value is specified to false, the attach operation will be skipped. Otherwise the attach operation will be called.  This field is immutable.</TD></TR>
+<TR><TD><CODE>fsGroupPolicy</CODE><BR /><I>string</I></TD><TD>Defines if the underlying volume supports changing ownership and permission of the volume before being mounted. Refer to the specific FSGroupPolicy values for additional details.  This field is immutable.  Defaults to ReadWriteOnceWithFSType, which will examine each volume to determine if Kubernetes should modify ownership and permissions of the volume. With the default policy the defined fsGroup will only be applied if a fstype is defined and the volume&#39;s access mode contains ReadWriteOnce.</TD></TR>
+<TR><TD><CODE>podInfoOnMount</CODE><BR /><I>boolean</I></TD><TD>If set to true, podInfoOnMount indicates this CSI volume driver requires additional pod information (like podName, podUID, etc.) during mount operations. If set to false, pod information will not be passed on mount. Default is false. The CSI driver specifies podInfoOnMount as part of driver deployment. If true, Kubelet will pass pod information as VolumeContext in the CSI NodePublishVolume() calls. The CSI driver is responsible for parsing and validating the information passed in as VolumeContext. The following VolumeConext will be passed if podInfoOnMount is set to true. This list might grow, but the prefix will be used. &#34;csi.storage.k8s.io/pod.name&#34;: pod.Name &#34;csi.storage.k8s.io/pod.namespace&#34;: pod.Namespace &#34;csi.storage.k8s.io/pod.uid&#34;: string(pod.UID) &#34;csi.storage.k8s.io/ephemeral&#34;: &#34;true&#34; if the volume is an ephemeral inline volume                                 defined by a CSIVolumeSource, otherwise &#34;false&#34;  &#34;csi.storage.k8s.io/ephemeral&#34; is a new feature in Kubernetes 1.16. It is only required for drivers which support both the &#34;Persistent&#34; and &#34;Ephemeral&#34; VolumeLifecycleMode. Other drivers can leave pod info disabled and/or ignore this field. As Kubernetes 1.15 doesn&#39;t support this field, drivers can only support one mode when deployed on such a cluster and the deployment determines which mode that is, for example via a command line parameter of the driver.  This field is immutable.</TD></TR>
+<TR><TD><CODE>requiresRepublish</CODE><BR /><I>boolean</I></TD><TD>RequiresRepublish indicates the CSI driver wants `NodePublishVolume` being periodically called to reflect any possible change in the mounted volume. This field defaults to false.  Note: After a successful initial NodePublishVolume call, subsequent calls to NodePublishVolume should only update the contents of the volume. New mount points will not be seen by a running container.</TD></TR>
+<TR><TD><CODE>storageCapacity</CODE><BR /><I>boolean</I></TD><TD>If set to true, storageCapacity indicates that the CSI volume driver wants pod scheduling to consider the storage capacity that the driver deployment will report by creating CSIStorageCapacity objects with capacity information.  The check can be enabled immediately when deploying a driver. In that case, provisioning new volumes with late binding will pause until the driver deployment has published some suitable CSIStorageCapacity object.  Alternatively, the driver can be deployed with the field unset or false and it can be flipped later when storage capacity information has been published.  This field was immutable in Kubernetes &lt;= 1.22 and now is mutable.</TD></TR>
+<TR><TD><CODE>tokenRequests</CODE><BR /><I><a href="#tokenrequest-v1-storage-k8s-io">TokenRequest</a> array</I></TD><TD>TokenRequests indicates the CSI driver needs pods&#39; service account tokens it is mounting volume for to do necessary authentication. Kubelet will pass the tokens in VolumeContext in the CSI NodePublishVolume calls. The CSI driver should parse and validate the following VolumeContext: &#34;csi.storage.k8s.io/serviceAccount.tokens&#34;: {   &#34;&lt;audience&gt;&#34;: {     &#34;token&#34;: &lt;token&gt;,     &#34;expirationTimestamp&#34;: &lt;expiration timestamp in RFC3339&gt;,   },   ... }  Note: Audience in each TokenRequest should be different and at most one token is empty string. To receive a new token after expiry, RequiresRepublish can be used to trigger NodePublishVolume periodically.</TD></TR>
+<TR><TD><CODE>volumeLifecycleModes</CODE><BR /><I>string array</I></TD><TD>volumeLifecycleModes defines what kind of volumes this CSI volume driver supports. The default if the list is empty is &#34;Persistent&#34;, which is the usage defined by the CSI specification and implemented in Kubernetes via the usual PV/PVC mechanism. The other mode is &#34;Ephemeral&#34;. In this mode, volumes are defined inline inside the pod spec with CSIVolumeSource and their lifecycle is tied to the lifecycle of that pod. A driver has to be aware of this because it is only going to get a NodePublishVolume call for such a volume. For more information about implementing this mode, see https://kubernetes-csi.github.io/docs/ephemeral-local-volumes.html A driver can support one or more of these modes and more modes may be added in the future. This field is beta.  This field is immutable.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="csidriverlist-v1-storage-k8s-io">CSIDriverList v1 storage</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a> array</I></TD><TD>items is the list of CSIDriver</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-csidriver-v1-storage-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-csidriver-v1-storage-k8s-io">Create</H2>
+<P>create a CSIDriver</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/storage.k8s.io/v1/csidrivers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-csidriver-v1-storage-k8s-io">Patch</H2>
+<P>partially update the specified CSIDriver</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/storage.k8s.io/v1/csidrivers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIDriver</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-csidriver-v1-storage-k8s-io">Replace</H2>
+<P>replace the specified CSIDriver</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/storage.k8s.io/v1/csidrivers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIDriver</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-csidriver-v1-storage-k8s-io">Delete</H2>
+<P>delete a CSIDriver</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1/csidrivers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIDriver</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-csidriver-v1-storage-k8s-io">Delete Collection</H2>
+<P>delete collection of CSIDriver</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1/csidrivers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-csidriver-v1-storage-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-csidriver-v1-storage-k8s-io">Read</H2>
+<P>read the specified CSIDriver</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/csidrivers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIDriver</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csidriver-v1-storage-k8s-io">CSIDriver</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-csidriver-v1-storage-k8s-io">List</H2>
+<P>list or watch objects of kind CSIDriver</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/csidrivers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csidriverlist-v1-storage-k8s-io">CSIDriverList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-csidriver-v1-storage-k8s-io">Watch</H2>
+<P>watch changes to an object of kind CSIDriver. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/watch/csidrivers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIDriver</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-csidriver-v1-storage-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of CSIDriver. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/watch/csidrivers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="csinode-v1-storage-k8s-io">CSINode v1 storage.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CSINode</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csinodelist-v1-storage-k8s-io">CSINodeList [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>metadata.name must be the Kubernetes node name.</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#csinodespec-v1-storage-k8s-io">CSINodeSpec</a></I></TD><TD>spec is the specification of CSINode</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="csinodespec-v1-storage-k8s-io">CSINodeSpec v1 storage</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csinode-v1-storage-k8s-io">CSINode [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>drivers</CODE><BR /><I><a href="#csinodedriver-v1-storage-k8s-io">CSINodeDriver</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>name</I></TD><TD>drivers is a list of information of all CSI Drivers existing on a node. If all drivers in the list are uninstalled, this can become empty.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="csinodelist-v1-storage-k8s-io">CSINodeList v1 storage</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a> array</I></TD><TD>items is the list of CSINode</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-csinode-v1-storage-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-csinode-v1-storage-k8s-io">Create</H2>
+<P>create a CSINode</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/storage.k8s.io/v1/csinodes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-csinode-v1-storage-k8s-io">Patch</H2>
+<P>partially update the specified CSINode</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/storage.k8s.io/v1/csinodes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSINode</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-csinode-v1-storage-k8s-io">Replace</H2>
+<P>replace the specified CSINode</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/storage.k8s.io/v1/csinodes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSINode</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-csinode-v1-storage-k8s-io">Delete</H2>
+<P>delete a CSINode</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1/csinodes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSINode</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-csinode-v1-storage-k8s-io">Delete Collection</H2>
+<P>delete collection of CSINode</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1/csinodes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-csinode-v1-storage-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-csinode-v1-storage-k8s-io">Read</H2>
+<P>read the specified CSINode</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/csinodes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSINode</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csinode-v1-storage-k8s-io">CSINode</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-csinode-v1-storage-k8s-io">List</H2>
+<P>list or watch objects of kind CSINode</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/csinodes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csinodelist-v1-storage-k8s-io">CSINodeList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-csinode-v1-storage-k8s-io">Watch</H2>
+<P>watch changes to an object of kind CSINode. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/watch/csinodes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSINode</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-csinode-v1-storage-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of CSINode. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/watch/csinodes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="secret-v1-core">Secret v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Secret</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#secretlist-v1-core">SecretList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>data</CODE><BR /><I>object</I></TD><TD>Data contains the secret data. Each key must consist of alphanumeric characters, &#39;-&#39;, &#39;_&#39; or &#39;.&#39;. The serialized form of the secret data is a base64 encoded string, representing the arbitrary (possibly non-string) data value here. Described in https://tools.ietf.org/html/rfc4648#section-4</TD></TR>
+<TR><TD><CODE>immutable</CODE><BR /><I>boolean</I></TD><TD>Immutable, if set to true, ensures that data stored in the Secret cannot be updated (only object metadata can be modified). If not set to true, the field can be modified at any time. Defaulted to nil.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>stringData</CODE><BR /><I>object</I></TD><TD>stringData allows specifying non-binary secret data in string form. It is provided as a write-only input field for convenience. All keys and values are merged into the data field on write, overwriting any existing values. The stringData field is never output when reading from the API.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Used to facilitate programmatic handling of secret data. More info: https://kubernetes.io/docs/concepts/configuration/secret/#secret-types</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="secretlist-v1-core">SecretList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#secret-v1-core">Secret</a> array</I></TD><TD>Items is a list of secret objects. More info: https://kubernetes.io/docs/concepts/configuration/secret</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-secret-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-secret-v1-core">Create</H2>
+<P>create a Secret</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/secrets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#secret-v1-core">Secret</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#secret-v1-core">Secret</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#secret-v1-core">Secret</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#secret-v1-core">Secret</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-secret-v1-core">Patch</H2>
+<P>partially update the specified Secret</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/secrets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Secret</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#secret-v1-core">Secret</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#secret-v1-core">Secret</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-secret-v1-core">Replace</H2>
+<P>replace the specified Secret</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/secrets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Secret</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#secret-v1-core">Secret</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#secret-v1-core">Secret</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#secret-v1-core">Secret</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-secret-v1-core">Delete</H2>
+<P>delete a Secret</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/secrets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Secret</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-secret-v1-core">Delete Collection</H2>
+<P>delete collection of Secret</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/secrets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-secret-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-secret-v1-core">Read</H2>
+<P>read the specified Secret</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/secrets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Secret</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#secret-v1-core">Secret</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-secret-v1-core">List</H2>
+<P>list or watch objects of kind Secret</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/secrets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#secretlist-v1-core">SecretList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-secret-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind Secret</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/secrets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#secretlist-v1-core">SecretList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-secret-v1-core">Watch</H2>
+<P>watch changes to an object of kind Secret. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/secrets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Secret</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-secret-v1-core">Watch List</H2>
+<P>watch individual changes to a list of Secret. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/secrets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-secret-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Secret. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/secrets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="persistentvolumeclaim-v1-core">PersistentVolumeClaim v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PersistentVolumeClaim</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-bullhorn"></I> A <a href="#persistentvolume-v1-core">PersistentVolume</a> must be allocated in the cluster to use this.</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumeclaimlist-v1-core">PersistentVolumeClaimList [core/v1]</a></LI>
+  <LI><a href="#statefulsetspec-v1-apps">StatefulSetSpec [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#persistentvolumeclaimspec-v1-core">PersistentVolumeClaimSpec</a></I></TD><TD>spec defines the desired characteristics of a volume requested by a pod author. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#persistentvolumeclaimstatus-v1-core">PersistentVolumeClaimStatus</a></I></TD><TD>status represents the current information/status of a persistent volume claim. Read-only. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="persistentvolumeclaimspec-v1-core">PersistentVolumeClaimSpec v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim [core/v1]</a></LI>
+  <LI><a href="#persistentvolumeclaimtemplate-v1-core">PersistentVolumeClaimTemplate [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>accessModes</CODE><BR /><I>string array</I></TD><TD>accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1</TD></TR>
+<TR><TD><CODE>dataSource</CODE><BR /><I><a href="#typedlocalobjectreference-v1-core">TypedLocalObjectReference</a></I></TD><TD>dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field.</TD></TR>
+<TR><TD><CODE>dataSourceRef</CODE><BR /><I><a href="#typedlocalobjectreference-v1-core">TypedLocalObjectReference</a></I></TD><TD>dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef   allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef   preserves all values, and generates an error if a disallowed value is   specified. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.</TD></TR>
+<TR><TD><CODE>resources</CODE><BR /><I><a href="#resourcerequirements-v1-core">ResourceRequirements</a></I></TD><TD>resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>selector is a label query over volumes to consider for binding.</TD></TR>
+<TR><TD><CODE>storageClassName</CODE><BR /><I>string</I></TD><TD>storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1</TD></TR>
+<TR><TD><CODE>volumeMode</CODE><BR /><I>string</I></TD><TD>volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.</TD></TR>
+<TR><TD><CODE>volumeName</CODE><BR /><I>string</I></TD><TD>volumeName is the binding reference to the PersistentVolume backing this claim.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="persistentvolumeclaimstatus-v1-core">PersistentVolumeClaimStatus v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>accessModes</CODE><BR /><I>string array</I></TD><TD>accessModes contains the actual access modes the volume backing the PVC has. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1</TD></TR>
+<TR><TD><CODE>allocatedResources</CODE><BR /><I>object</I></TD><TD>allocatedResources is the storage resource within AllocatedResources tracks the capacity allocated to a PVC. It may be larger than the actual capacity when a volume expansion operation is requested. For storage quota, the larger value from allocatedResources and PVC.spec.resources is used. If allocatedResources is not set, PVC.spec.resources alone is used for quota calculation. If a volume expansion capacity request is lowered, allocatedResources is only lowered if there are no expansion operations in progress and if the actual volume capacity is equal or lower than the requested capacity. This is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.</TD></TR>
+<TR><TD><CODE>capacity</CODE><BR /><I>object</I></TD><TD>capacity represents the actual resources of the underlying volume.</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#persistentvolumeclaimcondition-v1-core">PersistentVolumeClaimCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>conditions is the current Condition of persistent volume claim. If underlying persistent volume is being resized then the Condition will be set to &#39;ResizeStarted&#39;.</TD></TR>
+<TR><TD><CODE>phase</CODE><BR /><I>string</I></TD><TD>phase represents the current phase of PersistentVolumeClaim.  </TD></TR>
+<TR><TD><CODE>resizeStatus</CODE><BR /><I>string</I></TD><TD>resizeStatus stores status of resize operation. ResizeStatus is not set by default but when expansion is complete resizeStatus is set to empty string by resize controller or kubelet. This is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="persistentvolumeclaimlist-v1-core">PersistentVolumeClaimList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a> array</I></TD><TD>items is a list of persistent volume claims. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-persistentvolumeclaim-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-persistentvolumeclaim-v1-core">Create</H2>
+<P>create a PersistentVolumeClaim</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/persistentvolumeclaims</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-persistentvolumeclaim-v1-core">Patch</H2>
+<P>partially update the specified PersistentVolumeClaim</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolumeClaim</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-persistentvolumeclaim-v1-core">Replace</H2>
+<P>replace the specified PersistentVolumeClaim</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolumeClaim</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-persistentvolumeclaim-v1-core">Delete</H2>
+<P>delete a PersistentVolumeClaim</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolumeClaim</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-persistentvolumeclaim-v1-core">Delete Collection</H2>
+<P>delete collection of PersistentVolumeClaim</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/persistentvolumeclaims</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-persistentvolumeclaim-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-persistentvolumeclaim-v1-core">Read</H2>
+<P>read the specified PersistentVolumeClaim</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolumeClaim</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-persistentvolumeclaim-v1-core">List</H2>
+<P>list or watch objects of kind PersistentVolumeClaim</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/persistentvolumeclaims</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolumeclaimlist-v1-core">PersistentVolumeClaimList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-persistentvolumeclaim-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind PersistentVolumeClaim</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/persistentvolumeclaims</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolumeclaimlist-v1-core">PersistentVolumeClaimList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-persistentvolumeclaim-v1-core">Watch</H2>
+<P>watch changes to an object of kind PersistentVolumeClaim. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/persistentvolumeclaims/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolumeClaim</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-persistentvolumeclaim-v1-core">Watch List</H2>
+<P>watch individual changes to a list of PersistentVolumeClaim. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/persistentvolumeclaims</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-persistentvolumeclaim-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of PersistentVolumeClaim. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/persistentvolumeclaims</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-persistentvolumeclaim-v1-core-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-persistentvolumeclaim-v1-core">Patch Status</H2>
+<P>partially update status of the specified PersistentVolumeClaim</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolumeClaim</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-persistentvolumeclaim-v1-core">Read Status</H2>
+<P>read status of the specified PersistentVolumeClaim</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolumeClaim</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-persistentvolumeclaim-v1-core">Replace Status</H2>
+<P>replace status of the specified PersistentVolumeClaim</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolumeClaim</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="storageclass-v1-storage-k8s-io">StorageClass v1 storage.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>StorageClass</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#storageclasslist-v1-storage-k8s-io">StorageClassList [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowVolumeExpansion</CODE><BR /><I>boolean</I></TD><TD>AllowVolumeExpansion shows whether the storage class allow volume expand</TD></TR>
+<TR><TD><CODE>allowedTopologies</CODE><BR /><I><a href="#topologyselectorterm-v1-core">TopologySelectorTerm</a> array</I></TD><TD>Restrict the node topologies where volumes can be dynamically provisioned. Each volume plugin defines its own supported topology specifications. An empty TopologySelectorTerm list means there is no topology restriction. This field is only honored by servers that enable the VolumeScheduling feature.</TD></TR>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>mountOptions</CODE><BR /><I>string array</I></TD><TD>Dynamically provisioned PersistentVolumes of this storage class are created with these mountOptions, e.g. [&#34;ro&#34;, &#34;soft&#34;]. Not validated - mount of the PVs will simply fail if one is invalid.</TD></TR>
+<TR><TD><CODE>parameters</CODE><BR /><I>object</I></TD><TD>Parameters holds the parameters for the provisioner that should create volumes of this storage class.</TD></TR>
+<TR><TD><CODE>provisioner</CODE><BR /><I>string</I></TD><TD>Provisioner indicates the type of the provisioner.</TD></TR>
+<TR><TD><CODE>reclaimPolicy</CODE><BR /><I>string</I></TD><TD>Dynamically provisioned PersistentVolumes of this storage class are created with this reclaimPolicy. Defaults to Delete.</TD></TR>
+<TR><TD><CODE>volumeBindingMode</CODE><BR /><I>string</I></TD><TD>VolumeBindingMode indicates how PersistentVolumeClaims should be provisioned and bound.  When unset, VolumeBindingImmediate is used. This field is only honored by servers that enable the VolumeScheduling feature.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="storageclasslist-v1-storage-k8s-io">StorageClassList v1 storage</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a> array</I></TD><TD>Items is the list of StorageClasses</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-storageclass-v1-storage-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-storageclass-v1-storage-k8s-io">Create</H2>
+<P>create a StorageClass</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/storage.k8s.io/v1/storageclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-storageclass-v1-storage-k8s-io">Patch</H2>
+<P>partially update the specified StorageClass</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/storage.k8s.io/v1/storageclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-storageclass-v1-storage-k8s-io">Replace</H2>
+<P>replace the specified StorageClass</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/storage.k8s.io/v1/storageclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-storageclass-v1-storage-k8s-io">Delete</H2>
+<P>delete a StorageClass</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1/storageclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-storageclass-v1-storage-k8s-io">Delete Collection</H2>
+<P>delete collection of StorageClass</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1/storageclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-storageclass-v1-storage-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-storageclass-v1-storage-k8s-io">Read</H2>
+<P>read the specified StorageClass</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/storageclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageclass-v1-storage-k8s-io">StorageClass</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-storageclass-v1-storage-k8s-io">List</H2>
+<P>list or watch objects of kind StorageClass</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/storageclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageclasslist-v1-storage-k8s-io">StorageClassList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-storageclass-v1-storage-k8s-io">Watch</H2>
+<P>watch changes to an object of kind StorageClass. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/watch/storageclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-storageclass-v1-storage-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of StorageClass. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/watch/storageclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity v1beta1 storage.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>CSIStorageCapacity</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#csistoragecapacity-v1-storage-k8s-io">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csistoragecapacitylist-v1beta1-storage-k8s-io">CSIStorageCapacityList [storage/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>capacity</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>Capacity is the value reported by the CSI driver in its GetCapacityResponse for a GetCapacityRequest with topology and parameters that match the previous fields.  The semantic is currently (CSI spec 1.2) defined as: The available capacity, in bytes, of the storage that can be used to provision volumes. If not set, that information is currently unavailable.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>maximumVolumeSize</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>MaximumVolumeSize is the value reported by the CSI driver in its GetCapacityResponse for a GetCapacityRequest with topology and parameters that match the previous fields.  This is defined since CSI spec 1.4.0 as the largest size that may be used in a CreateVolumeRequest.capacity_range.required_bytes field to create a volume with the same parameters as those in GetCapacityRequest. The corresponding value in the Kubernetes API is ResourceRequirements.Requests in a volume claim.</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. The name has no particular meaning. It must be be a DNS subdomain (dots allowed, 253 characters). To ensure that there are no conflicts with other CSI drivers on the cluster, the recommendation is to use csisc-&lt;uuid&gt;, a generated name, or a reverse-domain name which ends with the unique CSI driver name.  Objects are namespaced.  More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>nodeTopology</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>NodeTopology defines which nodes have access to the storage for which capacity was reported. If not set, the storage is not accessible from any node in the cluster. If empty, the storage is accessible from all nodes. This field is immutable.</TD></TR>
+<TR><TD><CODE>storageClassName</CODE><BR /><I>string</I></TD><TD>The name of the StorageClass that the reported capacity applies to. It must meet the same requirements as the name of a StorageClass object (non-empty, DNS subdomain). If that object no longer exists, the CSIStorageCapacity object is obsolete and should be removed by its creator. This field is immutable.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="csistoragecapacitylist-v1beta1-storage-k8s-io">CSIStorageCapacityList v1beta1 storage</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a> array</I></TD><TD>Items is the list of CSIStorageCapacity objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-csistoragecapacity-v1beta1-storage-k8s-io">Create</H2>
+<P>create a CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-csistoragecapacity-v1beta1-storage-k8s-io">Patch</H2>
+<P>partially update the specified CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIStorageCapacity</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-csistoragecapacity-v1beta1-storage-k8s-io">Replace</H2>
+<P>replace the specified CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIStorageCapacity</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-csistoragecapacity-v1beta1-storage-k8s-io">Delete</H2>
+<P>delete a CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIStorageCapacity</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-csistoragecapacity-v1beta1-storage-k8s-io">Delete Collection</H2>
+<P>delete collection of CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-csistoragecapacity-v1beta1-storage-k8s-io">Read</H2>
+<P>read the specified CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIStorageCapacity</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-csistoragecapacity-v1beta1-storage-k8s-io">List</H2>
+<P>list or watch objects of kind CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacitylist-v1beta1-storage-k8s-io">CSIStorageCapacityList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io">List All Namespaces</H2>
+<P>list or watch objects of kind CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1beta1/csistoragecapacities</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacitylist-v1beta1-storage-k8s-io">CSIStorageCapacityList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-csistoragecapacity-v1beta1-storage-k8s-io">Watch</H2>
+<P>watch changes to an object of kind CSIStorageCapacity. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1beta1/watch/namespaces/{namespace}/csistoragecapacities/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIStorageCapacity</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-csistoragecapacity-v1beta1-storage-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of CSIStorageCapacity. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1beta1/watch/namespaces/{namespace}/csistoragecapacities</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of CSIStorageCapacity. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1beta1/watch/csistoragecapacities</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="volume-v1-core">Volume v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Volume</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>awsElasticBlockStore</CODE><BR /><I><a href="#awselasticblockstorevolumesource-v1-core">AWSElasticBlockStoreVolumeSource</a></I></TD><TD>awsElasticBlockStore represents an AWS Disk resource that is attached to a kubelet&#39;s host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore</TD></TR>
+<TR><TD><CODE>azureDisk</CODE><BR /><I><a href="#azurediskvolumesource-v1-core">AzureDiskVolumeSource</a></I></TD><TD>azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.</TD></TR>
+<TR><TD><CODE>azureFile</CODE><BR /><I><a href="#azurefilevolumesource-v1-core">AzureFileVolumeSource</a></I></TD><TD>azureFile represents an Azure File Service mount on the host and bind mount to the pod.</TD></TR>
+<TR><TD><CODE>cephfs</CODE><BR /><I><a href="#cephfsvolumesource-v1-core">CephFSVolumeSource</a></I></TD><TD>cephFS represents a Ceph FS mount on the host that shares a pod&#39;s lifetime</TD></TR>
+<TR><TD><CODE>cinder</CODE><BR /><I><a href="#cindervolumesource-v1-core">CinderVolumeSource</a></I></TD><TD>cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md</TD></TR>
+<TR><TD><CODE>configMap</CODE><BR /><I><a href="#configmapvolumesource-v1-core">ConfigMapVolumeSource</a></I></TD><TD>configMap represents a configMap that should populate this volume</TD></TR>
+<TR><TD><CODE>csi</CODE><BR /><I><a href="#csivolumesource-v1-core">CSIVolumeSource</a></I></TD><TD>csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).</TD></TR>
+<TR><TD><CODE>downwardAPI</CODE><BR /><I><a href="#downwardapivolumesource-v1-core">DownwardAPIVolumeSource</a></I></TD><TD>downwardAPI represents downward API about the pod that should populate this volume</TD></TR>
+<TR><TD><CODE>emptyDir</CODE><BR /><I><a href="#emptydirvolumesource-v1-core">EmptyDirVolumeSource</a></I></TD><TD>emptyDir represents a temporary directory that shares a pod&#39;s lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir</TD></TR>
+<TR><TD><CODE>ephemeral</CODE><BR /><I><a href="#ephemeralvolumesource-v1-core">EphemeralVolumeSource</a></I></TD><TD>ephemeral represents a volume that is handled by a cluster storage driver. The volume&#39;s lifecycle is tied to the pod that defines it - it will be created before the pod starts, and deleted when the pod is removed.  Use this if: a) the volume is only needed while the pod runs, b) features of normal volumes like restoring from snapshot or capacity    tracking are needed, c) the storage driver is specified through a storage class, and d) the storage driver supports dynamic volume provisioning through    a PersistentVolumeClaim (see EphemeralVolumeSource for more    information on the connection between this volume type    and PersistentVolumeClaim).  Use PersistentVolumeClaim or one of the vendor-specific APIs for volumes that persist for longer than the lifecycle of an individual pod.  Use CSI for light-weight local ephemeral volumes if the CSI driver is meant to be used that way - see the documentation of the driver for more information.  A pod can use both types of ephemeral volumes and persistent volumes at the same time.</TD></TR>
+<TR><TD><CODE>fc</CODE><BR /><I><a href="#fcvolumesource-v1-core">FCVolumeSource</a></I></TD><TD>fc represents a Fibre Channel resource that is attached to a kubelet&#39;s host machine and then exposed to the pod.</TD></TR>
+<TR><TD><CODE>flexVolume</CODE><BR /><I><a href="#flexvolumesource-v1-core">FlexVolumeSource</a></I></TD><TD>flexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin.</TD></TR>
+<TR><TD><CODE>flocker</CODE><BR /><I><a href="#flockervolumesource-v1-core">FlockerVolumeSource</a></I></TD><TD>flocker represents a Flocker volume attached to a kubelet&#39;s host machine. This depends on the Flocker control service being running</TD></TR>
+<TR><TD><CODE>gcePersistentDisk</CODE><BR /><I><a href="#gcepersistentdiskvolumesource-v1-core">GCEPersistentDiskVolumeSource</a></I></TD><TD>gcePersistentDisk represents a GCE Disk resource that is attached to a kubelet&#39;s host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk</TD></TR>
+<TR><TD><CODE>gitRepo</CODE><BR /><I><a href="#gitrepovolumesource-v1-core">GitRepoVolumeSource</a></I></TD><TD>gitRepo represents a git repository at a particular revision. DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod&#39;s container.</TD></TR>
+<TR><TD><CODE>glusterfs</CODE><BR /><I><a href="#glusterfsvolumesource-v1-core">GlusterfsVolumeSource</a></I></TD><TD>glusterfs represents a Glusterfs mount on the host that shares a pod&#39;s lifetime. More info: https://examples.k8s.io/volumes/glusterfs/README.md</TD></TR>
+<TR><TD><CODE>hostPath</CODE><BR /><I><a href="#hostpathvolumesource-v1-core">HostPathVolumeSource</a></I></TD><TD>hostPath represents a pre-existing file or directory on the host machine that is directly exposed to the container. This is generally used for system agents or other privileged things that are allowed to see the host machine. Most containers will NOT need this. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath</TD></TR>
+<TR><TD><CODE>iscsi</CODE><BR /><I><a href="#iscsivolumesource-v1-core">ISCSIVolumeSource</a></I></TD><TD>iscsi represents an ISCSI Disk resource that is attached to a kubelet&#39;s host machine and then exposed to the pod. More info: https://examples.k8s.io/volumes/iscsi/README.md</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name of the volume. Must be a DNS_LABEL and unique within the pod. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names</TD></TR>
+<TR><TD><CODE>nfs</CODE><BR /><I><a href="#nfsvolumesource-v1-core">NFSVolumeSource</a></I></TD><TD>nfs represents an NFS mount on the host that shares a pod&#39;s lifetime More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs</TD></TR>
+<TR><TD><CODE>persistentVolumeClaim</CODE><BR /><I><a href="#persistentvolumeclaimvolumesource-v1-core">PersistentVolumeClaimVolumeSource</a></I></TD><TD>persistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims</TD></TR>
+<TR><TD><CODE>photonPersistentDisk</CODE><BR /><I><a href="#photonpersistentdiskvolumesource-v1-core">PhotonPersistentDiskVolumeSource</a></I></TD><TD>photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine</TD></TR>
+<TR><TD><CODE>portworxVolume</CODE><BR /><I><a href="#portworxvolumesource-v1-core">PortworxVolumeSource</a></I></TD><TD>portworxVolume represents a portworx volume attached and mounted on kubelets host machine</TD></TR>
+<TR><TD><CODE>projected</CODE><BR /><I><a href="#projectedvolumesource-v1-core">ProjectedVolumeSource</a></I></TD><TD>projected items for all in one resources secrets, configmaps, and downward API</TD></TR>
+<TR><TD><CODE>quobyte</CODE><BR /><I><a href="#quobytevolumesource-v1-core">QuobyteVolumeSource</a></I></TD><TD>quobyte represents a Quobyte mount on the host that shares a pod&#39;s lifetime</TD></TR>
+<TR><TD><CODE>rbd</CODE><BR /><I><a href="#rbdvolumesource-v1-core">RBDVolumeSource</a></I></TD><TD>rbd represents a Rados Block Device mount on the host that shares a pod&#39;s lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md</TD></TR>
+<TR><TD><CODE>scaleIO</CODE><BR /><I><a href="#scaleiovolumesource-v1-core">ScaleIOVolumeSource</a></I></TD><TD>scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.</TD></TR>
+<TR><TD><CODE>secret</CODE><BR /><I><a href="#secretvolumesource-v1-core">SecretVolumeSource</a></I></TD><TD>secret represents a secret that should populate this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret</TD></TR>
+<TR><TD><CODE>storageos</CODE><BR /><I><a href="#storageosvolumesource-v1-core">StorageOSVolumeSource</a></I></TD><TD>storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.</TD></TR>
+<TR><TD><CODE>vsphereVolume</CODE><BR /><I><a href="#vspherevirtualdiskvolumesource-v1-core">VsphereVirtualDiskVolumeSource</a></I></TD><TD>vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="volumeattachment-v1-storage-k8s-io">VolumeAttachment v1 storage.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>VolumeAttachment</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volumeattachmentlist-v1-storage-k8s-io">VolumeAttachmentList [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#volumeattachmentspec-v1-storage-k8s-io">VolumeAttachmentSpec</a></I></TD><TD>Specification of the desired attach/detach volume behavior. Populated by the Kubernetes system.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#volumeattachmentstatus-v1-storage-k8s-io">VolumeAttachmentStatus</a></I></TD><TD>Status of the VolumeAttachment request. Populated by the entity completing the attach or detach operation, i.e. the external-attacher.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="volumeattachmentspec-v1-storage-k8s-io">VolumeAttachmentSpec v1 storage</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>attacher</CODE><BR /><I>string</I></TD><TD>Attacher indicates the name of the volume driver that MUST handle this request. This is the name returned by GetPluginName().</TD></TR>
+<TR><TD><CODE>nodeName</CODE><BR /><I>string</I></TD><TD>The node that the volume should be attached to.</TD></TR>
+<TR><TD><CODE>source</CODE><BR /><I><a href="#volumeattachmentsource-v1-storage-k8s-io">VolumeAttachmentSource</a></I></TD><TD>Source represents the volume that should be attached.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="volumeattachmentstatus-v1-storage-k8s-io">VolumeAttachmentStatus v1 storage</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>attachError</CODE><BR /><I><a href="#volumeerror-v1-storage-k8s-io">VolumeError</a></I></TD><TD>The last error encountered during attach operation, if any. This field must only be set by the entity completing the attach operation, i.e. the external-attacher.</TD></TR>
+<TR><TD><CODE>attached</CODE><BR /><I>boolean</I></TD><TD>Indicates the volume is successfully attached. This field must only be set by the entity completing the attach operation, i.e. the external-attacher.</TD></TR>
+<TR><TD><CODE>attachmentMetadata</CODE><BR /><I>object</I></TD><TD>Upon successful attach, this field is populated with any information returned by the attach operation that must be passed into subsequent WaitForAttach or Mount calls. This field must only be set by the entity completing the attach operation, i.e. the external-attacher.</TD></TR>
+<TR><TD><CODE>detachError</CODE><BR /><I><a href="#volumeerror-v1-storage-k8s-io">VolumeError</a></I></TD><TD>The last error encountered during detach operation, if any. This field must only be set by the entity completing the detach operation, i.e. the external-attacher.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="volumeattachmentlist-v1-storage-k8s-io">VolumeAttachmentList v1 storage</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a> array</I></TD><TD>Items is the list of VolumeAttachments</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-volumeattachment-v1-storage-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-volumeattachment-v1-storage-k8s-io">Create</H2>
+<P>create a VolumeAttachment</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/storage.k8s.io/v1/volumeattachments</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-volumeattachment-v1-storage-k8s-io">Patch</H2>
+<P>partially update the specified VolumeAttachment</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/storage.k8s.io/v1/volumeattachments/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the VolumeAttachment</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-volumeattachment-v1-storage-k8s-io">Replace</H2>
+<P>replace the specified VolumeAttachment</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/storage.k8s.io/v1/volumeattachments/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the VolumeAttachment</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-volumeattachment-v1-storage-k8s-io">Delete</H2>
+<P>delete a VolumeAttachment</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1/volumeattachments/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the VolumeAttachment</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-volumeattachment-v1-storage-k8s-io">Delete Collection</H2>
+<P>delete collection of VolumeAttachment</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1/volumeattachments</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-volumeattachment-v1-storage-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-volumeattachment-v1-storage-k8s-io">Read</H2>
+<P>read the specified VolumeAttachment</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/volumeattachments/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the VolumeAttachment</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-volumeattachment-v1-storage-k8s-io">List</H2>
+<P>list or watch objects of kind VolumeAttachment</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/volumeattachments</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#volumeattachmentlist-v1-storage-k8s-io">VolumeAttachmentList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-volumeattachment-v1-storage-k8s-io">Watch</H2>
+<P>watch changes to an object of kind VolumeAttachment. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/watch/volumeattachments/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the VolumeAttachment</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-volumeattachment-v1-storage-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of VolumeAttachment. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/watch/volumeattachments</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-volumeattachment-v1-storage-k8s-io-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-volumeattachment-v1-storage-k8s-io">Patch Status</H2>
+<P>partially update status of the specified VolumeAttachment</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/storage.k8s.io/v1/volumeattachments/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the VolumeAttachment</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-volumeattachment-v1-storage-k8s-io">Read Status</H2>
+<P>read status of the specified VolumeAttachment</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1/volumeattachments/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the VolumeAttachment</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-volumeattachment-v1-storage-k8s-io">Replace Status</H2>
+<P>replace status of the specified VolumeAttachment</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/storage.k8s.io/v1/volumeattachments/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the VolumeAttachment</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="-strong-metadata-apis-strong-"><STRONG>METADATA</STRONG></H1>
+
+<P>Metadata resources are responsible for configuring behavior of your other Resources within the Cluster.</P>
+
+<P>Common resource types:</P>
+<UL>
+<LI><A href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</A> (HPA) for automatically scaling the replicacount of your workloads in response to load.</LI>
+<LI><A href="#poddisruptionbudget-v1alpha1">PodDisruptionBudget</A> for configuring how many replicas in a given workload maybe made concurrently unavailable when performing maintenance.</LI>
+<LI><A href="#event-v1-core">Event</A> for notification of resource lifecycle events in the cluster.</LI>
+</UL>
+<HR />
+<H1 id="controllerrevision-v1-apps">ControllerRevision v1 apps</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ControllerRevision</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#controllerrevisionlist-v1-apps">ControllerRevisionList [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>data</CODE></TD><TD>Data is the serialized representation of the state.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>revision</CODE><BR /><I>integer</I></TD><TD>Revision indicates the revision of the state represented by Data.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="controllerrevisionlist-v1-apps">ControllerRevisionList v1 apps</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#controllerrevision-v1-apps">ControllerRevision</a> array</I></TD><TD>Items is the list of ControllerRevisions</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-controllerrevision-v1-apps-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-controllerrevision-v1-apps">Create</H2>
+<P>create a ControllerRevision</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/apps/v1/namespaces/{namespace}/controllerrevisions</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#controllerrevision-v1-apps">ControllerRevision</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#controllerrevision-v1-apps">ControllerRevision</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#controllerrevision-v1-apps">ControllerRevision</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#controllerrevision-v1-apps">ControllerRevision</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-controllerrevision-v1-apps">Patch</H2>
+<P>partially update the specified ControllerRevision</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apps/v1/namespaces/{namespace}/controllerrevisions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ControllerRevision</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#controllerrevision-v1-apps">ControllerRevision</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#controllerrevision-v1-apps">ControllerRevision</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-controllerrevision-v1-apps">Replace</H2>
+<P>replace the specified ControllerRevision</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apps/v1/namespaces/{namespace}/controllerrevisions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ControllerRevision</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#controllerrevision-v1-apps">ControllerRevision</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#controllerrevision-v1-apps">ControllerRevision</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#controllerrevision-v1-apps">ControllerRevision</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-controllerrevision-v1-apps">Delete</H2>
+<P>delete a ControllerRevision</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apps/v1/namespaces/{namespace}/controllerrevisions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ControllerRevision</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-controllerrevision-v1-apps">Delete Collection</H2>
+<P>delete collection of ControllerRevision</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apps/v1/namespaces/{namespace}/controllerrevisions</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-controllerrevision-v1-apps-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-controllerrevision-v1-apps">Read</H2>
+<P>read the specified ControllerRevision</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/controllerrevisions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ControllerRevision</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#controllerrevision-v1-apps">ControllerRevision</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-controllerrevision-v1-apps">List</H2>
+<P>list or watch objects of kind ControllerRevision</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/namespaces/{namespace}/controllerrevisions</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#controllerrevisionlist-v1-apps">ControllerRevisionList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-controllerrevision-v1-apps">List All Namespaces</H2>
+<P>list or watch objects of kind ControllerRevision</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/controllerrevisions</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#controllerrevisionlist-v1-apps">ControllerRevisionList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-controllerrevision-v1-apps">Watch</H2>
+<P>watch changes to an object of kind ControllerRevision. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/namespaces/{namespace}/controllerrevisions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ControllerRevision</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-controllerrevision-v1-apps">Watch List</H2>
+<P>watch individual changes to a list of ControllerRevision. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/namespaces/{namespace}/controllerrevisions</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-controllerrevision-v1-apps">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of ControllerRevision. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apps/v1/watch/controllerrevisions</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition v1 apiextensions.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CustomResourceDefinition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcedefinitionlist-v1-apiextensions-k8s-io">CustomResourceDefinitionList [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#customresourcedefinitionspec-v1-apiextensions-k8s-io">CustomResourceDefinitionSpec</a></I></TD><TD>spec describes how the user wants the resources to appear</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#customresourcedefinitionstatus-v1-apiextensions-k8s-io">CustomResourceDefinitionStatus</a></I></TD><TD>status indicates the actual state of the CustomResourceDefinition</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="customresourcedefinitionspec-v1-apiextensions-k8s-io">CustomResourceDefinitionSpec v1 apiextensions</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conversion</CODE><BR /><I><a href="#customresourceconversion-v1-apiextensions-k8s-io">CustomResourceConversion</a></I></TD><TD>conversion defines conversion settings for the CRD.</TD></TR>
+<TR><TD><CODE>group</CODE><BR /><I>string</I></TD><TD>group is the API group of the defined custom resource. The custom resources are served under `/apis/&lt;group&gt;/...`. Must match the name of the CustomResourceDefinition (in the form `&lt;names.plural&gt;.&lt;group&gt;`).</TD></TR>
+<TR><TD><CODE>names</CODE><BR /><I><a href="#customresourcedefinitionnames-v1-apiextensions-k8s-io">CustomResourceDefinitionNames</a></I></TD><TD>names specify the resource and kind names for the custom resource.</TD></TR>
+<TR><TD><CODE>preserveUnknownFields</CODE><BR /><I>boolean</I></TD><TD>preserveUnknownFields indicates that object fields which are not specified in the OpenAPI schema should be preserved when persisting to storage. apiVersion, kind, metadata and known fields inside metadata are always preserved. This field is deprecated in favor of setting `x-preserve-unknown-fields` to true in `spec.versions[*].schema.openAPIV3Schema`. See https://kubernetes.io/docs/tasks/access-kubernetes-api/custom-resources/custom-resource-definitions/#pruning-versus-preserving-unknown-fields for details.</TD></TR>
+<TR><TD><CODE>scope</CODE><BR /><I>string</I></TD><TD>scope indicates whether the defined custom resource is cluster- or namespace-scoped. Allowed values are `Cluster` and `Namespaced`.</TD></TR>
+<TR><TD><CODE>versions</CODE><BR /><I><a href="#customresourcedefinitionversion-v1-apiextensions-k8s-io">CustomResourceDefinitionVersion</a> array</I></TD><TD>versions is the list of all API versions of the defined custom resource. Version names are used to compute the order in which served versions are listed in API discovery. If the version string is &#34;kube-like&#34;, it will sort above non &#34;kube-like&#34; version strings, which are ordered lexicographically. &#34;Kube-like&#34; versions start with a &#34;v&#34;, then are followed by a number (the major version), then optionally the string &#34;alpha&#34; or &#34;beta&#34; and another number (the minor version). These are sorted first by GA &gt; beta &gt; alpha (where GA is a version with no suffix such as beta or alpha), and then by comparing major version, then minor version. An example sorted list of versions: v10, v2, v1, v11beta2, v10beta3, v3beta1, v12alpha1, v11alpha2, foo1, foo10.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="customresourcedefinitionstatus-v1-apiextensions-k8s-io">CustomResourceDefinitionStatus v1 apiextensions</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>acceptedNames</CODE><BR /><I><a href="#customresourcedefinitionnames-v1-apiextensions-k8s-io">CustomResourceDefinitionNames</a></I></TD><TD>acceptedNames are the names that are actually being used to serve discovery. They may be different than the names in spec.</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#customresourcedefinitioncondition-v1-apiextensions-k8s-io">CustomResourceDefinitionCondition</a> array</I></TD><TD>conditions indicate state for particular aspects of a CustomResourceDefinition</TD></TR>
+<TR><TD><CODE>storedVersions</CODE><BR /><I>string array</I></TD><TD>storedVersions lists all versions of CustomResources that were ever persisted. Tracking these versions allows a migration path for stored versions in etcd. The field is mutable so a migration controller can finish a migration to another version (ensuring no old objects are left in storage), and then remove the rest of the versions from this list. Versions may not be removed from `spec.versions` while they exist in this list.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="customresourcedefinitionlist-v1-apiextensions-k8s-io">CustomResourceDefinitionList v1 apiextensions</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a> array</I></TD><TD>items list individual CustomResourceDefinition objects</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard object&#39;s metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-customresourcedefinition-v1-apiextensions-k8s-io">Create</H2>
+<P>create a CustomResourceDefinition</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/apiextensions.k8s.io/v1/customresourcedefinitions</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-customresourcedefinition-v1-apiextensions-k8s-io">Patch</H2>
+<P>partially update the specified CustomResourceDefinition</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CustomResourceDefinition</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-customresourcedefinition-v1-apiextensions-k8s-io">Replace</H2>
+<P>replace the specified CustomResourceDefinition</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CustomResourceDefinition</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-customresourcedefinition-v1-apiextensions-k8s-io">Delete</H2>
+<P>delete a CustomResourceDefinition</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CustomResourceDefinition</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-customresourcedefinition-v1-apiextensions-k8s-io">Delete Collection</H2>
+<P>delete collection of CustomResourceDefinition</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apiextensions.k8s.io/v1/customresourcedefinitions</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-customresourcedefinition-v1-apiextensions-k8s-io">Read</H2>
+<P>read the specified CustomResourceDefinition</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CustomResourceDefinition</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-customresourcedefinition-v1-apiextensions-k8s-io">List</H2>
+<P>list or watch objects of kind CustomResourceDefinition</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apiextensions.k8s.io/v1/customresourcedefinitions</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#customresourcedefinitionlist-v1-apiextensions-k8s-io">CustomResourceDefinitionList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-customresourcedefinition-v1-apiextensions-k8s-io">Watch</H2>
+<P>watch changes to an object of kind CustomResourceDefinition. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apiextensions.k8s.io/v1/watch/customresourcedefinitions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CustomResourceDefinition</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-customresourcedefinition-v1-apiextensions-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of CustomResourceDefinition. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apiextensions.k8s.io/v1/watch/customresourcedefinitions</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-customresourcedefinition-v1-apiextensions-k8s-io">Patch Status</H2>
+<P>partially update status of the specified CustomResourceDefinition</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CustomResourceDefinition</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-customresourcedefinition-v1-apiextensions-k8s-io">Read Status</H2>
+<P>read status of the specified CustomResourceDefinition</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CustomResourceDefinition</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-customresourcedefinition-v1-apiextensions-k8s-io">Replace Status</H2>
+<P>replace status of the specified CustomResourceDefinition</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CustomResourceDefinition</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="event-v1-events-k8s-io">Event v1 events.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>events.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Event</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#event-v1beta1-events-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#eventlist-v1-events-k8s-io">EventList [events/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>action</CODE><BR /><I>string</I></TD><TD>action is what action was taken/failed regarding to the regarding object. It is machine-readable. This field cannot be empty for new Events and it can have at most 128 characters.</TD></TR>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>deprecatedCount</CODE><BR /><I>integer</I></TD><TD>deprecatedCount is the deprecated field assuring backward compatibility with core.v1 Event type.</TD></TR>
+<TR><TD><CODE>deprecatedFirstTimestamp</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>deprecatedFirstTimestamp is the deprecated field assuring backward compatibility with core.v1 Event type.</TD></TR>
+<TR><TD><CODE>deprecatedLastTimestamp</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>deprecatedLastTimestamp is the deprecated field assuring backward compatibility with core.v1 Event type.</TD></TR>
+<TR><TD><CODE>deprecatedSource</CODE><BR /><I><a href="#eventsource-v1-core">EventSource</a></I></TD><TD>deprecatedSource is the deprecated field assuring backward compatibility with core.v1 Event type.</TD></TR>
+<TR><TD><CODE>eventTime</CODE><BR /><I><a href="#microtime-v1-meta">MicroTime</a></I></TD><TD>eventTime is the time when this Event was first observed. It is required.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>note</CODE><BR /><I>string</I></TD><TD>note is a human-readable description of the status of this operation. Maximal length of the note is 1kB, but libraries should be prepared to handle values up to 64kB.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>reason is why the action was taken. It is human-readable. This field cannot be empty for new Events and it can have at most 128 characters.</TD></TR>
+<TR><TD><CODE>regarding</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>regarding contains the object this Event is about. In most cases it&#39;s an Object reporting controller implements, e.g. ReplicaSetController implements ReplicaSets and this event is emitted because it acts on some changes in a ReplicaSet object.</TD></TR>
+<TR><TD><CODE>related</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>related is the optional secondary object for more complex actions. E.g. when regarding object triggers a creation or deletion of related object.</TD></TR>
+<TR><TD><CODE>reportingController</CODE><BR /><I>string</I></TD><TD>reportingController is the name of the controller that emitted this Event, e.g. `kubernetes.io/kubelet`. This field cannot be empty for new Events.</TD></TR>
+<TR><TD><CODE>reportingInstance</CODE><BR /><I>string</I></TD><TD>reportingInstance is the ID of the controller instance, e.g. `kubelet-xyzf`. This field cannot be empty for new Events and it can have at most 128 characters.</TD></TR>
+<TR><TD><CODE>series</CODE><BR /><I><a href="#eventseries-v1-events-k8s-io">EventSeries</a></I></TD><TD>series is data about the Event series this event represents or nil if it&#39;s a singleton Event.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type is the type of this event (Normal, Warning), new types could be added in the future. It is machine-readable. This field cannot be empty for new Events.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="eventlist-v1-events-k8s-io">EventList v1 events</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#event-v1-events-k8s-io">Event</a> array</I></TD><TD>items is a list of schema objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-event-v1-events-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-event-v1-events-k8s-io">Create</H2>
+<P>create an Event</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/events.k8s.io/v1/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#event-v1-events-k8s-io">Event</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1-events-k8s-io">Event</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#event-v1-events-k8s-io">Event</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#event-v1-events-k8s-io">Event</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-event-v1-events-k8s-io">Patch</H2>
+<P>partially update the specified Event</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/events.k8s.io/v1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1-events-k8s-io">Event</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#event-v1-events-k8s-io">Event</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-event-v1-events-k8s-io">Replace</H2>
+<P>replace the specified Event</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/events.k8s.io/v1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#event-v1-events-k8s-io">Event</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1-events-k8s-io">Event</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#event-v1-events-k8s-io">Event</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-event-v1-events-k8s-io">Delete</H2>
+<P>delete an Event</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/events.k8s.io/v1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-event-v1-events-k8s-io">Delete Collection</H2>
+<P>delete collection of Event</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/events.k8s.io/v1/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-event-v1-events-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-event-v1-events-k8s-io">Read</H2>
+<P>read the specified Event</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1-events-k8s-io">Event</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-event-v1-events-k8s-io">List</H2>
+<P>list or watch objects of kind Event</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#eventlist-v1-events-k8s-io">EventList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-event-v1-events-k8s-io">List All Namespaces</H2>
+<P>list or watch objects of kind Event</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1/events</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#eventlist-v1-events-k8s-io">EventList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-event-v1-events-k8s-io">Watch</H2>
+<P>watch changes to an object of kind Event. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1/watch/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-event-v1-events-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of Event. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1/watch/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-event-v1-events-k8s-io">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Event. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1/watch/events</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="limitrange-v1-core">LimitRange v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>LimitRange</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#limitrangelist-v1-core">LimitRangeList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#limitrangespec-v1-core">LimitRangeSpec</a></I></TD><TD>Spec defines the limits enforced. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="limitrangespec-v1-core">LimitRangeSpec v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#limitrange-v1-core">LimitRange [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>limits</CODE><BR /><I><a href="#limitrangeitem-v1-core">LimitRangeItem</a> array</I></TD><TD>Limits is the list of LimitRangeItem objects that are enforced.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="limitrangelist-v1-core">LimitRangeList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#limitrange-v1-core">LimitRange</a> array</I></TD><TD>Items is a list of LimitRange objects. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-limitrange-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-limitrange-v1-core">Create</H2>
+<P>create a LimitRange</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/limitranges</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#limitrange-v1-core">LimitRange</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#limitrange-v1-core">LimitRange</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#limitrange-v1-core">LimitRange</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#limitrange-v1-core">LimitRange</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-limitrange-v1-core">Patch</H2>
+<P>partially update the specified LimitRange</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/limitranges/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the LimitRange</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#limitrange-v1-core">LimitRange</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#limitrange-v1-core">LimitRange</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-limitrange-v1-core">Replace</H2>
+<P>replace the specified LimitRange</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/limitranges/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the LimitRange</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#limitrange-v1-core">LimitRange</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#limitrange-v1-core">LimitRange</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#limitrange-v1-core">LimitRange</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-limitrange-v1-core">Delete</H2>
+<P>delete a LimitRange</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/limitranges/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the LimitRange</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-limitrange-v1-core">Delete Collection</H2>
+<P>delete collection of LimitRange</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/limitranges</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-limitrange-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-limitrange-v1-core">Read</H2>
+<P>read the specified LimitRange</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/limitranges/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the LimitRange</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#limitrange-v1-core">LimitRange</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-limitrange-v1-core">List</H2>
+<P>list or watch objects of kind LimitRange</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/limitranges</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#limitrangelist-v1-core">LimitRangeList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-limitrange-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind LimitRange</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/limitranges</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#limitrangelist-v1-core">LimitRangeList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-limitrange-v1-core">Watch</H2>
+<P>watch changes to an object of kind LimitRange. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/limitranges/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the LimitRange</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-limitrange-v1-core">Watch List</H2>
+<P>watch individual changes to a list of LimitRange. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/limitranges</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-limitrange-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of LimitRange. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/limitranges</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler v2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>HorizontalPodAutoscaler</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#horizontalpodautoscaler-v1-autoscaling">v1</a>
+<a href="#horizontalpodautoscaler-v2beta2-autoscaling">v2beta2</a>
+<a href="#horizontalpodautoscaler-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerlist-v2-autoscaling">HorizontalPodAutoscalerList [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>metadata is the standard object metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#horizontalpodautoscalerspec-v2-autoscaling">HorizontalPodAutoscalerSpec</a></I></TD><TD>spec is the specification for the behaviour of the autoscaler. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#horizontalpodautoscalerstatus-v2-autoscaling">HorizontalPodAutoscalerStatus</a></I></TD><TD>status is the current information about the autoscaler.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerspec-v2-autoscaling">HorizontalPodAutoscalerSpec v2 autoscaling</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>behavior</CODE><BR /><I><a href="#horizontalpodautoscalerbehavior-v2-autoscaling">HorizontalPodAutoscalerBehavior</a></I></TD><TD>behavior configures the scaling behavior of the target in both Up and Down directions (scaleUp and scaleDown fields respectively). If not set, the default HPAScalingRules for scale up and scale down are used.</TD></TR>
+<TR><TD><CODE>maxReplicas</CODE><BR /><I>integer</I></TD><TD>maxReplicas is the upper limit for the number of replicas to which the autoscaler can scale up. It cannot be less that minReplicas.</TD></TR>
+<TR><TD><CODE>metrics</CODE><BR /><I><a href="#metricspec-v2-autoscaling">MetricSpec</a> array</I></TD><TD>metrics contains the specifications for which to use to calculate the desired replica count (the maximum replica count across all metrics will be used).  The desired replica count is calculated multiplying the ratio between the target value and the current value by the current number of pods.  Ergo, metrics used must decrease as the pod count is increased, and vice-versa.  See the individual metric source types for more information about how each type of metric must respond. If not set, the default metric will be set to 80% average CPU utilization.</TD></TR>
+<TR><TD><CODE>minReplicas</CODE><BR /><I>integer</I></TD><TD>minReplicas is the lower limit for the number of replicas to which the autoscaler can scale down.  It defaults to 1 pod.  minReplicas is allowed to be 0 if the alpha feature gate HPAScaleToZero is enabled and at least one Object or External metric is configured.  Scaling is active as long as at least one metric value is available.</TD></TR>
+<TR><TD><CODE>scaleTargetRef</CODE><BR /><I><a href="#crossversionobjectreference-v2-autoscaling">CrossVersionObjectReference</a></I></TD><TD>scaleTargetRef points to the target resource to scale, and is used to the pods for which metrics should be collected, as well as to actually change the replica count.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerstatus-v2-autoscaling">HorizontalPodAutoscalerStatus v2 autoscaling</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#horizontalpodautoscalercondition-v2-autoscaling">HorizontalPodAutoscalerCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>conditions is the set of conditions required for this autoscaler to scale its target, and indicates whether or not those conditions are met.</TD></TR>
+<TR><TD><CODE>currentMetrics</CODE><BR /><I><a href="#metricstatus-v2-autoscaling">MetricStatus</a> array</I></TD><TD>currentMetrics is the last read state of the metrics used by this autoscaler.</TD></TR>
+<TR><TD><CODE>currentReplicas</CODE><BR /><I>integer</I></TD><TD>currentReplicas is current number of replicas of pods managed by this autoscaler, as last seen by the autoscaler.</TD></TR>
+<TR><TD><CODE>desiredReplicas</CODE><BR /><I>integer</I></TD><TD>desiredReplicas is the desired number of replicas of pods managed by this autoscaler, as last calculated by the autoscaler.</TD></TR>
+<TR><TD><CODE>lastScaleTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>lastScaleTime is the last time the HorizontalPodAutoscaler scaled the number of pods, used by the autoscaler to control how often the number of pods is changed.</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>observedGeneration is the most recent generation observed by this autoscaler.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerlist-v2-autoscaling">HorizontalPodAutoscalerList v2 autoscaling</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler</a> array</I></TD><TD>items is the list of horizontal pod autoscaler objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>metadata is the standard list metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-horizontalpodautoscaler-v2-autoscaling-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-horizontalpodautoscaler-v2-autoscaling">Create</H2>
+<P>create a HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-horizontalpodautoscaler-v2-autoscaling">Patch</H2>
+<P>partially update the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-horizontalpodautoscaler-v2-autoscaling">Replace</H2>
+<P>replace the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-horizontalpodautoscaler-v2-autoscaling">Delete</H2>
+<P>delete a HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-horizontalpodautoscaler-v2-autoscaling">Delete Collection</H2>
+<P>delete collection of HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-horizontalpodautoscaler-v2-autoscaling-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-horizontalpodautoscaler-v2-autoscaling">Read</H2>
+<P>read the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-horizontalpodautoscaler-v2-autoscaling">List</H2>
+<P>list or watch objects of kind HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscalerlist-v2-autoscaling">HorizontalPodAutoscalerList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-horizontalpodautoscaler-v2-autoscaling">List All Namespaces</H2>
+<P>list or watch objects of kind HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2/horizontalpodautoscalers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscalerlist-v2-autoscaling">HorizontalPodAutoscalerList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-horizontalpodautoscaler-v2-autoscaling">Watch</H2>
+<P>watch changes to an object of kind HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2/watch/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-horizontalpodautoscaler-v2-autoscaling">Watch List</H2>
+<P>watch individual changes to a list of HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2/watch/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-horizontalpodautoscaler-v2-autoscaling">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2/watch/horizontalpodautoscalers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-horizontalpodautoscaler-v2-autoscaling-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-horizontalpodautoscaler-v2-autoscaling">Patch Status</H2>
+<P>partially update status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-horizontalpodautoscaler-v2-autoscaling">Read Status</H2>
+<P>read status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-horizontalpodautoscaler-v2-autoscaling">Replace Status</H2>
+<P>replace status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration v1 admissionregistration.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>admissionregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>MutatingWebhookConfiguration</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#mutatingwebhookconfigurationlist-v1-admissionregistration-k8s-io">MutatingWebhookConfigurationList [admissionregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object metadata; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata.</TD></TR>
+<TR><TD><CODE>webhooks</CODE><BR /><I><a href="#mutatingwebhook-v1-admissionregistration-k8s-io">MutatingWebhook</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>name</I></TD><TD>Webhooks is a list of webhooks and the affected resources and operations.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="mutatingwebhookconfigurationlist-v1-admissionregistration-k8s-io">MutatingWebhookConfigurationList v1 admissionregistration</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration</a> array</I></TD><TD>List of MutatingWebhookConfiguration.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">Create</H2>
+<P>create a MutatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">Patch</H2>
+<P>partially update the specified MutatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the MutatingWebhookConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">Replace</H2>
+<P>replace the specified MutatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the MutatingWebhookConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">Delete</H2>
+<P>delete a MutatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the MutatingWebhookConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">Delete Collection</H2>
+<P>delete collection of MutatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">Read</H2>
+<P>read the specified MutatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the MutatingWebhookConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">List</H2>
+<P>list or watch objects of kind MutatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#mutatingwebhookconfigurationlist-v1-admissionregistration-k8s-io">MutatingWebhookConfigurationList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">Watch</H2>
+<P>watch changes to an object of kind MutatingWebhookConfiguration. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/admissionregistration.k8s.io/v1/watch/mutatingwebhookconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the MutatingWebhookConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of MutatingWebhookConfiguration. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/admissionregistration.k8s.io/v1/watch/mutatingwebhookconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration v1 admissionregistration.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>admissionregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ValidatingWebhookConfiguration</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#validatingwebhookconfigurationlist-v1-admissionregistration-k8s-io">ValidatingWebhookConfigurationList [admissionregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object metadata; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata.</TD></TR>
+<TR><TD><CODE>webhooks</CODE><BR /><I><a href="#validatingwebhook-v1-admissionregistration-k8s-io">ValidatingWebhook</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>name</I></TD><TD>Webhooks is a list of webhooks and the affected resources and operations.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="validatingwebhookconfigurationlist-v1-admissionregistration-k8s-io">ValidatingWebhookConfigurationList v1 admissionregistration</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration</a> array</I></TD><TD>List of ValidatingWebhookConfiguration.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-validatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-validatingwebhookconfiguration-v1-admissionregistration-k8s-io">Create</H2>
+<P>create a ValidatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-validatingwebhookconfiguration-v1-admissionregistration-k8s-io">Patch</H2>
+<P>partially update the specified ValidatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ValidatingWebhookConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-validatingwebhookconfiguration-v1-admissionregistration-k8s-io">Replace</H2>
+<P>replace the specified ValidatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ValidatingWebhookConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-validatingwebhookconfiguration-v1-admissionregistration-k8s-io">Delete</H2>
+<P>delete a ValidatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ValidatingWebhookConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-validatingwebhookconfiguration-v1-admissionregistration-k8s-io">Delete Collection</H2>
+<P>delete collection of ValidatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-validatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-validatingwebhookconfiguration-v1-admissionregistration-k8s-io">Read</H2>
+<P>read the specified ValidatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ValidatingWebhookConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-validatingwebhookconfiguration-v1-admissionregistration-k8s-io">List</H2>
+<P>list or watch objects of kind ValidatingWebhookConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#validatingwebhookconfigurationlist-v1-admissionregistration-k8s-io">ValidatingWebhookConfigurationList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-validatingwebhookconfiguration-v1-admissionregistration-k8s-io">Watch</H2>
+<P>watch changes to an object of kind ValidatingWebhookConfiguration. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/admissionregistration.k8s.io/v1/watch/validatingwebhookconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ValidatingWebhookConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-validatingwebhookconfiguration-v1-admissionregistration-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of ValidatingWebhookConfiguration. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/admissionregistration.k8s.io/v1/watch/validatingwebhookconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="podtemplate-v1-core">PodTemplate v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodTemplate</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podtemplatelist-v1-core">PodTemplateList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>template</CODE><BR /><I><a href="#podtemplatespec-v1-core">PodTemplateSpec</a></I></TD><TD>Template defines the pods that will be created from this pod template. https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="podtemplatespec-v1-core">PodTemplateSpec v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#daemonsetspec-v1-apps">DaemonSetSpec [apps/v1]</a></LI>
+  <LI><a href="#deploymentspec-v1-apps">DeploymentSpec [apps/v1]</a></LI>
+  <LI><a href="#jobspec-v1-batch">JobSpec [batch/v1]</a></LI>
+  <LI><a href="#podtemplate-v1-core">PodTemplate [core/v1]</a></LI>
+  <LI><a href="#replicasetspec-v1-apps">ReplicaSetSpec [apps/v1]</a></LI>
+  <LI><a href="#replicationcontrollerspec-v1-core">ReplicationControllerSpec [core/v1]</a></LI>
+  <LI><a href="#statefulsetspec-v1-apps">StatefulSetSpec [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#podspec-v1-core">PodSpec</a></I></TD><TD>Specification of the desired behavior of the pod. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="podtemplatelist-v1-core">PodTemplateList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#podtemplate-v1-core">PodTemplate</a> array</I></TD><TD>List of pod templates</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-podtemplate-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-podtemplate-v1-core">Create</H2>
+<P>create a PodTemplate</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/podtemplates</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-podtemplate-v1-core">Patch</H2>
+<P>partially update the specified PodTemplate</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/podtemplates/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodTemplate</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-podtemplate-v1-core">Replace</H2>
+<P>replace the specified PodTemplate</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/podtemplates/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodTemplate</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-podtemplate-v1-core">Delete</H2>
+<P>delete a PodTemplate</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/podtemplates/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodTemplate</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-podtemplate-v1-core">Delete Collection</H2>
+<P>delete collection of PodTemplate</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/podtemplates</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-podtemplate-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-podtemplate-v1-core">Read</H2>
+<P>read the specified PodTemplate</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/podtemplates/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodTemplate</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podtemplate-v1-core">PodTemplate</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-podtemplate-v1-core">List</H2>
+<P>list or watch objects of kind PodTemplate</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/podtemplates</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podtemplatelist-v1-core">PodTemplateList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-podtemplate-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind PodTemplate</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/podtemplates</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podtemplatelist-v1-core">PodTemplateList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-podtemplate-v1-core">Watch</H2>
+<P>watch changes to an object of kind PodTemplate. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/podtemplates/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodTemplate</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-podtemplate-v1-core">Watch List</H2>
+<P>watch individual changes to a list of PodTemplate. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/podtemplates</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-podtemplate-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of PodTemplate. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/podtemplates</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="poddisruptionbudget-v1-policy">PodDisruptionBudget v1 policy</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodDisruptionBudget</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#poddisruptionbudget-v1beta1-policy">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#poddisruptionbudgetlist-v1-policy">PodDisruptionBudgetList [policy/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#poddisruptionbudgetspec-v1-policy">PodDisruptionBudgetSpec</a></I></TD><TD>Specification of the desired behavior of the PodDisruptionBudget.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#poddisruptionbudgetstatus-v1-policy">PodDisruptionBudgetStatus</a></I></TD><TD>Most recently observed status of the PodDisruptionBudget.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="poddisruptionbudgetspec-v1-policy">PodDisruptionBudgetSpec v1 policy</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget [policy/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>maxUnavailable</CODE></TD><TD>An eviction is allowed if at most &#34;maxUnavailable&#34; pods selected by &#34;selector&#34; are unavailable after the eviction, i.e. even in absence of the evicted pod. For example, one can prevent all voluntary evictions by specifying 0. This is a mutually exclusive setting with &#34;minAvailable&#34;.</TD></TR>
+<TR><TD><CODE>minAvailable</CODE></TD><TD>An eviction is allowed if at least &#34;minAvailable&#34; pods selected by &#34;selector&#34; will still be available after the eviction, i.e. even in the absence of the evicted pod.  So for example you can prevent all voluntary evictions by specifying &#34;100%&#34;.</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I><BR /><B>patch strategy</B>: <I>replace</I></TD><TD>Label query over pods whose evictions are managed by the disruption budget. A null selector will match no pods, while an empty ({}) selector will select all pods within the namespace.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="poddisruptionbudgetstatus-v1-policy">PodDisruptionBudgetStatus v1 policy</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget [policy/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#condition-v1-meta">Condition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Conditions contain conditions for PDB. The disruption controller sets the DisruptionAllowed condition. The following are known values for the reason field (additional reasons could be added in the future): - SyncFailed: The controller encountered an error and wasn&#39;t able to compute               the number of allowed disruptions. Therefore no disruptions are               allowed and the status of the condition will be False. - InsufficientPods: The number of pods are either at or below the number                     required by the PodDisruptionBudget. No disruptions are                     allowed and the status of the condition will be False. - SufficientPods: There are more pods than required by the PodDisruptionBudget.                   The condition will be True, and the number of allowed                   disruptions are provided by the disruptionsAllowed property.</TD></TR>
+<TR><TD><CODE>currentHealthy</CODE><BR /><I>integer</I></TD><TD>current number of healthy pods</TD></TR>
+<TR><TD><CODE>desiredHealthy</CODE><BR /><I>integer</I></TD><TD>minimum desired number of healthy pods</TD></TR>
+<TR><TD><CODE>disruptedPods</CODE><BR /><I>object</I></TD><TD>DisruptedPods contains information about pods whose eviction was processed by the API server eviction subresource handler but has not yet been observed by the PodDisruptionBudget controller. A pod will be in this map from the time when the API server processed the eviction request to the time when the pod is seen by PDB controller as having been marked for deletion (or after a timeout). The key in the map is the name of the pod and the value is the time when the API server processed the eviction request. If the deletion didn&#39;t occur and a pod is still there it will be removed from the list automatically by PodDisruptionBudget controller after some time. If everything goes smooth this map should be empty for the most of the time. Large number of entries in the map may indicate problems with pod deletions.</TD></TR>
+<TR><TD><CODE>disruptionsAllowed</CODE><BR /><I>integer</I></TD><TD>Number of pod disruptions that are currently allowed.</TD></TR>
+<TR><TD><CODE>expectedPods</CODE><BR /><I>integer</I></TD><TD>total number of pods counted by this disruption budget</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>Most recent generation observed when updating this PDB status. DisruptionsAllowed and other status information is valid only if observedGeneration equals to PDB&#39;s object generation.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="poddisruptionbudgetlist-v1-policy">PodDisruptionBudgetList v1 policy</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a> array</I></TD><TD>Items is a list of PodDisruptionBudgets</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-poddisruptionbudget-v1-policy-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-poddisruptionbudget-v1-policy">Create</H2>
+<P>create a PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-poddisruptionbudget-v1-policy">Patch</H2>
+<P>partially update the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-poddisruptionbudget-v1-policy">Replace</H2>
+<P>replace the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-poddisruptionbudget-v1-policy">Delete</H2>
+<P>delete a PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-poddisruptionbudget-v1-policy">Delete Collection</H2>
+<P>delete collection of PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-poddisruptionbudget-v1-policy-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-poddisruptionbudget-v1-policy">Read</H2>
+<P>read the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-poddisruptionbudget-v1-policy">List</H2>
+<P>list or watch objects of kind PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudgetlist-v1-policy">PodDisruptionBudgetList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-poddisruptionbudget-v1-policy">List All Namespaces</H2>
+<P>list or watch objects of kind PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1/poddisruptionbudgets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudgetlist-v1-policy">PodDisruptionBudgetList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-poddisruptionbudget-v1-policy">Watch</H2>
+<P>watch changes to an object of kind PodDisruptionBudget. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1/watch/namespaces/{namespace}/poddisruptionbudgets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-poddisruptionbudget-v1-policy">Watch List</H2>
+<P>watch individual changes to a list of PodDisruptionBudget. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1/watch/namespaces/{namespace}/poddisruptionbudgets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-poddisruptionbudget-v1-policy">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of PodDisruptionBudget. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1/watch/poddisruptionbudgets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-poddisruptionbudget-v1-policy-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-poddisruptionbudget-v1-policy">Patch Status</H2>
+<P>partially update status of the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-poddisruptionbudget-v1-policy">Read Status</H2>
+<P>read status of the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-poddisruptionbudget-v1-policy">Replace Status</H2>
+<P>replace status of the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="priorityclass-v1-scheduling-k8s-io">PriorityClass v1 scheduling.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>scheduling.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PriorityClass</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#priorityclasslist-v1-scheduling-k8s-io">PriorityClassList [scheduling/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>description</CODE><BR /><I>string</I></TD><TD>description is an arbitrary string that usually provides guidelines on when this priority class should be used.</TD></TR>
+<TR><TD><CODE>globalDefault</CODE><BR /><I>boolean</I></TD><TD>globalDefault specifies whether this PriorityClass should be considered as the default priority for pods that do not have any priority class. Only one PriorityClass can be marked as `globalDefault`. However, if more than one PriorityClasses exists with their `globalDefault` field set to true, the smallest value of such global default PriorityClasses will be used as the default priority.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>preemptionPolicy</CODE><BR /><I>string</I></TD><TD>PreemptionPolicy is the Policy for preempting pods with lower priority. One of Never, PreemptLowerPriority. Defaults to PreemptLowerPriority if unset.</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I>integer</I></TD><TD>The value of this priority class. This is the actual priority that pods receive when they have the name of this class in their pod spec.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="priorityclasslist-v1-scheduling-k8s-io">PriorityClassList v1 scheduling</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass</a> array</I></TD><TD>items is the list of PriorityClasses</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-priorityclass-v1-scheduling-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-priorityclass-v1-scheduling-k8s-io">Create</H2>
+<P>create a PriorityClass</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/scheduling.k8s.io/v1/priorityclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-priorityclass-v1-scheduling-k8s-io">Patch</H2>
+<P>partially update the specified PriorityClass</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/scheduling.k8s.io/v1/priorityclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-priorityclass-v1-scheduling-k8s-io">Replace</H2>
+<P>replace the specified PriorityClass</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/scheduling.k8s.io/v1/priorityclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-priorityclass-v1-scheduling-k8s-io">Delete</H2>
+<P>delete a PriorityClass</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/scheduling.k8s.io/v1/priorityclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-priorityclass-v1-scheduling-k8s-io">Delete Collection</H2>
+<P>delete collection of PriorityClass</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/scheduling.k8s.io/v1/priorityclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-priorityclass-v1-scheduling-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-priorityclass-v1-scheduling-k8s-io">Read</H2>
+<P>read the specified PriorityClass</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/scheduling.k8s.io/v1/priorityclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-priorityclass-v1-scheduling-k8s-io">List</H2>
+<P>list or watch objects of kind PriorityClass</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/scheduling.k8s.io/v1/priorityclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#priorityclasslist-v1-scheduling-k8s-io">PriorityClassList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-priorityclass-v1-scheduling-k8s-io">Watch</H2>
+<P>watch changes to an object of kind PriorityClass. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/scheduling.k8s.io/v1/watch/priorityclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-priorityclass-v1-scheduling-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of PriorityClass. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/scheduling.k8s.io/v1/watch/priorityclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="podsecuritypolicy-v1beta1-policy">PodSecurityPolicy v1beta1 policy</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>PodSecurityPolicy</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicylist-v1beta1-policy">PodSecurityPolicyList [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec</a></I></TD><TD>spec defines the policy enforced.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec v1beta1 policy</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowPrivilegeEscalation</CODE><BR /><I>boolean</I></TD><TD>allowPrivilegeEscalation determines if a pod can request to allow privilege escalation. If unspecified, defaults to true.</TD></TR>
+<TR><TD><CODE>allowedCSIDrivers</CODE><BR /><I><a href="#allowedcsidriver-v1beta1-policy">AllowedCSIDriver</a> array</I></TD><TD>AllowedCSIDrivers is an allowlist of inline CSI drivers that must be explicitly set to be embedded within a pod spec. An empty value indicates that any CSI driver can be used for inline ephemeral volumes. This is a beta field, and is only honored if the API server enables the CSIInlineVolume feature gate.</TD></TR>
+<TR><TD><CODE>allowedCapabilities</CODE><BR /><I>string array</I></TD><TD>allowedCapabilities is a list of capabilities that can be requested to add to the container. Capabilities in this field may be added at the pod author&#39;s discretion. You must not list a capability in both allowedCapabilities and requiredDropCapabilities.</TD></TR>
+<TR><TD><CODE>allowedFlexVolumes</CODE><BR /><I><a href="#allowedflexvolume-v1beta1-policy">AllowedFlexVolume</a> array</I></TD><TD>allowedFlexVolumes is an allowlist of Flexvolumes.  Empty or nil indicates that all Flexvolumes may be used.  This parameter is effective only when the usage of the Flexvolumes is allowed in the &#34;volumes&#34; field.</TD></TR>
+<TR><TD><CODE>allowedHostPaths</CODE><BR /><I><a href="#allowedhostpath-v1beta1-policy">AllowedHostPath</a> array</I></TD><TD>allowedHostPaths is an allowlist of host paths. Empty indicates that all host paths may be used.</TD></TR>
+<TR><TD><CODE>allowedProcMountTypes</CODE><BR /><I>string array</I></TD><TD>AllowedProcMountTypes is an allowlist of allowed ProcMountTypes. Empty or nil indicates that only the DefaultProcMountType may be used. This requires the ProcMountType feature flag to be enabled.</TD></TR>
+<TR><TD><CODE>allowedUnsafeSysctls</CODE><BR /><I>string array</I></TD><TD>allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none. Each entry is either a plain sysctl name or ends in &#34;*&#34; in which case it is considered as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed. Kubelet has to allowlist all allowed unsafe sysctls explicitly to avoid rejection.  Examples: e.g. &#34;foo/*&#34; allows &#34;foo/bar&#34;, &#34;foo/baz&#34;, etc. e.g. &#34;foo.*&#34; allows &#34;foo.bar&#34;, &#34;foo.baz&#34;, etc.</TD></TR>
+<TR><TD><CODE>defaultAddCapabilities</CODE><BR /><I>string array</I></TD><TD>defaultAddCapabilities is the default set of capabilities that will be added to the container unless the pod spec specifically drops the capability.  You may not list a capability in both defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly allowed, and need not be included in the allowedCapabilities list.</TD></TR>
+<TR><TD><CODE>defaultAllowPrivilegeEscalation</CODE><BR /><I>boolean</I></TD><TD>defaultAllowPrivilegeEscalation controls the default setting for whether a process can gain more privileges than its parent process.</TD></TR>
+<TR><TD><CODE>forbiddenSysctls</CODE><BR /><I>string array</I></TD><TD>forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none. Each entry is either a plain sysctl name or ends in &#34;*&#34; in which case it is considered as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.  Examples: e.g. &#34;foo/*&#34; forbids &#34;foo/bar&#34;, &#34;foo/baz&#34;, etc. e.g. &#34;foo.*&#34; forbids &#34;foo.bar&#34;, &#34;foo.baz&#34;, etc.</TD></TR>
+<TR><TD><CODE>fsGroup</CODE><BR /><I><a href="#fsgroupstrategyoptions-v1beta1-policy">FSGroupStrategyOptions</a></I></TD><TD>fsGroup is the strategy that will dictate what fs group is used by the SecurityContext.</TD></TR>
+<TR><TD><CODE>hostIPC</CODE><BR /><I>boolean</I></TD><TD>hostIPC determines if the policy allows the use of HostIPC in the pod spec.</TD></TR>
+<TR><TD><CODE>hostNetwork</CODE><BR /><I>boolean</I></TD><TD>hostNetwork determines if the policy allows the use of HostNetwork in the pod spec.</TD></TR>
+<TR><TD><CODE>hostPID</CODE><BR /><I>boolean</I></TD><TD>hostPID determines if the policy allows the use of HostPID in the pod spec.</TD></TR>
+<TR><TD><CODE>hostPorts</CODE><BR /><I><a href="#hostportrange-v1beta1-policy">HostPortRange</a> array</I></TD><TD>hostPorts determines which host port ranges are allowed to be exposed.</TD></TR>
+<TR><TD><CODE>privileged</CODE><BR /><I>boolean</I></TD><TD>privileged determines if a pod can request to be run as privileged.</TD></TR>
+<TR><TD><CODE>readOnlyRootFilesystem</CODE><BR /><I>boolean</I></TD><TD>readOnlyRootFilesystem when set to true will force containers to run with a read only root file system.  If the container specifically requests to run with a non-read only root file system the PSP should deny the pod. If set to false the container may run with a read only root file system if it wishes but it will not be forced to.</TD></TR>
+<TR><TD><CODE>requiredDropCapabilities</CODE><BR /><I>string array</I></TD><TD>requiredDropCapabilities are the capabilities that will be dropped from the container.  These are required to be dropped and cannot be added.</TD></TR>
+<TR><TD><CODE>runAsGroup</CODE><BR /><I><a href="#runasgroupstrategyoptions-v1beta1-policy">RunAsGroupStrategyOptions</a></I></TD><TD>RunAsGroup is the strategy that will dictate the allowable RunAsGroup values that may be set. If this field is omitted, the pod&#39;s RunAsGroup can take any value. This field requires the RunAsGroup feature gate to be enabled.</TD></TR>
+<TR><TD><CODE>runAsUser</CODE><BR /><I><a href="#runasuserstrategyoptions-v1beta1-policy">RunAsUserStrategyOptions</a></I></TD><TD>runAsUser is the strategy that will dictate the allowable RunAsUser values that may be set.</TD></TR>
+<TR><TD><CODE>runtimeClass</CODE><BR /><I><a href="#runtimeclassstrategyoptions-v1beta1-policy">RuntimeClassStrategyOptions</a></I></TD><TD>runtimeClass is the strategy that will dictate the allowable RuntimeClasses for a pod. If this field is omitted, the pod&#39;s runtimeClassName field is unrestricted. Enforcement of this field depends on the RuntimeClass feature gate being enabled.</TD></TR>
+<TR><TD><CODE>seLinux</CODE><BR /><I><a href="#selinuxstrategyoptions-v1beta1-policy">SELinuxStrategyOptions</a></I></TD><TD>seLinux is the strategy that will dictate the allowable labels that may be set.</TD></TR>
+<TR><TD><CODE>supplementalGroups</CODE><BR /><I><a href="#supplementalgroupsstrategyoptions-v1beta1-policy">SupplementalGroupsStrategyOptions</a></I></TD><TD>supplementalGroups is the strategy that will dictate what supplemental groups are used by the SecurityContext.</TD></TR>
+<TR><TD><CODE>volumes</CODE><BR /><I>string array</I></TD><TD>volumes is an allowlist of volume plugins. Empty indicates that no volumes may be used. To allow all volumes you may use &#39;\*&#39;.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="podsecuritypolicylist-v1beta1-policy">PodSecurityPolicyList v1beta1 policy</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a> array</I></TD><TD>items is a list of schema objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-podsecuritypolicy-v1beta1-policy-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-podsecuritypolicy-v1beta1-policy">Create</H2>
+<P>create a PodSecurityPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/policy/v1beta1/podsecuritypolicies</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-podsecuritypolicy-v1beta1-policy">Patch</H2>
+<P>partially update the specified PodSecurityPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/policy/v1beta1/podsecuritypolicies/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodSecurityPolicy</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-podsecuritypolicy-v1beta1-policy">Replace</H2>
+<P>replace the specified PodSecurityPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/policy/v1beta1/podsecuritypolicies/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodSecurityPolicy</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-podsecuritypolicy-v1beta1-policy">Delete</H2>
+<P>delete a PodSecurityPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/policy/v1beta1/podsecuritypolicies/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodSecurityPolicy</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-podsecuritypolicy-v1beta1-policy">Delete Collection</H2>
+<P>delete collection of PodSecurityPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/policy/v1beta1/podsecuritypolicies</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-podsecuritypolicy-v1beta1-policy-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-podsecuritypolicy-v1beta1-policy">Read</H2>
+<P>read the specified PodSecurityPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1beta1/podsecuritypolicies/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodSecurityPolicy</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-podsecuritypolicy-v1beta1-policy">List</H2>
+<P>list or watch objects of kind PodSecurityPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1beta1/podsecuritypolicies</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#podsecuritypolicylist-v1beta1-policy">PodSecurityPolicyList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-podsecuritypolicy-v1beta1-policy">Watch</H2>
+<P>watch changes to an object of kind PodSecurityPolicy. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1beta1/watch/podsecuritypolicies/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodSecurityPolicy</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-podsecuritypolicy-v1beta1-policy">Watch List</H2>
+<P>watch individual changes to a list of PodSecurityPolicy. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1beta1/watch/podsecuritypolicies</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="-strong-cluster-apis-strong-"><strong>CLUSTER</strong></H1>
+
+<P>Cluster resources are responsible for defining configuration of the cluster itself, and are generally only used by cluster operators.</P>
+
+<HR />
+<H1 id="apiservice-v1-apiregistration-k8s-io">APIService v1 apiregistration.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>APIService</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apiservicelist-v1-apiregistration-k8s-io">APIServiceList [apiregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#apiservicespec-v1-apiregistration-k8s-io">APIServiceSpec</a></I></TD><TD>Spec contains information for locating and communicating with a server</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#apiservicestatus-v1-apiregistration-k8s-io">APIServiceStatus</a></I></TD><TD>Status contains derived information about an API server</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="apiservicespec-v1-apiregistration-k8s-io">APIServiceSpec v1 apiregistration</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apiservice-v1-apiregistration-k8s-io">APIService [apiregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>caBundle</CODE><BR /><I>string</I></TD><TD>CABundle is a PEM encoded CA bundle which will be used to validate an API server&#39;s serving certificate. If unspecified, system trust roots on the apiserver are used.</TD></TR>
+<TR><TD><CODE>group</CODE><BR /><I>string</I></TD><TD>Group is the API group name this server hosts</TD></TR>
+<TR><TD><CODE>groupPriorityMinimum</CODE><BR /><I>integer</I></TD><TD>GroupPriorityMininum is the priority this group should have at least. Higher priority means that the group is preferred by clients over lower priority ones. Note that other versions of this group might specify even higher GroupPriorityMininum values such that the whole group gets a higher priority. The primary sort is based on GroupPriorityMinimum, ordered highest number to lowest (20 before 10). The secondary sort is based on the alphabetical comparison of the name of the object.  (v1.bar before v1.foo) We&#39;d recommend something like: *.k8s.io (except extensions) at 18000 and PaaSes (OpenShift, Deis) are recommended to be in the 2000s</TD></TR>
+<TR><TD><CODE>insecureSkipTLSVerify</CODE><BR /><I>boolean</I></TD><TD>InsecureSkipTLSVerify disables TLS certificate verification when communicating with this server. This is strongly discouraged.  You should use the CABundle instead.</TD></TR>
+<TR><TD><CODE>service</CODE><BR /><I><a href="#servicereference-v1-apiregistration-k8s-io">ServiceReference</a></I></TD><TD>Service is a reference to the service for this API server.  It must communicate on port 443. If the Service is nil, that means the handling for the API groupversion is handled locally on this server. The call will simply delegate to the normal handler chain to be fulfilled.</TD></TR>
+<TR><TD><CODE>version</CODE><BR /><I>string</I></TD><TD>Version is the API version this server hosts.  For example, &#34;v1&#34;</TD></TR>
+<TR><TD><CODE>versionPriority</CODE><BR /><I>integer</I></TD><TD>VersionPriority controls the ordering of this API version inside of its group.  Must be greater than zero. The primary sort is based on VersionPriority, ordered highest to lowest (20 before 10). Since it&#39;s inside of a group, the number can be small, probably in the 10s. In case of equal version priorities, the version string will be used to compute the order inside a group. If the version string is &#34;kube-like&#34;, it will sort above non &#34;kube-like&#34; version strings, which are ordered lexicographically. &#34;Kube-like&#34; versions start with a &#34;v&#34;, then are followed by a number (the major version), then optionally the string &#34;alpha&#34; or &#34;beta&#34; and another number (the minor version). These are sorted first by GA &gt; beta &gt; alpha (where GA is a version with no suffix such as beta or alpha), and then by comparing major version, then minor version. An example sorted list of versions: v10, v2, v1, v11beta2, v10beta3, v3beta1, v12alpha1, v11alpha2, foo1, foo10.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="apiservicestatus-v1-apiregistration-k8s-io">APIServiceStatus v1 apiregistration</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apiservice-v1-apiregistration-k8s-io">APIService [apiregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#apiservicecondition-v1-apiregistration-k8s-io">APIServiceCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Current service state of apiService.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="apiservicelist-v1-apiregistration-k8s-io">APIServiceList v1 apiregistration</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a> array</I></TD><TD>Items is the list of APIService</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-apiservice-v1-apiregistration-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-apiservice-v1-apiregistration-k8s-io">Create</H2>
+<P>create an APIService</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/apiregistration.k8s.io/v1/apiservices</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-apiservice-v1-apiregistration-k8s-io">Patch</H2>
+<P>partially update the specified APIService</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apiregistration.k8s.io/v1/apiservices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the APIService</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-apiservice-v1-apiregistration-k8s-io">Replace</H2>
+<P>replace the specified APIService</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apiregistration.k8s.io/v1/apiservices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the APIService</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-apiservice-v1-apiregistration-k8s-io">Delete</H2>
+<P>delete an APIService</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apiregistration.k8s.io/v1/apiservices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the APIService</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-apiservice-v1-apiregistration-k8s-io">Delete Collection</H2>
+<P>delete collection of APIService</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/apiregistration.k8s.io/v1/apiservices</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-apiservice-v1-apiregistration-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-apiservice-v1-apiregistration-k8s-io">Read</H2>
+<P>read the specified APIService</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apiregistration.k8s.io/v1/apiservices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the APIService</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-apiservice-v1-apiregistration-k8s-io">List</H2>
+<P>list or watch objects of kind APIService</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apiregistration.k8s.io/v1/apiservices</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#apiservicelist-v1-apiregistration-k8s-io">APIServiceList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-apiservice-v1-apiregistration-k8s-io">Watch</H2>
+<P>watch changes to an object of kind APIService. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apiregistration.k8s.io/v1/watch/apiservices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the APIService</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-apiservice-v1-apiregistration-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of APIService. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apiregistration.k8s.io/v1/watch/apiservices</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-apiservice-v1-apiregistration-k8s-io-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-apiservice-v1-apiregistration-k8s-io">Patch Status</H2>
+<P>partially update status of the specified APIService</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/apiregistration.k8s.io/v1/apiservices/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the APIService</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-apiservice-v1-apiregistration-k8s-io">Read Status</H2>
+<P>read status of the specified APIService</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/apiregistration.k8s.io/v1/apiservices/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the APIService</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-apiservice-v1-apiregistration-k8s-io">Replace Status</H2>
+<P>replace status of the specified APIService</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/apiregistration.k8s.io/v1/apiservices/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the APIService</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#apiservice-v1-apiregistration-k8s-io">APIService</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="binding-v1-core">Binding v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Binding</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>The target object that you want to bind to the standard object.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-binding-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-binding-v1-core">Create</H2>
+<P>create a Binding</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/bindings</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#binding-v1-core">Binding</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#binding-v1-core">Binding</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#binding-v1-core">Binding</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#binding-v1-core">Binding</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest v1 certificates.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>certificates.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CertificateSigningRequest</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#certificatesigningrequestlist-v1-certificates-k8s-io">CertificateSigningRequestList [certificates/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD></TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#certificatesigningrequestspec-v1-certificates-k8s-io">CertificateSigningRequestSpec</a></I></TD><TD>spec contains the certificate request, and is immutable after creation. Only the request, signerName, expirationSeconds, and usages fields can be set on creation. Other fields are derived by Kubernetes and cannot be modified by users.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#certificatesigningrequeststatus-v1-certificates-k8s-io">CertificateSigningRequestStatus</a></I></TD><TD>status contains information about whether the request is approved or denied, and the certificate issued by the signer, or the failure condition indicating signer failure.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="certificatesigningrequestspec-v1-certificates-k8s-io">CertificateSigningRequestSpec v1 certificates</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest [certificates/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>expirationSeconds</CODE><BR /><I>integer</I></TD><TD>expirationSeconds is the requested duration of validity of the issued certificate. The certificate signer may issue a certificate with a different validity duration so a client must check the delta between the notBefore and and notAfter fields in the issued certificate to determine the actual duration.  The v1.22+ in-tree implementations of the well-known Kubernetes signers will honor this field as long as the requested duration is not greater than the maximum duration they will honor per the --cluster-signing-duration CLI flag to the Kubernetes controller manager.  Certificate signers may not honor this field for various reasons:    1. Old signer that is unaware of the field (such as the in-tree      implementations prior to v1.22)   2. Signer whose configured maximum is shorter than the requested duration   3. Signer whose configured minimum is longer than the requested duration  The minimum valid value for expirationSeconds is 600, i.e. 10 minutes.</TD></TR>
+<TR><TD><CODE>extra</CODE><BR /><I>object</I></TD><TD>extra contains extra attributes of the user that created the CertificateSigningRequest. Populated by the API server on creation and immutable.</TD></TR>
+<TR><TD><CODE>groups</CODE><BR /><I>string array</I></TD><TD>groups contains group membership of the user that created the CertificateSigningRequest. Populated by the API server on creation and immutable.</TD></TR>
+<TR><TD><CODE>request</CODE><BR /><I>string</I></TD><TD>request contains an x509 certificate signing request encoded in a &#34;CERTIFICATE REQUEST&#34; PEM block. When serialized as JSON or YAML, the data is additionally base64-encoded.</TD></TR>
+<TR><TD><CODE>signerName</CODE><BR /><I>string</I></TD><TD>signerName indicates the requested signer, and is a qualified name.  List/watch requests for CertificateSigningRequests can filter on this field using a &#34;spec.signerName=NAME&#34; fieldSelector.  Well-known Kubernetes signers are:  1. &#34;kubernetes.io/kube-apiserver-client&#34;: issues client certificates that can be used to authenticate to kube-apiserver.   Requests for this signer are never auto-approved by kube-controller-manager, can be issued by the &#34;csrsigning&#34; controller in kube-controller-manager.  2. &#34;kubernetes.io/kube-apiserver-client-kubelet&#34;: issues client certificates that kubelets use to authenticate to kube-apiserver.   Requests for this signer can be auto-approved by the &#34;csrapproving&#34; controller in kube-controller-manager, and can be issued by the &#34;csrsigning&#34; controller in kube-controller-manager.  3. &#34;kubernetes.io/kubelet-serving&#34; issues serving certificates that kubelets use to serve TLS endpoints, which kube-apiserver can connect to securely.   Requests for this signer are never auto-approved by kube-controller-manager, and can be issued by the &#34;csrsigning&#34; controller in kube-controller-manager.  More details are available at https://k8s.io/docs/reference/access-authn-authz/certificate-signing-requests/#kubernetes-signers  Custom signerNames can also be specified. The signer defines:  1. Trust distribution: how trust (CA bundles) are distributed.  2. Permitted subjects: and behavior when a disallowed subject is requested.  3. Required, permitted, or forbidden x509 extensions in the request (including whether subjectAltNames are allowed, which types, restrictions on allowed values) and behavior when a disallowed extension is requested.  4. Required, permitted, or forbidden key usages / extended key usages.  5. Expiration/certificate lifetime: whether it is fixed by the signer, configurable by the admin.  6. Whether or not requests for CA certificates are allowed.</TD></TR>
+<TR><TD><CODE>uid</CODE><BR /><I>string</I></TD><TD>uid contains the uid of the user that created the CertificateSigningRequest. Populated by the API server on creation and immutable.</TD></TR>
+<TR><TD><CODE>usages</CODE><BR /><I>string array</I></TD><TD>usages specifies a set of key usages requested in the issued certificate.  Requests for TLS client certificates typically request: &#34;digital signature&#34;, &#34;key encipherment&#34;, &#34;client auth&#34;.  Requests for TLS serving certificates typically request: &#34;key encipherment&#34;, &#34;digital signature&#34;, &#34;server auth&#34;.  Valid values are:  &#34;signing&#34;, &#34;digital signature&#34;, &#34;content commitment&#34;,  &#34;key encipherment&#34;, &#34;key agreement&#34;, &#34;data encipherment&#34;,  &#34;cert sign&#34;, &#34;crl sign&#34;, &#34;encipher only&#34;, &#34;decipher only&#34;, &#34;any&#34;,  &#34;server auth&#34;, &#34;client auth&#34;,  &#34;code signing&#34;, &#34;email protection&#34;, &#34;s/mime&#34;,  &#34;ipsec end system&#34;, &#34;ipsec tunnel&#34;, &#34;ipsec user&#34;,  &#34;timestamping&#34;, &#34;ocsp signing&#34;, &#34;microsoft sgc&#34;, &#34;netscape sgc&#34;</TD></TR>
+<TR><TD><CODE>username</CODE><BR /><I>string</I></TD><TD>username contains the name of the user that created the CertificateSigningRequest. Populated by the API server on creation and immutable.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="certificatesigningrequeststatus-v1-certificates-k8s-io">CertificateSigningRequestStatus v1 certificates</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest [certificates/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>certificate</CODE><BR /><I>string</I></TD><TD>certificate is populated with an issued certificate by the signer after an Approved condition is present. This field is set via the /status subresource. Once populated, this field is immutable.  If the certificate signing request is denied, a condition of type &#34;Denied&#34; is added and this field remains empty. If the signer cannot issue the certificate, a condition of type &#34;Failed&#34; is added and this field remains empty.  Validation requirements:  1. certificate must contain one or more PEM blocks.  2. All PEM blocks must have the &#34;CERTIFICATE&#34; label, contain no headers, and the encoded data   must be a BER-encoded ASN.1 Certificate structure as described in section 4 of RFC5280.  3. Non-PEM content may appear before or after the &#34;CERTIFICATE&#34; PEM blocks and is unvalidated,   to allow for explanatory text as described in section 5.2 of RFC7468.  If more than one PEM block is present, and the definition of the requested spec.signerName does not indicate otherwise, the first block is the issued certificate, and subsequent blocks should be treated as intermediate certificates and presented in TLS handshakes.  The certificate is encoded in PEM format.  When serialized as JSON or YAML, the data is additionally base64-encoded, so it consists of:      base64(     -----BEGIN CERTIFICATE-----     ...     -----END CERTIFICATE-----     )</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#certificatesigningrequestcondition-v1-certificates-k8s-io">CertificateSigningRequestCondition</a> array</I></TD><TD>conditions applied to the request. Known conditions are &#34;Approved&#34;, &#34;Denied&#34;, and &#34;Failed&#34;.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="certificatesigningrequestlist-v1-certificates-k8s-io">CertificateSigningRequestList v1 certificates</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a> array</I></TD><TD>items is a collection of CertificateSigningRequest objects</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-certificatesigningrequest-v1-certificates-k8s-io">Create</H2>
+<P>create a CertificateSigningRequest</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/certificates.k8s.io/v1/certificatesigningrequests</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-certificatesigningrequest-v1-certificates-k8s-io">Patch</H2>
+<P>partially update the specified CertificateSigningRequest</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CertificateSigningRequest</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-certificatesigningrequest-v1-certificates-k8s-io">Replace</H2>
+<P>replace the specified CertificateSigningRequest</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CertificateSigningRequest</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-certificatesigningrequest-v1-certificates-k8s-io">Delete</H2>
+<P>delete a CertificateSigningRequest</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CertificateSigningRequest</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-certificatesigningrequest-v1-certificates-k8s-io">Delete Collection</H2>
+<P>delete collection of CertificateSigningRequest</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/certificates.k8s.io/v1/certificatesigningrequests</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-certificatesigningrequest-v1-certificates-k8s-io">Read</H2>
+<P>read the specified CertificateSigningRequest</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CertificateSigningRequest</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-certificatesigningrequest-v1-certificates-k8s-io">List</H2>
+<P>list or watch objects of kind CertificateSigningRequest</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/certificates.k8s.io/v1/certificatesigningrequests</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#certificatesigningrequestlist-v1-certificates-k8s-io">CertificateSigningRequestList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-certificatesigningrequest-v1-certificates-k8s-io">Watch</H2>
+<P>watch changes to an object of kind CertificateSigningRequest. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/certificates.k8s.io/v1/watch/certificatesigningrequests/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CertificateSigningRequest</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-certificatesigningrequest-v1-certificates-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of CertificateSigningRequest. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/certificates.k8s.io/v1/watch/certificatesigningrequests</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-certificatesigningrequest-v1-certificates-k8s-io">Patch Status</H2>
+<P>partially update status of the specified CertificateSigningRequest</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CertificateSigningRequest</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-certificatesigningrequest-v1-certificates-k8s-io">Read Status</H2>
+<P>read status of the specified CertificateSigningRequest</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CertificateSigningRequest</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-certificatesigningrequest-v1-certificates-k8s-io">Replace Status</H2>
+<P>replace status of the specified CertificateSigningRequest</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CertificateSigningRequest</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="clusterrole-v1-rbac-authorization-k8s-io">ClusterRole v1 rbac.authorization.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rbac.authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ClusterRole</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#clusterrolelist-v1-rbac-authorization-k8s-io">ClusterRoleList [rbac/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>aggregationRule</CODE><BR /><I><a href="#aggregationrule-v1-rbac-authorization-k8s-io">AggregationRule</a></I></TD><TD>AggregationRule is an optional field that describes how to build the Rules for this ClusterRole. If AggregationRule is set, then the Rules are controller managed and direct changes to Rules will be stomped by the controller.</TD></TR>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata.</TD></TR>
+<TR><TD><CODE>rules</CODE><BR /><I><a href="#policyrule-v1-rbac-authorization-k8s-io">PolicyRule</a> array</I></TD><TD>Rules holds all the PolicyRules for this ClusterRole</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="clusterrolelist-v1-rbac-authorization-k8s-io">ClusterRoleList v1 rbac</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole</a> array</I></TD><TD>Items is a list of ClusterRoles</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard object&#39;s metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-clusterrole-v1-rbac-authorization-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-clusterrole-v1-rbac-authorization-k8s-io">Create</H2>
+<P>create a ClusterRole</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/rbac.authorization.k8s.io/v1/clusterroles</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-clusterrole-v1-rbac-authorization-k8s-io">Patch</H2>
+<P>partially update the specified ClusterRole</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/rbac.authorization.k8s.io/v1/clusterroles/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ClusterRole</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-clusterrole-v1-rbac-authorization-k8s-io">Replace</H2>
+<P>replace the specified ClusterRole</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/rbac.authorization.k8s.io/v1/clusterroles/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ClusterRole</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-clusterrole-v1-rbac-authorization-k8s-io">Delete</H2>
+<P>delete a ClusterRole</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/rbac.authorization.k8s.io/v1/clusterroles/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ClusterRole</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-clusterrole-v1-rbac-authorization-k8s-io">Delete Collection</H2>
+<P>delete collection of ClusterRole</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/rbac.authorization.k8s.io/v1/clusterroles</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-clusterrole-v1-rbac-authorization-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-clusterrole-v1-rbac-authorization-k8s-io">Read</H2>
+<P>read the specified ClusterRole</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/clusterroles/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ClusterRole</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-clusterrole-v1-rbac-authorization-k8s-io">List</H2>
+<P>list or watch objects of kind ClusterRole</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/clusterroles</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#clusterrolelist-v1-rbac-authorization-k8s-io">ClusterRoleList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-clusterrole-v1-rbac-authorization-k8s-io">Watch</H2>
+<P>watch changes to an object of kind ClusterRole. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/watch/clusterroles/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ClusterRole</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-clusterrole-v1-rbac-authorization-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of ClusterRole. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/watch/clusterroles</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding v1 rbac.authorization.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rbac.authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ClusterRoleBinding</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#clusterrolebindinglist-v1-rbac-authorization-k8s-io">ClusterRoleBindingList [rbac/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata.</TD></TR>
+<TR><TD><CODE>roleRef</CODE><BR /><I><a href="#roleref-v1-rbac-authorization-k8s-io">RoleRef</a></I></TD><TD>RoleRef can only reference a ClusterRole in the global namespace. If the RoleRef cannot be resolved, the Authorizer must return an error.</TD></TR>
+<TR><TD><CODE>subjects</CODE><BR /><I><a href="#subject-v1-rbac-authorization-k8s-io">Subject</a> array</I></TD><TD>Subjects holds references to the objects the role applies to.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="clusterrolebindinglist-v1-rbac-authorization-k8s-io">ClusterRoleBindingList v1 rbac</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding</a> array</I></TD><TD>Items is a list of ClusterRoleBindings</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard object&#39;s metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-clusterrolebinding-v1-rbac-authorization-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-clusterrolebinding-v1-rbac-authorization-k8s-io">Create</H2>
+<P>create a ClusterRoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/rbac.authorization.k8s.io/v1/clusterrolebindings</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-clusterrolebinding-v1-rbac-authorization-k8s-io">Patch</H2>
+<P>partially update the specified ClusterRoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/rbac.authorization.k8s.io/v1/clusterrolebindings/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ClusterRoleBinding</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-clusterrolebinding-v1-rbac-authorization-k8s-io">Replace</H2>
+<P>replace the specified ClusterRoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/rbac.authorization.k8s.io/v1/clusterrolebindings/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ClusterRoleBinding</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-clusterrolebinding-v1-rbac-authorization-k8s-io">Delete</H2>
+<P>delete a ClusterRoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/rbac.authorization.k8s.io/v1/clusterrolebindings/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ClusterRoleBinding</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-clusterrolebinding-v1-rbac-authorization-k8s-io">Delete Collection</H2>
+<P>delete collection of ClusterRoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/rbac.authorization.k8s.io/v1/clusterrolebindings</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-clusterrolebinding-v1-rbac-authorization-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-clusterrolebinding-v1-rbac-authorization-k8s-io">Read</H2>
+<P>read the specified ClusterRoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/clusterrolebindings/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ClusterRoleBinding</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-clusterrolebinding-v1-rbac-authorization-k8s-io">List</H2>
+<P>list or watch objects of kind ClusterRoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/clusterrolebindings</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#clusterrolebindinglist-v1-rbac-authorization-k8s-io">ClusterRoleBindingList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-clusterrolebinding-v1-rbac-authorization-k8s-io">Watch</H2>
+<P>watch changes to an object of kind ClusterRoleBinding. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/watch/clusterrolebindings/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ClusterRoleBinding</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-clusterrolebinding-v1-rbac-authorization-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of ClusterRoleBinding. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/watch/clusterrolebindings</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="componentstatus-v1-core">ComponentStatus v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ComponentStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#componentstatuslist-v1-core">ComponentStatusList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#componentcondition-v1-core">ComponentCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>List of component conditions observed</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="componentstatuslist-v1-core">ComponentStatusList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#componentstatus-v1-core">ComponentStatus</a> array</I></TD><TD>List of ComponentStatus objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-componentstatus-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-componentstatus-v1-core">Read</H2>
+<P>read the specified ComponentStatus</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/componentstatuses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ComponentStatus</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#componentstatus-v1-core">ComponentStatus</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-componentstatus-v1-core">List</H2>
+<P>list objects of kind ComponentStatus</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/componentstatuses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#componentstatuslist-v1-core">ComponentStatusList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema v1beta2 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>FlowSchema</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschemalist-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaList [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>`metadata` is the standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#flowschemaspec-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaSpec</a></I></TD><TD>`spec` is the specification of the desired behavior of a FlowSchema. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#flowschemastatus-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaStatus</a></I></TD><TD>`status` is the current status of a FlowSchema. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="flowschemaspec-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaSpec v1beta2 flowcontrol</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>distinguisherMethod</CODE><BR /><I><a href="#flowdistinguishermethod-v1beta2-flowcontrol-apiserver-k8s-io">FlowDistinguisherMethod</a></I></TD><TD>`distinguisherMethod` defines how to compute the flow distinguisher for requests that match this schema. `nil` specifies that the distinguisher is disabled and thus will always be the empty string.</TD></TR>
+<TR><TD><CODE>matchingPrecedence</CODE><BR /><I>integer</I></TD><TD>`matchingPrecedence` is used to choose among the FlowSchemas that match a given request. The chosen FlowSchema is among those with the numerically lowest (which we take to be logically highest) MatchingPrecedence.  Each MatchingPrecedence value must be ranged in [1,10000]. Note that if the precedence is not specified, it will be set to 1000 as default.</TD></TR>
+<TR><TD><CODE>priorityLevelConfiguration</CODE><BR /><I><a href="#prioritylevelconfigurationreference-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationReference</a></I></TD><TD>`priorityLevelConfiguration` should reference a PriorityLevelConfiguration in the cluster. If the reference cannot be resolved, the FlowSchema will be ignored and marked as invalid in its status. Required.</TD></TR>
+<TR><TD><CODE>rules</CODE><BR /><I><a href="#policyruleswithsubjects-v1beta2-flowcontrol-apiserver-k8s-io">PolicyRulesWithSubjects</a> array</I></TD><TD>`rules` describes which requests will match this flow schema. This FlowSchema matches a request if and only if at least one member of rules matches the request. if it is an empty slice, there will be no requests matching the FlowSchema.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="flowschemastatus-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaStatus v1beta2 flowcontrol</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#flowschemacondition-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaCondition</a> array</I></TD><TD>`conditions` is a list of the current states of FlowSchema.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="flowschemalist-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaList v1beta2 flowcontrol</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema</a> array</I></TD><TD>`items` is a list of FlowSchemas.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>`metadata` is the standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-flowschema-v1beta2-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-flowschema-v1beta2-flowcontrol-apiserver-k8s-io">Create</H2>
+<P>create a FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-flowschema-v1beta2-flowcontrol-apiserver-k8s-io">Patch</H2>
+<P>partially update the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-flowschema-v1beta2-flowcontrol-apiserver-k8s-io">Replace</H2>
+<P>replace the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-flowschema-v1beta2-flowcontrol-apiserver-k8s-io">Delete</H2>
+<P>delete a FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-flowschema-v1beta2-flowcontrol-apiserver-k8s-io">Delete Collection</H2>
+<P>delete collection of FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-flowschema-v1beta2-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-flowschema-v1beta2-flowcontrol-apiserver-k8s-io">Read</H2>
+<P>read the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-flowschema-v1beta2-flowcontrol-apiserver-k8s-io">List</H2>
+<P>list or watch objects of kind FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschemalist-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-flowschema-v1beta2-flowcontrol-apiserver-k8s-io">Watch</H2>
+<P>watch changes to an object of kind FlowSchema. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta2/watch/flowschemas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-flowschema-v1beta2-flowcontrol-apiserver-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of FlowSchema. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta2/watch/flowschemas</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-flowschema-v1beta2-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-flowschema-v1beta2-flowcontrol-apiserver-k8s-io">Patch Status</H2>
+<P>partially update status of the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-flowschema-v1beta2-flowcontrol-apiserver-k8s-io">Read Status</H2>
+<P>read status of the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-flowschema-v1beta2-flowcontrol-apiserver-k8s-io">Replace Status</H2>
+<P>replace status of the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/flowcontrol.apiserver.k8s.io/v1beta2/flowschemas/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="lease-v1-coordination-k8s-io">Lease v1 coordination.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>coordination.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Lease</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#leaselist-v1-coordination-k8s-io">LeaseList [coordination/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#leasespec-v1-coordination-k8s-io">LeaseSpec</a></I></TD><TD>Specification of the Lease. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="leasespec-v1-coordination-k8s-io">LeaseSpec v1 coordination</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#lease-v1-coordination-k8s-io">Lease [coordination/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>acquireTime</CODE><BR /><I><a href="#microtime-v1-meta">MicroTime</a></I></TD><TD>acquireTime is a time when the current lease was acquired.</TD></TR>
+<TR><TD><CODE>holderIdentity</CODE><BR /><I>string</I></TD><TD>holderIdentity contains the identity of the holder of a current lease.</TD></TR>
+<TR><TD><CODE>leaseDurationSeconds</CODE><BR /><I>integer</I></TD><TD>leaseDurationSeconds is a duration that candidates for a lease need to wait to force acquire it. This is measure against time of last observed RenewTime.</TD></TR>
+<TR><TD><CODE>leaseTransitions</CODE><BR /><I>integer</I></TD><TD>leaseTransitions is the number of transitions of a lease between holders.</TD></TR>
+<TR><TD><CODE>renewTime</CODE><BR /><I><a href="#microtime-v1-meta">MicroTime</a></I></TD><TD>renewTime is a time when the current holder of a lease has last updated the lease.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="leaselist-v1-coordination-k8s-io">LeaseList v1 coordination</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#lease-v1-coordination-k8s-io">Lease</a> array</I></TD><TD>Items is a list of schema objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-lease-v1-coordination-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-lease-v1-coordination-k8s-io">Create</H2>
+<P>create a Lease</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#lease-v1-coordination-k8s-io">Lease</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#lease-v1-coordination-k8s-io">Lease</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#lease-v1-coordination-k8s-io">Lease</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#lease-v1-coordination-k8s-io">Lease</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-lease-v1-coordination-k8s-io">Patch</H2>
+<P>partially update the specified Lease</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Lease</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#lease-v1-coordination-k8s-io">Lease</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#lease-v1-coordination-k8s-io">Lease</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-lease-v1-coordination-k8s-io">Replace</H2>
+<P>replace the specified Lease</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Lease</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#lease-v1-coordination-k8s-io">Lease</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#lease-v1-coordination-k8s-io">Lease</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#lease-v1-coordination-k8s-io">Lease</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-lease-v1-coordination-k8s-io">Delete</H2>
+<P>delete a Lease</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Lease</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-lease-v1-coordination-k8s-io">Delete Collection</H2>
+<P>delete collection of Lease</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-lease-v1-coordination-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-lease-v1-coordination-k8s-io">Read</H2>
+<P>read the specified Lease</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Lease</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#lease-v1-coordination-k8s-io">Lease</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-lease-v1-coordination-k8s-io">List</H2>
+<P>list or watch objects of kind Lease</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/coordination.k8s.io/v1/namespaces/{namespace}/leases</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#leaselist-v1-coordination-k8s-io">LeaseList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-lease-v1-coordination-k8s-io">List All Namespaces</H2>
+<P>list or watch objects of kind Lease</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/coordination.k8s.io/v1/leases</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#leaselist-v1-coordination-k8s-io">LeaseList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-lease-v1-coordination-k8s-io">Watch</H2>
+<P>watch changes to an object of kind Lease. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/coordination.k8s.io/v1/watch/namespaces/{namespace}/leases/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Lease</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-lease-v1-coordination-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of Lease. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/coordination.k8s.io/v1/watch/namespaces/{namespace}/leases</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-lease-v1-coordination-k8s-io">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Lease. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/coordination.k8s.io/v1/watch/leases</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="localsubjectaccessreview-v1-authorization-k8s-io">LocalSubjectAccessReview v1 authorization.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>LocalSubjectAccessReview</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#subjectaccessreviewspec-v1-authorization-k8s-io">SubjectAccessReviewSpec</a></I></TD><TD>Spec holds information about the request being evaluated.  spec.namespace must be equal to the namespace you made the request against.  If empty, it is defaulted.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#subjectaccessreviewstatus-v1-authorization-k8s-io">SubjectAccessReviewStatus</a></I></TD><TD>Status is filled in by the server and indicates whether the request is allowed or not</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-localsubjectaccessreview-v1-authorization-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-localsubjectaccessreview-v1-authorization-k8s-io">Create</H2>
+<P>create a LocalSubjectAccessReview</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/authorization.k8s.io/v1/namespaces/{namespace}/localsubjectaccessreviews</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#localsubjectaccessreview-v1-authorization-k8s-io">LocalSubjectAccessReview</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#localsubjectaccessreview-v1-authorization-k8s-io">LocalSubjectAccessReview</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#localsubjectaccessreview-v1-authorization-k8s-io">LocalSubjectAccessReview</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#localsubjectaccessreview-v1-authorization-k8s-io">LocalSubjectAccessReview</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="namespace-v1-core">Namespace v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Namespace</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#namespacelist-v1-core">NamespaceList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#namespacespec-v1-core">NamespaceSpec</a></I></TD><TD>Spec defines the behavior of the Namespace. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#namespacestatus-v1-core">NamespaceStatus</a></I></TD><TD>Status describes the current status of a Namespace. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="namespacespec-v1-core">NamespaceSpec v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#namespace-v1-core">Namespace [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>finalizers</CODE><BR /><I>string array</I></TD><TD>Finalizers is an opaque list of values that must be empty to permanently remove object from storage. More info: https://kubernetes.io/docs/tasks/administer-cluster/namespaces/</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="namespacestatus-v1-core">NamespaceStatus v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#namespace-v1-core">Namespace [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#namespacecondition-v1-core">NamespaceCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Represents the latest available observations of a namespace&#39;s current state.</TD></TR>
+<TR><TD><CODE>phase</CODE><BR /><I>string</I></TD><TD>Phase is the current lifecycle phase of the namespace. More info: https://kubernetes.io/docs/tasks/administer-cluster/namespaces/  </TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="namespacelist-v1-core">NamespaceList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#namespace-v1-core">Namespace</a> array</I></TD><TD>Items is the list of Namespace objects in the list. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-namespace-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-namespace-v1-core">Create</H2>
+<P>create a Namespace</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-namespace-v1-core">Patch</H2>
+<P>partially update the specified Namespace</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Namespace</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-namespace-v1-core">Replace</H2>
+<P>replace the specified Namespace</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Namespace</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-namespace-v1-core">Delete</H2>
+<P>delete a Namespace</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Namespace</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-namespace-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-namespace-v1-core">Read</H2>
+<P>read the specified Namespace</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Namespace</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-namespace-v1-core">List</H2>
+<P>list or watch objects of kind Namespace</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#namespacelist-v1-core">NamespaceList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-namespace-v1-core">Watch</H2>
+<P>watch changes to an object of kind Namespace. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Namespace</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-namespace-v1-core">Watch List</H2>
+<P>watch individual changes to a list of Namespace. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-namespace-v1-core-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-namespace-v1-core">Patch Status</H2>
+<P>partially update status of the specified Namespace</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Namespace</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-namespace-v1-core">Read Status</H2>
+<P>read status of the specified Namespace</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Namespace</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-namespace-v1-core">Replace Status</H2>
+<P>replace status of the specified Namespace</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Namespace</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#namespace-v1-core">Namespace</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="node-v1-core">Node v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Node</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodelist-v1-core">NodeList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#nodespec-v1-core">NodeSpec</a></I></TD><TD>Spec defines the behavior of a node. https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#nodestatus-v1-core">NodeStatus</a></I></TD><TD>Most recently observed status of the node. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="nodespec-v1-core">NodeSpec v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#node-v1-core">Node [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>configSource</CODE><BR /><I><a href="#nodeconfigsource-v1-core">NodeConfigSource</a></I></TD><TD>Deprecated: Previously used to specify the source of the node&#39;s configuration for the DynamicKubeletConfig feature. This feature is removed from Kubelets as of 1.24 and will be fully removed in 1.26.</TD></TR>
+<TR><TD><CODE>externalID</CODE><BR /><I>string</I></TD><TD>Deprecated. Not all kubelets will set this field. Remove field after 1.13. see: https://issues.k8s.io/61966</TD></TR>
+<TR><TD><CODE>podCIDR</CODE><BR /><I>string</I></TD><TD>PodCIDR represents the pod IP range assigned to the node.</TD></TR>
+<TR><TD><CODE>podCIDRs</CODE><BR /><I>string array</I><BR /><B>patch strategy</B>: <I>merge</I></TD><TD>podCIDRs represents the IP ranges assigned to the node for usage by Pods on that node. If this field is specified, the 0th entry must match the podCIDR field. It may contain at most 1 value for each of IPv4 and IPv6.</TD></TR>
+<TR><TD><CODE>providerID</CODE><BR /><I>string</I></TD><TD>ID of the node assigned by the cloud provider in the format: &lt;ProviderName&gt;://&lt;ProviderSpecificNodeID&gt;</TD></TR>
+<TR><TD><CODE>taints</CODE><BR /><I><a href="#taint-v1-core">Taint</a> array</I></TD><TD>If specified, the node&#39;s taints.</TD></TR>
+<TR><TD><CODE>unschedulable</CODE><BR /><I>boolean</I></TD><TD>Unschedulable controls node schedulability of new pods. By default, node is schedulable. More info: https://kubernetes.io/docs/concepts/nodes/node/#manual-node-administration</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="nodestatus-v1-core">NodeStatus v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#node-v1-core">Node [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>addresses</CODE><BR /><I><a href="#nodeaddress-v1-core">NodeAddress</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>List of addresses reachable to the node. Queried from cloud provider, if available. More info: https://kubernetes.io/docs/concepts/nodes/node/#addresses Note: This field is declared as mergeable, but the merge key is not sufficiently unique, which can cause data corruption when it is merged. Callers should instead use a full-replacement patch. See http://pr.k8s.io/79391 for an example.</TD></TR>
+<TR><TD><CODE>allocatable</CODE><BR /><I>object</I></TD><TD>Allocatable represents the resources of a node that are available for scheduling. Defaults to Capacity.</TD></TR>
+<TR><TD><CODE>capacity</CODE><BR /><I>object</I></TD><TD>Capacity represents the total resources of a node. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#capacity</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#nodecondition-v1-core">NodeCondition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Conditions is an array of current observed node conditions. More info: https://kubernetes.io/docs/concepts/nodes/node/#condition</TD></TR>
+<TR><TD><CODE>config</CODE><BR /><I><a href="#nodeconfigstatus-v1-core">NodeConfigStatus</a></I></TD><TD>Status of the config assigned to the node via the dynamic Kubelet config feature.</TD></TR>
+<TR><TD><CODE>daemonEndpoints</CODE><BR /><I><a href="#nodedaemonendpoints-v1-core">NodeDaemonEndpoints</a></I></TD><TD>Endpoints of daemons running on the Node.</TD></TR>
+<TR><TD><CODE>images</CODE><BR /><I><a href="#containerimage-v1-core">ContainerImage</a> array</I></TD><TD>List of container images on this node</TD></TR>
+<TR><TD><CODE>nodeInfo</CODE><BR /><I><a href="#nodesysteminfo-v1-core">NodeSystemInfo</a></I></TD><TD>Set of ids/uuids to uniquely identify the node. More info: https://kubernetes.io/docs/concepts/nodes/node/#info</TD></TR>
+<TR><TD><CODE>phase</CODE><BR /><I>string</I></TD><TD>NodePhase is the recently observed lifecycle phase of the node. More info: https://kubernetes.io/docs/concepts/nodes/node/#phase The field is never populated, and now is deprecated.  </TD></TR>
+<TR><TD><CODE>volumesAttached</CODE><BR /><I><a href="#attachedvolume-v1-core">AttachedVolume</a> array</I></TD><TD>List of volumes that are attached to the node.</TD></TR>
+<TR><TD><CODE>volumesInUse</CODE><BR /><I>string array</I></TD><TD>List of attachable volumes in use (mounted) by the node.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="nodelist-v1-core">NodeList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#node-v1-core">Node</a> array</I></TD><TD>List of nodes</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-node-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-node-v1-core">Create</H2>
+<P>create a Node</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/nodes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#node-v1-core">Node</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-node-v1-core">Patch</H2>
+<P>partially update the specified Node</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/nodes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Node</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-node-v1-core">Replace</H2>
+<P>replace the specified Node</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/nodes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Node</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#node-v1-core">Node</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-node-v1-core">Delete</H2>
+<P>delete a Node</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/nodes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Node</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-node-v1-core">Delete Collection</H2>
+<P>delete collection of Node</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/nodes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-node-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-node-v1-core">Read</H2>
+<P>read the specified Node</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/nodes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Node</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-node-v1-core">List</H2>
+<P>list or watch objects of kind Node</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/nodes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#nodelist-v1-core">NodeList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-node-v1-core">Watch</H2>
+<P>watch changes to an object of kind Node. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/nodes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Node</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-node-v1-core">Watch List</H2>
+<P>watch individual changes to a list of Node. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/nodes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-node-v1-core-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-node-v1-core">Patch Status</H2>
+<P>partially update status of the specified Node</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/nodes/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Node</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-node-v1-core">Read Status</H2>
+<P>read status of the specified Node</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/nodes/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Node</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-node-v1-core">Replace Status</H2>
+<P>replace status of the specified Node</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/nodes/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Node</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#node-v1-core">Node</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#node-v1-core">Node</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-proxy-operations-node-v1-core-strong-"><STRONG>Proxy Operations</STRONG></H2>
+<H2 id="create-connect-proxy-node-v1-core">Create Connect Proxy</H2>
+<P>connect POST requests to proxy of Node</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/nodes/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NodeProxyOptions</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to node.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="create-connect-proxy-path-node-v1-core">Create Connect Proxy Path</H2>
+<P>connect POST requests to proxy of Node</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/nodes/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NodeProxyOptions</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to node.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-connect-proxy-node-v1-core">Delete Connect Proxy</H2>
+<P>connect DELETE requests to proxy of Node</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/nodes/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NodeProxyOptions</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to node.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-connect-proxy-path-node-v1-core">Delete Connect Proxy Path</H2>
+<P>connect DELETE requests to proxy of Node</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/nodes/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NodeProxyOptions</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to node.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="get-connect-proxy-node-v1-core">Get Connect Proxy</H2>
+<P>connect GET requests to proxy of Node</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/nodes/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NodeProxyOptions</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to node.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="get-connect-proxy-path-node-v1-core">Get Connect Proxy Path</H2>
+<P>connect GET requests to proxy of Node</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/nodes/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NodeProxyOptions</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to node.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="head-connect-proxy-node-v1-core">Head Connect Proxy</H2>
+<P>connect HEAD requests to proxy of Node</P>
+<H3>HTTP Request</H3>
+<CODE>HEAD /api/v1/nodes/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NodeProxyOptions</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to node.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="head-connect-proxy-path-node-v1-core">Head Connect Proxy Path</H2>
+<P>connect HEAD requests to proxy of Node</P>
+<H3>HTTP Request</H3>
+<CODE>HEAD /api/v1/nodes/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NodeProxyOptions</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to node.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-connect-proxy-node-v1-core">Replace Connect Proxy</H2>
+<P>connect PUT requests to proxy of Node</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/nodes/{name}/proxy</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NodeProxyOptions</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to node.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-connect-proxy-path-node-v1-core">Replace Connect Proxy Path</H2>
+<P>connect PUT requests to proxy of Node</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/nodes/{name}/proxy/{path}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NodeProxyOptions</TD></TR>
+<TR><TD><CODE>path</CODE></TD><TD>path to the resource</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE></TD><TD>Path is the URL path to use for the current proxy request to node.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I>string</I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="persistentvolume-v1-core">PersistentVolume v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PersistentVolume</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-bullhorn"></I> These are assigned to <a href="#pod-v1-core">Pods</a> using <a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaims</a>.</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumelist-v1-core">PersistentVolumeList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec</a></I></TD><TD>spec defines a specification of a persistent volume owned by the cluster. Provisioned by an administrator. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistent-volumes</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#persistentvolumestatus-v1-core">PersistentVolumeStatus</a></I></TD><TD>status represents the current information/status for the persistent volume. Populated by the system. Read-only. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistent-volumes</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="persistentvolumespec-v1-core">PersistentVolumeSpec v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolume-v1-core">PersistentVolume [core/v1]</a></LI>
+  <LI><a href="#volumeattachmentsource-v1-storage-k8s-io">VolumeAttachmentSource [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>accessModes</CODE><BR /><I>string array</I></TD><TD>accessModes contains all ways the volume can be mounted. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes</TD></TR>
+<TR><TD><CODE>awsElasticBlockStore</CODE><BR /><I><a href="#awselasticblockstorevolumesource-v1-core">AWSElasticBlockStoreVolumeSource</a></I></TD><TD>awsElasticBlockStore represents an AWS Disk resource that is attached to a kubelet&#39;s host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore</TD></TR>
+<TR><TD><CODE>azureDisk</CODE><BR /><I><a href="#azurediskvolumesource-v1-core">AzureDiskVolumeSource</a></I></TD><TD>azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.</TD></TR>
+<TR><TD><CODE>azureFile</CODE><BR /><I><a href="#azurefilepersistentvolumesource-v1-core">AzureFilePersistentVolumeSource</a></I></TD><TD>azureFile represents an Azure File Service mount on the host and bind mount to the pod.</TD></TR>
+<TR><TD><CODE>capacity</CODE><BR /><I>object</I></TD><TD>capacity is the description of the persistent volume&#39;s resources and capacity. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#capacity</TD></TR>
+<TR><TD><CODE>cephfs</CODE><BR /><I><a href="#cephfspersistentvolumesource-v1-core">CephFSPersistentVolumeSource</a></I></TD><TD>cephFS represents a Ceph FS mount on the host that shares a pod&#39;s lifetime</TD></TR>
+<TR><TD><CODE>cinder</CODE><BR /><I><a href="#cinderpersistentvolumesource-v1-core">CinderPersistentVolumeSource</a></I></TD><TD>cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md</TD></TR>
+<TR><TD><CODE>claimRef</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>claimRef is part of a bi-directional binding between PersistentVolume and PersistentVolumeClaim. Expected to be non-nil when bound. claim.VolumeName is the authoritative bind between PV and PVC. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#binding</TD></TR>
+<TR><TD><CODE>csi</CODE><BR /><I><a href="#csipersistentvolumesource-v1-core">CSIPersistentVolumeSource</a></I></TD><TD>csi represents storage that is handled by an external CSI driver (Beta feature).</TD></TR>
+<TR><TD><CODE>fc</CODE><BR /><I><a href="#fcvolumesource-v1-core">FCVolumeSource</a></I></TD><TD>fc represents a Fibre Channel resource that is attached to a kubelet&#39;s host machine and then exposed to the pod.</TD></TR>
+<TR><TD><CODE>flexVolume</CODE><BR /><I><a href="#flexpersistentvolumesource-v1-core">FlexPersistentVolumeSource</a></I></TD><TD>flexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin.</TD></TR>
+<TR><TD><CODE>flocker</CODE><BR /><I><a href="#flockervolumesource-v1-core">FlockerVolumeSource</a></I></TD><TD>flocker represents a Flocker volume attached to a kubelet&#39;s host machine and exposed to the pod for its usage. This depends on the Flocker control service being running</TD></TR>
+<TR><TD><CODE>gcePersistentDisk</CODE><BR /><I><a href="#gcepersistentdiskvolumesource-v1-core">GCEPersistentDiskVolumeSource</a></I></TD><TD>gcePersistentDisk represents a GCE Disk resource that is attached to a kubelet&#39;s host machine and then exposed to the pod. Provisioned by an admin. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk</TD></TR>
+<TR><TD><CODE>glusterfs</CODE><BR /><I><a href="#glusterfspersistentvolumesource-v1-core">GlusterfsPersistentVolumeSource</a></I></TD><TD>glusterfs represents a Glusterfs volume that is attached to a host and exposed to the pod. Provisioned by an admin. More info: https://examples.k8s.io/volumes/glusterfs/README.md</TD></TR>
+<TR><TD><CODE>hostPath</CODE><BR /><I><a href="#hostpathvolumesource-v1-core">HostPathVolumeSource</a></I></TD><TD>hostPath represents a directory on the host. Provisioned by a developer or tester. This is useful for single-node development and testing only! On-host storage is not supported in any way and WILL NOT WORK in a multi-node cluster. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath</TD></TR>
+<TR><TD><CODE>iscsi</CODE><BR /><I><a href="#iscsipersistentvolumesource-v1-core">ISCSIPersistentVolumeSource</a></I></TD><TD>iscsi represents an ISCSI Disk resource that is attached to a kubelet&#39;s host machine and then exposed to the pod. Provisioned by an admin.</TD></TR>
+<TR><TD><CODE>local</CODE><BR /><I><a href="#localvolumesource-v1-core">LocalVolumeSource</a></I></TD><TD>local represents directly-attached storage with node affinity</TD></TR>
+<TR><TD><CODE>mountOptions</CODE><BR /><I>string array</I></TD><TD>mountOptions is the list of mount options, e.g. [&#34;ro&#34;, &#34;soft&#34;]. Not validated - mount will simply fail if one is invalid. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes/#mount-options</TD></TR>
+<TR><TD><CODE>nfs</CODE><BR /><I><a href="#nfsvolumesource-v1-core">NFSVolumeSource</a></I></TD><TD>nfs represents an NFS mount on the host. Provisioned by an admin. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs</TD></TR>
+<TR><TD><CODE>nodeAffinity</CODE><BR /><I><a href="#volumenodeaffinity-v1-core">VolumeNodeAffinity</a></I></TD><TD>nodeAffinity defines constraints that limit what nodes this volume can be accessed from. This field influences the scheduling of pods that use this volume.</TD></TR>
+<TR><TD><CODE>persistentVolumeReclaimPolicy</CODE><BR /><I>string</I></TD><TD>persistentVolumeReclaimPolicy defines what happens to a persistent volume when released from its claim. Valid options are Retain (default for manually created PersistentVolumes), Delete (default for dynamically provisioned PersistentVolumes), and Recycle (deprecated). Recycle must be supported by the volume plugin underlying this PersistentVolume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#reclaiming  </TD></TR>
+<TR><TD><CODE>photonPersistentDisk</CODE><BR /><I><a href="#photonpersistentdiskvolumesource-v1-core">PhotonPersistentDiskVolumeSource</a></I></TD><TD>photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine</TD></TR>
+<TR><TD><CODE>portworxVolume</CODE><BR /><I><a href="#portworxvolumesource-v1-core">PortworxVolumeSource</a></I></TD><TD>portworxVolume represents a portworx volume attached and mounted on kubelets host machine</TD></TR>
+<TR><TD><CODE>quobyte</CODE><BR /><I><a href="#quobytevolumesource-v1-core">QuobyteVolumeSource</a></I></TD><TD>quobyte represents a Quobyte mount on the host that shares a pod&#39;s lifetime</TD></TR>
+<TR><TD><CODE>rbd</CODE><BR /><I><a href="#rbdpersistentvolumesource-v1-core">RBDPersistentVolumeSource</a></I></TD><TD>rbd represents a Rados Block Device mount on the host that shares a pod&#39;s lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md</TD></TR>
+<TR><TD><CODE>scaleIO</CODE><BR /><I><a href="#scaleiopersistentvolumesource-v1-core">ScaleIOPersistentVolumeSource</a></I></TD><TD>scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.</TD></TR>
+<TR><TD><CODE>storageClassName</CODE><BR /><I>string</I></TD><TD>storageClassName is the name of StorageClass to which this persistent volume belongs. Empty value means that this volume does not belong to any StorageClass.</TD></TR>
+<TR><TD><CODE>storageos</CODE><BR /><I><a href="#storageospersistentvolumesource-v1-core">StorageOSPersistentVolumeSource</a></I></TD><TD>storageOS represents a StorageOS volume that is attached to the kubelet&#39;s host machine and mounted into the pod More info: https://examples.k8s.io/volumes/storageos/README.md</TD></TR>
+<TR><TD><CODE>volumeMode</CODE><BR /><I>string</I></TD><TD>volumeMode defines if a volume is intended to be used with a formatted filesystem or to remain in raw block state. Value of Filesystem is implied when not included in spec.</TD></TR>
+<TR><TD><CODE>vsphereVolume</CODE><BR /><I><a href="#vspherevirtualdiskvolumesource-v1-core">VsphereVirtualDiskVolumeSource</a></I></TD><TD>vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="persistentvolumestatus-v1-core">PersistentVolumeStatus v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolume-v1-core">PersistentVolume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>message is a human-readable message indicating details about why the volume is in this state.</TD></TR>
+<TR><TD><CODE>phase</CODE><BR /><I>string</I></TD><TD>phase indicates if a volume is available, bound to a claim, or released by a claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#phase  </TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>reason is a brief CamelCase string that describes any failure and is meant for machine parsing and tidy display in the CLI.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="persistentvolumelist-v1-core">PersistentVolumeList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#persistentvolume-v1-core">PersistentVolume</a> array</I></TD><TD>items is a list of persistent volumes. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-persistentvolume-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-persistentvolume-v1-core">Create</H2>
+<P>create a PersistentVolume</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/persistentvolumes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-persistentvolume-v1-core">Patch</H2>
+<P>partially update the specified PersistentVolume</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/persistentvolumes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolume</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-persistentvolume-v1-core">Replace</H2>
+<P>replace the specified PersistentVolume</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/persistentvolumes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolume</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-persistentvolume-v1-core">Delete</H2>
+<P>delete a PersistentVolume</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/persistentvolumes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolume</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-persistentvolume-v1-core">Delete Collection</H2>
+<P>delete collection of PersistentVolume</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/persistentvolumes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-persistentvolume-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-persistentvolume-v1-core">Read</H2>
+<P>read the specified PersistentVolume</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/persistentvolumes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolume</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-persistentvolume-v1-core">List</H2>
+<P>list or watch objects of kind PersistentVolume</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/persistentvolumes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolumelist-v1-core">PersistentVolumeList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-persistentvolume-v1-core">Watch</H2>
+<P>watch changes to an object of kind PersistentVolume. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/persistentvolumes/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolume</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-persistentvolume-v1-core">Watch List</H2>
+<P>watch individual changes to a list of PersistentVolume. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/persistentvolumes</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-persistentvolume-v1-core-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-persistentvolume-v1-core">Patch Status</H2>
+<P>partially update status of the specified PersistentVolume</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/persistentvolumes/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolume</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-persistentvolume-v1-core">Read Status</H2>
+<P>read status of the specified PersistentVolume</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/persistentvolumes/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolume</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-persistentvolume-v1-core">Replace Status</H2>
+<P>replace status of the specified PersistentVolume</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/persistentvolumes/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PersistentVolume</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#persistentvolume-v1-core">PersistentVolume</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration v1beta2 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>PriorityLevelConfiguration</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#prioritylevelconfigurationlist-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationList [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>`metadata` is the standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#prioritylevelconfigurationspec-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationSpec</a></I></TD><TD>`spec` is the specification of the desired behavior of a &#34;request-priority&#34;. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#prioritylevelconfigurationstatus-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationStatus</a></I></TD><TD>`status` is the current status of a &#34;request-priority&#34;. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="prioritylevelconfigurationspec-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationSpec v1beta2 flowcontrol</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>limited</CODE><BR /><I><a href="#limitedprioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">LimitedPriorityLevelConfiguration</a></I></TD><TD>`limited` specifies how requests are handled for a Limited priority level. This field must be non-empty if and only if `type` is `&#34;Limited&#34;`.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>`type` indicates whether this priority level is subject to limitation on request execution.  A value of `&#34;Exempt&#34;` means that requests of this priority level are not subject to a limit (and thus are never queued) and do not detract from the capacity made available to other priority levels.  A value of `&#34;Limited&#34;` means that (a) requests of this priority level _are_ subject to limits and (b) some of the server&#39;s limited capacity is made available exclusively to this priority level. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="prioritylevelconfigurationstatus-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationStatus v1beta2 flowcontrol</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#prioritylevelconfigurationcondition-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationCondition</a> array</I></TD><TD>`conditions` is the current state of &#34;request-priority&#34;.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="prioritylevelconfigurationlist-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationList v1beta2 flowcontrol</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a> array</I></TD><TD>`items` is a list of request-priorities.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>`metadata` is the standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">Create</H2>
+<P>create a PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">Patch</H2>
+<P>partially update the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">Replace</H2>
+<P>replace the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">Delete</H2>
+<P>delete a PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">Delete Collection</H2>
+<P>delete collection of PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">Read</H2>
+<P>read the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">List</H2>
+<P>list or watch objects of kind PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfigurationlist-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">Watch</H2>
+<P>watch changes to an object of kind PriorityLevelConfiguration. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta2/watch/prioritylevelconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of PriorityLevelConfiguration. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta2/watch/prioritylevelconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">Patch Status</H2>
+<P>partially update status of the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">Read Status</H2>
+<P>read status of the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">Replace Status</H2>
+<P>replace status of the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/flowcontrol.apiserver.k8s.io/v1beta2/prioritylevelconfigurations/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="resourcequota-v1-core">ResourceQuota v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ResourceQuota</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#resourcequotalist-v1-core">ResourceQuotaList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#resourcequotaspec-v1-core">ResourceQuotaSpec</a></I></TD><TD>Spec defines the desired quota. https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#resourcequotastatus-v1-core">ResourceQuotaStatus</a></I></TD><TD>Status defines the actual enforced quota and its current usage. https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="resourcequotaspec-v1-core">ResourceQuotaSpec v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#resourcequota-v1-core">ResourceQuota [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>hard</CODE><BR /><I>object</I></TD><TD>hard is the set of desired hard limits for each named resource. More info: https://kubernetes.io/docs/concepts/policy/resource-quotas/</TD></TR>
+<TR><TD><CODE>scopeSelector</CODE><BR /><I><a href="#scopeselector-v1-core">ScopeSelector</a></I></TD><TD>scopeSelector is also a collection of filters like scopes that must match each object tracked by a quota but expressed using ScopeSelectorOperator in combination with possible values. For a resource to match, both scopes AND scopeSelector (if specified in spec), must be matched.</TD></TR>
+<TR><TD><CODE>scopes</CODE><BR /><I>string array</I></TD><TD>A collection of filters that must match each object tracked by a quota. If not specified, the quota matches all objects.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="resourcequotastatus-v1-core">ResourceQuotaStatus v1 core</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#resourcequota-v1-core">ResourceQuota [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>hard</CODE><BR /><I>object</I></TD><TD>Hard is the set of enforced hard limits for each named resource. More info: https://kubernetes.io/docs/concepts/policy/resource-quotas/</TD></TR>
+<TR><TD><CODE>used</CODE><BR /><I>object</I></TD><TD>Used is the current observed total usage of the resource in the namespace.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="resourcequotalist-v1-core">ResourceQuotaList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#resourcequota-v1-core">ResourceQuota</a> array</I></TD><TD>Items is a list of ResourceQuota objects. More info: https://kubernetes.io/docs/concepts/policy/resource-quotas/</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-resourcequota-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-resourcequota-v1-core">Create</H2>
+<P>create a ResourceQuota</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/resourcequotas</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-resourcequota-v1-core">Patch</H2>
+<P>partially update the specified ResourceQuota</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/resourcequotas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ResourceQuota</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-resourcequota-v1-core">Replace</H2>
+<P>replace the specified ResourceQuota</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/resourcequotas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ResourceQuota</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-resourcequota-v1-core">Delete</H2>
+<P>delete a ResourceQuota</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/resourcequotas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ResourceQuota</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-resourcequota-v1-core">Delete Collection</H2>
+<P>delete collection of ResourceQuota</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/resourcequotas</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-resourcequota-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-resourcequota-v1-core">Read</H2>
+<P>read the specified ResourceQuota</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/resourcequotas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ResourceQuota</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-resourcequota-v1-core">List</H2>
+<P>list or watch objects of kind ResourceQuota</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/resourcequotas</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#resourcequotalist-v1-core">ResourceQuotaList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-resourcequota-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind ResourceQuota</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/resourcequotas</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#resourcequotalist-v1-core">ResourceQuotaList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-resourcequota-v1-core">Watch</H2>
+<P>watch changes to an object of kind ResourceQuota. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/resourcequotas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ResourceQuota</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-resourcequota-v1-core">Watch List</H2>
+<P>watch individual changes to a list of ResourceQuota. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/resourcequotas</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-resourcequota-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of ResourceQuota. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/resourcequotas</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-resourcequota-v1-core-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-resourcequota-v1-core">Patch Status</H2>
+<P>partially update status of the specified ResourceQuota</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/resourcequotas/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ResourceQuota</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-resourcequota-v1-core">Read Status</H2>
+<P>read status of the specified ResourceQuota</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/resourcequotas/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ResourceQuota</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-resourcequota-v1-core">Replace Status</H2>
+<P>replace status of the specified ResourceQuota</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/resourcequotas/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ResourceQuota</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#resourcequota-v1-core">ResourceQuota</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="role-v1-rbac-authorization-k8s-io">Role v1 rbac.authorization.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rbac.authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Role</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#rolelist-v1-rbac-authorization-k8s-io">RoleList [rbac/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata.</TD></TR>
+<TR><TD><CODE>rules</CODE><BR /><I><a href="#policyrule-v1-rbac-authorization-k8s-io">PolicyRule</a> array</I></TD><TD>Rules holds all the PolicyRules for this Role</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="rolelist-v1-rbac-authorization-k8s-io">RoleList v1 rbac</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#role-v1-rbac-authorization-k8s-io">Role</a> array</I></TD><TD>Items is a list of Roles</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard object&#39;s metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-role-v1-rbac-authorization-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-role-v1-rbac-authorization-k8s-io">Create</H2>
+<P>create a Role</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#role-v1-rbac-authorization-k8s-io">Role</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#role-v1-rbac-authorization-k8s-io">Role</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#role-v1-rbac-authorization-k8s-io">Role</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#role-v1-rbac-authorization-k8s-io">Role</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-role-v1-rbac-authorization-k8s-io">Patch</H2>
+<P>partially update the specified Role</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Role</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#role-v1-rbac-authorization-k8s-io">Role</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#role-v1-rbac-authorization-k8s-io">Role</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-role-v1-rbac-authorization-k8s-io">Replace</H2>
+<P>replace the specified Role</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Role</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#role-v1-rbac-authorization-k8s-io">Role</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#role-v1-rbac-authorization-k8s-io">Role</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#role-v1-rbac-authorization-k8s-io">Role</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-role-v1-rbac-authorization-k8s-io">Delete</H2>
+<P>delete a Role</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Role</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-role-v1-rbac-authorization-k8s-io">Delete Collection</H2>
+<P>delete collection of Role</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-role-v1-rbac-authorization-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-role-v1-rbac-authorization-k8s-io">Read</H2>
+<P>read the specified Role</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Role</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#role-v1-rbac-authorization-k8s-io">Role</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-role-v1-rbac-authorization-k8s-io">List</H2>
+<P>list or watch objects of kind Role</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#rolelist-v1-rbac-authorization-k8s-io">RoleList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-role-v1-rbac-authorization-k8s-io">List All Namespaces</H2>
+<P>list or watch objects of kind Role</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/roles</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#rolelist-v1-rbac-authorization-k8s-io">RoleList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-role-v1-rbac-authorization-k8s-io">Watch</H2>
+<P>watch changes to an object of kind Role. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/watch/namespaces/{namespace}/roles/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Role</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-role-v1-rbac-authorization-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of Role. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/watch/namespaces/{namespace}/roles</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-role-v1-rbac-authorization-k8s-io">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Role. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/watch/roles</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="rolebinding-v1-rbac-authorization-k8s-io">RoleBinding v1 rbac.authorization.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rbac.authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>RoleBinding</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#rolebindinglist-v1-rbac-authorization-k8s-io">RoleBindingList [rbac/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata.</TD></TR>
+<TR><TD><CODE>roleRef</CODE><BR /><I><a href="#roleref-v1-rbac-authorization-k8s-io">RoleRef</a></I></TD><TD>RoleRef can reference a Role in the current namespace or a ClusterRole in the global namespace. If the RoleRef cannot be resolved, the Authorizer must return an error.</TD></TR>
+<TR><TD><CODE>subjects</CODE><BR /><I><a href="#subject-v1-rbac-authorization-k8s-io">Subject</a> array</I></TD><TD>Subjects holds references to the objects the role applies to.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="rolebindinglist-v1-rbac-authorization-k8s-io">RoleBindingList v1 rbac</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding</a> array</I></TD><TD>Items is a list of RoleBindings</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard object&#39;s metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-rolebinding-v1-rbac-authorization-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-rolebinding-v1-rbac-authorization-k8s-io">Create</H2>
+<P>create a RoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-rolebinding-v1-rbac-authorization-k8s-io">Patch</H2>
+<P>partially update the specified RoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RoleBinding</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-rolebinding-v1-rbac-authorization-k8s-io">Replace</H2>
+<P>replace the specified RoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RoleBinding</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-rolebinding-v1-rbac-authorization-k8s-io">Delete</H2>
+<P>delete a RoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RoleBinding</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-rolebinding-v1-rbac-authorization-k8s-io">Delete Collection</H2>
+<P>delete collection of RoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-rolebinding-v1-rbac-authorization-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-rolebinding-v1-rbac-authorization-k8s-io">Read</H2>
+<P>read the specified RoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RoleBinding</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-rolebinding-v1-rbac-authorization-k8s-io">List</H2>
+<P>list or watch objects of kind RoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#rolebindinglist-v1-rbac-authorization-k8s-io">RoleBindingList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-rolebinding-v1-rbac-authorization-k8s-io">List All Namespaces</H2>
+<P>list or watch objects of kind RoleBinding</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/rolebindings</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#rolebindinglist-v1-rbac-authorization-k8s-io">RoleBindingList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-rolebinding-v1-rbac-authorization-k8s-io">Watch</H2>
+<P>watch changes to an object of kind RoleBinding. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/watch/namespaces/{namespace}/rolebindings/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RoleBinding</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-rolebinding-v1-rbac-authorization-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of RoleBinding. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/watch/namespaces/{namespace}/rolebindings</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-rolebinding-v1-rbac-authorization-k8s-io">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of RoleBinding. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/rbac.authorization.k8s.io/v1/watch/rolebindings</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="runtimeclass-v1-node-k8s-io">RuntimeClass v1 node.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>node.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>RuntimeClass</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#runtimeclass-v1beta1-node-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#runtimeclasslist-v1-node-k8s-io">RuntimeClassList [node/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>handler</CODE><BR /><I>string</I></TD><TD>Handler specifies the underlying runtime and configuration that the CRI implementation will use to handle pods of this class. The possible values are specific to the node &amp; CRI configuration.  It is assumed that all handlers are available on every node, and handlers of the same name are equivalent on every node. For example, a handler called &#34;runc&#34; might specify that the runc OCI runtime (using native Linux containers) will be used to run the containers in a pod. The Handler must be lowercase, conform to the DNS Label (RFC 1123) requirements, and is immutable.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>overhead</CODE><BR /><I><a href="#overhead-v1-node-k8s-io">Overhead</a></I></TD><TD>Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. For more details, see  https://kubernetes.io/docs/concepts/scheduling-eviction/pod-overhead/</TD></TR>
+<TR><TD><CODE>scheduling</CODE><BR /><I><a href="#scheduling-v1-node-k8s-io">Scheduling</a></I></TD><TD>Scheduling holds the scheduling constraints to ensure that pods running with this RuntimeClass are scheduled to nodes that support it. If scheduling is nil, this RuntimeClass is assumed to be supported by all nodes.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="runtimeclasslist-v1-node-k8s-io">RuntimeClassList v1 node</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass</a> array</I></TD><TD>Items is a list of schema objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-runtimeclass-v1-node-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-runtimeclass-v1-node-k8s-io">Create</H2>
+<P>create a RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/node.k8s.io/v1/runtimeclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-runtimeclass-v1-node-k8s-io">Patch</H2>
+<P>partially update the specified RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/node.k8s.io/v1/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-runtimeclass-v1-node-k8s-io">Replace</H2>
+<P>replace the specified RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/node.k8s.io/v1/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-runtimeclass-v1-node-k8s-io">Delete</H2>
+<P>delete a RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/node.k8s.io/v1/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-runtimeclass-v1-node-k8s-io">Delete Collection</H2>
+<P>delete collection of RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/node.k8s.io/v1/runtimeclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-runtimeclass-v1-node-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-runtimeclass-v1-node-k8s-io">Read</H2>
+<P>read the specified RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/node.k8s.io/v1/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-runtimeclass-v1-node-k8s-io">List</H2>
+<P>list or watch objects of kind RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/node.k8s.io/v1/runtimeclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclasslist-v1-node-k8s-io">RuntimeClassList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-runtimeclass-v1-node-k8s-io">Watch</H2>
+<P>watch changes to an object of kind RuntimeClass. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/node.k8s.io/v1/watch/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-runtimeclass-v1-node-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of RuntimeClass. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/node.k8s.io/v1/watch/runtimeclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="selfsubjectaccessreview-v1-authorization-k8s-io">SelfSubjectAccessReview v1 authorization.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SelfSubjectAccessReview</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#selfsubjectaccessreviewspec-v1-authorization-k8s-io">SelfSubjectAccessReviewSpec</a></I></TD><TD>Spec holds information about the request being evaluated.  user and groups must be empty</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#subjectaccessreviewstatus-v1-authorization-k8s-io">SubjectAccessReviewStatus</a></I></TD><TD>Status is filled in by the server and indicates whether the request is allowed or not</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="selfsubjectaccessreviewspec-v1-authorization-k8s-io">SelfSubjectAccessReviewSpec v1 authorization</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#selfsubjectaccessreview-v1-authorization-k8s-io">SelfSubjectAccessReview [authorization/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nonResourceAttributes</CODE><BR /><I><a href="#nonresourceattributes-v1-authorization-k8s-io">NonResourceAttributes</a></I></TD><TD>NonResourceAttributes describes information for a non-resource access request</TD></TR>
+<TR><TD><CODE>resourceAttributes</CODE><BR /><I><a href="#resourceattributes-v1-authorization-k8s-io">ResourceAttributes</a></I></TD><TD>ResourceAuthorizationAttributes describes information for a resource access request</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-selfsubjectaccessreview-v1-authorization-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-selfsubjectaccessreview-v1-authorization-k8s-io">Create</H2>
+<P>create a SelfSubjectAccessReview</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/authorization.k8s.io/v1/selfsubjectaccessreviews</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#selfsubjectaccessreview-v1-authorization-k8s-io">SelfSubjectAccessReview</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#selfsubjectaccessreview-v1-authorization-k8s-io">SelfSubjectAccessReview</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#selfsubjectaccessreview-v1-authorization-k8s-io">SelfSubjectAccessReview</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#selfsubjectaccessreview-v1-authorization-k8s-io">SelfSubjectAccessReview</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="selfsubjectrulesreview-v1-authorization-k8s-io">SelfSubjectRulesReview v1 authorization.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SelfSubjectRulesReview</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#selfsubjectrulesreviewspec-v1-authorization-k8s-io">SelfSubjectRulesReviewSpec</a></I></TD><TD>Spec holds information about the request being evaluated.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#subjectrulesreviewstatus-v1-authorization-k8s-io">SubjectRulesReviewStatus</a></I></TD><TD>Status is filled in by the server and indicates the set of actions a user can perform.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="selfsubjectrulesreviewspec-v1-authorization-k8s-io">SelfSubjectRulesReviewSpec v1 authorization</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#selfsubjectrulesreview-v1-authorization-k8s-io">SelfSubjectRulesReview [authorization/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>Namespace to evaluate rules for. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-selfsubjectrulesreview-v1-authorization-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-selfsubjectrulesreview-v1-authorization-k8s-io">Create</H2>
+<P>create a SelfSubjectRulesReview</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/authorization.k8s.io/v1/selfsubjectrulesreviews</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#selfsubjectrulesreview-v1-authorization-k8s-io">SelfSubjectRulesReview</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#selfsubjectrulesreview-v1-authorization-k8s-io">SelfSubjectRulesReview</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#selfsubjectrulesreview-v1-authorization-k8s-io">SelfSubjectRulesReview</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#selfsubjectrulesreview-v1-authorization-k8s-io">SelfSubjectRulesReview</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="serviceaccount-v1-core">ServiceAccount v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ServiceAccount</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#serviceaccountlist-v1-core">ServiceAccountList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>automountServiceAccountToken</CODE><BR /><I>boolean</I></TD><TD>AutomountServiceAccountToken indicates whether pods running as this service account should have an API token automatically mounted. Can be overridden at the pod level.</TD></TR>
+<TR><TD><CODE>imagePullSecrets</CODE><BR /><I><a href="#localobjectreference-v1-core">LocalObjectReference</a> array</I></TD><TD>ImagePullSecrets is a list of references to secrets in the same namespace to use for pulling any images in pods that reference this ServiceAccount. ImagePullSecrets are distinct from Secrets because Secrets can be mounted in the pod, but ImagePullSecrets are only accessed by the kubelet. More info: https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>secrets</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>name</I></TD><TD>Secrets is a list of the secrets in the same namespace that pods running using this ServiceAccount are allowed to use. Pods are only limited to this list if this service account has a &#34;kubernetes.io/enforce-mountable-secrets&#34; annotation set to &#34;true&#34;. This field should not be used to find auto-generated service account token secrets for use outside of pods. Instead, tokens can be requested directly using the TokenRequest API, or service account token secrets can be manually created. More info: https://kubernetes.io/docs/concepts/configuration/secret</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="serviceaccountlist-v1-core">ServiceAccountList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#serviceaccount-v1-core">ServiceAccount</a> array</I></TD><TD>List of ServiceAccounts. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-serviceaccount-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-serviceaccount-v1-core">Create</H2>
+<P>create a ServiceAccount</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/serviceaccounts</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-serviceaccount-v1-core">Patch</H2>
+<P>partially update the specified ServiceAccount</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/serviceaccounts/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceAccount</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-serviceaccount-v1-core">Replace</H2>
+<P>replace the specified ServiceAccount</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/serviceaccounts/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceAccount</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-serviceaccount-v1-core">Delete</H2>
+<P>delete a ServiceAccount</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/serviceaccounts/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceAccount</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-serviceaccount-v1-core">Delete Collection</H2>
+<P>delete collection of ServiceAccount</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/serviceaccounts</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-serviceaccount-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-serviceaccount-v1-core">Read</H2>
+<P>read the specified ServiceAccount</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/serviceaccounts/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceAccount</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#serviceaccount-v1-core">ServiceAccount</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-serviceaccount-v1-core">List</H2>
+<P>list or watch objects of kind ServiceAccount</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/serviceaccounts</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#serviceaccountlist-v1-core">ServiceAccountList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-serviceaccount-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind ServiceAccount</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/serviceaccounts</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#serviceaccountlist-v1-core">ServiceAccountList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-serviceaccount-v1-core">Watch</H2>
+<P>watch changes to an object of kind ServiceAccount. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/serviceaccounts/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the ServiceAccount</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-serviceaccount-v1-core">Watch List</H2>
+<P>watch individual changes to a list of ServiceAccount. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/serviceaccounts</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-serviceaccount-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of ServiceAccount. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/serviceaccounts</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion v1alpha1 internal.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>internal.apiserver.k8s.io</CODE></TD><TD><CODE>v1alpha1</CODE></TD><TD><CODE>StorageVersion</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#storageversionlist-v1alpha1-internal-apiserver-k8s-io">StorageVersionList [apiserverinternal/v1alpha1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>The name is &lt;group&gt;.&lt;resource&gt;.</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#storageversionspec-v1alpha1-internal-apiserver-k8s-io">StorageVersionSpec</a></I></TD><TD>Spec is an empty spec. It is here to comply with Kubernetes API style.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#storageversionstatus-v1alpha1-internal-apiserver-k8s-io">StorageVersionStatus</a></I></TD><TD>API server instances report the version they can decode and the version they encode objects to when persisting objects in the backend.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="storageversionspec-v1alpha1-internal-apiserver-k8s-io">StorageVersionSpec v1alpha1 apiserverinternal</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion [apiserverinternal/v1alpha1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+</TBODY>
+</TABLE>
+<H3 id="storageversionstatus-v1alpha1-internal-apiserver-k8s-io">StorageVersionStatus v1alpha1 apiserverinternal</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion [apiserverinternal/v1alpha1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>commonEncodingVersion</CODE><BR /><I>string</I></TD><TD>If all API server instances agree on the same encoding storage version, then this field is set to that version. Otherwise this field is left empty. API servers should finish updating its storageVersionStatus entry before serving write operations, so that this field will be in sync with the reality.</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#storageversioncondition-v1alpha1-internal-apiserver-k8s-io">StorageVersionCondition</a> array</I></TD><TD>The latest available observations of the storageVersion&#39;s state.</TD></TR>
+<TR><TD><CODE>storageVersions</CODE><BR /><I><a href="#serverstorageversion-v1alpha1-internal-apiserver-k8s-io">ServerStorageVersion</a> array</I></TD><TD>The reported versions per API server instance.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="storageversionlist-v1alpha1-internal-apiserver-k8s-io">StorageVersionList v1alpha1 apiserverinternal</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a> array</I></TD><TD>Items holds a list of StorageVersion</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-storageversion-v1alpha1-internal-apiserver-k8s-io">Create</H2>
+<P>create a StorageVersion</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/internal.apiserver.k8s.io/v1alpha1/storageversions</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-storageversion-v1alpha1-internal-apiserver-k8s-io">Patch</H2>
+<P>partially update the specified StorageVersion</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/internal.apiserver.k8s.io/v1alpha1/storageversions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageVersion</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-storageversion-v1alpha1-internal-apiserver-k8s-io">Replace</H2>
+<P>replace the specified StorageVersion</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/internal.apiserver.k8s.io/v1alpha1/storageversions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageVersion</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-storageversion-v1alpha1-internal-apiserver-k8s-io">Delete</H2>
+<P>delete a StorageVersion</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/internal.apiserver.k8s.io/v1alpha1/storageversions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageVersion</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-storageversion-v1alpha1-internal-apiserver-k8s-io">Delete Collection</H2>
+<P>delete collection of StorageVersion</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/internal.apiserver.k8s.io/v1alpha1/storageversions</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-storageversion-v1alpha1-internal-apiserver-k8s-io">Read</H2>
+<P>read the specified StorageVersion</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/internal.apiserver.k8s.io/v1alpha1/storageversions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageVersion</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-storageversion-v1alpha1-internal-apiserver-k8s-io">List</H2>
+<P>list or watch objects of kind StorageVersion</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/internal.apiserver.k8s.io/v1alpha1/storageversions</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageversionlist-v1alpha1-internal-apiserver-k8s-io">StorageVersionList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-storageversion-v1alpha1-internal-apiserver-k8s-io">Watch</H2>
+<P>watch changes to an object of kind StorageVersion. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/internal.apiserver.k8s.io/v1alpha1/watch/storageversions/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageVersion</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-storageversion-v1alpha1-internal-apiserver-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of StorageVersion. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/internal.apiserver.k8s.io/v1alpha1/watch/storageversions</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-storageversion-v1alpha1-internal-apiserver-k8s-io">Patch Status</H2>
+<P>partially update status of the specified StorageVersion</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/internal.apiserver.k8s.io/v1alpha1/storageversions/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageVersion</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-storageversion-v1alpha1-internal-apiserver-k8s-io">Read Status</H2>
+<P>read status of the specified StorageVersion</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/internal.apiserver.k8s.io/v1alpha1/storageversions/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageVersion</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-storageversion-v1alpha1-internal-apiserver-k8s-io">Replace Status</H2>
+<P>replace status of the specified StorageVersion</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/internal.apiserver.k8s.io/v1alpha1/storageversions/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the StorageVersion</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="subjectaccessreview-v1-authorization-k8s-io">SubjectAccessReview v1 authorization.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SubjectAccessReview</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#subjectaccessreviewspec-v1-authorization-k8s-io">SubjectAccessReviewSpec</a></I></TD><TD>Spec holds information about the request being evaluated</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#subjectaccessreviewstatus-v1-authorization-k8s-io">SubjectAccessReviewStatus</a></I></TD><TD>Status is filled in by the server and indicates whether the request is allowed or not</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="subjectaccessreviewspec-v1-authorization-k8s-io">SubjectAccessReviewSpec v1 authorization</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#localsubjectaccessreview-v1-authorization-k8s-io">LocalSubjectAccessReview [authorization/v1]</a></LI>
+  <LI><a href="#subjectaccessreview-v1-authorization-k8s-io">SubjectAccessReview [authorization/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>extra</CODE><BR /><I>object</I></TD><TD>Extra corresponds to the user.Info.GetExtra() method from the authenticator.  Since that is input to the authorizer it needs a reflection here.</TD></TR>
+<TR><TD><CODE>groups</CODE><BR /><I>string array</I></TD><TD>Groups is the groups you&#39;re testing for.</TD></TR>
+<TR><TD><CODE>nonResourceAttributes</CODE><BR /><I><a href="#nonresourceattributes-v1-authorization-k8s-io">NonResourceAttributes</a></I></TD><TD>NonResourceAttributes describes information for a non-resource access request</TD></TR>
+<TR><TD><CODE>resourceAttributes</CODE><BR /><I><a href="#resourceattributes-v1-authorization-k8s-io">ResourceAttributes</a></I></TD><TD>ResourceAuthorizationAttributes describes information for a resource access request</TD></TR>
+<TR><TD><CODE>uid</CODE><BR /><I>string</I></TD><TD>UID information about the requesting user.</TD></TR>
+<TR><TD><CODE>user</CODE><BR /><I>string</I></TD><TD>User is the user you&#39;re testing for. If you specify &#34;User&#34; but not &#34;Groups&#34;, then is it interpreted as &#34;What if User were not a member of any groups</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="subjectaccessreviewstatus-v1-authorization-k8s-io">SubjectAccessReviewStatus v1 authorization</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#localsubjectaccessreview-v1-authorization-k8s-io">LocalSubjectAccessReview [authorization/v1]</a></LI>
+  <LI><a href="#selfsubjectaccessreview-v1-authorization-k8s-io">SelfSubjectAccessReview [authorization/v1]</a></LI>
+  <LI><a href="#subjectaccessreview-v1-authorization-k8s-io">SubjectAccessReview [authorization/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowed</CODE><BR /><I>boolean</I></TD><TD>Allowed is required. True if the action would be allowed, false otherwise.</TD></TR>
+<TR><TD><CODE>denied</CODE><BR /><I>boolean</I></TD><TD>Denied is optional. True if the action would be denied, otherwise false. If both allowed is false and denied is false, then the authorizer has no opinion on whether to authorize the action. Denied may not be true if Allowed is true.</TD></TR>
+<TR><TD><CODE>evaluationError</CODE><BR /><I>string</I></TD><TD>EvaluationError is an indication that some error occurred during the authorization check. It is entirely possible to get an error and be able to continue determine authorization status in spite of it. For instance, RBAC can be missing a role, but enough roles are still present and bound to reason about the request.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>Reason is optional.  It indicates why a request was allowed or denied.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-subjectaccessreview-v1-authorization-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-subjectaccessreview-v1-authorization-k8s-io">Create</H2>
+<P>create a SubjectAccessReview</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/authorization.k8s.io/v1/subjectaccessreviews</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#subjectaccessreview-v1-authorization-k8s-io">SubjectAccessReview</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#subjectaccessreview-v1-authorization-k8s-io">SubjectAccessReview</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#subjectaccessreview-v1-authorization-k8s-io">SubjectAccessReview</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#subjectaccessreview-v1-authorization-k8s-io">SubjectAccessReview</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="tokenrequest-v1-authentication-k8s-io">TokenRequest v1 authentication.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authentication.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>TokenRequest</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#tokenrequestspec-v1-authentication-k8s-io">TokenRequestSpec</a></I></TD><TD>Spec holds information about the request being evaluated</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#tokenrequeststatus-v1-authentication-k8s-io">TokenRequestStatus</a></I></TD><TD>Status is filled in by the server and indicates whether the token can be authenticated.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="tokenrequestspec-v1-authentication-k8s-io">TokenRequestSpec v1 authentication</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#tokenrequest-v1-authentication-k8s-io">TokenRequest [authentication/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>audiences</CODE><BR /><I>string array</I></TD><TD>Audiences are the intendend audiences of the token. A recipient of a token must identitfy themself with an identifier in the list of audiences of the token, and otherwise should reject the token. A token issued for multiple audiences may be used to authenticate against any of the audiences listed but implies a high degree of trust between the target audiences.</TD></TR>
+<TR><TD><CODE>boundObjectRef</CODE><BR /><I><a href="#boundobjectreference-v1-authentication-k8s-io">BoundObjectReference</a></I></TD><TD>BoundObjectRef is a reference to an object that the token will be bound to. The token will only be valid for as long as the bound object exists. NOTE: The API server&#39;s TokenReview endpoint will validate the BoundObjectRef, but other audiences may not. Keep ExpirationSeconds small if you want prompt revocation.</TD></TR>
+<TR><TD><CODE>expirationSeconds</CODE><BR /><I>integer</I></TD><TD>ExpirationSeconds is the requested duration of validity of the request. The token issuer may return a token with a different validity duration so a client needs to check the &#39;expiration&#39; field in a response.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="tokenrequeststatus-v1-authentication-k8s-io">TokenRequestStatus v1 authentication</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#tokenrequest-v1-authentication-k8s-io">TokenRequest [authentication/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>expirationTimestamp</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>ExpirationTimestamp is the time of expiration of the returned token.</TD></TR>
+<TR><TD><CODE>token</CODE><BR /><I>string</I></TD><TD>Token is the opaque bearer token.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="tokenreview-v1-authentication-k8s-io">TokenReview v1 authentication.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authentication.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>TokenReview</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#tokenreviewspec-v1-authentication-k8s-io">TokenReviewSpec</a></I></TD><TD>Spec holds information about the request being evaluated</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#tokenreviewstatus-v1-authentication-k8s-io">TokenReviewStatus</a></I></TD><TD>Status is filled in by the server and indicates whether the request can be authenticated.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="tokenreviewspec-v1-authentication-k8s-io">TokenReviewSpec v1 authentication</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#tokenreview-v1-authentication-k8s-io">TokenReview [authentication/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>audiences</CODE><BR /><I>string array</I></TD><TD>Audiences is a list of the identifiers that the resource server presented with the token identifies as. Audience-aware token authenticators will verify that the token was intended for at least one of the audiences in this list. If no audiences are provided, the audience will default to the audience of the Kubernetes apiserver.</TD></TR>
+<TR><TD><CODE>token</CODE><BR /><I>string</I></TD><TD>Token is the opaque bearer token.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="tokenreviewstatus-v1-authentication-k8s-io">TokenReviewStatus v1 authentication</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#tokenreview-v1-authentication-k8s-io">TokenReview [authentication/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>audiences</CODE><BR /><I>string array</I></TD><TD>Audiences are audience identifiers chosen by the authenticator that are compatible with both the TokenReview and token. An identifier is any identifier in the intersection of the TokenReviewSpec audiences and the token&#39;s audiences. A client of the TokenReview API that sets the spec.audiences field should validate that a compatible audience identifier is returned in the status.audiences field to ensure that the TokenReview server is audience aware. If a TokenReview returns an empty status.audience field where status.authenticated is &#34;true&#34;, the token is valid against the audience of the Kubernetes API server.</TD></TR>
+<TR><TD><CODE>authenticated</CODE><BR /><I>boolean</I></TD><TD>Authenticated indicates that the token was associated with a known user.</TD></TR>
+<TR><TD><CODE>error</CODE><BR /><I>string</I></TD><TD>Error indicates that the token couldn&#39;t be checked</TD></TR>
+<TR><TD><CODE>user</CODE><BR /><I><a href="#userinfo-v1-authentication-k8s-io">UserInfo</a></I></TD><TD>User is the UserInfo associated with the provided token.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-tokenreview-v1-authentication-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-tokenreview-v1-authentication-k8s-io">Create</H2>
+<P>create a TokenReview</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/authentication.k8s.io/v1/tokenreviews</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#tokenreview-v1-authentication-k8s-io">TokenReview</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#tokenreview-v1-authentication-k8s-io">TokenReview</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#tokenreview-v1-authentication-k8s-io">TokenReview</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#tokenreview-v1-authentication-k8s-io">TokenReview</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="networkpolicy-v1-networking-k8s-io">NetworkPolicy v1 networking.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NetworkPolicy</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#networkpolicylist-v1-networking-k8s-io">NetworkPolicyList [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#networkpolicyspec-v1-networking-k8s-io">NetworkPolicySpec</a></I></TD><TD>Specification of the desired behavior for this NetworkPolicy.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#networkpolicystatus-v1-networking-k8s-io">NetworkPolicyStatus</a></I></TD><TD>Status is the current state of the NetworkPolicy. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="networkpolicyspec-v1-networking-k8s-io">NetworkPolicySpec v1 networking</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>egress</CODE><BR /><I><a href="#networkpolicyegressrule-v1-networking-k8s-io">NetworkPolicyEgressRule</a> array</I></TD><TD>List of egress rules to be applied to the selected pods. Outgoing traffic is allowed if there are no NetworkPolicies selecting the pod (and cluster policy otherwise allows the traffic), OR if the traffic matches at least one egress rule across all of the NetworkPolicy objects whose podSelector matches the pod. If this field is empty then this NetworkPolicy limits all outgoing traffic (and serves solely to ensure that the pods it selects are isolated by default). This field is beta-level in 1.8</TD></TR>
+<TR><TD><CODE>ingress</CODE><BR /><I><a href="#networkpolicyingressrule-v1-networking-k8s-io">NetworkPolicyIngressRule</a> array</I></TD><TD>List of ingress rules to be applied to the selected pods. Traffic is allowed to a pod if there are no NetworkPolicies selecting the pod (and cluster policy otherwise allows the traffic), OR if the traffic source is the pod&#39;s local node, OR if the traffic matches at least one ingress rule across all of the NetworkPolicy objects whose podSelector matches the pod. If this field is empty then this NetworkPolicy does not allow any traffic (and serves solely to ensure that the pods it selects are isolated by default)</TD></TR>
+<TR><TD><CODE>podSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>Selects the pods to which this NetworkPolicy object applies. The array of ingress rules is applied to any pods selected by this field. Multiple network policies can select the same set of pods. In this case, the ingress rules for each are combined additively. This field is NOT optional and follows standard label selector semantics. An empty podSelector matches all pods in this namespace.</TD></TR>
+<TR><TD><CODE>policyTypes</CODE><BR /><I>string array</I></TD><TD>List of rule types that the NetworkPolicy relates to. Valid options are [&#34;Ingress&#34;], [&#34;Egress&#34;], or [&#34;Ingress&#34;, &#34;Egress&#34;]. If this field is not specified, it will default based on the existence of Ingress or Egress rules; policies that contain an Egress section are assumed to affect Egress, and all policies (whether or not they contain an Ingress section) are assumed to affect Ingress. If you want to write an egress-only policy, you must explicitly specify policyTypes [ &#34;Egress&#34; ]. Likewise, if you want to write a policy that specifies that no egress is allowed, you must specify a policyTypes value that include &#34;Egress&#34; (since such a policy would not include an Egress section and would otherwise default to just [ &#34;Ingress&#34; ]). This field is beta-level in 1.8</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="networkpolicystatus-v1-networking-k8s-io">NetworkPolicyStatus v1 networking</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#condition-v1-meta">Condition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Conditions holds an array of metav1.Condition that describe the state of the NetworkPolicy. Current service state</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="networkpolicylist-v1-networking-k8s-io">NetworkPolicyList v1 networking</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a> array</I></TD><TD>Items is a list of schema objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-networkpolicy-v1-networking-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-networkpolicy-v1-networking-k8s-io">Create</H2>
+<P>create a NetworkPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-networkpolicy-v1-networking-k8s-io">Patch</H2>
+<P>partially update the specified NetworkPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NetworkPolicy</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-networkpolicy-v1-networking-k8s-io">Replace</H2>
+<P>replace the specified NetworkPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NetworkPolicy</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-networkpolicy-v1-networking-k8s-io">Delete</H2>
+<P>delete a NetworkPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NetworkPolicy</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-networkpolicy-v1-networking-k8s-io">Delete Collection</H2>
+<P>delete collection of NetworkPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-networkpolicy-v1-networking-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-networkpolicy-v1-networking-k8s-io">Read</H2>
+<P>read the specified NetworkPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NetworkPolicy</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-networkpolicy-v1-networking-k8s-io">List</H2>
+<P>list or watch objects of kind NetworkPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#networkpolicylist-v1-networking-k8s-io">NetworkPolicyList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-networkpolicy-v1-networking-k8s-io">List All Namespaces</H2>
+<P>list or watch objects of kind NetworkPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/networkpolicies</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#networkpolicylist-v1-networking-k8s-io">NetworkPolicyList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-networkpolicy-v1-networking-k8s-io">Watch</H2>
+<P>watch changes to an object of kind NetworkPolicy. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/watch/namespaces/{namespace}/networkpolicies/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NetworkPolicy</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-networkpolicy-v1-networking-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of NetworkPolicy. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/watch/namespaces/{namespace}/networkpolicies</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-networkpolicy-v1-networking-k8s-io">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of NetworkPolicy. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/watch/networkpolicies</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-networkpolicy-v1-networking-k8s-io-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-networkpolicy-v1-networking-k8s-io">Patch Status</H2>
+<P>partially update status of the specified NetworkPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NetworkPolicy</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-networkpolicy-v1-networking-k8s-io">Read Status</H2>
+<P>read status of the specified NetworkPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NetworkPolicy</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-networkpolicy-v1-networking-k8s-io">Replace Status</H2>
+<P>replace status of the specified NetworkPolicy</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the NetworkPolicy</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="-strong-definitions-strong-"><STRONG>DEFINITIONS</STRONG></H1>
+
+<P>This section contains definitions for objects used in the Kubernetes APIs.</P>
+<H2 id="apigroup-v1-meta">APIGroup v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>APIGroup</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>APIGroup contains the name, the supported versions, and the preferred version of a group.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apigrouplist-v1-meta">APIGroupList [meta/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the group.</TD></TR>
+<TR><TD><CODE>preferredVersion</CODE><BR /><I><a href="#groupversionfordiscovery-v1-meta">GroupVersionForDiscovery</a></I></TD><TD>preferredVersion is the version preferred by the API server, which probably is the storage version.</TD></TR>
+<TR><TD><CODE>serverAddressByClientCIDRs</CODE><BR /><I><a href="#serveraddressbyclientcidr-v1-meta">ServerAddressByClientCIDR</a> array</I></TD><TD>a map of client CIDR to server address that is serving this group. This is to help clients reach servers in the most network-efficient way possible. Clients can use the appropriate server address as per the CIDR that they match. In case of multiple matches, clients should use the longest matching CIDR. The server returns only those CIDRs that it thinks that the client can match. For example: the master will return an internal IP CIDR only, if the client reaches the server using an internal IP. Server looks at X-Forwarded-For header or X-Real-Ip header or request.RemoteAddr (in that order) to get the client IP.</TD></TR>
+<TR><TD><CODE>versions</CODE><BR /><I><a href="#groupversionfordiscovery-v1-meta">GroupVersionForDiscovery</a> array</I></TD><TD>versions are the versions supported in this group.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="apiresource-v1-meta">APIResource v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>APIResource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>APIResource specifies the name of a resource and whether it is namespaced.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apiresourcelist-v1-meta">APIResourceList [meta/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>categories</CODE><BR /><I>string array</I></TD><TD>categories is a list of the grouped resources this resource belongs to (e.g. &#39;all&#39;)</TD></TR>
+<TR><TD><CODE>group</CODE><BR /><I>string</I></TD><TD>group is the preferred group of the resource.  Empty implies the group of the containing resource list. For subresources, this may have a different value, for example: Scale&#34;.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>kind is the kind for the resource (e.g. &#39;Foo&#39; is the kind for a resource &#39;foo&#39;)</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the plural name of the resource.</TD></TR>
+<TR><TD><CODE>namespaced</CODE><BR /><I>boolean</I></TD><TD>namespaced indicates if a resource is namespaced or not.</TD></TR>
+<TR><TD><CODE>shortNames</CODE><BR /><I>string array</I></TD><TD>shortNames is a list of suggested short names of the resource.</TD></TR>
+<TR><TD><CODE>singularName</CODE><BR /><I>string</I></TD><TD>singularName is the singular name of the resource.  This allows clients to handle plural and singular opaquely. The singularName is more correct for reporting status on a single item and both singular and plural are allowed from the kubectl CLI interface.</TD></TR>
+<TR><TD><CODE>storageVersionHash</CODE><BR /><I>string</I></TD><TD>The hash value of the storage version, the version this resource is converted to when written to the data store. Value must be treated as opaque by clients. Only equality comparison on the value is valid. This is an alpha feature and may change or be removed in the future. The field is populated by the apiserver only if the StorageVersionHash feature gate is enabled. This field will remain optional even if it graduates.</TD></TR>
+<TR><TD><CODE>verbs</CODE><BR /><I>string array</I></TD><TD>verbs is a list of supported kube verbs (this includes get, list, watch, create, update, patch, delete, deletecollection, and proxy)</TD></TR>
+<TR><TD><CODE>version</CODE><BR /><I>string</I></TD><TD>version is the preferred version of the resource.  Empty implies the version of the containing resource list For subresources, this may have a different value, for example: v1 (while inside a v1beta1 version of the core resource&#39;s group)&#34;.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="apiservicecondition-v1-apiregistration-k8s-io">APIServiceCondition v1 apiregistration.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>APIServiceCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>APIServiceCondition describes the state of an APIService at a particular point</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apiservicestatus-v1-apiregistration-k8s-io">APIServiceStatus [apiregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>Human-readable message indicating details about last transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>Unique, one-word, CamelCase reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status is the status of the condition. Can be True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type is the type of the condition.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="apiversions-v1-meta">APIVersions v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>APIVersions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>APIVersions lists the versions that are available, to allow clients to discover the API at /api, which is the root path of the legacy v1 API.</P>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>serverAddressByClientCIDRs</CODE><BR /><I><a href="#serveraddressbyclientcidr-v1-meta">ServerAddressByClientCIDR</a> array</I></TD><TD>a map of client CIDR to server address that is serving this group. This is to help clients reach servers in the most network-efficient way possible. Clients can use the appropriate server address as per the CIDR that they match. In case of multiple matches, clients should use the longest matching CIDR. The server returns only those CIDRs that it thinks that the client can match. For example: the master will return an internal IP CIDR only, if the client reaches the server using an internal IP. Server looks at X-Forwarded-For header or X-Real-Ip header or request.RemoteAddr (in that order) to get the client IP.</TD></TR>
+<TR><TD><CODE>versions</CODE><BR /><I>string array</I></TD><TD>versions are the api versions that are available.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="awselasticblockstorevolumesource-v1-core">AWSElasticBlockStoreVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>AWSElasticBlockStoreVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Persistent Disk resource in AWS.
+
+An AWS EBS disk must exist before mounting to a container. The disk must also be in the same AWS zone as the kubelet. An AWS EBS disk can only be mounted as read/write once. AWS EBS volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore</TD></TR>
+<TR><TD><CODE>partition</CODE><BR /><I>integer</I></TD><TD>partition is the partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as &#34;1&#34;. Similarly, the volume partition for /dev/sda is &#34;0&#34; (or you can leave the property empty).</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly value true will force the readOnly setting in VolumeMounts. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore</TD></TR>
+<TR><TD><CODE>volumeID</CODE><BR /><I>string</I></TD><TD>volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume). More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="affinity-v1-core">Affinity v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Affinity</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Affinity is a group of affinity scheduling rules.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nodeAffinity</CODE><BR /><I><a href="#nodeaffinity-v1-core">NodeAffinity</a></I></TD><TD>Describes node affinity scheduling rules for the pod.</TD></TR>
+<TR><TD><CODE>podAffinity</CODE><BR /><I><a href="#podaffinity-v1-core">PodAffinity</a></I></TD><TD>Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).</TD></TR>
+<TR><TD><CODE>podAntiAffinity</CODE><BR /><I><a href="#podantiaffinity-v1-core">PodAntiAffinity</a></I></TD><TD>Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="aggregationrule-v1-rbac-authorization-k8s-io">AggregationRule v1 rbac.authorization.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rbac.authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>AggregationRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>AggregationRule describes how to locate ClusterRoles to aggregate into the ClusterRole</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole [rbac/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>clusterRoleSelectors</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a> array</I></TD><TD>ClusterRoleSelectors holds a list of selectors which will be used to find ClusterRoles and create the rules. If any of the selectors match, then the ClusterRole&#39;s permissions will be added</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="allowedcsidriver-v1beta1-policy">AllowedCSIDriver v1beta1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>AllowedCSIDriver</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>AllowedCSIDriver represents a single inline CSI Driver that is allowed to be used.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the registered name of the CSI driver</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="allowedflexvolume-v1beta1-policy">AllowedFlexVolume v1beta1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>AllowedFlexVolume</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>AllowedFlexVolume represents a single Flexvolume that is allowed to be used.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>driver</CODE><BR /><I>string</I></TD><TD>driver is the name of the Flexvolume driver.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="allowedhostpath-v1beta1-policy">AllowedHostPath v1beta1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>AllowedHostPath</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>AllowedHostPath defines the host volume conditions that will be enabled by a policy for pods to use. It requires the path prefix to be defined.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pathPrefix</CODE><BR /><I>string</I></TD><TD>pathPrefix is the path prefix that the host volume must match. It does not support `*`. Trailing slashes are trimmed when validating the path prefix with a host path.  Examples: `/foo` would allow `/foo`, `/foo/` and `/foo/bar` `/foo` would not allow `/food` or `/etc/foo`</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>when set to true, will allow host volumes matching the pathPrefix only if all volume mounts are readOnly.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="attachedvolume-v1-core">AttachedVolume v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>AttachedVolume</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>AttachedVolume describes a volume attached to a node</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodestatus-v1-core">NodeStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>devicePath</CODE><BR /><I>string</I></TD><TD>DevicePath represents the device path where the volume should be available</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the attached volume</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="azurediskvolumesource-v1-core">AzureDiskVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>AzureDiskVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>AzureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>cachingMode</CODE><BR /><I>string</I></TD><TD>cachingMode is the Host Caching mode: None, Read Only, Read Write.</TD></TR>
+<TR><TD><CODE>diskName</CODE><BR /><I>string</I></TD><TD>diskName is the Name of the data disk in the blob storage</TD></TR>
+<TR><TD><CODE>diskURI</CODE><BR /><I>string</I></TD><TD>diskURI is the URI of data disk in the blob storage</TD></TR>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>fsType is Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>kind expected values are Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="azurefilepersistentvolumesource-v1-core">AzureFilePersistentVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>AzureFilePersistentVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>AzureFile represents an Azure File Service mount on the host and bind mount to the pod.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.</TD></TR>
+<TR><TD><CODE>secretName</CODE><BR /><I>string</I></TD><TD>secretName is the name of secret that contains Azure Storage Account Name and Key</TD></TR>
+<TR><TD><CODE>secretNamespace</CODE><BR /><I>string</I></TD><TD>secretNamespace is the namespace of the secret that contains Azure Storage Account Name and Key default is the same as the Pod</TD></TR>
+<TR><TD><CODE>shareName</CODE><BR /><I>string</I></TD><TD>shareName is the azure Share Name</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="azurefilevolumesource-v1-core">AzureFileVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>AzureFileVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>AzureFile represents an Azure File Service mount on the host and bind mount to the pod.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.</TD></TR>
+<TR><TD><CODE>secretName</CODE><BR /><I>string</I></TD><TD>secretName is the  name of secret that contains Azure Storage Account Name and Key</TD></TR>
+<TR><TD><CODE>shareName</CODE><BR /><I>string</I></TD><TD>shareName is the azure share Name</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="boundobjectreference-v1-authentication-k8s-io">BoundObjectReference v1 authentication.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authentication.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>BoundObjectReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>BoundObjectReference is a reference to an object that a token is bound to.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#tokenrequestspec-v1-authentication-k8s-io">TokenRequestSpec [authentication/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>API version of the referent.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind of the referent. Valid kinds are &#39;Pod&#39; and &#39;Secret&#39;.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent.</TD></TR>
+<TR><TD><CODE>uid</CODE><BR /><I>string</I></TD><TD>UID of the referent.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="csinodedriver-v1-storage-k8s-io">CSINodeDriver v1 storage.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CSINodeDriver</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CSINodeDriver holds information about the specification of one CSI driver installed on a node</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csinodespec-v1-storage-k8s-io">CSINodeSpec [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allocatable</CODE><BR /><I><a href="#volumenoderesources-v1-storage-k8s-io">VolumeNodeResources</a></I></TD><TD>allocatable represents the volume resources of a node that are available for scheduling. This field is beta.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>This is the name of the CSI driver that this object refers to. This MUST be the same name returned by the CSI GetPluginName() call for that driver.</TD></TR>
+<TR><TD><CODE>nodeID</CODE><BR /><I>string</I></TD><TD>nodeID of the node from the driver point of view. This field enables Kubernetes to communicate with storage systems that do not share the same nomenclature for nodes. For example, Kubernetes may refer to a given node as &#34;node1&#34;, but the storage system may refer to the same node as &#34;nodeA&#34;. When Kubernetes issues a command to the storage system to attach a volume to a specific node, it can use this field to refer to the node name using the ID that the storage system will understand, e.g. &#34;nodeA&#34; instead of &#34;node1&#34;. This field is required.</TD></TR>
+<TR><TD><CODE>topologyKeys</CODE><BR /><I>string array</I></TD><TD>topologyKeys is the list of keys supported by the driver. When a driver is initialized on a cluster, it provides a set of topology keys that it understands (e.g. &#34;company.com/zone&#34;, &#34;company.com/region&#34;). When a driver is initialized on a node, it provides the same topology keys along with values. Kubelet will expose these topology keys as labels on its own node object. When Kubernetes does topology aware provisioning, it can use this list to determine which labels it should retrieve from the node object and pass back to the driver. It is possible for different nodes to use different topology keys. This can be empty if driver does not support topology.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="csipersistentvolumesource-v1-core">CSIPersistentVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CSIPersistentVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents storage that is managed by an external CSI volume driver (Beta feature)</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>controllerExpandSecretRef</CODE><BR /><I><a href="#secretreference-v1-core">SecretReference</a></I></TD><TD>controllerExpandSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI ControllerExpandVolume call. This is an alpha field and requires enabling ExpandCSIVolumes feature gate. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.</TD></TR>
+<TR><TD><CODE>controllerPublishSecretRef</CODE><BR /><I><a href="#secretreference-v1-core">SecretReference</a></I></TD><TD>controllerPublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI ControllerPublishVolume and ControllerUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.</TD></TR>
+<TR><TD><CODE>driver</CODE><BR /><I>string</I></TD><TD>driver is the name of the driver to use for this volume. Required.</TD></TR>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>fsType to mount. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;.</TD></TR>
+<TR><TD><CODE>nodePublishSecretRef</CODE><BR /><I><a href="#secretreference-v1-core">SecretReference</a></I></TD><TD>nodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.</TD></TR>
+<TR><TD><CODE>nodeStageSecretRef</CODE><BR /><I><a href="#secretreference-v1-core">SecretReference</a></I></TD><TD>nodeStageSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodeStageVolume and NodeStageVolume and NodeUnstageVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly value to pass to ControllerPublishVolumeRequest. Defaults to false (read/write).</TD></TR>
+<TR><TD><CODE>volumeAttributes</CODE><BR /><I>object</I></TD><TD>volumeAttributes of the volume to publish.</TD></TR>
+<TR><TD><CODE>volumeHandle</CODE><BR /><I>string</I></TD><TD>volumeHandle is the unique volume name returned by the CSI volume plugin’s CreateVolume to refer to the volume on all subsequent calls. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="csistoragecapacity-v1-storage-k8s-io">CSIStorageCapacity v1 storage.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CSIStorageCapacity</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CSIStorageCapacity stores the result of one CSI GetCapacity call. For a given StorageClass, this describes the available capacity in a particular topology segment.  This can be used when considering where to instantiate new PersistentVolumes.
+
+For example this can express things like: - StorageClass &#34;standard&#34; has &#34;1234 GiB&#34; available in &#34;topology.kubernetes.io/zone=us-east1&#34; - StorageClass &#34;localssd&#34; has &#34;10 GiB&#34; available in &#34;kubernetes.io/hostname=knode-abc123&#34;
+
+The following three cases all imply that no capacity is available for a certain combination: - no object exists with suitable topology and storage class name - such an object exists, but the capacity is unset - such an object exists, but the capacity is zero
+
+The producer of these objects can decide which approach is more suitable.
+
+They are consumed by the kube-scheduler when a CSI driver opts into capacity-aware scheduling with CSIDriverSpec.StorageCapacity. The scheduler compares the MaximumVolumeSize against the requested size of pending volumes to filter out unsuitable nodes. If MaximumVolumeSize is unset, it falls back to a comparison against the less precise Capacity. If that is also unset, the scheduler assumes that capacity is insufficient and tries some other node.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#csistoragecapacity-v1beta1-storage-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csistoragecapacitylist-v1-storage-k8s-io">CSIStorageCapacityList [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>capacity</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>Capacity is the value reported by the CSI driver in its GetCapacityResponse for a GetCapacityRequest with topology and parameters that match the previous fields.  The semantic is currently (CSI spec 1.2) defined as: The available capacity, in bytes, of the storage that can be used to provision volumes. If not set, that information is currently unavailable.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>maximumVolumeSize</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>MaximumVolumeSize is the value reported by the CSI driver in its GetCapacityResponse for a GetCapacityRequest with topology and parameters that match the previous fields.  This is defined since CSI spec 1.4.0 as the largest size that may be used in a CreateVolumeRequest.capacity_range.required_bytes field to create a volume with the same parameters as those in GetCapacityRequest. The corresponding value in the Kubernetes API is ResourceRequirements.Requests in a volume claim.</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. The name has no particular meaning. It must be be a DNS subdomain (dots allowed, 253 characters). To ensure that there are no conflicts with other CSI drivers on the cluster, the recommendation is to use csisc-&lt;uuid&gt;, a generated name, or a reverse-domain name which ends with the unique CSI driver name.  Objects are namespaced.  More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>nodeTopology</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>NodeTopology defines which nodes have access to the storage for which capacity was reported. If not set, the storage is not accessible from any node in the cluster. If empty, the storage is accessible from all nodes. This field is immutable.</TD></TR>
+<TR><TD><CODE>storageClassName</CODE><BR /><I>string</I></TD><TD>The name of the StorageClass that the reported capacity applies to. It must meet the same requirements as the name of a StorageClass object (non-empty, DNS subdomain). If that object no longer exists, the CSIStorageCapacity object is obsolete and should be removed by its creator. This field is immutable.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="csivolumesource-v1-core">CSIVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CSIVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a source location of a volume to mount, managed by an external CSI driver</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>driver</CODE><BR /><I>string</I></TD><TD>driver is the name of the CSI driver that handles this volume. Consult with your admin for the correct name as registered in the cluster.</TD></TR>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>fsType to mount. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. If not provided, the empty value is passed to the associated CSI driver which will determine the default filesystem to apply.</TD></TR>
+<TR><TD><CODE>nodePublishSecretRef</CODE><BR /><I><a href="#localobjectreference-v1-core">LocalObjectReference</a></I></TD><TD>nodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and  may be empty if no secret is required. If the secret object contains more than one secret, all secret references are passed.</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly specifies a read-only configuration for the volume. Defaults to false (read/write).</TD></TR>
+<TR><TD><CODE>volumeAttributes</CODE><BR /><I>object</I></TD><TD>volumeAttributes stores driver-specific properties that are passed to the CSI driver. Consult your driver&#39;s documentation for supported values.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="capabilities-v1-core">Capabilities v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Capabilities</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Adds and removes POSIX capabilities from running containers.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#securitycontext-v1-core">SecurityContext [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>add</CODE><BR /><I>string array</I></TD><TD>Added capabilities</TD></TR>
+<TR><TD><CODE>drop</CODE><BR /><I>string array</I></TD><TD>Removed capabilities</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="cephfspersistentvolumesource-v1-core">CephFSPersistentVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CephFSPersistentVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Ceph Filesystem mount that lasts the lifetime of a pod Cephfs volumes do not support ownership management or SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>monitors</CODE><BR /><I>string array</I></TD><TD>monitors is Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>secretFile</CODE><BR /><I>string</I></TD><TD>secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#secretreference-v1-core">SecretReference</a></I></TD><TD>secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>user</CODE><BR /><I>string</I></TD><TD>user is Optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="cephfsvolumesource-v1-core">CephFSVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CephFSVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Ceph Filesystem mount that lasts the lifetime of a pod Cephfs volumes do not support ownership management or SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>monitors</CODE><BR /><I>string array</I></TD><TD>monitors is Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>secretFile</CODE><BR /><I>string</I></TD><TD>secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#localobjectreference-v1-core">LocalObjectReference</a></I></TD><TD>secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>user</CODE><BR /><I>string</I></TD><TD>user is optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="certificatesigningrequestcondition-v1-certificates-k8s-io">CertificateSigningRequestCondition v1 certificates.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>certificates.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CertificateSigningRequestCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CertificateSigningRequestCondition describes a condition of a CertificateSigningRequest object</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#certificatesigningrequeststatus-v1-certificates-k8s-io">CertificateSigningRequestStatus [certificates/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>lastTransitionTime is the time the condition last transitioned from one status to another. If unset, when a new condition type is added or an existing condition&#39;s status is changed, the server defaults this to the current time.</TD></TR>
+<TR><TD><CODE>lastUpdateTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>lastUpdateTime is the time of the last update to this condition</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>message contains a human readable message with details about the request state</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>reason indicates a brief reason for the request state</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>status of the condition, one of True, False, Unknown. Approved, Denied, and Failed conditions may not be &#34;False&#34; or &#34;Unknown&#34;.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type of the condition. Known conditions are &#34;Approved&#34;, &#34;Denied&#34;, and &#34;Failed&#34;.  An &#34;Approved&#34; condition is added via the /approval subresource, indicating the request was approved and should be issued by the signer.  A &#34;Denied&#34; condition is added via the /approval subresource, indicating the request was denied and should not be issued by the signer.  A &#34;Failed&#34; condition is added via the /status subresource, indicating the signer failed to issue the certificate.  Approved and Denied conditions are mutually exclusive. Approved, Denied, and Failed conditions cannot be removed once added.  Only one condition of a given type is allowed.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="cinderpersistentvolumesource-v1-core">CinderPersistentVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CinderPersistentVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a cinder volume resource in Openstack. A Cinder volume must exist before mounting to a container. The volume must also be in the same region as the kubelet. Cinder volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>fsType Filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#secretreference-v1-core">SecretReference</a></I></TD><TD>secretRef is Optional: points to a secret object containing parameters used to connect to OpenStack.</TD></TR>
+<TR><TD><CODE>volumeID</CODE><BR /><I>string</I></TD><TD>volumeID used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="cindervolumesource-v1-core">CinderVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CinderVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a cinder volume resource in Openstack. A Cinder volume must exist before mounting to a container. The volume must also be in the same region as the kubelet. Cinder volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#localobjectreference-v1-core">LocalObjectReference</a></I></TD><TD>secretRef is optional: points to a secret object containing parameters used to connect to OpenStack.</TD></TR>
+<TR><TD><CODE>volumeID</CODE><BR /><I>string</I></TD><TD>volumeID used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="clientipconfig-v1-core">ClientIPConfig v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ClientIPConfig</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ClientIPConfig represents the configurations of Client IP based session affinity.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#sessionaffinityconfig-v1-core">SessionAffinityConfig [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>timeoutSeconds</CODE><BR /><I>integer</I></TD><TD>timeoutSeconds specifies the seconds of ClientIP type session sticky time. The value must be &gt;0 &amp;&amp; &lt;=86400(for 1 day) if ServiceAffinity == &#34;ClientIP&#34;. Default value is 10800(for 3 hours).</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="componentcondition-v1-core">ComponentCondition v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ComponentCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Information about the condition of a component.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#componentstatus-v1-core">ComponentStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>error</CODE><BR /><I>string</I></TD><TD>Condition error code for a component. For example, a health check error code.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>Message about the condition for a component. For example, information about a health check.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status of the condition for a component. Valid values for &#34;Healthy&#34;: &#34;True&#34;, &#34;False&#34;, or &#34;Unknown&#34;.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of condition for a component. Valid value: &#34;Healthy&#34;</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="condition-v1-meta">Condition v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Condition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Condition contains details for one aspect of the current state of this API Resource.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#networkpolicystatus-v1-networking-k8s-io">NetworkPolicyStatus [networking/v1]</a></LI>
+  <LI><a href="#poddisruptionbudgetstatus-v1-policy">PodDisruptionBudgetStatus [policy/v1]</a></LI>
+  <LI><a href="#poddisruptionbudgetstatus-v1beta1-policy">PodDisruptionBudgetStatus [policy/v1beta1]</a></LI>
+  <LI><a href="#servicestatus-v1-core">ServiceStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>lastTransitionTime is the last time the condition transitioned from one status to another. This should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>message is a human readable message indicating details about the transition. This may be an empty string.</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>observedGeneration represents the .metadata.generation that the condition was set based upon. For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date with respect to the current state of the instance.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>reason contains a programmatic identifier indicating the reason for the condition&#39;s last transition. Producers of specific condition types may define expected values and meanings for this field, and whether the values are considered a guaranteed API. The value should be a CamelCase string. This field may not be empty.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>status of the condition, one of True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type of condition in CamelCase or in foo.example.com/CamelCase.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="configmapenvsource-v1-core">ConfigMapEnvSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ConfigMapEnvSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ConfigMapEnvSource selects a ConfigMap to populate the environment variables with.
+
+The contents of the target ConfigMap&#39;s Data field will represent the key-value pairs as environment variables.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#envfromsource-v1-core">EnvFromSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names</TD></TR>
+<TR><TD><CODE>optional</CODE><BR /><I>boolean</I></TD><TD>Specify whether the ConfigMap must be defined</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="configmapkeyselector-v1-core">ConfigMapKeySelector v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ConfigMapKeySelector</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Selects a key from a ConfigMap.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#envvarsource-v1-core">EnvVarSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>key</CODE><BR /><I>string</I></TD><TD>The key to select.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names</TD></TR>
+<TR><TD><CODE>optional</CODE><BR /><I>boolean</I></TD><TD>Specify whether the ConfigMap or its key must be defined</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="configmapnodeconfigsource-v1-core">ConfigMapNodeConfigSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ConfigMapNodeConfigSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ConfigMapNodeConfigSource contains the information to reference a ConfigMap as a config source for the Node. This API is deprecated since 1.22: https://git.k8s.io/enhancements/keps/sig-node/281-dynamic-kubelet-configuration</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodeconfigsource-v1-core">NodeConfigSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>kubeletConfigKey</CODE><BR /><I>string</I></TD><TD>KubeletConfigKey declares which key of the referenced ConfigMap corresponds to the KubeletConfiguration structure This field is required in all cases.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the metadata.name of the referenced ConfigMap. This field is required in all cases.</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>Namespace is the metadata.namespace of the referenced ConfigMap. This field is required in all cases.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE><BR /><I>string</I></TD><TD>ResourceVersion is the metadata.ResourceVersion of the referenced ConfigMap. This field is forbidden in Node.Spec, and required in Node.Status.</TD></TR>
+<TR><TD><CODE>uid</CODE><BR /><I>string</I></TD><TD>UID is the metadata.UID of the referenced ConfigMap. This field is forbidden in Node.Spec, and required in Node.Status.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="configmapprojection-v1-core">ConfigMapProjection v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ConfigMapProjection</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Adapts a ConfigMap into a projected volume.
+
+The contents of the target ConfigMap&#39;s Data field will be presented in a projected volume as files using the keys in the Data field as the file names, unless the items element is populated with specific mappings of keys to paths. Note that this is identical to a configmap volume source without the default mode.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volumeprojection-v1-core">VolumeProjection [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#keytopath-v1-core">KeyToPath</a> array</I></TD><TD>items if unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the &#39;..&#39; path or start with &#39;..&#39;.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names</TD></TR>
+<TR><TD><CODE>optional</CODE><BR /><I>boolean</I></TD><TD>optional specify whether the ConfigMap or its keys must be defined</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="configmapvolumesource-v1-core">ConfigMapVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ConfigMapVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Adapts a ConfigMap into a volume.
+
+The contents of the target ConfigMap&#39;s Data field will be presented in a volume as files using the keys in the Data field as the file names, unless the items element is populated with specific mappings of keys to paths. ConfigMap volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>defaultMode</CODE><BR /><I>integer</I></TD><TD>defaultMode is optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#keytopath-v1-core">KeyToPath</a> array</I></TD><TD>items if unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the &#39;..&#39; path or start with &#39;..&#39;.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names</TD></TR>
+<TR><TD><CODE>optional</CODE><BR /><I>boolean</I></TD><TD>optional specify whether the ConfigMap or its keys must be defined</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="containerimage-v1-core">ContainerImage v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ContainerImage</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Describe a container image</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodestatus-v1-core">NodeStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>names</CODE><BR /><I>string array</I></TD><TD>Names by which this image is known. e.g. [&#34;k8s.gcr.io/hyperkube:v1.0.7&#34;, &#34;dockerhub.io/google_containers/hyperkube:v1.0.7&#34;]</TD></TR>
+<TR><TD><CODE>sizeBytes</CODE><BR /><I>integer</I></TD><TD>The size of the image in bytes.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="containerport-v1-core">ContainerPort v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ContainerPort</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ContainerPort represents a network port in a single container.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#container-v1-core">Container [core/v1]</a></LI>
+  <LI><a href="#ephemeralcontainer-v1-core">EphemeralContainer [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>containerPort</CODE><BR /><I>integer</I></TD><TD>Number of port to expose on the pod&#39;s IP address. This must be a valid port number, 0 &lt; x &lt; 65536.</TD></TR>
+<TR><TD><CODE>hostIP</CODE><BR /><I>string</I></TD><TD>What host IP to bind the external port to.</TD></TR>
+<TR><TD><CODE>hostPort</CODE><BR /><I>integer</I></TD><TD>Number of port to expose on the host. If specified, this must be a valid port number, 0 &lt; x &lt; 65536. If HostNetwork is specified, this must match ContainerPort. Most containers do not need this.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>If specified, this must be an IANA_SVC_NAME and unique within the pod. Each named port in a pod must have a unique name. Name for the port that can be referred to by services.</TD></TR>
+<TR><TD><CODE>protocol</CODE><BR /><I>string</I></TD><TD>Protocol for port. Must be UDP, TCP, or SCTP. Defaults to &#34;TCP&#34;.  </TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="containerresourcemetricsource-v2-autoscaling">ContainerResourceMetricSource v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>ContainerResourceMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ContainerResourceMetricSource indicates how to scale on a resource metric known to Kubernetes, as specified in requests and limits, describing each pod in the current scale target (e.g. CPU or memory).  The values will be averaged together before being compared to the target.  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.  Only one &#34;target&#34; type should be set.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#containerresourcemetricsource-v2beta2-autoscaling">v2beta2</a>
+<a href="#containerresourcemetricsource-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2-autoscaling">MetricSpec [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>container</CODE><BR /><I>string</I></TD><TD>container is the name of the container in the pods of the scaling target</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the resource in question.</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#metrictarget-v2-autoscaling">MetricTarget</a></I></TD><TD>target specifies the target value for the given metric</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="containerresourcemetricstatus-v2-autoscaling">ContainerResourceMetricStatus v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>ContainerResourceMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ContainerResourceMetricStatus indicates the current value of a resource metric known to Kubernetes, as specified in requests and limits, describing a single container in each pod in the current scale target (e.g. CPU or memory).  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#containerresourcemetricstatus-v2beta2-autoscaling">v2beta2</a>
+<a href="#containerresourcemetricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2-autoscaling">MetricStatus [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>container</CODE><BR /><I>string</I></TD><TD>Container is the name of the container in the pods of the scaling target</TD></TR>
+<TR><TD><CODE>current</CODE><BR /><I><a href="#metricvaluestatus-v2-autoscaling">MetricValueStatus</a></I></TD><TD>current contains the current value for the given metric</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the name of the resource in question.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="containerstate-v1-core">ContainerState v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ContainerState</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ContainerState holds a possible state of container. Only one of its members may be specified. If none of them is specified, the default one is ContainerStateWaiting.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#containerstatus-v1-core">ContainerStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>running</CODE><BR /><I><a href="#containerstaterunning-v1-core">ContainerStateRunning</a></I></TD><TD>Details about a running container</TD></TR>
+<TR><TD><CODE>terminated</CODE><BR /><I><a href="#containerstateterminated-v1-core">ContainerStateTerminated</a></I></TD><TD>Details about a terminated container</TD></TR>
+<TR><TD><CODE>waiting</CODE><BR /><I><a href="#containerstatewaiting-v1-core">ContainerStateWaiting</a></I></TD><TD>Details about a waiting container</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="containerstaterunning-v1-core">ContainerStateRunning v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ContainerStateRunning</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ContainerStateRunning is a running state of a container.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#containerstate-v1-core">ContainerState [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>startedAt</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Time at which the container was last (re-)started</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="containerstateterminated-v1-core">ContainerStateTerminated v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ContainerStateTerminated</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ContainerStateTerminated is a terminated state of a container.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#containerstate-v1-core">ContainerState [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>containerID</CODE><BR /><I>string</I></TD><TD>Container&#39;s ID in the format &#39;&lt;type&gt;://&lt;container_id&gt;&#39;</TD></TR>
+<TR><TD><CODE>exitCode</CODE><BR /><I>integer</I></TD><TD>Exit status from the last termination of the container</TD></TR>
+<TR><TD><CODE>finishedAt</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Time at which the container last terminated</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>Message regarding the last termination of the container</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>(brief) reason from the last termination of the container</TD></TR>
+<TR><TD><CODE>signal</CODE><BR /><I>integer</I></TD><TD>Signal from the last termination of the container</TD></TR>
+<TR><TD><CODE>startedAt</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Time at which previous execution of the container started</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="containerstatewaiting-v1-core">ContainerStateWaiting v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ContainerStateWaiting</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ContainerStateWaiting is a waiting state of a container.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#containerstate-v1-core">ContainerState [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>Message regarding why the container is not yet running.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>(brief) reason the container is not yet running.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="crossversionobjectreference-v2-autoscaling">CrossVersionObjectReference v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>CrossVersionObjectReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CrossVersionObjectReference contains enough information to let you identify the referred resource.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#crossversionobjectreference-v1-autoscaling">v1</a>
+<a href="#crossversionobjectreference-v2beta2-autoscaling">v2beta2</a>
+<a href="#crossversionobjectreference-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerspec-v2-autoscaling">HorizontalPodAutoscalerSpec [autoscaling/v2]</a></LI>
+  <LI><a href="#objectmetricsource-v2-autoscaling">ObjectMetricSource [autoscaling/v2]</a></LI>
+  <LI><a href="#objectmetricstatus-v2-autoscaling">ObjectMetricStatus [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>API version of the referent</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds&#34;</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="customresourcecolumndefinition-v1-apiextensions-k8s-io">CustomResourceColumnDefinition v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CustomResourceColumnDefinition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CustomResourceColumnDefinition specifies a column for server side printing.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcedefinitionversion-v1-apiextensions-k8s-io">CustomResourceDefinitionVersion [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>description</CODE><BR /><I>string</I></TD><TD>description is a human readable description of this column.</TD></TR>
+<TR><TD><CODE>format</CODE><BR /><I>string</I></TD><TD>format is an optional OpenAPI type definition for this column. The &#39;name&#39; format is applied to the primary identifier column to assist in clients identifying column is the resource name. See https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md#data-types for details.</TD></TR>
+<TR><TD><CODE>jsonPath</CODE><BR /><I>string</I></TD><TD>jsonPath is a simple JSON path (i.e. with array notation) which is evaluated against each custom resource to produce the value for this column.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is a human readable name for the column.</TD></TR>
+<TR><TD><CODE>priority</CODE><BR /><I>integer</I></TD><TD>priority is an integer defining the relative importance of this column compared to others. Lower numbers are considered higher priority. Columns that may be omitted in limited space scenarios should be given a priority greater than 0.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type is an OpenAPI type definition for this column. See https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md#data-types for details.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="customresourceconversion-v1-apiextensions-k8s-io">CustomResourceConversion v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CustomResourceConversion</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CustomResourceConversion describes how to convert different versions of a CR.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcedefinitionspec-v1-apiextensions-k8s-io">CustomResourceDefinitionSpec [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>strategy</CODE><BR /><I>string</I></TD><TD>strategy specifies how custom resources are converted between versions. Allowed values are: - `None`: The converter only change the apiVersion and would not touch any other field in the custom resource. - `Webhook`: API Server will call to an external webhook to do the conversion. Additional information   is needed for this option. This requires spec.preserveUnknownFields to be false, and spec.conversion.webhook to be set.</TD></TR>
+<TR><TD><CODE>webhook</CODE><BR /><I><a href="#webhookconversion-v1-apiextensions-k8s-io">WebhookConversion</a></I></TD><TD>webhook describes how to call the conversion webhook. Required when `strategy` is set to `Webhook`.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="customresourcedefinitioncondition-v1-apiextensions-k8s-io">CustomResourceDefinitionCondition v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CustomResourceDefinitionCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CustomResourceDefinitionCondition contains details for the current condition of this pod.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcedefinitionstatus-v1-apiextensions-k8s-io">CustomResourceDefinitionStatus [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>lastTransitionTime last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>message is a human-readable message indicating details about last transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>reason is a unique, one-word, CamelCase reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>status is the status of the condition. Can be True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type is the type of the condition. Types include Established, NamesAccepted and Terminating.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="customresourcedefinitionnames-v1-apiextensions-k8s-io">CustomResourceDefinitionNames v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CustomResourceDefinitionNames</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CustomResourceDefinitionNames indicates the names to serve this CustomResourceDefinition</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcedefinitionspec-v1-apiextensions-k8s-io">CustomResourceDefinitionSpec [apiextensions/v1]</a></LI>
+  <LI><a href="#customresourcedefinitionstatus-v1-apiextensions-k8s-io">CustomResourceDefinitionStatus [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>categories</CODE><BR /><I>string array</I></TD><TD>categories is a list of grouped resources this custom resource belongs to (e.g. &#39;all&#39;). This is published in API discovery documents, and used by clients to support invocations like `kubectl get all`.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>kind is the serialized kind of the resource. It is normally CamelCase and singular. Custom resource instances will use this value as the `kind` attribute in API calls.</TD></TR>
+<TR><TD><CODE>listKind</CODE><BR /><I>string</I></TD><TD>listKind is the serialized kind of the list for this resource. Defaults to &#34;`kind`List&#34;.</TD></TR>
+<TR><TD><CODE>plural</CODE><BR /><I>string</I></TD><TD>plural is the plural name of the resource to serve. The custom resources are served under `/apis/&lt;group&gt;/&lt;version&gt;/.../&lt;plural&gt;`. Must match the name of the CustomResourceDefinition (in the form `&lt;names.plural&gt;.&lt;group&gt;`). Must be all lowercase.</TD></TR>
+<TR><TD><CODE>shortNames</CODE><BR /><I>string array</I></TD><TD>shortNames are short names for the resource, exposed in API discovery documents, and used by clients to support invocations like `kubectl get &lt;shortname&gt;`. It must be all lowercase.</TD></TR>
+<TR><TD><CODE>singular</CODE><BR /><I>string</I></TD><TD>singular is the singular name of the resource. It must be all lowercase. Defaults to lowercased `kind`.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="customresourcedefinitionversion-v1-apiextensions-k8s-io">CustomResourceDefinitionVersion v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CustomResourceDefinitionVersion</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CustomResourceDefinitionVersion describes a version for CRD.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcedefinitionspec-v1-apiextensions-k8s-io">CustomResourceDefinitionSpec [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>additionalPrinterColumns</CODE><BR /><I><a href="#customresourcecolumndefinition-v1-apiextensions-k8s-io">CustomResourceColumnDefinition</a> array</I></TD><TD>additionalPrinterColumns specifies additional columns returned in Table output. See https://kubernetes.io/docs/reference/using-api/api-concepts/#receiving-resources-as-tables for details. If no columns are specified, a single column displaying the age of the custom resource is used.</TD></TR>
+<TR><TD><CODE>deprecated</CODE><BR /><I>boolean</I></TD><TD>deprecated indicates this version of the custom resource API is deprecated. When set to true, API requests to this version receive a warning header in the server response. Defaults to false.</TD></TR>
+<TR><TD><CODE>deprecationWarning</CODE><BR /><I>string</I></TD><TD>deprecationWarning overrides the default warning returned to API clients. May only be set when `deprecated` is true. The default warning indicates this version is deprecated and recommends use of the newest served version of equal or greater stability, if one exists.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the version name, e.g. “v1”, “v2beta1”, etc. The custom resources are served under this version at `/apis/&lt;group&gt;/&lt;version&gt;/...` if `served` is true.</TD></TR>
+<TR><TD><CODE>schema</CODE><BR /><I><a href="#customresourcevalidation-v1-apiextensions-k8s-io">CustomResourceValidation</a></I></TD><TD>schema describes the schema used for validation, pruning, and defaulting of this version of the custom resource.</TD></TR>
+<TR><TD><CODE>served</CODE><BR /><I>boolean</I></TD><TD>served is a flag enabling/disabling this version from being served via REST APIs</TD></TR>
+<TR><TD><CODE>storage</CODE><BR /><I>boolean</I></TD><TD>storage indicates this version should be used when persisting custom resources to storage. There must be exactly one version with storage=true.</TD></TR>
+<TR><TD><CODE>subresources</CODE><BR /><I><a href="#customresourcesubresources-v1-apiextensions-k8s-io">CustomResourceSubresources</a></I></TD><TD>subresources specify what subresources this version of the defined custom resource have.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="customresourcesubresourcescale-v1-apiextensions-k8s-io">CustomResourceSubresourceScale v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CustomResourceSubresourceScale</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CustomResourceSubresourceScale defines how to serve the scale subresource for CustomResources.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcesubresources-v1-apiextensions-k8s-io">CustomResourceSubresources [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>labelSelectorPath</CODE><BR /><I>string</I></TD><TD>labelSelectorPath defines the JSON path inside of a custom resource that corresponds to Scale `status.selector`. Only JSON paths without the array notation are allowed. Must be a JSON Path under `.status` or `.spec`. Must be set to work with HorizontalPodAutoscaler. The field pointed by this JSON path must be a string field (not a complex selector struct) which contains a serialized label selector in string form. More info: https://kubernetes.io/docs/tasks/access-kubernetes-api/custom-resources/custom-resource-definitions#scale-subresource If there is no value under the given path in the custom resource, the `status.selector` value in the `/scale` subresource will default to the empty string.</TD></TR>
+<TR><TD><CODE>specReplicasPath</CODE><BR /><I>string</I></TD><TD>specReplicasPath defines the JSON path inside of a custom resource that corresponds to Scale `spec.replicas`. Only JSON paths without the array notation are allowed. Must be a JSON Path under `.spec`. If there is no value under the given path in the custom resource, the `/scale` subresource will return an error on GET.</TD></TR>
+<TR><TD><CODE>statusReplicasPath</CODE><BR /><I>string</I></TD><TD>statusReplicasPath defines the JSON path inside of a custom resource that corresponds to Scale `status.replicas`. Only JSON paths without the array notation are allowed. Must be a JSON Path under `.status`. If there is no value under the given path in the custom resource, the `status.replicas` value in the `/scale` subresource will default to 0.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="customresourcesubresourcestatus-v1-apiextensions-k8s-io">CustomResourceSubresourceStatus v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CustomResourceSubresourceStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CustomResourceSubresourceStatus defines how to serve the status subresource for CustomResources. Status is represented by the `.status` JSON path inside of a CustomResource. When set, * exposes a /status subresource for the custom resource * PUT requests to the /status subresource take a custom resource object, and ignore changes to anything except the status stanza * PUT/POST/PATCH requests to the custom resource ignore changes to the status stanza</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcesubresources-v1-apiextensions-k8s-io">CustomResourceSubresources [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+</TBODY>
+</TABLE>
+<H2 id="customresourcesubresources-v1-apiextensions-k8s-io">CustomResourceSubresources v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CustomResourceSubresources</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CustomResourceSubresources defines the status and scale subresources for CustomResources.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcedefinitionversion-v1-apiextensions-k8s-io">CustomResourceDefinitionVersion [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>scale</CODE><BR /><I><a href="#customresourcesubresourcescale-v1-apiextensions-k8s-io">CustomResourceSubresourceScale</a></I></TD><TD>scale indicates the custom resource should serve a `/scale` subresource that returns an `autoscaling/v1` Scale object.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#customresourcesubresourcestatus-v1-apiextensions-k8s-io">CustomResourceSubresourceStatus</a></I></TD><TD>status indicates the custom resource should serve a `/status` subresource. When enabled: 1. requests to the custom resource primary endpoint ignore changes to the `status` stanza of the object. 2. requests to the custom resource `/status` subresource ignore changes to anything other than the `status` stanza of the object.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="customresourcevalidation-v1-apiextensions-k8s-io">CustomResourceValidation v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CustomResourceValidation</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>CustomResourceValidation is a list of validation methods for CustomResources.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcedefinitionversion-v1-apiextensions-k8s-io">CustomResourceDefinitionVersion [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>openAPIV3Schema</CODE><BR /><I><a href="#jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps</a></I></TD><TD>openAPIV3Schema is the OpenAPI v3 schema to use for validation and pruning.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="daemonendpoint-v1-core">DaemonEndpoint v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>DaemonEndpoint</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>DaemonEndpoint contains information about a single Daemon endpoint.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodedaemonendpoints-v1-core">NodeDaemonEndpoints [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>Port</CODE><BR /><I>integer</I></TD><TD>Port number of the given endpoint.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="daemonsetcondition-v1-apps">DaemonSetCondition v1 apps</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>DaemonSetCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>DaemonSetCondition describes the state of a DaemonSet at a certain point.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#daemonsetstatus-v1-apps">DaemonSetStatus [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>A human readable message indicating details about the transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>The reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status of the condition, one of True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of DaemonSet condition.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="daemonsetupdatestrategy-v1-apps">DaemonSetUpdateStrategy v1 apps</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>DaemonSetUpdateStrategy</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>DaemonSetUpdateStrategy is a struct used to control the update strategy for a DaemonSet.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#daemonsetspec-v1-apps">DaemonSetSpec [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rollingUpdate</CODE><BR /><I><a href="#rollingupdatedaemonset-v1-apps">RollingUpdateDaemonSet</a></I></TD><TD>Rolling update config params. Present only if type = &#34;RollingUpdate&#34;.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of daemon set update. Can be &#34;RollingUpdate&#34; or &#34;OnDelete&#34;. Default is RollingUpdate.  </TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="deleteoptions-v1-meta">DeleteOptions v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>DeleteOptions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>DeleteOptions may be provided when deleting an API object.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#eviction-v1-policy">Eviction [policy/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>dryRun</CODE><BR /><I>string array</I></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE><BR /><I>integer</I></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE><BR /><I>boolean</I></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the &#34;orphan&#34; finalizer will be added to/removed from the object&#39;s finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>preconditions</CODE><BR /><I><a href="#preconditions-v1-meta">Preconditions</a></I></TD><TD>Must be fulfilled before a deletion is carried out. If not possible, a 409 Conflict status will be returned.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE><BR /><I>string</I></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: &#39;Orphan&#39; - orphan the dependents; &#39;Background&#39; - allow the garbage collector to delete the dependents in the background; &#39;Foreground&#39; - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="deploymentcondition-v1-apps">DeploymentCondition v1 apps</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>DeploymentCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>DeploymentCondition describes the state of a deployment at a certain point.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#deploymentstatus-v1-apps">DeploymentStatus [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>lastUpdateTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>The last time this condition was updated.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>A human readable message indicating details about the transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>The reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status of the condition, one of True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of deployment condition.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="downwardapiprojection-v1-core">DownwardAPIProjection v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>DownwardAPIProjection</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents downward API info for projecting into a projected volume. Note that this is identical to a downwardAPI volume source without the default mode.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volumeprojection-v1-core">VolumeProjection [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#downwardapivolumefile-v1-core">DownwardAPIVolumeFile</a> array</I></TD><TD>Items is a list of DownwardAPIVolume file</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="downwardapivolumefile-v1-core">DownwardAPIVolumeFile v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>DownwardAPIVolumeFile</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>DownwardAPIVolumeFile represents information to create the file containing the pod field</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#downwardapiprojection-v1-core">DownwardAPIProjection [core/v1]</a></LI>
+  <LI><a href="#downwardapivolumesource-v1-core">DownwardAPIVolumeSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fieldRef</CODE><BR /><I><a href="#objectfieldselector-v1-core">ObjectFieldSelector</a></I></TD><TD>Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.</TD></TR>
+<TR><TD><CODE>mode</CODE><BR /><I>integer</I></TD><TD>Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the &#39;..&#39; path. Must be utf-8 encoded. The first item of the relative path must not start with &#39;..&#39;</TD></TR>
+<TR><TD><CODE>resourceFieldRef</CODE><BR /><I><a href="#resourcefieldselector-v1-core">ResourceFieldSelector</a></I></TD><TD>Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="downwardapivolumesource-v1-core">DownwardAPIVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>DownwardAPIVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>DownwardAPIVolumeSource represents a volume containing downward API info. Downward API volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>defaultMode</CODE><BR /><I>integer</I></TD><TD>Optional: mode bits to use on created files by default. Must be a Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#downwardapivolumefile-v1-core">DownwardAPIVolumeFile</a> array</I></TD><TD>Items is a list of downward API volume file</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="emptydirvolumesource-v1-core">EmptyDirVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EmptyDirVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents an empty directory for a pod. Empty directory volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>medium</CODE><BR /><I>string</I></TD><TD>medium represents what type of storage medium should back this directory. The default is &#34;&#34; which means to use the node&#39;s default medium. Must be an empty string (default) or Memory. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir</TD></TR>
+<TR><TD><CODE>sizeLimit</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>sizeLimit is the total amount of local storage required for this EmptyDir volume. The size limit is also applicable for memory medium. The maximum usage on memory medium EmptyDir would be the minimum value between the SizeLimit specified here and the sum of memory limits of all containers in a pod. The default is nil which means that the limit is undefined. More info: http://kubernetes.io/docs/user-guide/volumes#emptydir</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="endpoint-v1-discovery-k8s-io">Endpoint v1 discovery.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Endpoint</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Endpoint represents a single logical &#34;backend&#34; implementing a service.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#endpoint-v1beta1-discovery-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice [discovery/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>addresses</CODE><BR /><I>string array</I></TD><TD>addresses of this endpoint. The contents of this field are interpreted according to the corresponding EndpointSlice addressType field. Consumers must handle different types of addresses in the context of their own capabilities. This must contain at least one address but no more than 100. These are all assumed to be fungible and clients may choose to only use the first element. Refer to: https://issue.k8s.io/106267</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#endpointconditions-v1-discovery-k8s-io">EndpointConditions</a></I></TD><TD>conditions contains information about the current status of the endpoint.</TD></TR>
+<TR><TD><CODE>deprecatedTopology</CODE><BR /><I>object</I></TD><TD>deprecatedTopology contains topology information part of the v1beta1 API. This field is deprecated, and will be removed when the v1beta1 API is removed (no sooner than kubernetes v1.24).  While this field can hold values, it is not writable through the v1 API, and any attempts to write to it will be silently ignored. Topology information can be found in the zone and nodeName fields instead.</TD></TR>
+<TR><TD><CODE>hints</CODE><BR /><I><a href="#endpointhints-v1-discovery-k8s-io">EndpointHints</a></I></TD><TD>hints contains information associated with how an endpoint should be consumed.</TD></TR>
+<TR><TD><CODE>hostname</CODE><BR /><I>string</I></TD><TD>hostname of this endpoint. This field may be used by consumers of endpoints to distinguish endpoints from each other (e.g. in DNS names). Multiple endpoints which use the same hostname should be considered fungible (e.g. multiple A values in DNS). Must be lowercase and pass DNS Label (RFC 1123) validation.</TD></TR>
+<TR><TD><CODE>nodeName</CODE><BR /><I>string</I></TD><TD>nodeName represents the name of the Node hosting this endpoint. This can be used to determine endpoints local to a Node. This field can be enabled with the EndpointSliceNodeName feature gate.</TD></TR>
+<TR><TD><CODE>targetRef</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>targetRef is a reference to a Kubernetes object that represents this endpoint.</TD></TR>
+<TR><TD><CODE>zone</CODE><BR /><I>string</I></TD><TD>zone is the name of the Zone this endpoint exists in.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="endpointaddress-v1-core">EndpointAddress v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EndpointAddress</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>EndpointAddress is a tuple that describes single IP address.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpointsubset-v1-core">EndpointSubset [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>hostname</CODE><BR /><I>string</I></TD><TD>The Hostname of this endpoint</TD></TR>
+<TR><TD><CODE>ip</CODE><BR /><I>string</I></TD><TD>The IP of this endpoint. May not be loopback (127.0.0.0/8), link-local (169.254.0.0/16), or link-local multicast ((224.0.0.0/24). IPv6 is also accepted but not fully supported on all platforms. Also, certain kubernetes components, like kube-proxy, are not IPv6 ready.</TD></TR>
+<TR><TD><CODE>nodeName</CODE><BR /><I>string</I></TD><TD>Optional: Node hosting this endpoint. This can be used to determine endpoints local to a node.</TD></TR>
+<TR><TD><CODE>targetRef</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>Reference to object providing the endpoint.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="endpointconditions-v1-discovery-k8s-io">EndpointConditions v1 discovery.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EndpointConditions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>EndpointConditions represents the current condition of an endpoint.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#endpointconditions-v1beta1-discovery-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpoint-v1-discovery-k8s-io">Endpoint [discovery/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ready</CODE><BR /><I>boolean</I></TD><TD>ready indicates that this endpoint is prepared to receive traffic, according to whatever system is managing the endpoint. A nil value indicates an unknown state. In most cases consumers should interpret this unknown state as ready. For compatibility reasons, ready should never be &#34;true&#34; for terminating endpoints.</TD></TR>
+<TR><TD><CODE>serving</CODE><BR /><I>boolean</I></TD><TD>serving is identical to ready except that it is set regardless of the terminating state of endpoints. This condition should be set to true for a ready endpoint that is terminating. If nil, consumers should defer to the ready condition. This field can be enabled with the EndpointSliceTerminatingCondition feature gate.</TD></TR>
+<TR><TD><CODE>terminating</CODE><BR /><I>boolean</I></TD><TD>terminating indicates that this endpoint is terminating. A nil value indicates an unknown state. Consumers should interpret this unknown state to mean that the endpoint is not terminating. This field can be enabled with the EndpointSliceTerminatingCondition feature gate.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="endpointhints-v1-discovery-k8s-io">EndpointHints v1 discovery.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EndpointHints</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>EndpointHints provides hints describing how an endpoint should be consumed.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#endpointhints-v1beta1-discovery-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpoint-v1-discovery-k8s-io">Endpoint [discovery/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>forZones</CODE><BR /><I><a href="#forzone-v1-discovery-k8s-io">ForZone</a> array</I></TD><TD>forZones indicates the zone(s) this endpoint should be consumed by to enable topology aware routing.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="endpointport-v1-core">EndpointPort v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EndpointPort</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>EndpointPort is a tuple that describes a single port.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#endpointport-v1beta1-discovery-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpointsubset-v1-core">EndpointSubset [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>appProtocol</CODE><BR /><I>string</I></TD><TD>The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and https://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>The name of this port.  This must match the &#39;name&#39; field in the corresponding ServicePort. Must be a DNS_LABEL. Optional only if one port is defined.</TD></TR>
+<TR><TD><CODE>port</CODE><BR /><I>integer</I></TD><TD>The port number of the endpoint.</TD></TR>
+<TR><TD><CODE>protocol</CODE><BR /><I>string</I></TD><TD>The IP protocol for this port. Must be UDP, TCP, or SCTP. Default is TCP.  </TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="endpointsubset-v1-core">EndpointSubset v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EndpointSubset</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>EndpointSubset is a group of addresses with a common set of ports. The expanded set of endpoints is the Cartesian product of Addresses x Ports. For example, given:
+  {
+    Addresses: [{&#34;ip&#34;: &#34;10.10.1.1&#34;}, {&#34;ip&#34;: &#34;10.10.2.2&#34;}],
+    Ports:     [{&#34;name&#34;: &#34;a&#34;, &#34;port&#34;: 8675}, {&#34;name&#34;: &#34;b&#34;, &#34;port&#34;: 309}]
+  }
+The resulting set of endpoints can be viewed as:
+    a: [ 10.10.1.1:8675, 10.10.2.2:8675 ],
+    b: [ 10.10.1.1:309, 10.10.2.2:309 ]</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpoints-v1-core">Endpoints [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>addresses</CODE><BR /><I><a href="#endpointaddress-v1-core">EndpointAddress</a> array</I></TD><TD>IP addresses which offer the related ports that are marked as ready. These endpoints should be considered safe for load balancers and clients to utilize.</TD></TR>
+<TR><TD><CODE>notReadyAddresses</CODE><BR /><I><a href="#endpointaddress-v1-core">EndpointAddress</a> array</I></TD><TD>IP addresses which offer the related ports but are not currently marked as ready because they have not yet finished starting, have recently failed a readiness check, or have recently failed a liveness check.</TD></TR>
+<TR><TD><CODE>ports</CODE><BR /><I><a href="#endpointport-v1-core">EndpointPort</a> array</I></TD><TD>Port numbers available on the related IP addresses.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="envfromsource-v1-core">EnvFromSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EnvFromSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>EnvFromSource represents the source of a set of ConfigMaps</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#container-v1-core">Container [core/v1]</a></LI>
+  <LI><a href="#ephemeralcontainer-v1-core">EphemeralContainer [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>configMapRef</CODE><BR /><I><a href="#configmapenvsource-v1-core">ConfigMapEnvSource</a></I></TD><TD>The ConfigMap to select from</TD></TR>
+<TR><TD><CODE>prefix</CODE><BR /><I>string</I></TD><TD>An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#secretenvsource-v1-core">SecretEnvSource</a></I></TD><TD>The Secret to select from</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="envvar-v1-core">EnvVar v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EnvVar</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>EnvVar represents an environment variable present in a Container.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#container-v1-core">Container [core/v1]</a></LI>
+  <LI><a href="#ephemeralcontainer-v1-core">EphemeralContainer [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the environment variable. Must be a C_IDENTIFIER.</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I>string</I></TD><TD>Variable references $(VAR_NAME) are expanded using the previously defined environment variables in the container and any service environment variables. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. &#34;$$(VAR_NAME)&#34; will produce the string literal &#34;$(VAR_NAME)&#34;. Escaped references will never be expanded, regardless of whether the variable exists or not. Defaults to &#34;&#34;.</TD></TR>
+<TR><TD><CODE>valueFrom</CODE><BR /><I><a href="#envvarsource-v1-core">EnvVarSource</a></I></TD><TD>Source for the environment variable&#39;s value. Cannot be used if value is not empty.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="envvarsource-v1-core">EnvVarSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EnvVarSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>EnvVarSource represents a source for the value of an EnvVar.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#envvar-v1-core">EnvVar [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>configMapKeyRef</CODE><BR /><I><a href="#configmapkeyselector-v1-core">ConfigMapKeySelector</a></I></TD><TD>Selects a key of a ConfigMap.</TD></TR>
+<TR><TD><CODE>fieldRef</CODE><BR /><I><a href="#objectfieldselector-v1-core">ObjectFieldSelector</a></I></TD><TD>Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels[&#39;&lt;KEY&gt;&#39;]`, `metadata.annotations[&#39;&lt;KEY&gt;&#39;]`, spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.</TD></TR>
+<TR><TD><CODE>resourceFieldRef</CODE><BR /><I><a href="#resourcefieldselector-v1-core">ResourceFieldSelector</a></I></TD><TD>Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.</TD></TR>
+<TR><TD><CODE>secretKeyRef</CODE><BR /><I><a href="#secretkeyselector-v1-core">SecretKeySelector</a></I></TD><TD>Selects a key of a secret in the pod&#39;s namespace</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="ephemeralcontainer-v1-core">EphemeralContainer v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EphemeralContainer</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>An EphemeralContainer is a temporary container that you may add to an existing Pod for user-initiated activities such as debugging. Ephemeral containers have no resource or scheduling guarantees, and they will not be restarted when they exit or when a Pod is removed or restarted. The kubelet may evict a Pod if an ephemeral container causes the Pod to exceed its resource allocation.
+
+To add an ephemeral container, use the ephemeralcontainers subresource of an existing Pod. Ephemeral containers may not be removed or restarted.
+
+This is a beta feature available on clusters that haven&#39;t disabled the EphemeralContainers feature gate.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>args</CODE><BR /><I>string array</I></TD><TD>Arguments to the entrypoint. The image&#39;s CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container&#39;s environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. &#34;$$(VAR_NAME)&#34; will produce the string literal &#34;$(VAR_NAME)&#34;. Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell</TD></TR>
+<TR><TD><CODE>command</CODE><BR /><I>string array</I></TD><TD>Entrypoint array. Not executed within a shell. The image&#39;s ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container&#39;s environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. &#34;$$(VAR_NAME)&#34; will produce the string literal &#34;$(VAR_NAME)&#34;. Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell</TD></TR>
+<TR><TD><CODE>env</CODE><BR /><I><a href="#envvar-v1-core">EnvVar</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>name</I></TD><TD>List of environment variables to set in the container. Cannot be updated.</TD></TR>
+<TR><TD><CODE>envFrom</CODE><BR /><I><a href="#envfromsource-v1-core">EnvFromSource</a> array</I></TD><TD>List of sources to populate environment variables in the container. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.</TD></TR>
+<TR><TD><CODE>image</CODE><BR /><I>string</I></TD><TD>Container image name. More info: https://kubernetes.io/docs/concepts/containers/images</TD></TR>
+<TR><TD><CODE>imagePullPolicy</CODE><BR /><I>string</I></TD><TD>Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images  </TD></TR>
+<TR><TD><CODE>lifecycle</CODE><BR /><I><a href="#lifecycle-v1-core">Lifecycle</a></I></TD><TD>Lifecycle is not allowed for ephemeral containers.</TD></TR>
+<TR><TD><CODE>livenessProbe</CODE><BR /><I><a href="#probe-v1-core">Probe</a></I></TD><TD>Probes are not allowed for ephemeral containers.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the ephemeral container specified as a DNS_LABEL. This name must be unique among all containers, init containers and ephemeral containers.</TD></TR>
+<TR><TD><CODE>ports</CODE><BR /><I><a href="#containerport-v1-core">ContainerPort</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>containerPort</I></TD><TD>Ports are not allowed for ephemeral containers.</TD></TR>
+<TR><TD><CODE>readinessProbe</CODE><BR /><I><a href="#probe-v1-core">Probe</a></I></TD><TD>Probes are not allowed for ephemeral containers.</TD></TR>
+<TR><TD><CODE>resources</CODE><BR /><I><a href="#resourcerequirements-v1-core">ResourceRequirements</a></I></TD><TD>Resources are not allowed for ephemeral containers. Ephemeral containers use spare resources already allocated to the pod.</TD></TR>
+<TR><TD><CODE>securityContext</CODE><BR /><I><a href="#securitycontext-v1-core">SecurityContext</a></I></TD><TD>Optional: SecurityContext defines the security options the ephemeral container should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.</TD></TR>
+<TR><TD><CODE>startupProbe</CODE><BR /><I><a href="#probe-v1-core">Probe</a></I></TD><TD>Probes are not allowed for ephemeral containers.</TD></TR>
+<TR><TD><CODE>stdin</CODE><BR /><I>boolean</I></TD><TD>Whether this container should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the container will always result in EOF. Default is false.</TD></TR>
+<TR><TD><CODE>stdinOnce</CODE><BR /><I>boolean</I></TD><TD>Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the container is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false</TD></TR>
+<TR><TD><CODE>targetContainerName</CODE><BR /><I>string</I></TD><TD>If set, the name of the container from PodSpec that this ephemeral container targets. The ephemeral container will be run in the namespaces (IPC, PID, etc) of this container. If not set then the ephemeral container uses the namespaces configured in the Pod spec.  The container runtime must implement support for this feature. If the runtime does not support namespace targeting then the result of setting this field is undefined.</TD></TR>
+<TR><TD><CODE>terminationMessagePath</CODE><BR /><I>string</I></TD><TD>Optional: Path at which the file to which the container&#39;s termination message will be written is mounted into the container&#39;s filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.</TD></TR>
+<TR><TD><CODE>terminationMessagePolicy</CODE><BR /><I>string</I></TD><TD>Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the container status message on both success and failure. FallbackToLogsOnError will use the last chunk of container log output if the termination message file is empty and the container exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.  </TD></TR>
+<TR><TD><CODE>tty</CODE><BR /><I>boolean</I></TD><TD>Whether this container should allocate a TTY for itself, also requires &#39;stdin&#39; to be true. Default is false.</TD></TR>
+<TR><TD><CODE>volumeDevices</CODE><BR /><I><a href="#volumedevice-v1-core">VolumeDevice</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>devicePath</I></TD><TD>volumeDevices is the list of block devices to be used by the container.</TD></TR>
+<TR><TD><CODE>volumeMounts</CODE><BR /><I><a href="#volumemount-v1-core">VolumeMount</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>mountPath</I></TD><TD>Pod volumes to mount into the container&#39;s filesystem. Subpath mounts are not allowed for ephemeral containers. Cannot be updated.</TD></TR>
+<TR><TD><CODE>workingDir</CODE><BR /><I>string</I></TD><TD>Container&#39;s working directory. If not specified, the container runtime&#39;s default will be used, which might be configured in the container image. Cannot be updated.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="ephemeralvolumesource-v1-core">EphemeralVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EphemeralVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents an ephemeral volume that is handled by a normal storage driver.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>volumeClaimTemplate</CODE><BR /><I><a href="#persistentvolumeclaimtemplate-v1-core">PersistentVolumeClaimTemplate</a></I></TD><TD>Will be used to create a stand-alone PVC to provision the volume. The pod in which this EphemeralVolumeSource is embedded will be the owner of the PVC, i.e. the PVC will be deleted together with the pod.  The name of the PVC will be `&lt;pod name&gt;-&lt;volume name&gt;` where `&lt;volume name&gt;` is the name from the `PodSpec.Volumes` array entry. Pod validation will reject the pod if the concatenated name is not valid for a PVC (for example, too long).  An existing PVC with that name that is not owned by the pod will *not* be used for the pod to avoid using an unrelated volume by mistake. Starting the pod is then blocked until the unrelated PVC is removed. If such a pre-created PVC is meant to be used by the pod, the PVC has to updated with an owner reference to the pod once the pod exists. Normally this should not be necessary, but it may be useful when manually reconstructing a broken cluster.  This field is read-only and no changes will be made by Kubernetes to the PVC after it has been created.  Required, must not be nil.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="eventseries-v1-events-k8s-io">EventSeries v1 events.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>events.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EventSeries</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>EventSeries contain information on series of events, i.e. thing that was/is happening continuously for some time. How often to update the EventSeries is up to the event reporters. The default event reporter in &#34;k8s.io/client-go/tools/events/event_broadcaster.go&#34; shows how this struct is updated on heartbeats and can guide customized reporter implementations.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#eventseries-v1beta1-events-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#event-v1-events-k8s-io">Event [events/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>count</CODE><BR /><I>integer</I></TD><TD>count is the number of occurrences in this series up to the last heartbeat time.</TD></TR>
+<TR><TD><CODE>lastObservedTime</CODE><BR /><I><a href="#microtime-v1-meta">MicroTime</a></I></TD><TD>lastObservedTime is the time when last Event from the series was seen before last heartbeat.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="eventsource-v1-core">EventSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EventSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>EventSource contains information for an event.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#event-v1-core">Event [core/v1]</a></LI>
+  <LI><a href="#event-v1-events-k8s-io">Event [events/v1]</a></LI>
+  <LI><a href="#event-v1beta1-events-k8s-io">Event [events/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>component</CODE><BR /><I>string</I></TD><TD>Component from which the event is generated.</TD></TR>
+<TR><TD><CODE>host</CODE><BR /><I>string</I></TD><TD>Node name on which the event is generated.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="eviction-v1-policy">Eviction v1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Eviction</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Eviction evicts a pod from its node subject to certain policies and safety constraints. This is a subresource of Pod.  A request to cause such an eviction is created by POSTing to .../pods/&lt;pod name&gt;/evictions.</P>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>deleteOptions</CODE><BR /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD>DeleteOptions may be provided</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>ObjectMeta describes the pod that is being evicted.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="execaction-v1-core">ExecAction v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ExecAction</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ExecAction describes a &#34;run in container&#34; action.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#lifecyclehandler-v1-core">LifecycleHandler [core/v1]</a></LI>
+  <LI><a href="#probe-v1-core">Probe [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>command</CODE><BR /><I>string array</I></TD><TD>Command is the command line to execute inside the container, the working directory for the command  is root (&#39;/&#39;) in the container&#39;s filesystem. The command is simply exec&#39;d, it is not run inside a shell, so traditional shell instructions (&#39;|&#39;, etc) won&#39;t work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="externaldocumentation-v1-apiextensions-k8s-io">ExternalDocumentation v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ExternalDocumentation</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ExternalDocumentation allows referencing an external resource for extended documentation.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>description</CODE><BR /><I>string</I></TD><TD></TD></TR>
+<TR><TD><CODE>url</CODE><BR /><I>string</I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="externalmetricsource-v2-autoscaling">ExternalMetricSource v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>ExternalMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ExternalMetricSource indicates how to scale on a metric not associated with any Kubernetes object (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#externalmetricsource-v2beta2-autoscaling">v2beta2</a>
+<a href="#externalmetricsource-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2-autoscaling">MetricSpec [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#metrictarget-v2-autoscaling">MetricTarget</a></I></TD><TD>target specifies the target value for the given metric</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="externalmetricstatus-v2-autoscaling">ExternalMetricStatus v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>ExternalMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ExternalMetricStatus indicates the current value of a global metric not associated with any Kubernetes object.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#externalmetricstatus-v2beta2-autoscaling">v2beta2</a>
+<a href="#externalmetricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2-autoscaling">MetricStatus [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>current</CODE><BR /><I><a href="#metricvaluestatus-v2-autoscaling">MetricValueStatus</a></I></TD><TD>current contains the current value for the given metric</TD></TR>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="fcvolumesource-v1-core">FCVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>FCVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Fibre Channel volume. Fibre Channel volumes can only be mounted as read/write once. Fibre Channel volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified.</TD></TR>
+<TR><TD><CODE>lun</CODE><BR /><I>integer</I></TD><TD>lun is Optional: FC target lun number</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.</TD></TR>
+<TR><TD><CODE>targetWWNs</CODE><BR /><I>string array</I></TD><TD>targetWWNs is Optional: FC target worldwide names (WWNs)</TD></TR>
+<TR><TD><CODE>wwids</CODE><BR /><I>string array</I></TD><TD>wwids Optional: FC volume world wide identifiers (wwids) Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="fsgroupstrategyoptions-v1beta1-policy">FSGroupStrategyOptions v1beta1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>FSGroupStrategyOptions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>FSGroupStrategyOptions defines the strategy type and options used to create the strategy.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ranges</CODE><BR /><I><a href="#idrange-v1beta1-policy">IDRange</a> array</I></TD><TD>ranges are the allowed ranges of fs groups.  If you would like to force a single fs group then supply a single range with the same start and end. Required for MustRunAs.</TD></TR>
+<TR><TD><CODE>rule</CODE><BR /><I>string</I></TD><TD>rule is the strategy that will dictate what FSGroup is used in the SecurityContext.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="fieldsv1-v1-meta">FieldsV1 v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>FieldsV1</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>FieldsV1 stores a set of fields in a data structure like a Trie, in JSON format.
+
+Each key is either a &#39;.&#39; representing the field itself, and will always map to an empty set, or a string representing a sub-field or item. The string will follow one of these four formats: &#39;f:&lt;name&gt;&#39;, where &lt;name&gt; is the name of a field in a struct, or key in a map &#39;v:&lt;value&gt;&#39;, where &lt;value&gt; is the exact json formatted value of a list item &#39;i:&lt;index&gt;&#39;, where &lt;index&gt; is position of a item in a list &#39;k:&lt;keys&gt;&#39;, where &lt;keys&gt; is a map of  a list item&#39;s key fields to their unique values If a key maps to an empty Fields value, the field that key represents is part of the set.
+
+The exact format is defined in sigs.k8s.io/structured-merge-diff</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#managedfieldsentry-v1-meta">ManagedFieldsEntry [meta/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+</TBODY>
+</TABLE>
+<H2 id="flexpersistentvolumesource-v1-core">FlexPersistentVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>FlexPersistentVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>FlexPersistentVolumeSource represents a generic persistent volume resource that is provisioned/attached using an exec based plugin.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>driver</CODE><BR /><I>string</I></TD><TD>driver is the name of the driver to use for this volume.</TD></TR>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>fsType is the Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. The default filesystem depends on FlexVolume script.</TD></TR>
+<TR><TD><CODE>options</CODE><BR /><I>object</I></TD><TD>options is Optional: this field holds extra command options if any.</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly is Optional: defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#secretreference-v1-core">SecretReference</a></I></TD><TD>secretRef is Optional: SecretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="flexvolumesource-v1-core">FlexVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>FlexVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>FlexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>driver</CODE><BR /><I>string</I></TD><TD>driver is the name of the driver to use for this volume.</TD></TR>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. The default filesystem depends on FlexVolume script.</TD></TR>
+<TR><TD><CODE>options</CODE><BR /><I>object</I></TD><TD>options is Optional: this field holds extra command options if any.</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly is Optional: defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#localobjectreference-v1-core">LocalObjectReference</a></I></TD><TD>secretRef is Optional: secretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="flockervolumesource-v1-core">FlockerVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>FlockerVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Flocker volume mounted by the Flocker agent. One and only one of datasetName and datasetUUID should be set. Flocker volumes do not support ownership management or SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>datasetName</CODE><BR /><I>string</I></TD><TD>datasetName is Name of the dataset stored as metadata -&gt; name on the dataset for Flocker should be considered as deprecated</TD></TR>
+<TR><TD><CODE>datasetUUID</CODE><BR /><I>string</I></TD><TD>datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="flowdistinguishermethod-v1beta2-flowcontrol-apiserver-k8s-io">FlowDistinguisherMethod v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>FlowDistinguisherMethod</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>FlowDistinguisherMethod specifies the method of a flow distinguisher.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#flowdistinguishermethod-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschemaspec-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaSpec [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>`type` is the type of flow distinguisher method The supported types are &#34;ByUser&#34; and &#34;ByNamespace&#34;. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="flowschemacondition-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaCondition v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>FlowSchemaCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>FlowSchemaCondition describes conditions for a FlowSchema.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#flowschemacondition-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschemastatus-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaStatus [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>`lastTransitionTime` is the last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>`message` is a human-readable message indicating details about last transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>`reason` is a unique, one-word, CamelCase reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>`status` is the status of the condition. Can be True, False, Unknown. Required.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>`type` is the type of the condition. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="forzone-v1-discovery-k8s-io">ForZone v1 discovery.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ForZone</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ForZone provides information about which zones should consume this endpoint.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#forzone-v1beta1-discovery-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpointhints-v1-discovery-k8s-io">EndpointHints [discovery/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name represents the name of the zone.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="gcepersistentdiskvolumesource-v1-core">GCEPersistentDiskVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>GCEPersistentDiskVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Persistent Disk resource in Google Compute Engine.
+
+A GCE PD must exist before mounting to a container. The disk must also be in the same GCE project and zone as the kubelet. A GCE PD can only be mounted as read/write once or read-only many times. GCE PDs support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>fsType is filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk</TD></TR>
+<TR><TD><CODE>partition</CODE><BR /><I>integer</I></TD><TD>partition is the partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as &#34;1&#34;. Similarly, the volume partition for /dev/sda is &#34;0&#34; (or you can leave the property empty). More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk</TD></TR>
+<TR><TD><CODE>pdName</CODE><BR /><I>string</I></TD><TD>pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="grpcaction-v1-core">GRPCAction v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>GRPCAction</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P></P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#probe-v1-core">Probe [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>port</CODE><BR /><I>integer</I></TD><TD>Port number of the gRPC service. Number must be in the range 1 to 65535.</TD></TR>
+<TR><TD><CODE>service</CODE><BR /><I>string</I></TD><TD>Service is the name of the service to place in the gRPC HealthCheckRequest (see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).  If this is not specified, the default behavior is defined by gRPC.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="gitrepovolumesource-v1-core">GitRepoVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>GitRepoVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a volume that is populated with the contents of a git repository. Git repo volumes do not support ownership management. Git repo volumes support SELinux relabeling.
+
+DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod&#39;s container.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>directory</CODE><BR /><I>string</I></TD><TD>directory is the target directory name. Must not contain or start with &#39;..&#39;.  If &#39;.&#39; is supplied, the volume directory will be the git repository.  Otherwise, if specified, the volume will contain the git repository in the subdirectory with the given name.</TD></TR>
+<TR><TD><CODE>repository</CODE><BR /><I>string</I></TD><TD>repository is the URL</TD></TR>
+<TR><TD><CODE>revision</CODE><BR /><I>string</I></TD><TD>revision is the commit hash for the specified revision.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="glusterfspersistentvolumesource-v1-core">GlusterfsPersistentVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>GlusterfsPersistentVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Glusterfs mount that lasts the lifetime of a pod. Glusterfs volumes do not support ownership management or SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>endpoints</CODE><BR /><I>string</I></TD><TD>endpoints is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod</TD></TR>
+<TR><TD><CODE>endpointsNamespace</CODE><BR /><I>string</I></TD><TD>endpointsNamespace is the namespace that contains Glusterfs endpoint. If this field is empty, the EndpointNamespace defaults to the same namespace as the bound PVC. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="glusterfsvolumesource-v1-core">GlusterfsVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>GlusterfsVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Glusterfs mount that lasts the lifetime of a pod. Glusterfs volumes do not support ownership management or SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>endpoints</CODE><BR /><I>string</I></TD><TD>endpoints is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="groupsubject-v1beta2-flowcontrol-apiserver-k8s-io">GroupSubject v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>GroupSubject</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>GroupSubject holds detailed information for group-kind subject.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#groupsubject-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#subject-v1beta2-flowcontrol-apiserver-k8s-io">Subject [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the user group that matches, or &#34;*&#34; to match all user groups. See https://github.com/kubernetes/apiserver/blob/master/pkg/authentication/user/user.go for some well-known group names. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="groupversionfordiscovery-v1-meta">GroupVersionForDiscovery v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>GroupVersionForDiscovery</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>GroupVersion contains the &#34;group/version&#34; and &#34;version&#34; string of a version. It is made a struct to keep extensibility.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apigroup-v1-meta">APIGroup [meta/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>groupVersion</CODE><BR /><I>string</I></TD><TD>groupVersion specifies the API group and version in the form &#34;group/version&#34;</TD></TR>
+<TR><TD><CODE>version</CODE><BR /><I>string</I></TD><TD>version specifies the version in the form of &#34;version&#34;. This is to save the clients the trouble of splitting the GroupVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="hpascalingpolicy-v2-autoscaling">HPAScalingPolicy v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>HPAScalingPolicy</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>HPAScalingPolicy is a single policy which must hold true for a specified past interval.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#hpascalingpolicy-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#hpascalingrules-v2-autoscaling">HPAScalingRules [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>periodSeconds</CODE><BR /><I>integer</I></TD><TD>PeriodSeconds specifies the window of time for which the policy should hold true. PeriodSeconds must be greater than zero and less than or equal to 1800 (30 min).</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type is used to specify the scaling policy.</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I>integer</I></TD><TD>Value contains the amount of change which is permitted by the policy. It must be greater than zero</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="hpascalingrules-v2-autoscaling">HPAScalingRules v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>HPAScalingRules</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>HPAScalingRules configures the scaling behavior for one direction. These Rules are applied after calculating DesiredReplicas from metrics for the HPA. They can limit the scaling velocity by specifying scaling policies. They can prevent flapping by specifying the stabilization window, so that the number of replicas is not set instantly, instead, the safest value from the stabilization window is chosen.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#hpascalingrules-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerbehavior-v2-autoscaling">HorizontalPodAutoscalerBehavior [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policies</CODE><BR /><I><a href="#hpascalingpolicy-v2-autoscaling">HPAScalingPolicy</a> array</I></TD><TD>policies is a list of potential scaling polices which can be used during scaling. At least one policy must be specified, otherwise the HPAScalingRules will be discarded as invalid</TD></TR>
+<TR><TD><CODE>selectPolicy</CODE><BR /><I>string</I></TD><TD>selectPolicy is used to specify which policy should be used. If not set, the default value Max is used.</TD></TR>
+<TR><TD><CODE>stabilizationWindowSeconds</CODE><BR /><I>integer</I></TD><TD>StabilizationWindowSeconds is the number of seconds for which past recommendations should be considered while scaling up or scaling down. StabilizationWindowSeconds must be greater than or equal to zero and less than or equal to 3600 (one hour). If not set, use the default values: - For scale up: 0 (i.e. no stabilization is done). - For scale down: 300 (i.e. the stabilization window is 300 seconds long).</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="httpgetaction-v1-core">HTTPGetAction v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>HTTPGetAction</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>HTTPGetAction describes an action based on HTTP Get requests.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#lifecyclehandler-v1-core">LifecycleHandler [core/v1]</a></LI>
+  <LI><a href="#probe-v1-core">Probe [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>host</CODE><BR /><I>string</I></TD><TD>Host name to connect to, defaults to the pod IP. You probably want to set &#34;Host&#34; in httpHeaders instead.</TD></TR>
+<TR><TD><CODE>httpHeaders</CODE><BR /><I><a href="#httpheader-v1-core">HTTPHeader</a> array</I></TD><TD>Custom headers to set in the request. HTTP allows repeated headers.</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>Path to access on the HTTP server.</TD></TR>
+<TR><TD><CODE>port</CODE></TD><TD>Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.</TD></TR>
+<TR><TD><CODE>scheme</CODE><BR /><I>string</I></TD><TD>Scheme to use for connecting to the host. Defaults to HTTP.  </TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="httpheader-v1-core">HTTPHeader v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>HTTPHeader</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>HTTPHeader describes a custom header to be used in HTTP probes</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#httpgetaction-v1-core">HTTPGetAction [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>The header field name</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I>string</I></TD><TD>The header field value</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="httpingresspath-v1-networking-k8s-io">HTTPIngressPath v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>HTTPIngressPath</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>HTTPIngressPath associates a path with a backend. Incoming urls matching the path are forwarded to the backend.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#httpingressrulevalue-v1-networking-k8s-io">HTTPIngressRuleValue [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>backend</CODE><BR /><I><a href="#ingressbackend-v1-networking-k8s-io">IngressBackend</a></I></TD><TD>Backend defines the referenced service endpoint to which the traffic will be forwarded to.</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>Path is matched against the path of an incoming request. Currently it can contain characters disallowed from the conventional &#34;path&#34; part of a URL as defined by RFC 3986. Paths must begin with a &#39;/&#39; and must be present when using PathType with value &#34;Exact&#34; or &#34;Prefix&#34;.</TD></TR>
+<TR><TD><CODE>pathType</CODE><BR /><I>string</I></TD><TD>PathType determines the interpretation of the Path matching. PathType can be one of the following values: * Exact: Matches the URL path exactly. * Prefix: Matches based on a URL path prefix split by &#39;/&#39;. Matching is   done on a path element by element basis. A path element refers is the   list of labels in the path split by the &#39;/&#39; separator. A request is a   match for path p if every p is an element-wise prefix of p of the   request path. Note that if the last element of the path is a substring   of the last element in request path, it is not a match (e.g. /foo/bar   matches /foo/bar/baz, but does not match /foo/barbaz). * ImplementationSpecific: Interpretation of the Path matching is up to   the IngressClass. Implementations can treat this as a separate PathType   or treat it identically to Prefix or Exact path types. Implementations are required to support all path types.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="httpingressrulevalue-v1-networking-k8s-io">HTTPIngressRuleValue v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>HTTPIngressRuleValue</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>HTTPIngressRuleValue is a list of http selectors pointing to backends. In the example: http://&lt;host&gt;/&lt;path&gt;?&lt;searchpart&gt; -&gt; backend where where parts of the url correspond to RFC 3986, this resource will be used to match against everything after the last &#39;/&#39; and before the first &#39;?&#39; or &#39;#&#39;.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingressrule-v1-networking-k8s-io">IngressRule [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>paths</CODE><BR /><I><a href="#httpingresspath-v1-networking-k8s-io">HTTPIngressPath</a> array</I></TD><TD>A collection of paths that map requests to backends.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="horizontalpodautoscalerbehavior-v2-autoscaling">HorizontalPodAutoscalerBehavior v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>HorizontalPodAutoscalerBehavior</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>HorizontalPodAutoscalerBehavior configures the scaling behavior of the target in both Up and Down directions (scaleUp and scaleDown fields respectively).</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#horizontalpodautoscalerbehavior-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerspec-v2-autoscaling">HorizontalPodAutoscalerSpec [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>scaleDown</CODE><BR /><I><a href="#hpascalingrules-v2-autoscaling">HPAScalingRules</a></I></TD><TD>scaleDown is scaling policy for scaling Down. If not set, the default value is to allow to scale down to minReplicas pods, with a 300 second stabilization window (i.e., the highest recommendation for the last 300sec is used).</TD></TR>
+<TR><TD><CODE>scaleUp</CODE><BR /><I><a href="#hpascalingrules-v2-autoscaling">HPAScalingRules</a></I></TD><TD>scaleUp is scaling policy for scaling Up. If not set, the default value is the higher of:   * increase no more than 4 pods per 60 seconds   * double the number of pods per 60 seconds No stabilization is used.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="horizontalpodautoscalercondition-v2-autoscaling">HorizontalPodAutoscalerCondition v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>HorizontalPodAutoscalerCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>HorizontalPodAutoscalerCondition describes the state of a HorizontalPodAutoscaler at a certain point.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#horizontalpodautoscalercondition-v2beta2-autoscaling">v2beta2</a>
+<a href="#horizontalpodautoscalercondition-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerstatus-v2-autoscaling">HorizontalPodAutoscalerStatus [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>lastTransitionTime is the last time the condition transitioned from one status to another</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>message is a human-readable explanation containing details about the transition</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>reason is the reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>status is the status of the condition (True, False, Unknown)</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type describes the current condition</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="hostalias-v1-core">HostAlias v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>HostAlias</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the pod&#39;s hosts file.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>hostnames</CODE><BR /><I>string array</I></TD><TD>Hostnames for the above IP address.</TD></TR>
+<TR><TD><CODE>ip</CODE><BR /><I>string</I></TD><TD>IP address of the host file entry.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="hostpathvolumesource-v1-core">HostPathVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>HostPathVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a host path mapped into a pod. Host path volumes do not support ownership management or SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>path of the directory on the host. If the path is a symlink, it will follow the link to the real path. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type for HostPath Volume Defaults to &#34;&#34; More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="hostportrange-v1beta1-policy">HostPortRange v1beta1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>HostPortRange</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>HostPortRange defines a range of host ports that will be enabled by a policy for pods to use.  It requires both the start and end to be defined.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>max</CODE><BR /><I>integer</I></TD><TD>max is the end of the range, inclusive.</TD></TR>
+<TR><TD><CODE>min</CODE><BR /><I>integer</I></TD><TD>min is the start of the range, inclusive.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="idrange-v1beta1-policy">IDRange v1beta1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>IDRange</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>IDRange provides a min/max of an allowed range of IDs.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#fsgroupstrategyoptions-v1beta1-policy">FSGroupStrategyOptions [policy/v1beta1]</a></LI>
+  <LI><a href="#runasgroupstrategyoptions-v1beta1-policy">RunAsGroupStrategyOptions [policy/v1beta1]</a></LI>
+  <LI><a href="#runasuserstrategyoptions-v1beta1-policy">RunAsUserStrategyOptions [policy/v1beta1]</a></LI>
+  <LI><a href="#supplementalgroupsstrategyoptions-v1beta1-policy">SupplementalGroupsStrategyOptions [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>max</CODE><BR /><I>integer</I></TD><TD>max is the end of the range, inclusive.</TD></TR>
+<TR><TD><CODE>min</CODE><BR /><I>integer</I></TD><TD>min is the start of the range, inclusive.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="ipblock-v1-networking-k8s-io">IPBlock v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>IPBlock</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>IPBlock describes a particular CIDR (Ex. &#34;192.168.1.1/24&#34;,&#34;2001:db9::/64&#34;) that is allowed to the pods matched by a NetworkPolicySpec&#39;s podSelector. The except entry describes CIDRs that should not be included within this rule.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#networkpolicypeer-v1-networking-k8s-io">NetworkPolicyPeer [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>cidr</CODE><BR /><I>string</I></TD><TD>CIDR is a string representing the IP Block Valid examples are &#34;192.168.1.1/24&#34; or &#34;2001:db9::/64&#34;</TD></TR>
+<TR><TD><CODE>except</CODE><BR /><I>string array</I></TD><TD>Except is a slice of CIDRs that should not be included within an IP Block Valid examples are &#34;192.168.1.1/24&#34; or &#34;2001:db9::/64&#34; Except values will be rejected if they are outside the CIDR range</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="iscsipersistentvolumesource-v1-core">ISCSIPersistentVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ISCSIPersistentVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ISCSIPersistentVolumeSource represents an ISCSI disk. ISCSI volumes can only be mounted as read/write once. ISCSI volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>chapAuthDiscovery</CODE><BR /><I>boolean</I></TD><TD>chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication</TD></TR>
+<TR><TD><CODE>chapAuthSession</CODE><BR /><I>boolean</I></TD><TD>chapAuthSession defines whether support iSCSI Session CHAP authentication</TD></TR>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi</TD></TR>
+<TR><TD><CODE>initiatorName</CODE><BR /><I>string</I></TD><TD>initiatorName is the custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface &lt;target portal&gt;:&lt;volume name&gt; will be created for the connection.</TD></TR>
+<TR><TD><CODE>iqn</CODE><BR /><I>string</I></TD><TD>iqn is Target iSCSI Qualified Name.</TD></TR>
+<TR><TD><CODE>iscsiInterface</CODE><BR /><I>string</I></TD><TD>iscsiInterface is the interface Name that uses an iSCSI transport. Defaults to &#39;default&#39; (tcp).</TD></TR>
+<TR><TD><CODE>lun</CODE><BR /><I>integer</I></TD><TD>lun is iSCSI Target Lun number.</TD></TR>
+<TR><TD><CODE>portals</CODE><BR /><I>string array</I></TD><TD>portals is the iSCSI Target Portal List. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#secretreference-v1-core">SecretReference</a></I></TD><TD>secretRef is the CHAP Secret for iSCSI target and initiator authentication</TD></TR>
+<TR><TD><CODE>targetPortal</CODE><BR /><I>string</I></TD><TD>targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="iscsivolumesource-v1-core">ISCSIVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ISCSIVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents an ISCSI disk. ISCSI volumes can only be mounted as read/write once. ISCSI volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>chapAuthDiscovery</CODE><BR /><I>boolean</I></TD><TD>chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication</TD></TR>
+<TR><TD><CODE>chapAuthSession</CODE><BR /><I>boolean</I></TD><TD>chapAuthSession defines whether support iSCSI Session CHAP authentication</TD></TR>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi</TD></TR>
+<TR><TD><CODE>initiatorName</CODE><BR /><I>string</I></TD><TD>initiatorName is the custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface &lt;target portal&gt;:&lt;volume name&gt; will be created for the connection.</TD></TR>
+<TR><TD><CODE>iqn</CODE><BR /><I>string</I></TD><TD>iqn is the target iSCSI Qualified Name.</TD></TR>
+<TR><TD><CODE>iscsiInterface</CODE><BR /><I>string</I></TD><TD>iscsiInterface is the interface Name that uses an iSCSI transport. Defaults to &#39;default&#39; (tcp).</TD></TR>
+<TR><TD><CODE>lun</CODE><BR /><I>integer</I></TD><TD>lun represents iSCSI Target Lun number.</TD></TR>
+<TR><TD><CODE>portals</CODE><BR /><I>string array</I></TD><TD>portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#localobjectreference-v1-core">LocalObjectReference</a></I></TD><TD>secretRef is the CHAP Secret for iSCSI target and initiator authentication</TD></TR>
+<TR><TD><CODE>targetPortal</CODE><BR /><I>string</I></TD><TD>targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="ingressbackend-v1-networking-k8s-io">IngressBackend v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>IngressBackend</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>IngressBackend describes all endpoints for a given service and port.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#httpingresspath-v1-networking-k8s-io">HTTPIngressPath [networking/v1]</a></LI>
+  <LI><a href="#ingressspec-v1-networking-k8s-io">IngressSpec [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>resource</CODE><BR /><I><a href="#typedlocalobjectreference-v1-core">TypedLocalObjectReference</a></I></TD><TD>Resource is an ObjectRef to another Kubernetes resource in the namespace of the Ingress object. If resource is specified, a service.Name and service.Port must not be specified. This is a mutually exclusive setting with &#34;Service&#34;.</TD></TR>
+<TR><TD><CODE>service</CODE><BR /><I><a href="#ingressservicebackend-v1-networking-k8s-io">IngressServiceBackend</a></I></TD><TD>Service references a Service as a Backend. This is a mutually exclusive setting with &#34;Resource&#34;.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="ingressclassparametersreference-v1-networking-k8s-io">IngressClassParametersReference v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>IngressClassParametersReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>IngressClassParametersReference identifies an API object. This can be used to specify a cluster or namespace-scoped resource.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingressclassspec-v1-networking-k8s-io">IngressClassSpec [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiGroup</CODE><BR /><I>string</I></TD><TD>APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is the type of resource being referenced.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the name of resource being referenced.</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>Namespace is the namespace of the resource being referenced. This field is required when scope is set to &#34;Namespace&#34; and must be unset when scope is set to &#34;Cluster&#34;.</TD></TR>
+<TR><TD><CODE>scope</CODE><BR /><I>string</I></TD><TD>Scope represents if this refers to a cluster or namespace scoped resource. This may be set to &#34;Cluster&#34; (default) or &#34;Namespace&#34;.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="ingressrule-v1-networking-k8s-io">IngressRule v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>IngressRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>IngressRule represents the rules mapping the paths under a specified host to the related backend services. Incoming requests are first evaluated for a host match, then routed to the backend associated with the matching IngressRuleValue.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingressspec-v1-networking-k8s-io">IngressSpec [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>host</CODE><BR /><I>string</I></TD><TD>Host is the fully qualified domain name of a network host, as defined by RFC 3986. Note the following deviations from the &#34;host&#34; part of the URI as defined in RFC 3986: 1. IPs are not allowed. Currently an IngressRuleValue can only apply to    the IP in the Spec of the parent Ingress. 2. The `:` delimiter is not respected because ports are not allowed. 	  Currently the port of an Ingress is implicitly :80 for http and 	  :443 for https. Both these may change in the future. Incoming requests are matched against the host before the IngressRuleValue. If the host is unspecified, the Ingress routes all traffic based on the specified IngressRuleValue.  Host can be &#34;precise&#34; which is a domain name without the terminating dot of a network host (e.g. &#34;foo.bar.com&#34;) or &#34;wildcard&#34;, which is a domain name prefixed with a single wildcard label (e.g. &#34;*.foo.com&#34;). The wildcard character &#39;\*&#39; must appear by itself as the first DNS label and matches only a single label. You cannot have a wildcard label by itself (e.g. Host == &#34;*&#34;). Requests will be matched against the Host field in the following way: 1. If Host is precise, the request matches this rule if the http host header is equal to Host. 2. If Host is a wildcard, then the request matches this rule if the http host header is to equal to the suffix (removing the first label) of the wildcard rule.</TD></TR>
+<TR><TD><CODE>http</CODE><BR /><I><a href="#httpingressrulevalue-v1-networking-k8s-io">HTTPIngressRuleValue</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="ingressservicebackend-v1-networking-k8s-io">IngressServiceBackend v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>IngressServiceBackend</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>IngressServiceBackend references a Kubernetes Service as a Backend.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingressbackend-v1-networking-k8s-io">IngressBackend [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the referenced service. The service must exist in the same namespace as the Ingress object.</TD></TR>
+<TR><TD><CODE>port</CODE><BR /><I><a href="#servicebackendport-v1-networking-k8s-io">ServiceBackendPort</a></I></TD><TD>Port of the referenced service. A port name or port number is required for a IngressServiceBackend.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="ingresstls-v1-networking-k8s-io">IngressTLS v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>IngressTLS</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>IngressTLS describes the transport layer security associated with an Ingress.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingressspec-v1-networking-k8s-io">IngressSpec [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>hosts</CODE><BR /><I>string array</I></TD><TD>Hosts are a list of hosts included in the TLS certificate. The values in this list must match the name/s used in the tlsSecret. Defaults to the wildcard host setting for the loadbalancer controller fulfilling this Ingress, if left unspecified.</TD></TR>
+<TR><TD><CODE>secretName</CODE><BR /><I>string</I></TD><TD>SecretName is the name of the secret used to terminate TLS traffic on port 443. Field is left optional to allow TLS routing based on SNI hostname alone. If the SNI host in a listener conflicts with the &#34;Host&#34; header field used by an IngressRule, the SNI host is used for termination and value of the Host header is used for routing.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="json-v1-apiextensions-k8s-io">JSON v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>JSON</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>JSON represents any valid JSON value. These types are supported: bool, int64, float64, string, []interface{}, map[string]interface{} and nil.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+</TBODY>
+</TABLE>
+<H2 id="jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>JSONSchemaProps</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>JSONSchemaProps is a JSON-Schema following Specification Draft 4 (http://json-schema.org/).</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourcevalidation-v1-apiextensions-k8s-io">CustomResourceValidation [apiextensions/v1]</a></LI>
+  <LI><a href="#jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>$ref</CODE><BR /><I>string</I></TD><TD></TD></TR>
+<TR><TD><CODE>$schema</CODE><BR /><I>string</I></TD><TD></TD></TR>
+<TR><TD><CODE>additionalItems</CODE><BR /><I><a href="#jsonschemapropsorbool-v1-apiextensions-k8s-io">JSONSchemaPropsOrBool</a></I></TD><TD></TD></TR>
+<TR><TD><CODE>additionalProperties</CODE><BR /><I><a href="#jsonschemapropsorbool-v1-apiextensions-k8s-io">JSONSchemaPropsOrBool</a></I></TD><TD></TD></TR>
+<TR><TD><CODE>allOf</CODE><BR /><I><a href="#jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps</a> array</I></TD><TD></TD></TR>
+<TR><TD><CODE>anyOf</CODE><BR /><I><a href="#jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps</a> array</I></TD><TD></TD></TR>
+<TR><TD><CODE>default</CODE><BR /><I><a href="#json-v1-apiextensions-k8s-io">JSON</a></I></TD><TD>default is a default value for undefined object fields. Defaulting is a beta feature under the CustomResourceDefaulting feature gate. Defaulting requires spec.preserveUnknownFields to be false.</TD></TR>
+<TR><TD><CODE>definitions</CODE><BR /><I>object</I></TD><TD></TD></TR>
+<TR><TD><CODE>dependencies</CODE><BR /><I>object</I></TD><TD></TD></TR>
+<TR><TD><CODE>description</CODE><BR /><I>string</I></TD><TD></TD></TR>
+<TR><TD><CODE>enum</CODE><BR /><I><a href="#json-v1-apiextensions-k8s-io">JSON</a> array</I></TD><TD></TD></TR>
+<TR><TD><CODE>example</CODE><BR /><I><a href="#json-v1-apiextensions-k8s-io">JSON</a></I></TD><TD></TD></TR>
+<TR><TD><CODE>exclusiveMaximum</CODE><BR /><I>boolean</I></TD><TD></TD></TR>
+<TR><TD><CODE>exclusiveMinimum</CODE><BR /><I>boolean</I></TD><TD></TD></TR>
+<TR><TD><CODE>externalDocs</CODE><BR /><I><a href="#externaldocumentation-v1-apiextensions-k8s-io">ExternalDocumentation</a></I></TD><TD></TD></TR>
+<TR><TD><CODE>format</CODE><BR /><I>string</I></TD><TD>format is an OpenAPI v3 format string. Unknown formats are ignored. The following formats are validated:  - bsonobjectid: a bson object ID, i.e. a 24 characters hex string - uri: an URI as parsed by Golang net/url.ParseRequestURI - email: an email address as parsed by Golang net/mail.ParseAddress - hostname: a valid representation for an Internet host name, as defined by RFC 1034, section 3.1 [RFC1034]. - ipv4: an IPv4 IP as parsed by Golang net.ParseIP - ipv6: an IPv6 IP as parsed by Golang net.ParseIP - cidr: a CIDR as parsed by Golang net.ParseCIDR - mac: a MAC address as parsed by Golang net.ParseMAC - uuid: an UUID that allows uppercase defined by the regex (?i)^[0-9a-f]{8}-?[0-9a-f]{4}-?[0-9a-f]{4}-?[0-9a-f]{4}-?[0-9a-f]{12}$ - uuid3: an UUID3 that allows uppercase defined by the regex (?i)^[0-9a-f]{8}-?[0-9a-f]{4}-?3[0-9a-f]{3}-?[0-9a-f]{4}-?[0-9a-f]{12}$ - uuid4: an UUID4 that allows uppercase defined by the regex (?i)^[0-9a-f]{8}-?[0-9a-f]{4}-?4[0-9a-f]{3}-?[89ab][0-9a-f]{3}-?[0-9a-f]{12}$ - uuid5: an UUID5 that allows uppercase defined by the regex (?i)^[0-9a-f]{8}-?[0-9a-f]{4}-?5[0-9a-f]{3}-?[89ab][0-9a-f]{3}-?[0-9a-f]{12}$ - isbn: an ISBN10 or ISBN13 number string like &#34;0321751043&#34; or &#34;978-0321751041&#34; - isbn10: an ISBN10 number string like &#34;0321751043&#34; - isbn13: an ISBN13 number string like &#34;978-0321751041&#34; - creditcard: a credit card number defined by the regex ^(?:4[0-9]{12}(?:[0-9]{3})?|5[1-5][0-9]{14}|6(?:011|5[0-9][0-9])[0-9]{12}|3[47][0-9]{13}|3(?:0[0-5]|[68][0-9])[0-9]{11}|(?:2131|1800|35\d{3})\d{11})$ with any non digit characters mixed in - ssn: a U.S. social security number following the regex ^\d{3}[- ]?\d{2}[- ]?\d{4}$ - hexcolor: an hexadecimal color code like &#34;#FFFFFF: following the regex ^#?([0-9a-fA-F]{3}|[0-9a-fA-F]{6})$ - rgbcolor: an RGB color code like rgb like &#34;rgb(255,255,2559&#34; - byte: base64 encoded binary data - password: any kind of string - date: a date string like &#34;2006-01-02&#34; as defined by full-date in RFC3339 - duration: a duration string like &#34;22 ns&#34; as parsed by Golang time.ParseDuration or compatible with Scala duration format - datetime: a date time string like &#34;2014-12-15T19:30:20.000Z&#34; as defined by date-time in RFC3339.</TD></TR>
+<TR><TD><CODE>id</CODE><BR /><I>string</I></TD><TD></TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#jsonschemapropsorarray-v1-apiextensions-k8s-io">JSONSchemaPropsOrArray</a></I></TD><TD></TD></TR>
+<TR><TD><CODE>maxItems</CODE><BR /><I>integer</I></TD><TD></TD></TR>
+<TR><TD><CODE>maxLength</CODE><BR /><I>integer</I></TD><TD></TD></TR>
+<TR><TD><CODE>maxProperties</CODE><BR /><I>integer</I></TD><TD></TD></TR>
+<TR><TD><CODE>maximum</CODE><BR /><I>number</I></TD><TD></TD></TR>
+<TR><TD><CODE>minItems</CODE><BR /><I>integer</I></TD><TD></TD></TR>
+<TR><TD><CODE>minLength</CODE><BR /><I>integer</I></TD><TD></TD></TR>
+<TR><TD><CODE>minProperties</CODE><BR /><I>integer</I></TD><TD></TD></TR>
+<TR><TD><CODE>minimum</CODE><BR /><I>number</I></TD><TD></TD></TR>
+<TR><TD><CODE>multipleOf</CODE><BR /><I>number</I></TD><TD></TD></TR>
+<TR><TD><CODE>not</CODE><BR /><I><a href="#jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps</a></I></TD><TD></TD></TR>
+<TR><TD><CODE>nullable</CODE><BR /><I>boolean</I></TD><TD></TD></TR>
+<TR><TD><CODE>oneOf</CODE><BR /><I><a href="#jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps</a> array</I></TD><TD></TD></TR>
+<TR><TD><CODE>pattern</CODE><BR /><I>string</I></TD><TD></TD></TR>
+<TR><TD><CODE>patternProperties</CODE><BR /><I>object</I></TD><TD></TD></TR>
+<TR><TD><CODE>properties</CODE><BR /><I>object</I></TD><TD></TD></TR>
+<TR><TD><CODE>required</CODE><BR /><I>string array</I></TD><TD></TD></TR>
+<TR><TD><CODE>title</CODE><BR /><I>string</I></TD><TD></TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD></TD></TR>
+<TR><TD><CODE>uniqueItems</CODE><BR /><I>boolean</I></TD><TD></TD></TR>
+<TR><TD><CODE>x-kubernetes-embedded-resource</CODE><BR /><I>boolean</I></TD><TD>x-kubernetes-embedded-resource defines that the value is an embedded Kubernetes runtime.Object, with TypeMeta and ObjectMeta. The type must be object. It is allowed to further restrict the embedded object. kind, apiVersion and metadata are validated automatically. x-kubernetes-preserve-unknown-fields is allowed to be true, but does not have to be if the object is fully specified (up to kind, apiVersion, metadata).</TD></TR>
+<TR><TD><CODE>x-kubernetes-int-or-string</CODE><BR /><I>boolean</I></TD><TD>x-kubernetes-int-or-string specifies that this value is either an integer or a string. If this is true, an empty type is allowed and type as child of anyOf is permitted if following one of the following patterns:  1) anyOf:    - type: integer    - type: string 2) allOf:    - anyOf:      - type: integer      - type: string    - ... zero or more</TD></TR>
+<TR><TD><CODE>x-kubernetes-list-map-keys</CODE><BR /><I>string array</I></TD><TD>x-kubernetes-list-map-keys annotates an array with the x-kubernetes-list-type `map` by specifying the keys used as the index of the map.  This tag MUST only be used on lists that have the &#34;x-kubernetes-list-type&#34; extension set to &#34;map&#34;. Also, the values specified for this attribute must be a scalar typed field of the child structure (no nesting is supported).  The properties specified must either be required or have a default value, to ensure those properties are present for all list items.</TD></TR>
+<TR><TD><CODE>x-kubernetes-list-type</CODE><BR /><I>string</I></TD><TD>x-kubernetes-list-type annotates an array to further describe its topology. This extension must only be used on lists and may have 3 possible values:  1) `atomic`: the list is treated as a single entity, like a scalar.      Atomic lists will be entirely replaced when updated. This extension      may be used on any type of list (struct, scalar, ...). 2) `set`:      Sets are lists that must not have multiple items with the same value. Each      value must be a scalar, an object with x-kubernetes-map-type `atomic` or an      array with x-kubernetes-list-type `atomic`. 3) `map`:      These lists are like maps in that their elements have a non-index key      used to identify them. Order is preserved upon merge. The map tag      must only be used on a list with elements of type object. Defaults to atomic for arrays.</TD></TR>
+<TR><TD><CODE>x-kubernetes-map-type</CODE><BR /><I>string</I></TD><TD>x-kubernetes-map-type annotates an object to further describe its topology. This extension must only be used when type is object and may have 2 possible values:  1) `granular`:      These maps are actual maps (key-value pairs) and each fields are independent      from each other (they can each be manipulated by separate actors). This is      the default behaviour for all maps. 2) `atomic`: the list is treated as a single entity, like a scalar.      Atomic maps will be entirely replaced when updated.</TD></TR>
+<TR><TD><CODE>x-kubernetes-preserve-unknown-fields</CODE><BR /><I>boolean</I></TD><TD>x-kubernetes-preserve-unknown-fields stops the API server decoding step from pruning fields which are not specified in the validation schema. This affects fields recursively, but switches back to normal pruning behaviour if nested properties or additionalProperties are specified in the schema. This can either be true or undefined. False is forbidden.</TD></TR>
+<TR><TD><CODE>x-kubernetes-validations</CODE><BR /><I><a href="#validationrule-v1-apiextensions-k8s-io">ValidationRule</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>rule</I></TD><TD>x-kubernetes-validations describes a list of validation rules written in the CEL expression language. This field is an alpha-level. Using this field requires the feature gate `CustomResourceValidationExpressions` to be enabled.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="jsonschemapropsorarray-v1-apiextensions-k8s-io">JSONSchemaPropsOrArray v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>JSONSchemaPropsOrArray</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>JSONSchemaPropsOrArray represents a value that can either be a JSONSchemaProps or an array of JSONSchemaProps. Mainly here for serialization purposes.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+</TBODY>
+</TABLE>
+<H2 id="jsonschemapropsorbool-v1-apiextensions-k8s-io">JSONSchemaPropsOrBool v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>JSONSchemaPropsOrBool</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>JSONSchemaPropsOrBool represents JSONSchemaProps or a boolean value. Defaults to true for the boolean property.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+</TBODY>
+</TABLE>
+<H2 id="jobcondition-v1-batch">JobCondition v1 batch</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>batch</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>JobCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>JobCondition describes current state of a job.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#jobstatus-v1-batch">JobStatus [batch/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastProbeTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time the condition was checked.</TD></TR>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time the condition transit from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>Human readable message indicating details about last transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>(brief) reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status of the condition, one of True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of job condition, Complete or Failed.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="jobtemplatespec-v1-batch">JobTemplateSpec v1 batch</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>batch</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>JobTemplateSpec</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>JobTemplateSpec describes the data a Job should have when created from a template</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#jobtemplatespec-v1beta1-batch">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#cronjobspec-v1-batch">CronJobSpec [batch/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata of the jobs created from this template. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#jobspec-v1-batch">JobSpec</a></I></TD><TD>Specification of the desired behavior of the job. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="keytopath-v1-core">KeyToPath v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>KeyToPath</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Maps a string key to a path within a volume.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#configmapprojection-v1-core">ConfigMapProjection [core/v1]</a></LI>
+  <LI><a href="#configmapvolumesource-v1-core">ConfigMapVolumeSource [core/v1]</a></LI>
+  <LI><a href="#secretprojection-v1-core">SecretProjection [core/v1]</a></LI>
+  <LI><a href="#secretvolumesource-v1-core">SecretVolumeSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>key</CODE><BR /><I>string</I></TD><TD>key is the key to project.</TD></TR>
+<TR><TD><CODE>mode</CODE><BR /><I>integer</I></TD><TD>mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element &#39;..&#39;. May not start with the string &#39;..&#39;.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="labelselector-v1-meta">LabelSelector v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>LabelSelector</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>A label selector is a label query over a set of resources. The result of matchLabels and matchExpressions are ANDed. An empty label selector matches all objects. A null label selector matches no objects.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#aggregationrule-v1-rbac-authorization-k8s-io">AggregationRule [rbac/v1]</a></LI>
+  <LI><a href="#csistoragecapacity-v1-storage-k8s-io">CSIStorageCapacity [storage/v1]</a></LI>
+  <LI><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity [storage/v1beta1]</a></LI>
+  <LI><a href="#daemonsetspec-v1-apps">DaemonSetSpec [apps/v1]</a></LI>
+  <LI><a href="#deploymentspec-v1-apps">DeploymentSpec [apps/v1]</a></LI>
+  <LI><a href="#externalmetricsource-v2beta1-autoscaling">ExternalMetricSource [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#externalmetricstatus-v2beta1-autoscaling">ExternalMetricStatus [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#jobspec-v1-batch">JobSpec [batch/v1]</a></LI>
+  <LI><a href="#metricidentifier-v2-autoscaling">MetricIdentifier [autoscaling/v2]</a></LI>
+  <LI><a href="#metricidentifier-v2beta2-autoscaling">MetricIdentifier [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#mutatingwebhook-v1-admissionregistration-k8s-io">MutatingWebhook [admissionregistration/v1]</a></LI>
+  <LI><a href="#networkpolicypeer-v1-networking-k8s-io">NetworkPolicyPeer [networking/v1]</a></LI>
+  <LI><a href="#networkpolicyspec-v1-networking-k8s-io">NetworkPolicySpec [networking/v1]</a></LI>
+  <LI><a href="#objectmetricsource-v2beta1-autoscaling">ObjectMetricSource [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#objectmetricstatus-v2beta1-autoscaling">ObjectMetricStatus [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#persistentvolumeclaimspec-v1-core">PersistentVolumeClaimSpec [core/v1]</a></LI>
+  <LI><a href="#podaffinityterm-v1-core">PodAffinityTerm [core/v1]</a></LI>
+  <LI><a href="#poddisruptionbudgetspec-v1-policy">PodDisruptionBudgetSpec [policy/v1]</a></LI>
+  <LI><a href="#poddisruptionbudgetspec-v1beta1-policy">PodDisruptionBudgetSpec [policy/v1beta1]</a></LI>
+  <LI><a href="#podsmetricsource-v2beta1-autoscaling">PodsMetricSource [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#podsmetricstatus-v2beta1-autoscaling">PodsMetricStatus [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#replicasetspec-v1-apps">ReplicaSetSpec [apps/v1]</a></LI>
+  <LI><a href="#statefulsetspec-v1-apps">StatefulSetSpec [apps/v1]</a></LI>
+  <LI><a href="#topologyspreadconstraint-v1-core">TopologySpreadConstraint [core/v1]</a></LI>
+  <LI><a href="#validatingwebhook-v1-admissionregistration-k8s-io">ValidatingWebhook [admissionregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>matchExpressions</CODE><BR /><I><a href="#labelselectorrequirement-v1-meta">LabelSelectorRequirement</a> array</I></TD><TD>matchExpressions is a list of label selector requirements. The requirements are ANDed.</TD></TR>
+<TR><TD><CODE>matchLabels</CODE><BR /><I>object</I></TD><TD>matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is &#34;key&#34;, the operator is &#34;In&#34;, and the values array contains only &#34;value&#34;. The requirements are ANDed.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="labelselectorrequirement-v1-meta">LabelSelectorRequirement v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>LabelSelectorRequirement</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#labelselector-v1-meta">LabelSelector [meta/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>key</CODE><BR /><I>string</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>key</I></TD><TD>key is the label key that the selector applies to.</TD></TR>
+<TR><TD><CODE>operator</CODE><BR /><I>string</I></TD><TD>operator represents a key&#39;s relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.</TD></TR>
+<TR><TD><CODE>values</CODE><BR /><I>string array</I></TD><TD>values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="lifecycle-v1-core">Lifecycle v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Lifecycle</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Lifecycle describes actions that the management system should take in response to container lifecycle events. For the PostStart and PreStop lifecycle handlers, management of the container blocks until the action is complete, unless the container process fails, in which case the handler is aborted.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#container-v1-core">Container [core/v1]</a></LI>
+  <LI><a href="#ephemeralcontainer-v1-core">EphemeralContainer [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>postStart</CODE><BR /><I><a href="#lifecyclehandler-v1-core">LifecycleHandler</a></I></TD><TD>PostStart is called immediately after a container is created. If the handler fails, the container is terminated and restarted according to its restart policy. Other management of the container blocks until the hook completes. More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks</TD></TR>
+<TR><TD><CODE>preStop</CODE><BR /><I><a href="#lifecyclehandler-v1-core">LifecycleHandler</a></I></TD><TD>PreStop is called immediately before a container is terminated due to an API request or management event such as liveness/startup probe failure, preemption, resource contention, etc. The handler is not called if the container crashes or exits. The Pod&#39;s termination grace period countdown begins before the PreStop hook is executed. Regardless of the outcome of the handler, the container will eventually terminate within the Pod&#39;s termination grace period (unless delayed by finalizers). Other management of the container blocks until the hook completes or until the termination grace period is reached. More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="lifecyclehandler-v1-core">LifecycleHandler v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>LifecycleHandler</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>LifecycleHandler defines a specific action that should be taken in a lifecycle hook. One and only one of the fields, except TCPSocket must be specified.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#lifecycle-v1-core">Lifecycle [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>exec</CODE><BR /><I><a href="#execaction-v1-core">ExecAction</a></I></TD><TD>Exec specifies the action to take.</TD></TR>
+<TR><TD><CODE>httpGet</CODE><BR /><I><a href="#httpgetaction-v1-core">HTTPGetAction</a></I></TD><TD>HTTPGet specifies the http request to perform.</TD></TR>
+<TR><TD><CODE>tcpSocket</CODE><BR /><I><a href="#tcpsocketaction-v1-core">TCPSocketAction</a></I></TD><TD>Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept for the backward compatibility. There are no validation of this field and lifecycle hooks will fail in runtime when tcp handler is specified.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="limitrangeitem-v1-core">LimitRangeItem v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>LimitRangeItem</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>LimitRangeItem defines a min/max usage limit for any resource that matches on kind.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#limitrangespec-v1-core">LimitRangeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>default</CODE><BR /><I>object</I></TD><TD>Default resource requirement limit value by resource name if resource limit is omitted.</TD></TR>
+<TR><TD><CODE>defaultRequest</CODE><BR /><I>object</I></TD><TD>DefaultRequest is the default resource requirement request value by resource name if resource request is omitted.</TD></TR>
+<TR><TD><CODE>max</CODE><BR /><I>object</I></TD><TD>Max usage constraints on this kind by resource name.</TD></TR>
+<TR><TD><CODE>maxLimitRequestRatio</CODE><BR /><I>object</I></TD><TD>MaxLimitRequestRatio if specified, the named resource must have a request and limit that are both non-zero where limit divided by request is less than or equal to the enumerated value; this represents the max burst for the named resource.</TD></TR>
+<TR><TD><CODE>min</CODE><BR /><I>object</I></TD><TD>Min usage constraints on this kind by resource name.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of resource that this limit applies to.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="limitresponse-v1beta2-flowcontrol-apiserver-k8s-io">LimitResponse v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>LimitResponse</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>LimitResponse defines how to handle requests that can not be executed right now.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#limitresponse-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#limitedprioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">LimitedPriorityLevelConfiguration [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>queuing</CODE><BR /><I><a href="#queuingconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">QueuingConfiguration</a></I></TD><TD>`queuing` holds the configuration parameters for queuing. This field may be non-empty only if `type` is `&#34;Queue&#34;`.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>`type` is &#34;Queue&#34; or &#34;Reject&#34;. &#34;Queue&#34; means that requests that can not be executed upon arrival are held in a queue until they can be executed or a queuing limit is reached. &#34;Reject&#34; means that requests that can not be executed upon arrival are rejected. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="limitedprioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">LimitedPriorityLevelConfiguration v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>LimitedPriorityLevelConfiguration</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>LimitedPriorityLevelConfiguration specifies how to handle requests that are subject to limits. It addresses two issues:
+ * How are requests for this priority level limited?
+ * What should be done with requests that exceed the limit?</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#limitedprioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#prioritylevelconfigurationspec-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationSpec [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>assuredConcurrencyShares</CODE><BR /><I>integer</I></TD><TD>`assuredConcurrencyShares` (ACS) configures the execution limit, which is a limit on the number of requests of this priority level that may be exeucting at a given time.  ACS must be a positive number. The server&#39;s concurrency limit (SCL) is divided among the concurrency-controlled priority levels in proportion to their assured concurrency shares. This produces the assured concurrency value (ACV) --- the number of requests that may be executing at a time --- for each such priority level:              ACV(l) = ceil( SCL * ACS(l) / ( sum[priority levels k] ACS(k) ) )  bigger numbers of ACS mean more reserved concurrent requests (at the expense of every other PL). This field has a default value of 30.</TD></TR>
+<TR><TD><CODE>limitResponse</CODE><BR /><I><a href="#limitresponse-v1beta2-flowcontrol-apiserver-k8s-io">LimitResponse</a></I></TD><TD>`limitResponse` indicates what to do with requests that can not be executed right now</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="listmeta-v1-meta">ListMeta v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ListMeta</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ListMeta describes metadata that synthetic resources must have, including lists and various status objects. A resource may have only one of {ObjectMeta, ListMeta}.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apiservicelist-v1-apiregistration-k8s-io">APIServiceList [apiregistration/v1]</a></LI>
+  <LI><a href="#csidriverlist-v1-storage-k8s-io">CSIDriverList [storage/v1]</a></LI>
+  <LI><a href="#csinodelist-v1-storage-k8s-io">CSINodeList [storage/v1]</a></LI>
+  <LI><a href="#csistoragecapacitylist-v1-storage-k8s-io">CSIStorageCapacityList [storage/v1]</a></LI>
+  <LI><a href="#csistoragecapacitylist-v1beta1-storage-k8s-io">CSIStorageCapacityList [storage/v1beta1]</a></LI>
+  <LI><a href="#certificatesigningrequestlist-v1-certificates-k8s-io">CertificateSigningRequestList [certificates/v1]</a></LI>
+  <LI><a href="#clusterrolebindinglist-v1-rbac-authorization-k8s-io">ClusterRoleBindingList [rbac/v1]</a></LI>
+  <LI><a href="#clusterrolelist-v1-rbac-authorization-k8s-io">ClusterRoleList [rbac/v1]</a></LI>
+  <LI><a href="#componentstatuslist-v1-core">ComponentStatusList [core/v1]</a></LI>
+  <LI><a href="#configmaplist-v1-core">ConfigMapList [core/v1]</a></LI>
+  <LI><a href="#controllerrevisionlist-v1-apps">ControllerRevisionList [apps/v1]</a></LI>
+  <LI><a href="#cronjoblist-v1-batch">CronJobList [batch/v1]</a></LI>
+  <LI><a href="#cronjoblist-v1beta1-batch">CronJobList [batch/v1beta1]</a></LI>
+  <LI><a href="#customresourcedefinitionlist-v1-apiextensions-k8s-io">CustomResourceDefinitionList [apiextensions/v1]</a></LI>
+  <LI><a href="#daemonsetlist-v1-apps">DaemonSetList [apps/v1]</a></LI>
+  <LI><a href="#deploymentlist-v1-apps">DeploymentList [apps/v1]</a></LI>
+  <LI><a href="#endpointslicelist-v1-discovery-k8s-io">EndpointSliceList [discovery/v1]</a></LI>
+  <LI><a href="#endpointslicelist-v1beta1-discovery-k8s-io">EndpointSliceList [discovery/v1beta1]</a></LI>
+  <LI><a href="#endpointslist-v1-core">EndpointsList [core/v1]</a></LI>
+  <LI><a href="#eventlist-v1-core">EventList [core/v1]</a></LI>
+  <LI><a href="#eventlist-v1-events-k8s-io">EventList [events/v1]</a></LI>
+  <LI><a href="#eventlist-v1beta1-events-k8s-io">EventList [events/v1beta1]</a></LI>
+  <LI><a href="#flowschemalist-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaList [flowcontrol/v1beta2]</a></LI>
+  <LI><a href="#flowschemalist-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaList [flowcontrol/v1beta1]</a></LI>
+  <LI><a href="#horizontalpodautoscalerlist-v1-autoscaling">HorizontalPodAutoscalerList [autoscaling/v1]</a></LI>
+  <LI><a href="#horizontalpodautoscalerlist-v2-autoscaling">HorizontalPodAutoscalerList [autoscaling/v2]</a></LI>
+  <LI><a href="#horizontalpodautoscalerlist-v2beta2-autoscaling">HorizontalPodAutoscalerList [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#horizontalpodautoscalerlist-v2beta1-autoscaling">HorizontalPodAutoscalerList [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#ingressclasslist-v1-networking-k8s-io">IngressClassList [networking/v1]</a></LI>
+  <LI><a href="#ingresslist-v1-networking-k8s-io">IngressList [networking/v1]</a></LI>
+  <LI><a href="#joblist-v1-batch">JobList [batch/v1]</a></LI>
+  <LI><a href="#leaselist-v1-coordination-k8s-io">LeaseList [coordination/v1]</a></LI>
+  <LI><a href="#limitrangelist-v1-core">LimitRangeList [core/v1]</a></LI>
+  <LI><a href="#mutatingwebhookconfigurationlist-v1-admissionregistration-k8s-io">MutatingWebhookConfigurationList [admissionregistration/v1]</a></LI>
+  <LI><a href="#namespacelist-v1-core">NamespaceList [core/v1]</a></LI>
+  <LI><a href="#networkpolicylist-v1-networking-k8s-io">NetworkPolicyList [networking/v1]</a></LI>
+  <LI><a href="#nodelist-v1-core">NodeList [core/v1]</a></LI>
+  <LI><a href="#persistentvolumeclaimlist-v1-core">PersistentVolumeClaimList [core/v1]</a></LI>
+  <LI><a href="#persistentvolumelist-v1-core">PersistentVolumeList [core/v1]</a></LI>
+  <LI><a href="#poddisruptionbudgetlist-v1-policy">PodDisruptionBudgetList [policy/v1]</a></LI>
+  <LI><a href="#poddisruptionbudgetlist-v1beta1-policy">PodDisruptionBudgetList [policy/v1beta1]</a></LI>
+  <LI><a href="#podlist-v1-core">PodList [core/v1]</a></LI>
+  <LI><a href="#podsecuritypolicylist-v1beta1-policy">PodSecurityPolicyList [policy/v1beta1]</a></LI>
+  <LI><a href="#podtemplatelist-v1-core">PodTemplateList [core/v1]</a></LI>
+  <LI><a href="#priorityclasslist-v1-scheduling-k8s-io">PriorityClassList [scheduling/v1]</a></LI>
+  <LI><a href="#prioritylevelconfigurationlist-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationList [flowcontrol/v1beta2]</a></LI>
+  <LI><a href="#prioritylevelconfigurationlist-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationList [flowcontrol/v1beta1]</a></LI>
+  <LI><a href="#replicasetlist-v1-apps">ReplicaSetList [apps/v1]</a></LI>
+  <LI><a href="#replicationcontrollerlist-v1-core">ReplicationControllerList [core/v1]</a></LI>
+  <LI><a href="#resourcequotalist-v1-core">ResourceQuotaList [core/v1]</a></LI>
+  <LI><a href="#rolebindinglist-v1-rbac-authorization-k8s-io">RoleBindingList [rbac/v1]</a></LI>
+  <LI><a href="#rolelist-v1-rbac-authorization-k8s-io">RoleList [rbac/v1]</a></LI>
+  <LI><a href="#runtimeclasslist-v1-node-k8s-io">RuntimeClassList [node/v1]</a></LI>
+  <LI><a href="#runtimeclasslist-v1beta1-node-k8s-io">RuntimeClassList [node/v1beta1]</a></LI>
+  <LI><a href="#secretlist-v1-core">SecretList [core/v1]</a></LI>
+  <LI><a href="#serviceaccountlist-v1-core">ServiceAccountList [core/v1]</a></LI>
+  <LI><a href="#servicelist-v1-core">ServiceList [core/v1]</a></LI>
+  <LI><a href="#statefulsetlist-v1-apps">StatefulSetList [apps/v1]</a></LI>
+  <LI><a href="#status-v1-meta">Status [meta/v1]</a></LI>
+  <LI><a href="#storageclasslist-v1-storage-k8s-io">StorageClassList [storage/v1]</a></LI>
+  <LI><a href="#storageversionlist-v1alpha1-internal-apiserver-k8s-io">StorageVersionList [apiserverinternal/v1alpha1]</a></LI>
+  <LI><a href="#validatingwebhookconfigurationlist-v1-admissionregistration-k8s-io">ValidatingWebhookConfigurationList [admissionregistration/v1]</a></LI>
+  <LI><a href="#volumeattachmentlist-v1-storage-k8s-io">VolumeAttachmentList [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>continue</CODE><BR /><I>string</I></TD><TD>continue may be set if the user set a limit on the number of items returned, and indicates that the server has more data available. The value is opaque and may be used to issue another request to the endpoint that served this list to retrieve the next set of available objects. Continuing a consistent list may not be possible if the server configuration has changed or more than a few minutes have passed. The resourceVersion field returned when using this continue value will be identical to the value in the first response, unless you have received this token from an error message.</TD></TR>
+<TR><TD><CODE>remainingItemCount</CODE><BR /><I>integer</I></TD><TD>remainingItemCount is the number of subsequent items in the list which are not included in this list response. If the list request contained label or field selectors, then the number of remaining items is unknown and the field will be left unset and omitted during serialization. If the list is complete (either because it is not chunking or because this is the last chunk), then there are no more remaining items and this field will be left unset and omitted during serialization. Servers older than v1.15 do not set this field. The intended use of the remainingItemCount is *estimating* the size of a collection. Clients should not rely on the remainingItemCount to be set or to be exact.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE><BR /><I>string</I></TD><TD>String that identifies the server&#39;s internal version of this object that can be used by clients to determine when objects have changed. Value must be treated as opaque by clients and passed unmodified back to the server. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency</TD></TR>
+<TR><TD><CODE>selfLink</CODE><BR /><I>string</I></TD><TD>Deprecated: selfLink is a legacy read-only field that is no longer populated by the system.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="loadbalanceringress-v1-core">LoadBalancerIngress v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>LoadBalancerIngress</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>LoadBalancerIngress represents the status of a load-balancer ingress point: traffic intended for the service should be sent to an ingress point.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#loadbalancerstatus-v1-core">LoadBalancerStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>hostname</CODE><BR /><I>string</I></TD><TD>Hostname is set for load-balancer ingress points that are DNS based (typically AWS load-balancers)</TD></TR>
+<TR><TD><CODE>ip</CODE><BR /><I>string</I></TD><TD>IP is set for load-balancer ingress points that are IP based (typically GCE or OpenStack load-balancers)</TD></TR>
+<TR><TD><CODE>ports</CODE><BR /><I><a href="#portstatus-v1-core">PortStatus</a> array</I></TD><TD>Ports is a list of records of service ports If used, every port defined in the service should have an entry in it</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="loadbalancerstatus-v1-core">LoadBalancerStatus v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>LoadBalancerStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>LoadBalancerStatus represents the status of a load-balancer.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingressstatus-v1-networking-k8s-io">IngressStatus [networking/v1]</a></LI>
+  <LI><a href="#servicestatus-v1-core">ServiceStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ingress</CODE><BR /><I><a href="#loadbalanceringress-v1-core">LoadBalancerIngress</a> array</I></TD><TD>Ingress is a list containing ingress points for the load-balancer. Traffic intended for the service should be sent to these ingress points.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="localobjectreference-v1-core">LocalObjectReference v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>LocalObjectReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>LocalObjectReference contains enough information to let you locate the referenced object inside the same namespace.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csivolumesource-v1-core">CSIVolumeSource [core/v1]</a></LI>
+  <LI><a href="#cephfsvolumesource-v1-core">CephFSVolumeSource [core/v1]</a></LI>
+  <LI><a href="#cindervolumesource-v1-core">CinderVolumeSource [core/v1]</a></LI>
+  <LI><a href="#flexvolumesource-v1-core">FlexVolumeSource [core/v1]</a></LI>
+  <LI><a href="#iscsivolumesource-v1-core">ISCSIVolumeSource [core/v1]</a></LI>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+  <LI><a href="#rbdvolumesource-v1-core">RBDVolumeSource [core/v1]</a></LI>
+  <LI><a href="#scaleiovolumesource-v1-core">ScaleIOVolumeSource [core/v1]</a></LI>
+  <LI><a href="#serviceaccount-v1-core">ServiceAccount [core/v1]</a></LI>
+  <LI><a href="#storageosvolumesource-v1-core">StorageOSVolumeSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="localvolumesource-v1-core">LocalVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>LocalVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Local represents directly-attached storage with node affinity (Beta feature)</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>fsType is the filesystem type to mount. It applies only when the Path is a block device. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. The default value is to auto-select a filesystem if unspecified.</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>path of the full path to the volume on the node. It can be either a directory or block device (disk, partition, ...).</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="managedfieldsentry-v1-meta">ManagedFieldsEntry v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ManagedFieldsEntry</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ManagedFieldsEntry is a workflow-id, a FieldSet and the group version of the resource that the fieldset applies to.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#objectmeta-v1-meta">ObjectMeta [meta/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the version of this resource that this field set applies to. The format is &#34;group/version&#34; just like the top-level APIVersion field. It is necessary to track the version of a field set because it cannot be automatically converted.</TD></TR>
+<TR><TD><CODE>fieldsType</CODE><BR /><I>string</I></TD><TD>FieldsType is the discriminator for the different fields format and version. There is currently only one possible value: &#34;FieldsV1&#34;</TD></TR>
+<TR><TD><CODE>fieldsV1</CODE><BR /><I><a href="#fieldsv1-v1-meta">FieldsV1</a></I></TD><TD>FieldsV1 holds the first JSON version format as described in the &#34;FieldsV1&#34; type.</TD></TR>
+<TR><TD><CODE>manager</CODE><BR /><I>string</I></TD><TD>Manager is an identifier of the workflow managing these fields.</TD></TR>
+<TR><TD><CODE>operation</CODE><BR /><I>string</I></TD><TD>Operation is the type of operation which lead to this ManagedFieldsEntry being created. The only valid values for this field are &#39;Apply&#39; and &#39;Update&#39;.</TD></TR>
+<TR><TD><CODE>subresource</CODE><BR /><I>string</I></TD><TD>Subresource is the name of the subresource used to update that object, or empty string if the object was updated through the main resource. The value of this field is used to distinguish between managers, even if they share the same name. For example, a status update will be distinct from a regular update using the same manager name. Note that the APIVersion field is not related to the Subresource field and it always corresponds to the version of the main resource.</TD></TR>
+<TR><TD><CODE>time</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Time is the timestamp of when the ManagedFields entry was added. The timestamp will also be updated if a field is added, the manager changes any of the owned fields value or removes a field. The timestamp does not update when a field is removed from the entry because another manager took it over.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="metricidentifier-v2-autoscaling">MetricIdentifier v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>MetricIdentifier</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>MetricIdentifier defines the name and optionally selector for a metric</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metricidentifier-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#externalmetricsource-v2-autoscaling">ExternalMetricSource [autoscaling/v2]</a></LI>
+  <LI><a href="#externalmetricstatus-v2-autoscaling">ExternalMetricStatus [autoscaling/v2]</a></LI>
+  <LI><a href="#objectmetricsource-v2-autoscaling">ObjectMetricSource [autoscaling/v2]</a></LI>
+  <LI><a href="#objectmetricstatus-v2-autoscaling">ObjectMetricStatus [autoscaling/v2]</a></LI>
+  <LI><a href="#podsmetricsource-v2-autoscaling">PodsMetricSource [autoscaling/v2]</a></LI>
+  <LI><a href="#podsmetricstatus-v2-autoscaling">PodsMetricStatus [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the given metric</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="metricspec-v2-autoscaling">MetricSpec v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>MetricSpec</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>MetricSpec specifies how to scale based on a single metric (only `type` and one other matching field should be set at once).</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metricspec-v2beta2-autoscaling">v2beta2</a>
+<a href="#metricspec-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerspec-v2-autoscaling">HorizontalPodAutoscalerSpec [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>containerResource</CODE><BR /><I><a href="#containerresourcemetricsource-v2-autoscaling">ContainerResourceMetricSource</a></I></TD><TD>containerResource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing a single container in each pod of the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source. This is an alpha feature and can be enabled by the HPAContainerMetrics feature flag.</TD></TR>
+<TR><TD><CODE>external</CODE><BR /><I><a href="#externalmetricsource-v2-autoscaling">ExternalMetricSource</a></I></TD><TD>external refers to a global metric that is not associated with any Kubernetes object. It allows autoscaling based on information coming from components running outside of cluster (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).</TD></TR>
+<TR><TD><CODE>object</CODE><BR /><I><a href="#objectmetricsource-v2-autoscaling">ObjectMetricSource</a></I></TD><TD>object refers to a metric describing a single kubernetes object (for example, hits-per-second on an Ingress object).</TD></TR>
+<TR><TD><CODE>pods</CODE><BR /><I><a href="#podsmetricsource-v2-autoscaling">PodsMetricSource</a></I></TD><TD>pods refers to a metric describing each pod in the current scale target (for example, transactions-processed-per-second).  The values will be averaged together before being compared to the target value.</TD></TR>
+<TR><TD><CODE>resource</CODE><BR /><I><a href="#resourcemetricsource-v2-autoscaling">ResourceMetricSource</a></I></TD><TD>resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type is the type of metric source.  It should be one of &#34;ContainerResource&#34;, &#34;External&#34;, &#34;Object&#34;, &#34;Pods&#34; or &#34;Resource&#34;, each mapping to a matching field in the object. Note: &#34;ContainerResource&#34; type is available on when the feature-gate HPAContainerMetrics is enabled</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="metricstatus-v2-autoscaling">MetricStatus v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>MetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>MetricStatus describes the last-read state of a single metric.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metricstatus-v2beta2-autoscaling">v2beta2</a>
+<a href="#metricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerstatus-v2-autoscaling">HorizontalPodAutoscalerStatus [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>containerResource</CODE><BR /><I><a href="#containerresourcemetricstatus-v2-autoscaling">ContainerResourceMetricStatus</a></I></TD><TD>container resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing a single container in each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.</TD></TR>
+<TR><TD><CODE>external</CODE><BR /><I><a href="#externalmetricstatus-v2-autoscaling">ExternalMetricStatus</a></I></TD><TD>external refers to a global metric that is not associated with any Kubernetes object. It allows autoscaling based on information coming from components running outside of cluster (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).</TD></TR>
+<TR><TD><CODE>object</CODE><BR /><I><a href="#objectmetricstatus-v2-autoscaling">ObjectMetricStatus</a></I></TD><TD>object refers to a metric describing a single kubernetes object (for example, hits-per-second on an Ingress object).</TD></TR>
+<TR><TD><CODE>pods</CODE><BR /><I><a href="#podsmetricstatus-v2-autoscaling">PodsMetricStatus</a></I></TD><TD>pods refers to a metric describing each pod in the current scale target (for example, transactions-processed-per-second).  The values will be averaged together before being compared to the target value.</TD></TR>
+<TR><TD><CODE>resource</CODE><BR /><I><a href="#resourcemetricstatus-v2-autoscaling">ResourceMetricStatus</a></I></TD><TD>resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type is the type of metric source.  It will be one of &#34;ContainerResource&#34;, &#34;External&#34;, &#34;Object&#34;, &#34;Pods&#34; or &#34;Resource&#34;, each corresponds to a matching field in the object. Note: &#34;ContainerResource&#34; type is available on when the feature-gate HPAContainerMetrics is enabled</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="metrictarget-v2-autoscaling">MetricTarget v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>MetricTarget</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>MetricTarget defines the target value, average value, or average utilization of a specific metric</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metrictarget-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#containerresourcemetricsource-v2-autoscaling">ContainerResourceMetricSource [autoscaling/v2]</a></LI>
+  <LI><a href="#externalmetricsource-v2-autoscaling">ExternalMetricSource [autoscaling/v2]</a></LI>
+  <LI><a href="#objectmetricsource-v2-autoscaling">ObjectMetricSource [autoscaling/v2]</a></LI>
+  <LI><a href="#podsmetricsource-v2-autoscaling">PodsMetricSource [autoscaling/v2]</a></LI>
+  <LI><a href="#resourcemetricsource-v2-autoscaling">ResourceMetricSource [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>averageUtilization</CODE><BR /><I>integer</I></TD><TD>averageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods. Currently only valid for Resource metric source type</TD></TR>
+<TR><TD><CODE>averageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>averageValue is the target value of the average of the metric across all relevant pods (as a quantity)</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type represents whether the metric type is Utilization, Value, or AverageValue</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>value is the target value of the metric (as a quantity).</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="metricvaluestatus-v2-autoscaling">MetricValueStatus v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>MetricValueStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>MetricValueStatus holds the current value for a metric</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metricvaluestatus-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#containerresourcemetricstatus-v2-autoscaling">ContainerResourceMetricStatus [autoscaling/v2]</a></LI>
+  <LI><a href="#externalmetricstatus-v2-autoscaling">ExternalMetricStatus [autoscaling/v2]</a></LI>
+  <LI><a href="#objectmetricstatus-v2-autoscaling">ObjectMetricStatus [autoscaling/v2]</a></LI>
+  <LI><a href="#podsmetricstatus-v2-autoscaling">PodsMetricStatus [autoscaling/v2]</a></LI>
+  <LI><a href="#resourcemetricstatus-v2-autoscaling">ResourceMetricStatus [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>averageUtilization</CODE><BR /><I>integer</I></TD><TD>currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.</TD></TR>
+<TR><TD><CODE>averageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>averageValue is the current value of the average of the metric across all relevant pods (as a quantity)</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>value is the current value of the metric (as a quantity).</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="microtime-v1-meta">MicroTime v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>MicroTime</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>MicroTime is version of Time with microsecond level precision.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#event-v1-core">Event [core/v1]</a></LI>
+  <LI><a href="#event-v1-events-k8s-io">Event [events/v1]</a></LI>
+  <LI><a href="#event-v1beta1-events-k8s-io">Event [events/v1beta1]</a></LI>
+  <LI><a href="#eventseries-v1-core">EventSeries [core/v1]</a></LI>
+  <LI><a href="#eventseries-v1-events-k8s-io">EventSeries [events/v1]</a></LI>
+  <LI><a href="#eventseries-v1beta1-events-k8s-io">EventSeries [events/v1beta1]</a></LI>
+  <LI><a href="#leasespec-v1-coordination-k8s-io">LeaseSpec [coordination/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+</TBODY>
+</TABLE>
+<H2 id="mutatingwebhook-v1-admissionregistration-k8s-io">MutatingWebhook v1 admissionregistration.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>admissionregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>MutatingWebhook</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>MutatingWebhook describes an admission webhook and the resources and operations it applies to.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration [admissionregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>admissionReviewVersions</CODE><BR /><I>string array</I></TD><TD>AdmissionReviewVersions is an ordered list of preferred `AdmissionReview` versions the Webhook expects. API server will try to use first version in the list which it supports. If none of the versions specified in this list supported by API server, validation will fail for this object. If a persisted webhook configuration specifies allowed versions and does not include any versions known to the API Server, calls to the webhook will fail and be subject to the failure policy.</TD></TR>
+<TR><TD><CODE>clientConfig</CODE><BR /><I><a href="#webhookclientconfig-v1-admissionregistration-k8s-io">WebhookClientConfig</a></I></TD><TD>ClientConfig defines how to communicate with the hook. Required</TD></TR>
+<TR><TD><CODE>failurePolicy</CODE><BR /><I>string</I></TD><TD>FailurePolicy defines how unrecognized errors from the admission endpoint are handled - allowed values are Ignore or Fail. Defaults to Fail.</TD></TR>
+<TR><TD><CODE>matchPolicy</CODE><BR /><I>string</I></TD><TD>matchPolicy defines how the &#34;rules&#34; list is used to match incoming requests. Allowed values are &#34;Exact&#34; or &#34;Equivalent&#34;.  - Exact: match a request only if it exactly matches a specified rule. For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, but &#34;rules&#34; only included `apiGroups:[&#34;apps&#34;], apiVersions:[&#34;v1&#34;], resources: [&#34;deployments&#34;]`, a request to apps/v1beta1 or extensions/v1beta1 would not be sent to the webhook.  - Equivalent: match a request if modifies a resource listed in rules, even via another API group or version. For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, and &#34;rules&#34; only included `apiGroups:[&#34;apps&#34;], apiVersions:[&#34;v1&#34;], resources: [&#34;deployments&#34;]`, a request to apps/v1beta1 or extensions/v1beta1 would be converted to apps/v1 and sent to the webhook.  Defaults to &#34;Equivalent&#34;</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>The name of the admission webhook. Name should be fully qualified, e.g., imagepolicy.kubernetes.io, where &#34;imagepolicy&#34; is the name of the webhook, and kubernetes.io is the name of the organization. Required.</TD></TR>
+<TR><TD><CODE>namespaceSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>NamespaceSelector decides whether to run the webhook on an object based on whether the namespace for that object matches the selector. If the object itself is a namespace, the matching is performed on object.metadata.labels. If the object is another cluster scoped resource, it never skips the webhook.  For example, to run the webhook on any objects whose namespace is not associated with &#34;runlevel&#34; of &#34;0&#34; or &#34;1&#34;;  you will set the selector as follows: &#34;namespaceSelector&#34;: {   &#34;matchExpressions&#34;: [     {       &#34;key&#34;: &#34;runlevel&#34;,       &#34;operator&#34;: &#34;NotIn&#34;,       &#34;values&#34;: [         &#34;0&#34;,         &#34;1&#34;       ]     }   ] }  If instead you want to only run the webhook on any objects whose namespace is associated with the &#34;environment&#34; of &#34;prod&#34; or &#34;staging&#34;; you will set the selector as follows: &#34;namespaceSelector&#34;: {   &#34;matchExpressions&#34;: [     {       &#34;key&#34;: &#34;environment&#34;,       &#34;operator&#34;: &#34;In&#34;,       &#34;values&#34;: [         &#34;prod&#34;,         &#34;staging&#34;       ]     }   ] }  See https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ for more examples of label selectors.  Default to the empty LabelSelector, which matches everything.</TD></TR>
+<TR><TD><CODE>objectSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>ObjectSelector decides whether to run the webhook based on if the object has matching labels. objectSelector is evaluated against both the oldObject and newObject that would be sent to the webhook, and is considered to match if either object matches the selector. A null object (oldObject in the case of create, or newObject in the case of delete) or an object that cannot have labels (like a DeploymentRollback or a PodProxyOptions object) is not considered to match. Use the object selector only if the webhook is opt-in, because end users may skip the admission webhook by setting the labels. Default to the empty LabelSelector, which matches everything.</TD></TR>
+<TR><TD><CODE>reinvocationPolicy</CODE><BR /><I>string</I></TD><TD>reinvocationPolicy indicates whether this webhook should be called multiple times as part of a single admission evaluation. Allowed values are &#34;Never&#34; and &#34;IfNeeded&#34;.  Never: the webhook will not be called more than once in a single admission evaluation.  IfNeeded: the webhook will be called at least one additional time as part of the admission evaluation if the object being admitted is modified by other admission plugins after the initial webhook call. Webhooks that specify this option *must* be idempotent, able to process objects they previously admitted. Note: * the number of additional invocations is not guaranteed to be exactly one. * if additional invocations result in further modifications to the object, webhooks are not guaranteed to be invoked again. * webhooks that use this option may be reordered to minimize the number of additional invocations. * to validate an object after all mutations are guaranteed complete, use a validating admission webhook instead.  Defaults to &#34;Never&#34;.</TD></TR>
+<TR><TD><CODE>rules</CODE><BR /><I><a href="#rulewithoperations-v1-admissionregistration-k8s-io">RuleWithOperations</a> array</I></TD><TD>Rules describes what operations on what resources/subresources the webhook cares about. The webhook cares about an operation if it matches _any_ Rule. However, in order to prevent ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks from putting the cluster in a state which cannot be recovered from without completely disabling the plugin, ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks are never called on admission requests for ValidatingWebhookConfiguration and MutatingWebhookConfiguration objects.</TD></TR>
+<TR><TD><CODE>sideEffects</CODE><BR /><I>string</I></TD><TD>SideEffects states whether this webhook has side effects. Acceptable values are: None, NoneOnDryRun (webhooks created via v1beta1 may also specify Some or Unknown). Webhooks with side effects MUST implement a reconciliation system, since a request may be rejected by a future step in the admission chain and the side effects therefore need to be undone. Requests with the dryRun attribute will be auto-rejected if they match a webhook with sideEffects == Unknown or Some.</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE><BR /><I>integer</I></TD><TD>TimeoutSeconds specifies the timeout for this webhook. After the timeout passes, the webhook call will be ignored or the API call will fail based on the failure policy. The timeout value must be between 1 and 30 seconds. Default to 10 seconds.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nfsvolumesource-v1-core">NFSVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NFSVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents an NFS mount that lasts the lifetime of a pod. NFS volumes do not support ownership management or SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>path that is exported by the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly here will force the NFS export to be mounted with read-only permissions. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs</TD></TR>
+<TR><TD><CODE>server</CODE><BR /><I>string</I></TD><TD>server is the hostname or IP address of the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="namespacecondition-v1-core">NamespaceCondition v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NamespaceCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NamespaceCondition contains details about state of namespace.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#namespacestatus-v1-core">NamespaceStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD></TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD></TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD></TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status of the condition, one of True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of namespace controller condition.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="networkpolicyegressrule-v1-networking-k8s-io">NetworkPolicyEgressRule v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NetworkPolicyEgressRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NetworkPolicyEgressRule describes a particular set of traffic that is allowed out of pods matched by a NetworkPolicySpec&#39;s podSelector. The traffic must match both ports and to. This type is beta-level in 1.8</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#networkpolicyspec-v1-networking-k8s-io">NetworkPolicySpec [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ports</CODE><BR /><I><a href="#networkpolicyport-v1-networking-k8s-io">NetworkPolicyPort</a> array</I></TD><TD>List of destination ports for outgoing traffic. Each item in this list is combined using a logical OR. If this field is empty or missing, this rule matches all ports (traffic not restricted by port). If this field is present and contains at least one item, then this rule allows traffic only if the traffic matches at least one port in the list.</TD></TR>
+<TR><TD><CODE>to</CODE><BR /><I><a href="#networkpolicypeer-v1-networking-k8s-io">NetworkPolicyPeer</a> array</I></TD><TD>List of destinations for outgoing traffic of pods selected for this rule. Items in this list are combined using a logical OR operation. If this field is empty or missing, this rule matches all destinations (traffic not restricted by destination). If this field is present and contains at least one item, this rule allows traffic only if the traffic matches at least one item in the to list.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="networkpolicyingressrule-v1-networking-k8s-io">NetworkPolicyIngressRule v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NetworkPolicyIngressRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NetworkPolicyIngressRule describes a particular set of traffic that is allowed to the pods matched by a NetworkPolicySpec&#39;s podSelector. The traffic must match both ports and from.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#networkpolicyspec-v1-networking-k8s-io">NetworkPolicySpec [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>from</CODE><BR /><I><a href="#networkpolicypeer-v1-networking-k8s-io">NetworkPolicyPeer</a> array</I></TD><TD>List of sources which should be able to access the pods selected for this rule. Items in this list are combined using a logical OR operation. If this field is empty or missing, this rule matches all sources (traffic not restricted by source). If this field is present and contains at least one item, this rule allows traffic only if the traffic matches at least one item in the from list.</TD></TR>
+<TR><TD><CODE>ports</CODE><BR /><I><a href="#networkpolicyport-v1-networking-k8s-io">NetworkPolicyPort</a> array</I></TD><TD>List of ports which should be made accessible on the pods selected for this rule. Each item in this list is combined using a logical OR. If this field is empty or missing, this rule matches all ports (traffic not restricted by port). If this field is present and contains at least one item, then this rule allows traffic only if the traffic matches at least one port in the list.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="networkpolicypeer-v1-networking-k8s-io">NetworkPolicyPeer v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NetworkPolicyPeer</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NetworkPolicyPeer describes a peer to allow traffic to/from. Only certain combinations of fields are allowed</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#networkpolicyegressrule-v1-networking-k8s-io">NetworkPolicyEgressRule [networking/v1]</a></LI>
+  <LI><a href="#networkpolicyingressrule-v1-networking-k8s-io">NetworkPolicyIngressRule [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ipBlock</CODE><BR /><I><a href="#ipblock-v1-networking-k8s-io">IPBlock</a></I></TD><TD>IPBlock defines policy on a particular IPBlock. If this field is set then neither of the other fields can be.</TD></TR>
+<TR><TD><CODE>namespaceSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>Selects Namespaces using cluster-scoped labels. This field follows standard label selector semantics; if present but empty, it selects all namespaces.  If PodSelector is also set, then the NetworkPolicyPeer as a whole selects the Pods matching PodSelector in the Namespaces selected by NamespaceSelector. Otherwise it selects all Pods in the Namespaces selected by NamespaceSelector.</TD></TR>
+<TR><TD><CODE>podSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>This is a label selector which selects Pods. This field follows standard label selector semantics; if present but empty, it selects all pods.  If NamespaceSelector is also set, then the NetworkPolicyPeer as a whole selects the Pods matching PodSelector in the Namespaces selected by NamespaceSelector. Otherwise it selects the Pods matching PodSelector in the policy&#39;s own Namespace.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="networkpolicyport-v1-networking-k8s-io">NetworkPolicyPort v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NetworkPolicyPort</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NetworkPolicyPort describes a port to allow traffic on</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#networkpolicyegressrule-v1-networking-k8s-io">NetworkPolicyEgressRule [networking/v1]</a></LI>
+  <LI><a href="#networkpolicyingressrule-v1-networking-k8s-io">NetworkPolicyIngressRule [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>endPort</CODE><BR /><I>integer</I></TD><TD>If set, indicates that the range of ports from port to endPort, inclusive, should be allowed by the policy. This field cannot be defined if the port field is not defined or if the port field is defined as a named (string) port. The endPort must be equal or greater than port. This feature is in Beta state and is enabled by default. It can be disabled using the Feature Gate &#34;NetworkPolicyEndPort&#34;.</TD></TR>
+<TR><TD><CODE>port</CODE></TD><TD>The port on the given protocol. This can either be a numerical or named port on a pod. If this field is not provided, this matches all port names and numbers. If present, only traffic on the specified protocol AND port will be matched.</TD></TR>
+<TR><TD><CODE>protocol</CODE><BR /><I>string</I></TD><TD>The protocol (TCP, UDP, or SCTP) which traffic must match. If not specified, this field defaults to TCP.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nodeaddress-v1-core">NodeAddress v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NodeAddress</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NodeAddress contains information for the node&#39;s address.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodestatus-v1-core">NodeStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>address</CODE><BR /><I>string</I></TD><TD>The node address.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Node address type, one of Hostname, ExternalIP or InternalIP.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nodeaffinity-v1-core">NodeAffinity v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NodeAffinity</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Node affinity is a group of node affinity scheduling rules.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#affinity-v1-core">Affinity [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>preferredDuringSchedulingIgnoredDuringExecution</CODE><BR /><I><a href="#preferredschedulingterm-v1-core">PreferredSchedulingTerm</a> array</I></TD><TD>The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding &#34;weight&#34; to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.</TD></TR>
+<TR><TD><CODE>requiredDuringSchedulingIgnoredDuringExecution</CODE><BR /><I><a href="#nodeselector-v1-core">NodeSelector</a></I></TD><TD>If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nodecondition-v1-core">NodeCondition v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NodeCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NodeCondition contains condition information for a node.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodestatus-v1-core">NodeStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastHeartbeatTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time we got an update on a given condition.</TD></TR>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time the condition transit from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>Human readable message indicating details about last transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>(brief) reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status of the condition, one of True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of node condition.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nodeconfigsource-v1-core">NodeConfigSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NodeConfigSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NodeConfigSource specifies a source of node configuration. Exactly one subfield (excluding metadata) must be non-nil. This API is deprecated since 1.22</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodeconfigstatus-v1-core">NodeConfigStatus [core/v1]</a></LI>
+  <LI><a href="#nodespec-v1-core">NodeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>configMap</CODE><BR /><I><a href="#configmapnodeconfigsource-v1-core">ConfigMapNodeConfigSource</a></I></TD><TD>ConfigMap is a reference to a Node&#39;s ConfigMap</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nodeconfigstatus-v1-core">NodeConfigStatus v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NodeConfigStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NodeConfigStatus describes the status of the config assigned by Node.Spec.ConfigSource.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodestatus-v1-core">NodeStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>active</CODE><BR /><I><a href="#nodeconfigsource-v1-core">NodeConfigSource</a></I></TD><TD>Active reports the checkpointed config the node is actively using. Active will represent either the current version of the Assigned config, or the current LastKnownGood config, depending on whether attempting to use the Assigned config results in an error.</TD></TR>
+<TR><TD><CODE>assigned</CODE><BR /><I><a href="#nodeconfigsource-v1-core">NodeConfigSource</a></I></TD><TD>Assigned reports the checkpointed config the node will try to use. When Node.Spec.ConfigSource is updated, the node checkpoints the associated config payload to local disk, along with a record indicating intended config. The node refers to this record to choose its config checkpoint, and reports this record in Assigned. Assigned only updates in the status after the record has been checkpointed to disk. When the Kubelet is restarted, it tries to make the Assigned config the Active config by loading and validating the checkpointed payload identified by Assigned.</TD></TR>
+<TR><TD><CODE>error</CODE><BR /><I>string</I></TD><TD>Error describes any problems reconciling the Spec.ConfigSource to the Active config. Errors may occur, for example, attempting to checkpoint Spec.ConfigSource to the local Assigned record, attempting to checkpoint the payload associated with Spec.ConfigSource, attempting to load or validate the Assigned config, etc. Errors may occur at different points while syncing config. Earlier errors (e.g. download or checkpointing errors) will not result in a rollback to LastKnownGood, and may resolve across Kubelet retries. Later errors (e.g. loading or validating a checkpointed config) will result in a rollback to LastKnownGood. In the latter case, it is usually possible to resolve the error by fixing the config assigned in Spec.ConfigSource. You can find additional information for debugging by searching the error message in the Kubelet log. Error is a human-readable description of the error state; machines can check whether or not Error is empty, but should not rely on the stability of the Error text across Kubelet versions.</TD></TR>
+<TR><TD><CODE>lastKnownGood</CODE><BR /><I><a href="#nodeconfigsource-v1-core">NodeConfigSource</a></I></TD><TD>LastKnownGood reports the checkpointed config the node will fall back to when it encounters an error attempting to use the Assigned config. The Assigned config becomes the LastKnownGood config when the node determines that the Assigned config is stable and correct. This is currently implemented as a 10-minute soak period starting when the local record of Assigned config is updated. If the Assigned config is Active at the end of this period, it becomes the LastKnownGood. Note that if Spec.ConfigSource is reset to nil (use local defaults), the LastKnownGood is also immediately reset to nil, because the local default config is always assumed good. You should not make assumptions about the node&#39;s method of determining config stability and correctness, as this may change or become configurable in the future.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nodedaemonendpoints-v1-core">NodeDaemonEndpoints v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NodeDaemonEndpoints</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NodeDaemonEndpoints lists ports opened by daemons running on the Node.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodestatus-v1-core">NodeStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>kubeletEndpoint</CODE><BR /><I><a href="#daemonendpoint-v1-core">DaemonEndpoint</a></I></TD><TD>Endpoint on which Kubelet is listening.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nodeselector-v1-core">NodeSelector v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NodeSelector</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>A node selector represents the union of the results of one or more label queries over a set of nodes; that is, it represents the OR of the selectors represented by the node selector terms.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodeaffinity-v1-core">NodeAffinity [core/v1]</a></LI>
+  <LI><a href="#volumenodeaffinity-v1-core">VolumeNodeAffinity [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nodeSelectorTerms</CODE><BR /><I><a href="#nodeselectorterm-v1-core">NodeSelectorTerm</a> array</I></TD><TD>Required. A list of node selector terms. The terms are ORed.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nodeselectorrequirement-v1-core">NodeSelectorRequirement v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NodeSelectorRequirement</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodeselectorterm-v1-core">NodeSelectorTerm [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>key</CODE><BR /><I>string</I></TD><TD>The label key that the selector applies to.</TD></TR>
+<TR><TD><CODE>operator</CODE><BR /><I>string</I></TD><TD>Represents a key&#39;s relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.  </TD></TR>
+<TR><TD><CODE>values</CODE><BR /><I>string array</I></TD><TD>An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nodeselectorterm-v1-core">NodeSelectorTerm v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NodeSelectorTerm</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodeselector-v1-core">NodeSelector [core/v1]</a></LI>
+  <LI><a href="#preferredschedulingterm-v1-core">PreferredSchedulingTerm [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>matchExpressions</CODE><BR /><I><a href="#nodeselectorrequirement-v1-core">NodeSelectorRequirement</a> array</I></TD><TD>A list of node selector requirements by node&#39;s labels.</TD></TR>
+<TR><TD><CODE>matchFields</CODE><BR /><I><a href="#nodeselectorrequirement-v1-core">NodeSelectorRequirement</a> array</I></TD><TD>A list of node selector requirements by node&#39;s fields.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nodesysteminfo-v1-core">NodeSystemInfo v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NodeSystemInfo</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NodeSystemInfo is a set of ids/uuids to uniquely identify the node.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodestatus-v1-core">NodeStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>architecture</CODE><BR /><I>string</I></TD><TD>The Architecture reported by the node</TD></TR>
+<TR><TD><CODE>bootID</CODE><BR /><I>string</I></TD><TD>Boot ID reported by the node.</TD></TR>
+<TR><TD><CODE>containerRuntimeVersion</CODE><BR /><I>string</I></TD><TD>ContainerRuntime Version reported by the node through runtime remote API (e.g. containerd://1.4.2).</TD></TR>
+<TR><TD><CODE>kernelVersion</CODE><BR /><I>string</I></TD><TD>Kernel Version reported by the node from &#39;uname -r&#39; (e.g. 3.16.0-0.bpo.4-amd64).</TD></TR>
+<TR><TD><CODE>kubeProxyVersion</CODE><BR /><I>string</I></TD><TD>KubeProxy Version reported by the node.</TD></TR>
+<TR><TD><CODE>kubeletVersion</CODE><BR /><I>string</I></TD><TD>Kubelet Version reported by the node.</TD></TR>
+<TR><TD><CODE>machineID</CODE><BR /><I>string</I></TD><TD>MachineID reported by the node. For unique machine identification in the cluster this field is preferred. Learn more from man(5) machine-id: http://man7.org/linux/man-pages/man5/machine-id.5.html</TD></TR>
+<TR><TD><CODE>operatingSystem</CODE><BR /><I>string</I></TD><TD>The Operating System reported by the node</TD></TR>
+<TR><TD><CODE>osImage</CODE><BR /><I>string</I></TD><TD>OS Image reported by the node from /etc/os-release (e.g. Debian GNU/Linux 7 (wheezy)).</TD></TR>
+<TR><TD><CODE>systemUUID</CODE><BR /><I>string</I></TD><TD>SystemUUID reported by the node. For unique machine identification MachineID is preferred. This field is specific to Red Hat hosts https://access.redhat.com/documentation/en-us/red_hat_subscription_management/1/html/rhsm/uuid</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nonresourceattributes-v1-authorization-k8s-io">NonResourceAttributes v1 authorization.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NonResourceAttributes</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NonResourceAttributes includes the authorization attributes available for non-resource requests to the Authorizer interface</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#selfsubjectaccessreviewspec-v1-authorization-k8s-io">SelfSubjectAccessReviewSpec [authorization/v1]</a></LI>
+  <LI><a href="#subjectaccessreviewspec-v1-authorization-k8s-io">SubjectAccessReviewSpec [authorization/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>Path is the URL path of the request</TD></TR>
+<TR><TD><CODE>verb</CODE><BR /><I>string</I></TD><TD>Verb is the standard HTTP verb</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nonresourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io">NonResourcePolicyRule v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>NonResourcePolicyRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NonResourcePolicyRule is a predicate that matches non-resource requests according to their verb and the target non-resource URL. A NonResourcePolicyRule matches a request if and only if both (a) at least one member of verbs matches the request and (b) at least one member of nonResourceURLs matches the request.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#nonresourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#policyruleswithsubjects-v1beta2-flowcontrol-apiserver-k8s-io">PolicyRulesWithSubjects [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nonResourceURLs</CODE><BR /><I>string array</I></TD><TD>`nonResourceURLs` is a set of url prefixes that a user should have access to and may not be empty. For example:   - &#34;/healthz&#34; is legal   - &#34;/hea*&#34; is illegal   - &#34;/hea&#34; is legal but matches nothing   - &#34;/hea/*&#34; also matches nothing   - &#34;/healthz/*&#34; matches all per-component health checks. &#34;*&#34; matches all non-resource urls. if it is present, it must be the only entry. Required.</TD></TR>
+<TR><TD><CODE>verbs</CODE><BR /><I>string array</I></TD><TD>`verbs` is a list of matching verbs and may not be empty. &#34;*&#34; matches all verbs. If it is present, it must be the only entry. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="nonresourcerule-v1-authorization-k8s-io">NonResourceRule v1 authorization.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>NonResourceRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>NonResourceRule holds information that describes a rule for the non-resource</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#subjectrulesreviewstatus-v1-authorization-k8s-io">SubjectRulesReviewStatus [authorization/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nonResourceURLs</CODE><BR /><I>string array</I></TD><TD>NonResourceURLs is a set of partial urls that a user should have access to.  *s are allowed, but only as the full, final step in the path.  &#34;*&#34; means all.</TD></TR>
+<TR><TD><CODE>verbs</CODE><BR /><I>string array</I></TD><TD>Verb is a list of kubernetes non-resource API verbs, like: get, post, put, delete, patch, head, options.  &#34;*&#34; means all.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="objectfieldselector-v1-core">ObjectFieldSelector v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ObjectFieldSelector</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ObjectFieldSelector selects an APIVersioned field of an object.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#downwardapivolumefile-v1-core">DownwardAPIVolumeFile [core/v1]</a></LI>
+  <LI><a href="#envvarsource-v1-core">EnvVarSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>Version of the schema the FieldPath is written in terms of, defaults to &#34;v1&#34;.</TD></TR>
+<TR><TD><CODE>fieldPath</CODE><BR /><I>string</I></TD><TD>Path of the field to select in the specified API version.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="objectmeta-v1-meta">ObjectMeta v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ObjectMeta</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ObjectMeta is metadata that all persisted resources must have, which includes all objects users must create.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apiservice-v1-apiregistration-k8s-io">APIService [apiregistration/v1]</a></LI>
+  <LI><a href="#binding-v1-core">Binding [core/v1]</a></LI>
+  <LI><a href="#csidriver-v1-storage-k8s-io">CSIDriver [storage/v1]</a></LI>
+  <LI><a href="#csinode-v1-storage-k8s-io">CSINode [storage/v1]</a></LI>
+  <LI><a href="#csistoragecapacity-v1-storage-k8s-io">CSIStorageCapacity [storage/v1]</a></LI>
+  <LI><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity [storage/v1beta1]</a></LI>
+  <LI><a href="#certificatesigningrequest-v1-certificates-k8s-io">CertificateSigningRequest [certificates/v1]</a></LI>
+  <LI><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole [rbac/v1]</a></LI>
+  <LI><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding [rbac/v1]</a></LI>
+  <LI><a href="#componentstatus-v1-core">ComponentStatus [core/v1]</a></LI>
+  <LI><a href="#configmap-v1-core">ConfigMap [core/v1]</a></LI>
+  <LI><a href="#controllerrevision-v1-apps">ControllerRevision [apps/v1]</a></LI>
+  <LI><a href="#cronjob-v1-batch">CronJob [batch/v1]</a></LI>
+  <LI><a href="#cronjob-v1beta1-batch">CronJob [batch/v1beta1]</a></LI>
+  <LI><a href="#customresourcedefinition-v1-apiextensions-k8s-io">CustomResourceDefinition [apiextensions/v1]</a></LI>
+  <LI><a href="#daemonset-v1-apps">DaemonSet [apps/v1]</a></LI>
+  <LI><a href="#deployment-v1-apps">Deployment [apps/v1]</a></LI>
+  <LI><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice [discovery/v1]</a></LI>
+  <LI><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice [discovery/v1beta1]</a></LI>
+  <LI><a href="#endpoints-v1-core">Endpoints [core/v1]</a></LI>
+  <LI><a href="#event-v1-core">Event [core/v1]</a></LI>
+  <LI><a href="#event-v1-events-k8s-io">Event [events/v1]</a></LI>
+  <LI><a href="#event-v1beta1-events-k8s-io">Event [events/v1beta1]</a></LI>
+  <LI><a href="#eviction-v1-policy">Eviction [policy/v1]</a></LI>
+  <LI><a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchema [flowcontrol/v1beta2]</a></LI>
+  <LI><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema [flowcontrol/v1beta1]</a></LI>
+  <LI><a href="#horizontalpodautoscaler-v2-autoscaling">HorizontalPodAutoscaler [autoscaling/v2]</a></LI>
+  <LI><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler [autoscaling/v1]</a></LI>
+  <LI><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#ingress-v1-networking-k8s-io">Ingress [networking/v1]</a></LI>
+  <LI><a href="#ingressclass-v1-networking-k8s-io">IngressClass [networking/v1]</a></LI>
+  <LI><a href="#job-v1-batch">Job [batch/v1]</a></LI>
+  <LI><a href="#jobtemplatespec-v1-batch">JobTemplateSpec [batch/v1]</a></LI>
+  <LI><a href="#jobtemplatespec-v1beta1-batch">JobTemplateSpec [batch/v1beta1]</a></LI>
+  <LI><a href="#lease-v1-coordination-k8s-io">Lease [coordination/v1]</a></LI>
+  <LI><a href="#limitrange-v1-core">LimitRange [core/v1]</a></LI>
+  <LI><a href="#localsubjectaccessreview-v1-authorization-k8s-io">LocalSubjectAccessReview [authorization/v1]</a></LI>
+  <LI><a href="#mutatingwebhookconfiguration-v1-admissionregistration-k8s-io">MutatingWebhookConfiguration [admissionregistration/v1]</a></LI>
+  <LI><a href="#namespace-v1-core">Namespace [core/v1]</a></LI>
+  <LI><a href="#networkpolicy-v1-networking-k8s-io">NetworkPolicy [networking/v1]</a></LI>
+  <LI><a href="#node-v1-core">Node [core/v1]</a></LI>
+  <LI><a href="#persistentvolume-v1-core">PersistentVolume [core/v1]</a></LI>
+  <LI><a href="#persistentvolumeclaim-v1-core">PersistentVolumeClaim [core/v1]</a></LI>
+  <LI><a href="#persistentvolumeclaimtemplate-v1-core">PersistentVolumeClaimTemplate [core/v1]</a></LI>
+  <LI><a href="#pod-v1-core">Pod [core/v1]</a></LI>
+  <LI><a href="#poddisruptionbudget-v1-policy">PodDisruptionBudget [policy/v1]</a></LI>
+  <LI><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget [policy/v1beta1]</a></LI>
+  <LI><a href="#podsecuritypolicy-v1beta1-policy">PodSecurityPolicy [policy/v1beta1]</a></LI>
+  <LI><a href="#podtemplate-v1-core">PodTemplate [core/v1]</a></LI>
+  <LI><a href="#podtemplatespec-v1-core">PodTemplateSpec [core/v1]</a></LI>
+  <LI><a href="#priorityclass-v1-scheduling-k8s-io">PriorityClass [scheduling/v1]</a></LI>
+  <LI><a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration [flowcontrol/v1beta2]</a></LI>
+  <LI><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration [flowcontrol/v1beta1]</a></LI>
+  <LI><a href="#replicaset-v1-apps">ReplicaSet [apps/v1]</a></LI>
+  <LI><a href="#replicationcontroller-v1-core">ReplicationController [core/v1]</a></LI>
+  <LI><a href="#resourcequota-v1-core">ResourceQuota [core/v1]</a></LI>
+  <LI><a href="#role-v1-rbac-authorization-k8s-io">Role [rbac/v1]</a></LI>
+  <LI><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding [rbac/v1]</a></LI>
+  <LI><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass [node/v1]</a></LI>
+  <LI><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass [node/v1beta1]</a></LI>
+  <LI><a href="#scale-v1-autoscaling">Scale [autoscaling/v1]</a></LI>
+  <LI><a href="#secret-v1-core">Secret [core/v1]</a></LI>
+  <LI><a href="#selfsubjectaccessreview-v1-authorization-k8s-io">SelfSubjectAccessReview [authorization/v1]</a></LI>
+  <LI><a href="#selfsubjectrulesreview-v1-authorization-k8s-io">SelfSubjectRulesReview [authorization/v1]</a></LI>
+  <LI><a href="#service-v1-core">Service [core/v1]</a></LI>
+  <LI><a href="#serviceaccount-v1-core">ServiceAccount [core/v1]</a></LI>
+  <LI><a href="#statefulset-v1-apps">StatefulSet [apps/v1]</a></LI>
+  <LI><a href="#storageclass-v1-storage-k8s-io">StorageClass [storage/v1]</a></LI>
+  <LI><a href="#storageversion-v1alpha1-internal-apiserver-k8s-io">StorageVersion [apiserverinternal/v1alpha1]</a></LI>
+  <LI><a href="#subjectaccessreview-v1-authorization-k8s-io">SubjectAccessReview [authorization/v1]</a></LI>
+  <LI><a href="#tokenrequest-v1-authentication-k8s-io">TokenRequest [authentication/v1]</a></LI>
+  <LI><a href="#tokenreview-v1-authentication-k8s-io">TokenReview [authentication/v1]</a></LI>
+  <LI><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration [admissionregistration/v1]</a></LI>
+  <LI><a href="#volumeattachment-v1-storage-k8s-io">VolumeAttachment [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>annotations</CODE><BR /><I>object</I></TD><TD>Annotations is an unstructured key value map stored with a resource that may be set by external tools to store and retrieve arbitrary metadata. They are not queryable and should be preserved when modifying objects. More info: http://kubernetes.io/docs/user-guide/annotations</TD></TR>
+<TR><TD><CODE>clusterName</CODE><BR /><I>string</I></TD><TD>Deprecated: ClusterName is a legacy field that was always cleared by the system and never used; it will be removed completely in 1.25.  The name in the go struct is changed to help clients detect accidental use.</TD></TR>
+<TR><TD><CODE>creationTimestamp</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>CreationTimestamp is a timestamp representing the server time when this object was created. It is not guaranteed to be set in happens-before order across separate operations. Clients may not set this value. It is represented in RFC3339 form and is in UTC.  Populated by the system. Read-only. Null for lists. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>deletionGracePeriodSeconds</CODE><BR /><I>integer</I></TD><TD>Number of seconds allowed for this object to gracefully terminate before it will be removed from the system. Only set when deletionTimestamp is also set. May only be shortened. Read-only.</TD></TR>
+<TR><TD><CODE>deletionTimestamp</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>DeletionTimestamp is RFC 3339 date and time at which this resource will be deleted. This field is set by the server when a graceful deletion is requested by the user, and is not directly settable by a client. The resource is expected to be deleted (no longer visible from resource lists, and not reachable by name) after the time in this field, once the finalizers list is empty. As long as the finalizers list contains items, deletion is blocked. Once the deletionTimestamp is set, this value may not be unset or be set further into the future, although it may be shortened or the resource may be deleted prior to this time. For example, a user may request that a pod is deleted in 30 seconds. The Kubelet will react by sending a graceful termination signal to the containers in the pod. After that 30 seconds, the Kubelet will send a hard termination signal (SIGKILL) to the container and after cleanup, remove the pod from the API. In the presence of network partitions, this object may still exist after this timestamp, until an administrator or automated process can determine the resource is fully terminated. If not set, graceful deletion of the object has not been requested.  Populated by the system when a graceful deletion is requested. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>finalizers</CODE><BR /><I>string array</I><BR /><B>patch strategy</B>: <I>merge</I></TD><TD>Must be empty before the object is deleted from the registry. Each entry is an identifier for the responsible component that will remove the entry from the list. If the deletionTimestamp of the object is non-nil, entries in this list can only be removed. Finalizers may be processed and removed in any order.  Order is NOT enforced because it introduces significant risk of stuck finalizers. finalizers is a shared field, any actor with permission can reorder it. If the finalizer list is processed in order, then this can lead to a situation in which the component responsible for the first finalizer in the list is waiting for a signal (field value, external system, or other) produced by a component responsible for a finalizer later in the list, resulting in a deadlock. Without enforced ordering finalizers are free to order amongst themselves and are not vulnerable to ordering changes in the list.</TD></TR>
+<TR><TD><CODE>generateName</CODE><BR /><I>string</I></TD><TD>GenerateName is an optional prefix, used by the server, to generate a unique name ONLY IF the Name field has not been provided. If this field is used, the name returned to the client will be different than the name passed. This value will also be combined with a unique suffix. The provided value has the same validation rules as the Name field, and may be truncated by the length of the suffix required to make the value unique on the server.  If this field is specified and the generated name exists, the server will return a 409.  Applied only if Name is not specified. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#idempotency</TD></TR>
+<TR><TD><CODE>generation</CODE><BR /><I>integer</I></TD><TD>A sequence number representing a specific generation of the desired state. Populated by the system. Read-only.</TD></TR>
+<TR><TD><CODE>labels</CODE><BR /><I>object</I></TD><TD>Map of string keys and values that can be used to organize and categorize (scope and select) objects. May match selectors of replication controllers and services. More info: http://kubernetes.io/docs/user-guide/labels</TD></TR>
+<TR><TD><CODE>managedFields</CODE><BR /><I><a href="#managedfieldsentry-v1-meta">ManagedFieldsEntry</a> array</I></TD><TD>ManagedFields maps workflow-id and version to the set of fields that are managed by that workflow. This is mostly for internal housekeeping, and users typically shouldn&#39;t need to set or understand this field. A workflow can be the user&#39;s name, a controller&#39;s name, or the name of a specific apply path like &#34;ci-cd&#34;. The set of fields is always in the version that the workflow used when modifying the object.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name must be unique within a namespace. Is required when creating resources, although some resources may allow a client to request the generation of an appropriate name automatically. Name is primarily intended for creation idempotence and configuration definition. Cannot be updated. More info: http://kubernetes.io/docs/user-guide/identifiers#names</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>Namespace defines the space within which each name must be unique. An empty namespace is equivalent to the &#34;default&#34; namespace, but &#34;default&#34; is the canonical representation. Not all objects are required to be scoped to a namespace - the value of this field for those objects will be empty.  Must be a DNS_LABEL. Cannot be updated. More info: http://kubernetes.io/docs/user-guide/namespaces</TD></TR>
+<TR><TD><CODE>ownerReferences</CODE><BR /><I><a href="#ownerreference-v1-meta">OwnerReference</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>uid</I></TD><TD>List of objects depended by this object. If ALL objects in the list have been deleted, this object will be garbage collected. If this object is managed by a controller, then an entry in this list will point to this controller, with the controller field set to true. There cannot be more than one managing controller.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE><BR /><I>string</I></TD><TD>An opaque value that represents the internal version of this object that can be used by clients to determine when objects have changed. May be used for optimistic concurrency, change detection, and the watch operation on a resource or set of resources. Clients must treat these values as opaque and passed unmodified back to the server. They may only be valid for a particular resource or set of resources.  Populated by the system. Read-only. Value must be treated as opaque by clients and . More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency</TD></TR>
+<TR><TD><CODE>selfLink</CODE><BR /><I>string</I></TD><TD>Deprecated: selfLink is a legacy read-only field that is no longer populated by the system.</TD></TR>
+<TR><TD><CODE>uid</CODE><BR /><I>string</I></TD><TD>UID is the unique in time and space value for this object. It is typically generated by the server on successful creation of a resource and is not allowed to change on PUT operations.  Populated by the system. Read-only. More info: http://kubernetes.io/docs/user-guide/identifiers#uids</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="objectmetricsource-v2-autoscaling">ObjectMetricSource v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>ObjectMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ObjectMetricSource indicates how to scale on a metric describing a kubernetes object (for example, hits-per-second on an Ingress object).</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#objectmetricsource-v2beta2-autoscaling">v2beta2</a>
+<a href="#objectmetricsource-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2-autoscaling">MetricSpec [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>describedObject</CODE><BR /><I><a href="#crossversionobjectreference-v2-autoscaling">CrossVersionObjectReference</a></I></TD><TD>describedObject specifies the descriptions of a object,such as kind,name apiVersion</TD></TR>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#metrictarget-v2-autoscaling">MetricTarget</a></I></TD><TD>target specifies the target value for the given metric</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="objectmetricstatus-v2-autoscaling">ObjectMetricStatus v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>ObjectMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ObjectMetricStatus indicates the current value of a metric describing a kubernetes object (for example, hits-per-second on an Ingress object).</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#objectmetricstatus-v2beta2-autoscaling">v2beta2</a>
+<a href="#objectmetricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2-autoscaling">MetricStatus [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>current</CODE><BR /><I><a href="#metricvaluestatus-v2-autoscaling">MetricValueStatus</a></I></TD><TD>current contains the current value for the given metric</TD></TR>
+<TR><TD><CODE>describedObject</CODE><BR /><I><a href="#crossversionobjectreference-v2-autoscaling">CrossVersionObjectReference</a></I></TD><TD>DescribedObject specifies the descriptions of a object,such as kind,name apiVersion</TD></TR>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="objectreference-v1-core">ObjectReference v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ObjectReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ObjectReference contains enough information to let you inspect or modify the referred object.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#binding-v1-core">Binding [core/v1]</a></LI>
+  <LI><a href="#cronjobstatus-v1-batch">CronJobStatus [batch/v1]</a></LI>
+  <LI><a href="#cronjobstatus-v1beta1-batch">CronJobStatus [batch/v1beta1]</a></LI>
+  <LI><a href="#endpoint-v1-discovery-k8s-io">Endpoint [discovery/v1]</a></LI>
+  <LI><a href="#endpoint-v1beta1-discovery-k8s-io">Endpoint [discovery/v1beta1]</a></LI>
+  <LI><a href="#endpointaddress-v1-core">EndpointAddress [core/v1]</a></LI>
+  <LI><a href="#event-v1-core">Event [core/v1]</a></LI>
+  <LI><a href="#event-v1-events-k8s-io">Event [events/v1]</a></LI>
+  <LI><a href="#event-v1beta1-events-k8s-io">Event [events/v1beta1]</a></LI>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#serviceaccount-v1-core">ServiceAccount [core/v1]</a></LI>
+  <LI><a href="#storageospersistentvolumesource-v1-core">StorageOSPersistentVolumeSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>API version of the referent.</TD></TR>
+<TR><TD><CODE>fieldPath</CODE><BR /><I>string</I></TD><TD>If referring to a piece of an object instead of an entire object, this string should contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2]. For example, if the object reference is to a container within a pod, this would take on a value like: &#34;spec.containers{name}&#34; (where &#34;name&#34; refers to the name of the container that triggered the event) or if no container name is specified &#34;spec.containers[2]&#34; (container with index 2 in this pod). This syntax is chosen only to have some well-defined way of referencing a part of an object.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE><BR /><I>string</I></TD><TD>Specific resourceVersion to which this reference is made, if any. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency</TD></TR>
+<TR><TD><CODE>uid</CODE><BR /><I>string</I></TD><TD>UID of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="overhead-v1-node-k8s-io">Overhead v1 node.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>node.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Overhead</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Overhead structure represents the resource overhead associated with running a pod.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#overhead-v1beta1-node-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass [node/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>podFixed</CODE><BR /><I>object</I></TD><TD>PodFixed represents the fixed resource overhead associated with running a pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="ownerreference-v1-meta">OwnerReference v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>OwnerReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>OwnerReference contains enough information to let you identify an owning object. An owning object must be in the same namespace as the dependent, or be cluster-scoped, so there is no namespace field.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#objectmeta-v1-meta">ObjectMeta [meta/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>API version of the referent.</TD></TR>
+<TR><TD><CODE>blockOwnerDeletion</CODE><BR /><I>boolean</I></TD><TD>If true, AND if the owner has the &#34;foregroundDeletion&#34; finalizer, then the owner cannot be deleted from the key-value store until this reference is removed. See https://kubernetes.io/docs/concepts/architecture/garbage-collection/#foreground-deletion for how the garbage collector interacts with this field and enforces the foreground deletion. Defaults to false. To set this field, a user needs &#34;delete&#34; permission of the owner, otherwise 422 (Unprocessable Entity) will be returned.</TD></TR>
+<TR><TD><CODE>controller</CODE><BR /><I>boolean</I></TD><TD>If true, this reference points to the managing controller.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent. More info: http://kubernetes.io/docs/user-guide/identifiers#names</TD></TR>
+<TR><TD><CODE>uid</CODE><BR /><I>string</I></TD><TD>UID of the referent. More info: http://kubernetes.io/docs/user-guide/identifiers#uids</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-v1-meta">Patch v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Patch</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Patch is provided to give a concrete name and type to the Kubernetes PATCH request body.</P>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+</TBODY>
+</TABLE>
+<H2 id="persistentvolumeclaimcondition-v1-core">PersistentVolumeClaimCondition v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PersistentVolumeClaimCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PersistentVolumeClaimCondition contails details about state of pvc</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumeclaimstatus-v1-core">PersistentVolumeClaimStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastProbeTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>lastProbeTime is the time we probed the condition.</TD></TR>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>lastTransitionTime is the time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>message is the human-readable message indicating details about last transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>reason is a unique, this should be a short, machine understandable string that gives the reason for condition&#39;s last transition. If it reports &#34;ResizeStarted&#34; that means the underlying persistent volume is being resized.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD></TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="persistentvolumeclaimtemplate-v1-core">PersistentVolumeClaimTemplate v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PersistentVolumeClaimTemplate</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PersistentVolumeClaimTemplate is used to produce PersistentVolumeClaim objects as part of an EphemeralVolumeSource.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ephemeralvolumesource-v1-core">EphemeralVolumeSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>May contain labels and annotations that will be copied into the PVC when creating it. No other fields are allowed and will be rejected during validation.</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#persistentvolumeclaimspec-v1-core">PersistentVolumeClaimSpec</a></I></TD><TD>The specification for the PersistentVolumeClaim. The entire content is copied unchanged into the PVC that gets created from this template. The same fields as in a PersistentVolumeClaim are also valid here.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="persistentvolumeclaimvolumesource-v1-core">PersistentVolumeClaimVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PersistentVolumeClaimVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PersistentVolumeClaimVolumeSource references the user&#39;s PVC in the same namespace. This volume finds the bound PV and mounts that volume for the pod. A PersistentVolumeClaimVolumeSource is, essentially, a wrapper around another type of volume that is owned by someone else (the system).</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>claimName</CODE><BR /><I>string</I></TD><TD>claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly Will force the ReadOnly setting in VolumeMounts. Default false.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="photonpersistentdiskvolumesource-v1-core">PhotonPersistentDiskVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PhotonPersistentDiskVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Photon Controller persistent disk resource.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified.</TD></TR>
+<TR><TD><CODE>pdID</CODE><BR /><I>string</I></TD><TD>pdID is the ID that identifies Photon Controller persistent disk</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="podaffinity-v1-core">PodAffinity v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodAffinity</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Pod affinity is a group of inter pod affinity scheduling rules.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#affinity-v1-core">Affinity [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>preferredDuringSchedulingIgnoredDuringExecution</CODE><BR /><I><a href="#weightedpodaffinityterm-v1-core">WeightedPodAffinityTerm</a> array</I></TD><TD>The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding &#34;weight&#34; to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.</TD></TR>
+<TR><TD><CODE>requiredDuringSchedulingIgnoredDuringExecution</CODE><BR /><I><a href="#podaffinityterm-v1-core">PodAffinityTerm</a> array</I></TD><TD>If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="podaffinityterm-v1-core">PodAffinityTerm v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodAffinityTerm</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key &lt;topologyKey&gt; matches that of any node on which a pod of the set of pods is running</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podaffinity-v1-core">PodAffinity [core/v1]</a></LI>
+  <LI><a href="#podantiaffinity-v1-core">PodAntiAffinity [core/v1]</a></LI>
+  <LI><a href="#weightedpodaffinityterm-v1-core">WeightedPodAffinityTerm [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>labelSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>A label query over a set of resources, in this case pods.</TD></TR>
+<TR><TD><CODE>namespaceSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means &#34;this pod&#39;s namespace&#34;. An empty selector ({}) matches all namespaces.</TD></TR>
+<TR><TD><CODE>namespaces</CODE><BR /><I>string array</I></TD><TD>namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means &#34;this pod&#39;s namespace&#34;.</TD></TR>
+<TR><TD><CODE>topologyKey</CODE><BR /><I>string</I></TD><TD>This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="podantiaffinity-v1-core">PodAntiAffinity v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodAntiAffinity</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Pod anti affinity is a group of inter pod anti affinity scheduling rules.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#affinity-v1-core">Affinity [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>preferredDuringSchedulingIgnoredDuringExecution</CODE><BR /><I><a href="#weightedpodaffinityterm-v1-core">WeightedPodAffinityTerm</a> array</I></TD><TD>The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding &#34;weight&#34; to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.</TD></TR>
+<TR><TD><CODE>requiredDuringSchedulingIgnoredDuringExecution</CODE><BR /><I><a href="#podaffinityterm-v1-core">PodAffinityTerm</a> array</I></TD><TD>If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="podcondition-v1-core">PodCondition v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PodCondition contains details for the current condition of this pod.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podstatus-v1-core">PodStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastProbeTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time we probed the condition.</TD></TR>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>Human-readable message indicating details about last transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>Unique, one-word, CamelCase reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status is the status of the condition. Can be True, False, Unknown. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-conditions</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type is the type of the condition. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-conditions</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="poddnsconfig-v1-core">PodDNSConfig v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodDNSConfig</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PodDNSConfig defines the DNS parameters of a pod in addition to those generated from DNSPolicy.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nameservers</CODE><BR /><I>string array</I></TD><TD>A list of DNS name server IP addresses. This will be appended to the base nameservers generated from DNSPolicy. Duplicated nameservers will be removed.</TD></TR>
+<TR><TD><CODE>options</CODE><BR /><I><a href="#poddnsconfigoption-v1-core">PodDNSConfigOption</a> array</I></TD><TD>A list of DNS resolver options. This will be merged with the base options generated from DNSPolicy. Duplicated entries will be removed. Resolution options given in Options will override those that appear in the base DNSPolicy.</TD></TR>
+<TR><TD><CODE>searches</CODE><BR /><I>string array</I></TD><TD>A list of DNS search domains for host-name lookup. This will be appended to the base search paths generated from DNSPolicy. Duplicated search paths will be removed.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="poddnsconfigoption-v1-core">PodDNSConfigOption v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodDNSConfigOption</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PodDNSConfigOption defines DNS resolver options of a pod.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#poddnsconfig-v1-core">PodDNSConfig [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Required.</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I>string</I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="podip-v1-core">PodIP v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodIP</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>IP address information for entries in the (plural) PodIPs field. Each entry includes:
+   IP: An IP address allocated to the pod. Routable at least within the cluster.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podstatus-v1-core">PodStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ip</CODE><BR /><I>string</I></TD><TD>ip is an IP address (IPv4 or IPv6) assigned to the pod</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="podos-v1-core">PodOS v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodOS</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PodOS defines the OS parameters of a pod.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the name of the operating system. The currently supported values are linux and windows. Additional value may be defined in future and can be one of: https://github.com/opencontainers/runtime-spec/blob/master/config.md#platform-specific-configuration Clients should expect to handle additional values and treat unrecognized values in this field as os: null</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="podreadinessgate-v1-core">PodReadinessGate v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodReadinessGate</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PodReadinessGate contains the reference to a pod condition</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditionType</CODE><BR /><I>string</I></TD><TD>ConditionType refers to a condition in the pod&#39;s condition list with matching type.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="podsecuritycontext-v1-core">PodSecurityContext v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PodSecurityContext</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PodSecurityContext holds pod-level security attributes and common container settings. Some fields are also present in container.securityContext.  Field values of container.securityContext take precedence over field values of PodSecurityContext.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsGroup</CODE><BR /><I>integer</I></TD><TD>A special supplemental group that applies to all containers in a pod. Some volume types allow the Kubelet to change the ownership of that volume to be owned by the pod:  1. The owning GID will be the FSGroup 2. The setgid bit is set (new files created in the volume will be owned by FSGroup) 3. The permission bits are OR&#39;d with rw-rw----  If unset, the Kubelet will not modify the ownership and permissions of any volume. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>fsGroupChangePolicy</CODE><BR /><I>string</I></TD><TD>fsGroupChangePolicy defines behavior of changing ownership and permission of the volume before being exposed inside Pod. This field will only apply to volume types which support fsGroup based ownership(and permissions). It will have no effect on ephemeral volume types such as: secret, configmaps and emptydir. Valid values are &#34;OnRootMismatch&#34; and &#34;Always&#34;. If not specified, &#34;Always&#34; is used. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>runAsGroup</CODE><BR /><I>integer</I></TD><TD>The GID to run the entrypoint of the container process. Uses runtime default if unset. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>runAsNonRoot</CODE><BR /><I>boolean</I></TD><TD>Indicates that the container must run as a non-root user. If true, the Kubelet will validate the image at runtime to ensure that it does not run as UID 0 (root) and fail to start the container if it does. If unset or false, no such validation will be performed. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.</TD></TR>
+<TR><TD><CODE>runAsUser</CODE><BR /><I>integer</I></TD><TD>The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>seLinuxOptions</CODE><BR /><I><a href="#selinuxoptions-v1-core">SELinuxOptions</a></I></TD><TD>The SELinux context to be applied to all containers. If unspecified, the container runtime will allocate a random SELinux context for each container.  May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>seccompProfile</CODE><BR /><I><a href="#seccompprofile-v1-core">SeccompProfile</a></I></TD><TD>The seccomp options to use by the containers in this pod. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>supplementalGroups</CODE><BR /><I>integer array</I></TD><TD>A list of groups applied to the first process run in each container, in addition to the container&#39;s primary GID.  If unspecified, no groups will be added to any container. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>sysctls</CODE><BR /><I><a href="#sysctl-v1-core">Sysctl</a> array</I></TD><TD>Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported sysctls (by the container runtime) might fail to launch. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>windowsOptions</CODE><BR /><I><a href="#windowssecuritycontextoptions-v1-core">WindowsSecurityContextOptions</a></I></TD><TD>The Windows specific settings applied to all containers. If unspecified, the options within a container&#39;s SecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is linux.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="podsmetricsource-v2-autoscaling">PodsMetricSource v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>PodsMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PodsMetricSource indicates how to scale on a metric describing each pod in the current scale target (for example, transactions-processed-per-second). The values will be averaged together before being compared to the target value.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#podsmetricsource-v2beta2-autoscaling">v2beta2</a>
+<a href="#podsmetricsource-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2-autoscaling">MetricSpec [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#metrictarget-v2-autoscaling">MetricTarget</a></I></TD><TD>target specifies the target value for the given metric</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="podsmetricstatus-v2-autoscaling">PodsMetricStatus v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>PodsMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PodsMetricStatus indicates the current value of a metric describing each pod in the current scale target (for example, transactions-processed-per-second).</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#podsmetricstatus-v2beta2-autoscaling">v2beta2</a>
+<a href="#podsmetricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2-autoscaling">MetricStatus [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>current</CODE><BR /><I><a href="#metricvaluestatus-v2-autoscaling">MetricValueStatus</a></I></TD><TD>current contains the current value for the given metric</TD></TR>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="policyrule-v1-rbac-authorization-k8s-io">PolicyRule v1 rbac.authorization.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rbac.authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PolicyRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PolicyRule holds information that describes a policy rule, but does not contain information about who the rule applies to or which namespace the rule applies to.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#clusterrole-v1-rbac-authorization-k8s-io">ClusterRole [rbac/v1]</a></LI>
+  <LI><a href="#role-v1-rbac-authorization-k8s-io">Role [rbac/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiGroups</CODE><BR /><I>string array</I></TD><TD>APIGroups is the name of the APIGroup that contains the resources.  If multiple API groups are specified, any action requested against one of the enumerated resources in any API group will be allowed.</TD></TR>
+<TR><TD><CODE>nonResourceURLs</CODE><BR /><I>string array</I></TD><TD>NonResourceURLs is a set of partial urls that a user should have access to.  *s are allowed, but only as the full, final step in the path Since non-resource URLs are not namespaced, this field is only applicable for ClusterRoles referenced from a ClusterRoleBinding. Rules can either apply to API resources (such as &#34;pods&#34; or &#34;secrets&#34;) or non-resource URL paths (such as &#34;/api&#34;),  but not both.</TD></TR>
+<TR><TD><CODE>resourceNames</CODE><BR /><I>string array</I></TD><TD>ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.</TD></TR>
+<TR><TD><CODE>resources</CODE><BR /><I>string array</I></TD><TD>Resources is a list of resources this rule applies to. &#39;\*&#39; represents all resources.</TD></TR>
+<TR><TD><CODE>verbs</CODE><BR /><I>string array</I></TD><TD>Verbs is a list of Verbs that apply to ALL the ResourceKinds contained in this rule. &#39;\*&#39; represents all verbs.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="policyruleswithsubjects-v1beta2-flowcontrol-apiserver-k8s-io">PolicyRulesWithSubjects v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>PolicyRulesWithSubjects</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PolicyRulesWithSubjects prescribes a test that applies to a request to an apiserver. The test considers the subject making the request, the verb being requested, and the resource to be acted upon. This PolicyRulesWithSubjects matches a request if and only if both (a) at least one member of subjects matches the request and (b) at least one member of resourceRules or nonResourceRules matches the request.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#policyruleswithsubjects-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschemaspec-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaSpec [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nonResourceRules</CODE><BR /><I><a href="#nonresourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io">NonResourcePolicyRule</a> array</I></TD><TD>`nonResourceRules` is a list of NonResourcePolicyRules that identify matching requests according to their verb and the target non-resource URL.</TD></TR>
+<TR><TD><CODE>resourceRules</CODE><BR /><I><a href="#resourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io">ResourcePolicyRule</a> array</I></TD><TD>`resourceRules` is a slice of ResourcePolicyRules that identify matching requests according to their verb and the target resource. At least one of `resourceRules` and `nonResourceRules` has to be non-empty.</TD></TR>
+<TR><TD><CODE>subjects</CODE><BR /><I><a href="#subject-v1beta2-flowcontrol-apiserver-k8s-io">Subject</a> array</I></TD><TD>subjects is the list of normal user, serviceaccount, or group that this rule cares about. There must be at least one member in this slice. A slice that includes both the system:authenticated and system:unauthenticated user groups matches every request. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="portstatus-v1-core">PortStatus v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PortStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P></P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#loadbalanceringress-v1-core">LoadBalancerIngress [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>error</CODE><BR /><I>string</I></TD><TD>Error is to record the problem with the service port The format of the error shall comply with the following rules: - built-in error values shall be specified in this file and those shall use   CamelCase names - cloud provider specific error values must have names that comply with the   format foo.example.com/CamelCase.</TD></TR>
+<TR><TD><CODE>port</CODE><BR /><I>integer</I></TD><TD>Port is the port number of the service port of which status is recorded here</TD></TR>
+<TR><TD><CODE>protocol</CODE><BR /><I>string</I></TD><TD>Protocol is the protocol of the service port of which status is recorded here The supported values are: &#34;TCP&#34;, &#34;UDP&#34;, &#34;SCTP&#34;  </TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="portworxvolumesource-v1-core">PortworxVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PortworxVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PortworxVolumeSource represents a Portworx volume resource.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>fSType represents the filesystem type to mount Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified.</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.</TD></TR>
+<TR><TD><CODE>volumeID</CODE><BR /><I>string</I></TD><TD>volumeID uniquely identifies a Portworx volume</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="preconditions-v1-meta">Preconditions v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Preconditions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Preconditions must be fulfilled before an operation (update, delete, etc.) is carried out.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#deleteoptions-v1-meta">DeleteOptions [meta/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>resourceVersion</CODE><BR /><I>string</I></TD><TD>Specifies the target ResourceVersion</TD></TR>
+<TR><TD><CODE>uid</CODE><BR /><I>string</I></TD><TD>Specifies the target UID.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="preferredschedulingterm-v1-core">PreferredSchedulingTerm v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>PreferredSchedulingTerm</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it&#39;s a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodeaffinity-v1-core">NodeAffinity [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>preference</CODE><BR /><I><a href="#nodeselectorterm-v1-core">NodeSelectorTerm</a></I></TD><TD>A node selector term, associated with the corresponding weight.</TD></TR>
+<TR><TD><CODE>weight</CODE><BR /><I>integer</I></TD><TD>Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="prioritylevelconfigurationcondition-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationCondition v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>PriorityLevelConfigurationCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PriorityLevelConfigurationCondition defines the condition of priority level.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#prioritylevelconfigurationcondition-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#prioritylevelconfigurationstatus-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationStatus [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>`lastTransitionTime` is the last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>`message` is a human-readable message indicating details about last transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>`reason` is a unique, one-word, CamelCase reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>`status` is the status of the condition. Can be True, False, Unknown. Required.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>`type` is the type of the condition. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="prioritylevelconfigurationreference-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationReference v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>PriorityLevelConfigurationReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>PriorityLevelConfigurationReference contains information that points to the &#34;request-priority&#34; being used.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#prioritylevelconfigurationreference-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschemaspec-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaSpec [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>`name` is the name of the priority level configuration being referenced Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="probe-v1-core">Probe v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Probe</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Probe describes a health check to be performed against a container to determine whether it is alive or ready to receive traffic.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#container-v1-core">Container [core/v1]</a></LI>
+  <LI><a href="#ephemeralcontainer-v1-core">EphemeralContainer [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>exec</CODE><BR /><I><a href="#execaction-v1-core">ExecAction</a></I></TD><TD>Exec specifies the action to take.</TD></TR>
+<TR><TD><CODE>failureThreshold</CODE><BR /><I>integer</I></TD><TD>Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.</TD></TR>
+<TR><TD><CODE>grpc</CODE><BR /><I><a href="#grpcaction-v1-core">GRPCAction</a></I></TD><TD>GRPC specifies an action involving a GRPC port. This is a beta field and requires enabling GRPCContainerProbe feature gate.</TD></TR>
+<TR><TD><CODE>httpGet</CODE><BR /><I><a href="#httpgetaction-v1-core">HTTPGetAction</a></I></TD><TD>HTTPGet specifies the http request to perform.</TD></TR>
+<TR><TD><CODE>initialDelaySeconds</CODE><BR /><I>integer</I></TD><TD>Number of seconds after the container has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes</TD></TR>
+<TR><TD><CODE>periodSeconds</CODE><BR /><I>integer</I></TD><TD>How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.</TD></TR>
+<TR><TD><CODE>successThreshold</CODE><BR /><I>integer</I></TD><TD>Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness and startup. Minimum value is 1.</TD></TR>
+<TR><TD><CODE>tcpSocket</CODE><BR /><I><a href="#tcpsocketaction-v1-core">TCPSocketAction</a></I></TD><TD>TCPSocket specifies an action involving a TCP port.</TD></TR>
+<TR><TD><CODE>terminationGracePeriodSeconds</CODE><BR /><I>integer</I></TD><TD>Optional duration in seconds the pod needs to terminate gracefully upon probe failure. The grace period is the duration in seconds after the processes running in the pod are sent a termination signal and the time when the processes are forcibly halted with a kill signal. Set this value longer than the expected cleanup time for your process. If this value is nil, the pod&#39;s terminationGracePeriodSeconds will be used. Otherwise, this value overrides the value provided by the pod spec. Value must be non-negative integer. The value zero indicates stop immediately via the kill signal (no opportunity to shut down). This is a beta field and requires enabling ProbeTerminationGracePeriod feature gate. Minimum value is 1. spec.terminationGracePeriodSeconds is used if unset.</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE><BR /><I>integer</I></TD><TD>Number of seconds after which the probe times out. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="projectedvolumesource-v1-core">ProjectedVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ProjectedVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a projected volume source</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>defaultMode</CODE><BR /><I>integer</I></TD><TD>defaultMode are the mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.</TD></TR>
+<TR><TD><CODE>sources</CODE><BR /><I><a href="#volumeprojection-v1-core">VolumeProjection</a> array</I></TD><TD>sources is the list of volume projections</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="quantity-resource-core">Quantity resource core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>resource</CODE></TD><TD><CODE>Quantity</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Quantity is a fixed-point representation of a number. It provides convenient marshaling/unmarshaling in JSON and YAML, in addition to String() and AsInt64() accessors.
+
+The serialization format is:
+
+&lt;quantity&gt;        ::= &lt;signedNumber&gt;&lt;suffix&gt;
+  (Note that &lt;suffix&gt; may be empty, from the &#34;&#34; case in &lt;decimalSI&gt;.)
+&lt;digit&gt;           ::= 0 | 1 | ... | 9 &lt;digits&gt;          ::= &lt;digit&gt; | &lt;digit&gt;&lt;digits&gt; &lt;number&gt;          ::= &lt;digits&gt; | &lt;digits&gt;.&lt;digits&gt; | &lt;digits&gt;. | .&lt;digits&gt; &lt;sign&gt;            ::= &#34;+&#34; | &#34;-&#34; &lt;signedNumber&gt;    ::= &lt;number&gt; | &lt;sign&gt;&lt;number&gt; &lt;suffix&gt;          ::= &lt;binarySI&gt; | &lt;decimalExponent&gt; | &lt;decimalSI&gt; &lt;binarySI&gt;        ::= Ki | Mi | Gi | Ti | Pi | Ei
+  (International System of units; See: http://physics.nist.gov/cuu/Units/binary.html)
+&lt;decimalSI&gt;       ::= m | &#34;&#34; | k | M | G | T | P | E
+  (Note that 1024 = 1Ki but 1000 = 1k; I didn&#39;t choose the capitalization.)
+&lt;decimalExponent&gt; ::= &#34;e&#34; &lt;signedNumber&gt; | &#34;E&#34; &lt;signedNumber&gt;
+
+No matter which of the three exponent forms is used, no quantity may represent a number greater than 2^63-1 in magnitude, nor may it have more than 3 decimal places. Numbers larger or more precise will be capped or rounded up. (E.g.: 0.1m will rounded up to 1m.) This may be extended in the future if we require larger or smaller quantities.
+
+When a Quantity is parsed from a string, it will remember the type of suffix it had, and will use the same type again when it is serialized.
+
+Before serializing, Quantity will be put in &#34;canonical form&#34;. This means that Exponent/suffix will be adjusted up or down (with a corresponding increase or decrease in Mantissa) such that:
+  a. No precision is lost
+  b. No fractional digits will be emitted
+  c. The exponent (or suffix) is as large as possible.
+The sign will be omitted unless the number is negative.
+
+Examples:
+  1.5 will be serialized as &#34;1500m&#34;
+  1.5Gi will be serialized as &#34;1536Mi&#34;
+
+Note that the quantity will NEVER be internally represented by a floating point number. That is the whole point of this exercise.
+
+Non-canonical values will still parse as long as they are well formed, but will be re-emitted in their canonical form. (So always use canonical form, or don&#39;t diff.)
+
+This format is intended to make it difficult to use these numbers without writing some sort of special handling code in the hopes that that will cause implementors to also use a fixed point implementation.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csistoragecapacity-v1-storage-k8s-io">CSIStorageCapacity [storage/v1]</a></LI>
+  <LI><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity [storage/v1beta1]</a></LI>
+  <LI><a href="#containerresourcemetricsource-v2beta1-autoscaling">ContainerResourceMetricSource [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#containerresourcemetricstatus-v2beta1-autoscaling">ContainerResourceMetricStatus [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#emptydirvolumesource-v1-core">EmptyDirVolumeSource [core/v1]</a></LI>
+  <LI><a href="#externalmetricsource-v2beta1-autoscaling">ExternalMetricSource [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#externalmetricstatus-v2beta1-autoscaling">ExternalMetricStatus [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#metrictarget-v2-autoscaling">MetricTarget [autoscaling/v2]</a></LI>
+  <LI><a href="#metrictarget-v2beta2-autoscaling">MetricTarget [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#metricvaluestatus-v2-autoscaling">MetricValueStatus [autoscaling/v2]</a></LI>
+  <LI><a href="#metricvaluestatus-v2beta2-autoscaling">MetricValueStatus [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#objectmetricsource-v2beta1-autoscaling">ObjectMetricSource [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#objectmetricstatus-v2beta1-autoscaling">ObjectMetricStatus [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#podsmetricsource-v2beta1-autoscaling">PodsMetricSource [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#podsmetricstatus-v2beta1-autoscaling">PodsMetricStatus [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#resourcefieldselector-v1-core">ResourceFieldSelector [core/v1]</a></LI>
+  <LI><a href="#resourcemetricsource-v2beta1-autoscaling">ResourceMetricSource [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#resourcemetricstatus-v2beta1-autoscaling">ResourceMetricStatus [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+</TBODY>
+</TABLE>
+<H2 id="queuingconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">QueuingConfiguration v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>QueuingConfiguration</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>QueuingConfiguration holds the configuration parameters for queuing</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#queuingconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#limitresponse-v1beta2-flowcontrol-apiserver-k8s-io">LimitResponse [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>handSize</CODE><BR /><I>integer</I></TD><TD>`handSize` is a small positive number that configures the shuffle sharding of requests into queues.  When enqueuing a request at this priority level the request&#39;s flow identifier (a string pair) is hashed and the hash value is used to shuffle the list of queues and deal a hand of the size specified here.  The request is put into one of the shortest queues in that hand. `handSize` must be no larger than `queues`, and should be significantly smaller (so that a few heavy flows do not saturate most of the queues).  See the user-facing documentation for more extensive guidance on setting this field.  This field has a default value of 8.</TD></TR>
+<TR><TD><CODE>queueLengthLimit</CODE><BR /><I>integer</I></TD><TD>`queueLengthLimit` is the maximum number of requests allowed to be waiting in a given queue of this priority level at a time; excess requests are rejected.  This value must be positive.  If not specified, it will be defaulted to 50.</TD></TR>
+<TR><TD><CODE>queues</CODE><BR /><I>integer</I></TD><TD>`queues` is the number of queues for this priority level. The queues exist independently at each apiserver. The value must be positive.  Setting it to 1 effectively precludes shufflesharding and thus makes the distinguisher method of associated flow schemas irrelevant.  This field has a default value of 64.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="quobytevolumesource-v1-core">QuobyteVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>QuobyteVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Quobyte mount that lasts the lifetime of a pod. Quobyte volumes do not support ownership management or SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>group</CODE><BR /><I>string</I></TD><TD>group to map volume access to Default is no group</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly here will force the Quobyte volume to be mounted with read-only permissions. Defaults to false.</TD></TR>
+<TR><TD><CODE>registry</CODE><BR /><I>string</I></TD><TD>registry represents a single or multiple Quobyte Registry services specified as a string as host:port pair (multiple entries are separated with commas) which acts as the central registry for volumes</TD></TR>
+<TR><TD><CODE>tenant</CODE><BR /><I>string</I></TD><TD>tenant owning the given Quobyte volume in the Backend Used with dynamically provisioned Quobyte volumes, value is set by the plugin</TD></TR>
+<TR><TD><CODE>user</CODE><BR /><I>string</I></TD><TD>user to map volume access to Defaults to serivceaccount user</TD></TR>
+<TR><TD><CODE>volume</CODE><BR /><I>string</I></TD><TD>volume is a string that references an already created Quobyte volume by name.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="rbdpersistentvolumesource-v1-core">RBDPersistentVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>RBDPersistentVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Rados Block Device mount that lasts the lifetime of a pod. RBD volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd</TD></TR>
+<TR><TD><CODE>image</CODE><BR /><I>string</I></TD><TD>image is the rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>keyring</CODE><BR /><I>string</I></TD><TD>keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>monitors</CODE><BR /><I>string array</I></TD><TD>monitors is a collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>pool</CODE><BR /><I>string</I></TD><TD>pool is the rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#secretreference-v1-core">SecretReference</a></I></TD><TD>secretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>user</CODE><BR /><I>string</I></TD><TD>user is the rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="rbdvolumesource-v1-core">RBDVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>RBDVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a Rados Block Device mount that lasts the lifetime of a pod. RBD volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd</TD></TR>
+<TR><TD><CODE>image</CODE><BR /><I>string</I></TD><TD>image is the rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>keyring</CODE><BR /><I>string</I></TD><TD>keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>monitors</CODE><BR /><I>string array</I></TD><TD>monitors is a collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>pool</CODE><BR /><I>string</I></TD><TD>pool is the rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#localobjectreference-v1-core">LocalObjectReference</a></I></TD><TD>secretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+<TR><TD><CODE>user</CODE><BR /><I>string</I></TD><TD>user is the rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replicasetcondition-v1-apps">ReplicaSetCondition v1 apps</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ReplicaSetCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ReplicaSetCondition describes the state of a replica set at a certain point.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#replicasetstatus-v1-apps">ReplicaSetStatus [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>The last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>A human readable message indicating details about the transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>The reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status of the condition, one of True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of replica set condition.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replicationcontrollercondition-v1-core">ReplicationControllerCondition v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ReplicationControllerCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ReplicationControllerCondition describes the state of a replication controller at a certain point.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#replicationcontrollerstatus-v1-core">ReplicationControllerStatus [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>The last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>A human readable message indicating details about the transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>The reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status of the condition, one of True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of replication controller condition.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="resourceattributes-v1-authorization-k8s-io">ResourceAttributes v1 authorization.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ResourceAttributes</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ResourceAttributes includes the authorization attributes available for resource requests to the Authorizer interface</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#selfsubjectaccessreviewspec-v1-authorization-k8s-io">SelfSubjectAccessReviewSpec [authorization/v1]</a></LI>
+  <LI><a href="#subjectaccessreviewspec-v1-authorization-k8s-io">SubjectAccessReviewSpec [authorization/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>group</CODE><BR /><I>string</I></TD><TD>Group is the API Group of the Resource.  &#34;*&#34; means all.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the name of the resource being requested for a &#34;get&#34; or deleted for a &#34;delete&#34;. &#34;&#34; (empty) means all.</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>Namespace is the namespace of the action being requested.  Currently, there is no distinction between no namespace and all namespaces &#34;&#34; (empty) is defaulted for LocalSubjectAccessReviews &#34;&#34; (empty) is empty for cluster-scoped resources &#34;&#34; (empty) means &#34;all&#34; for namespace scoped resources from a SubjectAccessReview or SelfSubjectAccessReview</TD></TR>
+<TR><TD><CODE>resource</CODE><BR /><I>string</I></TD><TD>Resource is one of the existing resource types.  &#34;*&#34; means all.</TD></TR>
+<TR><TD><CODE>subresource</CODE><BR /><I>string</I></TD><TD>Subresource is one of the existing resource types.  &#34;&#34; means none.</TD></TR>
+<TR><TD><CODE>verb</CODE><BR /><I>string</I></TD><TD>Verb is a kubernetes resource API verb, like: get, list, watch, create, update, delete, proxy.  &#34;*&#34; means all.</TD></TR>
+<TR><TD><CODE>version</CODE><BR /><I>string</I></TD><TD>Version is the API Version of the Resource.  &#34;*&#34; means all.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="resourcefieldselector-v1-core">ResourceFieldSelector v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ResourceFieldSelector</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ResourceFieldSelector represents container resources (cpu, memory) and their output format</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#downwardapivolumefile-v1-core">DownwardAPIVolumeFile [core/v1]</a></LI>
+  <LI><a href="#envvarsource-v1-core">EnvVarSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>containerName</CODE><BR /><I>string</I></TD><TD>Container name: required for volumes, optional for env vars</TD></TR>
+<TR><TD><CODE>divisor</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>Specifies the output format of the exposed resources, defaults to &#34;1&#34;</TD></TR>
+<TR><TD><CODE>resource</CODE><BR /><I>string</I></TD><TD>Required: resource to select</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="resourcemetricsource-v2-autoscaling">ResourceMetricSource v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>ResourceMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ResourceMetricSource indicates how to scale on a resource metric known to Kubernetes, as specified in requests and limits, describing each pod in the current scale target (e.g. CPU or memory).  The values will be averaged together before being compared to the target.  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.  Only one &#34;target&#34; type should be set.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#resourcemetricsource-v2beta2-autoscaling">v2beta2</a>
+<a href="#resourcemetricsource-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2-autoscaling">MetricSpec [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the resource in question.</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#metrictarget-v2-autoscaling">MetricTarget</a></I></TD><TD>target specifies the target value for the given metric</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="resourcemetricstatus-v2-autoscaling">ResourceMetricStatus v2 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2</CODE></TD><TD><CODE>ResourceMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ResourceMetricStatus indicates the current value of a resource metric known to Kubernetes, as specified in requests and limits, describing each pod in the current scale target (e.g. CPU or memory).  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#resourcemetricstatus-v2beta2-autoscaling">v2beta2</a>
+<a href="#resourcemetricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2-autoscaling">MetricStatus [autoscaling/v2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>current</CODE><BR /><I><a href="#metricvaluestatus-v2-autoscaling">MetricValueStatus</a></I></TD><TD>current contains the current value for the given metric</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the name of the resource in question.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="resourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io">ResourcePolicyRule v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>ResourcePolicyRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ResourcePolicyRule is a predicate that matches some resource requests, testing the request&#39;s verb and the target resource. A ResourcePolicyRule matches a resource request if and only if: (a) at least one member of verbs matches the request, (b) at least one member of apiGroups matches the request, (c) at least one member of resources matches the request, and (d) either (d1) the request does not specify a namespace (i.e., `Namespace==&#34;&#34;`) and clusterScope is true or (d2) the request specifies a namespace and least one member of namespaces matches the request&#39;s namespace.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#resourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#policyruleswithsubjects-v1beta2-flowcontrol-apiserver-k8s-io">PolicyRulesWithSubjects [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiGroups</CODE><BR /><I>string array</I></TD><TD>`apiGroups` is a list of matching API groups and may not be empty. &#34;*&#34; matches all API groups and, if present, must be the only entry. Required.</TD></TR>
+<TR><TD><CODE>clusterScope</CODE><BR /><I>boolean</I></TD><TD>`clusterScope` indicates whether to match requests that do not specify a namespace (which happens either because the resource is not namespaced or the request targets all namespaces). If this field is omitted or false then the `namespaces` field must contain a non-empty list.</TD></TR>
+<TR><TD><CODE>namespaces</CODE><BR /><I>string array</I></TD><TD>`namespaces` is a list of target namespaces that restricts matches.  A request that specifies a target namespace matches only if either (a) this list contains that target namespace or (b) this list contains &#34;*&#34;.  Note that &#34;*&#34; matches any specified namespace but does not match a request that _does not specify_ a namespace (see the `clusterScope` field for that). This list may be empty, but only if `clusterScope` is true.</TD></TR>
+<TR><TD><CODE>resources</CODE><BR /><I>string array</I></TD><TD>`resources` is a list of matching resources (i.e., lowercase and plural) with, if desired, subresource.  For example, [ &#34;services&#34;, &#34;nodes/status&#34; ].  This list may not be empty. &#34;*&#34; matches all resources and, if present, must be the only entry. Required.</TD></TR>
+<TR><TD><CODE>verbs</CODE><BR /><I>string array</I></TD><TD>`verbs` is a list of matching verbs and may not be empty. &#34;*&#34; matches all verbs and, if present, must be the only entry. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="resourcerequirements-v1-core">ResourceRequirements v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ResourceRequirements</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ResourceRequirements describes the compute resource requirements.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#container-v1-core">Container [core/v1]</a></LI>
+  <LI><a href="#ephemeralcontainer-v1-core">EphemeralContainer [core/v1]</a></LI>
+  <LI><a href="#persistentvolumeclaimspec-v1-core">PersistentVolumeClaimSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>limits</CODE><BR /><I>object</I></TD><TD>Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/</TD></TR>
+<TR><TD><CODE>requests</CODE><BR /><I>object</I></TD><TD>Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="resourcerule-v1-authorization-k8s-io">ResourceRule v1 authorization.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ResourceRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ResourceRule is the list of actions the subject is allowed to perform on resources. The list ordering isn&#39;t significant, may contain duplicates, and possibly be incomplete.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#subjectrulesreviewstatus-v1-authorization-k8s-io">SubjectRulesReviewStatus [authorization/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiGroups</CODE><BR /><I>string array</I></TD><TD>APIGroups is the name of the APIGroup that contains the resources.  If multiple API groups are specified, any action requested against one of the enumerated resources in any API group will be allowed.  &#34;*&#34; means all.</TD></TR>
+<TR><TD><CODE>resourceNames</CODE><BR /><I>string array</I></TD><TD>ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.  &#34;*&#34; means all.</TD></TR>
+<TR><TD><CODE>resources</CODE><BR /><I>string array</I></TD><TD>Resources is a list of resources this rule applies to.  &#34;*&#34; means all in the specified apiGroups.  &#34;*/foo&#34; represents the subresource &#39;foo&#39; for all resources in the specified apiGroups.</TD></TR>
+<TR><TD><CODE>verbs</CODE><BR /><I>string array</I></TD><TD>Verb is a list of kubernetes resource API verbs, like: get, list, watch, create, update, delete, proxy.  &#34;*&#34; means all.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="roleref-v1-rbac-authorization-k8s-io">RoleRef v1 rbac.authorization.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rbac.authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>RoleRef</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>RoleRef contains information that points to the role being used</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding [rbac/v1]</a></LI>
+  <LI><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding [rbac/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiGroup</CODE><BR /><I>string</I></TD><TD>APIGroup is the group for the resource being referenced</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is the type of resource being referenced</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the name of resource being referenced</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="rollingupdatestatefulsetstrategy-v1-apps">RollingUpdateStatefulSetStrategy v1 apps</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>RollingUpdateStatefulSetStrategy</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>RollingUpdateStatefulSetStrategy is used to communicate parameter for RollingUpdateStatefulSetStrategyType.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#statefulsetupdatestrategy-v1-apps">StatefulSetUpdateStrategy [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>maxUnavailable</CODE></TD><TD>The maximum number of pods that can be unavailable during the update. Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). Absolute number is calculated from percentage by rounding up. This can not be 0. Defaults to 1. This field is alpha-level and is only honored by servers that enable the MaxUnavailableStatefulSet feature. The field applies to all pods in the range 0 to Replicas-1. That means if there is any unavailable pod in the range 0 to Replicas-1, it will be counted towards MaxUnavailable.</TD></TR>
+<TR><TD><CODE>partition</CODE><BR /><I>integer</I></TD><TD>Partition indicates the ordinal at which the StatefulSet should be partitioned for updates. During a rolling update, all pods from ordinal Replicas-1 to Partition are updated. All pods from ordinal Partition-1 to 0 remain untouched. This is helpful in being able to do a canary based deployment. The default value is 0.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="rulewithoperations-v1-admissionregistration-k8s-io">RuleWithOperations v1 admissionregistration.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>admissionregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>RuleWithOperations</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>RuleWithOperations is a tuple of Operations and Resources. It is recommended to make sure that all the tuple expansions are valid.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#mutatingwebhook-v1-admissionregistration-k8s-io">MutatingWebhook [admissionregistration/v1]</a></LI>
+  <LI><a href="#validatingwebhook-v1-admissionregistration-k8s-io">ValidatingWebhook [admissionregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiGroups</CODE><BR /><I>string array</I></TD><TD>APIGroups is the API groups the resources belong to. &#39;\*&#39; is all groups. If &#39;\*&#39; is present, the length of the slice must be one. Required.</TD></TR>
+<TR><TD><CODE>apiVersions</CODE><BR /><I>string array</I></TD><TD>APIVersions is the API versions the resources belong to. &#39;\*&#39; is all versions. If &#39;\*&#39; is present, the length of the slice must be one. Required.</TD></TR>
+<TR><TD><CODE>operations</CODE><BR /><I>string array</I></TD><TD>Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or * for all of those operations and any future admission operations that are added. If &#39;\*&#39; is present, the length of the slice must be one. Required.</TD></TR>
+<TR><TD><CODE>resources</CODE><BR /><I>string array</I></TD><TD>Resources is a list of resources this rule applies to.  For example: &#39;pods&#39; means pods. &#39;pods/log&#39; means the log subresource of pods. &#39;\*&#39; means all resources, but not subresources. &#39;pods/\*&#39; means all subresources of pods. &#39;\*/scale&#39; means all scale subresources. &#39;\*/\*&#39; means all resources and their subresources.  If wildcard is present, the validation rule will ensure resources do not overlap with each other.  Depending on the enclosing object, subresources might not be allowed. Required.</TD></TR>
+<TR><TD><CODE>scope</CODE><BR /><I>string</I></TD><TD>scope specifies the scope of this rule. Valid values are &#34;Cluster&#34;, &#34;Namespaced&#34;, and &#34;*&#34; &#34;Cluster&#34; means that only cluster-scoped resources will match this rule. Namespace API objects are cluster-scoped. &#34;Namespaced&#34; means that only namespaced resources will match this rule. &#34;*&#34; means that there are no scope restrictions. Subresources match the scope of their parent resource. Default is &#34;*&#34;.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="runasgroupstrategyoptions-v1beta1-policy">RunAsGroupStrategyOptions v1beta1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>RunAsGroupStrategyOptions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>RunAsGroupStrategyOptions defines the strategy type and any options used to create the strategy.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ranges</CODE><BR /><I><a href="#idrange-v1beta1-policy">IDRange</a> array</I></TD><TD>ranges are the allowed ranges of gids that may be used. If you would like to force a single gid then supply a single range with the same start and end. Required for MustRunAs.</TD></TR>
+<TR><TD><CODE>rule</CODE><BR /><I>string</I></TD><TD>rule is the strategy that will dictate the allowable RunAsGroup values that may be set.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="runasuserstrategyoptions-v1beta1-policy">RunAsUserStrategyOptions v1beta1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>RunAsUserStrategyOptions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>RunAsUserStrategyOptions defines the strategy type and any options used to create the strategy.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ranges</CODE><BR /><I><a href="#idrange-v1beta1-policy">IDRange</a> array</I></TD><TD>ranges are the allowed ranges of uids that may be used. If you would like to force a single uid then supply a single range with the same start and end. Required for MustRunAs.</TD></TR>
+<TR><TD><CODE>rule</CODE><BR /><I>string</I></TD><TD>rule is the strategy that will dictate the allowable RunAsUser values that may be set.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="runtimeclassstrategyoptions-v1beta1-policy">RuntimeClassStrategyOptions v1beta1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>RuntimeClassStrategyOptions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>RuntimeClassStrategyOptions define the strategy that will dictate the allowable RuntimeClasses for a pod.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowedRuntimeClassNames</CODE><BR /><I>string array</I></TD><TD>allowedRuntimeClassNames is an allowlist of RuntimeClass names that may be specified on a pod. A value of &#34;*&#34; means that any RuntimeClass name is allowed, and must be the only item in the list. An empty list requires the RuntimeClassName field to be unset.</TD></TR>
+<TR><TD><CODE>defaultRuntimeClassName</CODE><BR /><I>string</I></TD><TD>defaultRuntimeClassName is the default RuntimeClassName to set on the pod. The default MUST be allowed by the allowedRuntimeClassNames list. A value of nil does not mutate the Pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="selinuxoptions-v1-core">SELinuxOptions v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SELinuxOptions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>SELinuxOptions are the labels to be applied to the container</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritycontext-v1-core">PodSecurityContext [core/v1]</a></LI>
+  <LI><a href="#selinuxstrategyoptions-v1beta1-policy">SELinuxStrategyOptions [policy/v1beta1]</a></LI>
+  <LI><a href="#securitycontext-v1-core">SecurityContext [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>level</CODE><BR /><I>string</I></TD><TD>Level is SELinux level label that applies to the container.</TD></TR>
+<TR><TD><CODE>role</CODE><BR /><I>string</I></TD><TD>Role is a SELinux role label that applies to the container.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type is a SELinux type label that applies to the container.</TD></TR>
+<TR><TD><CODE>user</CODE><BR /><I>string</I></TD><TD>User is a SELinux user label that applies to the container.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="selinuxstrategyoptions-v1beta1-policy">SELinuxStrategyOptions v1beta1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>SELinuxStrategyOptions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>SELinuxStrategyOptions defines the strategy type and any options used to create the strategy.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rule</CODE><BR /><I>string</I></TD><TD>rule is the strategy that will dictate the allowable labels that may be set.</TD></TR>
+<TR><TD><CODE>seLinuxOptions</CODE><BR /><I><a href="#selinuxoptions-v1-core">SELinuxOptions</a></I></TD><TD>seLinuxOptions required to run as; required for MustRunAs More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="scale-v1-autoscaling">Scale v1 autoscaling</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Scale</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Scale represents a scaling request for a resource.</P>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object metadata; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata.</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#scalespec-v1-autoscaling">ScaleSpec</a></I></TD><TD>defines the behavior of the scale. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#scalestatus-v1-autoscaling">ScaleStatus</a></I></TD><TD>current status of the scale. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status. Read-only.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="scaleiopersistentvolumesource-v1-core">ScaleIOPersistentVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ScaleIOPersistentVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ScaleIOPersistentVolumeSource represents a persistent ScaleIO volume</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Default is &#34;xfs&#34;</TD></TR>
+<TR><TD><CODE>gateway</CODE><BR /><I>string</I></TD><TD>gateway is the host address of the ScaleIO API Gateway.</TD></TR>
+<TR><TD><CODE>protectionDomain</CODE><BR /><I>string</I></TD><TD>protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#secretreference-v1-core">SecretReference</a></I></TD><TD>secretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail.</TD></TR>
+<TR><TD><CODE>sslEnabled</CODE><BR /><I>boolean</I></TD><TD>sslEnabled is the flag to enable/disable SSL communication with Gateway, default false</TD></TR>
+<TR><TD><CODE>storageMode</CODE><BR /><I>string</I></TD><TD>storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.</TD></TR>
+<TR><TD><CODE>storagePool</CODE><BR /><I>string</I></TD><TD>storagePool is the ScaleIO Storage Pool associated with the protection domain.</TD></TR>
+<TR><TD><CODE>system</CODE><BR /><I>string</I></TD><TD>system is the name of the storage system as configured in ScaleIO.</TD></TR>
+<TR><TD><CODE>volumeName</CODE><BR /><I>string</I></TD><TD>volumeName is the name of a volume already created in the ScaleIO system that is associated with this volume source.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="scaleiovolumesource-v1-core">ScaleIOVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ScaleIOVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ScaleIOVolumeSource represents a persistent ScaleIO volume</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Default is &#34;xfs&#34;.</TD></TR>
+<TR><TD><CODE>gateway</CODE><BR /><I>string</I></TD><TD>gateway is the host address of the ScaleIO API Gateway.</TD></TR>
+<TR><TD><CODE>protectionDomain</CODE><BR /><I>string</I></TD><TD>protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#localobjectreference-v1-core">LocalObjectReference</a></I></TD><TD>secretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail.</TD></TR>
+<TR><TD><CODE>sslEnabled</CODE><BR /><I>boolean</I></TD><TD>sslEnabled Flag enable/disable SSL communication with Gateway, default false</TD></TR>
+<TR><TD><CODE>storageMode</CODE><BR /><I>string</I></TD><TD>storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.</TD></TR>
+<TR><TD><CODE>storagePool</CODE><BR /><I>string</I></TD><TD>storagePool is the ScaleIO Storage Pool associated with the protection domain.</TD></TR>
+<TR><TD><CODE>system</CODE><BR /><I>string</I></TD><TD>system is the name of the storage system as configured in ScaleIO.</TD></TR>
+<TR><TD><CODE>volumeName</CODE><BR /><I>string</I></TD><TD>volumeName is the name of a volume already created in the ScaleIO system that is associated with this volume source.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="scheduling-v1-node-k8s-io">Scheduling v1 node.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>node.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Scheduling</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Scheduling specifies the scheduling constraints for nodes supporting a RuntimeClass.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#scheduling-v1beta1-node-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#runtimeclass-v1-node-k8s-io">RuntimeClass [node/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nodeSelector</CODE><BR /><I>object</I></TD><TD>nodeSelector lists labels that must be present on nodes that support this RuntimeClass. Pods using this RuntimeClass can only be scheduled to a node matched by this selector. The RuntimeClass nodeSelector is merged with a pod&#39;s existing nodeSelector. Any conflicts will cause the pod to be rejected in admission.</TD></TR>
+<TR><TD><CODE>tolerations</CODE><BR /><I><a href="#toleration-v1-core">Toleration</a> array</I></TD><TD>tolerations are appended (excluding duplicates) to pods running with this RuntimeClass during admission, effectively unioning the set of nodes tolerated by the pod and the RuntimeClass.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="scopeselector-v1-core">ScopeSelector v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ScopeSelector</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>A scope selector represents the AND of the selectors represented by the scoped-resource selector requirements.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#resourcequotaspec-v1-core">ResourceQuotaSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>matchExpressions</CODE><BR /><I><a href="#scopedresourceselectorrequirement-v1-core">ScopedResourceSelectorRequirement</a> array</I></TD><TD>A list of scope selector requirements by scope of the resources.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="scopedresourceselectorrequirement-v1-core">ScopedResourceSelectorRequirement v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ScopedResourceSelectorRequirement</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>A scoped-resource selector requirement is a selector that contains values, a scope name, and an operator that relates the scope name and values.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#scopeselector-v1-core">ScopeSelector [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>operator</CODE><BR /><I>string</I></TD><TD>Represents a scope&#39;s relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist.  </TD></TR>
+<TR><TD><CODE>scopeName</CODE><BR /><I>string</I></TD><TD>The name of the scope that the selector applies to.  </TD></TR>
+<TR><TD><CODE>values</CODE><BR /><I>string array</I></TD><TD>An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="seccompprofile-v1-core">SeccompProfile v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SeccompProfile</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>SeccompProfile defines a pod/container&#39;s seccomp profile settings. Only one profile source may be set.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritycontext-v1-core">PodSecurityContext [core/v1]</a></LI>
+  <LI><a href="#securitycontext-v1-core">SecurityContext [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>localhostProfile</CODE><BR /><I>string</I></TD><TD>localhostProfile indicates a profile defined in a file on the node should be used. The profile must be preconfigured on the node to work. Must be a descending path, relative to the kubelet&#39;s configured seccomp profile location. Must only be set if type is &#34;Localhost&#34;.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type indicates which kind of seccomp profile will be applied. Valid options are:  Localhost - a profile defined in a file on the node should be used. RuntimeDefault - the container runtime default profile should be used. Unconfined - no profile should be applied.  </TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="secretenvsource-v1-core">SecretEnvSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SecretEnvSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>SecretEnvSource selects a Secret to populate the environment variables with.
+
+The contents of the target Secret&#39;s Data field will represent the key-value pairs as environment variables.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#envfromsource-v1-core">EnvFromSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names</TD></TR>
+<TR><TD><CODE>optional</CODE><BR /><I>boolean</I></TD><TD>Specify whether the Secret must be defined</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="secretkeyselector-v1-core">SecretKeySelector v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SecretKeySelector</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>SecretKeySelector selects a key of a Secret.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#envvarsource-v1-core">EnvVarSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>key</CODE><BR /><I>string</I></TD><TD>The key of the secret to select from.  Must be a valid secret key.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names</TD></TR>
+<TR><TD><CODE>optional</CODE><BR /><I>boolean</I></TD><TD>Specify whether the Secret or its key must be defined</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="secretprojection-v1-core">SecretProjection v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SecretProjection</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Adapts a secret into a projected volume.
+
+The contents of the target Secret&#39;s Data field will be presented in a projected volume as files using the keys in the Data field as the file names. Note that this is identical to a secret volume source without the default mode.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volumeprojection-v1-core">VolumeProjection [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#keytopath-v1-core">KeyToPath</a> array</I></TD><TD>items if unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the &#39;..&#39; path or start with &#39;..&#39;.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names</TD></TR>
+<TR><TD><CODE>optional</CODE><BR /><I>boolean</I></TD><TD>optional field specify whether the Secret or its key must be defined</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="secretreference-v1-core">SecretReference v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SecretReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csipersistentvolumesource-v1-core">CSIPersistentVolumeSource [core/v1]</a></LI>
+  <LI><a href="#cephfspersistentvolumesource-v1-core">CephFSPersistentVolumeSource [core/v1]</a></LI>
+  <LI><a href="#cinderpersistentvolumesource-v1-core">CinderPersistentVolumeSource [core/v1]</a></LI>
+  <LI><a href="#flexpersistentvolumesource-v1-core">FlexPersistentVolumeSource [core/v1]</a></LI>
+  <LI><a href="#iscsipersistentvolumesource-v1-core">ISCSIPersistentVolumeSource [core/v1]</a></LI>
+  <LI><a href="#rbdpersistentvolumesource-v1-core">RBDPersistentVolumeSource [core/v1]</a></LI>
+  <LI><a href="#scaleiopersistentvolumesource-v1-core">ScaleIOPersistentVolumeSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is unique within a namespace to reference a secret resource.</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>namespace defines the space within which the secret name must be unique.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="secretvolumesource-v1-core">SecretVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SecretVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Adapts a Secret into a volume.
+
+The contents of the target Secret&#39;s Data field will be presented in a volume as files using the keys in the Data field as the file names. Secret volumes support ownership management and SELinux relabeling.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>defaultMode</CODE><BR /><I>integer</I></TD><TD>defaultMode is Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#keytopath-v1-core">KeyToPath</a> array</I></TD><TD>items If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the &#39;..&#39; path or start with &#39;..&#39;.</TD></TR>
+<TR><TD><CODE>optional</CODE><BR /><I>boolean</I></TD><TD>optional field specify whether the Secret or its keys must be defined</TD></TR>
+<TR><TD><CODE>secretName</CODE><BR /><I>string</I></TD><TD>secretName is the name of the secret in the pod&#39;s namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="securitycontext-v1-core">SecurityContext v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SecurityContext</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>SecurityContext holds security configuration that will be applied to a container. Some fields are present in both SecurityContext and PodSecurityContext.  When both are set, the values in SecurityContext take precedence.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#container-v1-core">Container [core/v1]</a></LI>
+  <LI><a href="#ephemeralcontainer-v1-core">EphemeralContainer [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowPrivilegeEscalation</CODE><BR /><I>boolean</I></TD><TD>AllowPrivilegeEscalation controls whether a process can gain more privileges than its parent process. This bool directly controls if the no_new_privs flag will be set on the container process. AllowPrivilegeEscalation is true always when the container is: 1) run as Privileged 2) has CAP_SYS_ADMIN Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>capabilities</CODE><BR /><I><a href="#capabilities-v1-core">Capabilities</a></I></TD><TD>The capabilities to add/drop when running containers. Defaults to the default set of capabilities granted by the container runtime. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>privileged</CODE><BR /><I>boolean</I></TD><TD>Run container in privileged mode. Processes in privileged containers are essentially equivalent to root on the host. Defaults to false. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>procMount</CODE><BR /><I>string</I></TD><TD>procMount denotes the type of proc mount to use for the containers. The default is DefaultProcMount which uses the container runtime defaults for readonly paths and masked paths. This requires the ProcMountType feature flag to be enabled. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>readOnlyRootFilesystem</CODE><BR /><I>boolean</I></TD><TD>Whether this container has a read-only root filesystem. Default is false. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>runAsGroup</CODE><BR /><I>integer</I></TD><TD>The GID to run the entrypoint of the container process. Uses runtime default if unset. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>runAsNonRoot</CODE><BR /><I>boolean</I></TD><TD>Indicates that the container must run as a non-root user. If true, the Kubelet will validate the image at runtime to ensure that it does not run as UID 0 (root) and fail to start the container if it does. If unset or false, no such validation will be performed. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.</TD></TR>
+<TR><TD><CODE>runAsUser</CODE><BR /><I>integer</I></TD><TD>The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>seLinuxOptions</CODE><BR /><I><a href="#selinuxoptions-v1-core">SELinuxOptions</a></I></TD><TD>The SELinux context to be applied to the container. If unspecified, the container runtime will allocate a random SELinux context for each container.  May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>seccompProfile</CODE><BR /><I><a href="#seccompprofile-v1-core">SeccompProfile</a></I></TD><TD>The seccomp options to use by this container. If seccomp options are provided at both the pod &amp; container level, the container options override the pod options. Note that this field cannot be set when spec.os.name is windows.</TD></TR>
+<TR><TD><CODE>windowsOptions</CODE><BR /><I><a href="#windowssecuritycontextoptions-v1-core">WindowsSecurityContextOptions</a></I></TD><TD>The Windows specific settings applied to all containers. If unspecified, the options from the PodSecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is linux.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="serveraddressbyclientcidr-v1-meta">ServerAddressByClientCIDR v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ServerAddressByClientCIDR</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ServerAddressByClientCIDR helps the client to determine the server address that they should use, depending on the clientCIDR that they match.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apigroup-v1-meta">APIGroup [meta/v1]</a></LI>
+  <LI><a href="#apiversions-v1-meta">APIVersions [meta/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>clientCIDR</CODE><BR /><I>string</I></TD><TD>The CIDR with which clients can match their IP to figure out the server address that they should use.</TD></TR>
+<TR><TD><CODE>serverAddress</CODE><BR /><I>string</I></TD><TD>Address of this server, suitable for a client that matches the above CIDR. This can be a hostname, hostname:port, IP or IP:port.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="serverstorageversion-v1alpha1-internal-apiserver-k8s-io">ServerStorageVersion v1alpha1 internal.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>internal.apiserver.k8s.io</CODE></TD><TD><CODE>v1alpha1</CODE></TD><TD><CODE>ServerStorageVersion</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>An API server instance reports the version it can decode and the version it encodes objects to when persisting objects in the backend.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#storageversionstatus-v1alpha1-internal-apiserver-k8s-io">StorageVersionStatus [apiserverinternal/v1alpha1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiServerID</CODE><BR /><I>string</I></TD><TD>The ID of the reporting API server.</TD></TR>
+<TR><TD><CODE>decodableVersions</CODE><BR /><I>string array</I></TD><TD>The API server can decode objects encoded in these versions. The encodingVersion must be included in the decodableVersions.</TD></TR>
+<TR><TD><CODE>encodingVersion</CODE><BR /><I>string</I></TD><TD>The API server encodes the object to this version when persisting it in the backend (e.g., etcd).</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="serviceaccountsubject-v1beta2-flowcontrol-apiserver-k8s-io">ServiceAccountSubject v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>ServiceAccountSubject</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ServiceAccountSubject holds detailed information for service-account-kind subject.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#serviceaccountsubject-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#subject-v1beta2-flowcontrol-apiserver-k8s-io">Subject [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>`name` is the name of matching ServiceAccount objects, or &#34;*&#34; to match regardless of name. Required.</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>`namespace` is the namespace of matching ServiceAccount objects. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="serviceaccounttokenprojection-v1-core">ServiceAccountTokenProjection v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ServiceAccountTokenProjection</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ServiceAccountTokenProjection represents a projected service account token volume. This projection can be used to insert a service account token into the pods runtime filesystem for use against APIs (Kubernetes API Server or otherwise).</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volumeprojection-v1-core">VolumeProjection [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>audience</CODE><BR /><I>string</I></TD><TD>audience is the intended audience of the token. A recipient of a token must identify itself with an identifier specified in the audience of the token, and otherwise should reject the token. The audience defaults to the identifier of the apiserver.</TD></TR>
+<TR><TD><CODE>expirationSeconds</CODE><BR /><I>integer</I></TD><TD>expirationSeconds is the requested duration of validity of the service account token. As the token approaches expiration, the kubelet volume plugin will proactively rotate the service account token. The kubelet will start trying to rotate the token if the token is older than 80 percent of its time to live or if the token is older than 24 hours.Defaults to 1 hour and must be at least 10 minutes.</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>path is the path relative to the mount point of the file to project the token into.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="servicebackendport-v1-networking-k8s-io">ServiceBackendPort v1 networking.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>networking.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ServiceBackendPort</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ServiceBackendPort is the service port being referenced.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingressservicebackend-v1-networking-k8s-io">IngressServiceBackend [networking/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the name of the port on the Service. This is a mutually exclusive setting with &#34;Number&#34;.</TD></TR>
+<TR><TD><CODE>number</CODE><BR /><I>integer</I></TD><TD>Number is the numerical port number (e.g. 80) on the Service. This is a mutually exclusive setting with &#34;Name&#34;.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="serviceport-v1-core">ServicePort v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ServicePort</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ServicePort contains information on service&#39;s port.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#servicespec-v1-core">ServiceSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>appProtocol</CODE><BR /><I>string</I></TD><TD>The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and https://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>The name of this port within the service. This must be a DNS_LABEL. All ports within a ServiceSpec must have unique names. When considering the endpoints for a Service, this must match the &#39;name&#39; field in the EndpointPort. Optional if only one ServicePort is defined on this service.</TD></TR>
+<TR><TD><CODE>nodePort</CODE><BR /><I>integer</I></TD><TD>The port on each node on which this service is exposed when type is NodePort or LoadBalancer.  Usually assigned by the system. If a value is specified, in-range, and not in use it will be used, otherwise the operation will fail.  If not specified, a port will be allocated if this Service requires one.  If this field is specified when creating a Service which does not need it, creation will fail. This field will be wiped when updating a Service to no longer need it (e.g. changing type from NodePort to ClusterIP). More info: https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport</TD></TR>
+<TR><TD><CODE>port</CODE><BR /><I>integer</I></TD><TD>The port that will be exposed by this service.</TD></TR>
+<TR><TD><CODE>protocol</CODE><BR /><I>string</I></TD><TD>The IP protocol for this port. Supports &#34;TCP&#34;, &#34;UDP&#34;, and &#34;SCTP&#34;. Default is TCP.  </TD></TR>
+<TR><TD><CODE>targetPort</CODE></TD><TD>Number or name of the port to access on the pods targeted by the service. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME. If this is a string, it will be looked up as a named port in the target Pod&#39;s container ports. If this is not specified, the value of the &#39;port&#39; field is used (an identity map). This field is ignored for services with clusterIP=None, and should be omitted or set equal to the &#39;port&#39; field. More info: https://kubernetes.io/docs/concepts/services-networking/service/#defining-a-service</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="servicereference-v1-admissionregistration-k8s-io">ServiceReference v1 admissionregistration.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>admissionregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ServiceReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ServiceReference holds a reference to Service.legacy.k8s.io</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#webhookclientconfig-v1-admissionregistration-k8s-io">WebhookClientConfig [admissionregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>`name` is the name of the service. Required</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>`namespace` is the namespace of the service. Required</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>`path` is an optional URL path which will be sent in any request to this service.</TD></TR>
+<TR><TD><CODE>port</CODE><BR /><I>integer</I></TD><TD>If specified, the port on the service that hosting webhook. Default to 443 for backward compatibility. `port` should be a valid port number (1-65535, inclusive).</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="sessionaffinityconfig-v1-core">SessionAffinityConfig v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SessionAffinityConfig</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>SessionAffinityConfig represents the configurations of session affinity.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#servicespec-v1-core">ServiceSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>clientIP</CODE><BR /><I><a href="#clientipconfig-v1-core">ClientIPConfig</a></I></TD><TD>clientIP contains the configurations of Client IP based session affinity.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="statefulsetcondition-v1-apps">StatefulSetCondition v1 apps</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>StatefulSetCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>StatefulSetCondition describes the state of a statefulset at a certain point.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#statefulsetstatus-v1-apps">StatefulSetStatus [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>A human readable message indicating details about the transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>The reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status of the condition, one of True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of statefulset condition.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="statefulsetpersistentvolumeclaimretentionpolicy-v1-apps">StatefulSetPersistentVolumeClaimRetentionPolicy v1 apps</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>StatefulSetPersistentVolumeClaimRetentionPolicy</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>StatefulSetPersistentVolumeClaimRetentionPolicy describes the policy used for PVCs created from the StatefulSet VolumeClaimTemplates.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#statefulsetspec-v1-apps">StatefulSetSpec [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>whenDeleted</CODE><BR /><I>string</I></TD><TD>WhenDeleted specifies what happens to PVCs created from StatefulSet VolumeClaimTemplates when the StatefulSet is deleted. The default policy of `Retain` causes PVCs to not be affected by StatefulSet deletion. The `Delete` policy causes those PVCs to be deleted.</TD></TR>
+<TR><TD><CODE>whenScaled</CODE><BR /><I>string</I></TD><TD>WhenScaled specifies what happens to PVCs created from StatefulSet VolumeClaimTemplates when the StatefulSet is scaled down. The default policy of `Retain` causes PVCs to not be affected by a scaledown. The `Delete` policy causes the associated PVCs for any excess pods above the replica count to be deleted.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="statefulsetupdatestrategy-v1-apps">StatefulSetUpdateStrategy v1 apps</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apps</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>StatefulSetUpdateStrategy</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>StatefulSetUpdateStrategy indicates the strategy that the StatefulSet controller will use to perform updates. It includes any additional parameters necessary to perform the update for the indicated strategy.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#statefulsetspec-v1-apps">StatefulSetSpec [apps/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rollingUpdate</CODE><BR /><I><a href="#rollingupdatestatefulsetstrategy-v1-apps">RollingUpdateStatefulSetStrategy</a></I></TD><TD>RollingUpdate is used to communicate parameters when Type is RollingUpdateStatefulSetStrategyType.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type indicates the type of the StatefulSetUpdateStrategy. Default is RollingUpdate.  </TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="status-v1-meta">Status v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Status</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Status is a return value for calls that don&#39;t return other objects.</P>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>code</CODE><BR /><I>integer</I></TD><TD>Suggested HTTP return code for this status, 0 if not set.</TD></TR>
+<TR><TD><CODE>details</CODE><BR /><I><a href="#statusdetails-v1-meta">StatusDetails</a></I></TD><TD>Extended data associated with the reason.  Each reason may define its own extended details. This field is optional and the data returned is not guaranteed to conform to any schema except that defined by the reason type.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>A human-readable description of the status of this operation.</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>A machine-readable description of why this operation is in the &#34;Failure&#34; status. If this value is empty there is no information available. A Reason clarifies an HTTP status code but does not override it.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status of the operation. One of: &#34;Success&#34; or &#34;Failure&#34;. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="statuscause-v1-meta">StatusCause v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>StatusCause</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>StatusCause provides more information about an api.Status failure, including cases when multiple errors are encountered.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#statusdetails-v1-meta">StatusDetails [meta/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>field</CODE><BR /><I>string</I></TD><TD>The field of the resource that has caused this error, as named by its JSON serialization. May include dot and postfix notation for nested attributes. Arrays are zero-indexed.  Fields may appear more than once in an array of causes due to fields having multiple errors. Optional.  Examples:   &#34;name&#34; - the field &#34;name&#34; on the current resource   &#34;items[0].name&#34; - the field &#34;name&#34; on the first array entry in &#34;items&#34;</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>A human-readable description of the cause of the error.  This field may be presented as-is to a reader.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>A machine-readable description of the cause of the error. If this value is empty there is no information available.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="statusdetails-v1-meta">StatusDetails v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>StatusDetails</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>StatusDetails is a set of additional properties that MAY be set by the server to provide additional information about a response. The Reason field of a Status object defines what attributes will be set. Clients must ignore fields that do not match the defined type of each attribute, and should assume that any attribute may be empty, invalid, or under defined.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#status-v1-meta">Status [meta/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>causes</CODE><BR /><I><a href="#statuscause-v1-meta">StatusCause</a> array</I></TD><TD>The Causes array includes more details associated with the StatusReason failure. Not all StatusReasons may provide detailed causes.</TD></TR>
+<TR><TD><CODE>group</CODE><BR /><I>string</I></TD><TD>The group attribute of the resource associated with the status StatusReason.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>The kind attribute of the resource associated with the status StatusReason. On some operations may differ from the requested resource Kind. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>The name attribute of the resource associated with the status StatusReason (when there is a single name which can be described).</TD></TR>
+<TR><TD><CODE>retryAfterSeconds</CODE><BR /><I>integer</I></TD><TD>If specified, the time in seconds before the operation should be retried. Some errors may indicate the client must take an alternate action - for those errors this field may indicate how long to wait before taking the alternate action.</TD></TR>
+<TR><TD><CODE>uid</CODE><BR /><I>string</I></TD><TD>UID of the resource. (when there is a single resource which can be described). More info: http://kubernetes.io/docs/user-guide/identifiers#uids</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="storageospersistentvolumesource-v1-core">StorageOSPersistentVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>StorageOSPersistentVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a StorageOS persistent volume resource.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified.</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>secretRef specifies the secret to use for obtaining the StorageOS API credentials.  If not specified, default values will be attempted.</TD></TR>
+<TR><TD><CODE>volumeName</CODE><BR /><I>string</I></TD><TD>volumeName is the human-readable name of the StorageOS volume.  Volume names are only unique within a namespace.</TD></TR>
+<TR><TD><CODE>volumeNamespace</CODE><BR /><I>string</I></TD><TD>volumeNamespace specifies the scope of the volume within StorageOS.  If no namespace is specified then the Pod&#39;s namespace will be used.  This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to &#34;default&#34; if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="storageosvolumesource-v1-core">StorageOSVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>StorageOSVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a StorageOS persistent volume resource.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified.</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.</TD></TR>
+<TR><TD><CODE>secretRef</CODE><BR /><I><a href="#localobjectreference-v1-core">LocalObjectReference</a></I></TD><TD>secretRef specifies the secret to use for obtaining the StorageOS API credentials.  If not specified, default values will be attempted.</TD></TR>
+<TR><TD><CODE>volumeName</CODE><BR /><I>string</I></TD><TD>volumeName is the human-readable name of the StorageOS volume.  Volume names are only unique within a namespace.</TD></TR>
+<TR><TD><CODE>volumeNamespace</CODE><BR /><I>string</I></TD><TD>volumeNamespace specifies the scope of the volume within StorageOS.  If no namespace is specified then the Pod&#39;s namespace will be used.  This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to &#34;default&#34; if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="storageversioncondition-v1alpha1-internal-apiserver-k8s-io">StorageVersionCondition v1alpha1 internal.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>internal.apiserver.k8s.io</CODE></TD><TD><CODE>v1alpha1</CODE></TD><TD><CODE>StorageVersionCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Describes the state of the storageVersion at a certain point.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#storageversionstatus-v1alpha1-internal-apiserver-k8s-io">StorageVersionStatus [apiserverinternal/v1alpha1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>A human readable message indicating details about the transition.</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>If set, this represents the .metadata.generation that the condition was set based upon.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>The reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>Status of the condition, one of True, False, Unknown.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of the condition.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="subject-v1beta2-flowcontrol-apiserver-k8s-io">Subject v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>Subject</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Subject matches the originator of a request, as identified by the request authentication system. There are three ways of matching an originator; by user, group, or service account.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#subject-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+<a href="#subject-v1-rbac-authorization-k8s-io">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#policyruleswithsubjects-v1beta2-flowcontrol-apiserver-k8s-io">PolicyRulesWithSubjects [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>group</CODE><BR /><I><a href="#groupsubject-v1beta2-flowcontrol-apiserver-k8s-io">GroupSubject</a></I></TD><TD>`group` matches based on user group name.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>`kind` indicates which one of the other fields is non-empty. Required</TD></TR>
+<TR><TD><CODE>serviceAccount</CODE><BR /><I><a href="#serviceaccountsubject-v1beta2-flowcontrol-apiserver-k8s-io">ServiceAccountSubject</a></I></TD><TD>`serviceAccount` matches ServiceAccounts.</TD></TR>
+<TR><TD><CODE>user</CODE><BR /><I><a href="#usersubject-v1beta2-flowcontrol-apiserver-k8s-io">UserSubject</a></I></TD><TD>`user` matches based on username.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="subjectrulesreviewstatus-v1-authorization-k8s-io">SubjectRulesReviewStatus v1 authorization.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>SubjectRulesReviewStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>SubjectRulesReviewStatus contains the result of a rules check. This check can be incomplete depending on the set of authorizers the server is configured with and any errors experienced during evaluation. Because authorization rules are additive, if a rule appears in a list it&#39;s safe to assume the subject has that permission, even if that list is incomplete.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#selfsubjectrulesreview-v1-authorization-k8s-io">SelfSubjectRulesReview [authorization/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>evaluationError</CODE><BR /><I>string</I></TD><TD>EvaluationError can appear in combination with Rules. It indicates an error occurred during rule evaluation, such as an authorizer that doesn&#39;t support rule evaluation, and that ResourceRules and/or NonResourceRules may be incomplete.</TD></TR>
+<TR><TD><CODE>incomplete</CODE><BR /><I>boolean</I></TD><TD>Incomplete is true when the rules returned by this call are incomplete. This is most commonly encountered when an authorizer, such as an external authorizer, doesn&#39;t support rules evaluation.</TD></TR>
+<TR><TD><CODE>nonResourceRules</CODE><BR /><I><a href="#nonresourcerule-v1-authorization-k8s-io">NonResourceRule</a> array</I></TD><TD>NonResourceRules is the list of actions the subject is allowed to perform on non-resources. The list ordering isn&#39;t significant, may contain duplicates, and possibly be incomplete.</TD></TR>
+<TR><TD><CODE>resourceRules</CODE><BR /><I><a href="#resourcerule-v1-authorization-k8s-io">ResourceRule</a> array</I></TD><TD>ResourceRules is the list of actions the subject is allowed to perform on resources. The list ordering isn&#39;t significant, may contain duplicates, and possibly be incomplete.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="supplementalgroupsstrategyoptions-v1beta1-policy">SupplementalGroupsStrategyOptions v1beta1 policy</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>SupplementalGroupsStrategyOptions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>SupplementalGroupsStrategyOptions defines the strategy type and options used to create the strategy.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritypolicyspec-v1beta1-policy">PodSecurityPolicySpec [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ranges</CODE><BR /><I><a href="#idrange-v1beta1-policy">IDRange</a> array</I></TD><TD>ranges are the allowed ranges of supplemental groups.  If you would like to force a single supplemental group then supply a single range with the same start and end. Required for MustRunAs.</TD></TR>
+<TR><TD><CODE>rule</CODE><BR /><I>string</I></TD><TD>rule is the strategy that will dictate what supplemental groups is used in the SecurityContext.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="sysctl-v1-core">Sysctl v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Sysctl</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Sysctl defines a kernel parameter to be set</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritycontext-v1-core">PodSecurityContext [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of a property to set</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I>string</I></TD><TD>Value of a property to set</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="tcpsocketaction-v1-core">TCPSocketAction v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>TCPSocketAction</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>TCPSocketAction describes an action based on opening a socket</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#lifecyclehandler-v1-core">LifecycleHandler [core/v1]</a></LI>
+  <LI><a href="#probe-v1-core">Probe [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>host</CODE><BR /><I>string</I></TD><TD>Optional: Host name to connect to, defaults to the pod IP.</TD></TR>
+<TR><TD><CODE>port</CODE></TD><TD>Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="taint-v1-core">Taint v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Taint</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>The node this Taint is attached to has the &#34;effect&#34; on any pod that does not tolerate the Taint.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#nodespec-v1-core">NodeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>effect</CODE><BR /><I>string</I></TD><TD>Required. The effect of the taint on pods that do not tolerate the taint. Valid effects are NoSchedule, PreferNoSchedule and NoExecute.  </TD></TR>
+<TR><TD><CODE>key</CODE><BR /><I>string</I></TD><TD>Required. The taint key to be applied to a node.</TD></TR>
+<TR><TD><CODE>timeAdded</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>TimeAdded represents the time at which the taint was added. It is only written for NoExecute taints.</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I>string</I></TD><TD>The taint value corresponding to the taint key.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="time-v1-meta">Time v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Time</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apiservicecondition-v1-apiregistration-k8s-io">APIServiceCondition [apiregistration/v1]</a></LI>
+  <LI><a href="#certificatesigningrequestcondition-v1-certificates-k8s-io">CertificateSigningRequestCondition [certificates/v1]</a></LI>
+  <LI><a href="#condition-v1-meta">Condition [meta/v1]</a></LI>
+  <LI><a href="#containerstaterunning-v1-core">ContainerStateRunning [core/v1]</a></LI>
+  <LI><a href="#containerstateterminated-v1-core">ContainerStateTerminated [core/v1]</a></LI>
+  <LI><a href="#cronjobstatus-v1-batch">CronJobStatus [batch/v1]</a></LI>
+  <LI><a href="#cronjobstatus-v1beta1-batch">CronJobStatus [batch/v1beta1]</a></LI>
+  <LI><a href="#customresourcedefinitioncondition-v1-apiextensions-k8s-io">CustomResourceDefinitionCondition [apiextensions/v1]</a></LI>
+  <LI><a href="#daemonsetcondition-v1-apps">DaemonSetCondition [apps/v1]</a></LI>
+  <LI><a href="#deploymentcondition-v1-apps">DeploymentCondition [apps/v1]</a></LI>
+  <LI><a href="#event-v1-core">Event [core/v1]</a></LI>
+  <LI><a href="#event-v1-events-k8s-io">Event [events/v1]</a></LI>
+  <LI><a href="#event-v1beta1-events-k8s-io">Event [events/v1beta1]</a></LI>
+  <LI><a href="#flowschemacondition-v1beta2-flowcontrol-apiserver-k8s-io">FlowSchemaCondition [flowcontrol/v1beta2]</a></LI>
+  <LI><a href="#flowschemacondition-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaCondition [flowcontrol/v1beta1]</a></LI>
+  <LI><a href="#horizontalpodautoscalercondition-v2-autoscaling">HorizontalPodAutoscalerCondition [autoscaling/v2]</a></LI>
+  <LI><a href="#horizontalpodautoscalercondition-v2beta2-autoscaling">HorizontalPodAutoscalerCondition [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#horizontalpodautoscalercondition-v2beta1-autoscaling">HorizontalPodAutoscalerCondition [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#horizontalpodautoscalerstatus-v2-autoscaling">HorizontalPodAutoscalerStatus [autoscaling/v2]</a></LI>
+  <LI><a href="#horizontalpodautoscalerstatus-v1-autoscaling">HorizontalPodAutoscalerStatus [autoscaling/v1]</a></LI>
+  <LI><a href="#horizontalpodautoscalerstatus-v2beta2-autoscaling">HorizontalPodAutoscalerStatus [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#horizontalpodautoscalerstatus-v2beta1-autoscaling">HorizontalPodAutoscalerStatus [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#jobcondition-v1-batch">JobCondition [batch/v1]</a></LI>
+  <LI><a href="#jobstatus-v1-batch">JobStatus [batch/v1]</a></LI>
+  <LI><a href="#managedfieldsentry-v1-meta">ManagedFieldsEntry [meta/v1]</a></LI>
+  <LI><a href="#namespacecondition-v1-core">NamespaceCondition [core/v1]</a></LI>
+  <LI><a href="#nodecondition-v1-core">NodeCondition [core/v1]</a></LI>
+  <LI><a href="#objectmeta-v1-meta">ObjectMeta [meta/v1]</a></LI>
+  <LI><a href="#persistentvolumeclaimcondition-v1-core">PersistentVolumeClaimCondition [core/v1]</a></LI>
+  <LI><a href="#podcondition-v1-core">PodCondition [core/v1]</a></LI>
+  <LI><a href="#podstatus-v1-core">PodStatus [core/v1]</a></LI>
+  <LI><a href="#prioritylevelconfigurationcondition-v1beta2-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationCondition [flowcontrol/v1beta2]</a></LI>
+  <LI><a href="#prioritylevelconfigurationcondition-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationCondition [flowcontrol/v1beta1]</a></LI>
+  <LI><a href="#replicasetcondition-v1-apps">ReplicaSetCondition [apps/v1]</a></LI>
+  <LI><a href="#replicationcontrollercondition-v1-core">ReplicationControllerCondition [core/v1]</a></LI>
+  <LI><a href="#statefulsetcondition-v1-apps">StatefulSetCondition [apps/v1]</a></LI>
+  <LI><a href="#storageversioncondition-v1alpha1-internal-apiserver-k8s-io">StorageVersionCondition [apiserverinternal/v1alpha1]</a></LI>
+  <LI><a href="#taint-v1-core">Taint [core/v1]</a></LI>
+  <LI><a href="#tokenrequeststatus-v1-authentication-k8s-io">TokenRequestStatus [authentication/v1]</a></LI>
+  <LI><a href="#volumeerror-v1-storage-k8s-io">VolumeError [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+</TBODY>
+</TABLE>
+<H2 id="toleration-v1-core">Toleration v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Toleration</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>The pod this Toleration is attached to tolerates any taint that matches the triple &lt;key,value,effect&gt; using the matching operator &lt;operator&gt;.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+  <LI><a href="#scheduling-v1-node-k8s-io">Scheduling [node/v1]</a></LI>
+  <LI><a href="#scheduling-v1beta1-node-k8s-io">Scheduling [node/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>effect</CODE><BR /><I>string</I></TD><TD>Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.  </TD></TR>
+<TR><TD><CODE>key</CODE><BR /><I>string</I></TD><TD>Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.</TD></TR>
+<TR><TD><CODE>operator</CODE><BR /><I>string</I></TD><TD>Operator represents a key&#39;s relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.  </TD></TR>
+<TR><TD><CODE>tolerationSeconds</CODE><BR /><I>integer</I></TD><TD>TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I>string</I></TD><TD>Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="topologyselectorlabelrequirement-v1-core">TopologySelectorLabelRequirement v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>TopologySelectorLabelRequirement</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>A topology selector requirement is a selector that matches given label. This is an alpha feature and may change in the future.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#topologyselectorterm-v1-core">TopologySelectorTerm [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>key</CODE><BR /><I>string</I></TD><TD>The label key that the selector applies to.</TD></TR>
+<TR><TD><CODE>values</CODE><BR /><I>string array</I></TD><TD>An array of string values. One value must match the label to be selected. Each entry in Values is ORed.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="topologyselectorterm-v1-core">TopologySelectorTerm v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>TopologySelectorTerm</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>A topology selector term represents the result of label queries. A null or empty topology selector term matches no objects. The requirements of them are ANDed. It provides a subset of functionality as NodeSelectorTerm. This is an alpha feature and may change in the future.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#storageclass-v1-storage-k8s-io">StorageClass [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>matchLabelExpressions</CODE><BR /><I><a href="#topologyselectorlabelrequirement-v1-core">TopologySelectorLabelRequirement</a> array</I></TD><TD>A list of topology selector requirements by labels.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="topologyspreadconstraint-v1-core">TopologySpreadConstraint v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>TopologySpreadConstraint</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>TopologySpreadConstraint specifies how to spread matching pods among the given topology.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podspec-v1-core">PodSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>labelSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain.</TD></TR>
+<TR><TD><CODE>maxSkew</CODE><BR /><I>integer</I></TD><TD>MaxSkew describes the degree to which pods may be unevenly distributed. When `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | |  P P  |  P P  |   P   | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence to topologies that satisfy it. It&#39;s a required field. Default value is 1 and 0 is not allowed.</TD></TR>
+<TR><TD><CODE>minDomains</CODE><BR /><I>integer</I></TD><TD>MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats &#34;global minimum&#34; as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won&#39;t schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule.  For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | |  P P  |  P P  |  P P  | The number of domains is less than 5(MinDomains), so &#34;global minimum&#34; is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew.  This is an alpha field and requires enabling MinDomainsInPodTopologySpread feature gate.</TD></TR>
+<TR><TD><CODE>topologyKey</CODE><BR /><I>string</I></TD><TD>TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each &lt;key, value&gt; as a &#34;bucket&#34;, and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes match the node selector. e.g. If TopologyKey is &#34;kubernetes.io/hostname&#34;, each Node is a domain of that topology. And, if TopologyKey is &#34;topology.kubernetes.io/zone&#34;, each zone is a domain of that topology. It&#39;s a required field.</TD></TR>
+<TR><TD><CODE>whenUnsatisfiable</CODE><BR /><I>string</I></TD><TD>WhenUnsatisfiable indicates how to deal with a pod if it doesn&#39;t satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location,   but giving higher precedence to topologies that would help reduce the   skew. A constraint is considered &#34;Unsatisfiable&#34; for an incoming pod if and only if every possible node assignment for that pod would violate &#34;MaxSkew&#34; on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P |   P   |   P   | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won&#39;t make it *more* imbalanced. It&#39;s a required field.  </TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="typedlocalobjectreference-v1-core">TypedLocalObjectReference v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>TypedLocalObjectReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>TypedLocalObjectReference contains enough information to let you locate the typed referenced object inside the same namespace.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#ingressbackend-v1-networking-k8s-io">IngressBackend [networking/v1]</a></LI>
+  <LI><a href="#persistentvolumeclaimspec-v1-core">PersistentVolumeClaimSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiGroup</CODE><BR /><I>string</I></TD><TD>APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is the type of resource being referenced</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the name of resource being referenced</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="uncountedterminatedpods-v1-batch">UncountedTerminatedPods v1 batch</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>batch</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>UncountedTerminatedPods</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>UncountedTerminatedPods holds UIDs of Pods that have terminated but haven&#39;t been accounted in Job status counters.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#jobstatus-v1-batch">JobStatus [batch/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>failed</CODE><BR /><I>string array</I></TD><TD>Failed holds UIDs of failed Pods.</TD></TR>
+<TR><TD><CODE>succeeded</CODE><BR /><I>string array</I></TD><TD>Succeeded holds UIDs of succeeded Pods.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="userinfo-v1-authentication-k8s-io">UserInfo v1 authentication.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>authentication.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>UserInfo</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>UserInfo holds the information about the user needed to implement the user.Info interface.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#tokenreviewstatus-v1-authentication-k8s-io">TokenReviewStatus [authentication/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>extra</CODE><BR /><I>object</I></TD><TD>Any additional information provided by the authenticator.</TD></TR>
+<TR><TD><CODE>groups</CODE><BR /><I>string array</I></TD><TD>The names of groups this user is a part of.</TD></TR>
+<TR><TD><CODE>uid</CODE><BR /><I>string</I></TD><TD>A unique value that identifies this user across time. If this user is deleted and another user by the same name is added, they will have different UIDs.</TD></TR>
+<TR><TD><CODE>username</CODE><BR /><I>string</I></TD><TD>The name that uniquely identifies this user among all active users.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="usersubject-v1beta2-flowcontrol-apiserver-k8s-io">UserSubject v1beta2 flowcontrol.apiserver.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta2</CODE></TD><TD><CODE>UserSubject</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>UserSubject holds detailed information for user-kind subject.</P>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#usersubject-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#subject-v1beta2-flowcontrol-apiserver-k8s-io">Subject [flowcontrol/v1beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>`name` is the username that matches, or &#34;*&#34; to match all usernames. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="validatingwebhook-v1-admissionregistration-k8s-io">ValidatingWebhook v1 admissionregistration.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>admissionregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ValidatingWebhook</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ValidatingWebhook describes an admission webhook and the resources and operations it applies to.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#validatingwebhookconfiguration-v1-admissionregistration-k8s-io">ValidatingWebhookConfiguration [admissionregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>admissionReviewVersions</CODE><BR /><I>string array</I></TD><TD>AdmissionReviewVersions is an ordered list of preferred `AdmissionReview` versions the Webhook expects. API server will try to use first version in the list which it supports. If none of the versions specified in this list supported by API server, validation will fail for this object. If a persisted webhook configuration specifies allowed versions and does not include any versions known to the API Server, calls to the webhook will fail and be subject to the failure policy.</TD></TR>
+<TR><TD><CODE>clientConfig</CODE><BR /><I><a href="#webhookclientconfig-v1-admissionregistration-k8s-io">WebhookClientConfig</a></I></TD><TD>ClientConfig defines how to communicate with the hook. Required</TD></TR>
+<TR><TD><CODE>failurePolicy</CODE><BR /><I>string</I></TD><TD>FailurePolicy defines how unrecognized errors from the admission endpoint are handled - allowed values are Ignore or Fail. Defaults to Fail.</TD></TR>
+<TR><TD><CODE>matchPolicy</CODE><BR /><I>string</I></TD><TD>matchPolicy defines how the &#34;rules&#34; list is used to match incoming requests. Allowed values are &#34;Exact&#34; or &#34;Equivalent&#34;.  - Exact: match a request only if it exactly matches a specified rule. For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, but &#34;rules&#34; only included `apiGroups:[&#34;apps&#34;], apiVersions:[&#34;v1&#34;], resources: [&#34;deployments&#34;]`, a request to apps/v1beta1 or extensions/v1beta1 would not be sent to the webhook.  - Equivalent: match a request if modifies a resource listed in rules, even via another API group or version. For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, and &#34;rules&#34; only included `apiGroups:[&#34;apps&#34;], apiVersions:[&#34;v1&#34;], resources: [&#34;deployments&#34;]`, a request to apps/v1beta1 or extensions/v1beta1 would be converted to apps/v1 and sent to the webhook.  Defaults to &#34;Equivalent&#34;</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>The name of the admission webhook. Name should be fully qualified, e.g., imagepolicy.kubernetes.io, where &#34;imagepolicy&#34; is the name of the webhook, and kubernetes.io is the name of the organization. Required.</TD></TR>
+<TR><TD><CODE>namespaceSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>NamespaceSelector decides whether to run the webhook on an object based on whether the namespace for that object matches the selector. If the object itself is a namespace, the matching is performed on object.metadata.labels. If the object is another cluster scoped resource, it never skips the webhook.  For example, to run the webhook on any objects whose namespace is not associated with &#34;runlevel&#34; of &#34;0&#34; or &#34;1&#34;;  you will set the selector as follows: &#34;namespaceSelector&#34;: {   &#34;matchExpressions&#34;: [     {       &#34;key&#34;: &#34;runlevel&#34;,       &#34;operator&#34;: &#34;NotIn&#34;,       &#34;values&#34;: [         &#34;0&#34;,         &#34;1&#34;       ]     }   ] }  If instead you want to only run the webhook on any objects whose namespace is associated with the &#34;environment&#34; of &#34;prod&#34; or &#34;staging&#34;; you will set the selector as follows: &#34;namespaceSelector&#34;: {   &#34;matchExpressions&#34;: [     {       &#34;key&#34;: &#34;environment&#34;,       &#34;operator&#34;: &#34;In&#34;,       &#34;values&#34;: [         &#34;prod&#34;,         &#34;staging&#34;       ]     }   ] }  See https://kubernetes.io/docs/concepts/overview/working-with-objects/labels for more examples of label selectors.  Default to the empty LabelSelector, which matches everything.</TD></TR>
+<TR><TD><CODE>objectSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>ObjectSelector decides whether to run the webhook based on if the object has matching labels. objectSelector is evaluated against both the oldObject and newObject that would be sent to the webhook, and is considered to match if either object matches the selector. A null object (oldObject in the case of create, or newObject in the case of delete) or an object that cannot have labels (like a DeploymentRollback or a PodProxyOptions object) is not considered to match. Use the object selector only if the webhook is opt-in, because end users may skip the admission webhook by setting the labels. Default to the empty LabelSelector, which matches everything.</TD></TR>
+<TR><TD><CODE>rules</CODE><BR /><I><a href="#rulewithoperations-v1-admissionregistration-k8s-io">RuleWithOperations</a> array</I></TD><TD>Rules describes what operations on what resources/subresources the webhook cares about. The webhook cares about an operation if it matches _any_ Rule. However, in order to prevent ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks from putting the cluster in a state which cannot be recovered from without completely disabling the plugin, ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks are never called on admission requests for ValidatingWebhookConfiguration and MutatingWebhookConfiguration objects.</TD></TR>
+<TR><TD><CODE>sideEffects</CODE><BR /><I>string</I></TD><TD>SideEffects states whether this webhook has side effects. Acceptable values are: None, NoneOnDryRun (webhooks created via v1beta1 may also specify Some or Unknown). Webhooks with side effects MUST implement a reconciliation system, since a request may be rejected by a future step in the admission chain and the side effects therefore need to be undone. Requests with the dryRun attribute will be auto-rejected if they match a webhook with sideEffects == Unknown or Some.</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE><BR /><I>integer</I></TD><TD>TimeoutSeconds specifies the timeout for this webhook. After the timeout passes, the webhook call will be ignored or the API call will fail based on the failure policy. The timeout value must be between 1 and 30 seconds. Default to 10 seconds.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="validationrule-v1-apiextensions-k8s-io">ValidationRule v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ValidationRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>ValidationRule describes a validation rule written in the CEL expression language.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#jsonschemaprops-v1-apiextensions-k8s-io">JSONSchemaProps [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>Message represents the message displayed when validation fails. The message is required if the Rule contains line breaks. The message must not contain line breaks. If unset, the message is &#34;failed rule: {Rule}&#34;. e.g. &#34;must be a URL with the host matching spec.host&#34;</TD></TR>
+<TR><TD><CODE>rule</CODE><BR /><I>string</I></TD><TD>Rule represents the expression which will be evaluated by CEL. ref: https://github.com/google/cel-spec The Rule is scoped to the location of the x-kubernetes-validations extension in the schema. The `self` variable in the CEL expression is bound to the scoped value. Example: - Rule scoped to the root of a resource with a status subresource: {&#34;rule&#34;: &#34;self.status.actual &lt;= self.spec.maxDesired&#34;}  If the Rule is scoped to an object with properties, the accessible properties of the object are field selectable via `self.field` and field presence can be checked via `has(self.field)`. Null valued fields are treated as absent fields in CEL expressions. If the Rule is scoped to an object with additionalProperties (i.e. a map) the value of the map are accessible via `self[mapKey]`, map containment can be checked via `mapKey in self` and all entries of the map are accessible via CEL macros and functions such as `self.all(...)`. If the Rule is scoped to an array, the elements of the array are accessible via `self[i]` and also by macros and functions. If the Rule is scoped to a scalar, `self` is bound to the scalar value. Examples: - Rule scoped to a map of objects: {&#34;rule&#34;: &#34;self.components[&#39;Widget&#39;].priority &lt; 10&#34;} - Rule scoped to a list of integers: {&#34;rule&#34;: &#34;self.values.all(value, value &gt;= 0 &amp;&amp; value &lt; 100)&#34;} - Rule scoped to a string value: {&#34;rule&#34;: &#34;self.startsWith(&#39;kube&#39;)&#34;}  The `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the object and from any x-kubernetes-embedded-resource annotated objects. No other metadata properties are accessible.  Unknown data preserved in custom resources via x-kubernetes-preserve-unknown-fields is not accessible in CEL expressions. This includes: - Unknown field values that are preserved by object schemas with x-kubernetes-preserve-unknown-fields. - Object properties where the property schema is of an &#34;unknown type&#34;. An &#34;unknown type&#34; is recursively defined as:   - A schema with no type and x-kubernetes-preserve-unknown-fields set to true   - An array where the items schema is of an &#34;unknown type&#34;   - An object where the additionalProperties schema is of an &#34;unknown type&#34;  Only property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible. Accessible property names are escaped according to the following rules when accessed in the expression: - &#39;__&#39; escapes to &#39;__underscores__&#39; - &#39;.&#39; escapes to &#39;__dot__&#39; - &#39;-&#39; escapes to &#39;__dash__&#39; - &#39;/&#39; escapes to &#39;__slash__&#39; - Property names that exactly match a CEL RESERVED keyword escape to &#39;__{keyword}__&#39;. The keywords are: 	  &#34;true&#34;, &#34;false&#34;, &#34;null&#34;, &#34;in&#34;, &#34;as&#34;, &#34;break&#34;, &#34;const&#34;, &#34;continue&#34;, &#34;else&#34;, &#34;for&#34;, &#34;function&#34;, &#34;if&#34;, 	  &#34;import&#34;, &#34;let&#34;, &#34;loop&#34;, &#34;package&#34;, &#34;namespace&#34;, &#34;return&#34;. Examples:   - Rule accessing a property named &#34;namespace&#34;: {&#34;rule&#34;: &#34;self.__namespace__ &gt; 0&#34;}   - Rule accessing a property named &#34;x-prop&#34;: {&#34;rule&#34;: &#34;self.x__dash__prop &gt; 0&#34;}   - Rule accessing a property named &#34;redact__d&#34;: {&#34;rule&#34;: &#34;self.redact__underscores__d &gt; 0&#34;}  Equality on arrays with x-kubernetes-list-type of &#39;set&#39; or &#39;map&#39; ignores element order, i.e. [1, 2] == [2, 1]. Concatenation on arrays with x-kubernetes-list-type use the semantics of the list type:   - &#39;set&#39;: `X + Y` performs a union where the array positions of all elements in `X` are preserved and     non-intersecting elements in `Y` are appended, retaining their partial order.   - &#39;map&#39;: `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values     are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with     non-intersecting keys are appended, retaining their partial order.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="volumeattachmentsource-v1-storage-k8s-io">VolumeAttachmentSource v1 storage.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>VolumeAttachmentSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>VolumeAttachmentSource represents a volume that should be attached. Right now only PersistenVolumes can be attached via external attacher, in future we may allow also inline volumes in pods. Exactly one member can be set.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volumeattachmentspec-v1-storage-k8s-io">VolumeAttachmentSpec [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>inlineVolumeSpec</CODE><BR /><I><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec</a></I></TD><TD>inlineVolumeSpec contains all the information necessary to attach a persistent volume defined by a pod&#39;s inline VolumeSource. This field is populated only for the CSIMigration feature. It contains translated fields from a pod&#39;s inline VolumeSource to a PersistentVolumeSpec. This field is beta-level and is only honored by servers that enabled the CSIMigration feature.</TD></TR>
+<TR><TD><CODE>persistentVolumeName</CODE><BR /><I>string</I></TD><TD>Name of the persistent volume to attach.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="volumedevice-v1-core">VolumeDevice v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>VolumeDevice</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>volumeDevice describes a mapping of a raw block device within a container.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#container-v1-core">Container [core/v1]</a></LI>
+  <LI><a href="#ephemeralcontainer-v1-core">EphemeralContainer [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>devicePath</CODE><BR /><I>string</I></TD><TD>devicePath is the path inside of the container that the device will be mapped to.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name must match the name of a persistentVolumeClaim in the pod</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="volumeerror-v1-storage-k8s-io">VolumeError v1 storage.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>VolumeError</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>VolumeError captures an error encountered during a volume operation.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#volumeattachmentstatus-v1-storage-k8s-io">VolumeAttachmentStatus [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>String detailing the error encountered during Attach or Detach operation. This string may be logged, so it should not contain sensitive information.</TD></TR>
+<TR><TD><CODE>time</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Time the error was encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="volumemount-v1-core">VolumeMount v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>VolumeMount</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>VolumeMount describes a mounting of a Volume within a container.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#container-v1-core">Container [core/v1]</a></LI>
+  <LI><a href="#ephemeralcontainer-v1-core">EphemeralContainer [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>mountPath</CODE><BR /><I>string</I></TD><TD>Path within the container at which the volume should be mounted.  Must not contain &#39;:&#39;.</TD></TR>
+<TR><TD><CODE>mountPropagation</CODE><BR /><I>string</I></TD><TD>mountPropagation determines how mounts are propagated from the host to container and the other way around. When not set, MountPropagationNone is used. This field is beta in 1.10.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>This must match the Name of a Volume.</TD></TR>
+<TR><TD><CODE>readOnly</CODE><BR /><I>boolean</I></TD><TD>Mounted read-only if true, read-write otherwise (false or unspecified). Defaults to false.</TD></TR>
+<TR><TD><CODE>subPath</CODE><BR /><I>string</I></TD><TD>Path within the volume from which the container&#39;s volume should be mounted. Defaults to &#34;&#34; (volume&#39;s root).</TD></TR>
+<TR><TD><CODE>subPathExpr</CODE><BR /><I>string</I></TD><TD>Expanded path within the volume from which the container&#39;s volume should be mounted. Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container&#39;s environment. Defaults to &#34;&#34; (volume&#39;s root). SubPathExpr and SubPath are mutually exclusive.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="volumenodeaffinity-v1-core">VolumeNodeAffinity v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>VolumeNodeAffinity</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>VolumeNodeAffinity defines constraints that limit what nodes this volume can be accessed from.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>required</CODE><BR /><I><a href="#nodeselector-v1-core">NodeSelector</a></I></TD><TD>required specifies hard node constraints that must be met.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="volumenoderesources-v1-storage-k8s-io">VolumeNodeResources v1 storage.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>VolumeNodeResources</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>VolumeNodeResources is a set of resource limits for scheduling of volumes.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csinodedriver-v1-storage-k8s-io">CSINodeDriver [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>count</CODE><BR /><I>integer</I></TD><TD>Maximum number of unique volumes managed by the CSI driver that can be used on a node. A volume that is both attached and mounted on a node is considered to be used once, not twice. The same rule applies for a unique volume that is shared among multiple pods on the same node. If this field is not specified, then the supported number of volumes on this node is unbounded.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="volumeprojection-v1-core">VolumeProjection v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>VolumeProjection</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Projection that may be projected along with other supported volume types</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#projectedvolumesource-v1-core">ProjectedVolumeSource [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>configMap</CODE><BR /><I><a href="#configmapprojection-v1-core">ConfigMapProjection</a></I></TD><TD>configMap information about the configMap data to project</TD></TR>
+<TR><TD><CODE>downwardAPI</CODE><BR /><I><a href="#downwardapiprojection-v1-core">DownwardAPIProjection</a></I></TD><TD>downwardAPI information about the downwardAPI data to project</TD></TR>
+<TR><TD><CODE>secret</CODE><BR /><I><a href="#secretprojection-v1-core">SecretProjection</a></I></TD><TD>secret information about the secret data to project</TD></TR>
+<TR><TD><CODE>serviceAccountToken</CODE><BR /><I><a href="#serviceaccounttokenprojection-v1-core">ServiceAccountTokenProjection</a></I></TD><TD>serviceAccountToken is information about the serviceAccountToken data to project</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="vspherevirtualdiskvolumesource-v1-core">VsphereVirtualDiskVolumeSource v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>VsphereVirtualDiskVolumeSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Represents a vSphere volume resource.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#persistentvolumespec-v1-core">PersistentVolumeSpec [core/v1]</a></LI>
+  <LI><a href="#volume-v1-core">Volume [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>fsType</CODE><BR /><I>string</I></TD><TD>fsType is filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. &#34;ext4&#34;, &#34;xfs&#34;, &#34;ntfs&#34;. Implicitly inferred to be &#34;ext4&#34; if unspecified.</TD></TR>
+<TR><TD><CODE>storagePolicyID</CODE><BR /><I>string</I></TD><TD>storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.</TD></TR>
+<TR><TD><CODE>storagePolicyName</CODE><BR /><I>string</I></TD><TD>storagePolicyName is the storage Policy Based Management (SPBM) profile name.</TD></TR>
+<TR><TD><CODE>volumePath</CODE><BR /><I>string</I></TD><TD>volumePath is the path that identifies vSphere volume vmdk</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watchevent-v1-meta">WatchEvent v1 meta</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>meta</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>WatchEvent</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>Event represents a single event to a watched resource.</P>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>object</CODE></TD><TD>Object is:  * If Type is Added or Modified: the new state of the object.  * If Type is Deleted: the state of the object immediately before deletion.  * If Type is Error: *Status is recommended; other types may make sense    depending on context.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="webhookclientconfig-v1-admissionregistration-k8s-io">WebhookClientConfig v1 admissionregistration.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>admissionregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>WebhookClientConfig</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>WebhookClientConfig contains the information to make a TLS connection with the webhook</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#mutatingwebhook-v1-admissionregistration-k8s-io">MutatingWebhook [admissionregistration/v1]</a></LI>
+  <LI><a href="#validatingwebhook-v1-admissionregistration-k8s-io">ValidatingWebhook [admissionregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>caBundle</CODE><BR /><I>string</I></TD><TD>`caBundle` is a PEM encoded CA bundle which will be used to validate the webhook&#39;s server certificate. If unspecified, system trust roots on the apiserver are used.</TD></TR>
+<TR><TD><CODE>service</CODE><BR /><I><a href="#servicereference-v1-admissionregistration-k8s-io">ServiceReference</a></I></TD><TD>`service` is a reference to the service for this webhook. Either `service` or `url` must be specified.  If the webhook is running within the cluster, then you should use `service`.</TD></TR>
+<TR><TD><CODE>url</CODE><BR /><I>string</I></TD><TD>`url` gives the location of the webhook, in standard URL form (`scheme://host:port/path`). Exactly one of `url` or `service` must be specified.  The `host` should not refer to a service running in the cluster; use the `service` field instead. The host might be resolved via external DNS in some apiservers (e.g., `kube-apiserver` cannot resolve in-cluster DNS as that would be a layering violation). `host` may also be an IP address.  Please note that using `localhost` or `127.0.0.1` as a `host` is risky unless you take great care to run this webhook on all hosts which run an apiserver which might need to make calls to this webhook. Such installs are likely to be non-portable, i.e., not easy to turn up in a new cluster.  The scheme must be &#34;https&#34;; the URL must begin with &#34;https://&#34;.  A path is optional, and if present may be any string permissible in a URL. You may use the path to pass an arbitrary string to the webhook, for example, a cluster identifier.  Attempting to use a user or basic auth e.g. &#34;user:password@&#34; is not allowed. Fragments (&#34;#...&#34;) and query parameters (&#34;?...&#34;) are not allowed, either.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="webhookconversion-v1-apiextensions-k8s-io">WebhookConversion v1 apiextensions.k8s.io</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>WebhookConversion</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>WebhookConversion describes how to call a conversion webhook</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#customresourceconversion-v1-apiextensions-k8s-io">CustomResourceConversion [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>clientConfig</CODE><BR /><I><a href="#webhookclientconfig-v1-apiextensions-k8s-io">WebhookClientConfig</a></I></TD><TD>clientConfig is the instructions for how to call the webhook if strategy is `Webhook`.</TD></TR>
+<TR><TD><CODE>conversionReviewVersions</CODE><BR /><I>string array</I></TD><TD>conversionReviewVersions is an ordered list of preferred `ConversionReview` versions the Webhook expects. The API server will use the first version in the list which it supports. If none of the versions specified in this list are supported by API server, conversion will fail for the custom resource. If a persisted Webhook configuration specifies allowed versions and does not include any versions known to the API Server, calls to the webhook will fail.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="weightedpodaffinityterm-v1-core">WeightedPodAffinityTerm v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>WeightedPodAffinityTerm</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podaffinity-v1-core">PodAffinity [core/v1]</a></LI>
+  <LI><a href="#podantiaffinity-v1-core">PodAntiAffinity [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>podAffinityTerm</CODE><BR /><I><a href="#podaffinityterm-v1-core">PodAffinityTerm</a></I></TD><TD>Required. A pod affinity term, associated with the corresponding weight.</TD></TR>
+<TR><TD><CODE>weight</CODE><BR /><I>integer</I></TD><TD>weight associated with matching the corresponding podAffinityTerm, in the range 1-100.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="windowssecuritycontextoptions-v1-core">WindowsSecurityContextOptions v1 core</H2>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>WindowsSecurityContextOptions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<P>WindowsSecurityContextOptions contain Windows-specific options and credentials.</P>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#podsecuritycontext-v1-core">PodSecurityContext [core/v1]</a></LI>
+  <LI><a href="#securitycontext-v1-core">SecurityContext [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>gmsaCredentialSpec</CODE><BR /><I>string</I></TD><TD>GMSACredentialSpec is where the GMSA admission webhook (https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the GMSA credential spec named by the GMSACredentialSpecName field.</TD></TR>
+<TR><TD><CODE>gmsaCredentialSpecName</CODE><BR /><I>string</I></TD><TD>GMSACredentialSpecName is the name of the GMSA credential spec to use.</TD></TR>
+<TR><TD><CODE>hostProcess</CODE><BR /><I>boolean</I></TD><TD>HostProcess determines if a container should be run as a &#39;Host Process&#39; container. This field is alpha-level and will only be honored by components that enable the WindowsHostProcessContainers feature flag. Setting this field without the feature flag will result in errors when validating the Pod. All of a Pod&#39;s containers must have the same effective HostProcess value (it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).  In addition, if HostProcess is true then HostNetwork must also be set to true.</TD></TR>
+<TR><TD><CODE>runAsUserName</CODE><BR /><I>string</I></TD><TD>The UserName in Windows to run the entrypoint of the container process. Defaults to the user specified in image metadata if unspecified. May also be set in PodSecurityContext. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="-strong-old-api-versions-strong-"><STRONG>OLD API VERSIONS</STRONG></H1>
+
+<P>This section contains older versions of resources shown above.</P>
+<H1 id="csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity v1beta1 storage.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>CSIStorageCapacity</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#csistoragecapacity-v1-storage-k8s-io">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csistoragecapacitylist-v1beta1-storage-k8s-io">CSIStorageCapacityList [storage/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>capacity</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>Capacity is the value reported by the CSI driver in its GetCapacityResponse for a GetCapacityRequest with topology and parameters that match the previous fields.  The semantic is currently (CSI spec 1.2) defined as: The available capacity, in bytes, of the storage that can be used to provision volumes. If not set, that information is currently unavailable.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>maximumVolumeSize</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>MaximumVolumeSize is the value reported by the CSI driver in its GetCapacityResponse for a GetCapacityRequest with topology and parameters that match the previous fields.  This is defined since CSI spec 1.4.0 as the largest size that may be used in a CreateVolumeRequest.capacity_range.required_bytes field to create a volume with the same parameters as those in GetCapacityRequest. The corresponding value in the Kubernetes API is ResourceRequirements.Requests in a volume claim.</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. The name has no particular meaning. It must be be a DNS subdomain (dots allowed, 253 characters). To ensure that there are no conflicts with other CSI drivers on the cluster, the recommendation is to use csisc-&lt;uuid&gt;, a generated name, or a reverse-domain name which ends with the unique CSI driver name.  Objects are namespaced.  More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>nodeTopology</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>NodeTopology defines which nodes have access to the storage for which capacity was reported. If not set, the storage is not accessible from any node in the cluster. If empty, the storage is accessible from all nodes. This field is immutable.</TD></TR>
+<TR><TD><CODE>storageClassName</CODE><BR /><I>string</I></TD><TD>The name of the StorageClass that the reported capacity applies to. It must meet the same requirements as the name of a StorageClass object (non-empty, DNS subdomain). If that object no longer exists, the CSIStorageCapacity object is obsolete and should be removed by its creator. This field is immutable.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="csistoragecapacitylist-v1beta1-storage-k8s-io">CSIStorageCapacityList v1beta1 storage</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a> array</I></TD><TD>Items is the list of CSIStorageCapacity objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-csistoragecapacity-v1beta1-storage-k8s-io">Create</H2>
+<P>create a CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-csistoragecapacity-v1beta1-storage-k8s-io">Patch</H2>
+<P>partially update the specified CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIStorageCapacity</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-csistoragecapacity-v1beta1-storage-k8s-io">Replace</H2>
+<P>replace the specified CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIStorageCapacity</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-csistoragecapacity-v1beta1-storage-k8s-io">Delete</H2>
+<P>delete a CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIStorageCapacity</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-csistoragecapacity-v1beta1-storage-k8s-io">Delete Collection</H2>
+<P>delete collection of CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-csistoragecapacity-v1beta1-storage-k8s-io">Read</H2>
+<P>read the specified CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIStorageCapacity</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacity-v1beta1-storage-k8s-io">CSIStorageCapacity</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-csistoragecapacity-v1beta1-storage-k8s-io">List</H2>
+<P>list or watch objects of kind CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1beta1/namespaces/{namespace}/csistoragecapacities</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacitylist-v1beta1-storage-k8s-io">CSIStorageCapacityList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io">List All Namespaces</H2>
+<P>list or watch objects of kind CSIStorageCapacity</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1beta1/csistoragecapacities</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#csistoragecapacitylist-v1beta1-storage-k8s-io">CSIStorageCapacityList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-csistoragecapacity-v1beta1-storage-k8s-io">Watch</H2>
+<P>watch changes to an object of kind CSIStorageCapacity. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1beta1/watch/namespaces/{namespace}/csistoragecapacities/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CSIStorageCapacity</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-csistoragecapacity-v1beta1-storage-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of CSIStorageCapacity. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1beta1/watch/namespaces/{namespace}/csistoragecapacities</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of CSIStorageCapacity. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/storage.k8s.io/v1beta1/watch/csistoragecapacities</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="containerresourcemetricsource-v2beta2-autoscaling">ContainerResourceMetricSource v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>ContainerResourceMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#containerresourcemetricsource-v2-autoscaling">v2</a>
+<a href="#containerresourcemetricsource-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2beta2-autoscaling">MetricSpec [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>container</CODE><BR /><I>string</I></TD><TD>container is the name of the container in the pods of the scaling target</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the resource in question.</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#metrictarget-v2beta2-autoscaling">MetricTarget</a></I></TD><TD>target specifies the target value for the given metric</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="containerresourcemetricsource-v2beta1-autoscaling">ContainerResourceMetricSource v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>ContainerResourceMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#containerresourcemetricsource-v2-autoscaling">v2</a>
+<a href="#containerresourcemetricsource-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2beta1-autoscaling">MetricSpec [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>container</CODE><BR /><I>string</I></TD><TD>container is the name of the container in the pods of the scaling target</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the resource in question.</TD></TR>
+<TR><TD><CODE>targetAverageUtilization</CODE><BR /><I>integer</I></TD><TD>targetAverageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.</TD></TR>
+<TR><TD><CODE>targetAverageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>targetAverageValue is the target value of the average of the resource metric across all relevant pods, as a raw value (instead of as a percentage of the request), similar to the &#34;pods&#34; metric source type.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="containerresourcemetricstatus-v2beta2-autoscaling">ContainerResourceMetricStatus v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>ContainerResourceMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#containerresourcemetricstatus-v2-autoscaling">v2</a>
+<a href="#containerresourcemetricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2beta2-autoscaling">MetricStatus [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>container</CODE><BR /><I>string</I></TD><TD>Container is the name of the container in the pods of the scaling target</TD></TR>
+<TR><TD><CODE>current</CODE><BR /><I><a href="#metricvaluestatus-v2beta2-autoscaling">MetricValueStatus</a></I></TD><TD>current contains the current value for the given metric</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the name of the resource in question.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="containerresourcemetricstatus-v2beta1-autoscaling">ContainerResourceMetricStatus v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>ContainerResourceMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#containerresourcemetricstatus-v2-autoscaling">v2</a>
+<a href="#containerresourcemetricstatus-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2beta1-autoscaling">MetricStatus [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>container</CODE><BR /><I>string</I></TD><TD>container is the name of the container in the pods of the scaling target</TD></TR>
+<TR><TD><CODE>currentAverageUtilization</CODE><BR /><I>integer</I></TD><TD>currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.  It will only be present if `targetAverageValue` was set in the corresponding metric specification.</TD></TR>
+<TR><TD><CODE>currentAverageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>currentAverageValue is the current value of the average of the resource metric across all relevant pods, as a raw value (instead of as a percentage of the request), similar to the &#34;pods&#34; metric source type. It will always be set, regardless of the corresponding metric specification.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the resource in question.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="cronjob-v1beta1-batch">CronJob v1beta1 batch</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>batch</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>CronJob</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#cronjob-v1-batch">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#cronjoblist-v1beta1-batch">CronJobList [batch/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#cronjobspec-v1beta1-batch">CronJobSpec</a></I></TD><TD>Specification of the desired behavior of a cron job, including the schedule. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#cronjobstatus-v1beta1-batch">CronJobStatus</a></I></TD><TD>Current status of a cron job. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="cronjobspec-v1beta1-batch">CronJobSpec v1beta1 batch</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#cronjob-v1beta1-batch">CronJob [batch/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>concurrencyPolicy</CODE><BR /><I>string</I></TD><TD>Specifies how to treat concurrent executions of a Job. Valid values are: - &#34;Allow&#34; (default): allows CronJobs to run concurrently; - &#34;Forbid&#34;: forbids concurrent runs, skipping next run if previous run hasn&#39;t finished yet; - &#34;Replace&#34;: cancels currently running job and replaces it with a new one</TD></TR>
+<TR><TD><CODE>failedJobsHistoryLimit</CODE><BR /><I>integer</I></TD><TD>The number of failed finished jobs to retain. This is a pointer to distinguish between explicit zero and not specified. Defaults to 1.</TD></TR>
+<TR><TD><CODE>jobTemplate</CODE><BR /><I><a href="#jobtemplatespec-v1beta1-batch">JobTemplateSpec</a></I></TD><TD>Specifies the job that will be created when executing a CronJob.</TD></TR>
+<TR><TD><CODE>schedule</CODE><BR /><I>string</I></TD><TD>The schedule in Cron format, see https://en.wikipedia.org/wiki/Cron.</TD></TR>
+<TR><TD><CODE>startingDeadlineSeconds</CODE><BR /><I>integer</I></TD><TD>Optional deadline in seconds for starting the job if it misses scheduled time for any reason.  Missed jobs executions will be counted as failed ones.</TD></TR>
+<TR><TD><CODE>successfulJobsHistoryLimit</CODE><BR /><I>integer</I></TD><TD>The number of successful finished jobs to retain. This is a pointer to distinguish between explicit zero and not specified. Defaults to 3.</TD></TR>
+<TR><TD><CODE>suspend</CODE><BR /><I>boolean</I></TD><TD>This flag tells the controller to suspend subsequent executions, it does not apply to already started executions.  Defaults to false.</TD></TR>
+<TR><TD><CODE>timeZone</CODE><BR /><I>string</I></TD><TD>The time zone for the given schedule, see https://en.wikipedia.org/wiki/List_of_tz_database_time_zones. If not specified, this will rely on the time zone of the kube-controller-manager process. ALPHA: This field is in alpha and must be enabled via the `CronJobTimeZone` feature gate.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="cronjobstatus-v1beta1-batch">CronJobStatus v1beta1 batch</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#cronjob-v1beta1-batch">CronJob [batch/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>active</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a> array</I></TD><TD>A list of pointers to currently running jobs.</TD></TR>
+<TR><TD><CODE>lastScheduleTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Information when was the last time the job was successfully scheduled.</TD></TR>
+<TR><TD><CODE>lastSuccessfulTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>Information when was the last time the job successfully completed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="cronjoblist-v1beta1-batch">CronJobList v1beta1 batch</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#cronjob-v1beta1-batch">CronJob</a> array</I></TD><TD>items is the list of CronJobs.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-cronjob-v1beta1-batch-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-cronjob-v1beta1-batch">Create</H2>
+<P>create a CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/batch/v1beta1/namespaces/{namespace}/cronjobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-cronjob-v1beta1-batch">Patch</H2>
+<P>partially update the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/batch/v1beta1/namespaces/{namespace}/cronjobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-cronjob-v1beta1-batch">Replace</H2>
+<P>replace the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/batch/v1beta1/namespaces/{namespace}/cronjobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-cronjob-v1beta1-batch">Delete</H2>
+<P>delete a CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/batch/v1beta1/namespaces/{namespace}/cronjobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-cronjob-v1beta1-batch">Delete Collection</H2>
+<P>delete collection of CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/batch/v1beta1/namespaces/{namespace}/cronjobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-cronjob-v1beta1-batch-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-cronjob-v1beta1-batch">Read</H2>
+<P>read the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1beta1/namespaces/{namespace}/cronjobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-cronjob-v1beta1-batch">List</H2>
+<P>list or watch objects of kind CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1beta1/namespaces/{namespace}/cronjobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjoblist-v1beta1-batch">CronJobList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-cronjob-v1beta1-batch">List All Namespaces</H2>
+<P>list or watch objects of kind CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1beta1/cronjobs</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjoblist-v1beta1-batch">CronJobList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-cronjob-v1beta1-batch">Watch</H2>
+<P>watch changes to an object of kind CronJob. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1beta1/watch/namespaces/{namespace}/cronjobs/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-cronjob-v1beta1-batch">Watch List</H2>
+<P>watch individual changes to a list of CronJob. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1beta1/watch/namespaces/{namespace}/cronjobs</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-cronjob-v1beta1-batch">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of CronJob. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1beta1/watch/cronjobs</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-cronjob-v1beta1-batch-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-cronjob-v1beta1-batch">Patch Status</H2>
+<P>partially update status of the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/batch/v1beta1/namespaces/{namespace}/cronjobs/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-cronjob-v1beta1-batch">Read Status</H2>
+<P>read status of the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/batch/v1beta1/namespaces/{namespace}/cronjobs/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-cronjob-v1beta1-batch">Replace Status</H2>
+<P>replace status of the specified CronJob</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/batch/v1beta1/namespaces/{namespace}/cronjobs/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the CronJob</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#cronjob-v1beta1-batch">CronJob</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="crossversionobjectreference-v1-autoscaling">CrossVersionObjectReference v1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>CrossVersionObjectReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#crossversionobjectreference-v2-autoscaling">v2</a>
+<a href="#crossversionobjectreference-v2beta2-autoscaling">v2beta2</a>
+<a href="#crossversionobjectreference-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerspec-v1-autoscaling">HorizontalPodAutoscalerSpec [autoscaling/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>API version of the referent</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds&#34;</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="crossversionobjectreference-v2beta2-autoscaling">CrossVersionObjectReference v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>CrossVersionObjectReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#crossversionobjectreference-v2-autoscaling">v2</a>
+<a href="#crossversionobjectreference-v1-autoscaling">v1</a>
+<a href="#crossversionobjectreference-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerspec-v2beta2-autoscaling">HorizontalPodAutoscalerSpec [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#objectmetricsource-v2beta2-autoscaling">ObjectMetricSource [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#objectmetricstatus-v2beta2-autoscaling">ObjectMetricStatus [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>API version of the referent</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds&#34;</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="crossversionobjectreference-v2beta1-autoscaling">CrossVersionObjectReference v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>CrossVersionObjectReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#crossversionobjectreference-v2-autoscaling">v2</a>
+<a href="#crossversionobjectreference-v1-autoscaling">v1</a>
+<a href="#crossversionobjectreference-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerspec-v2beta1-autoscaling">HorizontalPodAutoscalerSpec [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#objectmetricsource-v2beta1-autoscaling">ObjectMetricSource [autoscaling/v2beta1]</a></LI>
+  <LI><a href="#objectmetricstatus-v2beta1-autoscaling">ObjectMetricStatus [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>API version of the referent</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds&#34;</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="endpoint-v1beta1-discovery-k8s-io">Endpoint v1beta1 discovery.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>Endpoint</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#endpoint-v1-discovery-k8s-io">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice [discovery/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>addresses</CODE><BR /><I>string array</I></TD><TD>addresses of this endpoint. The contents of this field are interpreted according to the corresponding EndpointSlice addressType field. Consumers must handle different types of addresses in the context of their own capabilities. This must contain at least one address but no more than 100. These are all assumed to be fungible and clients may choose to only use the first element. Refer to: https://issue.k8s.io/106267</TD></TR>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#endpointconditions-v1beta1-discovery-k8s-io">EndpointConditions</a></I></TD><TD>conditions contains information about the current status of the endpoint.</TD></TR>
+<TR><TD><CODE>hints</CODE><BR /><I><a href="#endpointhints-v1beta1-discovery-k8s-io">EndpointHints</a></I></TD><TD>hints contains information associated with how an endpoint should be consumed.</TD></TR>
+<TR><TD><CODE>hostname</CODE><BR /><I>string</I></TD><TD>hostname of this endpoint. This field may be used by consumers of endpoints to distinguish endpoints from each other (e.g. in DNS names). Multiple endpoints which use the same hostname should be considered fungible (e.g. multiple A values in DNS). Must be lowercase and pass DNS Label (RFC 1123) validation.</TD></TR>
+<TR><TD><CODE>nodeName</CODE><BR /><I>string</I></TD><TD>nodeName represents the name of the Node hosting this endpoint. This can be used to determine endpoints local to a Node. This field can be enabled with the EndpointSliceNodeName feature gate.</TD></TR>
+<TR><TD><CODE>targetRef</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>targetRef is a reference to a Kubernetes object that represents this endpoint.</TD></TR>
+<TR><TD><CODE>topology</CODE><BR /><I>object</I></TD><TD>topology contains arbitrary topology information associated with the endpoint. These key/value pairs must conform with the label format. https://kubernetes.io/docs/concepts/overview/working-with-objects/labels Topology may include a maximum of 16 key/value pairs. This includes, but is not limited to the following well known keys: * kubernetes.io/hostname: the value indicates the hostname of the node   where the endpoint is located. This should match the corresponding   node label. * topology.kubernetes.io/zone: the value indicates the zone where the   endpoint is located. This should match the corresponding node label. * topology.kubernetes.io/region: the value indicates the region where the   endpoint is located. This should match the corresponding node label. This field is deprecated and will be removed in future api versions.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="endpointconditions-v1beta1-discovery-k8s-io">EndpointConditions v1beta1 discovery.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>EndpointConditions</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#endpointconditions-v1-discovery-k8s-io">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpoint-v1beta1-discovery-k8s-io">Endpoint [discovery/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>ready</CODE><BR /><I>boolean</I></TD><TD>ready indicates that this endpoint is prepared to receive traffic, according to whatever system is managing the endpoint. A nil value indicates an unknown state. In most cases consumers should interpret this unknown state as ready. For compatibility reasons, ready should never be &#34;true&#34; for terminating endpoints.</TD></TR>
+<TR><TD><CODE>serving</CODE><BR /><I>boolean</I></TD><TD>serving is identical to ready except that it is set regardless of the terminating state of endpoints. This condition should be set to true for a ready endpoint that is terminating. If nil, consumers should defer to the ready condition. This field can be enabled with the EndpointSliceTerminatingCondition feature gate.</TD></TR>
+<TR><TD><CODE>terminating</CODE><BR /><I>boolean</I></TD><TD>terminating indicates that this endpoint is terminating. A nil value indicates an unknown state. Consumers should interpret this unknown state to mean that the endpoint is not terminating. This field can be enabled with the EndpointSliceTerminatingCondition feature gate.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="endpointhints-v1beta1-discovery-k8s-io">EndpointHints v1beta1 discovery.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>EndpointHints</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#endpointhints-v1-discovery-k8s-io">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpoint-v1beta1-discovery-k8s-io">Endpoint [discovery/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>forZones</CODE><BR /><I><a href="#forzone-v1beta1-discovery-k8s-io">ForZone</a> array</I></TD><TD>forZones indicates the zone(s) this endpoint should be consumed by to enable topology aware routing. May contain a maximum of 8 entries.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="endpointport-v1-discovery-k8s-io">EndpointPort v1 discovery.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EndpointPort</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#endpointport-v1beta1-discovery-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpointslice-v1-discovery-k8s-io">EndpointSlice [discovery/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>appProtocol</CODE><BR /><I>string</I></TD><TD>The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and https://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>The name of this port. All ports in an EndpointSlice must have a unique name. If the EndpointSlice is dervied from a Kubernetes service, this corresponds to the Service.ports[].name. Name must either be an empty string or pass DNS_LABEL validation: * must be no more than 63 characters long. * must consist of lower case alphanumeric characters or &#39;-&#39;. * must start and end with an alphanumeric character. Default is empty string.</TD></TR>
+<TR><TD><CODE>port</CODE><BR /><I>integer</I></TD><TD>The port number of the endpoint. If this is not specified, ports are not restricted and must be interpreted in the context of the specific consumer.</TD></TR>
+<TR><TD><CODE>protocol</CODE><BR /><I>string</I></TD><TD>The IP protocol for this port. Must be UDP, TCP, or SCTP. Default is TCP.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="endpointport-v1beta1-discovery-k8s-io">EndpointPort v1beta1 discovery.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>EndpointPort</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#endpointport-v1-core">v1</a>
+<a href="#endpointport-v1-discovery-k8s-io">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice [discovery/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>appProtocol</CODE><BR /><I>string</I></TD><TD>The application protocol for this port. This field follows standard Kubernetes label syntax. Un-prefixed names are reserved for IANA standard service names (as per RFC-6335 and https://www.iana.org/assignments/service-names). Non-standard protocols should use prefixed names such as mycompany.com/my-custom-protocol.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>The name of this port. All ports in an EndpointSlice must have a unique name. If the EndpointSlice is dervied from a Kubernetes service, this corresponds to the Service.ports[].name. Name must either be an empty string or pass DNS_LABEL validation: * must be no more than 63 characters long. * must consist of lower case alphanumeric characters or &#39;-&#39;. * must start and end with an alphanumeric character. Default is empty string.</TD></TR>
+<TR><TD><CODE>port</CODE><BR /><I>integer</I></TD><TD>The port number of the endpoint. If this is not specified, ports are not restricted and must be interpreted in the context of the specific consumer.</TD></TR>
+<TR><TD><CODE>protocol</CODE><BR /><I>string</I></TD><TD>The IP protocol for this port. Must be UDP, TCP, or SCTP. Default is TCP.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="endpointslice-v1beta1-discovery-k8s-io">EndpointSlice v1beta1 discovery.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>EndpointSlice</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#endpointslice-v1-discovery-k8s-io">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpointslicelist-v1beta1-discovery-k8s-io">EndpointSliceList [discovery/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>addressType</CODE><BR /><I>string</I></TD><TD>addressType specifies the type of address carried by this EndpointSlice. All addresses in this slice must be the same type. This field is immutable after creation. The following address types are currently supported: * IPv4: Represents an IPv4 Address. * IPv6: Represents an IPv6 Address. * FQDN: Represents a Fully Qualified Domain Name.</TD></TR>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>endpoints</CODE><BR /><I><a href="#endpoint-v1beta1-discovery-k8s-io">Endpoint</a> array</I></TD><TD>endpoints is a list of unique endpoints in this slice. Each slice may include a maximum of 1000 endpoints.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata.</TD></TR>
+<TR><TD><CODE>ports</CODE><BR /><I><a href="#endpointport-v1beta1-discovery-k8s-io">EndpointPort</a> array</I></TD><TD>ports specifies the list of network ports exposed by each endpoint in this slice. Each port must have a unique name. When ports is empty, it indicates that there are no defined ports. When a port is defined with a nil port value, it indicates &#34;all ports&#34;. Each slice may include a maximum of 100 ports.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="endpointslicelist-v1beta1-discovery-k8s-io">EndpointSliceList v1beta1 discovery</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice</a> array</I></TD><TD>List of endpoint slices</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-endpointslice-v1beta1-discovery-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-endpointslice-v1beta1-discovery-k8s-io">Create</H2>
+<P>create an EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/discovery.k8s.io/v1beta1/namespaces/{namespace}/endpointslices</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-endpointslice-v1beta1-discovery-k8s-io">Patch</H2>
+<P>partially update the specified EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/discovery.k8s.io/v1beta1/namespaces/{namespace}/endpointslices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the EndpointSlice</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-endpointslice-v1beta1-discovery-k8s-io">Replace</H2>
+<P>replace the specified EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/discovery.k8s.io/v1beta1/namespaces/{namespace}/endpointslices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the EndpointSlice</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-endpointslice-v1beta1-discovery-k8s-io">Delete</H2>
+<P>delete an EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/discovery.k8s.io/v1beta1/namespaces/{namespace}/endpointslices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the EndpointSlice</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-endpointslice-v1beta1-discovery-k8s-io">Delete Collection</H2>
+<P>delete collection of EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/discovery.k8s.io/v1beta1/namespaces/{namespace}/endpointslices</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-endpointslice-v1beta1-discovery-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-endpointslice-v1beta1-discovery-k8s-io">Read</H2>
+<P>read the specified EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1beta1/namespaces/{namespace}/endpointslices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the EndpointSlice</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslice-v1beta1-discovery-k8s-io">EndpointSlice</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-endpointslice-v1beta1-discovery-k8s-io">List</H2>
+<P>list or watch objects of kind EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1beta1/namespaces/{namespace}/endpointslices</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslicelist-v1beta1-discovery-k8s-io">EndpointSliceList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-endpointslice-v1beta1-discovery-k8s-io">List All Namespaces</H2>
+<P>list or watch objects of kind EndpointSlice</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1beta1/endpointslices</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#endpointslicelist-v1beta1-discovery-k8s-io">EndpointSliceList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-endpointslice-v1beta1-discovery-k8s-io">Watch</H2>
+<P>watch changes to an object of kind EndpointSlice. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1beta1/watch/namespaces/{namespace}/endpointslices/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the EndpointSlice</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-endpointslice-v1beta1-discovery-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of EndpointSlice. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1beta1/watch/namespaces/{namespace}/endpointslices</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-endpointslice-v1beta1-discovery-k8s-io">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of EndpointSlice. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/discovery.k8s.io/v1beta1/watch/endpointslices</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="event-v1-core">Event v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Event</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#event-v1beta1-events-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#eventlist-v1-core">EventList [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>action</CODE><BR /><I>string</I></TD><TD>What action was taken/failed regarding to the Regarding object.</TD></TR>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>count</CODE><BR /><I>integer</I></TD><TD>The number of times this event has occurred.</TD></TR>
+<TR><TD><CODE>eventTime</CODE><BR /><I><a href="#microtime-v1-meta">MicroTime</a></I></TD><TD>Time when this Event was first observed.</TD></TR>
+<TR><TD><CODE>firstTimestamp</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>The time at which the event was first recorded. (Time of server receipt is in TypeMeta.)</TD></TR>
+<TR><TD><CODE>involvedObject</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>The object that this event is about.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>lastTimestamp</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>The time at which the most recent occurrence of this event was recorded.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>A human-readable description of the status of this operation.</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>This should be a short, machine understandable string that gives the reason for the transition into the object&#39;s current status.</TD></TR>
+<TR><TD><CODE>related</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>Optional secondary object for more complex actions.</TD></TR>
+<TR><TD><CODE>reportingComponent</CODE><BR /><I>string</I></TD><TD>Name of the controller that emitted this Event, e.g. `kubernetes.io/kubelet`.</TD></TR>
+<TR><TD><CODE>reportingInstance</CODE><BR /><I>string</I></TD><TD>ID of the controller instance, e.g. `kubelet-xyzf`.</TD></TR>
+<TR><TD><CODE>series</CODE><BR /><I><a href="#eventseries-v1-core">EventSeries</a></I></TD><TD>Data about the Event series this event represents or nil if it&#39;s a singleton Event.</TD></TR>
+<TR><TD><CODE>source</CODE><BR /><I><a href="#eventsource-v1-core">EventSource</a></I></TD><TD>The component reporting this event. Should be a short machine understandable string.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type of this event (Normal, Warning), new types could be added in the future</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="eventlist-v1-core">EventList v1 core</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#event-v1-core">Event</a> array</I></TD><TD>List of events</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-event-v1-core-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-event-v1-core">Create</H2>
+<P>create an Event</P>
+<H3>HTTP Request</H3>
+<CODE>POST /api/v1/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#event-v1-core">Event</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1-core">Event</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#event-v1-core">Event</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#event-v1-core">Event</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-event-v1-core">Patch</H2>
+<P>partially update the specified Event</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /api/v1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1-core">Event</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#event-v1-core">Event</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-event-v1-core">Replace</H2>
+<P>replace the specified Event</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /api/v1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#event-v1-core">Event</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1-core">Event</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#event-v1-core">Event</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-event-v1-core">Delete</H2>
+<P>delete an Event</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-event-v1-core">Delete Collection</H2>
+<P>delete collection of Event</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /api/v1/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-event-v1-core-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-event-v1-core">Read</H2>
+<P>read the specified Event</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1-core">Event</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-event-v1-core">List</H2>
+<P>list or watch objects of kind Event</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#eventlist-v1-core">EventList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-event-v1-core">List All Namespaces</H2>
+<P>list or watch objects of kind Event</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/events</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#eventlist-v1-core">EventList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-event-v1-core">Watch</H2>
+<P>watch changes to an object of kind Event. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-event-v1-core">Watch List</H2>
+<P>watch individual changes to a list of Event. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-event-v1-core">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Event. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /api/v1/watch/events</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="event-v1beta1-events-k8s-io">Event v1beta1 events.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>events.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>Event</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#event-v1-events-k8s-io">v1</a>
+<a href="#event-v1-core">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#eventlist-v1beta1-events-k8s-io">EventList [events/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>action</CODE><BR /><I>string</I></TD><TD>action is what action was taken/failed regarding to the regarding object. It is machine-readable. This field can have at most 128 characters.</TD></TR>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>deprecatedCount</CODE><BR /><I>integer</I></TD><TD>deprecatedCount is the deprecated field assuring backward compatibility with core.v1 Event type.</TD></TR>
+<TR><TD><CODE>deprecatedFirstTimestamp</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>deprecatedFirstTimestamp is the deprecated field assuring backward compatibility with core.v1 Event type.</TD></TR>
+<TR><TD><CODE>deprecatedLastTimestamp</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>deprecatedLastTimestamp is the deprecated field assuring backward compatibility with core.v1 Event type.</TD></TR>
+<TR><TD><CODE>deprecatedSource</CODE><BR /><I><a href="#eventsource-v1-core">EventSource</a></I></TD><TD>deprecatedSource is the deprecated field assuring backward compatibility with core.v1 Event type.</TD></TR>
+<TR><TD><CODE>eventTime</CODE><BR /><I><a href="#microtime-v1-meta">MicroTime</a></I></TD><TD>eventTime is the time when this Event was first observed. It is required.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>note</CODE><BR /><I>string</I></TD><TD>note is a human-readable description of the status of this operation. Maximal length of the note is 1kB, but libraries should be prepared to handle values up to 64kB.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>reason is why the action was taken. It is human-readable. This field can have at most 128 characters.</TD></TR>
+<TR><TD><CODE>regarding</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>regarding contains the object this Event is about. In most cases it&#39;s an Object reporting controller implements, e.g. ReplicaSetController implements ReplicaSets and this event is emitted because it acts on some changes in a ReplicaSet object.</TD></TR>
+<TR><TD><CODE>related</CODE><BR /><I><a href="#objectreference-v1-core">ObjectReference</a></I></TD><TD>related is the optional secondary object for more complex actions. E.g. when regarding object triggers a creation or deletion of related object.</TD></TR>
+<TR><TD><CODE>reportingController</CODE><BR /><I>string</I></TD><TD>reportingController is the name of the controller that emitted this Event, e.g. `kubernetes.io/kubelet`. This field cannot be empty for new Events.</TD></TR>
+<TR><TD><CODE>reportingInstance</CODE><BR /><I>string</I></TD><TD>reportingInstance is the ID of the controller instance, e.g. `kubelet-xyzf`. This field cannot be empty for new Events and it can have at most 128 characters.</TD></TR>
+<TR><TD><CODE>series</CODE><BR /><I><a href="#eventseries-v1beta1-events-k8s-io">EventSeries</a></I></TD><TD>series is data about the Event series this event represents or nil if it&#39;s a singleton Event.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type is the type of this event (Normal, Warning), new types could be added in the future. It is machine-readable.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="eventlist-v1beta1-events-k8s-io">EventList v1beta1 events</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#event-v1beta1-events-k8s-io">Event</a> array</I></TD><TD>items is a list of schema objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-event-v1beta1-events-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-event-v1beta1-events-k8s-io">Create</H2>
+<P>create an Event</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/events.k8s.io/v1beta1/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#event-v1beta1-events-k8s-io">Event</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1beta1-events-k8s-io">Event</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#event-v1beta1-events-k8s-io">Event</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#event-v1beta1-events-k8s-io">Event</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-event-v1beta1-events-k8s-io">Patch</H2>
+<P>partially update the specified Event</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/events.k8s.io/v1beta1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1beta1-events-k8s-io">Event</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#event-v1beta1-events-k8s-io">Event</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-event-v1beta1-events-k8s-io">Replace</H2>
+<P>replace the specified Event</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/events.k8s.io/v1beta1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#event-v1beta1-events-k8s-io">Event</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1beta1-events-k8s-io">Event</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#event-v1beta1-events-k8s-io">Event</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-event-v1beta1-events-k8s-io">Delete</H2>
+<P>delete an Event</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/events.k8s.io/v1beta1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-event-v1beta1-events-k8s-io">Delete Collection</H2>
+<P>delete collection of Event</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/events.k8s.io/v1beta1/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-event-v1beta1-events-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-event-v1beta1-events-k8s-io">Read</H2>
+<P>read the specified Event</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1beta1/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#event-v1beta1-events-k8s-io">Event</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-event-v1beta1-events-k8s-io">List</H2>
+<P>list or watch objects of kind Event</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1beta1/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#eventlist-v1beta1-events-k8s-io">EventList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-event-v1beta1-events-k8s-io">List All Namespaces</H2>
+<P>list or watch objects of kind Event</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1beta1/events</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#eventlist-v1beta1-events-k8s-io">EventList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-event-v1beta1-events-k8s-io">Watch</H2>
+<P>watch changes to an object of kind Event. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1beta1/watch/namespaces/{namespace}/events/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the Event</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-event-v1beta1-events-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of Event. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1beta1/watch/namespaces/{namespace}/events</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-event-v1beta1-events-k8s-io">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of Event. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/events.k8s.io/v1beta1/watch/events</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="eventseries-v1-core">EventSeries v1 core</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>core</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>EventSeries</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#eventseries-v1beta1-events-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#event-v1-core">Event [core/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>count</CODE><BR /><I>integer</I></TD><TD>Number of occurrences in this series up to the last heartbeat time</TD></TR>
+<TR><TD><CODE>lastObservedTime</CODE><BR /><I><a href="#microtime-v1-meta">MicroTime</a></I></TD><TD>Time of the last occurrence observed</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="eventseries-v1beta1-events-k8s-io">EventSeries v1beta1 events.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>events.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>EventSeries</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#eventseries-v1-events-k8s-io">v1</a>
+<a href="#eventseries-v1-core">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#event-v1beta1-events-k8s-io">Event [events/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>count</CODE><BR /><I>integer</I></TD><TD>count is the number of occurrences in this series up to the last heartbeat time.</TD></TR>
+<TR><TD><CODE>lastObservedTime</CODE><BR /><I><a href="#microtime-v1-meta">MicroTime</a></I></TD><TD>lastObservedTime is the time when last Event from the series was seen before last heartbeat.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="externalmetricsource-v2beta2-autoscaling">ExternalMetricSource v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>ExternalMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#externalmetricsource-v2-autoscaling">v2</a>
+<a href="#externalmetricsource-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2beta2-autoscaling">MetricSpec [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2beta2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#metrictarget-v2beta2-autoscaling">MetricTarget</a></I></TD><TD>target specifies the target value for the given metric</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="externalmetricsource-v2beta1-autoscaling">ExternalMetricSource v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>ExternalMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#externalmetricsource-v2-autoscaling">v2</a>
+<a href="#externalmetricsource-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2beta1-autoscaling">MetricSpec [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>metricName</CODE><BR /><I>string</I></TD><TD>metricName is the name of the metric in question.</TD></TR>
+<TR><TD><CODE>metricSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>metricSelector is used to identify a specific time series within a given metric.</TD></TR>
+<TR><TD><CODE>targetAverageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>targetAverageValue is the target per-pod value of global metric (as a quantity). Mutually exclusive with TargetValue.</TD></TR>
+<TR><TD><CODE>targetValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>targetValue is the target value of the metric (as a quantity). Mutually exclusive with TargetAverageValue.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="externalmetricstatus-v2beta2-autoscaling">ExternalMetricStatus v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>ExternalMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#externalmetricstatus-v2-autoscaling">v2</a>
+<a href="#externalmetricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2beta2-autoscaling">MetricStatus [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>current</CODE><BR /><I><a href="#metricvaluestatus-v2beta2-autoscaling">MetricValueStatus</a></I></TD><TD>current contains the current value for the given metric</TD></TR>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2beta2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="externalmetricstatus-v2beta1-autoscaling">ExternalMetricStatus v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>ExternalMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#externalmetricstatus-v2-autoscaling">v2</a>
+<a href="#externalmetricstatus-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2beta1-autoscaling">MetricStatus [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>currentAverageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>currentAverageValue is the current value of metric averaged over autoscaled pods.</TD></TR>
+<TR><TD><CODE>currentValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>currentValue is the current value of the metric (as a quantity)</TD></TR>
+<TR><TD><CODE>metricName</CODE><BR /><I>string</I></TD><TD>metricName is the name of a metric used for autoscaling in metric system.</TD></TR>
+<TR><TD><CODE>metricSelector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>metricSelector is used to identify a specific time series within a given metric.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="flowdistinguishermethod-v1beta1-flowcontrol-apiserver-k8s-io">FlowDistinguisherMethod v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>FlowDistinguisherMethod</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#flowdistinguishermethod-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschemaspec-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaSpec [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>`type` is the type of flow distinguisher method The supported types are &#34;ByUser&#34; and &#34;ByNamespace&#34;. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>FlowSchema</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#flowschema-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschemalist-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaList [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>`metadata` is the standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#flowschemaspec-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaSpec</a></I></TD><TD>`spec` is the specification of the desired behavior of a FlowSchema. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#flowschemastatus-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaStatus</a></I></TD><TD>`status` is the current status of a FlowSchema. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="flowschemaspec-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaSpec v1beta1 flowcontrol</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>distinguisherMethod</CODE><BR /><I><a href="#flowdistinguishermethod-v1beta1-flowcontrol-apiserver-k8s-io">FlowDistinguisherMethod</a></I></TD><TD>`distinguisherMethod` defines how to compute the flow distinguisher for requests that match this schema. `nil` specifies that the distinguisher is disabled and thus will always be the empty string.</TD></TR>
+<TR><TD><CODE>matchingPrecedence</CODE><BR /><I>integer</I></TD><TD>`matchingPrecedence` is used to choose among the FlowSchemas that match a given request. The chosen FlowSchema is among those with the numerically lowest (which we take to be logically highest) MatchingPrecedence.  Each MatchingPrecedence value must be ranged in [1,10000]. Note that if the precedence is not specified, it will be set to 1000 as default.</TD></TR>
+<TR><TD><CODE>priorityLevelConfiguration</CODE><BR /><I><a href="#prioritylevelconfigurationreference-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationReference</a></I></TD><TD>`priorityLevelConfiguration` should reference a PriorityLevelConfiguration in the cluster. If the reference cannot be resolved, the FlowSchema will be ignored and marked as invalid in its status. Required.</TD></TR>
+<TR><TD><CODE>rules</CODE><BR /><I><a href="#policyruleswithsubjects-v1beta1-flowcontrol-apiserver-k8s-io">PolicyRulesWithSubjects</a> array</I></TD><TD>`rules` describes which requests will match this flow schema. This FlowSchema matches a request if and only if at least one member of rules matches the request. if it is an empty slice, there will be no requests matching the FlowSchema.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="flowschemastatus-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaStatus v1beta1 flowcontrol</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#flowschemacondition-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaCondition</a> array</I></TD><TD>`conditions` is a list of the current states of FlowSchema.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="flowschemalist-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaList v1beta1 flowcontrol</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a> array</I></TD><TD>`items` is a list of FlowSchemas.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>`metadata` is the standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Create</H2>
+<P>create a FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Patch</H2>
+<P>partially update the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Replace</H2>
+<P>replace the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Delete</H2>
+<P>delete a FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Delete Collection</H2>
+<P>delete collection of FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Read</H2>
+<P>read the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">List</H2>
+<P>list or watch objects of kind FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschemalist-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Watch</H2>
+<P>watch changes to an object of kind FlowSchema. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/watch/flowschemas/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of FlowSchema. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/watch/flowschemas</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Patch Status</H2>
+<P>partially update status of the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Read Status</H2>
+<P>read status of the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io">Replace Status</H2>
+<P>replace status of the specified FlowSchema</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/flowschemas/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the FlowSchema</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#flowschema-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchema</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="flowschemacondition-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaCondition v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>FlowSchemaCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#flowschemacondition-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschemastatus-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaStatus [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>`lastTransitionTime` is the last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>`message` is a human-readable message indicating details about last transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>`reason` is a unique, one-word, CamelCase reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>`status` is the status of the condition. Can be True, False, Unknown. Required.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>`type` is the type of the condition. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="forzone-v1beta1-discovery-k8s-io">ForZone v1beta1 discovery.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>discovery.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>ForZone</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#forzone-v1-discovery-k8s-io">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#endpointhints-v1beta1-discovery-k8s-io">EndpointHints [discovery/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name represents the name of the zone.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="groupsubject-v1beta1-flowcontrol-apiserver-k8s-io">GroupSubject v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>GroupSubject</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#groupsubject-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#subject-v1beta1-flowcontrol-apiserver-k8s-io">Subject [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the user group that matches, or &#34;*&#34; to match all user groups. See https://github.com/kubernetes/apiserver/blob/master/pkg/authentication/user/user.go for some well-known group names. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="hpascalingpolicy-v2beta2-autoscaling">HPAScalingPolicy v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>HPAScalingPolicy</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#hpascalingpolicy-v2-autoscaling">v2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#hpascalingrules-v2beta2-autoscaling">HPAScalingRules [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>periodSeconds</CODE><BR /><I>integer</I></TD><TD>PeriodSeconds specifies the window of time for which the policy should hold true. PeriodSeconds must be greater than zero and less than or equal to 1800 (30 min).</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>Type is used to specify the scaling policy.</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I>integer</I></TD><TD>Value contains the amount of change which is permitted by the policy. It must be greater than zero</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="hpascalingrules-v2beta2-autoscaling">HPAScalingRules v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>HPAScalingRules</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#hpascalingrules-v2-autoscaling">v2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerbehavior-v2beta2-autoscaling">HorizontalPodAutoscalerBehavior [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policies</CODE><BR /><I><a href="#hpascalingpolicy-v2beta2-autoscaling">HPAScalingPolicy</a> array</I></TD><TD>policies is a list of potential scaling polices which can be used during scaling. At least one policy must be specified, otherwise the HPAScalingRules will be discarded as invalid</TD></TR>
+<TR><TD><CODE>selectPolicy</CODE><BR /><I>string</I></TD><TD>selectPolicy is used to specify which policy should be used. If not set, the default value MaxPolicySelect is used.</TD></TR>
+<TR><TD><CODE>stabilizationWindowSeconds</CODE><BR /><I>integer</I></TD><TD>StabilizationWindowSeconds is the number of seconds for which past recommendations should be considered while scaling up or scaling down. StabilizationWindowSeconds must be greater than or equal to zero and less than or equal to 3600 (one hour). If not set, use the default values: - For scale up: 0 (i.e. no stabilization is done). - For scale down: 300 (i.e. the stabilization window is 300 seconds long).</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler v1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>HorizontalPodAutoscaler</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#horizontalpodautoscaler-v2-autoscaling">v2</a>
+<a href="#horizontalpodautoscaler-v2beta2-autoscaling">v2beta2</a>
+<a href="#horizontalpodautoscaler-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerlist-v1-autoscaling">HorizontalPodAutoscalerList [autoscaling/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#horizontalpodautoscalerspec-v1-autoscaling">HorizontalPodAutoscalerSpec</a></I></TD><TD>behaviour of autoscaler. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#horizontalpodautoscalerstatus-v1-autoscaling">HorizontalPodAutoscalerStatus</a></I></TD><TD>current information about the autoscaler.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerspec-v1-autoscaling">HorizontalPodAutoscalerSpec v1 autoscaling</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler [autoscaling/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>maxReplicas</CODE><BR /><I>integer</I></TD><TD>upper limit for the number of pods that can be set by the autoscaler; cannot be smaller than MinReplicas.</TD></TR>
+<TR><TD><CODE>minReplicas</CODE><BR /><I>integer</I></TD><TD>minReplicas is the lower limit for the number of replicas to which the autoscaler can scale down.  It defaults to 1 pod.  minReplicas is allowed to be 0 if the alpha feature gate HPAScaleToZero is enabled and at least one Object or External metric is configured.  Scaling is active as long as at least one metric value is available.</TD></TR>
+<TR><TD><CODE>scaleTargetRef</CODE><BR /><I><a href="#crossversionobjectreference-v1-autoscaling">CrossVersionObjectReference</a></I></TD><TD>reference to scaled resource; horizontal pod autoscaler will learn the current resource consumption and will set the desired number of pods by using its Scale subresource.</TD></TR>
+<TR><TD><CODE>targetCPUUtilizationPercentage</CODE><BR /><I>integer</I></TD><TD>target average CPU utilization (represented as a percentage of requested CPU) over all the pods; if not specified the default autoscaling policy will be used.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerstatus-v1-autoscaling">HorizontalPodAutoscalerStatus v1 autoscaling</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler [autoscaling/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>currentCPUUtilizationPercentage</CODE><BR /><I>integer</I></TD><TD>current average CPU utilization over all pods, represented as a percentage of requested CPU, e.g. 70 means that an average pod is using now 70% of its requested CPU.</TD></TR>
+<TR><TD><CODE>currentReplicas</CODE><BR /><I>integer</I></TD><TD>current number of replicas of pods managed by this autoscaler.</TD></TR>
+<TR><TD><CODE>desiredReplicas</CODE><BR /><I>integer</I></TD><TD>desired number of replicas of pods managed by this autoscaler.</TD></TR>
+<TR><TD><CODE>lastScaleTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>last time the HorizontalPodAutoscaler scaled the number of pods; used by the autoscaler to control how often the number of pods is changed.</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>most recent generation observed by this autoscaler.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerlist-v1-autoscaling">HorizontalPodAutoscalerList v1 autoscaling</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a> array</I></TD><TD>list of horizontal pod autoscaler objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-horizontalpodautoscaler-v1-autoscaling-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-horizontalpodautoscaler-v1-autoscaling">Create</H2>
+<P>create a HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-horizontalpodautoscaler-v1-autoscaling">Patch</H2>
+<P>partially update the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-horizontalpodautoscaler-v1-autoscaling">Replace</H2>
+<P>replace the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-horizontalpodautoscaler-v1-autoscaling">Delete</H2>
+<P>delete a HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-horizontalpodautoscaler-v1-autoscaling">Delete Collection</H2>
+<P>delete collection of HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-horizontalpodautoscaler-v1-autoscaling-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-horizontalpodautoscaler-v1-autoscaling">Read</H2>
+<P>read the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-horizontalpodautoscaler-v1-autoscaling">List</H2>
+<P>list or watch objects of kind HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscalerlist-v1-autoscaling">HorizontalPodAutoscalerList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-horizontalpodautoscaler-v1-autoscaling">List All Namespaces</H2>
+<P>list or watch objects of kind HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v1/horizontalpodautoscalers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscalerlist-v1-autoscaling">HorizontalPodAutoscalerList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-horizontalpodautoscaler-v1-autoscaling">Watch</H2>
+<P>watch changes to an object of kind HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v1/watch/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-horizontalpodautoscaler-v1-autoscaling">Watch List</H2>
+<P>watch individual changes to a list of HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v1/watch/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-horizontalpodautoscaler-v1-autoscaling">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v1/watch/horizontalpodautoscalers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-horizontalpodautoscaler-v1-autoscaling-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-horizontalpodautoscaler-v1-autoscaling">Patch Status</H2>
+<P>partially update status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-horizontalpodautoscaler-v1-autoscaling">Read Status</H2>
+<P>read status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-horizontalpodautoscaler-v1-autoscaling">Replace Status</H2>
+<P>replace status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>HorizontalPodAutoscaler</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#horizontalpodautoscaler-v2-autoscaling">v2</a>
+<a href="#horizontalpodautoscaler-v1-autoscaling">v1</a>
+<a href="#horizontalpodautoscaler-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerlist-v2beta2-autoscaling">HorizontalPodAutoscalerList [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>metadata is the standard object metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#horizontalpodautoscalerspec-v2beta2-autoscaling">HorizontalPodAutoscalerSpec</a></I></TD><TD>spec is the specification for the behaviour of the autoscaler. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#horizontalpodautoscalerstatus-v2beta2-autoscaling">HorizontalPodAutoscalerStatus</a></I></TD><TD>status is the current information about the autoscaler.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerspec-v2beta2-autoscaling">HorizontalPodAutoscalerSpec v2beta2 autoscaling</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>behavior</CODE><BR /><I><a href="#horizontalpodautoscalerbehavior-v2beta2-autoscaling">HorizontalPodAutoscalerBehavior</a></I></TD><TD>behavior configures the scaling behavior of the target in both Up and Down directions (scaleUp and scaleDown fields respectively). If not set, the default HPAScalingRules for scale up and scale down are used.</TD></TR>
+<TR><TD><CODE>maxReplicas</CODE><BR /><I>integer</I></TD><TD>maxReplicas is the upper limit for the number of replicas to which the autoscaler can scale up. It cannot be less that minReplicas.</TD></TR>
+<TR><TD><CODE>metrics</CODE><BR /><I><a href="#metricspec-v2beta2-autoscaling">MetricSpec</a> array</I></TD><TD>metrics contains the specifications for which to use to calculate the desired replica count (the maximum replica count across all metrics will be used).  The desired replica count is calculated multiplying the ratio between the target value and the current value by the current number of pods.  Ergo, metrics used must decrease as the pod count is increased, and vice-versa.  See the individual metric source types for more information about how each type of metric must respond. If not set, the default metric will be set to 80% average CPU utilization.</TD></TR>
+<TR><TD><CODE>minReplicas</CODE><BR /><I>integer</I></TD><TD>minReplicas is the lower limit for the number of replicas to which the autoscaler can scale down.  It defaults to 1 pod.  minReplicas is allowed to be 0 if the alpha feature gate HPAScaleToZero is enabled and at least one Object or External metric is configured.  Scaling is active as long as at least one metric value is available.</TD></TR>
+<TR><TD><CODE>scaleTargetRef</CODE><BR /><I><a href="#crossversionobjectreference-v2beta2-autoscaling">CrossVersionObjectReference</a></I></TD><TD>scaleTargetRef points to the target resource to scale, and is used to the pods for which metrics should be collected, as well as to actually change the replica count.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerstatus-v2beta2-autoscaling">HorizontalPodAutoscalerStatus v2beta2 autoscaling</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#horizontalpodautoscalercondition-v2beta2-autoscaling">HorizontalPodAutoscalerCondition</a> array</I></TD><TD>conditions is the set of conditions required for this autoscaler to scale its target, and indicates whether or not those conditions are met.</TD></TR>
+<TR><TD><CODE>currentMetrics</CODE><BR /><I><a href="#metricstatus-v2beta2-autoscaling">MetricStatus</a> array</I></TD><TD>currentMetrics is the last read state of the metrics used by this autoscaler.</TD></TR>
+<TR><TD><CODE>currentReplicas</CODE><BR /><I>integer</I></TD><TD>currentReplicas is current number of replicas of pods managed by this autoscaler, as last seen by the autoscaler.</TD></TR>
+<TR><TD><CODE>desiredReplicas</CODE><BR /><I>integer</I></TD><TD>desiredReplicas is the desired number of replicas of pods managed by this autoscaler, as last calculated by the autoscaler.</TD></TR>
+<TR><TD><CODE>lastScaleTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>lastScaleTime is the last time the HorizontalPodAutoscaler scaled the number of pods, used by the autoscaler to control how often the number of pods is changed.</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>observedGeneration is the most recent generation observed by this autoscaler.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerlist-v2beta2-autoscaling">HorizontalPodAutoscalerList v2beta2 autoscaling</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a> array</I></TD><TD>items is the list of horizontal pod autoscaler objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>metadata is the standard list metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-horizontalpodautoscaler-v2beta2-autoscaling">Create</H2>
+<P>create a HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-horizontalpodautoscaler-v2beta2-autoscaling">Patch</H2>
+<P>partially update the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-horizontalpodautoscaler-v2beta2-autoscaling">Replace</H2>
+<P>replace the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-horizontalpodautoscaler-v2beta2-autoscaling">Delete</H2>
+<P>delete a HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-horizontalpodautoscaler-v2beta2-autoscaling">Delete Collection</H2>
+<P>delete collection of HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-horizontalpodautoscaler-v2beta2-autoscaling">Read</H2>
+<P>read the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-horizontalpodautoscaler-v2beta2-autoscaling">List</H2>
+<P>list or watch objects of kind HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscalerlist-v2beta2-autoscaling">HorizontalPodAutoscalerList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-horizontalpodautoscaler-v2beta2-autoscaling">List All Namespaces</H2>
+<P>list or watch objects of kind HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta2/horizontalpodautoscalers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscalerlist-v2beta2-autoscaling">HorizontalPodAutoscalerList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-horizontalpodautoscaler-v2beta2-autoscaling">Watch</H2>
+<P>watch changes to an object of kind HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta2/watch/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-horizontalpodautoscaler-v2beta2-autoscaling">Watch List</H2>
+<P>watch individual changes to a list of HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta2/watch/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-horizontalpodautoscaler-v2beta2-autoscaling">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta2/watch/horizontalpodautoscalers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-horizontalpodautoscaler-v2beta2-autoscaling">Patch Status</H2>
+<P>partially update status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-horizontalpodautoscaler-v2beta2-autoscaling">Read Status</H2>
+<P>read status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-horizontalpodautoscaler-v2beta2-autoscaling">Replace Status</H2>
+<P>replace status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/autoscaling/v2beta2/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2beta2-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>HorizontalPodAutoscaler</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#horizontalpodautoscaler-v2-autoscaling">v2</a>
+<a href="#horizontalpodautoscaler-v1-autoscaling">v1</a>
+<a href="#horizontalpodautoscaler-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerlist-v2beta1-autoscaling">HorizontalPodAutoscalerList [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>metadata is the standard object metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#horizontalpodautoscalerspec-v2beta1-autoscaling">HorizontalPodAutoscalerSpec</a></I></TD><TD>spec is the specification for the behaviour of the autoscaler. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#horizontalpodautoscalerstatus-v2beta1-autoscaling">HorizontalPodAutoscalerStatus</a></I></TD><TD>status is the current information about the autoscaler.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerspec-v2beta1-autoscaling">HorizontalPodAutoscalerSpec v2beta1 autoscaling</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>maxReplicas</CODE><BR /><I>integer</I></TD><TD>maxReplicas is the upper limit for the number of replicas to which the autoscaler can scale up. It cannot be less that minReplicas.</TD></TR>
+<TR><TD><CODE>metrics</CODE><BR /><I><a href="#metricspec-v2beta1-autoscaling">MetricSpec</a> array</I></TD><TD>metrics contains the specifications for which to use to calculate the desired replica count (the maximum replica count across all metrics will be used).  The desired replica count is calculated multiplying the ratio between the target value and the current value by the current number of pods.  Ergo, metrics used must decrease as the pod count is increased, and vice-versa.  See the individual metric source types for more information about how each type of metric must respond.</TD></TR>
+<TR><TD><CODE>minReplicas</CODE><BR /><I>integer</I></TD><TD>minReplicas is the lower limit for the number of replicas to which the autoscaler can scale down.  It defaults to 1 pod.  minReplicas is allowed to be 0 if the alpha feature gate HPAScaleToZero is enabled and at least one Object or External metric is configured.  Scaling is active as long as at least one metric value is available.</TD></TR>
+<TR><TD><CODE>scaleTargetRef</CODE><BR /><I><a href="#crossversionobjectreference-v2beta1-autoscaling">CrossVersionObjectReference</a></I></TD><TD>scaleTargetRef points to the target resource to scale, and is used to the pods for which metrics should be collected, as well as to actually change the replica count.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerstatus-v2beta1-autoscaling">HorizontalPodAutoscalerStatus v2beta1 autoscaling</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#horizontalpodautoscalercondition-v2beta1-autoscaling">HorizontalPodAutoscalerCondition</a> array</I></TD><TD>conditions is the set of conditions required for this autoscaler to scale its target, and indicates whether or not those conditions are met.</TD></TR>
+<TR><TD><CODE>currentMetrics</CODE><BR /><I><a href="#metricstatus-v2beta1-autoscaling">MetricStatus</a> array</I></TD><TD>currentMetrics is the last read state of the metrics used by this autoscaler.</TD></TR>
+<TR><TD><CODE>currentReplicas</CODE><BR /><I>integer</I></TD><TD>currentReplicas is current number of replicas of pods managed by this autoscaler, as last seen by the autoscaler.</TD></TR>
+<TR><TD><CODE>desiredReplicas</CODE><BR /><I>integer</I></TD><TD>desiredReplicas is the desired number of replicas of pods managed by this autoscaler, as last calculated by the autoscaler.</TD></TR>
+<TR><TD><CODE>lastScaleTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>lastScaleTime is the last time the HorizontalPodAutoscaler scaled the number of pods, used by the autoscaler to control how often the number of pods is changed.</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>observedGeneration is the most recent generation observed by this autoscaler.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="horizontalpodautoscalerlist-v2beta1-autoscaling">HorizontalPodAutoscalerList v2beta1 autoscaling</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a> array</I></TD><TD>items is the list of horizontal pod autoscaler objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>metadata is the standard list metadata.</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-horizontalpodautoscaler-v2beta1-autoscaling">Create</H2>
+<P>create a HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/autoscaling/v2beta1/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-horizontalpodautoscaler-v2beta1-autoscaling">Patch</H2>
+<P>partially update the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/autoscaling/v2beta1/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-horizontalpodautoscaler-v2beta1-autoscaling">Replace</H2>
+<P>replace the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/autoscaling/v2beta1/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-horizontalpodautoscaler-v2beta1-autoscaling">Delete</H2>
+<P>delete a HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/autoscaling/v2beta1/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-horizontalpodautoscaler-v2beta1-autoscaling">Delete Collection</H2>
+<P>delete collection of HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/autoscaling/v2beta1/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-horizontalpodautoscaler-v2beta1-autoscaling">Read</H2>
+<P>read the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta1/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-horizontalpodautoscaler-v2beta1-autoscaling">List</H2>
+<P>list or watch objects of kind HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta1/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscalerlist-v2beta1-autoscaling">HorizontalPodAutoscalerList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-horizontalpodautoscaler-v2beta1-autoscaling">List All Namespaces</H2>
+<P>list or watch objects of kind HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta1/horizontalpodautoscalers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscalerlist-v2beta1-autoscaling">HorizontalPodAutoscalerList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-horizontalpodautoscaler-v2beta1-autoscaling">Watch</H2>
+<P>watch changes to an object of kind HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta1/watch/namespaces/{namespace}/horizontalpodautoscalers/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-horizontalpodautoscaler-v2beta1-autoscaling">Watch List</H2>
+<P>watch individual changes to a list of HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta1/watch/namespaces/{namespace}/horizontalpodautoscalers</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-horizontalpodautoscaler-v2beta1-autoscaling">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta1/watch/horizontalpodautoscalers</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-horizontalpodautoscaler-v2beta1-autoscaling">Patch Status</H2>
+<P>partially update status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/autoscaling/v2beta1/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-horizontalpodautoscaler-v2beta1-autoscaling">Read Status</H2>
+<P>read status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/autoscaling/v2beta1/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-horizontalpodautoscaler-v2beta1-autoscaling">Replace Status</H2>
+<P>replace status of the specified HorizontalPodAutoscaler</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/autoscaling/v2beta1/namespaces/{namespace}/horizontalpodautoscalers/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the HorizontalPodAutoscaler</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#horizontalpodautoscaler-v2beta1-autoscaling">HorizontalPodAutoscaler</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="horizontalpodautoscalerbehavior-v2beta2-autoscaling">HorizontalPodAutoscalerBehavior v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>HorizontalPodAutoscalerBehavior</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#horizontalpodautoscalerbehavior-v2-autoscaling">v2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerspec-v2beta2-autoscaling">HorizontalPodAutoscalerSpec [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>scaleDown</CODE><BR /><I><a href="#hpascalingrules-v2beta2-autoscaling">HPAScalingRules</a></I></TD><TD>scaleDown is scaling policy for scaling Down. If not set, the default value is to allow to scale down to minReplicas pods, with a 300 second stabilization window (i.e., the highest recommendation for the last 300sec is used).</TD></TR>
+<TR><TD><CODE>scaleUp</CODE><BR /><I><a href="#hpascalingrules-v2beta2-autoscaling">HPAScalingRules</a></I></TD><TD>scaleUp is scaling policy for scaling Up. If not set, the default value is the higher of:   * increase no more than 4 pods per 60 seconds   * double the number of pods per 60 seconds No stabilization is used.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="horizontalpodautoscalercondition-v2beta2-autoscaling">HorizontalPodAutoscalerCondition v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>HorizontalPodAutoscalerCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#horizontalpodautoscalercondition-v2-autoscaling">v2</a>
+<a href="#horizontalpodautoscalercondition-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerstatus-v2beta2-autoscaling">HorizontalPodAutoscalerStatus [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>lastTransitionTime is the last time the condition transitioned from one status to another</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>message is a human-readable explanation containing details about the transition</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>reason is the reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>status is the status of the condition (True, False, Unknown)</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type describes the current condition</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="horizontalpodautoscalercondition-v2beta1-autoscaling">HorizontalPodAutoscalerCondition v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>HorizontalPodAutoscalerCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#horizontalpodautoscalercondition-v2-autoscaling">v2</a>
+<a href="#horizontalpodautoscalercondition-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerstatus-v2beta1-autoscaling">HorizontalPodAutoscalerStatus [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>lastTransitionTime is the last time the condition transitioned from one status to another</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>message is a human-readable explanation containing details about the transition</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>reason is the reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>status is the status of the condition (True, False, Unknown)</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type describes the current condition</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="jobtemplatespec-v1beta1-batch">JobTemplateSpec v1beta1 batch</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>batch</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>JobTemplateSpec</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#jobtemplatespec-v1-batch">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#cronjobspec-v1beta1-batch">CronJobSpec [batch/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata of the jobs created from this template. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#jobspec-v1-batch">JobSpec</a></I></TD><TD>Specification of the desired behavior of the job. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="limitresponse-v1beta1-flowcontrol-apiserver-k8s-io">LimitResponse v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>LimitResponse</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#limitresponse-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#limitedprioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">LimitedPriorityLevelConfiguration [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>queuing</CODE><BR /><I><a href="#queuingconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">QueuingConfiguration</a></I></TD><TD>`queuing` holds the configuration parameters for queuing. This field may be non-empty only if `type` is `&#34;Queue&#34;`.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>`type` is &#34;Queue&#34; or &#34;Reject&#34;. &#34;Queue&#34; means that requests that can not be executed upon arrival are held in a queue until they can be executed or a queuing limit is reached. &#34;Reject&#34; means that requests that can not be executed upon arrival are rejected. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="limitedprioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">LimitedPriorityLevelConfiguration v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>LimitedPriorityLevelConfiguration</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#limitedprioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#prioritylevelconfigurationspec-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationSpec [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>assuredConcurrencyShares</CODE><BR /><I>integer</I></TD><TD>`assuredConcurrencyShares` (ACS) configures the execution limit, which is a limit on the number of requests of this priority level that may be exeucting at a given time.  ACS must be a positive number. The server&#39;s concurrency limit (SCL) is divided among the concurrency-controlled priority levels in proportion to their assured concurrency shares. This produces the assured concurrency value (ACV) --- the number of requests that may be executing at a time --- for each such priority level:              ACV(l) = ceil( SCL * ACS(l) / ( sum[priority levels k] ACS(k) ) )  bigger numbers of ACS mean more reserved concurrent requests (at the expense of every other PL). This field has a default value of 30.</TD></TR>
+<TR><TD><CODE>limitResponse</CODE><BR /><I><a href="#limitresponse-v1beta1-flowcontrol-apiserver-k8s-io">LimitResponse</a></I></TD><TD>`limitResponse` indicates what to do with requests that can not be executed right now</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="metricidentifier-v2beta2-autoscaling">MetricIdentifier v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>MetricIdentifier</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metricidentifier-v2-autoscaling">v2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#externalmetricsource-v2beta2-autoscaling">ExternalMetricSource [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#externalmetricstatus-v2beta2-autoscaling">ExternalMetricStatus [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#objectmetricsource-v2beta2-autoscaling">ObjectMetricSource [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#objectmetricstatus-v2beta2-autoscaling">ObjectMetricStatus [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#podsmetricsource-v2beta2-autoscaling">PodsMetricSource [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#podsmetricstatus-v2beta2-autoscaling">PodsMetricStatus [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the given metric</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="metricspec-v2beta2-autoscaling">MetricSpec v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>MetricSpec</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metricspec-v2-autoscaling">v2</a>
+<a href="#metricspec-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerspec-v2beta2-autoscaling">HorizontalPodAutoscalerSpec [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>containerResource</CODE><BR /><I><a href="#containerresourcemetricsource-v2beta2-autoscaling">ContainerResourceMetricSource</a></I></TD><TD>container resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing a single container in each pod of the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source. This is an alpha feature and can be enabled by the HPAContainerMetrics feature flag.</TD></TR>
+<TR><TD><CODE>external</CODE><BR /><I><a href="#externalmetricsource-v2beta2-autoscaling">ExternalMetricSource</a></I></TD><TD>external refers to a global metric that is not associated with any Kubernetes object. It allows autoscaling based on information coming from components running outside of cluster (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).</TD></TR>
+<TR><TD><CODE>object</CODE><BR /><I><a href="#objectmetricsource-v2beta2-autoscaling">ObjectMetricSource</a></I></TD><TD>object refers to a metric describing a single kubernetes object (for example, hits-per-second on an Ingress object).</TD></TR>
+<TR><TD><CODE>pods</CODE><BR /><I><a href="#podsmetricsource-v2beta2-autoscaling">PodsMetricSource</a></I></TD><TD>pods refers to a metric describing each pod in the current scale target (for example, transactions-processed-per-second).  The values will be averaged together before being compared to the target value.</TD></TR>
+<TR><TD><CODE>resource</CODE><BR /><I><a href="#resourcemetricsource-v2beta2-autoscaling">ResourceMetricSource</a></I></TD><TD>resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type is the type of metric source.  It should be one of &#34;ContainerResource&#34;, &#34;External&#34;, &#34;Object&#34;, &#34;Pods&#34; or &#34;Resource&#34;, each mapping to a matching field in the object. Note: &#34;ContainerResource&#34; type is available on when the feature-gate HPAContainerMetrics is enabled</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="metricspec-v2beta1-autoscaling">MetricSpec v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>MetricSpec</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metricspec-v2-autoscaling">v2</a>
+<a href="#metricspec-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerspec-v2beta1-autoscaling">HorizontalPodAutoscalerSpec [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>containerResource</CODE><BR /><I><a href="#containerresourcemetricsource-v2beta1-autoscaling">ContainerResourceMetricSource</a></I></TD><TD>container resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing a single container in each pod of the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source. This is an alpha feature and can be enabled by the HPAContainerMetrics feature flag.</TD></TR>
+<TR><TD><CODE>external</CODE><BR /><I><a href="#externalmetricsource-v2beta1-autoscaling">ExternalMetricSource</a></I></TD><TD>external refers to a global metric that is not associated with any Kubernetes object. It allows autoscaling based on information coming from components running outside of cluster (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).</TD></TR>
+<TR><TD><CODE>object</CODE><BR /><I><a href="#objectmetricsource-v2beta1-autoscaling">ObjectMetricSource</a></I></TD><TD>object refers to a metric describing a single kubernetes object (for example, hits-per-second on an Ingress object).</TD></TR>
+<TR><TD><CODE>pods</CODE><BR /><I><a href="#podsmetricsource-v2beta1-autoscaling">PodsMetricSource</a></I></TD><TD>pods refers to a metric describing each pod in the current scale target (for example, transactions-processed-per-second).  The values will be averaged together before being compared to the target value.</TD></TR>
+<TR><TD><CODE>resource</CODE><BR /><I><a href="#resourcemetricsource-v2beta1-autoscaling">ResourceMetricSource</a></I></TD><TD>resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type is the type of metric source.  It should be one of &#34;ContainerResource&#34;, &#34;External&#34;, &#34;Object&#34;, &#34;Pods&#34; or &#34;Resource&#34;, each mapping to a matching field in the object. Note: &#34;ContainerResource&#34; type is available on when the feature-gate HPAContainerMetrics is enabled</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="metricstatus-v2beta2-autoscaling">MetricStatus v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>MetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metricstatus-v2-autoscaling">v2</a>
+<a href="#metricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerstatus-v2beta2-autoscaling">HorizontalPodAutoscalerStatus [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>containerResource</CODE><BR /><I><a href="#containerresourcemetricstatus-v2beta2-autoscaling">ContainerResourceMetricStatus</a></I></TD><TD>container resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing a single container in each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.</TD></TR>
+<TR><TD><CODE>external</CODE><BR /><I><a href="#externalmetricstatus-v2beta2-autoscaling">ExternalMetricStatus</a></I></TD><TD>external refers to a global metric that is not associated with any Kubernetes object. It allows autoscaling based on information coming from components running outside of cluster (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).</TD></TR>
+<TR><TD><CODE>object</CODE><BR /><I><a href="#objectmetricstatus-v2beta2-autoscaling">ObjectMetricStatus</a></I></TD><TD>object refers to a metric describing a single kubernetes object (for example, hits-per-second on an Ingress object).</TD></TR>
+<TR><TD><CODE>pods</CODE><BR /><I><a href="#podsmetricstatus-v2beta2-autoscaling">PodsMetricStatus</a></I></TD><TD>pods refers to a metric describing each pod in the current scale target (for example, transactions-processed-per-second).  The values will be averaged together before being compared to the target value.</TD></TR>
+<TR><TD><CODE>resource</CODE><BR /><I><a href="#resourcemetricstatus-v2beta2-autoscaling">ResourceMetricStatus</a></I></TD><TD>resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type is the type of metric source.  It will be one of &#34;ContainerResource&#34;, &#34;External&#34;, &#34;Object&#34;, &#34;Pods&#34; or &#34;Resource&#34;, each corresponds to a matching field in the object. Note: &#34;ContainerResource&#34; type is available on when the feature-gate HPAContainerMetrics is enabled</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="metricstatus-v2beta1-autoscaling">MetricStatus v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>MetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metricstatus-v2-autoscaling">v2</a>
+<a href="#metricstatus-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#horizontalpodautoscalerstatus-v2beta1-autoscaling">HorizontalPodAutoscalerStatus [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>containerResource</CODE><BR /><I><a href="#containerresourcemetricstatus-v2beta1-autoscaling">ContainerResourceMetricStatus</a></I></TD><TD>container resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing a single container in each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.</TD></TR>
+<TR><TD><CODE>external</CODE><BR /><I><a href="#externalmetricstatus-v2beta1-autoscaling">ExternalMetricStatus</a></I></TD><TD>external refers to a global metric that is not associated with any Kubernetes object. It allows autoscaling based on information coming from components running outside of cluster (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).</TD></TR>
+<TR><TD><CODE>object</CODE><BR /><I><a href="#objectmetricstatus-v2beta1-autoscaling">ObjectMetricStatus</a></I></TD><TD>object refers to a metric describing a single kubernetes object (for example, hits-per-second on an Ingress object).</TD></TR>
+<TR><TD><CODE>pods</CODE><BR /><I><a href="#podsmetricstatus-v2beta1-autoscaling">PodsMetricStatus</a></I></TD><TD>pods refers to a metric describing each pod in the current scale target (for example, transactions-processed-per-second).  The values will be averaged together before being compared to the target value.</TD></TR>
+<TR><TD><CODE>resource</CODE><BR /><I><a href="#resourcemetricstatus-v2beta1-autoscaling">ResourceMetricStatus</a></I></TD><TD>resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the &#34;pods&#34; source.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type is the type of metric source.  It will be one of &#34;ContainerResource&#34;, &#34;External&#34;, &#34;Object&#34;, &#34;Pods&#34; or &#34;Resource&#34;, each corresponds to a matching field in the object. Note: &#34;ContainerResource&#34; type is available on when the feature-gate HPAContainerMetrics is enabled</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="metrictarget-v2beta2-autoscaling">MetricTarget v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>MetricTarget</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metrictarget-v2-autoscaling">v2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#containerresourcemetricsource-v2beta2-autoscaling">ContainerResourceMetricSource [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#externalmetricsource-v2beta2-autoscaling">ExternalMetricSource [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#objectmetricsource-v2beta2-autoscaling">ObjectMetricSource [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#podsmetricsource-v2beta2-autoscaling">PodsMetricSource [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#resourcemetricsource-v2beta2-autoscaling">ResourceMetricSource [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>averageUtilization</CODE><BR /><I>integer</I></TD><TD>averageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods. Currently only valid for Resource metric source type</TD></TR>
+<TR><TD><CODE>averageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>averageValue is the target value of the average of the metric across all relevant pods (as a quantity)</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>type represents whether the metric type is Utilization, Value, or AverageValue</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>value is the target value of the metric (as a quantity).</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="metricvaluestatus-v2beta2-autoscaling">MetricValueStatus v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>MetricValueStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#metricvaluestatus-v2-autoscaling">v2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#containerresourcemetricstatus-v2beta2-autoscaling">ContainerResourceMetricStatus [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#externalmetricstatus-v2beta2-autoscaling">ExternalMetricStatus [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#objectmetricstatus-v2beta2-autoscaling">ObjectMetricStatus [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#podsmetricstatus-v2beta2-autoscaling">PodsMetricStatus [autoscaling/v2beta2]</a></LI>
+  <LI><a href="#resourcemetricstatus-v2beta2-autoscaling">ResourceMetricStatus [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>averageUtilization</CODE><BR /><I>integer</I></TD><TD>currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.</TD></TR>
+<TR><TD><CODE>averageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>averageValue is the current value of the average of the metric across all relevant pods (as a quantity)</TD></TR>
+<TR><TD><CODE>value</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>value is the current value of the metric (as a quantity).</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="nonresourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io">NonResourcePolicyRule v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>NonResourcePolicyRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#nonresourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#policyruleswithsubjects-v1beta1-flowcontrol-apiserver-k8s-io">PolicyRulesWithSubjects [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nonResourceURLs</CODE><BR /><I>string array</I></TD><TD>`nonResourceURLs` is a set of url prefixes that a user should have access to and may not be empty. For example:   - &#34;/healthz&#34; is legal   - &#34;/hea*&#34; is illegal   - &#34;/hea&#34; is legal but matches nothing   - &#34;/hea/*&#34; also matches nothing   - &#34;/healthz/*&#34; matches all per-component health checks. &#34;*&#34; matches all non-resource urls. if it is present, it must be the only entry. Required.</TD></TR>
+<TR><TD><CODE>verbs</CODE><BR /><I>string array</I></TD><TD>`verbs` is a list of matching verbs and may not be empty. &#34;*&#34; matches all verbs. If it is present, it must be the only entry. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="objectmetricsource-v2beta2-autoscaling">ObjectMetricSource v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>ObjectMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#objectmetricsource-v2-autoscaling">v2</a>
+<a href="#objectmetricsource-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2beta2-autoscaling">MetricSpec [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>describedObject</CODE><BR /><I><a href="#crossversionobjectreference-v2beta2-autoscaling">CrossVersionObjectReference</a></I></TD><TD></TD></TR>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2beta2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#metrictarget-v2beta2-autoscaling">MetricTarget</a></I></TD><TD>target specifies the target value for the given metric</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="objectmetricsource-v2beta1-autoscaling">ObjectMetricSource v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>ObjectMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#objectmetricsource-v2-autoscaling">v2</a>
+<a href="#objectmetricsource-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2beta1-autoscaling">MetricSpec [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>averageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>averageValue is the target value of the average of the metric across all relevant pods (as a quantity)</TD></TR>
+<TR><TD><CODE>metricName</CODE><BR /><I>string</I></TD><TD>metricName is the name of the metric in question.</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping When unset, just the metricName will be used to gather metrics.</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#crossversionobjectreference-v2beta1-autoscaling">CrossVersionObjectReference</a></I></TD><TD>target is the described Kubernetes object.</TD></TR>
+<TR><TD><CODE>targetValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>targetValue is the target value of the metric (as a quantity).</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="objectmetricstatus-v2beta2-autoscaling">ObjectMetricStatus v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>ObjectMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#objectmetricstatus-v2-autoscaling">v2</a>
+<a href="#objectmetricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2beta2-autoscaling">MetricStatus [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>current</CODE><BR /><I><a href="#metricvaluestatus-v2beta2-autoscaling">MetricValueStatus</a></I></TD><TD>current contains the current value for the given metric</TD></TR>
+<TR><TD><CODE>describedObject</CODE><BR /><I><a href="#crossversionobjectreference-v2beta2-autoscaling">CrossVersionObjectReference</a></I></TD><TD></TD></TR>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2beta2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="objectmetricstatus-v2beta1-autoscaling">ObjectMetricStatus v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>ObjectMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#objectmetricstatus-v2-autoscaling">v2</a>
+<a href="#objectmetricstatus-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2beta1-autoscaling">MetricStatus [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>averageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>averageValue is the current value of the average of the metric across all relevant pods (as a quantity)</TD></TR>
+<TR><TD><CODE>currentValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>currentValue is the current value of the metric (as a quantity).</TD></TR>
+<TR><TD><CODE>metricName</CODE><BR /><I>string</I></TD><TD>metricName is the name of the metric in question.</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>selector is the string-encoded form of a standard kubernetes label selector for the given metric When set in the ObjectMetricSource, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#crossversionobjectreference-v2beta1-autoscaling">CrossVersionObjectReference</a></I></TD><TD>target is the described Kubernetes object.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="overhead-v1beta1-node-k8s-io">Overhead v1beta1 node.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>node.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>Overhead</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#overhead-v1-node-k8s-io">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass [node/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>podFixed</CODE><BR /><I>object</I></TD><TD>PodFixed represents the fixed resource overhead associated with running a pod.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="poddisruptionbudget-v1beta1-policy">PodDisruptionBudget v1beta1 policy</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>policy</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>PodDisruptionBudget</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#poddisruptionbudget-v1-policy">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#poddisruptionbudgetlist-v1beta1-policy">PodDisruptionBudgetList [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#poddisruptionbudgetspec-v1beta1-policy">PodDisruptionBudgetSpec</a></I></TD><TD>Specification of the desired behavior of the PodDisruptionBudget.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#poddisruptionbudgetstatus-v1beta1-policy">PodDisruptionBudgetStatus</a></I></TD><TD>Most recently observed status of the PodDisruptionBudget.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="poddisruptionbudgetspec-v1beta1-policy">PodDisruptionBudgetSpec v1beta1 policy</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>maxUnavailable</CODE></TD><TD>An eviction is allowed if at most &#34;maxUnavailable&#34; pods selected by &#34;selector&#34; are unavailable after the eviction, i.e. even in absence of the evicted pod. For example, one can prevent all voluntary evictions by specifying 0. This is a mutually exclusive setting with &#34;minAvailable&#34;.</TD></TR>
+<TR><TD><CODE>minAvailable</CODE></TD><TD>An eviction is allowed if at least &#34;minAvailable&#34; pods selected by &#34;selector&#34; will still be available after the eviction, i.e. even in the absence of the evicted pod.  So for example you can prevent all voluntary evictions by specifying &#34;100%&#34;.</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>Label query over pods whose evictions are managed by the disruption budget. A null selector selects no pods. An empty selector ({}) also selects no pods, which differs from standard behavior of selecting all pods. In policy/v1, an empty selector will select all pods in the namespace.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="poddisruptionbudgetstatus-v1beta1-policy">PodDisruptionBudgetStatus v1beta1 policy</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget [policy/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#condition-v1-meta">Condition</a> array</I><BR /><B>patch strategy</B>: <I>merge</I><BR /><B>patch merge key</B>: <I>type</I></TD><TD>Conditions contain conditions for PDB. The disruption controller sets the DisruptionAllowed condition. The following are known values for the reason field (additional reasons could be added in the future): - SyncFailed: The controller encountered an error and wasn&#39;t able to compute               the number of allowed disruptions. Therefore no disruptions are               allowed and the status of the condition will be False. - InsufficientPods: The number of pods are either at or below the number                     required by the PodDisruptionBudget. No disruptions are                     allowed and the status of the condition will be False. - SufficientPods: There are more pods than required by the PodDisruptionBudget.                   The condition will be True, and the number of allowed                   disruptions are provided by the disruptionsAllowed property.</TD></TR>
+<TR><TD><CODE>currentHealthy</CODE><BR /><I>integer</I></TD><TD>current number of healthy pods</TD></TR>
+<TR><TD><CODE>desiredHealthy</CODE><BR /><I>integer</I></TD><TD>minimum desired number of healthy pods</TD></TR>
+<TR><TD><CODE>disruptedPods</CODE><BR /><I>object</I></TD><TD>DisruptedPods contains information about pods whose eviction was processed by the API server eviction subresource handler but has not yet been observed by the PodDisruptionBudget controller. A pod will be in this map from the time when the API server processed the eviction request to the time when the pod is seen by PDB controller as having been marked for deletion (or after a timeout). The key in the map is the name of the pod and the value is the time when the API server processed the eviction request. If the deletion didn&#39;t occur and a pod is still there it will be removed from the list automatically by PodDisruptionBudget controller after some time. If everything goes smooth this map should be empty for the most of the time. Large number of entries in the map may indicate problems with pod deletions.</TD></TR>
+<TR><TD><CODE>disruptionsAllowed</CODE><BR /><I>integer</I></TD><TD>Number of pod disruptions that are currently allowed.</TD></TR>
+<TR><TD><CODE>expectedPods</CODE><BR /><I>integer</I></TD><TD>total number of pods counted by this disruption budget</TD></TR>
+<TR><TD><CODE>observedGeneration</CODE><BR /><I>integer</I></TD><TD>Most recent generation observed when updating this PDB status. DisruptionsAllowed and other status information is valid only if observedGeneration equals to PDB&#39;s object generation.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="poddisruptionbudgetlist-v1beta1-policy">PodDisruptionBudgetList v1beta1 policy</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a> array</I></TD><TD>items list individual PodDisruptionBudget objects</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-poddisruptionbudget-v1beta1-policy-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-poddisruptionbudget-v1beta1-policy">Create</H2>
+<P>create a PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/policy/v1beta1/namespaces/{namespace}/poddisruptionbudgets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-poddisruptionbudget-v1beta1-policy">Patch</H2>
+<P>partially update the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/policy/v1beta1/namespaces/{namespace}/poddisruptionbudgets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-poddisruptionbudget-v1beta1-policy">Replace</H2>
+<P>replace the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/policy/v1beta1/namespaces/{namespace}/poddisruptionbudgets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-poddisruptionbudget-v1beta1-policy">Delete</H2>
+<P>delete a PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/policy/v1beta1/namespaces/{namespace}/poddisruptionbudgets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-poddisruptionbudget-v1beta1-policy">Delete Collection</H2>
+<P>delete collection of PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/policy/v1beta1/namespaces/{namespace}/poddisruptionbudgets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-poddisruptionbudget-v1beta1-policy-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-poddisruptionbudget-v1beta1-policy">Read</H2>
+<P>read the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1beta1/namespaces/{namespace}/poddisruptionbudgets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-poddisruptionbudget-v1beta1-policy">List</H2>
+<P>list or watch objects of kind PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1beta1/namespaces/{namespace}/poddisruptionbudgets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudgetlist-v1beta1-policy">PodDisruptionBudgetList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-all-namespaces-poddisruptionbudget-v1beta1-policy">List All Namespaces</H2>
+<P>list or watch objects of kind PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1beta1/poddisruptionbudgets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudgetlist-v1beta1-policy">PodDisruptionBudgetList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-poddisruptionbudget-v1beta1-policy">Watch</H2>
+<P>watch changes to an object of kind PodDisruptionBudget. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1beta1/watch/namespaces/{namespace}/poddisruptionbudgets/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-poddisruptionbudget-v1beta1-policy">Watch List</H2>
+<P>watch individual changes to a list of PodDisruptionBudget. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1beta1/watch/namespaces/{namespace}/poddisruptionbudgets</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-all-namespaces-poddisruptionbudget-v1beta1-policy">Watch List All Namespaces</H2>
+<P>watch individual changes to a list of PodDisruptionBudget. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1beta1/watch/poddisruptionbudgets</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-poddisruptionbudget-v1beta1-policy-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-poddisruptionbudget-v1beta1-policy">Patch Status</H2>
+<P>partially update status of the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/policy/v1beta1/namespaces/{namespace}/poddisruptionbudgets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-poddisruptionbudget-v1beta1-policy">Read Status</H2>
+<P>read status of the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/policy/v1beta1/namespaces/{namespace}/poddisruptionbudgets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-poddisruptionbudget-v1beta1-policy">Replace Status</H2>
+<P>replace status of the specified PodDisruptionBudget</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/policy/v1beta1/namespaces/{namespace}/poddisruptionbudgets/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PodDisruptionBudget</TD></TR>
+<TR><TD><CODE>namespace</CODE></TD><TD>object name and auth scope, such as for teams and projects</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#poddisruptionbudget-v1beta1-policy">PodDisruptionBudget</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="podsmetricsource-v2beta2-autoscaling">PodsMetricSource v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>PodsMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#podsmetricsource-v2-autoscaling">v2</a>
+<a href="#podsmetricsource-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2beta2-autoscaling">MetricSpec [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2beta2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#metrictarget-v2beta2-autoscaling">MetricTarget</a></I></TD><TD>target specifies the target value for the given metric</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="podsmetricsource-v2beta1-autoscaling">PodsMetricSource v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>PodsMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#podsmetricsource-v2-autoscaling">v2</a>
+<a href="#podsmetricsource-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2beta1-autoscaling">MetricSpec [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>metricName</CODE><BR /><I>string</I></TD><TD>metricName is the name of the metric in question</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping When unset, just the metricName will be used to gather metrics.</TD></TR>
+<TR><TD><CODE>targetAverageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>targetAverageValue is the target value of the average of the metric across all relevant pods (as a quantity)</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="podsmetricstatus-v2beta2-autoscaling">PodsMetricStatus v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>PodsMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#podsmetricstatus-v2-autoscaling">v2</a>
+<a href="#podsmetricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2beta2-autoscaling">MetricStatus [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>current</CODE><BR /><I><a href="#metricvaluestatus-v2beta2-autoscaling">MetricValueStatus</a></I></TD><TD>current contains the current value for the given metric</TD></TR>
+<TR><TD><CODE>metric</CODE><BR /><I><a href="#metricidentifier-v2beta2-autoscaling">MetricIdentifier</a></I></TD><TD>metric identifies the target metric by name and selector</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="podsmetricstatus-v2beta1-autoscaling">PodsMetricStatus v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>PodsMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#podsmetricstatus-v2-autoscaling">v2</a>
+<a href="#podsmetricstatus-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2beta1-autoscaling">MetricStatus [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>currentAverageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>currentAverageValue is the current value of the average of the metric across all relevant pods (as a quantity)</TD></TR>
+<TR><TD><CODE>metricName</CODE><BR /><I>string</I></TD><TD>metricName is the name of the metric in question</TD></TR>
+<TR><TD><CODE>selector</CODE><BR /><I><a href="#labelselector-v1-meta">LabelSelector</a></I></TD><TD>selector is the string-encoded form of a standard kubernetes label selector for the given metric When set in the PodsMetricSource, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="policyruleswithsubjects-v1beta1-flowcontrol-apiserver-k8s-io">PolicyRulesWithSubjects v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>PolicyRulesWithSubjects</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#policyruleswithsubjects-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschemaspec-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaSpec [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nonResourceRules</CODE><BR /><I><a href="#nonresourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io">NonResourcePolicyRule</a> array</I></TD><TD>`nonResourceRules` is a list of NonResourcePolicyRules that identify matching requests according to their verb and the target non-resource URL.</TD></TR>
+<TR><TD><CODE>resourceRules</CODE><BR /><I><a href="#resourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io">ResourcePolicyRule</a> array</I></TD><TD>`resourceRules` is a slice of ResourcePolicyRules that identify matching requests according to their verb and the target resource. At least one of `resourceRules` and `nonResourceRules` has to be non-empty.</TD></TR>
+<TR><TD><CODE>subjects</CODE><BR /><I><a href="#subject-v1beta1-flowcontrol-apiserver-k8s-io">Subject</a> array</I></TD><TD>subjects is the list of normal user, serviceaccount, or group that this rule cares about. There must be at least one member in this slice. A slice that includes both the system:authenticated and system:unauthenticated user groups matches every request. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>PriorityLevelConfiguration</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#prioritylevelconfigurationlist-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationList [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>`metadata` is the standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>spec</CODE><BR /><I><a href="#prioritylevelconfigurationspec-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationSpec</a></I></TD><TD>`spec` is the specification of the desired behavior of a &#34;request-priority&#34;. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I><a href="#prioritylevelconfigurationstatus-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationStatus</a></I></TD><TD>`status` is the current status of a &#34;request-priority&#34;. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="prioritylevelconfigurationspec-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationSpec v1beta1 flowcontrol</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>limited</CODE><BR /><I><a href="#limitedprioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">LimitedPriorityLevelConfiguration</a></I></TD><TD>`limited` specifies how requests are handled for a Limited priority level. This field must be non-empty if and only if `type` is `&#34;Limited&#34;`.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>`type` indicates whether this priority level is subject to limitation on request execution.  A value of `&#34;Exempt&#34;` means that requests of this priority level are not subject to a limit (and thus are never queued) and do not detract from the capacity made available to other priority levels.  A value of `&#34;Limited&#34;` means that (a) requests of this priority level _are_ subject to limits and (b) some of the server&#39;s limited capacity is made available exclusively to this priority level. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="prioritylevelconfigurationstatus-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationStatus v1beta1 flowcontrol</H3>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>conditions</CODE><BR /><I><a href="#prioritylevelconfigurationcondition-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationCondition</a> array</I></TD><TD>`conditions` is the current state of &#34;request-priority&#34;.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="prioritylevelconfigurationlist-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationList v1beta1 flowcontrol</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a> array</I></TD><TD>`items` is a list of request-priorities.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>`metadata` is the standard object&#39;s metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Create</H2>
+<P>create a PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Patch</H2>
+<P>partially update the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Replace</H2>
+<P>replace the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Delete</H2>
+<P>delete a PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Delete Collection</H2>
+<P>delete collection of PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Read</H2>
+<P>read the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">List</H2>
+<P>list or watch objects of kind PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfigurationlist-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Watch</H2>
+<P>watch changes to an object of kind PriorityLevelConfiguration. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/watch/prioritylevelconfigurations/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of PriorityLevelConfiguration. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/watch/prioritylevelconfigurations</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-status-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-"><STRONG>Status Operations</STRONG></H2>
+<H2 id="patch-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Patch Status</H2>
+<P>partially update status of the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="read-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Read Status</H2>
+<P>read status of the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">Replace Status</H2>
+<P>replace status of the specified PriorityLevelConfiguration</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/flowcontrol.apiserver.k8s.io/v1beta1/prioritylevelconfigurations/{name}/status</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the PriorityLevelConfiguration</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfiguration</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="prioritylevelconfigurationcondition-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationCondition v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>PriorityLevelConfigurationCondition</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#prioritylevelconfigurationcondition-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#prioritylevelconfigurationstatus-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationStatus [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>lastTransitionTime</CODE><BR /><I><a href="#time-v1-meta">Time</a></I></TD><TD>`lastTransitionTime` is the last time the condition transitioned from one status to another.</TD></TR>
+<TR><TD><CODE>message</CODE><BR /><I>string</I></TD><TD>`message` is a human-readable message indicating details about last transition.</TD></TR>
+<TR><TD><CODE>reason</CODE><BR /><I>string</I></TD><TD>`reason` is a unique, one-word, CamelCase reason for the condition&#39;s last transition.</TD></TR>
+<TR><TD><CODE>status</CODE><BR /><I>string</I></TD><TD>`status` is the status of the condition. Can be True, False, Unknown. Required.</TD></TR>
+<TR><TD><CODE>type</CODE><BR /><I>string</I></TD><TD>`type` is the type of the condition. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="prioritylevelconfigurationreference-v1beta1-flowcontrol-apiserver-k8s-io">PriorityLevelConfigurationReference v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>PriorityLevelConfigurationReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#prioritylevelconfigurationreference-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#flowschemaspec-v1beta1-flowcontrol-apiserver-k8s-io">FlowSchemaSpec [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>`name` is the name of the priority level configuration being referenced Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="queuingconfiguration-v1beta1-flowcontrol-apiserver-k8s-io">QueuingConfiguration v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>QueuingConfiguration</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#queuingconfiguration-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#limitresponse-v1beta1-flowcontrol-apiserver-k8s-io">LimitResponse [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>handSize</CODE><BR /><I>integer</I></TD><TD>`handSize` is a small positive number that configures the shuffle sharding of requests into queues.  When enqueuing a request at this priority level the request&#39;s flow identifier (a string pair) is hashed and the hash value is used to shuffle the list of queues and deal a hand of the size specified here.  The request is put into one of the shortest queues in that hand. `handSize` must be no larger than `queues`, and should be significantly smaller (so that a few heavy flows do not saturate most of the queues).  See the user-facing documentation for more extensive guidance on setting this field.  This field has a default value of 8.</TD></TR>
+<TR><TD><CODE>queueLengthLimit</CODE><BR /><I>integer</I></TD><TD>`queueLengthLimit` is the maximum number of requests allowed to be waiting in a given queue of this priority level at a time; excess requests are rejected.  This value must be positive.  If not specified, it will be defaulted to 50.</TD></TR>
+<TR><TD><CODE>queues</CODE><BR /><I>integer</I></TD><TD>`queues` is the number of queues for this priority level. The queues exist independently at each apiserver. The value must be positive.  Setting it to 1 effectively precludes shufflesharding and thus makes the distinguisher method of associated flow schemas irrelevant.  This field has a default value of 64.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="resourcemetricsource-v2beta2-autoscaling">ResourceMetricSource v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>ResourceMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#resourcemetricsource-v2-autoscaling">v2</a>
+<a href="#resourcemetricsource-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2beta2-autoscaling">MetricSpec [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the resource in question.</TD></TR>
+<TR><TD><CODE>target</CODE><BR /><I><a href="#metrictarget-v2beta2-autoscaling">MetricTarget</a></I></TD><TD>target specifies the target value for the given metric</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="resourcemetricsource-v2beta1-autoscaling">ResourceMetricSource v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>ResourceMetricSource</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#resourcemetricsource-v2-autoscaling">v2</a>
+<a href="#resourcemetricsource-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricspec-v2beta1-autoscaling">MetricSpec [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the resource in question.</TD></TR>
+<TR><TD><CODE>targetAverageUtilization</CODE><BR /><I>integer</I></TD><TD>targetAverageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.</TD></TR>
+<TR><TD><CODE>targetAverageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>targetAverageValue is the target value of the average of the resource metric across all relevant pods, as a raw value (instead of as a percentage of the request), similar to the &#34;pods&#34; metric source type.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="resourcemetricstatus-v2beta2-autoscaling">ResourceMetricStatus v2beta2 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta2</CODE></TD><TD><CODE>ResourceMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#resourcemetricstatus-v2-autoscaling">v2</a>
+<a href="#resourcemetricstatus-v2beta1-autoscaling">v2beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2beta2-autoscaling">MetricStatus [autoscaling/v2beta2]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>current</CODE><BR /><I><a href="#metricvaluestatus-v2beta2-autoscaling">MetricValueStatus</a></I></TD><TD>current contains the current value for the given metric</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the name of the resource in question.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="resourcemetricstatus-v2beta1-autoscaling">ResourceMetricStatus v2beta1 autoscaling</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>autoscaling</CODE></TD><TD><CODE>v2beta1</CODE></TD><TD><CODE>ResourceMetricStatus</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#resourcemetricstatus-v2-autoscaling">v2</a>
+<a href="#resourcemetricstatus-v2beta2-autoscaling">v2beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#metricstatus-v2beta1-autoscaling">MetricStatus [autoscaling/v2beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>currentAverageUtilization</CODE><BR /><I>integer</I></TD><TD>currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.  It will only be present if `targetAverageValue` was set in the corresponding metric specification.</TD></TR>
+<TR><TD><CODE>currentAverageValue</CODE><BR /><I><a href="#quantity-resource-core">Quantity</a></I></TD><TD>currentAverageValue is the current value of the average of the resource metric across all relevant pods, as a raw value (instead of as a percentage of the request), similar to the &#34;pods&#34; metric source type. It will always be set, regardless of the corresponding metric specification.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the resource in question.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="resourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io">ResourcePolicyRule v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>ResourcePolicyRule</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#resourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#policyruleswithsubjects-v1beta1-flowcontrol-apiserver-k8s-io">PolicyRulesWithSubjects [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiGroups</CODE><BR /><I>string array</I></TD><TD>`apiGroups` is a list of matching API groups and may not be empty. &#34;*&#34; matches all API groups and, if present, must be the only entry. Required.</TD></TR>
+<TR><TD><CODE>clusterScope</CODE><BR /><I>boolean</I></TD><TD>`clusterScope` indicates whether to match requests that do not specify a namespace (which happens either because the resource is not namespaced or the request targets all namespaces). If this field is omitted or false then the `namespaces` field must contain a non-empty list.</TD></TR>
+<TR><TD><CODE>namespaces</CODE><BR /><I>string array</I></TD><TD>`namespaces` is a list of target namespaces that restricts matches.  A request that specifies a target namespace matches only if either (a) this list contains that target namespace or (b) this list contains &#34;*&#34;.  Note that &#34;*&#34; matches any specified namespace but does not match a request that _does not specify_ a namespace (see the `clusterScope` field for that). This list may be empty, but only if `clusterScope` is true.</TD></TR>
+<TR><TD><CODE>resources</CODE><BR /><I>string array</I></TD><TD>`resources` is a list of matching resources (i.e., lowercase and plural) with, if desired, subresource.  For example, [ &#34;services&#34;, &#34;nodes/status&#34; ].  This list may not be empty. &#34;*&#34; matches all resources and, if present, must be the only entry. Required.</TD></TR>
+<TR><TD><CODE>verbs</CODE><BR /><I>string array</I></TD><TD>`verbs` is a list of matching verbs and may not be empty. &#34;*&#34; matches all verbs and, if present, must be the only entry. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="runtimeclass-v1beta1-node-k8s-io">RuntimeClass v1beta1 node.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>node.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>RuntimeClass</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#runtimeclass-v1-node-k8s-io">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#runtimeclasslist-v1beta1-node-k8s-io">RuntimeClassList [node/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>handler</CODE><BR /><I>string</I></TD><TD>Handler specifies the underlying runtime and configuration that the CRI implementation will use to handle pods of this class. The possible values are specific to the node &amp; CRI configuration.  It is assumed that all handlers are available on every node, and handlers of the same name are equivalent on every node. For example, a handler called &#34;runc&#34; might specify that the runc OCI runtime (using native Linux containers) will be used to run the containers in a pod. The Handler must be lowercase, conform to the DNS Label (RFC 1123) requirements, and is immutable.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#objectmeta-v1-meta">ObjectMeta</a></I></TD><TD>More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+<TR><TD><CODE>overhead</CODE><BR /><I><a href="#overhead-v1beta1-node-k8s-io">Overhead</a></I></TD><TD>Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. For more details, see https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.md</TD></TR>
+<TR><TD><CODE>scheduling</CODE><BR /><I><a href="#scheduling-v1beta1-node-k8s-io">Scheduling</a></I></TD><TD>Scheduling holds the scheduling constraints to ensure that pods running with this RuntimeClass are scheduled to nodes that support it. If scheduling is nil, this RuntimeClass is assumed to be supported by all nodes.</TD></TR>
+</TBODY>
+</TABLE>
+<H3 id="runtimeclasslist-v1beta1-node-k8s-io">RuntimeClassList v1beta1 node</H3>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiVersion</CODE><BR /><I>string</I></TD><TD>APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources</TD></TR>
+<TR><TD><CODE>items</CODE><BR /><I><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass</a> array</I></TD><TD>Items is a list of schema objects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds</TD></TR>
+<TR><TD><CODE>metadata</CODE><BR /><I><a href="#listmeta-v1-meta">ListMeta</a></I></TD><TD>Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-write-operations-runtimeclass-v1beta1-node-k8s-io-strong-"><STRONG>Write Operations</STRONG></H2>
+<H2 id="create-runtimeclass-v1beta1-node-k8s-io">Create</H2>
+<P>create a RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>POST /apis/node.k8s.io/v1beta1/runtimeclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass</a></I></TD><TD>Created</TD></TR>
+<TR><TD>202<br /><I><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="patch-runtimeclass-v1beta1-node-k8s-io">Patch</H2>
+<P>partially update the specified RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>PATCH /apis/node.k8s.io/v1beta1/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+<TR><TD><CODE>force</CODE></TD><TD>Force is going to "force" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#patch-v1-meta">Patch</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="replace-runtimeclass-v1beta1-node-k8s-io">Replace</H2>
+<P>replace the specified RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>PUT /apis/node.k8s.io/v1beta1/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldManager</CODE></TD><TD>fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.</TD></TR>
+<TR><TD><CODE>fieldValidation</CODE></TD><TD>fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields, provided that the `ServerSideFieldValidation` feature gate is also enabled. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23 and is the default behavior when the `ServerSideFieldValidation` feature gate is disabled. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default when the `ServerSideFieldValidation` feature gate is enabled. - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass</a></I></TD><TD>OK</TD></TR>
+<TR><TD>201<br /><I><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass</a></I></TD><TD>Created</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-runtimeclass-v1beta1-node-k8s-io">Delete</H2>
+<P>delete a RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/node.k8s.io/v1beta1/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+<TR><TD>202<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>Accepted</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="delete-collection-runtimeclass-v1beta1-node-k8s-io">Delete Collection</H2>
+<P>delete collection of RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>DELETE /apis/node.k8s.io/v1beta1/runtimeclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>dryRun</CODE></TD><TD>When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>gracePeriodSeconds</CODE></TD><TD>The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>orphanDependents</CODE></TD><TD>Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the "orphan" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.</TD></TR>
+<TR><TD><CODE>propagationPolicy</CODE></TD><TD>Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Body Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>body</CODE><br /><I><a href="#deleteoptions-v1-meta">DeleteOptions</a></I></TD><TD></TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#status-v1-meta">Status</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="-strong-read-operations-runtimeclass-v1beta1-node-k8s-io-strong-"><STRONG>Read Operations</STRONG></H2>
+<H2 id="read-runtimeclass-v1beta1-node-k8s-io">Read</H2>
+<P>read the specified RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/node.k8s.io/v1beta1/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="list-runtimeclass-v1beta1-node-k8s-io">List</H2>
+<P>list or watch objects of kind RuntimeClass</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/node.k8s.io/v1beta1/runtimeclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#runtimeclasslist-v1beta1-node-k8s-io">RuntimeClassList</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-runtimeclass-v1beta1-node-k8s-io">Watch</H2>
+<P>watch changes to an object of kind RuntimeClass. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/node.k8s.io/v1beta1/watch/runtimeclasses/{name}</CODE>
+<H3>Path Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE></TD><TD>name of the RuntimeClass</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H2 id="watch-list-runtimeclass-v1beta1-node-k8s-io">Watch List</H2>
+<P>watch individual changes to a list of RuntimeClass. deprecated: use the 'watch' parameter with a list operation instead.</P>
+<H3>HTTP Request</H3>
+<CODE>GET /apis/node.k8s.io/v1beta1/watch/runtimeclasses</CODE>
+<H3>Query Parameters</H3>
+<TABLE>
+<THEAD><TR><TH>Parameter</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>allowWatchBookmarks</CODE></TD><TD>allowWatchBookmarks requests watch events with type "BOOKMARK". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.</TD></TR>
+<TR><TD><CODE>continue</CODE></TD><TD>The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the "next key".  This field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.</TD></TR>
+<TR><TD><CODE>fieldSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their fields. Defaults to everything.</TD></TR>
+<TR><TD><CODE>labelSelector</CODE></TD><TD>A selector to restrict the list of returned objects by their labels. Defaults to everything.</TD></TR>
+<TR><TD><CODE>limit</CODE></TD><TD>limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.  The server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.</TD></TR>
+<TR><TD><CODE>pretty</CODE></TD><TD>If 'true', then the output is pretty printed.</TD></TR>
+<TR><TD><CODE>resourceVersion</CODE></TD><TD>resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>resourceVersionMatch</CODE></TD><TD>resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.  Defaults to unset</TD></TR>
+<TR><TD><CODE>timeoutSeconds</CODE></TD><TD>Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.</TD></TR>
+<TR><TD><CODE>watch</CODE></TD><TD>Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.</TD></TR>
+</TBODY>
+</TABLE>
+<H3>Response</H3>
+<TABLE>
+<THEAD><TR><TH>Code</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD>200<br /><I><a href="#watchevent-v1-meta">WatchEvent</a></I></TD><TD>OK</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="scheduling-v1beta1-node-k8s-io">Scheduling v1beta1 node.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>node.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>Scheduling</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#scheduling-v1-node-k8s-io">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#runtimeclass-v1beta1-node-k8s-io">RuntimeClass [node/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>nodeSelector</CODE><BR /><I>object</I></TD><TD>nodeSelector lists labels that must be present on nodes that support this RuntimeClass. Pods using this RuntimeClass can only be scheduled to a node matched by this selector. The RuntimeClass nodeSelector is merged with a pod&#39;s existing nodeSelector. Any conflicts will cause the pod to be rejected in admission.</TD></TR>
+<TR><TD><CODE>tolerations</CODE><BR /><I><a href="#toleration-v1-core">Toleration</a> array</I></TD><TD>tolerations are appended (excluding duplicates) to pods running with this RuntimeClass during admission, effectively unioning the set of nodes tolerated by the pod and the RuntimeClass.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="serviceaccountsubject-v1beta1-flowcontrol-apiserver-k8s-io">ServiceAccountSubject v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>ServiceAccountSubject</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#serviceaccountsubject-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#subject-v1beta1-flowcontrol-apiserver-k8s-io">Subject [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>`name` is the name of matching ServiceAccount objects, or &#34;*&#34; to match regardless of name. Required.</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>`namespace` is the namespace of matching ServiceAccount objects. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="servicereference-v1-apiextensions-k8s-io">ServiceReference v1 apiextensions.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ServiceReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#webhookclientconfig-v1-apiextensions-k8s-io">WebhookClientConfig [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>name is the name of the service. Required</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>namespace is the namespace of the service. Required</TD></TR>
+<TR><TD><CODE>path</CODE><BR /><I>string</I></TD><TD>path is an optional URL path at which the webhook will be contacted.</TD></TR>
+<TR><TD><CODE>port</CODE><BR /><I>integer</I></TD><TD>port is an optional service port at which the webhook will be contacted. `port` should be a valid port number (1-65535, inclusive). Defaults to 443 for backward compatibility.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="servicereference-v1-apiregistration-k8s-io">ServiceReference v1 apiregistration.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiregistration.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>ServiceReference</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#apiservicespec-v1-apiregistration-k8s-io">APIServiceSpec [apiregistration/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name is the name of the service</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>Namespace is the namespace of the service</TD></TR>
+<TR><TD><CODE>port</CODE><BR /><I>integer</I></TD><TD>If specified, the port on the service that hosting webhook. Default to 443 for backward compatibility. `port` should be a valid port number (1-65535, inclusive).</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="subject-v1-rbac-authorization-k8s-io">Subject v1 rbac.authorization.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>rbac.authorization.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>Subject</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#subject-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+<a href="#subject-v1beta1-flowcontrol-apiserver-k8s-io">v1beta1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#clusterrolebinding-v1-rbac-authorization-k8s-io">ClusterRoleBinding [rbac/v1]</a></LI>
+  <LI><a href="#rolebinding-v1-rbac-authorization-k8s-io">RoleBinding [rbac/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiGroup</CODE><BR /><I>string</I></TD><TD>APIGroup holds the API group of the referenced subject. Defaults to &#34;&#34; for ServiceAccount subjects. Defaults to &#34;rbac.authorization.k8s.io&#34; for User and Group subjects.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>Kind of object being referenced. Values defined by this API group are &#34;User&#34;, &#34;Group&#34;, and &#34;ServiceAccount&#34;. If the Authorizer does not recognized the kind value, the Authorizer should report an error.</TD></TR>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>Name of the object being referenced.</TD></TR>
+<TR><TD><CODE>namespace</CODE><BR /><I>string</I></TD><TD>Namespace of the referenced object.  If the object kind is non-namespace, such as &#34;User&#34; or &#34;Group&#34;, and this value is not empty the Authorizer should report an error.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="subject-v1beta1-flowcontrol-apiserver-k8s-io">Subject v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>Subject</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#subject-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+<a href="#subject-v1-rbac-authorization-k8s-io">v1</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#policyruleswithsubjects-v1beta1-flowcontrol-apiserver-k8s-io">PolicyRulesWithSubjects [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>group</CODE><BR /><I><a href="#groupsubject-v1beta1-flowcontrol-apiserver-k8s-io">GroupSubject</a></I></TD><TD>`group` matches based on user group name.</TD></TR>
+<TR><TD><CODE>kind</CODE><BR /><I>string</I></TD><TD>`kind` indicates which one of the other fields is non-empty. Required</TD></TR>
+<TR><TD><CODE>serviceAccount</CODE><BR /><I><a href="#serviceaccountsubject-v1beta1-flowcontrol-apiserver-k8s-io">ServiceAccountSubject</a></I></TD><TD>`serviceAccount` matches ServiceAccounts.</TD></TR>
+<TR><TD><CODE>user</CODE><BR /><I><a href="#usersubject-v1beta1-flowcontrol-apiserver-k8s-io">UserSubject</a></I></TD><TD>`user` matches based on username.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="tokenrequest-v1-storage-k8s-io">TokenRequest v1 storage.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>storage.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>TokenRequest</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#csidriverspec-v1-storage-k8s-io">CSIDriverSpec [storage/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>audience</CODE><BR /><I>string</I></TD><TD>Audience is the intended audience of the token in &#34;TokenRequestSpec&#34;. It will default to the audiences of kube apiserver.</TD></TR>
+<TR><TD><CODE>expirationSeconds</CODE><BR /><I>integer</I></TD><TD>ExpirationSeconds is the duration of validity of the token in &#34;TokenRequestSpec&#34;. It has the same default value of &#34;ExpirationSeconds&#34; in &#34;TokenRequestSpec&#34;.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="usersubject-v1beta1-flowcontrol-apiserver-k8s-io">UserSubject v1beta1 flowcontrol.apiserver.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>flowcontrol.apiserver.k8s.io</CODE></TD><TD><CODE>v1beta1</CODE></TD><TD><CODE>UserSubject</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-success col-md-8"><I class="fa fa-toggle-right"></I> Other API versions of this object exist:
+<a href="#usersubject-v1beta2-flowcontrol-apiserver-k8s-io">v1beta2</a>
+</DIV>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#subject-v1beta1-flowcontrol-apiserver-k8s-io">Subject [flowcontrol/v1beta1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>name</CODE><BR /><I>string</I></TD><TD>`name` is the username that matches, or &#34;*&#34; to match all usernames. Required.</TD></TR>
+</TBODY>
+</TABLE>
+<H1 id="webhookclientconfig-v1-apiextensions-k8s-io">WebhookClientConfig v1 apiextensions.k8s.io</H1>
+<TABLE class="col-md-8">
+<THEAD><TR><TH>Group</TH><TH>Version</TH><TH>Kind</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>apiextensions.k8s.io</CODE></TD><TD><CODE>v1</CODE></TD><TD><CODE>WebhookClientConfig</CODE></TD></TR>
+</TBODY>
+</TABLE>
+<DIV class="alert alert-info col-md-8"><I class="fa fa-info-circle"></I> Appears In:
+ <UL>
+  <LI><a href="#webhookconversion-v1-apiextensions-k8s-io">WebhookConversion [apiextensions/v1]</a></LI>
+ </UL>
+</DIV>
+<TABLE>
+<THEAD><TR><TH>Field</TH><TH>Description</TH></TR></THEAD>
+<TBODY>
+<TR><TD><CODE>caBundle</CODE><BR /><I>string</I></TD><TD>caBundle is a PEM encoded CA bundle which will be used to validate the webhook&#39;s server certificate. If unspecified, system trust roots on the apiserver are used.</TD></TR>
+<TR><TD><CODE>service</CODE><BR /><I><a href="#servicereference-v1-apiextensions-k8s-io">ServiceReference</a></I></TD><TD>service is a reference to the service for this webhook. Either service or url must be specified.  If the webhook is running within the cluster, then you should use `service`.</TD></TR>
+<TR><TD><CODE>url</CODE><BR /><I>string</I></TD><TD>url gives the location of the webhook, in standard URL form (`scheme://host:port/path`). Exactly one of `url` or `service` must be specified.  The `host` should not refer to a service running in the cluster; use the `service` field instead. The host might be resolved via external DNS in some apiservers (e.g., `kube-apiserver` cannot resolve in-cluster DNS as that would be a layering violation). `host` may also be an IP address.  Please note that using `localhost` or `127.0.0.1` as a `host` is risky unless you take great care to run this webhook on all hosts which run an apiserver which might need to make calls to this webhook. Such installs are likely to be non-portable, i.e., not easy to turn up in a new cluster.  The scheme must be &#34;https&#34;; the URL must begin with &#34;https://&#34;.  A path is optional, and if present may be any string permissible in a URL. You may use the path to pass an arbitrary string to the webhook, for example, a cluster identifier.  Attempting to use a user or basic auth e.g. &#34;user:password@&#34; is not allowed. Fragments (&#34;#...&#34;) and query parameters (&#34;?...&#34;) are not allowed, either.</TD></TR>
+</TBODY>
+</TABLE>
+
+</DIV>
+</DIV>
+</DIV>
+<SCRIPT src="/js/jquery-3.3.1.min.js"></SCRIPT>
+<SCRIPT src="/js/jquery.scrollTo-2.1.2.min.js"></SCRIPT>
+<SCRIPT src="/js/bootstrap-4.3.1.min.js"></SCRIPT>
+<SCRIPT src="js/navData.js"></SCRIPT>
+<SCRIPT src="/js/scroll-apiref.js"></SCRIPT>
+</BODY>
+</HTML>
diff --git a/static/docs/reference/generated/kubernetes-api/v1.24/js/navData.js b/static/docs/reference/generated/kubernetes-api/v1.24/js/navData.js
new file mode 100644
index 0000000000..f094e89a57
--- /dev/null
+++ b/static/docs/reference/generated/kubernetes-api/v1.24/js/navData.js
@@ -0,0 +1 @@
+(function(){navData={"toc":[{"section":"webhookclientconfig-v1-apiextensions-k8s-io","subsections":[]},{"section":"usersubject-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"tokenrequest-v1-storage-k8s-io","subsections":[]},{"section":"subject-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"subject-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"servicereference-v1-apiregistration-k8s-io","subsections":[]},{"section":"servicereference-v1-apiextensions-k8s-io","subsections":[]},{"section":"serviceaccountsubject-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"scheduling-v1beta1-node-k8s-io","subsections":[]},{"section":"runtimeclass-v1beta1-node-k8s-io","subsections":[{"section":"-strong-read-operations-runtimeclass-v1beta1-node-k8s-io-strong-","subsections":[{"section":"watch-list-runtimeclass-v1beta1-node-k8s-io","subsections":[]},{"section":"watch-runtimeclass-v1beta1-node-k8s-io","subsections":[]},{"section":"list-runtimeclass-v1beta1-node-k8s-io","subsections":[]},{"section":"read-runtimeclass-v1beta1-node-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-runtimeclass-v1beta1-node-k8s-io-strong-","subsections":[{"section":"delete-collection-runtimeclass-v1beta1-node-k8s-io","subsections":[]},{"section":"delete-runtimeclass-v1beta1-node-k8s-io","subsections":[]},{"section":"replace-runtimeclass-v1beta1-node-k8s-io","subsections":[]},{"section":"patch-runtimeclass-v1beta1-node-k8s-io","subsections":[]},{"section":"create-runtimeclass-v1beta1-node-k8s-io","subsections":[]}]}]},{"section":"resourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"resourcemetricstatus-v2beta1-autoscaling","subsections":[]},{"section":"resourcemetricstatus-v2beta2-autoscaling","subsections":[]},{"section":"resourcemetricsource-v2beta1-autoscaling","subsections":[]},{"section":"resourcemetricsource-v2beta2-autoscaling","subsections":[]},{"section":"queuingconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"prioritylevelconfigurationreference-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"prioritylevelconfigurationcondition-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[{"section":"-strong-status-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"replace-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"read-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"patch-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]}]},{"section":"-strong-read-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"watch-list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"watch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"read-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"delete-collection-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"delete-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"replace-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"patch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"create-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]}]}]},{"section":"policyruleswithsubjects-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"podsmetricstatus-v2beta1-autoscaling","subsections":[]},{"section":"podsmetricstatus-v2beta2-autoscaling","subsections":[]},{"section":"podsmetricsource-v2beta1-autoscaling","subsections":[]},{"section":"podsmetricsource-v2beta2-autoscaling","subsections":[]},{"section":"poddisruptionbudget-v1beta1-policy","subsections":[{"section":"-strong-status-operations-poddisruptionbudget-v1beta1-policy-strong-","subsections":[{"section":"replace-status-poddisruptionbudget-v1beta1-policy","subsections":[]},{"section":"read-status-poddisruptionbudget-v1beta1-policy","subsections":[]},{"section":"patch-status-poddisruptionbudget-v1beta1-policy","subsections":[]}]},{"section":"-strong-read-operations-poddisruptionbudget-v1beta1-policy-strong-","subsections":[{"section":"watch-list-all-namespaces-poddisruptionbudget-v1beta1-policy","subsections":[]},{"section":"watch-list-poddisruptionbudget-v1beta1-policy","subsections":[]},{"section":"watch-poddisruptionbudget-v1beta1-policy","subsections":[]},{"section":"list-all-namespaces-poddisruptionbudget-v1beta1-policy","subsections":[]},{"section":"list-poddisruptionbudget-v1beta1-policy","subsections":[]},{"section":"read-poddisruptionbudget-v1beta1-policy","subsections":[]}]},{"section":"-strong-write-operations-poddisruptionbudget-v1beta1-policy-strong-","subsections":[{"section":"delete-collection-poddisruptionbudget-v1beta1-policy","subsections":[]},{"section":"delete-poddisruptionbudget-v1beta1-policy","subsections":[]},{"section":"replace-poddisruptionbudget-v1beta1-policy","subsections":[]},{"section":"patch-poddisruptionbudget-v1beta1-policy","subsections":[]},{"section":"create-poddisruptionbudget-v1beta1-policy","subsections":[]}]}]},{"section":"overhead-v1beta1-node-k8s-io","subsections":[]},{"section":"objectmetricstatus-v2beta1-autoscaling","subsections":[]},{"section":"objectmetricstatus-v2beta2-autoscaling","subsections":[]},{"section":"objectmetricsource-v2beta1-autoscaling","subsections":[]},{"section":"objectmetricsource-v2beta2-autoscaling","subsections":[]},{"section":"nonresourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"metricvaluestatus-v2beta2-autoscaling","subsections":[]},{"section":"metrictarget-v2beta2-autoscaling","subsections":[]},{"section":"metricstatus-v2beta1-autoscaling","subsections":[]},{"section":"metricstatus-v2beta2-autoscaling","subsections":[]},{"section":"metricspec-v2beta1-autoscaling","subsections":[]},{"section":"metricspec-v2beta2-autoscaling","subsections":[]},{"section":"metricidentifier-v2beta2-autoscaling","subsections":[]},{"section":"limitedprioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"limitresponse-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"jobtemplatespec-v1beta1-batch","subsections":[]},{"section":"horizontalpodautoscalercondition-v2beta1-autoscaling","subsections":[]},{"section":"horizontalpodautoscalercondition-v2beta2-autoscaling","subsections":[]},{"section":"horizontalpodautoscalerbehavior-v2beta2-autoscaling","subsections":[]},{"section":"horizontalpodautoscaler-v2beta1-autoscaling","subsections":[{"section":"-strong-status-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-","subsections":[{"section":"replace-status-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]},{"section":"read-status-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]},{"section":"patch-status-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]}]},{"section":"-strong-read-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-","subsections":[{"section":"watch-list-all-namespaces-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]},{"section":"watch-list-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]},{"section":"watch-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]},{"section":"list-all-namespaces-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]},{"section":"list-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]},{"section":"read-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]}]},{"section":"-strong-write-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-","subsections":[{"section":"delete-collection-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]},{"section":"delete-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]},{"section":"replace-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]},{"section":"patch-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]},{"section":"create-horizontalpodautoscaler-v2beta1-autoscaling","subsections":[]}]}]},{"section":"horizontalpodautoscaler-v2beta2-autoscaling","subsections":[{"section":"-strong-status-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-","subsections":[{"section":"replace-status-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]},{"section":"read-status-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]},{"section":"patch-status-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]}]},{"section":"-strong-read-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-","subsections":[{"section":"watch-list-all-namespaces-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]},{"section":"watch-list-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]},{"section":"watch-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]},{"section":"list-all-namespaces-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]},{"section":"list-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]},{"section":"read-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]}]},{"section":"-strong-write-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-","subsections":[{"section":"delete-collection-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]},{"section":"delete-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]},{"section":"replace-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]},{"section":"patch-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]},{"section":"create-horizontalpodautoscaler-v2beta2-autoscaling","subsections":[]}]}]},{"section":"horizontalpodautoscaler-v1-autoscaling","subsections":[{"section":"-strong-status-operations-horizontalpodautoscaler-v1-autoscaling-strong-","subsections":[{"section":"replace-status-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"read-status-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"patch-status-horizontalpodautoscaler-v1-autoscaling","subsections":[]}]},{"section":"-strong-read-operations-horizontalpodautoscaler-v1-autoscaling-strong-","subsections":[{"section":"watch-list-all-namespaces-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"watch-list-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"watch-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"list-all-namespaces-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"list-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"read-horizontalpodautoscaler-v1-autoscaling","subsections":[]}]},{"section":"-strong-write-operations-horizontalpodautoscaler-v1-autoscaling-strong-","subsections":[{"section":"delete-collection-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"delete-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"replace-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"patch-horizontalpodautoscaler-v1-autoscaling","subsections":[]},{"section":"create-horizontalpodautoscaler-v1-autoscaling","subsections":[]}]}]},{"section":"hpascalingrules-v2beta2-autoscaling","subsections":[]},{"section":"hpascalingpolicy-v2beta2-autoscaling","subsections":[]},{"section":"groupsubject-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"forzone-v1beta1-discovery-k8s-io","subsections":[]},{"section":"flowschemacondition-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[{"section":"-strong-status-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"replace-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"read-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"patch-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]}]},{"section":"-strong-read-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"watch-list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"watch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"read-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"delete-collection-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"delete-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"replace-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"patch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"create-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]}]}]},{"section":"flowdistinguishermethod-v1beta1-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"externalmetricstatus-v2beta1-autoscaling","subsections":[]},{"section":"externalmetricstatus-v2beta2-autoscaling","subsections":[]},{"section":"externalmetricsource-v2beta1-autoscaling","subsections":[]},{"section":"externalmetricsource-v2beta2-autoscaling","subsections":[]},{"section":"eventseries-v1beta1-events-k8s-io","subsections":[]},{"section":"eventseries-v1-core","subsections":[]},{"section":"event-v1beta1-events-k8s-io","subsections":[{"section":"-strong-read-operations-event-v1beta1-events-k8s-io-strong-","subsections":[{"section":"watch-list-all-namespaces-event-v1beta1-events-k8s-io","subsections":[]},{"section":"watch-list-event-v1beta1-events-k8s-io","subsections":[]},{"section":"watch-event-v1beta1-events-k8s-io","subsections":[]},{"section":"list-all-namespaces-event-v1beta1-events-k8s-io","subsections":[]},{"section":"list-event-v1beta1-events-k8s-io","subsections":[]},{"section":"read-event-v1beta1-events-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-event-v1beta1-events-k8s-io-strong-","subsections":[{"section":"delete-collection-event-v1beta1-events-k8s-io","subsections":[]},{"section":"delete-event-v1beta1-events-k8s-io","subsections":[]},{"section":"replace-event-v1beta1-events-k8s-io","subsections":[]},{"section":"patch-event-v1beta1-events-k8s-io","subsections":[]},{"section":"create-event-v1beta1-events-k8s-io","subsections":[]}]}]},{"section":"event-v1-core","subsections":[{"section":"-strong-read-operations-event-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-event-v1-core","subsections":[]},{"section":"watch-list-event-v1-core","subsections":[]},{"section":"watch-event-v1-core","subsections":[]},{"section":"list-all-namespaces-event-v1-core","subsections":[]},{"section":"list-event-v1-core","subsections":[]},{"section":"read-event-v1-core","subsections":[]}]},{"section":"-strong-write-operations-event-v1-core-strong-","subsections":[{"section":"delete-collection-event-v1-core","subsections":[]},{"section":"delete-event-v1-core","subsections":[]},{"section":"replace-event-v1-core","subsections":[]},{"section":"patch-event-v1-core","subsections":[]},{"section":"create-event-v1-core","subsections":[]}]}]},{"section":"endpointslice-v1beta1-discovery-k8s-io","subsections":[{"section":"-strong-read-operations-endpointslice-v1beta1-discovery-k8s-io-strong-","subsections":[{"section":"watch-list-all-namespaces-endpointslice-v1beta1-discovery-k8s-io","subsections":[]},{"section":"watch-list-endpointslice-v1beta1-discovery-k8s-io","subsections":[]},{"section":"watch-endpointslice-v1beta1-discovery-k8s-io","subsections":[]},{"section":"list-all-namespaces-endpointslice-v1beta1-discovery-k8s-io","subsections":[]},{"section":"list-endpointslice-v1beta1-discovery-k8s-io","subsections":[]},{"section":"read-endpointslice-v1beta1-discovery-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-endpointslice-v1beta1-discovery-k8s-io-strong-","subsections":[{"section":"delete-collection-endpointslice-v1beta1-discovery-k8s-io","subsections":[]},{"section":"delete-endpointslice-v1beta1-discovery-k8s-io","subsections":[]},{"section":"replace-endpointslice-v1beta1-discovery-k8s-io","subsections":[]},{"section":"patch-endpointslice-v1beta1-discovery-k8s-io","subsections":[]},{"section":"create-endpointslice-v1beta1-discovery-k8s-io","subsections":[]}]}]},{"section":"endpointport-v1beta1-discovery-k8s-io","subsections":[]},{"section":"endpointport-v1-discovery-k8s-io","subsections":[]},{"section":"endpointhints-v1beta1-discovery-k8s-io","subsections":[]},{"section":"endpointconditions-v1beta1-discovery-k8s-io","subsections":[]},{"section":"endpoint-v1beta1-discovery-k8s-io","subsections":[]},{"section":"crossversionobjectreference-v2beta1-autoscaling","subsections":[]},{"section":"crossversionobjectreference-v2beta2-autoscaling","subsections":[]},{"section":"crossversionobjectreference-v1-autoscaling","subsections":[]},{"section":"cronjob-v1beta1-batch","subsections":[{"section":"-strong-status-operations-cronjob-v1beta1-batch-strong-","subsections":[{"section":"replace-status-cronjob-v1beta1-batch","subsections":[]},{"section":"read-status-cronjob-v1beta1-batch","subsections":[]},{"section":"patch-status-cronjob-v1beta1-batch","subsections":[]}]},{"section":"-strong-read-operations-cronjob-v1beta1-batch-strong-","subsections":[{"section":"watch-list-all-namespaces-cronjob-v1beta1-batch","subsections":[]},{"section":"watch-list-cronjob-v1beta1-batch","subsections":[]},{"section":"watch-cronjob-v1beta1-batch","subsections":[]},{"section":"list-all-namespaces-cronjob-v1beta1-batch","subsections":[]},{"section":"list-cronjob-v1beta1-batch","subsections":[]},{"section":"read-cronjob-v1beta1-batch","subsections":[]}]},{"section":"-strong-write-operations-cronjob-v1beta1-batch-strong-","subsections":[{"section":"delete-collection-cronjob-v1beta1-batch","subsections":[]},{"section":"delete-cronjob-v1beta1-batch","subsections":[]},{"section":"replace-cronjob-v1beta1-batch","subsections":[]},{"section":"patch-cronjob-v1beta1-batch","subsections":[]},{"section":"create-cronjob-v1beta1-batch","subsections":[]}]}]},{"section":"containerresourcemetricstatus-v2beta1-autoscaling","subsections":[]},{"section":"containerresourcemetricstatus-v2beta2-autoscaling","subsections":[]},{"section":"containerresourcemetricsource-v2beta1-autoscaling","subsections":[]},{"section":"containerresourcemetricsource-v2beta2-autoscaling","subsections":[]},{"section":"csistoragecapacity-v1beta1-storage-k8s-io","subsections":[{"section":"-strong-read-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-","subsections":[{"section":"watch-list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"watch-list-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"watch-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"list-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"read-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-","subsections":[{"section":"delete-collection-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"delete-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"replace-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"patch-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"create-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]}]}]},{"section":"-strong-old-api-versions-strong-","subsections":[]},{"section":"windowssecuritycontextoptions-v1-core","subsections":[]},{"section":"weightedpodaffinityterm-v1-core","subsections":[]},{"section":"webhookconversion-v1-apiextensions-k8s-io","subsections":[]},{"section":"webhookclientconfig-v1-admissionregistration-k8s-io","subsections":[]},{"section":"watchevent-v1-meta","subsections":[]},{"section":"vspherevirtualdiskvolumesource-v1-core","subsections":[]},{"section":"volumeprojection-v1-core","subsections":[]},{"section":"volumenoderesources-v1-storage-k8s-io","subsections":[]},{"section":"volumenodeaffinity-v1-core","subsections":[]},{"section":"volumemount-v1-core","subsections":[]},{"section":"volumeerror-v1-storage-k8s-io","subsections":[]},{"section":"volumedevice-v1-core","subsections":[]},{"section":"volumeattachmentsource-v1-storage-k8s-io","subsections":[]},{"section":"validationrule-v1-apiextensions-k8s-io","subsections":[]},{"section":"validatingwebhook-v1-admissionregistration-k8s-io","subsections":[]},{"section":"usersubject-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"userinfo-v1-authentication-k8s-io","subsections":[]},{"section":"uncountedterminatedpods-v1-batch","subsections":[]},{"section":"typedlocalobjectreference-v1-core","subsections":[]},{"section":"topologyspreadconstraint-v1-core","subsections":[]},{"section":"topologyselectorterm-v1-core","subsections":[]},{"section":"topologyselectorlabelrequirement-v1-core","subsections":[]},{"section":"toleration-v1-core","subsections":[]},{"section":"time-v1-meta","subsections":[]},{"section":"taint-v1-core","subsections":[]},{"section":"tcpsocketaction-v1-core","subsections":[]},{"section":"sysctl-v1-core","subsections":[]},{"section":"supplementalgroupsstrategyoptions-v1beta1-policy","subsections":[]},{"section":"subjectrulesreviewstatus-v1-authorization-k8s-io","subsections":[]},{"section":"subject-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"storageversioncondition-v1alpha1-internal-apiserver-k8s-io","subsections":[]},{"section":"storageosvolumesource-v1-core","subsections":[]},{"section":"storageospersistentvolumesource-v1-core","subsections":[]},{"section":"statusdetails-v1-meta","subsections":[]},{"section":"statuscause-v1-meta","subsections":[]},{"section":"status-v1-meta","subsections":[]},{"section":"statefulsetupdatestrategy-v1-apps","subsections":[]},{"section":"statefulsetpersistentvolumeclaimretentionpolicy-v1-apps","subsections":[]},{"section":"statefulsetcondition-v1-apps","subsections":[]},{"section":"sessionaffinityconfig-v1-core","subsections":[]},{"section":"servicereference-v1-admissionregistration-k8s-io","subsections":[]},{"section":"serviceport-v1-core","subsections":[]},{"section":"servicebackendport-v1-networking-k8s-io","subsections":[]},{"section":"serviceaccounttokenprojection-v1-core","subsections":[]},{"section":"serviceaccountsubject-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"serverstorageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]},{"section":"serveraddressbyclientcidr-v1-meta","subsections":[]},{"section":"securitycontext-v1-core","subsections":[]},{"section":"secretvolumesource-v1-core","subsections":[]},{"section":"secretreference-v1-core","subsections":[]},{"section":"secretprojection-v1-core","subsections":[]},{"section":"secretkeyselector-v1-core","subsections":[]},{"section":"secretenvsource-v1-core","subsections":[]},{"section":"seccompprofile-v1-core","subsections":[]},{"section":"scopedresourceselectorrequirement-v1-core","subsections":[]},{"section":"scopeselector-v1-core","subsections":[]},{"section":"scheduling-v1-node-k8s-io","subsections":[]},{"section":"scaleiovolumesource-v1-core","subsections":[]},{"section":"scaleiopersistentvolumesource-v1-core","subsections":[]},{"section":"scale-v1-autoscaling","subsections":[]},{"section":"selinuxstrategyoptions-v1beta1-policy","subsections":[]},{"section":"selinuxoptions-v1-core","subsections":[]},{"section":"runtimeclassstrategyoptions-v1beta1-policy","subsections":[]},{"section":"runasuserstrategyoptions-v1beta1-policy","subsections":[]},{"section":"runasgroupstrategyoptions-v1beta1-policy","subsections":[]},{"section":"rulewithoperations-v1-admissionregistration-k8s-io","subsections":[]},{"section":"rollingupdatestatefulsetstrategy-v1-apps","subsections":[]},{"section":"roleref-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"resourcerule-v1-authorization-k8s-io","subsections":[]},{"section":"resourcerequirements-v1-core","subsections":[]},{"section":"resourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"resourcemetricstatus-v2-autoscaling","subsections":[]},{"section":"resourcemetricsource-v2-autoscaling","subsections":[]},{"section":"resourcefieldselector-v1-core","subsections":[]},{"section":"resourceattributes-v1-authorization-k8s-io","subsections":[]},{"section":"replicationcontrollercondition-v1-core","subsections":[]},{"section":"replicasetcondition-v1-apps","subsections":[]},{"section":"rbdvolumesource-v1-core","subsections":[]},{"section":"rbdpersistentvolumesource-v1-core","subsections":[]},{"section":"quobytevolumesource-v1-core","subsections":[]},{"section":"queuingconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"quantity-resource-core","subsections":[]},{"section":"projectedvolumesource-v1-core","subsections":[]},{"section":"probe-v1-core","subsections":[]},{"section":"prioritylevelconfigurationreference-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"prioritylevelconfigurationcondition-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"preferredschedulingterm-v1-core","subsections":[]},{"section":"preconditions-v1-meta","subsections":[]},{"section":"portworxvolumesource-v1-core","subsections":[]},{"section":"portstatus-v1-core","subsections":[]},{"section":"policyruleswithsubjects-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"policyrule-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"podsmetricstatus-v2-autoscaling","subsections":[]},{"section":"podsmetricsource-v2-autoscaling","subsections":[]},{"section":"podsecuritycontext-v1-core","subsections":[]},{"section":"podreadinessgate-v1-core","subsections":[]},{"section":"podos-v1-core","subsections":[]},{"section":"podip-v1-core","subsections":[]},{"section":"poddnsconfigoption-v1-core","subsections":[]},{"section":"poddnsconfig-v1-core","subsections":[]},{"section":"podcondition-v1-core","subsections":[]},{"section":"podantiaffinity-v1-core","subsections":[]},{"section":"podaffinityterm-v1-core","subsections":[]},{"section":"podaffinity-v1-core","subsections":[]},{"section":"photonpersistentdiskvolumesource-v1-core","subsections":[]},{"section":"persistentvolumeclaimvolumesource-v1-core","subsections":[]},{"section":"persistentvolumeclaimtemplate-v1-core","subsections":[]},{"section":"persistentvolumeclaimcondition-v1-core","subsections":[]},{"section":"patch-v1-meta","subsections":[]},{"section":"ownerreference-v1-meta","subsections":[]},{"section":"overhead-v1-node-k8s-io","subsections":[]},{"section":"objectreference-v1-core","subsections":[]},{"section":"objectmetricstatus-v2-autoscaling","subsections":[]},{"section":"objectmetricsource-v2-autoscaling","subsections":[]},{"section":"objectmeta-v1-meta","subsections":[]},{"section":"objectfieldselector-v1-core","subsections":[]},{"section":"nonresourcerule-v1-authorization-k8s-io","subsections":[]},{"section":"nonresourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"nonresourceattributes-v1-authorization-k8s-io","subsections":[]},{"section":"nodesysteminfo-v1-core","subsections":[]},{"section":"nodeselectorterm-v1-core","subsections":[]},{"section":"nodeselectorrequirement-v1-core","subsections":[]},{"section":"nodeselector-v1-core","subsections":[]},{"section":"nodedaemonendpoints-v1-core","subsections":[]},{"section":"nodeconfigstatus-v1-core","subsections":[]},{"section":"nodeconfigsource-v1-core","subsections":[]},{"section":"nodecondition-v1-core","subsections":[]},{"section":"nodeaffinity-v1-core","subsections":[]},{"section":"nodeaddress-v1-core","subsections":[]},{"section":"networkpolicyport-v1-networking-k8s-io","subsections":[]},{"section":"networkpolicypeer-v1-networking-k8s-io","subsections":[]},{"section":"networkpolicyingressrule-v1-networking-k8s-io","subsections":[]},{"section":"networkpolicyegressrule-v1-networking-k8s-io","subsections":[]},{"section":"namespacecondition-v1-core","subsections":[]},{"section":"nfsvolumesource-v1-core","subsections":[]},{"section":"mutatingwebhook-v1-admissionregistration-k8s-io","subsections":[]},{"section":"microtime-v1-meta","subsections":[]},{"section":"metricvaluestatus-v2-autoscaling","subsections":[]},{"section":"metrictarget-v2-autoscaling","subsections":[]},{"section":"metricstatus-v2-autoscaling","subsections":[]},{"section":"metricspec-v2-autoscaling","subsections":[]},{"section":"metricidentifier-v2-autoscaling","subsections":[]},{"section":"managedfieldsentry-v1-meta","subsections":[]},{"section":"localvolumesource-v1-core","subsections":[]},{"section":"localobjectreference-v1-core","subsections":[]},{"section":"loadbalancerstatus-v1-core","subsections":[]},{"section":"loadbalanceringress-v1-core","subsections":[]},{"section":"listmeta-v1-meta","subsections":[]},{"section":"limitedprioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"limitresponse-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"limitrangeitem-v1-core","subsections":[]},{"section":"lifecyclehandler-v1-core","subsections":[]},{"section":"lifecycle-v1-core","subsections":[]},{"section":"labelselectorrequirement-v1-meta","subsections":[]},{"section":"labelselector-v1-meta","subsections":[]},{"section":"keytopath-v1-core","subsections":[]},{"section":"jobtemplatespec-v1-batch","subsections":[]},{"section":"jobcondition-v1-batch","subsections":[]},{"section":"jsonschemapropsorbool-v1-apiextensions-k8s-io","subsections":[]},{"section":"jsonschemapropsorarray-v1-apiextensions-k8s-io","subsections":[]},{"section":"jsonschemaprops-v1-apiextensions-k8s-io","subsections":[]},{"section":"json-v1-apiextensions-k8s-io","subsections":[]},{"section":"ingresstls-v1-networking-k8s-io","subsections":[]},{"section":"ingressservicebackend-v1-networking-k8s-io","subsections":[]},{"section":"ingressrule-v1-networking-k8s-io","subsections":[]},{"section":"ingressclassparametersreference-v1-networking-k8s-io","subsections":[]},{"section":"ingressbackend-v1-networking-k8s-io","subsections":[]},{"section":"iscsivolumesource-v1-core","subsections":[]},{"section":"iscsipersistentvolumesource-v1-core","subsections":[]},{"section":"ipblock-v1-networking-k8s-io","subsections":[]},{"section":"idrange-v1beta1-policy","subsections":[]},{"section":"hostportrange-v1beta1-policy","subsections":[]},{"section":"hostpathvolumesource-v1-core","subsections":[]},{"section":"hostalias-v1-core","subsections":[]},{"section":"horizontalpodautoscalercondition-v2-autoscaling","subsections":[]},{"section":"horizontalpodautoscalerbehavior-v2-autoscaling","subsections":[]},{"section":"httpingressrulevalue-v1-networking-k8s-io","subsections":[]},{"section":"httpingresspath-v1-networking-k8s-io","subsections":[]},{"section":"httpheader-v1-core","subsections":[]},{"section":"httpgetaction-v1-core","subsections":[]},{"section":"hpascalingrules-v2-autoscaling","subsections":[]},{"section":"hpascalingpolicy-v2-autoscaling","subsections":[]},{"section":"groupversionfordiscovery-v1-meta","subsections":[]},{"section":"groupsubject-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"glusterfsvolumesource-v1-core","subsections":[]},{"section":"glusterfspersistentvolumesource-v1-core","subsections":[]},{"section":"gitrepovolumesource-v1-core","subsections":[]},{"section":"grpcaction-v1-core","subsections":[]},{"section":"gcepersistentdiskvolumesource-v1-core","subsections":[]},{"section":"forzone-v1-discovery-k8s-io","subsections":[]},{"section":"flowschemacondition-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"flowdistinguishermethod-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"flockervolumesource-v1-core","subsections":[]},{"section":"flexvolumesource-v1-core","subsections":[]},{"section":"flexpersistentvolumesource-v1-core","subsections":[]},{"section":"fieldsv1-v1-meta","subsections":[]},{"section":"fsgroupstrategyoptions-v1beta1-policy","subsections":[]},{"section":"fcvolumesource-v1-core","subsections":[]},{"section":"externalmetricstatus-v2-autoscaling","subsections":[]},{"section":"externalmetricsource-v2-autoscaling","subsections":[]},{"section":"externaldocumentation-v1-apiextensions-k8s-io","subsections":[]},{"section":"execaction-v1-core","subsections":[]},{"section":"eviction-v1-policy","subsections":[]},{"section":"eventsource-v1-core","subsections":[]},{"section":"eventseries-v1-events-k8s-io","subsections":[]},{"section":"ephemeralvolumesource-v1-core","subsections":[]},{"section":"ephemeralcontainer-v1-core","subsections":[]},{"section":"envvarsource-v1-core","subsections":[]},{"section":"envvar-v1-core","subsections":[]},{"section":"envfromsource-v1-core","subsections":[]},{"section":"endpointsubset-v1-core","subsections":[]},{"section":"endpointport-v1-core","subsections":[]},{"section":"endpointhints-v1-discovery-k8s-io","subsections":[]},{"section":"endpointconditions-v1-discovery-k8s-io","subsections":[]},{"section":"endpointaddress-v1-core","subsections":[]},{"section":"endpoint-v1-discovery-k8s-io","subsections":[]},{"section":"emptydirvolumesource-v1-core","subsections":[]},{"section":"downwardapivolumesource-v1-core","subsections":[]},{"section":"downwardapivolumefile-v1-core","subsections":[]},{"section":"downwardapiprojection-v1-core","subsections":[]},{"section":"deploymentcondition-v1-apps","subsections":[]},{"section":"deleteoptions-v1-meta","subsections":[]},{"section":"daemonsetupdatestrategy-v1-apps","subsections":[]},{"section":"daemonsetcondition-v1-apps","subsections":[]},{"section":"daemonendpoint-v1-core","subsections":[]},{"section":"customresourcevalidation-v1-apiextensions-k8s-io","subsections":[]},{"section":"customresourcesubresources-v1-apiextensions-k8s-io","subsections":[]},{"section":"customresourcesubresourcestatus-v1-apiextensions-k8s-io","subsections":[]},{"section":"customresourcesubresourcescale-v1-apiextensions-k8s-io","subsections":[]},{"section":"customresourcedefinitionversion-v1-apiextensions-k8s-io","subsections":[]},{"section":"customresourcedefinitionnames-v1-apiextensions-k8s-io","subsections":[]},{"section":"customresourcedefinitioncondition-v1-apiextensions-k8s-io","subsections":[]},{"section":"customresourceconversion-v1-apiextensions-k8s-io","subsections":[]},{"section":"customresourcecolumndefinition-v1-apiextensions-k8s-io","subsections":[]},{"section":"crossversionobjectreference-v2-autoscaling","subsections":[]},{"section":"containerstatewaiting-v1-core","subsections":[]},{"section":"containerstateterminated-v1-core","subsections":[]},{"section":"containerstaterunning-v1-core","subsections":[]},{"section":"containerstate-v1-core","subsections":[]},{"section":"containerresourcemetricstatus-v2-autoscaling","subsections":[]},{"section":"containerresourcemetricsource-v2-autoscaling","subsections":[]},{"section":"containerport-v1-core","subsections":[]},{"section":"containerimage-v1-core","subsections":[]},{"section":"configmapvolumesource-v1-core","subsections":[]},{"section":"configmapprojection-v1-core","subsections":[]},{"section":"configmapnodeconfigsource-v1-core","subsections":[]},{"section":"configmapkeyselector-v1-core","subsections":[]},{"section":"configmapenvsource-v1-core","subsections":[]},{"section":"condition-v1-meta","subsections":[]},{"section":"componentcondition-v1-core","subsections":[]},{"section":"clientipconfig-v1-core","subsections":[]},{"section":"cindervolumesource-v1-core","subsections":[]},{"section":"cinderpersistentvolumesource-v1-core","subsections":[]},{"section":"certificatesigningrequestcondition-v1-certificates-k8s-io","subsections":[]},{"section":"cephfsvolumesource-v1-core","subsections":[]},{"section":"cephfspersistentvolumesource-v1-core","subsections":[]},{"section":"capabilities-v1-core","subsections":[]},{"section":"csivolumesource-v1-core","subsections":[]},{"section":"csistoragecapacity-v1-storage-k8s-io","subsections":[]},{"section":"csipersistentvolumesource-v1-core","subsections":[]},{"section":"csinodedriver-v1-storage-k8s-io","subsections":[]},{"section":"boundobjectreference-v1-authentication-k8s-io","subsections":[]},{"section":"azurefilevolumesource-v1-core","subsections":[]},{"section":"azurefilepersistentvolumesource-v1-core","subsections":[]},{"section":"azurediskvolumesource-v1-core","subsections":[]},{"section":"attachedvolume-v1-core","subsections":[]},{"section":"allowedhostpath-v1beta1-policy","subsections":[]},{"section":"allowedflexvolume-v1beta1-policy","subsections":[]},{"section":"allowedcsidriver-v1beta1-policy","subsections":[]},{"section":"aggregationrule-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"affinity-v1-core","subsections":[]},{"section":"awselasticblockstorevolumesource-v1-core","subsections":[]},{"section":"apiversions-v1-meta","subsections":[]},{"section":"apiservicecondition-v1-apiregistration-k8s-io","subsections":[]},{"section":"apiresource-v1-meta","subsections":[]},{"section":"apigroup-v1-meta","subsections":[]},{"section":"-strong-definitions-strong-","subsections":[]},{"section":"networkpolicy-v1-networking-k8s-io","subsections":[{"section":"-strong-status-operations-networkpolicy-v1-networking-k8s-io-strong-","subsections":[{"section":"replace-status-networkpolicy-v1-networking-k8s-io","subsections":[]},{"section":"read-status-networkpolicy-v1-networking-k8s-io","subsections":[]},{"section":"patch-status-networkpolicy-v1-networking-k8s-io","subsections":[]}]},{"section":"-strong-read-operations-networkpolicy-v1-networking-k8s-io-strong-","subsections":[{"section":"watch-list-all-namespaces-networkpolicy-v1-networking-k8s-io","subsections":[]},{"section":"watch-list-networkpolicy-v1-networking-k8s-io","subsections":[]},{"section":"watch-networkpolicy-v1-networking-k8s-io","subsections":[]},{"section":"list-all-namespaces-networkpolicy-v1-networking-k8s-io","subsections":[]},{"section":"list-networkpolicy-v1-networking-k8s-io","subsections":[]},{"section":"read-networkpolicy-v1-networking-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-networkpolicy-v1-networking-k8s-io-strong-","subsections":[{"section":"delete-collection-networkpolicy-v1-networking-k8s-io","subsections":[]},{"section":"delete-networkpolicy-v1-networking-k8s-io","subsections":[]},{"section":"replace-networkpolicy-v1-networking-k8s-io","subsections":[]},{"section":"patch-networkpolicy-v1-networking-k8s-io","subsections":[]},{"section":"create-networkpolicy-v1-networking-k8s-io","subsections":[]}]}]},{"section":"tokenreview-v1-authentication-k8s-io","subsections":[{"section":"-strong-write-operations-tokenreview-v1-authentication-k8s-io-strong-","subsections":[{"section":"create-tokenreview-v1-authentication-k8s-io","subsections":[]}]}]},{"section":"tokenrequest-v1-authentication-k8s-io","subsections":[]},{"section":"subjectaccessreview-v1-authorization-k8s-io","subsections":[{"section":"-strong-write-operations-subjectaccessreview-v1-authorization-k8s-io-strong-","subsections":[{"section":"create-subjectaccessreview-v1-authorization-k8s-io","subsections":[]}]}]},{"section":"storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[{"section":"-strong-status-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-","subsections":[{"section":"replace-status-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]},{"section":"read-status-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]},{"section":"patch-status-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]}]},{"section":"-strong-read-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-","subsections":[{"section":"watch-list-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]},{"section":"watch-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]},{"section":"list-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]},{"section":"read-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-","subsections":[{"section":"delete-collection-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]},{"section":"delete-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]},{"section":"replace-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]},{"section":"patch-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]},{"section":"create-storageversion-v1alpha1-internal-apiserver-k8s-io","subsections":[]}]}]},{"section":"serviceaccount-v1-core","subsections":[{"section":"-strong-read-operations-serviceaccount-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-serviceaccount-v1-core","subsections":[]},{"section":"watch-list-serviceaccount-v1-core","subsections":[]},{"section":"watch-serviceaccount-v1-core","subsections":[]},{"section":"list-all-namespaces-serviceaccount-v1-core","subsections":[]},{"section":"list-serviceaccount-v1-core","subsections":[]},{"section":"read-serviceaccount-v1-core","subsections":[]}]},{"section":"-strong-write-operations-serviceaccount-v1-core-strong-","subsections":[{"section":"delete-collection-serviceaccount-v1-core","subsections":[]},{"section":"delete-serviceaccount-v1-core","subsections":[]},{"section":"replace-serviceaccount-v1-core","subsections":[]},{"section":"patch-serviceaccount-v1-core","subsections":[]},{"section":"create-serviceaccount-v1-core","subsections":[]}]}]},{"section":"selfsubjectrulesreview-v1-authorization-k8s-io","subsections":[{"section":"-strong-write-operations-selfsubjectrulesreview-v1-authorization-k8s-io-strong-","subsections":[{"section":"create-selfsubjectrulesreview-v1-authorization-k8s-io","subsections":[]}]}]},{"section":"selfsubjectaccessreview-v1-authorization-k8s-io","subsections":[{"section":"-strong-write-operations-selfsubjectaccessreview-v1-authorization-k8s-io-strong-","subsections":[{"section":"create-selfsubjectaccessreview-v1-authorization-k8s-io","subsections":[]}]}]},{"section":"runtimeclass-v1-node-k8s-io","subsections":[{"section":"-strong-read-operations-runtimeclass-v1-node-k8s-io-strong-","subsections":[{"section":"watch-list-runtimeclass-v1-node-k8s-io","subsections":[]},{"section":"watch-runtimeclass-v1-node-k8s-io","subsections":[]},{"section":"list-runtimeclass-v1-node-k8s-io","subsections":[]},{"section":"read-runtimeclass-v1-node-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-runtimeclass-v1-node-k8s-io-strong-","subsections":[{"section":"delete-collection-runtimeclass-v1-node-k8s-io","subsections":[]},{"section":"delete-runtimeclass-v1-node-k8s-io","subsections":[]},{"section":"replace-runtimeclass-v1-node-k8s-io","subsections":[]},{"section":"patch-runtimeclass-v1-node-k8s-io","subsections":[]},{"section":"create-runtimeclass-v1-node-k8s-io","subsections":[]}]}]},{"section":"rolebinding-v1-rbac-authorization-k8s-io","subsections":[{"section":"-strong-read-operations-rolebinding-v1-rbac-authorization-k8s-io-strong-","subsections":[{"section":"watch-list-all-namespaces-rolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"watch-list-rolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"watch-rolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"list-all-namespaces-rolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"list-rolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"read-rolebinding-v1-rbac-authorization-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-rolebinding-v1-rbac-authorization-k8s-io-strong-","subsections":[{"section":"delete-collection-rolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"delete-rolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"replace-rolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"patch-rolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"create-rolebinding-v1-rbac-authorization-k8s-io","subsections":[]}]}]},{"section":"role-v1-rbac-authorization-k8s-io","subsections":[{"section":"-strong-read-operations-role-v1-rbac-authorization-k8s-io-strong-","subsections":[{"section":"watch-list-all-namespaces-role-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"watch-list-role-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"watch-role-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"list-all-namespaces-role-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"list-role-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"read-role-v1-rbac-authorization-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-role-v1-rbac-authorization-k8s-io-strong-","subsections":[{"section":"delete-collection-role-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"delete-role-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"replace-role-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"patch-role-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"create-role-v1-rbac-authorization-k8s-io","subsections":[]}]}]},{"section":"resourcequota-v1-core","subsections":[{"section":"-strong-status-operations-resourcequota-v1-core-strong-","subsections":[{"section":"replace-status-resourcequota-v1-core","subsections":[]},{"section":"read-status-resourcequota-v1-core","subsections":[]},{"section":"patch-status-resourcequota-v1-core","subsections":[]}]},{"section":"-strong-read-operations-resourcequota-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-resourcequota-v1-core","subsections":[]},{"section":"watch-list-resourcequota-v1-core","subsections":[]},{"section":"watch-resourcequota-v1-core","subsections":[]},{"section":"list-all-namespaces-resourcequota-v1-core","subsections":[]},{"section":"list-resourcequota-v1-core","subsections":[]},{"section":"read-resourcequota-v1-core","subsections":[]}]},{"section":"-strong-write-operations-resourcequota-v1-core-strong-","subsections":[{"section":"delete-collection-resourcequota-v1-core","subsections":[]},{"section":"delete-resourcequota-v1-core","subsections":[]},{"section":"replace-resourcequota-v1-core","subsections":[]},{"section":"patch-resourcequota-v1-core","subsections":[]},{"section":"create-resourcequota-v1-core","subsections":[]}]}]},{"section":"prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[{"section":"-strong-status-operations-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"replace-status-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"read-status-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"patch-status-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]}]},{"section":"-strong-read-operations-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"watch-list-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"watch-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"list-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"read-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"delete-collection-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"delete-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"replace-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"patch-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"create-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]}]}]},{"section":"persistentvolume-v1-core","subsections":[{"section":"-strong-status-operations-persistentvolume-v1-core-strong-","subsections":[{"section":"replace-status-persistentvolume-v1-core","subsections":[]},{"section":"read-status-persistentvolume-v1-core","subsections":[]},{"section":"patch-status-persistentvolume-v1-core","subsections":[]}]},{"section":"-strong-read-operations-persistentvolume-v1-core-strong-","subsections":[{"section":"watch-list-persistentvolume-v1-core","subsections":[]},{"section":"watch-persistentvolume-v1-core","subsections":[]},{"section":"list-persistentvolume-v1-core","subsections":[]},{"section":"read-persistentvolume-v1-core","subsections":[]}]},{"section":"-strong-write-operations-persistentvolume-v1-core-strong-","subsections":[{"section":"delete-collection-persistentvolume-v1-core","subsections":[]},{"section":"delete-persistentvolume-v1-core","subsections":[]},{"section":"replace-persistentvolume-v1-core","subsections":[]},{"section":"patch-persistentvolume-v1-core","subsections":[]},{"section":"create-persistentvolume-v1-core","subsections":[]}]}]},{"section":"node-v1-core","subsections":[{"section":"-strong-proxy-operations-node-v1-core-strong-","subsections":[{"section":"replace-connect-proxy-path-node-v1-core","subsections":[]},{"section":"replace-connect-proxy-node-v1-core","subsections":[]},{"section":"head-connect-proxy-path-node-v1-core","subsections":[]},{"section":"head-connect-proxy-node-v1-core","subsections":[]},{"section":"get-connect-proxy-path-node-v1-core","subsections":[]},{"section":"get-connect-proxy-node-v1-core","subsections":[]},{"section":"delete-connect-proxy-path-node-v1-core","subsections":[]},{"section":"delete-connect-proxy-node-v1-core","subsections":[]},{"section":"create-connect-proxy-path-node-v1-core","subsections":[]},{"section":"create-connect-proxy-node-v1-core","subsections":[]}]},{"section":"-strong-status-operations-node-v1-core-strong-","subsections":[{"section":"replace-status-node-v1-core","subsections":[]},{"section":"read-status-node-v1-core","subsections":[]},{"section":"patch-status-node-v1-core","subsections":[]}]},{"section":"-strong-read-operations-node-v1-core-strong-","subsections":[{"section":"watch-list-node-v1-core","subsections":[]},{"section":"watch-node-v1-core","subsections":[]},{"section":"list-node-v1-core","subsections":[]},{"section":"read-node-v1-core","subsections":[]}]},{"section":"-strong-write-operations-node-v1-core-strong-","subsections":[{"section":"delete-collection-node-v1-core","subsections":[]},{"section":"delete-node-v1-core","subsections":[]},{"section":"replace-node-v1-core","subsections":[]},{"section":"patch-node-v1-core","subsections":[]},{"section":"create-node-v1-core","subsections":[]}]}]},{"section":"namespace-v1-core","subsections":[{"section":"-strong-status-operations-namespace-v1-core-strong-","subsections":[{"section":"replace-status-namespace-v1-core","subsections":[]},{"section":"read-status-namespace-v1-core","subsections":[]},{"section":"patch-status-namespace-v1-core","subsections":[]}]},{"section":"-strong-read-operations-namespace-v1-core-strong-","subsections":[{"section":"watch-list-namespace-v1-core","subsections":[]},{"section":"watch-namespace-v1-core","subsections":[]},{"section":"list-namespace-v1-core","subsections":[]},{"section":"read-namespace-v1-core","subsections":[]}]},{"section":"-strong-write-operations-namespace-v1-core-strong-","subsections":[{"section":"delete-namespace-v1-core","subsections":[]},{"section":"replace-namespace-v1-core","subsections":[]},{"section":"patch-namespace-v1-core","subsections":[]},{"section":"create-namespace-v1-core","subsections":[]}]}]},{"section":"localsubjectaccessreview-v1-authorization-k8s-io","subsections":[{"section":"-strong-write-operations-localsubjectaccessreview-v1-authorization-k8s-io-strong-","subsections":[{"section":"create-localsubjectaccessreview-v1-authorization-k8s-io","subsections":[]}]}]},{"section":"lease-v1-coordination-k8s-io","subsections":[{"section":"-strong-read-operations-lease-v1-coordination-k8s-io-strong-","subsections":[{"section":"watch-list-all-namespaces-lease-v1-coordination-k8s-io","subsections":[]},{"section":"watch-list-lease-v1-coordination-k8s-io","subsections":[]},{"section":"watch-lease-v1-coordination-k8s-io","subsections":[]},{"section":"list-all-namespaces-lease-v1-coordination-k8s-io","subsections":[]},{"section":"list-lease-v1-coordination-k8s-io","subsections":[]},{"section":"read-lease-v1-coordination-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-lease-v1-coordination-k8s-io-strong-","subsections":[{"section":"delete-collection-lease-v1-coordination-k8s-io","subsections":[]},{"section":"delete-lease-v1-coordination-k8s-io","subsections":[]},{"section":"replace-lease-v1-coordination-k8s-io","subsections":[]},{"section":"patch-lease-v1-coordination-k8s-io","subsections":[]},{"section":"create-lease-v1-coordination-k8s-io","subsections":[]}]}]},{"section":"flowschema-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[{"section":"-strong-status-operations-flowschema-v1beta2-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"replace-status-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"read-status-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"patch-status-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]}]},{"section":"-strong-read-operations-flowschema-v1beta2-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"watch-list-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"watch-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"list-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"read-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-flowschema-v1beta2-flowcontrol-apiserver-k8s-io-strong-","subsections":[{"section":"delete-collection-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"delete-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"replace-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"patch-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]},{"section":"create-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","subsections":[]}]}]},{"section":"componentstatus-v1-core","subsections":[{"section":"-strong-read-operations-componentstatus-v1-core-strong-","subsections":[{"section":"list-componentstatus-v1-core","subsections":[]},{"section":"read-componentstatus-v1-core","subsections":[]}]}]},{"section":"clusterrolebinding-v1-rbac-authorization-k8s-io","subsections":[{"section":"-strong-read-operations-clusterrolebinding-v1-rbac-authorization-k8s-io-strong-","subsections":[{"section":"watch-list-clusterrolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"watch-clusterrolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"list-clusterrolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"read-clusterrolebinding-v1-rbac-authorization-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-clusterrolebinding-v1-rbac-authorization-k8s-io-strong-","subsections":[{"section":"delete-collection-clusterrolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"delete-clusterrolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"replace-clusterrolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"patch-clusterrolebinding-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"create-clusterrolebinding-v1-rbac-authorization-k8s-io","subsections":[]}]}]},{"section":"clusterrole-v1-rbac-authorization-k8s-io","subsections":[{"section":"-strong-read-operations-clusterrole-v1-rbac-authorization-k8s-io-strong-","subsections":[{"section":"watch-list-clusterrole-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"watch-clusterrole-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"list-clusterrole-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"read-clusterrole-v1-rbac-authorization-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-clusterrole-v1-rbac-authorization-k8s-io-strong-","subsections":[{"section":"delete-collection-clusterrole-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"delete-clusterrole-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"replace-clusterrole-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"patch-clusterrole-v1-rbac-authorization-k8s-io","subsections":[]},{"section":"create-clusterrole-v1-rbac-authorization-k8s-io","subsections":[]}]}]},{"section":"certificatesigningrequest-v1-certificates-k8s-io","subsections":[{"section":"-strong-status-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-","subsections":[{"section":"replace-status-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]},{"section":"read-status-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]},{"section":"patch-status-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]}]},{"section":"-strong-read-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-","subsections":[{"section":"watch-list-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]},{"section":"watch-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]},{"section":"list-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]},{"section":"read-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-","subsections":[{"section":"delete-collection-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]},{"section":"delete-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]},{"section":"replace-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]},{"section":"patch-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]},{"section":"create-certificatesigningrequest-v1-certificates-k8s-io","subsections":[]}]}]},{"section":"binding-v1-core","subsections":[{"section":"-strong-write-operations-binding-v1-core-strong-","subsections":[{"section":"create-binding-v1-core","subsections":[]}]}]},{"section":"apiservice-v1-apiregistration-k8s-io","subsections":[{"section":"-strong-status-operations-apiservice-v1-apiregistration-k8s-io-strong-","subsections":[{"section":"replace-status-apiservice-v1-apiregistration-k8s-io","subsections":[]},{"section":"read-status-apiservice-v1-apiregistration-k8s-io","subsections":[]},{"section":"patch-status-apiservice-v1-apiregistration-k8s-io","subsections":[]}]},{"section":"-strong-read-operations-apiservice-v1-apiregistration-k8s-io-strong-","subsections":[{"section":"watch-list-apiservice-v1-apiregistration-k8s-io","subsections":[]},{"section":"watch-apiservice-v1-apiregistration-k8s-io","subsections":[]},{"section":"list-apiservice-v1-apiregistration-k8s-io","subsections":[]},{"section":"read-apiservice-v1-apiregistration-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-apiservice-v1-apiregistration-k8s-io-strong-","subsections":[{"section":"delete-collection-apiservice-v1-apiregistration-k8s-io","subsections":[]},{"section":"delete-apiservice-v1-apiregistration-k8s-io","subsections":[]},{"section":"replace-apiservice-v1-apiregistration-k8s-io","subsections":[]},{"section":"patch-apiservice-v1-apiregistration-k8s-io","subsections":[]},{"section":"create-apiservice-v1-apiregistration-k8s-io","subsections":[]}]}]},{"section":"-strong-cluster-apis-strong-","subsections":[]},{"section":"podsecuritypolicy-v1beta1-policy","subsections":[{"section":"-strong-read-operations-podsecuritypolicy-v1beta1-policy-strong-","subsections":[{"section":"watch-list-podsecuritypolicy-v1beta1-policy","subsections":[]},{"section":"watch-podsecuritypolicy-v1beta1-policy","subsections":[]},{"section":"list-podsecuritypolicy-v1beta1-policy","subsections":[]},{"section":"read-podsecuritypolicy-v1beta1-policy","subsections":[]}]},{"section":"-strong-write-operations-podsecuritypolicy-v1beta1-policy-strong-","subsections":[{"section":"delete-collection-podsecuritypolicy-v1beta1-policy","subsections":[]},{"section":"delete-podsecuritypolicy-v1beta1-policy","subsections":[]},{"section":"replace-podsecuritypolicy-v1beta1-policy","subsections":[]},{"section":"patch-podsecuritypolicy-v1beta1-policy","subsections":[]},{"section":"create-podsecuritypolicy-v1beta1-policy","subsections":[]}]}]},{"section":"priorityclass-v1-scheduling-k8s-io","subsections":[{"section":"-strong-read-operations-priorityclass-v1-scheduling-k8s-io-strong-","subsections":[{"section":"watch-list-priorityclass-v1-scheduling-k8s-io","subsections":[]},{"section":"watch-priorityclass-v1-scheduling-k8s-io","subsections":[]},{"section":"list-priorityclass-v1-scheduling-k8s-io","subsections":[]},{"section":"read-priorityclass-v1-scheduling-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-priorityclass-v1-scheduling-k8s-io-strong-","subsections":[{"section":"delete-collection-priorityclass-v1-scheduling-k8s-io","subsections":[]},{"section":"delete-priorityclass-v1-scheduling-k8s-io","subsections":[]},{"section":"replace-priorityclass-v1-scheduling-k8s-io","subsections":[]},{"section":"patch-priorityclass-v1-scheduling-k8s-io","subsections":[]},{"section":"create-priorityclass-v1-scheduling-k8s-io","subsections":[]}]}]},{"section":"poddisruptionbudget-v1-policy","subsections":[{"section":"-strong-status-operations-poddisruptionbudget-v1-policy-strong-","subsections":[{"section":"replace-status-poddisruptionbudget-v1-policy","subsections":[]},{"section":"read-status-poddisruptionbudget-v1-policy","subsections":[]},{"section":"patch-status-poddisruptionbudget-v1-policy","subsections":[]}]},{"section":"-strong-read-operations-poddisruptionbudget-v1-policy-strong-","subsections":[{"section":"watch-list-all-namespaces-poddisruptionbudget-v1-policy","subsections":[]},{"section":"watch-list-poddisruptionbudget-v1-policy","subsections":[]},{"section":"watch-poddisruptionbudget-v1-policy","subsections":[]},{"section":"list-all-namespaces-poddisruptionbudget-v1-policy","subsections":[]},{"section":"list-poddisruptionbudget-v1-policy","subsections":[]},{"section":"read-poddisruptionbudget-v1-policy","subsections":[]}]},{"section":"-strong-write-operations-poddisruptionbudget-v1-policy-strong-","subsections":[{"section":"delete-collection-poddisruptionbudget-v1-policy","subsections":[]},{"section":"delete-poddisruptionbudget-v1-policy","subsections":[]},{"section":"replace-poddisruptionbudget-v1-policy","subsections":[]},{"section":"patch-poddisruptionbudget-v1-policy","subsections":[]},{"section":"create-poddisruptionbudget-v1-policy","subsections":[]}]}]},{"section":"podtemplate-v1-core","subsections":[{"section":"-strong-read-operations-podtemplate-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-podtemplate-v1-core","subsections":[]},{"section":"watch-list-podtemplate-v1-core","subsections":[]},{"section":"watch-podtemplate-v1-core","subsections":[]},{"section":"list-all-namespaces-podtemplate-v1-core","subsections":[]},{"section":"list-podtemplate-v1-core","subsections":[]},{"section":"read-podtemplate-v1-core","subsections":[]}]},{"section":"-strong-write-operations-podtemplate-v1-core-strong-","subsections":[{"section":"delete-collection-podtemplate-v1-core","subsections":[]},{"section":"delete-podtemplate-v1-core","subsections":[]},{"section":"replace-podtemplate-v1-core","subsections":[]},{"section":"patch-podtemplate-v1-core","subsections":[]},{"section":"create-podtemplate-v1-core","subsections":[]}]}]},{"section":"validatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[{"section":"-strong-read-operations-validatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-","subsections":[{"section":"watch-list-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"watch-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"list-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"read-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-validatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-","subsections":[{"section":"delete-collection-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"delete-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"replace-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"patch-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"create-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]}]}]},{"section":"mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[{"section":"-strong-read-operations-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-","subsections":[{"section":"watch-list-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"watch-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"list-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"read-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-","subsections":[{"section":"delete-collection-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"delete-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"replace-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"patch-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]},{"section":"create-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","subsections":[]}]}]},{"section":"horizontalpodautoscaler-v2-autoscaling","subsections":[{"section":"-strong-status-operations-horizontalpodautoscaler-v2-autoscaling-strong-","subsections":[{"section":"replace-status-horizontalpodautoscaler-v2-autoscaling","subsections":[]},{"section":"read-status-horizontalpodautoscaler-v2-autoscaling","subsections":[]},{"section":"patch-status-horizontalpodautoscaler-v2-autoscaling","subsections":[]}]},{"section":"-strong-read-operations-horizontalpodautoscaler-v2-autoscaling-strong-","subsections":[{"section":"watch-list-all-namespaces-horizontalpodautoscaler-v2-autoscaling","subsections":[]},{"section":"watch-list-horizontalpodautoscaler-v2-autoscaling","subsections":[]},{"section":"watch-horizontalpodautoscaler-v2-autoscaling","subsections":[]},{"section":"list-all-namespaces-horizontalpodautoscaler-v2-autoscaling","subsections":[]},{"section":"list-horizontalpodautoscaler-v2-autoscaling","subsections":[]},{"section":"read-horizontalpodautoscaler-v2-autoscaling","subsections":[]}]},{"section":"-strong-write-operations-horizontalpodautoscaler-v2-autoscaling-strong-","subsections":[{"section":"delete-collection-horizontalpodautoscaler-v2-autoscaling","subsections":[]},{"section":"delete-horizontalpodautoscaler-v2-autoscaling","subsections":[]},{"section":"replace-horizontalpodautoscaler-v2-autoscaling","subsections":[]},{"section":"patch-horizontalpodautoscaler-v2-autoscaling","subsections":[]},{"section":"create-horizontalpodautoscaler-v2-autoscaling","subsections":[]}]}]},{"section":"limitrange-v1-core","subsections":[{"section":"-strong-read-operations-limitrange-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-limitrange-v1-core","subsections":[]},{"section":"watch-list-limitrange-v1-core","subsections":[]},{"section":"watch-limitrange-v1-core","subsections":[]},{"section":"list-all-namespaces-limitrange-v1-core","subsections":[]},{"section":"list-limitrange-v1-core","subsections":[]},{"section":"read-limitrange-v1-core","subsections":[]}]},{"section":"-strong-write-operations-limitrange-v1-core-strong-","subsections":[{"section":"delete-collection-limitrange-v1-core","subsections":[]},{"section":"delete-limitrange-v1-core","subsections":[]},{"section":"replace-limitrange-v1-core","subsections":[]},{"section":"patch-limitrange-v1-core","subsections":[]},{"section":"create-limitrange-v1-core","subsections":[]}]}]},{"section":"event-v1-events-k8s-io","subsections":[{"section":"-strong-read-operations-event-v1-events-k8s-io-strong-","subsections":[{"section":"watch-list-all-namespaces-event-v1-events-k8s-io","subsections":[]},{"section":"watch-list-event-v1-events-k8s-io","subsections":[]},{"section":"watch-event-v1-events-k8s-io","subsections":[]},{"section":"list-all-namespaces-event-v1-events-k8s-io","subsections":[]},{"section":"list-event-v1-events-k8s-io","subsections":[]},{"section":"read-event-v1-events-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-event-v1-events-k8s-io-strong-","subsections":[{"section":"delete-collection-event-v1-events-k8s-io","subsections":[]},{"section":"delete-event-v1-events-k8s-io","subsections":[]},{"section":"replace-event-v1-events-k8s-io","subsections":[]},{"section":"patch-event-v1-events-k8s-io","subsections":[]},{"section":"create-event-v1-events-k8s-io","subsections":[]}]}]},{"section":"customresourcedefinition-v1-apiextensions-k8s-io","subsections":[{"section":"-strong-status-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-","subsections":[{"section":"replace-status-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]},{"section":"read-status-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]},{"section":"patch-status-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]}]},{"section":"-strong-read-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-","subsections":[{"section":"watch-list-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]},{"section":"watch-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]},{"section":"list-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]},{"section":"read-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-","subsections":[{"section":"delete-collection-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]},{"section":"delete-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]},{"section":"replace-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]},{"section":"patch-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]},{"section":"create-customresourcedefinition-v1-apiextensions-k8s-io","subsections":[]}]}]},{"section":"controllerrevision-v1-apps","subsections":[{"section":"-strong-read-operations-controllerrevision-v1-apps-strong-","subsections":[{"section":"watch-list-all-namespaces-controllerrevision-v1-apps","subsections":[]},{"section":"watch-list-controllerrevision-v1-apps","subsections":[]},{"section":"watch-controllerrevision-v1-apps","subsections":[]},{"section":"list-all-namespaces-controllerrevision-v1-apps","subsections":[]},{"section":"list-controllerrevision-v1-apps","subsections":[]},{"section":"read-controllerrevision-v1-apps","subsections":[]}]},{"section":"-strong-write-operations-controllerrevision-v1-apps-strong-","subsections":[{"section":"delete-collection-controllerrevision-v1-apps","subsections":[]},{"section":"delete-controllerrevision-v1-apps","subsections":[]},{"section":"replace-controllerrevision-v1-apps","subsections":[]},{"section":"patch-controllerrevision-v1-apps","subsections":[]},{"section":"create-controllerrevision-v1-apps","subsections":[]}]}]},{"section":"-strong-metadata-apis-strong-","subsections":[]},{"section":"volumeattachment-v1-storage-k8s-io","subsections":[{"section":"-strong-status-operations-volumeattachment-v1-storage-k8s-io-strong-","subsections":[{"section":"replace-status-volumeattachment-v1-storage-k8s-io","subsections":[]},{"section":"read-status-volumeattachment-v1-storage-k8s-io","subsections":[]},{"section":"patch-status-volumeattachment-v1-storage-k8s-io","subsections":[]}]},{"section":"-strong-read-operations-volumeattachment-v1-storage-k8s-io-strong-","subsections":[{"section":"watch-list-volumeattachment-v1-storage-k8s-io","subsections":[]},{"section":"watch-volumeattachment-v1-storage-k8s-io","subsections":[]},{"section":"list-volumeattachment-v1-storage-k8s-io","subsections":[]},{"section":"read-volumeattachment-v1-storage-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-volumeattachment-v1-storage-k8s-io-strong-","subsections":[{"section":"delete-collection-volumeattachment-v1-storage-k8s-io","subsections":[]},{"section":"delete-volumeattachment-v1-storage-k8s-io","subsections":[]},{"section":"replace-volumeattachment-v1-storage-k8s-io","subsections":[]},{"section":"patch-volumeattachment-v1-storage-k8s-io","subsections":[]},{"section":"create-volumeattachment-v1-storage-k8s-io","subsections":[]}]}]},{"section":"volume-v1-core","subsections":[]},{"section":"csistoragecapacity-v1beta1-storage-k8s-io","subsections":[{"section":"-strong-read-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-","subsections":[{"section":"watch-list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"watch-list-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"watch-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"list-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"read-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-","subsections":[{"section":"delete-collection-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"delete-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"replace-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"patch-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]},{"section":"create-csistoragecapacity-v1beta1-storage-k8s-io","subsections":[]}]}]},{"section":"storageclass-v1-storage-k8s-io","subsections":[{"section":"-strong-read-operations-storageclass-v1-storage-k8s-io-strong-","subsections":[{"section":"watch-list-storageclass-v1-storage-k8s-io","subsections":[]},{"section":"watch-storageclass-v1-storage-k8s-io","subsections":[]},{"section":"list-storageclass-v1-storage-k8s-io","subsections":[]},{"section":"read-storageclass-v1-storage-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-storageclass-v1-storage-k8s-io-strong-","subsections":[{"section":"delete-collection-storageclass-v1-storage-k8s-io","subsections":[]},{"section":"delete-storageclass-v1-storage-k8s-io","subsections":[]},{"section":"replace-storageclass-v1-storage-k8s-io","subsections":[]},{"section":"patch-storageclass-v1-storage-k8s-io","subsections":[]},{"section":"create-storageclass-v1-storage-k8s-io","subsections":[]}]}]},{"section":"persistentvolumeclaim-v1-core","subsections":[{"section":"-strong-status-operations-persistentvolumeclaim-v1-core-strong-","subsections":[{"section":"replace-status-persistentvolumeclaim-v1-core","subsections":[]},{"section":"read-status-persistentvolumeclaim-v1-core","subsections":[]},{"section":"patch-status-persistentvolumeclaim-v1-core","subsections":[]}]},{"section":"-strong-read-operations-persistentvolumeclaim-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-persistentvolumeclaim-v1-core","subsections":[]},{"section":"watch-list-persistentvolumeclaim-v1-core","subsections":[]},{"section":"watch-persistentvolumeclaim-v1-core","subsections":[]},{"section":"list-all-namespaces-persistentvolumeclaim-v1-core","subsections":[]},{"section":"list-persistentvolumeclaim-v1-core","subsections":[]},{"section":"read-persistentvolumeclaim-v1-core","subsections":[]}]},{"section":"-strong-write-operations-persistentvolumeclaim-v1-core-strong-","subsections":[{"section":"delete-collection-persistentvolumeclaim-v1-core","subsections":[]},{"section":"delete-persistentvolumeclaim-v1-core","subsections":[]},{"section":"replace-persistentvolumeclaim-v1-core","subsections":[]},{"section":"patch-persistentvolumeclaim-v1-core","subsections":[]},{"section":"create-persistentvolumeclaim-v1-core","subsections":[]}]}]},{"section":"secret-v1-core","subsections":[{"section":"-strong-read-operations-secret-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-secret-v1-core","subsections":[]},{"section":"watch-list-secret-v1-core","subsections":[]},{"section":"watch-secret-v1-core","subsections":[]},{"section":"list-all-namespaces-secret-v1-core","subsections":[]},{"section":"list-secret-v1-core","subsections":[]},{"section":"read-secret-v1-core","subsections":[]}]},{"section":"-strong-write-operations-secret-v1-core-strong-","subsections":[{"section":"delete-collection-secret-v1-core","subsections":[]},{"section":"delete-secret-v1-core","subsections":[]},{"section":"replace-secret-v1-core","subsections":[]},{"section":"patch-secret-v1-core","subsections":[]},{"section":"create-secret-v1-core","subsections":[]}]}]},{"section":"csinode-v1-storage-k8s-io","subsections":[{"section":"-strong-read-operations-csinode-v1-storage-k8s-io-strong-","subsections":[{"section":"watch-list-csinode-v1-storage-k8s-io","subsections":[]},{"section":"watch-csinode-v1-storage-k8s-io","subsections":[]},{"section":"list-csinode-v1-storage-k8s-io","subsections":[]},{"section":"read-csinode-v1-storage-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-csinode-v1-storage-k8s-io-strong-","subsections":[{"section":"delete-collection-csinode-v1-storage-k8s-io","subsections":[]},{"section":"delete-csinode-v1-storage-k8s-io","subsections":[]},{"section":"replace-csinode-v1-storage-k8s-io","subsections":[]},{"section":"patch-csinode-v1-storage-k8s-io","subsections":[]},{"section":"create-csinode-v1-storage-k8s-io","subsections":[]}]}]},{"section":"csidriver-v1-storage-k8s-io","subsections":[{"section":"-strong-read-operations-csidriver-v1-storage-k8s-io-strong-","subsections":[{"section":"watch-list-csidriver-v1-storage-k8s-io","subsections":[]},{"section":"watch-csidriver-v1-storage-k8s-io","subsections":[]},{"section":"list-csidriver-v1-storage-k8s-io","subsections":[]},{"section":"read-csidriver-v1-storage-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-csidriver-v1-storage-k8s-io-strong-","subsections":[{"section":"delete-collection-csidriver-v1-storage-k8s-io","subsections":[]},{"section":"delete-csidriver-v1-storage-k8s-io","subsections":[]},{"section":"replace-csidriver-v1-storage-k8s-io","subsections":[]},{"section":"patch-csidriver-v1-storage-k8s-io","subsections":[]},{"section":"create-csidriver-v1-storage-k8s-io","subsections":[]}]}]},{"section":"configmap-v1-core","subsections":[{"section":"-strong-read-operations-configmap-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-configmap-v1-core","subsections":[]},{"section":"watch-list-configmap-v1-core","subsections":[]},{"section":"watch-configmap-v1-core","subsections":[]},{"section":"list-all-namespaces-configmap-v1-core","subsections":[]},{"section":"list-configmap-v1-core","subsections":[]},{"section":"read-configmap-v1-core","subsections":[]}]},{"section":"-strong-write-operations-configmap-v1-core-strong-","subsections":[{"section":"delete-collection-configmap-v1-core","subsections":[]},{"section":"delete-configmap-v1-core","subsections":[]},{"section":"replace-configmap-v1-core","subsections":[]},{"section":"patch-configmap-v1-core","subsections":[]},{"section":"create-configmap-v1-core","subsections":[]}]}]},{"section":"-strong-config-and-storage-apis-strong-","subsections":[]},{"section":"service-v1-core","subsections":[{"section":"-strong-proxy-operations-service-v1-core-strong-","subsections":[{"section":"replace-connect-proxy-path-service-v1-core","subsections":[]},{"section":"replace-connect-proxy-service-v1-core","subsections":[]},{"section":"head-connect-proxy-path-service-v1-core","subsections":[]},{"section":"head-connect-proxy-service-v1-core","subsections":[]},{"section":"get-connect-proxy-path-service-v1-core","subsections":[]},{"section":"get-connect-proxy-service-v1-core","subsections":[]},{"section":"delete-connect-proxy-path-service-v1-core","subsections":[]},{"section":"delete-connect-proxy-service-v1-core","subsections":[]},{"section":"create-connect-proxy-path-service-v1-core","subsections":[]},{"section":"create-connect-proxy-service-v1-core","subsections":[]}]},{"section":"-strong-status-operations-service-v1-core-strong-","subsections":[{"section":"replace-status-service-v1-core","subsections":[]},{"section":"read-status-service-v1-core","subsections":[]},{"section":"patch-status-service-v1-core","subsections":[]}]},{"section":"-strong-read-operations-service-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-service-v1-core","subsections":[]},{"section":"watch-list-service-v1-core","subsections":[]},{"section":"watch-service-v1-core","subsections":[]},{"section":"list-all-namespaces-service-v1-core","subsections":[]},{"section":"list-service-v1-core","subsections":[]},{"section":"read-service-v1-core","subsections":[]}]},{"section":"-strong-write-operations-service-v1-core-strong-","subsections":[{"section":"delete-collection-service-v1-core","subsections":[]},{"section":"delete-service-v1-core","subsections":[]},{"section":"replace-service-v1-core","subsections":[]},{"section":"patch-service-v1-core","subsections":[]},{"section":"create-service-v1-core","subsections":[]}]}]},{"section":"ingressclass-v1-networking-k8s-io","subsections":[{"section":"-strong-read-operations-ingressclass-v1-networking-k8s-io-strong-","subsections":[{"section":"watch-list-ingressclass-v1-networking-k8s-io","subsections":[]},{"section":"watch-ingressclass-v1-networking-k8s-io","subsections":[]},{"section":"list-ingressclass-v1-networking-k8s-io","subsections":[]},{"section":"read-ingressclass-v1-networking-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-ingressclass-v1-networking-k8s-io-strong-","subsections":[{"section":"delete-collection-ingressclass-v1-networking-k8s-io","subsections":[]},{"section":"delete-ingressclass-v1-networking-k8s-io","subsections":[]},{"section":"replace-ingressclass-v1-networking-k8s-io","subsections":[]},{"section":"patch-ingressclass-v1-networking-k8s-io","subsections":[]},{"section":"create-ingressclass-v1-networking-k8s-io","subsections":[]}]}]},{"section":"ingress-v1-networking-k8s-io","subsections":[{"section":"-strong-status-operations-ingress-v1-networking-k8s-io-strong-","subsections":[{"section":"replace-status-ingress-v1-networking-k8s-io","subsections":[]},{"section":"read-status-ingress-v1-networking-k8s-io","subsections":[]},{"section":"patch-status-ingress-v1-networking-k8s-io","subsections":[]}]},{"section":"-strong-read-operations-ingress-v1-networking-k8s-io-strong-","subsections":[{"section":"watch-list-all-namespaces-ingress-v1-networking-k8s-io","subsections":[]},{"section":"watch-list-ingress-v1-networking-k8s-io","subsections":[]},{"section":"watch-ingress-v1-networking-k8s-io","subsections":[]},{"section":"list-all-namespaces-ingress-v1-networking-k8s-io","subsections":[]},{"section":"list-ingress-v1-networking-k8s-io","subsections":[]},{"section":"read-ingress-v1-networking-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-ingress-v1-networking-k8s-io-strong-","subsections":[{"section":"delete-collection-ingress-v1-networking-k8s-io","subsections":[]},{"section":"delete-ingress-v1-networking-k8s-io","subsections":[]},{"section":"replace-ingress-v1-networking-k8s-io","subsections":[]},{"section":"patch-ingress-v1-networking-k8s-io","subsections":[]},{"section":"create-ingress-v1-networking-k8s-io","subsections":[]}]}]},{"section":"endpointslice-v1-discovery-k8s-io","subsections":[{"section":"-strong-read-operations-endpointslice-v1-discovery-k8s-io-strong-","subsections":[{"section":"watch-list-all-namespaces-endpointslice-v1-discovery-k8s-io","subsections":[]},{"section":"watch-list-endpointslice-v1-discovery-k8s-io","subsections":[]},{"section":"watch-endpointslice-v1-discovery-k8s-io","subsections":[]},{"section":"list-all-namespaces-endpointslice-v1-discovery-k8s-io","subsections":[]},{"section":"list-endpointslice-v1-discovery-k8s-io","subsections":[]},{"section":"read-endpointslice-v1-discovery-k8s-io","subsections":[]}]},{"section":"-strong-write-operations-endpointslice-v1-discovery-k8s-io-strong-","subsections":[{"section":"delete-collection-endpointslice-v1-discovery-k8s-io","subsections":[]},{"section":"delete-endpointslice-v1-discovery-k8s-io","subsections":[]},{"section":"replace-endpointslice-v1-discovery-k8s-io","subsections":[]},{"section":"patch-endpointslice-v1-discovery-k8s-io","subsections":[]},{"section":"create-endpointslice-v1-discovery-k8s-io","subsections":[]}]}]},{"section":"endpoints-v1-core","subsections":[{"section":"-strong-read-operations-endpoints-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-endpoints-v1-core","subsections":[]},{"section":"watch-list-endpoints-v1-core","subsections":[]},{"section":"watch-endpoints-v1-core","subsections":[]},{"section":"list-all-namespaces-endpoints-v1-core","subsections":[]},{"section":"list-endpoints-v1-core","subsections":[]},{"section":"read-endpoints-v1-core","subsections":[]}]},{"section":"-strong-write-operations-endpoints-v1-core-strong-","subsections":[{"section":"delete-collection-endpoints-v1-core","subsections":[]},{"section":"delete-endpoints-v1-core","subsections":[]},{"section":"replace-endpoints-v1-core","subsections":[]},{"section":"patch-endpoints-v1-core","subsections":[]},{"section":"create-endpoints-v1-core","subsections":[]}]}]},{"section":"-strong-service-apis-strong-","subsections":[]},{"section":"statefulset-v1-apps","subsections":[{"section":"-strong-misc-operations-statefulset-v1-apps-strong-","subsections":[{"section":"patch-scale-statefulset-v1-apps","subsections":[]},{"section":"replace-scale-statefulset-v1-apps","subsections":[]},{"section":"read-scale-statefulset-v1-apps","subsections":[]}]},{"section":"-strong-status-operations-statefulset-v1-apps-strong-","subsections":[{"section":"replace-status-statefulset-v1-apps","subsections":[]},{"section":"read-status-statefulset-v1-apps","subsections":[]},{"section":"patch-status-statefulset-v1-apps","subsections":[]}]},{"section":"-strong-read-operations-statefulset-v1-apps-strong-","subsections":[{"section":"watch-list-all-namespaces-statefulset-v1-apps","subsections":[]},{"section":"watch-list-statefulset-v1-apps","subsections":[]},{"section":"watch-statefulset-v1-apps","subsections":[]},{"section":"list-all-namespaces-statefulset-v1-apps","subsections":[]},{"section":"list-statefulset-v1-apps","subsections":[]},{"section":"read-statefulset-v1-apps","subsections":[]}]},{"section":"-strong-write-operations-statefulset-v1-apps-strong-","subsections":[{"section":"delete-collection-statefulset-v1-apps","subsections":[]},{"section":"delete-statefulset-v1-apps","subsections":[]},{"section":"replace-statefulset-v1-apps","subsections":[]},{"section":"patch-statefulset-v1-apps","subsections":[]},{"section":"create-statefulset-v1-apps","subsections":[]}]}]},{"section":"replicationcontroller-v1-core","subsections":[{"section":"-strong-misc-operations-replicationcontroller-v1-core-strong-","subsections":[{"section":"patch-scale-replicationcontroller-v1-core","subsections":[]},{"section":"replace-scale-replicationcontroller-v1-core","subsections":[]},{"section":"read-scale-replicationcontroller-v1-core","subsections":[]}]},{"section":"-strong-status-operations-replicationcontroller-v1-core-strong-","subsections":[{"section":"replace-status-replicationcontroller-v1-core","subsections":[]},{"section":"read-status-replicationcontroller-v1-core","subsections":[]},{"section":"patch-status-replicationcontroller-v1-core","subsections":[]}]},{"section":"-strong-read-operations-replicationcontroller-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-replicationcontroller-v1-core","subsections":[]},{"section":"watch-list-replicationcontroller-v1-core","subsections":[]},{"section":"watch-replicationcontroller-v1-core","subsections":[]},{"section":"list-all-namespaces-replicationcontroller-v1-core","subsections":[]},{"section":"list-replicationcontroller-v1-core","subsections":[]},{"section":"read-replicationcontroller-v1-core","subsections":[]}]},{"section":"-strong-write-operations-replicationcontroller-v1-core-strong-","subsections":[{"section":"delete-collection-replicationcontroller-v1-core","subsections":[]},{"section":"delete-replicationcontroller-v1-core","subsections":[]},{"section":"replace-replicationcontroller-v1-core","subsections":[]},{"section":"patch-replicationcontroller-v1-core","subsections":[]},{"section":"create-replicationcontroller-v1-core","subsections":[]}]}]},{"section":"replicaset-v1-apps","subsections":[{"section":"-strong-misc-operations-replicaset-v1-apps-strong-","subsections":[{"section":"patch-scale-replicaset-v1-apps","subsections":[]},{"section":"replace-scale-replicaset-v1-apps","subsections":[]},{"section":"read-scale-replicaset-v1-apps","subsections":[]}]},{"section":"-strong-status-operations-replicaset-v1-apps-strong-","subsections":[{"section":"replace-status-replicaset-v1-apps","subsections":[]},{"section":"read-status-replicaset-v1-apps","subsections":[]},{"section":"patch-status-replicaset-v1-apps","subsections":[]}]},{"section":"-strong-read-operations-replicaset-v1-apps-strong-","subsections":[{"section":"watch-list-all-namespaces-replicaset-v1-apps","subsections":[]},{"section":"watch-list-replicaset-v1-apps","subsections":[]},{"section":"watch-replicaset-v1-apps","subsections":[]},{"section":"list-all-namespaces-replicaset-v1-apps","subsections":[]},{"section":"list-replicaset-v1-apps","subsections":[]},{"section":"read-replicaset-v1-apps","subsections":[]}]},{"section":"-strong-write-operations-replicaset-v1-apps-strong-","subsections":[{"section":"delete-collection-replicaset-v1-apps","subsections":[]},{"section":"delete-replicaset-v1-apps","subsections":[]},{"section":"replace-replicaset-v1-apps","subsections":[]},{"section":"patch-replicaset-v1-apps","subsections":[]},{"section":"create-replicaset-v1-apps","subsections":[]}]}]},{"section":"pod-v1-core","subsections":[{"section":"-strong-misc-operations-pod-v1-core-strong-","subsections":[{"section":"read-log-pod-v1-core","subsections":[]}]},{"section":"-strong-proxy-operations-pod-v1-core-strong-","subsections":[{"section":"replace-connect-proxy-path-pod-v1-core","subsections":[]},{"section":"replace-connect-proxy-pod-v1-core","subsections":[]},{"section":"head-connect-proxy-path-pod-v1-core","subsections":[]},{"section":"head-connect-proxy-pod-v1-core","subsections":[]},{"section":"get-connect-proxy-path-pod-v1-core","subsections":[]},{"section":"get-connect-proxy-pod-v1-core","subsections":[]},{"section":"get-connect-portforward-pod-v1-core","subsections":[]},{"section":"delete-connect-proxy-path-pod-v1-core","subsections":[]},{"section":"delete-connect-proxy-pod-v1-core","subsections":[]},{"section":"create-connect-proxy-path-pod-v1-core","subsections":[]},{"section":"create-connect-proxy-pod-v1-core","subsections":[]},{"section":"create-connect-portforward-pod-v1-core","subsections":[]}]},{"section":"-strong-ephemeralcontainers-operations-pod-v1-core-strong-","subsections":[{"section":"replace-ephemeralcontainers-pod-v1-core","subsections":[]},{"section":"read-ephemeralcontainers-pod-v1-core","subsections":[]},{"section":"patch-ephemeralcontainers-pod-v1-core","subsections":[]}]},{"section":"-strong-status-operations-pod-v1-core-strong-","subsections":[{"section":"replace-status-pod-v1-core","subsections":[]},{"section":"read-status-pod-v1-core","subsections":[]},{"section":"patch-status-pod-v1-core","subsections":[]}]},{"section":"-strong-read-operations-pod-v1-core-strong-","subsections":[{"section":"watch-list-all-namespaces-pod-v1-core","subsections":[]},{"section":"watch-list-pod-v1-core","subsections":[]},{"section":"watch-pod-v1-core","subsections":[]},{"section":"list-all-namespaces-pod-v1-core","subsections":[]},{"section":"list-pod-v1-core","subsections":[]},{"section":"read-pod-v1-core","subsections":[]}]},{"section":"-strong-write-operations-pod-v1-core-strong-","subsections":[{"section":"delete-collection-pod-v1-core","subsections":[]},{"section":"delete-pod-v1-core","subsections":[]},{"section":"replace-pod-v1-core","subsections":[]},{"section":"patch-pod-v1-core","subsections":[]},{"section":"create-eviction-pod-v1-core","subsections":[]},{"section":"create-pod-v1-core","subsections":[]}]}]},{"section":"job-v1-batch","subsections":[{"section":"-strong-status-operations-job-v1-batch-strong-","subsections":[{"section":"replace-status-job-v1-batch","subsections":[]},{"section":"read-status-job-v1-batch","subsections":[]},{"section":"patch-status-job-v1-batch","subsections":[]}]},{"section":"-strong-read-operations-job-v1-batch-strong-","subsections":[{"section":"watch-list-all-namespaces-job-v1-batch","subsections":[]},{"section":"watch-list-job-v1-batch","subsections":[]},{"section":"watch-job-v1-batch","subsections":[]},{"section":"list-all-namespaces-job-v1-batch","subsections":[]},{"section":"list-job-v1-batch","subsections":[]},{"section":"read-job-v1-batch","subsections":[]}]},{"section":"-strong-write-operations-job-v1-batch-strong-","subsections":[{"section":"delete-collection-job-v1-batch","subsections":[]},{"section":"delete-job-v1-batch","subsections":[]},{"section":"replace-job-v1-batch","subsections":[]},{"section":"patch-job-v1-batch","subsections":[]},{"section":"create-job-v1-batch","subsections":[]}]}]},{"section":"deployment-v1-apps","subsections":[{"section":"-strong-misc-operations-deployment-v1-apps-strong-","subsections":[{"section":"patch-scale-deployment-v1-apps","subsections":[]},{"section":"replace-scale-deployment-v1-apps","subsections":[]},{"section":"read-scale-deployment-v1-apps","subsections":[]}]},{"section":"-strong-status-operations-deployment-v1-apps-strong-","subsections":[{"section":"replace-status-deployment-v1-apps","subsections":[]},{"section":"read-status-deployment-v1-apps","subsections":[]},{"section":"patch-status-deployment-v1-apps","subsections":[]}]},{"section":"-strong-read-operations-deployment-v1-apps-strong-","subsections":[{"section":"watch-list-all-namespaces-deployment-v1-apps","subsections":[]},{"section":"watch-list-deployment-v1-apps","subsections":[]},{"section":"watch-deployment-v1-apps","subsections":[]},{"section":"list-all-namespaces-deployment-v1-apps","subsections":[]},{"section":"list-deployment-v1-apps","subsections":[]},{"section":"read-deployment-v1-apps","subsections":[]}]},{"section":"-strong-write-operations-deployment-v1-apps-strong-","subsections":[{"section":"delete-collection-deployment-v1-apps","subsections":[]},{"section":"delete-deployment-v1-apps","subsections":[]},{"section":"replace-deployment-v1-apps","subsections":[]},{"section":"patch-deployment-v1-apps","subsections":[]},{"section":"create-deployment-v1-apps","subsections":[]}]}]},{"section":"daemonset-v1-apps","subsections":[{"section":"-strong-status-operations-daemonset-v1-apps-strong-","subsections":[{"section":"replace-status-daemonset-v1-apps","subsections":[]},{"section":"read-status-daemonset-v1-apps","subsections":[]},{"section":"patch-status-daemonset-v1-apps","subsections":[]}]},{"section":"-strong-read-operations-daemonset-v1-apps-strong-","subsections":[{"section":"watch-list-all-namespaces-daemonset-v1-apps","subsections":[]},{"section":"watch-list-daemonset-v1-apps","subsections":[]},{"section":"watch-daemonset-v1-apps","subsections":[]},{"section":"list-all-namespaces-daemonset-v1-apps","subsections":[]},{"section":"list-daemonset-v1-apps","subsections":[]},{"section":"read-daemonset-v1-apps","subsections":[]}]},{"section":"-strong-write-operations-daemonset-v1-apps-strong-","subsections":[{"section":"delete-collection-daemonset-v1-apps","subsections":[]},{"section":"delete-daemonset-v1-apps","subsections":[]},{"section":"replace-daemonset-v1-apps","subsections":[]},{"section":"patch-daemonset-v1-apps","subsections":[]},{"section":"create-daemonset-v1-apps","subsections":[]}]}]},{"section":"cronjob-v1-batch","subsections":[{"section":"-strong-status-operations-cronjob-v1-batch-strong-","subsections":[{"section":"replace-status-cronjob-v1-batch","subsections":[]},{"section":"read-status-cronjob-v1-batch","subsections":[]},{"section":"patch-status-cronjob-v1-batch","subsections":[]}]},{"section":"-strong-read-operations-cronjob-v1-batch-strong-","subsections":[{"section":"watch-list-all-namespaces-cronjob-v1-batch","subsections":[]},{"section":"watch-list-cronjob-v1-batch","subsections":[]},{"section":"watch-cronjob-v1-batch","subsections":[]},{"section":"list-all-namespaces-cronjob-v1-batch","subsections":[]},{"section":"list-cronjob-v1-batch","subsections":[]},{"section":"read-cronjob-v1-batch","subsections":[]}]},{"section":"-strong-write-operations-cronjob-v1-batch-strong-","subsections":[{"section":"delete-collection-cronjob-v1-batch","subsections":[]},{"section":"delete-cronjob-v1-batch","subsections":[]},{"section":"replace-cronjob-v1-batch","subsections":[]},{"section":"patch-cronjob-v1-batch","subsections":[]},{"section":"create-cronjob-v1-batch","subsections":[]}]}]},{"section":"container-v1-core","subsections":[]},{"section":"-strong-workloads-apis-strong-","subsections":[]},{"section":"-strong-api-groups-strong-","subsections":[]},{"section":"-strong-api-overview-strong-","subsections":[]}],"flatToc":["webhookclientconfig-v1-apiextensions-k8s-io","usersubject-v1beta1-flowcontrol-apiserver-k8s-io","tokenrequest-v1-storage-k8s-io","subject-v1beta1-flowcontrol-apiserver-k8s-io","subject-v1-rbac-authorization-k8s-io","servicereference-v1-apiregistration-k8s-io","servicereference-v1-apiextensions-k8s-io","serviceaccountsubject-v1beta1-flowcontrol-apiserver-k8s-io","scheduling-v1beta1-node-k8s-io","watch-list-runtimeclass-v1beta1-node-k8s-io","watch-runtimeclass-v1beta1-node-k8s-io","list-runtimeclass-v1beta1-node-k8s-io","read-runtimeclass-v1beta1-node-k8s-io","-strong-read-operations-runtimeclass-v1beta1-node-k8s-io-strong-","delete-collection-runtimeclass-v1beta1-node-k8s-io","delete-runtimeclass-v1beta1-node-k8s-io","replace-runtimeclass-v1beta1-node-k8s-io","patch-runtimeclass-v1beta1-node-k8s-io","create-runtimeclass-v1beta1-node-k8s-io","-strong-write-operations-runtimeclass-v1beta1-node-k8s-io-strong-","runtimeclass-v1beta1-node-k8s-io","resourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io","resourcemetricstatus-v2beta1-autoscaling","resourcemetricstatus-v2beta2-autoscaling","resourcemetricsource-v2beta1-autoscaling","resourcemetricsource-v2beta2-autoscaling","queuingconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","prioritylevelconfigurationreference-v1beta1-flowcontrol-apiserver-k8s-io","prioritylevelconfigurationcondition-v1beta1-flowcontrol-apiserver-k8s-io","replace-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","read-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","patch-status-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","-strong-status-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-","watch-list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","watch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","list-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","read-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","-strong-read-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-","delete-collection-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","delete-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","replace-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","patch-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","create-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","-strong-write-operations-prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io-strong-","prioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","policyruleswithsubjects-v1beta1-flowcontrol-apiserver-k8s-io","podsmetricstatus-v2beta1-autoscaling","podsmetricstatus-v2beta2-autoscaling","podsmetricsource-v2beta1-autoscaling","podsmetricsource-v2beta2-autoscaling","replace-status-poddisruptionbudget-v1beta1-policy","read-status-poddisruptionbudget-v1beta1-policy","patch-status-poddisruptionbudget-v1beta1-policy","-strong-status-operations-poddisruptionbudget-v1beta1-policy-strong-","watch-list-all-namespaces-poddisruptionbudget-v1beta1-policy","watch-list-poddisruptionbudget-v1beta1-policy","watch-poddisruptionbudget-v1beta1-policy","list-all-namespaces-poddisruptionbudget-v1beta1-policy","list-poddisruptionbudget-v1beta1-policy","read-poddisruptionbudget-v1beta1-policy","-strong-read-operations-poddisruptionbudget-v1beta1-policy-strong-","delete-collection-poddisruptionbudget-v1beta1-policy","delete-poddisruptionbudget-v1beta1-policy","replace-poddisruptionbudget-v1beta1-policy","patch-poddisruptionbudget-v1beta1-policy","create-poddisruptionbudget-v1beta1-policy","-strong-write-operations-poddisruptionbudget-v1beta1-policy-strong-","poddisruptionbudget-v1beta1-policy","overhead-v1beta1-node-k8s-io","objectmetricstatus-v2beta1-autoscaling","objectmetricstatus-v2beta2-autoscaling","objectmetricsource-v2beta1-autoscaling","objectmetricsource-v2beta2-autoscaling","nonresourcepolicyrule-v1beta1-flowcontrol-apiserver-k8s-io","metricvaluestatus-v2beta2-autoscaling","metrictarget-v2beta2-autoscaling","metricstatus-v2beta1-autoscaling","metricstatus-v2beta2-autoscaling","metricspec-v2beta1-autoscaling","metricspec-v2beta2-autoscaling","metricidentifier-v2beta2-autoscaling","limitedprioritylevelconfiguration-v1beta1-flowcontrol-apiserver-k8s-io","limitresponse-v1beta1-flowcontrol-apiserver-k8s-io","jobtemplatespec-v1beta1-batch","horizontalpodautoscalercondition-v2beta1-autoscaling","horizontalpodautoscalercondition-v2beta2-autoscaling","horizontalpodautoscalerbehavior-v2beta2-autoscaling","replace-status-horizontalpodautoscaler-v2beta1-autoscaling","read-status-horizontalpodautoscaler-v2beta1-autoscaling","patch-status-horizontalpodautoscaler-v2beta1-autoscaling","-strong-status-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-","watch-list-all-namespaces-horizontalpodautoscaler-v2beta1-autoscaling","watch-list-horizontalpodautoscaler-v2beta1-autoscaling","watch-horizontalpodautoscaler-v2beta1-autoscaling","list-all-namespaces-horizontalpodautoscaler-v2beta1-autoscaling","list-horizontalpodautoscaler-v2beta1-autoscaling","read-horizontalpodautoscaler-v2beta1-autoscaling","-strong-read-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-","delete-collection-horizontalpodautoscaler-v2beta1-autoscaling","delete-horizontalpodautoscaler-v2beta1-autoscaling","replace-horizontalpodautoscaler-v2beta1-autoscaling","patch-horizontalpodautoscaler-v2beta1-autoscaling","create-horizontalpodautoscaler-v2beta1-autoscaling","-strong-write-operations-horizontalpodautoscaler-v2beta1-autoscaling-strong-","horizontalpodautoscaler-v2beta1-autoscaling","replace-status-horizontalpodautoscaler-v2beta2-autoscaling","read-status-horizontalpodautoscaler-v2beta2-autoscaling","patch-status-horizontalpodautoscaler-v2beta2-autoscaling","-strong-status-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-","watch-list-all-namespaces-horizontalpodautoscaler-v2beta2-autoscaling","watch-list-horizontalpodautoscaler-v2beta2-autoscaling","watch-horizontalpodautoscaler-v2beta2-autoscaling","list-all-namespaces-horizontalpodautoscaler-v2beta2-autoscaling","list-horizontalpodautoscaler-v2beta2-autoscaling","read-horizontalpodautoscaler-v2beta2-autoscaling","-strong-read-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-","delete-collection-horizontalpodautoscaler-v2beta2-autoscaling","delete-horizontalpodautoscaler-v2beta2-autoscaling","replace-horizontalpodautoscaler-v2beta2-autoscaling","patch-horizontalpodautoscaler-v2beta2-autoscaling","create-horizontalpodautoscaler-v2beta2-autoscaling","-strong-write-operations-horizontalpodautoscaler-v2beta2-autoscaling-strong-","horizontalpodautoscaler-v2beta2-autoscaling","replace-status-horizontalpodautoscaler-v1-autoscaling","read-status-horizontalpodautoscaler-v1-autoscaling","patch-status-horizontalpodautoscaler-v1-autoscaling","-strong-status-operations-horizontalpodautoscaler-v1-autoscaling-strong-","watch-list-all-namespaces-horizontalpodautoscaler-v1-autoscaling","watch-list-horizontalpodautoscaler-v1-autoscaling","watch-horizontalpodautoscaler-v1-autoscaling","list-all-namespaces-horizontalpodautoscaler-v1-autoscaling","list-horizontalpodautoscaler-v1-autoscaling","read-horizontalpodautoscaler-v1-autoscaling","-strong-read-operations-horizontalpodautoscaler-v1-autoscaling-strong-","delete-collection-horizontalpodautoscaler-v1-autoscaling","delete-horizontalpodautoscaler-v1-autoscaling","replace-horizontalpodautoscaler-v1-autoscaling","patch-horizontalpodautoscaler-v1-autoscaling","create-horizontalpodautoscaler-v1-autoscaling","-strong-write-operations-horizontalpodautoscaler-v1-autoscaling-strong-","horizontalpodautoscaler-v1-autoscaling","hpascalingrules-v2beta2-autoscaling","hpascalingpolicy-v2beta2-autoscaling","groupsubject-v1beta1-flowcontrol-apiserver-k8s-io","forzone-v1beta1-discovery-k8s-io","flowschemacondition-v1beta1-flowcontrol-apiserver-k8s-io","replace-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","read-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","patch-status-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","-strong-status-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-","watch-list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","watch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","list-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","read-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","-strong-read-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-","delete-collection-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","delete-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","replace-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","patch-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","create-flowschema-v1beta1-flowcontrol-apiserver-k8s-io","-strong-write-operations-flowschema-v1beta1-flowcontrol-apiserver-k8s-io-strong-","flowschema-v1beta1-flowcontrol-apiserver-k8s-io","flowdistinguishermethod-v1beta1-flowcontrol-apiserver-k8s-io","externalmetricstatus-v2beta1-autoscaling","externalmetricstatus-v2beta2-autoscaling","externalmetricsource-v2beta1-autoscaling","externalmetricsource-v2beta2-autoscaling","eventseries-v1beta1-events-k8s-io","eventseries-v1-core","watch-list-all-namespaces-event-v1beta1-events-k8s-io","watch-list-event-v1beta1-events-k8s-io","watch-event-v1beta1-events-k8s-io","list-all-namespaces-event-v1beta1-events-k8s-io","list-event-v1beta1-events-k8s-io","read-event-v1beta1-events-k8s-io","-strong-read-operations-event-v1beta1-events-k8s-io-strong-","delete-collection-event-v1beta1-events-k8s-io","delete-event-v1beta1-events-k8s-io","replace-event-v1beta1-events-k8s-io","patch-event-v1beta1-events-k8s-io","create-event-v1beta1-events-k8s-io","-strong-write-operations-event-v1beta1-events-k8s-io-strong-","event-v1beta1-events-k8s-io","watch-list-all-namespaces-event-v1-core","watch-list-event-v1-core","watch-event-v1-core","list-all-namespaces-event-v1-core","list-event-v1-core","read-event-v1-core","-strong-read-operations-event-v1-core-strong-","delete-collection-event-v1-core","delete-event-v1-core","replace-event-v1-core","patch-event-v1-core","create-event-v1-core","-strong-write-operations-event-v1-core-strong-","event-v1-core","watch-list-all-namespaces-endpointslice-v1beta1-discovery-k8s-io","watch-list-endpointslice-v1beta1-discovery-k8s-io","watch-endpointslice-v1beta1-discovery-k8s-io","list-all-namespaces-endpointslice-v1beta1-discovery-k8s-io","list-endpointslice-v1beta1-discovery-k8s-io","read-endpointslice-v1beta1-discovery-k8s-io","-strong-read-operations-endpointslice-v1beta1-discovery-k8s-io-strong-","delete-collection-endpointslice-v1beta1-discovery-k8s-io","delete-endpointslice-v1beta1-discovery-k8s-io","replace-endpointslice-v1beta1-discovery-k8s-io","patch-endpointslice-v1beta1-discovery-k8s-io","create-endpointslice-v1beta1-discovery-k8s-io","-strong-write-operations-endpointslice-v1beta1-discovery-k8s-io-strong-","endpointslice-v1beta1-discovery-k8s-io","endpointport-v1beta1-discovery-k8s-io","endpointport-v1-discovery-k8s-io","endpointhints-v1beta1-discovery-k8s-io","endpointconditions-v1beta1-discovery-k8s-io","endpoint-v1beta1-discovery-k8s-io","crossversionobjectreference-v2beta1-autoscaling","crossversionobjectreference-v2beta2-autoscaling","crossversionobjectreference-v1-autoscaling","replace-status-cronjob-v1beta1-batch","read-status-cronjob-v1beta1-batch","patch-status-cronjob-v1beta1-batch","-strong-status-operations-cronjob-v1beta1-batch-strong-","watch-list-all-namespaces-cronjob-v1beta1-batch","watch-list-cronjob-v1beta1-batch","watch-cronjob-v1beta1-batch","list-all-namespaces-cronjob-v1beta1-batch","list-cronjob-v1beta1-batch","read-cronjob-v1beta1-batch","-strong-read-operations-cronjob-v1beta1-batch-strong-","delete-collection-cronjob-v1beta1-batch","delete-cronjob-v1beta1-batch","replace-cronjob-v1beta1-batch","patch-cronjob-v1beta1-batch","create-cronjob-v1beta1-batch","-strong-write-operations-cronjob-v1beta1-batch-strong-","cronjob-v1beta1-batch","containerresourcemetricstatus-v2beta1-autoscaling","containerresourcemetricstatus-v2beta2-autoscaling","containerresourcemetricsource-v2beta1-autoscaling","containerresourcemetricsource-v2beta2-autoscaling","watch-list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io","watch-list-csistoragecapacity-v1beta1-storage-k8s-io","watch-csistoragecapacity-v1beta1-storage-k8s-io","list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io","list-csistoragecapacity-v1beta1-storage-k8s-io","read-csistoragecapacity-v1beta1-storage-k8s-io","-strong-read-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-","delete-collection-csistoragecapacity-v1beta1-storage-k8s-io","delete-csistoragecapacity-v1beta1-storage-k8s-io","replace-csistoragecapacity-v1beta1-storage-k8s-io","patch-csistoragecapacity-v1beta1-storage-k8s-io","create-csistoragecapacity-v1beta1-storage-k8s-io","-strong-write-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-","csistoragecapacity-v1beta1-storage-k8s-io","-strong-old-api-versions-strong-","windowssecuritycontextoptions-v1-core","weightedpodaffinityterm-v1-core","webhookconversion-v1-apiextensions-k8s-io","webhookclientconfig-v1-admissionregistration-k8s-io","watchevent-v1-meta","vspherevirtualdiskvolumesource-v1-core","volumeprojection-v1-core","volumenoderesources-v1-storage-k8s-io","volumenodeaffinity-v1-core","volumemount-v1-core","volumeerror-v1-storage-k8s-io","volumedevice-v1-core","volumeattachmentsource-v1-storage-k8s-io","validationrule-v1-apiextensions-k8s-io","validatingwebhook-v1-admissionregistration-k8s-io","usersubject-v1beta2-flowcontrol-apiserver-k8s-io","userinfo-v1-authentication-k8s-io","uncountedterminatedpods-v1-batch","typedlocalobjectreference-v1-core","topologyspreadconstraint-v1-core","topologyselectorterm-v1-core","topologyselectorlabelrequirement-v1-core","toleration-v1-core","time-v1-meta","taint-v1-core","tcpsocketaction-v1-core","sysctl-v1-core","supplementalgroupsstrategyoptions-v1beta1-policy","subjectrulesreviewstatus-v1-authorization-k8s-io","subject-v1beta2-flowcontrol-apiserver-k8s-io","storageversioncondition-v1alpha1-internal-apiserver-k8s-io","storageosvolumesource-v1-core","storageospersistentvolumesource-v1-core","statusdetails-v1-meta","statuscause-v1-meta","status-v1-meta","statefulsetupdatestrategy-v1-apps","statefulsetpersistentvolumeclaimretentionpolicy-v1-apps","statefulsetcondition-v1-apps","sessionaffinityconfig-v1-core","servicereference-v1-admissionregistration-k8s-io","serviceport-v1-core","servicebackendport-v1-networking-k8s-io","serviceaccounttokenprojection-v1-core","serviceaccountsubject-v1beta2-flowcontrol-apiserver-k8s-io","serverstorageversion-v1alpha1-internal-apiserver-k8s-io","serveraddressbyclientcidr-v1-meta","securitycontext-v1-core","secretvolumesource-v1-core","secretreference-v1-core","secretprojection-v1-core","secretkeyselector-v1-core","secretenvsource-v1-core","seccompprofile-v1-core","scopedresourceselectorrequirement-v1-core","scopeselector-v1-core","scheduling-v1-node-k8s-io","scaleiovolumesource-v1-core","scaleiopersistentvolumesource-v1-core","scale-v1-autoscaling","selinuxstrategyoptions-v1beta1-policy","selinuxoptions-v1-core","runtimeclassstrategyoptions-v1beta1-policy","runasuserstrategyoptions-v1beta1-policy","runasgroupstrategyoptions-v1beta1-policy","rulewithoperations-v1-admissionregistration-k8s-io","rollingupdatestatefulsetstrategy-v1-apps","roleref-v1-rbac-authorization-k8s-io","resourcerule-v1-authorization-k8s-io","resourcerequirements-v1-core","resourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io","resourcemetricstatus-v2-autoscaling","resourcemetricsource-v2-autoscaling","resourcefieldselector-v1-core","resourceattributes-v1-authorization-k8s-io","replicationcontrollercondition-v1-core","replicasetcondition-v1-apps","rbdvolumesource-v1-core","rbdpersistentvolumesource-v1-core","quobytevolumesource-v1-core","queuingconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","quantity-resource-core","projectedvolumesource-v1-core","probe-v1-core","prioritylevelconfigurationreference-v1beta2-flowcontrol-apiserver-k8s-io","prioritylevelconfigurationcondition-v1beta2-flowcontrol-apiserver-k8s-io","preferredschedulingterm-v1-core","preconditions-v1-meta","portworxvolumesource-v1-core","portstatus-v1-core","policyruleswithsubjects-v1beta2-flowcontrol-apiserver-k8s-io","policyrule-v1-rbac-authorization-k8s-io","podsmetricstatus-v2-autoscaling","podsmetricsource-v2-autoscaling","podsecuritycontext-v1-core","podreadinessgate-v1-core","podos-v1-core","podip-v1-core","poddnsconfigoption-v1-core","poddnsconfig-v1-core","podcondition-v1-core","podantiaffinity-v1-core","podaffinityterm-v1-core","podaffinity-v1-core","photonpersistentdiskvolumesource-v1-core","persistentvolumeclaimvolumesource-v1-core","persistentvolumeclaimtemplate-v1-core","persistentvolumeclaimcondition-v1-core","patch-v1-meta","ownerreference-v1-meta","overhead-v1-node-k8s-io","objectreference-v1-core","objectmetricstatus-v2-autoscaling","objectmetricsource-v2-autoscaling","objectmeta-v1-meta","objectfieldselector-v1-core","nonresourcerule-v1-authorization-k8s-io","nonresourcepolicyrule-v1beta2-flowcontrol-apiserver-k8s-io","nonresourceattributes-v1-authorization-k8s-io","nodesysteminfo-v1-core","nodeselectorterm-v1-core","nodeselectorrequirement-v1-core","nodeselector-v1-core","nodedaemonendpoints-v1-core","nodeconfigstatus-v1-core","nodeconfigsource-v1-core","nodecondition-v1-core","nodeaffinity-v1-core","nodeaddress-v1-core","networkpolicyport-v1-networking-k8s-io","networkpolicypeer-v1-networking-k8s-io","networkpolicyingressrule-v1-networking-k8s-io","networkpolicyegressrule-v1-networking-k8s-io","namespacecondition-v1-core","nfsvolumesource-v1-core","mutatingwebhook-v1-admissionregistration-k8s-io","microtime-v1-meta","metricvaluestatus-v2-autoscaling","metrictarget-v2-autoscaling","metricstatus-v2-autoscaling","metricspec-v2-autoscaling","metricidentifier-v2-autoscaling","managedfieldsentry-v1-meta","localvolumesource-v1-core","localobjectreference-v1-core","loadbalancerstatus-v1-core","loadbalanceringress-v1-core","listmeta-v1-meta","limitedprioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","limitresponse-v1beta2-flowcontrol-apiserver-k8s-io","limitrangeitem-v1-core","lifecyclehandler-v1-core","lifecycle-v1-core","labelselectorrequirement-v1-meta","labelselector-v1-meta","keytopath-v1-core","jobtemplatespec-v1-batch","jobcondition-v1-batch","jsonschemapropsorbool-v1-apiextensions-k8s-io","jsonschemapropsorarray-v1-apiextensions-k8s-io","jsonschemaprops-v1-apiextensions-k8s-io","json-v1-apiextensions-k8s-io","ingresstls-v1-networking-k8s-io","ingressservicebackend-v1-networking-k8s-io","ingressrule-v1-networking-k8s-io","ingressclassparametersreference-v1-networking-k8s-io","ingressbackend-v1-networking-k8s-io","iscsivolumesource-v1-core","iscsipersistentvolumesource-v1-core","ipblock-v1-networking-k8s-io","idrange-v1beta1-policy","hostportrange-v1beta1-policy","hostpathvolumesource-v1-core","hostalias-v1-core","horizontalpodautoscalercondition-v2-autoscaling","horizontalpodautoscalerbehavior-v2-autoscaling","httpingressrulevalue-v1-networking-k8s-io","httpingresspath-v1-networking-k8s-io","httpheader-v1-core","httpgetaction-v1-core","hpascalingrules-v2-autoscaling","hpascalingpolicy-v2-autoscaling","groupversionfordiscovery-v1-meta","groupsubject-v1beta2-flowcontrol-apiserver-k8s-io","glusterfsvolumesource-v1-core","glusterfspersistentvolumesource-v1-core","gitrepovolumesource-v1-core","grpcaction-v1-core","gcepersistentdiskvolumesource-v1-core","forzone-v1-discovery-k8s-io","flowschemacondition-v1beta2-flowcontrol-apiserver-k8s-io","flowdistinguishermethod-v1beta2-flowcontrol-apiserver-k8s-io","flockervolumesource-v1-core","flexvolumesource-v1-core","flexpersistentvolumesource-v1-core","fieldsv1-v1-meta","fsgroupstrategyoptions-v1beta1-policy","fcvolumesource-v1-core","externalmetricstatus-v2-autoscaling","externalmetricsource-v2-autoscaling","externaldocumentation-v1-apiextensions-k8s-io","execaction-v1-core","eviction-v1-policy","eventsource-v1-core","eventseries-v1-events-k8s-io","ephemeralvolumesource-v1-core","ephemeralcontainer-v1-core","envvarsource-v1-core","envvar-v1-core","envfromsource-v1-core","endpointsubset-v1-core","endpointport-v1-core","endpointhints-v1-discovery-k8s-io","endpointconditions-v1-discovery-k8s-io","endpointaddress-v1-core","endpoint-v1-discovery-k8s-io","emptydirvolumesource-v1-core","downwardapivolumesource-v1-core","downwardapivolumefile-v1-core","downwardapiprojection-v1-core","deploymentcondition-v1-apps","deleteoptions-v1-meta","daemonsetupdatestrategy-v1-apps","daemonsetcondition-v1-apps","daemonendpoint-v1-core","customresourcevalidation-v1-apiextensions-k8s-io","customresourcesubresources-v1-apiextensions-k8s-io","customresourcesubresourcestatus-v1-apiextensions-k8s-io","customresourcesubresourcescale-v1-apiextensions-k8s-io","customresourcedefinitionversion-v1-apiextensions-k8s-io","customresourcedefinitionnames-v1-apiextensions-k8s-io","customresourcedefinitioncondition-v1-apiextensions-k8s-io","customresourceconversion-v1-apiextensions-k8s-io","customresourcecolumndefinition-v1-apiextensions-k8s-io","crossversionobjectreference-v2-autoscaling","containerstatewaiting-v1-core","containerstateterminated-v1-core","containerstaterunning-v1-core","containerstate-v1-core","containerresourcemetricstatus-v2-autoscaling","containerresourcemetricsource-v2-autoscaling","containerport-v1-core","containerimage-v1-core","configmapvolumesource-v1-core","configmapprojection-v1-core","configmapnodeconfigsource-v1-core","configmapkeyselector-v1-core","configmapenvsource-v1-core","condition-v1-meta","componentcondition-v1-core","clientipconfig-v1-core","cindervolumesource-v1-core","cinderpersistentvolumesource-v1-core","certificatesigningrequestcondition-v1-certificates-k8s-io","cephfsvolumesource-v1-core","cephfspersistentvolumesource-v1-core","capabilities-v1-core","csivolumesource-v1-core","csistoragecapacity-v1-storage-k8s-io","csipersistentvolumesource-v1-core","csinodedriver-v1-storage-k8s-io","boundobjectreference-v1-authentication-k8s-io","azurefilevolumesource-v1-core","azurefilepersistentvolumesource-v1-core","azurediskvolumesource-v1-core","attachedvolume-v1-core","allowedhostpath-v1beta1-policy","allowedflexvolume-v1beta1-policy","allowedcsidriver-v1beta1-policy","aggregationrule-v1-rbac-authorization-k8s-io","affinity-v1-core","awselasticblockstorevolumesource-v1-core","apiversions-v1-meta","apiservicecondition-v1-apiregistration-k8s-io","apiresource-v1-meta","apigroup-v1-meta","-strong-definitions-strong-","replace-status-networkpolicy-v1-networking-k8s-io","read-status-networkpolicy-v1-networking-k8s-io","patch-status-networkpolicy-v1-networking-k8s-io","-strong-status-operations-networkpolicy-v1-networking-k8s-io-strong-","watch-list-all-namespaces-networkpolicy-v1-networking-k8s-io","watch-list-networkpolicy-v1-networking-k8s-io","watch-networkpolicy-v1-networking-k8s-io","list-all-namespaces-networkpolicy-v1-networking-k8s-io","list-networkpolicy-v1-networking-k8s-io","read-networkpolicy-v1-networking-k8s-io","-strong-read-operations-networkpolicy-v1-networking-k8s-io-strong-","delete-collection-networkpolicy-v1-networking-k8s-io","delete-networkpolicy-v1-networking-k8s-io","replace-networkpolicy-v1-networking-k8s-io","patch-networkpolicy-v1-networking-k8s-io","create-networkpolicy-v1-networking-k8s-io","-strong-write-operations-networkpolicy-v1-networking-k8s-io-strong-","networkpolicy-v1-networking-k8s-io","create-tokenreview-v1-authentication-k8s-io","-strong-write-operations-tokenreview-v1-authentication-k8s-io-strong-","tokenreview-v1-authentication-k8s-io","tokenrequest-v1-authentication-k8s-io","create-subjectaccessreview-v1-authorization-k8s-io","-strong-write-operations-subjectaccessreview-v1-authorization-k8s-io-strong-","subjectaccessreview-v1-authorization-k8s-io","replace-status-storageversion-v1alpha1-internal-apiserver-k8s-io","read-status-storageversion-v1alpha1-internal-apiserver-k8s-io","patch-status-storageversion-v1alpha1-internal-apiserver-k8s-io","-strong-status-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-","watch-list-storageversion-v1alpha1-internal-apiserver-k8s-io","watch-storageversion-v1alpha1-internal-apiserver-k8s-io","list-storageversion-v1alpha1-internal-apiserver-k8s-io","read-storageversion-v1alpha1-internal-apiserver-k8s-io","-strong-read-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-","delete-collection-storageversion-v1alpha1-internal-apiserver-k8s-io","delete-storageversion-v1alpha1-internal-apiserver-k8s-io","replace-storageversion-v1alpha1-internal-apiserver-k8s-io","patch-storageversion-v1alpha1-internal-apiserver-k8s-io","create-storageversion-v1alpha1-internal-apiserver-k8s-io","-strong-write-operations-storageversion-v1alpha1-internal-apiserver-k8s-io-strong-","storageversion-v1alpha1-internal-apiserver-k8s-io","watch-list-all-namespaces-serviceaccount-v1-core","watch-list-serviceaccount-v1-core","watch-serviceaccount-v1-core","list-all-namespaces-serviceaccount-v1-core","list-serviceaccount-v1-core","read-serviceaccount-v1-core","-strong-read-operations-serviceaccount-v1-core-strong-","delete-collection-serviceaccount-v1-core","delete-serviceaccount-v1-core","replace-serviceaccount-v1-core","patch-serviceaccount-v1-core","create-serviceaccount-v1-core","-strong-write-operations-serviceaccount-v1-core-strong-","serviceaccount-v1-core","create-selfsubjectrulesreview-v1-authorization-k8s-io","-strong-write-operations-selfsubjectrulesreview-v1-authorization-k8s-io-strong-","selfsubjectrulesreview-v1-authorization-k8s-io","create-selfsubjectaccessreview-v1-authorization-k8s-io","-strong-write-operations-selfsubjectaccessreview-v1-authorization-k8s-io-strong-","selfsubjectaccessreview-v1-authorization-k8s-io","watch-list-runtimeclass-v1-node-k8s-io","watch-runtimeclass-v1-node-k8s-io","list-runtimeclass-v1-node-k8s-io","read-runtimeclass-v1-node-k8s-io","-strong-read-operations-runtimeclass-v1-node-k8s-io-strong-","delete-collection-runtimeclass-v1-node-k8s-io","delete-runtimeclass-v1-node-k8s-io","replace-runtimeclass-v1-node-k8s-io","patch-runtimeclass-v1-node-k8s-io","create-runtimeclass-v1-node-k8s-io","-strong-write-operations-runtimeclass-v1-node-k8s-io-strong-","runtimeclass-v1-node-k8s-io","watch-list-all-namespaces-rolebinding-v1-rbac-authorization-k8s-io","watch-list-rolebinding-v1-rbac-authorization-k8s-io","watch-rolebinding-v1-rbac-authorization-k8s-io","list-all-namespaces-rolebinding-v1-rbac-authorization-k8s-io","list-rolebinding-v1-rbac-authorization-k8s-io","read-rolebinding-v1-rbac-authorization-k8s-io","-strong-read-operations-rolebinding-v1-rbac-authorization-k8s-io-strong-","delete-collection-rolebinding-v1-rbac-authorization-k8s-io","delete-rolebinding-v1-rbac-authorization-k8s-io","replace-rolebinding-v1-rbac-authorization-k8s-io","patch-rolebinding-v1-rbac-authorization-k8s-io","create-rolebinding-v1-rbac-authorization-k8s-io","-strong-write-operations-rolebinding-v1-rbac-authorization-k8s-io-strong-","rolebinding-v1-rbac-authorization-k8s-io","watch-list-all-namespaces-role-v1-rbac-authorization-k8s-io","watch-list-role-v1-rbac-authorization-k8s-io","watch-role-v1-rbac-authorization-k8s-io","list-all-namespaces-role-v1-rbac-authorization-k8s-io","list-role-v1-rbac-authorization-k8s-io","read-role-v1-rbac-authorization-k8s-io","-strong-read-operations-role-v1-rbac-authorization-k8s-io-strong-","delete-collection-role-v1-rbac-authorization-k8s-io","delete-role-v1-rbac-authorization-k8s-io","replace-role-v1-rbac-authorization-k8s-io","patch-role-v1-rbac-authorization-k8s-io","create-role-v1-rbac-authorization-k8s-io","-strong-write-operations-role-v1-rbac-authorization-k8s-io-strong-","role-v1-rbac-authorization-k8s-io","replace-status-resourcequota-v1-core","read-status-resourcequota-v1-core","patch-status-resourcequota-v1-core","-strong-status-operations-resourcequota-v1-core-strong-","watch-list-all-namespaces-resourcequota-v1-core","watch-list-resourcequota-v1-core","watch-resourcequota-v1-core","list-all-namespaces-resourcequota-v1-core","list-resourcequota-v1-core","read-resourcequota-v1-core","-strong-read-operations-resourcequota-v1-core-strong-","delete-collection-resourcequota-v1-core","delete-resourcequota-v1-core","replace-resourcequota-v1-core","patch-resourcequota-v1-core","create-resourcequota-v1-core","-strong-write-operations-resourcequota-v1-core-strong-","resourcequota-v1-core","replace-status-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","read-status-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","patch-status-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","-strong-status-operations-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io-strong-","watch-list-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","watch-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","list-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","read-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","-strong-read-operations-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io-strong-","delete-collection-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","delete-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","replace-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","patch-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","create-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","-strong-write-operations-prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io-strong-","prioritylevelconfiguration-v1beta2-flowcontrol-apiserver-k8s-io","replace-status-persistentvolume-v1-core","read-status-persistentvolume-v1-core","patch-status-persistentvolume-v1-core","-strong-status-operations-persistentvolume-v1-core-strong-","watch-list-persistentvolume-v1-core","watch-persistentvolume-v1-core","list-persistentvolume-v1-core","read-persistentvolume-v1-core","-strong-read-operations-persistentvolume-v1-core-strong-","delete-collection-persistentvolume-v1-core","delete-persistentvolume-v1-core","replace-persistentvolume-v1-core","patch-persistentvolume-v1-core","create-persistentvolume-v1-core","-strong-write-operations-persistentvolume-v1-core-strong-","persistentvolume-v1-core","replace-connect-proxy-path-node-v1-core","replace-connect-proxy-node-v1-core","head-connect-proxy-path-node-v1-core","head-connect-proxy-node-v1-core","get-connect-proxy-path-node-v1-core","get-connect-proxy-node-v1-core","delete-connect-proxy-path-node-v1-core","delete-connect-proxy-node-v1-core","create-connect-proxy-path-node-v1-core","create-connect-proxy-node-v1-core","-strong-proxy-operations-node-v1-core-strong-","replace-status-node-v1-core","read-status-node-v1-core","patch-status-node-v1-core","-strong-status-operations-node-v1-core-strong-","watch-list-node-v1-core","watch-node-v1-core","list-node-v1-core","read-node-v1-core","-strong-read-operations-node-v1-core-strong-","delete-collection-node-v1-core","delete-node-v1-core","replace-node-v1-core","patch-node-v1-core","create-node-v1-core","-strong-write-operations-node-v1-core-strong-","node-v1-core","replace-status-namespace-v1-core","read-status-namespace-v1-core","patch-status-namespace-v1-core","-strong-status-operations-namespace-v1-core-strong-","watch-list-namespace-v1-core","watch-namespace-v1-core","list-namespace-v1-core","read-namespace-v1-core","-strong-read-operations-namespace-v1-core-strong-","delete-namespace-v1-core","replace-namespace-v1-core","patch-namespace-v1-core","create-namespace-v1-core","-strong-write-operations-namespace-v1-core-strong-","namespace-v1-core","create-localsubjectaccessreview-v1-authorization-k8s-io","-strong-write-operations-localsubjectaccessreview-v1-authorization-k8s-io-strong-","localsubjectaccessreview-v1-authorization-k8s-io","watch-list-all-namespaces-lease-v1-coordination-k8s-io","watch-list-lease-v1-coordination-k8s-io","watch-lease-v1-coordination-k8s-io","list-all-namespaces-lease-v1-coordination-k8s-io","list-lease-v1-coordination-k8s-io","read-lease-v1-coordination-k8s-io","-strong-read-operations-lease-v1-coordination-k8s-io-strong-","delete-collection-lease-v1-coordination-k8s-io","delete-lease-v1-coordination-k8s-io","replace-lease-v1-coordination-k8s-io","patch-lease-v1-coordination-k8s-io","create-lease-v1-coordination-k8s-io","-strong-write-operations-lease-v1-coordination-k8s-io-strong-","lease-v1-coordination-k8s-io","replace-status-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","read-status-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","patch-status-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","-strong-status-operations-flowschema-v1beta2-flowcontrol-apiserver-k8s-io-strong-","watch-list-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","watch-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","list-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","read-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","-strong-read-operations-flowschema-v1beta2-flowcontrol-apiserver-k8s-io-strong-","delete-collection-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","delete-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","replace-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","patch-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","create-flowschema-v1beta2-flowcontrol-apiserver-k8s-io","-strong-write-operations-flowschema-v1beta2-flowcontrol-apiserver-k8s-io-strong-","flowschema-v1beta2-flowcontrol-apiserver-k8s-io","list-componentstatus-v1-core","read-componentstatus-v1-core","-strong-read-operations-componentstatus-v1-core-strong-","componentstatus-v1-core","watch-list-clusterrolebinding-v1-rbac-authorization-k8s-io","watch-clusterrolebinding-v1-rbac-authorization-k8s-io","list-clusterrolebinding-v1-rbac-authorization-k8s-io","read-clusterrolebinding-v1-rbac-authorization-k8s-io","-strong-read-operations-clusterrolebinding-v1-rbac-authorization-k8s-io-strong-","delete-collection-clusterrolebinding-v1-rbac-authorization-k8s-io","delete-clusterrolebinding-v1-rbac-authorization-k8s-io","replace-clusterrolebinding-v1-rbac-authorization-k8s-io","patch-clusterrolebinding-v1-rbac-authorization-k8s-io","create-clusterrolebinding-v1-rbac-authorization-k8s-io","-strong-write-operations-clusterrolebinding-v1-rbac-authorization-k8s-io-strong-","clusterrolebinding-v1-rbac-authorization-k8s-io","watch-list-clusterrole-v1-rbac-authorization-k8s-io","watch-clusterrole-v1-rbac-authorization-k8s-io","list-clusterrole-v1-rbac-authorization-k8s-io","read-clusterrole-v1-rbac-authorization-k8s-io","-strong-read-operations-clusterrole-v1-rbac-authorization-k8s-io-strong-","delete-collection-clusterrole-v1-rbac-authorization-k8s-io","delete-clusterrole-v1-rbac-authorization-k8s-io","replace-clusterrole-v1-rbac-authorization-k8s-io","patch-clusterrole-v1-rbac-authorization-k8s-io","create-clusterrole-v1-rbac-authorization-k8s-io","-strong-write-operations-clusterrole-v1-rbac-authorization-k8s-io-strong-","clusterrole-v1-rbac-authorization-k8s-io","replace-status-certificatesigningrequest-v1-certificates-k8s-io","read-status-certificatesigningrequest-v1-certificates-k8s-io","patch-status-certificatesigningrequest-v1-certificates-k8s-io","-strong-status-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-","watch-list-certificatesigningrequest-v1-certificates-k8s-io","watch-certificatesigningrequest-v1-certificates-k8s-io","list-certificatesigningrequest-v1-certificates-k8s-io","read-certificatesigningrequest-v1-certificates-k8s-io","-strong-read-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-","delete-collection-certificatesigningrequest-v1-certificates-k8s-io","delete-certificatesigningrequest-v1-certificates-k8s-io","replace-certificatesigningrequest-v1-certificates-k8s-io","patch-certificatesigningrequest-v1-certificates-k8s-io","create-certificatesigningrequest-v1-certificates-k8s-io","-strong-write-operations-certificatesigningrequest-v1-certificates-k8s-io-strong-","certificatesigningrequest-v1-certificates-k8s-io","create-binding-v1-core","-strong-write-operations-binding-v1-core-strong-","binding-v1-core","replace-status-apiservice-v1-apiregistration-k8s-io","read-status-apiservice-v1-apiregistration-k8s-io","patch-status-apiservice-v1-apiregistration-k8s-io","-strong-status-operations-apiservice-v1-apiregistration-k8s-io-strong-","watch-list-apiservice-v1-apiregistration-k8s-io","watch-apiservice-v1-apiregistration-k8s-io","list-apiservice-v1-apiregistration-k8s-io","read-apiservice-v1-apiregistration-k8s-io","-strong-read-operations-apiservice-v1-apiregistration-k8s-io-strong-","delete-collection-apiservice-v1-apiregistration-k8s-io","delete-apiservice-v1-apiregistration-k8s-io","replace-apiservice-v1-apiregistration-k8s-io","patch-apiservice-v1-apiregistration-k8s-io","create-apiservice-v1-apiregistration-k8s-io","-strong-write-operations-apiservice-v1-apiregistration-k8s-io-strong-","apiservice-v1-apiregistration-k8s-io","-strong-cluster-apis-strong-","watch-list-podsecuritypolicy-v1beta1-policy","watch-podsecuritypolicy-v1beta1-policy","list-podsecuritypolicy-v1beta1-policy","read-podsecuritypolicy-v1beta1-policy","-strong-read-operations-podsecuritypolicy-v1beta1-policy-strong-","delete-collection-podsecuritypolicy-v1beta1-policy","delete-podsecuritypolicy-v1beta1-policy","replace-podsecuritypolicy-v1beta1-policy","patch-podsecuritypolicy-v1beta1-policy","create-podsecuritypolicy-v1beta1-policy","-strong-write-operations-podsecuritypolicy-v1beta1-policy-strong-","podsecuritypolicy-v1beta1-policy","watch-list-priorityclass-v1-scheduling-k8s-io","watch-priorityclass-v1-scheduling-k8s-io","list-priorityclass-v1-scheduling-k8s-io","read-priorityclass-v1-scheduling-k8s-io","-strong-read-operations-priorityclass-v1-scheduling-k8s-io-strong-","delete-collection-priorityclass-v1-scheduling-k8s-io","delete-priorityclass-v1-scheduling-k8s-io","replace-priorityclass-v1-scheduling-k8s-io","patch-priorityclass-v1-scheduling-k8s-io","create-priorityclass-v1-scheduling-k8s-io","-strong-write-operations-priorityclass-v1-scheduling-k8s-io-strong-","priorityclass-v1-scheduling-k8s-io","replace-status-poddisruptionbudget-v1-policy","read-status-poddisruptionbudget-v1-policy","patch-status-poddisruptionbudget-v1-policy","-strong-status-operations-poddisruptionbudget-v1-policy-strong-","watch-list-all-namespaces-poddisruptionbudget-v1-policy","watch-list-poddisruptionbudget-v1-policy","watch-poddisruptionbudget-v1-policy","list-all-namespaces-poddisruptionbudget-v1-policy","list-poddisruptionbudget-v1-policy","read-poddisruptionbudget-v1-policy","-strong-read-operations-poddisruptionbudget-v1-policy-strong-","delete-collection-poddisruptionbudget-v1-policy","delete-poddisruptionbudget-v1-policy","replace-poddisruptionbudget-v1-policy","patch-poddisruptionbudget-v1-policy","create-poddisruptionbudget-v1-policy","-strong-write-operations-poddisruptionbudget-v1-policy-strong-","poddisruptionbudget-v1-policy","watch-list-all-namespaces-podtemplate-v1-core","watch-list-podtemplate-v1-core","watch-podtemplate-v1-core","list-all-namespaces-podtemplate-v1-core","list-podtemplate-v1-core","read-podtemplate-v1-core","-strong-read-operations-podtemplate-v1-core-strong-","delete-collection-podtemplate-v1-core","delete-podtemplate-v1-core","replace-podtemplate-v1-core","patch-podtemplate-v1-core","create-podtemplate-v1-core","-strong-write-operations-podtemplate-v1-core-strong-","podtemplate-v1-core","watch-list-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","watch-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","list-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","read-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","-strong-read-operations-validatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-","delete-collection-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","delete-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","replace-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","patch-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","create-validatingwebhookconfiguration-v1-admissionregistration-k8s-io","-strong-write-operations-validatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-","validatingwebhookconfiguration-v1-admissionregistration-k8s-io","watch-list-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","watch-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","list-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","read-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","-strong-read-operations-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-","delete-collection-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","delete-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","replace-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","patch-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","create-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","-strong-write-operations-mutatingwebhookconfiguration-v1-admissionregistration-k8s-io-strong-","mutatingwebhookconfiguration-v1-admissionregistration-k8s-io","replace-status-horizontalpodautoscaler-v2-autoscaling","read-status-horizontalpodautoscaler-v2-autoscaling","patch-status-horizontalpodautoscaler-v2-autoscaling","-strong-status-operations-horizontalpodautoscaler-v2-autoscaling-strong-","watch-list-all-namespaces-horizontalpodautoscaler-v2-autoscaling","watch-list-horizontalpodautoscaler-v2-autoscaling","watch-horizontalpodautoscaler-v2-autoscaling","list-all-namespaces-horizontalpodautoscaler-v2-autoscaling","list-horizontalpodautoscaler-v2-autoscaling","read-horizontalpodautoscaler-v2-autoscaling","-strong-read-operations-horizontalpodautoscaler-v2-autoscaling-strong-","delete-collection-horizontalpodautoscaler-v2-autoscaling","delete-horizontalpodautoscaler-v2-autoscaling","replace-horizontalpodautoscaler-v2-autoscaling","patch-horizontalpodautoscaler-v2-autoscaling","create-horizontalpodautoscaler-v2-autoscaling","-strong-write-operations-horizontalpodautoscaler-v2-autoscaling-strong-","horizontalpodautoscaler-v2-autoscaling","watch-list-all-namespaces-limitrange-v1-core","watch-list-limitrange-v1-core","watch-limitrange-v1-core","list-all-namespaces-limitrange-v1-core","list-limitrange-v1-core","read-limitrange-v1-core","-strong-read-operations-limitrange-v1-core-strong-","delete-collection-limitrange-v1-core","delete-limitrange-v1-core","replace-limitrange-v1-core","patch-limitrange-v1-core","create-limitrange-v1-core","-strong-write-operations-limitrange-v1-core-strong-","limitrange-v1-core","watch-list-all-namespaces-event-v1-events-k8s-io","watch-list-event-v1-events-k8s-io","watch-event-v1-events-k8s-io","list-all-namespaces-event-v1-events-k8s-io","list-event-v1-events-k8s-io","read-event-v1-events-k8s-io","-strong-read-operations-event-v1-events-k8s-io-strong-","delete-collection-event-v1-events-k8s-io","delete-event-v1-events-k8s-io","replace-event-v1-events-k8s-io","patch-event-v1-events-k8s-io","create-event-v1-events-k8s-io","-strong-write-operations-event-v1-events-k8s-io-strong-","event-v1-events-k8s-io","replace-status-customresourcedefinition-v1-apiextensions-k8s-io","read-status-customresourcedefinition-v1-apiextensions-k8s-io","patch-status-customresourcedefinition-v1-apiextensions-k8s-io","-strong-status-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-","watch-list-customresourcedefinition-v1-apiextensions-k8s-io","watch-customresourcedefinition-v1-apiextensions-k8s-io","list-customresourcedefinition-v1-apiextensions-k8s-io","read-customresourcedefinition-v1-apiextensions-k8s-io","-strong-read-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-","delete-collection-customresourcedefinition-v1-apiextensions-k8s-io","delete-customresourcedefinition-v1-apiextensions-k8s-io","replace-customresourcedefinition-v1-apiextensions-k8s-io","patch-customresourcedefinition-v1-apiextensions-k8s-io","create-customresourcedefinition-v1-apiextensions-k8s-io","-strong-write-operations-customresourcedefinition-v1-apiextensions-k8s-io-strong-","customresourcedefinition-v1-apiextensions-k8s-io","watch-list-all-namespaces-controllerrevision-v1-apps","watch-list-controllerrevision-v1-apps","watch-controllerrevision-v1-apps","list-all-namespaces-controllerrevision-v1-apps","list-controllerrevision-v1-apps","read-controllerrevision-v1-apps","-strong-read-operations-controllerrevision-v1-apps-strong-","delete-collection-controllerrevision-v1-apps","delete-controllerrevision-v1-apps","replace-controllerrevision-v1-apps","patch-controllerrevision-v1-apps","create-controllerrevision-v1-apps","-strong-write-operations-controllerrevision-v1-apps-strong-","controllerrevision-v1-apps","-strong-metadata-apis-strong-","replace-status-volumeattachment-v1-storage-k8s-io","read-status-volumeattachment-v1-storage-k8s-io","patch-status-volumeattachment-v1-storage-k8s-io","-strong-status-operations-volumeattachment-v1-storage-k8s-io-strong-","watch-list-volumeattachment-v1-storage-k8s-io","watch-volumeattachment-v1-storage-k8s-io","list-volumeattachment-v1-storage-k8s-io","read-volumeattachment-v1-storage-k8s-io","-strong-read-operations-volumeattachment-v1-storage-k8s-io-strong-","delete-collection-volumeattachment-v1-storage-k8s-io","delete-volumeattachment-v1-storage-k8s-io","replace-volumeattachment-v1-storage-k8s-io","patch-volumeattachment-v1-storage-k8s-io","create-volumeattachment-v1-storage-k8s-io","-strong-write-operations-volumeattachment-v1-storage-k8s-io-strong-","volumeattachment-v1-storage-k8s-io","volume-v1-core","watch-list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io","watch-list-csistoragecapacity-v1beta1-storage-k8s-io","watch-csistoragecapacity-v1beta1-storage-k8s-io","list-all-namespaces-csistoragecapacity-v1beta1-storage-k8s-io","list-csistoragecapacity-v1beta1-storage-k8s-io","read-csistoragecapacity-v1beta1-storage-k8s-io","-strong-read-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-","delete-collection-csistoragecapacity-v1beta1-storage-k8s-io","delete-csistoragecapacity-v1beta1-storage-k8s-io","replace-csistoragecapacity-v1beta1-storage-k8s-io","patch-csistoragecapacity-v1beta1-storage-k8s-io","create-csistoragecapacity-v1beta1-storage-k8s-io","-strong-write-operations-csistoragecapacity-v1beta1-storage-k8s-io-strong-","csistoragecapacity-v1beta1-storage-k8s-io","watch-list-storageclass-v1-storage-k8s-io","watch-storageclass-v1-storage-k8s-io","list-storageclass-v1-storage-k8s-io","read-storageclass-v1-storage-k8s-io","-strong-read-operations-storageclass-v1-storage-k8s-io-strong-","delete-collection-storageclass-v1-storage-k8s-io","delete-storageclass-v1-storage-k8s-io","replace-storageclass-v1-storage-k8s-io","patch-storageclass-v1-storage-k8s-io","create-storageclass-v1-storage-k8s-io","-strong-write-operations-storageclass-v1-storage-k8s-io-strong-","storageclass-v1-storage-k8s-io","replace-status-persistentvolumeclaim-v1-core","read-status-persistentvolumeclaim-v1-core","patch-status-persistentvolumeclaim-v1-core","-strong-status-operations-persistentvolumeclaim-v1-core-strong-","watch-list-all-namespaces-persistentvolumeclaim-v1-core","watch-list-persistentvolumeclaim-v1-core","watch-persistentvolumeclaim-v1-core","list-all-namespaces-persistentvolumeclaim-v1-core","list-persistentvolumeclaim-v1-core","read-persistentvolumeclaim-v1-core","-strong-read-operations-persistentvolumeclaim-v1-core-strong-","delete-collection-persistentvolumeclaim-v1-core","delete-persistentvolumeclaim-v1-core","replace-persistentvolumeclaim-v1-core","patch-persistentvolumeclaim-v1-core","create-persistentvolumeclaim-v1-core","-strong-write-operations-persistentvolumeclaim-v1-core-strong-","persistentvolumeclaim-v1-core","watch-list-all-namespaces-secret-v1-core","watch-list-secret-v1-core","watch-secret-v1-core","list-all-namespaces-secret-v1-core","list-secret-v1-core","read-secret-v1-core","-strong-read-operations-secret-v1-core-strong-","delete-collection-secret-v1-core","delete-secret-v1-core","replace-secret-v1-core","patch-secret-v1-core","create-secret-v1-core","-strong-write-operations-secret-v1-core-strong-","secret-v1-core","watch-list-csinode-v1-storage-k8s-io","watch-csinode-v1-storage-k8s-io","list-csinode-v1-storage-k8s-io","read-csinode-v1-storage-k8s-io","-strong-read-operations-csinode-v1-storage-k8s-io-strong-","delete-collection-csinode-v1-storage-k8s-io","delete-csinode-v1-storage-k8s-io","replace-csinode-v1-storage-k8s-io","patch-csinode-v1-storage-k8s-io","create-csinode-v1-storage-k8s-io","-strong-write-operations-csinode-v1-storage-k8s-io-strong-","csinode-v1-storage-k8s-io","watch-list-csidriver-v1-storage-k8s-io","watch-csidriver-v1-storage-k8s-io","list-csidriver-v1-storage-k8s-io","read-csidriver-v1-storage-k8s-io","-strong-read-operations-csidriver-v1-storage-k8s-io-strong-","delete-collection-csidriver-v1-storage-k8s-io","delete-csidriver-v1-storage-k8s-io","replace-csidriver-v1-storage-k8s-io","patch-csidriver-v1-storage-k8s-io","create-csidriver-v1-storage-k8s-io","-strong-write-operations-csidriver-v1-storage-k8s-io-strong-","csidriver-v1-storage-k8s-io","watch-list-all-namespaces-configmap-v1-core","watch-list-configmap-v1-core","watch-configmap-v1-core","list-all-namespaces-configmap-v1-core","list-configmap-v1-core","read-configmap-v1-core","-strong-read-operations-configmap-v1-core-strong-","delete-collection-configmap-v1-core","delete-configmap-v1-core","replace-configmap-v1-core","patch-configmap-v1-core","create-configmap-v1-core","-strong-write-operations-configmap-v1-core-strong-","configmap-v1-core","-strong-config-and-storage-apis-strong-","replace-connect-proxy-path-service-v1-core","replace-connect-proxy-service-v1-core","head-connect-proxy-path-service-v1-core","head-connect-proxy-service-v1-core","get-connect-proxy-path-service-v1-core","get-connect-proxy-service-v1-core","delete-connect-proxy-path-service-v1-core","delete-connect-proxy-service-v1-core","create-connect-proxy-path-service-v1-core","create-connect-proxy-service-v1-core","-strong-proxy-operations-service-v1-core-strong-","replace-status-service-v1-core","read-status-service-v1-core","patch-status-service-v1-core","-strong-status-operations-service-v1-core-strong-","watch-list-all-namespaces-service-v1-core","watch-list-service-v1-core","watch-service-v1-core","list-all-namespaces-service-v1-core","list-service-v1-core","read-service-v1-core","-strong-read-operations-service-v1-core-strong-","delete-collection-service-v1-core","delete-service-v1-core","replace-service-v1-core","patch-service-v1-core","create-service-v1-core","-strong-write-operations-service-v1-core-strong-","service-v1-core","watch-list-ingressclass-v1-networking-k8s-io","watch-ingressclass-v1-networking-k8s-io","list-ingressclass-v1-networking-k8s-io","read-ingressclass-v1-networking-k8s-io","-strong-read-operations-ingressclass-v1-networking-k8s-io-strong-","delete-collection-ingressclass-v1-networking-k8s-io","delete-ingressclass-v1-networking-k8s-io","replace-ingressclass-v1-networking-k8s-io","patch-ingressclass-v1-networking-k8s-io","create-ingressclass-v1-networking-k8s-io","-strong-write-operations-ingressclass-v1-networking-k8s-io-strong-","ingressclass-v1-networking-k8s-io","replace-status-ingress-v1-networking-k8s-io","read-status-ingress-v1-networking-k8s-io","patch-status-ingress-v1-networking-k8s-io","-strong-status-operations-ingress-v1-networking-k8s-io-strong-","watch-list-all-namespaces-ingress-v1-networking-k8s-io","watch-list-ingress-v1-networking-k8s-io","watch-ingress-v1-networking-k8s-io","list-all-namespaces-ingress-v1-networking-k8s-io","list-ingress-v1-networking-k8s-io","read-ingress-v1-networking-k8s-io","-strong-read-operations-ingress-v1-networking-k8s-io-strong-","delete-collection-ingress-v1-networking-k8s-io","delete-ingress-v1-networking-k8s-io","replace-ingress-v1-networking-k8s-io","patch-ingress-v1-networking-k8s-io","create-ingress-v1-networking-k8s-io","-strong-write-operations-ingress-v1-networking-k8s-io-strong-","ingress-v1-networking-k8s-io","watch-list-all-namespaces-endpointslice-v1-discovery-k8s-io","watch-list-endpointslice-v1-discovery-k8s-io","watch-endpointslice-v1-discovery-k8s-io","list-all-namespaces-endpointslice-v1-discovery-k8s-io","list-endpointslice-v1-discovery-k8s-io","read-endpointslice-v1-discovery-k8s-io","-strong-read-operations-endpointslice-v1-discovery-k8s-io-strong-","delete-collection-endpointslice-v1-discovery-k8s-io","delete-endpointslice-v1-discovery-k8s-io","replace-endpointslice-v1-discovery-k8s-io","patch-endpointslice-v1-discovery-k8s-io","create-endpointslice-v1-discovery-k8s-io","-strong-write-operations-endpointslice-v1-discovery-k8s-io-strong-","endpointslice-v1-discovery-k8s-io","watch-list-all-namespaces-endpoints-v1-core","watch-list-endpoints-v1-core","watch-endpoints-v1-core","list-all-namespaces-endpoints-v1-core","list-endpoints-v1-core","read-endpoints-v1-core","-strong-read-operations-endpoints-v1-core-strong-","delete-collection-endpoints-v1-core","delete-endpoints-v1-core","replace-endpoints-v1-core","patch-endpoints-v1-core","create-endpoints-v1-core","-strong-write-operations-endpoints-v1-core-strong-","endpoints-v1-core","-strong-service-apis-strong-","patch-scale-statefulset-v1-apps","replace-scale-statefulset-v1-apps","read-scale-statefulset-v1-apps","-strong-misc-operations-statefulset-v1-apps-strong-","replace-status-statefulset-v1-apps","read-status-statefulset-v1-apps","patch-status-statefulset-v1-apps","-strong-status-operations-statefulset-v1-apps-strong-","watch-list-all-namespaces-statefulset-v1-apps","watch-list-statefulset-v1-apps","watch-statefulset-v1-apps","list-all-namespaces-statefulset-v1-apps","list-statefulset-v1-apps","read-statefulset-v1-apps","-strong-read-operations-statefulset-v1-apps-strong-","delete-collection-statefulset-v1-apps","delete-statefulset-v1-apps","replace-statefulset-v1-apps","patch-statefulset-v1-apps","create-statefulset-v1-apps","-strong-write-operations-statefulset-v1-apps-strong-","statefulset-v1-apps","patch-scale-replicationcontroller-v1-core","replace-scale-replicationcontroller-v1-core","read-scale-replicationcontroller-v1-core","-strong-misc-operations-replicationcontroller-v1-core-strong-","replace-status-replicationcontroller-v1-core","read-status-replicationcontroller-v1-core","patch-status-replicationcontroller-v1-core","-strong-status-operations-replicationcontroller-v1-core-strong-","watch-list-all-namespaces-replicationcontroller-v1-core","watch-list-replicationcontroller-v1-core","watch-replicationcontroller-v1-core","list-all-namespaces-replicationcontroller-v1-core","list-replicationcontroller-v1-core","read-replicationcontroller-v1-core","-strong-read-operations-replicationcontroller-v1-core-strong-","delete-collection-replicationcontroller-v1-core","delete-replicationcontroller-v1-core","replace-replicationcontroller-v1-core","patch-replicationcontroller-v1-core","create-replicationcontroller-v1-core","-strong-write-operations-replicationcontroller-v1-core-strong-","replicationcontroller-v1-core","patch-scale-replicaset-v1-apps","replace-scale-replicaset-v1-apps","read-scale-replicaset-v1-apps","-strong-misc-operations-replicaset-v1-apps-strong-","replace-status-replicaset-v1-apps","read-status-replicaset-v1-apps","patch-status-replicaset-v1-apps","-strong-status-operations-replicaset-v1-apps-strong-","watch-list-all-namespaces-replicaset-v1-apps","watch-list-replicaset-v1-apps","watch-replicaset-v1-apps","list-all-namespaces-replicaset-v1-apps","list-replicaset-v1-apps","read-replicaset-v1-apps","-strong-read-operations-replicaset-v1-apps-strong-","delete-collection-replicaset-v1-apps","delete-replicaset-v1-apps","replace-replicaset-v1-apps","patch-replicaset-v1-apps","create-replicaset-v1-apps","-strong-write-operations-replicaset-v1-apps-strong-","replicaset-v1-apps","read-log-pod-v1-core","-strong-misc-operations-pod-v1-core-strong-","replace-connect-proxy-path-pod-v1-core","replace-connect-proxy-pod-v1-core","head-connect-proxy-path-pod-v1-core","head-connect-proxy-pod-v1-core","get-connect-proxy-path-pod-v1-core","get-connect-proxy-pod-v1-core","get-connect-portforward-pod-v1-core","delete-connect-proxy-path-pod-v1-core","delete-connect-proxy-pod-v1-core","create-connect-proxy-path-pod-v1-core","create-connect-proxy-pod-v1-core","create-connect-portforward-pod-v1-core","-strong-proxy-operations-pod-v1-core-strong-","replace-ephemeralcontainers-pod-v1-core","read-ephemeralcontainers-pod-v1-core","patch-ephemeralcontainers-pod-v1-core","-strong-ephemeralcontainers-operations-pod-v1-core-strong-","replace-status-pod-v1-core","read-status-pod-v1-core","patch-status-pod-v1-core","-strong-status-operations-pod-v1-core-strong-","watch-list-all-namespaces-pod-v1-core","watch-list-pod-v1-core","watch-pod-v1-core","list-all-namespaces-pod-v1-core","list-pod-v1-core","read-pod-v1-core","-strong-read-operations-pod-v1-core-strong-","delete-collection-pod-v1-core","delete-pod-v1-core","replace-pod-v1-core","patch-pod-v1-core","create-eviction-pod-v1-core","create-pod-v1-core","-strong-write-operations-pod-v1-core-strong-","pod-v1-core","replace-status-job-v1-batch","read-status-job-v1-batch","patch-status-job-v1-batch","-strong-status-operations-job-v1-batch-strong-","watch-list-all-namespaces-job-v1-batch","watch-list-job-v1-batch","watch-job-v1-batch","list-all-namespaces-job-v1-batch","list-job-v1-batch","read-job-v1-batch","-strong-read-operations-job-v1-batch-strong-","delete-collection-job-v1-batch","delete-job-v1-batch","replace-job-v1-batch","patch-job-v1-batch","create-job-v1-batch","-strong-write-operations-job-v1-batch-strong-","job-v1-batch","patch-scale-deployment-v1-apps","replace-scale-deployment-v1-apps","read-scale-deployment-v1-apps","-strong-misc-operations-deployment-v1-apps-strong-","replace-status-deployment-v1-apps","read-status-deployment-v1-apps","patch-status-deployment-v1-apps","-strong-status-operations-deployment-v1-apps-strong-","watch-list-all-namespaces-deployment-v1-apps","watch-list-deployment-v1-apps","watch-deployment-v1-apps","list-all-namespaces-deployment-v1-apps","list-deployment-v1-apps","read-deployment-v1-apps","-strong-read-operations-deployment-v1-apps-strong-","delete-collection-deployment-v1-apps","delete-deployment-v1-apps","replace-deployment-v1-apps","patch-deployment-v1-apps","create-deployment-v1-apps","-strong-write-operations-deployment-v1-apps-strong-","deployment-v1-apps","replace-status-daemonset-v1-apps","read-status-daemonset-v1-apps","patch-status-daemonset-v1-apps","-strong-status-operations-daemonset-v1-apps-strong-","watch-list-all-namespaces-daemonset-v1-apps","watch-list-daemonset-v1-apps","watch-daemonset-v1-apps","list-all-namespaces-daemonset-v1-apps","list-daemonset-v1-apps","read-daemonset-v1-apps","-strong-read-operations-daemonset-v1-apps-strong-","delete-collection-daemonset-v1-apps","delete-daemonset-v1-apps","replace-daemonset-v1-apps","patch-daemonset-v1-apps","create-daemonset-v1-apps","-strong-write-operations-daemonset-v1-apps-strong-","daemonset-v1-apps","replace-status-cronjob-v1-batch","read-status-cronjob-v1-batch","patch-status-cronjob-v1-batch","-strong-status-operations-cronjob-v1-batch-strong-","watch-list-all-namespaces-cronjob-v1-batch","watch-list-cronjob-v1-batch","watch-cronjob-v1-batch","list-all-namespaces-cronjob-v1-batch","list-cronjob-v1-batch","read-cronjob-v1-batch","-strong-read-operations-cronjob-v1-batch-strong-","delete-collection-cronjob-v1-batch","delete-cronjob-v1-batch","replace-cronjob-v1-batch","patch-cronjob-v1-batch","create-cronjob-v1-batch","-strong-write-operations-cronjob-v1-batch-strong-","cronjob-v1-batch","container-v1-core","-strong-workloads-apis-strong-","-strong-api-groups-strong-","-strong-api-overview-strong-"]};})();
\ No newline at end of file
diff --git a/static/images/announcements/kccnc-eu-2022-black.svg b/static/images/announcements/kccnc-eu-2022-black.svg
new file mode 100644
index 0000000000..fade071e61
--- /dev/null
+++ b/static/images/announcements/kccnc-eu-2022-black.svg
@@ -0,0 +1 @@
+<svg id="Layer_1" data-name="Layer 1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" viewBox="0 0 400 190"><defs><style>.cls-1{fill-rule:evenodd;}.cls-2{opacity:0.8;}.cls-3{clip-path:url(#clip-path);}.cls-4{clip-path:url(#clip-path-2);}.cls-5{clip-path:url(#clip-path-3);}.cls-6{clip-path:url(#clip-path-4);}</style><clipPath id="clip-path"><rect x="154.68931" y="9.26397" width="0.64658" height="131.58023"/></clipPath><clipPath id="clip-path-2"><rect x="314.13738" y="166.22268" width="81.79309" height="0.64658"/></clipPath><clipPath id="clip-path-3"><rect x="288.46793" y="166.22268" width="109.53207" height="0.64658"/></clipPath><clipPath id="clip-path-4"><rect x="3" y="166.22268" width="109.53207" height="0.64658"/></clipPath></defs><g id="SVGID"><path d="M3.38823,166.22271H85.18134v.64658H3.38823Z"/></g><rect x="3.38823" y="166.22268" width="81.79312" height="0.64658"/><path d="M115.24758,121.70524c.71125-.194,1.5518-.388,2.651-.58192a19.14417,19.14417,0,0,1,3.36224-.25863,7.77882,7.77882,0,0,1,2.9743.45261,4.54575,4.54575,0,0,1,1.8751,1.35783,5.11676,5.11676,0,0,1,.96988,2.06908,11.44875,11.44875,0,0,1,.32329,2.651v8.01766h-3.9442v-7.56506a5.39851,5.39851,0,0,0-.51727-2.71568,2.1168,2.1168,0,0,0-1.93976-.7759,4.5804,4.5804,0,0,0-.90521.06467c-.3233,0-.58193.06466-.84053.06466v10.92731h-4.00883Zm-7.37107,6.53052a5.372,5.372,0,0,0-.71126-2.90964,2.71772,2.71772,0,0,0-4.26746,0,4.8554,4.8554,0,0,0-.77591,2.90964,5.21083,5.21083,0,0,0,.77591,2.97431,2.62059,2.62059,0,0,0,4.26746,0,5.616,5.616,0,0,0,.71126-2.97431m4.07349,0a9.08786,9.08786,0,0,1-.45261,3.039,6.92,6.92,0,0,1-1.42249,2.39236,6.47052,6.47052,0,0,1-5.04337,2.06908,7.95737,7.95737,0,0,1-2.845-.51727,6.48976,6.48976,0,0,1-2.19839-1.5518,6.72558,6.72558,0,0,1-1.42248-2.39236,9.18534,9.18534,0,0,1,0-6.07791,7.03958,7.03958,0,0,1,1.42248-2.32768,6.30777,6.30777,0,0,1,2.19839-1.48715,6.6561,6.6561,0,0,1,2.78032-.51727,7.60275,7.60275,0,0,1,2.78032.51727,7.33248,7.33248,0,0,1,2.19839,1.48715,7.03964,7.03964,0,0,1,1.42248,2.32768,7.71587,7.71587,0,0,1,.58192,3.039m-21.7899,7.50038c-3.03895,0-5.36666-.84053-6.91846-2.52168-1.61646-1.68112-2.39237-4.07349-2.39237-7.17711a11.80643,11.80643,0,0,1,.71126-4.13814,8.35684,8.35684,0,0,1,5.04337-4.91406,10.51033,10.51033,0,0,1,3.81483-.64663,10.90006,10.90006,0,0,1,2.13379.194c.64663.12931,1.22851.25863,1.68112.38795a12.72192,12.72192,0,0,1,1.22852.45261,2.31486,2.31486,0,0,1,.71124.388l-1.22851,3.36225a8.09591,8.09591,0,0,0-2.00442-.7759,10.47379,10.47379,0,0,0-2.58635-.3233,6.007,6.007,0,0,0-1.87509.3233,3.86822,3.86822,0,0,0-1.61646,1.03453,6.24093,6.24093,0,0,0-1.16385,1.81045,8.5163,8.5163,0,0,0-.45261,2.71565,9.36345,9.36345,0,0,0,.25863,2.39236,5.96679,5.96679,0,0,0,.90521,1.93976,4.86864,4.86864,0,0,0,1.68114,1.29318,5.7526,5.7526,0,0,0,2.457.45259,11.69985,11.69985,0,0,0,1.61646-.12931,6.52172,6.52172,0,0,0,1.29318-.25862,8.4585,8.4585,0,0,0,.96988-.3233,3.95481,3.95481,0,0,1,.7759-.32329l1.16386,3.36225a7.88433,7.88433,0,0,1-2.52168.96987,12.49207,12.49207,0,0,1-3.68554.4526M74.1895,126.87788a2.59448,2.59448,0,0,0-.194-.96987,3.48425,3.48425,0,0,0-.45261-.84053,2.58754,2.58754,0,0,0-.77591-.64663,3.08828,3.08828,0,0,0-1.16385-.25862,2.21434,2.21434,0,0,0-1.16386.25862,1.76522,1.76522,0,0,0-.7759.58194,3.02432,3.02432,0,0,0-.51727.90521,4.843,4.843,0,0,0-.25863,1.03454h5.302ZM64.814,128.365a8.81817,8.81817,0,0,1,.58192-3.29759,6.12858,6.12858,0,0,1,1.55181-2.32768,6.49473,6.49473,0,0,1,2.13379-1.42248,6.9333,6.9333,0,0,1,2.52169-.45261,6.28763,6.28763,0,0,1,4.78473,1.81044,7.61706,7.61706,0,0,1,1.74577,5.43131v.7759c0,.25863-.06466.51727-.06466.71125H68.95222a2.4035,2.4035,0,0,0,1.16385,1.93977,4.97763,4.97763,0,0,0,2.71566.71124,11.38429,11.38429,0,0,0,2.13378-.194,8.10972,8.10972,0,0,0,1.74578-.51726l.51728,3.23292a5.7736,5.7736,0,0,1-.84053.32329,6.86836,6.86836,0,0,1-1.22852.25864c-.4526.06466-.90522.1293-1.42248.194a11.94788,11.94788,0,0,1-1.48715.06467,8.35949,8.35949,0,0,1-3.29759-.58192,6.12841,6.12841,0,0,1-2.32768-1.5518,5.28777,5.28777,0,0,1-1.35783-2.32768,7.38057,7.38057,0,0,1-.45261-2.78032m-2.651-.06467a9.07388,9.07388,0,0,1-.51727,3.039,7.03961,7.03961,0,0,1-1.42249,2.32768,6.25379,6.25379,0,0,1-2.32768,1.48715,9.17765,9.17765,0,0,1-3.10361.51726,13.5342,13.5342,0,0,1-1.55181-.06466l-1.55181-.194a11.9345,11.9345,0,0,1-1.48715-.25863c-.45261-.12932-.90522-.194-1.22852-.3233v-19.7855l4.00883-.64663v7.04785a9.15786,9.15786,0,0,1,1.42249-.45261,6.04255,6.04255,0,0,1,1.55181-.12931,6.67928,6.67928,0,0,1,2.651.51727,4.8886,4.8886,0,0,1,1.93976,1.48715,6.56419,6.56419,0,0,1,1.16386,2.32767,9.47953,9.47953,0,0,1,.4526,3.10362m-4.07349-.12931c0-2.58635-.96988-3.87952-2.845-3.87952a7.92461,7.92461,0,0,0-1.22851.12932,7.52847,7.52847,0,0,0-.96988.388v7.30641a2.66357,2.66357,0,0,0,.7759.06467c.3233,0,.64663.06466.96988.06466a2.87857,2.87857,0,0,0,2.457-1.09919,5.07162,5.07162,0,0,0,.84053-2.9743M45.0286,134.89563c-.71123.194-1.55179.388-2.651.58192a19.1442,19.1442,0,0,1-3.36225.25862,7.7787,7.7787,0,0,1-2.97431-.4526,4.54584,4.54584,0,0,1-1.8751-1.35783,5.55613,5.55613,0,0,1-.96988-2.06908,11.02086,11.02086,0,0,1-.32329-2.651v-7.88833H36.817v7.37108a5.86893,5.86893,0,0,0,.51728,2.78033,2.00514,2.00514,0,0,0,1.93975.84053,4.5805,4.5805,0,0,0,.90522-.06467c.3233,0,.58193-.06466.84053-.06466V121.25266h4.00883v13.643Zm-18.49235.45261c-.38795-.58193-.84052-1.29317-1.35783-2.00442a24.22194,24.22194,0,0,0-1.68111-2.13374c-.58193-.71124-1.22853-1.35782-1.87511-2.06908a23.61959,23.61959,0,0,0-1.93976-1.74578v7.88834H15.47938V116.66191h4.20281v7.04778c1.0992-1.16386,2.19839-2.32769,3.29759-3.62089,1.0992-1.22851,2.13374-2.39236,3.10362-3.42691h4.9787c-1.29317,1.48715-2.52168,2.97431-3.81483,4.33212-1.29318,1.42248-2.651,2.78033-4.07349,4.20281a34.94662,34.94662,0,0,1,4.33212,4.39679,57.25243,57.25243,0,0,1,4.00883,5.6253H26.536Z"/><path class="cls-1" d="M60.15847,53.10248l-2.32768.51727c0-.32329-.06467-.64662-.06467-.96987a13.38935,13.38935,0,0,1,1.93976-6.98314l4.5261,4.00884a.89279.89279,0,0,0,.25864.194,7.37338,7.37338,0,0,0-.51727,2.13373c-.12932.06466-.3233.06466-.45261.12931ZM68.952,39.39487v6.33654a5.60576,5.60576,0,0,0-1.74578.90522c-.194-.12932-.38794-.3233-.58193-.45261l-4.59076-3.23293A12.75565,12.75565,0,0,1,68.952,39.39487M37.4633,54.00772c2.19839-9.63414,4.0735-17.78111,6.27189-27.41525.96987-4.33212,1.61646-5.496,5.56063-7.759,5.43132-3.16827,9.50481-5.43132,15.32408-8.79357C68.24078,7.9708,68.952,8.10012,68.952,12.56156V34.93343a17.47951,17.47951,0,0,0-10.604,5.36666l-1.93979-1.35783a.93451.93451,0,0,1-.45261-.64663,3.14929,3.14929,0,0,0-1.03455-1.55177,2.11554,2.11554,0,0,0-2.651,3.29759,2.24045,2.24045,0,0,0,1.03453.51727c.25864.06466.51728.06466.77591.12932a1.59758,1.59758,0,0,1,.58192.25864l1.81045,1.61646a17.70258,17.70258,0,0,0-3.039,9.95742c0,.64663.06465,1.29318.12931,1.93976l-3.94417.84052a3.97745,3.97745,0,0,0-.84053.06466l-.58193.194c-2.58634.51727-5.17268,1.09919-7.82368,1.68112-3.55622.84052-3.68554.12931-2.90964-3.23293m36.0795-8.27629V39.39487a13.59633,13.59633,0,0,1,6.91847,3.49156l-4.97871,3.55622c-.06465.06466-.12932.12932-.194.12932a7.18553,7.18553,0,0,0-1.74578-.84053m11.12127,7.43578-6.20725-1.42256a6.12245,6.12245,0,0,0-.51727-1.93976c.06466-.06466.12931-.12931.194-.12931l4.59077-4.0735a13.5098,13.5098,0,0,1,2.00442,7.04779,1.26028,1.26028,0,0,0-.06466.51727m-8.08233-34.2044c3.36224,1.61647,5.75461,2.78032,9.11682,4.39679,4.65541,2.263,9.31082,4.52611,14.0309,6.7245,1.16386,5.04336,2.32769,10.08673,3.42692,15.1301.71124,3.039,1.03454,4.65542,1.74577,7.62972,1.0992,4.72008.96989,5.108-3.87951,4.00883L89.06082,54.137a12.4583,12.4583,0,0,0,.06466-1.55181,17.33261,17.33261,0,0,0-3.10362-10.02208L87.703,41.01135a1.43533,1.43533,0,0,1,.71124-.32329,3.38409,3.38409,0,0,0,1.74578-.64663,2.11554,2.11554,0,1,0-2.64547-3.302l-.00554.00446h0a2.63279,2.63279,0,0,0-.7759.90522c-.12932.25864-.194.45261-.3233.71125a1.00556,1.00556,0,0,1-.38794.51727l-1.93976,1.35782a17.65449,17.65449,0,0,0-10.604-5.36666V21.22581c.06465-3.16827.32329-3.55622,3.10361-2.26306M72.44362,59.69762a7.16236,7.16236,0,0,1-1.22852.12931,7.02749,7.02749,0,0,1-1.16385-.06465l-.194.388-2.845,5.23739a13.426,13.426,0,0,0,4.26747.71123,14.1404,14.1404,0,0,0,4.33212-.71123l-2.845-5.17269a2.26835,2.26835,0,0,1-.3233-.51727m5.04337-3.42691,6.20723,1.42249a13.412,13.412,0,0,1-5.04337,6.14251l-2.457-5.94862a10.12986,10.12986,0,0,0,1.29317-1.61647M58.80056,57.62849,65.00778,56.206a8.5934,8.5934,0,0,0,1.35783,1.68112l-.194.388-2.263,5.56064a13.31858,13.31858,0,0,1-5.108-6.20723m50.82165,10.9273c-2.97431,3.68554-4.33213,5.43133-7.30643,9.11683-3.36224,4.20281-6.0779,7.62967-9.44016,11.83252-2.39236,3.039-4.13814,3.10362-8.08232,3.10362H57.63677c-5.17269,0-5.56064,0-8.72891-4.00883-3.16827-3.94418-5.62529-7.04778-8.72891-10.992-2.457-3.10362-3.10361-3.87952-5.56063-6.98313-3.81484-4.78473-4.46147-6.53052,1.48715-7.82369l18.363-4.13815a18.157,18.157,0,0,0,7.69437,9.31084l-.84053,1.93975a1.141,1.141,0,0,1-.51727.58193,2.93241,2.93241,0,0,0-1.29317,1.35783,2.12543,2.12543,0,0,0,3.80042,1.90439l.01187-.02406.00257-.00523a3.45283,3.45283,0,0,0,.32329-1.16385,3.14718,3.14718,0,0,0-.06466-.7759,1.16591,1.16591,0,0,1,.12931-.64663L64.74925,69.267a18.08687,18.08687,0,0,0,6.40119,1.16386,17.1478,17.1478,0,0,0,6.46578-1.22836l1.03454,1.87509a1.05813,1.05813,0,0,1,.12931.7759,2.9093,2.9093,0,0,0,.25863,1.81045,2.12544,2.12544,0,0,0,3.83217-1.83967l-.01363-.02786-.0037-.00759a2.70112,2.70112,0,0,0-.71125-.96988,3.92469,3.92469,0,0,0-.64663-.45261.80307.80307,0,0,1-.38794-.51727L80.26719,67.78a17.7342,17.7342,0,0,0,7.62967-9.31084L108.135,63.05988c4.0735,1.09919,3.81484,2.52168,1.48715,5.496"/><path class="cls-1" d="M73.54278,45.73141V39.39487a13.59632,13.59632,0,0,1,6.91849,3.49156l-4.97871,3.55622c-.06466.06466-.12932.12932-.194.12932a7.18528,7.18528,0,0,0-1.74577-.84053m11.12127,7.43578-6.20723-1.42256a6.12245,6.12245,0,0,0-.51727-1.93976c.06466-.06466.12931-.12931.194-.12931l4.59077-4.0735a13.5098,13.5098,0,0,1,2.00442,7.04779,1.26028,1.26028,0,0,0-.06466.51727m-8.08233-34.2044c3.36224,1.61647,5.75461,2.78032,9.11682,4.39679,4.65541,2.263,9.31082,4.52611,14.0309,6.7245,1.16386,5.04336,2.32769,10.08673,3.42692,15.1301.71124,3.039,1.03454,4.65542,1.74577,7.62972,1.0992,4.72008.96989,5.108-3.87951,4.00883L89.06082,54.137a12.4583,12.4583,0,0,0,.06466-1.55181,17.33261,17.33261,0,0,0-3.10362-10.02208L87.703,41.01135a1.43533,1.43533,0,0,1,.71124-.32329,3.38409,3.38409,0,0,0,1.74578-.64663,2.11554,2.11554,0,1,0-2.64547-3.302l-.00554.00446h0a2.63279,2.63279,0,0,0-.7759.90522c-.12932.25864-.194.45261-.3233.71125a1.00556,1.00556,0,0,1-.38794.51727l-1.93976,1.35782a17.65449,17.65449,0,0,0-10.604-5.36666V21.22581c.06465-3.16827.32329-3.55622,3.10361-2.26306m.90522,37.308,6.20722,1.42249a13.41194,13.41194,0,0,1-5.04336,6.14256l-2.457-5.94862A10.12936,10.12936,0,0,0,77.487,56.27072m-6.27187,9.76345V59.827a7.9223,7.9223,0,0,0,1.22851-.12932,1.62044,1.62044,0,0,0,.25863.45261l2.845,5.17269a14.14,14.14,0,0,1-4.33211.71124m38.40717,2.52168c-2.97431,3.68554-4.33212,5.43133-7.30642,9.11683-3.36225,4.20281-6.07791,7.62972-9.44016,11.83252-2.39236,3.039-4.13815,3.10362-8.08233,3.10362H71.27975V70.431a17.14726,17.14726,0,0,0,6.46585-1.22852l1.03453,1.87511a1.05807,1.05807,0,0,1,.12932.7759,2.90914,2.90914,0,0,0,.25863,1.81044,2.12543,2.12543,0,0,0,3.81483-1.87511,2.70074,2.70074,0,0,0-.71124-.96988,3.92548,3.92548,0,0,0-.64663-.4526.80311.80311,0,0,1-.38794-.51728L80.39657,67.78a17.73432,17.73432,0,0,0,7.62967-9.31084l20.23813,4.59076c3.94418,1.09918,3.68554,2.52167,1.35784,5.496"/><path d="M259.63018,67.78H248.89685V92.86752h25.02286V82.13419H259.63018Zm53.73128.06465V82.13419H299.13654l-.12933-.12931V92.86752h25.08752V67.78H313.29679ZM248.8969,42.69245h10.798l-.06467-.06465V28.33825h14.22493l.06466.12931V17.60492H248.8969Zm50.11039-25.08753V28.33825h14.3542V42.69246h10.73333V17.60492Z"/><g class="cls-2"><path d="M297.71408,42.69245l-14.3542-14.3542h15.64738V17.60492H273.91971V28.46756l14.28956,14.22492ZM284.78237,67.78h-9.50481l11.89718,11.89718,2.457,2.457H273.91971V92.86752h25.08752V82.00487l-7.11243-7.11244Zm28.57909-25.08753V58.33982l-2.457-2.457L299.00726,44.05027v9.50481l7.1771,7.11245L313.29679,67.78h10.798V42.69245ZM273.91971,56.91732,259.69478,42.6924H248.83221V67.78h10.798V52.13261l14.28956,14.28955Z"/></g><path d="M196.3941,120.2181l-2.71568,3.23292a6.35641,6.35641,0,0,0-4.65542-2.39236,5.19258,5.19258,0,0,0-5.17557,5.20955v0q.00021.07856.00288.15706a5.17081,5.17081,0,0,0,4.9037,5.42477q.13439.00677.269.00655a6.83749,6.83749,0,0,0,4.65542-2.19838l2.78031,2.90964a11.32077,11.32077,0,0,1-7.62967,3.36223,9.36652,9.36652,0,0,1-9.694-9.02722q-.00852-.2387-.00483-.47759c0-5.36666,4.26748-9.37549,9.89276-9.37549A11.12786,11.12786,0,0,1,196.3941,120.2181Zm2.263,15.51806V116.1446h4.59077v19.59156Zm22.75983-7.11244c0,4.39678-3.1036,7.30642-7.759,7.30642s-7.82369-2.90964-7.82369-7.30642,3.1036-7.24176,7.82369-7.24176c4.6554,0,7.759,2.845,7.759,7.24176Zm-10.992.06467c0,2.19838,1.29317,3.68553,3.16827,3.68553s3.16826-1.48715,3.16826-3.68553-1.29317-3.68553-3.16826-3.68553S210.425,126.49,210.425,128.68839Zm27.35057,7.04778h-4.59074v-2.32768a5.041,5.041,0,0,1-4.65542,2.52168c-3.1036,0-5.108-2.13375-5.108-5.43132V121.5113h4.59075v7.69438c0,1.68112.90521,2.71566,2.39238,2.71566,1.74578,0,2.78031-1.42249,2.78031-3.36224v-7.04778h4.59075Zm17.97507,0h-4.59076v-1.8751a5.27087,5.27087,0,0,1-4.26749,2.06908c-4.00883,0-6.65983-2.9743-6.65983-7.37108,0-4.33212,2.58634-7.24176,6.53053-7.24176a5.25516,5.25516,0,0,1,4.39676,2.06907v-7.24172h4.59076V135.7362Zm-4.59076-7.04778c0-2.1984-1.29318-3.68553-3.16827-3.68553s-3.16827,1.48715-3.16827,3.68553,1.29316,3.7502,3.16827,3.7502c1.93978-.06468,3.1683-1.55183,3.1683-3.75022Z"/><path d="M272.49725,135.73616l-8.53495-11.37992v11.37992h-4.39676V117.2438h4.13816l8.53495,11.44457V117.2438h4.39676v18.49236Zm20.43213-9.31083v9.31083h-4.46145v-1.61647a5.17609,5.17609,0,0,1-4.33213,1.8751c-3.039,0-4.91405-1.8751-4.91405-4.46147,0-2.71567,1.93975-4.26747,5.496-4.33213h3.7502v-.194c0-1.42248-.90523-2.263-2.78031-2.263a10.88647,10.88647,0,0,0-4.26746,1.16385l-1.29319-3.03895a14.82048,14.82048,0,0,1,6.59517-1.61647c3.94417.06469,6.20721,2.00445,6.20721,5.17273Zm-4.46145,4.5261v-1.29317h-2.90964c-1.35782,0-2.06908.4526-2.06908,1.55181,0,1.03454.71126,1.68111,2.00441,1.68111a2.95576,2.95576,0,0,0,2.97431-1.93976Zm16.81124,4.0735a8.13646,8.13646,0,0,1-3.81484.96987c-2.78031,0-4.72006-1.5518-4.72006-4.5261v-6.27189h-2.00441V122.2225h2.00441v-3.94417h4.5261v3.94417h3.75019v3.039h-3.75019v5.56064c0,1.09919.45262,1.61647,1.29315,1.55181a5.3548,5.3548,0,0,0,1.74578-.45262Zm6.9831-17.58713a2.36293,2.36293,0,0,1-2.26673,2.45534q-.06281.00252-.12565.00168a2.42491,2.42491,0,0,1,0-4.8494,2.27338,2.27338,0,0,1,2.39238,2.39236Zm-4.72006,18.29837V121.51125h4.52609v14.22492Zm11.63855,0-5.36665-14.22492h4.72006l3.03894,10.08675,3.10361-10.08675h4.52612l-5.36665,14.22492Zm25.1522-5.88394h-10.0221a3.32655,3.32655,0,0,0,3.36223,2.651,5.08019,5.08019,0,0,0,3.4269-1.42249l2.39238,2.32768a8.07362,8.07362,0,0,1-6.20721,2.52168c-4.65542,0-7.56506-2.90964-7.56506-7.24176,0-4.39679,3.039-7.30643,7.43579-7.30643,4.97871,0,7.43578,3.2976,7.17707,8.47028Zm-4.39677-2.457a2.683,2.683,0,0,0-2.7803-2.90963c-1.61646,0-2.651,1.16385-2.97431,2.90963Z"/><path d="M362.95459,120.2181l-2.71568,3.23292a6.35636,6.35636,0,0,0-4.65542-2.39236,5.1926,5.1926,0,0,0-5.17557,5.20955v0q.00026.07856.00289.15706a5.17082,5.17082,0,0,0,4.90372,5.42477q.13437.00677.269.00655a6.83739,6.83739,0,0,0,4.65542-2.19838l2.78031,2.90964a11.32061,11.32061,0,0,1-7.62967,3.36223,9.36656,9.36656,0,0,1-9.694-9.02726q-.00849-.23868-.00481-.47755c0-5.36666,4.26746-9.37549,9.89274-9.37549A11.26291,11.26291,0,0,1,362.95459,120.2181Zm15.97067,8.40561c0,4.39678-3.1036,7.30641-7.759,7.30641s-7.82367-2.90963-7.82367-7.30641,3.10361-7.24176,7.82367-7.24176C375.82166,121.382,378.92526,124.22692,378.92526,128.62371Zm-10.92732.06466c0,2.19839,1.29318,3.68554,3.1683,3.68554s3.16827-1.48715,3.16827-3.68554-1.29316-3.68553-3.16827-3.68553S367.998,126.49,367.998,128.68837Zm27.9325-1.93976v8.98753h-4.52609v-7.69437a2.433,2.433,0,0,0-2.52171-2.71566,2.89561,2.89561,0,0,0-2.90964,2.90964v7.56506h-4.59075V121.57589H385.973v2.32768a5.24823,5.24823,0,0,1,4.78475-2.52168c3.10361-.06467,5.17269,2.06907,5.17269,5.36666Z"/><g id="SVGID-2"><path d="M154.68931,9.264h.64664V140.84422h-.64664Z"/></g><rect x="154.68931" y="9.26397" width="0.64658" height="131.58023"/><rect x="154.68931" y="9.26397" width="0.64658" height="131.58023"/><rect x="154.68931" y="9.26397" width="0.64658" height="131.58023"/><g class="cls-3"><path d="M154.68931,9.264h.64664V140.84422h-.64664Z"/></g><g id="SVGID-3"><path d="M314.13738,166.22271h81.79309v.64658H314.13738Z"/></g><rect x="314.13738" y="166.22268" width="81.79309" height="0.64658"/><rect x="314.13738" y="166.22268" width="81.79309" height="0.64658"/><rect x="314.13738" y="166.22268" width="81.79309" height="0.64658"/><g class="cls-4"><path d="M314.13738,166.22271h81.79309v.64658H314.13738Z"/></g><path d="M135.91644,175.59379H125.2653V157.09958h10.65114v3.21321h-6.72977v4.0606h6.2616v3.213h-6.2616v4.769h6.72977Z"/><path d="M149.48949,175.59379l-.51844-1.80908h-.20268a4.06966,4.06966,0,0,1-1.758,1.52444,6.00488,6.00488,0,0,1-2.5932.53761,4.93724,4.93724,0,0,1-3.75706-1.33444,5.36868,5.36868,0,0,1-1.265-3.83924v-9.22183h3.85813v8.26041a3.96793,3.96793,0,0,0,.54383,2.29587,1.97888,1.97888,0,0,0,1.73311.76521,2.6053,2.6053,0,0,0,2.34019-1.08146,6.70865,6.70865,0,0,0,.72113-3.58622v-6.65379h3.85817v14.14252Z"/><path d="M164.3912,161.18557a6.21683,6.21683,0,0,1,1.30283.1138l-.29085,3.61785a4.4296,4.4296,0,0,0-1.13848-.1265,4.09134,4.09134,0,0,0-2.87805.94873,3.42957,3.42957,0,0,0-1.0309,2.65644v7.19788h-3.85817v-14.1425h2.92235l.56923,2.378h.18975a5.3178,5.3178,0,0,1,1.77693-1.91637A4.38429,4.38429,0,0,1,164.3912,161.18557Z"/><path d="M181.11419,168.49725a7.59823,7.59823,0,0,1-1.82174,5.40152,6.60415,6.60415,0,0,1-5.07233,1.948,7.09746,7.09746,0,0,1-3.59272-.89171,5.93547,5.93547,0,0,1-2.391-2.5618,8.61028,8.61028,0,0,1-.83469-3.896,7.55708,7.55708,0,0,1,1.80881-5.38882,6.6424,6.6424,0,0,1,5.08528-1.92286,7.139,7.139,0,0,1,3.59271.88548,5.90859,5.90859,0,0,1,2.3905,2.54264A8.52561,8.52561,0,0,1,181.11419,168.49725Zm-9.77861,0a5.93438,5.93438,0,0,0,.68975,3.17512,2.46433,2.46433,0,0,0,2.24511,1.07524,2.42647,2.42647,0,0,0,2.22017-1.069,6.0198,6.0198,0,0,0,.6768-3.18134,5.83992,5.83992,0,0,0-.68327-3.15,2.90442,2.90442,0,0,0-4.46525-.00622,5.83834,5.83834,0,0,0-.6833,3.15619Z"/><path d="M192.06913,175.84677a4.69009,4.69009,0,0,1-3.909-1.80885h-.20225q.20169,1.77084.20225,2.04911v5.73046H184.302V161.45127h3.137l.54434,1.83421h.1768a4.464,4.464,0,0,1,4.01-2.0999,4.58939,4.58939,0,0,1,3.92141,1.93556,8.95271,8.95271,0,0,1,1.41686,5.37612,10.61611,10.61611,0,0,1-.66386,3.9341,5.525,5.525,0,0,1-1.89148,2.54265A4.84618,4.84618,0,0,1,192.06913,175.84677Zm-1.13847-11.57472a2.436,2.436,0,0,0-2.0872.87924,5.04713,5.04713,0,0,0-.68328,2.90321v.41734a5.95861,5.95861,0,0,0,.6768,3.26377,2.41565,2.41565,0,0,0,2.144.98658q2.59368,0,2.59369-4.27551a6.107,6.107,0,0,0-.639-3.131,2.18026,2.18026,0,0,0-2.005-1.04357Z"/><path d="M207.09736,175.84677a7.2991,7.2991,0,0,1-5.33827-1.88475,7.1364,7.1364,0,0,1-1.92286-5.33827,7.84744,7.84744,0,0,1,1.77744-5.49639,6.32787,6.32787,0,0,1,4.91446-1.94175,6.22836,6.22836,0,0,1,4.66742,1.70772,6.45943,6.45943,0,0,1,1.66985,4.71844v1.87206h-9.12023a3.71261,3.71261,0,0,0,.97363,2.568,3.42848,3.42848,0,0,0,2.55534.92333,10.59954,10.59954,0,0,0,2.41638-.2657,12.08727,12.08727,0,0,0,2.37805-.84738v2.98537a9.059,9.059,0,0,1-2.16289.75251A13.63349,13.63349,0,0,1,207.09736,175.84677Zm-.54433-11.91611a2.44614,2.44614,0,0,0-1.92235.77792,3.60048,3.60048,0,0,0-.79733,2.20747h5.41447a3.21723,3.21723,0,0,0-.74653-2.20747A2.52665,2.52665,0,0,0,206.553,163.93066Z"/><path d="M234.67371,175.59379H221.74562v-2.71968l4.64254-4.69309q2.06181-2.1126,2.69428-2.9286a6.43928,6.43928,0,0,0,.91089-1.51148,3.85377,3.85377,0,0,0,.27838-1.44228,2.10159,2.10159,0,0,0-.61356-1.65692,2.38044,2.38044,0,0,0-1.63848-.54409,4.71418,4.71418,0,0,0-2.08719.49329,10.7855,10.7855,0,0,0-2.11261,1.40417l-2.125-2.51724a13.8486,13.8486,0,0,1,2.26449-1.64446,8.3201,8.3201,0,0,1,1.9607-.74,10.04741,10.04741,0,0,1,2.37805-.25922,7.04291,7.04291,0,0,1,3.06133.63249,4.8826,4.8826,0,0,1,2.06181,1.77095,4.70516,4.70516,0,0,1,.73407,2.60589,6.37811,6.37811,0,0,1-.44921,2.397,9.20929,9.20929,0,0,1-1.39147,2.29614,34.03905,34.03905,0,0,1-3.32079,3.35217l-2.37805,2.23909v.17705h8.058Z"/><path d="M249.36029,166.3468q0,4.84484-1.58769,7.17247a5.50836,5.50836,0,0,1-4.889,2.3275,5.444,5.444,0,0,1-4.82581-2.40345q-1.62627-2.40317-1.62554-7.09652,0-4.89563,1.58121-7.21683a6.14864,6.14864,0,0,1,9.7084.10757Q249.36006,161.66618,249.36029,166.3468Zm-9.04454,0a14.38014,14.38014,0,0,0,.58818,4.87636,2.03674,2.03674,0,0,0,1.97964,1.47388,2.05754,2.05754,0,0,0,1.97316-1.49281,19.76988,19.76988,0,0,0-.006-9.74675,2.04923,2.04923,0,0,0-3.94082,0,14.3658,14.3658,0,0,0-.59416,4.88932Z"/><path d="M264.24907,175.59379H251.321v-2.71968l4.64254-4.69309q2.06178-2.1126,2.69429-2.9286a6.43827,6.43827,0,0,0,.91089-1.51148,3.85319,3.85319,0,0,0,.27839-1.44228,2.10161,2.10161,0,0,0-.61355-1.65692,2.38042,2.38042,0,0,0-1.63848-.54409,4.71442,4.71442,0,0,0-2.0872.49329,10.786,10.786,0,0,0-2.11259,1.40417l-2.12506-2.51724a13.8486,13.8486,0,0,1,2.26449-1.64446,8.3201,8.3201,0,0,1,1.9607-.74,10.04746,10.04746,0,0,1,2.37805-.25922,7.043,7.043,0,0,1,3.06134.63249,4.88231,4.88231,0,0,1,2.0618,1.77095,4.70531,4.70531,0,0,1,.73408,2.60589,6.37794,6.37794,0,0,1-.44923,2.397,9.20807,9.20807,0,0,1-1.39146,2.29614,34.03784,34.03784,0,0,1-3.32078,3.35217l-2.378,2.23909v.17705h8.05794Z"/><rect x="288.46793" y="166.22268" width="109.53207" height="0.64658"/><rect x="288.46793" y="166.22268" width="109.53207" height="0.64658"/><g class="cls-5"><path d="M288.46793,166.22271H398v.64658h-109.532Z"/></g><rect x="3" y="166.22268" width="109.53207" height="0.64658"/><rect x="3" y="166.22268" width="109.53207" height="0.64658"/><g class="cls-6"><path d="M3,166.22271H112.53206v.64658H3Z"/></g><path d="M279.00045,175.59379H266.07237v-2.71968l4.64254-4.69309q2.06178-2.1126,2.69429-2.9286a6.43827,6.43827,0,0,0,.91089-1.51148,3.85339,3.85339,0,0,0,.27839-1.44228,2.10161,2.10161,0,0,0-.61355-1.65692,2.38042,2.38042,0,0,0-1.63848-.54409,4.71442,4.71442,0,0,0-2.0872.49329,10.786,10.786,0,0,0-2.11259,1.40417l-2.12506-2.51724a13.8486,13.8486,0,0,1,2.26449-1.64446,8.3201,8.3201,0,0,1,1.9607-.74,10.04746,10.04746,0,0,1,2.37805-.25922,7.043,7.043,0,0,1,3.06134.63249,4.88231,4.88231,0,0,1,2.0618,1.77095,4.70531,4.70531,0,0,1,.73408,2.60589,6.37794,6.37794,0,0,1-.44923,2.397,9.20837,9.20837,0,0,1-1.39146,2.29614,34.03784,34.03784,0,0,1-3.32078,3.35217l-2.378,2.23909v.17705h8.05794Z"/></svg>
\ No newline at end of file
diff --git a/static/images/blog/2020-05-21-wsl2-dockerdesktop-k8s/wsl2-minikube-install conntrack.png b/static/images/blog/2020-05-21-wsl2-dockerdesktop-k8s/wsl2-minikube-install-conntrack.png
similarity index 100%
rename from static/images/blog/2020-05-21-wsl2-dockerdesktop-k8s/wsl2-minikube-install conntrack.png
rename to static/images/blog/2020-05-21-wsl2-dockerdesktop-k8s/wsl2-minikube-install-conntrack.png
diff --git a/static/images/blog/2021-09-07-data-duplication-in-data-heavy-k8s-env/create-volume-snapshot-gcp.png b/static/images/blog/2021-09-07-data-duplication-in-data-heavy-k8s-env/create-volume-snapshot-gcp.png
new file mode 100644
index 0000000000..795151cb53
Binary files /dev/null and b/static/images/blog/2021-09-07-data-duplication-in-data-heavy-k8s-env/create-volume-snapshot-gcp.png differ
diff --git a/static/images/blog/2021-09-07-data-duplication-in-data-heavy-k8s-env/identify-volume-aws.png b/static/images/blog/2021-09-07-data-duplication-in-data-heavy-k8s-env/identify-volume-aws.png
new file mode 100644
index 0000000000..538cbeeba5
Binary files /dev/null and b/static/images/blog/2021-09-07-data-duplication-in-data-heavy-k8s-env/identify-volume-aws.png differ
diff --git a/static/images/blog/2021-10-08-clusterclass-and-managed-topologies/clusterclass.svg b/static/images/blog/2021-10-08-clusterclass-and-managed-topologies/clusterclass.svg
new file mode 100644
index 0000000000..c22b4b9ff0
--- /dev/null
+++ b/static/images/blog/2021-10-08-clusterclass-and-managed-topologies/clusterclass.svg
@@ -0,0 +1,4 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!-- Do not edit this file with editors other than diagrams.net -->
+<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
+<svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" version="1.1" width="773px" height="443px" viewBox="-0.5 -0.5 773 443" content="&lt;mxfile host=&quot;app.diagrams.net&quot; modified=&quot;2021-09-21T12:44:53.800Z&quot; agent=&quot;5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.0 Safari/605.1.15&quot; etag=&quot;EECTVeYOGQJQqZo0mf3a&quot; version=&quot;15.2.9&quot; type=&quot;device&quot; pages=&quot;9&quot;&gt;&lt;diagram id=&quot;Ef72_Th2IsIdCm0gPvAl&quot; name=&quot;Overview&quot;&gt;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&lt;/diagram&gt;&lt;diagram id=&quot;prmGIbv4zJ98bc2zbkQL&quot; name=&quot;Demo - Part 1&quot;&gt;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&lt;/diagram&gt;&lt;diagram id=&quot;315eYhjd11tHakWpIzaK&quot; name=&quot;Demo - part 2&quot;&gt;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&lt;/diagram&gt;&lt;diagram id=&quot;P6cCQ2AM2fPNUQBBhqTd&quot; name=&quot;Inline Patches 1&quot;&gt;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&lt;/diagram&gt;&lt;diagram name=&quot;Inline Patches 2&quot; id=&quot;43ziSQevO22LF8IHb_xj&quot;&gt;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&lt;/diagram&gt;&lt;diagram id=&quot;Rzy-t1oWBMJ1zNRLwABY&quot; name=&quot;Rebase&quot;&gt;5Vlbc5s4FP41fjSjGyA9xk7STqfZzcTb6WZfMsTIQIuRC/KF/PqVQNxd107iadPCjI0+wRGc8+k7RzDC0+XuXeqtwhvh83iEgL8b4csRQtDBjvrTSF4iDjJAkEZ+CYEGmEVP3FxZoevI55nBSkgKEcto1QXnIkn4XHYwL03FtnvaQsR+B1h5Ae/chgZmcy/mg9M+R74MS5Qit8Hf8ygIq5Ghw8qepVedbAxnoeeLbQvCVyM8TYWQ5dFyN+Wxdl7lFye45DT/5E/Diydwl+7ur28exqWx61MuqR8h5Yl8tun7z98eHh4i6M4Y2e3m1xuwSMaoNL3x4rXx1zReZ5Kn09jLspF+TmyGz2Re+TQV68Tn2i4c4ck2jCSfrby57t0qFikslMvYdC9EIqciFmlxLb4uNo1HcdzBKQBA4Uc+rLmrDU8l37VCbR7+HRdLLtNcnWJ6a0YaIkPbtLcNLWosbFECG8wzTAxq04231YFx+AnOJwPnDzzNE/9CTwLVSkSiwIlCriM9ziUoW2bKQXSc2/kukv/qqy3btO4rW+r4ctdu5Kbhe1lYh1uFJc1LC27V1CagBTCpgMZO0crbrVueRsqBPDXgaQHPxDqdG+/cf7m9CMPt3/S/zft8s336+iH/MMZGZLw04PLH1Od+wA/Sp00Px1Ah5bEno01XYvbxw5i7FZF6tpqKBNodKiLWo1j5kOaq9pzuGcIQWsRmEFQb7tgdY2IBRGy76mbdYUofDYYpyFx74Pn8rlLHQXUZcv5NqguxfzV1we5QTRTXZ6YpUhmKQCRefNWgk8b32lnNOR+FWBmPf+FS5kZ0vLUU3Xjslxd4UF5aiuKgvqY47nM0paNYmiOVStpDzpRTQ+GZmg+yJ7cF1hXcg4L8AjE7IFKvJmZHC9fLqEffSmZrUc/uEO8HpPtJOatS1LedtAiyuqZg39TrJaYnR97aS4FvM/hXPnNo9Onj0hTKB+mpiv2VPsyiJIi5YerEj1K1RolEonvEWrv4mATVFp9MpuIrb/HXmVP+uBimLN/jdDFXuBdHgR4w5gupRVkNFUntOQoKxZaeuaMx00CxaKqWOsDCjDnYpTYFLmKwUNPiDHNPwCKQIGozrChMVYzRGZMkpv2440GSdPbkSPc1cuS+eXcEEV5SjZTbMLQLW+97yVBs56xTqEqyuK4XAewEBDvUogRT4kBb/yIyiI8NLARdzCAGBBOX4mG4ELAYVHnVdVj5e6bowT8veq6OHgSQEIZcu8qzVfRsakGX1tFzh7PLJhZUQkCUJDgUQpvZPy98w3cPv334HGSpKVeHz+2Gj7gWw4TVm/1Lhw8PwmcWd68axe8t6MglY2dd0GEX9codtZZubWQYHbZ3eaeicaYIHPP+qLXiUw5SdcNdUQWKpL3qa9covWK7VaZf3fXr9O7roHb9DCy3rqe/t26ry3V0/FLxtGg/q+4+IFUnld1gDxtq8IW1+BhC7FjY7ZZTY4hdZgHW7F27xxboqo5k1sA0wxbAzd41/Ypvkvb5397DdCeWhroj/fWgUgbn21q/kJ80C/sW1JoaFagNjLOC/BfqBIhXu/YVTqD/b7zEC5SCmUEf06rjH7FSIwf5sKdC1POW91jB5xDH3ppgkNkmxa56tP5Fcy++MGuKRyGlWJ4z5fVrFMVbCAfSCdGeTMZci56evVSz+SZTErD5soWv/gc=&lt;/diagram&gt;&lt;diagram id=&quot;iKkMZgKB69KpbFDXon7d&quot; name=&quot;Adoption&quot;&gt;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&lt;/diagram&gt;&lt;diagram id=&quot;hhZSFu9bppFXDsjjeykD&quot; name=&quot;Blog1&quot;&gt;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&lt;/diagram&gt;&lt;diagram id=&quot;xvF9SRMhO2U_qJM53eco&quot; name=&quot;Blog2&quot;&gt;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&lt;/diagram&gt;&lt;/mxfile&gt;"><defs/><g><rect x="312" y="55.66" width="160" height="30" rx="4.5" ry="4.5" fill="#ff9933" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 158px; height: 1px; padding-top: 71px; margin-left: 313px;"><div style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(255, 255, 255); line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal;">ClusterClass</div></div></div></foreignObject><text x="392" y="74" fill="#FFFFFF" font-family="Helvetica" font-size="12px" text-anchor="middle">ClusterClass</text></switch></g><rect x="552" y="305.66" width="190" height="30" rx="4.5" ry="4.5" fill="#0066cc" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 188px; height: 1px; padding-top: 321px; margin-left: 553px;"><div style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(255, 255, 255); line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal;">KubeadmConfigTemplate</div></div></div></foreignObject><text x="647" y="324" fill="#FFFFFF" font-family="Helvetica" font-size="12px" text-anchor="middle">KubeadmConfigTemplate</text></switch></g><rect x="552" y="205.66" width="190" height="30" rx="4.5" ry="4.5" fill="#0066cc" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 188px; height: 1px; padding-top: 221px; margin-left: 553px;"><div style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(255, 255, 255); line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal;">VSphereMachineTemplate</div></div></div></foreignObject><text x="647" y="224" fill="#FFFFFF" font-family="Helvetica" font-size="12px" text-anchor="middle">VSphereMachineTemplate</text></switch></g><rect x="442" y="105.66" width="190" height="30" rx="4.5" ry="4.5" fill="#0066cc" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 188px; height: 1px; padding-top: 121px; margin-left: 443px;"><div style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(255, 255, 255); line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal;">VSphereCluster<i><b>Template</b></i></div></div></div></foreignObject><text x="537" y="124" fill="#FFFFFF" font-family="Helvetica" font-size="12px" text-anchor="middle">VSphereClusterTemplate</text></switch></g><rect x="442" y="255.66" width="190" height="30" rx="4.5" ry="4.5" fill="#f5f5f5" stroke="#666666" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 188px; height: 1px; padding-top: 271px; margin-left: 443px;"><div style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(51, 51, 51); line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal;">MachineDeployment<b>Class</b></div></div></div></foreignObject><text x="537" y="274" fill="#333333" font-family="Helvetica" font-size="12px" text-anchor="middle">MachineDeploymentClass</text></switch></g><rect x="552" y="355.66" width="190" height="30" rx="4.5" ry="4.5" fill="#0066cc" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 188px; height: 1px; padding-top: 371px; margin-left: 553px;"><div style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(255, 255, 255); line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal;">VSphereMachineTemplate</div></div></div></foreignObject><text x="647" y="374" fill="#FFFFFF" font-family="Helvetica" font-size="12px" text-anchor="middle">VSphereMachineTemplate</text></switch></g><rect x="442" y="155.66" width="190" height="30" rx="4.5" ry="4.5" fill="#0066cc" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 188px; height: 1px; padding-top: 171px; margin-left: 443px;"><div style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(255, 255, 255); line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal;">KubeadmControlPlane<b><i>Template</i></b></div></div></div></foreignObject><text x="537" y="174" fill="#FFFFFF" font-family="Helvetica" font-size="12px" text-anchor="middle">KubeadmControlPlaneTemplate</text></switch></g><path d="M 352 85.66 L 372 85.66 Q 382 85.66 387.77 93.83 L 406.23 119.99 Q 412 128.16 422 128.16 L 442 128.16" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 438 132.16 L 438 124.16" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><path d="M 352 85.66 L 372 85.66 Q 382 85.66 385.33 95.09 L 408.67 161.23 Q 412 170.66 422 170.66 L 442 170.66" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 438 174.66 L 438 166.66" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><path d="M 352 85.66 L 372 85.66 Q 382 85.66 383.6 95.53 L 410.4 260.79 Q 412 270.66 422 270.66 L 442 270.66" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 438 274.66 L 438 266.66" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><path d="M 489.5 185.66 L 509.5 185.66 Q 519.5 185.66 520.21 195.63 L 521.29 210.69 Q 522 220.66 532 220.66 L 552 220.66" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 548 224.66 L 548 216.66" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><path d="M 489.5 285.66 L 509.5 285.66 Q 519.5 285.66 520.21 295.63 L 521.29 310.69 Q 522 320.66 532 320.66 L 552 320.66" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 548 324.66 L 548 316.66" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><path d="M 482 285.66 L 502 285.66 Q 512 285.66 513.17 295.59 L 520.83 360.73 Q 522 370.66 532 370.66 L 552 370.66" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 548 374.66 L 548 366.66" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><rect x="125" y="60.91" width="90" height="350.75" rx="13.5" ry="13.5" fill="#dae8fc" stroke="none" pointer-events="all"/><rect x="153.63" y="234.74" width="50.22" height="20.91" rx="3.14" ry="3.14" fill="#0066cc" stroke="#000000" pointer-events="all"/><rect x="143.63" y="224.08" width="54.11" height="20.91" rx="3.14" ry="3.14" fill="#0066cc" stroke="#000000" pointer-events="all"/><rect x="135" y="213.84" width="54.11" height="20.91" rx="3.14" ry="3.14" fill="#0066cc" stroke="#000000" pointer-events="all"/><rect x="30" y="159.9" width="90" height="30.91" rx="4.64" ry="4.64" fill="#4d9900" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 88px; height: 1px; padding-top: 175px; margin-left: 31px;"><div style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(255, 255, 255); line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal;">Cluster</div></div></div></foreignObject><text x="75" y="179" fill="#FFFFFF" font-family="Helvetica" font-size="12px" text-anchor="middle">Cluster</text></switch></g><path d="M 52.5 190.81 L 72.5 190.81 Q 82.5 190.81 87.53 199.46 L 99.98 220.87 Q 105 229.52 115 229.52 L 135 229.52" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 131 233.52 L 131 225.52" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><rect x="153.63" y="364.74" width="50.22" height="20.91" rx="3.14" ry="3.14" fill="#0066cc" stroke="#000000" pointer-events="all"/><rect x="143.63" y="354.08" width="54.11" height="20.91" rx="3.14" ry="3.14" fill="#0066cc" stroke="#000000" pointer-events="all"/><rect x="135" y="343.84" width="54.11" height="20.91" rx="3.14" ry="3.14" fill="#0066cc" stroke="#000000" pointer-events="all"/><rect x="30" y="289.9" width="90" height="30.91" rx="4.64" ry="4.64" fill="#4d9900" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 88px; height: 1px; padding-top: 305px; margin-left: 31px;"><div style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(255, 255, 255); line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal;">Cluster</div></div></div></foreignObject><text x="75" y="309" fill="#FFFFFF" font-family="Helvetica" font-size="12px" text-anchor="middle">Cluster</text></switch></g><path d="M 52.5 320.81 L 72.5 320.81 Q 82.5 320.81 87.53 329.46 L 99.98 350.87 Q 105 359.52 115 359.52 L 135 359.52" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 131 363.52 L 131 355.52" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><rect x="153.63" y="104.84" width="50.22" height="20.91" rx="3.14" ry="3.14" fill="#0066cc" stroke="#000000" pointer-events="all"/><rect x="143.63" y="94.18" width="54.11" height="20.91" rx="3.14" ry="3.14" fill="#0066cc" stroke="#000000" pointer-events="all"/><rect x="135" y="83.93" width="54.11" height="20.91" rx="3.14" ry="3.14" fill="#0066cc" stroke="#000000" pointer-events="all"/><rect x="30" y="30" width="90" height="30.91" rx="4.64" ry="4.64" fill="#4d9900" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 88px; height: 1px; padding-top: 45px; margin-left: 31px;"><div style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(255, 255, 255); line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal;">Cluster</div></div></div></foreignObject><text x="75" y="49" fill="#FFFFFF" font-family="Helvetica" font-size="12px" text-anchor="middle">Cluster</text></switch></g><path d="M 52.5 60.91 L 72.5 60.91 Q 82.5 60.91 87.53 69.56 L 99.98 90.97 Q 105 99.62 115 99.62 L 135 99.62" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 131 103.62 L 131 95.62" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><path d="M 251.82 221.55 L 293.63 221.55 L 293.63 206.72 L 321.82 234.54 L 293.63 262.35 L 293.63 247.53 L 251.82 247.53 Z" fill="#dae8fc" stroke="none" pointer-events="all"/></g><switch><g requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"/><a transform="translate(0,-5)" xlink:href="https://www.diagrams.net/doc/faq/svg-export-text-problems" target="_blank"><text text-anchor="middle" font-size="10px" x="50%" y="100%">Viewer does not support full SVG 1.1</text></a></switch></svg>
\ No newline at end of file
diff --git a/static/images/blog/2021-10-08-clusterclass-and-managed-topologies/create-cluster.svg b/static/images/blog/2021-10-08-clusterclass-and-managed-topologies/create-cluster.svg
new file mode 100644
index 0000000000..d26d49d7bb
--- /dev/null
+++ b/static/images/blog/2021-10-08-clusterclass-and-managed-topologies/create-cluster.svg
@@ -0,0 +1,4 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!-- Do not edit this file with editors other than diagrams.net -->
+<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
+<svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" version="1.1" width="682px" height="343px" viewBox="-0.5 -0.5 682 343" content="&lt;mxfile host=&quot;app.diagrams.net&quot; modified=&quot;2021-09-21T12:45:09.095Z&quot; agent=&quot;5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.0 Safari/605.1.15&quot; etag=&quot;9QLnv7uc-R5KsBwbfB9w&quot; version=&quot;15.2.9&quot; type=&quot;device&quot; pages=&quot;9&quot;&gt;&lt;diagram id=&quot;Ef72_Th2IsIdCm0gPvAl&quot; name=&quot;Overview&quot;&gt;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&lt;/diagram&gt;&lt;diagram id=&quot;prmGIbv4zJ98bc2zbkQL&quot; name=&quot;Demo - Part 1&quot;&gt;7Vptc5s4EP41nrn7AKMXEPDRsWNfe+21jdNrm2/EyMAVEMVybPfXn8T7i+IkTUgzncJMbO2iBXaffaRdZ4Jn8WGZuWnwlnk0miDgHSZ4PkEIEkzEh5QcCwlBpcDPQq8QgUawCr/TcmYl3YUe3ZayQsQZi3iYdoVrliR0zTsyN8vYvnvZhkVeR5C6Pu08hhSs1m5EB5d9Cj0eFFIbWY38Lxr6QXVnSJxCE7vVxaXhbeB6bN8S4fMJnmWM8eJbfJjRSDqv8svrK8d4FTgu/LAAh402DV9tkFYYWzxkSv0KGU34D5uOv+DN+c1XYmmfXzP+98Xi3RJqVZRu3GhXOqx8WX6sPJixXeJRaQVO8Nk+CDldpe5aavcCM0IW8Dgq1RuW8BmLWJbPxYv8kPIwilpyAAiZzYT8nq9WuuCGZpweWoEtX3VJWUx5dhSXHCqYlm9WwrbG474BAcSlLGgBAEO98oFbQs+vrTfuFV9KDz/A286v6mzYczZ4Xme7mB7fL7/FwfSo/YuRczWdk/otGmfPot2W02wWudvtszh+sbCBcMV4jsd21/HQVDjeVDkePN7rKXgbh9uz2fUKLJcZ9Q8xiTR8N8Rp4k0lsYtRwhIhPBOSRSjvMwfFqFxGILqf24VXs+NnOV03q+GXck4+mB9q23J0LEeeuw3qkNNDyFs2xOhLNUl8byzIQWXgYXHlbuZTfjdkqefTk9FvR5eUkcxo5PLwprvqqcJbmnvPQvHMNZIM0+ymMOkhZMt22ZqWs9rLTM8QcQyR04ZTHx2zGjF0u6V0eg9auGhwlxyKtQN+nIDRAJ2XNE6F4+jzEML4TAx6hOC8gGWP3IMTBORX5VC4JOTHixzPLDlvNLmXb6GGFqmcX/RZBXY4os0QLcK4hSMqWoBtUqgp4iloocisu2mhTR+n0P0g+gAKLNTCR3IKMYEOQJdXNBNiHWPDrk7zB2kG2Lpl9m1jIIQOqM+xyOX79ALsP32cviHzeJlq4eIN2yk2HBNEIi5xCjtoJ992smY4WxfEMJWe9q//EE4XNwbVx585kIDEvLZx4zA6FpcGNLqhPFy7LX1pW6oTlsVuVOgiysV+R9sK2goTf6gXpMK1ULCchKlUgvTQ0vDMTbYbcX01M08rCSCWeV2r3YkeXbMsz97+zOJp8xSWCmiW8yqXiG++/IS60M4yKphZBlAOis1b/i3fvxWuFZGS3i1mDWhFPk2XJ7Y8Y19pRcnlg7VZuhS5UeiLp59HdCMtSAYWLo+mpTgOPS+nJNW60KwcYLg0gPwQcib9xyV07eqyitvMEVcIo7dAYKQbxmCNwCpeIJZuksevEcrkGa7MD06eJn+aFELgliwShtw4zZWCjeRt6rTqa7pGhqlWqU9kW3WJMuE6SlXOVReo064zXZl53efvJt8g89CJzNtkLP6djmOmIzKgTizQHOjnp6aqpPudmj8hNbFMzXcplVbEbWSLMnF9gWzZUk2F0/1QdlqlgY+pn7my7/o7L58kL7Fp6RAPc1FVSo2Zi8bJXCzCexnQHFHCuznccpCv3dS9DqOQh+ODos6DudmMLpmI+VzLAa9CAxOx2UR5ARcI1NBEiZB26G9DTA+TPQCNBRjcI/IhcRs2UoHl8Ujxwfer/fS/6fSfy/X7reOuVquNNnJjvziGHY6NKc8BWISG5MeIETChpRPcLJ2wm8GY6LaBbYNAU/5Fw02vKFcRtLADMTCwYdl4GC4EdAeKWFvEKf6OFD1VLfmLRw/I6EEADcNBlghRN3qI6NCy6+hZQy42DR0CCxkEW8SG0HTMnxc+VTXza4fPcBxdpFwdPqsbPmjqDm71fc0XHb7hjrcud56hSWzMHWfUX40M0G3KI4L0VskBjGF0HOVvSHq/ff9kEVDtc15My9i6b89YrCft35KqFvJTN41PYbjdND5FVS+maaxBIKgEW73WLjQg1MGtrd37to0120L6wDQydYCbs2v66brGSv+bCqQX23MJXblzr5mhqQerzW5LpKjD+0UlVhWVb6sasrjpdVaXEUVJeRxqWvVD8Yy3VBBPQo697ftgZTvLT0Xtec04Z/GYNNrDqNg16hAO9p/txEGKRc2xdPvhC5kYNv95VGCx+f8tfP4/&lt;/diagram&gt;&lt;diagram id=&quot;315eYhjd11tHakWpIzaK&quot; name=&quot;Demo - part 2&quot;&gt;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&lt;/diagram&gt;&lt;diagram id=&quot;P6cCQ2AM2fPNUQBBhqTd&quot; name=&quot;Inline Patches 1&quot;&gt;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&lt;/diagram&gt;&lt;diagram name=&quot;Inline Patches 2&quot; id=&quot;43ziSQevO22LF8IHb_xj&quot;&gt;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&lt;/diagram&gt;&lt;diagram id=&quot;Rzy-t1oWBMJ1zNRLwABY&quot; name=&quot;Rebase&quot;&gt;5Vlbc5s4FP41fjSjGyA9xk7STqfZzcTb6WZfMsTIQIuRC/KF/PqVQNxd107iadPCjI0+wRGc8+k7RzDC0+XuXeqtwhvh83iEgL8b4csRQtDBjvrTSF4iDjJAkEZ+CYEGmEVP3FxZoevI55nBSkgKEcto1QXnIkn4XHYwL03FtnvaQsR+B1h5Ae/chgZmcy/mg9M+R74MS5Qit8Hf8ygIq5Ghw8qepVedbAxnoeeLbQvCVyM8TYWQ5dFyN+Wxdl7lFye45DT/5E/Diydwl+7ur28exqWx61MuqR8h5Yl8tun7z98eHh4i6M4Y2e3m1xuwSMaoNL3x4rXx1zReZ5Kn09jLspF+TmyGz2Re+TQV68Tn2i4c4ck2jCSfrby57t0qFikslMvYdC9EIqciFmlxLb4uNo1HcdzBKQBA4Uc+rLmrDU8l37VCbR7+HRdLLtNcnWJ6a0YaIkPbtLcNLWosbFECG8wzTAxq04231YFx+AnOJwPnDzzNE/9CTwLVSkSiwIlCriM9ziUoW2bKQXSc2/kukv/qqy3btO4rW+r4ctdu5Kbhe1lYh1uFJc1LC27V1CagBTCpgMZO0crbrVueRsqBPDXgaQHPxDqdG+/cf7m9CMPt3/S/zft8s336+iH/MMZGZLw04PLH1Od+wA/Sp00Px1Ah5bEno01XYvbxw5i7FZF6tpqKBNodKiLWo1j5kOaq9pzuGcIQWsRmEFQb7tgdY2IBRGy76mbdYUofDYYpyFx74Pn8rlLHQXUZcv5NqguxfzV1we5QTRTXZ6YpUhmKQCRefNWgk8b32lnNOR+FWBmPf+FS5kZ0vLUU3Xjslxd4UF5aiuKgvqY47nM0paNYmiOVStpDzpRTQ+GZmg+yJ7cF1hXcg4L8AjE7IFKvJmZHC9fLqEffSmZrUc/uEO8HpPtJOatS1LedtAiyuqZg39TrJaYnR97aS4FvM/hXPnNo9Onj0hTKB+mpiv2VPsyiJIi5YerEj1K1RolEonvEWrv4mATVFp9MpuIrb/HXmVP+uBimLN/jdDFXuBdHgR4w5gupRVkNFUntOQoKxZaeuaMx00CxaKqWOsDCjDnYpTYFLmKwUNPiDHNPwCKQIGozrChMVYzRGZMkpv2440GSdPbkSPc1cuS+eXcEEV5SjZTbMLQLW+97yVBs56xTqEqyuK4XAewEBDvUogRT4kBb/yIyiI8NLARdzCAGBBOX4mG4ELAYVHnVdVj5e6bowT8veq6OHgSQEIZcu8qzVfRsakGX1tFzh7PLJhZUQkCUJDgUQpvZPy98w3cPv334HGSpKVeHz+2Gj7gWw4TVm/1Lhw8PwmcWd68axe8t6MglY2dd0GEX9codtZZubWQYHbZ3eaeicaYIHPP+qLXiUw5SdcNdUQWKpL3qa9covWK7VaZf3fXr9O7roHb9DCy3rqe/t26ry3V0/FLxtGg/q+4+IFUnld1gDxtq8IW1+BhC7FjY7ZZTY4hdZgHW7F27xxboqo5k1sA0wxbAzd41/Ypvkvb5397DdCeWhroj/fWgUgbn21q/kJ80C/sW1JoaFagNjLOC/BfqBIhXu/YVTqD/b7zEC5SCmUEf06rjH7FSIwf5sKdC1POW91jB5xDH3ppgkNkmxa56tP5Fcy++MGuKRyGlWJ4z5fVrFMVbCAfSCdGeTMZci56evVSz+SZTErD5soWv/gc=&lt;/diagram&gt;&lt;diagram id=&quot;iKkMZgKB69KpbFDXon7d&quot; name=&quot;Adoption&quot;&gt;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&lt;/diagram&gt;&lt;diagram id=&quot;hhZSFu9bppFXDsjjeykD&quot; name=&quot;Blog1&quot;&gt;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&lt;/diagram&gt;&lt;diagram id=&quot;xvF9SRMhO2U_qJM53eco&quot; name=&quot;Blog2&quot;&gt;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&lt;/diagram&gt;&lt;/mxfile&gt;"><defs/><g><rect x="438.63" y="80" width="130" height="31.22" rx="4.68" ry="4.68" fill="#0066cc" stroke="#000000" pointer-events="all"/><rect x="428.63" y="70" width="130" height="31.22" rx="4.68" ry="4.68" fill="#0066cc" stroke="#000000" pointer-events="all"/><rect x="204.63" y="30" width="150" height="30" rx="4.5" ry="4.5" fill="#ff8000" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 148px; height: 1px; padding-top: 45px; margin-left: 206px;"><div style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(255, 255, 255); line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal;">ClusterClass</div></div></div></foreignObject><text x="280" y="49" fill="#FFFFFF" font-family="Helvetica" font-size="12px" text-anchor="middle">ClusterClass</text></switch></g><path d="M 76 171.89 L 242.13 60" fill="none" stroke="#000000" stroke-miterlimit="10" stroke-dasharray="3 3" pointer-events="stroke"/><path d="M 279 176 L 279.63 60" fill="none" stroke="#000000" stroke-miterlimit="10" stroke-dasharray="3 3" pointer-events="stroke"/><path d="M 504 171.89 L 317.13 60" fill="none" stroke="#000000" stroke-miterlimit="10" stroke-dasharray="3 3" pointer-events="stroke"/><rect x="418.63" y="60" width="130" height="31.22" rx="4.68" ry="4.68" fill="#0066cc" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 128px; height: 1px; padding-top: 76px; margin-left: 420px;"><div style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(255, 255, 255); line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal;">Templates</div></div></div></foreignObject><text x="484" y="79" fill="#FFFFFF" font-family="Helvetica" font-size="12px" text-anchor="middle">Templates</text></switch></g><path d="M 354.63 45 L 374.63 45 Q 384.63 45 385.93 54.92 L 387.33 65.69 Q 388.63 75.61 398.63 75.61 L 418.63 75.61" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 414.63 79.61 L 414.63 71.61" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><rect x="138.63" y="246.73" width="50.22" height="20.91" rx="3.14" ry="3.14" fill="#f5f5f5" stroke="#666666" pointer-events="all"/><rect x="128.63" y="236.07" width="54.11" height="20.91" rx="3.14" ry="3.14" fill="#f5f5f5" stroke="#666666" pointer-events="all"/><rect x="120" y="225.82" width="54.11" height="20.91" rx="3.14" ry="3.14" fill="#f5f5f5" stroke="#666666" pointer-events="all"/><rect x="30" y="171.89" width="90" height="30.91" rx="4.64" ry="4.64" fill="#4d9900" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 88px; height: 1px; padding-top: 187px; margin-left: 31px;"><div style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(255, 255, 255); line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal;">Cluster</div></div></div></foreignObject><text x="75" y="191" fill="#FFFFFF" font-family="Helvetica" font-size="12px" text-anchor="middle">Cluster</text></switch></g><path d="M 52.5 202.8 L 72.5 202.8 Q 82.5 202.8 84.4 212.62 L 88.1 231.69 Q 90 241.51 100 241.51 L 120 241.51" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 116 245.51 L 116 237.51" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><rect x="96" y="214" width="125" height="97.89" rx="14.68" ry="14.68" fill-opacity="0.8" fill="#ffffff" stroke="#b3b3b3" stroke-opacity="0.8" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe flex-end; justify-content: unsafe center; width: 123px; height: 1px; padding-top: 309px; margin-left: 97px;"><div style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(255, 255, 255); line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal;"><font color="#000000" style="font-size: 13px">Managed<br />Topology<br /></font></div></div></div></foreignObject><text x="159" y="309" fill="#FFFFFF" font-family="Helvetica" font-size="12px" text-anchor="middle">Managed...</text></switch></g><rect x="342.63" y="246.73" width="50.22" height="20.91" rx="3.14" ry="3.14" fill="#f5f5f5" stroke="#666666" pointer-events="all"/><rect x="332.63" y="236.07" width="54.11" height="20.91" rx="3.14" ry="3.14" fill="#f5f5f5" stroke="#666666" pointer-events="all"/><rect x="324" y="225.82" width="54.11" height="20.91" rx="3.14" ry="3.14" fill="#f5f5f5" stroke="#666666" pointer-events="all"/><rect x="234" y="171.89" width="90" height="30.91" rx="4.64" ry="4.64" fill="#4d9900" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 88px; height: 1px; padding-top: 187px; margin-left: 235px;"><div style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(255, 255, 255); line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal;">Cluster</div></div></div></foreignObject><text x="279" y="191" fill="#FFFFFF" font-family="Helvetica" font-size="12px" text-anchor="middle">Cluster</text></switch></g><path d="M 256.5 202.8 L 276.5 202.8 Q 286.5 202.8 288.4 212.62 L 292.1 231.69 Q 294 241.51 304 241.51 L 324 241.51" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 320 245.51 L 320 237.51" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><rect x="300" y="214" width="125" height="97.89" rx="14.68" ry="14.68" fill-opacity="0.8" fill="#ffffff" stroke="#b3b3b3" stroke-opacity="0.8" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe flex-end; justify-content: unsafe center; width: 123px; height: 1px; padding-top: 309px; margin-left: 301px;"><div style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(255, 255, 255); line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal;"><font color="#000000" style="font-size: 13px">Managed<br />Topology<br /></font></div></div></div></foreignObject><text x="363" y="309" fill="#FFFFFF" font-family="Helvetica" font-size="12px" text-anchor="middle">Managed...</text></switch></g><rect x="568.63" y="246.73" width="50.22" height="20.91" rx="3.14" ry="3.14" fill="#f5f5f5" stroke="#666666" pointer-events="all"/><rect x="558.63" y="236.07" width="54.11" height="20.91" rx="3.14" ry="3.14" fill="#f5f5f5" stroke="#666666" pointer-events="all"/><rect x="550" y="225.82" width="54.11" height="20.91" rx="3.14" ry="3.14" fill="#f5f5f5" stroke="#666666" pointer-events="all"/><rect x="460" y="171.89" width="90" height="30.91" rx="4.64" ry="4.64" fill="#4d9900" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 88px; height: 1px; padding-top: 187px; margin-left: 461px;"><div style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(255, 255, 255); line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal;">Cluster</div></div></div></foreignObject><text x="505" y="191" fill="#FFFFFF" font-family="Helvetica" font-size="12px" text-anchor="middle">Cluster</text></switch></g><path d="M 482.5 202.8 L 502.5 202.8 Q 512.5 202.8 514.4 212.62 L 518.1 231.69 Q 520 241.51 530 241.51 L 550 241.51" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 546 245.51 L 546 237.51" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><rect x="526" y="214" width="125" height="97.89" rx="14.68" ry="14.68" fill-opacity="0.8" fill="#ffffff" stroke="#b3b3b3" stroke-opacity="0.8" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe flex-end; justify-content: unsafe center; width: 123px; height: 1px; padding-top: 309px; margin-left: 527px;"><div style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(255, 255, 255); line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal;"><font color="#000000" style="font-size: 13px">Managed<br />Topology<br /></font></div></div></div></foreignObject><text x="589" y="309" fill="#FFFFFF" font-family="Helvetica" font-size="12px" text-anchor="middle">Managed...</text></switch></g></g><switch><g requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"/><a transform="translate(0,-5)" xlink:href="https://www.diagrams.net/doc/faq/svg-export-text-problems" target="_blank"><text text-anchor="middle" font-size="10px" x="50%" y="100%">Viewer does not support full SVG 1.1</text></a></switch></svg>
\ No newline at end of file
diff --git a/static/images/blog/2021-12-07-kubernetes-release-1.23/kubernetes-1.23.png b/static/images/blog/2021-12-07-kubernetes-release-1.23/kubernetes-1.23.png
new file mode 100644
index 0000000000..329a062f84
Binary files /dev/null and b/static/images/blog/2021-12-07-kubernetes-release-1.23/kubernetes-1.23.png differ
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/5binaries.png b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/5binaries.png
new file mode 100644
index 0000000000..31cd364dd8
Binary files /dev/null and b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/5binaries.png differ
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/argocd01.png b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/argocd01.png
new file mode 100644
index 0000000000..867ee5e925
Binary files /dev/null and b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/argocd01.png differ
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/argocd02.png b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/argocd02.png
new file mode 100644
index 0000000000..3a05cf4c16
Binary files /dev/null and b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/argocd02.png differ
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/godeeper.png b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/godeeper.png
new file mode 100644
index 0000000000..de1cedb217
Binary files /dev/null and b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/godeeper.png differ
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/konnectivity01.svg b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/konnectivity01.svg
new file mode 100644
index 0000000000..1950028dd5
--- /dev/null
+++ b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/konnectivity01.svg
@@ -0,0 +1,367 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<svg
+   xmlns:xhtml="http://www.w3.org/1999/xhtml"
+   xmlns:dc="http://purl.org/dc/elements/1.1/"
+   xmlns:cc="http://creativecommons.org/ns#"
+   xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"
+   xmlns:svg="http://www.w3.org/2000/svg"
+   xmlns="http://www.w3.org/2000/svg"
+   xmlns:xlink="http://www.w3.org/1999/xlink"
+   xmlns:sodipodi="http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd"
+   xmlns:inkscape="http://www.inkscape.org/namespaces/inkscape"
+   inkscape:version="1.0 (4035a4fb49, 2020-05-01)"
+   sodipodi:docname="konnectivity1a.svg"
+   id="svg88"
+   content="&lt;mxfile host=&quot;app.diagrams.net&quot; modified=&quot;2020-09-26T23:41:00.868Z&quot; agent=&quot;5.0 (X11)&quot; etag=&quot;PVgA3HhBKLVRDtZYhBoG&quot; version=&quot;13.7.5&quot; type=&quot;google&quot;&gt;&lt;diagram id=&quot;aEspEfN-CcUyXtB7m5kx&quot; name=&quot;Page-1&quot;&gt;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&lt;/diagram&gt;&lt;/mxfile&gt;"
+   viewBox="-0.5 -0.5 432 252"
+   height="252px"
+   width="432px"
+   version="1.1">
+  <metadata
+     id="metadata92">
+    <rdf:RDF>
+      <cc:Work
+         rdf:about="">
+        <dc:format>image/svg+xml</dc:format>
+        <dc:type
+           rdf:resource="http://purl.org/dc/dcmitype/StillImage" />
+      </cc:Work>
+    </rdf:RDF>
+  </metadata>
+  <sodipodi:namedview
+     inkscape:current-layer="g78"
+     inkscape:window-maximized="1"
+     inkscape:window-y="20"
+     inkscape:window-x="0"
+     inkscape:cy="126"
+     inkscape:cx="216"
+     inkscape:zoom="2.7824074"
+     showgrid="false"
+     id="namedview90"
+     inkscape:window-height="1058"
+     inkscape:window-width="1918"
+     inkscape:pageshadow="2"
+     inkscape:pageopacity="0"
+     guidetolerance="10"
+     gridtolerance="10"
+     objecttolerance="10"
+     borderopacity="1"
+     bordercolor="#666666"
+     pagecolor="#ffffff" />
+  <defs
+     id="defs2" />
+  <g
+     id="g78">
+    <rect
+       id="rect4"
+       pointer-events="all"
+       stroke-dasharray="3 3"
+       stroke="#000000"
+       fill="#ffffff"
+       height="90"
+       width="430"
+       y="0"
+       x="0" />
+    <rect
+       id="rect6"
+       pointer-events="all"
+       stroke-dasharray="3 3"
+       stroke="#000000"
+       fill="#ffffff"
+       height="60"
+       width="100"
+       y="190"
+       x="0" />
+    <rect
+       id="rect8"
+       pointer-events="all"
+       stroke-dasharray="3 3"
+       stroke="#000000"
+       fill="#ffffff"
+       height="60"
+       width="100"
+       y="190"
+       x="110" />
+    <rect
+       id="rect10"
+       pointer-events="all"
+       stroke-dasharray="3 3"
+       stroke="#000000"
+       fill="#ffffff"
+       height="60"
+       width="100"
+       y="190"
+       x="220" />
+    <rect
+       id="rect12"
+       pointer-events="all"
+       stroke-dasharray="3 3"
+       stroke="#000000"
+       fill="#ffffff"
+       height="60"
+       width="100"
+       y="190"
+       x="330" />
+    <image
+       id="image14"
+       xlink:href="data:image/svg+xml;base64,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"
+       height="54"
+       width="42.6"
+       y="149.5"
+       x="56.9" />
+    <image
+       id="image16"
+       xlink:href="data:image/svg+xml;base64,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"
+       height="54"
+       width="42.6"
+       y="149.5"
+       x="166.9" />
+    <image
+       id="image18"
+       xlink:href="data:image/svg+xml;base64,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"
+       height="54"
+       width="42.6"
+       y="149.5"
+       x="386.9" />
+    <image
+       id="image20"
+       xlink:href="data:image/svg+xml;base64,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"
+       height="54"
+       width="42.6"
+       y="149.5"
+       x="276.9" />
+    <rect
+       id="rect22"
+       pointer-events="all"
+       stroke="#000000"
+       fill="#ffffff"
+       height="30"
+       width="62.6"
+       y="70"
+       x="140" />
+    <g
+       id="g28"
+       transform="translate(-0.5 -0.5)">
+      <switch
+         id="switch26">
+        <foreignObject
+           requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"
+           height="100%"
+           width="100%"
+           pointer-events="none"
+           style="overflow: visible; text-align: left;">
+          <xhtml:div
+             style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 61px; height: 1px; padding-top: 85px; margin-left: 141px;">
+            <xhtml:div
+               style="box-sizing: border-box; font-size: 0; text-align: center; ">
+              <xhtml:div
+                 style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; ">apiserver</xhtml:div>
+            </xhtml:div>
+          </xhtml:div>
+        </foreignObject>
+        <text
+           id="text24"
+           text-anchor="middle"
+           font-size="12px"
+           font-family="Helvetica"
+           fill="#000000"
+           y="89"
+           x="171">apiserver</text>
+      </switch>
+    </g>
+    <rect
+       id="rect30"
+       pointer-events="all"
+       stroke="#000000"
+       fill="#ffffff"
+       height="30"
+       width="62.6"
+       y="20"
+       x="90" />
+    <g
+       id="g36"
+       transform="translate(-0.5 -0.5)">
+      <switch
+         id="switch34">
+        <foreignObject
+           requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"
+           height="100%"
+           width="100%"
+           pointer-events="none"
+           style="overflow: visible; text-align: left;">
+          <xhtml:div
+             style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 61px; height: 1px; padding-top: 35px; margin-left: 91px;">
+            <xhtml:div
+               style="box-sizing: border-box; font-size: 0; text-align: center; ">
+              <xhtml:div
+                 style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; ">controller-manager</xhtml:div>
+            </xhtml:div>
+          </xhtml:div>
+        </foreignObject>
+        <text
+           id="text32"
+           text-anchor="middle"
+           font-size="12px"
+           font-family="Helvetica"
+           fill="#000000"
+           y="39"
+           x="121">controller...</text>
+      </switch>
+    </g>
+    <rect
+       id="rect38"
+       pointer-events="all"
+       stroke="#000000"
+       fill="#ffffff"
+       height="30"
+       width="62.6"
+       y="20"
+       x="194" />
+    <g
+       id="g44"
+       transform="translate(-0.5 -0.5)">
+      <switch
+         id="switch42">
+        <foreignObject
+           requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"
+           height="100%"
+           width="100%"
+           pointer-events="none"
+           style="overflow: visible; text-align: left;">
+          <xhtml:div
+             style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 61px; height: 1px; padding-top: 35px; margin-left: 195px;">
+            <xhtml:div
+               style="box-sizing: border-box; font-size: 0; text-align: center; ">
+              <xhtml:div
+                 style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; ">scheduller</xhtml:div>
+            </xhtml:div>
+          </xhtml:div>
+        </foreignObject>
+        <text
+           id="text40"
+           text-anchor="middle"
+           font-size="12px"
+           font-family="Helvetica"
+           fill="#000000"
+           y="39"
+           x="225">scheduller</text>
+      </switch>
+    </g>
+    <path
+       id="path46"
+       pointer-events="stroke"
+       stroke-miterlimit="10"
+       stroke="#000000"
+       fill="none"
+       d="M 100 155.84 L 151.68 104.49" />
+    <path
+       id="path48"
+       pointer-events="all"
+       stroke-miterlimit="10"
+       stroke="#000000"
+       fill="#000000"
+       d="M 155.41 100.79 L 152.91 108.2 L 151.68 104.49 L 147.98 103.24 Z" />
+    <path
+       id="path50"
+       pointer-events="stroke"
+       stroke-miterlimit="10"
+       stroke="#000000"
+       fill="none"
+       d="M 183.59 150 L 175.32 106.26" />
+    <path
+       id="path52"
+       pointer-events="all"
+       stroke-miterlimit="10"
+       stroke="#000000"
+       fill="#000000"
+       d="M 174.34 101.1 L 179.08 107.33 L 175.32 106.26 L 172.21 108.63 Z" />
+    <path
+       id="path54"
+       pointer-events="stroke"
+       stroke-miterlimit="10"
+       stroke="#000000"
+       fill="none"
+       d="M 277.4 161.62 L 197.23 103.73" />
+    <path
+       id="path56"
+       pointer-events="all"
+       stroke-miterlimit="10"
+       stroke="#000000"
+       fill="#000000"
+       d="M 192.98 100.65 L 200.7 101.92 L 197.23 103.73 L 196.6 107.59 Z" />
+    <path
+       id="path58"
+       pointer-events="stroke"
+       stroke-miterlimit="10"
+       stroke="#000000"
+       fill="none"
+       d="M 387.4 168.75 L 208.54 99.43" />
+    <path
+       id="path60"
+       pointer-events="all"
+       stroke-miterlimit="10"
+       stroke="#000000"
+       fill="#000000"
+       d="M 203.64 97.53 L 211.43 96.8 L 208.54 99.43 L 208.9 103.33 Z" />
+    <path
+       id="path62"
+       pointer-events="stroke"
+       stroke-miterlimit="10"
+       stroke="#000000"
+       fill="none"
+       d="M 209.1 50 L 192.17 65.67" />
+    <path
+       id="path64"
+       pointer-events="all"
+       stroke-miterlimit="10"
+       stroke="#000000"
+       fill="#000000"
+       d="M 188.32 69.24 L 191.08 61.92 L 192.17 65.67 L 195.83 67.05 Z" />
+    <path
+       id="path66"
+       pointer-events="stroke"
+       stroke-miterlimit="10"
+       stroke="#000000"
+       fill="none"
+       d="M 136.3 50 L 151.8 65.5" />
+    <path
+       id="path68"
+       pointer-events="all"
+       stroke-miterlimit="10"
+       stroke="#000000"
+       fill="#000000"
+       d="M 155.51 69.21 L 148.08 66.73 L 151.8 65.5 L 153.03 61.78 Z" />
+    <path
+       id="path70"
+       pointer-events="stroke"
+       stroke-miterlimit="10"
+       stroke="#2d7600"
+       fill="none"
+       d="M 140 100 L 88.19 147.99" />
+    <path
+       id="path72"
+       pointer-events="all"
+       stroke-miterlimit="10"
+       stroke="#2d7600"
+       fill="#2d7600"
+       d="M 84.33 151.56 L 87.09 144.24 L 88.19 147.99 L 91.85 149.37 Z" />
+  </g>
+  <switch
+     id="switch86">
+    <g
+       id="g80"
+       requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" />
+    <a
+       id="a84"
+       target="_blank"
+       xlink:href="https://desk.draw.io/support/solutions/articles/16000042487"
+       transform="translate(0,-5)">
+      <text
+         id="text82"
+         y="100%"
+         x="50%"
+         font-size="10px"
+         text-anchor="middle">Viewer does not support full SVG 1.1</text>
+    </a>
+  </switch>
+</svg>
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/konnectivity02.svg b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/konnectivity02.svg
new file mode 100644
index 0000000000..47798b6c8c
--- /dev/null
+++ b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/konnectivity02.svg
@@ -0,0 +1,3 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
+<svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" version="1.1" width="432px" height="252px" viewBox="-0.5 -0.5 432 252" content="&lt;mxfile host=&quot;app.diagrams.net&quot; modified=&quot;2020-09-26T23:24:49.742Z&quot; agent=&quot;5.0 (X11)&quot; etag=&quot;TI_Wwz9g_CP4cuhSNZft&quot; version=&quot;13.7.5&quot; type=&quot;google&quot;&gt;&lt;diagram id=&quot;aEspEfN-CcUyXtB7m5kx&quot; name=&quot;Page-1&quot;&gt;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&lt;/diagram&gt;&lt;/mxfile&gt;"><defs/><g><rect x="0" y="0" width="430" height="90" fill="#ffffff" stroke="#000000" stroke-dasharray="3 3" pointer-events="all"/><rect x="0" y="190" width="100" height="60" fill="#ffffff" stroke="#000000" stroke-dasharray="3 3" pointer-events="all"/><rect x="110" y="190" width="100" height="60" fill="#ffffff" stroke="#000000" stroke-dasharray="3 3" pointer-events="all"/><rect x="220" y="190" width="100" height="60" fill="#ffffff" stroke="#000000" stroke-dasharray="3 3" pointer-events="all"/><rect x="330" y="190" width="100" height="60" fill="#ffffff" stroke="#000000" stroke-dasharray="3 3" pointer-events="all"/><image x="56.9" y="149.5" width="42.6" height="54" xlink:href="data:image/svg+xml;base64,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"/><image x="166.9" y="149.5" width="42.6" height="54" xlink:href="data:image/svg+xml;base64,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"/><image x="386.9" y="149.5" width="42.6" height="54" xlink:href="data:image/svg+xml;base64,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"/><image x="276.9" y="149.5" width="42.6" height="54" xlink:href="data:image/svg+xml;base64,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"/><rect x="140" y="70" width="62.6" height="30" fill="#ffffff" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 61px; height: 1px; padding-top: 85px; margin-left: 141px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; ">apiserver</div></div></div></foreignObject><text x="171" y="89" fill="#000000" font-family="Helvetica" font-size="12px" text-anchor="middle">apiserver</text></switch></g><rect x="90" y="20" width="62.6" height="30" fill="#ffffff" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 61px; height: 1px; padding-top: 35px; margin-left: 91px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; ">controller-manager</div></div></div></foreignObject><text x="121" y="39" fill="#000000" font-family="Helvetica" font-size="12px" text-anchor="middle">controller...</text></switch></g><rect x="194" y="20" width="62.6" height="30" fill="#ffffff" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 61px; height: 1px; padding-top: 35px; margin-left: 195px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; ">scheduller</div></div></div></foreignObject><text x="225" y="39" fill="#000000" font-family="Helvetica" font-size="12px" text-anchor="middle">scheduller</text></switch></g><rect x="120" y="210" width="62.6" height="30" fill="#ffffff" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 61px; height: 1px; padding-top: 225px; margin-left: 121px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; ">webhook</div></div></div></foreignObject><text x="151" y="229" fill="#000000" font-family="Helvetica" font-size="12px" text-anchor="middle">webhook</text></switch></g><path d="M 169.16 100 L 154.34 203.7" fill="none" stroke="#ff0000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 153.6 208.89 L 151.13 201.47 L 154.34 203.7 L 158.06 202.46 Z" fill="#ff0000" stroke="#ff0000" stroke-miterlimit="10" pointer-events="all"/></g><switch><g requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"/><a transform="translate(0,-5)" xlink:href="https://desk.draw.io/support/solutions/articles/16000042487" target="_blank"><text text-anchor="middle" font-size="10px" x="50%" y="100%">Viewer does not support full SVG 1.1</text></a></switch></svg>
\ No newline at end of file
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/konnectivity03.svg b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/konnectivity03.svg
new file mode 100644
index 0000000000..5f643e9e89
--- /dev/null
+++ b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/konnectivity03.svg
@@ -0,0 +1,3 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
+<svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" version="1.1" width="432px" height="252px" viewBox="-0.5 -0.5 432 252" content="&lt;mxfile host=&quot;app.diagrams.net&quot; modified=&quot;2020-09-26T23:29:21.389Z&quot; agent=&quot;5.0 (X11)&quot; etag=&quot;03zFcWPNGiyqah54QkIs&quot; version=&quot;13.7.5&quot; type=&quot;google&quot;&gt;&lt;diagram id=&quot;aEspEfN-CcUyXtB7m5kx&quot; name=&quot;Page-1&quot;&gt;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&lt;/diagram&gt;&lt;/mxfile&gt;"><defs/><g><rect x="0" y="0" width="430" height="90" fill="#ffffff" stroke="#000000" stroke-dasharray="3 3" pointer-events="all"/><rect x="0" y="190" width="100" height="60" fill="#ffffff" stroke="#000000" stroke-dasharray="3 3" pointer-events="all"/><rect x="110" y="190" width="100" height="60" fill="#ffffff" stroke="#000000" stroke-dasharray="3 3" pointer-events="all"/><rect x="220" y="190" width="100" height="60" fill="#ffffff" stroke="#000000" stroke-dasharray="3 3" pointer-events="all"/><rect x="330" y="190" width="100" height="60" fill="#ffffff" stroke="#000000" stroke-dasharray="3 3" pointer-events="all"/><image x="56.9" y="149.5" width="42.6" height="54" xlink:href="data:image/svg+xml;base64,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"/><image x="166.9" y="149.5" width="42.6" height="54" xlink:href="data:image/svg+xml;base64,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"/><image x="386.9" y="149.5" width="42.6" height="54" xlink:href="data:image/svg+xml;base64,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"/><image x="276.9" y="149.5" width="42.6" height="54" xlink:href="data:image/svg+xml;base64,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"/><rect x="140" y="70" width="62.6" height="30" fill="#ffffff" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 61px; height: 1px; padding-top: 85px; margin-left: 141px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; ">apiserver</div></div></div></foreignObject><text x="171" y="89" fill="#000000" font-family="Helvetica" font-size="12px" text-anchor="middle">apiserver</text></switch></g><rect x="90" y="20" width="62.6" height="30" fill="#ffffff" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 61px; height: 1px; padding-top: 35px; margin-left: 91px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; ">controller-manager</div></div></div></foreignObject><text x="121" y="39" fill="#000000" font-family="Helvetica" font-size="12px" text-anchor="middle">controller...</text></switch></g><rect x="194" y="20" width="62.6" height="30" fill="#ffffff" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 61px; height: 1px; padding-top: 35px; margin-left: 195px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; ">scheduller</div></div></div></foreignObject><text x="225" y="39" fill="#000000" font-family="Helvetica" font-size="12px" text-anchor="middle">scheduller</text></switch></g><rect x="120" y="210" width="62.6" height="30" fill="#ffffff" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 61px; height: 1px; padding-top: 225px; margin-left: 121px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; ">webhook</div></div></div></foreignObject><text x="151" y="229" fill="#000000" font-family="Helvetica" font-size="12px" text-anchor="middle">webhook</text></switch></g><rect x="10" y="210" width="70" height="30" fill="#ffffff" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 68px; height: 1px; padding-top: 225px; margin-left: 11px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; "><div>konnectivity-agent</div></div></div></div></foreignObject><text x="45" y="229" fill="#000000" font-family="Helvetica" font-size="12px" text-anchor="middle">konnectivit...</text></switch></g><rect x="10" y="70" width="70" height="30" fill="#ffffff" stroke="#000000" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 68px; height: 1px; padding-top: 85px; margin-left: 11px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; "><div>konnectivity-server</div></div></div></div></foreignObject><text x="45" y="89" fill="#000000" font-family="Helvetica" font-size="12px" text-anchor="middle">konnectivit...</text></switch></g><path d="M 27.5 210 L 27.5 106.37" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 27.5 101.12 L 31 108.12 L 27.5 106.37 L 24 108.12 Z" fill="#000000" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><path d="M 140 85 L 86.37 85" fill="none" stroke="#2d7600" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 81.12 85 L 88.12 81.5 L 86.37 85 L 88.12 88.5 Z" fill="#2d7600" stroke="#2d7600" stroke-miterlimit="10" pointer-events="all"/><path d="M 45 100 L 45 203.63" fill="none" stroke="#2d7600" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 45 208.88 L 41.5 201.88 L 45 203.63 L 48.5 201.88 Z" fill="#2d7600" stroke="#2d7600" stroke-miterlimit="10" pointer-events="all"/><path d="M 80 225 L 113.63 225" fill="none" stroke="#2d7600" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 118.88 225 L 111.88 228.5 L 113.63 225 L 111.88 221.5 Z" fill="#2d7600" stroke="#2d7600" stroke-miterlimit="10" pointer-events="all"/></g><switch><g requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"/><a transform="translate(0,-5)" xlink:href="https://desk.draw.io/support/solutions/articles/16000042487" target="_blank"><text text-anchor="middle" font-size="10px" x="50%" y="100%">Viewer does not support full SVG 1.1</text></a></switch></svg>
\ No newline at end of file
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/kubefarm.png b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/kubefarm.png
new file mode 100644
index 0000000000..272723bae0
Binary files /dev/null and b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/kubefarm.png differ
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/scheme01.svg b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/scheme01.svg
new file mode 100644
index 0000000000..6fba045ae7
--- /dev/null
+++ b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/scheme01.svg
@@ -0,0 +1,410 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<svg
+   xmlns:xhtml="http://www.w3.org/1999/xhtml"
+   xmlns:dc="http://purl.org/dc/elements/1.1/"
+   xmlns:cc="http://creativecommons.org/ns#"
+   xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"
+   xmlns:svg="http://www.w3.org/2000/svg"
+   xmlns="http://www.w3.org/2000/svg"
+   xmlns:xlink="http://www.w3.org/1999/xlink"
+   xmlns:sodipodi="http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd"
+   xmlns:inkscape="http://www.inkscape.org/namespaces/inkscape"
+   version="1.1"
+   width="407px"
+   height="246px"
+   viewBox="-0.5 -0.5 407 246"
+   content="&lt;mxfile userAgent=&quot;Mozilla/5.0 (X11; Linux x86_64; rv:63.0) Gecko/20100101 Firefox/63.0&quot; version=&quot;9.4.5&quot; editor=&quot;www.draw.io&quot; type=&quot;device&quot;&gt;&lt;diagram id=&quot;2ec4a54d-e924-7206-2902-a5f86283f6cf&quot;&gt;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&lt;/diagram&gt;&lt;/mxfile&gt;"
+   id="svg128"
+   sodipodi:docname="nodes_deployment_4.svg"
+   inkscape:version="0.92.4 5da689c313, 2019-01-14">
+  <metadata
+     id="metadata132">
+    <rdf:RDF>
+      <cc:Work
+         rdf:about="">
+        <dc:format>image/svg+xml</dc:format>
+        <dc:type
+           rdf:resource="http://purl.org/dc/dcmitype/StillImage" />
+      </cc:Work>
+    </rdf:RDF>
+  </metadata>
+  <sodipodi:namedview
+     pagecolor="#ffffff"
+     bordercolor="#666666"
+     borderopacity="1"
+     objecttolerance="10"
+     gridtolerance="10"
+     guidetolerance="10"
+     inkscape:pageopacity="0"
+     inkscape:pageshadow="2"
+     inkscape:window-width="1596"
+     inkscape:window-height="876"
+     id="namedview130"
+     showgrid="false"
+     inkscape:zoom="2.3419655"
+     inkscape:cx="161.22205"
+     inkscape:cy="104.3289"
+     inkscape:window-x="0"
+     inkscape:window-y="200"
+     inkscape:window-maximized="1"
+     inkscape:current-layer="svg128" />
+  <defs
+     id="defs2" />
+  <path
+     d="M 32.11 170.03 L 43.31 170.03 L 43.31 168.52 L 32.11 168.52 Z M 29.12 175.31 L 29.12 165.56 C 29.12 164.73 29.74 164 30.73 164 L 44.66 164 C 45.91 164 46.29 164.99 46.29 165.58 L 46.29 175.31 L 40.25 175.31 C 39.17 175.38 38.35 175.8 37.71 176.44 C 37.13 175.86 36.23 175.35 35.09 175.31 Z M 12.69 170.03 L 23.89 170.03 L 23.89 168.52 L 12.69 168.52 Z M 9.71 175.31 L 9.71 165.56 C 9.71 164.73 10.32 164 11.32 164 L 25.25 164 C 26.49 164 26.88 164.99 26.88 165.58 L 26.88 175.31 L 20.84 175.31 C 19.75 175.38 18.94 175.8 18.3 176.44 C 17.72 175.87 16.81 175.35 15.68 175.31 Z M 41.81 183.6 L 53.01 183.6 L 53.01 182.09 L 41.81 182.09 Z M 41.81 204.71 L 53.01 204.71 L 53.01 203.2 L 41.81 203.2 Z M 41.81 209.23 L 53.01 209.23 L 53.01 207.72 L 41.81 207.72 Z M 38.83 213 L 38.83 179.08 C 38.83 178.27 39.51 177.58 40.34 177.57 L 54.49 177.57 C 55.27 177.57 56 178.21 56 179.16 L 56 213 Z M 22.4 183.6 L 33.6 183.6 L 33.6 182.09 L 22.4 182.09 Z M 22.4 204.71 L 33.6 204.71 L 33.6 203.2 L 22.4 203.2 Z M 22.4 209.23 L 33.6 209.23 L 33.6 207.72 L 22.4 207.72 Z M 19.41 213 L 19.41 179.08 C 19.41 178.27 20.1 177.58 20.93 177.57 L 35.07 177.57 C 35.86 177.57 36.59 178.21 36.59 179.16 L 36.59 213 Z M 2.99 183.6 L 14.19 183.6 L 14.19 182.09 L 2.99 182.09 Z M 2.99 204.72 L 14.19 204.72 L 14.19 203.21 L 2.99 203.21 Z M 2.99 209.23 L 14.19 209.23 L 14.19 207.72 L 2.99 207.72 Z M 0 213 L 0 179.08 C 0 178.28 0.69 177.58 1.51 177.57 L 15.66 177.57 C 16.45 177.57 17.17 178.21 17.17 179.16 L 17.17 213 Z"
+     fill="#505050"
+     stroke="none"
+     pointer-events="none"
+     id="path4" />
+  <path
+     d="M 102.11 170.03 L 113.31 170.03 L 113.31 168.52 L 102.11 168.52 Z M 99.12 175.31 L 99.12 165.56 C 99.12 164.73 99.74 164 100.73 164 L 114.66 164 C 115.91 164 116.29 164.99 116.29 165.58 L 116.29 175.31 L 110.25 175.31 C 109.17 175.38 108.35 175.8 107.71 176.44 C 107.13 175.86 106.23 175.35 105.09 175.31 Z M 82.69 170.03 L 93.89 170.03 L 93.89 168.52 L 82.69 168.52 Z M 79.71 175.31 L 79.71 165.56 C 79.71 164.73 80.32 164 81.32 164 L 95.25 164 C 96.49 164 96.88 164.99 96.88 165.58 L 96.88 175.31 L 90.84 175.31 C 89.75 175.38 88.94 175.8 88.3 176.44 C 87.72 175.87 86.81 175.35 85.68 175.31 Z M 111.81 183.6 L 123.01 183.6 L 123.01 182.09 L 111.81 182.09 Z M 111.81 204.71 L 123.01 204.71 L 123.01 203.2 L 111.81 203.2 Z M 111.81 209.23 L 123.01 209.23 L 123.01 207.72 L 111.81 207.72 Z M 108.83 213 L 108.83 179.08 C 108.83 178.27 109.51 177.58 110.34 177.57 L 124.49 177.57 C 125.27 177.57 126 178.21 126 179.16 L 126 213 Z M 92.4 183.6 L 103.6 183.6 L 103.6 182.09 L 92.4 182.09 Z M 92.4 204.71 L 103.6 204.71 L 103.6 203.2 L 92.4 203.2 Z M 92.4 209.23 L 103.6 209.23 L 103.6 207.72 L 92.4 207.72 Z M 89.41 213 L 89.41 179.08 C 89.41 178.27 90.1 177.58 90.93 177.57 L 105.07 177.57 C 105.86 177.57 106.59 178.21 106.59 179.16 L 106.59 213 Z M 72.99 183.6 L 84.19 183.6 L 84.19 182.09 L 72.99 182.09 Z M 72.99 204.72 L 84.19 204.72 L 84.19 203.21 L 72.99 203.21 Z M 72.99 209.23 L 84.19 209.23 L 84.19 207.72 L 72.99 207.72 Z M 70 213 L 70 179.08 C 70 178.28 70.69 177.58 71.51 177.57 L 85.66 177.57 C 86.45 177.57 87.17 178.21 87.17 179.16 L 87.17 213 Z"
+     fill="#505050"
+     stroke="none"
+     pointer-events="none"
+     id="path6" />
+  <path
+     d="M 210.42 31.9 L 222.3 31.9 L 222.3 29.66 L 210.42 29.66 Z M 205.23 34.2 L 205.23 25.85 C 205.23 24.58 206.38 23 208.21 23 L 224.55 23 C 226.29 23 227.5 24.53 227.5 25.9 L 227.5 68.56 L 216.36 68.56 L 216.36 62.58 L 222.3 62.58 L 222.3 60.34 L 216.36 60.34 L 216.36 56.61 L 222.3 56.61 L 222.3 54.37 L 216.36 54.37 L 216.36 39.4 C 216.36 36.35 213.84 34.2 211.28 34.2 Z M 183.56 31.9 L 195.61 31.9 L 195.52 29.66 L 183.38 29.66 Z M 178.5 68.56 L 178.5 25.91 C 178.5 24.35 179.91 23 181.36 23 L 197.88 23 C 199.31 23 200.77 24.27 200.77 25.93 L 200.77 34.2 L 194.76 34.2 C 191.68 34.2 189.64 36.83 189.64 39.33 L 189.64 54.37 L 183.7 54.37 L 183.7 56.61 L 189.64 56.61 L 189.64 60.34 L 183.7 60.34 L 183.7 62.58 L 189.64 62.58 L 189.64 68.57 Z M 197.06 45.41 L 208.94 45.41 L 208.94 43.16 L 197.06 43.16 Z M 197.06 70.05 L 208.94 70.05 L 208.94 67.81 L 197.06 67.81 Z M 197.06 76.03 L 208.94 76.03 L 208.94 73.78 L 197.06 73.78 Z M 191.86 82 L 191.86 39.36 C 191.86 37.75 193.31 36.44 194.73 36.44 L 211.18 36.44 C 212.83 36.44 214.14 37.86 214.14 39.37 L 214.14 82 Z"
+     fill="#505050"
+     stroke="none"
+     pointer-events="none"
+     id="path8" />
+  <path
+     d="M 169.61 170.03 L 180.81 170.03 L 180.81 168.52 L 169.61 168.52 Z M 166.62 175.31 L 166.62 165.56 C 166.62 164.73 167.24 164 168.23 164 L 182.16 164 C 183.41 164 183.79 164.99 183.79 165.58 L 183.79 175.31 L 177.75 175.31 C 176.67 175.38 175.85 175.8 175.21 176.44 C 174.63 175.86 173.73 175.35 172.59 175.31 Z M 150.19 170.03 L 161.39 170.03 L 161.39 168.52 L 150.19 168.52 Z M 147.21 175.31 L 147.21 165.56 C 147.21 164.73 147.82 164 148.82 164 L 162.75 164 C 163.99 164 164.38 164.99 164.38 165.58 L 164.38 175.31 L 158.34 175.31 C 157.25 175.38 156.44 175.8 155.8 176.44 C 155.22 175.87 154.31 175.35 153.18 175.31 Z M 179.31 183.6 L 190.51 183.6 L 190.51 182.09 L 179.31 182.09 Z M 179.31 204.71 L 190.51 204.71 L 190.51 203.2 L 179.31 203.2 Z M 179.31 209.23 L 190.51 209.23 L 190.51 207.72 L 179.31 207.72 Z M 176.33 213 L 176.33 179.08 C 176.33 178.27 177.01 177.58 177.84 177.57 L 191.99 177.57 C 192.77 177.57 193.5 178.21 193.5 179.16 L 193.5 213 Z M 159.9 183.6 L 171.1 183.6 L 171.1 182.09 L 159.9 182.09 Z M 159.9 204.71 L 171.1 204.71 L 171.1 203.2 L 159.9 203.2 Z M 159.9 209.23 L 171.1 209.23 L 171.1 207.72 L 159.9 207.72 Z M 156.91 213 L 156.91 179.08 C 156.91 178.27 157.6 177.58 158.43 177.57 L 172.57 177.57 C 173.36 177.57 174.09 178.21 174.09 179.16 L 174.09 213 Z M 140.49 183.6 L 151.69 183.6 L 151.69 182.09 L 140.49 182.09 Z M 140.49 204.72 L 151.69 204.72 L 151.69 203.21 L 140.49 203.21 Z M 140.49 209.23 L 151.69 209.23 L 151.69 207.72 L 140.49 207.72 Z M 137.5 213 L 137.5 179.08 C 137.5 178.28 138.19 177.58 139.01 177.57 L 153.16 177.57 C 153.95 177.57 154.67 178.21 154.67 179.16 L 154.67 213 Z"
+     fill="#505050"
+     stroke="none"
+     pointer-events="none"
+     id="path10" />
+  <path
+     d="M 242.11 170.03 L 253.31 170.03 L 253.31 168.52 L 242.11 168.52 Z M 239.12 175.31 L 239.12 165.56 C 239.12 164.73 239.74 164 240.73 164 L 254.66 164 C 255.91 164 256.29 164.99 256.29 165.58 L 256.29 175.31 L 250.25 175.31 C 249.17 175.38 248.35 175.8 247.71 176.44 C 247.13 175.86 246.23 175.35 245.09 175.31 Z M 222.69 170.03 L 233.89 170.03 L 233.89 168.52 L 222.69 168.52 Z M 219.71 175.31 L 219.71 165.56 C 219.71 164.73 220.32 164 221.32 164 L 235.25 164 C 236.49 164 236.88 164.99 236.88 165.58 L 236.88 175.31 L 230.84 175.31 C 229.75 175.38 228.94 175.8 228.3 176.44 C 227.72 175.87 226.81 175.35 225.68 175.31 Z M 251.81 183.6 L 263.01 183.6 L 263.01 182.09 L 251.81 182.09 Z M 251.81 204.71 L 263.01 204.71 L 263.01 203.2 L 251.81 203.2 Z M 251.81 209.23 L 263.01 209.23 L 263.01 207.72 L 251.81 207.72 Z M 248.83 213 L 248.83 179.08 C 248.83 178.27 249.51 177.58 250.34 177.57 L 264.49 177.57 C 265.27 177.57 266 178.21 266 179.16 L 266 213 Z M 232.4 183.6 L 243.6 183.6 L 243.6 182.09 L 232.4 182.09 Z M 232.4 204.71 L 243.6 204.71 L 243.6 203.2 L 232.4 203.2 Z M 232.4 209.23 L 243.6 209.23 L 243.6 207.72 L 232.4 207.72 Z M 229.41 213 L 229.41 179.08 C 229.41 178.27 230.1 177.58 230.93 177.57 L 245.07 177.57 C 245.86 177.57 246.59 178.21 246.59 179.16 L 246.59 213 Z M 212.99 183.6 L 224.19 183.6 L 224.19 182.09 L 212.99 182.09 Z M 212.99 204.72 L 224.19 204.72 L 224.19 203.21 L 212.99 203.21 Z M 212.99 209.23 L 224.19 209.23 L 224.19 207.72 L 212.99 207.72 Z M 210 213 L 210 179.08 C 210 178.28 210.69 177.58 211.51 177.57 L 225.66 177.57 C 226.45 177.57 227.17 178.21 227.17 179.16 L 227.17 213 Z"
+     fill="#505050"
+     stroke="none"
+     pointer-events="none"
+     id="path12" />
+  <path
+     d="M 312.11 170.03 L 323.31 170.03 L 323.31 168.52 L 312.11 168.52 Z M 309.12 175.31 L 309.12 165.56 C 309.12 164.73 309.74 164 310.73 164 L 324.66 164 C 325.91 164 326.29 164.99 326.29 165.58 L 326.29 175.31 L 320.25 175.31 C 319.17 175.38 318.35 175.8 317.71 176.44 C 317.13 175.86 316.23 175.35 315.09 175.31 Z M 292.69 170.03 L 303.89 170.03 L 303.89 168.52 L 292.69 168.52 Z M 289.71 175.31 L 289.71 165.56 C 289.71 164.73 290.32 164 291.32 164 L 305.25 164 C 306.49 164 306.88 164.99 306.88 165.58 L 306.88 175.31 L 300.84 175.31 C 299.75 175.38 298.94 175.8 298.3 176.44 C 297.72 175.87 296.81 175.35 295.68 175.31 Z M 321.81 183.6 L 333.01 183.6 L 333.01 182.09 L 321.81 182.09 Z M 321.81 204.71 L 333.01 204.71 L 333.01 203.2 L 321.81 203.2 Z M 321.81 209.23 L 333.01 209.23 L 333.01 207.72 L 321.81 207.72 Z M 318.83 213 L 318.83 179.08 C 318.83 178.27 319.51 177.58 320.34 177.57 L 334.49 177.57 C 335.27 177.57 336 178.21 336 179.16 L 336 213 Z M 302.4 183.6 L 313.6 183.6 L 313.6 182.09 L 302.4 182.09 Z M 302.4 204.71 L 313.6 204.71 L 313.6 203.2 L 302.4 203.2 Z M 302.4 209.23 L 313.6 209.23 L 313.6 207.72 L 302.4 207.72 Z M 299.41 213 L 299.41 179.08 C 299.41 178.27 300.1 177.58 300.93 177.57 L 315.07 177.57 C 315.86 177.57 316.59 178.21 316.59 179.16 L 316.59 213 Z M 282.99 183.6 L 294.19 183.6 L 294.19 182.09 L 282.99 182.09 Z M 282.99 204.72 L 294.19 204.72 L 294.19 203.21 L 282.99 203.21 Z M 282.99 209.23 L 294.19 209.23 L 294.19 207.72 L 282.99 207.72 Z M 280 213 L 280 179.08 C 280 178.28 280.69 177.58 281.51 177.57 L 295.66 177.57 C 296.45 177.57 297.17 178.21 297.17 179.16 L 297.17 213 Z"
+     fill="#505050"
+     stroke="none"
+     pointer-events="none"
+     id="path14" />
+  <path
+     d="M 382.11 170.03 L 393.31 170.03 L 393.31 168.52 L 382.11 168.52 Z M 379.12 175.31 L 379.12 165.56 C 379.12 164.73 379.74 164 380.73 164 L 394.66 164 C 395.91 164 396.29 164.99 396.29 165.58 L 396.29 175.31 L 390.25 175.31 C 389.17 175.38 388.35 175.8 387.71 176.44 C 387.13 175.86 386.23 175.35 385.09 175.31 Z M 362.69 170.03 L 373.89 170.03 L 373.89 168.52 L 362.69 168.52 Z M 359.71 175.31 L 359.71 165.56 C 359.71 164.73 360.32 164 361.32 164 L 375.25 164 C 376.49 164 376.88 164.99 376.88 165.58 L 376.88 175.31 L 370.84 175.31 C 369.75 175.38 368.94 175.8 368.3 176.44 C 367.72 175.87 366.81 175.35 365.68 175.31 Z M 391.81 183.6 L 403.01 183.6 L 403.01 182.09 L 391.81 182.09 Z M 391.81 204.71 L 403.01 204.71 L 403.01 203.2 L 391.81 203.2 Z M 391.81 209.23 L 403.01 209.23 L 403.01 207.72 L 391.81 207.72 Z M 388.83 213 L 388.83 179.08 C 388.83 178.27 389.51 177.58 390.34 177.57 L 404.49 177.57 C 405.27 177.57 406 178.21 406 179.16 L 406 213 Z M 372.4 183.6 L 383.6 183.6 L 383.6 182.09 L 372.4 182.09 Z M 372.4 204.71 L 383.6 204.71 L 383.6 203.2 L 372.4 203.2 Z M 372.4 209.23 L 383.6 209.23 L 383.6 207.72 L 372.4 207.72 Z M 369.41 213 L 369.41 179.08 C 369.41 178.27 370.1 177.58 370.93 177.57 L 385.07 177.57 C 385.86 177.57 386.59 178.21 386.59 179.16 L 386.59 213 Z M 352.99 183.6 L 364.19 183.6 L 364.19 182.09 L 352.99 182.09 Z M 352.99 204.72 L 364.19 204.72 L 364.19 203.21 L 352.99 203.21 Z M 352.99 209.23 L 364.19 209.23 L 364.19 207.72 L 352.99 207.72 Z M 350 213 L 350 179.08 C 350 178.28 350.69 177.58 351.51 177.57 L 365.66 177.57 C 366.45 177.57 367.17 178.21 367.17 179.16 L 367.17 213 Z"
+     fill="#505050"
+     stroke="none"
+     pointer-events="none"
+     id="path16" />
+  <path
+     d="M 178.5 53 L 28 53 L 28 155.76"
+     fill="none"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path18" />
+  <path
+     d="M 28 161.76 L 25 155.76 L 31 155.76 Z"
+     fill="#4284f3"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path20" />
+  <path
+     d="M 178.5 52 L 89 52 L 89 155.76"
+     fill="none"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path22" />
+  <path
+     d="M 89 161.76 L 86 155.76 L 92 155.76 Z"
+     fill="#4284f3"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path24" />
+  <path
+     d="M 178.5 52 L 154 52 L 154 155.76"
+     fill="none"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path26" />
+  <path
+     d="M 154 161.76 L 151 155.76 L 157 155.76 Z"
+     fill="#4284f3"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path28" />
+  <path
+     d="M 227.5 52 L 252 52 L 252 155.76"
+     fill="none"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path30" />
+  <path
+     d="M 252 161.76 L 249 155.76 L 255 155.76 Z"
+     fill="#4284f3"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path32" />
+  <path
+     d="M 227.5 52 L 319 52 L 319 155.76"
+     fill="none"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path34" />
+  <path
+     d="M 319 161.76 L 316 155.76 L 322 155.76 Z"
+     fill="#4284f3"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path36" />
+  <path
+     d="M 227.5 53 L 378 53 L 378 155.76"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path38"
+     stroke-width="2"
+     stroke="#4284f3"
+     fill="none" />
+  <path
+     d="M 378 161.76 L 375 155.76 L 381 155.76 Z"
+     fill="#4284f3"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path40" />
+  <path
+     d="M 146.5 234 L 68.74 234"
+     fill="none"
+     stroke="#000000"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path42" />
+  <path
+     d="M 74.62 231.67 L 67.62 234 L 74.62 236.33"
+     fill="none"
+     stroke="#000000"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path44" />
+  <path
+     d="M 255 234 L 330.76 234"
+     fill="none"
+     stroke="#000000"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path46" />
+  <path
+     d="M 324.88 236.33 L 331.88 234 L 324.88 231.67"
+     fill="none"
+     stroke="#000000"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path48" />
+  <g
+     transform="translate(156.5,226.5)"
+     id="g54">
+    <switch
+       id="switch52">
+      <foreignObject
+         style="overflow:visible;"
+         pointer-events="all"
+         width="87"
+         height="12"
+         requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility">
+        <xhtml:div
+           style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(0, 0, 0); line-height: 1.2; vertical-align: top; white-space: nowrap;">
+          <xhtml:div
+             style="display:inline-block;text-align:inherit;text-decoration:inherit;">Compute nodes</xhtml:div>
+        </xhtml:div>
+      </foreignObject>
+      <text
+         x="44"
+         y="12"
+         fill="#000000"
+         text-anchor="middle"
+         font-size="12px"
+         font-family="Helvetica"
+         id="text50">Compute nodes</text>
+    </switch>
+  </g>
+  <g
+     transform="translate(151.5,2.5)"
+     id="g60">
+    <switch
+       id="switch58">
+      <foreignObject
+         style="overflow:visible;"
+         pointer-events="all"
+         width="111"
+         height="12"
+         requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility">
+        <xhtml:div
+           style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(0, 0, 0); line-height: 1.2; vertical-align: top; white-space: nowrap;">
+          <xhtml:div
+             style="display:inline-block;text-align:inherit;text-decoration:inherit;">Control plane nodes</xhtml:div>
+        </xhtml:div>
+      </foreignObject>
+      <text
+         x="56"
+         y="12"
+         fill="#000000"
+         text-anchor="middle"
+         font-size="12px"
+         font-family="Helvetica"
+         id="text56">Control plane nodes</text>
+    </switch>
+  </g>
+  <rect
+     x="190.46"
+     y="60"
+     width="17.33"
+     height="17.33"
+     fill="#ffffff"
+     stroke="none"
+     pointer-events="none"
+     id="rect62" />
+  <image
+     x="189.96"
+     y="59.5"
+     width="17.33"
+     height="17.33"
+     xlink:href="data:image/png;base64,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"
+     preserveAspectRatio="none"
+     pointer-events="none"
+     id="image64" />
+  <g
+     transform="translate(159.5,92.5)"
+     id="g70">
+    <switch
+       id="switch68"
+       transform="translate(27.754465,1.8429259)">
+      <foreignObject
+         style="overflow:visible;"
+         pointer-events="all"
+         width="88"
+         height="27"
+         requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility">
+        <xhtml:div
+           style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(0, 0, 0); line-height: 1.2; vertical-align: top; white-space: nowrap;">
+          <xhtml:div
+             style="display:inline-block;text-align:inherit;text-decoration:inherit;">
+            <xhtml:div
+               align="center">DHCP</xhtml:div>
+          </xhtml:div>
+        </xhtml:div>
+      </foreignObject>
+      <text
+         x="44"
+         y="20"
+         font-size="12px"
+         id="text66"
+         style="font-size:12px;font-family:Helvetica;text-anchor:middle;fill:#000000">[Not supported by viewer]</text>
+    </switch>
+  </g>
+  <rect
+     x="189.5"
+     y="76.57"
+     width="17.33"
+     height="17.33"
+     fill="#ffffff"
+     stroke="none"
+     pointer-events="none"
+     id="rect72" />
+  <image
+     x="189"
+     y="76.07"
+     width="17.33"
+     height="17.33"
+     xlink:href="data:image/png;base64,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"
+     preserveAspectRatio="none"
+     pointer-events="none"
+     id="image74" />
+  <rect
+     x="206.35"
+     y="69.17"
+     width="17.33"
+     height="17.33"
+     fill="#ffffff"
+     stroke="none"
+     pointer-events="none"
+     id="rect76" />
+  <image
+     x="205.85"
+     y="68.67"
+     width="17.33"
+     height="17.33"
+     xlink:href="data:image/png;base64,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"
+     preserveAspectRatio="none"
+     pointer-events="none"
+     id="image78" />
+  <rect
+     x="81"
+     y="63"
+     width="0"
+     height="0"
+     fill="none"
+     stroke="#82b366"
+     pointer-events="none"
+     id="rect84" />
+  <rect
+     x="309"
+     y="101"
+     width="0"
+     height="0"
+     fill="none"
+     stroke="#82b366"
+     pointer-events="none"
+     id="rect92" />
+  <rect
+     x="367"
+     y="69"
+     width="0"
+     height="0"
+     fill="none"
+     stroke="#82b366"
+     pointer-events="none"
+     id="rect100" />
+  <rect
+     x="242"
+     y="60"
+     width="0"
+     height="0"
+     fill="none"
+     stroke="#82b366"
+     pointer-events="none"
+     id="rect108" />
+  <rect
+     x="20.5"
+     y="120"
+     width="0"
+     height="0"
+     fill="none"
+     stroke="#82b366"
+     pointer-events="none"
+     id="rect116" />
+  <rect
+     x="145"
+     y="119"
+     width="0"
+     height="0"
+     fill="none"
+     stroke="#82b366"
+     pointer-events="none"
+     id="rect124" />
+</svg>
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/scheme02.svg b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/scheme02.svg
new file mode 100644
index 0000000000..7734444f59
--- /dev/null
+++ b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/scheme02.svg
@@ -0,0 +1,421 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<svg
+   xmlns:xhtml="http://www.w3.org/1999/xhtml"
+   xmlns:dc="http://purl.org/dc/elements/1.1/"
+   xmlns:cc="http://creativecommons.org/ns#"
+   xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"
+   xmlns:svg="http://www.w3.org/2000/svg"
+   xmlns="http://www.w3.org/2000/svg"
+   xmlns:xlink="http://www.w3.org/1999/xlink"
+   xmlns:sodipodi="http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd"
+   xmlns:inkscape="http://www.inkscape.org/namespaces/inkscape"
+   version="1.1"
+   width="407px"
+   height="246px"
+   viewBox="-0.5 -0.5 407 246"
+   content="&lt;mxfile userAgent=&quot;Mozilla/5.0 (X11; Linux x86_64; rv:63.0) Gecko/20100101 Firefox/63.0&quot; version=&quot;9.4.5&quot; editor=&quot;www.draw.io&quot; type=&quot;device&quot;&gt;&lt;diagram id=&quot;2ec4a54d-e924-7206-2902-a5f86283f6cf&quot;&gt;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&lt;/diagram&gt;&lt;/mxfile&gt;"
+   id="svg128"
+   sodipodi:docname="nodes_deployment_5a.svg"
+   inkscape:version="0.92.4 5da689c313, 2019-01-14">
+  <metadata
+     id="metadata132">
+    <rdf:RDF>
+      <cc:Work
+         rdf:about="">
+        <dc:format>image/svg+xml</dc:format>
+        <dc:type
+           rdf:resource="http://purl.org/dc/dcmitype/StillImage" />
+        <dc:title></dc:title>
+      </cc:Work>
+    </rdf:RDF>
+  </metadata>
+  <sodipodi:namedview
+     pagecolor="#ffffff"
+     bordercolor="#666666"
+     borderopacity="1"
+     objecttolerance="10"
+     gridtolerance="10"
+     guidetolerance="10"
+     inkscape:pageopacity="0"
+     inkscape:pageshadow="2"
+     inkscape:window-width="1596"
+     inkscape:window-height="876"
+     id="namedview130"
+     showgrid="false"
+     inkscape:zoom="1.6560197"
+     inkscape:cx="273.17476"
+     inkscape:cy="133.82826"
+     inkscape:window-x="0"
+     inkscape:window-y="200"
+     inkscape:window-maximized="1"
+     inkscape:current-layer="svg128" />
+  <defs
+     id="defs2" />
+  <path
+     d="M 32.11 170.03 L 43.31 170.03 L 43.31 168.52 L 32.11 168.52 Z M 29.12 175.31 L 29.12 165.56 C 29.12 164.73 29.74 164 30.73 164 L 44.66 164 C 45.91 164 46.29 164.99 46.29 165.58 L 46.29 175.31 L 40.25 175.31 C 39.17 175.38 38.35 175.8 37.71 176.44 C 37.13 175.86 36.23 175.35 35.09 175.31 Z M 12.69 170.03 L 23.89 170.03 L 23.89 168.52 L 12.69 168.52 Z M 9.71 175.31 L 9.71 165.56 C 9.71 164.73 10.32 164 11.32 164 L 25.25 164 C 26.49 164 26.88 164.99 26.88 165.58 L 26.88 175.31 L 20.84 175.31 C 19.75 175.38 18.94 175.8 18.3 176.44 C 17.72 175.87 16.81 175.35 15.68 175.31 Z M 41.81 183.6 L 53.01 183.6 L 53.01 182.09 L 41.81 182.09 Z M 41.81 204.71 L 53.01 204.71 L 53.01 203.2 L 41.81 203.2 Z M 41.81 209.23 L 53.01 209.23 L 53.01 207.72 L 41.81 207.72 Z M 38.83 213 L 38.83 179.08 C 38.83 178.27 39.51 177.58 40.34 177.57 L 54.49 177.57 C 55.27 177.57 56 178.21 56 179.16 L 56 213 Z M 22.4 183.6 L 33.6 183.6 L 33.6 182.09 L 22.4 182.09 Z M 22.4 204.71 L 33.6 204.71 L 33.6 203.2 L 22.4 203.2 Z M 22.4 209.23 L 33.6 209.23 L 33.6 207.72 L 22.4 207.72 Z M 19.41 213 L 19.41 179.08 C 19.41 178.27 20.1 177.58 20.93 177.57 L 35.07 177.57 C 35.86 177.57 36.59 178.21 36.59 179.16 L 36.59 213 Z M 2.99 183.6 L 14.19 183.6 L 14.19 182.09 L 2.99 182.09 Z M 2.99 204.72 L 14.19 204.72 L 14.19 203.21 L 2.99 203.21 Z M 2.99 209.23 L 14.19 209.23 L 14.19 207.72 L 2.99 207.72 Z M 0 213 L 0 179.08 C 0 178.28 0.69 177.58 1.51 177.57 L 15.66 177.57 C 16.45 177.57 17.17 178.21 17.17 179.16 L 17.17 213 Z"
+     fill="#505050"
+     stroke="none"
+     pointer-events="none"
+     id="path4" />
+  <path
+     d="M 102.11 170.03 L 113.31 170.03 L 113.31 168.52 L 102.11 168.52 Z M 99.12 175.31 L 99.12 165.56 C 99.12 164.73 99.74 164 100.73 164 L 114.66 164 C 115.91 164 116.29 164.99 116.29 165.58 L 116.29 175.31 L 110.25 175.31 C 109.17 175.38 108.35 175.8 107.71 176.44 C 107.13 175.86 106.23 175.35 105.09 175.31 Z M 82.69 170.03 L 93.89 170.03 L 93.89 168.52 L 82.69 168.52 Z M 79.71 175.31 L 79.71 165.56 C 79.71 164.73 80.32 164 81.32 164 L 95.25 164 C 96.49 164 96.88 164.99 96.88 165.58 L 96.88 175.31 L 90.84 175.31 C 89.75 175.38 88.94 175.8 88.3 176.44 C 87.72 175.87 86.81 175.35 85.68 175.31 Z M 111.81 183.6 L 123.01 183.6 L 123.01 182.09 L 111.81 182.09 Z M 111.81 204.71 L 123.01 204.71 L 123.01 203.2 L 111.81 203.2 Z M 111.81 209.23 L 123.01 209.23 L 123.01 207.72 L 111.81 207.72 Z M 108.83 213 L 108.83 179.08 C 108.83 178.27 109.51 177.58 110.34 177.57 L 124.49 177.57 C 125.27 177.57 126 178.21 126 179.16 L 126 213 Z M 92.4 183.6 L 103.6 183.6 L 103.6 182.09 L 92.4 182.09 Z M 92.4 204.71 L 103.6 204.71 L 103.6 203.2 L 92.4 203.2 Z M 92.4 209.23 L 103.6 209.23 L 103.6 207.72 L 92.4 207.72 Z M 89.41 213 L 89.41 179.08 C 89.41 178.27 90.1 177.58 90.93 177.57 L 105.07 177.57 C 105.86 177.57 106.59 178.21 106.59 179.16 L 106.59 213 Z M 72.99 183.6 L 84.19 183.6 L 84.19 182.09 L 72.99 182.09 Z M 72.99 204.72 L 84.19 204.72 L 84.19 203.21 L 72.99 203.21 Z M 72.99 209.23 L 84.19 209.23 L 84.19 207.72 L 72.99 207.72 Z M 70 213 L 70 179.08 C 70 178.28 70.69 177.58 71.51 177.57 L 85.66 177.57 C 86.45 177.57 87.17 178.21 87.17 179.16 L 87.17 213 Z"
+     fill="#505050"
+     stroke="none"
+     pointer-events="none"
+     id="path6" />
+  <path
+     d="M 210.42 31.9 L 222.3 31.9 L 222.3 29.66 L 210.42 29.66 Z M 205.23 34.2 L 205.23 25.85 C 205.23 24.58 206.38 23 208.21 23 L 224.55 23 C 226.29 23 227.5 24.53 227.5 25.9 L 227.5 68.56 L 216.36 68.56 L 216.36 62.58 L 222.3 62.58 L 222.3 60.34 L 216.36 60.34 L 216.36 56.61 L 222.3 56.61 L 222.3 54.37 L 216.36 54.37 L 216.36 39.4 C 216.36 36.35 213.84 34.2 211.28 34.2 Z M 183.56 31.9 L 195.61 31.9 L 195.52 29.66 L 183.38 29.66 Z M 178.5 68.56 L 178.5 25.91 C 178.5 24.35 179.91 23 181.36 23 L 197.88 23 C 199.31 23 200.77 24.27 200.77 25.93 L 200.77 34.2 L 194.76 34.2 C 191.68 34.2 189.64 36.83 189.64 39.33 L 189.64 54.37 L 183.7 54.37 L 183.7 56.61 L 189.64 56.61 L 189.64 60.34 L 183.7 60.34 L 183.7 62.58 L 189.64 62.58 L 189.64 68.57 Z M 197.06 45.41 L 208.94 45.41 L 208.94 43.16 L 197.06 43.16 Z M 197.06 70.05 L 208.94 70.05 L 208.94 67.81 L 197.06 67.81 Z M 197.06 76.03 L 208.94 76.03 L 208.94 73.78 L 197.06 73.78 Z M 191.86 82 L 191.86 39.36 C 191.86 37.75 193.31 36.44 194.73 36.44 L 211.18 36.44 C 212.83 36.44 214.14 37.86 214.14 39.37 L 214.14 82 Z"
+     fill="#505050"
+     stroke="none"
+     pointer-events="none"
+     id="path8" />
+  <path
+     d="M 169.61 170.03 L 180.81 170.03 L 180.81 168.52 L 169.61 168.52 Z M 166.62 175.31 L 166.62 165.56 C 166.62 164.73 167.24 164 168.23 164 L 182.16 164 C 183.41 164 183.79 164.99 183.79 165.58 L 183.79 175.31 L 177.75 175.31 C 176.67 175.38 175.85 175.8 175.21 176.44 C 174.63 175.86 173.73 175.35 172.59 175.31 Z M 150.19 170.03 L 161.39 170.03 L 161.39 168.52 L 150.19 168.52 Z M 147.21 175.31 L 147.21 165.56 C 147.21 164.73 147.82 164 148.82 164 L 162.75 164 C 163.99 164 164.38 164.99 164.38 165.58 L 164.38 175.31 L 158.34 175.31 C 157.25 175.38 156.44 175.8 155.8 176.44 C 155.22 175.87 154.31 175.35 153.18 175.31 Z M 179.31 183.6 L 190.51 183.6 L 190.51 182.09 L 179.31 182.09 Z M 179.31 204.71 L 190.51 204.71 L 190.51 203.2 L 179.31 203.2 Z M 179.31 209.23 L 190.51 209.23 L 190.51 207.72 L 179.31 207.72 Z M 176.33 213 L 176.33 179.08 C 176.33 178.27 177.01 177.58 177.84 177.57 L 191.99 177.57 C 192.77 177.57 193.5 178.21 193.5 179.16 L 193.5 213 Z M 159.9 183.6 L 171.1 183.6 L 171.1 182.09 L 159.9 182.09 Z M 159.9 204.71 L 171.1 204.71 L 171.1 203.2 L 159.9 203.2 Z M 159.9 209.23 L 171.1 209.23 L 171.1 207.72 L 159.9 207.72 Z M 156.91 213 L 156.91 179.08 C 156.91 178.27 157.6 177.58 158.43 177.57 L 172.57 177.57 C 173.36 177.57 174.09 178.21 174.09 179.16 L 174.09 213 Z M 140.49 183.6 L 151.69 183.6 L 151.69 182.09 L 140.49 182.09 Z M 140.49 204.72 L 151.69 204.72 L 151.69 203.21 L 140.49 203.21 Z M 140.49 209.23 L 151.69 209.23 L 151.69 207.72 L 140.49 207.72 Z M 137.5 213 L 137.5 179.08 C 137.5 178.28 138.19 177.58 139.01 177.57 L 153.16 177.57 C 153.95 177.57 154.67 178.21 154.67 179.16 L 154.67 213 Z"
+     fill="#505050"
+     stroke="none"
+     pointer-events="none"
+     id="path10" />
+  <path
+     d="M 242.11 170.03 L 253.31 170.03 L 253.31 168.52 L 242.11 168.52 Z M 239.12 175.31 L 239.12 165.56 C 239.12 164.73 239.74 164 240.73 164 L 254.66 164 C 255.91 164 256.29 164.99 256.29 165.58 L 256.29 175.31 L 250.25 175.31 C 249.17 175.38 248.35 175.8 247.71 176.44 C 247.13 175.86 246.23 175.35 245.09 175.31 Z M 222.69 170.03 L 233.89 170.03 L 233.89 168.52 L 222.69 168.52 Z M 219.71 175.31 L 219.71 165.56 C 219.71 164.73 220.32 164 221.32 164 L 235.25 164 C 236.49 164 236.88 164.99 236.88 165.58 L 236.88 175.31 L 230.84 175.31 C 229.75 175.38 228.94 175.8 228.3 176.44 C 227.72 175.87 226.81 175.35 225.68 175.31 Z M 251.81 183.6 L 263.01 183.6 L 263.01 182.09 L 251.81 182.09 Z M 251.81 204.71 L 263.01 204.71 L 263.01 203.2 L 251.81 203.2 Z M 251.81 209.23 L 263.01 209.23 L 263.01 207.72 L 251.81 207.72 Z M 248.83 213 L 248.83 179.08 C 248.83 178.27 249.51 177.58 250.34 177.57 L 264.49 177.57 C 265.27 177.57 266 178.21 266 179.16 L 266 213 Z M 232.4 183.6 L 243.6 183.6 L 243.6 182.09 L 232.4 182.09 Z M 232.4 204.71 L 243.6 204.71 L 243.6 203.2 L 232.4 203.2 Z M 232.4 209.23 L 243.6 209.23 L 243.6 207.72 L 232.4 207.72 Z M 229.41 213 L 229.41 179.08 C 229.41 178.27 230.1 177.58 230.93 177.57 L 245.07 177.57 C 245.86 177.57 246.59 178.21 246.59 179.16 L 246.59 213 Z M 212.99 183.6 L 224.19 183.6 L 224.19 182.09 L 212.99 182.09 Z M 212.99 204.72 L 224.19 204.72 L 224.19 203.21 L 212.99 203.21 Z M 212.99 209.23 L 224.19 209.23 L 224.19 207.72 L 212.99 207.72 Z M 210 213 L 210 179.08 C 210 178.28 210.69 177.58 211.51 177.57 L 225.66 177.57 C 226.45 177.57 227.17 178.21 227.17 179.16 L 227.17 213 Z"
+     fill="#505050"
+     stroke="none"
+     pointer-events="none"
+     id="path12" />
+  <path
+     d="M 312.11 170.03 L 323.31 170.03 L 323.31 168.52 L 312.11 168.52 Z M 309.12 175.31 L 309.12 165.56 C 309.12 164.73 309.74 164 310.73 164 L 324.66 164 C 325.91 164 326.29 164.99 326.29 165.58 L 326.29 175.31 L 320.25 175.31 C 319.17 175.38 318.35 175.8 317.71 176.44 C 317.13 175.86 316.23 175.35 315.09 175.31 Z M 292.69 170.03 L 303.89 170.03 L 303.89 168.52 L 292.69 168.52 Z M 289.71 175.31 L 289.71 165.56 C 289.71 164.73 290.32 164 291.32 164 L 305.25 164 C 306.49 164 306.88 164.99 306.88 165.58 L 306.88 175.31 L 300.84 175.31 C 299.75 175.38 298.94 175.8 298.3 176.44 C 297.72 175.87 296.81 175.35 295.68 175.31 Z M 321.81 183.6 L 333.01 183.6 L 333.01 182.09 L 321.81 182.09 Z M 321.81 204.71 L 333.01 204.71 L 333.01 203.2 L 321.81 203.2 Z M 321.81 209.23 L 333.01 209.23 L 333.01 207.72 L 321.81 207.72 Z M 318.83 213 L 318.83 179.08 C 318.83 178.27 319.51 177.58 320.34 177.57 L 334.49 177.57 C 335.27 177.57 336 178.21 336 179.16 L 336 213 Z M 302.4 183.6 L 313.6 183.6 L 313.6 182.09 L 302.4 182.09 Z M 302.4 204.71 L 313.6 204.71 L 313.6 203.2 L 302.4 203.2 Z M 302.4 209.23 L 313.6 209.23 L 313.6 207.72 L 302.4 207.72 Z M 299.41 213 L 299.41 179.08 C 299.41 178.27 300.1 177.58 300.93 177.57 L 315.07 177.57 C 315.86 177.57 316.59 178.21 316.59 179.16 L 316.59 213 Z M 282.99 183.6 L 294.19 183.6 L 294.19 182.09 L 282.99 182.09 Z M 282.99 204.72 L 294.19 204.72 L 294.19 203.21 L 282.99 203.21 Z M 282.99 209.23 L 294.19 209.23 L 294.19 207.72 L 282.99 207.72 Z M 280 213 L 280 179.08 C 280 178.28 280.69 177.58 281.51 177.57 L 295.66 177.57 C 296.45 177.57 297.17 178.21 297.17 179.16 L 297.17 213 Z"
+     fill="#505050"
+     stroke="none"
+     pointer-events="none"
+     id="path14" />
+  <path
+     d="M 382.11 170.03 L 393.31 170.03 L 393.31 168.52 L 382.11 168.52 Z M 379.12 175.31 L 379.12 165.56 C 379.12 164.73 379.74 164 380.73 164 L 394.66 164 C 395.91 164 396.29 164.99 396.29 165.58 L 396.29 175.31 L 390.25 175.31 C 389.17 175.38 388.35 175.8 387.71 176.44 C 387.13 175.86 386.23 175.35 385.09 175.31 Z M 362.69 170.03 L 373.89 170.03 L 373.89 168.52 L 362.69 168.52 Z M 359.71 175.31 L 359.71 165.56 C 359.71 164.73 360.32 164 361.32 164 L 375.25 164 C 376.49 164 376.88 164.99 376.88 165.58 L 376.88 175.31 L 370.84 175.31 C 369.75 175.38 368.94 175.8 368.3 176.44 C 367.72 175.87 366.81 175.35 365.68 175.31 Z M 391.81 183.6 L 403.01 183.6 L 403.01 182.09 L 391.81 182.09 Z M 391.81 204.71 L 403.01 204.71 L 403.01 203.2 L 391.81 203.2 Z M 391.81 209.23 L 403.01 209.23 L 403.01 207.72 L 391.81 207.72 Z M 388.83 213 L 388.83 179.08 C 388.83 178.27 389.51 177.58 390.34 177.57 L 404.49 177.57 C 405.27 177.57 406 178.21 406 179.16 L 406 213 Z M 372.4 183.6 L 383.6 183.6 L 383.6 182.09 L 372.4 182.09 Z M 372.4 204.71 L 383.6 204.71 L 383.6 203.2 L 372.4 203.2 Z M 372.4 209.23 L 383.6 209.23 L 383.6 207.72 L 372.4 207.72 Z M 369.41 213 L 369.41 179.08 C 369.41 178.27 370.1 177.58 370.93 177.57 L 385.07 177.57 C 385.86 177.57 386.59 178.21 386.59 179.16 L 386.59 213 Z M 352.99 183.6 L 364.19 183.6 L 364.19 182.09 L 352.99 182.09 Z M 352.99 204.72 L 364.19 204.72 L 364.19 203.21 L 352.99 203.21 Z M 352.99 209.23 L 364.19 209.23 L 364.19 207.72 L 352.99 207.72 Z M 350 213 L 350 179.08 C 350 178.28 350.69 177.58 351.51 177.57 L 365.66 177.57 C 366.45 177.57 367.17 178.21 367.17 179.16 L 367.17 213 Z"
+     fill="#505050"
+     stroke="none"
+     pointer-events="none"
+     id="path16" />
+  <path
+     d="M 146.5 234 L 68.74 234"
+     fill="none"
+     stroke="#000000"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path42" />
+  <path
+     d="M 74.62 231.67 L 67.62 234 L 74.62 236.33"
+     fill="none"
+     stroke="#000000"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path44" />
+  <path
+     d="M 255 234 L 330.76 234"
+     fill="none"
+     stroke="#000000"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path46" />
+  <path
+     d="M 324.88 236.33 L 331.88 234 L 324.88 231.67"
+     fill="none"
+     stroke="#000000"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path48" />
+  <g
+     transform="translate(156.5,226.5)"
+     id="g54">
+    <switch
+       id="switch52">
+      <foreignObject
+         style="overflow:visible;"
+         pointer-events="all"
+         width="87"
+         height="12"
+         requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility">
+        <xhtml:div
+           style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(0, 0, 0); line-height: 1.2; vertical-align: top; white-space: nowrap;">
+          <xhtml:div
+             style="display:inline-block;text-align:inherit;text-decoration:inherit;">Compute nodes</xhtml:div>
+        </xhtml:div>
+      </foreignObject>
+      <text
+         x="44"
+         y="12"
+         fill="#000000"
+         text-anchor="middle"
+         font-size="12px"
+         font-family="Helvetica"
+         id="text50">Compute nodes</text>
+    </switch>
+  </g>
+  <g
+     transform="translate(151.5,2.5)"
+     id="g60">
+    <switch
+       id="switch58">
+      <foreignObject
+         style="overflow:visible;"
+         pointer-events="all"
+         width="111"
+         height="12"
+         requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility">
+        <xhtml:div
+           style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(0, 0, 0); line-height: 1.2; vertical-align: top; white-space: nowrap;">
+          <xhtml:div
+             style="display:inline-block;text-align:inherit;text-decoration:inherit;">Control plane nodes</xhtml:div>
+        </xhtml:div>
+      </foreignObject>
+      <text
+         x="56"
+         y="12"
+         fill="#000000"
+         text-anchor="middle"
+         font-size="12px"
+         font-family="Helvetica"
+         id="text56">Control plane nodes</text>
+    </switch>
+  </g>
+  <rect
+     x="190.46"
+     y="60"
+     width="17.33"
+     height="17.33"
+     fill="#ffffff"
+     stroke="none"
+     pointer-events="none"
+     id="rect62" />
+  <image
+     x="189.96"
+     y="59.5"
+     width="17.33"
+     height="17.33"
+     xlink:href="data:image/png;base64,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"
+     preserveAspectRatio="none"
+     pointer-events="none"
+     id="image64" />
+  <g
+     transform="translate(159.5,92.5)"
+     id="g70">
+    <switch
+       id="switch68">
+      <foreignObject
+         style="overflow:visible;"
+         pointer-events="all"
+         width="88"
+         height="12"
+         requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility">
+        <xhtml:div
+           style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(0, 0, 0); line-height: 1.2; vertical-align: top; white-space: nowrap;">
+          <xhtml:div
+             style="display:inline-block;text-align:inherit;text-decoration:inherit;">Netboot Servers</xhtml:div>
+        </xhtml:div>
+      </foreignObject>
+      <text
+         x="44"
+         y="12"
+         fill="#000000"
+         text-anchor="middle"
+         font-size="12px"
+         font-family="Helvetica"
+         id="text66">Netboot Servers</text>
+    </switch>
+  </g>
+  <rect
+     x="189.5"
+     y="76.57"
+     width="17.33"
+     height="17.33"
+     fill="#ffffff"
+     stroke="none"
+     pointer-events="none"
+     id="rect72" />
+  <image
+     x="189"
+     y="76.07"
+     width="17.33"
+     height="17.33"
+     xlink:href="data:image/png;base64,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"
+     preserveAspectRatio="none"
+     pointer-events="none"
+     id="image74" />
+  <rect
+     x="206.35"
+     y="69.17"
+     width="17.33"
+     height="17.33"
+     fill="#ffffff"
+     stroke="none"
+     pointer-events="none"
+     id="rect76" />
+  <image
+     x="205.85"
+     y="68.67"
+     width="17.33"
+     height="17.33"
+     xlink:href="data:image/png;base64,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"
+     preserveAspectRatio="none"
+     pointer-events="none"
+     id="image78" />
+  <path
+     d="m 114.61,214.75 c -5.89,0 -11.01,-3.91 -11.01,-9.03 v -1.01 c 0,-4.82 4.83,-8.96 11,-8.96 6.07,0 11,4.05 11,9.11 v 0.82 c 0,5.21 -5.14,9.07 -10.99,9.07 z"
+     pointer-events="none"
+     id="path80"
+     inkscape:connector-curvature="0"
+     style="fill:#999900;stroke:none" />
+  <path
+     d="m 125.6,204.86 v 0.82 c 0,5.2 -5.13,9.07 -10.99,9.07 -5.91,0 -11.01,-3.93 -11.01,-9.03 v -1.01 c 0,5.61 5.42,9.21 11.03,9.21 6.08,0 10.97,-4.11 10.97,-9.06 z"
+     pointer-events="none"
+     id="path82"
+     inkscape:connector-curvature="0"
+     style="fill:#000000;fill-opacity:0.3;stroke:none" />
+  <rect
+     x="81"
+     y="63"
+     width="0"
+     height="0"
+     fill="none"
+     stroke="#82b366"
+     pointer-events="none"
+     id="rect84" />
+  <path
+     d="m 114.59,206.56 c -1.14,0 -2.07,-0.77 -2.07,-1.74 0,-0.9 0.87,-1.72 2.07,-1.72 1.16,0 2.09,0.75 2.09,1.72 0,0.98 -0.95,1.74 -2.09,1.74 z m 0,0.94 c 1.88,0 3.21,-1.26 3.21,-2.68 0,-1.34 -1.27,-2.65 -3.21,-2.65 -1.91,0 -3.19,1.32 -3.19,2.65 0,1.43 1.37,2.68 3.19,2.68 z m 0,0.33 c -2.1,0 -3.59,-1.44 -3.59,-3.01 0,-1.63 1.6,-2.98 3.59,-2.98 2.03,0 3.61,1.36 3.61,2.98 0,1.7 -1.64,3.01 -3.61,3.01 z"
+     pointer-events="none"
+     id="path86"
+     inkscape:connector-curvature="0"
+     style="fill:#ffffff;stroke:none" />
+  <path
+     d="m 324.61,214.75 c -5.89,0 -11.01,-3.91 -11.01,-9.03 v -1.01 c 0,-4.82 4.83,-8.96 11,-8.96 6.07,0 11,4.05 11,9.11 v 0.82 c 0,5.21 -5.14,9.07 -10.99,9.07 z"
+     pointer-events="none"
+     id="path88"
+     inkscape:connector-curvature="0"
+     style="fill:#999900;stroke:none" />
+  <path
+     d="m 335.6,204.86 v 0.82 c 0,5.2 -5.13,9.07 -10.99,9.07 -5.91,0 -11.01,-3.93 -11.01,-9.03 v -1.01 c 0,5.61 5.42,9.21 11.03,9.21 6.08,0 10.97,-4.11 10.97,-9.06 z"
+     pointer-events="none"
+     id="path90"
+     inkscape:connector-curvature="0"
+     style="fill:#000000;fill-opacity:0.3;stroke:none" />
+  <rect
+     x="309"
+     y="101"
+     width="0"
+     height="0"
+     fill="none"
+     stroke="#82b366"
+     pointer-events="none"
+     id="rect92" />
+  <path
+     d="m 324.59,206.56 c -1.14,0 -2.07,-0.77 -2.07,-1.74 0,-0.9 0.87,-1.72 2.07,-1.72 1.16,0 2.09,0.75 2.09,1.72 0,0.98 -0.95,1.74 -2.09,1.74 z m 0,0.94 c 1.88,0 3.21,-1.26 3.21,-2.68 0,-1.34 -1.27,-2.65 -3.21,-2.65 -1.91,0 -3.19,1.32 -3.19,2.65 0,1.43 1.37,2.68 3.19,2.68 z m 0,0.33 c -2.1,0 -3.59,-1.44 -3.59,-3.01 0,-1.63 1.6,-2.98 3.59,-2.98 2.03,0 3.61,1.36 3.61,2.98 0,1.7 -1.64,3.01 -3.61,3.01 z"
+     pointer-events="none"
+     id="path94"
+     inkscape:connector-curvature="0"
+     style="fill:#ffffff;stroke:none" />
+  <path
+     d="m 394.61,214.75 c -5.89,0 -11.01,-3.91 -11.01,-9.03 v -1.01 c 0,-4.82 4.83,-8.96 11,-8.96 6.07,0 11,4.05 11,9.11 v 0.82 c 0,5.21 -5.14,9.07 -10.99,9.07 z"
+     pointer-events="none"
+     id="path96"
+     inkscape:connector-curvature="0"
+     style="fill:#999900;stroke:none" />
+  <path
+     d="m 405.6,204.86 v 0.82 c 0,5.2 -5.13,9.07 -10.99,9.07 -5.91,0 -11.01,-3.93 -11.01,-9.03 v -1.01 c 0,5.61 5.42,9.21 11.03,9.21 6.08,0 10.97,-4.11 10.97,-9.06 z"
+     pointer-events="none"
+     id="path98"
+     inkscape:connector-curvature="0"
+     style="fill:#000000;fill-opacity:0.3;stroke:none" />
+  <rect
+     x="367"
+     y="69"
+     width="0"
+     height="0"
+     fill="none"
+     stroke="#82b366"
+     pointer-events="none"
+     id="rect100" />
+  <path
+     d="m 394.59,206.56 c -1.14,0 -2.07,-0.77 -2.07,-1.74 0,-0.9 0.87,-1.72 2.07,-1.72 1.16,0 2.09,0.75 2.09,1.72 0,0.98 -0.95,1.74 -2.09,1.74 z m 0,0.94 c 1.88,0 3.21,-1.26 3.21,-2.68 0,-1.34 -1.27,-2.65 -3.21,-2.65 -1.91,0 -3.19,1.32 -3.19,2.65 0,1.43 1.37,2.68 3.19,2.68 z m 0,0.33 c -2.1,0 -3.59,-1.44 -3.59,-3.01 0,-1.63 1.6,-2.98 3.59,-2.98 2.03,0 3.61,1.36 3.61,2.98 0,1.7 -1.64,3.01 -3.61,3.01 z"
+     pointer-events="none"
+     id="path102"
+     inkscape:connector-curvature="0"
+     style="fill:#ffffff;stroke:none" />
+  <path
+     d="m 254.61,214.75 c -5.89,0 -11.01,-3.91 -11.01,-9.03 v -1.01 c 0,-4.82 4.83,-8.96 11,-8.96 6.07,0 11,4.05 11,9.11 v 0.82 c 0,5.21 -5.14,9.07 -10.99,9.07 z"
+     pointer-events="none"
+     id="path104"
+     inkscape:connector-curvature="0"
+     style="fill:#999900;stroke:none" />
+  <path
+     d="m 265.6,204.86 v 0.82 c 0,5.2 -5.13,9.07 -10.99,9.07 -5.91,0 -11.01,-3.93 -11.01,-9.03 v -1.01 c 0,5.61 5.42,9.21 11.03,9.21 6.08,0 10.97,-4.11 10.97,-9.06 z"
+     pointer-events="none"
+     id="path106"
+     inkscape:connector-curvature="0"
+     style="fill:#000000;fill-opacity:0.3;stroke:none" />
+  <rect
+     x="242"
+     y="60"
+     width="0"
+     height="0"
+     fill="none"
+     stroke="#82b366"
+     pointer-events="none"
+     id="rect108" />
+  <path
+     d="m 254.59,206.56 c -1.14,0 -2.07,-0.77 -2.07,-1.74 0,-0.9 0.87,-1.72 2.07,-1.72 1.16,0 2.09,0.75 2.09,1.72 0,0.98 -0.95,1.74 -2.09,1.74 z m 0,0.94 c 1.88,0 3.21,-1.26 3.21,-2.68 0,-1.34 -1.27,-2.65 -3.21,-2.65 -1.91,0 -3.19,1.32 -3.19,2.65 0,1.43 1.37,2.68 3.19,2.68 z m 0,0.33 c -2.1,0 -3.59,-1.44 -3.59,-3.01 0,-1.63 1.6,-2.98 3.59,-2.98 2.03,0 3.61,1.36 3.61,2.98 0,1.7 -1.64,3.01 -3.61,3.01 z"
+     pointer-events="none"
+     id="path110"
+     inkscape:connector-curvature="0"
+     style="fill:#ffffff;stroke:none" />
+  <path
+     d="m 44.61,214.75 c -5.89,0 -11.01,-3.91 -11.01,-9.03 v -1.01 c 0,-4.82 4.83,-8.96 11,-8.96 6.07,0 11,4.05 11,9.11 v 0.82 c 0,5.21 -5.14,9.07 -10.99,9.07 z"
+     pointer-events="none"
+     id="path112"
+     inkscape:connector-curvature="0"
+     style="fill:#999900;stroke:none" />
+  <path
+     d="m 55.6,204.86 v 0.82 c 0,5.2 -5.13,9.07 -10.99,9.07 -5.91,0 -11.01,-3.93 -11.01,-9.03 v -1.01 c 0,5.61 5.42,9.21 11.03,9.21 6.08,0 10.97,-4.11 10.97,-9.06 z"
+     pointer-events="none"
+     id="path114"
+     inkscape:connector-curvature="0"
+     style="fill:#000000;fill-opacity:0.3;stroke:none" />
+  <rect
+     x="20.5"
+     y="120"
+     width="0"
+     height="0"
+     fill="none"
+     stroke="#82b366"
+     pointer-events="none"
+     id="rect116" />
+  <path
+     d="m 44.59,206.56 c -1.14,0 -2.07,-0.77 -2.07,-1.74 0,-0.9 0.87,-1.72 2.07,-1.72 1.16,0 2.09,0.75 2.09,1.72 0,0.98 -0.95,1.74 -2.09,1.74 z m 0,0.94 c 1.88,0 3.21,-1.26 3.21,-2.68 0,-1.34 -1.27,-2.65 -3.21,-2.65 -1.91,0 -3.19,1.32 -3.19,2.65 0,1.43 1.37,2.68 3.19,2.68 z m 0,0.33 c -2.1,0 -3.59,-1.44 -3.59,-3.01 0,-1.63 1.6,-2.98 3.59,-2.98 2.03,0 3.61,1.36 3.61,2.98 0,1.7 -1.64,3.01 -3.61,3.01 z"
+     pointer-events="none"
+     id="path118"
+     inkscape:connector-curvature="0"
+     style="fill:#ffffff;stroke:none" />
+  <path
+     d="m 182.11,214.75 c -5.89,0 -11.01,-3.91 -11.01,-9.03 v -1.01 c 0,-4.82 4.83,-8.96 11,-8.96 6.07,0 11,4.05 11,9.11 v 0.82 c 0,5.21 -5.14,9.07 -10.99,9.07 z"
+     pointer-events="none"
+     id="path120"
+     inkscape:connector-curvature="0"
+     style="fill:#999900;stroke:none" />
+  <path
+     d="m 193.1,204.86 v 0.82 c 0,5.2 -5.13,9.07 -10.99,9.07 -5.91,0 -11.01,-3.93 -11.01,-9.03 v -1.01 c 0,5.61 5.42,9.21 11.03,9.21 6.08,0 10.97,-4.11 10.97,-9.06 z"
+     pointer-events="none"
+     id="path122"
+     inkscape:connector-curvature="0"
+     style="fill:#000000;fill-opacity:0.3;stroke:none" />
+  <rect
+     x="145"
+     y="119"
+     width="0"
+     height="0"
+     fill="none"
+     stroke="#82b366"
+     pointer-events="none"
+     id="rect124" />
+  <path
+     d="m 182.09,206.56 c -1.14,0 -2.07,-0.77 -2.07,-1.74 0,-0.9 0.87,-1.72 2.07,-1.72 1.16,0 2.09,0.75 2.09,1.72 0,0.98 -0.95,1.74 -2.09,1.74 z m 0,0.94 c 1.88,0 3.21,-1.26 3.21,-2.68 0,-1.34 -1.27,-2.65 -3.21,-2.65 -1.91,0 -3.19,1.32 -3.19,2.65 0,1.43 1.37,2.68 3.19,2.68 z m 0,0.33 c -2.1,0 -3.59,-1.44 -3.59,-3.01 0,-1.63 1.6,-2.98 3.59,-2.98 2.03,0 3.61,1.36 3.61,2.98 0,1.7 -1.64,3.01 -3.61,3.01 z"
+     pointer-events="none"
+     id="path126"
+     inkscape:connector-curvature="0"
+     style="fill:#ffffff;stroke:none" />
+</svg>
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/scheme03.svg b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/scheme03.svg
new file mode 100644
index 0000000000..491b52d3b4
--- /dev/null
+++ b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/scheme03.svg
@@ -0,0 +1,459 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<svg
+   xmlns:xhtml="http://www.w3.org/1999/xhtml"
+   xmlns:dc="http://purl.org/dc/elements/1.1/"
+   xmlns:cc="http://creativecommons.org/ns#"
+   xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"
+   xmlns:svg="http://www.w3.org/2000/svg"
+   xmlns="http://www.w3.org/2000/svg"
+   xmlns:xlink="http://www.w3.org/1999/xlink"
+   xmlns:sodipodi="http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd"
+   xmlns:inkscape="http://www.inkscape.org/namespaces/inkscape"
+   version="1.1"
+   width="408px"
+   height="246px"
+   viewBox="-0.5 -0.5 408 246"
+   content="&lt;mxfile userAgent=&quot;Mozilla/5.0 (X11; Linux x86_64; rv:63.0) Gecko/20100101 Firefox/63.0&quot; version=&quot;9.4.5&quot; editor=&quot;www.draw.io&quot; type=&quot;device&quot;&gt;&lt;diagram id=&quot;3251c57a-5b4d-668a-0784-f65da8251532&quot;&gt;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&lt;/diagram&gt;&lt;/mxfile&gt;"
+   id="svg98"
+   sodipodi:docname="nodes_deployment_7.svg"
+   inkscape:version="0.92.4 5da689c313, 2019-01-14">
+  <metadata
+     id="metadata102">
+    <rdf:RDF>
+      <cc:Work
+         rdf:about="">
+        <dc:format>image/svg+xml</dc:format>
+        <dc:type
+           rdf:resource="http://purl.org/dc/dcmitype/StillImage" />
+      </cc:Work>
+    </rdf:RDF>
+  </metadata>
+  <sodipodi:namedview
+     pagecolor="#ffffff"
+     bordercolor="#666666"
+     borderopacity="1"
+     objecttolerance="10"
+     gridtolerance="10"
+     guidetolerance="10"
+     inkscape:pageopacity="0"
+     inkscape:pageshadow="2"
+     inkscape:window-width="796"
+     inkscape:window-height="876"
+     id="namedview100"
+     showgrid="false"
+     inkscape:zoom="2.3362253"
+     inkscape:cx="335.80003"
+     inkscape:cy="103.41458"
+     inkscape:window-x="0"
+     inkscape:window-y="200"
+     inkscape:window-maximized="0"
+     inkscape:current-layer="svg98" />
+  <defs
+     id="defs2" />
+  <path
+     d="M 32.61 170.03 L 43.81 170.03 L 43.81 168.52 L 32.61 168.52 Z M 29.62 175.31 L 29.62 165.56 C 29.62 164.73 30.24 164 31.23 164 L 45.16 164 C 46.41 164 46.79 164.99 46.79 165.58 L 46.79 175.31 L 40.75 175.31 C 39.67 175.38 38.85 175.8 38.21 176.44 C 37.63 175.86 36.73 175.35 35.59 175.31 Z M 13.19 170.03 L 24.39 170.03 L 24.39 168.52 L 13.19 168.52 Z M 10.21 175.31 L 10.21 165.56 C 10.21 164.73 10.82 164 11.82 164 L 25.75 164 C 26.99 164 27.38 164.99 27.38 165.58 L 27.38 175.31 L 21.34 175.31 C 20.25 175.38 19.44 175.8 18.8 176.44 C 18.22 175.87 17.31 175.35 16.18 175.31 Z M 42.31 183.6 L 53.51 183.6 L 53.51 182.09 L 42.31 182.09 Z M 42.31 204.71 L 53.51 204.71 L 53.51 203.2 L 42.31 203.2 Z M 42.31 209.23 L 53.51 209.23 L 53.51 207.72 L 42.31 207.72 Z M 39.33 213 L 39.33 179.08 C 39.33 178.27 40.01 177.58 40.84 177.57 L 54.99 177.57 C 55.77 177.57 56.5 178.21 56.5 179.16 L 56.5 213 Z M 22.9 183.6 L 34.1 183.6 L 34.1 182.09 L 22.9 182.09 Z M 22.9 204.71 L 34.1 204.71 L 34.1 203.2 L 22.9 203.2 Z M 22.9 209.23 L 34.1 209.23 L 34.1 207.72 L 22.9 207.72 Z M 19.91 213 L 19.91 179.08 C 19.91 178.27 20.6 177.58 21.43 177.57 L 35.57 177.57 C 36.36 177.57 37.09 178.21 37.09 179.16 L 37.09 213 Z M 3.49 183.6 L 14.69 183.6 L 14.69 182.09 L 3.49 182.09 Z M 3.49 204.72 L 14.69 204.72 L 14.69 203.21 L 3.49 203.21 Z M 3.49 209.23 L 14.69 209.23 L 14.69 207.72 L 3.49 207.72 Z M 0.5 213 L 0.5 179.08 C 0.5 178.28 1.19 177.58 2.01 177.57 L 16.16 177.57 C 16.95 177.57 17.67 178.21 17.67 179.16 L 17.67 213 Z"
+     fill="#505050"
+     stroke="none"
+     pointer-events="none"
+     id="path4" />
+  <path
+     d="M 102.61 170.03 L 113.81 170.03 L 113.81 168.52 L 102.61 168.52 Z M 99.62 175.31 L 99.62 165.56 C 99.62 164.73 100.24 164 101.23 164 L 115.16 164 C 116.41 164 116.79 164.99 116.79 165.58 L 116.79 175.31 L 110.75 175.31 C 109.67 175.38 108.85 175.8 108.21 176.44 C 107.63 175.86 106.73 175.35 105.59 175.31 Z M 83.19 170.03 L 94.39 170.03 L 94.39 168.52 L 83.19 168.52 Z M 80.21 175.31 L 80.21 165.56 C 80.21 164.73 80.82 164 81.82 164 L 95.75 164 C 96.99 164 97.38 164.99 97.38 165.58 L 97.38 175.31 L 91.34 175.31 C 90.25 175.38 89.44 175.8 88.8 176.44 C 88.22 175.87 87.31 175.35 86.18 175.31 Z M 112.31 183.6 L 123.51 183.6 L 123.51 182.09 L 112.31 182.09 Z M 112.31 204.71 L 123.51 204.71 L 123.51 203.2 L 112.31 203.2 Z M 112.31 209.23 L 123.51 209.23 L 123.51 207.72 L 112.31 207.72 Z M 109.33 213 L 109.33 179.08 C 109.33 178.27 110.01 177.58 110.84 177.57 L 124.99 177.57 C 125.77 177.57 126.5 178.21 126.5 179.16 L 126.5 213 Z M 92.9 183.6 L 104.1 183.6 L 104.1 182.09 L 92.9 182.09 Z M 92.9 204.71 L 104.1 204.71 L 104.1 203.2 L 92.9 203.2 Z M 92.9 209.23 L 104.1 209.23 L 104.1 207.72 L 92.9 207.72 Z M 89.91 213 L 89.91 179.08 C 89.91 178.27 90.6 177.58 91.43 177.57 L 105.57 177.57 C 106.36 177.57 107.09 178.21 107.09 179.16 L 107.09 213 Z M 73.49 183.6 L 84.69 183.6 L 84.69 182.09 L 73.49 182.09 Z M 73.49 204.72 L 84.69 204.72 L 84.69 203.21 L 73.49 203.21 Z M 73.49 209.23 L 84.69 209.23 L 84.69 207.72 L 73.49 207.72 Z M 70.5 213 L 70.5 179.08 C 70.5 178.28 71.19 177.58 72.01 177.57 L 86.16 177.57 C 86.95 177.57 87.67 178.21 87.67 179.16 L 87.67 213 Z"
+     fill="#505050"
+     stroke="none"
+     pointer-events="none"
+     id="path6" />
+  <path
+     d="M 210.92 31.9 L 222.8 31.9 L 222.8 29.66 L 210.92 29.66 Z M 205.73 34.2 L 205.73 25.85 C 205.73 24.58 206.88 23 208.71 23 L 225.05 23 C 226.79 23 228 24.53 228 25.9 L 228 68.56 L 216.86 68.56 L 216.86 62.58 L 222.8 62.58 L 222.8 60.34 L 216.86 60.34 L 216.86 56.61 L 222.8 56.61 L 222.8 54.37 L 216.86 54.37 L 216.86 39.4 C 216.86 36.35 214.34 34.2 211.78 34.2 Z M 184.06 31.9 L 196.11 31.9 L 196.02 29.66 L 183.88 29.66 Z M 179 68.56 L 179 25.91 C 179 24.35 180.41 23 181.86 23 L 198.38 23 C 199.81 23 201.27 24.27 201.27 25.93 L 201.27 34.2 L 195.26 34.2 C 192.18 34.2 190.14 36.83 190.14 39.33 L 190.14 54.37 L 184.2 54.37 L 184.2 56.61 L 190.14 56.61 L 190.14 60.34 L 184.2 60.34 L 184.2 62.58 L 190.14 62.58 L 190.14 68.57 Z M 197.56 45.41 L 209.44 45.41 L 209.44 43.16 L 197.56 43.16 Z M 197.56 70.05 L 209.44 70.05 L 209.44 67.81 L 197.56 67.81 Z M 197.56 76.03 L 209.44 76.03 L 209.44 73.78 L 197.56 73.78 Z M 192.36 82 L 192.36 39.36 C 192.36 37.75 193.81 36.44 195.23 36.44 L 211.68 36.44 C 213.33 36.44 214.64 37.86 214.64 39.37 L 214.64 82 Z"
+     fill="#505050"
+     stroke="none"
+     pointer-events="none"
+     id="path8" />
+  <path
+     d="M 170.11 170.03 L 181.31 170.03 L 181.31 168.52 L 170.11 168.52 Z M 167.12 175.31 L 167.12 165.56 C 167.12 164.73 167.74 164 168.73 164 L 182.66 164 C 183.91 164 184.29 164.99 184.29 165.58 L 184.29 175.31 L 178.25 175.31 C 177.17 175.38 176.35 175.8 175.71 176.44 C 175.13 175.86 174.23 175.35 173.09 175.31 Z M 150.69 170.03 L 161.89 170.03 L 161.89 168.52 L 150.69 168.52 Z M 147.71 175.31 L 147.71 165.56 C 147.71 164.73 148.32 164 149.32 164 L 163.25 164 C 164.49 164 164.88 164.99 164.88 165.58 L 164.88 175.31 L 158.84 175.31 C 157.75 175.38 156.94 175.8 156.3 176.44 C 155.72 175.87 154.81 175.35 153.68 175.31 Z M 179.81 183.6 L 191.01 183.6 L 191.01 182.09 L 179.81 182.09 Z M 179.81 204.71 L 191.01 204.71 L 191.01 203.2 L 179.81 203.2 Z M 179.81 209.23 L 191.01 209.23 L 191.01 207.72 L 179.81 207.72 Z M 176.83 213 L 176.83 179.08 C 176.83 178.27 177.51 177.58 178.34 177.57 L 192.49 177.57 C 193.27 177.57 194 178.21 194 179.16 L 194 213 Z M 160.4 183.6 L 171.6 183.6 L 171.6 182.09 L 160.4 182.09 Z M 160.4 204.71 L 171.6 204.71 L 171.6 203.2 L 160.4 203.2 Z M 160.4 209.23 L 171.6 209.23 L 171.6 207.72 L 160.4 207.72 Z M 157.41 213 L 157.41 179.08 C 157.41 178.27 158.1 177.58 158.93 177.57 L 173.07 177.57 C 173.86 177.57 174.59 178.21 174.59 179.16 L 174.59 213 Z M 140.99 183.6 L 152.19 183.6 L 152.19 182.09 L 140.99 182.09 Z M 140.99 204.72 L 152.19 204.72 L 152.19 203.21 L 140.99 203.21 Z M 140.99 209.23 L 152.19 209.23 L 152.19 207.72 L 140.99 207.72 Z M 138 213 L 138 179.08 C 138 178.28 138.69 177.58 139.51 177.57 L 153.66 177.57 C 154.45 177.57 155.17 178.21 155.17 179.16 L 155.17 213 Z"
+     fill="#505050"
+     stroke="none"
+     pointer-events="none"
+     id="path10" />
+  <path
+     d="M 242.61 170.03 L 253.81 170.03 L 253.81 168.52 L 242.61 168.52 Z M 239.62 175.31 L 239.62 165.56 C 239.62 164.73 240.24 164 241.23 164 L 255.16 164 C 256.41 164 256.79 164.99 256.79 165.58 L 256.79 175.31 L 250.75 175.31 C 249.67 175.38 248.85 175.8 248.21 176.44 C 247.63 175.86 246.73 175.35 245.59 175.31 Z M 223.19 170.03 L 234.39 170.03 L 234.39 168.52 L 223.19 168.52 Z M 220.21 175.31 L 220.21 165.56 C 220.21 164.73 220.82 164 221.82 164 L 235.75 164 C 236.99 164 237.38 164.99 237.38 165.58 L 237.38 175.31 L 231.34 175.31 C 230.25 175.38 229.44 175.8 228.8 176.44 C 228.22 175.87 227.31 175.35 226.18 175.31 Z M 252.31 183.6 L 263.51 183.6 L 263.51 182.09 L 252.31 182.09 Z M 252.31 204.71 L 263.51 204.71 L 263.51 203.2 L 252.31 203.2 Z M 252.31 209.23 L 263.51 209.23 L 263.51 207.72 L 252.31 207.72 Z M 249.33 213 L 249.33 179.08 C 249.33 178.27 250.01 177.58 250.84 177.57 L 264.99 177.57 C 265.77 177.57 266.5 178.21 266.5 179.16 L 266.5 213 Z M 232.9 183.6 L 244.1 183.6 L 244.1 182.09 L 232.9 182.09 Z M 232.9 204.71 L 244.1 204.71 L 244.1 203.2 L 232.9 203.2 Z M 232.9 209.23 L 244.1 209.23 L 244.1 207.72 L 232.9 207.72 Z M 229.91 213 L 229.91 179.08 C 229.91 178.27 230.6 177.58 231.43 177.57 L 245.57 177.57 C 246.36 177.57 247.09 178.21 247.09 179.16 L 247.09 213 Z M 213.49 183.6 L 224.69 183.6 L 224.69 182.09 L 213.49 182.09 Z M 213.49 204.72 L 224.69 204.72 L 224.69 203.21 L 213.49 203.21 Z M 213.49 209.23 L 224.69 209.23 L 224.69 207.72 L 213.49 207.72 Z M 210.5 213 L 210.5 179.08 C 210.5 178.28 211.19 177.58 212.01 177.57 L 226.16 177.57 C 226.95 177.57 227.67 178.21 227.67 179.16 L 227.67 213 Z"
+     fill="#505050"
+     stroke="none"
+     pointer-events="none"
+     id="path12" />
+  <path
+     d="M 312.61 170.03 L 323.81 170.03 L 323.81 168.52 L 312.61 168.52 Z M 309.62 175.31 L 309.62 165.56 C 309.62 164.73 310.24 164 311.23 164 L 325.16 164 C 326.41 164 326.79 164.99 326.79 165.58 L 326.79 175.31 L 320.75 175.31 C 319.67 175.38 318.85 175.8 318.21 176.44 C 317.63 175.86 316.73 175.35 315.59 175.31 Z M 293.19 170.03 L 304.39 170.03 L 304.39 168.52 L 293.19 168.52 Z M 290.21 175.31 L 290.21 165.56 C 290.21 164.73 290.82 164 291.82 164 L 305.75 164 C 306.99 164 307.38 164.99 307.38 165.58 L 307.38 175.31 L 301.34 175.31 C 300.25 175.38 299.44 175.8 298.8 176.44 C 298.22 175.87 297.31 175.35 296.18 175.31 Z M 322.31 183.6 L 333.51 183.6 L 333.51 182.09 L 322.31 182.09 Z M 322.31 204.71 L 333.51 204.71 L 333.51 203.2 L 322.31 203.2 Z M 322.31 209.23 L 333.51 209.23 L 333.51 207.72 L 322.31 207.72 Z M 319.33 213 L 319.33 179.08 C 319.33 178.27 320.01 177.58 320.84 177.57 L 334.99 177.57 C 335.77 177.57 336.5 178.21 336.5 179.16 L 336.5 213 Z M 302.9 183.6 L 314.1 183.6 L 314.1 182.09 L 302.9 182.09 Z M 302.9 204.71 L 314.1 204.71 L 314.1 203.2 L 302.9 203.2 Z M 302.9 209.23 L 314.1 209.23 L 314.1 207.72 L 302.9 207.72 Z M 299.91 213 L 299.91 179.08 C 299.91 178.27 300.6 177.58 301.43 177.57 L 315.57 177.57 C 316.36 177.57 317.09 178.21 317.09 179.16 L 317.09 213 Z M 283.49 183.6 L 294.69 183.6 L 294.69 182.09 L 283.49 182.09 Z M 283.49 204.72 L 294.69 204.72 L 294.69 203.21 L 283.49 203.21 Z M 283.49 209.23 L 294.69 209.23 L 294.69 207.72 L 283.49 207.72 Z M 280.5 213 L 280.5 179.08 C 280.5 178.28 281.19 177.58 282.01 177.57 L 296.16 177.57 C 296.95 177.57 297.67 178.21 297.67 179.16 L 297.67 213 Z"
+     fill="#505050"
+     stroke="none"
+     pointer-events="none"
+     id="path14" />
+  <path
+     d="M 382.61 170.03 L 393.81 170.03 L 393.81 168.52 L 382.61 168.52 Z M 379.62 175.31 L 379.62 165.56 C 379.62 164.73 380.24 164 381.23 164 L 395.16 164 C 396.41 164 396.79 164.99 396.79 165.58 L 396.79 175.31 L 390.75 175.31 C 389.67 175.38 388.85 175.8 388.21 176.44 C 387.63 175.86 386.73 175.35 385.59 175.31 Z M 363.19 170.03 L 374.39 170.03 L 374.39 168.52 L 363.19 168.52 Z M 360.21 175.31 L 360.21 165.56 C 360.21 164.73 360.82 164 361.82 164 L 375.75 164 C 376.99 164 377.38 164.99 377.38 165.58 L 377.38 175.31 L 371.34 175.31 C 370.25 175.38 369.44 175.8 368.8 176.44 C 368.22 175.87 367.31 175.35 366.18 175.31 Z M 392.31 183.6 L 403.51 183.6 L 403.51 182.09 L 392.31 182.09 Z M 392.31 204.71 L 403.51 204.71 L 403.51 203.2 L 392.31 203.2 Z M 392.31 209.23 L 403.51 209.23 L 403.51 207.72 L 392.31 207.72 Z M 389.33 213 L 389.33 179.08 C 389.33 178.27 390.01 177.58 390.84 177.57 L 404.99 177.57 C 405.77 177.57 406.5 178.21 406.5 179.16 L 406.5 213 Z M 372.9 183.6 L 384.1 183.6 L 384.1 182.09 L 372.9 182.09 Z M 372.9 204.71 L 384.1 204.71 L 384.1 203.2 L 372.9 203.2 Z M 372.9 209.23 L 384.1 209.23 L 384.1 207.72 L 372.9 207.72 Z M 369.91 213 L 369.91 179.08 C 369.91 178.27 370.6 177.58 371.43 177.57 L 385.57 177.57 C 386.36 177.57 387.09 178.21 387.09 179.16 L 387.09 213 Z M 353.49 183.6 L 364.69 183.6 L 364.69 182.09 L 353.49 182.09 Z M 353.49 204.72 L 364.69 204.72 L 364.69 203.21 L 353.49 203.21 Z M 353.49 209.23 L 364.69 209.23 L 364.69 207.72 L 353.49 207.72 Z M 350.5 213 L 350.5 179.08 C 350.5 178.28 351.19 177.58 352.01 177.57 L 366.16 177.57 C 366.95 177.57 367.67 178.21 367.67 179.16 L 367.67 213 Z"
+     fill="#505050"
+     stroke="none"
+     pointer-events="none"
+     id="path16" />
+  <path
+     d="M 179 52.5 L 28.5 52.5 L 28.5 155.76"
+     fill="none"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path18" />
+  <path
+     d="M 28.5 161.76 L 25.5 155.76 L 31.5 155.76 Z"
+     fill="#4284f3"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path20" />
+  <path
+     d="M 179 52.5 L 89.33 52.5 L 89.33 155.76"
+     fill="none"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path22" />
+  <path
+     d="M 89.33 161.76 L 86.33 155.76 L 92.33 155.76 Z"
+     fill="#4284f3"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path24" />
+  <path
+     d="M 179 52.5 L 154.33 52.5 L 154.33 155.93"
+     fill="none"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path26" />
+  <path
+     d="M 154.33 161.93 L 151.33 155.93 L 157.33 155.93 Z"
+     fill="#4284f3"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path28" />
+  <path
+     d="M 228 52.5 L 252.67 52.5 L 252.67 155.93"
+     fill="none"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path30" />
+  <path
+     d="M 252.67 161.93 L 249.67 155.93 L 255.67 155.93 Z"
+     fill="#4284f3"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path32" />
+  <path
+     d="M 228 52.5 L 319.33 52.5 L 319.33 155.76"
+     fill="none"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path34" />
+  <path
+     d="M 319.33 161.76 L 316.33 155.76 L 322.33 155.76 Z"
+     fill="#4284f3"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path36" />
+  <path
+     d="M 228 52.5 L 378.5 52.5 L 378.5 155.76"
+     fill="none"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path38" />
+  <path
+     d="M 378.5 161.76 L 375.5 155.76 L 381.5 155.76 Z"
+     fill="#4284f3"
+     stroke="#4284f3"
+     stroke-width="2"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path40" />
+  <path
+     d="M 147 234 L 69.24 234"
+     fill="none"
+     stroke="#000000"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path42" />
+  <path
+     d="M 75.12 231.67 L 68.12 234 L 75.12 236.33"
+     fill="none"
+     stroke="#000000"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path44" />
+  <path
+     d="M 255.5 234 L 331.26 234"
+     fill="none"
+     stroke="#000000"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path46" />
+  <path
+     d="M 325.38 236.33 L 332.38 234 L 325.38 231.67"
+     fill="none"
+     stroke="#000000"
+     stroke-miterlimit="10"
+     pointer-events="none"
+     id="path48" />
+  <g
+     transform="translate(157.5,226.5)"
+     id="g54">
+    <switch
+       id="switch52">
+      <foreignObject
+         style="overflow:visible;"
+         pointer-events="all"
+         width="87"
+         height="12"
+         requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility">
+        <xhtml:div
+           style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(0, 0, 0); line-height: 1.2; vertical-align: top; white-space: nowrap;">
+          <xhtml:div
+             style="display:inline-block;text-align:inherit;text-decoration:inherit;">Compute nodes</xhtml:div>
+        </xhtml:div>
+      </foreignObject>
+      <text
+         x="44"
+         y="12"
+         fill="#000000"
+         text-anchor="middle"
+         font-size="12px"
+         font-family="Helvetica"
+         id="text50">Compute nodes</text>
+    </switch>
+  </g>
+  <g
+     transform="translate(152.5,2.5)"
+     id="g60">
+    <switch
+       id="switch58">
+      <foreignObject
+         style="overflow:visible;"
+         pointer-events="all"
+         width="111"
+         height="12"
+         requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility">
+        <xhtml:div
+           style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(0, 0, 0); line-height: 1.2; vertical-align: top; white-space: nowrap;">
+          <xhtml:div
+             style="display:inline-block;text-align:inherit;text-decoration:inherit;">Control plane nodes</xhtml:div>
+        </xhtml:div>
+      </foreignObject>
+      <text
+         x="56"
+         y="12"
+         fill="#000000"
+         text-anchor="middle"
+         font-size="12px"
+         font-family="Helvetica"
+         id="text56">Control plane nodes</text>
+    </switch>
+  </g>
+  <rect
+     x="83.46"
+     y="115"
+     width="17.33"
+     height="17.33"
+     fill="#ffffff"
+     stroke="none"
+     pointer-events="none"
+     id="rect62" />
+  <image
+     x="82.96"
+     y="114.5"
+     width="17.33"
+     height="17.33"
+     xlink:href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAIAAAACACAYAAADDPmHLAAAHIElEQVR4nO2dyZYURRSGv6qFdLMCGtwydcNekGZau0BlaHkClUF8AgfGBWsHBuUFHBjEB0ARaOABRKBhLQ24Emg2NOUiMs4pi64mozLvzYjM+51zz+E0XV03In7oryqyIqGZtIEJ4HpWE9nXjJozDHwC3AM6PTWV/d1wZd0ZYiwDjgKPeXXhe+sxcCR7jJE4Y8B3wAyvX/jemskeO6betVGYzcAvwCzhC99bs9nP2qI6AiOYbrEruuj9yoQxQrzYTSG38L11DxPGylmKk7VH6C38XMJ4FBNGVcaA0wwmdlL1HBNGcTYBFyhH7KRqFriICWNptIFdyIqdVF0HPsCEcSCGgf3Ii93DrCSf4x5wABPGXGiJ3R1gLzCU1d7sa5LPacI4D6PoiN1VYDvQmqOHFrAj+x7JHp4D3wNrBp6tGqEhdrPAWWA8oK+NwDmFvi4CWwP6qgVe7CaR/Zf2DDgBrCrQ6+rsZzwT7vUGDRDGIZzY3UV2Mh8CXwJLSux9BDiIvDDep4bCuBQ4jLzY3Qb24IImhaYwHgPeFByLOKPAKeTF7gr9xU4KE8Z50BC7Fzix26A0pvkYR14YXwK/ErEwtoGd6IjdtxQTOyk0hXE3kQijlthNU77YSaEpjJ8CC3WG9X80xe5jYIHOsEpFSxj/QVEYtcTuD+B9dMVOihZOUjWE8QywVmIQWmL3M3GInRRawljKlrTWO3ZPgW+AlUUbTggtYRz4GsYJ5Ldip4EvSEPspNASxincmubmnGAzKYudFBrCeC6kIYkA1EnspJAUxsoC8C/wTtA0GADbgCfUIAAdnOh9DawImoJmsgoZQaz8V0AH91LvJ2B9SDMNYQNuf+MFMnMfRQC66zLwLs12ghbOi64gP9/RBcDXLeAjmvWqYAHuldBt9OY52gD4egB8DiwOaTQxluA2tabRn9/oA+DrCfUTxpW4beynVDevyQTA1wvgR2BdSOOR8TZuf0NK7KIIwBncTpRk87+TjjC2gPdwb3xJzonf/as8AOD2oo/h9qYlB30L+BB4I2QwSizAyexfyM5B7/5/FAHwLMRdpXJfeBL+Bj4DFoUMSojFuE2tB8iOud8VQFEFwNPGXbd2U3hSngBfActDBlcSK3Db2NJid5P5PzQSZQC62Yq7ovVlwM8MLU1hXI97N1NS7PxFHXmuAo4+AJ61uGvcNYRxG+UKYwsnoZeFex/kcwDJBMCjJYx/UlwYvdjdEu61yIWdyQXAE7MwLsoeoyF2Byh2aXeyAfC0cZITgzAuz76nzH34uarMTwMnH4ButuLkR1oYfwDe6nredTiJlBQ7qQOkahUAzxp0hPG3rCSfQ/oDnrUMgEdLGCVK60ygWgfAsxAnS9LCWEZpnwrWiAB4vDDeCOhPq6o65qVRAejGC2OVJ4fGcDJoYwPg0RLG7vJnA8dwckfjA+Dxt4WRFMYYD3u0APTghXGuG0MNWjEf92oB6EMZwpjCHUIsADnYAlwi/5gukc6R7xaAnOwm/5h2V9TjIFgAcmIBCMACkA4WgJxYAAKwAKSDBSAnFoAALADpYAHIiQUgAAtAOlgAcmIBCMACkA4WgJxYAAKwAKSDBSAnFoAALADpYAHIiQUgAAtAOlgAcmIBCMACkA4WgJxYAAKwAKSDBSAnFoAALADpYAHIiQUgAAtAOlgAcmIBCMACkA4WgJxYAAKwAKSDBSAnFoAALADpYAHIiQUgAAtAOlgAcmIBCMACkA4WgJxYAAKwAKRD5QHYTho3dKxbAFq4ua88AB3gDrCHuO8AXpcADAF7cXMeskYq9w6eBg4CI4OPT4zUAzCCm9uHDLY2KgHw9Qw4AawabKwipBqA1cBJ3JwWWRPVAPiaBc4CG8LHXTqpBWActw5lHYdfSQC66yrVCmMKAWgBO3BzVfb8Vx4AX3dwEjMU0lAJxByAQcVOLAATwJRgMx2czGgKY4wBKCp2eesubk2DaAM7gUnh5rSEMaYAlCV2r6truDUsfNz9JuA8svfnmcX9NzVetNk+xBCAssWu3zyex61Z6YwCp4AZwQF0cBK0g3KFsaoASIpdd83g1ma0xN77shQ4DDwSHlSZwqgdgCFgH7Ji18GtwWHcmqgzDOwnDWHUCsAIcAgdsduH/qupOdEUxpM4iQpFOgDJiZ0UsQqjVAA2Ko1XTOykiE0YywyAF7trwmNTFTspNIVxvt+JZQTAi91d4bFUKnZSaArjIV4VxiIB8GInHeIpIhI7KdrALvSFcZAAaIndJJGLnRSbgQvoCNTxgMccx8ROlTHgNPLCGEPVQuyk0BLGKqqWYieFljBqVCPETgotYZSoxoqdFBrCWLRM7BSIURhN7CpgGXAEeEx1C29iFwFVCONU9pzDCuMzcqIhjCZ2iVCmMJrYJUwRYTSxqxH+HcY8wmhiV2PmE0YTuwbRLYyT2Z8bKXb/ATvr10PZvKMxAAAAAElFTkSuQmCC"
+     preserveAspectRatio="none"
+     pointer-events="none"
+     id="image64" />
+  <rect
+     x="22.5"
+     y="64.57"
+     width="17.33"
+     height="17.33"
+     fill="#ffffff"
+     stroke="none"
+     pointer-events="none"
+     id="rect66" />
+  <image
+     x="22"
+     y="64.07"
+     width="17.33"
+     height="17.33"
+     xlink:href="data:image/png;base64,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"
+     preserveAspectRatio="none"
+     pointer-events="none"
+     id="image68" />
+  <rect
+     x="311.85"
+     y="68.17"
+     width="17.33"
+     height="17.33"
+     fill="#ffffff"
+     stroke="none"
+     pointer-events="none"
+     id="rect70" />
+  <image
+     x="311.35"
+     y="67.67"
+     width="17.33"
+     height="17.33"
+     xlink:href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAIAAAACACAYAAADDPmHLAAAHIElEQVR4nO2dyZYURRSGv6qFdLMCGtwydcNekGZau0BlaHkClUF8AgfGBWsHBuUFHBjEB0ARaOABRKBhLQ24Emg2NOUiMs4pi64mozLvzYjM+51zz+E0XV03In7oryqyIqGZtIEJ4HpWE9nXjJozDHwC3AM6PTWV/d1wZd0ZYiwDjgKPeXXhe+sxcCR7jJE4Y8B3wAyvX/jemskeO6betVGYzcAvwCzhC99bs9nP2qI6AiOYbrEruuj9yoQxQrzYTSG38L11DxPGylmKk7VH6C38XMJ4FBNGVcaA0wwmdlL1HBNGcTYBFyhH7KRqFriICWNptIFdyIqdVF0HPsCEcSCGgf3Ii93DrCSf4x5wABPGXGiJ3R1gLzCU1d7sa5LPacI4D6PoiN1VYDvQmqOHFrAj+x7JHp4D3wNrBp6tGqEhdrPAWWA8oK+NwDmFvi4CWwP6qgVe7CaR/Zf2DDgBrCrQ6+rsZzwT7vUGDRDGIZzY3UV2Mh8CXwJLSux9BDiIvDDep4bCuBQ4jLzY3Qb24IImhaYwHgPeFByLOKPAKeTF7gr9xU4KE8Z50BC7Fzix26A0pvkYR14YXwK/ErEwtoGd6IjdtxQTOyk0hXE3kQijlthNU77YSaEpjJ8CC3WG9X80xe5jYIHOsEpFSxj/QVEYtcTuD+B9dMVOihZOUjWE8QywVmIQWmL3M3GInRRawljKlrTWO3ZPgW+AlUUbTggtYRz4GsYJ5Ldip4EvSEPspNASxincmubmnGAzKYudFBrCeC6kIYkA1EnspJAUxsoC8C/wTtA0GADbgCfUIAAdnOh9DawImoJmsgoZQaz8V0AH91LvJ2B9SDMNYQNuf+MFMnMfRQC66zLwLs12ghbOi64gP9/RBcDXLeAjmvWqYAHuldBt9OY52gD4egB8DiwOaTQxluA2tabRn9/oA+DrCfUTxpW4beynVDevyQTA1wvgR2BdSOOR8TZuf0NK7KIIwBncTpRk87+TjjC2gPdwb3xJzonf/as8AOD2oo/h9qYlB30L+BB4I2QwSizAyexfyM5B7/5/FAHwLMRdpXJfeBL+Bj4DFoUMSojFuE2tB8iOud8VQFEFwNPGXbd2U3hSngBfActDBlcSK3Db2NJid5P5PzQSZQC62Yq7ovVlwM8MLU1hXI97N1NS7PxFHXmuAo4+AJ61uGvcNYRxG+UKYwsnoZeFex/kcwDJBMCjJYx/UlwYvdjdEu61yIWdyQXAE7MwLsoeoyF2Byh2aXeyAfC0cZITgzAuz76nzH34uarMTwMnH4ButuLkR1oYfwDe6nredTiJlBQ7qQOkahUAzxp0hPG3rCSfQ/oDnrUMgEdLGCVK60ygWgfAsxAnS9LCWEZpnwrWiAB4vDDeCOhPq6o65qVRAejGC2OVJ4fGcDJoYwPg0RLG7vJnA8dwckfjA+Dxt4WRFMYYD3u0APTghXGuG0MNWjEf92oB6EMZwpjCHUIsADnYAlwi/5gukc6R7xaAnOwm/5h2V9TjIFgAcmIBCMACkA4WgJxYAAKwAKSDBSAnFoAALADpYAHIiQUgAAtAOlgAcmIBCMACkA4WgJxYAAKwAKSDBSAnFoAALADpYAHIiQUgAAtAOlgAcmIBCMACkA4WgJxYAAKwAKSDBSAnFoAALADpYAHIiQUgAAtAOlgAcmIBCMACkA4WgJxYAAKwAKSDBSAnFoAALADpYAHIiQUgAAtAOlgAcmIBCMACkA4WgJxYAAKwAKRD5QHYTho3dKxbAFq4ua88AB3gDrCHuO8AXpcADAF7cXMeskYq9w6eBg4CI4OPT4zUAzCCm9uHDLY2KgHw9Qw4AawabKwipBqA1cBJ3JwWWRPVAPiaBc4CG8LHXTqpBWActw5lHYdfSQC66yrVCmMKAWgBO3BzVfb8Vx4AX3dwEjMU0lAJxByAQcVOLAATwJRgMx2czGgKY4wBKCp2eesubk2DaAM7gUnh5rSEMaYAlCV2r6truDUsfNz9JuA8svfnmcX9NzVetNk+xBCAssWu3zyex61Z6YwCp4AZwQF0cBK0g3KFsaoASIpdd83g1ma0xN77shQ4DDwSHlSZwqgdgCFgH7Ji18GtwWHcmqgzDOwnDWHUCsAIcAgdsduH/qupOdEUxpM4iQpFOgDJiZ0UsQqjVAA2Ko1XTOykiE0YywyAF7trwmNTFTspNIVxvt+JZQTAi91d4bFUKnZSaArjIV4VxiIB8GInHeIpIhI7KdrALvSFcZAAaIndJJGLnRSbgQvoCNTxgMccx8ROlTHgNPLCGEPVQuyk0BLGKqqWYieFljBqVCPETgotYZSoxoqdFBrCWLRM7BSIURhN7CpgGXAEeEx1C29iFwFVCONU9pzDCuMzcqIhjCZ2iVCmMJrYJUwRYTSxqxH+HcY8wmhiV2PmE0YTuwbRLYyT2Z8bKXb/ATvr10PZvKMxAAAAAElFTkSuQmCC"
+     preserveAspectRatio="none"
+     pointer-events="none"
+     id="image72" />
+  <rect
+     x="149.85"
+     y="65.67"
+     width="17.33"
+     height="17.33"
+     fill="#ffffff"
+     stroke="none"
+     pointer-events="none"
+     id="rect74" />
+  <image
+     x="149.35"
+     y="65.17"
+     width="17.33"
+     height="17.33"
+     xlink:href="data:image/png;base64,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"
+     preserveAspectRatio="none"
+     pointer-events="none"
+     id="image76" />
+  <rect
+     x="147.35"
+     y="84.17"
+     width="17.33"
+     height="17.33"
+     fill="#ffffff"
+     stroke="none"
+     pointer-events="none"
+     id="rect78" />
+  <image
+     x="146.85"
+     y="83.67"
+     width="17.33"
+     height="17.33"
+     xlink:href="data:image/png;base64,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"
+     preserveAspectRatio="none"
+     pointer-events="none"
+     id="image80" />
+  <rect
+     x="245.85"
+     y="115.17"
+     width="17.33"
+     height="17.33"
+     fill="#ffffff"
+     stroke="none"
+     pointer-events="none"
+     id="rect82" />
+  <g
+     transform="translate(170.5,85.5)"
+     id="g114">
+    <switch
+       id="switch112">
+      <foreignObject
+         style="overflow:visible;"
+         pointer-events="all"
+         width="63"
+         height="12"
+         requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility">
+        <xhtml:div
+           style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(0, 0, 0); line-height: 1.2; vertical-align: top; white-space: nowrap;">
+          <xhtml:div
+             style="display:inline-block;text-align:inherit;text-decoration:inherit;">Kubernetes</xhtml:div>
+        </xhtml:div>
+      </foreignObject>
+      <text
+         x="32"
+         y="12"
+         font-size="12px"
+         id="text110"
+         style="font-size:12px;font-family:Helvetica;text-anchor:middle;fill:#000000">Kubernetes</text>
+    </switch>
+  </g>
+  <image
+     x="245.35"
+     y="114.67"
+     width="17.33"
+     height="17.33"
+     xlink:href="data:image/png;base64,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"
+     preserveAspectRatio="none"
+     pointer-events="none"
+     id="image84" />
+  <rect
+     x="367.85"
+     y="90.67"
+     width="17.33"
+     height="17.33"
+     fill="#ffffff"
+     stroke="none"
+     pointer-events="none"
+     id="rect86" />
+  <image
+     x="367.35"
+     y="90.17"
+     width="17.33"
+     height="17.33"
+     xlink:href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAIAAAACACAYAAADDPmHLAAAHIElEQVR4nO2dyZYURRSGv6qFdLMCGtwydcNekGZau0BlaHkClUF8AgfGBWsHBuUFHBjEB0ARaOABRKBhLQ24Emg2NOUiMs4pi64mozLvzYjM+51zz+E0XV03In7oryqyIqGZtIEJ4HpWE9nXjJozDHwC3AM6PTWV/d1wZd0ZYiwDjgKPeXXhe+sxcCR7jJE4Y8B3wAyvX/jemskeO6betVGYzcAvwCzhC99bs9nP2qI6AiOYbrEruuj9yoQxQrzYTSG38L11DxPGylmKk7VH6C38XMJ4FBNGVcaA0wwmdlL1HBNGcTYBFyhH7KRqFriICWNptIFdyIqdVF0HPsCEcSCGgf3Ii93DrCSf4x5wABPGXGiJ3R1gLzCU1d7sa5LPacI4D6PoiN1VYDvQmqOHFrAj+x7JHp4D3wNrBp6tGqEhdrPAWWA8oK+NwDmFvi4CWwP6qgVe7CaR/Zf2DDgBrCrQ6+rsZzwT7vUGDRDGIZzY3UV2Mh8CXwJLSux9BDiIvDDep4bCuBQ4jLzY3Qb24IImhaYwHgPeFByLOKPAKeTF7gr9xU4KE8Z50BC7Fzix26A0pvkYR14YXwK/ErEwtoGd6IjdtxQTOyk0hXE3kQijlthNU77YSaEpjJ8CC3WG9X80xe5jYIHOsEpFSxj/QVEYtcTuD+B9dMVOihZOUjWE8QywVmIQWmL3M3GInRRawljKlrTWO3ZPgW+AlUUbTggtYRz4GsYJ5Ldip4EvSEPspNASxincmubmnGAzKYudFBrCeC6kIYkA1EnspJAUxsoC8C/wTtA0GADbgCfUIAAdnOh9DawImoJmsgoZQaz8V0AH91LvJ2B9SDMNYQNuf+MFMnMfRQC66zLwLs12ghbOi64gP9/RBcDXLeAjmvWqYAHuldBt9OY52gD4egB8DiwOaTQxluA2tabRn9/oA+DrCfUTxpW4beynVDevyQTA1wvgR2BdSOOR8TZuf0NK7KIIwBncTpRk87+TjjC2gPdwb3xJzonf/as8AOD2oo/h9qYlB30L+BB4I2QwSizAyexfyM5B7/5/FAHwLMRdpXJfeBL+Bj4DFoUMSojFuE2tB8iOud8VQFEFwNPGXbd2U3hSngBfActDBlcSK3Db2NJid5P5PzQSZQC62Yq7ovVlwM8MLU1hXI97N1NS7PxFHXmuAo4+AJ61uGvcNYRxG+UKYwsnoZeFex/kcwDJBMCjJYx/UlwYvdjdEu61yIWdyQXAE7MwLsoeoyF2Byh2aXeyAfC0cZITgzAuz76nzH34uarMTwMnH4ButuLkR1oYfwDe6nredTiJlBQ7qQOkahUAzxp0hPG3rCSfQ/oDnrUMgEdLGCVK60ygWgfAsxAnS9LCWEZpnwrWiAB4vDDeCOhPq6o65qVRAejGC2OVJ4fGcDJoYwPg0RLG7vJnA8dwckfjA+Dxt4WRFMYYD3u0APTghXGuG0MNWjEf92oB6EMZwpjCHUIsADnYAlwi/5gukc6R7xaAnOwm/5h2V9TjIFgAcmIBCMACkA4WgJxYAAKwAKSDBSAnFoAALADpYAHIiQUgAAtAOlgAcmIBCMACkA4WgJxYAAKwAKSDBSAnFoAALADpYAHIiQUgAAtAOlgAcmIBCMACkA4WgJxYAAKwAKSDBSAnFoAALADpYAHIiQUgAAtAOlgAcmIBCMACkA4WgJxYAAKwAKSDBSAnFoAALADpYAHIiQUgAAtAOlgAcmIBCMACkA4WgJxYAAKwAKRD5QHYTho3dKxbAFq4ua88AB3gDrCHuO8AXpcADAF7cXMeskYq9w6eBg4CI4OPT4zUAzCCm9uHDLY2KgHw9Qw4AawabKwipBqA1cBJ3JwWWRPVAPiaBc4CG8LHXTqpBWActw5lHYdfSQC66yrVCmMKAWgBO3BzVfb8Vx4AX3dwEjMU0lAJxByAQcVOLAATwJRgMx2czGgKY4wBKCp2eesubk2DaAM7gUnh5rSEMaYAlCV2r6truDUsfNz9JuA8svfnmcX9NzVetNk+xBCAssWu3zyex61Z6YwCp4AZwQF0cBK0g3KFsaoASIpdd83g1ma0xN77shQ4DDwSHlSZwqgdgCFgH7Ji18GtwWHcmqgzDOwnDWHUCsAIcAgdsduH/qupOdEUxpM4iQpFOgDJiZ0UsQqjVAA2Ko1XTOykiE0YywyAF7trwmNTFTspNIVxvt+JZQTAi91d4bFUKnZSaArjIV4VxiIB8GInHeIpIhI7KdrALvSFcZAAaIndJJGLnRSbgQvoCNTxgMccx8ROlTHgNPLCGEPVQuyk0BLGKqqWYieFljBqVCPETgotYZSoxoqdFBrCWLRM7BSIURhN7CpgGXAEeEx1C29iFwFVCONU9pzDCuMzcqIhjCZ2iVCmMJrYJUwRYTSxqxH+HcY8wmhiV2PmE0YTuwbRLYyT2Z8bKXb/ATvr10PZvKMxAAAAAElFTkSuQmCC"
+     preserveAspectRatio="none"
+     pointer-events="none"
+     id="image88" />
+  <rect
+     x="312.85"
+     y="105.17"
+     width="17.33"
+     height="17.33"
+     fill="#ffffff"
+     stroke="none"
+     pointer-events="none"
+     id="rect90" />
+  <image
+     x="312.35"
+     y="104.67"
+     width="17.33"
+     height="17.33"
+     xlink:href="data:image/png;base64,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"
+     preserveAspectRatio="none"
+     pointer-events="none"
+     id="image92" />
+  <rect
+     x="369.35001"
+     y="113.17"
+     width="17.33"
+     height="17.33"
+     pointer-events="none"
+     id="rect94"
+     style="fill:#ffffff;stroke:none" />
+  <image
+     x="369.35001"
+     y="113.17"
+     width="17.33"
+     height="17.33"
+     xlink:href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAIAAAACACAYAAADDPmHLAAAHIElEQVR4nO2dyZYURRSGv6qFdLMCGtwydcNekGZau0BlaHkClUF8AgfGBWsHBuUFHBjEB0ARaOABRKBhLQ24Emg2NOUiMs4pi64mozLvzYjM+51zz+E0XV03In7oryqyIqGZtIEJ4HpWE9nXjJozDHwC3AM6PTWV/d1wZd0ZYiwDjgKPeXXhe+sxcCR7jJE4Y8B3wAyvX/jemskeO6betVGYzcAvwCzhC99bs9nP2qI6AiOYbrEruuj9yoQxQrzYTSG38L11DxPGylmKk7VH6C38XMJ4FBNGVcaA0wwmdlL1HBNGcTYBFyhH7KRqFriICWNptIFdyIqdVF0HPsCEcSCGgf3Ii93DrCSf4x5wABPGXGiJ3R1gLzCU1d7sa5LPacI4D6PoiN1VYDvQmqOHFrAj+x7JHp4D3wNrBp6tGqEhdrPAWWA8oK+NwDmFvi4CWwP6qgVe7CaR/Zf2DDgBrCrQ6+rsZzwT7vUGDRDGIZzY3UV2Mh8CXwJLSux9BDiIvDDep4bCuBQ4jLzY3Qb24IImhaYwHgPeFByLOKPAKeTF7gr9xU4KE8Z50BC7Fzix26A0pvkYR14YXwK/ErEwtoGd6IjdtxQTOyk0hXE3kQijlthNU77YSaEpjJ8CC3WG9X80xe5jYIHOsEpFSxj/QVEYtcTuD+B9dMVOihZOUjWE8QywVmIQWmL3M3GInRRawljKlrTWO3ZPgW+AlUUbTggtYRz4GsYJ5Ldip4EvSEPspNASxincmubmnGAzKYudFBrCeC6kIYkA1EnspJAUxsoC8C/wTtA0GADbgCfUIAAdnOh9DawImoJmsgoZQaz8V0AH91LvJ2B9SDMNYQNuf+MFMnMfRQC66zLwLs12ghbOi64gP9/RBcDXLeAjmvWqYAHuldBt9OY52gD4egB8DiwOaTQxluA2tabRn9/oA+DrCfUTxpW4beynVDevyQTA1wvgR2BdSOOR8TZuf0NK7KIIwBncTpRk87+TjjC2gPdwb3xJzonf/as8AOD2oo/h9qYlB30L+BB4I2QwSizAyexfyM5B7/5/FAHwLMRdpXJfeBL+Bj4DFoUMSojFuE2tB8iOud8VQFEFwNPGXbd2U3hSngBfActDBlcSK3Db2NJid5P5PzQSZQC62Yq7ovVlwM8MLU1hXI97N1NS7PxFHXmuAo4+AJ61uGvcNYRxG+UKYwsnoZeFex/kcwDJBMCjJYx/UlwYvdjdEu61yIWdyQXAE7MwLsoeoyF2Byh2aXeyAfC0cZITgzAuz76nzH34uarMTwMnH4ButuLkR1oYfwDe6nredTiJlBQ7qQOkahUAzxp0hPG3rCSfQ/oDnrUMgEdLGCVK60ygWgfAsxAnS9LCWEZpnwrWiAB4vDDeCOhPq6o65qVRAejGC2OVJ4fGcDJoYwPg0RLG7vJnA8dwckfjA+Dxt4WRFMYYD3u0APTghXGuG0MNWjEf92oB6EMZwpjCHUIsADnYAlwi/5gukc6R7xaAnOwm/5h2V9TjIFgAcmIBCMACkA4WgJxYAAKwAKSDBSAnFoAALADpYAHIiQUgAAtAOlgAcmIBCMACkA4WgJxYAAKwAKSDBSAnFoAALADpYAHIiQUgAAtAOlgAcmIBCMACkA4WgJxYAAKwAKSDBSAnFoAALADpYAHIiQUgAAtAOlgAcmIBCMACkA4WgJxYAAKwAKSDBSAnFoAALADpYAHIiQUgAAtAOlgAcmIBCMACkA4WgJxYAAKwAKRD5QHYTho3dKxbAFq4ua88AB3gDrCHuO8AXpcADAF7cXMeskYq9w6eBg4CI4OPT4zUAzCCm9uHDLY2KgHw9Qw4AawabKwipBqA1cBJ3JwWWRPVAPiaBc4CG8LHXTqpBWActw5lHYdfSQC66yrVCmMKAWgBO3BzVfb8Vx4AX3dwEjMU0lAJxByAQcVOLAATwJRgMx2czGgKY4wBKCp2eesubk2DaAM7gUnh5rSEMaYAlCV2r6truDUsfNz9JuA8svfnmcX9NzVetNk+xBCAssWu3zyex61Z6YwCp4AZwQF0cBK0g3KFsaoASIpdd83g1ma0xN77shQ4DDwSHlSZwqgdgCFgH7Ji18GtwWHcmqgzDOwnDWHUCsAIcAgdsduH/qupOdEUxpM4iQpFOgDJiZ0UsQqjVAA2Ko1XTOykiE0YywyAF7trwmNTFTspNIVxvt+JZQTAi91d4bFUKnZSaArjIV4VxiIB8GInHeIpIhI7KdrALvSFcZAAaIndJJGLnRSbgQvoCNTxgMccx8ROlTHgNPLCGEPVQuyk0BLGKqqWYieFljBqVCPETgotYZSoxoqdFBrCWLRM7BSIURhN7CpgGXAEeEx1C29iFwFVCONU9pzDCuMzcqIhjCZ2iVCmMJrYJUwRYTSxqxH+HcY8wmhiV2PmE0YTuwbRLYyT2Z8bKXb/ATvr10PZvKMxAAAAAElFTkSuQmCC"
+     preserveAspectRatio="none"
+     pointer-events="none"
+     id="image96" />
+</svg>
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/scheme04.svg b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/scheme04.svg
new file mode 100644
index 0000000000..7488d21ad5
--- /dev/null
+++ b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/scheme04.svg
@@ -0,0 +1,3 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
+<svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" version="1.1" width="407px" height="246px" viewBox="-0.5 -0.5 407 246" content="&lt;mxfile host=&quot;Electron&quot; modified=&quot;2020-09-18T11:16:33.755Z&quot; agent=&quot;Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) draw.io/12.4.2 Chrome/78.0.3904.130 Electron/7.1.4 Safari/537.36&quot; etag=&quot;Pr6qyk9gXN40jYLs8RbX&quot; version=&quot;12.4.2&quot; type=&quot;device&quot; pages=&quot;1&quot;&gt;&lt;diagram id=&quot;10d969fe-fbff-f0e6-b0b0-ee00c4fefe64&quot; name=&quot;Page-1&quot;&gt;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&lt;/diagram&gt;&lt;/mxfile&gt;"><defs><linearGradient x1="0%" y1="0%" x2="0%" y2="100%" id="mx-gradient-d5e8d4-1-97d077-1-s-0"><stop offset="0%" style="stop-color:#d5e8d4"/><stop offset="100%" style="stop-color:#97d077"/></linearGradient><linearGradient x1="0%" y1="0%" x2="0%" y2="100%" id="mx-gradient-f8cecc-1-ea6b66-1-s-0"><stop offset="0%" style="stop-color:#f8cecc"/><stop offset="100%" style="stop-color:#ea6b66"/></linearGradient><linearGradient x1="0%" y1="0%" x2="0%" y2="100%" id="mx-gradient-dae8fc-1-7ea6e0-1-s-0"><stop offset="0%" style="stop-color:#dae8fc"/><stop offset="100%" style="stop-color:#7ea6e0"/></linearGradient><linearGradient x1="0%" y1="0%" x2="0%" y2="100%" id="mx-gradient-fad7ac-1-ffb366-1-s-0"><stop offset="0%" style="stop-color:#fad7ac"/><stop offset="100%" style="stop-color:#FFB366"/></linearGradient></defs><g><path d="M 32.11 170.03 L 43.31 170.03 L 43.31 168.52 L 32.11 168.52 Z M 29.12 175.31 L 29.12 165.56 C 29.12 164.73 29.74 164 30.73 164 L 44.66 164 C 45.91 164 46.29 164.99 46.29 165.58 L 46.29 175.31 L 40.25 175.31 C 39.17 175.38 38.35 175.8 37.71 176.44 C 37.13 175.86 36.23 175.35 35.09 175.31 Z M 12.69 170.03 L 23.89 170.03 L 23.89 168.52 L 12.69 168.52 Z M 9.71 175.31 L 9.71 165.56 C 9.71 164.73 10.32 164 11.32 164 L 25.25 164 C 26.49 164 26.88 164.99 26.88 165.58 L 26.88 175.31 L 20.84 175.31 C 19.75 175.38 18.94 175.8 18.3 176.44 C 17.72 175.87 16.81 175.35 15.68 175.31 Z M 41.81 183.6 L 53.01 183.6 L 53.01 182.09 L 41.81 182.09 Z M 41.81 204.71 L 53.01 204.71 L 53.01 203.2 L 41.81 203.2 Z M 41.81 209.23 L 53.01 209.23 L 53.01 207.72 L 41.81 207.72 Z M 38.83 213 L 38.83 179.08 C 38.83 178.27 39.51 177.58 40.34 177.57 L 54.49 177.57 C 55.27 177.57 56 178.21 56 179.16 L 56 213 Z M 22.4 183.6 L 33.6 183.6 L 33.6 182.09 L 22.4 182.09 Z M 22.4 204.71 L 33.6 204.71 L 33.6 203.2 L 22.4 203.2 Z M 22.4 209.23 L 33.6 209.23 L 33.6 207.72 L 22.4 207.72 Z M 19.41 213 L 19.41 179.08 C 19.41 178.27 20.1 177.58 20.93 177.57 L 35.07 177.57 C 35.86 177.57 36.59 178.21 36.59 179.16 L 36.59 213 Z M 2.99 183.6 L 14.19 183.6 L 14.19 182.09 L 2.99 182.09 Z M 2.99 204.72 L 14.19 204.72 L 14.19 203.21 L 2.99 203.21 Z M 2.99 209.23 L 14.19 209.23 L 14.19 207.72 L 2.99 207.72 Z M 0 213 L 0 179.08 C 0 178.28 0.69 177.58 1.51 177.57 L 15.66 177.57 C 16.45 177.57 17.17 178.21 17.17 179.16 L 17.17 213 Z" fill="#60a917" stroke="#2d7600" stroke-miterlimit="10" pointer-events="all"/><path d="M 102.11 170.03 L 113.31 170.03 L 113.31 168.52 L 102.11 168.52 Z M 99.12 175.31 L 99.12 165.56 C 99.12 164.73 99.74 164 100.73 164 L 114.66 164 C 115.91 164 116.29 164.99 116.29 165.58 L 116.29 175.31 L 110.25 175.31 C 109.17 175.38 108.35 175.8 107.71 176.44 C 107.13 175.86 106.23 175.35 105.09 175.31 Z M 82.69 170.03 L 93.89 170.03 L 93.89 168.52 L 82.69 168.52 Z M 79.71 175.31 L 79.71 165.56 C 79.71 164.73 80.32 164 81.32 164 L 95.25 164 C 96.49 164 96.88 164.99 96.88 165.58 L 96.88 175.31 L 90.84 175.31 C 89.75 175.38 88.94 175.8 88.3 176.44 C 87.72 175.87 86.81 175.35 85.68 175.31 Z M 111.81 183.6 L 123.01 183.6 L 123.01 182.09 L 111.81 182.09 Z M 111.81 204.71 L 123.01 204.71 L 123.01 203.2 L 111.81 203.2 Z M 111.81 209.23 L 123.01 209.23 L 123.01 207.72 L 111.81 207.72 Z M 108.83 213 L 108.83 179.08 C 108.83 178.27 109.51 177.58 110.34 177.57 L 124.49 177.57 C 125.27 177.57 126 178.21 126 179.16 L 126 213 Z M 92.4 183.6 L 103.6 183.6 L 103.6 182.09 L 92.4 182.09 Z M 92.4 204.71 L 103.6 204.71 L 103.6 203.2 L 92.4 203.2 Z M 92.4 209.23 L 103.6 209.23 L 103.6 207.72 L 92.4 207.72 Z M 89.41 213 L 89.41 179.08 C 89.41 178.27 90.1 177.58 90.93 177.57 L 105.07 177.57 C 105.86 177.57 106.59 178.21 106.59 179.16 L 106.59 213 Z M 72.99 183.6 L 84.19 183.6 L 84.19 182.09 L 72.99 182.09 Z M 72.99 204.72 L 84.19 204.72 L 84.19 203.21 L 72.99 203.21 Z M 72.99 209.23 L 84.19 209.23 L 84.19 207.72 L 72.99 207.72 Z M 70 213 L 70 179.08 C 70 178.28 70.69 177.58 71.51 177.57 L 85.66 177.57 C 86.45 177.57 87.17 178.21 87.17 179.16 L 87.17 213 Z" fill="#a20025" stroke="#6f0000" stroke-miterlimit="10" pointer-events="all"/><path d="M 210.42 31.9 L 222.3 31.9 L 222.3 29.66 L 210.42 29.66 Z M 205.23 34.2 L 205.23 25.85 C 205.23 24.58 206.38 23 208.21 23 L 224.55 23 C 226.29 23 227.5 24.53 227.5 25.9 L 227.5 68.56 L 216.36 68.56 L 216.36 62.58 L 222.3 62.58 L 222.3 60.34 L 216.36 60.34 L 216.36 56.61 L 222.3 56.61 L 222.3 54.37 L 216.36 54.37 L 216.36 39.4 C 216.36 36.35 213.84 34.2 211.28 34.2 Z M 183.56 31.9 L 195.61 31.9 L 195.52 29.66 L 183.38 29.66 Z M 178.5 68.56 L 178.5 25.91 C 178.5 24.35 179.91 23 181.36 23 L 197.88 23 C 199.31 23 200.77 24.27 200.77 25.93 L 200.77 34.2 L 194.76 34.2 C 191.68 34.2 189.64 36.83 189.64 39.33 L 189.64 54.37 L 183.7 54.37 L 183.7 56.61 L 189.64 56.61 L 189.64 60.34 L 183.7 60.34 L 183.7 62.58 L 189.64 62.58 L 189.64 68.57 Z M 197.06 45.41 L 208.94 45.41 L 208.94 43.16 L 197.06 43.16 Z M 197.06 70.05 L 208.94 70.05 L 208.94 67.81 L 197.06 67.81 Z M 197.06 76.03 L 208.94 76.03 L 208.94 73.78 L 197.06 73.78 Z M 191.86 82 L 191.86 39.36 C 191.86 37.75 193.31 36.44 194.73 36.44 L 211.18 36.44 C 212.83 36.44 214.14 37.86 214.14 39.37 L 214.14 82 Z" fill="#505050" stroke="none" pointer-events="all"/><path d="M 169.61 170.03 L 180.81 170.03 L 180.81 168.52 L 169.61 168.52 Z M 166.62 175.31 L 166.62 165.56 C 166.62 164.73 167.24 164 168.23 164 L 182.16 164 C 183.41 164 183.79 164.99 183.79 165.58 L 183.79 175.31 L 177.75 175.31 C 176.67 175.38 175.85 175.8 175.21 176.44 C 174.63 175.86 173.73 175.35 172.59 175.31 Z M 150.19 170.03 L 161.39 170.03 L 161.39 168.52 L 150.19 168.52 Z M 147.21 175.31 L 147.21 165.56 C 147.21 164.73 147.82 164 148.82 164 L 162.75 164 C 163.99 164 164.38 164.99 164.38 165.58 L 164.38 175.31 L 158.34 175.31 C 157.25 175.38 156.44 175.8 155.8 176.44 C 155.22 175.87 154.31 175.35 153.18 175.31 Z M 179.31 183.6 L 190.51 183.6 L 190.51 182.09 L 179.31 182.09 Z M 179.31 204.71 L 190.51 204.71 L 190.51 203.2 L 179.31 203.2 Z M 179.31 209.23 L 190.51 209.23 L 190.51 207.72 L 179.31 207.72 Z M 176.33 213 L 176.33 179.08 C 176.33 178.27 177.01 177.58 177.84 177.57 L 191.99 177.57 C 192.77 177.57 193.5 178.21 193.5 179.16 L 193.5 213 Z M 159.9 183.6 L 171.1 183.6 L 171.1 182.09 L 159.9 182.09 Z M 159.9 204.71 L 171.1 204.71 L 171.1 203.2 L 159.9 203.2 Z M 159.9 209.23 L 171.1 209.23 L 171.1 207.72 L 159.9 207.72 Z M 156.91 213 L 156.91 179.08 C 156.91 178.27 157.6 177.58 158.43 177.57 L 172.57 177.57 C 173.36 177.57 174.09 178.21 174.09 179.16 L 174.09 213 Z M 140.49 183.6 L 151.69 183.6 L 151.69 182.09 L 140.49 182.09 Z M 140.49 204.72 L 151.69 204.72 L 151.69 203.21 L 140.49 203.21 Z M 140.49 209.23 L 151.69 209.23 L 151.69 207.72 L 140.49 207.72 Z M 137.5 213 L 137.5 179.08 C 137.5 178.28 138.19 177.58 139.01 177.57 L 153.16 177.57 C 153.95 177.57 154.67 178.21 154.67 179.16 L 154.67 213 Z" fill="#a20025" stroke="#6f0000" stroke-miterlimit="10" pointer-events="all"/><path d="M 242.11 170.03 L 253.31 170.03 L 253.31 168.52 L 242.11 168.52 Z M 239.12 175.31 L 239.12 165.56 C 239.12 164.73 239.74 164 240.73 164 L 254.66 164 C 255.91 164 256.29 164.99 256.29 165.58 L 256.29 175.31 L 250.25 175.31 C 249.17 175.38 248.35 175.8 247.71 176.44 C 247.13 175.86 246.23 175.35 245.09 175.31 Z M 222.69 170.03 L 233.89 170.03 L 233.89 168.52 L 222.69 168.52 Z M 219.71 175.31 L 219.71 165.56 C 219.71 164.73 220.32 164 221.32 164 L 235.25 164 C 236.49 164 236.88 164.99 236.88 165.58 L 236.88 175.31 L 230.84 175.31 C 229.75 175.38 228.94 175.8 228.3 176.44 C 227.72 175.87 226.81 175.35 225.68 175.31 Z M 251.81 183.6 L 263.01 183.6 L 263.01 182.09 L 251.81 182.09 Z M 251.81 204.71 L 263.01 204.71 L 263.01 203.2 L 251.81 203.2 Z M 251.81 209.23 L 263.01 209.23 L 263.01 207.72 L 251.81 207.72 Z M 248.83 213 L 248.83 179.08 C 248.83 178.27 249.51 177.58 250.34 177.57 L 264.49 177.57 C 265.27 177.57 266 178.21 266 179.16 L 266 213 Z M 232.4 183.6 L 243.6 183.6 L 243.6 182.09 L 232.4 182.09 Z M 232.4 204.71 L 243.6 204.71 L 243.6 203.2 L 232.4 203.2 Z M 232.4 209.23 L 243.6 209.23 L 243.6 207.72 L 232.4 207.72 Z M 229.41 213 L 229.41 179.08 C 229.41 178.27 230.1 177.58 230.93 177.57 L 245.07 177.57 C 245.86 177.57 246.59 178.21 246.59 179.16 L 246.59 213 Z M 212.99 183.6 L 224.19 183.6 L 224.19 182.09 L 212.99 182.09 Z M 212.99 204.72 L 224.19 204.72 L 224.19 203.21 L 212.99 203.21 Z M 212.99 209.23 L 224.19 209.23 L 224.19 207.72 L 212.99 207.72 Z M 210 213 L 210 179.08 C 210 178.28 210.69 177.58 211.51 177.57 L 225.66 177.57 C 226.45 177.57 227.17 178.21 227.17 179.16 L 227.17 213 Z" fill="#76608a" stroke="#432d57" stroke-miterlimit="10" pointer-events="all"/><path d="M 312.11 170.03 L 323.31 170.03 L 323.31 168.52 L 312.11 168.52 Z M 309.12 175.31 L 309.12 165.56 C 309.12 164.73 309.74 164 310.73 164 L 324.66 164 C 325.91 164 326.29 164.99 326.29 165.58 L 326.29 175.31 L 320.25 175.31 C 319.17 175.38 318.35 175.8 317.71 176.44 C 317.13 175.86 316.23 175.35 315.09 175.31 Z M 292.69 170.03 L 303.89 170.03 L 303.89 168.52 L 292.69 168.52 Z M 289.71 175.31 L 289.71 165.56 C 289.71 164.73 290.32 164 291.32 164 L 305.25 164 C 306.49 164 306.88 164.99 306.88 165.58 L 306.88 175.31 L 300.84 175.31 C 299.75 175.38 298.94 175.8 298.3 176.44 C 297.72 175.87 296.81 175.35 295.68 175.31 Z M 321.81 183.6 L 333.01 183.6 L 333.01 182.09 L 321.81 182.09 Z M 321.81 204.71 L 333.01 204.71 L 333.01 203.2 L 321.81 203.2 Z M 321.81 209.23 L 333.01 209.23 L 333.01 207.72 L 321.81 207.72 Z M 318.83 213 L 318.83 179.08 C 318.83 178.27 319.51 177.58 320.34 177.57 L 334.49 177.57 C 335.27 177.57 336 178.21 336 179.16 L 336 213 Z M 302.4 183.6 L 313.6 183.6 L 313.6 182.09 L 302.4 182.09 Z M 302.4 204.71 L 313.6 204.71 L 313.6 203.2 L 302.4 203.2 Z M 302.4 209.23 L 313.6 209.23 L 313.6 207.72 L 302.4 207.72 Z M 299.41 213 L 299.41 179.08 C 299.41 178.27 300.1 177.58 300.93 177.57 L 315.07 177.57 C 315.86 177.57 316.59 178.21 316.59 179.16 L 316.59 213 Z M 282.99 183.6 L 294.19 183.6 L 294.19 182.09 L 282.99 182.09 Z M 282.99 204.72 L 294.19 204.72 L 294.19 203.21 L 282.99 203.21 Z M 282.99 209.23 L 294.19 209.23 L 294.19 207.72 L 282.99 207.72 Z M 280 213 L 280 179.08 C 280 178.28 280.69 177.58 281.51 177.57 L 295.66 177.57 C 296.45 177.57 297.17 178.21 297.17 179.16 L 297.17 213 Z" fill="#76608a" stroke="#432d57" stroke-miterlimit="10" pointer-events="all"/><path d="M 382.11 170.03 L 393.31 170.03 L 393.31 168.52 L 382.11 168.52 Z M 379.12 175.31 L 379.12 165.56 C 379.12 164.73 379.74 164 380.73 164 L 394.66 164 C 395.91 164 396.29 164.99 396.29 165.58 L 396.29 175.31 L 390.25 175.31 C 389.17 175.38 388.35 175.8 387.71 176.44 C 387.13 175.86 386.23 175.35 385.09 175.31 Z M 362.69 170.03 L 373.89 170.03 L 373.89 168.52 L 362.69 168.52 Z M 359.71 175.31 L 359.71 165.56 C 359.71 164.73 360.32 164 361.32 164 L 375.25 164 C 376.49 164 376.88 164.99 376.88 165.58 L 376.88 175.31 L 370.84 175.31 C 369.75 175.38 368.94 175.8 368.3 176.44 C 367.72 175.87 366.81 175.35 365.68 175.31 Z M 391.81 183.6 L 403.01 183.6 L 403.01 182.09 L 391.81 182.09 Z M 391.81 204.71 L 403.01 204.71 L 403.01 203.2 L 391.81 203.2 Z M 391.81 209.23 L 403.01 209.23 L 403.01 207.72 L 391.81 207.72 Z M 388.83 213 L 388.83 179.08 C 388.83 178.27 389.51 177.58 390.34 177.57 L 404.49 177.57 C 405.27 177.57 406 178.21 406 179.16 L 406 213 Z M 372.4 183.6 L 383.6 183.6 L 383.6 182.09 L 372.4 182.09 Z M 372.4 204.71 L 383.6 204.71 L 383.6 203.2 L 372.4 203.2 Z M 372.4 209.23 L 383.6 209.23 L 383.6 207.72 L 372.4 207.72 Z M 369.41 213 L 369.41 179.08 C 369.41 178.27 370.1 177.58 370.93 177.57 L 385.07 177.57 C 385.86 177.57 386.59 178.21 386.59 179.16 L 386.59 213 Z M 352.99 183.6 L 364.19 183.6 L 364.19 182.09 L 352.99 182.09 Z M 352.99 204.72 L 364.19 204.72 L 364.19 203.21 L 352.99 203.21 Z M 352.99 209.23 L 364.19 209.23 L 364.19 207.72 L 352.99 207.72 Z M 350 213 L 350 179.08 C 350 178.28 350.69 177.58 351.51 177.57 L 365.66 177.57 C 366.45 177.57 367.17 178.21 367.17 179.16 L 367.17 213 Z" fill="#a0522d" stroke="#6d1f00" stroke-miterlimit="10" pointer-events="all"/><path d="M 146.5 234 L 68.74 234" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 74.62 231.67 L 67.62 234 L 74.62 236.33" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><path d="M 255 234 L 330.76 234" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 324.88 236.33 L 331.88 234 L 324.88 231.67" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><rect x="155" y="224" width="100" height="20" fill="none" stroke="none" pointer-events="all"/><g transform="translate(156.5,226.5)"><switch><foreignObject style="overflow:visible;" pointer-events="all" width="85" height="12" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(0, 0, 0); line-height: 1.2; vertical-align: top; white-space: nowrap; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display:inline-block;text-align:inherit;text-decoration:inherit;">Compute nodes</div></div></foreignObject><text x="43" y="12" fill="#000000" text-anchor="middle" font-size="12px" font-family="Helvetica">Compute nodes</text></switch></g><rect x="150" y="-0.14" width="130" height="20" fill="none" stroke="none" pointer-events="all"/><g transform="translate(151.5,2.5)"><switch><foreignObject style="overflow:visible;" pointer-events="all" width="107" height="12" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(0, 0, 0); line-height: 1.2; vertical-align: top; white-space: nowrap; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display:inline-block;text-align:inherit;text-decoration:inherit;">Control plane nodes</div></div></foreignObject><text x="54" y="12" fill="#000000" text-anchor="middle" font-size="12px" font-family="Helvetica">Control plane nodes</text></switch></g><rect x="190.46" y="60" width="17.33" height="17.33" fill="#ffffff" stroke="none" pointer-events="all"/><image x="189.96" y="59.5" width="17.33" height="17.33" xlink:href="data:image/png;base64,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" preserveAspectRatio="none"/><rect x="158" y="90" width="100" height="40" fill="none" stroke="none" pointer-events="all"/><g transform="translate(159.5,92.5)"><switch><foreignObject style="overflow:visible;" pointer-events="all" width="87" height="40" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(0, 0, 0); line-height: 1.2; vertical-align: top; white-space: nowrap; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display:inline-block;text-align:inherit;text-decoration:inherit;"><div align="center">Kubernetes /</div><div align="center">Netboot Servers</div><div align="center">/ DHCP<br /></div></div></div></foreignObject><text x="44" y="26" fill="#000000" text-anchor="middle" font-size="12px" font-family="Helvetica">[Not supported by viewer]</text></switch></g><rect x="189.5" y="76.57" width="17.33" height="17.33" fill="#ffffff" stroke="none" pointer-events="all"/><image x="189" y="76.07" width="17.33" height="17.33" xlink:href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAIAAAACACAYAAADDPmHLAAAKXUlEQVR4Xu2dN6wdRRSGf0MBBgoydESTWqJNEpQkm9QBJogCYyGRJGgoaLCEwQW2KRCY1CDARIFEQY4W0IEwBgMVOUgEAxJBv3VGLPfd++6Z2T2zM3vPSK96Zyec+e/Mt2dmZxZgNtMOAJYBuEGavxrAkwD+njV3LJixBi8EcCmA6wAcOtL2LQDWALgfwLZZ8cusCGAfACsBrACw95TO/Q7AOvn7duhCGLoAFgG4HsAlAPjrj0kcBR4EcAcAjg6DTEMVwBIANwI4BwDn+zaJXPA0AHLCG20yKvHZIQmgCXaLjZz9lghhMMA4BAEEsLsWAIf8HOkTAHcOARhrFgBhLoAdIa+PRGBcD2AtgCqBsUYB8FfO17jlCWBnJZLfATxQIzDWJADO6wS7pR2AnZUQCIzPALi9FmAsXQAEO3Y4O94K7KzEQGDkK+QTJUcYSxUAwY5DPId6S7D7Rnp/XysVACAwMsK4ocQIY2kCyAV2m4XiGehhYqCIYjvcUAhFAmMpAmBcnhE7a7B7XeZnztP/jHQ2fcHAEReITjIUAoExRBg/NixHlXXfAsgBdgSzjRLAeUflFeAEEcK5hsAZgJERRgqzl9SHAALY8ZfGkK1V+k3mXQZstiYWcggABpguA7BLYh6ax94WgWYHxpwC2FmWYunQwzReSbQh2N0lAZofEvMYfWwvWUlk4MkSGD8VNskGjDkEQLC7Wv4sI3YfifMeAsB51iJRxLmA8W6JMIY3FYv2wFIABDuSNTdgxC7FxjT2NRk+x4FdTD4xtoMBRgsB5AC7vyTAwojbppieM7A9XgJVlsDIN5YQYewUGLsSAMGOr1CM2FmD3X0SWEkFOwMNbM8yJzAywsg3m9Z7GNsKIBfYfS3zIVfeugI7KyHkBMYQYeQbT1JKFUBOsKPaCXZ/JLWwv4dyAeP3jSXpaGCMFUAusHtVwO7ZMRG7/ro0rWT6+GyZHq0jjPyh8AfDULcqaQWQC+xCxK5vsFM5L8EoFzByD6NqSXo+AeSK2P0KIIDdZwlOrfGRXMA4dQ/jJAGcB2CV8VIswY4ROwY8Sgc7K5HlAkZua79J3hz+15ZJAngMwPlGrWbErlawM3IJcgDj4wAuGG1ATgEMCeyshGAJjL0J4GdR3gtWXhtovmcAeATAbh21rzcBsP4EvXslgvd5Rw0aajYHyxpK10vQvQogdBZj+KwIX1HeHWoPJrbruMaawo6Jecz3WBECaFbwFRHCcwMI9qT2F+f8s6TjT07NRPlccQII9f5Q1vEfrjDcq/T9HLOdAFws+yCPSM0k8rliBRDa8VUjLvBjZONqMd+zsbNov8yVLl4AwR+/NCKDQwHGgxpgt2vmjg/FVSOAJjAyIEVgfK8np7Ut9liZ3xlZtQC7mPqZCeAemc8YzbJKL8vqYA3ASLA7Uzr+FCuHyL5Hrv5dqSzDTABsMHfKhk+1Gd+2SgRGhpEJjH9aFZKYL8HuIgG7IxPz0Dw2uv4/+oHLpDxMBRAK5d55BjC49ZsrXlbpywYw/mRViDLfPRpgt7/ymRQzbhkftwOoKAGEhnEpmfMeP/7gGrhVIjCGCOMXVoVMyPdAAbvLAViCHb9mIgdN+mikSAE0fcZdMNwsyl0x2g0osX3JCGMuYDxG2sPVUiuwY6eGg6mm7QIuXgChM/nlLb8T4IcV1sDIX8zzHUYYKVwuzlDIp8aqM8I+5cPRagQQ/JALGD9oRBhTgTGAHYV7VERHxpq22dhZnQBqAMbdAVwF4BoA1mAXThtL3dpdrQCawMivaji89g2MB8gbzBUdrsOPGw26/Bq4egGMAiPfHPiVkSUwPipk/b4UfrQIkFumrMDO6gCpQQkgiIGfj4czfi2B8SUp8LTYSTvCPgXsIrKfc9LJpGezBIJiKq6xzQWMmrrE2uQ6E2iQI8CosxlhDOf8W0YYYzt5nH3uU8FmQgCjwEhO4Dk+JaUuwS6mXTMlgHHAyAhj2yPhYxzetLUCu5j6zKwAcgNjs1PC2cB8h+/7qLeZF0DomHAtDM8jslqSzgV2PgLEeGDENgAjl6RHL4ZKzTY32MXU00eACd4iFzDC2AYYp35dG9NTRrYuAIVjTwRwK4DTFbY0eRHALZUc+e4CUHYqw7wMAWvShbK/QGPbt40LQNkDLgCjz8OtFm2U/ao2cwG4AHwKGP25dHFAhI8A6kHIxNAZQOlWnwJ8CvApwKcA3XDhr4ERp4Q5A+hEZWXlDKD0rDOAM4AzgDOAbrhwBnAG2P6tYQ3JGUDZS84AzgDOAM4AuuHCGcAZwBlAe1y8B4J0o4qVlUOg0rMOgQ6BDoEOgbrhwiHQIdAh0CFQN1r0beUQqOwBh0CHQIdAh0DdcOEQ6BDoEOgQqBst+rZyCFT2gEOgQ6BDoEOgbrhwCHQIdAh0CNSNFn1bOQQqe8Ah0CHQIdAhUDdcOAQ6BDoEaiFwKYBnOryfR/cbjbcaGgNwLyaPyX1K6Qqz4+JZ/ma50PHBgm8AH4oAeH8CL97iPUa8iEubTAUQKvE1gHUA1gPgRUglpdoFwONvV8gNrbxHITZlEUCoFC9A2iC3dm2NramRfa0C4P0I/LXzvgQeg5uasgogVJLHqW+U+3k2pda8o+dqEwAv0OJFWjzutovj8HsRQLPveAMmL3TsCxhrEADBjhdm8Xxj3rjaZepdAKExBEaes09g5Ln7uVLJAkgFuxjfRQmAFz+vArAopoRI228ArM0IjCUKoC3YaV3OSy1ulun4f8/M910f5x0OR5yHlmhLSrDLBYwlCaArsJvm7jcArJaLqMljc5L2w87FMi8t6whIxtWFFeQV6eQEXpnedSpBAF2D3SQ/Pikdz/sO5k1aAYRMeANHeCVZOC3zFv8nMAblapc7pxXXlwAswa7Z5m0A7he+4g0nqhQrgJDp3gB4Nw//eFePVeoSGHMLgGC3XO4ijonYxfryWwm+MQDHO42iUqoAQiEcBdhIjgqlA2MuARDswo8jJWKn7UCCHd+mHmjzNtVWAKGyOYExDHOfaj0ldtYCKAbsYvzSlQCaZZYKjFYC4A2mfFOyBmQ12PUtgFKBsUsBBLBjx/NCKquUBHYxlbEYAUbLzwmMa+aZE7sQQAA7Mg+vuLdKrcAuplI5BNAHMJKI+ddckm4jgAB2K43ferbIvopWYFeqAJrAyF1EXPCwjjA2gTFFALnA7k0JgD0NYGzELqZTY2xzjgDj6kUBUAgURBdLnuPKoEMJUIwpMB6uSbfJbpsqwU7TwGDTtwBCPRhD4LzKmIJlhDHGN1a25mAXU/FSBBDqnAsYY3zUlW02sIupcGkCyA2MMb5Ktc0OdjEVLVUAuYExxmda297ATltB2pUugGZbcgBjjO/mA06uZE5dim1bWBfP1ySAkoGxKLCLEUaNAgjt4zJ0WHUjPPaRigS7GEfULIA+gZFgF5Zi+euvNg1BADmBsQqwi1HjkARgBYwhklgN2LkA/vNAmwhjtWDnApjrgRBh5GreNGCsHuxcAJM9MN8exsGAnQtguge48hiWpGnN+Z0HLWRdip1eTXuLfwH6UDmuvrdh8gAAAABJRU5ErkJggg==" preserveAspectRatio="none"/><rect x="206.35" y="69.17" width="17.33" height="17.33" fill="#ffffff" stroke="none" pointer-events="all"/><image x="205.85" y="68.67" width="17.33" height="17.33" xlink:href="data:image/png;base64,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" preserveAspectRatio="none"/><rect x="323" y="2" width="70" height="22" fill="url(#mx-gradient-d5e8d4-1-97d077-1-s-0)" stroke="#82b366" pointer-events="all"/><g transform="translate(336.5,6.5)"><switch><foreignObject style="overflow:visible;" pointer-events="all" width="42" height="12" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(0, 0, 0); line-height: 1.2; vertical-align: top; width: 44px; white-space: nowrap; overflow-wrap: normal; text-align: center;"><div xmlns="http://www.w3.org/1999/xhtml" style="display:inline-block;text-align:inherit;text-decoration:inherit;white-space:normal;">cluster1</div></div></foreignObject><text x="21" y="12" fill="#000000" text-anchor="middle" font-size="12px" font-family="Helvetica">cluster1</text></switch></g><rect x="323" y="34" width="70" height="22" fill="url(#mx-gradient-f8cecc-1-ea6b66-1-s-0)" stroke="#b85450" pointer-events="all"/><g transform="translate(336.5,38.5)"><switch><foreignObject style="overflow:visible;" pointer-events="all" width="42" height="12" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(0, 0, 0); line-height: 1.2; vertical-align: top; width: 44px; white-space: nowrap; overflow-wrap: normal; text-align: center;"><div xmlns="http://www.w3.org/1999/xhtml" style="display:inline-block;text-align:inherit;text-decoration:inherit;white-space:normal;">cluster2</div></div></foreignObject><text x="21" y="12" fill="#000000" text-anchor="middle" font-size="12px" font-family="Helvetica">cluster2</text></switch></g><rect x="323" y="64.5" width="70" height="22" fill="url(#mx-gradient-dae8fc-1-7ea6e0-1-s-0)" stroke="#6c8ebf" pointer-events="all"/><g transform="translate(336.5,69.5)"><switch><foreignObject style="overflow:visible;" pointer-events="all" width="42" height="12" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(0, 0, 0); line-height: 1.2; vertical-align: top; width: 44px; white-space: nowrap; overflow-wrap: normal; text-align: center;"><div xmlns="http://www.w3.org/1999/xhtml" style="display:inline-block;text-align:inherit;text-decoration:inherit;white-space:normal;">cluster3</div></div></foreignObject><text x="21" y="12" fill="#000000" text-anchor="middle" font-size="12px" font-family="Helvetica">cluster3</text></switch></g><rect x="323" y="93.9" width="70" height="22" fill="url(#mx-gradient-fad7ac-1-ffb366-1-s-0)" stroke="#b46504" pointer-events="all"/><g transform="translate(336.5,98.5)"><switch><foreignObject style="overflow:visible;" pointer-events="all" width="42" height="12" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(0, 0, 0); line-height: 1.2; vertical-align: top; width: 44px; white-space: nowrap; overflow-wrap: normal; text-align: center;"><div xmlns="http://www.w3.org/1999/xhtml" style="display:inline-block;text-align:inherit;text-decoration:inherit;white-space:normal;">cluster4</div></div></foreignObject><text x="21" y="12" fill="#000000" text-anchor="middle" font-size="12px" font-family="Helvetica">cluster4</text></switch></g><path d="M 323 13 L 238.8 51.36" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 234.02 53.54 L 238.94 47.45 L 238.8 51.36 L 241.84 53.82 Z" fill="#000000" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><path d="M 323 45 L 239.23 62.68" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 234.09 63.77 L 240.22 58.9 L 239.23 62.68 L 241.67 65.75 Z" fill="#000000" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><path d="M 323 75.08 L 239.37 74.08" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 234.12 74.01 L 241.16 70.6 L 239.37 74.08 L 241.08 77.6 Z" fill="#000000" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><path d="M 323 104.9 L 239.2 85.44" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 234.09 84.25 L 241.7 82.43 L 239.2 85.44 L 240.12 89.25 Z" fill="#000000" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/></g></svg>
\ No newline at end of file
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot01.svg b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot01.svg
new file mode 100644
index 0000000000..71b1274b91
--- /dev/null
+++ b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot01.svg
@@ -0,0 +1,5238 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<svg
+   width="1190"
+   height="614.14166"
+   version="1.1"
+   id="svg374"
+   sodipodi:docname="screenshot01.svg"
+   inkscape:version="1.1.1 (c3084ef, 2021-09-22)"
+   xmlns:inkscape="http://www.inkscape.org/namespaces/inkscape"
+   xmlns:sodipodi="http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd"
+   xmlns="http://www.w3.org/2000/svg"
+   xmlns:svg="http://www.w3.org/2000/svg">
+  <defs
+     id="defs378">
+    <clipPath
+       clipPathUnits="userSpaceOnUse"
+       id="clipPath4089">
+      <rect
+         style="fill:#ff0000"
+         id="rect4091"
+         width="1830.3037"
+         height="775.75787"
+         x="-371.71732"
+         y="-161.61623" />
+    </clipPath>
+  </defs>
+  <sodipodi:namedview
+     id="namedview376"
+     pagecolor="#ffffff"
+     bordercolor="#666666"
+     borderopacity="1.0"
+     inkscape:pageshadow="2"
+     inkscape:pageopacity="0.0"
+     inkscape:pagecheckerboard="0"
+     showgrid="false"
+     inkscape:zoom="0.81088158"
+     inkscape:cx="786.18138"
+     inkscape:cy="654.84285"
+     inkscape:window-width="1416"
+     inkscape:window-height="814"
+     inkscape:window-x="12"
+     inkscape:window-y="25"
+     inkscape:window-maximized="0"
+     inkscape:current-layer="svg374" />
+  <g
+     id="g3983"
+     clip-path="url(#clipPath4089)">
+    <rect
+       width="1190"
+       height="651.29999"
+       rx="0"
+       ry="0"
+       class="a"
+       id="rect2"
+       x="0"
+       y="0" />
+    <svg
+       height="651.29999"
+       viewBox="0 0 119 65.13"
+       width="1190"
+       version="1.1"
+       id="svg372">
+      <style
+         id="style4">.a{fill:#282d35}.e{fill:#00d7ff}.f,.g{fill:#000;white-space:pre}.g{font-weight:700}.h{fill:#005f87}.i{fill:#00d7ff;white-space:pre}.j{fill:#eee}.j,.k,.l,.m{white-space:pre}.k{fill:#fff;font-weight:700}.l,.m{fill:#005f87}.m{fill:#a8cc8c}.n{fill:#b9c0cb}.n,.p{white-space:pre}.p,.q{fill:#262626}.r{fill:#af5fd7;white-space:pre}</style>
+      <g
+         font-family="Monaco, Consolas, Menlo, 'Bitstream Vera Sans Mono', 'Powerline Symbols', monospace"
+         font-size="1.67px"
+         id="g370">
+        <defs
+           id="defs12">
+          <symbol
+             id="a">
+            <path
+               fill="transparent"
+               d="M 0,0 H 119 V 30 H 0 Z"
+               id="path6" />
+          </symbol>
+          <symbol
+             id="b">
+            <path
+               fill="#6f7683"
+               d="M 0,0 H 1.102 V 2.171 H 0 Z"
+               id="path9" />
+          </symbol>
+        </defs>
+        <path
+           class="a"
+           d="M 0,0 H 119 V 65.13 H 0 Z"
+           id="path14"
+           style="fill:#000000" />
+        <svg
+           width="119"
+           version="1.1"
+           id="svg368"
+           height="100%">
+          <svg
+             version="1.1"
+             id="svg366"
+             width="100%"
+             height="100%">
+            <g
+               id="use16">
+              <path
+                 fill="transparent"
+                 d="M 0,0 H 119 V 30 H 0 Z"
+                 id="path704" />
+            </g>
+            <g
+               id="use18"
+               transform="translate(16.996,58.591999)">
+              <path
+                 fill="#6f7683"
+                 d="M 0,0 H 1.102 V 2.171 H 0 Z"
+                 id="path708" />
+            </g>
+            <path
+               class="e"
+               d="M 0,0 H 1 V 2.171 H 0 Z"
+               id="path20" />
+            <g
+               id="text22"
+               class="f"
+               style="white-space:pre" />
+            <path
+               class="e"
+               d="m 1.002,0 h 5 v 2.171 h -5 z"
+               id="path24" />
+            <g
+               aria-label="kvaps"
+               id="text26"
+               class="g"
+               style="font-weight:700;white-space:pre">
+              <path
+                 d="M 1.1691631,1.67 V 0.35389648 H 1.320833 V 1.1807422 L 1.7587187,0.75916502 H 1.9609453 L 1.523875,1.1807422 1.9723613,1.67 h -0.20875 L 1.320833,1.1807422 V 1.67 Z"
+                 style="font-weight:700;white-space:pre"
+                 id="path713" />
+              <path
+                 d="M 2.4257402,1.67 2.0302568,0.75916502 H 2.1966045 L 2.508914,1.4800048 2.827747,0.75916502 H 2.9794169 L 2.5806718,1.67 Z"
+                 style="font-weight:700;white-space:pre"
+                 id="path715" />
+              <path
+                 d="m 3.7296123,1.4653271 q -0.069312,0.1141602 -0.1671631,0.1720557 -0.097036,0.057896 -0.1785791,0.057896 -0.1141602,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581934 0.060342,-0.2821387 0.060342,-0.1247607 0.1614551,-0.19651851 0.1011133,-0.0725733 0.2503369,-0.0725733 0.043218,0 0.1304687,0.00897 0.013047,0.001631 0.039141,0.004077 H 3.8820976 V 1.402539 q 0,0.1647168 0.034248,0.267461 H 3.7581523 Q 3.7402133,1.59498 3.7296123,1.4653271 Z m 0,-0.1802099 V 0.89452634 q -0.080728,-0.0212012 -0.1500391,-0.0212012 -0.1402539,0 -0.2340283,0.10845215 -0.092959,0.10845221 -0.092959,0.29518561 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166064,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533005,-0.1932565 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path717" />
+              <path
+                 d="m 4.2726886,0.96383787 q 0.070127,-0.11416016 0.1671631,-0.17205566 0.097036,-0.0578955 0.1785791,-0.0578955 0.1141601,0 0.2054882,0.098667 0.091328,0.098667 0.091328,0.29926269 0,0.1581933 -0.061157,0.2829541 Q 4.793748,1.5387158 4.692635,1.611289 4.5915217,1.683047 4.442298,1.683047 q -0.042402,0 -0.1304687,-0.00897 Q 4.2987823,1.6724462 4.2726886,1.67 V 2.0238964 H 4.1210187 V 0.75916502 h 0.1516699 z m 0,0.18020993 v 0.3905908 q 0.082358,0.021201 0.1516699,0.021201 0.1378076,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.051372,-0.20467283 -0.051372,-0.0684961 -0.1166064,-0.0684961 -0.070942,0 -0.1565625,0.0717578 -0.084805,0.0717578 -0.153301,0.19325703 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path719" />
+              <path
+                 d="M 5.1443828,1.6218896 V 1.46125 q 0.091328,0.059526 0.1932568,0.083989 0.1019287,0.023648 0.1728711,0.023648 0.1149756,0 0.1655322,-0.036694 0.050557,-0.03751 0.050557,-0.092959 0,-0.036694 -0.023648,-0.062788 Q 5.6793049,1.350352 5.5855301,1.312027 L 5.5333428,1.2908252 5.4281523,1.2492382 Q 5.258543,1.1831884 5.2145098,1.1269238 5.1696611,1.0714746 5.1696611,0.99156247 q 0,-0.11252929 0.086436,-0.18510253 0.087251,-0.0725732 0.2821386,-0.0725732 0.1459619,0 0.2764307,0.0424023 V 0.91409666 Q 5.6646269,0.8602783 5.5325273,0.8602783 q -0.096221,0 -0.1508545,0.034248 -0.053818,0.0334326 -0.053818,0.0839893 0,0.0489258 0.047295,0.0782812 0.04648,0.029355 0.1516699,0.067681 l 0.1027442,0.03751 q 0.1410693,0.051372 0.1981494,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.091328,0.1948877 -0.090513,0.075835 -0.2902929,0.075835 -0.174502,0 -0.3587896,-0.073389 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path721" />
+            </g>
+            <path
+               class="e"
+               d="m 6.012,0 h 1 v 2.171 h -1 z"
+               id="path28" />
+            <g
+               id="text30"
+               class="f"
+               style="white-space:pre" />
+            <path
+               class="h"
+               d="m 7.014,0 h 1 v 2.171 h -1 z"
+               id="path32" />
+            <g
+               aria-label=""
+               id="text34"
+               class="i"
+               style="white-space:pre;fill:#00d7ff">
+              <path
+                 d="M 7.0139999,0.10029785 8.0398105,1.0910449 7.0139999,2.0834228 Z"
+                 style="white-space:pre;fill:#00d7ff"
+                 id="path725" />
+            </g>
+            <path
+               class="h"
+               d="m 8.016,0 h 1 v 2.171 h -1 z"
+               id="path36" />
+            <g
+               id="text38"
+               class="j"
+               style="white-space:pre;fill:#eeeeee" />
+            <path
+               class="h"
+               d="m 9.018,0 h 1 v 2.171 h -1 z"
+               id="path40" />
+            <g
+               aria-label="~"
+               id="text42"
+               class="k"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 9.0636637,1.3413818 v -0.014678 q 0,-0.1068213 0.062788,-0.1851026 0.063603,-0.079097 0.1704248,-0.079097 0.026909,0 0.052188,0.00571 0.026094,0.00489 0.058711,0.017939 0.032617,0.012231 0.097852,0.048926 l 0.098667,0.054634 q 0.090513,0.049741 0.1475927,0.049741 0.060342,0 0.088882,-0.043218 0.029356,-0.044033 0.029356,-0.095405 V 1.0877832 H 9.9744986 V 1.10083 q 0,0.1361768 -0.077466,0.2014112 -0.07665,0.064419 -0.1630859,0.064419 -0.080728,0 -0.2136426,-0.075835 l -0.083174,-0.04811 q -0.09459,-0.053818 -0.1524853,-0.053818 -0.032617,0 -0.061157,0.017124 -0.027725,0.017124 -0.044849,0.054634 -0.017124,0.03751 -0.017124,0.06605 v 0.014678 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path729" />
+            </g>
+            <path
+               class="h"
+               d="m 10.02,0 h 1 v 2.171 h -1 z"
+               id="path44" />
+            <g
+               aria-label="/"
+               id="text46"
+               class="j"
+               style="white-space:pre;fill:#eeeeee">
+              <path
+                 d="M 10.196133,1.7083252 H 10.04691 l 0.804829,-1.34138185 h 0.144331 z"
+                 style="white-space:pre;fill:#eeeeee"
+                 id="path732" />
+            </g>
+            <path
+               class="h"
+               d="m 11.022,0 h 3 v 2.171 h -3 z"
+               id="path48" />
+            <g
+               aria-label="tmp"
+               id="text50"
+               class="k"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 11.910003,1.6333056 q -0.106821,0.044849 -0.154931,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119869,-0.1084521 -0.03996,-0.071758 -0.03996,-0.2217969 V 0.96139158 h -0.227504 v -0.1263916 h 0.227504 V 0.46805663 h 0.15167 v 0.36694335 h 0.405269 v 0.1263916 H 11.479456 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path735" />
+              <path
+                 d="M 12.081243,1.67 V 0.75916502 h 0.132916 v 0.20874999 q 0.06279,-0.13291503 0.116606,-0.18347167 0.05463,-0.0505566 0.110083,-0.0505566 0.06605,0 0.106006,0.0521875 0.04077,0.0513721 0.04077,0.14677734 v 0.0489258 q 0.02691,-0.0831738 0.06442,-0.1345459 0.03833,-0.0521875 0.0791,-0.0823584 0.04077,-0.0309863 0.09377,-0.0309863 0.05871,0 0.100298,0.0497412 0.04159,0.0497412 0.04159,0.19814941 V 1.67 H 12.833885 V 1.0478271 q 0,-0.0766504 -0.0049,-0.10437498 -0.0049,-0.02854 -0.01957,-0.0432178 -0.01468,-0.0146777 -0.0318,-0.0146777 -0.0424,0 -0.09133,0.0652344 -0.04811,0.0644189 -0.09867,0.21445798 V 1.67 H 12.460418 V 1.0486426 q 0,-0.12068364 -0.02365,-0.14188481 -0.02365,-0.0212012 -0.0424,-0.0212012 -0.04159,0 -0.0897,0.0725732 -0.0473,0.0725732 -0.09051,0.18591791 V 1.67 Z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path737" />
+              <path
+                 d="m 13.291341,0.96383787 q 0.07013,-0.11416016 0.167163,-0.17205566 0.09704,-0.0578955 0.178579,-0.0578955 0.11416,0 0.205489,0.098667 0.09133,0.098667 0.09133,0.29926269 0,0.1581933 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101113,0.071758 -0.250336,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 v 0.3538964 h -0.15167 V 0.75916502 h 0.15167 z m 0,0.18020993 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.20467283 -0.05137,-0.0684961 -0.116607,-0.0684961 -0.07094,0 -0.156562,0.0717578 -0.0848,0.0717578 -0.153301,0.19325683 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path739" />
+            </g>
+            <path
+               class="h"
+               d="m 14.028,0 h 1 v 2.171 h -1 z"
+               id="path52" />
+            <g
+               id="text54"
+               class="j"
+               style="white-space:pre;fill:#eeeeee" />
+            <g
+               aria-label=""
+               id="text56"
+               class="l"
+               style="white-space:pre;fill:#005f87">
+              <path
+                 d="M 15.03,0.10029785 16.05581,1.0910449 15.03,2.0834228 Z"
+                 style="white-space:pre;fill:#005f87"
+                 id="path743" />
+            </g>
+            <g
+               aria-label="helm"
+               id="text58"
+               class="m"
+               style="white-space:pre;fill:#a8cc8c">
+              <path
+                 d="M 17.160392,1.67 V 0.35389648 h 0.15167 v 0.60423338 q 0.06523,-0.10519043 0.157378,-0.16471679 0.09214,-0.0595264 0.184287,-0.0595264 0.07747,0 0.141069,0.0399561 0.06442,0.0391406 0.0897,0.0954053 0.02039,0.0432178 0.02772,0.0921436 0.0073,0.0481103 0.0073,0.19978023 V 1.67 h -0.15167 V 1.142417 q 0,-0.1312842 -0.01305,-0.17287113 -0.01223,-0.0424023 -0.04648,-0.0693115 -0.03343,-0.0269092 -0.07339,-0.0269092 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.18999503 V 1.67 Z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path746" />
+              <path
+                 d="m 18.919274,1.6096582 q -0.181841,0.086436 -0.344112,0.086436 -0.123129,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.05789,-0.1141601 -0.05789,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.16227,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715815 v 0.032617 h -0.62789 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 18.31341,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06686,0.0668652 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path748" />
+              <path
+                 d="M 19.407716,1.67 V 0.4811035 H 19.135363 V 0.35389648 h 0.424023 V 1.5436084 h 0.284585 V 1.67 Z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path750" />
+              <path
+                 d="M 20.095939,1.67 V 0.75916502 h 0.132915 v 0.20874999 q 0.06279,-0.13291503 0.116606,-0.18347167 0.05463,-0.0505566 0.110083,-0.0505566 0.06605,0 0.106006,0.0521875 0.04077,0.0513721 0.04077,0.14677734 v 0.0489258 q 0.02691,-0.0831738 0.06442,-0.1345459 0.03833,-0.0521875 0.0791,-0.0823584 0.04077,-0.0309863 0.09378,-0.0309863 0.05871,0 0.100298,0.0497412 0.04159,0.0497412 0.04159,0.19814941 V 1.67 H 20.848581 V 1.0478271 q 0,-0.0766504 -0.0049,-0.10437498 -0.0049,-0.02854 -0.01957,-0.0432178 -0.01468,-0.0146777 -0.0318,-0.0146777 -0.0424,0 -0.09133,0.0652344 -0.04811,0.0644189 -0.09867,0.21445798 V 1.67 H 20.475114 V 1.0486426 q 0,-0.12068364 -0.02365,-0.14188481 -0.02365,-0.0212012 -0.0424,-0.0212012 -0.04159,0 -0.0897,0.0725732 -0.04729,0.0725732 -0.09051,0.18591791 V 1.67 Z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path752" />
+            </g>
+            <g
+               aria-label="install"
+               id="text60"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 22.425622,1.67 V 0.88555662 h -0.252783 v -0.1263916 h 0.404453 V 1.5436084 H 22.83089 V 1.67 Z m -0.02528,-1.23945314 q 0,-0.0513721 0.03506,-0.0766504 0.03506,-0.0252783 0.06605,-0.0252783 0.0318,0 0.06686,0.0252783 0.03506,0.0252783 0.03506,0.0766504 0,0.0505566 -0.03506,0.075835 -0.03506,0.0252783 -0.06686,0.0252783 -0.03099,0 -0.06605,-0.0252783 -0.03506,-0.0252783 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path755" />
+              <path
+                 d="M 23.17174,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.06523,-0.10519043 0.157378,-0.16471679 0.09214,-0.0595264 0.184287,-0.0595264 0.08073,0 0.146777,0.0432178 0.06605,0.0424023 0.09214,0.11171387 0.02691,0.0693115 0.02691,0.27235346 V 1.67 h -0.15167 V 1.142417 q 0,-0.1312842 -0.01305,-0.17287113 -0.01223,-0.0424023 -0.04648,-0.0693115 -0.03343,-0.0269092 -0.07339,-0.0269092 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.18999503 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path757" />
+              <path
+                 d="M 24.183688,1.6218896 V 1.46125 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114976,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117421,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.16961,-0.06605 -0.213643,-0.1223144 -0.04485,-0.055449 -0.04485,-0.13536133 0,-0.11252929 0.08644,-0.18510253 0.08725,-0.0725732 0.282139,-0.0725732 0.145962,0 0.27643,0.0424023 v 0.13780762 q -0.150039,-0.0538184 -0.282138,-0.0538184 -0.09622,0 -0.150855,0.034248 -0.05382,0.0334326 -0.05382,0.0839893 0,0.0489258 0.0473,0.0782812 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path759" />
+              <path
+                 d="m 25.936047,1.6333056 q -0.106822,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084521 Q 25.35383,1.478374 25.35383,1.3283349 V 0.96139158 H 25.126325 V 0.83499998 H 25.35383 V 0.46805663 h 0.15167 v 0.36694335 h 0.405268 v 0.1263916 H 25.5055 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path761" />
+              <path
+                 d="m 26.774308,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101113,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152486 V 1.402539 q 0,0.1647168 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234028,0.10845215 -0.09296,0.10845221 -0.09296,0.29518561 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path763" />
+              <path
+                 d="M 27.421759,1.67 V 0.4811035 H 27.149406 V 0.35389648 h 0.424023 V 1.5436084 h 0.284585 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path765" />
+              <path
+                 d="M 28.423107,1.67 V 0.4811035 H 28.150754 V 0.35389648 h 0.424023 V 1.5436084 h 0.284585 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path767" />
+            </g>
+            <g
+               aria-label="foo"
+               id="text62"
+               style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 30.398403,1.67 V 0.96139158 h -0.202227 v -0.1263916 h 0.202227 v -0.0424023 q 0,-0.18020996 0.04077,-0.26664551 0.04077,-0.0864355 0.125576,-0.14188476 0.08562,-0.0554492 0.225874,-0.0554492 0.106006,0 0.215274,0.0220166 v 0.14433105 q -0.118237,-0.0391406 -0.209566,-0.0391406 -0.07257,0 -0.128022,0.0269092 -0.05545,0.0269092 -0.08725,0.0880664 -0.03099,0.0603418 -0.03099,0.20548827 v 0.0587109 h 0.361235 v 0.1263916 H 30.550073 V 1.67 Z"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 id="path770" />
+              <path
+                 d="m 31.562836,1.6952783 q -0.195703,0 -0.313125,-0.1361768 -0.117421,-0.1369922 -0.117421,-0.3449267 0,-0.2079346 0.117421,-0.34411135 0.117422,-0.13617675 0.313125,-0.13617675 0.194888,0 0.31231,0.13617675 0.117422,0.13617675 0.117422,0.34411135 0,0.2079345 -0.117422,0.3449267 -0.117422,0.1361768 -0.31231,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.1647168 -0.07176,-0.25930666 -0.07176,-0.0945898 -0.193257,-0.0945898 -0.122314,0 -0.194072,0.0945898 -0.07176,0.0945899 -0.07176,0.25930666 0,0.1655322 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 id="path772" />
+              <path
+                 d="m 32.564184,1.6952783 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369922 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.34411135 0.117422,-0.13617675 0.313125,-0.13617675 0.194888,0 0.31231,0.13617675 0.117421,0.13617675 0.117421,0.34411135 0,0.2079345 -0.117421,0.3449267 -0.117422,0.1361768 -0.31231,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.1647168 -0.07176,-0.25930666 -0.07176,-0.0945898 -0.193257,-0.0945898 -0.122314,0 -0.194072,0.0945898 -0.07176,0.0945899 -0.07176,0.25930666 0,0.1655322 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 id="path774" />
+            </g>
+            <g
+               aria-label="kvaps/kubernetes"
+               id="text64"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 34.235164,1.67 V 0.35389648 h 0.15167 V 1.1807422 L 34.82472,0.75916502 h 0.202226 L 34.589876,1.1807422 35.038362,1.67 h -0.20875 L 34.386834,1.1807422 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path777" />
+              <path
+                 d="M 35.491741,1.67 35.096258,0.75916502 h 0.166347 l 0.31231,0.72083978 0.318833,-0.72083978 h 0.15167 L 35.646673,1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path779" />
+              <path
+                 d="m 36.795613,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101113,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130468,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152485 V 1.402539 q 0,0.1647168 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234028,0.10845215 -0.09296,0.10845221 -0.09296,0.29518561 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path781" />
+              <path
+                 d="m 37.338689,0.96383787 q 0.07013,-0.11416016 0.167163,-0.17205566 0.09704,-0.0578955 0.17858,-0.0578955 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.29926269 0,0.1581933 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101114,0.071758 -0.250337,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 v 0.3538964 h -0.15167 V 0.75916502 h 0.15167 z m 0,0.18020993 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.20467283 -0.05137,-0.0684961 -0.116606,-0.0684961 -0.07094,0 -0.156563,0.0717578 -0.08481,0.0717578 -0.153301,0.19325683 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path783" />
+              <path
+                 d="M 38.210384,1.6218896 V 1.46125 q 0.09133,0.059526 0.193256,0.083989 0.101929,0.023648 0.172872,0.023648 0.114975,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 L 38.599342,1.290826 38.494151,1.249239 q -0.169609,-0.06605 -0.213642,-0.1223144 -0.04485,-0.055449 -0.04485,-0.13536133 0,-0.11252929 0.08644,-0.18510253 0.08725,-0.0725732 0.282139,-0.0725732 0.145962,0 0.276431,0.0424023 v 0.13780762 q -0.150039,-0.0538184 -0.282139,-0.0538184 -0.09622,0 -0.150854,0.034248 -0.05382,0.0334326 -0.05382,0.0839893 0,0.0489258 0.04729,0.0782812 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.14107,0.051372 0.19815,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path785" />
+              <path
+                 d="m 39.250872,1.7083252 h -0.149224 l 0.804829,-1.34138185 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path787" />
+              <path
+                 d="M 40.24325,1.67 V 0.35389648 h 0.15167 V 1.1807422 l 0.437886,-0.42157718 h 0.202226 L 40.597962,1.1807422 41.046448,1.67 h -0.20875 L 40.39492,1.1807422 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path789" />
+              <path
+                 d="M 41.953206,0.75916502 V 1.67 h -0.15167 V 1.4702197 q -0.07339,0.1125293 -0.163086,0.1687939 -0.0897,0.056265 -0.179394,0.056265 -0.07991,0 -0.146778,-0.042402 -0.06605,-0.043218 -0.09214,-0.1125293 -0.02609,-0.070127 -0.02609,-0.2723535 V 0.75916502 h 0.15167 V 1.286748 q 0,0.1312842 0.01223,0.1736865 0.01305,0.041587 0.04648,0.068496 0.03425,0.026909 0.07339,0.026909 0.07991,0 0.17124,-0.07502 0.09214,-0.075835 0.152485,-0.1908106 V 0.75916502 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path791" />
+              <path
+                 d="m 42.345428,0.96383787 q 0.07013,-0.11416016 0.167163,-0.17205566 0.09704,-0.0578955 0.178579,-0.0578955 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.29926269 0,0.1581933 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101113,0.071758 -0.250337,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 h -0.15167 V 0.35389648 h 0.15167 z m 0,0.18020993 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137807,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.20467283 -0.05137,-0.0684961 -0.116606,-0.0684961 -0.07094,0 -0.156563,0.0717578 -0.0848,0.0717578 -0.1533,0.19325683 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path793" />
+              <path
+                 d="m 43.964055,1.6096582 q -0.18184,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154931,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.162271,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715815 v 0.032617 H 43.34922 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 43.358191,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06687,0.0668652 -0.09378,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path795" />
+              <path
+                 d="M 44.285335,1.67 V 0.75916502 h 0.151669 v 0.19896484 q 0.07094,-0.1125293 0.162271,-0.16797851 0.09214,-0.0562647 0.204673,-0.0562647 0.08236,0 0.164717,0.0252783 V 1.0877832 H 44.822703 V 0.87984861 q -0.03833,-0.006523 -0.06034,-0.006523 -0.0848,0 -0.166348,0.0668652 -0.08154,0.0668652 -0.159009,0.20059569 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path797" />
+              <path
+                 d="M 45.209216,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.06524,-0.10519043 0.157378,-0.16471679 0.09214,-0.0595264 0.184287,-0.0595264 0.08073,0 0.146778,0.0432178 0.06605,0.0424023 0.09214,0.11171387 0.02691,0.0693115 0.02691,0.27235346 V 1.67 h -0.15167 V 1.142417 q 0,-0.1312842 -0.01305,-0.17287113 -0.01223,-0.0424023 -0.04648,-0.0693115 -0.03343,-0.0269092 -0.07339,-0.0269092 -0.07991,0 -0.172055,0.075835 -0.09133,0.075835 -0.150855,0.18999503 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path799" />
+              <path
+                 d="m 46.968099,1.6096582 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.16227,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715815 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 46.362235,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06686,0.0668652 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path801" />
+              <path
+                 d="m 47.973524,1.6333056 q -0.106822,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084521 -0.03996,-0.071758 -0.03996,-0.2217969 V 0.96139158 h -0.227505 v -0.1263916 h 0.227505 V 0.46805663 h 0.15167 v 0.36694335 h 0.405268 v 0.1263916 H 47.542977 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path803" />
+              <path
+                 d="m 48.970794,1.6096582 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.16227,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715815 v 0.032617 H 48.35596 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 48.36493,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06686,0.0668652 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path805" />
+              <path
+                 d="M 49.225208,1.6218896 V 1.46125 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114976,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.16961,-0.06605 -0.213643,-0.1223144 -0.04485,-0.055449 -0.04485,-0.13536133 0,-0.11252929 0.08644,-0.18510253 0.08725,-0.0725732 0.282139,-0.0725732 0.145961,0 0.27643,0.0424023 v 0.13780762 q -0.150039,-0.0538184 -0.282138,-0.0538184 -0.09622,0 -0.150855,0.034248 -0.05382,0.0334326 -0.05382,0.0839893 0,0.0489258 0.0473,0.0782812 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path807" />
+            </g>
+            <g
+               aria-label=""
+               id="text66"
+               class="p"
+               style="white-space:pre;fill:#262626">
+              <path
+                 d="M 106.23581,2.0834228 105.21,1.0910449 106.23581,0.10029785 Z"
+                 style="white-space:pre;fill:#262626"
+                 id="path810" />
+            </g>
+            <path
+               class="q"
+               d="m 106.212,0 h 13 v 2.171 h -13 z"
+               id="path68" />
+            <g
+               aria-label="stage-admin"
+               id="text70"
+               class="r"
+               style="white-space:pre;fill:#af5fd7">
+              <path
+                 d="M 106.34899,1.6218896 V 1.46125 q 0.0913,0.059526 0.19326,0.083989 0.10193,0.023648 0.17287,0.023648 0.11497,0 0.16553,-0.036694 0.0506,-0.03751 0.0506,-0.092959 0,-0.036694 -0.0236,-0.062788 -0.0237,-0.026094 -0.11742,-0.064419 l -0.0522,-0.021201 -0.10519,-0.041587 q -0.16961,-0.06605 -0.21364,-0.1223144 -0.0449,-0.055449 -0.0449,-0.13536133 0,-0.11252929 0.0864,-0.18510253 0.0873,-0.0725732 0.28214,-0.0725732 0.14596,0 0.27643,0.0424023 v 0.13780762 q -0.15004,-0.0538184 -0.28214,-0.0538184 -0.0962,0 -0.15085,0.034248 -0.0538,0.0334326 -0.0538,0.0839893 0,0.0489258 0.0473,0.0782812 0.0465,0.029355 0.15167,0.067681 l 0.10274,0.03751 q 0.14107,0.051372 0.19815,0.1117138 0.0571,0.060342 0.0571,0.1508545 0,0.1182373 -0.0913,0.1948877 -0.0905,0.075835 -0.29029,0.075835 -0.1745,0 -0.35879,-0.073389 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path813" />
+              <path
+                 d="m 108.10135,1.6333056 q -0.10682,0.044849 -0.15493,0.053003 -0.0481,0.00897 -0.093,0.00897 -0.0954,0 -0.1745,-0.036694 -0.0791,-0.036694 -0.11987,-0.1084521 -0.04,-0.071758 -0.04,-0.2217969 V 0.96139158 h -0.2275 v -0.1263916 h 0.2275 V 0.46805663 h 0.15167 v 0.36694335 h 0.40527 v 0.1263916 H 107.6708 V 1.3258886 q 0,0.110083 0.0261,0.1557471 0.0261,0.044849 0.0693,0.06605 0.044,0.021201 0.10356,0.021201 0.11008,0 0.23158,-0.069311 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path815" />
+              <path
+                 d="m 108.93961,1.4653271 q -0.0693,0.1141602 -0.16716,0.1720557 -0.097,0.057896 -0.17858,0.057896 -0.11416,0 -0.20549,-0.098667 -0.0905,-0.098667 -0.0905,-0.2992627 0,-0.1581934 0.0603,-0.2821387 0.0603,-0.1247607 0.16145,-0.19651851 0.10112,-0.0725733 0.25034,-0.0725733 0.0432,0 0.13047,0.00897 0.0131,0.001631 0.0391,0.004077 h 0.15249 V 1.402539 q 0,0.1647168 0.0342,0.267461 h -0.15819 q -0.0179,-0.07502 -0.0285,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.0807,-0.0212012 -0.15004,-0.0212012 -0.14025,0 -0.23403,0.10845215 -0.093,0.10845221 -0.093,0.29518561 0,0.1353613 0.0506,0.2046728 0.0514,0.068496 0.11661,0.068496 0.0709,0 0.15656,-0.071758 0.0856,-0.071758 0.1533,-0.1932565 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path817" />
+              <path
+                 d="m 109.95074,1.4653271 q -0.0693,0.1141602 -0.16716,0.1720557 -0.097,0.057896 -0.17858,0.057896 -0.11416,0 -0.20549,-0.098667 -0.0905,-0.098667 -0.0905,-0.2992627 0,-0.1581934 0.0603,-0.2821387 0.0603,-0.1247607 0.16146,-0.19651851 0.10111,-0.0725733 0.25033,-0.0725733 0.0432,0 0.13047,0.00897 0.013,0.001631 0.0391,0.004077 h 0.15249 V 1.4033545 q 0,0.2299511 -0.007,0.2805078 -0.006,0.051372 -0.0196,0.1035595 -0.0326,0.121499 -0.14922,0.191626 -0.11579,0.070127 -0.28051,0.070127 -0.16553,0 -0.33514,-0.084805 V 1.8110693 q 0.0644,0.044033 0.1582,0.077466 0.0946,0.034248 0.18265,0.034248 0.0693,0 0.13129,-0.022017 0.062,-0.022017 0.10029,-0.063604 0.0383,-0.041587 0.0522,-0.097036 0.0139,-0.054634 0.0139,-0.1459619 z m 0,-0.1802099 V 0.89452634 q -0.0807,-0.0212012 -0.15004,-0.0212012 -0.14025,0 -0.23402,0.10845215 -0.093,0.10845221 -0.093,0.29518561 0,0.1353613 0.0506,0.2046728 0.0514,0.068496 0.11661,0.068496 0.0709,0 0.15656,-0.071758 0.0856,-0.071758 0.1533,-0.1932568 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path819" />
+              <path
+                 d="m 111.10131,1.6096582 q -0.18184,0.086436 -0.34411,0.086436 -0.12313,0 -0.22016,-0.061157 -0.097,-0.061157 -0.15575,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.0554,-0.23973636 0.0555,-0.11497558 0.15494,-0.1785791 0.0995,-0.0644189 0.22179,-0.0644189 0.16227,0 0.26012,0.11579101 0.0987,0.11579102 0.0987,0.35715815 v 0.032617 h -0.62788 q 0,0.09459 0.0391,0.1728711 0.04,0.078281 0.10438,0.1174219 0.0644,0.039141 0.14677,0.039141 0.14678,0 0.32454,-0.097852 z m -0.60586,-0.4835498 h 0.45419 v -0.022017 q 0,-0.1117139 -0.0546,-0.1777637 -0.0546,-0.0660498 -0.14596,-0.0660498 -0.0921,0 -0.15983,0.0676807 -0.0669,0.0668652 -0.0938,0.1981498 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path821" />
+              <path
+                 d="M 111.40384,1.2206982 V 1.0943066 h 0.63277 v 0.1263916 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path823" />
+              <path
+                 d="m 112.945,1.4653271 q -0.0693,0.1141602 -0.16716,0.1720557 -0.097,0.057896 -0.17858,0.057896 -0.11416,0 -0.20549,-0.098667 -0.0905,-0.098667 -0.0905,-0.2992627 0,-0.1581934 0.0603,-0.2821387 0.0603,-0.1247607 0.16145,-0.19651851 0.10112,-0.0725733 0.25034,-0.0725733 0.0432,0 0.13047,0.00897 0.013,0.001631 0.0391,0.004077 h 0.15249 V 1.402539 q 0,0.1647168 0.0342,0.267461 h -0.15819 q -0.0179,-0.07502 -0.0285,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.0807,-0.0212012 -0.15004,-0.0212012 -0.14025,0 -0.23403,0.10845215 -0.093,0.10845221 -0.093,0.29518561 0,0.1353613 0.0506,0.2046728 0.0514,0.068496 0.11661,0.068496 0.0709,0 0.15656,-0.071758 0.0856,-0.071758 0.1533,-0.1932565 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path825" />
+              <path
+                 d="m 113.95613,1.4653271 q -0.0693,0.1141602 -0.16716,0.1720557 -0.097,0.057896 -0.17858,0.057896 -0.11416,0 -0.20549,-0.098667 -0.0905,-0.098667 -0.0905,-0.2992627 0,-0.1581934 0.0603,-0.2821387 0.0603,-0.1247607 0.16146,-0.19651851 0.10111,-0.0725733 0.25033,-0.0725733 0.0432,0 0.13047,0.00897 0.0131,0.001631 0.0391,0.004077 V 0.35389648 h 0.15249 V 1.67 h -0.15249 z m 0,-0.1802099 V 0.89452634 q -0.0807,-0.0212012 -0.15004,-0.0212012 -0.14025,0 -0.23402,0.10845215 -0.093,0.10845221 -0.093,0.29518561 0,0.1353613 0.0506,0.2046728 0.0514,0.068496 0.11661,0.068496 0.0709,0 0.15656,-0.071758 0.0856,-0.071758 0.1533,-0.1932568 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path827" />
+              <path
+                 d="M 114.28067,1.67 V 0.75916502 h 0.13292 v 0.20874999 q 0.0628,-0.13291503 0.11661,-0.18347167 0.0546,-0.0505566 0.11008,-0.0505566 0.066,0 0.10601,0.0521875 0.0408,0.0513721 0.0408,0.14677734 v 0.0489258 q 0.0269,-0.0831738 0.0644,-0.1345459 0.0383,-0.0521875 0.0791,-0.0823584 0.0408,-0.0309863 0.0938,-0.0309863 0.0587,0 0.10029,0.0497412 0.0416,0.0497412 0.0416,0.19814941 V 1.67 h -0.13291 V 1.0478271 q 0,-0.0766504 -0.005,-0.10437498 -0.005,-0.02854 -0.0196,-0.0432178 -0.0147,-0.0146777 -0.0318,-0.0146777 -0.0424,0 -0.0913,0.0652344 -0.0481,0.0644189 -0.0987,0.21445798 V 1.67 h -0.12721 V 1.0486426 q 0,-0.12068364 -0.0237,-0.14188481 -0.0237,-0.0212012 -0.0424,-0.0212012 -0.0416,0 -0.0897,0.0725732 -0.0473,0.0725732 -0.0905,0.18591791 V 1.67 Z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path829" />
+              <path
+                 d="M 115.60575,1.67 V 0.88555662 h -0.25279 v -0.1263916 h 0.40446 V 1.5436084 h 0.2536 V 1.67 Z m -0.0253,-1.23945314 q 0,-0.0513721 0.0351,-0.0766504 0.0351,-0.0252783 0.066,-0.0252783 0.0318,0 0.0669,0.0252783 0.0351,0.0252783 0.0351,0.0766504 0,0.0505566 -0.0351,0.075835 -0.0351,0.0252783 -0.0669,0.0252783 -0.031,0 -0.066,-0.0252783 -0.0351,-0.0252783 -0.0351,-0.075835 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path831" />
+              <path
+                 d="M 116.35187,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.0652,-0.10519043 0.15737,-0.16471679 0.0922,-0.0595264 0.18429,-0.0595264 0.0807,0 0.14678,0.0432178 0.0661,0.0424023 0.0921,0.11171387 0.0269,0.0693115 0.0269,0.27235346 V 1.67 h -0.15167 V 1.142417 q 0,-0.1312842 -0.0131,-0.17287113 -0.0122,-0.0424023 -0.0465,-0.0693115 -0.0334,-0.0269092 -0.0734,-0.0269092 -0.0799,0 -0.17206,0.075835 -0.0913,0.075835 -0.15085,0.18999503 V 1.67 Z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path833" />
+            </g>
+            <g
+               aria-label="NAME:"
+               id="text72"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.25441406,3.8410001 H 0.10274414 V 2.5754532 h 0.1484082 L 0.69882322,3.4177921 0.747749,3.5433683 H 0.751826 L 0.747749,3.4177921 V 2.5754532 H 0.89941892 V 3.8410001 H 0.747749 l -0.43543944,-0.8284766 -0.0611572,-0.132915 0.003262,0.1312842 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path836" />
+              <path
+                 d="M 1.1864502,3.8410001 H 1.0282568 L 1.4180322,2.5754532 H 1.5851953 L 1.977417,3.8410001 H 1.8037305 L 1.7172949,3.5629386 H 1.2720703 Z M 1.3112109,3.436547 H 1.6806006 L 1.5281152,2.9562589 1.4922363,2.8290519 1.4604346,2.9562589 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path838" />
+              <path
+                 d="M 2.1812744,3.8410001 H 2.0483594 V 2.5754532 H 2.2138916 L 2.5058154,3.4088224 2.7977392,2.5754532 H 2.9591943 V 3.8410001 H 2.8075244 v -0.80646 l 0.00408,-0.1108984 h -0.00408 L 2.7716455,3.0345401 2.5759424,3.5882169 H 2.4112256 L 2.2130762,3.0345401 2.1812744,2.9236417 h -0.00408 l 0.00408,0.1108984 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path840" />
+              <path
+                 d="M 3.8529054,3.7015616 V 3.8410001 H 3.1695753 V 2.5754532 H 3.8398585 V 2.7026603 H 3.3342921 V 3.1323917 H 3.7893019 V 3.2587833 H 3.3342921 v 0.4427783 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path842" />
+              <path
+                 d="m 4.5060645,3.8793253 q -0.054634,0 -0.093775,-0.039141 -0.039141,-0.039141 -0.039141,-0.093774 0,-0.055449 0.039141,-0.093774 0.039956,-0.039141 0.093775,-0.039141 0.053818,0 0.092959,0.039141 0.039956,0.038325 0.039956,0.093774 0,0.054634 -0.039141,0.093774 -0.039141,0.039141 -0.093774,0.039141 z m 0,-0.7086084 q -0.054634,0 -0.093775,-0.039141 -0.039141,-0.039141 -0.039141,-0.093774 0,-0.055449 0.039141,-0.093774 0.039956,-0.039141 0.093775,-0.039141 0.053818,0 0.092959,0.039141 0.039956,0.038325 0.039956,0.093774 0,0.054634 -0.039141,0.093774 -0.039141,0.039141 -0.093774,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path844" />
+            </g>
+            <g
+               aria-label="foo"
+               id="text74"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 6.3504034,3.8410001 V 3.1323917 H 6.1481768 V 3.0060001 h 0.2022266 v -0.042402 q 0,-0.18021 0.040771,-0.2666455 0.040771,-0.086436 0.1255761,-0.1418848 0.08562,-0.055449 0.2258741,-0.055449 0.1060058,0 0.2152734,0.022017 v 0.144331 q -0.1182373,-0.039141 -0.2095654,-0.039141 -0.072573,0 -0.1280225,0.026909 -0.055449,0.026909 -0.087251,0.088066 -0.030986,0.060342 -0.030986,0.2054883 v 0.058711 H 6.8633087 V 3.1323917 H 6.5020733 v 0.7086084 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path847" />
+              <path
+                 d="m 7.514837,3.8662784 q -0.1957031,0 -0.313125,-0.1361768 -0.1174219,-0.1369921 -0.1174219,-0.3449267 0,-0.2079346 0.1174219,-0.3441113 0.1174219,-0.1361768 0.313125,-0.1361768 0.1948877,0 0.3123096,0.1361768 0.1174218,0.1361767 0.1174218,0.3441113 0,0.2079346 -0.1174218,0.3449267 Q 7.7097247,3.8662784 7.514837,3.8662784 Z m 0,-0.1263916 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.2601221 0,-0.1647168 -0.071758,-0.2593066 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.2593066 0,0.1655322 0.071758,0.2601221 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path849" />
+              <path
+                 d="m 8.5161847,3.8662784 q -0.1957032,0 -0.313125,-0.1361768 -0.1174219,-0.1369921 -0.1174219,-0.3449267 0,-0.2079346 0.1174219,-0.3441113 0.1174218,-0.1361768 0.313125,-0.1361768 0.1948876,0 0.3123095,0.1361768 0.1174219,0.1361767 0.1174219,0.3441113 0,0.2079346 -0.1174219,0.3449267 -0.1174219,0.1361768 -0.3123095,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.2601221 0,-0.1647168 -0.071758,-0.2593066 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.2593066 0,0.1655322 0.071758,0.2601221 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path851" />
+            </g>
+            <g
+               aria-label="LAST"
+               id="text76"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.86190916,5.8725616 V 6.0120001 H 0.1785791 V 4.7464532 h 0.16471679 v 1.1261084 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path854" />
+              <path
+                 d="M 1.1864502,6.0120001 H 1.0282568 L 1.4180322,4.7464532 H 1.5851953 L 1.977417,6.0120001 H 1.8037305 L 1.7172949,5.7339386 H 1.2720703 Z M 1.3112109,5.607547 H 1.6806006 L 1.5281152,5.1272589 1.4922363,5.0000519 1.4604346,5.1272589 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path856" />
+              <path
+                 d="M 2.1307178,5.9850909 V 5.8301593 q 0.1957031,0.092959 0.3555273,0.092959 0.066865,0 0.1280225,-0.025278 0.061157,-0.026094 0.092144,-0.074204 0.031802,-0.04811 0.031802,-0.104375 0,-0.06605 -0.043218,-0.1231298 -0.043218,-0.057896 -0.1622705,-0.1272071 l -0.083174,-0.04811 -0.083989,-0.04811 Q 2.1437647,5.241419 2.1437647,5.0465314 q 0,-0.1427002 0.098667,-0.2397364 0.099482,-0.097851 0.3098633,-0.097851 0.1353613,0 0.2617529,0.039141 v 0.1410693 q -0.1394384,-0.053818 -0.271538,-0.053818 -0.1051905,0 -0.1704248,0.055449 -0.064419,0.055449 -0.064419,0.1337305 0,0.077466 0.049741,0.1288378 0.049741,0.051372 0.1272071,0.09459 l 0.063604,0.038325 0.079097,0.04811 0.066865,0.039141 q 0.2079345,0.127207 0.2079345,0.3196484 0,0.1467773 -0.1068212,0.2519678 -0.1068213,0.1051904 -0.3424805,0.1051904 -0.075019,0 -0.1435156,-0.013047 -0.067681,-0.012231 -0.1785791,-0.052187 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path858" />
+              <path
+                 d="M 3.4223585,6.0120001 V 4.8858917 H 3.0431837 V 4.7464532 H 3.9670655 V 4.8858917 H 3.5870753 v 1.1261084 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path860" />
+            </g>
+            <g
+               aria-label="DEPLOYED:"
+               id="text78"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 5.1363918,6.0120001 V 4.7464532 h 0.3000781 q 0.2071192,0 0.307417,0.072573 0.1011133,0.071758 0.1516699,0.2177197 0.050557,0.1459619 0.050557,0.3457422 0,0.1891797 -0.053818,0.3326953 -0.053003,0.1427002 -0.1508545,0.220166 -0.097851,0.07665 -0.3049707,0.07665 z M 5.3011086,5.8725616 h 0.110083 q 0.1671631,0 0.2381055,-0.059526 0.071758,-0.059526 0.1019287,-0.1647167 0.030986,-0.1060059 0.030986,-0.2919239 0,-0.1818408 -0.035879,-0.2796923 Q 5.7104543,4.9788507 5.6435891,4.9266632 5.5767238,4.8736603 5.4242385,4.8736603 H 5.3011086 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path863" />
+              <path
+                 d="M 6.8602102,5.8725616 V 6.0120001 H 6.1768801 V 4.7464532 H 6.8471633 V 4.8736603 H 6.3415969 V 5.3033917 H 6.7966067 V 5.4297833 H 6.3415969 v 0.4427783 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path865" />
+              <path
+                 d="M 7.320928,5.5504669 V 6.0120001 H 7.1562112 V 4.7464532 H 7.470967 q 0.1940723,0 0.2829541,0.044033 0.088882,0.043218 0.1361768,0.1272071 0.047295,0.083989 0.047295,0.1875488 0,0.121499 -0.063603,0.2266894 Q 7.8101859,5.437122 7.6960262,5.494202 7.5826815,5.550467 7.3877938,5.550467 Z m 0,-0.1263916 H 7.39187 q 0.1524854,0 0.2266895,-0.039141 0.074204,-0.039956 0.1141601,-0.1141602 0.039956,-0.074204 0.039956,-0.1606396 0,-0.1092676 -0.071758,-0.1728711 Q 7.6299758,4.8736603 7.419595,4.8736603 H 7.320928 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path867" />
+              <path
+                 d="M 8.8759525,5.8725616 V 6.0120001 H 8.1926224 V 4.7464532 h 0.1647168 v 1.1261084 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path869" />
+              <path
+                 d="m 9.5160647,6.0503253 q -0.2152734,0 -0.3294336,-0.1810254 -0.1133447,-0.1818408 -0.1133447,-0.4900732 0,-0.307417 0.1133447,-0.4884424 0.1141602,-0.1818408 0.3294336,-0.1818408 0.2160888,0 0.3294336,0.1818408 0.1133447,0.1810254 0.1133447,0.4884424 0,0.3082324 -0.1133447,0.4900732 -0.1133448,0.1810254 -0.3294336,0.1810254 z m 0,-0.127207 q 0.1190527,0 0.1981494,-0.1345459 0.079912,-0.1353614 0.079912,-0.4093457 0,-0.2739844 -0.079912,-0.4085303 -0.079097,-0.1353613 -0.1981494,-0.1353613 -0.1190527,0 -0.1989649,0.1353613 -0.079097,0.1345459 -0.079097,0.4085303 0,0.2739843 0.079097,0.4093457 0.079912,0.1345459 0.1989649,0.1345459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path871" />
+              <path
+                 d="M 10.435869,6.0120001 V 5.4265216 L 10.059141,4.7464532 h 0.186733 l 0.281323,0.5023047 0.280508,-0.5023047 h 0.168794 l -0.375913,0.6800684 v 0.5854785 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path873" />
+              <path
+                 d="m 11.866949,5.8725616 v 0.1394385 h -0.68333 V 4.7464532 h 0.670283 v 0.1272071 h -0.505567 v 0.4297314 h 0.45501 v 0.1263916 h -0.45501 v 0.4427783 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path875" />
+              <path
+                 d="M 12.145826,6.0120001 V 4.7464532 h 0.300078 q 0.207119,0 0.307417,0.072573 0.101113,0.071758 0.15167,0.2177197 0.05056,0.1459619 0.05056,0.3457422 0,0.1891797 -0.05382,0.3326953 -0.053,0.1427002 -0.150855,0.220166 -0.09785,0.07665 -0.30497,0.07665 z m 0.164716,-0.1394385 h 0.110083 q 0.167163,0 0.238106,-0.059526 0.07176,-0.059526 0.101929,-0.1647167 0.03099,-0.1060059 0.03099,-0.2919239 0,-0.1818408 -0.03588,-0.2796923 -0.03588,-0.097852 -0.102744,-0.1500391 -0.06686,-0.053003 -0.219351,-0.053003 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path877" />
+              <path
+                 d="m 13.521455,6.0503253 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093775 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093775 -0.03914,0.039141 -0.09378,0.039141 z m 0,-0.7086084 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09378,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path879" />
+            </g>
+            <g
+               aria-label="Fri"
+               id="text80"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 15.215102,6.0120001 V 4.7464532 h 0.695562 v 0.1272071 h -0.530845 v 0.4297314 h 0.480288 v 0.1263916 h -0.480288 v 0.5822168 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path882" />
+              <path
+                 d="m 16.235205,6.0120001 v -0.910835 h 0.15167 V 5.30013 q 0.07094,-0.1125293 0.16227,-0.1679785 0.09214,-0.056265 0.204673,-0.056265 0.08236,0 0.164717,0.025278 V 5.4297833 H 16.772573 V 5.2218487 q -0.03833,-0.00652 -0.06034,-0.00652 -0.0848,0 -0.166347,0.066865 -0.08154,0.066865 -0.159009,0.2005957 v 0.5292139 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path884" />
+              <path
+                 d="M 17.414316,6.0120001 V 5.2275567 H 17.161533 V 5.1011651 h 0.404453 v 0.7844434 h 0.253599 V 6.0120001 Z M 17.389038,4.772547 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06686,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06686,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path886" />
+            </g>
+            <g
+               aria-label="Sep"
+               id="text82"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 19.166023,5.9850909 V 5.8301593 q 0.195703,0.092959 0.355527,0.092959 0.06686,0 0.128022,-0.025278 0.06116,-0.026094 0.09214,-0.074204 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.1231298 -0.04322,-0.057896 -0.162271,-0.1272071 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221792,-0.1312854 -0.221792,-0.326173 0,-0.1427002 0.09867,-0.2397364 0.09948,-0.097851 0.309864,-0.097851 0.135361,0 0.261753,0.039141 v 0.1410693 q -0.139439,-0.053818 -0.271538,-0.053818 -0.105191,0 -0.170425,0.055449 -0.06442,0.055449 -0.06442,0.1337305 0,0.077466 0.04974,0.1288378 0.04974,0.051372 0.127207,0.09459 l 0.0636,0.038325 0.0791,0.04811 0.06686,0.039141 q 0.207935,0.127207 0.207935,0.3196484 0,0.1467773 -0.106821,0.2519678 -0.106822,0.1051904 -0.342481,0.1051904 -0.07502,0 -0.143515,-0.013047 -0.06768,-0.012231 -0.178579,-0.052187 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path889" />
+              <path
+                 d="m 20.923274,5.9516583 q -0.181841,0.086436 -0.344112,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.05789,-0.1141602 -0.05789,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154931,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.62788 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 20.317409,5.4681085 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06687,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path891" />
+              <path
+                 d="m 21.307341,5.305838 q 0.07013,-0.1141602 0.167163,-0.1720557 0.09704,-0.057895 0.178579,-0.057895 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101113,0.071758 -0.250337,0.071758 -0.0424,0 -0.130468,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 v 0.3538965 h -0.15167 v -1.264729 h 0.15167 z m 0,0.1802099 v 0.3905909 q 0.08236,0.021201 0.15167,0.021201 0.137807,0 0.231582,-0.1076367 0.09459,-0.1084521 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.2046728 -0.05137,-0.068496 -0.116607,-0.068496 -0.07094,0 -0.156562,0.071758 -0.0848,0.071758 -0.153301,0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path893" />
+            </g>
+            <g
+               aria-label="18"
+               id="text84"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 23.509164,5.8856085 V 4.9087237 q -0.0685,0.054634 -0.132915,0.092959 -0.06442,0.038325 -0.176949,0.078281 V 4.9429718 q 0.178579,-0.075835 0.309864,-0.1965186 h 0.151669 v 1.1391553 h 0.304156 V 6.0120001 H 23.1993 V 5.8856085 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path896" />
+              <path
+                 d="m 24.421629,5.3294855 -0.02772,-0.020386 q -0.0579,-0.040771 -0.113345,-0.1198681 -0.05545,-0.079912 -0.05545,-0.1753174 0,-0.1263916 0.09948,-0.2152735 0.09948,-0.089697 0.252783,-0.089697 0.09377,0 0.168794,0.034248 0.07502,0.033433 0.115791,0.099482 0.04077,0.06605 0.04077,0.1443311 0,0.053818 -0.01876,0.104375 -0.01875,0.049741 -0.05626,0.099482 -0.03669,0.048926 -0.146777,0.1386231 l 0.0685,0.054634 q 0.119868,0.097852 0.161455,0.168794 0.04159,0.070942 0.04159,0.1590088 0,0.1369922 -0.09948,0.2381054 -0.09948,0.1002979 -0.298448,0.1002979 -0.19978,0 -0.299262,-0.093774 -0.09948,-0.09459 -0.09948,-0.2340283 0,-0.2079346 0.26583,-0.3930371 z m 0.155747,-0.077466 q 0.114976,-0.087251 0.143516,-0.1459619 0.02936,-0.058711 0.02936,-0.1092676 0,-0.061157 -0.05382,-0.1108984 -0.05382,-0.050557 -0.138623,-0.050557 -0.09133,0 -0.139438,0.054634 -0.0473,0.054634 -0.0473,0.1133447 0,0.05708 0.03996,0.1076367 0.03996,0.050557 0.128022,0.1133447 z M 24.53579,5.410213 q -0.215274,0.1655322 -0.215274,0.3098633 0,0.08562 0.07094,0.144331 0.07094,0.058711 0.167978,0.058711 0.08888,0 0.159009,-0.056265 0.07013,-0.056265 0.07013,-0.1402539 0,-0.082358 -0.08562,-0.1671631 -0.0848,-0.084805 -0.118238,-0.1108984 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path898" />
+            </g>
+            <g
+               aria-label="15:17:55"
+               id="text86"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 26.515164,5.8856085 V 4.9087237 q -0.0685,0.054634 -0.132915,0.092959 -0.06442,0.038325 -0.176948,0.078281 V 4.9429718 q 0.178579,-0.075835 0.309863,-0.1965186 h 0.15167 v 1.1391553 h 0.304155 V 6.0120001 H 26.205301 V 5.8856085 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path901" />
+              <path
+                 d="M 27.206648,5.3539483 V 4.7464532 h 0.708609 v 0.145962 h -0.556939 v 0.3098632 h 0.02609 q 0.273169,0 0.420762,0.1141602 0.147593,0.1141601 0.147593,0.307417 0,0.1223144 -0.05953,0.2193505 -0.05953,0.097036 -0.167978,0.1524854 -0.108452,0.054634 -0.230767,0.054634 -0.122314,0 -0.313125,-0.059526 V 5.8252667 q 0.06931,0.03751 0.154932,0.061973 0.08562,0.023648 0.158193,0.023648 0.07257,0 0.141885,-0.035063 0.06931,-0.035063 0.107637,-0.1019287 0.03833,-0.067681 0.03833,-0.1378076 0,-0.1182373 -0.105191,-0.1997803 -0.104375,-0.082358 -0.371836,-0.082358 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path903" />
+              <path
+                 d="m 28.555369,6.0503253 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093775 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093775 -0.03914,0.039141 -0.09378,0.039141 z m 0,-0.7086084 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09378,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path905" />
+              <path
+                 d="M 29.519207,5.8856085 V 4.9087237 q -0.0685,0.054634 -0.132915,0.092959 -0.06442,0.038325 -0.176948,0.078281 V 4.9429718 q 0.178579,-0.075835 0.309863,-0.1965186 h 0.15167 v 1.1391553 h 0.304155 V 6.0120001 H 29.209344 V 5.8856085 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path907" />
+              <path
+                 d="M 30.317513,6.0120001 V 5.8986554 q 0,-0.1329151 0.03017,-0.2234278 0.03017,-0.090513 0.106006,-0.2014111 0.07583,-0.1108984 0.121499,-0.1712402 l 0.132099,-0.174502 0.0473,-0.061157 q 0.05382,-0.072573 0.09296,-0.1679785 H 30.191121 V 4.7464532 h 0.803198 v 0.1011133 q 0,0.060342 -0.02446,0.1117139 -0.02365,0.051372 -0.145146,0.2193506 -0.02935,0.039956 -0.0579,0.079912 l -0.0848,0.1190527 q -0.08154,0.1149756 -0.120684,0.1834717 -0.03914,0.068496 -0.05953,0.1427002 -0.01957,0.074204 -0.01957,0.1948877 V 6.012 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path909" />
+              <path
+                 d="m 31.559412,6.0503253 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093775 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093775 -0.03914,0.039141 -0.09377,0.039141 z m 0,-0.7086084 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09377,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path911" />
+              <path
+                 d="M 32.213387,5.3539483 V 4.7464532 h 0.708608 v 0.145962 h -0.556938 v 0.3098632 h 0.02609 q 0.273169,0 0.420761,0.1141602 0.147593,0.1141601 0.147593,0.307417 0,0.1223144 -0.05953,0.2193505 -0.05953,0.097036 -0.167979,0.1524854 -0.108452,0.054634 -0.230766,0.054634 -0.122315,0 -0.313125,-0.059526 V 5.8252667 q 0.06931,0.03751 0.154931,0.061973 0.08562,0.023648 0.158194,0.023648 0.07257,0 0.141884,-0.035063 0.06931,-0.035063 0.107637,-0.1019287 0.03833,-0.067681 0.03833,-0.1378076 0,-0.1182373 -0.10519,-0.1997803 -0.104375,-0.082358 -0.371836,-0.082358 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path913" />
+              <path
+                 d="M 33.214735,5.3539483 V 4.7464532 h 0.708608 v 0.145962 h -0.556939 v 0.3098632 h 0.02609 q 0.273169,0 0.420762,0.1141602 0.147593,0.1141601 0.147593,0.307417 0,0.1223144 -0.05953,0.2193505 -0.05953,0.097036 -0.167978,0.1524854 -0.108452,0.054634 -0.230767,0.054634 -0.122314,0 -0.313125,-0.059526 V 5.8252667 q 0.06931,0.03751 0.154932,0.061973 0.08562,0.023648 0.158193,0.023648 0.07257,0 0.141885,-0.035063 0.06931,-0.035063 0.107637,-0.1019287 0.03833,-0.067681 0.03833,-0.1378076 0,-0.1182373 -0.105191,-0.1997803 Q 33.58086,5.3539501 33.3134,5.3539501 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path915" />
+            </g>
+            <g
+               aria-label="2020"
+               id="text88"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 35.957187,6.0120001 H 35.191499 V 5.8725616 q 0,-0.053818 0.02202,-0.1149756 0.02202,-0.061973 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.1475928 l 0.08644,-0.088066 q 0.02609,-0.026909 0.11416,-0.1247607 0.08807,-0.097852 0.115791,-0.1500391 0.02854,-0.052187 0.02854,-0.1027441 0,-0.081543 -0.06523,-0.1255762 -0.06523,-0.044849 -0.146777,-0.044849 -0.04648,0 -0.104375,0.010601 -0.05708,0.0106 -0.100298,0.025278 -0.04322,0.013862 -0.140254,0.057895 V 4.7945636 q 0.102744,-0.048926 0.205488,-0.066865 0.10356,-0.018755 0.170425,-0.018755 0.09867,0 0.181025,0.032617 0.08317,0.031802 0.12313,0.099482 0.04077,0.067681 0.04077,0.144331 0,0.08562 -0.05219,0.1753174 -0.05137,0.089697 -0.194887,0.2307666 l -0.09296,0.092144 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.1451465 -0.04566,0.070127 -0.05056,0.1671631 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path918" />
+              <path
+                 d="m 36.572021,4.7089435 q 0.216089,0 0.329434,0.1818408 0.113344,0.1810254 0.113344,0.4884424 0,0.3082324 -0.113344,0.4900732 -0.113345,0.1810254 -0.329434,0.1810254 -0.215273,0 -0.329433,-0.1810254 -0.113345,-0.1818408 -0.113345,-0.4900732 0,-0.307417 0.113345,-0.4884424 0.11416,-0.1818408 0.329433,-0.1818408 z M 36.324946,5.6499493 36.762832,4.964173 q -0.04159,-0.075835 -0.09051,-0.1019287 -0.04811,-0.026909 -0.100298,-0.026909 -0.136177,0 -0.207119,0.1516699 -0.07094,0.1508545 -0.07094,0.3832519 0,0.053003 0.0033,0.1141602 0.0033,0.061157 0.02772,0.1655322 z m 0.49252,-0.5349218 -0.434625,0.6898534 q 0.03506,0.059526 0.08073,0.089697 0.04566,0.029356 0.101929,0.029356 0.154931,0 0.220166,-0.1728711 0.06523,-0.1736865 0.06523,-0.3848828 0,-0.1304688 -0.03343,-0.2511525 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path920" />
+              <path
+                 d="M 37.959882,6.0120001 H 37.194194 V 5.8725616 q 0,-0.053818 0.02202,-0.1149756 0.02202,-0.061973 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.1475928 l 0.08644,-0.088066 q 0.02609,-0.026909 0.11416,-0.1247607 0.08807,-0.097852 0.115791,-0.1500391 0.02854,-0.052187 0.02854,-0.1027441 0,-0.081543 -0.06524,-0.1255762 -0.06523,-0.044849 -0.146777,-0.044849 -0.04648,0 -0.104375,0.010601 -0.05708,0.0106 -0.100298,0.025278 -0.04322,0.013862 -0.140254,0.057895 V 4.7945636 q 0.102744,-0.048926 0.205489,-0.066865 0.103559,-0.018755 0.170424,-0.018755 0.09867,0 0.181026,0.032617 0.08317,0.031802 0.12313,0.099482 0.04077,0.067681 0.04077,0.144331 0,0.08562 -0.05219,0.1753174 -0.05137,0.089697 -0.194888,0.2307666 l -0.09296,0.092144 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.1451465 -0.04566,0.070127 -0.05056,0.1671631 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path922" />
+              <path
+                 d="m 38.574717,4.7089435 q 0.216088,0 0.329433,0.1818408 0.113345,0.1810254 0.113345,0.4884424 0,0.3082324 -0.113345,0.4900732 -0.113345,0.1810254 -0.329433,0.1810254 -0.215274,0 -0.329434,-0.1810254 -0.113345,-0.1818408 -0.113345,-0.4900732 0,-0.307417 0.113345,-0.4884424 0.11416,-0.1818408 0.329434,-0.1818408 z M 38.327641,5.6499493 38.765527,4.964173 q -0.04159,-0.075835 -0.09051,-0.1019287 -0.04811,-0.026909 -0.100297,-0.026909 -0.136177,0 -0.20712,0.1516699 -0.07094,0.1508545 -0.07094,0.3832519 0,0.053003 0.0033,0.1141602 0.0033,0.061157 0.02772,0.1655322 z m 0.49252,-0.5349218 -0.434624,0.6898534 q 0.03506,0.059526 0.08073,0.089697 0.04566,0.029356 0.101929,0.029356 0.154932,0 0.220166,-0.1728711 0.06524,-0.1736865 0.06524,-0.3848828 0,-0.1304688 -0.03343,-0.2511523 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path924" />
+            </g>
+            <g
+               aria-label="NAMESPACE:"
+               id="text90"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.25441406,8.1829996 H 0.10274414 V 6.9174528 h 0.1484082 L 0.69882322,7.7597916 0.747749,7.8853678 H 0.751826 L 0.747749,7.7597916 V 6.9174528 H 0.89941892 V 8.1829996 H 0.747749 L 0.31230956,7.3545231 0.25115234,7.221608 l 0.003262,0.1312842 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path927" />
+              <path
+                 d="M 1.1864502,8.1829996 H 1.0282568 L 1.4180322,6.9174528 H 1.5851953 L 1.977417,8.1829996 H 1.8037305 L 1.7172949,7.9049381 H 1.2720703 Z M 1.3112109,7.7785465 H 1.6806006 L 1.5281152,7.2982584 1.4922363,7.1710514 1.4604346,7.2982584 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path929" />
+              <path
+                 d="M 2.1812744,8.1829996 H 2.0483594 V 6.9174528 H 2.2138916 L 2.5058154,7.7508219 2.7977392,6.9174528 H 2.9591943 V 8.1829996 H 2.8075244 V 7.3765397 l 0.00408,-0.1108985 h -0.00408 L 2.7716455,7.3765397 2.5759424,7.9302164 H 2.4112256 L 2.2130762,7.3765397 2.1812744,7.2656412 h -0.00408 l 0.00408,0.1108985 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path931" />
+              <path
+                 d="M 3.8529054,8.0435611 V 8.1829996 H 3.1695753 V 6.9174528 h 0.6702832 v 0.127207 H 3.3342921 V 7.4743912 H 3.7893019 V 7.6007828 H 3.3342921 v 0.4427783 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path933" />
+              <path
+                 d="M 4.1334131,8.1560904 V 8.0011588 q 0.1957031,0.092959 0.3555273,0.092959 0.066865,0 0.1280225,-0.025278 0.061157,-0.026094 0.092143,-0.074204 0.031802,-0.04811 0.031802,-0.104375 0,-0.06605 -0.043218,-0.1231299 -0.043218,-0.057896 -0.1622705,-0.127207 l -0.083174,-0.04811 -0.083989,-0.04811 Q 4.14646,7.4124186 4.14646,7.2175309 q 0,-0.1427002 0.098667,-0.2397363 0.099482,-0.097852 0.3098632,-0.097852 0.1353614,0 0.261753,0.039141 V 7.060153 Q 4.6773047,7.006335 4.5452051,7.006335 q -0.1051904,0 -0.1704248,0.055449 -0.064419,0.055449 -0.064419,0.1337305 0,0.077466 0.049741,0.1288379 0.049741,0.051372 0.1272071,0.09459 l 0.063604,0.038325 0.079097,0.04811 0.066865,0.039141 Q 4.90481,7.6717254 4.90481,7.8641668 q 0,0.1467774 -0.1068213,0.2519678 -0.1068213,0.1051904 -0.3424805,0.1051904 -0.07502,0 -0.1435156,-0.013047 -0.067681,-0.012231 -0.1785795,-0.052188 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path935" />
+              <path
+                 d="M 5.3149706,7.7214664 V 8.1829996 H 5.1502538 V 6.9174528 h 0.3147559 q 0.1940722,0 0.2829541,0.044033 0.088882,0.043218 0.1361767,0.127207 0.047295,0.083989 0.047295,0.1875488 0,0.121499 -0.063604,0.2266895 -0.063603,0.1051904 -0.1777637,0.1622705 -0.1133447,0.056265 -0.3082324,0.056265 z m 0,-0.1263916 h 0.070942 q 0.1524853,0 0.2266894,-0.039141 0.074204,-0.039956 0.1141602,-0.1141602 0.039956,-0.074204 0.039956,-0.1606396 0,-0.1092676 -0.071758,-0.1728711 Q 5.6240182,7.0446589 5.413637,7.0446589 H 5.31497 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path937" />
+              <path
+                 d="M 6.1931887,8.1829996 H 6.0349954 L 6.4247708,6.9174528 h 0.167163 L 6.9841555,8.1829996 H 6.810469 L 6.7240335,7.9049381 H 6.2788089 Z M 6.3179495,7.7785465 H 6.6873391 L 6.5348538,7.2982584 6.4989749,7.1710514 6.4671731,7.2982584 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path939" />
+              <path
+                 d="m 7.8966212,8.1683219 q -0.1418847,0.053003 -0.254414,0.053003 -0.1484082,0 -0.273169,-0.079097 Q 7.2442775,8.062316 7.174966,7.9057535 7.1056544,7.7483756 7.1056544,7.5502262 q 0,-0.1965186 0.068496,-0.3530811 0.068496,-0.1565625 0.1932569,-0.23729 0.1247607,-0.080728 0.2747998,-0.080728 0.1125293,0 0.254414,0.053003 V 7.0821696 Q 7.765337,7.0063346 7.6356837,7.0063346 q -0.097851,0 -0.1793945,0.066865 -0.080727,0.066865 -0.1304687,0.1965186 -0.049741,0.1288379 -0.049741,0.2805078 0,0.1541162 0.051372,0.2845849 0.051372,0.1304688 0.1312842,0.1957032 0.079912,0.064419 0.1769482,0.064419 0.1288379,0 0.2609375,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path941" />
+              <path
+                 d="M 8.8596436,8.0435611 V 8.1829996 H 8.1763135 V 6.9174528 h 0.6702832 v 0.127207 H 8.3410303 V 7.4743912 H 8.7960401 V 7.6007828 H 8.3410303 v 0.4427783 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path943" />
+              <path
+                 d="m 9.5128026,8.2213248 q -0.054634,0 -0.093774,-0.039141 -0.039141,-0.039141 -0.039141,-0.093774 0,-0.055449 0.039141,-0.093774 0.039956,-0.039141 0.093774,-0.039141 0.053818,0 0.092959,0.039141 0.039956,0.038325 0.039956,0.093774 0,0.054634 -0.039141,0.093774 -0.039141,0.039141 -0.093775,0.039141 z m 0,-0.7086084 q -0.054634,0 -0.093774,-0.039141 -0.039141,-0.039141 -0.039141,-0.093774 0,-0.055449 0.039141,-0.093774 0.039956,-0.039141 0.093774,-0.039141 0.053818,0 0.092959,0.039141 0.039956,0.038325 0.039956,0.093774 0,0.054634 -0.039141,0.093774 -0.039141,0.039141 -0.093775,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path945" />
+            </g>
+            <g
+               aria-label="default"
+               id="text92"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 11.756702,7.9783268 q -0.06931,0.1141601 -0.167163,0.1720556 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992626 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 V 6.8668961 h 0.152486 v 1.3161035 h -0.152486 z m 0,-0.18021 V 7.407526 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234028,0.1084522 -0.09296,0.1084521 -0.09296,0.2951855 0,0.1353613 0.05056,0.2046729 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.1533,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path948" />
+              <path
+                 d="m 12.907274,8.1226578 q -0.181841,0.086436 -0.344112,0.086436 -0.123129,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.62788 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 12.301409,7.639108 h 0.454195 V 7.617091 q 0,-0.1117138 -0.05463,-0.1777636 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09378,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path950" />
+              <path
+                 d="M 13.363099,8.1829996 V 7.4743912 H 13.160872 V 7.3479996 h 0.202227 v -0.042402 q 0,-0.18021 0.04077,-0.2666455 0.04077,-0.086436 0.125577,-0.1418848 0.08562,-0.055449 0.225874,-0.055449 0.106005,0 0.215273,0.022017 v 0.1443311 q -0.118237,-0.039141 -0.209565,-0.039141 -0.07257,0 -0.128023,0.026909 -0.05545,0.026909 -0.08725,0.088066 -0.03099,0.060342 -0.03099,0.2054883 v 0.058711 H 13.876 v 0.1263916 h -0.361235 v 0.7086084 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path952" />
+              <path
+                 d="m 14.75096,7.9783268 q -0.06931,0.1141601 -0.167163,0.1720556 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992626 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 h 0.152486 v 0.643374 q 0,0.1647168 0.03425,0.2674609 H 14.7795 Q 14.76156,8.1079844 14.75096,7.9783306 Z m 0,-0.18021 V 7.407526 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234028,0.1084522 -0.09296,0.1084521 -0.09296,0.2951855 0,0.1353613 0.05056,0.2046729 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.1533,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path954" />
+              <path
+                 d="M 15.903162,7.2721647 V 8.1829996 H 15.751493 V 7.9832193 q -0.07339,0.1125293 -0.163086,0.168794 -0.0897,0.056265 -0.179395,0.056265 -0.07991,0 -0.146777,-0.042402 -0.06605,-0.043218 -0.09214,-0.1125293 -0.02609,-0.070127 -0.02609,-0.2723535 V 7.2721647 h 0.15167 v 0.527583 q 0,0.1312841 0.01223,0.1736865 0.01305,0.041587 0.04648,0.068496 0.03425,0.026909 0.07339,0.026909 0.07991,0 0.17124,-0.07502 0.09214,-0.075835 0.152486,-0.1908105 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path956" />
+              <path
+                 d="M 16.399759,8.1829996 V 6.9941032 H 16.127405 V 6.8668961 h 0.424024 V 8.056608 h 0.284585 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path958" />
+              <path
+                 d="m 17.918089,8.1463053 q -0.106821,0.044849 -0.154931,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 7.4743912 h -0.2275 V 7.3479996 h 0.227505 V 6.9810563 h 0.15167 v 0.3669433 h 0.405268 v 0.1263916 h -0.405268 v 0.3644971 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path960" />
+            </g>
+            <g
+               aria-label="STATUS:"
+               id="text94"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.12802246,10.327091 v -0.154932 q 0.19570312,0.09296 0.35552733,0.09296 0.0668652,0 0.12802246,-0.02528 0.0611572,-0.02609 0.0921435,-0.0742 0.0318018,-0.04811 0.0318018,-0.104375 0,-0.06605 -0.0432178,-0.12313 Q 0.64908195,9.880238 0.53002924,9.8109269 l -0.0831738,-0.04811 -0.0839893,-0.04811 Q 0.14106933,9.5834191 0.14106933,9.3885314 q 0,-0.1427002 0.098667,-0.2397364 0.0994824,-0.097851 0.30986328,-0.097851 0.13536132,0 0.26175292,0.039141 v 0.1410693 q -0.13943847,-0.053818 -0.27153808,-0.053818 -0.10519043,0 -0.1704248,0.055449 -0.0644189,0.055449 -0.0644189,0.1337305 0,0.077466 0.0497412,0.1288379 0.0497412,0.051372 0.12720703,0.09459 l 0.0636035,0.038325 0.0790967,0.04811 0.0668652,0.039141 q 0.20793456,0.127207 0.20793456,0.3196483 0,0.146777 -0.10682128,0.251968 -0.10682129,0.10519 -0.34248046,0.10519 -0.0750195,0 -0.14351563,-0.01305 -0.0676807,-0.01223 -0.17857909,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path963" />
+              <path
+                 d="M 1.4196631,10.354 V 9.2278917 H 1.0404883 V 9.0884532 H 1.9643701 V 9.2278917 H 1.5843799 V 10.354 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path965" />
+              <path
+                 d="M 2.1877979,10.354 H 2.0296045 L 2.4193799,9.0884532 H 2.586543 L 2.9787646,10.354 H 2.8050781 L 2.7186426,10.075939 H 2.273418 Z M 2.3125586,9.949547 H 2.6819482 L 2.5294629,9.4692589 2.493584,9.3420519 2.4617822,9.4692589 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path967" />
+              <path
+                 d="M 3.4223585,10.354 V 9.2278917 H 3.0431837 V 9.0884532 H 3.9670655 V 9.2278917 H 3.5870753 V 10.354 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path969" />
+              <path
+                 d="m 4.1081348,9.0884532 h 0.1647168 v 0.8309229 q 0,0.1639009 0.026909,0.2242429 0.027725,0.05953 0.083989,0.09133 0.05708,0.03099 0.1263916,0.03099 0.073389,0 0.1304688,-0.03343 0.057895,-0.03425 0.084805,-0.106006 Q 4.75314,10.053933 4.75314,9.8549651 V 9.0884532 h 0.15167 v 0.8260303 q 0,0.1769485 -0.053003,0.2772465 -0.052187,0.09948 -0.1369921,0.150039 -0.084805,0.05056 -0.2136426,0.05056 -0.1190527,0 -0.2095654,-0.04403 -0.090513,-0.04403 -0.1369922,-0.1321 -0.04648,-0.08807 -0.04648,-0.3180171 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path971" />
+              <path
+                 d="m 5.1347606,10.327091 v -0.154932 q 0.1957032,0.09296 0.3555274,0.09296 0.066865,0 0.1280224,-0.02528 0.061157,-0.02609 0.092144,-0.0742 0.031802,-0.04811 0.031802,-0.104375 0,-0.06605 -0.043218,-0.12313 Q 5.6558204,9.880238 5.5367679,9.8109269 l -0.083174,-0.04811 -0.083989,-0.04811 Q 5.1478075,9.5834191 5.1478075,9.3885314 q 0,-0.1427002 0.098667,-0.2397364 0.099482,-0.097851 0.3098633,-0.097851 0.1353613,0 0.2617529,0.039141 v 0.1410693 q -0.1394385,-0.053818 -0.2715381,-0.053818 -0.1051904,0 -0.1704248,0.055449 -0.064419,0.055449 -0.064419,0.1337305 0,0.077466 0.049741,0.1288379 0.049741,0.051372 0.127207,0.09459 l 0.063604,0.038325 0.079097,0.04811 0.066865,0.039141 q 0.2079346,0.127207 0.2079346,0.3196483 0,0.146777 -0.1068213,0.251968 -0.1068213,0.10519 -0.3424804,0.10519 -0.07502,0 -0.1435157,-0.01305 -0.067681,-0.01223 -0.1785791,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path973" />
+              <path
+                 d="m 6.50876,10.392325 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.7086081 q -0.054634,0 -0.093774,-0.039141 -0.039141,-0.039141 -0.039141,-0.093774 0,-0.055449 0.039141,-0.093774 0.039956,-0.039141 0.093774,-0.039141 0.053818,0 0.092959,0.039141 0.039956,0.038325 0.039956,0.093774 0,0.054634 -0.039141,0.093774 -0.039141,0.039141 -0.093774,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path975" />
+            </g>
+            <g
+               aria-label="deployed"
+               id="text96"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 8.7507019,10.149327 q -0.069311,0.11416 -0.1671631,0.172056 -0.097036,0.05789 -0.1785791,0.05789 -0.1141601,0 -0.2054882,-0.09867 -0.090513,-0.09867 -0.090513,-0.2992623 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.161455,-0.1965186 0.1011133,-0.072573 0.250337,-0.072573 0.043218,0 0.1304687,0.00897 0.013047,0.00163 0.039141,0.00408 V 9.0378966 H 8.9031873 V 10.354 H 8.7507019 Z m 0,-0.1802097 V 9.5785265 q -0.080728,-0.021201 -0.150039,-0.021201 -0.1402539,0 -0.2340283,0.1084522 -0.092959,0.1084521 -0.092959,0.2951855 0,0.1353608 0.050557,0.2046728 0.051372,0.0685 0.1166065,0.0685 0.070942,0 0.1565624,-0.07176 0.08562,-0.07176 0.1533008,-0.1932565 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path978" />
+              <path
+                 d="m 9.9012732,10.293658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057896,-0.11416 -0.057896,-0.2438138 0,-0.1247607 0.055449,-0.2397363 0.055449,-0.1149756 0.1549317,-0.1785791 0.099482,-0.064419 0.2217968,-0.064419 0.1622705,0 0.2601221,0.115791 0.098667,0.1157911 0.098667,0.3571582 V 9.923454 H 9.2864392 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 9.295409,9.8101085 h 0.4541943 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.067681 -0.066865,0.066865 -0.093774,0.1981497 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path980" />
+              <path
+                 d="m 10.285341,9.647838 q 0.07013,-0.1141602 0.167163,-0.1720557 0.09704,-0.057896 0.178579,-0.057896 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.282955 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 H 10.13367 V 9.4431652 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.2960007 0,-0.1361768 -0.05137,-0.2046729 -0.05137,-0.068496 -0.116606,-0.068496 -0.07094,0 -0.156563,0.071758 -0.0848,0.071758 -0.1533,0.1932569 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path982" />
+              <path
+                 d="M 11.391063,10.354 V 9.1651036 H 11.11871 v -0.127207 h 0.424023 v 1.1897114 h 0.284585 V 10.354 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path984" />
+              <path
+                 d="m 12.52288,10.379278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.3449271 0,-0.2079346 0.117422,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194887,0 0.312309,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079341 -0.117422,0.3449271 -0.117422,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655321 0.07176,0.2601221 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path986" />
+              <path
+                 d="M 13.484271,10.317306 13.063509,9.4431652 h 0.167164 l 0.335141,0.6833298 0.280508,-0.6833298 h 0.152485 l -0.353081,0.8464158 q -0.111714,0.268277 -0.212827,0.356343 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123945,-0.01223 v -0.133731 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101114 0.0473,-0.07257 0.06686,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path988" />
+              <path
+                 d="m 14.908012,10.293658 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.2438138 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 14.302148,9.8101085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path990" />
+              <path
+                 d="m 15.760136,10.149327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.17858,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.2992623 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101114,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 V 9.0378966 h 0.152485 V 10.354 h -0.152485 z m 0,-0.1802097 V 9.5785265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234029,0.1084522 -0.09296,0.1084521 -0.09296,0.2951855 0,0.1353608 0.05056,0.2046728 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.1932565 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path992" />
+            </g>
+            <g
+               aria-label="REVISION:"
+               id="text98"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.28621581,11.987631 V 12.525 H 0.12149902 v -1.265547 h 0.33840331 q 0.16553222,0 0.24381347,0.03425 0.0782812,0.03343 0.12068359,0.101929 0.0432178,0.0685 0.0432178,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0790967,0.132915 -0.0497412,0.0579 -0.14433105,0.110083 L 0.98177732,12.525 H 0.7860742 L 0.45093261,11.987631 Z m 0,-0.127207 h 0.2307666 q 0.0774658,-0.0424 0.11497558,-0.08643 0.0383252,-0.04403 0.0578955,-0.09378 0.0195703,-0.04974 0.0195703,-0.09948 0,-0.08888 -0.0652344,-0.141069 -0.0644189,-0.053 -0.23484375,-0.053 H 0.28621581 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path995" />
+              <path
+                 d="M 1.8502099,12.385561 V 12.525 h -0.68333 V 11.259453 H 1.8371631 V 11.38666 H 1.3315967 v 0.429731 h 0.4550097 v 0.126392 H 1.3315967 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path997" />
+              <path
+                 d="M 2.8205713,11.259453 H 2.9787646 L 2.5889893,12.525 H 2.4218262 L 2.0296045,11.259453 H 2.203291 l 0.2747998,0.883926 0.035879,0.128837 0.031802,-0.128022 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path999" />
+              <path
+                 d="M 3.144297,12.525 V 12.398608 H 3.4223585 V 11.38666 H 3.144297 V 11.259453 H 3.8651368 V 11.38666 H 3.5870753 v 1.011948 H 3.8651368 V 12.525 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1001" />
+              <path
+                 d="m 4.1334131,12.49809 v -0.154931 q 0.1957031,0.09296 0.3555273,0.09296 0.066865,0 0.1280225,-0.02528 0.061157,-0.02609 0.092143,-0.0742 0.031802,-0.04811 0.031802,-0.104375 0,-0.06605 -0.043218,-0.12313 -0.043218,-0.0579 -0.1622705,-0.127207 l -0.083174,-0.04811 -0.083989,-0.04811 Q 4.14646,11.754419 4.14646,11.559531 q 0,-0.1427 0.098667,-0.239736 0.099482,-0.09785 0.3098632,-0.09785 0.1353614,0 0.261753,0.03914 v 0.141069 q -0.1394385,-0.05382 -0.2715381,-0.05382 -0.1051904,0 -0.1704248,0.05545 -0.064419,0.05545 -0.064419,0.13373 0,0.07747 0.049741,0.128838 0.049741,0.05137 0.1272071,0.09459 l 0.063604,0.03833 0.079097,0.04811 0.066865,0.03914 q 0.2079346,0.127207 0.2079346,0.319649 0,0.146777 -0.1068213,0.251967 -0.1068213,0.105191 -0.3424805,0.105191 -0.07502,0 -0.1435156,-0.01305 -0.067681,-0.01223 -0.1785791,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1003" />
+              <path
+                 d="M 5.1469921,12.525 V 12.398608 H 5.4250536 V 11.38666 H 5.1469921 V 11.259453 H 5.8678319 V 11.38666 H 5.5897704 v 1.011948 H 5.8678319 V 12.525 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1005" />
+              <path
+                 d="m 6.50876,12.563325 q -0.2152734,0 -0.3294336,-0.181026 -0.1133447,-0.18184 -0.1133447,-0.490073 0,-0.307417 0.1133447,-0.488442 0.1141602,-0.181841 0.3294336,-0.181841 0.2160889,0 0.3294336,0.181841 0.1133447,0.181025 0.1133447,0.488442 0,0.308233 -0.1133447,0.490073 -0.1133447,0.181026 -0.3294336,0.181026 z m 0,-0.127207 q 0.1190528,0 0.1981494,-0.134546 0.079912,-0.135361 0.079912,-0.409346 0,-0.273984 -0.079912,-0.40853 -0.079097,-0.135361 -0.1981494,-0.135361 -0.1190527,0 -0.1989648,0.135361 -0.079097,0.134546 -0.079097,0.40853 0,0.273985 0.079097,0.409346 0.079912,0.134546 0.1989648,0.134546 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1007" />
+              <path
+                 d="M 7.2638478,12.525 H 7.1121779 v -1.265547 h 0.1484082 l 0.4476709,0.842339 0.048926,0.125576 h 0.00408 L 7.757183,12.101792 V 11.259453 H 7.9088527 V 12.525 H 7.7571828 l -0.4354395,-0.828477 -0.061157,-0.132915 0.00326,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1009" />
+              <path
+                 d="m 8.5114551,12.563325 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708609 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1011" />
+            </g>
+            <g
+               aria-label="1"
+               id="text100"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 10.483165,12.398608 v -0.976885 q -0.0685,0.05463 -0.132916,0.09296 -0.06442,0.03832 -0.176948,0.07828 V 11.45597 q 0.178579,-0.07583 0.309864,-0.196518 h 0.151669 v 1.139155 H 10.93899 V 12.525 h -0.765689 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1014" />
+            </g>
+            <g
+               aria-label="TEST"
+               id="text102"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.41831542,14.696 v -1.126108 h -0.3791748 v -0.139439 h 0.92388182 v 0.139439 H 0.58303221 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1017" />
+              <path
+                 d="M 1.8502099,14.556562 V 14.696 h -0.68333 V 13.430453 H 1.8371631 V 13.55766 H 1.3315967 v 0.429732 h 0.4550097 v 0.126391 H 1.3315967 v 0.442779 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1019" />
+              <path
+                 d="m 2.1307178,14.669091 v -0.154932 q 0.1957031,0.09296 0.3555273,0.09296 0.066865,0 0.1280225,-0.02528 0.061157,-0.02609 0.092144,-0.0742 0.031802,-0.04811 0.031802,-0.104375 0,-0.06605 -0.043218,-0.12313 -0.043218,-0.0579 -0.1622705,-0.127207 l -0.083174,-0.04811 -0.083989,-0.04811 q -0.2217968,-0.131284 -0.2217968,-0.326172 0,-0.1427 0.098667,-0.239736 0.099482,-0.09785 0.3098633,-0.09785 0.1353613,0 0.2617529,0.03914 v 0.141069 q -0.1394384,-0.05382 -0.271538,-0.05382 -0.1051905,0 -0.1704248,0.05545 -0.064419,0.05545 -0.064419,0.133731 0,0.07747 0.049741,0.128838 0.049741,0.05137 0.1272071,0.09459 l 0.063604,0.03833 0.079097,0.04811 0.066865,0.03914 q 0.2079345,0.127207 0.2079345,0.319648 0,0.146777 -0.1068212,0.251968 -0.1068213,0.10519 -0.3424805,0.10519 -0.075019,0 -0.1435156,-0.01305 -0.067681,-0.01223 -0.1785791,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1021" />
+              <path
+                 d="M 3.4223585,14.696 V 13.569892 H 3.0431837 v -0.139439 h 0.9238818 v 0.139439 H 3.5870753 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1023" />
+            </g>
+            <g
+               aria-label="SUITE:"
+               id="text104"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 5.1380227,14.669091 v -0.154932 q 0.1957031,0.09296 0.3555273,0.09296 0.066865,0 0.1280225,-0.02528 0.061157,-0.02609 0.092143,-0.0742 0.031802,-0.04811 0.031802,-0.104375 0,-0.06605 -0.043218,-0.12313 -0.043218,-0.0579 -0.1622705,-0.127207 l -0.083174,-0.04811 -0.083989,-0.04811 q -0.2217968,-0.131284 -0.2217968,-0.326172 0,-0.1427 0.098667,-0.239736 0.099482,-0.09785 0.3098632,-0.09785 0.1353613,0 0.2617529,0.03914 v 0.141069 q -0.1394384,-0.05382 -0.271538,-0.05382 -0.1051905,0 -0.1704248,0.05545 -0.064419,0.05545 -0.064419,0.133731 0,0.07747 0.049741,0.128838 0.049741,0.05137 0.1272071,0.09459 l 0.063604,0.03833 0.079097,0.04811 0.066865,0.03914 q 0.2079346,0.127207 0.2079346,0.319648 0,0.146777 -0.1068213,0.251968 -0.1068213,0.10519 -0.3424805,0.10519 -0.075019,0 -0.1435156,-0.01305 -0.067681,-0.01223 -0.1785791,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1026" />
+              <path
+                 d="m 6.114092,13.430453 h 0.1647168 v 0.830923 q 0,0.163901 0.026909,0.224243 0.027725,0.05953 0.083989,0.09133 0.05708,0.03099 0.1263916,0.03099 0.073389,0 0.1304687,-0.03343 0.057895,-0.03425 0.084805,-0.106006 0.027725,-0.07257 0.027725,-0.271538 V 13.430461 H 6.910767 v 0.826031 q 0,0.176948 -0.053003,0.277246 -0.052188,0.09948 -0.1369922,0.150039 -0.084805,0.05056 -0.2136426,0.05056 -0.1190527,0 -0.2095654,-0.04403 -0.090513,-0.04403 -0.1369922,-0.1321 -0.046479,-0.08807 -0.046479,-0.318017 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1028" />
+              <path
+                 d="M 7.1529495,14.696 V 14.569609 H 7.431011 V 13.55766 H 7.1529495 V 13.430453 H 7.8737893 V 13.55766 H 7.5957278 v 1.011949 H 7.8737893 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1030" />
+              <path
+                 d="M 8.4323588,14.696 V 13.569892 H 8.053184 v -0.139439 h 0.9238818 v 0.139439 H 8.5970755 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1032" />
+              <path
+                 d="M 9.8642532,14.556562 V 14.696 H 9.1809231 V 13.430453 H 9.8512063 V 13.55766 H 9.3456399 v 0.429732 h 0.4550097 v 0.126391 H 9.3456399 v 0.442779 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1034" />
+              <path
+                 d="m 10.517412,14.734325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1036" />
+            </g>
+            <g
+               aria-label="None"
+               id="text106"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 12.278414,14.696 h -0.15167 v -1.265547 h 0.148409 l 0.44767,0.842339 0.04893,0.125576 h 0.0041 l -0.0041,-0.125576 v -0.842339 h 0.15167 V 14.696 h -0.15167 l -0.435439,-0.828476 -0.06116,-0.132915 0.0033,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1039" />
+              <path
+                 d="m 13.526837,14.721278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1041" />
+              <path
+                 d="m 14.153087,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 14.696 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1043" />
+              <path
+                 d="m 15.911969,14.635658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1045" />
+            </g>
+            <g
+               aria-label="NOTES:"
+               id="text108"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.25441406,16.867001 H 0.10274414 v -1.265547 h 0.1484082 l 0.44767088,0.842339 0.0489258,0.125576 h 0.004077 L 0.747749,16.443793 v -0.842339 h 0.15166992 v 1.265547 H 0.747749 l -0.43543944,-0.828477 -0.0611572,-0.132915 0.003262,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1048" />
+              <path
+                 d="m 1.5020215,16.905326 q -0.2152735,0 -0.3294336,-0.181026 -0.1133447,-0.18184 -0.1133447,-0.490073 0,-0.307417 0.1133447,-0.488442 0.1141601,-0.181841 0.3294336,-0.181841 0.2160888,0 0.3294336,0.181841 0.1133447,0.181025 0.1133447,0.488442 0,0.308233 -0.1133447,0.490073 -0.1133448,0.181026 -0.3294336,0.181026 z m 0,-0.127207 q 0.1190527,0 0.1981494,-0.134546 0.079912,-0.135361 0.079912,-0.409346 0,-0.273984 -0.079912,-0.40853 -0.079097,-0.135361 -0.1981494,-0.135361 -0.1190528,0 -0.1989649,0.135361 -0.079097,0.134546 -0.079097,0.40853 0,0.273985 0.079097,0.409346 0.079912,0.134546 0.1989649,0.134546 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1050" />
+              <path
+                 d="M 2.4210107,16.867001 V 15.740892 H 2.0418359 v -0.139438 h 0.9238819 v 0.139438 H 2.5857275 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1052" />
+              <path
+                 d="m 3.8529054,16.727562 v 0.139439 H 3.1695753 v -1.265547 h 0.6702832 v 0.127207 H 3.3342921 v 0.429731 h 0.4550098 v 0.126392 H 3.3342921 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1054" />
+              <path
+                 d="M 4.1334131,16.840091 V 16.68516 q 0.1957031,0.09296 0.3555273,0.09296 0.066865,0 0.1280225,-0.02528 0.061157,-0.02609 0.092143,-0.0742 0.031802,-0.04811 0.031802,-0.104375 0,-0.06605 -0.043218,-0.12313 -0.043218,-0.05789 -0.1622705,-0.127207 l -0.083174,-0.04811 -0.083989,-0.04811 Q 4.14646,16.09642 4.14646,15.901532 q 0,-0.1427 0.098667,-0.239736 0.099482,-0.09785 0.3098632,-0.09785 0.1353614,0 0.261753,0.03914 v 0.141069 q -0.1394385,-0.05382 -0.2715381,-0.05382 -0.1051904,0 -0.1704248,0.05545 -0.064419,0.05545 -0.064419,0.13373 0,0.07747 0.049741,0.128838 0.049741,0.05137 0.1272071,0.09459 l 0.063604,0.03833 0.079097,0.04811 0.066865,0.03914 Q 4.90481,16.35573 4.90481,16.548172 q 0,0.146777 -0.1068213,0.251967 -0.1068213,0.105191 -0.3424805,0.105191 -0.07502,0 -0.1435156,-0.01305 -0.067681,-0.01223 -0.1785791,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1056" />
+              <path
+                 d="m 5.507412,16.905326 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708609 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1058" />
+            </g>
+            <g
+               aria-label="1."
+               id="text110"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.46316405,18.911609 v -0.976885 q -0.0684961,0.05463 -0.13291504,0.09296 -0.0644189,0.03833 -0.17694823,0.07828 v -0.136992 q 0.17857909,-0.07584 0.30986327,-0.196519 h 0.15166992 v 1.139156 H 0.91898923 V 19.038 H 0.15330078 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1061" />
+              <path
+                 d="m 1.5020215,19.076325 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1063" />
+            </g>
+            <g
+               aria-label="foo-kubernetes"
+               id="text112"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 3.3444034,19.038 V 18.329392 H 3.1421768 V 18.203 h 0.2022266 v -0.0424 q 0,-0.18021 0.040771,-0.266646 0.040771,-0.08643 0.1255762,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.1060059,0 0.2152735,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.2095655,-0.03914 -0.072573,0 -0.1280224,0.02691 -0.055449,0.02691 -0.087251,0.08807 -0.030986,0.06034 -0.030986,0.205488 v 0.0587 h 0.3612353 v 0.126392 H 3.4960733 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1066" />
+              <path
+                 d="m 4.5088369,19.063278 q -0.1957031,0 -0.3131249,-0.136176 -0.1174219,-0.136993 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.3131249,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207934 -0.1174219,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.1214991,0 0.1932569,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932569,-0.09459 -0.1223144,0 -0.1940722,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940722,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1068" />
+              <path
+                 d="m 5.5101846,19.063278 q -0.1957031,0 -0.313125,-0.136176 -0.1174219,-0.136993 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207934 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1070" />
+              <path
+                 d="m 6.1951457,18.588698 v -0.126391 h 0.6327734 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1072" />
+              <path
+                 d="m 7.1785538,19.038 v -1.316103 h 0.1516699 v 0.826845 L 7.7681094,18.127165 H 7.970336 L 7.5332657,18.548742 7.981752,19.038 H 7.773002 L 7.3302237,18.548742 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1074" />
+              <path
+                 d="M 8.8885097,18.127165 V 19.038 H 8.7368398 v -0.19978 q -0.073389,0.112529 -0.163086,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467773,-0.0424 -0.06605,-0.04322 -0.092144,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092144,-0.07584 0.1524854,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1076" />
+              <path
+                 d="m 9.2807317,18.331838 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.05789 0.1785791,-0.05789 0.1141602,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 9.1290618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.15167,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166065,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1078" />
+              <path
+                 d="m 10.89936,18.977658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1080" />
+              <path
+                 d="m 11.220639,19.038 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03832,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1082" />
+              <path
+                 d="m 12.14452,19.038 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 19.038 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1084" />
+              <path
+                 d="m 13.903402,18.977658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1086" />
+              <path
+                 d="m 14.908827,19.001306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 18.203 h 0.227505 v -0.366943 h 0.15167 V 18.203 h 0.405269 v 0.126392 H 14.47828 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1088" />
+              <path
+                 d="m 15.906098,18.977658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1090" />
+              <path
+                 d="m 16.160512,18.98989 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 V 18.2821 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1092" />
+            </g>
+            <g
+               aria-label="cluster"
+               id="text114"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 18.928895,19.011906 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1095" />
+              <path
+                 d="m 19.408367,19.038 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1097" />
+              <path
+                 d="M 20.914466,18.127165 V 19.038 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1099" />
+              <path
+                 d="m 21.177035,18.98989 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172872,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08643,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 V 18.2821 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1101" />
+              <path
+                 d="m 22.929393,19.001306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 18.203 h 0.227505 v -0.366943 h 0.15167 V 18.203 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1103" />
+              <path
+                 d="m 23.926663,18.977658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1105" />
+              <path
+                 d="m 24.247943,19.038 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1107" />
+            </g>
+            <g
+               aria-label="deployed."
+               id="text116"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 26.786702,18.833327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152486 V 19.038 h -0.152486 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1110" />
+              <path
+                 d="m 27.937273,18.977658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1112" />
+              <path
+                 d="m 28.321341,18.331838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1114" />
+              <path
+                 d="M 29.427064,19.038 V 17.849104 H 29.15471 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1116" />
+              <path
+                 d="m 30.55888,19.063278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117421,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1118" />
+              <path
+                 d="M 31.520271,19.001306 31.09951,18.127165 h 0.167163 l 0.335141,0.68333 0.280508,-0.68333 h 0.152486 l -0.353082,0.846416 q -0.111713,0.268277 -0.212827,0.356343 -0.100297,0.08807 -0.260122,0.08807 -0.06931,0 -0.123945,-0.01223 v -0.133731 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101114 0.04729,-0.07257 0.06686,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1120" />
+              <path
+                 d="m 32.944012,18.977658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1122" />
+              <path
+                 d="m 33.796136,18.833327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 V 17.721956 H 33.94862 V 19.038 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1124" />
+              <path
+                 d="m 34.563455,19.076325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1126" />
+            </g>
+            <g
+               aria-label="Get"
+               id="text118"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 2.8911874,23.379184 q -0.1337304,0.03914 -0.2454443,0.03914 -0.1581934,0 -0.2821387,-0.07828 -0.1231298,-0.07828 -0.1932568,-0.235659 -0.070127,-0.158193 -0.070127,-0.357158 0,-0.196519 0.068496,-0.353081 0.068496,-0.156563 0.1932569,-0.23729 0.1247607,-0.08073 0.2739843,-0.08073 0.1125293,0 0.2544141,0.053 v 0.150039 q -0.1312842,-0.07583 -0.2609375,-0.07583 -0.097852,0 -0.1793945,0.06686 -0.080728,0.06687 -0.1304688,0.196519 -0.048926,0.128838 -0.048926,0.282139 0,0.205488 0.093775,0.374282 0.093774,0.168794 0.2960009,0.168794 0.026094,0 0.06605,-0.0041 V 22.880141 H 2.600079 v -0.126392 h 0.2911084 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1129" />
+              <path
+                 d="m 3.8892734,23.319657 q -0.1818408,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057896,-0.11416 -0.057896,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 3.2744394 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 3.2834091,22.836108 h 0.4541944 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598243,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1131" />
+              <path
+                 d="m 4.8946982,23.343305 q -0.1068213,0.04485 -0.1549317,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.174502,-0.03669 -0.079097,-0.03669 -0.1198682,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 22.671391 H 4.0849765 v -0.126392 h 0.2275049 v -0.366943 h 0.1516699 v 0.366943 h 0.4052686 v 0.126392 H 4.4641513 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069311,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1133" />
+            </g>
+            <g
+               aria-label="shell"
+               id="text120"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 6.1489923,23.331889 v -0.16064 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023647,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 l -0.052187,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122314 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.11253 0.086436,-0.185103 0.087251,-0.07257 0.2821387,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137808 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027441,0.03751 q 0.1410694,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.091328,0.194888 -0.090513,0.07583 -0.290293,0.07583 -0.1745019,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1136" />
+              <path
+                 d="m 7.1397393,23.379999 v -1.316103 h 0.15167 v 0.604233 q 0.065234,-0.10519 0.1573779,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.077466,0 0.1410693,0.03996 0.064419,0.03914 0.089697,0.0954 0.020386,0.04322 0.027725,0.09214 0.00734,0.04811 0.00734,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07584 -0.1508544,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1138" />
+              <path
+                 d="m 8.8986212,23.319657 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 8.2837872 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 8.2927569,22.836108 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.145962,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1140" />
+              <path
+                 d="M 9.3870637,23.379999 V 22.191103 H 9.1147102 v -0.127207 h 0.4240234 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1142" />
+              <path
+                 d="m 10.388411,23.379999 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1144" />
+            </g>
+            <g
+               aria-label="in"
+               id="text122"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 12.405621,23.379999 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1147" />
+              <path
+                 d="m 13.151739,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1149" />
+            </g>
+            <g
+               aria-label="admin"
+               id="text124"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 15.754917,23.175326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1152" />
+              <path
+                 d="m 16.76605,23.175326 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 H 16.76605 Z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1154" />
+              <path
+                 d="m 17.090591,23.379999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1156" />
+              <path
+                 d="m 18.415664,23.379999 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1158" />
+              <path
+                 d="m 19.161782,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1160" />
+            </g>
+            <g
+               aria-label="container:"
+               id="text126"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 21.934895,23.353905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1163" />
+              <path
+                 d="m 22.544837,23.405277 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1165" />
+              <path
+                 d="m 23.171087,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1167" />
+              <path
+                 d="m 24.934046,23.343305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1169" />
+              <path
+                 d="m 25.772307,23.175326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 H 25.80085 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1171" />
+              <path
+                 d="m 26.430359,23.379999 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1173" />
+              <path
+                 d="m 27.176478,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157377,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1175" />
+              <path
+                 d="m 28.935359,23.319657 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1177" />
+              <path
+                 d="m 29.256639,23.379999 v -0.910835 h 0.151669 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1179" />
+              <path
+                 d="m 30.554802,23.418324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1181" />
+            </g>
+            <g
+               aria-label="┌───────────────────────────────────────────────────────────────┐"
+               id="text128"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 5.0126092,24.892133 v 0.152486 l -0.4354394,8.15e-4 V 25.71164 H 4.4418085 v -0.819507 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1184" />
+              <path
+                 d="m 6.0106952,24.892133 v 0.15167 H 5.0109784 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1186" />
+              <path
+                 d="m 7.0120428,24.892133 v 0.15167 H 6.0123261 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1188" />
+              <path
+                 d="m 8.0133906,24.892133 v 0.15167 H 7.0136739 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1190" />
+              <path
+                 d="m 9.0147382,24.892133 v 0.15167 H 8.0150214 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1192" />
+              <path
+                 d="m 10.016086,24.892133 v 0.15167 H 9.0163689 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1194" />
+              <path
+                 d="m 11.017434,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1196" />
+              <path
+                 d="m 12.018781,24.892133 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1198" />
+              <path
+                 d="m 13.020129,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1200" />
+              <path
+                 d="m 14.021476,24.892133 v 0.15167 H 13.02176 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1202" />
+              <path
+                 d="m 15.022824,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1204" />
+              <path
+                 d="m 16.024171,24.892133 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1206" />
+              <path
+                 d="m 17.02552,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1208" />
+              <path
+                 d="m 18.026867,24.892133 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1210" />
+              <path
+                 d="m 19.028215,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1212" />
+              <path
+                 d="m 20.029563,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1214" />
+              <path
+                 d="m 21.03091,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1216" />
+              <path
+                 d="m 22.032259,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1218" />
+              <path
+                 d="m 23.033605,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1220" />
+              <path
+                 d="m 24.034954,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1222" />
+              <path
+                 d="m 25.0363,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1224" />
+              <path
+                 d="m 26.037649,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1226" />
+              <path
+                 d="m 27.038995,24.892133 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1228" />
+              <path
+                 d="m 28.040344,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1230" />
+              <path
+                 d="m 29.041692,24.892133 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1232" />
+              <path
+                 d="m 30.043039,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1234" />
+              <path
+                 d="m 31.044387,24.892133 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1236" />
+              <path
+                 d="m 32.045734,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1238" />
+              <path
+                 d="m 33.047083,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1240" />
+              <path
+                 d="m 34.048429,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1242" />
+              <path
+                 d="m 35.049778,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1244" />
+              <path
+                 d="m 36.051124,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1246" />
+              <path
+                 d="m 37.052473,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1248" />
+              <path
+                 d="m 38.053819,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1250" />
+              <path
+                 d="m 39.05517,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1252" />
+              <path
+                 d="m 40.056516,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1254" />
+              <path
+                 d="m 41.057863,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1256" />
+              <path
+                 d="m 42.059209,24.892133 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1258" />
+              <path
+                 d="m 43.06056,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1260" />
+              <path
+                 d="m 44.061906,24.892133 v 0.15167 H 43.06219 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1262" />
+              <path
+                 d="m 45.063253,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1264" />
+              <path
+                 d="m 46.064603,24.892133 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1266" />
+              <path
+                 d="m 47.06595,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1268" />
+              <path
+                 d="m 48.067297,24.892133 v 0.15167 H 47.06758 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1270" />
+              <path
+                 d="m 49.068643,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1272" />
+              <path
+                 d="m 50.069994,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1274" />
+              <path
+                 d="m 51.07134,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1276" />
+              <path
+                 d="m 52.072687,24.892133 v 0.15167 H 51.07297 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1278" />
+              <path
+                 d="m 53.074037,24.892133 v 0.15167 H 52.07432 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1280" />
+              <path
+                 d="m 54.075384,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1282" />
+              <path
+                 d="m 55.07673,24.892133 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1284" />
+              <path
+                 d="m 56.078077,24.892133 v 0.15167 H 55.07836 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1286" />
+              <path
+                 d="m 57.079427,24.892133 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1288" />
+              <path
+                 d="m 58.080774,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1290" />
+              <path
+                 d="m 59.082121,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1292" />
+              <path
+                 d="m 60.083467,24.892133 v 0.15167 H 59.08375 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1294" />
+              <path
+                 d="m 61.084817,24.892133 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1296" />
+              <path
+                 d="m 62.086164,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1298" />
+              <path
+                 d="m 63.087511,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1300" />
+              <path
+                 d="m 64.088861,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1302" />
+              <path
+                 d="m 65.090208,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1304" />
+              <path
+                 d="m 66.091554,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1306" />
+              <path
+                 d="m 67.092901,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1308" />
+              <path
+                 d="m 68.094251,24.892133 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1310" />
+              <path
+                 d="M 68.66342,24.892133 V 25.71164 H 68.528059 V 25.043803 H 68.09425 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1312" />
+            </g>
+            <g
+               aria-label="│"
+               id="text130"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 4.5771698,26.46053 v 1.42211 H 4.4418085 v -1.42211 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1315" />
+            </g>
+            <g
+               aria-label="kubectl"
+               id="text132"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 6.1791632,27.722 v -1.316103 h 0.1516699 v 0.826845 L 6.7687188,26.811165 H 6.9709454 L 6.5338751,27.232742 6.9823614,27.722 h -0.20875 L 6.3308331,27.232742 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1318" />
+              <path
+                 d="M 7.8891192,26.811165 V 27.722 H 7.7374493 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05626 -0.1793946,0.05626 -0.079912,0 -0.1467773,-0.0424 -0.06605,-0.04322 -0.092144,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.046479,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092144,-0.07584 0.1524854,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1320" />
+              <path
+                 d="m 8.2813409,27.015838 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 8.129671 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.2315821,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1322" />
+              <path
+                 d="m 9.8999689,27.661658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 9.285135 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z M 9.2941047,27.178109 H 9.748299 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1324" />
+              <path
+                 d="m 10.910286,27.695906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1326" />
+              <path
+                 d="m 11.906741,27.685306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119869,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 27.013392 H 11.09702 V 26.887 h 0.227504 v -0.366943 h 0.15167 V 26.887 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1328" />
+              <path
+                 d="m 12.391107,27.722 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1330" />
+            </g>
+            <g
+               aria-label="exec"
+               id="text134"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 14.911926,27.661658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1333" />
+              <path
+                 d="m 15.250329,27.722 h -0.175317 l 0.357973,-0.477026 -0.334326,-0.433809 h 0.194072 l 0.23729,0.305786 0.230767,-0.305786 h 0.172056 L 15.616457,27.230296 15.99237,27.722 h -0.194888 l -0.277246,-0.362866 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1335" />
+              <path
+                 d="m 16.914621,27.661658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1337" />
+              <path
+                 d="m 17.924938,27.695906 q -0.152485,0.05137 -0.290292,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284584,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1339" />
+            </g>
+            <g
+               aria-label="-n"
+               id="text136"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 19.223103,27.272698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1342" />
+              <path
+                 d="m 20.165739,27.722 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 27.722 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1344" />
+            </g>
+            <g
+               aria-label="default"
+               id="text138"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 22.778703,27.517327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 V 27.722 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1347" />
+              <path
+                 d="m 23.929274,27.661658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 H 23.31444 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 23.32341,27.178109 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1349" />
+              <path
+                 d="M 24.385099,27.722 V 27.013392 H 24.182873 V 26.887 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 V 26.887 H 24.898 v 0.126392 H 24.536769 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1351" />
+              <path
+                 d="m 25.772961,27.517327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1353" />
+              <path
+                 d="M 26.925163,26.811165 V 27.722 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152486,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1355" />
+              <path
+                 d="m 27.421759,27.722 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1357" />
+              <path
+                 d="m 28.94009,27.685306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 26.887 h 0.227505 v -0.366943 h 0.15167 V 26.887 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1359" />
+            </g>
+            <g
+               aria-label="-ti"
+               id="text140"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 30.245102,27.272698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1362" />
+              <path
+                 d="m 31.94935,27.685306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 26.887 h 0.227505 v -0.366943 h 0.15167 V 26.887 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1364" />
+              <path
+                 d="m 32.444316,27.722 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 V 27.722 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1366" />
+            </g>
+            <g
+               aria-label="deploy/foo-kubernetes-admin"
+               id="text142"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 34.802703,27.517327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 V 27.722 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1369" />
+              <path
+                 d="m 35.953274,27.661658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 35.34741,27.178109 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1371" />
+              <path
+                 d="m 36.337342,27.015838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1373" />
+              <path
+                 d="m 37.443064,27.722 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1375" />
+              <path
+                 d="m 38.574881,27.747278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1377" />
+              <path
+                 d="M 39.536272,27.685306 39.11551,26.811165 h 0.167164 l 0.335141,0.68333 0.280508,-0.68333 h 0.152485 l -0.353081,0.846416 q -0.111714,0.268277 -0.212827,0.356343 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123945,-0.01223 v -0.133731 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101114 0.04729,-0.07257 0.06686,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1379" />
+              <path
+                 d="m 40.25222,27.760325 h -0.149224 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1381" />
+              <path
+                 d="M 41.415838,27.722 V 27.013392 H 41.213611 V 26.887 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125577,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106005,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.0587 h 0.361235 v 0.126392 H 41.567508 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1383" />
+              <path
+                 d="m 42.580271,27.747278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1385" />
+              <path
+                 d="m 43.581619,27.747278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117421,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1387" />
+              <path
+                 d="m 44.26658,27.272698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1389" />
+              <path
+                 d="m 45.249988,27.722 v -1.316103 h 0.15167 v 0.826845 l 0.437885,-0.421577 H 46.04177 L 45.6047,27.232742 46.053186,27.722 h -0.20875 L 45.401658,27.232742 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1391" />
+              <path
+                 d="M 46.959945,26.811165 V 27.722 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152486,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1393" />
+              <path
+                 d="m 47.352166,27.015838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1395" />
+              <path
+                 d="m 48.970794,27.661658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 H 48.35596 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 48.36493,27.178109 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1397" />
+              <path
+                 d="m 49.292073,27.722 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06687 -0.159009,0.200595 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1399" />
+              <path
+                 d="m 50.215955,27.722 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 27.722 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1401" />
+              <path
+                 d="m 51.974838,27.661658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1403" />
+              <path
+                 d="m 52.980261,27.685306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 26.887 h 0.227505 v -0.366943 h 0.151669 V 26.887 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1405" />
+              <path
+                 d="m 53.977533,27.661658 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1407" />
+              <path
+                 d="m 54.231946,27.67389 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 V 26.9661 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1409" />
+              <path
+                 d="m 55.281405,27.272698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1411" />
+              <path
+                 d="m 56.822566,27.517327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.17858,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1413" />
+              <path
+                 d="m 57.833699,27.517327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152486 V 27.722 H 57.8337 Z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1415" />
+              <path
+                 d="m 58.158241,27.722 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 27.722 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 27.722 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1417" />
+              <path
+                 d="M 59.483313,27.722 V 26.937557 H 59.23053 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 27.722 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1419" />
+              <path
+                 d="m 60.229432,27.722 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 27.722 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1421" />
+            </g>
+            <g
+               aria-label="--"
+               id="text144"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 62.309103,27.272698 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1424" />
+              <path
+                 d="m 63.310451,27.272698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1426" />
+            </g>
+            <g
+               aria-label="sh"
+               id="text146"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 65.266989,27.67389 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08643,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 V 26.9661 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174501,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1429" />
+              <path
+                 d="m 66.257737,27.722 v -1.316103 h 0.151669 v 0.604233 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.14107,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 V 27.722 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1431" />
+            </g>
+            <g
+               aria-label="│"
+               id="text148"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 68.705171,26.46053 v 1.42211 H 68.56981 v -1.42211 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1434" />
+            </g>
+            <g
+               aria-label="└───────────────────────────────────────────────────────────────┘"
+               id="text150"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 4.5771698,28.63153 v 0.603418 h 0.4354394 v 0.150854 H 4.4418085 V 28.63153 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1437" />
+              <path
+                 d="m 6.0106952,29.234132 v 0.15167 H 5.0109784 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1439" />
+              <path
+                 d="m 7.0120428,29.234132 v 0.15167 H 6.0123261 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1441" />
+              <path
+                 d="m 8.0133906,29.234132 v 0.15167 H 7.0136739 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1443" />
+              <path
+                 d="m 9.0147382,29.234132 v 0.15167 H 8.0150214 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1445" />
+              <path
+                 d="m 10.016086,29.234132 v 0.15167 H 9.0163689 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1447" />
+              <path
+                 d="m 11.017434,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1449" />
+              <path
+                 d="m 12.018781,29.234132 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1451" />
+              <path
+                 d="m 13.020129,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1453" />
+              <path
+                 d="m 14.021476,29.234132 v 0.15167 H 13.02176 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1455" />
+              <path
+                 d="m 15.022824,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1457" />
+              <path
+                 d="m 16.024171,29.234132 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1459" />
+              <path
+                 d="m 17.02552,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1461" />
+              <path
+                 d="m 18.026867,29.234132 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1463" />
+              <path
+                 d="m 19.028215,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1465" />
+              <path
+                 d="m 20.029563,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1467" />
+              <path
+                 d="m 21.03091,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1469" />
+              <path
+                 d="m 22.032259,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1471" />
+              <path
+                 d="m 23.033605,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1473" />
+              <path
+                 d="m 24.034954,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1475" />
+              <path
+                 d="m 25.0363,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1477" />
+              <path
+                 d="m 26.037649,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1479" />
+              <path
+                 d="m 27.038995,29.234132 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1481" />
+              <path
+                 d="m 28.040344,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1483" />
+              <path
+                 d="m 29.041692,29.234132 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1485" />
+              <path
+                 d="m 30.043039,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1487" />
+              <path
+                 d="m 31.044387,29.234132 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1489" />
+              <path
+                 d="m 32.045734,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1491" />
+              <path
+                 d="m 33.047083,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1493" />
+              <path
+                 d="m 34.048429,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1495" />
+              <path
+                 d="m 35.049778,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1497" />
+              <path
+                 d="m 36.051124,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1499" />
+              <path
+                 d="m 37.052473,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1501" />
+              <path
+                 d="m 38.053819,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1503" />
+              <path
+                 d="m 39.05517,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1505" />
+              <path
+                 d="m 40.056516,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1507" />
+              <path
+                 d="m 41.057863,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1509" />
+              <path
+                 d="m 42.059209,29.234132 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1511" />
+              <path
+                 d="m 43.06056,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1513" />
+              <path
+                 d="m 44.061906,29.234132 v 0.15167 H 43.06219 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1515" />
+              <path
+                 d="m 45.063253,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1517" />
+              <path
+                 d="m 46.064603,29.234132 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1519" />
+              <path
+                 d="m 47.06595,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1521" />
+              <path
+                 d="m 48.067297,29.234132 v 0.15167 H 47.06758 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1523" />
+              <path
+                 d="m 49.068643,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1525" />
+              <path
+                 d="m 50.069994,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1527" />
+              <path
+                 d="m 51.07134,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1529" />
+              <path
+                 d="m 52.072687,29.234132 v 0.15167 H 51.07297 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1531" />
+              <path
+                 d="m 53.074037,29.234132 v 0.15167 H 52.07432 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1533" />
+              <path
+                 d="m 54.075384,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1535" />
+              <path
+                 d="m 55.07673,29.234132 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1537" />
+              <path
+                 d="m 56.078077,29.234132 v 0.15167 H 55.07836 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1539" />
+              <path
+                 d="m 57.079427,29.234132 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1541" />
+              <path
+                 d="m 58.080774,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1543" />
+              <path
+                 d="m 59.082121,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1545" />
+              <path
+                 d="m 60.083467,29.234132 v 0.15167 H 59.08375 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1547" />
+              <path
+                 d="m 61.084817,29.234132 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1549" />
+              <path
+                 d="m 62.086164,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1551" />
+              <path
+                 d="m 63.087511,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1553" />
+              <path
+                 d="m 64.088861,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1555" />
+              <path
+                 d="m 65.090208,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1557" />
+              <path
+                 d="m 66.091554,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1559" />
+              <path
+                 d="m 67.092901,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1561" />
+              <path
+                 d="m 68.094251,29.234132 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1563" />
+              <path
+                 d="m 68.66342,28.63153 v 0.754272 h -0.56917 v -0.15167 h 0.433809 V 28.63153 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1565" />
+            </g>
+            <path
+               class="e"
+               d="m 0,30.394 h 1 v 2.171 H 0 Z"
+               id="path152" />
+            <g
+               id="text154"
+               class="f"
+               style="white-space:pre" />
+            <path
+               class="e"
+               d="m 1.002,30.394 h 5 v 2.171 h -5 z"
+               id="path156" />
+            <g
+               aria-label="kvaps"
+               id="text158"
+               class="g"
+               style="font-weight:700;white-space:pre">
+              <path
+                 d="M 1.1691631,32.063999 V 30.747896 H 1.320833 v 0.826845 l 0.4378857,-0.421577 h 0.2022266 l -0.4370703,0.421577 0.4484863,0.489258 h -0.20875 L 1.320833,31.574741 v 0.489258 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1569" />
+              <path
+                 d="M 2.4257402,32.063999 2.0302568,31.153164 h 0.1663477 l 0.3123095,0.72084 0.318833,-0.72084 h 0.1516699 l -0.3987451,0.910835 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1571" />
+              <path
+                 d="m 3.7296123,31.859326 q -0.069312,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524853 v 0.643374 q 0,0.164717 0.034248,0.267461 H 3.7581523 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108453 -0.092959,0.108452 -0.092959,0.295185 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1573" />
+              <path
+                 d="m 4.2726886,31.357837 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.05789 0.1785791,-0.05789 0.1141601,0 0.2054882,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.161455,0.196518 -0.1011133,0.07176 -0.250337,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353897 H 4.1210187 v -1.264732 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1575" />
+              <path
+                 d="m 5.1443828,32.015889 v -0.16064 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023647,-0.02609 -0.1174218,-0.06442 l -0.052188,-0.0212 -0.1051905,-0.04159 q -0.1696093,-0.06605 -0.2136425,-0.122314 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.11253 0.086436,-0.185103 0.087251,-0.07257 0.2821386,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137808 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027442,0.03751 q 0.1410693,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.091328,0.194888 -0.090513,0.07583 -0.2902929,0.07583 -0.174502,0 -0.3587891,-0.07339 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1577" />
+            </g>
+            <path
+               class="e"
+               d="m 6.012,30.394 h 1 v 2.171 h -1 z"
+               id="path160" />
+            <g
+               id="text162"
+               class="f"
+               style="white-space:pre" />
+            <path
+               class="h"
+               d="m 7.014,30.394 h 1 v 2.171 h -1 z"
+               id="path164" />
+            <g
+               aria-label=""
+               id="text166"
+               class="i"
+               style="white-space:pre;fill:#00d7ff">
+              <path
+                 d="m 7.0139999,30.494297 1.0258106,0.990747 -1.0258106,0.992378 z"
+                 style="white-space:pre;fill:#00d7ff"
+                 id="path1581" />
+            </g>
+            <path
+               class="h"
+               d="m 8.016,30.394 h 1 v 2.171 h -1 z"
+               id="path168" />
+            <g
+               id="text170"
+               class="j"
+               style="white-space:pre;fill:#eeeeee" />
+            <path
+               class="h"
+               d="m 9.018,30.394 h 1 v 2.171 h -1 z"
+               id="path172" />
+            <g
+               aria-label="~"
+               id="text174"
+               class="k"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 9.0636637,31.735381 v -0.01468 q 0,-0.106821 0.062788,-0.185102 0.063603,-0.0791 0.1704248,-0.0791 0.026909,0 0.052188,0.0057 0.026094,0.0049 0.058711,0.01794 0.032617,0.01223 0.097852,0.04893 l 0.098667,0.05463 q 0.090513,0.04974 0.1475927,0.04974 0.060342,0 0.088882,-0.04322 0.029356,-0.04403 0.029356,-0.09541 v -0.01305 h 0.1043749 v 0.01305 q 0,0.136177 -0.077466,0.201411 -0.07665,0.06442 -0.1630859,0.06442 -0.080728,0 -0.2136426,-0.07584 l -0.083174,-0.04811 q -0.09459,-0.05382 -0.1524853,-0.05382 -0.032617,0 -0.061157,0.01712 -0.027725,0.01712 -0.044849,0.05463 -0.017124,0.03751 -0.017124,0.06605 v 0.01468 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1585" />
+            </g>
+            <path
+               class="h"
+               d="m 10.02,30.394 h 1 v 2.171 h -1 z"
+               id="path176" />
+            <g
+               aria-label="/"
+               id="text178"
+               class="j"
+               style="white-space:pre;fill:#eeeeee">
+              <path
+                 d="M 10.196133,32.102324 H 10.04691 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#eeeeee"
+                 id="path1588" />
+            </g>
+            <path
+               class="h"
+               d="m 11.022,30.394 h 3 v 2.171 h -3 z"
+               id="path180" />
+            <g
+               aria-label="tmp"
+               id="text182"
+               class="k"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 11.910003,32.027305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119869,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227504 v -0.126392 h 0.227504 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1591" />
+              <path
+                 d="m 12.081243,32.063999 v -0.910835 h 0.132916 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 H 12.46041 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1593" />
+              <path
+                 d="m 13.291341,31.357837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1595" />
+            </g>
+            <path
+               class="h"
+               d="m 14.028,30.394 h 1 v 2.171 h -1 z"
+               id="path184" />
+            <g
+               id="text186"
+               class="j"
+               style="white-space:pre;fill:#eeeeee" />
+            <g
+               aria-label=""
+               id="text188"
+               class="l"
+               style="white-space:pre;fill:#005f87">
+              <path
+                 d="M 15.03,30.494297 16.05581,31.485044 15.03,32.477422 Z"
+                 style="white-space:pre;fill:#005f87"
+                 id="path1599" />
+            </g>
+            <g
+               aria-label="kubectl"
+               id="text190"
+               class="m"
+               style="white-space:pre;fill:#a8cc8c">
+              <path
+                 d="m 17.201163,32.063999 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1602" />
+              <path
+                 d="m 18.91112,31.153164 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.151669 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1604" />
+              <path
+                 d="m 19.303341,31.357837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161456,0.196518 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1606" />
+              <path
+                 d="m 20.921969,32.003657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1608" />
+              <path
+                 d="m 21.932287,32.037905 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1610" />
+              <path
+                 d="m 22.928741,32.027305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1612" />
+              <path
+                 d="m 23.413107,32.063999 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1614" />
+            </g>
+            <g
+               aria-label="get"
+               id="text192"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 25.784701,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280507,0.07013 -0.165533,0 -0.335142,-0.0848 v -0.1533 q 0.06442,0.04403 0.158193,0.07746 0.09459,0.03425 0.182657,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1617" />
+              <path
+                 d="m 26.935273,32.003657 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1619" />
+              <path
+                 d="m 27.940697,32.027305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1621" />
+            </g>
+            <g
+               aria-label="pod"
+               id="text194"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 29.324646,31.357837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1624" />
+              <path
+                 d="m 30.560837,32.089277 q -0.195703,0 -0.313125,-0.136176 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207935 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1626" />
+              <path
+                 d="m 31.795398,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1628" />
+            </g>
+            <g
+               aria-label=""
+               id="text196"
+               class="p"
+               style="white-space:pre;fill:#262626">
+              <path
+                 d="M 106.23581,32.477422 105.21,31.485044 106.23581,30.494297 Z"
+                 style="white-space:pre;fill:#262626"
+                 id="path1631" />
+            </g>
+            <path
+               class="q"
+               d="m 106.212,30.394 h 13 v 2.171 h -13 z"
+               id="path198" />
+            <g
+               aria-label="stage-admin"
+               id="text200"
+               class="r"
+               style="white-space:pre;fill:#af5fd7">
+              <path
+                 d="m 106.34899,32.015889 v -0.16064 q 0.0913,0.05953 0.19326,0.08399 0.10193,0.02365 0.17287,0.02365 0.11497,0 0.16553,-0.03669 0.0506,-0.03751 0.0506,-0.09296 0,-0.03669 -0.0236,-0.06279 -0.0237,-0.02609 -0.11742,-0.06442 l -0.0522,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.21364,-0.122314 -0.0449,-0.05545 -0.0449,-0.135361 0,-0.11253 0.0864,-0.185103 0.0873,-0.07257 0.28214,-0.07257 0.14596,0 0.27643,0.0424 v 0.137808 q -0.15004,-0.05382 -0.28214,-0.05382 -0.0962,0 -0.15085,0.03425 -0.0538,0.03343 -0.0538,0.08399 0,0.04893 0.0473,0.07828 0.0465,0.02936 0.15167,0.06768 l 0.10274,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.0571,0.06034 0.0571,0.150855 0,0.118237 -0.0913,0.194888 -0.0905,0.07583 -0.29029,0.07583 -0.1745,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1634" />
+              <path
+                 d="m 108.10135,32.027305 q -0.10682,0.04485 -0.15493,0.053 -0.0481,0.009 -0.093,0.009 -0.0954,0 -0.1745,-0.03669 -0.0791,-0.03669 -0.11987,-0.108452 -0.04,-0.07176 -0.04,-0.221797 v -0.366943 h -0.2275 v -0.126392 h 0.2275 v -0.366943 h 0.15167 v 0.366943 h 0.40527 v 0.126392 h -0.40527 v 0.364497 q 0,0.110083 0.0261,0.155747 0.0261,0.04485 0.0693,0.06605 0.044,0.0212 0.10356,0.0212 0.11008,0 0.23158,-0.06931 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1636" />
+              <path
+                 d="m 108.93961,31.859326 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158194 0.0603,-0.282139 0.0603,-0.124761 0.16145,-0.196518 0.10112,-0.07257 0.25034,-0.07257 0.0432,0 0.13047,0.009 0.0131,0.0016 0.0391,0.0041 h 0.15249 v 0.643374 q 0,0.164717 0.0342,0.267461 h -0.15819 q -0.0179,-0.07502 -0.0285,-0.204673 z m 0,-0.18021 v -0.39059 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23403,0.108453 -0.093,0.108452 -0.093,0.295185 0,0.135361 0.0506,0.204673 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1638" />
+              <path
+                 d="m 109.95074,31.859326 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158194 0.0603,-0.282139 0.0603,-0.124761 0.16146,-0.196518 0.10111,-0.07257 0.25033,-0.07257 0.0432,0 0.13047,0.009 0.013,0.0016 0.0391,0.0041 h 0.15249 v 0.64419 q 0,0.229951 -0.007,0.280507 -0.006,0.05137 -0.0196,0.10356 -0.0326,0.121499 -0.14922,0.191626 -0.11579,0.07013 -0.28051,0.07013 -0.16553,0 -0.33514,-0.0848 v -0.1533 q 0.0644,0.04403 0.1582,0.07746 0.0946,0.03425 0.18265,0.03425 0.0693,0 0.13129,-0.02202 0.062,-0.02202 0.10029,-0.0636 0.0383,-0.04159 0.0522,-0.09704 0.0139,-0.05463 0.0139,-0.145962 z m 0,-0.18021 v -0.39059 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23402,0.108453 -0.093,0.108452 -0.093,0.295185 0,0.135361 0.0506,0.204673 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1640" />
+              <path
+                 d="m 111.10131,32.003657 q -0.18184,0.08644 -0.34411,0.08644 -0.12313,0 -0.22016,-0.06116 -0.097,-0.06116 -0.15575,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.0554,-0.239736 0.0555,-0.114976 0.15494,-0.178579 0.0995,-0.06442 0.22179,-0.06442 0.16227,0 0.26012,0.115791 0.0987,0.115791 0.0987,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.0391,0.172871 0.04,0.07828 0.10438,0.117422 0.0644,0.03914 0.14677,0.03914 0.14678,0 0.32454,-0.09785 z m -0.60586,-0.483549 h 0.45419 v -0.02202 q 0,-0.111714 -0.0546,-0.177764 -0.0546,-0.06605 -0.14596,-0.06605 -0.0921,0 -0.15983,0.06768 -0.0669,0.06686 -0.0938,0.19815 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1642" />
+              <path
+                 d="m 111.40384,31.614697 v -0.126391 h 0.63277 v 0.126391 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1644" />
+              <path
+                 d="m 112.945,31.859326 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158194 0.0603,-0.282139 0.0603,-0.124761 0.16145,-0.196518 0.10112,-0.07257 0.25034,-0.07257 0.0432,0 0.13047,0.009 0.013,0.0016 0.0391,0.0041 h 0.15249 v 0.643374 q 0,0.164717 0.0342,0.267461 h -0.15819 q -0.0179,-0.07502 -0.0285,-0.204673 z m 0,-0.18021 v -0.39059 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23403,0.108453 -0.093,0.108452 -0.093,0.295185 0,0.135361 0.0506,0.204673 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1646" />
+              <path
+                 d="m 113.95613,31.859326 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158194 0.0603,-0.282139 0.0603,-0.124761 0.16146,-0.196518 0.10111,-0.07257 0.25033,-0.07257 0.0432,0 0.13047,0.009 0.0131,0.0016 0.0391,0.0041 v -0.405268 h 0.15249 v 1.316103 h -0.15249 z m 0,-0.18021 v -0.39059 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23402,0.108453 -0.093,0.108452 -0.093,0.295185 0,0.135361 0.0506,0.204673 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1648" />
+              <path
+                 d="m 114.28067,32.063999 v -0.910835 h 0.13292 v 0.20875 q 0.0628,-0.132915 0.11661,-0.183471 0.0546,-0.05056 0.11008,-0.05056 0.066,0 0.10601,0.05219 0.0408,0.05137 0.0408,0.146778 v 0.04893 q 0.0269,-0.08317 0.0644,-0.134546 0.0383,-0.05219 0.0791,-0.08236 0.0408,-0.03099 0.0938,-0.03099 0.0587,0 0.10029,0.04974 0.0416,0.04974 0.0416,0.19815 v 0.688222 h -0.13291 v -0.622173 q 0,-0.07665 -0.005,-0.104375 -0.005,-0.02854 -0.0196,-0.04322 -0.0147,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.0913,0.06523 -0.0481,0.06442 -0.0987,0.214458 v 0.504751 h -0.12721 v -0.621357 q 0,-0.120684 -0.0237,-0.141885 -0.0237,-0.0212 -0.0424,-0.0212 -0.0416,0 -0.0897,0.07257 -0.0473,0.07257 -0.0905,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1650" />
+              <path
+                 d="m 115.60575,32.063999 v -0.784443 h -0.25279 v -0.126392 h 0.40446 v 0.784444 h 0.2536 v 0.126391 z m -0.0253,-1.239453 q 0,-0.05137 0.0351,-0.07665 0.0351,-0.02528 0.066,-0.02528 0.0318,0 0.0669,0.02528 0.0351,0.02528 0.0351,0.07665 0,0.05056 -0.0351,0.07583 -0.0351,0.02528 -0.0669,0.02528 -0.031,0 -0.066,-0.02528 -0.0351,-0.02528 -0.0351,-0.07583 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1652" />
+              <path
+                 d="m 116.35187,32.063999 v -0.910835 h 0.15167 v 0.198965 q 0.0652,-0.10519 0.15737,-0.164717 0.0922,-0.05953 0.18429,-0.05953 0.0807,0 0.14678,0.04322 0.0661,0.0424 0.0921,0.111714 0.0269,0.06931 0.0269,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.0131,-0.172871 -0.0122,-0.0424 -0.0465,-0.06931 -0.0334,-0.02691 -0.0734,-0.02691 -0.0799,0 -0.17206,0.07584 -0.0913,0.07584 -0.15085,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1654" />
+            </g>
+            <g
+               aria-label="NAME"
+               id="text202"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.25441406,34.235001 H 0.10274414 v -1.265547 h 0.1484082 l 0.44767088,0.842339 0.0489258,0.125576 h 0.004077 L 0.747749,33.811793 v -0.842339 h 0.15166992 v 1.265547 H 0.747749 l -0.43543944,-0.828477 -0.0611572,-0.132915 0.003262,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1657" />
+              <path
+                 d="M 1.1864502,34.235001 H 1.0282568 L 1.4180322,32.969454 H 1.5851953 L 1.977417,34.235001 H 1.8037305 L 1.7172949,33.956939 H 1.2720703 Z m 0.1247607,-0.404454 h 0.3693897 l -0.1524854,-0.480288 -0.035879,-0.127207 -0.031802,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1659" />
+              <path
+                 d="m 2.1812744,34.235001 h -0.132915 v -1.265547 h 0.1655322 l 0.2919238,0.833369 0.2919238,-0.833369 h 0.1614551 v 1.265547 H 2.8075244 v -0.80646 l 0.00408,-0.110899 h -0.00408 l -0.035879,0.110899 -0.1957031,0.553676 H 2.4112256 L 2.2130762,33.428541 2.1812744,33.317642 h -0.00408 l 0.00408,0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1661" />
+              <path
+                 d="m 3.8529054,34.095562 v 0.139439 H 3.1695753 v -1.265547 h 0.6702832 v 0.127207 H 3.3342921 v 0.429731 h 0.4550098 v 0.126392 H 3.3342921 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1663" />
+            </g>
+            <g
+               aria-label="READY"
+               id="text204"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.392215,33.697632 v 0.537369 h -0.164717 v -1.265547 h 0.338403 q 0.165533,0 0.243814,0.03425 0.07828,0.03343 0.120683,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591187 h -0.195703 l -0.335141,-0.537369 z m 0,-0.127207 h 0.230766 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.05789,-0.09378 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06524,-0.141069 -0.06442,-0.053 -0.234843,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1666" />
+              <path
+                 d="m 54.956209,34.095562 v 0.139439 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505566 v 0.429731 h 0.455009 v 0.126392 h -0.455009 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1668" />
+              <path
+                 d="m 55.293797,34.235001 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08644,-0.278062 h -0.445225 z m 0.124761,-0.404454 h 0.369389 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1670" />
+              <path
+                 d="m 56.236434,34.235001 v -1.265547 h 0.300078 q 0.207119,0 0.307417,0.07257 0.101113,0.07176 0.15167,0.21772 0.05056,0.145962 0.05056,0.345742 0,0.18918 -0.05382,0.332695 -0.053,0.1427 -0.150854,0.220166 -0.09785,0.07665 -0.304971,0.07665 z m 0.164716,-0.139439 h 0.110083 q 0.167164,0 0.238106,-0.05953 0.07176,-0.05953 0.101929,-0.164717 0.03099,-0.106006 0.03099,-0.291924 0,-0.181841 -0.03588,-0.279692 -0.03588,-0.09785 -0.102744,-0.150039 -0.06686,-0.053 -0.219351,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1672" />
+              <path
+                 d="m 57.53052,34.235001 v -0.585479 l -0.376728,-0.680068 h 0.186733 l 0.281324,0.502304 0.280507,-0.502304 h 0.168794 l -0.375913,0.680068 v 0.585479 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1674" />
+            </g>
+            <g
+               aria-label="STATUS"
+               id="text206"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 61.250024,34.208091 V 34.05316 q 0.195703,0.09296 0.355527,0.09296 0.06687,0 0.128023,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.0579 -0.16227,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135362,0 0.261753,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.10519,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319649 0,0.146777 -0.106822,0.251967 -0.106821,0.105191 -0.34248,0.105191 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1677" />
+              <path
+                 d="M 62.541665,34.235001 V 33.108892 H 62.16249 v -0.139438 h 0.923882 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1679" />
+              <path
+                 d="m 63.3098,34.235001 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392221,1.265547 H 63.92708 l -0.08644,-0.278062 h -0.44522 z m 0.12476,-0.404454 h 0.36939 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1681" />
+              <path
+                 d="m 64.54436,34.235001 v -1.126109 h -0.379175 v -0.139438 h 0.923882 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1683" />
+              <path
+                 d="m 65.230136,32.969454 h 0.164717 v 0.830923 q 0,0.163901 0.02691,0.224243 0.02773,0.05953 0.08399,0.09133 0.05708,0.03099 0.126391,0.03099 0.07339,0 0.130469,-0.03343 0.0579,-0.03425 0.0848,-0.106006 0.02772,-0.07257 0.02772,-0.271538 v -0.766504 h 0.15167 v 0.82603 q 0,0.176948 -0.053,0.277246 -0.05219,0.09948 -0.136992,0.150039 -0.08481,0.05056 -0.213642,0.05056 -0.119053,0 -0.209566,-0.04403 -0.09051,-0.04403 -0.136992,-0.1321 -0.04648,-0.08807 -0.04648,-0.318018 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1685" />
+              <path
+                 d="M 66.256762,34.208091 V 34.05316 q 0.195703,0.09296 0.355528,0.09296 0.06686,0 0.128022,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.0579 -0.162271,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135362,0 0.261753,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.10519,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319649 0,0.146777 -0.106822,0.251967 -0.106821,0.105191 -0.34248,0.105191 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1687" />
+            </g>
+            <g
+               aria-label="RESTARTS"
+               id="text208"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.43222,33.697632 v 0.537369 h -0.164717 v -1.265547 h 0.338403 q 0.165532,0 0.243814,0.03425 0.07828,0.03343 0.120683,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591187 h -0.195703 l -0.335142,-0.537369 z m 0,-0.127207 h 0.230766 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09378 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06524,-0.141069 -0.06442,-0.053 -0.234844,-0.053 H 73.43222 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1690" />
+              <path
+                 d="m 74.996214,34.095562 v 0.139439 h -0.68333 v -1.265547 h 0.670283 v 0.127207 H 74.4776 v 0.429731 h 0.45501 v 0.126392 H 74.4776 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1692" />
+              <path
+                 d="M 75.276722,34.208091 V 34.05316 q 0.195703,0.09296 0.355527,0.09296 0.06686,0 0.128022,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.0579 -0.162271,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309864,-0.09785 0.135361,0 0.261753,0.03914 v 0.141069 q -0.139439,-0.05382 -0.271539,-0.05382 -0.10519,0 -0.170424,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319649 0,0.146777 -0.106821,0.251967 -0.106822,0.105191 -0.342481,0.105191 -0.07502,0 -0.143515,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1694" />
+              <path
+                 d="m 76.568362,34.235001 v -1.126109 h -0.379175 v -0.139438 h 0.923882 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1696" />
+              <path
+                 d="m 77.336497,34.235001 h -0.158193 l 0.389775,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08644,-0.278062 h -0.445225 z m 0.124761,-0.404454 h 0.369389 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1698" />
+              <path
+                 d="m 78.438958,33.697632 v 0.537369 h -0.164717 v -1.265547 h 0.338403 q 0.165532,0 0.243814,0.03425 0.07828,0.03343 0.120683,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591187 h -0.195703 l -0.335141,-0.537369 z m 0,-0.127207 h 0.230766 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09378 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06524,-0.141069 -0.06442,-0.053 -0.234843,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1700" />
+              <path
+                 d="m 79.572405,34.235001 v -1.126109 h -0.379174 v -0.139438 h 0.923881 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1702" />
+              <path
+                 d="M 80.28346,34.208091 V 34.05316 q 0.195703,0.09296 0.355527,0.09296 0.06686,0 0.128023,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.0579 -0.16227,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135361,0 0.261753,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.105191,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06687,0.03914 q 0.207934,0.127207 0.207934,0.319649 0,0.146777 -0.106821,0.251967 -0.106821,0.105191 -0.34248,0.105191 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1704" />
+            </g>
+            <g
+               aria-label="AGE"
+               id="text210"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.353102,34.235001 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08643,-0.278062 h -0.445225 z m 0.124761,-0.404454 h 0.369389 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1707" />
+              <path
+                 d="m 86.056534,34.234185 q -0.13373,0.03914 -0.245444,0.03914 -0.158193,0 -0.282139,-0.07828 -0.123129,-0.07828 -0.193256,-0.23566 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260938,-0.07584 -0.09785,0 -0.179394,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09378,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 v -0.407715 h -0.126392 v -0.126391 h 0.291108 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1709" />
+              <path
+                 d="m 87.019557,34.095562 v 0.139439 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505566 v 0.429731 h 0.455009 v 0.126392 h -0.455009 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1711" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-admin-64749bbcdc-7swsl"
+               id="text212"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,36.405998 V 35.69739 H 0.13617675 v -0.126392 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08644 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.05871 H 0.85130857 V 35.69739 H 0.49007323 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1714" />
+              <path
+                 d="m 1.5028369,36.431277 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,36.158108 1.07229,35.950173 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1716" />
+              <path
+                 d="m 2.5041846,36.431277 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1718" />
+              <path
+                 d="m 3.1891456,35.956696 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1720" />
+              <path
+                 d="M 4.1725537,36.405998 V 35.089895 H 4.3242236 V 35.91674 L 4.7621094,35.495163 H 4.9643359 L 4.5272656,35.91674 4.9757519,36.405998 H 4.767002 L 4.3242236,35.91674 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1722" />
+              <path
+                 d="m 5.8825096,35.495163 v 0.910835 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05627 -0.1793945,0.05627 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1724" />
+              <path
+                 d="m 6.2747317,35.699836 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204672 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1726" />
+              <path
+                 d="m 7.8933595,36.345656 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,35.862107 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1728" />
+              <path
+                 d="m 8.2146387,36.405998 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05627 0.2046729,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1730" />
+              <path
+                 d="m 9.1385204,36.405998 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07583 -0.1508545,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1732" />
+              <path
+                 d="m 10.897402,36.345656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1734" />
+              <path
+                 d="m 11.902827,36.369304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 35.69739 H 11.0931 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 V 35.69739 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1736" />
+              <path
+                 d="m 12.900098,36.345656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1738" />
+              <path
+                 d="m 13.154512,36.357888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1740" />
+              <path
+                 d="m 14.20397,35.956696 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1742" />
+              <path
+                 d="m 15.745132,36.201325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1744" />
+              <path
+                 d="m 16.756265,36.201325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1746" />
+              <path
+                 d="m 17.080807,36.405998 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 H 17.83345 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 H 17.459973 V 35.78463 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1748" />
+              <path
+                 d="m 18.405879,36.405998 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z M 18.3806,35.166545 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1750" />
+              <path
+                 d="m 19.151998,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1752" />
+              <path
+                 d="m 20.212055,35.956696 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1754" />
+              <path
+                 d="m 21.266407,35.812365 q 0.05871,-0.08725 0.145146,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186734,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114975,0.132915 -0.303339,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139439,-0.499858 0.139438,-0.184287 0.377543,-0.184287 0.128023,0 0.248707,0.03751 v 0.153301 q -0.135362,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505567 q 0.06116,0 0.123129,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165533,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1756" />
+              <path
+                 d="m 22.606157,36.405998 v -0.353896 h -0.537369 v -0.127207 l 0.537369,-0.784444 h 0.152485 v 0.784444 h 0.234028 v 0.127207 h -0.234028 v 0.353896 z m 0,-0.481103 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1758" />
+              <path
+                 d="m 23.291118,36.405998 v -0.113344 q 0,-0.132916 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.21935 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114976 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113344 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1760" />
+              <path
+                 d="m 24.608854,36.405998 v -0.353896 h -0.537369 v -0.127207 l 0.537369,-0.784444 h 0.152485 v 0.784444 h 0.234028 v 0.127207 h -0.234028 v 0.353896 z m 0,-0.481103 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1762" />
+              <path
+                 d="m 25.796934,35.734084 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114975,-0.31231 0.115792,-0.13373 0.304156,-0.13373 0.221797,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183471 -0.377544,0.183471 -0.128023,0 -0.248706,-0.03833 v -0.152485 q 0.135361,0.0636 0.255229,0.0636 0.16961,0 0.262569,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.0367 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1764" />
+              <path
+                 d="m 26.301685,35.699836 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.17858,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1766" />
+              <path
+                 d="m 27.303032,35.699836 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1768" />
+              <path
+                 d="m 28.93063,36.379904 q -0.152485,0.05137 -0.290292,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284584,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1770" />
+              <path
+                 d="m 29.773784,36.201325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1772" />
+              <path
+                 d="m 30.933326,36.379904 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1774" />
+              <path
+                 d="m 31.226879,35.956696 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1776" />
+              <path
+                 d="m 32.303247,36.405998 v -0.113344 q 0,-0.132916 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.65642 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.21935 -0.02935,0.03996 -0.05789,0.07991 l -0.08481,0.119053 q -0.08154,0.114976 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113344 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1778" />
+              <path
+                 d="m 33.181464,36.357888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.151669,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1780" />
+              <path
+                 d="M 34.210539,36.405998 34.062131,35.495163 H 34.2032 l 0.08644,0.554492 0.02283,0.128838 0.02202,-0.128838 0.145147,-0.554492 h 0.136176 l 0.163902,0.554492 0.02854,0.128838 0.01875,-0.128838 0.08725,-0.554492 h 0.116606 l -0.147593,0.910835 h -0.141884 l -0.174502,-0.586294 -0.02772,-0.128838 h -0.0041 l -0.02528,0.128023 -0.15167,0.587109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1782" />
+              <path
+                 d="m 35.184161,36.357888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.151669,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1784" />
+              <path
+                 d="m 36.419536,36.405998 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1786" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text214"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,36.279607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03832 -0.176948,0.07828 V 35.33697 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 H 53.2593 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1789" />
+              <path
+                 d="m 54.283479,36.444323 h -0.149223 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1791" />
+              <path
+                 d="m 55.571858,36.279607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03832 -0.176948,0.07828 V 35.33697 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 v 0.126391 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1793" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text216"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.408217,35.86863 v 0.537368 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 L 62.103778,36.406 h -0.195702 l -0.335142,-0.53737 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08643 0.03833,-0.04403 0.0579,-0.09378 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.14107 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1796" />
+              <path
+                 d="m 62.999121,35.495163 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1798" />
+              <path
+                 d="m 63.251089,36.405998 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1800" />
+              <path
+                 d="m 64.252436,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1802" />
+              <path
+                 d="M 65.509013,36.405998 V 35.621555 H 65.25623 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1804" />
+              <path
+                 d="m 66.255131,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1806" />
+              <path
+                 d="m 67.86479,36.201325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.1533 q 0.06442,0.04403 0.158193,0.07746 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1808" />
+            </g>
+            <g
+               aria-label="0"
+               id="text218"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,35.102942 q 0.216088,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247076,0.941005 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1811" />
+            </g>
+            <g
+               aria-label="50s"
+               id="text220"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.3213,35.747946 v -0.607495 h 0.708608 v 0.145962 H 84.47297 v 0.309864 h 0.02609 q 0.273169,0 0.420761,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1814" />
+              <path
+                 d="m 85.670021,35.102942 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1816" />
+              <path
+                 d="m 86.307687,36.357888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1818" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-apiserver-77fd596477-cvfdm"
+               id="text222"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,38.577 V 37.868391 H 0.13617675 V 37.742 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266645 0.0407715,-0.08644 0.12557617,-0.141885 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144332 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205489 v 0.0587 h 0.36123534 v 0.126391 H 0.49007323 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1821" />
+              <path
+                 d="m 1.5028369,38.602278 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,38.329109 1.07229,38.121174 q 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1823" />
+              <path
+                 d="m 2.5041846,38.602278 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1825" />
+              <path
+                 d="m 3.1891456,38.127698 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1827" />
+              <path
+                 d="m 4.1725537,38.577 v -1.316104 h 0.1516699 v 0.826846 L 4.7621094,37.666165 H 4.9643359 L 4.5272656,38.087742 4.9757519,38.577 H 4.767002 L 4.3242236,38.087742 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1829" />
+              <path
+                 d="M 5.8825096,37.666165 V 38.577 H 5.7308397 v -0.199781 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1831" />
+              <path
+                 d="m 6.2747317,37.870838 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316104 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1833" />
+              <path
+                 d="m 7.8933595,38.516658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1835" />
+              <path
+                 d="m 8.2146387,38.577 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1837" />
+              <path
+                 d="m 9.1385204,38.577 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 V 38.577 H 9.7460155 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1839" />
+              <path
+                 d="m 10.897402,38.516658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1841" />
+              <path
+                 d="m 11.902827,38.540305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 37.742 h 0.227505 v -0.366944 h 0.15167 V 37.742 h 0.405269 v 0.126391 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1843" />
+              <path
+                 d="m 12.900098,38.516658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1845" />
+              <path
+                 d="M 13.154512,38.528889 V 38.36825 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1847" />
+              <path
+                 d="m 14.20397,38.127698 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1849" />
+              <path
+                 d="m 15.745132,38.372327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1851" />
+              <path
+                 d="m 16.288208,37.870838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1853" />
+              <path
+                 d="m 17.404532,38.577 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 V 38.577 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1855" />
+              <path
+                 d="M 18.16125,38.528889 V 38.36825 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1857" />
+              <path
+                 d="m 19.909532,38.516658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1859" />
+              <path
+                 d="m 20.23081,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1861" />
+              <path
+                 d="M 21.450694,38.577 21.05521,37.666165 h 0.166348 l 0.31231,0.72084 0.318833,-0.72084 h 0.15167 L 21.605625,38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1863" />
+              <path
+                 d="m 22.913574,38.516658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1865" />
+              <path
+                 d="m 23.234854,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159008,0.200596 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1867" />
+              <path
+                 d="m 24.217447,38.127698 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1869" />
+              <path
+                 d="m 25.293813,38.577 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110898 0.121499,-0.17124 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 H 25.167417 V 37.31145 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1871" />
+              <path
+                 d="m 26.295162,38.577 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110898 0.121499,-0.17124 l 0.132099,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 H 26.16877 V 37.31145 h 0.803199 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.219351 -0.02935,0.03996 -0.05789,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1873" />
+              <path
+                 d="M 27.37479,38.577 V 37.868391 H 27.172563 V 37.742 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144332 q -0.118237,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 v 0.0587 h 0.361235 v 0.126391 H 27.52646 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1875" />
+              <path
+                 d="m 28.772437,38.372327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 V 38.577 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1877" />
+              <path
+                 d="m 29.192382,37.918948 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147592,0.11416 0.147592,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167978,0.152485 -0.108453,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.105191,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1879" />
+              <path
+                 d="m 30.803672,37.905086 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.0473 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114975,-0.312309 0.115791,-0.133731 0.304155,-0.133731 0.221797,0 0.331065,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139439,0.500674 -0.139438,0.183472 -0.377544,0.183472 -0.128022,0 -0.248706,-0.03833 V 38.4245 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z M 30.50604,37.400335 q -0.06116,0 -0.123129,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1881" />
+              <path
+                 d="m 31.279882,37.983367 q 0.05871,-0.08725 0.145147,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109268,-0.185918 -0.109268,-0.472133 0,-0.316387 0.139439,-0.499859 0.139438,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114975,0 -0.189179,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1883" />
+              <path
+                 d="m 32.619634,38.577 v -0.353897 h -0.537368 v -0.127207 l 0.537368,-0.784443 h 0.152485 v 0.784443 h 0.234029 v 0.127207 H 32.772119 V 38.577 Z m 0,-0.481104 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1885" />
+              <path
+                 d="m 33.304594,38.577 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110898 0.121499,-0.17124 l 0.132099,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 H 33.178202 V 37.311453 H 33.9814 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1887" />
+              <path
+                 d="m 34.305944,38.577 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110898 0.121499,-0.17124 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.65642 V 37.31145 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.08481,0.119052 q -0.08154,0.114976 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1889" />
+              <path
+                 d="m 35.232271,38.127698 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1891" />
+              <path
+                 d="m 36.941411,38.550906 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106005,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1893" />
+              <path
+                 d="m 37.472254,38.577 -0.395483,-0.910835 h 0.166348 l 0.312309,0.72084 0.318833,-0.72084 h 0.15167 L 37.627186,38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1895" />
+              <path
+                 d="M 38.389616,38.577 V 37.868391 H 38.187389 V 37.742 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144332 q -0.118238,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 v 0.0587 h 0.361235 v 0.126391 H 38.541286 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1897" />
+              <path
+                 d="m 39.787261,38.372327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 V 38.577 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1899" />
+              <path
+                 d="m 40.111801,38.577 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09378,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 38.577 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 V 38.577 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1901" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text224"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,38.450608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 37.50797 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 V 38.577 H 53.2593 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1904" />
+              <path
+                 d="m 54.283479,38.615325 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1906" />
+              <path
+                 d="m 55.571858,38.450608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 37.50797 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304156 V 38.577 h -0.765689 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1908" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text226"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 61.408217,38.039632 V 38.577 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 L 62.103779,38.577 h -0.195703 l -0.335142,-0.537368 z m 0,-0.127208 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.141069 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1911" />
+              <path
+                 d="M 62.999121,37.666165 V 38.577 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1913" />
+              <path
+                 d="m 63.251089,38.577 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 38.577 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1915" />
+              <path
+                 d="m 64.252436,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 38.577 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1917" />
+              <path
+                 d="M 65.509013,38.577 V 37.792556 H 65.25623 v -0.126391 h 0.404453 v 0.784443 h 0.253599 V 38.577 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1919" />
+              <path
+                 d="m 66.255131,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 38.577 h -0.151669 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1921" />
+              <path
+                 d="m 67.86479,38.372327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1923" />
+            </g>
+            <g
+               aria-label="1"
+               id="text228"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.609168,38.450608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 37.50797 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 V 38.577 h -0.765688 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1926" />
+            </g>
+            <g
+               aria-label="50s"
+               id="text230"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.3213,37.918948 v -0.607495 h 0.708608 v 0.145962 H 84.47297 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1929" />
+              <path
+                 d="m 85.670021,37.273943 q 0.216089,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113344,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247075,0.941006 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173686 0.06524,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1931" />
+              <path
+                 d="M 86.307687,38.528889 V 38.36825 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1933" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-apiserver-77fd596477-jm4n8"
+               id="text232"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,40.748001 V 40.039393 H 0.13617675 v -0.126392 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08643 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.05871 h 0.36123534 v 0.126392 H 0.49007323 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1936" />
+              <path
+                 d="m 1.5028369,40.773279 q -0.1957031,0 -0.313125,-0.136176 Q 1.07229,40.50011 1.07229,40.292176 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207934 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1938" />
+              <path
+                 d="m 2.5041846,40.773279 q -0.1957032,0 -0.313125,-0.136176 -0.1174219,-0.136993 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207934 -0.1174219,0.344927 -0.1174218,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1940" />
+              <path
+                 d="m 3.1891456,40.298699 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1942" />
+              <path
+                 d="m 4.1725537,40.748001 v -1.316103 h 0.1516699 v 0.826845 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,40.258743 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1944" />
+              <path
+                 d="m 5.8825096,39.837166 v 0.910835 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07584 0.1524853,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1946" />
+              <path
+                 d="m 6.2747317,40.041839 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.05789 0.1785791,-0.05789 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1948" />
+              <path
+                 d="m 7.8933595,40.687659 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,40.20411 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1950" />
+              <path
+                 d="m 8.2146387,40.748001 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167979 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 V 40.16579 H 8.7520069 v -0.20794 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1952" />
+              <path
+                 d="m 9.1385204,40.748001 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111713 0.026909,0.06931 0.026909,0.272354 v 0.508828 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1954" />
+              <path
+                 d="m 10.897402,40.687659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 10.291538,40.20411 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1956" />
+              <path
+                 d="m 11.902827,40.711307 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 40.039425 H 11.0931 v -0.126392 h 0.227505 V 39.54609 h 0.15167 v 0.366943 h 0.405269 v 0.126392 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1958" />
+              <path
+                 d="m 12.900098,40.687659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 12.294234,40.20411 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1960" />
+              <path
+                 d="m 13.154512,40.699891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1962" />
+              <path
+                 d="m 14.20397,40.298699 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1964" />
+              <path
+                 d="m 15.745132,40.543328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1966" />
+              <path
+                 d="m 16.288208,40.041839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1968" />
+              <path
+                 d="m 17.404532,40.748001 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1970" />
+              <path
+                 d="m 18.16125,40.699891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1972" />
+              <path
+                 d="m 19.909532,40.687659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 19.303668,40.20411 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1974" />
+              <path
+                 d="m 20.23081,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.20794 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1976" />
+              <path
+                 d="M 21.450694,40.748001 21.05521,39.837166 h 0.166348 l 0.31231,0.72084 0.318833,-0.72084 h 0.15167 l -0.398746,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1978" />
+              <path
+                 d="m 22.913574,40.687659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 22.307709,40.20411 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1980" />
+              <path
+                 d="m 23.234854,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.20794 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1982" />
+              <path
+                 d="m 24.217447,40.298699 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1984" />
+              <path
+                 d="m 25.293813,40.748001 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183471 -0.03914,0.0685 -0.05953,0.142701 -0.01957,0.0742 -0.01957,0.194887 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1986" />
+              <path
+                 d="m 26.295162,40.748001 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.132099,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 H 26.16877 v -0.152486 h 0.803199 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145147,0.219351 -0.02935,0.03996 -0.05789,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183471 -0.03914,0.0685 -0.05953,0.142701 -0.01957,0.0742 -0.01957,0.194887 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1988" />
+              <path
+                 d="m 27.37479,40.748001 v -0.708608 h -0.202227 v -0.126392 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126392 H 27.52646 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1990" />
+              <path
+                 d="m 28.772437,40.543328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1992" />
+              <path
+                 d="m 29.192382,40.089949 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.114161 0.147592,0.11416 0.147592,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167978,0.152486 -0.108453,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.105191,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1994" />
+              <path
+                 d="m 30.803672,40.076087 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114975,-0.31231 0.115791,-0.133731 0.304155,-0.133731 0.221797,0 0.331065,0.185918 0.110083,0.185103 0.110083,0.471319 0,0.316387 -0.139439,0.500674 -0.139438,0.183471 -0.377544,0.183471 -0.128022,0 -0.248706,-0.03833 v -0.152485 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z M 30.50604,39.571336 q -0.06116,0 -0.123129,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08643 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1996" />
+              <path
+                 d="m 31.279882,40.154368 q 0.05871,-0.08725 0.145147,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139439,-0.499858 0.139438,-0.184288 0.377544,-0.184288 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.0367 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114975,0 -0.189179,0.08643 -0.07339,0.08562 -0.07339,0.20875 0,0.123946 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1998" />
+              <path
+                 d="m 32.619634,40.748001 v -0.353896 h -0.537368 v -0.127207 l 0.537368,-0.784444 h 0.152485 v 0.784444 h 0.234029 v 0.127207 h -0.234029 v 0.353896 z m 0,-0.481103 v -0.554493 l -0.375913,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2000" />
+              <path
+                 d="m 33.304594,40.748001 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110899 0.121499,-0.171241 l 0.132099,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 H 33.178202 V 39.482454 H 33.9814 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145147,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183471 -0.03914,0.0685 -0.05953,0.142701 -0.01957,0.0742 -0.01957,0.194887 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2002" />
+              <path
+                 d="m 34.305944,40.748001 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.65642 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145147,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.08481,0.119053 q -0.08154,0.114975 -0.120683,0.183471 -0.03914,0.0685 -0.05953,0.142701 -0.01957,0.0742 -0.01957,0.194887 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2004" />
+              <path
+                 d="m 35.232271,40.298699 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2006" />
+              <path
+                 d="m 36.188769,41.105159 v -0.141884 q 0.127207,0.03751 0.214458,0.03751 0.07583,0 0.128838,-0.02691 0.053,-0.02609 0.08236,-0.08888 0.03017,-0.06279 0.03017,-0.218535 v -0.7029 h -0.386513 v -0.126392 h 0.538183 v 0.800752 q 0,0.231582 -0.05463,0.321279 -0.05463,0.09051 -0.1321,0.129654 -0.07747,0.03914 -0.212012,0.03914 -0.09704,0 -0.20875,-0.02283 z m 0.430547,-1.596611 q 0,-0.05137 0.03425,-0.07665 0.03506,-0.02528 0.06686,-0.02528 0.0318,0 0.06605,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03425,0.02528 -0.06605,0.02528 -0.0318,0 -0.06686,-0.02528 -0.03425,-0.02528 -0.03425,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2008" />
+              <path
+                 d="m 37.107757,40.748001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2010" />
+              <path
+                 d="m 38.627721,40.748001 v -0.353896 h -0.537368 v -0.127207 l 0.537368,-0.784444 h 0.152485 v 0.784444 h 0.234029 v 0.127207 h -0.234029 v 0.353896 z m 0,-0.481103 v -0.554493 l -0.375913,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2012" />
+              <path
+                 d="m 39.17895,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2014" />
+              <path
+                 d="m 40.428188,40.065486 -0.02772,-0.02038 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01876,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161456,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393038 z m 0.155747,-0.07746 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138624,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2016" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text234"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,40.62161 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 H 53.2593 V 40.62161 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2019" />
+              <path
+                 d="m 54.283479,40.786326 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2021" />
+              <path
+                 d="m 55.571858,40.62161 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 v 0.126391 H 55.261995 V 40.62161 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2023" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text236"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.408217,40.210633 v 0.537368 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591186 h -0.195703 l -0.335142,-0.537368 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.14107 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2026" />
+              <path
+                 d="m 62.999121,39.837166 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07584 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2028" />
+              <path
+                 d="m 63.251089,40.748001 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2030" />
+              <path
+                 d="m 64.252436,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2032" />
+              <path
+                 d="M 65.509013,40.748001 V 39.963558 H 65.25623 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2034" />
+              <path
+                 d="m 66.255131,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2036" />
+              <path
+                 d="m 67.86479,40.543328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 V 40.88907 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2038" />
+            </g>
+            <g
+               aria-label="1"
+               id="text238"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.609168,40.62161 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 H 73.299305 V 40.62161 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2041" />
+            </g>
+            <g
+               aria-label="50s"
+               id="text240"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.3213,40.089949 v -0.607495 h 0.708608 v 0.145962 H 84.47297 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2044" />
+              <path
+                 d="m 85.670021,39.444944 q 0.216089,0 0.329433,0.181841 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.181841 0.329434,-0.181841 z m -0.247075,0.941006 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2046" />
+              <path
+                 d="m 86.307687,40.699891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2048" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-controller-manager-549874c588-clljz"
+               id="text242"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,42.918999 V 42.21039 H 0.13617675 v -0.126391 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266645 0.0407715,-0.08644 0.12557617,-0.141885 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.05871 H 0.85130857 V 42.21039 H 0.49007323 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2051" />
+              <path
+                 d="m 1.5028369,42.944277 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,42.671108 1.07229,42.463174 q 0,-0.207935 0.1174219,-0.344112 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344112 0,0.207934 -0.1174218,0.344926 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2053" />
+              <path
+                 d="m 2.5041846,42.944277 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344926 0,-0.207935 0.1174219,-0.344112 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344112 0,0.207934 -0.1174219,0.344926 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2055" />
+              <path
+                 d="m 3.1891456,42.469697 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2057" />
+              <path
+                 d="m 4.1725537,42.918999 v -1.316104 h 0.1516699 v 0.826846 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,42.429741 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2059" />
+              <path
+                 d="m 5.8825096,42.008164 v 0.910835 H 5.7308397 v -0.199781 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2061" />
+              <path
+                 d="m 6.2747317,42.212837 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123946 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316104 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2063" />
+              <path
+                 d="m 7.8933595,42.858657 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.17858 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2065" />
+              <path
+                 d="m 8.2146387,42.918999 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2067" />
+              <path
+                 d="m 9.1385204,42.918999 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 v 0.508828 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07584 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2069" />
+              <path
+                 d="m 10.897402,42.858657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2071" />
+              <path
+                 d="m 11.902827,42.882304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 42.21039 H 11.0931 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 V 42.21039 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2073" />
+              <path
+                 d="m 12.900098,42.858657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2075" />
+              <path
+                 d="m 13.154512,42.870888 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2077" />
+              <path
+                 d="m 14.20397,42.469697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2079" />
+              <path
+                 d="m 15.913111,42.892905 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2081" />
+              <path
+                 d="m 16.523052,42.944277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117421,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2083" />
+              <path
+                 d="m 17.149303,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2085" />
+              <path
+                 d="m 18.912261,42.882304 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 42.21039 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2087" />
+              <path
+                 d="m 19.229464,42.918999 v -0.910835 h 0.151669 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2089" />
+              <path
+                 d="m 20.528442,42.944277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117421,0.136177 0.117421,0.344112 0,0.207934 -0.117421,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2091" />
+              <path
+                 d="m 21.399322,42.918999 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2093" />
+              <path
+                 d="m 22.400668,42.918999 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2095" />
+              <path
+                 d="m 23.914922,42.858657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2097" />
+              <path
+                 d="m 24.236202,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 H 24.77357 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2099" />
+              <path
+                 d="m 25.218794,42.469697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2101" />
+              <path
+                 d="m 26.092935,42.918999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 H 26.47211 v -0.621358 q 0,-0.120683 -0.02365,-0.141884 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2103" />
+              <path
+                 d="m 27.761303,42.714326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2105" />
+              <path
+                 d="m 28.164127,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157377,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2107" />
+              <path
+                 d="m 29.763999,42.714326 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2109" />
+              <path
+                 d="m 30.775132,42.714326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131285,-0.02202 0.06197,-0.02202 0.100297,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2111" />
+              <path
+                 d="m 31.925702,42.858657 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2113" />
+              <path
+                 d="m 32.246983,42.918999 v -0.910835 h 0.151669 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2115" />
+              <path
+                 d="m 33.229574,42.469697 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2117" />
+              <path
+                 d="m 34.199123,42.260947 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165533 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2119" />
+              <path
+                 d="m 35.623678,42.918999 v -0.353897 h -0.537369 v -0.127207 l 0.537369,-0.784443 h 0.152485 v 0.784443 h 0.234028 v 0.127207 h -0.234028 v 0.353897 z m 0,-0.481104 v -0.554492 l -0.375914,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2121" />
+              <path
+                 d="m 36.811757,42.247085 q -0.05871,0.08725 -0.145961,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187549,-0.0473 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114975,-0.312309 0.115791,-0.133731 0.304156,-0.133731 0.221797,0 0.331064,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183472 -0.377544,0.183472 -0.128023,0 -0.248706,-0.03833 v -0.152486 q 0.135361,0.0636 0.255229,0.0636 0.16961,0 0.262569,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297631,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164716,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2123" />
+              <path
+                 d="m 37.424144,42.236484 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05627,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.19978,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234029 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02935,-0.05871 0.02935,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158194 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05627 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2125" />
+              <path
+                 d="m 38.311334,42.918999 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110898 0.121499,-0.17124 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.656421 v -0.152485 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2127" />
+              <path
+                 d="M 39.629068,42.918999 V 42.565102 H 39.0917 v -0.127207 l 0.537368,-0.784443 h 0.152485 v 0.784443 h 0.234028 v 0.127207 h -0.234028 v 0.353897 z m 0,-0.481104 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2129" />
+              <path
+                 d="m 40.946801,42.892905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2131" />
+              <path
+                 d="m 41.208557,42.260947 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167978,0.152485 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165533 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2133" />
+              <path
+                 d="m 42.430885,42.236484 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234029 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158194 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05627 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2135" />
+              <path
+                 d="m 43.432231,42.236484 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298448,0.100298 -0.19978,0 -0.299262,-0.09377 -0.09948,-0.09459 -0.09948,-0.234029 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158194 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05627 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.0848 -0.118238,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2137" />
+              <path
+                 d="m 44.244398,42.469697 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2139" />
+              <path
+                 d="m 45.953542,42.892905 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2141" />
+              <path
+                 d="M 46.433013,42.918999 V 41.730102 H 46.16066 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2143" />
+              <path
+                 d="m 47.43436,42.918999 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2145" />
+              <path
+                 d="m 48.204944,43.276157 v -0.141885 q 0.127207,0.03751 0.214458,0.03751 0.07584,0 0.128837,-0.02691 0.053,-0.02609 0.08236,-0.08888 0.03017,-0.06279 0.03017,-0.218535 v -0.702901 h -0.386514 v -0.126391 h 0.538184 v 0.800752 q 0,0.231582 -0.05463,0.321279 -0.05463,0.09051 -0.1321,0.129653 -0.07747,0.03914 -0.212011,0.03914 -0.09704,0 -0.20875,-0.02283 z m 0.430546,-1.596611 q 0,-0.05137 0.03425,-0.07665 0.03506,-0.02528 0.06687,-0.02528 0.0318,0 0.06605,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03425,0.02528 -0.06605,0.02528 -0.0318,0 -0.06687,-0.02528 -0.03425,-0.02528 -0.03425,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2147" />
+              <path
+                 d="M 49.174488,42.918999 V 42.77956 l 0.55857,-0.645005 h -0.545523 v -0.126391 h 0.746118 v 0.126391 l -0.562646,0.645005 h 0.581401 v 0.139439 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2149" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text244"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,42.792607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 41.84997 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 H 53.2593 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2152" />
+              <path
+                 d="m 54.283479,42.957324 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2154" />
+              <path
+                 d="m 55.571858,42.792607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 41.84997 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304156 v 0.126392 h -0.765689 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2156" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text246"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.408217,42.381631 v 0.537368 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591187 h -0.195703 l -0.335142,-0.537368 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.141069 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2159" />
+              <path
+                 d="m 62.999121,42.008164 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2161" />
+              <path
+                 d="m 63.251089,42.918999 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2163" />
+              <path
+                 d="m 64.252436,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2165" />
+              <path
+                 d="M 65.509013,42.918999 V 42.134555 H 65.25623 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2167" />
+              <path
+                 d="m 66.255131,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2169" />
+              <path
+                 d="m 67.86479,42.714326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2171" />
+            </g>
+            <g
+               aria-label="0"
+               id="text248"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,41.615942 q 0.216088,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490074 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490074 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101929,0.02935 0.154932,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2174" />
+            </g>
+            <g
+               aria-label="50s"
+               id="text250"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.3213,42.260947 v -0.607495 h 0.708608 v 0.145962 H 84.47297 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165533 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2177" />
+              <path
+                 d="m 85.670021,41.615942 q 0.216089,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490074 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490074 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247075,0.941006 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101928,0.02935 0.154932,0 0.220166,-0.172871 0.06524,-0.173686 0.06524,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2179" />
+              <path
+                 d="m 86.307687,42.870888 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2181" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-controller-manager-549874c588-gcwjn"
+               id="text252"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,45.09 V 44.381392 H 0.13617675 V 44.255 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08644 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.0587 h 0.36123534 v 0.126392 H 0.49007323 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2184" />
+              <path
+                 d="m 1.5028369,45.115278 q -0.1957031,0 -0.313125,-0.136176 Q 1.07229,44.84211 1.07229,44.634175 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2186" />
+              <path
+                 d="m 2.5041846,45.115278 q -0.1957032,0 -0.313125,-0.136176 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2188" />
+              <path
+                 d="m 3.1891456,44.640698 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2190" />
+              <path
+                 d="m 4.1725537,45.09 v -1.316103 h 0.1516699 v 0.826845 L 4.7621094,44.179165 H 4.9643359 L 4.5272656,44.600742 4.9757519,45.09 H 4.767002 L 4.3242236,44.600742 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2192" />
+              <path
+                 d="M 5.8825096,44.179165 V 45.09 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2194" />
+              <path
+                 d="m 6.2747317,44.383838 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2196" />
+              <path
+                 d="m 7.8933595,45.029658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,44.546109 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2198" />
+              <path
+                 d="m 8.2146387,45.09 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05627 0.2046729,-0.05627 0.082358,0 0.1647168,0.02528 V 44.50778 H 8.7520069 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2200" />
+              <path
+                 d="m 9.1385204,45.09 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 V 45.09 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07583 -0.1508545,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2202" />
+              <path
+                 d="m 10.897402,45.029658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2204" />
+              <path
+                 d="m 11.902827,45.053306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 44.255 h 0.227505 v -0.366943 h 0.15167 V 44.255 h 0.405269 v 0.126392 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2206" />
+              <path
+                 d="m 12.900098,45.029658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2208" />
+              <path
+                 d="m 13.154512,45.04189 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 V 44.3341 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2210" />
+              <path
+                 d="m 14.20397,44.640698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2212" />
+              <path
+                 d="m 15.913111,45.063906 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2214" />
+              <path
+                 d="m 16.523052,45.115278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117421,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2216" />
+              <path
+                 d="m 17.149303,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2218" />
+              <path
+                 d="m 18.912261,45.053306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 44.255 h 0.227505 v -0.366943 h 0.15167 V 44.255 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2220" />
+              <path
+                 d="m 19.229464,45.09 v -0.910835 h 0.151669 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2222" />
+              <path
+                 d="m 20.528442,45.115278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117421,0.136176 0.117421,0.344111 0,0.207935 -0.117421,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2224" />
+              <path
+                 d="m 21.399322,45.09 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2226" />
+              <path
+                 d="m 22.400668,45.09 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2228" />
+              <path
+                 d="m 23.914922,45.029658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2230" />
+              <path
+                 d="m 24.236202,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 V 44.50778 H 24.77357 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2232" />
+              <path
+                 d="m 25.218794,44.640698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2234" />
+              <path
+                 d="m 26.092935,45.09 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 V 45.09 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 45.09 H 26.47211 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2236" />
+              <path
+                 d="m 27.761303,44.885327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140253,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2238" />
+              <path
+                 d="m 28.164127,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157377,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2240" />
+              <path
+                 d="m 29.763999,44.885327 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2242" />
+              <path
+                 d="m 30.775132,44.885327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131285,-0.02202 0.06197,-0.02202 0.100297,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2244" />
+              <path
+                 d="m 31.925702,45.029658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2246" />
+              <path
+                 d="m 32.246983,45.09 v -0.910835 h 0.151669 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2248" />
+              <path
+                 d="m 33.229574,44.640698 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2250" />
+              <path
+                 d="m 34.199123,44.431948 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 V 44.90326 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2252" />
+              <path
+                 d="m 35.623678,45.09 v -0.353896 h -0.537369 v -0.127207 l 0.537369,-0.784444 h 0.152485 v 0.784444 h 0.234028 v 0.127207 H 35.776163 V 45.09 Z m 0,-0.481103 v -0.554493 l -0.375914,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2254" />
+              <path
+                 d="m 36.811757,44.418086 q -0.05871,0.08725 -0.145961,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114975,-0.31231 0.115791,-0.13373 0.304156,-0.13373 0.221797,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183471 -0.377544,0.183471 -0.128023,0 -0.248706,-0.03832 v -0.152485 q 0.135361,0.0636 0.255229,0.0636 0.16961,0 0.262569,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297631,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164716,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2256" />
+              <path
+                 d="M 37.424144,44.407486 37.39642,44.3871 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05627,0.09948 -0.03669,0.04893 -0.146777,0.138624 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.19978,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02935,-0.05871 0.02935,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2258" />
+              <path
+                 d="m 38.311334,45.09 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 H 38.184938 V 43.82445 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2260" />
+              <path
+                 d="M 39.629068,45.09 V 44.736104 H 39.0917 v -0.127207 l 0.537368,-0.784444 h 0.152485 v 0.784444 h 0.234028 v 0.127207 H 39.781553 V 45.09 Z m 0,-0.481103 v -0.554493 l -0.375913,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2262" />
+              <path
+                 d="m 40.946801,45.063906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2264" />
+              <path
+                 d="m 41.208557,44.431948 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167978,0.152486 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 V 44.90326 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2266" />
+              <path
+                 d="M 42.430885,44.407486 42.40316,44.3871 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138624 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2268" />
+              <path
+                 d="m 43.432231,44.407486 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138624 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298448,0.100298 -0.19978,0 -0.299262,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.0848 -0.118238,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2270" />
+              <path
+                 d="m 44.244398,44.640698 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2272" />
+              <path
+                 d="m 45.795348,44.885327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131285,-0.02202 0.06197,-0.02202 0.100297,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2274" />
+              <path
+                 d="m 46.954888,45.063906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2276" />
+              <path
+                 d="m 47.228056,45.09 -0.148408,-0.910835 h 0.141069 l 0.08644,0.554492 0.02283,0.128838 0.02202,-0.128838 0.145147,-0.554492 h 0.136177 l 0.163901,0.554492 0.02854,0.128838 0.01875,-0.128838 0.08725,-0.554492 h 0.116606 L 47.900786,45.09 h -0.141885 l -0.174502,-0.586294 -0.02772,-0.128838 h -0.0041 l -0.02528,0.128023 -0.15167,0.587109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2278" />
+              <path
+                 d="m 48.204944,45.447158 v -0.141884 q 0.127207,0.03751 0.214458,0.03751 0.07584,0 0.128837,-0.02691 0.053,-0.02609 0.08236,-0.08888 0.03017,-0.06279 0.03017,-0.218535 v -0.7029 h -0.386514 v -0.126392 h 0.538184 v 0.800752 q 0,0.231582 -0.05463,0.321279 -0.05463,0.09051 -0.1321,0.129654 -0.07747,0.03914 -0.212011,0.03914 -0.09704,0 -0.20875,-0.02283 z m 0.430546,-1.596611 q 0,-0.05137 0.03425,-0.07665 0.03506,-0.02528 0.06687,-0.02528 0.0318,0 0.06605,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03425,0.02528 -0.06605,0.02528 -0.0318,0 -0.06687,-0.02528 -0.03425,-0.02528 -0.03425,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2280" />
+              <path
+                 d="m 49.192428,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2282" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text254"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,44.963609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 V 45.09 H 53.2593 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2285" />
+              <path
+                 d="m 54.283479,45.128325 h -0.149223 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2287" />
+              <path
+                 d="m 55.571858,44.963609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 V 45.09 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2289" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text256"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 61.408217,44.552632 V 45.09 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 L 62.103779,45.09 h -0.195703 l -0.335142,-0.537368 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.14107 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2292" />
+              <path
+                 d="M 62.999121,44.179165 V 45.09 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2294" />
+              <path
+                 d="m 63.251089,45.09 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150855,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2296" />
+              <path
+                 d="m 64.252436,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2298" />
+              <path
+                 d="M 65.509013,45.09 V 44.305557 H 65.25623 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 45.09 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2300" />
+              <path
+                 d="m 66.255131,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2302" />
+              <path
+                 d="m 67.86479,44.885327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2304" />
+            </g>
+            <g
+               aria-label="0"
+               id="text258"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,43.786944 q 0.216088,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247076,0.941005 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2307" />
+            </g>
+            <g
+               aria-label="50s"
+               id="text260"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.3213,44.431948 v -0.607495 h 0.708608 v 0.145962 H 84.47297 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 V 44.90326 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2310" />
+              <path
+                 d="m 85.670021,43.786944 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2312" />
+              <path
+                 d="m 86.307687,45.04189 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 V 44.3341 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2314" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-etcd-0"
+               id="text262"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,47.261002 V 46.552393 H 0.13617675 v -0.126391 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266645 0.0407715,-0.08644 0.12557617,-0.141885 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205489 v 0.05871 h 0.36123534 v 0.126391 H 0.49007323 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2317" />
+              <path
+                 d="m 1.5028369,47.28628 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,47.013111 1.07229,46.805176 q 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2319" />
+              <path
+                 d="m 2.5041846,47.28628 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2321" />
+              <path
+                 d="M 3.1891456,46.8117 V 46.685308 H 3.8219191 V 46.8117 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2323" />
+              <path
+                 d="m 4.1725537,47.261002 v -1.316104 h 0.1516699 v 0.826846 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,46.771744 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2325" />
+              <path
+                 d="m 5.8825096,46.350167 v 0.910835 H 5.7308397 v -0.199781 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2327" />
+              <path
+                 d="m 6.2747317,46.554839 q 0.070127,-0.11416 0.1671631,-0.172055 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316104 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2329" />
+              <path
+                 d="m 7.8933595,47.20066 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,46.71711 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2331" />
+              <path
+                 d="m 8.2146387,47.261002 v -0.910835 h 0.1516699 v 0.198964 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 V 46.47085 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2333" />
+              <path
+                 d="m 9.1385204,47.261002 v -0.910835 h 0.1516699 v 0.198964 q 0.065234,-0.10519 0.157378,-0.164716 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508829 H 9.7460155 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2335" />
+              <path
+                 d="m 10.897402,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2337" />
+              <path
+                 d="m 11.902827,47.224307 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 46.552424 H 11.0931 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2339" />
+              <path
+                 d="m 12.900098,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2341" />
+              <path
+                 d="m 13.154512,47.212891 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2343" />
+              <path
+                 d="m 14.20397,46.8117 v -0.126392 h 0.632773 V 46.8117 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2345" />
+              <path
+                 d="m 15.904141,47.20066 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2347" />
+              <path
+                 d="m 16.909565,47.224307 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2349" />
+              <path
+                 d="m 17.915807,47.234908 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242182,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2351" />
+              <path
+                 d="m 18.75896,47.056329 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161456,-0.196519 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 H 18.75896 Z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2353" />
+              <path
+                 d="m 19.210709,46.8117 v -0.126392 h 0.632773 V 46.8117 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2355" />
+              <path
+                 d="m 20.527627,45.957945 q 0.216088,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685777 q -0.04159,-0.07583 -0.09051,-0.101928 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.151669 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173686 0.06524,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2357" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text264"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,47.13461 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 H 53.2593 V 47.13461 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2360" />
+              <path
+                 d="m 54.283479,47.299327 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2362" />
+              <path
+                 d="m 55.571858,47.13461 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304156 v 0.126392 H 55.261995 V 47.13461 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2364" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text266"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.408217,46.723633 v 0.537369 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101928 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591187 h -0.195703 l -0.335142,-0.537369 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09378 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.141069 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2367" />
+              <path
+                 d="m 62.999121,46.350167 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2369" />
+              <path
+                 d="m 63.251089,47.261002 v -0.910835 h 0.151669 v 0.198964 q 0.06524,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2371" />
+              <path
+                 d="m 64.252436,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.06524,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2373" />
+              <path
+                 d="M 65.509013,47.261002 V 46.476558 H 65.25623 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239454 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2375" />
+              <path
+                 d="m 66.255131,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.06524,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.151669 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2377" />
+              <path
+                 d="m 67.86479,47.056329 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2379" />
+            </g>
+            <g
+               aria-label="0"
+               id="text268"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,45.957945 q 0.216088,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685777 q -0.04159,-0.07583 -0.09051,-0.101928 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.151669 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2382" />
+            </g>
+            <g
+               aria-label="50s"
+               id="text270"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.3213,46.60295 v -0.607495 h 0.708608 v 0.145962 H 84.47297 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2385" />
+              <path
+                 d="m 85.670021,45.957945 q 0.216089,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113344,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247075,0.941006 0.437885,-0.685777 q -0.04159,-0.07583 -0.09051,-0.101928 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.151669 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173686 0.06524,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2387" />
+              <path
+                 d="m 86.307687,47.212891 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2389" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-etcd-1"
+               id="text272"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,49.431999 V 48.723391 H 0.13617675 v -0.126392 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08644 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.05871 H 0.85130859 V 48.7234 H 0.49007323 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2392" />
+              <path
+                 d="m 1.5028369,49.457278 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,49.184109 1.07229,48.976174 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2394" />
+              <path
+                 d="m 2.5041846,49.457278 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2396" />
+              <path
+                 d="m 3.1891456,48.982697 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2398" />
+              <path
+                 d="m 4.1725537,49.431999 v -1.316103 h 0.1516699 v 0.826845 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,48.942741 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2400" />
+              <path
+                 d="m 5.8825096,48.521164 v 0.910835 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05627 -0.1793945,0.05627 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 Q 5.1233449,49.232224 5.1233449,49.03 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07584 0.1524853,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2402" />
+              <path
+                 d="m 6.2747317,48.725837 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204672 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2404" />
+              <path
+                 d="m 7.8933595,49.371657 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,48.888108 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2406" />
+              <path
+                 d="m 8.2146387,49.431999 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05627 0.2046729,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2408" />
+              <path
+                 d="m 9.1385204,49.431999 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2410" />
+              <path
+                 d="m 10.897402,49.371657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2412" />
+              <path
+                 d="m 11.902827,49.395305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 48.723413 H 11.0931 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2414" />
+              <path
+                 d="m 12.900098,49.371657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2416" />
+              <path
+                 d="m 13.154512,49.383889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2418" />
+              <path
+                 d="m 14.20397,48.982697 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2420" />
+              <path
+                 d="m 15.904141,49.371657 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2422" />
+              <path
+                 d="m 16.909565,49.395305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2424" />
+              <path
+                 d="m 17.915807,49.405905 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2426" />
+              <path
+                 d="m 18.75896,49.227326 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161456,-0.196518 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 H 18.75896 Z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2428" />
+              <path
+                 d="m 19.210709,48.982697 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2430" />
+              <path
+                 d="m 20.490117,49.305608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 h -0.765688 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2432" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text274"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,49.305608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 H 53.2593 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2435" />
+              <path
+                 d="m 54.283479,49.470324 h -0.149223 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2437" />
+              <path
+                 d="m 55.571858,49.305608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 v 0.126391 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2439" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text276"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.408217,48.894631 v 0.537368 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591186 h -0.195703 l -0.335142,-0.537368 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.14107 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2442" />
+              <path
+                 d="m 62.999121,48.521164 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07584 0.152485,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2444" />
+              <path
+                 d="m 63.251089,49.431999 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2446" />
+              <path
+                 d="m 64.252436,49.431999 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2448" />
+              <path
+                 d="M 65.509013,49.431999 V 48.647556 H 65.25623 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2450" />
+              <path
+                 d="m 66.255131,49.431999 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2452" />
+              <path
+                 d="m 67.86479,49.227326 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.1533 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2454" />
+            </g>
+            <g
+               aria-label="0"
+               id="text278"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,48.128943 q 0.216088,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247076,0.941005 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2457" />
+            </g>
+            <g
+               aria-label="50s"
+               id="text280"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.3213,48.773947 v -0.607495 h 0.708608 v 0.145962 H 84.47297 v 0.309864 h 0.02609 q 0.273169,0 0.420761,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2460" />
+              <path
+                 d="m 85.670021,48.128943 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2462" />
+              <path
+                 d="m 86.307687,49.383889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2464" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-etcd-2"
+               id="text282"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,51.603001 V 50.894392 H 0.13617675 v -0.126391 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266645 0.0407715,-0.08644 0.12557617,-0.141885 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205489 v 0.05871 h 0.36123534 v 0.126391 H 0.49007323 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2467" />
+              <path
+                 d="m 1.5028369,51.628279 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,51.35511 1.07229,51.147175 q 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2469" />
+              <path
+                 d="m 2.5041846,51.628279 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2471" />
+              <path
+                 d="m 3.1891456,51.153699 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2473" />
+              <path
+                 d="m 4.1725537,51.603001 v -1.316104 h 0.1516699 v 0.826846 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,51.113743 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2475" />
+              <path
+                 d="m 5.8825096,50.692166 v 0.910835 H 5.7308397 V 51.40322 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2477" />
+              <path
+                 d="m 6.2747317,50.896839 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316104 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2479" />
+              <path
+                 d="m 7.8933595,51.542659 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2481" />
+              <path
+                 d="m 8.2146387,51.603001 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 V 51.02079 H 8.7520069 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2483" />
+              <path
+                 d="m 9.1385204,51.603001 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 V 51.603 H 9.7460155 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2485" />
+              <path
+                 d="m 10.897402,51.542659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2487" />
+              <path
+                 d="m 11.902827,51.566306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 50.894423 H 11.0931 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2489" />
+              <path
+                 d="m 12.900098,51.542659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2491" />
+              <path
+                 d="m 13.154512,51.55489 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 V 50.8471 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2493" />
+              <path
+                 d="m 14.20397,51.153699 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2495" />
+              <path
+                 d="m 15.904141,51.542659 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2497" />
+              <path
+                 d="m 16.909565,51.566306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2499" />
+              <path
+                 d="m 17.915807,51.576907 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242182,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2501" />
+              <path
+                 d="m 18.75896,51.398328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161456,-0.196519 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 H 18.75896 Z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2503" />
+              <path
+                 d="m 19.210709,51.153699 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2505" />
+              <path
+                 d="m 20.91414,51.603001 h -0.765688 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08643,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115792,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181026,0.03262 0.08317,0.0318 0.123129,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194887,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2507" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text284"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,51.476609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136993 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 V 51.603 H 53.2593 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2510" />
+              <path
+                 d="m 54.283479,51.641326 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2512" />
+              <path
+                 d="m 55.571858,51.476609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136993 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304156 V 51.603 h -0.765689 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2514" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text286"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.408217,51.065632 v 0.537369 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591187 h -0.195703 l -0.335142,-0.537369 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.141069 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2517" />
+              <path
+                 d="m 62.999121,50.692166 v 0.910835 h -0.15167 V 51.40322 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2519" />
+              <path
+                 d="m 63.251089,51.603001 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 51.603 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2521" />
+              <path
+                 d="m 64.252436,51.603001 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 51.603 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2523" />
+              <path
+                 d="M 65.509013,51.603001 V 50.818557 H 65.25623 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2525" />
+              <path
+                 d="m 66.255131,51.603001 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 51.603 h -0.151669 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2527" />
+              <path
+                 d="m 67.86479,51.398328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191625 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 V 51.74407 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2529" />
+            </g>
+            <g
+               aria-label="0"
+               id="text288"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,50.299944 q 0.216088,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101929,0.02935 0.154932,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2532" />
+            </g>
+            <g
+               aria-label="50s"
+               id="text290"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.3213,50.944949 v -0.607495 h 0.708608 v 0.145962 H 84.47297 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 V 51.41626 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2535" />
+              <path
+                 d="m 85.670021,50.299944 q 0.216089,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113344,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247075,0.941006 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101928,0.02935 0.154932,0 0.220166,-0.172871 0.06524,-0.173686 0.06524,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2537" />
+              <path
+                 d="m 86.307687,51.55489 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 V 50.8471 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2539" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-kubeadm-tasks-vshqb"
+               id="text292"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,53.773998 V 53.06539 H 0.13617675 v -0.126392 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08644 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.05871 H 0.85130857 V 53.06539 H 0.49007323 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2542" />
+              <path
+                 d="m 1.5028369,53.799277 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,53.526108 1.07229,53.318173 q 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2544" />
+              <path
+                 d="m 2.5041846,53.799277 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2546" />
+              <path
+                 d="m 3.1891456,53.324697 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2548" />
+              <path
+                 d="M 4.1725537,53.773998 V 52.457895 H 4.3242236 V 53.28474 L 4.7621094,52.863163 H 4.9643359 L 4.5272656,53.28474 4.9757519,53.773998 H 4.767002 L 4.3242236,53.28474 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2550" />
+              <path
+                 d="m 5.8825096,52.863163 v 0.910835 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07584 0.1524853,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2552" />
+              <path
+                 d="m 6.2747317,53.067836 q 0.070127,-0.11416 0.1671631,-0.172055 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204672 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2554" />
+              <path
+                 d="m 7.8933595,53.713656 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,53.230107 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2556" />
+              <path
+                 d="m 8.2146387,53.773998 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05627 0.2046729,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2558" />
+              <path
+                 d="m 9.1385204,53.773998 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2560" />
+              <path
+                 d="m 10.897402,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2562" />
+              <path
+                 d="m 11.902827,53.737304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 H 11.0931 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 V 53.06539 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2564" />
+              <path
+                 d="m 12.900098,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2566" />
+              <path
+                 d="m 13.154512,53.725888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2568" />
+              <path
+                 d="m 14.20397,53.324697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2570" />
+              <path
+                 d="m 15.187378,53.773998 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 15.339048,53.28474 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2572" />
+              <path
+                 d="m 16.897334,52.863163 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152485,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2574" />
+              <path
+                 d="m 17.289557,53.067836 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.151669,0.0212 0.137808,0 0.231583,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2576" />
+              <path
+                 d="m 18.908183,53.713656 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2578" />
+              <path
+                 d="m 19.750523,53.569325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2580" />
+              <path
+                 d="m 20.761655,53.569325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2582" />
+              <path
+                 d="m 21.086197,53.773998 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03832,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100297,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2584" />
+              <path
+                 d="m 22.21475,53.324697 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2586" />
+              <path
+                 d="m 23.918999,53.737304 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227504 v -0.126392 h 0.227504 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2588" />
+              <path
+                 d="m 24.757262,53.569325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161456,-0.196518 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2590" />
+              <path
+                 d="m 25.170684,53.725888 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172872,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08643,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2592" />
+              <path
+                 d="m 26.202203,53.773998 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 26.353873,53.28474 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2594" />
+              <path
+                 d="m 27.173379,53.725888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2596" />
+              <path
+                 d="m 28.222838,53.324697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2598" />
+              <path
+                 d="m 29.461474,53.773998 -0.395483,-0.910835 h 0.166347 l 0.31231,0.72084 0.318833,-0.72084 h 0.15167 l -0.398745,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2600" />
+              <path
+                 d="m 30.177422,53.725888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08643,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2602" />
+              <path
+                 d="m 31.168168,53.773998 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.14107,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2604" />
+              <path
+                 d="m 32.777827,53.569325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 1.264732 h -0.152486 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2606" />
+              <path
+                 d="m 33.311117,53.067836 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2608" />
+            </g>
+            <g
+               aria-label="0/1"
+               id="text294"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.606673,52.470942 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2611" />
+              <path
+                 d="m 54.283479,53.812323 h -0.149223 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2613" />
+              <path
+                 d="m 55.571858,53.647607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 52.70497 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 v 0.126391 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2615" />
+            </g>
+            <g
+               aria-label="Completed"
+               id="text296"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 62.009189,53.759321 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236475 -0.06931,-0.157378 -0.06931,-0.355527 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260937,-0.07583 -0.09785,0 -0.179395,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130469 0.131284,0.195703 0.07991,0.06442 0.176949,0.06442 0.128838,0 0.260937,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2618" />
+              <path
+                 d="m 62.624839,53.799277 q -0.195704,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2620" />
+              <path
+                 d="m 63.182592,53.773998 v -0.910835 h 0.132916 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2622" />
+              <path
+                 d="m 64.39269,53.067836 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2624" />
+              <path
+                 d="m 65.498413,53.773998 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2626" />
+              <path
+                 d="m 67.012666,53.713656 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2628" />
+              <path
+                 d="m 68.018091,53.737304 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2630" />
+              <path
+                 d="m 69.015361,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2632" />
+              <path
+                 d="m 69.867485,53.569325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2634" />
+            </g>
+            <g
+               aria-label="0"
+               id="text298"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,52.470942 q 0.216088,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247076,0.941005 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2637" />
+            </g>
+            <g
+               aria-label="50s"
+               id="text300"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.3213,53.115947 v -0.607496 h 0.708608 v 0.145962 H 84.47297 v 0.309864 h 0.02609 q 0.273169,0 0.420761,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2640" />
+              <path
+                 d="m 85.670021,52.470942 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2642" />
+              <path
+                 d="m 86.307687,53.725888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2644" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-scheduler-7976d95897-69shs"
+               id="text302"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,55.945 V 55.236391 H 0.13617675 V 55.11 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266645 0.0407715,-0.08644 0.12557617,-0.141885 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144332 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 V 55.11 h 0.36123534 v 0.126391 H 0.49007323 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2647" />
+              <path
+                 d="m 1.5028369,55.970278 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,55.697109 1.07229,55.489175 q 0,-0.207935 0.1174219,-0.344112 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344112 0,0.207934 -0.1174218,0.344926 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2649" />
+              <path
+                 d="m 2.5041846,55.970278 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344926 0,-0.207935 0.1174219,-0.344112 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344112 0,0.207934 -0.1174219,0.344926 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2651" />
+              <path
+                 d="m 3.1891456,55.495698 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2653" />
+              <path
+                 d="m 4.1725537,55.945 v -1.316104 h 0.1516699 v 0.826846 L 4.7621094,55.034165 H 4.9643359 L 4.5272656,55.455742 4.9757519,55.945 H 4.767002 L 4.3242236,55.455742 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2655" />
+              <path
+                 d="M 5.8825096,55.034165 V 55.945 H 5.7308397 v -0.199781 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05627 -0.1793945,0.05627 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2657" />
+              <path
+                 d="m 6.2747317,55.238838 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123946 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316104 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2659" />
+              <path
+                 d="m 7.8933595,55.884658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2661" />
+              <path
+                 d="m 8.2146387,55.945 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092144,-0.05627 0.2046729,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 v 0.5292 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2663" />
+              <path
+                 d="m 9.1385204,55.945 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 V 55.945 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07584 -0.1508545,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2665" />
+              <path
+                 d="m 10.897402,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2667" />
+              <path
+                 d="m 11.902827,55.908305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 55.11 h 0.227505 v -0.366944 h 0.15167 V 55.11 h 0.405269 v 0.126391 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2669" />
+              <path
+                 d="m 12.900098,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2671" />
+              <path
+                 d="M 13.154512,55.896889 V 55.73625 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2673" />
+              <path
+                 d="m 14.20397,55.495698 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2675" />
+              <path
+                 d="M 15.157207,55.896889 V 55.73625 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08643,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2677" />
+              <path
+                 d="m 16.914458,55.918906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2679" />
+              <path
+                 d="m 17.149303,55.945 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.199781 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2681" />
+              <path
+                 d="m 18.908183,55.884658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2683" />
+              <path
+                 d="m 19.760308,55.740327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152486 V 55.945 h -0.152486 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2685" />
+              <path
+                 d="M 20.902724,55.034165 V 55.945 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179394,0.05627 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2687" />
+              <path
+                 d="m 21.399322,55.945 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2689" />
+              <path
+                 d="m 22.913574,55.884658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2691" />
+              <path
+                 d="m 23.234854,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159008,0.200596 v 0.5292 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2693" />
+              <path
+                 d="m 24.217447,55.495698 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2695" />
+              <path
+                 d="m 25.293813,55.945 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110898 0.121499,-0.17124 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 H 25.167417 V 54.67945 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2697" />
+              <path
+                 d="m 26.798282,55.273086 q -0.05871,0.08725 -0.145962,0.1427 -0.08643,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114976,-0.312309 0.115791,-0.133731 0.304155,-0.133731 0.221797,0 0.331065,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139439,0.500674 -0.139438,0.183472 -0.377544,0.183472 -0.128022,0 -0.248706,-0.03833 V 55.79251 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z M 26.50065,54.768335 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2699" />
+              <path
+                 d="m 27.296509,55.945 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110898 0.121499,-0.17124 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 H 27.170113 V 54.67945 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2701" />
+              <path
+                 d="m 28.27584,55.351367 q 0.05871,-0.08725 0.145147,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114975,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109267,-0.185918 -0.109267,-0.472133 0,-0.316387 0.139438,-0.499859 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.16961,0 -0.262569,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111713 0.03588,-0.07584 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170424,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2703" />
+              <path
+                 d="m 29.773784,55.740327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 V 55.945 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2705" />
+              <path
+                 d="m 30.803672,55.273086 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114975,-0.312309 0.115791,-0.133731 0.304155,-0.133731 0.221797,0 0.331065,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139439,0.500674 -0.139438,0.183472 -0.377544,0.183472 -0.128022,0 -0.248706,-0.03833 V 55.79251 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z M 30.50604,54.768335 q -0.06116,0 -0.123129,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2707" />
+              <path
+                 d="m 31.195077,55.286948 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167978,0.152485 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165533 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.105191,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2709" />
+              <path
+                 d="m 32.417407,55.262485 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05627,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298448,0.100298 -0.19978,0 -0.299262,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.0473,0.05463 -0.0473,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158194 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05627 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.0848 -0.118238,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2711" />
+              <path
+                 d="m 33.807714,55.273086 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187548,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114976,-0.312309 0.115791,-0.133731 0.304155,-0.133731 0.221797,0 0.331065,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139439,0.500674 -0.139438,0.183472 -0.377544,0.183472 -0.128022,0 -0.248706,-0.03833 V 55.79251 q 0.135361,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114975,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2713" />
+              <path
+                 d="m 34.305944,55.945 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110898 0.121499,-0.17124 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.65642 V 54.67945 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.08481,0.119052 q -0.08154,0.114976 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2715" />
+              <path
+                 d="m 35.232271,55.495698 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2717" />
+              <path
+                 d="m 36.286621,55.351367 q 0.05871,-0.08725 0.145146,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186734,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114975,0.132915 -0.303339,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109268,-0.185918 -0.109268,-0.472133 0,-0.316387 0.139439,-0.499859 0.139438,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135362,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.123129,-0.03588 0.06197,-0.03669 0.09704,-0.111713 0.03588,-0.07584 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165533,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2719" />
+              <path
+                 d="m 37.813104,55.273086 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114976,-0.312309 0.115791,-0.133731 0.304155,-0.133731 0.221797,0 0.331065,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139439,0.500674 -0.139438,0.183472 -0.377544,0.183472 -0.128022,0 -0.248706,-0.03833 V 55.79251 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2721" />
+              <path
+                 d="M 38.188204,55.896889 V 55.73625 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2723" />
+              <path
+                 d="m 39.17895,55.945 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.14107,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.199781 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2725" />
+              <path
+                 d="M 40.190898,55.896889 V 55.73625 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2727" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text304"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,55.818608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 54.87597 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 V 55.945 H 53.2593 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2730" />
+              <path
+                 d="m 54.283479,55.983325 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2732" />
+              <path
+                 d="m 55.571858,55.818608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 54.87597 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304156 V 55.945 h -0.765689 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2734" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text306"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 61.408217,55.407632 V 55.945 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 L 62.103779,55.945 h -0.195703 l -0.335142,-0.537368 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.141069 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2737" />
+              <path
+                 d="M 62.999121,55.034165 V 55.945 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2739" />
+              <path
+                 d="m 63.251089,55.945 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2741" />
+              <path
+                 d="m 64.252436,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2743" />
+              <path
+                 d="M 65.509013,55.945 V 55.160556 H 65.25623 v -0.126391 h 0.404453 v 0.784443 h 0.253599 V 55.945 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2745" />
+              <path
+                 d="m 66.255131,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 55.945 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2747" />
+              <path
+                 d="m 67.86479,55.740327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2749" />
+            </g>
+            <g
+               aria-label="0"
+               id="text308"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,54.641943 q 0.216088,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490074 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490074 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101929,0.02935 0.154932,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2752" />
+            </g>
+            <g
+               aria-label="50s"
+               id="text310"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.3213,55.286948 v -0.607495 h 0.708608 v 0.145962 H 84.47297 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165533 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2755" />
+              <path
+                 d="m 85.670021,54.641943 q 0.216089,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490074 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490074 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247075,0.941006 0.437885,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101928,0.02935 0.154932,0 0.220166,-0.172871 0.06524,-0.173686 0.06524,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2757" />
+              <path
+                 d="M 86.307687,55.896889 V 55.73625 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2759" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-scheduler-7976d95897-8fc8c"
+               id="text312"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,58.116001 V 57.407393 H 0.13617675 v -0.126392 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08644 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.05871 h 0.36123534 v 0.126392 H 0.49007323 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2762" />
+              <path
+                 d="m 1.5028369,58.141279 q -0.1957031,0 -0.313125,-0.136176 Q 1.07229,57.868111 1.07229,57.660176 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2764" />
+              <path
+                 d="m 2.5041846,58.141279 q -0.1957032,0 -0.313125,-0.136176 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2766" />
+              <path
+                 d="m 3.1891456,57.666699 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2768" />
+              <path
+                 d="m 4.1725537,58.116001 v -1.316103 h 0.1516699 v 0.826845 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,57.626743 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2770" />
+              <path
+                 d="m 5.8825096,57.205166 v 0.910835 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2772" />
+              <path
+                 d="m 6.2747317,57.409839 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2774" />
+              <path
+                 d="m 7.8933595,58.055659 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,57.57211 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2776" />
+              <path
+                 d="m 8.2146387,58.116001 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05627 0.2046729,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 V 57.32585 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2778" />
+              <path
+                 d="m 9.1385204,58.116001 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2780" />
+              <path
+                 d="m 10.897402,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 10.291538,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2782" />
+              <path
+                 d="m 11.902827,58.079307 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 57.407425 H 11.0931 v -0.126392 h 0.227505 V 56.91409 h 0.15167 v 0.366943 h 0.405269 v 0.126392 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2784" />
+              <path
+                 d="m 12.900098,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 12.294234,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2786" />
+              <path
+                 d="m 13.154512,58.067891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2788" />
+              <path
+                 d="m 14.20397,57.666699 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2790" />
+              <path
+                 d="m 15.157207,58.067891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08643,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2792" />
+              <path
+                 d="m 16.914458,58.089907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2794" />
+              <path
+                 d="m 17.149303,58.116001 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2796" />
+              <path
+                 d="m 18.908183,58.055659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 18.302319,57.57211 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2798" />
+              <path
+                 d="m 19.760308,57.911328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152486 v 1.316103 h -0.152486 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2800" />
+              <path
+                 d="m 20.902724,57.205166 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2802" />
+              <path
+                 d="m 21.399322,58.116001 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2804" />
+              <path
+                 d="m 22.913574,58.055659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 22.307709,57.57211 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2806" />
+              <path
+                 d="m 23.234854,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 H 23.772222 V 57.32585 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2808" />
+              <path
+                 d="m 24.217447,57.666699 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2810" />
+              <path
+                 d="m 25.293813,58.116001 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2812" />
+              <path
+                 d="m 26.798282,57.444087 q -0.05871,0.08725 -0.145962,0.1427 -0.08643,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114976,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331065,0.185917 0.110083,0.185103 0.110083,0.471319 0,0.316387 -0.139439,0.500674 -0.139438,0.183471 -0.377544,0.183471 -0.128022,0 -0.248706,-0.03833 v -0.152485 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z M 26.50065,56.939336 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2814" />
+              <path
+                 d="m 27.296509,58.116001 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2816" />
+              <path
+                 d="m 28.27584,57.522368 q 0.05871,-0.08725 0.145147,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114975,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109267,-0.185918 -0.109267,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.16961,0 -0.262569,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170424,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123946 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2818" />
+              <path
+                 d="m 29.773784,57.911328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2820" />
+              <path
+                 d="m 30.803672,57.444087 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114975,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331065,0.185917 0.110083,0.185103 0.110083,0.471319 0,0.316387 -0.139439,0.500674 -0.139438,0.183471 -0.377544,0.183471 -0.128022,0 -0.248706,-0.03833 v -0.152485 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z M 30.50604,56.939336 q -0.06116,0 -0.123129,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2822" />
+              <path
+                 d="m 31.195077,57.457949 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167978,0.152486 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.105191,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2824" />
+              <path
+                 d="m 32.417407,57.433486 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05627,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298448,0.100298 -0.19978,0 -0.299262,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393038 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.0473,0.05463 -0.0473,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.0848 -0.118238,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2826" />
+              <path
+                 d="m 33.807714,57.444087 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187548,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114976,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331065,0.185917 0.110083,0.185103 0.110083,0.471319 0,0.316387 -0.139439,0.500674 -0.139438,0.183471 -0.377544,0.183471 -0.128022,0 -0.248706,-0.03833 v -0.152485 q 0.135361,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114975,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2828" />
+              <path
+                 d="m 34.305944,58.116001 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.65642 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145147,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.08481,0.119053 q -0.08154,0.114975 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2830" />
+              <path
+                 d="m 35.232271,57.666699 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2832" />
+              <path
+                 d="m 36.422798,57.433486 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252784,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.265831,-0.393038 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.0848 -0.118238,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2834" />
+              <path
+                 d="m 37.388265,58.116001 v -0.708608 h -0.202226 v -0.126392 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126392 H 37.53993 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2836" />
+              <path
+                 d="m 38.944108,58.089907 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106005,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2838" />
+              <path
+                 d="m 39.426841,57.433486 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.19978,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393038 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2840" />
+              <path
+                 d="m 40.946801,58.089907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2842" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text314"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,57.98961 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 H 53.2593 V 57.98961 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2845" />
+              <path
+                 d="m 54.283479,58.154326 h -0.149223 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2847" />
+              <path
+                 d="m 55.571858,57.98961 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 v 0.126391 H 55.261995 V 57.98961 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2849" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text316"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.408217,57.578633 v 0.537368 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591186 h -0.195703 l -0.335142,-0.537368 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.14107 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2852" />
+              <path
+                 d="m 62.999121,57.205166 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2854" />
+              <path
+                 d="m 63.251089,58.116001 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2856" />
+              <path
+                 d="m 64.252436,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2858" />
+              <path
+                 d="M 65.509013,58.116001 V 57.331558 H 65.25623 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2860" />
+              <path
+                 d="m 66.255131,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2862" />
+              <path
+                 d="m 67.86479,57.911328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 V 58.25707 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2864" />
+            </g>
+            <g
+               aria-label="0"
+               id="text318"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,56.812945 q 0.216088,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247076,0.941005 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2867" />
+            </g>
+            <g
+               aria-label="50s"
+               id="text320"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.3213,57.457949 v -0.607495 h 0.708608 v 0.145962 H 84.47297 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2870" />
+              <path
+                 d="m 85.670021,56.812945 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2872" />
+              <path
+                 d="m 86.307687,58.067891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2874" />
+            </g>
+            <path
+               class="e"
+               d="m 0,58.617 h 1 v 2.171 H 0 Z"
+               id="path322" />
+            <g
+               id="text324"
+               class="f"
+               style="white-space:pre" />
+            <path
+               class="e"
+               d="m 1.002,58.617 h 5 v 2.171 h -5 z"
+               id="path326" />
+            <g
+               aria-label="kvaps"
+               id="text328"
+               class="g"
+               style="font-weight:700;white-space:pre">
+              <path
+                 d="M 1.1691631,60.286999 V 58.970895 H 1.320833 v 0.826846 l 0.4378857,-0.421577 h 0.2022266 l -0.4370703,0.421577 0.4484863,0.489258 h -0.20875 L 1.320833,59.797741 v 0.489258 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path2878" />
+              <path
+                 d="M 2.4257402,60.286999 2.0302568,59.376164 h 0.1663477 l 0.3123095,0.72084 0.318833,-0.72084 h 0.1516699 l -0.3987451,0.910835 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path2880" />
+              <path
+                 d="m 3.7296123,60.082326 q -0.069312,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.1614551,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524853 v 0.643374 q 0,0.164717 0.034248,0.267461 H 3.7581523 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204672 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path2882" />
+              <path
+                 d="m 4.2726886,59.580837 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054882,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158194 -0.061157,0.282954 -0.060342,0.123946 -0.161455,0.196519 -0.1011133,0.07176 -0.250337,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353896 H 4.1210187 v -1.264731 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path2884" />
+              <path
+                 d="m 5.1443828,60.238888 v -0.160639 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023647,-0.02609 -0.1174218,-0.06442 l -0.052188,-0.0212 -0.1051905,-0.04159 q -0.1696093,-0.06605 -0.2136425,-0.122314 -0.044849,-0.05545 -0.044849,-0.135362 0,-0.112529 0.086436,-0.185102 0.087251,-0.07257 0.2821386,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137807 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02935 0.1516699,0.06768 l 0.1027442,0.03751 q 0.1410693,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07584 -0.2902929,0.07584 -0.174502,0 -0.3587891,-0.07339 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path2886" />
+            </g>
+            <path
+               class="e"
+               d="m 6.012,58.617 h 1 v 2.171 h -1 z"
+               id="path330" />
+            <g
+               id="text332"
+               class="f"
+               style="white-space:pre" />
+            <path
+               class="h"
+               d="m 7.014,58.617 h 1 v 2.171 h -1 z"
+               id="path334" />
+            <g
+               aria-label=""
+               id="text336"
+               class="i"
+               style="white-space:pre;fill:#00d7ff">
+              <path
+                 d="m 7.0139999,58.717297 1.0258106,0.990747 -1.0258106,0.992378 z"
+                 style="white-space:pre;fill:#00d7ff"
+                 id="path2890" />
+            </g>
+            <path
+               class="h"
+               d="m 8.016,58.617 h 1 v 2.171 h -1 z"
+               id="path338" />
+            <g
+               id="text340"
+               class="j"
+               style="white-space:pre;fill:#eeeeee" />
+            <path
+               class="h"
+               d="m 9.018,58.617 h 1 v 2.171 h -1 z"
+               id="path342" />
+            <g
+               aria-label="~"
+               id="text344"
+               class="k"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 9.0636637,59.958381 v -0.01468 q 0,-0.106821 0.062788,-0.185103 0.063603,-0.0791 0.1704248,-0.0791 0.026909,0 0.052188,0.0057 0.026094,0.0049 0.058711,0.01794 0.032617,0.01223 0.097852,0.04893 l 0.098667,0.05463 q 0.090513,0.04974 0.1475927,0.04974 0.060342,0 0.088882,-0.04322 0.029356,-0.04403 0.029356,-0.0954 v -0.01305 h 0.1043749 v 0.01305 q 0,0.136177 -0.077466,0.201411 -0.07665,0.06442 -0.1630859,0.06442 -0.080728,0 -0.2136426,-0.07584 l -0.083174,-0.04811 q -0.09459,-0.05382 -0.1524853,-0.05382 -0.032617,0 -0.061157,0.01712 -0.027725,0.01712 -0.044849,0.05463 -0.017124,0.03751 -0.017124,0.06605 v 0.01468 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path2894" />
+            </g>
+            <path
+               class="h"
+               d="m 10.02,58.617 h 1 v 2.171 h -1 z"
+               id="path346" />
+            <g
+               aria-label="/"
+               id="text348"
+               class="j"
+               style="white-space:pre;fill:#eeeeee">
+              <path
+                 d="M 10.196133,60.325324 H 10.04691 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#eeeeee"
+                 id="path2897" />
+            </g>
+            <path
+               class="h"
+               d="m 11.022,58.617 h 3 v 2.171 h -3 z"
+               id="path350" />
+            <g
+               aria-label="tmp"
+               id="text352"
+               class="k"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 11.910003,60.250304 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119869,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 59.57839 h -0.227504 v -0.126391 h 0.227504 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path2900" />
+              <path
+                 d="m 12.081243,60.286999 v -0.910835 h 0.132916 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 H 12.46041 v -0.621358 q 0,-0.120683 -0.02365,-0.141884 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path2902" />
+              <path
+                 d="m 13.291341,59.580837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158194 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path2904" />
+            </g>
+            <path
+               class="h"
+               d="m 14.028,58.617 h 1 v 2.171 h -1 z"
+               id="path354" />
+            <g
+               id="text356"
+               class="j"
+               style="white-space:pre;fill:#eeeeee" />
+            <g
+               aria-label=""
+               id="text358"
+               class="l"
+               style="white-space:pre;fill:#005f87">
+              <path
+                 d="M 15.03,58.717297 16.05581,59.708044 15.03,60.700422 Z"
+                 style="white-space:pre;fill:#005f87"
+                 id="path2908" />
+            </g>
+            <g
+               aria-label=""
+               id="text360"
+               class="p"
+               style="white-space:pre;fill:#262626">
+              <path
+                 d="M 106.23581,60.700422 105.21,59.708044 106.23581,58.717297 Z"
+                 style="white-space:pre;fill:#262626"
+                 id="path2911" />
+            </g>
+            <path
+               class="q"
+               d="m 106.212,58.617 h 13 v 2.171 h -13 z"
+               id="path362" />
+            <g
+               aria-label="stage-admin"
+               id="text364"
+               class="r"
+               style="white-space:pre;fill:#af5fd7">
+              <path
+                 d="m 106.34899,60.238888 v -0.160639 q 0.0913,0.05953 0.19326,0.08399 0.10193,0.02365 0.17287,0.02365 0.11497,0 0.16553,-0.03669 0.0506,-0.03751 0.0506,-0.09296 0,-0.03669 -0.0236,-0.06279 -0.0237,-0.02609 -0.11742,-0.06442 l -0.0522,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.21364,-0.122314 -0.0449,-0.05545 -0.0449,-0.135362 0,-0.112529 0.0864,-0.185102 0.0873,-0.07257 0.28214,-0.07257 0.14596,0 0.27643,0.0424 v 0.137807 q -0.15004,-0.05382 -0.28214,-0.05382 -0.0962,0 -0.15085,0.03425 -0.0538,0.03343 -0.0538,0.08399 0,0.04893 0.0473,0.07828 0.0465,0.02935 0.15167,0.06768 l 0.10274,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.0571,0.06034 0.0571,0.150854 0,0.118238 -0.0913,0.194888 -0.0905,0.07584 -0.29029,0.07584 -0.1745,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path2914" />
+              <path
+                 d="m 108.10135,60.250304 q -0.10682,0.04485 -0.15493,0.053 -0.0481,0.009 -0.093,0.009 -0.0954,0 -0.1745,-0.03669 -0.0791,-0.03669 -0.11987,-0.108452 -0.04,-0.07176 -0.04,-0.221797 V 59.57839 h -0.2275 v -0.126391 h 0.2275 v -0.366944 h 0.15167 v 0.366944 h 0.40527 v 0.126391 h -0.40527 v 0.364497 q 0,0.110083 0.0261,0.155747 0.0261,0.04485 0.0693,0.06605 0.044,0.0212 0.10356,0.0212 0.11008,0 0.23158,-0.06931 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path2916" />
+              <path
+                 d="m 108.93961,60.082326 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158193 0.0603,-0.282138 0.0603,-0.124761 0.16145,-0.196519 0.10112,-0.07257 0.25034,-0.07257 0.0432,0 0.13047,0.009 0.0131,0.0016 0.0391,0.0041 h 0.15249 v 0.643374 q 0,0.164717 0.0342,0.267461 h -0.15819 q -0.0179,-0.07502 -0.0285,-0.204673 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23403,0.108452 -0.093,0.108452 -0.093,0.295186 0,0.135361 0.0506,0.204672 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path2918" />
+              <path
+                 d="m 109.95074,60.082326 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158193 0.0603,-0.282138 0.0603,-0.124761 0.16146,-0.196519 0.10111,-0.07257 0.25033,-0.07257 0.0432,0 0.13047,0.009 0.013,0.0016 0.0391,0.0041 h 0.15249 v 0.644189 q 0,0.229951 -0.007,0.280508 -0.006,0.05137 -0.0196,0.10356 -0.0326,0.121499 -0.14922,0.191626 -0.11579,0.07013 -0.28051,0.07013 -0.16553,0 -0.33514,-0.0848 v -0.153301 q 0.0644,0.04403 0.1582,0.07747 0.0946,0.03425 0.18265,0.03425 0.0693,0 0.13129,-0.02202 0.062,-0.02202 0.10029,-0.0636 0.0383,-0.04159 0.0522,-0.09704 0.0139,-0.05463 0.0139,-0.145962 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23402,0.108452 -0.093,0.108452 -0.093,0.295186 0,0.135361 0.0506,0.204672 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path2920" />
+              <path
+                 d="m 111.10131,60.226657 q -0.18184,0.08643 -0.34411,0.08643 -0.12313,0 -0.22016,-0.06116 -0.097,-0.06116 -0.15575,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.0554,-0.239736 0.0555,-0.114976 0.15494,-0.17858 0.0995,-0.06442 0.22179,-0.06442 0.16227,0 0.26012,0.115792 0.0987,0.115791 0.0987,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.0391,0.172871 0.04,0.07828 0.10438,0.117422 0.0644,0.03914 0.14677,0.03914 0.14678,0 0.32454,-0.09785 z m -0.60586,-0.48355 h 0.45419 v -0.02202 q 0,-0.111714 -0.0546,-0.177764 -0.0546,-0.06605 -0.14596,-0.06605 -0.0921,0 -0.15983,0.06768 -0.0669,0.06686 -0.0938,0.198149 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path2922" />
+              <path
+                 d="m 111.40384,59.837697 v -0.126392 h 0.63277 v 0.126392 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path2924" />
+              <path
+                 d="m 112.945,60.082326 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158193 0.0603,-0.282138 0.0603,-0.124761 0.16145,-0.196519 0.10112,-0.07257 0.25034,-0.07257 0.0432,0 0.13047,0.009 0.013,0.0016 0.0391,0.0041 h 0.15249 v 0.643374 q 0,0.164717 0.0342,0.267461 h -0.15819 q -0.0179,-0.07502 -0.0285,-0.204673 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23403,0.108452 -0.093,0.108452 -0.093,0.295186 0,0.135361 0.0506,0.204672 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path2926" />
+              <path
+                 d="m 113.95613,60.082326 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158193 0.0603,-0.282138 0.0603,-0.124761 0.16146,-0.196519 0.10111,-0.07257 0.25033,-0.07257 0.0432,0 0.13047,0.009 0.0131,0.0016 0.0391,0.0041 v -0.405269 h 0.15249 v 1.316104 h -0.15249 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23402,0.108452 -0.093,0.108452 -0.093,0.295186 0,0.135361 0.0506,0.204672 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path2928" />
+              <path
+                 d="m 114.28067,60.286999 v -0.910835 h 0.13292 v 0.20875 q 0.0628,-0.132915 0.11661,-0.183472 0.0546,-0.05056 0.11008,-0.05056 0.066,0 0.10601,0.05219 0.0408,0.05137 0.0408,0.146777 v 0.04893 q 0.0269,-0.08317 0.0644,-0.134546 0.0383,-0.05219 0.0791,-0.08236 0.0408,-0.03099 0.0938,-0.03099 0.0587,0 0.10029,0.04974 0.0416,0.04974 0.0416,0.198149 v 0.688223 h -0.13291 v -0.622173 q 0,-0.07665 -0.005,-0.104375 -0.005,-0.02854 -0.0196,-0.04322 -0.0147,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.0913,0.06524 -0.0481,0.06442 -0.0987,0.214458 v 0.504751 h -0.12721 v -0.621358 q 0,-0.120683 -0.0237,-0.141884 -0.0237,-0.0212 -0.0424,-0.0212 -0.0416,0 -0.0897,0.07257 -0.0473,0.07257 -0.0905,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path2930" />
+              <path
+                 d="m 115.60575,60.286999 v -0.784444 h -0.25279 v -0.126391 h 0.40446 v 0.784443 h 0.2536 v 0.126392 z m -0.0253,-1.239453 q 0,-0.05137 0.0351,-0.07665 0.0351,-0.02528 0.066,-0.02528 0.0318,0 0.0669,0.02528 0.0351,0.02528 0.0351,0.07665 0,0.05056 -0.0351,0.07584 -0.0351,0.02528 -0.0669,0.02528 -0.031,0 -0.066,-0.02528 -0.0351,-0.02528 -0.0351,-0.07584 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path2932" />
+              <path
+                 d="m 116.35187,60.286999 v -0.910835 h 0.15167 v 0.198965 q 0.0652,-0.105191 0.15737,-0.164717 0.0922,-0.05953 0.18429,-0.05953 0.0807,0 0.14678,0.04322 0.0661,0.0424 0.0921,0.111714 0.0269,0.06931 0.0269,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.0131,-0.172871 -0.0122,-0.0424 -0.0465,-0.06931 -0.0334,-0.02691 -0.0734,-0.02691 -0.0799,0 -0.17206,0.07583 -0.0913,0.07583 -0.15085,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path2934" />
+            </g>
+          </svg>
+        </svg>
+      </g>
+    </svg>
+  </g>
+</svg>
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot02.svg b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot02.svg
new file mode 100644
index 0000000000..e7f86efd5a
--- /dev/null
+++ b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot02.svg
@@ -0,0 +1,7728 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<svg
+   width="1190"
+   height="259.50195"
+   version="1.1"
+   id="svg414"
+   sodipodi:docname="2.svg"
+   inkscape:version="1.1.1 (c3084ef, 2021-09-22)"
+   xmlns:inkscape="http://www.inkscape.org/namespaces/inkscape"
+   xmlns:sodipodi="http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd"
+   xmlns="http://www.w3.org/2000/svg"
+   xmlns:svg="http://www.w3.org/2000/svg">
+  <defs
+     id="defs418">
+    <clipPath
+       clipPathUnits="userSpaceOnUse"
+       id="clipPath4500">
+      <rect
+         style="fill:#ff0000;stroke-width:0.78098"
+         id="rect4502"
+         width="1326.1757"
+         height="259.50195"
+         x="-53.55999"
+         y="368.13068" />
+    </clipPath>
+  </defs>
+  <sodipodi:namedview
+     id="namedview416"
+     pagecolor="#ffffff"
+     bordercolor="#666666"
+     borderopacity="1.0"
+     inkscape:pageshadow="2"
+     inkscape:pageopacity="0.0"
+     inkscape:pagecheckerboard="0"
+     showgrid="false"
+     inkscape:zoom="0.66280811"
+     inkscape:cx="691.75375"
+     inkscape:cy="-21.122252"
+     inkscape:window-width="1416"
+     inkscape:window-height="814"
+     inkscape:window-x="12"
+     inkscape:window-y="25"
+     inkscape:window-maximized="0"
+     inkscape:current-layer="svg414" />
+  <g
+     id="g4369"
+     clip-path="url(#clipPath4500)"
+     transform="translate(0,-368.13068)">
+    <path
+       id="rect2"
+       class="a"
+       style="fill:#282d35"
+       d="M 0,0 H 1190 V 651.29999 H 0 Z" />
+    <svg
+       height="651.29999"
+       viewBox="0 0 119 65.13"
+       width="1190"
+       version="1.1"
+       id="svg412">
+      <style
+         id="style4">.a{fill:#282d35}.e{fill:#b9c0cb;white-space:pre}.f{fill:#00d7ff}.g,.h{fill:#000;white-space:pre}.h{font-weight:700}.i{fill:#005f87}.j{fill:#00d7ff;white-space:pre}.k{fill:#eee}.k,.l,.m{white-space:pre}.l{fill:#fff;font-weight:700}.m{fill:#005f87}.n{fill:#a8cc8c}.n,.o{white-space:pre}.o,.p{fill:#262626}.q{fill:#af5fd7;white-space:pre}</style>
+      <g
+         font-family="Monaco, Consolas, Menlo, 'Bitstream Vera Sans Mono', 'Powerline Symbols', monospace"
+         font-size="1.67px"
+         id="g410">
+        <defs
+           id="defs12">
+          <symbol
+             id="a">
+            <path
+               fill="transparent"
+               d="M 0,0 H 119 V 30 H 0 Z"
+               id="path6" />
+          </symbol>
+          <symbol
+             id="b">
+            <path
+               fill="#6f7683"
+               d="M 0,0 H 1.102 V 2.171 H 0 Z"
+               id="path9" />
+          </symbol>
+        </defs>
+        <path
+           class="a"
+           d="M 0,0 H 119 V 65.13 H 0 Z"
+           id="path14"
+           style="fill:#000000" />
+        <svg
+           width="119"
+           version="1.1"
+           id="svg408"
+           height="100%">
+          <svg
+             version="1.1"
+             id="svg406"
+             width="100%"
+             height="100%">
+            <g
+               id="use16">
+              <path
+                 fill="transparent"
+                 d="M 0,0 H 119 V 30 H 0 Z"
+                 id="path4504" />
+            </g>
+            <g
+               id="use18"
+               transform="translate(16.996,62.933998)">
+              <path
+                 fill="#6f7683"
+                 d="M 0,0 H 1.102 V 2.171 H 0 Z"
+                 id="path4508" />
+            </g>
+            <g
+               aria-label="Get"
+               id="text20"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 2.8911874,1.6691845 q -0.1337304,0.039141 -0.2454443,0.039141 -0.1581934,0 -0.2821387,-0.078281 Q 2.2404746,1.5517627 2.1703476,1.3943847 2.1002206,1.2361914 2.1002206,1.0372265 q 0,-0.19651851 0.068496,-0.35308101 0.068496,-0.1565625 0.1932569,-0.23729003 0.1247607,-0.0807275 0.2739843,-0.0807275 0.1125293,0 0.2544141,0.0530029 v 0.15003906 q -0.1312842,-0.075835 -0.2609375,-0.075835 -0.097852,0 -0.1793945,0.0668652 -0.080728,0.0668652 -0.1304688,0.19651855 -0.048926,0.12883789 -0.048926,0.28213863 0,0.2054883 0.093775,0.3742822 0.093774,0.168794 0.2960009,0.168794 0.026094,0 0.06605,-0.00408 V 1.1701416 H 2.600079 V 1.04375 h 0.2911084 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4513" />
+              <path
+                 d="m 3.8892734,1.6096582 q -0.1818408,0.086436 -0.3441114,0.086436 -0.1231298,0 -0.220166,-0.061157 Q 3.22796,1.5737802 3.169249,1.4604352 3.111353,1.3462751 3.111353,1.2166218 q 0,-0.1247608 0.055449,-0.23973636 0.055449,-0.11497558 0.1549316,-0.1785791 0.099482,-0.0644189 0.2217969,-0.0644189 0.1622705,0 0.2601221,0.11579101 0.098667,0.11579102 0.098667,0.35715815 v 0.032617 H 3.2744394 q 0,0.09459 0.039141,0.1728711 0.039956,0.078281 0.104375,0.1174219 0.064419,0.039141 0.1467774,0.039141 0.1467773,0 0.324541,-0.097852 z M 3.2834091,1.1261084 h 0.4541944 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.0660498 -0.1459619,-0.0660498 -0.092144,0 -0.1598243,0.0676807 -0.066865,0.0668652 -0.093774,0.1981498 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4515" />
+              <path
+                 d="m 4.8946982,1.6333056 q -0.1068213,0.044849 -0.1549317,0.053003 -0.04811,0.00897 -0.092959,0.00897 -0.095405,0 -0.174502,-0.036694 Q 4.3932089,1.6218896 4.3524374,1.5501318 4.3124814,1.478374 4.3124814,1.3283349 V 0.96139158 H 4.0849765 V 0.83499998 H 4.3124814 V 0.46805663 h 0.1516699 v 0.36694335 h 0.4052686 v 0.1263916 H 4.4641513 V 1.3258886 q 0,0.110083 0.026094,0.1557471 0.026094,0.044849 0.069311,0.06605 0.044033,0.021201 0.1035596,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4517" />
+            </g>
+            <g
+               aria-label="shell"
+               id="text22"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 6.1489923,1.6218896 V 1.46125 q 0.091328,0.059526 0.1932568,0.083989 0.1019287,0.023648 0.1728711,0.023648 0.1149756,0 0.1655322,-0.036694 0.050557,-0.03751 0.050557,-0.092959 0,-0.036694 -0.023647,-0.062788 Q 6.6839144,1.350352 6.5901405,1.312027 L 6.5379522,1.2908252 6.4327618,1.2492382 Q 6.2631524,1.1831884 6.2191192,1.1269238 6.1742706,1.0714746 6.1742706,0.99156247 q 0,-0.11252929 0.086436,-0.18510253 0.087251,-0.0725732 0.2821387,-0.0725732 0.1459619,0 0.2764307,0.0424023 V 0.91409666 Q 6.6692364,0.8602783 6.5371368,0.8602783 q -0.096221,0 -0.1508545,0.034248 -0.053818,0.0334326 -0.053818,0.0839893 0,0.0489258 0.047295,0.0782812 0.04648,0.029355 0.1516699,0.067681 l 0.1027441,0.03751 q 0.1410694,0.051372 0.1981494,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.091328,0.1948877 -0.090513,0.075835 -0.290293,0.075835 -0.1745019,0 -0.3587894,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4520" />
+              <path
+                 d="M 7.1397393,1.67 V 0.35389648 h 0.15167 v 0.60423338 q 0.065234,-0.10519043 0.1573779,-0.16471679 0.092143,-0.0595264 0.1842871,-0.0595264 0.077466,0 0.1410693,0.0399561 0.064419,0.0391406 0.089697,0.0954053 0.020386,0.0432178 0.027725,0.0921436 0.00734,0.0481103 0.00734,0.19978023 V 1.67 h -0.15167 V 1.142417 q 0,-0.1312842 -0.013047,-0.17287113 -0.012232,-0.0424023 -0.04648,-0.0693115 -0.033433,-0.0269092 -0.073389,-0.0269092 -0.079912,0 -0.1720557,0.075835 -0.091328,0.075835 -0.1508544,0.18999503 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4522" />
+              <path
+                 d="m 8.8986212,1.6096582 q -0.1818409,0.086436 -0.3441114,0.086436 -0.1231298,0 -0.220166,-0.061157 -0.097036,-0.061157 -0.155747,-0.174502 -0.057895,-0.1141601 -0.057895,-0.2438134 0,-0.1247608 0.055449,-0.23973636 0.055449,-0.11497558 0.1549316,-0.1785791 0.099482,-0.0644189 0.2217969,-0.0644189 0.1622705,0 0.260122,0.11579101 0.098667,0.11579102 0.098667,0.35715815 v 0.032617 H 8.2837872 q 0,0.09459 0.039141,0.1728711 0.039956,0.078281 0.104375,0.1174219 0.064419,0.039141 0.1467774,0.039141 0.1467773,0 0.324541,-0.097852 z M 8.2927569,1.1261084 h 0.4541943 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.0660498 -0.145962,-0.0660498 -0.092144,0 -0.1598242,0.0676807 -0.066865,0.0668652 -0.093774,0.1981498 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4524" />
+              <path
+                 d="M 9.3870637,1.67 V 0.4811035 H 9.1147102 V 0.35389648 H 9.5387336 V 1.5436084 h 0.284585 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4526" />
+              <path
+                 d="M 10.388411,1.67 V 0.4811035 H 10.116058 V 0.35389648 h 0.424023 V 1.5436084 h 0.284585 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4528" />
+            </g>
+            <g
+               aria-label="in"
+               id="text24"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 12.405621,1.67 V 0.88555662 h -0.252783 v -0.1263916 h 0.404453 V 1.5436084 H 12.81089 V 1.67 Z m -0.02528,-1.23945314 q 0,-0.0513721 0.03506,-0.0766504 0.03506,-0.0252783 0.06605,-0.0252783 0.0318,0 0.06686,0.0252783 0.03506,0.0252783 0.03506,0.0766504 0,0.0505566 -0.03506,0.075835 -0.03506,0.0252783 -0.06686,0.0252783 -0.03099,0 -0.06605,-0.0252783 -0.03506,-0.0252783 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4531" />
+              <path
+                 d="M 13.151739,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.06523,-0.10519043 0.157378,-0.16471679 0.09214,-0.0595264 0.184287,-0.0595264 0.08073,0 0.146778,0.0432178 0.06605,0.0424023 0.09214,0.11171387 0.02691,0.0693115 0.02691,0.27235346 V 1.67 H 13.759235 V 1.142417 q 0,-0.1312842 -0.01305,-0.17287113 -0.01223,-0.0424023 -0.04648,-0.0693115 -0.03343,-0.0269092 -0.07339,-0.0269092 -0.07991,0 -0.172055,0.075835 -0.09133,0.075835 -0.150855,0.18999503 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4533" />
+            </g>
+            <g
+               aria-label="admin"
+               id="text26"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 15.754917,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.114161,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101114,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152485 V 1.402539 q 0,0.1647168 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234029,0.10845215 -0.09296,0.10845221 -0.09296,0.29518561 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4536" />
+              <path
+                 d="m 16.76605,1.4653271 q -0.06931,0.1141602 -0.167164,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101114,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 V 0.35389648 h 0.152485 V 1.67 H 16.76605 Z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.15004,-0.0212012 -0.140253,0 -0.234028,0.10845215 -0.09296,0.10845221 -0.09296,0.29518561 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4538" />
+              <path
+                 d="M 17.090591,1.67 V 0.75916502 h 0.132915 v 0.20874999 q 0.06279,-0.13291503 0.116606,-0.18347167 0.05463,-0.0505566 0.110083,-0.0505566 0.06605,0 0.106006,0.0521875 0.04077,0.0513721 0.04077,0.14677734 v 0.0489258 q 0.02691,-0.0831738 0.06442,-0.1345459 0.03833,-0.0521875 0.0791,-0.0823584 0.04077,-0.0309863 0.09377,-0.0309863 0.05871,0 0.100298,0.0497412 0.04159,0.0497412 0.04159,0.19814941 V 1.67 H 17.843232 V 1.0478271 q 0,-0.0766504 -0.0049,-0.10437498 -0.0049,-0.02854 -0.01957,-0.0432178 -0.01468,-0.0146777 -0.0318,-0.0146777 -0.0424,0 -0.09133,0.0652344 -0.04811,0.0644189 -0.09867,0.21445798 V 1.67 H 17.469765 V 1.0486426 q 0,-0.12068364 -0.02365,-0.14188481 -0.02365,-0.0212012 -0.0424,-0.0212012 -0.04159,0 -0.0897,0.0725732 -0.0473,0.0725732 -0.09051,0.18591791 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4540" />
+              <path
+                 d="M 18.415664,1.67 V 0.88555662 h -0.252783 v -0.1263916 h 0.404453 V 1.5436084 h 0.253598 V 1.67 Z m -0.02528,-1.23945314 q 0,-0.0513721 0.03506,-0.0766504 0.03506,-0.0252783 0.06605,-0.0252783 0.0318,0 0.06686,0.0252783 0.03506,0.0252783 0.03506,0.0766504 0,0.0505566 -0.03506,0.075835 -0.03506,0.0252783 -0.06686,0.0252783 -0.03099,0 -0.06605,-0.0252783 -0.03506,-0.0252783 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4542" />
+              <path
+                 d="M 19.161782,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.06523,-0.10519043 0.157378,-0.16471679 0.09214,-0.0595264 0.184287,-0.0595264 0.08073,0 0.146777,0.0432178 0.06605,0.0424023 0.09214,0.11171387 0.02691,0.0693115 0.02691,0.27235346 V 1.67 h -0.15167 V 1.142417 q 0,-0.1312842 -0.01305,-0.17287113 -0.01223,-0.0424023 -0.04648,-0.0693115 -0.03343,-0.0269092 -0.07339,-0.0269092 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.18999503 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4544" />
+            </g>
+            <g
+               aria-label="container:"
+               id="text28"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 21.934895,1.6439062 q -0.152485,0.051372 -0.290293,0.051372 -0.136992,0 -0.243813,-0.062788 Q 21.294783,1.5688867 21.235257,1.46125 21.17573,1.3527978 21.17573,1.2149902 q 0,-0.2071191 0.134546,-0.34411132 0.135362,-0.13699218 0.326172,-0.13699218 0.141069,0 0.298447,0.0530029 V 0.93285154 Q 21.775887,0.8602783 21.65031,0.8602783 q -0.08317,0 -0.156562,0.0415869 -0.07339,0.0407715 -0.113345,0.1280225 -0.03996,0.087251 -0.03996,0.1793945 0,0.1231299 0.07665,0.2348437 0.07747,0.1117139 0.242183,0.1117139 0.04974,0 0.09785,-0.00652 0.04811,-0.00734 0.177763,-0.051372 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4547" />
+              <path
+                 d="m 22.544837,1.6952783 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369922 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.34411135 0.117422,-0.13617675 0.313125,-0.13617675 0.194887,0 0.312309,0.13617675 0.117422,0.13617675 0.117422,0.34411135 0,0.2079345 -0.117422,0.3449267 -0.117422,0.1361768 -0.312309,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.1647168 -0.07176,-0.25930666 -0.07176,-0.0945898 -0.193257,-0.0945898 -0.122315,0 -0.194073,0.0945898 -0.07176,0.0945899 -0.07176,0.25930666 0,0.1655322 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4549" />
+              <path
+                 d="M 23.171087,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.06523,-0.10519043 0.157378,-0.16471679 0.09214,-0.0595264 0.184287,-0.0595264 0.08073,0 0.146777,0.0432178 0.06605,0.0424023 0.09214,0.11171387 0.02691,0.0693115 0.02691,0.27235346 V 1.67 h -0.15167 V 1.142417 q 0,-0.1312842 -0.01305,-0.17287113 -0.01223,-0.0424023 -0.04648,-0.0693115 -0.03343,-0.0269092 -0.07339,-0.0269092 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.18999503 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4551" />
+              <path
+                 d="m 24.934046,1.6333056 q -0.106821,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084521 -0.03996,-0.071758 -0.03996,-0.2217969 V 0.96139158 h -0.227505 v -0.1263916 h 0.227505 V 0.46805663 h 0.15167 v 0.36694335 h 0.405269 v 0.1263916 H 24.503499 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4553" />
+              <path
+                 d="m 25.772307,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101113,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152486 V 1.402539 q 0,0.1647168 0.03425,0.267461 H 25.80085 Q 25.78291,1.59498 25.77231,1.4653271 Z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234028,0.10845215 -0.09296,0.10845221 -0.09296,0.29518561 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.1533,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4555" />
+              <path
+                 d="M 26.430359,1.67 V 0.88555662 h -0.252783 v -0.1263916 h 0.404453 V 1.5436084 h 0.253599 V 1.67 Z m -0.02528,-1.23945314 q 0,-0.0513721 0.03506,-0.0766504 0.03506,-0.0252783 0.06605,-0.0252783 0.0318,0 0.06686,0.0252783 0.03506,0.0252783 0.03506,0.0766504 0,0.0505566 -0.03506,0.075835 -0.03506,0.0252783 -0.06686,0.0252783 -0.03099,0 -0.06605,-0.0252783 -0.03506,-0.0252783 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4557" />
+              <path
+                 d="M 27.176478,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.06523,-0.10519043 0.157377,-0.16471679 0.09214,-0.0595264 0.184288,-0.0595264 0.08073,0 0.146777,0.0432178 0.06605,0.0424023 0.09214,0.11171387 0.02691,0.0693115 0.02691,0.27235346 V 1.67 H 27.78397 V 1.142417 q 0,-0.1312842 -0.01305,-0.17287113 -0.01223,-0.0424023 -0.04648,-0.0693115 -0.03343,-0.0269092 -0.07339,-0.0269092 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.18999503 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4559" />
+              <path
+                 d="m 28.935359,1.6096582 q -0.18184,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154931,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.162271,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715815 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 28.329495,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159825,0.0676807 -0.06686,0.0668652 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4561" />
+              <path
+                 d="M 29.256639,1.67 V 0.75916502 h 0.151669 v 0.19896484 q 0.07094,-0.1125293 0.162271,-0.16797851 0.09214,-0.0562647 0.204673,-0.0562647 0.08236,0 0.164717,0.0252783 V 1.0877832 H 29.794007 V 0.87984861 q -0.03833,-0.006523 -0.06034,-0.006523 -0.0848,0 -0.166348,0.0668652 Q 29.485779,1.007056 29.40831,1.1407865 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4563" />
+              <path
+                 d="m 30.554802,1.7083252 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09378,0.039141 z m 0,-0.70860843 q -0.05463,0 -0.09377,-0.0391406 -0.03914,-0.0391406 -0.03914,-0.0937744 0,-0.0554492 0.03914,-0.0937744 0.03996,-0.0391406 0.09377,-0.0391406 0.05382,0 0.09296,0.0391406 0.03996,0.0383252 0.03996,0.0937744 0,0.0546338 -0.03914,0.0937744 -0.03914,0.0391406 -0.09378,0.0391406 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4565" />
+            </g>
+            <g
+               aria-label="┌───────────────────────────────────────────────────────────────┐"
+               id="text30"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 5.0126092,3.1821329 v 0.1524854 l -0.4354394,8.154e-4 v 0.666206 H 4.4418085 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4568" />
+              <path
+                 d="M 6.0106952,3.1821329 V 3.3338028 H 5.0109784 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4570" />
+              <path
+                 d="M 7.0120428,3.1821329 V 3.3338028 H 6.0123261 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4572" />
+              <path
+                 d="M 8.0133906,3.1821329 V 3.3338028 H 7.0136739 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4574" />
+              <path
+                 d="M 9.0147382,3.1821329 V 3.3338028 H 8.0150214 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4576" />
+              <path
+                 d="M 10.016086,3.1821329 V 3.3338028 H 9.0163689 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4578" />
+              <path
+                 d="M 11.017434,3.1821329 V 3.3338028 H 10.017717 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4580" />
+              <path
+                 d="M 12.018781,3.1821329 V 3.3338028 H 11.019065 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4582" />
+              <path
+                 d="M 13.020129,3.1821329 V 3.3338028 H 12.020412 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4584" />
+              <path
+                 d="M 14.021476,3.1821329 V 3.3338028 H 13.02176 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4586" />
+              <path
+                 d="M 15.022824,3.1821329 V 3.3338028 H 14.023107 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4588" />
+              <path
+                 d="M 16.024171,3.1821329 V 3.3338028 H 15.024455 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4590" />
+              <path
+                 d="M 17.02552,3.1821329 V 3.3338028 H 16.025803 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4592" />
+              <path
+                 d="M 18.026867,3.1821329 V 3.3338028 H 17.027151 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4594" />
+              <path
+                 d="M 19.028215,3.1821329 V 3.3338028 H 18.028498 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4596" />
+              <path
+                 d="M 20.029563,3.1821329 V 3.3338028 H 19.029846 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4598" />
+              <path
+                 d="M 21.03091,3.1821329 V 3.3338028 H 20.031193 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4600" />
+              <path
+                 d="M 22.032259,3.1821329 V 3.3338028 H 21.032542 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4602" />
+              <path
+                 d="M 23.033605,3.1821329 V 3.3338028 H 22.033888 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4604" />
+              <path
+                 d="M 24.034954,3.1821329 V 3.3338028 H 23.035237 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4606" />
+              <path
+                 d="M 25.0363,3.1821329 V 3.3338028 H 24.036583 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4608" />
+              <path
+                 d="M 26.037649,3.1821329 V 3.3338028 H 25.037932 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4610" />
+              <path
+                 d="M 27.038995,3.1821329 V 3.3338028 H 26.039279 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4612" />
+              <path
+                 d="M 28.040344,3.1821329 V 3.3338028 H 27.040627 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4614" />
+              <path
+                 d="M 29.041692,3.1821329 V 3.3338028 H 28.041976 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4616" />
+              <path
+                 d="M 30.043039,3.1821329 V 3.3338028 H 29.043322 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4618" />
+              <path
+                 d="M 31.044387,3.1821329 V 3.3338028 H 30.044671 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4620" />
+              <path
+                 d="M 32.045734,3.1821329 V 3.3338028 H 31.046017 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4622" />
+              <path
+                 d="M 33.047083,3.1821329 V 3.3338028 H 32.047366 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4624" />
+              <path
+                 d="M 34.048429,3.1821329 V 3.3338028 H 33.048712 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4626" />
+              <path
+                 d="M 35.049778,3.1821329 V 3.3338028 H 34.050061 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4628" />
+              <path
+                 d="M 36.051124,3.1821329 V 3.3338028 H 35.051407 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4630" />
+              <path
+                 d="M 37.052473,3.1821329 V 3.3338028 H 36.052756 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4632" />
+              <path
+                 d="M 38.053819,3.1821329 V 3.3338028 H 37.054102 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4634" />
+              <path
+                 d="M 39.05517,3.1821329 V 3.3338028 H 38.055453 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4636" />
+              <path
+                 d="M 40.056516,3.1821329 V 3.3338028 H 39.056799 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4638" />
+              <path
+                 d="M 41.057863,3.1821329 V 3.3338028 H 40.058146 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4640" />
+              <path
+                 d="M 42.059209,3.1821329 V 3.3338028 H 41.059493 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4642" />
+              <path
+                 d="M 43.06056,3.1821329 V 3.3338028 H 42.060843 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4644" />
+              <path
+                 d="M 44.061906,3.1821329 V 3.3338028 H 43.06219 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4646" />
+              <path
+                 d="M 45.063253,3.1821329 V 3.3338028 H 44.063536 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4648" />
+              <path
+                 d="M 46.064603,3.1821329 V 3.3338028 H 45.064887 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4650" />
+              <path
+                 d="M 47.06595,3.1821329 V 3.3338028 H 46.066233 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4652" />
+              <path
+                 d="M 48.067297,3.1821329 V 3.3338028 H 47.06758 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4654" />
+              <path
+                 d="M 49.068643,3.1821329 V 3.3338028 H 48.068926 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4656" />
+              <path
+                 d="M 50.069994,3.1821329 V 3.3338028 H 49.070277 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4658" />
+              <path
+                 d="M 51.07134,3.1821329 V 3.3338028 H 50.071623 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4660" />
+              <path
+                 d="M 52.072687,3.1821329 V 3.3338028 H 51.07297 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4662" />
+              <path
+                 d="M 53.074037,3.1821329 V 3.3338028 H 52.07432 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4664" />
+              <path
+                 d="M 54.075384,3.1821329 V 3.3338028 H 53.075667 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4666" />
+              <path
+                 d="M 55.07673,3.1821329 V 3.3338028 H 54.077014 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4668" />
+              <path
+                 d="M 56.078077,3.1821329 V 3.3338028 H 55.07836 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4670" />
+              <path
+                 d="M 57.079427,3.1821329 V 3.3338028 H 56.079711 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4672" />
+              <path
+                 d="M 58.080774,3.1821329 V 3.3338028 H 57.081057 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4674" />
+              <path
+                 d="M 59.082121,3.1821329 V 3.3338028 H 58.082404 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4676" />
+              <path
+                 d="M 60.083467,3.1821329 V 3.3338028 H 59.08375 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4678" />
+              <path
+                 d="M 61.084817,3.1821329 V 3.3338028 H 60.085101 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4680" />
+              <path
+                 d="M 62.086164,3.1821329 V 3.3338028 H 61.086447 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4682" />
+              <path
+                 d="M 63.087511,3.1821329 V 3.3338028 H 62.087794 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4684" />
+              <path
+                 d="M 64.088861,3.1821329 V 3.3338028 H 63.089144 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4686" />
+              <path
+                 d="M 65.090208,3.1821329 V 3.3338028 H 64.090491 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4688" />
+              <path
+                 d="M 66.091554,3.1821329 V 3.3338028 H 65.091837 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4690" />
+              <path
+                 d="M 67.092901,3.1821329 V 3.3338028 H 66.093184 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4692" />
+              <path
+                 d="M 68.094251,3.1821329 V 3.3338028 H 67.094534 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4694" />
+              <path
+                 d="M 68.66342,3.1821329 V 4.0016397 H 68.528059 V 3.3338028 H 68.09425 V 3.1821329 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4696" />
+            </g>
+            <g
+               aria-label="│"
+               id="text32"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 4.5771698,4.7505304 V 6.1726397 H 4.4418085 V 4.7505304 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4699" />
+            </g>
+            <g
+               aria-label="kubectl"
+               id="text34"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 6.1791632,6.0120001 V 4.6958966 H 6.3308331 V 5.5227423 L 6.7687188,5.1011651 H 6.9709454 L 6.5338751,5.5227423 6.9823614,6.0120001 h -0.20875 L 6.3308331,5.5227423 v 0.4892578 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4702" />
+              <path
+                 d="m 7.8891192,5.1011651 v 0.910835 H 7.7374493 V 5.8122198 q -0.073389,0.1125293 -0.1630859,0.168794 -0.089697,0.056265 -0.1793946,0.056265 -0.079912,0 -0.1467773,-0.042402 Q 7.1821415,5.9516588 7.1560475,5.8823475 7.1299535,5.8122205 7.1299535,5.609994 V 5.1011651 h 0.1516699 v 0.527583 q 0,0.1312842 0.012231,0.1736866 0.013047,0.041587 0.046479,0.068496 0.034248,0.026909 0.073389,0.026909 0.079912,0 0.1712402,-0.075019 0.092144,-0.075835 0.1524854,-0.1908105 V 5.1011651 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4704" />
+              <path
+                 d="M 8.2813409,5.305838 Q 8.3514679,5.1916778 8.448504,5.1337823 8.54554,5.0758873 8.6270831,5.0758873 q 0.1141601,0 0.2054883,0.098667 0.091328,0.098667 0.091328,0.2992627 0,0.1581934 -0.061157,0.2829541 -0.060342,0.1239453 -0.1614551,0.1965185 -0.1011133,0.071758 -0.2503369,0.071758 -0.042402,0 -0.1304688,-0.00897 -0.013047,-0.00163 -0.039141,-0.00408 H 8.129671 v -1.316101 h 0.1516699 z m 0,0.1802099 v 0.3905909 q 0.082358,0.021201 0.1516699,0.021201 0.1378076,0 0.2315821,-0.1076367 0.09459,-0.1084521 0.09459,-0.296001 0,-0.1361767 -0.051372,-0.2046728 -0.051372,-0.068496 -0.1166064,-0.068496 -0.070942,0 -0.1565625,0.071758 -0.084805,0.071758 -0.1533011,0.1932566 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4706" />
+              <path
+                 d="m 9.8999689,5.9516583 q -0.1818408,0.086436 -0.3441113,0.086436 -0.1231299,0 -0.220166,-0.061157 Q 9.2386555,5.9157794 9.1799445,5.8024347 9.122049,5.6882745 9.122049,5.5586212 q 0,-0.1247607 0.055449,-0.2397363 0.055449,-0.1149756 0.1549316,-0.1785791 0.099482,-0.064419 0.2217969,-0.064419 0.1622705,0 0.260122,0.115791 0.098667,0.1157911 0.098667,0.3571582 V 5.581453 H 9.285135 q 0,0.09459 0.039141,0.1728711 0.039956,0.078281 0.104375,0.1174219 0.064419,0.039141 0.1467773,0.039141 0.1467774,0 0.324541,-0.097852 z M 9.2941047,5.4681085 H 9.748299 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.067681 -0.066865,0.066865 -0.093774,0.1981497 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4708" />
+              <path
+                 d="m 10.910286,5.9859063 q -0.152485,0.051372 -0.290293,0.051372 -0.136992,0 -0.243813,-0.062788 -0.106006,-0.063604 -0.165532,-0.1712402 -0.05953,-0.1084522 -0.05953,-0.2462598 0,-0.2071191 0.134546,-0.3441113 0.135361,-0.1369922 0.326172,-0.1369922 0.141069,0 0.298447,0.053003 v 0.1459619 q -0.159009,-0.072573 -0.284585,-0.072573 -0.08317,0 -0.156562,0.041587 -0.07339,0.040771 -0.113345,0.1280225 -0.03996,0.087251 -0.03996,0.1793945 0,0.1231299 0.07665,0.2348438 0.07747,0.1117138 0.242183,0.1117138 0.04974,0 0.09785,-0.00652 0.04811,-0.00734 0.177763,-0.051372 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4710" />
+              <path
+                 d="m 11.906741,5.9753057 q -0.106821,0.044849 -0.154931,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119869,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 5.3033917 H 11.09702 V 5.1770001 h 0.227504 V 4.8100568 h 0.15167 v 0.3669433 h 0.405269 v 0.1263916 h -0.405269 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4712" />
+              <path
+                 d="M 12.391107,6.0120001 V 4.8231036 h -0.272354 v -0.127207 h 0.424024 v 1.1897119 h 0.284585 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4714" />
+            </g>
+            <g
+               aria-label="exec"
+               id="text36"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 14.911926,5.9516583 q -0.181841,0.086436 -0.344112,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221796,-0.064419 0.162271,0 0.260123,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 14.306061,5.4681085 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09378,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4717" />
+              <path
+                 d="M 15.250329,6.0120001 H 15.075012 L 15.432985,5.5349737 15.098659,5.1011651 h 0.194072 l 0.23729,0.3057862 0.230767,-0.3057862 h 0.172056 L 15.616457,5.520296 15.99237,6.0120001 H 15.797482 L 15.520236,5.6491339 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4719" />
+              <path
+                 d="m 16.914621,5.9516583 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 16.308757,5.4681085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4721" />
+              <path
+                 d="m 17.924938,5.9859063 q -0.152485,0.051372 -0.290292,0.051372 -0.136993,0 -0.243814,-0.062788 Q 17.284826,5.9108863 17.2253,5.8032501 17.16577,5.6947979 17.16577,5.5569903 q 0,-0.2071191 0.134546,-0.3441113 0.135362,-0.1369922 0.326172,-0.1369922 0.14107,0 0.298447,0.053003 v 0.1459619 q -0.159008,-0.072573 -0.284584,-0.072573 -0.08317,0 -0.156563,0.041587 -0.07339,0.040771 -0.113345,0.1280225 -0.03996,0.087251 -0.03996,0.1793945 0,0.1231299 0.07665,0.2348438 0.07747,0.1117138 0.242182,0.1117138 0.04974,0 0.09785,-0.00652 0.04811,-0.00734 0.177763,-0.051372 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4723" />
+            </g>
+            <g
+               aria-label="-n"
+               id="text38"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 19.223103,5.5626983 V 5.4363067 h 0.632773 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4726" />
+              <path
+                 d="m 20.165739,6.0120001 v -0.910835 h 0.15167 V 5.30013 q 0.06523,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184287,-0.059526 0.08073,0 0.146778,0.043218 0.06605,0.042402 0.09214,0.1117139 0.02691,0.069312 0.02691,0.2723535 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172055,0.075835 -0.09133,0.075835 -0.150855,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4728" />
+            </g>
+            <g
+               aria-label="default"
+               id="text40"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 22.778703,5.8073272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057895 -0.178579,0.057895 -0.114161,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101114,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 V 4.6958966 h 0.152485 v 1.3161035 h -0.152485 z m 0,-0.1802099 V 5.2365265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234029,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4731" />
+              <path
+                 d="m 23.929274,5.9516583 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 H 23.31444 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 23.32341,5.4681085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4733" />
+              <path
+                 d="M 24.385099,6.0120001 V 5.3033917 H 24.182873 V 5.1770001 h 0.202226 v -0.042402 q 0,-0.18021 0.04077,-0.2666455 0.04077,-0.086436 0.125576,-0.1418848 0.08562,-0.055449 0.225874,-0.055449 0.106006,0 0.215273,0.022017 v 0.144331 q -0.118237,-0.039141 -0.209565,-0.039141 -0.07257,0 -0.128023,0.026909 -0.05545,0.026909 -0.08725,0.088066 -0.03099,0.060342 -0.03099,0.2054883 v 0.058711 H 24.898 v 0.1263916 h -0.361236 v 0.7086084 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4735" />
+              <path
+                 d="m 25.772961,5.8073272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057895 -0.178579,0.057895 -0.114161,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101114,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 h 0.152485 v 0.6433741 q 0,0.1647167 0.03425,0.2674609 h -0.158193 q -0.01794,-0.075019 -0.02854,-0.2046729 z m 0,-0.1802099 V 5.2365265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234029,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4737" />
+              <path
+                 d="m 26.925163,5.1011651 v 0.910835 h -0.15167 V 5.8122198 q -0.07339,0.1125293 -0.163086,0.168794 -0.0897,0.056265 -0.179395,0.056265 -0.07991,0 -0.146777,-0.042402 -0.06605,-0.043218 -0.09214,-0.1125293 -0.02609,-0.070127 -0.02609,-0.2723535 V 5.1011651 h 0.15167 v 0.527583 q 0,0.1312842 0.01223,0.1736866 0.01305,0.041587 0.04648,0.068496 0.03425,0.026909 0.07339,0.026909 0.07991,0 0.17124,-0.075019 0.09214,-0.075835 0.152486,-0.1908105 V 5.1011651 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4739" />
+              <path
+                 d="M 27.421759,6.0120001 V 4.8231036 h -0.272353 v -0.127207 h 0.424023 v 1.1897119 h 0.284585 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4741" />
+              <path
+                 d="m 28.94009,5.9753057 q -0.106822,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 v -0.366944 h -0.2275 V 5.1770001 h 0.227505 V 4.8100568 h 0.15167 v 0.3669433 h 0.405268 v 0.1263916 h -0.405268 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4743" />
+            </g>
+            <g
+               aria-label="-ti"
+               id="text42"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 30.245102,5.5626983 V 5.4363067 h 0.632773 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4746" />
+              <path
+                 d="m 31.94935,5.9753057 q -0.106821,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 v -0.366944 h -0.2275 V 5.1770001 h 0.227505 V 4.8100568 h 0.15167 v 0.3669433 h 0.405269 v 0.1263916 h -0.405269 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4748" />
+              <path
+                 d="M 32.444316,6.0120001 V 5.2275567 H 32.191533 V 5.1011651 h 0.404453 v 0.7844434 h 0.253598 V 6.0120001 Z M 32.419038,4.772547 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06686,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06686,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4750" />
+            </g>
+            <g
+               aria-label="deploy/foo-kubernetes-admin"
+               id="text44"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 34.802703,5.8073272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057895 -0.178579,0.057895 -0.11416,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130468,0.00897 0.01305,0.00163 0.03914,0.00408 V 4.6958966 h 0.152485 v 1.3161035 h -0.152485 z m 0,-0.1802099 V 5.2365265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234028,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4753" />
+              <path
+                 d="m 35.953274,5.9516583 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154931,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.62788 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 35.34741,5.4681085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4755" />
+              <path
+                 d="m 36.337342,5.305838 q 0.07013,-0.1141602 0.167163,-0.1720557 0.09704,-0.057895 0.178579,-0.057895 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101113,0.071758 -0.250337,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 v 0.3538965 h -0.15167 v -1.264729 h 0.15167 z m 0,0.1802099 v 0.3905909 q 0.08236,0.021201 0.15167,0.021201 0.137807,0 0.231582,-0.1076367 0.09459,-0.1084521 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.2046728 -0.05137,-0.068496 -0.116606,-0.068496 -0.07094,0 -0.156563,0.071758 -0.0848,0.071758 -0.1533,0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4757" />
+              <path
+                 d="M 37.443064,6.0120001 V 4.8231036 h -0.272353 v -0.127207 h 0.424023 v 1.1897119 h 0.284585 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4759" />
+              <path
+                 d="m 38.574881,6.0372784 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369921 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194887,0 0.312309,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449267 -0.117422,0.1361768 -0.312309,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4761" />
+              <path
+                 d="M 39.536272,5.9753057 39.11551,5.1011651 h 0.167164 l 0.335141,0.6833301 0.280508,-0.6833301 h 0.152485 l -0.353081,0.846416 q -0.111714,0.2682764 -0.212827,0.3563428 -0.100298,0.088066 -0.260122,0.088066 -0.06931,0 -0.123945,-0.012231 V 6.2460284 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.1011133 0.04729,-0.072573 0.06686,-0.1255762 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4763" />
+              <path
+                 d="m 40.25222,6.0503253 h -0.149224 l 0.804829,-1.3413818 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4765" />
+              <path
+                 d="M 41.415838,6.0120001 V 5.3033917 H 41.213611 V 5.1770001 h 0.202227 v -0.042402 q 0,-0.18021 0.04077,-0.2666455 0.04077,-0.086436 0.125577,-0.1418848 0.08562,-0.055449 0.225874,-0.055449 0.106005,0 0.215273,0.022017 v 0.144331 q -0.118237,-0.039141 -0.209565,-0.039141 -0.07257,0 -0.128023,0.026909 -0.05545,0.026909 -0.08725,0.088066 -0.03099,0.060342 -0.03099,0.2054883 v 0.058711 h 0.361235 v 0.1263916 h -0.361235 v 0.7086084 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4767" />
+              <path
+                 d="m 42.580271,6.0372784 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369921 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194888,0 0.31231,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449267 -0.117422,0.1361768 -0.31231,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4769" />
+              <path
+                 d="m 43.581619,6.0372784 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369921 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194888,0 0.312309,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449267 -0.117421,0.1361768 -0.312309,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4771" />
+              <path
+                 d="M 44.26658,5.5626983 V 5.4363067 h 0.632773 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4773" />
+              <path
+                 d="M 45.249988,6.0120001 V 4.6958966 h 0.15167 v 0.8268457 l 0.437885,-0.4215772 h 0.202227 l -0.43707,0.4215772 0.448486,0.4892578 h -0.20875 L 45.401658,5.5227423 v 0.4892578 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4775" />
+              <path
+                 d="m 46.959945,5.1011651 v 0.910835 h -0.15167 V 5.8122198 q -0.07339,0.1125293 -0.163086,0.168794 -0.0897,0.056265 -0.179395,0.056265 -0.07991,0 -0.146777,-0.042402 -0.06605,-0.043218 -0.09214,-0.1125293 -0.02609,-0.070127 -0.02609,-0.2723535 V 5.1011651 h 0.15167 v 0.527583 q 0,0.1312842 0.01223,0.1736866 0.01305,0.041587 0.04648,0.068496 0.03425,0.026909 0.07339,0.026909 0.07991,0 0.17124,-0.075019 0.09214,-0.075835 0.152486,-0.1908105 V 5.1011651 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4777" />
+              <path
+                 d="m 47.352166,5.305838 q 0.07013,-0.1141602 0.167163,-0.1720557 0.09704,-0.057895 0.178579,-0.057895 0.114161,0 0.205489,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101114,0.071758 -0.250337,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 h -0.15167 v -1.316101 h 0.15167 z m 0,0.1802099 v 0.3905909 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084521 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.2046728 -0.05137,-0.068496 -0.116606,-0.068496 -0.07094,0 -0.156563,0.071758 -0.08481,0.071758 -0.153301,0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4779" />
+              <path
+                 d="m 48.970794,5.9516583 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 H 48.35596 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 48.36493,5.4681085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4781" />
+              <path
+                 d="m 49.292073,6.0120001 v -0.910835 h 0.15167 V 5.30013 q 0.07094,-0.1125293 0.162271,-0.1679785 0.09214,-0.056265 0.204673,-0.056265 0.08236,0 0.164716,0.025278 V 5.4297833 H 49.829441 V 5.2218487 q -0.03833,-0.00652 -0.06034,-0.00652 -0.08481,0 -0.166348,0.066865 -0.08154,0.066865 -0.159009,0.2005957 v 0.5292139 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4783" />
+              <path
+                 d="m 50.215955,6.0120001 v -0.910835 h 0.15167 V 5.30013 q 0.06523,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184287,-0.059526 0.08073,0 0.146777,0.043218 0.06605,0.042402 0.09214,0.1117139 0.02691,0.069312 0.02691,0.2723535 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4785" />
+              <path
+                 d="m 51.974838,5.9516583 q -0.181841,0.086436 -0.344112,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221796,-0.064419 0.162271,0 0.260123,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.62788 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 51.368973,5.4681085 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09378,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4787" />
+              <path
+                 d="m 52.980261,5.9753057 q -0.106821,0.044849 -0.154931,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 Q 52.478768,5.9638907 52.438,5.8921325 52.39804,5.8203745 52.39804,5.6703357 v -0.366944 h -0.2275 V 5.1770001 h 0.227505 V 4.8100568 h 0.151669 v 0.3669433 h 0.405269 v 0.1263916 h -0.405269 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4789" />
+              <path
+                 d="m 53.977533,5.9516583 q -0.181841,0.086436 -0.344112,0.086436 -0.123129,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 53.371668,5.4681085 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09378,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4791" />
+              <path
+                 d="M 54.231946,5.9638897 V 5.8032501 q 0.09133,0.059526 0.193257,0.083989 0.101928,0.023648 0.172871,0.023648 0.114975,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.105191,-0.041587 q -0.169609,-0.06605 -0.213642,-0.1223145 -0.04485,-0.055449 -0.04485,-0.1353613 0,-0.1125293 0.08644,-0.1851025 0.08725,-0.072573 0.282138,-0.072573 0.145962,0 0.276431,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282139,-0.053818 -0.09622,0 -0.150854,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.0473,0.078281 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.14107,0.051372 0.19815,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948876 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4793" />
+              <path
+                 d="M 55.281405,5.5626983 V 5.4363067 h 0.632773 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4795" />
+              <path
+                 d="m 56.822566,5.8073272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057895 -0.17858,0.057895 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101114,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 h 0.152485 v 0.6433741 q 0,0.1647167 0.03425,0.2674609 h -0.158193 q -0.01794,-0.075019 -0.02854,-0.2046729 z m 0,-0.1802099 V 5.2365265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234029,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4797" />
+              <path
+                 d="m 57.833699,5.8073272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057895 -0.178579,0.057895 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 V 4.6958966 h 0.152486 V 6.0120001 H 57.8337 Z m 0,-0.1802099 V 5.2365265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234028,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4799" />
+              <path
+                 d="m 58.158241,6.0120001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.1834716 0.05463,-0.050557 0.110083,-0.050557 0.06605,0 0.106005,0.052187 0.04077,0.051372 0.04077,0.1467774 v 0.048926 q 0.02691,-0.083174 0.06442,-0.1345458 0.03833,-0.052188 0.0791,-0.082358 0.04077,-0.030986 0.09377,-0.030986 0.05871,0 0.100298,0.049741 0.04159,0.049741 0.04159,0.1981494 V 6.0120001 H 58.910883 V 5.3898272 q 0,-0.07665 -0.0049,-0.1043749 -0.0049,-0.02854 -0.01957,-0.043218 -0.01468,-0.014678 -0.0318,-0.014678 -0.0424,0 -0.09133,0.065234 -0.04811,0.064419 -0.09867,0.214458 v 0.504751 H 58.537416 V 5.3906427 q 0,-0.1206836 -0.02365,-0.1418848 -0.02365,-0.021201 -0.0424,-0.021201 -0.04159,0 -0.0897,0.072573 -0.0473,0.072573 -0.09051,0.1859179 V 6.012 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4801" />
+              <path
+                 d="M 59.483313,6.0120001 V 5.2275567 H 59.23053 V 5.1011651 h 0.404453 v 0.7844434 h 0.253599 V 6.0120001 Z M 59.458035,4.772547 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06686,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06686,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4803" />
+              <path
+                 d="m 60.229432,6.0120001 v -0.910835 h 0.15167 V 5.30013 q 0.06524,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184287,-0.059526 0.08073,0 0.146778,0.043218 0.06605,0.042402 0.09214,0.1117139 0.02691,0.069312 0.02691,0.2723535 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172055,0.075835 -0.09133,0.075835 -0.150855,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4805" />
+            </g>
+            <g
+               aria-label="--"
+               id="text46"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 62.309103,5.5626983 V 5.4363067 h 0.632774 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4808" />
+              <path
+                 d="M 63.310451,5.5626983 V 5.4363067 h 0.632773 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4810" />
+            </g>
+            <g
+               aria-label="sh"
+               id="text48"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 65.266989,5.9638897 V 5.8032501 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114976,0 0.165533,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.169609,-0.06605 -0.213643,-0.1223145 -0.04485,-0.055449 -0.04485,-0.1353613 0,-0.1125293 0.08643,-0.1851025 0.08725,-0.072573 0.282139,-0.072573 0.145962,0 0.276431,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282139,-0.053818 -0.09622,0 -0.150855,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.04729,0.078281 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948876 -0.09051,0.075835 -0.290293,0.075835 -0.174501,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4813" />
+              <path
+                 d="M 66.257737,6.0120001 V 4.6958966 h 0.151669 V 5.30013 q 0.06524,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184287,-0.059526 0.07747,0 0.14107,0.039956 0.06442,0.039141 0.0897,0.095405 0.02039,0.043218 0.02773,0.092143 0.0073,0.04811 0.0073,0.1997803 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150855,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4815" />
+            </g>
+            <g
+               aria-label="│"
+               id="text50"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 68.705171,4.7505304 V 6.1726397 H 68.56981 V 4.7505304 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4818" />
+            </g>
+            <g
+               aria-label="└───────────────────────────────────────────────────────────────┘"
+               id="text52"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 4.5771698,6.9215299 v 0.603418 H 5.0126092 V 7.6758024 H 4.4418085 V 6.9215299 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4821" />
+              <path
+                 d="m 6.0106952,7.5241324 v 0.15167 H 5.0109784 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4823" />
+              <path
+                 d="m 7.0120428,7.5241324 v 0.15167 H 6.0123261 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4825" />
+              <path
+                 d="m 8.0133906,7.5241324 v 0.15167 H 7.0136739 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4827" />
+              <path
+                 d="m 9.0147382,7.5241324 v 0.15167 H 8.0150214 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4829" />
+              <path
+                 d="m 10.016086,7.5241324 v 0.15167 H 9.0163689 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4831" />
+              <path
+                 d="m 11.017434,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4833" />
+              <path
+                 d="m 12.018781,7.5241324 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4835" />
+              <path
+                 d="m 13.020129,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4837" />
+              <path
+                 d="m 14.021476,7.5241324 v 0.15167 H 13.02176 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4839" />
+              <path
+                 d="m 15.022824,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4841" />
+              <path
+                 d="m 16.024171,7.5241324 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4843" />
+              <path
+                 d="m 17.02552,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4845" />
+              <path
+                 d="m 18.026867,7.5241324 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4847" />
+              <path
+                 d="m 19.028215,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4849" />
+              <path
+                 d="m 20.029563,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4851" />
+              <path
+                 d="m 21.03091,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4853" />
+              <path
+                 d="m 22.032259,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4855" />
+              <path
+                 d="m 23.033605,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4857" />
+              <path
+                 d="m 24.034954,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4859" />
+              <path
+                 d="m 25.0363,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4861" />
+              <path
+                 d="m 26.037649,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4863" />
+              <path
+                 d="m 27.038995,7.5241324 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4865" />
+              <path
+                 d="m 28.040344,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4867" />
+              <path
+                 d="m 29.041692,7.5241324 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4869" />
+              <path
+                 d="m 30.043039,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4871" />
+              <path
+                 d="m 31.044387,7.5241324 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4873" />
+              <path
+                 d="m 32.045734,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4875" />
+              <path
+                 d="m 33.047083,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4877" />
+              <path
+                 d="m 34.048429,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4879" />
+              <path
+                 d="m 35.049778,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4881" />
+              <path
+                 d="m 36.051124,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4883" />
+              <path
+                 d="m 37.052473,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4885" />
+              <path
+                 d="m 38.053819,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4887" />
+              <path
+                 d="m 39.05517,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4889" />
+              <path
+                 d="m 40.056516,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4891" />
+              <path
+                 d="m 41.057863,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4893" />
+              <path
+                 d="m 42.059209,7.5241324 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4895" />
+              <path
+                 d="m 43.06056,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4897" />
+              <path
+                 d="m 44.061906,7.5241324 v 0.15167 H 43.06219 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4899" />
+              <path
+                 d="m 45.063253,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4901" />
+              <path
+                 d="m 46.064603,7.5241324 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4903" />
+              <path
+                 d="m 47.06595,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4905" />
+              <path
+                 d="m 48.067297,7.5241324 v 0.15167 H 47.06758 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4907" />
+              <path
+                 d="m 49.068643,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4909" />
+              <path
+                 d="m 50.069994,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4911" />
+              <path
+                 d="m 51.07134,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4913" />
+              <path
+                 d="m 52.072687,7.5241324 v 0.15167 H 51.07297 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4915" />
+              <path
+                 d="m 53.074037,7.5241324 v 0.15167 H 52.07432 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4917" />
+              <path
+                 d="m 54.075384,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4919" />
+              <path
+                 d="m 55.07673,7.5241324 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4921" />
+              <path
+                 d="m 56.078077,7.5241324 v 0.15167 H 55.07836 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4923" />
+              <path
+                 d="m 57.079427,7.5241324 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4925" />
+              <path
+                 d="m 58.080774,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4927" />
+              <path
+                 d="m 59.082121,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4929" />
+              <path
+                 d="m 60.083467,7.5241324 v 0.15167 H 59.08375 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4931" />
+              <path
+                 d="m 61.084817,7.5241324 v 0.15167 h -0.999716 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4933" />
+              <path
+                 d="m 62.086164,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4935" />
+              <path
+                 d="m 63.087511,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4937" />
+              <path
+                 d="m 64.088861,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4939" />
+              <path
+                 d="m 65.090208,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4941" />
+              <path
+                 d="m 66.091554,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4943" />
+              <path
+                 d="m 67.092901,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4945" />
+              <path
+                 d="m 68.094251,7.5241324 v 0.15167 h -0.999717 v -0.15167 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4947" />
+              <path
+                 d="m 68.66342,6.9215299 v 0.7542725 h -0.56917 v -0.15167 h 0.433809 V 6.9215299 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path4949" />
+            </g>
+            <path
+               class="f"
+               d="m 0,8.684 h 1 v 2.171 H 0 Z"
+               id="path54" />
+            <g
+               id="text56"
+               class="g"
+               style="white-space:pre" />
+            <path
+               class="f"
+               d="m 1.002,8.684 h 5 v 2.171 h -5 z"
+               id="path58" />
+            <g
+               aria-label="kvaps"
+               id="text60"
+               class="h"
+               style="font-weight:700;white-space:pre">
+              <path
+                 d="M 1.1691631,10.354 V 9.0378966 H 1.320833 V 9.8647423 L 1.7587187,9.4431652 H 1.9609453 L 1.523875,9.8647423 1.9723613,10.354 h -0.20875 L 1.320833,9.8647423 V 10.354 Z"
+                 style="font-weight:700;white-space:pre"
+                 id="path4953" />
+              <path
+                 d="M 2.4257402,10.354 2.0302568,9.4431652 H 2.1966045 L 2.508914,10.164005 2.827747,9.4431652 H 2.9794169 L 2.5806718,10.354 Z"
+                 style="font-weight:700;white-space:pre"
+                 id="path4955" />
+              <path
+                 d="m 3.7296123,10.149327 q -0.069312,0.11416 -0.1671631,0.172056 -0.097036,0.05789 -0.1785791,0.05789 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.2992623 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304687,0.00897 0.013047,0.00163 0.039141,0.00408 h 0.1524853 v 0.6433735 q 0,0.164717 0.034248,0.267461 H 3.7581523 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.1802097 V 9.5785265 q -0.080728,-0.021201 -0.1500391,-0.021201 -0.1402539,0 -0.2340283,0.1084522 -0.092959,0.1084521 -0.092959,0.2951855 0,0.1353608 0.050557,0.2046728 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.1932565 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path4957" />
+              <path
+                 d="m 4.2726886,9.647838 q 0.070127,-0.1141602 0.1671631,-0.1720557 0.097036,-0.057896 0.1785791,-0.057896 0.1141601,0 0.2054882,0.098667 0.091328,0.098667 0.091328,0.2992627 0,0.1581934 -0.061157,0.282955 -0.060342,0.123945 -0.161455,0.196518 -0.1011133,0.07176 -0.250337,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353897 H 4.1210187 V 9.4431652 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.2960007 0,-0.1361768 -0.051372,-0.2046729 -0.051372,-0.068496 -0.1166064,-0.068496 -0.070942,0 -0.1565625,0.071758 -0.084805,0.071758 -0.153301,0.1932576 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path4959" />
+              <path
+                 d="m 5.1443828,10.30589 v -0.16064 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 Q 5.6793049,10.03436 5.5855301,9.996031 L 5.5333428,9.9748253 5.4281523,9.9332384 Q 5.258543,9.8671886 5.2145098,9.8109239 5.1696611,9.7554747 5.1696611,9.6755626 q 0,-0.1125293 0.086436,-0.1851025 0.087251,-0.072573 0.2821386,-0.072573 0.1459619,0 0.2764307,0.042402 v 0.1378076 q -0.1500391,-0.053818 -0.2821387,-0.053818 -0.096221,0 -0.1508545,0.034248 -0.053818,0.033433 -0.053818,0.083989 0,0.048926 0.047295,0.078281 0.04648,0.029355 0.1516699,0.067681 l 0.1027442,0.03751 q 0.1410693,0.051372 0.1981494,0.1117139 0.05708,0.060342 0.05708,0.1508544 0,0.118237 -0.091328,0.194887 -0.090513,0.07583 -0.2902929,0.07583 -0.174502,0 -0.3587891,-0.07339 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path4961" />
+            </g>
+            <path
+               class="f"
+               d="m 6.012,8.684 h 1 v 2.171 h -1 z"
+               id="path62" />
+            <g
+               id="text64"
+               class="g"
+               style="white-space:pre" />
+            <path
+               class="i"
+               d="m 7.014,8.684 h 1 v 2.171 h -1 z"
+               id="path66" />
+            <g
+               aria-label=""
+               id="text68"
+               class="j"
+               style="white-space:pre;fill:#00d7ff">
+              <path
+                 d="M 7.0139999,8.784298 8.0398105,9.775045 7.0139999,10.767423 Z"
+                 style="white-space:pre;fill:#00d7ff"
+                 id="path4965" />
+            </g>
+            <path
+               class="i"
+               d="m 8.016,8.684 h 1 v 2.171 h -1 z"
+               id="path70" />
+            <g
+               id="text72"
+               class="k"
+               style="white-space:pre;fill:#eeeeee" />
+            <path
+               class="i"
+               d="m 9.018,8.684 h 1 v 2.171 h -1 z"
+               id="path74" />
+            <g
+               aria-label="~"
+               id="text76"
+               class="l"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 9.0636637,10.025382 v -0.01468 q 0,-0.1068211 0.062788,-0.1851023 0.063603,-0.079097 0.1704248,-0.079097 0.026909,0 0.052188,0.00571 0.026094,0.00489 0.058711,0.01794 0.032617,0.012231 0.097852,0.048926 l 0.098667,0.054634 q 0.090513,0.049741 0.1475927,0.049741 0.060342,0 0.088882,-0.043218 0.029356,-0.044033 0.029356,-0.095405 v -0.013047 h 0.1043749 v 0.013047 q 0,0.1361767 -0.077466,0.2014111 -0.07665,0.064419 -0.1630859,0.064419 -0.080728,0 -0.2136426,-0.075835 l -0.083174,-0.04811 q -0.09459,-0.053818 -0.1524853,-0.053818 -0.032617,0 -0.061157,0.017124 -0.027725,0.017124 -0.044849,0.054634 -0.017124,0.03751 -0.017124,0.06605 v 0.01468 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path4969" />
+            </g>
+            <path
+               class="i"
+               d="m 10.02,8.684 h 1 v 2.171 h -1 z"
+               id="path78" />
+            <g
+               aria-label="/"
+               id="text80"
+               class="k"
+               style="white-space:pre;fill:#eeeeee">
+              <path
+                 d="M 10.196133,10.392325 H 10.04691 l 0.804829,-1.3413815 h 0.144331 z"
+                 style="white-space:pre;fill:#eeeeee"
+                 id="path4972" />
+            </g>
+            <path
+               class="i"
+               d="m 11.022,8.684 h 3 v 2.171 h -3 z"
+               id="path82" />
+            <g
+               aria-label="tmp"
+               id="text84"
+               class="l"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 11.910003,10.317306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119869,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 9.6453917 H 11.100282 V 9.5190001 h 0.227504 V 9.1520568 h 0.15167 v 0.3669433 h 0.405269 v 0.1263916 h -0.405269 v 0.3644973 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path4975" />
+              <path
+                 d="M 12.081243,10.354 V 9.4431652 h 0.132916 v 0.2087499 q 0.06279,-0.132915 0.116606,-0.1834716 0.05463,-0.050557 0.110083,-0.050557 0.06605,0 0.106006,0.052188 0.04077,0.051372 0.04077,0.1467774 v 0.048926 q 0.02691,-0.083174 0.06442,-0.1345459 0.03833,-0.052188 0.0791,-0.082358 0.04077,-0.030986 0.09377,-0.030986 0.05871,0 0.100298,0.049741 0.04159,0.049741 0.04159,0.1981495 V 10.354 H 12.833885 V 9.7318273 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.043218 -0.01468,-0.014678 -0.0318,-0.014678 -0.0424,0 -0.09133,0.065234 -0.04811,0.064419 -0.09867,0.214458 V 10.354 H 12.460418 V 9.7326427 q 0,-0.1206836 -0.02365,-0.1418848 -0.02365,-0.021201 -0.0424,-0.021201 -0.04159,0 -0.0897,0.072573 -0.0473,0.072573 -0.09051,0.185918 V 10.354 Z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path4977" />
+              <path
+                 d="m 13.291341,9.647838 q 0.07013,-0.1141602 0.167163,-0.1720557 0.09704,-0.057896 0.178579,-0.057896 0.11416,0 0.205489,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.282955 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 V 9.4431652 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.2960007 0,-0.1361768 -0.05137,-0.2046729 -0.05137,-0.068496 -0.116607,-0.068496 -0.07094,0 -0.156562,0.071758 -0.0848,0.071758 -0.153301,0.1932569 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path4979" />
+            </g>
+            <path
+               class="i"
+               d="m 14.028,8.684 h 1 v 2.171 h -1 z"
+               id="path86" />
+            <g
+               id="text88"
+               class="k"
+               style="white-space:pre;fill:#eeeeee" />
+            <g
+               aria-label=""
+               id="text90"
+               class="m"
+               style="white-space:pre;fill:#005f87">
+              <path
+                 d="M 15.03,8.784298 16.05581,9.775045 15.03,10.767423 Z"
+                 style="white-space:pre;fill:#005f87"
+                 id="path4983" />
+            </g>
+            <g
+               aria-label="kubectl"
+               id="text92"
+               class="n"
+               style="white-space:pre;fill:#a8cc8c">
+              <path
+                 d="M 17.201163,10.354 V 9.0378966 h 0.15167 v 0.8268457 l 0.437886,-0.4215771 h 0.202227 L 17.555875,9.8647423 18.004362,10.354 h -0.20875 L 17.352833,9.8647423 V 10.354 Z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path4986" />
+              <path
+                 d="M 18.91112,9.4431652 V 10.354 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.2723537 V 9.4431652 h 0.151669 v 0.5275829 q 0,0.1312839 0.01223,0.1736869 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152486,-0.1908101 V 9.4431652 Z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path4988" />
+              <path
+                 d="m 19.303341,9.647838 q 0.07013,-0.1141602 0.167163,-0.1720557 0.09704,-0.057896 0.178579,-0.057896 0.114161,0 0.205489,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.282955 -0.06034,0.123945 -0.161456,0.196518 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 V 9.0378966 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.2960007 0,-0.1361768 -0.05137,-0.2046729 -0.05137,-0.068496 -0.116607,-0.068496 -0.07094,0 -0.156562,0.071758 -0.0848,0.071758 -0.153301,0.1932569 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path4990" />
+              <path
+                 d="m 20.921969,10.293658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.2438138 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154931,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 20.316105,9.8101085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path4992" />
+              <path
+                 d="m 21.932287,10.327906 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.2462597 0,-0.2071191 0.134545,-0.3441113 0.135362,-0.1369922 0.326172,-0.1369922 0.14107,0 0.298448,0.053003 v 0.1459619 q -0.159009,-0.072573 -0.284585,-0.072573 -0.08317,0 -0.156563,0.041587 -0.07339,0.040771 -0.113345,0.1280225 -0.03996,0.087251 -0.03996,0.1793945 0,0.1231293 0.07665,0.2348433 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path4994" />
+              <path
+                 d="m 22.928741,10.317306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 9.6453917 h -0.2275 V 9.5190001 h 0.227505 V 9.1520568 h 0.15167 v 0.3669433 h 0.405268 v 0.1263916 h -0.405268 v 0.3644973 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path4996" />
+              <path
+                 d="M 23.413107,10.354 V 9.1651036 h -0.272353 v -0.127207 h 0.424023 v 1.1897114 h 0.284585 V 10.354 Z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path4998" />
+            </g>
+            <g
+               aria-label="get"
+               id="text94"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 25.784701,10.149327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.2992623 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 h 0.152486 V 10.08735 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280507,0.07013 -0.165533,0 -0.335142,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182657,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.1802097 V 9.5785265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234028,0.1084522 -0.09296,0.1084521 -0.09296,0.2951855 0,0.1353608 0.05056,0.2046728 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.1932565 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5001" />
+              <path
+                 d="m 26.935273,10.293658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.2438138 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221796,-0.064419 0.162271,0 0.260123,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 26.329408,9.8101085 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09378,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5003" />
+              <path
+                 d="m 27.940697,10.317306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 9.6453917 h -0.2275 V 9.5190001 h 0.227505 V 9.1520568 h 0.15167 v 0.3669433 h 0.405268 v 0.1263916 h -0.405268 v 0.3644973 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5005" />
+            </g>
+            <g
+               aria-label="pod"
+               id="text96"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 29.324646,9.647838 q 0.07013,-0.1141602 0.167163,-0.1720557 0.09704,-0.057896 0.178579,-0.057896 0.11416,0 0.205489,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.282955 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 V 9.4431652 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.2960007 0,-0.1361768 -0.05137,-0.2046729 -0.05137,-0.068496 -0.116607,-0.068496 -0.07094,0 -0.156562,0.071758 -0.0848,0.071758 -0.153301,0.1932569 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5008" />
+              <path
+                 d="m 30.560837,10.379278 q -0.195703,0 -0.313125,-0.136176 -0.117421,-0.136993 -0.117421,-0.3449271 0,-0.2079346 0.117421,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194888,0 0.31231,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079341 -0.117422,0.3449271 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655321 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5010" />
+              <path
+                 d="m 31.795398,10.149327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.2992623 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130468,0.00897 0.01305,0.00163 0.03914,0.00408 V 9.0378966 h 0.152485 V 10.354 h -0.152485 z m 0,-0.1802097 V 9.5785265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234028,0.1084522 -0.09296,0.1084521 -0.09296,0.2951855 0,0.1353608 0.05056,0.2046728 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.1932565 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5012" />
+            </g>
+            <g
+               aria-label=""
+               id="text98"
+               class="o"
+               style="white-space:pre;fill:#262626">
+              <path
+                 d="M 106.23581,10.767423 105.21,9.775045 106.23581,8.784298 Z"
+                 style="white-space:pre;fill:#262626"
+                 id="path5015" />
+            </g>
+            <path
+               class="p"
+               d="m 106.212,8.684 h 13 v 2.171 h -13 z"
+               id="path100" />
+            <g
+               aria-label="stage-admin"
+               id="text102"
+               class="q"
+               style="white-space:pre;fill:#af5fd7">
+              <path
+                 d="m 106.34899,10.30589 v -0.16064 q 0.0913,0.05953 0.19326,0.08399 0.10193,0.02365 0.17287,0.02365 0.11497,0 0.16553,-0.03669 0.0506,-0.03751 0.0506,-0.09296 0,-0.03669 -0.0236,-0.06279 -0.0237,-0.02609 -0.11742,-0.064419 l -0.0522,-0.021201 -0.10519,-0.041587 q -0.16961,-0.06605 -0.21364,-0.1223145 -0.0449,-0.055449 -0.0449,-0.1353613 0,-0.1125293 0.0864,-0.1851025 0.0873,-0.072573 0.28214,-0.072573 0.14596,0 0.27643,0.042402 v 0.1378076 q -0.15004,-0.053818 -0.28214,-0.053818 -0.0962,0 -0.15085,0.034248 -0.0538,0.033433 -0.0538,0.083989 0,0.048926 0.0473,0.078281 0.0465,0.029355 0.15167,0.067681 l 0.10274,0.03751 q 0.14107,0.051372 0.19815,0.1117139 0.0571,0.060342 0.0571,0.1508548 0,0.118237 -0.0913,0.194887 -0.0905,0.07583 -0.29029,0.07583 -0.1745,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path5018" />
+              <path
+                 d="m 108.10135,10.317306 q -0.10682,0.04485 -0.15493,0.053 -0.0481,0.009 -0.093,0.009 -0.0954,0 -0.1745,-0.03669 -0.0791,-0.03669 -0.11987,-0.108452 -0.04,-0.07176 -0.04,-0.221797 V 9.6453917 h -0.2275 V 9.5190001 h 0.2275 V 9.1520568 h 0.15167 v 0.3669433 h 0.40527 v 0.1263916 h -0.40527 v 0.3644973 q 0,0.110083 0.0261,0.155747 0.0261,0.04485 0.0693,0.06605 0.044,0.0212 0.10356,0.0212 0.11008,0 0.23158,-0.06931 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path5020" />
+              <path
+                 d="m 108.93961,10.149327 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.05789 -0.17858,0.05789 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.2992623 0,-0.1581933 0.0603,-0.2821386 0.0603,-0.1247608 0.16145,-0.1965186 0.10112,-0.072573 0.25034,-0.072573 0.0432,0 0.13047,0.00897 0.0131,0.00163 0.0391,0.00408 h 0.15249 v 0.6433735 q 0,0.164717 0.0342,0.267461 h -0.15819 q -0.0179,-0.07502 -0.0285,-0.204673 z m 0,-0.1802097 V 9.5785265 q -0.0807,-0.021201 -0.15004,-0.021201 -0.14025,0 -0.23403,0.1084522 -0.093,0.1084521 -0.093,0.2951855 0,0.1353608 0.0506,0.2046728 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.1932565 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path5022" />
+              <path
+                 d="m 109.95074,10.149327 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.05789 -0.17858,0.05789 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.2992623 0,-0.1581933 0.0603,-0.2821386 0.0603,-0.1247608 0.16146,-0.1965186 0.10111,-0.072573 0.25033,-0.072573 0.0432,0 0.13047,0.00897 0.013,0.00163 0.0391,0.00408 h 0.15249 V 10.08735 q 0,0.229951 -0.007,0.280507 -0.006,0.05137 -0.0196,0.10356 -0.0326,0.121499 -0.14922,0.191626 -0.11579,0.07013 -0.28051,0.07013 -0.16553,0 -0.33514,-0.0848 v -0.153301 q 0.0644,0.04403 0.1582,0.07747 0.0946,0.03425 0.18265,0.03425 0.0693,0 0.13129,-0.02202 0.062,-0.02202 0.10029,-0.0636 0.0383,-0.04159 0.0522,-0.09704 0.0139,-0.05463 0.0139,-0.145962 z m 0,-0.1802097 V 9.5785265 q -0.0807,-0.021201 -0.15004,-0.021201 -0.14025,0 -0.23402,0.1084522 -0.093,0.1084521 -0.093,0.2951855 0,0.1353608 0.0506,0.2046728 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.1932565 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path5024" />
+              <path
+                 d="m 111.10131,10.293658 q -0.18184,0.08644 -0.34411,0.08644 -0.12313,0 -0.22016,-0.06116 -0.097,-0.06116 -0.15575,-0.174502 -0.0579,-0.11416 -0.0579,-0.2438138 0,-0.1247607 0.0554,-0.2397363 0.0555,-0.1149756 0.15494,-0.1785791 0.0995,-0.064419 0.22179,-0.064419 0.16227,0 0.26012,0.115791 0.0987,0.1157911 0.0987,0.3571582 v 0.032617 h -0.62788 q 0,0.09459 0.0391,0.172871 0.04,0.07828 0.10438,0.117422 0.0644,0.03914 0.14677,0.03914 0.14678,0 0.32454,-0.09785 z m -0.60586,-0.4835495 h 0.45419 v -0.022017 q 0,-0.1117139 -0.0546,-0.1777637 -0.0546,-0.06605 -0.14596,-0.06605 -0.0921,0 -0.15983,0.067681 -0.0669,0.066865 -0.0938,0.1981497 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path5026" />
+              <path
+                 d="M 111.40384,9.9046983 V 9.7783067 h 0.63277 v 0.1263916 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path5028" />
+              <path
+                 d="m 112.945,10.149327 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.05789 -0.17858,0.05789 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.2992623 0,-0.1581933 0.0603,-0.2821386 0.0603,-0.1247608 0.16145,-0.1965186 0.10112,-0.072573 0.25034,-0.072573 0.0432,0 0.13047,0.00897 0.013,0.00163 0.0391,0.00408 h 0.15249 v 0.6433735 q 0,0.164717 0.0342,0.267461 h -0.15819 q -0.0179,-0.07502 -0.0285,-0.204673 z m 0,-0.1802097 V 9.5785265 q -0.0807,-0.021201 -0.15004,-0.021201 -0.14025,0 -0.23403,0.1084522 -0.093,0.1084521 -0.093,0.2951855 0,0.1353608 0.0506,0.2046728 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.1932565 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path5030" />
+              <path
+                 d="m 113.95613,10.149327 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.05789 -0.17858,0.05789 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.2992623 0,-0.1581933 0.0603,-0.2821386 0.0603,-0.1247608 0.16146,-0.1965186 0.10111,-0.072573 0.25033,-0.072573 0.0432,0 0.13047,0.00897 0.0131,0.00163 0.0391,0.00408 V 9.0378966 h 0.15249 V 10.354 h -0.15249 z m 0,-0.1802097 V 9.5785265 q -0.0807,-0.021201 -0.15004,-0.021201 -0.14025,0 -0.23402,0.1084522 -0.093,0.1084521 -0.093,0.2951855 0,0.1353608 0.0506,0.2046728 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.1932565 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path5032" />
+              <path
+                 d="M 114.28067,10.354 V 9.4431652 h 0.13292 v 0.2087499 q 0.0628,-0.132915 0.11661,-0.1834716 0.0546,-0.050557 0.11008,-0.050557 0.066,0 0.10601,0.052188 0.0408,0.051372 0.0408,0.1467774 v 0.048926 q 0.0269,-0.083174 0.0644,-0.1345459 0.0383,-0.052188 0.0791,-0.082358 0.0408,-0.030986 0.0938,-0.030986 0.0587,0 0.10029,0.049741 0.0416,0.049741 0.0416,0.1981495 V 10.354 h -0.13291 V 9.7318273 q 0,-0.07665 -0.005,-0.104375 -0.005,-0.02854 -0.0196,-0.043218 -0.0147,-0.014678 -0.0318,-0.014678 -0.0424,0 -0.0913,0.065234 -0.0481,0.064419 -0.0987,0.214458 V 10.354 h -0.12721 V 9.7326427 q 0,-0.1206836 -0.0237,-0.1418848 -0.0237,-0.021201 -0.0424,-0.021201 -0.0416,0 -0.0897,0.072573 -0.0473,0.072573 -0.0905,0.185918 V 10.354 Z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path5034" />
+              <path
+                 d="M 115.60575,10.354 V 9.5695568 h -0.25279 V 9.4431652 h 0.40446 v 0.7844428 h 0.2536 V 10.354 Z m -0.0253,-1.239453 q 0,-0.051372 0.0351,-0.07665 0.0351,-0.025278 0.066,-0.025278 0.0318,0 0.0669,0.025278 0.0351,0.025278 0.0351,0.07665 0,0.050557 -0.0351,0.075835 -0.0351,0.025278 -0.0669,0.025278 -0.031,0 -0.066,-0.025278 -0.0351,-0.025278 -0.0351,-0.075835 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path5036" />
+              <path
+                 d="M 116.35187,10.354 V 9.4431652 h 0.15167 V 9.64213 q 0.0652,-0.1051904 0.15737,-0.1647168 0.0922,-0.059526 0.18429,-0.059526 0.0807,0 0.14678,0.043218 0.0661,0.042402 0.0921,0.1117139 0.0269,0.069311 0.0269,0.2723535 V 10.354 h -0.15167 V 9.8264171 q 0,-0.1312842 -0.0131,-0.1728711 -0.0122,-0.042402 -0.0465,-0.069311 -0.0334,-0.026909 -0.0734,-0.026909 -0.0799,0 -0.17206,0.075835 -0.0913,0.075835 -0.15085,0.1899951 V 10.354 Z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path5038" />
+            </g>
+            <g
+               aria-label="NAME"
+               id="text104"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.25441406,12.525 H 0.10274414 v -1.265547 h 0.1484082 l 0.44767088,0.842339 0.0489258,0.125576 h 0.004077 L 0.747749,12.101792 V 11.259453 H 0.89941892 V 12.525 H 0.747749 l -0.43543944,-0.828477 -0.0611572,-0.132915 0.003262,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5041" />
+              <path
+                 d="M 1.1864502,12.525 H 1.0282568 L 1.4180322,11.259453 H 1.5851953 L 1.977417,12.525 H 1.8037305 L 1.7172949,12.246938 H 1.2720703 Z m 0.1247607,-0.404453 h 0.3693897 l -0.1524854,-0.480289 -0.035879,-0.127207 -0.031802,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5043" />
+              <path
+                 d="m 2.1812744,12.525 h -0.132915 v -1.265547 h 0.1655322 l 0.2919238,0.833369 0.2919238,-0.833369 H 2.9591943 V 12.525 H 2.8075244 v -0.80646 l 0.00408,-0.110899 h -0.00408 L 2.7716455,11.71854 2.5759424,12.272216 H 2.4112256 L 2.2130762,11.71854 2.1812744,11.607641 h -0.00408 l 0.00408,0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5045" />
+              <path
+                 d="M 3.8529054,12.385561 V 12.525 H 3.1695753 V 11.259453 H 3.8398585 V 11.38666 H 3.3342921 v 0.429731 h 0.4550098 v 0.126392 H 3.3342921 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5047" />
+            </g>
+            <g
+               aria-label="READY"
+               id="text106"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 53.392215,11.987631 V 12.525 h -0.164717 v -1.265547 h 0.338403 q 0.165533,0 0.243814,0.03425 0.07828,0.03343 0.120683,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 L 54.087776,12.525 h -0.195703 l -0.335141,-0.537369 z m 0,-0.127207 h 0.230766 q 0.07747,-0.0424 0.114976,-0.08643 0.03833,-0.04403 0.05789,-0.09378 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06524,-0.141069 -0.06442,-0.053 -0.234843,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5050" />
+              <path
+                 d="M 54.956209,12.385561 V 12.525 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505566 v 0.429731 h 0.455009 v 0.126392 h -0.455009 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5052" />
+              <path
+                 d="m 55.293797,12.525 h -0.158194 l 0.389776,-1.265547 h 0.167163 L 56.084764,12.525 h -0.173687 l -0.08644,-0.278062 h -0.445225 z m 0.124761,-0.404453 h 0.369389 l -0.152485,-0.480289 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5054" />
+              <path
+                 d="m 56.236434,12.525 v -1.265547 h 0.300078 q 0.207119,0 0.307417,0.07257 0.101113,0.07176 0.15167,0.21772 0.05056,0.145962 0.05056,0.345742 0,0.18918 -0.05382,0.332695 -0.053,0.1427 -0.150854,0.220166 -0.09785,0.07665 -0.304971,0.07665 z m 0.164716,-0.139439 h 0.110083 q 0.167164,0 0.238106,-0.05953 0.07176,-0.05953 0.101929,-0.164717 0.03099,-0.106006 0.03099,-0.291924 0,-0.181841 -0.03588,-0.279692 -0.03588,-0.09785 -0.102744,-0.150039 -0.06686,-0.053 -0.219351,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5056" />
+              <path
+                 d="m 57.53052,12.525 v -0.585479 l -0.376728,-0.680068 h 0.186733 l 0.281324,0.502304 0.280507,-0.502304 h 0.168794 l -0.375913,0.680068 V 12.525 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5058" />
+            </g>
+            <g
+               aria-label="STATUS"
+               id="text108"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.250024,12.49809 v -0.154931 q 0.195703,0.09296 0.355527,0.09296 0.06687,0 0.128023,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.0579 -0.16227,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135362,0 0.261753,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.10519,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319649 0,0.146777 -0.106822,0.251967 -0.106821,0.105191 -0.34248,0.105191 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5061" />
+              <path
+                 d="M 62.541665,12.525 V 11.398891 H 62.16249 v -0.139438 h 0.923882 v 0.139438 h -0.37999 V 12.525 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5063" />
+              <path
+                 d="m 63.3098,12.525 h -0.158194 l 0.389776,-1.265547 h 0.167163 L 64.100766,12.525 H 63.92708 l -0.08644,-0.278062 h -0.44522 z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480289 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5065" />
+              <path
+                 d="m 64.54436,12.525 v -1.126109 h -0.379175 v -0.139438 h 0.923882 v 0.139438 h -0.37999 V 12.525 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5067" />
+              <path
+                 d="m 65.230136,11.259453 h 0.164717 v 0.830923 q 0,0.163901 0.02691,0.224243 0.02773,0.05953 0.08399,0.09133 0.05708,0.03099 0.126391,0.03099 0.07339,0 0.130469,-0.03343 0.0579,-0.03425 0.0848,-0.106006 0.02772,-0.07257 0.02772,-0.271538 v -0.766504 h 0.15167 v 0.82603 q 0,0.176948 -0.053,0.277246 -0.05219,0.09948 -0.136992,0.150039 -0.08481,0.05056 -0.213642,0.05056 -0.119053,0 -0.209566,-0.04403 -0.09051,-0.04403 -0.136992,-0.1321 -0.04648,-0.08807 -0.04648,-0.318018 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5069" />
+              <path
+                 d="m 66.256762,12.49809 v -0.154931 q 0.195703,0.09296 0.355528,0.09296 0.06686,0 0.128022,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.0579 -0.162271,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135362,0 0.261753,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.10519,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319649 0,0.146777 -0.106822,0.251967 -0.106821,0.105191 -0.34248,0.105191 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5071" />
+            </g>
+            <g
+               aria-label="RESTARTS"
+               id="text110"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 73.43222,11.987631 V 12.525 h -0.164717 v -1.265547 h 0.338403 q 0.165532,0 0.243814,0.03425 0.07828,0.03343 0.120683,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 L 74.127781,12.525 h -0.195703 l -0.335142,-0.537369 z m 0,-0.127207 h 0.230766 q 0.07747,-0.0424 0.114976,-0.08643 0.03833,-0.04403 0.0579,-0.09378 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06524,-0.141069 -0.06442,-0.053 -0.234844,-0.053 H 73.43222 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5074" />
+              <path
+                 d="M 74.996214,12.385561 V 12.525 h -0.68333 v -1.265547 h 0.670283 V 11.38666 H 74.4776 v 0.429731 h 0.45501 v 0.126392 H 74.4776 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5076" />
+              <path
+                 d="m 75.276722,12.49809 v -0.154931 q 0.195703,0.09296 0.355527,0.09296 0.06686,0 0.128022,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.0579 -0.162271,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309864,-0.09785 0.135361,0 0.261753,0.03914 v 0.141069 q -0.139439,-0.05382 -0.271539,-0.05382 -0.10519,0 -0.170424,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319649 0,0.146777 -0.106821,0.251967 -0.106822,0.105191 -0.342481,0.105191 -0.07502,0 -0.143515,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5078" />
+              <path
+                 d="m 76.568362,12.525 v -1.126109 h -0.379175 v -0.139438 h 0.923882 v 0.139438 h -0.37999 V 12.525 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5080" />
+              <path
+                 d="m 77.336497,12.525 h -0.158193 l 0.389775,-1.265547 h 0.167163 L 78.127464,12.525 h -0.173687 l -0.08644,-0.278062 h -0.445225 z m 0.124761,-0.404453 h 0.369389 l -0.152485,-0.480289 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5082" />
+              <path
+                 d="M 78.438958,11.987631 V 12.525 h -0.164717 v -1.265547 h 0.338403 q 0.165532,0 0.243814,0.03425 0.07828,0.03343 0.120683,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 L 79.134519,12.525 h -0.195703 l -0.335141,-0.537369 z m 0,-0.127207 h 0.230766 q 0.07747,-0.0424 0.114976,-0.08643 0.03833,-0.04403 0.0579,-0.09378 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06524,-0.141069 -0.06442,-0.053 -0.234843,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5084" />
+              <path
+                 d="m 79.572405,12.525 v -1.126109 h -0.379174 v -0.139438 h 0.923881 v 0.139438 h -0.37999 V 12.525 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5086" />
+              <path
+                 d="m 80.28346,12.49809 v -0.154931 q 0.195703,0.09296 0.355527,0.09296 0.06686,0 0.128023,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.0579 -0.16227,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135361,0 0.261753,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.105191,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06687,0.03914 q 0.207934,0.127207 0.207934,0.319649 0,0.146777 -0.106821,0.251967 -0.106821,0.105191 -0.34248,0.105191 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5088" />
+            </g>
+            <g
+               aria-label="AGE"
+               id="text112"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.353102,12.525 h -0.158194 l 0.389776,-1.265547 h 0.167163 L 85.144069,12.525 h -0.173687 l -0.08643,-0.278062 h -0.445225 z m 0.124761,-0.404453 h 0.369389 l -0.152485,-0.480289 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5091" />
+              <path
+                 d="m 86.056534,12.524184 q -0.13373,0.03914 -0.245444,0.03914 -0.158193,0 -0.282139,-0.07828 -0.123129,-0.07828 -0.193256,-0.23566 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260938,-0.07583 -0.09785,0 -0.179394,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09378,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 12.025141 H 85.765426 V 11.89875 h 0.291108 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5093" />
+              <path
+                 d="M 87.019557,12.385561 V 12.525 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505566 v 0.429731 h 0.455009 v 0.126392 h -0.455009 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5095" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-admin-64749bbcdc-7swsl"
+               id="text114"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,14.696 V 13.987392 H 0.13617675 V 13.861 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08643 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.0587 h 0.36123534 v 0.126392 H 0.49007323 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5098" />
+              <path
+                 d="m 1.5028369,14.721278 q -0.1957031,0 -0.313125,-0.136176 Q 1.07229,14.448109 1.07229,14.240175 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207934 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5100" />
+              <path
+                 d="m 2.5041846,14.721278 q -0.1957032,0 -0.313125,-0.136176 -0.1174219,-0.136993 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207934 -0.1174219,0.344927 -0.1174218,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5102" />
+              <path
+                 d="m 3.1891456,14.246698 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5104" />
+              <path
+                 d="m 4.1725537,14.696 v -1.316103 h 0.1516699 v 0.826845 L 4.7621094,13.785165 H 4.9643359 L 4.5272656,14.206742 4.9757519,14.696 H 4.767002 L 4.3242236,14.206742 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5106" />
+              <path
+                 d="M 5.8825096,13.785165 V 14.696 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5108" />
+              <path
+                 d="m 6.2747317,13.989838 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.05789 0.1785791,-0.05789 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5110" />
+              <path
+                 d="m 7.8933595,14.635658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,14.152109 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5112" />
+              <path
+                 d="m 8.2146387,14.696 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167979 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5114" />
+              <path
+                 d="m 9.1385204,14.696 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111713 0.026909,0.06931 0.026909,0.272354 V 14.696 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5116" />
+              <path
+                 d="m 10.897402,14.635658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5118" />
+              <path
+                 d="m 11.902827,14.659306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 13.861 h 0.227505 v -0.366943 h 0.15167 V 13.861 h 0.405269 v 0.126392 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5120" />
+              <path
+                 d="m 12.900098,14.635658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5122" />
+              <path
+                 d="m 13.154512,14.64789 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 V 13.9401 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5124" />
+              <path
+                 d="m 14.20397,14.246698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5126" />
+              <path
+                 d="m 15.745132,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5128" />
+              <path
+                 d="m 16.756265,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 V 13.379897 H 16.90875 V 14.696 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5130" />
+              <path
+                 d="m 17.080807,14.696 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 14.696 H 17.83345 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 14.696 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5132" />
+              <path
+                 d="m 18.405879,14.696 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 V 14.696 Z M 18.3806,13.456547 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5134" />
+              <path
+                 d="m 19.151998,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 14.696 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5136" />
+              <path
+                 d="m 20.212055,14.246698 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5138" />
+              <path
+                 d="m 21.266407,14.102367 q 0.05871,-0.08725 0.145146,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186734,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114975,0.132915 -0.303339,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139439,-0.499858 0.139438,-0.184288 0.377543,-0.184288 0.128023,0 0.248707,0.03751 v 0.153301 q -0.135362,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505567 q 0.06116,0 0.123129,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08643 -0.07339,0.08562 -0.07339,0.20875 0,0.123946 0.07176,0.203042 0.07257,0.07828 0.165533,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5140" />
+              <path
+                 d="m 22.606157,14.696 v -0.353896 h -0.537369 v -0.127207 l 0.537369,-0.784444 h 0.152485 v 0.784444 h 0.234028 v 0.127207 H 22.758642 V 14.696 Z m 0,-0.481103 v -0.554493 l -0.375913,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5142" />
+              <path
+                 d="m 23.291118,14.696 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 H 23.164732 V 13.43045 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120683,0.183471 -0.03914,0.0685 -0.05953,0.142701 -0.01957,0.0742 -0.01957,0.194887 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5144" />
+              <path
+                 d="m 24.608854,14.696 v -0.353896 h -0.537369 v -0.127207 l 0.537369,-0.784444 h 0.152485 v 0.784444 h 0.234028 v 0.127207 H 24.761339 V 14.696 Z m 0,-0.481103 v -0.554493 l -0.375913,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5146" />
+              <path
+                 d="m 25.796934,14.024086 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187549,-0.0473 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08643 -0.04648,-0.200595 0,-0.179395 0.114975,-0.31231 0.115792,-0.133731 0.304156,-0.133731 0.221797,0 0.331064,0.185918 0.110083,0.185103 0.110083,0.471319 0,0.316387 -0.139438,0.500674 -0.139439,0.183471 -0.377544,0.183471 -0.128023,0 -0.248706,-0.03833 v -0.152485 q 0.135361,0.0636 0.255229,0.0636 0.16961,0 0.262569,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08643 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5148" />
+              <path
+                 d="m 26.301685,13.989838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.17858,-0.05789 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5150" />
+              <path
+                 d="m 27.303032,13.989838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5152" />
+              <path
+                 d="m 28.93063,14.669906 q -0.152485,0.05137 -0.290292,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284584,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5154" />
+              <path
+                 d="m 29.773784,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 V 14.696 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5156" />
+              <path
+                 d="m 30.933326,14.669906 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5158" />
+              <path
+                 d="m 31.226879,14.246698 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5160" />
+              <path
+                 d="m 32.303247,14.696 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.65642 V 13.43045 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145147,0.219351 -0.02935,0.03996 -0.05789,0.07991 l -0.08481,0.119053 q -0.08154,0.114975 -0.120683,0.183471 -0.03914,0.0685 -0.05953,0.142701 -0.01957,0.0742 -0.01957,0.194887 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5162" />
+              <path
+                 d="m 33.181464,14.64789 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 V 13.9401 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.151669,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5164" />
+              <path
+                 d="M 34.210539,14.696 34.062131,13.785165 H 34.2032 l 0.08644,0.554492 0.02283,0.128838 0.02202,-0.128838 0.145147,-0.554492 h 0.136176 l 0.163902,0.554492 0.02854,0.128838 0.01875,-0.128838 0.08725,-0.554492 h 0.116606 L 34.883268,14.696 h -0.141884 l -0.174502,-0.586294 -0.02772,-0.128838 h -0.0041 l -0.02528,0.128023 -0.15167,0.587109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5166" />
+              <path
+                 d="m 35.184161,14.64789 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 V 13.9401 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.151669,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5168" />
+              <path
+                 d="m 36.419536,14.696 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5170" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text116"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,14.569609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 V 14.696 H 53.2593 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5173" />
+              <path
+                 d="m 54.283479,14.734325 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5175" />
+              <path
+                 d="m 55.571858,14.569609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 V 14.696 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5177" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text118"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 61.408217,14.158632 V 14.696 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 L 62.103779,14.696 h -0.195703 l -0.335142,-0.537368 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.14107 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5180" />
+              <path
+                 d="M 62.999121,13.785165 V 14.696 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5182" />
+              <path
+                 d="m 63.251089,14.696 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 14.696 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5184" />
+              <path
+                 d="m 64.252436,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 14.696 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5186" />
+              <path
+                 d="M 65.509013,14.696 V 13.911557 H 65.25623 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 14.696 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5188" />
+              <path
+                 d="m 66.255131,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 14.696 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5190" />
+              <path
+                 d="m 67.86479,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5192" />
+            </g>
+            <g
+               aria-label="0"
+               id="text120"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,13.392943 q 0.216088,0 0.329433,0.181841 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5195" />
+            </g>
+            <g
+               aria-label="50s"
+               id="text122"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.3213,14.037948 v -0.607495 h 0.708608 v 0.145962 H 84.47297 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 V 14.50926 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5198" />
+              <path
+                 d="m 85.670021,13.392943 q 0.216089,0 0.329433,0.181841 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.181841 0.329434,-0.181841 z m -0.247075,0.941006 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5200" />
+              <path
+                 d="m 86.307687,14.64789 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 V 13.9401 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5202" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-apiserver-77fd596477-cvfdm"
+               id="text124"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,16.867001 V 16.158392 H 0.13617675 v -0.126391 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266645 0.0407715,-0.08644 0.12557617,-0.141885 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205489 v 0.05871 h 0.36123534 v 0.126391 H 0.49007323 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5205" />
+              <path
+                 d="m 1.5028369,16.892279 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,16.61911 1.07229,16.411175 q 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5207" />
+              <path
+                 d="m 2.5041846,16.892279 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5209" />
+              <path
+                 d="m 3.1891456,16.417699 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5211" />
+              <path
+                 d="m 4.1725537,16.867001 v -1.316104 h 0.1516699 v 0.826846 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,16.377743 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5213" />
+              <path
+                 d="m 5.8825096,15.956166 v 0.910835 H 5.7308397 V 16.66722 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07584 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5215" />
+              <path
+                 d="m 6.2747317,16.160838 q 0.070127,-0.11416 0.1671631,-0.172055 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316104 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5217" />
+              <path
+                 d="m 7.8933595,16.806659 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5219" />
+              <path
+                 d="m 8.2146387,16.867001 v -0.910835 h 0.1516699 v 0.198964 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 V 16.28479 H 8.7520069 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5221" />
+              <path
+                 d="m 9.1385204,16.867001 v -0.910835 h 0.1516699 v 0.198964 q 0.065234,-0.10519 0.157378,-0.164716 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 V 16.867 H 9.7460155 v -0.527583 q 0,-0.131285 -0.013047,-0.172872 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07584 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5223" />
+              <path
+                 d="m 10.897402,16.806659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5225" />
+              <path
+                 d="m 11.902827,16.830306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 16.158423 H 11.0931 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5227" />
+              <path
+                 d="m 12.900098,16.806659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5229" />
+              <path
+                 d="m 13.154512,16.81889 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 V 16.1111 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5231" />
+              <path
+                 d="m 14.20397,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5233" />
+              <path
+                 d="m 15.745132,16.662328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5235" />
+              <path
+                 d="m 16.288208,16.160838 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5237" />
+              <path
+                 d="m 17.404532,16.867001 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239454 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5239" />
+              <path
+                 d="m 18.16125,16.81889 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 V 16.1111 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5241" />
+              <path
+                 d="m 19.909532,16.806659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5243" />
+              <path
+                 d="m 20.23081,16.867001 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5245" />
+              <path
+                 d="M 21.450694,16.867001 21.05521,15.956166 h 0.166348 l 0.31231,0.720839 0.318833,-0.720839 h 0.15167 l -0.398746,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5247" />
+              <path
+                 d="m 22.913574,16.806659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5249" />
+              <path
+                 d="m 23.234854,16.867001 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159008,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5251" />
+              <path
+                 d="m 24.217447,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5253" />
+              <path
+                 d="m 25.293813,16.867001 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110898 0.121499,-0.17124 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.656421 v -0.152485 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.21935 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5255" />
+              <path
+                 d="m 26.295162,16.867001 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110898 0.121499,-0.17124 l 0.132099,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 H 26.16877 v -0.152485 h 0.803199 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.21935 -0.02935,0.03996 -0.05789,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5257" />
+              <path
+                 d="m 27.37479,16.867001 v -0.708609 h -0.202227 v -0.126391 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 v 0.05871 h 0.361235 v 0.126391 H 27.52646 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5259" />
+              <path
+                 d="m 28.772437,16.662328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5261" />
+              <path
+                 d="m 29.192382,16.208949 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147592,0.11416 0.147592,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167978,0.152485 -0.108453,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 V 16.68026 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.105191,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5263" />
+              <path
+                 d="m 30.803672,16.195087 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179395 0.114975,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331065,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139439,0.500674 -0.139438,0.183472 -0.377544,0.183472 -0.128022,0 -0.248706,-0.03833 v -0.152486 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z M 30.50604,15.690336 q -0.06116,0 -0.123129,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123946 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5265" />
+              <path
+                 d="m 31.279882,16.273368 q 0.05871,-0.08725 0.145147,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316386 0.139439,-0.499858 0.139438,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114975,0 -0.189179,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5267" />
+              <path
+                 d="m 32.619634,16.867001 v -0.353897 h -0.537368 v -0.127207 l 0.537368,-0.784443 h 0.152485 v 0.784443 h 0.234029 v 0.127207 h -0.234029 v 0.353897 z m 0,-0.481104 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5269" />
+              <path
+                 d="m 33.304594,16.867001 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110898 0.121499,-0.17124 l 0.132099,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 H 33.178202 V 15.601454 H 33.9814 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.21935 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5271" />
+              <path
+                 d="m 34.305944,16.867001 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110898 0.121499,-0.17124 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.65642 v -0.152485 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.21935 -0.02936,0.03996 -0.0579,0.07991 l -0.08481,0.119052 q -0.08154,0.114976 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5273" />
+              <path
+                 d="m 35.232271,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5275" />
+              <path
+                 d="m 36.941411,16.840907 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106005,-0.0636 -0.165532,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242183,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5277" />
+              <path
+                 d="m 37.472254,16.867001 -0.395483,-0.910835 h 0.166348 l 0.312309,0.720839 0.318833,-0.720839 h 0.15167 l -0.398745,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5279" />
+              <path
+                 d="m 38.389616,16.867001 v -0.708609 h -0.202227 v -0.126391 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118238,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 v 0.05871 h 0.361235 v 0.126391 h -0.361235 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5281" />
+              <path
+                 d="m 39.787261,16.662328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5283" />
+              <path
+                 d="m 40.111801,16.867001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09378,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 H 40.490977 V 16.24563 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525953 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5285" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text126"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,16.740609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 H 53.2593 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5288" />
+              <path
+                 d="m 54.283479,16.905326 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5290" />
+              <path
+                 d="m 55.571858,16.740609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304156 v 0.126392 h -0.765689 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5292" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text128"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.408217,16.329632 v 0.537369 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101928 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591187 h -0.195703 l -0.335142,-0.537369 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09378 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.141069 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5295" />
+              <path
+                 d="m 62.999121,15.956166 v 0.910835 h -0.15167 V 16.66722 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07584 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5297" />
+              <path
+                 d="m 63.251089,16.867001 v -0.910835 h 0.151669 v 0.198964 q 0.06524,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 16.867 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172872 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5299" />
+              <path
+                 d="m 64.252436,16.867001 v -0.910835 h 0.15167 v 0.198964 q 0.06524,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 16.867 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172872 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5301" />
+              <path
+                 d="M 65.509013,16.867001 V 16.082557 H 65.25623 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239454 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5303" />
+              <path
+                 d="m 66.255131,16.867001 v -0.910835 h 0.15167 v 0.198964 q 0.06524,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 16.867 h -0.151669 v -0.527583 q 0,-0.131285 -0.01305,-0.172872 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5305" />
+              <path
+                 d="m 67.86479,16.662328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 V 17.00807 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5307" />
+            </g>
+            <g
+               aria-label="1"
+               id="text130"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.609168,16.740609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 h -0.765688 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5310" />
+            </g>
+            <g
+               aria-label="50s"
+               id="text132"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.3213,16.208949 v -0.607495 h 0.708608 v 0.145962 H 84.47297 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 V 16.68026 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5313" />
+              <path
+                 d="m 85.670021,15.563944 q 0.216089,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113344,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247075,0.941006 0.437885,-0.685777 q -0.04159,-0.07583 -0.09051,-0.101928 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.151669 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101928,0.02935 0.154932,0 0.220166,-0.172871 0.06524,-0.173686 0.06524,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5315" />
+              <path
+                 d="m 86.307687,16.81889 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 V 16.1111 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5317" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-apiserver-77fd596477-jm4n8"
+               id="text134"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,19.038 V 18.329392 H 0.13617675 V 18.203 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08643 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.0587 h 0.36123534 v 0.126392 H 0.49007323 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5320" />
+              <path
+                 d="m 1.5028369,19.063278 q -0.1957031,0 -0.313125,-0.136176 Q 1.07229,18.790109 1.07229,18.582175 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207934 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5322" />
+              <path
+                 d="m 2.5041846,19.063278 q -0.1957032,0 -0.313125,-0.136176 -0.1174219,-0.136993 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207934 -0.1174219,0.344927 -0.1174218,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5324" />
+              <path
+                 d="m 3.1891456,18.588698 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5326" />
+              <path
+                 d="m 4.1725537,19.038 v -1.316103 h 0.1516699 v 0.826845 L 4.7621094,18.127165 H 4.9643359 L 4.5272656,18.548742 4.9757519,19.038 H 4.767002 L 4.3242236,18.548742 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5328" />
+              <path
+                 d="M 5.8825096,18.127165 V 19.038 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07584 0.1524853,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5330" />
+              <path
+                 d="m 6.2747317,18.331838 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.05789 0.1785791,-0.05789 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5332" />
+              <path
+                 d="m 7.8933595,18.977658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,18.494109 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5334" />
+              <path
+                 d="m 8.2146387,19.038 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167979 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5336" />
+              <path
+                 d="m 9.1385204,19.038 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111713 0.026909,0.06931 0.026909,0.272354 V 19.038 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5338" />
+              <path
+                 d="m 10.897402,18.977658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5340" />
+              <path
+                 d="m 11.902827,19.001306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 18.203 h 0.227505 v -0.366943 h 0.15167 V 18.203 h 0.405269 v 0.126392 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5342" />
+              <path
+                 d="m 12.900098,18.977658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5344" />
+              <path
+                 d="m 13.154512,18.98989 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 V 18.2821 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5346" />
+              <path
+                 d="m 14.20397,18.588698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5348" />
+              <path
+                 d="m 15.745132,18.833327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5350" />
+              <path
+                 d="m 16.288208,18.331838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5352" />
+              <path
+                 d="m 17.404532,19.038 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 19.038 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5354" />
+              <path
+                 d="m 18.16125,18.98989 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 V 18.2821 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5356" />
+              <path
+                 d="m 19.909532,18.977658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5358" />
+              <path
+                 d="m 20.23081,19.038 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5360" />
+              <path
+                 d="M 21.450694,19.038 21.05521,18.127165 h 0.166348 l 0.31231,0.72084 0.318833,-0.72084 h 0.15167 L 21.605625,19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5362" />
+              <path
+                 d="m 22.913574,18.977658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5364" />
+              <path
+                 d="m 23.234854,19.038 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5366" />
+              <path
+                 d="m 24.217447,18.588698 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5368" />
+              <path
+                 d="m 25.293813,19.038 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 H 25.167417 V 17.77245 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5370" />
+              <path
+                 d="m 26.295162,19.038 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.132099,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 H 26.16877 V 17.77245 h 0.803199 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145147,0.219351 -0.02935,0.03996 -0.05789,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5372" />
+              <path
+                 d="M 27.37479,19.038 V 18.329392 H 27.172563 V 18.203 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.0587 h 0.361235 v 0.126392 H 27.52646 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5374" />
+              <path
+                 d="m 28.772437,18.833327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 V 19.038 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5376" />
+              <path
+                 d="m 29.192382,18.379948 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.114161 0.147592,0.11416 0.147592,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167978,0.152486 -0.108453,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 V 18.85126 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.105191,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5378" />
+              <path
+                 d="m 30.803672,18.366086 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.0473 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08643 -0.04648,-0.200595 0,-0.179395 0.114975,-0.31231 0.115791,-0.133731 0.304155,-0.133731 0.221797,0 0.331065,0.185918 0.110083,0.185103 0.110083,0.471319 0,0.316387 -0.139439,0.500674 -0.139438,0.183471 -0.377544,0.183471 -0.128022,0 -0.248706,-0.03833 v -0.152485 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z M 30.50604,17.861335 q -0.06116,0 -0.123129,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08643 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5380" />
+              <path
+                 d="m 31.279882,18.444367 q 0.05871,-0.08725 0.145147,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139439,-0.499858 0.139438,-0.184288 0.377544,-0.184288 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.0367 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114975,0 -0.189179,0.08643 -0.07339,0.08562 -0.07339,0.20875 0,0.123946 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5382" />
+              <path
+                 d="m 32.619634,19.038 v -0.353896 h -0.537368 v -0.127207 l 0.537368,-0.784444 h 0.152485 v 0.784444 h 0.234029 v 0.127207 H 32.772119 V 19.038 Z m 0,-0.481103 v -0.554493 l -0.375913,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5384" />
+              <path
+                 d="m 33.304594,19.038 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110899 0.121499,-0.171241 l 0.132099,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 H 33.178202 V 17.772453 H 33.9814 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145147,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5386" />
+              <path
+                 d="m 34.305944,19.038 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.65642 V 17.77245 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145147,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.08481,0.119053 q -0.08154,0.114975 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5388" />
+              <path
+                 d="m 35.232271,18.588698 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5390" />
+              <path
+                 d="m 36.188769,19.395158 v -0.141884 q 0.127207,0.03751 0.214458,0.03751 0.07583,0 0.128838,-0.02691 0.053,-0.02609 0.08236,-0.08888 0.03017,-0.06279 0.03017,-0.218535 v -0.7029 h -0.386513 v -0.126392 h 0.538183 v 0.800752 q 0,0.231582 -0.05463,0.321279 -0.05463,0.09051 -0.1321,0.129654 -0.07747,0.03914 -0.212012,0.03914 -0.09704,0 -0.20875,-0.02283 z m 0.430547,-1.596611 q 0,-0.05137 0.03425,-0.07665 0.03506,-0.02528 0.06686,-0.02528 0.0318,0 0.06605,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03425,0.02528 -0.06605,0.02528 -0.0318,0 -0.06686,-0.02528 -0.03425,-0.02528 -0.03425,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5392" />
+              <path
+                 d="m 37.107757,19.038 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 19.038 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 19.038 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5394" />
+              <path
+                 d="m 38.627721,19.038 v -0.353896 h -0.537368 v -0.127207 l 0.537368,-0.784444 h 0.152485 v 0.784444 h 0.234029 v 0.127207 H 38.780206 V 19.038 Z m 0,-0.481103 v -0.554493 l -0.375913,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5396" />
+              <path
+                 d="m 39.17895,19.038 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 19.038 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5398" />
+              <path
+                 d="m 40.428188,18.355485 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01876,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161456,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393038 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138624,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5400" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text136"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,18.911609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 V 19.038 H 53.2593 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5403" />
+              <path
+                 d="m 54.283479,19.076325 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5405" />
+              <path
+                 d="m 55.571858,18.911609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 V 19.038 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5407" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text138"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 61.408217,18.500632 V 19.038 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.05789 -0.144331,0.110083 L 62.103779,19.038 h -0.195703 l -0.335142,-0.537368 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.14107 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5410" />
+              <path
+                 d="M 62.999121,18.127165 V 19.038 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07584 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5412" />
+              <path
+                 d="m 63.251089,19.038 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 19.038 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5414" />
+              <path
+                 d="m 64.252436,19.038 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 19.038 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5416" />
+              <path
+                 d="M 65.509013,19.038 V 18.253557 H 65.25623 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 19.038 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5418" />
+              <path
+                 d="m 66.255131,19.038 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 19.038 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5420" />
+              <path
+                 d="m 67.86479,18.833327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5422" />
+            </g>
+            <g
+               aria-label="1"
+               id="text140"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.609168,18.911609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 V 19.038 h -0.765688 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5425" />
+            </g>
+            <g
+               aria-label="50s"
+               id="text142"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.3213,18.379948 v -0.607495 h 0.708608 v 0.145962 H 84.47297 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 V 18.85126 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5428" />
+              <path
+                 d="m 85.670021,17.734943 q 0.216089,0 0.329433,0.181841 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.181841 0.329434,-0.181841 z m -0.247075,0.941006 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5430" />
+              <path
+                 d="m 86.307687,18.98989 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 V 18.2821 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5432" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-controller-manager-549874c588-clljz"
+               id="text144"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,21.209 V 20.500391 H 0.13617675 V 20.374 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266645 0.0407715,-0.08644 0.12557617,-0.141885 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205489 v 0.0587 h 0.36123534 v 0.126391 H 0.49007323 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5435" />
+              <path
+                 d="m 1.5028369,21.234278 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,20.961109 1.07229,20.753174 q 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5437" />
+              <path
+                 d="m 2.5041846,21.234278 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5439" />
+              <path
+                 d="m 3.1891456,20.759698 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5441" />
+              <path
+                 d="m 4.1725537,21.209 v -1.316104 h 0.1516699 v 0.826846 L 4.7621094,20.298165 H 4.9643359 L 4.5272656,20.719742 4.9757519,21.209 H 4.767002 L 4.3242236,20.719742 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5443" />
+              <path
+                 d="M 5.8825096,20.298165 V 21.209 H 5.7308397 v -0.199781 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5445" />
+              <path
+                 d="m 6.2747317,20.502838 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316104 h 0.1516699 z m 0,0.180209 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5447" />
+              <path
+                 d="m 7.8933595,21.148658 q -0.1818408,0.08643 -0.3441113,0.08643 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5449" />
+              <path
+                 d="m 8.2146387,21.209 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5451" />
+              <path
+                 d="m 9.1385204,21.209 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 V 21.209 H 9.7460155 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5453" />
+              <path
+                 d="m 10.897402,21.148658 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5455" />
+              <path
+                 d="m 11.902827,21.172305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366975 h -0.2275 V 20.374 h 0.227505 v -0.366944 h 0.15167 V 20.374 h 0.405269 v 0.126391 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5457" />
+              <path
+                 d="m 12.900098,21.148658 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5459" />
+              <path
+                 d="M 13.154512,21.160889 V 21.00025 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5461" />
+              <path
+                 d="m 14.20397,20.759698 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5463" />
+              <path
+                 d="m 15.913111,21.182906 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242182,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5465" />
+              <path
+                 d="m 16.523052,21.234278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117421,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5467" />
+              <path
+                 d="m 17.149303,21.209 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 21.209 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5469" />
+              <path
+                 d="m 18.912261,21.172305 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366975 h -0.2275 V 20.374 h 0.227505 v -0.366944 h 0.15167 V 20.374 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5471" />
+              <path
+                 d="m 19.229464,21.209 v -0.910835 h 0.151669 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5473" />
+              <path
+                 d="m 20.528442,21.234278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117421,0.136177 0.117421,0.344111 0,0.207935 -0.117421,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5475" />
+              <path
+                 d="m 21.399322,21.209 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5477" />
+              <path
+                 d="m 22.400668,21.209 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5479" />
+              <path
+                 d="m 23.914922,21.148658 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5481" />
+              <path
+                 d="m 24.236202,21.209 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 H 24.77357 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5483" />
+              <path
+                 d="m 25.218794,20.759698 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5485" />
+              <path
+                 d="m 26.092935,21.209 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 21.209 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 V 21.209 H 26.47211 v -0.621358 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185917 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5487" />
+              <path
+                 d="m 27.761303,21.004327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5489" />
+              <path
+                 d="m 28.164127,21.209 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157377,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 21.209 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5491" />
+              <path
+                 d="m 29.763999,21.004327 q -0.06931,0.11416 -0.167164,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5493" />
+              <path
+                 d="m 30.775132,21.004327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191625 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131285,-0.02202 0.06197,-0.02202 0.100297,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5495" />
+              <path
+                 d="m 31.925702,21.148658 q -0.18184,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5497" />
+              <path
+                 d="m 32.246983,21.209 v -0.910835 h 0.151669 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5499" />
+              <path
+                 d="m 33.229574,20.759698 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5501" />
+              <path
+                 d="m 34.199123,20.550948 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5503" />
+              <path
+                 d="m 35.623678,21.209 v -0.353897 h -0.537369 v -0.127207 l 0.537369,-0.784443 h 0.152485 v 0.784443 h 0.234028 v 0.127207 H 35.776163 V 21.209 Z m 0,-0.481104 v -0.554492 l -0.375914,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5505" />
+              <path
+                 d="m 36.811757,20.537086 q -0.05871,0.08725 -0.145961,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114975,-0.31231 0.115791,-0.13373 0.304156,-0.13373 0.221797,0 0.331064,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183472 -0.377544,0.183472 -0.128023,0 -0.248706,-0.03833 V 21.05651 q 0.135361,0.0636 0.255229,0.0636 0.16961,0 0.262569,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297631,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164716,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5507" />
+              <path
+                 d="m 37.424144,20.526485 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144332 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05627,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.19978,0 -0.299263,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02935,-0.05871 0.02935,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158194 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5509" />
+              <path
+                 d="m 38.311334,21.209 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110898 0.121499,-0.17124 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 H 38.184938 V 19.94345 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5511" />
+              <path
+                 d="M 39.629068,21.209 V 20.855103 H 39.0917 v -0.127207 l 0.537368,-0.784443 h 0.152485 v 0.784443 h 0.234028 v 0.127207 H 39.781553 V 21.209 Z m 0,-0.481104 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5513" />
+              <path
+                 d="m 40.946801,21.182906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242183,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5515" />
+              <path
+                 d="m 41.208557,20.550948 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167978,0.152485 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5517" />
+              <path
+                 d="m 42.430885,20.526485 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144332 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158194 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5519" />
+              <path
+                 d="m 43.432231,20.526485 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144332 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298448,0.100298 -0.19978,0 -0.299262,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158194 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.0848 -0.118238,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5521" />
+              <path
+                 d="m 44.244398,20.759698 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5523" />
+              <path
+                 d="m 45.953542,21.182906 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242182,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5525" />
+              <path
+                 d="M 46.433013,21.209 V 20.020103 H 46.16066 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5527" />
+              <path
+                 d="m 47.43436,21.209 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5529" />
+              <path
+                 d="m 48.204944,21.566158 v -0.141885 q 0.127207,0.03751 0.214458,0.03751 0.07584,0 0.128837,-0.02691 0.053,-0.02609 0.08236,-0.08888 0.03017,-0.06279 0.03017,-0.218535 v -0.702901 h -0.386514 v -0.126391 h 0.538184 v 0.800752 q 0,0.231582 -0.05463,0.321279 -0.05463,0.09051 -0.1321,0.129653 -0.07747,0.03914 -0.212011,0.03914 -0.09704,0 -0.20875,-0.02283 z m 0.430546,-1.596611 q 0,-0.05137 0.03425,-0.07665 0.03506,-0.02528 0.06687,-0.02528 0.0318,0 0.06605,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03425,0.02528 -0.06605,0.02528 -0.0318,0 -0.06687,-0.02528 -0.03425,-0.02528 -0.03425,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5531" />
+              <path
+                 d="m 49.174488,21.209 v -0.139439 l 0.55857,-0.645005 h -0.545523 v -0.126391 h 0.746118 v 0.126391 l -0.562646,0.645005 h 0.581401 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5533" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text146"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,21.082608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03832 -0.176948,0.07828 V 20.13997 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 V 21.209 H 53.2593 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5536" />
+              <path
+                 d="m 54.283479,21.247325 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5538" />
+              <path
+                 d="m 55.571858,21.082608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03832 -0.176948,0.07828 V 20.13997 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304156 V 21.209 h -0.765689 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5540" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text148"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 61.408217,20.671631 V 21.209 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 L 62.103779,21.209 h -0.195703 l -0.335142,-0.537369 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08643 0.03833,-0.04403 0.0579,-0.09378 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.141069 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5543" />
+              <path
+                 d="M 62.999121,20.298165 V 21.209 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5545" />
+              <path
+                 d="m 63.251089,21.209 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 21.209 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5547" />
+              <path
+                 d="m 64.252436,21.209 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 21.209 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5549" />
+              <path
+                 d="M 65.509013,21.209 V 20.424556 H 65.25623 v -0.126391 h 0.404453 v 0.784443 h 0.253599 V 21.209 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5551" />
+              <path
+                 d="m 66.255131,21.209 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 21.209 h -0.151669 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5553" />
+              <path
+                 d="m 67.86479,21.004327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191625 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5555" />
+            </g>
+            <g
+               aria-label="0"
+               id="text150"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,19.905943 q 0.216088,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5558" />
+            </g>
+            <g
+               aria-label="50s"
+               id="text152"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.3213,20.550948 v -0.607495 h 0.708608 v 0.145962 H 84.47297 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5561" />
+              <path
+                 d="m 85.670021,19.905943 q 0.216089,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113344,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247075,0.941006 0.437885,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173686 0.06524,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5563" />
+              <path
+                 d="M 86.307687,21.160889 V 21.00025 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5565" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-controller-manager-549874c588-gcwjn"
+               id="text154"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,23.379999 V 22.671391 H 0.13617675 v -0.126392 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08644 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.05871 H 0.85130859 V 22.6714 H 0.49007323 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5568" />
+              <path
+                 d="m 1.5028369,23.405277 q -0.1957031,0 -0.313125,-0.136176 Q 1.07229,23.132109 1.07229,22.924174 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5570" />
+              <path
+                 d="m 2.5041846,23.405277 q -0.1957032,0 -0.313125,-0.136176 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5572" />
+              <path
+                 d="m 3.1891456,22.930697 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5574" />
+              <path
+                 d="m 4.1725537,23.379999 v -1.316103 h 0.1516699 v 0.826845 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,22.890741 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5576" />
+              <path
+                 d="m 5.8825096,22.469164 v 0.910835 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5578" />
+              <path
+                 d="m 6.2747317,22.673837 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5580" />
+              <path
+                 d="m 7.8933595,23.319657 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,22.836108 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5582" />
+              <path
+                 d="m 8.2146387,23.379999 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5584" />
+              <path
+                 d="m 9.1385204,23.379999 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07584 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5586" />
+              <path
+                 d="m 10.897402,23.319657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5588" />
+              <path
+                 d="m 11.902827,23.343305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 22.671423 H 11.0931 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5590" />
+              <path
+                 d="m 12.900098,23.319657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5592" />
+              <path
+                 d="m 13.154512,23.331889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5594" />
+              <path
+                 d="m 14.20397,22.930697 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5596" />
+              <path
+                 d="m 15.913111,23.353905 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5598" />
+              <path
+                 d="m 16.523052,23.405277 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117421,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5600" />
+              <path
+                 d="m 17.149303,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5602" />
+              <path
+                 d="m 18.912261,23.343305 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5604" />
+              <path
+                 d="m 19.229464,23.379999 v -0.910835 h 0.151669 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5606" />
+              <path
+                 d="m 20.528442,23.405277 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117421,0.136176 0.117421,0.344111 0,0.207935 -0.117421,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5608" />
+              <path
+                 d="m 21.399322,23.379999 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5610" />
+              <path
+                 d="m 22.400668,23.379999 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5612" />
+              <path
+                 d="m 23.914922,23.319657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5614" />
+              <path
+                 d="m 24.236202,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 H 24.77357 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5616" />
+              <path
+                 d="m 25.218794,22.930697 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5618" />
+              <path
+                 d="m 26.092935,23.379999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 H 26.47211 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5620" />
+              <path
+                 d="m 27.761303,23.175326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140253,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5622" />
+              <path
+                 d="m 28.164127,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157377,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5624" />
+              <path
+                 d="m 29.763999,23.175326 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5626" />
+              <path
+                 d="m 30.775132,23.175326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131285,-0.02202 0.06197,-0.02202 0.100297,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5628" />
+              <path
+                 d="m 31.925702,23.319657 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5630" />
+              <path
+                 d="m 32.246983,23.379999 v -0.910835 h 0.151669 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5632" />
+              <path
+                 d="m 33.229574,22.930697 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5634" />
+              <path
+                 d="m 34.199123,22.721947 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309864 h 0.02609 q 0.273169,0 0.420761,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5636" />
+              <path
+                 d="m 35.623678,23.379999 v -0.353896 h -0.537369 v -0.127207 l 0.537369,-0.784444 h 0.152485 v 0.784444 h 0.234028 v 0.127207 h -0.234028 v 0.353896 z m 0,-0.481103 v -0.554493 l -0.375914,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5638" />
+              <path
+                 d="m 36.811757,22.708085 q -0.05871,0.08725 -0.145961,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114975,-0.31231 0.115791,-0.13373 0.304156,-0.13373 0.221797,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183471 -0.377544,0.183471 -0.128023,0 -0.248706,-0.03832 V 23.22752 q 0.135361,0.0636 0.255229,0.0636 0.16961,0 0.262569,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297631,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164716,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5640" />
+              <path
+                 d="m 37.424144,22.697485 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05627,0.09948 -0.03669,0.04893 -0.146777,0.138624 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238106 -0.09948,0.100297 -0.298447,0.100297 -0.19978,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02935,-0.05871 0.02935,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5642" />
+              <path
+                 d="m 38.311334,23.379999 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5644" />
+              <path
+                 d="M 39.629068,23.379999 V 23.026103 H 39.0917 v -0.127207 l 0.537368,-0.784444 h 0.152485 v 0.784444 h 0.234028 v 0.127207 h -0.234028 v 0.353896 z m 0,-0.481103 v -0.554493 l -0.375913,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5646" />
+              <path
+                 d="m 40.946801,23.353905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5648" />
+              <path
+                 d="m 41.208557,22.721947 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309864 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167978,0.152486 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5650" />
+              <path
+                 d="m 42.430885,22.697485 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138624 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238106 -0.09948,0.100297 -0.298447,0.100297 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5652" />
+              <path
+                 d="m 43.432231,22.697485 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138624 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238106 -0.09948,0.100297 -0.298448,0.100297 -0.19978,0 -0.299262,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.0848 -0.118238,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5654" />
+              <path
+                 d="m 44.244398,22.930697 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5656" />
+              <path
+                 d="m 45.795348,23.175326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131285,-0.02202 0.06197,-0.02202 0.100297,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5658" />
+              <path
+                 d="m 46.954888,23.353905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5660" />
+              <path
+                 d="m 47.228056,23.379999 -0.148408,-0.910835 h 0.141069 l 0.08644,0.554492 0.02283,0.128838 0.02202,-0.128838 0.145147,-0.554492 h 0.136177 l 0.163901,0.554492 0.02854,0.128838 0.01875,-0.128838 0.08725,-0.554492 h 0.116606 l -0.147592,0.910835 h -0.141885 l -0.174502,-0.586294 -0.02772,-0.128838 h -0.0041 l -0.02528,0.128023 -0.15167,0.587109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5662" />
+              <path
+                 d="m 48.204944,23.737157 v -0.141884 q 0.127207,0.03751 0.214458,0.03751 0.07584,0 0.128837,-0.02691 0.053,-0.02609 0.08236,-0.08888 0.03017,-0.06279 0.03017,-0.218535 v -0.7029 h -0.386514 v -0.126392 h 0.538184 v 0.800752 q 0,0.231582 -0.05463,0.321279 -0.05463,0.09051 -0.1321,0.129654 -0.07747,0.03914 -0.212011,0.03914 -0.09704,0 -0.20875,-0.02283 z m 0.430546,-1.596611 q 0,-0.05137 0.03425,-0.07665 0.03506,-0.02528 0.06687,-0.02528 0.0318,0 0.06605,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03425,0.02528 -0.06605,0.02528 -0.0318,0 -0.06687,-0.02528 -0.03425,-0.02528 -0.03425,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5664" />
+              <path
+                 d="m 49.192428,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5666" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text156"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,23.253608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 H 53.2593 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5669" />
+              <path
+                 d="m 54.283479,23.418324 h -0.149223 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5671" />
+              <path
+                 d="m 55.571858,23.253608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 v 0.126391 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5673" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text158"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.408217,22.842631 v 0.537368 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.05789 -0.144331,0.110083 l 0.366128,0.591186 h -0.195703 l -0.335142,-0.537368 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.14107 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5676" />
+              <path
+                 d="m 62.999121,22.469164 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5678" />
+              <path
+                 d="m 63.251089,23.379999 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5680" />
+              <path
+                 d="m 64.252436,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5682" />
+              <path
+                 d="M 65.509013,23.379999 V 22.595556 H 65.25623 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5684" />
+              <path
+                 d="m 66.255131,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5686" />
+              <path
+                 d="m 67.86479,23.175326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5688" />
+            </g>
+            <g
+               aria-label="0"
+               id="text160"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,22.076943 q 0.216088,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247076,0.941005 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5691" />
+            </g>
+            <g
+               aria-label="50s"
+               id="text162"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.3213,22.721947 v -0.607495 h 0.708608 v 0.145962 H 84.47297 v 0.309864 h 0.02609 q 0.273169,0 0.420761,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5694" />
+              <path
+                 d="m 85.670021,22.076943 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5696" />
+              <path
+                 d="m 86.307687,23.331889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5698" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-etcd-0"
+               id="text164"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,25.551001 V 24.842392 H 0.13617675 v -0.126391 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266645 0.0407715,-0.08644 0.12557617,-0.141885 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205489 v 0.05871 h 0.36123534 v 0.126391 H 0.49007323 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5701" />
+              <path
+                 d="m 1.5028369,25.576279 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,25.30311 1.07229,25.095175 q 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5703" />
+              <path
+                 d="m 2.5041846,25.576279 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5705" />
+              <path
+                 d="m 3.1891456,25.101699 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5707" />
+              <path
+                 d="m 4.1725537,25.551001 v -1.316104 h 0.1516699 v 0.826846 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,25.061743 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5709" />
+              <path
+                 d="m 5.8825096,24.640166 v 0.910835 H 5.7308397 V 25.35122 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5711" />
+              <path
+                 d="m 6.2747317,24.844839 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316104 h 0.1516699 z m 0,0.180209 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5713" />
+              <path
+                 d="m 7.8933595,25.490659 q -0.1818408,0.08643 -0.3441113,0.08643 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5715" />
+              <path
+                 d="m 8.2146387,25.551001 v -0.910835 h 0.1516699 v 0.198964 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 V 24.96879 H 8.7520069 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5717" />
+              <path
+                 d="m 9.1385204,25.551001 v -0.910835 h 0.1516699 v 0.198964 q 0.065234,-0.10519 0.157378,-0.164716 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 V 25.551 H 9.7460155 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5719" />
+              <path
+                 d="m 10.897402,25.490659 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5721" />
+              <path
+                 d="m 11.902827,25.514306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 24.842423 H 11.0931 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5723" />
+              <path
+                 d="m 12.900098,25.490659 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5725" />
+              <path
+                 d="m 13.154512,25.50289 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 V 24.7951 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5727" />
+              <path
+                 d="m 14.20397,25.101699 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5729" />
+              <path
+                 d="m 15.904141,25.490659 q -0.181841,0.08643 -0.344112,0.08643 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5731" />
+              <path
+                 d="m 16.909565,25.514306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5733" />
+              <path
+                 d="m 17.915807,25.524907 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242182,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5735" />
+              <path
+                 d="m 18.75896,25.346328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161456,-0.196519 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 H 18.75896 Z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5737" />
+              <path
+                 d="m 19.210709,25.101699 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5739" />
+              <path
+                 d="m 20.527627,24.247944 q 0.216088,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685777 q -0.04159,-0.07583 -0.09051,-0.101928 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101929,0.02935 0.154932,0 0.220166,-0.172871 0.06524,-0.173686 0.06524,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5741" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text166"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,25.424609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 H 53.2593 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5744" />
+              <path
+                 d="m 54.283479,25.589326 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5746" />
+              <path
+                 d="m 55.571858,25.424609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304156 v 0.126392 h -0.765689 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5748" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text168"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.408217,25.013632 v 0.537369 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591187 h -0.195703 l -0.335142,-0.537369 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08643 0.03833,-0.04403 0.0579,-0.09378 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.141069 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5751" />
+              <path
+                 d="m 62.999121,24.640166 v 0.910835 h -0.15167 V 25.35122 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5753" />
+              <path
+                 d="m 63.251089,25.551001 v -0.910835 h 0.151669 v 0.198964 q 0.06524,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 25.551 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5755" />
+              <path
+                 d="m 64.252436,25.551001 v -0.910835 h 0.15167 v 0.198964 q 0.06524,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 25.551 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5757" />
+              <path
+                 d="M 65.509013,25.551001 V 24.766557 H 65.25623 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5759" />
+              <path
+                 d="m 66.255131,25.551001 v -0.910835 h 0.15167 v 0.198964 q 0.06524,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 25.551 h -0.151669 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5761" />
+              <path
+                 d="m 67.86479,25.346328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 V 25.69207 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5763" />
+            </g>
+            <g
+               aria-label="0"
+               id="text170"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,24.247944 q 0.216088,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685777 q -0.04159,-0.07583 -0.09051,-0.101928 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101929,0.02935 0.154932,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5766" />
+            </g>
+            <g
+               aria-label="50s"
+               id="text172"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.3213,24.892949 v -0.607495 h 0.708608 v 0.145962 H 84.47297 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 V 25.36426 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5769" />
+              <path
+                 d="m 85.670021,24.247944 q 0.216089,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113344,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247075,0.941006 0.437885,-0.685777 q -0.04159,-0.07583 -0.09051,-0.101928 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101928,0.02935 0.154932,0 0.220166,-0.172871 0.06524,-0.173686 0.06524,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5771" />
+              <path
+                 d="m 86.307687,25.50289 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 V 24.7951 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5773" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-etcd-1"
+               id="text174"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,27.722 V 27.013392 H 0.13617675 V 26.887 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08643 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.0587 h 0.36123534 v 0.126392 H 0.49007323 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5776" />
+              <path
+                 d="m 1.5028369,27.747278 q -0.1957031,0 -0.313125,-0.136176 Q 1.07229,27.47411 1.07229,27.266175 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5778" />
+              <path
+                 d="m 2.5041846,27.747278 q -0.1957032,0 -0.313125,-0.136176 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5780" />
+              <path
+                 d="m 3.1891456,27.272698 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5782" />
+              <path
+                 d="m 4.1725537,27.722 v -1.316103 h 0.1516699 v 0.826845 L 4.7621094,26.811165 H 4.9643359 L 4.5272656,27.232742 4.9757519,27.722 H 4.767002 L 4.3242236,27.232742 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5784" />
+              <path
+                 d="M 5.8825096,26.811165 V 27.722 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07584 0.1524853,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5786" />
+              <path
+                 d="m 6.2747317,27.015838 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5788" />
+              <path
+                 d="m 7.8933595,27.661658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,27.178109 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5790" />
+              <path
+                 d="m 8.2146387,27.722 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 V 27.13979 H 8.7520069 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06687 -0.1590088,0.200595 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5792" />
+              <path
+                 d="m 9.1385204,27.722 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 V 27.722 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07584 -0.1508545,0.189995 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5794" />
+              <path
+                 d="m 10.897402,27.661658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5796" />
+              <path
+                 d="m 11.902827,27.685306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 26.887 h 0.227505 v -0.366943 h 0.15167 V 26.887 h 0.405269 v 0.126392 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5798" />
+              <path
+                 d="m 12.900098,27.661658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5800" />
+              <path
+                 d="m 13.154512,27.67389 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 V 26.9661 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5802" />
+              <path
+                 d="m 14.20397,27.272698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5804" />
+              <path
+                 d="m 15.904141,27.661658 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5806" />
+              <path
+                 d="m 16.909565,27.685306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 26.887 h 0.227505 v -0.366943 h 0.15167 V 26.887 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5808" />
+              <path
+                 d="m 17.915807,27.695906 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5810" />
+              <path
+                 d="m 18.75896,27.517327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161456,-0.196518 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 V 27.722 H 18.75896 Z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5812" />
+              <path
+                 d="m 19.210709,27.272698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5814" />
+              <path
+                 d="m 20.490117,27.595609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 V 27.722 h -0.765688 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5816" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text176"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,27.595609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 V 27.722 H 53.2593 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5819" />
+              <path
+                 d="m 54.283479,27.760325 h -0.149223 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5821" />
+              <path
+                 d="m 55.571858,27.595609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 V 27.722 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5823" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text178"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 61.408217,27.184632 V 27.722 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.05789 -0.144331,0.110083 L 62.103779,27.722 h -0.195703 l -0.335142,-0.537368 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.14107 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5826" />
+              <path
+                 d="M 62.999121,26.811165 V 27.722 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07584 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5828" />
+              <path
+                 d="m 63.251089,27.722 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 27.722 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5830" />
+              <path
+                 d="m 64.252436,27.722 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 27.722 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5832" />
+              <path
+                 d="M 65.509013,27.722 V 26.937557 H 65.25623 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 27.722 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5834" />
+              <path
+                 d="m 66.255131,27.722 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 27.722 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5836" />
+              <path
+                 d="m 67.86479,27.517327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5838" />
+            </g>
+            <g
+               aria-label="0"
+               id="text180"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,26.418944 q 0.216088,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247076,0.941005 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5841" />
+            </g>
+            <g
+               aria-label="50s"
+               id="text182"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.3213,27.063948 v -0.607495 h 0.708608 v 0.145962 H 84.47297 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 V 27.53526 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5844" />
+              <path
+                 d="m 85.670021,26.418944 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5846" />
+              <path
+                 d="m 86.307687,27.67389 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 V 26.9661 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5848" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-etcd-2"
+               id="text184"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,29.893 V 29.184391 H 0.13617675 V 29.058 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266645 0.0407715,-0.08644 0.12557617,-0.141885 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205489 v 0.0587 h 0.36123534 v 0.126391 H 0.49007323 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5851" />
+              <path
+                 d="m 1.5028369,29.918278 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,29.645109 1.07229,29.437174 q 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5853" />
+              <path
+                 d="m 2.5041846,29.918278 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5855" />
+              <path
+                 d="m 3.1891456,29.443698 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5857" />
+              <path
+                 d="m 4.1725537,29.893 v -1.316104 h 0.1516699 v 0.826846 L 4.7621094,28.982165 H 4.9643359 L 4.5272656,29.403742 4.9757519,29.893 H 4.767002 L 4.3242236,29.403742 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5859" />
+              <path
+                 d="M 5.8825096,28.982165 V 29.893 H 5.7308397 v -0.199781 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07584 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5861" />
+              <path
+                 d="m 6.2747317,29.186838 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316104 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5863" />
+              <path
+                 d="m 7.8933595,29.832658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5865" />
+              <path
+                 d="m 8.2146387,29.893 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5867" />
+              <path
+                 d="m 9.1385204,29.893 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 V 29.893 H 9.7460155 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5869" />
+              <path
+                 d="m 10.897402,29.832658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5871" />
+              <path
+                 d="m 11.902827,29.856305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366975 h -0.2275 V 29.058 h 0.227505 v -0.366944 h 0.15167 V 29.058 h 0.405269 v 0.126391 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5873" />
+              <path
+                 d="m 12.900098,29.832658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5875" />
+              <path
+                 d="M 13.154512,29.844889 V 29.68425 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5877" />
+              <path
+                 d="m 14.20397,29.443698 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5879" />
+              <path
+                 d="m 15.904141,29.832658 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5881" />
+              <path
+                 d="m 16.909565,29.856305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366975 h -0.2275 V 29.058 h 0.227505 v -0.366944 h 0.15167 V 29.058 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5883" />
+              <path
+                 d="m 17.915807,29.866906 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242182,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5885" />
+              <path
+                 d="m 18.75896,29.688327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161456,-0.196519 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 V 29.893 H 18.75896 Z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5887" />
+              <path
+                 d="m 19.210709,29.443698 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5889" />
+              <path
+                 d="m 20.91414,29.893 h -0.765688 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08643,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115792,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181026,0.03262 0.08317,0.0318 0.123129,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194887,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5891" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text186"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,29.766608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 28.82397 q 0.178579,-0.07584 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 V 29.893 H 53.2593 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5894" />
+              <path
+                 d="m 54.283479,29.931325 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5896" />
+              <path
+                 d="m 55.571858,29.766608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 28.82397 q 0.178579,-0.07584 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304156 V 29.893 h -0.765689 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5898" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text188"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 61.408217,29.355631 V 29.893 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 L 62.103779,29.893 h -0.195703 l -0.335142,-0.537369 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.141069 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5901" />
+              <path
+                 d="M 62.999121,28.982165 V 29.893 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07584 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5903" />
+              <path
+                 d="m 63.251089,29.893 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 29.893 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5905" />
+              <path
+                 d="m 64.252436,29.893 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 29.893 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5907" />
+              <path
+                 d="M 65.509013,29.893 V 29.108556 H 65.25623 v -0.126391 h 0.404453 v 0.784443 h 0.253599 V 29.893 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5909" />
+              <path
+                 d="m 66.255131,29.893 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 29.893 h -0.151669 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5911" />
+              <path
+                 d="m 67.86479,29.688327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191625 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5913" />
+            </g>
+            <g
+               aria-label="0"
+               id="text190"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,28.589943 q 0.216088,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101929,0.02935 0.154932,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5916" />
+            </g>
+            <g
+               aria-label="50s"
+               id="text192"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.3213,29.234948 v -0.607495 h 0.708608 v 0.145962 H 84.47297 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5919" />
+              <path
+                 d="m 85.670021,28.589943 q 0.216089,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113344,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247075,0.941006 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101928,0.02935 0.154932,0 0.220166,-0.172871 0.06524,-0.173686 0.06524,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5921" />
+              <path
+                 d="M 86.307687,29.844889 V 29.68425 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5923" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-kubeadm-tasks-vshqb"
+               id="text194"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,32.063999 V 31.355391 H 0.13617675 v -0.126392 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08644 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.05871 H 0.85130859 V 31.3554 H 0.49007323 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5926" />
+              <path
+                 d="m 1.5028369,32.089277 q -0.1957031,0 -0.313125,-0.136176 Q 1.07229,31.816109 1.07229,31.608174 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5928" />
+              <path
+                 d="m 2.5041846,32.089277 q -0.1957032,0 -0.313125,-0.136176 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5930" />
+              <path
+                 d="m 3.1891456,31.614697 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5932" />
+              <path
+                 d="m 4.1725537,32.063999 v -1.316103 h 0.1516699 v 0.826845 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,31.574741 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5934" />
+              <path
+                 d="m 5.8825096,31.153164 v 0.910835 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5936" />
+              <path
+                 d="m 6.2747317,31.357837 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.05789 0.1785791,-0.05789 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5938" />
+              <path
+                 d="m 7.8933595,32.003657 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,31.520108 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5940" />
+              <path
+                 d="m 8.2146387,32.063999 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5942" />
+              <path
+                 d="m 9.1385204,32.063999 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07584 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5944" />
+              <path
+                 d="m 10.897402,32.003657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5946" />
+              <path
+                 d="m 11.902827,32.027305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 31.355423 H 11.0931 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5948" />
+              <path
+                 d="m 12.900098,32.003657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5950" />
+              <path
+                 d="m 13.154512,32.015889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5952" />
+              <path
+                 d="m 14.20397,31.614697 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5954" />
+              <path
+                 d="m 15.187378,32.063999 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5956" />
+              <path
+                 d="m 16.897334,31.153164 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5958" />
+              <path
+                 d="m 17.289557,31.357837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.151669,0.0212 0.137808,0 0.231583,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5960" />
+              <path
+                 d="m 18.908183,32.003657 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5962" />
+              <path
+                 d="m 19.750523,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5964" />
+              <path
+                 d="m 20.761655,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5966" />
+              <path
+                 d="m 21.086197,32.063999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03832,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100297,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5968" />
+              <path
+                 d="m 22.21475,31.614697 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5970" />
+              <path
+                 d="m 23.918999,32.027305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227504 v -0.126392 h 0.227504 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5972" />
+              <path
+                 d="m 24.757262,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161456,-0.196518 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5974" />
+              <path
+                 d="m 25.170684,32.015889 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172872,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08643,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5976" />
+              <path
+                 d="m 26.202203,32.063999 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5978" />
+              <path
+                 d="m 27.173379,32.015889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5980" />
+              <path
+                 d="m 28.222838,31.614697 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5982" />
+              <path
+                 d="m 29.461474,32.063999 -0.395483,-0.910835 h 0.166347 l 0.31231,0.72084 0.318833,-0.72084 h 0.15167 l -0.398745,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5984" />
+              <path
+                 d="m 30.177422,32.015889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08643,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5986" />
+              <path
+                 d="m 31.168168,32.063999 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.14107,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5988" />
+              <path
+                 d="m 32.777827,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 1.264732 h -0.152486 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5990" />
+              <path
+                 d="m 33.311117,31.357837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5992" />
+            </g>
+            <g
+               aria-label="0/1"
+               id="text196"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.606673,30.760943 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5995" />
+              <path
+                 d="m 54.283479,32.102324 h -0.149223 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5997" />
+              <path
+                 d="m 55.571858,31.937608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 v 0.126391 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5999" />
+            </g>
+            <g
+               aria-label="Completed"
+               id="text198"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 62.009189,32.049321 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236475 -0.06931,-0.157378 -0.06931,-0.355527 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260937,-0.07584 -0.09785,0 -0.179395,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130468 0.131284,0.195703 0.07991,0.06442 0.176949,0.06442 0.128838,0 0.260937,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6002" />
+              <path
+                 d="m 62.624839,32.089277 q -0.195704,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6004" />
+              <path
+                 d="m 63.182592,32.063999 v -0.910835 h 0.132916 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6006" />
+              <path
+                 d="m 64.39269,31.357837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6008" />
+              <path
+                 d="m 65.498413,32.063999 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6010" />
+              <path
+                 d="m 67.012666,32.003657 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6012" />
+              <path
+                 d="m 68.018091,32.027305 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6014" />
+              <path
+                 d="m 69.015361,32.003657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6016" />
+              <path
+                 d="m 69.867485,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6018" />
+            </g>
+            <g
+               aria-label="0"
+               id="text200"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,30.760943 q 0.216088,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247076,0.941005 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6021" />
+            </g>
+            <g
+               aria-label="50s"
+               id="text202"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.3213,31.405947 v -0.607495 h 0.708608 v 0.145962 H 84.47297 v 0.309864 h 0.02609 q 0.273169,0 0.420761,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6024" />
+              <path
+                 d="m 85.670021,30.760943 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6026" />
+              <path
+                 d="m 86.307687,32.015889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6028" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-scheduler-7976d95897-69shs"
+               id="text204"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,34.235001 V 33.526392 H 0.13617675 v -0.126391 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266645 0.0407715,-0.08644 0.12557617,-0.141885 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205489 v 0.05871 h 0.36123534 v 0.126391 H 0.49007323 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6031" />
+              <path
+                 d="m 1.5028369,34.260279 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,33.98711 1.07229,33.779175 q 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6033" />
+              <path
+                 d="m 2.5041846,34.260279 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6035" />
+              <path
+                 d="m 3.1891456,33.785699 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6037" />
+              <path
+                 d="m 4.1725537,34.235001 v -1.316104 h 0.1516699 v 0.826846 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,33.745743 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6039" />
+              <path
+                 d="m 5.8825096,33.324166 v 0.910835 H 5.7308397 V 34.03522 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6041" />
+              <path
+                 d="m 6.2747317,33.528839 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316104 h 0.1516699 z m 0,0.180209 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6043" />
+              <path
+                 d="m 7.8933595,34.174659 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6045" />
+              <path
+                 d="m 8.2146387,34.235001 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 V 33.65279 H 8.7520069 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6047" />
+              <path
+                 d="m 9.1385204,34.235001 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 V 34.235 H 9.7460155 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6049" />
+              <path
+                 d="m 10.897402,34.174659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6051" />
+              <path
+                 d="m 11.902827,34.198306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 33.526423 H 11.0931 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6053" />
+              <path
+                 d="m 12.900098,34.174659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6055" />
+              <path
+                 d="m 13.154512,34.18689 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 V 33.4791 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6057" />
+              <path
+                 d="m 14.20397,33.785699 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6059" />
+              <path
+                 d="m 15.157207,34.18689 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08643,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 V 33.4791 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6061" />
+              <path
+                 d="m 16.914458,34.208907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242183,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6063" />
+              <path
+                 d="m 17.149303,34.235001 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508829 h -0.15167 V 33.70742 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6065" />
+              <path
+                 d="m 18.908183,34.174659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6067" />
+              <path
+                 d="m 19.760308,34.030328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152486 v 1.316104 h -0.152486 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6069" />
+              <path
+                 d="m 20.902724,33.324166 v 0.910835 h -0.15167 V 34.03522 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6071" />
+              <path
+                 d="m 21.399322,34.235001 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6073" />
+              <path
+                 d="m 22.913574,34.174659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6075" />
+              <path
+                 d="m 23.234854,34.235001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159008,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6077" />
+              <path
+                 d="m 24.217447,33.785699 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6079" />
+              <path
+                 d="m 25.293813,34.235001 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110898 0.121499,-0.17124 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.656421 v -0.152485 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.21935 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6081" />
+              <path
+                 d="m 26.798282,33.563087 q -0.05871,0.08725 -0.145962,0.1427 -0.08643,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114976,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331065,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139439,0.500674 -0.139438,0.183472 -0.377544,0.183472 -0.128022,0 -0.248706,-0.03833 v -0.152486 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z M 26.50065,33.058336 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6083" />
+              <path
+                 d="m 27.296509,34.235001 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110898 0.121499,-0.17124 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.656421 v -0.152485 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.21935 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6085" />
+              <path
+                 d="m 28.27584,33.641368 q 0.05871,-0.08725 0.145147,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114975,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109267,-0.185918 -0.109267,-0.472134 0,-0.316386 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.16961,0 -0.262569,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170424,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6087" />
+              <path
+                 d="m 29.773784,34.030328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6089" />
+              <path
+                 d="m 30.803672,33.563087 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114975,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331065,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139439,0.500674 -0.139438,0.183472 -0.377544,0.183472 -0.128022,0 -0.248706,-0.03833 v -0.152486 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z M 30.50604,33.058336 q -0.06116,0 -0.123129,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6091" />
+              <path
+                 d="m 31.195077,33.576949 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167978,0.152485 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 V 34.04826 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.105191,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6093" />
+              <path
+                 d="m 32.417407,33.552486 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144332 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05627,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159008 0,0.136993 -0.09948,0.238106 -0.09948,0.100298 -0.298448,0.100298 -0.19978,0 -0.299262,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.0473,0.05463 -0.0473,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158194 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.08481 -0.118238,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6095" />
+              <path
+                 d="m 33.807714,33.563087 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187548,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114976,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331065,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139439,0.500674 -0.139438,0.183472 -0.377544,0.183472 -0.128022,0 -0.248706,-0.03833 v -0.152486 q 0.135361,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114975,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6097" />
+              <path
+                 d="m 34.305944,34.235001 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110898 0.121499,-0.17124 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.65642 v -0.152485 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.21935 -0.02936,0.03996 -0.0579,0.07991 l -0.08481,0.119052 q -0.08154,0.114976 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6099" />
+              <path
+                 d="m 35.232271,33.785699 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6101" />
+              <path
+                 d="m 36.286621,33.641368 q 0.05871,-0.08725 0.145146,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186734,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114975,0.132915 -0.303339,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316386 0.139439,-0.499858 0.139438,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135362,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.123129,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165533,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6103" />
+              <path
+                 d="m 37.813104,33.563087 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114976,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331065,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139439,0.500674 -0.139438,0.183472 -0.377544,0.183472 -0.128022,0 -0.248706,-0.03833 v -0.152486 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6105" />
+              <path
+                 d="m 38.188204,34.18689 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 V 33.4791 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6107" />
+              <path
+                 d="m 39.17895,34.235001 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.14107,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508829 h -0.15167 V 33.70742 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6109" />
+              <path
+                 d="m 40.190898,34.18689 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 V 33.4791 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6111" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text206"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,34.108609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136993 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 V 34.235 H 53.2593 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6114" />
+              <path
+                 d="m 54.283479,34.273326 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6116" />
+              <path
+                 d="m 55.571858,34.108609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136993 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304156 V 34.235 h -0.765689 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6118" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text208"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.408217,33.697632 v 0.537369 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591187 h -0.195703 l -0.335142,-0.537369 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09378 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.141069 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6121" />
+              <path
+                 d="m 62.999121,33.324166 v 0.910835 h -0.15167 V 34.03522 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6123" />
+              <path
+                 d="m 63.251089,34.235001 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 34.235 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6125" />
+              <path
+                 d="m 64.252436,34.235001 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 34.235 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6127" />
+              <path
+                 d="M 65.509013,34.235001 V 33.450557 H 65.25623 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6129" />
+              <path
+                 d="m 66.255131,34.235001 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 34.235 h -0.151669 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6131" />
+              <path
+                 d="m 67.86479,34.030328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.1215 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 V 34.37607 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6133" />
+            </g>
+            <g
+               aria-label="0"
+               id="text210"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,32.931944 q 0.216088,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685777 q -0.04159,-0.07583 -0.09051,-0.101928 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6136" />
+            </g>
+            <g
+               aria-label="50s"
+               id="text212"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.3213,33.576949 v -0.607495 h 0.708608 v 0.145962 H 84.47297 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 V 34.04826 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6139" />
+              <path
+                 d="m 85.670021,32.931944 q 0.216089,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113344,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247075,0.941006 0.437885,-0.685777 q -0.04159,-0.07583 -0.09051,-0.101928 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173686 0.06524,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6141" />
+              <path
+                 d="m 86.307687,34.18689 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 V 33.4791 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6143" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-scheduler-7976d95897-8fc8c"
+               id="text214"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,36.405998 V 35.69739 H 0.13617675 v -0.126392 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08644 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.05871 H 0.85130857 V 35.69739 H 0.49007323 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6146" />
+              <path
+                 d="m 1.5028369,36.431277 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,36.158108 1.07229,35.950173 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6148" />
+              <path
+                 d="m 2.5041846,36.431277 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6150" />
+              <path
+                 d="m 3.1891456,35.956696 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6152" />
+              <path
+                 d="M 4.1725537,36.405998 V 35.089895 H 4.3242236 V 35.91674 L 4.7621094,35.495163 H 4.9643359 L 4.5272656,35.91674 4.9757519,36.405998 H 4.767002 L 4.3242236,35.91674 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6154" />
+              <path
+                 d="m 5.8825096,35.495163 v 0.910835 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05627 -0.1793945,0.05627 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6156" />
+              <path
+                 d="m 6.2747317,35.699836 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204672 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6158" />
+              <path
+                 d="m 7.8933595,36.345656 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,35.862107 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6160" />
+              <path
+                 d="m 8.2146387,36.405998 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05627 0.2046729,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6162" />
+              <path
+                 d="m 9.1385204,36.405998 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07583 -0.1508545,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6164" />
+              <path
+                 d="m 10.897402,36.345656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6166" />
+              <path
+                 d="m 11.902827,36.369304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 35.69739 H 11.0931 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 V 35.69739 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6168" />
+              <path
+                 d="m 12.900098,36.345656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6170" />
+              <path
+                 d="m 13.154512,36.357888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6172" />
+              <path
+                 d="m 14.20397,35.956696 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6174" />
+              <path
+                 d="m 15.157207,36.357888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08643,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6176" />
+              <path
+                 d="m 16.914458,36.379904 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6178" />
+              <path
+                 d="m 17.149303,36.405998 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6180" />
+              <path
+                 d="m 18.908183,36.345656 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6182" />
+              <path
+                 d="m 19.760308,36.201325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152486 v 1.316103 h -0.152486 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6184" />
+              <path
+                 d="m 20.902724,35.495163 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05627 -0.179394,0.05627 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6186" />
+              <path
+                 d="m 21.399322,36.405998 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6188" />
+              <path
+                 d="m 22.913574,36.345656 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6190" />
+              <path
+                 d="m 23.234854,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6192" />
+              <path
+                 d="m 24.217447,35.956696 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6194" />
+              <path
+                 d="m 25.293813,36.405998 v -0.113344 q 0,-0.132916 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.21935 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113344 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6196" />
+              <path
+                 d="m 26.798282,35.734084 q -0.05871,0.08725 -0.145962,0.1427 -0.08643,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114976,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331065,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139439,0.500674 -0.139438,0.183471 -0.377544,0.183471 -0.128022,0 -0.248706,-0.03833 v -0.152485 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z M 26.50065,35.229333 q -0.06116,0 -0.12313,0.0367 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6198" />
+              <path
+                 d="m 27.296509,36.405998 v -0.113344 q 0,-0.132916 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.21935 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113344 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6200" />
+              <path
+                 d="m 28.27584,35.812365 q 0.05871,-0.08725 0.145147,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114975,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109267,-0.185918 -0.109267,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.16961,0 -0.262569,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170424,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6202" />
+              <path
+                 d="m 29.773784,36.201325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6204" />
+              <path
+                 d="m 30.803672,35.734084 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114975,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331065,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139439,0.500674 -0.139438,0.183471 -0.377544,0.183471 -0.128022,0 -0.248706,-0.03833 v -0.152485 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z M 30.50604,35.229333 q -0.06116,0 -0.123129,0.0367 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6206" />
+              <path
+                 d="m 31.195077,35.747946 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309864 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167978,0.152486 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.105191,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6208" />
+              <path
+                 d="m 32.417407,35.723484 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05627,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238106 -0.09948,0.100297 -0.298448,0.100297 -0.19978,0 -0.299262,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.0473,0.05463 -0.0473,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.0848 -0.118238,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6210" />
+              <path
+                 d="m 33.807714,35.734084 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187548,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114976,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331065,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139439,0.500674 -0.139438,0.183471 -0.377544,0.183471 -0.128022,0 -0.248706,-0.03833 v -0.152485 q 0.135361,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.0367 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114975,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6212" />
+              <path
+                 d="m 34.305944,36.405998 v -0.113344 q 0,-0.132916 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.65642 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.21935 -0.02936,0.03996 -0.0579,0.07991 l -0.08481,0.119053 q -0.08154,0.114976 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113344 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6214" />
+              <path
+                 d="m 35.232271,35.956696 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6216" />
+              <path
+                 d="m 36.422798,35.723484 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252784,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238106 -0.09948,0.100297 -0.298447,0.100297 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.265831,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.0848 -0.118238,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6218" />
+              <path
+                 d="M 37.388265,36.405998 V 35.69739 h -0.202226 v -0.126392 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126392 H 37.53993 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6220" />
+              <path
+                 d="m 38.944108,36.379904 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106005,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6222" />
+              <path
+                 d="m 39.426841,35.723484 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238106 -0.09948,0.100297 -0.298447,0.100297 -0.19978,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6224" />
+              <path
+                 d="m 40.946801,36.379904 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6226" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text216"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,36.279607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03832 -0.176948,0.07828 V 35.33697 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 H 53.2593 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6229" />
+              <path
+                 d="m 54.283479,36.444323 h -0.149223 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6231" />
+              <path
+                 d="m 55.571858,36.279607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03832 -0.176948,0.07828 V 35.33697 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 v 0.126391 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6233" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text218"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.408217,35.86863 v 0.537368 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 L 62.103778,36.406 h -0.195702 l -0.335142,-0.53737 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08643 0.03833,-0.04403 0.0579,-0.09378 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.14107 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6236" />
+              <path
+                 d="m 62.999121,35.495163 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6238" />
+              <path
+                 d="m 63.251089,36.405998 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6240" />
+              <path
+                 d="m 64.252436,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6242" />
+              <path
+                 d="M 65.509013,36.405998 V 35.621555 H 65.25623 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6244" />
+              <path
+                 d="m 66.255131,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6246" />
+              <path
+                 d="m 67.86479,36.201325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.1533 q 0.06442,0.04403 0.158193,0.07746 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6248" />
+            </g>
+            <g
+               aria-label="0"
+               id="text220"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,35.102942 q 0.216088,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247076,0.941005 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6251" />
+            </g>
+            <g
+               aria-label="50s"
+               id="text222"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.3213,35.747946 v -0.607495 h 0.708608 v 0.145962 H 84.47297 v 0.309864 h 0.02609 q 0.273169,0 0.420761,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6254" />
+              <path
+                 d="m 85.670021,35.102942 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6256" />
+              <path
+                 d="m 86.307687,36.357888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6258" />
+            </g>
+            <path
+               class="f"
+               d="m 0,36.907 h 1 v 2.171 H 0 Z"
+               id="path224" />
+            <g
+               id="text226"
+               class="g"
+               style="white-space:pre" />
+            <path
+               class="f"
+               d="m 1.002,36.907 h 5 v 2.171 h -5 z"
+               id="path228" />
+            <g
+               aria-label="kvaps"
+               id="text230"
+               class="h"
+               style="font-weight:700;white-space:pre">
+              <path
+                 d="M 1.1691631,38.577 V 37.260896 H 1.320833 v 0.826846 L 1.7587187,37.666165 H 1.9609453 L 1.523875,38.087742 1.9723613,38.577 h -0.20875 L 1.320833,38.087742 V 38.577 Z"
+                 style="font-weight:700;white-space:pre"
+                 id="path6262" />
+              <path
+                 d="M 2.4257402,38.577 2.0302568,37.666165 h 0.1663477 l 0.3123095,0.72084 0.318833,-0.72084 H 2.9794169 L 2.5806718,38.577 Z"
+                 style="font-weight:700;white-space:pre"
+                 id="path6264" />
+              <path
+                 d="m 3.7296123,38.372327 q -0.069312,0.11416 -0.1671631,0.172055 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.1614551,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524853 v 0.643374 q 0,0.164717 0.034248,0.267461 H 3.7581523 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204672 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path6266" />
+              <path
+                 d="m 4.2726886,37.870838 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054882,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.161455,0.196519 -0.1011133,0.07176 -0.250337,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353896 H 4.1210187 v -1.264731 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path6268" />
+              <path
+                 d="M 5.1443828,38.528889 V 38.36825 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023647,-0.02609 -0.1174218,-0.06442 l -0.052188,-0.0212 -0.1051905,-0.04159 q -0.1696093,-0.06605 -0.2136425,-0.122314 -0.044849,-0.05545 -0.044849,-0.135362 0,-0.112529 0.086436,-0.185102 0.087251,-0.07257 0.2821386,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137807 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027442,0.03751 q 0.1410693,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07583 -0.2902929,0.07583 -0.174502,0 -0.3587891,-0.07339 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path6270" />
+            </g>
+            <path
+               class="f"
+               d="m 6.012,36.907 h 1 v 2.171 h -1 z"
+               id="path232" />
+            <g
+               id="text234"
+               class="g"
+               style="white-space:pre" />
+            <path
+               class="i"
+               d="m 7.014,36.907 h 1 v 2.171 h -1 z"
+               id="path236" />
+            <g
+               aria-label=""
+               id="text238"
+               class="j"
+               style="white-space:pre;fill:#00d7ff">
+              <path
+                 d="m 7.0139999,37.007298 1.0258106,0.990747 -1.0258106,0.992378 z"
+                 style="white-space:pre;fill:#00d7ff"
+                 id="path6274" />
+            </g>
+            <path
+               class="i"
+               d="m 8.016,36.907 h 1 v 2.171 h -1 z"
+               id="path240" />
+            <g
+               id="text242"
+               class="k"
+               style="white-space:pre;fill:#eeeeee" />
+            <path
+               class="i"
+               d="m 9.018,36.907 h 1 v 2.171 h -1 z"
+               id="path244" />
+            <g
+               aria-label="~"
+               id="text246"
+               class="l"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 9.0636637,38.248382 v -0.01468 q 0,-0.106822 0.062788,-0.185103 0.063603,-0.0791 0.1704248,-0.0791 0.026909,0 0.052188,0.0057 0.026094,0.0049 0.058711,0.01794 0.032617,0.01223 0.097852,0.04893 l 0.098667,0.05463 q 0.090513,0.04974 0.1475927,0.04974 0.060342,0 0.088882,-0.04322 0.029356,-0.04403 0.029356,-0.0954 v -0.01305 h 0.1043749 v 0.01305 q 0,0.136177 -0.077466,0.201411 -0.07665,0.06442 -0.1630859,0.06442 -0.080728,0 -0.2136426,-0.07583 l -0.083174,-0.04811 q -0.09459,-0.05382 -0.1524853,-0.05382 -0.032617,0 -0.061157,0.01712 -0.027725,0.01712 -0.044849,0.05463 -0.017124,0.03751 -0.017124,0.06605 v 0.01468 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path6278" />
+            </g>
+            <path
+               class="i"
+               d="m 10.02,36.907 h 1 v 2.171 h -1 z"
+               id="path248" />
+            <g
+               aria-label="/"
+               id="text250"
+               class="k"
+               style="white-space:pre;fill:#eeeeee">
+              <path
+                 d="M 10.196133,38.615325 H 10.04691 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#eeeeee"
+                 id="path6281" />
+            </g>
+            <path
+               class="i"
+               d="m 11.022,36.907 h 3 v 2.171 h -3 z"
+               id="path252" />
+            <g
+               aria-label="tmp"
+               id="text254"
+               class="l"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 11.910003,38.540305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119869,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 37.868391 H 11.100282 V 37.742 h 0.227504 v -0.366944 h 0.15167 V 37.742 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path6284" />
+              <path
+                 d="m 12.081243,38.577 v -0.910835 h 0.132916 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 38.577 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 V 38.577 H 12.46041 v -0.621358 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 V 38.577 Z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path6286" />
+              <path
+                 d="m 13.291341,37.870838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path6288" />
+            </g>
+            <path
+               class="i"
+               d="m 14.028,36.907 h 1 v 2.171 h -1 z"
+               id="path256" />
+            <g
+               id="text258"
+               class="k"
+               style="white-space:pre;fill:#eeeeee" />
+            <g
+               aria-label=""
+               id="text260"
+               class="m"
+               style="white-space:pre;fill:#005f87">
+              <path
+                 d="M 15.03,37.007298 16.05581,37.998045 15.03,38.990423 Z"
+                 style="white-space:pre;fill:#005f87"
+                 id="path6292" />
+            </g>
+            <g
+               aria-label="kubectl"
+               id="text262"
+               class="n"
+               style="white-space:pre;fill:#a8cc8c">
+              <path
+                 d="m 17.201163,38.577 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 L 17.352833,38.087742 V 38.577 Z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path6295" />
+              <path
+                 d="M 18.91112,37.666165 V 38.577 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.151669 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path6297" />
+              <path
+                 d="m 19.303341,37.870838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161456,0.196519 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path6299" />
+              <path
+                 d="m 20.921969,38.516658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path6301" />
+              <path
+                 d="m 21.932287,38.550906 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path6303" />
+              <path
+                 d="m 22.928741,38.540305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 37.742 h 0.227505 v -0.366944 h 0.15167 V 37.742 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path6305" />
+              <path
+                 d="m 23.413107,38.577 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 38.577 Z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path6307" />
+            </g>
+            <g
+               aria-label="get"
+               id="text264"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 25.784701,38.372327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280507,0.07013 -0.165533,0 -0.335142,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182657,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6310" />
+              <path
+                 d="m 26.935273,38.516658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6312" />
+              <path
+                 d="m 27.940697,38.540305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 37.742 h 0.227505 v -0.366944 h 0.15167 V 37.742 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6314" />
+            </g>
+            <g
+               aria-label="cert"
+               id="text266"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 29.950896,38.550906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6317" />
+              <path
+                 d="m 30.943274,38.516658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 H 30.32844 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6319" />
+              <path
+                 d="m 31.264553,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6321" />
+              <path
+                 d="m 32.950047,38.540305 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 37.742 H 32.36783 V 37.375056 H 32.5195 V 37.742 h 0.405268 v 0.126391 H 32.5195 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6323" />
+            </g>
+            <g
+               aria-label=""
+               id="text268"
+               class="o"
+               style="white-space:pre;fill:#262626">
+              <path
+                 d="M 106.23581,38.990423 105.21,37.998045 106.23581,37.007298 Z"
+                 style="white-space:pre;fill:#262626"
+                 id="path6326" />
+            </g>
+            <path
+               class="p"
+               d="m 106.212,36.907 h 13 v 2.171 h -13 z"
+               id="path270" />
+            <g
+               aria-label="stage-admin"
+               id="text272"
+               class="q"
+               style="white-space:pre;fill:#af5fd7">
+              <path
+                 d="M 106.34899,38.528889 V 38.36825 q 0.0913,0.05953 0.19326,0.08399 0.10193,0.02365 0.17287,0.02365 0.11497,0 0.16553,-0.03669 0.0506,-0.03751 0.0506,-0.09296 0,-0.03669 -0.0236,-0.06279 -0.0237,-0.02609 -0.11742,-0.06442 l -0.0522,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.21364,-0.122314 -0.0449,-0.05545 -0.0449,-0.135362 0,-0.112529 0.0864,-0.185102 0.0873,-0.07257 0.28214,-0.07257 0.14596,0 0.27643,0.0424 v 0.137807 q -0.15004,-0.05382 -0.28214,-0.05382 -0.0962,0 -0.15085,0.03425 -0.0538,0.03343 -0.0538,0.08399 0,0.04893 0.0473,0.07828 0.0465,0.02936 0.15167,0.06768 l 0.10274,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.0571,0.06034 0.0571,0.150854 0,0.118238 -0.0913,0.194888 -0.0905,0.07583 -0.29029,0.07583 -0.1745,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path6329" />
+              <path
+                 d="m 108.10135,38.540305 q -0.10682,0.04485 -0.15493,0.053 -0.0481,0.009 -0.093,0.009 -0.0954,0 -0.1745,-0.03669 -0.0791,-0.0367 -0.11987,-0.108452 -0.04,-0.07176 -0.04,-0.221797 v -0.366944 h -0.2275 V 37.742 h 0.2275 v -0.366944 h 0.15167 V 37.742 h 0.40527 v 0.126391 h -0.40527 v 0.364497 q 0,0.110083 0.0261,0.155747 0.0261,0.04485 0.0693,0.06605 0.044,0.0212 0.10356,0.0212 0.11008,0 0.23158,-0.06931 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path6331" />
+              <path
+                 d="m 108.93961,38.372327 q -0.0693,0.11416 -0.16716,0.172055 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158193 0.0603,-0.282138 0.0603,-0.124761 0.16145,-0.196519 0.10112,-0.07257 0.25034,-0.07257 0.0432,0 0.13047,0.009 0.0131,0.0016 0.0391,0.0041 h 0.15249 v 0.643374 q 0,0.164717 0.0342,0.267461 h -0.15819 q -0.0179,-0.07502 -0.0285,-0.204673 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23403,0.108452 -0.093,0.108452 -0.093,0.295186 0,0.135361 0.0506,0.204672 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path6333" />
+              <path
+                 d="m 109.95074,38.372327 q -0.0693,0.11416 -0.16716,0.172055 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158193 0.0603,-0.282138 0.0603,-0.124761 0.16146,-0.196519 0.10111,-0.07257 0.25033,-0.07257 0.0432,0 0.13047,0.009 0.013,0.0016 0.0391,0.0041 h 0.15249 v 0.644189 q 0,0.229951 -0.007,0.280508 -0.006,0.05137 -0.0196,0.10356 -0.0326,0.121499 -0.14922,0.191626 -0.11579,0.07013 -0.28051,0.07013 -0.16553,0 -0.33514,-0.0848 v -0.153301 q 0.0644,0.04403 0.1582,0.07747 0.0946,0.03425 0.18265,0.03425 0.0693,0 0.13129,-0.02202 0.062,-0.02202 0.10029,-0.0636 0.0383,-0.04159 0.0522,-0.09704 0.0139,-0.05463 0.0139,-0.145962 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23402,0.108452 -0.093,0.108452 -0.093,0.295186 0,0.135361 0.0506,0.204672 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path6335" />
+              <path
+                 d="m 111.10131,38.516658 q -0.18184,0.08644 -0.34411,0.08644 -0.12313,0 -0.22016,-0.06116 -0.097,-0.06116 -0.15575,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.0554,-0.239737 0.0555,-0.114975 0.15494,-0.178579 0.0995,-0.06442 0.22179,-0.06442 0.16227,0 0.26012,0.115791 0.0987,0.115791 0.0987,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.0391,0.172871 0.04,0.07828 0.10438,0.117422 0.0644,0.03914 0.14677,0.03914 0.14678,0 0.32454,-0.09785 z m -0.60586,-0.48355 h 0.45419 v -0.02202 q 0,-0.111713 -0.0546,-0.177763 -0.0546,-0.06605 -0.14596,-0.06605 -0.0921,0 -0.15983,0.06768 -0.0669,0.06686 -0.0938,0.198149 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path6337" />
+              <path
+                 d="m 111.40384,38.127698 v -0.126392 h 0.63277 v 0.126392 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path6339" />
+              <path
+                 d="m 112.945,38.372327 q -0.0693,0.11416 -0.16716,0.172055 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158193 0.0603,-0.282138 0.0603,-0.124761 0.16145,-0.196519 0.10112,-0.07257 0.25034,-0.07257 0.0432,0 0.13047,0.009 0.013,0.0016 0.0391,0.0041 h 0.15249 v 0.643374 q 0,0.164717 0.0342,0.267461 h -0.15819 q -0.0179,-0.07502 -0.0285,-0.204673 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23403,0.108452 -0.093,0.108452 -0.093,0.295186 0,0.135361 0.0506,0.204672 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path6341" />
+              <path
+                 d="m 113.95613,38.372327 q -0.0693,0.11416 -0.16716,0.172055 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158193 0.0603,-0.282138 0.0603,-0.124761 0.16146,-0.196519 0.10111,-0.07257 0.25033,-0.07257 0.0432,0 0.13047,0.009 0.0131,0.0016 0.0391,0.0041 v -0.405269 h 0.15249 V 38.577 h -0.15249 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23402,0.108452 -0.093,0.108452 -0.093,0.295186 0,0.135361 0.0506,0.204672 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path6343" />
+              <path
+                 d="m 114.28067,38.577 v -0.910835 h 0.13292 v 0.20875 q 0.0628,-0.132915 0.11661,-0.183472 0.0546,-0.05056 0.11008,-0.05056 0.066,0 0.10601,0.05219 0.0408,0.05137 0.0408,0.146777 v 0.04893 q 0.0269,-0.08317 0.0644,-0.134546 0.0383,-0.05219 0.0791,-0.08236 0.0408,-0.03099 0.0938,-0.03099 0.0587,0 0.10029,0.04974 0.0416,0.04974 0.0416,0.198149 V 38.577 h -0.13291 v -0.622173 q 0,-0.07665 -0.005,-0.104375 -0.005,-0.02854 -0.0196,-0.04322 -0.0147,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.0913,0.06524 -0.0481,0.06442 -0.0987,0.214458 V 38.577 h -0.12721 v -0.621358 q 0,-0.120683 -0.0237,-0.141885 -0.0237,-0.0212 -0.0424,-0.0212 -0.0416,0 -0.0897,0.07257 -0.0473,0.07257 -0.0905,0.185918 V 38.577 Z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path6345" />
+              <path
+                 d="m 115.60575,38.577 v -0.784444 h -0.25279 v -0.126391 h 0.40446 v 0.784443 h 0.2536 V 38.577 Z m -0.0253,-1.239453 q 0,-0.05137 0.0351,-0.07665 0.0351,-0.02528 0.066,-0.02528 0.0318,0 0.0669,0.02528 0.0351,0.02528 0.0351,0.07665 0,0.05056 -0.0351,0.07583 -0.0351,0.02528 -0.0669,0.02528 -0.031,0 -0.066,-0.02528 -0.0351,-0.02528 -0.0351,-0.07583 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path6347" />
+              <path
+                 d="m 116.35187,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.0652,-0.105191 0.15737,-0.164717 0.0922,-0.05953 0.18429,-0.05953 0.0807,0 0.14678,0.04322 0.0661,0.0424 0.0921,0.111714 0.0269,0.06931 0.0269,0.272354 V 38.577 h -0.15167 v -0.527583 q 0,-0.131285 -0.0131,-0.172871 -0.0122,-0.0424 -0.0465,-0.06931 -0.0334,-0.02691 -0.0734,-0.02691 -0.0799,0 -0.17206,0.07584 -0.0913,0.07583 -0.15085,0.189995 V 38.577 Z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path6349" />
+            </g>
+            <g
+               aria-label="NAME"
+               id="text274"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.25441406,40.748001 H 0.10274414 v -1.265547 h 0.1484082 l 0.44767088,0.842339 0.0489258,0.125576 h 0.004077 L 0.747749,40.324793 v -0.842339 h 0.15166992 v 1.265547 H 0.747749 l -0.43543944,-0.828476 -0.0611572,-0.132915 0.003262,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6352" />
+              <path
+                 d="M 1.1864502,40.748001 H 1.0282568 L 1.4180322,39.482454 H 1.5851953 L 1.977417,40.748001 H 1.8037305 L 1.7172949,40.46994 H 1.2720703 Z M 1.3112109,40.343548 H 1.6806006 L 1.5281152,39.86326 1.4922363,39.736053 1.4604346,39.86326 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6354" />
+              <path
+                 d="m 2.1812744,40.748001 h -0.132915 v -1.265547 h 0.1655322 l 0.2919238,0.833369 0.2919238,-0.833369 h 0.1614551 v 1.265547 H 2.8075244 v -0.80646 l 0.00408,-0.110898 h -0.00408 l -0.035879,0.110898 -0.1957031,0.553677 H 2.4112256 L 2.2130762,39.941541 2.1812744,39.830643 h -0.00408 l 0.00408,0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6356" />
+              <path
+                 d="m 3.8529054,40.608563 v 0.139438 H 3.1695753 v -1.265547 h 0.6702832 v 0.127207 H 3.3342921 v 0.429732 h 0.4550098 v 0.126391 H 3.3342921 v 0.442779 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6358" />
+            </g>
+            <g
+               aria-label="READY"
+               id="text276"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 46.378215,40.210633 v 0.537368 h -0.164717 v -1.265547 h 0.338403 q 0.165533,0 0.243814,0.03425 0.07828,0.03343 0.120683,0.101929 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144332,0.110083 l 0.366128,0.591186 H 46.878071 L 46.54293,40.210635 Z m 0,-0.127207 h 0.230766 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06524,-0.14107 -0.06442,-0.053 -0.234843,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6361" />
+              <path
+                 d="m 47.942209,40.608563 v 0.139438 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505566 v 0.429732 h 0.455009 v 0.126391 h -0.455009 v 0.442779 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6363" />
+              <path
+                 d="m 48.279797,40.748001 h -0.158193 l 0.389775,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08644,-0.278061 h -0.445225 z m 0.124761,-0.404453 h 0.369389 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6365" />
+              <path
+                 d="m 49.222434,40.748001 v -1.265547 h 0.300078 q 0.207119,0 0.307417,0.07257 0.101113,0.07176 0.15167,0.21772 0.05056,0.145962 0.05056,0.345742 0,0.18918 -0.05382,0.332696 -0.053,0.1427 -0.150854,0.220166 -0.09785,0.07665 -0.304971,0.07665 z m 0.164717,-0.139438 h 0.110083 q 0.167163,0 0.238105,-0.05953 0.07176,-0.05953 0.101929,-0.164717 0.03099,-0.106005 0.03099,-0.291923 0,-0.181841 -0.03588,-0.279693 -0.03588,-0.09785 -0.102744,-0.150039 -0.06686,-0.053 -0.219351,-0.053 h -0.123129 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6367" />
+              <path
+                 d="m 50.516521,40.748001 v -0.585478 l -0.376729,-0.680069 h 0.186733 l 0.281324,0.502305 0.280507,-0.502305 h 0.168794 l -0.375913,0.680069 v 0.585478 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6369" />
+            </g>
+            <g
+               aria-label="SECRET"
+               id="text278"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 54.236024,40.721092 V 40.56616 q 0.195703,0.09296 0.355528,0.09296 0.06686,0 0.128022,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.0579 -0.16227,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135362,0 0.261753,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.10519,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.133731 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319648 0,0.146777 -0.106822,0.251968 -0.106821,0.10519 -0.34248,0.10519 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6372" />
+              <path
+                 d="m 55.958212,40.608563 v 0.139438 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505567 v 0.429732 h 0.45501 v 0.126391 h -0.45501 v 0.442779 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6374" />
+              <path
+                 d="m 56.997885,40.733323 q -0.141885,0.053 -0.254415,0.053 -0.148408,0 -0.273168,-0.0791 -0.124761,-0.07991 -0.194073,-0.236475 -0.06931,-0.157378 -0.06931,-0.355527 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.12476,-0.08073 0.274799,-0.08073 0.11253,0 0.254415,0.053 v 0.150039 q -0.131285,-0.07583 -0.260938,-0.07583 -0.09785,0 -0.179395,0.06686 -0.08073,0.06687 -0.130468,0.196519 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130468 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6376" />
+              <path
+                 d="m 57.398261,40.210633 v 0.537368 h -0.164717 v -1.265547 h 0.338403 q 0.165532,0 0.243814,0.03425 0.07828,0.03343 0.120683,0.101929 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591186 h -0.195703 l -0.335142,-0.537368 z m 0,-0.127207 h 0.230766 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06524,-0.14107 -0.06442,-0.053 -0.234843,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6378" />
+              <path
+                 d="m 58.962255,40.608563 v 0.139438 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505567 v 0.429732 h 0.45501 v 0.126391 h -0.45501 v 0.442779 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6380" />
+              <path
+                 d="m 59.533055,40.748001 v -1.126108 h -0.379174 v -0.139439 h 0.923881 v 0.139439 h -0.37999 v 1.126108 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6382" />
+            </g>
+            <g
+               aria-label="AGE"
+               id="text280"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 100.3851,40.748001 h -0.15819 l 0.38977,-1.265547 h 0.16716 l 0.39223,1.265547 h -0.17369 l -0.0864,-0.278061 h -0.44522 z m 0.12476,-0.404453 h 0.36939 l -0.15249,-0.480288 -0.0359,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6385" />
+              <path
+                 d="m 102.08853,40.747186 q -0.13373,0.03914 -0.24544,0.03914 -0.1582,0 -0.28214,-0.07828 -0.12313,-0.07828 -0.19326,-0.235659 -0.0701,-0.158193 -0.0701,-0.357158 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.19326,-0.23729 0.12476,-0.08073 0.27398,-0.08073 0.11253,0 0.25442,0.053 v 0.150039 q -0.13129,-0.07583 -0.26094,-0.07583 -0.0978,0 -0.1794,0.06686 -0.0807,0.06687 -0.13046,0.196519 -0.0489,0.128838 -0.0489,0.282139 0,0.205488 0.0938,0.374282 0.0938,0.168794 0.29601,0.168794 0.0261,0 0.0661,-0.0041 v -0.407715 h -0.1264 v -0.126392 h 0.29111 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6387" />
+              <path
+                 d="m 103.05155,40.608563 v 0.139438 h -0.68333 v -1.265547 h 0.67029 v 0.127207 h -0.50557 v 0.429732 h 0.45501 v 0.126391 h -0.45501 v 0.442779 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6389" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-apiserver"
+               id="text282"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,42.918999 V 42.21039 H 0.13617675 v -0.126391 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266645 0.0407715,-0.08644 0.12557617,-0.141885 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.05871 H 0.85130857 V 42.21039 H 0.49007323 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6392" />
+              <path
+                 d="m 1.5028369,42.944277 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,42.671108 1.07229,42.463174 q 0,-0.207935 0.1174219,-0.344112 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344112 0,0.207934 -0.1174218,0.344926 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6394" />
+              <path
+                 d="m 2.5041846,42.944277 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344926 0,-0.207935 0.1174219,-0.344112 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344112 0,0.207934 -0.1174219,0.344926 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6396" />
+              <path
+                 d="m 3.1891456,42.469697 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6398" />
+              <path
+                 d="m 4.1725537,42.918999 v -1.316104 h 0.1516699 v 0.826846 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,42.429741 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6400" />
+              <path
+                 d="m 5.8825096,42.008164 v 0.910835 H 5.7308397 v -0.199781 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6402" />
+              <path
+                 d="m 6.2747317,42.212837 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123946 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316104 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6404" />
+              <path
+                 d="m 7.8933595,42.858657 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.17858 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6406" />
+              <path
+                 d="m 8.2146387,42.918999 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6408" />
+              <path
+                 d="m 9.1385204,42.918999 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 v 0.508828 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07584 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6410" />
+              <path
+                 d="m 10.897402,42.858657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6412" />
+              <path
+                 d="m 11.902827,42.882304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 42.21039 H 11.0931 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 V 42.21039 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6414" />
+              <path
+                 d="m 12.900098,42.858657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6416" />
+              <path
+                 d="m 13.154512,42.870888 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6418" />
+              <path
+                 d="m 14.20397,42.469697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6420" />
+              <path
+                 d="m 15.286861,42.212837 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.151669,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6422" />
+              <path
+                 d="m 16.188726,42.918999 v -1.316104 h 0.15167 v 0.826846 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6424" />
+              <path
+                 d="m 17.404532,42.918999 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6426" />
+              <path
+                 d="m 18.20936,42.469697 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6428" />
+              <path
+                 d="m 19.750523,42.714326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6430" />
+              <path
+                 d="m 20.293598,42.212837 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6432" />
+              <path
+                 d="m 21.409922,42.918999 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6434" />
+              <path
+                 d="m 22.16664,42.870888 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145961,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6436" />
+              <path
+                 d="m 23.914922,42.858657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6438" />
+              <path
+                 d="m 24.236202,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 H 24.77357 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6440" />
+              <path
+                 d="m 25.456084,42.918999 -0.395483,-0.910835 h 0.166347 l 0.31231,0.72084 0.318833,-0.72084 h 0.15167 l -0.398745,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6442" />
+              <path
+                 d="m 26.918966,42.858657 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6444" />
+              <path
+                 d="m 27.240244,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6446" />
+            </g>
+            <g
+               aria-label="True"
+               id="text284"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 46.510314,42.918999 V 41.79289 H 46.13114 v -0.139438 h 0.923881 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6449" />
+              <path
+                 d="m 47.297204,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6451" />
+              <path
+                 d="m 48.970466,42.008164 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6453" />
+              <path
+                 d="m 49.979968,42.858657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6455" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-apiserver"
+               id="text286"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 54.446405,42.918999 V 42.21039 h -0.202227 v -0.126391 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126391 H 54.59807 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6458" />
+              <path
+                 d="m 55.610839,42.944277 q -0.195704,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6460" />
+              <path
+                 d="m 56.612186,42.944277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6462" />
+              <path
+                 d="m 57.297147,42.469697 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6464" />
+              <path
+                 d="m 58.280555,42.918999 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6466" />
+              <path
+                 d="m 59.990511,42.008164 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163085,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6468" />
+              <path
+                 d="m 60.382733,42.212837 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.17858,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6470" />
+              <path
+                 d="m 62.001361,42.858657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6472" />
+              <path
+                 d="m 62.32264,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145961 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6474" />
+              <path
+                 d="m 63.246522,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6476" />
+              <path
+                 d="m 65.005404,42.858657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6478" />
+              <path
+                 d="m 66.010829,42.882304 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 42.21039 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6480" />
+              <path
+                 d="m 67.0081,42.858657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6482" />
+              <path
+                 d="m 67.262514,42.870888 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6484" />
+              <path
+                 d="m 68.311972,42.469697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6486" />
+              <path
+                 d="m 69.394862,42.212837 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6488" />
+              <path
+                 d="m 70.296727,42.918999 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6490" />
+              <path
+                 d="m 71.512534,42.918999 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253598 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6492" />
+              <path
+                 d="m 72.317362,42.469697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6494" />
+              <path
+                 d="m 73.858525,42.714326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161456,-0.196519 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6496" />
+              <path
+                 d="m 74.4016,42.212837 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6498" />
+              <path
+                 d="m 75.517924,42.918999 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6500" />
+              <path
+                 d="m 76.274642,42.870888 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6502" />
+              <path
+                 d="m 78.022924,42.858657 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6504" />
+              <path
+                 d="m 78.344204,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6506" />
+              <path
+                 d="m 79.564086,42.918999 -0.395484,-0.910835 h 0.166348 l 0.31231,0.72084 0.318833,-0.72084 h 0.151669 l -0.398745,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6508" />
+              <path
+                 d="m 81.026967,42.858657 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6510" />
+              <path
+                 d="m 81.348246,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159008,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6512" />
+            </g>
+            <g
+               aria-label="61s"
+               id="text288"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 100.4381,42.325366 q 0.0587,-0.08725 0.14515,-0.141885 0.0872,-0.05545 0.19162,-0.05545 0.0987,0 0.18674,0.04811 0.0889,0.04811 0.13536,0.134546 0.0465,0.08562 0.0465,0.19978 0,0.18021 -0.11579,0.313941 -0.11498,0.132915 -0.30334,0.132915 -0.2218,0 -0.33188,-0.185103 -0.10927,-0.185918 -0.10927,-0.472133 0,-0.316387 0.13944,-0.499859 0.13944,-0.184287 0.37754,-0.184287 0.12803,0 0.24871,0.03751 v 0.153301 q -0.13536,-0.06442 -0.25523,-0.06442 -0.16961,0 -0.26257,0.155747 -0.093,0.155747 -0.093,0.394668 z m 0.29763,0.505566 q 0.0612,0 0.12313,-0.03588 0.062,-0.03669 0.097,-0.111713 0.0359,-0.07583 0.0359,-0.164717 0,-0.115791 -0.0603,-0.189995 -0.0595,-0.0742 -0.17043,-0.0742 -0.11497,0 -0.18918,0.08644 -0.0734,0.08562 -0.0734,0.20875 0,0.123945 0.0718,0.203042 0.0726,0.07828 0.16553,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6515" />
+              <path
+                 d="m 101.66451,42.792607 v -0.976885 q -0.0685,0.05463 -0.13292,0.09296 -0.0644,0.03833 -0.17694,0.07828 V 41.84997 q 0.17857,-0.07583 0.30986,-0.196518 h 0.15167 v 1.139155 h 0.30415 v 0.126392 h -0.76568 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6517" />
+              <path
+                 d="m 102.33968,42.870888 v -0.160639 q 0.0913,0.05953 0.19326,0.08399 0.10193,0.02365 0.17287,0.02365 0.11498,0 0.16553,-0.03669 0.0506,-0.03751 0.0506,-0.09296 0,-0.03669 -0.0236,-0.06279 -0.0236,-0.02609 -0.11742,-0.06442 l -0.0522,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.21364,-0.122314 -0.0448,-0.05545 -0.0448,-0.135362 0,-0.112529 0.0864,-0.185102 0.0872,-0.07257 0.28214,-0.07257 0.14596,0 0.27643,0.0424 v 0.137807 q -0.15004,-0.05382 -0.28214,-0.05382 -0.0962,0 -0.15086,0.03425 -0.0538,0.03343 -0.0538,0.08399 0,0.04893 0.0473,0.07828 0.0465,0.02936 0.15167,0.06768 l 0.10275,0.03751 q 0.14106,0.05137 0.19814,0.111714 0.0571,0.06034 0.0571,0.150854 0,0.118238 -0.0913,0.194888 -0.0905,0.07583 -0.2903,0.07583 -0.1745,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6519" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-apiserver-etcd-client"
+               id="text290"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,45.09 V 44.381392 H 0.13617675 V 44.255 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08644 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.0587 h 0.36123534 v 0.126392 H 0.49007323 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6522" />
+              <path
+                 d="m 1.5028369,45.115278 q -0.1957031,0 -0.313125,-0.136176 Q 1.07229,44.84211 1.07229,44.634175 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6524" />
+              <path
+                 d="m 2.5041846,45.115278 q -0.1957032,0 -0.313125,-0.136176 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6526" />
+              <path
+                 d="m 3.1891456,44.640698 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6528" />
+              <path
+                 d="m 4.1725537,45.09 v -1.316103 h 0.1516699 v 0.826845 L 4.7621094,44.179165 H 4.9643359 L 4.5272656,44.600742 4.9757519,45.09 H 4.767002 L 4.3242236,44.600742 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6530" />
+              <path
+                 d="M 5.8825096,44.179165 V 45.09 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6532" />
+              <path
+                 d="m 6.2747317,44.383838 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6534" />
+              <path
+                 d="m 7.8933595,45.029658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,44.546109 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6536" />
+              <path
+                 d="m 8.2146387,45.09 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05627 0.2046729,-0.05627 0.082358,0 0.1647168,0.02528 V 44.50778 H 8.7520069 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6538" />
+              <path
+                 d="m 9.1385204,45.09 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 V 45.09 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07583 -0.1508545,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6540" />
+              <path
+                 d="m 10.897402,45.029658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6542" />
+              <path
+                 d="m 11.902827,45.053306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 44.255 h 0.227505 v -0.366943 h 0.15167 V 44.255 h 0.405269 v 0.126392 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6544" />
+              <path
+                 d="m 12.900098,45.029658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6546" />
+              <path
+                 d="m 13.154512,45.04189 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 V 44.3341 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6548" />
+              <path
+                 d="m 14.20397,44.640698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6550" />
+              <path
+                 d="m 15.286861,44.383838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.151669,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6552" />
+              <path
+                 d="m 16.188726,45.09 v -1.316103 h 0.15167 v 0.826845 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 16.340396,44.600742 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6554" />
+              <path
+                 d="m 17.404532,45.09 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 45.09 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6556" />
+              <path
+                 d="m 18.20936,44.640698 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6558" />
+              <path
+                 d="m 19.750523,44.885327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6560" />
+              <path
+                 d="m 20.293598,44.383838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6562" />
+              <path
+                 d="m 21.409922,45.09 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 45.09 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6564" />
+              <path
+                 d="m 22.16664,45.04189 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145961,0 0.27643,0.0424 V 44.3341 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6566" />
+              <path
+                 d="m 23.914922,45.029658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6568" />
+              <path
+                 d="m 24.236202,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 V 44.50778 H 24.77357 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6570" />
+              <path
+                 d="m 25.456084,45.09 -0.395483,-0.910835 h 0.166347 l 0.31231,0.72084 0.318833,-0.72084 h 0.15167 L 25.611016,45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6572" />
+              <path
+                 d="m 26.918966,45.029658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6574" />
+              <path
+                 d="m 27.240244,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6576" />
+              <path
+                 d="m 28.222838,44.640698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6578" />
+              <path
+                 d="m 29.923007,45.029658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6580" />
+              <path
+                 d="m 30.928433,45.053306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 44.255 h 0.227505 v -0.366943 h 0.15167 V 44.255 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6582" />
+              <path
+                 d="m 31.934672,45.063906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6584" />
+              <path
+                 d="m 32.777827,44.885327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152486 V 45.09 h -0.152486 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6586" />
+              <path
+                 d="m 33.229574,44.640698 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6588" />
+              <path
+                 d="m 34.938718,45.063906 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326171,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6590" />
+              <path
+                 d="m 35.418189,45.09 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6592" />
+              <path
+                 d="m 36.430136,45.09 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 45.09 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6594" />
+              <path
+                 d="m 37.933788,45.029658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6596" />
+              <path
+                 d="m 38.177604,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6598" />
+              <path
+                 d="m 39.940562,45.053306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 44.255 h 0.227505 v -0.366943 h 0.15167 V 44.255 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6600" />
+            </g>
+            <g
+               aria-label="True"
+               id="text292"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 46.510314,45.09 V 43.963892 H 46.13114 v -0.139439 h 0.923881 v 0.139439 h -0.37999 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6603" />
+              <path
+                 d="m 47.297204,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6605" />
+              <path
+                 d="M 48.970466,44.179165 V 45.09 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6607" />
+              <path
+                 d="m 49.979968,45.029658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6609" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-apiserver-etcd-client"
+               id="text294"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 54.446405,45.09 V 44.381392 H 54.244178 V 44.255 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.0587 h 0.361235 v 0.126392 h -0.36123 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6612" />
+              <path
+                 d="m 55.610839,45.115278 q -0.195704,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6614" />
+              <path
+                 d="m 56.612186,45.115278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6616" />
+              <path
+                 d="m 57.297147,44.640698 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6618" />
+              <path
+                 d="m 58.280555,45.09 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 L 58.635267,44.600742 59.083754,45.09 h -0.20875 L 58.432225,44.600742 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6620" />
+              <path
+                 d="M 59.990511,44.179165 V 45.09 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163085,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6622" />
+              <path
+                 d="m 60.382733,44.383838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.17858,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6624" />
+              <path
+                 d="m 62.001361,45.029658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6626" />
+              <path
+                 d="m 62.32264,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145961 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6628" />
+              <path
+                 d="m 63.246522,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6630" />
+              <path
+                 d="m 65.005404,45.029658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 64.39954,44.546109 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6632" />
+              <path
+                 d="m 66.010829,45.053306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 44.255 h 0.227505 v -0.366943 h 0.15167 V 44.255 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6634" />
+              <path
+                 d="m 67.0081,45.029658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6636" />
+              <path
+                 d="m 67.262514,45.04189 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 V 44.3341 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6638" />
+              <path
+                 d="m 68.311972,44.640698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6640" />
+              <path
+                 d="m 69.394862,44.383838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6642" />
+              <path
+                 d="m 70.296727,45.09 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 H 71.08851 L 70.651439,44.600742 71.099926,45.09 h -0.20875 L 70.448397,44.600742 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6644" />
+              <path
+                 d="m 71.512534,45.09 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 V 45.09 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6646" />
+              <path
+                 d="m 72.317362,44.640698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6648" />
+              <path
+                 d="m 73.858525,44.885327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161456,-0.196518 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6650" />
+              <path
+                 d="m 74.4016,44.383838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6652" />
+              <path
+                 d="m 75.517924,45.09 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 45.09 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6654" />
+              <path
+                 d="m 76.274642,45.04189 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 V 44.3341 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6656" />
+              <path
+                 d="m 78.022924,45.029658 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 77.41706,44.546109 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6658" />
+              <path
+                 d="m 78.344204,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6660" />
+              <path
+                 d="m 79.564086,45.09 -0.395484,-0.910835 h 0.166348 l 0.31231,0.72084 0.318833,-0.72084 h 0.151669 L 79.719017,45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6662" />
+              <path
+                 d="m 81.026967,45.029658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6664" />
+              <path
+                 d="m 81.348246,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6666" />
+              <path
+                 d="m 82.330839,44.640698 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6668" />
+              <path
+                 d="m 84.031009,45.029658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6670" />
+              <path
+                 d="m 85.036435,45.053306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 44.255 h 0.227505 v -0.366943 h 0.15167 V 44.255 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6672" />
+              <path
+                 d="m 86.042674,45.063906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106005,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6674" />
+              <path
+                 d="m 86.885829,44.885327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 V 45.09 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6676" />
+              <path
+                 d="m 87.337576,44.640698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6678" />
+              <path
+                 d="m 89.046719,45.063906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6680" />
+              <path
+                 d="m 89.526191,45.09 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6682" />
+              <path
+                 d="m 90.538138,45.09 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 45.09 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6684" />
+              <path
+                 d="m 92.041789,45.029658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6686" />
+              <path
+                 d="m 92.285606,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157377,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6688" />
+              <path
+                 d="m 94.048564,45.053306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 44.255 h 0.227505 v -0.366943 h 0.15167 V 44.255 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231583,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6690" />
+            </g>
+            <g
+               aria-label="61s"
+               id="text296"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 100.4381,44.496367 q 0.0587,-0.08725 0.14515,-0.141884 0.0872,-0.05545 0.19162,-0.05545 0.0987,0 0.18674,0.04811 0.0889,0.04811 0.13536,0.134546 0.0465,0.08562 0.0465,0.19978 0,0.18021 -0.11579,0.31394 -0.11498,0.132915 -0.30334,0.132915 -0.2218,0 -0.33188,-0.185102 -0.10927,-0.185918 -0.10927,-0.472134 0,-0.316387 0.13944,-0.499858 0.13944,-0.184287 0.37754,-0.184287 0.12803,0 0.24871,0.03751 v 0.153301 q -0.13536,-0.06442 -0.25523,-0.06442 -0.16961,0 -0.26257,0.155747 -0.093,0.155747 -0.093,0.394668 z m 0.29763,0.505567 q 0.0612,0 0.12313,-0.03588 0.062,-0.03669 0.097,-0.111714 0.0359,-0.07583 0.0359,-0.164717 0,-0.115791 -0.0603,-0.189995 -0.0595,-0.0742 -0.17043,-0.0742 -0.11497,0 -0.18918,0.08644 -0.0734,0.08562 -0.0734,0.20875 0,0.123945 0.0718,0.203042 0.0726,0.07828 0.16553,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6693" />
+              <path
+                 d="m 101.66451,44.963609 v -0.976885 q -0.0685,0.05463 -0.13292,0.09296 -0.0644,0.03833 -0.17694,0.07828 v -0.136992 q 0.17857,-0.07583 0.30986,-0.196519 h 0.15167 v 1.139156 h 0.30415 V 45.09 h -0.76568 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6695" />
+              <path
+                 d="m 102.33968,45.04189 v -0.16064 q 0.0913,0.05953 0.19326,0.08399 0.10193,0.02365 0.17287,0.02365 0.11498,0 0.16553,-0.03669 0.0506,-0.03751 0.0506,-0.09296 0,-0.0367 -0.0236,-0.06279 -0.0236,-0.02609 -0.11742,-0.06442 l -0.0522,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.21364,-0.122314 -0.0448,-0.05545 -0.0448,-0.135361 0,-0.11253 0.0864,-0.185103 0.0872,-0.07257 0.28214,-0.07257 0.14596,0 0.27643,0.0424 V 44.3341 q -0.15004,-0.05382 -0.28214,-0.05382 -0.0962,0 -0.15086,0.03425 -0.0538,0.03343 -0.0538,0.08399 0,0.04893 0.0473,0.07828 0.0465,0.02936 0.15167,0.06768 l 0.10275,0.03751 q 0.14106,0.05137 0.19814,0.111714 0.0571,0.06034 0.0571,0.150855 0,0.118237 -0.0913,0.194888 -0.0905,0.07583 -0.2903,0.07583 -0.1745,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6697" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-apiserver-kubelet-client"
+               id="text298"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,47.261002 V 46.552393 H 0.13617675 v -0.126391 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266645 0.0407715,-0.08644 0.12557617,-0.141885 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205489 v 0.05871 h 0.36123534 v 0.126391 H 0.49007323 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6700" />
+              <path
+                 d="m 1.5028369,47.28628 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,47.013111 1.07229,46.805176 q 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6702" />
+              <path
+                 d="m 2.5041846,47.28628 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6704" />
+              <path
+                 d="M 3.1891456,46.8117 V 46.685308 H 3.8219191 V 46.8117 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6706" />
+              <path
+                 d="m 4.1725537,47.261002 v -1.316104 h 0.1516699 v 0.826846 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,46.771744 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6708" />
+              <path
+                 d="m 5.8825096,46.350167 v 0.910835 H 5.7308397 v -0.199781 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6710" />
+              <path
+                 d="m 6.2747317,46.554839 q 0.070127,-0.11416 0.1671631,-0.172055 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316104 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6712" />
+              <path
+                 d="m 7.8933595,47.20066 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,46.71711 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6714" />
+              <path
+                 d="m 8.2146387,47.261002 v -0.910835 h 0.1516699 v 0.198964 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 V 46.47085 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6716" />
+              <path
+                 d="m 9.1385204,47.261002 v -0.910835 h 0.1516699 v 0.198964 q 0.065234,-0.10519 0.157378,-0.164716 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508829 H 9.7460155 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6718" />
+              <path
+                 d="m 10.897402,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6720" />
+              <path
+                 d="m 11.902827,47.224307 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 46.552424 H 11.0931 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6722" />
+              <path
+                 d="m 12.900098,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6724" />
+              <path
+                 d="m 13.154512,47.212891 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6726" />
+              <path
+                 d="m 14.20397,46.8117 v -0.126392 h 0.632773 V 46.8117 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6728" />
+              <path
+                 d="m 15.286861,46.554839 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.151669,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6730" />
+              <path
+                 d="m 16.188726,47.261002 v -1.316104 h 0.15167 v 0.826846 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6732" />
+              <path
+                 d="m 17.404532,47.261002 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239454 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6734" />
+              <path
+                 d="m 18.20936,46.8117 v -0.126392 h 0.632774 V 46.8117 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6736" />
+              <path
+                 d="m 19.750523,47.056329 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6738" />
+              <path
+                 d="m 20.293598,46.554839 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6740" />
+              <path
+                 d="m 21.409922,47.261002 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239454 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6742" />
+              <path
+                 d="m 22.16664,47.212891 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145961,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6744" />
+              <path
+                 d="m 23.914922,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6746" />
+              <path
+                 d="m 24.236202,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 H 24.77357 V 46.47085 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6748" />
+              <path
+                 d="m 25.456084,47.261002 -0.395483,-0.910835 h 0.166347 l 0.31231,0.720839 0.318833,-0.720839 h 0.15167 l -0.398745,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6750" />
+              <path
+                 d="m 26.918966,47.20066 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6752" />
+              <path
+                 d="m 27.240244,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 H 27.777612 V 46.47085 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6754" />
+              <path
+                 d="m 28.222838,46.8117 v -0.126392 h 0.632773 V 46.8117 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6756" />
+              <path
+                 d="m 29.206245,47.261002 v -1.316104 h 0.15167 v 0.826846 L 29.7958,46.350167 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6758" />
+              <path
+                 d="m 30.916202,46.350167 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.151669 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6760" />
+              <path
+                 d="m 31.308422,46.554839 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161456,0.196519 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6762" />
+              <path
+                 d="m 32.927051,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6764" />
+              <path
+                 d="m 33.415492,47.261002 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6766" />
+              <path
+                 d="m 34.929748,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6768" />
+              <path
+                 d="m 35.935172,47.224307 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366975 h -0.2275 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6770" />
+              <path
+                 d="m 36.233618,46.8117 v -0.126392 h 0.632773 V 46.8117 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6772" />
+              <path
+                 d="m 37.942757,47.234908 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242182,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6774" />
+              <path
+                 d="m 38.422233,47.261002 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6776" />
+              <path
+                 d="m 39.43418,47.261002 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z M 39.4089,46.021548 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6778" />
+              <path
+                 d="m 40.937831,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6780" />
+              <path
+                 d="m 41.181647,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.06524,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6782" />
+              <path
+                 d="m 42.944605,47.224307 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6784" />
+            </g>
+            <g
+               aria-label="True"
+               id="text300"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 46.510314,47.261002 V 46.134893 H 46.13114 v -0.139438 h 0.923881 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6787" />
+              <path
+                 d="m 47.297204,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 H 47.834572 V 46.47085 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6789" />
+              <path
+                 d="m 48.970466,46.350167 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6791" />
+              <path
+                 d="m 49.979968,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6793" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-apiserver-kubelet-client"
+               id="text302"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 54.446405,47.261002 v -0.708609 h -0.202227 v -0.126391 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 v 0.05871 h 0.361235 v 0.126391 H 54.59807 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6796" />
+              <path
+                 d="m 55.610839,47.28628 q -0.195704,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6798" />
+              <path
+                 d="m 56.612186,47.28628 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6800" />
+              <path
+                 d="m 57.297147,46.8117 v -0.126392 h 0.632774 V 46.8117 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6802" />
+              <path
+                 d="m 58.280555,47.261002 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6804" />
+              <path
+                 d="m 59.990511,46.350167 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163085,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6806" />
+              <path
+                 d="m 60.382733,46.554839 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.17858,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6808" />
+              <path
+                 d="m 62.001361,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6810" />
+              <path
+                 d="m 62.32264,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 H 62.860009 V 46.47085 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6812" />
+              <path
+                 d="m 63.246522,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.06523,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6814" />
+              <path
+                 d="m 65.005404,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 64.39954,46.71711 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6816" />
+              <path
+                 d="m 66.010829,47.224307 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6818" />
+              <path
+                 d="m 67.0081,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6820" />
+              <path
+                 d="m 67.262514,47.212891 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6822" />
+              <path
+                 d="m 68.311972,46.8117 v -0.126392 h 0.632773 V 46.8117 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6824" />
+              <path
+                 d="m 69.394862,46.554839 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6826" />
+              <path
+                 d="m 70.296727,47.261002 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6828" />
+              <path
+                 d="m 71.512534,47.261002 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253598 v 0.126392 z m -0.02528,-1.239454 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6830" />
+              <path
+                 d="m 72.317362,46.8117 v -0.126392 h 0.632773 V 46.8117 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6832" />
+              <path
+                 d="m 73.858525,47.056329 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161456,-0.196519 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6834" />
+              <path
+                 d="m 74.4016,46.554839 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6836" />
+              <path
+                 d="m 75.517924,47.261002 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239454 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6838" />
+              <path
+                 d="m 76.274642,47.212891 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6840" />
+              <path
+                 d="m 78.022924,47.20066 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 77.41706,46.71711 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6842" />
+              <path
+                 d="m 78.344204,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 H 78.881572 V 46.47085 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6844" />
+              <path
+                 d="m 79.564086,47.261002 -0.395484,-0.910835 h 0.166348 l 0.31231,0.720839 0.318833,-0.720839 h 0.151669 l -0.398745,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6846" />
+              <path
+                 d="m 81.026967,47.20066 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6848" />
+              <path
+                 d="m 81.348246,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 H 81.885614 V 46.47085 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159008,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6850" />
+              <path
+                 d="m 82.330839,46.8117 v -0.126392 h 0.632774 V 46.8117 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6852" />
+              <path
+                 d="m 83.314246,47.261002 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6854" />
+              <path
+                 d="m 85.024203,46.350167 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6856" />
+              <path
+                 d="m 85.416424,46.554839 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6858" />
+              <path
+                 d="m 87.035053,47.20066 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6860" />
+              <path
+                 d="M 87.523494,47.261002 V 46.072105 H 87.25114 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6862" />
+              <path
+                 d="m 89.03775,47.20066 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6864" />
+              <path
+                 d="m 90.043173,47.224307 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.151669 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6866" />
+              <path
+                 d="m 90.34162,46.8117 v -0.126392 h 0.632773 V 46.8117 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6868" />
+              <path
+                 d="m 92.050759,47.234908 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242183,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6870" />
+              <path
+                 d="m 92.530235,47.261002 v -1.188897 h -0.272354 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6872" />
+              <path
+                 d="m 93.542182,47.261002 v -0.784444 h -0.252784 v -0.126391 h 0.404454 v 0.784443 h 0.253598 v 0.126392 z m -0.02528,-1.239454 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6874" />
+              <path
+                 d="m 95.045833,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6876" />
+              <path
+                 d="m 95.289649,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.06523,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6878" />
+              <path
+                 d="m 97.052607,47.224307 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174501,-0.03669 -0.0791,-0.0367 -0.119869,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 46.552424 H 96.24288 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 H 96.62206 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6880" />
+            </g>
+            <g
+               aria-label="61s"
+               id="text304"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 100.4381,46.667369 q 0.0587,-0.08725 0.14515,-0.141885 0.0872,-0.05545 0.19162,-0.05545 0.0987,0 0.18674,0.04811 0.0889,0.04811 0.13536,0.134546 0.0465,0.08562 0.0465,0.19978 0,0.18021 -0.11579,0.313941 -0.11498,0.132915 -0.30334,0.132915 -0.2218,0 -0.33188,-0.185103 -0.10927,-0.185918 -0.10927,-0.472134 0,-0.316386 0.13944,-0.499858 0.13944,-0.184287 0.37754,-0.184287 0.12803,0 0.24871,0.03751 v 0.153301 q -0.13536,-0.06442 -0.25523,-0.06442 -0.16961,0 -0.26257,0.155747 -0.093,0.155747 -0.093,0.394668 z m 0.29763,0.505566 q 0.0612,0 0.12313,-0.03588 0.062,-0.03669 0.097,-0.111714 0.0359,-0.07584 0.0359,-0.164716 0,-0.115791 -0.0603,-0.189995 -0.0595,-0.0742 -0.17043,-0.0742 -0.11497,0 -0.18918,0.08644 -0.0734,0.08562 -0.0734,0.20875 0,0.123945 0.0718,0.203042 0.0726,0.07828 0.16553,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6883" />
+              <path
+                 d="m 101.66451,47.13461 v -0.976885 q -0.0685,0.05463 -0.13292,0.09296 -0.0644,0.03833 -0.17694,0.07828 v -0.136992 q 0.17857,-0.07583 0.30986,-0.196518 h 0.15167 v 1.139155 h 0.30415 v 0.126392 h -0.76568 V 47.13461 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6885" />
+              <path
+                 d="m 102.33968,47.212891 v -0.160639 q 0.0913,0.05953 0.19326,0.08399 0.10193,0.02365 0.17287,0.02365 0.11498,0 0.16553,-0.03669 0.0506,-0.03751 0.0506,-0.09296 0,-0.03669 -0.0236,-0.06279 -0.0236,-0.02609 -0.11742,-0.06442 l -0.0522,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.21364,-0.122315 -0.0448,-0.05545 -0.0448,-0.135361 0,-0.112529 0.0864,-0.185102 0.0872,-0.07257 0.28214,-0.07257 0.14596,0 0.27643,0.0424 v 0.137807 q -0.15004,-0.05382 -0.28214,-0.05382 -0.0962,0 -0.15086,0.03425 -0.0538,0.03343 -0.0538,0.08399 0,0.04893 0.0473,0.07828 0.0465,0.02936 0.15167,0.06768 l 0.10275,0.03751 q 0.14106,0.05137 0.19814,0.111714 0.0571,0.06034 0.0571,0.150854 0,0.118238 -0.0913,0.194888 -0.0905,0.07583 -0.2903,0.07583 -0.1745,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6887" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-ca"
+               id="text306"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,49.431999 V 48.723391 H 0.13617675 v -0.126392 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08644 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.05871 H 0.85130859 V 48.7234 H 0.49007323 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6890" />
+              <path
+                 d="m 1.5028369,49.457278 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,49.184109 1.07229,48.976174 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6892" />
+              <path
+                 d="m 2.5041846,49.457278 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6894" />
+              <path
+                 d="m 3.1891456,48.982697 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6896" />
+              <path
+                 d="m 4.1725537,49.431999 v -1.316103 h 0.1516699 v 0.826845 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,48.942741 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6898" />
+              <path
+                 d="m 5.8825096,48.521164 v 0.910835 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05627 -0.1793945,0.05627 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 Q 5.1233449,49.232224 5.1233449,49.03 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07584 0.1524853,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6900" />
+              <path
+                 d="m 6.2747317,48.725837 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204672 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6902" />
+              <path
+                 d="m 7.8933595,49.371657 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,48.888108 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6904" />
+              <path
+                 d="m 8.2146387,49.431999 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05627 0.2046729,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6906" />
+              <path
+                 d="m 9.1385204,49.431999 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6908" />
+              <path
+                 d="m 10.897402,49.371657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6910" />
+              <path
+                 d="m 11.902827,49.395305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 48.723413 H 11.0931 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6912" />
+              <path
+                 d="m 12.900098,49.371657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6914" />
+              <path
+                 d="m 13.154512,49.383889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6916" />
+              <path
+                 d="m 14.20397,48.982697 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6918" />
+              <path
+                 d="m 15.286861,48.725837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.151669,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6920" />
+              <path
+                 d="m 16.188726,49.431999 v -1.316103 h 0.15167 v 0.826845 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6922" />
+              <path
+                 d="m 17.404532,49.431999 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6924" />
+              <path
+                 d="m 18.20936,48.982697 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6926" />
+              <path
+                 d="m 19.918502,49.405905 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326171,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6928" />
+              <path
+                 d="m 20.75187,49.227326 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 H 20.78041 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6930" />
+            </g>
+            <g
+               aria-label="True"
+               id="text308"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 46.510314,49.431999 V 48.305891 H 46.13114 v -0.139439 h 0.923881 v 0.139439 h -0.37999 v 1.126108 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6933" />
+              <path
+                 d="m 47.297204,49.431999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6935" />
+              <path
+                 d="m 48.970466,48.521164 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07584 0.152485,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6937" />
+              <path
+                 d="m 49.979968,49.371657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6939" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-ca"
+               id="text310"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 54.446405,49.431999 v -0.708608 h -0.202227 v -0.126392 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 V 48.7234 H 54.59807 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6942" />
+              <path
+                 d="m 55.610839,49.457278 q -0.195704,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6944" />
+              <path
+                 d="m 56.612186,49.457278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6946" />
+              <path
+                 d="m 57.297147,48.982697 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6948" />
+              <path
+                 d="m 58.280555,49.431999 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6950" />
+              <path
+                 d="m 59.990511,48.521164 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163085,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152485,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6952" />
+              <path
+                 d="m 60.382733,48.725837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.17858,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6954" />
+              <path
+                 d="m 62.001361,49.371657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6956" />
+              <path
+                 d="m 62.32264,49.431999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145961 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6958" />
+              <path
+                 d="m 63.246522,49.431999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6960" />
+              <path
+                 d="m 65.005404,49.371657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 64.39954,48.888108 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6962" />
+              <path
+                 d="m 66.010829,49.395305 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6964" />
+              <path
+                 d="m 67.0081,49.371657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6966" />
+              <path
+                 d="m 67.262514,49.383889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6968" />
+              <path
+                 d="m 68.311972,48.982697 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6970" />
+              <path
+                 d="m 69.394862,48.725837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6972" />
+              <path
+                 d="m 70.296727,49.431999 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6974" />
+              <path
+                 d="m 71.512534,49.431999 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6976" />
+              <path
+                 d="m 72.317362,48.982697 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6978" />
+              <path
+                 d="m 74.026503,49.405905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07746,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6980" />
+              <path
+                 d="m 74.859871,49.227326 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6982" />
+            </g>
+            <g
+               aria-label="61s"
+               id="text312"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 100.4381,48.838366 q 0.0587,-0.08725 0.14515,-0.141884 0.0872,-0.05545 0.19162,-0.05545 0.0987,0 0.18674,0.04811 0.0889,0.04811 0.13536,0.134546 0.0465,0.08562 0.0465,0.19978 0,0.18021 -0.11579,0.31394 -0.11498,0.132915 -0.30334,0.132915 -0.2218,0 -0.33188,-0.185102 -0.10927,-0.185918 -0.10927,-0.472134 0,-0.316387 0.13944,-0.499858 0.13944,-0.184287 0.37754,-0.184287 0.12803,0 0.24871,0.03751 v 0.153301 q -0.13536,-0.06442 -0.25523,-0.06442 -0.16961,0 -0.26257,0.155747 -0.093,0.155747 -0.093,0.394668 z m 0.29763,0.505567 q 0.0612,0 0.12313,-0.03588 0.062,-0.03669 0.097,-0.111714 0.0359,-0.07583 0.0359,-0.164717 0,-0.115791 -0.0603,-0.189995 -0.0595,-0.0742 -0.17043,-0.0742 -0.11497,0 -0.18918,0.08644 -0.0734,0.08562 -0.0734,0.20875 0,0.123945 0.0718,0.203042 0.0726,0.07828 0.16553,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6985" />
+              <path
+                 d="m 101.66451,49.305608 v -0.976885 q -0.0685,0.05463 -0.13292,0.09296 -0.0644,0.03833 -0.17694,0.07828 v -0.136992 q 0.17857,-0.07584 0.30986,-0.196519 h 0.15167 v 1.139156 h 0.30415 v 0.126391 h -0.76568 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6987" />
+              <path
+                 d="m 102.33968,49.383889 v -0.16064 q 0.0913,0.05953 0.19326,0.08399 0.10193,0.02365 0.17287,0.02365 0.11498,0 0.16553,-0.03669 0.0506,-0.03751 0.0506,-0.09296 0,-0.0367 -0.0236,-0.06279 -0.0236,-0.02609 -0.11742,-0.06442 l -0.0522,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.21364,-0.122314 -0.0448,-0.05545 -0.0448,-0.135361 0,-0.11253 0.0864,-0.185103 0.0872,-0.07257 0.28214,-0.07257 0.14596,0 0.27643,0.0424 v 0.137808 q -0.15004,-0.05382 -0.28214,-0.05382 -0.0962,0 -0.15086,0.03425 -0.0538,0.03343 -0.0538,0.08399 0,0.04893 0.0473,0.07828 0.0465,0.02936 0.15167,0.06768 l 0.10275,0.03751 q 0.14106,0.05137 0.19814,0.111713 0.0571,0.06034 0.0571,0.150855 0,0.118237 -0.0913,0.194888 -0.0905,0.07584 -0.2903,0.07584 -0.1745,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6989" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-etcd-ca"
+               id="text314"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,51.603001 V 50.894392 H 0.13617675 v -0.126391 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266645 0.0407715,-0.08644 0.12557617,-0.141885 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205489 v 0.05871 h 0.36123534 v 0.126391 H 0.49007323 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6992" />
+              <path
+                 d="m 1.5028369,51.628279 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,51.35511 1.07229,51.147175 q 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6994" />
+              <path
+                 d="m 2.5041846,51.628279 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6996" />
+              <path
+                 d="m 3.1891456,51.153699 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6998" />
+              <path
+                 d="m 4.1725537,51.603001 v -1.316104 h 0.1516699 v 0.826846 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,51.113743 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7000" />
+              <path
+                 d="m 5.8825096,50.692166 v 0.910835 H 5.7308397 V 51.40322 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7002" />
+              <path
+                 d="m 6.2747317,50.896839 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316104 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7004" />
+              <path
+                 d="m 7.8933595,51.542659 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7006" />
+              <path
+                 d="m 8.2146387,51.603001 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 V 51.02079 H 8.7520069 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7008" />
+              <path
+                 d="m 9.1385204,51.603001 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 V 51.603 H 9.7460155 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7010" />
+              <path
+                 d="m 10.897402,51.542659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7012" />
+              <path
+                 d="m 11.902827,51.566306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 50.894423 H 11.0931 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7014" />
+              <path
+                 d="m 12.900098,51.542659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7016" />
+              <path
+                 d="m 13.154512,51.55489 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 V 50.8471 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7018" />
+              <path
+                 d="m 14.20397,51.153699 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7020" />
+              <path
+                 d="m 15.286861,50.896839 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.151669,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7022" />
+              <path
+                 d="m 16.188726,51.603001 v -1.316104 h 0.15167 v 0.826846 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7024" />
+              <path
+                 d="m 17.404532,51.603001 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7026" />
+              <path
+                 d="m 18.20936,51.153699 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7028" />
+              <path
+                 d="m 19.909532,51.542659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7030" />
+              <path
+                 d="m 20.914956,51.566306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7032" />
+              <path
+                 d="m 21.921197,51.576907 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326171,-0.136993 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242182,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7034" />
+              <path
+                 d="m 22.76435,51.398328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 H 22.76435 Z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7036" />
+              <path
+                 d="m 23.216099,51.153699 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7038" />
+              <path
+                 d="m 24.92524,51.576907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242183,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7040" />
+              <path
+                 d="m 25.758608,51.398328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7042" />
+            </g>
+            <g
+               aria-label="True"
+               id="text316"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 46.510314,51.603001 V 50.476892 H 46.13114 v -0.139438 h 0.923881 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7045" />
+              <path
+                 d="m 47.297204,51.603001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7047" />
+              <path
+                 d="m 48.970466,50.692166 v 0.910835 h -0.15167 V 51.40322 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7049" />
+              <path
+                 d="m 49.979968,51.542659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7051" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-etcd-ca"
+               id="text318"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 54.446405,51.603001 v -0.708609 h -0.202227 v -0.126391 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 v 0.05871 h 0.361235 v 0.126391 H 54.59807 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7054" />
+              <path
+                 d="m 55.610839,51.628279 q -0.195704,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7056" />
+              <path
+                 d="m 56.612186,51.628279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7058" />
+              <path
+                 d="m 57.297147,51.153699 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7060" />
+              <path
+                 d="m 58.280555,51.603001 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7062" />
+              <path
+                 d="m 59.990511,50.692166 v 0.910835 h -0.15167 V 51.40322 q -0.07339,0.11253 -0.163085,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7064" />
+              <path
+                 d="m 60.382733,50.896839 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.17858,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7066" />
+              <path
+                 d="m 62.001361,51.542659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7068" />
+              <path
+                 d="m 62.32264,51.603001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145961 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7070" />
+              <path
+                 d="m 63.246522,51.603001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 51.603 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7072" />
+              <path
+                 d="m 65.005404,51.542659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7074" />
+              <path
+                 d="m 66.010829,51.566306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7076" />
+              <path
+                 d="m 67.0081,51.542659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7078" />
+              <path
+                 d="m 67.262514,51.55489 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 V 50.8471 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7080" />
+              <path
+                 d="m 68.311972,51.153699 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7082" />
+              <path
+                 d="m 69.394862,50.896839 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7084" />
+              <path
+                 d="m 70.296727,51.603001 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7086" />
+              <path
+                 d="m 71.512534,51.603001 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253598 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7088" />
+              <path
+                 d="m 72.317362,51.153699 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7090" />
+              <path
+                 d="m 74.017534,51.542659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 H 73.4027 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7092" />
+              <path
+                 d="m 75.022957,51.566306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.151669 v 0.366944 h 0.405269 v 0.126391 H 74.59241 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7094" />
+              <path
+                 d="m 76.029198,51.576907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07746,0.111713 0.242182,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7096" />
+              <path
+                 d="m 76.872352,51.398328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.17858,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7098" />
+              <path
+                 d="m 77.324101,51.153699 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7100" />
+              <path
+                 d="m 79.033242,51.576907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242183,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7102" />
+              <path
+                 d="m 79.86661,51.398328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 H 79.89515 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7104" />
+            </g>
+            <g
+               aria-label="61s"
+               id="text320"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 100.4381,51.009368 q 0.0587,-0.08725 0.14515,-0.141885 0.0872,-0.05545 0.19162,-0.05545 0.0987,0 0.18674,0.04811 0.0889,0.04811 0.13536,0.134546 0.0465,0.08562 0.0465,0.19978 0,0.18021 -0.11579,0.313941 -0.11498,0.132915 -0.30334,0.132915 -0.2218,0 -0.33188,-0.185103 -0.10927,-0.185918 -0.10927,-0.472133 0,-0.316387 0.13944,-0.499859 0.13944,-0.184287 0.37754,-0.184287 0.12803,0 0.24871,0.03751 v 0.153301 q -0.13536,-0.06442 -0.25523,-0.06442 -0.16961,0 -0.26257,0.155747 -0.093,0.155747 -0.093,0.394668 z m 0.29763,0.505566 q 0.0612,0 0.12313,-0.03588 0.062,-0.03669 0.097,-0.111714 0.0359,-0.07583 0.0359,-0.164716 0,-0.115791 -0.0603,-0.189995 -0.0595,-0.0742 -0.17043,-0.0742 -0.11497,0 -0.18918,0.08644 -0.0734,0.08562 -0.0734,0.20875 0,0.123945 0.0718,0.203042 0.0726,0.07828 0.16553,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7107" />
+              <path
+                 d="m 101.66451,51.476609 v -0.976885 q -0.0685,0.05463 -0.13292,0.09296 -0.0644,0.03833 -0.17694,0.07828 v -0.136993 q 0.17857,-0.07583 0.30986,-0.196518 h 0.15167 v 1.139155 h 0.30415 V 51.603 h -0.76568 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7109" />
+              <path
+                 d="m 102.33968,51.55489 v -0.160639 q 0.0913,0.05953 0.19326,0.08399 0.10193,0.02365 0.17287,0.02365 0.11498,0 0.16553,-0.03669 0.0506,-0.03751 0.0506,-0.09296 0,-0.03669 -0.0236,-0.06279 -0.0236,-0.02609 -0.11742,-0.06442 l -0.0522,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.21364,-0.122315 -0.0448,-0.05545 -0.0448,-0.135361 0,-0.112529 0.0864,-0.185102 0.0872,-0.07257 0.28214,-0.07257 0.14596,0 0.27643,0.0424 V 50.8471 q -0.15004,-0.05382 -0.28214,-0.05382 -0.0962,0 -0.15086,0.03425 -0.0538,0.03343 -0.0538,0.08399 0,0.04893 0.0473,0.07828 0.0465,0.02936 0.15167,0.06768 l 0.10275,0.03751 q 0.14106,0.05137 0.19814,0.111714 0.0571,0.06034 0.0571,0.150854 0,0.118238 -0.0913,0.194888 -0.0905,0.07583 -0.2903,0.07583 -0.1745,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7111" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-etcd-healthcheck-client"
+               id="text322"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,53.773998 V 53.06539 H 0.13617675 v -0.126392 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08644 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.05871 H 0.85130857 V 53.06539 H 0.49007323 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7114" />
+              <path
+                 d="m 1.5028369,53.799277 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,53.526108 1.07229,53.318173 q 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7116" />
+              <path
+                 d="m 2.5041846,53.799277 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7118" />
+              <path
+                 d="m 3.1891456,53.324697 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7120" />
+              <path
+                 d="M 4.1725537,53.773998 V 52.457895 H 4.3242236 V 53.28474 L 4.7621094,52.863163 H 4.9643359 L 4.5272656,53.28474 4.9757519,53.773998 H 4.767002 L 4.3242236,53.28474 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7122" />
+              <path
+                 d="m 5.8825096,52.863163 v 0.910835 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07584 0.1524853,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7124" />
+              <path
+                 d="m 6.2747317,53.067836 q 0.070127,-0.11416 0.1671631,-0.172055 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204672 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7126" />
+              <path
+                 d="m 7.8933595,53.713656 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,53.230107 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7128" />
+              <path
+                 d="m 8.2146387,53.773998 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05627 0.2046729,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7130" />
+              <path
+                 d="m 9.1385204,53.773998 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7132" />
+              <path
+                 d="m 10.897402,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7134" />
+              <path
+                 d="m 11.902827,53.737304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 H 11.0931 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 V 53.06539 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7136" />
+              <path
+                 d="m 12.900098,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7138" />
+              <path
+                 d="m 13.154512,53.725888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7140" />
+              <path
+                 d="m 14.20397,53.324697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7142" />
+              <path
+                 d="m 15.286861,53.067836 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.151669,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7144" />
+              <path
+                 d="m 16.188726,53.773998 v -1.316103 h 0.15167 v 0.826845 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 16.340396,53.28474 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7146" />
+              <path
+                 d="m 17.404532,53.773998 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7148" />
+              <path
+                 d="m 18.20936,53.324697 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7150" />
+              <path
+                 d="m 19.909532,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7152" />
+              <path
+                 d="m 20.914956,53.737304 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7154" />
+              <path
+                 d="m 21.921197,53.747905 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.246259 0,-0.20712 0.134546,-0.344112 0.135361,-0.136992 0.326171,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128022 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7156" />
+              <path
+                 d="m 22.76435,53.569325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 H 22.76435 Z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7158" />
+              <path
+                 d="m 23.216099,53.324697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7160" />
+              <path
+                 d="m 24.158736,53.773998 v -1.316103 h 0.15167 v 0.604233 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.14107,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7162" />
+              <path
+                 d="m 25.917617,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7164" />
+              <path
+                 d="m 26.759957,53.569325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7166" />
+              <path
+                 d="m 27.407407,53.773998 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7168" />
+              <path
+                 d="m 28.925738,53.737304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7170" />
+              <path
+                 d="m 29.165473,53.773998 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7172" />
+              <path
+                 d="m 30.933326,53.747905 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.246259 0,-0.20712 0.134545,-0.344112 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7174" />
+              <path
+                 d="m 31.168168,53.773998 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.14107,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7176" />
+              <path
+                 d="m 32.927051,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7178" />
+              <path
+                 d="m 33.937367,53.747905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.246259 0,-0.20712 0.134546,-0.344112 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7180" />
+              <path
+                 d="m 34.212985,53.773998 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 34.364655,53.28474 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7182" />
+              <path
+                 d="m 35.232271,53.324697 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7184" />
+              <path
+                 d="m 36.941411,53.747905 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106005,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.246259 0,-0.20712 0.134546,-0.344112 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128022 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7186" />
+              <path
+                 d="m 37.420882,53.773998 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7188" />
+              <path
+                 d="M 38.432833,53.773998 V 52.989555 H 38.18005 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7190" />
+              <path
+                 d="m 39.936485,53.713656 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 H 39.32166 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 39.33062,53.230107 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7192" />
+              <path
+                 d="m 40.180297,53.773998 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7194" />
+              <path
+                 d="m 41.943259,53.737304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7196" />
+            </g>
+            <g
+               aria-label="True"
+               id="text324"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 46.510314,53.773998 V 52.64789 H 46.13114 v -0.139439 h 0.923881 v 0.139439 h -0.37999 v 1.126108 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7199" />
+              <path
+                 d="m 47.297204,53.773998 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7201" />
+              <path
+                 d="m 48.970466,52.863163 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07584 0.152485,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7203" />
+              <path
+                 d="m 49.979968,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7205" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-etcd-healthcheck-client"
+               id="text326"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 54.446405,53.773998 V 53.06539 h -0.202227 v -0.126392 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126392 H 54.59807 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7208" />
+              <path
+                 d="m 55.610839,53.799277 q -0.195704,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7210" />
+              <path
+                 d="m 56.612186,53.799277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7212" />
+              <path
+                 d="m 57.297147,53.324697 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7214" />
+              <path
+                 d="m 58.280555,53.773998 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 L 58.432225,53.28474 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7216" />
+              <path
+                 d="m 59.990511,52.863163 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163085,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152485,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7218" />
+              <path
+                 d="m 60.382733,53.067836 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.17858,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7220" />
+              <path
+                 d="m 62.001361,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7222" />
+              <path
+                 d="m 62.32264,53.773998 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145961 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7224" />
+              <path
+                 d="m 63.246522,53.773998 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7226" />
+              <path
+                 d="m 65.005404,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 64.39954,53.230107 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7228" />
+              <path
+                 d="m 66.010829,53.737304 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7230" />
+              <path
+                 d="m 67.0081,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7232" />
+              <path
+                 d="m 67.262514,53.725888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7234" />
+              <path
+                 d="m 68.311972,53.324697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7236" />
+              <path
+                 d="m 69.394862,53.067836 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7238" />
+              <path
+                 d="m 70.296727,53.773998 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 L 70.448397,53.28474 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7240" />
+              <path
+                 d="m 71.512534,53.773998 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7242" />
+              <path
+                 d="m 72.317362,53.324697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7244" />
+              <path
+                 d="m 74.017534,53.713656 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 H 73.4027 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7246" />
+              <path
+                 d="m 75.022957,53.737304 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.151669 v 0.366943 h 0.405269 V 53.06539 H 74.59241 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7248" />
+              <path
+                 d="m 76.029198,53.747905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.246259 0,-0.20712 0.134546,-0.344112 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07746,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7250" />
+              <path
+                 d="m 76.872352,53.569325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.17858,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7252" />
+              <path
+                 d="m 77.324101,53.324697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7254" />
+              <path
+                 d="m 78.266738,53.773998 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02038,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7256" />
+              <path
+                 d="m 80.025619,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7258" />
+              <path
+                 d="m 80.867959,53.569325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.17858,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7260" />
+              <path
+                 d="m 81.515409,53.773998 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7262" />
+              <path
+                 d="m 83.03374,53.737304 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7264" />
+              <path
+                 d="m 83.273475,53.773998 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7266" />
+              <path
+                 d="m 85.041327,53.747905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.246259 0,-0.20712 0.134546,-0.344112 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7268" />
+              <path
+                 d="m 85.27617,53.773998 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7270" />
+              <path
+                 d="m 87.035053,53.713656 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7272" />
+              <path
+                 d="m 88.045369,53.747905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.246259 0,-0.20712 0.134546,-0.344112 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128022 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7274" />
+              <path
+                 d="m 88.320987,53.773998 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 88.472657,53.28474 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7276" />
+              <path
+                 d="m 89.340273,53.324697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7278" />
+              <path
+                 d="m 91.049413,53.747905 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.246259 0,-0.20712 0.134546,-0.344112 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7280" />
+              <path
+                 d="m 91.528884,53.773998 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7282" />
+              <path
+                 d="m 92.540835,53.773998 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7284" />
+              <path
+                 d="m 94.044486,53.713656 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7286" />
+              <path
+                 d="m 94.288299,53.773998 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7288" />
+              <path
+                 d="m 96.051261,53.737304 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231583,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7290" />
+            </g>
+            <g
+               aria-label="61s"
+               id="text328"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 100.4381,53.180365 q 0.0587,-0.08725 0.14515,-0.141884 0.0872,-0.05545 0.19162,-0.05545 0.0987,0 0.18674,0.04811 0.0889,0.04811 0.13536,0.134546 0.0465,0.08562 0.0465,0.19978 0,0.18021 -0.11579,0.31394 -0.11498,0.132915 -0.30334,0.132915 -0.2218,0 -0.33188,-0.185102 -0.10927,-0.185918 -0.10927,-0.472134 0,-0.316387 0.13944,-0.499858 0.13944,-0.184287 0.37754,-0.184287 0.12803,0 0.24871,0.03751 v 0.153301 q -0.13536,-0.06442 -0.25523,-0.06442 -0.16961,0 -0.26257,0.155747 -0.093,0.155747 -0.093,0.394668 z m 0.29763,0.505567 q 0.0612,0 0.12313,-0.03588 0.062,-0.03669 0.097,-0.111714 0.0359,-0.07583 0.0359,-0.164717 0,-0.115791 -0.0603,-0.189995 -0.0595,-0.0742 -0.17043,-0.0742 -0.11497,0 -0.18918,0.08644 -0.0734,0.08562 -0.0734,0.20875 0,0.123945 0.0718,0.203042 0.0726,0.07828 0.16553,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7293" />
+              <path
+                 d="m 101.66451,53.647607 v -0.976885 q -0.0685,0.05463 -0.13292,0.09296 -0.0644,0.03833 -0.17694,0.07828 V 52.70497 q 0.17857,-0.07584 0.30986,-0.196519 h 0.15167 v 1.139156 h 0.30415 v 0.126391 h -0.76568 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7295" />
+              <path
+                 d="m 102.33968,53.725888 v -0.16064 q 0.0913,0.05953 0.19326,0.08399 0.10193,0.02365 0.17287,0.02365 0.11498,0 0.16553,-0.03669 0.0506,-0.03751 0.0506,-0.09296 0,-0.0367 -0.0236,-0.06279 -0.0236,-0.02609 -0.11742,-0.06442 l -0.0522,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.21364,-0.122315 -0.0448,-0.05545 -0.0448,-0.135361 0,-0.11253 0.0864,-0.185103 0.0872,-0.07257 0.28214,-0.07257 0.14596,0 0.27643,0.0424 v 0.137808 q -0.15004,-0.05382 -0.28214,-0.05382 -0.0962,0 -0.15086,0.03425 -0.0538,0.03343 -0.0538,0.08399 0,0.04893 0.0473,0.07828 0.0465,0.02936 0.15167,0.06768 l 0.10275,0.03751 q 0.14106,0.05137 0.19814,0.111713 0.0571,0.06034 0.0571,0.150855 0,0.118237 -0.0913,0.194888 -0.0905,0.07583 -0.2903,0.07583 -0.1745,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7297" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-etcd-peer"
+               id="text330"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,55.945 V 55.236391 H 0.13617675 V 55.11 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266645 0.0407715,-0.08644 0.12557617,-0.141885 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144332 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 V 55.11 h 0.36123534 v 0.126391 H 0.49007323 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7300" />
+              <path
+                 d="m 1.5028369,55.970278 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,55.697109 1.07229,55.489175 q 0,-0.207935 0.1174219,-0.344112 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344112 0,0.207934 -0.1174218,0.344926 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7302" />
+              <path
+                 d="m 2.5041846,55.970278 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344926 0,-0.207935 0.1174219,-0.344112 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344112 0,0.207934 -0.1174219,0.344926 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7304" />
+              <path
+                 d="m 3.1891456,55.495698 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7306" />
+              <path
+                 d="m 4.1725537,55.945 v -1.316104 h 0.1516699 v 0.826846 L 4.7621094,55.034165 H 4.9643359 L 4.5272656,55.455742 4.9757519,55.945 H 4.767002 L 4.3242236,55.455742 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7308" />
+              <path
+                 d="M 5.8825096,55.034165 V 55.945 H 5.7308397 v -0.199781 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05627 -0.1793945,0.05627 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7310" />
+              <path
+                 d="m 6.2747317,55.238838 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123946 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316104 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7312" />
+              <path
+                 d="m 7.8933595,55.884658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7314" />
+              <path
+                 d="m 8.2146387,55.945 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092144,-0.05627 0.2046729,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 v 0.5292 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7316" />
+              <path
+                 d="m 9.1385204,55.945 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 V 55.945 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07584 -0.1508545,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7318" />
+              <path
+                 d="m 10.897402,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7320" />
+              <path
+                 d="m 11.902827,55.908305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 55.11 h 0.227505 v -0.366944 h 0.15167 V 55.11 h 0.405269 v 0.126391 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7322" />
+              <path
+                 d="m 12.900098,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7324" />
+              <path
+                 d="M 13.154512,55.896889 V 55.73625 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7326" />
+              <path
+                 d="m 14.20397,55.495698 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7328" />
+              <path
+                 d="m 15.286861,55.238838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.151669,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7330" />
+              <path
+                 d="m 16.188726,55.945 v -1.316104 h 0.15167 v 0.826846 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 16.340396,55.455742 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7332" />
+              <path
+                 d="m 17.404532,55.945 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 V 55.945 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7334" />
+              <path
+                 d="m 18.20936,55.495698 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7336" />
+              <path
+                 d="m 19.909532,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7338" />
+              <path
+                 d="m 20.914956,55.908305 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 55.11 h 0.227505 v -0.366944 h 0.15167 V 55.11 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7340" />
+              <path
+                 d="m 21.921197,55.918906 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326171,-0.136993 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7342" />
+              <path
+                 d="m 22.76435,55.740327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 V 55.945 H 22.76435 Z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7344" />
+              <path
+                 d="m 23.216099,55.495698 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7346" />
+              <path
+                 d="m 24.29899,55.238838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7348" />
+              <path
+                 d="m 25.917617,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7350" />
+              <path
+                 d="m 26.918966,55.884658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7352" />
+              <path
+                 d="m 27.240244,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.5292 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7354" />
+            </g>
+            <g
+               aria-label="True"
+               id="text332"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 46.510314,55.945 V 54.818891 H 46.13114 v -0.139438 h 0.923881 v 0.139438 h -0.37999 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7357" />
+              <path
+                 d="m 47.297204,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.5292 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7359" />
+              <path
+                 d="M 48.970466,55.034165 V 55.945 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7361" />
+              <path
+                 d="m 49.979968,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7363" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-etcd-peer"
+               id="text334"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 54.446405,55.945 V 55.236391 H 54.244178 V 55.11 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144332 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 V 55.11 h 0.361235 v 0.126391 h -0.36123 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7366" />
+              <path
+                 d="m 55.610839,55.970278 q -0.195704,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7368" />
+              <path
+                 d="m 56.612186,55.970278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7370" />
+              <path
+                 d="m 57.297147,55.495698 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7372" />
+              <path
+                 d="m 58.280555,55.945 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 L 58.432225,55.455742 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7374" />
+              <path
+                 d="M 59.990511,55.034165 V 55.945 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163085,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7376" />
+              <path
+                 d="m 60.382733,55.238838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.17858,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7378" />
+              <path
+                 d="m 62.001361,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7380" />
+              <path
+                 d="m 62.32264,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145961 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.5292 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7382" />
+              <path
+                 d="m 63.246522,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7384" />
+              <path
+                 d="m 65.005404,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7386" />
+              <path
+                 d="m 66.010829,55.908305 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 55.11 h 0.227505 v -0.366944 h 0.15167 V 55.11 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7388" />
+              <path
+                 d="m 67.0081,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7390" />
+              <path
+                 d="M 67.262514,55.896889 V 55.73625 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7392" />
+              <path
+                 d="m 68.311972,55.495698 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7394" />
+              <path
+                 d="m 69.394862,55.238838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7396" />
+              <path
+                 d="m 70.296727,55.945 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 L 70.448397,55.455742 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7398" />
+              <path
+                 d="m 71.512534,55.945 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253598 V 55.945 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7400" />
+              <path
+                 d="m 72.317362,55.495698 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7402" />
+              <path
+                 d="m 74.017534,55.884658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 H 73.4027 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7404" />
+              <path
+                 d="m 75.022957,55.908305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 55.11 h 0.227505 V 54.743056 H 74.59241 V 55.11 h 0.405269 v 0.126391 H 74.59241 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7406" />
+              <path
+                 d="m 76.029198,55.918906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07746,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7408" />
+              <path
+                 d="m 76.872352,55.740327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.17858,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 V 55.945 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7410" />
+              <path
+                 d="m 77.324101,55.495698 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7412" />
+              <path
+                 d="m 78.406992,55.238838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7414" />
+              <path
+                 d="m 80.025619,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7416" />
+              <path
+                 d="m 81.026967,55.884658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7418" />
+              <path
+                 d="m 81.348246,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159008,0.200596 v 0.5292 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7420" />
+            </g>
+            <g
+               aria-label="61s"
+               id="text336"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 100.4381,55.351367 q 0.0587,-0.08725 0.14515,-0.141885 0.0872,-0.05545 0.19162,-0.05545 0.0987,0 0.18674,0.04811 0.0889,0.04811 0.13536,0.134546 0.0465,0.08562 0.0465,0.19978 0,0.18021 -0.11579,0.313941 -0.11498,0.132915 -0.30334,0.132915 -0.2218,0 -0.33188,-0.185103 -0.10927,-0.185918 -0.10927,-0.472133 0,-0.316387 0.13944,-0.499859 0.13944,-0.184287 0.37754,-0.184287 0.12803,0 0.24871,0.03751 v 0.153301 q -0.13536,-0.06442 -0.25523,-0.06442 -0.16961,0 -0.26257,0.155747 -0.093,0.155747 -0.093,0.394668 z m 0.29763,0.505566 q 0.0612,0 0.12313,-0.03588 0.062,-0.03669 0.097,-0.111713 0.0359,-0.07584 0.0359,-0.164717 0,-0.115791 -0.0603,-0.189995 -0.0595,-0.0742 -0.17043,-0.0742 -0.11497,0 -0.18918,0.08644 -0.0734,0.08562 -0.0734,0.20875 0,0.123945 0.0718,0.203042 0.0726,0.07828 0.16553,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7423" />
+              <path
+                 d="m 101.66451,55.818608 v -0.976885 q -0.0685,0.05463 -0.13292,0.09296 -0.0644,0.03833 -0.17694,0.07828 V 54.87597 q 0.17857,-0.07583 0.30986,-0.196518 h 0.15167 v 1.139155 h 0.30415 V 55.945 h -0.76568 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7425" />
+              <path
+                 d="M 102.33968,55.896889 V 55.73625 q 0.0913,0.05953 0.19326,0.08399 0.10193,0.02365 0.17287,0.02365 0.11498,0 0.16553,-0.03669 0.0506,-0.03751 0.0506,-0.09296 0,-0.03669 -0.0236,-0.06279 -0.0236,-0.02609 -0.11742,-0.06442 l -0.0522,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.21364,-0.122314 -0.0448,-0.05545 -0.0448,-0.135362 0,-0.112529 0.0864,-0.185102 0.0872,-0.07257 0.28214,-0.07257 0.14596,0 0.27643,0.0424 v 0.137807 q -0.15004,-0.05382 -0.28214,-0.05382 -0.0962,0 -0.15086,0.03425 -0.0538,0.03343 -0.0538,0.08399 0,0.04893 0.0473,0.07828 0.0465,0.02935 0.15167,0.06768 l 0.10275,0.03751 q 0.14106,0.05137 0.19814,0.111714 0.0571,0.06034 0.0571,0.150854 0,0.118238 -0.0913,0.194888 -0.0905,0.07583 -0.2903,0.07583 -0.1745,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7427" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-etcd-server"
+               id="text338"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,58.116001 V 57.407393 H 0.13617675 v -0.126392 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08644 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.05871 h 0.36123534 v 0.126392 H 0.49007323 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7430" />
+              <path
+                 d="m 1.5028369,58.141279 q -0.1957031,0 -0.313125,-0.136176 Q 1.07229,57.868111 1.07229,57.660176 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7432" />
+              <path
+                 d="m 2.5041846,58.141279 q -0.1957032,0 -0.313125,-0.136176 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7434" />
+              <path
+                 d="m 3.1891456,57.666699 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7436" />
+              <path
+                 d="m 4.1725537,58.116001 v -1.316103 h 0.1516699 v 0.826845 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,57.626743 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7438" />
+              <path
+                 d="m 5.8825096,57.205166 v 0.910835 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7440" />
+              <path
+                 d="m 6.2747317,57.409839 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7442" />
+              <path
+                 d="m 7.8933595,58.055659 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,57.57211 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7444" />
+              <path
+                 d="m 8.2146387,58.116001 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05627 0.2046729,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 V 57.32585 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7446" />
+              <path
+                 d="m 9.1385204,58.116001 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7448" />
+              <path
+                 d="m 10.897402,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 10.291538,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7450" />
+              <path
+                 d="m 11.902827,58.079307 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 57.407425 H 11.0931 v -0.126392 h 0.227505 V 56.91409 h 0.15167 v 0.366943 h 0.405269 v 0.126392 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7452" />
+              <path
+                 d="m 12.900098,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 12.294234,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7454" />
+              <path
+                 d="m 13.154512,58.067891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7456" />
+              <path
+                 d="m 14.20397,57.666699 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7458" />
+              <path
+                 d="m 15.286861,57.409839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.151669,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7460" />
+              <path
+                 d="m 16.188726,58.116001 v -1.316103 h 0.15167 v 0.826845 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7462" />
+              <path
+                 d="m 17.404532,58.116001 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7464" />
+              <path
+                 d="m 18.20936,57.666699 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7466" />
+              <path
+                 d="m 19.909532,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 19.303668,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7468" />
+              <path
+                 d="m 20.914956,58.079307 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 V 56.91409 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7470" />
+              <path
+                 d="m 21.921197,58.089907 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326171,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7472" />
+              <path
+                 d="m 22.76435,57.911328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 V 58.11605 H 22.76435 Z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7474" />
+              <path
+                 d="m 23.216099,57.666699 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7476" />
+              <path
+                 d="m 24.169337,58.067891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145961,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7478" />
+              <path
+                 d="m 25.917617,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 25.311753,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7480" />
+              <path
+                 d="m 26.238897,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 v 0.328618 H 26.776265 V 57.32585 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7482" />
+              <path
+                 d="m 27.458779,58.116001 -0.395483,-0.910835 h 0.166347 l 0.31231,0.72084 0.318833,-0.72084 h 0.15167 l -0.398745,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7484" />
+              <path
+                 d="m 28.921661,58.055659 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 28.315797,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7486" />
+              <path
+                 d="m 29.242939,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 H 29.780307 V 57.32585 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7488" />
+            </g>
+            <g
+               aria-label="True"
+               id="text340"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 46.510314,58.116001 V 56.989893 H 46.13114 v -0.139439 h 0.923881 v 0.139439 h -0.37999 v 1.126108 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7491" />
+              <path
+                 d="m 47.297204,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 H 47.834572 V 57.32585 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7493" />
+              <path
+                 d="m 48.970466,57.205166 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7495" />
+              <path
+                 d="m 49.979968,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 49.374104,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7497" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-etcd-server"
+               id="text342"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 54.446405,58.116001 v -0.708608 h -0.202227 v -0.126392 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126392 H 54.59807 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7500" />
+              <path
+                 d="m 55.610839,58.141279 q -0.195704,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7502" />
+              <path
+                 d="m 56.612186,58.141279 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7504" />
+              <path
+                 d="m 57.297147,57.666699 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7506" />
+              <path
+                 d="m 58.280555,58.116001 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7508" />
+              <path
+                 d="m 59.990511,57.205166 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163085,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7510" />
+              <path
+                 d="m 60.382733,57.409839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.17858,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7512" />
+              <path
+                 d="m 62.001361,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 61.395497,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7514" />
+              <path
+                 d="m 62.32264,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 v 0.328618 H 62.860009 V 57.32585 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7516" />
+              <path
+                 d="m 63.246522,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7518" />
+              <path
+                 d="m 65.005404,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 64.39954,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7520" />
+              <path
+                 d="m 66.010829,58.079307 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 V 56.91409 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7522" />
+              <path
+                 d="m 67.0081,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 66.402236,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7524" />
+              <path
+                 d="m 67.262514,58.067891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7526" />
+              <path
+                 d="m 68.311972,57.666699 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7528" />
+              <path
+                 d="m 69.394862,57.409839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7530" />
+              <path
+                 d="m 70.296727,58.116001 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7532" />
+              <path
+                 d="m 71.512534,58.116001 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7534" />
+              <path
+                 d="m 72.317362,57.666699 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7536" />
+              <path
+                 d="m 74.017534,58.055659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 H 73.4027 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 73.411669,57.57211 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7538" />
+              <path
+                 d="m 75.022957,58.079307 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 V 56.91409 h 0.151669 v 0.366943 h 0.405269 v 0.126392 H 74.59241 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7540" />
+              <path
+                 d="m 76.029198,58.089907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07746,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7542" />
+              <path
+                 d="m 76.872352,57.911328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.17858,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7544" />
+              <path
+                 d="m 77.324101,57.666699 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7546" />
+              <path
+                 d="m 78.277339,58.067891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7548" />
+              <path
+                 d="m 80.025619,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 79.419755,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7550" />
+              <path
+                 d="m 80.346899,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 H 80.884267 V 57.32585 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7552" />
+              <path
+                 d="m 81.566781,58.116001 -0.395484,-0.910835 h 0.166348 l 0.31231,0.72084 0.318833,-0.72084 h 0.15167 l -0.398746,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7554" />
+              <path
+                 d="m 83.029662,58.055659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 82.423798,57.57211 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7556" />
+              <path
+                 d="m 83.350941,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 H 83.888309 V 57.32585 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7558" />
+            </g>
+            <g
+               aria-label="61s"
+               id="text344"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 100.4381,57.522368 q 0.0587,-0.08725 0.14515,-0.141884 0.0872,-0.05545 0.19162,-0.05545 0.0987,0 0.18674,0.04811 0.0889,0.04811 0.13536,0.134546 0.0465,0.08562 0.0465,0.19978 0,0.18021 -0.11579,0.31394 -0.11498,0.132915 -0.30334,0.132915 -0.2218,0 -0.33188,-0.185102 -0.10927,-0.185918 -0.10927,-0.472134 0,-0.316387 0.13944,-0.499858 0.13944,-0.184287 0.37754,-0.184287 0.12803,0 0.24871,0.03751 v 0.153301 q -0.13536,-0.06442 -0.25523,-0.06442 -0.16961,0 -0.26257,0.155747 -0.093,0.155747 -0.093,0.394668 z m 0.29763,0.505567 q 0.0612,0 0.12313,-0.03588 0.062,-0.03669 0.097,-0.111714 0.0359,-0.07583 0.0359,-0.164717 0,-0.115791 -0.0603,-0.189995 -0.0595,-0.0742 -0.17043,-0.0742 -0.11497,0 -0.18918,0.08644 -0.0734,0.08562 -0.0734,0.20875 0,0.123946 0.0718,0.203042 0.0726,0.07828 0.16553,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7561" />
+              <path
+                 d="m 101.66451,57.98961 v -0.976885 q -0.0685,0.05463 -0.13292,0.09296 -0.0644,0.03833 -0.17694,0.07828 v -0.136992 q 0.17857,-0.07583 0.30986,-0.196519 h 0.15167 v 1.139156 h 0.30415 v 0.126391 h -0.76568 V 57.98961 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7563" />
+              <path
+                 d="m 102.33968,58.067891 v -0.16064 q 0.0913,0.05953 0.19326,0.08399 0.10193,0.02365 0.17287,0.02365 0.11498,0 0.16553,-0.03669 0.0506,-0.03751 0.0506,-0.09296 0,-0.0367 -0.0236,-0.06279 -0.0236,-0.02609 -0.11742,-0.06442 l -0.0522,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.21364,-0.122314 -0.0448,-0.05545 -0.0448,-0.135361 0,-0.11253 0.0864,-0.185103 0.0872,-0.07257 0.28214,-0.07257 0.14596,0 0.27643,0.0424 v 0.137808 q -0.15004,-0.05382 -0.28214,-0.05382 -0.0962,0 -0.15086,0.03425 -0.0538,0.03343 -0.0538,0.08399 0,0.04893 0.0473,0.07828 0.0465,0.02936 0.15167,0.06768 l 0.10275,0.03751 q 0.14106,0.05137 0.19814,0.111714 0.0571,0.06034 0.0571,0.150855 0,0.118237 -0.0913,0.194887 -0.0905,0.07583 -0.2903,0.07583 -0.1745,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7565" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-front-proxy-ca"
+               id="text346"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,60.286999 V 59.57839 H 0.13617675 v -0.126391 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266645 0.0407715,-0.08644 0.12557617,-0.141885 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.05871 H 0.85130857 V 59.57839 H 0.49007323 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7568" />
+              <path
+                 d="m 1.5028369,60.312277 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,60.039108 1.07229,59.831174 q 0,-0.207935 0.1174219,-0.344112 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344112 0,0.207934 -0.1174218,0.344926 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7570" />
+              <path
+                 d="m 2.5041846,60.312277 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344926 0,-0.207935 0.1174219,-0.344112 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344112 0,0.207934 -0.1174219,0.344926 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7572" />
+              <path
+                 d="m 3.1891456,59.837697 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7574" />
+              <path
+                 d="m 4.1725537,60.286999 v -1.316104 h 0.1516699 v 0.826846 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,59.797741 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7576" />
+              <path
+                 d="m 5.8825096,59.376164 v 0.910835 H 5.7308397 v -0.199781 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05627 -0.1793945,0.05627 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7578" />
+              <path
+                 d="m 6.2747317,59.580837 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158194 -0.061157,0.282954 -0.060342,0.123946 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316104 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7580" />
+              <path
+                 d="m 7.8933595,60.226657 q -0.1818408,0.08643 -0.3441113,0.08643 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.17858 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115792 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7582" />
+              <path
+                 d="m 8.2146387,60.286999 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092144,-0.05627 0.2046729,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7584" />
+              <path
+                 d="m 9.1385204,60.286999 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 v 0.508828 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7586" />
+              <path
+                 d="m 10.897402,60.226657 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115792 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7588" />
+              <path
+                 d="m 11.902827,60.250304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 59.57839 H 11.0931 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 V 59.57839 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7590" />
+              <path
+                 d="m 12.900098,60.226657 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115792 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7592" />
+              <path
+                 d="m 13.154512,60.238888 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7594" />
+              <path
+                 d="m 14.20397,59.837697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7596" />
+              <path
+                 d="m 15.286861,59.580837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158194 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.151669,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7598" />
+              <path
+                 d="m 16.188726,60.286999 v -1.316104 h 0.15167 v 0.826846 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7600" />
+              <path
+                 d="m 17.404532,60.286999 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7602" />
+              <path
+                 d="m 18.20936,59.837697 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7604" />
+              <path
+                 d="M 19.364009,60.286999 V 59.57839 h -0.202226 v -0.126391 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118238,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361236 v 0.126391 h -0.361236 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7606" />
+              <path
+                 d="m 20.23081,60.286999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7608" />
+              <path
+                 d="m 21.52979,60.312277 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344926 0,-0.207935 0.117421,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.1215,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7610" />
+              <path
+                 d="m 22.156039,60.286999 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7612" />
+              <path
+                 d="m 23.918999,60.250304 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 59.57839 h -0.227504 v -0.126391 h 0.227504 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7614" />
+              <path
+                 d="m 24.217447,59.837697 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7616" />
+              <path
+                 d="m 25.300337,59.580837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158194 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7618" />
+              <path
+                 d="m 26.238897,60.286999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7620" />
+              <path
+                 d="m 27.537876,60.312277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7622" />
+              <path
+                 d="m 28.258716,60.286999 h -0.175317 l 0.357974,-0.477027 -0.334326,-0.433808 h 0.194072 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 H 28.80587 l -0.277246,-0.362866 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7624" />
+              <path
+                 d="m 29.500615,60.250304 -0.420762,-0.87414 h 0.167163 l 0.335142,0.68333 0.280508,-0.68333 h 0.152485 L 29.66207,60.22258 q -0.111714,0.268276 -0.212827,0.356343 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123946,-0.01223 v -0.133731 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101113 0.0473,-0.07257 0.06686,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7626" />
+              <path
+                 d="m 30.225533,59.837697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7628" />
+              <path
+                 d="m 31.934672,60.260905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7630" />
+              <path
+                 d="m 32.768042,60.082326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7632" />
+            </g>
+            <g
+               aria-label="True"
+               id="text348"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 46.510314,60.286999 V 59.16089 H 46.13114 v -0.139438 h 0.923881 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7635" />
+              <path
+                 d="m 47.297204,60.286999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7637" />
+              <path
+                 d="m 48.970466,59.376164 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7639" />
+              <path
+                 d="m 49.979968,60.226657 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115792 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7641" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-front-proxy-ca"
+               id="text350"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 54.446405,60.286999 V 59.57839 h -0.202227 v -0.126391 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126391 H 54.59807 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7644" />
+              <path
+                 d="m 55.610839,60.312277 q -0.195704,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7646" />
+              <path
+                 d="m 56.612186,60.312277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7648" />
+              <path
+                 d="m 57.297147,59.837697 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7650" />
+              <path
+                 d="m 58.280555,60.286999 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7652" />
+              <path
+                 d="m 59.990511,59.376164 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163085,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7654" />
+              <path
+                 d="m 60.382733,59.580837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.17858,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158194 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7656" />
+              <path
+                 d="m 62.001361,60.226657 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115792 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7658" />
+              <path
+                 d="m 62.32264,60.286999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145961 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7660" />
+              <path
+                 d="m 63.246522,60.286999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7662" />
+              <path
+                 d="m 65.005404,60.226657 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115792 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7664" />
+              <path
+                 d="m 66.010829,60.250304 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 59.57839 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7666" />
+              <path
+                 d="m 67.0081,60.226657 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115792 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7668" />
+              <path
+                 d="m 67.262514,60.238888 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7670" />
+              <path
+                 d="m 68.311972,59.837697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7672" />
+              <path
+                 d="m 69.394862,59.580837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158194 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7674" />
+              <path
+                 d="m 70.296727,60.286999 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7676" />
+              <path
+                 d="m 71.512534,60.286999 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253598 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7678" />
+              <path
+                 d="m 72.317362,59.837697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7680" />
+              <path
+                 d="M 73.472011,60.286999 V 59.57839 h -0.202226 v -0.126391 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126391 h -0.361235 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7682" />
+              <path
+                 d="m 74.338812,60.286999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 H 74.87618 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7684" />
+              <path
+                 d="m 75.637792,60.312277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7686" />
+              <path
+                 d="m 76.264041,60.286999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7688" />
+              <path
+                 d="m 78.027001,60.250304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 59.57839 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7690" />
+              <path
+                 d="m 78.325449,59.837697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7692" />
+              <path
+                 d="m 79.408339,59.580837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158194 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7694" />
+              <path
+                 d="m 80.346899,60.286999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7696" />
+              <path
+                 d="m 81.645877,60.312277 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344926 0,-0.207935 0.117421,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7698" />
+              <path
+                 d="m 82.366718,60.286999 h -0.175317 l 0.357973,-0.477027 -0.334326,-0.433808 h 0.194072 l 0.237291,0.305786 0.230766,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194888 l -0.277246,-0.362866 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7700" />
+              <path
+                 d="m 83.608616,60.250304 -0.420761,-0.87414 h 0.167163 l 0.335141,0.68333 0.280508,-0.68333 h 0.152486 l -0.353081,0.846416 q -0.111714,0.268276 -0.212828,0.356343 -0.100297,0.08807 -0.260122,0.08807 -0.06931,0 -0.123945,-0.01223 v -0.133731 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101113 0.04729,-0.07257 0.06686,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7702" />
+              <path
+                 d="m 84.333534,59.837697 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7704" />
+              <path
+                 d="m 86.042674,60.260905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106005,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7706" />
+              <path
+                 d="m 86.876044,60.082326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161456,-0.196519 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7708" />
+            </g>
+            <g
+               aria-label="61s"
+               id="text352"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 100.4381,59.693366 q 0.0587,-0.08725 0.14515,-0.141885 0.0872,-0.05545 0.19162,-0.05545 0.0987,0 0.18674,0.04811 0.0889,0.04811 0.13536,0.134546 0.0465,0.08562 0.0465,0.19978 0,0.18021 -0.11579,0.313941 -0.11498,0.132915 -0.30334,0.132915 -0.2218,0 -0.33188,-0.185103 -0.10927,-0.185918 -0.10927,-0.472133 0,-0.316387 0.13944,-0.499859 0.13944,-0.184287 0.37754,-0.184287 0.12803,0 0.24871,0.03751 v 0.153301 q -0.13536,-0.06442 -0.25523,-0.06442 -0.16961,0 -0.26257,0.155747 -0.093,0.155747 -0.093,0.394668 z m 0.29763,0.505566 q 0.0612,0 0.12313,-0.03588 0.062,-0.03669 0.097,-0.111713 0.0359,-0.07584 0.0359,-0.164717 0,-0.115791 -0.0603,-0.189995 -0.0595,-0.0742 -0.17043,-0.0742 -0.11497,0 -0.18918,0.08643 -0.0734,0.08562 -0.0734,0.20875 0,0.123945 0.0718,0.203042 0.0726,0.07828 0.16553,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7711" />
+              <path
+                 d="m 101.66451,60.160607 v -0.976885 q -0.0685,0.05463 -0.13292,0.09296 -0.0644,0.03833 -0.17694,0.07828 V 59.21797 q 0.17857,-0.07583 0.30986,-0.196518 h 0.15167 v 1.139155 h 0.30415 v 0.126392 h -0.76568 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7713" />
+              <path
+                 d="m 102.33968,60.238888 v -0.160639 q 0.0913,0.05953 0.19326,0.08399 0.10193,0.02365 0.17287,0.02365 0.11498,0 0.16553,-0.03669 0.0506,-0.03751 0.0506,-0.09296 0,-0.03669 -0.0236,-0.06279 -0.0236,-0.02609 -0.11742,-0.06442 l -0.0522,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.21364,-0.122314 -0.0448,-0.05545 -0.0448,-0.135362 0,-0.112529 0.0864,-0.185102 0.0872,-0.07257 0.28214,-0.07257 0.14596,0 0.27643,0.0424 v 0.137807 q -0.15004,-0.05382 -0.28214,-0.05382 -0.0962,0 -0.15086,0.03425 -0.0538,0.03343 -0.0538,0.08399 0,0.04893 0.0473,0.07828 0.0465,0.02935 0.15167,0.06768 l 0.10275,0.03751 q 0.14106,0.05137 0.19814,0.111714 0.0571,0.06034 0.0571,0.150854 0,0.118238 -0.0913,0.194888 -0.0905,0.07584 -0.2903,0.07584 -0.1745,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7715" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-front-proxy-client"
+               id="text354"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,62.458 V 61.749392 H 0.13617675 V 61.623 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08644 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.0587 h 0.36123534 v 0.126392 H 0.49007323 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7718" />
+              <path
+                 d="m 1.5028369,62.483279 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,62.21011 1.07229,62.002175 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7720" />
+              <path
+                 d="m 2.5041846,62.483279 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7722" />
+              <path
+                 d="m 3.1891456,62.008698 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7724" />
+              <path
+                 d="m 4.1725537,62.458 v -1.316103 h 0.1516699 v 0.826845 L 4.7621094,61.547165 H 4.9643359 L 4.5272656,61.968742 4.9757519,62.458 H 4.767002 L 4.3242236,61.968742 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7726" />
+              <path
+                 d="M 5.8825096,61.547165 V 62.458 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05627 -0.1793945,0.05627 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07584 0.1524853,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7728" />
+              <path
+                 d="m 6.2747317,61.751838 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7730" />
+              <path
+                 d="m 7.8933595,62.397658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,61.914109 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7732" />
+              <path
+                 d="m 8.2146387,62.458 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05627 0.2046729,-0.05627 0.082358,0 0.1647168,0.02528 V 61.87578 H 8.7520069 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7734" />
+              <path
+                 d="m 9.1385204,62.458 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 V 62.458 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7736" />
+              <path
+                 d="m 10.897402,62.397658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7738" />
+              <path
+                 d="m 11.902827,62.421306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366965 h -0.2275 V 61.623 h 0.227505 v -0.366943 h 0.15167 V 61.623 h 0.405269 v 0.126392 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7740" />
+              <path
+                 d="m 12.900098,62.397658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7742" />
+              <path
+                 d="m 13.154512,62.40989 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 V 61.7021 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7744" />
+              <path
+                 d="m 14.20397,62.008698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7746" />
+              <path
+                 d="m 15.286861,61.751838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.151669,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7748" />
+              <path
+                 d="m 16.188726,62.458 v -1.316103 h 0.15167 v 0.826845 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 16.340396,61.968742 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7750" />
+              <path
+                 d="m 17.404532,62.458 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 62.458 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7752" />
+              <path
+                 d="m 18.20936,62.008698 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7754" />
+              <path
+                 d="M 19.364009,62.458 V 61.749392 H 19.161783 V 61.623 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118238,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.0587 h 0.361236 v 0.126392 H 19.515679 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7756" />
+              <path
+                 d="m 20.23081,62.458 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7758" />
+              <path
+                 d="m 21.52979,62.483279 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207935 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.1215,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7760" />
+              <path
+                 d="m 22.156039,62.458 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 62.458 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7762" />
+              <path
+                 d="m 23.918999,62.421306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366965 h -0.2275 V 61.623 h 0.227504 v -0.366943 h 0.15167 V 61.623 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7764" />
+              <path
+                 d="m 24.217447,62.008698 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7766" />
+              <path
+                 d="m 25.300337,61.751838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7768" />
+              <path
+                 d="m 26.238897,62.458 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7770" />
+              <path
+                 d="m 27.537876,62.483279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7772" />
+              <path
+                 d="m 28.258716,62.458 h -0.175317 l 0.357974,-0.477026 -0.334326,-0.433809 h 0.194072 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 L 28.624844,61.966296 29.000757,62.458 H 28.80587 l -0.277246,-0.362866 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7774" />
+              <path
+                 d="m 29.500615,62.421306 -0.420762,-0.874141 h 0.167163 l 0.335142,0.68333 0.280508,-0.68333 h 0.152485 l -0.353081,0.846416 q -0.111714,0.268277 -0.212827,0.356343 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123946,-0.01223 v -0.133731 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101114 0.0473,-0.07257 0.06686,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7776" />
+              <path
+                 d="m 30.225533,62.008698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7778" />
+              <path
+                 d="m 31.934672,62.431906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7780" />
+              <path
+                 d="m 32.414146,62.458 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7782" />
+              <path
+                 d="M 33.426093,62.458 V 61.673557 H 33.17331 v -0.126392 h 0.404453 v 0.784444 h 0.253598 V 62.458 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7784" />
+              <path
+                 d="m 34.929748,62.397658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7786" />
+              <path
+                 d="m 35.17356,62.458 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 62.458 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7788" />
+              <path
+                 d="m 36.936518,62.421306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119869,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 61.749392 H 36.126797 V 61.623 h 0.227504 v -0.366943 h 0.15167 V 61.623 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7790" />
+            </g>
+            <g
+               aria-label="True"
+               id="text356"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 46.510314,62.458 V 61.331892 H 46.13114 v -0.139439 h 0.923881 v 0.139439 h -0.37999 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7793" />
+              <path
+                 d="m 47.297204,62.458 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7795" />
+              <path
+                 d="M 48.970466,61.547165 V 62.458 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07584 0.152485,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7797" />
+              <path
+                 d="m 49.979968,62.397658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7799" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-front-proxy-client"
+               id="text358"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 54.446405,62.458 V 61.749392 H 54.244178 V 61.623 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.0587 h 0.361235 v 0.126392 h -0.36123 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7802" />
+              <path
+                 d="m 55.610839,62.483279 q -0.195704,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7804" />
+              <path
+                 d="m 56.612186,62.483279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7806" />
+              <path
+                 d="m 57.297147,62.008698 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7808" />
+              <path
+                 d="m 58.280555,62.458 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 L 58.432225,61.968742 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7810" />
+              <path
+                 d="M 59.990511,61.547165 V 62.458 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163085,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152485,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7812" />
+              <path
+                 d="m 60.382733,61.751838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.17858,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7814" />
+              <path
+                 d="m 62.001361,62.397658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7816" />
+              <path
+                 d="m 62.32264,62.458 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145961 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7818" />
+              <path
+                 d="m 63.246522,62.458 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 62.458 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7820" />
+              <path
+                 d="m 65.005404,62.397658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 64.39954,61.914109 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7822" />
+              <path
+                 d="m 66.010829,62.421306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366965 h -0.2275 V 61.623 h 0.227505 v -0.366943 h 0.15167 V 61.623 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7824" />
+              <path
+                 d="m 67.0081,62.397658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7826" />
+              <path
+                 d="m 67.262514,62.40989 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 V 61.7021 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7828" />
+              <path
+                 d="m 68.311972,62.008698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7830" />
+              <path
+                 d="m 69.394862,61.751838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7832" />
+              <path
+                 d="m 70.296727,62.458 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 L 70.448397,61.968742 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7834" />
+              <path
+                 d="m 71.512534,62.458 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 V 62.458 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7836" />
+              <path
+                 d="m 72.317362,62.008698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7838" />
+              <path
+                 d="M 73.472011,62.458 V 61.749392 H 73.269785 V 61.623 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.0587 h 0.361235 v 0.126392 h -0.36123 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7840" />
+              <path
+                 d="m 74.338812,62.458 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 V 61.87578 H 74.87618 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7842" />
+              <path
+                 d="m 75.637792,62.483279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7844" />
+              <path
+                 d="m 76.264041,62.458 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 62.458 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7846" />
+              <path
+                 d="m 78.027001,62.421306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366965 h -0.2275 V 61.623 h 0.227505 v -0.366943 h 0.15167 V 61.623 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7848" />
+              <path
+                 d="m 78.325449,62.008698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7850" />
+              <path
+                 d="m 79.408339,61.751838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7852" />
+              <path
+                 d="m 80.346899,62.458 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7854" />
+              <path
+                 d="m 81.645877,62.483279 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207935 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7856" />
+              <path
+                 d="m 82.366718,62.458 h -0.175317 l 0.357973,-0.477026 -0.334326,-0.433809 h 0.194072 l 0.237291,0.305786 0.230766,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194888 l -0.277246,-0.362866 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7858" />
+              <path
+                 d="m 83.608616,62.421306 -0.420761,-0.874141 h 0.167163 l 0.335141,0.68333 0.280508,-0.68333 h 0.152486 l -0.353081,0.846416 q -0.111714,0.268277 -0.212828,0.356343 -0.100297,0.08807 -0.260122,0.08807 -0.06931,0 -0.123945,-0.01223 v -0.133731 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101114 0.04729,-0.07257 0.06686,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7860" />
+              <path
+                 d="m 84.333534,62.008698 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7862" />
+              <path
+                 d="m 86.042674,62.431906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106005,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7864" />
+              <path
+                 d="m 86.522147,62.458 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7866" />
+              <path
+                 d="m 87.534095,62.458 v -0.784443 h -0.252784 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 62.458 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7868" />
+              <path
+                 d="m 89.03775,62.397658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7870" />
+              <path
+                 d="m 89.281562,62.458 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 62.458 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7872" />
+              <path
+                 d="m 91.04452,62.421306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366965 h -0.2275 V 61.623 h 0.227505 v -0.366943 h 0.15167 V 61.623 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7874" />
+            </g>
+            <g
+               aria-label="61s"
+               id="text360"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 100.4381,61.864367 q 0.0587,-0.08725 0.14515,-0.141884 0.0872,-0.05545 0.19162,-0.05545 0.0987,0 0.18674,0.04811 0.0889,0.04811 0.13536,0.134546 0.0465,0.08562 0.0465,0.19978 0,0.18021 -0.11579,0.31394 -0.11498,0.132915 -0.30334,0.132915 -0.2218,0 -0.33188,-0.185102 -0.10927,-0.185918 -0.10927,-0.472134 0,-0.316387 0.13944,-0.499858 0.13944,-0.184287 0.37754,-0.184287 0.12803,0 0.24871,0.03751 v 0.153301 q -0.13536,-0.06442 -0.25523,-0.06442 -0.16961,0 -0.26257,0.155747 -0.093,0.155747 -0.093,0.394668 z m 0.29763,0.505567 q 0.0612,0 0.12313,-0.03588 0.062,-0.03669 0.097,-0.111714 0.0359,-0.07583 0.0359,-0.164717 0,-0.115791 -0.0603,-0.189995 -0.0595,-0.0742 -0.17043,-0.0742 -0.11497,0 -0.18918,0.08644 -0.0734,0.08562 -0.0734,0.20875 0,0.123945 0.0718,0.203042 0.0726,0.07828 0.16553,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7877" />
+              <path
+                 d="m 101.66451,62.331609 v -0.976885 q -0.0685,0.05463 -0.13292,0.09296 -0.0644,0.03833 -0.17694,0.07828 v -0.136992 q 0.17857,-0.07584 0.30986,-0.196519 h 0.15167 v 1.139156 h 0.30415 V 62.458 h -0.76568 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7879" />
+              <path
+                 d="m 102.33968,62.40989 v -0.16064 q 0.0913,0.05953 0.19326,0.08399 0.10193,0.02365 0.17287,0.02365 0.11498,0 0.16553,-0.03669 0.0506,-0.03751 0.0506,-0.09296 0,-0.0367 -0.0236,-0.06279 -0.0236,-0.02609 -0.11742,-0.06442 l -0.0522,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.21364,-0.122314 -0.0448,-0.05545 -0.0448,-0.135361 0,-0.11253 0.0864,-0.185103 0.0872,-0.07257 0.28214,-0.07257 0.14596,0 0.27643,0.0424 V 61.7021 q -0.15004,-0.05382 -0.28214,-0.05382 -0.0962,0 -0.15086,0.03425 -0.0538,0.03343 -0.0538,0.08399 0,0.04893 0.0473,0.07828 0.0465,0.02936 0.15167,0.06768 l 0.10275,0.03751 q 0.14106,0.05137 0.19814,0.111713 0.0571,0.06034 0.0571,0.150855 0,0.118237 -0.0913,0.194888 -0.0905,0.07584 -0.2903,0.07584 -0.1745,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7881" />
+            </g>
+            <path
+               class="f"
+               d="M 0,62.959 H 1 V 65.13 H 0 Z"
+               id="path362" />
+            <g
+               id="text364"
+               class="g"
+               style="white-space:pre" />
+            <path
+               class="f"
+               d="m 1.002,62.959 h 5 v 2.171 h -5 z"
+               id="path366" />
+            <g
+               aria-label="kvaps"
+               id="text368"
+               class="h"
+               style="font-weight:700;white-space:pre">
+              <path
+                 d="M 1.1691631,64.628998 V 63.312894 H 1.320833 V 64.13974 L 1.7587187,63.718163 H 1.9609453 L 1.523875,64.13974 1.9723613,64.628998 h -0.20875 L 1.320833,64.13974 v 0.489258 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path7885" />
+              <path
+                 d="M 2.4257402,64.628998 2.0302568,63.718163 h 0.1663477 l 0.3123095,0.72084 0.318833,-0.72084 h 0.1516699 l -0.3987451,0.910835 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path7887" />
+              <path
+                 d="m 3.7296123,64.424325 q -0.069312,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.1614551,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524853 v 0.643374 q 0,0.164717 0.034248,0.267461 H 3.7581523 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path7889" />
+              <path
+                 d="m 4.2726886,63.922836 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054882,0.09867 0.091328,0.09867 0.091328,0.299262 0,0.158194 -0.061157,0.282954 -0.060342,0.123946 -0.161455,0.196519 -0.1011133,0.07176 -0.250337,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353896 H 4.1210187 V 63.71811 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path7891" />
+              <path
+                 d="m 5.1443828,64.580887 v -0.160639 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023647,-0.02609 -0.1174218,-0.06442 l -0.052188,-0.0212 -0.1051905,-0.04159 q -0.1696093,-0.06605 -0.2136425,-0.122314 -0.044849,-0.05545 -0.044849,-0.135362 0,-0.112529 0.086436,-0.185102 0.087251,-0.07257 0.2821386,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137808 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027442,0.03751 q 0.1410693,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07583 -0.2902929,0.07583 -0.174502,0 -0.3587891,-0.07339 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path7893" />
+            </g>
+            <path
+               class="f"
+               d="m 6.012,62.959 h 1 v 2.171 h -1 z"
+               id="path370" />
+            <g
+               id="text372"
+               class="g"
+               style="white-space:pre" />
+            <path
+               class="i"
+               d="m 7.014,62.959 h 1 v 2.171 h -1 z"
+               id="path374" />
+            <g
+               aria-label=""
+               id="text376"
+               class="j"
+               style="white-space:pre;fill:#00d7ff">
+              <path
+                 d="m 7.0139999,63.059296 1.0258106,0.990747 -1.0258106,0.992378 z"
+                 style="white-space:pre;fill:#00d7ff"
+                 id="path7897" />
+            </g>
+            <path
+               class="i"
+               d="m 8.016,62.959 h 1 v 2.171 h -1 z"
+               id="path378" />
+            <g
+               id="text380"
+               class="k"
+               style="white-space:pre;fill:#eeeeee" />
+            <path
+               class="i"
+               d="m 9.018,62.959 h 1 v 2.171 h -1 z"
+               id="path382" />
+            <g
+               aria-label="~"
+               id="text384"
+               class="l"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="M 9.0636637,64.30038 V 64.2857 q 0,-0.106821 0.062788,-0.185103 0.063603,-0.0791 0.1704248,-0.0791 0.026909,0 0.052188,0.0057 0.026094,0.0049 0.058711,0.01794 0.032617,0.01223 0.097852,0.04893 l 0.098667,0.05463 q 0.090513,0.04974 0.1475927,0.04974 0.060342,0 0.088882,-0.04322 0.029356,-0.04403 0.029356,-0.0954 v -0.01305 h 0.1043749 v 0.01305 q 0,0.136177 -0.077466,0.201411 -0.07665,0.06442 -0.1630859,0.06442 -0.080728,0 -0.2136426,-0.07583 l -0.083174,-0.04811 q -0.09459,-0.05382 -0.1524853,-0.05382 -0.032617,0 -0.061157,0.01712 -0.027725,0.01712 -0.044849,0.05463 -0.017124,0.03751 -0.017124,0.06605 v 0.01468 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path7901" />
+            </g>
+            <path
+               class="i"
+               d="m 10.02,62.959 h 1 v 2.171 h -1 z"
+               id="path386" />
+            <g
+               aria-label="/"
+               id="text388"
+               class="k"
+               style="white-space:pre;fill:#eeeeee">
+              <path
+                 d="M 10.196133,64.667323 H 10.04691 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#eeeeee"
+                 id="path7904" />
+            </g>
+            <path
+               class="i"
+               d="m 11.022,62.959 h 3 v 2.171 h -3 z"
+               id="path390" />
+            <g
+               aria-label="tmp"
+               id="text392"
+               class="l"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 11.910003,64.592303 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119869,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 63.92042 h -0.227504 v -0.126391 h 0.227504 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155748 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path7907" />
+              <path
+                 d="m 12.081243,64.628998 v -0.910835 h 0.132916 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 H 12.460418 V 64.00764 q 0,-0.120683 -0.02365,-0.141884 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path7909" />
+              <path
+                 d="m 13.291341,63.922836 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299262 0,0.158194 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 V 63.71811 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path7911" />
+            </g>
+            <path
+               class="i"
+               d="m 14.028,62.959 h 1 v 2.171 h -1 z"
+               id="path394" />
+            <g
+               id="text396"
+               class="k"
+               style="white-space:pre;fill:#eeeeee" />
+            <g
+               aria-label=""
+               id="text398"
+               class="m"
+               style="white-space:pre;fill:#005f87">
+              <path
+                 d="M 15.03,63.059296 16.05581,64.050043 15.03,65.042421 Z"
+                 style="white-space:pre;fill:#005f87"
+                 id="path7915" />
+            </g>
+            <g
+               aria-label=""
+               id="text400"
+               class="o"
+               style="white-space:pre;fill:#262626">
+              <path
+                 d="M 106.23581,65.042421 105.21,64.050043 106.23581,63.059296 Z"
+                 style="white-space:pre;fill:#262626"
+                 id="path7918" />
+            </g>
+            <path
+               class="p"
+               d="m 106.212,62.959 h 13 v 2.171 h -13 z"
+               id="path402" />
+            <g
+               aria-label="stage-admin"
+               id="text404"
+               class="q"
+               style="white-space:pre;fill:#af5fd7">
+              <path
+                 d="m 106.34899,64.580887 v -0.160639 q 0.0913,0.05953 0.19326,0.08399 0.10193,0.02365 0.17287,0.02365 0.11497,0 0.16553,-0.03669 0.0506,-0.03751 0.0506,-0.09296 0,-0.03669 -0.0236,-0.06279 -0.0237,-0.02609 -0.11742,-0.06442 l -0.0522,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.21364,-0.122314 -0.0449,-0.05545 -0.0449,-0.135362 0,-0.112529 0.0864,-0.185102 0.0873,-0.07257 0.28214,-0.07257 0.14596,0 0.27643,0.0424 v 0.137808 q -0.15004,-0.05382 -0.28214,-0.05382 -0.0962,0 -0.15085,0.03425 -0.0538,0.03343 -0.0538,0.08399 0,0.04893 0.0473,0.07828 0.0465,0.02936 0.15167,0.06768 l 0.10274,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.0571,0.06034 0.0571,0.150854 0,0.118238 -0.0913,0.194888 -0.0905,0.07583 -0.29029,0.07583 -0.1745,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path7921" />
+              <path
+                 d="m 108.10135,64.592303 q -0.10682,0.04485 -0.15493,0.053 -0.0481,0.009 -0.093,0.009 -0.0954,0 -0.1745,-0.03669 -0.0791,-0.03669 -0.11987,-0.108452 -0.04,-0.07176 -0.04,-0.221797 V 63.92042 h -0.2275 v -0.126391 h 0.2275 v -0.366944 h 0.15167 v 0.366944 h 0.40527 v 0.126391 h -0.40527 v 0.364497 q 0,0.110083 0.0261,0.155748 0.0261,0.04485 0.0693,0.06605 0.044,0.0212 0.10356,0.0212 0.11008,0 0.23158,-0.06931 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path7923" />
+              <path
+                 d="m 108.93961,64.424325 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158193 0.0603,-0.282138 0.0603,-0.124761 0.16145,-0.196519 0.10112,-0.07257 0.25034,-0.07257 0.0432,0 0.13047,0.009 0.0131,0.0016 0.0391,0.0041 h 0.15249 v 0.643374 q 0,0.164717 0.0342,0.267461 h -0.15819 q -0.0179,-0.07502 -0.0285,-0.204673 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23403,0.108452 -0.093,0.108452 -0.093,0.295186 0,0.135361 0.0506,0.204673 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path7925" />
+              <path
+                 d="m 109.95074,64.424325 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158193 0.0603,-0.282138 0.0603,-0.124761 0.16146,-0.196519 0.10111,-0.07257 0.25033,-0.07257 0.0432,0 0.13047,0.009 0.013,0.0016 0.0391,0.0041 h 0.15249 v 0.644189 q 0,0.229951 -0.007,0.280508 -0.006,0.05137 -0.0196,0.10356 -0.0326,0.121499 -0.14922,0.191626 -0.11579,0.07013 -0.28051,0.07013 -0.16553,0 -0.33514,-0.08481 v -0.153301 q 0.0644,0.04403 0.1582,0.07747 0.0946,0.03425 0.18265,0.03425 0.0693,0 0.13129,-0.02202 0.062,-0.02202 0.10029,-0.0636 0.0383,-0.04159 0.0522,-0.09704 0.0139,-0.05463 0.0139,-0.145962 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23402,0.108452 -0.093,0.108452 -0.093,0.295186 0,0.135361 0.0506,0.204673 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path7927" />
+              <path
+                 d="m 111.10131,64.568656 q -0.18184,0.08644 -0.34411,0.08644 -0.12313,0 -0.22016,-0.06116 -0.097,-0.06116 -0.15575,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.0554,-0.239736 0.0555,-0.114976 0.15494,-0.17858 0.0995,-0.06442 0.22179,-0.06442 0.16227,0 0.26012,0.115791 0.0987,0.115791 0.0987,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.0391,0.172871 0.04,0.07828 0.10438,0.117422 0.0644,0.03914 0.14677,0.03914 0.14678,0 0.32454,-0.09785 z m -0.60586,-0.48355 h 0.45419 v -0.02202 q 0,-0.111714 -0.0546,-0.177764 -0.0546,-0.06605 -0.14596,-0.06605 -0.0921,0 -0.15983,0.06768 -0.0669,0.06686 -0.0938,0.198149 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path7929" />
+              <path
+                 d="m 111.40384,64.179696 v -0.126392 h 0.63277 v 0.126392 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path7931" />
+              <path
+                 d="m 112.945,64.424325 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158193 0.0603,-0.282138 0.0603,-0.124761 0.16145,-0.196519 0.10112,-0.07257 0.25034,-0.07257 0.0432,0 0.13047,0.009 0.013,0.0016 0.0391,0.0041 h 0.15249 v 0.643374 q 0,0.164717 0.0342,0.267461 h -0.15819 q -0.0179,-0.07502 -0.0285,-0.204673 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23403,0.108452 -0.093,0.108452 -0.093,0.295186 0,0.135361 0.0506,0.204673 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path7933" />
+              <path
+                 d="m 113.95613,64.424325 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158193 0.0603,-0.282138 0.0603,-0.124761 0.16146,-0.196519 0.10111,-0.07257 0.25033,-0.07257 0.0432,0 0.13047,0.009 0.0131,0.0016 0.0391,0.0041 v -0.405269 h 0.15249 v 1.316104 h -0.15249 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23402,0.108452 -0.093,0.108452 -0.093,0.295186 0,0.135361 0.0506,0.204673 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path7935" />
+              <path
+                 d="m 114.28067,64.628998 v -0.910835 h 0.13292 v 0.20875 q 0.0628,-0.132915 0.11661,-0.183472 0.0546,-0.05056 0.11008,-0.05056 0.066,0 0.10601,0.05219 0.0408,0.05137 0.0408,0.146777 v 0.04893 q 0.0269,-0.08317 0.0644,-0.134546 0.0383,-0.05219 0.0791,-0.08236 0.0408,-0.03099 0.0938,-0.03099 0.0587,0 0.10029,0.04974 0.0416,0.04974 0.0416,0.198149 v 0.688223 h -0.13291 v -0.622173 q 0,-0.07665 -0.005,-0.104375 -0.005,-0.02854 -0.0196,-0.04322 -0.0147,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.0913,0.06524 -0.0481,0.06442 -0.0987,0.214458 v 0.504751 h -0.12721 V 64.00764 q 0,-0.120683 -0.0237,-0.141884 -0.0237,-0.0212 -0.0424,-0.0212 -0.0416,0 -0.0897,0.07257 -0.0473,0.07257 -0.0905,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path7937" />
+              <path
+                 d="m 115.60575,64.628998 v -0.784444 h -0.25279 v -0.126391 h 0.40446 v 0.784443 h 0.2536 v 0.126392 z m -0.0253,-1.239453 q 0,-0.05137 0.0351,-0.07665 0.0351,-0.02528 0.066,-0.02528 0.0318,0 0.0669,0.02528 0.0351,0.02528 0.0351,0.07665 0,0.05056 -0.0351,0.07584 -0.0351,0.02528 -0.0669,0.02528 -0.031,0 -0.066,-0.02528 -0.0351,-0.02528 -0.0351,-0.07584 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path7939" />
+              <path
+                 d="m 116.35187,64.628998 v -0.910835 h 0.15167 v 0.198965 q 0.0652,-0.105191 0.15737,-0.164717 0.0922,-0.05953 0.18429,-0.05953 0.0807,0 0.14678,0.04322 0.0661,0.0424 0.0921,0.111714 0.0269,0.06931 0.0269,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.0131,-0.172871 -0.0122,-0.0424 -0.0465,-0.06931 -0.0334,-0.02691 -0.0734,-0.02691 -0.0799,0 -0.17206,0.07583 -0.0913,0.07583 -0.15085,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path7941" />
+            </g>
+          </svg>
+        </svg>
+      </g>
+    </svg>
+  </g>
+</svg>
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot03.svg b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot03.svg
new file mode 100644
index 0000000000..347c6cf606
--- /dev/null
+++ b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot03.svg
@@ -0,0 +1,2907 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<svg
+   width="1190"
+   height="607.92096"
+   version="1.1"
+   id="svg204"
+   sodipodi:docname="3.svg"
+   inkscape:version="1.1.1 (c3084ef, 2021-09-22)"
+   xmlns:inkscape="http://www.inkscape.org/namespaces/inkscape"
+   xmlns:sodipodi="http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd"
+   xmlns="http://www.w3.org/2000/svg"
+   xmlns:svg="http://www.w3.org/2000/svg">
+  <defs
+     id="defs208">
+    <clipPath
+       clipPathUnits="userSpaceOnUse"
+       id="clipPath888">
+      <rect
+         style="fill:#ff0000;stroke-width:1"
+         id="rect890"
+         width="1486.3101"
+         height="690.07245"
+         x="-146.60886"
+         y="-82.151474" />
+    </clipPath>
+  </defs>
+  <sodipodi:namedview
+     id="namedview206"
+     pagecolor="#ffffff"
+     bordercolor="#666666"
+     borderopacity="1.0"
+     inkscape:pageshadow="2"
+     inkscape:pageopacity="0.0"
+     inkscape:pagecheckerboard="0"
+     showgrid="false"
+     inkscape:zoom="0.3956106"
+     inkscape:cx="135.23399"
+     inkscape:cy="540.93596"
+     inkscape:window-width="1416"
+     inkscape:window-height="814"
+     inkscape:window-x="12"
+     inkscape:window-y="25"
+     inkscape:window-maximized="0"
+     inkscape:current-layer="svg204" />
+  <g
+     id="g886"
+     clip-path="url(#clipPath888)">
+    <path
+       id="rect2"
+       class="a"
+       d="M 0,0 H 1190 V 651.29999 H 0 Z"
+       style="fill:#000000" />
+    <svg
+       height="651.29999"
+       viewBox="0 0 119 65.13"
+       width="1190"
+       version="1.1"
+       id="svg202">
+      <style
+         id="style4">.a{fill:#282d35}.e,.f,.g{fill:#e88388;white-space:pre}.f,.g{fill:#b9c0cb}.g{fill:#dbab79}.h{fill:#00d7ff}.i{fill:#000;white-space:pre}.k{fill:#005f87}.m,.n{fill:#eee;white-space:pre}.n{fill:#fff;font-weight:700}</style>
+      <g
+         font-family="Monaco, Consolas, Menlo, 'Bitstream Vera Sans Mono', 'Powerline Symbols', monospace"
+         font-size="1.67px"
+         id="g200">
+        <defs
+           id="defs12">
+          <symbol
+             id="a">
+            <path
+               fill="transparent"
+               d="M 0,0 H 119 V 30 H 0 Z"
+               id="path6" />
+          </symbol>
+          <symbol
+             id="b">
+            <path
+               fill="#6f7683"
+               d="M 0,0 H 1.102 V 2.171 H 0 Z"
+               id="path9" />
+          </symbol>
+        </defs>
+        <svg
+           width="119"
+           version="1.1"
+           id="svg198"
+           height="100%">
+          <svg
+             version="1.1"
+             id="svg196"
+             width="100%"
+             height="100%">
+            <g
+               id="use16">
+              <path
+                 fill="transparent"
+                 d="M 0,0 H 119 V 30 H 0 Z"
+                 id="path999" />
+            </g>
+            <g
+               id="use18"
+               transform="translate(16.996,62.933998)">
+              <path
+                 fill="#6f7683"
+                 d="M 0,0 H 1.102 V 2.171 H 0 Z"
+                 id="path1003" />
+            </g>
+            <g
+               aria-label="name"
+               id="text20"
+               class="e"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="M 2.1303915,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.065234,-0.10519043 0.1573779,-0.16471679 0.092144,-0.0595264 0.1842871,-0.0595264 0.080728,0 0.1467773,0.0432178 0.06605,0.0424023 0.092144,0.11171387 0.026909,0.0693115 0.026909,0.27235346 V 1.67 h -0.15167 V 1.142417 q 0,-0.1312842 -0.013047,-0.17287113 -0.012231,-0.0424023 -0.046479,-0.0693115 -0.033433,-0.0269092 -0.073389,-0.0269092 -0.079912,0 -0.1720556,0.075835 -0.091328,0.075835 -0.1508545,0.18999507 V 1.67 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1008" />
+              <path
+                 d="m 3.7302646,1.4653271 q -0.069311,0.1141602 -0.1671631,0.1720557 -0.097036,0.057896 -0.1785791,0.057896 -0.1141601,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581934 0.060342,-0.2821387 0.060342,-0.1247607 0.1614551,-0.19651851 0.1011133,-0.0725733 0.2503369,-0.0725733 0.043218,0 0.1304688,0.00897 0.013047,0.001631 0.039141,0.004077 H 3.8827499 V 1.402539 q 0,0.1647168 0.034248,0.267461 H 3.7588046 q -0.017939,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.080728,-0.0212012 -0.1500391,-0.0212012 -0.1402539,0 -0.2340283,0.10845215 -0.092959,0.10845218 -0.092959,0.29518558 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166064,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1010" />
+              <path
+                 d="M 4.0645908,1.67 V 0.75916502 h 0.132915 v 0.20874999 q 0.062788,-0.13291503 0.1166065,-0.18347167 0.054634,-0.0505566 0.110083,-0.0505566 0.06605,0 0.1060058,0.0521875 0.040771,0.0513721 0.040771,0.14677734 v 0.0489258 q 0.026909,-0.0831738 0.064419,-0.1345459 0.038325,-0.0521875 0.079097,-0.0823584 0.040771,-0.0309863 0.093774,-0.0309863 0.058711,0 0.1002979,0.0497412 0.041587,0.0497412 0.041587,0.19814941 V 1.67 H 4.8172324 V 1.0478271 q 0,-0.0766504 -0.00489,-0.10437498 -0.00489,-0.02854 -0.01957,-0.0432178 -0.014678,-0.0146777 -0.031802,-0.0146777 -0.042402,0 -0.091328,0.0652344 -0.04811,0.0644189 -0.098667,0.21445801 V 1.67 H 4.4437656 V 1.0486426 q 0,-0.12068364 -0.023648,-0.14188481 -0.023647,-0.0212012 -0.042402,-0.0212012 -0.041587,0 -0.089697,0.0725732 -0.047295,0.0725732 -0.090513,0.18591794 V 1.67 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1012" />
+              <path
+                 d="m 5.8919688,1.6096582 q -0.1818408,0.086436 -0.3441113,0.086436 -0.1231299,0 -0.220166,-0.061157 -0.097036,-0.061157 -0.1557471,-0.174502 -0.057895,-0.1141601 -0.057895,-0.2438134 0,-0.1247608 0.055449,-0.23973636 0.055449,-0.11497558 0.1549317,-0.1785791 0.099482,-0.0644189 0.2217968,-0.0644189 0.1622705,0 0.2601221,0.11579101 0.098667,0.11579102 0.098667,0.35715819 v 0.032617 H 5.2771348 q 0,0.09459 0.039141,0.1728711 0.039956,0.078281 0.104375,0.1174219 0.064419,0.039141 0.1467773,0.039141 0.1467773,0 0.324541,-0.097852 z M 5.2861046,1.1261084 h 0.4541943 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.0660498 -0.1459619,-0.0660498 -0.092144,0 -0.1598242,0.0676807 -0.066865,0.0668652 -0.093774,0.19814944 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1014" />
+            </g>
+            <g
+               aria-label=":"
+               id="text22"
+               class="f"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 6.5126739,1.7083252 q -0.054634,0 -0.093774,-0.039141 -0.039141,-0.039141 -0.039141,-0.093774 0,-0.055449 0.039141,-0.093774 0.039956,-0.039141 0.093774,-0.039141 0.053818,0 0.092959,0.039141 0.039956,0.038325 0.039956,0.093774 0,0.054634 -0.039141,0.093774 -0.039141,0.039141 -0.093774,0.039141 z m 0,-0.70860843 q -0.054634,0 -0.093774,-0.0391406 -0.039141,-0.0391406 -0.039141,-0.0937744 0,-0.0554492 0.039141,-0.0937744 0.039956,-0.0391406 0.093774,-0.0391406 0.053818,0 0.092959,0.0391406 0.039956,0.0383252 0.039956,0.0937744 0,0.0546338 -0.039141,0.0937744 -0.039141,0.0391406 -0.093774,0.0391406 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1017" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-apiserver"
+               id="text24"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 8.3544031,1.67 V 0.96139158 H 8.1521765 v -0.1263916 h 0.2022266 v -0.0424023 q 0,-0.18020996 0.040771,-0.26664551 0.040771,-0.0864355 0.1255762,-0.14188476 0.08562,-0.0554492 0.225874,-0.0554492 0.1060058,0 0.2152734,0.0220166 v 0.14433105 q -0.1182373,-0.0391406 -0.2095654,-0.0391406 -0.072573,0 -0.1280225,0.0269092 -0.055449,0.0269092 -0.087251,0.0880664 -0.030986,0.0603418 -0.030986,0.20548827 v 0.0587109 h 0.3612354 v 0.1263916 H 8.506073 V 1.67 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1020" />
+              <path
+                 d="m 9.5188367,1.6952783 q -0.1957031,0 -0.313125,-0.1361768 -0.1174219,-0.1369922 -0.1174219,-0.3449267 0,-0.2079346 0.1174219,-0.34411135 0.1174219,-0.13617675 0.313125,-0.13617675 0.1948877,0 0.3123096,0.13617675 0.1174218,0.13617675 0.1174218,0.34411135 0,0.2079345 -0.1174218,0.3449267 -0.1174219,0.1361768 -0.3123096,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.1647168 -0.071758,-0.25930666 -0.071758,-0.0945898 -0.1932568,-0.0945898 -0.1223145,0 -0.1940723,0.0945898 -0.071758,0.0945899 -0.071758,0.25930666 0,0.1655322 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1022" />
+              <path
+                 d="m 10.520184,1.6952783 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369922 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.34411135 0.117422,-0.13617675 0.313125,-0.13617675 0.194888,0 0.31231,0.13617675 0.117422,0.13617675 0.117422,0.34411135 0,0.2079345 -0.117422,0.3449267 -0.117422,0.1361768 -0.31231,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.1647168 -0.07176,-0.25930666 -0.07176,-0.0945898 -0.193257,-0.0945898 -0.122314,0 -0.194072,0.0945898 -0.07176,0.0945899 -0.07176,0.25930666 0,0.1655322 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1024" />
+              <path
+                 d="M 11.205145,1.2206982 V 1.0943066 h 0.632774 v 0.1263916 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1026" />
+              <path
+                 d="M 12.188554,1.67 V 0.35389648 h 0.151669 V 1.1807422 l 0.437886,-0.42157718 h 0.202227 L 12.543265,1.1807422 12.991752,1.67 h -0.20875 L 12.340223,1.1807422 V 1.67 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1028" />
+              <path
+                 d="M 13.898509,0.75916502 V 1.67 H 13.74684 V 1.4702197 q -0.07339,0.1125293 -0.163086,0.1687939 -0.0897,0.056265 -0.179395,0.056265 -0.07991,0 -0.146777,-0.042402 -0.06605,-0.043218 -0.09214,-0.1125293 -0.02609,-0.070127 -0.02609,-0.2723535 V 0.75916502 h 0.15167 V 1.286748 q 0,0.1312842 0.01223,0.1736865 0.01305,0.041587 0.04648,0.068496 0.03425,0.026909 0.07339,0.026909 0.07991,0 0.17124,-0.07502 0.09214,-0.075835 0.152486,-0.1908106 V 0.75916502 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1030" />
+              <path
+                 d="m 14.290731,0.96383787 q 0.07013,-0.11416016 0.167164,-0.17205566 0.09704,-0.0578955 0.178579,-0.0578955 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.29926271 0,0.1581933 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101114,0.071758 -0.250337,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 H 14.139062 V 0.35389648 h 0.151669 z m 0,0.18020993 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.20467283 -0.05137,-0.0684961 -0.116606,-0.0684961 -0.07094,0 -0.156563,0.0717578 -0.0848,0.0717578 -0.153301,0.19325681 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1032" />
+              <path
+                 d="m 15.909359,1.6096582 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154931,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.162271,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 15.303495,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159825,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1034" />
+              <path
+                 d="M 16.230638,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.07094,-0.1125293 0.162271,-0.16797851 0.09214,-0.0562647 0.204673,-0.0562647 0.08236,0 0.164717,0.0252783 V 1.0877832 H 16.768007 V 0.87984861 q -0.03833,-0.006523 -0.06034,-0.006523 -0.0848,0 -0.166348,0.0668652 -0.08154,0.0668652 -0.159009,0.20059569 V 1.67 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1036" />
+              <path
+                 d="M 17.15452,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.06523,-0.10519043 0.157378,-0.16471679 0.09214,-0.0595264 0.184287,-0.0595264 0.08073,0 0.146778,0.0432178 0.06605,0.0424023 0.09214,0.11171387 0.02691,0.0693115 0.02691,0.27235346 V 1.67 h -0.15167 V 1.142417 q 0,-0.1312842 -0.01305,-0.17287113 -0.01223,-0.0424023 -0.04648,-0.0693115 -0.03343,-0.0269092 -0.07339,-0.0269092 -0.07991,0 -0.172055,0.075835 -0.09133,0.075835 -0.150855,0.18999507 V 1.67 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1038" />
+              <path
+                 d="m 18.913402,1.6096582 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.16227,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 18.307538,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1040" />
+              <path
+                 d="m 19.918827,1.6333056 q -0.106822,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084521 Q 19.33661,1.478374 19.33661,1.3283349 V 0.96139158 H 19.109105 V 0.83499998 H 19.33661 V 0.46805663 h 0.15167 v 0.36694335 h 0.405268 v 0.1263916 H 19.48828 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1042" />
+              <path
+                 d="m 20.916098,1.6096582 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.16227,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 20.310234,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1044" />
+              <path
+                 d="M 21.170512,1.6218896 V 1.46125 q 0.09133,0.059526 0.193257,0.083989 0.101928,0.023648 0.172871,0.023648 0.114975,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.105191,-0.041587 q -0.169609,-0.06605 -0.213642,-0.1223144 -0.04485,-0.055449 -0.04485,-0.13536133 0,-0.11252929 0.08644,-0.18510253 0.08725,-0.0725732 0.282138,-0.0725732 0.145962,0 0.276431,0.0424023 v 0.13780762 q -0.150039,-0.0538184 -0.282139,-0.0538184 -0.09622,0 -0.150854,0.034248 -0.05382,0.0334326 -0.05382,0.0839893 0,0.0489258 0.04729,0.0782812 0.04648,0.029355 0.151669,0.067681 l 0.102745,0.03751 q 0.141069,0.051372 0.198149,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1046" />
+              <path
+                 d="M 22.21997,1.2206982 V 1.0943066 h 0.632773 v 0.1263916 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1048" />
+              <path
+                 d="m 23.30286,0.96383787 q 0.07013,-0.11416016 0.167163,-0.17205566 0.09704,-0.0578955 0.17858,-0.0578955 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.29926271 0,0.1581933 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101114,0.071758 -0.250337,0.071758 -0.0424,0 -0.130469,-0.00897 Q 23.328954,1.6724462 23.30286,1.67 V 2.0238964 H 23.15119 V 0.75916502 h 0.15167 z m 0,0.18020993 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.20467283 -0.05137,-0.0684961 -0.116606,-0.0684961 -0.07094,0 -0.156563,0.0717578 -0.08481,0.0717578 -0.153301,0.19325681 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1050" />
+              <path
+                 d="M 24.204725,1.67 V 0.35389648 h 0.15167 V 1.1807422 l 0.437886,-0.42157718 h 0.202227 L 24.559437,1.1807422 25.007924,1.67 h -0.20875 L 24.356395,1.1807422 V 1.67 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1052" />
+              <path
+                 d="M 25.420532,1.67 V 0.88555662 h -0.252783 v -0.1263916 h 0.404453 V 1.5436084 H 25.8258 V 1.67 Z m -0.02528,-1.23945314 q 0,-0.0513721 0.03506,-0.0766504 0.03506,-0.0252783 0.06605,-0.0252783 0.0318,0 0.06686,0.0252783 0.03506,0.0252783 0.03506,0.0766504 0,0.0505566 -0.03506,0.075835 -0.03506,0.0252783 -0.06686,0.0252783 -0.03099,0 -0.06605,-0.0252783 -0.03506,-0.0252783 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1054" />
+              <path
+                 d="M 26.22536,1.2206982 V 1.0943066 h 0.632773 v 0.1263916 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1056" />
+              <path
+                 d="m 27.766523,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101113,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130468,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152485 V 1.402539 q 0,0.1647168 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234028,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1058" />
+              <path
+                 d="m 28.309598,0.96383787 q 0.07013,-0.11416016 0.167163,-0.17205566 0.09704,-0.0578955 0.178579,-0.0578955 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.29926271 0,0.1581933 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101113,0.071758 -0.250337,0.071758 -0.0424,0 -0.130468,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 v 0.3538964 h -0.15167 V 0.75916502 h 0.15167 z m 0,0.18020993 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.20467283 -0.05137,-0.0684961 -0.116607,-0.0684961 -0.07094,0 -0.156562,0.0717578 -0.0848,0.0717578 -0.153301,0.19325681 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1060" />
+              <path
+                 d="M 29.425922,1.67 V 0.88555662 h -0.252783 v -0.1263916 h 0.404453 V 1.5436084 h 0.253599 V 1.67 Z m -0.02528,-1.23945314 q 0,-0.0513721 0.03506,-0.0766504 0.03506,-0.0252783 0.06605,-0.0252783 0.0318,0 0.06686,0.0252783 0.03506,0.0252783 0.03506,0.0766504 0,0.0505566 -0.03506,0.075835 -0.03506,0.0252783 -0.06686,0.0252783 -0.03099,0 -0.06605,-0.0252783 -0.03506,-0.0252783 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1062" />
+              <path
+                 d="M 30.18264,1.6218896 V 1.46125 q 0.09133,0.059526 0.193257,0.083989 0.101928,0.023648 0.172871,0.023648 0.114975,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 L 30.5716,1.2908252 30.466409,1.2492382 q -0.169609,-0.06605 -0.213642,-0.1223144 -0.04485,-0.055449 -0.04485,-0.13536133 0,-0.11252929 0.08644,-0.18510253 0.08725,-0.0725732 0.282138,-0.0725732 0.145962,0 0.276431,0.0424023 v 0.13780762 q -0.150039,-0.0538184 -0.282139,-0.0538184 -0.09622,0 -0.150854,0.034248 -0.05382,0.0334326 -0.05382,0.0839893 0,0.0489258 0.04729,0.0782812 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.14107,0.051372 0.19815,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1064" />
+              <path
+                 d="m 31.930922,1.6096582 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155748,-0.174502 -0.05789,-0.1141601 -0.05789,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.16227,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 31.325058,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1066" />
+              <path
+                 d="M 32.252202,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.07094,-0.1125293 0.16227,-0.16797851 0.09214,-0.0562647 0.204673,-0.0562647 0.08236,0 0.164717,0.0252783 V 1.0877832 H 32.78957 V 0.87984861 q -0.03833,-0.006523 -0.06034,-0.006523 -0.0848,0 -0.166347,0.0668652 -0.08154,0.0668652 -0.159009,0.20059569 V 1.67 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1068" />
+              <path
+                 d="M 33.472084,1.67 33.0766,0.75916502 h 0.166348 l 0.31231,0.72083978 0.318833,-0.72083978 h 0.15167 L 33.627015,1.67 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1070" />
+              <path
+                 d="m 34.934965,1.6096582 q -0.18184,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154931,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.162271,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 34.329101,1.1261084 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06687,0.0668652 -0.09378,0.19814944 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1072" />
+              <path
+                 d="M 35.256244,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.07094,-0.1125293 0.16227,-0.16797851 0.09214,-0.0562647 0.204673,-0.0562647 0.08236,0 0.164717,0.0252783 V 1.0877832 H 35.793612 V 0.87984861 q -0.03833,-0.006523 -0.06034,-0.006523 -0.0848,0 -0.166348,0.0668652 -0.08154,0.0668652 -0.159008,0.20059569 V 1.67 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1074" />
+            </g>
+            <g
+               aria-label="namespace"
+               id="text26"
+               class="e"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="m 2.1303915,3.8410001 v -0.910835 h 0.15167 V 3.12913 q 0.065234,-0.1051904 0.1573779,-0.1647168 0.092144,-0.059526 0.1842871,-0.059526 0.080728,0 0.1467773,0.043218 0.06605,0.042402 0.092144,0.1117139 0.026909,0.069311 0.026909,0.2723535 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.013047,-0.1728711 -0.012231,-0.042402 -0.046479,-0.069311 -0.033433,-0.026909 -0.073389,-0.026909 -0.079912,0 -0.1720556,0.075835 -0.091328,0.075835 -0.1508545,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1077" />
+              <path
+                 d="m 3.7302646,3.6363272 q -0.069311,0.1141602 -0.1671631,0.1720557 -0.097036,0.057896 -0.1785791,0.057896 -0.1141601,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304688,0.00897 0.013047,0.00163 0.039141,0.00408 h 0.1524853 v 0.643374 q 0,0.1647168 0.034248,0.267461 H 3.7588046 q -0.017939,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 3.0655265 q -0.080728,-0.021201 -0.1500391,-0.021201 -0.1402539,0 -0.2340283,0.1084521 -0.092959,0.1084522 -0.092959,0.2951856 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166064,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1079" />
+              <path
+                 d="m 4.0645908,3.8410001 v -0.910835 h 0.132915 v 0.20875 q 0.062788,-0.132915 0.1166065,-0.1834716 0.054634,-0.050557 0.110083,-0.050557 0.06605,0 0.1060058,0.052188 0.040771,0.051372 0.040771,0.1467774 v 0.048926 q 0.026909,-0.083174 0.064419,-0.1345459 0.038325,-0.052188 0.079097,-0.082358 0.040771,-0.030986 0.093774,-0.030986 0.058711,0 0.1002979,0.049741 0.041587,0.049741 0.041587,0.1981494 V 3.8410001 H 4.8172324 V 3.2188272 q 0,-0.07665 -0.00489,-0.104375 -0.00489,-0.02854 -0.01957,-0.043218 -0.014678,-0.014678 -0.031802,-0.014678 -0.042402,0 -0.091328,0.065234 -0.04811,0.064419 -0.098667,0.214458 v 0.504751 H 4.4437656 V 3.2196427 q 0,-0.1206836 -0.023648,-0.1418848 -0.023647,-0.021201 -0.042402,-0.021201 -0.041587,0 -0.089697,0.072573 -0.047295,0.072573 -0.090513,0.1859179 v 0.5259522 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1081" />
+              <path
+                 d="m 5.8919688,3.7806583 q -0.1818408,0.086436 -0.3441113,0.086436 -0.1231299,0 -0.220166,-0.061157 -0.097036,-0.061157 -0.1557471,-0.1745019 -0.057895,-0.1141602 -0.057895,-0.2438135 0,-0.1247608 0.055449,-0.2397363 0.055449,-0.1149756 0.1549317,-0.1785791 0.099482,-0.064419 0.2217968,-0.064419 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.3571582 v 0.032617 H 5.2771348 q 0,0.09459 0.039141,0.1728711 0.039956,0.078281 0.104375,0.1174219 0.064419,0.039141 0.1467773,0.039141 0.1467773,0 0.324541,-0.097852 z M 5.2861046,3.2971085 h 0.4541943 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.067681 -0.066865,0.066865 -0.093774,0.1981494 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1083" />
+              <path
+                 d="M 6.1463828,3.7928897 V 3.6322501 q 0.091328,0.059526 0.1932568,0.083989 0.1019287,0.023648 0.1728711,0.023648 0.1149756,0 0.1655322,-0.036694 0.050557,-0.03751 0.050557,-0.092959 0,-0.036694 -0.023648,-0.062788 -0.023648,-0.026094 -0.1174219,-0.064419 L 6.5353427,3.4618253 6.4301523,3.4202384 Q 6.2605429,3.3541886 6.2165097,3.2979239 6.1716611,3.2424747 6.1716611,3.1625626 q 0,-0.1125293 0.086436,-0.1851025 0.087251,-0.072573 0.2821387,-0.072573 0.1459619,0 0.2764307,0.042402 v 0.1378076 q -0.1500391,-0.053818 -0.2821387,-0.053818 -0.096221,0 -0.1508545,0.034248 -0.053818,0.033433 -0.053818,0.083989 0,0.048926 0.047295,0.078281 0.046479,0.029355 0.1516699,0.067681 l 0.1027441,0.03751 q 0.1410694,0.051372 0.1981494,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.091328,0.1948876 -0.090513,0.075835 -0.290293,0.075835 -0.1745019,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1085" />
+              <path
+                 d="m 7.2773836,3.134838 q 0.070127,-0.1141602 0.1671631,-0.1720557 0.097036,-0.057896 0.1785791,-0.057896 0.1141602,0 0.2054883,0.098667 0.091328,0.098667 0.091328,0.2992627 0,0.1581934 -0.061157,0.2829541 -0.060342,0.1239453 -0.1614551,0.1965185 -0.1011133,0.071758 -0.2503369,0.071758 -0.042402,0 -0.1304687,-0.00897 -0.013047,-0.00163 -0.039141,-0.00408 V 4.1948966 H 7.1257137 V 2.9301651 h 0.1516699 z m 0,0.1802099 v 0.3905909 q 0.082358,0.021201 0.15167,0.021201 0.1378076,0 0.231582,-0.1076367 0.09459,-0.1084521 0.09459,-0.296001 0,-0.1361767 -0.051372,-0.2046728 -0.051372,-0.068496 -0.1166065,-0.068496 -0.070942,0 -0.1565625,0.071758 -0.084805,0.071758 -0.1533008,0.1932568 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1087" />
+              <path
+                 d="M 8.7370031,3.6363272 Q 8.6676916,3.7504874 8.56984,3.8083829 q -0.097036,0.057896 -0.1785791,0.057896 -0.1141601,0 -0.2054882,-0.098667 Q 8.09526,3.6689444 8.09526,3.4683487 q 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.161455,-0.1965186 0.1011133,-0.072573 0.250337,-0.072573 0.043218,0 0.1304687,0.00897 0.013047,0.00163 0.039141,0.00408 h 0.1524854 v 0.643374 q 0,0.1647168 0.034248,0.267461 H 8.7655432 q -0.017939,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 3.0655265 q -0.080728,-0.021201 -0.150039,-0.021201 -0.1402539,0 -0.2340283,0.1084521 -0.092959,0.1084522 -0.092959,0.2951856 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166065,0.068496 0.070942,0 0.1565624,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1089" />
+              <path
+                 d="m 9.9063292,3.8149063 q -0.1524854,0.051372 -0.290293,0.051372 -0.1369922,0 -0.2438135,-0.062788 Q 9.2662169,3.7398868 9.2066905,3.6322501 9.1471642,3.5237979 9.1471642,3.3859903 q 0,-0.2071191 0.1345459,-0.3441113 0.1353613,-0.1369922 0.3261718,-0.1369922 0.1410694,0 0.2984473,0.053003 v 0.1459619 q -0.1590088,-0.072573 -0.284585,-0.072573 -0.083174,0 -0.1565625,0.041587 -0.073389,0.040771 -0.1133447,0.1280225 -0.039956,0.087251 -0.039956,0.1793945 0,0.1231299 0.07665,0.2348438 0.077466,0.1117138 0.2421827,0.1117138 0.049741,0 0.097852,-0.00652 0.04811,-0.00734 0.1777637,-0.051372 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1091" />
+              <path
+                 d="m 10.898707,3.7806583 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247608 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 10.292843,3.2971085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1093" />
+            </g>
+            <g
+               aria-label=":"
+               id="text28"
+               class="f"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 11.522674,3.8793253 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09377,0.039141 z m 0,-0.7086084 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09377,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1096" />
+            </g>
+            <g
+               aria-label="default"
+               id="text30"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 13.760702,3.6363272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 V 2.5248966 h 0.152486 v 1.3161035 h -0.152486 z m 0,-0.1802099 V 3.0655265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234028,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1099" />
+              <path
+                 d="m 14.911273,3.7806583 q -0.18184,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.05789,-0.1141602 -0.05789,-0.2438135 0,-0.1247608 0.05545,-0.2397363 0.05545,-0.1149756 0.154931,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 14.305409,3.2971085 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06687,0.066865 -0.09378,0.1981494 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1101" />
+              <path
+                 d="M 15.367099,3.8410001 V 3.1323917 H 15.164872 V 3.0060001 h 0.202227 v -0.042402 q 0,-0.18021 0.04077,-0.2666455 0.04077,-0.086436 0.125576,-0.1418848 0.08562,-0.055449 0.225874,-0.055449 0.106006,0 0.215274,0.022017 v 0.144331 q -0.118238,-0.039141 -0.209566,-0.039141 -0.07257,0 -0.128022,0.026909 -0.05545,0.026909 -0.08725,0.088066 -0.03099,0.060342 -0.03099,0.2054883 v 0.058711 h 0.361235 v 0.1263916 h -0.361235 v 0.7086084 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1103" />
+              <path
+                 d="m 16.75496,3.6363272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130468,0.00897 0.01305,0.00163 0.03914,0.00408 h 0.152485 v 0.643374 q 0,0.1647168 0.03425,0.267461 H 16.7835 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 3.0655265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234028,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1105" />
+              <path
+                 d="m 17.907162,2.9301651 v 0.910835 h -0.15167 V 3.6412198 q -0.07339,0.1125293 -0.163086,0.168794 -0.0897,0.056265 -0.179394,0.056265 -0.07991,0 -0.146778,-0.042402 -0.06605,-0.043218 -0.09214,-0.1125293 -0.02609,-0.070127 -0.02609,-0.2723535 V 2.9301651 h 0.15167 v 0.527583 q 0,0.1312842 0.01223,0.1736866 0.01305,0.041587 0.04648,0.068496 0.03425,0.026909 0.07339,0.026909 0.07991,0 0.17124,-0.075019 0.09214,-0.075835 0.152485,-0.1908105 V 2.9301651 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1107" />
+              <path
+                 d="M 18.403759,3.8410001 V 2.6521036 h -0.272354 v -0.127207 h 0.424024 v 1.1897119 h 0.284585 v 0.1263916 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1109" />
+              <path
+                 d="m 19.922089,3.8043057 q -0.106821,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119869,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217969 V 3.1323917 H 19.112367 V 3.0060001 h 0.227505 V 2.6390568 h 0.15167 v 0.3669433 h 0.405269 v 0.1263916 h -0.405269 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1111" />
+            </g>
+            <g
+               aria-label="spec"
+               id="text32"
+               class="e"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="M 0.13699218,5.9638897 V 5.8032501 q 0.0913281,0.059526 0.19325683,0.083989 0.10192871,0.023648 0.17287109,0.023648 0.11497559,0 0.16553223,-0.036694 0.0505566,-0.03751 0.0505566,-0.092959 0,-0.036694 -0.0236475,-0.062788 -0.0236475,-0.026094 -0.11742188,-0.064419 L 0.52595213,5.6328253 0.42076171,5.5912384 Q 0.25115234,5.5251886 0.20711914,5.4689239 0.1622705,5.4134747 0.1622705,5.3335626 q 0,-0.1125293 0.0864356,-0.1851025 0.087251,-0.072573 0.28213866,-0.072573 0.14596191,0 0.27643066,0.042402 v 0.1378076 q -0.15003906,-0.053818 -0.28213866,-0.053818 -0.0962207,0 -0.15085449,0.034248 -0.0538184,0.033433 -0.0538184,0.083989 0,0.048926 0.0472949,0.078281 0.0464795,0.029355 0.15166992,0.067681 l 0.10274414,0.03751 q 0.14106933,0.051372 0.1981494,0.1117139 0.0570801,0.060342 0.0570801,0.1508545 0,0.1182373 -0.0913281,0.1948876 -0.0905127,0.075835 -0.29029296,0.075835 -0.17450195,0 -0.35878906,-0.073389 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1114" />
+              <path
+                 d="m 1.2679932,5.305838 q 0.070127,-0.1141602 0.167163,-0.1720557 0.097036,-0.057895 0.1785791,-0.057895 0.1141602,0 0.2054883,0.098667 0.091328,0.098667 0.091328,0.2992627 0,0.1581934 -0.061157,0.2829541 -0.060342,0.1239453 -0.1614551,0.1965185 -0.1011132,0.071758 -0.2503369,0.071758 -0.042402,0 -0.1304687,-0.00897 -0.013047,-0.00163 -0.039141,-0.00408 v 0.3538965 h -0.15167 V 5.1011651 h 0.15167 z m 0,0.1802099 v 0.3905909 q 0.082358,0.021201 0.1516699,0.021201 0.1378076,0 0.231582,-0.1076367 0.09459,-0.1084521 0.09459,-0.296001 0,-0.1361767 -0.051372,-0.2046728 -0.051372,-0.068496 -0.1166065,-0.068496 -0.070942,0 -0.1565625,0.071758 -0.084805,0.071758 -0.1533007,0.1932568 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1116" />
+              <path
+                 d="m 2.8866211,5.9516583 q -0.1818408,0.086436 -0.3441113,0.086436 -0.1231299,0 -0.220166,-0.061157 -0.097036,-0.061157 -0.1557471,-0.1745019 -0.057895,-0.1141602 -0.057895,-0.2438135 0,-0.1247607 0.055449,-0.2397363 0.055449,-0.1149756 0.1549316,-0.1785791 0.099483,-0.064419 0.2217969,-0.064419 0.1622705,0 0.2601221,0.115791 0.098667,0.1157911 0.098667,0.3571582 v 0.032617 H 2.2717871 q 0,0.09459 0.039141,0.1728711 0.039956,0.078281 0.104375,0.1174219 0.064419,0.039141 0.1467774,0.039141 0.1467773,0 0.324541,-0.097852 z M 2.2807568,5.4681085 h 0.4541944 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598243,0.067681 -0.066865,0.066865 -0.093774,0.1981494 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1118" />
+              <path
+                 d="m 3.8969386,5.9859063 q -0.1524854,0.051372 -0.290293,0.051372 -0.1369922,0 -0.2438134,-0.062788 Q 3.2568263,5.9108868 3.1972999,5.8032501 3.1377736,5.6947979 3.1377736,5.5569903 q 0,-0.2071191 0.1345459,-0.3441113 0.1353613,-0.1369922 0.3261718,-0.1369922 0.1410694,0 0.2984473,0.053003 v 0.1459619 q -0.1590088,-0.072573 -0.284585,-0.072573 -0.083174,0 -0.1565625,0.041587 -0.073389,0.040771 -0.1133447,0.1280225 -0.039956,0.087251 -0.039956,0.1793945 0,0.1231299 0.07665,0.2348438 0.077466,0.1117138 0.2421827,0.1117138 0.049741,0 0.097851,-0.00652 0.04811,-0.00734 0.1777637,-0.051372 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1120" />
+            </g>
+            <g
+               aria-label=":"
+               id="text34"
+               class="f"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 4.5086737,6.0503253 q -0.054634,0 -0.093774,-0.039141 -0.039141,-0.039141 -0.039141,-0.093775 0,-0.055449 0.039141,-0.093774 0.039956,-0.039141 0.093774,-0.039141 0.053818,0 0.092959,0.039141 0.039956,0.038325 0.039956,0.093774 0,0.054634 -0.039141,0.093775 -0.039141,0.039141 -0.093774,0.039141 z m 0,-0.7086084 q -0.054634,0 -0.093774,-0.039141 -0.039141,-0.039141 -0.039141,-0.093774 0,-0.055449 0.039141,-0.093774 0.039956,-0.039141 0.093774,-0.039141 0.053818,0 0.092959,0.039141 0.039956,0.038325 0.039956,0.093774 0,0.054634 -0.039141,0.093774 -0.039141,0.039141 -0.093774,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1123" />
+            </g>
+            <g
+               aria-label="commonName"
+               id="text36"
+               class="e"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="m 2.8968954,8.1569059 q -0.1524853,0.051372 -0.2902929,0.051372 -0.1369922,0 -0.2438135,-0.062788 Q 2.2567831,8.0818863 2.1972568,7.9742496 2.1377304,7.8657975 2.1377304,7.7279899 q 0,-0.2071192 0.1345459,-0.3441114 0.1353613,-0.1369921 0.3261719,-0.1369921 0.1410693,0 0.2984472,0.053003 V 7.4458512 Q 2.7378866,7.373278 2.6123105,7.373278 q -0.083174,0 -0.1565625,0.041587 -0.073389,0.040771 -0.1133447,0.1280224 -0.039956,0.087251 -0.039956,0.1793945 0,0.1231299 0.07665,0.2348438 0.077466,0.1117139 0.2421826,0.1117139 0.049741,0 0.097852,-0.00652 0.04811,-0.00734 0.1777636,-0.051372 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1126" />
+              <path
+                 d="m 3.5068369,8.2082779 q -0.1957032,0 -0.313125,-0.1361767 Q 3.07629,7.935109 3.07629,7.7271744 q 0,-0.2079345 0.1174219,-0.3441113 0.1174218,-0.1361767 0.313125,-0.1361767 0.1948876,0 0.3123095,0.1361767 0.1174219,0.1361768 0.1174219,0.3441113 0,0.2079346 -0.1174219,0.3449268 -0.1174219,0.1361767 -0.3123095,0.1361767 z m 0,-0.1263916 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.2601221 0,-0.1647168 -0.071758,-0.2593066 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.2593066 0,0.1655322 0.071758,0.2601221 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1128" />
+              <path
+                 d="M 4.0645908,8.1829996 V 7.2721647 h 0.132915 v 0.20875 q 0.062788,-0.1329151 0.1166065,-0.1834717 0.054634,-0.050557 0.110083,-0.050557 0.06605,0 0.1060058,0.052187 0.040771,0.051372 0.040771,0.1467773 v 0.048926 q 0.026909,-0.083174 0.064419,-0.1345459 0.038325,-0.052187 0.079097,-0.082358 0.040771,-0.030986 0.093774,-0.030986 0.058711,0 0.1002979,0.049741 0.041587,0.049741 0.041587,0.1981494 V 8.1829996 H 4.8172324 V 7.5608268 q 0,-0.07665 -0.00489,-0.104375 -0.00489,-0.02854 -0.01957,-0.043218 -0.014678,-0.014678 -0.031802,-0.014678 -0.042402,0 -0.091328,0.065234 -0.04811,0.064419 -0.098667,0.214458 v 0.504751 H 4.4437656 V 7.5616422 q 0,-0.1206836 -0.023648,-0.1418848 -0.023647,-0.021201 -0.042402,-0.021201 -0.041587,0 -0.089697,0.072573 -0.047295,0.072573 -0.090513,0.185918 v 0.5259521 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1130" />
+              <path
+                 d="M 5.0659386,8.1829996 V 7.2721647 h 0.132915 v 0.20875 Q 5.2616417,7.3479996 5.31546,7.297443 q 0.054634,-0.050557 0.110083,-0.050557 0.06605,0 0.1060059,0.052187 0.040771,0.051372 0.040771,0.1467773 v 0.048926 q 0.026909,-0.083174 0.064419,-0.1345459 0.038325,-0.052187 0.079097,-0.082358 0.040771,-0.030986 0.093774,-0.030986 0.058711,0 0.1002979,0.049741 0.041587,0.049741 0.041587,0.1981494 V 8.1829996 H 5.8185801 V 7.5608268 q 0,-0.07665 -0.00489,-0.104375 -0.00489,-0.02854 -0.01957,-0.043218 -0.014678,-0.014678 -0.031802,-0.014678 -0.042402,0 -0.091328,0.065234 -0.04811,0.064419 -0.098667,0.214458 v 0.504751 H 5.4451134 V 7.5616422 q 0,-0.1206836 -0.023648,-0.1418848 -0.023648,-0.021201 -0.042402,-0.021201 -0.041587,0 -0.089697,0.072573 -0.047295,0.072573 -0.090513,0.185918 v 0.5259521 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1132" />
+              <path
+                 d="m 6.5108798,8.2082779 q -0.1957031,0 -0.313125,-0.1361767 Q 6.080333,7.935109 6.080333,7.7271744 q 0,-0.2079345 0.1174218,-0.3441113 0.1174219,-0.1361767 0.313125,-0.1361767 0.1948877,0 0.3123096,0.1361767 0.1174219,0.1361768 0.1174219,0.3441113 0,0.2079346 -0.1174219,0.3449268 -0.1174219,0.1361767 -0.3123096,0.1361767 z m 0,-0.1263916 q 0.1214991,0 0.1932569,-0.09459 0.071758,-0.09459 0.071758,-0.2601221 0,-0.1647168 -0.071758,-0.2593066 -0.071758,-0.09459 -0.1932569,-0.09459 -0.1223144,0 -0.1940722,0.09459 -0.071758,0.09459 -0.071758,0.2593066 0,0.1655322 0.071758,0.2601221 0.071758,0.09459 0.1940722,0.09459 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1134" />
+              <path
+                 d="M 7.1371297,8.1829996 V 7.2721647 h 0.15167 v 0.1989648 q 0.065234,-0.1051904 0.1573779,-0.1647168 0.092143,-0.059526 0.1842871,-0.059526 0.080728,0 0.1467773,0.043218 0.06605,0.042402 0.092144,0.1117139 0.026909,0.069312 0.026909,0.2723535 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.013047,-0.1728711 -0.012231,-0.042402 -0.04648,-0.069311 -0.033433,-0.026909 -0.073389,-0.026909 -0.079912,0 -0.1720557,0.075835 -0.091328,0.075835 -0.1508544,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1136" />
+              <path
+                 d="M 8.2665002,8.1829996 H 8.1148303 V 6.9174528 h 0.1484082 l 0.4476709,0.8423388 0.048926,0.1255762 h 0.00408 L 8.7598352,7.7597916 V 6.9174528 H 8.9115051 V 8.1829996 H 8.7598352 L 8.3243957,7.3545231 8.2632385,7.221608 l 0.00326,0.1312842 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1138" />
+              <path
+                 d="m 9.7383507,7.9783268 q -0.069312,0.1141601 -0.1671631,0.1720556 -0.097036,0.057896 -0.1785791,0.057896 -0.1141602,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992626 0,-0.1581934 0.060342,-0.2821387 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304687,0.00897 0.013047,0.00163 0.039141,0.00408 H 9.890836 v 0.643374 q 0,0.1647168 0.034248,0.2674609 H 9.7668907 q -0.017939,-0.075019 -0.02854,-0.2046728 z m 0,-0.18021 V 7.407526 q -0.080728,-0.021201 -0.1500391,-0.021201 -0.1402539,0 -0.2340283,0.1084522 -0.092959,0.1084521 -0.092959,0.2951855 0,0.1353613 0.050557,0.2046729 0.051372,0.068496 0.1166064,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1140" />
+              <path
+                 d="M 10.072677,8.1829996 V 7.2721647 h 0.132915 v 0.20875 q 0.06279,-0.1329151 0.116606,-0.1834717 0.05463,-0.050557 0.110083,-0.050557 0.06605,0 0.106006,0.052187 0.04077,0.051372 0.04077,0.1467773 v 0.048926 q 0.02691,-0.083174 0.06442,-0.1345459 0.03833,-0.052187 0.0791,-0.082358 0.04077,-0.030986 0.09378,-0.030986 0.05871,0 0.100297,0.049741 0.04159,0.049741 0.04159,0.1981494 V 8.1829996 H 10.825318 V 7.5608268 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.043218 -0.01468,-0.014678 -0.0318,-0.014678 -0.0424,0 -0.09133,0.065234 -0.04811,0.064419 -0.09867,0.214458 v 0.504751 H 10.451852 V 7.5616422 q 0,-0.1206836 -0.02365,-0.1418848 -0.02365,-0.021201 -0.0424,-0.021201 -0.04159,0 -0.0897,0.072573 -0.04729,0.072573 -0.09051,0.185918 v 0.5259521 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1142" />
+              <path
+                 d="m 11.900055,8.1226578 q -0.181841,0.086436 -0.344112,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154931,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.62788 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 11.29419,7.639108 h 0.454195 v -0.022017 q 0,-0.1117138 -0.05463,-0.1777636 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06687,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1144" />
+            </g>
+            <g
+               aria-label=":"
+               id="text38"
+               class="f"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 12.524674,8.2213248 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09377,0.039141 z m 0,-0.7086084 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09377,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1147" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-apiserver"
+               id="text40"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 14.366403,8.1829996 V 7.4743912 H 14.164177 V 7.3479996 h 0.202226 v -0.042402 q 0,-0.18021 0.04077,-0.2666455 0.04077,-0.086436 0.125576,-0.1418848 0.08562,-0.055449 0.225874,-0.055449 0.106006,0 0.215273,0.022017 v 0.1443311 q -0.118237,-0.039141 -0.209565,-0.039141 -0.07257,0 -0.128023,0.026909 -0.05545,0.026909 -0.08725,0.088066 -0.03099,0.060342 -0.03099,0.2054883 v 0.058711 h 0.361235 v 0.1263916 h -0.361235 v 0.7086084 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1150" />
+              <path
+                 d="m 15.530837,8.2082779 q -0.195703,0 -0.313125,-0.1361767 Q 15.10029,7.935109 15.10029,7.7271744 q 0,-0.2079345 0.117422,-0.3441113 0.117422,-0.1361767 0.313125,-0.1361767 0.194887,0 0.312309,0.1361767 0.117422,0.1361768 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449268 -0.117422,0.1361767 -0.312309,0.1361767 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1152" />
+              <path
+                 d="m 16.532184,8.2082779 q -0.195703,0 -0.313125,-0.1361767 -0.117421,-0.1369922 -0.117421,-0.3449268 0,-0.2079345 0.117421,-0.3441113 0.117422,-0.1361767 0.313125,-0.1361767 0.194888,0 0.31231,0.1361767 0.117422,0.1361768 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449268 -0.117422,0.1361767 -0.31231,0.1361767 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1154" />
+              <path
+                 d="M 17.217146,7.7336979 V 7.6073063 h 0.632773 v 0.1263916 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1156" />
+              <path
+                 d="M 18.200554,8.1829996 V 6.8668961 h 0.15167 v 0.8268457 l 0.437885,-0.4215771 h 0.202227 l -0.43707,0.4215771 0.448486,0.4892578 h -0.20875 L 18.352224,7.6937418 v 0.4892578 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1158" />
+              <path
+                 d="M 19.91051,7.2721647 V 8.1829996 H 19.75884 V 7.9832193 q -0.07339,0.1125293 -0.163086,0.168794 -0.0897,0.056265 -0.179395,0.056265 -0.07991,0 -0.146777,-0.042402 -0.06605,-0.043218 -0.09214,-0.1125293 -0.02609,-0.070127 -0.02609,-0.2723535 V 7.2721647 h 0.151669 v 0.527583 q 0,0.1312841 0.01223,0.1736865 0.01305,0.041587 0.04648,0.068496 0.03425,0.026909 0.07339,0.026909 0.07991,0 0.17124,-0.07502 0.09214,-0.075835 0.152486,-0.1908105 V 7.2721647 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1160" />
+              <path
+                 d="m 20.302732,7.4768375 q 0.07013,-0.1141601 0.167163,-0.1720556 0.09704,-0.057895 0.178579,-0.057895 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965186 -0.101113,0.071758 -0.250337,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 h -0.15167 V 6.8668961 h 0.15167 z m 0,0.18021 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137807,0 0.231582,-0.1076368 0.09459,-0.1084521 0.09459,-0.2960009 0,-0.1361768 -0.05137,-0.2046729 -0.05137,-0.068496 -0.116606,-0.068496 -0.07094,0 -0.156563,0.071758 -0.0848,0.071758 -0.1533,0.1932569 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1162" />
+              <path
+                 d="m 21.921359,8.1226578 q -0.18184,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154931,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 21.315495,7.639108 h 0.454194 v -0.022017 q 0,-0.1117138 -0.05463,-0.1777636 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06687,0.066865 -0.09378,0.1981494 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1164" />
+              <path
+                 d="M 22.242639,8.1829996 V 7.2721647 h 0.15167 v 0.1989648 q 0.07094,-0.1125293 0.16227,-0.1679785 0.09214,-0.056265 0.204673,-0.056265 0.08236,0 0.164717,0.025278 V 7.6007828 H 22.780007 V 7.3928483 q -0.03833,-0.00652 -0.06034,-0.00652 -0.0848,0 -0.166348,0.066865 -0.08154,0.066865 -0.159008,0.2005957 v 0.5292138 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1166" />
+              <path
+                 d="M 23.16652,8.1829996 V 7.2721647 h 0.15167 v 0.1989648 q 0.06523,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184287,-0.059526 0.08073,0 0.146778,0.043218 0.06605,0.042402 0.09214,0.1117139 0.02691,0.069312 0.02691,0.2723535 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172055,0.075835 -0.09133,0.075835 -0.150855,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1168" />
+              <path
+                 d="m 24.925402,8.1226578 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 24.319538,7.639108 h 0.454194 v -0.022017 q 0,-0.1117138 -0.05463,-0.1777636 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1170" />
+              <path
+                 d="m 25.930827,8.1463053 q -0.106822,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 7.4743912 H 25.121105 V 7.3479996 H 25.34861 V 6.9810563 h 0.15167 v 0.3669433 h 0.405268 V 7.4743912 H 25.50028 v 0.3644971 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1172" />
+              <path
+                 d="m 26.928098,8.1226578 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 26.322234,7.639108 h 0.454194 v -0.022017 q 0,-0.1117138 -0.05463,-0.1777636 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1174" />
+              <path
+                 d="M 27.182512,8.1348893 V 7.9742496 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023647 0.172871,0.023647 0.114976,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.16961,-0.06605 -0.213643,-0.1223144 -0.04485,-0.055449 -0.04485,-0.1353614 0,-0.1125293 0.08644,-0.1851025 0.08725,-0.072573 0.282139,-0.072573 0.145961,0 0.27643,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282138,-0.053818 -0.09622,0 -0.150855,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.04729,0.078281 0.04648,0.029356 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1176" />
+              <path
+                 d="M 28.23197,7.7336979 V 7.6073063 h 0.632773 v 0.1263916 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1178" />
+              <path
+                 d="m 29.31486,7.4768375 q 0.07013,-0.1141601 0.167163,-0.1720556 0.09704,-0.057895 0.17858,-0.057895 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965186 -0.101114,0.071758 -0.250337,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 V 8.5368961 H 29.16319 V 7.2721647 h 0.15167 z m 0,0.18021 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076368 0.09459,-0.1084521 0.09459,-0.2960009 0,-0.1361768 -0.05137,-0.2046729 -0.05137,-0.068496 -0.116606,-0.068496 -0.07094,0 -0.156563,0.071758 -0.0848,0.071758 -0.153301,0.1932569 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1180" />
+              <path
+                 d="M 30.216726,8.1829996 V 6.8668961 h 0.151669 v 0.8268457 l 0.437886,-0.4215771 h 0.202227 l -0.437071,0.4215771 0.448487,0.4892578 h -0.20875 L 30.368395,7.6937418 v 0.4892578 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1182" />
+              <path
+                 d="M 31.432532,8.1829996 V 7.3985563 H 31.179749 V 7.2721647 h 0.404453 V 8.056608 h 0.253599 v 0.1263916 z m -0.02528,-1.2394531 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06686,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06686,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1184" />
+              <path
+                 d="M 32.23736,7.7336979 V 7.6073063 h 0.632773 v 0.1263916 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1186" />
+              <path
+                 d="m 33.778523,7.9783268 q -0.06931,0.1141601 -0.167163,0.1720556 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992626 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130468,0.00897 0.01305,0.00163 0.03914,0.00408 h 0.152485 v 0.643374 q 0,0.1647168 0.03425,0.2674609 h -0.158193 q -0.01794,-0.075019 -0.02854,-0.2046728 z m 0,-0.18021 V 7.407526 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234028,0.1084522 -0.09296,0.1084521 -0.09296,0.2951855 0,0.1353613 0.05056,0.2046729 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1188" />
+              <path
+                 d="m 34.321598,7.4768375 q 0.07013,-0.1141601 0.167163,-0.1720556 0.09704,-0.057895 0.178579,-0.057895 0.11416,0 0.205489,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965186 -0.101113,0.071758 -0.250337,0.071758 -0.0424,0 -0.130468,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 v 0.3538965 h -0.15167 V 7.2721647 h 0.15167 z m 0,0.18021 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076368 0.09459,-0.1084521 0.09459,-0.2960009 0,-0.1361768 -0.05137,-0.2046729 -0.05137,-0.068496 -0.116607,-0.068496 -0.07094,0 -0.156562,0.071758 -0.08481,0.071758 -0.153301,0.1932569 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1190" />
+              <path
+                 d="M 35.437922,8.1829996 V 7.3985563 H 35.185139 V 7.2721647 h 0.404453 V 8.056608 h 0.253599 v 0.1263916 z m -0.02528,-1.2394531 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06686,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06686,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1192" />
+              <path
+                 d="M 36.19464,8.1348893 V 7.9742496 q 0.09133,0.059526 0.193257,0.083989 0.101928,0.023647 0.172871,0.023647 0.114975,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 L 36.5836,7.8038248 36.478409,7.7622379 q -0.169609,-0.06605 -0.213642,-0.1223144 -0.04485,-0.055449 -0.04485,-0.1353614 0,-0.1125293 0.08644,-0.1851025 0.08725,-0.072573 0.282138,-0.072573 0.145962,0 0.276431,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282139,-0.053818 -0.09622,0 -0.150854,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.04729,0.078281 0.04648,0.029356 0.15167,0.067681 l 0.102745,0.03751 q 0.141069,0.051372 0.198149,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1194" />
+              <path
+                 d="m 37.942922,8.1226578 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 37.337058,7.639108 h 0.454194 v -0.022017 q 0,-0.1117138 -0.05463,-0.1777636 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1196" />
+              <path
+                 d="M 38.264202,8.1829996 V 7.2721647 h 0.15167 v 0.1989648 q 0.07094,-0.1125293 0.162271,-0.1679785 0.09214,-0.056265 0.204672,-0.056265 0.08236,0 0.164717,0.025278 V 7.6007828 H 38.80157 V 7.3928483 q -0.03833,-0.00652 -0.06034,-0.00652 -0.0848,0 -0.166347,0.066865 -0.08154,0.066865 -0.159009,0.2005957 v 0.5292138 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1198" />
+              <path
+                 d="M 39.484084,8.1829996 39.0886,7.2721647 h 0.166348 l 0.31231,0.7208398 0.318833,-0.7208398 h 0.15167 l -0.398746,0.9108349 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1200" />
+              <path
+                 d="m 40.946966,8.1226578 q -0.181841,0.086436 -0.344112,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.05789,-0.1141602 -0.05789,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154931,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.62788 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 40.341101,7.639108 h 0.454195 v -0.022017 q 0,-0.1117138 -0.05463,-0.1777636 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06687,0.066865 -0.09378,0.1981494 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1202" />
+              <path
+                 d="M 41.268244,8.1829996 V 7.2721647 h 0.15167 v 0.1989648 q 0.07094,-0.1125293 0.16227,-0.1679785 0.09214,-0.056265 0.204673,-0.056265 0.08236,0 0.164717,0.025278 V 7.6007828 H 41.805612 V 7.3928483 q -0.03833,-0.00652 -0.06034,-0.00652 -0.0848,0 -0.166348,0.066865 -0.08154,0.066865 -0.159008,0.2005957 v 0.5292138 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1204" />
+            </g>
+            <g
+               aria-label="dnsNames"
+               id="text42"
+               class="e"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="m 2.7387021,10.149327 q -0.069311,0.11416 -0.1671631,0.172056 -0.097036,0.05789 -0.1785791,0.05789 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.2992623 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304688,0.00897 0.013047,0.00163 0.039141,0.00408 V 9.0378966 H 2.8911874 V 10.354 H 2.7387021 Z m 0,-0.1802097 V 9.5785265 q -0.080728,-0.021201 -0.1500391,-0.021201 -0.1402539,0 -0.2340283,0.1084522 -0.092959,0.1084521 -0.092959,0.2951855 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.1932567 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1207" />
+              <path
+                 d="M 3.1317392,10.354 V 9.4431652 H 3.2834091 V 9.64213 q 0.065234,-0.1051904 0.157378,-0.1647168 0.092143,-0.059526 0.1842871,-0.059526 0.080728,0 0.1467773,0.043218 0.06605,0.042402 0.092144,0.1117139 0.026909,0.069311 0.026909,0.2723535 V 10.354 H 3.7392343 V 9.8264171 q 0,-0.1312842 -0.013047,-0.1728711 -0.012231,-0.042402 -0.04648,-0.069311 -0.033433,-0.026909 -0.073389,-0.026909 -0.079912,0 -0.1720557,0.075835 -0.091328,0.075835 -0.1508545,0.1899951 V 10.354 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1209" />
+              <path
+                 d="m 4.1436875,10.30589 v -0.16064 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023647,-0.06279 -0.023648,-0.02609 -0.1174219,-0.064419 L 4.5326474,9.9748253 4.427457,9.9332384 Q 4.2578476,9.8671886 4.2138144,9.8109239 4.1689658,9.7554747 4.1689658,9.6755626 q 0,-0.1125293 0.086436,-0.1851025 0.087251,-0.072573 0.2821387,-0.072573 0.1459619,0 0.2764306,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.2821386,-0.053818 -0.096221,0 -0.1508545,0.034248 -0.053818,0.033433 -0.053818,0.083989 0,0.048926 0.047295,0.078281 0.046479,0.029355 0.1516699,0.067681 l 0.1027441,0.03751 q 0.1410693,0.051372 0.1981494,0.1117139 0.05708,0.060342 0.05708,0.1508547 0,0.118237 -0.091328,0.194887 -0.090513,0.07583 -0.290293,0.07583 -0.1745019,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1211" />
+              <path
+                 d="M 5.2624571,10.354 H 5.1107872 V 9.0884532 h 0.1484082 l 0.4476709,0.8423389 0.048926,0.1255759 h 0.00408 L 5.7557921,9.9307921 V 9.0884532 H 5.907462 V 10.354 H 5.7557921 L 5.3203526,9.5255236 5.2591954,9.3926085 l 0.00326,0.1312842 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1213" />
+              <path
+                 d="m 6.7343076,10.149327 q -0.069312,0.11416 -0.1671631,0.172056 -0.097036,0.05789 -0.1785791,0.05789 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.2992623 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304687,0.00897 0.013047,0.00163 0.039141,0.00408 h 0.1524853 v 0.6433738 q 0,0.164717 0.034248,0.267461 H 6.7628476 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.1802097 V 9.5785265 Q 6.65358,9.5573253 6.5842685,9.5573253 q -0.1402539,0 -0.2340283,0.1084522 -0.092959,0.1084521 -0.092959,0.2951855 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.1932567 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1215" />
+              <path
+                 d="M 7.0686336,10.354 V 9.4431652 h 0.1329151 v 0.2087499 q 0.062788,-0.132915 0.1166064,-0.1834716 0.054634,-0.050557 0.110083,-0.050557 0.06605,0 0.1060059,0.052188 0.040771,0.051372 0.040771,0.1467774 v 0.048926 q 0.026909,-0.083174 0.064419,-0.1345459 0.038325,-0.052188 0.079097,-0.082358 0.040771,-0.030986 0.093774,-0.030986 0.058711,0 0.1002978,0.049741 0.041587,0.049741 0.041587,0.1981495 V 10.354 H 7.8212752 V 9.7318273 q 0,-0.07665 -0.00489,-0.104375 -0.00489,-0.02854 -0.01957,-0.043218 -0.014678,-0.014678 -0.031802,-0.014678 -0.042402,0 -0.091328,0.065234 -0.04811,0.064419 -0.098667,0.214458 V 10.354 H 7.4478084 V 9.7326427 q 0,-0.1206836 -0.023647,-0.1418848 -0.023648,-0.021201 -0.042402,-0.021201 -0.041587,0 -0.089697,0.072573 -0.047295,0.072573 -0.090513,0.185918 V 10.354 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1217" />
+              <path
+                 d="m 8.8960119,10.293658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.2438138 0,-0.1247607 0.055449,-0.2397363 0.055449,-0.1149756 0.1549317,-0.1785791 0.099482,-0.064419 0.2217968,-0.064419 0.1622705,0 0.2601221,0.115791 0.098667,0.1157911 0.098667,0.3571582 v 0.032617 H 8.2811779 q 0,0.09459 0.039141,0.1728708 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 8.2901477,9.8101085 H 8.744342 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.067681 -0.066865,0.066865 -0.093774,0.1981494 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1219" />
+              <path
+                 d="m 9.1504259,10.30589 v -0.16064 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023647,-0.06279 -0.023648,-0.02609 -0.1174219,-0.064419 L 9.5393858,9.9748253 9.4341954,9.9332384 Q 9.264586,9.8671886 9.2205528,9.8109239 9.1757042,9.7554747 9.1757042,9.6755626 q 0,-0.1125293 0.086436,-0.1851025 0.087251,-0.072573 0.2821387,-0.072573 0.1459619,0 0.2764307,0.042402 V 9.5980968 Q 9.67067,9.5442784 9.5385704,9.5442784 q -0.096221,0 -0.1508545,0.034248 -0.053818,0.033433 -0.053818,0.083989 0,0.048926 0.047295,0.078281 0.04648,0.029355 0.1516699,0.067681 l 0.1027441,0.03751 q 0.1410694,0.051372 0.1981494,0.1117139 0.05708,0.060342 0.05708,0.1508547 0,0.118237 -0.091328,0.194887 -0.090513,0.07583 -0.290293,0.07583 -0.1745019,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1221" />
+            </g>
+            <g
+               aria-label=":"
+               id="text44"
+               class="f"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 10.520674,10.392325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z m 0,-0.7086081 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09378,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1224" />
+            </g>
+            <g
+               aria-label="-"
+               id="text46"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 2.1891025,12.075698 v -0.126392 h 0.6327734 v 0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1227" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-apiserver"
+               id="text48"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 4.3464032,12.525 V 11.816391 H 4.1441767 V 11.69 h 0.2022265 v -0.0424 q 0,-0.18021 0.040771,-0.266645 0.040771,-0.08644 0.1255762,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.1060058,0 0.2152734,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.2095654,-0.03914 -0.072573,0 -0.1280225,0.02691 -0.055449,0.02691 -0.087251,0.08807 -0.030986,0.06034 -0.030986,0.205489 V 11.69 h 0.3612354 v 0.126391 H 4.4980731 V 12.525 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1230" />
+              <path
+                 d="m 5.5108368,12.550278 q -0.1957031,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1232" />
+              <path
+                 d="m 6.5121845,12.550278 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1234" />
+              <path
+                 d="M 7.1971455,12.075698 V 11.949306 H 7.829919 v 0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1236" />
+              <path
+                 d="m 8.1805536,12.525 v -1.316104 h 0.1516699 v 0.826846 L 8.7701093,11.614165 H 8.9723358 L 8.5352655,12.035742 8.9837518,12.525 h -0.20875 L 8.3322235,12.035742 V 12.525 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1238" />
+              <path
+                 d="M 9.8905095,11.614165 V 12.525 H 9.7388396 v -0.199781 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712403,-0.07502 0.092144,-0.07583 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1240" />
+              <path
+                 d="m 10.282732,11.818838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.180209 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193256 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1242" />
+              <path
+                 d="m 11.901359,12.464658 q -0.18184,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1244" />
+              <path
+                 d="m 12.222639,12.525 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159008,0.200596 V 12.525 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1246" />
+              <path
+                 d="m 13.14652,12.525 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 12.525 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 V 12.525 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1248" />
+              <path
+                 d="m 14.905402,12.464658 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1250" />
+              <path
+                 d="m 15.910827,12.488305 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 11.816391 H 15.101105 V 11.69 h 0.227505 v -0.366944 h 0.15167 V 11.69 h 0.405268 v 0.126391 H 15.48028 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1252" />
+              <path
+                 d="m 16.908098,12.464658 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1254" />
+              <path
+                 d="M 17.162512,12.476889 V 12.31625 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145961,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1256" />
+              <path
+                 d="m 18.21197,12.075698 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1258" />
+              <path
+                 d="m 19.753132,12.320327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1260" />
+              <path
+                 d="m 20.296208,11.818838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.180209 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1262" />
+              <path
+                 d="m 21.412532,12.525 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 V 12.525 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1264" />
+              <path
+                 d="M 22.16925,12.476889 V 12.31625 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1266" />
+              <path
+                 d="m 23.917532,12.464658 q -0.181841,0.08643 -0.344112,0.08643 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1268" />
+              <path
+                 d="m 24.23881,12.525 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 12.525 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1270" />
+              <path
+                 d="M 25.458694,12.525 25.06321,11.614165 h 0.166348 l 0.31231,0.72084 0.318833,-0.72084 H 26.01237 L 25.613625,12.525 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1272" />
+              <path
+                 d="m 26.921573,12.464658 q -0.18184,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1274" />
+              <path
+                 d="m 27.242854,12.525 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159008,0.200596 V 12.525 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1276" />
+            </g>
+            <g
+               aria-label="-"
+               id="text50"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 2.1891025,14.246698 v -0.126391 h 0.6327734 v 0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1279" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-apiserver.default"
+               id="text52"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 4.3464032,14.696 V 13.987392 H 4.1441767 V 13.861 h 0.2022265 v -0.0424 q 0,-0.18021 0.040771,-0.266646 0.040771,-0.08643 0.1255762,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.1060058,0 0.2152734,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.2095654,-0.03914 -0.072573,0 -0.1280225,0.02691 -0.055449,0.02691 -0.087251,0.08807 -0.030986,0.06034 -0.030986,0.205488 V 13.861 h 0.3612354 v 0.126392 H 4.4980731 V 14.696 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1282" />
+              <path
+                 d="m 5.5108368,14.721278 q -0.1957031,0 -0.313125,-0.136176 -0.1174219,-0.136993 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207934 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1284" />
+              <path
+                 d="m 6.5121845,14.721278 q -0.1957032,0 -0.313125,-0.136176 -0.1174219,-0.136993 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207934 -0.1174219,0.344927 -0.1174218,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1286" />
+              <path
+                 d="M 7.1971455,14.246698 V 14.120307 H 7.829919 v 0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1288" />
+              <path
+                 d="m 8.1805536,14.696 v -1.316103 h 0.1516699 v 0.826845 L 8.7701093,13.785165 H 8.9723358 L 8.5352655,14.206742 8.9837518,14.696 h -0.20875 L 8.3322235,14.206742 V 14.696 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1290" />
+              <path
+                 d="M 9.8905095,13.785165 V 14.696 H 9.7388396 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712403,-0.07502 0.092144,-0.07583 0.1524853,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1292" />
+              <path
+                 d="m 10.282732,13.989838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1294" />
+              <path
+                 d="m 11.901359,14.635658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1296" />
+              <path
+                 d="m 12.222639,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 V 14.696 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1298" />
+              <path
+                 d="m 13.14652,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 14.696 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 14.696 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1300" />
+              <path
+                 d="m 14.905402,14.635658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1302" />
+              <path
+                 d="m 15.910827,14.659306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 13.987392 H 15.101105 V 13.861 h 0.227505 v -0.366943 h 0.15167 V 13.861 h 0.405268 v 0.126392 H 15.48028 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1304" />
+              <path
+                 d="m 16.908098,14.635658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1306" />
+              <path
+                 d="m 17.162512,14.64789 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145961,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1308" />
+              <path
+                 d="m 18.21197,14.246698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1310" />
+              <path
+                 d="m 19.753132,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1312" />
+              <path
+                 d="m 20.296208,13.989838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1314" />
+              <path
+                 d="m 21.412532,14.696 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 14.696 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1316" />
+              <path
+                 d="m 22.16925,14.64789 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1318" />
+              <path
+                 d="m 23.917532,14.635658 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1320" />
+              <path
+                 d="m 24.23881,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 14.696 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1322" />
+              <path
+                 d="M 25.458694,14.696 25.06321,13.785165 h 0.166348 l 0.31231,0.72084 0.318833,-0.72084 H 26.01237 L 25.613625,14.696 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1324" />
+              <path
+                 d="m 26.921573,14.635658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1326" />
+              <path
+                 d="m 27.242854,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 V 14.696 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1328" />
+              <path
+                 d="m 28.541019,14.734325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1330" />
+              <path
+                 d="m 29.776393,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152486 V 14.696 h -0.152486 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1332" />
+              <path
+                 d="m 30.926966,14.635658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1334" />
+              <path
+                 d="M 31.38279,14.696 V 13.987392 H 31.180563 V 13.861 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118238,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 V 13.861 h 0.361235 v 0.126392 H 31.53446 V 14.696 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1336" />
+              <path
+                 d="m 32.770652,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1338" />
+              <path
+                 d="M 33.922853,13.785165 V 14.696 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1340" />
+              <path
+                 d="m 34.41945,14.696 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 14.696 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1342" />
+              <path
+                 d="m 35.937779,14.659306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 13.987392 H 35.128058 V 13.861 h 0.227505 v -0.366943 h 0.15167 V 13.861 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1344" />
+            </g>
+            <g
+               aria-label="-"
+               id="text54"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 2.1891025,16.417699 v -0.126392 h 0.6327734 v 0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1347" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-apiserver.default.svc"
+               id="text56"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 4.3464032,16.867001 V 16.158392 H 4.1441767 v -0.126391 h 0.2022265 v -0.0424 q 0,-0.18021 0.040771,-0.266645 0.040771,-0.08644 0.1255762,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.1060058,0 0.2152734,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.2095654,-0.03914 -0.072573,0 -0.1280225,0.02691 -0.055449,0.02691 -0.087251,0.08807 -0.030986,0.06034 -0.030986,0.205489 v 0.05871 h 0.3612354 v 0.126391 H 4.4980731 v 0.708609 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1350" />
+              <path
+                 d="m 5.5108368,16.892279 q -0.1957031,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1352" />
+              <path
+                 d="m 6.5121845,16.892279 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1354" />
+              <path
+                 d="M 7.1971455,16.417699 V 16.291307 H 7.829919 v 0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1356" />
+              <path
+                 d="m 8.1805536,16.867001 v -1.316104 h 0.1516699 v 0.826846 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 h -0.20875 L 8.3322235,16.377743 v 0.489258 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1358" />
+              <path
+                 d="m 9.8905095,15.956166 v 0.910835 H 9.7388396 V 16.66722 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712403,-0.07502 0.092144,-0.07584 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1360" />
+              <path
+                 d="m 10.282732,16.160838 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193256 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1362" />
+              <path
+                 d="m 11.901359,16.806659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1364" />
+              <path
+                 d="m 12.222639,16.867001 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159008,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1366" />
+              <path
+                 d="m 13.14652,16.867001 v -0.910835 h 0.15167 v 0.198964 q 0.06523,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172872 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1368" />
+              <path
+                 d="m 14.905402,16.806659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1370" />
+              <path
+                 d="m 15.910827,16.830306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 H 15.48028 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1372" />
+              <path
+                 d="m 16.908098,16.806659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1374" />
+              <path
+                 d="m 17.162512,16.81889 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145961,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1376" />
+              <path
+                 d="m 18.21197,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1378" />
+              <path
+                 d="m 19.753132,16.662328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1380" />
+              <path
+                 d="m 20.296208,16.160838 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1382" />
+              <path
+                 d="m 21.412532,16.867001 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239454 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1384" />
+              <path
+                 d="m 22.16925,16.81889 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1386" />
+              <path
+                 d="m 23.917532,16.806659 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1388" />
+              <path
+                 d="m 24.23881,16.867001 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1390" />
+              <path
+                 d="M 25.458694,16.867001 25.06321,15.956166 h 0.166348 l 0.31231,0.720839 0.318833,-0.720839 h 0.151669 l -0.398745,0.910835 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1392" />
+              <path
+                 d="m 26.921573,16.806659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1394" />
+              <path
+                 d="m 27.242854,16.867001 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159008,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1396" />
+              <path
+                 d="m 28.541019,16.905326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1398" />
+              <path
+                 d="m 29.776393,16.662328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152486 v 1.316104 h -0.152486 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1400" />
+              <path
+                 d="m 30.926966,16.806659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1402" />
+              <path
+                 d="m 31.38279,16.867001 v -0.708609 h -0.202227 v -0.126391 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118238,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 v 0.05871 h 0.361235 v 0.126391 H 31.53446 v 0.708609 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1404" />
+              <path
+                 d="m 32.770652,16.662328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1406" />
+              <path
+                 d="m 33.922853,15.956166 v 0.910835 h -0.15167 V 16.66722 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07584 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1408" />
+              <path
+                 d="m 34.41945,16.867001 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1410" />
+              <path
+                 d="m 35.937779,16.830306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1412" />
+              <path
+                 d="m 36.551799,16.905326 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1414" />
+              <path
+                 d="m 37.189464,16.81889 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1416" />
+              <path
+                 d="m 38.476215,16.867001 -0.395484,-0.910835 h 0.166348 l 0.312309,0.720839 0.318833,-0.720839 h 0.15167 l -0.398745,0.910835 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1418" />
+              <path
+                 d="m 39.948064,16.840907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242183,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1420" />
+            </g>
+            <g
+               aria-label="-"
+               id="text58"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 2.1891025,18.588698 v -0.126391 h 0.6327734 v 0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1423" />
+            </g>
+            <g
+               aria-label="'*.foo-kubernetes-apiserver'"
+               id="text60"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 4.5649384,18.228278 H 4.4556708 l -0.08562,-0.506381 h 0.2780615 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1426" />
+              <path
+                 d="M 5.4325556,18.500632 5.4496796,18.217678 5.218913,18.372609 5.143078,18.24051 5.3934149,18.118195 5.143078,17.99425 l 0.075835,-0.129653 0.2307666,0.154116 -0.017124,-0.28377 h 0.1533007 l -0.021201,0.28377 0.2356591,-0.154116 0.07665,0.129653 -0.2511523,0.123945 0.2511523,0.122315 -0.07665,0.132099 -0.2356591,-0.154931 0.021201,0.282954 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1428" />
+              <path
+                 d="m 6.511369,19.076325 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1430" />
+              <path
+                 d="M 7.3504463,19.038 V 18.329392 H 7.1482198 V 18.203 h 0.2022265 v -0.0424 q 0,-0.18021 0.040771,-0.266646 0.040771,-0.08643 0.1255762,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.1060058,0 0.2152734,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.2095654,-0.03914 -0.072573,0 -0.1280225,0.02691 -0.055449,0.02691 -0.087251,0.08807 -0.030986,0.06034 -0.030986,0.205488 V 18.203 h 0.3612354 v 0.126392 H 7.5021162 V 19.038 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1432" />
+              <path
+                 d="m 8.5148798,19.063278 q -0.1957031,0 -0.313125,-0.136176 -0.1174219,-0.136993 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207934 -0.1174219,0.344927 -0.1174218,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1434" />
+              <path
+                 d="m 9.5162273,19.063278 q -0.1957031,0 -0.313125,-0.136176 -0.1174218,-0.136993 -0.1174218,-0.344927 0,-0.207935 0.1174218,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207934 -0.1174219,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932569,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932569,-0.09459 -0.1223144,0 -0.1940722,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940722,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1436" />
+              <path
+                 d="m 10.201189,18.588698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1438" />
+              <path
+                 d="m 11.184597,19.038 v -1.316103 h 0.15167 v 0.826845 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 11.336267,18.548742 V 19.038 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1440" />
+              <path
+                 d="M 12.894553,18.127165 V 19.038 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152486,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1442" />
+              <path
+                 d="m 13.286774,18.331838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1444" />
+              <path
+                 d="m 14.905402,18.977658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1446" />
+              <path
+                 d="m 15.226681,19.038 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 19.038 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1448" />
+              <path
+                 d="m 16.150564,19.038 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 19.038 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 19.038 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1450" />
+              <path
+                 d="m 17.909446,18.977658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1452" />
+              <path
+                 d="m 18.91487,19.001306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 18.329392 H 18.105149 V 18.203 h 0.227505 v -0.366943 h 0.151669 V 18.203 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1454" />
+              <path
+                 d="m 19.912141,18.977658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1456" />
+              <path
+                 d="m 20.166555,18.98989 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172872,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1458" />
+              <path
+                 d="m 21.216014,18.588698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1460" />
+              <path
+                 d="m 22.757175,18.833327 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1462" />
+              <path
+                 d="m 23.300252,18.331838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.151669,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1464" />
+              <path
+                 d="m 24.416574,19.038 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 V 19.038 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1466" />
+              <path
+                 d="m 25.173293,18.98989 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.15004,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1468" />
+              <path
+                 d="m 26.921573,18.977658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1470" />
+              <path
+                 d="m 27.242854,19.038 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 V 19.038 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1472" />
+              <path
+                 d="m 28.462737,19.038 -0.395483,-0.910835 h 0.166348 l 0.312309,0.72084 0.318833,-0.72084 h 0.15167 L 28.617669,19.038 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1474" />
+              <path
+                 d="m 29.925617,18.977658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1476" />
+              <path
+                 d="m 30.246897,19.038 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 19.038 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1478" />
+              <path
+                 d="m 31.601325,18.228278 h -0.109268 l -0.08562,-0.506381 h 0.278062 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1480" />
+            </g>
+            <g
+               aria-label="-"
+               id="text62"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 2.1891025,20.759698 v -0.126392 h 0.6327734 v 0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1483" />
+            </g>
+            <g
+               aria-label="'*.foo-kubernetes-apiserver.default'"
+               id="text64"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 4.5649384,20.399278 H 4.4556708 l -0.08562,-0.506382 h 0.2780615 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1486" />
+              <path
+                 d="m 5.4325556,20.671631 0.017124,-0.282954 -0.2307666,0.154932 -0.075835,-0.1321 0.2503369,-0.122314 -0.2503369,-0.123945 0.075835,-0.129654 0.2307666,0.154117 -0.017124,-0.28377 h 0.1533007 l -0.021201,0.28377 0.2356591,-0.154117 0.07665,0.129654 -0.2511523,0.123945 0.2511523,0.122314 -0.07665,0.1321 -0.2356591,-0.154932 0.021201,0.282954 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1488" />
+              <path
+                 d="m 6.511369,21.247325 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1490" />
+              <path
+                 d="M 7.3504463,21.209 V 20.500391 H 7.1482198 V 20.374 h 0.2022265 v -0.0424 q 0,-0.18021 0.040771,-0.266645 0.040771,-0.08644 0.1255762,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.1060058,0 0.2152734,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.2095654,-0.03914 -0.072573,0 -0.1280225,0.02691 -0.055449,0.02691 -0.087251,0.08807 -0.030986,0.06034 -0.030986,0.205489 V 20.374 h 0.3612354 v 0.126391 H 7.5021162 V 21.209 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1492" />
+              <path
+                 d="m 8.5148798,21.234278 q -0.1957031,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1494" />
+              <path
+                 d="m 9.5162273,21.234278 q -0.1957031,0 -0.313125,-0.136177 -0.1174218,-0.136992 -0.1174218,-0.344927 0,-0.207934 0.1174218,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932569,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932569,-0.09459 -0.1223144,0 -0.1940722,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940722,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1496" />
+              <path
+                 d="m 10.201189,20.759698 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1498" />
+              <path
+                 d="m 11.184597,21.209 v -1.316104 h 0.15167 v 0.826846 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 11.336267,20.719742 V 21.209 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1500" />
+              <path
+                 d="M 12.894553,20.298165 V 21.209 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1502" />
+              <path
+                 d="m 13.286774,20.502838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.180209 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1504" />
+              <path
+                 d="m 14.905402,21.148658 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1506" />
+              <path
+                 d="m 15.226681,21.209 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 21.209 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1508" />
+              <path
+                 d="m 16.150564,21.209 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 21.209 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 21.209 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1510" />
+              <path
+                 d="m 17.909446,21.148658 q -0.181841,0.08643 -0.344112,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1512" />
+              <path
+                 d="m 18.91487,21.172305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 20.500391 H 18.105149 V 20.374 h 0.227505 v -0.366944 h 0.151669 V 20.374 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1514" />
+              <path
+                 d="m 19.912141,21.148658 q -0.181841,0.08643 -0.344112,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1516" />
+              <path
+                 d="M 20.166555,21.160889 V 21.00025 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172872,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1518" />
+              <path
+                 d="m 21.216014,20.759698 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1520" />
+              <path
+                 d="m 22.757175,21.004327 q -0.06931,0.11416 -0.167164,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1522" />
+              <path
+                 d="m 23.300252,20.502838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.180209 v 0.390591 q 0.08236,0.0212 0.151669,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193256 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1524" />
+              <path
+                 d="m 24.416574,21.209 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253598 V 21.209 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1526" />
+              <path
+                 d="M 25.173293,21.160889 V 21.00025 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.15004,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1528" />
+              <path
+                 d="m 26.921573,21.148658 q -0.18184,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1530" />
+              <path
+                 d="m 27.242854,21.209 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159008,0.200596 V 21.209 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1532" />
+              <path
+                 d="m 28.462737,21.209 -0.395483,-0.910835 h 0.166348 l 0.312309,0.72084 0.318833,-0.72084 h 0.15167 L 28.617669,21.209 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1534" />
+              <path
+                 d="m 29.925617,21.148658 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1536" />
+              <path
+                 d="m 30.246897,21.209 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 21.209 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1538" />
+              <path
+                 d="m 31.54506,21.247325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1540" />
+              <path
+                 d="m 32.780437,21.004327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 V 21.209 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1542" />
+              <path
+                 d="m 33.931007,21.148658 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1544" />
+              <path
+                 d="M 34.386833,21.209 V 20.500391 H 34.184607 V 20.374 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 V 20.374 h 0.361236 v 0.126391 H 34.538503 V 21.209 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1546" />
+              <path
+                 d="m 35.774694,21.004327 q -0.06931,0.11416 -0.167164,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1548" />
+              <path
+                 d="M 36.926897,20.298165 V 21.209 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1550" />
+              <path
+                 d="m 37.423492,21.209 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 21.209 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1552" />
+              <path
+                 d="m 38.941825,21.172305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 20.500391 H 38.132103 V 20.374 h 0.227505 v -0.366944 h 0.15167 V 20.374 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1554" />
+              <path
+                 d="M 39.612107,20.399278 H 39.50284 l -0.08562,-0.506382 h 0.278062 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1556" />
+            </g>
+            <g
+               aria-label="-"
+               id="text66"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 2.1891025,22.930697 v -0.126391 h 0.6327734 v 0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1559" />
+            </g>
+            <g
+               aria-label="'*.foo-kubernetes-apiserver.default.svc'"
+               id="text68"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 4.5649384,22.570278 H 4.4556708 l -0.08562,-0.506382 h 0.2780615 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1562" />
+              <path
+                 d="m 5.4325556,22.842631 0.017124,-0.282954 -0.2307666,0.154932 -0.075835,-0.1321 0.2503369,-0.122315 -0.2503369,-0.123945 0.075835,-0.129653 0.2307666,0.154116 -0.017124,-0.283769 h 0.1533007 l -0.021201,0.283769 0.2356591,-0.154116 0.07665,0.129653 -0.2511523,0.123945 0.2511523,0.122315 -0.07665,0.1321 -0.2356591,-0.154932 0.021201,0.282954 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1564" />
+              <path
+                 d="m 6.511369,23.418324 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03832 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1566" />
+              <path
+                 d="M 7.3504463,23.379999 V 22.671391 H 7.1482198 v -0.126392 h 0.2022265 v -0.0424 q 0,-0.18021 0.040771,-0.266646 0.040771,-0.08644 0.1255762,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.1060058,0 0.2152734,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.2095654,-0.03914 -0.072573,0 -0.1280225,0.02691 -0.055449,0.02691 -0.087251,0.08807 -0.030986,0.06034 -0.030986,0.205488 v 0.05871 h 0.3612354 v 0.126392 H 7.5021162 v 0.708608 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1568" />
+              <path
+                 d="m 8.5148798,23.405277 q -0.1957031,0 -0.313125,-0.136176 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1570" />
+              <path
+                 d="m 9.5162273,23.405277 q -0.1957031,0 -0.313125,-0.136176 -0.1174218,-0.136992 -0.1174218,-0.344927 0,-0.207935 0.1174218,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932569,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932569,-0.09459 -0.1223144,0 -0.1940722,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940722,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1572" />
+              <path
+                 d="m 10.201189,22.930697 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1574" />
+              <path
+                 d="m 11.184597,23.379999 v -1.316103 h 0.15167 v 0.826845 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1576" />
+              <path
+                 d="m 12.894553,22.469164 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1578" />
+              <path
+                 d="m 13.286774,22.673837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1580" />
+              <path
+                 d="m 14.905402,23.319657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1582" />
+              <path
+                 d="m 15.226681,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1584" />
+              <path
+                 d="m 16.150564,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1586" />
+              <path
+                 d="m 17.909446,23.319657 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1588" />
+              <path
+                 d="m 18.91487,23.343305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.151669 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1590" />
+              <path
+                 d="m 19.912141,23.319657 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1592" />
+              <path
+                 d="m 20.166555,23.331889 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172872,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1594" />
+              <path
+                 d="m 21.216014,22.930697 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1596" />
+              <path
+                 d="m 22.757175,23.175326 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1598" />
+              <path
+                 d="m 23.300252,22.673837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.151669,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1600" />
+              <path
+                 d="m 24.416574,23.379999 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1602" />
+              <path
+                 d="m 25.173293,23.331889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.15004,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1604" />
+              <path
+                 d="m 26.921573,23.319657 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1606" />
+              <path
+                 d="m 27.242854,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1608" />
+              <path
+                 d="m 28.462737,23.379999 -0.395483,-0.910835 h 0.166348 l 0.312309,0.72084 0.318833,-0.72084 h 0.15167 l -0.398745,0.910835 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1610" />
+              <path
+                 d="m 29.925617,23.319657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1612" />
+              <path
+                 d="m 30.246897,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1614" />
+              <path
+                 d="m 31.54506,23.418324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1616" />
+              <path
+                 d="m 32.780437,23.175326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1618" />
+              <path
+                 d="m 33.931007,23.319657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1620" />
+              <path
+                 d="m 34.386833,23.379999 v -0.708608 h -0.202226 v -0.126392 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361236 v 0.126392 h -0.361236 v 0.708608 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1622" />
+              <path
+                 d="m 35.774694,23.175326 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1624" />
+              <path
+                 d="m 36.926897,22.469164 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1626" />
+              <path
+                 d="m 37.423492,23.379999 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1628" />
+              <path
+                 d="m 38.941825,23.343305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1630" />
+              <path
+                 d="m 39.555842,23.418324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1632" />
+              <path
+                 d="m 40.193507,23.331889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174501,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1634" />
+              <path
+                 d="m 41.480254,23.379999 -0.395483,-0.910835 h 0.166348 l 0.312309,0.72084 0.318833,-0.72084 h 0.15167 l -0.398745,0.910835 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1636" />
+              <path
+                 d="m 42.952108,23.353905 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326171,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1638" />
+              <path
+                 d="M 43.617497,22.570278 H 43.50823 l -0.08562,-0.506382 h 0.278061 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1640" />
+            </g>
+            <g
+               aria-label="-"
+               id="text70"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 2.1891025,25.101699 v -0.126392 h 0.6327734 v 0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1643" />
+            </g>
+            <g
+               aria-label="localhost"
+               id="text72"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 4.3790204,25.551001 V 24.362104 H 4.1066669 v -0.127207 h 0.4240234 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1646" />
+              <path
+                 d="m 5.5108368,25.576279 q -0.1957031,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1648" />
+              <path
+                 d="m 6.9035907,25.524907 q -0.1524853,0.05137 -0.290293,0.05137 -0.1369921,0 -0.2438134,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108453 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136993 0.3261718,-0.136993 0.1410694,0 0.2984473,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128022 -0.039956,0.08725 -0.039956,0.179395 0,0.12313 0.07665,0.234844 0.077466,0.111713 0.2421826,0.111713 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1650" />
+              <path
+                 d="m 7.73696,25.346328 q -0.069311,0.11416 -0.1671631,0.172055 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.1614551,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524853 v 0.643374 q 0,0.164716 0.034248,0.267461 H 7.7655 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295185 0,0.135362 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1652" />
+              <path
+                 d="M 8.384411,25.551001 V 24.362104 H 8.1120575 V 24.234897 H 8.536081 v 1.189712 h 0.2845849 v 0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1654" />
+              <path
+                 d="m 9.1411297,25.551001 v -1.316104 h 0.1516699 v 0.604233 q 0.065234,-0.10519 0.1573779,-0.164716 0.092144,-0.05953 0.1842871,-0.05953 0.077466,0 0.1410694,0.03996 0.064419,0.03914 0.089697,0.09541 0.020386,0.04322 0.027725,0.09214 0.00734,0.04811 0.00734,0.19978 v 0.508829 H 9.7486248 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012231,-0.0424 -0.046479,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720556,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1656" />
+              <path
+                 d="m 10.517575,25.576279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1658" />
+              <path
+                 d="m 11.154426,25.50289 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1660" />
+              <path
+                 d="m 12.906784,25.514306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174501,-0.03669 -0.0791,-0.03669 -0.119869,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1662" />
+            </g>
+            <g
+               aria-label="duration"
+               id="text74"
+               class="e"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="m 2.7387021,27.517327 q -0.069311,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299262 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304688,0.009 0.013047,0.0016 0.039141,0.0041 V 26.405897 H 2.8911874 V 27.722 H 2.7387021 Z m 0,-0.18021 v -0.39059 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108453 -0.092959,0.295186 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1665" />
+              <path
+                 d="M 3.8811191,26.811165 V 27.722 H 3.7294492 v -0.19978 q -0.073389,0.112529 -0.163086,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467773,-0.0424 -0.06605,-0.04322 -0.092144,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 V 26.811165 H 3.273624 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092144,-0.07584 0.1524854,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1667" />
+              <path
+                 d="m 4.2105527,27.722 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647167,0.02528 v 0.328618 H 4.7479208 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663476,0.06687 -0.081543,0.06687 -0.1590088,0.200595 V 27.722 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1669" />
+              <path
+                 d="m 5.73296,27.517327 q -0.069312,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141601,0 -0.2054882,-0.09867 -0.090513,-0.09867 -0.090513,-0.299262 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.161455,-0.196518 0.1011133,-0.07257 0.250337,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524854 v 0.643374 q 0,0.164717 0.034248,0.267461 H 5.7615001 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.080728,-0.0212 -0.150039,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108453 -0.092959,0.295186 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166065,0.0685 0.070942,0 0.1565624,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1671" />
+              <path
+                 d="m 6.8973935,27.685306 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.174502,-0.03669 -0.079097,-0.03669 -0.1198681,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 27.013392 H 6.0876718 V 26.887 H 6.3151767 V 26.520057 H 6.4668466 V 26.887 h 0.4052686 v 0.126392 H 6.4668466 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069311,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1673" />
+              <path
+                 d="M 7.3923592,27.722 V 26.937557 H 7.139576 v -0.126392 h 0.4044531 v 0.784444 H 7.7976278 V 27.722 Z m -0.025278,-1.239453 q 0,-0.05137 0.035063,-0.07665 0.035063,-0.02528 0.06605,-0.02528 0.031802,0 0.066865,0.02528 0.035064,0.02528 0.035064,0.07665 0,0.05056 -0.035064,0.07584 -0.035063,0.02528 -0.066865,0.02528 -0.030986,0 -0.06605,-0.02528 -0.035063,-0.02528 -0.035063,-0.07584 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1675" />
+              <path
+                 d="m 8.5135754,27.747278 q -0.1957031,0 -0.313125,-0.136176 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1677" />
+              <path
+                 d="m 9.1398253,27.722 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467774,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 V 27.722 H 9.7473204 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012231,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07584 -0.1508545,0.189995 V 27.722 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1679" />
+            </g>
+            <g
+               aria-label=":"
+               id="text76"
+               class="f"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 10.520674,27.760325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1682" />
+            </g>
+            <g
+               aria-label="8760h0m0s"
+               id="text78"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 12.398282,27.039485 -0.02772,-0.02038 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01876,0.104375 -0.01876,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298448,0.100298 -0.19978,0 -0.299262,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393038 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.0473,0.05463 -0.0473,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118238,-0.110899 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1685" />
+              <path
+                 d="m 13.28547,27.722 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.132099,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803199 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145147,0.219351 -0.02935,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 V 27.722 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1687" />
+              <path
+                 d="m 14.264801,27.128367 q 0.05871,-0.08725 0.145146,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186734,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139439,-0.499858 0.139438,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135362,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114975,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123946 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1689" />
+              <path
+                 d="m 15.528717,26.418944 q 0.216089,0 0.329434,0.18184 0.113344,0.181026 0.113344,0.488443 0,0.308232 -0.113344,0.490073 -0.113345,0.181025 -0.329434,0.181025 -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 z m -0.247075,0.941005 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02773,0.165532 z m 0.492519,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154931,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1691" />
+              <path
+                 d="m 16.155782,27.722 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.14107,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 V 27.722 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 27.722 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1693" />
+              <path
+                 d="m 17.531412,26.418944 q 0.216089,0 0.329434,0.18184 0.113344,0.181026 0.113344,0.488443 0,0.308232 -0.113344,0.490073 -0.113345,0.181025 -0.329434,0.181025 -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 z m -0.247075,0.941005 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02773,0.165532 z m 0.492519,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154931,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1695" />
+              <path
+                 d="m 18.089982,27.722 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09378,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 27.722 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 27.722 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 V 27.722 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1697" />
+              <path
+                 d="m 19.534108,26.418944 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02773,0.165532 z m 0.492519,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1699" />
+              <path
+                 d="m 20.171774,27.67389 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172872,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1701" />
+            </g>
+            <g
+               aria-label="ipAddresses"
+               id="text80"
+               class="e"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="M 2.385621,29.893 V 29.108556 H 2.1328378 V 28.982165 H 2.537291 v 0.784443 H 2.7908896 V 29.893 Z m -0.025278,-1.239453 q 0,-0.05137 0.035064,-0.07665 0.035064,-0.02528 0.06605,-0.02528 0.031802,0 0.066865,0.02528 0.035063,0.02528 0.035063,0.07665 0,0.05056 -0.035063,0.07584 -0.035064,0.02528 -0.066865,0.02528 -0.030986,0 -0.06605,-0.02528 -0.035064,-0.02528 -0.035064,-0.07584 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1704" />
+              <path
+                 d="m 3.2719931,29.186838 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353896 H 3.1203232 v -1.264731 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.2315821,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1706" />
+              <path
+                 d="M 4.1917978,29.893 H 4.0336044 L 4.4233798,28.627453 H 4.5905429 L 4.9827646,29.893 H 4.8090781 L 4.7226425,29.614938 H 4.2774179 Z m 0.1247607,-0.404453 h 0.3693897 l -0.1524854,-0.480289 -0.035879,-0.127207 -0.031802,0.127207 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1708" />
+              <path
+                 d="m 5.7427452,29.688327 q -0.069311,0.11416 -0.1671631,0.172055 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.1614551,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304688,0.009 0.013047,0.0016 0.039141,0.0041 V 28.576896 H 5.8952305 V 29.893 H 5.7427452 Z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204672 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1710" />
+              <path
+                 d="m 6.7440927,29.688327 q -0.069312,0.11416 -0.1671631,0.172055 -0.097036,0.0579 -0.1785791,0.0579 -0.1141601,0 -0.2054882,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.161455,-0.196519 0.1011133,-0.07257 0.250337,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 V 28.576896 H 6.8965781 V 29.893 H 6.7440927 Z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.150039,-0.0212 -0.1402539,0 -0.2340284,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204672 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1712" />
+              <path
+                 d="m 7.2145956,29.893 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092143,-0.05626 0.2046728,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 7.7519637 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663476,0.06686 -0.081543,0.06686 -0.1590088,0.200596 V 29.893 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1714" />
+              <path
+                 d="m 8.8960119,29.832658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 8.2811779 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 8.2901477,29.349108 H 8.744342 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1716" />
+              <path
+                 d="M 9.1504259,29.844889 V 29.68425 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023647,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 l -0.052188,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122315 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.112529 0.086436,-0.185102 0.087251,-0.07257 0.2821387,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137807 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027441,0.03751 q 0.1410694,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07584 -0.290293,0.07584 -0.1745019,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1718" />
+              <path
+                 d="M 10.151773,29.844889 V 29.68425 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08643,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174501,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1720" />
+              <path
+                 d="m 11.900055,29.832658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1722" />
+              <path
+                 d="M 12.154469,29.844889 V 29.68425 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08643,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1724" />
+            </g>
+            <g
+               aria-label=":"
+               id="text82"
+               class="f"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 13.526674,29.931325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1727" />
+            </g>
+            <g
+               aria-label="-"
+               id="text84"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 2.1891025,31.614697 v -0.126391 h 0.6327734 v 0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1730" />
+            </g>
+            <g
+               aria-label="127.0.0.1"
+               id="text86"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 4.4711639,31.937608 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136992 q 0.1785791,-0.07583 0.3098632,-0.196519 h 0.15167 v 1.139156 h 0.3041552 v 0.126391 H 4.1613007 v -0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1733" />
+              <path
+                 d="M 5.896535,32.063999 H 5.1308466 v -0.139438 q 0,-0.05382 0.022017,-0.114976 0.022017,-0.06197 0.083989,-0.138623 0.061973,-0.07665 0.1312842,-0.147593 l 0.086436,-0.08807 q 0.026094,-0.02691 0.1141601,-0.124761 0.088066,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.065234,-0.125576 -0.065234,-0.04485 -0.1467774,-0.04485 -0.046479,0 -0.104375,0.0106 -0.05708,0.0106 -0.1002978,0.02528 -0.043218,0.01386 -0.1402539,0.0579 v -0.134546 q 0.1027441,-0.04893 0.2054883,-0.06687 0.1035595,-0.01875 0.1704248,-0.01875 0.098667,0 0.1810254,0.03262 0.083174,0.0318 0.1231298,0.09948 0.040771,0.06768 0.040771,0.144331 0,0.08562 -0.052188,0.175318 -0.051372,0.0897 -0.1948877,0.230766 l -0.092959,0.09214 -0.078281,0.07665 q -0.074204,0.07502 -0.1198682,0.145147 -0.045664,0.07013 -0.050557,0.167163 H 5.896535 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1735" />
+              <path
+                 d="m 6.2708173,32.063999 v -0.113345 q 0,-0.132915 0.030171,-0.223427 0.030171,-0.09051 0.1060058,-0.201411 0.075835,-0.110899 0.1214991,-0.171241 l 0.1320996,-0.174502 0.047295,-0.06116 q 0.053818,-0.07257 0.092959,-0.167978 H 6.1444257 v -0.152486 h 0.8031982 v 0.101114 q 0,0.06034 -0.024463,0.111713 -0.023647,0.05137 -0.1451465,0.219351 -0.029355,0.03996 -0.057895,0.07991 l -0.084805,0.119053 q -0.081543,0.114975 -0.1206835,0.183472 -0.039141,0.0685 -0.059526,0.1427 -0.01957,0.0742 -0.01957,0.194887 v 0.113345 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1737" />
+              <path
+                 d="m 7.5127168,32.102324 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1739" />
+              <path
+                 d="m 8.5140644,30.760943 q 0.2160888,0 0.3294335,0.18184 0.1133448,0.181026 0.1133448,0.488443 0,0.308232 -0.1133448,0.490073 -0.1133447,0.181025 -0.3294335,0.181025 -0.2152735,0 -0.3294336,-0.181025 -0.1133448,-0.181841 -0.1133448,-0.490073 0,-0.307417 0.1133448,-0.488443 0.1141601,-0.18184 0.3294336,-0.18184 z m -0.2470752,0.941005 0.4378857,-0.685776 q -0.041587,-0.07584 -0.090513,-0.101929 -0.04811,-0.02691 -0.1002978,-0.02691 -0.1361768,0 -0.2071192,0.15167 -0.070942,0.150855 -0.070942,0.383252 0,0.053 0.00326,0.11416 0.00326,0.06116 0.027725,0.165532 z m 0.4925195,-0.534921 -0.434624,0.689853 q 0.035063,0.05953 0.080728,0.0897 0.045664,0.02936 0.1019287,0.02936 0.1549317,0 0.220166,-0.172871 0.065234,-0.173687 0.065234,-0.384883 0,-0.130469 -0.033433,-0.251152 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1741" />
+              <path
+                 d="m 9.5154119,32.102324 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1743" />
+              <path
+                 d="m 10.51676,30.760943 q 0.216089,0 0.329434,0.18184 0.113344,0.181026 0.113344,0.488443 0,0.308232 -0.113344,0.490073 -0.113345,0.181025 -0.329434,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113344,-0.181841 -0.113344,-0.490073 0,-0.307417 0.113344,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02773,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1745" />
+              <path
+                 d="m 11.518107,32.102324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1747" />
+              <path
+                 d="m 12.481945,31.937608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 h -0.765688 v -0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1749" />
+            </g>
+            <g
+               aria-label="-"
+               id="text88"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 2.1891025,33.785699 v -0.126392 h 0.6327734 v 0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1752" />
+            </g>
+            <g
+               aria-label="10.96.0.1"
+               id="text90"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 4.4711639,34.108609 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136993 q 0.1785791,-0.07583 0.3098632,-0.196518 h 0.15167 v 1.139155 h 0.3041552 v 0.126392 H 4.1613007 v -0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1755" />
+              <path
+                 d="m 5.5100214,32.931944 q 0.2160888,0 0.3294336,0.181841 0.1133447,0.181025 0.1133447,0.488442 0,0.308233 -0.1133447,0.490073 -0.1133448,0.181026 -0.3294336,0.181026 -0.2152735,0 -0.3294336,-0.181026 -0.1133447,-0.18184 -0.1133447,-0.490073 0,-0.307417 0.1133447,-0.488442 0.1141601,-0.181841 0.3294336,-0.181841 z M 5.2629462,33.87295 5.7008319,33.187173 q -0.041587,-0.07583 -0.090513,-0.101928 -0.04811,-0.02691 -0.1002978,-0.02691 -0.1361768,0 -0.2071192,0.15167 -0.070942,0.150854 -0.070942,0.383251 0,0.053 0.00326,0.114161 0.00326,0.06116 0.027725,0.165532 z m 0.4925195,-0.534922 -0.434624,0.689853 q 0.035063,0.05953 0.080728,0.0897 0.045664,0.02936 0.1019287,0.02936 0.1549317,0 0.220166,-0.172871 0.065234,-0.173686 0.065234,-0.384883 0,-0.130468 -0.033433,-0.251152 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1757" />
+              <path
+                 d="m 6.511369,34.273326 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1759" />
+              <path
+                 d="m 7.7752852,33.563087 q -0.058711,0.08725 -0.1459619,0.1427 -0.086436,0.05463 -0.1908106,0.05463 -0.098667,0 -0.1875488,-0.04729 -0.088066,-0.04811 -0.1345459,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.1149756,-0.31231 0.115791,-0.13373 0.3041553,-0.13373 0.2217968,0 0.3310644,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.1394385,0.500674 -0.1394384,0.183472 -0.3775439,0.183472 -0.1280225,0 -0.2487061,-0.03833 v -0.152486 q 0.1353614,0.0636 0.2552295,0.0636 0.1696094,0 0.2625684,-0.155747 0.092959,-0.155747 0.092959,-0.394668 z M 7.4776533,33.058336 q -0.061157,0 -0.1231298,0.03669 -0.061973,0.03588 -0.097852,0.110898 -0.035063,0.07502 -0.035063,0.164717 0,0.114976 0.059526,0.18918 0.060342,0.0742 0.1712402,0.0742 0.1149756,0 0.1883643,-0.08562 0.074204,-0.08644 0.074204,-0.20875 0,-0.123945 -0.072573,-0.202227 -0.071758,-0.0791 -0.1647168,-0.0791 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1761" />
+              <path
+                 d="m 8.251496,33.641368 q 0.058711,-0.08725 0.1451465,-0.141885 0.087251,-0.05545 0.191626,-0.05545 0.098667,0 0.1867333,0.04811 0.088882,0.04811 0.1353614,0.134546 0.046479,0.08562 0.046479,0.19978 0,0.18021 -0.115791,0.313941 -0.1149756,0.132915 -0.3033399,0.132915 -0.2217969,0 -0.3318799,-0.185103 -0.1092675,-0.185918 -0.1092675,-0.472134 0,-0.316386 0.1394384,-0.499858 0.1394385,-0.184287 0.377544,-0.184287 0.1280224,0 0.248706,0.03751 v 0.153301 q -0.1353613,-0.06442 -0.2552295,-0.06442 -0.1696093,0 -0.2625683,0.155747 -0.092959,0.155747 -0.092959,0.394668 z m 0.2976318,0.505566 q 0.061157,0 0.1231299,-0.03588 0.061973,-0.03669 0.097036,-0.111714 0.035879,-0.07583 0.035879,-0.164716 0,-0.115791 -0.060342,-0.189995 -0.059526,-0.0742 -0.1704248,-0.0742 -0.1149756,0 -0.1891797,0.08644 -0.073389,0.08562 -0.073389,0.20875 0,0.123945 0.071758,0.203042 0.072573,0.07828 0.1655322,0.07828 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1763" />
+              <path
+                 d="m 9.5154119,34.273326 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1765" />
+              <path
+                 d="m 10.51676,32.931944 q 0.216089,0 0.329434,0.181841 0.113344,0.181025 0.113344,0.488442 0,0.308233 -0.113344,0.490073 -0.113345,0.181026 -0.329434,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113344,-0.18184 -0.113344,-0.490073 0,-0.307417 0.113344,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247075,0.941006 0.437885,-0.685777 q -0.04159,-0.07583 -0.09051,-0.101928 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02773,0.165532 z m 0.492519,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1767" />
+              <path
+                 d="m 11.518107,34.273326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1769" />
+              <path
+                 d="m 12.481945,34.108609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136993 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 h -0.765688 v -0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1771" />
+            </g>
+            <g
+               aria-label="issuerRef"
+               id="text92"
+               class="e"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="M 2.385621,36.405998 V 35.621555 H 2.1328378 V 35.495163 H 2.537291 v 0.784444 h 0.2535986 v 0.126391 z m -0.025278,-1.239453 q 0,-0.05137 0.035064,-0.07665 0.035064,-0.02528 0.06605,-0.02528 0.031802,0 0.066865,0.02528 0.035063,0.02528 0.035063,0.07665 0,0.05056 -0.035063,0.07583 -0.035064,0.02528 -0.066865,0.02528 -0.030986,0 -0.06605,-0.02528 -0.035064,-0.02528 -0.035064,-0.07583 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1774" />
+              <path
+                 d="m 3.1423398,36.357888 v -0.16064 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.0367 -0.023648,-0.06279 -0.023647,-0.02609 -0.1174219,-0.06442 l -0.052188,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122315 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.11253 0.086436,-0.185103 0.087251,-0.07257 0.2821386,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137808 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.046479,0.02936 0.1516699,0.06768 l 0.1027441,0.03751 q 0.1410694,0.05137 0.1981495,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.091328,0.194888 -0.090513,0.07584 -0.290293,0.07584 -0.1745019,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1776" />
+              <path
+                 d="m 4.1436875,36.357888 v -0.16064 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.0367 -0.023647,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 l -0.052187,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122315 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.11253 0.086436,-0.185103 0.087251,-0.07257 0.2821387,-0.07257 0.1459619,0 0.2764306,0.0424 v 0.137808 q -0.150039,-0.05382 -0.2821386,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.046479,0.02936 0.1516699,0.06768 l 0.1027441,0.03751 q 0.1410693,0.05137 0.1981494,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.091328,0.194888 -0.090513,0.07584 -0.290293,0.07584 -0.1745019,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1778" />
+              <path
+                 d="m 5.8838145,35.495163 v 0.910835 H 5.7321446 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05627 -0.1793946,0.05627 -0.079912,0 -0.1467773,-0.0424 -0.06605,-0.04322 -0.092144,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.046479,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092144,-0.07583 0.1524854,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1780" />
+              <path
+                 d="m 6.8933164,36.345656 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057896,-0.11416 -0.057896,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 6.2784824 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.3245411,-0.09785 z M 6.2874521,35.862107 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1782" />
+              <path
+                 d="m 7.2145956,36.405998 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092143,-0.05627 0.2046728,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 7.7519637 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663476,0.06687 -0.081543,0.06686 -0.1590088,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1784" />
+              <path
+                 d="m 8.298302,35.86863 v 0.537368 H 8.1335852 v -1.265547 h 0.3384033 q 0.1655322,0 0.2438135,0.03425 0.078281,0.03343 0.1206835,0.101929 0.043218,0.0685 0.043218,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.079097,0.132915 -0.049741,0.0579 -0.144331,0.110083 l 0.3661279,0.591186 H 8.7981604 L 8.4630188,35.86863 Z m 0,-0.127207 h 0.2307666 q 0.077466,-0.0424 0.1149755,-0.08643 0.038325,-0.04403 0.057896,-0.09378 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.065234,-0.14107 -0.064419,-0.053 -0.2348438,-0.053 H 8.298302 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1786" />
+              <path
+                 d="m 9.8973595,36.345656 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057896,-0.11416 -0.057896,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 9.2825255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.3245411,-0.09785 z M 9.2914952,35.862107 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1788" />
+              <path
+                 d="M 10.353185,36.405998 V 35.69739 h -0.202227 v -0.126392 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118238,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361236 v 0.126392 h -0.361236 v 0.708608 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1790" />
+            </g>
+            <g
+               aria-label=":"
+               id="text94"
+               class="f"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 11.522674,36.444323 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1793" />
+            </g>
+            <g
+               aria-label="kind"
+               id="text96"
+               class="e"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="m 4.175163,38.577 v -1.316104 h 0.1516699 v 0.826846 L 4.7647186,37.666165 H 4.9669452 L 4.5298749,38.087742 4.9783612,38.577 h -0.20875 L 4.3268329,38.087742 V 38.577 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1796" />
+              <path
+                 d="M 5.3909686,38.577 V 37.792556 H 5.1381854 v -0.126391 h 0.4044532 v 0.784443 H 5.7962372 V 38.577 Z m -0.025278,-1.239453 q 0,-0.05137 0.035064,-0.07665 0.035063,-0.02528 0.06605,-0.02528 0.031802,0 0.066865,0.02528 0.035063,0.02528 0.035063,0.07665 0,0.05056 -0.035063,0.07583 -0.035063,0.02528 -0.066865,0.02528 -0.030986,0 -0.06605,-0.02528 -0.035064,-0.02528 -0.035064,-0.07583 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1798" />
+              <path
+                 d="m 6.1370868,38.577 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 V 38.577 H 6.7445819 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012231,-0.0424 -0.046479,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 V 38.577 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1800" />
+              <path
+                 d="m 7.7467451,38.372327 q -0.069312,0.11416 -0.1671631,0.172055 -0.097036,0.0579 -0.178579,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.1614551,-0.196519 0.1011132,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 V 37.260896 H 7.8992305 V 38.577 H 7.7467451 Z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.150039,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204672 0.051372,0.0685 0.1166065,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533007,-0.193257 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1802" />
+            </g>
+            <g
+               aria-label=":"
+               id="text98"
+               class="f"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 8.5166736,38.615325 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708609 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1805" />
+            </g>
+            <g
+               aria-label="Issuer"
+               id="text100"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 10.160254,38.577 v -0.126392 h 0.278062 V 37.43866 h -0.278062 v -0.127207 h 0.72084 v 0.127207 h -0.278061 v 1.011948 h 0.278061 V 38.577 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1808" />
+              <path
+                 d="M 11.15834,38.528889 V 38.36825 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08643,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1810" />
+              <path
+                 d="M 12.159688,38.528889 V 38.36825 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.151669,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1812" />
+              <path
+                 d="M 13.899815,37.666165 V 38.577 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1814" />
+              <path
+                 d="m 14.909317,38.516658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1816" />
+              <path
+                 d="m 15.230596,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 38.577 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1818" />
+            </g>
+            <g
+               aria-label="name"
+               id="text102"
+               class="e"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="m 4.1343915,40.748001 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467774,0.04322 0.06605,0.0424 0.092144,0.111713 0.026909,0.06931 0.026909,0.272354 v 0.508828 H 4.7418866 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012231,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1821" />
+              <path
+                 d="m 5.7342645,40.543328 q -0.069312,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.178579,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299262 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011132,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524854 v 0.643374 q 0,0.164717 0.034248,0.267461 H 5.7628046 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.150039,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108453 -0.092959,0.295186 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166065,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533007,-0.193257 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1823" />
+              <path
+                 d="m 6.0685907,40.748001 v -0.910835 h 0.1329151 v 0.20875 q 0.062788,-0.132915 0.1166064,-0.183472 0.054634,-0.05056 0.110083,-0.05056 0.06605,0 0.1060059,0.05219 0.040771,0.05137 0.040771,0.146778 v 0.04893 q 0.026909,-0.08317 0.064419,-0.134545 0.038325,-0.05219 0.079097,-0.08236 0.040771,-0.03099 0.093774,-0.03099 0.058711,0 0.1002978,0.04974 0.041587,0.04974 0.041587,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.00489,-0.104375 -0.00489,-0.02854 -0.01957,-0.04322 -0.014678,-0.01468 -0.031802,-0.01468 -0.042402,0 -0.091328,0.06523 -0.04811,0.06442 -0.098667,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.023647,-0.141885 -0.023648,-0.0212 -0.042402,-0.0212 -0.041587,0 -0.089697,0.07257 -0.047295,0.07257 -0.090513,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1825" />
+              <path
+                 d="m 7.8959688,40.687659 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2811348 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2901045,40.20411 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.145962,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1827" />
+            </g>
+            <g
+               aria-label=":"
+               id="text104"
+               class="f"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 8.5166736,40.786326 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1830" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-issuer"
+               id="text106"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 10.358404,40.748001 v -0.708608 h -0.202227 v -0.126392 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126392 h -0.361235 v 0.708608 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1833" />
+              <path
+                 d="m 11.522837,40.773279 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1835" />
+              <path
+                 d="m 12.524185,40.773279 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117421,0.136176 0.117421,0.344111 0,0.207934 -0.117421,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1837" />
+              <path
+                 d="m 13.209146,40.298699 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1839" />
+              <path
+                 d="m 14.192554,40.748001 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1841" />
+              <path
+                 d="m 15.90251,39.837166 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1843" />
+              <path
+                 d="m 16.294732,40.041839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161456,0.196518 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1845" />
+              <path
+                 d="m 17.91336,40.687659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 17.307496,40.20411 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1847" />
+              <path
+                 d="m 18.234639,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 H 18.772007 V 39.95785 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1849" />
+              <path
+                 d="m 19.158521,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1851" />
+              <path
+                 d="m 20.917403,40.687659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 20.311538,40.20411 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1853" />
+              <path
+                 d="m 21.922827,40.711307 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227504 v -0.126392 h 0.227504 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 H 21.49228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1855" />
+              <path
+                 d="m 22.920099,40.687659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 22.314234,40.20411 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1857" />
+              <path
+                 d="m 23.174513,40.699891 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172872,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08643,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1859" />
+              <path
+                 d="m 24.22397,40.298699 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1861" />
+              <path
+                 d="m 25.421837,40.748001 v -0.784443 h -0.252784 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1863" />
+              <path
+                 d="m 26.178555,40.699891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08643,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1865" />
+              <path
+                 d="m 27.179904,40.699891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1867" />
+              <path
+                 d="m 28.92003,39.837166 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.151669 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152486,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1869" />
+              <path
+                 d="m 29.929532,40.687659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 29.323668,40.20411 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1871" />
+              <path
+                 d="m 30.250811,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 H 30.788179 V 39.95785 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1873" />
+            </g>
+            <g
+               aria-label="renewBefore"
+               id="text108"
+               class="e"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="m 2.2078574,42.918999 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092144,-0.05626 0.2046728,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 2.7452255 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663476,0.06686 -0.081543,0.06686 -0.1590088,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1876" />
+              <path
+                 d="m 3.8892734,42.858657 q -0.1818408,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057896,-0.11416 -0.057896,-0.243813 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.17858 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 3.2744394 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058643,-0.48355 h 0.4541944 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598243,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1878" />
+              <path
+                 d="m 4.1330869,42.918999 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467774,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 v 0.508828 H 4.740582 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012231,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720556,0.07583 -0.091328,0.07584 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1880" />
+              <path
+                 d="m 5.8919688,42.858657 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.17858 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 5.2771348 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1882" />
+              <path
+                 d="M 6.1741074,42.918999 6.0256992,42.008164 h 0.1410693 l 0.086436,0.554492 0.022832,0.128838 0.022017,-0.128838 0.1451465,-0.554492 h 0.1361767 l 0.1639014,0.554492 0.02854,0.128838 0.018755,-0.128838 0.087251,-0.554492 H 6.9944296 L 6.8468369,42.918999 H 6.7049521 l -0.174502,-0.586294 -0.027725,-0.128838 h -0.00408 l -0.025278,0.128022 -0.1516699,0.58711 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1884" />
+              <path
+                 d="m 7.150992,42.918999 v -1.265547 h 0.2470752 q 0.2226123,0 0.2976319,0.03425 0.075835,0.03343 0.1133447,0.09948 0.03751,0.06605 0.03751,0.150855 0,0.06686 -0.022017,0.127207 -0.022017,0.05953 -0.065234,0.109267 -0.043218,0.04893 -0.1255762,0.09296 0.1508545,0.06034 0.2038574,0.148409 0.053818,0.08807 0.053818,0.176132 0,0.08399 -0.045664,0.163086 -0.044849,0.0791 -0.1263916,0.121499 -0.081543,0.0424 -0.2609375,0.0424 z m 0.1647168,-0.695562 h 0.1728711 q 0.083989,-0.03506 0.1223145,-0.07339 0.039141,-0.03914 0.057895,-0.08644 0.01957,-0.04811 0.01957,-0.10519 0,-0.0897 -0.053003,-0.133731 -0.052187,-0.04403 -0.2046729,-0.04403 H 7.3157088 Z m 0,0.56917 h 0.1557471 q 0.1304687,0 0.1924414,-0.06116 0.062788,-0.06197 0.062788,-0.148408 0,-0.0636 -0.034248,-0.116607 -0.034248,-0.05382 -0.1060058,-0.0848 -0.071758,-0.0318 -0.2250586,-0.0318 h -0.045664 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1886" />
+              <path
+                 d="m 8.8960119,42.858657 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.17858 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 8.2811779 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 8.2901477,42.375107 H 8.744342 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1888" />
+              <path
+                 d="M 9.351837,42.918999 V 42.21039 H 9.1496104 V 42.083999 H 9.351837 v -0.0424 q 0,-0.18021 0.040771,-0.266645 0.040771,-0.08644 0.1255762,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.1060058,0 0.2152734,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.2095654,-0.03914 -0.072573,0 -0.1280225,0.02691 -0.055449,0.02691 -0.087251,0.08807 -0.030986,0.06034 -0.030986,0.205488 v 0.05871 H 9.8647423 V 42.21039 H 9.5035069 v 0.708609 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1890" />
+              <path
+                 d="m 10.51627,42.944277 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344926 0,-0.207935 0.117421,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.1215,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1892" />
+              <path
+                 d="m 11.219986,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1894" />
+              <path
+                 d="m 12.901402,42.858657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1896" />
+            </g>
+            <g
+               aria-label=":"
+               id="text110"
+               class="f"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 13.526674,42.957324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1899" />
+            </g>
+            <g
+               aria-label="4380h0m0s"
+               id="text112"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 15.606509,42.918999 V 42.565102 H 15.06914 v -0.127207 l 0.537369,-0.784443 h 0.152485 v 0.784443 h 0.234028 v 0.127207 h -0.234028 v 0.353897 z m 0,-0.481104 v -0.554492 l -0.375914,0.554492 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1902" />
+              <path
+                 d="m 16.149585,42.896167 v -0.159825 q 0.186733,0.09459 0.323725,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07583 -0.305786,-0.07583 H 16.2825 v -0.126391 h 0.116606 q 0.159009,0 0.229951,-0.07094 Q 16.7,42.017134 16.7,41.929883 q 0,-0.0791 -0.0579,-0.132916 -0.05789,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07583 v -0.144331 q 0.154932,-0.0579 0.28377,-0.0579 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07584 -0.17124,0.135361 0.110083,0.03262 0.166347,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.1321,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1904" />
+              <path
+                 d="m 17.406977,42.236484 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01876,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298448,0.100298 -0.19978,0 -0.299262,-0.09377 -0.09948,-0.09459 -0.09948,-0.234029 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02935,-0.05871 0.02935,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158194 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05627 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118238,-0.110898 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1906" />
+              <path
+                 d="m 18.534717,41.615942 q 0.216089,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490074 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490074 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101928,0.02935 0.154932,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1908" />
+              <path
+                 d="m 19.161782,42.918999 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.199781 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1910" />
+              <path
+                 d="m 20.537412,41.615942 q 0.216089,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490074 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490074 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247075,0.941006 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02773,0.165532 z m 0.492519,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101928,0.02935 0.154932,0 0.220166,-0.172871 0.06524,-0.173686 0.06524,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1912" />
+              <path
+                 d="m 21.095981,42.918999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141884 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1914" />
+              <path
+                 d="m 22.540107,41.615942 q 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490074 -0.113345,0.181025 -0.329434,0.181025 -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490074 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 z m -0.247075,0.941006 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136176,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02773,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101929,0.02935 0.154931,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1916" />
+              <path
+                 d="m 23.177773,42.870888 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1918" />
+            </g>
+            <g
+               aria-label="secretName"
+               id="text114"
+               class="e"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="m 2.1409921,45.04189 v -0.16064 q 0.091328,0.05953 0.1932569,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149755,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.0367 -0.023647,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 l -0.052188,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122314 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.11253 0.086435,-0.185103 0.087251,-0.07257 0.2821387,-0.07257 0.1459619,0 0.2764306,0.0424 v 0.137808 q -0.150039,-0.05382 -0.2821386,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.046479,0.02936 0.1516699,0.06768 l 0.1027442,0.03751 q 0.1410693,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.091328,0.194888 -0.090513,0.07583 -0.2902929,0.07583 -0.174502,0 -0.3587891,-0.07339 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1921" />
+              <path
+                 d="m 3.8892734,45.029658 q -0.1818408,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057896,-0.11416 -0.057896,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 3.2744394 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 3.2834091,44.546109 h 0.4541944 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598243,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1923" />
+              <path
+                 d="m 4.8995908,45.063906 q -0.1524854,0.05137 -0.290293,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060058,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353614,-0.136992 0.3261719,-0.136992 0.1410693,0 0.2984473,0.053 v 0.145962 q -0.1590088,-0.07257 -0.284585,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133447,0.128023 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097852,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1925" />
+              <path
+                 d="m 5.2119005,45.09 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092143,-0.05627 0.2046728,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 5.7492686 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663476,0.06687 -0.081543,0.06686 -0.1590088,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1927" />
+              <path
+                 d="m 6.8933164,45.029658 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057896,-0.11416 -0.057896,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 6.2784824 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.3245411,-0.09785 z M 6.2874521,44.546109 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1929" />
+              <path
+                 d="m 7.898741,45.053306 q -0.1068212,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.1745019,-0.03669 -0.079097,-0.03669 -0.1198682,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 44.381392 H 7.0890194 V 44.255 H 7.3165243 V 43.888057 H 7.4681942 V 44.255 h 0.4052685 v 0.126392 H 7.4681942 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069312,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1931" />
+              <path
+                 d="M 8.2665002,45.09 H 8.1148303 v -1.265547 h 0.1484082 l 0.4476709,0.842339 0.048926,0.125576 h 0.00408 l -0.00408,-0.125576 V 43.824453 H 8.9115051 V 45.09 H 8.7598352 l -0.4354395,-0.828476 -0.061157,-0.132915 0.00326,0.131284 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1933" />
+              <path
+                 d="m 9.7383507,44.885327 q -0.069312,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299262 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 H 9.890836 v 0.643374 q 0,0.164717 0.034248,0.267461 H 9.7668907 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108453 -0.092959,0.108452 -0.092959,0.295185 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1935" />
+              <path
+                 d="m 10.072677,45.09 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09378,-0.03099 0.05871,0 0.100297,0.04974 0.04159,0.04974 0.04159,0.19815 V 45.09 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 45.09 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 45.09 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1937" />
+              <path
+                 d="m 11.900055,45.029658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 11.29419,44.546109 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path1939" />
+            </g>
+            <g
+               aria-label=":"
+               id="text116"
+               class="f"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 12.524674,45.128325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1942" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-apiserver"
+               id="text118"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 14.366403,45.09 V 44.381392 H 14.164177 V 44.255 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 V 44.255 h 0.361235 v 0.126392 H 14.518073 V 45.09 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1945" />
+              <path
+                 d="m 15.530837,45.115278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1947" />
+              <path
+                 d="m 16.532184,45.115278 q -0.195703,0 -0.313125,-0.136176 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207935 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1949" />
+              <path
+                 d="m 17.217146,44.640698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1951" />
+              <path
+                 d="m 18.200554,45.09 v -1.316103 h 0.15167 v 0.826845 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 18.352224,44.600742 V 45.09 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1953" />
+              <path
+                 d="M 19.91051,44.179165 V 45.09 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.151669 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1955" />
+              <path
+                 d="m 20.302732,44.383838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1957" />
+              <path
+                 d="m 21.921359,45.029658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1959" />
+              <path
+                 d="m 22.242639,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1961" />
+              <path
+                 d="m 23.16652,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1963" />
+              <path
+                 d="m 24.925402,45.029658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1965" />
+              <path
+                 d="m 25.930827,45.053306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 44.381392 H 25.121105 V 44.255 h 0.227505 v -0.366943 h 0.15167 V 44.255 h 0.405268 v 0.126392 H 25.50028 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1967" />
+              <path
+                 d="m 26.928098,45.029658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1969" />
+              <path
+                 d="m 27.182512,45.04189 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145961,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1971" />
+              <path
+                 d="m 28.23197,44.640698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1973" />
+              <path
+                 d="m 29.31486,44.383838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.17858,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1975" />
+              <path
+                 d="m 30.216726,45.09 v -1.316103 h 0.151669 v 0.826845 l 0.437886,-0.421577 h 0.202227 L 30.571437,44.600742 31.019924,45.09 h -0.20875 L 30.368395,44.600742 V 45.09 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1977" />
+              <path
+                 d="m 31.432532,45.09 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 45.09 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1979" />
+              <path
+                 d="m 32.23736,44.640698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1981" />
+              <path
+                 d="m 33.778523,44.885327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1983" />
+              <path
+                 d="m 34.321598,44.383838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1985" />
+              <path
+                 d="m 35.437922,45.09 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 45.09 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1987" />
+              <path
+                 d="m 36.19464,45.04189 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1989" />
+              <path
+                 d="m 37.942922,45.029658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1991" />
+              <path
+                 d="m 38.264202,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 H 38.80157 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1993" />
+              <path
+                 d="M 39.484084,45.09 39.0886,44.179165 h 0.166348 l 0.31231,0.72084 0.318833,-0.72084 h 0.15167 L 39.639015,45.09 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1995" />
+              <path
+                 d="m 40.946966,45.029658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1997" />
+              <path
+                 d="m 41.268244,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1999" />
+            </g>
+            <g
+               aria-label="subject"
+               id="text120"
+               class="e"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="m 2.1409921,47.212891 v -0.160639 q 0.091328,0.05953 0.1932569,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149755,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023647,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 l -0.052188,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122315 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.112529 0.086435,-0.185102 0.087251,-0.07257 0.2821387,-0.07257 0.1459619,0 0.2764306,0.0424 v 0.137807 q -0.150039,-0.05382 -0.2821386,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.046479,0.02936 0.1516699,0.06768 l 0.1027442,0.03751 q 0.1410693,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07583 -0.2902929,0.07583 -0.174502,0 -0.3587891,-0.07339 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2002" />
+              <path
+                 d="m 3.8811191,46.350167 v 0.910835 H 3.7294492 v -0.199781 q -0.073389,0.11253 -0.163086,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467773,-0.0424 -0.06605,-0.04322 -0.092144,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 V 46.350167 H 3.273624 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092144,-0.07583 0.1524854,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2004" />
+              <path
+                 d="m 4.2733408,46.554839 q 0.070127,-0.11416 0.1671631,-0.172055 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054882,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196519 -0.1011132,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 4.1216709 v -1.316104 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166065,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533007,0.193256 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2006" />
+              <path
+                 d="m 5.148297,47.61816 v -0.141885 q 0.127207,0.03751 0.214458,0.03751 0.075835,0 0.1288378,-0.02691 0.053003,-0.02609 0.082358,-0.08888 0.030171,-0.06279 0.030171,-0.218535 V 46.476558 H 5.2176085 v -0.126391 h 0.5381836 v 0.800752 q 0,0.231582 -0.054634,0.321279 -0.054634,0.09051 -0.1320996,0.129653 -0.077466,0.03914 -0.2120118,0.03914 -0.097036,0 -0.2087499,-0.02283 z m 0.4305468,-1.596612 q 0,-0.05137 0.034248,-0.07665 0.035063,-0.02528 0.066865,-0.02528 0.031802,0 0.06605,0.02528 0.035063,0.02528 0.035063,0.07665 0,0.05056 -0.035063,0.07583 -0.034248,0.02528 -0.06605,0.02528 -0.031802,0 -0.066865,-0.02528 -0.034248,-0.02528 -0.034248,-0.07583 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2008" />
+              <path
+                 d="m 6.8933164,47.20066 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057896,-0.11416 -0.057896,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 6.2784824 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.3245411,-0.09785 z M 6.2874521,46.71711 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2010" />
+              <path
+                 d="m 7.9036336,47.234908 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108453 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136993 0.3261719,-0.136993 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128022 -0.039956,0.08725 -0.039956,0.179395 0,0.12313 0.07665,0.234844 0.077466,0.111713 0.2421826,0.111713 0.049741,0 0.097852,-0.0065 0.04811,-0.0073 0.1777636,-0.05137 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2012" />
+              <path
+                 d="m 8.9000891,47.224307 q -0.1068213,0.04485 -0.1549317,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.1745019,-0.03669 -0.079097,-0.0367 -0.1198682,-0.108453 -0.039956,-0.07176 -0.039956,-0.221796 V 46.552393 H 8.0903674 v -0.126391 h 0.2275049 v -0.366944 h 0.1516699 v 0.366944 h 0.4052685 v 0.126391 H 8.4695422 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069312,0.06605 0.044033,0.0212 0.1035595,0.0212 0.110083,0 0.2315821,-0.06931 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2014" />
+            </g>
+            <g
+               aria-label=":"
+               id="text122"
+               class="f"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 9.5186735,47.299327 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708609 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2017" />
+            </g>
+            <g
+               aria-label="organizations"
+               id="text124"
+               class="e"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="m 4.5094891,49.457278 q -0.1957031,0 -0.313125,-0.136177 -0.1174218,-0.136992 -0.1174218,-0.344927 0,-0.207935 0.1174218,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.1214991,0 0.1932569,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932569,-0.09459 -0.1223144,0 -0.1940722,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940722,0.09459 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2020" />
+              <path
+                 d="m 5.213205,49.431999 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092143,-0.05627 0.2046728,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 5.7505731 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663476,0.06687 -0.081543,0.06686 -0.1590088,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2022" />
+              <path
+                 d="m 6.7453973,49.227326 q -0.069311,0.114161 -0.167163,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011132,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524854 v 0.64419 q 0,0.229951 -0.00652,0.280508 -0.00571,0.05137 -0.01957,0.103559 -0.032617,0.121499 -0.1492236,0.191626 -0.115791,0.07013 -0.2805078,0.07013 -0.1655322,0 -0.3351416,-0.08481 v -0.1533 q 0.064419,0.04403 0.1581934,0.07747 0.09459,0.03425 0.1826562,0.03425 0.069311,0 0.1312842,-0.02202 0.061973,-0.02202 0.1002978,-0.0636 0.038325,-0.04159 0.052187,-0.09704 0.013862,-0.05463 0.013862,-0.145962 z m 0,-0.18021 v -0.39059 q -0.080727,-0.0212 -0.150039,-0.0212 -0.1402539,0 -0.2340283,0.108453 -0.092959,0.108452 -0.092959,0.295185 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166065,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533007,-0.193257 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2024" />
+              <path
+                 d="m 7.73696,49.227326 q -0.069311,0.114161 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524853 v 0.643374 q 0,0.164717 0.034248,0.267461 H 7.7655 Q 7.7475606,49.35698 7.73696,49.227326 Z m 0,-0.18021 v -0.39059 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108453 -0.092959,0.108452 -0.092959,0.295185 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2026" />
+              <path
+                 d="m 8.1397821,49.431999 v -0.910835 h 0.15167 v 0.198965 q 0.065234,-0.10519 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012231,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508544,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2028" />
+              <path
+                 d="M 9.3963592,49.431999 V 48.647556 H 9.143576 v -0.126392 h 0.4044531 v 0.784444 h 0.2535986 v 0.126391 z m -0.025278,-1.239453 q 0,-0.05137 0.035063,-0.07665 0.035064,-0.02528 0.06605,-0.02528 0.031802,0 0.066865,0.02528 0.035063,0.02528 0.035063,0.07665 0,0.05056 -0.035063,0.07583 -0.035063,0.02528 -0.066865,0.02528 -0.030986,0 -0.06605,-0.02528 -0.035063,-0.02528 -0.035063,-0.07583 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2030" />
+              <path
+                 d="m 10.124538,49.431999 v -0.139438 l 0.55857,-0.645005 h -0.545523 v -0.126392 h 0.746118 v 0.126392 l -0.562646,0.645005 h 0.581401 v 0.139438 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2032" />
+              <path
+                 d="m 11.742351,49.227326 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.17858,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2034" />
+              <path
+                 d="m 12.906784,49.395305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174501,-0.0367 -0.0791,-0.03669 -0.119869,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2036" />
+              <path
+                 d="m 13.40175,49.431999 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2038" />
+              <path
+                 d="m 14.522966,49.457278 q -0.195704,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2040" />
+              <path
+                 d="m 15.149215,49.431999 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2042" />
+              <path
+                 d="m 16.161164,49.383889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08643,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2044" />
+            </g>
+            <g
+               aria-label=":"
+               id="text126"
+               class="f"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 17.534674,49.470324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2047" />
+            </g>
+            <g
+               aria-label="-"
+               id="text128"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 4.1931024,51.153699 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2050" />
+            </g>
+            <g
+               aria-label="foo-kubernetes"
+               id="text130"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 6.3504034,51.603001 V 50.894392 H 6.1481768 v -0.126391 h 0.2022266 v -0.0424 q 0,-0.18021 0.040771,-0.266645 0.040771,-0.08644 0.1255761,-0.141885 0.08562,-0.05545 0.2258741,-0.05545 0.1060058,0 0.2152734,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.2095654,-0.03914 -0.072573,0 -0.1280225,0.02691 -0.055449,0.02691 -0.087251,0.08807 -0.030986,0.06034 -0.030986,0.205489 v 0.05871 h 0.3612354 v 0.126391 H 6.5020733 v 0.708609 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2053" />
+              <path
+                 d="m 7.514837,51.628279 q -0.1957031,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2055" />
+              <path
+                 d="m 8.5161847,51.628279 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948876,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174219,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2057" />
+              <path
+                 d="m 9.2011457,51.153699 v -0.126392 h 0.6327734 v 0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2059" />
+              <path
+                 d="m 10.184554,51.603001 v -1.316104 h 0.15167 v 0.826846 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2061" />
+              <path
+                 d="m 11.89451,50.692166 v 0.910835 H 11.74284 V 51.40322 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2063" />
+              <path
+                 d="m 12.286732,50.896839 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2065" />
+              <path
+                 d="m 13.90536,51.542659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2067" />
+              <path
+                 d="m 14.226639,51.603001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03832,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159008,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2069" />
+              <path
+                 d="m 15.150521,51.603001 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2071" />
+              <path
+                 d="m 16.909402,51.542659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2073" />
+              <path
+                 d="m 17.914827,51.566306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 H 17.48428 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2075" />
+              <path
+                 d="m 18.912098,51.542659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2077" />
+              <path
+                 d="m 19.166512,51.55489 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2079" />
+            </g>
+            <g
+               aria-label="usages"
+               id="text132"
+               class="e"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="m 2.8797714,52.863163 v 0.910835 H 2.7281015 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05626 -0.1793946,0.05626 -0.079912,0 -0.1467773,-0.0424 -0.06605,-0.04322 -0.092144,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.046479,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092144,-0.07584 0.1524854,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2082" />
+              <path
+                 d="m 3.1423398,53.725888 v -0.16064 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.0367 -0.023648,-0.06279 -0.023647,-0.02609 -0.1174219,-0.06442 l -0.052188,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122315 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.11253 0.086436,-0.185103 0.087251,-0.07257 0.2821386,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137808 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.046479,0.02936 0.1516699,0.06768 l 0.1027441,0.03751 q 0.1410694,0.05137 0.1981495,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.091328,0.194888 -0.090513,0.07583 -0.290293,0.07583 -0.1745019,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2084" />
+              <path
+                 d="m 4.7316122,53.569325 q -0.069311,0.114161 -0.167163,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011132,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524854 v 0.643374 q 0,0.164717 0.034248,0.267461 H 4.7601523 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.080728,-0.0212 -0.150039,-0.0212 -0.1402539,0 -0.2340283,0.108453 -0.092959,0.108452 -0.092959,0.295185 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166065,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533007,-0.193257 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2086" />
+              <path
+                 d="m 5.7427452,53.569325 q -0.069311,0.114161 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304688,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524853 v 0.64419 q 0,0.229951 -0.00652,0.280508 -0.00571,0.05137 -0.01957,0.103559 -0.032617,0.121499 -0.1492237,0.191626 -0.115791,0.07013 -0.2805078,0.07013 -0.1655322,0 -0.3351415,-0.08481 v -0.1533 q 0.064419,0.04403 0.1581933,0.07747 0.09459,0.03425 0.1826563,0.03425 0.069311,0 0.1312841,-0.02202 0.061973,-0.02202 0.1002979,-0.0636 0.038325,-0.04159 0.052188,-0.09704 0.013862,-0.05463 0.013862,-0.145962 z m 0,-0.18021 v -0.39059 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108453 -0.092959,0.108452 -0.092959,0.295185 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2088" />
+              <path
+                 d="m 6.8933164,53.713656 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057896,-0.11416 -0.057896,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 6.2784824 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.3245411,-0.09785 z M 6.2874521,53.230107 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2090" />
+              <path
+                 d="m 7.1477303,53.725888 v -0.16064 q 0.091328,0.05953 0.1932568,0.08399 0.1019288,0.02365 0.1728711,0.02365 0.1149756,0 0.1655323,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.0367 -0.023648,-0.06279 -0.023647,-0.02609 -0.1174218,-0.06442 l -0.052187,-0.0212 -0.1051905,-0.04159 q -0.1696093,-0.06605 -0.2136425,-0.122315 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.11253 0.086436,-0.185103 0.087251,-0.07257 0.2821386,-0.07257 0.145962,0 0.2764307,0.0424 v 0.137808 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508544,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027442,0.03751 q 0.1410693,0.05137 0.1981494,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.091328,0.194888 -0.090513,0.07583 -0.2902929,0.07583 -0.174502,0 -0.3587891,-0.07339 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path2092" />
+            </g>
+            <g
+               aria-label=":"
+               id="text134"
+               class="f"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 8.5166736,53.812323 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2095" />
+            </g>
+            <g
+               aria-label="-"
+               id="text136"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 2.1891025,55.495698 v -0.126392 h 0.6327734 v 0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2098" />
+            </g>
+            <g
+               aria-label="signing"
+               id="text138"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 4.1449921,55.896889 V 55.73625 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 l -0.052187,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122314 -0.044849,-0.05545 -0.044849,-0.135362 0,-0.112529 0.086436,-0.185102 0.087251,-0.07257 0.2821387,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137807 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02935 0.1516699,0.06768 l 0.1027441,0.03751 q 0.1410694,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07583 -0.290293,0.07583 -0.1745019,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2101" />
+              <path
+                 d="M 5.3909686,55.945 V 55.160556 H 5.1381854 v -0.126391 h 0.4044532 v 0.784443 H 5.7962372 V 55.945 Z m -0.025278,-1.239453 q 0,-0.05137 0.035064,-0.07665 0.035063,-0.02528 0.06605,-0.02528 0.031802,0 0.066865,0.02528 0.035063,0.02528 0.035063,0.07665 0,0.05056 -0.035063,0.07583 -0.035063,0.02528 -0.066865,0.02528 -0.030986,0 -0.06605,-0.02528 -0.035064,-0.02528 -0.035064,-0.07583 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2103" />
+              <path
+                 d="m 6.7453973,55.740327 q -0.069311,0.11416 -0.167163,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.1614551,-0.196519 0.1011132,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524854 v 0.644189 q 0,0.229951 -0.00652,0.280508 -0.00571,0.05137 -0.01957,0.10356 -0.032617,0.121499 -0.1492236,0.191626 -0.115791,0.07013 -0.2805078,0.07013 -0.1655322,0 -0.3351416,-0.0848 v -0.153301 q 0.064419,0.04403 0.1581934,0.07747 0.09459,0.03425 0.1826562,0.03425 0.069311,0 0.1312842,-0.02202 0.061973,-0.02202 0.1002978,-0.0636 0.038325,-0.04159 0.052187,-0.09704 0.013862,-0.05463 0.013862,-0.145962 z m 0,-0.18021 v -0.390591 q -0.080727,-0.0212 -0.150039,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204672 0.051372,0.0685 0.1166065,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533007,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2105" />
+              <path
+                 d="m 7.1384346,55.945 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467774,0.04322 0.06605,0.0424 0.092143,0.111714 0.026909,0.06931 0.026909,0.272354 V 55.945 H 7.7459297 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012231,-0.0424 -0.046479,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07584 -0.1508545,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2107" />
+              <path
+                 d="M 8.3950116,55.945 V 55.160556 H 8.1422284 v -0.126391 h 0.4044531 v 0.784443 H 8.8002802 V 55.945 Z m -0.025278,-1.239453 q 0,-0.05137 0.035063,-0.07665 0.035063,-0.02528 0.06605,-0.02528 0.031802,0 0.066865,0.02528 0.035063,0.02528 0.035063,0.07665 0,0.05056 -0.035063,0.07583 -0.035063,0.02528 -0.066865,0.02528 -0.030986,0 -0.06605,-0.02528 -0.035063,-0.02528 -0.035063,-0.07583 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2109" />
+              <path
+                 d="m 9.1411297,55.945 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467774,0.04322 0.06605,0.0424 0.092143,0.111714 0.026909,0.06931 0.026909,0.272354 V 55.945 H 9.7486248 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012231,-0.0424 -0.046479,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720556,0.07583 -0.091328,0.07584 -0.1508545,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2111" />
+              <path
+                 d="m 10.750788,55.740327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131285,-0.02202 0.06197,-0.02202 0.100297,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2113" />
+            </g>
+            <g
+               aria-label="-"
+               id="text140"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 2.1891025,57.666699 v -0.126391 h 0.6327734 v 0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2116" />
+            </g>
+            <g
+               aria-label="key"
+               id="text142"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 4.175163,58.116001 v -1.316103 h 0.1516699 v 0.826845 l 0.4378857,-0.421577 h 0.2022266 l -0.4370703,0.421577 0.4484863,0.489258 h -0.20875 L 4.3268329,57.626743 v 0.489258 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2119" />
+              <path
+                 d="m 5.8932733,58.055659 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 5.2784393 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 5.2874091,57.57211 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2121" />
+              <path
+                 d="M 6.4722284,58.079307 6.0514667,57.205166 h 0.1671631 l 0.3351416,0.68333 0.2805078,-0.68333 h 0.1524853 l -0.353081,0.846416 q -0.1117139,0.268277 -0.2128272,0.356343 -0.1002978,0.08807 -0.260122,0.08807 -0.069311,0 -0.1239453,-0.01223 v -0.133731 q 0.062788,0.01957 0.1198681,0.01957 0.073389,0 0.1304688,-0.02854 0.05708,-0.02854 0.104375,-0.101114 0.047295,-0.07257 0.066865,-0.125576 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2123" />
+            </g>
+            <g
+               aria-label="encipherment"
+               id="text144"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 8.8999256,58.055659 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 8.2850916 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.3245411,-0.09785 z M 8.2940613,57.57211 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2126" />
+              <path
+                 d="M 9.1437391,58.116001 V 57.205166 H 9.295409 v 0.198965 q 0.065234,-0.10519 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 9.7512342 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720556,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2128" />
+              <path
+                 d="m 10.911591,58.089907 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2130" />
+              <path
+                 d="m 11.401664,58.116001 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2132" />
+              <path
+                 d="m 12.288036,57.409839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2134" />
+              <path
+                 d="m 13.14913,58.116001 v -1.316103 h 0.151669 v 0.604233 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2136" />
+              <path
+                 d="m 14.908012,58.055659 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 14.302148,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2138" />
+              <path
+                 d="m 15.229291,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 H 15.766659 V 57.32585 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2140" />
+              <path
+                 d="m 16.084677,58.116001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2142" />
+              <path
+                 d="m 17.912054,58.055659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 H 17.29722 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 17.30619,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2144" />
+              <path
+                 d="m 18.155868,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2146" />
+              <path
+                 d="m 19.918827,58.079307 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 H 19.48828 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2148" />
+            </g>
+            <g
+               aria-label="-"
+               id="text146"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 2.1891025,59.837697 v -0.126392 h 0.6327734 v 0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2151" />
+            </g>
+            <g
+               aria-label="server"
+               id="text148"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 4.1449921,60.238888 v -0.160639 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 l -0.052187,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122314 -0.044849,-0.05545 -0.044849,-0.135362 0,-0.112529 0.086436,-0.185102 0.087251,-0.07257 0.2821387,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137807 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02935 0.1516699,0.06768 l 0.1027441,0.03751 q 0.1410694,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07584 -0.290293,0.07584 -0.1745019,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2154" />
+              <path
+                 d="m 5.8932733,60.226657 q -0.1818408,0.08643 -0.3441113,0.08643 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.17858 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115792 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 5.2784393 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2156" />
+              <path
+                 d="m 6.2145526,60.286999 v -0.910835 h 0.15167 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092143,-0.05627 0.2046728,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 6.7519208 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590087,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2158" />
+              <path
+                 d="M 7.4344356,60.286999 7.0389522,59.376164 h 0.1663476 l 0.3123096,0.72084 0.318833,-0.72084 h 0.1516699 l -0.3987451,0.910835 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2160" />
+              <path
+                 d="m 8.8973163,60.226657 q -0.1818408,0.08643 -0.3441113,0.08643 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057896,-0.11416 -0.057896,-0.243813 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.17858 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115792 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 8.2824823 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2162" />
+              <path
+                 d="m 9.2185955,60.286999 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092144,-0.05627 0.2046729,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2164" />
+            </g>
+            <g
+               aria-label="auth"
+               id="text150"
+               class="g"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 11.746917,60.082326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2167" />
+              <path
+                 d="m 12.899119,59.376164 v 0.910835 H 12.74745 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2169" />
+              <path
+                 d="m 13.912699,60.250304 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 59.57839 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2171" />
+              <path
+                 d="m 14.152435,60.286999 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02038,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.199781 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path2173" />
+            </g>
+            <path
+               class="h"
+               d="M 0,62.959 H 1 V 65.13 H 0 Z"
+               id="path152" />
+            <g
+               id="text154"
+               class="i"
+               style="white-space:pre" />
+            <path
+               class="h"
+               d="m 1.002,62.959 h 5 v 2.171 h -5 z"
+               id="path156" />
+            <g
+               aria-label="kvaps"
+               id="text158"
+               style="font-weight:700;white-space:pre">
+              <path
+                 d="M 1.1691631,64.628998 V 63.312894 H 1.320833 V 64.13974 L 1.7587187,63.718163 H 1.9609453 L 1.523875,64.13974 1.9723613,64.628998 h -0.20875 L 1.320833,64.13974 v 0.489258 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path2177" />
+              <path
+                 d="M 2.4257402,64.628998 2.0302568,63.718163 h 0.1663477 l 0.3123095,0.72084 0.318833,-0.72084 h 0.1516699 l -0.3987451,0.910835 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path2179" />
+              <path
+                 d="m 3.7296123,64.424325 q -0.069312,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.1614551,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524853 v 0.643374 q 0,0.164717 0.034248,0.267461 H 3.7581523 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path2181" />
+              <path
+                 d="m 4.2726886,63.922836 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054882,0.09867 0.091328,0.09867 0.091328,0.299262 0,0.158194 -0.061157,0.282954 -0.060342,0.123946 -0.161455,0.196519 -0.1011133,0.07176 -0.250337,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353896 H 4.1210187 v -1.264731 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path2183" />
+              <path
+                 d="m 5.1443828,64.580887 v -0.160639 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023647,-0.02609 -0.1174218,-0.06442 l -0.052188,-0.0212 -0.1051905,-0.04159 q -0.1696093,-0.06605 -0.2136425,-0.122314 -0.044849,-0.05545 -0.044849,-0.135362 0,-0.112529 0.086436,-0.185102 0.087251,-0.07257 0.2821386,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137808 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027442,0.03751 q 0.1410693,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07583 -0.2902929,0.07583 -0.174502,0 -0.3587891,-0.07339 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path2185" />
+            </g>
+            <path
+               class="h"
+               d="m 6.012,62.959 h 1 v 2.171 h -1 z"
+               id="path160" />
+            <g
+               id="text162"
+               class="i"
+               style="white-space:pre" />
+            <path
+               class="k"
+               d="m 7.014,62.959 h 1 v 2.171 h -1 z"
+               id="path164" />
+            <g
+               aria-label=""
+               id="text166"
+               style="white-space:pre;fill:#00d7ff">
+              <path
+                 d="m 7.0139999,63.059296 1.0258106,0.990747 -1.0258106,0.992378 z"
+                 style="white-space:pre;fill:#00d7ff"
+                 id="path2189" />
+            </g>
+            <path
+               class="k"
+               d="m 8.016,62.959 h 1 v 2.171 h -1 z"
+               id="path168" />
+            <g
+               id="text170"
+               class="m"
+               style="white-space:pre;fill:#eeeeee" />
+            <path
+               class="k"
+               d="m 9.018,62.959 h 1 v 2.171 h -1 z"
+               id="path172" />
+            <g
+               aria-label="~"
+               id="text174"
+               class="n"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 9.0636637,64.30038 v -0.01468 q 0,-0.106821 0.062788,-0.185103 0.063603,-0.0791 0.1704248,-0.0791 0.026909,0 0.052188,0.0057 0.026094,0.0049 0.058711,0.01794 0.032617,0.01223 0.097852,0.04893 l 0.098667,0.05463 q 0.090513,0.04974 0.1475927,0.04974 0.060342,0 0.088882,-0.04322 0.029356,-0.04403 0.029356,-0.0954 v -0.01305 h 0.1043749 v 0.01305 q 0,0.136177 -0.077466,0.201411 -0.07665,0.06442 -0.1630859,0.06442 -0.080728,0 -0.2136426,-0.07583 l -0.083174,-0.04811 q -0.09459,-0.05382 -0.1524853,-0.05382 -0.032617,0 -0.061157,0.01712 -0.027725,0.01712 -0.044849,0.05463 -0.017124,0.03751 -0.017124,0.06605 v 0.01468 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path2193" />
+            </g>
+            <path
+               class="k"
+               d="m 10.02,62.959 h 1 v 2.171 h -1 z"
+               id="path176" />
+            <g
+               aria-label="/"
+               id="text178"
+               class="m"
+               style="white-space:pre;fill:#eeeeee">
+              <path
+                 d="M 10.196133,64.667323 H 10.04691 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#eeeeee"
+                 id="path2196" />
+            </g>
+            <path
+               class="k"
+               d="m 11.022,62.959 h 3 v 2.171 h -3 z"
+               id="path180" />
+            <g
+               aria-label="tmp"
+               id="text182"
+               class="n"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 11.910003,64.592303 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119869,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366944 h -0.227504 v -0.126391 h 0.227504 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155748 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path2199" />
+              <path
+                 d="m 12.081243,64.628998 v -0.910835 h 0.132916 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 H 12.460418 V 64.00764 q 0,-0.120683 -0.02365,-0.141884 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path2201" />
+              <path
+                 d="m 13.291341,63.922836 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299262 0,0.158194 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path2203" />
+            </g>
+            <path
+               class="k"
+               d="m 14.028,62.959 h 1 v 2.171 h -1 z"
+               id="path184" />
+            <g
+               id="text186"
+               class="m"
+               style="white-space:pre;fill:#eeeeee" />
+            <g
+               aria-label=""
+               id="text188"
+               style="white-space:pre;fill:#005f87">
+              <path
+                 d="M 15.03,63.059296 16.05581,64.050043 15.03,65.042421 Z"
+                 style="white-space:pre;fill:#005f87"
+                 id="path2207" />
+            </g>
+            <g
+               aria-label=""
+               id="text190"
+               style="white-space:pre;fill:#262626">
+              <path
+                 d="M 106.23581,65.042421 105.21,64.050043 106.23581,63.059296 Z"
+                 style="white-space:pre;fill:#262626"
+                 id="path2210" />
+            </g>
+            <path
+               fill="#262626"
+               d="m 106.212,62.959 h 13 v 2.171 h -13 z"
+               id="path192" />
+            <g
+               aria-label="stage-admin"
+               id="text194"
+               style="white-space:pre;fill:#af5fd7">
+              <path
+                 d="m 106.34899,64.580887 v -0.160639 q 0.0913,0.05953 0.19326,0.08399 0.10193,0.02365 0.17287,0.02365 0.11497,0 0.16553,-0.03669 0.0506,-0.03751 0.0506,-0.09296 0,-0.03669 -0.0236,-0.06279 -0.0237,-0.02609 -0.11742,-0.06442 l -0.0522,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.21364,-0.122314 -0.0449,-0.05545 -0.0449,-0.135362 0,-0.112529 0.0864,-0.185102 0.0873,-0.07257 0.28214,-0.07257 0.14596,0 0.27643,0.0424 v 0.137808 q -0.15004,-0.05382 -0.28214,-0.05382 -0.0962,0 -0.15085,0.03425 -0.0538,0.03343 -0.0538,0.08399 0,0.04893 0.0473,0.07828 0.0465,0.02936 0.15167,0.06768 l 0.10274,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.0571,0.06034 0.0571,0.150854 0,0.118238 -0.0913,0.194888 -0.0905,0.07583 -0.29029,0.07583 -0.1745,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path2213" />
+              <path
+                 d="m 108.10135,64.592303 q -0.10682,0.04485 -0.15493,0.053 -0.0481,0.009 -0.093,0.009 -0.0954,0 -0.1745,-0.03669 -0.0791,-0.03669 -0.11987,-0.108452 -0.04,-0.07176 -0.04,-0.221797 v -0.366944 h -0.2275 v -0.126391 h 0.2275 v -0.366944 h 0.15167 v 0.366944 h 0.40527 v 0.126391 h -0.40527 v 0.364497 q 0,0.110083 0.0261,0.155748 0.0261,0.04485 0.0693,0.06605 0.044,0.0212 0.10356,0.0212 0.11008,0 0.23158,-0.06931 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path2215" />
+              <path
+                 d="m 108.93961,64.424325 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158193 0.0603,-0.282138 0.0603,-0.124761 0.16145,-0.196519 0.10112,-0.07257 0.25034,-0.07257 0.0432,0 0.13047,0.009 0.0131,0.0016 0.0391,0.0041 h 0.15249 v 0.643374 q 0,0.164717 0.0342,0.267461 h -0.15819 q -0.0179,-0.07502 -0.0285,-0.204673 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23403,0.108452 -0.093,0.108452 -0.093,0.295186 0,0.135361 0.0506,0.204673 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path2217" />
+              <path
+                 d="m 109.95074,64.424325 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158193 0.0603,-0.282138 0.0603,-0.124761 0.16146,-0.196519 0.10111,-0.07257 0.25033,-0.07257 0.0432,0 0.13047,0.009 0.013,0.0016 0.0391,0.0041 h 0.15249 v 0.644189 q 0,0.229951 -0.007,0.280508 -0.006,0.05137 -0.0196,0.10356 -0.0326,0.121499 -0.14922,0.191626 -0.11579,0.07013 -0.28051,0.07013 -0.16553,0 -0.33514,-0.08481 v -0.153301 q 0.0644,0.04403 0.1582,0.07747 0.0946,0.03425 0.18265,0.03425 0.0693,0 0.13129,-0.02202 0.062,-0.02202 0.10029,-0.0636 0.0383,-0.04159 0.0522,-0.09704 0.0139,-0.05463 0.0139,-0.145962 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23402,0.108452 -0.093,0.108452 -0.093,0.295186 0,0.135361 0.0506,0.204673 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path2219" />
+              <path
+                 d="m 111.10131,64.568656 q -0.18184,0.08644 -0.34411,0.08644 -0.12313,0 -0.22016,-0.06116 -0.097,-0.06116 -0.15575,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.0554,-0.239736 0.0555,-0.114976 0.15494,-0.17858 0.0995,-0.06442 0.22179,-0.06442 0.16227,0 0.26012,0.115791 0.0987,0.115791 0.0987,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.0391,0.172871 0.04,0.07828 0.10438,0.117422 0.0644,0.03914 0.14677,0.03914 0.14678,0 0.32454,-0.09785 z m -0.60586,-0.48355 h 0.45419 v -0.02202 q 0,-0.111714 -0.0546,-0.177764 -0.0546,-0.06605 -0.14596,-0.06605 -0.0921,0 -0.15983,0.06768 -0.0669,0.06686 -0.0938,0.198149 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path2221" />
+              <path
+                 d="m 111.40384,64.179696 v -0.126392 h 0.63277 v 0.126392 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path2223" />
+              <path
+                 d="m 112.945,64.424325 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158193 0.0603,-0.282138 0.0603,-0.124761 0.16145,-0.196519 0.10112,-0.07257 0.25034,-0.07257 0.0432,0 0.13047,0.009 0.013,0.0016 0.0391,0.0041 h 0.15249 v 0.643374 q 0,0.164717 0.0342,0.267461 h -0.15819 q -0.0179,-0.07502 -0.0285,-0.204673 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23403,0.108452 -0.093,0.108452 -0.093,0.295186 0,0.135361 0.0506,0.204673 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path2225" />
+              <path
+                 d="m 113.95613,64.424325 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158193 0.0603,-0.282138 0.0603,-0.124761 0.16146,-0.196519 0.10111,-0.07257 0.25033,-0.07257 0.0432,0 0.13047,0.009 0.0131,0.0016 0.0391,0.0041 v -0.405269 h 0.15249 v 1.316104 h -0.15249 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23402,0.108452 -0.093,0.108452 -0.093,0.295186 0,0.135361 0.0506,0.204673 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path2227" />
+              <path
+                 d="m 114.28067,64.628998 v -0.910835 h 0.13292 v 0.20875 q 0.0628,-0.132915 0.11661,-0.183472 0.0546,-0.05056 0.11008,-0.05056 0.066,0 0.10601,0.05219 0.0408,0.05137 0.0408,0.146777 v 0.04893 q 0.0269,-0.08317 0.0644,-0.134546 0.0383,-0.05219 0.0791,-0.08236 0.0408,-0.03099 0.0938,-0.03099 0.0587,0 0.10029,0.04974 0.0416,0.04974 0.0416,0.198149 v 0.688223 h -0.13291 v -0.622173 q 0,-0.07665 -0.005,-0.104375 -0.005,-0.02854 -0.0196,-0.04322 -0.0147,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.0913,0.06524 -0.0481,0.06442 -0.0987,0.214458 v 0.504751 h -0.12721 V 64.00764 q 0,-0.120683 -0.0237,-0.141884 -0.0237,-0.0212 -0.0424,-0.0212 -0.0416,0 -0.0897,0.07257 -0.0473,0.07257 -0.0905,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path2229" />
+              <path
+                 d="m 115.60575,64.628998 v -0.784444 h -0.25279 v -0.126391 h 0.40446 v 0.784443 h 0.2536 v 0.126392 z m -0.0253,-1.239453 q 0,-0.05137 0.0351,-0.07665 0.0351,-0.02528 0.066,-0.02528 0.0318,0 0.0669,0.02528 0.0351,0.02528 0.0351,0.07665 0,0.05056 -0.0351,0.07584 -0.0351,0.02528 -0.0669,0.02528 -0.031,0 -0.066,-0.02528 -0.0351,-0.02528 -0.0351,-0.07584 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path2231" />
+              <path
+                 d="m 116.35187,64.628998 v -0.910835 h 0.15167 v 0.198965 q 0.0652,-0.105191 0.15737,-0.164717 0.0922,-0.05953 0.18429,-0.05953 0.0807,0 0.14678,0.04322 0.0661,0.0424 0.0921,0.111714 0.0269,0.06931 0.0269,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.0131,-0.172871 -0.0122,-0.0424 -0.0465,-0.06931 -0.0334,-0.02691 -0.0734,-0.02691 -0.0799,0 -0.17206,0.07583 -0.0913,0.07583 -0.15085,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path2233" />
+            </g>
+          </svg>
+        </svg>
+      </g>
+    </svg>
+  </g>
+</svg>
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot04.svg b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot04.svg
new file mode 100644
index 0000000000..c6a164e835
--- /dev/null
+++ b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot04.svg
@@ -0,0 +1,3114 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<svg
+   width="1190"
+   height="328.43631"
+   version="1.1"
+   id="svg266"
+   sodipodi:docname="screenshot04.svg"
+   inkscape:version="1.1.1 (c3084ef, 2021-09-22)"
+   xmlns:inkscape="http://www.inkscape.org/namespaces/inkscape"
+   xmlns:sodipodi="http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd"
+   xmlns="http://www.w3.org/2000/svg"
+   xmlns:svg="http://www.w3.org/2000/svg">
+  <defs
+     id="defs270">
+    <clipPath
+       clipPathUnits="userSpaceOnUse"
+       id="clipPath545">
+      <rect
+         style="fill:#ff0000"
+         id="rect547"
+         width="1387.9646"
+         height="385.03644"
+         x="-93.50885"
+         y="322.86368" />
+    </clipPath>
+  </defs>
+  <sodipodi:namedview
+     id="namedview268"
+     pagecolor="#ffffff"
+     bordercolor="#666666"
+     borderopacity="1.0"
+     inkscape:pageshadow="2"
+     inkscape:pageopacity="0.0"
+     inkscape:pagecheckerboard="0"
+     showgrid="false"
+     inkscape:zoom="0.23104954"
+     inkscape:cx="887.25562"
+     inkscape:cy="579.96221"
+     inkscape:window-width="777"
+     inkscape:window-height="814"
+     inkscape:window-x="723"
+     inkscape:window-y="25"
+     inkscape:window-maximized="0"
+     inkscape:current-layer="svg266" />
+  <g
+     id="g535"
+     clip-path="url(#clipPath545)"
+     transform="translate(0,-322.86368)">
+    <path
+       id="rect2"
+       class="a"
+       style="fill:#282d35"
+       d="M 0,0 H 1190 V 651.29999 H 0 Z" />
+    <svg
+       height="651.29999"
+       viewBox="0 0 119 65.13"
+       width="1190"
+       version="1.1"
+       id="svg264">
+      <style
+         id="style4">.a{fill:#282d35}.e,.f,.g{fill:#dbab79;white-space:pre}.f,.g{fill:#e88388}.g{fill:#b9c0cb}.h{fill:#00d7ff}.i{fill:#000;white-space:pre}.k{fill:#005f87}.m,.n{fill:#eee;white-space:pre}.n{fill:#fff;font-weight:700}</style>
+      <g
+         font-family="Monaco, Consolas, Menlo, 'Bitstream Vera Sans Mono', 'Powerline Symbols', monospace"
+         font-size="1.67px"
+         id="g262">
+        <defs
+           id="defs12">
+          <symbol
+             id="a">
+            <path
+               fill="transparent"
+               d="M 0,0 H 119 V 30 H 0 Z"
+               id="path6" />
+          </symbol>
+          <symbol
+             id="b">
+            <path
+               fill="#6f7683"
+               d="M 0,0 H 1.102 V 2.171 H 0 Z"
+               id="path9" />
+          </symbol>
+        </defs>
+        <path
+           class="a"
+           d="M 0,0 H 119 V 65.13 H 0 Z"
+           id="path14"
+           style="fill:#000000" />
+        <svg
+           width="119"
+           version="1.1"
+           id="svg260"
+           height="100%">
+          <svg
+             version="1.1"
+             id="svg258"
+             width="100%"
+             height="100%">
+            <g
+               id="use16">
+              <path
+                 fill="transparent"
+                 d="M 0,0 H 119 V 30 H 0 Z"
+                 id="path603" />
+            </g>
+            <g
+               id="use18"
+               transform="translate(3.9960001,62.933998)">
+              <path
+                 fill="#6f7683"
+                 d="M 0,0 H 1.102 V 2.171 H 0 Z"
+                 id="path607" />
+            </g>
+            <g
+               aria-label="-"
+               id="text20"
+               class="e"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 2.1891025,1.2206982 V 1.0943066 h 0.6327734 v 0.1263916 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path612" />
+            </g>
+            <g
+               aria-label="127.0.0.1"
+               id="text22"
+               class="e"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 4.4711639,1.5436084 V 0.56672362 q -0.068496,0.0546338 -0.132915,0.092959 -0.064419,0.0383252 -0.1769482,0.0782812 V 0.60097166 q 0.1785791,-0.075835 0.3098632,-0.19651855 h 0.15167 V 1.5436084 H 4.9269891 V 1.67 H 4.1613007 V 1.5436084 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path615" />
+              <path
+                 d="M 5.896535,1.67 H 5.1308466 V 1.5305615 q 0,-0.053818 0.022017,-0.1149756 0.022017,-0.061973 0.083989,-0.138623 0.061973,-0.07665 0.1312842,-0.1475928 l 0.086436,-0.088066 q 0.026094,-0.026909 0.1141601,-0.12476075 0.088066,-0.0978516 0.115791,-0.15003906 0.02854,-0.0521875 0.02854,-0.10274414 0,-0.081543 -0.065234,-0.12557617 -0.065234,-0.0448486 -0.1467774,-0.0448486 -0.046479,0 -0.104375,0.0106006 -0.05708,0.0106006 -0.1002978,0.0252783 -0.043218,0.0138623 -0.1402539,0.0578955 v -0.1345459 q 0.1027441,-0.0489258 0.2054883,-0.0668652 0.1035595,-0.0187549 0.1704248,-0.0187549 0.098667,0 0.1810254,0.0326172 0.083174,0.0318017 0.1231298,0.0994824 0.040771,0.0676807 0.040771,0.14433105 0,0.0856201 -0.052188,0.17531738 -0.051372,0.0896973 -0.1948877,0.23076659 l -0.092959,0.092143 -0.078281,0.07665 q -0.074204,0.07502 -0.1198682,0.1451465 -0.045664,0.070127 -0.050557,0.1671631 H 5.896535 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path617" />
+              <path
+                 d="M 6.2708173,1.67 V 1.5566552 q 0,-0.132915 0.030171,-0.2234277 Q 6.3311591,1.2427148 6.406994,1.1318164 6.482829,1.0209179 6.5284931,0.96057615 L 6.6605927,0.7860742 6.7078876,0.72491697 q 0.053818,-0.0725732 0.092959,-0.16797851 H 6.1444257 V 0.40445311 h 0.8031982 v 0.10111328 q 0,0.0603418 -0.024463,0.11171387 -0.023647,0.0513721 -0.1451465,0.21935058 -0.029355,0.0399561 -0.057895,0.0799121 L 6.6353143,1.0355957 q -0.081543,0.1149756 -0.1206835,0.1834717 -0.039141,0.068496 -0.059526,0.1427001 -0.01957,0.074204 -0.01957,0.1948877 V 1.67 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path619" />
+              <path
+                 d="m 7.5127168,1.7083252 q -0.054634,0 -0.093774,-0.039141 -0.039141,-0.039141 -0.039141,-0.093774 0,-0.055449 0.039141,-0.093774 0.039956,-0.039141 0.093774,-0.039141 0.053818,0 0.092959,0.039141 0.039956,0.038325 0.039956,0.093774 0,0.054634 -0.039141,0.093774 -0.039141,0.039141 -0.093774,0.039141 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path621" />
+              <path
+                 d="m 8.5140644,0.36694335 q 0.2160888,0 0.3294335,0.18184082 0.1133448,0.18102538 0.1133448,0.48844233 0,0.3082324 -0.1133448,0.4900733 -0.1133447,0.1810254 -0.3294335,0.1810254 -0.2152735,0 -0.3294336,-0.1810254 Q 8.071286,1.3454589 8.071286,1.0372265 q 0,-0.30741695 0.1133448,-0.48844233 Q 8.2987909,0.36694335 8.5140644,0.36694335 Z M 8.2669892,1.3079492 8.7048749,0.62217284 q -0.041587,-0.075835 -0.090513,-0.10192871 -0.04811,-0.0269092 -0.1002978,-0.0269092 -0.1361768,0 -0.2071192,0.15166992 -0.070942,0.15085448 -0.070942,0.38325195 0,0.053003 0.00326,0.1141602 0.00326,0.061157 0.027725,0.1655322 z M 8.7595087,0.77302732 8.3248847,1.4628808 q 0.035063,0.059526 0.080728,0.089697 0.045664,0.029355 0.1019287,0.029355 0.1549317,0 0.220166,-0.1728711 0.065234,-0.1736866 0.065234,-0.3848828 0,-0.13046879 -0.033433,-0.25115158 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path623" />
+              <path
+                 d="m 9.5154119,1.7083252 q -0.054634,0 -0.093774,-0.039141 -0.039141,-0.039141 -0.039141,-0.093774 0,-0.055449 0.039141,-0.093774 0.039956,-0.039141 0.093774,-0.039141 0.053818,0 0.092959,0.039141 0.039956,0.038325 0.039956,0.093774 0,0.054634 -0.039141,0.093774 -0.039141,0.039141 -0.093774,0.039141 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path625" />
+              <path
+                 d="m 10.51676,0.36694335 q 0.216089,0 0.329434,0.18184082 0.113344,0.18102538 0.113344,0.48844233 0,0.3082324 -0.113344,0.4900733 -0.113345,0.1810254 -0.329434,0.1810254 -0.215274,0 -0.329434,-0.1810254 -0.113344,-0.1818409 -0.113344,-0.4900733 0,-0.30741695 0.113344,-0.48844233 0.11416,-0.18184082 0.329434,-0.18184082 z M 10.269685,1.3079492 10.70757,0.62217284 q -0.04159,-0.075835 -0.09051,-0.10192871 -0.04811,-0.0269092 -0.100298,-0.0269092 -0.136177,0 -0.207119,0.15166992 -0.07094,0.15085448 -0.07094,0.38325195 0,0.053003 0.0033,0.1141602 0.0033,0.061157 0.02773,0.1655322 z M 10.762204,0.77302732 10.32758,1.4628808 q 0.03506,0.059526 0.08073,0.089697 0.04566,0.029355 0.101928,0.029355 0.154932,0 0.220166,-0.1728711 0.06523,-0.1736866 0.06523,-0.3848828 0,-0.13046879 -0.03343,-0.25115158 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path627" />
+              <path
+                 d="m 11.518107,1.7083252 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09377,0.039141 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path629" />
+              <path
+                 d="M 12.481945,1.5436084 V 0.56672362 q -0.0685,0.0546338 -0.132915,0.092959 -0.06442,0.0383252 -0.176948,0.0782812 V 0.60097166 q 0.178579,-0.075835 0.309863,-0.19651855 h 0.15167 V 1.5436084 H 12.93777 V 1.67 H 12.172082 V 1.5436084 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path631" />
+            </g>
+            <g
+               aria-label="-"
+               id="text24"
+               class="e"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 2.1891025,3.3916983 V 3.2653067 h 0.6327734 v 0.1263916 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path634" />
+            </g>
+            <g
+               aria-label="10.96.0.1"
+               id="text26"
+               class="e"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 4.4711639,3.7146085 V 2.7377237 Q 4.4026679,2.7923575 4.3382489,2.8306827 4.27383,2.8690079 4.1613007,2.908964 V 2.7719718 Q 4.3398798,2.6961368 4.4711639,2.5754532 h 0.15167 V 3.7146085 H 4.9269891 V 3.8410001 H 4.1613007 V 3.7146085 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path637" />
+              <path
+                 d="m 5.5100214,2.5379435 q 0.2160888,0 0.3294336,0.1818408 0.1133447,0.1810254 0.1133447,0.4884424 0,0.3082324 -0.1133447,0.4900732 -0.1133448,0.1810254 -0.3294336,0.1810254 -0.2152735,0 -0.3294336,-0.1810254 -0.1133447,-0.1818408 -0.1133447,-0.4900732 0,-0.307417 0.1133447,-0.4884424 Q 5.2947479,2.5379435 5.5100214,2.5379435 Z M 5.2629462,3.4789493 5.7008319,2.793173 Q 5.659245,2.717338 5.6103192,2.6912443 q -0.04811,-0.026909 -0.1002978,-0.026909 -0.1361768,0 -0.2071192,0.1516699 -0.070942,0.1508545 -0.070942,0.3832519 0,0.053003 0.00326,0.1141602 0.00326,0.061157 0.027725,0.1655322 z M 5.7554657,2.9440274 5.3208417,3.6338809 q 0.035063,0.059526 0.080728,0.089697 0.045664,0.029355 0.1019287,0.029355 0.1549317,0 0.220166,-0.1728711 0.065234,-0.1736865 0.065234,-0.3848828 0,-0.1304688 -0.033433,-0.2511516 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path639" />
+              <path
+                 d="m 6.511369,3.8793253 q -0.054634,0 -0.093774,-0.039141 -0.039141,-0.039141 -0.039141,-0.093774 0,-0.055449 0.039141,-0.093774 0.039956,-0.039141 0.093774,-0.039141 0.053818,0 0.092959,0.039141 0.039956,0.038325 0.039956,0.093774 0,0.054634 -0.039141,0.093774 -0.039141,0.039141 -0.093774,0.039141 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path641" />
+              <path
+                 d="M 7.7752852,3.169086 Q 7.7165742,3.256337 7.6293233,3.3117862 7.5428877,3.36642 7.4385127,3.36642 q -0.098667,0 -0.1875488,-0.047295 -0.088066,-0.04811 -0.1345459,-0.1345459 -0.04648,-0.086435 -0.04648,-0.2005957 0,-0.1793945 0.1149756,-0.3123096 0.115791,-0.1337304 0.3041553,-0.1337304 0.2217968,0 0.3310644,0.1859179 0.110083,0.1851026 0.110083,0.4713184 0,0.3163867 -0.1394385,0.5006738 -0.1394384,0.1834717 -0.3775439,0.1834717 -0.1280225,0 -0.2487061,-0.038325 V 3.6885147 q 0.1353614,0.063604 0.2552295,0.063604 0.1696094,0 0.2625684,-0.155747 0.092959,-0.1557471 0.092959,-0.394668 z M 7.4776533,2.6643351 q -0.061157,0 -0.1231298,0.036694 -0.061973,0.035879 -0.097852,0.1108984 -0.035063,0.07502 -0.035063,0.1647168 0,0.1149756 0.059526,0.1891797 0.060342,0.074204 0.1712402,0.074204 0.1149756,0 0.1883643,-0.08562 0.074204,-0.086435 0.074204,-0.20875 0,-0.1239453 -0.072573,-0.2022266 -0.071758,-0.079097 -0.1647167,-0.079096 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path643" />
+              <path
+                 d="m 8.251496,3.2473673 q 0.058711,-0.087251 0.1451465,-0.1418848 0.087251,-0.055449 0.191626,-0.055449 0.098667,0 0.1867333,0.04811 0.088882,0.04811 0.1353614,0.1345458 0.046479,0.08562 0.046479,0.1997803 0,0.18021 -0.115791,0.3139404 -0.1149756,0.1329151 -0.3033399,0.1329151 -0.2217969,0 -0.3318799,-0.1851026 -0.109267,-0.1859177 -0.109267,-0.4721335 0,-0.3163867 0.1394384,-0.4998584 0.1394385,-0.1842871 0.377544,-0.1842871 0.1280224,0 0.248706,0.03751 V 2.728754 Q 8.7268915,2.664335 8.6070233,2.664335 8.437414,2.664335 8.344455,2.820082 8.251496,2.9758291 8.251496,3.21475 Z m 0.2976318,0.5055664 q 0.061157,0 0.1231299,-0.035879 0.061973,-0.036694 0.097036,-0.1117139 0.035879,-0.075835 0.035879,-0.1647168 0,-0.115791 -0.060342,-0.1899951 -0.059526,-0.074204 -0.1704248,-0.074204 -0.1149756,0 -0.1891797,0.086435 -0.073389,0.08562 -0.073389,0.20875 0,0.1239454 0.071758,0.203042 0.072573,0.078281 0.1655326,0.078282 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path645" />
+              <path
+                 d="m 9.5154119,3.8793253 q -0.054634,0 -0.093774,-0.039141 -0.039141,-0.039141 -0.039141,-0.093774 0,-0.055449 0.039141,-0.093774 0.039956,-0.039141 0.093774,-0.039141 0.053818,0 0.092959,0.039141 0.039956,0.038325 0.039956,0.093774 0,0.054634 -0.039141,0.093774 -0.039141,0.039141 -0.093774,0.039141 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path647" />
+              <path
+                 d="m 10.51676,2.5379435 q 0.216089,0 0.329434,0.1818408 0.113344,0.1810254 0.113344,0.4884424 0,0.3082324 -0.113344,0.4900732 -0.113345,0.1810254 -0.329434,0.1810254 -0.215274,0 -0.329434,-0.1810254 -0.113344,-0.1818408 -0.113344,-0.4900732 0,-0.307417 0.113344,-0.4884424 0.11416,-0.1818408 0.329434,-0.1818408 z M 10.269685,3.4789493 10.70757,2.793173 q -0.04159,-0.075835 -0.09051,-0.1019287 -0.04811,-0.026909 -0.100298,-0.026909 -0.136177,0 -0.207119,0.1516699 -0.07094,0.1508545 -0.07094,0.3832519 0,0.053003 0.0033,0.1141602 0.0033,0.061157 0.02773,0.1655322 z M 10.762204,2.9440274 10.32758,3.6338809 q 0.03506,0.059526 0.08073,0.089697 0.04566,0.029355 0.101928,0.029355 0.154932,0 0.220166,-0.1728711 0.06523,-0.1736865 0.06523,-0.3848828 0,-0.1304688 -0.03343,-0.2511516 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path649" />
+              <path
+                 d="m 11.518107,3.8793253 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09377,0.039141 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path651" />
+              <path
+                 d="M 12.481945,3.7146085 V 2.7377237 q -0.0685,0.054634 -0.132915,0.092959 -0.06442,0.038325 -0.176948,0.078281 V 2.7719718 q 0.178579,-0.075835 0.309863,-0.1965186 h 0.15167 V 3.7146085 H 12.93777 V 3.8410001 H 12.172082 V 3.7146085 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path653" />
+            </g>
+            <g
+               aria-label="issuerRef"
+               id="text28"
+               class="f"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="M 2.385621,6.0120001 V 5.2275567 H 2.1328378 V 5.1011651 H 2.537291 V 5.8856085 H 2.7908896 V 6.0120001 Z M 2.3603427,4.772547 q 0,-0.051372 0.035064,-0.07665 0.035064,-0.025278 0.06605,-0.025278 0.031802,0 0.066865,0.025278 0.035063,0.025278 0.035063,0.07665 0,0.050557 -0.035063,0.075835 -0.035064,0.025278 -0.066865,0.025278 -0.030986,0 -0.06605,-0.025278 -0.035064,-0.025278 -0.035064,-0.075835 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path656" />
+              <path
+                 d="M 3.1423398,5.9638897 V 5.8032501 q 0.091328,0.059526 0.1932568,0.083989 0.1019287,0.023648 0.1728711,0.023648 0.1149756,0 0.1655322,-0.036694 0.050557,-0.03751 0.050557,-0.092959 0,-0.036694 -0.023648,-0.062788 Q 3.6772619,5.6923521 3.583487,5.6540271 L 3.5312997,5.6328253 3.4261093,5.5912384 Q 3.2564999,5.5251886 3.2124667,5.4689239 3.1676181,5.4134747 3.1676181,5.3335626 q 0,-0.1125293 0.086436,-0.1851025 0.087251,-0.072573 0.2821386,-0.072573 0.1459619,0 0.2764307,0.042402 v 0.1378076 q -0.1500391,-0.053818 -0.2821387,-0.053818 -0.096221,0 -0.1508545,0.034248 -0.053818,0.033433 -0.053818,0.083989 0,0.048926 0.047295,0.078281 0.046479,0.029355 0.1516699,0.067681 l 0.1027441,0.03751 q 0.1410694,0.051372 0.1981495,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.091328,0.1948876 -0.090513,0.075835 -0.290293,0.075835 -0.1745019,0 -0.3587899,-0.073389 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path658" />
+              <path
+                 d="M 4.1436875,5.9638897 V 5.8032501 q 0.091328,0.059526 0.1932568,0.083989 0.1019287,0.023648 0.1728711,0.023648 0.1149756,0 0.1655322,-0.036694 0.050557,-0.03751 0.050557,-0.092959 0,-0.036694 -0.023647,-0.062788 -0.023648,-0.026094 -0.1174219,-0.064419 L 4.5326474,5.6328253 4.427457,5.5912384 Q 4.2578476,5.5251886 4.2138144,5.4689239 4.1689658,5.4134747 4.1689658,5.3335626 q 0,-0.1125293 0.086436,-0.1851025 0.087251,-0.072573 0.2821387,-0.072573 0.1459619,0 0.2764306,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.2821386,-0.053818 -0.096221,0 -0.1508545,0.034248 -0.053818,0.033433 -0.053818,0.083989 0,0.048926 0.047295,0.078281 0.046479,0.029355 0.1516699,0.067681 l 0.1027441,0.03751 q 0.1410693,0.051372 0.1981494,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.091328,0.1948876 -0.090513,0.075835 -0.290293,0.075835 -0.1745019,0 -0.3587899,-0.073389 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path660" />
+              <path
+                 d="m 5.8838145,5.1011651 v 0.910835 H 5.7321446 V 5.8122198 q -0.073389,0.1125293 -0.1630859,0.168794 -0.089697,0.056265 -0.1793946,0.056265 -0.079912,0 -0.1467773,-0.042402 -0.06605,-0.043219 -0.092144,-0.11253 -0.026094,-0.070127 -0.026094,-0.2723535 V 5.1011651 h 0.1516699 v 0.527583 q 0,0.1312842 0.012231,0.1736866 0.013047,0.041587 0.046479,0.068496 0.034248,0.026909 0.073389,0.026909 0.079912,0 0.1712402,-0.075019 0.092144,-0.075835 0.1524854,-0.1908105 V 5.1011651 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path662" />
+              <path
+                 d="m 6.8933164,5.9516583 q -0.1818409,0.086436 -0.3441114,0.086436 -0.1231298,0 -0.220166,-0.061157 Q 6.232003,5.9157803 6.173292,5.8024354 6.115396,5.6882752 6.115396,5.5586219 q 0,-0.1247607 0.055449,-0.2397363 0.055449,-0.1149756 0.1549316,-0.1785791 0.099482,-0.064419 0.2217969,-0.064419 0.1622705,0 0.260122,0.115791 0.098667,0.1157911 0.098667,0.3571582 v 0.032617 H 6.2784824 q 0,0.09459 0.039141,0.1728711 0.039956,0.078281 0.104375,0.1174219 0.064419,0.039141 0.1467773,0.039141 0.1467774,0 0.3245411,-0.097852 z M 6.2874521,5.4681085 h 0.4541943 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.067681 -0.066865,0.066865 -0.093774,0.1981497 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path664" />
+              <path
+                 d="M 7.2145956,6.0120001 V 5.1011651 H 7.3662655 V 5.30013 q 0.070942,-0.1125293 0.1622705,-0.1679785 0.092143,-0.056265 0.2046728,-0.056265 0.082358,0 0.1647168,0.025278 V 5.4297833 H 7.7519637 V 5.2218487 q -0.038325,-0.00652 -0.060342,-0.00652 -0.084805,0 -0.1663476,0.066865 -0.081543,0.066865 -0.1590088,0.2005957 v 0.5292139 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path666" />
+              <path
+                 d="M 8.298302,5.4746319 V 6.0120001 H 8.1335852 V 4.7464532 h 0.3384033 q 0.1655322,0 0.2438135,0.034248 0.078281,0.033433 0.1206835,0.1019287 0.043218,0.068496 0.043218,0.1475928 0,0.073389 -0.02854,0.1475927 -0.02854,0.074204 -0.079097,0.1329151 -0.049741,0.057895 -0.144331,0.110083 l 0.366128,0.5911866 H 8.7981604 L 8.4630188,5.4746319 Z m 0,-0.127207 h 0.2307666 q 0.077466,-0.042402 0.1149755,-0.086436 0.038325,-0.044033 0.057896,-0.093774 0.01957,-0.049741 0.01957,-0.099482 0,-0.088882 -0.065234,-0.1410693 -0.064419,-0.053003 -0.2348438,-0.053003 H 8.298302 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path668" />
+              <path
+                 d="m 9.8973595,5.9516583 q -0.1818409,0.086436 -0.3441114,0.086436 -0.1231298,0 -0.220166,-0.061157 -0.097036,-0.061157 -0.155747,-0.1745019 -0.057896,-0.1141602 -0.057896,-0.2438135 0,-0.1247607 0.055449,-0.2397363 0.055449,-0.1149756 0.1549316,-0.1785791 0.099482,-0.064419 0.2217969,-0.064419 0.1622705,0 0.260122,0.115791 0.098667,0.1157911 0.098667,0.3571582 v 0.032617 H 9.2825255 q 0,0.09459 0.039141,0.1728711 0.039956,0.078281 0.104375,0.1174219 0.064419,0.039141 0.1467773,0.039141 0.1467774,0 0.3245411,-0.097852 z M 9.2914952,5.4681085 h 0.4541943 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.067681 -0.066865,0.066865 -0.093774,0.1981497 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path670" />
+              <path
+                 d="M 10.353185,6.0120001 V 5.3033917 H 10.150958 V 5.1770001 h 0.202227 v -0.042402 q 0,-0.18021 0.04077,-0.2666455 0.04077,-0.086436 0.125576,-0.1418848 0.08562,-0.055449 0.225874,-0.055449 0.106006,0 0.215274,0.022017 v 0.144331 q -0.118238,-0.039141 -0.209566,-0.039141 -0.07257,0 -0.128022,0.026909 -0.05545,0.026909 -0.08725,0.088066 -0.03099,0.060342 -0.03099,0.2054883 v 0.058711 h 0.361236 v 0.1263916 h -0.361236 v 0.7086084 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path672" />
+            </g>
+            <g
+               aria-label=":"
+               id="text30"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 11.522674,6.0503253 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093775 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093775 -0.03914,0.039141 -0.09377,0.039141 z m 0,-0.7086084 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09377,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path675" />
+            </g>
+            <g
+               aria-label="kind"
+               id="text32"
+               class="f"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="M 4.175163,8.1829996 V 6.8668961 H 4.3268329 V 7.6937418 L 4.7647186,7.2721647 H 4.9669452 L 4.5298749,7.6937418 4.9783612,8.1829996 h -0.20875 L 4.3268329,7.6937418 v 0.4892578 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path678" />
+              <path
+                 d="M 5.3909686,8.1829996 V 7.3985563 H 5.1381854 V 7.2721647 H 5.5426386 V 8.056608 H 5.7962372 V 8.1829996 Z M 5.3656903,6.9435465 q 0,-0.051372 0.035064,-0.07665 0.035063,-0.025278 0.06605,-0.025278 0.031802,0 0.066865,0.025278 0.035063,0.025278 0.035063,0.07665 0,0.050557 -0.035063,0.075835 -0.035063,0.025278 -0.066865,0.025278 -0.030986,0 -0.06605,-0.025278 -0.035064,-0.025278 -0.035064,-0.075835 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path680" />
+              <path
+                 d="M 6.1370868,8.1829996 V 7.2721647 h 0.1516699 v 0.1989648 q 0.065234,-0.1051904 0.157378,-0.1647168 0.092143,-0.059526 0.1842871,-0.059526 0.080728,0 0.1467773,0.043218 0.06605,0.042402 0.092144,0.1117139 0.026909,0.069312 0.026909,0.2723535 V 8.1829996 H 6.7445819 v -0.527583 q 0,-0.1312842 -0.013047,-0.1728711 -0.012231,-0.042402 -0.046479,-0.069311 -0.033433,-0.026909 -0.073389,-0.026909 -0.079912,0 -0.1720557,0.075835 -0.091328,0.075835 -0.1508545,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path682" />
+              <path
+                 d="m 7.7467451,7.9783268 q -0.069312,0.1141601 -0.1671631,0.1720556 -0.097036,0.057896 -0.178579,0.057896 -0.1141602,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992626 0,-0.1581934 0.060342,-0.2821387 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011132,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304687,0.00897 0.013047,0.00163 0.039141,0.00408 V 6.8668961 H 7.8992305 V 8.1829996 H 7.7467451 Z m 0,-0.18021 V 7.407526 q -0.080728,-0.021201 -0.150039,-0.021201 -0.1402539,0 -0.2340283,0.1084522 -0.092959,0.1084521 -0.092959,0.2951855 0,0.1353613 0.050557,0.2046729 0.051372,0.068496 0.1166065,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533003,-0.1932568 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path684" />
+            </g>
+            <g
+               aria-label=":"
+               id="text34"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 8.5166736,8.2213248 q -0.054634,0 -0.093774,-0.039141 -0.039141,-0.039141 -0.039141,-0.093774 0,-0.055449 0.039141,-0.093774 0.039956,-0.039141 0.093774,-0.039141 0.053818,0 0.092959,0.039141 0.039956,0.038325 0.039956,0.093774 0,0.054634 -0.039141,0.093774 -0.039141,0.039141 -0.093774,0.039141 z m 0,-0.7086084 q -0.054634,0 -0.093774,-0.039141 -0.039141,-0.039141 -0.039141,-0.093774 0,-0.055449 0.039141,-0.093774 0.039956,-0.039141 0.093774,-0.039141 0.053818,0 0.092959,0.039141 0.039956,0.038325 0.039956,0.093774 0,0.054634 -0.039141,0.093774 -0.039141,0.039141 -0.093774,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path687" />
+            </g>
+            <g
+               aria-label="Issuer"
+               id="text36"
+               class="e"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 10.160254,8.1829996 V 8.056608 h 0.278062 V 7.0446598 h -0.278062 v -0.127207 h 0.72084 v 0.127207 H 10.603033 V 8.056608 h 0.278061 v 0.1263916 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path690" />
+              <path
+                 d="M 11.15834,8.1348893 V 7.9742496 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023647 0.172871,0.023647 0.114976,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 L 11.5473,7.8038248 11.44211,7.7622379 q -0.16961,-0.06605 -0.213643,-0.1223144 -0.04485,-0.055449 -0.04485,-0.1353614 0,-0.1125293 0.08643,-0.1851025 0.08725,-0.072573 0.282139,-0.072573 0.145962,0 0.27643,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282138,-0.053818 -0.09622,0 -0.150855,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.0473,0.078281 0.04648,0.029356 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path692" />
+              <path
+                 d="M 12.159688,8.1348893 V 7.9742496 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023647 0.172871,0.023647 0.114975,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.105191,-0.041587 q -0.169609,-0.06605 -0.213642,-0.1223144 -0.04485,-0.055449 -0.04485,-0.1353614 0,-0.1125293 0.08644,-0.1851025 0.08725,-0.072573 0.282138,-0.072573 0.145962,0 0.276431,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282139,-0.053818 -0.09622,0 -0.150854,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.0473,0.078281 0.04648,0.029356 0.151669,0.067681 l 0.102745,0.03751 q 0.141069,0.051372 0.198149,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path694" />
+              <path
+                 d="m 13.899815,7.2721647 v 0.9108349 h -0.15167 V 7.9832193 q -0.07339,0.1125293 -0.163086,0.168794 -0.0897,0.056265 -0.179394,0.056265 -0.07991,0 -0.146778,-0.042402 -0.06605,-0.043218 -0.09214,-0.1125293 -0.02609,-0.070127 -0.02609,-0.2723535 V 7.2721647 h 0.15167 v 0.527583 q 0,0.1312841 0.01223,0.1736865 0.01305,0.041587 0.04648,0.068496 0.03425,0.026909 0.07339,0.026909 0.07991,0 0.17124,-0.07502 0.09214,-0.075835 0.152485,-0.1908105 v -0.530844 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path696" />
+              <path
+                 d="m 14.909317,8.1226578 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155748,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 14.303453,7.639108 h 0.454194 V 7.617091 q 0,-0.1117138 -0.05463,-0.1777636 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06687,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path698" />
+              <path
+                 d="M 15.230596,8.1829996 V 7.2721647 h 0.15167 v 0.1989648 q 0.07094,-0.1125293 0.16227,-0.1679785 0.09214,-0.056265 0.204673,-0.056265 0.08236,0 0.164717,0.025278 V 7.6007828 H 15.767964 V 7.3928483 q -0.03832,-0.00652 -0.06034,-0.00652 -0.0848,0 -0.166347,0.066865 -0.08154,0.066865 -0.159009,0.2005957 v 0.5292138 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path700" />
+            </g>
+            <g
+               aria-label="name"
+               id="text38"
+               class="f"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="M 4.1343915,10.354 V 9.4431652 H 4.2860614 V 9.64213 q 0.065234,-0.1051904 0.1573779,-0.1647168 0.092144,-0.059526 0.1842871,-0.059526 0.080728,0 0.1467774,0.043218 0.06605,0.042402 0.092144,0.1117139 0.026909,0.069311 0.026909,0.2723535 V 10.354 H 4.7418866 V 9.8264171 q 0,-0.1312842 -0.013047,-0.1728711 -0.012231,-0.042402 -0.04648,-0.069311 -0.033433,-0.026909 -0.073389,-0.026909 -0.079912,0 -0.1720557,0.075835 -0.091328,0.075835 -0.1508545,0.1899951 V 10.354 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path703" />
+              <path
+                 d="m 5.7342645,10.149327 q -0.069312,0.11416 -0.1671631,0.172056 -0.097036,0.05789 -0.178579,0.05789 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.2992623 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011132,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304687,0.00897 0.013047,0.00163 0.039141,0.00408 h 0.1524854 v 0.6433735 q 0,0.164717 0.034248,0.267461 H 5.7628046 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.1802097 V 9.5785265 q -0.080728,-0.021201 -0.150039,-0.021201 -0.1402539,0 -0.2340283,0.1084522 -0.092959,0.1084521 -0.092959,0.2951855 0,0.1353608 0.050557,0.2046728 0.051372,0.0685 0.1166065,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533007,-0.1932565 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path705" />
+              <path
+                 d="M 6.0685907,10.354 V 9.4431652 h 0.1329151 v 0.2087499 q 0.062788,-0.132915 0.1166064,-0.1834716 0.054634,-0.050557 0.110083,-0.050557 0.06605,0 0.1060059,0.052188 0.040771,0.051372 0.040771,0.1467774 v 0.048926 q 0.026909,-0.083174 0.064419,-0.1345459 0.038325,-0.052188 0.079097,-0.082358 0.040771,-0.030986 0.093774,-0.030986 0.058711,0 0.1002978,0.049741 0.041587,0.049741 0.041587,0.1981495 V 10.354 H 6.8212323 V 9.7318273 q 0,-0.07665 -0.00489,-0.104375 -0.00489,-0.02854 -0.01957,-0.043218 -0.014678,-0.014678 -0.031802,-0.014678 -0.042402,0 -0.091328,0.065234 -0.04811,0.064419 -0.098667,0.214458 V 10.354 H 6.4477655 V 9.7326427 q 0,-0.1206836 -0.023647,-0.1418848 -0.023648,-0.021201 -0.042402,-0.021201 -0.041587,0 -0.089697,0.072573 -0.047295,0.072573 -0.090513,0.185918 V 10.354 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path707" />
+              <path
+                 d="m 7.8959688,10.293658 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.2438138 0,-0.1247607 0.055449,-0.2397363 0.055449,-0.1149756 0.1549316,-0.1785791 0.099482,-0.064419 0.2217969,-0.064419 0.1622705,0 0.260122,0.115791 0.098667,0.1157911 0.098667,0.3571582 V 9.923454 H 7.2811348 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2901045,9.8101085 h 0.4541943 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.06605 -0.145962,-0.06605 -0.092143,0 -0.1598242,0.067681 -0.066865,0.066865 -0.093774,0.1981497 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path709" />
+            </g>
+            <g
+               aria-label=":"
+               id="text40"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 8.5166736,10.392325 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.7086081 q -0.054634,0 -0.093774,-0.039141 -0.039141,-0.039141 -0.039141,-0.093774 0,-0.055449 0.039141,-0.093774 0.039956,-0.039141 0.093774,-0.039141 0.053818,0 0.092959,0.039141 0.039956,0.038325 0.039956,0.093774 0,0.054634 -0.039141,0.093774 -0.039141,0.039141 -0.093774,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path712" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-issuer"
+               id="text42"
+               class="e"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 10.358404,10.354 V 9.6453917 H 10.156177 V 9.5190001 h 0.202227 v -0.042402 q 0,-0.18021 0.04077,-0.2666455 0.04077,-0.086436 0.125576,-0.1418848 0.08562,-0.055449 0.225874,-0.055449 0.106006,0 0.215274,0.022017 v 0.144331 q -0.118237,-0.039141 -0.209566,-0.039141 -0.07257,0 -0.128022,0.026909 -0.05545,0.026909 -0.08725,0.088066 -0.03099,0.060342 -0.03099,0.2054883 v 0.058711 h 0.361235 V 9.6453917 H 10.510074 V 10.354 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path715" />
+              <path
+                 d="m 11.522837,10.379278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.3449271 0,-0.2079346 0.117422,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194888,0 0.31231,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079341 -0.117422,0.3449271 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655321 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path717" />
+              <path
+                 d="m 12.524185,10.379278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.3449271 0,-0.2079346 0.117422,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194888,0 0.31231,0.1361768 0.117421,0.1361767 0.117421,0.3441113 0,0.2079341 -0.117421,0.3449271 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655321 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path719" />
+              <path
+                 d="M 13.209146,9.9046983 V 9.7783067 h 0.632774 v 0.1263916 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path721" />
+              <path
+                 d="M 14.192554,10.354 V 9.0378966 h 0.15167 V 9.8647423 L 14.78211,9.4431652 h 0.202226 L 14.547266,9.8647423 14.995752,10.354 h -0.20875 L 14.344224,9.8647423 V 10.354 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path723" />
+              <path
+                 d="M 15.90251,9.4431652 V 10.354 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.2723537 V 9.4431652 h 0.15167 v 0.5275829 q 0,0.1312839 0.01223,0.1736869 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152485,-0.1908101 V 9.4431652 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path725" />
+              <path
+                 d="m 16.294732,9.647838 q 0.07013,-0.1141602 0.167163,-0.1720557 0.09704,-0.057896 0.178579,-0.057896 0.11416,0 0.205489,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.282955 -0.06034,0.123945 -0.161456,0.196518 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 V 9.0378966 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.2960007 0,-0.1361768 -0.05137,-0.2046729 -0.05137,-0.068496 -0.116607,-0.068496 -0.07094,0 -0.156562,0.071758 -0.0848,0.071758 -0.153301,0.1932569 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path727" />
+              <path
+                 d="m 17.91336,10.293658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.2438138 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 17.307496,9.8101085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path729" />
+              <path
+                 d="M 18.234639,10.354 V 9.4431652 h 0.15167 V 9.64213 q 0.07094,-0.1125293 0.162271,-0.1679785 0.09214,-0.056265 0.204672,-0.056265 0.08236,0 0.164717,0.025278 V 9.7717833 H 18.772007 V 9.5638487 q -0.03832,-0.00652 -0.06034,-0.00652 -0.0848,0 -0.166348,0.066865 -0.08154,0.066865 -0.159009,0.2005957 V 10.354 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path731" />
+              <path
+                 d="M 19.158521,10.354 V 9.4431652 h 0.15167 V 9.64213 q 0.06523,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184287,-0.059526 0.08073,0 0.146777,0.043218 0.06605,0.042402 0.09214,0.1117139 0.02691,0.069311 0.02691,0.2723535 V 10.354 h -0.15167 V 9.8264171 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.1899951 V 10.354 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path733" />
+              <path
+                 d="m 20.917403,10.293658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.2438138 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221796,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 20.311538,9.8101085 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09378,0.1981494 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path735" />
+              <path
+                 d="m 21.922827,10.317306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 9.6453917 h -0.2275 V 9.5190001 H 21.34061 V 9.1520568 h 0.15167 v 0.3669433 h 0.405269 V 9.6453917 H 21.49228 v 0.3644973 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path737" />
+              <path
+                 d="m 22.920099,10.293658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.2438138 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221796,-0.064419 0.162271,0 0.260123,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 22.314234,9.8101085 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09378,0.1981494 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path739" />
+              <path
+                 d="m 23.174513,10.30589 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172872,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.064419 L 23.563471,9.97483 23.45828,9.933243 q -0.169609,-0.06605 -0.213642,-0.1223145 -0.04485,-0.055449 -0.04485,-0.1353613 0,-0.1125293 0.08643,-0.1851025 0.08725,-0.072573 0.282139,-0.072573 0.145962,0 0.276431,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282139,-0.053818 -0.09622,0 -0.150854,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.0473,0.078281 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.14107,0.051372 0.19815,0.1117139 0.05708,0.060342 0.05708,0.1508548 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path741" />
+              <path
+                 d="M 24.22397,9.9046983 V 9.7783067 h 0.632774 v 0.1263916 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path743" />
+              <path
+                 d="M 25.421837,10.354 V 9.5695568 H 25.169053 V 9.4431652 h 0.404453 v 0.7844428 h 0.253599 V 10.354 Z m -0.02528,-1.239453 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06686,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06686,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path745" />
+              <path
+                 d="m 26.178555,10.30589 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.064419 L 26.567513,9.97483 26.462323,9.933243 q -0.16961,-0.06605 -0.213643,-0.1223145 -0.04485,-0.055449 -0.04485,-0.1353613 0,-0.1125293 0.08643,-0.1851025 0.08725,-0.072573 0.282139,-0.072573 0.145962,0 0.27643,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282138,-0.053818 -0.09622,0 -0.150855,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.04729,0.078281 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117139 0.05708,0.060342 0.05708,0.1508548 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path747" />
+              <path
+                 d="m 27.179904,10.30589 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.064419 L 27.568862,9.97483 27.463671,9.933243 q -0.169609,-0.06605 -0.213642,-0.1223145 -0.04485,-0.055449 -0.04485,-0.1353613 0,-0.1125293 0.08644,-0.1851025 0.08725,-0.072573 0.282138,-0.072573 0.145962,0 0.276431,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282139,-0.053818 -0.09622,0 -0.150854,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.04729,0.078281 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.14107,0.051372 0.19815,0.1117139 0.05708,0.060342 0.05708,0.1508548 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path749" />
+              <path
+                 d="M 28.92003,9.4431652 V 10.354 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.2723537 V 9.4431652 h 0.151669 v 0.5275829 q 0,0.1312839 0.01223,0.1736869 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152486,-0.1908101 V 9.4431652 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path751" />
+              <path
+                 d="m 29.929532,10.293658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.2438138 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154931,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 29.323668,9.8101085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06687,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path753" />
+              <path
+                 d="M 30.250811,10.354 V 9.4431652 h 0.15167 V 9.64213 q 0.07094,-0.1125293 0.16227,-0.1679785 0.09214,-0.056265 0.204673,-0.056265 0.08236,0 0.164717,0.025278 V 9.7717833 H 30.788179 V 9.5638487 q -0.03833,-0.00652 -0.06034,-0.00652 -0.0848,0 -0.166348,0.066865 -0.08154,0.066865 -0.159008,0.2005957 V 10.354 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path755" />
+            </g>
+            <g
+               aria-label="renewBefore"
+               id="text44"
+               class="f"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="m 2.2078574,12.525 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092144,-0.05626 0.2046728,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 2.7452255 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663476,0.06686 -0.081543,0.06686 -0.1590088,0.200596 V 12.525 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path758" />
+              <path
+                 d="m 3.8892734,12.464658 q -0.1818408,0.08643 -0.3441114,0.08643 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057896,-0.11416 -0.057896,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 3.2744394 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058643,-0.48355 h 0.4541944 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598243,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path760" />
+              <path
+                 d="m 4.1330869,12.525 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467774,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 V 12.525 H 4.740582 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012231,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720556,0.07583 -0.091328,0.07583 -0.1508545,0.189995 V 12.525 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path762" />
+              <path
+                 d="m 5.8919688,12.464658 q -0.1818408,0.08643 -0.3441113,0.08643 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 5.2771348 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path764" />
+              <path
+                 d="M 6.1741074,12.525 6.0256992,11.614165 h 0.1410693 l 0.086436,0.554492 0.022832,0.128838 0.022017,-0.128838 L 6.4432,11.614165 h 0.1361767 l 0.1639014,0.554492 0.02854,0.128838 0.018755,-0.128838 0.087251,-0.554492 H 6.9944296 L 6.8468369,12.525 H 6.7049521 l -0.174502,-0.586294 -0.027725,-0.128838 h -0.00408 L 6.4733701,11.93789 6.3217002,12.525 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path766" />
+              <path
+                 d="m 7.150992,12.525 v -1.265547 h 0.2470752 q 0.2226123,0 0.2976319,0.03425 0.075835,0.03343 0.1133447,0.09948 0.03751,0.06605 0.03751,0.150855 0,0.06686 -0.022017,0.127207 -0.022017,0.05953 -0.065234,0.109267 -0.043218,0.04893 -0.1255762,0.09296 0.1508545,0.06034 0.2038574,0.148409 0.053818,0.08807 0.053818,0.176132 0,0.08399 -0.045664,0.163086 -0.044849,0.0791 -0.1263916,0.121499 -0.081543,0.0424 -0.2609375,0.0424 z m 0.1647168,-0.695562 h 0.1728711 q 0.083989,-0.03506 0.1223145,-0.07339 0.039141,-0.03914 0.057895,-0.08644 0.01957,-0.04811 0.01957,-0.105191 0,-0.0897 -0.053003,-0.13373 -0.052187,-0.04403 -0.2046729,-0.04403 H 7.3157088 Z m 0,0.56917 h 0.1557471 q 0.1304687,0 0.1924414,-0.06116 0.062788,-0.06197 0.062788,-0.148408 0,-0.0636 -0.034248,-0.116607 -0.034248,-0.05382 -0.1060058,-0.0848 -0.071758,-0.0318 -0.2250586,-0.0318 h -0.045664 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path768" />
+              <path
+                 d="m 8.8960119,12.464658 q -0.1818408,0.08643 -0.3441113,0.08643 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 8.2811779 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 8.2901477,11.981108 H 8.744342 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path770" />
+              <path
+                 d="M 9.351837,12.525 V 11.816391 H 9.1496104 V 11.69 H 9.351837 v -0.0424 q 0,-0.18021 0.040771,-0.266645 0.040771,-0.08644 0.1255762,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.1060058,0 0.2152734,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.2095654,-0.03914 -0.072573,0 -0.1280225,0.02691 -0.055449,0.02691 -0.087251,0.08807 -0.030986,0.06034 -0.030986,0.205489 V 11.69 h 0.3612354 v 0.126391 H 9.5035069 V 12.525 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path772" />
+              <path
+                 d="m 10.51627,12.550278 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207934 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.1215,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path774" />
+              <path
+                 d="m 11.219986,12.525 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 12.525 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path776" />
+              <path
+                 d="m 12.901402,12.464658 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path778" />
+            </g>
+            <g
+               aria-label=":"
+               id="text46"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 13.526674,12.563325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path781" />
+            </g>
+            <g
+               aria-label="4380h0m0s"
+               id="text48"
+               class="e"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 15.606509,12.525 V 12.171103 H 15.06914 v -0.127207 l 0.537369,-0.784443 h 0.152485 v 0.784443 h 0.234028 v 0.127207 H 15.758994 V 12.525 Z m 0,-0.481104 v -0.554492 l -0.375914,0.554492 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path784" />
+              <path
+                 d="m 16.149585,12.502168 v -0.159825 q 0.186733,0.09459 0.323725,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07583 -0.305786,-0.07583 H 16.2825 v -0.126391 h 0.116606 q 0.159009,0 0.229951,-0.07094 Q 16.7,11.623134 16.7,11.535883 q 0,-0.0791 -0.0579,-0.132915 -0.05789,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07583 v -0.144331 q 0.154932,-0.0579 0.28377,-0.0579 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.17124,0.135361 0.110083,0.03262 0.166347,0.07991 0.05626,0.0473 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.1321,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path786" />
+              <path
+                 d="m 17.406977,11.842485 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144332 0,0.05382 -0.01875,0.104375 -0.01876,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298448,0.100298 -0.19978,0 -0.299262,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02935,-0.05871 0.02935,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158194 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118238,-0.110898 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path788" />
+              <path
+                 d="m 18.534717,11.221943 q 0.216089,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113344,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685777 q -0.04159,-0.07583 -0.09051,-0.101928 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101928,0.02935 0.154932,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path790" />
+              <path
+                 d="m 19.161782,12.525 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.199781 V 12.525 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 V 12.525 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path792" />
+              <path
+                 d="m 20.537412,11.221943 q 0.216089,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113344,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247075,0.941006 0.437885,-0.685777 q -0.04159,-0.07583 -0.09051,-0.101928 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02773,0.165532 z m 0.492519,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101928,0.02935 0.154932,0 0.220166,-0.172871 0.06524,-0.173686 0.06524,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path794" />
+              <path
+                 d="m 21.095981,12.525 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 12.525 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 12.525 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185917 V 12.525 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path796" />
+              <path
+                 d="m 22.540107,11.221943 q 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 z m -0.247075,0.941006 0.437886,-0.685777 q -0.04159,-0.07583 -0.09051,-0.101928 -0.04811,-0.02691 -0.100298,-0.02691 -0.136176,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02773,0.165532 z m 0.49252,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101929,0.02935 0.154931,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path798" />
+              <path
+                 d="M 23.177773,12.476889 V 12.31625 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path800" />
+            </g>
+            <g
+               aria-label="secretName"
+               id="text50"
+               class="f"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="m 2.1409921,14.64789 v -0.16064 q 0.091328,0.05953 0.1932569,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149755,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023647,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 L 2.5299524,14.31683 2.424762,14.27524 q -0.1696094,-0.06605 -0.2136426,-0.122314 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.11253 0.086435,-0.185103 0.087251,-0.07257 0.2821387,-0.07257 0.1459619,0 0.2764306,0.0424 V 13.9401 q -0.150039,-0.05382 -0.2821386,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.046479,0.02936 0.1516699,0.06768 l 0.1027442,0.03751 q 0.1410693,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.091328,0.194887 -0.090513,0.07583 -0.2902929,0.07583 -0.174502,0 -0.3587891,-0.07339 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path803" />
+              <path
+                 d="m 3.8892734,14.635658 q -0.1818408,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057896,-0.11416 -0.057896,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 3.2744394 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 3.2834091,14.152109 h 0.4541944 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598243,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path805" />
+              <path
+                 d="m 4.8995908,14.669906 q -0.1524854,0.05137 -0.290293,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060058,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353614,-0.136992 0.3261719,-0.136992 0.1410693,0 0.2984473,0.053 v 0.145962 q -0.1590088,-0.07257 -0.284585,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133447,0.128023 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097852,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path807" />
+              <path
+                 d="m 5.2119005,14.696 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167979 0.092143,-0.05626 0.2046728,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 5.7492686 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663476,0.06687 -0.081543,0.06686 -0.1590088,0.200595 V 14.696 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path809" />
+              <path
+                 d="m 6.8933164,14.635658 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057896,-0.11416 -0.057896,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 6.2784824 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.3245411,-0.09785 z M 6.2874521,14.152109 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path811" />
+              <path
+                 d="m 7.898741,14.659306 q -0.1068212,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.1745019,-0.03669 -0.079097,-0.03669 -0.1198682,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 13.987392 H 7.0890194 V 13.861 H 7.3165243 V 13.494057 H 7.4681942 V 13.861 h 0.4052685 v 0.126392 H 7.4681942 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069312,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path813" />
+              <path
+                 d="M 8.2665002,14.696 H 8.1148303 v -1.265547 h 0.1484082 l 0.4476709,0.842339 0.048926,0.125576 h 0.00408 l -0.00408,-0.125576 V 13.430453 H 8.9115051 V 14.696 H 8.7598352 l -0.4354395,-0.828476 -0.061157,-0.132915 0.00326,0.131284 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path815" />
+              <path
+                 d="m 9.7383507,14.491327 q -0.069312,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299262 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 H 9.890836 v 0.643374 q 0,0.164717 0.034248,0.267461 H 9.7668907 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108453 -0.092959,0.295186 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path817" />
+              <path
+                 d="m 10.072677,14.696 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09378,-0.03099 0.05871,0 0.100297,0.04974 0.04159,0.04974 0.04159,0.198149 V 14.696 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 14.696 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 14.696 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path819" />
+              <path
+                 d="m 11.900055,14.635658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 11.29419,14.152109 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path821" />
+            </g>
+            <g
+               aria-label=":"
+               id="text52"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 12.524674,14.734325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path824" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-pki-apiserver"
+               id="text54"
+               class="e"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 14.366403,14.696 V 13.987392 H 14.164177 V 13.861 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.0587 h 0.361235 v 0.126392 h -0.36123 V 14.696 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path827" />
+              <path
+                 d="m 15.530837,14.721278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117422,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path829" />
+              <path
+                 d="m 16.532184,14.721278 q -0.195703,0 -0.313125,-0.136176 -0.117421,-0.136993 -0.117421,-0.344927 0,-0.207935 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path831" />
+              <path
+                 d="m 17.217146,14.246698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path833" />
+              <path
+                 d="m 18.200554,14.696 v -1.316103 h 0.15167 v 0.826845 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 18.352224,14.206742 V 14.696 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path835" />
+              <path
+                 d="M 19.91051,13.785165 V 14.696 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.151669 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path837" />
+              <path
+                 d="m 20.302732,13.989838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path839" />
+              <path
+                 d="m 21.921359,14.635658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path841" />
+              <path
+                 d="m 22.242639,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 V 14.696 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path843" />
+              <path
+                 d="m 23.16652,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 14.696 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 14.696 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path845" />
+              <path
+                 d="m 24.925402,14.635658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path847" />
+              <path
+                 d="m 25.930827,14.659306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 13.861 h 0.227505 v -0.366943 h 0.15167 V 13.861 h 0.405268 v 0.126392 H 25.50028 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path849" />
+              <path
+                 d="m 26.928098,14.635658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path851" />
+              <path
+                 d="m 27.182512,14.64789 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145961,0 0.27643,0.0424 V 13.9401 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path853" />
+              <path
+                 d="m 28.23197,14.246698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path855" />
+              <path
+                 d="m 29.31486,13.989838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.17858,-0.05789 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path857" />
+              <path
+                 d="m 30.216726,14.696 v -1.316103 h 0.151669 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 L 30.368395,14.206742 V 14.696 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path859" />
+              <path
+                 d="m 31.432532,14.696 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 14.696 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path861" />
+              <path
+                 d="m 32.23736,14.246698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path863" />
+              <path
+                 d="m 33.778523,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path865" />
+              <path
+                 d="m 34.321598,13.989838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path867" />
+              <path
+                 d="m 35.437922,14.696 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 14.696 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path869" />
+              <path
+                 d="m 36.19464,14.64789 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 V 13.9401 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path871" />
+              <path
+                 d="m 37.942922,14.635658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path873" />
+              <path
+                 d="m 38.264202,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 H 38.80157 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 14.696 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path875" />
+              <path
+                 d="M 39.484084,14.696 39.0886,13.785165 h 0.166348 l 0.31231,0.72084 0.318833,-0.72084 h 0.15167 L 39.639015,14.696 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path877" />
+              <path
+                 d="m 40.946966,14.635658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path879" />
+              <path
+                 d="m 41.268244,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 V 14.696 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path881" />
+            </g>
+            <g
+               aria-label="subject"
+               id="text56"
+               class="f"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="m 2.1409921,16.81889 v -0.160639 q 0.091328,0.05953 0.1932569,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149755,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023647,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 l -0.052188,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122315 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.112529 0.086435,-0.185102 0.087251,-0.07257 0.2821387,-0.07257 0.1459619,0 0.2764306,0.0424 V 16.1111 q -0.150039,-0.05382 -0.2821386,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.046479,0.02936 0.1516699,0.06768 l 0.1027442,0.03751 q 0.1410693,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07583 -0.2902929,0.07583 -0.174502,0 -0.3587891,-0.07339 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path884" />
+              <path
+                 d="m 3.8811191,15.956166 v 0.910835 H 3.7294492 V 16.66722 q -0.073389,0.11253 -0.163086,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467773,-0.0424 -0.06605,-0.04322 -0.092144,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 V 15.956166 H 3.273624 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092144,-0.07584 0.1524854,-0.190811 V 15.95617 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path886" />
+              <path
+                 d="m 4.2733408,16.160838 q 0.070127,-0.11416 0.1671631,-0.172055 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054882,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196519 -0.1011132,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 4.1216709 v -1.316104 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166065,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533007,0.193256 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path888" />
+              <path
+                 d="m 5.148297,17.224159 v -0.141885 q 0.127207,0.03751 0.214458,0.03751 0.075835,0 0.1288378,-0.02691 0.053003,-0.02609 0.082358,-0.08888 0.030171,-0.06279 0.030171,-0.218535 V 16.082557 H 5.2176085 v -0.126391 h 0.5381836 v 0.800752 q 0,0.231582 -0.054634,0.321279 -0.054634,0.09051 -0.1320996,0.129653 -0.077466,0.03914 -0.2120118,0.03914 -0.097036,0 -0.2087499,-0.02283 z m 0.4305468,-1.596612 q 0,-0.05137 0.034248,-0.07665 0.035063,-0.02528 0.066865,-0.02528 0.031802,0 0.06605,0.02528 0.035063,0.02528 0.035063,0.07665 0,0.05056 -0.035063,0.07583 -0.034248,0.02528 -0.06605,0.02528 -0.031802,0 -0.066865,-0.02528 -0.034248,-0.02528 -0.034248,-0.07583 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path890" />
+              <path
+                 d="m 6.8933164,16.806659 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057896,-0.11416 -0.057896,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 6.2784824 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.3245411,-0.09785 z m -0.6058643,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path892" />
+              <path
+                 d="m 7.9036336,16.840907 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108453 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136993 0.3261719,-0.136993 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128022 -0.039956,0.08725 -0.039956,0.179395 0,0.12313 0.07665,0.234844 0.077466,0.111713 0.2421826,0.111713 0.049741,0 0.097852,-0.0065 0.04811,-0.0073 0.1777636,-0.05137 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path894" />
+              <path
+                 d="m 8.9000891,16.830306 q -0.1068213,0.04485 -0.1549317,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.1745019,-0.03669 -0.079097,-0.0367 -0.1198682,-0.108453 -0.039956,-0.07176 -0.039956,-0.221796 V 16.158392 H 8.0903674 v -0.126391 h 0.2275049 v -0.366944 h 0.1516699 v 0.366944 h 0.4052685 v 0.126391 H 8.4695422 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069312,0.06605 0.044033,0.0212 0.1035595,0.0212 0.110083,0 0.2315821,-0.06931 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path896" />
+            </g>
+            <g
+               aria-label=":"
+               id="text58"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 9.5186735,16.905326 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708609 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path899" />
+            </g>
+            <g
+               aria-label="organizations"
+               id="text60"
+               class="f"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="m 4.5094891,19.063278 q -0.1957031,0 -0.313125,-0.136176 -0.1174218,-0.136993 -0.1174218,-0.344927 0,-0.207935 0.1174218,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207934 -0.1174219,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.1214991,0 0.1932569,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932569,-0.09459 -0.1223144,0 -0.1940722,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940722,0.09459 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path902" />
+              <path
+                 d="m 5.213205,19.038 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167979 0.092143,-0.05626 0.2046728,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 5.7505731 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663476,0.06687 -0.081543,0.06686 -0.1590088,0.200595 V 19.038 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path904" />
+              <path
+                 d="m 6.7453973,18.833327 q -0.069311,0.11416 -0.167163,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299262 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011132,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 H 6.897883 v 0.64419 q 0,0.229951 -0.00652,0.280507 -0.00571,0.05137 -0.01957,0.10356 -0.032617,0.121499 -0.1492236,0.191626 -0.115791,0.07013 -0.2805078,0.07013 -0.1655322,0 -0.3351416,-0.0848 v -0.153301 q 0.064419,0.04403 0.1581934,0.07747 0.09459,0.03425 0.1826562,0.03425 0.069311,0 0.1312842,-0.02202 0.061973,-0.02202 0.1002978,-0.0636 0.038325,-0.04159 0.052187,-0.09704 0.013862,-0.05463 0.013862,-0.145962 z m 0,-0.18021 v -0.390591 q -0.080727,-0.0212 -0.150039,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108453 -0.092959,0.295186 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166065,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533007,-0.193257 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path906" />
+              <path
+                 d="m 7.73696,18.833327 q -0.069311,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299262 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524853 v 0.643374 q 0,0.164717 0.034248,0.267461 H 7.7655 Q 7.747561,18.963039 7.73696,18.833386 Z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108453 -0.092959,0.295186 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path908" />
+              <path
+                 d="m 8.1397821,19.038 v -0.910835 h 0.15167 v 0.198965 q 0.065234,-0.10519 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111713 0.026909,0.06931 0.026909,0.272354 V 19.038 h -0.15167 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012231,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508544,0.189995 V 19.038 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path910" />
+              <path
+                 d="M 9.3963592,19.038 V 18.253557 H 9.143576 v -0.126392 h 0.4044531 v 0.784444 H 9.8016277 V 19.038 Z m -0.025278,-1.239453 q 0,-0.05137 0.035063,-0.07665 0.035064,-0.02528 0.06605,-0.02528 0.031802,0 0.066865,0.02528 0.035063,0.02528 0.035063,0.07665 0,0.05056 -0.035063,0.07584 -0.035063,0.02528 -0.066865,0.02528 -0.030986,0 -0.06605,-0.02528 -0.035063,-0.02528 -0.035063,-0.07584 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path912" />
+              <path
+                 d="m 10.124538,19.038 v -0.139438 l 0.55857,-0.645005 h -0.545523 v -0.126392 h 0.746118 v 0.126392 l -0.562646,0.645005 h 0.581401 V 19.038 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path914" />
+              <path
+                 d="m 11.742351,18.833327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.17858,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path916" />
+              <path
+                 d="m 12.906784,19.001306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174501,-0.03669 -0.0791,-0.03669 -0.119869,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 18.203 h 0.227505 v -0.366943 h 0.15167 V 18.203 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path918" />
+              <path
+                 d="m 13.40175,19.038 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 V 19.038 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path920" />
+              <path
+                 d="m 14.522966,19.063278 q -0.195704,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117422,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path922" />
+              <path
+                 d="m 15.149215,19.038 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 19.038 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 19.038 Z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path924" />
+              <path
+                 d="m 16.161164,18.98989 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08643,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 V 18.2821 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path926" />
+            </g>
+            <g
+               aria-label=":"
+               id="text62"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 17.534674,19.076325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path929" />
+            </g>
+            <g
+               aria-label="-"
+               id="text64"
+               class="e"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 4.1931024,20.759698 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path932" />
+            </g>
+            <g
+               aria-label="foo-kubernetes"
+               id="text66"
+               class="e"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 6.3504034,21.209 V 20.500391 H 6.1481768 V 20.374 h 0.2022266 v -0.0424 q 0,-0.18021 0.040771,-0.266645 0.040771,-0.08644 0.1255761,-0.141885 0.08562,-0.05545 0.2258741,-0.05545 0.1060058,0 0.2152734,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.2095654,-0.03914 -0.072573,0 -0.1280225,0.02691 -0.055449,0.02691 -0.087251,0.08807 -0.030986,0.06034 -0.030986,0.205489 v 0.0587 h 0.3612354 v 0.126391 H 6.5020733 V 21.209 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path935" />
+              <path
+                 d="m 7.514837,21.234278 q -0.1957031,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path937" />
+              <path
+                 d="m 8.5161847,21.234278 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948876,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174219,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path939" />
+              <path
+                 d="m 9.2011457,20.759698 v -0.126392 h 0.6327734 v 0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path941" />
+              <path
+                 d="m 10.184554,21.209 v -1.316104 h 0.15167 v 0.826846 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 10.336224,20.719742 V 21.209 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path943" />
+              <path
+                 d="M 11.89451,20.298165 V 21.209 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path945" />
+              <path
+                 d="m 12.286732,20.502838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.180209 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path947" />
+              <path
+                 d="m 13.90536,21.148658 q -0.181841,0.08643 -0.344112,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path949" />
+              <path
+                 d="m 14.226639,21.209 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03832,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159008,0.200596 V 21.209 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path951" />
+              <path
+                 d="m 15.150521,21.209 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 21.209 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 21.209 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path953" />
+              <path
+                 d="m 16.909402,21.148658 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path955" />
+              <path
+                 d="m 17.914827,21.172305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366975 h -0.2275 V 20.374 h 0.227505 v -0.366944 h 0.15167 V 20.374 h 0.405269 v 0.126391 H 17.48428 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path957" />
+              <path
+                 d="m 18.912098,21.148658 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path959" />
+              <path
+                 d="M 19.166512,21.160889 V 21.00025 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path961" />
+            </g>
+            <g
+               aria-label="usages"
+               id="text68"
+               class="f"
+               style="white-space:pre;fill:#e88388">
+              <path
+                 d="m 2.8797714,22.469164 v 0.910835 H 2.7281015 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05626 -0.1793946,0.05626 -0.079912,0 -0.1467773,-0.0424 -0.06605,-0.04322 -0.092144,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.046479,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092144,-0.07583 0.1524854,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path964" />
+              <path
+                 d="m 3.1423398,23.331889 v -0.16064 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023647,-0.02609 -0.1174219,-0.06442 l -0.052188,-0.0212 -0.1051904,-0.04159 Q 3.2564992,22.893189 3.212466,22.836925 3.167617,22.781475 3.167617,22.701564 q 0,-0.11253 0.086436,-0.185103 0.087251,-0.07257 0.2821386,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137808 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.046479,0.02936 0.1516699,0.06768 l 0.1027441,0.03751 q 0.1410694,0.05137 0.1981495,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.091328,0.194888 -0.090513,0.07583 -0.290293,0.07583 -0.1745019,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path966" />
+              <path
+                 d="m 4.7316122,23.175326 q -0.069311,0.11416 -0.167163,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299262 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011132,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524854 v 0.643374 q 0,0.164717 0.034248,0.267461 H 4.7601523 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.080728,-0.0212 -0.150039,-0.0212 -0.1402539,0 -0.2340283,0.108453 -0.092959,0.108452 -0.092959,0.295185 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166065,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533007,-0.193257 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path968" />
+              <path
+                 d="m 5.7427452,23.175326 q -0.069311,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299262 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304688,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524853 v 0.64419 q 0,0.229951 -0.00652,0.280507 -0.00571,0.05137 -0.01957,0.10356 -0.032617,0.121499 -0.1492237,0.191626 -0.115791,0.07013 -0.2805078,0.07013 -0.1655322,0 -0.3351415,-0.08481 v -0.153301 q 0.064419,0.04403 0.1581933,0.07747 0.09459,0.03425 0.1826563,0.03425 0.069311,0 0.1312841,-0.02202 0.061973,-0.02202 0.1002979,-0.0636 0.038325,-0.04159 0.052188,-0.09704 0.013862,-0.05463 0.013862,-0.145962 z m 0,-0.18021 v -0.39059 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108453 -0.092959,0.108452 -0.092959,0.295185 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path970" />
+              <path
+                 d="m 6.8933164,23.319657 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057896,-0.11416 -0.057896,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 6.2784824 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.3245411,-0.09785 z M 6.2874521,22.836108 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path972" />
+              <path
+                 d="m 7.1477303,23.331889 v -0.16064 q 0.091328,0.05953 0.1932568,0.08399 0.1019288,0.02365 0.1728711,0.02365 0.1149756,0 0.1655323,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023647,-0.02609 -0.1174218,-0.06442 l -0.052187,-0.0212 -0.1051905,-0.04159 q -0.1696093,-0.06605 -0.2136425,-0.122314 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.11253 0.086436,-0.185103 0.087251,-0.07257 0.2821386,-0.07257 0.145962,0 0.2764307,0.0424 v 0.137808 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508544,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027442,0.03751 q 0.1410693,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.091328,0.194888 -0.090513,0.07583 -0.2902929,0.07583 -0.174502,0 -0.3587891,-0.07339 z"
+                 style="white-space:pre;fill:#e88388"
+                 id="path974" />
+            </g>
+            <g
+               aria-label=":"
+               id="text70"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 8.5166736,23.418324 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03832 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path977" />
+            </g>
+            <g
+               aria-label="-"
+               id="text72"
+               class="e"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 2.1891025,25.101699 v -0.126392 h 0.6327734 v 0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path980" />
+            </g>
+            <g
+               aria-label="signing"
+               id="text74"
+               class="e"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 4.1449921,25.50289 v -0.160639 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 l -0.052187,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122315 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.112529 0.086436,-0.185102 0.087251,-0.07257 0.2821387,-0.07257 0.1459619,0 0.2764307,0.0424 V 24.7951 Q 4.6652366,24.74128 4.533137,24.74128 q -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027441,0.03751 q 0.1410694,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07583 -0.290293,0.07583 -0.1745019,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path983" />
+              <path
+                 d="M 5.3909686,25.551001 V 24.766557 H 5.1381854 v -0.126391 h 0.4044532 v 0.784443 h 0.2535986 v 0.126392 z m -0.025278,-1.239453 q 0,-0.05137 0.035064,-0.07665 0.035063,-0.02528 0.06605,-0.02528 0.031802,0 0.066865,0.02528 0.035063,0.02528 0.035063,0.07665 0,0.05056 -0.035063,0.07583 -0.035063,0.02528 -0.066865,0.02528 -0.030986,0 -0.06605,-0.02528 -0.035064,-0.02528 -0.035064,-0.07583 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path985" />
+              <path
+                 d="m 6.7453973,25.346328 q -0.069311,0.11416 -0.167163,0.172055 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.1614551,-0.196519 0.1011132,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 H 6.897883 v 0.644189 q 0,0.229951 -0.00652,0.280508 -0.00571,0.05137 -0.01957,0.103559 -0.032617,0.121499 -0.1492236,0.191626 -0.115791,0.07013 -0.2805078,0.07013 -0.1655322,0 -0.3351416,-0.0848 V 25.69207 q 0.064419,0.04403 0.1581934,0.07747 0.09459,0.03425 0.1826562,0.03425 0.069311,0 0.1312842,-0.02202 0.061973,-0.02202 0.1002978,-0.0636 0.038325,-0.04159 0.052187,-0.09704 0.013862,-0.05463 0.013862,-0.145962 z m 0,-0.18021 v -0.390591 q -0.080727,-0.0212 -0.150039,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295185 0,0.135362 0.050557,0.204673 0.051372,0.0685 0.1166065,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533007,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path987" />
+              <path
+                 d="m 7.1384346,25.551001 v -0.910835 h 0.1516699 v 0.198964 q 0.065234,-0.10519 0.1573779,-0.164716 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467774,0.04322 0.06605,0.0424 0.092143,0.111714 0.026909,0.06931 0.026909,0.272353 V 25.551 H 7.7459297 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012231,-0.0424 -0.046479,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path989" />
+              <path
+                 d="M 8.3950116,25.551001 V 24.766557 H 8.1422284 v -0.126391 h 0.4044531 v 0.784443 h 0.2535987 v 0.126392 z m -0.025278,-1.239453 q 0,-0.05137 0.035063,-0.07665 0.035063,-0.02528 0.06605,-0.02528 0.031802,0 0.066865,0.02528 0.035063,0.02528 0.035063,0.07665 0,0.05056 -0.035063,0.07583 -0.035063,0.02528 -0.066865,0.02528 -0.030986,0 -0.06605,-0.02528 -0.035063,-0.02528 -0.035063,-0.07583 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path991" />
+              <path
+                 d="m 9.1411297,25.551001 v -0.910835 h 0.1516699 v 0.198964 q 0.065234,-0.10519 0.1573779,-0.164716 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467774,0.04322 0.06605,0.0424 0.092143,0.111714 0.026909,0.06931 0.026909,0.272353 V 25.551 H 9.7486248 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012231,-0.0424 -0.046479,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720556,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path993" />
+              <path
+                 d="m 10.750788,25.346328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 V 25.69207 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131285,-0.02202 0.06197,-0.02202 0.100297,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path995" />
+            </g>
+            <g
+               aria-label="-"
+               id="text76"
+               class="e"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 2.1891025,27.272698 v -0.126391 h 0.6327734 v 0.126391 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path998" />
+            </g>
+            <g
+               aria-label="key"
+               id="text78"
+               class="e"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 4.175163,27.722 v -1.316103 h 0.1516699 v 0.826845 L 4.7647186,26.811165 H 4.9669452 L 4.5298749,27.232742 4.9783612,27.722 h -0.20875 L 4.3268329,27.232742 V 27.722 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1001" />
+              <path
+                 d="m 5.8932733,27.661658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 5.2784393 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 5.2874091,27.178109 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1003" />
+              <path
+                 d="M 6.4722284,27.685306 6.0514667,26.811165 h 0.1671631 l 0.3351416,0.68333 0.2805078,-0.68333 h 0.1524853 l -0.353081,0.846416 q -0.1117139,0.268277 -0.2128272,0.356343 -0.1002978,0.08807 -0.260122,0.08807 -0.069311,0 -0.1239453,-0.01223 v -0.133731 q 0.062788,0.01957 0.1198681,0.01957 0.073389,0 0.1304688,-0.02854 0.05708,-0.02854 0.104375,-0.101114 0.047295,-0.07257 0.066865,-0.125576 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1005" />
+            </g>
+            <g
+               aria-label="encipherment"
+               id="text80"
+               class="e"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 8.8999256,27.661658 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 8.2850916 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.3245411,-0.09785 z M 8.2940613,27.178109 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1008" />
+              <path
+                 d="M 9.1437391,27.722 V 26.811165 H 9.295409 v 0.198965 q 0.065234,-0.10519 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 V 27.722 H 9.7512342 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720556,0.07583 -0.091328,0.07584 -0.1508545,0.189995 V 27.722 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1010" />
+              <path
+                 d="m 10.911591,27.695906 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1012" />
+              <path
+                 d="m 11.401664,27.722 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 27.722 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1014" />
+              <path
+                 d="m 12.288036,27.015838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1016" />
+              <path
+                 d="m 13.14913,27.722 v -1.316103 h 0.151669 v 0.604233 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 V 27.722 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 27.722 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1018" />
+              <path
+                 d="m 14.908012,27.661658 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1020" />
+              <path
+                 d="m 15.229291,27.722 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06687 -0.159009,0.200595 V 27.722 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1022" />
+              <path
+                 d="m 16.084677,27.722 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 27.722 H 16.83732 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 27.722 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 V 27.722 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1024" />
+              <path
+                 d="m 17.912054,27.661658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 17.30619,27.178109 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1026" />
+              <path
+                 d="m 18.155868,27.722 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 27.722 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 V 27.722 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1028" />
+              <path
+                 d="m 19.918827,27.685306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 26.887 h 0.227505 v -0.366943 h 0.15167 V 26.887 h 0.405268 v 0.126392 H 19.48828 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1030" />
+            </g>
+            <g
+               aria-label="-"
+               id="text82"
+               class="e"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 2.1891025,29.443698 v -0.126392 h 0.6327734 v 0.126392 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1033" />
+            </g>
+            <g
+               aria-label="server"
+               id="text84"
+               class="e"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="M 4.1449921,29.844889 V 29.68425 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 l -0.052187,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122315 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.112529 0.086436,-0.185102 0.087251,-0.07257 0.2821387,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137807 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027441,0.03751 q 0.1410694,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07584 -0.290293,0.07584 -0.1745019,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1036" />
+              <path
+                 d="m 5.8932733,29.832658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 5.2784393 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1038" />
+              <path
+                 d="m 6.2145526,29.893 v -0.910835 h 0.15167 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092143,-0.05626 0.2046728,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 6.7519208 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590087,0.200596 V 29.893 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1040" />
+              <path
+                 d="M 7.4344356,29.893 7.0389522,28.982165 h 0.1663476 l 0.3123096,0.72084 0.318833,-0.72084 H 7.9881123 L 7.5893672,29.893 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1042" />
+              <path
+                 d="m 8.8973163,29.832658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057896,-0.11416 -0.057896,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 8.2824823 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1044" />
+              <path
+                 d="m 9.2185955,29.893 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 V 29.893 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1046" />
+            </g>
+            <g
+               aria-label="auth"
+               id="text86"
+               class="e"
+               style="white-space:pre;fill:#dbab79">
+              <path
+                 d="m 11.746917,29.688327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 H 11.77546 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1049" />
+              <path
+                 d="M 12.899119,28.982165 V 29.893 H 12.74745 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152486,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1051" />
+              <path
+                 d="m 13.912699,29.856305 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366975 h -0.2275 V 29.058 h 0.227505 v -0.366944 h 0.15167 V 29.058 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1053" />
+              <path
+                 d="m 14.152435,29.893 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02038,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.199781 V 29.893 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 29.893 Z"
+                 style="white-space:pre;fill:#dbab79"
+                 id="path1055" />
+            </g>
+            <path
+               class="h"
+               d="m 0,32.565 h 1 v 2.171 H 0 Z"
+               id="path88" />
+            <g
+               id="text90"
+               class="i"
+               style="white-space:pre" />
+            <path
+               class="h"
+               d="m 1.002,32.565 h 5 v 2.171 h -5 z"
+               id="path92" />
+            <g
+               aria-label="kvaps"
+               id="text94"
+               style="font-weight:700;white-space:pre">
+              <path
+                 d="M 1.1691631,34.235001 V 32.918897 H 1.320833 v 0.826846 l 0.4378857,-0.421577 h 0.2022266 l -0.4370703,0.421577 0.4484863,0.489258 h -0.20875 L 1.320833,33.745743 v 0.489258 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1059" />
+              <path
+                 d="M 2.4257402,34.235001 2.0302568,33.324166 h 0.1663477 l 0.3123095,0.720839 0.318833,-0.720839 h 0.1516699 l -0.3987451,0.910835 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1061" />
+              <path
+                 d="m 3.7296123,34.030328 q -0.069312,0.11416 -0.1671631,0.172055 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.1614551,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524853 v 0.643374 q 0,0.164716 0.034248,0.267461 H 3.7581523 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204672 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1063" />
+              <path
+                 d="m 4.2726886,33.528839 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054882,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.161455,0.196519 -0.1011133,0.07176 -0.250337,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353896 H 4.1210187 v -1.264731 h 0.1516699 z m 0,0.180209 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193256 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1065" />
+              <path
+                 d="m 5.1443828,34.18689 v -0.160639 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023647,-0.02609 -0.1174218,-0.06442 l -0.052188,-0.0212 -0.1051905,-0.04159 q -0.1696093,-0.06605 -0.2136425,-0.122315 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.112529 0.086436,-0.185102 0.087251,-0.07257 0.2821386,-0.07257 0.1459619,0 0.2764307,0.0424 V 33.4791 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027442,0.03751 q 0.1410693,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07583 -0.2902929,0.07583 -0.174502,0 -0.3587891,-0.07339 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1067" />
+            </g>
+            <path
+               class="h"
+               d="m 6.012,32.565 h 1 v 2.171 h -1 z"
+               id="path96" />
+            <g
+               id="text98"
+               class="i"
+               style="white-space:pre" />
+            <path
+               class="k"
+               d="m 7.014,32.565 h 1 v 2.171 h -1 z"
+               id="path100" />
+            <g
+               aria-label=""
+               id="text102"
+               style="white-space:pre;fill:#00d7ff">
+              <path
+                 d="m 7.0139999,32.665299 1.0258106,0.990747 -1.0258106,0.992377 z"
+                 style="white-space:pre;fill:#00d7ff"
+                 id="path1071" />
+            </g>
+            <path
+               class="k"
+               d="m 8.016,32.565 h 1 v 2.171 h -1 z"
+               id="path104" />
+            <g
+               id="text106"
+               class="m"
+               style="white-space:pre;fill:#eeeeee" />
+            <path
+               class="k"
+               d="m 9.018,32.565 h 1 v 2.171 h -1 z"
+               id="path108" />
+            <g
+               aria-label="~"
+               id="text110"
+               class="n"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 9.0636637,33.906382 v -0.01468 q 0,-0.106822 0.062788,-0.185103 0.063603,-0.0791 0.1704248,-0.0791 0.026909,0 0.052188,0.0057 0.026094,0.0049 0.058711,0.01794 0.032617,0.01223 0.097852,0.04893 l 0.098667,0.05463 q 0.090513,0.04974 0.1475927,0.04974 0.060342,0 0.088882,-0.04322 0.029356,-0.04403 0.029356,-0.0954 v -0.01305 h 0.1043749 v 0.01305 q 0,0.136176 -0.077466,0.201411 -0.07665,0.06442 -0.1630859,0.06442 -0.080728,0 -0.2136426,-0.07583 l -0.083174,-0.04811 q -0.09459,-0.05382 -0.1524853,-0.05382 -0.032617,0 -0.061157,0.01712 -0.027725,0.01712 -0.044849,0.05463 -0.017124,0.03751 -0.017124,0.06605 v 0.01468 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1075" />
+            </g>
+            <path
+               class="k"
+               d="m 10.02,32.565 h 1 v 2.171 h -1 z"
+               id="path112" />
+            <g
+               aria-label="/"
+               id="text114"
+               class="m"
+               style="white-space:pre;fill:#eeeeee">
+              <path
+                 d="M 10.196133,34.273326 H 10.04691 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#eeeeee"
+                 id="path1078" />
+            </g>
+            <path
+               class="k"
+               d="m 11.022,32.565 h 3 v 2.171 h -3 z"
+               id="path116" />
+            <g
+               aria-label="tmp"
+               id="text118"
+               class="n"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 11.910003,34.198306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119869,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227504 v -0.126391 h 0.227504 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1081" />
+              <path
+                 d="m 12.081243,34.235001 v -0.910835 h 0.132916 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 H 12.46041 V 33.61363 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185917 v 0.525953 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1083" />
+              <path
+                 d="m 13.291341,33.528839 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.180209 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1085" />
+            </g>
+            <path
+               class="k"
+               d="m 14.028,32.565 h 1 v 2.171 h -1 z"
+               id="path120" />
+            <g
+               id="text122"
+               class="m"
+               style="white-space:pre;fill:#eeeeee" />
+            <g
+               aria-label=""
+               id="text124"
+               style="white-space:pre;fill:#005f87">
+              <path
+                 d="M 15.03,32.665299 16.05581,33.656046 15.03,34.648423 Z"
+                 style="white-space:pre;fill:#005f87"
+                 id="path1089" />
+            </g>
+            <g
+               aria-label="kubectl"
+               id="text126"
+               style="white-space:pre;fill:#a8cc8c">
+              <path
+                 d="m 17.201163,34.235001 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1092" />
+              <path
+                 d="m 18.91112,33.324166 v 0.910835 H 18.75945 V 34.03522 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.151669 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1094" />
+              <path
+                 d="m 19.303341,33.528839 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161456,0.196519 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.180209 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1096" />
+              <path
+                 d="m 20.921969,34.174659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1098" />
+              <path
+                 d="m 21.932287,34.208907 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242182,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1100" />
+              <path
+                 d="m 22.928741,34.198306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366975 h -0.2275 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1102" />
+              <path
+                 d="m 23.413107,34.235001 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1104" />
+            </g>
+            <g
+               aria-label="exec"
+               id="text128"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 25.933925,34.174659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1107" />
+              <path
+                 d="m 26.272328,34.235001 h -0.175317 l 0.357974,-0.477027 -0.334327,-0.433808 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194887 l -0.277246,-0.362867 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1109" />
+              <path
+                 d="m 27.93662,34.174659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1111" />
+              <path
+                 d="m 28.946938,34.208907 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106005,-0.0636 -0.165532,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242183,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1113" />
+            </g>
+            <g
+               aria-label="-ti"
+               id="text130"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 30.245102,33.785699 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1116" />
+              <path
+                 d="m 31.94935,34.198306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1118" />
+              <path
+                 d="m 32.444316,34.235001 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253598 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1120" />
+            </g>
+            <g
+               aria-label="deploy/foo-kubernetes-admin"
+               id="text132"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 34.802703,34.030328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1123" />
+              <path
+                 d="m 35.953274,34.174659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1125" />
+              <path
+                 d="m 36.337342,33.528839 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.180209 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1127" />
+              <path
+                 d="m 37.443064,34.235001 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1129" />
+              <path
+                 d="m 38.574881,34.260279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1131" />
+              <path
+                 d="m 39.536272,34.198306 -0.420762,-0.87414 h 0.167164 l 0.335141,0.68333 0.280508,-0.68333 h 0.152485 l -0.353081,0.846416 q -0.111714,0.268276 -0.212827,0.356342 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123945,-0.01223 v -0.13373 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101113 0.04729,-0.07257 0.06686,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1133" />
+              <path
+                 d="m 40.25222,34.273326 h -0.149224 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1135" />
+              <path
+                 d="m 41.415838,34.235001 v -0.708609 h -0.202227 v -0.126391 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125577,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106005,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 v 0.05871 h 0.361235 v 0.126391 h -0.361235 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1137" />
+              <path
+                 d="m 42.580271,34.260279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1139" />
+              <path
+                 d="m 43.581619,34.260279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117421,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1141" />
+              <path
+                 d="m 44.26658,33.785699 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1143" />
+              <path
+                 d="m 45.249988,34.235001 v -1.316104 h 0.15167 v 0.826846 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1145" />
+              <path
+                 d="m 46.959945,33.324166 v 0.910835 h -0.15167 V 34.03522 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1147" />
+              <path
+                 d="m 47.352166,33.528839 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.180209 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1149" />
+              <path
+                 d="m 48.970794,34.174659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 H 48.35596 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1151" />
+              <path
+                 d="m 49.292073,34.235001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1153" />
+              <path
+                 d="m 50.215955,34.235001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 34.235 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1155" />
+              <path
+                 d="m 51.974838,34.174659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1157" />
+              <path
+                 d="m 52.980261,34.198306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366975 h -0.2275 v -0.126391 h 0.227505 v -0.366944 h 0.151669 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1159" />
+              <path
+                 d="m 53.977533,34.174659 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1161" />
+              <path
+                 d="m 54.231946,34.18689 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 V 33.4791 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1163" />
+              <path
+                 d="m 55.281405,33.785699 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1165" />
+              <path
+                 d="m 56.822566,34.030328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.17858,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1167" />
+              <path
+                 d="m 57.833699,34.030328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152486 v 1.316104 H 57.8337 Z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1169" />
+              <path
+                 d="m 58.158241,34.235001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 H 58.537407 V 33.61363 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185917 v 0.525953 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1171" />
+              <path
+                 d="M 59.483313,34.235001 V 33.450557 H 59.23053 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1173" />
+              <path
+                 d="m 60.229432,34.235001 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 34.235 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1175" />
+            </g>
+            <g
+               aria-label="--"
+               id="text134"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 62.309103,33.785699 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1178" />
+              <path
+                 d="m 63.310451,33.785699 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1180" />
+            </g>
+            <g
+               aria-label="sh"
+               id="text136"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 65.266989,34.18689 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08643,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 V 33.4791 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174501,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1183" />
+              <path
+                 d="m 66.257737,34.235001 v -1.316104 h 0.151669 v 0.604234 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.14107,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508829 h -0.15167 V 33.70742 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1185" />
+            </g>
+            <g
+               aria-label=""
+               id="text138"
+               style="white-space:pre;fill:#262626">
+              <path
+                 d="M 106.23581,34.648423 105.21,33.656046 106.23581,32.665299 Z"
+                 style="white-space:pre;fill:#262626"
+                 id="path1188" />
+            </g>
+            <path
+               fill="#262626"
+               d="m 106.212,32.565 h 13 v 2.171 h -13 z"
+               id="path140" />
+            <g
+               aria-label="stage-admin"
+               id="text142"
+               style="white-space:pre;fill:#af5fd7">
+              <path
+                 d="m 106.34899,34.18689 v -0.160639 q 0.0913,0.05953 0.19326,0.08399 0.10193,0.02365 0.17287,0.02365 0.11497,0 0.16553,-0.03669 0.0506,-0.03751 0.0506,-0.09296 0,-0.03669 -0.0236,-0.06279 -0.0237,-0.02609 -0.11742,-0.06442 l -0.0522,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.21364,-0.122315 -0.0449,-0.05545 -0.0449,-0.135361 0,-0.112529 0.0864,-0.185102 0.0873,-0.07257 0.28214,-0.07257 0.14596,0 0.27643,0.0424 V 33.4791 q -0.15004,-0.05382 -0.28214,-0.05382 -0.0962,0 -0.15085,0.03425 -0.0538,0.03343 -0.0538,0.08399 0,0.04893 0.0473,0.07828 0.0465,0.02936 0.15167,0.06768 l 0.10274,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.0571,0.06034 0.0571,0.150854 0,0.118238 -0.0913,0.194888 -0.0905,0.07583 -0.29029,0.07583 -0.1745,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1191" />
+              <path
+                 d="m 108.10135,34.198306 q -0.10682,0.04485 -0.15493,0.053 -0.0481,0.009 -0.093,0.009 -0.0954,0 -0.1745,-0.03669 -0.0791,-0.0367 -0.11987,-0.108453 -0.04,-0.07176 -0.04,-0.221796 v -0.366944 h -0.2275 v -0.126391 h 0.2275 v -0.366944 h 0.15167 v 0.366944 h 0.40527 v 0.126391 h -0.40527 v 0.364497 q 0,0.110083 0.0261,0.155747 0.0261,0.04485 0.0693,0.06605 0.044,0.0212 0.10356,0.0212 0.11008,0 0.23158,-0.06931 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1193" />
+              <path
+                 d="m 108.93961,34.030328 q -0.0693,0.11416 -0.16716,0.172055 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158193 0.0603,-0.282138 0.0603,-0.124761 0.16145,-0.196519 0.10112,-0.07257 0.25034,-0.07257 0.0432,0 0.13047,0.009 0.0131,0.0016 0.0391,0.0041 h 0.15249 v 0.643374 q 0,0.164716 0.0342,0.267461 h -0.15819 q -0.0179,-0.07502 -0.0285,-0.204673 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23403,0.108452 -0.093,0.108452 -0.093,0.295186 0,0.135361 0.0506,0.204672 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1195" />
+              <path
+                 d="m 109.95074,34.030328 q -0.0693,0.11416 -0.16716,0.172055 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158193 0.0603,-0.282138 0.0603,-0.124761 0.16146,-0.196519 0.10111,-0.07257 0.25033,-0.07257 0.0432,0 0.13047,0.009 0.013,0.0016 0.0391,0.0041 h 0.15249 v 0.644189 q 0,0.229951 -0.007,0.280508 -0.006,0.05137 -0.0196,0.103559 -0.0326,0.1215 -0.14922,0.191626 -0.11579,0.07013 -0.28051,0.07013 -0.16553,0 -0.33514,-0.0848 V 34.37607 q 0.0644,0.04403 0.1582,0.07747 0.0946,0.03425 0.18265,0.03425 0.0693,0 0.13129,-0.02202 0.062,-0.02202 0.10029,-0.0636 0.0383,-0.04159 0.0522,-0.09704 0.0139,-0.05463 0.0139,-0.145962 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23402,0.108452 -0.093,0.108452 -0.093,0.295186 0,0.135361 0.0506,0.204672 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1197" />
+              <path
+                 d="m 111.10131,34.174659 q -0.18184,0.08644 -0.34411,0.08644 -0.12313,0 -0.22016,-0.06116 -0.097,-0.06116 -0.15575,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.0554,-0.239737 0.0555,-0.114975 0.15494,-0.178579 0.0995,-0.06442 0.22179,-0.06442 0.16227,0 0.26012,0.115791 0.0987,0.115791 0.0987,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.0391,0.172871 0.04,0.07828 0.10438,0.117422 0.0644,0.03914 0.14677,0.03914 0.14678,0 0.32454,-0.09785 z m -0.60586,-0.48355 h 0.45419 v -0.02202 q 0,-0.111713 -0.0546,-0.177763 -0.0546,-0.06605 -0.14596,-0.06605 -0.0921,0 -0.15983,0.06768 -0.0669,0.06686 -0.0938,0.198149 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1199" />
+              <path
+                 d="m 111.40384,33.785699 v -0.126392 h 0.63277 v 0.126392 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1201" />
+              <path
+                 d="m 112.945,34.030328 q -0.0693,0.11416 -0.16716,0.172055 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158193 0.0603,-0.282138 0.0603,-0.124761 0.16145,-0.196519 0.10112,-0.07257 0.25034,-0.07257 0.0432,0 0.13047,0.009 0.013,0.0016 0.0391,0.0041 h 0.15249 v 0.643374 q 0,0.164716 0.0342,0.267461 h -0.15819 q -0.0179,-0.07502 -0.0285,-0.204673 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23403,0.108452 -0.093,0.108452 -0.093,0.295186 0,0.135361 0.0506,0.204672 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1203" />
+              <path
+                 d="m 113.95613,34.030328 q -0.0693,0.11416 -0.16716,0.172055 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158193 0.0603,-0.282138 0.0603,-0.124761 0.16146,-0.196519 0.10111,-0.07257 0.25033,-0.07257 0.0432,0 0.13047,0.009 0.0131,0.0016 0.0391,0.0041 v -0.405269 h 0.15249 v 1.316104 h -0.15249 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23402,0.108452 -0.093,0.108452 -0.093,0.295186 0,0.135361 0.0506,0.204672 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1205" />
+              <path
+                 d="m 114.28067,34.235001 v -0.910835 h 0.13292 v 0.20875 q 0.0628,-0.132915 0.11661,-0.183472 0.0546,-0.05056 0.11008,-0.05056 0.066,0 0.10601,0.05219 0.0408,0.05137 0.0408,0.146777 v 0.04893 q 0.0269,-0.08317 0.0644,-0.134546 0.0383,-0.05219 0.0791,-0.08236 0.0408,-0.03099 0.0938,-0.03099 0.0587,0 0.10029,0.04974 0.0416,0.04974 0.0416,0.198149 v 0.688223 h -0.13291 v -0.622173 q 0,-0.07665 -0.005,-0.104375 -0.005,-0.02854 -0.0196,-0.04322 -0.0147,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.0913,0.06523 -0.0481,0.06442 -0.0987,0.214458 v 0.504751 h -0.12721 V 33.61363 q 0,-0.120683 -0.0237,-0.141885 -0.0237,-0.0212 -0.0424,-0.0212 -0.0416,0 -0.0897,0.07257 -0.0473,0.07257 -0.0905,0.185917 v 0.525953 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1207" />
+              <path
+                 d="m 115.60575,34.235001 v -0.784444 h -0.25279 v -0.126391 h 0.40446 v 0.784443 h 0.2536 v 0.126392 z m -0.0253,-1.239453 q 0,-0.05137 0.0351,-0.07665 0.0351,-0.02528 0.066,-0.02528 0.0318,0 0.0669,0.02528 0.0351,0.02528 0.0351,0.07665 0,0.05056 -0.0351,0.07583 -0.0351,0.02528 -0.0669,0.02528 -0.031,0 -0.066,-0.02528 -0.0351,-0.02528 -0.0351,-0.07583 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1209" />
+              <path
+                 d="m 116.35187,34.235001 v -0.910835 h 0.15167 v 0.198965 q 0.0652,-0.105191 0.15737,-0.164717 0.0922,-0.05953 0.18429,-0.05953 0.0807,0 0.14678,0.04322 0.0661,0.0424 0.0921,0.111714 0.0269,0.06931 0.0269,0.272353 V 34.235 h -0.15167 v -0.527583 q 0,-0.131285 -0.0131,-0.172871 -0.0122,-0.0424 -0.0465,-0.06931 -0.0334,-0.02691 -0.0734,-0.02691 -0.0799,0 -0.17206,0.07583 -0.0913,0.07583 -0.15085,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1211" />
+            </g>
+            <g
+               aria-label="/"
+               id="text144"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.17613281,36.444323 H 0.02690918 l 0.80482908,-1.341381 h 0.14433105 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1214" />
+            </g>
+            <g
+               aria-label="#"
+               id="text146"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 2.0618955,36.064333 v -0.11416 h 0.1598242 l 0.089697,-0.335142 H 2.0618955 V 35.501687 H 2.339957 L 2.435362,35.140451 H 2.554415 L 2.45901,35.501687 h 0.2307666 l 0.099482,-0.361236 h 0.1190527 l -0.097851,0.361236 h 0.1369922 v 0.113344 h -0.168794 l -0.088882,0.335142 h 0.2576758 v 0.11416 H 2.6579745 l -0.092959,0.341665 H 2.444332 l 0.09459,-0.341665 H 2.3114169 l -0.089697,0.341665 H 2.1010361 l 0.090513,-0.341665 z m 0.2796923,-0.11416 h 0.2283203 l 0.092144,-0.335142 H 2.4288388 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1217" />
+            </g>
+            <g
+               aria-label="kubectl"
+               id="text148"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 4.175163,36.405998 v -1.316103 h 0.1516699 v 0.826845 l 0.4378857,-0.421577 h 0.2022266 l -0.4370703,0.421577 0.4484863,0.489258 h -0.20875 L 4.3268329,35.91674 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1220" />
+              <path
+                 d="m 5.885119,35.495163 v 0.910835 H 5.7334491 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05627 -0.1793946,0.05627 -0.079912,0 -0.1467773,-0.0424 -0.06605,-0.04322 -0.092144,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012232,0.173687 0.013047,0.04159 0.046479,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712403,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1222" />
+              <path
+                 d="m 6.2773407,35.699836 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141602,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1256708 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378077,0 0.2315821,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204672 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1224" />
+              <path
+                 d="m 7.8959688,36.345656 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2811348 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2901045,35.862107 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.145962,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1226" />
+              <path
+                 d="m 8.906286,36.379904 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136992 0.3261719,-0.136992 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133447,0.128023 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097852,-0.0065 0.04811,-0.0073 0.1777636,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1228" />
+              <path
+                 d="m 9.902741,36.369304 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.174502,-0.0367 -0.079097,-0.03669 -0.1198681,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 35.69739 h -0.227505 v -0.126392 h 0.2275049 v -0.366943 h 0.1516699 v 0.366943 H 9.8774627 V 35.69739 H 9.4721941 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069312,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1230" />
+              <path
+                 d="m 10.387107,36.405998 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284584 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1232" />
+            </g>
+            <g
+               aria-label="get"
+               id="text150"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 12.758702,36.201325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.64419 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.1533 q 0.06442,0.04403 0.158193,0.07746 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131285,-0.02202 0.06197,-0.02202 0.100297,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1235" />
+              <path
+                 d="m 13.909274,36.345656 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1237" />
+              <path
+                 d="m 14.914698,36.369304 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 35.69739 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1239" />
+            </g>
+            <g
+               aria-label="node"
+               id="text152"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 16.158391,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1242" />
+              <path
+                 d="m 17.534836,36.431277 q -0.195703,0 -0.313124,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117421,-0.136177 0.313124,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.1215,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1244" />
+              <path
+                 d="m 18.769397,36.201325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1246" />
+              <path
+                 d="m 19.919968,36.345656 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1248" />
+            </g>
+            <g
+               aria-label="No"
+               id="text154"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.25441406,38.577 H 0.10274414 v -1.265547 h 0.1484082 l 0.44767088,0.842339 0.0489258,0.125576 h 0.004077 L 0.747749,38.153792 V 37.311453 H 0.89941892 V 38.577 H 0.747749 l -0.43543944,-0.828477 -0.0611572,-0.132915 0.003262,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1251" />
+              <path
+                 d="m 1.5028369,38.602278 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,38.329109 1.07229,38.121174 q 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1253" />
+            </g>
+            <g
+               aria-label="resources"
+               id="text156"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 3.2098575,38.577 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092144,-0.05626 0.2046728,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 3.7472256 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663476,0.06686 -0.081543,0.06686 -0.1590088,0.200596 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1256" />
+              <path
+                 d="m 4.8912735,38.516658 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 4.2764395 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058643,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.145962,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1258" />
+              <path
+                 d="M 5.1456875,38.528889 V 38.36825 q 0.091328,0.05953 0.1932569,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023647,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 L 5.5346488,38.19783 5.4294584,38.15624 Q 5.259849,38.09019 5.2158158,38.033926 q -0.044849,-0.05545 -0.044849,-0.135362 0,-0.112529 0.086436,-0.185102 0.087251,-0.07257 0.2821387,-0.07257 0.1459619,0 0.2764306,0.0424 v 0.137807 q -0.150039,-0.05382 -0.2821386,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.1027441,0.03751 q 0.1410693,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07583 -0.290293,0.07583 -0.1745019,0 -0.3587891,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1260" />
+              <path
+                 d="m 6.5115324,38.602278 q -0.1957031,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1262" />
+              <path
+                 d="M 7.8871621,37.666165 V 38.577 H 7.7354922 v -0.199781 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 V 37.666165 H 7.279667 v 0.527583 q 0,0.131284 0.012232,0.173686 0.013047,0.04159 0.046479,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1264" />
+              <path
+                 d="m 8.2165956,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092143,-0.05626 0.2046728,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7539638 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590087,0.200596 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1266" />
+              <path
+                 d="m 9.9069817,38.550906 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136993 0.3261719,-0.136993 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133447,0.128022 -0.039956,0.08725 -0.039956,0.179395 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097852,-0.0065 0.04811,-0.0073 0.1777636,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1268" />
+              <path
+                 d="m 10.89936,38.516658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1270" />
+              <path
+                 d="M 11.153774,38.528889 V 38.36825 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08643,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1272" />
+            </g>
+            <g
+               aria-label="found"
+               id="text158"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 13.364403,38.577 V 37.868391 H 13.162177 V 37.742 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144332 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 v 0.0587 h 0.361236 v 0.126391 H 13.516073 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1275" />
+              <path
+                 d="m 14.528837,38.602278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117421,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1277" />
+              <path
+                 d="M 15.904467,37.666165 V 38.577 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1279" />
+              <path
+                 d="m 16.156435,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 38.577 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1281" />
+              <path
+                 d="m 17.766093,38.372327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161456,-0.196519 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 V 38.577 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1283" />
+            </g>
+            <g
+               aria-label="/"
+               id="text160"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.17613281,40.786326 H 0.02690918 l 0.80482908,-1.341382 h 0.14433105 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1286" />
+            </g>
+            <g
+               aria-label="#"
+               id="text162"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 2.0618955,40.406336 v -0.11416 h 0.1598242 l 0.089697,-0.335142 H 2.0618955 V 39.84369 H 2.339957 L 2.435362,39.482454 H 2.554415 L 2.45901,39.84369 h 0.2307666 l 0.099482,-0.361236 h 0.1190527 l -0.097851,0.361236 h 0.1369922 v 0.113344 h -0.168794 l -0.088882,0.335142 h 0.2576758 v 0.11416 H 2.6579745 l -0.092959,0.341665 H 2.444332 l 0.09459,-0.341665 H 2.3114169 l -0.089697,0.341665 H 2.1010361 l 0.090513,-0.341665 z m 0.2796923,-0.11416 h 0.2283203 l 0.092144,-0.335142 H 2.4288388 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1289" />
+            </g>
+            <g
+               aria-label="kubectl"
+               id="text164"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 4.175163,40.748001 v -1.316103 h 0.1516699 v 0.826845 l 0.4378857,-0.421577 h 0.2022266 l -0.4370703,0.421577 0.4484863,0.489258 h -0.20875 L 4.3268329,40.258743 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1292" />
+              <path
+                 d="m 5.885119,39.837166 v 0.910835 H 5.7334491 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05626 -0.1793946,0.05626 -0.079912,0 -0.1467773,-0.0424 -0.06605,-0.04322 -0.092144,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012232,0.173687 0.013047,0.04159 0.046479,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712403,-0.07502 0.092143,-0.07584 0.1524853,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1294" />
+              <path
+                 d="m 6.2773407,40.041839 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.05789 0.1785791,-0.05789 0.1141602,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1256708 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378077,0 0.2315821,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1296" />
+              <path
+                 d="m 7.8959688,40.687659 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2811348 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2901045,40.20411 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.145962,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1298" />
+              <path
+                 d="m 8.906286,40.721907 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136992 0.3261719,-0.136992 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133447,0.128023 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097852,-0.0065 0.04811,-0.0073 0.1777636,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1300" />
+              <path
+                 d="m 9.902741,40.711307 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.174502,-0.03669 -0.079097,-0.03669 -0.1198681,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 v -0.366975 h -0.227505 v -0.126392 h 0.2275049 v -0.366943 h 0.1516699 v 0.366943 h 0.4052686 v 0.126392 H 9.4721941 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069312,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1302" />
+              <path
+                 d="m 10.387107,40.748001 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284584 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1304" />
+            </g>
+            <g
+               aria-label="get"
+               id="text166"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 12.758702,40.543328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 V 40.88907 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131285,-0.02202 0.06197,-0.02202 0.100297,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1307" />
+              <path
+                 d="m 13.909274,40.687659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 13.303409,40.20411 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1309" />
+              <path
+                 d="m 14.914698,40.711307 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 V 39.54609 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1311" />
+            </g>
+            <g
+               aria-label="pod"
+               id="text168"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 16.298645,40.041839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1314" />
+              <path
+                 d="m 17.534836,40.773279 q -0.195703,0 -0.313124,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117421,-0.136177 0.313124,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.1215,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1316" />
+              <path
+                 d="m 18.769397,40.543328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1318" />
+            </g>
+            <g
+               aria-label="-n"
+               id="text170"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 20.225103,40.298699 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1321" />
+              <path
+                 d="m 21.16774,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1323" />
+            </g>
+            <g
+               aria-label="kube-system"
+               id="text172"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 23.213163,40.748001 v -1.316103 h 0.15167 v 0.826845 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1326" />
+              <path
+                 d="m 24.923119,39.837166 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152486,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1328" />
+              <path
+                 d="m 25.31534,40.041839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.17858,-0.05789 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1330" />
+              <path
+                 d="m 26.933968,40.687659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 26.328104,40.20411 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1332" />
+              <path
+                 d="m 27.236493,40.298699 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1334" />
+              <path
+                 d="m 28.18973,40.699891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1336" />
+              <path
+                 d="m 29.515619,40.711307 -0.420762,-0.874141 h 0.167163 l 0.335142,0.68333 0.280508,-0.68333 h 0.152485 l -0.353081,0.846416 q -0.111714,0.268277 -0.212827,0.356343 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123946,-0.01223 v -0.133731 q 0.06279,0.01957 0.119869,0.01957 0.07339,0 0.130468,-0.02854 0.05708,-0.02854 0.104375,-0.101114 0.04729,-0.07257 0.06687,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1338" />
+              <path
+                 d="m 30.192425,40.699891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08643,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290292,0.07584 -0.174502,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1340" />
+              <path
+                 d="m 31.944784,40.711307 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 V 39.54609 h 0.15167 v 0.366943 H 31.9195 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1342" />
+              <path
+                 d="m 32.942054,40.687659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 H 32.32722 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 32.33619,40.20411 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1344" />
+              <path
+                 d="m 33.117371,40.748001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1346" />
+            </g>
+            <g
+               aria-label="NAME"
+               id="text174"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.25441406,42.918999 H 0.10274414 v -1.265547 h 0.1484082 l 0.44767088,0.842339 0.0489258,0.125576 h 0.004077 L 0.747749,42.495791 v -0.842339 h 0.15166992 v 1.265547 H 0.747749 l -0.43543944,-0.828477 -0.0611572,-0.132915 0.003262,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1349" />
+              <path
+                 d="M 1.1864502,42.918999 H 1.0282568 L 1.4180322,41.653452 H 1.5851953 L 1.977417,42.918999 H 1.8037305 L 1.7172949,42.640937 H 1.2720703 Z m 0.1247607,-0.404453 h 0.3693897 l -0.1524854,-0.480288 -0.035879,-0.127207 -0.031802,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1351" />
+              <path
+                 d="m 2.1812744,42.918999 h -0.132915 v -1.265547 h 0.1655322 l 0.2919238,0.833369 0.2919238,-0.833369 h 0.1614551 v 1.265547 H 2.8075244 v -0.80646 l 0.00408,-0.110899 h -0.00408 l -0.035879,0.110899 -0.1957031,0.553677 H 2.4112256 L 2.2130762,42.112539 2.1812744,42.00164 h -0.00408 l 0.00408,0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1353" />
+              <path
+                 d="m 3.8529054,42.77956 v 0.139439 H 3.1695753 v -1.265547 h 0.6702832 v 0.127207 H 3.3342921 v 0.429731 h 0.4550098 v 0.126392 H 3.3342921 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1355" />
+            </g>
+            <g
+               aria-label="READY"
+               id="text176"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 26.338216,42.381631 v 0.537368 h -0.164717 v -1.265547 h 0.338403 q 0.165533,0 0.243814,0.03425 0.07828,0.03343 0.120683,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591187 h -0.195703 l -0.335141,-0.537368 z m 0,-0.127207 h 0.230766 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06524,-0.141069 -0.06442,-0.053 -0.234843,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1358" />
+              <path
+                 d="m 27.90221,42.77956 v 0.139439 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505566 v 0.429731 h 0.455009 v 0.126392 h -0.455009 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1360" />
+              <path
+                 d="m 28.239798,42.918999 h -0.158193 l 0.389775,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08644,-0.278062 h -0.445225 z m 0.124761,-0.404453 h 0.369389 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1362" />
+              <path
+                 d="m 29.182435,42.918999 v -1.265547 h 0.300078 q 0.207119,0 0.307417,0.07257 0.101113,0.07176 0.15167,0.21772 0.05056,0.145962 0.05056,0.345742 0,0.18918 -0.05382,0.332695 -0.053,0.142701 -0.150854,0.220166 -0.09785,0.07665 -0.304971,0.07665 z m 0.164717,-0.139439 h 0.110083 q 0.167163,0 0.238105,-0.05953 0.07176,-0.05953 0.101929,-0.164717 0.03099,-0.106006 0.03099,-0.291924 0,-0.181841 -0.03588,-0.279692 -0.03588,-0.09785 -0.102744,-0.150039 -0.06686,-0.053 -0.219351,-0.053 h -0.123129 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1364" />
+              <path
+                 d="M 30.476522,42.918999 V 42.33352 l -0.376729,-0.680068 h 0.186733 l 0.281324,0.502305 0.280507,-0.502305 h 0.168794 l -0.375913,0.680068 v 0.585479 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1366" />
+            </g>
+            <g
+               aria-label="STATUS"
+               id="text178"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 34.196023,42.89209 v -0.154932 q 0.195703,0.09296 0.355528,0.09296 0.06686,0 0.128022,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.123129 -0.04322,-0.0579 -0.162271,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 Q 34.20907,42.148418 34.20907,41.95353 q 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135362,0 0.261753,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.10519,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319649 0,0.146777 -0.106822,0.251967 -0.106821,0.105191 -0.34248,0.105191 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1369" />
+              <path
+                 d="M 35.487664,42.918999 V 41.79289 h -0.379175 v -0.139438 h 0.923882 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1371" />
+              <path
+                 d="m 36.255799,42.918999 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392221,1.265547 h -0.173686 l -0.08644,-0.278062 h -0.445224 z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1373" />
+              <path
+                 d="M 37.490359,42.918999 V 41.79289 h -0.379174 v -0.139438 h 0.923881 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1375" />
+              <path
+                 d="m 38.176136,41.653452 h 0.164716 v 0.830923 q 0,0.163901 0.02691,0.224243 0.02772,0.05953 0.08399,0.09133 0.05708,0.03099 0.126391,0.03099 0.07339,0 0.130469,-0.03343 0.0579,-0.03425 0.08481,-0.106006 0.02772,-0.07257 0.02772,-0.271538 V 41.65346 h 0.15167 v 0.82603 q 0,0.176948 -0.053,0.277246 -0.05219,0.09948 -0.136992,0.150039 -0.0848,0.05056 -0.213642,0.05056 -0.119053,0 -0.209566,-0.04403 -0.09051,-0.04403 -0.136992,-0.1321 -0.04648,-0.08807 -0.04648,-0.318017 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1377" />
+              <path
+                 d="m 39.202761,42.89209 v -0.154932 q 0.195704,0.09296 0.355528,0.09296 0.06686,0 0.128022,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.123129 -0.04322,-0.0579 -0.162271,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309864,-0.09785 0.135361,0 0.261752,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.10519,0 -0.170424,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319649 0,0.146777 -0.106821,0.251967 -0.106822,0.105191 -0.342481,0.105191 -0.07502,0 -0.143515,-0.01305 -0.06768,-0.01223 -0.17858,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1379" />
+            </g>
+            <g
+               aria-label="RESTARTS"
+               id="text180"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 44.374217,42.381631 v 0.537368 H 44.2095 v -1.265547 h 0.338404 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591187 h -0.195704 l -0.335141,-0.537368 z m 0,-0.127207 h 0.230767 q 0.07746,-0.0424 0.114975,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.141069 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1382" />
+              <path
+                 d="m 45.938211,42.77956 v 0.139439 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505566 v 0.429731 h 0.45501 v 0.126392 h -0.45501 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1384" />
+              <path
+                 d="m 46.218719,42.89209 v -0.154932 q 0.195703,0.09296 0.355527,0.09296 0.06687,0 0.128023,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.123129 -0.04322,-0.0579 -0.16227,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135361,0 0.261753,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.10519,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127208,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207934,0.127207 0.207934,0.319649 0,0.146777 -0.106821,0.251967 -0.106821,0.105191 -0.34248,0.105191 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1386" />
+              <path
+                 d="M 47.51036,42.918999 V 41.79289 h -0.379175 v -0.139438 h 0.923882 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1388" />
+              <path
+                 d="m 48.278494,42.918999 h -0.158193 l 0.389775,-1.265547 h 0.167164 l 0.392221,1.265547 h -0.173686 l -0.08644,-0.278062 h -0.445224 z m 0.124761,-0.404453 h 0.36939 l -0.152486,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1390" />
+              <path
+                 d="m 49.380955,42.381631 v 0.537368 h -0.164717 v -1.265547 h 0.338404 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591187 h -0.195703 l -0.335142,-0.537368 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114975,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.141069 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1392" />
+              <path
+                 d="M 50.514403,42.918999 V 41.79289 h -0.379175 v -0.139438 h 0.923882 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1394" />
+              <path
+                 d="m 51.225457,42.89209 v -0.154932 q 0.195704,0.09296 0.355528,0.09296 0.06686,0 0.128022,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.123129 -0.04322,-0.0579 -0.162271,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309864,-0.09785 0.135361,0 0.261753,0.03914 v 0.141069 q -0.139439,-0.05382 -0.271539,-0.05382 -0.10519,0 -0.170424,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319649 0,0.146777 -0.106821,0.251967 -0.106822,0.105191 -0.342481,0.105191 -0.07502,0 -0.143515,-0.01305 -0.06768,-0.01223 -0.17858,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1396" />
+            </g>
+            <g
+               aria-label="AGE"
+               id="text182"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 55.295103,42.918999 H 55.13691 l 0.389775,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08644,-0.278062 h -0.445225 z m 0.124761,-0.404453 h 0.36939 l -0.152486,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1399" />
+              <path
+                 d="m 56.998536,42.918183 q -0.133731,0.03914 -0.245445,0.03914 -0.158193,0 -0.282138,-0.07828 -0.12313,-0.07828 -0.193257,-0.23566 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.124761,-0.08073 0.273984,-0.08073 0.11253,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260937,-0.07583 -0.09785,0 -0.179395,0.06686 -0.08073,0.06686 -0.130468,0.196518 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09378,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 42.41914 H 56.70742 v -0.126391 h 0.291109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1401" />
+              <path
+                 d="m 57.961558,42.77956 v 0.139439 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505566 v 0.429731 h 0.45501 v 0.126392 h -0.45501 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1403" />
+            </g>
+            <g
+               aria-label="coredns-f9fd979d6-7xfmw"
+               id="text184"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.89289548,45.063906 q -0.15248534,0.05137 -0.29029296,0.05137 -0.13699218,0 -0.24381347,-0.06279 -0.10600585,-0.0636 -0.16553222,-0.17124 -0.0595264,-0.108452 -0.0595264,-0.24626 0,-0.207119 0.13454589,-0.344111 0.13536132,-0.136992 0.32617187,-0.136992 0.14106933,0 0.29844725,0.053 v 0.145962 q -0.15900878,-0.07257 -0.28458495,-0.07257 -0.0831738,0 -0.15656249,0.04159 -0.0733887,0.04077 -0.11334473,0.128023 -0.0399561,0.08725 -0.0399561,0.179394 0,0.12313 0.0766504,0.234844 0.0774658,0.111714 0.24218261,0.111714 0.0497412,0 0.0978516,-0.0065 0.0481104,-0.0073 0.17776366,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1406" />
+              <path
+                 d="m 1.5028369,45.115278 q -0.1957031,0 -0.313125,-0.136176 Q 1.07229,44.84211 1.07229,44.634175 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1408" />
+              <path
+                 d="m 2.2065527,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092143,-0.05627 0.2046728,-0.05627 0.082358,0 0.1647168,0.02528 V 44.50778 H 2.7439209 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590087,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1410" />
+              <path
+                 d="m 3.8879689,45.029658 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 3.2731349 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 3.2821046,44.546109 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.145962,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1412" />
+              <path
+                 d="m 4.7400928,44.885327 q -0.069312,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299262 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 V 43.773897 H 4.8925781 V 45.09 H 4.7400928 Z m 0,-0.18021 v -0.39059 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108453 -0.092959,0.108452 -0.092959,0.295185 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1414" />
+              <path
+                 d="m 5.1331298,45.09 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467774,0.04322 0.06605,0.0424 0.092143,0.111714 0.026909,0.06931 0.026909,0.272353 V 45.09 H 5.7406249 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012231,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07583 -0.1508545,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1416" />
+              <path
+                 d="m 6.1450784,45.04189 v -0.16064 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.0367 -0.023648,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 l -0.052188,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122314 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.11253 0.086436,-0.185103 0.087251,-0.07257 0.2821386,-0.07257 0.1459619,0 0.2764307,0.0424 V 44.3341 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027441,0.03751 q 0.1410694,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.091328,0.194888 -0.090513,0.07583 -0.290293,0.07583 -0.1745019,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1418" />
+              <path
+                 d="m 7.1945363,44.640698 v -0.126391 h 0.6327734 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1420" />
+              <path
+                 d="M 8.3491846,45.09 V 44.381392 H 8.146958 V 44.255 h 0.2022266 v -0.0424 q 0,-0.18021 0.040771,-0.266646 0.040772,-0.08644 0.1255762,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.1060058,0 0.2152734,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.2095654,-0.03914 -0.072573,0 -0.1280225,0.02691 -0.055449,0.02691 -0.087251,0.08807 -0.030986,0.06034 -0.030986,0.205488 v 0.0587 h 0.3612354 v 0.126392 H 8.5008545 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1422" />
+              <path
+                 d="m 9.775371,44.418086 q -0.058711,0.08725 -0.1459619,0.1427 -0.086436,0.05463 -0.1908106,0.05463 -0.098667,0 -0.1875488,-0.04729 -0.088066,-0.04811 -0.1345459,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.1149756,-0.31231 0.115791,-0.13373 0.3041553,-0.13373 0.2217969,0 0.3310644,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.1394384,0.500674 -0.1394385,0.183471 -0.377544,0.183471 -0.1280224,0 -0.248706,-0.03832 v -0.152485 q 0.1353613,0.0636 0.2552295,0.0636 0.1696093,0 0.2625683,-0.155747 0.092959,-0.155747 0.092959,-0.394668 z M 9.4777392,43.913335 q -0.061157,0 -0.1231299,0.03669 -0.061973,0.03588 -0.097852,0.110899 -0.035063,0.07502 -0.035063,0.164717 0,0.114975 0.059526,0.189179 0.060342,0.0742 0.1712402,0.0742 0.1149756,0 0.1883643,-0.08562 0.074204,-0.08644 0.074204,-0.20875 0,-0.123945 -0.072573,-0.202226 -0.071758,-0.0791 -0.1647168,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1424" />
+              <path
+                 d="M 10.35188,45.09 V 44.381392 H 10.149653 V 44.255 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118238,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.0587 h 0.361235 v 0.126392 H 10.50355 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1426" />
+              <path
+                 d="m 11.749526,44.885327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 V 45.09 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1428" />
+              <path
+                 d="m 12.779415,44.418086 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114975,-0.31231 0.115792,-0.13373 0.304156,-0.13373 0.221797,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183471 -0.377544,0.183471 -0.128023,0 -0.248706,-0.03832 v -0.152485 q 0.135361,0.0636 0.255229,0.0636 0.16961,0 0.262569,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1430" />
+              <path
+                 d="m 13.277642,45.09 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.132099,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 H 13.15125 V 43.82445 h 0.803199 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145147,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1432" />
+              <path
+                 d="m 14.78211,44.418086 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114976,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183471 -0.377544,0.183471 -0.128023,0 -0.248706,-0.03832 v -0.152485 q 0.135361,0.0636 0.255229,0.0636 0.16961,0 0.262569,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.171241,0.0742 0.114975,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1434" />
+              <path
+                 d="m 15.754917,44.885327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152486 V 45.09 h -0.152486 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1436" />
+              <path
+                 d="m 16.259668,44.496367 q 0.05871,-0.08725 0.145147,-0.141884 0.08725,-0.05545 0.191625,-0.05545 0.09867,0 0.186734,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139439,-0.499858 0.139438,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114975,0 -0.189179,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1438" />
+              <path
+                 d="m 17.208014,44.640698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1440" />
+              <path
+                 d="m 18.28438,45.09 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106005,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 H 18.157993 V 43.82445 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145146,0.219351 -0.02935,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1442" />
+              <path
+                 d="M 19.246588,45.09 H 19.07127 l 0.357974,-0.477026 -0.334326,-0.433809 h 0.194072 l 0.23729,0.305786 0.230767,-0.305786 h 0.172055 L 19.612716,44.598296 19.988629,45.09 h -0.194888 l -0.277246,-0.362866 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1444" />
+              <path
+                 d="M 20.365356,45.09 V 44.381392 H 20.163129 V 44.255 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.0587 h 0.361235 v 0.126392 h -0.36123 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1446" />
+              <path
+                 d="m 21.086197,45.09 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03832,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100297,0.04974 0.04159,0.04974 0.04159,0.19815 V 45.09 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 45.09 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1448" />
+              <path
+                 d="m 22.194365,45.09 -0.148409,-0.910835 h 0.14107 l 0.08644,0.554492 0.02283,0.128838 0.02202,-0.128838 0.145146,-0.554492 h 0.136177 l 0.163902,0.554492 0.02854,0.128838 0.01875,-0.128838 0.08725,-0.554492 h 0.116607 L 22.867094,45.09 h -0.141885 l -0.174502,-0.586294 -0.02772,-0.128838 h -0.0041 l -0.02528,0.128023 -0.15167,0.587109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1450" />
+            </g>
+            <g
+               aria-label="0/1"
+               id="text186"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 26.552674,43.786944 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113344,-0.181841 -0.113344,-0.490073 0,-0.307417 0.113344,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02773,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1453" />
+              <path
+                 d="m 27.229481,45.128325 h -0.149224 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1455" />
+              <path
+                 d="m 28.517859,44.963609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 V 45.09 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1457" />
+            </g>
+            <g
+               aria-label="Pending"
+               id="text188"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 34.376233,44.628467 V 45.09 h -0.164717 v -1.265547 h 0.314756 q 0.194073,0 0.282954,0.04403 0.08888,0.04322 0.136177,0.127207 0.04729,0.08399 0.04729,0.187548 0,0.121499 -0.0636,0.22669 -0.0636,0.10519 -0.177764,0.16227 -0.113345,0.05627 -0.308233,0.05627 z m 0,-0.126392 h 0.07094 q 0.152485,0 0.226689,-0.03914 0.0742,-0.03996 0.11416,-0.11416 0.03996,-0.07421 0.03996,-0.16064 0,-0.109268 -0.07176,-0.172871 -0.07094,-0.0636 -0.281323,-0.0636 h -0.09867 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1460" />
+              <path
+                 d="m 35.953274,45.029658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 35.34741,44.546109 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1462" />
+              <path
+                 d="m 36.197088,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1464" />
+              <path
+                 d="m 37.806746,44.885327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 V 45.09 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1466" />
+              <path
+                 d="m 38.455013,45.09 v -0.784443 h -0.252784 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 45.09 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1468" />
+              <path
+                 d="M 39.201131,45.09 V 44.179165 H 39.3528 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150855,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1470" />
+              <path
+                 d="m 40.810789,44.885327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1472" />
+            </g>
+            <g
+               aria-label="0"
+               id="text190"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 44.588675,43.786944 q 0.216089,0 0.329434,0.18184 0.113344,0.181026 0.113344,0.488443 0,0.308232 -0.113344,0.490073 -0.113345,0.181025 -0.329434,0.181025 -0.215273,0 -0.329434,-0.181025 -0.113344,-0.181841 -0.113344,-0.490073 0,-0.307417 0.113344,-0.488443 0.114161,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154931,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1475" />
+            </g>
+            <g
+               aria-label="31m"
+               id="text192"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 55.228238,45.067168 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125577,0 0.20712,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126392 h 0.116606 q 0.159009,0 0.229952,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07584 V 43.84486 q 0.154932,-0.0579 0.28377,-0.0579 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.1321,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1478" />
+              <path
+                 d="m 56.574512,44.963609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 V 45.09 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1480" />
+              <path
+                 d="m 57.170591,45.09 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 V 45.09 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 45.09 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1482" />
+            </g>
+            <g
+               aria-label="coredns-f9fd979d6-tdg95"
+               id="text194"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.89289548,47.234908 q -0.15248534,0.05137 -0.29029296,0.05137 -0.13699218,0 -0.24381347,-0.06279 -0.10600585,-0.0636 -0.16553222,-0.17124 -0.0595264,-0.108453 -0.0595264,-0.24626 0,-0.207119 0.13454589,-0.344111 0.13536132,-0.136993 0.32617187,-0.136993 0.14106933,0 0.29844725,0.053 v 0.145962 Q 0.7338867,46.45128 0.60831053,46.45128 q -0.0831738,0 -0.15656249,0.04159 -0.0733887,0.04077 -0.11334473,0.128022 -0.0399561,0.08725 -0.0399561,0.179395 0,0.12313 0.0766504,0.234844 0.0774658,0.111713 0.24218261,0.111713 0.0497412,0 0.0978516,-0.0065 0.0481104,-0.0073 0.17776366,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1485" />
+              <path
+                 d="m 1.5028369,47.28628 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,47.013111 1.07229,46.805176 q 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1487" />
+              <path
+                 d="m 2.2065527,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.070942,-0.112529 0.1622705,-0.167978 0.092143,-0.05626 0.2046728,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 2.7439209 V 46.47085 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590087,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1489" />
+              <path
+                 d="M 3.8879689,47.20066 Q 3.706128,47.2871 3.5438575,47.2871 q -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 3.2731349 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 3.2821046,46.71711 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.145962,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1491" />
+              <path
+                 d="m 4.7400928,47.056329 q -0.069312,0.11416 -0.1671631,0.172055 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.1614551,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 v -0.405269 h 0.1524853 v 1.316104 H 4.7400928 Z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295185 0,0.135362 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1493" />
+              <path
+                 d="m 5.1331298,47.261002 v -0.910835 h 0.1516699 v 0.198964 q 0.065234,-0.10519 0.1573779,-0.164716 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467774,0.04322 0.06605,0.0424 0.092143,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508829 H 5.7406249 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012231,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1495" />
+              <path
+                 d="m 6.1450784,47.212891 v -0.160639 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 l -0.052188,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122315 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.112529 0.086436,-0.185102 0.087251,-0.07257 0.2821386,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137807 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027441,0.03751 q 0.1410694,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07583 -0.290293,0.07583 -0.1745019,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1497" />
+              <path
+                 d="M 7.1945363,46.8117 V 46.685308 H 7.8273097 V 46.8117 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1499" />
+              <path
+                 d="M 8.3491846,47.261002 V 46.552393 H 8.146958 v -0.126391 h 0.2022266 v -0.0424 q 0,-0.18021 0.040771,-0.266645 0.040772,-0.08644 0.1255762,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.1060058,0 0.2152734,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.2095654,-0.03914 -0.072573,0 -0.1280225,0.02691 -0.055449,0.02691 -0.087251,0.08807 -0.030986,0.06034 -0.030986,0.205489 v 0.05871 h 0.3612354 v 0.126391 H 8.5008545 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1501" />
+              <path
+                 d="m 9.775371,46.589088 q -0.058711,0.08725 -0.1459619,0.1427 -0.086436,0.05463 -0.1908106,0.05463 -0.098667,0 -0.1875488,-0.04729 -0.088066,-0.04811 -0.1345459,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179395 0.1149756,-0.31231 0.115791,-0.13373 0.3041553,-0.13373 0.2217969,0 0.3310644,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.1394384,0.500674 -0.1394385,0.183472 -0.377544,0.183472 -0.1280224,0 -0.248706,-0.03833 v -0.152486 q 0.1353613,0.0636 0.2552295,0.0636 0.1696093,0 0.2625683,-0.155747 0.092959,-0.155747 0.092959,-0.394668 z M 9.4777392,46.084337 q -0.061157,0 -0.1231299,0.03669 -0.061973,0.03588 -0.097852,0.110898 -0.035063,0.07502 -0.035063,0.164717 0,0.114976 0.059526,0.18918 0.060342,0.0742 0.1712402,0.0742 0.1149756,0 0.1883643,-0.08562 0.074204,-0.08644 0.074204,-0.20875 0,-0.123945 -0.072573,-0.202227 -0.071758,-0.0791 -0.1647168,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1503" />
+              <path
+                 d="m 10.35188,47.261002 v -0.708609 h -0.202227 v -0.126391 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118238,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 v 0.05871 h 0.361235 v 0.126391 H 10.50355 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1505" />
+              <path
+                 d="m 11.749526,47.056329 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1507" />
+              <path
+                 d="m 12.779415,46.589088 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179395 0.114975,-0.31231 0.115792,-0.13373 0.304156,-0.13373 0.221797,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183472 -0.377544,0.183472 -0.128023,0 -0.248706,-0.03833 v -0.152486 q 0.135361,0.0636 0.255229,0.0636 0.16961,0 0.262569,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1509" />
+              <path
+                 d="m 13.277642,47.261002 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110898 0.121499,-0.17124 l 0.132099,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 H 13.15125 v -0.152485 h 0.803199 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.21935 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1511" />
+              <path
+                 d="m 14.78211,46.589088 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179395 0.114976,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183472 -0.377544,0.183472 -0.128023,0 -0.248706,-0.03833 v -0.152486 q 0.135361,0.0636 0.255229,0.0636 0.16961,0 0.262569,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.171241,0.0742 0.114975,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1513" />
+              <path
+                 d="m 15.754917,47.056329 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152486 v 1.316104 h -0.152486 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1515" />
+              <path
+                 d="m 16.259668,46.667369 q 0.05871,-0.08725 0.145147,-0.141885 0.08725,-0.05545 0.191625,-0.05545 0.09867,0 0.186734,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316386 0.139439,-0.499858 0.139438,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07584 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114975,0 -0.189179,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1517" />
+              <path
+                 d="m 17.208014,46.8117 v -0.126392 h 0.632773 V 46.8117 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1519" />
+              <path
+                 d="m 18.912261,47.224307 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1521" />
+              <path
+                 d="m 19.760308,47.056329 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152486 v 1.316104 h -0.152486 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1523" />
+              <path
+                 d="m 20.761655,47.056329 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149223,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335142,-0.0848 v -0.153301 q 0.06442,0.04403 0.158194,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1525" />
+              <path
+                 d="m 21.791543,46.589088 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179395 0.114975,-0.31231 0.115791,-0.13373 0.304156,-0.13373 0.221796,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183472 -0.377544,0.183472 -0.128023,0 -0.248706,-0.03833 v -0.152486 q 0.135361,0.0636 0.255229,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297631,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164716,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1527" />
+              <path
+                 d="m 22.182949,46.60295 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167978,0.152485 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03832,-0.06768 0.03832,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1529" />
+            </g>
+            <g
+               aria-label="0/1"
+               id="text196"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 26.552674,45.957945 q 0.216089,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113344,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113344,-0.18184 -0.113344,-0.490073 0,-0.307417 0.113344,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247075,0.941006 0.437885,-0.685777 q -0.04159,-0.07583 -0.09051,-0.101928 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.151669 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02773,0.165532 z m 0.492519,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173686 0.06524,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1532" />
+              <path
+                 d="m 27.229481,47.299327 h -0.149224 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1534" />
+              <path
+                 d="m 28.517859,47.13461 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304156 v 0.126392 H 28.207996 V 47.13461 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1536" />
+            </g>
+            <g
+               aria-label="Pending"
+               id="text198"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 34.376233,46.799468 v 0.461534 h -0.164717 v -1.265547 h 0.314756 q 0.194073,0 0.282954,0.04403 0.08888,0.04322 0.136177,0.127207 0.04729,0.08399 0.04729,0.187549 0,0.121499 -0.0636,0.226689 -0.0636,0.105191 -0.177764,0.162271 -0.113345,0.05626 -0.308233,0.05626 z m 0,-0.126391 h 0.07094 q 0.152485,0 0.226689,-0.03914 0.0742,-0.03996 0.11416,-0.11416 0.03996,-0.0742 0.03996,-0.16064 0,-0.109267 -0.07176,-0.172871 -0.07094,-0.0636 -0.281323,-0.0636 h -0.09867 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1539" />
+              <path
+                 d="m 35.953274,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 35.34741,46.71711 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1541" />
+              <path
+                 d="m 36.197088,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.06523,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1543" />
+              <path
+                 d="m 37.806746,47.056329 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1545" />
+              <path
+                 d="m 38.455013,47.261002 v -0.784444 h -0.252784 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239454 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1547" />
+              <path
+                 d="M 39.201131,47.261002 V 46.350167 H 39.3528 v 0.198964 q 0.06524,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1549" />
+              <path
+                 d="m 40.810789,47.056329 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1551" />
+            </g>
+            <g
+               aria-label="0"
+               id="text200"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 44.588675,45.957945 q 0.216089,0 0.329434,0.181841 0.113344,0.181025 0.113344,0.488442 0,0.308233 -0.113344,0.490073 -0.113345,0.181026 -0.329434,0.181026 -0.215273,0 -0.329434,-0.181026 -0.113344,-0.18184 -0.113344,-0.490073 0,-0.307417 0.113344,-0.488442 0.114161,-0.181841 0.329434,-0.181841 z m -0.247075,0.941006 0.437886,-0.685777 q -0.04159,-0.07583 -0.09051,-0.101928 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.151669 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154931,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1554" />
+            </g>
+            <g
+               aria-label="31m"
+               id="text202"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 55.228238,47.23817 v -0.159825 q 0.186733,0.09459 0.323725,0.09459 0.125577,0 0.20712,-0.07584 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126391 h 0.116606 q 0.159009,0 0.229952,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07584 V 46.01584 q 0.154932,-0.05789 0.28377,-0.05789 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.17124,0.135361 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.1321,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1557" />
+              <path
+                 d="m 56.574512,47.13461 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304156 v 0.126392 H 56.264649 V 47.13461 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1559" />
+              <path
+                 d="m 57.170591,47.261002 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525953 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1561" />
+            </g>
+            <g
+               aria-label="/"
+               id="text204"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.17613281,49.470324 H 0.02690918 l 0.80482908,-1.341381 h 0.14433105 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1564" />
+            </g>
+            <g
+               aria-label="#"
+               id="text206"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 2.0618955,49.090334 v -0.11416 h 0.1598242 l 0.089697,-0.335142 H 2.0618955 V 48.527688 H 2.339957 L 2.435362,48.166452 H 2.554415 L 2.45901,48.527688 h 0.2307666 l 0.099482,-0.361236 h 0.1190527 l -0.097851,0.361236 h 0.1369922 v 0.113344 h -0.168794 l -0.088882,0.335142 h 0.2576758 v 0.11416 H 2.6579745 l -0.092959,0.341665 H 2.444332 l 0.09459,-0.341665 H 2.3114169 l -0.089697,0.341665 H 2.1010361 l 0.090513,-0.341665 z m 0.2796923,-0.11416 h 0.2283203 l 0.092144,-0.335142 H 2.4288388 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1567" />
+            </g>
+            <g
+               aria-label="kubectl"
+               id="text208"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 4.175163,49.431999 v -1.316103 h 0.1516699 v 0.826845 l 0.4378857,-0.421577 h 0.2022266 l -0.4370703,0.421577 0.4484863,0.489258 h -0.20875 L 4.3268329,48.942741 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1570" />
+              <path
+                 d="m 5.885119,48.521164 v 0.910835 H 5.7334491 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05627 -0.1793946,0.05627 -0.079912,0 -0.1467773,-0.0424 -0.06605,-0.04322 -0.092144,-0.112529 Q 5.1259533,49.232224 5.1259533,49.03 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012232,0.173687 0.013047,0.04159 0.046479,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712403,-0.07502 0.092143,-0.07584 0.1524853,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1572" />
+              <path
+                 d="m 6.2773407,48.725837 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141602,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1256708 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378077,0 0.2315821,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204672 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1574" />
+              <path
+                 d="m 7.8959688,49.371657 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2811348 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2901045,48.888108 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.145962,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1576" />
+              <path
+                 d="m 8.906286,49.405905 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136992 0.3261719,-0.136992 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133447,0.128023 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097852,-0.0065 0.04811,-0.0073 0.1777636,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1578" />
+              <path
+                 d="m 9.902741,49.395305 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.174502,-0.0367 -0.079097,-0.03669 -0.1198681,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 v -0.366965 h -0.227505 v -0.126392 h 0.2275049 v -0.366943 h 0.1516699 v 0.366943 h 0.4052686 v 0.126392 H 9.4721941 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069312,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1580" />
+              <path
+                 d="m 10.387107,49.431999 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284584 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1582" />
+            </g>
+            <g
+               aria-label="get"
+               id="text210"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 12.758702,49.227326 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.64419 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.1533 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131285,-0.02202 0.06197,-0.02202 0.100297,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1585" />
+              <path
+                 d="m 13.909274,49.371657 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1587" />
+              <path
+                 d="m 14.914698,49.395305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1589" />
+            </g>
+            <g
+               aria-label="cm"
+               id="text212"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 16.924895,49.405905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1592" />
+              <path
+                 d="m 17.091243,49.431999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03832,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100297,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1594" />
+            </g>
+            <g
+               aria-label="-n"
+               id="text214"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 19.223103,48.982697 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1597" />
+              <path
+                 d="m 20.165739,49.431999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1599" />
+            </g>
+            <g
+               aria-label="kube-system"
+               id="text216"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 22.211164,49.431999 v -1.316103 h 0.15167 v 0.826845 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1602" />
+              <path
+                 d="m 23.92112,48.521164 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152486,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1604" />
+              <path
+                 d="m 24.313341,48.725837 q 0.07013,-0.11416 0.167164,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.151669 v -1.316103 h 0.151669 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1606" />
+              <path
+                 d="m 25.931969,49.371657 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 25.326105,48.888108 H 25.7803 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1608" />
+              <path
+                 d="m 26.234494,48.982697 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1610" />
+              <path
+                 d="m 27.187731,49.383889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145961,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1612" />
+              <path
+                 d="m 28.51362,49.395305 -0.420762,-0.874141 h 0.167163 l 0.335142,0.68333 0.280508,-0.68333 h 0.152485 l -0.353081,0.846416 q -0.111714,0.268277 -0.212827,0.356343 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123945,-0.01223 v -0.13373 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130468,-0.02854 0.05708,-0.02854 0.104375,-0.101113 0.0473,-0.07257 0.06687,-0.125577 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1614" />
+              <path
+                 d="m 29.190427,49.383889 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1616" />
+              <path
+                 d="m 30.942785,49.395305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1618" />
+              <path
+                 d="m 31.940055,49.371657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 H 31.32522 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1620" />
+              <path
+                 d="m 32.115373,49.431999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1622" />
+            </g>
+            <g
+               aria-label="NAME"
+               id="text218"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.25441406,51.603001 H 0.10274414 v -1.265547 h 0.1484082 l 0.44767088,0.842339 0.0489258,0.125576 h 0.004077 L 0.747749,51.179793 v -0.842339 h 0.15166992 v 1.265547 H 0.747749 l -0.43543944,-0.828477 -0.0611572,-0.132915 0.003262,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1625" />
+              <path
+                 d="M 1.1864502,51.603001 H 1.0282568 L 1.4180322,50.337454 H 1.5851953 L 1.977417,51.603001 H 1.8037305 L 1.7172949,51.324939 H 1.2720703 Z m 0.1247607,-0.404453 h 0.3693897 l -0.1524854,-0.480289 -0.035879,-0.127207 -0.031802,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1627" />
+              <path
+                 d="m 2.1812744,51.603001 h -0.132915 v -1.265547 h 0.1655322 l 0.2919238,0.833369 0.2919238,-0.833369 h 0.1614551 v 1.265547 H 2.8075244 v -0.80646 l 0.00408,-0.110899 h -0.00408 l -0.035879,0.110899 -0.1957031,0.553676 H 2.4112256 L 2.2130762,50.796541 2.1812744,50.685642 h -0.00408 l 0.00408,0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1629" />
+              <path
+                 d="m 3.8529054,51.463562 v 0.139439 H 3.1695753 v -1.265547 h 0.6702832 v 0.127207 H 3.3342921 v 0.429731 h 0.4550098 v 0.126392 H 3.3342921 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1631" />
+            </g>
+            <g
+               aria-label="DATA"
+               id="text220"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 37.200393,51.603001 v -1.265547 h 0.300078 q 0.207119,0 0.307417,0.07257 0.101113,0.07176 0.15167,0.21772 0.05056,0.145962 0.05056,0.345742 0,0.18918 -0.05382,0.332695 -0.053,0.1427 -0.150854,0.220166 -0.09785,0.07665 -0.304971,0.07665 z m 0.164717,-0.139439 h 0.110083 q 0.167163,0 0.238105,-0.05953 0.07176,-0.05953 0.101929,-0.164717 0.03099,-0.106006 0.03099,-0.291924 0,-0.181841 -0.03588,-0.279692 -0.03588,-0.09785 -0.102744,-0.150039 -0.06686,-0.053 -0.21935,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1634" />
+              <path
+                 d="m 38.260452,51.603001 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392221,1.265547 h -0.173686 l -0.08644,-0.278062 h -0.445224 z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480289 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1636" />
+              <path
+                 d="m 39.495012,51.603001 v -1.126109 h -0.379175 v -0.139438 h 0.923882 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1638" />
+              <path
+                 d="m 40.263147,51.603001 h -0.158193 l 0.389775,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08643,-0.278062 h -0.445225 z m 0.124761,-0.404453 h 0.369389 l -0.152485,-0.480289 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1640" />
+            </g>
+            <g
+               aria-label="AGE"
+               id="text222"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 44.273104,51.603001 H 44.11491 l 0.389776,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08644,-0.278062 H 44.35872 Z m 0.124761,-0.404453 h 0.369389 l -0.152485,-0.480289 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1643" />
+              <path
+                 d="m 45.976536,51.602185 q -0.13373,0.03914 -0.245444,0.03914 -0.158193,0 -0.282139,-0.07828 -0.123129,-0.07828 -0.193256,-0.23566 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260938,-0.07583 -0.09785,0 -0.179394,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09378,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 51.103113 H 45.68543 v -0.126391 h 0.291108 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1645" />
+              <path
+                 d="m 46.939559,51.463562 v 0.139439 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505566 v 0.429731 h 0.455009 v 0.126392 h -0.455009 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1647" />
+            </g>
+            <g
+               aria-label="coredns"
+               id="text224"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.89289548,53.747905 q -0.15248534,0.05137 -0.29029296,0.05137 -0.13699218,0 -0.24381347,-0.06279 -0.10600585,-0.0636 -0.16553222,-0.17124 -0.0595264,-0.108452 -0.0595264,-0.246259 0,-0.20712 0.13454589,-0.344112 0.13536132,-0.136992 0.32617187,-0.136992 0.14106933,0 0.29844725,0.053 v 0.145962 q -0.15900878,-0.07257 -0.28458495,-0.07257 -0.0831738,0 -0.15656249,0.04159 -0.0733887,0.04077 -0.11334473,0.128022 -0.0399561,0.08725 -0.0399561,0.179394 0,0.12313 0.0766504,0.234844 0.0774658,0.111714 0.24218261,0.111714 0.0497412,0 0.0978516,-0.0065 0.0481104,-0.0073 0.17776366,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1650" />
+              <path
+                 d="m 1.5028369,53.799277 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,53.526108 1.07229,53.318173 q 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1652" />
+              <path
+                 d="m 2.2065527,53.773998 v -0.910835 h 0.15167 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092143,-0.05627 0.2046728,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 2.7439209 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590087,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1654" />
+              <path
+                 d="m 3.8879689,53.713656 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 3.2731349 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 3.2821046,53.230107 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.145962,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1656" />
+              <path
+                 d="m 4.7400928,53.569325 q -0.069312,0.114161 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 v -0.405268 h 0.1524853 v 1.316103 H 4.7400928 Z m 0,-0.18021 v -0.39059 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108453 -0.092959,0.108452 -0.092959,0.295185 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1658" />
+              <path
+                 d="m 5.1331298,53.773998 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467774,0.04322 0.06605,0.0424 0.092143,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 5.7406249 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012231,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1660" />
+              <path
+                 d="m 6.1450784,53.725888 v -0.16064 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.0367 -0.023648,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 l -0.052188,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122315 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.11253 0.086436,-0.185103 0.087251,-0.07257 0.2821386,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137808 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027441,0.03751 q 0.1410694,0.05137 0.1981494,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.091328,0.194888 -0.090513,0.07583 -0.290293,0.07583 -0.1745019,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1662" />
+            </g>
+            <g
+               aria-label="1"
+               id="text226"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 37.537165,53.647607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 52.70497 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 v 0.126391 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1665" />
+            </g>
+            <g
+               aria-label="31m"
+               id="text228"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 44.206239,53.751166 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126392 h 0.116606 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.05789,-0.05463 -0.177764,-0.05463 -0.134545,0 -0.289477,0.07583 v -0.144331 q 0.154932,-0.0579 0.283769,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166347,0.07991 0.05626,0.0473 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.132099,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1668" />
+              <path
+                 d="m 45.552513,53.647607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 52.70497 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 H 45.24265 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1670" />
+              <path
+                 d="m 46.148592,53.773998 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1672" />
+            </g>
+            <g
+               aria-label="extension-apiserver-authentication"
+               id="text230"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.88392576,55.884658 q -0.18184082,0.08644 -0.34411132,0.08644 -0.12312988,0 -0.22016601,-0.06116 -0.0970361,-0.06116 -0.15574707,-0.174502 -0.0578955,-0.11416 -0.0578955,-0.243813 0,-0.124761 0.0554492,-0.239737 0.0554492,-0.114975 0.15493164,-0.178579 0.0994824,-0.06442 0.22179687,-0.06442 0.1622705,0 0.26012206,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 0.26909179 q 0,0.09459 0.0391406,0.172871 0.0399561,0.07828 0.104375,0.117422 0.0644189,0.03914 0.14677734,0.03914 0.14677734,0 0.32454101,-0.09785 z m -0.60586424,-0.48355 h 0.45419432 v -0.02202 q 0,-0.111714 -0.0546338,-0.177764 -0.0546338,-0.06605 -0.14596191,-0.06605 -0.0921435,0 -0.15982421,0.06768 -0.0668652,0.06686 -0.0937744,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1675" />
+              <path
+                 d="M 1.2223291,55.945 H 1.0470117 L 1.4049853,55.467973 1.0706592,55.034165 h 0.1940722 l 0.2372901,0.305786 0.2307666,-0.305786 H 1.9048437 L 1.588457,55.453296 1.9643701,55.945 H 1.7694824 L 1.4922363,55.582133 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1677" />
+              <path
+                 d="m 2.8906982,55.908305 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.1745019,-0.03669 -0.079097,-0.0367 -0.1198682,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 55.236391 H 2.0809766 V 55.11 h 0.2275048 v -0.366944 h 0.15167 V 55.11 h 0.4052685 v 0.126391 H 2.4601514 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069311,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1679" />
+              <path
+                 d="m 3.8879689,55.884658 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 3.2731349 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058643,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.145962,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1681" />
+              <path
+                 d="m 4.1317822,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.065234,-0.105191 0.1573779,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012231,-0.0424 -0.046479,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07584 -0.1508544,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1683" />
+              <path
+                 d="M 5.1437304,55.896889 V 55.73625 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 l -0.052188,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122314 -0.044849,-0.05545 -0.044849,-0.135362 0,-0.112529 0.086436,-0.185102 0.087251,-0.07257 0.2821387,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137807 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02935 0.1516699,0.06768 l 0.1027441,0.03751 q 0.1410694,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07583 -0.290293,0.07583 -0.1745019,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1685" />
+              <path
+                 d="M 6.3897073,55.945 V 55.160556 H 6.1369241 v -0.126391 h 0.4044531 v 0.784443 H 6.7949758 V 55.945 Z M 6.364429,54.705547 q 0,-0.05137 0.035063,-0.07665 0.035064,-0.02528 0.06605,-0.02528 0.031802,0 0.066865,0.02528 0.035064,0.02528 0.035064,0.07665 0,0.05056 -0.035064,0.07583 -0.035063,0.02528 -0.066865,0.02528 -0.030986,0 -0.06605,-0.02528 -0.035063,-0.02528 -0.035063,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1687" />
+              <path
+                 d="m 7.510923,55.970278 q -0.1957031,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344926 0,-0.207935 0.1174219,-0.344112 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344112 0,0.207934 -0.1174218,0.344926 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1689" />
+              <path
+                 d="m 8.1371729,55.945 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467774,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 V 55.945 H 8.744668 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012231,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07584 -0.1508545,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1691" />
+              <path
+                 d="m 9.1972314,55.495698 v -0.126392 h 0.6327734 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1693" />
+              <path
+                 d="m 10.738393,55.740327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1695" />
+              <path
+                 d="m 11.281469,55.238838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.17858,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1697" />
+              <path
+                 d="M 12.397793,55.945 V 55.160556 H 12.14501 v -0.126391 h 0.404453 v 0.784443 h 0.253599 V 55.945 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1699" />
+              <path
+                 d="M 13.154512,55.896889 V 55.73625 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1701" />
+              <path
+                 d="m 14.902793,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1703" />
+              <path
+                 d="m 15.224072,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.5292 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1705" />
+              <path
+                 d="m 16.443955,55.945 -0.395483,-0.910835 h 0.166347 l 0.31231,0.72084 0.318833,-0.72084 h 0.15167 L 16.598887,55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1707" />
+              <path
+                 d="m 17.906837,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1709" />
+              <path
+                 d="m 18.228115,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.5292 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1711" />
+              <path
+                 d="m 19.210709,55.495698 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1713" />
+              <path
+                 d="m 20.75187,55.740327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 H 20.78041 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1715" />
+              <path
+                 d="M 21.904073,55.034165 V 55.945 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1717" />
+              <path
+                 d="m 22.917651,55.908305 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 55.11 h 0.227505 v -0.366944 h 0.15167 V 55.11 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1719" />
+              <path
+                 d="m 23.157388,55.945 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.199781 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1721" />
+              <path
+                 d="m 24.916271,55.884658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1723" />
+              <path
+                 d="m 25.160083,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1725" />
+              <path
+                 d="m 26.923043,55.908305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 55.11 h 0.227505 v -0.366944 h 0.15167 V 55.11 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1727" />
+              <path
+                 d="m 27.418008,55.945 v -0.784444 h -0.252784 v -0.126391 h 0.404453 v 0.784443 h 0.253599 V 55.945 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1729" />
+              <path
+                 d="m 28.93063,55.918906 q -0.152485,0.05137 -0.290292,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284584,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1731" />
+              <path
+                 d="m 29.763999,55.740327 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1733" />
+              <path
+                 d="m 30.928433,55.908305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366975 h -0.2275 V 55.11 h 0.227505 v -0.366944 h 0.15167 V 55.11 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1735" />
+              <path
+                 d="m 31.423398,55.945 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253598 V 55.945 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1737" />
+              <path
+                 d="m 32.544614,55.970278 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344926 0,-0.207935 0.117421,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1739" />
+              <path
+                 d="m 33.170863,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1741" />
+            </g>
+            <g
+               aria-label="6"
+               id="text232"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 37.312107,55.351367 q 0.05871,-0.08725 0.145146,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186734,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114975,0.132915 -0.303339,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109268,-0.185918 -0.109268,-0.472133 0,-0.316387 0.139439,-0.499859 0.139438,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135362,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.123129,-0.03588 0.06197,-0.03669 0.09704,-0.111713 0.03588,-0.07584 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165533,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1744" />
+            </g>
+            <g
+               aria-label="31m"
+               id="text234"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 44.206239,55.922168 v -0.159825 q 0.186733,0.09459 0.323725,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126391 h 0.116606 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159008 0,-0.0791 -0.0579,-0.132916 -0.05789,-0.05463 -0.177764,-0.05463 -0.134545,0 -0.289477,0.07583 V 54.69985 q 0.154932,-0.0579 0.283769,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07584 -0.17124,0.135361 0.110083,0.03262 0.166347,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.132099,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1747" />
+              <path
+                 d="m 45.552513,55.818608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 54.87597 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 V 55.945 H 45.24265 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1749" />
+              <path
+                 d="m 46.148592,55.945 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 55.945 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 V 55.945 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141884 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1751" />
+            </g>
+            <g
+               aria-label="kube-proxy"
+               id="text236"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.16716308,58.116001 V 56.799898 H 0.318833 v 0.826845 l 0.43788573,-0.421577 h 0.20222656 l -0.4370703,0.421577 0.44848631,0.489258 H 0.76161131 L 0.318833,57.626743 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1754" />
+              <path
+                 d="m 1.8771191,57.205166 v 0.910835 H 1.7254492 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05626 -0.1793946,0.05626 -0.079912,0 -0.1467773,-0.0424 -0.06605,-0.04322 -0.092144,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 V 57.205166 H 1.269624 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712403,-0.07502 0.092143,-0.07583 0.1524853,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1756" />
+              <path
+                 d="m 2.2693408,57.409839 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141602,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 2.1176709 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378077,0 0.2315821,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1758" />
+              <path
+                 d="m 3.8879689,58.055659 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 3.2731349 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 3.2821046,57.57211 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.145962,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1760" />
+              <path
+                 d="m 4.1904932,57.666699 v -0.126391 h 0.6327734 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1762" />
+              <path
+                 d="m 5.2733837,57.409839 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054882,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.161455,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353897 H 5.1217138 v -1.264732 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1764" />
+              <path
+                 d="m 6.2119436,58.116001 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05627 0.2046729,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 6.7493118 V 57.32585 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1766" />
+              <path
+                 d="m 7.510923,58.141279 q -0.1957031,0 -0.313125,-0.136176 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1768" />
+              <path
+                 d="M 8.2317627,58.116001 H 8.0564453 L 8.414419,57.638975 8.0800928,57.205166 h 0.1940723 l 0.23729,0.305786 0.2307666,-0.305786 h 0.1720557 l -0.3163868,0.419131 0.3759131,0.491704 H 8.778916 L 8.5016699,57.753135 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1770" />
+              <path
+                 d="M 9.473662,58.079307 9.0529003,57.205166 h 0.1671631 l 0.3351416,0.68333 0.2805078,-0.68333 h 0.1524853 l -0.353081,0.846416 q -0.1117139,0.268277 -0.2128271,0.356343 -0.1002979,0.08807 -0.2601221,0.08807 -0.069311,0 -0.1239453,-0.01223 v -0.133731 q 0.062788,0.01957 0.1198681,0.01957 0.073389,0 0.1304688,-0.02854 0.05708,-0.02854 0.104375,-0.101114 0.047295,-0.07257 0.066865,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1772" />
+            </g>
+            <g
+               aria-label="2"
+               id="text238"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 37.961189,58.116001 H 37.1955 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1775" />
+            </g>
+            <g
+               aria-label="31m"
+               id="text240"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 44.206239,58.093169 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07584 -0.305786,-0.07584 h -0.08399 v -0.126392 h 0.116606 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.05789,-0.05463 -0.177764,-0.05463 -0.134545,0 -0.289477,0.07584 V 56.87084 q 0.154932,-0.0579 0.283769,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08643 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166347,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.132099,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1778" />
+              <path
+                 d="m 45.552513,57.98961 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 H 45.24265 V 57.98961 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1780" />
+              <path
+                 d="m 46.148592,58.116001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 58.116 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1782" />
+            </g>
+            <g
+               aria-label="kubeadm-config"
+               id="text242"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.16716308,60.286999 V 58.970895 H 0.318833 v 0.826846 l 0.43788573,-0.421577 h 0.20222656 l -0.4370703,0.421577 0.44848631,0.489258 H 0.76161131 L 0.318833,59.797741 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1785" />
+              <path
+                 d="m 1.8771191,59.376164 v 0.910835 H 1.7254492 v -0.199781 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05627 -0.1793946,0.05627 -0.079912,0 -0.1467773,-0.0424 -0.06605,-0.04322 -0.092144,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 V 59.376164 H 1.269624 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712403,-0.07502 0.092143,-0.07583 0.1524853,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1787" />
+              <path
+                 d="m 2.2693408,59.580837 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141602,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158194 -0.061157,0.282954 -0.060342,0.123946 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 2.1176709 v -1.316104 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378077,0 0.2315821,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1789" />
+              <path
+                 d="m 3.8879689,60.226657 q -0.1818409,0.08643 -0.3441114,0.08643 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.17858 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115792 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 3.2731349 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058643,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.145962,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1791" />
+              <path
+                 d="m 4.7303076,60.082326 q -0.069311,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141601,0 -0.2054882,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.161455,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304688,0.009 0.013047,0.0016 0.039141,0.0041 H 4.882793 v 0.643374 q 0,0.164717 0.034248,0.267461 H 4.7588477 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.150039,-0.0212 -0.1402539,0 -0.2340284,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204672 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1793" />
+              <path
+                 d="m 5.7414403,60.082326 q -0.069311,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141601,0 -0.2054882,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.161455,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304688,0.009 0.013047,0.0016 0.039141,0.0041 V 58.970953 H 5.893926 v 1.316104 H 5.7414403 Z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.150039,-0.0212 -0.1402539,0 -0.2340284,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204672 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1795" />
+              <path
+                 d="m 6.0659817,60.286999 v -0.910835 h 0.132915 v 0.20875 q 0.062788,-0.132915 0.1166065,-0.183472 0.054634,-0.05056 0.110083,-0.05056 0.06605,0 0.1060059,0.05219 0.040771,0.05137 0.040771,0.146777 v 0.04893 q 0.026909,-0.08317 0.064419,-0.134546 0.038325,-0.05219 0.079097,-0.08236 0.040771,-0.03099 0.093774,-0.03099 0.058711,0 0.1002978,0.04974 0.041587,0.04974 0.041587,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.00489,-0.104375 -0.00489,-0.02854 -0.01957,-0.04322 -0.014678,-0.01468 -0.031802,-0.01468 -0.042402,0 -0.091328,0.06524 -0.04811,0.06442 -0.098667,0.214458 v 0.504751 h -0.127207 v -0.621358 q 0,-0.120683 -0.023648,-0.141884 -0.023647,-0.0212 -0.042402,-0.0212 -0.041587,0 -0.089697,0.07257 -0.047295,0.07257 -0.090513,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1797" />
+              <path
+                 d="m 7.1945363,59.837697 v -0.126392 h 0.6327734 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1799" />
+              <path
+                 d="m 8.9036768,60.260905 q -0.1524854,0.05137 -0.290293,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060058,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345458,-0.344111 0.1353614,-0.136993 0.3261719,-0.136993 0.1410693,0 0.2984473,0.053 v 0.145962 q -0.1590088,-0.07257 -0.284585,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133447,0.128022 -0.039956,0.08725 -0.039956,0.179395 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097852,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1801" />
+              <path
+                 d="m 9.5136181,60.312277 q -0.1957031,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344926 0,-0.207935 0.1174219,-0.344112 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344112 0,0.207934 -0.1174219,0.344926 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1803" />
+              <path
+                 d="m 10.139868,60.286999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1805" />
+              <path
+                 d="M 11.353227,60.286999 V 59.57839 h -0.202226 v -0.126391 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126391 h -0.361235 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1807" />
+              <path
+                 d="M 12.397793,60.286999 V 59.502555 H 12.14501 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1809" />
+              <path
+                 d="m 13.752222,60.082326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1811" />
+            </g>
+            <g
+               aria-label="2"
+               id="text244"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 37.961189,60.286999 H 37.1955 V 60.14756 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125577 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.05789 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1814" />
+            </g>
+            <g
+               aria-label="31m"
+               id="text246"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 44.206239,60.264167 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07584 -0.305786,-0.07584 h -0.08399 v -0.126391 h 0.116606 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159008 0,-0.0791 -0.0579,-0.132915 -0.05789,-0.05463 -0.177764,-0.05463 -0.134545,0 -0.289477,0.07583 v -0.144331 q 0.154932,-0.0579 0.283769,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.17124,0.135361 0.110083,0.03262 0.166347,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.132099,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1817" />
+              <path
+                 d="m 45.552513,60.160607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 59.21797 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 H 45.24265 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1819" />
+              <path
+                 d="m 46.148592,60.286999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141884 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1821" />
+            </g>
+            <g
+               aria-label="kubelet-config-1.19"
+               id="text248"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.16716308,62.458 V 61.141897 H 0.318833 v 0.826845 L 0.75671873,61.547165 H 0.95894529 L 0.52187499,61.968742 0.9703613,62.458 H 0.76161131 L 0.318833,61.968742 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1824" />
+              <path
+                 d="M 1.8771191,61.547165 V 62.458 H 1.7254492 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05627 -0.1793946,0.05627 -0.079912,0 -0.1467773,-0.0424 -0.06605,-0.04322 -0.092144,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 V 61.547165 H 1.269624 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712403,-0.07502 0.092143,-0.07584 0.1524853,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1826" />
+              <path
+                 d="m 2.2693408,61.751838 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141602,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 2.1176709 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378077,0 0.2315821,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1828" />
+              <path
+                 d="m 3.8879689,62.397658 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 3.2731349 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 3.2821046,61.914109 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.145962,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1830" />
+              <path
+                 d="M 4.3764111,62.458 V 61.269104 H 4.1040576 v -0.127207 h 0.4240235 v 1.189712 H 4.812666 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1832" />
+              <path
+                 d="m 5.8906639,62.397658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 5.27583 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z M 5.2847997,61.914109 H 5.738994 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1834" />
+              <path
+                 d="m 6.8960891,62.421306 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.174502,-0.0367 -0.079097,-0.03669 -0.1198681,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 61.749392 H 6.0863675 V 61.623 H 6.3138723 V 61.256057 H 6.4655422 V 61.623 h 0.4052686 v 0.126392 H 6.4655422 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069312,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1836" />
+              <path
+                 d="m 7.1945363,62.008698 v -0.126391 h 0.6327734 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1838" />
+              <path
+                 d="m 8.9036768,62.431906 q -0.1524854,0.05137 -0.290293,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060058,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345458,-0.344111 0.1353614,-0.136992 0.3261719,-0.136992 0.1410693,0 0.2984473,0.053 v 0.145962 q -0.1590088,-0.07257 -0.284585,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133447,0.128023 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097852,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1840" />
+              <path
+                 d="m 9.5136181,62.483279 q -0.1957031,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1842" />
+              <path
+                 d="m 10.139868,62.458 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 62.458 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1844" />
+              <path
+                 d="M 11.353227,62.458 V 61.749392 H 11.151001 V 61.623 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.0587 h 0.361235 v 0.126392 h -0.36123 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1846" />
+              <path
+                 d="M 12.397793,62.458 V 61.673557 H 12.14501 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 62.458 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1848" />
+              <path
+                 d="m 13.752222,62.253327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.1533 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1850" />
+              <path
+                 d="m 14.20397,62.008698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1852" />
+              <path
+                 d="m 15.483379,62.331609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 V 62.458 h -0.765688 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1854" />
+              <path
+                 d="m 16.522236,62.496325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1856" />
+              <path
+                 d="m 17.486075,62.331609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 H 17.9419 V 62.458 h -0.765688 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1858" />
+              <path
+                 d="m 18.7875,61.786086 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187548,-0.0473 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08643 -0.04648,-0.200595 0,-0.179395 0.114976,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139438,0.183471 -0.377544,0.183471 -0.128022,0 -0.248706,-0.03833 v -0.152485 q 0.135361,0.0636 0.255229,0.0636 0.16961,0 0.262569,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.0367 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.171241,0.0742 0.114975,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1860" />
+            </g>
+            <g
+               aria-label="1"
+               id="text250"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 37.537165,62.331609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 V 62.458 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1863" />
+            </g>
+            <g
+               aria-label="31m"
+               id="text252"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 44.206239,62.435168 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07584 -0.305786,-0.07584 h -0.08399 v -0.126392 h 0.116606 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.05789,-0.05463 -0.177764,-0.05463 -0.134545,0 -0.289477,0.07584 V 61.21285 q 0.154932,-0.0579 0.283769,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08643 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166347,0.07991 0.05626,0.0473 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.132099,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1866" />
+              <path
+                 d="m 45.552513,62.331609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 V 62.458 H 45.24265 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1868" />
+              <path
+                 d="m 46.148592,62.458 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 V 62.458 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 62.458 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1870" />
+            </g>
+            <g
+               aria-label="/"
+               id="text254"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.17613281,64.667323 H 0.02690918 l 0.80482908,-1.341382 h 0.14433105 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1873" />
+            </g>
+            <g
+               aria-label="#"
+               id="text256"
+               class="g"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 2.0618955,64.287333 v -0.11416 h 0.1598242 l 0.089697,-0.335142 H 2.0618955 V 63.724686 H 2.339957 L 2.435362,63.363451 H 2.554415 L 2.45901,63.724686 h 0.2307666 l 0.099482,-0.361235 h 0.1190527 l -0.097851,0.361235 h 0.1369922 v 0.113345 h -0.168794 l -0.088882,0.335142 h 0.2576758 v 0.11416 H 2.6579745 l -0.092959,0.341665 H 2.444332 l 0.09459,-0.341665 H 2.3114169 l -0.089697,0.341665 H 2.1010361 l 0.090513,-0.341665 z m 0.2796923,-0.11416 h 0.2283203 l 0.092144,-0.335142 H 2.4288388 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1876" />
+            </g>
+          </svg>
+        </svg>
+      </g>
+    </svg>
+  </g>
+</svg>
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot05.svg b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot05.svg
new file mode 100644
index 0000000000..de3446716c
--- /dev/null
+++ b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot05.svg
@@ -0,0 +1,5893 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<svg
+   width="1190"
+   height="626.77155"
+   version="1.1"
+   id="svg480"
+   sodipodi:docname="3.svg"
+   inkscape:version="1.1.1 (c3084ef, 2021-09-22)"
+   xmlns:inkscape="http://www.inkscape.org/namespaces/inkscape"
+   xmlns:sodipodi="http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd"
+   xmlns="http://www.w3.org/2000/svg"
+   xmlns:svg="http://www.w3.org/2000/svg">
+  <defs
+     id="defs484">
+    <clipPath
+       clipPathUnits="userSpaceOnUse"
+       id="clipPath832">
+      <rect
+         style="fill:#ff0000"
+         id="rect834"
+         width="1333.6219"
+         height="656.03113"
+         x="-83.158875"
+         y="-29.259604" />
+    </clipPath>
+  </defs>
+  <sodipodi:namedview
+     id="namedview482"
+     pagecolor="#ffffff"
+     bordercolor="#666666"
+     borderopacity="1.0"
+     inkscape:pageshadow="2"
+     inkscape:pageopacity="0.0"
+     inkscape:pagecheckerboard="0"
+     showgrid="false"
+     inkscape:zoom="0.64935944"
+     inkscape:cx="535.14276"
+     inkscape:cy="321.85564"
+     inkscape:window-width="1416"
+     inkscape:window-height="814"
+     inkscape:window-x="12"
+     inkscape:window-y="25"
+     inkscape:window-maximized="0"
+     inkscape:current-layer="svg480" />
+  <g
+     id="g726"
+     clip-path="url(#clipPath832)">
+    <path
+       id="rect2"
+       class="a"
+       style="fill:#282d35"
+       d="M 0,0 H 1190 V 651.29999 H 0 Z" />
+    <svg
+       height="651.29999"
+       viewBox="0 0 119 65.13"
+       width="1190"
+       version="1.1"
+       id="svg478">
+      <style
+         id="style4">.a{fill:#282d35}.e{fill:#00d7ff}.f,.g{fill:#000;white-space:pre}.g{font-weight:700}.h{fill:#005f87}.i{fill:#00d7ff;white-space:pre}.j{fill:#eee}.j,.k,.l,.m{white-space:pre}.k{fill:#fff;font-weight:700}.l,.m{fill:#005f87}.m{fill:#a8cc8c}.n{fill:#b9c0cb}.n,.o{white-space:pre}.o,.p{fill:#262626}.q{fill:#af5fd7}.q,.r{white-space:pre}.r,.s{fill:#303030}.t,.u{fill:#afd700;white-space:pre}.u{fill:#71bef2;font-weight:700}</style>
+      <g
+         font-family="Monaco, Consolas, Menlo, 'Bitstream Vera Sans Mono', 'Powerline Symbols', monospace"
+         font-size="1.67px"
+         id="g476">
+        <defs
+           id="defs12">
+          <symbol
+             id="a">
+            <path
+               fill="transparent"
+               d="M 0,0 H 119 V 30 H 0 Z"
+               id="path6" />
+          </symbol>
+          <symbol
+             id="b">
+            <path
+               fill="#6f7683"
+               d="M 0,0 H 1.102 V 2.171 H 0 Z"
+               id="path9" />
+          </symbol>
+        </defs>
+        <path
+           class="a"
+           d="M 0,0 H 119 V 65.13 H 0 Z"
+           id="path14"
+           style="fill:#000000" />
+        <svg
+           width="119"
+           version="1.1"
+           id="svg474"
+           height="100%">
+          <svg
+             version="1.1"
+             id="svg472"
+             width="100%"
+             height="100%">
+            <g
+               id="use16">
+              <path
+                 fill="transparent"
+                 d="M 0,0 H 119 V 30 H 0 Z"
+                 id="path1100" />
+            </g>
+            <g
+               id="use18"
+               transform="translate(38.995998,62.933998)">
+              <path
+                 fill="#6f7683"
+                 d="M 0,0 H 1.102 V 2.171 H 0 Z"
+                 id="path1104" />
+            </g>
+            <path
+               class="e"
+               d="M 0,0 H 1 V 2.171 H 0 Z"
+               id="path20" />
+            <g
+               id="text22"
+               class="f"
+               style="white-space:pre" />
+            <path
+               class="e"
+               d="m 1.002,0 h 5 v 2.171 h -5 z"
+               id="path24" />
+            <g
+               aria-label="kvaps"
+               id="text26"
+               class="g"
+               style="font-weight:700;white-space:pre">
+              <path
+                 d="M 1.1691631,1.67 V 0.35389648 H 1.320833 V 1.1807422 L 1.7587187,0.75916502 H 1.9609453 L 1.523875,1.1807422 1.9723613,1.67 h -0.20875 L 1.320833,1.1807422 V 1.67 Z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1110" />
+              <path
+                 d="M 2.4257402,1.67 2.0302568,0.75916502 H 2.1966045 L 2.508914,1.4800048 2.827747,0.75916502 H 2.9794169 L 2.5806718,1.67 Z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1112" />
+              <path
+                 d="m 3.7296123,1.4653271 q -0.069312,0.1141602 -0.1671631,0.1720557 -0.097036,0.057896 -0.1785791,0.057896 -0.1141602,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581934 0.060342,-0.2821387 0.060342,-0.1247607 0.1614551,-0.19651851 0.1011133,-0.0725733 0.2503369,-0.0725733 0.043218,0 0.1304687,0.00897 0.013047,0.001631 0.039141,0.004077 H 3.8820976 V 1.402539 q 0,0.1647168 0.034248,0.267461 H 3.7581523 q -0.017939,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.080728,-0.0212012 -0.1500391,-0.0212012 -0.1402539,0 -0.2340283,0.10845215 -0.092959,0.10845218 -0.092959,0.29518558 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166064,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1114" />
+              <path
+                 d="m 4.2726886,0.96383787 q 0.070127,-0.11416016 0.1671631,-0.17205566 0.097036,-0.0578955 0.1785791,-0.0578955 0.1141601,0 0.2054882,0.098667 0.091328,0.098667 0.091328,0.29926271 0,0.1581933 -0.061157,0.2829541 -0.060342,0.1239453 -0.161455,0.1965185 -0.1011133,0.071758 -0.250337,0.071758 -0.042402,0 -0.1304687,-0.00897 Q 4.2987823,1.6724462 4.2726886,1.67 V 2.0238964 H 4.1210187 V 0.75916502 h 0.1516699 z m 0,0.18020993 v 0.3905908 q 0.082358,0.021201 0.1516699,0.021201 0.1378076,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.051372,-0.20467283 -0.051372,-0.0684961 -0.1166064,-0.0684961 -0.070942,0 -0.1565625,0.0717578 -0.084805,0.0717578 -0.1533008,0.19325681 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1116" />
+              <path
+                 d="M 5.1443828,1.6218896 V 1.46125 q 0.091328,0.059526 0.1932568,0.083989 0.1019287,0.023648 0.1728711,0.023648 0.1149756,0 0.1655322,-0.036694 0.050557,-0.03751 0.050557,-0.092959 0,-0.036694 -0.023648,-0.062788 -0.023647,-0.026094 -0.1174218,-0.064419 L 5.5333428,1.2908252 5.4281523,1.2492382 Q 5.258543,1.1831884 5.2145098,1.1269238 5.1696611,1.0714746 5.1696611,0.99156247 q 0,-0.11252929 0.086436,-0.18510253 0.087251,-0.0725732 0.2821386,-0.0725732 0.1459619,0 0.2764307,0.0424023 V 0.91409666 Q 5.6646269,0.8602783 5.5325273,0.8602783 q -0.096221,0 -0.1508545,0.034248 -0.053818,0.0334326 -0.053818,0.0839893 0,0.0489258 0.047295,0.0782812 0.04648,0.029355 0.1516699,0.067681 l 0.1027442,0.03751 q 0.1410693,0.051372 0.1981494,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.091328,0.1948877 -0.090513,0.075835 -0.2902929,0.075835 -0.174502,0 -0.3587891,-0.073389 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1118" />
+            </g>
+            <path
+               class="e"
+               d="m 6.012,0 h 1 v 2.171 h -1 z"
+               id="path28" />
+            <g
+               id="text30"
+               class="f"
+               style="white-space:pre" />
+            <path
+               class="h"
+               d="m 7.014,0 h 1 v 2.171 h -1 z"
+               id="path32" />
+            <g
+               aria-label=""
+               id="text34"
+               class="i"
+               style="white-space:pre;fill:#00d7ff">
+              <path
+                 d="M 7.0139999,0.10029785 8.0398105,1.0910449 7.0139999,2.0834228 Z"
+                 style="white-space:pre;fill:#00d7ff"
+                 id="path1122" />
+            </g>
+            <path
+               class="h"
+               d="m 8.016,0 h 1 v 2.171 h -1 z"
+               id="path36" />
+            <g
+               id="text38"
+               class="j"
+               style="white-space:pre;fill:#eeeeee" />
+            <path
+               class="h"
+               d="m 9.018,0 h 1 v 2.171 h -1 z"
+               id="path40" />
+            <g
+               aria-label="~"
+               id="text42"
+               class="k"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 9.0636637,1.3413818 v -0.014678 q 0,-0.1068213 0.062788,-0.1851026 0.063603,-0.079097 0.1704248,-0.079097 0.026909,0 0.052188,0.00571 0.026094,0.00489 0.058711,0.017939 0.032617,0.012231 0.097852,0.048926 l 0.098667,0.054634 q 0.090513,0.049741 0.1475927,0.049741 0.060342,0 0.088882,-0.043218 0.029356,-0.044033 0.029356,-0.095405 V 1.0877832 H 9.9744986 V 1.10083 q 0,0.1361768 -0.077466,0.2014112 -0.07665,0.064419 -0.1630859,0.064419 -0.080728,0 -0.2136426,-0.075835 l -0.083174,-0.04811 q -0.09459,-0.053818 -0.1524853,-0.053818 -0.032617,0 -0.061157,0.017124 -0.027725,0.017124 -0.044849,0.054634 -0.017124,0.03751 -0.017124,0.06605 v 0.014678 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1126" />
+            </g>
+            <path
+               class="h"
+               d="m 10.02,0 h 1 v 2.171 h -1 z"
+               id="path44" />
+            <g
+               aria-label="/"
+               id="text46"
+               class="j"
+               style="white-space:pre;fill:#eeeeee">
+              <path
+                 d="M 10.196133,1.7083252 H 10.04691 l 0.804829,-1.34138185 h 0.144331 z"
+                 style="white-space:pre;fill:#eeeeee"
+                 id="path1129" />
+            </g>
+            <path
+               class="h"
+               d="m 11.022,0 h 8 v 2.171 h -8 z"
+               id="path48" />
+            <g
+               aria-label="kubefarm"
+               id="text50"
+               class="k"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="M 11.189163,1.67 V 0.35389648 h 0.15167 V 1.1807422 l 0.437886,-0.42157718 h 0.202227 L 11.543875,1.1807422 11.992362,1.67 h -0.20875 L 11.340833,1.1807422 V 1.67 Z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1132" />
+              <path
+                 d="M 12.899119,0.75916502 V 1.67 H 12.74745 V 1.4702197 q -0.07339,0.1125293 -0.163086,0.1687939 -0.0897,0.056265 -0.179395,0.056265 -0.07991,0 -0.146777,-0.042402 -0.06605,-0.043218 -0.09214,-0.1125293 -0.02609,-0.070127 -0.02609,-0.2723535 V 0.75916502 h 0.15167 V 1.286748 q 0,0.1312842 0.01223,0.1736865 0.01305,0.041587 0.04648,0.068496 0.03425,0.026909 0.07339,0.026909 0.07991,0 0.17124,-0.07502 0.09214,-0.075835 0.152486,-0.1908106 V 0.75916502 Z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1134" />
+              <path
+                 d="m 13.291341,0.96383787 q 0.07013,-0.11416016 0.167163,-0.17205566 0.09704,-0.0578955 0.178579,-0.0578955 0.11416,0 0.205489,0.098667 0.09133,0.098667 0.09133,0.29926271 0,0.1581933 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101113,0.071758 -0.250336,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 h -0.15167 V 0.35389648 h 0.15167 z m 0,0.18020993 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.20467283 -0.05137,-0.0684961 -0.116607,-0.0684961 -0.07094,0 -0.156562,0.0717578 -0.0848,0.0717578 -0.153301,0.19325681 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1136" />
+              <path
+                 d="m 14.909969,1.6096582 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.16227,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 14.304105,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145961,-0.0660498 -0.09214,0 -0.159825,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1138" />
+              <path
+                 d="M 15.365794,1.67 V 0.96139158 h -0.202226 v -0.1263916 h 0.202226 v -0.0424023 q 0,-0.18020996 0.04077,-0.26664551 0.04077,-0.0864355 0.125576,-0.14188476 0.08562,-0.0554492 0.225874,-0.0554492 0.106006,0 0.215273,0.0220166 v 0.14433105 q -0.118237,-0.0391406 -0.209565,-0.0391406 -0.07257,0 -0.128023,0.0269092 -0.05545,0.0269092 -0.08725,0.0880664 -0.03099,0.0603418 -0.03099,0.20548827 v 0.0587109 H 15.8787 v 0.1263916 H 15.517464 V 1.67 Z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1140" />
+              <path
+                 d="m 16.753655,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101113,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152486 V 1.402539 q 0,0.1647168 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140253,0 -0.234028,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.1533,-0.1932568 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1142" />
+              <path
+                 d="M 17.233944,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.07094,-0.1125293 0.16227,-0.16797851 0.09214,-0.0562647 0.204673,-0.0562647 0.08236,0 0.164717,0.0252783 V 1.0877832 H 17.771312 V 0.87984861 q -0.03833,-0.006523 -0.06034,-0.006523 -0.0848,0 -0.166347,0.0668652 -0.08154,0.0668652 -0.159009,0.20059569 V 1.67 Z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1144" />
+              <path
+                 d="M 18.08933,1.67 V 0.75916502 h 0.132915 v 0.20874999 q 0.06279,-0.13291503 0.116606,-0.18347167 0.05463,-0.0505566 0.110083,-0.0505566 0.06605,0 0.106006,0.0521875 0.04077,0.0513721 0.04077,0.14677734 v 0.0489258 q 0.02691,-0.0831738 0.06442,-0.1345459 0.03833,-0.0521875 0.0791,-0.0823584 0.04077,-0.0309863 0.09377,-0.0309863 0.05871,0 0.100298,0.0497412 0.04159,0.0497412 0.04159,0.19814941 V 1.67 H 18.841971 V 1.0478271 q 0,-0.0766504 -0.0049,-0.10437498 -0.0049,-0.02854 -0.01957,-0.0432178 -0.01468,-0.0146777 -0.0318,-0.0146777 -0.0424,0 -0.09133,0.0652344 -0.04811,0.0644189 -0.09867,0.21445801 V 1.67 H 18.468504 V 1.0486426 q 0,-0.12068364 -0.02365,-0.14188481 -0.02365,-0.0212012 -0.0424,-0.0212012 -0.04159,0 -0.0897,0.0725732 -0.0473,0.0725732 -0.09051,0.18591794 V 1.67 Z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1146" />
+            </g>
+            <path
+               class="h"
+               d="m 19.038,0 h 1 v 2.171 h -1 z"
+               id="path52" />
+            <g
+               aria-label="/"
+               id="text54"
+               class="j"
+               style="white-space:pre;fill:#eeeeee">
+              <path
+                 d="m 19.214133,1.7083252 h -0.149224 l 0.804829,-1.34138185 h 0.144331 z"
+                 style="white-space:pre;fill:#eeeeee"
+                 id="path1149" />
+            </g>
+            <path
+               class="h"
+               d="m 20.04,0 h 8 v 2.171 h -8 z"
+               id="path56" />
+            <g
+               aria-label="examples"
+               id="text58"
+               class="k"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 20.923927,1.6096582 q -0.181841,0.086436 -0.344112,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.05789,-0.1141601 -0.05789,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221796,-0.0644189 0.162271,0 0.260123,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 20.318062,1.1261084 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1152" />
+              <path
+                 d="M 21.26233,1.67 H 21.087013 L 21.444986,1.1929736 21.11066,0.75916502 h 0.194072 l 0.23729,0.30578608 0.230767,-0.30578608 h 0.172056 L 21.628458,1.1782959 22.004371,1.67 H 21.809483 L 21.532237,1.3071338 Z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1154" />
+              <path
+                 d="m 22.767613,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101113,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152486 V 1.402539 q 0,0.1647168 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234028,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1156" />
+              <path
+                 d="M 23.10194,1.67 V 0.75916502 h 0.132915 v 0.20874999 q 0.06279,-0.13291503 0.116606,-0.18347167 0.05463,-0.0505566 0.110083,-0.0505566 0.06605,0 0.106006,0.0521875 0.04077,0.0513721 0.04077,0.14677734 v 0.0489258 q 0.02691,-0.0831738 0.06442,-0.1345459 0.03833,-0.0521875 0.0791,-0.0823584 0.04077,-0.0309863 0.09377,-0.0309863 0.05871,0 0.100298,0.0497412 0.04159,0.0497412 0.04159,0.19814941 V 1.67 H 23.854581 V 1.0478271 q 0,-0.0766504 -0.0049,-0.10437498 -0.0049,-0.02854 -0.01957,-0.0432178 -0.01468,-0.0146777 -0.0318,-0.0146777 -0.0424,0 -0.09133,0.0652344 -0.04811,0.0644189 -0.09867,0.21445801 V 1.67 H 23.481114 V 1.0486426 q 0,-0.12068364 -0.02365,-0.14188481 -0.02365,-0.0212012 -0.0424,-0.0212012 -0.04159,0 -0.0897,0.0725732 -0.04729,0.0725732 -0.09051,0.18591794 V 1.67 Z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1158" />
+              <path
+                 d="m 24.312037,0.96383787 q 0.07013,-0.11416016 0.167163,-0.17205566 0.09704,-0.0578955 0.178579,-0.0578955 0.11416,0 0.205489,0.098667 0.09133,0.098667 0.09133,0.29926271 0,0.1581933 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101113,0.071758 -0.250337,0.071758 -0.0424,0 -0.130468,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 v 0.3538964 h -0.15167 V 0.75916502 h 0.15167 z m 0,0.18020993 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.20467283 -0.05137,-0.0684961 -0.116607,-0.0684961 -0.07094,0 -0.156562,0.0717578 -0.0848,0.0717578 -0.153301,0.19325681 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1160" />
+              <path
+                 d="M 25.41776,1.67 V 0.4811035 H 25.145406 V 0.35389648 H 25.56943 V 1.5436084 h 0.284584 V 1.67 Z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1162" />
+              <path
+                 d="m 26.932013,1.6096582 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155748,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.16227,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 26.326149,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1164" />
+              <path
+                 d="M 27.186427,1.6218896 V 1.46125 q 0.09133,0.059526 0.193257,0.083989 0.101928,0.023648 0.172871,0.023648 0.114975,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.105191,-0.041587 q -0.169609,-0.06605 -0.213642,-0.1223144 -0.04485,-0.055449 -0.04485,-0.13536133 0,-0.11252929 0.08644,-0.18510253 0.08725,-0.0725732 0.282138,-0.0725732 0.145962,0 0.276431,0.0424023 v 0.13780762 q -0.150039,-0.0538184 -0.282139,-0.0538184 -0.09622,0 -0.150854,0.034248 -0.05382,0.0334326 -0.05382,0.0839893 0,0.0489258 0.04729,0.0782812 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.14107,0.051372 0.19815,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1166" />
+            </g>
+            <path
+               class="h"
+               d="m 28.056,0 h 1 v 2.171 h -1 z"
+               id="path60" />
+            <g
+               id="text62"
+               class="j"
+               style="white-space:pre;fill:#eeeeee" />
+            <g
+               aria-label=""
+               id="text64"
+               class="l"
+               style="white-space:pre;fill:#005f87">
+              <path
+                 d="m 29.058001,0.10029785 1.02581,0.99074705 -1.02581,0.9923779 z"
+                 style="white-space:pre;fill:#005f87"
+                 id="path1170" />
+            </g>
+            <g
+               aria-label="ls"
+               id="text66"
+               class="m"
+               style="white-space:pre;fill:#a8cc8c">
+              <path
+                 d="M 31.433021,1.67 V 0.4811035 H 31.160667 V 0.35389648 h 0.424024 V 1.5436084 h 0.284585 V 1.67 Z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1173" />
+              <path
+                 d="M 32.20034,1.6218896 V 1.46125 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114976,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117421,-0.064419 L 32.5893,1.2908252 32.48411,1.2492382 q -0.16961,-0.06605 -0.213643,-0.1223144 -0.04485,-0.055449 -0.04485,-0.13536133 0,-0.11252929 0.08644,-0.18510253 0.08725,-0.0725732 0.282139,-0.0725732 0.145962,0 0.27643,0.0424023 v 0.13780762 q -0.150039,-0.0538184 -0.282138,-0.0538184 -0.09622,0 -0.150855,0.034248 -0.05382,0.0334326 -0.05382,0.0839893 0,0.0489258 0.04729,0.0782812 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1175" />
+            </g>
+            <g
+               aria-label="-1"
+               id="text68"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 34.253103,1.2206982 V 1.0943066 h 0.632774 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1178" />
+              <path
+                 d="M 35.532513,1.5436084 V 0.56672362 q -0.0685,0.0546338 -0.132916,0.092959 -0.06442,0.0383252 -0.176948,0.0782812 V 0.60097166 q 0.178579,-0.075835 0.309864,-0.19651855 h 0.151669 V 1.5436084 h 0.304156 V 1.67 H 35.222649 V 1.5436084 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1180" />
+            </g>
+            <g
+               aria-label=""
+               id="text70"
+               class="o"
+               style="white-space:pre;fill:#262626">
+              <path
+                 d="M 80.183808,2.0834228 79.157997,1.0910449 80.183808,0.10029785 Z"
+                 style="white-space:pre;fill:#262626"
+                 id="path1183" />
+            </g>
+            <path
+               class="p"
+               d="m 80.16,0 h 13 v 2.171 h -13 z"
+               id="path72" />
+            <g
+               aria-label="stage-admin"
+               id="text74"
+               class="q"
+               style="white-space:pre;fill:#af5fd7">
+              <path
+                 d="M 80.296996,1.6218896 V 1.46125 q 0.09133,0.059526 0.193257,0.083989 0.101928,0.023648 0.172871,0.023648 0.114975,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.105191,-0.041587 q -0.169609,-0.06605 -0.213642,-0.1223144 -0.04485,-0.055449 -0.04485,-0.13536133 0,-0.11252929 0.08644,-0.18510253 0.08725,-0.0725732 0.282138,-0.0725732 0.145962,0 0.276431,0.0424023 V 0.91409666 Q 80.81724,0.8602783 80.68514,0.8602783 q -0.09622,0 -0.150854,0.034248 -0.05382,0.0334326 -0.05382,0.0839893 0,0.0489258 0.04729,0.0782812 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.14107,0.051372 0.19815,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1186" />
+              <path
+                 d="m 82.049354,1.6333056 q -0.106821,0.044849 -0.154931,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084521 -0.03996,-0.071758 -0.03996,-0.2217969 V 0.96139158 h -0.227504 v -0.1263916 h 0.227504 V 0.46805663 h 0.15167 v 0.36694335 h 0.405269 v 0.1263916 H 81.618807 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1188" />
+              <path
+                 d="m 82.887616,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101113,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130468,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152485 V 1.402539 q 0,0.1647168 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234028,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1190" />
+              <path
+                 d="m 83.898749,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101113,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130468,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152485 V 1.4033545 q 0,0.2299511 -0.0065,0.2805078 -0.0057,0.051372 -0.01957,0.1035595 -0.03262,0.121499 -0.149223,0.191626 -0.115791,0.070127 -0.280508,0.070127 -0.165532,0 -0.335142,-0.084805 V 1.8110693 q 0.06442,0.044033 0.158194,0.077466 0.09459,0.034248 0.182656,0.034248 0.06931,0 0.131284,-0.022017 0.06197,-0.022017 0.100298,-0.063604 0.03833,-0.041587 0.05219,-0.097036 0.01386,-0.054634 0.01386,-0.1459619 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234028,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1192" />
+              <path
+                 d="m 85.04932,1.6096582 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.16227,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 84.443456,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1194" />
+              <path
+                 d="M 85.351844,1.2206982 V 1.0943066 h 0.632774 v 0.1263916 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1196" />
+              <path
+                 d="m 86.893007,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161456,-0.19651851 0.101113,-0.0725733 0.250336,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152485 V 1.402539 q 0,0.1647168 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234029,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1198" />
+              <path
+                 d="m 87.90414,1.4653271 q -0.06931,0.1141602 -0.167164,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101114,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 V 0.35389648 h 0.152485 V 1.67 H 87.90414 Z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.15004,-0.0212012 -0.140253,0 -0.234028,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1200" />
+              <path
+                 d="M 88.22868,1.67 V 0.75916502 h 0.132915 v 0.20874999 q 0.06279,-0.13291503 0.116607,-0.18347167 0.05463,-0.0505566 0.110083,-0.0505566 0.06605,0 0.106006,0.0521875 0.04077,0.0513721 0.04077,0.14677734 v 0.0489258 q 0.02691,-0.0831738 0.06442,-0.1345459 0.03833,-0.0521875 0.0791,-0.0823584 0.04077,-0.0309863 0.09377,-0.0309863 0.05871,0 0.100298,0.0497412 0.04159,0.0497412 0.04159,0.19814941 V 1.67 H 88.981322 V 1.0478271 q 0,-0.0766504 -0.0049,-0.10437498 -0.0049,-0.02854 -0.01957,-0.0432178 -0.01468,-0.0146777 -0.0318,-0.0146777 -0.0424,0 -0.09133,0.0652344 -0.04811,0.0644189 -0.09867,0.21445801 V 1.67 H 88.607855 V 1.0486426 q 0,-0.12068364 -0.02365,-0.14188481 -0.02365,-0.0212012 -0.0424,-0.0212012 -0.04159,0 -0.0897,0.0725732 -0.04729,0.0725732 -0.09051,0.18591794 V 1.67 Z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1202" />
+              <path
+                 d="M 89.553754,1.67 V 0.88555662 H 89.30097 v -0.1263916 h 0.404453 V 1.5436084 h 0.253599 V 1.67 Z m -0.02528,-1.23945314 q 0,-0.0513721 0.03506,-0.0766504 0.03506,-0.0252783 0.06605,-0.0252783 0.0318,0 0.06687,0.0252783 0.03506,0.0252783 0.03506,0.0766504 0,0.0505566 -0.03506,0.075835 -0.03506,0.0252783 -0.06687,0.0252783 -0.03099,0 -0.06605,-0.0252783 -0.03506,-0.0252783 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1204" />
+              <path
+                 d="M 90.299872,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.06523,-0.10519043 0.157377,-0.16471679 0.09214,-0.0595264 0.184288,-0.0595264 0.08073,0 0.146777,0.0432178 0.06605,0.0424023 0.09214,0.11171387 0.02691,0.0693115 0.02691,0.27235346 V 1.67 h -0.15167 V 1.142417 q 0,-0.1312842 -0.01305,-0.17287113 -0.01223,-0.0424023 -0.04648,-0.0693115 -0.03343,-0.0269092 -0.07339,-0.0269092 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.18999507 V 1.67 Z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1206" />
+            </g>
+            <path
+               class="p"
+               d="m 93.186,0 h 1 v 2.171 h -1 z"
+               id="path76" />
+            <g
+               aria-label=""
+               id="text78"
+               class="r"
+               style="white-space:pre;fill:#303030">
+              <path
+                 d="M 94.211808,2.0834228 93.185997,1.0910449 94.211808,0.10029785 Z"
+                 style="white-space:pre;fill:#303030"
+                 id="path1209" />
+            </g>
+            <path
+               class="s"
+               d="m 94.188,0 h 25 v 2.171 h -25 z"
+               id="path80" />
+            <g
+               aria-label=" master  v0.5.2  "
+               id="text82"
+               class="t"
+               style="white-space:pre;fill:#afd700">
+              <path
+                 d="m 94.443233,1.7246337 q 0.02772,-0.027725 0.02772,-0.066865 0,-0.039956 -0.02772,-0.066865 -0.02773,-0.027725 -0.06768,-0.027725 -0.03914,0 -0.06605,0.027725 -0.02691,0.026909 -0.02691,0.066865 0,0.039141 0.02691,0.066865 0.02691,0.027725 0.06605,0.027725 0.03996,0 0.06768,-0.027725 z m 0,-1.1310009 q 0.02772,-0.0277246 0.02772,-0.0668652 0,-0.0399561 -0.02772,-0.0668652 -0.02773,-0.0277246 -0.06768,-0.0277246 -0.03914,0 -0.06605,0.0277246 -0.02691,0.0269092 -0.02691,0.0668652 0,0.0391406 0.02691,0.0668652 0.02691,0.0269092 0.06605,0.0269092 0.03996,0 0.06768,-0.0269092 z m 0.628696,0.12557617 q 0.02773,-0.0277246 0.02773,-0.0668652 0,-0.0399561 -0.02773,-0.0668652 -0.02691,-0.0277246 -0.06686,-0.0277246 -0.03914,0 -0.06687,0.0277246 -0.02773,0.0269092 -0.02773,0.0668652 0,0.0391406 0.02773,0.0668652 0.02772,0.0269092 0.06687,0.0269092 0.03996,0 0.06686,-0.0269092 z m 0.121499,-0.0668652 q 0,0.0513721 -0.02528,0.0945898 -0.02528,0.0432178 -0.0685,0.0676807 -8.16e-4,0.0733887 -0.01631,0.13536132 -0.01468,0.0611572 -0.03833,0.10600584 -0.02283,0.044033 -0.05953,0.081543 -0.03588,0.036694 -0.06931,0.060342 -0.03343,0.023647 -0.07991,0.044849 -0.04566,0.020386 -0.0791,0.032617 -0.03262,0.011416 -0.07583,0.024463 -0.0024,0.00163 -0.0033,0.00163 -0.053,0.016309 -0.08236,0.027725 -0.02936,0.010601 -0.0579,0.024463 -0.02773,0.013862 -0.03996,0.029355 -0.01223,0.015493 -0.01957,0.035879 -0.0073,0.020386 -0.0073,0.049741 v 0.026094 q 0.0424,0.024463 0.0685,0.068496 0.02609,0.043218 0.02609,0.09459 0,0.078281 -0.05545,0.132915 -0.05545,0.055449 -0.13373,0.055449 -0.07828,0 -0.133731,-0.055449 -0.05463,-0.054634 -0.05463,-0.132915 0,-0.051372 0.02528,-0.09459 0.02609,-0.044033 0.06931,-0.068496 V 0.68903807 q -0.04322,-0.0244629 -0.06931,-0.0676807 -0.02528,-0.0440332 -0.02528,-0.0954053 0,-0.0782812 0.05463,-0.13291503 0.05545,-0.0554492 0.133731,-0.0554492 0.07828,0 0.13373,0.0554492 0.05545,0.0546338 0.05545,0.13291503 0,0.0513721 -0.02609,0.0954053 -0.02609,0.0432178 -0.0685,0.0676807 V 1.1774804 q 0.05056,-0.025278 0.150854,-0.056265 0.04566,-0.014678 0.0742,-0.024463 0.02854,-0.00979 0.06197,-0.025278 0.03425,-0.015493 0.05382,-0.030171 0.02039,-0.015493 0.04159,-0.03751 0.0212,-0.0220166 0.0318,-0.0481103 0.0106,-0.0269092 0.01794,-0.0619727 0.0073,-0.0350635 0.0073,-0.0790967 -0.0424,-0.0244629 -0.0685,-0.0676807 -0.02609,-0.0440332 -0.02609,-0.0945898 0,-0.0782812 0.05545,-0.13373046 0.05545,-0.0554492 0.13373,-0.0554492 0.07828,0 0.132915,0.0554492 0.05545,0.0554492 0.05545,0.13373046 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1212" />
+              <path
+                 d="M 96.255118,1.67 V 0.75916502 h 0.132915 v 0.20874999 q 0.06279,-0.13291503 0.116606,-0.18347167 0.05463,-0.0505566 0.110083,-0.0505566 0.06605,0 0.106006,0.0521875 0.04077,0.0513721 0.04077,0.14677734 v 0.0489258 q 0.02691,-0.0831738 0.06442,-0.1345459 0.03833,-0.0521875 0.0791,-0.0823584 0.04077,-0.0309863 0.09377,-0.0309863 0.05871,0 0.100297,0.0497412 0.04159,0.0497412 0.04159,0.19814941 V 1.67 H 97.007759 V 1.0478271 q 0,-0.0766504 -0.0049,-0.10437498 -0.0049,-0.02854 -0.01957,-0.0432178 -0.01468,-0.0146777 -0.0318,-0.0146777 -0.0424,0 -0.09133,0.0652344 Q 96.812056,1.0152099 96.7615,1.165249 V 1.67 H 96.634293 V 1.0486426 q 0,-0.12068364 -0.02365,-0.14188481 -0.02365,-0.0212012 -0.0424,-0.0212012 -0.04159,0 -0.0897,0.0725732 -0.04729,0.0725732 -0.09051,0.18591794 V 1.67 Z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1214" />
+              <path
+                 d="m 97.923487,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.114161,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101114,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152485 V 1.402539 q 0,0.1647168 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234029,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1216" />
+              <path
+                 d="M 98.33691,1.6218896 V 1.46125 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114975,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.16961,-0.06605 -0.213643,-0.1223144 -0.04485,-0.055449 -0.04485,-0.13536133 0,-0.11252929 0.08644,-0.18510253 0.08725,-0.0725732 0.282139,-0.0725732 0.145961,0 0.27643,0.0424023 v 0.13780762 q -0.150039,-0.0538184 -0.282139,-0.0538184 -0.09622,0 -0.150854,0.034248 -0.05382,0.0334326 -0.05382,0.0839893 0,0.0489258 0.0473,0.0782812 0.04648,0.029355 0.151669,0.067681 l 0.102745,0.03751 q 0.141069,0.051372 0.198149,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1218" />
+              <path
+                 d="m 100.08927,1.6333056 q -0.106823,0.044849 -0.154933,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084521 -0.03996,-0.071758 -0.03996,-0.2217969 V 0.96139158 h -0.227504 v -0.1263916 h 0.227504 V 0.46805663 h 0.15167 v 0.36694335 h 0.405269 v 0.1263916 H 99.658721 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231584,-0.069311 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1220" />
+              <path
+                 d="m 101.08654,1.6096582 q -0.18184,0.086436 -0.34411,0.086436 -0.12313,0 -0.22017,-0.061157 -0.097,-0.061157 -0.15575,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.0554,-0.23973636 0.0555,-0.11497558 0.15493,-0.1785791 0.0995,-0.0644189 0.2218,-0.0644189 0.16227,0 0.26012,0.11579101 0.0987,0.11579102 0.0987,0.35715819 v 0.032617 h -0.62789 q 0,0.09459 0.0392,0.1728711 0.0399,0.078281 0.10437,0.1174219 0.0644,0.039141 0.14678,0.039141 0.14677,0 0.32454,-0.097852 z m -0.60587,-0.4835498 h 0.4542 v -0.022017 q 0,-0.1117139 -0.0546,-0.1777637 -0.0546,-0.0660498 -0.14596,-0.0660498 -0.0921,0 -0.15982,0.0676807 -0.0669,0.0668652 -0.0938,0.19814944 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1222" />
+              <path
+                 d="M 101.40782,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.0709,-0.1125293 0.16227,-0.16797851 0.0921,-0.0562647 0.20467,-0.0562647 0.0824,0 0.16472,0.0252783 V 1.0877832 h -0.14596 V 0.87984861 q -0.0383,-0.006523 -0.0603,-0.006523 -0.0848,0 -0.16634,0.0668652 -0.0816,0.0668652 -0.15901,0.20059569 V 1.67 Z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1224" />
+              <path
+                 d="m 103.49939,0.88311033 q 0.0228,-0.022832 0.0228,-0.0546338 0,-0.0326172 -0.0228,-0.0554492 -0.022,-0.022832 -0.0546,-0.022832 -0.0318,0 -0.0546,0.022832 -0.0228,0.022832 -0.0228,0.0554492 0,0.0318018 0.0228,0.0546338 0.0228,0.0220166 0.0546,0.0220166 0.0326,0 0.0546,-0.0220166 z m 0.66703,0.29273927 q 0,0.031802 -0.022,0.054634 l -0.29682,0.2968164 q -0.0228,0.022017 -0.0546,0.022017 -0.0326,0 -0.0546,-0.022017 L 103.30614,1.095122 q -0.0228,-0.022832 -0.0391,-0.061157 -0.0155,-0.0383252 -0.0155,-0.0709424 V 0.7118701 q 0,-0.0318018 0.0228,-0.0546338 0.0228,-0.022832 0.0546,-0.022832 h 0.25115 q 0.0326,0 0.0709,0.0163086 0.0383,0.0154932 0.0612,0.0383252 l 0.43218,0.43136233 q 0.022,0.023647 0.022,0.055449 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1226" />
+              <path
+                 d="m 105.63827,1.67 -0.39549,-0.91083498 h 0.16635 l 0.31231,0.72083978 0.31883,-0.72083978 h 0.15167 L 105.7932,1.67 Z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1228" />
+              <path
+                 d="m 106.7179,0.36694335 q 0.21608,0 0.32943,0.18184082 0.11334,0.18102538 0.11334,0.48844233 0,0.3082324 -0.11334,0.4900733 -0.11335,0.1810254 -0.32943,0.1810254 -0.21528,0 -0.32944,-0.1810254 -0.11334,-0.1818409 -0.11334,-0.4900733 0,-0.30741695 0.11334,-0.48844233 0.11416,-0.18184082 0.32944,-0.18184082 z m -0.24708,0.94100585 0.43789,-0.68577636 q -0.0416,-0.075835 -0.0905,-0.10192871 -0.0481,-0.0269092 -0.10029,-0.0269092 -0.13618,0 -0.20712,0.15166992 -0.0709,0.15085448 -0.0709,0.38325193 0,0.053003 0.003,0.1141602 0.003,0.061157 0.0277,0.1655322 z m 0.49252,-0.53492188 -0.43462,0.68985348 q 0.0351,0.059526 0.0807,0.089697 0.0457,0.029355 0.10193,0.029355 0.15493,0 0.22017,-0.1728711 0.0652,-0.1736866 0.0652,-0.3848828 0,-0.13046879 -0.0334,-0.25115238 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1230" />
+              <path
+                 d="m 107.71924,1.7083252 q -0.0546,0 -0.0938,-0.039141 -0.0391,-0.039141 -0.0391,-0.093774 0,-0.055449 0.0391,-0.093774 0.04,-0.039141 0.0938,-0.039141 0.0538,0 0.093,0.039141 0.04,0.038325 0.04,0.093774 0,0.054634 -0.0391,0.093774 -0.0391,0.039141 -0.0938,0.039141 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1232" />
+              <path
+                 d="M 108.37322,1.0119482 V 0.40445311 h 0.70861 v 0.14596191 h -0.55694 V 0.8602783 h 0.0261 q 0.27317,0 0.42076,0.11416015 0.1476,0.11416015 0.1476,0.30741695 0,0.1223145 -0.0595,0.2193506 -0.0595,0.097036 -0.16798,0.1524854 -0.10845,0.054634 -0.23077,0.054634 -0.12231,0 -0.31312,-0.059526 V 1.4832666 q 0.0693,0.03751 0.15493,0.061973 0.0856,0.023648 0.15819,0.023648 0.0726,0 0.14189,-0.035063 0.0693,-0.035064 0.10764,-0.1019287 0.0383,-0.067681 0.0383,-0.1378076 0,-0.1182373 -0.10519,-0.1997803 -0.10437,-0.082358 -0.37183,-0.082358 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1234" />
+              <path
+                 d="m 109.72194,1.7083252 q -0.0546,0 -0.0938,-0.039141 -0.0391,-0.039141 -0.0391,-0.093774 0,-0.055449 0.0391,-0.093774 0.04,-0.039141 0.0938,-0.039141 0.0538,0 0.093,0.039141 0.04,0.038325 0.04,0.093774 0,0.054634 -0.0391,0.093774 -0.0391,0.039141 -0.0938,0.039141 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1236" />
+              <path
+                 d="m 111.1098,1.67 h -0.76569 V 1.5305615 q 0,-0.053818 0.022,-0.1149756 0.022,-0.061973 0.084,-0.138623 0.062,-0.07665 0.13128,-0.1475928 l 0.0864,-0.088066 q 0.0261,-0.026909 0.11416,-0.12476075 0.0881,-0.0978516 0.11579,-0.15003906 0.0285,-0.0521875 0.0285,-0.10274414 0,-0.081543 -0.0652,-0.12557617 -0.0652,-0.0448486 -0.14677,-0.0448486 -0.0465,0 -0.10438,0.0106006 -0.0571,0.0106006 -0.1003,0.0252783 -0.0432,0.0138623 -0.14025,0.0578955 v -0.1345459 q 0.10274,-0.0489258 0.20549,-0.0668652 0.10356,-0.0187549 0.17042,-0.0187549 0.0987,0 0.18103,0.0326172 0.0832,0.0318017 0.12313,0.0994824 0.0408,0.0676807 0.0408,0.14433105 0,0.0856201 -0.0522,0.17531738 -0.0514,0.0896973 -0.19489,0.23076661 l -0.0929,0.092143 -0.0783,0.07665 q -0.0742,0.07502 -0.11986,0.1451465 -0.0457,0.070127 -0.0506,0.1671631 h 0.60831 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1238" />
+              <path
+                 d="M 112.8116,1.4058007 V 1.2802246 q 0,-0.00897 -0.006,-0.014678 -0.006,-0.00652 -0.0155,-0.00652 h -0.12476 q -0.01,0 -0.0155,0.00652 -0.006,0.00571 -0.006,0.014678 v 0.1255761 q 0,0.00979 0.006,0.015493 0.006,0.00571 0.0155,0.00571 h 0.12476 q 0.01,0 0.0155,-0.00571 0.006,-0.00571 0.006,-0.015493 z m 0.16798,-0.43951655 q 0,-0.0570801 -0.0359,-0.10600585 -0.0359,-0.0497412 -0.0905,-0.0766504 -0.0546,-0.0269092 -0.11172,-0.0269092 -0.159,0 -0.24299,0.13943847 -0.004,0.007339 -0.002,0.0154932 0.002,0.007339 0.007,0.0122314 l 0.0872,0.0652344 q 0.004,0.004077 0.0114,0.004077 0.0106,0 0.0171,-0.008154 0.0351,-0.0448486 0.0563,-0.0603418 0.0212,-0.0154932 0.0554,-0.0154932 0.0318,0 0.0563,0.017124 0.0245,0.017124 0.0245,0.0383252 0,0.0252783 -0.0139,0.0407715 -0.0131,0.014678 -0.044,0.02854 -0.0408,0.01957 -0.075,0.057896 -0.0343,0.03751 -0.0343,0.080728 v 0.023647 q 0,0.00897 0.006,0.015493 0.006,0.00571 0.0155,0.00571 h 0.12476 q 0.01,0 0.0155,-0.00571 0.006,-0.00652 0.006,-0.015493 0,-0.012231 0.0139,-0.031802 0.0147,-0.020386 0.0367,-0.032617 0.0171,-0.00979 0.0261,-0.015493 0.009,-0.00571 0.0253,-0.017124 0.0171,-0.012231 0.0261,-0.023647 0.01,-0.012231 0.0196,-0.027725 0.0106,-0.016309 0.0155,-0.036694 0.005,-0.0212012 0.005,-0.0448486 z m 0.2112,-0.0693115 q 0.0399,0.092959 0.0399,0.19570317 0,0.1019287 -0.0399,0.1948876 -0.04,0.092959 -0.10683,0.1606397 -0.0669,0.066865 -0.15982,0.1068213 -0.093,0.039956 -0.1957,0.039956 -0.10275,0 -0.19571,-0.039956 -0.093,-0.039956 -0.16064,-0.1068213 -0.0669,-0.067681 -0.10682,-0.1606397 -0.04,-0.092959 -0.04,-0.1948876 0,-0.10274418 0.04,-0.19570317 0.04,-0.0937744 0.10682,-0.16063964 0.0677,-0.0676807 0.16064,-0.10763672 0.093,-0.039956 0.19571,-0.039956 0.10274,0 0.1957,0.039956 0.093,0.0399561 0.15982,0.10763672 0.0669,0.0668652 0.10683,0.16063964 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1240" />
+              <path
+                 d="m 114.6137,1.1970508 q 0.007,0.025278 0.007,0.049741 0,0.023647 -0.007,0.049741 -0.007,0.025278 -0.0261,0.045664 -0.0188,0.020386 -0.044,0.020386 -0.0253,0 -0.044,-0.020386 -0.0179,-0.020386 -0.0253,-0.045664 -0.007,-0.026094 -0.007,-0.049741 0,-0.024463 0.007,-0.049741 0.007,-0.025278 0.0253,-0.045664 0.0188,-0.020386 0.044,-0.020386 0.0253,0 0.044,0.020386 0.0187,0.020386 0.0261,0.045664 z m 0.38652,0 q 0.007,0.025278 0.007,0.049741 0,0.023647 -0.007,0.049741 -0.007,0.025278 -0.0261,0.045664 -0.0179,0.020386 -0.0432,0.020386 -0.0253,0 -0.044,-0.020386 -0.0187,-0.020386 -0.0269,-0.045664 -0.007,-0.026094 -0.007,-0.049741 0,-0.024463 0.007,-0.049741 0.008,-0.025278 0.0269,-0.045664 0.0188,-0.020386 0.044,-0.020386 0.0253,0 0.0432,0.020386 0.0188,0.020386 0.0261,0.045664 z m 0.10437,0.049741 q 0,-0.072573 -0.0424,-0.1231299 -0.0416,-0.051372 -0.11253,-0.051372 -0.0139,0 -0.031,0.00163 -0.0163,0.00163 -0.0277,0.00326 -0.0106,8.154e-4 -0.0302,0.00408 -0.0196,0.00326 -0.0285,0.00408 -0.0457,0.00652 -0.0954,0.00652 -0.0497,0 -0.0946,-0.00652 -0.009,-8.154e-4 -0.0285,-0.00408 -0.0196,-0.00326 -0.031,-0.00408 -0.0106,-0.00163 -0.0277,-0.00326 -0.0163,-0.00163 -0.0302,-0.00163 -0.0709,0 -0.11334,0.051372 -0.0416,0.050557 -0.0416,0.1231299 0,0.053003 0.0187,0.092959 0.0196,0.039141 0.0498,0.061973 0.0302,0.022017 0.0734,0.035879 0.044,0.013862 0.084,0.018755 0.0408,0.00408 0.0905,0.00408 h 0.10192 q 0.0498,0 0.0897,-0.00408 0.0408,-0.00489 0.084,-0.018755 0.044,-0.013862 0.0742,-0.035879 0.0302,-0.022832 0.0489,-0.061973 0.0196,-0.039956 0.0196,-0.092959 z m 0.13536,-0.1068213 q 0,0.1239453 -0.0367,0.1997802 -0.0228,0.04648 -0.0644,0.080728 -0.0408,0.033433 -0.0848,0.051372 -0.044,0.017939 -0.10274,0.029356 -0.0587,0.010601 -0.10437,0.013862 -0.0448,0.00245 -0.1003,0.00245 -0.0342,0 -0.0636,-8.154e-4 -0.0285,-0.00163 -0.066,-0.00408 -0.0375,-0.00326 -0.0693,-0.00815 -0.031,-0.00571 -0.0669,-0.014678 -0.0351,-0.00897 -0.0644,-0.022017 -0.0294,-0.013862 -0.0571,-0.030986 -0.0277,-0.017124 -0.0497,-0.041587 -0.022,-0.025278 -0.0375,-0.055449 -0.0375,-0.074204 -0.0375,-0.1997802 0,-0.14351565 0.0815,-0.23892092 -0.0155,-0.0472949 -0.0155,-0.10274414 0,-0.070127 0.031,-0.1320996 0.0652,0 0.11416,0.0244629 0.0498,0.0236475 0.11416,0.0742041 0.0905,-0.0212012 0.18674,-0.0212012 0.0881,0 0.16961,0.0195703 0.031,-0.0244629 0.053,-0.0391406 0.0228,-0.0154932 0.0514,-0.0293555 0.0285,-0.0146777 0.0579,-0.0212012 0.0302,-0.007339 0.0644,-0.007339 0.031,0.0619726 0.031,0.1320996 0,0.0530029 -0.0163,0.10111328 0.0824,0.0970361 0.0824,0.24055178 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1242" />
+            </g>
+            <g
+               aria-label="advanced_network"
+               id="text84"
+               class="u"
+               style="font-weight:700;white-space:pre;fill:#71bef2">
+              <path
+                 d="m 0.72491697,3.6363272 q -0.0693115,0.1141602 -0.16716308,0.1720557 -0.0970361,0.057896 -0.1785791,0.057896 -0.11416015,0 -0.20548827,-0.098667 -0.09051269,-0.098667 -0.09051269,-0.2992627 0,-0.1581933 0.06034179,-0.2821386 0.0603418,-0.1247608 0.16145508,-0.1965186 0.10111327,-0.072573 0.2503369,-0.072573 0.0432178,0 0.13046875,0.00897 0.0130469,0.00163 0.0391406,0.00408 h 0.15248535 v 0.643374 q 0,0.1647168 0.0342481,0.267461 H 0.75345701 q -0.0179394,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 3.0655265 q -0.0807275,-0.021201 -0.15003906,-0.021201 -0.1402539,0 -0.23402831,0.1084521 -0.092959,0.1084522 -0.092959,0.2951856 0,0.1353613 0.0505566,0.2046728 0.0513721,0.068496 0.11660644,0.068496 0.0709424,0 0.1565625,-0.071758 0.0856201,-0.071758 0.15330077,-0.1932568 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1245" />
+              <path
+                 d="m 1.7360498,3.6363272 q -0.069311,0.1141602 -0.1671631,0.1720557 -0.097036,0.057896 -0.1785791,0.057896 -0.1141601,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304688,0.00897 0.013047,0.00163 0.039141,0.00408 V 2.5248966 H 1.8885351 V 3.8410001 H 1.7360498 Z m 0,-0.1802099 V 3.0655265 q -0.080728,-0.021201 -0.1500391,-0.021201 -0.1402539,0 -0.2340283,0.1084521 -0.092959,0.1084522 -0.092959,0.2951856 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166064,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1247" />
+              <path
+                 d="M 2.4250879,3.8410001 2.0296045,2.9301651 H 2.1959522 L 2.5082617,3.651005 2.8270947,2.9301651 h 0.1516699 l -0.3987451,0.910835 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1249" />
+              <path
+                 d="m 3.7289601,3.6363272 q -0.069311,0.1141602 -0.1671631,0.1720557 -0.097036,0.057896 -0.1785791,0.057896 -0.1141602,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304688,0.00897 0.013047,0.00163 0.039141,0.00408 h 0.1524853 v 0.643374 q 0,0.1647168 0.034248,0.267461 H 3.7575001 q -0.017939,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 3.0655265 q -0.080728,-0.021201 -0.1500391,-0.021201 -0.1402539,0 -0.2340283,0.1084521 -0.092959,0.1084522 -0.092959,0.2951856 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166064,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1251" />
+              <path
+                 d="m 4.1317822,3.8410001 v -0.910835 h 0.15167 V 3.12913 q 0.065234,-0.1051904 0.1573779,-0.1647168 0.092143,-0.059526 0.1842871,-0.059526 0.080728,0 0.1467773,0.043218 0.06605,0.042402 0.092144,0.1117139 0.026909,0.069311 0.026909,0.2723535 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.013047,-0.1728711 -0.012231,-0.042402 -0.046479,-0.069311 -0.033433,-0.026909 -0.073389,-0.026909 -0.079912,0 -0.1720557,0.075835 -0.091328,0.075835 -0.1508544,0.1899951 v 0.5308447 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1253" />
+              <path
+                 d="m 5.8996337,3.8149063 q -0.1524854,0.051372 -0.290293,0.051372 -0.1369922,0 -0.2438135,-0.062788 Q 5.2595214,3.7398868 5.199995,3.6322501 5.1404687,3.5237979 5.1404687,3.3859903 q 0,-0.2071191 0.1345458,-0.3441113 0.1353614,-0.1369922 0.3261719,-0.1369922 0.1410693,0 0.2984473,0.053003 v 0.1459619 q -0.1590088,-0.072573 -0.284585,-0.072573 -0.083174,0 -0.1565625,0.041587 -0.073389,0.040771 -0.1133447,0.1280225 -0.039956,0.087251 -0.039956,0.1793945 0,0.1231299 0.07665,0.2348438 0.077466,0.1117138 0.2421826,0.1117138 0.049741,0 0.097852,-0.00652 0.04811,-0.00734 0.1777637,-0.051372 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1255" />
+              <path
+                 d="m 6.892012,3.7806583 q -0.1818409,0.086436 -0.3441114,0.086436 -0.1231298,0 -0.220166,-0.061157 -0.097036,-0.061157 -0.155747,-0.1745019 -0.057895,-0.1141602 -0.057895,-0.2438135 0,-0.1247608 0.055449,-0.2397363 0.055449,-0.1149756 0.1549316,-0.1785791 0.099482,-0.064419 0.2217969,-0.064419 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.3571582 v 0.032617 H 6.277178 q 0,0.09459 0.039141,0.1728711 0.039956,0.078281 0.104375,0.1174219 0.064419,0.039141 0.1467774,0.039141 0.1467773,0 0.324541,-0.097852 z M 6.2861477,3.2971085 H 6.740342 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.06605 -0.145962,-0.06605 -0.092143,0 -0.1598242,0.067681 -0.066865,0.066865 -0.093774,0.1981494 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1257" />
+              <path
+                 d="m 7.7441359,3.6363272 q -0.069311,0.1141602 -0.1671631,0.1720557 -0.097036,0.057896 -0.1785791,0.057896 -0.1141602,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304688,0.00897 0.013047,0.00163 0.039141,0.00408 V 2.5248966 H 7.8966212 V 3.8410001 H 7.7441359 Z m 0,-0.1802099 V 3.0655265 q -0.080728,-0.021201 -0.1500391,-0.021201 -0.1402539,0 -0.2340283,0.1084521 -0.092959,0.1084522 -0.092959,0.2951856 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166064,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1259" />
+              <path
+                 d="M 8.0686768,3.9673917 V 3.8410001 h 0.8855566 v 0.1263916 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1261" />
+              <path
+                 d="M 9.1385204,3.8410001 V 2.9301651 H 9.2901903 V 3.12913 q 0.065234,-0.1051904 0.157378,-0.1647168 0.092143,-0.059526 0.1842871,-0.059526 0.080728,0 0.1467773,0.043218 0.06605,0.042402 0.092144,0.1117139 0.026909,0.069311 0.026909,0.2723535 V 3.8410001 H 9.7460155 v -0.527583 q 0,-0.1312842 -0.013047,-0.1728711 -0.012232,-0.042402 -0.04648,-0.069311 -0.033433,-0.026909 -0.073389,-0.026909 -0.079912,0 -0.1720557,0.075835 -0.091328,0.075835 -0.1508545,0.1899951 v 0.5308447 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1263" />
+              <path
+                 d="m 10.897402,3.7806583 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247608 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 10.291538,3.2971085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1265" />
+              <path
+                 d="m 11.902827,3.8043057 q -0.106821,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 Q 11.32061,3.6493741 11.32061,3.499335 V 3.1323917 H 11.093105 V 3.0060001 H 11.32061 V 2.6390568 h 0.15167 v 0.3669433 h 0.405269 V 3.1323917 H 11.47228 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1267" />
+              <path
+                 d="m 12.180889,3.8410001 -0.148408,-0.910835 h 0.141069 l 0.08644,0.5544922 0.02283,0.1288379 0.02202,-0.1288379 0.145146,-0.5544922 h 0.136177 l 0.163901,0.5544922 0.02854,0.1288379 0.01876,-0.1288379 0.08725,-0.5544922 h 0.116606 l -0.147592,0.910835 h -0.141885 l -0.174502,-0.586294 -0.02773,-0.1288378 h -0.0041 l -0.02528,0.1280224 -0.15167,0.5871094 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1269" />
+              <path
+                 d="m 13.519009,3.8662784 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369921 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194888,0 0.31231,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449267 -0.117422,0.1361768 -0.31231,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1271" />
+              <path
+                 d="m 14.222725,3.8410001 v -0.910835 h 0.15167 V 3.12913 q 0.07094,-0.1125293 0.16227,-0.1679785 0.09214,-0.056265 0.204673,-0.056265 0.08236,0 0.164717,0.025278 V 3.2587833 H 14.760093 V 3.0508487 q -0.03832,-0.00652 -0.06034,-0.00652 -0.0848,0 -0.166347,0.066865 -0.08154,0.066865 -0.159009,0.2005957 v 0.5292139 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1273" />
+              <path
+                 d="M 15.187378,3.8410001 V 2.5248966 h 0.15167 v 0.8268457 l 0.437886,-0.4215772 h 0.202226 l -0.43707,0.4215772 0.448486,0.4892578 h -0.20875 L 15.339048,3.3517423 v 0.4892578 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1275" />
+            </g>
+            <g
+               aria-label="catchall"
+               id="text86"
+               class="u"
+               style="font-weight:700;white-space:pre;fill:#71bef2">
+              <path
+                 d="m 0.89289548,5.9859063 q -0.15248534,0.051372 -0.29029296,0.051372 -0.13699218,0 -0.24381347,-0.062788 Q 0.2527832,5.9108868 0.19325683,5.8032501 0.13373047,5.6947979 0.13373047,5.5569903 q 0,-0.2071191 0.13454589,-0.3441113 0.13536132,-0.1369922 0.32617187,-0.1369922 0.14106933,0 0.29844725,0.053003 V 5.2748517 Q 0.7338867,5.2022784 0.60831053,5.2022784 q -0.0831738,0 -0.15656249,0.041587 -0.0733887,0.040771 -0.11334473,0.1280225 -0.0399561,0.087251 -0.0399561,0.1793945 0,0.1231299 0.0766504,0.2348438 0.0774658,0.1117138 0.24218261,0.1117138 0.0497412,0 0.0978516,-0.00652 0.0481104,-0.00734 0.17776366,-0.051372 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1278" />
+              <path
+                 d="m 1.7262646,5.8073272 q -0.069311,0.1141602 -0.167163,0.1720557 -0.097036,0.057895 -0.1785791,0.057895 -0.1141602,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011132,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304687,0.00897 0.013047,0.00163 0.039141,0.00408 H 1.87875 v 0.6433741 q 0,0.1647167 0.034248,0.2674609 H 1.7548047 q -0.017939,-0.075019 -0.02854,-0.2046729 z m 0,-0.1802099 V 5.2365265 q -0.080727,-0.021201 -0.150039,-0.021201 -0.1402539,0 -0.2340283,0.1084521 -0.092959,0.1084522 -0.092959,0.2951856 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166065,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533007,-0.1932568 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1280" />
+              <path
+                 d="m 2.8906982,5.9753057 q -0.1068213,0.044849 -0.1549316,0.053003 -0.04811,0.00897 -0.092959,0.00897 -0.095405,0 -0.1745019,-0.036694 Q 2.389209,5.9638897 2.3484375,5.8921319 2.3084814,5.8203741 2.3084814,5.6703351 V 5.3033917 H 2.0809766 V 5.1770001 H 2.3084814 V 4.8100568 h 0.15167 V 5.1770001 H 2.8654199 V 5.3033917 H 2.4601514 v 0.3644971 q 0,0.110083 0.026094,0.155747 0.026094,0.044849 0.069311,0.06605 0.044033,0.021201 0.1035596,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1282" />
+              <path
+                 d="m 3.8969386,5.9859063 q -0.1524854,0.051372 -0.290293,0.051372 -0.1369922,0 -0.2438134,-0.062788 Q 3.2568263,5.9108868 3.1972999,5.8032501 3.1377736,5.6947979 3.1377736,5.5569903 q 0,-0.2071191 0.1345459,-0.3441113 0.1353613,-0.1369922 0.3261718,-0.1369922 0.1410694,0 0.2984473,0.053003 v 0.1459619 q -0.1590088,-0.072573 -0.284585,-0.072573 -0.083174,0 -0.1565625,0.041587 -0.073389,0.040771 -0.1133447,0.1280225 -0.039956,0.087251 -0.039956,0.1793945 0,0.1231299 0.07665,0.2348438 0.077466,0.1117138 0.2421827,0.1117138 0.049741,0 0.097851,-0.00652 0.04811,-0.00734 0.1777637,-0.051372 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1284" />
+              <path
+                 d="M 4.1317822,6.0120001 V 4.6958966 h 0.15167 V 5.30013 q 0.065234,-0.1051904 0.1573779,-0.1647168 0.092143,-0.059526 0.1842871,-0.059526 0.077466,0 0.1410693,0.039956 0.064419,0.039141 0.089697,0.095405 0.020386,0.043218 0.027725,0.092143 0.00734,0.04811 0.00734,0.1997803 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.013047,-0.1728711 -0.012231,-0.042402 -0.046479,-0.069311 -0.033433,-0.026909 -0.073389,-0.026909 -0.079912,0 -0.1720557,0.075835 -0.091328,0.075835 -0.1508544,0.1899951 v 0.5308447 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1286" />
+              <path
+                 d="m 5.7316552,5.8073272 q -0.069312,0.1141602 -0.1671631,0.1720557 -0.097036,0.057895 -0.1785791,0.057895 -0.1141602,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304687,0.00897 0.013047,0.00163 0.039141,0.00408 h 0.1524853 v 0.6433741 q 0,0.1647167 0.034248,0.2674609 H 5.7601952 q -0.017939,-0.075019 -0.02854,-0.2046729 z m 0,-0.1802099 V 5.2365265 q -0.080728,-0.021201 -0.1500391,-0.021201 -0.1402539,0 -0.2340283,0.1084521 -0.092959,0.1084522 -0.092959,0.2951856 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166065,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1288" />
+              <path
+                 d="M 6.3791067,6.0120001 V 4.8231036 H 6.1067532 v -0.127207 h 0.4240234 v 1.1897119 h 0.284585 v 0.1263916 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1290" />
+              <path
+                 d="M 7.3804542,6.0120001 V 4.8231036 H 7.1081007 v -0.127207 h 0.4240235 v 1.1897119 h 0.2845849 v 0.1263916 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1292" />
+            </g>
+            <g
+               aria-label="dualstack_network"
+               id="text88"
+               class="u"
+               style="font-weight:700;white-space:pre;fill:#71bef2">
+              <path
+                 d="m 0.73470213,7.9783268 q -0.0693115,0.1141601 -0.16716308,0.1720556 -0.0970361,0.057896 -0.1785791,0.057896 -0.11416015,0 -0.20548828,-0.098667 -0.09051269,-0.098667 -0.09051269,-0.2992626 0,-0.1581934 0.0603418,-0.2821387 0.0603418,-0.1247608 0.16145507,-0.1965186 0.10111328,-0.072573 0.25033691,-0.072573 0.0432178,0 0.13046875,0.00897 0.0130469,0.00163 0.0391406,0.00408 V 6.8668961 H 0.88718748 V 8.1829996 H 0.73470213 Z m 0,-0.18021 V 7.407526 q -0.0807275,-0.021201 -0.15003906,-0.021201 -0.1402539,0 -0.23402831,0.1084522 -0.092959,0.1084521 -0.092959,0.2951855 0,0.1353613 0.0505566,0.2046729 0.0513721,0.068496 0.11660645,0.068496 0.0709424,0 0.15656249,-0.071758 0.0856201,-0.071758 0.15330078,-0.1932568 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1295" />
+              <path
+                 d="M 1.8771191,7.2721647 V 8.1829996 H 1.7254492 V 7.9832193 q -0.073389,0.1125293 -0.1630859,0.168794 -0.089697,0.056265 -0.1793946,0.056265 -0.079912,0 -0.1467773,-0.042402 -0.06605,-0.043218 -0.092144,-0.1125293 -0.026094,-0.070127 -0.026094,-0.2723535 V 7.2721647 H 1.269624 v 0.527583 q 0,0.1312841 0.012231,0.1736865 0.013047,0.041587 0.04648,0.068496 0.034248,0.026909 0.073389,0.026909 0.079912,0 0.1712403,-0.07502 0.092143,-0.075835 0.1524853,-0.1908105 V 7.2721647 Z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1297" />
+              <path
+                 d="m 2.7276123,7.9783268 q -0.069311,0.1141601 -0.1671631,0.1720556 -0.097036,0.057896 -0.1785791,0.057896 -0.1141601,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992626 0,-0.1581934 0.060342,-0.2821387 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304688,0.00897 0.013047,0.00163 0.039141,0.00408 h 0.1524853 v 0.643374 q 0,0.1647168 0.034248,0.2674609 H 2.7561523 q -0.017939,-0.075019 -0.02854,-0.2046728 z m 0,-0.18021 V 7.407526 q -0.080728,-0.021201 -0.1500391,-0.021201 -0.1402539,0 -0.2340283,0.1084522 -0.092959,0.1084521 -0.092959,0.2951855 0,0.1353613 0.050557,0.2046729 0.051372,0.068496 0.1166064,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1299" />
+              <path
+                 d="M 3.3750636,8.1829996 V 6.9941032 H 3.1027101 V 6.8668961 H 3.5267335 V 8.056608 h 0.284585 v 0.1263916 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1301" />
+              <path
+                 d="M 4.1423828,8.1348893 V 7.9742496 q 0.091328,0.059526 0.1932569,0.083989 0.1019287,0.023647 0.172871,0.023647 0.1149756,0 0.1655323,-0.036694 0.050557,-0.03751 0.050557,-0.092959 0,-0.036694 -0.023648,-0.062788 Q 4.6773047,7.8633512 4.5835303,7.825026 L 4.5313428,7.8038248 4.4261524,7.7622379 Q 4.256543,7.6961881 4.2125098,7.6399235 4.1676611,7.5844742 4.1676611,7.5045621 q 0,-0.1125293 0.086436,-0.1851025 0.087251,-0.072573 0.2821387,-0.072573 0.1459619,0 0.2764306,0.042402 V 7.4270963 Q 4.662627,7.373278 4.5305273,7.373278 q -0.096221,0 -0.1508544,0.034248 -0.053818,0.033433 -0.053818,0.083989 0,0.048926 0.047295,0.078281 0.04648,0.029356 0.1516699,0.067681 l 0.1027442,0.03751 q 0.1410693,0.051372 0.1981494,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.091328,0.1948877 -0.090513,0.075835 -0.2902929,0.075835 -0.174502,0 -0.3587891,-0.073389 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1303" />
+              <path
+                 d="m 5.8947411,8.1463053 q -0.1068213,0.044849 -0.1549316,0.053003 -0.04811,0.00897 -0.092959,0.00897 -0.095405,0 -0.174502,-0.036694 Q 5.3932518,8.1348893 5.3524804,8.0631314 5.3125243,7.9913736 5.3125243,7.8413346 V 7.4743912 H 5.0850194 V 7.3479996 H 5.3125243 V 6.9810563 H 5.4641942 V 7.3479996 H 5.8694628 V 7.4743912 H 5.4641942 v 0.3644971 q 0,0.110083 0.026094,0.1557471 0.026094,0.044849 0.069312,0.06605 0.044033,0.021201 0.1035596,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1305" />
+              <path
+                 d="m 6.7330032,7.9783268 q -0.069311,0.1141601 -0.1671631,0.1720556 -0.097036,0.057896 -0.1785791,0.057896 -0.1141602,0 -0.2054883,-0.098667 Q 6.09126,8.010944 6.09126,7.8103483 q 0,-0.1581934 0.060342,-0.2821387 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304688,0.00897 0.013047,0.00163 0.039141,0.00408 h 0.1524853 v 0.643374 q 0,0.1647168 0.034248,0.2674609 H 6.7615432 q -0.017939,-0.075019 -0.02854,-0.2046728 z m 0,-0.18021 V 7.407526 q -0.080728,-0.021201 -0.1500391,-0.021201 -0.1402539,0 -0.2340283,0.1084522 -0.092959,0.1084521 -0.092959,0.2951855 0,0.1353613 0.050557,0.2046729 0.051372,0.068496 0.1166064,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1307" />
+              <path
+                 d="m 7.9023292,8.1569059 q -0.1524853,0.051372 -0.2902929,0.051372 -0.1369922,0 -0.2438135,-0.062788 Q 7.2622169,8.0818863 7.2026906,7.9742496 7.1431642,7.8657975 7.1431642,7.7279899 q 0,-0.2071192 0.1345459,-0.3441114 0.1353613,-0.1369921 0.3261719,-0.1369921 0.1410693,0 0.2984472,0.053003 V 7.4458512 Q 7.7433204,7.373278 7.6177443,7.373278 q -0.083174,0 -0.1565625,0.041587 -0.073389,0.040771 -0.1133447,0.1280224 -0.039956,0.087251 -0.039956,0.1793945 0,0.1231299 0.07665,0.2348438 0.077466,0.1117139 0.2421826,0.1117139 0.049741,0 0.097852,-0.00652 0.04811,-0.00734 0.1777636,-0.051372 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1309" />
+              <path
+                 d="M 8.1779444,8.1829996 V 6.8668961 H 8.3296143 V 7.6937418 L 8.7675,7.2721647 H 8.9697266 L 8.5326563,7.6937418 8.9811426,8.1829996 h -0.20875 L 8.3296143,7.6937418 v 0.4892578 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1311" />
+              <path
+                 d="M 9.0700243,8.3093912 V 8.1829996 H 9.955581 v 0.1263916 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1313" />
+              <path
+                 d="M 10.139868,8.1829996 V 7.2721647 h 0.15167 v 0.1989648 q 0.06523,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184287,-0.059526 0.08073,0 0.146777,0.043218 0.06605,0.042402 0.09214,0.1117139 0.02691,0.069312 0.02691,0.2723535 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.1899951 v 0.5308447 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1315" />
+              <path
+                 d="m 11.89875,8.1226578 q -0.181841,0.086436 -0.344112,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221796,-0.064419 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 11.292885,7.639108 h 0.454195 v -0.022017 q 0,-0.1117138 -0.05463,-0.1777636 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1317" />
+              <path
+                 d="m 12.904175,8.1463053 q -0.106821,0.044849 -0.154931,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 7.4743912 H 12.094454 V 7.3479996 h 0.227505 V 6.9810563 h 0.151669 v 0.3669433 h 0.405269 v 0.1263916 h -0.405269 v 0.3644971 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1319" />
+              <path
+                 d="M 13.182237,8.1829996 13.033829,7.2721647 h 0.141069 l 0.08643,0.5544921 0.02283,0.1288379 0.02202,-0.1288379 0.145147,-0.5544921 h 0.136176 l 0.163902,0.5544921 0.02854,0.1288379 0.01876,-0.1288379 0.08725,-0.5544921 h 0.116606 L 13.854966,8.1829996 H 13.713081 L 13.53858,7.5967057 13.510855,7.4678678 h -0.0041 l -0.02528,0.1280225 -0.151669,0.5871093 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1321" />
+              <path
+                 d="m 14.520357,8.2082779 q -0.195703,0 -0.313125,-0.1361767 Q 14.08981,7.935109 14.08981,7.7271744 q 0,-0.2079345 0.117422,-0.3441113 0.117422,-0.1361767 0.313125,-0.1361767 0.194887,0 0.312309,0.1361767 0.117422,0.1361768 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449268 -0.117422,0.1361767 -0.312309,0.1361767 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194073,0.09459 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1323" />
+              <path
+                 d="M 15.224072,8.1829996 V 7.2721647 h 0.15167 v 0.1989648 q 0.07094,-0.1125293 0.162271,-0.1679785 0.09214,-0.056265 0.204673,-0.056265 0.08236,0 0.164717,0.025278 V 7.6007828 H 15.761441 V 7.3928483 q -0.03833,-0.00652 -0.06034,-0.00652 -0.0848,0 -0.166348,0.066865 -0.08154,0.066865 -0.159009,0.2005957 v 0.5292138 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1325" />
+              <path
+                 d="M 16.188726,8.1829996 V 6.8668961 h 0.15167 v 0.8268457 l 0.437885,-0.4215771 h 0.202227 l -0.43707,0.4215771 0.448486,0.4892578 h -0.20875 L 16.340396,7.6937418 v 0.4892578 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1327" />
+            </g>
+            <g
+               aria-label="generic"
+               id="text90"
+               class="u"
+               style="font-weight:700;white-space:pre;fill:#71bef2">
+              <path
+                 d="m 0.73470213,10.149327 q -0.0693115,0.11416 -0.16716308,0.172056 -0.0970361,0.05789 -0.1785791,0.05789 -0.11416015,0 -0.20548828,-0.09867 -0.09051269,-0.09867 -0.09051269,-0.2992623 0,-0.1581933 0.0603418,-0.2821386 0.0603418,-0.1247608 0.16145507,-0.1965186 0.10111328,-0.072573 0.25033691,-0.072573 0.0432178,0 0.13046875,0.00897 0.0130469,0.00163 0.0391406,0.00408 h 0.15248535 v 0.6441898 q 0,0.229951 -0.006523,0.280507 -0.005708,0.05137 -0.0195703,0.10356 -0.0326172,0.121499 -0.14922363,0.191626 -0.11579101,0.07013 -0.28050781,0.07013 -0.16553222,0 -0.33514159,-0.0848 v -0.153301 q 0.06441894,0.04403 0.15819336,0.07747 0.0945898,0.03425 0.18265624,0.03425 0.0693115,0 0.13128418,-0.02202 0.0619726,-0.02202 0.10029785,-0.0636 0.0383252,-0.04159 0.0521875,-0.09704 0.0138623,-0.05463 0.0138623,-0.145962 z m 0,-0.1802097 V 9.5785265 q -0.0807275,-0.021201 -0.15003906,-0.021201 -0.1402539,0 -0.23402831,0.1084522 -0.092959,0.1084521 -0.092959,0.2951855 0,0.135361 0.0505566,0.204673 0.0513721,0.0685 0.11660645,0.0685 0.0709424,0 0.15656249,-0.07176 0.0856201,-0.07176 0.15330078,-0.1932567 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1330" />
+              <path
+                 d="m 1.8852734,10.293658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.2438138 0,-0.1247607 0.055449,-0.2397363 0.055449,-0.1149756 0.1549317,-0.1785791 0.099482,-0.064419 0.2217968,-0.064419 0.1622705,0 0.2601221,0.115791 0.098667,0.1157911 0.098667,0.3571582 v 0.032617 H 1.2704395 q 0,0.09459 0.039141,0.1728708 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z M 1.2794092,9.8101085 h 0.4541943 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.067681 -0.066865,0.066865 -0.093774,0.1981494 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1332" />
+              <path
+                 d="M 2.1290869,10.354 V 9.4431652 H 2.2807568 V 9.64213 q 0.065234,-0.1051904 0.157378,-0.1647168 0.092144,-0.059526 0.1842871,-0.059526 0.080728,0 0.1467773,0.043218 0.06605,0.042402 0.092144,0.1117139 0.026909,0.069311 0.026909,0.2723535 V 10.354 H 2.736582 V 9.8264171 q 0,-0.1312842 -0.013047,-0.1728711 -0.012231,-0.042402 -0.046479,-0.069311 -0.033433,-0.026909 -0.073389,-0.026909 -0.079912,0 -0.1720557,0.075835 -0.091328,0.075835 -0.1508545,0.1899951 V 10.354 Z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1334" />
+              <path
+                 d="m 3.8879689,10.293658 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.2438138 0,-0.1247607 0.055449,-0.2397363 0.055449,-0.1149756 0.1549316,-0.1785791 0.099482,-0.064419 0.2217969,-0.064419 0.1622705,0 0.260122,0.115791 0.098667,0.1157911 0.098667,0.3571582 v 0.032617 H 3.2731349 q 0,0.09459 0.039141,0.1728708 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 3.2821046,9.8101085 h 0.4541943 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.06605 -0.145962,-0.06605 -0.092144,0 -0.1598242,0.067681 -0.066865,0.066865 -0.093774,0.1981494 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1336" />
+              <path
+                 d="M 4.2092481,10.354 V 9.4431652 H 4.360918 V 9.64213 q 0.070942,-0.1125293 0.1622705,-0.1679785 0.092144,-0.056265 0.2046728,-0.056265 0.082358,0 0.1647168,0.025278 V 9.7717833 H 4.7466162 V 9.5638487 q -0.038325,-0.00652 -0.060342,-0.00652 -0.084805,0 -0.1663476,0.066865 -0.081543,0.066865 -0.1590088,0.2005957 V 10.354 Z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1338" />
+              <path
+                 d="M 5.3883593,10.354 V 9.5695568 H 5.1355761 V 9.4431652 H 5.5400292 V 10.227608 H 5.7936278 V 10.354 Z M 5.363081,9.114547 q 0,-0.051372 0.035063,-0.07665 0.035064,-0.025278 0.06605,-0.025278 0.031802,0 0.066865,0.025278 0.035063,0.025278 0.035063,0.07665 0,0.050557 -0.035063,0.075835 -0.035063,0.025278 -0.066865,0.025278 -0.030986,0 -0.06605,-0.025278 Q 5.363081,9.1651036 5.363081,9.114547 Z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1340" />
+              <path
+                 d="m 6.9009817,10.327906 q -0.1524854,0.05137 -0.290293,0.05137 -0.1369922,0 -0.2438134,-0.06279 -0.1060059,-0.0636 -0.1655323,-0.17124 -0.059526,-0.108452 -0.059526,-0.2462597 0,-0.2071191 0.1345459,-0.3441113 0.1353613,-0.1369922 0.3261718,-0.1369922 0.1410694,0 0.2984473,0.053003 v 0.1459619 q -0.1590088,-0.072573 -0.284585,-0.072573 -0.083174,0 -0.1565625,0.041587 -0.073389,0.040771 -0.1133447,0.1280225 -0.039956,0.087251 -0.039956,0.1793945 0,0.1231297 0.07665,0.2348437 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1342" />
+            </g>
+            <g
+               aria-label="mellanox_dirver"
+               id="text92"
+               class="u"
+               style="font-weight:700;white-space:pre;fill:#71bef2">
+              <path
+                 d="m 0.05789551,12.525 v -0.910835 h 0.13291503 v 0.20875 Q 0.25359863,11.69 0.30741698,11.639443 q 0.0546338,-0.05056 0.11008301,-0.05056 0.0660498,0 0.10600586,0.05219 0.0407715,0.05137 0.0407715,0.146777 v 0.04893 q 0.0269092,-0.08317 0.0644189,-0.134546 0.0383252,-0.05219 0.0790967,-0.08236 0.0407715,-0.03099 0.0937744,-0.03099 0.0587109,0 0.10029785,0.04974 0.0415869,0.04974 0.0415869,0.198149 V 12.525 H 0.81053709 v -0.622173 q 0,-0.07665 -0.004893,-0.104375 -0.004893,-0.02854 -0.0195703,-0.04322 -0.0146777,-0.01468 -0.0318018,-0.01468 -0.0424023,0 -0.0913281,0.06523 -0.0481104,0.06442 -0.098667,0.214458 V 12.525 H 0.4370703 v -0.621358 q 0,-0.120683 -0.0236475,-0.141885 -0.0236475,-0.0212 -0.0424023,-0.0212 -0.0415869,0 -0.0896973,0.07257 -0.0472949,0.07257 -0.0905127,0.185917 V 12.525 Z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1345" />
+              <path
+                 d="m 1.8852734,12.464658 q -0.1818408,0.08643 -0.3441113,0.08643 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 1.2704395 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1347" />
+              <path
+                 d="M 2.3737158,12.525 V 11.336103 H 2.1013623 v -0.127207 h 0.4240234 v 1.189712 h 0.284585 V 12.525 Z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1349" />
+              <path
+                 d="M 3.3750636,12.525 V 11.336103 H 3.1027101 v -0.127207 h 0.4240234 v 1.189712 h 0.284585 V 12.525 Z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1351" />
+              <path
+                 d="m 4.7303076,12.320327 q -0.069311,0.11416 -0.1671631,0.172055 -0.097036,0.0579 -0.1785791,0.0579 -0.1141601,0 -0.2054882,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.161455,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304688,0.009 0.013047,0.0016 0.039141,0.0041 H 4.882793 v 0.643374 q 0,0.164716 0.034248,0.267461 H 4.7588477 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.150039,-0.0212 -0.1402539,0 -0.2340284,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204672 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1353" />
+              <path
+                 d="m 5.1331298,12.525 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467774,0.04322 0.06605,0.0424 0.092143,0.111714 0.026909,0.06931 0.026909,0.272354 V 12.525 H 5.7406249 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012231,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07583 -0.1508545,0.189995 V 12.525 Z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1355" />
+              <path
+                 d="m 6.5095754,12.550278 q -0.1957031,0 -0.3131249,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.3131249,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.1214991,0 0.1932569,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932569,-0.09459 -0.1223144,0 -0.1940722,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940722,0.09459 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1357" />
+              <path
+                 d="M 7.2304152,12.525 H 7.0550978 L 7.4130714,12.047973 7.0787453,11.614165 h 0.1940722 l 0.2372901,0.305786 0.2307666,-0.305786 H 7.9129298 L 7.5965431,12.033296 7.9724562,12.525 H 7.7775685 L 7.5003224,12.162133 Z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1359" />
+              <path
+                 d="M 8.0686768,12.651391 V 12.525 h 0.8855566 v 0.126391 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1361" />
+              <path
+                 d="m 9.746831,12.320327 q -0.069312,0.11416 -0.1671631,0.172055 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.1614551,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 V 11.208896 H 9.8993163 V 12.525 H 9.746831 Z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204672 0.051372,0.0685 0.1166065,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1363" />
+              <path
+                 d="m 10.395097,12.525 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 V 12.525 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1365" />
+              <path
+                 d="m 11.218681,12.525 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 12.525 Z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1367" />
+              <path
+                 d="m 12.438565,12.525 -0.395483,-0.910835 h 0.166347 l 0.31231,0.72084 0.318833,-0.72084 h 0.15167 L 12.593497,12.525 Z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1369" />
+              <path
+                 d="m 13.901446,12.464658 q -0.181841,0.08643 -0.344112,0.08643 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1371" />
+              <path
+                 d="m 14.222725,12.525 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 12.525 Z"
+                 style="font-weight:700;white-space:pre;fill:#71bef2"
+                 id="path1373" />
+            </g>
+            <path
+               class="e"
+               d="m 0,13.026 h 1 v 2.171 H 0 Z"
+               id="path94" />
+            <g
+               id="text96"
+               class="f"
+               style="white-space:pre" />
+            <path
+               class="e"
+               d="m 1.002,13.026 h 5 v 2.171 h -5 z"
+               id="path98" />
+            <g
+               aria-label="kvaps"
+               id="text100"
+               class="g"
+               style="font-weight:700;white-space:pre">
+              <path
+                 d="M 1.1691631,14.696 V 13.379897 H 1.320833 v 0.826845 L 1.7587187,13.785165 H 1.9609453 L 1.523875,14.206742 1.9723613,14.696 h -0.20875 L 1.320833,14.206742 V 14.696 Z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1377" />
+              <path
+                 d="M 2.4257402,14.696 2.0302568,13.785165 h 0.1663477 l 0.3123095,0.72084 0.318833,-0.72084 H 2.9794169 L 2.5806718,14.696 Z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1379" />
+              <path
+                 d="m 3.7296123,14.491327 q -0.069312,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299262 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524853 v 0.643374 q 0,0.164717 0.034248,0.267461 H 3.7581523 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108453 -0.092959,0.295186 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1381" />
+              <path
+                 d="m 4.2726886,13.989838 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.05789 0.1785791,-0.05789 0.1141601,0 0.2054882,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.161455,0.196518 -0.1011133,0.07176 -0.250337,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353897 H 4.1210187 v -1.264732 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1383" />
+              <path
+                 d="m 5.1443828,14.64789 v -0.16064 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023647,-0.02609 -0.1174218,-0.06442 l -0.052188,-0.0212 -0.1051905,-0.04159 q -0.1696093,-0.06605 -0.2136425,-0.122314 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.11253 0.086436,-0.185103 0.087251,-0.07257 0.2821386,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137808 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027442,0.03751 q 0.1410693,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.091328,0.194887 -0.090513,0.07583 -0.2902929,0.07583 -0.174502,0 -0.3587891,-0.07339 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1385" />
+            </g>
+            <path
+               class="e"
+               d="m 6.012,13.026 h 1 v 2.171 h -1 z"
+               id="path102" />
+            <g
+               id="text104"
+               class="f"
+               style="white-space:pre" />
+            <path
+               class="h"
+               d="m 7.014,13.026 h 1 v 2.171 h -1 z"
+               id="path106" />
+            <g
+               aria-label=""
+               id="text108"
+               class="i"
+               style="white-space:pre;fill:#00d7ff">
+              <path
+                 d="m 7.0139999,13.126298 1.0258106,0.990747 -1.0258106,0.992378 z"
+                 style="white-space:pre;fill:#00d7ff"
+                 id="path1389" />
+            </g>
+            <path
+               class="h"
+               d="m 8.016,13.026 h 1 v 2.171 h -1 z"
+               id="path110" />
+            <g
+               id="text112"
+               class="j"
+               style="white-space:pre;fill:#eeeeee" />
+            <path
+               class="h"
+               d="m 9.018,13.026 h 1 v 2.171 h -1 z"
+               id="path114" />
+            <g
+               aria-label="~"
+               id="text116"
+               class="k"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 9.0636637,14.367382 v -0.01468 q 0,-0.106821 0.062788,-0.185102 0.063603,-0.0791 0.1704248,-0.0791 0.026909,0 0.052188,0.0057 0.026094,0.0049 0.058711,0.01794 0.032617,0.01223 0.097852,0.04893 l 0.098667,0.05463 q 0.090513,0.04974 0.1475927,0.04974 0.060342,0 0.088882,-0.04322 0.029356,-0.04403 0.029356,-0.0954 v -0.01305 h 0.1043749 v 0.01305 q 0,0.136177 -0.077466,0.201411 -0.07665,0.06442 -0.1630859,0.06442 -0.080728,0 -0.2136426,-0.07583 l -0.083174,-0.04811 q -0.09459,-0.05382 -0.1524853,-0.05382 -0.032617,0 -0.061157,0.01712 -0.027725,0.01712 -0.044849,0.05463 -0.017124,0.03751 -0.017124,0.06605 v 0.01468 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1393" />
+            </g>
+            <path
+               class="h"
+               d="m 10.02,13.026 h 1 v 2.171 h -1 z"
+               id="path118" />
+            <g
+               aria-label="/"
+               id="text120"
+               class="j"
+               style="white-space:pre;fill:#eeeeee">
+              <path
+                 d="M 10.196133,14.734325 H 10.04691 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#eeeeee"
+                 id="path1396" />
+            </g>
+            <path
+               class="h"
+               d="m 11.022,13.026 h 8 v 2.171 h -8 z"
+               id="path122" />
+            <g
+               aria-label="kubefarm"
+               id="text124"
+               class="k"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 11.189163,14.696 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 L 11.340833,14.206742 V 14.696 Z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1399" />
+              <path
+                 d="M 12.899119,13.785165 V 14.696 H 12.74745 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1401" />
+              <path
+                 d="m 13.291341,13.989838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1403" />
+              <path
+                 d="m 14.909969,14.635658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1405" />
+              <path
+                 d="M 15.365794,14.696 V 13.987392 H 15.163568 V 13.861 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 V 13.861 H 15.8787 v 0.126392 H 15.517464 V 14.696 Z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1407" />
+              <path
+                 d="m 16.753655,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1409" />
+              <path
+                 d="m 17.233944,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 14.696 Z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1411" />
+              <path
+                 d="m 18.08933,14.696 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 14.696 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 14.696 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 V 14.696 Z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1413" />
+            </g>
+            <path
+               class="h"
+               d="m 19.038,13.026 h 1 v 2.171 h -1 z"
+               id="path126" />
+            <g
+               aria-label="/"
+               id="text128"
+               class="j"
+               style="white-space:pre;fill:#eeeeee">
+              <path
+                 d="m 19.214133,14.734325 h -0.149224 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#eeeeee"
+                 id="path1416" />
+            </g>
+            <path
+               class="h"
+               d="m 20.04,13.026 h 8 v 2.171 h -8 z"
+               id="path130" />
+            <g
+               aria-label="examples"
+               id="text132"
+               class="k"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 20.923927,14.635658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1419" />
+              <path
+                 d="m 21.26233,14.696 h -0.175317 l 0.357973,-0.477026 -0.334326,-0.433809 h 0.194072 l 0.23729,0.305786 0.230767,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194888 l -0.277246,-0.362866 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1421" />
+              <path
+                 d="m 22.767613,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1423" />
+              <path
+                 d="m 23.10194,14.696 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 14.696 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 14.696 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 14.696 Z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1425" />
+              <path
+                 d="m 24.312037,13.989838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1427" />
+              <path
+                 d="m 25.41776,14.696 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284584 V 14.696 Z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1429" />
+              <path
+                 d="m 26.932013,14.635658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1431" />
+              <path
+                 d="m 27.186427,14.64789 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1433" />
+            </g>
+            <path
+               class="h"
+               d="m 28.056,13.026 h 1 v 2.171 h -1 z"
+               id="path134" />
+            <g
+               id="text136"
+               class="j"
+               style="white-space:pre;fill:#eeeeee" />
+            <g
+               aria-label=""
+               id="text138"
+               class="l"
+               style="white-space:pre;fill:#005f87">
+              <path
+                 d="m 29.058001,13.126298 1.02581,0.990747 -1.02581,0.992378 z"
+                 style="white-space:pre;fill:#005f87"
+                 id="path1437" />
+            </g>
+            <g
+               aria-label="helm"
+               id="text140"
+               class="m"
+               style="white-space:pre;fill:#a8cc8c">
+              <path
+                 d="m 31.188392,14.696 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 V 14.696 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 14.696 Z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1440" />
+              <path
+                 d="m 32.947274,14.635658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 H 32.33244 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1442" />
+              <path
+                 d="m 33.435716,14.696 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 14.696 Z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1444" />
+              <path
+                 d="m 34.123939,14.696 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 14.696 H 34.87658 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 14.696 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 14.696 Z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1446" />
+            </g>
+            <g
+               aria-label="upgrade"
+               id="text142"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 36.94777,13.785165 V 14.696 H 36.7961 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1449" />
+              <path
+                 d="m 37.339992,13.989838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1451" />
+              <path
+                 d="m 38.809396,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1453" />
+              <path
+                 d="m 39.279899,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1455" />
+              <path
+                 d="m 40.802306,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1457" />
+              <path
+                 d="m 41.813439,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 V 14.696 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1459" />
+              <path
+                 d="m 42.964011,14.635658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1461" />
+            </g>
+            <g
+               aria-label="foo"
+               id="text144"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 44.426405,14.696 V 13.987392 H 44.224178 V 13.861 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118238,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 V 13.861 h 0.361236 v 0.126392 H 44.578074 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1464" />
+              <path
+                 d="m 45.590838,14.721278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1466" />
+              <path
+                 d="m 46.592186,14.721278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117421,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1468" />
+            </g>
+            <g
+               aria-label="kvaps/kubefarm"
+               id="text146"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 48.263164,14.696 v -1.316103 h 0.15167 v 0.826845 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 48.414834,14.206742 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1471" />
+              <path
+                 d="m 49.519741,14.696 -0.395483,-0.910835 h 0.166347 l 0.31231,0.72084 0.318833,-0.72084 h 0.15167 L 49.674673,14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1473" />
+              <path
+                 d="m 50.823613,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1475" />
+              <path
+                 d="m 51.366689,13.989838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1477" />
+              <path
+                 d="m 52.238383,14.64789 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1479" />
+              <path
+                 d="m 53.278872,14.734325 h -0.149224 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1481" />
+              <path
+                 d="m 54.27125,14.696 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 54.42292,14.206742 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1483" />
+              <path
+                 d="M 55.981206,13.785165 V 14.696 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1485" />
+              <path
+                 d="m 56.373427,13.989838 q 0.07013,-0.11416 0.167164,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.151669 v -1.316103 h 0.151669 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1487" />
+              <path
+                 d="m 57.992055,14.635658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1489" />
+              <path
+                 d="M 58.44788,14.696 V 13.987392 H 58.245654 V 13.861 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 V 13.861 h 0.361236 v 0.126392 H 58.59955 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1491" />
+              <path
+                 d="m 59.835742,14.491327 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1493" />
+              <path
+                 d="m 60.31603,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1495" />
+              <path
+                 d="m 61.171416,14.696 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 14.696 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 14.696 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1497" />
+            </g>
+            <g
+               aria-label="-f"
+               id="text148"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 63.311102,14.246698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1500" />
+              <path
+                 d="M 64.46575,14.696 V 13.987392 H 64.263524 V 13.861 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118238,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 V 13.861 h 0.361236 v 0.126392 H 64.61742 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1502" />
+            </g>
+            <g
+               aria-label="generic/values.yaml"
+               id="text150"
+               style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 66.866706,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335142,-0.0848 v -0.153301 q 0.06442,0.04403 0.158194,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 id="path1505" />
+              <path
+                 d="m 68.017277,14.635658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 id="path1507" />
+              <path
+                 d="m 68.261091,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 14.696 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 14.696 Z"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 id="path1509" />
+              <path
+                 d="m 70.019973,14.635658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 id="path1511" />
+              <path
+                 d="m 70.341252,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 H 70.87862 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 14.696 Z"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 id="path1513" />
+              <path
+                 d="M 71.520363,14.696 V 13.911557 H 71.26758 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 14.696 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 id="path1515" />
+              <path
+                 d="m 73.032985,14.669906 q -0.152485,0.05137 -0.290292,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284584,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 id="path1517" />
+              <path
+                 d="m 73.31757,14.734325 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 id="path1519" />
+              <path
+                 d="m 74.565178,14.696 -0.395484,-0.910835 h 0.166348 l 0.312309,0.72084 0.318833,-0.72084 h 0.15167 L 74.720109,14.696 Z"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 id="path1521" />
+              <path
+                 d="m 75.86905,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.17858,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 H 75.89759 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 id="path1523" />
+              <path
+                 d="m 76.516501,14.696 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 14.696 Z"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 id="path1525" />
+              <path
+                 d="M 78.022599,13.785165 V 14.696 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 id="path1527" />
+              <path
+                 d="m 79.032102,14.635658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 id="path1529" />
+              <path
+                 d="m 79.286516,14.64789 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.151669,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 id="path1531" />
+              <path
+                 d="m 80.651545,14.734325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 id="path1533" />
+              <path
+                 d="M 81.613752,14.659306 81.19299,13.785165 h 0.167163 l 0.335142,0.68333 0.280508,-0.68333 h 0.152485 l -0.353081,0.846416 q -0.111714,0.268277 -0.212827,0.356343 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123945,-0.01223 v -0.133731 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130468,-0.02854 0.05708,-0.02854 0.104375,-0.101114 0.0473,-0.07257 0.06687,-0.125576 z"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 id="path1535" />
+              <path
+                 d="m 82.878483,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 id="path1537" />
+              <path
+                 d="m 83.21281,14.696 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 14.696 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 14.696 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 V 14.696 Z"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 id="path1539" />
+              <path
+                 d="m 84.527282,14.696 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 14.696 Z"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 id="path1541" />
+            </g>
+            <g
+               aria-label="Release"
+               id="text152"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.28621581,16.329632 v 0.537369 H 0.12149902 v -1.265547 h 0.33840331 q 0.16553222,0 0.24381347,0.03425 0.0782812,0.03343 0.12068359,0.101928 0.0432178,0.0685 0.0432178,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0790967,0.132915 -0.0497412,0.0579 -0.14433105,0.110083 l 0.36612792,0.591187 H 0.7860742 L 0.45093261,16.329632 Z m 0,-0.127207 h 0.2307666 q 0.0774658,-0.0424 0.11497558,-0.08644 0.0383252,-0.04403 0.0578955,-0.09378 0.0195703,-0.04974 0.0195703,-0.09948 0,-0.08888 -0.0652344,-0.141069 -0.0644189,-0.053 -0.23484375,-0.053 H 0.28621581 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1544" />
+              <path
+                 d="m 1.8852734,16.806659 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 1.2704395 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1546" />
+              <path
+                 d="M 2.3737158,16.867001 V 15.678104 H 2.1013623 v -0.127207 h 0.4240234 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1548" />
+              <path
+                 d="m 3.8879689,16.806659 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 3.2731349 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058643,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.145962,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1550" />
+              <path
+                 d="m 4.7303076,16.662328 q -0.069311,0.11416 -0.1671631,0.172055 -0.097036,0.0579 -0.1785791,0.0579 -0.1141601,0 -0.2054882,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.161455,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304688,0.009 0.013047,0.0016 0.039141,0.0041 H 4.882793 v 0.643374 q 0,0.164716 0.034248,0.267461 H 4.7588477 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.150039,-0.0212 -0.1402539,0 -0.2340284,0.108452 -0.092959,0.108452 -0.092959,0.295185 0,0.135362 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1552" />
+              <path
+                 d="m 5.1437304,16.81889 v -0.160639 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 l -0.052188,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122315 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.112529 0.086436,-0.185102 0.087251,-0.07257 0.2821387,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137807 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027441,0.03751 q 0.1410694,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07583 -0.290293,0.07583 -0.1745019,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1554" />
+              <path
+                 d="m 6.892012,16.806659 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 6.277178 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 6.2861477,16.323109 H 6.740342 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.145962,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1556" />
+            </g>
+            <g
+               aria-label="&quot;foo&quot;"
+               id="text154"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 8.3951746,16.006722 h -0.104375 l -0.052188,-0.455825 h 0.203042 z m 0.3514502,0 H 8.6430652 l -0.04648,-0.455825 h 0.1989649 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1559" />
+              <path
+                 d="M 9.3557508,16.867001 V 16.158392 H 9.1535242 v -0.126391 h 0.2022266 v -0.0424 q 0,-0.18021 0.040771,-0.266645 0.040771,-0.08644 0.1255762,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.1060059,0 0.2152735,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.2095655,-0.03914 -0.072573,0 -0.1280224,0.02691 -0.055449,0.02691 -0.087251,0.08807 -0.030986,0.06034 -0.030986,0.205489 v 0.05871 H 9.868656 v 0.126391 H 9.5074207 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1561" />
+              <path
+                 d="m 10.520184,16.892279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1563" />
+              <path
+                 d="m 11.521532,16.892279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1565" />
+              <path
+                 d="M 12.400565,16.006722 H 12.29619 l -0.05219,-0.455825 h 0.203042 z m 0.35145,0 h -0.103559 l -0.04648,-0.455825 h 0.198965 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1567" />
+            </g>
+            <g
+               aria-label="has"
+               id="text156"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 14.154391,16.867001 v -1.316104 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.14107,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508829 h -0.151669 v -0.527583 q 0,-0.131285 -0.01305,-0.172872 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1570" />
+              <path
+                 d="m 15.754265,16.662328 q -0.06931,0.11416 -0.167164,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1572" />
+              <path
+                 d="m 16.167687,16.81889 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1574" />
+            </g>
+            <g
+               aria-label="been"
+               id="text158"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 18.302645,16.160838 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1577" />
+              <path
+                 d="m 19.921273,16.806659 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1579" />
+              <path
+                 d="m 20.92262,16.806659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1581" />
+              <path
+                 d="m 21.166434,16.867001 v -0.910835 h 0.15167 v 0.198964 q 0.06523,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172872 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1583" />
+            </g>
+            <g
+               aria-label="upgraded."
+               id="text160"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 23.921771,15.956166 v 0.910835 h -0.15167 V 16.66722 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07584 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1586" />
+              <path
+                 d="m 24.313993,16.160838 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1588" />
+              <path
+                 d="m 25.783397,16.662328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 V 17.00807 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1590" />
+              <path
+                 d="m 26.2539,16.867001 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1592" />
+              <path
+                 d="m 27.776307,16.662328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1594" />
+              <path
+                 d="m 28.78744,16.662328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161456,-0.196519 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 H 28.78744 Z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1596" />
+              <path
+                 d="m 29.938011,16.806659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1598" />
+              <path
+                 d="m 30.790135,16.662328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152486 v 1.316104 h -0.152486 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1600" />
+              <path
+                 d="m 31.557455,16.905326 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1602" />
+            </g>
+            <g
+               aria-label="Happy"
+               id="text162"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 33.168746,16.867001 v -1.265547 h 0.164717 v 0.544707 h 0.468056 v -0.544707 h 0.163902 v 1.265547 h -0.163902 v -0.594449 h -0.468056 v 0.594449 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1605" />
+              <path
+                 d="m 34.792267,16.662328 q -0.06931,0.11416 -0.167164,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1607" />
+              <path
+                 d="m 35.335343,16.160838 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1609" />
+              <path
+                 d="m 36.33669,16.160838 q 0.07013,-0.11416 0.167164,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.151669 v -1.264731 h 0.151669 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1611" />
+              <path
+                 d="m 37.532926,16.830306 -0.420762,-0.87414 h 0.167163 l 0.335142,0.68333 0.280507,-0.68333 h 0.152486 l -0.353081,0.846416 q -0.111714,0.268276 -0.212827,0.356342 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123946,-0.01223 v -0.13373 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101113 0.04729,-0.07257 0.06686,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1613" />
+            </g>
+            <g
+               aria-label="Helming!"
+               id="text164"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 39.180743,16.867001 v -1.265547 h 0.164717 v 0.544707 h 0.468057 v -0.544707 h 0.163901 v 1.265547 H 39.813517 V 16.272552 H 39.34546 v 0.594449 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1616" />
+              <path
+                 d="m 40.963273,16.806659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1618" />
+              <path
+                 d="m 41.451715,16.867001 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1620" />
+              <path
+                 d="m 42.139938,16.867001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09378,-0.03099 0.05871,0 0.100297,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525953 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1622" />
+              <path
+                 d="m 43.465011,16.867001 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253598 v 0.126392 z m -0.02528,-1.239454 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1624" />
+              <path
+                 d="m 44.211129,16.867001 v -0.910835 h 0.15167 v 0.198964 q 0.06523,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172872 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1626" />
+              <path
+                 d="m 45.820787,16.662328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280507,0.07013 -0.165533,0 -0.335142,-0.0848 V 17.00807 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182657,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03832,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1628" />
+              <path
+                 d="m 46.518795,16.506581 -0.03751,-0.905127 h 0.202227 l -0.03833,0.905127 z m 0.07013,0.398745 q -0.04811,0 -0.08317,-0.03506 -0.03425,-0.03425 -0.03425,-0.08236 0,-0.04811 0.03425,-0.08236 0.03506,-0.03425 0.08317,-0.03425 0.0473,0 0.08154,0.03425 0.03506,0.03343 0.03506,0.08236 0,0.04893 -0.03506,0.08317 -0.03506,0.03425 -0.08154,0.03425 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1630" />
+            </g>
+            <g
+               aria-label="NAME:"
+               id="text166"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.25441406,19.038 H 0.10274414 v -1.265547 h 0.1484082 l 0.44767088,0.842339 0.0489258,0.125576 h 0.004077 L 0.747749,18.614792 V 17.772453 H 0.89941892 V 19.038 H 0.747749 l -0.43543944,-0.828476 -0.0611572,-0.132915 0.003262,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1633" />
+              <path
+                 d="M 1.1864502,19.038 H 1.0282568 L 1.4180322,17.772453 H 1.5851953 L 1.977417,19.038 H 1.8037305 L 1.7172949,18.759939 H 1.2720703 Z m 0.1247607,-0.404453 h 0.3693897 l -0.1524854,-0.480288 -0.035879,-0.127207 -0.031802,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1635" />
+              <path
+                 d="m 2.1812744,19.038 h -0.132915 v -1.265547 h 0.1655322 l 0.2919238,0.833369 0.2919238,-0.833369 H 2.9591943 V 19.038 H 2.8075244 v -0.80646 l 0.00408,-0.110898 h -0.00408 L 2.7716455,18.23154 2.5759424,18.785217 H 2.4112256 L 2.2130762,18.23154 2.1812744,18.120642 h -0.00408 l 0.00408,0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1637" />
+              <path
+                 d="M 3.8529054,18.898562 V 19.038 H 3.1695753 V 17.772453 H 3.8398585 V 17.89966 H 3.3342921 v 0.429732 h 0.4550098 v 0.126391 H 3.3342921 v 0.442779 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1639" />
+              <path
+                 d="m 4.5060645,19.076325 q -0.054634,0 -0.093775,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093775,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093775,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093775,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1641" />
+            </g>
+            <g
+               aria-label="foo"
+               id="text168"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 6.3504034,19.038 V 18.329392 H 6.1481768 V 18.203 h 0.2022266 v -0.0424 q 0,-0.18021 0.040771,-0.266646 0.040771,-0.08643 0.1255761,-0.141884 0.08562,-0.05545 0.2258741,-0.05545 0.1060058,0 0.2152734,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.2095654,-0.03914 -0.072573,0 -0.1280225,0.02691 -0.055449,0.02691 -0.087251,0.08807 -0.030986,0.06034 -0.030986,0.205488 V 18.203 h 0.3612354 v 0.126392 H 6.5020733 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1644" />
+              <path
+                 d="m 7.514837,19.063278 q -0.1957031,0 -0.313125,-0.136176 -0.1174219,-0.136993 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207934 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1646" />
+              <path
+                 d="m 8.5161847,19.063278 q -0.1957032,0 -0.313125,-0.136176 -0.1174219,-0.136993 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948876,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207934 -0.1174219,0.344927 -0.1174219,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1648" />
+            </g>
+            <g
+               aria-label="LAST"
+               id="text170"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.86190916,21.069561 V 21.209 H 0.1785791 v -1.265547 h 0.16471679 v 1.126108 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1651" />
+              <path
+                 d="M 1.1864502,21.209 H 1.0282568 L 1.4180322,19.943453 H 1.5851953 L 1.977417,21.209 H 1.8037305 L 1.7172949,20.930938 H 1.2720703 Z m 0.1247607,-0.404453 h 0.3693897 l -0.1524854,-0.480289 -0.035879,-0.127207 -0.031802,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1653" />
+              <path
+                 d="m 2.1307178,21.18209 v -0.154931 q 0.1957031,0.09296 0.3555273,0.09296 0.066865,0 0.1280225,-0.02528 0.061157,-0.02609 0.092144,-0.0742 0.031802,-0.04811 0.031802,-0.104375 0,-0.06605 -0.043218,-0.123129 -0.043218,-0.0579 -0.1622705,-0.127208 l -0.083174,-0.04811 -0.083989,-0.04811 q -0.2217968,-0.131284 -0.2217968,-0.326172 0,-0.1427 0.098667,-0.239736 0.099482,-0.09785 0.3098633,-0.09785 0.1353613,0 0.2617529,0.03914 v 0.141069 q -0.1394384,-0.05382 -0.271538,-0.05382 -0.1051905,0 -0.1704248,0.05545 -0.064419,0.05545 -0.064419,0.13373 0,0.07747 0.049741,0.128838 0.049741,0.05137 0.1272071,0.09459 l 0.063604,0.03833 0.079097,0.04811 0.066865,0.03914 q 0.2079345,0.127207 0.2079345,0.319649 0,0.146777 -0.1068212,0.251967 -0.1068213,0.105191 -0.3424805,0.105191 -0.075019,0 -0.1435156,-0.01305 -0.067681,-0.01223 -0.1785791,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1655" />
+              <path
+                 d="M 3.4223585,21.209 V 20.082891 H 3.0431837 v -0.139438 h 0.9238818 v 0.139438 H 3.5870753 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1657" />
+            </g>
+            <g
+               aria-label="DEPLOYED:"
+               id="text172"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 5.1363918,21.209 v -1.265547 h 0.3000781 q 0.2071192,0 0.307417,0.07257 0.1011133,0.07176 0.1516699,0.21772 0.050557,0.145962 0.050557,0.345742 0,0.18918 -0.053818,0.332695 -0.053003,0.1427 -0.1508545,0.220166 Q 5.6435891,21.209 5.4364699,21.209 Z m 0.1647168,-0.139439 h 0.110083 q 0.1671631,0 0.2381055,-0.05953 0.071758,-0.05953 0.1019287,-0.164717 0.030986,-0.106006 0.030986,-0.291924 0,-0.181841 -0.035879,-0.279692 -0.035879,-0.09785 -0.1027441,-0.150039 -0.066865,-0.053 -0.2193506,-0.053 H 5.3011086 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1660" />
+              <path
+                 d="M 6.8602102,21.069561 V 21.209 H 6.1768801 V 19.943453 H 6.8471633 V 20.07066 H 6.3415969 v 0.429731 h 0.4550098 v 0.126392 H 6.3415969 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1662" />
+              <path
+                 d="M 7.320928,20.747466 V 21.209 H 7.1562112 V 19.943453 H 7.470967 q 0.1940723,0 0.2829541,0.04403 0.088882,0.04322 0.1361768,0.127207 0.047295,0.08399 0.047295,0.187549 0,0.121499 -0.063603,0.226689 -0.063604,0.105191 -0.1777637,0.162271 -0.1133447,0.05626 -0.3082324,0.05626 z m 0,-0.126391 h 0.070942 q 0.1524854,0 0.2266895,-0.03914 0.074204,-0.03996 0.1141601,-0.11416 0.039956,-0.0742 0.039956,-0.16064 0,-0.109267 -0.071758,-0.172871 -0.070942,-0.0636 -0.2813232,-0.0636 H 7.320928 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1664" />
+              <path
+                 d="M 8.8759525,21.069561 V 21.209 H 8.1926224 v -1.265547 h 0.1647168 v 1.126108 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1666" />
+              <path
+                 d="m 9.5160647,21.247325 q -0.2152734,0 -0.3294336,-0.181026 -0.1133447,-0.18184 -0.1133447,-0.490073 0,-0.307417 0.1133447,-0.488442 0.1141602,-0.181841 0.3294336,-0.181841 0.2160888,0 0.3294336,0.181841 0.1133447,0.181025 0.1133447,0.488442 0,0.308233 -0.1133447,0.490073 -0.1133448,0.181026 -0.3294336,0.181026 z m 0,-0.127207 q 0.1190527,0 0.1981494,-0.134546 0.079912,-0.135361 0.079912,-0.409346 0,-0.273984 -0.079912,-0.40853 -0.079097,-0.135361 -0.1981494,-0.135361 -0.1190527,0 -0.1989649,0.135361 -0.079097,0.134546 -0.079097,0.40853 0,0.273985 0.079097,0.409346 0.079912,0.134546 0.1989649,0.134546 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1668" />
+              <path
+                 d="m 10.435869,21.209 v -0.585479 l -0.376728,-0.680068 h 0.186733 l 0.281323,0.502304 0.280508,-0.502304 h 0.168794 l -0.375913,0.680068 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1670" />
+              <path
+                 d="M 11.866949,21.069561 V 21.209 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505567 v 0.429731 h 0.45501 v 0.126392 h -0.45501 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1672" />
+              <path
+                 d="m 12.145826,21.209 v -1.265547 h 0.300078 q 0.207119,0 0.307417,0.07257 0.101113,0.07176 0.15167,0.21772 0.05056,0.145962 0.05056,0.345742 0,0.18918 -0.05382,0.332695 -0.053,0.1427 -0.150855,0.220166 -0.09785,0.07665 -0.30497,0.07665 z m 0.164716,-0.139439 h 0.110083 q 0.167163,0 0.238106,-0.05953 0.07176,-0.05953 0.101929,-0.164717 0.03099,-0.106006 0.03099,-0.291924 0,-0.181841 -0.03588,-0.279692 -0.03588,-0.09785 -0.102744,-0.150039 -0.06686,-0.053 -0.219351,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1674" />
+              <path
+                 d="m 13.521455,21.247325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1676" />
+            </g>
+            <g
+               aria-label="Fri"
+               id="text174"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 15.215102,21.209 v -1.265547 h 0.695562 v 0.127207 h -0.530845 v 0.429731 h 0.480288 v 0.126392 H 15.379819 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1679" />
+              <path
+                 d="m 16.235205,21.209 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1681" />
+              <path
+                 d="m 17.414316,21.209 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 V 21.209 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1683" />
+            </g>
+            <g
+               aria-label="Sep"
+               id="text176"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 19.166023,21.18209 v -0.154931 q 0.195703,0.09296 0.355527,0.09296 0.06686,0 0.128022,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.123129 -0.04322,-0.0579 -0.162271,-0.127208 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309864,-0.09785 0.135361,0 0.261753,0.03914 v 0.141069 q -0.139439,-0.05382 -0.271538,-0.05382 -0.105191,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319649 0,0.146777 -0.106821,0.251967 -0.106822,0.105191 -0.342481,0.105191 -0.07502,0 -0.143515,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1686" />
+              <path
+                 d="m 20.923274,21.148658 q -0.181841,0.08643 -0.344112,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1688" />
+              <path
+                 d="m 21.307341,20.502838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.180209 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1690" />
+            </g>
+            <g
+               aria-label="18"
+               id="text178"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 23.509164,21.082608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03832 -0.176949,0.07828 v -0.136993 q 0.178579,-0.07583 0.309864,-0.196518 h 0.151669 v 1.139155 h 0.304156 V 21.209 H 23.1993 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1693" />
+              <path
+                 d="m 24.421629,20.526485 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144332 0,0.05382 -0.01876,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298448,0.100298 -0.19978,0 -0.299262,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.0473,0.05463 -0.0473,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158194 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118238,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1695" />
+            </g>
+            <g
+               aria-label="15:58:05"
+               id="text180"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 26.515164,21.082608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03832 -0.176948,0.07828 v -0.136993 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 V 21.209 h -0.765688 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1698" />
+              <path
+                 d="m 27.206648,20.550948 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167978,0.152485 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.105191,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1700" />
+              <path
+                 d="m 28.555369,21.247325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1702" />
+              <path
+                 d="m 29.209344,20.550948 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1704" />
+              <path
+                 d="m 30.431673,20.526485 -0.02773,-0.02039 q -0.05789,-0.04077 -0.113344,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144332 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.19978,0 -0.299263,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02935,-0.05871 0.02935,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.0473,0.05463 -0.0473,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158194 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159008,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1706" />
+              <path
+                 d="m 31.559412,21.247325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1708" />
+              <path
+                 d="m 32.56076,19.905943 q 0.216089,0 0.329434,0.181841 0.113344,0.181025 0.113344,0.488442 0,0.308233 -0.113344,0.490073 -0.113345,0.181026 -0.329434,0.181026 -0.215273,0 -0.329434,-0.181026 -0.113344,-0.18184 -0.113344,-0.490073 0,-0.307417 0.113344,-0.488442 0.114161,-0.181841 0.329434,-0.181841 z m -0.247075,0.941006 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154931,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1710" />
+              <path
+                 d="m 33.214735,20.550948 v -0.607495 h 0.708608 v 0.145962 h -0.556939 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167978,0.152485 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.105191,-0.199781 -0.104375,-0.08236 -0.371835,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1712" />
+            </g>
+            <g
+               aria-label="2020"
+               id="text182"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 35.957187,21.209 h -0.765688 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.05789 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194887,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1715" />
+              <path
+                 d="m 36.572021,19.905943 q 0.216089,0 0.329434,0.181841 0.113344,0.181025 0.113344,0.488442 0,0.308233 -0.113344,0.490073 -0.113345,0.181026 -0.329434,0.181026 -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 z m -0.247075,0.941006 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434625,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154931,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1717" />
+              <path
+                 d="m 37.959882,21.209 h -0.765688 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06524,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.05789 v -0.134546 q 0.102744,-0.04893 0.205489,-0.06686 0.103559,-0.01875 0.170424,-0.01875 0.09867,0 0.181026,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1719" />
+              <path
+                 d="m 38.574717,19.905943 q 0.216088,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173686 0.06524,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1721" />
+            </g>
+            <g
+               aria-label="NAMESPACE:"
+               id="text184"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.25441406,23.379999 H 0.10274414 v -1.265547 h 0.1484082 l 0.44767088,0.842339 0.0489258,0.125576 h 0.004077 L 0.747749,22.956791 v -0.842339 h 0.15166992 v 1.265547 H 0.747749 l -0.43543944,-0.828476 -0.0611572,-0.132915 0.003262,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1724" />
+              <path
+                 d="M 1.1864502,23.379999 H 1.0282568 L 1.4180322,22.114452 H 1.5851953 L 1.977417,23.379999 H 1.8037305 L 1.7172949,23.101938 H 1.2720703 Z m 0.1247607,-0.404453 h 0.3693897 l -0.1524854,-0.480288 -0.035879,-0.127207 -0.031802,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1726" />
+              <path
+                 d="m 2.1812744,23.379999 h -0.132915 v -1.265547 h 0.1655322 l 0.2919238,0.833369 0.2919238,-0.833369 h 0.1614551 v 1.265547 H 2.8075244 v -0.80646 l 0.00408,-0.110898 h -0.00408 l -0.035879,0.110898 -0.1957031,0.553677 H 2.4112256 L 2.2130762,22.573539 2.1812744,22.462641 h -0.00408 l 0.00408,0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1728" />
+              <path
+                 d="m 3.8529054,23.240561 v 0.139438 H 3.1695753 v -1.265547 h 0.6702832 v 0.127207 H 3.3342921 v 0.429732 h 0.4550098 v 0.126391 H 3.3342921 v 0.442779 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1730" />
+              <path
+                 d="m 4.1334131,23.35309 v -0.154932 q 0.1957031,0.09296 0.3555273,0.09296 0.066865,0 0.1280225,-0.02528 0.061157,-0.02609 0.092143,-0.0742 0.031802,-0.04811 0.031802,-0.104375 0,-0.06605 -0.043218,-0.12313 -0.043218,-0.0579 -0.1622705,-0.127207 l -0.083174,-0.04811 -0.083989,-0.04811 Q 4.14646,22.609418 4.14646,22.41453 q 0,-0.1427 0.098667,-0.239736 0.099482,-0.09785 0.3098632,-0.09785 0.1353614,0 0.261753,0.03914 v 0.14107 q -0.1394385,-0.05382 -0.2715381,-0.05382 -0.1051904,0 -0.1704248,0.05545 -0.064419,0.05545 -0.064419,0.133731 0,0.07747 0.049741,0.128838 0.049741,0.05137 0.1272071,0.09459 l 0.063604,0.03833 0.079097,0.04811 0.066865,0.03914 q 0.2079346,0.127207 0.2079346,0.319648 0,0.146778 -0.1068213,0.251968 -0.1068213,0.10519 -0.3424805,0.10519 -0.07502,0 -0.1435156,-0.01305 -0.067681,-0.01223 -0.1785791,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1732" />
+              <path
+                 d="m 5.3149706,22.918466 v 0.461533 H 5.1502538 v -1.265547 h 0.3147559 q 0.1940722,0 0.2829541,0.04403 0.088882,0.04322 0.1361767,0.127207 0.047295,0.08399 0.047295,0.187548 0,0.121499 -0.063604,0.22669 -0.063603,0.10519 -0.1777637,0.16227 -0.1133447,0.05626 -0.3082324,0.05626 z m 0,-0.126392 h 0.070942 q 0.1524853,0 0.2266894,-0.03914 0.074204,-0.03996 0.1141602,-0.11416 0.039956,-0.07421 0.039956,-0.16064 0,-0.109268 -0.071758,-0.172871 -0.070942,-0.0636 -0.2813232,-0.0636 h -0.098667 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1734" />
+              <path
+                 d="M 6.1931887,23.379999 H 6.0349954 l 0.3897754,-1.265547 h 0.167163 l 0.3922217,1.265547 H 6.810469 L 6.7240335,23.101938 H 6.2788089 Z m 0.1247608,-0.404453 h 0.3693896 l -0.1524853,-0.480288 -0.035879,-0.127207 -0.031802,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1736" />
+              <path
+                 d="m 7.8966212,23.365321 q -0.1418847,0.053 -0.254414,0.053 -0.1484082,0 -0.273169,-0.0791 -0.1247607,-0.07991 -0.1940722,-0.236475 -0.069312,-0.157378 -0.069312,-0.355527 0,-0.196519 0.068496,-0.353081 0.068496,-0.156563 0.1932569,-0.23729 0.1247607,-0.08073 0.2747998,-0.08073 0.1125293,0 0.254414,0.053 v 0.150039 q -0.1312842,-0.07583 -0.2609375,-0.07583 -0.097851,0 -0.1793945,0.06686 -0.080727,0.06687 -0.1304687,0.196519 -0.049741,0.128838 -0.049741,0.280508 0,0.154116 0.051372,0.284585 0.051372,0.130468 0.1312842,0.195703 0.079912,0.06442 0.1769482,0.06442 0.1288379,0 0.2609375,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1738" />
+              <path
+                 d="m 8.8596436,23.240561 v 0.139438 H 8.1763135 v -1.265547 h 0.6702832 v 0.127207 H 8.3410303 v 0.429732 h 0.4550098 v 0.126391 H 8.3410303 v 0.442779 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1740" />
+              <path
+                 d="m 9.5128026,23.418324 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03832 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093775,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093775,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1742" />
+            </g>
+            <g
+               aria-label="default"
+               id="text186"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 11.756702,23.175326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152486 v 1.316103 h -0.152486 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1745" />
+              <path
+                 d="m 12.907274,23.319657 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 H 12.29244 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1747" />
+              <path
+                 d="m 13.363099,23.379999 v -0.708608 h -0.202227 v -0.126392 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125577,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106005,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126392 h -0.361235 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1749" />
+              <path
+                 d="m 14.75096,23.175326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 H 14.7795 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1751" />
+              <path
+                 d="m 15.903162,22.469164 v 0.910835 h -0.151669 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1753" />
+              <path
+                 d="m 16.399759,23.379999 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1755" />
+              <path
+                 d="m 17.918089,23.343305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1757" />
+            </g>
+            <g
+               aria-label="STATUS:"
+               id="text188"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.12802246,25.524091 V 25.36916 q 0.19570312,0.09296 0.35552733,0.09296 0.0668652,0 0.12802246,-0.02528 0.0611572,-0.02609 0.0921435,-0.0742 0.0318018,-0.04811 0.0318018,-0.104375 0,-0.06605 -0.0432178,-0.12313 -0.0432178,-0.0579 -0.16227051,-0.127207 l -0.0831738,-0.04811 -0.0839893,-0.04811 Q 0.14106933,24.78042 0.14106933,24.585532 q 0,-0.1427 0.098667,-0.239736 0.0994824,-0.09785 0.30986328,-0.09785 0.13536132,0 0.26175292,0.03914 v 0.141069 q -0.13943847,-0.05382 -0.27153808,-0.05382 -0.10519043,0 -0.1704248,0.05545 -0.0644189,0.05545 -0.0644189,0.13373 0,0.07747 0.0497412,0.128838 0.0497412,0.05137 0.12720703,0.09459 l 0.0636035,0.03833 0.0790967,0.04811 0.0668652,0.03914 q 0.20793456,0.127207 0.20793456,0.319649 0,0.146777 -0.10682128,0.251967 -0.10682129,0.105191 -0.34248046,0.105191 -0.0750195,0 -0.14351563,-0.01305 -0.0676807,-0.01223 -0.17857909,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1760" />
+              <path
+                 d="M 1.4196631,25.551001 V 24.424892 H 1.0404883 v -0.139438 h 0.9238818 v 0.139438 H 1.5843799 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1762" />
+              <path
+                 d="M 2.1877979,25.551001 H 2.0296045 L 2.4193799,24.285454 H 2.586543 l 0.3922216,1.265547 H 2.8050781 L 2.7186426,25.272939 H 2.273418 Z M 2.3125586,25.146547 H 2.6819482 L 2.5294629,24.666259 2.493584,24.539052 2.4617822,24.666259 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1764" />
+              <path
+                 d="M 3.4223585,25.551001 V 24.424892 H 3.0431837 v -0.139438 h 0.9238818 v 0.139438 H 3.5870753 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1766" />
+              <path
+                 d="m 4.1081348,24.285454 h 0.1647168 v 0.830923 q 0,0.163901 0.026909,0.224243 0.027725,0.05953 0.083989,0.09133 0.05708,0.03099 0.1263916,0.03099 0.073389,0 0.1304688,-0.03343 0.057895,-0.03425 0.084805,-0.106006 0.027725,-0.07257 0.027725,-0.271538 v -0.766504 h 0.15167 v 0.82603 q 0,0.176948 -0.053003,0.277246 -0.052187,0.09948 -0.1369921,0.150039 -0.084805,0.05056 -0.2136426,0.05056 -0.1190527,0 -0.2095654,-0.04403 -0.090513,-0.04403 -0.1369922,-0.1321 -0.04648,-0.08807 -0.04648,-0.318018 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1768" />
+              <path
+                 d="M 5.1347606,25.524091 V 25.36916 q 0.1957032,0.09296 0.3555274,0.09296 0.066865,0 0.1280224,-0.02528 0.061157,-0.02609 0.092144,-0.0742 0.031802,-0.04811 0.031802,-0.104375 0,-0.06605 -0.043218,-0.12313 -0.043218,-0.0579 -0.1622705,-0.127207 l -0.083174,-0.04811 -0.083989,-0.04811 Q 5.1478075,24.78042 5.1478075,24.585532 q 0,-0.1427 0.098667,-0.239736 0.099482,-0.09785 0.3098633,-0.09785 0.1353613,0 0.2617529,0.03914 v 0.141069 q -0.1394385,-0.05382 -0.2715381,-0.05382 -0.1051904,0 -0.1704248,0.05545 -0.064419,0.05545 -0.064419,0.13373 0,0.07747 0.049741,0.128838 0.049741,0.05137 0.127207,0.09459 l 0.063604,0.03833 0.079097,0.04811 0.066865,0.03914 q 0.2079346,0.127207 0.2079346,0.319649 0,0.146777 -0.1068213,0.251967 -0.1068213,0.105191 -0.3424804,0.105191 -0.07502,0 -0.1435157,-0.01305 -0.067681,-0.01223 -0.1785791,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1770" />
+              <path
+                 d="m 6.50876,25.589326 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708609 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1772" />
+            </g>
+            <g
+               aria-label="deployed"
+               id="text190"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 8.7507019,25.346328 q -0.069311,0.11416 -0.1671631,0.172055 -0.097036,0.0579 -0.1785791,0.0579 -0.1141601,0 -0.2054882,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.161455,-0.196519 0.1011133,-0.07257 0.250337,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 v -0.405269 h 0.1524854 v 1.316104 H 8.7507019 Z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.150039,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295185 0,0.135362 0.050557,0.204673 0.051372,0.0685 0.1166065,0.0685 0.070942,0 0.1565624,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1775" />
+              <path
+                 d="m 9.9012732,25.490659 q -0.1818408,0.08643 -0.3441113,0.08643 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057896,-0.11416 -0.057896,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 9.2864392 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 9.295409,25.007109 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1777" />
+              <path
+                 d="m 10.285341,24.844839 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.180209 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1779" />
+              <path
+                 d="M 11.391063,25.551001 V 24.362104 H 11.11871 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1781" />
+              <path
+                 d="m 12.52288,25.576279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1783" />
+              <path
+                 d="m 13.484271,25.514306 -0.420762,-0.87414 h 0.167164 l 0.335141,0.68333 0.280508,-0.68333 h 0.152485 l -0.353081,0.846416 q -0.111714,0.268276 -0.212827,0.356342 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123945,-0.01223 v -0.13373 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101113 0.0473,-0.07257 0.06686,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1785" />
+              <path
+                 d="m 14.908012,25.490659 q -0.181841,0.08643 -0.344112,0.08643 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1787" />
+              <path
+                 d="m 15.760136,25.346328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.17858,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1789" />
+            </g>
+            <g
+               aria-label="REVISION:"
+               id="text192"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.28621581,27.184632 V 27.722 H 0.12149902 v -1.265547 h 0.33840331 q 0.16553222,0 0.24381347,0.03425 0.0782812,0.03343 0.12068359,0.101929 0.0432178,0.0685 0.0432178,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0790967,0.132915 -0.0497412,0.05789 -0.14433105,0.110083 L 0.98177732,27.722 H 0.7860742 L 0.45093261,27.184632 Z m 0,-0.127207 h 0.2307666 q 0.0774658,-0.0424 0.11497558,-0.08644 0.0383252,-0.04403 0.0578955,-0.09377 0.0195703,-0.04974 0.0195703,-0.09948 0,-0.08888 -0.0652344,-0.14107 -0.0644189,-0.053 -0.23484375,-0.053 H 0.28621581 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1792" />
+              <path
+                 d="M 1.8502099,27.582562 V 27.722 h -0.68333 V 26.456453 H 1.8371631 V 26.58366 H 1.3315967 v 0.429732 h 0.4550097 v 0.126391 H 1.3315967 v 0.442779 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1794" />
+              <path
+                 d="M 2.8205713,26.456453 H 2.9787646 L 2.5889893,27.722 H 2.4218262 L 2.0296045,26.456453 H 2.203291 l 0.2747998,0.883926 0.035879,0.128838 0.031802,-0.128023 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1796" />
+              <path
+                 d="M 3.144297,27.722 V 27.595609 H 3.4223585 V 26.58366 H 3.144297 V 26.456453 H 3.8651368 V 26.58366 H 3.5870753 v 1.011949 H 3.8651368 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1798" />
+              <path
+                 d="m 4.1334131,27.695091 v -0.154932 q 0.1957031,0.09296 0.3555273,0.09296 0.066865,0 0.1280225,-0.02528 0.061157,-0.02609 0.092143,-0.0742 0.031802,-0.04811 0.031802,-0.104375 0,-0.06605 -0.043218,-0.12313 -0.043218,-0.0579 -0.1622705,-0.127207 l -0.083174,-0.04811 -0.083989,-0.04811 Q 4.14646,26.951419 4.14646,26.756531 q 0,-0.1427 0.098667,-0.239736 0.099482,-0.09785 0.3098632,-0.09785 0.1353614,0 0.261753,0.03914 v 0.141069 q -0.1394385,-0.05382 -0.2715381,-0.05382 -0.1051904,0 -0.1704248,0.05545 -0.064419,0.05545 -0.064419,0.133731 0,0.07747 0.049741,0.128838 0.049741,0.05137 0.1272071,0.09459 l 0.063604,0.03833 0.079097,0.04811 0.066865,0.03914 q 0.2079346,0.127207 0.2079346,0.319648 0,0.146777 -0.1068213,0.251968 -0.1068213,0.10519 -0.3424805,0.10519 -0.07502,0 -0.1435156,-0.01305 -0.067681,-0.01223 -0.1785791,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1800" />
+              <path
+                 d="M 5.1469921,27.722 V 27.595609 H 5.4250536 V 26.58366 H 5.1469921 V 26.456453 H 5.8678319 V 26.58366 H 5.5897704 v 1.011949 H 5.8678319 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1802" />
+              <path
+                 d="m 6.50876,27.760325 q -0.2152734,0 -0.3294336,-0.181025 -0.1133447,-0.181841 -0.1133447,-0.490073 0,-0.307417 0.1133447,-0.488443 0.1141602,-0.18184 0.3294336,-0.18184 0.2160889,0 0.3294336,0.18184 0.1133447,0.181026 0.1133447,0.488443 0,0.308232 -0.1133447,0.490073 -0.1133447,0.181025 -0.3294336,0.181025 z m 0,-0.127207 q 0.1190528,0 0.1981494,-0.134546 0.079912,-0.135361 0.079912,-0.409345 0,-0.273985 -0.079912,-0.408531 -0.079097,-0.135361 -0.1981494,-0.135361 -0.1190527,0 -0.1989648,0.135361 -0.079097,0.134546 -0.079097,0.408531 0,0.273984 0.079097,0.409345 0.079912,0.134546 0.1989648,0.134546 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1804" />
+              <path
+                 d="M 7.2638478,27.722 H 7.1121779 v -1.265547 h 0.1484082 l 0.4476709,0.842339 0.048926,0.125576 h 0.00408 l -0.00408,-0.125576 V 26.456453 H 7.9088527 V 27.722 H 7.7571828 l -0.4354395,-0.828476 -0.061157,-0.132915 0.00326,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1806" />
+              <path
+                 d="m 8.5114551,27.760325 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1808" />
+            </g>
+            <g
+               aria-label="8"
+               id="text194"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 10.394283,27.039485 -0.02773,-0.02038 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01876,0.104375 -0.01876,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393038 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.0473,0.05463 -0.0473,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1811" />
+            </g>
+            <g
+               aria-label="TEST"
+               id="text196"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.41831542,29.893 v -1.126109 h -0.3791748 v -0.139438 h 0.92388182 v 0.139438 H 0.58303221 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1814" />
+              <path
+                 d="M 1.8502099,29.753561 V 29.893 h -0.68333 V 28.627453 H 1.8371631 V 28.75466 H 1.3315967 v 0.429731 h 0.4550097 v 0.126392 H 1.3315967 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1816" />
+              <path
+                 d="m 2.1307178,29.86609 v -0.154931 q 0.1957031,0.09296 0.3555273,0.09296 0.066865,0 0.1280225,-0.02528 0.061157,-0.02609 0.092144,-0.0742 0.031802,-0.04811 0.031802,-0.104375 0,-0.06605 -0.043218,-0.123129 -0.043218,-0.0579 -0.1622705,-0.127208 l -0.083174,-0.04811 -0.083989,-0.04811 q -0.2217968,-0.131284 -0.2217968,-0.326172 0,-0.1427 0.098667,-0.239736 0.099482,-0.09785 0.3098633,-0.09785 0.1353613,0 0.2617529,0.03914 v 0.141069 q -0.1394384,-0.05382 -0.271538,-0.05382 -0.1051905,0 -0.1704248,0.05545 -0.064419,0.05545 -0.064419,0.13373 0,0.07747 0.049741,0.128838 0.049741,0.05137 0.1272071,0.09459 l 0.063604,0.03833 0.079097,0.04811 0.066865,0.03914 q 0.2079345,0.127207 0.2079345,0.319649 0,0.146777 -0.1068212,0.251967 -0.1068213,0.105191 -0.3424805,0.105191 -0.075019,0 -0.1435156,-0.01305 -0.067681,-0.01223 -0.1785791,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1818" />
+              <path
+                 d="M 3.4223585,29.893 V 28.766891 H 3.0431837 v -0.139438 h 0.9238818 v 0.139438 H 3.5870753 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1820" />
+            </g>
+            <g
+               aria-label="SUITE:"
+               id="text198"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 5.1380227,29.86609 v -0.154931 q 0.1957031,0.09296 0.3555273,0.09296 0.066865,0 0.1280225,-0.02528 0.061157,-0.02609 0.092143,-0.0742 0.031802,-0.04811 0.031802,-0.104375 0,-0.06605 -0.043218,-0.123129 -0.043218,-0.0579 -0.1622705,-0.127208 l -0.083174,-0.04811 -0.083989,-0.04811 q -0.2217968,-0.131284 -0.2217968,-0.326172 0,-0.1427 0.098667,-0.239736 0.099482,-0.09785 0.3098632,-0.09785 0.1353613,0 0.2617529,0.03914 v 0.141069 q -0.1394384,-0.05382 -0.271538,-0.05382 -0.1051905,0 -0.1704248,0.05545 -0.064419,0.05545 -0.064419,0.13373 0,0.07747 0.049741,0.128838 0.049741,0.05137 0.1272071,0.09459 l 0.063604,0.03833 0.079097,0.04811 0.066865,0.03914 q 0.2079346,0.127207 0.2079346,0.319649 0,0.146777 -0.1068213,0.251967 -0.1068213,0.105191 -0.3424805,0.105191 -0.075019,0 -0.1435156,-0.01305 -0.067681,-0.01223 -0.1785791,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1823" />
+              <path
+                 d="m 6.114092,28.627453 h 0.1647168 v 0.830923 q 0,0.163901 0.026909,0.224243 0.027725,0.05953 0.083989,0.09133 0.05708,0.03099 0.1263916,0.03099 0.073389,0 0.1304687,-0.03343 0.057895,-0.03425 0.084805,-0.106006 0.027725,-0.07257 0.027725,-0.271538 v -0.766504 h 0.1516699 v 0.82603 q 0,0.176948 -0.053003,0.277246 -0.052188,0.09948 -0.1369922,0.150039 -0.084805,0.05056 -0.2136426,0.05056 -0.1190527,0 -0.2095654,-0.04403 -0.090513,-0.04403 -0.1369922,-0.1321 -0.046479,-0.08807 -0.046479,-0.318018 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1825" />
+              <path
+                 d="M 7.1529495,29.893 V 29.766608 H 7.431011 V 28.75466 H 7.1529495 V 28.627453 H 7.8737893 V 28.75466 H 7.5957278 v 1.011948 H 7.8737893 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1827" />
+              <path
+                 d="M 8.4323588,29.893 V 28.766891 H 8.053184 v -0.139438 h 0.9238818 v 0.139438 H 8.5970755 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1829" />
+              <path
+                 d="M 9.8642532,29.753561 V 29.893 H 9.1809231 V 28.627453 H 9.8512063 V 28.75466 H 9.3456399 v 0.429731 h 0.4550097 v 0.126392 H 9.3456399 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1831" />
+              <path
+                 d="m 10.517412,29.931325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1833" />
+            </g>
+            <g
+               aria-label="None"
+               id="text200"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 12.278414,29.893 h -0.15167 v -1.265547 h 0.148409 l 0.44767,0.842339 0.04893,0.125576 h 0.0041 l -0.0041,-0.125576 v -0.842339 h 0.15167 V 29.893 h -0.15167 l -0.435439,-0.828477 -0.06116,-0.132915 0.0033,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1836" />
+              <path
+                 d="m 13.526837,29.918278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1838" />
+              <path
+                 d="m 14.153087,29.893 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 29.893 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1840" />
+              <path
+                 d="m 15.911969,29.832658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1842" />
+            </g>
+            <path
+               class="e"
+               d="m 0,30.394 h 1 v 2.171 H 0 Z"
+               id="path202" />
+            <g
+               id="text204"
+               class="f"
+               style="white-space:pre" />
+            <path
+               class="e"
+               d="m 1.002,30.394 h 5 v 2.171 h -5 z"
+               id="path206" />
+            <g
+               aria-label="kvaps"
+               id="text208"
+               class="g"
+               style="font-weight:700;white-space:pre">
+              <path
+                 d="M 1.1691631,32.063999 V 30.747896 H 1.320833 v 0.826845 l 0.4378857,-0.421577 h 0.2022266 l -0.4370703,0.421577 0.4484863,0.489258 h -0.20875 L 1.320833,31.574741 v 0.489258 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1846" />
+              <path
+                 d="M 2.4257402,32.063999 2.0302568,31.153164 h 0.1663477 l 0.3123095,0.72084 0.318833,-0.72084 h 0.1516699 l -0.3987451,0.910835 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1848" />
+              <path
+                 d="m 3.7296123,31.859326 q -0.069312,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524853 v 0.643374 q 0,0.164717 0.034248,0.267461 H 3.7581523 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108453 -0.092959,0.108452 -0.092959,0.295185 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1850" />
+              <path
+                 d="m 4.2726886,31.357837 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.05789 0.1785791,-0.05789 0.1141601,0 0.2054882,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.161455,0.196518 -0.1011133,0.07176 -0.250337,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353897 H 4.1210187 v -1.264732 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1852" />
+              <path
+                 d="m 5.1443828,32.015889 v -0.16064 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023647,-0.02609 -0.1174218,-0.06442 l -0.052188,-0.0212 -0.1051905,-0.04159 q -0.1696093,-0.06605 -0.2136425,-0.122314 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.11253 0.086436,-0.185103 0.087251,-0.07257 0.2821386,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137808 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027442,0.03751 q 0.1410693,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.091328,0.194888 -0.090513,0.07583 -0.2902929,0.07583 -0.174502,0 -0.3587891,-0.07339 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path1854" />
+            </g>
+            <path
+               class="e"
+               d="m 6.012,30.394 h 1 v 2.171 h -1 z"
+               id="path210" />
+            <g
+               id="text212"
+               class="f"
+               style="white-space:pre" />
+            <path
+               class="h"
+               d="m 7.014,30.394 h 1 v 2.171 h -1 z"
+               id="path214" />
+            <g
+               aria-label=""
+               id="text216"
+               class="i"
+               style="white-space:pre;fill:#00d7ff">
+              <path
+                 d="m 7.0139999,30.494297 1.0258106,0.990747 -1.0258106,0.992378 z"
+                 style="white-space:pre;fill:#00d7ff"
+                 id="path1858" />
+            </g>
+            <path
+               class="h"
+               d="m 8.016,30.394 h 1 v 2.171 h -1 z"
+               id="path218" />
+            <g
+               id="text220"
+               class="j"
+               style="white-space:pre;fill:#eeeeee" />
+            <path
+               class="h"
+               d="m 9.018,30.394 h 1 v 2.171 h -1 z"
+               id="path222" />
+            <g
+               aria-label="~"
+               id="text224"
+               class="k"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 9.0636637,31.735381 v -0.01468 q 0,-0.106821 0.062788,-0.185102 0.063603,-0.0791 0.1704248,-0.0791 0.026909,0 0.052188,0.0057 0.026094,0.0049 0.058711,0.01794 0.032617,0.01223 0.097852,0.04893 l 0.098667,0.05463 q 0.090513,0.04974 0.1475927,0.04974 0.060342,0 0.088882,-0.04322 0.029356,-0.04403 0.029356,-0.09541 v -0.01305 h 0.1043749 v 0.01305 q 0,0.136177 -0.077466,0.201411 -0.07665,0.06442 -0.1630859,0.06442 -0.080728,0 -0.2136426,-0.07584 l -0.083174,-0.04811 q -0.09459,-0.05382 -0.1524853,-0.05382 -0.032617,0 -0.061157,0.01712 -0.027725,0.01712 -0.044849,0.05463 -0.017124,0.03751 -0.017124,0.06605 v 0.01468 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1862" />
+            </g>
+            <path
+               class="h"
+               d="m 10.02,30.394 h 1 v 2.171 h -1 z"
+               id="path226" />
+            <g
+               aria-label="/"
+               id="text228"
+               class="j"
+               style="white-space:pre;fill:#eeeeee">
+              <path
+                 d="M 10.196133,32.102324 H 10.04691 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#eeeeee"
+                 id="path1865" />
+            </g>
+            <path
+               class="h"
+               d="m 11.022,30.394 h 8 v 2.171 h -8 z"
+               id="path230" />
+            <g
+               aria-label="kubefarm"
+               id="text232"
+               class="k"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 11.189163,32.063999 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1868" />
+              <path
+                 d="m 12.899119,31.153164 v 0.910835 H 12.74745 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1870" />
+              <path
+                 d="m 13.291341,31.357837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1872" />
+              <path
+                 d="m 14.909969,32.003657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1874" />
+              <path
+                 d="m 15.365794,32.063999 v -0.708608 h -0.202226 v -0.126392 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 H 15.8787 v 0.126392 h -0.361236 v 0.708608 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1876" />
+              <path
+                 d="m 16.753655,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140253,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1878" />
+              <path
+                 d="m 17.233944,32.063999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1880" />
+              <path
+                 d="m 18.08933,32.063999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1882" />
+            </g>
+            <path
+               class="h"
+               d="m 19.038,30.394 h 1 v 2.171 h -1 z"
+               id="path234" />
+            <g
+               aria-label="/"
+               id="text236"
+               class="j"
+               style="white-space:pre;fill:#eeeeee">
+              <path
+                 d="m 19.214133,32.102324 h -0.149224 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#eeeeee"
+                 id="path1885" />
+            </g>
+            <path
+               class="h"
+               d="m 20.04,30.394 h 8 v 2.171 h -8 z"
+               id="path238" />
+            <g
+               aria-label="examples"
+               id="text240"
+               class="k"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 20.923927,32.003657 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1888" />
+              <path
+                 d="m 21.26233,32.063999 h -0.175317 l 0.357973,-0.477026 -0.334326,-0.433809 h 0.194072 l 0.23729,0.305786 0.230767,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194888 l -0.277246,-0.362866 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1890" />
+              <path
+                 d="m 22.767613,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1892" />
+              <path
+                 d="m 23.10194,32.063999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1894" />
+              <path
+                 d="m 24.312037,31.357837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1896" />
+              <path
+                 d="m 25.41776,32.063999 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284584 v 0.126391 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1898" />
+              <path
+                 d="m 26.932013,32.003657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1900" />
+              <path
+                 d="m 27.186427,32.015889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path1902" />
+            </g>
+            <path
+               class="h"
+               d="m 28.056,30.394 h 1 v 2.171 h -1 z"
+               id="path242" />
+            <g
+               id="text244"
+               class="j"
+               style="white-space:pre;fill:#eeeeee" />
+            <g
+               aria-label=""
+               id="text246"
+               class="l"
+               style="white-space:pre;fill:#005f87">
+              <path
+                 d="m 29.058001,30.494297 1.02581,0.990747 -1.02581,0.992378 z"
+                 style="white-space:pre;fill:#005f87"
+                 id="path1906" />
+            </g>
+            <g
+               aria-label="kubectl"
+               id="text248"
+               class="m"
+               style="white-space:pre;fill:#a8cc8c">
+              <path
+                 d="m 31.229163,32.063999 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1909" />
+              <path
+                 d="m 32.939119,31.153164 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163085,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1911" />
+              <path
+                 d="m 33.331341,31.357837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1913" />
+              <path
+                 d="m 34.949969,32.003657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1915" />
+              <path
+                 d="m 35.960286,32.037905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07746,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1917" />
+              <path
+                 d="m 36.956741,32.027305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 31.355391 H 36.14702 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1919" />
+              <path
+                 d="m 37.441107,32.063999 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path1921" />
+            </g>
+            <g
+               aria-label="get"
+               id="text250"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 39.812701,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.1533 q 0.06442,0.04403 0.158193,0.07746 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131285,-0.02202 0.06197,-0.02202 0.100297,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1924" />
+              <path
+                 d="m 40.963273,32.003657 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1926" />
+              <path
+                 d="m 41.968697,32.027305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.151669 v 0.366943 h 0.405269 v 0.126392 H 41.53815 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1928" />
+            </g>
+            <g
+               aria-label="pod"
+               id="text252"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 43.352644,31.357837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1931" />
+              <path
+                 d="m 44.588835,32.089277 q -0.195703,0 -0.313125,-0.136176 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207935 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1933" />
+              <path
+                 d="m 45.823396,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1935" />
+            </g>
+            <g
+               aria-label=""
+               id="text254"
+               class="o"
+               style="white-space:pre;fill:#262626">
+              <path
+                 d="m 80.183808,32.477422 -1.025811,-0.992378 1.025811,-0.990747 z"
+                 style="white-space:pre;fill:#262626"
+                 id="path1938" />
+            </g>
+            <path
+               class="p"
+               d="m 80.16,30.394 h 13 v 2.171 h -13 z"
+               id="path256" />
+            <g
+               aria-label="stage-admin"
+               id="text258"
+               class="q"
+               style="white-space:pre;fill:#af5fd7">
+              <path
+                 d="m 80.296996,32.015889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1941" />
+              <path
+                 d="m 82.049354,32.027305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227504 v -0.126392 h 0.227504 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1943" />
+              <path
+                 d="m 82.887616,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1945" />
+              <path
+                 d="m 83.898749,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149223,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335142,-0.0848 v -0.1533 q 0.06442,0.04403 0.158194,0.07746 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1947" />
+              <path
+                 d="m 85.04932,32.003657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1949" />
+              <path
+                 d="m 85.351844,31.614697 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1951" />
+              <path
+                 d="m 86.893007,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161456,-0.196518 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1953" />
+              <path
+                 d="m 87.90414,31.859326 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 H 87.90414 Z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1955" />
+              <path
+                 d="m 88.22868,32.063999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1957" />
+              <path
+                 d="M 89.553754,32.063999 V 31.279556 H 89.30097 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1959" />
+              <path
+                 d="m 90.299872,32.063999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157377,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path1961" />
+            </g>
+            <path
+               class="p"
+               d="m 93.186,30.394 h 1 v 2.171 h -1 z"
+               id="path260" />
+            <g
+               aria-label=""
+               id="text262"
+               class="r"
+               style="white-space:pre;fill:#303030">
+              <path
+                 d="m 94.211808,32.477422 -1.025811,-0.992378 1.025811,-0.990747 z"
+                 style="white-space:pre;fill:#303030"
+                 id="path1964" />
+            </g>
+            <path
+               class="s"
+               d="m 94.188,30.394 h 25 v 2.171 h -25 z"
+               id="path264" />
+            <g
+               aria-label=" master  v0.5.2  "
+               id="text266"
+               class="t"
+               style="white-space:pre;fill:#afd700">
+              <path
+                 d="m 94.443233,32.118633 q 0.02772,-0.02773 0.02772,-0.06686 0,-0.03996 -0.02772,-0.06687 -0.02773,-0.02772 -0.06768,-0.02772 -0.03914,0 -0.06605,0.02772 -0.02691,0.02691 -0.02691,0.06687 0,0.03914 0.02691,0.06686 0.02691,0.02772 0.06605,0.02772 0.03996,0 0.06768,-0.02772 z m 0,-1.131001 q 0.02772,-0.02773 0.02772,-0.06686 0,-0.03996 -0.02772,-0.06686 -0.02773,-0.02773 -0.06768,-0.02773 -0.03914,0 -0.06605,0.02773 -0.02691,0.02691 -0.02691,0.06686 0,0.03914 0.02691,0.06686 0.02691,0.02691 0.06605,0.02691 0.03996,0 0.06768,-0.02691 z m 0.628696,0.125576 q 0.02773,-0.02772 0.02773,-0.06686 0,-0.03996 -0.02773,-0.06686 -0.02691,-0.02773 -0.06686,-0.02773 -0.03914,0 -0.06687,0.02773 -0.02773,0.02691 -0.02773,0.06686 0,0.03914 0.02773,0.06686 0.02772,0.02691 0.06687,0.02691 0.03996,0 0.06686,-0.02691 z m 0.121499,-0.06686 q 0,0.05137 -0.02528,0.09459 -0.02528,0.04322 -0.0685,0.06768 -8.16e-4,0.07339 -0.01631,0.135362 -0.01468,0.06116 -0.03833,0.106006 -0.02283,0.04403 -0.05953,0.08154 -0.03588,0.03669 -0.06931,0.06034 -0.03343,0.02365 -0.07991,0.04485 -0.04566,0.02039 -0.0791,0.03262 -0.03262,0.01142 -0.07583,0.02446 -0.0024,0.0016 -0.0033,0.0016 -0.053,0.01631 -0.08236,0.02773 -0.02936,0.0106 -0.0579,0.02446 -0.02773,0.01386 -0.03996,0.02936 -0.01223,0.01549 -0.01957,0.03588 -0.0073,0.02039 -0.0073,0.04974 v 0.02609 q 0.0424,0.02446 0.0685,0.0685 0.02609,0.04322 0.02609,0.09459 0,0.07828 -0.05545,0.132915 -0.05545,0.05545 -0.13373,0.05545 -0.07828,0 -0.133731,-0.05545 -0.05463,-0.05463 -0.05463,-0.132915 0,-0.05137 0.02528,-0.09459 0.02609,-0.04403 0.06931,-0.0685 v -0.805645 q -0.04322,-0.02446 -0.06931,-0.06768 -0.02528,-0.04403 -0.02528,-0.09541 0,-0.07828 0.05463,-0.132915 0.05545,-0.05545 0.133731,-0.05545 0.07828,0 0.13373,0.05545 0.05545,0.05463 0.05545,0.132915 0,0.05137 -0.02609,0.09541 -0.02609,0.04322 -0.0685,0.06768 v 0.488443 q 0.05056,-0.02528 0.150854,-0.05626 0.04566,-0.01468 0.0742,-0.02446 0.02854,-0.0098 0.06197,-0.02528 0.03425,-0.01549 0.05382,-0.03017 0.02039,-0.01549 0.04159,-0.03751 0.0212,-0.02202 0.0318,-0.04811 0.0106,-0.02691 0.01794,-0.06197 0.0073,-0.03506 0.0073,-0.0791 -0.0424,-0.02446 -0.0685,-0.06768 -0.02609,-0.04403 -0.02609,-0.09459 0,-0.07828 0.05545,-0.133731 0.05545,-0.05545 0.13373,-0.05545 0.07828,0 0.132915,0.05545 0.05545,0.05545 0.05545,0.133731 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1967" />
+              <path
+                 d="m 96.255118,32.063999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100297,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1969" />
+              <path
+                 d="m 97.923487,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1971" />
+              <path
+                 d="m 98.33691,32.015889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145961,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.151669,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1973" />
+              <path
+                 d="m 100.08927,32.027305 q -0.106823,0.04485 -0.154933,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227504 v -0.126392 h 0.227504 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231584,-0.06931 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1975" />
+              <path
+                 d="m 101.08654,32.003657 q -0.18184,0.08644 -0.34411,0.08644 -0.12313,0 -0.22017,-0.06116 -0.097,-0.06116 -0.15575,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.0554,-0.239736 0.0555,-0.114976 0.15493,-0.178579 0.0995,-0.06442 0.2218,-0.06442 0.16227,0 0.26012,0.115791 0.0987,0.115791 0.0987,0.357158 v 0.03262 h -0.62789 q 0,0.09459 0.0392,0.172871 0.0399,0.07828 0.10437,0.117422 0.0644,0.03914 0.14678,0.03914 0.14677,0 0.32454,-0.09785 z m -0.60587,-0.483549 h 0.4542 v -0.02202 q 0,-0.111714 -0.0546,-0.177764 -0.0546,-0.06605 -0.14596,-0.06605 -0.0921,0 -0.15982,0.06768 -0.0669,0.06686 -0.0938,0.19815 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1977" />
+              <path
+                 d="m 101.40782,32.063999 v -0.910835 h 0.15167 v 0.198965 q 0.0709,-0.112529 0.16227,-0.167978 0.0921,-0.05626 0.20467,-0.05626 0.0824,0 0.16472,0.02528 v 0.328618 h -0.14596 v -0.207934 q -0.0383,-0.0065 -0.0603,-0.0065 -0.0848,0 -0.16634,0.06687 -0.0816,0.06686 -0.15901,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1979" />
+              <path
+                 d="m 103.49939,31.27711 q 0.0228,-0.02283 0.0228,-0.05463 0,-0.03262 -0.0228,-0.05545 -0.022,-0.02283 -0.0546,-0.02283 -0.0318,0 -0.0546,0.02283 -0.0228,0.02283 -0.0228,0.05545 0,0.0318 0.0228,0.05463 0.0228,0.02202 0.0546,0.02202 0.0326,0 0.0546,-0.02202 z m 0.66703,0.292739 q 0,0.0318 -0.022,0.05463 l -0.29682,0.296816 q -0.0228,0.02202 -0.0546,0.02202 -0.0326,0 -0.0546,-0.02202 l -0.43218,-0.432178 q -0.0228,-0.02283 -0.0391,-0.06116 -0.0155,-0.03833 -0.0155,-0.07094 v -0.251153 q 0,-0.0318 0.0228,-0.05463 0.0228,-0.02283 0.0546,-0.02283 h 0.25115 q 0.0326,0 0.0709,0.01631 0.0383,0.01549 0.0612,0.03833 l 0.43218,0.431363 q 0.022,0.02365 0.022,0.05545 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1981" />
+              <path
+                 d="m 105.63827,32.063999 -0.39549,-0.910835 h 0.16635 l 0.31231,0.72084 0.31883,-0.72084 h 0.15167 l -0.39874,0.910835 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1983" />
+              <path
+                 d="m 106.7179,30.760943 q 0.21608,0 0.32943,0.18184 0.11334,0.181026 0.11334,0.488443 0,0.308232 -0.11334,0.490073 -0.11335,0.181025 -0.32943,0.181025 -0.21528,0 -0.32944,-0.181025 -0.11334,-0.181841 -0.11334,-0.490073 0,-0.307417 0.11334,-0.488443 0.11416,-0.18184 0.32944,-0.18184 z m -0.24708,0.941005 0.43789,-0.685776 q -0.0416,-0.07584 -0.0905,-0.101929 -0.0481,-0.02691 -0.10029,-0.02691 -0.13618,0 -0.20712,0.15167 -0.0709,0.150855 -0.0709,0.383252 0,0.053 0.003,0.11416 0.003,0.06116 0.0277,0.165532 z m 0.49252,-0.534921 -0.43462,0.689853 q 0.0351,0.05953 0.0807,0.0897 0.0457,0.02936 0.10193,0.02936 0.15493,0 0.22017,-0.172871 0.0652,-0.173687 0.0652,-0.384883 0,-0.130469 -0.0334,-0.251152 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1985" />
+              <path
+                 d="m 107.71924,32.102324 q -0.0546,0 -0.0938,-0.03914 -0.0391,-0.03914 -0.0391,-0.09378 0,-0.05545 0.0391,-0.09377 0.04,-0.03914 0.0938,-0.03914 0.0538,0 0.093,0.03914 0.04,0.03833 0.04,0.09377 0,0.05463 -0.0391,0.09378 -0.0391,0.03914 -0.0938,0.03914 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1987" />
+              <path
+                 d="m 108.37322,31.405947 v -0.607495 h 0.70861 v 0.145962 h -0.55694 v 0.309864 h 0.0261 q 0.27317,0 0.42076,0.11416 0.1476,0.11416 0.1476,0.307417 0,0.122314 -0.0595,0.21935 -0.0595,0.09704 -0.16798,0.152486 -0.10845,0.05463 -0.23077,0.05463 -0.12231,0 -0.31312,-0.05953 v -0.165532 q 0.0693,0.03751 0.15493,0.06197 0.0856,0.02365 0.15819,0.02365 0.0726,0 0.14189,-0.03506 0.0693,-0.03506 0.10764,-0.101928 0.0383,-0.06768 0.0383,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.10437,-0.08236 -0.37183,-0.08236 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1989" />
+              <path
+                 d="m 109.72194,32.102324 q -0.0546,0 -0.0938,-0.03914 -0.0391,-0.03914 -0.0391,-0.09378 0,-0.05545 0.0391,-0.09377 0.04,-0.03914 0.0938,-0.03914 0.0538,0 0.093,0.03914 0.04,0.03833 0.04,0.09377 0,0.05463 -0.0391,0.09378 -0.0391,0.03914 -0.0938,0.03914 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1991" />
+              <path
+                 d="m 111.1098,32.063999 h -0.76569 v -0.139438 q 0,-0.05382 0.022,-0.114976 0.022,-0.06197 0.084,-0.138623 0.062,-0.07665 0.13128,-0.147593 l 0.0864,-0.08807 q 0.0261,-0.02691 0.11416,-0.124761 0.0881,-0.09785 0.11579,-0.150039 0.0285,-0.05219 0.0285,-0.102744 0,-0.08154 -0.0652,-0.125576 -0.0652,-0.04485 -0.14677,-0.04485 -0.0465,0 -0.10438,0.0106 -0.0571,0.0106 -0.1003,0.02528 -0.0432,0.01386 -0.14025,0.0579 v -0.134546 q 0.10274,-0.04893 0.20549,-0.06687 0.10356,-0.01875 0.17042,-0.01875 0.0987,0 0.18103,0.03262 0.0832,0.0318 0.12313,0.09948 0.0408,0.06768 0.0408,0.144331 0,0.08562 -0.0522,0.175318 -0.0514,0.0897 -0.19489,0.230766 l -0.0929,0.09214 -0.0783,0.07665 q -0.0742,0.07502 -0.11986,0.145147 -0.0457,0.07013 -0.0506,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1993" />
+              <path
+                 d="m 112.8116,31.7998 v -0.125576 q 0,-0.009 -0.006,-0.01468 -0.006,-0.0065 -0.0155,-0.0065 h -0.12476 q -0.01,0 -0.0155,0.0065 -0.006,0.0057 -0.006,0.01468 V 31.7998 q 0,0.0098 0.006,0.01549 0.006,0.0057 0.0155,0.0057 h 0.12476 q 0.01,0 0.0155,-0.0057 0.006,-0.0057 0.006,-0.01549 z m 0.16798,-0.439517 q 0,-0.05708 -0.0359,-0.106005 -0.0359,-0.04974 -0.0905,-0.07665 -0.0546,-0.02691 -0.11172,-0.02691 -0.159,0 -0.24299,0.139438 -0.004,0.0073 -0.002,0.01549 0.002,0.0073 0.007,0.01223 l 0.0872,0.06523 q 0.004,0.0041 0.0114,0.0041 0.0106,0 0.0171,-0.0082 0.0351,-0.04485 0.0563,-0.06034 0.0212,-0.01549 0.0554,-0.01549 0.0318,0 0.0563,0.01712 0.0245,0.01712 0.0245,0.03833 0,0.02528 -0.0139,0.04077 -0.0131,0.01468 -0.044,0.02854 -0.0408,0.01957 -0.075,0.0579 -0.0343,0.03751 -0.0343,0.08073 v 0.02365 q 0,0.009 0.006,0.01549 0.006,0.0057 0.0155,0.0057 h 0.12476 q 0.01,0 0.0155,-0.0057 0.006,-0.0065 0.006,-0.01549 0,-0.01223 0.0139,-0.0318 0.0147,-0.02039 0.0367,-0.03262 0.0171,-0.0098 0.0261,-0.01549 0.009,-0.0057 0.0253,-0.01712 0.0171,-0.01223 0.0261,-0.02365 0.01,-0.01223 0.0196,-0.02773 0.0106,-0.01631 0.0155,-0.03669 0.005,-0.0212 0.005,-0.04485 z m 0.2112,-0.06931 q 0.0399,0.09296 0.0399,0.195703 0,0.101929 -0.0399,0.194888 -0.04,0.09296 -0.10683,0.160639 -0.0669,0.06687 -0.15982,0.106822 -0.093,0.03996 -0.1957,0.03996 -0.10275,0 -0.19571,-0.03996 -0.093,-0.03996 -0.16064,-0.106822 -0.0669,-0.06768 -0.10682,-0.160639 -0.04,-0.09296 -0.04,-0.194888 0,-0.102744 0.04,-0.195703 0.04,-0.09378 0.10682,-0.16064 0.0677,-0.06768 0.16064,-0.107637 0.093,-0.03996 0.19571,-0.03996 0.10274,0 0.1957,0.03996 0.093,0.03996 0.15982,0.107637 0.0669,0.06686 0.10683,0.16064 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1995" />
+              <path
+                 d="m 114.6137,31.59105 q 0.007,0.02528 0.007,0.04974 0,0.02365 -0.007,0.04974 -0.007,0.02528 -0.0261,0.04566 -0.0188,0.02039 -0.044,0.02039 -0.0253,0 -0.044,-0.02039 -0.0179,-0.02039 -0.0253,-0.04566 -0.007,-0.02609 -0.007,-0.04974 0,-0.02446 0.007,-0.04974 0.007,-0.02528 0.0253,-0.04566 0.0188,-0.02039 0.044,-0.02039 0.0253,0 0.044,0.02039 0.0187,0.02039 0.0261,0.04566 z m 0.38652,0 q 0.007,0.02528 0.007,0.04974 0,0.02365 -0.007,0.04974 -0.007,0.02528 -0.0261,0.04566 -0.0179,0.02039 -0.0432,0.02039 -0.0253,0 -0.044,-0.02039 -0.0187,-0.02039 -0.0269,-0.04566 -0.007,-0.02609 -0.007,-0.04974 0,-0.02446 0.007,-0.04974 0.008,-0.02528 0.0269,-0.04566 0.0188,-0.02039 0.044,-0.02039 0.0253,0 0.0432,0.02039 0.0188,0.02039 0.0261,0.04566 z m 0.10437,0.04974 q 0,-0.07257 -0.0424,-0.12313 -0.0416,-0.05137 -0.11253,-0.05137 -0.0139,0 -0.031,0.0016 -0.0163,0.0016 -0.0277,0.0033 -0.0106,8.15e-4 -0.0302,0.0041 -0.0196,0.0033 -0.0285,0.0041 -0.0457,0.0065 -0.0954,0.0065 -0.0497,0 -0.0946,-0.0065 -0.009,-8.15e-4 -0.0285,-0.0041 -0.0196,-0.0033 -0.031,-0.0041 -0.0106,-0.0016 -0.0277,-0.0033 -0.0163,-0.0016 -0.0302,-0.0016 -0.0709,0 -0.11334,0.05137 -0.0416,0.05056 -0.0416,0.12313 0,0.053 0.0187,0.09296 0.0196,0.03914 0.0498,0.06197 0.0302,0.02202 0.0734,0.03588 0.044,0.01386 0.084,0.01875 0.0408,0.0041 0.0905,0.0041 h 0.10192 q 0.0498,0 0.0897,-0.0041 0.0408,-0.0049 0.084,-0.01875 0.044,-0.01386 0.0742,-0.03588 0.0302,-0.02283 0.0489,-0.06197 0.0196,-0.03996 0.0196,-0.09296 z m 0.13536,-0.106821 q 0,0.123945 -0.0367,0.19978 -0.0228,0.04648 -0.0644,0.08073 -0.0408,0.03343 -0.0848,0.05137 -0.044,0.01794 -0.10274,0.02936 -0.0587,0.0106 -0.10437,0.01386 -0.0448,0.0024 -0.1003,0.0024 -0.0342,0 -0.0636,-8.16e-4 -0.0285,-0.0016 -0.066,-0.0041 -0.0375,-0.0033 -0.0693,-0.0082 -0.031,-0.0057 -0.0669,-0.01468 -0.0351,-0.009 -0.0644,-0.02202 -0.0294,-0.01386 -0.0571,-0.03099 -0.0277,-0.01712 -0.0497,-0.04159 -0.022,-0.02528 -0.0375,-0.05545 -0.0375,-0.0742 -0.0375,-0.19978 0,-0.143516 0.0815,-0.238921 -0.0155,-0.04729 -0.0155,-0.102744 0,-0.07013 0.031,-0.1321 0.0652,0 0.11416,0.02446 0.0498,0.02365 0.11416,0.0742 0.0905,-0.0212 0.18674,-0.0212 0.0881,0 0.16961,0.01957 0.031,-0.02446 0.053,-0.03914 0.0228,-0.01549 0.0514,-0.02936 0.0285,-0.01468 0.0579,-0.0212 0.0302,-0.0073 0.0644,-0.0073 0.031,0.06197 0.031,0.1321 0,0.053 -0.0163,0.101113 0.0824,0.09704 0.0824,0.240552 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path1997" />
+            </g>
+            <g
+               aria-label="NAME"
+               id="text268"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.25441406,34.235001 H 0.10274414 v -1.265547 h 0.1484082 l 0.44767088,0.842339 0.0489258,0.125576 h 0.004077 L 0.747749,33.811793 v -0.842339 h 0.15166992 v 1.265547 H 0.747749 l -0.43543944,-0.828477 -0.0611572,-0.132915 0.003262,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2000" />
+              <path
+                 d="M 1.1864502,34.235001 H 1.0282568 L 1.4180322,32.969454 H 1.5851953 L 1.977417,34.235001 H 1.8037305 L 1.7172949,33.956939 H 1.2720703 Z m 0.1247607,-0.404454 h 0.3693897 l -0.1524854,-0.480288 -0.035879,-0.127207 -0.031802,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2002" />
+              <path
+                 d="m 2.1812744,34.235001 h -0.132915 v -1.265547 h 0.1655322 l 0.2919238,0.833369 0.2919238,-0.833369 h 0.1614551 v 1.265547 H 2.8075244 v -0.80646 l 0.00408,-0.110899 h -0.00408 l -0.035879,0.110899 -0.1957031,0.553676 H 2.4112256 L 2.2130762,33.428541 2.1812744,33.317642 h -0.00408 l 0.00408,0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2004" />
+              <path
+                 d="m 3.8529054,34.095562 v 0.139439 H 3.1695753 v -1.265547 h 0.6702832 v 0.127207 H 3.3342921 v 0.429731 h 0.4550098 v 0.126392 H 3.3342921 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2006" />
+            </g>
+            <g
+               aria-label="READY"
+               id="text270"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.392215,33.697632 v 0.537369 h -0.164717 v -1.265547 h 0.338403 q 0.165533,0 0.243814,0.03425 0.07828,0.03343 0.120683,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591187 h -0.195703 l -0.335141,-0.537369 z m 0,-0.127207 h 0.230766 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.05789,-0.09378 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06524,-0.141069 -0.06442,-0.053 -0.234843,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2009" />
+              <path
+                 d="m 54.956209,34.095562 v 0.139439 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505566 v 0.429731 h 0.455009 v 0.126392 h -0.455009 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2011" />
+              <path
+                 d="m 55.293797,34.235001 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08644,-0.278062 h -0.445225 z m 0.124761,-0.404454 h 0.369389 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2013" />
+              <path
+                 d="m 56.236434,34.235001 v -1.265547 h 0.300078 q 0.207119,0 0.307417,0.07257 0.101113,0.07176 0.15167,0.21772 0.05056,0.145962 0.05056,0.345742 0,0.18918 -0.05382,0.332695 -0.053,0.1427 -0.150854,0.220166 -0.09785,0.07665 -0.304971,0.07665 z m 0.164716,-0.139439 h 0.110083 q 0.167164,0 0.238106,-0.05953 0.07176,-0.05953 0.101929,-0.164717 0.03099,-0.106006 0.03099,-0.291924 0,-0.181841 -0.03588,-0.279692 -0.03588,-0.09785 -0.102744,-0.150039 -0.06686,-0.053 -0.219351,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2015" />
+              <path
+                 d="m 57.53052,34.235001 v -0.585479 l -0.376728,-0.680068 h 0.186733 l 0.281324,0.502304 0.280507,-0.502304 h 0.168794 l -0.375913,0.680068 v 0.585479 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2017" />
+            </g>
+            <g
+               aria-label="STATUS"
+               id="text272"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 61.250024,34.208091 V 34.05316 q 0.195703,0.09296 0.355527,0.09296 0.06687,0 0.128023,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.0579 -0.16227,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135362,0 0.261753,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.10519,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319649 0,0.146777 -0.106822,0.251967 -0.106821,0.105191 -0.34248,0.105191 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2020" />
+              <path
+                 d="M 62.541665,34.235001 V 33.108892 H 62.16249 v -0.139438 h 0.923882 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2022" />
+              <path
+                 d="m 63.3098,34.235001 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392221,1.265547 H 63.92708 l -0.08644,-0.278062 H 63.39542 Z m 0.12476,-0.404454 h 0.36939 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2024" />
+              <path
+                 d="m 64.54436,34.235001 v -1.126109 h -0.379175 v -0.139438 h 0.923882 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2026" />
+              <path
+                 d="m 65.230136,32.969454 h 0.164717 v 0.830923 q 0,0.163901 0.02691,0.224243 0.02773,0.05953 0.08399,0.09133 0.05708,0.03099 0.126391,0.03099 0.07339,0 0.130469,-0.03343 0.0579,-0.03425 0.0848,-0.106006 0.02772,-0.07257 0.02772,-0.271538 v -0.766504 h 0.15167 v 0.82603 q 0,0.176948 -0.053,0.277246 -0.05219,0.09948 -0.136992,0.150039 -0.08481,0.05056 -0.213642,0.05056 -0.119053,0 -0.209566,-0.04403 -0.09051,-0.04403 -0.136992,-0.1321 -0.04648,-0.08807 -0.04648,-0.318018 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2028" />
+              <path
+                 d="M 66.256762,34.208091 V 34.05316 q 0.195703,0.09296 0.355528,0.09296 0.06686,0 0.128022,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.0579 -0.162271,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135362,0 0.261753,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.10519,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319649 0,0.146777 -0.106822,0.251967 -0.106821,0.105191 -0.34248,0.105191 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2030" />
+            </g>
+            <g
+               aria-label="RESTARTS"
+               id="text274"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.43222,33.697632 v 0.537369 h -0.164717 v -1.265547 h 0.338403 q 0.165532,0 0.243814,0.03425 0.07828,0.03343 0.120683,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591187 h -0.195703 l -0.335142,-0.537369 z m 0,-0.127207 h 0.230766 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09378 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06524,-0.141069 -0.06442,-0.053 -0.234844,-0.053 H 73.43222 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2033" />
+              <path
+                 d="m 74.996214,34.095562 v 0.139439 h -0.68333 v -1.265547 h 0.670283 v 0.127207 H 74.4776 v 0.429731 h 0.45501 v 0.126392 H 74.4776 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2035" />
+              <path
+                 d="M 75.276722,34.208091 V 34.05316 q 0.195703,0.09296 0.355527,0.09296 0.06686,0 0.128022,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.0579 -0.162271,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309864,-0.09785 0.135361,0 0.261753,0.03914 v 0.141069 q -0.139439,-0.05382 -0.271539,-0.05382 -0.10519,0 -0.170424,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319649 0,0.146777 -0.106821,0.251967 -0.106822,0.105191 -0.342481,0.105191 -0.07502,0 -0.143515,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2037" />
+              <path
+                 d="m 76.568362,34.235001 v -1.126109 h -0.379175 v -0.139438 h 0.923882 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2039" />
+              <path
+                 d="m 77.336497,34.235001 h -0.158193 l 0.389775,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08644,-0.278062 h -0.445225 z m 0.124761,-0.404454 h 0.369389 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2041" />
+              <path
+                 d="m 78.438958,33.697632 v 0.537369 h -0.164717 v -1.265547 h 0.338403 q 0.165532,0 0.243814,0.03425 0.07828,0.03343 0.120683,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591187 h -0.195703 l -0.335141,-0.537369 z m 0,-0.127207 h 0.230766 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09378 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06524,-0.141069 -0.06442,-0.053 -0.234843,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2043" />
+              <path
+                 d="m 79.572405,34.235001 v -1.126109 h -0.379174 v -0.139438 h 0.923881 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2045" />
+              <path
+                 d="M 80.28346,34.208091 V 34.05316 q 0.195703,0.09296 0.355527,0.09296 0.06686,0 0.128023,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.0579 -0.16227,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135361,0 0.261753,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.105191,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06687,0.03914 q 0.207934,0.127207 0.207934,0.319649 0,0.146777 -0.106821,0.251967 -0.106821,0.105191 -0.34248,0.105191 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2047" />
+            </g>
+            <g
+               aria-label="AGE"
+               id="text276"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.353102,34.235001 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08643,-0.278062 h -0.445225 z m 0.124761,-0.404454 h 0.369389 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2050" />
+              <path
+                 d="m 86.056534,34.234185 q -0.13373,0.03914 -0.245444,0.03914 -0.158193,0 -0.282139,-0.07828 -0.123129,-0.07828 -0.193256,-0.23566 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260938,-0.07584 -0.09785,0 -0.179394,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09378,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 v -0.407715 h -0.126392 v -0.126391 h 0.291108 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2052" />
+              <path
+                 d="m 87.019557,34.095562 v 0.139439 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505566 v 0.429731 h 0.455009 v 0.126392 h -0.455009 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2054" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-admin-64749bbcdc-7swsl"
+               id="text278"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,36.405998 V 35.69739 H 0.13617675 v -0.126392 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08644 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.05871 H 0.85130857 V 35.69739 H 0.49007323 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2057" />
+              <path
+                 d="m 1.5028369,36.431277 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,36.158108 1.07229,35.950173 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2059" />
+              <path
+                 d="m 2.5041846,36.431277 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2061" />
+              <path
+                 d="m 3.1891456,35.956696 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2063" />
+              <path
+                 d="M 4.1725537,36.405998 V 35.089895 H 4.3242236 V 35.91674 L 4.7621094,35.495163 H 4.9643359 L 4.5272656,35.91674 4.9757519,36.405998 H 4.767002 L 4.3242236,35.91674 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2065" />
+              <path
+                 d="m 5.8825096,35.495163 v 0.910835 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05627 -0.1793945,0.05627 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2067" />
+              <path
+                 d="m 6.2747317,35.699836 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204672 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2069" />
+              <path
+                 d="m 7.8933595,36.345656 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,35.862107 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2071" />
+              <path
+                 d="m 8.2146387,36.405998 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05627 0.2046729,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2073" />
+              <path
+                 d="m 9.1385204,36.405998 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07583 -0.1508545,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2075" />
+              <path
+                 d="m 10.897402,36.345656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2077" />
+              <path
+                 d="m 11.902827,36.369304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 35.69739 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 V 35.69739 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2079" />
+              <path
+                 d="m 12.900098,36.345656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2081" />
+              <path
+                 d="m 13.154512,36.357888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2083" />
+              <path
+                 d="m 14.20397,35.956696 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2085" />
+              <path
+                 d="m 15.745132,36.201325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2087" />
+              <path
+                 d="m 16.756265,36.201325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2089" />
+              <path
+                 d="m 17.080807,36.405998 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2091" />
+              <path
+                 d="m 18.405879,36.405998 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z M 18.3806,35.166545 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2093" />
+              <path
+                 d="m 19.151998,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2095" />
+              <path
+                 d="m 20.212055,35.956696 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2097" />
+              <path
+                 d="m 21.266407,35.812365 q 0.05871,-0.08725 0.145146,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186734,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114975,0.132915 -0.303339,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139439,-0.499858 0.139438,-0.184287 0.377543,-0.184287 0.128023,0 0.248707,0.03751 v 0.153301 q -0.135362,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505567 q 0.06116,0 0.123129,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165533,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2099" />
+              <path
+                 d="m 22.606157,36.405998 v -0.353896 h -0.537369 v -0.127207 l 0.537369,-0.784444 h 0.152485 v 0.784444 h 0.234028 v 0.127207 h -0.234028 v 0.353896 z m 0,-0.481103 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2101" />
+              <path
+                 d="m 23.291118,36.405998 v -0.113344 q 0,-0.132916 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.21935 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114976 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113344 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2103" />
+              <path
+                 d="m 24.608854,36.405998 v -0.353896 h -0.537369 v -0.127207 l 0.537369,-0.784444 h 0.152485 v 0.784444 h 0.234028 v 0.127207 h -0.234028 v 0.353896 z m 0,-0.481103 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2105" />
+              <path
+                 d="m 25.796934,35.734084 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114975,-0.31231 0.115792,-0.13373 0.304156,-0.13373 0.221797,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183471 -0.377544,0.183471 -0.128023,0 -0.248706,-0.03833 v -0.152485 q 0.135361,0.0636 0.255229,0.0636 0.16961,0 0.262569,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.0367 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2107" />
+              <path
+                 d="m 26.301685,35.699836 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.17858,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2109" />
+              <path
+                 d="m 27.303032,35.699836 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2111" />
+              <path
+                 d="m 28.93063,36.379904 q -0.152485,0.05137 -0.290292,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284584,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2113" />
+              <path
+                 d="m 29.773784,36.201325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2115" />
+              <path
+                 d="m 30.933326,36.379904 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2117" />
+              <path
+                 d="m 31.226879,35.956696 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2119" />
+              <path
+                 d="m 32.303247,36.405998 v -0.113344 q 0,-0.132916 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.65642 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.21935 -0.02935,0.03996 -0.05789,0.07991 l -0.08481,0.119053 q -0.08154,0.114976 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113344 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2121" />
+              <path
+                 d="m 33.181464,36.357888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.151669,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2123" />
+              <path
+                 d="M 34.210539,36.405998 34.062131,35.495163 H 34.2032 l 0.08644,0.554492 0.02283,0.128838 0.02202,-0.128838 0.145147,-0.554492 h 0.136176 l 0.163902,0.554492 0.02854,0.128838 0.01875,-0.128838 0.08725,-0.554492 h 0.116606 l -0.147593,0.910835 h -0.141884 l -0.174502,-0.586294 -0.02772,-0.128838 h -0.0041 l -0.02528,0.128023 -0.15167,0.587109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2125" />
+              <path
+                 d="m 35.184161,36.357888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.151669,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2127" />
+              <path
+                 d="m 36.419536,36.405998 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2129" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text280"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,36.279607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03832 -0.176948,0.07828 V 35.33697 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 H 53.2593 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2132" />
+              <path
+                 d="m 54.283479,36.444323 h -0.149223 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2134" />
+              <path
+                 d="m 55.571858,36.279607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03832 -0.176948,0.07828 V 35.33697 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 v 0.126391 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2136" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text282"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.408217,35.86863 v 0.537368 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591186 H 61.908076 L 61.572934,35.86863 Z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08643 0.03833,-0.04403 0.0579,-0.09378 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.14107 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2139" />
+              <path
+                 d="m 62.999121,35.495163 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2141" />
+              <path
+                 d="m 63.251089,36.405998 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2143" />
+              <path
+                 d="m 64.252436,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2145" />
+              <path
+                 d="M 65.509013,36.405998 V 35.621555 H 65.25623 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2147" />
+              <path
+                 d="m 66.255131,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2149" />
+              <path
+                 d="m 67.86479,36.201325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.1533 q 0.06442,0.04403 0.158193,0.07746 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2151" />
+            </g>
+            <g
+               aria-label="0"
+               id="text284"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,35.102942 q 0.216088,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247076,0.941005 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2154" />
+            </g>
+            <g
+               aria-label="40m"
+               id="text286"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 84.744508,36.405998 V 36.052102 H 84.20714 v -0.127207 l 0.537368,-0.784444 h 0.152485 v 0.784444 h 0.234029 v 0.127207 h -0.234029 v 0.353896 z m 0,-0.481103 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2157" />
+              <path
+                 d="m 85.670021,35.102942 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2159" />
+              <path
+                 d="m 86.22859,36.405998 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2161" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-apiserver-6964d88ff5-87mwn"
+               id="text288"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,38.577 V 37.868391 H 0.13617675 V 37.742 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266645 0.0407715,-0.08644 0.12557617,-0.141885 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144332 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205489 V 37.742 h 0.36123534 v 0.126391 H 0.49007323 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2164" />
+              <path
+                 d="m 1.5028369,38.602278 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,38.329109 1.07229,38.121174 q 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2166" />
+              <path
+                 d="m 2.5041846,38.602278 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2168" />
+              <path
+                 d="m 3.1891456,38.127698 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2170" />
+              <path
+                 d="m 4.1725537,38.577 v -1.316104 h 0.1516699 v 0.826846 L 4.7621094,37.666165 H 4.9643359 L 4.5272656,38.087742 4.9757519,38.577 H 4.767002 L 4.3242236,38.087742 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2172" />
+              <path
+                 d="M 5.8825096,37.666165 V 38.577 H 5.7308397 v -0.199781 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2174" />
+              <path
+                 d="m 6.2747317,37.870838 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316104 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2176" />
+              <path
+                 d="m 7.8933595,38.516658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2178" />
+              <path
+                 d="m 8.2146387,38.577 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2180" />
+              <path
+                 d="m 9.1385204,38.577 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 V 38.577 H 9.7460155 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2182" />
+              <path
+                 d="m 10.897402,38.516658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2184" />
+              <path
+                 d="m 11.902827,38.540305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 37.868391 H 11.093105 V 37.742 h 0.227505 v -0.366944 h 0.15167 V 37.742 h 0.405269 v 0.126391 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2186" />
+              <path
+                 d="m 12.900098,38.516658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2188" />
+              <path
+                 d="M 13.154512,38.528889 V 38.36825 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2190" />
+              <path
+                 d="m 14.20397,38.127698 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2192" />
+              <path
+                 d="m 15.745132,38.372327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2194" />
+              <path
+                 d="m 16.288208,37.870838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2196" />
+              <path
+                 d="m 17.404532,38.577 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 V 38.577 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2198" />
+              <path
+                 d="M 18.16125,38.528889 V 38.36825 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2200" />
+              <path
+                 d="m 19.909532,38.516658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2202" />
+              <path
+                 d="m 20.23081,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2204" />
+              <path
+                 d="M 21.450694,38.577 21.05521,37.666165 h 0.166348 l 0.31231,0.72084 0.318833,-0.72084 h 0.15167 L 21.605625,38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2206" />
+              <path
+                 d="m 22.913574,38.516658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2208" />
+              <path
+                 d="m 23.234854,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159008,0.200596 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2210" />
+              <path
+                 d="m 24.217447,38.127698 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2212" />
+              <path
+                 d="m 25.271797,37.983367 q 0.05871,-0.08725 0.145146,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186734,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109268,-0.185918 -0.109268,-0.472133 0,-0.316387 0.139439,-0.499859 0.139438,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135362,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165533,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2214" />
+              <path
+                 d="m 26.798282,37.905086 q -0.05871,0.08725 -0.145962,0.1427 -0.08643,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.0473 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114976,-0.312309 0.115791,-0.133731 0.304155,-0.133731 0.221797,0 0.331065,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139439,0.500674 -0.139438,0.183472 -0.377544,0.183472 -0.128022,0 -0.248706,-0.03833 v -0.152486 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z M 26.50065,37.400335 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2216" />
+              <path
+                 d="m 27.274492,37.983367 q 0.05871,-0.08725 0.145146,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186734,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109268,-0.185918 -0.109268,-0.472133 0,-0.316387 0.139439,-0.499859 0.139438,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135362,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114975,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2218" />
+              <path
+                 d="m 28.614244,38.577 v -0.353897 h -0.537368 v -0.127207 l 0.537368,-0.784443 h 0.152485 v 0.784443 h 0.234028 v 0.127207 H 28.766729 V 38.577 Z m 0,-0.481104 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2220" />
+              <path
+                 d="m 29.773784,38.372327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 V 38.577 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2222" />
+              <path
+                 d="m 30.414712,37.894485 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01876,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298448,0.100298 -0.19978,0 -0.299262,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02935,-0.05871 0.02935,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158194 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05627 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118238,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2224" />
+              <path
+                 d="m 31.416059,37.894485 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113344,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01876,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.19978,0 -0.299263,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02935,-0.05871 0.02935,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.0473,0.05463 -0.0473,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158194 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05627 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2226" />
+              <path
+                 d="M 32.381528,38.577 V 37.868391 H 32.179302 V 37.742 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144332 q -0.118238,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 V 37.742 h 0.361236 v 0.126391 H 32.533198 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2228" />
+              <path
+                 d="M 33.382875,38.577 V 37.868391 H 33.180648 V 37.742 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144332 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 V 37.742 h 0.361235 v 0.126391 H 33.534545 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2230" />
+              <path
+                 d="m 34.199123,37.918948 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2232" />
+              <path
+                 d="m 35.232271,38.127698 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2234" />
+              <path
+                 d="m 36.422798,37.894485 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252784,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.265831,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158194 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05627 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.0848 -0.118238,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2236" />
+              <path
+                 d="m 37.309984,38.577 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110898 0.121499,-0.17124 l 0.132099,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.656421 v -0.152485 h 0.803199 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.219351 -0.02935,0.03996 -0.05789,0.07991 l -0.08481,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2238" />
+              <path
+                 d="m 38.109108,38.577 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09378,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 38.577 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 V 38.577 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2240" />
+              <path
+                 d="m 39.217276,38.577 -0.148409,-0.910835 h 0.14107 l 0.08644,0.554492 0.02283,0.128838 0.02202,-0.128838 0.145146,-0.554492 h 0.136177 l 0.163902,0.554492 0.02854,0.128838 0.01876,-0.128838 0.08725,-0.554492 h 0.116607 L 39.890005,38.577 H 39.74812 l -0.174502,-0.586294 -0.02772,-0.128838 h -0.0041 l -0.02528,0.128022 -0.15167,0.58711 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2242" />
+              <path
+                 d="m 40.180297,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 38.577 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2244" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text290"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,38.450608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136993 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 V 38.577 H 53.2593 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2247" />
+              <path
+                 d="m 54.283479,38.615325 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2249" />
+              <path
+                 d="m 55.571858,38.450608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136993 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304156 V 38.577 h -0.765689 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2251" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text292"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 61.408217,38.039632 V 38.577 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 L 62.103779,38.577 h -0.195703 l -0.335142,-0.537368 z m 0,-0.127208 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.141069 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2254" />
+              <path
+                 d="M 62.999121,37.666165 V 38.577 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2256" />
+              <path
+                 d="m 63.251089,38.577 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 38.577 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2258" />
+              <path
+                 d="m 64.252436,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 38.577 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2260" />
+              <path
+                 d="M 65.509013,38.577 V 37.792556 H 65.25623 v -0.126391 h 0.404453 v 0.784443 h 0.253599 V 38.577 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2262" />
+              <path
+                 d="m 66.255131,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 38.577 h -0.151669 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2264" />
+              <path
+                 d="m 67.86479,38.372327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2266" />
+            </g>
+            <g
+               aria-label="1"
+               id="text294"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.609168,38.450608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136993 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 V 38.577 h -0.765688 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2269" />
+            </g>
+            <g
+               aria-label="7m5s"
+               id="text296"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.428121,38.577 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110898 0.121499,-0.17124 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 H 84.30173 v -0.152485 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2272" />
+              <path
+                 d="m 85.227242,38.577 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03832,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 38.577 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 V 38.577 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2274" />
+              <path
+                 d="m 86.323995,37.918948 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167978,0.152485 -0.108453,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.105191,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2276" />
+              <path
+                 d="M 87.309035,38.528889 V 38.36825 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2278" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-apiserver-6964d88ff5-dbwsk"
+               id="text298"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,40.748001 V 40.039393 H 0.13617675 v -0.126392 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08643 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.05871 h 0.36123534 v 0.126392 H 0.49007323 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2281" />
+              <path
+                 d="m 1.5028369,40.773279 q -0.1957031,0 -0.313125,-0.136176 Q 1.07229,40.50011 1.07229,40.292176 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207934 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2283" />
+              <path
+                 d="m 2.5041846,40.773279 q -0.1957032,0 -0.313125,-0.136176 -0.1174219,-0.136993 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207934 -0.1174219,0.344927 -0.1174218,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2285" />
+              <path
+                 d="m 3.1891456,40.298699 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2287" />
+              <path
+                 d="m 4.1725537,40.748001 v -1.316103 h 0.1516699 v 0.826845 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,40.258743 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2289" />
+              <path
+                 d="m 5.8825096,39.837166 v 0.910835 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07584 0.1524853,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2291" />
+              <path
+                 d="m 6.2747317,40.041839 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.05789 0.1785791,-0.05789 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2293" />
+              <path
+                 d="m 7.8933595,40.687659 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,40.20411 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2295" />
+              <path
+                 d="m 8.2146387,40.748001 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167979 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 V 39.95785 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2297" />
+              <path
+                 d="m 9.1385204,40.748001 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111713 0.026909,0.06931 0.026909,0.272354 v 0.508828 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2299" />
+              <path
+                 d="m 10.897402,40.687659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 10.291538,40.20411 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2301" />
+              <path
+                 d="m 11.902827,40.711307 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2303" />
+              <path
+                 d="m 12.900098,40.687659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 12.294234,40.20411 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2305" />
+              <path
+                 d="m 13.154512,40.699891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2307" />
+              <path
+                 d="m 14.20397,40.298699 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2309" />
+              <path
+                 d="m 15.745132,40.543328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2311" />
+              <path
+                 d="m 16.288208,40.041839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2313" />
+              <path
+                 d="m 17.404532,40.748001 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2315" />
+              <path
+                 d="m 18.16125,40.699891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2317" />
+              <path
+                 d="m 19.909532,40.687659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 19.303668,40.20411 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2319" />
+              <path
+                 d="m 20.23081,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 H 20.768178 V 39.95785 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2321" />
+              <path
+                 d="M 21.450694,40.748001 21.05521,39.837166 h 0.166348 l 0.31231,0.72084 0.318833,-0.72084 h 0.15167 l -0.398746,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2323" />
+              <path
+                 d="m 22.913574,40.687659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 22.307709,40.20411 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2325" />
+              <path
+                 d="m 23.234854,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 H 23.772222 V 39.95785 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2327" />
+              <path
+                 d="m 24.217447,40.298699 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2329" />
+              <path
+                 d="m 25.271797,40.154368 q 0.05871,-0.08725 0.145146,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186734,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139439,-0.499858 0.139438,-0.184288 0.377544,-0.184288 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135362,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.0367 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08643 -0.07339,0.08562 -0.07339,0.20875 0,0.123946 0.07176,0.203042 0.07257,0.07828 0.165533,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2331" />
+              <path
+                 d="m 26.798282,40.076087 q -0.05871,0.08725 -0.145962,0.1427 -0.08643,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114976,-0.31231 0.115791,-0.133731 0.304155,-0.133731 0.221797,0 0.331065,0.185918 0.110083,0.185103 0.110083,0.471319 0,0.316387 -0.139439,0.500674 -0.139438,0.183471 -0.377544,0.183471 -0.128022,0 -0.248706,-0.03833 v -0.152485 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z M 26.50065,39.571336 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08643 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2333" />
+              <path
+                 d="m 27.274492,40.154368 q 0.05871,-0.08725 0.145146,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186734,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139439,-0.499858 0.139438,-0.184288 0.377544,-0.184288 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135362,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.0367 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114975,0 -0.18918,0.08643 -0.07339,0.08562 -0.07339,0.20875 0,0.123946 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2335" />
+              <path
+                 d="m 28.614244,40.748001 v -0.353896 h -0.537368 v -0.127207 l 0.537368,-0.784444 h 0.152485 v 0.784444 h 0.234028 v 0.127207 h -0.234028 v 0.353896 z m 0,-0.481103 v -0.554493 l -0.375913,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2337" />
+              <path
+                 d="m 29.773784,40.543328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2339" />
+              <path
+                 d="m 30.414712,40.065486 -0.02772,-0.02038 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01876,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298448,0.100298 -0.19978,0 -0.299262,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393038 z m 0.155747,-0.07746 q 0.114976,-0.08725 0.143516,-0.145962 0.02935,-0.05871 0.02935,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118238,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2341" />
+              <path
+                 d="m 31.416059,40.065486 -0.02773,-0.02038 q -0.0579,-0.04077 -0.113344,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01876,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.19978,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393038 z m 0.155747,-0.07746 q 0.114976,-0.08725 0.143516,-0.145962 0.02935,-0.05871 0.02935,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.0473,0.05463 -0.0473,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2343" />
+              <path
+                 d="m 32.381528,40.748001 v -0.708608 h -0.202226 v -0.126392 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118238,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361236 v 0.126392 h -0.361236 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2345" />
+              <path
+                 d="m 33.382875,40.748001 v -0.708608 h -0.202227 v -0.126392 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126392 h -0.361235 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2347" />
+              <path
+                 d="m 34.199123,40.089949 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2349" />
+              <path
+                 d="m 35.232271,40.298699 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2351" />
+              <path
+                 d="m 36.783217,40.543328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152486 v 1.316103 h -0.152486 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2353" />
+              <path
+                 d="m 37.316507,40.041839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.17858,-0.05789 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2355" />
+              <path
+                 d="m 38.215929,40.748001 -0.148408,-0.910835 h 0.141069 l 0.08644,0.554492 0.02283,0.128838 0.02202,-0.128838 0.145147,-0.554492 h 0.136177 l 0.163901,0.554492 0.02854,0.128838 0.01875,-0.128838 0.08725,-0.554492 h 0.116606 l -0.147592,0.910835 h -0.141885 l -0.174502,-0.586294 -0.02772,-0.128838 h -0.0041 l -0.02528,0.128023 -0.15167,0.587109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2357" />
+              <path
+                 d="m 39.189551,40.699891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2359" />
+              <path
+                 d="m 40.221069,40.748001 v -1.316103 h 0.151669 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2361" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text300"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,40.62161 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 H 53.2593 V 40.62161 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2364" />
+              <path
+                 d="m 54.283479,40.786326 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2366" />
+              <path
+                 d="m 55.571858,40.62161 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 v 0.126391 H 55.261995 V 40.62161 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2368" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text302"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.408217,40.210633 v 0.537368 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591186 h -0.195703 l -0.335142,-0.537368 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.14107 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2371" />
+              <path
+                 d="m 62.999121,39.837166 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07584 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2373" />
+              <path
+                 d="m 63.251089,40.748001 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2375" />
+              <path
+                 d="m 64.252436,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2377" />
+              <path
+                 d="M 65.509013,40.748001 V 39.963558 H 65.25623 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2379" />
+              <path
+                 d="m 66.255131,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2381" />
+              <path
+                 d="m 67.86479,40.543328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 V 40.88907 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2383" />
+            </g>
+            <g
+               aria-label="1"
+               id="text304"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.609168,40.62161 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 H 73.299305 V 40.62161 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2386" />
+            </g>
+            <g
+               aria-label="7m9s"
+               id="text306"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.428121,40.748001 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 H 84.30173 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120683,0.183471 -0.03914,0.0685 -0.05953,0.142701 -0.01957,0.0742 -0.01957,0.194887 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2389" />
+              <path
+                 d="m 85.227242,40.748001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03832,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2391" />
+              <path
+                 d="m 86.933937,40.076087 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134545,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114976,-0.31231 0.115791,-0.133731 0.304155,-0.133731 0.221797,0 0.331064,0.185918 0.110083,0.185103 0.110083,0.471319 0,0.316387 -0.139438,0.500674 -0.139439,0.183471 -0.377544,0.183471 -0.128022,0 -0.248706,-0.03833 v -0.152485 q 0.135361,0.0636 0.255229,0.0636 0.16961,0 0.262569,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.171241,0.0742 0.114975,0 0.188364,-0.08562 0.0742,-0.08643 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2393" />
+              <path
+                 d="m 87.309035,40.699891 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2395" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-controller-manager-549874c588-clljz"
+               id="text308"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,42.918999 V 42.21039 H 0.13617675 v -0.126391 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266645 0.0407715,-0.08644 0.12557617,-0.141885 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.05871 H 0.85130857 V 42.21039 H 0.49007323 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2398" />
+              <path
+                 d="m 1.5028369,42.944277 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,42.671108 1.07229,42.463174 q 0,-0.207935 0.1174219,-0.344112 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344112 0,0.207934 -0.1174218,0.344926 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2400" />
+              <path
+                 d="m 2.5041846,42.944277 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344926 0,-0.207935 0.1174219,-0.344112 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344112 0,0.207934 -0.1174219,0.344926 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2402" />
+              <path
+                 d="m 3.1891456,42.469697 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2404" />
+              <path
+                 d="m 4.1725537,42.918999 v -1.316104 h 0.1516699 v 0.826846 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,42.429741 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2406" />
+              <path
+                 d="m 5.8825096,42.008164 v 0.910835 H 5.7308397 v -0.199781 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2408" />
+              <path
+                 d="m 6.2747317,42.212837 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123946 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316104 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2410" />
+              <path
+                 d="m 7.8933595,42.858657 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.17858 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2412" />
+              <path
+                 d="m 8.2146387,42.918999 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2414" />
+              <path
+                 d="m 9.1385204,42.918999 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 v 0.508828 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07584 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2416" />
+              <path
+                 d="m 10.897402,42.858657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2418" />
+              <path
+                 d="m 11.902827,42.882304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 42.21039 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 V 42.21039 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2420" />
+              <path
+                 d="m 12.900098,42.858657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2422" />
+              <path
+                 d="m 13.154512,42.870888 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2424" />
+              <path
+                 d="m 14.20397,42.469697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2426" />
+              <path
+                 d="m 15.913111,42.892905 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2428" />
+              <path
+                 d="m 16.523052,42.944277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117421,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2430" />
+              <path
+                 d="m 17.149303,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2432" />
+              <path
+                 d="m 18.912261,42.882304 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 42.21039 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2434" />
+              <path
+                 d="m 19.229464,42.918999 v -0.910835 h 0.151669 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2436" />
+              <path
+                 d="m 20.528442,42.944277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117421,0.136177 0.117421,0.344112 0,0.207934 -0.117421,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2438" />
+              <path
+                 d="m 21.399322,42.918999 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2440" />
+              <path
+                 d="m 22.400668,42.918999 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2442" />
+              <path
+                 d="m 23.914922,42.858657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2444" />
+              <path
+                 d="m 24.236202,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 H 24.77357 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2446" />
+              <path
+                 d="m 25.218794,42.469697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2448" />
+              <path
+                 d="m 26.092935,42.918999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 H 26.47211 v -0.621358 q 0,-0.120683 -0.02365,-0.141884 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2450" />
+              <path
+                 d="m 27.761303,42.714326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2452" />
+              <path
+                 d="m 28.164127,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157377,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2454" />
+              <path
+                 d="m 29.763999,42.714326 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2456" />
+              <path
+                 d="m 30.775132,42.714326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131285,-0.02202 0.06197,-0.02202 0.100297,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2458" />
+              <path
+                 d="m 31.925702,42.858657 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2460" />
+              <path
+                 d="m 32.246983,42.918999 v -0.910835 h 0.151669 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2462" />
+              <path
+                 d="m 33.229574,42.469697 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2464" />
+              <path
+                 d="m 34.199123,42.260947 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165533 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2466" />
+              <path
+                 d="m 35.623678,42.918999 v -0.353897 h -0.537369 v -0.127207 l 0.537369,-0.784443 h 0.152485 v 0.784443 h 0.234028 v 0.127207 h -0.234028 v 0.353897 z m 0,-0.481104 v -0.554492 l -0.375914,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2468" />
+              <path
+                 d="m 36.811757,42.247085 q -0.05871,0.08725 -0.145961,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187549,-0.0473 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114975,-0.312309 0.115791,-0.133731 0.304156,-0.133731 0.221797,0 0.331064,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183472 -0.377544,0.183472 -0.128023,0 -0.248706,-0.03833 v -0.152486 q 0.135361,0.0636 0.255229,0.0636 0.16961,0 0.262569,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297631,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164716,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2470" />
+              <path
+                 d="m 37.424144,42.236484 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05627,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.19978,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234029 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02935,-0.05871 0.02935,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158194 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05627 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2472" />
+              <path
+                 d="m 38.311334,42.918999 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110898 0.121499,-0.17124 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.656421 v -0.152485 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2474" />
+              <path
+                 d="M 39.629068,42.918999 V 42.565102 H 39.0917 v -0.127207 l 0.537368,-0.784443 h 0.152485 v 0.784443 h 0.234028 v 0.127207 h -0.234028 v 0.353897 z m 0,-0.481104 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2476" />
+              <path
+                 d="m 40.946801,42.892905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2478" />
+              <path
+                 d="m 41.208557,42.260947 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167978,0.152485 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165533 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2480" />
+              <path
+                 d="m 42.430885,42.236484 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234029 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158194 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05627 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2482" />
+              <path
+                 d="m 43.432231,42.236484 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298448,0.100298 -0.19978,0 -0.299262,-0.09377 -0.09948,-0.09459 -0.09948,-0.234029 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158194 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05627 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.0848 -0.118238,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2484" />
+              <path
+                 d="m 44.244398,42.469697 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2486" />
+              <path
+                 d="m 45.953542,42.892905 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2488" />
+              <path
+                 d="M 46.433013,42.918999 V 41.730102 H 46.16066 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2490" />
+              <path
+                 d="m 47.43436,42.918999 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2492" />
+              <path
+                 d="m 48.204944,43.276157 v -0.141885 q 0.127207,0.03751 0.214458,0.03751 0.07584,0 0.128837,-0.02691 0.053,-0.02609 0.08236,-0.08888 0.03017,-0.06279 0.03017,-0.218535 v -0.702901 h -0.386514 v -0.126391 h 0.538184 v 0.800752 q 0,0.231582 -0.05463,0.321279 -0.05463,0.09051 -0.1321,0.129653 -0.07747,0.03914 -0.212011,0.03914 -0.09704,0 -0.20875,-0.02283 z m 0.430546,-1.596611 q 0,-0.05137 0.03425,-0.07665 0.03506,-0.02528 0.06687,-0.02528 0.0318,0 0.06605,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03425,0.02528 -0.06605,0.02528 -0.0318,0 -0.06687,-0.02528 -0.03425,-0.02528 -0.03425,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2494" />
+              <path
+                 d="M 49.174488,42.918999 V 42.77956 l 0.55857,-0.645005 h -0.545523 v -0.126391 h 0.746118 v 0.126391 l -0.562646,0.645005 h 0.581401 v 0.139439 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2496" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text310"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,42.792607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 41.84997 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 H 53.2593 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2499" />
+              <path
+                 d="m 54.283479,42.957324 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2501" />
+              <path
+                 d="m 55.571858,42.792607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 41.84997 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304156 v 0.126392 h -0.765689 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2503" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text312"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.408217,42.381631 v 0.537368 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591187 h -0.195703 l -0.335142,-0.537368 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.141069 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2506" />
+              <path
+                 d="m 62.999121,42.008164 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2508" />
+              <path
+                 d="m 63.251089,42.918999 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2510" />
+              <path
+                 d="m 64.252436,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2512" />
+              <path
+                 d="M 65.509013,42.918999 V 42.134555 H 65.25623 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2514" />
+              <path
+                 d="m 66.255131,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2516" />
+              <path
+                 d="m 67.86479,42.714326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2518" />
+            </g>
+            <g
+               aria-label="1"
+               id="text314"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.609168,42.792607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 41.84997 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 h -0.765688 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2521" />
+            </g>
+            <g
+               aria-label="40m"
+               id="text316"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 84.744508,42.918999 V 42.565102 H 84.20714 v -0.127207 l 0.537368,-0.784443 h 0.152485 v 0.784443 h 0.234029 v 0.127207 h -0.234029 v 0.353897 z m 0,-0.481104 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2524" />
+              <path
+                 d="m 85.670021,41.615942 q 0.216089,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490074 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490074 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247075,0.941006 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101928,0.02935 0.154932,0 0.220166,-0.172871 0.06524,-0.173686 0.06524,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2526" />
+              <path
+                 d="m 86.22859,42.918999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141884 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2528" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-controller-manager-549874c588-gcwjn"
+               id="text318"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,45.09 V 44.381392 H 0.13617675 V 44.255 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08644 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 V 44.255 h 0.36123534 v 0.126392 H 0.49007323 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2531" />
+              <path
+                 d="m 1.5028369,45.115278 q -0.1957031,0 -0.313125,-0.136176 Q 1.07229,44.84211 1.07229,44.634175 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2533" />
+              <path
+                 d="m 2.5041846,45.115278 q -0.1957032,0 -0.313125,-0.136176 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2535" />
+              <path
+                 d="m 3.1891456,44.640698 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2537" />
+              <path
+                 d="m 4.1725537,45.09 v -1.316103 h 0.1516699 v 0.826845 L 4.7621094,44.179165 H 4.9643359 L 4.5272656,44.600742 4.9757519,45.09 H 4.767002 L 4.3242236,44.600742 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2539" />
+              <path
+                 d="M 5.8825096,44.179165 V 45.09 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2541" />
+              <path
+                 d="m 6.2747317,44.383838 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2543" />
+              <path
+                 d="m 7.8933595,45.029658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,44.546109 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2545" />
+              <path
+                 d="m 8.2146387,45.09 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05627 0.2046729,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2547" />
+              <path
+                 d="m 9.1385204,45.09 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 V 45.09 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07583 -0.1508545,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2549" />
+              <path
+                 d="m 10.897402,45.029658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2551" />
+              <path
+                 d="m 11.902827,45.053306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 44.381392 H 11.093105 V 44.255 h 0.227505 v -0.366943 h 0.15167 V 44.255 h 0.405269 v 0.126392 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2553" />
+              <path
+                 d="m 12.900098,45.029658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2555" />
+              <path
+                 d="m 13.154512,45.04189 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2557" />
+              <path
+                 d="m 14.20397,44.640698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2559" />
+              <path
+                 d="m 15.913111,45.063906 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2561" />
+              <path
+                 d="m 16.523052,45.115278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117421,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2563" />
+              <path
+                 d="m 17.149303,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2565" />
+              <path
+                 d="m 18.912261,45.053306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 44.381392 H 18.102539 V 44.255 h 0.227505 v -0.366943 h 0.15167 V 44.255 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2567" />
+              <path
+                 d="m 19.229464,45.09 v -0.910835 h 0.151669 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2569" />
+              <path
+                 d="m 20.528442,45.115278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117421,0.136176 0.117421,0.344111 0,0.207935 -0.117421,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2571" />
+              <path
+                 d="m 21.399322,45.09 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2573" />
+              <path
+                 d="m 22.400668,45.09 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2575" />
+              <path
+                 d="m 23.914922,45.029658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2577" />
+              <path
+                 d="m 24.236202,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 v 0.328618 H 24.77357 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2579" />
+              <path
+                 d="m 25.218794,44.640698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2581" />
+              <path
+                 d="m 26.092935,45.09 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 V 45.09 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 45.09 H 26.47211 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2583" />
+              <path
+                 d="m 27.761303,44.885327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140253,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2585" />
+              <path
+                 d="m 28.164127,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157377,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2587" />
+              <path
+                 d="m 29.763999,44.885327 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2589" />
+              <path
+                 d="m 30.775132,44.885327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131285,-0.02202 0.06197,-0.02202 0.100297,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2591" />
+              <path
+                 d="m 31.925702,45.029658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2593" />
+              <path
+                 d="m 32.246983,45.09 v -0.910835 h 0.151669 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2595" />
+              <path
+                 d="m 33.229574,44.640698 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2597" />
+              <path
+                 d="m 34.199123,44.431948 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2599" />
+              <path
+                 d="m 35.623678,45.09 v -0.353896 h -0.537369 v -0.127207 l 0.537369,-0.784444 h 0.152485 v 0.784444 h 0.234028 v 0.127207 H 35.776163 V 45.09 Z m 0,-0.481103 v -0.554493 l -0.375914,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2601" />
+              <path
+                 d="m 36.811757,44.418086 q -0.05871,0.08725 -0.145961,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114975,-0.31231 0.115791,-0.13373 0.304156,-0.13373 0.221797,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183471 -0.377544,0.183471 -0.128023,0 -0.248706,-0.03832 v -0.152485 q 0.135361,0.0636 0.255229,0.0636 0.16961,0 0.262569,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297631,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164716,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2603" />
+              <path
+                 d="M 37.424144,44.407486 37.39642,44.3871 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05627,0.09948 -0.03669,0.04893 -0.146777,0.138624 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.19978,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02935,-0.05871 0.02935,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2605" />
+              <path
+                 d="m 38.311334,45.09 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2607" />
+              <path
+                 d="M 39.629068,45.09 V 44.736104 H 39.0917 v -0.127207 l 0.537368,-0.784444 h 0.152485 v 0.784444 h 0.234028 v 0.127207 H 39.781553 V 45.09 Z m 0,-0.481103 v -0.554493 l -0.375913,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2609" />
+              <path
+                 d="m 40.946801,45.063906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2611" />
+              <path
+                 d="m 41.208557,44.431948 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167978,0.152486 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2613" />
+              <path
+                 d="M 42.430885,44.407486 42.40316,44.3871 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138624 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2615" />
+              <path
+                 d="m 43.432231,44.407486 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138624 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298448,0.100298 -0.19978,0 -0.299262,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.0848 -0.118238,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2617" />
+              <path
+                 d="m 44.244398,44.640698 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2619" />
+              <path
+                 d="m 45.795348,44.885327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131285,-0.02202 0.06197,-0.02202 0.100297,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2621" />
+              <path
+                 d="m 46.954888,45.063906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2623" />
+              <path
+                 d="m 47.228056,45.09 -0.148408,-0.910835 h 0.141069 l 0.08644,0.554492 0.02283,0.128838 0.02202,-0.128838 0.145147,-0.554492 h 0.136177 l 0.163901,0.554492 0.02854,0.128838 0.01875,-0.128838 0.08725,-0.554492 h 0.116606 L 47.900786,45.09 h -0.141885 l -0.174502,-0.586294 -0.02772,-0.128838 h -0.0041 l -0.02528,0.128023 -0.15167,0.587109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2625" />
+              <path
+                 d="m 48.204944,45.447158 v -0.141884 q 0.127207,0.03751 0.214458,0.03751 0.07584,0 0.128837,-0.02691 0.053,-0.02609 0.08236,-0.08888 0.03017,-0.06279 0.03017,-0.218535 v -0.7029 h -0.386514 v -0.126392 h 0.538184 v 0.800752 q 0,0.231582 -0.05463,0.321279 -0.05463,0.09051 -0.1321,0.129654 -0.07747,0.03914 -0.212011,0.03914 -0.09704,0 -0.20875,-0.02283 z m 0.430546,-1.596611 q 0,-0.05137 0.03425,-0.07665 0.03506,-0.02528 0.06687,-0.02528 0.0318,0 0.06605,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03425,0.02528 -0.06605,0.02528 -0.0318,0 -0.06687,-0.02528 -0.03425,-0.02528 -0.03425,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2627" />
+              <path
+                 d="m 49.192428,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2629" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text320"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,44.963609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 V 45.09 H 53.2593 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2632" />
+              <path
+                 d="m 54.283479,45.128325 h -0.149223 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2634" />
+              <path
+                 d="m 55.571858,44.963609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 V 45.09 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2636" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text322"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 61.408217,44.552632 V 45.09 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 L 62.103779,45.09 h -0.195703 l -0.335142,-0.537368 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.14107 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2639" />
+              <path
+                 d="M 62.999121,44.179165 V 45.09 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2641" />
+              <path
+                 d="m 63.251089,45.09 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150855,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2643" />
+              <path
+                 d="m 64.252436,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2645" />
+              <path
+                 d="M 65.509013,45.09 V 44.305557 H 65.25623 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 45.09 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2647" />
+              <path
+                 d="m 66.255131,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2649" />
+              <path
+                 d="m 67.86479,44.885327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2651" />
+            </g>
+            <g
+               aria-label="0"
+               id="text324"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,43.786944 q 0.216088,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247076,0.941005 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2654" />
+            </g>
+            <g
+               aria-label="40m"
+               id="text326"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 84.744508,45.09 V 44.736104 H 84.20714 v -0.127207 l 0.537368,-0.784444 h 0.152485 v 0.784444 h 0.234029 v 0.127207 H 84.896993 V 45.09 Z m 0,-0.481103 v -0.554493 l -0.375913,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2657" />
+              <path
+                 d="m 85.670021,43.786944 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2659" />
+              <path
+                 d="m 86.22859,45.09 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 V 45.09 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 45.09 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2661" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-etcd-0"
+               id="text328"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,47.261002 V 46.552393 H 0.13617675 v -0.126391 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266645 0.0407715,-0.08644 0.12557617,-0.141885 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205489 v 0.05871 h 0.36123534 v 0.126391 H 0.49007323 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2664" />
+              <path
+                 d="m 1.5028369,47.28628 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,47.013111 1.07229,46.805176 q 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2666" />
+              <path
+                 d="m 2.5041846,47.28628 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2668" />
+              <path
+                 d="M 3.1891456,46.8117 V 46.685308 H 3.8219191 V 46.8117 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2670" />
+              <path
+                 d="m 4.1725537,47.261002 v -1.316104 h 0.1516699 v 0.826846 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,46.771744 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2672" />
+              <path
+                 d="m 5.8825096,46.350167 v 0.910835 H 5.7308397 v -0.199781 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2674" />
+              <path
+                 d="m 6.2747317,46.554839 q 0.070127,-0.11416 0.1671631,-0.172055 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316104 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2676" />
+              <path
+                 d="m 7.8933595,47.20066 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,46.71711 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2678" />
+              <path
+                 d="m 8.2146387,47.261002 v -0.910835 h 0.1516699 v 0.198964 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 V 46.47085 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2680" />
+              <path
+                 d="m 9.1385204,47.261002 v -0.910835 h 0.1516699 v 0.198964 q 0.065234,-0.10519 0.157378,-0.164716 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508829 H 9.7460155 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2682" />
+              <path
+                 d="m 10.897402,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2684" />
+              <path
+                 d="m 11.902827,47.224307 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2686" />
+              <path
+                 d="m 12.900098,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2688" />
+              <path
+                 d="m 13.154512,47.212891 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2690" />
+              <path
+                 d="m 14.20397,46.8117 v -0.126392 h 0.632773 V 46.8117 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2692" />
+              <path
+                 d="m 15.904141,47.20066 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2694" />
+              <path
+                 d="m 16.909565,47.224307 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2696" />
+              <path
+                 d="m 17.915807,47.234908 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242182,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2698" />
+              <path
+                 d="m 18.75896,47.056329 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161456,-0.196519 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 H 18.75896 Z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2700" />
+              <path
+                 d="m 19.210709,46.8117 v -0.126392 h 0.632773 V 46.8117 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2702" />
+              <path
+                 d="m 20.527627,45.957945 q 0.216088,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685777 q -0.04159,-0.07583 -0.09051,-0.101928 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.151669 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173686 0.06524,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2704" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text330"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,47.13461 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 H 53.2593 V 47.13461 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2707" />
+              <path
+                 d="m 54.283479,47.299327 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2709" />
+              <path
+                 d="m 55.571858,47.13461 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304156 v 0.126392 H 55.261995 V 47.13461 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2711" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text332"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.408217,46.723633 v 0.537369 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101928 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591187 h -0.195703 l -0.335142,-0.537369 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09378 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.141069 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2714" />
+              <path
+                 d="m 62.999121,46.350167 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2716" />
+              <path
+                 d="m 63.251089,47.261002 v -0.910835 h 0.151669 v 0.198964 q 0.06524,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2718" />
+              <path
+                 d="m 64.252436,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.06524,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2720" />
+              <path
+                 d="M 65.509013,47.261002 V 46.476558 H 65.25623 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239454 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2722" />
+              <path
+                 d="m 66.255131,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.06524,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.151669 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2724" />
+              <path
+                 d="m 67.86479,47.056329 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2726" />
+            </g>
+            <g
+               aria-label="0"
+               id="text334"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,45.957945 q 0.216088,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685777 q -0.04159,-0.07583 -0.09051,-0.101928 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.151669 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2729" />
+            </g>
+            <g
+               aria-label="7m9s"
+               id="text336"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.428121,47.261002 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110898 0.121499,-0.17124 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 H 84.30173 v -0.152485 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.21935 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2732" />
+              <path
+                 d="m 85.227242,47.261002 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03832,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525953 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2734" />
+              <path
+                 d="m 86.933937,46.589088 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134545,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179395 0.114976,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183472 -0.377544,0.183472 -0.128022,0 -0.248706,-0.03833 v -0.152486 q 0.135361,0.0636 0.255229,0.0636 0.16961,0 0.262569,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.171241,0.0742 0.114975,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2736" />
+              <path
+                 d="m 87.309035,47.212891 v -0.160639 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2738" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-etcd-1"
+               id="text338"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,49.431999 V 48.723391 H 0.13617675 v -0.126392 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08644 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.05871 h 0.36123534 v 0.126392 H 0.49007323 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2741" />
+              <path
+                 d="m 1.5028369,49.457278 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,49.184109 1.07229,48.976174 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2743" />
+              <path
+                 d="m 2.5041846,49.457278 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2745" />
+              <path
+                 d="m 3.1891456,48.982697 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2747" />
+              <path
+                 d="m 4.1725537,49.431999 v -1.316103 h 0.1516699 v 0.826845 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,48.942741 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2749" />
+              <path
+                 d="m 5.8825096,48.521164 v 0.910835 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05627 -0.1793945,0.05627 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07584 0.1524853,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2751" />
+              <path
+                 d="m 6.2747317,48.725837 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204672 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2753" />
+              <path
+                 d="m 7.8933595,49.371657 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,48.888108 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2755" />
+              <path
+                 d="m 8.2146387,49.431999 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05627 0.2046729,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2757" />
+              <path
+                 d="m 9.1385204,49.431999 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2759" />
+              <path
+                 d="m 10.897402,49.371657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2761" />
+              <path
+                 d="m 11.902827,49.395305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2763" />
+              <path
+                 d="m 12.900098,49.371657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2765" />
+              <path
+                 d="m 13.154512,49.383889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2767" />
+              <path
+                 d="m 14.20397,48.982697 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2769" />
+              <path
+                 d="m 15.904141,49.371657 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2771" />
+              <path
+                 d="m 16.909565,49.395305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2773" />
+              <path
+                 d="m 17.915807,49.405905 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2775" />
+              <path
+                 d="m 18.75896,49.227326 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161456,-0.196518 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 H 18.75896 Z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2777" />
+              <path
+                 d="m 19.210709,48.982697 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2779" />
+              <path
+                 d="m 20.490117,49.305608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 h -0.765688 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2781" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text340"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,49.305608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 H 53.2593 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2784" />
+              <path
+                 d="m 54.283479,49.470324 h -0.149223 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2786" />
+              <path
+                 d="m 55.571858,49.305608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 v 0.126391 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2788" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text342"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.408217,48.894631 v 0.537368 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591186 h -0.195703 l -0.335142,-0.537368 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.14107 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2791" />
+              <path
+                 d="m 62.999121,48.521164 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07584 0.152485,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2793" />
+              <path
+                 d="m 63.251089,49.431999 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2795" />
+              <path
+                 d="m 64.252436,49.431999 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2797" />
+              <path
+                 d="M 65.509013,49.431999 V 48.647556 H 65.25623 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2799" />
+              <path
+                 d="m 66.255131,49.431999 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2801" />
+              <path
+                 d="m 67.86479,49.227326 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.1533 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2803" />
+            </g>
+            <g
+               aria-label="0"
+               id="text344"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,48.128943 q 0.216088,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247076,0.941005 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2806" />
+            </g>
+            <g
+               aria-label="7m9s"
+               id="text346"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.428121,49.431999 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 H 84.30173 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.21935 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114976 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2809" />
+              <path
+                 d="m 85.227242,49.431999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03832,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2811" />
+              <path
+                 d="m 86.933937,48.760085 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134545,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114976,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183471 -0.377544,0.183471 -0.128022,0 -0.248706,-0.03833 v -0.152485 q 0.135361,0.0636 0.255229,0.0636 0.16961,0 0.262569,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.0367 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.07421 0.171241,0.07421 0.114975,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2813" />
+              <path
+                 d="m 87.309035,49.383889 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2815" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-etcd-2"
+               id="text348"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,51.603001 V 50.894392 H 0.13617675 v -0.126391 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266645 0.0407715,-0.08644 0.12557617,-0.141885 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205489 v 0.05871 h 0.36123534 v 0.126391 H 0.49007323 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2818" />
+              <path
+                 d="m 1.5028369,51.628279 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,51.35511 1.07229,51.147175 q 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2820" />
+              <path
+                 d="m 2.5041846,51.628279 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2822" />
+              <path
+                 d="m 3.1891456,51.153699 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2824" />
+              <path
+                 d="m 4.1725537,51.603001 v -1.316104 h 0.1516699 v 0.826846 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,51.113743 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2826" />
+              <path
+                 d="m 5.8825096,50.692166 v 0.910835 H 5.7308397 V 51.40322 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2828" />
+              <path
+                 d="m 6.2747317,50.896839 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316104 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2830" />
+              <path
+                 d="m 7.8933595,51.542659 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2832" />
+              <path
+                 d="m 8.2146387,51.603001 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2834" />
+              <path
+                 d="m 9.1385204,51.603001 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 v 0.508828 H 9.7460155 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2836" />
+              <path
+                 d="m 10.897402,51.542659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2838" />
+              <path
+                 d="m 11.902827,51.566306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2840" />
+              <path
+                 d="m 12.900098,51.542659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2842" />
+              <path
+                 d="m 13.154512,51.55489 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2844" />
+              <path
+                 d="m 14.20397,51.153699 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2846" />
+              <path
+                 d="m 15.904141,51.542659 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2848" />
+              <path
+                 d="m 16.909565,51.566306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2850" />
+              <path
+                 d="m 17.915807,51.576907 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242182,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2852" />
+              <path
+                 d="m 18.75896,51.398328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161456,-0.196519 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 H 18.75896 Z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2854" />
+              <path
+                 d="m 19.210709,51.153699 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2856" />
+              <path
+                 d="m 20.91414,51.603001 h -0.765688 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08643,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115792,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181026,0.03262 0.08317,0.0318 0.123129,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194887,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2858" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text350"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,51.476609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136993 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 H 53.2593 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2861" />
+              <path
+                 d="m 54.283479,51.641326 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2863" />
+              <path
+                 d="m 55.571858,51.476609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136993 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304156 v 0.126392 h -0.765689 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2865" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text352"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.408217,51.065632 v 0.537369 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591187 h -0.195703 l -0.335142,-0.537369 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.141069 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2868" />
+              <path
+                 d="m 62.999121,50.692166 v 0.910835 h -0.15167 V 51.40322 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2870" />
+              <path
+                 d="m 63.251089,51.603001 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2872" />
+              <path
+                 d="m 64.252436,51.603001 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2874" />
+              <path
+                 d="M 65.509013,51.603001 V 50.818557 H 65.25623 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2876" />
+              <path
+                 d="m 66.255131,51.603001 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.151669 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2878" />
+              <path
+                 d="m 67.86479,51.398328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191625 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 V 51.74407 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2880" />
+            </g>
+            <g
+               aria-label="0"
+               id="text354"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,50.299944 q 0.216088,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101929,0.02935 0.154932,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2883" />
+            </g>
+            <g
+               aria-label="6m59s"
+               id="text356"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.406105,51.009368 q 0.05871,-0.08725 0.145146,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186734,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114975,0.132915 -0.303339,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109268,-0.185918 -0.109268,-0.472133 0,-0.316387 0.139439,-0.499859 0.139438,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135362,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.123129,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165533,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2886" />
+              <path
+                 d="m 85.227242,51.603001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03832,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2888" />
+              <path
+                 d="m 86.323995,50.944949 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167978,0.152485 -0.108453,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.105191,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2890" />
+              <path
+                 d="m 87.935285,50.931087 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187549,-0.0473 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114975,-0.31231 0.115791,-0.13373 0.304156,-0.13373 0.221797,0 0.331064,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183472 -0.377544,0.183472 -0.128023,0 -0.248706,-0.03833 v -0.152486 q 0.135361,0.0636 0.255229,0.0636 0.16961,0 0.262569,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2892" />
+              <path
+                 d="m 88.310382,51.55489 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2894" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-kubeadm-tasks-gzrnm"
+               id="text358"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,53.773998 V 53.06539 H 0.13617675 v -0.126392 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08644 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.05871 H 0.85130857 V 53.06539 H 0.49007323 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2897" />
+              <path
+                 d="m 1.5028369,53.799277 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,53.526108 1.07229,53.318173 q 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2899" />
+              <path
+                 d="m 2.5041846,53.799277 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2901" />
+              <path
+                 d="m 3.1891456,53.324697 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2903" />
+              <path
+                 d="M 4.1725537,53.773998 V 52.457895 H 4.3242236 V 53.28474 L 4.7621094,52.863163 H 4.9643359 L 4.5272656,53.28474 4.9757519,53.773998 H 4.767002 L 4.3242236,53.28474 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2905" />
+              <path
+                 d="m 5.8825096,52.863163 v 0.910835 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07584 0.1524853,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2907" />
+              <path
+                 d="m 6.2747317,53.067836 q 0.070127,-0.11416 0.1671631,-0.172055 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204672 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2909" />
+              <path
+                 d="m 7.8933595,53.713656 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,53.230107 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2911" />
+              <path
+                 d="m 8.2146387,53.773998 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05627 0.2046729,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207934 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2913" />
+              <path
+                 d="m 9.1385204,53.773998 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2915" />
+              <path
+                 d="m 10.897402,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2917" />
+              <path
+                 d="m 11.902827,53.737304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 V 53.06539 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2919" />
+              <path
+                 d="m 12.900098,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2921" />
+              <path
+                 d="m 13.154512,53.725888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2923" />
+              <path
+                 d="m 14.20397,53.324697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2925" />
+              <path
+                 d="m 15.187378,53.773998 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 15.339048,53.28474 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2927" />
+              <path
+                 d="m 16.897334,52.863163 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152485,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2929" />
+              <path
+                 d="m 17.289557,53.067836 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.151669,0.0212 0.137808,0 0.231583,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2931" />
+              <path
+                 d="m 18.908183,53.713656 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2933" />
+              <path
+                 d="m 19.750523,53.569325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2935" />
+              <path
+                 d="m 20.761655,53.569325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2937" />
+              <path
+                 d="m 21.086197,53.773998 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03832,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100297,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2939" />
+              <path
+                 d="m 22.21475,53.324697 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2941" />
+              <path
+                 d="m 23.918999,53.737304 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227504 v -0.126392 h 0.227504 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2943" />
+              <path
+                 d="m 24.757262,53.569325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161456,-0.196518 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2945" />
+              <path
+                 d="m 25.170684,53.725888 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172872,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08643,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2947" />
+              <path
+                 d="m 26.202203,53.773998 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 26.353873,53.28474 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2949" />
+              <path
+                 d="m 27.173379,53.725888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2951" />
+              <path
+                 d="m 28.222838,53.324697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2953" />
+              <path
+                 d="m 29.773784,53.569325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149223,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335142,-0.08481 v -0.1533 q 0.06442,0.04403 0.158194,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2955" />
+              <path
+                 d="M 30.148882,53.773998 V 53.63456 l 0.55857,-0.645005 h -0.545523 v -0.126392 h 0.746118 v 0.126392 l -0.562646,0.645005 h 0.581401 v 0.139438 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2957" />
+              <path
+                 d="m 31.245634,53.773998 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2959" />
+              <path
+                 d="m 32.169517,53.773998 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2961" />
+              <path
+                 d="m 33.102367,53.773998 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2963" />
+            </g>
+            <g
+               aria-label="0/1"
+               id="text360"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.606673,52.470942 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2966" />
+              <path
+                 d="m 54.283479,53.812323 h -0.149223 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2968" />
+              <path
+                 d="m 55.571858,53.647607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 52.70497 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 v 0.126391 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2970" />
+            </g>
+            <g
+               aria-label="Completed"
+               id="text362"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 62.009189,53.759321 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236475 -0.06931,-0.157378 -0.06931,-0.355527 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260937,-0.07583 -0.09785,0 -0.179395,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130469 0.131284,0.195703 0.07991,0.06442 0.176949,0.06442 0.128838,0 0.260937,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2973" />
+              <path
+                 d="m 62.624839,53.799277 q -0.195704,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2975" />
+              <path
+                 d="m 63.182592,53.773998 v -0.910835 h 0.132916 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2977" />
+              <path
+                 d="m 64.39269,53.067836 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2979" />
+              <path
+                 d="m 65.498413,53.773998 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2981" />
+              <path
+                 d="m 67.012666,53.713656 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2983" />
+              <path
+                 d="m 68.018091,53.737304 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2985" />
+              <path
+                 d="m 69.015361,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2987" />
+              <path
+                 d="m 69.867485,53.569325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2989" />
+            </g>
+            <g
+               aria-label="0"
+               id="text364"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,52.470942 q 0.216088,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247076,0.941005 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2992" />
+            </g>
+            <g
+               aria-label="14s"
+               id="text366"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.631163,53.647607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 52.70497 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 v 0.126391 H 84.3213 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2995" />
+              <path
+                 d="m 85.745856,53.773998 v -0.353896 h -0.537368 v -0.127207 l 0.537368,-0.784444 h 0.152485 v 0.784444 h 0.234028 v 0.127207 h -0.234028 v 0.353896 z m 0,-0.481103 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2997" />
+              <path
+                 d="m 86.307687,53.725888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2999" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-scheduler-7976d95897-69shs"
+               id="text368"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,55.945 V 55.236391 H 0.13617675 V 55.11 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266645 0.0407715,-0.08644 0.12557617,-0.141885 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144332 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 V 55.11 h 0.36123534 v 0.126391 H 0.49007323 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3002" />
+              <path
+                 d="m 1.5028369,55.970278 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,55.697109 1.07229,55.489175 q 0,-0.207935 0.1174219,-0.344112 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344112 0,0.207934 -0.1174218,0.344926 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3004" />
+              <path
+                 d="m 2.5041846,55.970278 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344926 0,-0.207935 0.1174219,-0.344112 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344112 0,0.207934 -0.1174219,0.344926 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3006" />
+              <path
+                 d="m 3.1891456,55.495698 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3008" />
+              <path
+                 d="m 4.1725537,55.945 v -1.316104 h 0.1516699 v 0.826846 L 4.7621094,55.034165 H 4.9643359 L 4.5272656,55.455742 4.9757519,55.945 H 4.767002 L 4.3242236,55.455742 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3010" />
+              <path
+                 d="M 5.8825096,55.034165 V 55.945 H 5.7308397 v -0.199781 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05627 -0.1793945,0.05627 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3012" />
+              <path
+                 d="m 6.2747317,55.238838 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123946 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316104 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3014" />
+              <path
+                 d="m 7.8933595,55.884658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3016" />
+              <path
+                 d="m 8.2146387,55.945 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092144,-0.05627 0.2046729,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3018" />
+              <path
+                 d="m 9.1385204,55.945 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 V 55.945 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07584 -0.1508545,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3020" />
+              <path
+                 d="m 10.897402,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3022" />
+              <path
+                 d="m 11.902827,55.908305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 55.236391 H 11.093105 V 55.11 h 0.227505 v -0.366944 h 0.15167 V 55.11 h 0.405269 v 0.126391 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3024" />
+              <path
+                 d="m 12.900098,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3026" />
+              <path
+                 d="M 13.154512,55.896889 V 55.73625 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3028" />
+              <path
+                 d="m 14.20397,55.495698 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3030" />
+              <path
+                 d="M 15.157207,55.896889 V 55.73625 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08643,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3032" />
+              <path
+                 d="m 16.914458,55.918906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3034" />
+              <path
+                 d="m 17.149303,55.945 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.199781 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3036" />
+              <path
+                 d="m 18.908183,55.884658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3038" />
+              <path
+                 d="m 19.760308,55.740327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152486 V 55.945 h -0.152486 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3040" />
+              <path
+                 d="M 20.902724,55.034165 V 55.945 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179394,0.05627 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3042" />
+              <path
+                 d="m 21.399322,55.945 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3044" />
+              <path
+                 d="m 22.913574,55.884658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3046" />
+              <path
+                 d="m 23.234854,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159008,0.200596 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3048" />
+              <path
+                 d="m 24.217447,55.495698 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3050" />
+              <path
+                 d="m 25.293813,55.945 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110898 0.121499,-0.17124 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.656421 v -0.152485 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3052" />
+              <path
+                 d="m 26.798282,55.273086 q -0.05871,0.08725 -0.145962,0.1427 -0.08643,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114976,-0.312309 0.115791,-0.133731 0.304155,-0.133731 0.221797,0 0.331065,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139439,0.500674 -0.139438,0.183472 -0.377544,0.183472 -0.128022,0 -0.248706,-0.03833 v -0.152486 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z M 26.50065,54.768335 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3054" />
+              <path
+                 d="m 27.296509,55.945 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110898 0.121499,-0.17124 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.656421 v -0.152485 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3056" />
+              <path
+                 d="m 28.27584,55.351367 q 0.05871,-0.08725 0.145147,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114975,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109267,-0.185918 -0.109267,-0.472133 0,-0.316387 0.139438,-0.499859 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.16961,0 -0.262569,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111713 0.03588,-0.07584 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170424,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3058" />
+              <path
+                 d="m 29.773784,55.740327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 V 55.945 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3060" />
+              <path
+                 d="m 30.803672,55.273086 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114975,-0.312309 0.115791,-0.133731 0.304155,-0.133731 0.221797,0 0.331065,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139439,0.500674 -0.139438,0.183472 -0.377544,0.183472 -0.128022,0 -0.248706,-0.03833 v -0.152486 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z M 30.50604,54.768335 q -0.06116,0 -0.123129,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3062" />
+              <path
+                 d="m 31.195077,55.286948 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167978,0.152485 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165533 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.105191,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3064" />
+              <path
+                 d="m 32.417407,55.262485 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05627,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298448,0.100298 -0.19978,0 -0.299262,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.0473,0.05463 -0.0473,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158194 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05627 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.0848 -0.118238,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3066" />
+              <path
+                 d="m 33.807714,55.273086 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187548,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114976,-0.312309 0.115791,-0.133731 0.304155,-0.133731 0.221797,0 0.331065,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139439,0.500674 -0.139438,0.183472 -0.377544,0.183472 -0.128022,0 -0.248706,-0.03833 v -0.152486 q 0.135361,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114975,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3068" />
+              <path
+                 d="m 34.305944,55.945 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110898 0.121499,-0.17124 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.65642 v -0.152485 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.08481,0.119052 q -0.08154,0.114976 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3070" />
+              <path
+                 d="m 35.232271,55.495698 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3072" />
+              <path
+                 d="m 36.286621,55.351367 q 0.05871,-0.08725 0.145146,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186734,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114975,0.132915 -0.303339,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109268,-0.185918 -0.109268,-0.472133 0,-0.316387 0.139439,-0.499859 0.139438,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135362,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.123129,-0.03588 0.06197,-0.03669 0.09704,-0.111713 0.03588,-0.07584 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165533,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3074" />
+              <path
+                 d="m 37.813104,55.273086 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114976,-0.312309 0.115791,-0.133731 0.304155,-0.133731 0.221797,0 0.331065,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139439,0.500674 -0.139438,0.183472 -0.377544,0.183472 -0.128022,0 -0.248706,-0.03833 v -0.152486 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3076" />
+              <path
+                 d="M 38.188204,55.896889 V 55.73625 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3078" />
+              <path
+                 d="m 39.17895,55.945 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.14107,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.199781 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3080" />
+              <path
+                 d="M 40.190898,55.896889 V 55.73625 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3082" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text370"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,55.818608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136993 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 V 55.945 H 53.2593 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3085" />
+              <path
+                 d="m 54.283479,55.983325 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3087" />
+              <path
+                 d="m 55.571858,55.818608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136993 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304156 V 55.945 h -0.765689 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3089" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text372"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 61.408217,55.407632 V 55.945 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 L 62.103779,55.945 h -0.195703 l -0.335142,-0.537368 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.141069 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3092" />
+              <path
+                 d="M 62.999121,55.034165 V 55.945 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3094" />
+              <path
+                 d="m 63.251089,55.945 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3096" />
+              <path
+                 d="m 64.252436,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3098" />
+              <path
+                 d="M 65.509013,55.945 V 55.160556 H 65.25623 v -0.126391 h 0.404453 v 0.784443 h 0.253599 V 55.945 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3100" />
+              <path
+                 d="m 66.255131,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 55.945 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3102" />
+              <path
+                 d="m 67.86479,55.740327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3104" />
+            </g>
+            <g
+               aria-label="0"
+               id="text374"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,54.641943 q 0.216088,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490074 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490074 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101929,0.02935 0.154932,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3107" />
+            </g>
+            <g
+               aria-label="40m"
+               id="text376"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 84.744508,55.945 V 55.591103 H 84.20714 v -0.127207 l 0.537368,-0.784443 h 0.152485 v 0.784443 h 0.234029 v 0.127207 H 84.896993 V 55.945 Z m 0,-0.481104 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3110" />
+              <path
+                 d="m 85.670021,54.641943 q 0.216089,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490074 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490074 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247075,0.941006 0.437885,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101928,0.02935 0.154932,0 0.220166,-0.172871 0.06524,-0.173686 0.06524,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3112" />
+              <path
+                 d="m 86.22859,55.945 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 55.945 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 V 55.945 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141884 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3114" />
+            </g>
+            <g
+               aria-label="foo-kubernetes-scheduler-7976d95897-8fc8c"
+               id="text378"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,58.116001 V 57.407393 H 0.13617675 v -0.126392 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08644 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.05871 h 0.36123534 v 0.126392 H 0.49007323 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3117" />
+              <path
+                 d="m 1.5028369,58.141279 q -0.1957031,0 -0.313125,-0.136176 Q 1.07229,57.868111 1.07229,57.660176 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3119" />
+              <path
+                 d="m 2.5041846,58.141279 q -0.1957032,0 -0.313125,-0.136176 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3121" />
+              <path
+                 d="m 3.1891456,57.666699 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3123" />
+              <path
+                 d="m 4.1725537,58.116001 v -1.316103 h 0.1516699 v 0.826845 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484863,0.489258 H 4.767002 L 4.3242236,57.626743 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3125" />
+              <path
+                 d="m 5.8825096,57.205166 v 0.910835 H 5.7308397 v -0.19978 q -0.073389,0.112529 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092143,-0.07583 0.1524853,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3127" />
+              <path
+                 d="m 6.2747317,57.409839 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 6.1230618 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3129" />
+              <path
+                 d="m 7.8933595,58.055659 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,57.57211 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3131" />
+              <path
+                 d="m 8.2146387,58.116001 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05627 0.2046729,-0.05627 0.082358,0 0.1647168,0.02528 v 0.328618 H 8.7520069 V 57.32585 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3133" />
+              <path
+                 d="m 9.1385204,58.116001 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 9.7460155 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3135" />
+              <path
+                 d="m 10.897402,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 10.291538,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3137" />
+              <path
+                 d="m 11.902827,58.079307 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 H 11.47228 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3139" />
+              <path
+                 d="m 12.900098,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 12.294234,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3141" />
+              <path
+                 d="m 13.154512,58.067891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3143" />
+              <path
+                 d="m 14.20397,57.666699 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3145" />
+              <path
+                 d="m 15.157207,58.067891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08643,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3147" />
+              <path
+                 d="m 16.914458,58.089907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3149" />
+              <path
+                 d="m 17.149303,58.116001 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3151" />
+              <path
+                 d="m 18.908183,58.055659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 18.302319,57.57211 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3153" />
+              <path
+                 d="m 19.760308,57.911328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152486 v 1.316103 h -0.152486 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3155" />
+              <path
+                 d="m 20.902724,57.205166 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3157" />
+              <path
+                 d="m 21.399322,58.116001 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3159" />
+              <path
+                 d="m 22.913574,58.055659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 22.307709,57.57211 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3161" />
+              <path
+                 d="m 23.234854,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 H 23.772222 V 57.32585 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3163" />
+              <path
+                 d="m 24.217447,57.666699 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3165" />
+              <path
+                 d="m 25.293813,58.116001 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3167" />
+              <path
+                 d="m 26.798282,57.444087 q -0.05871,0.08725 -0.145962,0.1427 -0.08643,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114976,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331065,0.185917 0.110083,0.185103 0.110083,0.471319 0,0.316387 -0.139439,0.500674 -0.139438,0.183471 -0.377544,0.183471 -0.128022,0 -0.248706,-0.03833 v -0.152485 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z M 26.50065,56.939336 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3169" />
+              <path
+                 d="m 27.296509,58.116001 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3171" />
+              <path
+                 d="m 28.27584,57.522368 q 0.05871,-0.08725 0.145147,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114975,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109267,-0.185918 -0.109267,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.16961,0 -0.262569,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170424,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123946 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3173" />
+              <path
+                 d="m 29.773784,57.911328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3175" />
+              <path
+                 d="m 30.803672,57.444087 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114975,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331065,0.185917 0.110083,0.185103 0.110083,0.471319 0,0.316387 -0.139439,0.500674 -0.139438,0.183471 -0.377544,0.183471 -0.128022,0 -0.248706,-0.03833 v -0.152485 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z M 30.50604,56.939336 q -0.06116,0 -0.123129,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3177" />
+              <path
+                 d="m 31.195077,57.457949 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167978,0.152486 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.105191,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3179" />
+              <path
+                 d="m 32.417407,57.433486 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05627,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298448,0.100298 -0.19978,0 -0.299262,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393038 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.0473,0.05463 -0.0473,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.0848 -0.118238,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3181" />
+              <path
+                 d="m 33.807714,57.444087 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187548,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114976,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331065,0.185917 0.110083,0.185103 0.110083,0.471319 0,0.316387 -0.139439,0.500674 -0.139438,0.183471 -0.377544,0.183471 -0.128022,0 -0.248706,-0.03833 v -0.152485 q 0.135361,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114975,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3183" />
+              <path
+                 d="m 34.305944,58.116001 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.65642 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145147,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.08481,0.119053 q -0.08154,0.114975 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3185" />
+              <path
+                 d="m 35.232271,57.666699 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3187" />
+              <path
+                 d="m 36.422798,57.433486 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252784,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.265831,-0.393038 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.0848 -0.118238,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3189" />
+              <path
+                 d="m 37.388265,58.116001 v -0.708608 h -0.202226 v -0.126392 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126392 h -0.361235 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3191" />
+              <path
+                 d="m 38.944108,58.089907 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106005,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3193" />
+              <path
+                 d="m 39.426841,57.433486 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.19978,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393038 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3195" />
+              <path
+                 d="m 40.946801,58.089907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3197" />
+            </g>
+            <g
+               aria-label="1/1"
+               id="text380"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.569163,57.98961 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 H 53.2593 V 57.98961 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3200" />
+              <path
+                 d="m 54.283479,58.154326 h -0.149223 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3202" />
+              <path
+                 d="m 55.571858,57.98961 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 v 0.126391 H 55.261995 V 57.98961 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3204" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text382"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.408217,57.578633 v 0.537368 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591186 h -0.195703 l -0.335142,-0.537368 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.14107 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3207" />
+              <path
+                 d="m 62.999121,57.205166 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3209" />
+              <path
+                 d="m 63.251089,58.116001 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3211" />
+              <path
+                 d="m 64.252436,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3213" />
+              <path
+                 d="M 65.509013,58.116001 V 57.331558 H 65.25623 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3215" />
+              <path
+                 d="m 66.255131,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3217" />
+              <path
+                 d="m 67.86479,57.911328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 V 58.25707 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3219" />
+            </g>
+            <g
+               aria-label="1"
+               id="text384"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.609168,57.98961 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 H 73.299305 V 57.98961 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3222" />
+            </g>
+            <g
+               aria-label="40m"
+               id="text386"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 84.744508,58.116001 V 57.762105 H 84.20714 v -0.127207 l 0.537368,-0.784444 h 0.152485 v 0.784444 h 0.234029 v 0.127207 h -0.234029 v 0.353896 z m 0,-0.481103 v -0.554493 l -0.375913,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3225" />
+              <path
+                 d="m 85.670021,56.812945 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3227" />
+              <path
+                 d="m 86.22859,58.116001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3229" />
+            </g>
+            <g
+               aria-label="foo-ltsp-6cd69fbffd-kmhz6"
+               id="text388"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,60.286999 V 59.57839 H 0.13617675 v -0.126391 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266645 0.0407715,-0.08644 0.12557617,-0.141885 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.05871 H 0.85130857 V 59.57839 H 0.49007323 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3232" />
+              <path
+                 d="m 1.5028369,60.312277 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,60.039108 1.07229,59.831174 q 0,-0.207935 0.1174219,-0.344112 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344112 0,0.207934 -0.1174218,0.344926 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3234" />
+              <path
+                 d="m 2.5041846,60.312277 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344926 0,-0.207935 0.1174219,-0.344112 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344112 0,0.207934 -0.1174219,0.344926 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3236" />
+              <path
+                 d="m 3.1891456,59.837697 v -0.126392 h 0.6327735 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3238" />
+              <path
+                 d="M 4.3764111,60.286999 V 59.098102 H 4.1040576 v -0.127207 h 0.4240235 v 1.189712 H 4.812666 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3240" />
+              <path
+                 d="m 5.8947411,60.250304 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.174502,-0.03669 -0.079097,-0.03669 -0.1198681,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 59.57839 H 5.0850194 v -0.126391 h 0.2275049 v -0.366944 h 0.1516699 v 0.366944 H 5.8694628 V 59.57839 H 5.4641942 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069312,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3242" />
+              <path
+                 d="m 6.1450784,60.238888 v -0.160639 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 l -0.052188,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122314 -0.044849,-0.05545 -0.044849,-0.135362 0,-0.112529 0.086436,-0.185102 0.087251,-0.07257 0.2821386,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137807 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02935 0.1516699,0.06768 l 0.1027441,0.03751 q 0.1410694,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07584 -0.290293,0.07584 -0.1745019,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3244" />
+              <path
+                 d="m 7.2760792,59.580837 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141602,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158194 -0.061157,0.282954 -0.060342,0.123946 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353896 H 7.1244093 v -1.264731 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.15167,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166065,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3246" />
+              <path
+                 d="m 8.1958838,59.837697 v -0.126392 h 0.6327734 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3248" />
+              <path
+                 d="m 9.2502343,59.693366 q 0.058711,-0.08725 0.1451465,-0.141885 0.087251,-0.05545 0.1916259,-0.05545 0.098667,0 0.1867334,0.04811 0.088882,0.04811 0.1353614,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.1157911,0.313941 -0.1149755,0.132915 -0.3033398,0.132915 -0.2217969,0 -0.3318799,-0.185103 -0.1092675,-0.185918 -0.1092675,-0.472133 0,-0.316387 0.1394384,-0.499859 0.1394385,-0.184287 0.377544,-0.184287 0.1280224,0 0.248706,0.03751 v 0.153301 q -0.1353613,-0.06442 -0.2552295,-0.06442 -0.1696093,0 -0.2625683,0.155747 -0.092959,0.155747 -0.092959,0.394668 z m 0.2976318,0.505566 q 0.061157,0 0.1231299,-0.03588 0.061973,-0.03669 0.097036,-0.111713 0.035879,-0.07584 0.035879,-0.164717 0,-0.115791 -0.060342,-0.189995 -0.059526,-0.0742 -0.1704248,-0.0742 -0.1149755,0 -0.1891796,0.08643 -0.073389,0.08562 -0.073389,0.20875 0,0.123945 0.071758,0.203042 0.072573,0.07828 0.1655322,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3250" />
+              <path
+                 d="m 10.906372,60.260905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106005,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3252" />
+              <path
+                 d="m 11.749526,60.082326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3254" />
+              <path
+                 d="m 12.254278,59.693366 q 0.05871,-0.08725 0.145146,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186734,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109268,-0.185918 -0.109268,-0.472133 0,-0.316387 0.139439,-0.499859 0.139438,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135362,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111713 0.03588,-0.07584 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08643 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165533,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3256" />
+              <path
+                 d="m 13.780762,59.615085 q -0.05871,0.08725 -0.145962,0.1427 -0.08643,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114976,-0.312309 0.115791,-0.133731 0.304155,-0.133731 0.221797,0 0.331065,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139439,0.500674 -0.139438,0.183472 -0.377544,0.183472 -0.128022,0 -0.248706,-0.03833 v -0.152486 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z M 13.48313,59.110334 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164716 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3258" />
+              <path
+                 d="M 14.357271,60.286999 V 59.57839 h -0.202227 v -0.126391 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126391 h -0.361235 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3260" />
+              <path
+                 d="m 15.286861,59.580837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158194 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.151669,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3262" />
+              <path
+                 d="M 16.359966,60.286999 V 59.57839 h -0.202227 v -0.126391 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125577,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106005,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126391 h -0.361235 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3264" />
+              <path
+                 d="M 17.361314,60.286999 V 59.57839 h -0.202226 v -0.126391 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361236 v 0.126391 h -0.361236 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3266" />
+              <path
+                 d="m 18.75896,60.082326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161456,-0.196519 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 H 18.75896 Z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3268" />
+              <path
+                 d="m 19.210709,59.837697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3270" />
+              <path
+                 d="m 20.194116,60.286999 v -1.316104 h 0.15167 v 0.826846 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3272" />
+              <path
+                 d="m 21.086197,60.286999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03832,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100297,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141884 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3274" />
+              <path
+                 d="m 22.156039,60.286999 v -1.316104 h 0.15167 v 0.604234 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.14107,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.199781 v 0.508828 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3276" />
+              <path
+                 d="M 23.139448,60.286999 V 60.14756 l 0.55857,-0.645005 h -0.545523 v -0.126391 h 0.746118 v 0.126391 l -0.562646,0.645005 h 0.581401 v 0.139439 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3278" />
+              <path
+                 d="m 24.27045,59.693366 q 0.05871,-0.08725 0.145147,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109267,-0.185918 -0.109267,-0.472133 0,-0.316387 0.139438,-0.499859 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.16961,0 -0.262569,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111713 0.03588,-0.07584 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114975,0 -0.189179,0.08643 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3280" />
+            </g>
+            <g
+               aria-label="3/3"
+               id="text390"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.224236,60.264167 v -0.159824 q 0.186734,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07584 -0.305786,-0.07584 h -0.08399 v -0.126391 h 0.116607 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159008 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289477,0.07583 v -0.144331 q 0.154931,-0.0579 0.283769,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.171241,0.135361 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.132099,0.293555 -0.131285,0.115791 -0.340035,0.115791 -0.06034,0 -0.132099,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3283" />
+              <path
+                 d="m 54.283479,60.325324 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3285" />
+              <path
+                 d="m 55.226932,60.264167 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07584 -0.305786,-0.07584 h -0.08399 v -0.126391 h 0.116606 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159008 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134545,0 -0.289477,0.07583 v -0.144331 q 0.154932,-0.0579 0.283769,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.17124,0.135361 0.110083,0.03262 0.166347,0.07991 0.05627,0.04729 0.08481,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.1321,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3287" />
+            </g>
+            <g
+               aria-label="Running"
+               id="text392"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.408217,59.749631 v 0.537368 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591187 h -0.195703 l -0.335142,-0.537368 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.141069 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3290" />
+              <path
+                 d="m 62.999121,59.376164 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3292" />
+              <path
+                 d="m 63.251089,60.286999 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3294" />
+              <path
+                 d="m 64.252436,60.286999 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3296" />
+              <path
+                 d="M 65.509013,60.286999 V 59.502555 H 65.25623 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3298" />
+              <path
+                 d="m 66.255131,60.286999 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3300" />
+              <path
+                 d="m 67.86479,60.082326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3302" />
+            </g>
+            <g
+               aria-label="0"
+               id="text394"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,58.983942 q 0.216088,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490074 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490074 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3305" />
+            </g>
+            <g
+               aria-label="11m"
+               id="text396"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.631163,60.160607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 59.21797 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304156 v 0.126392 H 84.3213 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3308" />
+              <path
+                 d="m 85.632511,60.160607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 59.21797 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 h -0.765688 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3310" />
+              <path
+                 d="m 86.22859,60.286999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141884 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3312" />
+            </g>
+            <g
+               aria-label="foo-ltsp-token-create-czxmv"
+               id="text398"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,62.458 V 61.749392 H 0.13617675 V 61.623 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266646 0.0407715,-0.08644 0.12557617,-0.141884 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 V 61.623 h 0.36123534 v 0.126392 H 0.49007323 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3315" />
+              <path
+                 d="m 1.5028369,62.483279 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,62.21011 1.07229,62.002175 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3317" />
+              <path
+                 d="m 2.5041846,62.483279 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3319" />
+              <path
+                 d="m 3.1891456,62.008698 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3321" />
+              <path
+                 d="M 4.3764111,62.458 V 61.269104 H 4.1040576 v -0.127207 h 0.4240235 v 1.189712 H 4.812666 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3323" />
+              <path
+                 d="m 5.8947411,62.421306 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.174502,-0.0367 -0.079097,-0.03669 -0.1198681,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 61.749392 H 5.0850194 V 61.623 H 5.3125243 V 61.256057 H 5.4641942 V 61.623 h 0.4052686 v 0.126392 H 5.4641942 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069312,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3325" />
+              <path
+                 d="m 6.1450784,62.40989 v -0.16064 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.0367 -0.023648,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 l -0.052188,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122314 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.11253 0.086436,-0.185103 0.087251,-0.07257 0.2821386,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137808 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027441,0.03751 q 0.1410694,0.05137 0.1981494,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.091328,0.194888 -0.090513,0.07584 -0.290293,0.07584 -0.1745019,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3327" />
+              <path
+                 d="m 7.2760792,61.751838 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141602,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353897 H 7.1244093 v -1.264732 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.15167,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166065,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3329" />
+              <path
+                 d="m 8.1958838,62.008698 v -0.126391 h 0.6327734 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3331" />
+              <path
+                 d="m 9.9001317,62.421306 q -0.1068212,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.1745019,-0.0367 Q 9.3986425,62.40989 9.357871,62.338132 9.317915,62.266374 9.317915,62.116335 V 61.749392 H 9.0904101 V 61.623 H 9.317915 V 61.256057 H 9.4695849 V 61.623 h 0.4052685 v 0.126392 H 9.4695849 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069311,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3333" />
+              <path
+                 d="m 10.514966,62.483279 q -0.195704,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3335" />
+              <path
+                 d="m 11.181987,62.458 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 11.333657,61.968742 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3337" />
+              <path
+                 d="m 12.900098,62.397658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3339" />
+              <path
+                 d="m 13.143912,62.458 v -0.910835 h 0.151669 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 62.458 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3341" />
+              <path
+                 d="m 14.20397,62.008698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3343" />
+              <path
+                 d="m 15.913111,62.431906 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3345" />
+              <path
+                 d="m 16.22542,62.458 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3347" />
+              <path
+                 d="m 17.906837,62.397658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3349" />
+              <path
+                 d="m 18.749175,62.253327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.17858,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3351" />
+              <path
+                 d="m 19.913609,62.421306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 61.749392 H 19.103887 V 61.623 h 0.227505 v -0.366943 h 0.15167 V 61.623 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3353" />
+              <path
+                 d="m 20.910879,62.397658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324542,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3355" />
+              <path
+                 d="m 21.213404,62.008698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3357" />
+              <path
+                 d="m 22.922543,62.431906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3359" />
+              <path
+                 d="m 23.139448,62.458 v -0.139438 l 0.55857,-0.645005 h -0.545523 v -0.126392 h 0.746118 v 0.126392 l -0.562646,0.645005 h 0.581401 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3361" />
+              <path
+                 d="m 24.253326,62.458 h -0.175317 l 0.357974,-0.477026 -0.334327,-0.433809 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 L 24.619454,61.966296 24.995367,62.458 H 24.80048 l -0.277247,-0.362866 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3363" />
+              <path
+                 d="m 25.091587,62.458 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09378,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 V 62.458 h -0.132916 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 62.458 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3365" />
+              <path
+                 d="m 26.457432,62.458 -0.395483,-0.910835 h 0.166348 l 0.312309,0.72084 0.318833,-0.72084 h 0.15167 L 26.612364,62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3367" />
+            </g>
+            <g
+               aria-label="0/1"
+               id="text400"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.606673,61.154944 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3370" />
+              <path
+                 d="m 54.283479,62.496325 h -0.149223 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3372" />
+              <path
+                 d="m 55.571858,62.331609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 V 62.458 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3374" />
+            </g>
+            <g
+               aria-label="Completed"
+               id="text402"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 62.009189,62.443322 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236475 -0.06931,-0.157378 -0.06931,-0.355527 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260937,-0.07584 -0.09785,0 -0.179395,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130468 0.131284,0.195703 0.07991,0.06442 0.176949,0.06442 0.128838,0 0.260937,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3377" />
+              <path
+                 d="m 62.624839,62.483279 q -0.195704,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3379" />
+              <path
+                 d="m 63.182592,62.458 v -0.910835 h 0.132916 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 V 62.458 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 62.458 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3381" />
+              <path
+                 d="m 64.39269,61.751838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3383" />
+              <path
+                 d="m 65.498413,62.458 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3385" />
+              <path
+                 d="m 67.012666,62.397658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3387" />
+              <path
+                 d="m 68.018091,62.421306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 61.749392 H 67.208369 V 61.623 h 0.227505 v -0.366943 h 0.15167 V 61.623 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3389" />
+              <path
+                 d="m 69.015361,62.397658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3391" />
+              <path
+                 d="m 69.867485,62.253327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 V 61.141897 H 70.01997 V 62.458 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3393" />
+            </g>
+            <g
+               aria-label="0"
+               id="text404"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.646678,61.154944 q 0.216088,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247076,0.941005 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3396" />
+            </g>
+            <g
+               aria-label="6s"
+               id="text406"
+               class="n"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.406105,61.864367 q 0.05871,-0.08725 0.145146,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186734,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114975,0.132915 -0.303339,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139439,-0.499858 0.139438,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135362,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505567 q 0.06116,0 0.123129,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165533,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3399" />
+              <path
+                 d="m 85.306339,62.40989 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3401" />
+            </g>
+            <path
+               class="e"
+               d="M 0,62.959 H 1 V 65.13 H 0 Z"
+               id="path408" />
+            <g
+               id="text410"
+               class="f"
+               style="white-space:pre" />
+            <path
+               class="e"
+               d="m 1.002,62.959 h 5 v 2.171 h -5 z"
+               id="path412" />
+            <g
+               aria-label="kvaps"
+               id="text414"
+               class="g"
+               style="font-weight:700;white-space:pre">
+              <path
+                 d="M 1.1691631,64.628998 V 63.312894 H 1.320833 V 64.13974 L 1.7587187,63.718163 H 1.9609453 L 1.523875,64.13974 1.9723613,64.628998 h -0.20875 L 1.320833,64.13974 v 0.489258 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path3405" />
+              <path
+                 d="M 2.4257402,64.628998 2.0302568,63.718163 h 0.1663477 l 0.3123095,0.72084 0.318833,-0.72084 h 0.1516699 l -0.3987451,0.910835 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path3407" />
+              <path
+                 d="m 3.7296123,64.424325 q -0.069312,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.1614551,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524853 v 0.643374 q 0,0.164717 0.034248,0.267461 H 3.7581523 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path3409" />
+              <path
+                 d="m 4.2726886,63.922836 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054882,0.09867 0.091328,0.09867 0.091328,0.299262 0,0.158194 -0.061157,0.282954 -0.060342,0.123946 -0.161455,0.196519 -0.1011133,0.07176 -0.250337,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353896 H 4.1210187 v -1.264731 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path3411" />
+              <path
+                 d="m 5.1443828,64.580887 v -0.160639 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023647,-0.02609 -0.1174218,-0.06442 l -0.052188,-0.0212 -0.1051905,-0.04159 q -0.1696093,-0.06605 -0.2136425,-0.122314 -0.044849,-0.05545 -0.044849,-0.135362 0,-0.112529 0.086436,-0.185102 0.087251,-0.07257 0.2821386,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137808 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027442,0.03751 q 0.1410693,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07583 -0.2902929,0.07583 -0.174502,0 -0.3587891,-0.07339 z"
+                 style="font-weight:700;white-space:pre"
+                 id="path3413" />
+            </g>
+            <path
+               class="e"
+               d="m 6.012,62.959 h 1 v 2.171 h -1 z"
+               id="path416" />
+            <g
+               id="text418"
+               class="f"
+               style="white-space:pre" />
+            <path
+               class="h"
+               d="m 7.014,62.959 h 1 v 2.171 h -1 z"
+               id="path420" />
+            <g
+               aria-label=""
+               id="text422"
+               class="i"
+               style="white-space:pre;fill:#00d7ff">
+              <path
+                 d="m 7.0139999,63.059296 1.0258106,0.990747 -1.0258106,0.992378 z"
+                 style="white-space:pre;fill:#00d7ff"
+                 id="path3417" />
+            </g>
+            <path
+               class="h"
+               d="m 8.016,62.959 h 1 v 2.171 h -1 z"
+               id="path424" />
+            <g
+               id="text426"
+               class="j"
+               style="white-space:pre;fill:#eeeeee" />
+            <path
+               class="h"
+               d="m 9.018,62.959 h 1 v 2.171 h -1 z"
+               id="path428" />
+            <g
+               aria-label="~"
+               id="text430"
+               class="k"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 9.0636637,64.30038 v -0.01468 q 0,-0.106821 0.062788,-0.185103 0.063603,-0.0791 0.1704248,-0.0791 0.026909,0 0.052188,0.0057 0.026094,0.0049 0.058711,0.01794 0.032617,0.01223 0.097852,0.04893 l 0.098667,0.05463 q 0.090513,0.04974 0.1475927,0.04974 0.060342,0 0.088882,-0.04322 0.029356,-0.04403 0.029356,-0.0954 v -0.01305 h 0.1043749 v 0.01305 q 0,0.136177 -0.077466,0.201411 -0.07665,0.06442 -0.1630859,0.06442 -0.080728,0 -0.2136426,-0.07583 l -0.083174,-0.04811 q -0.09459,-0.05382 -0.1524853,-0.05382 -0.032617,0 -0.061157,0.01712 -0.027725,0.01712 -0.044849,0.05463 -0.017124,0.03751 -0.017124,0.06605 v 0.01468 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path3421" />
+            </g>
+            <path
+               class="h"
+               d="m 10.02,62.959 h 1 v 2.171 h -1 z"
+               id="path432" />
+            <g
+               aria-label="/"
+               id="text434"
+               class="j"
+               style="white-space:pre;fill:#eeeeee">
+              <path
+                 d="M 10.196133,64.667323 H 10.04691 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#eeeeee"
+                 id="path3424" />
+            </g>
+            <path
+               class="h"
+               d="m 11.022,62.959 h 8 v 2.171 h -8 z"
+               id="path436" />
+            <g
+               aria-label="kubefarm"
+               id="text438"
+               class="k"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 11.189163,64.628998 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 L 11.340833,64.13974 v 0.489258 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path3427" />
+              <path
+                 d="m 12.899119,63.718163 v 0.910835 H 12.74745 v -0.19978 q -0.07339,0.112529 -0.163086,0.168793 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path3429" />
+              <path
+                 d="m 13.291341,63.922836 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299262 0,0.158194 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path3431" />
+              <path
+                 d="m 14.909969,64.568656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path3433" />
+              <path
+                 d="m 15.365794,64.628998 v -0.708609 h -0.202226 v -0.126391 h 0.202226 v -0.0424 q 0,-0.180209 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 H 15.8787 v 0.126391 h -0.361236 v 0.708609 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path3435" />
+              <path
+                 d="m 16.753655,64.424325 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path3437" />
+              <path
+                 d="m 17.233944,64.628998 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path3439" />
+              <path
+                 d="m 18.08933,64.628998 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 H 18.468504 V 64.00764 q 0,-0.120683 -0.02365,-0.141884 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path3441" />
+            </g>
+            <path
+               class="h"
+               d="m 19.038,62.959 h 1 v 2.171 h -1 z"
+               id="path440" />
+            <g
+               aria-label="/"
+               id="text442"
+               class="j"
+               style="white-space:pre;fill:#eeeeee">
+              <path
+                 d="m 19.214133,64.667323 h -0.149224 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#eeeeee"
+                 id="path3444" />
+            </g>
+            <path
+               class="h"
+               d="m 20.04,62.959 h 8 v 2.171 h -8 z"
+               id="path444" />
+            <g
+               aria-label="examples"
+               id="text446"
+               class="k"
+               style="font-weight:700;white-space:pre;fill:#ffffff">
+              <path
+                 d="m 20.923927,64.568656 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path3447" />
+              <path
+                 d="m 21.26233,64.628998 h -0.175317 l 0.357973,-0.477027 -0.334326,-0.433808 h 0.194072 l 0.23729,0.305786 0.230767,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194888 l -0.277246,-0.362866 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path3449" />
+              <path
+                 d="m 22.767613,64.424325 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path3451" />
+              <path
+                 d="m 23.10194,64.628998 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 H 23.481114 V 64.00764 q 0,-0.120683 -0.02365,-0.141884 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path3453" />
+              <path
+                 d="m 24.312037,63.922836 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299262 0,0.158194 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path3455" />
+              <path
+                 d="m 25.41776,64.628998 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284584 v 0.126392 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path3457" />
+              <path
+                 d="m 26.932013,64.568656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path3459" />
+              <path
+                 d="m 27.186427,64.580887 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="font-weight:700;white-space:pre;fill:#ffffff"
+                 id="path3461" />
+            </g>
+            <path
+               class="h"
+               d="m 28.056,62.959 h 1 v 2.171 h -1 z"
+               id="path448" />
+            <g
+               id="text450"
+               class="j"
+               style="white-space:pre;fill:#eeeeee" />
+            <g
+               aria-label=""
+               id="text452"
+               class="l"
+               style="white-space:pre;fill:#005f87">
+              <path
+                 d="m 29.058001,63.059296 1.02581,0.990747 -1.02581,0.992378 z"
+                 style="white-space:pre;fill:#005f87"
+                 id="path3465" />
+            </g>
+            <g
+               aria-label="kubectl"
+               id="text454"
+               class="m"
+               style="white-space:pre;fill:#a8cc8c">
+              <path
+                 d="m 31.229163,64.628998 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 L 31.380833,64.13974 v 0.489258 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path3468" />
+              <path
+                 d="m 32.939119,63.718163 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163085,0.168793 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path3470" />
+              <path
+                 d="m 33.331341,63.922836 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299262 0,0.158194 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path3472" />
+              <path
+                 d="m 34.949969,64.568656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path3474" />
+              <path
+                 d="m 35.960286,64.602904 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07746,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path3476" />
+              <path
+                 d="m 36.956741,64.592303 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 63.920389 H 36.14702 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155748 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path3478" />
+              <path
+                 d="m 37.441107,64.628998 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#a8cc8c"
+                 id="path3480" />
+            </g>
+            <g
+               aria-label="annotate"
+               id="text456"
+               style="white-space:pre;fill:#6f7783">
+              <path
+                 d="m 39.802916,64.424325 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#6f7783"
+                 id="path3483" />
+              <path
+                 d="m 40.205738,64.628998 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#6f7783"
+                 id="path3485" />
+              <path
+                 d="m 41.207086,64.628998 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#6f7783"
+                 id="path3487" />
+              <path
+                 d="m 42.583531,64.654276 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344926 0,-0.207935 0.117421,-0.344112 0.117422,-0.136176 0.313125,-0.136176 0.194888,0 0.31231,0.136176 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#6f7783"
+                 id="path3489" />
+              <path
+                 d="m 43.971393,64.592303 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155748 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#6f7783"
+                 id="path3491" />
+              <path
+                 d="m 44.809654,64.424325 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#6f7783"
+                 id="path3493" />
+              <path
+                 d="m 45.974088,64.592303 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119869,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366944 h -0.227504 v -0.126391 h 0.227504 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155748 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#6f7783"
+                 id="path3495" />
+              <path
+                 d="m 46.971359,64.568656 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#6f7783"
+                 id="path3497" />
+            </g>
+            <g
+               aria-label=""
+               id="text458"
+               class="o"
+               style="white-space:pre;fill:#262626">
+              <path
+                 d="m 80.183808,65.042421 -1.025811,-0.992378 1.025811,-0.990747 z"
+                 style="white-space:pre;fill:#262626"
+                 id="path3500" />
+            </g>
+            <path
+               class="p"
+               d="m 80.16,62.959 h 13 v 2.171 h -13 z"
+               id="path460" />
+            <g
+               aria-label="stage-admin"
+               id="text462"
+               class="q"
+               style="white-space:pre;fill:#af5fd7">
+              <path
+                 d="m 80.296996,64.580887 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path3503" />
+              <path
+                 d="m 82.049354,64.592303 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366944 h -0.227504 v -0.126391 h 0.227504 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155748 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path3505" />
+              <path
+                 d="m 82.887616,64.424325 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path3507" />
+              <path
+                 d="m 83.898749,64.424325 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149223,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335142,-0.08481 v -0.153301 q 0.06442,0.04403 0.158194,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path3509" />
+              <path
+                 d="m 85.04932,64.568656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path3511" />
+              <path
+                 d="m 85.351844,64.179696 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path3513" />
+              <path
+                 d="m 86.893007,64.424325 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161456,-0.196519 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path3515" />
+              <path
+                 d="m 87.90414,64.424325 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 H 87.90414 Z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path3517" />
+              <path
+                 d="m 88.22868,64.628998 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 H 88.607855 V 64.00764 q 0,-0.120683 -0.02365,-0.141884 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path3519" />
+              <path
+                 d="M 89.553754,64.628998 V 63.844554 H 89.30097 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path3521" />
+              <path
+                 d="m 90.299872,64.628998 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157377,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#af5fd7"
+                 id="path3523" />
+            </g>
+            <path
+               class="p"
+               d="m 93.186,62.959 h 1 v 2.171 h -1 z"
+               id="path464" />
+            <g
+               aria-label=""
+               id="text466"
+               class="r"
+               style="white-space:pre;fill:#303030">
+              <path
+                 d="m 94.211808,65.042421 -1.025811,-0.992378 1.025811,-0.990747 z"
+                 style="white-space:pre;fill:#303030"
+                 id="path3526" />
+            </g>
+            <path
+               class="s"
+               d="m 94.188,62.959 h 25 v 2.171 h -25 z"
+               id="path468" />
+            <g
+               aria-label=" master  v0.5.2  "
+               id="text470"
+               class="t"
+               style="white-space:pre;fill:#afd700">
+              <path
+                 d="m 94.443233,64.683632 q 0.02772,-0.02773 0.02772,-0.06687 0,-0.03996 -0.02772,-0.06686 -0.02773,-0.02772 -0.06768,-0.02772 -0.03914,0 -0.06605,0.02772 -0.02691,0.02691 -0.02691,0.06686 0,0.03914 0.02691,0.06687 0.02691,0.02772 0.06605,0.02772 0.03996,0 0.06768,-0.02772 z m 0,-1.131001 q 0.02772,-0.02772 0.02772,-0.06687 0,-0.03996 -0.02772,-0.06686 -0.02773,-0.02772 -0.06768,-0.02772 -0.03914,0 -0.06605,0.02772 -0.02691,0.02691 -0.02691,0.06686 0,0.03914 0.02691,0.06687 0.02691,0.02691 0.06605,0.02691 0.03996,0 0.06768,-0.02691 z m 0.628696,0.125576 q 0.02773,-0.02773 0.02773,-0.06686 0,-0.03996 -0.02773,-0.06687 -0.02691,-0.02772 -0.06686,-0.02772 -0.03914,0 -0.06687,0.02772 -0.02773,0.02691 -0.02773,0.06687 0,0.03914 0.02773,0.06686 0.02772,0.02691 0.06687,0.02691 0.03996,0 0.06686,-0.02691 z m 0.121499,-0.06686 q 0,0.05137 -0.02528,0.09459 -0.02528,0.04322 -0.0685,0.06768 -8.16e-4,0.07339 -0.01631,0.135361 -0.01468,0.06116 -0.03833,0.106006 -0.02283,0.04403 -0.05953,0.08154 -0.03588,0.0367 -0.06931,0.06034 -0.03343,0.02365 -0.07991,0.04485 -0.04566,0.02039 -0.0791,0.03262 -0.03262,0.01142 -0.07583,0.02446 -0.0024,0.0016 -0.0033,0.0016 -0.053,0.01631 -0.08236,0.02772 -0.02936,0.0106 -0.0579,0.02446 -0.02773,0.01386 -0.03996,0.02936 -0.01223,0.01549 -0.01957,0.03588 -0.0073,0.02039 -0.0073,0.04974 v 0.02609 q 0.0424,0.02446 0.0685,0.0685 0.02609,0.04322 0.02609,0.09459 0,0.07828 -0.05545,0.132915 -0.05545,0.05545 -0.13373,0.05545 -0.07828,0 -0.133731,-0.05545 -0.05463,-0.05463 -0.05463,-0.132915 0,-0.05137 0.02528,-0.09459 0.02609,-0.04403 0.06931,-0.0685 v -0.805644 q -0.04322,-0.02446 -0.06931,-0.06768 -0.02528,-0.04403 -0.02528,-0.0954 0,-0.07828 0.05463,-0.132915 0.05545,-0.05545 0.133731,-0.05545 0.07828,0 0.13373,0.05545 0.05545,0.05463 0.05545,0.132915 0,0.05137 -0.02609,0.0954 -0.02609,0.04322 -0.0685,0.06768 v 0.488442 q 0.05056,-0.02528 0.150854,-0.05626 0.04566,-0.01468 0.0742,-0.02446 0.02854,-0.0098 0.06197,-0.02528 0.03425,-0.01549 0.05382,-0.03017 0.02039,-0.01549 0.04159,-0.03751 0.0212,-0.02202 0.0318,-0.04811 0.0106,-0.02691 0.01794,-0.06197 0.0073,-0.03506 0.0073,-0.0791 -0.0424,-0.02446 -0.0685,-0.06768 -0.02609,-0.04403 -0.02609,-0.09459 0,-0.07828 0.05545,-0.133731 0.05545,-0.05545 0.13373,-0.05545 0.07828,0 0.132915,0.05545 0.05545,0.05545 0.05545,0.133731 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path3529" />
+              <path
+                 d="m 96.255118,64.628998 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100297,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 H 96.634293 V 64.00764 q 0,-0.120683 -0.02365,-0.141884 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path3531" />
+              <path
+                 d="m 97.923487,64.424325 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path3533" />
+              <path
+                 d="m 98.33691,64.580887 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145961,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.151669,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path3535" />
+              <path
+                 d="m 100.08927,64.592303 q -0.106823,0.04485 -0.154933,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366944 h -0.227504 v -0.126391 h 0.227504 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155748 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231584,-0.06931 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path3537" />
+              <path
+                 d="m 101.08654,64.568656 q -0.18184,0.08644 -0.34411,0.08644 -0.12313,0 -0.22017,-0.06116 -0.097,-0.06116 -0.15575,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.0554,-0.239736 0.0555,-0.114976 0.15493,-0.17858 0.0995,-0.06442 0.2218,-0.06442 0.16227,0 0.26012,0.115791 0.0987,0.115791 0.0987,0.357158 v 0.03262 h -0.62789 q 0,0.09459 0.0392,0.172871 0.0399,0.07828 0.10437,0.117422 0.0644,0.03914 0.14678,0.03914 0.14677,0 0.32454,-0.09785 z m -0.60587,-0.48355 h 0.4542 v -0.02202 q 0,-0.111714 -0.0546,-0.177764 -0.0546,-0.06605 -0.14596,-0.06605 -0.0921,0 -0.15982,0.06768 -0.0669,0.06686 -0.0938,0.198149 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path3539" />
+              <path
+                 d="m 101.40782,64.628998 v -0.910835 h 0.15167 v 0.198965 q 0.0709,-0.11253 0.16227,-0.167979 0.0921,-0.05626 0.20467,-0.05626 0.0824,0 0.16472,0.02528 v 0.328618 h -0.14596 v -0.207935 q -0.0383,-0.0065 -0.0603,-0.0065 -0.0848,0 -0.16634,0.06686 -0.0816,0.06686 -0.15901,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path3541" />
+              <path
+                 d="m 103.49939,63.842108 q 0.0228,-0.02283 0.0228,-0.05463 0,-0.03262 -0.0228,-0.05545 -0.022,-0.02283 -0.0546,-0.02283 -0.0318,0 -0.0546,0.02283 -0.0228,0.02283 -0.0228,0.05545 0,0.0318 0.0228,0.05463 0.0228,0.02202 0.0546,0.02202 0.0326,0 0.0546,-0.02202 z m 0.66703,0.292739 q 0,0.0318 -0.022,0.05463 l -0.29682,0.296817 q -0.0228,0.02202 -0.0546,0.02202 -0.0326,0 -0.0546,-0.02202 l -0.43218,-0.432178 q -0.0228,-0.02283 -0.0391,-0.06116 -0.0155,-0.03833 -0.0155,-0.07094 v -0.251152 q 0,-0.0318 0.0228,-0.05463 0.0228,-0.02283 0.0546,-0.02283 h 0.25115 q 0.0326,0 0.0709,0.01631 0.0383,0.01549 0.0612,0.03833 l 0.43218,0.431362 q 0.022,0.02365 0.022,0.05545 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path3543" />
+              <path
+                 d="m 105.63827,64.628998 -0.39549,-0.910835 h 0.16635 l 0.31231,0.72084 0.31883,-0.72084 h 0.15167 l -0.39874,0.910835 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path3545" />
+              <path
+                 d="m 106.7179,63.325941 q 0.21608,0 0.32943,0.181841 0.11334,0.181025 0.11334,0.488442 0,0.308233 -0.11334,0.490074 -0.11335,0.181025 -0.32943,0.181025 -0.21528,0 -0.32944,-0.181025 -0.11334,-0.181841 -0.11334,-0.490074 0,-0.307417 0.11334,-0.488442 0.11416,-0.181841 0.32944,-0.181841 z m -0.24708,0.941006 0.43789,-0.685776 q -0.0416,-0.07583 -0.0905,-0.101929 -0.0481,-0.02691 -0.10029,-0.02691 -0.13618,0 -0.20712,0.15167 -0.0709,0.150854 -0.0709,0.383252 0,0.053 0.003,0.11416 0.003,0.06116 0.0277,0.165532 z m 0.49252,-0.534922 -0.43462,0.689854 q 0.0351,0.05953 0.0807,0.0897 0.0457,0.02935 0.10193,0.02935 0.15493,0 0.22017,-0.172871 0.0652,-0.173686 0.0652,-0.384882 0,-0.130469 -0.0334,-0.251153 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path3547" />
+              <path
+                 d="m 107.71924,64.667323 q -0.0546,0 -0.0938,-0.03914 -0.0391,-0.03914 -0.0391,-0.09377 0,-0.05545 0.0391,-0.09377 0.04,-0.03914 0.0938,-0.03914 0.0538,0 0.093,0.03914 0.04,0.03833 0.04,0.09377 0,0.05463 -0.0391,0.09377 -0.0391,0.03914 -0.0938,0.03914 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path3549" />
+              <path
+                 d="m 108.37322,63.970946 v -0.607495 h 0.70861 v 0.145962 h -0.55694 v 0.309863 h 0.0261 q 0.27317,0 0.42076,0.11416 0.1476,0.11416 0.1476,0.307417 0,0.122315 -0.0595,0.219351 -0.0595,0.09704 -0.16798,0.152485 -0.10845,0.05463 -0.23077,0.05463 -0.12231,0 -0.31312,-0.05953 v -0.165533 q 0.0693,0.03751 0.15493,0.06197 0.0856,0.02365 0.15819,0.02365 0.0726,0 0.14189,-0.03506 0.0693,-0.03506 0.10764,-0.101929 0.0383,-0.06768 0.0383,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.10437,-0.08236 -0.37183,-0.08236 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path3551" />
+              <path
+                 d="m 109.72194,64.667323 q -0.0546,0 -0.0938,-0.03914 -0.0391,-0.03914 -0.0391,-0.09377 0,-0.05545 0.0391,-0.09377 0.04,-0.03914 0.0938,-0.03914 0.0538,0 0.093,0.03914 0.04,0.03833 0.04,0.09377 0,0.05463 -0.0391,0.09377 -0.0391,0.03914 -0.0938,0.03914 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path3553" />
+              <path
+                 d="m 111.1098,64.628998 h -0.76569 v -0.139439 q 0,-0.05382 0.022,-0.114975 0.022,-0.06197 0.084,-0.138623 0.062,-0.07665 0.13128,-0.147593 l 0.0864,-0.08807 q 0.0261,-0.02691 0.11416,-0.124761 0.0881,-0.09785 0.11579,-0.150039 0.0285,-0.05219 0.0285,-0.102744 0,-0.08154 -0.0652,-0.125577 -0.0652,-0.04485 -0.14677,-0.04485 -0.0465,0 -0.10438,0.0106 -0.0571,0.0106 -0.1003,0.02528 -0.0432,0.01386 -0.14025,0.0579 v -0.134546 q 0.10274,-0.04892 0.20549,-0.06686 0.10356,-0.01875 0.17042,-0.01875 0.0987,0 0.18103,0.03262 0.0832,0.0318 0.12313,0.09948 0.0408,0.06768 0.0408,0.144331 0,0.08562 -0.0522,0.175317 -0.0514,0.0897 -0.19489,0.230767 l -0.0929,0.09214 -0.0783,0.07665 q -0.0742,0.07502 -0.11986,0.145146 -0.0457,0.07013 -0.0506,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path3555" />
+              <path
+                 d="m 112.8116,64.364799 v -0.125577 q 0,-0.009 -0.006,-0.01468 -0.006,-0.0065 -0.0155,-0.0065 h -0.12476 q -0.01,0 -0.0155,0.0065 -0.006,0.0057 -0.006,0.01468 v 0.125577 q 0,0.0098 0.006,0.01549 0.006,0.0057 0.0155,0.0057 h 0.12476 q 0.01,0 0.0155,-0.0057 0.006,-0.0057 0.006,-0.01549 z m 0.16798,-0.439517 q 0,-0.05708 -0.0359,-0.106006 -0.0359,-0.04974 -0.0905,-0.07665 -0.0546,-0.02691 -0.11172,-0.02691 -0.159,0 -0.24299,0.139438 -0.004,0.0073 -0.002,0.01549 0.002,0.0073 0.007,0.01223 l 0.0872,0.06523 q 0.004,0.0041 0.0114,0.0041 0.0106,0 0.0171,-0.0082 0.0351,-0.04485 0.0563,-0.06034 0.0212,-0.01549 0.0554,-0.01549 0.0318,0 0.0563,0.01712 0.0245,0.01712 0.0245,0.03833 0,0.02528 -0.0139,0.04077 -0.0131,0.01468 -0.044,0.02854 -0.0408,0.01957 -0.075,0.0579 -0.0343,0.03751 -0.0343,0.08073 v 0.02365 q 0,0.009 0.006,0.01549 0.006,0.0057 0.0155,0.0057 h 0.12476 q 0.01,0 0.0155,-0.0057 0.006,-0.0065 0.006,-0.01549 0,-0.01223 0.0139,-0.0318 0.0147,-0.02038 0.0367,-0.03262 0.0171,-0.0098 0.0261,-0.01549 0.009,-0.0057 0.0253,-0.01712 0.0171,-0.01223 0.0261,-0.02365 0.01,-0.01223 0.0196,-0.02772 0.0106,-0.01631 0.0155,-0.03669 0.005,-0.0212 0.005,-0.04485 z m 0.2112,-0.06931 q 0.0399,0.09296 0.0399,0.195704 0,0.101928 -0.0399,0.194887 -0.04,0.09296 -0.10683,0.16064 -0.0669,0.06686 -0.15982,0.106821 -0.093,0.03996 -0.1957,0.03996 -0.10275,0 -0.19571,-0.03996 -0.093,-0.03996 -0.16064,-0.106821 -0.0669,-0.06768 -0.10682,-0.16064 -0.04,-0.09296 -0.04,-0.194887 0,-0.102745 0.04,-0.195704 0.04,-0.09377 0.10682,-0.160639 0.0677,-0.06768 0.16064,-0.107637 0.093,-0.03996 0.19571,-0.03996 0.10274,0 0.1957,0.03996 0.093,0.03996 0.15982,0.107637 0.0669,0.06686 0.10683,0.160639 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path3557" />
+              <path
+                 d="m 114.6137,64.156049 q 0.007,0.02528 0.007,0.04974 0,0.02365 -0.007,0.04974 -0.007,0.02528 -0.0261,0.04566 -0.0188,0.02039 -0.044,0.02039 -0.0253,0 -0.044,-0.02039 -0.0179,-0.02039 -0.0253,-0.04566 -0.007,-0.02609 -0.007,-0.04974 0,-0.02446 0.007,-0.04974 0.007,-0.02528 0.0253,-0.04566 0.0188,-0.02039 0.044,-0.02039 0.0253,0 0.044,0.02039 0.0187,0.02039 0.0261,0.04566 z m 0.38652,0 q 0.007,0.02528 0.007,0.04974 0,0.02365 -0.007,0.04974 -0.007,0.02528 -0.0261,0.04566 -0.0179,0.02039 -0.0432,0.02039 -0.0253,0 -0.044,-0.02039 -0.0187,-0.02039 -0.0269,-0.04566 -0.007,-0.02609 -0.007,-0.04974 0,-0.02446 0.007,-0.04974 0.008,-0.02528 0.0269,-0.04566 0.0188,-0.02039 0.044,-0.02039 0.0253,0 0.0432,0.02039 0.0188,0.02039 0.0261,0.04566 z m 0.10437,0.04974 q 0,-0.07257 -0.0424,-0.12313 -0.0416,-0.05137 -0.11253,-0.05137 -0.0139,0 -0.031,0.0016 -0.0163,0.0016 -0.0277,0.0033 -0.0106,8.16e-4 -0.0302,0.0041 -0.0196,0.0033 -0.0285,0.0041 -0.0457,0.0065 -0.0954,0.0065 -0.0497,0 -0.0946,-0.0065 -0.009,-8.16e-4 -0.0285,-0.0041 -0.0196,-0.0033 -0.031,-0.0041 -0.0106,-0.0016 -0.0277,-0.0033 -0.0163,-0.0016 -0.0302,-0.0016 -0.0709,0 -0.11334,0.05137 -0.0416,0.05056 -0.0416,0.12313 0,0.053 0.0187,0.09296 0.0196,0.03914 0.0498,0.06197 0.0302,0.02202 0.0734,0.03588 0.044,0.01386 0.084,0.01875 0.0408,0.0041 0.0905,0.0041 h 0.10192 q 0.0498,0 0.0897,-0.0041 0.0408,-0.0049 0.084,-0.01875 0.044,-0.01386 0.0742,-0.03588 0.0302,-0.02283 0.0489,-0.06197 0.0196,-0.03996 0.0196,-0.09296 z m 0.13536,-0.106821 q 0,0.123945 -0.0367,0.19978 -0.0228,0.04648 -0.0644,0.08073 -0.0408,0.03343 -0.0848,0.05137 -0.044,0.01794 -0.10274,0.02936 -0.0587,0.0106 -0.10437,0.01386 -0.0448,0.0024 -0.1003,0.0024 -0.0342,0 -0.0636,-8.15e-4 -0.0285,-0.0016 -0.066,-0.0041 -0.0375,-0.0033 -0.0693,-0.0082 -0.031,-0.0057 -0.0669,-0.01468 -0.0351,-0.009 -0.0644,-0.02202 -0.0294,-0.01386 -0.0571,-0.03099 -0.0277,-0.01712 -0.0497,-0.04159 -0.022,-0.02528 -0.0375,-0.05545 -0.0375,-0.0742 -0.0375,-0.19978 0,-0.143516 0.0815,-0.238921 -0.0155,-0.04729 -0.0155,-0.102745 0,-0.07013 0.031,-0.132099 0.0652,0 0.11416,0.02446 0.0498,0.02365 0.11416,0.0742 0.0905,-0.0212 0.18674,-0.0212 0.0881,0 0.16961,0.01957 0.031,-0.02446 0.053,-0.03914 0.0228,-0.01549 0.0514,-0.02935 0.0285,-0.01468 0.0579,-0.0212 0.0302,-0.0073 0.0644,-0.0073 0.031,0.06197 0.031,0.132099 0,0.053 -0.0163,0.101114 0.0824,0.09704 0.0824,0.240552 z"
+                 style="white-space:pre;fill:#afd700"
+                 id="path3559" />
+            </g>
+          </svg>
+        </svg>
+      </g>
+    </svg>
+  </g>
+</svg>
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot06.svg b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot06.svg
new file mode 100644
index 0000000000..bce1693871
--- /dev/null
+++ b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot06.svg
@@ -0,0 +1,2444 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<svg
+   width="1190"
+   height="327.14999"
+   version="1.1"
+   id="svg274"
+   sodipodi:docname="3.svg"
+   inkscape:version="1.1.1 (c3084ef, 2021-09-22)"
+   xmlns:inkscape="http://www.inkscape.org/namespaces/inkscape"
+   xmlns:sodipodi="http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd"
+   xmlns="http://www.w3.org/2000/svg"
+   xmlns:svg="http://www.w3.org/2000/svg">
+  <defs
+     id="defs278">
+    <clipPath
+       clipPathUnits="userSpaceOnUse"
+       id="clipPath531">
+      <rect
+         style="fill:#000000"
+         id="rect533"
+         width="1327.3376"
+         height="400.15326"
+         x="-87.838516"
+         y="-71.065567" />
+    </clipPath>
+    <clipPath
+       clipPathUnits="userSpaceOnUse"
+       id="clipPath1201">
+      <rect
+         style="fill:#000000"
+         id="rect1203"
+         width="1416.811"
+         height="415.22882"
+         x="-133.37653"
+         y="-88.078835" />
+    </clipPath>
+  </defs>
+  <sodipodi:namedview
+     id="namedview276"
+     pagecolor="#ffffff"
+     bordercolor="#666666"
+     borderopacity="1.0"
+     inkscape:pageshadow="2"
+     inkscape:pageopacity="0.0"
+     inkscape:pagecheckerboard="0"
+     showgrid="false"
+     inkscape:zoom="0.82521422"
+     inkscape:cx="696.18287"
+     inkscape:cy="335.67042"
+     inkscape:window-width="1416"
+     inkscape:window-height="814"
+     inkscape:window-x="12"
+     inkscape:window-y="25"
+     inkscape:window-maximized="0"
+     inkscape:current-layer="g525" />
+  <g
+     id="g525"
+     clip-path="url(#clipPath531)">
+    <g
+       id="g1199"
+       clip-path="url(#clipPath1201)">
+      <path
+         id="rect2"
+         class="a"
+         style="fill:#282d35"
+         d="M 0,0 H 1190 V 651.29999 H 0 Z" />
+      <svg
+         height="651.29999"
+         viewBox="0 0 119 65.13"
+         width="1190"
+         version="1.1"
+         id="svg272">
+        <style
+           id="style4">.a{fill:#282d35}.e{fill:#00d7ff}.f,.g{fill:#000;white-space:pre}.g{font-weight:700}.h{fill:#005f87}.i{fill:#00d7ff;white-space:pre}.j{fill:#eee}.j,.k,.l,.m{white-space:pre}.k{fill:#fff;font-weight:700}.l,.m{fill:#005f87}.m{fill:#a8cc8c}.n{fill:#b9c0cb}.n,.o{white-space:pre}.o,.p{fill:#262626}.q{fill:#af5fd7}.q,.r{white-space:pre}.r,.s{fill:#303030}.t{fill:#afd700}.t,.u,.v{white-space:pre}.u{fill:#71bef2;font-weight:700}.v{fill:#b9c0cb;text-decoration:underline}</style>
+        <g
+           font-family="Monaco, Consolas, Menlo, 'Bitstream Vera Sans Mono', 'Powerline Symbols', monospace"
+           font-size="1.67px"
+           id="g270">
+          <defs
+             id="defs12">
+            <symbol
+               id="a">
+              <path
+                 fill="transparent"
+                 d="M 0,0 H 119 V 30 H 0 Z"
+                 id="path6" />
+            </symbol>
+            <symbol
+               id="b">
+              <path
+                 fill="#6f7683"
+                 d="M 0,0 H 1.102 V 2.171 H 0 Z"
+                 id="path9" />
+            </symbol>
+          </defs>
+          <path
+             class="a"
+             d="M 0,0 H 119 V 65.13 H 0 Z"
+             id="path14"
+             style="fill:#000000" />
+          <svg
+             width="119"
+             version="1.1"
+             id="svg268"
+             height="100%">
+            <svg
+               version="1.1"
+               id="svg266"
+               width="100%"
+               height="100%">
+              <g
+                 id="use16">
+                <path
+                   fill="transparent"
+                   d="M 0,0 H 119 V 30 H 0 Z"
+                   id="path1205" />
+              </g>
+              <g
+                 id="use18"
+                 transform="translate(30.996,30.368999)">
+                <path
+                   fill="#6f7683"
+                   d="M 0,0 H 1.102 V 2.171 H 0 Z"
+                   id="path1209" />
+              </g>
+              <path
+                 class="e"
+                 d="M 0,0 H 1 V 2.171 H 0 Z"
+                 id="path20" />
+              <g
+                 id="text22"
+                 class="f"
+                 style="white-space:pre" />
+              <path
+                 class="e"
+                 d="m 1.002,0 h 5 v 2.171 h -5 z"
+                 id="path24" />
+              <g
+                 aria-label="kvaps"
+                 id="text26"
+                 class="g"
+                 style="font-weight:700;white-space:pre">
+                <path
+                   d="M 1.1691631,1.67 V 0.35389648 H 1.320833 V 1.1807422 L 1.7587187,0.75916502 H 1.9609453 L 1.523875,1.1807422 1.9723613,1.67 h -0.20875 L 1.320833,1.1807422 V 1.67 Z"
+                   style="font-weight:700;white-space:pre"
+                   id="path1215" />
+                <path
+                   d="M 2.4257402,1.67 2.0302568,0.75916502 H 2.1966045 L 2.508914,1.4800048 2.827747,0.75916502 H 2.9794169 L 2.5806718,1.67 Z"
+                   style="font-weight:700;white-space:pre"
+                   id="path1217" />
+                <path
+                   d="m 3.7296123,1.4653271 q -0.069312,0.1141602 -0.1671631,0.1720557 -0.097036,0.057896 -0.1785791,0.057896 -0.1141602,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581934 0.060342,-0.2821387 0.060342,-0.1247607 0.1614551,-0.19651851 0.1011133,-0.0725733 0.2503369,-0.0725733 0.043218,0 0.1304687,0.00897 0.013047,0.001631 0.039141,0.004077 H 3.8820976 V 1.402539 q 0,0.1647168 0.034248,0.267461 H 3.7581523 q -0.017939,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.080728,-0.0212012 -0.1500391,-0.0212012 -0.1402539,0 -0.2340283,0.10845215 -0.092959,0.10845218 -0.092959,0.29518558 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166064,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                   style="font-weight:700;white-space:pre"
+                   id="path1219" />
+                <path
+                   d="m 4.2726886,0.96383787 q 0.070127,-0.11416016 0.1671631,-0.17205566 0.097036,-0.0578955 0.1785791,-0.0578955 0.1141601,0 0.2054882,0.098667 0.091328,0.098667 0.091328,0.29926271 0,0.1581933 -0.061157,0.2829541 -0.060342,0.1239453 -0.161455,0.1965185 -0.1011133,0.071758 -0.250337,0.071758 -0.042402,0 -0.1304687,-0.00897 Q 4.2987823,1.6724462 4.2726886,1.67 V 2.0238964 H 4.1210187 V 0.75916502 h 0.1516699 z m 0,0.18020993 v 0.3905908 q 0.082358,0.021201 0.1516699,0.021201 0.1378076,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.051372,-0.20467283 -0.051372,-0.0684961 -0.1166064,-0.0684961 -0.070942,0 -0.1565625,0.0717578 -0.084805,0.0717578 -0.1533008,0.19325681 z"
+                   style="font-weight:700;white-space:pre"
+                   id="path1221" />
+                <path
+                   d="M 5.1443828,1.6218896 V 1.46125 q 0.091328,0.059526 0.1932568,0.083989 0.1019287,0.023648 0.1728711,0.023648 0.1149756,0 0.1655322,-0.036694 0.050557,-0.03751 0.050557,-0.092959 0,-0.036694 -0.023648,-0.062788 -0.023647,-0.026094 -0.1174218,-0.064419 L 5.5333428,1.2908252 5.4281523,1.2492382 Q 5.258543,1.1831884 5.2145098,1.1269238 5.1696611,1.0714746 5.1696611,0.99156247 q 0,-0.11252929 0.086436,-0.18510253 0.087251,-0.0725732 0.2821386,-0.0725732 0.1459619,0 0.2764307,0.0424023 V 0.91409666 Q 5.6646269,0.8602783 5.5325273,0.8602783 q -0.096221,0 -0.1508545,0.034248 -0.053818,0.0334326 -0.053818,0.0839893 0,0.0489258 0.047295,0.0782812 0.04648,0.029355 0.1516699,0.067681 l 0.1027442,0.03751 q 0.1410693,0.051372 0.1981494,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.091328,0.1948877 -0.090513,0.075835 -0.2902929,0.075835 -0.174502,0 -0.3587891,-0.073389 z"
+                   style="font-weight:700;white-space:pre"
+                   id="path1223" />
+              </g>
+              <path
+                 class="e"
+                 d="m 6.012,0 h 1 v 2.171 h -1 z"
+                 id="path28" />
+              <g
+                 id="text30"
+                 class="f"
+                 style="white-space:pre" />
+              <path
+                 class="h"
+                 d="m 7.014,0 h 1 v 2.171 h -1 z"
+                 id="path32" />
+              <g
+                 aria-label=""
+                 id="text34"
+                 class="i"
+                 style="white-space:pre;fill:#00d7ff">
+                <path
+                   d="M 7.0139999,0.10029785 8.0398105,1.0910449 7.0139999,2.0834228 Z"
+                   style="white-space:pre;fill:#00d7ff"
+                   id="path1227" />
+              </g>
+              <path
+                 class="h"
+                 d="m 8.016,0 h 1 v 2.171 h -1 z"
+                 id="path36" />
+              <g
+                 id="text38"
+                 class="j"
+                 style="white-space:pre;fill:#eeeeee" />
+              <path
+                 class="h"
+                 d="m 9.018,0 h 1 v 2.171 h -1 z"
+                 id="path40" />
+              <g
+                 aria-label="~"
+                 id="text42"
+                 class="k"
+                 style="font-weight:700;white-space:pre;fill:#ffffff">
+                <path
+                   d="m 9.0636637,1.3413818 v -0.014678 q 0,-0.1068213 0.062788,-0.1851026 0.063603,-0.079097 0.1704248,-0.079097 0.026909,0 0.052188,0.00571 0.026094,0.00489 0.058711,0.017939 0.032617,0.012231 0.097852,0.048926 l 0.098667,0.054634 q 0.090513,0.049741 0.1475927,0.049741 0.060342,0 0.088882,-0.043218 0.029356,-0.044033 0.029356,-0.095405 V 1.0877832 H 9.9744986 V 1.10083 q 0,0.1361768 -0.077466,0.2014112 -0.07665,0.064419 -0.1630859,0.064419 -0.080728,0 -0.2136426,-0.075835 l -0.083174,-0.04811 q -0.09459,-0.053818 -0.1524853,-0.053818 -0.032617,0 -0.061157,0.017124 -0.027725,0.017124 -0.044849,0.054634 -0.017124,0.03751 -0.017124,0.06605 v 0.014678 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1231" />
+              </g>
+              <path
+                 class="h"
+                 d="m 10.02,0 h 1 v 2.171 h -1 z"
+                 id="path44" />
+              <g
+                 aria-label="/"
+                 id="text46"
+                 class="j"
+                 style="white-space:pre;fill:#eeeeee">
+                <path
+                   d="M 10.196133,1.7083252 H 10.04691 l 0.804829,-1.34138185 h 0.144331 z"
+                   style="white-space:pre;fill:#eeeeee"
+                   id="path1234" />
+              </g>
+              <path
+                 class="h"
+                 d="m 11.022,0 h 8 v 2.171 h -8 z"
+                 id="path48" />
+              <g
+                 aria-label="kubefarm"
+                 id="text50"
+                 class="k"
+                 style="font-weight:700;white-space:pre;fill:#ffffff">
+                <path
+                   d="M 11.189163,1.67 V 0.35389648 h 0.15167 V 1.1807422 l 0.437886,-0.42157718 h 0.202227 L 11.543875,1.1807422 11.992362,1.67 h -0.20875 L 11.340833,1.1807422 V 1.67 Z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1237" />
+                <path
+                   d="M 12.899119,0.75916502 V 1.67 H 12.74745 V 1.4702197 q -0.07339,0.1125293 -0.163086,0.1687939 -0.0897,0.056265 -0.179395,0.056265 -0.07991,0 -0.146777,-0.042402 -0.06605,-0.043218 -0.09214,-0.1125293 -0.02609,-0.070127 -0.02609,-0.2723535 V 0.75916502 h 0.15167 V 1.286748 q 0,0.1312842 0.01223,0.1736865 0.01305,0.041587 0.04648,0.068496 0.03425,0.026909 0.07339,0.026909 0.07991,0 0.17124,-0.07502 0.09214,-0.075835 0.152486,-0.1908106 V 0.75916502 Z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1239" />
+                <path
+                   d="m 13.291341,0.96383787 q 0.07013,-0.11416016 0.167163,-0.17205566 0.09704,-0.0578955 0.178579,-0.0578955 0.11416,0 0.205489,0.098667 0.09133,0.098667 0.09133,0.29926271 0,0.1581933 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101113,0.071758 -0.250336,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 h -0.15167 V 0.35389648 h 0.15167 z m 0,0.18020993 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.20467283 -0.05137,-0.0684961 -0.116607,-0.0684961 -0.07094,0 -0.156562,0.0717578 -0.0848,0.0717578 -0.153301,0.19325681 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1241" />
+                <path
+                   d="m 14.909969,1.6096582 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.16227,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 14.304105,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145961,-0.0660498 -0.09214,0 -0.159825,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1243" />
+                <path
+                   d="M 15.365794,1.67 V 0.96139158 h -0.202226 v -0.1263916 h 0.202226 v -0.0424023 q 0,-0.18020996 0.04077,-0.26664551 0.04077,-0.0864355 0.125576,-0.14188476 0.08562,-0.0554492 0.225874,-0.0554492 0.106006,0 0.215273,0.0220166 v 0.14433105 q -0.118237,-0.0391406 -0.209565,-0.0391406 -0.07257,0 -0.128023,0.0269092 -0.05545,0.0269092 -0.08725,0.0880664 -0.03099,0.0603418 -0.03099,0.20548827 v 0.0587109 H 15.8787 v 0.1263916 H 15.517464 V 1.67 Z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1245" />
+                <path
+                   d="m 16.753655,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101113,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152486 V 1.402539 q 0,0.1647168 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140253,0 -0.234028,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.1533,-0.1932568 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1247" />
+                <path
+                   d="M 17.233944,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.07094,-0.1125293 0.16227,-0.16797851 0.09214,-0.0562647 0.204673,-0.0562647 0.08236,0 0.164717,0.0252783 V 1.0877832 H 17.771312 V 0.87984861 q -0.03833,-0.006523 -0.06034,-0.006523 -0.0848,0 -0.166347,0.0668652 -0.08154,0.0668652 -0.159009,0.20059569 V 1.67 Z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1249" />
+                <path
+                   d="M 18.08933,1.67 V 0.75916502 h 0.132915 v 0.20874999 q 0.06279,-0.13291503 0.116606,-0.18347167 0.05463,-0.0505566 0.110083,-0.0505566 0.06605,0 0.106006,0.0521875 0.04077,0.0513721 0.04077,0.14677734 v 0.0489258 q 0.02691,-0.0831738 0.06442,-0.1345459 0.03833,-0.0521875 0.0791,-0.0823584 0.04077,-0.0309863 0.09377,-0.0309863 0.05871,0 0.100298,0.0497412 0.04159,0.0497412 0.04159,0.19814941 V 1.67 H 18.841971 V 1.0478271 q 0,-0.0766504 -0.0049,-0.10437498 -0.0049,-0.02854 -0.01957,-0.0432178 -0.01468,-0.0146777 -0.0318,-0.0146777 -0.0424,0 -0.09133,0.0652344 -0.04811,0.0644189 -0.09867,0.21445801 V 1.67 H 18.468504 V 1.0486426 q 0,-0.12068364 -0.02365,-0.14188481 -0.02365,-0.0212012 -0.0424,-0.0212012 -0.04159,0 -0.0897,0.0725732 -0.0473,0.0725732 -0.09051,0.18591794 V 1.67 Z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1251" />
+              </g>
+              <path
+                 class="h"
+                 d="m 19.038,0 h 1 v 2.171 h -1 z"
+                 id="path52" />
+              <g
+                 aria-label="/"
+                 id="text54"
+                 class="j"
+                 style="white-space:pre;fill:#eeeeee">
+                <path
+                   d="m 19.214133,1.7083252 h -0.149224 l 0.804829,-1.34138185 h 0.144331 z"
+                   style="white-space:pre;fill:#eeeeee"
+                   id="path1254" />
+              </g>
+              <path
+                 class="h"
+                 d="m 20.04,0 h 8 v 2.171 h -8 z"
+                 id="path56" />
+              <g
+                 aria-label="examples"
+                 id="text58"
+                 class="k"
+                 style="font-weight:700;white-space:pre;fill:#ffffff">
+                <path
+                   d="m 20.923927,1.6096582 q -0.181841,0.086436 -0.344112,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.05789,-0.1141601 -0.05789,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221796,-0.0644189 0.162271,0 0.260123,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 20.318062,1.1261084 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1257" />
+                <path
+                   d="M 21.26233,1.67 H 21.087013 L 21.444986,1.1929736 21.11066,0.75916502 h 0.194072 l 0.23729,0.30578608 0.230767,-0.30578608 h 0.172056 L 21.628458,1.1782959 22.004371,1.67 H 21.809483 L 21.532237,1.3071338 Z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1259" />
+                <path
+                   d="m 22.767613,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101113,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152486 V 1.402539 q 0,0.1647168 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234028,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1261" />
+                <path
+                   d="M 23.10194,1.67 V 0.75916502 h 0.132915 v 0.20874999 q 0.06279,-0.13291503 0.116606,-0.18347167 0.05463,-0.0505566 0.110083,-0.0505566 0.06605,0 0.106006,0.0521875 0.04077,0.0513721 0.04077,0.14677734 v 0.0489258 q 0.02691,-0.0831738 0.06442,-0.1345459 0.03833,-0.0521875 0.0791,-0.0823584 0.04077,-0.0309863 0.09377,-0.0309863 0.05871,0 0.100298,0.0497412 0.04159,0.0497412 0.04159,0.19814941 V 1.67 H 23.854581 V 1.0478271 q 0,-0.0766504 -0.0049,-0.10437498 -0.0049,-0.02854 -0.01957,-0.0432178 -0.01468,-0.0146777 -0.0318,-0.0146777 -0.0424,0 -0.09133,0.0652344 -0.04811,0.0644189 -0.09867,0.21445801 V 1.67 H 23.481114 V 1.0486426 q 0,-0.12068364 -0.02365,-0.14188481 -0.02365,-0.0212012 -0.0424,-0.0212012 -0.04159,0 -0.0897,0.0725732 -0.04729,0.0725732 -0.09051,0.18591794 V 1.67 Z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1263" />
+                <path
+                   d="m 24.312037,0.96383787 q 0.07013,-0.11416016 0.167163,-0.17205566 0.09704,-0.0578955 0.178579,-0.0578955 0.11416,0 0.205489,0.098667 0.09133,0.098667 0.09133,0.29926271 0,0.1581933 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101113,0.071758 -0.250337,0.071758 -0.0424,0 -0.130468,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 v 0.3538964 h -0.15167 V 0.75916502 h 0.15167 z m 0,0.18020993 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.20467283 -0.05137,-0.0684961 -0.116607,-0.0684961 -0.07094,0 -0.156562,0.0717578 -0.0848,0.0717578 -0.153301,0.19325681 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1265" />
+                <path
+                   d="M 25.41776,1.67 V 0.4811035 H 25.145406 V 0.35389648 H 25.56943 V 1.5436084 h 0.284584 V 1.67 Z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1267" />
+                <path
+                   d="m 26.932013,1.6096582 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155748,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.16227,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 26.326149,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1269" />
+                <path
+                   d="M 27.186427,1.6218896 V 1.46125 q 0.09133,0.059526 0.193257,0.083989 0.101928,0.023648 0.172871,0.023648 0.114975,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.105191,-0.041587 q -0.169609,-0.06605 -0.213642,-0.1223144 -0.04485,-0.055449 -0.04485,-0.13536133 0,-0.11252929 0.08644,-0.18510253 0.08725,-0.0725732 0.282138,-0.0725732 0.145962,0 0.276431,0.0424023 v 0.13780762 q -0.150039,-0.0538184 -0.282139,-0.0538184 -0.09622,0 -0.150854,0.034248 -0.05382,0.0334326 -0.05382,0.0839893 0,0.0489258 0.04729,0.0782812 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.14107,0.051372 0.19815,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1271" />
+              </g>
+              <path
+                 class="h"
+                 d="m 28.056,0 h 1 v 2.171 h -1 z"
+                 id="path60" />
+              <g
+                 id="text62"
+                 class="j"
+                 style="white-space:pre;fill:#eeeeee" />
+              <g
+                 aria-label=""
+                 id="text64"
+                 class="l"
+                 style="white-space:pre;fill:#005f87">
+                <path
+                   d="m 29.058001,0.10029785 1.02581,0.99074705 -1.02581,0.9923779 z"
+                   style="white-space:pre;fill:#005f87"
+                   id="path1275" />
+              </g>
+              <g
+                 aria-label="ls"
+                 id="text66"
+                 class="m"
+                 style="white-space:pre;fill:#a8cc8c">
+                <path
+                   d="M 31.433021,1.67 V 0.4811035 H 31.160667 V 0.35389648 h 0.424024 V 1.5436084 h 0.284585 V 1.67 Z"
+                   style="white-space:pre;fill:#a8cc8c"
+                   id="path1278" />
+                <path
+                   d="M 32.20034,1.6218896 V 1.46125 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114976,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117421,-0.064419 L 32.5893,1.2908252 32.48411,1.2492382 q -0.16961,-0.06605 -0.213643,-0.1223144 -0.04485,-0.055449 -0.04485,-0.13536133 0,-0.11252929 0.08644,-0.18510253 0.08725,-0.0725732 0.282139,-0.0725732 0.145962,0 0.27643,0.0424023 v 0.13780762 q -0.150039,-0.0538184 -0.282138,-0.0538184 -0.09622,0 -0.150855,0.034248 -0.05382,0.0334326 -0.05382,0.0839893 0,0.0489258 0.04729,0.0782812 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                   style="white-space:pre;fill:#a8cc8c"
+                   id="path1280" />
+              </g>
+              <g
+                 aria-label="-1"
+                 id="text68"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="M 34.253103,1.2206982 V 1.0943066 h 0.632774 v 0.1263916 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1283" />
+                <path
+                   d="M 35.532513,1.5436084 V 0.56672362 q -0.0685,0.0546338 -0.132916,0.092959 -0.06442,0.0383252 -0.176948,0.0782812 V 0.60097166 q 0.178579,-0.075835 0.309864,-0.19651855 h 0.151669 V 1.5436084 h 0.304156 V 1.67 H 35.222649 V 1.5436084 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1285" />
+              </g>
+              <g
+                 aria-label=""
+                 id="text70"
+                 class="o"
+                 style="white-space:pre;fill:#262626">
+                <path
+                   d="M 80.183808,2.0834228 79.157997,1.0910449 80.183808,0.10029785 Z"
+                   style="white-space:pre;fill:#262626"
+                   id="path1288" />
+              </g>
+              <path
+                 class="p"
+                 d="m 80.16,0 h 13 v 2.171 h -13 z"
+                 id="path72" />
+              <g
+                 aria-label="stage-admin"
+                 id="text74"
+                 class="q"
+                 style="white-space:pre;fill:#af5fd7">
+                <path
+                   d="M 80.296996,1.6218896 V 1.46125 q 0.09133,0.059526 0.193257,0.083989 0.101928,0.023648 0.172871,0.023648 0.114975,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.105191,-0.041587 q -0.169609,-0.06605 -0.213642,-0.1223144 -0.04485,-0.055449 -0.04485,-0.13536133 0,-0.11252929 0.08644,-0.18510253 0.08725,-0.0725732 0.282138,-0.0725732 0.145962,0 0.276431,0.0424023 V 0.91409666 Q 80.81724,0.8602783 80.68514,0.8602783 q -0.09622,0 -0.150854,0.034248 -0.05382,0.0334326 -0.05382,0.0839893 0,0.0489258 0.04729,0.0782812 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.14107,0.051372 0.19815,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                   style="white-space:pre;fill:#af5fd7"
+                   id="path1291" />
+                <path
+                   d="m 82.049354,1.6333056 q -0.106821,0.044849 -0.154931,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084521 -0.03996,-0.071758 -0.03996,-0.2217969 V 0.96139158 h -0.227504 v -0.1263916 h 0.227504 V 0.46805663 h 0.15167 v 0.36694335 h 0.405269 v 0.1263916 H 81.618807 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069311 z"
+                   style="white-space:pre;fill:#af5fd7"
+                   id="path1293" />
+                <path
+                   d="m 82.887616,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101113,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130468,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152485 V 1.402539 q 0,0.1647168 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234028,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                   style="white-space:pre;fill:#af5fd7"
+                   id="path1295" />
+                <path
+                   d="m 83.898749,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101113,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130468,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152485 V 1.4033545 q 0,0.2299511 -0.0065,0.2805078 -0.0057,0.051372 -0.01957,0.1035595 -0.03262,0.121499 -0.149223,0.191626 -0.115791,0.070127 -0.280508,0.070127 -0.165532,0 -0.335142,-0.084805 V 1.8110693 q 0.06442,0.044033 0.158194,0.077466 0.09459,0.034248 0.182656,0.034248 0.06931,0 0.131284,-0.022017 0.06197,-0.022017 0.100298,-0.063604 0.03833,-0.041587 0.05219,-0.097036 0.01386,-0.054634 0.01386,-0.1459619 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234028,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                   style="white-space:pre;fill:#af5fd7"
+                   id="path1297" />
+                <path
+                   d="m 85.04932,1.6096582 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.16227,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 84.443456,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+                   style="white-space:pre;fill:#af5fd7"
+                   id="path1299" />
+                <path
+                   d="M 85.351844,1.2206982 V 1.0943066 h 0.632774 v 0.1263916 z"
+                   style="white-space:pre;fill:#af5fd7"
+                   id="path1301" />
+                <path
+                   d="m 86.893007,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161456,-0.19651851 0.101113,-0.0725733 0.250336,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152485 V 1.402539 q 0,0.1647168 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234029,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                   style="white-space:pre;fill:#af5fd7"
+                   id="path1303" />
+                <path
+                   d="m 87.90414,1.4653271 q -0.06931,0.1141602 -0.167164,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101114,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 V 0.35389648 h 0.152485 V 1.67 H 87.90414 Z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.15004,-0.0212012 -0.140253,0 -0.234028,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                   style="white-space:pre;fill:#af5fd7"
+                   id="path1305" />
+                <path
+                   d="M 88.22868,1.67 V 0.75916502 h 0.132915 v 0.20874999 q 0.06279,-0.13291503 0.116607,-0.18347167 0.05463,-0.0505566 0.110083,-0.0505566 0.06605,0 0.106006,0.0521875 0.04077,0.0513721 0.04077,0.14677734 v 0.0489258 q 0.02691,-0.0831738 0.06442,-0.1345459 0.03833,-0.0521875 0.0791,-0.0823584 0.04077,-0.0309863 0.09377,-0.0309863 0.05871,0 0.100298,0.0497412 0.04159,0.0497412 0.04159,0.19814941 V 1.67 H 88.981322 V 1.0478271 q 0,-0.0766504 -0.0049,-0.10437498 -0.0049,-0.02854 -0.01957,-0.0432178 -0.01468,-0.0146777 -0.0318,-0.0146777 -0.0424,0 -0.09133,0.0652344 -0.04811,0.0644189 -0.09867,0.21445801 V 1.67 H 88.607855 V 1.0486426 q 0,-0.12068364 -0.02365,-0.14188481 -0.02365,-0.0212012 -0.0424,-0.0212012 -0.04159,0 -0.0897,0.0725732 -0.04729,0.0725732 -0.09051,0.18591794 V 1.67 Z"
+                   style="white-space:pre;fill:#af5fd7"
+                   id="path1307" />
+                <path
+                   d="M 89.553754,1.67 V 0.88555662 H 89.30097 v -0.1263916 h 0.404453 V 1.5436084 h 0.253599 V 1.67 Z m -0.02528,-1.23945314 q 0,-0.0513721 0.03506,-0.0766504 0.03506,-0.0252783 0.06605,-0.0252783 0.0318,0 0.06687,0.0252783 0.03506,0.0252783 0.03506,0.0766504 0,0.0505566 -0.03506,0.075835 -0.03506,0.0252783 -0.06687,0.0252783 -0.03099,0 -0.06605,-0.0252783 -0.03506,-0.0252783 -0.03506,-0.075835 z"
+                   style="white-space:pre;fill:#af5fd7"
+                   id="path1309" />
+                <path
+                   d="M 90.299872,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.06523,-0.10519043 0.157377,-0.16471679 0.09214,-0.0595264 0.184288,-0.0595264 0.08073,0 0.146777,0.0432178 0.06605,0.0424023 0.09214,0.11171387 0.02691,0.0693115 0.02691,0.27235346 V 1.67 h -0.15167 V 1.142417 q 0,-0.1312842 -0.01305,-0.17287113 -0.01223,-0.0424023 -0.04648,-0.0693115 -0.03343,-0.0269092 -0.07339,-0.0269092 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.18999507 V 1.67 Z"
+                   style="white-space:pre;fill:#af5fd7"
+                   id="path1311" />
+              </g>
+              <path
+                 class="p"
+                 d="m 93.186,0 h 1 v 2.171 h -1 z"
+                 id="path76" />
+              <g
+                 aria-label=""
+                 id="text78"
+                 class="r"
+                 style="white-space:pre;fill:#303030">
+                <path
+                   d="M 94.211808,2.0834228 93.185997,1.0910449 94.211808,0.10029785 Z"
+                   style="white-space:pre;fill:#303030"
+                   id="path1314" />
+              </g>
+              <path
+                 class="s"
+                 d="m 94.188,0 h 25 v 2.171 h -25 z"
+                 id="path80" />
+              <g
+                 aria-label=" master  v0.5.2  "
+                 id="text82"
+                 class="t"
+                 style="white-space:pre;fill:#afd700">
+                <path
+                   d="m 94.443233,1.7246337 q 0.02772,-0.027725 0.02772,-0.066865 0,-0.039956 -0.02772,-0.066865 -0.02773,-0.027725 -0.06768,-0.027725 -0.03914,0 -0.06605,0.027725 -0.02691,0.026909 -0.02691,0.066865 0,0.039141 0.02691,0.066865 0.02691,0.027725 0.06605,0.027725 0.03996,0 0.06768,-0.027725 z m 0,-1.1310009 q 0.02772,-0.0277246 0.02772,-0.0668652 0,-0.0399561 -0.02772,-0.0668652 -0.02773,-0.0277246 -0.06768,-0.0277246 -0.03914,0 -0.06605,0.0277246 -0.02691,0.0269092 -0.02691,0.0668652 0,0.0391406 0.02691,0.0668652 0.02691,0.0269092 0.06605,0.0269092 0.03996,0 0.06768,-0.0269092 z m 0.628696,0.12557617 q 0.02773,-0.0277246 0.02773,-0.0668652 0,-0.0399561 -0.02773,-0.0668652 -0.02691,-0.0277246 -0.06686,-0.0277246 -0.03914,0 -0.06687,0.0277246 -0.02773,0.0269092 -0.02773,0.0668652 0,0.0391406 0.02773,0.0668652 0.02772,0.0269092 0.06687,0.0269092 0.03996,0 0.06686,-0.0269092 z m 0.121499,-0.0668652 q 0,0.0513721 -0.02528,0.0945898 -0.02528,0.0432178 -0.0685,0.0676807 -8.16e-4,0.0733887 -0.01631,0.13536132 -0.01468,0.0611572 -0.03833,0.10600584 -0.02283,0.044033 -0.05953,0.081543 -0.03588,0.036694 -0.06931,0.060342 -0.03343,0.023647 -0.07991,0.044849 -0.04566,0.020386 -0.0791,0.032617 -0.03262,0.011416 -0.07583,0.024463 -0.0024,0.00163 -0.0033,0.00163 -0.053,0.016309 -0.08236,0.027725 -0.02936,0.010601 -0.0579,0.024463 -0.02773,0.013862 -0.03996,0.029355 -0.01223,0.015493 -0.01957,0.035879 -0.0073,0.020386 -0.0073,0.049741 v 0.026094 q 0.0424,0.024463 0.0685,0.068496 0.02609,0.043218 0.02609,0.09459 0,0.078281 -0.05545,0.132915 -0.05545,0.055449 -0.13373,0.055449 -0.07828,0 -0.133731,-0.055449 -0.05463,-0.054634 -0.05463,-0.132915 0,-0.051372 0.02528,-0.09459 0.02609,-0.044033 0.06931,-0.068496 V 0.68903807 q -0.04322,-0.0244629 -0.06931,-0.0676807 -0.02528,-0.0440332 -0.02528,-0.0954053 0,-0.0782812 0.05463,-0.13291503 0.05545,-0.0554492 0.133731,-0.0554492 0.07828,0 0.13373,0.0554492 0.05545,0.0546338 0.05545,0.13291503 0,0.0513721 -0.02609,0.0954053 -0.02609,0.0432178 -0.0685,0.0676807 V 1.1774804 q 0.05056,-0.025278 0.150854,-0.056265 0.04566,-0.014678 0.0742,-0.024463 0.02854,-0.00979 0.06197,-0.025278 0.03425,-0.015493 0.05382,-0.030171 0.02039,-0.015493 0.04159,-0.03751 0.0212,-0.0220166 0.0318,-0.0481103 0.0106,-0.0269092 0.01794,-0.0619727 0.0073,-0.0350635 0.0073,-0.0790967 -0.0424,-0.0244629 -0.0685,-0.0676807 -0.02609,-0.0440332 -0.02609,-0.0945898 0,-0.0782812 0.05545,-0.13373046 0.05545,-0.0554492 0.13373,-0.0554492 0.07828,0 0.132915,0.0554492 0.05545,0.0554492 0.05545,0.13373046 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path1317" />
+                <path
+                   d="M 96.255118,1.67 V 0.75916502 h 0.132915 v 0.20874999 q 0.06279,-0.13291503 0.116606,-0.18347167 0.05463,-0.0505566 0.110083,-0.0505566 0.06605,0 0.106006,0.0521875 0.04077,0.0513721 0.04077,0.14677734 v 0.0489258 q 0.02691,-0.0831738 0.06442,-0.1345459 0.03833,-0.0521875 0.0791,-0.0823584 0.04077,-0.0309863 0.09377,-0.0309863 0.05871,0 0.100297,0.0497412 0.04159,0.0497412 0.04159,0.19814941 V 1.67 H 97.007759 V 1.0478271 q 0,-0.0766504 -0.0049,-0.10437498 -0.0049,-0.02854 -0.01957,-0.0432178 -0.01468,-0.0146777 -0.0318,-0.0146777 -0.0424,0 -0.09133,0.0652344 Q 96.812056,1.0152099 96.7615,1.165249 V 1.67 H 96.634293 V 1.0486426 q 0,-0.12068364 -0.02365,-0.14188481 -0.02365,-0.0212012 -0.0424,-0.0212012 -0.04159,0 -0.0897,0.0725732 -0.04729,0.0725732 -0.09051,0.18591794 V 1.67 Z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path1319" />
+                <path
+                   d="m 97.923487,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.114161,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101114,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152485 V 1.402539 q 0,0.1647168 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234029,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path1321" />
+                <path
+                   d="M 98.33691,1.6218896 V 1.46125 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114975,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.16961,-0.06605 -0.213643,-0.1223144 -0.04485,-0.055449 -0.04485,-0.13536133 0,-0.11252929 0.08644,-0.18510253 0.08725,-0.0725732 0.282139,-0.0725732 0.145961,0 0.27643,0.0424023 v 0.13780762 q -0.150039,-0.0538184 -0.282139,-0.0538184 -0.09622,0 -0.150854,0.034248 -0.05382,0.0334326 -0.05382,0.0839893 0,0.0489258 0.0473,0.0782812 0.04648,0.029355 0.151669,0.067681 l 0.102745,0.03751 q 0.141069,0.051372 0.198149,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path1323" />
+                <path
+                   d="m 100.08927,1.6333056 q -0.106823,0.044849 -0.154933,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084521 -0.03996,-0.071758 -0.03996,-0.2217969 V 0.96139158 h -0.227504 v -0.1263916 h 0.227504 V 0.46805663 h 0.15167 v 0.36694335 h 0.405269 v 0.1263916 H 99.658721 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231584,-0.069311 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path1325" />
+                <path
+                   d="m 101.08654,1.6096582 q -0.18184,0.086436 -0.34411,0.086436 -0.12313,0 -0.22017,-0.061157 -0.097,-0.061157 -0.15575,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.0554,-0.23973636 0.0555,-0.11497558 0.15493,-0.1785791 0.0995,-0.0644189 0.2218,-0.0644189 0.16227,0 0.26012,0.11579101 0.0987,0.11579102 0.0987,0.35715819 v 0.032617 h -0.62789 q 0,0.09459 0.0392,0.1728711 0.0399,0.078281 0.10437,0.1174219 0.0644,0.039141 0.14678,0.039141 0.14677,0 0.32454,-0.097852 z m -0.60587,-0.4835498 h 0.4542 v -0.022017 q 0,-0.1117139 -0.0546,-0.1777637 -0.0546,-0.0660498 -0.14596,-0.0660498 -0.0921,0 -0.15982,0.0676807 -0.0669,0.0668652 -0.0938,0.19814944 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path1327" />
+                <path
+                   d="M 101.40782,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.0709,-0.1125293 0.16227,-0.16797851 0.0921,-0.0562647 0.20467,-0.0562647 0.0824,0 0.16472,0.0252783 V 1.0877832 h -0.14596 V 0.87984861 q -0.0383,-0.006523 -0.0603,-0.006523 -0.0848,0 -0.16634,0.0668652 -0.0816,0.0668652 -0.15901,0.20059569 V 1.67 Z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path1329" />
+                <path
+                   d="m 103.49939,0.88311033 q 0.0228,-0.022832 0.0228,-0.0546338 0,-0.0326172 -0.0228,-0.0554492 -0.022,-0.022832 -0.0546,-0.022832 -0.0318,0 -0.0546,0.022832 -0.0228,0.022832 -0.0228,0.0554492 0,0.0318018 0.0228,0.0546338 0.0228,0.0220166 0.0546,0.0220166 0.0326,0 0.0546,-0.0220166 z m 0.66703,0.29273927 q 0,0.031802 -0.022,0.054634 l -0.29682,0.2968164 q -0.0228,0.022017 -0.0546,0.022017 -0.0326,0 -0.0546,-0.022017 L 103.30614,1.095122 q -0.0228,-0.022832 -0.0391,-0.061157 -0.0155,-0.0383252 -0.0155,-0.0709424 V 0.7118701 q 0,-0.0318018 0.0228,-0.0546338 0.0228,-0.022832 0.0546,-0.022832 h 0.25115 q 0.0326,0 0.0709,0.0163086 0.0383,0.0154932 0.0612,0.0383252 l 0.43218,0.43136233 q 0.022,0.023647 0.022,0.055449 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path1331" />
+                <path
+                   d="m 105.63827,1.67 -0.39549,-0.91083498 h 0.16635 l 0.31231,0.72083978 0.31883,-0.72083978 h 0.15167 L 105.7932,1.67 Z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path1333" />
+                <path
+                   d="m 106.7179,0.36694335 q 0.21608,0 0.32943,0.18184082 0.11334,0.18102538 0.11334,0.48844233 0,0.3082324 -0.11334,0.4900733 -0.11335,0.1810254 -0.32943,0.1810254 -0.21528,0 -0.32944,-0.1810254 -0.11334,-0.1818409 -0.11334,-0.4900733 0,-0.30741695 0.11334,-0.48844233 0.11416,-0.18184082 0.32944,-0.18184082 z m -0.24708,0.94100585 0.43789,-0.68577636 q -0.0416,-0.075835 -0.0905,-0.10192871 -0.0481,-0.0269092 -0.10029,-0.0269092 -0.13618,0 -0.20712,0.15166992 -0.0709,0.15085448 -0.0709,0.38325193 0,0.053003 0.003,0.1141602 0.003,0.061157 0.0277,0.1655322 z m 0.49252,-0.53492188 -0.43462,0.68985348 q 0.0351,0.059526 0.0807,0.089697 0.0457,0.029355 0.10193,0.029355 0.15493,0 0.22017,-0.1728711 0.0652,-0.1736866 0.0652,-0.3848828 0,-0.13046879 -0.0334,-0.25115238 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path1335" />
+                <path
+                   d="m 107.71924,1.7083252 q -0.0546,0 -0.0938,-0.039141 -0.0391,-0.039141 -0.0391,-0.093774 0,-0.055449 0.0391,-0.093774 0.04,-0.039141 0.0938,-0.039141 0.0538,0 0.093,0.039141 0.04,0.038325 0.04,0.093774 0,0.054634 -0.0391,0.093774 -0.0391,0.039141 -0.0938,0.039141 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path1337" />
+                <path
+                   d="M 108.37322,1.0119482 V 0.40445311 h 0.70861 v 0.14596191 h -0.55694 V 0.8602783 h 0.0261 q 0.27317,0 0.42076,0.11416015 0.1476,0.11416015 0.1476,0.30741695 0,0.1223145 -0.0595,0.2193506 -0.0595,0.097036 -0.16798,0.1524854 -0.10845,0.054634 -0.23077,0.054634 -0.12231,0 -0.31312,-0.059526 V 1.4832666 q 0.0693,0.03751 0.15493,0.061973 0.0856,0.023648 0.15819,0.023648 0.0726,0 0.14189,-0.035063 0.0693,-0.035064 0.10764,-0.1019287 0.0383,-0.067681 0.0383,-0.1378076 0,-0.1182373 -0.10519,-0.1997803 -0.10437,-0.082358 -0.37183,-0.082358 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path1339" />
+                <path
+                   d="m 109.72194,1.7083252 q -0.0546,0 -0.0938,-0.039141 -0.0391,-0.039141 -0.0391,-0.093774 0,-0.055449 0.0391,-0.093774 0.04,-0.039141 0.0938,-0.039141 0.0538,0 0.093,0.039141 0.04,0.038325 0.04,0.093774 0,0.054634 -0.0391,0.093774 -0.0391,0.039141 -0.0938,0.039141 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path1341" />
+                <path
+                   d="m 111.1098,1.67 h -0.76569 V 1.5305615 q 0,-0.053818 0.022,-0.1149756 0.022,-0.061973 0.084,-0.138623 0.062,-0.07665 0.13128,-0.1475928 l 0.0864,-0.088066 q 0.0261,-0.026909 0.11416,-0.12476075 0.0881,-0.0978516 0.11579,-0.15003906 0.0285,-0.0521875 0.0285,-0.10274414 0,-0.081543 -0.0652,-0.12557617 -0.0652,-0.0448486 -0.14677,-0.0448486 -0.0465,0 -0.10438,0.0106006 -0.0571,0.0106006 -0.1003,0.0252783 -0.0432,0.0138623 -0.14025,0.0578955 v -0.1345459 q 0.10274,-0.0489258 0.20549,-0.0668652 0.10356,-0.0187549 0.17042,-0.0187549 0.0987,0 0.18103,0.0326172 0.0832,0.0318017 0.12313,0.0994824 0.0408,0.0676807 0.0408,0.14433105 0,0.0856201 -0.0522,0.17531738 -0.0514,0.0896973 -0.19489,0.23076661 l -0.0929,0.092143 -0.0783,0.07665 q -0.0742,0.07502 -0.11986,0.1451465 -0.0457,0.070127 -0.0506,0.1671631 h 0.60831 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path1343" />
+                <path
+                   d="M 112.8116,1.4058007 V 1.2802246 q 0,-0.00897 -0.006,-0.014678 -0.006,-0.00652 -0.0155,-0.00652 h -0.12476 q -0.01,0 -0.0155,0.00652 -0.006,0.00571 -0.006,0.014678 v 0.1255761 q 0,0.00979 0.006,0.015493 0.006,0.00571 0.0155,0.00571 h 0.12476 q 0.01,0 0.0155,-0.00571 0.006,-0.00571 0.006,-0.015493 z m 0.16798,-0.43951655 q 0,-0.0570801 -0.0359,-0.10600585 -0.0359,-0.0497412 -0.0905,-0.0766504 -0.0546,-0.0269092 -0.11172,-0.0269092 -0.159,0 -0.24299,0.13943847 -0.004,0.007339 -0.002,0.0154932 0.002,0.007339 0.007,0.0122314 l 0.0872,0.0652344 q 0.004,0.004077 0.0114,0.004077 0.0106,0 0.0171,-0.008154 0.0351,-0.0448486 0.0563,-0.0603418 0.0212,-0.0154932 0.0554,-0.0154932 0.0318,0 0.0563,0.017124 0.0245,0.017124 0.0245,0.0383252 0,0.0252783 -0.0139,0.0407715 -0.0131,0.014678 -0.044,0.02854 -0.0408,0.01957 -0.075,0.057896 -0.0343,0.03751 -0.0343,0.080728 v 0.023647 q 0,0.00897 0.006,0.015493 0.006,0.00571 0.0155,0.00571 h 0.12476 q 0.01,0 0.0155,-0.00571 0.006,-0.00652 0.006,-0.015493 0,-0.012231 0.0139,-0.031802 0.0147,-0.020386 0.0367,-0.032617 0.0171,-0.00979 0.0261,-0.015493 0.009,-0.00571 0.0253,-0.017124 0.0171,-0.012231 0.0261,-0.023647 0.01,-0.012231 0.0196,-0.027725 0.0106,-0.016309 0.0155,-0.036694 0.005,-0.0212012 0.005,-0.0448486 z m 0.2112,-0.0693115 q 0.0399,0.092959 0.0399,0.19570317 0,0.1019287 -0.0399,0.1948876 -0.04,0.092959 -0.10683,0.1606397 -0.0669,0.066865 -0.15982,0.1068213 -0.093,0.039956 -0.1957,0.039956 -0.10275,0 -0.19571,-0.039956 -0.093,-0.039956 -0.16064,-0.1068213 -0.0669,-0.067681 -0.10682,-0.1606397 -0.04,-0.092959 -0.04,-0.1948876 0,-0.10274418 0.04,-0.19570317 0.04,-0.0937744 0.10682,-0.16063964 0.0677,-0.0676807 0.16064,-0.10763672 0.093,-0.039956 0.19571,-0.039956 0.10274,0 0.1957,0.039956 0.093,0.0399561 0.15982,0.10763672 0.0669,0.0668652 0.10683,0.16063964 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path1345" />
+                <path
+                   d="m 114.6137,1.1970508 q 0.007,0.025278 0.007,0.049741 0,0.023647 -0.007,0.049741 -0.007,0.025278 -0.0261,0.045664 -0.0188,0.020386 -0.044,0.020386 -0.0253,0 -0.044,-0.020386 -0.0179,-0.020386 -0.0253,-0.045664 -0.007,-0.026094 -0.007,-0.049741 0,-0.024463 0.007,-0.049741 0.007,-0.025278 0.0253,-0.045664 0.0188,-0.020386 0.044,-0.020386 0.0253,0 0.044,0.020386 0.0187,0.020386 0.0261,0.045664 z m 0.38652,0 q 0.007,0.025278 0.007,0.049741 0,0.023647 -0.007,0.049741 -0.007,0.025278 -0.0261,0.045664 -0.0179,0.020386 -0.0432,0.020386 -0.0253,0 -0.044,-0.020386 -0.0187,-0.020386 -0.0269,-0.045664 -0.007,-0.026094 -0.007,-0.049741 0,-0.024463 0.007,-0.049741 0.008,-0.025278 0.0269,-0.045664 0.0188,-0.020386 0.044,-0.020386 0.0253,0 0.0432,0.020386 0.0188,0.020386 0.0261,0.045664 z m 0.10437,0.049741 q 0,-0.072573 -0.0424,-0.1231299 -0.0416,-0.051372 -0.11253,-0.051372 -0.0139,0 -0.031,0.00163 -0.0163,0.00163 -0.0277,0.00326 -0.0106,8.154e-4 -0.0302,0.00408 -0.0196,0.00326 -0.0285,0.00408 -0.0457,0.00652 -0.0954,0.00652 -0.0497,0 -0.0946,-0.00652 -0.009,-8.154e-4 -0.0285,-0.00408 -0.0196,-0.00326 -0.031,-0.00408 -0.0106,-0.00163 -0.0277,-0.00326 -0.0163,-0.00163 -0.0302,-0.00163 -0.0709,0 -0.11334,0.051372 -0.0416,0.050557 -0.0416,0.1231299 0,0.053003 0.0187,0.092959 0.0196,0.039141 0.0498,0.061973 0.0302,0.022017 0.0734,0.035879 0.044,0.013862 0.084,0.018755 0.0408,0.00408 0.0905,0.00408 h 0.10192 q 0.0498,0 0.0897,-0.00408 0.0408,-0.00489 0.084,-0.018755 0.044,-0.013862 0.0742,-0.035879 0.0302,-0.022832 0.0489,-0.061973 0.0196,-0.039956 0.0196,-0.092959 z m 0.13536,-0.1068213 q 0,0.1239453 -0.0367,0.1997802 -0.0228,0.04648 -0.0644,0.080728 -0.0408,0.033433 -0.0848,0.051372 -0.044,0.017939 -0.10274,0.029356 -0.0587,0.010601 -0.10437,0.013862 -0.0448,0.00245 -0.1003,0.00245 -0.0342,0 -0.0636,-8.154e-4 -0.0285,-0.00163 -0.066,-0.00408 -0.0375,-0.00326 -0.0693,-0.00815 -0.031,-0.00571 -0.0669,-0.014678 -0.0351,-0.00897 -0.0644,-0.022017 -0.0294,-0.013862 -0.0571,-0.030986 -0.0277,-0.017124 -0.0497,-0.041587 -0.022,-0.025278 -0.0375,-0.055449 -0.0375,-0.074204 -0.0375,-0.1997802 0,-0.14351565 0.0815,-0.23892092 -0.0155,-0.0472949 -0.0155,-0.10274414 0,-0.070127 0.031,-0.1320996 0.0652,0 0.11416,0.0244629 0.0498,0.0236475 0.11416,0.0742041 0.0905,-0.0212012 0.18674,-0.0212012 0.0881,0 0.16961,0.0195703 0.031,-0.0244629 0.053,-0.0391406 0.0228,-0.0154932 0.0514,-0.0293555 0.0285,-0.0146777 0.0579,-0.0212012 0.0302,-0.007339 0.0644,-0.007339 0.031,0.0619726 0.031,0.1320996 0,0.0530029 -0.0163,0.10111328 0.0824,0.0970361 0.0824,0.24055178 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path1347" />
+              </g>
+              <g
+                 aria-label="advanced_network"
+                 id="text84"
+                 class="u"
+                 style="font-weight:700;white-space:pre;fill:#71bef2">
+                <path
+                   d="m 0.72491697,3.6363272 q -0.0693115,0.1141602 -0.16716308,0.1720557 -0.0970361,0.057896 -0.1785791,0.057896 -0.11416015,0 -0.20548827,-0.098667 -0.09051269,-0.098667 -0.09051269,-0.2992627 0,-0.1581933 0.06034179,-0.2821386 0.0603418,-0.1247608 0.16145508,-0.1965186 0.10111327,-0.072573 0.2503369,-0.072573 0.0432178,0 0.13046875,0.00897 0.0130469,0.00163 0.0391406,0.00408 h 0.15248535 v 0.643374 q 0,0.1647168 0.0342481,0.267461 H 0.75345701 q -0.0179394,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 3.0655265 q -0.0807275,-0.021201 -0.15003906,-0.021201 -0.1402539,0 -0.23402831,0.1084521 -0.092959,0.1084522 -0.092959,0.2951856 0,0.1353613 0.0505566,0.2046728 0.0513721,0.068496 0.11660644,0.068496 0.0709424,0 0.1565625,-0.071758 0.0856201,-0.071758 0.15330077,-0.1932568 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1350" />
+                <path
+                   d="m 1.7360498,3.6363272 q -0.069311,0.1141602 -0.1671631,0.1720557 -0.097036,0.057896 -0.1785791,0.057896 -0.1141601,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304688,0.00897 0.013047,0.00163 0.039141,0.00408 V 2.5248966 H 1.8885351 V 3.8410001 H 1.7360498 Z m 0,-0.1802099 V 3.0655265 q -0.080728,-0.021201 -0.1500391,-0.021201 -0.1402539,0 -0.2340283,0.1084521 -0.092959,0.1084522 -0.092959,0.2951856 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166064,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1352" />
+                <path
+                   d="M 2.4250879,3.8410001 2.0296045,2.9301651 H 2.1959522 L 2.5082617,3.651005 2.8270947,2.9301651 h 0.1516699 l -0.3987451,0.910835 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1354" />
+                <path
+                   d="m 3.7289601,3.6363272 q -0.069311,0.1141602 -0.1671631,0.1720557 -0.097036,0.057896 -0.1785791,0.057896 -0.1141602,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304688,0.00897 0.013047,0.00163 0.039141,0.00408 h 0.1524853 v 0.643374 q 0,0.1647168 0.034248,0.267461 H 3.7575001 q -0.017939,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 3.0655265 q -0.080728,-0.021201 -0.1500391,-0.021201 -0.1402539,0 -0.2340283,0.1084521 -0.092959,0.1084522 -0.092959,0.2951856 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166064,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1356" />
+                <path
+                   d="m 4.1317822,3.8410001 v -0.910835 h 0.15167 V 3.12913 q 0.065234,-0.1051904 0.1573779,-0.1647168 0.092143,-0.059526 0.1842871,-0.059526 0.080728,0 0.1467773,0.043218 0.06605,0.042402 0.092144,0.1117139 0.026909,0.069311 0.026909,0.2723535 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.013047,-0.1728711 -0.012231,-0.042402 -0.046479,-0.069311 -0.033433,-0.026909 -0.073389,-0.026909 -0.079912,0 -0.1720557,0.075835 -0.091328,0.075835 -0.1508544,0.1899951 v 0.5308447 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1358" />
+                <path
+                   d="m 5.8996337,3.8149063 q -0.1524854,0.051372 -0.290293,0.051372 -0.1369922,0 -0.2438135,-0.062788 Q 5.2595214,3.7398868 5.199995,3.6322501 5.1404687,3.5237979 5.1404687,3.3859903 q 0,-0.2071191 0.1345458,-0.3441113 0.1353614,-0.1369922 0.3261719,-0.1369922 0.1410693,0 0.2984473,0.053003 v 0.1459619 q -0.1590088,-0.072573 -0.284585,-0.072573 -0.083174,0 -0.1565625,0.041587 -0.073389,0.040771 -0.1133447,0.1280225 -0.039956,0.087251 -0.039956,0.1793945 0,0.1231299 0.07665,0.2348438 0.077466,0.1117138 0.2421826,0.1117138 0.049741,0 0.097852,-0.00652 0.04811,-0.00734 0.1777637,-0.051372 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1360" />
+                <path
+                   d="m 6.892012,3.7806583 q -0.1818409,0.086436 -0.3441114,0.086436 -0.1231298,0 -0.220166,-0.061157 -0.097036,-0.061157 -0.155747,-0.1745019 -0.057895,-0.1141602 -0.057895,-0.2438135 0,-0.1247608 0.055449,-0.2397363 0.055449,-0.1149756 0.1549316,-0.1785791 0.099482,-0.064419 0.2217969,-0.064419 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.3571582 v 0.032617 H 6.277178 q 0,0.09459 0.039141,0.1728711 0.039956,0.078281 0.104375,0.1174219 0.064419,0.039141 0.1467774,0.039141 0.1467773,0 0.324541,-0.097852 z M 6.2861477,3.2971085 H 6.740342 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.06605 -0.145962,-0.06605 -0.092143,0 -0.1598242,0.067681 -0.066865,0.066865 -0.093774,0.1981494 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1362" />
+                <path
+                   d="m 7.7441359,3.6363272 q -0.069311,0.1141602 -0.1671631,0.1720557 -0.097036,0.057896 -0.1785791,0.057896 -0.1141602,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304688,0.00897 0.013047,0.00163 0.039141,0.00408 V 2.5248966 H 7.8966212 V 3.8410001 H 7.7441359 Z m 0,-0.1802099 V 3.0655265 q -0.080728,-0.021201 -0.1500391,-0.021201 -0.1402539,0 -0.2340283,0.1084521 -0.092959,0.1084522 -0.092959,0.2951856 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166064,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1364" />
+                <path
+                   d="M 8.0686768,3.9673917 V 3.8410001 h 0.8855566 v 0.1263916 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1366" />
+                <path
+                   d="M 9.1385204,3.8410001 V 2.9301651 H 9.2901903 V 3.12913 q 0.065234,-0.1051904 0.157378,-0.1647168 0.092143,-0.059526 0.1842871,-0.059526 0.080728,0 0.1467773,0.043218 0.06605,0.042402 0.092144,0.1117139 0.026909,0.069311 0.026909,0.2723535 V 3.8410001 H 9.7460155 v -0.527583 q 0,-0.1312842 -0.013047,-0.1728711 -0.012232,-0.042402 -0.04648,-0.069311 -0.033433,-0.026909 -0.073389,-0.026909 -0.079912,0 -0.1720557,0.075835 -0.091328,0.075835 -0.1508545,0.1899951 v 0.5308447 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1368" />
+                <path
+                   d="m 10.897402,3.7806583 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247608 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 10.291538,3.2971085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1370" />
+                <path
+                   d="m 11.902827,3.8043057 q -0.106821,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 Q 11.32061,3.6493741 11.32061,3.499335 V 3.1323917 H 11.093105 V 3.0060001 H 11.32061 V 2.6390568 h 0.15167 v 0.3669433 h 0.405269 V 3.1323917 H 11.47228 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069311 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1372" />
+                <path
+                   d="m 12.180889,3.8410001 -0.148408,-0.910835 h 0.141069 l 0.08644,0.5544922 0.02283,0.1288379 0.02202,-0.1288379 0.145146,-0.5544922 h 0.136177 l 0.163901,0.5544922 0.02854,0.1288379 0.01876,-0.1288379 0.08725,-0.5544922 h 0.116606 l -0.147592,0.910835 h -0.141885 l -0.174502,-0.586294 -0.02773,-0.1288378 h -0.0041 l -0.02528,0.1280224 -0.15167,0.5871094 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1374" />
+                <path
+                   d="m 13.519009,3.8662784 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369921 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194888,0 0.31231,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449267 -0.117422,0.1361768 -0.31231,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1376" />
+                <path
+                   d="m 14.222725,3.8410001 v -0.910835 h 0.15167 V 3.12913 q 0.07094,-0.1125293 0.16227,-0.1679785 0.09214,-0.056265 0.204673,-0.056265 0.08236,0 0.164717,0.025278 V 3.2587833 H 14.760093 V 3.0508487 q -0.03832,-0.00652 -0.06034,-0.00652 -0.0848,0 -0.166347,0.066865 -0.08154,0.066865 -0.159009,0.2005957 v 0.5292139 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1378" />
+                <path
+                   d="M 15.187378,3.8410001 V 2.5248966 h 0.15167 v 0.8268457 l 0.437886,-0.4215772 h 0.202226 l -0.43707,0.4215772 0.448486,0.4892578 h -0.20875 L 15.339048,3.3517423 v 0.4892578 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1380" />
+              </g>
+              <g
+                 aria-label="catchall"
+                 id="text86"
+                 class="u"
+                 style="font-weight:700;white-space:pre;fill:#71bef2">
+                <path
+                   d="m 0.89289548,5.9859063 q -0.15248534,0.051372 -0.29029296,0.051372 -0.13699218,0 -0.24381347,-0.062788 Q 0.2527832,5.9108868 0.19325683,5.8032501 0.13373047,5.6947979 0.13373047,5.5569903 q 0,-0.2071191 0.13454589,-0.3441113 0.13536132,-0.1369922 0.32617187,-0.1369922 0.14106933,0 0.29844725,0.053003 V 5.2748517 Q 0.7338867,5.2022784 0.60831053,5.2022784 q -0.0831738,0 -0.15656249,0.041587 -0.0733887,0.040771 -0.11334473,0.1280225 -0.0399561,0.087251 -0.0399561,0.1793945 0,0.1231299 0.0766504,0.2348438 0.0774658,0.1117138 0.24218261,0.1117138 0.0497412,0 0.0978516,-0.00652 0.0481104,-0.00734 0.17776366,-0.051372 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1383" />
+                <path
+                   d="m 1.7262646,5.8073272 q -0.069311,0.1141602 -0.167163,0.1720557 -0.097036,0.057895 -0.1785791,0.057895 -0.1141602,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011132,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304687,0.00897 0.013047,0.00163 0.039141,0.00408 H 1.87875 v 0.6433741 q 0,0.1647167 0.034248,0.2674609 H 1.7548047 q -0.017939,-0.075019 -0.02854,-0.2046729 z m 0,-0.1802099 V 5.2365265 q -0.080727,-0.021201 -0.150039,-0.021201 -0.1402539,0 -0.2340283,0.1084521 -0.092959,0.1084522 -0.092959,0.2951856 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166065,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533007,-0.1932568 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1385" />
+                <path
+                   d="m 2.8906982,5.9753057 q -0.1068213,0.044849 -0.1549316,0.053003 -0.04811,0.00897 -0.092959,0.00897 -0.095405,0 -0.1745019,-0.036694 Q 2.389209,5.9638897 2.3484375,5.8921319 2.3084814,5.8203741 2.3084814,5.6703351 V 5.3033917 H 2.0809766 V 5.1770001 H 2.3084814 V 4.8100568 h 0.15167 V 5.1770001 H 2.8654199 V 5.3033917 H 2.4601514 v 0.3644971 q 0,0.110083 0.026094,0.155747 0.026094,0.044849 0.069311,0.06605 0.044033,0.021201 0.1035596,0.021201 0.110083,0 0.231582,-0.069312 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1387" />
+                <path
+                   d="m 3.8969386,5.9859063 q -0.1524854,0.051372 -0.290293,0.051372 -0.1369922,0 -0.2438134,-0.062788 Q 3.2568263,5.9108868 3.1972999,5.8032501 3.1377736,5.6947979 3.1377736,5.5569903 q 0,-0.2071191 0.1345459,-0.3441113 0.1353613,-0.1369922 0.3261718,-0.1369922 0.1410694,0 0.2984473,0.053003 v 0.1459619 q -0.1590088,-0.072573 -0.284585,-0.072573 -0.083174,0 -0.1565625,0.041587 -0.073389,0.040771 -0.1133447,0.1280225 -0.039956,0.087251 -0.039956,0.1793945 0,0.1231299 0.07665,0.2348438 0.077466,0.1117138 0.2421827,0.1117138 0.049741,0 0.097851,-0.00652 0.04811,-0.00734 0.1777637,-0.051372 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1389" />
+                <path
+                   d="M 4.1317822,6.0120001 V 4.6958966 h 0.15167 V 5.30013 q 0.065234,-0.1051904 0.1573779,-0.1647168 0.092143,-0.059526 0.1842871,-0.059526 0.077466,0 0.1410693,0.039956 0.064419,0.039141 0.089697,0.095405 0.020386,0.043218 0.027725,0.092143 0.00734,0.04811 0.00734,0.1997803 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.013047,-0.1728711 -0.012231,-0.042402 -0.046479,-0.069311 -0.033433,-0.026909 -0.073389,-0.026909 -0.079912,0 -0.1720557,0.075835 -0.091328,0.075835 -0.1508544,0.1899951 v 0.5308447 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1391" />
+                <path
+                   d="m 5.7316552,5.8073272 q -0.069312,0.1141602 -0.1671631,0.1720557 -0.097036,0.057895 -0.1785791,0.057895 -0.1141602,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304687,0.00897 0.013047,0.00163 0.039141,0.00408 h 0.1524853 v 0.6433741 q 0,0.1647167 0.034248,0.2674609 H 5.7601952 q -0.017939,-0.075019 -0.02854,-0.2046729 z m 0,-0.1802099 V 5.2365265 q -0.080728,-0.021201 -0.1500391,-0.021201 -0.1402539,0 -0.2340283,0.1084521 -0.092959,0.1084522 -0.092959,0.2951856 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166065,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1393" />
+                <path
+                   d="M 6.3791067,6.0120001 V 4.8231036 H 6.1067532 v -0.127207 h 0.4240234 v 1.1897119 h 0.284585 v 0.1263916 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1395" />
+                <path
+                   d="M 7.3804542,6.0120001 V 4.8231036 H 7.1081007 v -0.127207 h 0.4240235 v 1.1897119 h 0.2845849 v 0.1263916 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1397" />
+              </g>
+              <g
+                 aria-label="duatack_network"
+                 id="text88"
+                 class="u"
+                 style="font-weight:700;white-space:pre;fill:#71bef2">
+                <path
+                   d="m 0.73470213,7.9783268 q -0.0693115,0.1141601 -0.16716308,0.1720556 -0.0970361,0.057896 -0.1785791,0.057896 -0.11416015,0 -0.20548828,-0.098667 -0.09051269,-0.098667 -0.09051269,-0.2992626 0,-0.1581934 0.0603418,-0.2821387 0.0603418,-0.1247608 0.16145507,-0.1965186 0.10111328,-0.072573 0.25033691,-0.072573 0.0432178,0 0.13046875,0.00897 0.0130469,0.00163 0.0391406,0.00408 V 6.8668961 H 0.88718748 V 8.1829996 H 0.73470213 Z m 0,-0.18021 V 7.407526 q -0.0807275,-0.021201 -0.15003906,-0.021201 -0.1402539,0 -0.23402831,0.1084522 -0.092959,0.1084521 -0.092959,0.2951855 0,0.1353613 0.0505566,0.2046729 0.0513721,0.068496 0.11660645,0.068496 0.0709424,0 0.15656249,-0.071758 0.0856201,-0.071758 0.15330078,-0.1932568 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1400" />
+                <path
+                   d="M 1.8771191,7.2721647 V 8.1829996 H 1.7254492 V 7.9832193 q -0.073389,0.1125293 -0.1630859,0.168794 -0.089697,0.056265 -0.1793946,0.056265 -0.079912,0 -0.1467773,-0.042402 -0.06605,-0.043218 -0.092144,-0.1125293 -0.026094,-0.070127 -0.026094,-0.2723535 V 7.2721647 H 1.269624 v 0.527583 q 0,0.1312841 0.012231,0.1736865 0.013047,0.041587 0.04648,0.068496 0.034248,0.026909 0.073389,0.026909 0.079912,0 0.1712403,-0.07502 0.092143,-0.075835 0.1524853,-0.1908105 V 7.2721647 Z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1402" />
+                <path
+                   d="m 2.7276123,7.9783268 q -0.069311,0.1141601 -0.1671631,0.1720556 -0.097036,0.057896 -0.1785791,0.057896 -0.1141601,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992626 0,-0.1581934 0.060342,-0.2821387 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304688,0.00897 0.013047,0.00163 0.039141,0.00408 h 0.1524853 v 0.643374 q 0,0.1647168 0.034248,0.2674609 H 2.7561523 q -0.017939,-0.075019 -0.02854,-0.2046728 z m 0,-0.18021 V 7.407526 q -0.080728,-0.021201 -0.1500391,-0.021201 -0.1402539,0 -0.2340283,0.1084522 -0.092959,0.1084521 -0.092959,0.2951855 0,0.1353613 0.050557,0.2046729 0.051372,0.068496 0.1166064,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1404" />
+                <path
+                   d="m 3.892046,8.1463053 q -0.1068213,0.044849 -0.1549316,0.053003 -0.04811,0.00897 -0.092959,0.00897 -0.095405,0 -0.174502,-0.036694 Q 3.3905568,8.1348893 3.3497853,8.0631314 3.3098292,7.9913736 3.3098292,7.8413346 V 7.4743912 H 3.0823244 V 7.3479996 H 3.3098292 V 6.9810563 H 3.4614991 V 7.3479996 H 3.8667677 V 7.4743912 H 3.4614991 v 0.3644971 q 0,0.110083 0.026094,0.1557471 0.026094,0.044849 0.069311,0.06605 0.044033,0.021201 0.1035596,0.021201 0.110083,0 0.231582,-0.069312 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1406" />
+                <path
+                   d="m 4.7303076,7.9783268 q -0.069311,0.1141601 -0.1671631,0.1720556 -0.097036,0.057896 -0.1785791,0.057896 -0.1141601,0 -0.2054882,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992626 0,-0.1581934 0.060342,-0.2821387 0.060342,-0.1247608 0.161455,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304688,0.00897 0.013047,0.00163 0.039141,0.00408 H 4.882793 v 0.643374 q 0,0.1647168 0.034248,0.2674609 H 4.7588477 q -0.017939,-0.075019 -0.02854,-0.2046728 z m 0,-0.18021 V 7.407526 q -0.080728,-0.021201 -0.150039,-0.021201 -0.1402539,0 -0.2340284,0.1084522 -0.092959,0.1084521 -0.092959,0.2951855 0,0.1353613 0.050557,0.2046729 0.051372,0.068496 0.1166064,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1408" />
+                <path
+                   d="m 5.8996337,8.1569059 q -0.1524854,0.051372 -0.290293,0.051372 -0.1369922,0 -0.2438135,-0.062788 Q 5.2595214,8.0818863 5.199995,7.9742496 5.1404687,7.8657975 5.1404687,7.7279899 q 0,-0.2071192 0.1345458,-0.3441114 0.1353614,-0.1369921 0.3261719,-0.1369921 0.1410693,0 0.2984473,0.053003 V 7.4458512 Q 5.7406249,7.373278 5.6150487,7.373278 q -0.083174,0 -0.1565625,0.041587 -0.073389,0.040771 -0.1133447,0.1280224 -0.039956,0.087251 -0.039956,0.1793945 0,0.1231299 0.07665,0.2348438 0.077466,0.1117139 0.2421826,0.1117139 0.049741,0 0.097852,-0.00652 0.04811,-0.00734 0.1777637,-0.051372 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1410" />
+                <path
+                   d="M 6.1752493,8.1829996 V 6.8668961 H 6.3269192 V 7.6937418 L 6.7648049,7.2721647 H 6.9670315 L 6.5299612,7.6937418 6.9784475,8.1829996 h -0.20875 L 6.3269192,7.6937418 v 0.4892578 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1412" />
+                <path
+                   d="M 7.0673293,8.3093912 V 8.1829996 h 0.8855566 v 0.1263916 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1414" />
+                <path
+                   d="M 8.1371729,8.1829996 V 7.2721647 h 0.1516699 v 0.1989648 q 0.065234,-0.1051904 0.1573779,-0.1647168 0.092144,-0.059526 0.1842871,-0.059526 0.080728,0 0.1467774,0.043218 0.06605,0.042402 0.092144,0.1117139 0.026909,0.069312 0.026909,0.2723535 V 8.1829996 H 8.744668 v -0.527583 q 0,-0.1312842 -0.013047,-0.1728711 -0.012231,-0.042402 -0.04648,-0.069311 -0.033433,-0.026909 -0.073389,-0.026909 -0.079912,0 -0.1720557,0.075835 -0.091328,0.075835 -0.1508545,0.1899951 v 0.5308447 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1416" />
+                <path
+                   d="m 9.8960546,8.1226578 q -0.1818408,0.086436 -0.3441113,0.086436 -0.1231299,0 -0.220166,-0.061157 Q 9.2347411,8.0867789 9.1760302,7.9734342 9.1181347,7.859274 9.1181347,7.7296207 q 0,-0.1247607 0.055449,-0.2397363 0.055449,-0.1149756 0.1549316,-0.1785791 0.099483,-0.064419 0.2217969,-0.064419 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.3571582 v 0.032617 H 9.2812206 q 0,0.09459 0.039141,0.1728711 0.039956,0.078281 0.104375,0.1174219 0.064419,0.039141 0.1467774,0.039141 0.1467773,0 0.324541,-0.097852 z M 9.2901903,7.639108 h 0.4541944 v -0.022017 q 0,-0.1117138 -0.054634,-0.1777636 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.067681 -0.066865,0.066865 -0.093774,0.1981494 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1418" />
+                <path
+                   d="m 10.901479,8.1463053 q -0.106821,0.044849 -0.154931,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 7.4743912 H 10.091758 V 7.3479996 h 0.227504 V 6.9810563 h 0.15167 v 0.3669433 h 0.405269 v 0.1263916 h -0.405269 v 0.3644971 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069312 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1420" />
+                <path
+                   d="M 11.179541,8.1829996 11.031133,7.2721647 h 0.141069 l 0.08643,0.5544921 0.02283,0.1288379 0.02202,-0.1288379 0.145146,-0.5544921 h 0.136177 l 0.163902,0.5544921 0.02854,0.1288379 0.01876,-0.1288379 0.08725,-0.5544921 h 0.116606 L 11.85227,8.1829996 H 11.710385 L 11.535883,7.5967057 11.508159,7.4678678 h -0.0041 l -0.02528,0.1280225 -0.15167,0.5871093 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1422" />
+                <path
+                   d="m 12.517662,8.2082779 q -0.195703,0 -0.313125,-0.1361767 -0.117422,-0.1369922 -0.117422,-0.3449268 0,-0.2079345 0.117422,-0.3441113 0.117422,-0.1361767 0.313125,-0.1361767 0.194887,0 0.312309,0.1361767 0.117422,0.1361768 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449268 -0.117422,0.1361767 -0.312309,0.1361767 z m 0,-0.1263916 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194073,0.09459 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1424" />
+                <path
+                   d="M 13.221377,8.1829996 V 7.2721647 h 0.15167 v 0.1989648 q 0.07094,-0.1125293 0.162271,-0.1679785 0.09214,-0.056265 0.204673,-0.056265 0.08236,0 0.164716,0.025278 V 7.6007828 H 13.758746 V 7.3928483 q -0.03833,-0.00652 -0.06034,-0.00652 -0.0848,0 -0.166348,0.066865 -0.08154,0.066865 -0.159009,0.2005957 v 0.5292138 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1426" />
+                <path
+                   d="M 14.186031,8.1829996 V 6.8668961 H 14.3377 v 0.8268457 l 0.437886,-0.4215771 h 0.202227 l -0.437071,0.4215771 0.448487,0.4892578 h -0.20875 L 14.3377,7.6937418 v 0.4892578 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1428" />
+              </g>
+              <g
+                 aria-label="generic"
+                 id="text90"
+                 class="u"
+                 style="font-weight:700;white-space:pre;fill:#71bef2">
+                <path
+                   d="m 0.73470213,10.149327 q -0.0693115,0.11416 -0.16716308,0.172056 -0.0970361,0.05789 -0.1785791,0.05789 -0.11416015,0 -0.20548828,-0.09867 -0.09051269,-0.09867 -0.09051269,-0.2992623 0,-0.1581933 0.0603418,-0.2821386 0.0603418,-0.1247608 0.16145507,-0.1965186 0.10111328,-0.072573 0.25033691,-0.072573 0.0432178,0 0.13046875,0.00897 0.0130469,0.00163 0.0391406,0.00408 h 0.15248535 v 0.6441898 q 0,0.229951 -0.006523,0.280507 -0.005708,0.05137 -0.0195703,0.10356 -0.0326172,0.121499 -0.14922363,0.191626 -0.11579101,0.07013 -0.28050781,0.07013 -0.16553222,0 -0.33514159,-0.0848 v -0.153301 q 0.06441894,0.04403 0.15819336,0.07747 0.0945898,0.03425 0.18265624,0.03425 0.0693115,0 0.13128418,-0.02202 0.0619726,-0.02202 0.10029785,-0.0636 0.0383252,-0.04159 0.0521875,-0.09704 0.0138623,-0.05463 0.0138623,-0.145962 z m 0,-0.1802097 V 9.5785265 q -0.0807275,-0.021201 -0.15003906,-0.021201 -0.1402539,0 -0.23402831,0.1084522 -0.092959,0.1084521 -0.092959,0.2951855 0,0.135361 0.0505566,0.204673 0.0513721,0.0685 0.11660645,0.0685 0.0709424,0 0.15656249,-0.07176 0.0856201,-0.07176 0.15330078,-0.1932567 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1431" />
+                <path
+                   d="m 1.8852734,10.293658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.2438138 0,-0.1247607 0.055449,-0.2397363 0.055449,-0.1149756 0.1549317,-0.1785791 0.099482,-0.064419 0.2217968,-0.064419 0.1622705,0 0.2601221,0.115791 0.098667,0.1157911 0.098667,0.3571582 v 0.032617 H 1.2704395 q 0,0.09459 0.039141,0.1728708 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z M 1.2794092,9.8101085 h 0.4541943 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.067681 -0.066865,0.066865 -0.093774,0.1981494 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1433" />
+                <path
+                   d="M 2.1290869,10.354 V 9.4431652 H 2.2807568 V 9.64213 q 0.065234,-0.1051904 0.157378,-0.1647168 0.092144,-0.059526 0.1842871,-0.059526 0.080728,0 0.1467773,0.043218 0.06605,0.042402 0.092144,0.1117139 0.026909,0.069311 0.026909,0.2723535 V 10.354 H 2.736582 V 9.8264171 q 0,-0.1312842 -0.013047,-0.1728711 -0.012231,-0.042402 -0.046479,-0.069311 -0.033433,-0.026909 -0.073389,-0.026909 -0.079912,0 -0.1720557,0.075835 -0.091328,0.075835 -0.1508545,0.1899951 V 10.354 Z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1435" />
+                <path
+                   d="m 3.8879689,10.293658 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.2438138 0,-0.1247607 0.055449,-0.2397363 0.055449,-0.1149756 0.1549316,-0.1785791 0.099482,-0.064419 0.2217969,-0.064419 0.1622705,0 0.260122,0.115791 0.098667,0.1157911 0.098667,0.3571582 v 0.032617 H 3.2731349 q 0,0.09459 0.039141,0.1728708 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 3.2821046,9.8101085 h 0.4541943 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.06605 -0.145962,-0.06605 -0.092144,0 -0.1598242,0.067681 -0.066865,0.066865 -0.093774,0.1981494 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1437" />
+                <path
+                   d="M 4.2092481,10.354 V 9.4431652 H 4.360918 V 9.64213 q 0.070942,-0.1125293 0.1622705,-0.1679785 0.092144,-0.056265 0.2046728,-0.056265 0.082358,0 0.1647168,0.025278 V 9.7717833 H 4.7466162 V 9.5638487 q -0.038325,-0.00652 -0.060342,-0.00652 -0.084805,0 -0.1663476,0.066865 -0.081543,0.066865 -0.1590088,0.2005957 V 10.354 Z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1439" />
+                <path
+                   d="M 5.3883593,10.354 V 9.5695568 H 5.1355761 V 9.4431652 H 5.5400292 V 10.227608 H 5.7936278 V 10.354 Z M 5.363081,9.114547 q 0,-0.051372 0.035063,-0.07665 0.035064,-0.025278 0.06605,-0.025278 0.031802,0 0.066865,0.025278 0.035063,0.025278 0.035063,0.07665 0,0.050557 -0.035063,0.075835 -0.035063,0.025278 -0.066865,0.025278 -0.030986,0 -0.06605,-0.025278 Q 5.363081,9.1651036 5.363081,9.114547 Z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1441" />
+                <path
+                   d="m 6.9009817,10.327906 q -0.1524854,0.05137 -0.290293,0.05137 -0.1369922,0 -0.2438134,-0.06279 -0.1060059,-0.0636 -0.1655323,-0.17124 -0.059526,-0.108452 -0.059526,-0.2462597 0,-0.2071191 0.1345459,-0.3441113 0.1353613,-0.1369922 0.3261718,-0.1369922 0.1410694,0 0.2984473,0.053003 v 0.1459619 q -0.1590088,-0.072573 -0.284585,-0.072573 -0.083174,0 -0.1565625,0.041587 -0.073389,0.040771 -0.1133447,0.1280225 -0.039956,0.087251 -0.039956,0.1793945 0,0.1231297 0.07665,0.2348437 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1443" />
+              </g>
+              <g
+                 aria-label="mellanox_dirver"
+                 id="text92"
+                 class="u"
+                 style="font-weight:700;white-space:pre;fill:#71bef2">
+                <path
+                   d="m 0.05789551,12.525 v -0.910835 h 0.13291503 v 0.20875 Q 0.25359863,11.69 0.30741698,11.639443 q 0.0546338,-0.05056 0.11008301,-0.05056 0.0660498,0 0.10600586,0.05219 0.0407715,0.05137 0.0407715,0.146777 v 0.04893 q 0.0269092,-0.08317 0.0644189,-0.134546 0.0383252,-0.05219 0.0790967,-0.08236 0.0407715,-0.03099 0.0937744,-0.03099 0.0587109,0 0.10029785,0.04974 0.0415869,0.04974 0.0415869,0.198149 V 12.525 H 0.81053709 v -0.622173 q 0,-0.07665 -0.004893,-0.104375 -0.004893,-0.02854 -0.0195703,-0.04322 -0.0146777,-0.01468 -0.0318018,-0.01468 -0.0424023,0 -0.0913281,0.06523 -0.0481104,0.06442 -0.098667,0.214458 V 12.525 H 0.4370703 v -0.621358 q 0,-0.120683 -0.0236475,-0.141885 -0.0236475,-0.0212 -0.0424023,-0.0212 -0.0415869,0 -0.0896973,0.07257 -0.0472949,0.07257 -0.0905127,0.185917 V 12.525 Z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1446" />
+                <path
+                   d="m 1.8852734,12.464658 q -0.1818408,0.08643 -0.3441113,0.08643 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 1.2704395 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1448" />
+                <path
+                   d="M 2.3737158,12.525 V 11.336103 H 2.1013623 v -0.127207 h 0.4240234 v 1.189712 h 0.284585 V 12.525 Z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1450" />
+                <path
+                   d="M 3.3750636,12.525 V 11.336103 H 3.1027101 v -0.127207 h 0.4240234 v 1.189712 h 0.284585 V 12.525 Z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1452" />
+                <path
+                   d="m 4.7303076,12.320327 q -0.069311,0.11416 -0.1671631,0.172055 -0.097036,0.0579 -0.1785791,0.0579 -0.1141601,0 -0.2054882,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.161455,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304688,0.009 0.013047,0.0016 0.039141,0.0041 H 4.882793 v 0.643374 q 0,0.164716 0.034248,0.267461 H 4.7588477 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.150039,-0.0212 -0.1402539,0 -0.2340284,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204672 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1454" />
+                <path
+                   d="m 5.1331298,12.525 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467774,0.04322 0.06605,0.0424 0.092143,0.111714 0.026909,0.06931 0.026909,0.272354 V 12.525 H 5.7406249 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012231,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07583 -0.1508545,0.189995 V 12.525 Z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1456" />
+                <path
+                   d="m 6.5095754,12.550278 q -0.1957031,0 -0.3131249,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.3131249,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.1214991,0 0.1932569,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932569,-0.09459 -0.1223144,0 -0.1940722,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940722,0.09459 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1458" />
+                <path
+                   d="M 7.2304152,12.525 H 7.0550978 L 7.4130714,12.047973 7.0787453,11.614165 h 0.1940722 l 0.2372901,0.305786 0.2307666,-0.305786 H 7.9129298 L 7.5965431,12.033296 7.9724562,12.525 H 7.7775685 L 7.5003224,12.162133 Z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1460" />
+                <path
+                   d="M 8.0686768,12.651391 V 12.525 h 0.8855566 v 0.126391 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1462" />
+                <path
+                   d="m 9.746831,12.320327 q -0.069312,0.11416 -0.1671631,0.172055 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.1614551,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 V 11.208896 H 9.8993163 V 12.525 H 9.746831 Z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204672 0.051372,0.0685 0.1166065,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1464" />
+                <path
+                   d="m 10.395097,12.525 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 V 12.525 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1466" />
+                <path
+                   d="m 11.218681,12.525 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 12.525 Z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1468" />
+                <path
+                   d="m 12.438565,12.525 -0.395483,-0.910835 h 0.166347 l 0.31231,0.72084 0.318833,-0.72084 h 0.15167 L 12.593497,12.525 Z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1470" />
+                <path
+                   d="m 13.901446,12.464658 q -0.181841,0.08643 -0.344112,0.08643 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1472" />
+                <path
+                   d="m 14.222725,12.525 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 12.525 Z"
+                   style="font-weight:700;white-space:pre;fill:#71bef2"
+                   id="path1474" />
+              </g>
+              <path
+                 class="e"
+                 d="m 0,13.026 h 1 v 2.171 H 0 Z"
+                 id="path94" />
+              <g
+                 id="text96"
+                 class="f"
+                 style="white-space:pre" />
+              <path
+                 class="e"
+                 d="m 1.002,13.026 h 5 v 2.171 h -5 z"
+                 id="path98" />
+              <g
+                 aria-label="kvaps"
+                 id="text100"
+                 class="g"
+                 style="font-weight:700;white-space:pre">
+                <path
+                   d="M 1.1691631,14.696 V 13.379897 H 1.320833 v 0.826845 L 1.7587187,13.785165 H 1.9609453 L 1.523875,14.206742 1.9723613,14.696 h -0.20875 L 1.320833,14.206742 V 14.696 Z"
+                   style="font-weight:700;white-space:pre"
+                   id="path1478" />
+                <path
+                   d="M 2.4257402,14.696 2.0302568,13.785165 h 0.1663477 l 0.3123095,0.72084 0.318833,-0.72084 H 2.9794169 L 2.5806718,14.696 Z"
+                   style="font-weight:700;white-space:pre"
+                   id="path1480" />
+                <path
+                   d="m 3.7296123,14.491327 q -0.069312,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299262 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524853 v 0.643374 q 0,0.164717 0.034248,0.267461 H 3.7581523 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108453 -0.092959,0.295186 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                   style="font-weight:700;white-space:pre"
+                   id="path1482" />
+                <path
+                   d="m 4.2726886,13.989838 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.05789 0.1785791,-0.05789 0.1141601,0 0.2054882,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.161455,0.196518 -0.1011133,0.07176 -0.250337,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353897 H 4.1210187 v -1.264732 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                   style="font-weight:700;white-space:pre"
+                   id="path1484" />
+                <path
+                   d="m 5.1443828,14.64789 v -0.16064 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023647,-0.02609 -0.1174218,-0.06442 l -0.052188,-0.0212 -0.1051905,-0.04159 q -0.1696093,-0.06605 -0.2136425,-0.122314 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.11253 0.086436,-0.185103 0.087251,-0.07257 0.2821386,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137808 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027442,0.03751 q 0.1410693,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.091328,0.194887 -0.090513,0.07583 -0.2902929,0.07583 -0.174502,0 -0.3587891,-0.07339 z"
+                   style="font-weight:700;white-space:pre"
+                   id="path1486" />
+              </g>
+              <path
+                 class="e"
+                 d="m 6.012,13.026 h 1 v 2.171 h -1 z"
+                 id="path102" />
+              <g
+                 id="text104"
+                 class="f"
+                 style="white-space:pre" />
+              <path
+                 class="h"
+                 d="m 7.014,13.026 h 1 v 2.171 h -1 z"
+                 id="path106" />
+              <g
+                 aria-label=""
+                 id="text108"
+                 class="i"
+                 style="white-space:pre;fill:#00d7ff">
+                <path
+                   d="m 7.0139999,13.126298 1.0258106,0.990747 -1.0258106,0.992378 z"
+                   style="white-space:pre;fill:#00d7ff"
+                   id="path1490" />
+              </g>
+              <path
+                 class="h"
+                 d="m 8.016,13.026 h 1 v 2.171 h -1 z"
+                 id="path110" />
+              <g
+                 id="text112"
+                 class="j"
+                 style="white-space:pre;fill:#eeeeee" />
+              <path
+                 class="h"
+                 d="m 9.018,13.026 h 1 v 2.171 h -1 z"
+                 id="path114" />
+              <g
+                 aria-label="~"
+                 id="text116"
+                 class="k"
+                 style="font-weight:700;white-space:pre;fill:#ffffff">
+                <path
+                   d="m 9.0636637,14.367382 v -0.01468 q 0,-0.106821 0.062788,-0.185102 0.063603,-0.0791 0.1704248,-0.0791 0.026909,0 0.052188,0.0057 0.026094,0.0049 0.058711,0.01794 0.032617,0.01223 0.097852,0.04893 l 0.098667,0.05463 q 0.090513,0.04974 0.1475927,0.04974 0.060342,0 0.088882,-0.04322 0.029356,-0.04403 0.029356,-0.0954 v -0.01305 h 0.1043749 v 0.01305 q 0,0.136177 -0.077466,0.201411 -0.07665,0.06442 -0.1630859,0.06442 -0.080728,0 -0.2136426,-0.07583 l -0.083174,-0.04811 q -0.09459,-0.05382 -0.1524853,-0.05382 -0.032617,0 -0.061157,0.01712 -0.027725,0.01712 -0.044849,0.05463 -0.017124,0.03751 -0.017124,0.06605 v 0.01468 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1494" />
+              </g>
+              <path
+                 class="h"
+                 d="m 10.02,13.026 h 1 v 2.171 h -1 z"
+                 id="path118" />
+              <g
+                 aria-label="/"
+                 id="text120"
+                 class="j"
+                 style="white-space:pre;fill:#eeeeee">
+                <path
+                   d="M 10.196133,14.734325 H 10.04691 l 0.804829,-1.341382 h 0.144331 z"
+                   style="white-space:pre;fill:#eeeeee"
+                   id="path1497" />
+              </g>
+              <path
+                 class="h"
+                 d="m 11.022,13.026 h 8 v 2.171 h -8 z"
+                 id="path122" />
+              <g
+                 aria-label="kubefarm"
+                 id="text124"
+                 class="k"
+                 style="font-weight:700;white-space:pre;fill:#ffffff">
+                <path
+                   d="m 11.189163,14.696 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 L 11.340833,14.206742 V 14.696 Z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1500" />
+                <path
+                   d="M 12.899119,13.785165 V 14.696 H 12.74745 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1502" />
+                <path
+                   d="m 13.291341,13.989838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1504" />
+                <path
+                   d="m 14.909969,14.635658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1506" />
+                <path
+                   d="M 15.365794,14.696 V 13.987392 H 15.163568 V 13.861 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 V 13.861 H 15.8787 v 0.126392 H 15.517464 V 14.696 Z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1508" />
+                <path
+                   d="m 16.753655,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1510" />
+                <path
+                   d="m 17.233944,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 14.696 Z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1512" />
+                <path
+                   d="m 18.08933,14.696 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 14.696 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 14.696 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 V 14.696 Z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1514" />
+              </g>
+              <path
+                 class="h"
+                 d="m 19.038,13.026 h 1 v 2.171 h -1 z"
+                 id="path126" />
+              <g
+                 aria-label="/"
+                 id="text128"
+                 class="j"
+                 style="white-space:pre;fill:#eeeeee">
+                <path
+                   d="m 19.214133,14.734325 h -0.149224 l 0.804829,-1.341382 h 0.144331 z"
+                   style="white-space:pre;fill:#eeeeee"
+                   id="path1517" />
+              </g>
+              <path
+                 class="h"
+                 d="m 20.04,13.026 h 8 v 2.171 h -8 z"
+                 id="path130" />
+              <g
+                 aria-label="examples"
+                 id="text132"
+                 class="k"
+                 style="font-weight:700;white-space:pre;fill:#ffffff">
+                <path
+                   d="m 20.923927,14.635658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1520" />
+                <path
+                   d="m 21.26233,14.696 h -0.175317 l 0.357973,-0.477026 -0.334326,-0.433809 h 0.194072 l 0.23729,0.305786 0.230767,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194888 l -0.277246,-0.362866 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1522" />
+                <path
+                   d="m 22.767613,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1524" />
+                <path
+                   d="m 23.10194,14.696 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 14.696 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 14.696 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 14.696 Z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1526" />
+                <path
+                   d="m 24.312037,13.989838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1528" />
+                <path
+                   d="m 25.41776,14.696 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284584 V 14.696 Z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1530" />
+                <path
+                   d="m 26.932013,14.635658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1532" />
+                <path
+                   d="m 27.186427,14.64789 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path1534" />
+              </g>
+              <path
+                 class="h"
+                 d="m 28.056,13.026 h 1 v 2.171 h -1 z"
+                 id="path134" />
+              <g
+                 id="text136"
+                 class="j"
+                 style="white-space:pre;fill:#eeeeee" />
+              <g
+                 aria-label=""
+                 id="text138"
+                 class="l"
+                 style="white-space:pre;fill:#005f87">
+                <path
+                   d="m 29.058001,13.126298 1.02581,0.990747 -1.02581,0.992378 z"
+                   style="white-space:pre;fill:#005f87"
+                   id="path1538" />
+              </g>
+              <g
+                 aria-label="helm"
+                 id="text140"
+                 class="m"
+                 style="white-space:pre;fill:#a8cc8c">
+                <path
+                   d="m 31.188392,14.696 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 V 14.696 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 14.696 Z"
+                   style="white-space:pre;fill:#a8cc8c"
+                   id="path1541" />
+                <path
+                   d="m 32.947274,14.635658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 H 32.33244 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                   style="white-space:pre;fill:#a8cc8c"
+                   id="path1543" />
+                <path
+                   d="m 33.435716,14.696 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 14.696 Z"
+                   style="white-space:pre;fill:#a8cc8c"
+                   id="path1545" />
+                <path
+                   d="m 34.123939,14.696 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 14.696 H 34.87658 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 14.696 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 14.696 Z"
+                   style="white-space:pre;fill:#a8cc8c"
+                   id="path1547" />
+              </g>
+              <g
+                 aria-label="upgrade"
+                 id="text142"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="M 36.94777,13.785165 V 14.696 H 36.7961 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1550" />
+                <path
+                   d="m 37.339992,13.989838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1552" />
+                <path
+                   d="m 38.809396,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1554" />
+                <path
+                   d="m 39.279899,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 14.696 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1556" />
+                <path
+                   d="m 40.802306,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1558" />
+                <path
+                   d="m 41.813439,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 V 14.696 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1560" />
+                <path
+                   d="m 42.964011,14.635658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1562" />
+              </g>
+              <g
+                 aria-label="foo"
+                 id="text144"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="M 44.426405,14.696 V 13.987392 H 44.224178 V 13.861 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118238,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 V 13.861 h 0.361236 v 0.126392 H 44.578074 V 14.696 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1565" />
+                <path
+                   d="m 45.590838,14.721278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1567" />
+                <path
+                   d="m 46.592186,14.721278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117421,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1569" />
+              </g>
+              <g
+                 aria-label="kvaps/kubefarm"
+                 id="text146"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="m 48.263164,14.696 v -1.316103 h 0.15167 v 0.826845 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 48.414834,14.206742 V 14.696 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1572" />
+                <path
+                   d="m 49.519741,14.696 -0.395483,-0.910835 h 0.166347 l 0.31231,0.72084 0.318833,-0.72084 h 0.15167 L 49.674673,14.696 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1574" />
+                <path
+                   d="m 50.823613,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1576" />
+                <path
+                   d="m 51.366689,13.989838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1578" />
+                <path
+                   d="m 52.238383,14.64789 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.35879,-0.07339 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1580" />
+                <path
+                   d="m 53.278872,14.734325 h -0.149224 l 0.804829,-1.341382 h 0.144331 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1582" />
+                <path
+                   d="m 54.27125,14.696 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 54.42292,14.206742 V 14.696 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1584" />
+                <path
+                   d="M 55.981206,13.785165 V 14.696 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1586" />
+                <path
+                   d="m 56.373427,13.989838 q 0.07013,-0.11416 0.167164,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.151669 v -1.316103 h 0.151669 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1588" />
+                <path
+                   d="m 57.992055,14.635658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1590" />
+                <path
+                   d="M 58.44788,14.696 V 13.987392 H 58.245654 V 13.861 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 V 13.861 h 0.361236 v 0.126392 H 58.59955 V 14.696 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1592" />
+                <path
+                   d="m 59.835742,14.491327 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1594" />
+                <path
+                   d="m 60.31603,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 14.696 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1596" />
+                <path
+                   d="m 61.171416,14.696 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 14.696 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 14.696 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 14.696 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1598" />
+              </g>
+              <g
+                 aria-label="-f"
+                 id="text148"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="m 63.311102,14.246698 v -0.126391 h 0.632773 v 0.126391 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1601" />
+                <path
+                   d="M 64.46575,14.696 V 13.987392 H 64.263524 V 13.861 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118238,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 V 13.861 h 0.361236 v 0.126392 H 64.61742 V 14.696 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1603" />
+              </g>
+              <g
+                 aria-label="generic/values.yaml"
+                 id="text150"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 class="v">
+                <path
+                   d="m 66.866706,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335142,-0.0848 v -0.153301 q 0.06442,0.04403 0.158194,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1606" />
+                <path
+                   d="m 68.017277,14.635658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1608" />
+                <path
+                   d="m 68.261091,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 14.696 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 14.696 Z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1610" />
+                <path
+                   d="m 70.019973,14.635658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1612" />
+                <path
+                   d="m 70.341252,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 H 70.87862 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 14.696 Z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1614" />
+                <path
+                   d="M 71.520363,14.696 V 13.911557 H 71.26758 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 14.696 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1616" />
+                <path
+                   d="m 73.032985,14.669906 q -0.152485,0.05137 -0.290292,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284584,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1618" />
+                <path
+                   d="m 73.31757,14.734325 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1620" />
+                <path
+                   d="m 74.565178,14.696 -0.395484,-0.910835 h 0.166348 l 0.312309,0.72084 0.318833,-0.72084 h 0.15167 L 74.720109,14.696 Z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1622" />
+                <path
+                   d="m 75.86905,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.17858,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 H 75.89759 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1624" />
+                <path
+                   d="m 76.516501,14.696 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 14.696 Z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1626" />
+                <path
+                   d="M 78.022599,13.785165 V 14.696 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1628" />
+                <path
+                   d="m 79.032102,14.635658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1630" />
+                <path
+                   d="m 79.286516,14.64789 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.151669,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1632" />
+                <path
+                   d="m 80.651545,14.734325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1634" />
+                <path
+                   d="M 81.613752,14.659306 81.19299,13.785165 h 0.167163 l 0.335142,0.68333 0.280508,-0.68333 h 0.152485 l -0.353081,0.846416 q -0.111714,0.268277 -0.212827,0.356343 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123945,-0.01223 v -0.133731 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130468,-0.02854 0.05708,-0.02854 0.104375,-0.101114 0.0473,-0.07257 0.06687,-0.125576 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1636" />
+                <path
+                   d="m 82.878483,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1638" />
+                <path
+                   d="m 83.21281,14.696 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 14.696 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 14.696 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 V 14.696 Z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1640" />
+                <path
+                   d="m 84.527282,14.696 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 14.696 Z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1642" />
+              </g>
+              <g
+                 aria-label="-f"
+                 id="text152"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="m 86.3571,14.246698 v -0.126391 h 0.632773 v 0.126391 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1645" />
+                <path
+                   d="M 87.511748,14.696 V 13.987392 H 87.309521 V 13.861 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 V 13.861 h 0.361235 v 0.126392 H 87.663418 V 14.696 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1647" />
+              </g>
+              <g
+                 aria-label="advanced_network/values.yaml"
+                 id="text154"
+                 style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                 class="v">
+                <path
+                   d="m 89.902918,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1650" />
+                <path
+                   d="m 90.914051,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152486 V 14.696 h -0.152486 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1652" />
+                <path
+                   d="m 91.603089,14.696 -0.395483,-0.910835 h 0.166348 l 0.312309,0.72084 0.318833,-0.72084 h 0.15167 L 91.758021,14.696 Z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1654" />
+                <path
+                   d="m 92.906961,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1656" />
+                <path
+                   d="m 93.309784,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157377,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 14.696 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 14.696 Z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1658" />
+                <path
+                   d="m 95.077635,14.669906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1660" />
+                <path
+                   d="m 96.070013,14.635658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1662" />
+                <path
+                   d="m 96.922137,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152486 V 14.696 h -0.152486 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1664" />
+                <path
+                   d="M 97.246678,14.822392 V 14.696 h 0.885557 v 0.126392 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1666" />
+                <path
+                   d="m 98.316522,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 14.696 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 14.696 Z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1668" />
+                <path
+                   d="m 100.0754,14.635658 q -0.181837,0.08644 -0.344108,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324537,-0.09785 z m -0.605861,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1670" />
+                <path
+                   d="m 101.08083,14.659306 q -0.10682,0.04485 -0.15493,0.053 -0.0481,0.009 -0.093,0.009 -0.0954,0 -0.1745,-0.03669 -0.0791,-0.03669 -0.11987,-0.108452 -0.04,-0.07176 -0.04,-0.221797 v -0.366943 h -0.2275 V 13.861 h 0.2275 v -0.366943 h 0.15167 V 13.861 h 0.40527 v 0.126392 h -0.40527 v 0.364497 q 0,0.110083 0.0261,0.155747 0.0261,0.04485 0.0693,0.06605 0.044,0.0212 0.10356,0.0212 0.11008,0 0.23158,-0.06931 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1672" />
+                <path
+                   d="m 101.35889,14.696 -0.14841,-0.910835 h 0.14107 l 0.0864,0.554492 0.0228,0.128838 0.022,-0.128838 0.14514,-0.554492 h 0.13618 l 0.1639,0.554492 0.0285,0.128838 0.0188,-0.128838 0.0873,-0.554492 h 0.1166 L 102.03162,14.696 h -0.14188 l -0.17451,-0.586294 -0.0277,-0.128838 h -0.004 l -0.0253,0.128023 -0.15167,0.587109 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1674" />
+                <path
+                   d="m 102.69701,14.721278 q -0.1957,0 -0.31312,-0.136176 -0.11743,-0.136993 -0.11743,-0.344927 0,-0.207935 0.11743,-0.344111 0.11742,-0.136177 0.31312,-0.136177 0.19489,0 0.31231,0.136177 0.11742,0.136176 0.11742,0.344111 0,0.207934 -0.11742,0.344927 -0.11742,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.1215,0 0.19326,-0.09459 0.0718,-0.09459 0.0718,-0.260122 0,-0.164717 -0.0718,-0.259307 -0.0718,-0.09459 -0.19326,-0.09459 -0.12231,0 -0.19407,0.09459 -0.0718,0.09459 -0.0718,0.259307 0,0.165532 0.0718,0.260122 0.0718,0.09459 0.19407,0.09459 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1676" />
+                <path
+                   d="m 103.40073,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.0709,-0.112529 0.16227,-0.167979 0.0921,-0.05626 0.20467,-0.05626 0.0824,0 0.16472,0.02528 v 0.328618 h -0.14597 v -0.207934 q -0.0383,-0.0065 -0.0603,-0.0065 -0.0848,0 -0.16634,0.06687 -0.0816,0.06686 -0.15901,0.200595 V 14.696 Z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1678" />
+                <path
+                   d="m 104.36538,14.696 v -1.316103 h 0.15167 v 0.826845 l 0.43789,-0.421577 h 0.20222 l -0.43707,0.421577 0.44849,0.489258 h -0.20875 l -0.44278,-0.489258 V 14.696 Z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1680" />
+                <path
+                   d="m 105.3757,14.734325 h -0.14923 l 0.80483,-1.341382 h 0.14433 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1682" />
+                <path
+                   d="m 106.62331,14.696 -0.39549,-0.910835 h 0.16635 l 0.31231,0.72084 0.31883,-0.72084 h 0.15167 L 106.77824,14.696 Z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1684" />
+                <path
+                   d="m 107.92718,14.491327 q -0.0693,0.11416 -0.16717,0.172056 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20548,-0.09867 -0.0905,-0.09867 -0.0905,-0.299262 0,-0.158194 0.0603,-0.282139 0.0603,-0.124761 0.16146,-0.196518 0.10111,-0.07257 0.25034,-0.07257 0.0432,0 0.13047,0.009 0.013,0.0016 0.0391,0.0041 h 0.15248 v 0.643374 q 0,0.164717 0.0343,0.267461 h -0.15819 q -0.0179,-0.07502 -0.0285,-0.204673 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14026,0 -0.23403,0.108452 -0.093,0.108453 -0.093,0.295186 0,0.135361 0.0506,0.204673 0.0514,0.0685 0.1166,0.0685 0.0709,0 0.15657,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1686" />
+                <path
+                   d="m 108.57463,14.696 v -1.188896 h -0.27236 v -0.127207 h 0.42403 v 1.189712 h 0.28458 V 14.696 Z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1688" />
+                <path
+                   d="M 110.08073,13.785165 V 14.696 h -0.15167 v -0.19978 q -0.0734,0.112529 -0.16309,0.168794 -0.0897,0.05626 -0.17939,0.05626 -0.0799,0 -0.14678,-0.0424 -0.0661,-0.04322 -0.0922,-0.112529 -0.0261,-0.07013 -0.0261,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.0122,0.173687 0.013,0.04159 0.0465,0.0685 0.0343,0.02691 0.0734,0.02691 0.0799,0 0.17124,-0.07502 0.0921,-0.07583 0.15249,-0.19081 v -0.530845 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1690" />
+                <path
+                   d="m 111.09023,14.635658 q -0.18184,0.08644 -0.34411,0.08644 -0.12313,0 -0.22017,-0.06116 -0.097,-0.06116 -0.15575,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.0555,-0.239736 0.0554,-0.114976 0.15493,-0.178579 0.0995,-0.06442 0.2218,-0.06442 0.16227,0 0.26012,0.115791 0.0987,0.115791 0.0987,0.357158 v 0.03262 h -0.62789 q 0,0.09459 0.0391,0.172871 0.04,0.07828 0.10437,0.117422 0.0644,0.03914 0.14678,0.03914 0.14677,0 0.32454,-0.09785 z m -0.60587,-0.483549 h 0.4542 v -0.02202 q 0,-0.111714 -0.0546,-0.177764 -0.0546,-0.06605 -0.14596,-0.06605 -0.0921,0 -0.15982,0.06768 -0.0669,0.06686 -0.0938,0.19815 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1692" />
+                <path
+                   d="m 111.34464,14.64789 v -0.16064 q 0.0913,0.05953 0.19326,0.08399 0.10193,0.02365 0.17287,0.02365 0.11497,0 0.16553,-0.03669 0.0506,-0.03751 0.0506,-0.09296 0,-0.03669 -0.0237,-0.06279 -0.0237,-0.02609 -0.11742,-0.06442 l -0.0522,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.21364,-0.122314 -0.0449,-0.05545 -0.0449,-0.135361 0,-0.11253 0.0864,-0.185103 0.0872,-0.07257 0.28213,-0.07257 0.14597,0 0.27643,0.0424 v 0.137808 q -0.15003,-0.05382 -0.28213,-0.05382 -0.0962,0 -0.15086,0.03425 -0.0538,0.03343 -0.0538,0.08399 0,0.04893 0.0473,0.07828 0.0465,0.02936 0.15167,0.06768 l 0.10274,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.0571,0.06034 0.0571,0.150855 0,0.118237 -0.0913,0.194887 -0.0905,0.07583 -0.29029,0.07583 -0.1745,0 -0.35879,-0.07339 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1694" />
+                <path
+                   d="m 112.70967,14.734325 q -0.0546,0 -0.0938,-0.03914 -0.0391,-0.03914 -0.0391,-0.09378 0,-0.05545 0.0391,-0.09377 0.04,-0.03914 0.0938,-0.03914 0.0538,0 0.093,0.03914 0.04,0.03833 0.04,0.09377 0,0.05463 -0.0391,0.09378 -0.0391,0.03914 -0.0938,0.03914 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1696" />
+                <path
+                   d="m 113.67188,14.659306 -0.42076,-0.874141 h 0.16716 l 0.33514,0.68333 0.28051,-0.68333 h 0.15249 l -0.35309,0.846416 q -0.11171,0.268277 -0.21282,0.356343 -0.1003,0.08807 -0.26012,0.08807 -0.0693,0 -0.12395,-0.01223 v -0.133731 q 0.0628,0.01957 0.11987,0.01957 0.0734,0 0.13047,-0.02854 0.0571,-0.02854 0.10437,-0.101114 0.0473,-0.07257 0.0669,-0.125576 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1698" />
+                <path
+                   d="m 114.93661,14.491327 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299262 0,-0.158194 0.0603,-0.282139 0.0603,-0.124761 0.16145,-0.196518 0.10112,-0.07257 0.25034,-0.07257 0.0432,0 0.13047,0.009 0.0131,0.0016 0.0391,0.0041 h 0.15249 v 0.643374 q 0,0.164717 0.0342,0.267461 h -0.15819 q -0.0179,-0.07502 -0.0285,-0.204673 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23403,0.108452 -0.093,0.108453 -0.093,0.295186 0,0.135361 0.0506,0.204673 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1700" />
+                <path
+                   d="m 115.27094,14.696 v -0.910835 h 0.13291 v 0.20875 q 0.0628,-0.132915 0.11661,-0.183472 0.0546,-0.05056 0.11008,-0.05056 0.0661,0 0.10601,0.05219 0.0408,0.05137 0.0408,0.146778 v 0.04893 q 0.0269,-0.08317 0.0644,-0.134545 0.0383,-0.05219 0.0791,-0.08236 0.0408,-0.03099 0.0938,-0.03099 0.0587,0 0.1003,0.04974 0.0416,0.04974 0.0416,0.198149 V 14.696 h -0.13291 v -0.622173 q 0,-0.07665 -0.005,-0.104375 -0.005,-0.02854 -0.0196,-0.04322 -0.0147,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.0913,0.06523 -0.0481,0.06442 -0.0987,0.214458 V 14.696 h -0.12721 v -0.621357 q 0,-0.120684 -0.0237,-0.141885 -0.0236,-0.0212 -0.0424,-0.0212 -0.0416,0 -0.0897,0.07257 -0.0473,0.07257 -0.0905,0.185918 V 14.696 Z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1702" />
+                <path
+                   d="m 116.58541,14.696 v -1.188896 h -0.27236 v -0.127207 h 0.42403 v 1.189712 h 0.28458 V 14.696 Z"
+                   style="text-decoration:underline;text-decoration-line:underline;white-space:pre;fill:#b9c0cb"
+                   id="path1704" />
+              </g>
+              <g
+                 aria-label="Release"
+                 id="text156"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="m 0.28621581,16.329632 v 0.537369 H 0.12149902 v -1.265547 h 0.33840331 q 0.16553222,0 0.24381347,0.03425 0.0782812,0.03343 0.12068359,0.101928 0.0432178,0.0685 0.0432178,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0790967,0.132915 -0.0497412,0.0579 -0.14433105,0.110083 l 0.36612792,0.591187 H 0.7860742 L 0.45093261,16.329632 Z m 0,-0.127207 h 0.2307666 q 0.0774658,-0.0424 0.11497558,-0.08644 0.0383252,-0.04403 0.0578955,-0.09378 0.0195703,-0.04974 0.0195703,-0.09948 0,-0.08888 -0.0652344,-0.141069 -0.0644189,-0.053 -0.23484375,-0.053 H 0.28621581 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1707" />
+                <path
+                   d="m 1.8852734,16.806659 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 1.2704395 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1709" />
+                <path
+                   d="M 2.3737158,16.867001 V 15.678104 H 2.1013623 v -0.127207 h 0.4240234 v 1.189712 h 0.284585 v 0.126392 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1711" />
+                <path
+                   d="m 3.8879689,16.806659 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 3.2731349 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058643,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.145962,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1713" />
+                <path
+                   d="m 4.7303076,16.662328 q -0.069311,0.11416 -0.1671631,0.172055 -0.097036,0.0579 -0.1785791,0.0579 -0.1141601,0 -0.2054882,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.161455,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304688,0.009 0.013047,0.0016 0.039141,0.0041 H 4.882793 v 0.643374 q 0,0.164716 0.034248,0.267461 H 4.7588477 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.150039,-0.0212 -0.1402539,0 -0.2340284,0.108452 -0.092959,0.108452 -0.092959,0.295185 0,0.135362 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1715" />
+                <path
+                   d="m 5.1437304,16.81889 v -0.160639 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 l -0.052188,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122315 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.112529 0.086436,-0.185102 0.087251,-0.07257 0.2821387,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137807 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027441,0.03751 q 0.1410694,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07583 -0.290293,0.07583 -0.1745019,0 -0.358789,-0.07339 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1717" />
+                <path
+                   d="m 6.892012,16.806659 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 6.277178 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 6.2861477,16.323109 H 6.740342 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.145962,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1719" />
+              </g>
+              <g
+                 aria-label="&quot;foo&quot;"
+                 id="text158"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="m 8.3951746,16.006722 h -0.104375 l -0.052188,-0.455825 h 0.203042 z m 0.3514502,0 H 8.6430652 l -0.04648,-0.455825 h 0.1989649 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1722" />
+                <path
+                   d="M 9.3557508,16.867001 V 16.158392 H 9.1535242 v -0.126391 h 0.2022266 v -0.0424 q 0,-0.18021 0.040771,-0.266645 0.040771,-0.08644 0.1255762,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.1060059,0 0.2152735,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.2095655,-0.03914 -0.072573,0 -0.1280224,0.02691 -0.055449,0.02691 -0.087251,0.08807 -0.030986,0.06034 -0.030986,0.205489 v 0.05871 H 9.868656 v 0.126391 H 9.5074207 v 0.708609 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1724" />
+                <path
+                   d="m 10.520184,16.892279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1726" />
+                <path
+                   d="m 11.521532,16.892279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1728" />
+                <path
+                   d="M 12.400565,16.006722 H 12.29619 l -0.05219,-0.455825 h 0.203042 z m 0.35145,0 h -0.103559 l -0.04648,-0.455825 h 0.198965 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1730" />
+              </g>
+              <g
+                 aria-label="has"
+                 id="text160"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="m 14.154391,16.867001 v -1.316104 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.14107,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508829 h -0.151669 v -0.527583 q 0,-0.131285 -0.01305,-0.172872 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1733" />
+                <path
+                   d="m 15.754265,16.662328 q -0.06931,0.11416 -0.167164,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1735" />
+                <path
+                   d="m 16.167687,16.81889 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1737" />
+              </g>
+              <g
+                 aria-label="been"
+                 id="text162"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="m 18.302645,16.160838 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1740" />
+                <path
+                   d="m 19.921273,16.806659 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1742" />
+                <path
+                   d="m 20.92262,16.806659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1744" />
+                <path
+                   d="m 21.166434,16.867001 v -0.910835 h 0.15167 v 0.198964 q 0.06523,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172872 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1746" />
+              </g>
+              <g
+                 aria-label="upgraded."
+                 id="text164"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="m 23.921771,15.956166 v 0.910835 h -0.15167 V 16.66722 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07584 0.152485,-0.190811 v -0.530844 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1749" />
+                <path
+                   d="m 24.313993,16.160838 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193256 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1751" />
+                <path
+                   d="m 25.783397,16.662328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 V 17.00807 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1753" />
+                <path
+                   d="m 26.2539,16.867001 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1755" />
+                <path
+                   d="m 27.776307,16.662328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1757" />
+                <path
+                   d="m 28.78744,16.662328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161456,-0.196519 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 H 28.78744 Z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1759" />
+                <path
+                   d="m 29.938011,16.806659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1761" />
+                <path
+                   d="m 30.790135,16.662328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152486 v 1.316104 h -0.152486 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1763" />
+                <path
+                   d="m 31.557455,16.905326 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1765" />
+              </g>
+              <g
+                 aria-label="Happy"
+                 id="text166"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="m 33.168746,16.867001 v -1.265547 h 0.164717 v 0.544707 h 0.468056 v -0.544707 h 0.163902 v 1.265547 h -0.163902 v -0.594449 h -0.468056 v 0.594449 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1768" />
+                <path
+                   d="m 34.792267,16.662328 q -0.06931,0.11416 -0.167164,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1770" />
+                <path
+                   d="m 35.335343,16.160838 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193256 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1772" />
+                <path
+                   d="m 36.33669,16.160838 q 0.07013,-0.11416 0.167164,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.151669 v -1.264731 h 0.151669 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1774" />
+                <path
+                   d="m 37.532926,16.830306 -0.420762,-0.87414 h 0.167163 l 0.335142,0.68333 0.280507,-0.68333 h 0.152486 l -0.353081,0.846416 q -0.111714,0.268276 -0.212827,0.356342 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123946,-0.01223 v -0.13373 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101113 0.04729,-0.07257 0.06686,-0.125576 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1776" />
+              </g>
+              <g
+                 aria-label="Helming!"
+                 id="text168"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="m 39.180743,16.867001 v -1.265547 h 0.164717 v 0.544707 h 0.468057 v -0.544707 h 0.163901 v 1.265547 H 39.813517 V 16.272552 H 39.34546 v 0.594449 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1779" />
+                <path
+                   d="m 40.963273,16.806659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1781" />
+                <path
+                   d="m 41.451715,16.867001 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126392 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1783" />
+                <path
+                   d="m 42.139938,16.867001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09378,-0.03099 0.05871,0 0.100297,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525953 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1785" />
+                <path
+                   d="m 43.465011,16.867001 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253598 v 0.126392 z m -0.02528,-1.239454 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1787" />
+                <path
+                   d="m 44.211129,16.867001 v -0.910835 h 0.15167 v 0.198964 q 0.06523,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172872 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1789" />
+                <path
+                   d="m 45.820787,16.662328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280507,0.07013 -0.165533,0 -0.335142,-0.0848 V 17.00807 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182657,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03832,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1791" />
+                <path
+                   d="m 46.518795,16.506581 -0.03751,-0.905127 h 0.202227 l -0.03833,0.905127 z m 0.07013,0.398745 q -0.04811,0 -0.08317,-0.03506 -0.03425,-0.03425 -0.03425,-0.08236 0,-0.04811 0.03425,-0.08236 0.03506,-0.03425 0.08317,-0.03425 0.0473,0 0.08154,0.03425 0.03506,0.03343 0.03506,0.08236 0,0.04893 -0.03506,0.08317 -0.03506,0.03425 -0.08154,0.03425 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1793" />
+              </g>
+              <g
+                 aria-label="NAME:"
+                 id="text170"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="M 0.25441406,19.038 H 0.10274414 v -1.265547 h 0.1484082 l 0.44767088,0.842339 0.0489258,0.125576 h 0.004077 L 0.747749,18.614792 V 17.772453 H 0.89941892 V 19.038 H 0.747749 l -0.43543944,-0.828476 -0.0611572,-0.132915 0.003262,0.131284 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1796" />
+                <path
+                   d="M 1.1864502,19.038 H 1.0282568 L 1.4180322,17.772453 H 1.5851953 L 1.977417,19.038 H 1.8037305 L 1.7172949,18.759939 H 1.2720703 Z m 0.1247607,-0.404453 h 0.3693897 l -0.1524854,-0.480288 -0.035879,-0.127207 -0.031802,0.127207 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1798" />
+                <path
+                   d="m 2.1812744,19.038 h -0.132915 v -1.265547 h 0.1655322 l 0.2919238,0.833369 0.2919238,-0.833369 H 2.9591943 V 19.038 H 2.8075244 v -0.80646 l 0.00408,-0.110898 h -0.00408 L 2.7716455,18.23154 2.5759424,18.785217 H 2.4112256 L 2.2130762,18.23154 2.1812744,18.120642 h -0.00408 l 0.00408,0.110898 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1800" />
+                <path
+                   d="M 3.8529054,18.898562 V 19.038 H 3.1695753 V 17.772453 H 3.8398585 V 17.89966 H 3.3342921 v 0.429732 h 0.4550098 v 0.126391 H 3.3342921 v 0.442779 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1802" />
+                <path
+                   d="m 4.5060645,19.076325 q -0.054634,0 -0.093775,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093775,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093775,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093775,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1804" />
+              </g>
+              <g
+                 aria-label="foo"
+                 id="text172"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="M 6.3504034,19.038 V 18.329392 H 6.1481768 V 18.203 h 0.2022266 v -0.0424 q 0,-0.18021 0.040771,-0.266646 0.040771,-0.08643 0.1255761,-0.141884 0.08562,-0.05545 0.2258741,-0.05545 0.1060058,0 0.2152734,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.2095654,-0.03914 -0.072573,0 -0.1280225,0.02691 -0.055449,0.02691 -0.087251,0.08807 -0.030986,0.06034 -0.030986,0.205488 V 18.203 h 0.3612354 v 0.126392 H 6.5020733 V 19.038 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1807" />
+                <path
+                   d="m 7.514837,19.063278 q -0.1957031,0 -0.313125,-0.136176 -0.1174219,-0.136993 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207934 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1809" />
+                <path
+                   d="m 8.5161847,19.063278 q -0.1957032,0 -0.313125,-0.136176 -0.1174219,-0.136993 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948876,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207934 -0.1174219,0.344927 -0.1174219,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1811" />
+              </g>
+              <g
+                 aria-label="LAST"
+                 id="text174"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="M 0.86190916,21.069561 V 21.209 H 0.1785791 v -1.265547 h 0.16471679 v 1.126108 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1814" />
+                <path
+                   d="M 1.1864502,21.209 H 1.0282568 L 1.4180322,19.943453 H 1.5851953 L 1.977417,21.209 H 1.8037305 L 1.7172949,20.930938 H 1.2720703 Z m 0.1247607,-0.404453 h 0.3693897 l -0.1524854,-0.480289 -0.035879,-0.127207 -0.031802,0.127207 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1816" />
+                <path
+                   d="m 2.1307178,21.18209 v -0.154931 q 0.1957031,0.09296 0.3555273,0.09296 0.066865,0 0.1280225,-0.02528 0.061157,-0.02609 0.092144,-0.0742 0.031802,-0.04811 0.031802,-0.104375 0,-0.06605 -0.043218,-0.123129 -0.043218,-0.0579 -0.1622705,-0.127208 l -0.083174,-0.04811 -0.083989,-0.04811 q -0.2217968,-0.131284 -0.2217968,-0.326172 0,-0.1427 0.098667,-0.239736 0.099482,-0.09785 0.3098633,-0.09785 0.1353613,0 0.2617529,0.03914 v 0.141069 q -0.1394384,-0.05382 -0.271538,-0.05382 -0.1051905,0 -0.1704248,0.05545 -0.064419,0.05545 -0.064419,0.13373 0,0.07747 0.049741,0.128838 0.049741,0.05137 0.1272071,0.09459 l 0.063604,0.03833 0.079097,0.04811 0.066865,0.03914 q 0.2079345,0.127207 0.2079345,0.319649 0,0.146777 -0.1068212,0.251967 -0.1068213,0.105191 -0.3424805,0.105191 -0.075019,0 -0.1435156,-0.01305 -0.067681,-0.01223 -0.1785791,-0.05219 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1818" />
+                <path
+                   d="M 3.4223585,21.209 V 20.082891 H 3.0431837 v -0.139438 h 0.9238818 v 0.139438 H 3.5870753 V 21.209 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1820" />
+              </g>
+              <g
+                 aria-label="DEPLOYED:"
+                 id="text176"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="m 5.1363918,21.209 v -1.265547 h 0.3000781 q 0.2071192,0 0.307417,0.07257 0.1011133,0.07176 0.1516699,0.21772 0.050557,0.145962 0.050557,0.345742 0,0.18918 -0.053818,0.332695 -0.053003,0.1427 -0.1508545,0.220166 Q 5.6435891,21.209 5.4364699,21.209 Z m 0.1647168,-0.139439 h 0.110083 q 0.1671631,0 0.2381055,-0.05953 0.071758,-0.05953 0.1019287,-0.164717 0.030986,-0.106006 0.030986,-0.291924 0,-0.181841 -0.035879,-0.279692 -0.035879,-0.09785 -0.1027441,-0.150039 -0.066865,-0.053 -0.2193506,-0.053 H 5.3011086 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1823" />
+                <path
+                   d="M 6.8602102,21.069561 V 21.209 H 6.1768801 V 19.943453 H 6.8471633 V 20.07066 H 6.3415969 v 0.429731 h 0.4550098 v 0.126392 H 6.3415969 v 0.442778 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1825" />
+                <path
+                   d="M 7.320928,20.747466 V 21.209 H 7.1562112 V 19.943453 H 7.470967 q 0.1940723,0 0.2829541,0.04403 0.088882,0.04322 0.1361768,0.127207 0.047295,0.08399 0.047295,0.187549 0,0.121499 -0.063603,0.226689 -0.063604,0.105191 -0.1777637,0.162271 -0.1133447,0.05626 -0.3082324,0.05626 z m 0,-0.126391 h 0.070942 q 0.1524854,0 0.2266895,-0.03914 0.074204,-0.03996 0.1141601,-0.11416 0.039956,-0.0742 0.039956,-0.16064 0,-0.109267 -0.071758,-0.172871 -0.070942,-0.0636 -0.2813232,-0.0636 H 7.320928 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1827" />
+                <path
+                   d="M 8.8759525,21.069561 V 21.209 H 8.1926224 v -1.265547 h 0.1647168 v 1.126108 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1829" />
+                <path
+                   d="m 9.5160647,21.247325 q -0.2152734,0 -0.3294336,-0.181026 -0.1133447,-0.18184 -0.1133447,-0.490073 0,-0.307417 0.1133447,-0.488442 0.1141602,-0.181841 0.3294336,-0.181841 0.2160888,0 0.3294336,0.181841 0.1133447,0.181025 0.1133447,0.488442 0,0.308233 -0.1133447,0.490073 -0.1133448,0.181026 -0.3294336,0.181026 z m 0,-0.127207 q 0.1190527,0 0.1981494,-0.134546 0.079912,-0.135361 0.079912,-0.409346 0,-0.273984 -0.079912,-0.40853 -0.079097,-0.135361 -0.1981494,-0.135361 -0.1190527,0 -0.1989649,0.135361 -0.079097,0.134546 -0.079097,0.40853 0,0.273985 0.079097,0.409346 0.079912,0.134546 0.1989649,0.134546 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1831" />
+                <path
+                   d="m 10.435869,21.209 v -0.585479 l -0.376728,-0.680068 h 0.186733 l 0.281323,0.502304 0.280508,-0.502304 h 0.168794 l -0.375913,0.680068 V 21.209 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1833" />
+                <path
+                   d="M 11.866949,21.069561 V 21.209 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505567 v 0.429731 h 0.45501 v 0.126392 h -0.45501 v 0.442778 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1835" />
+                <path
+                   d="m 12.145826,21.209 v -1.265547 h 0.300078 q 0.207119,0 0.307417,0.07257 0.101113,0.07176 0.15167,0.21772 0.05056,0.145962 0.05056,0.345742 0,0.18918 -0.05382,0.332695 -0.053,0.1427 -0.150855,0.220166 -0.09785,0.07665 -0.30497,0.07665 z m 0.164716,-0.139439 h 0.110083 q 0.167163,0 0.238106,-0.05953 0.07176,-0.05953 0.101929,-0.164717 0.03099,-0.106006 0.03099,-0.291924 0,-0.181841 -0.03588,-0.279692 -0.03588,-0.09785 -0.102744,-0.150039 -0.06686,-0.053 -0.219351,-0.053 h -0.12313 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1837" />
+                <path
+                   d="m 13.521455,21.247325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1839" />
+              </g>
+              <g
+                 aria-label="Fri"
+                 id="text178"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="m 15.215102,21.209 v -1.265547 h 0.695562 v 0.127207 h -0.530845 v 0.429731 h 0.480288 v 0.126392 H 15.379819 V 21.209 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1842" />
+                <path
+                   d="m 16.235205,21.209 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 21.209 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1844" />
+                <path
+                   d="m 17.414316,21.209 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 V 21.209 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1846" />
+              </g>
+              <g
+                 aria-label="Sep"
+                 id="text180"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="m 19.166023,21.18209 v -0.154931 q 0.195703,0.09296 0.355527,0.09296 0.06686,0 0.128022,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.123129 -0.04322,-0.0579 -0.162271,-0.127208 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309864,-0.09785 0.135361,0 0.261753,0.03914 v 0.141069 q -0.139439,-0.05382 -0.271538,-0.05382 -0.105191,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319649 0,0.146777 -0.106821,0.251967 -0.106822,0.105191 -0.342481,0.105191 -0.07502,0 -0.143515,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1849" />
+                <path
+                   d="m 20.923274,21.148658 q -0.181841,0.08643 -0.344112,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1851" />
+                <path
+                   d="m 21.307341,20.502838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.180209 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1853" />
+              </g>
+              <g
+                 aria-label="18"
+                 id="text182"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="m 23.509164,21.082608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03832 -0.176949,0.07828 v -0.136993 q 0.178579,-0.07583 0.309864,-0.196518 h 0.151669 v 1.139155 h 0.304156 V 21.209 H 23.1993 v -0.126392 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1856" />
+                <path
+                   d="m 24.421629,20.526485 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144332 0,0.05382 -0.01876,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298448,0.100298 -0.19978,0 -0.299262,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.0473,0.05463 -0.0473,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158194 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118238,-0.110898 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1858" />
+              </g>
+              <g
+                 aria-label="16:24:24"
+                 id="text184"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="m 26.515164,21.082608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03832 -0.176948,0.07828 v -0.136993 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 V 21.209 h -0.765688 v -0.126392 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1861" />
+                <path
+                   d="m 27.291453,20.615367 q 0.05871,-0.08725 0.145147,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109267,-0.185918 -0.109267,-0.472133 0,-0.316387 0.139438,-0.499859 0.139438,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.16961,0 -0.262569,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114975,0 -0.189179,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1863" />
+                <path
+                   d="m 28.555369,21.247325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1865" />
+                <path
+                   d="m 29.943231,21.209 h -0.765689 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06523,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.05789 v -0.134546 q 0.102745,-0.04893 0.205489,-0.06686 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1867" />
+                <path
+                   d="m 30.633899,21.209 v -0.353897 h -0.537368 v -0.127207 l 0.537368,-0.784443 h 0.152486 v 0.784443 h 0.234028 v 0.127207 H 30.786385 V 21.209 Z m 0,-0.481104 v -0.554492 l -0.375913,0.554492 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1869" />
+                <path
+                   d="m 31.559412,21.247325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1871" />
+                <path
+                   d="m 32.947274,21.209 h -0.765689 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140253,0.05789 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1873" />
+                <path
+                   d="m 33.637943,21.209 v -0.353897 h -0.537369 v -0.127207 l 0.537369,-0.784443 h 0.152485 v 0.784443 h 0.234028 v 0.127207 H 33.790428 V 21.209 Z m 0,-0.481104 v -0.554492 l -0.375914,0.554492 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1875" />
+              </g>
+              <g
+                 aria-label="2020"
+                 id="text186"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="m 35.957187,21.209 h -0.765688 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.05789 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194887,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1878" />
+                <path
+                   d="m 36.572021,19.905943 q 0.216089,0 0.329434,0.181841 0.113344,0.181025 0.113344,0.488442 0,0.308233 -0.113344,0.490073 -0.113345,0.181026 -0.329434,0.181026 -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 z m -0.247075,0.941006 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434625,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154931,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1880" />
+                <path
+                   d="m 37.959882,21.209 h -0.765688 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06524,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.05789 v -0.134546 q 0.102744,-0.04893 0.205489,-0.06686 0.103559,-0.01875 0.170424,-0.01875 0.09867,0 0.181026,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1882" />
+                <path
+                   d="m 38.574717,19.905943 q 0.216088,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173686 0.06524,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1884" />
+              </g>
+              <g
+                 aria-label="NAMESPACE:"
+                 id="text188"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="M 0.25441406,23.379999 H 0.10274414 v -1.265547 h 0.1484082 l 0.44767088,0.842339 0.0489258,0.125576 h 0.004077 L 0.747749,22.956791 v -0.842339 h 0.15166992 v 1.265547 H 0.747749 l -0.43543944,-0.828476 -0.0611572,-0.132915 0.003262,0.131284 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1887" />
+                <path
+                   d="M 1.1864502,23.379999 H 1.0282568 L 1.4180322,22.114452 H 1.5851953 L 1.977417,23.379999 H 1.8037305 L 1.7172949,23.101938 H 1.2720703 Z m 0.1247607,-0.404453 h 0.3693897 l -0.1524854,-0.480288 -0.035879,-0.127207 -0.031802,0.127207 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1889" />
+                <path
+                   d="m 2.1812744,23.379999 h -0.132915 v -1.265547 h 0.1655322 l 0.2919238,0.833369 0.2919238,-0.833369 h 0.1614551 v 1.265547 H 2.8075244 v -0.80646 l 0.00408,-0.110898 h -0.00408 l -0.035879,0.110898 -0.1957031,0.553677 H 2.4112256 L 2.2130762,22.573539 2.1812744,22.462641 h -0.00408 l 0.00408,0.110898 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1891" />
+                <path
+                   d="m 3.8529054,23.240561 v 0.139438 H 3.1695753 v -1.265547 h 0.6702832 v 0.127207 H 3.3342921 v 0.429732 h 0.4550098 v 0.126391 H 3.3342921 v 0.442779 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1893" />
+                <path
+                   d="m 4.1334131,23.35309 v -0.154932 q 0.1957031,0.09296 0.3555273,0.09296 0.066865,0 0.1280225,-0.02528 0.061157,-0.02609 0.092143,-0.0742 0.031802,-0.04811 0.031802,-0.104375 0,-0.06605 -0.043218,-0.12313 -0.043218,-0.0579 -0.1622705,-0.127207 l -0.083174,-0.04811 -0.083989,-0.04811 Q 4.14646,22.609418 4.14646,22.41453 q 0,-0.1427 0.098667,-0.239736 0.099482,-0.09785 0.3098632,-0.09785 0.1353614,0 0.261753,0.03914 v 0.14107 q -0.1394385,-0.05382 -0.2715381,-0.05382 -0.1051904,0 -0.1704248,0.05545 -0.064419,0.05545 -0.064419,0.133731 0,0.07747 0.049741,0.128838 0.049741,0.05137 0.1272071,0.09459 l 0.063604,0.03833 0.079097,0.04811 0.066865,0.03914 q 0.2079346,0.127207 0.2079346,0.319648 0,0.146778 -0.1068213,0.251968 -0.1068213,0.10519 -0.3424805,0.10519 -0.07502,0 -0.1435156,-0.01305 -0.067681,-0.01223 -0.1785791,-0.05219 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1895" />
+                <path
+                   d="m 5.3149706,22.918466 v 0.461533 H 5.1502538 v -1.265547 h 0.3147559 q 0.1940722,0 0.2829541,0.04403 0.088882,0.04322 0.1361767,0.127207 0.047295,0.08399 0.047295,0.187548 0,0.121499 -0.063604,0.22669 -0.063603,0.10519 -0.1777637,0.16227 -0.1133447,0.05626 -0.3082324,0.05626 z m 0,-0.126392 h 0.070942 q 0.1524853,0 0.2266894,-0.03914 0.074204,-0.03996 0.1141602,-0.11416 0.039956,-0.07421 0.039956,-0.16064 0,-0.109268 -0.071758,-0.172871 -0.070942,-0.0636 -0.2813232,-0.0636 h -0.098667 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1897" />
+                <path
+                   d="M 6.1931887,23.379999 H 6.0349954 l 0.3897754,-1.265547 h 0.167163 l 0.3922217,1.265547 H 6.810469 L 6.7240335,23.101938 H 6.2788089 Z m 0.1247608,-0.404453 h 0.3693896 l -0.1524853,-0.480288 -0.035879,-0.127207 -0.031802,0.127207 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1899" />
+                <path
+                   d="m 7.8966212,23.365321 q -0.1418847,0.053 -0.254414,0.053 -0.1484082,0 -0.273169,-0.0791 -0.1247607,-0.07991 -0.1940722,-0.236475 -0.069312,-0.157378 -0.069312,-0.355527 0,-0.196519 0.068496,-0.353081 0.068496,-0.156563 0.1932569,-0.23729 0.1247607,-0.08073 0.2747998,-0.08073 0.1125293,0 0.254414,0.053 v 0.150039 q -0.1312842,-0.07583 -0.2609375,-0.07583 -0.097851,0 -0.1793945,0.06686 -0.080727,0.06687 -0.1304687,0.196519 -0.049741,0.128838 -0.049741,0.280508 0,0.154116 0.051372,0.284585 0.051372,0.130468 0.1312842,0.195703 0.079912,0.06442 0.1769482,0.06442 0.1288379,0 0.2609375,-0.07584 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1901" />
+                <path
+                   d="m 8.8596436,23.240561 v 0.139438 H 8.1763135 v -1.265547 h 0.6702832 v 0.127207 H 8.3410303 v 0.429732 h 0.4550098 v 0.126391 H 8.3410303 v 0.442779 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1903" />
+                <path
+                   d="m 9.5128026,23.418324 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03832 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093775,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093775,0.03914 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1905" />
+              </g>
+              <g
+                 aria-label="default"
+                 id="text190"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="m 11.756702,23.175326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152486 v 1.316103 h -0.152486 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1908" />
+                <path
+                   d="m 12.907274,23.319657 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 H 12.29244 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1910" />
+                <path
+                   d="m 13.363099,23.379999 v -0.708608 h -0.202227 v -0.126392 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125577,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106005,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126392 h -0.361235 v 0.708608 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1912" />
+                <path
+                   d="m 14.75096,23.175326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 H 14.7795 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1914" />
+                <path
+                   d="m 15.903162,22.469164 v 0.910835 h -0.151669 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1916" />
+                <path
+                   d="m 16.399759,23.379999 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126391 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1918" />
+                <path
+                   d="m 17.918089,23.343305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1920" />
+              </g>
+              <g
+                 aria-label="STATUS:"
+                 id="text192"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="M 0.12802246,25.524091 V 25.36916 q 0.19570312,0.09296 0.35552733,0.09296 0.0668652,0 0.12802246,-0.02528 0.0611572,-0.02609 0.0921435,-0.0742 0.0318018,-0.04811 0.0318018,-0.104375 0,-0.06605 -0.0432178,-0.12313 -0.0432178,-0.0579 -0.16227051,-0.127207 l -0.0831738,-0.04811 -0.0839893,-0.04811 Q 0.14106933,24.78042 0.14106933,24.585532 q 0,-0.1427 0.098667,-0.239736 0.0994824,-0.09785 0.30986328,-0.09785 0.13536132,0 0.26175292,0.03914 v 0.141069 q -0.13943847,-0.05382 -0.27153808,-0.05382 -0.10519043,0 -0.1704248,0.05545 -0.0644189,0.05545 -0.0644189,0.13373 0,0.07747 0.0497412,0.128838 0.0497412,0.05137 0.12720703,0.09459 l 0.0636035,0.03833 0.0790967,0.04811 0.0668652,0.03914 q 0.20793456,0.127207 0.20793456,0.319649 0,0.146777 -0.10682128,0.251967 -0.10682129,0.105191 -0.34248046,0.105191 -0.0750195,0 -0.14351563,-0.01305 -0.0676807,-0.01223 -0.17857909,-0.05219 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1923" />
+                <path
+                   d="M 1.4196631,25.551001 V 24.424892 H 1.0404883 v -0.139438 h 0.9238818 v 0.139438 H 1.5843799 v 1.126109 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1925" />
+                <path
+                   d="M 2.1877979,25.551001 H 2.0296045 L 2.4193799,24.285454 H 2.586543 l 0.3922216,1.265547 H 2.8050781 L 2.7186426,25.272939 H 2.273418 Z M 2.3125586,25.146547 H 2.6819482 L 2.5294629,24.666259 2.493584,24.539052 2.4617822,24.666259 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1927" />
+                <path
+                   d="M 3.4223585,25.551001 V 24.424892 H 3.0431837 v -0.139438 h 0.9238818 v 0.139438 H 3.5870753 v 1.126109 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1929" />
+                <path
+                   d="m 4.1081348,24.285454 h 0.1647168 v 0.830923 q 0,0.163901 0.026909,0.224243 0.027725,0.05953 0.083989,0.09133 0.05708,0.03099 0.1263916,0.03099 0.073389,0 0.1304688,-0.03343 0.057895,-0.03425 0.084805,-0.106006 0.027725,-0.07257 0.027725,-0.271538 v -0.766504 h 0.15167 v 0.82603 q 0,0.176948 -0.053003,0.277246 -0.052187,0.09948 -0.1369921,0.150039 -0.084805,0.05056 -0.2136426,0.05056 -0.1190527,0 -0.2095654,-0.04403 -0.090513,-0.04403 -0.1369922,-0.1321 -0.04648,-0.08807 -0.04648,-0.318018 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1931" />
+                <path
+                   d="M 5.1347606,25.524091 V 25.36916 q 0.1957032,0.09296 0.3555274,0.09296 0.066865,0 0.1280224,-0.02528 0.061157,-0.02609 0.092144,-0.0742 0.031802,-0.04811 0.031802,-0.104375 0,-0.06605 -0.043218,-0.12313 -0.043218,-0.0579 -0.1622705,-0.127207 l -0.083174,-0.04811 -0.083989,-0.04811 Q 5.1478075,24.78042 5.1478075,24.585532 q 0,-0.1427 0.098667,-0.239736 0.099482,-0.09785 0.3098633,-0.09785 0.1353613,0 0.2617529,0.03914 v 0.141069 q -0.1394385,-0.05382 -0.2715381,-0.05382 -0.1051904,0 -0.1704248,0.05545 -0.064419,0.05545 -0.064419,0.13373 0,0.07747 0.049741,0.128838 0.049741,0.05137 0.127207,0.09459 l 0.063604,0.03833 0.079097,0.04811 0.066865,0.03914 q 0.2079346,0.127207 0.2079346,0.319649 0,0.146777 -0.1068213,0.251967 -0.1068213,0.105191 -0.3424804,0.105191 -0.07502,0 -0.1435157,-0.01305 -0.067681,-0.01223 -0.1785791,-0.05219 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1933" />
+                <path
+                   d="m 6.50876,25.589326 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708609 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1935" />
+              </g>
+              <g
+                 aria-label="deployed"
+                 id="text194"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="m 8.7507019,25.346328 q -0.069311,0.11416 -0.1671631,0.172055 -0.097036,0.0579 -0.1785791,0.0579 -0.1141601,0 -0.2054882,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.161455,-0.196519 0.1011133,-0.07257 0.250337,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 v -0.405269 h 0.1524854 v 1.316104 H 8.7507019 Z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.150039,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295185 0,0.135362 0.050557,0.204673 0.051372,0.0685 0.1166065,0.0685 0.070942,0 0.1565624,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1938" />
+                <path
+                   d="m 9.9012732,25.490659 q -0.1818408,0.08643 -0.3441113,0.08643 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057896,-0.11416 -0.057896,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 9.2864392 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 9.295409,25.007109 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1940" />
+                <path
+                   d="m 10.285341,24.844839 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.180209 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193256 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1942" />
+                <path
+                   d="M 11.391063,25.551001 V 24.362104 H 11.11871 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1944" />
+                <path
+                   d="m 12.52288,25.576279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1946" />
+                <path
+                   d="m 13.484271,25.514306 -0.420762,-0.87414 h 0.167164 l 0.335141,0.68333 0.280508,-0.68333 h 0.152485 l -0.353081,0.846416 q -0.111714,0.268276 -0.212827,0.356342 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123945,-0.01223 v -0.13373 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101113 0.0473,-0.07257 0.06686,-0.125576 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1948" />
+                <path
+                   d="m 14.908012,25.490659 q -0.181841,0.08643 -0.344112,0.08643 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1950" />
+                <path
+                   d="m 15.760136,25.346328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.17858,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1952" />
+              </g>
+              <g
+                 aria-label="REVISION:"
+                 id="text196"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="M 0.28621581,27.184632 V 27.722 H 0.12149902 v -1.265547 h 0.33840331 q 0.16553222,0 0.24381347,0.03425 0.0782812,0.03343 0.12068359,0.101929 0.0432178,0.0685 0.0432178,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0790967,0.132915 -0.0497412,0.05789 -0.14433105,0.110083 L 0.98177732,27.722 H 0.7860742 L 0.45093261,27.184632 Z m 0,-0.127207 h 0.2307666 q 0.0774658,-0.0424 0.11497558,-0.08644 0.0383252,-0.04403 0.0578955,-0.09377 0.0195703,-0.04974 0.0195703,-0.09948 0,-0.08888 -0.0652344,-0.14107 -0.0644189,-0.053 -0.23484375,-0.053 H 0.28621581 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1955" />
+                <path
+                   d="M 1.8502099,27.582562 V 27.722 h -0.68333 V 26.456453 H 1.8371631 V 26.58366 H 1.3315967 v 0.429732 h 0.4550097 v 0.126391 H 1.3315967 v 0.442779 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1957" />
+                <path
+                   d="M 2.8205713,26.456453 H 2.9787646 L 2.5889893,27.722 H 2.4218262 L 2.0296045,26.456453 H 2.203291 l 0.2747998,0.883926 0.035879,0.128838 0.031802,-0.128023 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1959" />
+                <path
+                   d="M 3.144297,27.722 V 27.595609 H 3.4223585 V 26.58366 H 3.144297 V 26.456453 H 3.8651368 V 26.58366 H 3.5870753 v 1.011949 H 3.8651368 V 27.722 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1961" />
+                <path
+                   d="m 4.1334131,27.695091 v -0.154932 q 0.1957031,0.09296 0.3555273,0.09296 0.066865,0 0.1280225,-0.02528 0.061157,-0.02609 0.092143,-0.0742 0.031802,-0.04811 0.031802,-0.104375 0,-0.06605 -0.043218,-0.12313 -0.043218,-0.0579 -0.1622705,-0.127207 l -0.083174,-0.04811 -0.083989,-0.04811 Q 4.14646,26.951419 4.14646,26.756531 q 0,-0.1427 0.098667,-0.239736 0.099482,-0.09785 0.3098632,-0.09785 0.1353614,0 0.261753,0.03914 v 0.141069 q -0.1394385,-0.05382 -0.2715381,-0.05382 -0.1051904,0 -0.1704248,0.05545 -0.064419,0.05545 -0.064419,0.133731 0,0.07747 0.049741,0.128838 0.049741,0.05137 0.1272071,0.09459 l 0.063604,0.03833 0.079097,0.04811 0.066865,0.03914 q 0.2079346,0.127207 0.2079346,0.319648 0,0.146777 -0.1068213,0.251968 -0.1068213,0.10519 -0.3424805,0.10519 -0.07502,0 -0.1435156,-0.01305 -0.067681,-0.01223 -0.1785791,-0.05219 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1963" />
+                <path
+                   d="M 5.1469921,27.722 V 27.595609 H 5.4250536 V 26.58366 H 5.1469921 V 26.456453 H 5.8678319 V 26.58366 H 5.5897704 v 1.011949 H 5.8678319 V 27.722 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1965" />
+                <path
+                   d="m 6.50876,27.760325 q -0.2152734,0 -0.3294336,-0.181025 -0.1133447,-0.181841 -0.1133447,-0.490073 0,-0.307417 0.1133447,-0.488443 0.1141602,-0.18184 0.3294336,-0.18184 0.2160889,0 0.3294336,0.18184 0.1133447,0.181026 0.1133447,0.488443 0,0.308232 -0.1133447,0.490073 -0.1133447,0.181025 -0.3294336,0.181025 z m 0,-0.127207 q 0.1190528,0 0.1981494,-0.134546 0.079912,-0.135361 0.079912,-0.409345 0,-0.273985 -0.079912,-0.408531 -0.079097,-0.135361 -0.1981494,-0.135361 -0.1190527,0 -0.1989648,0.135361 -0.079097,0.134546 -0.079097,0.408531 0,0.273984 0.079097,0.409345 0.079912,0.134546 0.1989648,0.134546 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1967" />
+                <path
+                   d="M 7.2638478,27.722 H 7.1121779 v -1.265547 h 0.1484082 l 0.4476709,0.842339 0.048926,0.125576 h 0.00408 l -0.00408,-0.125576 V 26.456453 H 7.9088527 V 27.722 H 7.7571828 l -0.4354395,-0.828476 -0.061157,-0.132915 0.00326,0.131284 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1969" />
+                <path
+                   d="m 8.5114551,27.760325 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1971" />
+              </g>
+              <g
+                 aria-label="12"
+                 id="text198"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="m 10.483165,27.595609 v -0.976885 q -0.0685,0.05463 -0.132916,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309864,-0.196519 h 0.151669 v 1.139156 H 10.93899 V 27.722 h -0.765689 v -0.126391 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1974" />
+                <path
+                   d="m 11.908536,27.722 h -0.765689 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06523,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102745,-0.04893 0.205489,-0.06687 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1976" />
+              </g>
+              <g
+                 aria-label="TEST"
+                 id="text200"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="m 0.41831542,29.893 v -1.126109 h -0.3791748 v -0.139438 h 0.92388182 v 0.139438 H 0.58303221 V 29.893 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1979" />
+                <path
+                   d="M 1.8502099,29.753561 V 29.893 h -0.68333 V 28.627453 H 1.8371631 V 28.75466 H 1.3315967 v 0.429731 h 0.4550097 v 0.126392 H 1.3315967 v 0.442778 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1981" />
+                <path
+                   d="m 2.1307178,29.86609 v -0.154931 q 0.1957031,0.09296 0.3555273,0.09296 0.066865,0 0.1280225,-0.02528 0.061157,-0.02609 0.092144,-0.0742 0.031802,-0.04811 0.031802,-0.104375 0,-0.06605 -0.043218,-0.123129 -0.043218,-0.0579 -0.1622705,-0.127208 l -0.083174,-0.04811 -0.083989,-0.04811 q -0.2217968,-0.131284 -0.2217968,-0.326172 0,-0.1427 0.098667,-0.239736 0.099482,-0.09785 0.3098633,-0.09785 0.1353613,0 0.2617529,0.03914 v 0.141069 q -0.1394384,-0.05382 -0.271538,-0.05382 -0.1051905,0 -0.1704248,0.05545 -0.064419,0.05545 -0.064419,0.13373 0,0.07747 0.049741,0.128838 0.049741,0.05137 0.1272071,0.09459 l 0.063604,0.03833 0.079097,0.04811 0.066865,0.03914 q 0.2079345,0.127207 0.2079345,0.319649 0,0.146777 -0.1068212,0.251967 -0.1068213,0.105191 -0.3424805,0.105191 -0.075019,0 -0.1435156,-0.01305 -0.067681,-0.01223 -0.1785791,-0.05219 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1983" />
+                <path
+                   d="M 3.4223585,29.893 V 28.766891 H 3.0431837 v -0.139438 h 0.9238818 v 0.139438 H 3.5870753 V 29.893 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1985" />
+              </g>
+              <g
+                 aria-label="SUITE:"
+                 id="text202"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="m 5.1380227,29.86609 v -0.154931 q 0.1957031,0.09296 0.3555273,0.09296 0.066865,0 0.1280225,-0.02528 0.061157,-0.02609 0.092143,-0.0742 0.031802,-0.04811 0.031802,-0.104375 0,-0.06605 -0.043218,-0.123129 -0.043218,-0.0579 -0.1622705,-0.127208 l -0.083174,-0.04811 -0.083989,-0.04811 q -0.2217968,-0.131284 -0.2217968,-0.326172 0,-0.1427 0.098667,-0.239736 0.099482,-0.09785 0.3098632,-0.09785 0.1353613,0 0.2617529,0.03914 v 0.141069 q -0.1394384,-0.05382 -0.271538,-0.05382 -0.1051905,0 -0.1704248,0.05545 -0.064419,0.05545 -0.064419,0.13373 0,0.07747 0.049741,0.128838 0.049741,0.05137 0.1272071,0.09459 l 0.063604,0.03833 0.079097,0.04811 0.066865,0.03914 q 0.2079346,0.127207 0.2079346,0.319649 0,0.146777 -0.1068213,0.251967 -0.1068213,0.105191 -0.3424805,0.105191 -0.075019,0 -0.1435156,-0.01305 -0.067681,-0.01223 -0.1785791,-0.05219 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1988" />
+                <path
+                   d="m 6.114092,28.627453 h 0.1647168 v 0.830923 q 0,0.163901 0.026909,0.224243 0.027725,0.05953 0.083989,0.09133 0.05708,0.03099 0.1263916,0.03099 0.073389,0 0.1304687,-0.03343 0.057895,-0.03425 0.084805,-0.106006 0.027725,-0.07257 0.027725,-0.271538 v -0.766504 h 0.1516699 v 0.82603 q 0,0.176948 -0.053003,0.277246 -0.052188,0.09948 -0.1369922,0.150039 -0.084805,0.05056 -0.2136426,0.05056 -0.1190527,0 -0.2095654,-0.04403 -0.090513,-0.04403 -0.1369922,-0.1321 -0.046479,-0.08807 -0.046479,-0.318018 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1990" />
+                <path
+                   d="M 7.1529495,29.893 V 29.766608 H 7.431011 V 28.75466 H 7.1529495 V 28.627453 H 7.8737893 V 28.75466 H 7.5957278 v 1.011948 H 7.8737893 V 29.893 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1992" />
+                <path
+                   d="M 8.4323588,29.893 V 28.766891 H 8.053184 v -0.139438 h 0.9238818 v 0.139438 H 8.5970755 V 29.893 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1994" />
+                <path
+                   d="M 9.8642532,29.753561 V 29.893 H 9.1809231 V 28.627453 H 9.8512063 V 28.75466 H 9.3456399 v 0.429731 h 0.4550097 v 0.126392 H 9.3456399 v 0.442778 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1996" />
+                <path
+                   d="m 10.517412,29.931325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path1998" />
+              </g>
+              <g
+                 aria-label="None"
+                 id="text204"
+                 class="n"
+                 style="white-space:pre;fill:#b9c0cb">
+                <path
+                   d="m 12.278414,29.893 h -0.15167 v -1.265547 h 0.148409 l 0.44767,0.842339 0.04893,0.125576 h 0.0041 l -0.0041,-0.125576 v -0.842339 h 0.15167 V 29.893 h -0.15167 l -0.435439,-0.828477 -0.06116,-0.132915 0.0033,0.131284 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path2001" />
+                <path
+                   d="m 13.526837,29.918278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path2003" />
+                <path
+                   d="m 14.153087,29.893 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 29.893 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 29.893 Z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path2005" />
+                <path
+                   d="m 15.911969,29.832658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                   style="white-space:pre;fill:#b9c0cb"
+                   id="path2007" />
+              </g>
+              <path
+                 class="e"
+                 d="m 0,30.394 h 1 v 2.171 H 0 Z"
+                 id="path206" />
+              <g
+                 id="text208"
+                 class="f"
+                 style="white-space:pre" />
+              <path
+                 class="e"
+                 d="m 1.002,30.394 h 5 v 2.171 h -5 z"
+                 id="path210" />
+              <g
+                 aria-label="kvaps"
+                 id="text212"
+                 class="g"
+                 style="font-weight:700;white-space:pre">
+                <path
+                   d="M 1.1691631,32.063999 V 30.747896 H 1.320833 v 0.826845 l 0.4378857,-0.421577 h 0.2022266 l -0.4370703,0.421577 0.4484863,0.489258 h -0.20875 L 1.320833,31.574741 v 0.489258 z"
+                   style="font-weight:700;white-space:pre"
+                   id="path2011" />
+                <path
+                   d="M 2.4257402,32.063999 2.0302568,31.153164 h 0.1663477 l 0.3123095,0.72084 0.318833,-0.72084 h 0.1516699 l -0.3987451,0.910835 z"
+                   style="font-weight:700;white-space:pre"
+                   id="path2013" />
+                <path
+                   d="m 3.7296123,31.859326 q -0.069312,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524853 v 0.643374 q 0,0.164717 0.034248,0.267461 H 3.7581523 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108453 -0.092959,0.108452 -0.092959,0.295185 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                   style="font-weight:700;white-space:pre"
+                   id="path2015" />
+                <path
+                   d="m 4.2726886,31.357837 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.05789 0.1785791,-0.05789 0.1141601,0 0.2054882,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.161455,0.196518 -0.1011133,0.07176 -0.250337,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353897 H 4.1210187 v -1.264732 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                   style="font-weight:700;white-space:pre"
+                   id="path2017" />
+                <path
+                   d="m 5.1443828,32.015889 v -0.16064 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023647,-0.02609 -0.1174218,-0.06442 l -0.052188,-0.0212 -0.1051905,-0.04159 q -0.1696093,-0.06605 -0.2136425,-0.122314 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.11253 0.086436,-0.185103 0.087251,-0.07257 0.2821386,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137808 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027442,0.03751 q 0.1410693,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.091328,0.194888 -0.090513,0.07583 -0.2902929,0.07583 -0.174502,0 -0.3587891,-0.07339 z"
+                   style="font-weight:700;white-space:pre"
+                   id="path2019" />
+              </g>
+              <path
+                 class="e"
+                 d="m 6.012,30.394 h 1 v 2.171 h -1 z"
+                 id="path214" />
+              <g
+                 id="text216"
+                 class="f"
+                 style="white-space:pre" />
+              <path
+                 class="h"
+                 d="m 7.014,30.394 h 1 v 2.171 h -1 z"
+                 id="path218" />
+              <g
+                 aria-label=""
+                 id="text220"
+                 class="i"
+                 style="white-space:pre;fill:#00d7ff">
+                <path
+                   d="m 7.0139999,30.494297 1.0258106,0.990747 -1.0258106,0.992378 z"
+                   style="white-space:pre;fill:#00d7ff"
+                   id="path2023" />
+              </g>
+              <path
+                 class="h"
+                 d="m 8.016,30.394 h 1 v 2.171 h -1 z"
+                 id="path222" />
+              <g
+                 id="text224"
+                 class="j"
+                 style="white-space:pre;fill:#eeeeee" />
+              <path
+                 class="h"
+                 d="m 9.018,30.394 h 1 v 2.171 h -1 z"
+                 id="path226" />
+              <g
+                 aria-label="~"
+                 id="text228"
+                 class="k"
+                 style="font-weight:700;white-space:pre;fill:#ffffff">
+                <path
+                   d="m 9.0636637,31.735381 v -0.01468 q 0,-0.106821 0.062788,-0.185102 0.063603,-0.0791 0.1704248,-0.0791 0.026909,0 0.052188,0.0057 0.026094,0.0049 0.058711,0.01794 0.032617,0.01223 0.097852,0.04893 l 0.098667,0.05463 q 0.090513,0.04974 0.1475927,0.04974 0.060342,0 0.088882,-0.04322 0.029356,-0.04403 0.029356,-0.09541 v -0.01305 h 0.1043749 v 0.01305 q 0,0.136177 -0.077466,0.201411 -0.07665,0.06442 -0.1630859,0.06442 -0.080728,0 -0.2136426,-0.07584 l -0.083174,-0.04811 q -0.09459,-0.05382 -0.1524853,-0.05382 -0.032617,0 -0.061157,0.01712 -0.027725,0.01712 -0.044849,0.05463 -0.017124,0.03751 -0.017124,0.06605 v 0.01468 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path2027" />
+              </g>
+              <path
+                 class="h"
+                 d="m 10.02,30.394 h 1 v 2.171 h -1 z"
+                 id="path230" />
+              <g
+                 aria-label="/"
+                 id="text232"
+                 class="j"
+                 style="white-space:pre;fill:#eeeeee">
+                <path
+                   d="M 10.196133,32.102324 H 10.04691 l 0.804829,-1.341381 h 0.144331 z"
+                   style="white-space:pre;fill:#eeeeee"
+                   id="path2030" />
+              </g>
+              <path
+                 class="h"
+                 d="m 11.022,30.394 h 8 v 2.171 h -8 z"
+                 id="path234" />
+              <g
+                 aria-label="kubefarm"
+                 id="text236"
+                 class="k"
+                 style="font-weight:700;white-space:pre;fill:#ffffff">
+                <path
+                   d="m 11.189163,32.063999 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path2033" />
+                <path
+                   d="m 12.899119,31.153164 v 0.910835 H 12.74745 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path2035" />
+                <path
+                   d="m 13.291341,31.357837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path2037" />
+                <path
+                   d="m 14.909969,32.003657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path2039" />
+                <path
+                   d="m 15.365794,32.063999 v -0.708608 h -0.202226 v -0.126392 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 H 15.8787 v 0.126392 h -0.361236 v 0.708608 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path2041" />
+                <path
+                   d="m 16.753655,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140253,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path2043" />
+                <path
+                   d="m 17.233944,32.063999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path2045" />
+                <path
+                   d="m 18.08933,32.063999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525952 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path2047" />
+              </g>
+              <path
+                 class="h"
+                 d="m 19.038,30.394 h 1 v 2.171 h -1 z"
+                 id="path238" />
+              <g
+                 aria-label="/"
+                 id="text240"
+                 class="j"
+                 style="white-space:pre;fill:#eeeeee">
+                <path
+                   d="m 19.214133,32.102324 h -0.149224 l 0.804829,-1.341381 h 0.144331 z"
+                   style="white-space:pre;fill:#eeeeee"
+                   id="path2050" />
+              </g>
+              <path
+                 class="h"
+                 d="m 20.04,30.394 h 8 v 2.171 h -8 z"
+                 id="path242" />
+              <g
+                 aria-label="examples"
+                 id="text244"
+                 class="k"
+                 style="font-weight:700;white-space:pre;fill:#ffffff">
+                <path
+                   d="m 20.923927,32.003657 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path2053" />
+                <path
+                   d="m 21.26233,32.063999 h -0.175317 l 0.357973,-0.477026 -0.334326,-0.433809 h 0.194072 l 0.23729,0.305786 0.230767,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194888 l -0.277246,-0.362866 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path2055" />
+                <path
+                   d="m 22.767613,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path2057" />
+                <path
+                   d="m 23.10194,32.063999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path2059" />
+                <path
+                   d="m 24.312037,31.357837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path2061" />
+                <path
+                   d="m 25.41776,32.063999 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284584 v 0.126391 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path2063" />
+                <path
+                   d="m 26.932013,32.003657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path2065" />
+                <path
+                   d="m 27.186427,32.015889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                   style="font-weight:700;white-space:pre;fill:#ffffff"
+                   id="path2067" />
+              </g>
+              <path
+                 class="h"
+                 d="m 28.056,30.394 h 1 v 2.171 h -1 z"
+                 id="path246" />
+              <g
+                 id="text248"
+                 class="j"
+                 style="white-space:pre;fill:#eeeeee" />
+              <g
+                 aria-label=""
+                 id="text250"
+                 class="l"
+                 style="white-space:pre;fill:#005f87">
+                <path
+                   d="m 29.058001,30.494297 1.02581,0.990747 -1.02581,0.992378 z"
+                   style="white-space:pre;fill:#005f87"
+                   id="path2071" />
+              </g>
+              <g
+                 aria-label=""
+                 id="text252"
+                 class="o"
+                 style="white-space:pre;fill:#262626">
+                <path
+                   d="m 80.183808,32.477422 -1.025811,-0.992378 1.025811,-0.990747 z"
+                   style="white-space:pre;fill:#262626"
+                   id="path2074" />
+              </g>
+              <path
+                 class="p"
+                 d="m 80.16,30.394 h 13 v 2.171 h -13 z"
+                 id="path254" />
+              <g
+                 aria-label="stage-admin"
+                 id="text256"
+                 class="q"
+                 style="white-space:pre;fill:#af5fd7">
+                <path
+                   d="m 80.296996,32.015889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                   style="white-space:pre;fill:#af5fd7"
+                   id="path2077" />
+                <path
+                   d="m 82.049354,32.027305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227504 v -0.126392 h 0.227504 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                   style="white-space:pre;fill:#af5fd7"
+                   id="path2079" />
+                <path
+                   d="m 82.887616,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                   style="white-space:pre;fill:#af5fd7"
+                   id="path2081" />
+                <path
+                   d="m 83.898749,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149223,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335142,-0.0848 v -0.1533 q 0.06442,0.04403 0.158194,0.07746 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                   style="white-space:pre;fill:#af5fd7"
+                   id="path2083" />
+                <path
+                   d="m 85.04932,32.003657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                   style="white-space:pre;fill:#af5fd7"
+                   id="path2085" />
+                <path
+                   d="m 85.351844,31.614697 v -0.126391 h 0.632774 v 0.126391 z"
+                   style="white-space:pre;fill:#af5fd7"
+                   id="path2087" />
+                <path
+                   d="m 86.893007,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161456,-0.196518 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                   style="white-space:pre;fill:#af5fd7"
+                   id="path2089" />
+                <path
+                   d="m 87.90414,31.859326 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 H 87.90414 Z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                   style="white-space:pre;fill:#af5fd7"
+                   id="path2091" />
+                <path
+                   d="m 88.22868,32.063999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                   style="white-space:pre;fill:#af5fd7"
+                   id="path2093" />
+                <path
+                   d="M 89.553754,32.063999 V 31.279556 H 89.30097 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                   style="white-space:pre;fill:#af5fd7"
+                   id="path2095" />
+                <path
+                   d="m 90.299872,32.063999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157377,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+                   style="white-space:pre;fill:#af5fd7"
+                   id="path2097" />
+              </g>
+              <path
+                 class="p"
+                 d="m 93.186,30.394 h 1 v 2.171 h -1 z"
+                 id="path258" />
+              <g
+                 aria-label=""
+                 id="text260"
+                 class="r"
+                 style="white-space:pre;fill:#303030">
+                <path
+                   d="m 94.211808,32.477422 -1.025811,-0.992378 1.025811,-0.990747 z"
+                   style="white-space:pre;fill:#303030"
+                   id="path2100" />
+              </g>
+              <path
+                 class="s"
+                 d="m 94.188,30.394 h 25 v 2.171 h -25 z"
+                 id="path262" />
+              <g
+                 aria-label=" master  v0.5.2  "
+                 id="text264"
+                 class="t"
+                 style="white-space:pre;fill:#afd700">
+                <path
+                   d="m 94.443233,32.118633 q 0.02772,-0.02773 0.02772,-0.06686 0,-0.03996 -0.02772,-0.06687 -0.02773,-0.02772 -0.06768,-0.02772 -0.03914,0 -0.06605,0.02772 -0.02691,0.02691 -0.02691,0.06687 0,0.03914 0.02691,0.06686 0.02691,0.02772 0.06605,0.02772 0.03996,0 0.06768,-0.02772 z m 0,-1.131001 q 0.02772,-0.02773 0.02772,-0.06686 0,-0.03996 -0.02772,-0.06686 -0.02773,-0.02773 -0.06768,-0.02773 -0.03914,0 -0.06605,0.02773 -0.02691,0.02691 -0.02691,0.06686 0,0.03914 0.02691,0.06686 0.02691,0.02691 0.06605,0.02691 0.03996,0 0.06768,-0.02691 z m 0.628696,0.125576 q 0.02773,-0.02772 0.02773,-0.06686 0,-0.03996 -0.02773,-0.06686 -0.02691,-0.02773 -0.06686,-0.02773 -0.03914,0 -0.06687,0.02773 -0.02773,0.02691 -0.02773,0.06686 0,0.03914 0.02773,0.06686 0.02772,0.02691 0.06687,0.02691 0.03996,0 0.06686,-0.02691 z m 0.121499,-0.06686 q 0,0.05137 -0.02528,0.09459 -0.02528,0.04322 -0.0685,0.06768 -8.16e-4,0.07339 -0.01631,0.135362 -0.01468,0.06116 -0.03833,0.106006 -0.02283,0.04403 -0.05953,0.08154 -0.03588,0.03669 -0.06931,0.06034 -0.03343,0.02365 -0.07991,0.04485 -0.04566,0.02039 -0.0791,0.03262 -0.03262,0.01142 -0.07583,0.02446 -0.0024,0.0016 -0.0033,0.0016 -0.053,0.01631 -0.08236,0.02773 -0.02936,0.0106 -0.0579,0.02446 -0.02773,0.01386 -0.03996,0.02936 -0.01223,0.01549 -0.01957,0.03588 -0.0073,0.02039 -0.0073,0.04974 v 0.02609 q 0.0424,0.02446 0.0685,0.0685 0.02609,0.04322 0.02609,0.09459 0,0.07828 -0.05545,0.132915 -0.05545,0.05545 -0.13373,0.05545 -0.07828,0 -0.133731,-0.05545 -0.05463,-0.05463 -0.05463,-0.132915 0,-0.05137 0.02528,-0.09459 0.02609,-0.04403 0.06931,-0.0685 v -0.805645 q -0.04322,-0.02446 -0.06931,-0.06768 -0.02528,-0.04403 -0.02528,-0.09541 0,-0.07828 0.05463,-0.132915 0.05545,-0.05545 0.133731,-0.05545 0.07828,0 0.13373,0.05545 0.05545,0.05463 0.05545,0.132915 0,0.05137 -0.02609,0.09541 -0.02609,0.04322 -0.0685,0.06768 v 0.488443 q 0.05056,-0.02528 0.150854,-0.05626 0.04566,-0.01468 0.0742,-0.02446 0.02854,-0.0098 0.06197,-0.02528 0.03425,-0.01549 0.05382,-0.03017 0.02039,-0.01549 0.04159,-0.03751 0.0212,-0.02202 0.0318,-0.04811 0.0106,-0.02691 0.01794,-0.06197 0.0073,-0.03506 0.0073,-0.0791 -0.0424,-0.02446 -0.0685,-0.06768 -0.02609,-0.04403 -0.02609,-0.09459 0,-0.07828 0.05545,-0.133731 0.05545,-0.05545 0.13373,-0.05545 0.07828,0 0.132915,0.05545 0.05545,0.05545 0.05545,0.133731 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path2103" />
+                <path
+                   d="m 96.255118,32.063999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100297,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path2105" />
+                <path
+                   d="m 97.923487,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path2107" />
+                <path
+                   d="m 98.33691,32.015889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145961,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.151669,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path2109" />
+                <path
+                   d="m 100.08927,32.027305 q -0.106823,0.04485 -0.154933,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227504 v -0.126392 h 0.227504 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231584,-0.06931 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path2111" />
+                <path
+                   d="m 101.08654,32.003657 q -0.18184,0.08644 -0.34411,0.08644 -0.12313,0 -0.22017,-0.06116 -0.097,-0.06116 -0.15575,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.0554,-0.239736 0.0555,-0.114976 0.15493,-0.178579 0.0995,-0.06442 0.2218,-0.06442 0.16227,0 0.26012,0.115791 0.0987,0.115791 0.0987,0.357158 v 0.03262 h -0.62789 q 0,0.09459 0.0392,0.172871 0.0399,0.07828 0.10437,0.117422 0.0644,0.03914 0.14678,0.03914 0.14677,0 0.32454,-0.09785 z m -0.60587,-0.483549 h 0.4542 v -0.02202 q 0,-0.111714 -0.0546,-0.177764 -0.0546,-0.06605 -0.14596,-0.06605 -0.0921,0 -0.15982,0.06768 -0.0669,0.06686 -0.0938,0.19815 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path2113" />
+                <path
+                   d="m 101.40782,32.063999 v -0.910835 h 0.15167 v 0.198965 q 0.0709,-0.112529 0.16227,-0.167978 0.0921,-0.05626 0.20467,-0.05626 0.0824,0 0.16472,0.02528 v 0.328618 h -0.14596 v -0.207934 q -0.0383,-0.0065 -0.0603,-0.0065 -0.0848,0 -0.16634,0.06687 -0.0816,0.06686 -0.15901,0.200595 v 0.529214 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path2115" />
+                <path
+                   d="m 103.49939,31.27711 q 0.0228,-0.02283 0.0228,-0.05463 0,-0.03262 -0.0228,-0.05545 -0.022,-0.02283 -0.0546,-0.02283 -0.0318,0 -0.0546,0.02283 -0.0228,0.02283 -0.0228,0.05545 0,0.0318 0.0228,0.05463 0.0228,0.02202 0.0546,0.02202 0.0326,0 0.0546,-0.02202 z m 0.66703,0.292739 q 0,0.0318 -0.022,0.05463 l -0.29682,0.296816 q -0.0228,0.02202 -0.0546,0.02202 -0.0326,0 -0.0546,-0.02202 l -0.43218,-0.432178 q -0.0228,-0.02283 -0.0391,-0.06116 -0.0155,-0.03833 -0.0155,-0.07094 v -0.251153 q 0,-0.0318 0.0228,-0.05463 0.0228,-0.02283 0.0546,-0.02283 h 0.25115 q 0.0326,0 0.0709,0.01631 0.0383,0.01549 0.0612,0.03833 l 0.43218,0.431363 q 0.022,0.02365 0.022,0.05545 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path2117" />
+                <path
+                   d="m 105.63827,32.063999 -0.39549,-0.910835 h 0.16635 l 0.31231,0.72084 0.31883,-0.72084 h 0.15167 l -0.39874,0.910835 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path2119" />
+                <path
+                   d="m 106.7179,30.760943 q 0.21608,0 0.32943,0.18184 0.11334,0.181026 0.11334,0.488443 0,0.308232 -0.11334,0.490073 -0.11335,0.181025 -0.32943,0.181025 -0.21528,0 -0.32944,-0.181025 -0.11334,-0.181841 -0.11334,-0.490073 0,-0.307417 0.11334,-0.488443 0.11416,-0.18184 0.32944,-0.18184 z m -0.24708,0.941005 0.43789,-0.685776 q -0.0416,-0.07584 -0.0905,-0.101929 -0.0481,-0.02691 -0.10029,-0.02691 -0.13618,0 -0.20712,0.15167 -0.0709,0.150855 -0.0709,0.383252 0,0.053 0.003,0.11416 0.003,0.06116 0.0277,0.165532 z m 0.49252,-0.534921 -0.43462,0.689853 q 0.0351,0.05953 0.0807,0.0897 0.0457,0.02936 0.10193,0.02936 0.15493,0 0.22017,-0.172871 0.0652,-0.173687 0.0652,-0.384883 0,-0.130469 -0.0334,-0.251152 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path2121" />
+                <path
+                   d="m 107.71924,32.102324 q -0.0546,0 -0.0938,-0.03914 -0.0391,-0.03914 -0.0391,-0.09378 0,-0.05545 0.0391,-0.09377 0.04,-0.03914 0.0938,-0.03914 0.0538,0 0.093,0.03914 0.04,0.03833 0.04,0.09377 0,0.05463 -0.0391,0.09378 -0.0391,0.03914 -0.0938,0.03914 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path2123" />
+                <path
+                   d="m 108.37322,31.405947 v -0.607495 h 0.70861 v 0.145962 h -0.55694 v 0.309864 h 0.0261 q 0.27317,0 0.42076,0.11416 0.1476,0.11416 0.1476,0.307417 0,0.122314 -0.0595,0.21935 -0.0595,0.09704 -0.16798,0.152486 -0.10845,0.05463 -0.23077,0.05463 -0.12231,0 -0.31312,-0.05953 v -0.165532 q 0.0693,0.03751 0.15493,0.06197 0.0856,0.02365 0.15819,0.02365 0.0726,0 0.14189,-0.03506 0.0693,-0.03506 0.10764,-0.101928 0.0383,-0.06768 0.0383,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.10437,-0.08236 -0.37183,-0.08236 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path2125" />
+                <path
+                   d="m 109.72194,32.102324 q -0.0546,0 -0.0938,-0.03914 -0.0391,-0.03914 -0.0391,-0.09378 0,-0.05545 0.0391,-0.09377 0.04,-0.03914 0.0938,-0.03914 0.0538,0 0.093,0.03914 0.04,0.03833 0.04,0.09377 0,0.05463 -0.0391,0.09378 -0.0391,0.03914 -0.0938,0.03914 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path2127" />
+                <path
+                   d="m 111.1098,32.063999 h -0.76569 v -0.139438 q 0,-0.05382 0.022,-0.114976 0.022,-0.06197 0.084,-0.138623 0.062,-0.07665 0.13128,-0.147593 l 0.0864,-0.08807 q 0.0261,-0.02691 0.11416,-0.124761 0.0881,-0.09785 0.11579,-0.150039 0.0285,-0.05219 0.0285,-0.102744 0,-0.08154 -0.0652,-0.125576 -0.0652,-0.04485 -0.14677,-0.04485 -0.0465,0 -0.10438,0.0106 -0.0571,0.0106 -0.1003,0.02528 -0.0432,0.01386 -0.14025,0.0579 v -0.134546 q 0.10274,-0.04893 0.20549,-0.06687 0.10356,-0.01875 0.17042,-0.01875 0.0987,0 0.18103,0.03262 0.0832,0.0318 0.12313,0.09948 0.0408,0.06768 0.0408,0.144331 0,0.08562 -0.0522,0.175318 -0.0514,0.0897 -0.19489,0.230766 l -0.0929,0.09214 -0.0783,0.07665 q -0.0742,0.07502 -0.11986,0.145147 -0.0457,0.07013 -0.0506,0.167163 h 0.60831 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path2129" />
+                <path
+                   d="m 112.8116,31.7998 v -0.125576 q 0,-0.009 -0.006,-0.01468 -0.006,-0.0065 -0.0155,-0.0065 h -0.12476 q -0.01,0 -0.0155,0.0065 -0.006,0.0057 -0.006,0.01468 V 31.7998 q 0,0.0098 0.006,0.01549 0.006,0.0057 0.0155,0.0057 h 0.12476 q 0.01,0 0.0155,-0.0057 0.006,-0.0057 0.006,-0.01549 z m 0.16798,-0.439517 q 0,-0.05708 -0.0359,-0.106005 -0.0359,-0.04974 -0.0905,-0.07665 -0.0546,-0.02691 -0.11172,-0.02691 -0.159,0 -0.24299,0.139438 -0.004,0.0073 -0.002,0.01549 0.002,0.0073 0.007,0.01223 l 0.0872,0.06523 q 0.004,0.0041 0.0114,0.0041 0.0106,0 0.0171,-0.0082 0.0351,-0.04485 0.0563,-0.06034 0.0212,-0.01549 0.0554,-0.01549 0.0318,0 0.0563,0.01712 0.0245,0.01712 0.0245,0.03833 0,0.02528 -0.0139,0.04077 -0.0131,0.01468 -0.044,0.02854 -0.0408,0.01957 -0.075,0.0579 -0.0343,0.03751 -0.0343,0.08073 v 0.02365 q 0,0.009 0.006,0.01549 0.006,0.0057 0.0155,0.0057 h 0.12476 q 0.01,0 0.0155,-0.0057 0.006,-0.0065 0.006,-0.01549 0,-0.01223 0.0139,-0.0318 0.0147,-0.02039 0.0367,-0.03262 0.0171,-0.0098 0.0261,-0.01549 0.009,-0.0057 0.0253,-0.01712 0.0171,-0.01223 0.0261,-0.02365 0.01,-0.01223 0.0196,-0.02773 0.0106,-0.01631 0.0155,-0.03669 0.005,-0.0212 0.005,-0.04485 z m 0.2112,-0.06931 q 0.0399,0.09296 0.0399,0.195703 0,0.101929 -0.0399,0.194888 -0.04,0.09296 -0.10683,0.160639 -0.0669,0.06687 -0.15982,0.106822 -0.093,0.03996 -0.1957,0.03996 -0.10275,0 -0.19571,-0.03996 -0.093,-0.03996 -0.16064,-0.106822 -0.0669,-0.06768 -0.10682,-0.160639 -0.04,-0.09296 -0.04,-0.194888 0,-0.102744 0.04,-0.195703 0.04,-0.09378 0.10682,-0.16064 0.0677,-0.06768 0.16064,-0.107637 0.093,-0.03996 0.19571,-0.03996 0.10274,0 0.1957,0.03996 0.093,0.03996 0.15982,0.107637 0.0669,0.06686 0.10683,0.16064 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path2131" />
+                <path
+                   d="m 114.6137,31.59105 q 0.007,0.02528 0.007,0.04974 0,0.02365 -0.007,0.04974 -0.007,0.02528 -0.0261,0.04566 -0.0188,0.02039 -0.044,0.02039 -0.0253,0 -0.044,-0.02039 -0.0179,-0.02039 -0.0253,-0.04566 -0.007,-0.02609 -0.007,-0.04974 0,-0.02446 0.007,-0.04974 0.007,-0.02528 0.0253,-0.04566 0.0188,-0.02039 0.044,-0.02039 0.0253,0 0.044,0.02039 0.0187,0.02039 0.0261,0.04566 z m 0.38652,0 q 0.007,0.02528 0.007,0.04974 0,0.02365 -0.007,0.04974 -0.007,0.02528 -0.0261,0.04566 -0.0179,0.02039 -0.0432,0.02039 -0.0253,0 -0.044,-0.02039 -0.0187,-0.02039 -0.0269,-0.04566 -0.007,-0.02609 -0.007,-0.04974 0,-0.02446 0.007,-0.04974 0.008,-0.02528 0.0269,-0.04566 0.0188,-0.02039 0.044,-0.02039 0.0253,0 0.0432,0.02039 0.0188,0.02039 0.0261,0.04566 z m 0.10437,0.04974 q 0,-0.07257 -0.0424,-0.12313 -0.0416,-0.05137 -0.11253,-0.05137 -0.0139,0 -0.031,0.0016 -0.0163,0.0016 -0.0277,0.0033 -0.0106,8.15e-4 -0.0302,0.0041 -0.0196,0.0033 -0.0285,0.0041 -0.0457,0.0065 -0.0954,0.0065 -0.0497,0 -0.0946,-0.0065 -0.009,-8.15e-4 -0.0285,-0.0041 -0.0196,-0.0033 -0.031,-0.0041 -0.0106,-0.0016 -0.0277,-0.0033 -0.0163,-0.0016 -0.0302,-0.0016 -0.0709,0 -0.11334,0.05137 -0.0416,0.05056 -0.0416,0.12313 0,0.053 0.0187,0.09296 0.0196,0.03914 0.0498,0.06197 0.0302,0.02202 0.0734,0.03588 0.044,0.01386 0.084,0.01875 0.0408,0.0041 0.0905,0.0041 h 0.10192 q 0.0498,0 0.0897,-0.0041 0.0408,-0.0049 0.084,-0.01875 0.044,-0.01386 0.0742,-0.03588 0.0302,-0.02283 0.0489,-0.06197 0.0196,-0.03996 0.0196,-0.09296 z m 0.13536,-0.106821 q 0,0.123945 -0.0367,0.19978 -0.0228,0.04648 -0.0644,0.08073 -0.0408,0.03343 -0.0848,0.05137 -0.044,0.01794 -0.10274,0.02936 -0.0587,0.0106 -0.10437,0.01386 -0.0448,0.0024 -0.1003,0.0024 -0.0342,0 -0.0636,-8.16e-4 -0.0285,-0.0016 -0.066,-0.0041 -0.0375,-0.0033 -0.0693,-0.0082 -0.031,-0.0057 -0.0669,-0.01468 -0.0351,-0.009 -0.0644,-0.02202 -0.0294,-0.01386 -0.0571,-0.03099 -0.0277,-0.01712 -0.0497,-0.04159 -0.022,-0.02528 -0.0375,-0.05545 -0.0375,-0.0742 -0.0375,-0.19978 0,-0.143516 0.0815,-0.238921 -0.0155,-0.04729 -0.0155,-0.102744 0,-0.07013 0.031,-0.1321 0.0652,0 0.11416,0.02446 0.0498,0.02365 0.11416,0.0742 0.0905,-0.0212 0.18674,-0.0212 0.0881,0 0.16961,0.01957 0.031,-0.02446 0.053,-0.03914 0.0228,-0.01549 0.0514,-0.02936 0.0285,-0.01468 0.0579,-0.0212 0.0302,-0.0073 0.0644,-0.0073 0.031,0.06197 0.031,0.1321 0,0.053 -0.0163,0.101113 0.0824,0.09704 0.0824,0.240552 z"
+                   style="white-space:pre;fill:#afd700"
+                   id="path2133" />
+              </g>
+            </svg>
+          </svg>
+        </g>
+      </svg>
+    </g>
+  </g>
+</svg>
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot07.svg b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot07.svg
new file mode 100644
index 0000000000..48ef1d7ae0
--- /dev/null
+++ b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot07.svg
@@ -0,0 +1,3387 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<svg
+   width="1003.5656"
+   height="568.5025"
+   font-family="Consolas, Menlo, 'Bitstream Vera Sans Mono', monospace, 'Powerline Symbols'"
+   font-size="14px"
+   version="1.1"
+   id="svg6627"
+   sodipodi:docname="screenshot07.svg"
+   inkscape:version="1.1.1 (c3084ef, 2021-09-22)"
+   xmlns:inkscape="http://www.inkscape.org/namespaces/inkscape"
+   xmlns:sodipodi="http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd"
+   xmlns="http://www.w3.org/2000/svg"
+   xmlns:svg="http://www.w3.org/2000/svg">
+  <defs
+     id="defs6631">
+    <clipPath
+       clipPathUnits="userSpaceOnUse"
+       id="clipPath8614">
+      <rect
+         style="fill:#ff0000"
+         id="rect8616"
+         width="1307.7604"
+         height="620.26166"
+         x="-109.26019"
+         y="-35.299446" />
+    </clipPath>
+    <clipPath
+       clipPathUnits="userSpaceOnUse"
+       id="clipPath937">
+      <rect
+         style="fill:#ff0000"
+         id="rect939"
+         width="1003.5656"
+         height="568.5025"
+         x="8.4287786"
+         y="9.8005877" />
+    </clipPath>
+  </defs>
+  <sodipodi:namedview
+     id="namedview6629"
+     pagecolor="#ffffff"
+     bordercolor="#666666"
+     borderopacity="1.0"
+     inkscape:pageshadow="2"
+     inkscape:pageopacity="0.0"
+     inkscape:pagecheckerboard="0"
+     showgrid="false"
+     inkscape:zoom="0.97886972"
+     inkscape:cx="404.03743"
+     inkscape:cy="301.36799"
+     inkscape:window-width="1416"
+     inkscape:window-height="814"
+     inkscape:window-x="12"
+     inkscape:window-y="25"
+     inkscape:window-maximized="0"
+     inkscape:current-layer="svg6627" />
+  <style
+     id="style5074"><!-- asciinema theme -->
+
+
+
+
+.default-text-fill {fill: #cccccc}
+.default-bg-fill {fill: #121314}
+
+.c-0 {fill: #000000}
+.c-1 {fill: #dd3c69}
+.c-2 {fill: #4ebf22}
+.c-3 {fill: #ddaf3c}
+.c-4 {fill: #26b0d7}
+.c-5 {fill: #b954e1}
+.c-6 {fill: #54e1b9}
+.c-7 {fill: #d9d9d9}
+.c-8 {fill: #4d4d4d}
+.c-9 {fill: #dd3c69}
+.c-10 {fill: #4ebf22}
+.c-11 {fill: #ddaf3c}
+.c-12 {fill: #26b0d7}
+.c-13 {fill: #b954e1}
+.c-14 {fill: #54e1b9}
+.c-15 {fill: #ffffff}
+.c-8, .c-9, .c-10, .c-11, .c-12, .c-13, .c-14, .c-15 {font-weight: bold}
+
+<!-- 256 colors -->
+
+
+
+
+.c-16 {fill: #000000}
+.c-17 {fill: #00005f}
+.c-18 {fill: #000087}
+.c-19 {fill: #0000af}
+.c-20 {fill: #0000d7}
+.c-21 {fill: #0000ff}
+.c-22 {fill: #005f00}
+.c-23 {fill: #005f5f}
+.c-24 {fill: #005f87}
+.c-25 {fill: #005faf}
+.c-26 {fill: #005fd7}
+.c-27 {fill: #005fff}
+.c-28 {fill: #008700}
+.c-29 {fill: #00875f}
+.c-30 {fill: #008787}
+.c-31 {fill: #0087af}
+.c-32 {fill: #0087d7}
+.c-33 {fill: #0087ff}
+.c-34 {fill: #00af00}
+.c-35 {fill: #00af5f}
+.c-36 {fill: #00af87}
+.c-37 {fill: #00afaf}
+.c-38 {fill: #00afd7}
+.c-39 {fill: #00afff}
+.c-40 {fill: #00d700}
+.c-41 {fill: #00d75f}
+.c-42 {fill: #00d787}
+.c-43 {fill: #00d7af}
+.c-44 {fill: #00d7d7}
+.c-45 {fill: #00d7ff}
+.c-46 {fill: #00ff00}
+.c-47 {fill: #00ff5f}
+.c-48 {fill: #00ff87}
+.c-49 {fill: #00ffaf}
+.c-50 {fill: #00ffd7}
+.c-51 {fill: #00ffff}
+.c-52 {fill: #5f0000}
+.c-53 {fill: #5f005f}
+.c-54 {fill: #5f0087}
+.c-55 {fill: #5f00af}
+.c-56 {fill: #5f00d7}
+.c-57 {fill: #5f00ff}
+.c-58 {fill: #5f5f00}
+.c-59 {fill: #5f5f5f}
+.c-60 {fill: #5f5f87}
+.c-61 {fill: #5f5faf}
+.c-62 {fill: #5f5fd7}
+.c-63 {fill: #5f5fff}
+.c-64 {fill: #5f8700}
+.c-65 {fill: #5f875f}
+.c-66 {fill: #5f8787}
+.c-67 {fill: #5f87af}
+.c-68 {fill: #5f87d7}
+.c-69 {fill: #5f87ff}
+.c-70 {fill: #5faf00}
+.c-71 {fill: #5faf5f}
+.c-72 {fill: #5faf87}
+.c-73 {fill: #5fafaf}
+.c-74 {fill: #5fafd7}
+.c-75 {fill: #5fafff}
+.c-76 {fill: #5fd700}
+.c-77 {fill: #5fd75f}
+.c-78 {fill: #5fd787}
+.c-79 {fill: #5fd7af}
+.c-80 {fill: #5fd7d7}
+.c-81 {fill: #5fd7ff}
+.c-82 {fill: #5fff00}
+.c-83 {fill: #5fff5f}
+.c-84 {fill: #5fff87}
+.c-85 {fill: #5fffaf}
+.c-86 {fill: #5fffd7}
+.c-87 {fill: #5fffff}
+.c-88 {fill: #870000}
+.c-89 {fill: #87005f}
+.c-90 {fill: #870087}
+.c-91 {fill: #8700af}
+.c-92 {fill: #8700d7}
+.c-93 {fill: #8700ff}
+.c-94 {fill: #875f00}
+.c-95 {fill: #875f5f}
+.c-96 {fill: #875f87}
+.c-97 {fill: #875faf}
+.c-98 {fill: #875fd7}
+.c-99 {fill: #875fff}
+.c-100 {fill: #878700}
+.c-101 {fill: #87875f}
+.c-102 {fill: #878787}
+.c-103 {fill: #8787af}
+.c-104 {fill: #8787d7}
+.c-105 {fill: #8787ff}
+.c-106 {fill: #87af00}
+.c-107 {fill: #87af5f}
+.c-108 {fill: #87af87}
+.c-109 {fill: #87afaf}
+.c-110 {fill: #87afd7}
+.c-111 {fill: #87afff}
+.c-112 {fill: #87d700}
+.c-113 {fill: #87d75f}
+.c-114 {fill: #87d787}
+.c-115 {fill: #87d7af}
+.c-116 {fill: #87d7d7}
+.c-117 {fill: #87d7ff}
+.c-118 {fill: #87ff00}
+.c-119 {fill: #87ff5f}
+.c-120 {fill: #87ff87}
+.c-121 {fill: #87ffaf}
+.c-122 {fill: #87ffd7}
+.c-123 {fill: #87ffff}
+.c-124 {fill: #af0000}
+.c-125 {fill: #af005f}
+.c-126 {fill: #af0087}
+.c-127 {fill: #af00af}
+.c-128 {fill: #af00d7}
+.c-129 {fill: #af00ff}
+.c-130 {fill: #af5f00}
+.c-131 {fill: #af5f5f}
+.c-132 {fill: #af5f87}
+.c-133 {fill: #af5faf}
+.c-134 {fill: #af5fd7}
+.c-135 {fill: #af5fff}
+.c-136 {fill: #af8700}
+.c-137 {fill: #af875f}
+.c-138 {fill: #af8787}
+.c-139 {fill: #af87af}
+.c-140 {fill: #af87d7}
+.c-141 {fill: #af87ff}
+.c-142 {fill: #afaf00}
+.c-143 {fill: #afaf5f}
+.c-144 {fill: #afaf87}
+.c-145 {fill: #afafaf}
+.c-146 {fill: #afafd7}
+.c-147 {fill: #afafff}
+.c-148 {fill: #afd700}
+.c-149 {fill: #afd75f}
+.c-150 {fill: #afd787}
+.c-151 {fill: #afd7af}
+.c-152 {fill: #afd7d7}
+.c-153 {fill: #afd7ff}
+.c-154 {fill: #afff00}
+.c-155 {fill: #afff5f}
+.c-156 {fill: #afff87}
+.c-157 {fill: #afffaf}
+.c-158 {fill: #afffd7}
+.c-159 {fill: #afffff}
+.c-160 {fill: #d70000}
+.c-161 {fill: #d7005f}
+.c-162 {fill: #d70087}
+.c-163 {fill: #d700af}
+.c-164 {fill: #d700d7}
+.c-165 {fill: #d700ff}
+.c-166 {fill: #d75f00}
+.c-167 {fill: #d75f5f}
+.c-168 {fill: #d75f87}
+.c-169 {fill: #d75faf}
+.c-170 {fill: #d75fd7}
+.c-171 {fill: #d75fff}
+.c-172 {fill: #d78700}
+.c-173 {fill: #d7875f}
+.c-174 {fill: #d78787}
+.c-175 {fill: #d787af}
+.c-176 {fill: #d787d7}
+.c-177 {fill: #d787ff}
+.c-178 {fill: #d7af00}
+.c-179 {fill: #d7af5f}
+.c-180 {fill: #d7af87}
+.c-181 {fill: #d7afaf}
+.c-182 {fill: #d7afd7}
+.c-183 {fill: #d7afff}
+.c-184 {fill: #d7d700}
+.c-185 {fill: #d7d75f}
+.c-186 {fill: #d7d787}
+.c-187 {fill: #d7d7af}
+.c-188 {fill: #d7d7d7}
+.c-189 {fill: #d7d7ff}
+.c-190 {fill: #d7ff00}
+.c-191 {fill: #d7ff5f}
+.c-192 {fill: #d7ff87}
+.c-193 {fill: #d7ffaf}
+.c-194 {fill: #d7ffd7}
+.c-195 {fill: #d7ffff}
+.c-196 {fill: #ff0000}
+.c-197 {fill: #ff005f}
+.c-198 {fill: #ff0087}
+.c-199 {fill: #ff00af}
+.c-200 {fill: #ff00d7}
+.c-201 {fill: #ff00ff}
+.c-202 {fill: #ff5f00}
+.c-203 {fill: #ff5f5f}
+.c-204 {fill: #ff5f87}
+.c-205 {fill: #ff5faf}
+.c-206 {fill: #ff5fd7}
+.c-207 {fill: #ff5fff}
+.c-208 {fill: #ff8700}
+.c-209 {fill: #ff875f}
+.c-210 {fill: #ff8787}
+.c-211 {fill: #ff87af}
+.c-212 {fill: #ff87d7}
+.c-213 {fill: #ff87ff}
+.c-214 {fill: #ffaf00}
+.c-215 {fill: #ffaf5f}
+.c-216 {fill: #ffaf87}
+.c-217 {fill: #ffafaf}
+.c-218 {fill: #ffafd7}
+.c-219 {fill: #ffafff}
+.c-220 {fill: #ffd700}
+.c-221 {fill: #ffd75f}
+.c-222 {fill: #ffd787}
+.c-223 {fill: #ffd7af}
+.c-224 {fill: #ffd7d7}
+.c-225 {fill: #ffd7ff}
+.c-226 {fill: #ffff00}
+.c-227 {fill: #ffff5f}
+.c-228 {fill: #ffff87}
+.c-229 {fill: #ffffaf}
+.c-230 {fill: #ffffd7}
+.c-231 {fill: #ffffff}
+.c-232 {fill: #080808}
+.c-233 {fill: #121212}
+.c-234 {fill: #1c1c1c}
+.c-235 {fill: #262626}
+.c-236 {fill: #303030}
+.c-237 {fill: #3a3a3a}
+.c-238 {fill: #444444}
+.c-239 {fill: #4e4e4e}
+.c-240 {fill: #585858}
+.c-241 {fill: #626262}
+.c-242 {fill: #6c6c6c}
+.c-243 {fill: #767676}
+.c-244 {fill: #808080}
+.c-245 {fill: #8a8a8a}
+.c-246 {fill: #949494}
+.c-247 {fill: #9e9e9e}
+.c-248 {fill: #a8a8a8}
+.c-249 {fill: #b2b2b2}
+.c-250 {fill: #bcbcbc}
+.c-251 {fill: #c6c6c6}
+.c-252 {fill: #d0d0d0}
+.c-253 {fill: #dadada}
+.c-254 {fill: #e4e4e4}
+.c-255 {fill: #eeeeee}
+
+.br { font-weight: bold }
+.it { font-style: italic }
+.un { text-decoration: underline }
+</style>
+  <g
+     id="g8486"
+     clip-path="url(#clipPath937)"
+     transform="translate(-8.4287786,-9.8005877)">
+    <path
+       id="rect5076"
+       class="default-bg-fill"
+       style="fill:#121314"
+       d="m 4,0 h 1012.4333 c 2.216,0 4,1.784 4,4 v 599.59998 c 0,2.216 -1.784,4 -4,4 H 4 c -2.216,0 -4,-1.784 -4,-4 V 4 C 0,1.784 1.784,0 4,0 Z" />
+    <svg
+       x="8.4287786"
+       y="9.8005877"
+       class="default-text-fill"
+       version="1.1"
+       id="svg6625"
+       width="100%"
+       height="100%">
+      <g
+         style="shape-rendering:optimizeSpeed"
+         id="g5262">
+        <path
+           id="rect5078"
+           class="c-235"
+           style="fill:#262626"
+           d="M 0,0 H 33.735527 V 19.700001 H 0 Z" />
+        <path
+           id="rect5080"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,0 H 1003.5656 V 19.700001 H 33.735527 Z" />
+        <path
+           id="rect5082"
+           class="c-235"
+           style="fill:#262626"
+           d="M 0,19.601175 H 33.735527 V 39.301176 H 0 Z" />
+        <path
+           id="rect5084"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,19.601175 H 67.471054 V 39.301176 H 33.735527 Z" />
+        <path
+           id="rect5086"
+           class="c-252"
+           style="fill:#d0d0d0"
+           d="m 67.471054,19.601175 h 8.428779 v 19.700001 h -8.428779 z" />
+        <path
+           id="rect5088"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 75.899834,19.601175 H 1003.5655 V 39.301176 H 75.899834 Z" />
+        <path
+           id="rect5090"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,39.202351 h 33.735527 v 19.7 H 0 Z" />
+        <path
+           id="rect5092"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,39.202351 H 1003.5656 v 19.7 H 33.735527 Z" />
+        <path
+           id="rect5094"
+           class="c-235"
+           style="fill:#262626"
+           d="M 0,58.797451 H 33.735527 V 78.497452 H 0 Z" />
+        <path
+           id="rect5096"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,58.797451 H 50.603291 V 78.497452 H 33.735527 Z" />
+        <path
+           id="rect5098"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 50.603294,58.797451 H 134.93191 V 78.497452 H 50.603294 Z" />
+        <path
+           id="rect5100"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="m 134.9319,58.797451 h 8.42878 v 19.700001 h -8.42878 z" />
+        <path
+           id="rect5102"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="m 143.3709,58.797451 h 860.2049 V 78.497452 H 143.3709 Z" />
+        <path
+           id="rect5104"
+           class="c-235"
+           style="fill:#262626"
+           d="M 0,78.398628 H 33.735527 V 98.098629 H 0 Z" />
+        <path
+           id="rect5106"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,78.398628 H 168.66743 V 98.098629 H 33.735527 Z" />
+        <path
+           id="rect5108"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="m 168.66742,78.398628 h 8.42878 v 19.700001 h -8.42878 z" />
+        <path
+           id="rect5110"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 177.09621,78.398628 H 1003.5656 V 98.098629 H 177.09621 Z" />
+        <path
+           id="rect5112"
+           class="c-235"
+           style="fill:#262626"
+           d="M 0,97.999794 H 33.735527 V 117.69979 H 0 Z" />
+        <path
+           id="rect5114"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,97.999794 H 1003.5656 V 117.69979 H 33.735527 Z" />
+        <path
+           id="rect5116"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,117.60097 h 33.735527 v 19.7 H 0 Z" />
+        <path
+           id="rect5118"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,117.60097 H 1003.5656 v 19.7 H 33.735527 Z" />
+        <path
+           id="rect5120"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,137.20215 h 33.735527 v 19.7 H 0 Z" />
+        <path
+           id="rect5122"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,137.20215 H 1003.5656 v 19.7 H 33.735527 Z" />
+        <path
+           id="rect5124"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,156.79726 h 33.735527 v 19.7 H 0 Z" />
+        <path
+           id="rect5126"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,156.79726 H 1003.5656 v 19.7 H 33.735527 Z" />
+        <path
+           id="rect5128"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,176.39844 h 33.735527 v 19.7 H 0 Z" />
+        <path
+           id="rect5130"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,176.39844 H 1003.5656 v 19.7 H 33.735527 Z" />
+        <path
+           id="rect5132"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,195.99959 h 33.735527 v 19.7 H 0 Z" />
+        <path
+           id="rect5134"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,195.99959 H 1003.5656 v 19.7 H 33.735527 Z" />
+        <path
+           id="rect5136"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,215.60078 h 33.735527 v 19.70001 H 0 Z" />
+        <path
+           id="rect5138"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,215.60078 H 1003.5656 v 19.70001 H 33.735527 Z" />
+        <path
+           id="rect5140"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,235.20193 h 33.735527 v 19.70001 H 0 Z" />
+        <path
+           id="rect5142"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,235.20193 H 1003.5656 v 19.70001 H 33.735527 Z" />
+        <path
+           id="rect5144"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,254.79707 h 33.735527 v 19.7 H 0 Z" />
+        <path
+           id="rect5146"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,254.79707 H 1003.5656 v 19.7 H 33.735527 Z" />
+        <path
+           id="rect5148"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,274.39822 h 33.735527 v 19.7 H 0 Z" />
+        <path
+           id="rect5150"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,274.39822 H 1003.5656 v 19.7 H 33.735527 Z" />
+        <path
+           id="rect5152"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,293.99939 h 33.735527 v 19.7 H 0 Z" />
+        <path
+           id="rect5154"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,293.99939 H 1003.5656 v 19.7 H 33.735527 Z" />
+        <path
+           id="rect5156"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,313.60056 h 33.735527 v 19.7 H 0 Z" />
+        <path
+           id="rect5158"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,313.60056 H 1003.5656 v 19.7 H 33.735527 Z" />
+        <path
+           id="rect5160"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,333.20178 h 33.735527 v 19.7 H 0 Z" />
+        <path
+           id="rect5162"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,333.20178 H 1003.5656 v 19.7 H 33.735527 Z" />
+        <path
+           id="rect5164"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,352.80292 h 33.735527 v 19.7 H 0 Z" />
+        <path
+           id="rect5166"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,352.80292 H 185.53519 v 19.7 H 33.735527 Z" />
+        <path
+           id="rect5168"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="m 185.53519,352.80292 h 261.43502 v 19.7 H 185.53519 Z" />
+        <path
+           id="rect5170"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="m 446.97021,352.80292 h 59.03208 v 19.7 h -59.03208 z" />
+        <path
+           id="rect5172"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="m 506.00232,352.80292 h 8.42878 v 19.7 h -8.42878 z" />
+        <path
+           id="rect5174"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="m 514.43109,352.80292 h 489.13451 v 19.7 H 514.43109 Z" />
+        <path
+           id="rect5176"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,372.39804 h 33.735527 v 19.7 H 0 Z" />
+        <path
+           id="rect5178"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,372.39804 H 1003.5656 v 19.7 H 33.735527 Z" />
+        <path
+           id="rect5180"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,391.99918 h 33.735527 v 19.7 H 0 Z" />
+        <path
+           id="rect5182"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,391.99918 H 1003.5656 v 19.7 H 33.735527 Z" />
+        <path
+           id="rect5184"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,411.60034 h 33.735527 v 19.7 H 0 Z" />
+        <path
+           id="rect5186"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="m 33.735527,411.60034 h 92.767593 v 19.7 H 33.735527 Z" />
+        <path
+           id="rect5188"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="m 126.50313,411.60034 h 67.47105 v 19.7 h -67.47105 z" />
+        <path
+           id="rect5190"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="m 193.96396,411.60034 h 809.60154 v 19.7 H 193.96396 Z" />
+        <path
+           id="rect5192"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,431.20157 h 33.735527 v 19.7 H 0 Z" />
+        <path
+           id="rect5194"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="m 33.735527,431.20157 h 33.735527 v 19.7 H 33.735527 Z" />
+        <path
+           id="rect5196"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="m 67.471054,431.20157 h 8.428779 v 19.7 h -8.428779 z" />
+        <path
+           id="rect5198"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 75.899834,431.20157 H 1003.5655 v 19.7 H 75.899834 Z" />
+        <path
+           id="rect5200"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,450.80273 h 33.735527 v 19.70001 H 0 Z" />
+        <path
+           id="rect5202"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,450.80273 H 1003.5656 v 19.70001 H 33.735527 Z" />
+        <path
+           id="rect5204"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,470.39783 h 33.735527 v 19.7 H 0 Z" />
+        <path
+           id="rect5206"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,470.39783 H 1003.5656 v 19.7 H 33.735527 Z" />
+        <path
+           id="rect5208"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,489.99896 h 33.735527 v 19.7 H 0 Z" />
+        <path
+           id="rect5210"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,489.99896 H 59.03207 v 19.7 H 33.735527 Z" />
+        <path
+           id="rect5212"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="m 59.03207,489.99896 h 244.56726 v 19.7 H 59.03207 Z" />
+        <path
+           id="rect5214"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="m 303.59933,489.99896 h 699.96627 v 19.7 H 303.59933 Z" />
+        <path
+           id="rect5216"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,509.60019 h 33.735527 v 19.7 H 0 Z" />
+        <path
+           id="rect5218"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,509.60019 H 1003.5656 v 19.7 H 33.735527 Z" />
+        <path
+           id="rect5220"
+           class="c-235"
+           style="fill:#262626"
+           d="m 0,529.20135 h 33.735527 v 19.70001 H 0 Z" />
+        <path
+           id="rect5222"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 33.735527,529.20135 H 472.26675 v 19.70001 H 33.735527 Z" />
+        <path
+           id="rect5224"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="m 472.26672,529.20135 h 177.09621 v 19.70001 H 472.26672 Z" />
+        <path
+           id="rect5226"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="m 649.36298,529.20135 h 354.20262 v 19.70001 H 649.36298 Z" />
+        <path
+           id="rect5228"
+           class="c-190"
+           style="fill:#d7ff00"
+           d="m 0,548.80249 h 8.4287786 v 19.7 H 0 Z" />
+        <path
+           id="rect5230"
+           class="c-190"
+           style="fill:#d7ff00"
+           d="M 8.4287786,548.80249 H 59.032073 v 19.7 H 8.4287786 Z" />
+        <path
+           id="rect5232"
+           class="c-190"
+           style="fill:#d7ff00"
+           d="m 59.03207,548.80249 h 8.428779 v 19.7 H 59.03207 Z" />
+        <path
+           id="rect5234"
+           class="c-238"
+           style="fill:#444444"
+           d="m 67.471054,548.80249 h 8.428779 v 19.7 h -8.428779 z" />
+        <path
+           id="rect5236"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="m 75.899834,548.80249 h 8.428778 v 19.7 h -8.428778 z" />
+        <path
+           id="rect5238"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="M 84.328613,548.80249 H 598.7597 v 19.7 H 84.328613 Z" />
+        <path
+           id="rect5240"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="m 598.7699,548.80249 h 8.42878 v 19.7 h -8.42878 z" />
+        <path
+           id="rect5242"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="m 607.19867,548.80249 h 50.60329 v 19.7 h -50.60329 z" />
+        <path
+           id="rect5244"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="m 657.80188,548.80249 h 8.42878 v 19.7 h -8.42878 z" />
+        <path
+           id="rect5246"
+           class="c-238"
+           style="fill:#444444"
+           d="m 666.23077,548.80249 h 109.63536 v 19.7 H 666.23077 Z" />
+        <path
+           id="rect5248"
+           class="c-238"
+           style="fill:#444444"
+           d="m 775.86603,548.80249 h 8.42878 v 19.7 h -8.42878 z" />
+        <path
+           id="rect5250"
+           class="c-190"
+           style="fill:#d7ff00"
+           d="m 784.30505,548.80249 h 50.6033 v 19.7 h -50.6033 z" />
+        <path
+           id="rect5252"
+           class="c-190"
+           style="fill:#d7ff00"
+           d="m 834.89819,548.80249 h 101.19638 v 19.7 H 834.89819 Z" />
+        <path
+           id="rect5254"
+           class="c-190"
+           style="fill:#d7ff00"
+           d="m 936.10474,548.80249 h 50.60329 v 19.7 h -50.60329 z" />
+        <path
+           id="rect5256"
+           class="c-190"
+           style="fill:#d7ff00"
+           d="m 986.69781,548.80249 h 8.42878 v 19.7 h -8.42878 z" />
+        <path
+           id="rect5258"
+           class="c-166"
+           style="fill:#d75f00"
+           d="m 995.13684,548.80249 h 8.42876 v 19.7 h -8.42876 z" />
+        <path
+           id="rect5260"
+           class="c-234"
+           style="fill:#1c1c1c"
+           d="m 0,568.39758 h 1003.5656 v 19.7 H 0 Z" />
+      </g>
+      <g
+         aria-label="102ip_vs_rr103ip_vs_wrr104ip_vs_sh105network.sh:|106mask2cidr(){107nbits=0108IFS=.109fordecin$1;do110case$decin111255)nbits=$((nbits+8));;112254)nbits=$((nbits+7));;113252)nbits=$((nbits+6));;114248)nbits=$((nbits+5));;115240)nbits=$((nbits+4));;116224)nbits=$((nbits+3));;117192)nbits=$((nbits+2));;118128)nbits=$((nbits+1));;1190);;120*)echo&quot;Error:$decisnotrecognised&quot;;exit1121esac122done123echo&quot;$nbits&quot;124}125126set-e127#Loadadditionalparameters128IPCONFIG_IPV4CIDR=$(mask2cidr$IPCONFIG_IPV4NETMASK)129DATA_IPV4ADDR=$(echo${IPCONFIG_IPV4ADDR}|sed's/^10\.28\./10.29./')NORMAL/tmp/kubectl-edit-aq62c.yamlyamlutf-8[unix]55%☰103/187:5"
+         id="text6606"
+         class="default-text-fill">
+        <path
+           d="M 1.8457031,12.844727 H 3.9921875 V 5.1337891 L 1.421875,6.3710937 V 5.0449219 L 3.9785156,3.828125 H 5.359375 v 9.016602 H 7.4785156 V 14 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path8711" />
+        <path
+           d="m 12.639716,3.6435547 q 1.633789,0 2.467774,1.3330078 0.84082,1.3330078 0.84082,3.9443359 0,2.6113286 -0.84082,3.9443356 -0.833985,1.333008 -2.467774,1.333008 -1.633789,0 -2.467773,-1.333008 -0.8339847,-1.333007 -0.8339847,-3.9443356 0,-2.6113281 0.8339847,-3.9443359 0.833984,-1.3330078 2.467773,-1.3330078 z m 0,9.4609373 q 0.970703,0 1.442383,-1.032226 0.478516,-1.032227 0.478516,-3.1513676 0,-1.1279297 -0.136719,-2.0371093 L 11.16999,11.976563 q 0.512695,1.127929 1.469726,1.127929 z m 0,-8.3671873 q -0.963867,0 -1.442383,1.0322265 -0.471679,1.0322266 -0.471679,3.1513672 0,0.9638672 0.129882,1.8046876 L 14.041083,5.6464844 Q 13.521552,4.7373047 12.639716,4.7373047 Z"
+           style="fill:#4e4e4e"
+           id="path8713" />
+        <path
+           d="m 19.417568,12.837891 h 4.689453 V 14 h -6.200195 v -1.162109 q 1.27832,-1.34668 2.235352,-2.378907 0.957031,-1.0322262 1.319336,-1.4560543 0.683593,-0.8339844 0.922851,-1.3466797 0.239258,-0.5195313 0.239258,-1.0595703 0,-0.8544922 -0.505859,-1.3398438 -0.499024,-0.4853515 -1.374024,-0.4853515 -0.62207,0 -1.305664,0.2255859 -0.683594,0.2255859 -1.449219,0.6835938 V 4.2861328 q 0.704102,-0.3349609 1.38086,-0.5058594 0.683593,-0.1708984 1.346679,-0.1708984 1.497071,0 2.40625,0.7998047 0.916016,0.7929687 0.916016,2.0849609 0,0.65625 -0.307617,1.3125 -0.300781,0.65625 -0.984375,1.4492188 -0.382813,0.4443359 -1.114258,1.2304686 -0.724609,0.786133 -2.214844,2.351563 z"
+           style="fill:#4e4e4e"
+           id="path8715" />
+        <path
+           d="m 69.63121,6.3710937 h 3.219727 v 6.6513673 h 2.495117 V 14 h -6.248047 v -0.977539 h 2.495117 V 7.3486328 H 69.63121 Z m 1.961914,-2.9736328 h 1.257813 v 1.5859375 h -1.257813 z"
+           style="fill:#d0d0d0"
+           id="path8717" />
+        <path
+           d="m 78.46331,13.036133 v 3.875976 H 77.198662 V 6.34375 h 1.264648 v 0.9775391 q 0.314453,-0.5673829 0.833985,-0.8613282 0.526367,-0.3007812 1.209961,-0.3007812 1.387695,0 2.173828,1.0732422 0.792968,1.0732422 0.792968,2.9736331 0,1.866211 -0.792968,2.932617 -0.792969,1.05957 -2.173828,1.05957 -0.697266,0 -1.223633,-0.293945 -0.519532,-0.300781 -0.820313,-0.868164 z m 3.691406,-2.857422 q 0,-1.4628907 -0.464843,-2.2080079 -0.458008,-0.7451172 -1.367188,-0.7451172 -0.916015,0 -1.387695,0.7519532 -0.47168,0.7451172 -0.47168,2.2011719 0,1.449219 0.47168,2.201172 0.47168,0.751953 1.387695,0.751953 0.90918,0 1.367188,-0.745117 0.464843,-0.745117 0.464843,-2.208008 z"
+           style="fill:#d0d0d0"
+           id="path8719" />
+        <path
+           d="m 92.695801,15.298828 v 1.162109 h -8.367188 v -1.162109 z"
+           style="fill:#d0d0d0"
+           id="path8721" />
+        <path
+           d="m 93.451187,6.34375 h 1.305664 l 2.22168,6.425781 2.228516,-6.425781 h 1.305663 L 97.792007,14 H 96.17189 Z"
+           style="fill:#d0d0d0"
+           id="path8723" />
+        <path
+           d="m 107.84774,6.6103516 v 1.2304687 q -0.54004,-0.3144531 -1.08691,-0.4716797 -0.54688,-0.1572265 -1.11426,-0.1572265 -0.85449,0 -1.27832,0.2802734 -0.41699,0.2734375 -0.41699,0.8408203 0,0.5126953 0.31445,0.765625 0.31445,0.2529297 1.56543,0.4921875 l 0.50586,0.095703 q 0.93652,0.1777344 1.41504,0.7109377 0.48535,0.533203 0.48535,1.387695 0,1.134766 -0.80664,1.777344 -0.80664,0.635742 -2.24219,0.635742 -0.56738,0 -1.18945,-0.123047 -0.62207,-0.116211 -1.34668,-0.355468 v -1.298829 q 0.7041,0.362305 1.34668,0.546875 0.64258,0.177735 1.21679,0.177735 0.83399,0 1.292,-0.334961 0.458,-0.341797 0.458,-0.950195 0,-0.875 -1.6748,-1.209961 l -0.0547,-0.01367 -0.47168,-0.0957 q -1.08691,-0.211914 -1.58594,-0.710938 -0.49902,-0.5058593 -0.49902,-1.3740234 0,-1.100586 0.74512,-1.6953125 0.74512,-0.6015625 2.12598,-0.6015625 0.61523,0 1.18261,0.1162109 0.56739,0.109375 1.11426,0.334961 z"
+           style="fill:#d0d0d0"
+           id="path8725" />
+        <path
+           d="m 118.00255,15.298828 v 1.162109 h -8.36719 v -1.162109 z"
+           style="fill:#d0d0d0"
+           id="path8727" />
+        <path
+           d="m 125.95965,7.9228516 q -0.40332,-0.3144532 -0.82031,-0.4580079 -0.417,-0.1435546 -0.91602,-0.1435546 -1.17578,0 -1.79785,0.7382812 -0.62207,0.7382813 -0.62207,2.1328127 V 14 h -1.26465 V 6.34375 h 1.26465 v 1.4970703 q 0.31445,-0.8134766 0.96387,-1.2441406 0.65625,-0.4375 1.55175,-0.4375 0.46485,0 0.86817,0.1162109 0.40332,0.116211 0.77246,0.3623047 z"
+           style="fill:#d0d0d0"
+           id="path8729" />
+        <path
+           d="m 134.39864,7.9228516 q -0.40332,-0.3144532 -0.82032,-0.4580079 -0.41699,-0.1435546 -0.91601,-0.1435546 -1.17578,0 -1.79785,0.7382812 -0.62207,0.7382813 -0.62207,2.1328127 V 14 h -1.26465 V 6.34375 h 1.26465 v 1.4970703 q 0.31445,-0.8134766 0.96386,-1.2441406 0.65625,-0.4375 1.55176,-0.4375 0.46484,0 0.86816,0.1162109 0.40333,0.116211 0.77247,0.3623047 z"
+           style="fill:#d0d0d0"
+           id="path8731" />
+        <path
+           d="M 1.8457031,32.4459 H 3.9921875 V 24.734962 L 1.421875,25.972267 V 24.646095 L 3.9785156,23.429298 H 5.359375 V 32.4459 h 2.1191406 v 1.155273 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path8733" />
+        <path
+           d="m 12.639716,23.244728 q 1.633789,0 2.467774,1.333008 0.84082,1.333008 0.84082,3.944336 0,2.611328 -0.84082,3.944336 -0.833985,1.333008 -2.467774,1.333008 -1.633789,0 -2.467773,-1.333008 -0.8339847,-1.333008 -0.8339847,-3.944336 0,-2.611328 0.8339847,-3.944336 0.833984,-1.333008 2.467773,-1.333008 z m 0,9.460938 q 0.970703,0 1.442383,-1.032227 0.478516,-1.032227 0.478516,-3.151367 0,-1.12793 -0.136719,-2.03711 l -3.253906,5.092774 q 0.512695,1.12793 1.469726,1.12793 z m 0,-8.367188 q -0.963867,0 -1.442383,1.032227 -0.471679,1.032226 -0.471679,3.151367 0,0.963867 0.129882,1.804687 l 3.185547,-5.079101 q -0.519531,-0.90918 -1.401367,-0.90918 z"
+           style="fill:#4e4e4e"
+           id="path8735" />
+        <path
+           d="m 22.172451,28.139259 q 1.004883,0.266602 1.538086,0.950196 0.533203,0.676757 0.533203,1.695312 0,1.408203 -0.950195,2.214844 -0.94336,0.799805 -2.618164,0.799805 -0.704102,0 -1.435547,-0.129883 -0.731445,-0.129883 -1.435547,-0.375977 v -1.374023 q 0.697266,0.362304 1.374023,0.540039 0.676758,0.177734 1.34668,0.177734 1.134766,0 1.743164,-0.512695 0.608399,-0.512695 0.608399,-1.476563 0,-0.888671 -0.608399,-1.408203 -0.608398,-0.526367 -1.647461,-0.526367 h -1.052734 v -1.134766 h 1.052734 q 0.950196,0 1.483399,-0.416992 0.533203,-0.416992 0.533203,-1.162109 0,-0.786133 -0.499024,-1.203125 -0.492187,-0.423828 -1.408203,-0.423828 -0.608398,0 -1.257812,0.136719 -0.649414,0.136718 -1.360352,0.410156 v -1.271485 q 0.827149,-0.21875 1.469727,-0.328125 0.649414,-0.109375 1.148437,-0.109375 1.490235,0 2.378906,0.751954 0.895508,0.745117 0.895508,1.982421 0,0.840821 -0.471679,1.401368 -0.464844,0.560546 -1.360352,0.792968 z"
+           style="fill:#4e4e4e"
+           id="path8737" />
+        <path
+           d="m 69.63121,25.972267 h 3.219727 v 6.651367 h 2.495117 v 0.977539 h -6.248047 v -0.977539 h 2.495117 V 26.949806 H 69.63121 Z m 1.961914,-2.973633 h 1.257813 v 1.585938 h -1.257813 z"
+           style="fill:#1c1c1c"
+           id="path8739" />
+        <path
+           d="m 78.46331,32.637306 v 3.875977 h -1.264648 v -10.56836 h 1.264648 v 0.977539 q 0.314453,-0.567382 0.833985,-0.861328 0.526367,-0.300781 1.209961,-0.300781 1.387695,0 2.173828,1.073242 0.792968,1.073242 0.792968,2.973633 0,1.866211 -0.792968,2.932617 -0.792969,1.059571 -2.173828,1.059571 -0.697266,0 -1.223633,-0.293946 -0.519532,-0.300781 -0.820313,-0.868164 z m 3.691406,-2.857422 q 0,-1.46289 -0.464843,-2.208007 -0.458008,-0.745118 -1.367188,-0.745118 -0.916015,0 -1.387695,0.751953 -0.47168,0.745118 -0.47168,2.201172 0,1.449219 0.47168,2.201172 0.47168,0.751953 1.387695,0.751953 0.90918,0 1.367188,-0.745117 0.464843,-0.745117 0.464843,-2.208008 z"
+           style="fill:#d0d0d0"
+           id="path8741" />
+        <path
+           d="m 92.695801,34.900002 v 1.162109 h -8.367188 v -1.162109 z"
+           style="fill:#d0d0d0"
+           id="path8743" />
+        <path
+           d="m 93.451187,25.944923 h 1.305664 l 2.22168,6.425782 2.228516,-6.425782 h 1.305663 l -2.720703,7.65625 H 96.17189 Z"
+           style="fill:#d0d0d0"
+           id="path8745" />
+        <path
+           d="m 107.84774,26.211525 v 1.230469 q -0.54004,-0.314453 -1.08691,-0.47168 -0.54688,-0.157227 -1.11426,-0.157227 -0.85449,0 -1.27832,0.280274 -0.41699,0.273437 -0.41699,0.84082 0,0.512696 0.31445,0.765625 0.31445,0.25293 1.56543,0.492188 l 0.50586,0.0957 q 0.93652,0.177734 1.41504,0.710937 0.48535,0.533203 0.48535,1.387696 0,1.134765 -0.80664,1.777343 -0.80664,0.635743 -2.24219,0.635743 -0.56738,0 -1.18945,-0.123047 -0.62207,-0.116211 -1.34668,-0.355469 v -1.298828 q 0.7041,0.362305 1.34668,0.546875 0.64258,0.177734 1.21679,0.177734 0.83399,0 1.292,-0.334961 0.458,-0.341797 0.458,-0.950195 0,-0.875 -1.6748,-1.209961 l -0.0547,-0.01367 -0.47168,-0.0957 q -1.08691,-0.211914 -1.58594,-0.710937 -0.49902,-0.50586 -0.49902,-1.374024 0,-1.100586 0.74512,-1.695312 0.74512,-0.601563 2.12598,-0.601563 0.61523,0 1.18261,0.116211 0.56739,0.109375 1.11426,0.334961 z"
+           style="fill:#d0d0d0"
+           id="path8747" />
+        <path
+           d="m 118.00255,34.900002 v 1.162109 h -8.36719 v -1.162109 z"
+           style="fill:#d0d0d0"
+           id="path8749" />
+        <path
+           d="m 118.06414,25.944923 h 1.24414 l 1.33301,6.186524 1.09375,-3.951172 h 1.07324 l 1.10742,3.951172 1.33301,-6.186524 h 1.24414 l -1.79101,7.65625 h -1.20313 l -1.22363,-4.197265 -1.2168,4.197265 h -1.20312 z"
+           style="fill:#d0d0d0"
+           id="path8751" />
+        <path
+           d="m 134.39864,27.524025 q -0.40332,-0.314453 -0.82032,-0.458008 -0.41699,-0.143555 -0.91601,-0.143555 -1.17578,0 -1.79785,0.738282 -0.62207,0.738281 -0.62207,2.132812 v 3.807617 h -1.26465 v -7.65625 h 1.26465 v 1.497071 q 0.31445,-0.813477 0.96386,-1.244141 0.65625,-0.4375 1.55176,-0.4375 0.46484,0 0.86816,0.116211 0.40333,0.116211 0.77247,0.362305 z"
+           style="fill:#d0d0d0"
+           id="path8753" />
+        <path
+           d="m 142.82741,27.524025 q -0.40332,-0.314453 -0.82031,-0.458008 -0.417,-0.143555 -0.91602,-0.143555 -1.17578,0 -1.79785,0.738282 -0.62207,0.738281 -0.62207,2.132812 v 3.807617 h -1.26465 v -7.65625 h 1.26465 v 1.497071 q 0.31445,-0.813477 0.96387,-1.244141 0.65625,-0.4375 1.55175,-0.4375 0.46485,0 0.86817,0.116211 0.40332,0.116211 0.77246,0.362305 z"
+           style="fill:#d0d0d0"
+           id="path8755" />
+        <path
+           d="M 1.8457031,52.047077 H 3.9921875 V 44.33614 L 1.421875,45.573444 V 44.247272 L 3.9785156,43.030476 H 5.359375 v 9.016601 h 2.1191406 v 1.155274 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path8757" />
+        <path
+           d="m 12.639716,42.845905 q 1.633789,0 2.467774,1.333008 0.84082,1.333008 0.84082,3.944336 0,2.611328 -0.84082,3.944336 -0.833985,1.333008 -2.467774,1.333008 -1.633789,0 -2.467773,-1.333008 -0.8339847,-1.333008 -0.8339847,-3.944336 0,-2.611328 0.8339847,-3.944336 0.833984,-1.333008 2.467773,-1.333008 z m 0,9.460938 q 0.970703,0 1.442383,-1.032227 0.478516,-1.032226 0.478516,-3.151367 0,-1.12793 -0.136719,-2.037109 l -3.253906,5.092773 q 0.512695,1.12793 1.469726,1.12793 z m 0,-8.367188 q -0.963867,0 -1.442383,1.032227 -0.471679,1.032226 -0.471679,3.151367 0,0.963867 0.129882,1.804688 l 3.185547,-5.079102 q -0.519531,-0.90918 -1.401367,-0.90918 z"
+           style="fill:#4e4e4e"
+           id="path8759" />
+        <path
+           d="m 21.892178,44.254108 -3.219727,5.393555 h 3.219727 z m -0.225586,-1.257812 h 1.599609 v 6.651367 h 1.360352 v 1.121094 h -1.360352 v 2.433594 h -1.374023 v -2.433594 h -4.327149 v -1.305664 z"
+           style="fill:#4e4e4e"
+           id="path8761" />
+        <path
+           d="m 69.63121,45.573444 h 3.219727 v 6.651368 h 2.495117 v 0.977539 h -6.248047 v -0.977539 h 2.495117 V 46.550983 H 69.63121 Z m 1.961914,-2.973632 h 1.257813 v 1.585937 h -1.257813 z"
+           style="fill:#d0d0d0"
+           id="path8763" />
+        <path
+           d="M 78.46331,52.238483 V 56.11446 H 77.198662 V 45.546101 h 1.264648 v 0.977539 q 0.314453,-0.567383 0.833985,-0.861328 0.526367,-0.300782 1.209961,-0.300782 1.387695,0 2.173828,1.073242 0.792968,1.073243 0.792968,2.973633 0,1.866211 -0.792968,2.932617 -0.792969,1.059571 -2.173828,1.059571 -0.697266,0 -1.223633,-0.293946 -0.519532,-0.300781 -0.820313,-0.868164 z m 3.691406,-2.857421 q 0,-1.462891 -0.464843,-2.208008 -0.458008,-0.745117 -1.367188,-0.745117 -0.916015,0 -1.387695,0.751953 -0.47168,0.745117 -0.47168,2.201172 0,1.449218 0.47168,2.201171 0.47168,0.751954 1.387695,0.751954 0.90918,0 1.367188,-0.745118 0.464843,-0.745117 0.464843,-2.208007 z"
+           style="fill:#d0d0d0"
+           id="path8765" />
+        <path
+           d="m 92.695801,54.501179 v 1.162109 h -8.367188 v -1.162109 z"
+           style="fill:#d0d0d0"
+           id="path8767" />
+        <path
+           d="m 93.451187,45.546101 h 1.305664 l 2.22168,6.425781 2.228516,-6.425781 h 1.305663 l -2.720703,7.65625 H 96.17189 Z"
+           style="fill:#d0d0d0"
+           id="path8769" />
+        <path
+           d="m 107.84774,45.812702 v 1.230469 q -0.54004,-0.314453 -1.08691,-0.47168 -0.54688,-0.157226 -1.11426,-0.157226 -0.85449,0 -1.27832,0.280273 -0.41699,0.273438 -0.41699,0.84082 0,0.512696 0.31445,0.765625 0.31445,0.25293 1.56543,0.492188 l 0.50586,0.0957 q 0.93652,0.177734 1.41504,0.710938 0.48535,0.533203 0.48535,1.387695 0,1.134765 -0.80664,1.777344 -0.80664,0.635742 -2.24219,0.635742 -0.56738,0 -1.18945,-0.123047 -0.62207,-0.116211 -1.34668,-0.355469 v -1.298828 q 0.7041,0.362305 1.34668,0.546875 0.64258,0.177734 1.21679,0.177734 0.83399,0 1.292,-0.334961 0.458,-0.341796 0.458,-0.950195 0,-0.875 -1.6748,-1.209961 l -0.0547,-0.01367 -0.47168,-0.0957 q -1.08691,-0.211914 -1.58594,-0.710937 -0.49902,-0.50586 -0.49902,-1.374024 0,-1.100586 0.74512,-1.695312 0.74512,-0.601563 2.12598,-0.601563 0.61523,0 1.18261,0.116211 0.56739,0.109375 1.11426,0.334961 z"
+           style="fill:#d0d0d0"
+           id="path8771" />
+        <path
+           d="m 118.00255,54.501179 v 1.162109 h -8.36719 v -1.162109 z"
+           style="fill:#d0d0d0"
+           id="path8773" />
+        <path
+           d="m 124.71551,45.812702 v 1.230469 q -0.54004,-0.314453 -1.08692,-0.47168 -0.54687,-0.157226 -1.11425,-0.157226 -0.8545,0 -1.27832,0.280273 -0.417,0.273438 -0.417,0.84082 0,0.512696 0.31446,0.765625 0.31445,0.25293 1.56543,0.492188 l 0.50586,0.0957 q 0.93652,0.177734 1.41503,0.710938 0.48536,0.533203 0.48536,1.387695 0,1.134765 -0.80664,1.777344 -0.80665,0.635742 -2.24219,0.635742 -0.56738,0 -1.18946,-0.123047 -0.62207,-0.116211 -1.34667,-0.355469 v -1.298828 q 0.7041,0.362305 1.34667,0.546875 0.64258,0.177734 1.2168,0.177734 0.83399,0 1.29199,-0.334961 0.45801,-0.341796 0.45801,-0.950195 0,-0.875 -1.6748,-1.209961 l -0.0547,-0.01367 -0.47168,-0.0957 q -1.08691,-0.211914 -1.58594,-0.710937 -0.49902,-0.50586 -0.49902,-1.374024 0,-1.100586 0.74512,-1.695312 0.74511,-0.601563 2.12597,-0.601563 0.61524,0 1.18262,0.116211 0.56738,0.109375 1.11426,0.334961 z"
+           style="fill:#d0d0d0"
+           id="path8775" />
+        <path
+           d="m 133.6877,48.45821 v 4.744141 h -1.26465 V 48.45821 q 0,-1.032227 -0.3623,-1.517578 -0.36231,-0.485352 -1.13477,-0.485352 -0.88184,0 -1.36035,0.628907 -0.47168,0.62207 -0.47168,1.791015 v 4.327149 h -1.25781 V 42.565632 h 1.25781 v 4.128906 q 0.33496,-0.65625 0.90918,-0.991211 0.57422,-0.341797 1.36035,-0.341797 1.16894,0 1.74316,0.772461 0.58106,0.765625 0.58106,2.324219 z"
+           style="fill:#d0d0d0"
+           id="path8777" />
+        <path
+           d="M 1.8457031,71.642181 H 3.9921875 V 63.931244 L 1.421875,65.168549 V 63.842377 L 3.9785156,62.62558 H 5.359375 v 9.016601 h 2.1191406 v 1.155274 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path8779" />
+        <path
+           d="m 12.639716,62.44101 q 1.633789,0 2.467774,1.333007 0.84082,1.333008 0.84082,3.944336 0,2.611328 -0.84082,3.944336 -0.833985,1.333008 -2.467774,1.333008 -1.633789,0 -2.467773,-1.333008 -0.8339847,-1.333008 -0.8339847,-3.944336 0,-2.611328 0.8339847,-3.944336 0.833984,-1.333007 2.467773,-1.333007 z m 0,9.460937 q 0.970703,0 1.442383,-1.032227 0.478516,-1.032226 0.478516,-3.151367 0,-1.127929 -0.136719,-2.037109 l -3.253906,5.092773 q 0.512695,1.12793 1.469726,1.12793 z m 0,-8.367187 q -0.963867,0 -1.442383,1.032226 -0.471679,1.032227 -0.471679,3.151367 0,0.963867 0.129882,1.804688 l 3.185547,-5.079102 Q 13.521552,63.53476 12.639716,63.53476 Z"
+           style="fill:#4e4e4e"
+           id="path8781" />
+        <path
+           d="m 18.282803,62.5914 h 5.167968 v 1.16211 h -3.910156 v 2.508789 q 0.293945,-0.109375 0.587891,-0.157227 0.300781,-0.05469 0.601562,-0.05469 1.585938,0 2.515625,0.936523 0.929688,0.936523 0.929688,2.536133 0,1.613281 -0.977539,2.542969 -0.970703,0.929687 -2.65918,0.929687 -0.813477,0 -1.490234,-0.109375 -0.669922,-0.109375 -1.203125,-0.328125 V 71.15683 q 0.628906,0.341797 1.264648,0.512695 0.635742,0.164063 1.298828,0.164063 1.141602,0 1.756836,-0.601563 0.62207,-0.601562 0.62207,-1.708984 0,-1.09375 -0.642578,-1.702149 -0.635742,-0.608398 -1.777343,-0.608398 -0.553711,0 -1.080079,0.129883 -0.526367,0.123047 -1.004882,0.375976 z"
+           style="fill:#4e4e4e"
+           id="path8783" />
+        <path
+           d="m 57.787865,68.053314 v 4.744141 h -1.264649 v -4.744141 q 0,-1.032226 -0.362304,-1.517578 -0.362305,-0.485351 -1.134766,-0.485351 -0.881836,0 -1.360352,0.628906 -0.471679,0.62207 -0.471679,1.791015 v 4.327149 h -1.257813 v -7.65625 h 1.257813 v 1.148437 q 0.334961,-0.65625 0.909179,-0.991211 0.574219,-0.341796 1.360352,-0.341796 1.168945,0 1.743164,0.77246 0.581055,0.765625 0.581055,2.324219 z"
+           style="fill:#ff8700"
+           id="path8785" />
+        <path
+           d="m 66.68832,68.340424 v 0.615234 h -5.448242 v 0.04102 q -0.05469,1.565429 0.594727,2.249023 0.65625,0.683594 1.845703,0.683594 0.601562,0 1.257812,-0.191406 0.65625,-0.191407 1.401367,-0.581055 v 1.250976 q -0.717773,0.293946 -1.387695,0.4375 -0.663086,0.150391 -1.285156,0.150391 -1.78418,0 -2.789063,-1.066406 -1.004883,-1.073242 -1.004883,-2.953125 0,-1.832031 0.984375,-2.925781 0.984375,-1.09375 2.625,-1.09375 1.462891,0 2.303711,0.99121 0.847657,0.991211 0.902344,2.392579 z m -1.257812,-0.369141 q -0.08203,-0.792969 -0.581055,-1.367188 -0.492188,-0.581054 -1.421875,-0.581054 -0.90918,0 -1.49707,0.601562 -0.587891,0.601563 -0.642578,1.353516 z"
+           style="fill:#ff8700"
+           id="path8787" />
+        <path
+           d="m 71.66832,62.967377 v 2.173828 h 2.857422 v 0.977539 H 71.66832 v 4.15625 q 0,0.847656 0.321289,1.182617 0.321289,0.334961 1.121094,0.334961 h 1.415039 v 1.004883 h -1.538086 q -1.415039,0 -1.996094,-0.567383 -0.581055,-0.567383 -0.581055,-1.955078 v -4.15625 h -2.043945 v -0.977539 h 2.043945 v -2.173828 z"
+           style="fill:#ff8700"
+           id="path8789" />
+        <path
+           d="m 75.899834,65.141205 h 1.24414 l 1.333008,6.186523 1.09375,-3.951172 h 1.073242 l 1.107422,3.951172 1.333008,-6.186523 h 1.244141 l -1.791016,7.65625 h -1.203125 l -1.223633,-4.197266 -1.216797,4.197266 h -1.203125 z"
+           style="fill:#ff8700"
+           id="path8791" />
+        <path
+           d="m 88.539551,66.023041 q -0.957031,0 -1.449219,0.745117 -0.492187,0.745117 -0.492187,2.208008 0,1.456054 0.492187,2.208008 0.492188,0.745117 1.449219,0.745117 0.963867,0 1.456054,-0.745117 0.492188,-0.751954 0.492188,-2.208008 0,-1.462891 -0.492188,-2.208008 -0.492187,-0.745117 -1.456054,-0.745117 z m 0,-1.066406 q 1.592773,0 2.433594,1.032226 0.847656,1.032227 0.847656,2.987305 0,1.961914 -0.840821,2.99414 -0.84082,1.025391 -2.440429,1.025391 -1.592774,0 -2.433594,-1.025391 -0.84082,-1.032226 -0.84082,-2.99414 0,-1.955078 0.84082,-2.987305 0.84082,-1.032226 2.433594,-1.032226 z"
+           style="fill:#ff8700"
+           id="path8793" />
+        <path
+           d="m 100.6631,66.720306 q -0.40332,-0.314453 -0.820311,-0.458007 -0.416992,-0.143555 -0.916016,-0.143555 -1.175781,0 -1.797851,0.738281 -0.622071,0.738281 -0.622071,2.132813 v 3.807617 h -1.264648 v -7.65625 h 1.264648 v 1.49707 q 0.314453,-0.813476 0.963867,-1.24414 0.65625,-0.4375 1.551758,-0.4375 0.464844,0 0.868164,0.11621 0.40332,0.116211 0.77246,0.362305 z"
+           style="fill:#ff8700"
+           id="path8795" />
+        <path
+           d="m 102.80965,62.160736 h 1.29883 v 6.15918 l 3.30176,-3.178711 h 1.53125 l -3.01465,2.884765 3.48633,4.771485 h -1.53809 l -2.83007,-3.951172 -0.93653,0.881836 v 3.069336 h -1.29883 z"
+           style="fill:#ff8700"
+           id="path8797" />
+        <path
+           d="m 112.29454,70.035736 h 2.40625 v 2.761719 h -2.40625 z"
+           style="fill:#ff8700"
+           id="path8799" />
+        <path
+           d="m 124.71551,65.407806 v 1.230469 q -0.54004,-0.314453 -1.08692,-0.47168 -0.54687,-0.157226 -1.11425,-0.157226 -0.8545,0 -1.27832,0.280273 -0.417,0.273438 -0.417,0.840821 0,0.512695 0.31446,0.765625 0.31445,0.252929 1.56543,0.492187 l 0.50586,0.0957 q 0.93652,0.177735 1.41503,0.710938 0.48536,0.533203 0.48536,1.387695 0,1.134766 -0.80664,1.777344 -0.80665,0.635742 -2.24219,0.635742 -0.56738,0 -1.18946,-0.123047 -0.62207,-0.116211 -1.34667,-0.355469 V 71.21835 q 0.7041,0.362305 1.34667,0.546875 0.64258,0.177735 1.2168,0.177735 0.83399,0 1.29199,-0.334961 0.45801,-0.341797 0.45801,-0.950196 0,-0.875 -1.6748,-1.209961 l -0.0547,-0.01367 -0.47168,-0.0957 q -1.08691,-0.211914 -1.58594,-0.710937 -0.49902,-0.505859 -0.49902,-1.374023 0,-1.100586 0.74512,-1.695313 0.74511,-0.601562 2.12597,-0.601562 0.61524,0 1.18262,0.11621 0.56738,0.109375 1.11426,0.334961 z"
+           style="fill:#ff8700"
+           id="path8801" />
+        <path
+           d="m 133.6877,68.053314 v 4.744141 h -1.26465 v -4.744141 q 0,-1.032226 -0.3623,-1.517578 -0.36231,-0.485351 -1.13477,-0.485351 -0.88184,0 -1.36035,0.628906 -0.47168,0.62207 -0.47168,1.791015 v 4.327149 h -1.25781 V 62.160736 h 1.25781 v 4.128906 q 0.33496,-0.65625 0.90918,-0.991211 0.57422,-0.341796 1.36035,-0.341796 1.16894,0 1.74316,0.77246 0.58106,0.765625 0.58106,2.324219 z"
+           style="fill:#ff8700"
+           id="path8803" />
+        <path
+           d="m 137.86452,65.148041 h 2.13281 v 2.467773 h -2.13281 z m 0,5.161133 h 2.13281 v 2.488281 h -2.13281 z"
+           style="fill:#5fd7ff"
+           id="path8805" />
+        <path
+           d="m 156.87193,62.099213 v 14 h -1.17578 v -14 z"
+           style="fill:#d0d0d0"
+           id="path8807" />
+        <path
+           d="M 1.8457031,91.243355 H 3.9921875 V 83.532417 L 1.421875,84.769722 V 83.44355 L 3.9785156,82.226753 H 5.359375 v 9.016602 h 2.1191406 v 1.155273 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path8809" />
+        <path
+           d="m 12.639716,82.042183 q 1.633789,0 2.467774,1.333008 0.84082,1.333008 0.84082,3.944336 0,2.611328 -0.84082,3.944336 -0.833985,1.333007 -2.467774,1.333007 -1.633789,0 -2.467773,-1.333007 -0.8339847,-1.333008 -0.8339847,-3.944336 0,-2.611328 0.8339847,-3.944336 0.833984,-1.333008 2.467773,-1.333008 z m 0,9.460937 q 0.970703,0 1.442383,-1.032226 0.478516,-1.032227 0.478516,-3.151367 0,-1.12793 -0.136719,-2.03711 l -3.253906,5.092774 q 0.512695,1.127929 1.469726,1.127929 z m 0,-8.367187 q -0.963867,0 -1.442383,1.032226 -0.471679,1.032227 -0.471679,3.151368 0,0.963867 0.129882,1.804687 l 3.185547,-5.079101 q -0.519531,-0.90918 -1.401367,-0.90918 z"
+           style="fill:#4e4e4e"
+           id="path8811" />
+        <path
+           d="m 23.642178,82.418159 v 1.271485 q -0.430664,-0.25293 -0.916016,-0.382813 -0.485352,-0.136718 -1.011719,-0.136718 -1.3125,0 -1.989258,0.991211 -0.676757,0.984375 -0.676757,2.905273 0.328125,-0.683594 0.909179,-1.045898 0.581055,-0.369141 1.333008,-0.369141 1.476563,0 2.283203,0.90918 0.813477,0.902343 0.813477,2.563476 0,1.654297 -0.833985,2.563477 -0.833984,0.909179 -2.344726,0.909179 -1.777344,0 -2.604492,-1.271484 -0.827149,-1.27832 -0.827149,-4.019531 0,-2.583985 0.991211,-3.9375 0.998047,-1.360352 2.884766,-1.360352 0.505859,0 1.011719,0.109375 0.505859,0.102539 0.977539,0.300781 z m -2.460938,4.313477 q -0.881836,0 -1.387695,0.635742 -0.50586,0.635742 -0.50586,1.756836 0,1.121094 0.50586,1.756836 0.505859,0.635742 1.387695,0.635742 0.916016,0 1.380859,-0.601562 0.464844,-0.608399 0.464844,-1.791016 0,-1.189453 -0.464844,-1.791015 -0.464843,-0.601563 -1.380859,-0.601563 z"
+           style="fill:#4e4e4e"
+           id="path8813" />
+        <path
+           d="m 72.092148,85.521675 q 0.232422,-0.492187 0.58789,-0.724609 0.362305,-0.239258 0.868165,-0.239258 0.922851,0 1.298828,0.717773 0.382812,0.710938 0.382812,2.686524 v 4.436523 h -1.148437 v -4.381836 q 0,-1.620117 -0.184571,-2.009765 -0.177734,-0.396485 -0.65625,-0.396485 -0.546875,0 -0.751953,0.423828 -0.198242,0.416993 -0.198242,1.982422 v 4.381836 h -1.148437 v -4.381836 q 0,-1.640625 -0.198243,-2.023437 -0.191406,-0.382813 -0.697265,-0.382813 -0.499024,0 -0.697266,0.423828 -0.191406,0.416993 -0.191406,1.982422 v 4.381836 h -1.141602 v -7.65625 h 1.141602 v 0.65625 q 0.225586,-0.410156 0.560547,-0.62207 0.341797,-0.21875 0.772461,-0.21875 0.519531,0 0.861328,0.239258 0.348633,0.239258 0.540039,0.724609 z"
+           style="fill:#d0d0d0"
+           id="path8815" />
+        <path
+           d="M 80.698662,88.549995 H 80.28167 q -1.100586,0 -1.661133,0.389649 -0.553711,0.382812 -0.553711,1.148437 0,0.69043 0.416992,1.073243 0.416992,0.382812 1.155273,0.382812 1.039063,0 1.63379,-0.717773 0.594726,-0.72461 0.601562,-1.996094 v -0.280274 z m 2.440429,-0.519531 v 4.368164 h -1.264648 v -1.134765 q -0.40332,0.683593 -1.018555,1.011718 -0.608398,0.321289 -1.483398,0.321289 -1.168945,0 -1.866211,-0.65625 -0.697266,-0.663086 -0.697266,-1.770507 0,-1.278321 0.854493,-1.941407 0.861328,-0.663086 2.52246,-0.663086 h 1.688477 v -0.198242 q -0.0068,-0.916015 -0.464844,-1.326172 -0.458008,-0.416992 -1.46289,-0.416992 -0.642578,0 -1.298828,0.18457 -0.65625,0.184571 -1.278321,0.54004 v -1.257813 q 0.697266,-0.266602 1.333008,-0.396484 0.642578,-0.136719 1.244141,-0.136719 0.950195,0 1.620117,0.280273 0.676758,0.280274 1.09375,0.840821 0.259765,0.341797 0.36914,0.847656 0.109375,0.499023 0.109375,1.503906 z"
+           style="fill:#d0d0d0"
+           id="path8817" />
+        <path
+           d="m 90.97998,85.00898 v 1.230469 q -0.540039,-0.314454 -1.086914,-0.47168 -0.546875,-0.157227 -1.114257,-0.157227 -0.854493,0 -1.278321,0.280274 -0.416992,0.273437 -0.416992,0.84082 0,0.512695 0.314453,0.765625 0.314453,0.25293 1.56543,0.492188 l 0.505859,0.0957 q 0.936524,0.177734 1.415039,0.710937 0.485352,0.533203 0.485352,1.387695 0,1.134766 -0.806641,1.777344 -0.80664,0.635742 -2.242187,0.635742 -0.567383,0 -1.189453,-0.123046 -0.622071,-0.116211 -1.34668,-0.355469 v -1.298828 q 0.704102,0.362304 1.34668,0.546875 0.642578,0.177734 1.216797,0.177734 0.833984,0 1.291992,-0.334961 0.458008,-0.341797 0.458008,-0.950195 0,-0.875 -1.674805,-1.209961 l -0.05469,-0.01367 -0.471679,-0.0957 q -1.086914,-0.211914 -1.585938,-0.710938 -0.499023,-0.505859 -0.499023,-1.374023 0,-1.100586 0.745117,-1.695313 0.745117,-0.601562 2.125976,-0.601562 0.615235,0 1.182618,0.116211 0.567382,0.109375 1.114257,0.334961 z"
+           style="fill:#d0d0d0"
+           id="path8819" />
+        <path
+           d="m 94.380875,81.761909 h 1.298828 v 6.15918 l 3.301758,-3.178711 h 1.531249 l -3.014648,2.884766 3.486328,4.771484 h -1.538086 l -2.830078,-3.951172 -0.936523,0.881836 v 3.069336 h -1.298828 z"
+           style="fill:#d0d0d0"
+           id="path8821" />
+        <path
+           d="m 103.74618,91.236519 h 4.68945 v 1.162109 h -6.20019 v -1.162109 q 1.27832,-1.34668 2.23535,-2.378906 0.95703,-1.032227 1.31933,-1.456055 0.6836,-0.833984 0.92285,-1.34668 0.23926,-0.519531 0.23926,-1.05957 0,-0.854492 -0.50586,-1.339844 -0.49902,-0.485351 -1.37402,-0.485351 -0.62207,0 -1.30566,0.225586 -0.6836,0.225585 -1.44922,0.683593 v -1.394531 q 0.7041,-0.334961 1.38086,-0.505859 0.68359,-0.170899 1.34668,-0.170899 1.49707,0 2.40625,0.799805 0.91601,0.792969 0.91601,2.084961 0,0.65625 -0.30762,1.3125 -0.30078,0.65625 -0.98437,1.449219 -0.38281,0.444336 -1.11426,1.230468 -0.72461,0.786133 -2.21484,2.351563 z"
+           style="fill:#d0d0d0"
+           id="path8823" />
+        <path
+           d="m 116.88829,92.00898 q -0.50586,0.293945 -1.0459,0.4375 -0.5332,0.15039 -1.09375,0.15039 -1.77734,0 -2.78222,-1.066406 -0.99805,-1.066406 -0.99805,-2.953125 0,-1.886719 0.99805,-2.953125 1.00488,-1.066406 2.78222,-1.066406 0.55371,0 1.08008,0.143555 0.52637,0.143554 1.05957,0.444336 v 1.319335 q -0.49902,-0.444335 -1.00488,-0.642578 -0.49903,-0.198242 -1.13477,-0.198242 -1.18262,0 -1.81836,0.765625 -0.63574,0.765625 -0.63574,2.1875 0,1.415039 0.63574,2.1875 0.64258,0.765625 1.81836,0.765625 0.65625,0 1.17578,-0.198242 0.51953,-0.205078 0.96387,-0.628906 z"
+           style="fill:#d0d0d0"
+           id="path8825" />
+        <path
+           d="m 120.2243,84.769722 h 3.21972 v 6.651367 h 2.49512 v 0.977539 h -6.24805 v -0.977539 h 2.49512 v -5.673828 h -1.96191 z m 1.96191,-2.973633 h 1.25781 v 1.585938 h -1.25781 z"
+           style="fill:#d0d0d0"
+           id="path8827" />
+        <path
+           d="m 132.36836,85.719917 v -3.958008 h 1.25781 v 10.636719 h -1.25781 v -0.963867 q -0.31445,0.567383 -0.84082,0.868164 -0.51953,0.293945 -1.20312,0.293945 -1.3877,0 -2.1875,-1.073242 -0.79297,-1.080078 -0.79297,-2.973633 0,-1.866211 0.7998,-2.925781 0.79981,-1.066406 2.18067,-1.066406 0.69043,0 1.21679,0.300781 0.52637,0.293945 0.82715,0.861328 z m -3.69824,2.857422 q 0,1.462891 0.46484,2.208008 0.46485,0.745117 1.37403,0.745117 0.90918,0 1.38086,-0.751953 0.47851,-0.751953 0.47851,-2.201172 0,-1.456055 -0.47851,-2.201172 -0.47168,-0.751953 -1.38086,-0.751953 -0.90918,0 -1.37403,0.745117 -0.46484,0.745118 -0.46484,2.208008 z"
+           style="fill:#d0d0d0"
+           id="path8829" />
+        <path
+           d="m 142.82741,86.32148 q -0.40332,-0.314453 -0.82031,-0.458008 -0.417,-0.143555 -0.91602,-0.143555 -1.17578,0 -1.79785,0.738282 -0.62207,0.738281 -0.62207,2.132812 v 3.807617 h -1.26465 v -7.65625 h 1.26465 v 1.497071 q 0.31445,-0.813477 0.96387,-1.244141 0.65625,-0.4375 1.55175,-0.4375 0.46485,0 0.86817,0.116211 0.40332,0.116211 0.77246,0.362305 z"
+           style="fill:#d0d0d0"
+           id="path8831" />
+        <path
+           d="m 149.21562,81.091988 q -0.90918,1.558593 -1.36035,3.110351 -0.44434,1.544922 -0.44434,3.117188 0,1.565429 0.44434,3.117187 0.45117,1.551758 1.36035,3.124024 h -1.09375 q -1.03222,-1.626954 -1.53808,-3.165039 -0.50586,-1.544922 -0.50586,-3.076172 0,-1.524414 0.50586,-3.069336 0.50586,-1.544922 1.53808,-3.158203 z"
+           style="fill:#d0d0d0"
+           id="path8833" />
+        <path
+           d="m 154.17857,81.091988 h 1.09375 q 1.03223,1.613281 1.53809,3.158203 0.50586,1.544922 0.50586,3.069336 0,1.538086 -0.50586,3.083007 -0.50586,1.544922 -1.53809,3.158204 h -1.09375 q 0.90918,-1.585938 1.35352,-3.137696 0.45117,-1.551758 0.45117,-3.103515 0,-1.558594 -0.45117,-3.110352 -0.44434,-1.551758 -1.35352,-3.117187 z"
+           style="fill:#d0d0d0"
+           id="path8835" />
+        <path
+           d="m 175.72211,92.747261 v 0.984375 h -0.4375 q -1.70215,0 -2.28321,-0.505859 -0.57421,-0.50586 -0.57421,-2.016602 v -1.367187 q 0,-0.745118 -0.42383,-1.285157 -0.417,-0.540039 -1.29883,-0.540039 h -0.83399 v -0.977539 h 0.83399 q 0.96387,0 1.33984,-0.458008 0.38282,-0.458007 0.38282,-1.346679 v -1.777344 q 0,-1.510742 0.57421,-2.009766 0.58106,-0.505859 2.28321,-0.505859 h 0.4375 v 0.977539 h -0.47852 q -0.95703,0 -1.25098,0.300781 -0.2871,0.293946 -0.2871,1.264649 v 1.832031 q 0,1.203125 -0.47168,1.620117 -0.47168,0.410156 -1.83887,0.594727 1.32617,0.157226 1.81836,0.608398 0.49219,0.444336 0.49219,1.613281 v 1.428711 q 0,0.977539 0.2871,1.271485 0.29395,0.293945 1.25098,0.293945 z"
+           style="fill:#5fd7ff"
+           id="path8837" />
+        <path
+           d="m 1.8457031,110.84452 h 2.1464844 v -7.71094 l -2.5703125,1.23731 v -1.32617 l 2.5566406,-1.2168 H 5.359375 v 9.0166 h 2.1191406 v 1.15527 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path8839" />
+        <path
+           d="m 12.639716,101.64335 q 1.633789,0 2.467774,1.33301 0.84082,1.333 0.84082,3.94433 0,2.61133 -0.84082,3.94434 -0.833985,1.33301 -2.467774,1.33301 -1.633789,0 -2.467773,-1.33301 -0.8339847,-1.33301 -0.8339847,-3.94434 0,-2.61133 0.8339847,-3.94433 0.833984,-1.33301 2.467773,-1.33301 z m 0,9.46094 q 0.970703,0 1.442383,-1.03223 0.478516,-1.03223 0.478516,-3.15137 0,-1.12793 -0.136719,-2.03711 l -3.253906,5.09278 q 0.512695,1.12793 1.469726,1.12793 z m 0,-8.36719 q -0.963867,0 -1.442383,1.03223 -0.471679,1.03222 -0.471679,3.15136 0,0.96387 0.129882,1.80469 l 3.185547,-5.0791 q -0.519531,-0.90918 -1.401367,-0.90918 z"
+           style="fill:#4e4e4e"
+           id="path8841" />
+        <path
+           d="m 17.817959,101.79374 h 6.425781 v 0.58789 l -3.650391,9.61816 h -1.442382 l 3.554687,-9.04394 h -4.887695 z"
+           style="fill:#4e4e4e"
+           id="path8843" />
+        <path
+           d="m 91.513184,107.25565 v 4.74414 h -1.264649 v -4.74414 q 0,-1.03222 -0.362305,-1.51757 -0.362304,-0.48536 -1.134765,-0.48536 -0.881836,0 -1.360352,0.62891 -0.471679,0.62207 -0.471679,1.79102 v 4.32714 h -1.257813 v -7.65625 h 1.257813 v 1.14844 q 0.334961,-0.65625 0.909179,-0.99121 0.574219,-0.3418 1.360352,-0.3418 1.168945,0 1.743164,0.77246 0.581055,0.76563 0.581055,2.32422 z"
+           style="fill:#d0d0d0"
+           id="path8845" />
+        <path
+           d="m 99.042984,108.1785 q 0,-1.46289 -0.464844,-2.208 -0.464843,-0.74512 -1.374023,-0.74512 -0.916016,0 -1.387695,0.75195 -0.47168,0.74512 -0.47168,2.20117 0,1.44922 0.47168,2.20118 0.471679,0.75195 1.387695,0.75195 0.90918,0 1.374023,-0.74512 0.464844,-0.74511 0.464844,-2.20801 z m -3.698242,-2.85742 q 0.300781,-0.56054 0.827148,-0.86133 0.533203,-0.30078 1.230469,-0.30078 1.380859,0 2.173828,1.06641 0.792973,1.05957 0.792973,2.92578 0,1.89356 -0.799809,2.97363 -0.792969,1.07325 -2.180664,1.07325 -0.683594,0 -1.209961,-0.29395 -0.519531,-0.30078 -0.833984,-0.86816 v 0.96386 h -1.257813 v -10.63671 h 1.257813 z"
+           style="fill:#d0d0d0"
+           id="path8847" />
+        <path
+           d="m 103.35653,104.37089 h 3.21973 v 6.65136 h 2.49511 v 0.97754 h -6.24804 v -0.97754 h 2.49511 v -5.67382 h -1.96191 z m 1.96191,-2.97364 h 1.25782 v 1.58594 h -1.25782 z"
+           style="fill:#d0d0d0"
+           id="path8849" />
+        <path
+           d="m 113.83263,102.16972 v 2.17382 h 2.85742 v 0.97754 h -2.85742 v 4.15625 q 0,0.84766 0.32129,1.18262 0.32128,0.33496 1.12109,0.33496 h 1.41504 v 1.00488 h -1.53809 q -1.41504,0 -1.99609,-0.56738 -0.58106,-0.56738 -0.58106,-1.95508 v -4.15625 h -2.04394 v -0.97754 h 2.04394 v -2.17382 z"
+           style="fill:#d0d0d0"
+           id="path8851" />
+        <path
+           d="m 124.71551,104.61015 v 1.23046 q -0.54004,-0.31445 -1.08692,-0.47168 -0.54687,-0.15722 -1.11425,-0.15722 -0.8545,0 -1.27832,0.28027 -0.417,0.27344 -0.417,0.84082 0,0.5127 0.31446,0.76563 0.31445,0.25293 1.56543,0.49218 l 0.50586,0.0957 q 0.93652,0.17773 1.41503,0.71093 0.48536,0.53321 0.48536,1.3877 0,1.13477 -0.80664,1.77734 -0.80665,0.63575 -2.24219,0.63575 -0.56738,0 -1.18946,-0.12305 -0.62207,-0.11621 -1.34667,-0.35547 v -1.29883 q 0.7041,0.36231 1.34667,0.54688 0.64258,0.17773 1.2168,0.17773 0.83399,0 1.29199,-0.33496 0.45801,-0.3418 0.45801,-0.95019 0,-0.875 -1.6748,-1.20997 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08691,-0.21191 -1.58594,-0.71094 -0.49902,-0.50586 -0.49902,-1.37402 0,-1.10059 0.74512,-1.69531 0.74511,-0.60157 2.12597,-0.60157 0.61524,0 1.18262,0.11621 0.56738,0.10938 1.11426,0.33497 z"
+           style="fill:#d0d0d0"
+           id="path8853" />
+        <path
+           d="m 127.10469,108.58183 h 7.22559 v 1.15527 h -7.22559 z m 0,-3.21973 h 7.22559 v 1.15527 h -7.22559 z"
+           style="fill:#d0d0d0"
+           id="path8855" />
+        <path
+           d="m 139.14284,101.64335 q 1.63379,0 2.46777,1.33301 0.84082,1.333 0.84082,3.94433 0,2.61133 -0.84082,3.94434 -0.83398,1.33301 -2.46777,1.33301 -1.63379,0 -2.46778,-1.33301 -0.83398,-1.33301 -0.83398,-3.94434 0,-2.61133 0.83398,-3.94433 0.83399,-1.33301 2.46778,-1.33301 z m 0,9.46094 q 0.9707,0 1.44238,-1.03223 0.47852,-1.03223 0.47852,-3.15137 0,-1.12793 -0.13672,-2.03711 l -3.25391,5.09278 q 0.5127,1.12793 1.46973,1.12793 z m 0,-8.36719 q -0.96387,0 -1.44239,1.03223 -0.47167,1.03222 -0.47167,3.15136 0,0.96387 0.12988,1.80469 l 3.18554,-5.0791 q -0.51953,-0.90918 -1.40136,-0.90918 z"
+           style="fill:#d0d0d0"
+           id="path8857" />
+        <path
+           d="m 1.8457031,130.44569 h 2.1464844 v -7.71093 l -2.5703125,1.2373 v -1.32617 l 2.5566406,-1.2168 H 5.359375 v 9.0166 h 2.1191406 v 1.15528 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path8859" />
+        <path
+           d="m 12.639716,121.24452 q 1.633789,0 2.467774,1.33301 0.84082,1.33301 0.84082,3.94434 0,2.61132 -0.84082,3.94433 -0.833985,1.33301 -2.467774,1.33301 -1.633789,0 -2.467773,-1.33301 -0.8339847,-1.33301 -0.8339847,-3.94433 0,-2.61133 0.8339847,-3.94434 0.833984,-1.33301 2.467773,-1.33301 z m 0,9.46094 q 0.970703,0 1.442383,-1.03223 0.478516,-1.03222 0.478516,-3.15136 0,-1.12793 -0.136719,-2.03711 l -3.253906,5.09277 q 0.512695,1.12793 1.469726,1.12793 z m 0,-8.36719 q -0.963867,0 -1.442383,1.03223 -0.471679,1.03223 -0.471679,3.15137 0,0.96386 0.129882,1.80468 l 3.185547,-5.0791 q -0.519531,-0.90918 -1.401367,-0.90918 z"
+           style="fill:#4e4e4e"
+           id="path8861" />
+        <path
+           d="m 21.078701,126.75429 q -0.922852,0 -1.428711,0.51953 -0.499023,0.51269 -0.499023,1.45605 0,0.94336 0.505859,1.46973 0.512695,0.51953 1.421875,0.51953 0.929688,0 1.428711,-0.51269 0.505859,-0.51954 0.505859,-1.47657 0,-0.93652 -0.512695,-1.45605 -0.505859,-0.51953 -1.421875,-0.51953 z m -1.203125,-0.57422 q -0.881836,-0.22559 -1.380859,-0.84082 -0.492188,-0.61524 -0.492188,-1.4834 0,-1.2168 0.827149,-1.92773 0.827148,-0.71778 2.249023,-0.71778 1.428711,0 2.255859,0.71778 0.827149,0.71093 0.827149,1.92773 0,0.86816 -0.499024,1.4834 -0.492187,0.61523 -1.374023,0.84082 1.025391,0.22558 1.56543,0.90918 0.546875,0.68359 0.546875,1.77051 0,1.38086 -0.881836,2.16015 -0.881836,0.7793 -2.44043,0.7793 -1.558594,0 -2.44043,-0.77246 -0.875,-0.7793 -0.875,-2.15332 0,-1.09375 0.540039,-1.77735 0.546875,-0.69043 1.572266,-0.91601 z m -0.499023,-2.19434 q 0,0.82032 0.4375,1.25098 0.4375,0.43066 1.264648,0.43066 0.833984,0 1.271484,-0.43066 0.4375,-0.43066 0.4375,-1.25098 0,-0.83398 -0.4375,-1.27148 -0.430664,-0.4375 -1.271484,-0.4375 -0.827148,0 -1.264648,0.44433 -0.4375,0.4375 -0.4375,1.26465 z"
+           style="fill:#4e4e4e"
+           id="path8863" />
+        <path
+           d="m 85.702637,121.39491 h 5.666992 v 1.16211 H 89.22998 v 7.88184 h 2.139649 v 1.16211 h -5.666992 v -1.16211 h 2.139648 v -7.88184 h -2.139648 z"
+           style="fill:#d0d0d0"
+           id="path8865" />
+        <path
+           d="m 94.360367,121.39491 h 6.008793 v 1.16211 h -4.621098 v 2.73438 h 4.19043 v 1.16211 h -4.19043 v 5.14746 h -1.387695 z"
+           style="fill:#d0d0d0"
+           id="path8867" />
+        <path
+           d="m 108.11434,121.74355 v 1.40136 q -0.6289,-0.40332 -1.26465,-0.6084 -0.6289,-0.20507 -1.27148,-0.20507 -0.97754,0 -1.54492,0.458 -0.56739,0.45118 -0.56739,1.22364 0,0.67675 0.36914,1.03222 0.37598,0.35547 1.39454,0.59473 l 0.72461,0.16406 q 1.43554,0.33496 2.09179,1.05274 0.65625,0.71777 0.65625,1.95507 0,1.45606 -0.90234,2.22168 -0.90235,0.76563 -2.625,0.76563 -0.71777,0 -1.44238,-0.15723 -0.72461,-0.15039 -1.45606,-0.458 v -1.46973 q 0.78613,0.49902 1.4834,0.73144 0.7041,0.23243 1.41504,0.23243 1.0459,0 1.62695,-0.46485 0.58106,-0.47168 0.58106,-1.3125 0,-0.76562 -0.40332,-1.16894 -0.39649,-0.40332 -1.3877,-0.62207 l -0.73828,-0.1709 q -1.42188,-0.32129 -2.06445,-0.97071 -0.64258,-0.64941 -0.64258,-1.74316 0,-1.36719 0.91601,-2.1875 0.92286,-0.82715 2.44727,-0.82715 0.58789,0 1.2373,0.13672 0.64942,0.12988 1.36719,0.39649 z"
+           style="fill:#d0d0d0"
+           id="path8869" />
+        <path
+           d="m 110.23692,128.183 h 7.22559 v 1.15527 h -7.22559 z m 0,-3.21973 h 7.22559 v 1.15528 h -7.22559 z"
+           style="fill:#d0d0d0"
+           id="path8871" />
+        <path
+           d="m 120.72332,128.83925 h 2.40625 v 2.76172 h -2.40625 z"
+           style="fill:#d0d0d0"
+           id="path8873" />
+        <path
+           d="m 1.8457031,150.04687 h 2.1464844 v -7.71093 l -2.5703125,1.2373 v -1.32617 l 2.5566406,-1.2168 H 5.359375 v 9.0166 h 2.1191406 v 1.15528 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path8875" />
+        <path
+           d="m 12.639716,140.8457 q 1.633789,0 2.467774,1.33301 0.84082,1.33301 0.84082,3.94434 0,2.61132 -0.84082,3.94433 -0.833985,1.33301 -2.467774,1.33301 -1.633789,0 -2.467773,-1.33301 -0.8339847,-1.33301 -0.8339847,-3.94433 0,-2.61133 0.8339847,-3.94434 0.833984,-1.33301 2.467773,-1.33301 z m 0,9.46094 q 0.970703,0 1.442383,-1.03223 0.478516,-1.03222 0.478516,-3.15136 0,-1.12793 -0.136719,-2.03711 l -3.253906,5.09277 q 0.512695,1.12793 1.469726,1.12793 z m 0,-8.36719 q -0.963867,0 -1.442383,1.03223 -0.471679,1.03223 -0.471679,3.15137 0,0.96386 0.129882,1.80468 l 3.185547,-5.0791 q -0.519531,-0.90918 -1.401367,-0.90918 z"
+           style="fill:#4e4e4e"
+           id="path8877" />
+        <path
+           d="m 20.941982,146.67676 q 0.881836,0 1.38086,-0.63574 0.505859,-0.63575 0.505859,-1.75684 0,-1.12109 -0.505859,-1.75684 -0.499024,-0.63574 -1.38086,-0.63574 -0.916015,0 -1.380859,0.6084 -0.464844,0.60156 -0.464844,1.78418 0,1.18945 0.458008,1.79102 0.464844,0.60156 1.387695,0.60156 z m -2.460937,4.31347 v -1.27148 q 0.430664,0.25293 0.916015,0.38965 0.485352,0.12988 1.011719,0.12988 1.3125,0 1.982422,-0.98437 0.676758,-0.99121 0.676758,-2.91211 -0.321289,0.68359 -0.902344,1.05273 -0.581055,0.36231 -1.333008,0.36231 -1.476562,0 -2.290039,-0.90918 -0.80664,-0.90918 -0.80664,-2.57715 0,-1.64746 0.827148,-2.54981 0.833984,-0.90918 2.351563,-0.90918 1.777343,0 2.604492,1.27832 0.827148,1.27832 0.827148,4.01953 0,2.57715 -0.998047,3.9375 -0.991211,1.35352 -2.884765,1.35352 -0.499024,0 -1.004883,-0.10937 -0.50586,-0.10254 -0.977539,-0.30079 z"
+           style="fill:#4e4e4e"
+           id="path8879" />
+        <path
+           d="m 91.595215,140.56543 v 1.0459 h -1.428711 q -0.676758,0 -0.943359,0.28027 -0.259766,0.27344 -0.259766,0.97754 v 0.67676 h 2.631836 v 0.97754 h -2.631836 v 6.67871 h -1.257813 v -6.67871 h -2.043945 v -0.97754 h 2.043945 v -0.5332 q 0,-1.25782 0.574219,-1.85254 0.581055,-0.59473 1.804688,-0.59473 z"
+           style="fill:#d0d0d0"
+           id="path8881" />
+        <path
+           d="m 96.978531,144.42773 q -0.957031,0 -1.449219,0.74512 -0.492187,0.74512 -0.492187,2.20801 0,1.45605 0.492187,2.20801 0.492188,0.74511 1.449219,0.74511 0.963867,0 1.456055,-0.74511 0.492187,-0.75196 0.492187,-2.20801 0,-1.46289 -0.492187,-2.20801 -0.492188,-0.74512 -1.456055,-0.74512 z m 0,-1.0664 q 1.592773,0 2.433594,1.03222 0.847655,1.03223 0.847655,2.98731 0,1.96191 -0.840819,2.99414 -0.840821,1.02539 -2.44043,1.02539 -1.592774,0 -2.433594,-1.02539 -0.84082,-1.03223 -0.84082,-2.99414 0,-1.95508 0.84082,-2.98731 0.84082,-1.03222 2.433594,-1.03222 z"
+           style="fill:#d0d0d0"
+           id="path8883" />
+        <path
+           d="m 109.09188,145.125 q -0.40332,-0.31445 -0.82031,-0.45801 -0.41699,-0.14355 -0.91602,-0.14355 -1.17578,0 -1.79785,0.73828 -0.62207,0.73828 -0.62207,2.13281 v 3.80762 h -1.26465 v -7.65625 h 1.26465 v 1.49707 q 0.31445,-0.81348 0.96387,-1.24414 0.65625,-0.4375 1.55176,-0.4375 0.46484,0 0.86816,0.11621 0.40332,0.11621 0.77246,0.3623 z"
+           style="fill:#d0d0d0"
+           id="path8885" />
+        <path
+           d="m 123.92937,144.52344 v -3.95801 h 1.25782 v 10.63672 h -1.25782 v -0.96387 q -0.31445,0.56738 -0.84082,0.86817 -0.51953,0.29394 -1.20312,0.29394 -1.3877,0 -2.1875,-1.07324 -0.79297,-1.08008 -0.79297,-2.97363 0,-1.86622 0.79981,-2.92579 0.7998,-1.0664 2.18066,-1.0664 0.69043,0 1.2168,0.30078 0.52636,0.29394 0.82714,0.86133 z m -3.69824,2.85742 q 0,1.46289 0.46485,2.20801 0.46484,0.74511 1.37402,0.74511 0.90918,0 1.38086,-0.75195 0.47851,-0.75195 0.47851,-2.20117 0,-1.45606 -0.47851,-2.20117 -0.47168,-0.75196 -1.38086,-0.75196 -0.90918,0 -1.37402,0.74512 -0.46485,0.74512 -0.46485,2.20801 z"
+           style="fill:#d0d0d0"
+           id="path8887" />
+        <path
+           d="m 134.15938,146.74512 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56543 0.59472,2.24902 0.65625,0.68359 1.84571,0.68359 0.60156,0 1.25781,-0.1914 0.65625,-0.19141 1.40137,-0.58106 v 1.25098 q -0.71778,0.29395 -1.3877,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.06641 -1.00488,-1.07324 -1.00488,-2.95312 0,-1.83203 0.98437,-2.92578 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99121 0.90235,2.39258 z m -1.25781,-0.36914 q -0.082,-0.79297 -0.58106,-1.36719 -0.49219,-0.58106 -1.42187,-0.58106 -0.90918,0 -1.49707,0.60157 -0.5879,0.60156 -0.64258,1.35351 z"
+           style="fill:#d0d0d0"
+           id="path8889" />
+        <path
+           d="m 142.18483,150.8125 q -0.50586,0.29395 -1.0459,0.4375 -0.5332,0.15039 -1.09375,0.15039 -1.77734,0 -2.78223,-1.06641 -0.99804,-1.0664 -0.99804,-2.95312 0,-1.88672 0.99804,-2.95313 1.00489,-1.0664 2.78223,-1.0664 0.55371,0 1.08008,0.14355 0.52637,0.14356 1.05957,0.44434 v 1.31933 q -0.49902,-0.44433 -1.00488,-0.64257 -0.49903,-0.19825 -1.13477,-0.19825 -1.18262,0 -1.81836,0.76563 -0.63574,0.76562 -0.63574,2.1875 0,1.41504 0.63574,2.1875 0.64258,0.76562 1.81836,0.76562 0.65625,0 1.17578,-0.19824 0.51953,-0.20508 0.96387,-0.6289 z"
+           style="fill:#d0d0d0"
+           id="path8891" />
+        <path
+           d="m 153.95982,143.57324 h 3.21973 v 6.65137 h 2.49512 v 0.97754 h -6.24805 v -0.97754 h 2.49512 v -5.67383 h -1.96192 z m 1.96192,-2.97363 h 1.25781 v 1.58594 h -1.25781 z"
+           style="fill:#d0d0d0"
+           id="path8893" />
+        <path
+           d="m 167.41302,146.45801 v 4.74414 h -1.26464 v -4.74414 q 0,-1.03223 -0.36231,-1.51758 -0.3623,-0.48535 -1.13476,-0.48535 -0.88184,0 -1.36036,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.25781 v -7.65625 h 1.25781 v 1.14844 q 0.33497,-0.65625 0.90918,-0.99122 0.57422,-0.34179 1.36036,-0.34179 1.16894,0 1.74316,0.77246 0.58105,0.76562 0.58105,2.32422 z"
+           style="fill:#d0d0d0"
+           id="path8895" />
+        <path
+           d="m 181.82668,147.2373 v 2.9668 q 0.75195,-0.0205 1.17578,-0.41699 0.42382,-0.39649 0.42382,-1.08008 0,-0.63574 -0.38281,-0.98437 -0.38281,-0.35547 -1.21679,-0.48536 z m -0.6836,-1.29882 v -2.82325 q -0.71094,0.0274 -1.11426,0.41016 -0.39648,0.38281 -0.39648,1.02539 0,0.58789 0.36914,0.92969 0.37598,0.3418 1.1416,0.45801 z m 0.6836,7.32129 h -0.6836 l -0.007,-2.05762 q -0.69727,-0.0342 -1.3877,-0.19141 -0.68359,-0.15722 -1.35352,-0.4375 v -1.23047 q 0.6836,0.42383 1.37403,0.64942 0.69726,0.22558 1.37402,0.23926 v -3.13086 q -1.36719,-0.21192 -2.05762,-0.83399 -0.69043,-0.62207 -0.69043,-1.64746 0,-1.07324 0.71778,-1.70898 0.72461,-0.64258 2.03027,-0.73829 v -1.60644 h 0.6836 l 0.007,1.60644 q 0.54004,0.0342 1.09375,0.13672 0.55371,0.10254 1.12793,0.28028 v 1.18261 q -0.58105,-0.29394 -1.13476,-0.45117 -0.54688,-0.16406 -1.09375,-0.1914 v 2.94629 q 1.4082,0.21191 2.14648,0.875 0.73828,0.66308 0.73828,1.71582 0,1.05273 -0.7998,1.75683 -0.79297,0.7041 -2.07813,0.76563 z"
+           style="fill:#d0d0d0"
+           id="path8897" />
+        <path
+           d="m 187.38089,150.04687 h 2.14648 v -7.71093 l -2.57031,1.2373 v -1.32617 l 2.55664,-1.2168 h 1.38086 v 9.0166 h 2.11914 v 1.15528 h -5.63281 z"
+           style="fill:#d0d0d0"
+           id="path8899" />
+        <path
+           d="m 205.42444,148.73437 h 2.13281 v 1.81153 l -1.34668,2.61133 h -1.46289 l 0.67676,-2.61133 z m -0.0889,-5.18164 h 2.13281 v 2.46778 h -2.13281 z"
+           style="fill:#d0d0d0"
+           id="path8901" />
+        <path
+           d="m 225.13596,144.52344 v -3.95801 h 1.25781 v 10.63672 h -1.25781 v -0.96387 q -0.31446,0.56738 -0.84082,0.86817 -0.51954,0.29394 -1.20313,0.29394 -1.38769,0 -2.1875,-1.07324 -0.79297,-1.08008 -0.79297,-2.97363 0,-1.86622 0.79981,-2.92579 0.7998,-1.0664 2.18066,-1.0664 0.69043,0 1.2168,0.30078 0.52636,0.29394 0.82715,0.86133 z m -3.69825,2.85742 q 0,1.46289 0.46485,2.20801 0.46484,0.74511 1.37402,0.74511 0.90918,0 1.38086,-0.75195 0.47852,-0.75195 0.47852,-2.20117 0,-1.45606 -0.47852,-2.20117 -0.47168,-0.75196 -1.38086,-0.75196 -0.90918,0 -1.37402,0.74512 -0.46485,0.74512 -0.46485,2.20801 z"
+           style="fill:#d0d0d0"
+           id="path8903" />
+        <path
+           d="m 231.91042,144.42773 q -0.95704,0 -1.44922,0.74512 -0.49219,0.74512 -0.49219,2.20801 0,1.45605 0.49219,2.20801 0.49218,0.74511 1.44922,0.74511 0.96386,0 1.45605,-0.74511 0.49219,-0.75196 0.49219,-2.20801 0,-1.46289 -0.49219,-2.20801 -0.49219,-0.74512 -1.45605,-0.74512 z m 0,-1.0664 q 1.59277,0 2.43359,1.03222 0.84766,1.03223 0.84766,2.98731 0,1.96191 -0.84082,2.99414 -0.84082,1.02539 -2.44043,1.02539 -1.59278,0 -2.4336,-1.02539 -0.84082,-1.03223 -0.84082,-2.99414 0,-1.95508 0.84082,-2.98731 0.84082,-1.03222 2.4336,-1.03222 z"
+           style="fill:#d0d0d0"
+           id="path8905" />
+        <path
+           d="m 1.8457031,169.64198 h 2.1464844 v -7.71093 l -2.5703125,1.2373 v -1.32617 l 2.5566406,-1.2168 H 5.359375 v 9.0166 h 2.1191406 v 1.15528 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path8907" />
+        <path
+           d="m 10.274482,169.64198 h 2.146484 v -7.71093 l -2.5703124,1.2373 v -1.32617 l 2.5566404,-1.2168 h 1.38086 v 9.0166 h 2.11914 v 1.15528 h -5.632812 z"
+           style="fill:#4e4e4e"
+           id="path8909" />
+        <path
+           d="m 21.078701,160.44081 q 1.633789,0 2.467773,1.33301 0.840821,1.33301 0.840821,3.94433 0,2.61133 -0.840821,3.94434 -0.833984,1.33301 -2.467773,1.33301 -1.633789,0 -2.467773,-1.33301 -0.833985,-1.33301 -0.833985,-3.94434 0,-2.61132 0.833985,-3.94433 0.833984,-1.33301 2.467773,-1.33301 z m 0,9.46094 q 0.970703,0 1.442383,-1.03223 0.478515,-1.03222 0.478515,-3.15137 0,-1.12792 -0.136718,-2.0371 l -3.253907,5.09277 q 0.512696,1.12793 1.469727,1.12793 z m 0,-8.36719 q -0.963867,0 -1.442383,1.03223 -0.471679,1.03222 -0.471679,3.15136 0,0.96387 0.129882,1.80469 l 3.185547,-5.0791 q -0.519531,-0.90918 -1.401367,-0.90918 z"
+           style="fill:#4e4e4e"
+           id="path8911" />
+        <path
+           d="m 108.4493,170.40761 q -0.50586,0.29394 -1.0459,0.4375 -0.5332,0.15039 -1.09375,0.15039 -1.77734,0 -2.78222,-1.06641 -0.99805,-1.0664 -0.99805,-2.95312 0,-1.88672 0.99805,-2.95313 1.00488,-1.0664 2.78222,-1.0664 0.55372,0 1.08008,0.14355 0.52637,0.14356 1.05957,0.44434 v 1.31933 q -0.49902,-0.44433 -1.00488,-0.64258 -0.49902,-0.19824 -1.13477,-0.19824 -1.18261,0 -1.81836,0.76563 -0.63574,0.76562 -0.63574,2.1875 0,1.41504 0.63574,2.1875 0.64258,0.76562 1.81836,0.76562 0.65625,0 1.17579,-0.19824 0.51953,-0.20508 0.96386,-0.62891 z"
+           style="fill:#d0d0d0"
+           id="path8913" />
+        <path
+           d="m 114.43419,166.94862 h -0.41699 q -1.10059,0 -1.66114,0.38965 -0.55371,0.38281 -0.55371,1.14844 0,0.69043 0.417,1.07324 0.41699,0.38281 1.15527,0.38281 1.03906,0 1.63379,-0.71777 0.59472,-0.72461 0.60156,-1.99609 v -0.28028 z m 2.44043,-0.51953 v 4.36817 h -1.26465 v -1.13477 q -0.40332,0.68359 -1.01855,1.01172 -0.6084,0.32129 -1.4834,0.32129 -1.16895,0 -1.86621,-0.65625 -0.69727,-0.66309 -0.69727,-1.77051 0,-1.27832 0.85449,-1.94141 0.86133,-0.66308 2.52246,-0.66308 h 1.68848 v -0.19824 q -0.007,-0.91602 -0.46484,-1.32618 -0.45801,-0.41699 -1.46289,-0.41699 -0.64258,0 -1.29883,0.18457 -0.65625,0.18457 -1.27832,0.54004 v -1.25781 q 0.69726,-0.2666 1.33301,-0.39649 0.64257,-0.13671 1.24414,-0.13671 0.95019,0 1.62011,0.28027 0.67676,0.28027 1.09375,0.84082 0.25977,0.3418 0.36914,0.84766 0.10938,0.49902 0.10938,1.5039 z"
+           style="fill:#d0d0d0"
+           id="path8915" />
+        <path
+           d="m 124.71551,163.40761 v 1.23047 q -0.54004,-0.31446 -1.08692,-0.47168 -0.54687,-0.15723 -1.11425,-0.15723 -0.8545,0 -1.27832,0.28027 -0.417,0.27344 -0.417,0.84082 0,0.5127 0.31446,0.76563 0.31445,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93652,0.17773 1.41503,0.71094 0.48536,0.5332 0.48536,1.38769 0,1.13477 -0.80664,1.77735 -0.80665,0.63574 -2.24219,0.63574 -0.56738,0 -1.18946,-0.12305 -0.62207,-0.11621 -1.34667,-0.35547 v -1.29883 q 0.7041,0.36231 1.34667,0.54688 0.64258,0.17773 1.2168,0.17773 0.83399,0 1.29199,-0.33496 0.45801,-0.34179 0.45801,-0.95019 0,-0.875 -1.6748,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08691,-0.21191 -1.58594,-0.71094 -0.49902,-0.50585 -0.49902,-1.37402 0,-1.10058 0.74512,-1.69531 0.74511,-0.60156 2.12597,-0.60156 0.61524,0 1.18262,0.11621 0.56738,0.10937 1.11426,0.33496 z"
+           style="fill:#d0d0d0"
+           id="path8917" />
+        <path
+           d="m 134.15938,166.34023 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56542 0.59472,2.24902 0.65625,0.68359 1.84571,0.68359 0.60156,0 1.25781,-0.1914 0.65625,-0.19141 1.40137,-0.58106 v 1.25098 q -0.71778,0.29394 -1.3877,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.06641 -1.00488,-1.07324 -1.00488,-2.95312 0,-1.83203 0.98437,-2.92578 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99121 0.90235,2.39258 z m -1.25781,-0.36915 q -0.082,-0.79296 -0.58106,-1.36718 -0.49219,-0.58106 -1.42187,-0.58106 -0.90918,0 -1.49707,0.60156 -0.5879,0.60157 -0.64258,1.35352 z"
+           style="fill:#d0d0d0"
+           id="path8919" />
+        <path
+           d="m 148.10136,166.83241 v 2.9668 q 0.75196,-0.0205 1.17579,-0.41699 0.42382,-0.39649 0.42382,-1.08008 0,-0.63574 -0.38281,-0.98438 -0.38281,-0.35546 -1.2168,-0.48535 z m -0.68359,-1.29883 v -2.82324 q -0.71094,0.0273 -1.11426,0.41016 -0.39648,0.38281 -0.39648,1.02539 0,0.58789 0.36914,0.92969 0.37598,0.34179 1.1416,0.458 z m 0.68359,7.32129 h -0.68359 l -0.007,-2.05761 q -0.69726,-0.0342 -1.38769,-0.19141 -0.68359,-0.15723 -1.35352,-0.4375 v -1.23047 q 0.6836,0.42383 1.37403,0.64942 0.69726,0.22558 1.37402,0.23925 v -3.13086 q -1.36719,-0.21191 -2.05762,-0.83398 -0.69043,-0.62207 -0.69043,-1.64746 0,-1.07324 0.71778,-1.70899 0.72461,-0.64257 2.03027,-0.73828 v -1.60644 h 0.68359 l 0.007,1.60644 q 0.54004,0.0342 1.09375,0.13672 0.55371,0.10254 1.12793,0.28028 v 1.18261 q -0.58105,-0.29394 -1.13477,-0.45117 -0.54687,-0.16406 -1.09375,-0.19141 v 2.94629 q 1.40821,0.21192 2.14649,0.875 0.73828,0.66309 0.73828,1.71582 0,1.05274 -0.7998,1.75684 -0.79297,0.7041 -2.07813,0.76562 z"
+           style="fill:#d0d0d0"
+           id="path8921" />
+        <path
+           d="m 157.6649,164.11855 v -3.95801 h 1.25781 v 10.63672 h -1.25781 v -0.96387 q -0.31445,0.56738 -0.84082,0.86816 -0.51953,0.29395 -1.20312,0.29395 -1.3877,0 -2.1875,-1.07324 -0.79297,-1.08008 -0.79297,-2.97364 0,-1.86621 0.7998,-2.92578 0.79981,-1.0664 2.18067,-1.0664 0.69043,0 1.21679,0.30078 0.52637,0.29394 0.82715,0.86133 z m -3.69824,2.85742 q 0,1.46289 0.46484,2.20801 0.46485,0.74511 1.37403,0.74511 0.90918,0 1.38086,-0.75195 0.47851,-0.75195 0.47851,-2.20117 0,-1.45606 -0.47851,-2.20117 -0.47168,-0.75196 -1.38086,-0.75196 -0.90918,0 -1.37403,0.74512 -0.46484,0.74512 -0.46484,2.20801 z"
+           style="fill:#d0d0d0"
+           id="path8923" />
+        <path
+           d="m 167.8847,166.34023 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56542 0.59473,2.24902 0.65625,0.68359 1.8457,0.68359 0.60156,0 1.25781,-0.1914 0.65625,-0.19141 1.40137,-0.58106 v 1.25098 q -0.71777,0.29394 -1.38769,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.06641 -1.00489,-1.07324 -1.00489,-2.95312 0,-1.83203 0.98438,-2.92578 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99121 0.90234,2.39258 z m -1.25781,-0.36915 q -0.082,-0.79296 -0.58105,-1.36718 -0.49219,-0.58106 -1.42188,-0.58106 -0.90918,0 -1.49707,0.60156 -0.58789,0.60157 -0.64258,1.35352 z"
+           style="fill:#d0d0d0"
+           id="path8925" />
+        <path
+           d="m 175.92035,170.40761 q -0.50586,0.29394 -1.0459,0.4375 -0.5332,0.15039 -1.09375,0.15039 -1.77734,0 -2.78223,-1.06641 -0.99804,-1.0664 -0.99804,-2.95312 0,-1.88672 0.99804,-2.95313 1.00489,-1.0664 2.78223,-1.0664 0.55371,0 1.08008,0.14355 0.52637,0.14356 1.05957,0.44434 v 1.31933 q -0.49902,-0.44433 -1.00488,-0.64258 -0.49903,-0.19824 -1.13477,-0.19824 -1.18262,0 -1.81836,0.76563 -0.63574,0.76562 -0.63574,2.1875 0,1.41504 0.63574,2.1875 0.64258,0.76562 1.81836,0.76562 0.65625,0 1.17578,-0.19824 0.51953,-0.20508 0.96387,-0.62891 z"
+           style="fill:#d0d0d0"
+           id="path8927" />
+        <path
+           d="m 187.69534,163.16835 h 3.21973 v 6.65137 h 2.49512 v 0.97754 h -6.24805 v -0.97754 h 2.49512 v -5.67383 h -1.96192 z m 1.96192,-2.97363 h 1.25781 v 1.58593 h -1.25781 z"
+           style="fill:#d0d0d0"
+           id="path8929" />
+        <path
+           d="m 201.14853,166.05312 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03223 -0.3623,-1.51758 -0.36231,-0.48535 -1.13477,-0.48535 -0.88184,0 -1.36035,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.25781 v -7.65625 h 1.25781 v 1.14843 q 0.33496,-0.65625 0.90918,-0.99121 0.57422,-0.34179 1.36035,-0.34179 1.16895,0 1.74316,0.77246 0.58106,0.76562 0.58106,2.32422 z"
+           style="fill:#d0d0d0"
+           id="path8931" />
+        <path
+           d="m 1.8457031,189.24316 h 2.1464844 v -7.71093 l -2.5703125,1.2373 v -1.32617 l 2.5566406,-1.2168 H 5.359375 v 9.0166 h 2.1191406 v 1.15528 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path8933" />
+        <path
+           d="m 10.274482,189.24316 h 2.146484 v -7.71093 l -2.5703124,1.2373 v -1.32617 l 2.5566404,-1.2168 h 1.38086 v 9.0166 h 2.11914 v 1.15528 h -5.632812 z"
+           style="fill:#4e4e4e"
+           id="path8935" />
+        <path
+           d="m 18.713467,189.24316 h 2.146484 v -7.71093 l -2.570312,1.2373 v -1.32617 l 2.55664,-1.2168 h 1.38086 v 9.0166 h 2.11914 v 1.15528 h -5.632812 z"
+           style="fill:#4e4e4e"
+           id="path8937" />
+        <path
+           d="m 120.61395,189.23633 h 4.68945 v 1.16211 h -6.2002 v -1.16211 q 1.27832,-1.34668 2.23535,-2.37891 0.95704,-1.03222 1.31934,-1.45605 0.68359,-0.83399 0.92285,-1.34668 0.23926,-0.51953 0.23926,-1.05957 0,-0.8545 -0.50586,-1.33985 -0.49902,-0.48535 -1.37402,-0.48535 -0.62207,0 -1.30567,0.22559 -0.68359,0.22558 -1.44922,0.68359 v -1.39453 q 0.70411,-0.33496 1.38086,-0.50586 0.6836,-0.1709 1.34668,-0.1709 1.49707,0 2.40625,0.79981 0.91602,0.79297 0.91602,2.08496 0,0.65625 -0.30762,1.3125 -0.30078,0.65625 -0.98437,1.44922 -0.38282,0.44433 -1.11426,1.23047 -0.72461,0.78613 -2.21484,2.35156 z"
+           style="fill:#d0d0d0"
+           id="path8939" />
+        <path
+           d="m 127.91817,180.19238 h 5.16797 v 1.16211 h -3.91016 v 2.50879 q 0.29394,-0.10937 0.58789,-0.15723 0.30078,-0.0547 0.60156,-0.0547 1.58594,0 2.51563,0.93652 0.92969,0.93652 0.92969,2.53613 0,1.61328 -0.97754,2.54297 -0.97071,0.92969 -2.65918,0.92969 -0.81348,0 -1.49024,-0.10938 -0.66992,-0.10937 -1.20312,-0.32812 v -1.40137 q 0.6289,0.3418 1.26465,0.5127 0.63574,0.16406 1.29882,0.16406 1.14161,0 1.75684,-0.60156 0.62207,-0.60156 0.62207,-1.70899 0,-1.09375 -0.64258,-1.70215 -0.63574,-0.60839 -1.77734,-0.60839 -0.55371,0 -1.08008,0.12988 -0.52637,0.12305 -1.00488,0.37598 z"
+           style="fill:#d0d0d0"
+           id="path8941" />
+        <path
+           d="m 136.34694,180.19238 h 5.16797 v 1.16211 h -3.91016 v 2.50879 q 0.29395,-0.10937 0.58789,-0.15723 0.30078,-0.0547 0.60156,-0.0547 1.58594,0 2.51563,0.93652 0.92969,0.93652 0.92969,2.53613 0,1.61328 -0.97754,2.54297 -0.9707,0.92969 -2.65918,0.92969 -0.81348,0 -1.49024,-0.10938 -0.66992,-0.10937 -1.20312,-0.32812 v -1.40137 q 0.62891,0.3418 1.26465,0.5127 0.63574,0.16406 1.29883,0.16406 1.1416,0 1.75683,-0.60156 0.62207,-0.60156 0.62207,-1.70899 0,-1.09375 -0.64258,-1.70215 -0.63574,-0.60839 -1.77734,-0.60839 -0.55371,0 -1.08008,0.12988 -0.52637,0.12305 -1.00488,0.37598 z"
+           style="fill:#d0d0d0"
+           id="path8943" />
+        <path
+           d="m 145.7498,179.0918 h 1.09375 q 1.03223,1.61328 1.53809,3.1582 0.50586,1.54492 0.50586,3.06934 0,1.53808 -0.50586,3.083 -0.50586,1.54493 -1.53809,3.15821 h -1.09375 q 0.90918,-1.58594 1.35352,-3.1377 0.45117,-1.55176 0.45117,-3.10351 0,-1.5586 -0.45117,-3.11036 -0.44434,-1.55175 -1.35352,-3.11718 z"
+           style="fill:#d0d0d0"
+           id="path8945" />
+        <path
+           d="m 167.41302,185.6543 v 4.74414 h -1.26464 v -4.74414 q 0,-1.03223 -0.36231,-1.51758 -0.3623,-0.48535 -1.13476,-0.48535 -0.88184,0 -1.36036,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.25781 v -7.65625 h 1.25781 v 1.14843 q 0.33497,-0.65625 0.90918,-0.99121 0.57422,-0.34179 1.36036,-0.34179 1.16894,0 1.74316,0.77246 0.58105,0.76562 0.58105,2.32422 z"
+           style="fill:#d0d0d0"
+           id="path8947" />
+        <path
+           d="m 174.94281,186.57715 q 0,-1.46289 -0.46484,-2.20801 -0.46485,-0.74512 -1.37403,-0.74512 -0.91601,0 -1.38769,0.75196 -0.47168,0.74511 -0.47168,2.20117 0,1.44922 0.47168,2.20117 0.47168,0.75195 1.38769,0.75195 0.90918,0 1.37403,-0.74511 0.46484,-0.74512 0.46484,-2.20801 z m -3.69824,-2.85742 q 0.30078,-0.56055 0.82715,-0.86133 0.5332,-0.30078 1.23047,-0.30078 1.38085,0 2.17382,1.0664 0.79297,1.05957 0.79297,2.92578 0,1.89356 -0.7998,2.97364 -0.79297,1.07324 -2.18067,1.07324 -0.68359,0 -1.20996,-0.29395 -0.51953,-0.30078 -0.83398,-0.86816 v 0.96387 h -1.25781 v -10.63672 h 1.25781 z"
+           style="fill:#d0d0d0"
+           id="path8949" />
+        <path
+           d="m 179.25636,182.76953 h 3.21973 v 6.65137 h 2.49512 v 0.97754 h -6.24805 v -0.97754 h 2.49512 v -5.67383 h -1.96192 z m 1.96192,-2.97363 h 1.25781 v 1.58594 h -1.25781 z"
+           style="fill:#d0d0d0"
+           id="path8951" />
+        <path
+           d="m 189.73245,180.56836 v 2.17383 h 2.85742 v 0.97754 h -2.85742 v 4.15625 q 0,0.84765 0.32129,1.18261 0.32129,0.33496 1.1211,0.33496 h 1.41503 v 1.00489 h -1.53808 q -1.41504,0 -1.9961,-0.56739 -0.58105,-0.56738 -0.58105,-1.95507 v -4.15625 h -2.04395 v -0.97754 h 2.04395 v -2.17383 z"
+           style="fill:#d0d0d0"
+           id="path8953" />
+        <path
+           d="m 200.61533,183.00879 v 1.23047 q -0.54004,-0.31446 -1.08692,-0.47168 -0.54687,-0.15723 -1.11426,-0.15723 -0.85449,0 -1.27832,0.28027 -0.41699,0.27344 -0.41699,0.84083 0,0.51269 0.31445,0.76562 0.31446,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93653,0.17774 1.41504,0.71094 0.48535,0.5332 0.48535,1.38769 0,1.13477 -0.80664,1.77735 -0.80664,0.63574 -2.24218,0.63574 -0.56739,0 -1.18946,-0.12305 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29882 q 0.7041,0.3623 1.34668,0.54687 0.64258,0.17774 1.2168,0.17774 0.83398,0 1.29199,-0.33497 0.45801,-0.34179 0.45801,-0.95019 0,-0.875 -1.6748,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08692,-0.21191 -1.58594,-0.71093 -0.49902,-0.50586 -0.49902,-1.37403 0,-1.10058 0.74511,-1.69531 0.74512,-0.60156 2.12598,-0.60156 0.61524,0 1.18262,0.11621 0.56738,0.10937 1.11426,0.33496 z"
+           style="fill:#d0d0d0"
+           id="path8955" />
+        <path
+           d="m 203.00452,186.98047 h 7.22558 v 1.15527 h -7.22558 z m 0,-3.21973 h 7.22558 v 1.15528 h -7.22558 z"
+           style="fill:#d0d0d0"
+           id="path8957" />
+        <path
+           d="m 215.56219,186.43359 v 2.9668 q 0.75196,-0.0205 1.17579,-0.41699 0.42382,-0.39649 0.42382,-1.08008 0,-0.63574 -0.38281,-0.98437 -0.38281,-0.35547 -1.2168,-0.48536 z m -0.68359,-1.29882 v -2.82325 q -0.71094,0.0273 -1.11426,0.41016 -0.39648,0.38281 -0.39648,1.02539 0,0.58789 0.36914,0.92969 0.37598,0.34179 1.1416,0.45801 z m 0.68359,7.32128 h -0.68359 l -0.007,-2.05761 q -0.69727,-0.0342 -1.3877,-0.19141 -0.68359,-0.15723 -1.35352,-0.4375 v -1.23047 q 0.6836,0.42383 1.37403,0.64942 0.69726,0.22558 1.37402,0.23925 v -3.13086 q -1.36719,-0.21191 -2.05762,-0.83398 -0.69043,-0.62207 -0.69043,-1.64746 0,-1.07324 0.71778,-1.70898 0.72461,-0.64258 2.03027,-0.73829 v -1.60644 h 0.68359 l 0.007,1.60644 q 0.54004,0.0342 1.09375,0.13672 0.55371,0.10254 1.12793,0.28028 v 1.18261 q -0.58105,-0.29394 -1.13477,-0.45117 -0.54687,-0.16406 -1.09375,-0.1914 v 2.94628 q 1.40821,0.21192 2.14649,0.875 0.73828,0.66309 0.73828,1.71582 0,1.05274 -0.7998,1.75684 -0.79297,0.7041 -2.07813,0.76563 z"
+           style="fill:#d0d0d0"
+           id="path8959" />
+        <path
+           d="m 225.11545,179.0918 q -0.90918,1.55859 -1.36035,3.11035 -0.44434,1.54492 -0.44434,3.11719 0,1.56543 0.44434,3.11718 0.45117,1.55176 1.36035,3.12403 h -1.09375 q -1.03223,-1.62696 -1.53809,-3.16504 -0.50586,-1.54492 -0.50586,-3.07617 0,-1.52442 0.50586,-3.06934 0.50586,-1.54492 1.53809,-3.1582 z"
+           style="fill:#d0d0d0"
+           id="path8961" />
+        <path
+           d="m 233.5442,179.0918 q -0.90917,1.55859 -1.36035,3.11035 -0.44433,1.54492 -0.44433,3.11719 0,1.56543 0.44433,3.11718 0.45118,1.55176 1.36035,3.12403 h -1.09375 q -1.03222,-1.62696 -1.53808,-3.16504 -0.50586,-1.54492 -0.50586,-3.07617 0,-1.52442 0.50586,-3.06934 0.50586,-1.54492 1.53808,-3.1582 z"
+           style="fill:#d0d0d0"
+           id="path8963" />
+        <path
+           d="m 243.31285,185.6543 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03223 -0.3623,-1.51758 -0.36231,-0.48535 -1.13477,-0.48535 -0.88183,0 -1.36035,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.25781 v -7.65625 h 1.25781 v 1.14843 q 0.33496,-0.65625 0.90918,-0.99121 0.57422,-0.34179 1.36035,-0.34179 1.16895,0 1.74317,0.77246 0.58105,0.76562 0.58105,2.32422 z"
+           style="fill:#d0d0d0"
+           id="path8965" />
+        <path
+           d="m 250.84265,186.57715 q 0,-1.46289 -0.46484,-2.20801 -0.46485,-0.74512 -1.37403,-0.74512 -0.91601,0 -1.38769,0.75196 -0.47168,0.74511 -0.47168,2.20117 0,1.44922 0.47168,2.20117 0.47168,0.75195 1.38769,0.75195 0.90918,0 1.37403,-0.74511 0.46484,-0.74512 0.46484,-2.20801 z m -3.69824,-2.85742 q 0.30078,-0.56055 0.82715,-0.86133 0.5332,-0.30078 1.23047,-0.30078 1.38086,0 2.17382,1.0664 0.79297,1.05957 0.79297,2.92578 0,1.89356 -0.7998,2.97364 -0.79297,1.07324 -2.18067,1.07324 -0.68359,0 -1.20996,-0.29395 -0.51953,-0.30078 -0.83398,-0.86816 v 0.96387 h -1.25781 v -10.63672 h 1.25781 z"
+           style="fill:#d0d0d0"
+           id="path8967" />
+        <path
+           d="m 255.15619,182.76953 h 3.21973 v 6.65137 h 2.49511 v 0.97754 h -6.24804 v -0.97754 h 2.49511 v -5.67383 h -1.96191 z m 1.96191,-2.97363 h 1.25782 v 1.58594 h -1.25782 z"
+           style="fill:#d0d0d0"
+           id="path8969" />
+        <path
+           d="m 265.63229,180.56836 v 2.17383 h 2.85743 v 0.97754 h -2.85743 v 4.15625 q 0,0.84765 0.32129,1.18261 0.32129,0.33496 1.1211,0.33496 h 1.41504 v 1.00489 h -1.53809 q -1.41504,0 -1.99609,-0.56739 -0.58106,-0.56738 -0.58106,-1.95507 v -4.15625 h -2.04394 v -0.97754 h 2.04394 v -2.17383 z"
+           style="fill:#d0d0d0"
+           id="path8971" />
+        <path
+           d="m 276.51517,183.00879 v 1.23047 q -0.54004,-0.31446 -1.08692,-0.47168 -0.54687,-0.15723 -1.11425,-0.15723 -0.8545,0 -1.27832,0.28027 -0.417,0.27344 -0.417,0.84083 0,0.51269 0.31446,0.76562 0.31445,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93652,0.17774 1.41503,0.71094 0.48536,0.5332 0.48536,1.38769 0,1.13477 -0.80664,1.77735 -0.80665,0.63574 -2.24219,0.63574 -0.56739,0 -1.18946,-0.12305 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29882 q 0.70411,0.3623 1.34668,0.54687 0.64258,0.17774 1.2168,0.17774 0.83399,0 1.29199,-0.33497 0.45801,-0.34179 0.45801,-0.95019 0,-0.875 -1.6748,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08691,-0.21191 -1.58594,-0.71093 -0.49902,-0.50586 -0.49902,-1.37403 0,-1.10058 0.74512,-1.69531 0.74511,-0.60156 2.12597,-0.60156 0.61524,0 1.18262,0.11621 0.56738,0.10937 1.11426,0.33496 z"
+           style="fill:#d0d0d0"
+           id="path8973" />
+        <path
+           d="m 283.22467,182.3457 v 3.02832 h 3.04199 v 1.15528 h -3.04199 v 3.02832 h -1.14844 v -3.02832 h -3.03515 v -1.15528 h 3.03515 v -3.02832 z"
+           style="fill:#d0d0d0"
+           id="path8975" />
+        <path
+           d="m 290.9425,185.55176 q -0.92285,0 -1.42871,0.51953 -0.49902,0.51269 -0.49902,1.45605 0,0.94336 0.50586,1.46973 0.5127,0.51953 1.42187,0.51953 0.92969,0 1.42872,-0.51269 0.50586,-0.51954 0.50586,-1.47657 0,-0.93652 -0.5127,-1.45605 -0.50586,-0.51953 -1.42188,-0.51953 z m -1.20312,-0.57422 q -0.88184,-0.22559 -1.38086,-0.84082 -0.49219,-0.61524 -0.49219,-1.4834 0,-1.2168 0.82715,-1.92773 0.82715,-0.71778 2.24902,-0.71778 1.42872,0 2.25586,0.71778 0.82715,0.71093 0.82715,1.92773 0,0.86816 -0.49902,1.4834 -0.49219,0.61523 -1.37402,0.84082 1.02539,0.22558 1.56543,0.90918 0.54687,0.68359 0.54687,1.77051 0,1.38086 -0.88184,2.16015 -0.88183,0.7793 -2.44043,0.7793 -1.55859,0 -2.44042,-0.77246 -0.875,-0.7793 -0.875,-2.15332 0,-1.09375 0.54003,-1.77735 0.54688,-0.69043 1.57227,-0.91601 z m -0.49902,-2.19434 q 0,0.82032 0.4375,1.25098 0.4375,0.43066 1.26464,0.43066 0.83399,0 1.27149,-0.43066 0.4375,-0.43066 0.4375,-1.25098 0,-0.83398 -0.4375,-1.27148 -0.43066,-0.4375 -1.27149,-0.4375 -0.82714,0 -1.26464,0.44433 -0.4375,0.4375 -0.4375,1.26465 z"
+           style="fill:#d0d0d0"
+           id="path8977" />
+        <path
+           d="m 297.54947,179.0918 h 1.09375 q 1.03223,1.61328 1.53808,3.1582 0.50586,1.54492 0.50586,3.06934 0,1.53808 -0.50586,3.083 -0.50585,1.54493 -1.53808,3.15821 h -1.09375 q 0.90918,-1.58594 1.35351,-3.1377 0.45118,-1.55176 0.45118,-3.10351 0,-1.5586 -0.45118,-3.11036 -0.44433,-1.55175 -1.35351,-3.11718 z"
+           style="fill:#d0d0d0"
+           id="path8979" />
+        <path
+           d="m 305.97824,179.0918 h 1.09375 q 1.03223,1.61328 1.53809,3.1582 0.50586,1.54492 0.50586,3.06934 0,1.53808 -0.50586,3.083 -0.50586,1.54493 -1.53809,3.15821 h -1.09375 q 0.90918,-1.58594 1.35352,-3.1377 0.45117,-1.55176 0.45117,-3.10351 0,-1.5586 -0.45117,-3.11036 -0.44434,-1.55175 -1.35352,-3.11718 z"
+           style="fill:#d0d0d0"
+           id="path8981" />
+        <path
+           d="m 315.05981,187.93066 h 2.13282 v 1.81153 l -1.34668,2.61133 h -1.46289 l 0.67675,-2.61133 z m -0.0889,-5.18164 h 2.13281 v 2.46778 h -2.13281 z"
+           style="fill:#d0d0d0"
+           id="path8983" />
+        <path
+           d="m 323.48859,187.93066 h 2.13281 v 1.81153 l -1.34668,2.61133 h -1.46289 l 0.67676,-2.61133 z m -0.0889,-5.18164 h 2.13281 v 2.46778 h -2.13281 z"
+           style="fill:#d0d0d0"
+           id="path8985" />
+        <path
+           d="m 1.8457031,208.84431 h 2.1464844 v -7.71093 l -2.5703125,1.2373 v -1.32617 l 2.5566406,-1.2168 H 5.359375 v 9.0166 h 2.1191406 v 1.15528 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path8987" />
+        <path
+           d="m 10.274482,208.84431 h 2.146484 v -7.71093 l -2.5703124,1.2373 v -1.32617 l 2.5566404,-1.2168 h 1.38086 v 9.0166 h 2.11914 v 1.15528 h -5.632812 z"
+           style="fill:#4e4e4e"
+           id="path8989" />
+        <path
+           d="m 19.417568,208.83748 h 4.689453 v 1.16211 h -6.200195 v -1.16211 q 1.27832,-1.34668 2.235352,-2.37891 0.957031,-1.03222 1.319336,-1.45605 0.683593,-0.83399 0.922851,-1.34668 0.239258,-0.51953 0.239258,-1.05957 0,-0.85449 -0.505859,-1.33985 -0.499024,-0.48535 -1.374024,-0.48535 -0.62207,0 -1.305664,0.22559 -0.683594,0.22558 -1.449219,0.68359 v -1.39453 q 0.704102,-0.33496 1.38086,-0.50586 0.683593,-0.1709 1.346679,-0.1709 1.497071,0 2.40625,0.79981 0.916016,0.79297 0.916016,2.08496 0,0.65625 -0.307617,1.3125 -0.300781,0.65625 -0.984375,1.44922 -0.382813,0.44433 -1.114258,1.23047 -0.724609,0.78613 -2.214844,2.35156 z"
+           style="fill:#4e4e4e"
+           id="path8991" />
+        <path
+           d="m 120.61395,208.83748 h 4.68945 v 1.16211 h -6.2002 v -1.16211 q 1.27832,-1.34668 2.23535,-2.37891 0.95704,-1.03222 1.31934,-1.45605 0.68359,-0.83399 0.92285,-1.34668 0.23926,-0.51953 0.23926,-1.05957 0,-0.85449 -0.50586,-1.33985 -0.49902,-0.48535 -1.37402,-0.48535 -0.62207,0 -1.30567,0.22559 -0.68359,0.22558 -1.44922,0.68359 v -1.39453 q 0.70411,-0.33496 1.38086,-0.50586 0.6836,-0.1709 1.34668,-0.1709 1.49707,0 2.40625,0.79981 0.91602,0.79297 0.91602,2.08496 0,0.65625 -0.30762,1.3125 -0.30078,0.65625 -0.98437,1.44922 -0.38282,0.44433 -1.11426,1.23047 -0.72461,0.78613 -2.21484,2.35156 z"
+           style="fill:#d0d0d0"
+           id="path8993" />
+        <path
+           d="m 127.91817,199.79353 h 5.16797 v 1.16211 h -3.91016 v 2.50879 q 0.29394,-0.10937 0.58789,-0.15722 0.30078,-0.0547 0.60156,-0.0547 1.58594,0 2.51563,0.93652 0.92969,0.93652 0.92969,2.53613 0,1.61329 -0.97754,2.54297 -0.97071,0.92969 -2.65918,0.92969 -0.81348,0 -1.49024,-0.10937 -0.66992,-0.10938 -1.20312,-0.32813 v -1.40137 q 0.6289,0.3418 1.26465,0.5127 0.63574,0.16406 1.29882,0.16406 1.14161,0 1.75684,-0.60156 0.62207,-0.60156 0.62207,-1.70899 0,-1.09375 -0.64258,-1.70214 -0.63574,-0.6084 -1.77734,-0.6084 -0.55371,0 -1.08008,0.12988 -0.52637,0.12305 -1.00488,0.37598 z"
+           style="fill:#d0d0d0"
+           id="path8995" />
+        <path
+           d="m 139.95631,201.05135 -3.21972,5.39355 h 3.21972 z m -0.22558,-1.25782 h 1.59961 v 6.65137 h 1.36035 v 1.12109 h -1.36035 v 2.4336 h -1.37403 v -2.4336 h -4.32714 v -1.30566 z"
+           style="fill:#d0d0d0"
+           id="path8997" />
+        <path
+           d="m 145.7498,198.69295 h 1.09375 q 1.03223,1.61328 1.53809,3.1582 0.50586,1.54492 0.50586,3.06934 0,1.53808 -0.50586,3.083 -0.50586,1.54493 -1.53809,3.15821 h -1.09375 q 0.90918,-1.58594 1.35352,-3.1377 0.45117,-1.55176 0.45117,-3.10351 0,-1.5586 -0.45117,-3.11036 -0.44434,-1.55175 -1.35352,-3.11718 z"
+           style="fill:#d0d0d0"
+           id="path8999" />
+        <path
+           d="m 167.41302,205.25545 v 4.74414 h -1.26464 v -4.74414 q 0,-1.03223 -0.36231,-1.51758 -0.3623,-0.48535 -1.13476,-0.48535 -0.88184,0 -1.36036,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.25781 v -7.65625 h 1.25781 v 1.14844 q 0.33497,-0.65625 0.90918,-0.99122 0.57422,-0.34179 1.36036,-0.34179 1.16894,0 1.74316,0.77246 0.58105,0.76562 0.58105,2.32422 z"
+           style="fill:#d0d0d0"
+           id="path9001" />
+        <path
+           d="m 174.94281,206.1783 q 0,-1.46289 -0.46484,-2.20801 -0.46485,-0.74512 -1.37403,-0.74512 -0.91601,0 -1.38769,0.75196 -0.47168,0.74511 -0.47168,2.20117 0,1.44922 0.47168,2.20117 0.47168,0.75195 1.38769,0.75195 0.90918,0 1.37403,-0.74511 0.46484,-0.74512 0.46484,-2.20801 z m -3.69824,-2.85742 q 0.30078,-0.56055 0.82715,-0.86133 0.5332,-0.30078 1.23047,-0.30078 1.38085,0 2.17382,1.0664 0.79297,1.05957 0.79297,2.92579 0,1.89355 -0.7998,2.97363 -0.79297,1.07324 -2.18067,1.07324 -0.68359,0 -1.20996,-0.29395 -0.51953,-0.30078 -0.83398,-0.86816 v 0.96387 h -1.25781 v -10.63672 h 1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9003" />
+        <path
+           d="m 179.25636,202.37068 h 3.21973 v 6.65137 h 2.49512 v 0.97754 h -6.24805 v -0.97754 h 2.49512 v -5.67383 h -1.96192 z m 1.96192,-2.97363 h 1.25781 v 1.58594 h -1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9005" />
+        <path
+           d="m 189.73245,200.16951 v 2.17383 h 2.85742 v 0.97754 h -2.85742 v 4.15625 q 0,0.84765 0.32129,1.18261 0.32129,0.33497 1.1211,0.33497 h 1.41503 v 1.00488 h -1.53808 q -1.41504,0 -1.9961,-0.56738 -0.58105,-0.56739 -0.58105,-1.95508 v -4.15625 h -2.04395 v -0.97754 h 2.04395 v -2.17383 z"
+           style="fill:#d0d0d0"
+           id="path9007" />
+        <path
+           d="m 200.61533,202.60994 v 1.23047 q -0.54004,-0.31445 -1.08692,-0.47168 -0.54687,-0.15723 -1.11426,-0.15723 -0.85449,0 -1.27832,0.28028 -0.41699,0.27343 -0.41699,0.84082 0,0.51269 0.31445,0.76562 0.31446,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93653,0.17774 1.41504,0.71094 0.48535,0.5332 0.48535,1.38769 0,1.13477 -0.80664,1.77735 -0.80664,0.63574 -2.24218,0.63574 -0.56739,0 -1.18946,-0.12305 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29882 q 0.7041,0.3623 1.34668,0.54687 0.64258,0.17774 1.2168,0.17774 0.83398,0 1.29199,-0.33497 0.45801,-0.34179 0.45801,-0.95019 0,-0.875 -1.6748,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08692,-0.21191 -1.58594,-0.71093 -0.49902,-0.50586 -0.49902,-1.37403 0,-1.10058 0.74511,-1.69531 0.74512,-0.60156 2.12598,-0.60156 0.61524,0 1.18262,0.11621 0.56738,0.10937 1.11426,0.33496 z"
+           style="fill:#d0d0d0"
+           id="path9009" />
+        <path
+           d="m 203.00452,206.58162 h 7.22558 v 1.15527 h -7.22558 z m 0,-3.21973 h 7.22558 v 1.15528 h -7.22558 z"
+           style="fill:#d0d0d0"
+           id="path9011" />
+        <path
+           d="m 215.56219,206.03474 v 2.9668 q 0.75196,-0.0205 1.17579,-0.41699 0.42382,-0.39649 0.42382,-1.08008 0,-0.63574 -0.38281,-0.98437 -0.38281,-0.35547 -1.2168,-0.48536 z m -0.68359,-1.29882 v -2.82325 q -0.71094,0.0274 -1.11426,0.41016 -0.39648,0.38281 -0.39648,1.02539 0,0.58789 0.36914,0.92969 0.37598,0.3418 1.1416,0.45801 z m 0.68359,7.32129 h -0.68359 l -0.007,-2.05762 q -0.69727,-0.0342 -1.3877,-0.19141 -0.68359,-0.15722 -1.35352,-0.4375 v -1.23047 q 0.6836,0.42383 1.37403,0.64942 0.69726,0.22558 1.37402,0.23925 v -3.13085 q -1.36719,-0.21192 -2.05762,-0.83399 -0.69043,-0.62207 -0.69043,-1.64746 0,-1.07324 0.71778,-1.70898 0.72461,-0.64258 2.03027,-0.73829 v -1.60644 h 0.68359 l 0.007,1.60644 q 0.54004,0.0342 1.09375,0.13672 0.55371,0.10254 1.12793,0.28028 v 1.18261 q -0.58105,-0.29394 -1.13477,-0.45117 -0.54687,-0.16406 -1.09375,-0.1914 v 2.94628 q 1.40821,0.21192 2.14649,0.875 0.73828,0.66309 0.73828,1.71583 0,1.05273 -0.7998,1.75683 -0.79297,0.7041 -2.07813,0.76563 z"
+           style="fill:#d0d0d0"
+           id="path9013" />
+        <path
+           d="m 225.11545,198.69295 q -0.90918,1.55859 -1.36035,3.11035 -0.44434,1.54492 -0.44434,3.11719 0,1.56543 0.44434,3.11718 0.45117,1.55176 1.36035,3.12403 h -1.09375 q -1.03223,-1.62696 -1.53809,-3.16504 -0.50586,-1.54492 -0.50586,-3.07617 0,-1.52442 0.50586,-3.06934 0.50586,-1.54492 1.53809,-3.1582 z"
+           style="fill:#d0d0d0"
+           id="path9015" />
+        <path
+           d="m 233.5442,198.69295 q -0.90917,1.55859 -1.36035,3.11035 -0.44433,1.54492 -0.44433,3.11719 0,1.56543 0.44433,3.11718 0.45118,1.55176 1.36035,3.12403 h -1.09375 q -1.03222,-1.62696 -1.53808,-3.16504 -0.50586,-1.54492 -0.50586,-3.07617 0,-1.52442 0.50586,-3.06934 0.50586,-1.54492 1.53808,-3.1582 z"
+           style="fill:#d0d0d0"
+           id="path9017" />
+        <path
+           d="m 243.31285,205.25545 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03223 -0.3623,-1.51758 -0.36231,-0.48535 -1.13477,-0.48535 -0.88183,0 -1.36035,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.25781 v -7.65625 h 1.25781 v 1.14844 q 0.33496,-0.65625 0.90918,-0.99122 0.57422,-0.34179 1.36035,-0.34179 1.16895,0 1.74317,0.77246 0.58105,0.76562 0.58105,2.32422 z"
+           style="fill:#d0d0d0"
+           id="path9019" />
+        <path
+           d="m 250.84265,206.1783 q 0,-1.46289 -0.46484,-2.20801 -0.46485,-0.74512 -1.37403,-0.74512 -0.91601,0 -1.38769,0.75196 -0.47168,0.74511 -0.47168,2.20117 0,1.44922 0.47168,2.20117 0.47168,0.75195 1.38769,0.75195 0.90918,0 1.37403,-0.74511 0.46484,-0.74512 0.46484,-2.20801 z m -3.69824,-2.85742 q 0.30078,-0.56055 0.82715,-0.86133 0.5332,-0.30078 1.23047,-0.30078 1.38086,0 2.17382,1.0664 0.79297,1.05957 0.79297,2.92579 0,1.89355 -0.7998,2.97363 -0.79297,1.07324 -2.18067,1.07324 -0.68359,0 -1.20996,-0.29395 -0.51953,-0.30078 -0.83398,-0.86816 v 0.96387 h -1.25781 v -10.63672 h 1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9021" />
+        <path
+           d="m 255.15619,202.37068 h 3.21973 v 6.65137 h 2.49511 v 0.97754 h -6.24804 v -0.97754 h 2.49511 v -5.67383 h -1.96191 z m 1.96191,-2.97363 h 1.25782 v 1.58594 h -1.25782 z"
+           style="fill:#d0d0d0"
+           id="path9023" />
+        <path
+           d="m 265.63229,200.16951 v 2.17383 h 2.85743 v 0.97754 h -2.85743 v 4.15625 q 0,0.84765 0.32129,1.18261 0.32129,0.33497 1.1211,0.33497 h 1.41504 v 1.00488 h -1.53809 q -1.41504,0 -1.99609,-0.56738 -0.58106,-0.56739 -0.58106,-1.95508 v -4.15625 h -2.04394 v -0.97754 h 2.04394 v -2.17383 z"
+           style="fill:#d0d0d0"
+           id="path9025" />
+        <path
+           d="m 276.51517,202.60994 v 1.23047 q -0.54004,-0.31445 -1.08692,-0.47168 -0.54687,-0.15723 -1.11425,-0.15723 -0.8545,0 -1.27832,0.28028 -0.417,0.27343 -0.417,0.84082 0,0.51269 0.31446,0.76562 0.31445,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93652,0.17774 1.41503,0.71094 0.48536,0.5332 0.48536,1.38769 0,1.13477 -0.80664,1.77735 -0.80665,0.63574 -2.24219,0.63574 -0.56739,0 -1.18946,-0.12305 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29882 q 0.70411,0.3623 1.34668,0.54687 0.64258,0.17774 1.2168,0.17774 0.83399,0 1.29199,-0.33497 0.45801,-0.34179 0.45801,-0.95019 0,-0.875 -1.6748,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08691,-0.21191 -1.58594,-0.71093 -0.49902,-0.50586 -0.49902,-1.37403 0,-1.10058 0.74512,-1.69531 0.74511,-0.60156 2.12597,-0.60156 0.61524,0 1.18262,0.11621 0.56738,0.10937 1.11426,0.33496 z"
+           style="fill:#d0d0d0"
+           id="path9027" />
+        <path
+           d="m 283.22467,201.94685 v 3.02832 h 3.04199 v 1.15528 h -3.04199 v 3.02832 h -1.14844 v -3.02832 h -3.03515 v -1.15528 h 3.03515 v -3.02832 z"
+           style="fill:#d0d0d0"
+           id="path9029" />
+        <path
+           d="m 287.68176,199.79353 h 6.42578 v 0.58789 l -3.65039,9.61817 h -1.44238 l 3.55469,-9.04395 h -4.8877 z"
+           style="fill:#d0d0d0"
+           id="path9031" />
+        <path
+           d="m 297.54947,198.69295 h 1.09375 q 1.03223,1.61328 1.53808,3.1582 0.50586,1.54492 0.50586,3.06934 0,1.53808 -0.50586,3.083 -0.50585,1.54493 -1.53808,3.15821 h -1.09375 q 0.90918,-1.58594 1.35351,-3.1377 0.45118,-1.55176 0.45118,-3.10351 0,-1.5586 -0.45118,-3.11036 -0.44433,-1.55175 -1.35351,-3.11718 z"
+           style="fill:#d0d0d0"
+           id="path9033" />
+        <path
+           d="m 305.97824,198.69295 h 1.09375 q 1.03223,1.61328 1.53809,3.1582 0.50586,1.54492 0.50586,3.06934 0,1.53808 -0.50586,3.083 -0.50586,1.54493 -1.53809,3.15821 h -1.09375 q 0.90918,-1.58594 1.35352,-3.1377 0.45117,-1.55176 0.45117,-3.10351 0,-1.5586 -0.45117,-3.11036 -0.44434,-1.55175 -1.35352,-3.11718 z"
+           style="fill:#d0d0d0"
+           id="path9035" />
+        <path
+           d="m 315.05981,207.53181 h 2.13282 v 1.81153 l -1.34668,2.61133 h -1.46289 l 0.67675,-2.61133 z m -0.0889,-5.18164 h 2.13281 v 2.46778 h -2.13281 z"
+           style="fill:#d0d0d0"
+           id="path9037" />
+        <path
+           d="m 323.48859,207.53181 h 2.13281 v 1.81153 l -1.34668,2.61133 h -1.46289 l 0.67676,-2.61133 z m -0.0889,-5.18164 h 2.13281 v 2.46778 h -2.13281 z"
+           style="fill:#d0d0d0"
+           id="path9039" />
+        <path
+           d="m 1.8457031,228.44551 h 2.1464844 v -7.71094 l -2.5703125,1.23731 v -1.32617 l 2.5566406,-1.2168 H 5.359375 v 9.0166 h 2.1191406 v 1.15527 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path9041" />
+        <path
+           d="m 10.274482,228.44551 h 2.146484 v -7.71094 l -2.5703124,1.23731 v -1.32617 l 2.5566404,-1.2168 h 1.38086 v 9.0166 h 2.11914 v 1.15527 h -5.632812 z"
+           style="fill:#4e4e4e"
+           id="path9043" />
+        <path
+           d="m 22.172451,224.13887 q 1.004883,0.2666 1.538086,0.9502 0.533203,0.67675 0.533203,1.69531 0,1.4082 -0.950195,2.21484 -0.94336,0.79981 -2.618164,0.79981 -0.704102,0 -1.435547,-0.12989 -0.731445,-0.12988 -1.435547,-0.37597 v -1.37403 q 0.697266,0.36231 1.374023,0.54004 0.676758,0.17774 1.34668,0.17774 1.134766,0 1.743164,-0.5127 0.608399,-0.51269 0.608399,-1.47656 0,-0.88867 -0.608399,-1.4082 -0.608398,-0.52637 -1.647461,-0.52637 h -1.052734 v -1.13477 h 1.052734 q 0.950196,0 1.483399,-0.41699 0.533203,-0.41699 0.533203,-1.16211 0,-0.78613 -0.499024,-1.20312 -0.492187,-0.42383 -1.408203,-0.42383 -0.608398,0 -1.257812,0.13672 -0.649414,0.13672 -1.360352,0.41015 v -1.27148 q 0.827149,-0.21875 1.469727,-0.32813 0.649414,-0.10937 1.148437,-0.10937 1.490235,0 2.378906,0.75195 0.895508,0.74512 0.895508,1.98242 0,0.84082 -0.471679,1.40137 -0.464844,0.56055 -1.360352,0.79297 z"
+           style="fill:#4e4e4e"
+           id="path9045" />
+        <path
+           d="m 120.61395,228.43867 h 4.68945 v 1.16211 h -6.2002 v -1.16211 q 1.27832,-1.34667 2.23535,-2.3789 0.95704,-1.03223 1.31934,-1.45606 0.68359,-0.83398 0.92285,-1.34668 0.23926,-0.51953 0.23926,-1.05957 0,-0.85449 -0.50586,-1.33984 -0.49902,-0.48535 -1.37402,-0.48535 -0.62207,0 -1.30567,0.22558 -0.68359,0.22559 -1.44922,0.6836 v -1.39453 q 0.70411,-0.33496 1.38086,-0.50586 0.6836,-0.1709 1.34668,-0.1709 1.49707,0 2.40625,0.7998 0.91602,0.79297 0.91602,2.08496 0,0.65625 -0.30762,1.3125 -0.30078,0.65625 -0.98437,1.44922 -0.38282,0.44434 -1.11426,1.23047 -0.72461,0.78614 -2.21484,2.35156 z"
+           style="fill:#d0d0d0"
+           id="path9047" />
+        <path
+           d="m 127.91817,219.39473 h 5.16797 v 1.16211 h -3.91016 v 2.50879 q 0.29394,-0.10938 0.58789,-0.15723 0.30078,-0.0547 0.60156,-0.0547 1.58594,0 2.51563,0.93653 0.92969,0.93652 0.92969,2.53613 0,1.61328 -0.97754,2.54297 -0.97071,0.92969 -2.65918,0.92969 -0.81348,0 -1.49024,-0.10938 -0.66992,-0.10937 -1.20312,-0.32812 v -1.40137 q 0.6289,0.3418 1.26465,0.51269 0.63574,0.16407 1.29882,0.16407 1.14161,0 1.75684,-0.60157 0.62207,-0.60156 0.62207,-1.70898 0,-1.09375 -0.64258,-1.70215 -0.63574,-0.6084 -1.77734,-0.6084 -0.55371,0 -1.08008,0.12989 -0.52637,0.12304 -1.00488,0.37597 z"
+           style="fill:#d0d0d0"
+           id="path9049" />
+        <path
+           d="m 137.4817,228.43867 h 4.68946 v 1.16211 h -6.2002 v -1.16211 q 1.27832,-1.34667 2.23535,-2.3789 0.95704,-1.03223 1.31934,-1.45606 0.68359,-0.83398 0.92285,-1.34668 0.23926,-0.51953 0.23926,-1.05957 0,-0.85449 -0.50586,-1.33984 -0.49902,-0.48535 -1.37402,-0.48535 -0.62207,0 -1.30567,0.22558 -0.68359,0.22559 -1.44922,0.6836 v -1.39453 q 0.70411,-0.33496 1.38086,-0.50586 0.6836,-0.1709 1.34668,-0.1709 1.49707,0 2.40625,0.7998 0.91602,0.79297 0.91602,2.08496 0,0.65625 -0.30762,1.3125 -0.30078,0.65625 -0.98437,1.44922 -0.38282,0.44434 -1.11426,1.23047 -0.72461,0.78614 -2.21485,2.35156 z"
+           style="fill:#d0d0d0"
+           id="path9051" />
+        <path
+           d="m 145.7498,218.29414 h 1.09375 q 1.03223,1.61328 1.53809,3.15821 0.50586,1.54492 0.50586,3.06933 0,1.53809 -0.50586,3.08301 -0.50586,1.54492 -1.53809,3.1582 h -1.09375 q 0.90918,-1.58593 1.35352,-3.13769 0.45117,-1.55176 0.45117,-3.10352 0,-1.55859 -0.45117,-3.11035 -0.44434,-1.55176 -1.35352,-3.11719 z"
+           style="fill:#d0d0d0"
+           id="path9053" />
+        <path
+           d="m 167.41302,224.85664 v 4.74414 h -1.26464 v -4.74414 q 0,-1.03222 -0.36231,-1.51757 -0.3623,-0.48536 -1.13476,-0.48536 -0.88184,0 -1.36036,0.62891 -0.47168,0.62207 -0.47168,1.79102 v 4.32714 h -1.25781 v -7.65625 h 1.25781 v 1.14844 q 0.33497,-0.65625 0.90918,-0.99121 0.57422,-0.3418 1.36036,-0.3418 1.16894,0 1.74316,0.77246 0.58105,0.76563 0.58105,2.32422 z"
+           style="fill:#d0d0d0"
+           id="path9055" />
+        <path
+           d="m 174.94281,225.7795 q 0,-1.4629 -0.46484,-2.20801 -0.46485,-0.74512 -1.37403,-0.74512 -0.91601,0 -1.38769,0.75195 -0.47168,0.74512 -0.47168,2.20118 0,1.44921 0.47168,2.20117 0.47168,0.75195 1.38769,0.75195 0.90918,0 1.37403,-0.74512 0.46484,-0.74511 0.46484,-2.208 z m -3.69824,-2.85743 q 0.30078,-0.56054 0.82715,-0.86132 0.5332,-0.30079 1.23047,-0.30079 1.38085,0 2.17382,1.06641 0.79297,1.05957 0.79297,2.92578 0,1.89356 -0.7998,2.97363 -0.79297,1.07325 -2.18067,1.07325 -0.68359,0 -1.20996,-0.29395 -0.51953,-0.30078 -0.83398,-0.86816 v 0.96386 h -1.25781 v -10.63671 h 1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9057" />
+        <path
+           d="m 179.25636,221.97188 h 3.21973 v 6.65137 h 2.49512 v 0.97753 h -6.24805 v -0.97753 h 2.49512 v -5.67383 h -1.96192 z m 1.96192,-2.97363 h 1.25781 v 1.58593 h -1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9059" />
+        <path
+           d="m 189.73245,219.77071 v 2.17382 h 2.85742 v 0.97754 h -2.85742 v 4.15625 q 0,0.84766 0.32129,1.18262 0.32129,0.33496 1.1211,0.33496 h 1.41503 v 1.00488 h -1.53808 q -1.41504,0 -1.9961,-0.56738 -0.58105,-0.56738 -0.58105,-1.95508 v -4.15625 h -2.04395 v -0.97754 h 2.04395 v -2.17382 z"
+           style="fill:#d0d0d0"
+           id="path9061" />
+        <path
+           d="m 200.61533,222.21114 v 1.23046 q -0.54004,-0.31445 -1.08692,-0.47168 -0.54687,-0.15722 -1.11426,-0.15722 -0.85449,0 -1.27832,0.28027 -0.41699,0.27344 -0.41699,0.84082 0,0.5127 0.31445,0.76563 0.31446,0.25293 1.56543,0.49218 l 0.50586,0.0957 q 0.93653,0.17773 1.41504,0.71094 0.48535,0.5332 0.48535,1.38769 0,1.13477 -0.80664,1.77734 -0.80664,0.63575 -2.24218,0.63575 -0.56739,0 -1.18946,-0.12305 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29883 q 0.7041,0.36231 1.34668,0.54688 0.64258,0.17773 1.2168,0.17773 0.83398,0 1.29199,-0.33496 0.45801,-0.3418 0.45801,-0.95019 0,-0.875 -1.6748,-1.20997 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08692,-0.21191 -1.58594,-0.71094 -0.49902,-0.50586 -0.49902,-1.37402 0,-1.10059 0.74511,-1.69531 0.74512,-0.60157 2.12598,-0.60157 0.61524,0 1.18262,0.11621 0.56738,0.10938 1.11426,0.33497 z"
+           style="fill:#d0d0d0"
+           id="path9063" />
+        <path
+           d="m 203.00452,226.18282 h 7.22558 v 1.15527 h -7.22558 z m 0,-3.21973 h 7.22558 v 1.15527 h -7.22558 z"
+           style="fill:#d0d0d0"
+           id="path9065" />
+        <path
+           d="m 215.56219,225.63594 v 2.9668 q 0.75196,-0.0205 1.17579,-0.41699 0.42382,-0.39649 0.42382,-1.08008 0,-0.63575 -0.38281,-0.98438 -0.38281,-0.35547 -1.2168,-0.48535 z m -0.68359,-1.29883 v -2.82324 q -0.71094,0.0273 -1.11426,0.41016 -0.39648,0.38281 -0.39648,1.02539 0,0.58789 0.36914,0.92968 0.37598,0.3418 1.1416,0.45801 z m 0.68359,7.32129 h -0.68359 l -0.007,-2.05762 q -0.69727,-0.0342 -1.3877,-0.1914 -0.68359,-0.15723 -1.35352,-0.4375 v -1.23047 q 0.6836,0.42383 1.37403,0.64941 0.69726,0.22559 1.37402,0.23926 v -3.13086 q -1.36719,-0.21191 -2.05762,-0.83398 -0.69043,-0.62207 -0.69043,-1.64746 0,-1.07325 0.71778,-1.70899 0.72461,-0.64258 2.03027,-0.73828 v -1.60644 h 0.68359 l 0.007,1.60644 q 0.54004,0.0342 1.09375,0.13672 0.55371,0.10254 1.12793,0.28027 v 1.18262 q -0.58105,-0.29395 -1.13477,-0.45117 -0.54687,-0.16406 -1.09375,-0.19141 v 2.94629 q 1.40821,0.21192 2.14649,0.875 0.73828,0.66309 0.73828,1.71582 0,1.05274 -0.7998,1.75684 -0.79297,0.7041 -2.07813,0.76562 z"
+           style="fill:#d0d0d0"
+           id="path9067" />
+        <path
+           d="m 225.11545,218.29414 q -0.90918,1.5586 -1.36035,3.11036 -0.44434,1.54492 -0.44434,3.11718 0,1.56543 0.44434,3.11719 0.45117,1.55176 1.36035,3.12402 h -1.09375 q -1.03223,-1.62695 -1.53809,-3.16504 -0.50586,-1.54492 -0.50586,-3.07617 0,-1.52441 0.50586,-3.06933 0.50586,-1.54493 1.53809,-3.15821 z"
+           style="fill:#d0d0d0"
+           id="path9069" />
+        <path
+           d="m 233.5442,218.29414 q -0.90917,1.5586 -1.36035,3.11036 -0.44433,1.54492 -0.44433,3.11718 0,1.56543 0.44433,3.11719 0.45118,1.55176 1.36035,3.12402 h -1.09375 q -1.03222,-1.62695 -1.53808,-3.16504 -0.50586,-1.54492 -0.50586,-3.07617 0,-1.52441 0.50586,-3.06933 0.50586,-1.54493 1.53808,-3.15821 z"
+           style="fill:#d0d0d0"
+           id="path9071" />
+        <path
+           d="m 243.31285,224.85664 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03222 -0.3623,-1.51757 -0.36231,-0.48536 -1.13477,-0.48536 -0.88183,0 -1.36035,0.62891 -0.47168,0.62207 -0.47168,1.79102 v 4.32714 h -1.25781 v -7.65625 h 1.25781 v 1.14844 q 0.33496,-0.65625 0.90918,-0.99121 0.57422,-0.3418 1.36035,-0.3418 1.16895,0 1.74317,0.77246 0.58105,0.76563 0.58105,2.32422 z"
+           style="fill:#d0d0d0"
+           id="path9073" />
+        <path
+           d="m 250.84265,225.7795 q 0,-1.4629 -0.46484,-2.20801 -0.46485,-0.74512 -1.37403,-0.74512 -0.91601,0 -1.38769,0.75195 -0.47168,0.74512 -0.47168,2.20118 0,1.44921 0.47168,2.20117 0.47168,0.75195 1.38769,0.75195 0.90918,0 1.37403,-0.74512 0.46484,-0.74511 0.46484,-2.208 z m -3.69824,-2.85743 q 0.30078,-0.56054 0.82715,-0.86132 0.5332,-0.30079 1.23047,-0.30079 1.38086,0 2.17382,1.06641 0.79297,1.05957 0.79297,2.92578 0,1.89356 -0.7998,2.97363 -0.79297,1.07325 -2.18067,1.07325 -0.68359,0 -1.20996,-0.29395 -0.51953,-0.30078 -0.83398,-0.86816 v 0.96386 h -1.25781 v -10.63671 h 1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9075" />
+        <path
+           d="m 255.15619,221.97188 h 3.21973 v 6.65137 h 2.49511 v 0.97753 h -6.24804 v -0.97753 h 2.49511 v -5.67383 h -1.96191 z m 1.96191,-2.97363 h 1.25782 v 1.58593 h -1.25782 z"
+           style="fill:#d0d0d0"
+           id="path9077" />
+        <path
+           d="m 265.63229,219.77071 v 2.17382 h 2.85743 v 0.97754 h -2.85743 v 4.15625 q 0,0.84766 0.32129,1.18262 0.32129,0.33496 1.1211,0.33496 h 1.41504 v 1.00488 h -1.53809 q -1.41504,0 -1.99609,-0.56738 -0.58106,-0.56738 -0.58106,-1.95508 v -4.15625 h -2.04394 v -0.97754 h 2.04394 v -2.17382 z"
+           style="fill:#d0d0d0"
+           id="path9079" />
+        <path
+           d="m 276.51517,222.21114 v 1.23046 q -0.54004,-0.31445 -1.08692,-0.47168 -0.54687,-0.15722 -1.11425,-0.15722 -0.8545,0 -1.27832,0.28027 -0.417,0.27344 -0.417,0.84082 0,0.5127 0.31446,0.76563 0.31445,0.25293 1.56543,0.49218 l 0.50586,0.0957 q 0.93652,0.17773 1.41503,0.71094 0.48536,0.5332 0.48536,1.38769 0,1.13477 -0.80664,1.77734 -0.80665,0.63575 -2.24219,0.63575 -0.56739,0 -1.18946,-0.12305 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29883 q 0.70411,0.36231 1.34668,0.54688 0.64258,0.17773 1.2168,0.17773 0.83399,0 1.29199,-0.33496 0.45801,-0.3418 0.45801,-0.95019 0,-0.875 -1.6748,-1.20997 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08691,-0.21191 -1.58594,-0.71094 -0.49902,-0.50586 -0.49902,-1.37402 0,-1.10059 0.74512,-1.69531 0.74511,-0.60157 2.12597,-0.60157 0.61524,0 1.18262,0.11621 0.56738,0.10938 1.11426,0.33497 z"
+           style="fill:#d0d0d0"
+           id="path9081" />
+        <path
+           d="m 283.22467,221.54805 v 3.02832 h 3.04199 v 1.15527 h -3.04199 v 3.02832 h -1.14844 v -3.02832 h -3.03515 v -1.15527 h 3.03515 v -3.02832 z"
+           style="fill:#d0d0d0"
+           id="path9083" />
+        <path
+           d="m 293.50598,219.62032 v 1.27148 q -0.43066,-0.25293 -0.91601,-0.38281 -0.48536,-0.13672 -1.01172,-0.13672 -1.3125,0 -1.98926,0.99121 -0.67676,0.98437 -0.67676,2.90527 0.32813,-0.68359 0.90918,-1.0459 0.58106,-0.36914 1.33301,-0.36914 1.47656,0 2.2832,0.90918 0.81348,0.90235 0.81348,2.56348 0,1.6543 -0.83399,2.56348 -0.83398,0.90918 -2.34472,0.90918 -1.77735,0 -2.60449,-1.27149 -0.82715,-1.27832 -0.82715,-4.01953 0,-2.58398 0.99121,-3.9375 0.99804,-1.36035 2.88476,-1.36035 0.50586,0 1.01172,0.10937 0.50586,0.10254 0.97754,0.30079 z m -2.46094,4.31347 q -0.88183,0 -1.38769,0.63574 -0.50586,0.63575 -0.50586,1.75684 0,1.12109 0.50586,1.75684 0.50586,0.63574 1.38769,0.63574 0.91602,0 1.38086,-0.60156 0.46485,-0.6084 0.46485,-1.79102 0,-1.18945 -0.46485,-1.79102 -0.46484,-0.60156 -1.38086,-0.60156 z"
+           style="fill:#d0d0d0"
+           id="path9085" />
+        <path
+           d="m 297.54947,218.29414 h 1.09375 q 1.03223,1.61328 1.53808,3.15821 0.50586,1.54492 0.50586,3.06933 0,1.53809 -0.50586,3.08301 -0.50585,1.54492 -1.53808,3.1582 h -1.09375 q 0.90918,-1.58593 1.35351,-3.13769 0.45118,-1.55176 0.45118,-3.10352 0,-1.55859 -0.45118,-3.11035 -0.44433,-1.55176 -1.35351,-3.11719 z"
+           style="fill:#d0d0d0"
+           id="path9087" />
+        <path
+           d="m 305.97824,218.29414 h 1.09375 q 1.03223,1.61328 1.53809,3.15821 0.50586,1.54492 0.50586,3.06933 0,1.53809 -0.50586,3.08301 -0.50586,1.54492 -1.53809,3.1582 h -1.09375 q 0.90918,-1.58593 1.35352,-3.13769 0.45117,-1.55176 0.45117,-3.10352 0,-1.55859 -0.45117,-3.11035 -0.44434,-1.55176 -1.35352,-3.11719 z"
+           style="fill:#d0d0d0"
+           id="path9089" />
+        <path
+           d="m 315.05981,227.13301 h 2.13282 v 1.81152 l -1.34668,2.61133 h -1.46289 l 0.67675,-2.61133 z m -0.0889,-5.18164 h 2.13281 v 2.46777 h -2.13281 z"
+           style="fill:#d0d0d0"
+           id="path9091" />
+        <path
+           d="m 323.48859,227.13301 h 2.13281 v 1.81152 l -1.34668,2.61133 h -1.46289 l 0.67676,-2.61133 z m -0.0889,-5.18164 h 2.13281 v 2.46777 h -2.13281 z"
+           style="fill:#d0d0d0"
+           id="path9093" />
+        <path
+           d="m 1.8457031,248.04666 h 2.1464844 v -7.71094 l -2.5703125,1.23731 v -1.32617 l 2.5566406,-1.2168 H 5.359375 v 9.0166 h 2.1191406 v 1.15527 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path9095" />
+        <path
+           d="m 10.274482,248.04666 h 2.146484 v -7.71094 l -2.5703124,1.23731 v -1.32617 l 2.5566404,-1.2168 h 1.38086 v 9.0166 h 2.11914 v 1.15527 h -5.632812 z"
+           style="fill:#4e4e4e"
+           id="path9097" />
+        <path
+           d="m 21.892178,240.25369 -3.219727,5.39356 h 3.219727 z m -0.225586,-1.25781 h 1.599609 v 6.65137 h 1.360352 v 1.12109 h -1.360352 v 2.43359 h -1.374023 v -2.43359 h -4.327149 v -1.30566 z"
+           style="fill:#4e4e4e"
+           id="path9099" />
+        <path
+           d="m 120.61395,248.03983 h 4.68945 v 1.1621 h -6.2002 v -1.1621 q 1.27832,-1.34668 2.23535,-2.37891 0.95704,-1.03223 1.31934,-1.45606 0.68359,-0.83398 0.92285,-1.34668 0.23926,-0.51953 0.23926,-1.05957 0,-0.85449 -0.50586,-1.33984 -0.49902,-0.48535 -1.37402,-0.48535 -0.62207,0 -1.30567,0.22559 -0.68359,0.22558 -1.44922,0.68359 v -1.39453 q 0.70411,-0.33496 1.38086,-0.50586 0.6836,-0.1709 1.34668,-0.1709 1.49707,0 2.40625,0.7998 0.91602,0.79297 0.91602,2.08497 0,0.65625 -0.30762,1.3125 -0.30078,0.65625 -0.98437,1.44921 -0.38282,0.44434 -1.11426,1.23047 -0.72461,0.78614 -2.21484,2.35157 z"
+           style="fill:#d0d0d0"
+           id="path9101" />
+        <path
+           d="m 131.52754,240.25369 -3.21972,5.39356 h 3.21972 z m -0.22558,-1.25781 h 1.59961 v 6.65137 h 1.36035 v 1.12109 h -1.36035 v 2.43359 h -1.37403 v -2.43359 h -4.32715 v -1.30566 z"
+           style="fill:#d0d0d0"
+           id="path9103" />
+        <path
+           d="m 139.14284,244.35526 q -0.92285,0 -1.42871,0.51953 -0.49903,0.51269 -0.49903,1.45605 0,0.94336 0.50586,1.46973 0.5127,0.51953 1.42188,0.51953 0.92969,0 1.42871,-0.5127 0.50586,-0.51953 0.50586,-1.47656 0,-0.93652 -0.5127,-1.45605 -0.50586,-0.51953 -1.42187,-0.51953 z m -1.20313,-0.57422 q -0.88183,-0.22559 -1.38086,-0.84082 -0.49218,-0.61524 -0.49218,-1.4834 0,-1.2168 0.82714,-1.92774 0.82715,-0.71777 2.24903,-0.71777 1.42871,0 2.25586,0.71777 0.82715,0.71094 0.82715,1.92774 0,0.86816 -0.49903,1.4834 -0.49219,0.61523 -1.37402,0.84082 1.02539,0.22558 1.56543,0.90918 0.54687,0.68359 0.54687,1.7705 0,1.38086 -0.88183,2.16016 -0.88184,0.7793 -2.44043,0.7793 -1.5586,0 -2.44043,-0.77246 -0.875,-0.7793 -0.875,-2.15332 0,-1.09375 0.54004,-1.77735 0.54687,-0.69043 1.57226,-0.91601 z m -0.49902,-2.19434 q 0,0.82031 0.4375,1.25098 0.4375,0.43066 1.26465,0.43066 0.83398,0 1.27148,-0.43066 0.4375,-0.43067 0.4375,-1.25098 0,-0.83398 -0.4375,-1.27148 -0.43066,-0.4375 -1.27148,-0.4375 -0.82715,0 -1.26465,0.44433 -0.4375,0.4375 -0.4375,1.26465 z"
+           style="fill:#d0d0d0"
+           id="path9105" />
+        <path
+           d="m 145.7498,237.89529 h 1.09375 q 1.03223,1.61329 1.53809,3.15821 0.50586,1.54492 0.50586,3.06933 0,1.53809 -0.50586,3.08301 -0.50586,1.54492 -1.53809,3.1582 h -1.09375 q 0.90918,-1.58593 1.35352,-3.13769 0.45117,-1.55176 0.45117,-3.10352 0,-1.55859 -0.45117,-3.11035 -0.44434,-1.55176 -1.35352,-3.11719 z"
+           style="fill:#d0d0d0"
+           id="path9107" />
+        <path
+           d="m 167.41302,244.45779 v 4.74414 h -1.26464 v -4.74414 q 0,-1.03222 -0.36231,-1.51757 -0.3623,-0.48536 -1.13476,-0.48536 -0.88184,0 -1.36036,0.62891 -0.47168,0.62207 -0.47168,1.79102 v 4.32714 h -1.25781 v -7.65625 h 1.25781 v 1.14844 q 0.33497,-0.65625 0.90918,-0.99121 0.57422,-0.3418 1.36036,-0.3418 1.16894,0 1.74316,0.77247 0.58105,0.76562 0.58105,2.32421 z"
+           style="fill:#d0d0d0"
+           id="path9109" />
+        <path
+           d="m 174.94281,245.38065 q 0,-1.46289 -0.46484,-2.20801 -0.46485,-0.74512 -1.37403,-0.74512 -0.91601,0 -1.38769,0.75195 -0.47168,0.74512 -0.47168,2.20118 0,1.44921 0.47168,2.20117 0.47168,0.75195 1.38769,0.75195 0.90918,0 1.37403,-0.74512 0.46484,-0.74511 0.46484,-2.208 z m -3.69824,-2.85743 q 0.30078,-0.56054 0.82715,-0.86132 0.5332,-0.30079 1.23047,-0.30079 1.38085,0 2.17382,1.06641 0.79297,1.05957 0.79297,2.92578 0,1.89356 -0.7998,2.97363 -0.79297,1.07325 -2.18067,1.07325 -0.68359,0 -1.20996,-0.29395 -0.51953,-0.30078 -0.83398,-0.86816 v 0.96386 h -1.25781 v -10.63671 h 1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9111" />
+        <path
+           d="m 179.25636,241.57303 h 3.21973 v 6.65137 h 2.49512 v 0.97753 h -6.24805 v -0.97753 h 2.49512 v -5.67383 h -1.96192 z m 1.96192,-2.97363 h 1.25781 v 1.58593 h -1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9113" />
+        <path
+           d="m 189.73245,239.37186 v 2.17382 h 2.85742 v 0.97754 h -2.85742 v 4.15625 q 0,0.84766 0.32129,1.18262 0.32129,0.33496 1.1211,0.33496 h 1.41503 v 1.00488 h -1.53808 q -1.41504,0 -1.9961,-0.56738 -0.58105,-0.56738 -0.58105,-1.95508 v -4.15625 h -2.04395 v -0.97754 h 2.04395 v -2.17382 z"
+           style="fill:#d0d0d0"
+           id="path9115" />
+        <path
+           d="m 200.61533,241.81229 v 1.23047 q -0.54004,-0.31446 -1.08692,-0.47168 -0.54687,-0.15723 -1.11426,-0.15723 -0.85449,0 -1.27832,0.28027 -0.41699,0.27344 -0.41699,0.84082 0,0.5127 0.31445,0.76563 0.31446,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93653,0.17773 1.41504,0.71094 0.48535,0.5332 0.48535,1.38769 0,1.13477 -0.80664,1.77734 -0.80664,0.63575 -2.24218,0.63575 -0.56739,0 -1.18946,-0.12305 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29883 q 0.7041,0.36231 1.34668,0.54688 0.64258,0.17773 1.2168,0.17773 0.83398,0 1.29199,-0.33496 0.45801,-0.3418 0.45801,-0.95019 0,-0.875 -1.6748,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08692,-0.21191 -1.58594,-0.71094 -0.49902,-0.50586 -0.49902,-1.37402 0,-1.10059 0.74511,-1.69531 0.74512,-0.60157 2.12598,-0.60157 0.61524,0 1.18262,0.11622 0.56738,0.10937 1.11426,0.33496 z"
+           style="fill:#d0d0d0"
+           id="path9117" />
+        <path
+           d="m 203.00452,245.78397 h 7.22558 v 1.15527 h -7.22558 z m 0,-3.21973 h 7.22558 v 1.15527 h -7.22558 z"
+           style="fill:#d0d0d0"
+           id="path9119" />
+        <path
+           d="m 215.56219,245.23709 v 2.9668 q 0.75196,-0.0205 1.17579,-0.41699 0.42382,-0.39649 0.42382,-1.08008 0,-0.63574 -0.38281,-0.98438 -0.38281,-0.35547 -1.2168,-0.48535 z m -0.68359,-1.29883 v -2.82324 q -0.71094,0.0273 -1.11426,0.41016 -0.39648,0.38281 -0.39648,1.02539 0,0.58789 0.36914,0.92969 0.37598,0.34179 1.1416,0.458 z m 0.68359,7.32129 h -0.68359 l -0.007,-2.05762 q -0.69727,-0.0342 -1.3877,-0.1914 -0.68359,-0.15723 -1.35352,-0.4375 v -1.23047 q 0.6836,0.42383 1.37403,0.64941 0.69726,0.22559 1.37402,0.23926 v -3.13086 q -1.36719,-0.21191 -2.05762,-0.83398 -0.69043,-0.62207 -0.69043,-1.64746 0,-1.07325 0.71778,-1.70899 0.72461,-0.64258 2.03027,-0.73828 v -1.60644 h 0.68359 l 0.007,1.60644 q 0.54004,0.0342 1.09375,0.13672 0.55371,0.10254 1.12793,0.28027 v 1.18262 q -0.58105,-0.29394 -1.13477,-0.45117 -0.54687,-0.16406 -1.09375,-0.19141 v 2.94629 q 1.40821,0.21192 2.14649,0.875 0.73828,0.66309 0.73828,1.71582 0,1.05274 -0.7998,1.75684 -0.79297,0.7041 -2.07813,0.76562 z"
+           style="fill:#d0d0d0"
+           id="path9121" />
+        <path
+           d="m 225.11545,237.89529 q -0.90918,1.5586 -1.36035,3.11036 -0.44434,1.54492 -0.44434,3.11718 0,1.56543 0.44434,3.11719 0.45117,1.55176 1.36035,3.12402 h -1.09375 q -1.03223,-1.62695 -1.53809,-3.16503 -0.50586,-1.54493 -0.50586,-3.07618 0,-1.52441 0.50586,-3.06933 0.50586,-1.54492 1.53809,-3.15821 z"
+           style="fill:#d0d0d0"
+           id="path9123" />
+        <path
+           d="m 233.5442,237.89529 q -0.90917,1.5586 -1.36035,3.11036 -0.44433,1.54492 -0.44433,3.11718 0,1.56543 0.44433,3.11719 0.45118,1.55176 1.36035,3.12402 h -1.09375 q -1.03222,-1.62695 -1.53808,-3.16503 -0.50586,-1.54493 -0.50586,-3.07618 0,-1.52441 0.50586,-3.06933 0.50586,-1.54492 1.53808,-3.15821 z"
+           style="fill:#d0d0d0"
+           id="path9125" />
+        <path
+           d="m 243.31285,244.45779 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03222 -0.3623,-1.51757 -0.36231,-0.48536 -1.13477,-0.48536 -0.88183,0 -1.36035,0.62891 -0.47168,0.62207 -0.47168,1.79102 v 4.32714 h -1.25781 v -7.65625 h 1.25781 v 1.14844 q 0.33496,-0.65625 0.90918,-0.99121 0.57422,-0.3418 1.36035,-0.3418 1.16895,0 1.74317,0.77247 0.58105,0.76562 0.58105,2.32421 z"
+           style="fill:#d0d0d0"
+           id="path9127" />
+        <path
+           d="m 250.84265,245.38065 q 0,-1.46289 -0.46484,-2.20801 -0.46485,-0.74512 -1.37403,-0.74512 -0.91601,0 -1.38769,0.75195 -0.47168,0.74512 -0.47168,2.20118 0,1.44921 0.47168,2.20117 0.47168,0.75195 1.38769,0.75195 0.90918,0 1.37403,-0.74512 0.46484,-0.74511 0.46484,-2.208 z m -3.69824,-2.85743 q 0.30078,-0.56054 0.82715,-0.86132 0.5332,-0.30079 1.23047,-0.30079 1.38086,0 2.17382,1.06641 0.79297,1.05957 0.79297,2.92578 0,1.89356 -0.7998,2.97363 -0.79297,1.07325 -2.18067,1.07325 -0.68359,0 -1.20996,-0.29395 -0.51953,-0.30078 -0.83398,-0.86816 v 0.96386 h -1.25781 v -10.63671 h 1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9129" />
+        <path
+           d="m 255.15619,241.57303 h 3.21973 v 6.65137 h 2.49511 v 0.97753 h -6.24804 v -0.97753 h 2.49511 v -5.67383 h -1.96191 z m 1.96191,-2.97363 h 1.25782 v 1.58593 h -1.25782 z"
+           style="fill:#d0d0d0"
+           id="path9131" />
+        <path
+           d="m 265.63229,239.37186 v 2.17382 h 2.85743 v 0.97754 h -2.85743 v 4.15625 q 0,0.84766 0.32129,1.18262 0.32129,0.33496 1.1211,0.33496 h 1.41504 v 1.00488 h -1.53809 q -1.41504,0 -1.99609,-0.56738 -0.58106,-0.56738 -0.58106,-1.95508 v -4.15625 h -2.04394 v -0.97754 h 2.04394 v -2.17382 z"
+           style="fill:#d0d0d0"
+           id="path9133" />
+        <path
+           d="m 276.51517,241.81229 v 1.23047 q -0.54004,-0.31446 -1.08692,-0.47168 -0.54687,-0.15723 -1.11425,-0.15723 -0.8545,0 -1.27832,0.28027 -0.417,0.27344 -0.417,0.84082 0,0.5127 0.31446,0.76563 0.31445,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93652,0.17773 1.41503,0.71094 0.48536,0.5332 0.48536,1.38769 0,1.13477 -0.80664,1.77734 -0.80665,0.63575 -2.24219,0.63575 -0.56739,0 -1.18946,-0.12305 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29883 q 0.70411,0.36231 1.34668,0.54688 0.64258,0.17773 1.2168,0.17773 0.83399,0 1.29199,-0.33496 0.45801,-0.3418 0.45801,-0.95019 0,-0.875 -1.6748,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08691,-0.21191 -1.58594,-0.71094 -0.49902,-0.50586 -0.49902,-1.37402 0,-1.10059 0.74512,-1.69531 0.74511,-0.60157 2.12597,-0.60157 0.61524,0 1.18262,0.11622 0.56738,0.10937 1.11426,0.33496 z"
+           style="fill:#d0d0d0"
+           id="path9135" />
+        <path
+           d="m 283.22467,241.1492 v 3.02832 h 3.04199 v 1.15527 h -3.04199 v 3.02832 h -1.14844 v -3.02832 h -3.03515 v -1.15527 h 3.03515 v -3.02832 z"
+           style="fill:#d0d0d0"
+           id="path9137" />
+        <path
+           d="m 288.14661,238.99588 h 5.16797 v 1.16211 h -3.91016 v 2.50879 q 0.29394,-0.10938 0.58789,-0.15723 0.30078,-0.0547 0.60156,-0.0547 1.58594,0 2.51563,0.93653 0.92968,0.93652 0.92968,2.53613 0,1.61328 -0.97753,2.54297 -0.97071,0.92969 -2.65918,0.92969 -0.81348,0 -1.49024,-0.10938 -0.66992,-0.10937 -1.20312,-0.32812 v -1.40137 q 0.6289,0.3418 1.26464,0.5127 0.63575,0.16406 1.29883,0.16406 1.1416,0 1.75684,-0.60156 0.62207,-0.60157 0.62207,-1.70899 0,-1.09375 -0.64258,-1.70215 -0.63574,-0.6084 -1.77734,-0.6084 -0.55371,0 -1.08008,0.12989 -0.52637,0.12304 -1.00488,0.37597 z"
+           style="fill:#d0d0d0"
+           id="path9139" />
+        <path
+           d="m 297.54947,237.89529 h 1.09375 q 1.03223,1.61329 1.53808,3.15821 0.50586,1.54492 0.50586,3.06933 0,1.53809 -0.50586,3.08301 -0.50585,1.54492 -1.53808,3.1582 h -1.09375 q 0.90918,-1.58593 1.35351,-3.13769 0.45118,-1.55176 0.45118,-3.10352 0,-1.55859 -0.45118,-3.11035 -0.44433,-1.55176 -1.35351,-3.11719 z"
+           style="fill:#d0d0d0"
+           id="path9141" />
+        <path
+           d="m 305.97824,237.89529 h 1.09375 q 1.03223,1.61329 1.53809,3.15821 0.50586,1.54492 0.50586,3.06933 0,1.53809 -0.50586,3.08301 -0.50586,1.54492 -1.53809,3.1582 h -1.09375 q 0.90918,-1.58593 1.35352,-3.13769 0.45117,-1.55176 0.45117,-3.10352 0,-1.55859 -0.45117,-3.11035 -0.44434,-1.55176 -1.35352,-3.11719 z"
+           style="fill:#d0d0d0"
+           id="path9143" />
+        <path
+           d="m 315.05981,246.73416 h 2.13282 v 1.81152 l -1.34668,2.61133 h -1.46289 l 0.67675,-2.61133 z m -0.0889,-5.18164 h 2.13281 v 2.46777 h -2.13281 z"
+           style="fill:#d0d0d0"
+           id="path9145" />
+        <path
+           d="m 323.48859,246.73416 h 2.13281 v 1.81152 l -1.34668,2.61133 h -1.46289 l 0.67676,-2.61133 z m -0.0889,-5.18164 h 2.13281 v 2.46777 h -2.13281 z"
+           style="fill:#d0d0d0"
+           id="path9147" />
+        <path
+           d="m 1.8457031,267.64178 h 2.1464844 v -7.71093 l -2.5703125,1.2373 v -1.32617 l 2.5566406,-1.2168 H 5.359375 v 9.0166 h 2.1191406 v 1.15528 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path9149" />
+        <path
+           d="m 10.274482,267.64178 h 2.146484 v -7.71093 l -2.5703124,1.2373 v -1.32617 l 2.5566404,-1.2168 h 1.38086 v 9.0166 h 2.11914 v 1.15528 h -5.632812 z"
+           style="fill:#4e4e4e"
+           id="path9151" />
+        <path
+           d="m 18.282803,258.591 h 5.167968 v 1.16211 h -3.910156 v 2.50879 q 0.293945,-0.10937 0.587891,-0.15722 0.300781,-0.0547 0.601562,-0.0547 1.585938,0 2.515625,0.93652 0.929688,0.93652 0.929688,2.53613 0,1.61329 -0.977539,2.54297 -0.970703,0.92969 -2.65918,0.92969 -0.813477,0 -1.490234,-0.10937 -0.669922,-0.10938 -1.203125,-0.32813 v -1.40137 q 0.628906,0.3418 1.264648,0.5127 0.635742,0.16406 1.298828,0.16406 1.141602,0 1.756836,-0.60156 0.62207,-0.60156 0.62207,-1.70899 0,-1.09375 -0.642578,-1.70214 -0.635742,-0.6084 -1.777343,-0.6084 -0.553711,0 -1.080079,0.12988 -0.526367,0.12305 -1.004882,0.37598 z"
+           style="fill:#4e4e4e"
+           id="path9153" />
+        <path
+           d="m 120.61395,267.63495 h 4.68945 v 1.16211 h -6.2002 v -1.16211 q 1.27832,-1.34668 2.23535,-2.37891 0.95704,-1.03222 1.31934,-1.45605 0.68359,-0.83399 0.92285,-1.34668 0.23926,-0.51953 0.23926,-1.05957 0,-0.85449 -0.50586,-1.33985 -0.49902,-0.48535 -1.37402,-0.48535 -0.62207,0 -1.30567,0.22559 -0.68359,0.22558 -1.44922,0.68359 v -1.39453 q 0.70411,-0.33496 1.38086,-0.50586 0.6836,-0.1709 1.34668,-0.1709 1.49707,0 2.40625,0.79981 0.91602,0.79297 0.91602,2.08496 0,0.65625 -0.30762,1.3125 -0.30078,0.65625 -0.98437,1.44922 -0.38282,0.44433 -1.11426,1.23047 -0.72461,0.78613 -2.21484,2.35156 z"
+           style="fill:#d0d0d0"
+           id="path9155" />
+        <path
+           d="m 131.52754,259.84882 -3.21972,5.39355 h 3.21972 z m -0.22558,-1.25782 h 1.59961 v 6.65137 h 1.36035 v 1.12109 h -1.36035 v 2.4336 h -1.37403 v -2.4336 h -4.32715 v -1.30566 z"
+           style="fill:#d0d0d0"
+           id="path9157" />
+        <path
+           d="m 139.14284,258.44061 q 1.63379,0 2.46777,1.33301 0.84082,1.33301 0.84082,3.94434 0,2.61132 -0.84082,3.94433 -0.83398,1.33301 -2.46777,1.33301 -1.63379,0 -2.46778,-1.33301 -0.83398,-1.33301 -0.83398,-3.94433 0,-2.61133 0.83398,-3.94434 0.83399,-1.33301 2.46778,-1.33301 z m 0,9.46094 q 0.9707,0 1.44238,-1.03223 0.47852,-1.03222 0.47852,-3.15136 0,-1.12793 -0.13672,-2.03711 l -3.25391,5.09277 q 0.5127,1.12793 1.46973,1.12793 z m 0,-8.36719 q -0.96387,0 -1.44239,1.03223 -0.47167,1.03223 -0.47167,3.15137 0,0.96386 0.12988,1.80468 l 3.18554,-5.0791 q -0.51953,-0.90918 -1.40136,-0.90918 z"
+           style="fill:#d0d0d0"
+           id="path9159" />
+        <path
+           d="m 145.7498,257.49042 h 1.09375 q 1.03223,1.61328 1.53809,3.1582 0.50586,1.54492 0.50586,3.06934 0,1.53808 -0.50586,3.083 -0.50586,1.54493 -1.53809,3.15821 h -1.09375 q 0.90918,-1.58594 1.35352,-3.1377 0.45117,-1.55176 0.45117,-3.10351 0,-1.5586 -0.45117,-3.11036 -0.44434,-1.55175 -1.35352,-3.11718 z"
+           style="fill:#d0d0d0"
+           id="path9161" />
+        <path
+           d="m 167.41302,264.05292 v 4.74414 h -1.26464 v -4.74414 q 0,-1.03223 -0.36231,-1.51758 -0.3623,-0.48535 -1.13476,-0.48535 -0.88184,0 -1.36036,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.25781 v -7.65625 h 1.25781 v 1.14844 q 0.33497,-0.65625 0.90918,-0.99122 0.57422,-0.34179 1.36036,-0.34179 1.16894,0 1.74316,0.77246 0.58105,0.76562 0.58105,2.32422 z"
+           style="fill:#d0d0d0"
+           id="path9163" />
+        <path
+           d="m 174.94281,264.97577 q 0,-1.46289 -0.46484,-2.20801 -0.46485,-0.74512 -1.37403,-0.74512 -0.91601,0 -1.38769,0.75196 -0.47168,0.74511 -0.47168,2.20117 0,1.44922 0.47168,2.20117 0.47168,0.75195 1.38769,0.75195 0.90918,0 1.37403,-0.74511 0.46484,-0.74512 0.46484,-2.20801 z m -3.69824,-2.85742 q 0.30078,-0.56055 0.82715,-0.86133 0.5332,-0.30078 1.23047,-0.30078 1.38085,0 2.17382,1.0664 0.79297,1.05957 0.79297,2.92579 0,1.89355 -0.7998,2.97363 -0.79297,1.07324 -2.18067,1.07324 -0.68359,0 -1.20996,-0.29395 -0.51953,-0.30078 -0.83398,-0.86816 v 0.96387 h -1.25781 v -10.63672 h 1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9165" />
+        <path
+           d="m 179.25636,261.16815 h 3.21973 v 6.65137 h 2.49512 v 0.97754 h -6.24805 v -0.97754 h 2.49512 v -5.67383 h -1.96192 z m 1.96192,-2.97363 h 1.25781 v 1.58594 h -1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9167" />
+        <path
+           d="m 189.73245,258.96698 v 2.17383 h 2.85742 v 0.97754 h -2.85742 v 4.15625 q 0,0.84765 0.32129,1.18261 0.32129,0.33497 1.1211,0.33497 h 1.41503 v 1.00488 h -1.53808 q -1.41504,0 -1.9961,-0.56738 -0.58105,-0.56739 -0.58105,-1.95508 v -4.15625 h -2.04395 v -0.97754 h 2.04395 v -2.17383 z"
+           style="fill:#d0d0d0"
+           id="path9169" />
+        <path
+           d="m 200.61533,261.40741 v 1.23047 q -0.54004,-0.31445 -1.08692,-0.47168 -0.54687,-0.15723 -1.11426,-0.15723 -0.85449,0 -1.27832,0.28028 -0.41699,0.27343 -0.41699,0.84082 0,0.51269 0.31445,0.76562 0.31446,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93653,0.17774 1.41504,0.71094 0.48535,0.5332 0.48535,1.38769 0,1.13477 -0.80664,1.77735 -0.80664,0.63574 -2.24218,0.63574 -0.56739,0 -1.18946,-0.12305 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29882 q 0.7041,0.3623 1.34668,0.54687 0.64258,0.17774 1.2168,0.17774 0.83398,0 1.29199,-0.33497 0.45801,-0.34179 0.45801,-0.95019 0,-0.875 -1.6748,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08692,-0.21191 -1.58594,-0.71093 -0.49902,-0.50586 -0.49902,-1.37403 0,-1.10058 0.74511,-1.69531 0.74512,-0.60156 2.12598,-0.60156 0.61524,0 1.18262,0.11621 0.56738,0.10937 1.11426,0.33496 z"
+           style="fill:#d0d0d0"
+           id="path9171" />
+        <path
+           d="m 203.00452,265.37909 h 7.22558 v 1.15527 h -7.22558 z m 0,-3.21973 h 7.22558 v 1.15528 h -7.22558 z"
+           style="fill:#d0d0d0"
+           id="path9173" />
+        <path
+           d="m 215.56219,264.83221 v 2.9668 q 0.75196,-0.0205 1.17579,-0.41699 0.42382,-0.39649 0.42382,-1.08008 0,-0.63574 -0.38281,-0.98437 -0.38281,-0.35547 -1.2168,-0.48536 z m -0.68359,-1.29882 v -2.82325 q -0.71094,0.0273 -1.11426,0.41016 -0.39648,0.38281 -0.39648,1.02539 0,0.58789 0.36914,0.92969 0.37598,0.3418 1.1416,0.45801 z m 0.68359,7.32129 h -0.68359 l -0.007,-2.05762 q -0.69727,-0.0342 -1.3877,-0.19141 -0.68359,-0.15722 -1.35352,-0.4375 v -1.23047 q 0.6836,0.42383 1.37403,0.64942 0.69726,0.22558 1.37402,0.23925 v -3.13085 q -1.36719,-0.21192 -2.05762,-0.83399 -0.69043,-0.62207 -0.69043,-1.64746 0,-1.07324 0.71778,-1.70898 0.72461,-0.64258 2.03027,-0.73829 v -1.60644 h 0.68359 l 0.007,1.60644 q 0.54004,0.0342 1.09375,0.13672 0.55371,0.10254 1.12793,0.28028 v 1.18261 q -0.58105,-0.29394 -1.13477,-0.45117 -0.54687,-0.16406 -1.09375,-0.1914 v 2.94628 q 1.40821,0.21192 2.14649,0.875 0.73828,0.66309 0.73828,1.71583 0,1.05273 -0.7998,1.75683 -0.79297,0.7041 -2.07813,0.76563 z"
+           style="fill:#d0d0d0"
+           id="path9175" />
+        <path
+           d="m 225.11545,257.49042 q -0.90918,1.55859 -1.36035,3.11035 -0.44434,1.54492 -0.44434,3.11719 0,1.56543 0.44434,3.11718 0.45117,1.55176 1.36035,3.12403 h -1.09375 q -1.03223,-1.62696 -1.53809,-3.16504 -0.50586,-1.54492 -0.50586,-3.07617 0,-1.52442 0.50586,-3.06934 0.50586,-1.54492 1.53809,-3.1582 z"
+           style="fill:#d0d0d0"
+           id="path9177" />
+        <path
+           d="m 233.5442,257.49042 q -0.90917,1.55859 -1.36035,3.11035 -0.44433,1.54492 -0.44433,3.11719 0,1.56543 0.44433,3.11718 0.45118,1.55176 1.36035,3.12403 h -1.09375 q -1.03222,-1.62696 -1.53808,-3.16504 -0.50586,-1.54492 -0.50586,-3.07617 0,-1.52442 0.50586,-3.06934 0.50586,-1.54492 1.53808,-3.1582 z"
+           style="fill:#d0d0d0"
+           id="path9179" />
+        <path
+           d="m 243.31285,264.05292 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03223 -0.3623,-1.51758 -0.36231,-0.48535 -1.13477,-0.48535 -0.88183,0 -1.36035,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.25781 v -7.65625 h 1.25781 v 1.14844 q 0.33496,-0.65625 0.90918,-0.99122 0.57422,-0.34179 1.36035,-0.34179 1.16895,0 1.74317,0.77246 0.58105,0.76562 0.58105,2.32422 z"
+           style="fill:#d0d0d0"
+           id="path9181" />
+        <path
+           d="m 250.84265,264.97577 q 0,-1.46289 -0.46484,-2.20801 -0.46485,-0.74512 -1.37403,-0.74512 -0.91601,0 -1.38769,0.75196 -0.47168,0.74511 -0.47168,2.20117 0,1.44922 0.47168,2.20117 0.47168,0.75195 1.38769,0.75195 0.90918,0 1.37403,-0.74511 0.46484,-0.74512 0.46484,-2.20801 z m -3.69824,-2.85742 q 0.30078,-0.56055 0.82715,-0.86133 0.5332,-0.30078 1.23047,-0.30078 1.38086,0 2.17382,1.0664 0.79297,1.05957 0.79297,2.92579 0,1.89355 -0.7998,2.97363 -0.79297,1.07324 -2.18067,1.07324 -0.68359,0 -1.20996,-0.29395 -0.51953,-0.30078 -0.83398,-0.86816 v 0.96387 h -1.25781 v -10.63672 h 1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9183" />
+        <path
+           d="m 255.15619,261.16815 h 3.21973 v 6.65137 h 2.49511 v 0.97754 h -6.24804 v -0.97754 h 2.49511 v -5.67383 h -1.96191 z m 1.96191,-2.97363 h 1.25782 v 1.58594 h -1.25782 z"
+           style="fill:#d0d0d0"
+           id="path9185" />
+        <path
+           d="m 265.63229,258.96698 v 2.17383 h 2.85743 v 0.97754 h -2.85743 v 4.15625 q 0,0.84765 0.32129,1.18261 0.32129,0.33497 1.1211,0.33497 h 1.41504 v 1.00488 h -1.53809 q -1.41504,0 -1.99609,-0.56738 -0.58106,-0.56739 -0.58106,-1.95508 v -4.15625 h -2.04394 v -0.97754 h 2.04394 v -2.17383 z"
+           style="fill:#d0d0d0"
+           id="path9187" />
+        <path
+           d="m 276.51517,261.40741 v 1.23047 q -0.54004,-0.31445 -1.08692,-0.47168 -0.54687,-0.15723 -1.11425,-0.15723 -0.8545,0 -1.27832,0.28028 -0.417,0.27343 -0.417,0.84082 0,0.51269 0.31446,0.76562 0.31445,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93652,0.17774 1.41503,0.71094 0.48536,0.5332 0.48536,1.38769 0,1.13477 -0.80664,1.77735 -0.80665,0.63574 -2.24219,0.63574 -0.56739,0 -1.18946,-0.12305 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29882 q 0.70411,0.3623 1.34668,0.54687 0.64258,0.17774 1.2168,0.17774 0.83399,0 1.29199,-0.33497 0.45801,-0.34179 0.45801,-0.95019 0,-0.875 -1.6748,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08691,-0.21191 -1.58594,-0.71093 -0.49902,-0.50586 -0.49902,-1.37403 0,-1.10058 0.74512,-1.69531 0.74511,-0.60156 2.12597,-0.60156 0.61524,0 1.18262,0.11621 0.56738,0.10937 1.11426,0.33496 z"
+           style="fill:#d0d0d0"
+           id="path9189" />
+        <path
+           d="m 283.22467,260.74432 v 3.02832 h 3.04199 v 1.15528 h -3.04199 v 3.02832 h -1.14844 v -3.02832 h -3.03515 v -1.15528 h 3.03515 v -3.02832 z"
+           style="fill:#d0d0d0"
+           id="path9191" />
+        <path
+           d="m 291.75598,259.84882 -3.21973,5.39355 h 3.21973 z M 291.5304,258.591 h 1.5996 v 6.65137 h 1.36036 v 1.12109 H 293.13 v 2.4336 h -1.37402 v -2.4336 h -4.32715 v -1.30566 z"
+           style="fill:#d0d0d0"
+           id="path9193" />
+        <path
+           d="m 297.54947,257.49042 h 1.09375 q 1.03223,1.61328 1.53808,3.1582 0.50586,1.54492 0.50586,3.06934 0,1.53808 -0.50586,3.083 -0.50585,1.54493 -1.53808,3.15821 h -1.09375 q 0.90918,-1.58594 1.35351,-3.1377 0.45118,-1.55176 0.45118,-3.10351 0,-1.5586 -0.45118,-3.11036 -0.44433,-1.55175 -1.35351,-3.11718 z"
+           style="fill:#d0d0d0"
+           id="path9195" />
+        <path
+           d="m 305.97824,257.49042 h 1.09375 q 1.03223,1.61328 1.53809,3.1582 0.50586,1.54492 0.50586,3.06934 0,1.53808 -0.50586,3.083 -0.50586,1.54493 -1.53809,3.15821 h -1.09375 q 0.90918,-1.58594 1.35352,-3.1377 0.45117,-1.55176 0.45117,-3.10351 0,-1.5586 -0.45117,-3.11036 -0.44434,-1.55175 -1.35352,-3.11718 z"
+           style="fill:#d0d0d0"
+           id="path9197" />
+        <path
+           d="m 315.05981,266.32928 h 2.13282 v 1.81153 l -1.34668,2.61133 h -1.46289 l 0.67675,-2.61133 z m -0.0889,-5.18164 h 2.13281 v 2.46778 h -2.13281 z"
+           style="fill:#d0d0d0"
+           id="path9199" />
+        <path
+           d="m 323.48859,266.32928 h 2.13281 v 1.81153 l -1.34668,2.61133 h -1.46289 l 0.67676,-2.61133 z m -0.0889,-5.18164 h 2.13281 v 2.46778 h -2.13281 z"
+           style="fill:#d0d0d0"
+           id="path9201" />
+        <path
+           d="m 1.8457031,287.24295 h 2.1464844 v -7.71094 l -2.5703125,1.23731 v -1.32617 l 2.5566406,-1.2168 H 5.359375 v 9.0166 h 2.1191406 v 1.15527 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path9203" />
+        <path
+           d="m 10.274482,287.24295 h 2.146484 v -7.71094 l -2.5703124,1.23731 v -1.32617 l 2.5566404,-1.2168 h 1.38086 v 9.0166 h 2.11914 v 1.15527 h -5.632812 z"
+           style="fill:#4e4e4e"
+           id="path9205" />
+        <path
+           d="m 23.642178,278.41776 v 1.27148 q -0.430664,-0.25293 -0.916016,-0.38281 -0.485352,-0.13672 -1.011719,-0.13672 -1.3125,0 -1.989258,0.99121 -0.676757,0.98437 -0.676757,2.90527 0.328125,-0.68359 0.909179,-1.0459 0.581055,-0.36914 1.333008,-0.36914 1.476563,0 2.283203,0.90918 0.813477,0.90235 0.813477,2.56348 0,1.6543 -0.833985,2.56348 -0.833984,0.90918 -2.344726,0.90918 -1.777344,0 -2.604492,-1.27149 -0.827149,-1.27832 -0.827149,-4.01953 0,-2.58398 0.991211,-3.9375 0.998047,-1.36035 2.884766,-1.36035 0.505859,0 1.011719,0.10937 0.505859,0.10254 0.977539,0.30079 z m -2.460938,4.31347 q -0.881836,0 -1.387695,0.63574 -0.50586,0.63575 -0.50586,1.75684 0,1.12109 0.50586,1.75684 0.505859,0.63574 1.387695,0.63574 0.916016,0 1.380859,-0.60156 0.464844,-0.6084 0.464844,-1.79102 0,-1.18945 -0.464844,-1.79102 -0.464843,-0.60156 -1.380859,-0.60156 z"
+           style="fill:#4e4e4e"
+           id="path9207" />
+        <path
+           d="m 120.61395,287.23611 h 4.68945 v 1.16211 h -6.2002 v -1.16211 q 1.27832,-1.34668 2.23535,-2.3789 0.95704,-1.03223 1.31934,-1.45606 0.68359,-0.83398 0.92285,-1.34668 0.23926,-0.51953 0.23926,-1.05957 0,-0.85449 -0.50586,-1.33984 -0.49902,-0.48535 -1.37402,-0.48535 -0.62207,0 -1.30567,0.22558 -0.68359,0.22559 -1.44922,0.6836 v -1.39453 q 0.70411,-0.33496 1.38086,-0.50586 0.6836,-0.1709 1.34668,-0.1709 1.49707,0 2.40625,0.7998 0.91602,0.79297 0.91602,2.08496 0,0.65625 -0.30762,1.3125 -0.30078,0.65625 -0.98437,1.44922 -0.38282,0.44434 -1.11426,1.23047 -0.72461,0.78613 -2.21484,2.35156 z"
+           style="fill:#d0d0d0"
+           id="path9209" />
+        <path
+           d="m 129.05293,287.23611 h 4.68946 v 1.16211 h -6.2002 v -1.16211 q 1.27832,-1.34668 2.23535,-2.3789 0.95703,-1.03223 1.31934,-1.45606 0.68359,-0.83398 0.92285,-1.34668 0.23926,-0.51953 0.23926,-1.05957 0,-0.85449 -0.50586,-1.33984 -0.49903,-0.48535 -1.37403,-0.48535 -0.62207,0 -1.30566,0.22558 -0.68359,0.22559 -1.44922,0.6836 v -1.39453 q 0.7041,-0.33496 1.38086,-0.50586 0.68359,-0.1709 1.34668,-0.1709 1.49707,0 2.40625,0.7998 0.91602,0.79297 0.91602,2.08496 0,0.65625 -0.30762,1.3125 -0.30078,0.65625 -0.98438,1.44922 -0.38281,0.44434 -1.11425,1.23047 -0.72461,0.78613 -2.21485,2.35156 z"
+           style="fill:#d0d0d0"
+           id="path9211" />
+        <path
+           d="m 139.95631,279.44998 -3.21972,5.39356 h 3.21972 z m -0.22558,-1.25781 h 1.59961 v 6.65137 h 1.36035 v 1.12109 h -1.36035 v 2.43359 h -1.37403 v -2.43359 h -4.32714 v -1.30566 z"
+           style="fill:#d0d0d0"
+           id="path9213" />
+        <path
+           d="m 145.7498,277.09158 h 1.09375 q 1.03223,1.61328 1.53809,3.15821 0.50586,1.54492 0.50586,3.06933 0,1.53809 -0.50586,3.08301 -0.50586,1.54492 -1.53809,3.1582 h -1.09375 q 0.90918,-1.58593 1.35352,-3.13769 0.45117,-1.55176 0.45117,-3.10352 0,-1.55859 -0.45117,-3.11035 -0.44434,-1.55176 -1.35352,-3.11719 z"
+           style="fill:#d0d0d0"
+           id="path9215" />
+        <path
+           d="m 167.41302,283.65408 v 4.74414 h -1.26464 v -4.74414 q 0,-1.03222 -0.36231,-1.51757 -0.3623,-0.48536 -1.13476,-0.48536 -0.88184,0 -1.36036,0.62891 -0.47168,0.62207 -0.47168,1.79102 v 4.32714 h -1.25781 v -7.65625 h 1.25781 v 1.14844 q 0.33497,-0.65625 0.90918,-0.99121 0.57422,-0.3418 1.36036,-0.3418 1.16894,0 1.74316,0.77246 0.58105,0.76563 0.58105,2.32422 z"
+           style="fill:#d0d0d0"
+           id="path9217" />
+        <path
+           d="m 174.94281,284.57693 q 0,-1.46289 -0.46484,-2.208 -0.46485,-0.74512 -1.37403,-0.74512 -0.91601,0 -1.38769,0.75195 -0.47168,0.74512 -0.47168,2.20117 0,1.44922 0.47168,2.20118 0.47168,0.75195 1.38769,0.75195 0.90918,0 1.37403,-0.74512 0.46484,-0.74511 0.46484,-2.20801 z m -3.69824,-2.85742 q 0.30078,-0.56054 0.82715,-0.86133 0.5332,-0.30078 1.23047,-0.30078 1.38085,0 2.17382,1.06641 0.79297,1.05957 0.79297,2.92578 0,1.89356 -0.7998,2.97363 -0.79297,1.07325 -2.18067,1.07325 -0.68359,0 -1.20996,-0.29395 -0.51953,-0.30078 -0.83398,-0.86816 v 0.96386 h -1.25781 v -10.63671 h 1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9219" />
+        <path
+           d="m 179.25636,280.76932 h 3.21973 v 6.65136 h 2.49512 v 0.97754 h -6.24805 v -0.97754 h 2.49512 v -5.67382 h -1.96192 z m 1.96192,-2.97364 h 1.25781 v 1.58594 h -1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9221" />
+        <path
+           d="m 189.73245,278.56815 v 2.17382 h 2.85742 v 0.97754 h -2.85742 v 4.15625 q 0,0.84766 0.32129,1.18262 0.32129,0.33496 1.1211,0.33496 h 1.41503 v 1.00488 h -1.53808 q -1.41504,0 -1.9961,-0.56738 -0.58105,-0.56738 -0.58105,-1.95508 v -4.15625 h -2.04395 v -0.97754 h 2.04395 v -2.17382 z"
+           style="fill:#d0d0d0"
+           id="path9223" />
+        <path
+           d="m 200.61533,281.00858 v 1.23046 q -0.54004,-0.31445 -1.08692,-0.47168 -0.54687,-0.15722 -1.11426,-0.15722 -0.85449,0 -1.27832,0.28027 -0.41699,0.27344 -0.41699,0.84082 0,0.5127 0.31445,0.76563 0.31446,0.25293 1.56543,0.49218 l 0.50586,0.0957 q 0.93653,0.17773 1.41504,0.71093 0.48535,0.53321 0.48535,1.3877 0,1.13477 -0.80664,1.77734 -0.80664,0.63575 -2.24218,0.63575 -0.56739,0 -1.18946,-0.12305 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29883 q 0.7041,0.36231 1.34668,0.54688 0.64258,0.17773 1.2168,0.17773 0.83398,0 1.29199,-0.33496 0.45801,-0.3418 0.45801,-0.95019 0,-0.875 -1.6748,-1.20997 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08692,-0.21191 -1.58594,-0.71094 -0.49902,-0.50586 -0.49902,-1.37402 0,-1.10059 0.74511,-1.69531 0.74512,-0.60157 2.12598,-0.60157 0.61524,0 1.18262,0.11621 0.56738,0.10938 1.11426,0.33497 z"
+           style="fill:#d0d0d0"
+           id="path9225" />
+        <path
+           d="m 203.00452,284.98026 h 7.22558 v 1.15527 h -7.22558 z m 0,-3.21973 h 7.22558 v 1.15527 h -7.22558 z"
+           style="fill:#d0d0d0"
+           id="path9227" />
+        <path
+           d="m 215.56219,284.43338 v 2.9668 q 0.75196,-0.0205 1.17579,-0.417 0.42382,-0.39648 0.42382,-1.08007 0,-0.63575 -0.38281,-0.98438 -0.38281,-0.35547 -1.2168,-0.48535 z m -0.68359,-1.29883 v -2.82324 q -0.71094,0.0273 -1.11426,0.41016 -0.39648,0.38281 -0.39648,1.02539 0,0.58789 0.36914,0.92968 0.37598,0.3418 1.1416,0.45801 z m 0.68359,7.32129 h -0.68359 l -0.007,-2.05762 q -0.69727,-0.0342 -1.3877,-0.1914 -0.68359,-0.15723 -1.35352,-0.4375 v -1.23047 q 0.6836,0.42383 1.37403,0.64941 0.69726,0.22559 1.37402,0.23926 v -3.13086 q -1.36719,-0.21191 -2.05762,-0.83398 -0.69043,-0.62207 -0.69043,-1.64746 0,-1.07325 0.71778,-1.70899 0.72461,-0.64258 2.03027,-0.73828 v -1.60644 h 0.68359 l 0.007,1.60644 q 0.54004,0.0342 1.09375,0.13672 0.55371,0.10254 1.12793,0.28027 v 1.18262 q -0.58105,-0.29395 -1.13477,-0.45117 -0.54687,-0.16406 -1.09375,-0.19141 v 2.94629 q 1.40821,0.21191 2.14649,0.875 0.73828,0.66309 0.73828,1.71582 0,1.05274 -0.7998,1.75684 -0.79297,0.7041 -2.07813,0.76562 z"
+           style="fill:#d0d0d0"
+           id="path9229" />
+        <path
+           d="m 225.11545,277.09158 q -0.90918,1.5586 -1.36035,3.11035 -0.44434,1.54493 -0.44434,3.11719 0,1.56543 0.44434,3.11719 0.45117,1.55176 1.36035,3.12402 h -1.09375 q -1.03223,-1.62695 -1.53809,-3.16504 -0.50586,-1.54492 -0.50586,-3.07617 0,-1.52441 0.50586,-3.06933 0.50586,-1.54493 1.53809,-3.15821 z"
+           style="fill:#d0d0d0"
+           id="path9231" />
+        <path
+           d="m 233.5442,277.09158 q -0.90917,1.5586 -1.36035,3.11035 -0.44433,1.54493 -0.44433,3.11719 0,1.56543 0.44433,3.11719 0.45118,1.55176 1.36035,3.12402 h -1.09375 q -1.03222,-1.62695 -1.53808,-3.16504 -0.50586,-1.54492 -0.50586,-3.07617 0,-1.52441 0.50586,-3.06933 0.50586,-1.54493 1.53808,-3.15821 z"
+           style="fill:#d0d0d0"
+           id="path9233" />
+        <path
+           d="m 243.31285,283.65408 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03222 -0.3623,-1.51757 -0.36231,-0.48536 -1.13477,-0.48536 -0.88183,0 -1.36035,0.62891 -0.47168,0.62207 -0.47168,1.79102 v 4.32714 h -1.25781 v -7.65625 h 1.25781 v 1.14844 q 0.33496,-0.65625 0.90918,-0.99121 0.57422,-0.3418 1.36035,-0.3418 1.16895,0 1.74317,0.77246 0.58105,0.76563 0.58105,2.32422 z"
+           style="fill:#d0d0d0"
+           id="path9235" />
+        <path
+           d="m 250.84265,284.57693 q 0,-1.46289 -0.46484,-2.208 -0.46485,-0.74512 -1.37403,-0.74512 -0.91601,0 -1.38769,0.75195 -0.47168,0.74512 -0.47168,2.20117 0,1.44922 0.47168,2.20118 0.47168,0.75195 1.38769,0.75195 0.90918,0 1.37403,-0.74512 0.46484,-0.74511 0.46484,-2.20801 z m -3.69824,-2.85742 q 0.30078,-0.56054 0.82715,-0.86133 0.5332,-0.30078 1.23047,-0.30078 1.38086,0 2.17382,1.06641 0.79297,1.05957 0.79297,2.92578 0,1.89356 -0.7998,2.97363 -0.79297,1.07325 -2.18067,1.07325 -0.68359,0 -1.20996,-0.29395 -0.51953,-0.30078 -0.83398,-0.86816 v 0.96386 h -1.25781 v -10.63671 h 1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9237" />
+        <path
+           d="m 255.15619,280.76932 h 3.21973 v 6.65136 h 2.49511 v 0.97754 h -6.24804 v -0.97754 h 2.49511 v -5.67382 h -1.96191 z m 1.96191,-2.97364 h 1.25782 v 1.58594 h -1.25782 z"
+           style="fill:#d0d0d0"
+           id="path9239" />
+        <path
+           d="m 265.63229,278.56815 v 2.17382 h 2.85743 v 0.97754 h -2.85743 v 4.15625 q 0,0.84766 0.32129,1.18262 0.32129,0.33496 1.1211,0.33496 h 1.41504 v 1.00488 h -1.53809 q -1.41504,0 -1.99609,-0.56738 -0.58106,-0.56738 -0.58106,-1.95508 v -4.15625 h -2.04394 v -0.97754 h 2.04394 v -2.17382 z"
+           style="fill:#d0d0d0"
+           id="path9241" />
+        <path
+           d="m 276.51517,281.00858 v 1.23046 q -0.54004,-0.31445 -1.08692,-0.47168 -0.54687,-0.15722 -1.11425,-0.15722 -0.8545,0 -1.27832,0.28027 -0.417,0.27344 -0.417,0.84082 0,0.5127 0.31446,0.76563 0.31445,0.25293 1.56543,0.49218 l 0.50586,0.0957 q 0.93652,0.17773 1.41503,0.71093 0.48536,0.53321 0.48536,1.3877 0,1.13477 -0.80664,1.77734 -0.80665,0.63575 -2.24219,0.63575 -0.56739,0 -1.18946,-0.12305 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29883 q 0.70411,0.36231 1.34668,0.54688 0.64258,0.17773 1.2168,0.17773 0.83399,0 1.29199,-0.33496 0.45801,-0.3418 0.45801,-0.95019 0,-0.875 -1.6748,-1.20997 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08691,-0.21191 -1.58594,-0.71094 -0.49902,-0.50586 -0.49902,-1.37402 0,-1.10059 0.74512,-1.69531 0.74511,-0.60157 2.12597,-0.60157 0.61524,0 1.18262,0.11621 0.56738,0.10938 1.11426,0.33497 z"
+           style="fill:#d0d0d0"
+           id="path9243" />
+        <path
+           d="m 283.22467,280.34549 v 3.02832 h 3.04199 v 1.15527 h -3.04199 v 3.02832 h -1.14844 v -3.02832 h -3.03515 v -1.15527 h 3.03515 v -3.02832 z"
+           style="fill:#d0d0d0"
+           id="path9245" />
+        <path
+           d="m 292.03625,282.93631 q 1.00489,0.2666 1.53809,0.9502 0.5332,0.67675 0.5332,1.69531 0,1.4082 -0.95019,2.21484 -0.94336,0.79981 -2.61817,0.79981 -0.7041,0 -1.43554,-0.12989 -0.73145,-0.12988 -1.43555,-0.37597 v -1.37403 q 0.69727,0.36231 1.37402,0.54004 0.67676,0.17774 1.34668,0.17774 1.13477,0 1.74317,-0.5127 0.6084,-0.51269 0.6084,-1.47656 0,-0.88867 -0.6084,-1.4082 -0.6084,-0.52637 -1.64746,-0.52637 h -1.05274 v -1.13477 h 1.05274 q 0.95019,0 1.4834,-0.41699 0.5332,-0.41699 0.5332,-1.16211 0,-0.78613 -0.49902,-1.20312 -0.49219,-0.42383 -1.40821,-0.42383 -0.6084,0 -1.25781,0.13672 -0.64941,0.13672 -1.36035,0.41015 v -1.27148 q 0.82715,-0.21875 1.46972,-0.32813 0.64942,-0.10937 1.14844,-0.10937 1.49024,0 2.37891,0.75195 0.89551,0.74512 0.89551,1.98242 0,0.84082 -0.47168,1.40137 -0.46485,0.56055 -1.36036,0.79297 z"
+           style="fill:#d0d0d0"
+           id="path9247" />
+        <path
+           d="m 297.54947,277.09158 h 1.09375 q 1.03223,1.61328 1.53808,3.15821 0.50586,1.54492 0.50586,3.06933 0,1.53809 -0.50586,3.08301 -0.50585,1.54492 -1.53808,3.1582 h -1.09375 q 0.90918,-1.58593 1.35351,-3.13769 0.45118,-1.55176 0.45118,-3.10352 0,-1.55859 -0.45118,-3.11035 -0.44433,-1.55176 -1.35351,-3.11719 z"
+           style="fill:#d0d0d0"
+           id="path9249" />
+        <path
+           d="m 305.97824,277.09158 h 1.09375 q 1.03223,1.61328 1.53809,3.15821 0.50586,1.54492 0.50586,3.06933 0,1.53809 -0.50586,3.08301 -0.50586,1.54492 -1.53809,3.1582 h -1.09375 q 0.90918,-1.58593 1.35352,-3.13769 0.45117,-1.55176 0.45117,-3.10352 0,-1.55859 -0.45117,-3.11035 -0.44434,-1.55176 -1.35352,-3.11719 z"
+           style="fill:#d0d0d0"
+           id="path9251" />
+        <path
+           d="m 315.05981,285.93045 h 2.13282 v 1.81152 l -1.34668,2.61133 h -1.46289 l 0.67675,-2.61133 z m -0.0889,-5.18164 h 2.13281 v 2.46777 h -2.13281 z"
+           style="fill:#d0d0d0"
+           id="path9253" />
+        <path
+           d="m 323.48859,285.93045 h 2.13281 v 1.81152 l -1.34668,2.61133 h -1.46289 l 0.67676,-2.61133 z m -0.0889,-5.18164 h 2.13281 v 2.46777 h -2.13281 z"
+           style="fill:#d0d0d0"
+           id="path9255" />
+        <path
+           d="m 1.8457031,306.84412 h 2.1464844 v -7.71094 l -2.5703125,1.2373 v -1.32617 l 2.5566406,-1.2168 H 5.359375 v 9.01661 h 2.1191406 v 1.15527 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path9257" />
+        <path
+           d="m 10.274482,306.84412 h 2.146484 v -7.71094 l -2.5703124,1.2373 v -1.32617 l 2.5566404,-1.2168 h 1.38086 v 9.01661 h 2.11914 v 1.15527 h -5.632812 z"
+           style="fill:#4e4e4e"
+           id="path9259" />
+        <path
+           d="m 17.817959,297.79333 h 6.425781 v 0.5879 l -3.650391,9.61816 h -1.442382 l 3.554687,-9.04395 h -4.887695 z"
+           style="fill:#4e4e4e"
+           id="path9261" />
+        <path
+           d="m 119.90984,306.84412 h 2.14649 v -7.71094 l -2.57031,1.2373 v -1.32617 l 2.55664,-1.2168 h 1.38086 v 9.01661 h 2.11914 v 1.15527 h -5.63282 z"
+           style="fill:#d0d0d0"
+           id="path9263" />
+        <path
+           d="m 130.57735,303.474 q 0.88183,0 1.38086,-0.63574 0.50586,-0.63575 0.50586,-1.75684 0,-1.12109 -0.50586,-1.75684 -0.49903,-0.63574 -1.38086,-0.63574 -0.91602,0 -1.38086,0.6084 -0.46485,0.60156 -0.46485,1.78418 0,1.18945 0.45801,1.79102 0.46485,0.60156 1.3877,0.60156 z m -2.46094,4.31348 v -1.27149 q 0.43066,0.25293 0.91601,0.38965 0.48536,0.12988 1.01172,0.12988 1.3125,0 1.98243,-0.98437 0.67675,-0.99121 0.67675,-2.91211 -0.32129,0.68359 -0.90234,1.05273 -0.58106,0.36231 -1.33301,0.36231 -1.47656,0 -2.29004,-0.90918 -0.80664,-0.90918 -0.80664,-2.57715 0,-1.64746 0.82715,-2.54981 0.83398,-0.90918 2.35156,-0.90918 1.77735,0 2.6045,1.27832 0.82714,1.27833 0.82714,4.01954 0,2.57714 -0.99804,3.9375 -0.99121,1.35351 -2.88477,1.35351 -0.49902,0 -1.00488,-0.10937 -0.50586,-0.10254 -0.97754,-0.30078 z"
+           style="fill:#d0d0d0"
+           id="path9265" />
+        <path
+           d="m 137.4817,306.83728 h 4.68946 v 1.16211 h -6.2002 v -1.16211 q 1.27832,-1.34668 2.23535,-2.37891 0.95704,-1.03222 1.31934,-1.45605 0.68359,-0.83399 0.92285,-1.34668 0.23926,-0.51953 0.23926,-1.05957 0,-0.85449 -0.50586,-1.33984 -0.49902,-0.48536 -1.37402,-0.48536 -0.62207,0 -1.30567,0.22559 -0.68359,0.22559 -1.44922,0.68359 v -1.39453 q 0.70411,-0.33496 1.38086,-0.50586 0.6836,-0.1709 1.34668,-0.1709 1.49707,0 2.40625,0.79981 0.91602,0.79297 0.91602,2.08496 0,0.65625 -0.30762,1.3125 -0.30078,0.65625 -0.98437,1.44922 -0.38282,0.44433 -1.11426,1.23047 -0.72461,0.78613 -2.21485,2.35156 z"
+           style="fill:#d0d0d0"
+           id="path9267" />
+        <path
+           d="m 145.7498,296.69275 h 1.09375 q 1.03223,1.61328 1.53809,3.1582 0.50586,1.54492 0.50586,3.06934 0,1.53808 -0.50586,3.08301 -0.50586,1.54492 -1.53809,3.1582 h -1.09375 q 0.90918,-1.58594 1.35352,-3.1377 0.45117,-1.55175 0.45117,-3.10351 0,-1.5586 -0.45117,-3.11035 -0.44434,-1.55176 -1.35352,-3.11719 z"
+           style="fill:#d0d0d0"
+           id="path9269" />
+        <path
+           d="m 167.41302,303.25525 v 4.74414 h -1.26464 v -4.74414 q 0,-1.03223 -0.36231,-1.51758 -0.3623,-0.48535 -1.13476,-0.48535 -0.88184,0 -1.36036,0.62891 -0.47168,0.62207 -0.47168,1.79101 v 4.32715 h -1.25781 v -7.65625 h 1.25781 v 1.14844 q 0.33497,-0.65625 0.90918,-0.99121 0.57422,-0.3418 1.36036,-0.3418 1.16894,0 1.74316,0.77246 0.58105,0.76563 0.58105,2.32422 z"
+           style="fill:#d0d0d0"
+           id="path9271" />
+        <path
+           d="m 174.94281,304.1781 q 0,-1.46289 -0.46484,-2.20801 -0.46485,-0.74511 -1.37403,-0.74511 -0.91601,0 -1.38769,0.75195 -0.47168,0.74512 -0.47168,2.20117 0,1.44922 0.47168,2.20117 0.47168,0.75196 1.38769,0.75196 0.90918,0 1.37403,-0.74512 0.46484,-0.74512 0.46484,-2.20801 z m -3.69824,-2.85742 q 0.30078,-0.56055 0.82715,-0.86133 0.5332,-0.30078 1.23047,-0.30078 1.38085,0 2.17382,1.06641 0.79297,1.05957 0.79297,2.92578 0,1.89355 -0.7998,2.97363 -0.79297,1.07324 -2.18067,1.07324 -0.68359,0 -1.20996,-0.29394 -0.51953,-0.30078 -0.83398,-0.86817 v 0.96387 h -1.25781 v -10.63672 h 1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9273" />
+        <path
+           d="m 179.25636,300.37048 h 3.21973 v 6.65137 h 2.49512 v 0.97754 h -6.24805 v -0.97754 h 2.49512 v -5.67383 h -1.96192 z m 1.96192,-2.97363 h 1.25781 v 1.58594 h -1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9275" />
+        <path
+           d="m 189.73245,298.16931 v 2.17383 h 2.85742 v 0.97754 h -2.85742 v 4.15625 q 0,0.84765 0.32129,1.18262 0.32129,0.33496 1.1211,0.33496 h 1.41503 v 1.00488 h -1.53808 q -1.41504,0 -1.9961,-0.56738 -0.58105,-0.56739 -0.58105,-1.95508 v -4.15625 h -2.04395 v -0.97754 h 2.04395 v -2.17383 z"
+           style="fill:#d0d0d0"
+           id="path9277" />
+        <path
+           d="m 200.61533,300.60974 v 1.23047 q -0.54004,-0.31445 -1.08692,-0.47168 -0.54687,-0.15723 -1.11426,-0.15723 -0.85449,0 -1.27832,0.28028 -0.41699,0.27343 -0.41699,0.84082 0,0.51269 0.31445,0.76562 0.31446,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93653,0.17774 1.41504,0.71094 0.48535,0.5332 0.48535,1.3877 0,1.13476 -0.80664,1.77734 -0.80664,0.63574 -2.24218,0.63574 -0.56739,0 -1.18946,-0.12305 -0.62207,-0.11621 -1.34668,-0.35546 v -1.29883 q 0.7041,0.3623 1.34668,0.54687 0.64258,0.17774 1.2168,0.17774 0.83398,0 1.29199,-0.33496 0.45801,-0.3418 0.45801,-0.9502 0,-0.875 -1.6748,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08692,-0.21192 -1.58594,-0.71094 -0.49902,-0.50586 -0.49902,-1.37403 0,-1.10058 0.74511,-1.69531 0.74512,-0.60156 2.12598,-0.60156 0.61524,0 1.18262,0.11621 0.56738,0.10938 1.11426,0.33496 z"
+           style="fill:#d0d0d0"
+           id="path9279" />
+        <path
+           d="m 203.00452,304.58142 h 7.22558 v 1.15527 h -7.22558 z m 0,-3.21973 h 7.22558 v 1.15528 h -7.22558 z"
+           style="fill:#d0d0d0"
+           id="path9281" />
+        <path
+           d="m 215.56219,304.03455 v 2.96679 q 0.75196,-0.0205 1.17579,-0.41699 0.42382,-0.39648 0.42382,-1.08008 0,-0.63574 -0.38281,-0.98437 -0.38281,-0.35547 -1.2168,-0.48535 z m -0.68359,-1.29883 v -2.82324 q -0.71094,0.0273 -1.11426,0.41015 -0.39648,0.38281 -0.39648,1.02539 0,0.58789 0.36914,0.92969 0.37598,0.3418 1.1416,0.45801 z m 0.68359,7.32129 h -0.68359 l -0.007,-2.05762 q -0.69727,-0.0342 -1.3877,-0.19141 -0.68359,-0.15722 -1.35352,-0.4375 v -1.23047 q 0.6836,0.42383 1.37403,0.64942 0.69726,0.22558 1.37402,0.23926 v -3.13086 q -1.36719,-0.21192 -2.05762,-0.83399 -0.69043,-0.62207 -0.69043,-1.64746 0,-1.07324 0.71778,-1.70898 0.72461,-0.64258 2.03027,-0.73828 v -1.60645 h 0.68359 l 0.007,1.60645 q 0.54004,0.0342 1.09375,0.13671 0.55371,0.10254 1.12793,0.28028 v 1.18262 q -0.58105,-0.29395 -1.13477,-0.45118 -0.54687,-0.16406 -1.09375,-0.1914 v 2.94629 q 1.40821,0.21191 2.14649,0.875 0.73828,0.66308 0.73828,1.71582 0,1.05273 -0.7998,1.75683 -0.79297,0.7041 -2.07813,0.76563 z"
+           style="fill:#d0d0d0"
+           id="path9283" />
+        <path
+           d="m 225.11545,296.69275 q -0.90918,1.55859 -1.36035,3.11035 -0.44434,1.54492 -0.44434,3.11719 0,1.56543 0.44434,3.11719 0.45117,1.55175 1.36035,3.12402 h -1.09375 q -1.03223,-1.62695 -1.53809,-3.16504 -0.50586,-1.54492 -0.50586,-3.07617 0,-1.52442 0.50586,-3.06934 0.50586,-1.54492 1.53809,-3.1582 z"
+           style="fill:#d0d0d0"
+           id="path9285" />
+        <path
+           d="m 233.5442,296.69275 q -0.90917,1.55859 -1.36035,3.11035 -0.44433,1.54492 -0.44433,3.11719 0,1.56543 0.44433,3.11719 0.45118,1.55175 1.36035,3.12402 h -1.09375 q -1.03222,-1.62695 -1.53808,-3.16504 -0.50586,-1.54492 -0.50586,-3.07617 0,-1.52442 0.50586,-3.06934 0.50586,-1.54492 1.53808,-3.1582 z"
+           style="fill:#d0d0d0"
+           id="path9287" />
+        <path
+           d="m 243.31285,303.25525 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03223 -0.3623,-1.51758 -0.36231,-0.48535 -1.13477,-0.48535 -0.88183,0 -1.36035,0.62891 -0.47168,0.62207 -0.47168,1.79101 v 4.32715 h -1.25781 v -7.65625 h 1.25781 v 1.14844 q 0.33496,-0.65625 0.90918,-0.99121 0.57422,-0.3418 1.36035,-0.3418 1.16895,0 1.74317,0.77246 0.58105,0.76563 0.58105,2.32422 z"
+           style="fill:#d0d0d0"
+           id="path9289" />
+        <path
+           d="m 250.84265,304.1781 q 0,-1.46289 -0.46484,-2.20801 -0.46485,-0.74511 -1.37403,-0.74511 -0.91601,0 -1.38769,0.75195 -0.47168,0.74512 -0.47168,2.20117 0,1.44922 0.47168,2.20117 0.47168,0.75196 1.38769,0.75196 0.90918,0 1.37403,-0.74512 0.46484,-0.74512 0.46484,-2.20801 z m -3.69824,-2.85742 q 0.30078,-0.56055 0.82715,-0.86133 0.5332,-0.30078 1.23047,-0.30078 1.38086,0 2.17382,1.06641 0.79297,1.05957 0.79297,2.92578 0,1.89355 -0.7998,2.97363 -0.79297,1.07324 -2.18067,1.07324 -0.68359,0 -1.20996,-0.29394 -0.51953,-0.30078 -0.83398,-0.86817 v 0.96387 h -1.25781 v -10.63672 h 1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9291" />
+        <path
+           d="m 255.15619,300.37048 h 3.21973 v 6.65137 h 2.49511 v 0.97754 h -6.24804 v -0.97754 h 2.49511 v -5.67383 h -1.96191 z m 1.96191,-2.97363 h 1.25782 v 1.58594 h -1.25782 z"
+           style="fill:#d0d0d0"
+           id="path9293" />
+        <path
+           d="m 265.63229,298.16931 v 2.17383 h 2.85743 v 0.97754 h -2.85743 v 4.15625 q 0,0.84765 0.32129,1.18262 0.32129,0.33496 1.1211,0.33496 h 1.41504 v 1.00488 h -1.53809 q -1.41504,0 -1.99609,-0.56738 -0.58106,-0.56739 -0.58106,-1.95508 v -4.15625 h -2.04394 v -0.97754 h 2.04394 v -2.17383 z"
+           style="fill:#d0d0d0"
+           id="path9295" />
+        <path
+           d="m 276.51517,300.60974 v 1.23047 q -0.54004,-0.31445 -1.08692,-0.47168 -0.54687,-0.15723 -1.11425,-0.15723 -0.8545,0 -1.27832,0.28028 -0.417,0.27343 -0.417,0.84082 0,0.51269 0.31446,0.76562 0.31445,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93652,0.17774 1.41503,0.71094 0.48536,0.5332 0.48536,1.3877 0,1.13476 -0.80664,1.77734 -0.80665,0.63574 -2.24219,0.63574 -0.56739,0 -1.18946,-0.12305 -0.62207,-0.11621 -1.34668,-0.35546 v -1.29883 q 0.70411,0.3623 1.34668,0.54687 0.64258,0.17774 1.2168,0.17774 0.83399,0 1.29199,-0.33496 0.45801,-0.3418 0.45801,-0.9502 0,-0.875 -1.6748,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08691,-0.21192 -1.58594,-0.71094 -0.49902,-0.50586 -0.49902,-1.37403 0,-1.10058 0.74512,-1.69531 0.74511,-0.60156 2.12597,-0.60156 0.61524,0 1.18262,0.11621 0.56738,0.10938 1.11426,0.33496 z"
+           style="fill:#d0d0d0"
+           id="path9297" />
+        <path
+           d="m 283.22467,299.94666 v 3.02832 h 3.04199 v 1.15527 h -3.04199 v 3.02832 h -1.14844 v -3.02832 h -3.03515 v -1.15527 h 3.03515 v -3.02832 z"
+           style="fill:#d0d0d0"
+           id="path9299" />
+        <path
+           d="m 289.28137,306.83728 h 4.68946 v 1.16211 h -6.2002 v -1.16211 q 1.27832,-1.34668 2.23535,-2.37891 0.95703,-1.03222 1.31934,-1.45605 0.68359,-0.83399 0.92285,-1.34668 0.23926,-0.51953 0.23926,-1.05957 0,-0.85449 -0.50586,-1.33984 -0.49903,-0.48536 -1.37403,-0.48536 -0.62207,0 -1.30566,0.22559 -0.68359,0.22559 -1.44922,0.68359 v -1.39453 q 0.7041,-0.33496 1.38086,-0.50586 0.68359,-0.1709 1.34668,-0.1709 1.49707,0 2.40625,0.79981 0.91602,0.79297 0.91602,2.08496 0,0.65625 -0.30762,1.3125 -0.30078,0.65625 -0.98438,1.44922 -0.38281,0.44433 -1.11425,1.23047 -0.72461,0.78613 -2.21485,2.35156 z"
+           style="fill:#d0d0d0"
+           id="path9301" />
+        <path
+           d="m 297.54947,296.69275 h 1.09375 q 1.03223,1.61328 1.53808,3.1582 0.50586,1.54492 0.50586,3.06934 0,1.53808 -0.50586,3.08301 -0.50585,1.54492 -1.53808,3.1582 h -1.09375 q 0.90918,-1.58594 1.35351,-3.1377 0.45118,-1.55175 0.45118,-3.10351 0,-1.5586 -0.45118,-3.11035 -0.44433,-1.55176 -1.35351,-3.11719 z"
+           style="fill:#d0d0d0"
+           id="path9303" />
+        <path
+           d="m 305.97824,296.69275 h 1.09375 q 1.03223,1.61328 1.53809,3.1582 0.50586,1.54492 0.50586,3.06934 0,1.53808 -0.50586,3.08301 -0.50586,1.54492 -1.53809,3.1582 h -1.09375 q 0.90918,-1.58594 1.35352,-3.1377 0.45117,-1.55175 0.45117,-3.10351 0,-1.5586 -0.45117,-3.11035 -0.44434,-1.55176 -1.35352,-3.11719 z"
+           style="fill:#d0d0d0"
+           id="path9305" />
+        <path
+           d="m 315.05981,305.53162 h 2.13282 v 1.81152 l -1.34668,2.61133 h -1.46289 l 0.67675,-2.61133 z m -0.0889,-5.18164 h 2.13281 v 2.46777 h -2.13281 z"
+           style="fill:#d0d0d0"
+           id="path9307" />
+        <path
+           d="m 323.48859,305.53162 h 2.13281 v 1.81152 l -1.34668,2.61133 h -1.46289 l 0.67676,-2.61133 z m -0.0889,-5.18164 h 2.13281 v 2.46777 h -2.13281 z"
+           style="fill:#d0d0d0"
+           id="path9309" />
+        <path
+           d="m 1.8457031,326.44528 h 2.1464844 v -7.71094 l -2.5703125,1.23731 v -1.32617 l 2.5566406,-1.2168 H 5.359375 v 9.0166 h 2.1191406 v 1.15528 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path9311" />
+        <path
+           d="m 10.274482,326.44528 h 2.146484 v -7.71094 l -2.5703124,1.23731 v -1.32617 l 2.5566404,-1.2168 h 1.38086 v 9.0166 h 2.11914 v 1.15528 h -5.632812 z"
+           style="fill:#4e4e4e"
+           id="path9313" />
+        <path
+           d="m 21.078701,322.75388 q -0.922852,0 -1.428711,0.51953 -0.499023,0.51269 -0.499023,1.45605 0,0.94336 0.505859,1.46973 0.512695,0.51953 1.421875,0.51953 0.929688,0 1.428711,-0.5127 0.505859,-0.51953 0.505859,-1.47656 0,-0.93652 -0.512695,-1.45605 -0.505859,-0.51953 -1.421875,-0.51953 z m -1.203125,-0.57422 q -0.881836,-0.22559 -1.380859,-0.84082 -0.492188,-0.61524 -0.492188,-1.4834 0,-1.2168 0.827149,-1.92774 0.827148,-0.71777 2.249023,-0.71777 1.428711,0 2.255859,0.71777 0.827149,0.71094 0.827149,1.92774 0,0.86816 -0.499024,1.4834 -0.492187,0.61523 -1.374023,0.84082 1.025391,0.22558 1.56543,0.90918 0.546875,0.68359 0.546875,1.7705 0,1.38086 -0.881836,2.16016 -0.881836,0.7793 -2.44043,0.7793 -1.558594,0 -2.44043,-0.77246 -0.875,-0.7793 -0.875,-2.15332 0,-1.09375 0.540039,-1.77735 0.546875,-0.69043 1.572266,-0.91601 z m -0.499023,-2.19434 q 0,0.82031 0.4375,1.25098 0.4375,0.43066 1.264648,0.43066 0.833984,0 1.271484,-0.43066 0.4375,-0.43067 0.4375,-1.25098 0,-0.83398 -0.4375,-1.27148 -0.430664,-0.4375 -1.271484,-0.4375 -0.827148,0 -1.264648,0.44433 -0.4375,0.4375 -0.4375,1.26465 z"
+           style="fill:#4e4e4e"
+           id="path9315" />
+        <path
+           d="m 119.90984,326.44528 h 2.14649 v -7.71094 l -2.57031,1.23731 v -1.32617 l 2.55664,-1.2168 h 1.38086 v 9.0166 h 2.11914 v 1.15528 h -5.63282 z"
+           style="fill:#d0d0d0"
+           id="path9317" />
+        <path
+           d="m 129.05293,326.43845 h 4.68946 v 1.16211 h -6.2002 v -1.16211 q 1.27832,-1.34668 2.23535,-2.37891 0.95703,-1.03223 1.31934,-1.45605 0.68359,-0.83399 0.92285,-1.34668 0.23926,-0.51954 0.23926,-1.05957 0,-0.8545 -0.50586,-1.33985 -0.49903,-0.48535 -1.37403,-0.48535 -0.62207,0 -1.30566,0.22559 -0.68359,0.22558 -1.44922,0.68359 v -1.39453 q 0.7041,-0.33496 1.38086,-0.50586 0.68359,-0.1709 1.34668,-0.1709 1.49707,0 2.40625,0.79981 0.91602,0.79296 0.91602,2.08496 0,0.65625 -0.30762,1.3125 -0.30078,0.65625 -0.98438,1.44921 -0.38281,0.44434 -1.11425,1.23047 -0.72461,0.78614 -2.21485,2.35157 z"
+           style="fill:#d0d0d0"
+           id="path9319" />
+        <path
+           d="m 139.14284,322.75388 q -0.92285,0 -1.42871,0.51953 -0.49903,0.51269 -0.49903,1.45605 0,0.94336 0.50586,1.46973 0.5127,0.51953 1.42188,0.51953 0.92969,0 1.42871,-0.5127 0.50586,-0.51953 0.50586,-1.47656 0,-0.93652 -0.5127,-1.45605 -0.50586,-0.51953 -1.42187,-0.51953 z m -1.20313,-0.57422 q -0.88183,-0.22559 -1.38086,-0.84082 -0.49218,-0.61524 -0.49218,-1.4834 0,-1.2168 0.82714,-1.92774 0.82715,-0.71777 2.24903,-0.71777 1.42871,0 2.25586,0.71777 0.82715,0.71094 0.82715,1.92774 0,0.86816 -0.49903,1.4834 -0.49219,0.61523 -1.37402,0.84082 1.02539,0.22558 1.56543,0.90918 0.54687,0.68359 0.54687,1.7705 0,1.38086 -0.88183,2.16016 -0.88184,0.7793 -2.44043,0.7793 -1.5586,0 -2.44043,-0.77246 -0.875,-0.7793 -0.875,-2.15332 0,-1.09375 0.54004,-1.77735 0.54687,-0.69043 1.57226,-0.91601 z m -0.49902,-2.19434 q 0,0.82031 0.4375,1.25098 0.4375,0.43066 1.26465,0.43066 0.83398,0 1.27148,-0.43066 0.4375,-0.43067 0.4375,-1.25098 0,-0.83398 -0.4375,-1.27148 -0.43066,-0.4375 -1.27148,-0.4375 -0.82715,0 -1.26465,0.44433 -0.4375,0.4375 -0.4375,1.26465 z"
+           style="fill:#d0d0d0"
+           id="path9321" />
+        <path
+           d="m 145.7498,316.29391 h 1.09375 q 1.03223,1.61329 1.53809,3.15821 0.50586,1.54492 0.50586,3.06933 0,1.53809 -0.50586,3.08301 -0.50586,1.54492 -1.53809,3.1582 h -1.09375 q 0.90918,-1.58593 1.35352,-3.13769 0.45117,-1.55176 0.45117,-3.10352 0,-1.55859 -0.45117,-3.11035 -0.44434,-1.55176 -1.35352,-3.11719 z"
+           style="fill:#d0d0d0"
+           id="path9323" />
+        <path
+           d="m 167.41302,322.85641 v 4.74415 h -1.26464 v -4.74415 q 0,-1.03222 -0.36231,-1.51757 -0.3623,-0.48535 -1.13476,-0.48535 -0.88184,0 -1.36036,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.25781 v -7.65625 h 1.25781 v 1.14843 q 0.33497,-0.65625 0.90918,-0.99121 0.57422,-0.34179 1.36036,-0.34179 1.16894,0 1.74316,0.77246 0.58105,0.76562 0.58105,2.32421 z"
+           style="fill:#d0d0d0"
+           id="path9325" />
+        <path
+           d="m 174.94281,323.77927 q 0,-1.46289 -0.46484,-2.20801 -0.46485,-0.74512 -1.37403,-0.74512 -0.91601,0 -1.38769,0.75195 -0.47168,0.74512 -0.47168,2.20118 0,1.44922 0.47168,2.20117 0.47168,0.75195 1.38769,0.75195 0.90918,0 1.37403,-0.74512 0.46484,-0.74511 0.46484,-2.208 z m -3.69824,-2.85743 q 0.30078,-0.56054 0.82715,-0.86132 0.5332,-0.30078 1.23047,-0.30078 1.38085,0 2.17382,1.0664 0.79297,1.05957 0.79297,2.92578 0,1.89356 -0.7998,2.97364 -0.79297,1.07324 -2.18067,1.07324 -0.68359,0 -1.20996,-0.29395 -0.51953,-0.30078 -0.83398,-0.86816 v 0.96387 h -1.25781 v -10.63672 h 1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9327" />
+        <path
+           d="m 179.25636,319.97165 h 3.21973 v 6.65137 h 2.49512 v 0.97754 h -6.24805 v -0.97754 h 2.49512 v -5.67383 h -1.96192 z m 1.96192,-2.97363 h 1.25781 v 1.58593 h -1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9329" />
+        <path
+           d="m 189.73245,317.77048 v 2.17383 h 2.85742 v 0.97753 h -2.85742 v 4.15625 q 0,0.84766 0.32129,1.18262 0.32129,0.33496 1.1211,0.33496 h 1.41503 v 1.00489 h -1.53808 q -1.41504,0 -1.9961,-0.56739 -0.58105,-0.56738 -0.58105,-1.95508 v -4.15625 h -2.04395 v -0.97753 h 2.04395 v -2.17383 z"
+           style="fill:#d0d0d0"
+           id="path9331" />
+        <path
+           d="m 200.61533,320.21091 v 1.23047 q -0.54004,-0.31446 -1.08692,-0.47168 -0.54687,-0.15723 -1.11426,-0.15723 -0.85449,0 -1.27832,0.28027 -0.41699,0.27344 -0.41699,0.84082 0,0.5127 0.31445,0.76563 0.31446,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93653,0.17773 1.41504,0.71094 0.48535,0.5332 0.48535,1.38769 0,1.13477 -0.80664,1.77735 -0.80664,0.63574 -2.24218,0.63574 -0.56739,0 -1.18946,-0.12305 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29883 q 0.7041,0.36231 1.34668,0.54688 0.64258,0.17773 1.2168,0.17773 0.83398,0 1.29199,-0.33496 0.45801,-0.34179 0.45801,-0.95019 0,-0.875 -1.6748,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08692,-0.21191 -1.58594,-0.71094 -0.49902,-0.50586 -0.49902,-1.37402 0,-1.10059 0.74511,-1.69531 0.74512,-0.60156 2.12598,-0.60156 0.61524,0 1.18262,0.11621 0.56738,0.10937 1.11426,0.33496 z"
+           style="fill:#d0d0d0"
+           id="path9333" />
+        <path
+           d="m 203.00452,324.18259 h 7.22558 v 1.15527 h -7.22558 z m 0,-3.21973 h 7.22558 v 1.15527 h -7.22558 z"
+           style="fill:#d0d0d0"
+           id="path9335" />
+        <path
+           d="m 215.56219,323.63571 v 2.9668 q 0.75196,-0.0205 1.17579,-0.41699 0.42382,-0.39649 0.42382,-1.08008 0,-0.63574 -0.38281,-0.98438 -0.38281,-0.35547 -1.2168,-0.48535 z m -0.68359,-1.29883 v -2.82324 q -0.71094,0.0274 -1.11426,0.41016 -0.39648,0.38281 -0.39648,1.02539 0,0.58789 0.36914,0.92969 0.37598,0.34179 1.1416,0.458 z m 0.68359,7.32129 h -0.68359 l -0.007,-2.05761 q -0.69727,-0.0342 -1.3877,-0.19141 -0.68359,-0.15723 -1.35352,-0.4375 v -1.23047 q 0.6836,0.42383 1.37403,0.64941 0.69726,0.22559 1.37402,0.23926 v -3.13086 q -1.36719,-0.21191 -2.05762,-0.83398 -0.69043,-0.62207 -0.69043,-1.64746 0,-1.07324 0.71778,-1.70899 0.72461,-0.64257 2.03027,-0.73828 v -1.60644 h 0.68359 l 0.007,1.60644 q 0.54004,0.0342 1.09375,0.13672 0.55371,0.10254 1.12793,0.28027 v 1.18262 q -0.58105,-0.29394 -1.13477,-0.45117 -0.54687,-0.16406 -1.09375,-0.19141 v 2.94629 q 1.40821,0.21192 2.14649,0.875 0.73828,0.66309 0.73828,1.71582 0,1.05274 -0.7998,1.75684 -0.79297,0.7041 -2.07813,0.76562 z"
+           style="fill:#d0d0d0"
+           id="path9337" />
+        <path
+           d="m 225.11545,316.29391 q -0.90918,1.5586 -1.36035,3.11036 -0.44434,1.54492 -0.44434,3.11718 0,1.56543 0.44434,3.11719 0.45117,1.55176 1.36035,3.12402 h -1.09375 q -1.03223,-1.62695 -1.53809,-3.16503 -0.50586,-1.54493 -0.50586,-3.07618 0,-1.52441 0.50586,-3.06933 0.50586,-1.54492 1.53809,-3.15821 z"
+           style="fill:#d0d0d0"
+           id="path9339" />
+        <path
+           d="m 233.5442,316.29391 q -0.90917,1.5586 -1.36035,3.11036 -0.44433,1.54492 -0.44433,3.11718 0,1.56543 0.44433,3.11719 0.45118,1.55176 1.36035,3.12402 h -1.09375 q -1.03222,-1.62695 -1.53808,-3.16503 -0.50586,-1.54493 -0.50586,-3.07618 0,-1.52441 0.50586,-3.06933 0.50586,-1.54492 1.53808,-3.15821 z"
+           style="fill:#d0d0d0"
+           id="path9341" />
+        <path
+           d="m 243.31285,322.85641 v 4.74415 h -1.26465 v -4.74415 q 0,-1.03222 -0.3623,-1.51757 -0.36231,-0.48535 -1.13477,-0.48535 -0.88183,0 -1.36035,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.25781 v -7.65625 h 1.25781 v 1.14843 q 0.33496,-0.65625 0.90918,-0.99121 0.57422,-0.34179 1.36035,-0.34179 1.16895,0 1.74317,0.77246 0.58105,0.76562 0.58105,2.32421 z"
+           style="fill:#d0d0d0"
+           id="path9343" />
+        <path
+           d="m 250.84265,323.77927 q 0,-1.46289 -0.46484,-2.20801 -0.46485,-0.74512 -1.37403,-0.74512 -0.91601,0 -1.38769,0.75195 -0.47168,0.74512 -0.47168,2.20118 0,1.44922 0.47168,2.20117 0.47168,0.75195 1.38769,0.75195 0.90918,0 1.37403,-0.74512 0.46484,-0.74511 0.46484,-2.208 z m -3.69824,-2.85743 q 0.30078,-0.56054 0.82715,-0.86132 0.5332,-0.30078 1.23047,-0.30078 1.38086,0 2.17382,1.0664 0.79297,1.05957 0.79297,2.92578 0,1.89356 -0.7998,2.97364 -0.79297,1.07324 -2.18067,1.07324 -0.68359,0 -1.20996,-0.29395 -0.51953,-0.30078 -0.83398,-0.86816 v 0.96387 h -1.25781 v -10.63672 h 1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9345" />
+        <path
+           d="m 255.15619,319.97165 h 3.21973 v 6.65137 h 2.49511 v 0.97754 h -6.24804 v -0.97754 h 2.49511 v -5.67383 h -1.96191 z m 1.96191,-2.97363 h 1.25782 v 1.58593 h -1.25782 z"
+           style="fill:#d0d0d0"
+           id="path9347" />
+        <path
+           d="m 265.63229,317.77048 v 2.17383 h 2.85743 v 0.97753 h -2.85743 v 4.15625 q 0,0.84766 0.32129,1.18262 0.32129,0.33496 1.1211,0.33496 h 1.41504 v 1.00489 h -1.53809 q -1.41504,0 -1.99609,-0.56739 -0.58106,-0.56738 -0.58106,-1.95508 v -4.15625 h -2.04394 v -0.97753 h 2.04394 v -2.17383 z"
+           style="fill:#d0d0d0"
+           id="path9349" />
+        <path
+           d="m 276.51517,320.21091 v 1.23047 q -0.54004,-0.31446 -1.08692,-0.47168 -0.54687,-0.15723 -1.11425,-0.15723 -0.8545,0 -1.27832,0.28027 -0.417,0.27344 -0.417,0.84082 0,0.5127 0.31446,0.76563 0.31445,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93652,0.17773 1.41503,0.71094 0.48536,0.5332 0.48536,1.38769 0,1.13477 -0.80664,1.77735 -0.80665,0.63574 -2.24219,0.63574 -0.56739,0 -1.18946,-0.12305 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29883 q 0.70411,0.36231 1.34668,0.54688 0.64258,0.17773 1.2168,0.17773 0.83399,0 1.29199,-0.33496 0.45801,-0.34179 0.45801,-0.95019 0,-0.875 -1.6748,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08691,-0.21191 -1.58594,-0.71094 -0.49902,-0.50586 -0.49902,-1.37402 0,-1.10059 0.74512,-1.69531 0.74511,-0.60156 2.12597,-0.60156 0.61524,0 1.18262,0.11621 0.56738,0.10937 1.11426,0.33496 z"
+           style="fill:#d0d0d0"
+           id="path9351" />
+        <path
+           d="m 283.22467,319.54782 v 3.02832 h 3.04199 v 1.15527 h -3.04199 v 3.02833 h -1.14844 v -3.02833 h -3.03515 v -1.15527 h 3.03515 v -3.02832 z"
+           style="fill:#d0d0d0"
+           id="path9353" />
+        <path
+           d="m 288.57727,326.44528 h 2.14648 v -7.71094 l -2.57031,1.23731 v -1.32617 l 2.55664,-1.2168 h 1.38086 v 9.0166 h 2.11914 v 1.15528 h -5.63281 z"
+           style="fill:#d0d0d0"
+           id="path9355" />
+        <path
+           d="m 297.54947,316.29391 h 1.09375 q 1.03223,1.61329 1.53808,3.15821 0.50586,1.54492 0.50586,3.06933 0,1.53809 -0.50586,3.08301 -0.50585,1.54492 -1.53808,3.1582 h -1.09375 q 0.90918,-1.58593 1.35351,-3.13769 0.45118,-1.55176 0.45118,-3.10352 0,-1.55859 -0.45118,-3.11035 -0.44433,-1.55176 -1.35351,-3.11719 z"
+           style="fill:#d0d0d0"
+           id="path9357" />
+        <path
+           d="m 305.97824,316.29391 h 1.09375 q 1.03223,1.61329 1.53809,3.15821 0.50586,1.54492 0.50586,3.06933 0,1.53809 -0.50586,3.08301 -0.50586,1.54492 -1.53809,3.1582 h -1.09375 q 0.90918,-1.58593 1.35352,-3.13769 0.45117,-1.55176 0.45117,-3.10352 0,-1.55859 -0.45117,-3.11035 -0.44434,-1.55176 -1.35352,-3.11719 z"
+           style="fill:#d0d0d0"
+           id="path9359" />
+        <path
+           d="m 315.05981,325.13278 h 2.13282 v 1.81153 l -1.34668,2.61132 h -1.46289 l 0.67675,-2.61132 z m -0.0889,-5.18164 h 2.13281 v 2.46777 h -2.13281 z"
+           style="fill:#d0d0d0"
+           id="path9361" />
+        <path
+           d="m 323.48859,325.13278 h 2.13281 v 1.81153 l -1.34668,2.61132 h -1.46289 l 0.67676,-2.61132 z m -0.0889,-5.18164 h 2.13281 v 2.46777 h -2.13281 z"
+           style="fill:#d0d0d0"
+           id="path9363" />
+        <path
+           d="m 1.8457031,346.04651 h 2.1464844 v -7.71094 l -2.5703125,1.23731 v -1.32618 l 2.5566406,-1.21679 H 5.359375 v 9.0166 h 2.1191406 v 1.15527 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path9365" />
+        <path
+           d="m 10.274482,346.04651 h 2.146484 v -7.71094 l -2.5703124,1.23731 v -1.32618 l 2.5566404,-1.21679 h 1.38086 v 9.0166 h 2.11914 v 1.15527 h -5.632812 z"
+           style="fill:#4e4e4e"
+           id="path9367" />
+        <path
+           d="m 20.941982,342.67639 q 0.881836,0 1.38086,-0.63574 0.505859,-0.63574 0.505859,-1.75684 0,-1.12109 -0.505859,-1.75683 -0.499024,-0.63574 -1.38086,-0.63574 -0.916015,0 -1.380859,0.60839 -0.464844,0.60157 -0.464844,1.78418 0,1.18946 0.458008,1.79102 0.464844,0.60156 1.387695,0.60156 z m -2.460937,4.31348 v -1.27149 q 0.430664,0.25293 0.916015,0.38965 0.485352,0.12989 1.011719,0.12989 1.3125,0 1.982422,-0.98438 0.676758,-0.99121 0.676758,-2.91211 -0.321289,0.68359 -0.902344,1.05274 -0.581055,0.3623 -1.333008,0.3623 -1.476562,0 -2.290039,-0.90918 -0.80664,-0.90918 -0.80664,-2.57715 0,-1.64746 0.827148,-2.5498 0.833984,-0.90918 2.351563,-0.90918 1.777343,0 2.604492,1.27832 0.827148,1.27832 0.827148,4.01953 0,2.57715 -0.998047,3.9375 -0.991211,1.35351 -2.884765,1.35351 -0.499024,0 -1.004883,-0.10937 -0.50586,-0.10254 -0.977539,-0.30078 z"
+           style="fill:#4e4e4e"
+           id="path9369" />
+        <path
+           d="m 122.27508,336.84534 q 1.63379,0 2.46777,1.333 0.84082,1.33301 0.84082,3.94434 0,2.61133 -0.84082,3.94434 -0.83398,1.333 -2.46777,1.333 -1.63379,0 -2.46778,-1.333 -0.83398,-1.33301 -0.83398,-3.94434 0,-2.61133 0.83398,-3.94434 0.83399,-1.333 2.46778,-1.333 z m 0,9.46093 q 0.9707,0 1.44238,-1.03222 0.47852,-1.03223 0.47852,-3.15137 0,-1.12793 -0.13672,-2.03711 l -3.25391,5.09277 q 0.5127,1.12793 1.46973,1.12793 z m 0,-8.36718 q -0.96387,0 -1.44238,1.03222 -0.47168,1.03223 -0.47168,3.15137 0,0.96387 0.12988,1.80469 l 3.18555,-5.0791 q -0.51954,-0.90918 -1.40137,-0.90918 z"
+           style="fill:#d0d0d0"
+           id="path9371" />
+        <path
+           d="m 128.88203,335.89514 h 1.09375 q 1.03223,1.61328 1.53809,3.1582 0.50586,1.54493 0.50586,3.06934 0,1.53809 -0.50586,3.08301 -0.50586,1.54492 -1.53809,3.1582 h -1.09375 q 0.90918,-1.58594 1.35352,-3.13769 0.45117,-1.55176 0.45117,-3.10352 0,-1.55859 -0.45117,-3.11035 -0.44434,-1.55176 -1.35352,-3.11719 z"
+           style="fill:#d0d0d0"
+           id="path9373" />
+        <path
+           d="m 137.95338,344.73401 h 2.13282 v 1.81152 l -1.34668,2.61133 h -1.46289 l 0.67675,-2.61133 z m -0.0889,-5.18164 h 2.13281 v 2.46777 h -2.13281 z"
+           style="fill:#d0d0d0"
+           id="path9375" />
+        <path
+           d="m 146.39238,344.73401 h 2.13281 v 1.81152 l -1.34668,2.61133 h -1.46289 l 0.67676,-2.61133 z m -0.0889,-5.18164 h 2.13282 v 2.46777 h -2.13282 z"
+           style="fill:#d0d0d0"
+           id="path9377" />
+        <path
+           d="m 1.8457031,365.64764 h 2.1464844 v -7.71093 l -2.5703125,1.2373 v -1.32617 l 2.5566406,-1.2168 H 5.359375 v 9.0166 h 2.1191406 v 1.15528 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path9379" />
+        <path
+           d="m 10.978583,365.64081 h 4.689453 v 1.16211 H 9.4678411 v -1.16211 q 1.2783199,-1.34668 2.2353519,-2.37891 0.957031,-1.03222 1.319336,-1.45605 0.683593,-0.83399 0.922851,-1.34668 0.239258,-0.51953 0.239258,-1.05957 0,-0.8545 -0.505859,-1.33985 -0.499024,-0.48535 -1.374024,-0.48535 -0.62207,0 -1.305664,0.22559 -0.683594,0.22558 -1.4492186,0.68359 v -1.39453 q 0.7041016,-0.33496 1.3808596,-0.50586 0.683594,-0.1709 1.346679,-0.1709 1.497071,0 2.40625,0.79981 0.916016,0.79297 0.916016,2.08496 0,0.65625 -0.307617,1.3125 -0.300781,0.65625 -0.984375,1.44922 -0.382813,0.44433 -1.114258,1.23047 -0.724609,0.78613 -2.214844,2.35156 z"
+           style="fill:#4e4e4e"
+           id="path9381" />
+        <path
+           d="m 21.078701,356.44647 q 1.633789,0 2.467773,1.33301 0.840821,1.33301 0.840821,3.94434 0,2.61132 -0.840821,3.94433 -0.833984,1.33301 -2.467773,1.33301 -1.633789,0 -2.467773,-1.33301 -0.833985,-1.33301 -0.833985,-3.94433 0,-2.61133 0.833985,-3.94434 0.833984,-1.33301 2.467773,-1.33301 z m 0,9.46094 q 0.970703,0 1.442383,-1.03223 0.478515,-1.03222 0.478515,-3.15136 0,-1.12793 -0.136718,-2.03711 l -3.253907,5.09277 q 0.512696,1.12793 1.469727,1.12793 z m 0,-8.36719 q -0.963867,0 -1.442383,1.03223 -0.471679,1.03223 -0.471679,3.15137 0,0.96386 0.129882,1.80468 l 3.185547,-5.0791 q -0.519531,-0.90918 -1.401367,-0.90918 z"
+           style="fill:#4e4e4e"
+           id="path9383" />
+        <path
+           d="m 126.12371,360.84882 -3.03516,1.64062 3.03516,1.64746 -0.47851,0.83399 -2.85743,-1.71582 v 3.18554 h -0.97754 v -3.18554 l -2.85742,1.71582 -0.47851,-0.83399 3.04199,-1.64746 -3.04199,-1.64062 0.47851,-0.84082 2.85742,1.71582 v -3.18555 h 0.97754 v 3.18555 l 2.85743,-1.71582 z"
+           style="fill:#d0d0d0"
+           id="path9385" />
+        <path
+           d="m 128.88203,355.49628 h 1.09375 q 1.03223,1.61328 1.53809,3.1582 0.50586,1.54492 0.50586,3.06934 0,1.53808 -0.50586,3.083 -0.50586,1.54493 -1.53809,3.15821 h -1.09375 q 0.90918,-1.58594 1.35352,-3.1377 0.45117,-1.55176 0.45117,-3.10351 0,-1.5586 -0.45117,-3.11036 -0.44434,-1.55175 -1.35352,-3.11718 z"
+           style="fill:#d0d0d0"
+           id="path9387" />
+        <path
+           d="m 151.02715,362.34589 v 0.61523 h -5.44825 v 0.041 q -0.0547,1.56543 0.59473,2.24902 0.65625,0.68359 1.8457,0.68359 0.60157,0 1.25782,-0.1914 0.65625,-0.19141 1.40136,-0.58106 v 1.25098 q -0.71777,0.29394 -1.38769,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.06641 -1.00488,-1.07324 -1.00488,-2.95312 0,-1.83203 0.98437,-2.92578 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99121 0.90235,2.39258 z m -1.25782,-0.36914 q -0.082,-0.79297 -0.58105,-1.36719 -0.49219,-0.58106 -1.42188,-0.58106 -0.90918,0 -1.49707,0.60157 -0.58789,0.60156 -0.64258,1.35351 z"
+           style="fill:#d0d0d0"
+           id="path9389" />
+        <path
+           d="m 159.0526,366.41327 q -0.50586,0.29394 -1.0459,0.4375 -0.5332,0.15039 -1.09375,0.15039 -1.77735,0 -2.78223,-1.06641 -0.99804,-1.0664 -0.99804,-2.95312 0,-1.88672 0.99804,-2.95313 1.00488,-1.0664 2.78223,-1.0664 0.55371,0 1.08008,0.14355 0.52636,0.14356 1.05957,0.44434 v 1.31933 q -0.49903,-0.44433 -1.00489,-0.64257 -0.49902,-0.19825 -1.13476,-0.19825 -1.18262,0 -1.81836,0.76563 -0.63574,0.76562 -0.63574,2.1875 0,1.41504 0.63574,2.1875 0.64258,0.76562 1.81836,0.76562 0.65625,0 1.17578,-0.19824 0.51953,-0.20508 0.96387,-0.62891 z"
+           style="fill:#d0d0d0"
+           id="path9391" />
+        <path
+           d="m 167.41302,362.05878 v 4.74414 h -1.26464 v -4.74414 q 0,-1.03223 -0.36231,-1.51758 -0.3623,-0.48535 -1.13476,-0.48535 -0.88184,0 -1.36036,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.25781 V 356.1662 h 1.25781 v 4.1289 q 0.33497,-0.65625 0.90918,-0.99121 0.57422,-0.34179 1.36036,-0.34179 1.16894,0 1.74316,0.77246 0.58105,0.76562 0.58105,2.32422 z"
+           style="fill:#d0d0d0"
+           id="path9393" />
+        <path
+           d="m 172.87836,360.0285 q -0.95703,0 -1.44922,0.74512 -0.49219,0.74512 -0.49219,2.20801 0,1.45605 0.49219,2.20801 0.49219,0.74511 1.44922,0.74511 0.96386,0 1.45605,-0.74511 0.49219,-0.75196 0.49219,-2.20801 0,-1.46289 -0.49219,-2.20801 -0.49219,-0.74512 -1.45605,-0.74512 z m 0,-1.0664 q 1.59277,0 2.43359,1.03222 0.84766,1.03223 0.84766,2.98731 0,1.96191 -0.84082,2.99414 -0.84082,1.02539 -2.44043,1.02539 -1.59278,0 -2.4336,-1.02539 -0.84082,-1.03223 -0.84082,-2.99414 0,-1.95508 0.84082,-2.98731 0.84082,-1.03222 2.4336,-1.03222 z"
+           style="fill:#d0d0d0"
+           id="path9395" />
+        <path
+           d="m 191.99515,356.22772 v 4.1836 h -1.53125 v -4.1836 z m -3.64356,0 v 4.1836 h -1.53125 v -4.1836 z"
+           style="fill:#ffd787"
+           id="path9397" />
+        <path
+           d="m 195.31064,356.59686 h 6.05664 v 1.16211 h -4.67578 v 2.74805 h 4.4707 v 1.16211 h -4.4707 v 3.97168 h 4.80566 v 1.16211 h -6.18652 z"
+           style="fill:#ffd787"
+           id="path9399" />
+        <path
+           d="m 210.29846,360.72577 q -0.40332,-0.31445 -0.82031,-0.45801 -0.41699,-0.14355 -0.91602,-0.14355 -1.17578,0 -1.79785,0.73828 -0.62207,0.73828 -0.62207,2.13281 v 3.80762 h -1.26465 v -7.65625 h 1.26465 v 1.49707 q 0.31446,-0.81348 0.96387,-1.24414 0.65625,-0.4375 1.55176,-0.4375 0.46484,0 0.86816,0.11621 0.40332,0.11621 0.77246,0.3623 z"
+           style="fill:#ffd787"
+           id="path9401" />
+        <path
+           d="m 218.72723,360.72577 q -0.40332,-0.31445 -0.82031,-0.45801 -0.41699,-0.14355 -0.91601,-0.14355 -1.17579,0 -1.79786,0.73828 -0.62207,0.73828 -0.62207,2.13281 v 3.80762 h -1.26464 v -7.65625 h 1.26464 v 1.49707 q 0.31446,-0.81348 0.96387,-1.24414 0.65625,-0.4375 1.55176,-0.4375 0.46484,0 0.86816,0.11621 0.40332,0.11621 0.77246,0.3623 z"
+           style="fill:#ffd787"
+           id="path9403" />
+        <path
+           d="m 223.48166,360.0285 q -0.95703,0 -1.44922,0.74512 -0.49219,0.74512 -0.49219,2.20801 0,1.45605 0.49219,2.20801 0.49219,0.74511 1.44922,0.74511 0.96387,0 1.45605,-0.74511 0.49219,-0.75196 0.49219,-2.20801 0,-1.46289 -0.49219,-2.20801 -0.49218,-0.74512 -1.45605,-0.74512 z m 0,-1.0664 q 1.59277,0 2.43359,1.03222 0.84766,1.03223 0.84766,2.98731 0,1.96191 -0.84082,2.99414 -0.84082,1.02539 -2.44043,1.02539 -1.59277,0 -2.43359,-1.02539 -0.84083,-1.03223 -0.84083,-2.99414 0,-1.95508 0.84083,-2.98731 0.84082,-1.03222 2.43359,-1.03222 z"
+           style="fill:#ffd787"
+           id="path9405" />
+        <path
+           d="m 235.59499,360.72577 q -0.40332,-0.31445 -0.82032,-0.45801 -0.41699,-0.14355 -0.91601,-0.14355 -1.17578,0 -1.79785,0.73828 -0.62207,0.73828 -0.62207,2.13281 v 3.80762 h -1.26465 v -7.65625 h 1.26465 v 1.49707 q 0.31445,-0.81348 0.96386,-1.24414 0.65625,-0.4375 1.55176,-0.4375 0.46484,0 0.86817,0.11621 0.40332,0.11621 0.77246,0.3623 z"
+           style="fill:#ffd787"
+           id="path9407" />
+        <path
+           d="m 239.0609,359.1535 h 2.13281 v 2.46778 h -2.13281 z m 0,5.16114 h 2.13281 v 2.48828 h -2.13281 z"
+           style="fill:#ffd787"
+           id="path9409" />
+        <path
+           d="m 257.7265,362.83807 v 2.9668 q 0.75195,-0.0205 1.17578,-0.41699 0.42383,-0.39649 0.42383,-1.08008 0,-0.63574 -0.38281,-0.98437 -0.38281,-0.35547 -1.2168,-0.48536 z m -0.68359,-1.29882 V 358.716 q -0.71094,0.0274 -1.11426,0.41016 -0.39648,0.38281 -0.39648,1.02539 0,0.58789 0.36914,0.92969 0.37597,0.34179 1.1416,0.45801 z m 0.68359,7.32128 h -0.68359 l -0.007,-2.05761 q -0.69726,-0.0342 -1.38769,-0.19141 -0.6836,-0.15723 -1.35352,-0.4375 v -1.23047 q 0.68359,0.42383 1.37402,0.64942 0.69727,0.22558 1.37403,0.23925 v -3.13086 q -1.36719,-0.21191 -2.05762,-0.83398 -0.69043,-0.62207 -0.69043,-1.64746 0,-1.07324 0.71777,-1.70898 0.72461,-0.64258 2.03028,-0.73829 v -1.60644 h 0.68359 l 0.007,1.60644 q 0.54004,0.0342 1.09375,0.13672 0.55371,0.10254 1.12793,0.28028 v 1.18261 q -0.58106,-0.29394 -1.13477,-0.45117 -0.54687,-0.16406 -1.09375,-0.1914 v 2.94628 q 1.4082,0.21192 2.14649,0.875 0.73828,0.66309 0.73828,1.71582 0,1.05274 -0.79981,1.75684 -0.79297,0.7041 -2.07812,0.76563 z"
+           style="fill:#ffd787"
+           id="path9411" />
+        <path
+           d="m 267.30026,360.12421 v -3.95801 h 1.25781 v 10.63672 h -1.25781 v -0.96387 q -0.31445,0.56738 -0.84082,0.86816 -0.51953,0.29395 -1.20312,0.29395 -1.3877,0 -2.1875,-1.07324 -0.79297,-1.08008 -0.79297,-2.97364 0,-1.86621 0.7998,-2.92578 0.79981,-1.0664 2.18067,-1.0664 0.69043,0 1.21679,0.30078 0.52637,0.29394 0.82715,0.86133 z m -3.69824,2.85742 q 0,1.46289 0.46484,2.20801 0.46485,0.74511 1.37403,0.74511 0.90918,0 1.38086,-0.75195 0.47851,-0.75195 0.47851,-2.20117 0,-1.45606 -0.47851,-2.20117 -0.47168,-0.75196 -1.38086,-0.75196 -0.90918,0 -1.37403,0.74512 -0.46484,0.74512 -0.46484,2.20801 z"
+           style="fill:#ffd787"
+           id="path9413" />
+        <path
+           d="m 277.52005,362.34589 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56543 0.59472,2.24902 0.65625,0.68359 1.84571,0.68359 0.60156,0 1.25781,-0.1914 0.65625,-0.19141 1.40137,-0.58106 v 1.25098 q -0.71778,0.29394 -1.3877,0.4375 -0.66308,0.15039 -1.28515,0.15039 -1.78418,0 -2.78907,-1.06641 -1.00488,-1.07324 -1.00488,-2.95312 0,-1.83203 0.98438,-2.92578 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84765,0.99121 0.90234,2.39258 z m -1.25781,-0.36914 q -0.082,-0.79297 -0.58106,-1.36719 -0.49218,-0.58106 -1.42187,-0.58106 -0.90918,0 -1.49707,0.60157 -0.58789,0.60156 -0.64258,1.35351 z"
+           style="fill:#ffd787"
+           id="path9415" />
+        <path
+           d="m 285.55573,366.41327 q -0.50586,0.29394 -1.0459,0.4375 -0.53321,0.15039 -1.09375,0.15039 -1.77735,0 -2.78223,-1.06641 -0.99805,-1.0664 -0.99805,-2.95312 0,-1.88672 0.99805,-2.95313 1.00488,-1.0664 2.78223,-1.0664 0.55371,0 1.08007,0.14355 0.52637,0.14356 1.05958,0.44434 v 1.31933 q -0.49903,-0.44433 -1.00489,-0.64257 -0.49902,-0.19825 -1.13476,-0.19825 -1.18262,0 -1.81836,0.76563 -0.63574,0.76562 -0.63574,2.1875 0,1.41504 0.63574,2.1875 0.64258,0.76562 1.81836,0.76562 0.65625,0 1.17578,-0.19824 0.51953,-0.20508 0.96387,-0.62891 z"
+           style="fill:#ffd787"
+           id="path9417" />
+        <path
+           d="m 297.33072,359.17401 h 3.21973 v 6.65137 h 2.49511 v 0.97754 h -6.24804 v -0.97754 h 2.49511 v -5.67383 h -1.96191 z m 1.96191,-2.97363 h 1.25782 v 1.58594 h -1.25782 z"
+           style="fill:#ffd787"
+           id="path9419" />
+        <path
+           d="m 310.2507,359.41327 v 1.23047 q -0.54004,-0.31446 -1.08691,-0.47168 -0.54688,-0.15723 -1.11426,-0.15723 -0.85449,0 -1.27832,0.28027 -0.41699,0.27344 -0.41699,0.84083 0,0.51269 0.31445,0.76562 0.31445,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93652,0.17774 1.41504,0.71094 0.48535,0.5332 0.48535,1.38769 0,1.13477 -0.80664,1.77735 -0.80664,0.63574 -2.24219,0.63574 -0.56738,0 -1.18945,-0.12305 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29882 q 0.7041,0.3623 1.34668,0.54687 0.64258,0.17774 1.2168,0.17774 0.83398,0 1.29199,-0.33497 0.45801,-0.34179 0.45801,-0.95019 0,-0.875 -1.67481,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08691,-0.21191 -1.58593,-0.71093 -0.49903,-0.50586 -0.49903,-1.37403 0,-1.10058 0.74512,-1.69531 0.74512,-0.60156 2.12598,-0.60156 0.61523,0 1.18261,0.11621 0.56739,0.10937 1.11426,0.33496 z"
+           style="fill:#ffd787"
+           id="path9421" />
+        <path
+           d="m 327.65167,362.05878 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03223 -0.3623,-1.51758 -0.36231,-0.48535 -1.13477,-0.48535 -0.88183,0 -1.36035,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.25781 v -7.65625 h 1.25781 v 1.14843 q 0.33496,-0.65625 0.90918,-0.99121 0.57422,-0.34179 1.36035,-0.34179 1.16895,0 1.74317,0.77246 0.58105,0.76562 0.58105,2.32422 z"
+           style="fill:#ffd787"
+           id="path9423" />
+        <path
+           d="m 333.10681,360.0285 q -0.95703,0 -1.44922,0.74512 -0.49218,0.74512 -0.49218,2.20801 0,1.45605 0.49218,2.20801 0.49219,0.74511 1.44922,0.74511 0.96387,0 1.45606,-0.74511 0.49218,-0.75196 0.49218,-2.20801 0,-1.46289 -0.49218,-2.20801 -0.49219,-0.74512 -1.45606,-0.74512 z m 0,-1.0664 q 1.59277,0 2.4336,1.03222 0.84765,1.03223 0.84765,2.98731 0,1.96191 -0.84082,2.99414 -0.84082,1.02539 -2.44043,1.02539 -1.59277,0 -2.43359,-1.02539 -0.84082,-1.03223 -0.84082,-2.99414 0,-1.95508 0.84082,-2.98731 0.84082,-1.03222 2.43359,-1.03222 z"
+           style="fill:#ffd787"
+           id="path9425" />
+        <path
+           d="m 341.5321,356.97284 v 2.17383 h 2.85743 v 0.97754 h -2.85743 v 4.15625 q 0,0.84765 0.32129,1.18261 0.32129,0.33496 1.1211,0.33496 h 1.41504 v 1.00489 h -1.53809 q -1.41504,0 -1.99609,-0.56739 -0.58106,-0.56738 -0.58106,-1.95507 v -4.15625 h -2.04394 v -0.97754 h 2.04394 v -2.17383 z"
+           style="fill:#ffd787"
+           id="path9427" />
+        <path
+           d="m 362.09811,360.72577 q -0.40332,-0.31445 -0.82031,-0.45801 -0.41699,-0.14355 -0.91601,-0.14355 -1.17579,0 -1.79786,0.73828 -0.62207,0.73828 -0.62207,2.13281 v 3.80762 h -1.26464 v -7.65625 h 1.26464 v 1.49707 q 0.31446,-0.81348 0.96387,-1.24414 0.65625,-0.4375 1.55176,-0.4375 0.46484,0 0.86816,0.11621 0.40332,0.11621 0.77246,0.3623 z"
+           style="fill:#ffd787"
+           id="path9429" />
+        <path
+           d="m 370.28763,362.34589 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56543 0.59472,2.24902 0.65625,0.68359 1.84571,0.68359 0.60156,0 1.25781,-0.1914 0.65625,-0.19141 1.40137,-0.58106 v 1.25098 q -0.71778,0.29394 -1.3877,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.06641 -1.00488,-1.07324 -1.00488,-2.95312 0,-1.83203 0.98437,-2.92578 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99121 0.90235,2.39258 z m -1.25781,-0.36914 q -0.082,-0.79297 -0.58106,-1.36719 -0.49219,-0.58106 -1.42187,-0.58106 -0.90918,0 -1.49707,0.60157 -0.58789,0.60156 -0.64258,1.35351 z"
+           style="fill:#ffd787"
+           id="path9431" />
+        <path
+           d="m 378.3233,366.41327 q -0.50586,0.29394 -1.0459,0.4375 -0.5332,0.15039 -1.09375,0.15039 -1.77734,0 -2.78222,-1.06641 -0.99805,-1.0664 -0.99805,-2.95312 0,-1.88672 0.99805,-2.95313 1.00488,-1.0664 2.78222,-1.0664 0.55372,0 1.08008,0.14355 0.52637,0.14356 1.05957,0.44434 v 1.31933 q -0.49902,-0.44433 -1.00488,-0.64257 -0.49902,-0.19825 -1.13477,-0.19825 -1.18261,0 -1.81835,0.76563 -0.63575,0.76562 -0.63575,2.1875 0,1.41504 0.63575,2.1875 0.64257,0.76562 1.81835,0.76562 0.65625,0 1.17579,-0.19824 0.51953,-0.20508 0.96386,-0.62891 z"
+           style="fill:#ffd787"
+           id="path9433" />
+        <path
+           d="m 383.71008,360.0285 q -0.95703,0 -1.44922,0.74512 -0.49218,0.74512 -0.49218,2.20801 0,1.45605 0.49218,2.20801 0.49219,0.74511 1.44922,0.74511 0.96387,0 1.45606,-0.74511 0.49219,-0.75196 0.49219,-2.20801 0,-1.46289 -0.49219,-2.20801 -0.49219,-0.74512 -1.45606,-0.74512 z m 0,-1.0664 q 1.59278,0 2.4336,1.03222 0.84765,1.03223 0.84765,2.98731 0,1.96191 -0.84082,2.99414 -0.84082,1.02539 -2.44043,1.02539 -1.59277,0 -2.43359,-1.02539 -0.84082,-1.03223 -0.84082,-2.99414 0,-1.95508 0.84082,-2.98731 0.84082,-1.03222 2.43359,-1.03222 z"
+           style="fill:#ffd787"
+           id="path9435" />
+        <path
+           d="m 393.80338,362.91327 q 0,-1.41504 -0.46485,-2.14649 -0.45801,-0.73828 -1.33984,-0.73828 -0.92285,0 -1.40821,0.73828 -0.48535,0.73145 -0.48535,2.14649 0,1.41504 0.48535,2.16016 0.49219,0.73828 1.42188,0.73828 0.86816,0 1.32617,-0.74512 0.46485,-0.74512 0.46485,-2.15332 z m 1.25781,3.39746 q 0,1.72266 -0.81348,2.61133 -0.81348,0.88867 -2.39258,0.88867 -0.51953,0 -1.08691,-0.0957 -0.56738,-0.0957 -1.13477,-0.28028 v -1.24414 q 0.66993,0.31446 1.2168,0.46485 0.54688,0.15039 1.00488,0.15039 1.01856,0 1.4834,-0.55371 0.46485,-0.55371 0.46485,-1.75684 v -0.0547 -0.85449 q -0.30079,0.64258 -0.82032,0.95703 -0.51953,0.31445 -1.26465,0.31445 -1.33984,0 -2.13964,-1.07324 -0.79981,-1.07324 -0.79981,-2.87109 0,-1.80469 0.79981,-2.87793 0.7998,-1.07324 2.13964,-1.07324 0.73829,0 1.25098,0.29394 0.5127,0.29395 0.83399,0.90918 V 359.174 h 1.25781 z"
+           style="fill:#ffd787"
+           id="path9437" />
+        <path
+           d="m 403.55148,362.05878 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03223 -0.3623,-1.51758 -0.3623,-0.48535 -1.13477,-0.48535 -0.88183,0 -1.36035,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.25781 v -7.65625 h 1.25781 v 1.14843 q 0.33496,-0.65625 0.90918,-0.99121 0.57422,-0.34179 1.36035,-0.34179 1.16895,0 1.74317,0.77246 0.58105,0.76562 0.58105,2.32422 z"
+           style="fill:#ffd787"
+           id="path9439" />
+        <path
+           d="m 406.95584,359.17401 h 3.21973 v 6.65137 h 2.49511 v 0.97754 h -6.24804 v -0.97754 h 2.49512 v -5.67383 h -1.96192 z m 1.96192,-2.97363 h 1.25781 v 1.58594 h -1.25781 z"
+           style="fill:#ffd787"
+           id="path9441" />
+        <path
+           d="m 419.88605,359.41327 v 1.23047 q -0.54004,-0.31446 -1.08692,-0.47168 -0.54687,-0.15723 -1.11425,-0.15723 -0.8545,0 -1.27832,0.28027 -0.417,0.27344 -0.417,0.84083 0,0.51269 0.31446,0.76562 0.31445,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93652,0.17774 1.41503,0.71094 0.48536,0.5332 0.48536,1.38769 0,1.13477 -0.80664,1.77735 -0.80665,0.63574 -2.24219,0.63574 -0.56739,0 -1.18946,-0.12305 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29882 q 0.70411,0.3623 1.34668,0.54687 0.64258,0.17774 1.2168,0.17774 0.83399,0 1.29199,-0.33497 0.45801,-0.34179 0.45801,-0.95019 0,-0.875 -1.6748,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08691,-0.21191 -1.58594,-0.71093 -0.49902,-0.50586 -0.49902,-1.37403 0,-1.10058 0.74512,-1.69531 0.74511,-0.60156 2.12597,-0.60156 0.61524,0 1.18262,0.11621 0.56738,0.10937 1.11426,0.33496 z"
+           style="fill:#ffd787"
+           id="path9443" />
+        <path
+           d="m 429.3197,362.34589 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56543 0.59473,2.24902 0.65625,0.68359 1.8457,0.68359 0.60156,0 1.25781,-0.1914 0.65625,-0.19141 1.40137,-0.58106 v 1.25098 q -0.71777,0.29394 -1.3877,0.4375 -0.66308,0.15039 -1.28515,0.15039 -1.78418,0 -2.78906,-1.06641 -1.00489,-1.07324 -1.00489,-2.95312 0,-1.83203 0.98438,-2.92578 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84765,0.99121 0.90234,2.39258 z m -1.25781,-0.36914 q -0.082,-0.79297 -0.58106,-1.36719 -0.49218,-0.58106 -1.42187,-0.58106 -0.90918,0 -1.49707,0.60157 -0.58789,0.60156 -0.64258,1.35351 z"
+           style="fill:#ffd787"
+           id="path9445" />
+        <path
+           d="m 435.96768,360.12421 v -3.95801 h 1.25781 v 10.63672 h -1.25781 v -0.96387 q -0.31445,0.56738 -0.84082,0.86816 -0.51953,0.29395 -1.20312,0.29395 -1.3877,0 -2.1875,-1.07324 -0.79297,-1.08008 -0.79297,-2.97364 0,-1.86621 0.7998,-2.92578 0.79981,-1.0664 2.18067,-1.0664 0.69043,0 1.21679,0.30078 0.52637,0.29394 0.82715,0.86133 z m -3.69824,2.85742 q 0,1.46289 0.46484,2.20801 0.46485,0.74511 1.37403,0.74511 0.90918,0 1.38086,-0.75195 0.47851,-0.75195 0.47851,-2.20117 0,-1.45606 -0.47851,-2.20117 -0.47168,-0.75196 -1.38086,-0.75196 -0.90918,0 -1.37403,0.74512 -0.46484,0.74512 -0.46484,2.20801 z"
+           style="fill:#ffd787"
+           id="path9447" />
+        <path
+           d="m 444.99118,356.22772 v 4.1836 h -1.53125 v -4.1836 z m -3.64355,0 v 4.1836 h -1.53125 v -4.1836 z"
+           style="fill:#ffd787"
+           id="path9449" />
+        <path
+           d="m 449.9917,364.33514 h 2.13281 v 1.81153 l -1.34668,2.61133 h -1.46289 l 0.67676,-2.61133 z m -0.0889,-5.18164 h 2.13281 v 2.46778 h -2.13281 z"
+           style="fill:#d0d0d0"
+           id="path9451" />
+        <path
+           d="m 471.49426,362.34589 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56543 0.59473,2.24902 0.65625,0.68359 1.8457,0.68359 0.60156,0 1.25781,-0.1914 0.65625,-0.19141 1.40137,-0.58106 v 1.25098 q -0.71777,0.29394 -1.3877,0.4375 -0.66308,0.15039 -1.28515,0.15039 -1.78418,0 -2.78906,-1.06641 -1.00489,-1.07324 -1.00489,-2.95312 0,-1.83203 0.98438,-2.92578 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99121 0.90234,2.39258 z m -1.25781,-0.36914 q -0.082,-0.79297 -0.58105,-1.36719 -0.49219,-0.58106 -1.42188,-0.58106 -0.90918,0 -1.49707,0.60157 -0.58789,0.60156 -0.64258,1.35351 z"
+           style="fill:#d0d0d0"
+           id="path9453" />
+        <path
+           d="m 479.9093,359.14667 -2.74121,3.66406 3.00781,3.99219 h -1.45605 l -2.24219,-3.06934 -2.23535,3.06934 h -1.45606 l 3.00782,-3.99219 -2.74121,-3.66406 h 1.39453 l 2.03027,2.76855 2.0166,-2.76855 z"
+           style="fill:#d0d0d0"
+           id="path9455" />
+        <path
+           d="m 482.85568,359.17401 h 3.21973 v 6.65137 h 2.49512 v 0.97754 h -6.24805 v -0.97754 h 2.49512 v -5.67383 h -1.96192 z m 1.96192,-2.97363 h 1.25781 v 1.58594 h -1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9457" />
+        <path
+           d="m 493.33179,356.97284 v 2.17383 h 2.85742 v 0.97754 h -2.85742 v 4.15625 q 0,0.84765 0.32129,1.18261 0.32129,0.33496 1.12109,0.33496 h 1.41504 v 1.00489 h -1.53809 q -1.41504,0 -1.99609,-0.56739 -0.58106,-0.56738 -0.58106,-1.95507 v -4.15625 h -2.04394 v -0.97754 h 2.04394 v -2.17383 z"
+           style="fill:#d0d0d0"
+           id="path9459" />
+        <path
+           d="m 507.84802,365.64764 h 2.14649 v -7.71093 l -2.57032,1.2373 v -1.32617 l 2.55664,-1.2168 h 1.38086 v 9.0166 h 2.11914 v 1.15528 h -5.63281 z"
+           style="fill:#af87ff"
+           id="path9461" />
+        <path
+           d="m 1.8457031,385.24277 h 2.1464844 v -7.71094 l -2.5703125,1.2373 v -1.32617 l 2.5566406,-1.21679 H 5.359375 v 9.0166 h 2.1191406 v 1.15527 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path9463" />
+        <path
+           d="m 10.978583,385.23593 h 4.689453 v 1.16211 H 9.4678411 v -1.16211 q 1.2783199,-1.34668 2.2353519,-2.3789 0.957031,-1.03223 1.319336,-1.45606 0.683593,-0.83398 0.922851,-1.34668 0.239258,-0.51953 0.239258,-1.05957 0,-0.85449 -0.505859,-1.33984 -0.499024,-0.48535 -1.374024,-0.48535 -0.62207,0 -1.305664,0.22558 -0.683594,0.22559 -1.4492186,0.68359 v -1.39453 q 0.7041016,-0.33496 1.3808596,-0.50586 0.683594,-0.17089 1.346679,-0.17089 1.497071,0 2.40625,0.7998 0.916016,0.79297 0.916016,2.08496 0,0.65625 -0.307617,1.3125 -0.300781,0.65625 -0.984375,1.44922 -0.382813,0.44434 -1.114258,1.23047 -0.724609,0.78613 -2.214844,2.35156 z"
+           style="fill:#4e4e4e"
+           id="path9465" />
+        <path
+           d="m 18.713467,385.24277 h 2.146484 v -7.71094 l -2.570312,1.2373 v -1.32617 l 2.55664,-1.21679 h 1.38086 v 9.0166 h 2.11914 v 1.15527 h -5.632812 z"
+           style="fill:#4e4e4e"
+           id="path9467" />
+        <path
+           d="m 108.85262,381.94101 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56543 0.59473,2.24902 0.65625,0.6836 1.8457,0.6836 0.60156,0 1.25781,-0.19141 0.65625,-0.19141 1.40137,-0.58105 v 1.25097 q -0.71777,0.29395 -1.3877,0.4375 -0.66308,0.15039 -1.28515,0.15039 -1.78418,0 -2.78906,-1.0664 -1.00489,-1.07325 -1.00489,-2.95313 0,-1.83203 0.98438,-2.92578 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99121 0.90234,2.39258 z m -1.25781,-0.36914 q -0.082,-0.79297 -0.58105,-1.36719 -0.49219,-0.58105 -1.42188,-0.58105 -0.90918,0 -1.49707,0.60156 -0.58789,0.60156 -0.64258,1.35351 z"
+           style="fill:#d0d0d0"
+           id="path9469" />
+        <path
+           d="m 116.28673,379.00839 v 1.23047 q -0.54004,-0.31445 -1.08692,-0.47168 -0.54687,-0.15723 -1.11425,-0.15723 -0.8545,0 -1.27832,0.28028 -0.417,0.27344 -0.417,0.84082 0,0.51269 0.31446,0.76562 0.31445,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93652,0.17774 1.41503,0.71094 0.48536,0.5332 0.48536,1.3877 0,1.13476 -0.80664,1.77734 -0.80664,0.63574 -2.24219,0.63574 -0.56738,0 -1.18945,-0.12304 -0.62208,-0.11621 -1.34668,-0.35547 v -1.29883 q 0.7041,0.3623 1.34668,0.54687 0.64257,0.17774 1.21679,0.17774 0.83399,0 1.29199,-0.33496 0.45801,-0.3418 0.45801,-0.9502 0,-0.875 -1.6748,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08691,-0.21192 -1.58594,-0.71094 -0.49902,-0.50586 -0.49902,-1.37402 0,-1.10059 0.74512,-1.69532 0.74511,-0.60156 2.12597,-0.60156 0.61524,0 1.18262,0.11621 0.56738,0.10938 1.11426,0.33496 z"
+           style="fill:#d0d0d0"
+           id="path9471" />
+        <path
+           d="m 122.86297,382.54941 h -0.41699 q -1.10059,0 -1.66114,0.38965 -0.55371,0.38281 -0.55371,1.14843 0,0.69043 0.41699,1.07325 0.417,0.38281 1.15528,0.38281 1.03906,0 1.63379,-0.71777 0.59472,-0.72461 0.60156,-1.9961 v -0.28027 z m 2.44043,-0.51953 v 4.36816 h -1.26465 v -1.13476 q -0.40332,0.68359 -1.01855,1.01171 -0.6084,0.32129 -1.4834,0.32129 -1.16895,0 -1.86621,-0.65625 -0.69727,-0.66308 -0.69727,-1.7705 0,-1.27833 0.85449,-1.94141 0.86133,-0.66309 2.52246,-0.66309 h 1.68848 v -0.19824 q -0.007,-0.91601 -0.46484,-1.32617 -0.45801,-0.41699 -1.46289,-0.41699 -0.64258,0 -1.29883,0.18457 -0.65625,0.18457 -1.27832,0.54004 v -1.25782 q 0.69726,-0.2666 1.333,-0.39648 0.64258,-0.13672 1.24415,-0.13672 0.95019,0 1.62011,0.28027 0.67676,0.28028 1.09375,0.84082 0.25977,0.3418 0.36914,0.84766 0.10938,0.49902 0.10938,1.50391 z"
+           style="fill:#d0d0d0"
+           id="path9473" />
+        <path
+           d="m 133.75606,386.00839 q -0.50586,0.29395 -1.0459,0.4375 -0.5332,0.15039 -1.09375,0.15039 -1.77734,0 -2.78223,-1.0664 -0.99804,-1.06641 -0.99804,-2.95313 0,-1.88672 0.99804,-2.95312 1.00489,-1.06641 2.78223,-1.06641 0.55371,0 1.08008,0.14356 0.52636,0.14355 1.05957,0.44433 v 1.31934 q -0.49903,-0.44434 -1.00489,-0.64258 -0.49902,-0.19824 -1.13476,-0.19824 -1.18262,0 -1.81836,0.76562 -0.63574,0.76563 -0.63574,2.1875 0,1.41504 0.63574,2.1875 0.64258,0.76563 1.81836,0.76563 0.65625,0 1.17578,-0.19825 0.51953,-0.20507 0.96387,-0.6289 z"
+           style="fill:#d0d0d0"
+           id="path9475" />
+        <path
+           d="m 1.8457031,404.8439 h 2.1464844 v -7.71093 l -2.5703125,1.2373 v -1.32617 l 2.5566406,-1.2168 H 5.359375 v 9.0166 h 2.1191406 v 1.15528 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path9477" />
+        <path
+           d="m 10.978583,404.83707 h 4.689453 v 1.16211 H 9.4678411 v -1.16211 q 1.2783199,-1.34668 2.2353519,-2.37891 0.957031,-1.03223 1.319336,-1.45605 0.683593,-0.83399 0.922851,-1.34668 0.239258,-0.51954 0.239258,-1.05957 0,-0.8545 -0.505859,-1.33985 -0.499024,-0.48535 -1.374024,-0.48535 -0.62207,0 -1.305664,0.22559 -0.683594,0.22558 -1.4492186,0.68359 v -1.39453 q 0.7041016,-0.33496 1.3808596,-0.50586 0.683594,-0.1709 1.346679,-0.1709 1.497071,0 2.40625,0.79981 0.916016,0.79296 0.916016,2.08496 0,0.65625 -0.307617,1.3125 -0.300781,0.65625 -0.984375,1.44922 -0.382813,0.44433 -1.114258,1.23046 -0.724609,0.78614 -2.214844,2.35157 z"
+           style="fill:#4e4e4e"
+           id="path9479" />
+        <path
+           d="m 19.417568,404.83707 h 4.689453 v 1.16211 h -6.200195 v -1.16211 q 1.27832,-1.34668 2.235352,-2.37891 0.957031,-1.03223 1.319336,-1.45605 0.683593,-0.83399 0.922851,-1.34668 0.239258,-0.51954 0.239258,-1.05957 0,-0.8545 -0.505859,-1.33985 -0.499024,-0.48535 -1.374024,-0.48535 -0.62207,0 -1.305664,0.22559 -0.683594,0.22558 -1.449219,0.68359 v -1.39453 q 0.704102,-0.33496 1.38086,-0.50586 0.683593,-0.1709 1.346679,-0.1709 1.497071,0 2.40625,0.79981 0.916016,0.79296 0.916016,2.08496 0,0.65625 -0.307617,1.3125 -0.300781,0.65625 -0.984375,1.44922 -0.382813,0.44433 -1.114258,1.23046 -0.724609,0.78614 -2.214844,2.35157 z"
+           style="fill:#4e4e4e"
+           id="path9481" />
+        <path
+           d="m 90.193848,399.32047 v -3.95801 h 1.257812 v 10.63672 h -1.257812 v -0.96387 q -0.314453,0.56738 -0.840821,0.86816 -0.519531,0.29395 -1.203125,0.29395 -1.387695,0 -2.1875,-1.07324 -0.792968,-1.08008 -0.792968,-2.97364 0,-1.86621 0.799804,-2.92578 0.799805,-1.0664 2.180664,-1.0664 0.69043,0 1.216797,0.30078 0.526367,0.29394 0.827149,0.86133 z m -3.698243,2.85742 q 0,1.46289 0.464844,2.208 0.464844,0.74512 1.374024,0.74512 0.909179,0 1.380859,-0.75195 0.478516,-0.75195 0.478516,-2.20117 0,-1.45606 -0.478516,-2.20117 -0.47168,-0.75196 -1.380859,-0.75196 -0.90918,0 -1.374024,0.74512 -0.464844,0.74512 -0.464844,2.20801 z"
+           style="fill:#d0d0d0"
+           id="path9483" />
+        <path
+           d="m 96.978531,399.22476 q -0.957031,0 -1.449219,0.74512 -0.492187,0.74512 -0.492187,2.20801 0,1.45605 0.492187,2.208 0.492188,0.74512 1.449219,0.74512 0.963867,0 1.456055,-0.74512 0.492187,-0.75195 0.492187,-2.208 0,-1.46289 -0.492187,-2.20801 -0.492188,-0.74512 -1.456055,-0.74512 z m 0,-1.0664 q 1.592773,0 2.433594,1.03222 0.847655,1.03223 0.847655,2.98731 0,1.96191 -0.840819,2.99414 -0.840821,1.02539 -2.44043,1.02539 -1.592774,0 -2.433594,-1.02539 -0.84082,-1.03223 -0.84082,-2.99414 0,-1.95508 0.84082,-2.98731 0.84082,-1.03222 2.433594,-1.03222 z"
+           style="fill:#d0d0d0"
+           id="path9485" />
+        <path
+           d="m 108.38094,401.25504 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03223 -0.3623,-1.51758 -0.3623,-0.48535 -1.13477,-0.48535 -0.88183,0 -1.36035,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.25781 v -7.65625 h 1.25781 v 1.14843 q 0.33496,-0.65625 0.90918,-0.99121 0.57422,-0.34179 1.36035,-0.34179 1.16895,0 1.74317,0.77246 0.58105,0.76562 0.58105,2.32422 z"
+           style="fill:#d0d0d0"
+           id="path9487" />
+        <path
+           d="m 117.29161,401.54214 v 0.61524 h -5.44824 v 0.041 q -0.0547,1.56543 0.59473,2.24903 0.65625,0.68359 1.8457,0.68359 0.60156,0 1.25781,-0.1914 0.65625,-0.19141 1.40137,-0.58106 v 1.25098 q -0.71778,0.29394 -1.3877,0.4375 -0.66308,0.15039 -1.28515,0.15039 -1.78418,0 -2.78907,-1.06641 -1.00488,-1.07324 -1.00488,-2.95312 0,-1.83203 0.98438,-2.92578 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84765,0.99121 0.90234,2.39257 z M 116.0338,401.173 q -0.082,-0.79296 -0.58106,-1.36718 -0.49218,-0.58106 -1.42187,-0.58106 -0.90918,0 -1.49707,0.60156 -0.58789,0.60157 -0.64258,1.35352 z"
+           style="fill:#d0d0d0"
+           id="path9489" />
+        <path
+           d="m 1.8457031,424.44507 h 2.1464844 v -7.71094 l -2.5703125,1.23731 v -1.32618 l 2.5566406,-1.21679 H 5.359375 v 9.0166 h 2.1191406 v 1.15527 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path9491" />
+        <path
+           d="m 10.978583,424.43823 h 4.689453 v 1.16211 H 9.4678411 v -1.16211 q 1.2783199,-1.34668 2.2353519,-2.3789 0.957031,-1.03223 1.319336,-1.45606 0.683593,-0.83398 0.922851,-1.34668 0.239258,-0.51953 0.239258,-1.05957 0,-0.85449 -0.505859,-1.33984 -0.499024,-0.48535 -1.374024,-0.48535 -0.62207,0 -1.305664,0.22558 -0.683594,0.22559 -1.4492186,0.6836 v -1.39454 q 0.7041016,-0.33496 1.3808596,-0.50585 0.683594,-0.1709 1.346679,-0.1709 1.497071,0 2.40625,0.7998 0.916016,0.79297 0.916016,2.08496 0,0.65625 -0.307617,1.3125 -0.300781,0.65625 -0.984375,1.44922 -0.382813,0.44434 -1.114258,1.23047 -0.724609,0.78613 -2.214844,2.35156 z"
+           style="fill:#4e4e4e"
+           id="path9493" />
+        <path
+           d="m 22.172451,420.13843 q 1.004883,0.2666 1.538086,0.95019 0.533203,0.67676 0.533203,1.69532 0,1.4082 -0.950195,2.21484 -0.94336,0.7998 -2.618164,0.7998 -0.704102,0 -1.435547,-0.12988 -0.731445,-0.12988 -1.435547,-0.37598 v -1.37402 q 0.697266,0.36231 1.374023,0.54004 0.676758,0.17773 1.34668,0.17773 1.134766,0 1.743164,-0.51269 0.608399,-0.5127 0.608399,-1.47656 0,-0.88868 -0.608399,-1.40821 -0.608398,-0.52636 -1.647461,-0.52636 h -1.052734 v -1.13477 h 1.052734 q 0.950196,0 1.483399,-0.41699 0.533203,-0.41699 0.533203,-1.16211 0,-0.78613 -0.499024,-1.20313 -0.492187,-0.42382 -1.408203,-0.42382 -0.608398,0 -1.257812,0.13671 -0.649414,0.13672 -1.360352,0.41016 v -1.27148 q 0.827149,-0.21875 1.469727,-0.32813 0.649414,-0.10937 1.148437,-0.10937 1.490235,0 2.378906,0.75195 0.895508,0.74512 0.895508,1.98242 0,0.84082 -0.471679,1.40137 -0.464844,0.56055 -1.360352,0.79297 z"
+           style="fill:#4e4e4e"
+           id="path9495" />
+        <path
+           d="m 91.984863,421.14331 v 0.61523 h -5.448242 v 0.041 q -0.05469,1.56543 0.594727,2.24902 0.65625,0.6836 1.845703,0.6836 0.601562,0 1.257812,-0.19141 0.65625,-0.1914 1.401367,-0.58105 v 1.25097 q -0.717773,0.29395 -1.387695,0.4375 -0.663086,0.15039 -1.285156,0.15039 -1.78418,0 -2.789063,-1.0664 -1.004882,-1.07324 -1.004882,-2.95313 0,-1.83203 0.984375,-2.92578 0.984375,-1.09375 2.625,-1.09375 1.46289,0 2.303711,0.99121 0.847656,0.99121 0.902343,2.39258 z m -1.257812,-0.36914 q -0.08203,-0.79297 -0.581055,-1.36719 -0.492187,-0.58105 -1.421875,-0.58105 -0.90918,0 -1.49707,0.60156 -0.587891,0.60156 -0.642578,1.35352 z"
+           style="fill:#d0d0d0"
+           id="path9497" />
+        <path
+           d="m 100.02052,425.21069 q -0.505856,0.29395 -1.045895,0.4375 -0.533203,0.15039 -1.09375,0.15039 -1.777344,0 -2.782227,-1.0664 -0.998047,-1.06641 -0.998047,-2.95313 0,-1.88672 0.998047,-2.95312 1.004883,-1.06641 2.782227,-1.06641 0.553711,0 1.080078,0.14356 0.526367,0.14355 1.059567,0.44433 v 1.31934 q -0.49902,-0.44434 -1.00488,-0.64258 -0.499023,-0.19824 -1.134765,-0.19824 -1.182618,0 -1.81836,0.76562 -0.635742,0.76563 -0.635742,2.1875 0,1.41504 0.635742,2.1875 0.642578,0.76563 1.81836,0.76563 0.65625,0 1.175781,-0.19824 0.519531,-0.20508 0.963864,-0.62891 z"
+           style="fill:#d0d0d0"
+           id="path9499" />
+        <path
+           d="m 108.38094,420.8562 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03223 -0.3623,-1.51758 -0.3623,-0.48535 -1.13477,-0.48535 -0.88183,0 -1.36035,0.62891 -0.47168,0.62207 -0.47168,1.79101 v 4.32715 h -1.25781 v -10.63672 h 1.25781 v 4.12891 q 0.33496,-0.65625 0.90918,-0.99121 0.57422,-0.3418 1.36035,-0.3418 1.16895,0 1.74317,0.77246 0.58105,0.76563 0.58105,2.32422 z"
+           style="fill:#d0d0d0"
+           id="path9501" />
+        <path
+           d="m 113.8463,418.82593 q -0.95703,0 -1.44922,0.74511 -0.49219,0.74512 -0.49219,2.20801 0,1.45606 0.49219,2.20801 0.49219,0.74512 1.44922,0.74512 0.96387,0 1.45605,-0.74512 0.49219,-0.75195 0.49219,-2.20801 0,-1.46289 -0.49219,-2.20801 -0.49218,-0.74511 -1.45605,-0.74511 z m 0,-1.06641 q 1.59277,0 2.43359,1.03223 0.84766,1.03222 0.84766,2.9873 0,1.96192 -0.84082,2.99414 -0.84082,1.02539 -2.44043,1.02539 -1.59278,0 -2.4336,-1.02539 -0.84082,-1.03222 -0.84082,-2.99414 0,-1.95508 0.84082,-2.9873 0.84082,-1.03223 2.4336,-1.03223 z"
+           style="fill:#d0d0d0"
+           id="path9503" />
+        <path
+           d="m 132.96309,415.02515 v 4.18359 h -1.53125 v -4.18359 z m -3.64356,0 v 4.18359 h -1.53125 v -4.18359 z"
+           style="fill:#ffd787"
+           id="path9505" />
+        <path
+           d="m 139.66237,421.6355 v 2.96679 q 0.75195,-0.0205 1.17578,-0.41699 0.42383,-0.39648 0.42383,-1.08008 0,-0.63574 -0.38281,-0.98437 -0.38282,-0.35547 -1.2168,-0.48535 z m -0.68359,-1.29883 v -2.82324 q -0.71094,0.0273 -1.11426,0.41015 -0.39649,0.38282 -0.39649,1.02539 0,0.5879 0.36914,0.92969 0.37598,0.3418 1.14161,0.45801 z m 0.68359,7.32129 h -0.68359 l -0.007,-2.05762 q -0.69727,-0.0342 -1.3877,-0.1914 -0.68359,-0.15723 -1.35351,-0.4375 v -1.23047 q 0.68359,0.42382 1.37402,0.64941 0.69727,0.22559 1.37403,0.23926 v -3.13086 q -1.36719,-0.21191 -2.05762,-0.83399 -0.69043,-0.62207 -0.69043,-1.64746 0,-1.07324 0.71777,-1.70898 0.72461,-0.64258 2.03028,-0.73828 v -1.60645 h 0.68359 l 0.007,1.60645 q 0.54004,0.0342 1.09375,0.13672 0.55372,0.10254 1.12793,0.28027 v 1.18262 q -0.58105,-0.29395 -1.13476,-0.45117 -0.54688,-0.16407 -1.09375,-0.19141 v 2.94629 q 1.4082,0.21191 2.14648,0.875 0.73828,0.66308 0.73828,1.71582 0,1.05273 -0.7998,1.75683 -0.79297,0.70411 -2.07813,0.76563 z"
+           style="fill:#ffd787"
+           id="path9507" />
+        <path
+           d="m 150.55547,420.8562 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03223 -0.36231,-1.51758 -0.3623,-0.48535 -1.13476,-0.48535 -0.88184,0 -1.36035,0.62891 -0.47168,0.62207 -0.47168,1.79101 v 4.32715 h -1.25782 v -7.65625 h 1.25782 v 1.14844 q 0.33496,-0.65625 0.90918,-0.99121 0.57421,-0.3418 1.36035,-0.3418 1.16894,0 1.74316,0.77246 0.58106,0.76563 0.58106,2.32422 z"
+           style="fill:#ffd787"
+           id="path9509" />
+        <path
+           d="m 158.07506,421.77905 q 0,-1.46289 -0.46485,-2.20801 -0.46484,-0.74511 -1.37402,-0.74511 -0.91601,0 -1.38769,0.75195 -0.47168,0.74512 -0.47168,2.20117 0,1.44922 0.47168,2.20117 0.47168,0.75196 1.38769,0.75196 0.90918,0 1.37402,-0.74512 0.46485,-0.74512 0.46485,-2.20801 z m -3.69824,-2.85742 q 0.30078,-0.56055 0.82714,-0.86133 0.53321,-0.30078 1.23047,-0.30078 1.38086,0 2.17383,1.06641 0.79297,1.05957 0.79297,2.92578 0,1.89355 -0.7998,2.97363 -0.79297,1.07324 -2.18067,1.07324 -0.68359,0 -1.20996,-0.29394 -0.51953,-0.30078 -0.83398,-0.86817 v 0.96387 H 153.119 v -10.63672 h 1.25782 z"
+           style="fill:#ffd787"
+           id="path9511" />
+        <path
+           d="m 162.38861,417.97144 h 3.21973 v 6.65136 h 2.49511 v 0.97754 h -6.24804 v -0.97754 h 2.49511 v -5.67383 h -1.96191 z m 1.96191,-2.97364 h 1.25782 v 1.58594 h -1.25782 z"
+           style="fill:#ffd787"
+           id="path9513" />
+        <path
+           d="m 172.86469,415.77026 v 2.17383 h 2.85742 v 0.97754 h -2.85742 v 4.15625 q 0,0.84766 0.32128,1.18262 0.32129,0.33496 1.1211,0.33496 h 1.41504 v 1.00488 h -1.53809 q -1.41504,0 -1.99609,-0.56738 -0.58106,-0.56738 -0.58106,-1.95508 v -4.15625 h -2.04394 v -0.97754 h 2.04394 v -2.17383 z"
+           style="fill:#ffd787"
+           id="path9515" />
+        <path
+           d="m 183.74757,418.21069 v 1.23047 q -0.54004,-0.31445 -1.08691,-0.47168 -0.54688,-0.15722 -1.11426,-0.15722 -0.85449,0 -1.27832,0.28027 -0.41699,0.27344 -0.41699,0.84082 0,0.51269 0.31445,0.76562 0.31446,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93653,0.17773 1.41504,0.71093 0.48535,0.53321 0.48535,1.3877 0,1.13476 -0.80664,1.77734 -0.80664,0.63574 -2.24219,0.63574 -0.56738,0 -1.18945,-0.12304 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29883 q 0.7041,0.3623 1.34668,0.54688 0.64258,0.17773 1.2168,0.17773 0.83398,0 1.29199,-0.33496 0.45801,-0.3418 0.45801,-0.9502 0,-0.875 -1.67481,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08692,-0.21192 -1.58594,-0.71094 -0.49902,-0.50586 -0.49902,-1.37402 0,-1.10059 0.74511,-1.69532 0.74512,-0.60156 2.12598,-0.60156 0.61523,0 1.18262,0.11621 0.56738,0.10938 1.11425,0.33496 z"
+           style="fill:#ffd787"
+           id="path9517" />
+        <path
+           d="m 191.99515,415.02515 v 4.18359 h -1.53125 v -4.18359 z m -3.64356,0 v 4.18359 h -1.53125 v -4.18359 z"
+           style="fill:#ffd787"
+           id="path9519" />
+        <path
+           d="m 1.8457031,444.0463 h 2.1464844 v -7.71094 l -2.5703125,1.2373 v -1.32617 l 2.5566406,-1.2168 H 5.359375 v 9.01661 h 2.1191406 v 1.15527 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path9521" />
+        <path
+           d="m 10.978583,444.03946 h 4.689453 v 1.16211 H 9.4678411 v -1.16211 q 1.2783199,-1.34668 2.2353519,-2.37891 0.957031,-1.03222 1.319336,-1.45605 0.683593,-0.83399 0.922851,-1.34668 0.239258,-0.51953 0.239258,-1.05957 0,-0.85449 -0.505859,-1.33985 -0.499024,-0.48535 -1.374024,-0.48535 -0.62207,0 -1.305664,0.22559 -0.683594,0.22558 -1.4492186,0.68359 v -1.39453 q 0.7041016,-0.33496 1.3808596,-0.50586 0.683594,-0.1709 1.346679,-0.1709 1.497071,0 2.40625,0.79981 0.916016,0.79297 0.916016,2.08496 0,0.65625 -0.307617,1.3125 -0.300781,0.65625 -0.984375,1.44922 -0.382813,0.44433 -1.114258,1.23047 -0.724609,0.78613 -2.214844,2.35156 z"
+           style="fill:#4e4e4e"
+           id="path9523" />
+        <path
+           d="m 21.892178,436.25333 -3.219727,5.39355 h 3.219727 z m -0.225586,-1.25782 h 1.599609 v 6.65137 h 1.360352 v 1.12109 h -1.360352 v 2.4336 h -1.374023 v -2.4336 h -4.327149 v -1.30566 z"
+           style="fill:#4e4e4e"
+           id="path9525" />
+        <path
+           d="m 69.44664,445.5502 q 0.957031,0 1.244141,-0.29394 0.293945,-0.29395 0.293945,-1.27149 v -1.42871 q 0,-1.16894 0.492187,-1.61328 0.492188,-0.45117 1.81836,-0.6084 -1.367188,-0.18457 -1.838867,-0.59473 -0.47168,-0.41699 -0.47168,-1.62011 v -1.83203 q 0,-0.97071 -0.293945,-1.26465 -0.28711,-0.30078 -1.244141,-0.30078 h -0.478516 v -0.97754 h 0.4375 q 1.702149,0 2.276368,0.50586 0.581054,0.49902 0.581054,2.00976 v 1.77735 q 0,0.88867 0.375977,1.34668 0.382812,0.458 1.34668,0.458 h 0.833984 v 0.97754 h -0.833984 q -0.881836,0 -1.305665,0.54004 -0.416992,0.54004 -0.416992,1.28516 v 1.36719 q 0,1.51074 -0.581054,2.0166 -0.574219,0.50586 -2.276368,0.50586 h -0.4375 v -0.98438 z"
+           style="fill:#5fd7ff"
+           id="path9527" />
+        <path
+           d="m 1.8457031,463.64746 h 2.1464844 v -7.71094 l -2.5703125,1.23731 v -1.32617 l 2.5566406,-1.2168 H 5.359375 v 9.0166 h 2.1191406 v 1.15527 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path9529" />
+        <path
+           d="m 10.978583,463.64062 h 4.689453 v 1.16211 H 9.4678411 v -1.16211 q 1.2783199,-1.34667 2.2353519,-2.3789 0.957031,-1.03223 1.319336,-1.45606 0.683593,-0.83398 0.922851,-1.34668 0.239258,-0.51953 0.239258,-1.05957 0,-0.85449 -0.505859,-1.33984 -0.499024,-0.48535 -1.374024,-0.48535 -0.62207,0 -1.305664,0.22558 -0.683594,0.22559 -1.4492186,0.6836 v -1.39453 q 0.7041016,-0.33496 1.3808596,-0.50586 0.683594,-0.1709 1.346679,-0.1709 1.497071,0 2.40625,0.7998 0.916016,0.79297 0.916016,2.08496 0,0.65625 -0.307617,1.3125 -0.300781,0.65625 -0.984375,1.44922 -0.382813,0.44434 -1.114258,1.23047 -0.724609,0.78614 -2.214844,2.35156 z"
+           style="fill:#4e4e4e"
+           id="path9531" />
+        <path
+           d="m 18.282803,454.59668 h 5.167968 v 1.16211 h -3.910156 v 2.50879 q 0.293945,-0.10938 0.587891,-0.15723 0.300781,-0.0547 0.601562,-0.0547 1.585938,0 2.515625,0.93653 0.929688,0.93652 0.929688,2.53613 0,1.61328 -0.977539,2.54297 -0.970703,0.92969 -2.65918,0.92969 -0.813477,0 -1.490234,-0.10938 -0.669922,-0.10937 -1.203125,-0.32812 v -1.40137 q 0.628906,0.3418 1.264648,0.51269 0.635742,0.16407 1.298828,0.16407 1.141602,0 1.756836,-0.60157 0.62207,-0.60156 0.62207,-1.70898 0,-1.09375 -0.642578,-1.70215 -0.635742,-0.6084 -1.777343,-0.6084 -0.553711,0 -1.080079,0.12989 -0.526367,0.12304 -1.004882,0.37597 z"
+           style="fill:#4e4e4e"
+           id="path9533" />
+        <path
+           d="m 1.8457031,483.24255 h 2.1464844 v -7.71093 l -2.5703125,1.2373 v -1.32617 l 2.5566406,-1.2168 H 5.359375 v 9.0166 h 2.1191406 v 1.15528 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path9535" />
+        <path
+           d="m 10.978583,483.23572 h 4.689453 v 1.16211 H 9.4678411 v -1.16211 q 1.2783199,-1.34668 2.2353519,-2.37891 0.957031,-1.03223 1.319336,-1.45605 0.683593,-0.83399 0.922851,-1.34668 0.239258,-0.51953 0.239258,-1.05957 0,-0.8545 -0.505859,-1.33985 -0.499024,-0.48535 -1.374024,-0.48535 -0.62207,0 -1.305664,0.22559 -0.683594,0.22558 -1.4492186,0.68359 v -1.39453 q 0.7041016,-0.33496 1.3808596,-0.50586 0.683594,-0.1709 1.346679,-0.1709 1.497071,0 2.40625,0.79981 0.916016,0.79297 0.916016,2.08496 0,0.65625 -0.307617,1.3125 -0.300781,0.65625 -0.984375,1.44922 -0.382813,0.44433 -1.114258,1.23047 -0.724609,0.78613 -2.214844,2.35156 z"
+           style="fill:#4e4e4e"
+           id="path9537" />
+        <path
+           d="m 23.642178,474.41736 v 1.27148 q -0.430664,-0.25293 -0.916016,-0.38281 -0.485352,-0.13672 -1.011719,-0.13672 -1.3125,0 -1.989258,0.99121 -0.676757,0.98438 -0.676757,2.90528 0.328125,-0.6836 0.909179,-1.0459 0.581055,-0.36914 1.333008,-0.36914 1.476563,0 2.283203,0.90918 0.813477,0.90234 0.813477,2.56347 0,1.6543 -0.833985,2.56348 -0.833984,0.90918 -2.344726,0.90918 -1.777344,0 -2.604492,-1.27149 -0.827149,-1.27832 -0.827149,-4.01953 0,-2.58398 0.991211,-3.9375 0.998047,-1.36035 2.884766,-1.36035 0.505859,0 1.011719,0.10938 0.505859,0.10254 0.977539,0.30078 z m -2.460938,4.31347 q -0.881836,0 -1.387695,0.63575 -0.50586,0.63574 -0.50586,1.75683 0,1.1211 0.50586,1.75684 0.505859,0.63574 1.387695,0.63574 0.916016,0 1.380859,-0.60156 0.464844,-0.6084 0.464844,-1.79102 0,-1.18945 -0.464844,-1.79101 -0.464843,-0.60157 -1.380859,-0.60157 z"
+           style="fill:#4e4e4e"
+           id="path9539" />
+        <path
+           d="m 74.122421,477.00818 v 1.23047 q -0.540039,-0.31446 -1.086914,-0.47168 -0.546875,-0.15723 -1.114258,-0.15723 -0.854492,0 -1.27832,0.28027 -0.416992,0.27344 -0.416992,0.84082 0,0.5127 0.314453,0.76563 0.314453,0.25293 1.56543,0.49219 l 0.505859,0.0957 q 0.936524,0.17773 1.415039,0.71094 0.485352,0.5332 0.485352,1.38769 0,1.13477 -0.806641,1.77735 -0.806641,0.63574 -2.242187,0.63574 -0.567383,0 -1.189454,-0.12305 -0.62207,-0.11621 -1.346679,-0.35547 v -1.29882 q 0.704101,0.3623 1.346679,0.54687 0.642579,0.17773 1.216797,0.17773 0.833985,0 1.291993,-0.33496 0.458007,-0.34179 0.458007,-0.95019 0,-0.875 -1.674804,-1.20996 l -0.05469,-0.0137 -0.47168,-0.0957 q -1.086914,-0.21191 -1.585937,-0.71093 -0.499023,-0.50586 -0.499023,-1.37403 0,-1.10058 0.745117,-1.69531 0.745117,-0.60156 2.125976,-0.60156 0.615235,0 1.182617,0.11621 0.567383,0.10937 1.114258,0.33496 z"
+           style="fill:#d0d0d0"
+           id="path9541" />
+        <path
+           d="m 83.556084,479.9408 v 0.61523 h -5.448243 v 0.041 q -0.05469,1.56543 0.594727,2.24902 0.65625,0.68359 1.845703,0.68359 0.601563,0 1.257813,-0.1914 0.65625,-0.19141 1.401367,-0.58106 v 1.25098 q -0.717774,0.29394 -1.387695,0.4375 -0.663086,0.15039 -1.285157,0.15039 -1.784179,0 -2.789062,-1.06641 -1.004883,-1.07324 -1.004883,-2.95312 0,-1.83203 0.984375,-2.92578 0.984375,-1.09375 2.625,-1.09375 1.462891,0 2.303711,0.99121 0.847656,0.99121 0.902344,2.39258 z m -1.257813,-0.36914 q -0.08203,-0.79297 -0.581055,-1.36719 -0.492187,-0.58106 -1.421875,-0.58106 -0.909179,0 -1.49707,0.60157 -0.58789,0.60156 -0.642578,1.35351 z"
+           style="fill:#d0d0d0"
+           id="path9543" />
+        <path
+           d="m 88.525879,474.56775 v 2.17383 h 2.857422 v 0.97754 h -2.857422 v 4.15625 q 0,0.84765 0.321289,1.18261 0.321289,0.33496 1.121094,0.33496 h 1.415039 v 1.00489 h -1.538086 q -1.415039,0 -1.996094,-0.56739 -0.581055,-0.56738 -0.581055,-1.95507 v -4.15625 h -2.043945 v -0.97754 h 2.043945 v -2.17383 z"
+           style="fill:#d0d0d0"
+           id="path9545" />
+        <path
+           d="m 101.89364,479.44861 h 7.24609 v 1.15527 h -7.24609 z"
+           style="fill:#d0d0d0"
+           id="path9547" />
+        <path
+           d="m 117.29161,479.9408 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56543 0.59473,2.24902 0.65625,0.68359 1.8457,0.68359 0.60156,0 1.25781,-0.1914 0.65625,-0.19141 1.40137,-0.58106 v 1.25098 q -0.71778,0.29394 -1.3877,0.4375 -0.66308,0.15039 -1.28515,0.15039 -1.78418,0 -2.78907,-1.06641 -1.00488,-1.07324 -1.00488,-2.95312 0,-1.83203 0.98438,-2.92578 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84765,0.99121 0.90234,2.39258 z m -1.25781,-0.36914 q -0.082,-0.79297 -0.58106,-1.36719 -0.49218,-0.58106 -1.42187,-0.58106 -0.90918,0 -1.49707,0.60157 -0.58789,0.60156 -0.64258,1.35351 z"
+           style="fill:#d0d0d0"
+           id="path9549" />
+        <path
+           d="m 1.8457031,502.84369 h 2.1464844 v -7.71094 l -2.5703125,1.23731 v -1.32618 l 2.5566406,-1.21679 H 5.359375 v 9.0166 h 2.1191406 v 1.15527 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path9551" />
+        <path
+           d="m 10.978583,502.83685 h 4.689453 v 1.16211 H 9.4678411 v -1.16211 q 1.2783199,-1.34668 2.2353519,-2.3789 0.957031,-1.03223 1.319336,-1.45606 0.683593,-0.83398 0.922851,-1.34668 0.239258,-0.51953 0.239258,-1.05957 0,-0.85449 -0.505859,-1.33984 -0.499024,-0.48535 -1.374024,-0.48535 -0.62207,0 -1.305664,0.22558 -0.683594,0.22559 -1.4492186,0.6836 v -1.39453 q 0.7041016,-0.33497 1.3808596,-0.50586 0.683594,-0.1709 1.346679,-0.1709 1.497071,0 2.40625,0.7998 0.916016,0.79297 0.916016,2.08496 0,0.65625 -0.307617,1.3125 -0.300781,0.65625 -0.984375,1.44922 -0.382813,0.44434 -1.114258,1.23047 -0.724609,0.78613 -2.214844,2.35156 z"
+           style="fill:#4e4e4e"
+           id="path9553" />
+        <path
+           d="m 17.817959,493.79291 h 6.425781 v 0.58789 l -3.650391,9.61816 h -1.442382 l 3.554687,-9.04394 h -4.887695 z"
+           style="fill:#4e4e4e"
+           id="path9555" />
+        <path
+           d="m 72.146835,493.98431 -0.615234,2.41993 h 1.674805 l 0.62207,-2.41993 h 1.09375 l -0.62207,2.41993 h 1.667968 v 1.04589 h -1.920898 l -0.669922,2.68653 h 1.708984 v 1.0459 h -1.975585 l -0.710938,2.8164 h -1.09375 l 0.717773,-2.8164 h -1.68164 l -0.717774,2.8164 H 68.53746 l 0.710938,-2.8164 h -1.763672 v -1.0459 h 2.030273 l 0.669922,-2.68653 h -1.818359 v -1.04589 h 2.071289 l 0.615234,-2.41993 z m 0.806641,3.46582 h -1.674805 l -0.669922,2.68653 h 1.681641 z"
+           style="fill:#808080"
+           id="path9557" />
+        <path
+           d="m 85.79834,493.79291 h 1.387695 v 9.04394 h 4.928711 v 1.16211 H 85.79834 Z"
+           style="fill:#808080"
+           id="path9559" />
+        <path
+           d="m 96.978531,497.22455 q -0.957031,0 -1.449219,0.74512 -0.492187,0.74511 -0.492187,2.208 0,1.45606 0.492187,2.20801 0.492188,0.74512 1.449219,0.74512 0.963867,0 1.456055,-0.74512 0.492187,-0.75195 0.492187,-2.20801 0,-1.46289 -0.492187,-2.208 -0.492188,-0.74512 -1.456055,-0.74512 z m 0,-1.06641 q 1.592773,0 2.433594,1.03223 0.847655,1.03223 0.847655,2.9873 0,1.96192 -0.840819,2.99414 -0.840821,1.02539 -2.44043,1.02539 -1.592774,0 -2.433594,-1.02539 -0.84082,-1.03222 -0.84082,-2.99414 0,-1.95507 0.84082,-2.9873 0.84082,-1.03223 2.433594,-1.03223 z"
+           style="fill:#808080"
+           id="path9561" />
+        <path
+           d="m 105.9952,500.15033 h -0.41699 q -1.10059,0 -1.66113,0.38965 -0.55371,0.38281 -0.55371,1.14844 0,0.69043 0.41699,1.07324 0.41699,0.38281 1.15527,0.38281 1.03906,0 1.63379,-0.71777 0.59473,-0.72461 0.60156,-1.9961 v -0.28027 z m 2.44043,-0.51953 v 4.36816 h -1.26465 v -1.13476 q -0.40332,0.68359 -1.01855,1.01172 -0.6084,0.32128 -1.4834,0.32128 -1.16895,0 -1.86621,-0.65625 -0.69727,-0.66308 -0.69727,-1.7705 0,-1.27832 0.85449,-1.94141 0.86133,-0.66309 2.52247,-0.66309 h 1.68847 v -0.19824 q -0.007,-0.91601 -0.46484,-1.32617 -0.45801,-0.41699 -1.46289,-0.41699 -0.64258,0 -1.29883,0.18457 -0.65625,0.18457 -1.27832,0.54004 v -1.25781 q 0.69727,-0.26661 1.33301,-0.39649 0.64258,-0.13672 1.24414,-0.13672 0.95019,0 1.62012,0.28028 0.67675,0.28027 1.09375,0.84082 0.25976,0.34179 0.36914,0.84765 0.10937,0.49903 0.10937,1.50391 z"
+           style="fill:#808080"
+           id="path9563" />
+        <path
+           d="m 115.5006,497.32025 v -3.95801 h 1.25781 v 10.63672 h -1.25781 v -0.96386 q -0.31446,0.56738 -0.84083,0.86816 -0.51953,0.29394 -1.20312,0.29394 -1.3877,0 -2.1875,-1.07324 -0.79297,-1.08008 -0.79297,-2.97363 0,-1.86621 0.79981,-2.92578 0.7998,-1.06641 2.18066,-1.06641 0.69043,0 1.2168,0.30078 0.52636,0.29395 0.82715,0.86133 z m -3.69825,2.85742 q 0,1.46289 0.46485,2.20801 0.46484,0.74512 1.37402,0.74512 0.90918,0 1.38086,-0.75195 0.47852,-0.75196 0.47852,-2.20118 0,-1.45605 -0.47852,-2.20117 -0.47168,-0.75195 -1.38086,-0.75195 -0.90918,0 -1.37402,0.74512 -0.46485,0.74511 -0.46485,2.208 z"
+           style="fill:#808080"
+           id="path9565" />
+        <path
+           d="m 131.30196,500.15033 h -0.417 q -1.10058,0 -1.66113,0.38965 -0.55371,0.38281 -0.55371,1.14844 0,0.69043 0.41699,1.07324 0.41699,0.38281 1.15528,0.38281 1.03906,0 1.63378,-0.71777 0.59473,-0.72461 0.60157,-1.9961 v -0.28027 z m 2.44043,-0.51953 v 4.36816 h -1.26465 v -1.13476 q -0.40332,0.68359 -1.01856,1.01172 -0.6084,0.32128 -1.4834,0.32128 -1.16894,0 -1.86621,-0.65625 -0.69726,-0.66308 -0.69726,-1.7705 0,-1.27832 0.85449,-1.94141 0.86133,-0.66309 2.52246,-0.66309 h 1.68848 v -0.19824 q -0.007,-0.91601 -0.46485,-1.32617 -0.458,-0.41699 -1.46289,-0.41699 -0.64258,0 -1.29883,0.18457 -0.65625,0.18457 -1.27832,0.54004 v -1.25781 q 0.69727,-0.26661 1.33301,-0.39649 0.64258,-0.13672 1.24414,-0.13672 0.9502,0 1.62012,0.28028 0.67676,0.28027 1.09375,0.84082 0.25977,0.34179 0.36914,0.84765 0.10938,0.49903 0.10938,1.50391 z"
+           style="fill:#808080"
+           id="path9567" />
+        <path
+           d="m 140.79713,497.32025 v -3.95801 h 1.25782 v 10.63672 h -1.25782 v -0.96386 q -0.31445,0.56738 -0.84082,0.86816 -0.51953,0.29394 -1.20312,0.29394 -1.3877,0 -2.1875,-1.07324 -0.79297,-1.08008 -0.79297,-2.97363 0,-1.86621 0.79981,-2.92578 0.7998,-1.06641 2.18066,-1.06641 0.69043,0 1.2168,0.30078 0.52636,0.29395 0.82714,0.86133 z m -3.69824,2.85742 q 0,1.46289 0.46485,2.20801 0.46484,0.74512 1.37402,0.74512 0.90918,0 1.38086,-0.75195 0.47851,-0.75196 0.47851,-2.20118 0,-1.45605 -0.47851,-2.20117 -0.47168,-0.75195 -1.38086,-0.75195 -0.90918,0 -1.37402,0.74512 -0.46485,0.74511 -0.46485,2.208 z"
+           style="fill:#808080"
+           id="path9569" />
+        <path
+           d="m 149.23613,497.32025 v -3.95801 h 1.25781 v 10.63672 h -1.25781 v -0.96386 q -0.31445,0.56738 -0.84082,0.86816 -0.51953,0.29394 -1.20313,0.29394 -1.38769,0 -2.1875,-1.07324 -0.79296,-1.08008 -0.79296,-2.97363 0,-1.86621 0.7998,-2.92578 0.79981,-1.06641 2.18066,-1.06641 0.69043,0 1.2168,0.30078 0.52637,0.29395 0.82715,0.86133 z m -3.69824,2.85742 q 0,1.46289 0.46484,2.20801 0.46485,0.74512 1.37402,0.74512 0.90918,0 1.38086,-0.75195 0.47852,-0.75196 0.47852,-2.20118 0,-1.45605 -0.47852,-2.20117 -0.47168,-0.75195 -1.38086,-0.75195 -0.90917,0 -1.37402,0.74512 -0.46484,0.74511 -0.46484,2.208 z"
+           style="fill:#808080"
+           id="path9571" />
+        <path
+           d="m 153.95982,496.37006 h 3.21973 v 6.65136 h 2.49512 v 0.97754 h -6.24805 v -0.97754 h 2.49512 v -5.67382 h -1.96192 z m 1.96192,-2.97364 h 1.25781 v 1.58594 h -1.25781 z"
+           style="fill:#808080"
+           id="path9573" />
+        <path
+           d="m 164.42572,494.16888 v 2.17383 h 2.85742 v 0.97754 h -2.85742 v 4.15625 q 0,0.84766 0.32129,1.18262 0.32129,0.33496 1.12109,0.33496 h 1.41504 v 1.00488 h -1.53808 q -1.41504,0 -1.9961,-0.56738 -0.58105,-0.56738 -0.58105,-1.95508 v -4.15625 h -2.04395 v -0.97754 h 2.04395 v -2.17383 z"
+           style="fill:#808080"
+           id="path9575" />
+        <path
+           d="m 170.82758,496.37006 h 3.21972 v 6.65136 h 2.49512 v 0.97754 h -6.24805 v -0.97754 h 2.49512 v -5.67382 h -1.96191 z m 1.96191,-2.97364 h 1.25781 v 1.58594 h -1.25781 z"
+           style="fill:#808080"
+           id="path9577" />
+        <path
+           d="m 181.30714,497.22455 q -0.95703,0 -1.44921,0.74512 -0.49219,0.74511 -0.49219,2.208 0,1.45606 0.49219,2.20801 0.49218,0.74512 1.44921,0.74512 0.96387,0 1.45606,-0.74512 0.49219,-0.75195 0.49219,-2.20801 0,-1.46289 -0.49219,-2.208 -0.49219,-0.74512 -1.45606,-0.74512 z m 0,-1.06641 q 1.59278,0 2.4336,1.03223 0.84765,1.03223 0.84765,2.9873 0,1.96192 -0.84082,2.99414 -0.84082,1.02539 -2.44043,1.02539 -1.59277,0 -2.43359,-1.02539 -0.84082,-1.03222 -0.84082,-2.99414 0,-1.95507 0.84082,-2.9873 0.84082,-1.03223 2.43359,-1.03223 z"
+           style="fill:#808080"
+           id="path9579" />
+        <path
+           d="m 192.71976,499.25482 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03222 -0.36231,-1.51758 -0.3623,-0.48535 -1.13476,-0.48535 -0.88184,0 -1.36035,0.62891 -0.47168,0.62207 -0.47168,1.79101 v 4.32715 h -1.25782 v -7.65625 h 1.25782 v 1.14844 q 0.33496,-0.65625 0.90918,-0.99121 0.57422,-0.3418 1.36035,-0.3418 1.16894,0 1.74316,0.77246 0.58106,0.76563 0.58106,2.32422 z"
+           style="fill:#808080"
+           id="path9581" />
+        <path
+           d="m 198.76279,500.15033 h -0.417 q -1.10058,0 -1.66113,0.38965 -0.55371,0.38281 -0.55371,1.14844 0,0.69043 0.41699,1.07324 0.417,0.38281 1.15528,0.38281 1.03906,0 1.63379,-0.71777 0.59472,-0.72461 0.60156,-1.9961 v -0.28027 z m 2.44043,-0.51953 v 4.36816 h -1.26465 v -1.13476 q -0.40332,0.68359 -1.01856,1.01172 -0.6084,0.32128 -1.4834,0.32128 -1.16894,0 -1.86621,-0.65625 -0.69726,-0.66308 -0.69726,-1.7705 0,-1.27832 0.85449,-1.94141 0.86133,-0.66309 2.52246,-0.66309 h 1.68848 v -0.19824 q -0.007,-0.91601 -0.46485,-1.32617 -0.458,-0.41699 -1.46289,-0.41699 -0.64257,0 -1.29882,0.18457 -0.65625,0.18457 -1.27832,0.54004 v -1.25781 q 0.69726,-0.26661 1.333,-0.39649 0.64258,-0.13672 1.24414,-0.13672 0.9502,0 1.62012,0.28028 0.67676,0.28027 1.09375,0.84082 0.25977,0.34179 0.36914,0.84765 0.10938,0.49903 0.10938,1.50391 z"
+           style="fill:#808080"
+           id="path9583" />
+        <path
+           d="m 207.31799,501.23041 q 0,0.84765 0.30762,1.27832 0.31445,0.43066 0.92285,0.43066 h 1.46973 v 1.05957 h -1.59277 q -1.12793,0 -1.75,-0.71777 -0.61524,-0.72461 -0.61524,-2.05078 v -6.92481 h -2.0166 v -0.98437 h 3.27441 z"
+           style="fill:#808080"
+           id="path9585" />
+        <path
+           d="m 221.8342,503.0351 v 3.87597 h -1.26465 v -10.56836 h 1.26465 v 0.97754 q 0.31445,-0.56738 0.83398,-0.86133 0.52637,-0.30078 1.20996,-0.30078 1.3877,0 2.17383,1.07324 0.79297,1.07325 0.79297,2.97364 0,1.86621 -0.79297,2.93261 -0.79297,1.05957 -2.17383,1.05957 -0.69726,0 -1.22363,-0.29394 -0.51953,-0.30078 -0.82031,-0.86816 z m 3.6914,-2.85743 q 0,-1.46289 -0.46484,-2.208 -0.45801,-0.74512 -1.36719,-0.74512 -0.91601,0 -1.38769,0.75195 -0.47168,0.74512 -0.47168,2.20117 0,1.44922 0.47168,2.20118 0.47168,0.75195 1.38769,0.75195 0.90918,0 1.36719,-0.74512 0.46484,-0.74512 0.46484,-2.20801 z"
+           style="fill:#808080"
+           id="path9587" />
+        <path
+           d="m 232.49831,500.15033 h -0.417 q -1.10058,0 -1.66113,0.38965 -0.55371,0.38281 -0.55371,1.14844 0,0.69043 0.41699,1.07324 0.41699,0.38281 1.15528,0.38281 1.03906,0 1.63379,-0.71777 0.59472,-0.72461 0.60156,-1.9961 v -0.28027 z m 2.44043,-0.51953 v 4.36816 h -1.26465 v -1.13476 q -0.40332,0.68359 -1.01856,1.01172 -0.6084,0.32128 -1.4834,0.32128 -1.16894,0 -1.86621,-0.65625 -0.69726,-0.66308 -0.69726,-1.7705 0,-1.27832 0.85449,-1.94141 0.86133,-0.66309 2.52246,-0.66309 h 1.68848 v -0.19824 q -0.007,-0.91601 -0.46485,-1.32617 -0.458,-0.41699 -1.46289,-0.41699 -0.64257,0 -1.29882,0.18457 -0.65625,0.18457 -1.27833,0.54004 v -1.25781 q 0.69727,-0.26661 1.33301,-0.39649 0.64258,-0.13672 1.24414,-0.13672 0.9502,0 1.62012,0.28028 0.67676,0.28027 1.09375,0.84082 0.25977,0.34179 0.36914,0.84765 0.10938,0.49903 0.10938,1.50391 z"
+           style="fill:#808080"
+           id="path9589" />
+        <path
+           d="m 244.02379,497.92181 q -0.40332,-0.31445 -0.82031,-0.458 -0.417,-0.14356 -0.91602,-0.14356 -1.17578,0 -1.79785,0.73828 -0.62207,0.73828 -0.62207,2.13282 v 3.80761 h -1.26465 v -7.65625 h 1.26465 v 1.49707 q 0.31445,-0.81347 0.96387,-1.24414 0.65625,-0.4375 1.55175,-0.4375 0.46485,0 0.86817,0.11621 0.40332,0.11621 0.77246,0.36231 z"
+           style="fill:#808080"
+           id="path9591" />
+        <path
+           d="m 249.36609,500.15033 h -0.41699 q -1.10059,0 -1.66114,0.38965 -0.55371,0.38281 -0.55371,1.14844 0,0.69043 0.417,1.07324 0.41699,0.38281 1.15527,0.38281 1.03906,0 1.63379,-0.71777 0.59472,-0.72461 0.60156,-1.9961 v -0.28027 z m 2.44043,-0.51953 v 4.36816 h -1.26465 v -1.13476 q -0.40332,0.68359 -1.01855,1.01172 -0.6084,0.32128 -1.4834,0.32128 -1.16895,0 -1.86621,-0.65625 -0.69727,-0.66308 -0.69727,-1.7705 0,-1.27832 0.85449,-1.94141 0.86133,-0.66309 2.52246,-0.66309 h 1.68848 v -0.19824 q -0.007,-0.91601 -0.46484,-1.32617 -0.45801,-0.41699 -1.46289,-0.41699 -0.64258,0 -1.29883,0.18457 -0.65625,0.18457 -1.27832,0.54004 v -1.25781 q 0.69726,-0.26661 1.33301,-0.39649 0.64257,-0.13672 1.24414,-0.13672 0.95019,0 1.62011,0.28028 0.67676,0.28027 1.09375,0.84082 0.25977,0.34179 0.36914,0.84765 0.10938,0.49903 0.10938,1.50391 z"
+           style="fill:#808080"
+           id="path9593" />
+        <path
+           d="m 257.61713,497.12201 q 0.23242,-0.49219 0.58789,-0.72461 0.3623,-0.23926 0.86816,-0.23926 0.92285,0 1.29883,0.71778 0.38281,0.71093 0.38281,2.68652 v 4.43652 h -1.14844 v -4.38183 q 0,-1.62012 -0.18457,-2.00977 -0.17773,-0.39648 -0.65625,-0.39648 -0.54687,0 -0.75195,0.42382 -0.19824,0.417 -0.19824,1.98243 v 4.38183 h -1.14844 v -4.38183 q 0,-1.64063 -0.19824,-2.02344 -0.19141,-0.38281 -0.69727,-0.38281 -0.49902,0 -0.69726,0.42382 -0.19141,0.417 -0.19141,1.98243 v 4.38183 h -1.1416 v -7.65625 h 1.1416 v 0.65625 q 0.22559,-0.41015 0.56055,-0.62207 0.3418,-0.21875 0.77246,-0.21875 0.51953,0 0.86133,0.23926 0.34863,0.23926 0.54004,0.72461 z"
+           style="fill:#808080"
+           id="path9595" />
+        <path
+           d="m 269.09128,499.54193 v 0.61524 h -5.44824 v 0.041 q -0.0547,1.56543 0.59472,2.24902 0.65625,0.6836 1.84571,0.6836 0.60156,0 1.25781,-0.19141 0.65625,-0.1914 1.40137,-0.58105 v 1.25097 q -0.71778,0.29395 -1.3877,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.0664 -1.00488,-1.07324 -1.00488,-2.95313 0,-1.83203 0.98437,-2.92578 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99121 0.90235,2.39258 z m -1.25781,-0.36914 q -0.082,-0.79297 -0.58106,-1.36719 -0.49219,-0.58105 -1.42187,-0.58105 -0.90918,0 -1.49707,0.60156 -0.5879,0.60156 -0.64258,1.35352 z"
+           style="fill:#808080"
+           id="path9597" />
+        <path
+           d="m 274.06107,494.16888 v 2.17383 h 2.85742 v 0.97754 h -2.85742 v 4.15625 q 0,0.84766 0.32128,1.18262 0.32129,0.33496 1.1211,0.33496 h 1.41504 v 1.00488 h -1.53809 q -1.41504,0 -1.99609,-0.56738 -0.58106,-0.56738 -0.58106,-1.95508 v -4.15625 h -2.04394 v -0.97754 h 2.04394 v -2.17383 z"
+           style="fill:#808080"
+           id="path9599" />
+        <path
+           d="m 285.95905,499.54193 v 0.61524 h -5.44825 v 0.041 q -0.0547,1.56543 0.59473,2.24902 0.65625,0.6836 1.8457,0.6836 0.60157,0 1.25782,-0.19141 0.65625,-0.1914 1.40136,-0.58105 v 1.25097 q -0.71777,0.29395 -1.38769,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.0664 -1.00488,-1.07324 -1.00488,-2.95313 0,-1.83203 0.98437,-2.92578 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99121 0.90235,2.39258 z m -1.25782,-0.36914 q -0.082,-0.79297 -0.58105,-1.36719 -0.49219,-0.58105 -1.42188,-0.58105 -0.90918,0 -1.49707,0.60156 -0.58789,0.60156 -0.64258,1.35352 z"
+           style="fill:#808080"
+           id="path9601" />
+        <path
+           d="m 294.62708,497.92181 q -0.40333,-0.31445 -0.82032,-0.458 -0.41699,-0.14356 -0.91601,-0.14356 -1.17578,0 -1.79785,0.73828 -0.62207,0.73828 -0.62207,2.13282 v 3.80761 h -1.26465 v -7.65625 h 1.26465 v 1.49707 q 0.31445,-0.81347 0.96386,-1.24414 0.65625,-0.4375 1.55176,-0.4375 0.46484,0 0.86816,0.11621 0.40332,0.11621 0.77247,0.36231 z"
+           style="fill:#808080"
+           id="path9603" />
+        <path
+           d="m 301.82193,496.60931 v 1.23047 q -0.54004,-0.31445 -1.08691,-0.47168 -0.54688,-0.15722 -1.11426,-0.15722 -0.85449,0 -1.27832,0.28027 -0.41699,0.27344 -0.41699,0.84082 0,0.5127 0.31445,0.76563 0.31445,0.25292 1.56543,0.49218 l 0.50586,0.0957 q 0.93652,0.17773 1.41504,0.71093 0.48535,0.53321 0.48535,1.3877 0,1.13476 -0.80664,1.77734 -0.80664,0.63574 -2.24219,0.63574 -0.56738,0 -1.18945,-0.12304 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29883 q 0.7041,0.36231 1.34668,0.54688 0.64258,0.17773 1.21679,0.17773 0.83399,0 1.292,-0.33496 0.458,-0.3418 0.458,-0.9502 0,-0.875 -1.6748,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08691,-0.21192 -1.58594,-0.71094 -0.49902,-0.50586 -0.49902,-1.37402 0,-1.10059 0.74512,-1.69532 0.74512,-0.60156 2.12597,-0.60156 0.61524,0 1.18262,0.11621 0.56738,0.10938 1.11426,0.33496 z"
+           style="fill:#808080"
+           id="path9605" />
+        <path
+           d="m 1.8457031,522.44495 h 2.1464844 v -7.71094 l -2.5703125,1.2373 v -1.32617 l 2.5566406,-1.2168 H 5.359375 v 9.01661 h 2.1191406 v 1.15527 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path9607" />
+        <path
+           d="m 10.978583,522.43811 h 4.689453 v 1.16211 H 9.4678411 v -1.16211 q 1.2783199,-1.34668 2.2353519,-2.37891 0.957031,-1.03222 1.319336,-1.45605 0.683593,-0.83398 0.922851,-1.34668 0.239258,-0.51953 0.239258,-1.05957 0,-0.85449 -0.505859,-1.33984 -0.499024,-0.48536 -1.374024,-0.48536 -0.62207,0 -1.305664,0.22559 -0.683594,0.22559 -1.4492186,0.68359 v -1.39453 q 0.7041016,-0.33496 1.3808596,-0.50586 0.683594,-0.1709 1.346679,-0.1709 1.497071,0 2.40625,0.79981 0.916016,0.79297 0.916016,2.08496 0,0.65625 -0.307617,1.3125 -0.300781,0.65625 -0.984375,1.44922 -0.382813,0.44434 -1.114258,1.23047 -0.724609,0.78613 -2.214844,2.35156 z"
+           style="fill:#4e4e4e"
+           id="path9609" />
+        <path
+           d="m 21.078701,518.75354 q -0.922852,0 -1.428711,0.51953 -0.499023,0.5127 -0.499023,1.45606 0,0.94336 0.505859,1.46972 0.512695,0.51953 1.421875,0.51953 0.929688,0 1.428711,-0.51269 0.505859,-0.51953 0.505859,-1.47656 0,-0.93653 -0.512695,-1.45606 -0.505859,-0.51953 -1.421875,-0.51953 z m -1.203125,-0.57422 q -0.881836,-0.22558 -1.380859,-0.84082 -0.492188,-0.61523 -0.492188,-1.4834 0,-1.21679 0.827149,-1.92773 0.827148,-0.71778 2.249023,-0.71778 1.428711,0 2.255859,0.71778 0.827149,0.71094 0.827149,1.92773 0,0.86817 -0.499024,1.4834 -0.492187,0.61524 -1.374023,0.84082 1.025391,0.22559 1.56543,0.90918 0.546875,0.68359 0.546875,1.77051 0,1.38086 -0.881836,2.16016 -0.881836,0.77929 -2.44043,0.77929 -1.558594,0 -2.44043,-0.77246 -0.875,-0.7793 -0.875,-2.15332 0,-1.09375 0.540039,-1.77734 0.546875,-0.69043 1.572266,-0.91602 z m -0.499023,-2.19433 q 0,0.82031 0.4375,1.25097 0.4375,0.43067 1.264648,0.43067 0.833984,0 1.271484,-0.43067 0.4375,-0.43066 0.4375,-1.25097 0,-0.83399 -0.4375,-1.27149 -0.430664,-0.4375 -1.271484,-0.4375 -0.827148,0 -1.264648,0.44434 -0.4375,0.4375 -0.4375,1.26465 z"
+           style="fill:#4e4e4e"
+           id="path9611" />
+        <path
+           d="m 68.845078,513.39417 h 5.666992 v 1.1621 h -2.139649 v 7.88184 h 2.139649 v 1.16211 h -5.666992 v -1.16211 h 2.139648 v -7.88184 h -2.139648 z"
+           style="fill:#d0d0d0"
+           id="path9613" />
+        <path
+           d="m 78.627373,514.52893 v 3.83496 h 1.599609 q 0.957031,0 1.490234,-0.50586 0.54004,-0.50586 0.54004,-1.41504 0,-0.90918 -0.533204,-1.4082 -0.533203,-0.50586 -1.49707,-0.50586 z m -1.38086,-1.13476 h 2.980469 q 1.708984,0 2.59082,0.77929 0.881836,0.77246 0.881836,2.26953 0,1.51075 -0.881836,2.28321 -0.875,0.77246 -2.59082,0.77246 h -1.599609 v 4.10156 h -1.38086 z"
+           style="fill:#d0d0d0"
+           id="path9615" />
+        <path
+           d="m 91.663574,523.23792 q -0.526367,0.28027 -1.080078,0.41699 -0.553711,0.14355 -1.175781,0.14355 -1.961914,0 -3.048828,-1.38769 -1.080078,-1.3877 -1.080078,-3.90332 0,-2.50196 1.086914,-3.89649 1.09375,-1.40137 3.041992,-1.40137 0.62207,0 1.175781,0.14356 0.553711,0.13672 1.080078,0.41699 v 1.41504 q -0.505859,-0.41699 -1.086914,-0.63574 -0.581055,-0.21875 -1.168945,-0.21875 -1.34668,0 -2.016602,1.03906 -0.669922,1.03906 -0.669922,3.1377 0,2.09179 0.669922,3.13086 0.669922,1.03906 2.016602,1.03906 0.601562,0 1.175781,-0.21875 0.581055,-0.21875 1.080078,-0.63574 z"
+           style="fill:#d0d0d0"
+           id="path9617" />
+        <path
+           d="m 98.954117,518.50745 q 0,-2.24903 -0.464844,-3.21289 -0.458008,-0.96387 -1.510742,-0.96387 -1.045899,0 -1.510742,0.96387 -0.458008,0.96386 -0.458008,3.21289 0,2.24218 0.458008,3.20605 0.464843,0.96387 1.510742,0.96387 1.052734,0 1.510742,-0.95703 0.464844,-0.96387 0.464844,-3.21289 z m 1.442383,0 q 0,2.66601 -0.847657,3.97851 -0.84082,1.3125 -2.570312,1.3125 -1.729492,0 -2.570313,-1.30566 -0.84082,-1.30567 -0.84082,-3.98535 0,-2.67286 0.84082,-3.98536 0.847657,-1.3125 2.570313,-1.3125 1.729492,0 2.570312,1.3125 0.847657,1.3125 0.847657,3.98536 z"
+           style="fill:#d0d0d0"
+           id="path9619" />
+        <path
+           d="m 101.32626,513.42834 h 1.88671 l 3.99219,8.37403 v -8.37403 h 1.46973 v 10.17188 h -1.88672 l -3.99219,-8.37402 v 8.37402 h -1.46972 z"
+           style="fill:#d0d0d0"
+           id="path9621" />
+        <path
+           d="m 111.22813,513.39417 h 6.00879 v 1.1621 h -4.62109 v 2.73438 h 4.19043 v 1.16211 h -4.19043 v 5.14746 h -1.3877 z"
+           style="fill:#d0d0d0"
+           id="path9623" />
+        <path
+           d="m 119.43816,513.39417 h 5.667 v 1.1621 h -2.13965 v 7.88184 h 2.13965 v 1.16211 h -5.667 v -1.16211 h 2.13965 v -7.88184 h -2.13965 z"
+           style="fill:#d0d0d0"
+           id="path9625" />
+        <path
+           d="m 134.05,522.7594 q -0.55371,0.51269 -1.25097,0.7793 -0.69043,0.25976 -1.49707,0.25976 -1.94141,0 -3.02149,-1.38769 -1.08008,-1.39453 -1.08008,-3.90332 0,-2.50196 1.09375,-3.89649 1.09375,-1.40137 3.042,-1.40137 0.64257,0 1.23046,0.18458 0.5879,0.17773 1.13477,0.54687 v 1.41504 q -0.55371,-0.52637 -1.13477,-0.77246 -0.58105,-0.25293 -1.23046,-0.25293 -1.34668,0 -2.02344,1.0459 -0.66992,1.03906 -0.66992,3.13086 0,2.12597 0.64941,3.15136 0.65625,1.01856 2.00977,1.01856 0.458,0 0.7998,-0.10254 0.34863,-0.10938 0.62891,-0.33496 v -2.74121 h -1.4834 v -1.13477 H 134.05 Z"
+           style="fill:#d0d0d0"
+           id="path9627" />
+        <path
+           d="m 143.29909,524.89905 v 1.16211 h -8.36719 v -1.16211 z"
+           style="fill:#d0d0d0"
+           id="path9629" />
+        <path
+           d="m 144.74492,513.39417 h 5.66699 v 1.1621 h -2.13965 v 7.88184 h 2.13965 v 1.16211 h -5.66699 v -1.16211 h 2.13965 v -7.88184 h -2.13965 z"
+           style="fill:#d0d0d0"
+           id="path9631" />
+        <path
+           d="m 154.52721,514.52893 v 3.83496 h 1.59961 q 0.95703,0 1.49023,-0.50586 0.54004,-0.50586 0.54004,-1.41504 0,-0.90918 -0.5332,-1.4082 -0.53321,-0.50586 -1.49707,-0.50586 z m -1.38086,-1.13476 h 2.98047 q 1.70898,0 2.59082,0.77929 0.88183,0.77246 0.88183,2.26953 0,1.51075 -0.88183,2.28321 -0.875,0.77246 -2.59082,0.77246 h -1.59961 v 4.10156 h -1.38086 z"
+           style="fill:#d0d0d0"
+           id="path9633" />
+        <path
+           d="m 164.43939,522.43811 2.39942,-9.04394 h 1.42871 l -2.98731,10.20605 h -1.6748 l -2.98731,-10.20605 h 1.42871 z"
+           style="fill:#d0d0d0"
+           id="path9635" />
+        <path
+           d="m 173.69183,514.65198 -3.21972,5.39355 h 3.21972 z m -0.22558,-1.25781 h 1.59961 v 6.65136 h 1.36035 v 1.1211 h -1.36035 v 2.43359 h -1.37403 v -2.43359 h -4.32714 v -1.30567 z"
+           style="fill:#d0d0d0"
+           id="path9637" />
+        <path
+           d="m 184.43117,523.23792 q -0.52637,0.28027 -1.08008,0.41699 -0.55371,0.14355 -1.17578,0.14355 -1.96192,0 -3.04883,-1.38769 -1.08008,-1.3877 -1.08008,-3.90332 0,-2.50196 1.08692,-3.89649 1.09375,-1.40137 3.04199,-1.40137 0.62207,0 1.17578,0.14356 0.55371,0.13672 1.08008,0.41699 v 1.41504 q -0.50586,-0.41699 -1.08692,-0.63574 -0.58105,-0.21875 -1.16894,-0.21875 -1.34668,0 -2.0166,1.03906 -0.66993,1.03906 -0.66993,3.1377 0,2.09179 0.66993,3.13086 0.66992,1.03906 2.0166,1.03906 0.60156,0 1.17578,-0.21875 0.58105,-0.21875 1.08008,-0.63574 z"
+           style="fill:#d0d0d0"
+           id="path9639" />
+        <path
+           d="m 186.90921,513.39417 h 5.66699 v 1.1621 h -2.13965 v 7.88184 h 2.13965 v 1.16211 h -5.66699 v -1.16211 h 2.13965 v -7.88184 h -2.13965 z"
+           style="fill:#d0d0d0"
+           id="path9641" />
+        <path
+           d="m 196.94443,522.46545 q 1.74316,0 2.43359,-0.85449 0.69043,-0.86133 0.69043,-3.10351 0,-2.2627 -0.69043,-3.11719 -0.68359,-0.86133 -2.43359,-0.86133 h -0.65625 v 7.93652 z m 0.0273,-9.07128 q 2.33789,0 3.44531,1.24414 1.10743,1.24414 1.10743,3.86914 0,2.61132 -1.10743,3.85547 -1.10742,1.2373 -3.44531,1.2373 h -2.07129 v -10.20605 z"
+           style="fill:#d0d0d0"
+           id="path9643" />
+        <path
+           d="m 207.59827,518.78088 q 0.5332,0.13672 0.90918,0.51954 0.37597,0.37597 0.93652,1.51074 l 1.3877,2.78906 h -1.4834 l -1.2168,-2.57715 q -0.52637,-1.10058 -0.9502,-1.41504 -0.41699,-0.32129 -1.09375,-0.32129 h -1.31933 v 4.31348 h -1.3877 v -10.20605 h 2.84375 q 1.68164,0 2.57715,0.75878 0.89551,0.75879 0.89551,2.19434 0,1.01172 -0.55371,1.6543 -0.54688,0.63574 -1.54492,0.77929 z m -2.83008,-4.25195 v 3.62305 h 1.51074 q 0.99121,0 1.47656,-0.44434 0.48535,-0.44433 0.48535,-1.36035 0,-0.88184 -0.51953,-1.34668 -0.51269,-0.47168 -1.49707,-0.47168 z"
+           style="fill:#d0d0d0"
+           id="path9645" />
+        <path
+           d="m 211.43329,520.18225 h 7.22558 v 1.15527 h -7.22558 z m 0,-3.21973 h 7.22558 v 1.15528 h -7.22558 z"
+           style="fill:#d0d0d0"
+           id="path9647" />
+        <path
+           d="m 224.00119,519.63538 v 2.96679 q 0.75195,-0.0205 1.17578,-0.41699 0.42383,-0.39648 0.42383,-1.08008 0,-0.63574 -0.38281,-0.98437 -0.38282,-0.35547 -1.2168,-0.48535 z m -0.68359,-1.29883 v -2.82324 q -0.71094,0.0273 -1.11426,0.41015 -0.39649,0.38281 -0.39649,1.02539 0,0.58789 0.36914,0.92969 0.37598,0.3418 1.14161,0.45801 z m 0.68359,7.32129 h -0.68359 l -0.007,-2.05762 q -0.69727,-0.0342 -1.38769,-0.19141 -0.6836,-0.15722 -1.35352,-0.4375 v -1.23047 q 0.68359,0.42383 1.37402,0.64942 0.69727,0.22558 1.37403,0.23926 v -3.13086 q -1.36719,-0.21192 -2.05762,-0.83399 -0.69043,-0.62207 -0.69043,-1.64746 0,-1.07324 0.71777,-1.70898 0.72461,-0.64258 2.03028,-0.73828 v -1.60645 h 0.68359 l 0.007,1.60645 q 0.54004,0.0342 1.09375,0.13672 0.55371,0.10253 1.12793,0.28027 v 1.18262 q -0.58106,-0.29395 -1.13477,-0.45118 -0.54687,-0.16406 -1.09375,-0.1914 v 2.94629 q 1.4082,0.21191 2.14648,0.875 0.73829,0.66308 0.73829,1.71582 0,1.05273 -0.79981,1.75683 -0.79297,0.7041 -2.07812,0.76563 z"
+           style="fill:#d0d0d0"
+           id="path9649" />
+        <path
+           d="m 233.5442,512.29358 q -0.90917,1.55859 -1.36035,3.11035 -0.44433,1.54492 -0.44433,3.11719 0,1.56543 0.44433,3.11719 0.45118,1.55175 1.36035,3.12402 h -1.09375 q -1.03222,-1.62695 -1.53808,-3.16504 -0.50586,-1.54492 -0.50586,-3.07617 0,-1.52442 0.50586,-3.06934 0.50586,-1.54492 1.53808,-3.1582 z"
+           style="fill:#d0d0d0"
+           id="path9651" />
+        <path
+           d="m 240.74937,516.72327 q 0.23243,-0.49219 0.5879,-0.72461 0.3623,-0.23926 0.86816,-0.23926 0.92285,0 1.29883,0.71777 0.38281,0.71094 0.38281,2.68653 v 4.43652 h -1.14844 v -4.38184 q 0,-1.62011 -0.18457,-2.00976 -0.17773,-0.39649 -0.65625,-0.39649 -0.54687,0 -0.75195,0.42383 -0.19824,0.41699 -0.19824,1.98242 v 4.38184 h -1.14844 v -4.38184 q 0,-1.64062 -0.19824,-2.02343 -0.19141,-0.38282 -0.69727,-0.38282 -0.49902,0 -0.69726,0.42383 -0.19141,0.41699 -0.19141,1.98242 v 4.38184 h -1.1416 v -7.65625 h 1.1416 v 0.65625 q 0.22559,-0.41016 0.56055,-0.62207 0.34179,-0.21875 0.77246,-0.21875 0.51953,0 0.86133,0.23926 0.34863,0.23926 0.54003,0.72461 z"
+           style="fill:#d0d0d0"
+           id="path9653" />
+        <path
+           d="m 249.36609,519.75159 h -0.41699 q -1.10059,0 -1.66114,0.38965 -0.55371,0.38281 -0.55371,1.14843 0,0.69043 0.417,1.07325 0.41699,0.38281 1.15527,0.38281 1.03906,0 1.63379,-0.71778 0.59472,-0.72461 0.60156,-1.99609 v -0.28027 z m 2.44043,-0.51953 v 4.36816 h -1.26465 v -1.13477 q -0.40332,0.6836 -1.01855,1.01172 -0.6084,0.32129 -1.4834,0.32129 -1.16895,0 -1.86621,-0.65625 -0.69727,-0.66308 -0.69727,-1.77051 0,-1.27832 0.85449,-1.9414 0.86133,-0.66309 2.52246,-0.66309 h 1.68848 v -0.19824 q -0.007,-0.91602 -0.46484,-1.32617 -0.45801,-0.41699 -1.46289,-0.41699 -0.64258,0 -1.29883,0.18457 -0.65625,0.18457 -1.27832,0.54004 v -1.25782 q 0.69726,-0.2666 1.33301,-0.39648 0.64257,-0.13672 1.24414,-0.13672 0.95019,0 1.62011,0.28027 0.67676,0.28028 1.09375,0.84082 0.25977,0.3418 0.36914,0.84766 0.10938,0.49902 0.10938,1.50391 z"
+           style="fill:#d0d0d0"
+           id="path9655" />
+        <path
+           d="m 259.6474,516.21057 v 1.23047 q -0.54004,-0.31445 -1.08691,-0.47168 -0.54688,-0.15723 -1.11426,-0.15723 -0.85449,0 -1.27832,0.28028 -0.41699,0.27343 -0.41699,0.84082 0,0.51269 0.31445,0.76562 0.31445,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93652,0.17774 1.41504,0.71094 0.48535,0.5332 0.48535,1.3877 0,1.13476 -0.80664,1.77734 -0.80664,0.63574 -2.24219,0.63574 -0.56738,0 -1.18945,-0.12304 -0.62207,-0.11622 -1.34668,-0.35547 v -1.29883 q 0.7041,0.3623 1.34668,0.54687 0.64258,0.17774 1.21679,0.17774 0.83399,0 1.292,-0.33496 0.458,-0.3418 0.458,-0.9502 0,-0.875 -1.6748,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08691,-0.21192 -1.58594,-0.71094 -0.49902,-0.50586 -0.49902,-1.37403 0,-1.10058 0.74512,-1.69531 0.74512,-0.60156 2.12597,-0.60156 0.61524,0 1.18262,0.11621 0.56738,0.10938 1.11426,0.33496 z"
+           style="fill:#d0d0d0"
+           id="path9657" />
+        <path
+           d="m 263.04831,512.9635 h 1.29883 v 6.15918 l 3.30176,-3.17871 h 1.53125 l -3.01465,2.88477 3.48632,4.77148 h -1.53808 l -2.83008,-3.95117 -0.93652,0.88183 v 3.06934 h -1.29883 z"
+           style="fill:#d0d0d0"
+           id="path9659" />
+        <path
+           d="m 272.4136,522.43811 h 4.68946 v 1.16211 h -6.2002 v -1.16211 q 1.27832,-1.34668 2.23535,-2.37891 0.95704,-1.03222 1.31934,-1.45605 0.68359,-0.83398 0.92285,-1.34668 0.23926,-0.51953 0.23926,-1.05957 0,-0.85449 -0.50586,-1.33984 -0.49902,-0.48536 -1.37402,-0.48536 -0.62207,0 -1.30567,0.22559 -0.68359,0.22559 -1.44922,0.68359 v -1.39453 q 0.70411,-0.33496 1.38086,-0.50586 0.6836,-0.1709 1.34668,-0.1709 1.49707,0 2.40625,0.79981 0.91602,0.79297 0.91602,2.08496 0,0.65625 -0.30762,1.3125 -0.30078,0.65625 -0.98437,1.44922 -0.38282,0.44434 -1.11426,1.23047 -0.72461,0.78613 -2.21485,2.35156 z"
+           style="fill:#d0d0d0"
+           id="path9661" />
+        <path
+           d="m 285.55573,523.21057 q -0.50586,0.29395 -1.0459,0.4375 -0.53321,0.15039 -1.09375,0.15039 -1.77735,0 -2.78223,-1.0664 -0.99805,-1.06641 -0.99805,-2.95313 0,-1.88672 0.99805,-2.95312 1.00488,-1.06641 2.78223,-1.06641 0.55371,0 1.08007,0.14355 0.52637,0.14356 1.05958,0.44434 v 1.31934 q -0.49903,-0.44434 -1.00489,-0.64258 -0.49902,-0.19824 -1.13476,-0.19824 -1.18262,0 -1.81836,0.76562 -0.63574,0.76563 -0.63574,2.1875 0,1.41504 0.63574,2.1875 0.64258,0.76563 1.81836,0.76563 0.65625,0 1.17578,-0.19825 0.51953,-0.20507 0.96387,-0.6289 z"
+           style="fill:#d0d0d0"
+           id="path9663" />
+        <path
+           d="m 288.89172,515.97131 h 3.21973 v 6.65137 h 2.49512 v 0.97754 h -6.24805 v -0.97754 h 2.49512 v -5.67383 h -1.96192 z m 1.96192,-2.97363 h 1.25781 v 1.58594 h -1.25781 z"
+           style="fill:#d0d0d0"
+           id="path9665" />
+        <path
+           d="m 301.0358,516.92151 v -3.95801 h 1.25781 v 10.63672 h -1.25781 v -0.96387 q -0.31446,0.56739 -0.84082,0.86817 -0.51953,0.29394 -1.20313,0.29394 -1.38769,0 -2.1875,-1.07324 -0.79297,-1.08008 -0.79297,-2.97363 0,-1.86621 0.79981,-2.92578 0.7998,-1.06641 2.18066,-1.06641 0.69043,0 1.2168,0.30078 0.52637,0.29395 0.82715,0.86133 z m -3.69825,2.85742 q 0,1.46289 0.46485,2.20801 0.46484,0.74512 1.37402,0.74512 0.90918,0 1.38086,-0.75196 0.47852,-0.75195 0.47852,-2.20117 0,-1.45605 -0.47852,-2.20117 -0.47168,-0.75195 -1.38086,-0.75195 -0.90918,0 -1.37402,0.74511 -0.46485,0.74512 -0.46485,2.20801 z"
+           style="fill:#d0d0d0"
+           id="path9667" />
+        <path
+           d="m 311.49484,517.52307 q -0.40332,-0.31445 -0.82031,-0.45801 -0.41699,-0.14355 -0.91602,-0.14355 -1.17578,0 -1.79785,0.73828 -0.62207,0.73828 -0.62207,2.13281 v 3.80762 h -1.26465 v -7.65625 h 1.26465 v 1.49707 q 0.31446,-0.81348 0.96387,-1.24414 0.65625,-0.4375 1.55176,-0.4375 0.46484,0 0.86816,0.11621 0.40332,0.11621 0.77246,0.36231 z"
+           style="fill:#d0d0d0"
+           id="path9669" />
+        <path
+           d="m 325.19757,519.63538 v 2.96679 q 0.75195,-0.0205 1.17578,-0.41699 0.42383,-0.39648 0.42383,-1.08008 0,-0.63574 -0.38281,-0.98437 -0.38281,-0.35547 -1.2168,-0.48535 z m -0.68359,-1.29883 v -2.82324 q -0.71094,0.0273 -1.11426,0.41015 -0.39649,0.38281 -0.39649,1.02539 0,0.58789 0.36915,0.92969 0.37597,0.3418 1.1416,0.45801 z m 0.68359,7.32129 h -0.68359 l -0.007,-2.05762 q -0.69726,-0.0342 -1.38769,-0.19141 -0.6836,-0.15722 -1.35352,-0.4375 v -1.23047 q 0.68359,0.42383 1.37402,0.64942 0.69727,0.22558 1.37403,0.23926 v -3.13086 q -1.36719,-0.21192 -2.05762,-0.83399 -0.69043,-0.62207 -0.69043,-1.64746 0,-1.07324 0.71777,-1.70898 0.72461,-0.64258 2.03028,-0.73828 v -1.60645 h 0.68359 l 0.007,1.60645 q 0.54004,0.0342 1.09375,0.13672 0.55371,0.10253 1.12793,0.28027 v 1.18262 q -0.58106,-0.29395 -1.13477,-0.45118 -0.54687,-0.16406 -1.09375,-0.1914 v 2.94629 q 1.4082,0.21191 2.14649,0.875 0.73828,0.66308 0.73828,1.71582 0,1.05273 -0.79981,1.75683 -0.79297,0.7041 -2.07812,0.76563 z"
+           style="fill:#d0d0d0"
+           id="path9671" />
+        <path
+           d="m 330.2699,513.39417 h 5.66699 v 1.1621 h -2.13965 v 7.88184 h 2.13965 v 1.16211 h -5.66699 v -1.16211 h 2.13965 v -7.88184 h -2.13965 z"
+           style="fill:#d0d0d0"
+           id="path9673" />
+        <path
+           d="m 340.06238,514.52893 v 3.83496 h 1.59961 q 0.95703,0 1.49023,-0.50586 0.54004,-0.50586 0.54004,-1.41504 0,-0.90918 -0.5332,-1.4082 -0.53321,-0.50586 -1.49707,-0.50586 z m -1.38086,-1.13476 h 2.98047 q 1.70898,0 2.59082,0.77929 0.88183,0.77246 0.88183,2.26953 0,1.51075 -0.88183,2.28321 -0.875,0.77246 -2.59082,0.77246 h -1.59961 v 4.10156 h -1.38086 z"
+           style="fill:#d0d0d0"
+           id="path9675" />
+        <path
+           d="m 353.09857,523.23792 q -0.52637,0.28027 -1.08008,0.41699 -0.55371,0.14355 -1.17578,0.14355 -1.96191,0 -3.04883,-1.38769 -1.08007,-1.3877 -1.08007,-3.90332 0,-2.50196 1.08691,-3.89649 1.09375,-1.40137 3.04199,-1.40137 0.62207,0 1.17578,0.14356 0.55371,0.13672 1.08008,0.41699 v 1.41504 q -0.50586,-0.41699 -1.08691,-0.63574 -0.58106,-0.21875 -1.16895,-0.21875 -1.34668,0 -2.0166,1.03906 -0.66992,1.03906 -0.66992,3.1377 0,2.09179 0.66992,3.13086 0.66992,1.03906 2.0166,1.03906 0.60156,0 1.17578,-0.21875 0.58106,-0.21875 1.08008,-0.63574 z"
+           style="fill:#d0d0d0"
+           id="path9677" />
+        <path
+           d="m 360.38913,518.50745 q 0,-2.24903 -0.46484,-3.21289 -0.45801,-0.96387 -1.51075,-0.96387 -1.04589,0 -1.51074,0.96387 -0.45801,0.96386 -0.45801,3.21289 0,2.24218 0.45801,3.20605 0.46485,0.96387 1.51074,0.96387 1.05274,0 1.51075,-0.95703 0.46484,-0.96387 0.46484,-3.21289 z m 1.44238,0 q 0,2.66601 -0.84765,3.97851 -0.84082,1.3125 -2.57032,1.3125 -1.72949,0 -2.57031,-1.30566 -0.84082,-1.30567 -0.84082,-3.98535 0,-2.67286 0.84082,-3.98536 0.84766,-1.3125 2.57031,-1.3125 1.7295,0 2.57032,1.3125 0.84765,1.3125 0.84765,3.98536 z"
+           style="fill:#d0d0d0"
+           id="path9679" />
+        <path
+           d="m 362.76126,513.42834 h 1.88672 l 3.99219,8.37403 v -8.37403 h 1.46972 v 10.17188 h -1.88671 l -3.99219,-8.37402 v 8.37402 h -1.46973 z"
+           style="fill:#d0d0d0"
+           id="path9681" />
+        <path
+           d="m 372.66315,513.39417 h 6.00879 v 1.1621 h -4.6211 v 2.73438 h 4.19043 v 1.16211 h -4.19043 v 5.14746 h -1.38769 z"
+           style="fill:#d0d0d0"
+           id="path9683" />
+        <path
+           d="m 380.87317,513.39417 h 5.66699 v 1.1621 h -2.13965 v 7.88184 h 2.13965 v 1.16211 h -5.66699 v -1.16211 h 2.13965 v -7.88184 h -2.13965 z"
+           style="fill:#d0d0d0"
+           id="path9685" />
+        <path
+           d="m 395.48502,522.7594 q -0.55372,0.51269 -1.25098,0.7793 -0.69043,0.25976 -1.49707,0.25976 -1.94141,0 -3.02149,-1.38769 -1.08007,-1.39453 -1.08007,-3.90332 0,-2.50196 1.09375,-3.89649 1.09375,-1.40137 3.04199,-1.40137 0.64258,0 1.23047,0.18458 0.58789,0.17773 1.13476,0.54687 v 1.41504 q -0.55371,-0.52637 -1.13476,-0.77246 -0.58106,-0.25293 -1.23047,-0.25293 -1.34668,0 -2.02344,1.0459 -0.66992,1.03906 -0.66992,3.13086 0,2.12597 0.64941,3.15136 0.65625,1.01856 2.00977,1.01856 0.45801,0 0.7998,-0.10254 0.34864,-0.10938 0.62891,-0.33496 v -2.74121 h -1.4834 v -1.13477 h 2.80274 z"
+           style="fill:#d0d0d0"
+           id="path9687" />
+        <path
+           d="m 404.7341,524.89905 v 1.16211 h -8.36719 v -1.16211 z"
+           style="fill:#d0d0d0"
+           id="path9689" />
+        <path
+           d="m 406.16971,513.39417 h 5.66699 v 1.1621 h -2.13965 v 7.88184 h 2.13965 v 1.16211 h -5.66699 v -1.16211 h 2.13965 v -7.88184 h -2.13965 z"
+           style="fill:#d0d0d0"
+           id="path9691" />
+        <path
+           d="m 415.96222,514.52893 v 3.83496 h 1.59961 q 0.95703,0 1.49023,-0.50586 0.54004,-0.50586 0.54004,-1.41504 0,-0.90918 -0.5332,-1.4082 -0.5332,-0.50586 -1.49707,-0.50586 z m -1.38086,-1.13476 h 2.98047 q 1.70898,0 2.59082,0.77929 0.88183,0.77246 0.88183,2.26953 0,1.51075 -0.88183,2.28321 -0.875,0.77246 -2.59082,0.77246 h -1.59961 v 4.10156 h -1.38086 z"
+           style="fill:#d0d0d0"
+           id="path9693" />
+        <path
+           d="m 425.87439,522.43811 2.39941,-9.04394 h 1.42871 l -2.9873,10.20605 h -1.6748 l -2.98731,-10.20605 h 1.42871 z"
+           style="fill:#d0d0d0"
+           id="path9695" />
+        <path
+           d="m 435.12686,514.65198 -3.21972,5.39355 h 3.21972 z m -0.22558,-1.25781 h 1.59961 v 6.65136 h 1.36035 v 1.1211 h -1.36035 v 2.43359 h -1.37403 v -2.43359 h -4.32715 v -1.30567 z"
+           style="fill:#d0d0d0"
+           id="path9697" />
+        <path
+           d="m 438.6611,513.42834 h 1.88672 l 3.99219,8.37403 v -8.37403 h 1.46973 v 10.17188 h -1.88672 l -3.99219,-8.37402 v 8.37402 h -1.46973 z"
+           style="fill:#d0d0d0"
+           id="path9699" />
+        <path
+           d="m 448.31689,513.39417 h 6.05665 v 1.1621 h -4.67579 v 2.74805 h 4.47071 v 1.16211 h -4.47071 v 3.97168 h 4.80567 v 1.16211 h -6.18653 z"
+           style="fill:#d0d0d0"
+           id="path9701" />
+        <path
+           d="m 455.72025,513.39417 h 7.78613 v 1.1621 H 460.314 v 9.04395 h -1.3877 v -9.04395 h -3.20605 z"
+           style="fill:#d0d0d0"
+           id="path9703" />
+        <path
+           d="m 464.08411,513.42834 h 1.8457 l 1.76367,5.18165 1.77735,-5.18165 h 1.85253 v 10.17188 h -1.27832 v -8.98926 l -1.81836,5.35938 h -1.04589 l -1.8252,-5.35938 v 8.98926 h -1.27148 z"
+           style="fill:#d0d0d0"
+           id="path9705" />
+        <path
+           d="m 476.47766,514.61096 -1.45605,5.22266 h 2.91211 z m -0.83398,-1.21679 h 1.6748 l 3.12402,10.20605 h -1.42871 l -0.75195,-2.65918 h -3.57519 l -0.73829,2.65918 h -1.42871 z"
+           style="fill:#d0d0d0"
+           id="path9707" />
+        <path
+           d="m 487.61349,513.7428 v 1.40137 q -0.6289,-0.40333 -1.26464,-0.6084 -0.62891,-0.20508 -1.27149,-0.20508 -0.97754,0 -1.54492,0.45801 -0.56738,0.45117 -0.56738,1.22363 0,0.67676 0.36914,1.03223 0.37597,0.35546 1.39453,0.59472 l 0.72461,0.16406 q 1.43555,0.33497 2.0918,1.05274 0.65625,0.71777 0.65625,1.95508 0,1.45605 -0.90235,2.22168 -0.90234,0.76562 -2.625,0.76562 -0.71777,0 -1.44238,-0.15722 -0.72461,-0.1504 -1.45606,-0.45801 v -1.46973 q 0.78614,0.49902 1.4834,0.73145 0.7041,0.23242 1.41504,0.23242 1.0459,0 1.62695,-0.46485 0.58106,-0.47168 0.58106,-1.3125 0,-0.76562 -0.40332,-1.16894 -0.39649,-0.40332 -1.3877,-0.62207 l -0.73828,-0.1709 q -1.42187,-0.32129 -2.06445,-0.9707 -0.64258,-0.64942 -0.64258,-1.74317 0,-1.36718 0.91602,-2.1875 0.92285,-0.82715 2.44726,-0.82715 0.58789,0 1.23731,0.13672 0.64941,0.12989 1.36718,0.39649 z"
+           style="fill:#d0d0d0"
+           id="path9709" />
+        <path
+           d="m 490.07104,513.39417 h 1.3877 v 4.53906 l 4.31348,-4.53906 h 1.62011 l -3.97168,4.16992 4.08789,6.03613 h -1.66796 l -3.32911,-5.11328 -1.05273,1.12109 v 3.99219 h -1.3877 z"
+           style="fill:#d0d0d0"
+           id="path9711" />
+        <path
+           d="m 499.94217,512.29358 h 1.09375 q 1.03223,1.61328 1.53809,3.1582 0.50585,1.54492 0.50585,3.06934 0,1.53808 -0.50585,3.08301 -0.50586,1.54492 -1.53809,3.1582 h -1.09375 q 0.90918,-1.58594 1.35351,-3.1377 0.45118,-1.55175 0.45118,-3.10351 0,-1.5586 -0.45118,-3.11035 -0.44433,-1.55176 -1.35351,-3.11719 z"
+           style="fill:#d0d0d0"
+           id="path9713" />
+        <path
+           d="m 1.8457031,542.04608 h 2.1464844 v -7.71094 l -2.5703125,1.23731 v -1.32617 l 2.5566406,-1.2168 H 5.359375 v 9.0166 h 2.1191406 v 1.15527 H 1.8457031 Z"
+           style="fill:#4e4e4e"
+           id="path9715" />
+        <path
+           d="m 10.978583,542.03925 h 4.689453 v 1.1621 H 9.4678411 v -1.1621 q 1.2783199,-1.34668 2.2353519,-2.37891 0.957031,-1.03223 1.319336,-1.45606 0.683593,-0.83398 0.922851,-1.34668 0.239258,-0.51953 0.239258,-1.05957 0,-0.85449 -0.505859,-1.33984 -0.499024,-0.48535 -1.374024,-0.48535 -0.62207,0 -1.305664,0.22559 -0.683594,0.22558 -1.4492186,0.68359 v -1.39453 q 0.7041016,-0.33496 1.3808596,-0.50586 0.683594,-0.1709 1.346679,-0.1709 1.497071,0 2.40625,0.7998 0.916016,0.79297 0.916016,2.08497 0,0.65625 -0.307617,1.3125 -0.300781,0.65625 -0.984375,1.44921 -0.382813,0.44434 -1.114258,1.23047 -0.724609,0.78614 -2.214844,2.35157 z"
+           style="fill:#4e4e4e"
+           id="path9717" />
+        <path
+           d="m 20.941982,538.67596 q 0.881836,0 1.38086,-0.63574 0.505859,-0.63574 0.505859,-1.75683 0,-1.1211 -0.505859,-1.75684 -0.499024,-0.63574 -1.38086,-0.63574 -0.916015,0 -1.380859,0.6084 -0.464844,0.60156 -0.464844,1.78418 0,1.18945 0.458008,1.79101 0.464844,0.60156 1.387695,0.60156 z m -2.460937,4.31348 v -1.27148 q 0.430664,0.25293 0.916015,0.38964 0.485352,0.12989 1.011719,0.12989 1.3125,0 1.982422,-0.98438 0.676758,-0.99121 0.676758,-2.91211 -0.321289,0.6836 -0.902344,1.05274 -0.581055,0.3623 -1.333008,0.3623 -1.476562,0 -2.290039,-0.90918 -0.80664,-0.90918 -0.80664,-2.57715 0,-1.64746 0.827148,-2.5498 0.833984,-0.90918 2.351563,-0.90918 1.777343,0 2.604492,1.27832 0.827148,1.27832 0.827148,4.01953 0,2.57715 -0.998047,3.9375 -0.991211,1.35352 -2.884765,1.35352 -0.499024,0 -1.004883,-0.10938 -0.50586,-0.10254 -0.977539,-0.30078 z"
+           style="fill:#4e4e4e"
+           id="path9719" />
+        <path
+           d="m 70.451523,542.06659 q 1.743164,0 2.433594,-0.85449 0.690429,-0.86133 0.690429,-3.10352 0,-2.26269 -0.690429,-3.11719 -0.683594,-0.86132 -2.433594,-0.86132 h -0.65625 v 7.93652 z m 0.02734,-9.07129 q 2.33789,0 3.445312,1.24414 1.107422,1.24414 1.107422,3.86914 0,2.61133 -1.107422,3.85547 -1.107422,1.2373 -3.445312,1.2373 H 68.407578 V 532.9953 Z"
+           style="fill:#d0d0d0"
+           id="path9721" />
+        <path
+           d="m 80.110771,534.2121 -1.456055,5.22265 h 2.91211 z m -0.833984,-1.2168 h 1.674804 l 3.124024,10.20605 h -1.428711 l -0.751953,-2.65917 h -3.575195 l -0.738282,2.65917 h -1.428711 z"
+           style="fill:#d0d0d0"
+           id="path9723" />
+        <path
+           d="m 84.649902,532.9953 h 7.786133 v 1.16211 h -3.192383 v 9.04394 h -1.387695 v -9.04394 h -3.206055 z"
+           style="fill:#d0d0d0"
+           id="path9725" />
+        <path
+           d="m 96.978531,534.2121 -1.456055,5.22265 h 2.91211 z m -0.833984,-1.2168 h 1.674804 l 3.124019,10.20605 h -1.428706 l -0.751953,-2.65917 h -3.575196 l -0.738281,2.65917 h -1.428711 z"
+           style="fill:#d0d0d0"
+           id="path9727" />
+        <path
+           d="m 109.56356,544.50018 v 1.16211 h -8.36719 v -1.16211 z"
+           style="fill:#d0d0d0"
+           id="path9729" />
+        <path
+           d="m 111.00938,532.9953 h 5.667 v 1.16211 h -2.13965 v 7.88184 h 2.13965 v 1.1621 h -5.667 v -1.1621 h 2.13965 v -7.88184 h -2.13965 z"
+           style="fill:#d0d0d0"
+           id="path9731" />
+        <path
+           d="m 120.79168,534.13007 v 3.83496 h 1.59961 q 0.95703,0 1.49023,-0.50586 0.54004,-0.50586 0.54004,-1.41504 0,-0.90918 -0.5332,-1.4082 -0.5332,-0.50586 -1.49707,-0.50586 z m -1.38086,-1.13477 h 2.98047 q 1.70898,0 2.59082,0.7793 0.88184,0.77246 0.88184,2.26953 0,1.51074 -0.88184,2.2832 -0.875,0.77246 -2.59082,0.77246 h -1.59961 v 4.10156 h -1.38086 z"
+           style="fill:#d0d0d0"
+           id="path9733" />
+        <path
+           d="m 130.71407,542.03925 2.39941,-9.04395 h 1.42871 l -2.9873,10.20605 h -1.67481 l -2.9873,-10.20605 h 1.42871 z"
+           style="fill:#d0d0d0"
+           id="path9735" />
+        <path
+           d="m 139.95631,534.25311 -3.21972,5.39356 h 3.21972 z m -0.22558,-1.25781 h 1.59961 v 6.65137 h 1.36035 v 1.12109 h -1.36035 v 2.43359 h -1.37403 v -2.43359 h -4.32714 v -1.30566 z"
+           style="fill:#d0d0d0"
+           id="path9737" />
+        <path
+           d="m 147.58183,534.2121 -1.45605,5.22265 h 2.91211 z m -0.83398,-1.2168 h 1.6748 l 3.12403,10.20605 h -1.42871 l -0.75196,-2.65917 h -3.57519 l -0.73828,2.65917 h -1.42871 z"
+           style="fill:#d0d0d0"
+           id="path9739" />
+        <path
+           d="m 154.78014,542.06659 q 1.74316,0 2.43359,-0.85449 0.69043,-0.86133 0.69043,-3.10352 0,-2.26269 -0.69043,-3.11719 -0.68359,-0.86132 -2.43359,-0.86132 h -0.65625 v 7.93652 z m 0.0273,-9.07129 q 2.33789,0 3.44531,1.24414 1.10742,1.24414 1.10742,3.86914 0,2.61133 -1.10742,3.85547 -1.10742,1.2373 -3.44531,1.2373 h -2.07129 V 532.9953 Z"
+           style="fill:#d0d0d0"
+           id="path9741" />
+        <path
+           d="m 163.20892,542.06659 q 1.74317,0 2.4336,-0.85449 0.69043,-0.86133 0.69043,-3.10352 0,-2.26269 -0.69043,-3.11719 -0.6836,-0.86132 -2.4336,-0.86132 h -0.65625 v 7.93652 z m 0.0273,-9.07129 q 2.33789,0 3.44531,1.24414 1.10742,1.24414 1.10742,3.86914 0,2.61133 -1.10742,3.85547 -1.10742,1.2373 -3.44531,1.2373 h -2.07129 V 532.9953 Z"
+           style="fill:#d0d0d0"
+           id="path9743" />
+        <path
+           d="m 173.86273,538.38202 q 0.53321,0.13672 0.90918,0.51953 0.37598,0.37598 0.93653,1.51074 l 1.38769,2.78906 h -1.4834 l -1.21679,-2.57714 q -0.52637,-1.10059 -0.9502,-1.41504 -0.41699,-0.32129 -1.09375,-0.32129 h -1.31934 v 4.31347 h -1.38769 V 532.9953 h 2.84375 q 1.68164,0 2.57715,0.75879 0.8955,0.75879 0.8955,2.19434 0,1.01171 -0.55371,1.65429 -0.54687,0.63574 -1.54492,0.7793 z m -2.83008,-4.25195 v 3.62304 h 1.51075 q 0.99121,0 1.47656,-0.44433 0.48535,-0.44434 0.48535,-1.36035 0,-0.88184 -0.51953,-1.34668 -0.5127,-0.47168 -1.49707,-0.47168 z"
+           style="fill:#d0d0d0"
+           id="path9745" />
+        <path
+           d="m 177.69777,539.78339 h 7.22559 v 1.15527 h -7.22559 z m 0,-3.21973 h 7.22559 v 1.15527 h -7.22559 z"
+           style="fill:#d0d0d0"
+           id="path9747" />
+        <path
+           d="m 190.26566,539.23651 v 2.9668 q 0.75195,-0.0205 1.17578,-0.41699 0.42382,-0.39649 0.42382,-1.08008 0,-0.63574 -0.38281,-0.98438 -0.38281,-0.35547 -1.21679,-0.48535 z m -0.6836,-1.29883 v -2.82324 q -0.71094,0.0273 -1.11426,0.41016 -0.39648,0.38281 -0.39648,1.02539 0,0.58789 0.36914,0.92969 0.37598,0.34179 1.1416,0.458 z m 0.6836,7.32129 h -0.6836 l -0.007,-2.05762 q -0.69727,-0.0342 -1.3877,-0.1914 -0.68359,-0.15723 -1.35352,-0.4375 v -1.23047 q 0.6836,0.42383 1.37403,0.64941 0.69726,0.22559 1.37402,0.23926 v -3.13086 q -1.36719,-0.21191 -2.05762,-0.83398 -0.69043,-0.62207 -0.69043,-1.64746 0,-1.07325 0.71778,-1.70899 0.72461,-0.64258 2.03027,-0.73828 v -1.60644 h 0.6836 l 0.007,1.60644 q 0.54004,0.0342 1.09375,0.13672 0.55371,0.10254 1.12793,0.28027 v 1.18262 q -0.58105,-0.29394 -1.13476,-0.45117 -0.54688,-0.16406 -1.09375,-0.19141 v 2.94629 q 1.4082,0.21192 2.14648,0.875 0.73828,0.66309 0.73828,1.71582 0,1.05274 -0.7998,1.75684 -0.79297,0.7041 -2.07813,0.76562 z"
+           style="fill:#d0d0d0"
+           id="path9749" />
+        <path
+           d="m 199.80869,531.89471 q -0.90918,1.5586 -1.36036,3.11036 -0.44433,1.54492 -0.44433,3.11718 0,1.56543 0.44433,3.11719 0.45118,1.55176 1.36036,3.12402 h -1.09375 q -1.03223,-1.62695 -1.53809,-3.16503 -0.50586,-1.54493 -0.50586,-3.07618 0,-1.52441 0.50586,-3.06933 0.50586,-1.54492 1.53809,-3.15821 z"
+           style="fill:#d0d0d0"
+           id="path9751" />
+        <path
+           d="m 210.0592,538.74432 v 0.61524 h -5.44824 v 0.041 q -0.0547,1.56543 0.59473,2.24903 0.65625,0.68359 1.8457,0.68359 0.60156,0 1.25781,-0.19141 0.65625,-0.1914 1.40137,-0.58105 v 1.25098 q -0.71777,0.29394 -1.38769,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.06641 -1.00489,-1.07324 -1.00489,-2.95312 0,-1.83204 0.98438,-2.92579 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99122 0.84766,0.99121 0.90234,2.39257 z m -1.25781,-0.36914 q -0.082,-0.79297 -0.58105,-1.36718 -0.49219,-0.58106 -1.42188,-0.58106 -0.90918,0 -1.49707,0.60156 -0.58789,0.60157 -0.64258,1.35352 z"
+           style="fill:#d0d0d0"
+           id="path9753" />
+        <path
+           d="m 218.08466,542.81171 q -0.50586,0.29394 -1.0459,0.4375 -0.53321,0.15039 -1.09375,0.15039 -1.77735,0 -2.78223,-1.06641 -0.99805,-1.06641 -0.99805,-2.95312 0,-1.88672 0.99805,-2.95313 1.00488,-1.06641 2.78223,-1.06641 0.55371,0 1.08008,0.14356 0.52636,0.14355 1.05957,0.44434 v 1.31933 q -0.49903,-0.44433 -1.00489,-0.64258 -0.49902,-0.19824 -1.13476,-0.19824 -1.18262,0 -1.81836,0.76563 -0.63574,0.76562 -0.63574,2.1875 0,1.41503 0.63574,2.1875 0.64258,0.76562 1.81836,0.76562 0.65625,0 1.17578,-0.19824 0.51953,-0.20508 0.96387,-0.62891 z"
+           style="fill:#d0d0d0"
+           id="path9755" />
+        <path
+           d="m 226.45529,538.45721 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03222 -0.3623,-1.51757 -0.36231,-0.48536 -1.13477,-0.48536 -0.88183,0 -1.36035,0.62891 -0.47168,0.62207 -0.47168,1.79102 v 4.32714 h -1.25781 v -10.63671 h 1.25781 v 4.1289 q 0.33496,-0.65625 0.90918,-0.99121 0.57422,-0.3418 1.36035,-0.3418 1.16895,0 1.74317,0.77247 0.58105,0.76562 0.58105,2.32421 z"
+           style="fill:#d0d0d0"
+           id="path9757" />
+        <path
+           d="m 231.91042,536.42694 q -0.95704,0 -1.44922,0.74512 -0.49219,0.74512 -0.49219,2.20801 0,1.45605 0.49219,2.208 0.49218,0.74512 1.44922,0.74512 0.96386,0 1.45605,-0.74512 0.49219,-0.75195 0.49219,-2.208 0,-1.46289 -0.49219,-2.20801 -0.49219,-0.74512 -1.45605,-0.74512 z m 0,-1.06641 q 1.59277,0 2.43359,1.03223 0.84766,1.03223 0.84766,2.98731 0,1.96191 -0.84082,2.99414 -0.84082,1.02539 -2.44043,1.02539 -1.59278,0 -2.4336,-1.02539 -0.84082,-1.03223 -0.84082,-2.99414 0,-1.95508 0.84082,-2.98731 0.84082,-1.03223 2.4336,-1.03223 z"
+           style="fill:#d0d0d0"
+           id="path9759" />
+        <path
+           d="m 249.29773,539.23651 v 2.9668 q 0.75195,-0.0205 1.17578,-0.41699 0.42383,-0.39649 0.42383,-1.08008 0,-0.63574 -0.38281,-0.98438 -0.38282,-0.35547 -1.2168,-0.48535 z m -0.68359,-1.29883 v -2.82324 q -0.71094,0.0273 -1.11426,0.41016 -0.39649,0.38281 -0.39649,1.02539 0,0.58789 0.36914,0.92969 0.37598,0.34179 1.14161,0.458 z m 0.68359,7.32129 h -0.68359 l -0.007,-2.05762 q -0.69727,-0.0342 -1.3877,-0.1914 -0.68359,-0.15723 -1.35351,-0.4375 v -1.23047 q 0.68359,0.42383 1.37402,0.64941 0.69727,0.22559 1.37403,0.23926 v -3.13086 q -1.36719,-0.21191 -2.05762,-0.83398 -0.69043,-0.62207 -0.69043,-1.64746 0,-1.07325 0.71777,-1.70899 0.72461,-0.64258 2.03028,-0.73828 v -1.60644 h 0.68359 l 0.007,1.60644 q 0.54003,0.0342 1.09375,0.13672 0.55371,0.10254 1.12793,0.28027 v 1.18262 q -0.58106,-0.29394 -1.13477,-0.45117 -0.54688,-0.16406 -1.09375,-0.19141 v 2.94629 q 1.4082,0.21192 2.14648,0.875 0.73829,0.66309 0.73829,1.71582 0,1.05274 -0.79981,1.75684 -0.79297,0.7041 -2.07812,0.76562 z"
+           style="fill:#d0d0d0"
+           id="path9761" />
+        <path
+           d="m 260.05072,543.54999 v 0.98437 h -0.4375 q -1.70215,0 -2.2832,-0.50586 -0.57422,-0.50586 -0.57422,-2.0166 v -1.36719 q 0,-0.74511 -0.42383,-1.28515 -0.41699,-0.54004 -1.29883,-0.54004 h -0.83398 v -0.97754 h 0.83398 q 0.96387,0 1.33985,-0.45801 0.38281,-0.45801 0.38281,-1.34668 v -1.77734 q 0,-1.51074 0.57422,-2.00977 0.58105,-0.50586 2.2832,-0.50586 h 0.4375 v 0.97754 h -0.47852 q -0.95703,0 -1.25097,0.30078 -0.28711,0.29395 -0.28711,1.26465 v 1.83203 q 0,1.20313 -0.47168,1.62012 -0.47168,0.41016 -1.83887,0.59473 1.32617,0.15722 1.81836,0.6084 0.49219,0.44433 0.49219,1.61328 v 1.42871 q 0,0.97754 0.28711,1.27148 0.29394,0.29395 1.25097,0.29395 z"
+           style="fill:#d0d0d0"
+           id="path9763" />
+        <path
+           d="m 262.80905,532.9953 h 5.66699 v 1.16211 h -2.13964 v 7.88184 h 2.13964 v 1.1621 h -5.66699 v -1.1621 h 2.13965 v -7.88184 h -2.13965 z"
+           style="fill:#d0d0d0"
+           id="path9765" />
+        <path
+           d="m 272.59134,534.13007 v 3.83496 h 1.59961 q 0.95703,0 1.49023,-0.50586 0.54004,-0.50586 0.54004,-1.41504 0,-0.90918 -0.5332,-1.4082 -0.5332,-0.50586 -1.49707,-0.50586 z m -1.38086,-1.13477 h 2.98047 q 1.70898,0 2.59082,0.7793 0.88183,0.77246 0.88183,2.26953 0,1.51074 -0.88183,2.2832 -0.875,0.77246 -2.59082,0.77246 h -1.59961 v 4.10156 h -1.38086 z"
+           style="fill:#d0d0d0"
+           id="path9767" />
+        <path
+           d="m 285.63776,542.83905 q -0.52637,0.28027 -1.08008,0.41699 -0.55371,0.14356 -1.17578,0.14356 -1.96192,0 -3.04883,-1.3877 -1.08008,-1.38769 -1.08008,-3.90332 0,-2.50195 1.08691,-3.89648 1.09375,-1.40137 3.042,-1.40137 0.62207,0 1.17578,0.14355 0.55371,0.13672 1.08008,0.417 v 1.41504 q -0.50586,-0.417 -1.08692,-0.63575 -0.58105,-0.21875 -1.16894,-0.21875 -1.34668,0 -2.0166,1.03907 -0.66993,1.03906 -0.66993,3.13769 0,2.0918 0.66993,3.13086 0.66992,1.03906 2.0166,1.03906 0.60156,0 1.17578,-0.21875 0.58105,-0.21875 1.08008,-0.63574 z"
+           style="fill:#d0d0d0"
+           id="path9769" />
+        <path
+           d="m 292.91809,538.10858 q 0,-2.24902 -0.46484,-3.21289 -0.45801,-0.96387 -1.51075,-0.96387 -1.04589,0 -1.51074,0.96387 -0.45801,0.96387 -0.45801,3.21289 0,2.24219 0.45801,3.20606 0.46485,0.96386 1.51074,0.96386 1.05274,0 1.51075,-0.95703 0.46484,-0.96387 0.46484,-3.21289 z m 1.44238,0 q 0,2.66602 -0.84765,3.97852 -0.84082,1.3125 -2.57032,1.3125 -1.72949,0 -2.57031,-1.30567 -0.84082,-1.30566 -0.84082,-3.98535 0,-2.67285 0.84082,-3.98535 0.84766,-1.3125 2.57031,-1.3125 1.7295,0 2.57032,1.3125 0.84765,1.3125 0.84765,3.98535 z"
+           style="fill:#d0d0d0"
+           id="path9771" />
+        <path
+           d="m 295.30045,533.02948 h 1.88671 l 3.99219,8.37402 v -8.37402 h 1.46973 v 10.17187 h -1.88672 l -3.99219,-8.37402 v 8.37402 h -1.46972 z"
+           style="fill:#d0d0d0"
+           id="path9773" />
+        <path
+           d="m 305.19211,532.9953 h 6.00879 v 1.16211 h -4.6211 v 2.73437 h 4.19043 v 1.16211 h -4.19043 v 5.14746 h -1.38769 z"
+           style="fill:#d0d0d0"
+           id="path9775" />
+        <path
+           d="m 313.41235,532.9953 h 5.667 v 1.16211 h -2.13965 v 7.88184 h 2.13965 v 1.1621 h -5.667 v -1.1621 h 2.13965 v -7.88184 h -2.13965 z"
+           style="fill:#d0d0d0"
+           id="path9777" />
+        <path
+           d="m 328.01398,542.36053 q -0.55371,0.5127 -1.25098,0.7793 -0.69043,0.25977 -1.49707,0.25977 -1.94141,0 -3.02148,-1.3877 -1.08008,-1.39453 -1.08008,-3.90332 0,-2.50195 1.09375,-3.89648 1.09375,-1.40137 3.04199,-1.40137 0.64258,0 1.23047,0.18457 0.58789,0.17773 1.13476,0.54688 v 1.41503 q -0.55371,-0.52636 -1.13476,-0.77246 -0.58106,-0.25293 -1.23047,-0.25293 -1.34668,0 -2.02344,1.0459 -0.66992,1.03906 -0.66992,3.13086 0,2.12598 0.64941,3.15137 0.65625,1.01855 2.00977,1.01855 0.45801,0 0.7998,-0.10254 0.34864,-0.10937 0.62891,-0.33496 v -2.74121 h -1.4834 v -1.13476 h 2.80274 z"
+           style="fill:#d0d0d0"
+           id="path9779" />
+        <path
+           d="m 337.26306,544.50018 v 1.16211 h -8.36719 v -1.16211 z"
+           style="fill:#d0d0d0"
+           id="path9781" />
+        <path
+           d="m 338.70886,532.9953 h 5.66699 v 1.16211 h -2.13964 v 7.88184 h 2.13964 v 1.1621 h -5.66699 v -1.1621 h 2.13965 v -7.88184 h -2.13965 z"
+           style="fill:#d0d0d0"
+           id="path9783" />
+        <path
+           d="m 348.49115,534.13007 v 3.83496 h 1.59961 q 0.95703,0 1.49023,-0.50586 0.54004,-0.50586 0.54004,-1.41504 0,-0.90918 -0.5332,-1.4082 -0.5332,-0.50586 -1.49707,-0.50586 z m -1.38086,-1.13477 h 2.98047 q 1.70898,0 2.59082,0.7793 0.88184,0.77246 0.88184,2.26953 0,1.51074 -0.88184,2.2832 -0.875,0.77246 -2.59082,0.77246 h -1.59961 v 4.10156 h -1.38086 z"
+           style="fill:#d0d0d0"
+           id="path9785" />
+        <path
+           d="m 358.41354,542.03925 2.39942,-9.04395 h 1.42871 l -2.98731,10.20605 h -1.6748 l -2.98731,-10.20605 h 1.42872 z"
+           style="fill:#d0d0d0"
+           id="path9787" />
+        <path
+           d="m 367.65579,534.25311 -3.21972,5.39356 h 3.21972 z m -0.22558,-1.25781 h 1.59961 v 6.65137 h 1.36035 v 1.12109 h -1.36035 v 2.43359 h -1.37403 v -2.43359 h -4.32715 v -1.30566 z"
+           style="fill:#d0d0d0"
+           id="path9789" />
+        <path
+           d="m 375.28131,534.2121 -1.45605,5.22265 h 2.91211 z m -0.83398,-1.2168 h 1.6748 l 3.12402,10.20605 h -1.42871 l -0.75195,-2.65917 h -3.57519 l -0.73829,2.65917 h -1.42871 z"
+           style="fill:#d0d0d0"
+           id="path9791" />
+        <path
+           d="m 382.47961,542.06659 q 1.74317,0 2.4336,-0.85449 0.69043,-0.86133 0.69043,-3.10352 0,-2.26269 -0.69043,-3.11719 -0.6836,-0.86132 -2.4336,-0.86132 h -0.65625 v 7.93652 z m 0.0274,-9.07129 q 2.33789,0 3.44531,1.24414 1.10742,1.24414 1.10742,3.86914 0,2.61133 -1.10742,3.85547 -1.10742,1.2373 -3.44531,1.2373 h -2.07129 V 532.9953 Z"
+           style="fill:#d0d0d0"
+           id="path9793" />
+        <path
+           d="m 390.91861,542.06659 q 1.74316,0 2.43359,-0.85449 0.69043,-0.86133 0.69043,-3.10352 0,-2.26269 -0.69043,-3.11719 -0.68359,-0.86132 -2.43359,-0.86132 h -0.65625 v 7.93652 z m 0.0273,-9.07129 q 2.33789,0 3.44532,1.24414 1.10742,1.24414 1.10742,3.86914 0,2.61133 -1.10742,3.85547 -1.10743,1.2373 -3.44532,1.2373 h -2.07129 V 532.9953 Z"
+           style="fill:#d0d0d0"
+           id="path9795" />
+        <path
+           d="m 401.56223,538.38202 q 0.5332,0.13672 0.90918,0.51953 0.37597,0.37598 0.93652,1.51074 l 1.38769,2.78906 h -1.48339 l -1.2168,-2.57714 q -0.52637,-1.10059 -0.9502,-1.41504 -0.41699,-0.32129 -1.09375,-0.32129 h -1.31933 v 4.31347 h -1.3877 V 532.9953 h 2.84375 q 1.68164,0 2.57715,0.75879 0.89551,0.75879 0.89551,2.19434 0,1.01171 -0.55371,1.65429 -0.54688,0.63574 -1.54492,0.7793 z m -2.83008,-4.25195 v 3.62304 h 1.51074 q 0.99121,0 1.47656,-0.44433 0.48535,-0.44434 0.48535,-1.36035 0,-0.88184 -0.51953,-1.34668 -0.51269,-0.47168 -1.49707,-0.47168 z"
+           style="fill:#d0d0d0"
+           id="path9797" />
+        <path
+           d="m 406.77127,543.54999 q 0.95703,0 1.24414,-0.29395 0.29395,-0.29394 0.29395,-1.27148 v -1.42871 q 0,-1.16895 0.49218,-1.61328 0.49219,-0.45118 1.81836,-0.6084 -1.36718,-0.18457 -1.83886,-0.59473 -0.47168,-0.41699 -0.47168,-1.62012 v -1.83203 q 0,-0.9707 -0.29395,-1.26465 -0.28711,-0.30078 -1.24414,-0.30078 h -0.47851 v -0.97754 h 0.4375 q 1.70214,0 2.27636,0.50586 0.58106,0.49903 0.58106,2.00977 v 1.77734 q 0,0.88867 0.37597,1.34668 0.38282,0.45801 1.34668,0.45801 h 0.83399 v 0.97754 h -0.83399 q -0.88183,0 -1.30566,0.54004 -0.41699,0.54004 -0.41699,1.28515 v 1.36719 q 0,1.51074 -0.58106,2.0166 -0.57422,0.50586 -2.27636,0.50586 h -0.4375 v -0.98437 z"
+           style="fill:#d0d0d0"
+           id="path9799" />
+        <path
+           d="m 426.73572,532.50311 v 14 h -1.17578 v -14 z"
+           style="fill:#d0d0d0"
+           id="path9801" />
+        <path
+           d="m 445.18259,535.81171 v 1.23047 q -0.54004,-0.31446 -1.08692,-0.47168 -0.54687,-0.15723 -1.11426,-0.15723 -0.85449,0 -1.27832,0.28027 -0.41699,0.27344 -0.41699,0.84082 0,0.5127 0.31446,0.76563 0.31445,0.25293 1.56543,0.49219 l 0.50585,0.0957 q 0.93653,0.17773 1.41504,0.71094 0.48536,0.5332 0.48536,1.38769 0,1.13477 -0.80665,1.77734 -0.80664,0.63575 -2.24218,0.63575 -0.56739,0 -1.18946,-0.12305 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29883 q 0.70411,0.36231 1.34668,0.54688 0.64258,0.17773 1.2168,0.17773 0.83399,0 1.29199,-0.33496 0.45801,-0.3418 0.45801,-0.95019 0,-0.875 -1.6748,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08692,-0.21191 -1.58594,-0.71094 -0.49902,-0.50586 -0.49902,-1.37402 0,-1.10059 0.74512,-1.69531 0.74511,-0.60157 2.12597,-0.60157 0.61524,0 1.18262,0.11622 0.56738,0.10937 1.11426,0.33496 z"
+           style="fill:#d0d0d0"
+           id="path9803" />
+        <path
+           d="m 454.62646,538.74432 v 0.61524 h -5.44824 v 0.041 q -0.0547,1.56543 0.59473,2.24903 0.65625,0.68359 1.8457,0.68359 0.60156,0 1.25781,-0.19141 0.65625,-0.1914 1.40137,-0.58105 v 1.25098 q -0.71777,0.29394 -1.38769,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.06641 -1.00488,-1.07324 -1.00488,-2.95312 0,-1.83204 0.98437,-2.92579 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99122 0.84766,0.99121 0.90234,2.39257 z m -1.25781,-0.36914 q -0.082,-0.79297 -0.58105,-1.36718 -0.49219,-0.58106 -1.42188,-0.58106 -0.90918,0 -1.49707,0.60156 -0.58789,0.60157 -0.64258,1.35352 z"
+           style="fill:#d0d0d0"
+           id="path9805" />
+        <path
+           d="m 461.26419,536.52264 v -3.958 h 1.25781 v 10.63671 h -1.25781 v -0.96386 q -0.31445,0.56738 -0.84082,0.86816 -0.51953,0.29395 -1.20312,0.29395 -1.3877,0 -2.1875,-1.07325 -0.79297,-1.08007 -0.79297,-2.97363 0,-1.86621 0.7998,-2.92578 0.79981,-1.06641 2.18067,-1.06641 0.69043,0 1.21679,0.30079 0.52637,0.29394 0.82715,0.86132 z m -3.69824,2.85743 q 0,1.46289 0.46484,2.208 0.46485,0.74512 1.37403,0.74512 0.90918,0 1.38086,-0.75195 0.47851,-0.75196 0.47851,-2.20117 0,-1.45606 -0.47851,-2.20118 -0.47168,-0.75195 -1.38086,-0.75195 -0.90918,0 -1.37403,0.74512 -0.46484,0.74512 -0.46484,2.20801 z"
+           style="fill:#d0d0d0"
+           id="path9807" />
+        <path
+           d="m 477.33899,532.55096 v 4.25879 h -1.53125 v -4.25879 z"
+           style="fill:#ffd787"
+           id="path9809" />
+        <path
+           d="m 487.34689,535.81171 v 1.23047 q -0.54004,-0.31446 -1.08691,-0.47168 -0.54688,-0.15723 -1.11426,-0.15723 -0.85449,0 -1.27832,0.28027 -0.41699,0.27344 -0.41699,0.84082 0,0.5127 0.31445,0.76563 0.31446,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93652,0.17773 1.41504,0.71094 0.48535,0.5332 0.48535,1.38769 0,1.13477 -0.80664,1.77734 -0.80664,0.63575 -2.24219,0.63575 -0.56738,0 -1.18945,-0.12305 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29883 q 0.7041,0.36231 1.34668,0.54688 0.64258,0.17773 1.2168,0.17773 0.83398,0 1.29199,-0.33496 0.45801,-0.3418 0.45801,-0.95019 0,-0.875 -1.67481,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08692,-0.21191 -1.58594,-0.71094 -0.49903,-0.50586 -0.49903,-1.37402 0,-1.10059 0.74512,-1.69531 0.74512,-0.60157 2.12598,-0.60157 0.61523,0 1.18262,0.11622 0.56738,0.10937 1.11425,0.33496 z"
+           style="fill:#ffd787"
+           id="path9811" />
+        <path
+           d="m 495.21167,532.9953 h 1.29883 l -5.37305,11.50488 h -1.30566 z"
+           style="fill:#ffd787"
+           id="path9813" />
+        <path
+           d="m 502.3826,533.02948 3.35644,4.07422 -1.45605,-0.007 -2.50879,-2.68652 -2.50195,2.68652 -1.46289,0.007 3.36328,-4.07422 z"
+           style="fill:#ffd787"
+           id="path9815" />
+        <path
+           d="m 507.84802,542.04608 h 2.14649 v -7.71094 l -2.57032,1.23731 v -1.32617 l 2.55664,-1.2168 h 1.38086 v 9.0166 h 2.11914 v 1.15527 h -5.63281 z"
+           style="fill:#ffd787"
+           id="path9817" />
+        <path
+           d="m 518.64203,532.84491 q 1.63379,0 2.46777,1.33301 0.84082,1.33301 0.84082,3.94433 0,2.61133 -0.84082,3.94434 -0.83398,1.33301 -2.46777,1.33301 -1.63379,0 -2.46777,-1.33301 -0.83399,-1.33301 -0.83399,-3.94434 0,-2.61132 0.83399,-3.94433 0.83398,-1.33301 2.46777,-1.33301 z m 0,9.46094 q 0.9707,0 1.44238,-1.03223 0.47852,-1.03223 0.47852,-3.15137 0,-1.12793 -0.13672,-2.03711 l -3.25391,5.09278 q 0.5127,1.12793 1.46973,1.12793 z m 0,-8.36719 q -0.96387,0 -1.44238,1.03223 -0.47168,1.03222 -0.47168,3.15136 0,0.96387 0.12988,1.80469 l 3.18555,-5.0791 q -0.51954,-0.90918 -1.40137,-0.90918 z"
+           style="fill:#ffd787"
+           id="path9819" />
+        <path
+           d="m 524.87299,532.9953 5.37304,11.50488 h -1.29883 l -5.37988,-11.50488 z"
+           style="fill:#ffd787"
+           id="path9821" />
+        <path
+           d="m 533.95807,540.43964 h 2.40625 v 2.76171 h -2.40625 z"
+           style="fill:#ffd787"
+           id="path9823" />
+        <path
+           d="m 542.2876,542.03925 h 4.68945 v 1.1621 h -6.20019 v -1.1621 q 1.27832,-1.34668 2.23535,-2.37891 0.95703,-1.03223 1.31933,-1.45606 0.6836,-0.83398 0.92285,-1.34668 0.23926,-0.51953 0.23926,-1.05957 0,-0.85449 -0.50586,-1.33984 -0.49902,-0.48535 -1.37402,-0.48535 -0.62207,0 -1.30566,0.22559 -0.6836,0.22558 -1.44922,0.68359 v -1.39453 q 0.7041,-0.33496 1.38086,-0.50586 0.68359,-0.1709 1.34668,-0.1709 1.49707,0 2.40625,0.7998 0.91601,0.79297 0.91601,2.08497 0,0.65625 -0.30762,1.3125 -0.30078,0.65625 -0.98437,1.44921 -0.38281,0.44434 -1.11426,1.23047 -0.72461,0.78614 -2.21484,2.35157 z"
+           style="fill:#ffd787"
+           id="path9825" />
+        <path
+           d="m 552.37756,538.35468 q -0.92285,0 -1.42871,0.51953 -0.49902,0.51269 -0.49902,1.45605 0,0.94336 0.50586,1.46973 0.51269,0.51953 1.42187,0.51953 0.92969,0 1.42871,-0.5127 0.50586,-0.51953 0.50586,-1.47656 0,-0.93652 -0.51269,-1.45605 -0.50586,-0.51953 -1.42188,-0.51953 z m -1.20312,-0.57422 q -0.88184,-0.22559 -1.38086,-0.84082 -0.49219,-0.61524 -0.49219,-1.4834 0,-1.2168 0.82715,-1.92774 0.82715,-0.71777 2.24902,-0.71777 1.42871,0 2.25586,0.71777 0.82715,0.71094 0.82715,1.92774 0,0.86816 -0.49902,1.4834 -0.49219,0.61523 -1.37403,0.84082 1.0254,0.22558 1.56543,0.90918 0.54688,0.68359 0.54688,1.7705 0,1.38086 -0.88184,2.16016 -0.88183,0.7793 -2.44043,0.7793 -1.55859,0 -2.44043,-0.77246 -0.875,-0.7793 -0.875,-2.15332 0,-1.09375 0.54004,-1.77735 0.54688,-0.69043 1.57227,-0.91601 z m -0.49902,-2.19434 q 0,0.82031 0.4375,1.25098 0.4375,0.43066 1.26464,0.43066 0.83399,0 1.27149,-0.43066 0.4375,-0.43067 0.4375,-1.25098 0,-0.83398 -0.4375,-1.27148 -0.43067,-0.4375 -1.27149,-0.4375 -0.82714,0 -1.26464,0.44433 -0.4375,0.4375 -0.4375,1.26465 z"
+           style="fill:#ffd787"
+           id="path9827" />
+        <path
+           d="m 558.59827,532.9953 5.37304,11.50488 h -1.29882 L 557.2926,532.9953 Z"
+           style="fill:#ffd787"
+           id="path9829" />
+        <path
+           d="m 567.69354,540.43964 h 2.40625 v 2.76171 h -2.40625 z"
+           style="fill:#ffd787"
+           id="path9831" />
+        <path
+           d="m 579.54028,532.9953 h 1.29883 l -5.37305,11.50488 h -1.30566 z"
+           style="fill:#ffd787"
+           id="path9833" />
+        <path
+           d="m 583.74786,542.04608 h 2.14649 v -7.71094 l -2.57031,1.23731 v -1.32617 l 2.55664,-1.2168 h 1.38086 v 9.0166 h 2.11914 v 1.15527 h -5.63282 z"
+           style="fill:#ffd787"
+           id="path9835" />
+        <path
+           d="m 594.54187,532.84491 q 1.63379,0 2.46777,1.33301 0.84082,1.33301 0.84082,3.94433 0,2.61133 -0.84082,3.94434 -0.83398,1.33301 -2.46777,1.33301 -1.63379,0 -2.46777,-1.33301 -0.83399,-1.33301 -0.83399,-3.94434 0,-2.61132 0.83399,-3.94433 0.83398,-1.33301 2.46777,-1.33301 z m 0,9.46094 q 0.9707,0 1.44238,-1.03223 0.47852,-1.03223 0.47852,-3.15137 0,-1.12793 -0.13672,-2.03711 l -3.25391,5.09278 q 0.5127,1.12793 1.46973,1.12793 z m 0,-8.36719 q -0.96387,0 -1.44238,1.03223 -0.47168,1.03222 -0.47168,3.15136 0,0.96387 0.12988,1.80469 l 3.18555,-5.0791 q -0.51953,-0.90918 -1.40137,-0.90918 z"
+           style="fill:#ffd787"
+           id="path9837" />
+        <path
+           d="m 601.42908,540.43964 h 2.40625 v 2.76171 h -2.40625 z"
+           style="fill:#ffd787"
+           id="path9839" />
+        <path
+           d="m 609.74847,542.03925 h 4.68946 v 1.1621 h -6.2002 v -1.1621 q 1.27832,-1.34668 2.23535,-2.37891 0.95703,-1.03223 1.31934,-1.45606 0.68359,-0.83398 0.92285,-1.34668 0.23926,-0.51953 0.23926,-1.05957 0,-0.85449 -0.50586,-1.33984 -0.49902,-0.48535 -1.37402,-0.48535 -0.62207,0 -1.30567,0.22559 -0.68359,0.22558 -1.44922,0.68359 v -1.39453 q 0.7041,-0.33496 1.38086,-0.50586 0.6836,-0.1709 1.34668,-0.1709 1.49707,0 2.40625,0.7998 0.91602,0.79297 0.91602,2.08497 0,0.65625 -0.30762,1.3125 -0.30078,0.65625 -0.98437,1.44921 -0.38282,0.44434 -1.11426,1.23047 -0.72461,0.78614 -2.21485,2.35157 z"
+           style="fill:#ffd787"
+           id="path9841" />
+        <path
+           d="m 619.71185,538.67596 q 0.88184,0 1.38086,-0.63574 0.50586,-0.63574 0.50586,-1.75683 0,-1.1211 -0.50586,-1.75684 -0.49902,-0.63574 -1.38086,-0.63574 -0.91601,0 -1.38086,0.6084 -0.46484,0.60156 -0.46484,1.78418 0,1.18945 0.45801,1.79101 0.46484,0.60156 1.38769,0.60156 z m -2.46093,4.31348 v -1.27148 q 0.43066,0.25293 0.91601,0.38964 0.48535,0.12989 1.01172,0.12989 1.3125,0 1.98242,-0.98438 0.67676,-0.99121 0.67676,-2.91211 -0.32129,0.6836 -0.90234,1.05274 -0.58106,0.3623 -1.33301,0.3623 -1.47656,0 -2.29004,-0.90918 -0.80664,-0.90918 -0.80664,-2.57715 0,-1.64746 0.82715,-2.5498 0.83398,-0.90918 2.35156,-0.90918 1.77734,0 2.60449,1.27832 0.82715,1.27832 0.82715,4.01953 0,2.57715 -0.99805,3.9375 -0.99121,1.35352 -2.88476,1.35352 -0.49903,0 -1.00489,-0.10938 -0.50585,-0.10254 -0.97753,-0.30078 z"
+           style="fill:#ffd787"
+           id="path9843" />
+        <path
+           d="m 626.72559,540.43964 h 2.40625 v 2.76171 h -2.40625 z"
+           style="fill:#ffd787"
+           id="path9845" />
+        <path
+           d="m 638.57239,532.9953 h 1.29883 l -5.37305,11.50488 h -1.30567 z"
+           style="fill:#ffd787"
+           id="path9847" />
+        <path
+           d="m 646.00647,532.55096 v 4.25879 h -1.53125 v -4.25879 z"
+           style="fill:#ffd787"
+           id="path9849" />
+        <path
+           d="m 651.74188,531.89471 h 1.09375 q 1.03223,1.61329 1.53809,3.15821 0.50586,1.54492 0.50586,3.06933 0,1.53809 -0.50586,3.08301 -0.50586,1.54492 -1.53809,3.1582 h -1.09375 q 0.90918,-1.58593 1.35352,-3.13769 0.45117,-1.55176 0.45117,-3.10352 0,-1.55859 -0.45117,-3.11035 -0.44434,-1.55176 -1.35352,-3.11719 z"
+           style="fill:#d0d0d0"
+           id="path9851" />
+        <path
+           d="m 9.2422552,552.59644 h 2.1669918 l 2.84375,7.41699 v -7.41699 h 1.777344 v 10.20605 h -2.15332 l -2.857422,-7.41699 v 7.41699 H 9.2422552 Z"
+           style="font-weight:bold;fill:#00005f"
+           id="path9853" />
+        <path
+           d="m 21.078701,554.22339 q -0.772461,0 -1.12793,0.82715 -0.355468,0.82031 -0.355468,2.65918 0,1.83203 0.355468,2.65918 0.355469,0.82031 1.12793,0.82031 0.779297,0 1.134766,-0.82031 0.355468,-0.82715 0.355468,-2.65918 0,-1.83887 -0.355468,-2.65918 -0.355469,-0.82715 -1.134766,-0.82715 z m -3.582031,3.48633 q 0,-2.61817 0.902344,-3.95801 0.909179,-1.33984 2.679687,-1.33984 1.777344,0 2.679688,1.33984 0.909179,1.33984 0.909179,3.95801 0,2.61132 -0.909179,3.95117 -0.902344,1.33984 -2.679688,1.33984 -1.770508,0 -2.679687,-1.33984 -0.902344,-1.33985 -0.902344,-3.95117 z"
+           style="font-weight:bold;fill:#00005f"
+           id="path9855" />
+        <path
+           d="m 30.813145,557.98315 q 0.300781,0.0615 0.519531,0.28711 0.225586,0.21875 0.546875,0.86133 l 1.845703,3.6709 H 31.51041 l -1.230468,-2.57715 q -0.05469,-0.10937 -0.143555,-0.30078 -0.540039,-1.15527 -1.271485,-1.15527 h -0.642578 v 4.0332 h -2.016601 v -10.20605 h 2.912109 q 1.96875,0 2.823242,0.69726 0.861328,0.69727 0.861328,2.26953 0,1.05274 -0.512695,1.67481 -0.512695,0.62207 -1.476562,0.74511 z m -2.590821,-3.6914 v 2.78222 h 0.950196 q 0.827148,0 1.182617,-0.32128 0.362305,-0.32813 0.362305,-1.07325 0,-0.74511 -0.355469,-1.0664 -0.355469,-0.32129 -1.189453,-0.32129 z"
+           style="font-weight:bold;fill:#00005f"
+           id="path9857" />
+        <path
+           d="m 34.323418,552.59644 h 2.40625 l 1.216797,4.47753 1.20996,-4.47753 h 2.419922 v 10.20605 h -1.736328 v -8.17578 l -1.080078,4.46387 h -1.606445 l -1.09375,-4.46387 v 8.17578 h -1.736328 z"
+           style="font-weight:bold;fill:#00005f"
+           id="path9859" />
+        <path
+           d="m 46.375244,554.44214 -0.950195,4.17676 h 1.907226 z m -1.230469,-1.8457 h 2.467774 l 2.754883,10.20605 H 48.35083 l -0.628906,-2.52246 h -2.700195 l -0.615235,2.52246 h -2.016601 z"
+           style="font-weight:bold;fill:#00005f"
+           id="path9861" />
+        <path
+           d="m 52.14138,562.80249 v -10.20605 h 2.016602 v 8.42871 h 4.313476 v 1.77734 z"
+           style="font-weight:bold;fill:#00005f"
+           id="path9863" />
+        <path
+           d="m 67.471054,549.64331 7.396484,8.30566 -7.396484,8.31934 z"
+           style="fill:#d7ff00"
+           id="path9865" />
+        <path
+           d="m 75.899834,549.64331 7.396484,8.30566 -7.396484,8.31934 z"
+           style="fill:#444444"
+           id="path9867" />
+        <path
+           d="m 98.844742,552.59644 h 1.298828 l -5.373047,11.50488 h -1.305664 z"
+           style="fill:#5fffaf"
+           id="path9869" />
+        <path
+           d="m 105.39364,552.97241 v 2.17383 h 2.85742 v 0.97754 h -2.85742 v 4.15625 q 0,0.84766 0.32129,1.18262 0.32129,0.33496 1.12109,0.33496 h 1.41504 v 1.00488 h -1.53809 q -1.41503,0 -1.99609,-0.56738 -0.58105,-0.56739 -0.58105,-1.95508 v -4.15625 h -2.04395 v -0.97754 h 2.04395 v -2.17383 z"
+           style="fill:#5fffaf"
+           id="path9871" />
+        <path
+           d="m 114.25645,555.92554 q 0.23243,-0.49219 0.5879,-0.72461 0.3623,-0.23926 0.86816,-0.23926 0.92285,0 1.29883,0.71777 0.38281,0.71094 0.38281,2.68653 v 4.43652 h -1.14844 v -4.38184 q 0,-1.62011 -0.18457,-2.00976 -0.17773,-0.39649 -0.65625,-0.39649 -0.54687,0 -0.75195,0.42383 -0.19824,0.41699 -0.19824,1.98242 v 4.38184 h -1.14844 v -4.38184 q 0,-1.64062 -0.19824,-2.02343 -0.19141,-0.38282 -0.69727,-0.38282 -0.49902,0 -0.69726,0.42383 -0.19141,0.41699 -0.19141,1.98242 v 4.38184 h -1.1416 v -7.65625 h 1.1416 v 0.65625 q 0.22559,-0.41016 0.56055,-0.62207 0.34179,-0.21875 0.77246,-0.21875 0.51953,0 0.86133,0.23926 0.34863,0.23926 0.54003,0.72461 z"
+           style="fill:#5fffaf"
+           id="path9873" />
+        <path
+           d="m 120.62762,561.83862 v 3.87598 h -1.26465 v -10.56836 h 1.26465 v 0.97754 q 0.31445,-0.56738 0.83398,-0.86133 0.52637,-0.30078 1.20996,-0.30078 1.3877,0 2.17383,1.07324 0.79297,1.07324 0.79297,2.97363 0,1.86622 -0.79297,2.93262 -0.79297,1.05957 -2.17383,1.05957 -0.69726,0 -1.22363,-0.29394 -0.51953,-0.30078 -0.82031,-0.86817 z m 3.6914,-2.85742 q 0,-1.46289 -0.46484,-2.20801 -0.45801,-0.74511 -1.36719,-0.74511 -0.91601,0 -1.38769,0.75195 -0.47168,0.74512 -0.47168,2.20117 0,1.44922 0.47168,2.20117 0.47168,0.75196 1.38769,0.75196 0.90918,0 1.36719,-0.74512 0.46484,-0.74512 0.46484,-2.20801 z"
+           style="fill:#5fffaf"
+           id="path9875" />
+        <path
+           d="m 132.58028,552.59644 h 1.29882 l -5.37304,11.50488 h -1.30567 z"
+           style="fill:#5fffaf"
+           id="path9877" />
+        <path
+           d="m 136.54518,552.16577 h 1.29883 v 6.15918 l 3.30176,-3.17871 h 1.53125 l -3.01465,2.88477 3.48633,4.77148 h -1.53809 l -2.83008,-3.95117 -0.93652,0.88183 v 3.06934 h -1.29883 z"
+           style="fill:#5fffaf"
+           id="path9879" />
+        <path
+           d="m 144.7039,559.90405 v -4.74414 h 1.25782 v 4.74414 q 0,1.03223 0.3623,1.51758 0.36914,0.48535 1.13477,0.48535 0.88867,0 1.36035,-0.62207 0.47168,-0.6289 0.47168,-1.79785 v -4.32715 h 1.26465 v 7.64258 h -1.26465 v -1.14844 q -0.33496,0.66309 -0.91602,1.00489 -0.57422,0.34179 -1.34668,0.34179 -1.17578,0 -1.75,-0.76562 -0.57422,-0.77246 -0.57422,-2.33106 z"
+           style="fill:#5fffaf"
+           id="path9881" />
+        <path
+           d="m 158.07506,558.9812 q 0,-1.46289 -0.46485,-2.20801 -0.46484,-0.74511 -1.37402,-0.74511 -0.91601,0 -1.38769,0.75195 -0.47168,0.74512 -0.47168,2.20117 0,1.44922 0.47168,2.20117 0.47168,0.75196 1.38769,0.75196 0.90918,0 1.37402,-0.74512 0.46485,-0.74512 0.46485,-2.20801 z m -3.69824,-2.85742 q 0.30078,-0.56055 0.82714,-0.86133 0.53321,-0.30078 1.23047,-0.30078 1.38086,0 2.17383,1.06641 0.79297,1.05957 0.79297,2.92578 0,1.89355 -0.7998,2.97363 -0.79297,1.07324 -2.18067,1.07324 -0.68359,0 -1.20996,-0.29394 -0.51953,-0.30078 -0.83398,-0.86817 v 0.96387 H 153.119 v -10.63672 h 1.25782 z"
+           style="fill:#5fffaf"
+           id="path9883" />
+        <path
+           d="m 167.8847,558.34546 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56543 0.59473,2.24902 0.65625,0.6836 1.8457,0.6836 0.60156,0 1.25781,-0.19141 0.65625,-0.19141 1.40137,-0.58105 v 1.25097 q -0.71777,0.29395 -1.38769,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.0664 -1.00489,-1.07325 -1.00489,-2.95313 0,-1.83203 0.98438,-2.92578 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99121 0.90234,2.39258 z m -1.25781,-0.36914 q -0.082,-0.79297 -0.58105,-1.36719 -0.49219,-0.58105 -1.42188,-0.58105 -0.90918,0 -1.49707,0.60156 -0.58789,0.60156 -0.64258,1.35351 z"
+           style="fill:#5fffaf"
+           id="path9885" />
+        <path
+           d="m 175.92035,562.41284 q -0.50586,0.29395 -1.0459,0.4375 -0.5332,0.15039 -1.09375,0.15039 -1.77734,0 -2.78223,-1.0664 -0.99804,-1.06641 -0.99804,-2.95313 0,-1.88672 0.99804,-2.95312 1.00489,-1.06641 2.78223,-1.06641 0.55371,0 1.08008,0.14355 0.52637,0.14356 1.05957,0.44434 v 1.31934 q -0.49902,-0.44434 -1.00488,-0.64258 -0.49903,-0.19824 -1.13477,-0.19824 -1.18262,0 -1.81836,0.76562 -0.63574,0.76563 -0.63574,2.1875 0,1.41504 0.63574,2.1875 0.64258,0.76563 1.81836,0.76563 0.65625,0 1.17578,-0.19825 0.51953,-0.20507 0.96387,-0.6289 z"
+           style="fill:#5fffaf"
+           id="path9887" />
+        <path
+           d="m 181.29347,552.97241 v 2.17383 h 2.85742 v 0.97754 h -2.85742 v 4.15625 q 0,0.84766 0.32129,1.18262 0.32129,0.33496 1.1211,0.33496 h 1.41503 v 1.00488 h -1.53808 q -1.41504,0 -1.9961,-0.56738 -0.58105,-0.56739 -0.58105,-1.95508 v -4.15625 h -2.04395 v -0.97754 h 2.04395 v -2.17383 z"
+           style="fill:#5fffaf"
+           id="path9889" />
+        <path
+           d="m 190.45023,560.03394 q 0,0.84765 0.30761,1.27832 0.31446,0.43066 0.92285,0.43066 h 1.46973 v 1.05957 h -1.59277 q -1.12793,0 -1.75,-0.71777 -0.61524,-0.72461 -0.61524,-2.05078 v -6.92481 h -2.0166 v -0.98437 h 3.27442 z"
+           style="fill:#5fffaf"
+           id="path9891" />
+        <path
+           d="m 194.66122,557.85327 h 7.2461 v 1.15527 h -7.2461 z"
+           style="fill:#5fffaf"
+           id="path9893" />
+        <path
+           d="m 210.0592,558.34546 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56543 0.59473,2.24902 0.65625,0.6836 1.8457,0.6836 0.60156,0 1.25781,-0.19141 0.65625,-0.19141 1.40137,-0.58105 v 1.25097 q -0.71777,0.29395 -1.38769,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.0664 -1.00489,-1.07325 -1.00489,-2.95313 0,-1.83203 0.98438,-2.92578 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99121 0.90234,2.39258 z m -1.25781,-0.36914 q -0.082,-0.79297 -0.58105,-1.36719 -0.49219,-0.58105 -1.42188,-0.58105 -0.90918,0 -1.49707,0.60156 -0.58789,0.60156 -0.64258,1.35351 z"
+           style="fill:#5fffaf"
+           id="path9895" />
+        <path
+           d="m 216.69696,556.12378 v -3.95801 h 1.25781 v 10.63672 h -1.25781 v -0.96387 q -0.31445,0.56739 -0.84082,0.86817 -0.51953,0.29394 -1.20312,0.29394 -1.3877,0 -2.1875,-1.07324 -0.79297,-1.08008 -0.79297,-2.97363 0,-1.86621 0.7998,-2.92578 0.79981,-1.06641 2.18067,-1.06641 0.69042,0 1.21679,0.30078 0.52637,0.29395 0.82715,0.86133 z m -3.69824,2.85742 q 0,1.46289 0.46484,2.20801 0.46485,0.74512 1.37403,0.74512 0.90918,0 1.38085,-0.75196 0.47852,-0.75195 0.47852,-2.20117 0,-1.45605 -0.47852,-2.20117 -0.47167,-0.75195 -1.38085,-0.75195 -0.90918,0 -1.37403,0.74511 -0.46484,0.74512 -0.46484,2.20801 z"
+           style="fill:#5fffaf"
+           id="path9897" />
+        <path
+           d="m 221.43088,555.17358 h 3.21972 v 6.65137 h 2.49512 v 0.97754 h -6.24805 v -0.97754 h 2.49512 v -5.67383 h -1.96191 z m 1.96191,-2.97363 h 1.25781 v 1.58594 h -1.25781 z"
+           style="fill:#5fffaf"
+           id="path9899" />
+        <path
+           d="m 231.89674,552.97241 v 2.17383 h 2.85743 v 0.97754 h -2.85743 v 4.15625 q 0,0.84766 0.32129,1.18262 0.32129,0.33496 1.1211,0.33496 h 1.41504 v 1.00488 h -1.53809 q -1.41504,0 -1.99609,-0.56738 -0.58106,-0.56739 -0.58106,-1.95508 v -4.15625 h -2.04394 v -0.97754 h 2.04394 v -2.17383 z"
+           style="fill:#5fffaf"
+           id="path9901" />
+        <path
+           d="m 236.82555,557.85327 h 7.24609 v 1.15527 h -7.24609 z"
+           style="fill:#5fffaf"
+           id="path9903" />
+        <path
+           d="m 249.36609,558.95386 h -0.41699 q -1.10059,0 -1.66114,0.38965 -0.55371,0.38281 -0.55371,1.14843 0,0.69043 0.417,1.07325 0.41699,0.38281 1.15527,0.38281 1.03906,0 1.63379,-0.71778 0.59472,-0.7246 0.60156,-1.99609 v -0.28027 z m 2.44043,-0.51953 v 4.36816 h -1.26465 v -1.13477 q -0.40332,0.6836 -1.01855,1.01172 -0.6084,0.32129 -1.4834,0.32129 -1.16895,0 -1.86621,-0.65625 -0.69727,-0.66308 -0.69727,-1.77051 0,-1.27832 0.85449,-1.9414 0.86133,-0.66309 2.52246,-0.66309 h 1.68848 v -0.19824 q -0.007,-0.91602 -0.46484,-1.32617 -0.45801,-0.41699 -1.46289,-0.41699 -0.64258,0 -1.29883,0.18457 -0.65625,0.18457 -1.27832,0.54004 v -1.25782 q 0.69726,-0.2666 1.33301,-0.39648 0.64257,-0.13672 1.24414,-0.13672 0.95019,0 1.62011,0.28027 0.67676,0.28028 1.09375,0.84082 0.25977,0.3418 0.36914,0.84766 0.10938,0.49902 0.10938,1.50391 z"
+           style="fill:#5fffaf"
+           id="path9905" />
+        <path
+           d="m 255.26556,559.00854 q 0,1.4629 0.45801,2.20801 0.46485,0.74512 1.37403,0.74512 0.90917,0 1.37402,-0.74512 0.47168,-0.75195 0.47168,-2.20801 0,-1.45605 -0.47168,-2.20117 -0.46485,-0.75195 -1.37402,-0.75195 -0.90918,0 -1.37403,0.74512 -0.45801,0.74511 -0.45801,2.208 z m 3.67774,2.84375 q -0.30762,0.56739 -0.83399,0.875 -0.51953,0.30079 -1.20996,0.30079 -1.37402,0 -2.17383,-1.05957 -0.79296,-1.06641 -0.79296,-2.93262 0,-1.90039 0.79296,-2.97363 0.79297,-1.07325 2.17383,-1.07325 0.6836,0 1.20313,0.30078 0.52637,0.29395 0.84082,0.86133 v -0.97754 h 1.26465 v 10.56836 h -1.26465 z"
+           style="fill:#5fffaf"
+           id="path9907" />
+        <path
+           d="m 268.20944,552.82202 v 1.27149 q -0.43066,-0.25293 -0.91601,-0.38282 -0.48536,-0.13672 -1.01172,-0.13672 -1.3125,0 -1.98926,0.99122 -0.67676,0.98437 -0.67676,2.90527 0.32813,-0.68359 0.90918,-1.0459 0.58106,-0.36914 1.33301,-0.36914 1.47656,0 2.2832,0.90918 0.81348,0.90234 0.81348,2.56348 0,1.65429 -0.83399,2.56347 -0.83398,0.90918 -2.34472,0.90918 -1.77735,0 -2.60449,-1.27148 -0.82715,-1.27832 -0.82715,-4.01953 0,-2.58399 0.99121,-3.9375 0.99805,-1.36035 2.88476,-1.36035 0.50586,0 1.01172,0.10937 0.50586,0.10254 0.97754,0.30078 z m -2.46094,4.31348 q -0.88183,0 -1.38769,0.63574 -0.50586,0.63574 -0.50586,1.75684 0,1.12109 0.50586,1.75683 0.50586,0.63574 1.38769,0.63574 0.91602,0 1.38086,-0.60156 0.46485,-0.6084 0.46485,-1.79101 0,-1.18946 -0.46485,-1.79102 -0.46484,-0.60156 -1.38086,-0.60156 z"
+           style="fill:#5fffaf"
+           id="path9909" />
+        <path
+           d="m 272.4136,561.64038 h 4.68946 v 1.16211 h -6.2002 v -1.16211 q 1.27832,-1.34668 2.23535,-2.37891 0.95704,-1.03222 1.31934,-1.45605 0.68359,-0.83398 0.92285,-1.34668 0.23926,-0.51953 0.23926,-1.05957 0,-0.85449 -0.50586,-1.33984 -0.49902,-0.48536 -1.37402,-0.48536 -0.62207,0 -1.30567,0.22559 -0.68359,0.22559 -1.44922,0.68359 v -1.39453 q 0.70411,-0.33496 1.38086,-0.50586 0.6836,-0.17089 1.34668,-0.17089 1.49707,0 2.40625,0.7998 0.91602,0.79297 0.91602,2.08496 0,0.65625 -0.30762,1.3125 -0.30078,0.65625 -0.98437,1.44922 -0.38282,0.44434 -1.11426,1.23047 -0.72461,0.78613 -2.21485,2.35156 z"
+           style="fill:#5fffaf"
+           id="path9911" />
+        <path
+           d="m 285.55573,562.41284 q -0.50586,0.29395 -1.0459,0.4375 -0.53321,0.15039 -1.09375,0.15039 -1.77735,0 -2.78223,-1.0664 -0.99805,-1.06641 -0.99805,-2.95313 0,-1.88672 0.99805,-2.95312 1.00488,-1.06641 2.78223,-1.06641 0.55371,0 1.08007,0.14355 0.52637,0.14356 1.05958,0.44434 v 1.31934 q -0.49903,-0.44434 -1.00489,-0.64258 -0.49902,-0.19824 -1.13476,-0.19824 -1.18262,0 -1.81836,0.76562 -0.63574,0.76563 -0.63574,2.1875 0,1.41504 0.63574,2.1875 0.64258,0.76563 1.81836,0.76563 0.65625,0 1.17578,-0.19825 0.51953,-0.20507 0.96387,-0.6289 z"
+           style="fill:#5fffaf"
+           id="path9913" />
+        <path
+           d="m 289.39075,560.04077 h 2.40625 v 2.76172 h -2.40625 z"
+           style="fill:#5fffaf"
+           id="path9915" />
+        <path
+           d="m 301.0358,560.34155 q -0.31446,0.79981 -0.79981,2.10547 -0.67676,1.80469 -0.90918,2.20117 -0.31445,0.53321 -0.78613,0.79981 -0.47168,0.2666 -1.10059,0.2666 h -1.01171 v -1.05273 h 0.74511 q 0.55371,0 0.86817,-0.32129 0.31445,-0.32129 0.7998,-1.66114 l -2.95996,-7.5332 h 1.33301 l 2.26953,5.98828 2.23535,-5.98828 h 1.33301 z"
+           style="fill:#5fffaf"
+           id="path9917" />
+        <path
+           d="m 308.39816,558.95386 h -0.41699 q -1.10059,0 -1.66113,0.38965 -0.55371,0.38281 -0.55371,1.14843 0,0.69043 0.41699,1.07325 0.41699,0.38281 1.15527,0.38281 1.03907,0 1.63379,-0.71778 0.59473,-0.7246 0.60156,-1.99609 v -0.28027 z m 2.44043,-0.51953 v 4.36816 h -1.26465 v -1.13477 q -0.40332,0.6836 -1.01855,1.01172 -0.6084,0.32129 -1.4834,0.32129 -1.16894,0 -1.86621,-0.65625 -0.69727,-0.66308 -0.69727,-1.77051 0,-1.27832 0.8545,-1.9414 0.86132,-0.66309 2.52246,-0.66309 h 1.68847 v -0.19824 q -0.007,-0.91602 -0.46484,-1.32617 -0.45801,-0.41699 -1.46289,-0.41699 -0.64258,0 -1.29883,0.18457 -0.65625,0.18457 -1.27832,0.54004 v -1.25782 q 0.69727,-0.2666 1.33301,-0.39648 0.64258,-0.13672 1.24414,-0.13672 0.9502,0 1.62012,0.28027 0.67675,0.28028 1.09375,0.84082 0.25976,0.3418 0.36914,0.84766 0.10937,0.49902 0.10937,1.50391 z"
+           style="fill:#5fffaf"
+           id="path9919" />
+        <path
+           d="m 316.65942,555.92554 q 0.23243,-0.49219 0.58789,-0.72461 0.36231,-0.23926 0.86817,-0.23926 0.92285,0 1.29883,0.71777 0.38281,0.71094 0.38281,2.68653 v 4.43652 h -1.14844 v -4.38184 q 0,-1.62011 -0.18457,-2.00976 -0.17773,-0.39649 -0.65625,-0.39649 -0.54687,0 -0.75195,0.42383 -0.19824,0.41699 -0.19824,1.98242 v 4.38184 h -1.14844 v -4.38184 q 0,-1.64062 -0.19824,-2.02343 -0.19141,-0.38282 -0.69727,-0.38282 -0.49902,0 -0.69726,0.42383 -0.19141,0.41699 -0.19141,1.98242 v 4.38184 h -1.1416 v -7.65625 h 1.1416 v 0.65625 q 0.22558,-0.41016 0.56055,-0.62207 0.34179,-0.21875 0.77246,-0.21875 0.51953,0 0.86132,0.23926 0.34864,0.23926 0.54004,0.72461 z"
+           style="fill:#5fffaf"
+           id="path9921" />
+        <path
+           d="m 325.38214,560.03394 q 0,0.84765 0.30762,1.27832 0.31445,0.43066 0.92285,0.43066 h 1.46973 v 1.05957 h -1.59278 q -1.12793,0 -1.75,-0.71777 -0.61523,-0.72461 -0.61523,-2.05078 v -6.92481 h -2.0166 v -0.98437 h 3.27441 z"
+           style="fill:#5fffaf"
+           id="path9923" />
+        <path
+           d="m 607.36951,566.26831 -7.40332,-8.31934 7.40332,-8.30566 z"
+           style="fill:#1c1c1c"
+           id="path9925" />
+        <path
+           d="m 621.50287,560.34155 q -0.31445,0.79981 -0.79981,2.10547 -0.67675,1.80469 -0.90918,2.20117 -0.31445,0.53321 -0.78613,0.79981 -0.47168,0.2666 -1.10058,0.2666 h -1.01172 v -1.05273 h 0.74511 q 0.55371,0 0.86817,-0.32129 0.31445,-0.32129 0.7998,-1.66114 l -2.95996,-7.5332 h 1.33301 l 2.26953,5.98828 2.23535,-5.98828 h 1.33301 z"
+           style="fill:#5fffaf"
+           id="path9927" />
+        <path
+           d="m 628.86523,558.95386 h -0.41699 q -1.10058,0 -1.66113,0.38965 -0.55371,0.38281 -0.55371,1.14843 0,0.69043 0.41699,1.07325 0.41699,0.38281 1.15527,0.38281 1.03907,0 1.63379,-0.71778 0.59473,-0.7246 0.60157,-1.99609 v -0.28027 z m 2.44043,-0.51953 v 4.36816 h -1.26464 v -1.13477 q -0.40332,0.6836 -1.01856,1.01172 -0.6084,0.32129 -1.4834,0.32129 -1.16894,0 -1.86621,-0.65625 -0.69726,-0.66308 -0.69726,-1.77051 0,-1.27832 0.85449,-1.9414 0.86133,-0.66309 2.52246,-0.66309 h 1.68848 v -0.19824 q -0.007,-0.91602 -0.46485,-1.32617 -0.45801,-0.41699 -1.46289,-0.41699 -0.64258,0 -1.29883,0.18457 -0.65625,0.18457 -1.27832,0.54004 v -1.25782 q 0.69727,-0.2666 1.33301,-0.39648 0.64258,-0.13672 1.24414,-0.13672 0.9502,0 1.62012,0.28027 0.67676,0.28028 1.09375,0.84082 0.25976,0.3418 0.36914,0.84766 0.10937,0.49902 0.10937,1.50391 z"
+           style="fill:#5fffaf"
+           id="path9929" />
+        <path
+           d="m 637.11633,555.92554 q 0.23242,-0.49219 0.58789,-0.72461 0.36231,-0.23926 0.86817,-0.23926 0.92285,0 1.29883,0.71777 0.38281,0.71094 0.38281,2.68653 v 4.43652 h -1.14844 v -4.38184 q 0,-1.62011 -0.18457,-2.00976 -0.17773,-0.39649 -0.65625,-0.39649 -0.54687,0 -0.75195,0.42383 -0.19824,0.41699 -0.19824,1.98242 v 4.38184 h -1.14844 v -4.38184 q 0,-1.64062 -0.19824,-2.02343 -0.19141,-0.38282 -0.69727,-0.38282 -0.49902,0 -0.69727,0.42383 -0.1914,0.41699 -0.1914,1.98242 v 4.38184 h -1.1416 v -7.65625 h 1.1416 v 0.65625 q 0.22558,-0.41016 0.56054,-0.62207 0.3418,-0.21875 0.77247,-0.21875 0.51953,0 0.86132,0.23926 0.34864,0.23926 0.54004,0.72461 z"
+           style="fill:#5fffaf"
+           id="path9931" />
+        <path
+           d="m 645.84924,560.03394 q 0,0.84765 0.30762,1.27832 0.31445,0.43066 0.92285,0.43066 h 1.46973 v 1.05957 h -1.59277 q -1.12793,0 -1.75,-0.71777 -0.61524,-0.72461 -0.61524,-2.05078 v -6.92481 h -2.0166 v -0.98437 h 3.27441 z"
+           style="fill:#5fffaf"
+           id="path9933" />
+        <path
+           d="m 666.40149,566.26831 -7.40332,-8.31934 7.40332,-8.30566 z"
+           style="fill:#444444"
+           id="path9935" />
+        <path
+           d="m 676.00269,559.90405 v -4.74414 h 1.25781 v 4.74414 q 0,1.03223 0.3623,1.51758 0.36914,0.48535 1.13477,0.48535 0.88867,0 1.36035,-0.62207 0.47168,-0.6289 0.47168,-1.79785 v -4.32715 h 1.26465 v 7.64258 h -1.26465 v -1.14844 q -0.33496,0.66309 -0.91602,1.00489 -0.57421,0.34179 -1.34668,0.34179 -1.17578,0 -1.75,-0.76562 -0.57421,-0.77246 -0.57421,-2.33106 z"
+           style="fill:#eeeeee"
+           id="path9937" />
+        <path
+           d="m 687.29578,552.97241 v 2.17383 h 2.85742 v 0.97754 h -2.85742 v 4.15625 q 0,0.84766 0.32129,1.18262 0.32128,0.33496 1.12109,0.33496 h 1.41504 v 1.00488 h -1.53809 q -1.41504,0 -1.99609,-0.56738 -0.58106,-0.56739 -0.58106,-1.95508 v -4.15625 h -2.04394 v -0.97754 h 2.04394 v -2.17383 z"
+           style="fill:#eeeeee"
+           id="path9939" />
+        <path
+           d="m 698.80408,552.16577 v 1.0459 h -1.42871 q -0.67676,0 -0.94336,0.28027 -0.25977,0.27344 -0.25977,0.97754 v 0.67676 h 2.63184 v 0.97754 h -2.63184 v 6.67871 h -1.25781 v -6.67871 h -2.04395 v -0.97754 h 2.04395 v -0.5332 q 0,-1.25782 0.57422,-1.85254 0.58105,-0.59473 1.80468,-0.59473 z"
+           style="fill:#eeeeee"
+           id="path9941" />
+        <path
+           d="m 700.66357,557.85327 h 7.2461 v 1.15527 h -7.2461 z"
+           style="fill:#eeeeee"
+           id="path9943" />
+        <path
+           d="m 712.60596,557.95581 q -0.92285,0 -1.42871,0.51953 -0.49903,0.5127 -0.49903,1.45606 0,0.94336 0.50586,1.46972 0.5127,0.51953 1.42188,0.51953 0.92968,0 1.42871,-0.51269 0.50586,-0.51953 0.50586,-1.47656 0,-0.93653 -0.5127,-1.45606 -0.50586,-0.51953 -1.42187,-0.51953 z m -1.20313,-0.57422 q -0.88183,-0.22558 -1.38086,-0.84082 -0.49218,-0.61523 -0.49218,-1.4834 0,-1.21679 0.82714,-1.92773 0.82715,-0.71777 2.24903,-0.71777 1.42871,0 2.25586,0.71777 0.82714,0.71094 0.82714,1.92773 0,0.86817 -0.49902,1.4834 -0.49219,0.61524 -1.37402,0.84082 1.02539,0.22559 1.56543,0.90918 0.54687,0.6836 0.54687,1.77051 0,1.38086 -0.88183,2.16016 -0.88184,0.77929 -2.44043,0.77929 -1.5586,0 -2.44043,-0.77246 -0.875,-0.7793 -0.875,-2.15332 0,-1.09375 0.54004,-1.77734 0.54687,-0.69043 1.57226,-0.91602 z m -0.49902,-2.19433 q 0,0.82031 0.4375,1.25097 0.4375,0.43067 1.26465,0.43067 0.83398,0 1.27148,-0.43067 0.4375,-0.43066 0.4375,-1.25097 0,-0.83399 -0.4375,-1.27149 -0.43066,-0.4375 -1.27148,-0.4375 -0.82715,0 -1.26465,0.44434 -0.4375,0.4375 -0.4375,1.26465 z"
+           style="fill:#eeeeee"
+           id="path9945" />
+        <path
+           d="m 720.68268,551.48218 h 2.89844 v 0.97754 h -1.64063 v 10.52734 h 1.64063 v 0.97754 h -2.89844 z"
+           style="fill:#eeeeee"
+           id="path9947" />
+        <path
+           d="m 726.59576,559.90405 v -4.74414 h 1.25782 v 4.74414 q 0,1.03223 0.3623,1.51758 0.36914,0.48535 1.13477,0.48535 0.88867,0 1.36035,-0.62207 0.47168,-0.6289 0.47168,-1.79785 v -4.32715 h 1.26465 v 7.64258 h -1.26465 v -1.14844 q -0.33496,0.66309 -0.91602,1.00489 -0.57422,0.34179 -1.34668,0.34179 -1.17578,0 -1.75,-0.76562 -0.57422,-0.77246 -0.57422,-2.33106 z"
+           style="fill:#eeeeee"
+           id="path9949" />
+        <path
+           d="m 740.88635,558.05835 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03223 -0.3623,-1.51758 -0.36231,-0.48535 -1.13477,-0.48535 -0.88183,0 -1.36035,0.62891 -0.47168,0.62207 -0.47168,1.79101 v 4.32715 h -1.25781 v -7.65625 h 1.25781 v 1.14844 q 0.33496,-0.65625 0.90918,-0.99121 0.57422,-0.3418 1.36035,-0.3418 1.16895,0 1.74317,0.77246 0.58105,0.76563 0.58105,2.32422 z"
+           style="fill:#eeeeee"
+           id="path9951" />
+        <path
+           d="m 744.29065,555.17358 h 3.21973 v 6.65137 h 2.49511 v 0.97754 h -6.24804 v -0.97754 h 2.49511 v -5.67383 h -1.96191 z m 1.96191,-2.97363 h 1.25782 v 1.58594 h -1.25782 z"
+           style="fill:#eeeeee"
+           id="path9953" />
+        <path
+           d="m 758.21216,555.14624 -2.74121,3.66406 3.00781,3.99219 h -1.45605 l -2.24219,-3.06934 -2.23535,3.06934 h -1.45606 l 3.00781,-3.99219 -2.74121,-3.66406 h 1.39453 l 2.03028,2.76855 2.0166,-2.76855 z"
+           style="fill:#eeeeee"
+           id="path9955" />
+        <path
+           d="m 763.92017,551.48218 v 12.48242 h -2.89844 v -0.97754 h 1.64062 v -10.52734 h -1.64062 v -0.97754 z"
+           style="fill:#eeeeee"
+           id="path9957" />
+        <path
+           d="m 784.46564,566.26831 -7.40332,-8.31934 7.40332,-8.30566 z"
+           style="fill:#d7ff00"
+           id="path9959" />
+        <path
+           d="m 802.5777,552.59644 h 5.16797 v 1.1621 h -3.91016 v 2.50879 q 0.29395,-0.10937 0.58789,-0.15722 0.30078,-0.0547 0.60156,-0.0547 1.58594,0 2.51563,0.93652 0.92969,0.93653 0.92969,2.53614 0,1.61328 -0.97754,2.54296 -0.97071,0.92969 -2.65918,0.92969 -0.81348,0 -1.49024,-0.10937 -0.66992,-0.10938 -1.20312,-0.32813 v -1.40136 q 0.6289,0.34179 1.26465,0.51269 0.63574,0.16406 1.29882,0.16406 1.14161,0 1.75684,-0.60156 0.62207,-0.60156 0.62207,-1.70898 0,-1.09375 -0.64258,-1.70215 -0.63574,-0.6084 -1.77734,-0.6084 -0.55371,0 -1.08008,0.12988 -0.52637,0.12305 -1.00488,0.37598 z"
+           style="fill:#00005f"
+           id="path9961" />
+        <path
+           d="m 811.0166,552.59644 h 5.16797 v 1.1621 h -3.91016 v 2.50879 q 0.29395,-0.10937 0.58789,-0.15722 0.30079,-0.0547 0.60157,-0.0547 1.58593,0 2.51562,0.93652 0.92969,0.93653 0.92969,2.53614 0,1.61328 -0.97754,2.54296 -0.9707,0.92969 -2.65918,0.92969 -0.81348,0 -1.49023,-0.10937 -0.66993,-0.10938 -1.20313,-0.32813 v -1.40136 q 0.62891,0.34179 1.26465,0.51269 0.63574,0.16406 1.29883,0.16406 1.1416,0 1.75683,-0.60156 0.62207,-0.60156 0.62207,-1.70898 0,-1.09375 -0.64257,-1.70215 -0.63575,-0.6084 -1.77735,-0.6084 -0.55371,0 -1.08008,0.12988 -0.52636,0.12305 -1.00488,0.37598 z"
+           style="fill:#00005f"
+           id="path9963" />
+        <path
+           d="m 822.78821,560.62183 q 0,0.5332 0.35547,0.8955 0.3623,0.36231 0.8955,0.36231 0.52637,0 0.88868,-0.36231 0.36914,-0.36914 0.36914,-0.8955 0,-0.52637 -0.36914,-0.89551 -0.36914,-0.36914 -0.88868,-0.36914 -0.5332,0 -0.8955,0.3623 -0.35547,0.36231 -0.35547,0.90235 z m -0.92285,0 q 0,-0.92286 0.6289,-1.55176 0.62891,-0.63574 1.54492,-0.63574 0.4375,0 0.82715,0.16406 0.39649,0.16406 0.71094,0.47851 0.31445,0.32129 0.48535,0.71778 0.1709,0.39648 0.1709,0.82715 0,0.90918 -0.63574,1.54492 -0.63574,0.63574 -1.5586,0.63574 -0.92968,0 -1.55175,-0.62207 -0.62207,-0.62891 -0.62207,-1.55859 z m -3.26758,-0.82715 -0.30078,-0.77246 7.62207,-3.04883 0.34179,0.77246 z m 0.58105,-4.59375 q 0,0.54004 0.35547,0.90234 0.36231,0.35547 0.90235,0.35547 0.52636,0 0.8955,-0.3623 0.36914,-0.36915 0.36914,-0.89551 0,-0.52637 -0.36914,-0.88867 -0.36914,-0.36914 -0.8955,-0.36914 -0.52637,0 -0.89551,0.3623 -0.36231,0.3623 -0.36231,0.89551 z m -0.92285,0 q 0,-0.92285 0.62891,-1.55176 0.6289,-0.63574 1.55176,-0.63574 0.4375,0 0.83398,0.16406 0.40332,0.16406 0.71094,0.47168 0.30761,0.30762 0.47168,0.71094 0.1709,0.39648 0.1709,0.84082 0,0.91601 -0.63575,1.55176 -0.63574,0.6289 -1.55175,0.6289 -0.92286,0 -1.55176,-0.6289 -0.62891,-0.62891 -0.62891,-1.55176 z"
+           style="fill:#00005f"
+           id="path9965" />
+        <path
+           d="m 835.94409,561.4353 h 9.20117 v 1.36719 h -9.20117 z m 0,-4.41601 h 9.20117 v 1.36718 h -9.20117 z m 0,-4.42285 h 9.20117 v 1.36718 h -9.20117 z"
+           style="font-weight:bold;fill:#00005f"
+           id="path9967" />
+        <path
+           d="m 861.49005,561.02515 h 2.25586 v -6.62403 l -2.09863,0.51953 v -1.81836 l 2.1123,-0.50585 h 1.94824 v 8.42871 h 2.25586 v 1.77734 h -6.47363 z"
+           style="font-weight:bold;fill:#00005f"
+           id="path9969" />
+        <path
+           d="m 869.47449,557.70972 q 0,-2.65235 0.84082,-3.97168 0.84082,-1.32617 2.52929,-1.32617 1.69532,0 2.53614,1.31933 0.84082,1.31934 0.84082,3.97852 0,2.65234 -0.84082,3.97168 -0.84082,1.31933 -2.53614,1.31933 -1.68847,0 -2.52929,-1.31933 -0.84082,-1.32618 -0.84082,-3.97168 z m 2.35156,2.72754 q 0.32129,0.85449 1.01855,0.85449 0.70411,0 1.0254,-0.85449 0.32128,-0.8545 0.32128,-2.72754 0,-0.71094 -0.0479,-1.27149 l -2.38574,3.80078 q 0.0342,0.10938 0.0684,0.19825 z m 1.01855,-6.31641 q -0.69726,0 -1.01855,0.85449 -0.32129,0.85449 -0.32129,2.73438 0,0.58105 0.0273,1.05957 l 2.35157,-3.75293 q -0.007,-0.0205 -0.0137,-0.041 -0.32129,-0.85449 -1.0254,-0.85449 z"
+           style="font-weight:bold;fill:#00005f"
+           id="path9971" />
+        <path
+           d="m 880.81537,558.23608 h -1.08008 v -1.77734 h 1.08008 q 0.75195,0 1.16211,-0.29395 0.41699,-0.30078 0.41699,-0.84082 0,-0.56738 -0.41699,-0.88183 -0.41016,-0.32129 -1.16211,-0.32129 -0.57422,0 -1.23047,0.14355 -0.65625,0.14356 -1.36035,0.417 v -1.83203 q 0.7041,-0.21192 1.38769,-0.32129 0.6836,-0.11621 1.3125,-0.11621 1.61328,0 2.51563,0.7041 0.90234,0.7041 0.90234,1.9414 0,0.90918 -0.51953,1.49024 -0.51953,0.57422 -1.4834,0.75195 1.09375,0.19141 1.66797,0.875 0.57422,0.67676 0.57422,1.78418 0,1.4834 -0.9502,2.2627 -0.95019,0.77929 -2.76171,0.77929 -0.77246,0 -1.52442,-0.12988 -0.74512,-0.12988 -1.42871,-0.37598 v -1.87304 q 0.64258,0.32129 1.3877,0.49218 0.74511,0.16407 1.56543,0.16407 0.82031,0 1.29882,-0.37598 0.47852,-0.38281 0.47852,-1.02539 0,-0.78613 -0.47852,-1.20996 -0.47851,-0.43067 -1.35351,-0.43067 z"
+           style="font-weight:bold;fill:#00005f"
+           id="path9973" />
+        <path
+           d="m 891.64697,552.59644 h 1.51074 l -5.37304,11.50488 h -1.51074 z"
+           style="font-weight:bold;fill:#00005f"
+           id="path9975" />
+        <path
+           d="m 895.21533,561.02515 h 2.25586 v -6.62403 l -2.09863,0.51953 v -1.81836 l 2.1123,-0.50585 h 1.94825 v 8.42871 h 2.25585 v 1.77734 h -6.47363 z"
+           style="font-weight:bold;fill:#00005f"
+           id="path9977" />
+        <path
+           d="m 906.58014,558.24976 q -0.67676,0 -1.09375,0.43066 -0.41699,0.42383 -0.41699,1.12793 0,0.7041 0.41699,1.13477 0.41699,0.43066 1.09375,0.43066 0.67676,0 1.09375,-0.4375 0.42383,-0.4375 0.42383,-1.12793 0,-0.7041 -0.41699,-1.12793 -0.417,-0.43066 -1.10059,-0.43066 z m -1.49707,-0.8545 q -0.77246,-0.2666 -1.17578,-0.83398 -0.40332,-0.57422 -0.40332,-1.40137 0,-1.27148 0.82715,-2.00976 0.82714,-0.73828 2.24902,-0.73828 1.42871,0 2.25586,0.73828 0.82715,0.73828 0.82715,2.00976 0,0.82031 -0.39649,1.39453 -0.39648,0.56739 -1.15527,0.84082 0.84766,0.25977 1.32617,0.92969 0.47852,0.66992 0.47852,1.60645 0,1.46972 -0.86817,2.26953 -0.86816,0.7998 -2.46777,0.7998 -1.59277,0 -2.46094,-0.7998 -0.86816,-0.79981 -0.86816,-2.26953 0,-0.94336 0.48535,-1.61328 0.48535,-0.66993 1.34668,-0.92286 z m 0.21191,-2.07129 q 0,0.60157 0.3418,0.95704 0.34863,0.34863 0.94336,0.34863 0.60156,0 0.94336,-0.34863 0.34863,-0.35547 0.34863,-0.95704 0,-0.59472 -0.34863,-0.93652 -0.3418,-0.34863 -0.94336,-0.34863 -0.58789,0 -0.93652,0.34863 -0.34864,0.34863 -0.34864,0.93652 z"
+           style="font-weight:bold;fill:#00005f"
+           id="path9979" />
+        <path
+           d="m 911.72076,552.59644 h 6.45313 v 1.42871 l -3.45899,8.77734 h -2.05761 l 3.32226,-8.42871 h -4.25879 z"
+           style="font-weight:bold;fill:#00005f"
+           id="path9981" />
+        <path
+           d="m 935.5202,565.72827 q 0.007,0.0205 0.007,0.0342 0,0.0957 -0.19824,0.30078 -0.22559,0.23926 -0.52637,0.4375 l -1.35352,0.90918 q -0.69043,0.45801 -1.98925,0.45801 -0.77247,0 -1.29883,-0.19141 -0.94336,-0.35547 -1.43555,-1.38769 -0.41016,-0.86817 -0.43066,-2.00293 -0.0273,-1.80469 1.44238,-3.65039 0.49219,-0.61524 0.47852,-0.66309 -0.041,-0.082 -0.50586,-0.082 -1.03223,0 -1.53809,0.51953 -0.25977,0.25977 -0.29395,0.23926 -0.0273,-0.0137 -0.0273,-0.0752 0,-0.34179 0.47852,-1.12793 0.47851,-0.79296 0.79297,-0.9707 0.31445,-0.17773 0.81347,-0.17773 0.25293,0 1.70899,0.20508 1.26464,0.18457 2.31054,0.12988 l 1.01856,-0.0547 -0.90918,1.76367 q -0.4375,-0.0615 -0.90918,-0.0615 -0.84766,0 -1.51074,0.19824 -0.78614,0.23242 -1.58594,1.13477 -0.90918,1.03222 -0.97754,2.09863 -0.082,1.2373 0.91602,1.91406 0.83398,0.56739 2.14648,0.6084 0.95019,0.0273 2.25586,-0.2666 1.08008,-0.23926 1.12109,-0.23926 z"
+           style="font-weight:bold;fill:#00005f"
+           id="path9983" />
+        <path
+           d="m 947.46606,555.15308 h 2.13282 v 2.46777 h -2.13282 z m 0,5.16113 h 2.13282 v 2.48828 h -2.13282 z"
+           style="fill:#00005f"
+           id="path9985" />
+        <path
+           d="m 971.24512,552.59644 h 5.16797 v 1.1621 h -3.91016 v 2.50879 q 0.29394,-0.10937 0.58789,-0.15722 0.30078,-0.0547 0.60156,-0.0547 1.58594,0 2.51563,0.93652 0.92969,0.93653 0.92969,2.53614 0,1.61328 -0.97754,2.54296 -0.97071,0.92969 -2.65918,0.92969 -0.81348,0 -1.49024,-0.10937 -0.66992,-0.10938 -1.20312,-0.32813 v -1.40136 q 0.6289,0.34179 1.26465,0.51269 0.63574,0.16406 1.29882,0.16406 1.14161,0 1.75684,-0.60156 0.62207,-0.60156 0.62207,-1.70898 0,-1.09375 -0.64258,-1.70215 -0.63574,-0.6084 -1.77734,-0.6084 -0.55371,0 -1.08008,0.12988 -0.52637,0.12305 -1.00488,0.37598 z"
+           style="fill:#00005f"
+           id="path9987" />
+        <path
+           d="m 995.29742,566.26831 -7.40332,-8.31934 7.40332,-8.30566 z"
+           style="fill:#d75f00"
+           id="path9989" />
+        <path
+           d="m 1003.7365,566.26831 -7.40337,-8.31934 7.40337,-8.30566 z"
+           style="fill:#d70000"
+           id="path9991" />
+      </g>
+    </svg>
+  </g>
+</svg>
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot08.svg b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot08.svg
new file mode 100644
index 0000000000..870f854cc7
--- /dev/null
+++ b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot08.svg
@@ -0,0 +1,6184 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<svg
+   width="1190"
+   height="651.3"
+   version="1.1"
+   id="svg492"
+   sodipodi:docname="screenshot08.svg"
+   inkscape:version="1.1.1 (c3084ef, 2021-09-22)"
+   xmlns:inkscape="http://www.inkscape.org/namespaces/inkscape"
+   xmlns:sodipodi="http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd"
+   xmlns="http://www.w3.org/2000/svg"
+   xmlns:svg="http://www.w3.org/2000/svg">
+  <defs
+     id="defs496" />
+  <sodipodi:namedview
+     id="namedview494"
+     pagecolor="#ffffff"
+     bordercolor="#666666"
+     borderopacity="1.0"
+     inkscape:pageshadow="2"
+     inkscape:pageopacity="0.0"
+     inkscape:pagecheckerboard="0"
+     showgrid="false"
+     inkscape:zoom="0.61137356"
+     inkscape:cx="803.92747"
+     inkscape:cy="387.6517"
+     inkscape:window-width="1416"
+     inkscape:window-height="814"
+     inkscape:window-x="12"
+     inkscape:window-y="25"
+     inkscape:window-maximized="0"
+     inkscape:current-layer="g488" />
+  <rect
+     width="1190"
+     height="651.3"
+     rx="0"
+     ry="0"
+     class="a"
+     id="rect2" />
+  <svg
+     height="651.3"
+     viewBox="0 0 119 65.13"
+     width="1190"
+     version="1.1"
+     id="svg490">
+    <style
+       id="style4">.a{fill:#282d35}.e{fill:#b9c0cb;white-space:pre}</style>
+    <g
+       font-family="Monaco,Consolas,Menlo,'Bitstream Vera Sans Mono','Powerline Symbols',monospace"
+       font-size="1.67"
+       id="g488">
+      <defs
+         id="defs12">
+        <symbol
+           id="a">
+          <path
+             fill="transparent"
+             d="M0 0h119v30H0z"
+             id="path6" />
+        </symbol>
+        <symbol
+           id="b">
+          <path
+             fill="#6f7683"
+             d="M0 0h1.102v2.171H0z"
+             id="path9" />
+        </symbol>
+      </defs>
+      <path
+         class="a"
+         d="M0 0h119v65.13H0z"
+         id="path14"
+         style="fill:#000000" />
+      <svg
+         width="119"
+         version="1.1"
+         id="svg486">
+        <svg
+           version="1.1"
+           id="svg484">
+          <g
+             id="use16">
+            <path
+               fill="transparent"
+               d="M 0,0 H 119 V 30 H 0 Z"
+               id="path258" />
+          </g>
+          <g
+             id="use18"
+             transform="translate(10.996,62.933998)">
+            <path
+               fill="#6f7683"
+               d="M 0,0 H 1.102 V 2.171 H 0 Z"
+               id="path262" />
+          </g>
+          <g
+             aria-label="Type"
+             id="text20"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 0.41831542,1.67 V 0.54389159 H 0.03914062 V 0.40445311 H 0.96302244 V 0.54389159 H 0.58303221 V 1.67 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path266" />
+            <path
+               d="M 1.4628809,1.6333056 1.0421191,0.75916502 H 1.2092822 L 1.5444238,1.4424951 1.8249316,0.75916502 H 1.977417 L 1.6243359,1.605581 q -0.1117138,0.2682764 -0.2128271,0.3563428 -0.1002979,0.088066 -0.2601221,0.088066 -0.069311,0 -0.1239453,-0.012231 V 1.9040283 q 0.062788,0.01957 0.1198682,0.01957 0.073389,0 0.1304687,-0.02854 0.05708,-0.02854 0.104375,-0.1011132 0.047295,-0.072573 0.066865,-0.1255762 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path268" />
+            <path
+               d="M 2.2693408,0.96383787 Q 2.3394678,0.84967771 2.4365039,0.79178221 2.53354,0.7338867 2.615083,0.7338867 q 0.1141602,0 0.2054883,0.098667 0.091328,0.098667 0.091328,0.29926271 0,0.1581933 -0.061157,0.2829541 -0.060342,0.1239453 -0.1614551,0.1965185 -0.1011133,0.071758 -0.2503369,0.071758 -0.042402,0 -0.1304688,-0.00897 Q 2.2954346,1.6724462 2.2693408,1.67 V 2.0238964 H 2.1176709 V 0.75916502 h 0.1516699 z m 0,0.18020993 v 0.3905908 q 0.082358,0.021201 0.1516699,0.021201 0.1378077,0 0.2315821,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.051372,-0.20467283 -0.051372,-0.0684961 -0.1166064,-0.0684961 -0.070942,0 -0.1565625,0.0717578 -0.084805,0.0717578 -0.1533008,0.19325681 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path270" />
+            <path
+               d="m 3.8879689,1.6096582 q -0.1818409,0.086436 -0.3441114,0.086436 -0.1231298,0 -0.220166,-0.061157 -0.097036,-0.061157 -0.155747,-0.174502 -0.057895,-0.1141601 -0.057895,-0.2438134 0,-0.1247608 0.055449,-0.23973636 0.055449,-0.11497558 0.1549316,-0.1785791 0.099482,-0.0644189 0.2217969,-0.0644189 0.1622705,0 0.260122,0.11579101 0.098667,0.11579102 0.098667,0.35715819 v 0.032617 H 3.2731349 q 0,0.09459 0.039141,0.1728711 0.039956,0.078281 0.104375,0.1174219 0.064419,0.039141 0.1467774,0.039141 0.1467773,0 0.324541,-0.097852 z M 3.2821046,1.1261084 h 0.4541943 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.0660498 -0.145962,-0.0660498 -0.092144,0 -0.1598242,0.0676807 -0.066865,0.0668652 -0.093774,0.19814944 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path272" />
+          </g>
+          <g
+             aria-label="'HELP"
+             id="text22"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 5.5669387,0.8602783 H 5.4576711 L 5.372051,0.35389648 h 0.2780615 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path275" />
+            <path
+               d="M 6.114092,1.67 V 0.40445311 H 6.2788088 V 0.94916013 H 6.7468654 V 0.40445311 H 6.9107668 V 1.67 H 6.7468654 V 1.0755517 H 6.2788088 V 1.67 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path277" />
+            <path
+               d="M 7.8615578,1.5305615 V 1.67 h -0.68333 V 0.40445311 H 7.848511 V 0.53166014 H 7.3429446 V 0.96139158 H 7.7979543 V 1.0877832 H 7.3429446 v 0.4427783 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path279" />
+            <path
+               d="M 8.8759525,1.5305615 V 1.67 H 8.1926224 V 0.40445311 H 8.3573392 V 1.5305615 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path281" />
+            <path
+               d="M 9.3236233,1.2084668 V 1.67 H 9.1589065 V 0.40445311 h 0.3147558 q 0.1940723,0 0.2829541,0.0440332 0.088882,0.0432178 0.1361768,0.12720702 0.047295,0.0839893 0.047295,0.18754883 0,0.12149902 -0.063604,0.22668945 Q 9.8128811,1.095122 9.6987209,1.1522021 9.5853762,1.2084668 9.3904885,1.2084668 Z m 0,-0.1263916 h 0.070942 q 0.1524853,0 0.2266894,-0.039141 0.074204,-0.039956 0.1141602,-0.11416011 0.039956,-0.0742041 0.039956,-0.16063964 0,-0.10926758 -0.071758,-0.17287109 -0.070942,-0.0636035 -0.2813232,-0.0636035 h -0.098667 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path283" />
+          </g>
+          <g
+             aria-label="HELP'"
+             id="text24"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 11.124744,1.67 V 0.40445311 h 0.164717 v 0.54470702 h 0.468057 V 0.40445311 h 0.163901 V 1.67 H 11.757518 V 1.0755517 H 11.289461 V 1.67 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path286" />
+            <path
+               d="M 12.87221,1.5305615 V 1.67 H 12.18888 V 0.40445311 h 0.670283 v 0.12720703 h -0.505566 v 0.42973144 h 0.45501 V 1.0877832 h -0.45501 v 0.4427783 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path288" />
+            <path
+               d="M 13.886605,1.5305615 V 1.67 h -0.68333 V 0.40445311 h 0.164717 V 1.5305615 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path290" />
+            <path
+               d="M 14.334276,1.2084668 V 1.67 H 14.169559 V 0.40445311 h 0.314756 q 0.194072,0 0.282954,0.0440332 0.08888,0.0432178 0.136177,0.12720702 0.0473,0.0839893 0.0473,0.18754883 0,0.12149902 -0.0636,0.22668945 -0.0636,0.10519038 -0.177764,0.16227048 -0.113344,0.056265 -0.308232,0.056265 z m 0,-0.1263916 h 0.07094 q 0.152486,0 0.22669,-0.039141 0.0742,-0.039956 0.11416,-0.11416011 0.03996,-0.0742041 0.03996,-0.16063964 0,-0.10926758 -0.07176,-0.17287109 -0.07094,-0.0636035 -0.281323,-0.0636035 h -0.09867 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path292" />
+            <path
+               d="m 15.584329,0.8602783 h -0.109267 l -0.08562,-0.50638182 h 0.278061 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path294" />
+          </g>
+          <g
+             aria-label="to"
+             id="text26"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 17.922003,1.6333056 q -0.106821,0.044849 -0.154931,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084521 -0.03996,-0.071758 -0.03996,-0.2217969 V 0.96139158 h -0.227505 v -0.1263916 h 0.227505 V 0.46805663 h 0.151669 v 0.36694335 h 0.405269 v 0.1263916 H 17.491456 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path297" />
+            <path
+               d="m 18.536837,1.6952783 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369922 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.34411135 0.117422,-0.13617675 0.313125,-0.13617675 0.194888,0 0.31231,0.13617675 0.117422,0.13617675 0.117422,0.34411135 0,0.2079345 -0.117422,0.3449267 -0.117422,0.1361768 -0.31231,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.1647168 -0.07176,-0.25930666 -0.07176,-0.0945898 -0.193257,-0.0945898 -0.122314,0 -0.194072,0.0945898 -0.07176,0.0945899 -0.07176,0.25930666 0,0.1655322 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path299" />
+          </g>
+          <g
+             aria-label="display"
+             id="text28"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 20.774703,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101113,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130468,0.00897 0.01305,0.001631 0.03914,0.004077 V 0.35389648 h 0.152485 V 1.67 h -0.152485 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234028,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path302" />
+            <path
+               d="M 21.42297,1.67 V 0.88555662 H 21.170186 V 0.75916502 H 21.57464 V 1.5436084 h 0.253598 V 1.67 Z m -0.02528,-1.23945314 q 0,-0.0513721 0.03506,-0.0766504 0.03506,-0.0252783 0.06605,-0.0252783 0.0318,0 0.06686,0.0252783 0.03506,0.0252783 0.03506,0.0766504 0,0.0505566 -0.03506,0.075835 -0.03506,0.0252783 -0.06686,0.0252783 -0.03099,0 -0.06605,-0.0252783 -0.03506,-0.0252783 -0.03506,-0.075835 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path304" />
+            <path
+               d="M 22.179688,1.6218896 V 1.46125 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114976,0 0.165533,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.169609,-0.06605 -0.213643,-0.1223144 -0.04485,-0.055449 -0.04485,-0.13536133 0,-0.11252929 0.08644,-0.18510253 0.08725,-0.0725732 0.282139,-0.0725732 0.145962,0 0.276431,0.0424023 v 0.13780762 q -0.150039,-0.0538184 -0.282139,-0.0538184 -0.09622,0 -0.150855,0.034248 -0.05382,0.0334326 -0.05382,0.0839893 0,0.0489258 0.04729,0.0782812 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174501,0 -0.358789,-0.073389 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path306" />
+            <path
+               d="m 23.31069,0.96383787 q 0.07013,-0.11416016 0.167163,-0.17205566 0.09704,-0.0578955 0.178579,-0.0578955 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.29926271 0,0.1581933 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101113,0.071758 -0.250337,0.071758 -0.0424,0 -0.130469,-0.00897 Q 23.336783,1.6724462 23.31069,1.67 V 2.0238964 H 23.15902 V 0.75916502 h 0.15167 z m 0,0.18020993 v 0.3905908 q 0.08236,0.021201 0.151669,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.20467283 -0.05137,-0.0684961 -0.116606,-0.0684961 -0.07094,0 -0.156563,0.0717578 -0.0848,0.0717578 -0.1533,0.19325681 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path308" />
+            <path
+               d="M 24.416412,1.67 V 0.4811035 H 24.144059 V 0.35389648 h 0.424023 V 1.5436084 h 0.284585 V 1.67 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path310" />
+            <path
+               d="m 25.771656,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101113,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130468,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152485 V 1.402539 q 0,0.1647168 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234028,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path312" />
+            <path
+               d="M 26.50962,1.6333056 26.088859,0.75916502 h 0.167163 l 0.335141,0.68333008 0.280508,-0.68333008 h 0.152485 L 26.671075,1.605581 q -0.111713,0.2682764 -0.212827,0.3563428 -0.100298,0.088066 -0.260122,0.088066 -0.06931,0 -0.123945,-0.012231 V 1.9040283 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.1011132 0.0473,-0.072573 0.06686,-0.1255762 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path314" />
+          </g>
+          <g
+             aria-label="more"
+             id="text30"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 28.113895,1.67 V 0.75916502 h 0.132915 v 0.20874999 q 0.06279,-0.13291503 0.116607,-0.18347167 0.05463,-0.0505566 0.110083,-0.0505566 0.06605,0 0.106006,0.0521875 0.04077,0.0513721 0.04077,0.14677734 v 0.0489258 q 0.02691,-0.0831738 0.06442,-0.1345459 0.03833,-0.0521875 0.0791,-0.0823584 0.04077,-0.0309863 0.09377,-0.0309863 0.05871,0 0.100298,0.0497412 0.04159,0.0497412 0.04159,0.19814941 V 1.67 H 28.866537 V 1.0478271 q 0,-0.0766504 -0.0049,-0.10437498 -0.0049,-0.02854 -0.01957,-0.0432178 -0.01468,-0.0146777 -0.0318,-0.0146777 -0.0424,0 -0.09133,0.0652344 -0.04811,0.0644189 -0.09867,0.21445801 V 1.67 H 28.49307 V 1.0486426 q 0,-0.12068364 -0.02365,-0.14188481 -0.02365,-0.0212012 -0.0424,-0.0212012 -0.04159,0 -0.0897,0.0725732 -0.0473,0.0725732 -0.09051,0.18591794 V 1.67 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path317" />
+            <path
+               d="m 29.558837,1.6952783 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369922 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.34411135 0.117422,-0.13617675 0.313125,-0.13617675 0.194887,0 0.312309,0.13617675 0.117422,0.13617675 0.117422,0.34411135 0,0.2079345 -0.117422,0.3449267 -0.117422,0.1361768 -0.312309,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.1647168 -0.07176,-0.25930666 -0.07176,-0.0945898 -0.193256,-0.0945898 -0.122315,0 -0.194073,0.0945898 -0.07176,0.0945899 -0.07176,0.25930666 0,0.1655322 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path319" />
+            <path
+               d="M 30.262552,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.07094,-0.1125293 0.162271,-0.16797851 0.09214,-0.0562647 0.204673,-0.0562647 0.08236,0 0.164717,0.0252783 V 1.0877832 H 30.799921 V 0.87984861 q -0.03833,-0.006523 -0.06034,-0.006523 -0.0848,0 -0.166348,0.0668652 -0.08154,0.0668652 -0.159009,0.20059569 V 1.67 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path321" />
+            <path
+               d="m 31.943969,1.6096582 q -0.181841,0.086436 -0.344112,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.05789,-0.1141601 -0.05789,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221796,-0.0644189 0.162271,0 0.260123,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.62788 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 31.338104,1.1261084 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path323" />
+          </g>
+          <g
+             aria-label="detailed"
+             id="text32"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 33.800704,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101113,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130468,0.00897 0.01305,0.001631 0.03914,0.004077 V 0.35389648 h 0.152485 V 1.67 h -0.152485 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234028,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path326" />
+            <path
+               d="m 34.951275,1.6096582 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154931,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.162271,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 34.345411,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159825,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path328" />
+            <path
+               d="m 35.9567,1.6333056 q -0.106821,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119869,-0.1084521 -0.03996,-0.071758 -0.03996,-0.2217969 V 0.96139158 h -0.227505 v -0.1263916 h 0.227505 V 0.46805663 h 0.15167 v 0.36694335 h 0.405269 v 0.1263916 H 35.526153 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path330" />
+            <path
+               d="m 36.794962,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101113,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130468,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152485 V 1.402539 q 0,0.1647168 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234028,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path332" />
+            <path
+               d="M 37.453014,1.67 V 0.88555662 H 37.20023 v -0.1263916 h 0.404454 V 1.5436084 h 0.253598 V 1.67 Z m -0.02528,-1.23945314 q 0,-0.0513721 0.03506,-0.0766504 0.03506,-0.0252783 0.06605,-0.0252783 0.0318,0 0.06686,0.0252783 0.03506,0.0252783 0.03506,0.0766504 0,0.0505566 -0.03506,0.075835 -0.03506,0.0252783 -0.06686,0.0252783 -0.03099,0 -0.06605,-0.0252783 -0.03506,-0.0252783 -0.03506,-0.075835 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path334" />
+            <path
+               d="M 38.443761,1.67 V 0.4811035 H 38.171407 V 0.35389648 H 38.59543 V 1.5436084 h 0.284585 V 1.67 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path336" />
+            <path
+               d="m 39.958014,1.6096582 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155748,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.16227,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 H 39.34318 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 39.35215,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path338" />
+            <path
+               d="m 40.810138,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.114161,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101114,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 V 0.35389648 h 0.152485 V 1.67 h -0.152485 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234029,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path340" />
+          </g>
+          <g
+             aria-label="information"
+             id="text34"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 42.465621,1.67 V 0.88555662 h -0.252783 v -0.1263916 h 0.404453 V 1.5436084 h 0.253598 V 1.67 Z m -0.02528,-1.23945314 q 0,-0.0513721 0.03506,-0.0766504 0.03506,-0.0252783 0.06605,-0.0252783 0.0318,0 0.06686,0.0252783 0.03506,0.0252783 0.03506,0.0766504 0,0.0505566 -0.03506,0.075835 -0.03506,0.0252783 -0.06686,0.0252783 -0.03099,0 -0.06605,-0.0252783 -0.03506,-0.0252783 -0.03506,-0.075835 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path343" />
+            <path
+               d="M 43.211739,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.06523,-0.10519043 0.157378,-0.16471679 0.09214,-0.0595264 0.184287,-0.0595264 0.08073,0 0.146777,0.0432178 0.06605,0.0424023 0.09214,0.11171387 0.02691,0.0693115 0.02691,0.27235346 V 1.67 h -0.15167 V 1.142417 q 0,-0.1312842 -0.01305,-0.17287113 -0.01223,-0.0424023 -0.04648,-0.0693115 -0.03343,-0.0269092 -0.07339,-0.0269092 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.18999507 V 1.67 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path345" />
+            <path
+               d="M 44.425098,1.67 V 0.96139158 h -0.202226 v -0.1263916 h 0.202226 v -0.0424023 q 0,-0.18020996 0.04077,-0.26664551 0.04077,-0.0864355 0.125576,-0.14188476 0.08562,-0.0554492 0.225874,-0.0554492 0.106006,0 0.215273,0.0220166 v 0.14433105 q -0.118237,-0.0391406 -0.209565,-0.0391406 -0.07257,0 -0.128023,0.0269092 -0.05545,0.0269092 -0.08725,0.0880664 -0.03099,0.0603418 -0.03099,0.20548827 v 0.0587109 h 0.361236 v 0.1263916 H 44.576768 V 1.67 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path347" />
+            <path
+               d="m 45.589532,1.6952783 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369922 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.34411135 0.117422,-0.13617675 0.313125,-0.13617675 0.194888,0 0.31231,0.13617675 0.117421,0.13617675 0.117421,0.34411135 0,0.2079345 -0.117421,0.3449267 -0.117422,0.1361768 -0.31231,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.1647168 -0.07176,-0.25930666 -0.07176,-0.0945898 -0.193257,-0.0945898 -0.122314,0 -0.194072,0.0945898 -0.07176,0.0945899 -0.07176,0.25930666 0,0.1655322 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path349" />
+            <path
+               d="M 46.293248,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.07094,-0.1125293 0.16227,-0.16797851 0.09214,-0.0562647 0.204673,-0.0562647 0.08236,0 0.164717,0.0252783 V 1.0877832 H 46.830616 V 0.87984861 q -0.03833,-0.006523 -0.06034,-0.006523 -0.08481,0 -0.166348,0.0668652 -0.08154,0.0668652 -0.159008,0.20059569 V 1.67 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path351" />
+            <path
+               d="M 47.148633,1.67 V 0.75916502 h 0.132915 v 0.20874999 q 0.06279,-0.13291503 0.116607,-0.18347167 0.05463,-0.0505566 0.110083,-0.0505566 0.06605,0 0.106006,0.0521875 0.04077,0.0513721 0.04077,0.14677734 v 0.0489258 q 0.02691,-0.0831738 0.06442,-0.1345459 0.03833,-0.0521875 0.0791,-0.0823584 0.04077,-0.0309863 0.09377,-0.0309863 0.05871,0 0.100298,0.0497412 0.04159,0.0497412 0.04159,0.19814941 V 1.67 H 47.901275 V 1.0478271 q 0,-0.0766504 -0.0049,-0.10437498 -0.0049,-0.02854 -0.01957,-0.0432178 -0.01468,-0.0146777 -0.0318,-0.0146777 -0.0424,0 -0.09133,0.0652344 -0.04811,0.0644189 -0.09867,0.21445801 V 1.67 H 47.527808 V 1.0486426 q 0,-0.12068364 -0.02365,-0.14188481 -0.02365,-0.0212012 -0.0424,-0.0212012 -0.04159,0 -0.0897,0.0725732 -0.0473,0.0725732 -0.09051,0.18591794 V 1.67 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path353" />
+            <path
+               d="m 48.817003,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.114161,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161456,-0.19651851 0.101113,-0.0725733 0.250336,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152485 V 1.402539 q 0,0.1647168 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234029,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path355" />
+            <path
+               d="m 49.981436,1.6333056 q -0.106821,0.044849 -0.154931,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084521 Q 49.39922,1.478374 49.39922,1.3283349 V 0.96139158 H 49.171715 V 0.83499998 H 49.39922 V 0.46805663 h 0.151669 v 0.36694335 h 0.405269 v 0.1263916 H 49.550889 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path357" />
+            <path
+               d="M 50.476402,1.67 V 0.88555662 h -0.252783 v -0.1263916 h 0.404453 V 1.5436084 h 0.253599 V 1.67 Z m -0.02528,-1.23945314 q 0,-0.0513721 0.03506,-0.0766504 0.03506,-0.0252783 0.06605,-0.0252783 0.0318,0 0.06686,0.0252783 0.03506,0.0252783 0.03506,0.0766504 0,0.0505566 -0.03506,0.075835 -0.03506,0.0252783 -0.06686,0.0252783 -0.03099,0 -0.06605,-0.0252783 -0.03506,-0.0252783 -0.03506,-0.075835 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path359" />
+            <path
+               d="m 51.597618,1.6952783 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369922 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.34411135 0.117422,-0.13617675 0.313125,-0.13617675 0.194887,0 0.312309,0.13617675 0.117422,0.13617675 0.117422,0.34411135 0,0.2079345 -0.117422,0.3449267 -0.117422,0.1361768 -0.312309,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.1647168 -0.07176,-0.25930666 -0.07176,-0.0945898 -0.193257,-0.0945898 -0.122315,0 -0.194073,0.0945898 -0.07176,0.0945899 -0.07176,0.25930666 0,0.1655322 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path361" />
+            <path
+               d="M 52.223868,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.06523,-0.10519043 0.157377,-0.16471679 0.09214,-0.0595264 0.184288,-0.0595264 0.08073,0 0.146777,0.0432178 0.06605,0.0424023 0.09214,0.11171387 0.02691,0.0693115 0.02691,0.27235346 V 1.67 h -0.15167 V 1.142417 q 0,-0.1312842 -0.01305,-0.17287113 -0.01223,-0.0424023 -0.04648,-0.0693115 -0.03343,-0.0269092 -0.07339,-0.0269092 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.18999507 V 1.67 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path363" />
+          </g>
+          <g
+             aria-label="about"
+             id="text36"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 54.832919,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.114161,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101114,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152485 V 1.402539 q 0,0.1647168 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234029,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path366" />
+            <path
+               d="m 55.375995,0.96383787 q 0.07013,-0.11416016 0.167163,-0.17205566 0.09704,-0.0578955 0.178579,-0.0578955 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.29926271 0,0.1581933 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101113,0.071758 -0.250337,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 h -0.15167 V 0.35389648 h 0.15167 z m 0,0.18020993 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137807,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.20467283 -0.05137,-0.0684961 -0.116607,-0.0684961 -0.07094,0 -0.156562,0.0717578 -0.08481,0.0717578 -0.153301,0.19325681 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path368" />
+            <path
+               d="m 56.612186,1.6952783 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369922 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.34411135 0.117422,-0.13617675 0.313125,-0.13617675 0.194888,0 0.31231,0.13617675 0.117422,0.13617675 0.117422,0.34411135 0,0.2079345 -0.117422,0.3449267 -0.117422,0.1361768 -0.31231,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.1647168 -0.07176,-0.25930666 -0.07176,-0.0945898 -0.193257,-0.0945898 -0.122314,0 -0.194072,0.0945898 -0.07176,0.0945899 -0.07176,0.25930666 0,0.1655322 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path370" />
+            <path
+               d="M 57.987816,0.75916502 V 1.67 h -0.15167 V 1.4702197 q -0.07339,0.1125293 -0.163086,0.1687939 -0.0897,0.056265 -0.179394,0.056265 -0.07991,0 -0.146777,-0.042402 -0.06605,-0.043218 -0.09214,-0.1125293 -0.02609,-0.070127 -0.02609,-0.2723535 V 0.75916502 h 0.15167 V 1.286748 q 0,0.1312842 0.01223,0.1736865 0.01305,0.041587 0.04648,0.068496 0.03425,0.026909 0.07339,0.026909 0.07991,0 0.17124,-0.07502 0.09214,-0.075835 0.152485,-0.1908106 V 0.75916502 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path372" />
+            <path
+               d="m 59.001395,1.6333056 q -0.106821,0.044849 -0.154931,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084521 -0.03996,-0.071758 -0.03996,-0.2217969 V 0.96139158 h -0.227504 v -0.1263916 h 0.227504 V 0.46805663 h 0.15167 v 0.36694335 h 0.405269 v 0.1263916 H 58.570848 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path374" />
+          </g>
+          <g
+             aria-label="the"
+             id="text38"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 61.008002,1.6333056 q -0.106821,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084521 -0.03996,-0.071758 -0.03996,-0.2217969 V 0.96139158 H 60.19828 v -0.1263916 h 0.227505 V 0.46805663 h 0.15167 v 0.36694335 h 0.405269 v 0.1263916 H 60.577455 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path377" />
+            <path
+               d="M 61.247738,1.67 V 0.35389648 h 0.15167 v 0.60423338 q 0.06523,-0.10519043 0.157378,-0.16471679 0.09214,-0.0595264 0.184287,-0.0595264 0.07747,0 0.141069,0.0399561 0.06442,0.0391406 0.0897,0.0954053 0.02038,0.0432178 0.02772,0.0921436 0.0073,0.0481103 0.0073,0.19978022 V 1.67 h -0.15167 V 1.142417 q 0,-0.1312842 -0.01305,-0.17287113 -0.01223,-0.0424023 -0.04648,-0.0693115 -0.03343,-0.0269092 -0.07339,-0.0269092 -0.07991,0 -0.172055,0.075835 -0.09133,0.075835 -0.150855,0.18999507 V 1.67 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path379" />
+            <path
+               d="m 63.00662,1.6096582 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.16227,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 62.400756,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path381" />
+          </g>
+          <g
+             aria-label="help"
+             id="text40"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 64.25439,1.67 V 0.35389648 h 0.15167 v 0.60423338 q 0.06523,-0.10519043 0.157378,-0.16471679 0.09214,-0.0595264 0.184287,-0.0595264 0.07747,0 0.141069,0.0399561 0.06442,0.0391406 0.0897,0.0954053 0.02039,0.0432178 0.02772,0.0921436 0.0073,0.0481103 0.0073,0.19978022 V 1.67 h -0.15167 V 1.142417 q 0,-0.1312842 -0.01305,-0.17287113 -0.01223,-0.0424023 -0.04648,-0.0693115 -0.03343,-0.0269092 -0.07339,-0.0269092 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.18999507 V 1.67 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path384" />
+            <path
+               d="m 66.013272,1.6096582 q -0.181841,0.086436 -0.344112,0.086436 -0.123129,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.05789,-0.1141601 -0.05789,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.16227,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 65.407408,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06687,0.0668652 -0.09377,0.19814944 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path386" />
+            <path
+               d="M 66.501714,1.67 V 0.4811035 H 66.229361 V 0.35389648 h 0.424023 V 1.5436084 h 0.284585 V 1.67 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path388" />
+            <path
+               d="m 67.398687,0.96383787 q 0.07013,-0.11416016 0.167163,-0.17205566 0.09704,-0.0578955 0.178579,-0.0578955 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.29926271 0,0.1581933 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101113,0.071758 -0.250337,0.071758 -0.0424,0 -0.130468,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 v 0.3538964 h -0.15167 V 0.75916502 h 0.15167 z m 0,0.18020993 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137807,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.20467283 -0.05137,-0.0684961 -0.116607,-0.0684961 -0.07094,0 -0.156562,0.0717578 -0.0848,0.0717578 -0.153301,0.19325681 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path390" />
+          </g>
+          <g
+             aria-label="system."
+             id="text42"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 69.274993,1.6218896 V 1.46125 q 0.09133,0.059526 0.193257,0.083989 0.101928,0.023648 0.172871,0.023648 0.114975,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.105191,-0.041587 q -0.169609,-0.06605 -0.213642,-0.1223144 -0.04485,-0.055449 -0.04485,-0.13536133 0,-0.11252929 0.08644,-0.18510253 0.08725,-0.0725732 0.282138,-0.0725732 0.145962,0 0.276431,0.0424023 v 0.13780762 q -0.150039,-0.0538184 -0.282139,-0.0538184 -0.09622,0 -0.150854,0.034248 -0.05382,0.0334326 -0.05382,0.0839893 0,0.0489258 0.04729,0.0782812 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.14107,0.051372 0.19815,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path393" />
+            <path
+               d="M 70.600881,1.6333056 70.18012,0.75916502 h 0.167163 l 0.335141,0.68333008 0.280508,-0.68333008 h 0.152485 L 70.762336,1.605581 q -0.111713,0.2682764 -0.212827,0.3563428 -0.100298,0.088066 -0.260122,0.088066 -0.06931,0 -0.123945,-0.012231 V 1.9040283 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.1011132 0.04729,-0.072573 0.06686,-0.1255762 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path395" />
+            <path
+               d="M 71.277688,1.6218896 V 1.46125 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114975,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.16961,-0.06605 -0.213643,-0.1223144 -0.04485,-0.055449 -0.04485,-0.13536133 0,-0.11252929 0.08644,-0.18510253 0.08725,-0.0725732 0.282139,-0.0725732 0.145961,0 0.27643,0.0424023 v 0.13780762 q -0.150039,-0.0538184 -0.282138,-0.0538184 -0.09622,0 -0.150855,0.034248 -0.05382,0.0334326 -0.05382,0.0839893 0,0.0489258 0.04729,0.0782812 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path397" />
+            <path
+               d="m 73.030046,1.6333056 q -0.106821,0.044849 -0.154931,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084521 Q 72.44783,1.478374 72.44783,1.3283349 V 0.96139158 H 72.220325 V 0.83499998 H 72.44783 V 0.46805663 h 0.15167 v 0.36694335 h 0.405268 v 0.1263916 H 72.5995 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path399" />
+            <path
+               d="m 74.027317,1.6096582 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155748,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.16227,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 73.421453,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path401" />
+            <path
+               d="M 74.202634,1.67 V 0.75916502 h 0.132915 v 0.20874999 q 0.06279,-0.13291503 0.116607,-0.18347167 0.05463,-0.0505566 0.110083,-0.0505566 0.06605,0 0.106006,0.0521875 0.04077,0.0513721 0.04077,0.14677734 v 0.0489258 q 0.02691,-0.0831738 0.06442,-0.1345459 0.03833,-0.0521875 0.0791,-0.0823584 0.04077,-0.0309863 0.09377,-0.0309863 0.05871,0 0.100298,0.0497412 0.04159,0.0497412 0.04159,0.19814941 V 1.67 H 74.955276 V 1.0478271 q 0,-0.0766504 -0.0049,-0.10437498 -0.0049,-0.02854 -0.01957,-0.0432178 -0.01468,-0.0146777 -0.0318,-0.0146777 -0.0424,0 -0.09133,0.0652344 -0.04811,0.0644189 -0.09867,0.21445801 V 1.67 H 74.581809 V 1.0486426 q 0,-0.12068364 -0.02365,-0.14188481 -0.02365,-0.0212012 -0.0424,-0.0212012 -0.04159,0 -0.0897,0.0725732 -0.0473,0.0725732 -0.09051,0.18591794 V 1.67 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path403" />
+            <path
+               d="m 75.646761,1.7083252 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09377,0.039141 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path405" />
+          </g>
+          <g
+             aria-label="Visit"
+             id="text44"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 0.81787596,4.7464532 H 0.97606931 L 0.58629393,6.0120001 H 0.41913085 L 0.02690918,4.7464532 H 0.2005957 L 0.4753955,5.630379 0.5112744,5.7592169 0.54307616,5.6311944 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path408" />
+            <path
+               d="M 1.3829687,6.0120001 V 5.2275567 H 1.1301855 V 5.1011651 H 1.5346387 V 5.8856085 H 1.7882373 V 6.0120001 Z M 1.3576904,4.772547 q 0,-0.051372 0.035063,-0.07665 0.035063,-0.025278 0.06605,-0.025278 0.031802,0 0.066865,0.025278 0.035063,0.025278 0.035063,0.07665 0,0.050557 -0.035063,0.075835 -0.035063,0.025278 -0.066865,0.025278 -0.030986,0 -0.06605,-0.025278 -0.035063,-0.025278 -0.035063,-0.075835 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path410" />
+            <path
+               d="M 2.1396875,5.9638897 V 5.8032501 q 0.091328,0.059526 0.1932568,0.083989 0.1019287,0.023648 0.1728711,0.023648 0.1149756,0 0.1655322,-0.036694 0.050557,-0.03751 0.050557,-0.092959 0,-0.036694 -0.023648,-0.062788 Q 2.6746094,5.6923517 2.580835,5.6540265 L 2.5286475,5.6328253 2.423457,5.5912384 Q 2.2538477,5.5251886 2.2098145,5.4689239 2.1649658,5.4134747 2.1649658,5.3335626 q 0,-0.1125293 0.086436,-0.1851025 0.087251,-0.072573 0.2821386,-0.072573 0.1459619,0 0.2764307,0.042402 V 5.2560968 Q 2.6599316,5.2022784 2.527832,5.2022784 q -0.096221,0 -0.1508545,0.034248 -0.053818,0.033433 -0.053818,0.083989 0,0.048926 0.047295,0.078281 0.04648,0.029355 0.1516699,0.067681 l 0.1027442,0.03751 q 0.1410693,0.051372 0.1981494,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.091328,0.1948876 -0.090513,0.075835 -0.2902929,0.075835 -0.174502,0 -0.3587891,-0.073389 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path412" />
+            <path
+               d="M 3.3856642,6.0120001 V 5.2275567 H 3.132881 V 5.1011651 H 3.5373341 V 5.8856085 H 3.7909327 V 6.0120001 Z M 3.3603859,4.772547 q 0,-0.051372 0.035063,-0.07665 0.035063,-0.025278 0.06605,-0.025278 0.031802,0 0.066865,0.025278 0.035064,0.025278 0.035064,0.07665 0,0.050557 -0.035064,0.075835 -0.035064,0.025278 -0.066865,0.025278 -0.030986,0 -0.06605,-0.025278 -0.035063,-0.025278 -0.035063,-0.075835 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path414" />
+            <path
+               d="m 4.8933936,5.9753057 q -0.1068213,0.044849 -0.1549317,0.053003 -0.04811,0.00897 -0.092959,0.00897 -0.095405,0 -0.1745019,-0.036694 Q 4.3919043,5.9638897 4.3511328,5.8921319 4.3111768,5.8203741 4.3111768,5.6703351 V 5.3033917 H 4.0836719 V 5.1770001 H 4.3111768 V 4.8100568 H 4.4628467 V 5.1770001 H 4.8681152 V 5.3033917 H 4.4628467 v 0.3644971 q 0,0.110083 0.026094,0.155747 0.026094,0.044849 0.069312,0.06605 0.044033,0.021201 0.1035595,0.021201 0.110083,0 0.2315821,-0.069312 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path416" />
+          </g>
+          <g
+             aria-label="http://www.hpe.com/info/moonshot/docs"
+             id="text46"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 6.1383917,6.0120001 V 4.6958966 H 6.2900616 V 5.30013 q 0.065234,-0.1051904 0.1573779,-0.1647168 0.092144,-0.059526 0.1842871,-0.059526 0.077466,0 0.1410694,0.039956 0.064419,0.039141 0.089697,0.095405 0.020386,0.043218 0.027725,0.092143 0.00734,0.04811 0.00734,0.1997803 V 6.0120001 H 6.7458868 v -0.527583 q 0,-0.1312842 -0.013047,-0.1728711 -0.012231,-0.042402 -0.04648,-0.069311 -0.033433,-0.026909 -0.073389,-0.026909 -0.079912,0 -0.1720556,0.075835 -0.091328,0.075835 -0.1508545,0.1899951 v 0.5308447 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path419" />
+            <path
+               d="m 7.9013507,5.9753057 q -0.1068213,0.044849 -0.1549317,0.053003 -0.04811,0.00897 -0.092959,0.00897 -0.095405,0 -0.1745019,-0.036694 Q 7.3998614,5.9638897 7.3590899,5.8921319 7.3191339,5.8203741 7.3191339,5.6703351 V 5.3033917 H 7.091629 V 5.1770001 H 7.3191339 V 4.8100568 H 7.4708038 V 5.1770001 H 7.8760723 V 5.3033917 H 7.4708038 v 0.3644971 q 0,0.110083 0.026094,0.155747 0.026094,0.044849 0.069312,0.06605 0.044033,0.021201 0.1035595,0.021201 0.110083,0 0.2315821,-0.069312 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path421" />
+            <path
+               d="m 8.9026983,5.9753057 q -0.1068213,0.044849 -0.1549316,0.053003 -0.04811,0.00897 -0.092959,0.00897 -0.095405,0 -0.174502,-0.036694 Q 8.4012091,5.9638897 8.3604376,5.8921319 8.3204815,5.8203741 8.3204815,5.6703351 V 5.3033917 H 8.0929767 V 5.1770001 H 8.3204815 V 4.8100568 H 8.4721514 V 5.1770001 H 8.87742 V 5.3033917 H 8.4721514 v 0.3644971 q 0,0.110083 0.026094,0.155747 0.026094,0.044849 0.069312,0.06605 0.044033,0.021201 0.1035596,0.021201 0.110083,0 0.231582,-0.069312 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path423" />
+            <path
+               d="m 9.2826887,5.305838 q 0.070127,-0.1141602 0.1671631,-0.1720557 0.097036,-0.057895 0.1785791,-0.057895 0.1141601,0 0.2054882,0.098667 0.091328,0.098667 0.091328,0.2992627 0,0.1581934 -0.061157,0.2829541 -0.060342,0.1239453 -0.161455,0.1965185 -0.1011133,0.071758 -0.2503369,0.071758 -0.042402,0 -0.1304688,-0.00897 -0.013047,-0.00163 -0.039141,-0.00408 V 6.3658966 H 9.1310188 V 5.1011651 h 0.1516699 z m 0,0.1802099 v 0.3905909 q 0.082358,0.021201 0.1516699,0.021201 0.1378076,0 0.231582,-0.1076367 0.09459,-0.1084521 0.09459,-0.296001 0,-0.1361767 -0.051372,-0.2046728 -0.051372,-0.068496 -0.1166064,-0.068496 -0.070942,0 -0.1565625,0.071758 -0.084805,0.071758 -0.1533008,0.1932568 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path425" />
+            <path
+               d="m 10.518065,6.0503253 q -0.05463,0 -0.09378,-0.039141 -0.03914,-0.039141 -0.03914,-0.093775 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09378,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093775 -0.03914,0.039141 -0.09377,0.039141 z m 0,-0.7086084 q -0.05463,0 -0.09378,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09378,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09377,0.039141 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path427" />
+            <path
+               d="m 11.194871,6.0503253 h -0.149224 l 0.80483,-1.3413818 h 0.144331 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path429" />
+            <path
+               d="m 12.196219,6.0503253 h -0.149224 l 0.80483,-1.3413818 h 0.144331 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path431" />
+            <path
+               d="m 13.186151,6.0120001 -0.148409,-0.910835 h 0.14107 l 0.08643,0.5544922 0.02283,0.1288379 0.02202,-0.1288379 0.145146,-0.5544922 h 0.136177 l 0.163902,0.5544922 0.02854,0.1288379 0.01875,-0.1288379 0.08725,-0.5544922 h 0.116607 L 13.85888,6.0120001 H 13.716995 L 13.542493,5.4257062 13.514769,5.2968683 h -0.0041 l -0.02528,0.1280224 -0.15167,0.5871094 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path433" />
+            <path
+               d="M 14.187498,6.0120001 14.03909,5.1011651 h 0.141069 l 0.08644,0.5544922 0.02283,0.1288379 0.02202,-0.1288379 0.145147,-0.5544922 h 0.136177 l 0.163901,0.5544922 0.02854,0.1288379 0.01875,-0.1288379 0.08725,-0.5544922 h 0.116606 l -0.147592,0.910835 H 14.718343 L 14.543841,5.4257062 14.516116,5.2968683 h -0.0041 l -0.02528,0.1280224 -0.15167,0.5871094 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path435" />
+            <path
+               d="m 15.188846,6.0120001 -0.148408,-0.910835 h 0.141069 l 0.08643,0.5544922 0.02283,0.1288379 0.02202,-0.1288379 0.145146,-0.5544922 h 0.136177 l 0.163902,0.5544922 0.02854,0.1288379 0.01876,-0.1288379 0.08725,-0.5544922 h 0.116606 l -0.147593,0.910835 H 15.71969 L 15.545188,5.4257062 15.517464,5.2968683 h -0.0041 l -0.02528,0.1280224 -0.15167,0.5871094 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path437" />
+            <path
+               d="m 16.52615,6.0503253 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093775 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093775 -0.03914,0.039141 -0.09377,0.039141 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path439" />
+            <path
+               d="M 17.153216,6.0120001 V 4.6958966 h 0.15167 V 5.30013 q 0.06523,-0.1051904 0.157377,-0.1647168 0.09214,-0.059526 0.184288,-0.059526 0.07747,0 0.141069,0.039956 0.06442,0.039141 0.0897,0.095405 0.02039,0.043218 0.02773,0.092143 0.0073,0.04811 0.0073,0.1997803 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.1899951 v 0.5308447 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path441" />
+            <path
+               d="m 18.294818,5.305838 q 0.07013,-0.1141602 0.167163,-0.1720557 0.09704,-0.057895 0.178579,-0.057895 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101113,0.071758 -0.250337,0.071758 -0.0424,0 -0.130468,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 v 0.3538965 h -0.15167 V 5.1011651 h 0.15167 z m 0,0.1802099 v 0.3905909 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084521 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.2046728 -0.05137,-0.068496 -0.116607,-0.068496 -0.07094,0 -0.156562,0.071758 -0.0848,0.071758 -0.153301,0.1932568 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path443" />
+            <path
+               d="m 19.913446,5.9516583 q -0.181841,0.086436 -0.344112,0.086436 -0.123129,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 19.307582,5.4681085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path445" />
+            <path
+               d="m 20.531541,6.0503253 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093775 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093775 -0.03914,0.039141 -0.09378,0.039141 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path447" />
+            <path
+               d="m 21.925111,5.9859063 q -0.152486,0.051372 -0.290293,0.051372 -0.136993,0 -0.243814,-0.062788 -0.106006,-0.063604 -0.165532,-0.1712402 -0.05953,-0.1084522 -0.05953,-0.2462598 0,-0.2071191 0.134545,-0.3441113 0.135362,-0.1369922 0.326172,-0.1369922 0.14107,0 0.298448,0.053003 v 0.1459619 q -0.159009,-0.072573 -0.284585,-0.072573 -0.08317,0 -0.156563,0.041587 -0.07339,0.040771 -0.113345,0.1280225 -0.03996,0.087251 -0.03996,0.1793945 0,0.1231299 0.07665,0.2348438 0.07747,0.1117138 0.242182,0.1117138 0.04974,0 0.09785,-0.00652 0.04811,-0.00734 0.177764,-0.051372 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path449" />
+            <path
+               d="m 22.535052,6.0372784 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369921 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194888,0 0.312309,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449267 -0.117421,0.1361768 -0.312309,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path451" />
+            <path
+               d="m 23.092807,6.0120001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.1834716 0.05463,-0.050557 0.110083,-0.050557 0.06605,0 0.106006,0.052187 0.04077,0.051372 0.04077,0.1467774 v 0.048926 q 0.02691,-0.083174 0.06442,-0.1345458 0.03833,-0.052188 0.0791,-0.082358 0.04077,-0.030986 0.09378,-0.030986 0.05871,0 0.100297,0.049741 0.04159,0.049741 0.04159,0.1981494 V 6.0120001 H 23.845448 V 5.3898272 q 0,-0.07665 -0.0049,-0.1043749 -0.0049,-0.02854 -0.01957,-0.043218 -0.01468,-0.014678 -0.0318,-0.014678 -0.0424,0 -0.09133,0.065234 -0.04811,0.064419 -0.09867,0.214458 v 0.504751 H 23.471981 V 5.3906427 q 0,-0.1206836 -0.02365,-0.1418848 -0.02365,-0.021201 -0.0424,-0.021201 -0.04159,0 -0.0897,0.072573 -0.0473,0.072573 -0.09051,0.1859179 v 0.5259522 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path453" />
+            <path
+               d="m 24.212391,6.0503253 h -0.149224 l 0.804829,-1.3413818 h 0.144331 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path455" />
+            <path
+               d="M 25.419227,6.0120001 V 5.2275567 H 25.166444 V 5.1011651 h 0.404453 v 0.7844434 h 0.253599 V 6.0120001 Z M 25.393949,4.772547 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06687,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06687,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path457" />
+            <path
+               d="m 26.165344,6.0120001 v -0.910835 h 0.15167 V 5.30013 q 0.06524,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184287,-0.059526 0.08073,0 0.146778,0.043218 0.06605,0.042402 0.09214,0.1117139 0.02691,0.069312 0.02691,0.2723535 V 6.0120001 H 26.77284 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172055,0.075835 -0.09133,0.075835 -0.150855,0.1899951 v 0.5308447 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path459" />
+            <path
+               d="M 27.378705,6.0120001 V 5.3033917 H 27.176478 V 5.1770001 h 0.202227 v -0.042402 q 0,-0.18021 0.04077,-0.2666455 0.04077,-0.086436 0.125576,-0.1418848 0.08562,-0.055449 0.225874,-0.055449 0.106006,0 0.215274,0.022017 v 0.144331 q -0.118238,-0.039141 -0.209566,-0.039141 -0.07257,0 -0.128022,0.026909 -0.05545,0.026909 -0.08725,0.088066 -0.03099,0.060342 -0.03099,0.2054883 v 0.058711 h 0.361235 v 0.1263916 h -0.361235 v 0.7086084 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path461" />
+            <path
+               d="m 28.543137,6.0372784 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369921 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194888,0 0.31231,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449267 -0.117422,0.1361768 -0.31231,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path463" />
+            <path
+               d="m 29.219129,6.0503253 h -0.149223 l 0.804829,-1.3413818 h 0.144331 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path465" />
+            <path
+               d="m 30.10224,6.0120001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.1834716 0.05463,-0.050557 0.110083,-0.050557 0.06605,0 0.106006,0.052187 0.04077,0.051372 0.04077,0.1467774 v 0.048926 q 0.02691,-0.083174 0.06442,-0.1345458 0.03833,-0.052188 0.0791,-0.082358 0.04077,-0.030986 0.09377,-0.030986 0.05871,0 0.100298,0.049741 0.04159,0.049741 0.04159,0.1981494 V 6.0120001 H 30.854882 V 5.3898272 q 0,-0.07665 -0.0049,-0.1043749 -0.0049,-0.02854 -0.01957,-0.043218 -0.01468,-0.014678 -0.0318,-0.014678 -0.0424,0 -0.09133,0.065234 -0.04811,0.064419 -0.09867,0.214458 v 0.504751 H 30.481415 V 5.3906427 q 0,-0.1206836 -0.02365,-0.1418848 -0.02365,-0.021201 -0.0424,-0.021201 -0.04159,0 -0.0897,0.072573 -0.0473,0.072573 -0.09051,0.1859179 v 0.5259522 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path467" />
+            <path
+               d="m 31.547181,6.0372784 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369921 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194887,0 0.312309,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449267 -0.117422,0.1361768 -0.312309,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194073,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path469" />
+            <path
+               d="m 32.548529,6.0372784 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369921 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194888,0 0.31231,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449267 -0.117422,0.1361768 -0.31231,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path471" />
+            <path
+               d="m 33.174778,6.0120001 v -0.910835 h 0.15167 V 5.30013 q 0.06523,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184287,-0.059526 0.08073,0 0.146777,0.043218 0.06605,0.042402 0.09214,0.1117139 0.02691,0.069312 0.02691,0.2723535 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172055,0.075835 -0.09133,0.075835 -0.150855,0.1899951 v 0.5308447 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path473" />
+            <path
+               d="M 34.186727,5.9638897 V 5.8032501 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114976,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.16961,-0.06605 -0.213643,-0.1223145 -0.04485,-0.055449 -0.04485,-0.1353613 0,-0.1125293 0.08643,-0.1851025 0.08725,-0.072573 0.282139,-0.072573 0.145962,0 0.27643,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282138,-0.053818 -0.09622,0 -0.150855,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.04729,0.078281 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948876 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path475" />
+            <path
+               d="M 35.177473,6.0120001 V 4.6958966 h 0.15167 V 5.30013 q 0.06524,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184287,-0.059526 0.07747,0 0.14107,0.039956 0.06442,0.039141 0.0897,0.095405 0.02039,0.043218 0.02772,0.092143 0.0073,0.04811 0.0073,0.1997803 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172055,0.075835 -0.09133,0.075835 -0.150855,0.1899951 v 0.5308447 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path477" />
+            <path
+               d="m 36.553919,6.0372784 q -0.195703,0 -0.313125,-0.1361768 -0.117421,-0.1369921 -0.117421,-0.3449267 0,-0.2079346 0.117421,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194888,0 0.31231,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449267 -0.117422,0.1361768 -0.31231,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path479" />
+            <path
+               d="m 37.94178,5.9753057 q -0.106822,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 5.3033917 H 37.132058 V 5.1770001 h 0.227505 V 4.8100568 h 0.15167 v 0.3669433 h 0.405268 v 0.1263916 h -0.405268 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069312 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path481" />
+            <path
+               d="m 38.231258,6.0503253 h -0.149224 l 0.804829,-1.3413818 h 0.144332 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path483" />
+            <path
+               d="m 39.791174,5.8073272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057895 -0.178579,0.057895 -0.11416,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130468,0.00897 0.01305,0.00163 0.03914,0.00408 V 4.6958966 h 0.152485 v 1.3161035 h -0.152485 z m 0,-0.1802099 V 5.2365265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234028,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path485" />
+            <path
+               d="m 40.559311,6.0372784 q -0.195703,0 -0.313125,-0.1361768 -0.117421,-0.1369921 -0.117421,-0.3449267 0,-0.2079346 0.117421,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194888,0 0.31231,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449267 -0.117422,0.1361768 -0.31231,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path487" />
+            <path
+               d="m 41.952064,5.9859063 q -0.152485,0.051372 -0.290293,0.051372 -0.136992,0 -0.243813,-0.062788 -0.106006,-0.063604 -0.165532,-0.1712402 -0.05953,-0.1084522 -0.05953,-0.2462598 0,-0.2071191 0.134546,-0.3441113 0.135362,-0.1369922 0.326172,-0.1369922 0.141069,0 0.298447,0.053003 v 0.1459619 q -0.159008,-0.072573 -0.284585,-0.072573 -0.08317,0 -0.156562,0.041587 -0.07339,0.040771 -0.113345,0.1280225 -0.03996,0.087251 -0.03996,0.1793945 0,0.1231299 0.07665,0.2348438 0.07747,0.1117138 0.242183,0.1117138 0.04974,0 0.09785,-0.00652 0.04811,-0.00734 0.177763,-0.051372 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path489" />
+            <path
+               d="M 42.197508,5.9638897 V 5.8032501 q 0.09133,0.059526 0.193256,0.083989 0.101929,0.023648 0.172872,0.023648 0.114975,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.105191,-0.041587 q -0.169609,-0.06605 -0.213642,-0.1223145 -0.04485,-0.055449 -0.04485,-0.1353613 0,-0.1125293 0.08644,-0.1851025 0.08725,-0.072573 0.282139,-0.072573 0.145962,0 0.276431,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282139,-0.053818 -0.09622,0 -0.150854,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.04729,0.078281 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.14107,0.051372 0.19815,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948876 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path491" />
+          </g>
+          <g
+             aria-label="for"
+             id="text48"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 44.426405,6.0120001 V 5.3033917 H 44.224178 V 5.1770001 h 0.202227 v -0.042402 q 0,-0.18021 0.04077,-0.2666455 0.04077,-0.086436 0.125576,-0.1418848 0.08562,-0.055449 0.225874,-0.055449 0.106006,0 0.215274,0.022017 v 0.144331 q -0.118238,-0.039141 -0.209566,-0.039141 -0.07257,0 -0.128022,0.026909 -0.05545,0.026909 -0.08725,0.088066 -0.03099,0.060342 -0.03099,0.2054883 v 0.058711 h 0.361236 v 0.1263916 h -0.361236 v 0.7086084 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path494" />
+            <path
+               d="m 45.590838,6.0372784 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369921 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194888,0 0.31231,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449267 -0.117422,0.1361768 -0.31231,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path496" />
+            <path
+               d="m 46.294554,6.0120001 v -0.910835 h 0.15167 V 5.30013 q 0.07094,-0.1125293 0.16227,-0.1679785 0.09214,-0.056265 0.204673,-0.056265 0.08236,0 0.164717,0.025278 V 5.4297833 H 46.831922 V 5.2218487 q -0.03833,-0.00652 -0.06034,-0.00652 -0.0848,0 -0.166347,0.066865 -0.08154,0.066865 -0.159009,0.2005957 v 0.5292139 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path498" />
+          </g>
+          <g
+             aria-label="current"
+             id="text50"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 48.988896,5.9859063 q -0.152485,0.051372 -0.290293,0.051372 -0.136992,0 -0.243813,-0.062788 -0.106006,-0.063604 -0.165532,-0.1712402 -0.05953,-0.1084522 -0.05953,-0.2462598 0,-0.2071191 0.134546,-0.3441113 0.135361,-0.1369922 0.326172,-0.1369922 0.141069,0 0.298447,0.053003 v 0.1459619 q -0.159009,-0.072573 -0.284585,-0.072573 -0.08317,0 -0.156562,0.041587 -0.07339,0.040771 -0.113345,0.1280225 -0.03996,0.087251 -0.03996,0.1793945 0,0.1231299 0.07665,0.2348438 0.07747,0.1117138 0.242183,0.1117138 0.04974,0 0.09785,-0.00652 0.04811,-0.00734 0.177764,-0.051372 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path501" />
+            <path
+               d="m 49.97312,5.1011651 v 0.910835 H 49.82145 V 5.8122198 q -0.07339,0.1125293 -0.163086,0.168794 -0.0897,0.056265 -0.179395,0.056265 -0.07991,0 -0.146777,-0.042402 -0.06605,-0.043218 -0.09214,-0.1125293 -0.02609,-0.070127 -0.02609,-0.2723535 V 5.1011651 h 0.15167 v 0.527583 q 0,0.1312842 0.01223,0.1736866 0.01305,0.041587 0.04648,0.068496 0.03425,0.026909 0.07339,0.026909 0.07991,0 0.171241,-0.075019 0.09214,-0.075835 0.152485,-0.1908105 V 5.1011651 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path503" />
+            <path
+               d="m 50.302553,6.0120001 v -0.910835 h 0.15167 V 5.30013 q 0.07094,-0.1125293 0.162271,-0.1679785 0.09214,-0.056265 0.204673,-0.056265 0.08236,0 0.164716,0.025278 V 5.4297833 H 50.839922 V 5.2218487 q -0.03833,-0.00652 -0.06034,-0.00652 -0.08481,0 -0.166348,0.066865 -0.08154,0.066865 -0.159009,0.2005957 v 0.5292139 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path505" />
+            <path
+               d="m 51.303901,6.0120001 v -0.910835 h 0.15167 V 5.30013 q 0.07094,-0.1125293 0.162271,-0.1679785 0.09214,-0.056265 0.204672,-0.056265 0.08236,0 0.164717,0.025278 V 5.4297833 H 51.841269 V 5.2218487 q -0.03833,-0.00652 -0.06034,-0.00652 -0.08481,0 -0.166348,0.066865 -0.08154,0.066865 -0.159009,0.2005957 v 0.5292139 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path507" />
+            <path
+               d="m 52.985317,5.9516583 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 52.379453,5.4681085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path509" />
+            <path
+               d="M 53.22913,6.0120001 V 5.1011651 H 53.3808 V 5.30013 q 0.06524,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184287,-0.059526 0.08073,0 0.146778,0.043218 0.06605,0.042402 0.09214,0.1117139 0.02691,0.069312 0.02691,0.2723535 v 0.5088281 h -0.151669 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150855,0.1899951 v 0.5308447 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path511" />
+            <path
+               d="m 54.99209,5.9753057 q -0.106822,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 5.3033917 H 54.182368 V 5.1770001 h 0.227505 V 4.8100568 h 0.15167 v 0.3669433 h 0.405268 v 0.1263916 h -0.405268 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069312 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path513" />
+          </g>
+          <g
+             aria-label="product"
+             id="text52"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 56.378645,5.305838 q 0.07013,-0.1141602 0.167163,-0.1720557 0.09704,-0.057895 0.178579,-0.057895 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101113,0.071758 -0.250337,0.071758 -0.0424,0 -0.130468,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 v 0.3538965 h -0.15167 V 5.1011651 h 0.15167 z m 0,0.1802099 v 0.3905909 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084521 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.2046728 -0.05137,-0.068496 -0.116607,-0.068496 -0.07094,0 -0.156562,0.071758 -0.0848,0.071758 -0.153301,0.1932568 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path516" />
+            <path
+               d="m 57.317205,6.0120001 v -0.910835 h 0.15167 V 5.30013 q 0.07094,-0.1125293 0.16227,-0.1679785 0.09214,-0.056265 0.204673,-0.056265 0.08236,0 0.164717,0.025278 V 5.4297833 H 57.854573 V 5.2218487 q -0.03833,-0.00652 -0.06034,-0.00652 -0.08481,0 -0.166348,0.066865 -0.08154,0.066865 -0.159008,0.2005957 v 0.5292139 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path518" />
+            <path
+               d="m 58.616184,6.0372784 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369921 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194888,0 0.31231,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449267 -0.117422,0.1361768 -0.31231,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path520" />
+            <path
+               d="m 59.850745,5.8073272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057895 -0.178579,0.057895 -0.114161,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101114,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 V 4.6958966 h 0.152485 v 1.3161035 h -0.152485 z m 0,-0.1802099 V 5.2365265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234029,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path522" />
+            <path
+               d="m 60.993162,5.1011651 v 0.910835 h -0.15167 V 5.8122198 q -0.07339,0.1125293 -0.163086,0.168794 -0.0897,0.056265 -0.179395,0.056265 -0.07991,0 -0.146777,-0.042402 -0.06605,-0.043218 -0.09214,-0.1125293 -0.02609,-0.070127 -0.02609,-0.2723535 V 5.1011651 h 0.15167 v 0.527583 q 0,0.1312842 0.01223,0.1736866 0.01305,0.041587 0.04648,0.068496 0.03425,0.026909 0.07339,0.026909 0.07991,0 0.17124,-0.075019 0.09214,-0.075835 0.152486,-0.1908105 V 5.1011651 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path524" />
+            <path
+               d="m 62.011633,5.9859063 q -0.152485,0.051372 -0.290293,0.051372 -0.136992,0 -0.243813,-0.062788 -0.106006,-0.063604 -0.165532,-0.1712402 -0.05953,-0.1084522 -0.05953,-0.2462598 0,-0.2071191 0.134546,-0.3441113 0.135361,-0.1369922 0.326172,-0.1369922 0.141069,0 0.298447,0.053003 v 0.1459619 q -0.159009,-0.072573 -0.284585,-0.072573 -0.08317,0 -0.156562,0.041587 -0.07339,0.040771 -0.113345,0.1280225 -0.03996,0.087251 -0.03996,0.1793945 0,0.1231299 0.07665,0.2348438 0.07747,0.1117138 0.242183,0.1117138 0.04974,0 0.09785,-0.00652 0.04811,-0.00734 0.177763,-0.051372 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path526" />
+            <path
+               d="m 63.008089,5.9753057 q -0.106822,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 5.3033917 H 62.198367 V 5.1770001 h 0.227505 V 4.8100568 h 0.15167 v 0.3669433 h 0.405268 v 0.1263916 h -0.405268 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069312 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path528" />
+          </g>
+          <g
+             aria-label="documentation."
+             id="text54"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 64.8627,5.8073272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057895 -0.178579,0.057895 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 V 4.6958966 h 0.152486 V 6.0120001 H 64.8627 Z m 0,-0.1802099 V 5.2365265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140253,0 -0.234028,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.1533,-0.1932568 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path531" />
+            <path
+               d="m 65.630835,6.0372784 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369921 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194888,0 0.31231,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449267 -0.117422,0.1361768 -0.31231,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path533" />
+            <path
+               d="m 67.023589,5.9859063 q -0.152485,0.051372 -0.290293,0.051372 -0.136992,0 -0.243813,-0.062788 -0.106006,-0.063604 -0.165532,-0.1712402 -0.05953,-0.1084522 -0.05953,-0.2462598 0,-0.2071191 0.134546,-0.3441113 0.135361,-0.1369922 0.326172,-0.1369922 0.141069,0 0.298447,0.053003 v 0.1459619 q -0.159009,-0.072573 -0.284585,-0.072573 -0.08317,0 -0.156562,0.041587 -0.07339,0.040771 -0.113345,0.1280225 -0.03996,0.087251 -0.03996,0.1793945 0,0.1231299 0.07665,0.2348438 0.07747,0.1117138 0.242183,0.1117138 0.04974,0 0.09785,-0.00652 0.04811,-0.00734 0.177764,-0.051372 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path535" />
+            <path
+               d="m 68.007813,5.1011651 v 0.910835 h -0.15167 V 5.8122198 q -0.07339,0.1125293 -0.163086,0.168794 -0.0897,0.056265 -0.179394,0.056265 -0.07991,0 -0.146778,-0.042402 -0.06605,-0.043218 -0.09214,-0.1125293 -0.02609,-0.070127 -0.02609,-0.2723535 V 5.1011651 h 0.15167 v 0.527583 q 0,0.1312842 0.01223,0.1736866 0.01305,0.041587 0.04648,0.068496 0.03425,0.026909 0.07339,0.026909 0.07991,0 0.171241,-0.075019 0.09214,-0.075835 0.152485,-0.1908105 V 5.1011651 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path537" />
+            <path
+               d="M 68.191285,6.0120001 V 5.1011651 H 68.3242 v 0.20875 q 0.06279,-0.132915 0.116606,-0.1834716 0.05463,-0.050557 0.110083,-0.050557 0.06605,0 0.106006,0.052187 0.04077,0.051372 0.04077,0.1467774 v 0.048926 q 0.02691,-0.083174 0.06442,-0.1345458 0.03833,-0.052188 0.0791,-0.082358 0.04077,-0.030986 0.09377,-0.030986 0.05871,0 0.100298,0.049741 0.04159,0.049741 0.04159,0.1981494 V 6.0120001 H 68.943926 V 5.3898272 q 0,-0.07665 -0.0049,-0.1043749 -0.0049,-0.02854 -0.01957,-0.043218 -0.01468,-0.014678 -0.0318,-0.014678 -0.0424,0 -0.09133,0.065234 -0.04811,0.064419 -0.09867,0.214458 v 0.504751 H 68.570459 V 5.3906427 q 0,-0.1206836 -0.02365,-0.1418848 -0.02365,-0.021201 -0.0424,-0.021201 -0.04159,0 -0.0897,0.072573 -0.04729,0.072573 -0.09051,0.1859179 v 0.5259522 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path539" />
+            <path
+               d="m 70.018662,5.9516583 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154931,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 69.412798,5.4681085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.067681 -0.06687,0.066865 -0.09377,0.1981494 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path541" />
+            <path
+               d="m 70.262476,6.0120001 v -0.910835 h 0.15167 V 5.30013 q 0.06523,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184287,-0.059526 0.08073,0 0.146777,0.043218 0.06605,0.042402 0.09214,0.1117139 0.02691,0.069312 0.02691,0.2723535 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172055,0.075835 -0.09133,0.075835 -0.150855,0.1899951 v 0.5308447 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path543" />
+            <path
+               d="m 72.025435,5.9753057 q -0.106821,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 5.3033917 H 71.215713 V 5.1770001 h 0.227505 V 4.8100568 h 0.15167 v 0.3669433 h 0.405269 v 0.1263916 h -0.405269 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069312 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path545" />
+            <path
+               d="m 72.863697,5.8073272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057895 -0.17858,0.057895 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101114,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 h 0.152485 v 0.6433741 q 0,0.1647167 0.03425,0.2674609 h -0.158193 q -0.01794,-0.075019 -0.02854,-0.2046729 z m 0,-0.1802099 V 5.2365265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234029,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path547" />
+            <path
+               d="m 74.02813,5.9753057 q -0.106821,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174501,-0.036694 -0.0791,-0.036694 -0.119869,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 5.3033917 H 73.218408 V 5.1770001 h 0.227505 V 4.8100568 h 0.15167 v 0.3669433 h 0.405269 v 0.1263916 h -0.405269 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069312 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path549" />
+            <path
+               d="M 74.523096,6.0120001 V 5.2275567 H 74.270313 V 5.1011651 h 0.404453 v 0.7844434 h 0.253598 V 6.0120001 Z M 74.497817,4.772547 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06687,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06687,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path551" />
+            <path
+               d="m 75.644312,6.0372784 q -0.195704,0 -0.313125,-0.1361768 -0.117422,-0.1369921 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.3441113 0.117421,-0.1361768 0.313125,-0.1361768 0.194887,0 0.312309,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449267 -0.117422,0.1361768 -0.312309,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194073,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path553" />
+            <path
+               d="m 76.270562,6.0120001 v -0.910835 h 0.15167 V 5.30013 q 0.06524,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184287,-0.059526 0.08073,0 0.146778,0.043218 0.06605,0.042402 0.09214,0.1117139 0.02691,0.069312 0.02691,0.2723535 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172055,0.075835 -0.09133,0.075835 -0.150855,0.1899951 v 0.5308447 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path555" />
+            <path
+               d="m 77.646192,6.0503253 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093775 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093775 -0.03914,0.039141 -0.09377,0.039141 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path557" />
+          </g>
+          <g
+             aria-label="hpiLO-&gt;"
+             id="text56"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 0.1263916,10.354 V 9.0378966 H 0.27806152 V 9.64213 q 0.0652344,-0.1051904 0.15737792,-0.1647168 0.0921435,-0.059526 0.18428711,-0.059526 0.0774658,0 0.14106933,0.039956 0.0644189,0.039141 0.0896973,0.095405 0.0203857,0.043218 0.0277246,0.092143 0.007339,0.04811 0.007339,0.1997803 V 10.354 H 0.7338867 V 9.8264171 q 0,-0.1312842 -0.0130469,-0.1728711 -0.0122314,-0.042402 -0.0464795,-0.069311 -0.0334326,-0.026909 -0.0733887,-0.026909 -0.0799121,0 -0.17205566,0.075835 -0.0913281,0.075835 -0.15085448,0.1899951 V 10.354 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path560" />
+            <path
+               d="m 1.2679932,9.647838 q 0.070127,-0.1141602 0.167163,-0.1720557 0.097036,-0.057896 0.1785791,-0.057896 0.1141602,0 0.2054883,0.098667 0.091328,0.098667 0.091328,0.2992627 0,0.1581934 -0.061157,0.2829545 -0.060342,0.123945 -0.1614551,0.196518 -0.1011132,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353897 h -0.15167 V 9.4431652 h 0.15167 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.2960007 0,-0.1361768 -0.051372,-0.2046729 -0.051372,-0.068496 -0.1166065,-0.068496 -0.070942,0 -0.1565625,0.071758 -0.084805,0.071758 -0.1533007,0.1932569 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path562" />
+            <path
+               d="M 2.3843164,10.354 V 9.5695568 H 2.1315332 V 9.4431652 H 2.5359863 V 10.227608 H 2.789585 V 10.354 Z M 2.3590381,9.114547 q 0,-0.051372 0.035064,-0.07665 0.035063,-0.025278 0.06605,-0.025278 0.031802,0 0.066865,0.025278 0.035064,0.025278 0.035064,0.07665 0,0.050557 -0.035064,0.075835 -0.035064,0.025278 -0.066865,0.025278 -0.030986,0 -0.06605,-0.025278 -0.035064,-0.025278 -0.035064,-0.075835 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path564" />
+            <path
+               d="M 3.8659523,10.214562 V 10.354 H 3.1826222 V 9.0884532 H 3.347339 v 1.1261088 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path566" />
+            <path
+               d="m 4.5060645,10.392325 q -0.2152735,0 -0.3294336,-0.181025 -0.1133447,-0.181841 -0.1133447,-0.4900733 0,-0.307417 0.1133447,-0.4884424 0.1141601,-0.1818408 0.3294336,-0.1818408 0.2160888,0 0.3294335,0.1818408 0.1133448,0.1810254 0.1133448,0.4884424 0,0.3082323 -0.1133448,0.4900733 -0.1133447,0.181025 -0.3294335,0.181025 z m 0,-0.127207 q 0.1190527,0 0.1981494,-0.134546 0.079912,-0.135361 0.079912,-0.4093453 0,-0.2739844 -0.079912,-0.4085303 -0.079097,-0.1353613 -0.1981494,-0.1353613 -0.1190528,0 -0.1989649,0.1353613 -0.079097,0.1345459 -0.079097,0.4085303 0,0.2739843 0.079097,0.4093453 0.079912,0.134546 0.1989649,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path568" />
+            <path
+               d="M 5.1918407,9.9046983 V 9.7783067 h 0.6327734 v 0.1263916 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path570" />
+            <path
+               d="M 6.9515383,9.9112218 6.0659817,10.354 V 10.212931 L 6.671846,9.9120372 6.0659817,9.6078819 V 9.4684435 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path572" />
+          </g>
+          <g
+             aria-label="show"
+             id="text58"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 8.152992,10.30589 v -0.16064 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023647,-0.02609 -0.1174219,-0.064419 L 8.5419519,9.9748253 8.4367615,9.9332384 Q 8.2671521,9.8671886 8.2231189,9.8109239 8.1782703,9.7554747 8.1782703,9.6755626 q 0,-0.1125293 0.086436,-0.1851025 0.087251,-0.072573 0.2821387,-0.072573 0.1459619,0 0.2764307,0.042402 v 0.1378076 q -0.1500391,-0.053818 -0.2821387,-0.053818 -0.096221,0 -0.1508545,0.034248 -0.053818,0.033433 -0.053818,0.083989 0,0.048926 0.047295,0.078281 0.04648,0.029355 0.1516699,0.067681 l 0.1027441,0.03751 q 0.1410694,0.051372 0.1981494,0.1117139 0.05708,0.060342 0.05708,0.1508547 0,0.118237 -0.091328,0.194887 -0.090513,0.07583 -0.290293,0.07583 -0.1745019,0 -0.358789,-0.07339 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path575" />
+            <path
+               d="M 9.1437391,10.354 V 9.0378966 H 9.295409 V 9.64213 q 0.065234,-0.1051904 0.1573779,-0.1647168 0.092144,-0.059526 0.1842871,-0.059526 0.077466,0 0.1410693,0.039956 0.064419,0.039141 0.089697,0.095405 0.020386,0.043218 0.027725,0.092143 0.00734,0.04811 0.00734,0.1997803 V 10.354 H 9.7512342 V 9.8264171 q 0,-0.1312842 -0.013047,-0.1728711 -0.012232,-0.042402 -0.04648,-0.069311 -0.033433,-0.026909 -0.073389,-0.026909 -0.079912,0 -0.1720556,0.075835 -0.091328,0.075835 -0.1508545,0.1899951 V 10.354 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path577" />
+            <path
+               d="m 10.520184,10.379278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.3449271 0,-0.2079346 0.117422,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194888,0 0.31231,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079341 -0.117422,0.3449271 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655321 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path579" />
+            <path
+               d="M 11.18476,10.354 11.036351,9.4431652 h 0.14107 l 0.08643,0.5544921 0.02283,0.1288377 0.02202,-0.1288377 0.145146,-0.5544921 h 0.136177 l 0.163902,0.5544921 0.02854,0.1288377 0.01876,-0.1288377 0.08725,-0.5544921 h 0.116607 L 11.857489,10.354 H 11.715604 L 11.541102,9.7677062 11.513378,9.6388683 h -0.0041 L 11.484022,9.7668907 11.332352,10.354 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path581" />
+          </g>
+          <g
+             aria-label="node"
+             id="text60"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 13.152392,10.354 V 9.4431652 h 0.15167 V 9.64213 q 0.06523,-0.1051904 0.157377,-0.1647168 0.09214,-0.059526 0.184288,-0.059526 0.08073,0 0.146777,0.043218 0.06605,0.042402 0.09214,0.1117139 0.02691,0.069311 0.02691,0.2723535 V 10.354 h -0.15167 V 9.8264171 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.1899951 V 10.354 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path584" />
+            <path
+               d="m 14.528837,10.379278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.3449271 0,-0.2079346 0.117422,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194888,0 0.312309,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079341 -0.117422,0.3449271 -0.117421,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655321 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path586" />
+            <path
+               d="m 15.763397,10.149327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.2992623 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 V 9.0378966 h 0.152486 V 10.354 h -0.152486 z m 0,-0.1802097 V 9.5785265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140253,0 -0.234028,0.1084522 -0.09296,0.1084521 -0.09296,0.2951855 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.1932567 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path588" />
+            <path
+               d="m 16.913969,10.293658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.05789,-0.11416 -0.05789,-0.2438138 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728708 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 16.308105,9.8101085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path590" />
+          </g>
+          <g
+             aria-label="list"
+             id="text62"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 18.40702,10.354 V 9.1651036 h -0.272354 v -0.127207 h 0.424024 v 1.1897114 h 0.284585 V 10.354 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path593" />
+            <path
+               d="M 19.418968,10.354 V 9.5695568 H 19.166185 V 9.4431652 h 0.404453 v 0.7844428 h 0.253599 V 10.354 Z M 19.39369,9.114547 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06686,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06686,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path595" />
+            <path
+               d="m 20.175687,10.30589 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.064419 l -0.05219,-0.021201 -0.105191,-0.041587 q -0.169609,-0.06605 -0.213642,-0.1223145 -0.04485,-0.055449 -0.04485,-0.1353613 0,-0.1125293 0.08644,-0.1851025 0.08725,-0.072573 0.282138,-0.072573 0.145962,0 0.276431,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282139,-0.053818 -0.09622,0 -0.150854,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.04729,0.078281 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.14107,0.051372 0.19815,0.1117139 0.05708,0.060342 0.05708,0.1508547 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path597" />
+            <path
+               d="m 21.928045,10.317306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 9.6453917 H 21.118324 V 9.5190001 h 0.227505 V 9.1520568 h 0.151669 v 0.3669433 h 0.405269 v 0.1263916 h -0.405269 v 0.3644973 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path599" />
+          </g>
+          <g
+             aria-label="Slot"
+             id="text64"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 0.12802246,14.669091 v -0.154932 q 0.19570312,0.09296 0.35552733,0.09296 0.0668652,0 0.12802246,-0.02528 0.0611572,-0.02609 0.0921435,-0.0742 0.0318018,-0.04811 0.0318018,-0.104375 0,-0.06605 -0.0432178,-0.12313 -0.0432178,-0.0579 -0.16227051,-0.127207 l -0.0831738,-0.04811 -0.0839893,-0.04811 q -0.22179687,-0.131284 -0.22179687,-0.326172 0,-0.1427 0.098667,-0.239736 0.0994824,-0.09785 0.30986328,-0.09785 0.13536132,0 0.26175292,0.03914 v 0.141069 q -0.13943847,-0.05382 -0.27153808,-0.05382 -0.10519043,0 -0.1704248,0.05545 -0.0644189,0.05545 -0.0644189,0.133731 0,0.07747 0.0497412,0.128838 0.0497412,0.05137 0.12720703,0.09459 l 0.0636035,0.03833 0.0790967,0.04811 0.0668652,0.03914 q 0.20793456,0.127207 0.20793456,0.319648 0,0.146777 -0.10682128,0.251968 -0.10682129,0.10519 -0.34248046,0.10519 -0.0750195,0 -0.14351563,-0.01305 -0.0676807,-0.01223 -0.17857909,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path602" />
+            <path
+               d="M 1.3723682,14.696 V 13.507104 H 1.1000147 v -0.127207 h 0.4240234 v 1.189712 H 1.808623 V 14.696 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path604" />
+            <path
+               d="m 2.5041846,14.721278 q -0.1957032,0 -0.313125,-0.136176 -0.1174219,-0.136993 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207934 -0.1174219,0.344927 -0.1174218,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path606" />
+            <path
+               d="m 3.892046,14.659306 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.174502,-0.03669 -0.079097,-0.03669 -0.1198681,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 13.987392 H 3.0823244 V 13.861 H 3.3098292 V 13.494057 H 3.4614991 V 13.861 h 0.4052686 v 0.126392 H 3.4614991 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069311,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path608" />
+          </g>
+          <g
+             aria-label="ID"
+             id="text66"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 5.1502541,14.696 V 14.569609 H 5.4283156 V 13.55766 H 5.1502541 V 13.430453 H 5.871094 V 13.55766 H 5.5930324 v 1.011949 H 5.871094 V 14.696 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path611" />
+            <path
+               d="m 6.1377395,14.696 v -1.265547 h 0.3000781 q 0.2071191,0 0.307417,0.07257 0.1011133,0.07176 0.1516699,0.21772 0.050557,0.145962 0.050557,0.345742 0,0.18918 -0.053818,0.332696 -0.053003,0.1427 -0.1508545,0.220166 Q 6.6449367,14.696 6.4378176,14.696 Z m 0.1647168,-0.139438 h 0.110083 q 0.1671631,0 0.2381054,-0.05953 0.071758,-0.05953 0.1019288,-0.164717 0.030986,-0.106005 0.030986,-0.291923 0,-0.181841 -0.035879,-0.279693 -0.035879,-0.09785 -0.1027442,-0.150039 -0.066865,-0.053 -0.2193505,-0.053 H 6.3024563 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path613" />
+          </g>
+          <g
+             aria-label="Proc"
+             id="text68"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 11.330233,14.234467 V 14.696 h -0.164717 v -1.265547 h 0.314756 q 0.194072,0 0.282954,0.04403 0.08888,0.04322 0.136177,0.127207 0.0473,0.08399 0.0473,0.187549 0,0.121499 -0.0636,0.22669 -0.0636,0.10519 -0.177764,0.16227 -0.113344,0.05626 -0.308232,0.05626 z m 0,-0.126392 h 0.07094 q 0.152485,0 0.22669,-0.03914 0.0742,-0.03996 0.11416,-0.11416 0.03996,-0.0742 0.03996,-0.16064 0,-0.109268 -0.07176,-0.172871 -0.07094,-0.0636 -0.281323,-0.0636 h -0.09867 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path616" />
+            <path
+               d="m 12.227205,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145961 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 14.696 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path618" />
+            <path
+               d="m 13.526185,14.721278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117421,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path620" />
+            <path
+               d="m 14.918939,14.669906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106005,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path622" />
+          </g>
+          <g
+             aria-label="Manufacturer"
+             id="text70"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 16.210579,14.696 h -0.132915 v -1.265547 h 0.165532 l 0.291924,0.833369 0.291924,-0.833369 h 0.161455 V 14.696 h -0.15167 v -0.80646 l 0.0041,-0.110898 h -0.0041 l -0.03588,0.110898 -0.195703,0.553677 H 16.44053 l -0.19815,-0.553677 -0.0318,-0.110898 h -0.0041 l 0.0041,0.110898 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path625" />
+            <path
+               d="m 17.758264,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path627" />
+            <path
+               d="m 18.161087,14.696 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 14.696 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 14.696 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path629" />
+            <path
+               d="M 19.911814,13.785165 V 14.696 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path631" />
+            <path
+               d="M 20.375794,14.696 V 13.987392 H 20.173567 V 13.861 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118238,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 V 13.861 h 0.361236 v 0.126392 H 20.527463 V 14.696 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path633" />
+            <path
+               d="m 21.763655,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path635" />
+            <path
+               d="m 22.932981,14.669906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path637" />
+            <path
+               d="m 23.929436,14.659306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 13.987392 H 23.119715 V 13.861 h 0.227504 v -0.366943 h 0.15167 V 13.861 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path639" />
+            <path
+               d="M 24.918552,13.785165 V 14.696 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path641" />
+            <path
+               d="m 25.247986,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 14.696 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path643" />
+            <path
+               d="m 26.929402,14.635658 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path645" />
+            <path
+               d="m 27.250681,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 14.696 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path647" />
+          </g>
+          <g
+             aria-label="Architecture"
+             id="text72"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 34.253103,14.696 H 34.09491 l 0.389775,-1.265547 h 0.167163 L 35.04407,14.696 h -0.173686 l -0.08644,-0.278061 h -0.445225 z m 0.124761,-0.404453 h 0.36939 l -0.152486,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path650" />
+            <path
+               d="m 35.273206,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 14.696 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path652" />
+            <path
+               d="m 36.963592,14.669906 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path654" />
+            <path
+               d="m 37.198435,14.696 v -1.316103 h 0.15167 v 0.604233 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.14107,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 V 14.696 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 14.696 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path656" />
+            <path
+               d="m 38.455013,14.696 v -0.784443 h -0.252784 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 14.696 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path658" />
+            <path
+               d="m 39.962742,14.659306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 13.987392 H 39.15302 V 13.861 h 0.227505 v -0.366943 h 0.15167 V 13.861 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path660" />
+            <path
+               d="m 40.960013,14.635658 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path662" />
+            <path
+               d="m 41.97033,14.669906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path664" />
+            <path
+               d="m 42.966785,14.659306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 13.987392 H 42.157063 V 13.861 h 0.227505 v -0.366943 h 0.15167 V 13.861 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path666" />
+            <path
+               d="M 43.955901,13.785165 V 14.696 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path668" />
+            <path
+               d="m 44.285335,14.696 v -0.910835 h 0.151669 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 14.696 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path670" />
+            <path
+               d="m 45.96675,14.635658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path672" />
+          </g>
+          <g
+             aria-label="Memory"
+             id="text74"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 55.28858,14.696 h -0.132915 v -1.265547 h 0.165532 l 0.291924,0.833369 0.291924,-0.833369 H 56.0665 V 14.696 h -0.15167 v -0.80646 l 0.0041,-0.110898 h -0.0041 l -0.03588,0.110898 -0.195703,0.553677 h -0.164717 l -0.19815,-0.553677 -0.0318,-0.110898 h -0.0041 l 0.0041,0.110898 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path675" />
+            <path
+               d="m 56.995274,14.635658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 H 56.38044 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 56.38941,14.152109 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path677" />
+            <path
+               d="m 57.170591,14.696 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 14.696 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 14.696 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 14.696 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path679" />
+            <path
+               d="m 58.615533,14.721278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117421,0.136176 0.117421,0.344111 0,0.207934 -0.117421,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path681" />
+            <path
+               d="m 59.319249,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 V 14.696 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path683" />
+            <path
+               d="M 60.578272,14.659306 60.15751,13.785165 h 0.167163 l 0.335142,0.68333 0.280508,-0.68333 h 0.152485 l -0.353081,0.846416 q -0.111714,0.268277 -0.212827,0.356343 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123945,-0.01223 v -0.133731 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130468,-0.02854 0.05708,-0.02854 0.104375,-0.101114 0.0473,-0.07257 0.06687,-0.125576 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path685" />
+          </g>
+          <g
+             aria-label="Power"
+             id="text76"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 62.432233,14.234467 V 14.696 h -0.164717 v -1.265547 h 0.314756 q 0.194072,0 0.282954,0.04403 0.08888,0.04322 0.136177,0.127207 0.04729,0.08399 0.04729,0.187549 0,0.121499 -0.0636,0.22669 -0.0636,0.10519 -0.177763,0.16227 -0.113345,0.05626 -0.308233,0.05626 z m 0,-0.126392 h 0.07094 q 0.152486,0 0.22669,-0.03914 0.0742,-0.03996 0.11416,-0.11416 0.03996,-0.0742 0.03996,-0.16064 0,-0.109268 -0.07176,-0.172871 -0.07094,-0.0636 -0.281323,-0.0636 h -0.09867 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path688" />
+            <path
+               d="m 63.626837,14.721278 q -0.195703,0 -0.313125,-0.136176 -0.117421,-0.136993 -0.117421,-0.344927 0,-0.207935 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path690" />
+            <path
+               d="m 64.291413,14.696 -0.148409,-0.910835 h 0.14107 l 0.08643,0.554492 0.02283,0.128838 0.02202,-0.128838 0.145146,-0.554492 h 0.136177 l 0.163902,0.554492 0.02854,0.128838 0.01875,-0.128838 0.08725,-0.554492 h 0.116607 L 64.964142,14.696 h -0.141885 l -0.174502,-0.586294 -0.02772,-0.128838 h -0.0041 l -0.02528,0.128023 -0.15167,0.587109 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path692" />
+            <path
+               d="m 66.011969,14.635658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path694" />
+            <path
+               d="m 66.333249,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 V 14.696 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path696" />
+          </g>
+          <g
+             aria-label="Status"
+             id="text78"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 68.264024,14.669091 v -0.154932 q 0.195703,0.09296 0.355527,0.09296 0.06687,0 0.128023,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.0579 -0.16227,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135362,0 0.261753,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.10519,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.133731 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127208,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319648 0,0.146777 -0.106822,0.251968 -0.106821,0.10519 -0.34248,0.10519 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path699" />
+            <path
+               d="m 70.025352,14.659306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119869,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 13.987392 H 69.21563 V 13.861 h 0.227505 v -0.366943 h 0.15167 V 13.861 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path701" />
+            <path
+               d="m 70.863614,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path703" />
+            <path
+               d="m 72.028048,14.659306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 13.987392 H 71.218326 V 13.861 h 0.227505 v -0.366943 h 0.15167 V 13.861 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path705" />
+            <path
+               d="M 73.017164,13.785165 V 14.696 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path707" />
+            <path
+               d="m 73.279732,14.64789 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.151669,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path709" />
+          </g>
+          <g
+             aria-label="Node"
+             id="text80"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 77.408413,14.696 h -0.15167 v -1.265547 h 0.148409 l 0.447671,0.842339 0.04892,0.125576 h 0.0041 l -0.0041,-0.125576 v -0.842339 h 0.15167 V 14.696 h -0.15167 l -0.435439,-0.828476 -0.06116,-0.132915 0.0033,0.131284 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path712" />
+            <path
+               d="m 78.656836,14.721278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path714" />
+            <path
+               d="m 79.891397,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161456,-0.196518 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 V 14.696 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path716" />
+            <path
+               d="m 81.041968,14.635658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path718" />
+          </g>
+          <g
+             aria-label="Asset"
+             id="text82"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 82.349104,14.696 h -0.158193 l 0.389775,-1.265547 h 0.167163 L 83.140071,14.696 h -0.173687 l -0.08644,-0.278061 h -0.445225 z m 0.124761,-0.404453 h 0.369389 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path721" />
+            <path
+               d="m 83.302341,14.64789 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path723" />
+            <path
+               d="m 84.303689,14.64789 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.151669,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path725" />
+            <path
+               d="m 86.05197,14.635658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 85.446106,14.152109 H 85.9003 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path727" />
+            <path
+               d="m 87.057395,14.659306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 13.987392 H 86.247673 V 13.861 h 0.227505 v -0.366943 h 0.15167 V 13.861 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path729" />
+          </g>
+          <g
+             aria-label="Tag"
+             id="text84"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 88.594318,14.696 v -1.126108 h -0.379175 v -0.139439 h 0.923882 v 0.139439 h -0.37999 V 14.696 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path732" />
+            <path
+               d="m 89.902267,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path734" />
+            <path
+               d="m 90.9134,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path736" />
+          </g>
+          <g
+             aria-label="----"
+             id="text86"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 0.18510253,16.417699 v -0.126392 h 0.63277343 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path739" />
+            <path
+               d="m 1.1864502,16.417699 v -0.126392 h 0.6327734 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path741" />
+            <path
+               d="m 2.1877979,16.417699 v -0.126392 h 0.6327734 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path743" />
+            <path
+               d="m 3.1891456,16.417699 v -0.126392 h 0.6327735 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path745" />
+          </g>
+          <g
+             aria-label="-----"
+             id="text88"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 5.1951028,16.417699 v -0.126392 h 0.6327734 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path748" />
+            <path
+               d="m 6.1964504,16.417699 v -0.126392 h 0.6327734 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path750" />
+            <path
+               d="m 7.1977981,16.417699 v -0.126392 h 0.6327734 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path752" />
+            <path
+               d="m 8.1991459,16.417699 v -0.126392 h 0.6327734 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path754" />
+            <path
+               d="m 9.2004934,16.417699 v -0.126392 h 0.6327734 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path756" />
+          </g>
+          <g
+             aria-label="----------------------"
+             id="text90"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 11.207103,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path759" />
+            <path
+               d="m 12.208451,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path761" />
+            <path
+               d="m 13.209798,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path763" />
+            <path
+               d="m 14.211146,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path765" />
+            <path
+               d="m 15.212493,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path767" />
+            <path
+               d="m 16.213841,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path769" />
+            <path
+               d="m 17.215189,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path771" />
+            <path
+               d="m 18.216537,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path773" />
+            <path
+               d="m 19.217884,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path775" />
+            <path
+               d="m 20.219232,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path777" />
+            <path
+               d="m 21.220579,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path779" />
+            <path
+               d="M 22.221927,16.417699 V 16.291307 H 22.8547 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path781" />
+            <path
+               d="m 23.223275,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path783" />
+            <path
+               d="m 24.224623,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path785" />
+            <path
+               d="m 25.22597,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path787" />
+            <path
+               d="m 26.227318,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path789" />
+            <path
+               d="m 27.228665,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path791" />
+            <path
+               d="m 28.230014,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path793" />
+            <path
+               d="m 29.231361,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path795" />
+            <path
+               d="m 30.232709,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path797" />
+            <path
+               d="m 31.234056,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path799" />
+            <path
+               d="m 32.235404,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path801" />
+          </g>
+          <g
+             aria-label="--------------------"
+             id="text92"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 34.253103,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path804" />
+            <path
+               d="m 35.254451,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path806" />
+            <path
+               d="m 36.255799,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path808" />
+            <path
+               d="m 37.257146,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path810" />
+            <path
+               d="m 38.258494,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path812" />
+            <path
+               d="m 39.259842,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path814" />
+            <path
+               d="m 40.26119,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path816" />
+            <path
+               d="m 41.262537,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path818" />
+            <path
+               d="m 42.263885,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path820" />
+            <path
+               d="m 43.265232,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path822" />
+            <path
+               d="m 44.26658,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path824" />
+            <path
+               d="m 45.267927,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path826" />
+            <path
+               d="m 46.269276,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path828" />
+            <path
+               d="m 47.270623,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path830" />
+            <path
+               d="m 48.271971,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path832" />
+            <path
+               d="m 49.273318,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path834" />
+            <path
+               d="m 50.274666,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path836" />
+            <path
+               d="m 51.276014,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path838" />
+            <path
+               d="m 52.277361,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path840" />
+            <path
+               d="m 53.278709,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path842" />
+          </g>
+          <g
+             aria-label="------"
+             id="text94"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 55.295103,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path845" />
+            <path
+               d="m 56.296451,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path847" />
+            <path
+               d="m 57.297798,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path849" />
+            <path
+               d="m 58.299146,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path851" />
+            <path
+               d="m 59.300494,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path853" />
+            <path
+               d="m 60.301841,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path855" />
+          </g>
+          <g
+             aria-label="-----"
+             id="text96"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 62.309103,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path858" />
+            <path
+               d="m 63.310451,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path860" />
+            <path
+               d="m 64.311798,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path862" />
+            <path
+               d="m 65.313146,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path864" />
+            <path
+               d="m 66.314494,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path866" />
+          </g>
+          <g
+             aria-label="--------"
+             id="text98"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 68.321104,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path869" />
+            <path
+               d="m 69.322452,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path871" />
+            <path
+               d="m 70.323799,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path873" />
+            <path
+               d="m 71.325147,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path875" />
+            <path
+               d="m 72.326495,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path877" />
+            <path
+               d="m 73.327842,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path879" />
+            <path
+               d="m 74.32919,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path881" />
+            <path
+               d="m 75.330538,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path883" />
+          </g>
+          <g
+             aria-label="--------------"
+             id="text100"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 77.339102,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path886" />
+            <path
+               d="m 78.34045,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path888" />
+            <path
+               d="m 79.341797,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path890" />
+            <path
+               d="m 80.343145,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path892" />
+            <path
+               d="m 81.344493,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path894" />
+            <path
+               d="m 82.34584,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path896" />
+            <path
+               d="m 83.347188,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path898" />
+            <path
+               d="m 84.348536,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path900" />
+            <path
+               d="m 85.349883,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path902" />
+            <path
+               d="m 86.351231,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path904" />
+            <path
+               d="m 87.352578,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path906" />
+            <path
+               d="m 88.353926,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path908" />
+            <path
+               d="m 89.355274,16.417699 v -0.126392 h 0.632774 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path910" />
+            <path
+               d="m 90.356622,16.417699 v -0.126392 h 0.632773 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path912" />
+          </g>
+          <g
+             aria-label="1"
+             id="text102"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 2.467164,18.911609 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769483,0.07828 v -0.136992 q 0.1785791,-0.07584 0.3098633,-0.196519 h 0.1516699 v 1.139156 H 2.9229892 V 19.038 H 2.1573007 v -0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path915" />
+          </g>
+          <g
+             aria-label="c1n1"
+             id="text104"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 5.9028957,19.011906 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136992 0.3261719,-0.136992 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128023 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path918" />
+            <path
+               d="m 6.4745119,18.911609 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136992 q 0.1785791,-0.07584 0.3098632,-0.196519 h 0.15167 v 1.139156 H 6.9303371 V 19.038 H 6.1646487 v -0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path920" />
+            <path
+               d="m 7.1390871,19.038 v -0.910835 h 0.15167 v 0.198965 q 0.065234,-0.10519 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111713 0.026909,0.06931 0.026909,0.272354 V 19.038 H 7.7465823 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720556,0.07584 -0.091328,0.07583 -0.1508545,0.189995 V 19.038 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path922" />
+            <path
+               d="m 8.4772074,18.911609 v -0.976885 q -0.068496,0.05463 -0.1329151,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136992 q 0.1785791,-0.07584 0.3098633,-0.196519 h 0.1516699 v 1.139156 H 8.9330326 V 19.038 H 8.1673441 v -0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path924" />
+          </g>
+          <g
+             aria-label="Intel"
+             id="text106"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 11.162254,19.038 v -0.126391 h 0.278062 V 17.89966 h -0.278062 v -0.127207 h 0.72084 v 0.127207 h -0.278061 v 1.011949 h 0.278061 V 19.038 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path927" />
+            <path
+               d="m 12.14974,19.038 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 19.038 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 19.038 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path929" />
+            <path
+               d="m 13.912699,19.001306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 18.329392 H 13.102977 V 18.203 h 0.227505 v -0.366943 h 0.15167 V 18.203 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path931" />
+            <path
+               d="m 14.909969,18.977658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path933" />
+            <path
+               d="m 15.398411,19.038 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 19.038 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path935" />
+          </g>
+          <g
+             aria-label="Corporation"
+             id="text108"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 17.921188,19.023322 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236475 -0.06931,-0.157378 -0.06931,-0.355527 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260938,-0.07583 -0.09785,0 -0.179394,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130468 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path938" />
+            <path
+               d="m 18.536837,19.063278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path940" />
+            <path
+               d="m 19.240553,19.038 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 19.038 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path942" />
+            <path
+               d="m 20.304689,18.331838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path944" />
+            <path
+               d="m 21.54088,19.063278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path946" />
+            <path
+               d="m 22.244596,19.038 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 19.038 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path948" />
+            <path
+               d="m 23.767004,18.833327 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path950" />
+            <path
+               d="m 24.931437,19.001306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 18.329392 H 24.121715 V 18.203 h 0.227505 v -0.366943 h 0.15167 V 18.203 h 0.405269 v 0.126392 H 24.50089 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path952" />
+            <path
+               d="M 25.426403,19.038 V 18.253557 H 25.17362 v -0.126392 h 0.404453 v 0.784444 h 0.253598 V 19.038 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path954" />
+            <path
+               d="m 26.547618,19.063278 q -0.195703,0 -0.313125,-0.136176 -0.117421,-0.136993 -0.117421,-0.344927 0,-0.207935 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path956" />
+            <path
+               d="m 27.173868,19.038 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 19.038 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 19.038 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path958" />
+          </g>
+          <g
+             aria-label="x86"
+             id="text110"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 34.288982,19.038 h -0.175317 l 0.357973,-0.477026 -0.334326,-0.433809 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 L 34.65511,18.546296 35.031023,19.038 h -0.194887 l -0.277247,-0.362866 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path961" />
+            <path
+               d="m 35.443631,18.355485 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393038 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path963" />
+            <path
+               d="m 36.308802,18.444367 q 0.05871,-0.08725 0.145146,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184288 0.377544,-0.184288 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.0367 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08643 -0.07339,0.08562 -0.07339,0.20875 0,0.123946 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path965" />
+          </g>
+          <g
+             aria-label="Architecture"
+             id="text112"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 38.261103,19.038 h -0.158194 l 0.389776,-1.265547 h 0.167163 L 39.05207,19.038 h -0.173687 l -0.08644,-0.278061 h -0.445224 z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path968" />
+            <path
+               d="m 39.281205,19.038 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 19.038 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path970" />
+            <path
+               d="m 40.971591,19.011906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path972" />
+            <path
+               d="m 41.206435,19.038 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 V 19.038 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 19.038 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path974" />
+            <path
+               d="m 42.463012,19.038 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 H 42.86828 V 19.038 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path976" />
+            <path
+               d="m 43.970741,19.001306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 18.329392 H 43.16102 V 18.203 h 0.227505 v -0.366943 h 0.151669 V 18.203 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path978" />
+            <path
+               d="m 44.968012,18.977658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path980" />
+            <path
+               d="m 45.978329,19.011906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07746,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path982" />
+            <path
+               d="m 46.974784,19.001306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 18.329392 H 46.165063 V 18.203 h 0.227505 v -0.366943 h 0.15167 V 18.203 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path984" />
+            <path
+               d="M 47.963901,18.127165 V 19.038 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152486,-0.19081 v -0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path986" />
+            <path
+               d="m 48.293334,19.038 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 19.038 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path988" />
+            <path
+               d="m 49.97475,18.977658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path990" />
+          </g>
+          <g
+             aria-label="32"
+             id="text114"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 55.228238,19.015168 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125577,0 0.20712,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07584 -0.305786,-0.07584 h -0.08399 v -0.126392 h 0.116606 q 0.159009,0 0.229952,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07583 v -0.144331 q 0.154932,-0.0579 0.28377,-0.0579 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08643 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166348,0.07991 0.05626,0.0473 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.1321,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path993" />
+            <path
+               d="m 56.998536,19.038 h -0.765689 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path995" />
+          </g>
+          <g
+             aria-label="GB"
+             id="text116"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 59.003189,19.037185 q -0.133731,0.03914 -0.245445,0.03914 -0.158193,0 -0.282138,-0.07828 -0.12313,-0.07828 -0.193257,-0.235659 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260937,-0.07583 -0.09785,0 -0.179395,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 18.538142 H 58.71208 V 18.41175 h 0.291109 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path998" />
+            <path
+               d="m 59.257603,19.038 v -1.265547 h 0.247075 q 0.222612,0 0.297632,0.03425 0.07584,0.03343 0.113344,0.09948 0.03751,0.06605 0.03751,0.150854 0,0.06686 -0.02202,0.127207 -0.02202,0.05953 -0.06524,0.109268 -0.04322,0.04893 -0.125576,0.09296 0.150855,0.06034 0.203857,0.148408 0.05382,0.08807 0.05382,0.176133 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126392,0.121499 -0.08154,0.0424 -0.260937,0.0424 z m 0.164716,-0.695561 h 0.172872 q 0.08399,-0.03506 0.122314,-0.07339 0.03914,-0.03914 0.0579,-0.08644 0.01957,-0.04811 0.01957,-0.10519 0,-0.0897 -0.053,-0.133731 -0.05219,-0.04403 -0.204673,-0.04403 h -0.114976 z m 0,0.56917 h 0.155748 q 0.130468,0 0.192441,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116606 -0.03425,-0.05382 -0.106006,-0.0848 -0.07176,-0.0318 -0.225058,-0.0318 h -0.04566 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1000" />
+          </g>
+          <g
+             aria-label="On"
+             id="text118"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 62.624674,19.076325 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409345 0,-0.273985 -0.07991,-0.408531 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.408531 0,0.273984 0.0791,0.409345 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1003" />
+            <path
+               d="m 63.25174,19.038 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 19.038 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 19.038 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1005" />
+          </g>
+          <g
+             aria-label="OK"
+             id="text120"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 68.636675,19.076325 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409345 0,-0.273985 -0.07991,-0.408531 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.408531 0,0.273984 0.0791,0.409345 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1008" />
+            <path
+               d="m 69.265372,19.038 v -1.265547 h 0.164716 v 0.620542 l 0.470503,-0.620542 h 0.174502 L 69.620899,18.373425 70.138697,19.038 H 69.932393 L 69.430088,18.392995 V 19.038 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1010" />
+          </g>
+          <g
+             aria-label="2"
+             id="text122"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 2.8911874,21.209 H 2.125499 v -0.139439 q 0,-0.05382 0.022017,-0.114975 0.022017,-0.06197 0.083989,-0.138623 0.061973,-0.07665 0.1312842,-0.147593 l 0.086436,-0.08807 q 0.026094,-0.02691 0.1141602,-0.12476 0.088066,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.065234,-0.125576 -0.065234,-0.04485 -0.1467774,-0.04485 -0.046479,0 -0.104375,0.0106 -0.05708,0.0106 -0.1002978,0.02528 -0.043218,0.01386 -0.1402539,0.05789 v -0.134546 q 0.1027441,-0.04893 0.2054883,-0.06686 0.1035595,-0.01875 0.1704248,-0.01875 0.098667,0 0.1810254,0.03262 0.083174,0.0318 0.1231298,0.09948 0.040771,0.06768 0.040771,0.144331 0,0.08562 -0.052188,0.175317 -0.051372,0.0897 -0.1948877,0.230767 l -0.092959,0.09214 -0.078281,0.07665 q -0.074204,0.07502 -0.1198682,0.145146 -0.045664,0.07013 -0.050557,0.167163 h 0.6083105 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1013" />
+          </g>
+          <g
+             aria-label="c2n1"
+             id="text124"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 5.9028957,21.182906 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108453 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136993 0.3261719,-0.136993 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128022 -0.039956,0.08725 -0.039956,0.179395 0,0.12313 0.07665,0.234844 0.077466,0.111713 0.2421826,0.111713 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1016" />
+            <path
+               d="M 6.8985354,21.209 H 6.1328469 v -0.139439 q 0,-0.05382 0.022017,-0.114975 0.022017,-0.06197 0.083989,-0.138623 0.061973,-0.07665 0.1312841,-0.147593 l 0.086436,-0.08807 q 0.026094,-0.02691 0.1141601,-0.12476 0.088066,-0.09785 0.1157911,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.065234,-0.125576 -0.065234,-0.04485 -0.1467773,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.1002979,0.02528 -0.043218,0.01386 -0.1402539,0.05789 v -0.134546 q 0.1027442,-0.04893 0.2054883,-0.06686 0.1035596,-0.01875 0.1704248,-0.01875 0.098667,0 0.1810254,0.03262 0.083174,0.0318 0.1231299,0.09948 0.040771,0.06768 0.040771,0.144331 0,0.08562 -0.052188,0.175317 -0.051372,0.0897 -0.1948877,0.230767 l -0.092959,0.09214 -0.078281,0.07665 q -0.074204,0.07502 -0.1198681,0.145146 -0.045664,0.07013 -0.050557,0.167163 h 0.6083106 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1018" />
+            <path
+               d="m 7.1390871,21.209 v -0.910835 h 0.15167 v 0.198965 q 0.065234,-0.105191 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 V 21.209 H 7.7465823 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720556,0.07584 -0.091328,0.07583 -0.1508545,0.189995 V 21.209 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1020" />
+            <path
+               d="m 8.4772074,21.082608 v -0.976885 q -0.068496,0.05463 -0.1329151,0.09296 -0.064419,0.03832 -0.1769482,0.07828 v -0.136993 q 0.1785791,-0.07583 0.3098633,-0.196518 h 0.1516699 v 1.139155 H 8.9330326 V 21.209 H 8.1673441 v -0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1022" />
+          </g>
+          <g
+             aria-label="Intel"
+             id="text126"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 11.162254,21.209 v -0.126392 h 0.278062 V 20.07066 h -0.278062 v -0.127207 h 0.72084 v 0.127207 h -0.278061 v 1.011948 h 0.278061 V 21.209 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1025" />
+            <path
+               d="m 12.14974,21.209 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 21.209 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 21.209 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1027" />
+            <path
+               d="m 13.912699,21.172305 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 20.500391 H 13.102977 V 20.374 h 0.227505 v -0.366944 h 0.15167 V 20.374 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1029" />
+            <path
+               d="m 14.909969,21.148658 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1031" />
+            <path
+               d="m 15.398411,21.209 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 21.209 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1033" />
+          </g>
+          <g
+             aria-label="Corporation"
+             id="text128"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 17.921188,21.194322 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236474 -0.06931,-0.157378 -0.06931,-0.355528 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260938,-0.07584 -0.09785,0 -0.179394,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130469 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07584 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1036" />
+            <path
+               d="m 18.536837,21.234278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1038" />
+            <path
+               d="m 19.240553,21.209 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 21.209 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1040" />
+            <path
+               d="m 20.304689,20.502838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.180209 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1042" />
+            <path
+               d="m 21.54088,21.234278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1044" />
+            <path
+               d="m 22.244596,21.209 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 21.209 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1046" />
+            <path
+               d="m 23.767004,21.004327 q -0.06931,0.11416 -0.167164,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1048" />
+            <path
+               d="m 24.931437,21.172305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 20.500391 H 24.121715 V 20.374 h 0.227505 v -0.366944 h 0.15167 V 20.374 h 0.405269 v 0.126391 H 24.50089 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1050" />
+            <path
+               d="M 25.426403,21.209 V 20.424556 H 25.17362 v -0.126391 h 0.404453 v 0.784443 h 0.253598 V 21.209 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1052" />
+            <path
+               d="m 26.547618,21.234278 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207934 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1054" />
+            <path
+               d="m 27.173868,21.209 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 21.209 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 21.209 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1056" />
+          </g>
+          <g
+             aria-label="x86"
+             id="text130"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 34.288982,21.209 h -0.175317 l 0.357973,-0.477027 -0.334326,-0.433808 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 L 34.65511,20.717296 35.031023,21.209 h -0.194887 l -0.277247,-0.362867 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1059" />
+            <path
+               d="m 35.443631,20.526485 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144332 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158194 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110898 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1061" />
+            <path
+               d="m 36.308802,20.615367 q 0.05871,-0.08725 0.145146,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185103 -0.109268,-0.185918 -0.109268,-0.472133 0,-0.316387 0.139438,-0.499859 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1063" />
+          </g>
+          <g
+             aria-label="Architecture"
+             id="text132"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 38.261103,21.209 h -0.158194 l 0.389776,-1.265547 h 0.167163 L 39.05207,21.209 h -0.173687 l -0.08644,-0.278062 h -0.445224 z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480289 -0.03588,-0.127207 -0.0318,0.127207 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1066" />
+            <path
+               d="m 39.281205,21.209 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 21.209 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1068" />
+            <path
+               d="m 40.971591,21.182906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242183,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1070" />
+            <path
+               d="m 41.206435,21.209 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.199781 V 21.209 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 21.209 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1072" />
+            <path
+               d="m 42.463012,21.209 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 H 42.86828 V 21.209 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1074" />
+            <path
+               d="m 43.970741,21.172305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 20.500391 H 43.16102 V 20.374 h 0.227505 v -0.366944 h 0.151669 V 20.374 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1076" />
+            <path
+               d="m 44.968012,21.148658 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1078" />
+            <path
+               d="m 45.978329,21.182906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07746,0.111713 0.242182,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1080" />
+            <path
+               d="m 46.974784,21.172305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 20.500391 H 46.165063 V 20.374 h 0.227505 v -0.366944 h 0.15167 V 20.374 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1082" />
+            <path
+               d="M 47.963901,20.298165 V 21.209 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530844 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1084" />
+            <path
+               d="m 48.293334,21.209 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 21.209 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1086" />
+            <path
+               d="m 49.97475,21.148658 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1088" />
+          </g>
+          <g
+             aria-label="32"
+             id="text134"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 55.228238,21.186168 v -0.159825 q 0.186733,0.09459 0.323725,0.09459 0.125577,0 0.20712,-0.07584 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07584 -0.305786,-0.07584 h -0.08399 v -0.126391 h 0.116606 q 0.159009,0 0.229952,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07584 v -0.144331 q 0.154932,-0.0579 0.28377,-0.0579 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.17124,0.135361 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.1321,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1091" />
+            <path
+               d="m 56.998536,21.209 h -0.765689 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.05789 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1093" />
+          </g>
+          <g
+             aria-label="GB"
+             id="text136"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 59.003189,21.208184 q -0.133731,0.03914 -0.245445,0.03914 -0.158193,0 -0.282138,-0.07828 -0.12313,-0.07828 -0.193257,-0.23566 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260937,-0.07584 -0.09785,0 -0.179395,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 20.709141 H 58.71208 V 20.58275 h 0.291109 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1096" />
+            <path
+               d="m 59.257603,21.209 v -1.265547 h 0.247075 q 0.222612,0 0.297632,0.03425 0.07584,0.03343 0.113344,0.09948 0.03751,0.06605 0.03751,0.150855 0,0.06686 -0.02202,0.127207 -0.02202,0.05953 -0.06524,0.109267 -0.04322,0.04893 -0.125576,0.09296 0.150855,0.06034 0.203857,0.148409 0.05382,0.08807 0.05382,0.176132 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126392,0.121499 -0.08154,0.0424 -0.260937,0.0424 z m 0.164716,-0.695562 h 0.172872 q 0.08399,-0.03506 0.122314,-0.07339 0.03914,-0.03914 0.0579,-0.08643 0.01957,-0.04811 0.01957,-0.105191 0,-0.0897 -0.053,-0.13373 -0.05219,-0.04403 -0.204673,-0.04403 h -0.114976 z m 0,0.56917 h 0.155748 q 0.130468,0 0.192441,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116607 -0.03425,-0.05382 -0.106006,-0.0848 -0.07176,-0.0318 -0.225058,-0.0318 h -0.04566 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1098" />
+          </g>
+          <g
+             aria-label="On"
+             id="text138"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 62.624674,21.247325 q -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1101" />
+            <path
+               d="m 63.25174,21.209 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 21.209 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 21.209 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1103" />
+          </g>
+          <g
+             aria-label="OK"
+             id="text140"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 68.636675,21.247325 q -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1106" />
+            <path
+               d="m 69.265372,21.209 v -1.265547 h 0.164716 v 0.620542 l 0.470503,-0.620542 h 0.174502 L 69.620899,20.544424 70.138697,21.209 H 69.932393 L 69.430088,20.563995 V 21.209 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1108" />
+          </g>
+          <g
+             aria-label="3"
+             id="text142"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 2.1222373,23.357167 v -0.159824 q 0.1867333,0.09459 0.3237255,0.09459 0.1255762,0 0.2071192,-0.07584 0.082358,-0.07665 0.082358,-0.196519 0,-0.120683 -0.090513,-0.196518 -0.089697,-0.07583 -0.3057862,-0.07583 h -0.083989 v -0.126392 h 0.1166064 q 0.1590088,0 0.2299512,-0.07094 0.070942,-0.07176 0.070942,-0.159009 0,-0.0791 -0.057896,-0.132915 -0.057895,-0.05463 -0.1777637,-0.05463 -0.1345459,0 -0.2894775,0.07583 v -0.144331 q 0.1549316,-0.05789 0.2837695,-0.05789 0.2307666,0 0.3180176,0.09133 0.088066,0.09051 0.088066,0.207119 0,0.08644 -0.04648,0.16227 -0.046479,0.07584 -0.1712403,0.135362 0.1100831,0.03262 0.1663477,0.07991 0.056265,0.0473 0.084805,0.111714 0.029356,0.06442 0.029356,0.144331 0,0.177763 -0.1320997,0.293554 -0.1312841,0.115791 -0.3400341,0.115791 -0.060342,0 -0.1320996,-0.009 -0.070942,-0.009 -0.1736865,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1111" />
+          </g>
+          <g
+             aria-label="c3n1"
+             id="text144"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 5.9028957,23.353905 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136992 0.3261719,-0.136992 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128023 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1114" />
+            <path
+               d="m 6.1295852,23.357167 v -0.159824 q 0.1867334,0.09459 0.3237256,0.09459 0.1255761,0 0.2071191,-0.07584 0.082358,-0.07665 0.082358,-0.196519 0,-0.120683 -0.090513,-0.196518 -0.089697,-0.07583 -0.3057861,-0.07583 h -0.083989 v -0.126392 h 0.1166065 q 0.1590088,0 0.2299511,-0.07094 0.070942,-0.07176 0.070942,-0.159009 0,-0.0791 -0.057895,-0.132915 -0.057896,-0.05463 -0.1777637,-0.05463 -0.1345459,0 -0.2894775,0.07583 v -0.144331 q 0.1549316,-0.05789 0.2837695,-0.05789 0.2307666,0 0.3180176,0.09133 0.088066,0.09051 0.088066,0.207119 0,0.08644 -0.04648,0.16227 -0.04648,0.07584 -0.1712402,0.135362 0.110083,0.03262 0.1663476,0.07991 0.056265,0.0473 0.084805,0.111714 0.029355,0.06442 0.029355,0.144331 0,0.177763 -0.1320996,0.293554 -0.1312842,0.115791 -0.3400342,0.115791 -0.060342,0 -0.1320996,-0.009 -0.070942,-0.009 -0.1736865,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1116" />
+            <path
+               d="m 7.1390871,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.065234,-0.10519 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 7.7465823 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720556,0.07583 -0.091328,0.07584 -0.1508545,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1118" />
+            <path
+               d="m 8.4772074,23.253608 v -0.976885 q -0.068496,0.05463 -0.1329151,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136992 q 0.1785791,-0.07583 0.3098633,-0.196519 h 0.1516699 v 1.139156 h 0.3041553 v 0.126391 H 8.1673441 v -0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1120" />
+          </g>
+          <g
+             aria-label="Intel"
+             id="text146"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 11.162254,23.379999 v -0.126391 h 0.278062 v -1.011949 h -0.278062 v -0.127207 h 0.72084 v 0.127207 h -0.278061 v 1.011949 h 0.278061 v 0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1123" />
+            <path
+               d="m 12.14974,23.379999 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1125" />
+            <path
+               d="m 13.912699,23.343305 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1127" />
+            <path
+               d="m 14.909969,23.319657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1129" />
+            <path
+               d="m 15.398411,23.379999 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1131" />
+          </g>
+          <g
+             aria-label="Corporation"
+             id="text148"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 17.921188,23.365321 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236475 -0.06931,-0.157378 -0.06931,-0.355527 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260938,-0.07583 -0.09785,0 -0.179394,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130468 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07584 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1134" />
+            <path
+               d="m 18.536837,23.405277 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1136" />
+            <path
+               d="m 19.240553,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1138" />
+            <path
+               d="m 20.304689,22.673837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1140" />
+            <path
+               d="m 21.54088,23.405277 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1142" />
+            <path
+               d="m 22.244596,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1144" />
+            <path
+               d="m 23.767004,23.175326 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1146" />
+            <path
+               d="m 24.931437,23.343305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 H 24.50089 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1148" />
+            <path
+               d="M 25.426403,23.379999 V 22.595556 H 25.17362 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1150" />
+            <path
+               d="m 26.547618,23.405277 q -0.195703,0 -0.313125,-0.136176 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207935 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1152" />
+            <path
+               d="m 27.173868,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1154" />
+          </g>
+          <g
+             aria-label="x86"
+             id="text150"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 34.288982,23.379999 h -0.175317 l 0.357973,-0.477026 -0.334326,-0.433809 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194887 l -0.277247,-0.362866 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1157" />
+            <path
+               d="m 35.443631,22.697485 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138624 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238106 -0.09948,0.100297 -0.298447,0.100297 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1159" />
+            <path
+               d="m 36.308802,22.786366 q 0.05871,-0.08725 0.145146,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07584 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1161" />
+          </g>
+          <g
+             aria-label="Architecture"
+             id="text152"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 38.261103,23.379999 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08644,-0.278061 h -0.445224 z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1164" />
+            <path
+               d="m 39.281205,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1166" />
+            <path
+               d="m 40.971591,23.353905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1168" />
+            <path
+               d="m 41.206435,23.379999 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1170" />
+            <path
+               d="m 42.463012,23.379999 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1172" />
+            <path
+               d="m 43.970741,23.343305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 22.671391 H 43.16102 v -0.126392 h 0.227505 v -0.366943 h 0.151669 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1174" />
+            <path
+               d="m 44.968012,23.319657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1176" />
+            <path
+               d="m 45.978329,23.353905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07746,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1178" />
+            <path
+               d="m 46.974784,23.343305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1180" />
+            <path
+               d="m 47.963901,22.469164 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1182" />
+            <path
+               d="m 48.293334,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1184" />
+            <path
+               d="m 49.97475,23.319657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1186" />
+          </g>
+          <g
+             aria-label="32"
+             id="text154"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 55.228238,23.357167 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125577,0 0.20712,-0.07584 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126392 h 0.116606 q 0.159009,0 0.229952,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07583 v -0.144331 q 0.154932,-0.05789 0.28377,-0.05789 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.16227 -0.04648,0.07584 -0.17124,0.135362 0.110083,0.03262 0.166348,0.07991 0.05626,0.0473 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.1321,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1189" />
+            <path
+               d="m 56.998536,23.379999 h -0.765689 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1191" />
+          </g>
+          <g
+             aria-label="GB"
+             id="text156"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 59.003189,23.379184 q -0.133731,0.03914 -0.245445,0.03914 -0.158193,0 -0.282138,-0.07828 -0.12313,-0.07828 -0.193257,-0.235659 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260937,-0.07583 -0.09785,0 -0.179395,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 22.880141 H 58.71208 v -0.126392 h 0.291109 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1194" />
+            <path
+               d="m 59.257603,23.379999 v -1.265547 h 0.247075 q 0.222612,0 0.297632,0.03425 0.07584,0.03343 0.113344,0.09948 0.03751,0.06605 0.03751,0.150854 0,0.06687 -0.02202,0.127207 -0.02202,0.05953 -0.06524,0.109268 -0.04322,0.04893 -0.125576,0.09296 0.150855,0.06034 0.203857,0.148408 0.05382,0.08807 0.05382,0.176133 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126392,0.121499 -0.08154,0.0424 -0.260937,0.0424 z m 0.164716,-0.695561 h 0.172872 q 0.08399,-0.03506 0.122314,-0.07339 0.03914,-0.03914 0.0579,-0.08644 0.01957,-0.04811 0.01957,-0.10519 0,-0.0897 -0.053,-0.13373 -0.05219,-0.04403 -0.204673,-0.04403 h -0.114976 z m 0,0.56917 h 0.155748 q 0.130468,0 0.192441,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116606 -0.03425,-0.05382 -0.106006,-0.0848 -0.07176,-0.0318 -0.225058,-0.0318 h -0.04566 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1196" />
+          </g>
+          <g
+             aria-label="On"
+             id="text158"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 62.624674,23.418324 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 0.216089,0 0.329434,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409345 0,-0.273985 -0.07991,-0.408531 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.408531 0,0.273984 0.0791,0.409345 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1199" />
+            <path
+               d="m 63.25174,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1201" />
+          </g>
+          <g
+             aria-label="OK"
+             id="text160"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 68.636675,23.418324 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 0.216089,0 0.329434,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409345 0,-0.273985 -0.07991,-0.408531 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.408531 0,0.273984 0.0791,0.409345 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1204" />
+            <path
+               d="m 69.265372,23.379999 v -1.265547 h 0.164716 v 0.620542 l 0.470503,-0.620542 h 0.174502 l -0.454194,0.600972 0.517798,0.664575 h -0.206304 l -0.502305,-0.645005 v 0.645005 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1206" />
+          </g>
+          <g
+             aria-label="4"
+             id="text162"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 2.5805087,25.551001 V 25.197104 H 2.0431406 v -0.127207 l 0.5373681,-0.784443 h 0.1524854 v 0.784443 h 0.2340283 v 0.127207 H 2.7329941 v 0.353897 z m 0,-0.481104 v -0.554492 l -0.3759131,0.554492 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1209" />
+          </g>
+          <g
+             aria-label="c4n1"
+             id="text164"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 5.9028957,25.524907 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108453 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136993 0.3261719,-0.136993 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128022 -0.039956,0.08725 -0.039956,0.179395 0,0.12313 0.07665,0.234844 0.077466,0.111713 0.2421826,0.111713 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1212" />
+            <path
+               d="M 6.5878567,25.551001 V 25.197104 H 6.0504885 V 25.069897 L 6.5878567,24.285454 H 6.740342 v 0.784443 h 0.2340283 v 0.127207 H 6.740342 v 0.353897 z m 0,-0.481104 v -0.554492 l -0.3759131,0.554492 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1214" />
+            <path
+               d="m 7.1390871,25.551001 v -0.910835 h 0.15167 v 0.198964 q 0.065234,-0.10519 0.1573779,-0.164716 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508829 H 7.7465823 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720556,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1216" />
+            <path
+               d="m 8.4772074,25.424609 v -0.976885 q -0.068496,0.05463 -0.1329151,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136992 q 0.1785791,-0.07583 0.3098633,-0.196518 h 0.1516699 v 1.139155 h 0.3041553 v 0.126392 H 8.1673441 v -0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1218" />
+          </g>
+          <g
+             aria-label="Intel"
+             id="text166"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 11.162254,25.551001 v -0.126392 h 0.278062 v -1.011948 h -0.278062 v -0.127207 h 0.72084 v 0.127207 h -0.278061 v 1.011948 h 0.278061 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1221" />
+            <path
+               d="m 12.14974,25.551001 v -0.910835 h 0.151669 v 0.198964 q 0.06524,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1223" />
+            <path
+               d="m 13.912699,25.514306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1225" />
+            <path
+               d="m 14.909969,25.490659 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1227" />
+            <path
+               d="m 15.398411,25.551001 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1229" />
+          </g>
+          <g
+             aria-label="Corporation"
+             id="text168"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 17.921188,25.536323 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236474 -0.06931,-0.157378 -0.06931,-0.355528 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.15004 q -0.131284,-0.07584 -0.260938,-0.07584 -0.09785,0 -0.179394,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130469 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07584 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1232" />
+            <path
+               d="m 18.536837,25.576279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1234" />
+            <path
+               d="m 19.240553,25.551001 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1236" />
+            <path
+               d="m 20.304689,24.844839 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.180209 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1238" />
+            <path
+               d="m 21.54088,25.576279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1240" />
+            <path
+               d="m 22.244596,25.551001 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1242" />
+            <path
+               d="m 23.767004,25.346328 q -0.06931,0.11416 -0.167164,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1244" />
+            <path
+               d="m 24.931437,25.514306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 H 24.50089 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1246" />
+            <path
+               d="M 25.426403,25.551001 V 24.766557 H 25.17362 v -0.126391 h 0.404453 v 0.784443 h 0.253598 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1248" />
+            <path
+               d="m 26.547618,25.576279 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207934 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1250" />
+            <path
+               d="m 27.173868,25.551001 v -0.910835 h 0.15167 v 0.198964 q 0.06523,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1252" />
+          </g>
+          <g
+             aria-label="x86"
+             id="text170"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 34.288982,25.551001 h -0.175317 l 0.357973,-0.477027 -0.334326,-0.433808 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194887 l -0.277247,-0.362867 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1255" />
+            <path
+               d="m 35.443631,24.868486 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144332 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159008 0,0.136993 -0.09948,0.238106 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158194 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110898 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1257" />
+            <path
+               d="m 36.308802,24.957368 q 0.05871,-0.08725 0.145146,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185103 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316386 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07584 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1259" />
+          </g>
+          <g
+             aria-label="Architecture"
+             id="text172"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 38.261103,25.551001 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08644,-0.278062 h -0.445224 z m 0.12476,-0.404454 h 0.36939 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1262" />
+            <path
+               d="m 39.281205,25.551001 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1264" />
+            <path
+               d="m 40.971591,25.524907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242183,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1266" />
+            <path
+               d="m 41.206435,25.551001 v -1.316104 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1268" />
+            <path
+               d="m 42.463012,25.551001 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253598 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1270" />
+            <path
+               d="m 43.970741,25.514306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 24.842392 H 43.16102 v -0.126391 h 0.227505 v -0.366944 h 0.151669 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1272" />
+            <path
+               d="m 44.968012,25.490659 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1274" />
+            <path
+               d="m 45.978329,25.524907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07746,0.111713 0.242182,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1276" />
+            <path
+               d="m 46.974784,25.514306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1278" />
+            <path
+               d="m 47.963901,24.640166 v 0.910835 h -0.15167 V 25.35122 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530844 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1280" />
+            <path
+               d="m 48.293334,25.551001 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1282" />
+            <path
+               d="m 49.97475,25.490659 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1284" />
+          </g>
+          <g
+             aria-label="32"
+             id="text174"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 55.228238,25.528169 v -0.159825 q 0.186733,0.09459 0.323725,0.09459 0.125577,0 0.20712,-0.07584 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126391 h 0.116606 q 0.159009,0 0.229952,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07584 v -0.144332 q 0.154932,-0.05789 0.28377,-0.05789 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07584 -0.17124,0.135361 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.1321,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1287" />
+            <path
+               d="m 56.998536,25.551001 h -0.765689 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138624 0.06197,-0.07665 0.131284,-0.147592 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1289" />
+          </g>
+          <g
+             aria-label="GB"
+             id="text176"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 59.003189,25.550185 q -0.133731,0.03914 -0.245445,0.03914 -0.158193,0 -0.282138,-0.07828 -0.12313,-0.07828 -0.193257,-0.23566 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.15004 q -0.131284,-0.07584 -0.260937,-0.07584 -0.09785,0 -0.179395,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 25.051142 H 58.71208 v -0.126391 h 0.291109 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1292" />
+            <path
+               d="m 59.257603,25.551001 v -1.265547 h 0.247075 q 0.222612,0 0.297632,0.03425 0.07584,0.03343 0.113344,0.09948 0.03751,0.06605 0.03751,0.150855 0,0.06686 -0.02202,0.127207 -0.02202,0.05953 -0.06524,0.109267 -0.04322,0.04893 -0.125576,0.09296 0.150855,0.06034 0.203857,0.148408 0.05382,0.08807 0.05382,0.176133 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126392,0.121499 -0.08154,0.0424 -0.260937,0.0424 z m 0.164716,-0.695562 h 0.172872 q 0.08399,-0.03506 0.122314,-0.07339 0.03914,-0.03914 0.0579,-0.08644 0.01957,-0.04811 0.01957,-0.105191 0,-0.0897 -0.053,-0.13373 -0.05219,-0.04403 -0.204673,-0.04403 h -0.114976 z m 0,0.56917 h 0.155748 q 0.130468,0 0.192441,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116607 -0.03425,-0.05382 -0.106006,-0.0848 -0.07176,-0.0318 -0.225058,-0.0318 h -0.04566 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1294" />
+          </g>
+          <g
+             aria-label="On"
+             id="text178"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 62.624674,25.589326 q -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1297" />
+            <path
+               d="m 63.25174,25.551001 v -0.910835 h 0.15167 v 0.198964 q 0.06523,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1299" />
+          </g>
+          <g
+             aria-label="OK"
+             id="text180"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 68.636675,25.589326 q -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1302" />
+            <path
+               d="m 69.265372,25.551001 v -1.265547 h 0.164716 v 0.620542 l 0.470503,-0.620542 h 0.174502 l -0.454194,0.600971 0.517798,0.664576 h -0.206304 l -0.502305,-0.645005 v 0.645005 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1304" />
+          </g>
+          <g
+             aria-label="5"
+             id="text182"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 2.1573007,27.063948 v -0.607495 h 0.7086084 v 0.145962 H 2.3089706 v 0.309863 h 0.026094 q 0.2731689,0 0.4207617,0.114161 0.1475928,0.11416 0.1475928,0.307417 0,0.122314 -0.059526,0.21935 -0.059526,0.09704 -0.1679785,0.152486 -0.1084522,0.05463 -0.2307666,0.05463 -0.1223145,0 -0.313125,-0.05953 v -0.165532 q 0.069311,0.03751 0.1549316,0.06197 0.08562,0.02365 0.1581934,0.02365 0.072573,0 0.1418848,-0.03506 0.069311,-0.03506 0.1076367,-0.101928 0.038325,-0.06768 0.038325,-0.137808 0,-0.118237 -0.1051905,-0.19978 -0.104375,-0.08236 -0.3718359,-0.08236 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1307" />
+          </g>
+          <g
+             aria-label="c5n1"
+             id="text184"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 5.9028957,27.695906 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136992 0.3261719,-0.136992 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128023 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1310" />
+            <path
+               d="M 6.1646487,27.063948 V 26.456453 H 6.873257 v 0.145962 H 6.3163186 v 0.309863 h 0.026094 q 0.273169,0 0.4207617,0.114161 0.1475928,0.11416 0.1475928,0.307417 0,0.122314 -0.059526,0.21935 -0.059526,0.09704 -0.1679785,0.152486 -0.1084521,0.05463 -0.2307666,0.05463 -0.1223144,0 -0.313125,-0.05953 v -0.165532 q 0.069312,0.03751 0.1549317,0.06197 0.08562,0.02365 0.1581933,0.02365 0.072573,0 0.1418848,-0.03506 0.069311,-0.03506 0.1076367,-0.101928 0.038325,-0.06768 0.038325,-0.137808 0,-0.118237 -0.1051904,-0.19978 -0.104375,-0.08236 -0.3718359,-0.08236 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1312" />
+            <path
+               d="m 7.1390871,27.722 v -0.910835 h 0.15167 v 0.198965 q 0.065234,-0.10519 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 V 27.722 H 7.7465823 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720556,0.07583 -0.091328,0.07584 -0.1508545,0.189995 V 27.722 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1314" />
+            <path
+               d="m 8.4772074,27.595609 v -0.976885 q -0.068496,0.05463 -0.1329151,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136992 q 0.1785791,-0.07583 0.3098633,-0.196519 h 0.1516699 v 1.139156 H 8.9330326 V 27.722 H 8.1673441 v -0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1316" />
+          </g>
+          <g
+             aria-label="Intel"
+             id="text186"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 11.162254,27.722 v -0.126391 h 0.278062 V 26.58366 h -0.278062 v -0.127207 h 0.72084 v 0.127207 h -0.278061 v 1.011949 h 0.278061 V 27.722 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1319" />
+            <path
+               d="m 12.14974,27.722 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 27.722 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 27.722 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1321" />
+            <path
+               d="m 13.912699,27.685306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 27.013392 H 13.102977 V 26.887 h 0.227505 v -0.366943 h 0.15167 V 26.887 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1323" />
+            <path
+               d="m 14.909969,27.661658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1325" />
+            <path
+               d="m 15.398411,27.722 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 27.722 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1327" />
+          </g>
+          <g
+             aria-label="Corporation"
+             id="text188"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 17.921188,27.707322 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236475 -0.06931,-0.157378 -0.06931,-0.355527 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260938,-0.07583 -0.09785,0 -0.179394,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130468 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07584 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1330" />
+            <path
+               d="m 18.536837,27.747278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1332" />
+            <path
+               d="m 19.240553,27.722 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06687 -0.159009,0.200595 V 27.722 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1334" />
+            <path
+               d="m 20.304689,27.015838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1336" />
+            <path
+               d="m 21.54088,27.747278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1338" />
+            <path
+               d="m 22.244596,27.722 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06687 -0.159009,0.200595 V 27.722 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1340" />
+            <path
+               d="m 23.767004,27.517327 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1342" />
+            <path
+               d="m 24.931437,27.685306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 27.013392 H 24.121715 V 26.887 h 0.227505 v -0.366943 h 0.15167 V 26.887 h 0.405269 v 0.126392 H 24.50089 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1344" />
+            <path
+               d="M 25.426403,27.722 V 26.937557 H 25.17362 v -0.126392 h 0.404453 v 0.784444 h 0.253598 V 27.722 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1346" />
+            <path
+               d="m 26.547618,27.747278 q -0.195703,0 -0.313125,-0.136176 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207935 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1348" />
+            <path
+               d="m 27.173868,27.722 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 27.722 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 27.722 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1350" />
+          </g>
+          <g
+             aria-label="x86"
+             id="text190"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 34.288982,27.722 h -0.175317 l 0.357973,-0.477026 -0.334326,-0.433809 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 L 34.65511,27.230296 35.031023,27.722 h -0.194887 l -0.277247,-0.362866 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1353" />
+            <path
+               d="m 35.443631,27.039485 -0.02773,-0.02038 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393038 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1355" />
+            <path
+               d="m 36.308802,27.128367 q 0.05871,-0.08725 0.145146,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123946 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1357" />
+          </g>
+          <g
+             aria-label="Architecture"
+             id="text192"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 38.261103,27.722 h -0.158194 l 0.389776,-1.265547 h 0.167163 L 39.05207,27.722 h -0.173687 l -0.08644,-0.278061 h -0.445224 z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1360" />
+            <path
+               d="m 39.281205,27.722 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06687 -0.159009,0.200595 V 27.722 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1362" />
+            <path
+               d="m 40.971591,27.695906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1364" />
+            <path
+               d="m 41.206435,27.722 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 V 27.722 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 V 27.722 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1366" />
+            <path
+               d="m 42.463012,27.722 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 H 42.86828 V 27.722 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1368" />
+            <path
+               d="m 43.970741,27.685306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 27.013392 H 43.16102 V 26.887 h 0.227505 v -0.366943 h 0.151669 V 26.887 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1370" />
+            <path
+               d="m 44.968012,27.661658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1372" />
+            <path
+               d="m 45.978329,27.695906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07746,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1374" />
+            <path
+               d="m 46.974784,27.685306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 27.013392 H 46.165063 V 26.887 h 0.227505 v -0.366943 h 0.15167 V 26.887 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1376" />
+            <path
+               d="M 47.963901,26.811165 V 27.722 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152486,-0.19081 v -0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1378" />
+            <path
+               d="m 48.293334,27.722 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06687 -0.159009,0.200595 V 27.722 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1380" />
+            <path
+               d="m 49.97475,27.661658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1382" />
+          </g>
+          <g
+             aria-label="32"
+             id="text194"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 55.228238,27.699168 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125577,0 0.20712,-0.07584 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126392 h 0.116606 q 0.159009,0 0.229952,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07583 v -0.144331 q 0.154932,-0.05789 0.28377,-0.05789 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.16227 -0.04648,0.07584 -0.17124,0.135362 0.110083,0.03262 0.166348,0.07991 0.05626,0.0473 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.1321,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1385" />
+            <path
+               d="m 56.998536,27.722 h -0.765689 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1387" />
+          </g>
+          <g
+             aria-label="GB"
+             id="text196"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 59.003189,27.721185 q -0.133731,0.03914 -0.245445,0.03914 -0.158193,0 -0.282138,-0.07828 -0.12313,-0.07828 -0.193257,-0.235659 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260937,-0.07583 -0.09785,0 -0.179395,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 27.222142 H 58.71208 V 27.09575 h 0.291109 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1390" />
+            <path
+               d="m 59.257603,27.722 v -1.265547 h 0.247075 q 0.222612,0 0.297632,0.03425 0.07584,0.03343 0.113344,0.09948 0.03751,0.06605 0.03751,0.150854 0,0.06686 -0.02202,0.127207 -0.02202,0.05953 -0.06524,0.109268 -0.04322,0.04893 -0.125576,0.09296 0.150855,0.06034 0.203857,0.148408 0.05382,0.08807 0.05382,0.176133 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126392,0.121499 -0.08154,0.0424 -0.260937,0.0424 z m 0.164716,-0.695561 h 0.172872 q 0.08399,-0.03506 0.122314,-0.07339 0.03914,-0.03914 0.0579,-0.08644 0.01957,-0.04811 0.01957,-0.10519 0,-0.0897 -0.053,-0.13373 -0.05219,-0.04403 -0.204673,-0.04403 h -0.114976 z m 0,0.56917 h 0.155748 q 0.130468,0 0.192441,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116606 -0.03425,-0.05382 -0.106006,-0.0848 -0.07176,-0.0318 -0.225058,-0.0318 h -0.04566 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1392" />
+          </g>
+          <g
+             aria-label="On"
+             id="text198"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 62.624674,27.760325 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 0.216089,0 0.329434,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409345 0,-0.273985 -0.07991,-0.408531 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.408531 0,0.273984 0.0791,0.409345 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1395" />
+            <path
+               d="m 63.25174,27.722 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 27.722 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 V 27.722 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1397" />
+          </g>
+          <g
+             aria-label="OK"
+             id="text200"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 68.636675,27.760325 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 0.216089,0 0.329434,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409345 0,-0.273985 -0.07991,-0.408531 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.408531 0,0.273984 0.0791,0.409345 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1400" />
+            <path
+               d="m 69.265372,27.722 v -1.265547 h 0.164716 v 0.620542 l 0.470503,-0.620542 h 0.174502 L 69.620899,27.057425 70.138697,27.722 H 69.932393 L 69.430088,27.076995 V 27.722 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1402" />
+          </g>
+          <g
+             aria-label="6"
+             id="text202"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 2.2421054,29.299367 q 0.058711,-0.08725 0.1451465,-0.141885 0.087251,-0.05545 0.191626,-0.05545 0.098667,0 0.1867334,0.04811 0.088882,0.04811 0.1353613,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.1149756,0.132915 -0.3033399,0.132915 -0.2217968,0 -0.3318799,-0.185103 -0.1092675,-0.185918 -0.1092675,-0.472133 0,-0.316387 0.1394384,-0.499859 0.1394385,-0.184287 0.377544,-0.184287 0.1280224,0 0.248706,0.03751 v 0.153301 q -0.1353613,-0.06442 -0.2552295,-0.06442 -0.1696093,0 -0.2625683,0.155747 -0.092959,0.155747 -0.092959,0.394668 z m 0.2976318,0.505566 q 0.061157,0 0.1231299,-0.03588 0.061973,-0.03669 0.097036,-0.111714 0.035879,-0.07583 0.035879,-0.164716 0,-0.115791 -0.060342,-0.189995 -0.059526,-0.0742 -0.1704248,-0.0742 -0.1149756,0 -0.1891797,0.08644 -0.073389,0.08562 -0.073389,0.20875 0,0.123945 0.071758,0.203042 0.072573,0.07828 0.1655322,0.07828 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1405" />
+          </g>
+          <g
+             aria-label="c6n1"
+             id="text204"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 5.9028957,29.866906 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136993 0.3261719,-0.136993 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128022 -0.039956,0.08725 -0.039956,0.179395 0,0.12313 0.07665,0.234844 0.077466,0.111713 0.2421826,0.111713 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1408" />
+            <path
+               d="m 6.2494534,29.299367 q 0.058711,-0.08725 0.1451464,-0.141885 0.087251,-0.05545 0.191626,-0.05545 0.098667,0 0.1867334,0.04811 0.088882,0.04811 0.1353613,0.134546 0.046479,0.08562 0.046479,0.19978 0,0.18021 -0.115791,0.313941 -0.1149756,0.132915 -0.3033398,0.132915 -0.2217969,0 -0.3318799,-0.185103 -0.1092676,-0.185918 -0.1092676,-0.472133 0,-0.316387 0.1394385,-0.499859 0.1394385,-0.184287 0.3775439,-0.184287 0.1280225,0 0.2487061,0.03751 v 0.153301 q -0.1353614,-0.06442 -0.2552295,-0.06442 -0.1696094,0 -0.2625684,0.155747 -0.092959,0.155747 -0.092959,0.394668 z m 0.2976318,0.505566 q 0.061157,0 0.1231299,-0.03588 0.061973,-0.03669 0.097036,-0.111714 0.035879,-0.07583 0.035879,-0.164716 0,-0.115791 -0.060342,-0.189995 -0.059526,-0.0742 -0.1704248,-0.0742 -0.1149756,0 -0.1891797,0.08644 -0.073389,0.08562 -0.073389,0.20875 0,0.123945 0.071758,0.203042 0.072573,0.07828 0.1655322,0.07828 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1410" />
+            <path
+               d="m 7.1390871,29.893 v -0.910835 h 0.15167 v 0.198965 q 0.065234,-0.105191 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 V 29.893 H 7.7465823 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720556,0.07584 -0.091328,0.07583 -0.1508545,0.189995 V 29.893 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1412" />
+            <path
+               d="m 8.4772074,29.766608 v -0.976885 q -0.068496,0.05463 -0.1329151,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136993 q 0.1785791,-0.07584 0.3098633,-0.196518 h 0.1516699 v 1.139155 H 8.9330326 V 29.893 H 8.1673441 v -0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1414" />
+          </g>
+          <g
+             aria-label="Intel"
+             id="text206"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 11.162254,29.893 v -0.126392 h 0.278062 V 28.75466 h -0.278062 v -0.127207 h 0.72084 v 0.127207 h -0.278061 v 1.011948 h 0.278061 V 29.893 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1417" />
+            <path
+               d="m 12.14974,29.893 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 29.893 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 29.893 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1419" />
+            <path
+               d="m 13.912699,29.856305 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 29.184391 H 13.102977 V 29.058 h 0.227505 v -0.366944 h 0.15167 V 29.058 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1421" />
+            <path
+               d="m 14.909969,29.832658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1423" />
+            <path
+               d="m 15.398411,29.893 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 29.893 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1425" />
+          </g>
+          <g
+             aria-label="Corporation"
+             id="text208"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 17.921188,29.878322 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236474 -0.06931,-0.157378 -0.06931,-0.355528 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260938,-0.07583 -0.09785,0 -0.179394,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130469 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1428" />
+            <path
+               d="m 18.536837,29.918278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1430" />
+            <path
+               d="m 19.240553,29.893 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 29.893 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1432" />
+            <path
+               d="m 20.304689,29.186838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1434" />
+            <path
+               d="m 21.54088,29.918278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1436" />
+            <path
+               d="m 22.244596,29.893 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 29.893 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1438" />
+            <path
+               d="m 23.767004,29.688327 q -0.06931,0.11416 -0.167164,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1440" />
+            <path
+               d="m 24.931437,29.856305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 29.184391 H 24.121715 V 29.058 h 0.227505 v -0.366944 h 0.15167 V 29.058 h 0.405269 v 0.126391 H 24.50089 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1442" />
+            <path
+               d="M 25.426403,29.893 V 29.108556 H 25.17362 v -0.126391 h 0.404453 v 0.784443 h 0.253598 V 29.893 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1444" />
+            <path
+               d="m 26.547618,29.918278 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207934 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1446" />
+            <path
+               d="m 27.173868,29.893 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 29.893 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 29.893 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1448" />
+          </g>
+          <g
+             aria-label="x86"
+             id="text210"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 34.288982,29.893 h -0.175317 l 0.357973,-0.477027 -0.334326,-0.433808 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 L 34.65511,29.401296 35.031023,29.893 h -0.194887 l -0.277247,-0.362867 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1451" />
+            <path
+               d="m 35.443631,29.210485 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158194 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110898 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1453" />
+            <path
+               d="m 36.308802,29.299367 q 0.05871,-0.08725 0.145146,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185103 -0.109268,-0.185918 -0.109268,-0.472133 0,-0.316387 0.139438,-0.499859 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1455" />
+          </g>
+          <g
+             aria-label="Architecture"
+             id="text212"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 38.261103,29.893 h -0.158194 l 0.389776,-1.265547 h 0.167163 L 39.05207,29.893 h -0.173687 l -0.08644,-0.278062 h -0.445224 z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480289 -0.03588,-0.127207 -0.0318,0.127207 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1458" />
+            <path
+               d="m 39.281205,29.893 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 29.893 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1460" />
+            <path
+               d="m 40.971591,29.866906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242183,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1462" />
+            <path
+               d="m 41.206435,29.893 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.199781 V 29.893 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 29.893 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1464" />
+            <path
+               d="m 42.463012,29.893 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 H 42.86828 V 29.893 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1466" />
+            <path
+               d="m 43.970741,29.856305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 29.184391 H 43.16102 V 29.058 h 0.227505 v -0.366944 h 0.151669 V 29.058 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1468" />
+            <path
+               d="m 44.968012,29.832658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1470" />
+            <path
+               d="m 45.978329,29.866906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07746,0.111713 0.242182,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1472" />
+            <path
+               d="m 46.974784,29.856305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 29.184391 H 46.165063 V 29.058 h 0.227505 v -0.366944 h 0.15167 V 29.058 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1474" />
+            <path
+               d="M 47.963901,28.982165 V 29.893 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152486,-0.190811 v -0.530844 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1476" />
+            <path
+               d="m 48.293334,29.893 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 29.893 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1478" />
+            <path
+               d="m 49.97475,29.832658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1480" />
+          </g>
+          <g
+             aria-label="32"
+             id="text214"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 55.228238,29.870168 v -0.159825 q 0.186733,0.09459 0.323725,0.09459 0.125577,0 0.20712,-0.07583 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07584 -0.305786,-0.07584 h -0.08399 v -0.126391 h 0.116606 q 0.159009,0 0.229952,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07583 v -0.144331 q 0.154932,-0.0579 0.28377,-0.0579 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.17124,0.135361 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.1321,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1483" />
+            <path
+               d="m 56.998536,29.893 h -0.765689 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1485" />
+          </g>
+          <g
+             aria-label="GB"
+             id="text216"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 59.003189,29.892184 q -0.133731,0.03914 -0.245445,0.03914 -0.158193,0 -0.282138,-0.07828 -0.12313,-0.07828 -0.193257,-0.23566 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260937,-0.07583 -0.09785,0 -0.179395,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 29.393141 H 58.71208 V 29.26675 h 0.291109 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1488" />
+            <path
+               d="m 59.257603,29.893 v -1.265547 h 0.247075 q 0.222612,0 0.297632,0.03425 0.07584,0.03343 0.113344,0.09948 0.03751,0.06605 0.03751,0.150855 0,0.06686 -0.02202,0.127207 -0.02202,0.05953 -0.06524,0.109267 -0.04322,0.04893 -0.125576,0.09296 0.150855,0.06034 0.203857,0.148409 0.05382,0.08807 0.05382,0.176132 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126392,0.121499 -0.08154,0.0424 -0.260937,0.0424 z m 0.164716,-0.695562 h 0.172872 q 0.08399,-0.03506 0.122314,-0.07339 0.03914,-0.03914 0.0579,-0.08643 0.01957,-0.04811 0.01957,-0.10519 0,-0.0897 -0.053,-0.133731 -0.05219,-0.04403 -0.204673,-0.04403 h -0.114976 z m 0,0.56917 h 0.155748 q 0.130468,0 0.192441,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116607 -0.03425,-0.05382 -0.106006,-0.0848 -0.07176,-0.0318 -0.225058,-0.0318 h -0.04566 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1490" />
+          </g>
+          <g
+             aria-label="On"
+             id="text218"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 62.624674,29.931325 q -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1493" />
+            <path
+               d="m 63.25174,29.893 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 29.893 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 29.893 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1495" />
+          </g>
+          <g
+             aria-label="OK"
+             id="text220"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 68.636675,29.931325 q -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1498" />
+            <path
+               d="m 69.265372,29.893 v -1.265547 h 0.164716 v 0.620542 l 0.470503,-0.620542 h 0.174502 L 69.620899,29.228424 70.138697,29.893 H 69.932393 L 69.430088,29.247995 V 29.893 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1500" />
+          </g>
+          <g
+             aria-label="7"
+             id="text222"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 2.264122,32.063999 v -0.113345 q 0,-0.132915 0.030171,-0.223427 0.030171,-0.09051 0.1060059,-0.201411 0.075835,-0.110899 0.121499,-0.171241 l 0.1320996,-0.174502 0.047295,-0.06116 q 0.053818,-0.07257 0.092959,-0.167978 H 2.1377304 v -0.152486 h 0.8031982 v 0.101114 q 0,0.06034 -0.024463,0.111713 -0.023647,0.05137 -0.1451464,0.219351 -0.029355,0.03996 -0.057895,0.07991 l -0.084805,0.119053 q -0.081543,0.114975 -0.1206836,0.183472 -0.039141,0.0685 -0.059526,0.1427 -0.01957,0.0742 -0.01957,0.194887 v 0.113345 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1503" />
+          </g>
+          <g
+             aria-label="c7n1"
+             id="text224"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 5.9028957,32.037905 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136992 0.3261719,-0.136992 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128023 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1506" />
+            <path
+               d="m 6.27147,32.063999 v -0.113345 q 0,-0.132915 0.030171,-0.223427 0.030171,-0.09051 0.1060058,-0.201411 0.075835,-0.110899 0.121499,-0.171241 l 0.1320996,-0.174502 0.047295,-0.06116 q 0.053818,-0.07257 0.092959,-0.167978 H 6.1450784 v -0.152486 h 0.8031982 v 0.101114 q 0,0.06034 -0.024463,0.111713 -0.023648,0.05137 -0.1451465,0.219351 -0.029356,0.03996 -0.057895,0.07991 l -0.084805,0.119053 q -0.081543,0.114975 -0.1206836,0.183472 -0.039141,0.0685 -0.059526,0.1427 -0.01957,0.0742 -0.01957,0.194887 v 0.113345 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1508" />
+            <path
+               d="m 7.1390871,32.063999 v -0.910835 h 0.15167 v 0.198965 q 0.065234,-0.10519 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 7.7465823 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720556,0.07584 -0.091328,0.07584 -0.1508545,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1510" />
+            <path
+               d="m 8.4772074,31.937608 v -0.976885 q -0.068496,0.05463 -0.1329151,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136992 q 0.1785791,-0.07583 0.3098633,-0.196519 h 0.1516699 v 1.139156 h 0.3041553 v 0.126391 H 8.1673441 v -0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1512" />
+          </g>
+          <g
+             aria-label="Intel"
+             id="text226"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 11.162254,32.063999 v -0.126391 h 0.278062 v -1.011949 h -0.278062 v -0.127207 h 0.72084 v 0.127207 h -0.278061 v 1.011949 h 0.278061 v 0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1515" />
+            <path
+               d="m 12.14974,32.063999 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1517" />
+            <path
+               d="m 13.912699,32.027305 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1519" />
+            <path
+               d="m 14.909969,32.003657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1521" />
+            <path
+               d="m 15.398411,32.063999 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1523" />
+          </g>
+          <g
+             aria-label="Corporation"
+             id="text228"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 17.921188,32.049321 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236475 -0.06931,-0.157378 -0.06931,-0.355527 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260938,-0.07584 -0.09785,0 -0.179394,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130468 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07584 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1526" />
+            <path
+               d="m 18.536837,32.089277 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1528" />
+            <path
+               d="m 19.240553,32.063999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1530" />
+            <path
+               d="m 20.304689,31.357837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1532" />
+            <path
+               d="m 21.54088,32.089277 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1534" />
+            <path
+               d="m 22.244596,32.063999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1536" />
+            <path
+               d="m 23.767004,31.859326 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1538" />
+            <path
+               d="m 24.931437,32.027305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 H 24.50089 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1540" />
+            <path
+               d="M 25.426403,32.063999 V 31.279556 H 25.17362 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1542" />
+            <path
+               d="m 26.547618,32.089277 q -0.195703,0 -0.313125,-0.136176 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207935 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1544" />
+            <path
+               d="m 27.173868,32.063999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1546" />
+          </g>
+          <g
+             aria-label="x86"
+             id="text230"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 34.288982,32.063999 h -0.175317 l 0.357973,-0.477026 -0.334326,-0.433809 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194887 l -0.277247,-0.362866 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1549" />
+            <path
+               d="m 35.443631,31.381485 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238106 -0.09948,0.100297 -0.298447,0.100297 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.08481 -0.118237,-0.110899 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1551" />
+            <path
+               d="m 36.308802,31.470366 q 0.05871,-0.08725 0.145146,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07584 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1553" />
+          </g>
+          <g
+             aria-label="Architecture"
+             id="text232"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 38.261103,32.063999 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08644,-0.278061 h -0.445224 z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1556" />
+            <path
+               d="m 39.281205,32.063999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1558" />
+            <path
+               d="m 40.971591,32.037905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1560" />
+            <path
+               d="m 41.206435,32.063999 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1562" />
+            <path
+               d="m 42.463012,32.063999 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1564" />
+            <path
+               d="m 43.970741,32.027305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 31.355391 H 43.16102 v -0.126392 h 0.227505 v -0.366943 h 0.151669 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1566" />
+            <path
+               d="m 44.968012,32.003657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1568" />
+            <path
+               d="m 45.978329,32.037905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07746,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1570" />
+            <path
+               d="m 46.974784,32.027305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1572" />
+            <path
+               d="m 47.963901,31.153164 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1574" />
+            <path
+               d="m 48.293334,32.063999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1576" />
+            <path
+               d="m 49.97475,32.003657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1578" />
+          </g>
+          <g
+             aria-label="32"
+             id="text234"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 55.228238,32.041167 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125577,0 0.20712,-0.07584 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07584 -0.305786,-0.07584 h -0.08399 v -0.126392 h 0.116606 q 0.159009,0 0.229952,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07584 v -0.144331 q 0.154932,-0.05789 0.28377,-0.05789 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08643 -0.04648,0.16227 -0.04648,0.07584 -0.17124,0.135362 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.1321,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1581" />
+            <path
+               d="m 56.998536,32.063999 h -0.765689 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1583" />
+          </g>
+          <g
+             aria-label="GB"
+             id="text236"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 59.003189,32.063184 q -0.133731,0.03914 -0.245445,0.03914 -0.158193,0 -0.282138,-0.07828 -0.12313,-0.07828 -0.193257,-0.235659 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260937,-0.07584 -0.09785,0 -0.179395,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 31.564141 H 58.71208 v -0.126392 h 0.291109 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1586" />
+            <path
+               d="m 59.257603,32.063999 v -1.265547 h 0.247075 q 0.222612,0 0.297632,0.03425 0.07584,0.03343 0.113344,0.09948 0.03751,0.06605 0.03751,0.150854 0,0.06687 -0.02202,0.127207 -0.02202,0.05953 -0.06524,0.109268 -0.04322,0.04893 -0.125576,0.09296 0.150855,0.06034 0.203857,0.148408 0.05382,0.08807 0.05382,0.176133 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126392,0.121499 -0.08154,0.0424 -0.260937,0.0424 z m 0.164716,-0.695561 h 0.172872 q 0.08399,-0.03506 0.122314,-0.07339 0.03914,-0.03914 0.0579,-0.08644 0.01957,-0.04811 0.01957,-0.10519 0,-0.0897 -0.053,-0.13373 -0.05219,-0.04403 -0.204673,-0.04403 h -0.114976 z m 0,0.56917 h 0.155748 q 0.130468,0 0.192441,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116606 -0.03425,-0.05382 -0.106006,-0.08481 -0.07176,-0.0318 -0.225058,-0.0318 h -0.04566 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1588" />
+          </g>
+          <g
+             aria-label="On"
+             id="text238"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 62.624674,32.102324 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 0.216089,0 0.329434,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409345 0,-0.273985 -0.07991,-0.408531 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.408531 0,0.273984 0.0791,0.409345 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1591" />
+            <path
+               d="m 63.25174,32.063999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1593" />
+          </g>
+          <g
+             aria-label="OK"
+             id="text240"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 68.636675,32.102324 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 0.216089,0 0.329434,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409345 0,-0.273985 -0.07991,-0.408531 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.408531 0,0.273984 0.0791,0.409345 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1596" />
+            <path
+               d="m 69.265372,32.063999 v -1.265547 h 0.164716 v 0.620542 l 0.470503,-0.620542 h 0.174502 l -0.454194,0.600972 0.517798,0.664575 h -0.206304 l -0.502305,-0.645005 v 0.645005 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1598" />
+          </g>
+          <g
+             aria-label="8"
+             id="text242"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 2.3782822,33.552486 2.3505576,33.5321 q -0.057896,-0.04077 -0.1133448,-0.119868 -0.055449,-0.07991 -0.055449,-0.175317 0,-0.126392 0.099482,-0.215274 0.099483,-0.0897 0.2527832,-0.0897 0.093774,0 0.168794,0.03425 0.075019,0.03343 0.115791,0.09948 0.040771,0.06605 0.040771,0.144332 0,0.05382 -0.018755,0.104375 -0.018755,0.04974 -0.056265,0.09948 -0.036694,0.04893 -0.1467773,0.138623 l 0.068496,0.05463 q 0.1198682,0.09785 0.1614551,0.168794 0.041587,0.07094 0.041587,0.159008 0,0.136993 -0.099482,0.238106 -0.099483,0.100298 -0.2984473,0.100298 -0.1997803,0 -0.2992627,-0.09378 -0.099482,-0.09459 -0.099482,-0.234028 0,-0.207934 0.2658301,-0.393037 z m 0.155747,-0.07747 q 0.1149756,-0.08725 0.1435157,-0.145962 0.029355,-0.05871 0.029355,-0.109267 0,-0.06116 -0.053818,-0.110899 -0.053818,-0.05056 -0.1386231,-0.05056 -0.091328,0 -0.1394385,0.05463 -0.047295,0.05463 -0.047295,0.113345 0,0.05708 0.039956,0.107637 0.039956,0.05056 0.1280224,0.113345 z m -0.041587,0.158194 q -0.2152734,0.165532 -0.2152734,0.309863 0,0.08562 0.070942,0.144331 0.070942,0.05871 0.1679785,0.05871 0.088882,0 0.1590088,-0.05626 0.070127,-0.05627 0.070127,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.084805,-0.08481 -0.1182373,-0.110898 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1601" />
+          </g>
+          <g
+             aria-label="c8n1"
+             id="text244"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 5.9028957,34.208907 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108453 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136993 0.3261719,-0.136993 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128022 -0.039956,0.08725 -0.039956,0.179395 0,0.12313 0.07665,0.234844 0.077466,0.111713 0.2421826,0.111713 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1604" />
+            <path
+               d="M 6.3856301,33.552486 6.3579055,33.5321 q -0.057895,-0.04077 -0.1133447,-0.119868 -0.055449,-0.07991 -0.055449,-0.175317 0,-0.126392 0.099482,-0.215274 0.099482,-0.0897 0.2527832,-0.0897 0.093774,0 0.1687939,0.03425 0.075019,0.03343 0.115791,0.09948 0.040771,0.06605 0.040771,0.144332 0,0.05382 -0.018755,0.104375 -0.018755,0.04974 -0.056265,0.09948 -0.036694,0.04893 -0.1467774,0.138623 l 0.068496,0.05463 q 0.1198682,0.09785 0.1614551,0.168794 0.041587,0.07094 0.041587,0.159008 0,0.136993 -0.099482,0.238106 -0.099482,0.100298 -0.2984473,0.100298 -0.1997802,0 -0.2992626,-0.09378 Q 6.1198,34.084962 6.1198,33.945523 q 0,-0.207934 0.2658301,-0.393037 z m 0.1557471,-0.07747 q 0.1149756,-0.08725 0.1435156,-0.145962 0.029356,-0.05871 0.029356,-0.109267 0,-0.06116 -0.053818,-0.110899 -0.053818,-0.05056 -0.138623,-0.05056 -0.091328,0 -0.1394385,0.05463 -0.047295,0.05463 -0.047295,0.113345 0,0.05708 0.039956,0.107637 0.039956,0.05056 0.1280225,0.113345 z m -0.041587,0.158194 q -0.2152735,0.165532 -0.2152735,0.309863 0,0.08562 0.070942,0.144331 0.070942,0.05871 0.1679785,0.05871 0.088882,0 0.1590088,-0.05626 0.070127,-0.05627 0.070127,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.084805,-0.08481 -0.1182373,-0.110898 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1606" />
+            <path
+               d="m 7.1390871,34.235001 v -0.910835 h 0.15167 v 0.198965 q 0.065234,-0.105191 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508829 H 7.7465823 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720556,0.07583 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1608" />
+            <path
+               d="m 8.4772074,34.108609 v -0.976885 q -0.068496,0.05463 -0.1329151,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136993 q 0.1785791,-0.07583 0.3098633,-0.196518 h 0.1516699 v 1.139155 h 0.3041553 v 0.126392 H 8.1673441 v -0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1610" />
+          </g>
+          <g
+             aria-label="Intel"
+             id="text246"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 11.162254,34.235001 v -0.126392 h 0.278062 v -1.011948 h -0.278062 v -0.127207 h 0.72084 v 0.127207 h -0.278061 v 1.011948 h 0.278061 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1613" />
+            <path
+               d="m 12.14974,34.235001 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1615" />
+            <path
+               d="m 13.912699,34.198306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1617" />
+            <path
+               d="m 14.909969,34.174659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1619" />
+            <path
+               d="m 15.398411,34.235001 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1621" />
+          </g>
+          <g
+             aria-label="Corporation"
+             id="text248"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 17.921188,34.220323 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236474 -0.06931,-0.157378 -0.06931,-0.355528 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260938,-0.07584 -0.09785,0 -0.179394,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130469 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07584 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1624" />
+            <path
+               d="m 18.536837,34.260279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1626" />
+            <path
+               d="m 19.240553,34.235001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1628" />
+            <path
+               d="m 20.304689,33.528839 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.180209 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1630" />
+            <path
+               d="m 21.54088,34.260279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1632" />
+            <path
+               d="m 22.244596,34.235001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1634" />
+            <path
+               d="m 23.767004,34.030328 q -0.06931,0.11416 -0.167164,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1636" />
+            <path
+               d="m 24.931437,34.198306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 H 24.50089 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1638" />
+            <path
+               d="M 25.426403,34.235001 V 33.450557 H 25.17362 v -0.126391 h 0.404453 v 0.784443 h 0.253598 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1640" />
+            <path
+               d="m 26.547618,34.260279 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207934 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1642" />
+            <path
+               d="m 27.173868,34.235001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1644" />
+          </g>
+          <g
+             aria-label="x86"
+             id="text250"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 34.288982,34.235001 h -0.175317 l 0.357973,-0.477027 -0.334326,-0.433808 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194887 l -0.277247,-0.362867 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1647" />
+            <path
+               d="m 35.443631,33.552486 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144332 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159008 0,0.136993 -0.09948,0.238106 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158194 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.08481 -0.118237,-0.110898 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1649" />
+            <path
+               d="m 36.308802,33.641368 q 0.05871,-0.08725 0.145146,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185103 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316386 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1651" />
+          </g>
+          <g
+             aria-label="Architecture"
+             id="text252"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 38.261103,34.235001 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08644,-0.278062 h -0.445224 z m 0.12476,-0.404454 h 0.36939 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1654" />
+            <path
+               d="m 39.281205,34.235001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1656" />
+            <path
+               d="m 40.971591,34.208907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242183,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1658" />
+            <path
+               d="m 41.206435,34.235001 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1660" />
+            <path
+               d="m 42.463012,34.235001 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253598 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1662" />
+            <path
+               d="m 43.970741,34.198306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 33.526392 H 43.16102 v -0.126391 h 0.227505 v -0.366944 h 0.151669 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1664" />
+            <path
+               d="m 44.968012,34.174659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1666" />
+            <path
+               d="m 45.978329,34.208907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07746,0.111713 0.242182,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1668" />
+            <path
+               d="m 46.974784,34.198306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1670" />
+            <path
+               d="m 47.963901,33.324166 v 0.910835 h -0.15167 V 34.03522 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530844 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1672" />
+            <path
+               d="m 48.293334,34.235001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1674" />
+            <path
+               d="m 49.97475,34.174659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1676" />
+          </g>
+          <g
+             aria-label="32"
+             id="text254"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 55.228238,34.212169 v -0.159825 q 0.186733,0.09459 0.323725,0.09459 0.125577,0 0.20712,-0.07584 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126391 h 0.116606 q 0.159009,0 0.229952,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07584 V 32.98984 q 0.154932,-0.0579 0.28377,-0.0579 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.17124,0.135361 0.110083,0.03262 0.166348,0.07991 0.05626,0.0473 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.1321,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1679" />
+            <path
+               d="m 56.998536,34.235001 h -0.765689 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1681" />
+          </g>
+          <g
+             aria-label="GB"
+             id="text256"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 59.003189,34.234185 q -0.133731,0.03914 -0.245445,0.03914 -0.158193,0 -0.282138,-0.07828 -0.12313,-0.07828 -0.193257,-0.23566 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260937,-0.07584 -0.09785,0 -0.179395,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 33.735142 H 58.71208 v -0.126391 h 0.291109 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1684" />
+            <path
+               d="m 59.257603,34.235001 v -1.265547 h 0.247075 q 0.222612,0 0.297632,0.03425 0.07584,0.03343 0.113344,0.09948 0.03751,0.06605 0.03751,0.150855 0,0.06686 -0.02202,0.127207 -0.02202,0.05953 -0.06524,0.109267 -0.04322,0.04893 -0.125576,0.09296 0.150855,0.06034 0.203857,0.148409 0.05382,0.08807 0.05382,0.176132 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126392,0.121499 -0.08154,0.0424 -0.260937,0.0424 z m 0.164716,-0.695562 h 0.172872 q 0.08399,-0.03506 0.122314,-0.07339 0.03914,-0.03914 0.0579,-0.08644 0.01957,-0.04811 0.01957,-0.105191 0,-0.0897 -0.053,-0.13373 -0.05219,-0.04403 -0.204673,-0.04403 h -0.114976 z m 0,0.56917 h 0.155748 q 0.130468,0 0.192441,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116607 -0.03425,-0.05382 -0.106006,-0.08481 -0.07176,-0.0318 -0.225058,-0.0318 h -0.04566 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1686" />
+          </g>
+          <g
+             aria-label="On"
+             id="text258"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 62.624674,34.273326 q -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1689" />
+            <path
+               d="m 63.25174,34.235001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1691" />
+          </g>
+          <g
+             aria-label="OK"
+             id="text260"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 68.636675,34.273326 q -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1694" />
+            <path
+               d="m 69.265372,34.235001 v -1.265547 h 0.164716 v 0.620542 l 0.470503,-0.620542 h 0.174502 l -0.454194,0.600971 0.517798,0.664576 h -0.206304 l -0.502305,-0.645005 v 0.645005 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1696" />
+          </g>
+          <g
+             aria-label="9"
+             id="text262"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 2.7672421,35.734084 q -0.058711,0.08725 -0.1459619,0.1427 -0.086436,0.05463 -0.1908105,0.05463 -0.098667,0 -0.1875489,-0.04729 -0.088066,-0.04811 -0.1345459,-0.134546 -0.046479,-0.08644 -0.046479,-0.200595 0,-0.179395 0.1149755,-0.31231 0.1157911,-0.13373 0.3041553,-0.13373 0.2217969,0 0.3310644,0.185918 0.1100831,0.185102 0.1100831,0.471318 0,0.316387 -0.1394385,0.500674 -0.1394385,0.183471 -0.377544,0.183471 -0.1280224,0 -0.248706,-0.03833 v -0.152485 q 0.1353613,0.0636 0.2552295,0.0636 0.1696094,0 0.2625683,-0.155747 0.092959,-0.155747 0.092959,-0.394668 z M 2.4696103,35.229333 q -0.061157,0 -0.1231299,0.0367 -0.061973,0.03588 -0.097852,0.110898 -0.035063,0.07502 -0.035063,0.164717 0,0.114975 0.059526,0.189179 0.060342,0.0742 0.1712403,0.0742 0.1149756,0 0.1883642,-0.08562 0.074204,-0.08644 0.074204,-0.20875 0,-0.123945 -0.072573,-0.202226 -0.071758,-0.0791 -0.1647168,-0.0791 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1699" />
+          </g>
+          <g
+             aria-label="c9n1"
+             id="text264"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 5.9028957,36.379904 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136992 0.3261719,-0.136992 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128023 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1702" />
+            <path
+               d="m 6.7745901,35.734084 q -0.058711,0.08725 -0.145962,0.1427 -0.086436,0.05463 -0.1908105,0.05463 -0.098667,0 -0.1875488,-0.04729 -0.088066,-0.04811 -0.1345459,-0.134546 -0.046479,-0.08644 -0.046479,-0.200595 0,-0.179395 0.1149756,-0.31231 0.115791,-0.13373 0.3041552,-0.13373 0.2217969,0 0.3310645,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.1394385,0.500674 -0.1394385,0.183471 -0.3775439,0.183471 -0.1280225,0 -0.2487061,-0.03833 v -0.152485 q 0.1353614,0.0636 0.2552295,0.0636 0.1696094,0 0.2625684,-0.155747 0.092959,-0.155747 0.092959,-0.394668 z M 6.4769582,35.229333 q -0.061157,0 -0.1231299,0.0367 -0.061973,0.03588 -0.097851,0.110898 -0.035063,0.07502 -0.035063,0.164717 0,0.114975 0.059526,0.189179 0.060342,0.0742 0.1712402,0.0742 0.1149756,0 0.1883643,-0.08562 0.074204,-0.08644 0.074204,-0.20875 0,-0.123945 -0.072573,-0.202226 -0.071758,-0.0791 -0.1647168,-0.0791 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1704" />
+            <path
+               d="m 7.1390871,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.065234,-0.10519 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 7.7465823 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720556,0.07583 -0.091328,0.07583 -0.1508545,0.189996 v 0.530844 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1706" />
+            <path
+               d="m 8.4772074,36.279607 v -0.976885 q -0.068496,0.05463 -0.1329151,0.09296 -0.064419,0.03832 -0.1769482,0.07828 V 35.33697 q 0.1785791,-0.07583 0.3098633,-0.196519 h 0.1516699 v 1.139156 h 0.3041553 v 0.126391 H 8.1673441 v -0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1708" />
+          </g>
+          <g
+             aria-label="Intel"
+             id="text266"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 11.162254,36.405998 v -0.126391 h 0.278062 v -1.011949 h -0.278062 v -0.127207 h 0.72084 v 0.127207 h -0.278061 v 1.011949 h 0.278061 v 0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1711" />
+            <path
+               d="m 12.14974,36.405998 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1713" />
+            <path
+               d="m 13.912699,36.369304 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 35.69739 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1715" />
+            <path
+               d="m 14.909969,36.345656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1717" />
+            <path
+               d="m 15.398411,36.405998 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1719" />
+          </g>
+          <g
+             aria-label="Corporation"
+             id="text268"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 17.921188,36.39132 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236475 -0.06931,-0.157378 -0.06931,-0.355527 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260938,-0.07584 -0.09785,0 -0.179394,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130469 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1722" />
+            <path
+               d="m 18.536837,36.431277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1724" />
+            <path
+               d="m 19.240553,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1726" />
+            <path
+               d="m 20.304689,35.699836 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1728" />
+            <path
+               d="m 21.54088,36.431277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1730" />
+            <path
+               d="m 22.244596,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1732" />
+            <path
+               d="m 23.767004,36.201325 q -0.06931,0.114161 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1734" />
+            <path
+               d="m 24.931437,36.369304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 35.69739 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 V 35.69739 H 24.50089 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1736" />
+            <path
+               d="M 25.426403,36.405998 V 35.621555 H 25.17362 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1738" />
+            <path
+               d="m 26.547618,36.431277 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207935 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1740" />
+            <path
+               d="m 27.173868,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1742" />
+          </g>
+          <g
+             aria-label="x86"
+             id="text270"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 34.288982,36.405998 h -0.175317 l 0.357973,-0.477026 -0.334326,-0.433809 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194887 l -0.277247,-0.362866 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1745" />
+            <path
+               d="m 35.443631,35.723484 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238106 -0.09948,0.100297 -0.298447,0.100297 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1747" />
+            <path
+               d="m 36.308802,35.812365 q 0.05871,-0.08725 0.145146,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1749" />
+          </g>
+          <g
+             aria-label="Architecture"
+             id="text272"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 38.261103,36.405998 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08644,-0.278061 h -0.445224 z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1752" />
+            <path
+               d="m 39.281205,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1754" />
+            <path
+               d="m 40.971591,36.379904 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1756" />
+            <path
+               d="m 41.206435,36.405998 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189996 v 0.530844 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1758" />
+            <path
+               d="m 42.463012,36.405998 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1760" />
+            <path
+               d="m 43.970741,36.369304 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 35.69739 H 43.16102 v -0.126392 h 0.227505 v -0.366943 h 0.151669 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1762" />
+            <path
+               d="m 44.968012,36.345656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1764" />
+            <path
+               d="m 45.978329,36.379904 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07746,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1766" />
+            <path
+               d="m 46.974784,36.369304 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 35.69739 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1768" />
+            <path
+               d="m 47.963901,35.495163 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1770" />
+            <path
+               d="m 48.293334,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1772" />
+            <path
+               d="m 49.97475,36.345656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1774" />
+          </g>
+          <g
+             aria-label="32"
+             id="text274"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 55.228238,36.383166 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125577,0 0.20712,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07584 -0.305786,-0.07584 h -0.08399 v -0.126392 h 0.116606 q 0.159009,0 0.229952,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07584 v -0.144331 q 0.154932,-0.0579 0.28377,-0.0579 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.1321,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1777" />
+            <path
+               d="M 56.998536,36.405998 H 56.232847 V 36.26656 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1779" />
+          </g>
+          <g
+             aria-label="GB"
+             id="text276"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 59.003189,36.405183 q -0.133731,0.03914 -0.245445,0.03914 -0.158193,0 -0.282138,-0.07828 -0.12313,-0.07828 -0.193257,-0.235659 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260937,-0.07584 -0.09785,0 -0.179395,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 35.90614 H 58.71208 v -0.126392 h 0.291109 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1782" />
+            <path
+               d="m 59.257603,36.405998 v -1.265547 h 0.247075 q 0.222612,0 0.297632,0.03425 0.07584,0.03343 0.113344,0.09948 0.03751,0.06605 0.03751,0.150854 0,0.06687 -0.02202,0.127207 -0.02202,0.05953 -0.06524,0.109268 -0.04322,0.04893 -0.125576,0.09296 0.150855,0.06034 0.203857,0.148408 0.05382,0.08807 0.05382,0.176133 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126392,0.121499 -0.08154,0.0424 -0.260937,0.0424 z m 0.164716,-0.695561 h 0.172872 q 0.08399,-0.03506 0.122314,-0.07339 0.03914,-0.03914 0.0579,-0.08644 0.01957,-0.04811 0.01957,-0.105191 0,-0.0897 -0.053,-0.13373 -0.05219,-0.04403 -0.204673,-0.04403 h -0.114976 z m 0,0.56917 h 0.155748 q 0.130468,0 0.192441,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116606 -0.03425,-0.05382 -0.106006,-0.0848 -0.07176,-0.0318 -0.225058,-0.0318 h -0.04566 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1784" />
+          </g>
+          <g
+             aria-label="On"
+             id="text278"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 62.624674,36.444323 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 0.216089,0 0.329434,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134545 0.07991,-0.135362 0.07991,-0.409346 0,-0.273985 -0.07991,-0.40853 -0.0791,-0.135362 -0.19815,-0.135362 -0.119052,0 -0.198964,0.135362 -0.0791,0.134545 -0.0791,0.40853 0,0.273984 0.0791,0.409346 0.07991,0.134545 0.198964,0.134545 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1787" />
+            <path
+               d="m 63.25174,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189996 v 0.530844 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1789" />
+          </g>
+          <g
+             aria-label="OK"
+             id="text280"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 68.636675,36.444323 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 0.216089,0 0.329434,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134545 0.07991,-0.135362 0.07991,-0.409346 0,-0.273985 -0.07991,-0.40853 -0.0791,-0.135362 -0.19815,-0.135362 -0.119052,0 -0.198964,0.135362 -0.0791,0.134545 -0.0791,0.40853 0,0.273984 0.0791,0.409346 0.07991,0.134545 0.198964,0.134545 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1792" />
+            <path
+               d="m 69.265372,36.405998 v -1.265547 h 0.164716 v 0.620542 l 0.470503,-0.620542 h 0.174502 l -0.454194,0.600972 0.517798,0.664575 h -0.206304 l -0.502305,-0.645005 v 0.645005 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1794" />
+          </g>
+          <g
+             aria-label="10"
+             id="text282"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 1.465164,38.450608 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136993 q 0.178579,-0.07583 0.3098632,-0.196518 h 0.1516699 v 1.139155 H 1.9209892 V 38.577 H 1.1553008 v -0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1797" />
+            <path
+               d="m 2.5040215,37.273943 q 0.2160888,0 0.3294335,0.181841 0.1133448,0.181025 0.1133448,0.488442 0,0.308233 -0.1133448,0.490073 -0.1133447,0.181026 -0.3294335,0.181026 -0.2152735,0 -0.3294336,-0.181026 -0.1133448,-0.18184 -0.1133448,-0.490073 0,-0.307417 0.1133448,-0.488442 0.1141601,-0.181841 0.3294336,-0.181841 z M 2.2569463,38.214949 2.694832,37.529173 q -0.041587,-0.07583 -0.090513,-0.101929 -0.04811,-0.02691 -0.1002978,-0.02691 -0.1361768,0 -0.2071192,0.15167 -0.070942,0.150854 -0.070942,0.383252 0,0.053 0.00326,0.11416 0.00326,0.06116 0.027725,0.165532 z m 0.4925195,-0.534922 -0.434624,0.689854 q 0.035063,0.05953 0.080728,0.0897 0.045664,0.02936 0.1019287,0.02936 0.1549316,0 0.220166,-0.172871 0.065234,-0.173686 0.065234,-0.384883 0,-0.130468 -0.033433,-0.251152 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1799" />
+          </g>
+          <g
+             aria-label="c10n1"
+             id="text284"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 5.9028957,38.550906 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136993 0.3261719,-0.136993 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128022 -0.039956,0.08725 -0.039956,0.179395 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1802" />
+            <path
+               d="m 6.4745119,38.450608 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136993 q 0.1785791,-0.07583 0.3098632,-0.196518 h 0.15167 v 1.139155 H 6.9303371 V 38.577 H 6.1646487 v -0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1804" />
+            <path
+               d="m 7.5133694,37.273943 q 0.2160888,0 0.3294336,0.181841 0.1133447,0.181025 0.1133447,0.488442 0,0.308233 -0.1133447,0.490073 -0.1133448,0.181026 -0.3294336,0.181026 -0.2152735,0 -0.3294336,-0.181026 -0.1133447,-0.18184 -0.1133447,-0.490073 0,-0.307417 0.1133447,-0.488442 0.1141601,-0.181841 0.3294336,-0.181841 z m -0.2470752,0.941006 0.4378857,-0.685776 q -0.041587,-0.07583 -0.090513,-0.101929 -0.04811,-0.02691 -0.1002978,-0.02691 -0.1361768,0 -0.2071192,0.15167 -0.070942,0.150854 -0.070942,0.383252 0,0.053 0.00326,0.11416 0.00326,0.06116 0.027725,0.165532 z m 0.4925195,-0.534922 -0.434624,0.689854 q 0.035064,0.05953 0.080728,0.0897 0.045664,0.02936 0.1019287,0.02936 0.1549317,0 0.220166,-0.172871 0.065234,-0.173686 0.065234,-0.384883 0,-0.130468 -0.033433,-0.251152 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1806" />
+            <path
+               d="m 8.1404349,38.577 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.157378,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 V 38.577 H 8.74793 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 V 38.577 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1808" />
+            <path
+               d="m 9.4785549,38.450608 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136993 q 0.178579,-0.07583 0.3098632,-0.196518 h 0.1516699 v 1.139155 H 9.9343801 V 38.577 H 9.1686917 v -0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1810" />
+          </g>
+          <g
+             aria-label="Intel"
+             id="text286"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 11.162254,38.577 v -0.126392 h 0.278062 V 37.43866 h -0.278062 v -0.127207 h 0.72084 v 0.127207 h -0.278061 v 1.011948 h 0.278061 V 38.577 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1813" />
+            <path
+               d="m 12.14974,38.577 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 38.577 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 38.577 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1815" />
+            <path
+               d="m 13.912699,38.540305 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 37.868391 H 13.102977 V 37.742 h 0.227505 v -0.366944 h 0.15167 V 37.742 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1817" />
+            <path
+               d="m 14.909969,38.516658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1819" />
+            <path
+               d="m 15.398411,38.577 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 38.577 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1821" />
+          </g>
+          <g
+             aria-label="Corporation"
+             id="text288"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 17.921188,38.562322 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236474 -0.06931,-0.157378 -0.06931,-0.355528 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260938,-0.07584 -0.09785,0 -0.179394,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130469 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07584 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1824" />
+            <path
+               d="m 18.536837,38.602278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1826" />
+            <path
+               d="m 19.240553,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 38.577 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1828" />
+            <path
+               d="m 20.304689,37.870838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1830" />
+            <path
+               d="m 21.54088,38.602278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1832" />
+            <path
+               d="m 22.244596,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 38.577 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1834" />
+            <path
+               d="m 23.767004,38.372327 q -0.06931,0.11416 -0.167164,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1836" />
+            <path
+               d="m 24.931437,38.540305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 37.868391 H 24.121715 V 37.742 h 0.227505 v -0.366944 h 0.15167 V 37.742 h 0.405269 v 0.126391 H 24.50089 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1838" />
+            <path
+               d="M 25.426403,38.577 V 37.792556 H 25.17362 v -0.126391 h 0.404453 v 0.784443 h 0.253598 V 38.577 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1840" />
+            <path
+               d="m 26.547618,38.602278 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207934 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1842" />
+            <path
+               d="m 27.173868,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 38.577 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 38.577 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1844" />
+          </g>
+          <g
+             aria-label="x86"
+             id="text290"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 34.288982,38.577 h -0.175317 l 0.357973,-0.477027 -0.334326,-0.433808 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 L 34.65511,38.085296 35.031023,38.577 h -0.194887 l -0.277247,-0.362867 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1847" />
+            <path
+               d="m 35.443631,37.894485 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158194 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05627 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110898 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1849" />
+            <path
+               d="m 36.308802,37.983367 q 0.05871,-0.08725 0.145146,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185103 -0.109268,-0.185918 -0.109268,-0.472133 0,-0.316387 0.139438,-0.499859 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1851" />
+          </g>
+          <g
+             aria-label="Architecture"
+             id="text292"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 38.261103,38.577 h -0.158194 l 0.389776,-1.265547 h 0.167163 L 39.05207,38.577 h -0.173687 l -0.08644,-0.278062 h -0.445224 z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480289 -0.03588,-0.127207 -0.0318,0.127207 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1854" />
+            <path
+               d="m 39.281205,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 38.577 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1856" />
+            <path
+               d="m 40.971591,38.550906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1858" />
+            <path
+               d="m 41.206435,38.577 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.199781 V 38.577 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 38.577 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1860" />
+            <path
+               d="m 42.463012,38.577 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 H 42.86828 V 38.577 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1862" />
+            <path
+               d="m 43.970741,38.540305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 37.868391 H 43.16102 V 37.742 h 0.227505 v -0.366944 h 0.151669 V 37.742 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1864" />
+            <path
+               d="m 44.968012,38.516658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1866" />
+            <path
+               d="m 45.978329,38.550906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07746,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1868" />
+            <path
+               d="m 46.974784,38.540305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 37.868391 H 46.165063 V 37.742 h 0.227505 v -0.366944 h 0.15167 V 37.742 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1870" />
+            <path
+               d="M 47.963901,37.666165 V 38.577 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530844 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1872" />
+            <path
+               d="m 48.293334,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 38.577 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1874" />
+            <path
+               d="m 49.97475,38.516658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1876" />
+          </g>
+          <g
+             aria-label="32"
+             id="text294"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 55.228238,38.554168 v -0.159825 q 0.186733,0.09459 0.323725,0.09459 0.125577,0 0.20712,-0.07584 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126391 h 0.116606 q 0.159009,0 0.229952,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07584 v -0.144331 q 0.154932,-0.0579 0.28377,-0.0579 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.17124,0.135361 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.1321,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1879" />
+            <path
+               d="m 56.998536,38.577 h -0.765689 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1881" />
+          </g>
+          <g
+             aria-label="GB"
+             id="text296"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 59.003189,38.576184 q -0.133731,0.03914 -0.245445,0.03914 -0.158193,0 -0.282138,-0.07828 -0.12313,-0.07828 -0.193257,-0.23566 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260937,-0.07584 -0.09785,0 -0.179395,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 38.077141 H 58.71208 V 37.95075 h 0.291109 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1884" />
+            <path
+               d="m 59.257603,38.577 v -1.265547 h 0.247075 q 0.222612,0 0.297632,0.03425 0.07584,0.03343 0.113344,0.09948 0.03751,0.06605 0.03751,0.150855 0,0.06686 -0.02202,0.127207 -0.02202,0.05953 -0.06524,0.109267 -0.04322,0.04893 -0.125576,0.09296 0.150855,0.06034 0.203857,0.148409 0.05382,0.08807 0.05382,0.176132 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126392,0.121499 -0.08154,0.0424 -0.260937,0.0424 z m 0.164716,-0.695562 h 0.172872 q 0.08399,-0.03506 0.122314,-0.07339 0.03914,-0.03914 0.0579,-0.08643 0.01957,-0.04811 0.01957,-0.10519 0,-0.0897 -0.053,-0.133731 -0.05219,-0.04403 -0.204673,-0.04403 h -0.114976 z m 0,0.56917 h 0.155748 q 0.130468,0 0.192441,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116607 -0.03425,-0.05382 -0.106006,-0.0848 -0.07176,-0.0318 -0.225058,-0.0318 h -0.04566 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1886" />
+          </g>
+          <g
+             aria-label="On"
+             id="text298"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 62.624674,38.615325 q -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1889" />
+            <path
+               d="m 63.25174,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 38.577 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 38.577 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1891" />
+          </g>
+          <g
+             aria-label="OK"
+             id="text300"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 68.636675,38.615325 q -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1894" />
+            <path
+               d="m 69.265372,38.577 v -1.265547 h 0.164716 v 0.620542 l 0.470503,-0.620542 h 0.174502 L 69.620899,37.912424 70.138697,38.577 H 69.932393 L 69.430088,37.931995 V 38.577 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1896" />
+          </g>
+          <g
+             aria-label="11"
+             id="text302"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 1.465164,40.62161 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136992 q 0.178579,-0.07583 0.3098632,-0.196519 h 0.1516699 v 1.139156 h 0.3041553 v 0.126391 H 1.1553008 V 40.62161 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1899" />
+            <path
+               d="m 2.4665117,40.62161 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769483,0.07828 v -0.136992 q 0.1785791,-0.07583 0.3098633,-0.196519 h 0.1516699 v 1.139156 h 0.3041553 v 0.126391 H 2.1566484 V 40.62161 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1901" />
+          </g>
+          <g
+             aria-label="c11n1"
+             id="text304"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 5.9028957,40.721907 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136992 0.3261719,-0.136992 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128023 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1904" />
+            <path
+               d="m 6.4745119,40.62161 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136992 q 0.1785791,-0.07583 0.3098632,-0.196519 h 0.15167 v 1.139156 h 0.3041552 v 0.126391 H 6.1646487 V 40.62161 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1906" />
+            <path
+               d="m 7.4758596,40.62161 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769483,0.07828 v -0.136992 q 0.1785791,-0.07583 0.3098633,-0.196519 h 0.1516699 v 1.139156 h 0.3041553 v 0.126391 H 7.1659963 V 40.62161 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1908" />
+            <path
+               d="m 8.1404349,40.748001 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111713 0.026909,0.06931 0.026909,0.272354 v 0.508828 H 8.74793 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1910" />
+            <path
+               d="m 9.4785549,40.62161 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136992 q 0.178579,-0.07583 0.3098632,-0.196519 h 0.1516699 v 1.139156 h 0.3041553 v 0.126391 H 9.1686917 V 40.62161 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1912" />
+          </g>
+          <g
+             aria-label="Intel"
+             id="text306"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 11.162254,40.748001 V 40.62161 h 0.278062 v -1.011949 h -0.278062 v -0.127207 h 0.72084 v 0.127207 h -0.278061 v 1.011949 h 0.278061 v 0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1915" />
+            <path
+               d="m 12.14974,40.748001 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1917" />
+            <path
+               d="m 13.912699,40.711307 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1919" />
+            <path
+               d="m 14.909969,40.687659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 14.304105,40.20411 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1921" />
+            <path
+               d="m 15.398411,40.748001 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1923" />
+          </g>
+          <g
+             aria-label="Corporation"
+             id="text308"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 17.921188,40.733323 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236475 -0.06931,-0.157378 -0.06931,-0.355527 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260938,-0.07583 -0.09785,0 -0.179394,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130468 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1926" />
+            <path
+               d="m 18.536837,40.773279 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1928" />
+            <path
+               d="m 19.240553,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 H 19.777921 V 39.95785 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1930" />
+            <path
+               d="m 20.304689,40.041839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1932" />
+            <path
+               d="m 21.54088,40.773279 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1934" />
+            <path
+               d="m 22.244596,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 H 22.781964 V 39.95785 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1936" />
+            <path
+               d="m 23.767004,40.543328 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1938" />
+            <path
+               d="m 24.931437,40.711307 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 H 24.50089 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1940" />
+            <path
+               d="M 25.426403,40.748001 V 39.963558 H 25.17362 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1942" />
+            <path
+               d="m 26.547618,40.773279 q -0.195703,0 -0.313125,-0.136176 -0.117421,-0.136993 -0.117421,-0.344927 0,-0.207935 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1944" />
+            <path
+               d="m 27.173868,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1946" />
+          </g>
+          <g
+             aria-label="x86"
+             id="text310"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 34.288982,40.748001 h -0.175317 l 0.357973,-0.477026 -0.334326,-0.433809 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194887 l -0.277247,-0.362866 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1949" />
+            <path
+               d="m 35.443631,40.065486 -0.02773,-0.02038 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393038 z m 0.155747,-0.07746 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1951" />
+            <path
+               d="m 36.308802,40.154368 q 0.05871,-0.08725 0.145146,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184288 0.377544,-0.184288 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.0367 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08643 -0.07339,0.08562 -0.07339,0.20875 0,0.123946 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1953" />
+          </g>
+          <g
+             aria-label="Architecture"
+             id="text312"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 38.261103,40.748001 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08644,-0.278061 h -0.445224 z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1956" />
+            <path
+               d="m 39.281205,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 H 39.818573 V 39.95785 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1958" />
+            <path
+               d="m 40.971591,40.721907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1960" />
+            <path
+               d="m 41.206435,40.748001 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1962" />
+            <path
+               d="m 42.463012,40.748001 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1964" />
+            <path
+               d="m 43.970741,40.711307 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 40.039393 H 43.16102 v -0.126392 h 0.227505 v -0.366943 h 0.151669 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1966" />
+            <path
+               d="m 44.968012,40.687659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 44.362148,40.20411 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1968" />
+            <path
+               d="m 45.978329,40.721907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07746,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1970" />
+            <path
+               d="m 46.974784,40.711307 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1972" />
+            <path
+               d="m 47.963901,39.837166 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152486,-0.19081 v -0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1974" />
+            <path
+               d="m 48.293334,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 H 48.830702 V 39.95785 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1976" />
+            <path
+               d="m 49.97475,40.687659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 49.368886,40.20411 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1978" />
+          </g>
+          <g
+             aria-label="32"
+             id="text314"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 55.228238,40.725169 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125577,0 0.20712,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126392 h 0.116606 q 0.159009,0 0.229952,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07583 V 39.50284 q 0.154932,-0.0579 0.28377,-0.0579 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.1321,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1981" />
+            <path
+               d="m 56.998536,40.748001 h -0.765689 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1983" />
+          </g>
+          <g
+             aria-label="GB"
+             id="text316"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 59.003189,40.747186 q -0.133731,0.03914 -0.245445,0.03914 -0.158193,0 -0.282138,-0.07828 -0.12313,-0.07828 -0.193257,-0.235659 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260937,-0.07583 -0.09785,0 -0.179395,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 40.248143 H 58.71208 v -0.126392 h 0.291109 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1986" />
+            <path
+               d="m 59.257603,40.748001 v -1.265547 h 0.247075 q 0.222612,0 0.297632,0.03425 0.07584,0.03343 0.113344,0.09948 0.03751,0.06605 0.03751,0.150854 0,0.06686 -0.02202,0.127207 -0.02202,0.05953 -0.06524,0.109268 -0.04322,0.04893 -0.125576,0.09296 0.150855,0.06034 0.203857,0.148408 0.05382,0.08807 0.05382,0.176133 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126392,0.121499 -0.08154,0.0424 -0.260937,0.0424 z m 0.164716,-0.695561 h 0.172872 q 0.08399,-0.03506 0.122314,-0.07339 0.03914,-0.03914 0.0579,-0.08644 0.01957,-0.04811 0.01957,-0.10519 0,-0.0897 -0.053,-0.133731 -0.05219,-0.04403 -0.204673,-0.04403 h -0.114976 z m 0,0.56917 h 0.155748 q 0.130468,0 0.192441,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116606 -0.03425,-0.05382 -0.106006,-0.0848 -0.07176,-0.0318 -0.225058,-0.0318 h -0.04566 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1988" />
+          </g>
+          <g
+             aria-label="Off"
+             id="text318"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 62.624674,40.786326 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409345 0,-0.273985 -0.07991,-0.408531 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.408531 0,0.273984 0.0791,0.409345 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1991" />
+            <path
+               d="m 63.463752,40.748001 v -0.708608 h -0.202227 v -0.126392 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118238,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361236 v 0.126392 h -0.361236 v 0.708608 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1993" />
+            <path
+               d="m 64.465099,40.748001 v -0.708608 h -0.202226 v -0.126392 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126392 h -0.361235 v 0.708608 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1995" />
+          </g>
+          <g
+             aria-label="OK"
+             id="text320"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 68.636675,40.786326 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409345 0,-0.273985 -0.07991,-0.408531 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.408531 0,0.273984 0.0791,0.409345 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path1998" />
+            <path
+               d="m 69.265372,40.748001 v -1.265547 h 0.164716 v 0.620542 l 0.470503,-0.620542 h 0.174502 l -0.454194,0.600972 0.517798,0.664575 h -0.206304 l -0.502305,-0.645005 v 0.645005 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2000" />
+          </g>
+          <g
+             aria-label="12"
+             id="text322"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 1.465164,42.792607 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 V 41.84997 q 0.178579,-0.07583 0.3098632,-0.196518 h 0.1516699 v 1.139155 h 0.3041553 v 0.126392 H 1.1553008 v -0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2003" />
+            <path
+               d="M 2.8905351,42.918999 H 2.1248467 V 42.77956 q 0,-0.05382 0.022017,-0.114975 0.022017,-0.06197 0.083989,-0.138623 0.061973,-0.07665 0.1312842,-0.147593 l 0.086435,-0.08807 q 0.026094,-0.02691 0.1141602,-0.12476 0.088066,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.065234,-0.125577 -0.065234,-0.04485 -0.1467774,-0.04485 -0.046479,0 -0.104375,0.0106 -0.05708,0.0106 -0.1002978,0.02528 -0.043218,0.01386 -0.1402539,0.0579 v -0.134546 q 0.1027441,-0.04893 0.2054883,-0.06686 0.1035595,-0.01876 0.1704248,-0.01876 0.098667,0 0.1810253,0.03262 0.083174,0.0318 0.1231299,0.09948 0.040771,0.06768 0.040771,0.144331 0,0.08562 -0.052188,0.175317 -0.051372,0.0897 -0.1948877,0.230767 l -0.092959,0.09214 -0.078281,0.07665 q -0.074204,0.07502 -0.1198682,0.145146 -0.045664,0.07013 -0.050557,0.167163 h 0.6083105 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2005" />
+          </g>
+          <g
+             aria-label="c12n1"
+             id="text324"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 5.9028957,42.892905 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136993 0.3261719,-0.136993 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128022 -0.039956,0.08725 -0.039956,0.179395 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2008" />
+            <path
+               d="m 6.4745119,42.792607 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 V 41.84997 q 0.1785791,-0.07583 0.3098632,-0.196518 h 0.15167 v 1.139155 h 0.3041552 v 0.126392 H 6.1646487 v -0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2010" />
+            <path
+               d="M 7.899883,42.918999 H 7.1341946 V 42.77956 q 0,-0.05382 0.022017,-0.114975 0.022017,-0.06197 0.083989,-0.138623 0.061973,-0.07665 0.1312842,-0.147593 l 0.086436,-0.08807 q 0.026094,-0.02691 0.1141602,-0.12476 0.088066,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.065234,-0.125577 -0.065234,-0.04485 -0.1467774,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.1002978,0.02528 -0.043218,0.01386 -0.1402539,0.0579 v -0.134546 q 0.1027441,-0.04893 0.2054883,-0.06686 0.1035595,-0.01876 0.1704248,-0.01876 0.098667,0 0.1810254,0.03262 0.083174,0.0318 0.1231298,0.09948 0.040771,0.06768 0.040771,0.144331 0,0.08562 -0.052188,0.175317 -0.051372,0.0897 -0.1948877,0.230767 l -0.092959,0.09214 -0.078281,0.07665 q -0.074204,0.07502 -0.1198682,0.145146 -0.045664,0.07013 -0.050557,0.167163 H 7.899883 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2012" />
+            <path
+               d="m 8.1404349,42.918999 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.157378,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 v 0.508828 H 8.74793 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07584 -0.1508545,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2014" />
+            <path
+               d="m 9.4785549,42.792607 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 V 41.84997 q 0.178579,-0.07583 0.3098632,-0.196518 h 0.1516699 v 1.139155 h 0.3041553 v 0.126392 H 9.1686917 v -0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2016" />
+          </g>
+          <g
+             aria-label="Intel"
+             id="text326"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 11.162254,42.918999 v -0.126392 h 0.278062 v -1.011948 h -0.278062 v -0.127207 h 0.72084 v 0.127207 h -0.278061 v 1.011948 h 0.278061 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2019" />
+            <path
+               d="m 12.14974,42.918999 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2021" />
+            <path
+               d="m 13.912699,42.882304 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 42.21039 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2023" />
+            <path
+               d="m 14.909969,42.858657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2025" />
+            <path
+               d="m 15.398411,42.918999 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2027" />
+          </g>
+          <g
+             aria-label="Corporation"
+             id="text328"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 17.921188,42.904321 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236474 -0.06931,-0.157378 -0.06931,-0.355528 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260938,-0.07583 -0.09785,0 -0.179394,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04974,0.128838 -0.04974,0.280508 0,0.154117 0.05137,0.284585 0.05137,0.130469 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2030" />
+            <path
+               d="m 18.536837,42.944277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2032" />
+            <path
+               d="m 19.240553,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2034" />
+            <path
+               d="m 20.304689,42.212837 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2036" />
+            <path
+               d="m 21.54088,42.944277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2038" />
+            <path
+               d="m 22.244596,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2040" />
+            <path
+               d="m 23.767004,42.714326 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2042" />
+            <path
+               d="m 24.931437,42.882304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 42.21039 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 V 42.21039 H 24.50089 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2044" />
+            <path
+               d="M 25.426403,42.918999 V 42.134555 H 25.17362 v -0.126391 h 0.404453 v 0.784443 h 0.253598 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2046" />
+            <path
+               d="m 26.547618,42.944277 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344926 0,-0.207935 0.117421,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2048" />
+            <path
+               d="m 27.173868,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2050" />
+          </g>
+          <g
+             aria-label="x86"
+             id="text330"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 34.288982,42.918999 h -0.175317 l 0.357973,-0.477027 -0.334326,-0.433808 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194887 l -0.277247,-0.362866 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2053" />
+            <path
+               d="m 35.443631,42.236484 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234029 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158194 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05627 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110898 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2055" />
+            <path
+               d="m 36.308802,42.325366 q 0.05871,-0.08725 0.145146,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185103 -0.109268,-0.185918 -0.109268,-0.472133 0,-0.316387 0.139438,-0.499859 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111713 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2057" />
+          </g>
+          <g
+             aria-label="Architecture"
+             id="text332"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 38.261103,42.918999 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08644,-0.278062 h -0.445224 z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2060" />
+            <path
+               d="m 39.281205,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2062" />
+            <path
+               d="m 40.971591,42.892905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2064" />
+            <path
+               d="m 41.206435,42.918999 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.199781 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2066" />
+            <path
+               d="m 42.463012,42.918999 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253598 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2068" />
+            <path
+               d="m 43.970741,42.882304 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 42.21039 H 43.16102 v -0.126391 h 0.227505 v -0.366944 h 0.151669 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2070" />
+            <path
+               d="m 44.968012,42.858657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2072" />
+            <path
+               d="m 45.978329,42.892905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07746,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2074" />
+            <path
+               d="m 46.974784,42.882304 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 42.21039 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2076" />
+            <path
+               d="m 47.963901,42.008164 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530844 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2078" />
+            <path
+               d="m 48.293334,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2080" />
+            <path
+               d="m 49.97475,42.858657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2082" />
+          </g>
+          <g
+             aria-label="32"
+             id="text334"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 55.228238,42.896167 v -0.159825 q 0.186733,0.09459 0.323725,0.09459 0.125577,0 0.20712,-0.07583 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126391 h 0.116606 q 0.159009,0 0.229952,-0.07094 0.07094,-0.07176 0.07094,-0.159008 0,-0.0791 -0.0579,-0.132916 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07583 v -0.144331 q 0.154932,-0.0579 0.28377,-0.0579 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07584 -0.17124,0.135361 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.1321,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2085" />
+            <path
+               d="M 56.998536,42.918999 H 56.232847 V 42.77956 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125577 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.103559,-0.01876 0.170425,-0.01876 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2087" />
+          </g>
+          <g
+             aria-label="GB"
+             id="text336"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 59.003189,42.918183 q -0.133731,0.03914 -0.245445,0.03914 -0.158193,0 -0.282138,-0.07828 -0.12313,-0.07828 -0.193257,-0.23566 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260937,-0.07583 -0.09785,0 -0.179395,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 42.41914 H 58.71208 v -0.126391 h 0.291109 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2090" />
+            <path
+               d="m 59.257603,42.918999 v -1.265547 h 0.247075 q 0.222612,0 0.297632,0.03425 0.07584,0.03343 0.113344,0.09948 0.03751,0.06605 0.03751,0.150855 0,0.06686 -0.02202,0.127207 -0.02202,0.05953 -0.06524,0.109267 -0.04322,0.04893 -0.125576,0.09296 0.150855,0.06034 0.203857,0.148409 0.05382,0.08807 0.05382,0.176132 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126392,0.121499 -0.08154,0.0424 -0.260937,0.0424 z m 0.164716,-0.695562 h 0.172872 q 0.08399,-0.03506 0.122314,-0.07339 0.03914,-0.03914 0.0579,-0.08644 0.01957,-0.04811 0.01957,-0.10519 0,-0.0897 -0.053,-0.133731 -0.05219,-0.04403 -0.204673,-0.04403 h -0.114976 z m 0,0.56917 h 0.155748 q 0.130468,0 0.192441,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116607 -0.03425,-0.05382 -0.106006,-0.0848 -0.07176,-0.0318 -0.225058,-0.0318 h -0.04566 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2092" />
+          </g>
+          <g
+             aria-label="On"
+             id="text338"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 62.624674,42.957324 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490074 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490074 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2095" />
+            <path
+               d="m 63.25174,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2097" />
+          </g>
+          <g
+             aria-label="OK"
+             id="text340"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 68.636675,42.957324 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490074 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490074 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2100" />
+            <path
+               d="m 69.265372,42.918999 v -1.265547 h 0.164716 v 0.620542 l 0.470503,-0.620542 h 0.174502 l -0.454194,0.600972 0.517798,0.664575 h -0.206304 l -0.502305,-0.645005 v 0.645005 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2102" />
+          </g>
+          <g
+             aria-label="29"
+             id="text342"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 1.8891875,45.09 H 1.123499 v -0.139438 q 0,-0.05382 0.022017,-0.114976 0.022017,-0.06197 0.083989,-0.138623 0.061973,-0.07665 0.1312841,-0.147593 l 0.086436,-0.08807 q 0.026094,-0.02691 0.1141601,-0.124761 0.088066,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.065234,-0.125576 -0.065234,-0.04485 -0.1467773,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.1002979,0.02528 -0.043218,0.01386 -0.1402539,0.0579 v -0.134546 q 0.1027442,-0.04893 0.2054883,-0.06687 0.1035596,-0.01875 0.1704248,-0.01875 0.098667,0 0.1810254,0.03262 0.083174,0.0318 0.1231299,0.09948 0.040771,0.06768 0.040771,0.144331 0,0.08562 -0.052187,0.175318 -0.051372,0.0897 -0.1948876,0.230766 l -0.092959,0.09214 -0.078281,0.07665 q -0.074204,0.07502 -0.1198681,0.145147 -0.045664,0.07013 -0.050557,0.167163 h 0.6083106 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2105" />
+            <path
+               d="m 2.7665898,44.418086 q -0.058711,0.08725 -0.1459619,0.1427 -0.086436,0.05463 -0.1908105,0.05463 -0.098667,0 -0.1875489,-0.04729 -0.088066,-0.04811 -0.1345459,-0.134546 -0.046479,-0.08644 -0.046479,-0.200595 0,-0.179395 0.1149756,-0.31231 0.115791,-0.13373 0.3041553,-0.13373 0.2217969,0 0.3310644,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.1394384,0.500674 -0.1394385,0.183471 -0.377544,0.183471 -0.1280224,0 -0.248706,-0.03832 v -0.152485 q 0.1353613,0.0636 0.2552295,0.0636 0.1696093,0 0.2625683,-0.155747 0.092959,-0.155747 0.092959,-0.394668 z M 2.468958,43.913335 q -0.061157,0 -0.1231299,0.03669 -0.061973,0.03588 -0.097852,0.110899 -0.035063,0.07502 -0.035063,0.164717 0,0.114975 0.059526,0.189179 0.060342,0.0742 0.1712403,0.0742 0.1149755,0 0.1883642,-0.08562 0.074204,-0.08644 0.074204,-0.20875 0,-0.123945 -0.072573,-0.202226 -0.071758,-0.0791 -0.1647168,-0.0791 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2107" />
+          </g>
+          <g
+             aria-label="c29n1"
+             id="text344"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 5.9028957,45.063906 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136992 0.3261719,-0.136992 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128023 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2110" />
+            <path
+               d="M 6.8985354,45.09 H 6.1328469 v -0.139438 q 0,-0.05382 0.022017,-0.114976 0.022017,-0.06197 0.083989,-0.138623 0.061973,-0.07665 0.1312841,-0.147593 l 0.086436,-0.08807 q 0.026094,-0.02691 0.1141601,-0.124761 0.088066,-0.09785 0.1157911,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.065234,-0.125576 -0.065234,-0.04485 -0.1467773,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.1002979,0.02528 -0.043218,0.01386 -0.1402539,0.0579 v -0.134546 q 0.1027442,-0.04893 0.2054883,-0.06687 0.1035596,-0.01875 0.1704248,-0.01875 0.098667,0 0.1810254,0.03262 0.083174,0.0318 0.1231299,0.09948 0.040771,0.06768 0.040771,0.144331 0,0.08562 -0.052188,0.175318 -0.051372,0.0897 -0.1948877,0.230766 l -0.092959,0.09214 -0.078281,0.07665 q -0.074204,0.07502 -0.1198681,0.145147 -0.045664,0.07013 -0.050557,0.167163 h 0.6083106 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2112" />
+            <path
+               d="m 7.7759377,44.418086 q -0.058711,0.08725 -0.1459619,0.1427 -0.086436,0.05463 -0.1908105,0.05463 -0.098667,0 -0.1875489,-0.04729 -0.088066,-0.04811 -0.1345459,-0.134546 -0.046479,-0.08644 -0.046479,-0.200595 0,-0.179395 0.1149755,-0.31231 0.1157911,-0.13373 0.3041553,-0.13373 0.2217969,0 0.3310645,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.1394385,0.500674 -0.1394385,0.183471 -0.377544,0.183471 -0.1280224,0 -0.248706,-0.03832 v -0.152485 q 0.1353613,0.0636 0.2552295,0.0636 0.1696094,0 0.2625683,-0.155747 0.092959,-0.155747 0.092959,-0.394668 z M 7.4783059,43.913335 q -0.061157,0 -0.1231299,0.03669 -0.061973,0.03588 -0.097851,0.110899 -0.035064,0.07502 -0.035064,0.164717 0,0.114975 0.059526,0.189179 0.060342,0.0742 0.1712403,0.0742 0.1149756,0 0.1883642,-0.08562 0.074204,-0.08644 0.074204,-0.20875 0,-0.123945 -0.072573,-0.202226 -0.071758,-0.0791 -0.1647168,-0.0791 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2114" />
+            <path
+               d="m 8.1404349,45.09 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 V 45.09 H 8.74793 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07583 -0.1508545,0.189995 V 45.09 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2116" />
+            <path
+               d="m 9.4785549,44.963609 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136992 q 0.178579,-0.07583 0.3098632,-0.196519 h 0.1516699 v 1.139156 H 9.9343801 V 45.09 H 9.1686917 v -0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2118" />
+          </g>
+          <g
+             aria-label="Intel"
+             id="text346"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 11.162254,45.09 v -0.126391 h 0.278062 V 43.95166 h -0.278062 v -0.127207 h 0.72084 v 0.127207 h -0.278061 v 1.011949 h 0.278061 V 45.09 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2121" />
+            <path
+               d="m 12.14974,45.09 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150855,0.189995 V 45.09 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2123" />
+            <path
+               d="m 13.912699,45.053306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 44.381392 H 13.102977 V 44.255 h 0.227505 v -0.366943 h 0.15167 V 44.255 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2125" />
+            <path
+               d="m 14.909969,45.029658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2127" />
+            <path
+               d="m 15.398411,45.09 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 45.09 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2129" />
+          </g>
+          <g
+             aria-label="Corporation"
+             id="text348"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 17.921188,45.075322 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236475 -0.06931,-0.157378 -0.06931,-0.355527 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260938,-0.07584 -0.09785,0 -0.179394,0.06687 -0.08073,0.06687 -0.130469,0.196519 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130468 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2132" />
+            <path
+               d="m 18.536837,45.115278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2134" />
+            <path
+               d="m 19.240553,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 45.09 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2136" />
+            <path
+               d="m 20.304689,44.383838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2138" />
+            <path
+               d="m 21.54088,45.115278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2140" />
+            <path
+               d="m 22.244596,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 45.09 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2142" />
+            <path
+               d="m 23.767004,44.885327 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2144" />
+            <path
+               d="m 24.931437,45.053306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 44.381392 H 24.121715 V 44.255 h 0.227505 v -0.366943 h 0.15167 V 44.255 h 0.405269 v 0.126392 H 24.50089 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2146" />
+            <path
+               d="M 25.426403,45.09 V 44.305557 H 25.17362 v -0.126392 h 0.404453 v 0.784444 h 0.253598 V 45.09 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2148" />
+            <path
+               d="m 26.547618,45.115278 q -0.195703,0 -0.313125,-0.136176 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207935 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2150" />
+            <path
+               d="m 27.173868,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 V 45.09 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2152" />
+          </g>
+          <g
+             aria-label="x86"
+             id="text350"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 34.288982,45.09 h -0.175317 l 0.357973,-0.477026 -0.334326,-0.433809 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 L 34.65511,44.598296 35.031023,45.09 h -0.194887 l -0.277247,-0.362866 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2155" />
+            <path
+               d="m 35.443631,44.407486 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138624 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2157" />
+            <path
+               d="m 36.308802,44.496367 q 0.05871,-0.08725 0.145146,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2159" />
+          </g>
+          <g
+             aria-label="Architecture"
+             id="text352"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 38.261103,45.09 h -0.158194 l 0.389776,-1.265547 h 0.167163 L 39.05207,45.09 h -0.173687 l -0.08644,-0.278061 h -0.445224 z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2162" />
+            <path
+               d="m 39.281205,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 45.09 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2164" />
+            <path
+               d="m 40.971591,45.063906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2166" />
+            <path
+               d="m 41.206435,45.09 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 V 45.09 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2168" />
+            <path
+               d="m 42.463012,45.09 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 H 42.86828 V 45.09 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2170" />
+            <path
+               d="m 43.970741,45.053306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 44.381392 H 43.16102 V 44.255 h 0.227505 v -0.366943 h 0.151669 V 44.255 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2172" />
+            <path
+               d="m 44.968012,45.029658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2174" />
+            <path
+               d="m 45.978329,45.063906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07746,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2176" />
+            <path
+               d="m 46.974784,45.053306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 44.381392 H 46.165063 V 44.255 h 0.227505 v -0.366943 h 0.15167 V 44.255 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2178" />
+            <path
+               d="M 47.963901,44.179165 V 45.09 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2180" />
+            <path
+               d="m 48.293334,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 45.09 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2182" />
+            <path
+               d="m 49.97475,45.029658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2184" />
+          </g>
+          <g
+             aria-label="32"
+             id="text354"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 55.228238,45.067168 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125577,0 0.20712,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126392 h 0.116606 q 0.159009,0 0.229952,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07584 v -0.144331 q 0.154932,-0.0579 0.28377,-0.0579 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.1321,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2187" />
+            <path
+               d="m 56.998536,45.09 h -0.765689 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2189" />
+          </g>
+          <g
+             aria-label="GB"
+             id="text356"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 59.003189,45.089185 q -0.133731,0.03914 -0.245445,0.03914 -0.158193,0 -0.282138,-0.07828 -0.12313,-0.07828 -0.193257,-0.235659 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260937,-0.07584 -0.09785,0 -0.179395,0.06687 -0.08073,0.06687 -0.130469,0.196519 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 44.590142 H 58.71208 V 44.46375 h 0.291109 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2192" />
+            <path
+               d="m 59.257603,45.09 v -1.265547 h 0.247075 q 0.222612,0 0.297632,0.03425 0.07584,0.03343 0.113344,0.09948 0.03751,0.06605 0.03751,0.150854 0,0.06686 -0.02202,0.127207 -0.02202,0.05953 -0.06524,0.109268 -0.04322,0.04893 -0.125576,0.09296 0.150855,0.06034 0.203857,0.148408 0.05382,0.08807 0.05382,0.176133 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126392,0.121499 -0.08154,0.0424 -0.260937,0.0424 z m 0.164716,-0.695561 h 0.172872 q 0.08399,-0.03506 0.122314,-0.07339 0.03914,-0.03914 0.0579,-0.08644 0.01957,-0.04811 0.01957,-0.10519 0,-0.0897 -0.053,-0.13373 -0.05219,-0.04403 -0.204673,-0.04403 h -0.114976 z m 0,0.56917 h 0.155748 q 0.130468,0 0.192441,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116606 -0.03425,-0.05382 -0.106006,-0.0848 -0.07176,-0.0318 -0.225058,-0.0318 h -0.04566 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2194" />
+          </g>
+          <g
+             aria-label="On"
+             id="text358"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 62.624674,45.128325 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 0.216089,0 0.329434,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409345 0,-0.273985 -0.07991,-0.408531 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.408531 0,0.273984 0.0791,0.409345 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2197" />
+            <path
+               d="m 63.25174,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 V 45.09 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2199" />
+          </g>
+          <g
+             aria-label="OK"
+             id="text360"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 68.636675,45.128325 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 0.216089,0 0.329434,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409345 0,-0.273985 -0.07991,-0.408531 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.408531 0,0.273984 0.0791,0.409345 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2202" />
+            <path
+               d="m 69.265372,45.09 v -1.265547 h 0.164716 v 0.620542 l 0.470503,-0.620542 h 0.174502 L 69.620899,44.425425 70.138697,45.09 H 69.932393 L 69.430088,44.444995 V 45.09 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2204" />
+          </g>
+          <g
+             aria-label="31"
+             id="text362"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 1.1202373,47.23817 v -0.159825 q 0.1867334,0.09459 0.3237256,0.09459 0.1255761,0 0.2071191,-0.07584 0.082358,-0.07665 0.082358,-0.196518 0,-0.120684 -0.090513,-0.196519 -0.089697,-0.07583 -0.3057861,-0.07583 h -0.083989 v -0.126391 h 0.1166065 q 0.1590087,0 0.2299511,-0.07094 0.070942,-0.07176 0.070942,-0.159009 0,-0.0791 -0.057895,-0.132915 -0.057896,-0.05463 -0.1777637,-0.05463 -0.1345459,0 -0.2894775,0.07584 V 46.01584 q 0.1549316,-0.05789 0.2837695,-0.05789 0.2307666,0 0.3180176,0.09133 0.088066,0.09051 0.088066,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.1712402,0.135361 0.110083,0.03262 0.1663476,0.07991 0.056265,0.04729 0.084805,0.111714 0.029356,0.06442 0.029356,0.144331 0,0.177764 -0.1320996,0.293555 -0.1312842,0.115791 -0.3400342,0.115791 -0.060342,0 -0.1320996,-0.009 -0.070942,-0.009 -0.1736865,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2207" />
+            <path
+               d="m 2.4665117,47.13461 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769483,0.07828 v -0.136992 q 0.1785791,-0.07583 0.3098633,-0.196518 h 0.1516699 v 1.139155 h 0.3041553 v 0.126392 H 2.1566484 V 47.13461 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2209" />
+          </g>
+          <g
+             aria-label="c31n1"
+             id="text364"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 5.9028957,47.234908 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108453 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136993 0.3261719,-0.136993 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128022 -0.039956,0.08725 -0.039956,0.179395 0,0.12313 0.07665,0.234844 0.077466,0.111713 0.2421826,0.111713 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2212" />
+            <path
+               d="m 6.1295852,47.23817 v -0.159825 q 0.1867334,0.09459 0.3237256,0.09459 0.1255761,0 0.2071191,-0.07584 0.082358,-0.07665 0.082358,-0.196518 0,-0.120684 -0.090513,-0.196519 -0.089697,-0.07583 -0.3057861,-0.07583 h -0.083989 v -0.126391 h 0.1166065 q 0.1590088,0 0.2299511,-0.07094 0.070942,-0.07176 0.070942,-0.159009 0,-0.0791 -0.057895,-0.132915 -0.057896,-0.05463 -0.1777637,-0.05463 -0.1345459,0 -0.2894775,0.07584 V 46.01584 q 0.1549316,-0.05789 0.2837695,-0.05789 0.2307666,0 0.3180176,0.09133 0.088066,0.09051 0.088066,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.1712402,0.135361 0.110083,0.03262 0.1663476,0.07991 0.056265,0.04729 0.084805,0.111714 0.029355,0.06442 0.029355,0.144331 0,0.177764 -0.1320996,0.293555 -0.1312842,0.115791 -0.3400342,0.115791 -0.060342,0 -0.1320996,-0.009 -0.070942,-0.009 -0.1736865,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2214" />
+            <path
+               d="m 7.4758596,47.13461 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769483,0.07828 v -0.136992 q 0.1785791,-0.07583 0.3098633,-0.196518 h 0.1516699 v 1.139155 h 0.3041553 v 0.126392 H 7.1659963 V 47.13461 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2216" />
+            <path
+               d="m 8.1404349,47.261002 v -0.910835 h 0.1516699 v 0.198964 q 0.065234,-0.10519 0.157378,-0.164716 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508829 H 8.74793 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2218" />
+            <path
+               d="m 9.4785549,47.13461 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136992 q 0.178579,-0.07583 0.3098632,-0.196518 h 0.1516699 v 1.139155 h 0.3041553 v 0.126392 H 9.1686917 V 47.13461 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2220" />
+          </g>
+          <g
+             aria-label="Intel"
+             id="text366"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 11.162254,47.261002 V 47.13461 h 0.278062 v -1.011948 h -0.278062 v -0.127207 h 0.72084 v 0.127207 h -0.278061 v 1.011948 h 0.278061 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2223" />
+            <path
+               d="m 12.14974,47.261002 v -0.910835 h 0.151669 v 0.198964 q 0.06524,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2225" />
+            <path
+               d="m 13.912699,47.224307 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2227" />
+            <path
+               d="m 14.909969,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2229" />
+            <path
+               d="m 15.398411,47.261002 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2231" />
+          </g>
+          <g
+             aria-label="Corporation"
+             id="text368"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 17.921188,47.246324 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236474 -0.06931,-0.157378 -0.06931,-0.355528 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.15004 q -0.131284,-0.07584 -0.260938,-0.07584 -0.09785,0 -0.179394,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130469 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07584 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2234" />
+            <path
+               d="m 18.536837,47.28628 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2236" />
+            <path
+               d="m 19.240553,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 H 19.777921 V 46.47085 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2238" />
+            <path
+               d="m 20.304689,46.554839 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2240" />
+            <path
+               d="m 21.54088,47.28628 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2242" />
+            <path
+               d="m 22.244596,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 H 22.781964 V 46.47085 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2244" />
+            <path
+               d="m 23.767004,47.056329 q -0.06931,0.11416 -0.167164,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2246" />
+            <path
+               d="m 24.931437,47.224307 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 H 24.50089 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2248" />
+            <path
+               d="M 25.426403,47.261002 V 46.476558 H 25.17362 v -0.126391 h 0.404453 v 0.784443 h 0.253598 v 0.126392 z m -0.02528,-1.239454 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2250" />
+            <path
+               d="m 26.547618,47.28628 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207934 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2252" />
+            <path
+               d="m 27.173868,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.06523,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2254" />
+          </g>
+          <g
+             aria-label="x86"
+             id="text370"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 34.288982,47.261002 h -0.175317 l 0.357973,-0.477027 -0.334326,-0.433808 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 l -0.316387,0.41913 0.375913,0.491705 h -0.194887 l -0.277247,-0.362867 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2257" />
+            <path
+               d="m 35.443631,46.578487 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159008 0,0.136993 -0.09948,0.238106 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215274,0.165533 -0.215274,0.309864 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.08481 -0.118237,-0.110898 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2259" />
+            <path
+               d="m 36.308802,46.667369 q 0.05871,-0.08725 0.145146,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185103 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316386 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07584 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2261" />
+          </g>
+          <g
+             aria-label="Architecture"
+             id="text372"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 38.261103,47.261002 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08644,-0.278062 h -0.445224 z m 0.12476,-0.404454 h 0.36939 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2264" />
+            <path
+               d="m 39.281205,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 H 39.818573 V 46.47085 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2266" />
+            <path
+               d="m 40.971591,47.234908 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242183,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2268" />
+            <path
+               d="m 41.206435,47.261002 v -1.316104 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2270" />
+            <path
+               d="m 42.463012,47.261002 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253598 v 0.126392 z m -0.02528,-1.239454 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2272" />
+            <path
+               d="m 43.970741,47.224307 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 46.552393 H 43.16102 v -0.126391 h 0.227505 v -0.366944 h 0.151669 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2274" />
+            <path
+               d="m 44.968012,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2276" />
+            <path
+               d="m 45.978329,47.234908 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07746,0.111713 0.242182,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2278" />
+            <path
+               d="m 46.974784,47.224307 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2280" />
+            <path
+               d="m 47.963901,46.350167 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530844 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2282" />
+            <path
+               d="m 48.293334,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 H 48.830702 V 46.47085 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2284" />
+            <path
+               d="m 49.97475,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2286" />
+          </g>
+          <g
+             aria-label="32"
+             id="text374"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 55.228238,47.23817 v -0.159825 q 0.186733,0.09459 0.323725,0.09459 0.125577,0 0.20712,-0.07584 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126391 h 0.116606 q 0.159009,0 0.229952,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07584 V 46.01584 q 0.154932,-0.05789 0.28377,-0.05789 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.17124,0.135361 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.1321,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2289" />
+            <path
+               d="m 56.998536,47.261002 h -0.765689 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138624 0.06197,-0.07665 0.131284,-0.147592 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2291" />
+          </g>
+          <g
+             aria-label="GB"
+             id="text376"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 59.003189,47.260186 q -0.133731,0.03914 -0.245445,0.03914 -0.158193,0 -0.282138,-0.07828 -0.12313,-0.07828 -0.193257,-0.23566 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.15004 q -0.131284,-0.07584 -0.260937,-0.07584 -0.09785,0 -0.179395,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 46.761143 H 58.71208 v -0.126391 h 0.291109 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2294" />
+            <path
+               d="m 59.257603,47.261002 v -1.265547 h 0.247075 q 0.222612,0 0.297632,0.03425 0.07584,0.03343 0.113344,0.09948 0.03751,0.06605 0.03751,0.150855 0,0.06686 -0.02202,0.127207 -0.02202,0.05953 -0.06524,0.109267 -0.04322,0.04893 -0.125576,0.09296 0.150855,0.06034 0.203857,0.148408 0.05382,0.08807 0.05382,0.176133 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126392,0.121499 -0.08154,0.0424 -0.260937,0.0424 z m 0.164716,-0.695562 h 0.172872 q 0.08399,-0.03506 0.122314,-0.07339 0.03914,-0.03914 0.0579,-0.08643 0.01957,-0.04811 0.01957,-0.105191 0,-0.0897 -0.053,-0.13373 -0.05219,-0.04403 -0.204673,-0.04403 h -0.114976 z m 0,0.56917 h 0.155748 q 0.130468,0 0.192441,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116607 -0.03425,-0.05382 -0.106006,-0.08481 -0.07176,-0.0318 -0.225058,-0.0318 h -0.04566 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2296" />
+          </g>
+          <g
+             aria-label="On"
+             id="text378"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 62.624674,47.299327 q -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2299" />
+            <path
+               d="m 63.25174,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.06523,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2301" />
+          </g>
+          <g
+             aria-label="OK"
+             id="text380"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 68.636675,47.299327 q -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2304" />
+            <path
+               d="m 69.265372,47.261002 v -1.265547 h 0.164716 v 0.620542 l 0.470503,-0.620542 h 0.174502 l -0.454194,0.600971 0.517798,0.664576 h -0.206304 l -0.502305,-0.645005 v 0.645005 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2306" />
+          </g>
+          <g
+             aria-label="35"
+             id="text382"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 1.1202373,49.409167 v -0.159824 q 0.1867334,0.09459 0.3237256,0.09459 0.1255761,0 0.2071191,-0.07583 0.082358,-0.07665 0.082358,-0.196519 0,-0.120683 -0.090513,-0.196518 -0.089697,-0.07584 -0.3057861,-0.07584 h -0.083989 v -0.126392 h 0.1166065 q 0.1590087,0 0.2299511,-0.07094 0.070942,-0.07176 0.070942,-0.159009 0,-0.0791 -0.057895,-0.132915 -0.057896,-0.05463 -0.1777637,-0.05463 -0.1345459,0 -0.2894775,0.07584 v -0.144331 q 0.1549316,-0.0579 0.2837695,-0.0579 0.2307666,0 0.3180176,0.09133 0.088066,0.09051 0.088066,0.207119 0,0.08643 -0.04648,0.16227 -0.04648,0.07583 -0.1712402,0.135362 0.110083,0.03262 0.1663476,0.07991 0.056265,0.04729 0.084805,0.111714 0.029356,0.06442 0.029356,0.144331 0,0.177763 -0.1320996,0.293554 -0.1312842,0.115791 -0.3400342,0.115791 -0.060342,0 -0.1320996,-0.009 -0.070942,-0.009 -0.1736865,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2309" />
+            <path
+               d="m 2.1566484,48.773947 v -0.607495 h 0.7086084 v 0.145962 H 2.3083183 v 0.309864 h 0.026094 q 0.2731689,0 0.4207617,0.11416 0.1475928,0.11416 0.1475928,0.307417 0,0.122314 -0.059526,0.21935 -0.059526,0.09704 -0.1679785,0.152486 -0.1084522,0.05463 -0.2307666,0.05463 -0.1223145,0 -0.313125,-0.05953 v -0.165532 q 0.069311,0.03751 0.1549316,0.06197 0.08562,0.02365 0.1581934,0.02365 0.072573,0 0.1418847,-0.03506 0.069312,-0.03506 0.1076368,-0.101928 0.038325,-0.06768 0.038325,-0.137808 0,-0.118237 -0.1051905,-0.19978 -0.104375,-0.08236 -0.3718359,-0.08236 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2311" />
+          </g>
+          <g
+             aria-label="c35n1"
+             id="text384"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 5.9028957,49.405905 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136992 0.3261719,-0.136992 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128023 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2314" />
+            <path
+               d="m 6.1295852,49.409167 v -0.159824 q 0.1867334,0.09459 0.3237256,0.09459 0.1255761,0 0.2071191,-0.07583 0.082358,-0.07665 0.082358,-0.196519 0,-0.120683 -0.090513,-0.196518 -0.089697,-0.07584 -0.3057861,-0.07584 h -0.083989 v -0.126392 h 0.1166065 q 0.1590088,0 0.2299511,-0.07094 0.070942,-0.07176 0.070942,-0.159009 0,-0.0791 -0.057895,-0.132915 -0.057896,-0.05463 -0.1777637,-0.05463 -0.1345459,0 -0.2894775,0.07584 v -0.144331 q 0.1549316,-0.0579 0.2837695,-0.0579 0.2307666,0 0.3180176,0.09133 0.088066,0.09051 0.088066,0.207119 0,0.08643 -0.04648,0.16227 -0.04648,0.07583 -0.1712402,0.135362 0.110083,0.03262 0.1663476,0.07991 0.056265,0.04729 0.084805,0.111714 0.029355,0.06442 0.029355,0.144331 0,0.177763 -0.1320996,0.293554 -0.1312842,0.115791 -0.3400342,0.115791 -0.060342,0 -0.1320996,-0.009 -0.070942,-0.009 -0.1736865,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2316" />
+            <path
+               d="m 7.1659963,48.773947 v -0.607495 h 0.7086084 v 0.145962 H 7.3176662 v 0.309864 H 7.34376 q 0.2731689,0 0.4207617,0.11416 0.1475928,0.11416 0.1475928,0.307417 0,0.122314 -0.059526,0.21935 -0.059526,0.09704 -0.1679785,0.152486 -0.1084521,0.05463 -0.2307666,0.05463 -0.1223144,0 -0.313125,-0.05953 v -0.165532 q 0.069312,0.03751 0.1549316,0.06197 0.08562,0.02365 0.1581934,0.02365 0.072573,0 0.1418848,-0.03506 0.069312,-0.03506 0.1076367,-0.101928 0.038325,-0.06768 0.038325,-0.137808 0,-0.118237 -0.1051905,-0.19978 -0.104375,-0.08236 -0.3718359,-0.08236 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2318" />
+            <path
+               d="m 8.1404349,49.431999 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 8.74793 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2320" />
+            <path
+               d="m 9.4785549,49.305608 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136992 q 0.178579,-0.07584 0.3098632,-0.196519 h 0.1516699 v 1.139156 h 0.3041553 v 0.126391 H 9.1686917 v -0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2322" />
+          </g>
+          <g
+             aria-label="Intel"
+             id="text386"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 11.162254,49.431999 v -0.126391 h 0.278062 v -1.011949 h -0.278062 v -0.127207 h 0.72084 v 0.127207 h -0.278061 v 1.011949 h 0.278061 v 0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2325" />
+            <path
+               d="m 12.14974,49.431999 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2327" />
+            <path
+               d="m 13.912699,49.395305 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2329" />
+            <path
+               d="m 14.909969,49.371657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2331" />
+            <path
+               d="m 15.398411,49.431999 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2333" />
+          </g>
+          <g
+             aria-label="Corporation"
+             id="text388"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 17.921188,49.417321 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236475 -0.06931,-0.157378 -0.06931,-0.355527 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260938,-0.07584 -0.09785,0 -0.179394,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130468 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2336" />
+            <path
+               d="m 18.536837,49.457278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2338" />
+            <path
+               d="m 19.240553,49.431999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2340" />
+            <path
+               d="m 20.304689,48.725837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2342" />
+            <path
+               d="m 21.54088,49.457278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2344" />
+            <path
+               d="m 22.244596,49.431999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2346" />
+            <path
+               d="m 23.767004,49.227326 q -0.06931,0.114161 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2348" />
+            <path
+               d="m 24.931437,49.395305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 H 24.50089 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2350" />
+            <path
+               d="M 25.426403,49.431999 V 48.647556 H 25.17362 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2352" />
+            <path
+               d="m 26.547618,49.457278 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207935 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2354" />
+            <path
+               d="m 27.173868,49.431999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2356" />
+          </g>
+          <g
+             aria-label="x86"
+             id="text390"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 34.288982,49.431999 h -0.175317 l 0.357973,-0.477026 -0.334326,-0.433809 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194887 l -0.277247,-0.362866 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2359" />
+            <path
+               d="m 35.443631,48.749485 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238106 -0.09948,0.100297 -0.298447,0.100297 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.08481 -0.118237,-0.110899 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2361" />
+            <path
+               d="m 36.308802,48.838366 q 0.05871,-0.08725 0.145146,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2363" />
+          </g>
+          <g
+             aria-label="Architecture"
+             id="text392"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 38.261103,49.431999 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08644,-0.278061 h -0.445224 z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2366" />
+            <path
+               d="m 39.281205,49.431999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2368" />
+            <path
+               d="m 40.971591,49.405905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2370" />
+            <path
+               d="m 41.206435,49.431999 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2372" />
+            <path
+               d="m 42.463012,49.431999 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2374" />
+            <path
+               d="m 43.970741,49.395305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 48.723391 H 43.16102 v -0.126392 h 0.227505 v -0.366943 h 0.151669 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2376" />
+            <path
+               d="m 44.968012,49.371657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2378" />
+            <path
+               d="m 45.978329,49.405905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07746,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2380" />
+            <path
+               d="m 46.974784,49.395305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2382" />
+            <path
+               d="m 47.963901,48.521164 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152486,-0.190811 v -0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2384" />
+            <path
+               d="m 48.293334,49.431999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2386" />
+            <path
+               d="m 49.97475,49.371657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2388" />
+          </g>
+          <g
+             aria-label="32"
+             id="text394"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 55.228238,49.409167 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125577,0 0.20712,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07584 -0.305786,-0.07584 h -0.08399 v -0.126392 h 0.116606 q 0.159009,0 0.229952,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07584 v -0.144331 q 0.154932,-0.0579 0.28377,-0.0579 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08643 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.1321,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2391" />
+            <path
+               d="m 56.998536,49.431999 h -0.765689 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2393" />
+          </g>
+          <g
+             aria-label="GB"
+             id="text396"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 59.003189,49.431184 q -0.133731,0.03914 -0.245445,0.03914 -0.158193,0 -0.282138,-0.07828 -0.12313,-0.07828 -0.193257,-0.235659 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260937,-0.07584 -0.09785,0 -0.179395,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 48.932141 H 58.71208 v -0.126392 h 0.291109 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2396" />
+            <path
+               d="m 59.257603,49.431999 v -1.265547 h 0.247075 q 0.222612,0 0.297632,0.03425 0.07584,0.03343 0.113344,0.09948 0.03751,0.06605 0.03751,0.150854 0,0.06687 -0.02202,0.127207 -0.02202,0.05953 -0.06524,0.109268 -0.04322,0.04893 -0.125576,0.09296 0.150855,0.06034 0.203857,0.148408 0.05382,0.08807 0.05382,0.176133 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126392,0.121499 -0.08154,0.0424 -0.260937,0.0424 z m 0.164716,-0.695561 h 0.172872 q 0.08399,-0.03506 0.122314,-0.07339 0.03914,-0.03914 0.0579,-0.08644 0.01957,-0.04811 0.01957,-0.10519 0,-0.0897 -0.053,-0.13373 -0.05219,-0.04403 -0.204673,-0.04403 h -0.114976 z m 0,0.56917 h 0.155748 q 0.130468,0 0.192441,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116606 -0.03425,-0.05382 -0.106006,-0.08481 -0.07176,-0.0318 -0.225058,-0.0318 h -0.04566 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2398" />
+          </g>
+          <g
+             aria-label="On"
+             id="text398"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 62.624674,49.470324 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 0.216089,0 0.329434,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409345 0,-0.273985 -0.07991,-0.40853 -0.0791,-0.135362 -0.19815,-0.135362 -0.119052,0 -0.198964,0.135362 -0.0791,0.134545 -0.0791,0.40853 0,0.273984 0.0791,0.409345 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2401" />
+            <path
+               d="m 63.25174,49.431999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2403" />
+          </g>
+          <g
+             aria-label="OK"
+             id="text400"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 68.636675,49.470324 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 0.216089,0 0.329434,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409345 0,-0.273985 -0.07991,-0.40853 -0.0791,-0.135362 -0.19815,-0.135362 -0.119052,0 -0.198964,0.135362 -0.0791,0.134545 -0.0791,0.40853 0,0.273984 0.0791,0.409345 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2406" />
+            <path
+               d="m 69.265372,49.431999 v -1.265547 h 0.164716 v 0.620542 l 0.470503,-0.620542 h 0.174502 l -0.454194,0.600972 0.517798,0.664575 h -0.206304 l -0.502305,-0.645005 v 0.645005 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2408" />
+          </g>
+          <g
+             aria-label="37"
+             id="text402"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 1.1202373,51.580169 v -0.159825 q 0.1867334,0.09459 0.3237256,0.09459 0.1255761,0 0.2071191,-0.07583 0.082358,-0.07665 0.082358,-0.196518 0,-0.120684 -0.090513,-0.196519 -0.089697,-0.07583 -0.3057861,-0.07583 h -0.083989 v -0.126391 h 0.1166065 q 0.1590087,0 0.2299511,-0.07094 0.070942,-0.07176 0.070942,-0.159009 0,-0.0791 -0.057895,-0.132915 -0.057896,-0.05463 -0.1777637,-0.05463 -0.1345459,0 -0.2894775,0.07583 V 50.35784 q 0.1549316,-0.0579 0.2837695,-0.0579 0.2307666,0 0.3180176,0.09133 0.088066,0.09051 0.088066,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.1712402,0.135361 0.110083,0.03262 0.1663476,0.07991 0.056265,0.04729 0.084805,0.111714 0.029356,0.06442 0.029356,0.144331 0,0.177764 -0.1320996,0.293555 -0.1312842,0.115791 -0.3400342,0.115791 -0.060342,0 -0.1320996,-0.009 -0.070942,-0.009 -0.1736865,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2411" />
+            <path
+               d="m 2.2634697,51.603001 v -0.113345 q 0,-0.132915 0.030171,-0.223428 0.030171,-0.09051 0.1060059,-0.201411 0.075835,-0.110898 0.121499,-0.17124 l 0.1320996,-0.174502 0.047295,-0.06116 q 0.053818,-0.07257 0.092959,-0.167979 H 2.1370781 v -0.152485 h 0.8031982 v 0.101113 q 0,0.06034 -0.024463,0.111714 -0.023647,0.05137 -0.1451464,0.219351 -0.029355,0.03996 -0.057896,0.07991 l -0.084805,0.119052 q -0.081543,0.114976 -0.1206836,0.183472 -0.039141,0.0685 -0.059526,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113345 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2413" />
+          </g>
+          <g
+             aria-label="c37n1"
+             id="text404"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 5.9028957,51.576907 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136993 0.3261719,-0.136993 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128022 -0.039956,0.08725 -0.039956,0.179395 0,0.12313 0.07665,0.234844 0.077466,0.111713 0.2421826,0.111713 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2416" />
+            <path
+               d="m 6.1295852,51.580169 v -0.159825 q 0.1867334,0.09459 0.3237256,0.09459 0.1255761,0 0.2071191,-0.07583 0.082358,-0.07665 0.082358,-0.196518 0,-0.120684 -0.090513,-0.196519 -0.089697,-0.07583 -0.3057861,-0.07583 h -0.083989 v -0.126391 h 0.1166065 q 0.1590088,0 0.2299511,-0.07094 0.070942,-0.07176 0.070942,-0.159009 0,-0.0791 -0.057895,-0.132915 -0.057896,-0.05463 -0.1777637,-0.05463 -0.1345459,0 -0.2894775,0.07583 V 50.35784 q 0.1549316,-0.0579 0.2837695,-0.0579 0.2307666,0 0.3180176,0.09133 0.088066,0.09051 0.088066,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.1712402,0.135361 0.110083,0.03262 0.1663476,0.07991 0.056265,0.04729 0.084805,0.111714 0.029355,0.06442 0.029355,0.144331 0,0.177764 -0.1320996,0.293555 -0.1312842,0.115791 -0.3400342,0.115791 -0.060342,0 -0.1320996,-0.009 -0.070942,-0.009 -0.1736865,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2418" />
+            <path
+               d="m 7.2728176,51.603001 v -0.113345 q 0,-0.132915 0.030171,-0.223428 0.030171,-0.09051 0.1060059,-0.201411 0.075835,-0.110898 0.121499,-0.17124 l 0.1320996,-0.174502 0.047295,-0.06116 q 0.053818,-0.07257 0.092959,-0.167979 H 7.146426 v -0.152485 h 0.8031982 v 0.101113 q 0,0.06034 -0.024463,0.111714 -0.023647,0.05137 -0.1451464,0.219351 -0.029356,0.03996 -0.057895,0.07991 l -0.084805,0.119052 q -0.081543,0.114976 -0.1206836,0.183472 -0.039141,0.0685 -0.059526,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113345 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2420" />
+            <path
+               d="m 8.1404349,51.603001 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.157378,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 v 0.508828 H 8.74793 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2422" />
+            <path
+               d="m 9.4785549,51.476609 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136993 q 0.178579,-0.07583 0.3098632,-0.196518 h 0.1516699 v 1.139155 h 0.3041553 v 0.126392 H 9.1686917 v -0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2424" />
+          </g>
+          <g
+             aria-label="Intel"
+             id="text406"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 11.162254,51.603001 v -0.126392 h 0.278062 v -1.011948 h -0.278062 v -0.127207 h 0.72084 v 0.127207 h -0.278061 v 1.011948 h 0.278061 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2427" />
+            <path
+               d="m 12.14974,51.603001 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2429" />
+            <path
+               d="m 13.912699,51.566306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2431" />
+            <path
+               d="m 14.909969,51.542659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2433" />
+            <path
+               d="m 15.398411,51.603001 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2435" />
+          </g>
+          <g
+             aria-label="Corporation"
+             id="text408"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 17.921188,51.588323 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236474 -0.06931,-0.157378 -0.06931,-0.355528 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260938,-0.07583 -0.09785,0 -0.179394,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130469 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2438" />
+            <path
+               d="m 18.536837,51.628279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2440" />
+            <path
+               d="m 19.240553,51.603001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2442" />
+            <path
+               d="m 20.304689,50.896839 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2444" />
+            <path
+               d="m 21.54088,51.628279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2446" />
+            <path
+               d="m 22.244596,51.603001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2448" />
+            <path
+               d="m 23.767004,51.398328 q -0.06931,0.11416 -0.167164,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2450" />
+            <path
+               d="m 24.931437,51.566306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 H 24.50089 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2452" />
+            <path
+               d="M 25.426403,51.603001 V 50.818557 H 25.17362 v -0.126391 h 0.404453 v 0.784443 h 0.253598 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2454" />
+            <path
+               d="m 26.547618,51.628279 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207934 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2456" />
+            <path
+               d="m 27.173868,51.603001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2458" />
+          </g>
+          <g
+             aria-label="x86"
+             id="text410"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 34.288982,51.603001 h -0.175317 l 0.357973,-0.477027 -0.334326,-0.433808 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194887 l -0.277247,-0.362867 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2461" />
+            <path
+               d="m 35.443631,50.920486 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144332 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158194 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05627 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110898 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2463" />
+            <path
+               d="m 36.308802,51.009368 q 0.05871,-0.08725 0.145146,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185103 -0.109268,-0.185918 -0.109268,-0.472133 0,-0.316387 0.139438,-0.499859 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2465" />
+          </g>
+          <g
+             aria-label="Architecture"
+             id="text412"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 38.261103,51.603001 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08644,-0.278062 h -0.445224 z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480289 -0.03588,-0.127207 -0.0318,0.127207 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2468" />
+            <path
+               d="m 39.281205,51.603001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2470" />
+            <path
+               d="m 40.971591,51.576907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242183,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2472" />
+            <path
+               d="m 41.206435,51.603001 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.199781 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2474" />
+            <path
+               d="m 42.463012,51.603001 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253598 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2476" />
+            <path
+               d="m 43.970741,51.566306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 50.894392 H 43.16102 v -0.126391 h 0.227505 v -0.366944 h 0.151669 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2478" />
+            <path
+               d="m 44.968012,51.542659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2480" />
+            <path
+               d="m 45.978329,51.576907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07746,0.111713 0.242182,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2482" />
+            <path
+               d="m 46.974784,51.566306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2484" />
+            <path
+               d="m 47.963901,50.692166 v 0.910835 h -0.15167 V 51.40322 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530844 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2486" />
+            <path
+               d="m 48.293334,51.603001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2488" />
+            <path
+               d="m 49.97475,51.542659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2490" />
+          </g>
+          <g
+             aria-label="32"
+             id="text414"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 55.228238,51.580169 v -0.159825 q 0.186733,0.09459 0.323725,0.09459 0.125577,0 0.20712,-0.07583 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126391 h 0.116606 q 0.159009,0 0.229952,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07583 V 50.35784 q 0.154932,-0.0579 0.28377,-0.0579 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.17124,0.135361 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.1321,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2493" />
+            <path
+               d="m 56.998536,51.603001 h -0.765689 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2495" />
+          </g>
+          <g
+             aria-label="GB"
+             id="text416"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 59.003189,51.602185 q -0.133731,0.03914 -0.245445,0.03914 -0.158193,0 -0.282138,-0.07828 -0.12313,-0.07828 -0.193257,-0.23566 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260937,-0.07583 -0.09785,0 -0.179395,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 51.103142 H 58.71208 v -0.126391 h 0.291109 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2498" />
+            <path
+               d="m 59.257603,51.603001 v -1.265547 h 0.247075 q 0.222612,0 0.297632,0.03425 0.07584,0.03343 0.113344,0.09948 0.03751,0.06605 0.03751,0.150855 0,0.06686 -0.02202,0.127207 -0.02202,0.05953 -0.06524,0.109267 -0.04322,0.04893 -0.125576,0.09296 0.150855,0.06034 0.203857,0.148409 0.05382,0.08807 0.05382,0.176132 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126392,0.121499 -0.08154,0.0424 -0.260937,0.0424 z m 0.164716,-0.695562 h 0.172872 q 0.08399,-0.03506 0.122314,-0.07339 0.03914,-0.03914 0.0579,-0.08643 0.01957,-0.04811 0.01957,-0.105191 0,-0.0897 -0.053,-0.13373 -0.05219,-0.04403 -0.204673,-0.04403 h -0.114976 z m 0,0.56917 h 0.155748 q 0.130468,0 0.192441,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116607 -0.03425,-0.05382 -0.106006,-0.0848 -0.07176,-0.0318 -0.225058,-0.0318 h -0.04566 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2500" />
+          </g>
+          <g
+             aria-label="On"
+             id="text418"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 62.624674,51.641326 q -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2503" />
+            <path
+               d="m 63.25174,51.603001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2505" />
+          </g>
+          <g
+             aria-label="OK"
+             id="text420"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 68.636675,51.641326 q -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2508" />
+            <path
+               d="m 69.265372,51.603001 v -1.265547 h 0.164716 v 0.620542 l 0.470503,-0.620542 h 0.174502 l -0.454194,0.600971 0.517798,0.664576 h -0.206304 l -0.502305,-0.645005 v 0.645005 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2510" />
+          </g>
+          <g
+             aria-label="41"
+             id="text422"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 1.5785087,53.773998 V 53.420102 H 1.0411406 v -0.127207 l 0.5373681,-0.784444 h 0.1524854 v 0.784444 h 0.2340283 v 0.127207 H 1.7309941 v 0.353896 z m 0,-0.481103 v -0.554492 l -0.375913,0.554492 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2513" />
+            <path
+               d="m 2.4665117,53.647607 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769483,0.07828 V 52.70497 q 0.1785791,-0.07584 0.3098633,-0.196519 h 0.1516699 v 1.139156 h 0.3041553 v 0.126391 H 2.1566484 v -0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2515" />
+          </g>
+          <g
+             aria-label="c41n1"
+             id="text424"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 5.9028957,53.747905 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.246259 0,-0.20712 0.1345459,-0.344112 0.1353613,-0.136992 0.3261719,-0.136992 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128022 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2518" />
+            <path
+               d="M 6.5878567,53.773998 V 53.420102 H 6.0504885 V 53.292895 L 6.5878567,52.508451 H 6.740342 v 0.784444 h 0.2340283 v 0.127207 H 6.740342 v 0.353896 z m 0,-0.481103 v -0.554492 l -0.3759131,0.554492 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2520" />
+            <path
+               d="m 7.4758596,53.647607 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769483,0.07828 V 52.70497 q 0.1785791,-0.07584 0.3098633,-0.196519 h 0.1516699 v 1.139156 h 0.3041553 v 0.126391 H 7.1659963 v -0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2522" />
+            <path
+               d="m 8.1404349,53.773998 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 8.74793 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189996 v 0.530844 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2524" />
+            <path
+               d="m 9.4785549,53.647607 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 V 52.70497 q 0.178579,-0.07584 0.3098632,-0.196519 h 0.1516699 v 1.139156 h 0.3041553 v 0.126391 H 9.1686917 v -0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2526" />
+          </g>
+          <g
+             aria-label="Intel"
+             id="text426"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 11.162254,53.773998 v -0.126391 h 0.278062 v -1.011949 h -0.278062 v -0.127207 h 0.72084 v 0.127207 h -0.278061 v 1.011949 h 0.278061 v 0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2529" />
+            <path
+               d="m 12.14974,53.773998 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2531" />
+            <path
+               d="m 13.912699,53.737304 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2533" />
+            <path
+               d="m 14.909969,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2535" />
+            <path
+               d="m 15.398411,53.773998 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2537" />
+          </g>
+          <g
+             aria-label="Corporation"
+             id="text428"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 17.921188,53.759321 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236475 -0.06931,-0.157378 -0.06931,-0.355527 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260938,-0.07583 -0.09785,0 -0.179394,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130469 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2540" />
+            <path
+               d="m 18.536837,53.799277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2542" />
+            <path
+               d="m 19.240553,53.773998 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2544" />
+            <path
+               d="m 20.304689,53.067836 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2546" />
+            <path
+               d="m 21.54088,53.799277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2548" />
+            <path
+               d="m 22.244596,53.773998 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2550" />
+            <path
+               d="m 23.767004,53.569325 q -0.06931,0.114161 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2552" />
+            <path
+               d="m 24.931437,53.737304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 V 53.06539 H 24.50089 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2554" />
+            <path
+               d="M 25.426403,53.773998 V 52.989555 H 25.17362 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2556" />
+            <path
+               d="m 26.547618,53.799277 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207934 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2558" />
+            <path
+               d="m 27.173868,53.773998 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2560" />
+          </g>
+          <g
+             aria-label="x86"
+             id="text430"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 34.288982,53.773998 h -0.175317 l 0.357973,-0.477026 -0.334326,-0.433809 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194887 l -0.277247,-0.362866 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2563" />
+            <path
+               d="m 35.443631,53.091484 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238106 -0.09948,0.100297 -0.298447,0.100297 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.08481 -0.118237,-0.110899 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2565" />
+            <path
+               d="m 36.308802,53.180365 q 0.05871,-0.08725 0.145146,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2567" />
+          </g>
+          <g
+             aria-label="Architecture"
+             id="text432"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 38.261103,53.773998 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08644,-0.278061 h -0.445224 z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2570" />
+            <path
+               d="m 39.281205,53.773998 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2572" />
+            <path
+               d="m 40.971591,53.747905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.246259 0,-0.20712 0.134546,-0.344112 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2574" />
+            <path
+               d="m 41.206435,53.773998 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189996 v 0.530844 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2576" />
+            <path
+               d="m 42.463012,53.773998 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2578" />
+            <path
+               d="m 43.970741,53.737304 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 H 43.16102 v -0.126392 h 0.227505 v -0.366943 h 0.151669 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2580" />
+            <path
+               d="m 44.968012,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2582" />
+            <path
+               d="m 45.978329,53.747905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.246259 0,-0.20712 0.134546,-0.344112 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07746,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2584" />
+            <path
+               d="m 46.974784,53.737304 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2586" />
+            <path
+               d="m 47.963901,52.863163 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152486,-0.190811 v -0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2588" />
+            <path
+               d="m 48.293334,53.773998 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2590" />
+            <path
+               d="m 49.97475,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2592" />
+          </g>
+          <g
+             aria-label="32"
+             id="text434"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 55.228238,53.751166 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125577,0 0.20712,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126392 h 0.116606 q 0.159009,0 0.229952,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07583 v -0.144331 q 0.154932,-0.0579 0.28377,-0.0579 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166348,0.07991 0.05626,0.0473 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.1321,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2595" />
+            <path
+               d="M 56.998536,53.773998 H 56.232847 V 53.63456 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2597" />
+          </g>
+          <g
+             aria-label="GB"
+             id="text436"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 59.003189,53.773183 q -0.133731,0.03914 -0.245445,0.03914 -0.158193,0 -0.282138,-0.07828 -0.12313,-0.07828 -0.193257,-0.235659 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260937,-0.07583 -0.09785,0 -0.179395,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 53.27414 H 58.71208 v -0.126392 h 0.291109 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2600" />
+            <path
+               d="m 59.257603,53.773998 v -1.265547 h 0.247075 q 0.222612,0 0.297632,0.03425 0.07584,0.03343 0.113344,0.09948 0.03751,0.06605 0.03751,0.150854 0,0.06687 -0.02202,0.127207 -0.02202,0.05953 -0.06524,0.109268 -0.04322,0.04893 -0.125576,0.09296 0.150855,0.06034 0.203857,0.148408 0.05382,0.08807 0.05382,0.176133 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126392,0.121499 -0.08154,0.0424 -0.260937,0.0424 z m 0.164716,-0.695561 h 0.172872 q 0.08399,-0.03506 0.122314,-0.07339 0.03914,-0.03914 0.0579,-0.08644 0.01957,-0.04811 0.01957,-0.105191 0,-0.0897 -0.053,-0.13373 -0.05219,-0.04403 -0.204673,-0.04403 h -0.114976 z m 0,0.56917 h 0.155748 q 0.130468,0 0.192441,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116606 -0.03425,-0.05382 -0.106006,-0.08481 -0.07176,-0.0318 -0.225058,-0.0318 h -0.04566 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2602" />
+          </g>
+          <g
+             aria-label="On"
+             id="text438"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 62.624674,53.812323 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 0.216089,0 0.329434,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134545 0.07991,-0.135362 0.07991,-0.409346 0,-0.273985 -0.07991,-0.40853 -0.0791,-0.135362 -0.19815,-0.135362 -0.119052,0 -0.198964,0.135362 -0.0791,0.134545 -0.0791,0.40853 0,0.273984 0.0791,0.409346 0.07991,0.134545 0.198964,0.134545 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2605" />
+            <path
+               d="m 63.25174,53.773998 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189996 v 0.530844 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2607" />
+          </g>
+          <g
+             aria-label="OK"
+             id="text440"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 68.636675,53.812323 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 0.216089,0 0.329434,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134545 0.07991,-0.135362 0.07991,-0.409346 0,-0.273985 -0.07991,-0.40853 -0.0791,-0.135362 -0.19815,-0.135362 -0.119052,0 -0.198964,0.135362 -0.0791,0.134545 -0.0791,0.40853 0,0.273984 0.0791,0.409346 0.07991,0.134545 0.198964,0.134545 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2610" />
+            <path
+               d="m 69.265372,53.773998 v -1.265547 h 0.164716 v 0.620542 l 0.470503,-0.620542 h 0.174502 l -0.454194,0.600972 0.517798,0.664575 h -0.206304 l -0.502305,-0.645005 v 0.645005 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2612" />
+          </g>
+          <g
+             aria-label="43"
+             id="text442"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 1.5785087,55.945 V 55.591103 H 1.0411406 v -0.127207 l 0.5373681,-0.784443 h 0.1524854 v 0.784443 h 0.2340283 v 0.127207 H 1.7309941 V 55.945 Z m 0,-0.481104 v -0.554492 l -0.375913,0.554492 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2615" />
+            <path
+               d="m 2.1215849,55.922168 v -0.159825 q 0.1867334,0.09459 0.3237256,0.09459 0.1255762,0 0.2071191,-0.07583 0.082358,-0.07665 0.082358,-0.196518 0,-0.120684 -0.090513,-0.196519 -0.089697,-0.07583 -0.3057862,-0.07583 H 2.2545 v -0.126391 h 0.1166064 q 0.1590088,0 0.2299512,-0.07094 Q 2.672,55.043134 2.672,54.955884 q 0,-0.0791 -0.057896,-0.132916 -0.057896,-0.05463 -0.1777637,-0.05463 -0.1345459,0 -0.2894775,0.07583 v -0.144331 q 0.1549316,-0.0579 0.2837695,-0.0579 0.2307666,0 0.3180176,0.09133 0.088066,0.09051 0.088066,0.207119 0,0.08644 -0.04648,0.162271 -0.046479,0.07584 -0.1712403,0.135361 0.110083,0.03262 0.1663477,0.07991 0.056265,0.04729 0.084805,0.111714 0.029355,0.06442 0.029355,0.144331 0,0.177764 -0.1320996,0.293555 -0.1312841,0.115791 -0.3400341,0.115791 -0.060342,0 -0.1320996,-0.009 -0.070942,-0.009 -0.1736866,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2617" />
+          </g>
+          <g
+             aria-label="c43n1"
+             id="text444"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 5.9028957,55.918906 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136993 0.3261719,-0.136993 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128022 -0.039956,0.08725 -0.039956,0.179395 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2620" />
+            <path
+               d="M 6.5878567,55.945 V 55.591103 H 6.0504885 V 55.463896 L 6.5878567,54.679453 H 6.740342 v 0.784443 h 0.2340283 v 0.127207 H 6.740342 V 55.945 Z m 0,-0.481104 v -0.554492 l -0.3759131,0.554492 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2622" />
+            <path
+               d="m 7.1309329,55.922168 v -0.159825 q 0.1867333,0.09459 0.3237255,0.09459 0.1255762,0 0.2071192,-0.07583 0.082358,-0.07665 0.082358,-0.196518 0,-0.120684 -0.090513,-0.196519 -0.089697,-0.07583 -0.3057862,-0.07583 h -0.083989 v -0.126391 h 0.1166064 q 0.1590088,0 0.2299512,-0.07094 0.070942,-0.07176 0.070942,-0.159008 0,-0.0791 -0.057895,-0.132916 -0.057895,-0.05463 -0.1777637,-0.05463 -0.1345459,0 -0.2894775,0.07583 v -0.144331 q 0.1549316,-0.0579 0.2837695,-0.0579 0.2307666,0 0.3180176,0.09133 0.088066,0.09051 0.088066,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07584 -0.1712403,0.135361 0.1100831,0.03262 0.1663477,0.07991 0.056265,0.04729 0.084805,0.111714 0.029356,0.06442 0.029356,0.144331 0,0.177764 -0.1320997,0.293555 -0.1312841,0.115791 -0.3400341,0.115791 -0.060342,0 -0.1320996,-0.009 -0.070942,-0.009 -0.1736865,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2624" />
+            <path
+               d="m 8.1404349,55.945 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.157378,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272354 V 55.945 H 8.74793 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07584 -0.1508545,0.189995 V 55.945 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2626" />
+            <path
+               d="m 9.4785549,55.818608 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136993 q 0.178579,-0.07583 0.3098632,-0.196518 h 0.1516699 v 1.139155 H 9.9343801 V 55.945 H 9.1686917 v -0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2628" />
+          </g>
+          <g
+             aria-label="Intel"
+             id="text446"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 11.162254,55.945 v -0.126392 h 0.278062 V 54.80666 h -0.278062 v -0.127207 h 0.72084 v 0.127207 h -0.278061 v 1.011948 h 0.278061 V 55.945 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2631" />
+            <path
+               d="m 12.14974,55.945 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 55.945 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2633" />
+            <path
+               d="m 13.912699,55.908305 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 55.236391 H 13.102977 V 55.11 h 0.227505 v -0.366944 h 0.15167 V 55.11 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2635" />
+            <path
+               d="m 14.909969,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2637" />
+            <path
+               d="m 15.398411,55.945 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 55.945 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2639" />
+          </g>
+          <g
+             aria-label="Corporation"
+             id="text448"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 17.921188,55.930322 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236474 -0.06931,-0.157378 -0.06931,-0.355528 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260938,-0.07583 -0.09785,0 -0.179394,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130469 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2642" />
+            <path
+               d="m 18.536837,55.970278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2644" />
+            <path
+               d="m 19.240553,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 55.945 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2646" />
+            <path
+               d="m 20.304689,55.238838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2648" />
+            <path
+               d="m 21.54088,55.970278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2650" />
+            <path
+               d="m 22.244596,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 55.945 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2652" />
+            <path
+               d="m 23.767004,55.740327 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2654" />
+            <path
+               d="m 24.931437,55.908305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 55.236391 H 24.121715 V 55.11 h 0.227505 v -0.366944 h 0.15167 V 55.11 h 0.405269 v 0.126391 H 24.50089 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2656" />
+            <path
+               d="M 25.426403,55.945 V 55.160556 H 25.17362 v -0.126391 h 0.404453 v 0.784443 h 0.253598 V 55.945 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2658" />
+            <path
+               d="m 26.547618,55.970278 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344926 0,-0.207935 0.117421,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2660" />
+            <path
+               d="m 27.173868,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 55.945 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2662" />
+          </g>
+          <g
+             aria-label="x86"
+             id="text450"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 34.288982,55.945 h -0.175317 l 0.357973,-0.477027 -0.334326,-0.433808 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 L 34.65511,55.453296 35.031023,55.945 h -0.194887 l -0.277247,-0.362867 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2665" />
+            <path
+               d="m 35.443631,55.262485 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158194 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05627 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110898 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2667" />
+            <path
+               d="m 36.308802,55.351367 q 0.05871,-0.08725 0.145146,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185103 -0.109268,-0.185918 -0.109268,-0.472133 0,-0.316387 0.139438,-0.499859 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111713 0.03588,-0.07584 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2669" />
+          </g>
+          <g
+             aria-label="Architecture"
+             id="text452"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 38.261103,55.945 h -0.158194 l 0.389776,-1.265547 h 0.167163 L 39.05207,55.945 h -0.173687 l -0.08644,-0.278062 h -0.445224 z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480288 -0.03588,-0.127208 -0.0318,0.127208 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2672" />
+            <path
+               d="m 39.281205,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 55.945 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2674" />
+            <path
+               d="m 40.971591,55.918906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2676" />
+            <path
+               d="m 41.206435,55.945 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.199781 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 V 55.945 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2678" />
+            <path
+               d="m 42.463012,55.945 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 H 42.86828 V 55.945 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2680" />
+            <path
+               d="m 43.970741,55.908305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 55.236391 H 43.16102 V 55.11 h 0.227505 v -0.366944 h 0.151669 V 55.11 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2682" />
+            <path
+               d="m 44.968012,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2684" />
+            <path
+               d="m 45.978329,55.918906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07746,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2686" />
+            <path
+               d="m 46.974784,55.908305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 55.236391 H 46.165063 V 55.11 h 0.227505 v -0.366944 h 0.15167 V 55.11 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2688" />
+            <path
+               d="M 47.963901,55.034165 V 55.945 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530844 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2690" />
+            <path
+               d="m 48.293334,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 55.945 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2692" />
+            <path
+               d="m 49.97475,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2694" />
+          </g>
+          <g
+             aria-label="32"
+             id="text454"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 55.228238,55.922168 v -0.159825 q 0.186733,0.09459 0.323725,0.09459 0.125577,0 0.20712,-0.07583 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126391 h 0.116606 q 0.159009,0 0.229952,-0.07094 0.07094,-0.07176 0.07094,-0.159008 0,-0.0791 -0.0579,-0.132916 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07583 v -0.144331 q 0.154932,-0.0579 0.28377,-0.0579 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07584 -0.17124,0.135361 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.1321,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2697" />
+            <path
+               d="m 56.998536,55.945 h -0.765689 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.05789 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2699" />
+          </g>
+          <g
+             aria-label="GB"
+             id="text456"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 59.003189,55.944184 q -0.133731,0.03914 -0.245445,0.03914 -0.158193,0 -0.282138,-0.07828 -0.12313,-0.07828 -0.193257,-0.23566 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260937,-0.07583 -0.09785,0 -0.179395,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 55.445141 H 58.71208 V 55.31875 h 0.291109 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2702" />
+            <path
+               d="m 59.257603,55.945 v -1.265547 h 0.247075 q 0.222612,0 0.297632,0.03425 0.07584,0.03343 0.113344,0.09948 0.03751,0.06605 0.03751,0.150855 0,0.06686 -0.02202,0.127207 -0.02202,0.05953 -0.06524,0.109267 -0.04322,0.04893 -0.125576,0.09296 0.150855,0.06034 0.203857,0.148409 0.05382,0.08807 0.05382,0.176132 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126392,0.121499 -0.08154,0.0424 -0.260937,0.0424 z m 0.164716,-0.695562 h 0.172872 q 0.08399,-0.03506 0.122314,-0.07339 0.03914,-0.03914 0.0579,-0.08644 0.01957,-0.04811 0.01957,-0.10519 0,-0.0897 -0.053,-0.133731 -0.05219,-0.04403 -0.204673,-0.04403 h -0.114976 z m 0,0.56917 h 0.155748 q 0.130468,0 0.192441,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116607 -0.03425,-0.05382 -0.106006,-0.0848 -0.07176,-0.0318 -0.225058,-0.0318 h -0.04566 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2704" />
+          </g>
+          <g
+             aria-label="On"
+             id="text458"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 62.624674,55.983325 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490074 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490074 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2707" />
+            <path
+               d="m 63.25174,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 V 55.945 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2709" />
+          </g>
+          <g
+             aria-label="OK"
+             id="text460"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 68.636675,55.983325 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490074 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490074 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2712" />
+            <path
+               d="m 69.265372,55.945 v -1.265547 h 0.164716 v 0.620542 l 0.470503,-0.620542 h 0.174502 L 69.620899,55.280425 70.138697,55.945 H 69.932393 L 69.430088,55.299995 V 55.945 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2714" />
+          </g>
+          <g
+             aria-label="45"
+             id="text462"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 1.5785087,58.116001 V 57.762105 H 1.0411406 v -0.127207 l 0.5373681,-0.784444 h 0.1524854 v 0.784444 h 0.2340283 v 0.127207 H 1.7309941 v 0.353896 z m 0,-0.481103 v -0.554493 l -0.375913,0.554493 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2717" />
+            <path
+               d="m 2.1566484,57.457949 v -0.607495 h 0.7086084 v 0.145962 H 2.3083183 v 0.309863 h 0.026094 q 0.2731689,0 0.4207617,0.114161 0.1475928,0.11416 0.1475928,0.307417 0,0.122314 -0.059526,0.21935 -0.059526,0.09704 -0.1679785,0.152486 -0.1084522,0.05463 -0.2307666,0.05463 -0.1223145,0 -0.313125,-0.05953 v -0.165532 q 0.069311,0.03751 0.1549316,0.06197 0.08562,0.02365 0.1581934,0.02365 0.072573,0 0.1418847,-0.03506 0.069312,-0.03506 0.1076368,-0.101928 0.038325,-0.06768 0.038325,-0.137808 0,-0.118237 -0.1051905,-0.19978 -0.104375,-0.08236 -0.3718359,-0.08236 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2719" />
+          </g>
+          <g
+             aria-label="c45n1"
+             id="text464"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 5.9028957,58.089907 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136992 0.3261719,-0.136992 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128023 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2722" />
+            <path
+               d="M 6.5878567,58.116001 V 57.762105 H 6.0504885 V 57.634898 L 6.5878567,56.850454 H 6.740342 v 0.784444 h 0.2340283 v 0.127207 H 6.740342 v 0.353896 z m 0,-0.481103 v -0.554493 l -0.3759131,0.554493 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2724" />
+            <path
+               d="m 7.1659963,57.457949 v -0.607495 h 0.7086084 v 0.145962 H 7.3176662 v 0.309863 H 7.34376 q 0.2731689,0 0.4207617,0.114161 0.1475928,0.11416 0.1475928,0.307417 0,0.122314 -0.059526,0.21935 -0.059526,0.09704 -0.1679785,0.152486 -0.1084521,0.05463 -0.2307666,0.05463 -0.1223144,0 -0.313125,-0.05953 v -0.165532 q 0.069312,0.03751 0.1549316,0.06197 0.08562,0.02365 0.1581934,0.02365 0.072573,0 0.1418848,-0.03506 0.069312,-0.03506 0.1076367,-0.101928 0.038325,-0.06768 0.038325,-0.137808 0,-0.118237 -0.1051905,-0.19978 -0.104375,-0.08236 -0.3718359,-0.08236 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2726" />
+            <path
+               d="m 8.1404349,58.116001 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.10519 0.157378,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 8.74793 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2728" />
+            <path
+               d="m 9.4785549,57.98961 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136992 q 0.178579,-0.07583 0.3098632,-0.196519 h 0.1516699 v 1.139156 h 0.3041553 v 0.126391 H 9.1686917 V 57.98961 Z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2730" />
+          </g>
+          <g
+             aria-label="Intel"
+             id="text466"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="M 11.162254,58.116001 V 57.98961 h 0.278062 v -1.011949 h -0.278062 v -0.127207 h 0.72084 v 0.127207 h -0.278061 v 1.011949 h 0.278061 v 0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2733" />
+            <path
+               d="m 12.14974,58.116001 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2735" />
+            <path
+               d="m 13.912699,58.079307 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2737" />
+            <path
+               d="m 14.909969,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 14.304105,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2739" />
+            <path
+               d="m 15.398411,58.116001 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126391 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2741" />
+          </g>
+          <g
+             aria-label="Corporation"
+             id="text468"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 17.921188,58.101323 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236475 -0.06931,-0.157378 -0.06931,-0.355527 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260938,-0.07584 -0.09785,0 -0.179394,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130468 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2744" />
+            <path
+               d="m 18.536837,58.141279 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2746" />
+            <path
+               d="m 19.240553,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 H 19.777921 V 57.32585 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2748" />
+            <path
+               d="m 20.304689,57.409839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2750" />
+            <path
+               d="m 21.54088,58.141279 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2752" />
+            <path
+               d="m 22.244596,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 H 22.781964 V 57.32585 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2754" />
+            <path
+               d="m 23.767004,57.911328 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2756" />
+            <path
+               d="m 24.931437,58.079307 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 H 24.50089 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2758" />
+            <path
+               d="M 25.426403,58.116001 V 57.331558 H 25.17362 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2760" />
+            <path
+               d="m 26.547618,58.141279 q -0.195703,0 -0.313125,-0.136176 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207935 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2762" />
+            <path
+               d="m 27.173868,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2764" />
+          </g>
+          <g
+             aria-label="x86"
+             id="text470"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 34.288982,58.116001 h -0.175317 l 0.357973,-0.477026 -0.334326,-0.433809 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194887 l -0.277247,-0.362866 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2767" />
+            <path
+               d="m 35.443631,57.433486 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393038 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2769" />
+            <path
+               d="m 36.308802,57.522368 q 0.05871,-0.08725 0.145146,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123946 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2771" />
+          </g>
+          <g
+             aria-label="Architecture"
+             id="text472"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 38.261103,58.116001 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08644,-0.278061 h -0.445224 z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2774" />
+            <path
+               d="m 39.281205,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 v 0.328618 H 39.818573 V 57.32585 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2776" />
+            <path
+               d="m 40.971591,58.089907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2778" />
+            <path
+               d="m 41.206435,58.116001 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2780" />
+            <path
+               d="m 42.463012,58.116001 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2782" />
+            <path
+               d="m 43.970741,58.079307 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 57.407393 H 43.16102 v -0.126392 h 0.227505 v -0.366943 h 0.151669 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2784" />
+            <path
+               d="m 44.968012,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 44.362148,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2786" />
+            <path
+               d="m 45.978329,58.089907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07746,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2788" />
+            <path
+               d="m 46.974784,58.079307 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2790" />
+            <path
+               d="m 47.963901,57.205166 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2792" />
+            <path
+               d="m 48.293334,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 H 48.830702 V 57.32585 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2794" />
+            <path
+               d="m 49.97475,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 49.368886,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2796" />
+          </g>
+          <g
+             aria-label="32"
+             id="text474"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 55.228238,58.093169 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125577,0 0.20712,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07584 -0.305786,-0.07584 h -0.08399 v -0.126392 h 0.116606 q 0.159009,0 0.229952,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07584 V 56.87084 q 0.154932,-0.0579 0.28377,-0.0579 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08643 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.1321,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2799" />
+            <path
+               d="m 56.998536,58.116001 h -0.765689 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2801" />
+          </g>
+          <g
+             aria-label="GB"
+             id="text476"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 59.003189,58.115186 q -0.133731,0.03914 -0.245445,0.03914 -0.158193,0 -0.282138,-0.07828 -0.12313,-0.07828 -0.193257,-0.235659 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260937,-0.07584 -0.09785,0 -0.179395,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 57.616143 H 58.71208 v -0.126392 h 0.291109 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2804" />
+            <path
+               d="m 59.257603,58.116001 v -1.265547 h 0.247075 q 0.222612,0 0.297632,0.03425 0.07584,0.03343 0.113344,0.09948 0.03751,0.06605 0.03751,0.150854 0,0.06686 -0.02202,0.127207 -0.02202,0.05953 -0.06524,0.109268 -0.04322,0.04893 -0.125576,0.09296 0.150855,0.06034 0.203857,0.148408 0.05382,0.08807 0.05382,0.176133 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126392,0.121499 -0.08154,0.0424 -0.260937,0.0424 z m 0.164716,-0.695561 h 0.172872 q 0.08399,-0.03506 0.122314,-0.07339 0.03914,-0.03914 0.0579,-0.08644 0.01957,-0.04811 0.01957,-0.10519 0,-0.0897 -0.053,-0.13373 -0.05219,-0.04403 -0.204673,-0.04403 h -0.114976 z m 0,0.56917 h 0.155748 q 0.130468,0 0.192441,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116606 -0.03425,-0.05382 -0.106006,-0.0848 -0.07176,-0.0318 -0.225058,-0.0318 h -0.04566 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2806" />
+          </g>
+          <g
+             aria-label="Off"
+             id="text478"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 62.624674,58.154326 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 0.216089,0 0.329434,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409345 0,-0.273985 -0.07991,-0.408531 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.408531 0,0.273984 0.0791,0.409345 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2809" />
+            <path
+               d="m 63.463752,58.116001 v -0.708608 h -0.202227 v -0.126392 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118238,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361236 v 0.126392 h -0.361236 v 0.708608 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2811" />
+            <path
+               d="m 64.465099,58.116001 v -0.708608 h -0.202226 v -0.126392 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126392 h -0.361235 v 0.708608 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2813" />
+          </g>
+          <g
+             aria-label="OK"
+             id="text480"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 68.636675,58.154326 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 0.216089,0 0.329434,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409345 0,-0.273985 -0.07991,-0.408531 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.408531 0,0.273984 0.0791,0.409345 0.07991,0.134546 0.198964,0.134546 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2816" />
+            <path
+               d="m 69.265372,58.116001 v -1.265547 h 0.164716 v 0.620542 l 0.470503,-0.620542 h 0.174502 l -0.454194,0.600972 0.517798,0.664575 h -0.206304 l -0.502305,-0.645005 v 0.645005 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2818" />
+          </g>
+          <g
+             aria-label="moonshot1-&gt;"
+             id="text482"
+             class="e"
+             style="white-space:pre;fill:#b9c0cb">
+            <path
+               d="m 0.05789551,64.628998 v -0.910835 h 0.13291503 v 0.20875 q 0.0627881,-0.132915 0.11660644,-0.183472 0.0546338,-0.05056 0.11008301,-0.05056 0.0660498,0 0.10600586,0.05219 0.0407715,0.05137 0.0407715,0.146777 v 0.04893 q 0.0269092,-0.08317 0.0644189,-0.134546 0.0383252,-0.05219 0.0790967,-0.08236 0.0407715,-0.03099 0.0937744,-0.03099 0.0587109,0 0.10029785,0.04974 0.0415869,0.04974 0.0415869,0.198149 v 0.688223 H 0.81053709 v -0.622173 q 0,-0.07665 -0.004893,-0.104375 -0.004893,-0.02854 -0.0195703,-0.04322 -0.0146777,-0.01468 -0.0318018,-0.01468 -0.0424023,0 -0.0913281,0.06524 -0.0481104,0.06442 -0.098667,0.214458 v 0.504751 H 0.4370703 V 64.00764 q 0,-0.120683 -0.0236475,-0.141884 -0.0236475,-0.0212 -0.0424023,-0.0212 -0.0415869,0 -0.0896973,0.07257 -0.0472949,0.07257 -0.0905127,0.185918 v 0.525952 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2821" />
+            <path
+               d="m 1.5028369,64.654276 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,64.381107 1.07229,64.173173 q 0,-0.207935 0.1174219,-0.344112 0.1174219,-0.136176 0.313125,-0.136176 0.1948877,0 0.3123096,0.136176 0.1174218,0.136177 0.1174218,0.344112 0,0.207934 -0.1174218,0.344926 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2823" />
+            <path
+               d="m 2.5041846,64.654276 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344926 0,-0.207935 0.1174219,-0.344112 0.1174218,-0.136176 0.313125,-0.136176 0.1948877,0 0.3123095,0.136176 0.1174219,0.136177 0.1174219,0.344112 0,0.207934 -0.1174219,0.344926 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2825" />
+            <path
+               d="m 3.1304347,64.628998 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467774,0.04322 0.06605,0.0424 0.092143,0.111714 0.026909,0.06931 0.026909,0.272354 v 0.508828 H 3.7379298 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012231,-0.0424 -0.046479,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2827" />
+            <path
+               d="m 4.1423828,64.580887 v -0.160639 q 0.091328,0.05953 0.1932569,0.08399 0.1019287,0.02365 0.172871,0.02365 0.1149756,0 0.1655323,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023647,-0.02609 -0.1174218,-0.06442 l -0.052187,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122314 -0.044849,-0.05545 -0.044849,-0.135362 0,-0.112529 0.086436,-0.185102 0.087251,-0.07257 0.2821387,-0.07257 0.1459619,0 0.2764306,0.0424 v 0.137808 q -0.150039,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508544,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027442,0.03751 q 0.1410693,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07583 -0.2902929,0.07583 -0.174502,0 -0.3587891,-0.07339 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2829" />
+            <path
+               d="m 5.1331298,64.628998 v -1.316104 h 0.1516699 v 0.604234 q 0.065234,-0.105191 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.077466,0 0.1410694,0.03996 0.064419,0.03914 0.089697,0.0954 0.020386,0.04322 0.027725,0.09214 0.00734,0.04811 0.00734,0.199781 v 0.508828 H 5.7406249 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012231,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2831" />
+            <path
+               d="m 6.5095754,64.654276 q -0.1957031,0 -0.3131249,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344926 0,-0.207935 0.1174219,-0.344112 0.1174218,-0.136176 0.3131249,-0.136176 0.1948877,0 0.3123096,0.136176 0.1174219,0.136177 0.1174219,0.344112 0,0.207934 -0.1174219,0.344926 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126391 q 0.1214991,0 0.1932569,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932569,-0.09459 -0.1223144,0 -0.1940722,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940722,0.09459 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2833" />
+            <path
+               d="m 7.8974367,64.592303 q -0.1068213,0.04485 -0.1549317,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.1745019,-0.03669 -0.079097,-0.03669 -0.1198682,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 63.920389 H 7.087715 v -0.126391 h 0.2275049 v -0.366944 h 0.1516699 v 0.366944 h 0.4052685 v 0.126391 H 7.4668898 v 0.364497 q 0,0.110083 0.026094,0.155748 0.026094,0.04485 0.069312,0.06605 0.044033,0.0212 0.1035595,0.0212 0.110083,0 0.2315821,-0.06931 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2835" />
+            <path
+               d="m 8.4739453,64.502606 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 V 63.55997 q 0.1785791,-0.07583 0.3098632,-0.196519 h 0.15167 v 1.139155 h 0.3041552 v 0.126392 H 8.1640821 v -0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2837" />
+            <path
+               d="m 9.1972314,64.179696 v -0.126392 h 0.6327734 v 0.126392 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2839" />
+            <path
+               d="m 10.956928,64.186219 -0.885556,0.442779 v -0.14107 l 0.605864,-0.300893 -0.605864,-0.304155 v -0.139439 z"
+               style="white-space:pre;fill:#b9c0cb"
+               id="path2841" />
+          </g>
+        </svg>
+      </svg>
+    </g>
+  </svg>
+</svg>
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot09.svg b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot09.svg
new file mode 100644
index 0000000000..58e25997a2
--- /dev/null
+++ b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot09.svg
@@ -0,0 +1,1777 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<svg
+   width="1005.2712"
+   height="235.09941"
+   font-family="Consolas, Menlo, 'Bitstream Vera Sans Mono', monospace, 'Powerline Symbols'"
+   font-size="14px"
+   version="1.1"
+   id="svg978"
+   sodipodi:docname="screenshot09.svg"
+   inkscape:version="1.1.1 (c3084ef, 2021-09-22)"
+   xmlns:inkscape="http://www.inkscape.org/namespaces/inkscape"
+   xmlns:sodipodi="http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd"
+   xmlns="http://www.w3.org/2000/svg"
+   xmlns:svg="http://www.w3.org/2000/svg">
+  <defs
+     id="defs982">
+    <clipPath
+       clipPathUnits="userSpaceOnUse"
+       id="clipPath2338">
+      <rect
+         style="fill:#ff0000"
+         id="rect2340"
+         width="1083.9667"
+         height="317.23331"
+         x="-42.366665"
+         y="-68" />
+    </clipPath>
+    <clipPath
+       clipPathUnits="userSpaceOnUse"
+       id="clipPath4239">
+      <rect
+         style="fill:#ff0000"
+         id="rect4241"
+         width="1005.2712"
+         height="235.09941"
+         x="8.4287786"
+         y="9.8005877" />
+    </clipPath>
+  </defs>
+  <sodipodi:namedview
+     id="namedview980"
+     pagecolor="#ffffff"
+     bordercolor="#666666"
+     borderopacity="1.0"
+     inkscape:pageshadow="2"
+     inkscape:pageopacity="0.0"
+     inkscape:pagecheckerboard="0"
+     showgrid="false"
+     inkscape:zoom="0.96774197"
+     inkscape:cx="547.14998"
+     inkscape:cy="133.3"
+     inkscape:window-width="1416"
+     inkscape:window-height="814"
+     inkscape:window-x="12"
+     inkscape:window-y="25"
+     inkscape:window-maximized="0"
+     inkscape:current-layer="svg978" />
+  <style
+     id="style9"><!-- asciinema theme -->
+
+
+
+.default-text-fill {fill: #cccccc}
+.default-bg-fill {fill: #121314}
+
+.c-0 {fill: #000000}
+.c-1 {fill: #dd3c69}
+.c-2 {fill: #4ebf22}
+.c-3 {fill: #ddaf3c}
+.c-4 {fill: #26b0d7}
+.c-5 {fill: #b954e1}
+.c-6 {fill: #54e1b9}
+.c-7 {fill: #d9d9d9}
+.c-8 {fill: #4d4d4d}
+.c-9 {fill: #dd3c69}
+.c-10 {fill: #4ebf22}
+.c-11 {fill: #ddaf3c}
+.c-12 {fill: #26b0d7}
+.c-13 {fill: #b954e1}
+.c-14 {fill: #54e1b9}
+.c-15 {fill: #ffffff}
+.c-8, .c-9, .c-10, .c-11, .c-12, .c-13, .c-14, .c-15 {font-weight: bold}
+
+<!-- 256 colors -->
+
+
+
+.c-16 {fill: #000000}
+.c-17 {fill: #00005f}
+.c-18 {fill: #000087}
+.c-19 {fill: #0000af}
+.c-20 {fill: #0000d7}
+.c-21 {fill: #0000ff}
+.c-22 {fill: #005f00}
+.c-23 {fill: #005f5f}
+.c-24 {fill: #005f87}
+.c-25 {fill: #005faf}
+.c-26 {fill: #005fd7}
+.c-27 {fill: #005fff}
+.c-28 {fill: #008700}
+.c-29 {fill: #00875f}
+.c-30 {fill: #008787}
+.c-31 {fill: #0087af}
+.c-32 {fill: #0087d7}
+.c-33 {fill: #0087ff}
+.c-34 {fill: #00af00}
+.c-35 {fill: #00af5f}
+.c-36 {fill: #00af87}
+.c-37 {fill: #00afaf}
+.c-38 {fill: #00afd7}
+.c-39 {fill: #00afff}
+.c-40 {fill: #00d700}
+.c-41 {fill: #00d75f}
+.c-42 {fill: #00d787}
+.c-43 {fill: #00d7af}
+.c-44 {fill: #00d7d7}
+.c-45 {fill: #00d7ff}
+.c-46 {fill: #00ff00}
+.c-47 {fill: #00ff5f}
+.c-48 {fill: #00ff87}
+.c-49 {fill: #00ffaf}
+.c-50 {fill: #00ffd7}
+.c-51 {fill: #00ffff}
+.c-52 {fill: #5f0000}
+.c-53 {fill: #5f005f}
+.c-54 {fill: #5f0087}
+.c-55 {fill: #5f00af}
+.c-56 {fill: #5f00d7}
+.c-57 {fill: #5f00ff}
+.c-58 {fill: #5f5f00}
+.c-59 {fill: #5f5f5f}
+.c-60 {fill: #5f5f87}
+.c-61 {fill: #5f5faf}
+.c-62 {fill: #5f5fd7}
+.c-63 {fill: #5f5fff}
+.c-64 {fill: #5f8700}
+.c-65 {fill: #5f875f}
+.c-66 {fill: #5f8787}
+.c-67 {fill: #5f87af}
+.c-68 {fill: #5f87d7}
+.c-69 {fill: #5f87ff}
+.c-70 {fill: #5faf00}
+.c-71 {fill: #5faf5f}
+.c-72 {fill: #5faf87}
+.c-73 {fill: #5fafaf}
+.c-74 {fill: #5fafd7}
+.c-75 {fill: #5fafff}
+.c-76 {fill: #5fd700}
+.c-77 {fill: #5fd75f}
+.c-78 {fill: #5fd787}
+.c-79 {fill: #5fd7af}
+.c-80 {fill: #5fd7d7}
+.c-81 {fill: #5fd7ff}
+.c-82 {fill: #5fff00}
+.c-83 {fill: #5fff5f}
+.c-84 {fill: #5fff87}
+.c-85 {fill: #5fffaf}
+.c-86 {fill: #5fffd7}
+.c-87 {fill: #5fffff}
+.c-88 {fill: #870000}
+.c-89 {fill: #87005f}
+.c-90 {fill: #870087}
+.c-91 {fill: #8700af}
+.c-92 {fill: #8700d7}
+.c-93 {fill: #8700ff}
+.c-94 {fill: #875f00}
+.c-95 {fill: #875f5f}
+.c-96 {fill: #875f87}
+.c-97 {fill: #875faf}
+.c-98 {fill: #875fd7}
+.c-99 {fill: #875fff}
+.c-100 {fill: #878700}
+.c-101 {fill: #87875f}
+.c-102 {fill: #878787}
+.c-103 {fill: #8787af}
+.c-104 {fill: #8787d7}
+.c-105 {fill: #8787ff}
+.c-106 {fill: #87af00}
+.c-107 {fill: #87af5f}
+.c-108 {fill: #87af87}
+.c-109 {fill: #87afaf}
+.c-110 {fill: #87afd7}
+.c-111 {fill: #87afff}
+.c-112 {fill: #87d700}
+.c-113 {fill: #87d75f}
+.c-114 {fill: #87d787}
+.c-115 {fill: #87d7af}
+.c-116 {fill: #87d7d7}
+.c-117 {fill: #87d7ff}
+.c-118 {fill: #87ff00}
+.c-119 {fill: #87ff5f}
+.c-120 {fill: #87ff87}
+.c-121 {fill: #87ffaf}
+.c-122 {fill: #87ffd7}
+.c-123 {fill: #87ffff}
+.c-124 {fill: #af0000}
+.c-125 {fill: #af005f}
+.c-126 {fill: #af0087}
+.c-127 {fill: #af00af}
+.c-128 {fill: #af00d7}
+.c-129 {fill: #af00ff}
+.c-130 {fill: #af5f00}
+.c-131 {fill: #af5f5f}
+.c-132 {fill: #af5f87}
+.c-133 {fill: #af5faf}
+.c-134 {fill: #af5fd7}
+.c-135 {fill: #af5fff}
+.c-136 {fill: #af8700}
+.c-137 {fill: #af875f}
+.c-138 {fill: #af8787}
+.c-139 {fill: #af87af}
+.c-140 {fill: #af87d7}
+.c-141 {fill: #af87ff}
+.c-142 {fill: #afaf00}
+.c-143 {fill: #afaf5f}
+.c-144 {fill: #afaf87}
+.c-145 {fill: #afafaf}
+.c-146 {fill: #afafd7}
+.c-147 {fill: #afafff}
+.c-148 {fill: #afd700}
+.c-149 {fill: #afd75f}
+.c-150 {fill: #afd787}
+.c-151 {fill: #afd7af}
+.c-152 {fill: #afd7d7}
+.c-153 {fill: #afd7ff}
+.c-154 {fill: #afff00}
+.c-155 {fill: #afff5f}
+.c-156 {fill: #afff87}
+.c-157 {fill: #afffaf}
+.c-158 {fill: #afffd7}
+.c-159 {fill: #afffff}
+.c-160 {fill: #d70000}
+.c-161 {fill: #d7005f}
+.c-162 {fill: #d70087}
+.c-163 {fill: #d700af}
+.c-164 {fill: #d700d7}
+.c-165 {fill: #d700ff}
+.c-166 {fill: #d75f00}
+.c-167 {fill: #d75f5f}
+.c-168 {fill: #d75f87}
+.c-169 {fill: #d75faf}
+.c-170 {fill: #d75fd7}
+.c-171 {fill: #d75fff}
+.c-172 {fill: #d78700}
+.c-173 {fill: #d7875f}
+.c-174 {fill: #d78787}
+.c-175 {fill: #d787af}
+.c-176 {fill: #d787d7}
+.c-177 {fill: #d787ff}
+.c-178 {fill: #d7af00}
+.c-179 {fill: #d7af5f}
+.c-180 {fill: #d7af87}
+.c-181 {fill: #d7afaf}
+.c-182 {fill: #d7afd7}
+.c-183 {fill: #d7afff}
+.c-184 {fill: #d7d700}
+.c-185 {fill: #d7d75f}
+.c-186 {fill: #d7d787}
+.c-187 {fill: #d7d7af}
+.c-188 {fill: #d7d7d7}
+.c-189 {fill: #d7d7ff}
+.c-190 {fill: #d7ff00}
+.c-191 {fill: #d7ff5f}
+.c-192 {fill: #d7ff87}
+.c-193 {fill: #d7ffaf}
+.c-194 {fill: #d7ffd7}
+.c-195 {fill: #d7ffff}
+.c-196 {fill: #ff0000}
+.c-197 {fill: #ff005f}
+.c-198 {fill: #ff0087}
+.c-199 {fill: #ff00af}
+.c-200 {fill: #ff00d7}
+.c-201 {fill: #ff00ff}
+.c-202 {fill: #ff5f00}
+.c-203 {fill: #ff5f5f}
+.c-204 {fill: #ff5f87}
+.c-205 {fill: #ff5faf}
+.c-206 {fill: #ff5fd7}
+.c-207 {fill: #ff5fff}
+.c-208 {fill: #ff8700}
+.c-209 {fill: #ff875f}
+.c-210 {fill: #ff8787}
+.c-211 {fill: #ff87af}
+.c-212 {fill: #ff87d7}
+.c-213 {fill: #ff87ff}
+.c-214 {fill: #ffaf00}
+.c-215 {fill: #ffaf5f}
+.c-216 {fill: #ffaf87}
+.c-217 {fill: #ffafaf}
+.c-218 {fill: #ffafd7}
+.c-219 {fill: #ffafff}
+.c-220 {fill: #ffd700}
+.c-221 {fill: #ffd75f}
+.c-222 {fill: #ffd787}
+.c-223 {fill: #ffd7af}
+.c-224 {fill: #ffd7d7}
+.c-225 {fill: #ffd7ff}
+.c-226 {fill: #ffff00}
+.c-227 {fill: #ffff5f}
+.c-228 {fill: #ffff87}
+.c-229 {fill: #ffffaf}
+.c-230 {fill: #ffffd7}
+.c-231 {fill: #ffffff}
+.c-232 {fill: #080808}
+.c-233 {fill: #121212}
+.c-234 {fill: #1c1c1c}
+.c-235 {fill: #262626}
+.c-236 {fill: #303030}
+.c-237 {fill: #3a3a3a}
+.c-238 {fill: #444444}
+.c-239 {fill: #4e4e4e}
+.c-240 {fill: #585858}
+.c-241 {fill: #626262}
+.c-242 {fill: #6c6c6c}
+.c-243 {fill: #767676}
+.c-244 {fill: #808080}
+.c-245 {fill: #8a8a8a}
+.c-246 {fill: #949494}
+.c-247 {fill: #9e9e9e}
+.c-248 {fill: #a8a8a8}
+.c-249 {fill: #b2b2b2}
+.c-250 {fill: #bcbcbc}
+.c-251 {fill: #c6c6c6}
+.c-252 {fill: #d0d0d0}
+.c-253 {fill: #dadada}
+.c-254 {fill: #e4e4e4}
+.c-255 {fill: #eeeeee}
+
+.br { font-weight: bold }
+.it { font-style: italic }
+.un { text-decoration: underline }
+</style>
+  <g
+     id="g1725"
+     clip-path="url(#clipPath4239)"
+     transform="translate(-8.4287786,-9.8005877)">
+    <path
+       id="rect11"
+       class="default-bg-fill"
+       style="fill:#121314"
+       d="m 4,0 h 1012.4333 c 2.216,0 4,1.784 4,4 v 599.59998 c 0,2.216 -1.784,4 -4,4 H 4 c -2.216,0 -4,-1.784 -4,-4 V 4 C 0,1.784 1.784,0 4,0 Z" />
+    <svg
+       x="8.4287786"
+       y="9.8005877"
+       class="default-text-fill"
+       version="1.1"
+       id="svg976"
+       width="100%"
+       height="100%">
+      <g
+         style="shape-rendering:optimizeSpeed"
+         id="g47">
+        <path
+           id="rect13"
+           class="c-45"
+           style="fill:#00d7ff"
+           d="M 0,0 H 8.4287786 V 19.700001 H 0 Z" />
+        <path
+           id="rect15"
+           class="c-45"
+           style="fill:#00d7ff"
+           d="M 8.4287786,0 H 50.593085 V 19.700001 H 8.4287786 Z" />
+        <path
+           id="rect17"
+           class="c-45"
+           style="fill:#00d7ff"
+           d="m 50.603294,0 h 8.428779 v 19.700001 h -8.428779 z" />
+        <path
+           id="rect19"
+           class="c-24"
+           style="fill:#005f87"
+           d="m 59.03207,0 h 8.428779 V 19.700001 H 59.03207 Z" />
+        <path
+           id="rect21"
+           class="c-24"
+           style="fill:#005f87"
+           d="m 67.471054,0 h 8.428779 v 19.700001 h -8.428779 z" />
+        <path
+           id="rect23"
+           class="c-24"
+           style="fill:#005f87"
+           d="m 75.899834,0 h 8.428778 v 19.700001 h -8.428778 z" />
+        <path
+           id="rect25"
+           class="c-24"
+           style="fill:#005f87"
+           d="m 84.328613,0 h 8.428779 v 19.700001 h -8.428779 z" />
+        <path
+           id="rect27"
+           class="c-235"
+           style="fill:#262626"
+           d="m 919.237,0 h 84.3286 V 19.700001 H 919.237 Z" />
+        <path
+           id="rect29"
+           class="c-45"
+           style="fill:#00d7ff"
+           d="m 0,117.60097 h 8.4287786 v 19.7 H 0 Z" />
+        <path
+           id="rect31"
+           class="c-45"
+           style="fill:#00d7ff"
+           d="M 8.4287786,117.60097 H 50.593085 v 19.7 H 8.4287786 Z" />
+        <path
+           id="rect33"
+           class="c-45"
+           style="fill:#00d7ff"
+           d="m 50.603294,117.60097 h 8.428779 v 19.7 h -8.428779 z" />
+        <path
+           id="rect35"
+           class="c-24"
+           style="fill:#005f87"
+           d="m 59.03207,117.60097 h 8.428779 v 19.7 H 59.03207 Z" />
+        <path
+           id="rect37"
+           class="c-24"
+           style="fill:#005f87"
+           d="m 67.471054,117.60097 h 8.428779 v 19.7 h -8.428779 z" />
+        <path
+           id="rect39"
+           class="c-24"
+           style="fill:#005f87"
+           d="m 75.899834,117.60097 h 8.428778 v 19.7 h -8.428778 z" />
+        <path
+           id="rect41"
+           class="c-24"
+           style="fill:#005f87"
+           d="m 84.328613,117.60097 h 8.428779 v 19.7 h -8.428779 z" />
+        <path
+           id="rect43"
+           class="c-235"
+           style="fill:#262626"
+           d="m 919.237,117.60097 h 84.3286 v 19.7 H 919.237 Z" />
+        <path
+           id="rect45"
+           class="c-7"
+           style="fill:#d9d9d9"
+           d="m 219.27072,215.60078 h 8.42878 v 19.70001 h -8.42878 z" />
+      </g>
+      <g
+         aria-label="kvaps~kubectlgetnodecatchallNAMESTATUSROLESAGEVERSION94-57-a5-d3-d9-deReady&lt;none&gt;29mv1.19.094-57-a5-d3-ec-f2Ready&lt;none&gt;29mv1.19.094-57-a5-d3-ed-eeReady&lt;none&gt;29mv1.19.094-57-a5-d3-ef-92Ready&lt;none&gt;29mv1.19.0kvaps~kubectlnode-shell94-57-a5-d3-d9-decatchallspawning&quot;nsenter-ifg5yg&quot;on&quot;94-57-a5-d3-d9-de&quot;Ifyoudon'tseeacommandprompt,trypressingenter.root@94-57-a5-d3-d9-de:/#root@94-57-a5-d3-d9-de:/#root@94-57-a5-d3-d9-de:/#"
+         id="text957"
+         class="default-text-fill">
+        <path
+           d="M 9.6182318,3.3632813 H 11.621161 V 8.9482422 L 14.027411,6.34375 h 2.426758 L 13.555732,9.2011719 16.618232,14 h -2.214844 l -2.098633,-3.582031 -0.683594,0.65625 V 14 H 9.6182318 Z"
+           style="font-weight:bold;fill:#000000"
+           id="path2360" />
+        <path
+           d="M 24.749599,6.34375 22.316006,14 H 19.848232 L 17.414639,6.34375 h 2.030273 l 1.633789,5.974609 1.640625,-5.974609 z"
+           style="font-weight:bold;fill:#000000"
+           id="path2362" />
+        <path
+           d="m 30.081699,10.404297 q -1.121093,0 -1.565429,0.287109 -0.444336,0.28711 -0.444336,0.984375 0,0.519532 0.307617,0.827149 0.307617,0.307617 0.833984,0.307617 0.792969,0 1.230469,-0.594727 0.4375,-0.601562 0.4375,-1.674804 V 10.404297 Z M 32.870762,9.6318359 V 14 h -1.989258 v -0.854492 q -0.362305,0.505859 -0.929687,0.779297 -0.567383,0.273437 -1.250977,0.273437 -1.305664,0 -2.037109,-0.690429 -0.72461,-0.69043 -0.72461,-1.927735 0,-1.339844 0.868164,-1.9755858 0.868164,-0.6425781 2.686524,-0.6425781 h 1.387695 v -0.334961 q 0,-0.4853515 -0.355469,-0.7314453 -0.348633,-0.2529297 -1.032226,-0.2529297 -0.717774,0 -1.394532,0.1845703 -0.669921,0.1777344 -1.401367,0.5742188 V 6.6923828 q 0.663086,-0.2734375 1.34668,-0.4033203 0.683594,-0.1298828 1.449219,-0.1298828 1.866211,0 2.618164,0.758789 0.758789,0.7587891 0.758789,2.7138672 z"
+           style="font-weight:bold;fill:#000000"
+           id="path2364" />
+        <path
+           d="m 36.757011,12.919922 v 3.992187 H 34.760918 V 6.34375 h 1.996093 v 1.1484375 q 0.314454,-0.6630859 0.827149,-0.9980469 0.512695,-0.3349609 1.203125,-0.3349609 1.3125,0 2.037109,1.0527344 0.72461,1.0527343 0.72461,2.9667969 0,1.941406 -0.738282,2.980469 -0.731445,1.039062 -2.091797,1.039062 -0.615234,0 -1.107421,-0.314453 -0.485352,-0.321289 -0.854493,-0.963867 z m 2.789063,-2.754883 q 0,-1.1074218 -0.369141,-1.7363281 -0.36914,-0.6289062 -1.018554,-0.6289062 -0.649414,0 -1.025391,0.6289062 -0.375977,0.6289063 -0.375977,1.7363281 0,1.107422 0.375977,1.736328 0.375977,0.628906 1.025391,0.628906 0.649414,0 1.018554,-0.628906 0.369141,-0.628906 0.369141,-1.736328 z"
+           style="font-weight:bold;fill:#000000"
+           id="path2366" />
+        <path
+           d="m 48.938721,6.5830078 v 1.75 Q 48.38501,7.9775391 47.783447,7.7998047 47.188721,7.6152344 46.587158,7.6152344 q -0.669922,0 -1.011719,0.1982422 -0.341796,0.1914062 -0.341796,0.5742187 0,0.546875 1.46289,0.8886719 l 0.0752,0.020508 0.574218,0.1367188 q 1.09375,0.2597656 1.59961,0.84082 0.512695,0.574219 0.512695,1.558594 0,1.182617 -0.779297,1.777344 -0.772461,0.58789 -2.331055,0.58789 -0.690429,0 -1.415039,-0.123047 -0.724609,-0.116211 -1.469726,-0.355468 v -1.75 q 0.663086,0.375976 1.346679,0.574218 0.69043,0.198243 1.333008,0.198243 0.704102,0 1.066407,-0.205079 0.362304,-0.205078 0.362304,-0.594726 0,-0.382813 -0.259765,-0.587891 -0.25293,-0.205078 -1.216797,-0.4375 L 45.54126,10.793945 Q 44.392822,10.53418 43.866455,9.9804688 43.340088,9.4267578 43.340088,8.4970703 q 0,-1.1074219 0.799805,-1.7226562 0.799804,-0.6152344 2.249023,-0.6152344 0.649414,0 1.291992,0.109375 0.649414,0.102539 1.257813,0.3144531 z"
+           style="font-weight:bold;fill:#000000"
+           id="path2368" />
+        <path
+           d="M 59.03207,0.84082031 66.428555,9.1464844 59.03207,17.46582 Z"
+           style="fill:#00d7ff"
+           id="path2370" />
+        <path
+           d="m 84.171318,9.6181641 q -0.62207,1.4218749 -1.196289,1.9208989 -0.594727,0.499023 -1.223633,0.499023 -0.984375,-0.05469 -1.763672,-1.004883 L 78.941826,9.7412109 Q 78.68206,9.40625 78.265068,9.4199219 q -0.430664,0 -0.663086,0.4169922 -0.239258,0.4306639 -0.594726,1.3398439 l -1.107422,-0.635742 q 0.211914,-0.6767582 0.478515,-1.1621097 0.266602,-0.4853516 0.574219,-0.7929688 0.635742,-0.6152344 1.319336,-0.6152344 0.594727,-0.00684 1.114258,0.334961 0.526367,0.3349609 0.991211,1.0390625 0.84082,1.2783204 1.380859,1.2783204 0.444336,0 0.738281,-0.505859 0.143555,-0.2597661 0.293946,-0.5742192 0.15039,-0.3144532 0.287109,-0.65625 z"
+           style="font-weight:bold;fill:#ffffff"
+           id="path2372" />
+        <path
+           d="M 92.767593,0.84082031 100.16408,9.1464844 92.767593,17.46582 Z"
+           style="fill:#005f87"
+           id="path2374" />
+        <path
+           d="m 111.24864,3.3632813 h 1.29883 V 9.5224609 L 115.84923,6.34375 h 1.53125 L 114.36583,9.2285156 117.85216,14 h -1.53809 l -2.83008,-3.951172 -0.93652,0.881836 V 14 h -1.29883 z"
+           style="fill:#4ebf22"
+           id="path2376" />
+        <path
+           d="M 119.39715,11.101563 V 6.3574219 h 1.25781 v 4.7441411 q 0,1.032226 0.36231,1.517578 0.36914,0.485351 1.13476,0.485351 0.88867,0 1.36035,-0.62207 0.47168,-0.628906 0.47168,-1.797852 V 6.3574219 h 1.26465 V 14 h -1.26465 v -1.148437 q -0.33496,0.663085 -0.91601,1.004882 -0.57422,0.341797 -1.34668,0.341797 -1.17578,0 -1.75,-0.765625 -0.57422,-0.772461 -0.57422,-2.331054 z"
+           style="fill:#4ebf22"
+           id="path2378" />
+        <path
+           d="m 132.77852,10.178711 q 0,-1.4628907 -0.46485,-2.2080079 -0.46484,-0.7451172 -1.37402,-0.7451172 -0.91601,0 -1.38769,0.7519532 -0.47168,0.7451172 -0.47168,2.2011719 0,1.449219 0.47168,2.201172 0.47168,0.751953 1.38769,0.751953 0.90918,0 1.37402,-0.745117 0.46485,-0.745117 0.46485,-2.208008 z m -3.69824,-2.8574219 q 0.30078,-0.5605469 0.82714,-0.8613282 0.53321,-0.3007812 1.23047,-0.3007812 1.38086,0 2.17383,1.0664062 0.79297,1.0595704 0.79297,2.9257811 0,1.893555 -0.7998,2.973633 -0.79297,1.073242 -2.18067,1.073242 -0.68359,0 -1.20996,-0.293945 -0.51953,-0.300781 -0.83398,-0.868164 V 14 h -1.25782 V 3.3632813 h 1.25782 z"
+           style="fill:#4ebf22"
+           id="path2380" />
+        <path
+           d="m 142.58815,9.5429688 v 0.6152342 h -5.44824 v 0.04102 q -0.0547,1.565429 0.59472,2.249023 0.65625,0.683594 1.84571,0.683594 0.60156,0 1.25781,-0.191406 0.65625,-0.191407 1.40137,-0.581055 v 1.250977 q -0.71778,0.293945 -1.3877,0.4375 -0.66308,0.15039 -1.28515,0.15039 -1.78418,0 -2.78907,-1.066406 -1.00488,-1.073242 -1.00488,-2.953125 0,-1.8320313 0.98438,-2.9257813 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.9912109 0.84765,0.991211 0.90234,2.3925782 z m -1.25781,-0.3691407 q -0.082,-0.7929687 -0.58106,-1.3671875 -0.49218,-0.5810547 -1.42187,-0.5810547 -0.90918,0 -1.49707,0.6015625 -0.58789,0.6015625 -0.64258,1.3535157 z"
+           style="fill:#4ebf22"
+           id="path2382" />
+        <path
+           d="m 150.62383,13.610352 q -0.50586,0.293945 -1.0459,0.4375 -0.53321,0.15039 -1.09375,0.15039 -1.77735,0 -2.78223,-1.066406 -0.99805,-1.066406 -0.99805,-2.953125 0,-1.8867188 0.99805,-2.9531251 1.00488,-1.0664062 2.78223,-1.0664062 0.55371,0 1.08007,0.1435547 0.52637,0.1435547 1.05958,0.4443359 v 1.319336 q -0.49903,-0.444336 -1.00489,-0.6425782 -0.49902,-0.1982422 -1.13476,-0.1982422 -1.18262,0 -1.81836,0.765625 -0.63574,0.765625 -0.63574,2.1875001 0,1.415039 0.63574,2.1875 0.64258,0.765625 1.81836,0.765625 0.65625,0 1.17578,-0.198242 0.51953,-0.205078 0.96387,-0.628906 z"
+           style="fill:#4ebf22"
+           id="path2384" />
+        <path
+           d="M 155.99693,4.1699219 V 6.34375 h 2.85742 v 0.9775391 h -2.85742 v 4.1562499 q 0,0.847656 0.32129,1.182617 0.32129,0.334961 1.1211,0.334961 h 1.41503 V 14 h -1.53808 q -1.41504,0 -1.99609,-0.567383 -0.58106,-0.567383 -0.58106,-1.955078 V 7.3212891 h -2.04394 V 6.34375 h 2.04394 V 4.1699219 Z"
+           style="fill:#4ebf22"
+           id="path2386" />
+        <path
+           d="m 165.14349,11.231445 q 0,0.847657 0.30762,1.278321 0.31445,0.430664 0.92285,0.430664 h 1.46973 V 14 h -1.59277 q -1.12793,0 -1.75,-0.717773 -0.61524,-0.72461 -0.61524,-2.050782 V 4.3066406 h -2.0166 v -0.984375 h 3.27441 z"
+           style="fill:#4ebf22"
+           id="path2388" />
+        <path
+           d="m 182.96144,10.110352 q 0,-1.4150395 -0.46484,-2.1464848 -0.45801,-0.7382813 -1.33985,-0.7382813 -0.92285,0 -1.4082,0.7382813 -0.48535,0.7314453 -0.48535,2.1464848 0,1.415039 0.48535,2.160156 0.49219,0.738281 1.42188,0.738281 0.86816,0 1.32617,-0.745117 0.46484,-0.745117 0.46484,-2.15332 z m 1.25781,3.397461 q 0,1.722656 -0.81347,2.611328 -0.81348,0.888671 -2.39258,0.888671 -0.51953,0 -1.08692,-0.0957 -0.56738,-0.0957 -1.13476,-0.280273 v -1.244141 q 0.66992,0.314453 1.2168,0.464844 0.54687,0.150391 1.00488,0.150391 1.01855,0 1.4834,-0.553711 0.46484,-0.553711 0.46484,-1.756836 v -0.05469 -0.854492 q -0.30078,0.642578 -0.82031,0.957031 -0.51953,0.314454 -1.26465,0.314454 -1.33984,0 -2.13965,-1.073243 -0.7998,-1.073242 -0.7998,-2.871093 0,-1.8046879 0.7998,-2.8779301 0.79981,-1.0732422 2.13965,-1.0732422 0.73828,0 1.25098,0.2939453 0.51269,0.2939453 0.83398,0.9091797 v -0.991211 h 1.25781 z"
+           id="path2390" />
+        <path
+           d="m 193.19144,9.5429688 v 0.6152342 h -5.44825 v 0.04102 q -0.0547,1.565429 0.59473,2.249023 0.65625,0.683594 1.8457,0.683594 0.60157,0 1.25782,-0.191406 0.65625,-0.191407 1.40136,-0.581055 v 1.250977 q -0.71777,0.293945 -1.38769,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.066406 -1.00488,-1.073242 -1.00488,-2.953125 0,-1.8320313 0.98437,-2.9257813 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.9912109 0.84766,0.991211 0.90235,2.3925782 z m -1.25782,-0.3691407 q -0.082,-0.7929687 -0.58105,-1.3671875 -0.49219,-0.5810547 -1.42188,-0.5810547 -0.90918,0 -1.49707,0.6015625 -0.58789,0.6015625 -0.64257,1.3535157 z"
+           id="path2392" />
+        <path
+           d="M 198.16122,4.1699219 V 6.34375 h 2.85743 v 0.9775391 h -2.85743 v 4.1562499 q 0,0.847656 0.32129,1.182617 0.32129,0.334961 1.1211,0.334961 h 1.41504 V 14 h -1.53809 q -1.41504,0 -1.99609,-0.567383 -0.58106,-0.567383 -0.58106,-1.955078 V 7.3212891 h -2.04394 V 6.34375 h 2.04394 V 4.1699219 Z"
+           id="path2394" />
+        <path
+           d="M 218.0163,9.2558594 V 14 h -1.26465 V 9.2558594 q 0,-1.0322266 -0.36231,-1.5175782 -0.3623,-0.4853515 -1.13476,-0.4853515 -0.88184,0 -1.36035,0.6289062 -0.47168,0.6220704 -0.47168,1.7910157 V 14 h -1.25782 V 6.34375 h 1.25782 v 1.1484375 q 0.33496,-0.65625 0.90918,-0.9912109 0.57421,-0.3417969 1.36035,-0.3417969 1.16894,0 1.74316,0.7724609 0.58106,0.765625 0.58106,2.3242188 z"
+           id="path2396" />
+        <path
+           d="m 223.48166,7.2255859 q -0.95703,0 -1.44922,0.7451172 -0.49219,0.7451172 -0.49219,2.2080079 0,1.456055 0.49219,2.208008 0.49219,0.745117 1.44922,0.745117 0.96387,0 1.45605,-0.745117 0.49219,-0.751953 0.49219,-2.208008 0,-1.4628907 -0.49219,-2.2080079 -0.49218,-0.7451172 -1.45605,-0.7451172 z m 0,-1.0664062 q 1.59277,0 2.43359,1.0322265 0.84766,1.0322266 0.84766,2.9873048 0,1.961914 -0.84082,2.994141 -0.84082,1.02539 -2.44043,1.02539 -1.59277,0 -2.43359,-1.02539 -0.84083,-1.032227 -0.84083,-2.994141 0,-1.9550782 0.84083,-2.9873048 0.84082,-1.0322265 2.43359,-1.0322265 z"
+           id="path2398" />
+        <path
+           d="M 233.56471,7.3212891 V 3.3632813 h 1.25782 V 14 h -1.25782 v -0.963867 q -0.31445,0.567383 -0.84082,0.868164 -0.51953,0.293945 -1.20312,0.293945 -1.3877,0 -2.1875,-1.073242 -0.79297,-1.080078 -0.79297,-2.973633 0,-1.8662107 0.7998,-2.9257811 0.79981,-1.0664062 2.18067,-1.0664062 0.69043,0 1.21679,0.3007812 0.52637,0.2939453 0.82715,0.8613282 z m -3.69824,2.8574219 q 0,1.462891 0.46484,2.208008 0.46485,0.745117 1.37403,0.745117 0.90918,0 1.38086,-0.751953 0.47851,-0.751953 0.47851,-2.201172 0,-1.4560547 -0.47851,-2.2011719 -0.47168,-0.7519532 -1.38086,-0.7519532 -0.90918,0 -1.37403,0.7451172 -0.46484,0.7451172 -0.46484,2.2080079 z"
+           id="path2400" />
+        <path
+           d="m 243.78453,9.5429688 v 0.6152342 h -5.44824 v 0.04102 q -0.0547,1.565429 0.59473,2.249023 0.65625,0.683594 1.8457,0.683594 0.60156,0 1.25781,-0.191406 0.65625,-0.191407 1.40137,-0.581055 v 1.250977 q -0.71778,0.293945 -1.3877,0.4375 -0.66308,0.15039 -1.28515,0.15039 -1.78418,0 -2.78907,-1.066406 -1.00488,-1.073242 -1.00488,-2.953125 0,-1.8320313 0.98438,-2.9257813 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.9912109 0.84765,0.991211 0.90234,2.3925782 z m -1.25781,-0.3691407 q -0.082,-0.7929687 -0.58106,-1.3671875 -0.49218,-0.5810547 -1.42187,-0.5810547 -0.90918,0 -1.49707,0.6015625 -0.58789,0.6015625 -0.64258,1.3535157 z"
+           id="path2402" />
+        <path
+           d="M 919.39752,17.46582 911.9942,9.1464844 919.39752,0.84082031 Z"
+           style="fill:#262626"
+           id="path2404" />
+        <path
+           d="m 934.91864,13.610352 q -0.50586,0.293945 -1.0459,0.4375 -0.5332,0.15039 -1.09375,0.15039 -1.77734,0 -2.78222,-1.066406 -0.99805,-1.066406 -0.99805,-2.953125 0,-1.8867188 0.99805,-2.9531251 1.00488,-1.0664062 2.78222,-1.0664062 0.55371,0 1.08008,0.1435547 0.52637,0.1435547 1.05957,0.4443359 v 1.319336 q -0.49902,-0.444336 -1.00488,-0.6425782 -0.49903,-0.1982422 -1.13477,-0.1982422 -1.18262,0 -1.81836,0.765625 -0.63574,0.765625 -0.63574,2.1875001 0,1.415039 0.63574,2.1875 0.64258,0.765625 1.81836,0.765625 0.65625,0 1.17578,-0.198242 0.51953,-0.205078 0.96387,-0.628906 z"
+           style="fill:#af5fd7"
+           id="path2406" />
+        <path
+           d="m 940.90356,10.151367 h -0.41699 q -1.10058,0 -1.66113,0.389649 -0.55371,0.382812 -0.55371,1.148437 0,0.69043 0.41699,1.073242 0.41699,0.382813 1.15527,0.382813 1.03907,0 1.63379,-0.717774 0.59473,-0.724609 0.60157,-1.996093 v -0.280274 z m 2.44043,-0.5195311 V 14 h -1.26464 v -1.134766 q -0.40332,0.683594 -1.01856,1.011719 -0.6084,0.321289 -1.4834,0.321289 -1.16894,0 -1.86621,-0.65625 -0.69726,-0.663086 -0.69726,-1.770508 0,-1.27832 0.85449,-1.9414059 0.86133,-0.6630859 2.52246,-0.6630859 h 1.68848 V 8.96875 q -0.007,-0.9160156 -0.46485,-1.3261719 -0.45801,-0.4169922 -1.46289,-0.4169922 -0.64258,0 -1.29883,0.1845703 -0.65625,0.1845704 -1.27832,0.5400391 V 6.6923828 q 0.69727,-0.2666016 1.33301,-0.3964844 0.64258,-0.1367187 1.24414,-0.1367187 0.9502,0 1.62012,0.2802734 0.67676,0.2802735 1.09375,0.8408203 0.25976,0.3417969 0.36914,0.8476563 0.10937,0.4990234 0.10937,1.5039062 z"
+           style="fill:#af5fd7"
+           id="path2408" />
+        <path
+           d="M 948.73071,4.1699219 V 6.34375 h 2.85742 v 0.9775391 h -2.85742 v 4.1562499 q 0,0.847656 0.32129,1.182617 0.32129,0.334961 1.1211,0.334961 h 1.41503 V 14 h -1.53808 q -1.41504,0 -1.99609,-0.567383 -0.58106,-0.567383 -0.58106,-1.955078 V 7.3212891 h -2.04394 V 6.34375 h 2.04394 V 4.1699219 Z"
+           style="fill:#af5fd7"
+           id="path2410" />
+        <path
+           d="m 960.21527,13.610352 q -0.50586,0.293945 -1.0459,0.4375 -0.5332,0.15039 -1.09375,0.15039 -1.77734,0 -2.78222,-1.066406 -0.99805,-1.066406 -0.99805,-2.953125 0,-1.8867188 0.99805,-2.9531251 1.00488,-1.0664062 2.78222,-1.0664062 0.55371,0 1.08008,0.1435547 0.52637,0.1435547 1.05957,0.4443359 v 1.319336 q -0.49902,-0.444336 -1.00488,-0.6425782 -0.49903,-0.1982422 -1.13477,-0.1982422 -1.18261,0 -1.81836,0.765625 -0.63574,0.765625 -0.63574,2.1875001 0,1.415039 0.63574,2.1875 0.64258,0.765625 1.81836,0.765625 0.65625,0 1.17578,-0.198242 0.51954,-0.205078 0.96387,-0.628906 z"
+           style="fill:#af5fd7"
+           id="path2412" />
+        <path
+           d="M 968.58582,9.2558594 V 14 h -1.26465 V 9.2558594 q 0,-1.0322266 -0.36231,-1.5175782 -0.3623,-0.4853515 -1.13476,-0.4853515 -0.88184,0 -1.36035,0.6289062 -0.47168,0.6220704 -0.47168,1.7910157 V 14 h -1.25782 V 3.3632813 h 1.25782 v 4.1289062 q 0.33496,-0.65625 0.90918,-0.9912109 0.57421,-0.3417969 1.36035,-0.3417969 1.16894,0 1.74316,0.7724609 0.58106,0.765625 0.58106,2.3242188 z"
+           style="fill:#af5fd7"
+           id="path2414" />
+        <path
+           d="m 974.62891,10.151367 h -0.417 q -1.10058,0 -1.66113,0.389649 -0.55371,0.382812 -0.55371,1.148437 0,0.69043 0.41699,1.073242 0.41699,0.382813 1.15528,0.382813 1.03906,0 1.63378,-0.717774 0.59473,-0.724609 0.60157,-1.996093 v -0.280274 z m 2.44043,-0.5195311 V 14 h -1.26465 v -1.134766 q -0.40332,0.683594 -1.01856,1.011719 -0.6084,0.321289 -1.4834,0.321289 -1.16894,0 -1.86621,-0.65625 -0.69726,-0.663086 -0.69726,-1.770508 0,-1.27832 0.85449,-1.9414059 0.86133,-0.6630859 2.52246,-0.6630859 h 1.68848 V 8.96875 q -0.007,-0.9160156 -0.46485,-1.3261719 -0.458,-0.4169922 -1.46289,-0.4169922 -0.64258,0 -1.29883,0.1845703 -0.65625,0.1845704 -1.27832,0.5400391 V 6.6923828 q 0.69727,-0.2666016 1.33301,-0.3964844 0.64258,-0.1367187 1.24414,-0.1367187 0.9502,0 1.62012,0.2802734 0.67676,0.2802735 1.09375,0.8408203 0.25977,0.3417969 0.36914,0.8476563 0.10938,0.4990234 0.10938,1.5039062 z"
+           style="fill:#af5fd7"
+           id="path2416" />
+        <path
+           d="m 983.18408,11.231445 q 0,0.847657 0.30762,1.278321 0.31445,0.430664 0.92285,0.430664 h 1.46973 V 14 h -1.59278 q -1.12793,0 -1.75,-0.717773 -0.61523,-0.72461 -0.61523,-2.050782 V 4.3066406 h -2.0166 v -0.984375 h 3.27441 z"
+           style="fill:#af5fd7"
+           id="path2418" />
+        <path
+           d="m 991.61285,11.231445 q 0,0.847657 0.30762,1.278321 0.31445,0.430664 0.92285,0.430664 h 1.46973 V 14 h -1.59277 q -1.12793,0 -1.75,-0.717773 -0.61524,-0.72461 -0.61524,-2.050782 V 4.3066406 h -2.0166 v -0.984375 h 3.27441 z"
+           style="fill:#af5fd7"
+           id="path2420" />
+        <path
+           d="M 0.12988281,23.429298 H 2.0166016 l 3.9921875,8.374024 V 23.429298 H 7.4785156 V 33.601173 H 5.5917969 L 1.5996094,25.22715 v 8.374023 H 0.12988281 Z"
+           id="path2422" />
+        <path
+           d="m 12.639716,24.611916 -1.456055,5.222656 h 2.91211 z m -0.833984,-1.216797 h 1.674804 l 3.124024,10.206054 h -1.428711 l -0.751953,-2.659179 h -3.575195 l -0.738282,2.659179 H 8.6817083 Z"
+           id="path2424" />
+        <path
+           d="m 17.113857,23.429298 h 1.845703 l 1.763672,5.181641 1.777344,-5.181641 h 1.852539 v 10.171875 h -1.27832 v -8.989257 l -1.81836,5.359375 h -1.045898 l -1.825195,-5.359375 v 8.989257 h -1.271485 z"
+           id="path2426" />
+        <path
+           d="m 26.643223,23.395119 h 6.05664 v 1.162109 h -4.675781 v 2.748047 h 4.470703 v 1.162109 h -4.470703 v 3.97168 h 4.805664 v 1.162109 h -6.186523 z"
+           id="path2428" />
+        <path
+           d="m 175.58539,23.743752 v 1.401367 q -0.62891,-0.403321 -1.26465,-0.608399 -0.62891,-0.205078 -1.27148,-0.205078 -0.97754,0 -1.54493,0.458008 -0.56738,0.451172 -0.56738,1.223633 0,0.676758 0.36914,1.032226 0.37598,0.355469 1.39453,0.594727 l 0.72461,0.164062 q 1.43555,0.334961 2.0918,1.052735 0.65625,0.717773 0.65625,1.955078 0,1.456055 -0.90234,2.22168 -0.90235,0.765625 -2.625,0.765625 -0.71778,0 -1.44239,-0.157227 -0.72461,-0.150391 -1.45605,-0.458008 v -1.469726 q 0.78613,0.499023 1.4834,0.731445 0.7041,0.232422 1.41504,0.232422 1.04589,0 1.62695,-0.464844 0.58105,-0.47168 0.58105,-1.3125 0,-0.765625 -0.40332,-1.168945 -0.39648,-0.403321 -1.38769,-0.622071 l -0.73828,-0.170898 q -1.42188,-0.321289 -2.06446,-0.970703 -0.64258,-0.649414 -0.64258,-1.743164 0,-1.367188 0.91602,-2.1875 0.92285,-0.827149 2.44727,-0.827149 0.58789,0 1.2373,0.136719 0.64941,0.129883 1.36719,0.396485 z"
+           id="path2430" />
+        <path
+           d="m 177.4175,23.395119 h 7.78613 v 1.162109 h -3.19238 v 9.043945 h -1.3877 v -9.043945 h -3.20605 z"
+           id="path2432" />
+        <path
+           d="m 189.74612,24.611916 -1.45605,5.222656 h 2.91211 z m -0.83398,-1.216797 h 1.6748 l 3.12403,10.206054 h -1.42871 l -0.75196,-2.659179 h -3.57519 l -0.73828,2.659179 h -1.42871 z"
+           id="path2434" />
+        <path
+           d="m 194.28525,23.395119 h 7.78613 v 1.162109 H 198.879 v 9.043945 h -1.3877 v -9.043945 h -3.20605 z"
+           id="path2436" />
+        <path
+           d="m 203.40784,29.684181 v -6.289062 h 1.38769 v 6.917968 q 0,0.745118 0.041,1.066407 0.041,0.314453 0.14355,0.485351 0.21875,0.403321 0.62891,0.608399 0.41699,0.205078 1.00488,0.205078 0.59473,0 1.00488,-0.205078 0.41016,-0.205078 0.63575,-0.608399 0.10254,-0.170898 0.14355,-0.485351 0.041,-0.314453 0.041,-1.052735 v -6.93164 h 1.38086 v 6.289062 q 0,1.56543 -0.19825,2.228516 -0.1914,0.65625 -0.66992,1.086914 -0.45117,0.40332 -1.03222,0.601562 -0.58106,0.198243 -1.30567,0.198243 -0.71777,0 -1.29883,-0.198243 -0.58105,-0.198242 -1.03906,-0.601562 -0.47168,-0.423828 -0.66992,-1.09375 -0.19824,-0.676758 -0.19824,-2.22168 z"
+           id="path2438" />
+        <path
+           d="m 217.74969,23.743752 v 1.401367 q -0.6289,-0.403321 -1.26464,-0.608399 -0.62891,-0.205078 -1.27149,-0.205078 -0.97754,0 -1.54492,0.458008 -0.56738,0.451172 -0.56738,1.223633 0,0.676758 0.36914,1.032226 0.37597,0.355469 1.39453,0.594727 l 0.72461,0.164062 q 1.43555,0.334961 2.0918,1.052735 0.65625,0.717773 0.65625,1.955078 0,1.456055 -0.90235,2.22168 -0.90234,0.765625 -2.625,0.765625 -0.71777,0 -1.44238,-0.157227 -0.72461,-0.150391 -1.45606,-0.458008 v -1.469726 q 0.78614,0.499023 1.4834,0.731445 0.7041,0.232422 1.41504,0.232422 1.0459,0 1.62695,-0.464844 0.58106,-0.47168 0.58106,-1.3125 0,-0.765625 -0.40332,-1.168945 -0.39649,-0.403321 -1.3877,-0.622071 l -0.73828,-0.170898 q -1.42187,-0.321289 -2.06445,-0.970703 -0.64258,-0.649414 -0.64258,-1.743164 0,-1.367188 0.91602,-2.1875 0.92285,-0.827149 2.44726,-0.827149 0.58789,0 1.23731,0.136719 0.64941,0.129883 1.36718,0.396485 z"
+           id="path2440" />
+        <path
+           d="m 249.76257,28.781837 q 0.53321,0.136719 0.90918,0.519532 0.37598,0.375976 0.93653,1.510742 l 1.38769,2.789062 h -1.4834 l -1.21679,-2.577148 q -0.52637,-1.100586 -0.9502,-1.415039 -0.41699,-0.321289 -1.09375,-0.321289 h -1.31933 v 4.313476 h -1.3877 V 23.395119 h 2.84375 q 1.68164,0 2.57715,0.758789 0.89551,0.758789 0.89551,2.194336 0,1.011718 -0.55371,1.654297 -0.54688,0.635742 -1.54493,0.779296 z m -2.83007,-4.251953 v 3.623047 h 1.51074 q 0.99121,0 1.47656,-0.444336 0.48535,-0.444336 0.48535,-1.360351 0,-0.881836 -0.51953,-1.34668 -0.5127,-0.47168 -1.49707,-0.47168 z"
+           id="path2442" />
+        <path
+           d="m 259.18256,28.5084 q 0,-2.249023 -0.46485,-3.212891 -0.45801,-0.963867 -1.51074,-0.963867 -1.0459,0 -1.51074,0.963867 -0.45801,0.963868 -0.45801,3.212891 0,2.242187 0.45801,3.206055 0.46484,0.963867 1.51074,0.963867 1.05273,0 1.51074,-0.957031 0.46485,-0.963868 0.46485,-3.212891 z m 1.44238,0 q 0,2.666016 -0.84766,3.978516 -0.84082,1.3125 -2.57031,1.3125 -1.72949,0 -2.57031,-1.305664 -0.84082,-1.305665 -0.84082,-3.985352 0,-2.672852 0.84082,-3.985352 0.84765,-1.3125 2.57031,-1.3125 1.72949,0 2.57031,1.3125 0.84766,1.3125 0.84766,3.985352 z"
+           id="path2444" />
+        <path
+           d="m 262.90475,23.395119 h 1.3877 v 9.043945 h 4.92871 v 1.162109 h -6.31641 z"
+           id="path2446" />
+        <path
+           d="m 271.21048,23.395119 h 6.05664 v 1.162109 h -4.67578 v 2.748047 h 4.4707 v 1.162109 h -4.4707 v 3.97168 h 4.80566 v 1.162109 h -6.18652 z"
+           id="path2448" />
+        <path
+           d="m 285.22076,23.743752 v 1.401367 q -0.6289,-0.403321 -1.26464,-0.608399 -0.62891,-0.205078 -1.27149,-0.205078 -0.97754,0 -1.54492,0.458008 -0.56738,0.451172 -0.56738,1.223633 0,0.676758 0.36914,1.032226 0.37597,0.355469 1.39453,0.594727 l 0.72461,0.164062 q 1.43554,0.334961 2.09179,1.052735 0.65625,0.717773 0.65625,1.955078 0,1.456055 -0.90234,2.22168 -0.90234,0.765625 -2.625,0.765625 -0.71777,0 -1.44238,-0.157227 -0.72461,-0.150391 -1.45606,-0.458008 v -1.469726 q 0.78614,0.499023 1.4834,0.731445 0.7041,0.232422 1.41504,0.232422 1.0459,0 1.62695,-0.464844 0.58106,-0.47168 0.58106,-1.3125 0,-0.765625 -0.40332,-1.168945 -0.39649,-0.403321 -1.3877,-0.622071 l -0.73828,-0.170898 q -1.42187,-0.321289 -2.06445,-0.970703 -0.64258,-0.649414 -0.64258,-1.743164 0,-1.367188 0.91602,-2.1875 0.92285,-0.827149 2.44726,-0.827149 0.58789,0 1.23731,0.136719 0.64941,0.129883 1.36718,0.396485 z"
+           id="path2450" />
+        <path
+           d="m 324.67804,24.611916 -1.45606,5.222656 h 2.91211 z m -0.83398,-1.216797 h 1.6748 l 3.12402,10.206054 h -1.42871 l -0.75195,-2.659179 h -3.5752 l -0.73828,2.659179 h -1.42871 z"
+           id="path2452" />
+        <path
+           d="m 336.44275,32.760353 q -0.55371,0.512695 -1.25098,0.779297 -0.69043,0.259766 -1.49707,0.259766 -1.9414,0 -3.02148,-1.387696 -1.08008,-1.394531 -1.08008,-3.90332 0,-2.501953 1.09375,-3.896484 1.09375,-1.401368 3.04199,-1.401368 0.64258,0 1.23047,0.184571 0.58789,0.177734 1.13477,0.546875 v 1.415039 q -0.55371,-0.526367 -1.13477,-0.772461 -0.58105,-0.25293 -1.23047,-0.25293 -1.34668,0 -2.02344,1.045899 -0.66992,1.039062 -0.66992,3.130859 0,2.125977 0.64942,3.151367 0.65625,1.018555 2.00976,1.018555 0.45801,0 0.79981,-0.102539 0.34863,-0.109375 0.6289,-0.334961 v -2.741211 h -1.4834 v -1.134766 h 2.80274 z"
+           id="path2454" />
+        <path
+           d="m 338.68152,23.395119 h 6.05664 v 1.162109 h -4.67578 v 2.748047 h 4.4707 v 1.162109 h -4.4707 v 3.97168 h 4.80566 v 1.162109 h -6.18652 z"
+           id="path2456" />
+        <path
+           d="m 375.28131,32.439064 2.39942,-9.043945 h 1.42871 l -2.98731,10.206054 h -1.6748 l -2.98731,-10.206054 h 1.42871 z"
+           id="path2458" />
+        <path
+           d="m 380.84583,23.395119 h 6.05664 v 1.162109 h -4.67579 v 2.748047 h 4.47071 v 1.162109 h -4.47071 v 3.97168 h 4.80567 v 1.162109 h -6.18652 z"
+           id="path2460" />
+        <path
+           d="m 393.13345,28.781837 q 0.53321,0.136719 0.90918,0.519532 0.37598,0.375976 0.93653,1.510742 l 1.38769,2.789062 h -1.4834 l -1.21679,-2.577148 q -0.52637,-1.100586 -0.9502,-1.415039 -0.41699,-0.321289 -1.09375,-0.321289 h -1.31933 v 4.313476 h -1.3877 V 23.395119 h 2.84375 q 1.68164,0 2.57715,0.758789 0.89551,0.758789 0.89551,2.194336 0,1.011718 -0.55371,1.654297 -0.54688,0.635742 -1.54493,0.779296 z m -2.83007,-4.251953 v 3.623047 h 1.51074 q 0.99121,0 1.47656,-0.444336 0.48535,-0.444336 0.48535,-1.360351 0,-0.881836 -0.51953,-1.34668 -0.5127,-0.47168 -1.49707,-0.47168 z"
+           id="path2462" />
+        <path
+           d="m 403.28488,23.743752 v 1.401367 q -0.6289,-0.403321 -1.26465,-0.608399 -0.6289,-0.205078 -1.27148,-0.205078 -0.97754,0 -1.54492,0.458008 -0.56739,0.451172 -0.56739,1.223633 0,0.676758 0.36914,1.032226 0.37598,0.355469 1.39454,0.594727 l 0.72461,0.164062 q 1.43554,0.334961 2.09179,1.052735 0.65625,0.717773 0.65625,1.955078 0,1.456055 -0.90234,2.22168 -0.90235,0.765625 -2.625,0.765625 -0.71777,0 -1.44238,-0.157227 -0.72461,-0.150391 -1.45606,-0.458008 v -1.469726 q 0.78613,0.499023 1.4834,0.731445 0.7041,0.232422 1.41504,0.232422 1.0459,0 1.62695,-0.464844 0.58106,-0.47168 0.58106,-1.3125 0,-0.765625 -0.40332,-1.168945 -0.39649,-0.403321 -1.3877,-0.622071 l -0.73828,-0.170898 q -1.42188,-0.321289 -2.06445,-0.970703 -0.64258,-0.649414 -0.64258,-1.743164 0,-1.367188 0.91601,-2.1875 0.92286,-0.827149 2.44727,-0.827149 0.58789,0 1.2373,0.136719 0.64942,0.129883 1.36719,0.396485 z"
+           id="path2464" />
+        <path
+           d="m 406.16971,23.395119 h 5.66699 v 1.162109 h -2.13965 v 7.881836 h 2.13965 v 1.162109 h -5.66699 v -1.162109 h 2.13965 v -7.881836 h -2.13965 z"
+           id="path2466" />
+        <path
+           d="m 419.4212,28.5084 q 0,-2.249023 -0.46484,-3.212891 -0.45801,-0.963867 -1.51074,-0.963867 -1.0459,0 -1.51074,0.963867 -0.45801,0.963868 -0.45801,3.212891 0,2.242187 0.45801,3.206055 0.46484,0.963867 1.51074,0.963867 1.05273,0 1.51074,-0.957031 0.46484,-0.963868 0.46484,-3.212891 z m 1.44239,0 q 0,2.666016 -0.84766,3.978516 -0.84082,1.3125 -2.57031,1.3125 -1.72949,0 -2.57031,-1.305664 -0.84083,-1.305665 -0.84083,-3.985352 0,-2.672852 0.84083,-3.985352 0.84765,-1.3125 2.57031,-1.3125 1.72949,0 2.57031,1.3125 0.84766,1.3125 0.84766,3.985352 z"
+           id="path2468" />
+        <path
+           d="m 421.79333,23.429298 h 1.88672 l 3.99219,8.374024 v -8.374024 h 1.46973 v 10.171875 h -1.88672 l -3.99219,-8.374023 v 8.374023 h -1.46973 z"
+           id="path2470" />
+        <path
+           d="m 4.0742187,48.67696 q 0.881836,0 1.3808594,-0.635742 0.5058594,-0.635742 0.5058594,-1.756836 0,-1.121094 -0.5058594,-1.756836 -0.4990234,-0.635742 -1.3808594,-0.635742 -0.9160156,0 -1.3808593,0.608398 -0.4648438,0.601563 -0.4648438,1.78418 0,1.189453 0.4580078,1.791015 0.4648438,0.601563 1.3876953,0.601563 z m -2.4609375,4.313477 v -1.271485 q 0.4306641,0.25293 0.9160157,0.389649 0.4853515,0.129882 1.0117187,0.129882 1.3125,0 1.9824219,-0.984375 0.6767578,-0.991211 0.6767578,-2.912109 -0.3212891,0.683594 -0.9023437,1.052734 -0.5810547,0.362305 -1.3330078,0.362305 -1.4765625,0 -2.2900391,-0.90918 -0.80664064,-0.909179 -0.80664064,-2.577148 0,-1.647461 0.82714844,-2.549805 0.8339844,-0.909179 2.3515625,-0.909179 1.7773437,0 2.6044922,1.27832 0.8271484,1.27832 0.8271484,4.019531 0,2.577149 -0.9980469,3.9375 -0.9912109,1.353516 -2.8847656,1.353516 -0.4990234,0 -1.0048828,-0.109375 -0.5058594,-0.102539 -0.9775391,-0.300781 z"
+           id="path2472" />
+        <path
+           d="m 13.453193,44.254108 -3.219727,5.393555 h 3.219727 z m -0.225586,-1.257812 h 1.599609 v 6.651367 h 1.360352 v 1.121094 h -1.360352 v 2.433594 H 13.453193 V 50.768757 H 9.1260443 v -1.305664 z"
+           id="path2474" />
+        <path
+           d="m 17.565029,48.253132 h 7.246094 v 1.155273 h -7.246094 z"
+           id="path2476" />
+        <path
+           d="m 26.711582,42.996296 h 5.167969 v 1.162109 h -3.910156 v 2.508789 q 0.293945,-0.109375 0.58789,-0.157226 0.300782,-0.05469 0.601563,-0.05469 1.585937,0 2.515625,0.936524 0.929687,0.936523 0.929687,2.536133 0,1.613281 -0.977539,2.542968 -0.970703,0.929688 -2.659179,0.929688 -0.813477,0 -1.490235,-0.109375 -0.669922,-0.109375 -1.203125,-0.328125 v -1.401367 q 0.628906,0.341796 1.264649,0.512695 0.635742,0.164062 1.298828,0.164062 1.141601,0 1.756836,-0.601562 0.62207,-0.601563 0.62207,-1.708984 0,-1.09375 -0.642578,-1.702149 -0.635742,-0.608398 -1.777344,-0.608398 -0.553711,0 -1.080078,0.129882 -0.526367,0.123047 -1.004883,0.375977 z"
+           id="path2478" />
+        <path
+           d="m 34.685722,42.996296 h 6.425782 v 0.587891 l -3.650391,9.618164 H 36.01873 l 3.554688,-9.043946 h -4.887696 z"
+           id="path2480" />
+        <path
+           d="m 42.861572,48.253132 h 7.246094 v 1.155273 h -7.246094 z"
+           id="path2482" />
+        <path
+           d="M 55.402122,49.353718 H 54.98513 q -1.100586,0 -1.661133,0.389648 -0.55371,0.382813 -0.55371,1.148438 0,0.690429 0.416992,1.073242 0.416992,0.382812 1.155273,0.382812 1.039063,0 1.633789,-0.717773 0.594727,-0.724609 0.601563,-1.996094 v -0.280273 z m 2.44043,-0.519531 v 4.368164 h -1.264648 v -1.134766 q -0.403321,0.683594 -1.018555,1.011719 -0.608398,0.321289 -1.483398,0.321289 -1.168946,0 -1.866211,-0.65625 -0.697266,-0.663086 -0.697266,-1.770508 0,-1.27832 0.854492,-1.941406 0.861328,-0.663086 2.522461,-0.663086 h 1.688477 v -0.198242 q -0.0068,-0.916016 -0.464844,-1.326172 -0.458008,-0.416992 -1.462891,-0.416992 -0.642578,0 -1.298828,0.18457 -0.65625,0.18457 -1.27832,0.540039 v -1.257813 q 0.697266,-0.266601 1.333008,-0.396484 0.642578,-0.136719 1.24414,-0.136719 0.950196,0 1.620118,0.280274 0.676757,0.280273 1.09375,0.84082 0.259765,0.341797 0.36914,0.847656 0.109375,0.499024 0.109375,1.503907 z"
+           id="path2484" />
+        <path
+           d="m 60.447109,42.996296 h 5.167969 v 1.162109 h -3.910156 v 2.508789 q 0.293945,-0.109375 0.58789,-0.157226 0.300782,-0.05469 0.601563,-0.05469 1.585937,0 2.515625,0.936524 0.929687,0.936523 0.929687,2.536133 0,1.613281 -0.977539,2.542968 -0.970703,0.929688 -2.659179,0.929688 -0.813477,0 -1.490235,-0.109375 -0.669922,-0.109375 -1.203125,-0.328125 v -1.401367 q 0.628906,0.341796 1.264649,0.512695 0.635742,0.164062 1.298828,0.164062 1.141601,0 1.756836,-0.601562 0.62207,-0.601563 0.62207,-1.708984 0,-1.09375 -0.642578,-1.702149 -0.635742,-0.608398 -1.777344,-0.608398 -0.553711,0 -1.080078,0.129882 -0.526367,0.123047 -1.004883,0.375977 z"
+           id="path2486" />
+        <path
+           d="m 68.16832,48.253132 h 7.246093 v 1.155273 H 68.16832 Z"
+           id="path2488" />
+        <path
+           d="m 81.765068,46.52364 v -3.958008 h 1.257813 v 10.636719 h -1.257813 v -0.963868 q -0.314453,0.567383 -0.84082,0.868164 -0.519532,0.293946 -1.203125,0.293946 -1.387696,0 -2.1875,-1.073242 -0.792969,-1.080079 -0.792969,-2.973633 0,-1.866211 0.799805,-2.925781 0.799804,-1.066407 2.180664,-1.066407 0.690429,0 1.216797,0.300782 0.526367,0.293945 0.827148,0.861328 z m -3.698242,2.857422 q 0,1.46289 0.464844,2.208007 0.464843,0.745118 1.374023,0.745118 0.90918,0 1.380859,-0.751954 0.478516,-0.751953 0.478516,-2.201171 0,-1.456055 -0.478516,-2.201172 -0.471679,-0.751953 -1.380859,-0.751953 -0.90918,0 -1.374023,0.745117 -0.464844,0.745117 -0.464844,2.208008 z"
+           id="path2490" />
+        <path
+           d="m 89.633301,47.740437 q 1.004883,0.266601 1.538086,0.950195 0.533203,0.676758 0.533203,1.695312 0,1.408203 -0.950195,2.214844 -0.94336,0.799805 -2.618165,0.799805 -0.704101,0 -1.435546,-0.129883 -0.731446,-0.129883 -1.435547,-0.375977 V 51.52071 q 0.697265,0.362305 1.374023,0.540039 0.676758,0.177734 1.34668,0.177734 1.134765,0 1.743164,-0.512695 0.608398,-0.512695 0.608398,-1.476562 0,-0.888672 -0.608398,-1.408204 -0.608399,-0.526367 -1.647461,-0.526367 H 87.028809 V 47.17989 h 1.052734 q 0.950195,0 1.483398,-0.416993 0.533204,-0.416992 0.533204,-1.162109 0,-0.786133 -0.499024,-1.203125 -0.492187,-0.423828 -1.408203,-0.423828 -0.608398,0 -1.257813,0.136719 -0.649414,0.136718 -1.360351,0.410156 v -1.271484 q 0.827148,-0.21875 1.469726,-0.328125 0.649415,-0.109375 1.148438,-0.109375 1.490234,0 2.378906,0.751953 0.895508,0.745117 0.895508,1.982422 0,0.84082 -0.47168,1.401367 -0.464843,0.560547 -1.360351,0.792969 z"
+           id="path2492" />
+        <path
+           d="m 93.464859,48.253132 h 7.246091 v 1.155273 h -7.246091 z"
+           id="path2494" />
+        <path
+           d="m 107.06161,46.52364 v -3.958008 h 1.25781 v 10.636719 h -1.25781 v -0.963868 q -0.31446,0.567383 -0.84082,0.868164 -0.51953,0.293946 -1.20313,0.293946 -1.38769,0 -2.1875,-1.073242 -0.79297,-1.080079 -0.79297,-2.973633 0,-1.866211 0.79981,-2.925781 0.7998,-1.066407 2.18066,-1.066407 0.69043,0 1.2168,0.300782 0.52637,0.293945 0.82715,0.861328 z m -3.69824,2.857422 q 0,1.46289 0.46484,2.208007 0.46484,0.745118 1.37402,0.745118 0.90918,0 1.38086,-0.751954 0.47852,-0.751953 0.47852,-2.201171 0,-1.456055 -0.47852,-2.201172 -0.47168,-0.751953 -1.38086,-0.751953 -0.90918,0 -1.37402,0.745117 -0.46484,0.745117 -0.46484,2.208008 z"
+           id="path2496" />
+        <path
+           d="m 113.70958,48.67696 q 0.88184,0 1.38086,-0.635742 0.50586,-0.635742 0.50586,-1.756836 0,-1.121094 -0.50586,-1.756836 -0.49902,-0.635742 -1.38086,-0.635742 -0.91602,0 -1.38086,0.608398 -0.46484,0.601563 -0.46484,1.78418 0,1.189453 0.458,1.791015 0.46485,0.601563 1.3877,0.601563 z m -2.46094,4.313477 v -1.271485 q 0.43067,0.25293 0.91602,0.389649 0.48535,0.129882 1.01172,0.129882 1.3125,0 1.98242,-0.984375 0.67676,-0.991211 0.67676,-2.912109 -0.32129,0.683594 -0.90235,1.052734 -0.58105,0.362305 -1.33301,0.362305 -1.47656,0 -2.29003,-0.90918 -0.80665,-0.909179 -0.80665,-2.577148 0,-1.647461 0.82715,-2.549805 0.83399,-0.909179 2.35157,-0.909179 1.77734,0 2.60449,1.27832 0.82715,1.27832 0.82715,4.019531 0,2.577149 -0.99805,3.9375 -0.99121,1.353516 -2.88477,1.353516 -0.49902,0 -1.00488,-0.109375 -0.50586,-0.102539 -0.97754,-0.300781 z"
+           id="path2498" />
+        <path
+           d="m 118.76141,48.253132 h 7.24609 v 1.155273 h -7.24609 z"
+           id="path2500" />
+        <path
+           d="m 132.36836,46.52364 v -3.958008 h 1.25781 v 10.636719 h -1.25781 v -0.963868 q -0.31445,0.567383 -0.84082,0.868164 -0.51953,0.293946 -1.20312,0.293946 -1.3877,0 -2.1875,-1.073242 -0.79297,-1.080079 -0.79297,-2.973633 0,-1.866211 0.7998,-2.925781 0.79981,-1.066407 2.18067,-1.066407 0.69043,0 1.21679,0.300782 0.52637,0.293945 0.82715,0.861328 z m -3.69824,2.857422 q 0,1.46289 0.46484,2.208007 0.46485,0.745118 1.37403,0.745118 0.90918,0 1.38086,-0.751954 0.47851,-0.751953 0.47851,-2.201171 0,-1.456055 -0.47851,-2.201172 -0.47168,-0.751953 -1.38086,-0.751953 -0.90918,0 -1.37403,0.745117 -0.46484,0.745117 -0.46484,2.208008 z"
+           id="path2502" />
+        <path
+           d="m 142.58815,48.745319 v 0.615235 h -5.44824 v 0.04102 q -0.0547,1.56543 0.59472,2.249024 0.65625,0.683594 1.84571,0.683594 0.60156,0 1.25781,-0.191407 0.65625,-0.191406 1.40137,-0.581054 v 1.250976 q -0.71778,0.293945 -1.3877,0.4375 -0.66308,0.150391 -1.28515,0.150391 -1.78418,0 -2.78907,-1.066406 -1.00488,-1.073243 -1.00488,-2.953125 0,-1.832032 0.98438,-2.925782 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.991211 0.84765,0.991211 0.90234,2.392578 z m -1.25781,-0.36914 q -0.082,-0.792969 -0.58106,-1.367188 -0.49218,-0.581054 -1.42187,-0.581054 -0.90918,0 -1.49707,0.601562 -0.58789,0.601563 -0.64258,1.353516 z"
+           id="path2504" />
+        <path
+           d="m 173.86273,48.383015 q 0.53321,0.136718 0.90918,0.519531 0.37598,0.375976 0.93653,1.510742 l 1.38769,2.789063 h -1.4834 l -1.21679,-2.577149 q -0.52637,-1.100586 -0.9502,-1.415039 -0.41699,-0.321289 -1.09375,-0.321289 h -1.31934 v 4.313477 h -1.38769 V 42.996296 h 2.84375 q 1.68164,0 2.57715,0.758789 0.8955,0.758789 0.8955,2.194336 0,1.011719 -0.55371,1.654297 -0.54687,0.635742 -1.54492,0.779297 z m -2.83008,-4.251953 v 3.623046 h 1.51075 q 0.99121,0 1.47656,-0.444336 0.48535,-0.444335 0.48535,-1.360351 0,-0.881836 -0.51953,-1.34668 -0.5127,-0.471679 -1.49707,-0.471679 z"
+           id="path2506" />
+        <path
+           d="m 184.75246,48.745319 v 0.615235 h -5.44825 v 0.04102 q -0.0547,1.56543 0.59473,2.249024 0.65625,0.683594 1.8457,0.683594 0.60157,0 1.25782,-0.191407 0.65625,-0.191406 1.40136,-0.581054 v 1.250976 q -0.71777,0.293945 -1.38769,0.4375 -0.66309,0.150391 -1.28516,0.150391 -1.78418,0 -2.78906,-1.066406 -1.00488,-1.073243 -1.00488,-2.953125 0,-1.832032 0.98437,-2.925782 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.991211 0.84766,0.991211 0.90235,2.392578 z m -1.25782,-0.36914 q -0.082,-0.792969 -0.58105,-1.367188 -0.49219,-0.581054 -1.42188,-0.581054 -0.90918,0 -1.49707,0.601562 -0.58789,0.601563 -0.64257,1.353516 z"
+           id="path2508" />
+        <path
+           d="m 190.33401,49.353718 h -0.41699 q -1.10058,0 -1.66113,0.389648 -0.55371,0.382813 -0.55371,1.148438 0,0.690429 0.41699,1.073242 0.41699,0.382812 1.15527,0.382812 1.03907,0 1.63379,-0.717773 0.59473,-0.724609 0.60157,-1.996094 v -0.280273 z m 2.44043,-0.519531 v 4.368164 h -1.26464 v -1.134766 q -0.40332,0.683594 -1.01856,1.011719 -0.6084,0.321289 -1.4834,0.321289 -1.16894,0 -1.86621,-0.65625 -0.69726,-0.663086 -0.69726,-1.770508 0,-1.27832 0.85449,-1.941406 0.86133,-0.663086 2.52246,-0.663086 h 1.68848 v -0.198242 q -0.007,-0.916016 -0.46485,-1.326172 -0.45801,-0.416992 -1.46289,-0.416992 -0.64258,0 -1.29883,0.18457 -0.65625,0.18457 -1.27832,0.540039 v -1.257813 q 0.69727,-0.266601 1.33301,-0.396484 0.64258,-0.136719 1.24414,-0.136719 0.9502,0 1.62012,0.280274 0.67676,0.280273 1.09375,0.84082 0.25976,0.341797 0.36914,0.847656 0.10937,0.499024 0.10937,1.503907 z"
+           id="path2510" />
+        <path
+           d="m 199.82919,46.52364 v -3.958008 h 1.25782 v 10.636719 h -1.25782 v -0.963868 q -0.31445,0.567383 -0.84082,0.868164 -0.51953,0.293946 -1.20312,0.293946 -1.3877,0 -2.1875,-1.073242 -0.79297,-1.080079 -0.79297,-2.973633 0,-1.866211 0.7998,-2.925781 0.79981,-1.066407 2.18067,-1.066407 0.69043,0 1.21679,0.300782 0.52637,0.293945 0.82715,0.861328 z m -3.69824,2.857422 q 0,1.46289 0.46484,2.208007 0.46485,0.745118 1.37403,0.745118 0.90918,0 1.38086,-0.751954 0.47851,-0.751953 0.47851,-2.201171 0,-1.456055 -0.47851,-2.201172 -0.47168,-0.751953 -1.38086,-0.751953 -0.90918,0 -1.37403,0.745117 -0.46484,0.745117 -0.46484,2.208008 z"
+           id="path2512" />
+        <path
+           d="m 208.26819,50.741413 q -0.31445,0.799805 -0.79981,2.105469 -0.67675,1.804687 -0.90918,2.201172 -0.31445,0.533203 -0.78613,0.799804 -0.47168,0.266602 -1.10058,0.266602 h -1.01172 v -1.052734 h 0.74511 q 0.55371,0 0.86817,-0.321289 0.31445,-0.32129 0.7998,-1.661133 l -2.95996,-7.533203 h 1.33301 l 2.26953,5.988281 2.23535,-5.988281 h 1.33301 z"
+           id="path2514" />
+        <path
+           d="m 252.39441,46.633015 -5.81055,2.1875 5.81055,2.166992 v 1.250976 l -7.22559,-2.857421 v -1.134766 l 7.22559,-2.857422 z"
+           id="path2516" />
+        <path
+           d="m 260.1806,48.45821 v 4.744141 h -1.26465 V 48.45821 q 0,-1.032227 -0.3623,-1.517578 -0.3623,-0.485352 -1.13477,-0.485352 -0.88183,0 -1.36035,0.628907 -0.47168,0.62207 -0.47168,1.791015 v 4.327149 h -1.25781 v -7.65625 h 1.25781 v 1.148437 q 0.33496,-0.65625 0.90918,-0.991211 0.57422,-0.341797 1.36035,-0.341797 1.16895,0 1.74317,0.772461 0.58105,0.765625 0.58105,2.324219 z"
+           id="path2518" />
+        <path
+           d="m 265.64597,46.427937 q -0.95704,0 -1.44922,0.745117 -0.49219,0.745117 -0.49219,2.208008 0,1.456054 0.49219,2.208007 0.49218,0.745118 1.44922,0.745118 0.96386,0 1.45605,-0.745118 0.49219,-0.751953 0.49219,-2.208007 0,-1.462891 -0.49219,-2.208008 -0.49219,-0.745117 -1.45605,-0.745117 z m 0,-1.066407 q 1.59277,0 2.43359,1.032227 0.84766,1.032226 0.84766,2.987305 0,1.961914 -0.84082,2.99414 -0.84083,1.025391 -2.44043,1.025391 -1.59278,0 -2.4336,-1.025391 -0.84082,-1.032226 -0.84082,-2.99414 0,-1.955079 0.84082,-2.987305 0.84082,-1.032227 2.4336,-1.032227 z"
+           id="path2520" />
+        <path
+           d="m 277.04837,48.45821 v 4.744141 h -1.26465 V 48.45821 q 0,-1.032227 -0.3623,-1.517578 -0.36231,-0.485352 -1.13477,-0.485352 -0.88183,0 -1.36035,0.628907 -0.47168,0.62207 -0.47168,1.791015 v 4.327149 h -1.25781 v -7.65625 h 1.25781 v 1.148437 q 0.33496,-0.65625 0.90918,-0.991211 0.57422,-0.341797 1.36035,-0.341797 1.16895,0 1.74317,0.772461 0.58105,0.765625 0.58105,2.324219 z"
+           id="path2522" />
+        <path
+           d="m 285.95905,48.745319 v 0.615235 h -5.44825 v 0.04102 q -0.0547,1.56543 0.59473,2.249024 0.65625,0.683594 1.8457,0.683594 0.60157,0 1.25782,-0.191407 0.65625,-0.191406 1.40136,-0.581054 v 1.250976 q -0.71777,0.293945 -1.38769,0.4375 -0.66309,0.150391 -1.28516,0.150391 -1.78418,0 -2.78906,-1.066406 -1.00488,-1.073243 -1.00488,-2.953125 0,-1.832032 0.98437,-2.925782 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.991211 0.84766,0.991211 0.90235,2.392578 z m -1.25782,-0.36914 q -0.082,-0.792969 -0.58105,-1.367188 -0.49219,-0.581054 -1.42188,-0.581054 -0.90918,0 -1.49707,0.601562 -0.58789,0.601563 -0.64258,1.353516 z"
+           id="path2524" />
+        <path
+           d="m 287.33313,46.633015 v -1.244141 l 7.22559,2.857422 v 1.134766 l -7.22559,2.857421 v -1.250976 l 5.81055,-2.166992 z"
+           id="path2526" />
+        <path
+           d="m 323.01691,52.040241 h 4.68945 v 1.16211 h -6.2002 v -1.16211 q 1.27832,-1.346679 2.23536,-2.378906 0.95703,-1.032227 1.31933,-1.456055 0.6836,-0.833984 0.92285,-1.346679 0.23926,-0.519532 0.23926,-1.059571 0,-0.854492 -0.50586,-1.339843 -0.49902,-0.485352 -1.37402,-0.485352 -0.62207,0 -1.30567,0.225586 -0.68359,0.225586 -1.44921,0.683594 v -1.394532 q 0.7041,-0.334961 1.38086,-0.505859 0.68359,-0.170898 1.34667,-0.170898 1.49708,0 2.40625,0.799804 0.91602,0.792969 0.91602,2.084961 0,0.65625 -0.30762,1.3125 -0.30078,0.65625 -0.98437,1.449219 -0.38281,0.444336 -1.11426,1.230469 -0.72461,0.786133 -2.21484,2.351562 z"
+           id="path2528" />
+        <path
+           d="m 332.97009,48.67696 q 0.88184,0 1.38086,-0.635742 0.50586,-0.635742 0.50586,-1.756836 0,-1.121094 -0.50586,-1.756836 -0.49902,-0.635742 -1.38086,-0.635742 -0.91601,0 -1.38086,0.608398 -0.46484,0.601563 -0.46484,1.78418 0,1.189453 0.45801,1.791015 0.46484,0.601563 1.38769,0.601563 z m -2.46093,4.313477 v -1.271485 q 0.43066,0.25293 0.91601,0.389649 0.48535,0.129882 1.01172,0.129882 1.3125,0 1.98242,-0.984375 0.67676,-0.991211 0.67676,-2.912109 -0.32129,0.683594 -0.90234,1.052734 -0.58106,0.362305 -1.33301,0.362305 -1.47656,0 -2.29004,-0.90918 -0.80664,-0.909179 -0.80664,-2.577148 0,-1.647461 0.82715,-2.549805 0.83398,-0.909179 2.35156,-0.909179 1.77734,0 2.60449,1.27832 0.82715,1.27832 0.82715,4.019531 0,2.577149 -0.99805,3.9375 -0.99121,1.353516 -2.88476,1.353516 -0.49903,0 -1.00489,-0.109375 -0.50586,-0.102539 -0.97753,-0.300781 z"
+           id="path2530" />
+        <path
+           d="m 341.95593,46.325397 q 0.23242,-0.492187 0.58789,-0.724609 0.36231,-0.239258 0.86817,-0.239258 0.92285,0 1.29883,0.717774 0.38281,0.710937 0.38281,2.686523 v 4.436524 h -1.14844 v -4.381836 q 0,-1.620118 -0.18457,-2.009766 -0.17773,-0.396484 -0.65625,-0.396484 -0.54687,0 -0.75195,0.423828 -0.19825,0.416992 -0.19825,1.982422 v 4.381836 h -1.14843 v -4.381836 q 0,-1.640625 -0.19824,-2.023438 -0.19141,-0.382812 -0.69727,-0.382812 -0.49902,0 -0.69727,0.423828 -0.1914,0.416992 -0.1914,1.982422 v 4.381836 h -1.1416 v -7.65625 h 1.1416 v 0.65625 q 0.22558,-0.410157 0.56054,-0.622071 0.3418,-0.21875 0.77247,-0.21875 0.51953,0 0.86132,0.239258 0.34864,0.239258 0.54004,0.724609 z"
+           id="path2532" />
+        <path
+           d="m 371.75397,45.546101 h 1.30566 l 2.22168,6.425781 2.22852,-6.425781 h 1.30566 l -2.7207,7.65625 h -1.62012 z"
+           id="path2534" />
+        <path
+           d="m 381.34485,52.047077 h 2.14648 V 44.33614 l -2.57031,1.237304 v -1.326172 l 2.55664,-1.216796 h 1.38086 v 9.016601 h 2.11914 v 1.155274 h -5.63281 z"
+           id="path2536" />
+        <path
+           d="m 390.59732,50.440632 h 2.40625 v 2.761719 h -2.40625 z"
+           id="path2538" />
+        <path
+           d="m 398.21262,52.047077 h 2.14648 V 44.33614 l -2.57031,1.237304 v -1.326172 l 2.55664,-1.216796 h 1.38086 v 9.016601 h 2.11914 v 1.155274 h -5.63281 z"
+           id="path2540" />
+        <path
+           d="m 408.8699,48.67696 q 0.88184,0 1.38086,-0.635742 0.50586,-0.635742 0.50586,-1.756836 0,-1.121094 -0.50586,-1.756836 -0.49902,-0.635742 -1.38086,-0.635742 -0.91601,0 -1.38086,0.608398 -0.46484,0.601563 -0.46484,1.78418 0,1.189453 0.45801,1.791015 0.46484,0.601563 1.38769,0.601563 z m -2.46093,4.313477 v -1.271485 q 0.43066,0.25293 0.91601,0.389649 0.48535,0.129882 1.01172,0.129882 1.3125,0 1.98242,-0.984375 0.67676,-0.991211 0.67676,-2.912109 -0.32129,0.683594 -0.90234,1.052734 -0.58106,0.362305 -1.33301,0.362305 -1.47656,0 -2.29004,-0.90918 -0.80664,-0.909179 -0.80664,-2.577148 0,-1.647461 0.82715,-2.549805 0.83398,-0.909179 2.35156,-0.909179 1.77734,0 2.60449,1.27832 0.82715,1.27832 0.82715,4.019531 0,2.577149 -0.99805,3.9375 -0.99121,1.353516 -2.88476,1.353516 -0.49903,0 -1.00488,-0.109375 -0.50586,-0.102539 -0.97754,-0.300781 z"
+           id="path2542" />
+        <path
+           d="m 415.89386,50.440632 h 2.40625 v 2.761719 h -2.40625 z"
+           id="path2544" />
+        <path
+           d="m 425.87439,42.845905 q 1.63379,0 2.46777,1.333008 0.84082,1.333008 0.84082,3.944336 0,2.611328 -0.84082,3.944336 -0.83398,1.333008 -2.46777,1.333008 -1.63379,0 -2.46777,-1.333008 -0.83399,-1.333008 -0.83399,-3.944336 0,-2.611328 0.83399,-3.944336 0.83398,-1.333008 2.46777,-1.333008 z m 0,9.460938 q 0.9707,0 1.44238,-1.032227 0.47852,-1.032226 0.47852,-3.151367 0,-1.12793 -0.13672,-2.037109 l -3.25391,5.092773 q 0.5127,1.12793 1.46973,1.12793 z m 0,-8.367188 q -0.96387,0 -1.44238,1.032227 -0.47168,1.032226 -0.47168,3.151367 0,0.963867 0.12988,1.804688 l 3.18555,-5.079102 q -0.51953,-0.90918 -1.40137,-0.90918 z"
+           id="path2546" />
+        <path
+           d="m 4.0742187,68.272064 q 0.881836,0 1.3808594,-0.635742 0.5058594,-0.635742 0.5058594,-1.756836 0,-1.121094 -0.5058594,-1.756836 -0.4990234,-0.635742 -1.3808594,-0.635742 -0.9160156,0 -1.3808593,0.608398 -0.4648438,0.601563 -0.4648438,1.78418 0,1.189453 0.4580078,1.791016 0.4648438,0.601562 1.3876953,0.601562 z m -2.4609375,4.313477 v -1.271485 q 0.4306641,0.25293 0.9160157,0.389649 0.4853515,0.129883 1.0117187,0.129883 1.3125,0 1.9824219,-0.984375 0.6767578,-0.991211 0.6767578,-2.91211 -0.3212891,0.683594 -0.9023437,1.052735 -0.5810547,0.362304 -1.3330078,0.362304 -1.4765625,0 -2.2900391,-0.909179 -0.80664064,-0.90918 -0.80664064,-2.577149 0,-1.647461 0.82714844,-2.549804 0.8339844,-0.90918 2.3515625,-0.90918 1.7773437,0 2.6044922,1.27832 0.8271484,1.27832 0.8271484,4.019531 0,2.577149 -0.9980469,3.9375 -0.9912109,1.353516 -2.8847656,1.353516 -0.4990234,0 -1.0048828,-0.109375 -0.5058594,-0.102539 -0.9775391,-0.300781 z"
+           id="path2548" />
+        <path
+           d="m 13.453193,63.849213 -3.219727,5.393554 h 3.219727 z M 13.227607,62.5914 h 1.599609 v 6.651367 h 1.360352 v 1.121094 h -1.360352 v 2.433594 H 13.453193 V 70.363861 H 9.1260443 v -1.305664 z"
+           id="path2550" />
+        <path
+           d="m 17.565029,67.848236 h 7.246094 v 1.155274 h -7.246094 z"
+           id="path2552" />
+        <path
+           d="m 26.711582,62.5914 h 5.167969 v 1.16211 h -3.910156 v 2.508789 q 0.293945,-0.109375 0.58789,-0.157227 0.300782,-0.05469 0.601563,-0.05469 1.585937,0 2.515625,0.936523 0.929687,0.936523 0.929687,2.536133 0,1.613281 -0.977539,2.542969 -0.970703,0.929687 -2.659179,0.929687 -0.813477,0 -1.490235,-0.109375 -0.669922,-0.109375 -1.203125,-0.328125 V 71.15683 q 0.628906,0.341797 1.264649,0.512695 0.635742,0.164063 1.298828,0.164063 1.141601,0 1.756836,-0.601563 0.62207,-0.601562 0.62207,-1.708984 0,-1.09375 -0.642578,-1.702149 -0.635742,-0.608398 -1.777344,-0.608398 -0.553711,0 -1.080078,0.129883 -0.526367,0.123047 -1.004883,0.375976 z"
+           id="path2554" />
+        <path
+           d="m 34.685722,62.5914 h 6.425782 v 0.587891 l -3.650391,9.618164 H 36.01873 l 3.554688,-9.043945 h -4.887696 z"
+           id="path2556" />
+        <path
+           d="m 42.861572,67.848236 h 7.246094 v 1.155274 h -7.246094 z"
+           id="path2558" />
+        <path
+           d="M 55.402122,68.948822 H 54.98513 q -1.100586,0 -1.661133,0.389648 -0.55371,0.382813 -0.55371,1.148438 0,0.69043 0.416992,1.073242 0.416992,0.382813 1.155273,0.382813 1.039063,0 1.633789,-0.717774 0.594727,-0.724609 0.601563,-1.996094 v -0.280273 z m 2.44043,-0.519531 v 4.368164 h -1.264648 v -1.134766 q -0.403321,0.683594 -1.018555,1.011719 -0.608398,0.321289 -1.483398,0.321289 -1.168946,0 -1.866211,-0.65625 -0.697266,-0.663086 -0.697266,-1.770508 0,-1.27832 0.854492,-1.941406 0.861328,-0.663086 2.522461,-0.663086 h 1.688477 v -0.198242 q -0.0068,-0.916016 -0.464844,-1.326172 -0.458008,-0.416992 -1.462891,-0.416992 -0.642578,0 -1.298828,0.18457 -0.65625,0.18457 -1.27832,0.540039 v -1.257812 q 0.697266,-0.266602 1.333008,-0.396485 0.642578,-0.136718 1.24414,-0.136718 0.950196,0 1.620118,0.280273 0.676757,0.280273 1.09375,0.84082 0.259765,0.341797 0.36914,0.847657 0.109375,0.499023 0.109375,1.503906 z"
+           id="path2560" />
+        <path
+           d="m 60.447109,62.5914 h 5.167969 v 1.16211 h -3.910156 v 2.508789 q 0.293945,-0.109375 0.58789,-0.157227 0.300782,-0.05469 0.601563,-0.05469 1.585937,0 2.515625,0.936523 0.929687,0.936523 0.929687,2.536133 0,1.613281 -0.977539,2.542969 -0.970703,0.929687 -2.659179,0.929687 -0.813477,0 -1.490235,-0.109375 -0.669922,-0.109375 -1.203125,-0.328125 V 71.15683 q 0.628906,0.341797 1.264649,0.512695 0.635742,0.164063 1.298828,0.164063 1.141601,0 1.756836,-0.601563 0.62207,-0.601562 0.62207,-1.708984 0,-1.09375 -0.642578,-1.702149 -0.635742,-0.608398 -1.777344,-0.608398 -0.553711,0 -1.080078,0.129883 -0.526367,0.123047 -1.004883,0.375976 z"
+           id="path2562" />
+        <path
+           d="m 68.16832,67.848236 h 7.246093 V 69.00351 H 68.16832 Z"
+           id="path2564" />
+        <path
+           d="m 81.765068,66.118744 v -3.958008 h 1.257813 v 10.636719 h -1.257813 v -0.963867 q -0.314453,0.567382 -0.84082,0.868164 -0.519532,0.293945 -1.203125,0.293945 -1.387696,0 -2.1875,-1.073242 -0.792969,-1.080078 -0.792969,-2.973633 0,-1.866211 0.799805,-2.925781 0.799804,-1.066406 2.180664,-1.066406 0.690429,0 1.216797,0.300781 0.526367,0.293945 0.827148,0.861328 z m -3.698242,2.857422 q 0,1.46289 0.464844,2.208008 0.464843,0.745117 1.374023,0.745117 0.90918,0 1.380859,-0.751953 0.478516,-0.751953 0.478516,-2.201172 0,-1.456055 -0.478516,-2.201172 -0.471679,-0.751953 -1.380859,-0.751953 -0.90918,0 -1.374023,0.745117 -0.464844,0.745117 -0.464844,2.208008 z"
+           id="path2566" />
+        <path
+           d="m 89.633301,67.335541 q 1.004883,0.266601 1.538086,0.950195 0.533203,0.676758 0.533203,1.695313 0,1.408203 -0.950195,2.214843 -0.94336,0.799805 -2.618165,0.799805 -0.704101,0 -1.435546,-0.129883 -0.731446,-0.129883 -1.435547,-0.375976 v -1.374024 q 0.697265,0.362305 1.374023,0.540039 0.676758,0.177735 1.34668,0.177735 1.134765,0 1.743164,-0.512696 0.608398,-0.512695 0.608398,-1.476562 0,-0.888672 -0.608398,-1.408203 -0.608399,-0.526367 -1.647461,-0.526367 h -1.052734 v -1.134766 h 1.052734 q 0.950195,0 1.483398,-0.416992 0.533204,-0.416992 0.533204,-1.16211 0,-0.786132 -0.499024,-1.203125 -0.492187,-0.423828 -1.408203,-0.423828 -0.608398,0 -1.257813,0.136719 -0.649414,0.136719 -1.360351,0.410156 V 62.84433 q 0.827148,-0.21875 1.469726,-0.328125 0.649415,-0.109375 1.148438,-0.109375 1.490234,0 2.378906,0.751953 0.895508,0.745117 0.895508,1.982422 0,0.84082 -0.47168,1.401367 -0.464843,0.560547 -1.360351,0.792969 z"
+           id="path2568" />
+        <path
+           d="m 93.464859,67.848236 h 7.246091 v 1.155274 h -7.246091 z"
+           id="path2570" />
+        <path
+           d="m 108.85262,68.340424 v 0.615234 h -5.44824 v 0.04102 q -0.0547,1.565429 0.59473,2.249023 0.65625,0.683594 1.8457,0.683594 0.60156,0 1.25781,-0.191406 0.65625,-0.191407 1.40137,-0.581055 v 1.250976 q -0.71777,0.293946 -1.3877,0.4375 -0.66308,0.150391 -1.28515,0.150391 -1.78418,0 -2.78906,-1.066406 -1.00489,-1.073242 -1.00489,-2.953125 0,-1.832031 0.98438,-2.925781 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.991211 0.90234,2.392579 z m -1.25781,-0.369141 q -0.082,-0.792969 -0.58105,-1.367188 -0.49219,-0.581054 -1.42188,-0.581054 -0.90918,0 -1.49707,0.601562 -0.58789,0.601563 -0.64258,1.353516 z"
+           id="path2572" />
+        <path
+           d="m 116.88829,72.407806 q -0.50586,0.293946 -1.0459,0.4375 -0.5332,0.150391 -1.09375,0.150391 -1.77734,0 -2.78222,-1.066406 -0.99805,-1.066406 -0.99805,-2.953125 0,-1.886719 0.99805,-2.953125 1.00488,-1.066406 2.78222,-1.066406 0.55371,0 1.08008,0.143554 0.52637,0.143555 1.05957,0.444336 v 1.319336 q -0.49902,-0.444336 -1.00488,-0.642578 -0.49903,-0.198242 -1.13477,-0.198242 -1.18262,0 -1.81836,0.765625 -0.63574,0.765625 -0.63574,2.1875 0,1.415039 0.63574,2.1875 0.64258,0.765625 1.81836,0.765625 0.65625,0 1.17578,-0.198242 0.51953,-0.205079 0.96387,-0.628907 z"
+           id="path2574" />
+        <path
+           d="m 118.76141,67.848236 h 7.24609 v 1.155274 h -7.24609 z"
+           id="path2576" />
+        <path
+           d="m 133.76973,62.160736 v 1.045899 h -1.42871 q -0.67676,0 -0.94336,0.280273 -0.25977,0.273437 -0.25977,0.977539 v 0.676758 h 2.63184 v 0.977539 h -2.63184 v 6.678711 h -1.25781 v -6.678711 h -2.04394 v -0.977539 h 2.04394 v -0.533203 q 0,-1.257813 0.57422,-1.852539 0.58105,-0.594727 1.80469,-0.594727 z"
+           id="path2578" />
+        <path
+           d="m 137.4817,71.635345 h 4.68946 v 1.16211 h -6.2002 v -1.16211 q 1.27832,-1.346679 2.23535,-2.378906 0.95704,-1.032226 1.31934,-1.456054 0.68359,-0.833985 0.92285,-1.34668 0.23926,-0.519531 0.23926,-1.05957 0,-0.854493 -0.50586,-1.339844 -0.49902,-0.485352 -1.37402,-0.485352 -0.62207,0 -1.30567,0.225586 -0.68359,0.225586 -1.44922,0.683594 v -1.394531 q 0.70411,-0.334961 1.38086,-0.50586 0.6836,-0.170898 1.34668,-0.170898 1.49707,0 2.40625,0.799805 0.91602,0.792968 0.91602,2.08496 0,0.65625 -0.30762,1.3125 -0.30078,0.65625 -0.98437,1.449219 -0.38282,0.444336 -1.11426,1.230469 -0.72461,0.786133 -2.21485,2.351562 z"
+           id="path2580" />
+        <path
+           d="m 173.86273,67.978119 q 0.53321,0.136719 0.90918,0.519531 0.37598,0.375977 0.93653,1.510742 l 1.38769,2.789063 h -1.4834 l -1.21679,-2.577149 q -0.52637,-1.100586 -0.9502,-1.415039 -0.41699,-0.321289 -1.09375,-0.321289 h -1.31934 v 4.313477 h -1.38769 V 62.5914 h 2.84375 q 1.68164,0 2.57715,0.758789 0.8955,0.758789 0.8955,2.194336 0,1.011719 -0.55371,1.654297 -0.54687,0.635742 -1.54492,0.779297 z m -2.83008,-4.251953 v 3.623047 h 1.51075 q 0.99121,0 1.47656,-0.444336 0.48535,-0.444336 0.48535,-1.360352 0,-0.881836 -0.51953,-1.34668 -0.5127,-0.471679 -1.49707,-0.471679 z"
+           id="path2582" />
+        <path
+           d="m 184.75246,68.340424 v 0.615234 h -5.44825 v 0.04102 q -0.0547,1.565429 0.59473,2.249023 0.65625,0.683594 1.8457,0.683594 0.60157,0 1.25782,-0.191406 0.65625,-0.191407 1.40136,-0.581055 v 1.250976 q -0.71777,0.293946 -1.38769,0.4375 -0.66309,0.150391 -1.28516,0.150391 -1.78418,0 -2.78906,-1.066406 -1.00488,-1.073242 -1.00488,-2.953125 0,-1.832031 0.98437,-2.925781 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.991211 0.90235,2.392579 z m -1.25782,-0.369141 q -0.082,-0.792969 -0.58105,-1.367188 -0.49219,-0.581054 -1.42188,-0.581054 -0.90918,0 -1.49707,0.601562 -0.58789,0.601563 -0.64257,1.353516 z"
+           id="path2584" />
+        <path
+           d="m 190.33401,68.948822 h -0.41699 q -1.10058,0 -1.66113,0.389648 -0.55371,0.382813 -0.55371,1.148438 0,0.69043 0.41699,1.073242 0.41699,0.382813 1.15527,0.382813 1.03907,0 1.63379,-0.717774 0.59473,-0.724609 0.60157,-1.996094 v -0.280273 z m 2.44043,-0.519531 v 4.368164 h -1.26464 v -1.134766 q -0.40332,0.683594 -1.01856,1.011719 -0.6084,0.321289 -1.4834,0.321289 -1.16894,0 -1.86621,-0.65625 -0.69726,-0.663086 -0.69726,-1.770508 0,-1.27832 0.85449,-1.941406 0.86133,-0.663086 2.52246,-0.663086 h 1.68848 v -0.198242 q -0.007,-0.916016 -0.46485,-1.326172 -0.45801,-0.416992 -1.46289,-0.416992 -0.64258,0 -1.29883,0.18457 -0.65625,0.18457 -1.27832,0.540039 v -1.257812 q 0.69727,-0.266602 1.33301,-0.396485 0.64258,-0.136718 1.24414,-0.136718 0.9502,0 1.62012,0.280273 0.67676,0.280273 1.09375,0.84082 0.25976,0.341797 0.36914,0.847657 0.10937,0.499023 0.10937,1.503906 z"
+           id="path2586" />
+        <path
+           d="m 199.82919,66.118744 v -3.958008 h 1.25782 v 10.636719 h -1.25782 v -0.963867 q -0.31445,0.567382 -0.84082,0.868164 -0.51953,0.293945 -1.20312,0.293945 -1.3877,0 -2.1875,-1.073242 -0.79297,-1.080078 -0.79297,-2.973633 0,-1.866211 0.7998,-2.925781 0.79981,-1.066406 2.18067,-1.066406 0.69043,0 1.21679,0.300781 0.52637,0.293945 0.82715,0.861328 z m -3.69824,2.857422 q 0,1.46289 0.46484,2.208008 0.46485,0.745117 1.37403,0.745117 0.90918,0 1.38086,-0.751953 0.47851,-0.751953 0.47851,-2.201172 0,-1.456055 -0.47851,-2.201172 -0.47168,-0.751953 -1.38086,-0.751953 -0.90918,0 -1.37403,0.745117 -0.46484,0.745117 -0.46484,2.208008 z"
+           id="path2588" />
+        <path
+           d="m 208.26819,70.336517 q -0.31445,0.799805 -0.79981,2.105469 -0.67675,1.804688 -0.90918,2.201172 -0.31445,0.533203 -0.78613,0.799805 -0.47168,0.266601 -1.10058,0.266601 h -1.01172 V 74.65683 h 0.74511 q 0.55371,0 0.86817,-0.321289 0.31445,-0.321289 0.7998,-1.661133 l -2.95996,-7.533203 h 1.33301 l 2.26953,5.988281 2.23535,-5.988281 h 1.33301 z"
+           id="path2590" />
+        <path
+           d="m 252.39441,66.228119 -5.81055,2.1875 5.81055,2.166992 v 1.250977 l -7.22559,-2.857422 V 67.8414 l 7.22559,-2.857422 z"
+           id="path2592" />
+        <path
+           d="m 260.1806,68.053314 v 4.744141 h -1.26465 v -4.744141 q 0,-1.032226 -0.3623,-1.517578 -0.3623,-0.485351 -1.13477,-0.485351 -0.88183,0 -1.36035,0.628906 -0.47168,0.62207 -0.47168,1.791015 v 4.327149 h -1.25781 v -7.65625 h 1.25781 v 1.148437 q 0.33496,-0.65625 0.90918,-0.991211 0.57422,-0.341796 1.36035,-0.341796 1.16895,0 1.74317,0.77246 0.58105,0.765625 0.58105,2.324219 z"
+           id="path2594" />
+        <path
+           d="m 265.64597,66.023041 q -0.95704,0 -1.44922,0.745117 -0.49219,0.745117 -0.49219,2.208008 0,1.456054 0.49219,2.208008 0.49218,0.745117 1.44922,0.745117 0.96386,0 1.45605,-0.745117 0.49219,-0.751954 0.49219,-2.208008 0,-1.462891 -0.49219,-2.208008 -0.49219,-0.745117 -1.45605,-0.745117 z m 0,-1.066406 q 1.59277,0 2.43359,1.032226 0.84766,1.032227 0.84766,2.987305 0,1.961914 -0.84082,2.99414 -0.84083,1.025391 -2.44043,1.025391 -1.59278,0 -2.4336,-1.025391 -0.84082,-1.032226 -0.84082,-2.99414 0,-1.955078 0.84082,-2.987305 0.84082,-1.032226 2.4336,-1.032226 z"
+           id="path2596" />
+        <path
+           d="m 277.04837,68.053314 v 4.744141 h -1.26465 v -4.744141 q 0,-1.032226 -0.3623,-1.517578 -0.36231,-0.485351 -1.13477,-0.485351 -0.88183,0 -1.36035,0.628906 -0.47168,0.62207 -0.47168,1.791015 v 4.327149 h -1.25781 v -7.65625 h 1.25781 v 1.148437 q 0.33496,-0.65625 0.90918,-0.991211 0.57422,-0.341796 1.36035,-0.341796 1.16895,0 1.74317,0.77246 0.58105,0.765625 0.58105,2.324219 z"
+           id="path2598" />
+        <path
+           d="m 285.95905,68.340424 v 0.615234 h -5.44825 v 0.04102 q -0.0547,1.565429 0.59473,2.249023 0.65625,0.683594 1.8457,0.683594 0.60157,0 1.25782,-0.191406 0.65625,-0.191407 1.40136,-0.581055 v 1.250976 q -0.71777,0.293946 -1.38769,0.4375 -0.66309,0.150391 -1.28516,0.150391 -1.78418,0 -2.78906,-1.066406 -1.00488,-1.073242 -1.00488,-2.953125 0,-1.832031 0.98437,-2.925781 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.991211 0.90235,2.392579 z m -1.25782,-0.369141 q -0.082,-0.792969 -0.58105,-1.367188 -0.49219,-0.581054 -1.42188,-0.581054 -0.90918,0 -1.49707,0.601562 -0.58789,0.601563 -0.64258,1.353516 z"
+           id="path2600" />
+        <path
+           d="m 287.33313,66.228119 v -1.244141 l 7.22559,2.857422 v 1.134766 l -7.22559,2.857422 v -1.250977 l 5.81055,-2.166992 z"
+           id="path2602" />
+        <path
+           d="m 323.01691,71.635345 h 4.68945 v 1.16211 h -6.2002 v -1.16211 q 1.27832,-1.346679 2.23536,-2.378906 0.95703,-1.032226 1.31933,-1.456054 0.6836,-0.833985 0.92285,-1.34668 0.23926,-0.519531 0.23926,-1.05957 0,-0.854493 -0.50586,-1.339844 -0.49902,-0.485352 -1.37402,-0.485352 -0.62207,0 -1.30567,0.225586 -0.68359,0.225586 -1.44921,0.683594 v -1.394531 q 0.7041,-0.334961 1.38086,-0.50586 0.68359,-0.170898 1.34667,-0.170898 1.49708,0 2.40625,0.799805 0.91602,0.792968 0.91602,2.08496 0,0.65625 -0.30762,1.3125 -0.30078,0.65625 -0.98437,1.449219 -0.38281,0.444336 -1.11426,1.230469 -0.72461,0.786133 -2.21484,2.351562 z"
+           id="path2604" />
+        <path
+           d="m 332.97009,68.272064 q 0.88184,0 1.38086,-0.635742 0.50586,-0.635742 0.50586,-1.756836 0,-1.121094 -0.50586,-1.756836 -0.49902,-0.635742 -1.38086,-0.635742 -0.91601,0 -1.38086,0.608398 -0.46484,0.601563 -0.46484,1.78418 0,1.189453 0.45801,1.791016 0.46484,0.601562 1.38769,0.601562 z m -2.46093,4.313477 v -1.271485 q 0.43066,0.25293 0.91601,0.389649 0.48535,0.129883 1.01172,0.129883 1.3125,0 1.98242,-0.984375 0.67676,-0.991211 0.67676,-2.91211 -0.32129,0.683594 -0.90234,1.052735 -0.58106,0.362304 -1.33301,0.362304 -1.47656,0 -2.29004,-0.909179 -0.80664,-0.90918 -0.80664,-2.577149 0,-1.647461 0.82715,-2.549804 0.83398,-0.90918 2.35156,-0.90918 1.77734,0 2.60449,1.27832 0.82715,1.27832 0.82715,4.019531 0,2.577149 -0.99805,3.9375 -0.99121,1.353516 -2.88476,1.353516 -0.49903,0 -1.00489,-0.109375 -0.50586,-0.102539 -0.97753,-0.300781 z"
+           id="path2606" />
+        <path
+           d="m 341.95593,65.920502 q 0.23242,-0.492188 0.58789,-0.72461 0.36231,-0.239257 0.86817,-0.239257 0.92285,0 1.29883,0.717773 0.38281,0.710937 0.38281,2.686523 v 4.436524 h -1.14844 v -4.381836 q 0,-1.620117 -0.18457,-2.009766 -0.17773,-0.396484 -0.65625,-0.396484 -0.54687,0 -0.75195,0.423828 -0.19825,0.416992 -0.19825,1.982422 v 4.381836 h -1.14843 v -4.381836 q 0,-1.640625 -0.19824,-2.023438 -0.19141,-0.382812 -0.69727,-0.382812 -0.49902,0 -0.69727,0.423828 -0.1914,0.416992 -0.1914,1.982422 v 4.381836 h -1.1416 v -7.65625 h 1.1416 v 0.65625 q 0.22558,-0.410156 0.56054,-0.62207 0.3418,-0.21875 0.77247,-0.21875 0.51953,0 0.86132,0.239257 0.34864,0.239258 0.54004,0.72461 z"
+           id="path2608" />
+        <path
+           d="m 371.75397,65.141205 h 1.30566 l 2.22168,6.425781 2.22852,-6.425781 h 1.30566 l -2.7207,7.65625 h -1.62012 z"
+           id="path2610" />
+        <path
+           d="m 381.34485,71.642181 h 2.14648 v -7.710937 l -2.57031,1.237305 v -1.326172 l 2.55664,-1.216797 h 1.38086 v 9.016601 h 2.11914 v 1.155274 h -5.63281 z"
+           id="path2612" />
+        <path
+           d="m 390.59732,70.035736 h 2.40625 v 2.761719 h -2.40625 z"
+           id="path2614" />
+        <path
+           d="m 398.21262,71.642181 h 2.14648 v -7.710937 l -2.57031,1.237305 v -1.326172 l 2.55664,-1.216797 h 1.38086 v 9.016601 h 2.11914 v 1.155274 h -5.63281 z"
+           id="path2616" />
+        <path
+           d="m 408.8699,68.272064 q 0.88184,0 1.38086,-0.635742 0.50586,-0.635742 0.50586,-1.756836 0,-1.121094 -0.50586,-1.756836 -0.49902,-0.635742 -1.38086,-0.635742 -0.91601,0 -1.38086,0.608398 -0.46484,0.601563 -0.46484,1.78418 0,1.189453 0.45801,1.791016 0.46484,0.601562 1.38769,0.601562 z m -2.46093,4.313477 v -1.271485 q 0.43066,0.25293 0.91601,0.389649 0.48535,0.129883 1.01172,0.129883 1.3125,0 1.98242,-0.984375 0.67676,-0.991211 0.67676,-2.91211 -0.32129,0.683594 -0.90234,1.052735 -0.58106,0.362304 -1.33301,0.362304 -1.47656,0 -2.29004,-0.909179 -0.80664,-0.90918 -0.80664,-2.577149 0,-1.647461 0.82715,-2.549804 0.83398,-0.90918 2.35156,-0.90918 1.77734,0 2.60449,1.27832 0.82715,1.27832 0.82715,4.019531 0,2.577149 -0.99805,3.9375 -0.99121,1.353516 -2.88476,1.353516 -0.49903,0 -1.00488,-0.109375 -0.50586,-0.102539 -0.97754,-0.300781 z"
+           id="path2618" />
+        <path
+           d="m 415.89386,70.035736 h 2.40625 v 2.761719 h -2.40625 z"
+           id="path2620" />
+        <path
+           d="m 425.87439,62.44101 q 1.63379,0 2.46777,1.333007 0.84082,1.333008 0.84082,3.944336 0,2.611328 -0.84082,3.944336 -0.83398,1.333008 -2.46777,1.333008 -1.63379,0 -2.46777,-1.333008 -0.83399,-1.333008 -0.83399,-3.944336 0,-2.611328 0.83399,-3.944336 0.83398,-1.333007 2.46777,-1.333007 z m 0,9.460937 q 0.9707,0 1.44238,-1.032227 0.47852,-1.032226 0.47852,-3.151367 0,-1.127929 -0.13672,-2.037109 l -3.25391,5.092773 q 0.5127,1.12793 1.46973,1.12793 z m 0,-8.367187 q -0.96387,0 -1.44238,1.032226 -0.47168,1.032227 -0.47168,3.151367 0,0.963867 0.12988,1.804688 l 3.18555,-5.079102 q -0.51953,-0.909179 -1.40137,-0.909179 z"
+           id="path2622" />
+        <path
+           d="m 4.0742187,87.873238 q 0.881836,0 1.3808594,-0.635743 0.5058594,-0.635742 0.5058594,-1.756836 0,-1.121093 -0.5058594,-1.756835 -0.4990234,-0.635743 -1.3808594,-0.635743 -0.9160156,0 -1.3808593,0.608399 -0.4648438,0.601562 -0.4648438,1.784179 0,1.189454 0.4580078,1.791016 0.4648438,0.601563 1.3876953,0.601563 z M 1.6132812,92.186714 V 90.91523 q 0.4306641,0.252929 0.9160157,0.389648 0.4853515,0.129883 1.0117187,0.129883 1.3125,0 1.9824219,-0.984375 0.6767578,-0.991211 0.6767578,-2.912109 -0.3212891,0.683593 -0.9023437,1.052734 -0.5810547,0.362305 -1.3330078,0.362305 -1.4765625,0 -2.2900391,-0.90918 -0.80664064,-0.90918 -0.80664064,-2.577148 0,-1.647461 0.82714844,-2.549805 0.8339844,-0.90918 2.3515625,-0.90918 1.7773437,0 2.6044922,1.278321 0.8271484,1.27832 0.8271484,4.019531 0,2.577148 -0.9980469,3.9375 -0.9912109,1.353515 -2.8847656,1.353515 -0.4990234,0 -1.0048828,-0.109375 -0.5058594,-0.102539 -0.9775391,-0.300781 z"
+           id="path2624" />
+        <path
+           d="m 13.453193,83.450386 -3.219727,5.393555 h 3.219727 z m -0.225586,-1.257812 h 1.599609 v 6.651367 h 1.360352 v 1.121093 h -1.360352 v 2.433594 H 13.453193 V 89.965034 H 9.1260443 V 88.65937 Z"
+           id="path2626" />
+        <path
+           d="m 17.565029,87.449409 h 7.246094 v 1.155274 h -7.246094 z"
+           id="path2628" />
+        <path
+           d="m 26.711582,82.192574 h 5.167969 v 1.162109 h -3.910156 v 2.508789 q 0.293945,-0.109375 0.58789,-0.157227 0.300782,-0.05469 0.601563,-0.05469 1.585937,0 2.515625,0.936523 0.929687,0.936524 0.929687,2.536133 0,1.613281 -0.977539,2.542969 -0.970703,0.929687 -2.659179,0.929687 -0.813477,0 -1.490235,-0.109375 -0.669922,-0.109375 -1.203125,-0.328125 V 90.758 q 0.628906,0.341797 1.264649,0.512696 0.635742,0.164062 1.298828,0.164062 1.141601,0 1.756836,-0.601562 0.62207,-0.601563 0.62207,-1.708985 0,-1.09375 -0.642578,-1.702148 -0.635742,-0.608399 -1.777344,-0.608399 -0.553711,0 -1.080078,0.129883 -0.526367,0.123047 -1.004883,0.375977 z"
+           id="path2630" />
+        <path
+           d="m 34.685722,82.192574 h 6.425782 v 0.58789 l -3.650391,9.618164 H 36.01873 l 3.554688,-9.043945 h -4.887696 z"
+           id="path2632" />
+        <path
+           d="m 42.861572,87.449409 h 7.246094 v 1.155274 h -7.246094 z"
+           id="path2634" />
+        <path
+           d="M 55.402122,88.549995 H 54.98513 q -1.100586,0 -1.661133,0.389649 -0.55371,0.382812 -0.55371,1.148437 0,0.69043 0.416992,1.073243 0.416992,0.382812 1.155273,0.382812 1.039063,0 1.633789,-0.717773 0.594727,-0.72461 0.601563,-1.996094 v -0.280274 z m 2.44043,-0.519531 v 4.368164 h -1.264648 v -1.134765 q -0.403321,0.683593 -1.018555,1.011718 -0.608398,0.321289 -1.483398,0.321289 -1.168946,0 -1.866211,-0.65625 -0.697266,-0.663086 -0.697266,-1.770507 0,-1.278321 0.854492,-1.941407 0.861328,-0.663086 2.522461,-0.663086 h 1.688477 v -0.198242 q -0.0068,-0.916015 -0.464844,-1.326172 -0.458008,-0.416992 -1.462891,-0.416992 -0.642578,0 -1.298828,0.18457 -0.65625,0.184571 -1.27832,0.54004 v -1.257813 q 0.697266,-0.266602 1.333008,-0.396484 0.642578,-0.136719 1.24414,-0.136719 0.950196,0 1.620118,0.280273 0.676757,0.280274 1.09375,0.840821 0.259765,0.341797 0.36914,0.847656 0.109375,0.499023 0.109375,1.503906 z"
+           id="path2636" />
+        <path
+           d="m 60.447109,82.192574 h 5.167969 v 1.162109 h -3.910156 v 2.508789 q 0.293945,-0.109375 0.58789,-0.157227 0.300782,-0.05469 0.601563,-0.05469 1.585937,0 2.515625,0.936523 0.929687,0.936524 0.929687,2.536133 0,1.613281 -0.977539,2.542969 -0.970703,0.929687 -2.659179,0.929687 -0.813477,0 -1.490235,-0.109375 -0.669922,-0.109375 -1.203125,-0.328125 V 90.758 q 0.628906,0.341797 1.264649,0.512696 0.635742,0.164062 1.298828,0.164062 1.141601,0 1.756836,-0.601562 0.62207,-0.601563 0.62207,-1.708985 0,-1.09375 -0.642578,-1.702148 -0.635742,-0.608399 -1.777344,-0.608399 -0.553711,0 -1.080078,0.129883 -0.526367,0.123047 -1.004883,0.375977 z"
+           id="path2638" />
+        <path
+           d="m 68.16832,87.449409 h 7.246093 v 1.155274 H 68.16832 Z"
+           id="path2640" />
+        <path
+           d="m 81.765068,85.719917 v -3.958008 h 1.257813 v 10.636719 h -1.257813 v -0.963867 q -0.314453,0.567383 -0.84082,0.868164 -0.519532,0.293945 -1.203125,0.293945 -1.387696,0 -2.1875,-1.073242 -0.792969,-1.080078 -0.792969,-2.973633 0,-1.866211 0.799805,-2.925781 0.799804,-1.066406 2.180664,-1.066406 0.690429,0 1.216797,0.300781 0.526367,0.293945 0.827148,0.861328 z m -3.698242,2.857422 q 0,1.462891 0.464844,2.208008 0.464843,0.745117 1.374023,0.745117 0.90918,0 1.380859,-0.751953 0.478516,-0.751953 0.478516,-2.201172 0,-1.456055 -0.478516,-2.201172 -0.471679,-0.751953 -1.380859,-0.751953 -0.90918,0 -1.374023,0.745117 -0.464844,0.745118 -0.464844,2.208008 z"
+           id="path2642" />
+        <path
+           d="m 89.633301,86.936714 q 1.004883,0.266602 1.538086,0.950195 0.533203,0.676758 0.533203,1.695313 0,1.408203 -0.950195,2.214844 -0.94336,0.799804 -2.618165,0.799804 -0.704101,0 -1.435546,-0.129882 -0.731446,-0.129883 -1.435547,-0.375977 v -1.374023 q 0.697265,0.362304 1.374023,0.540039 0.676758,0.177734 1.34668,0.177734 1.134765,0 1.743164,-0.512695 0.608398,-0.512696 0.608398,-1.476563 0,-0.888672 -0.608398,-1.408203 -0.608399,-0.526367 -1.647461,-0.526367 h -1.052734 v -1.134766 h 1.052734 q 0.950195,0 1.483398,-0.416992 0.533204,-0.416992 0.533204,-1.162109 0,-0.786133 -0.499024,-1.203125 -0.492187,-0.423828 -1.408203,-0.423828 -0.608398,0 -1.257813,0.136718 -0.649414,0.136719 -1.360351,0.410157 v -1.271485 q 0.827148,-0.21875 1.469726,-0.328125 0.649415,-0.109375 1.148438,-0.109375 1.490234,0 2.378906,0.751953 0.895508,0.745118 0.895508,1.982422 0,0.840821 -0.47168,1.401367 -0.464843,0.560547 -1.360351,0.792969 z"
+           id="path2644" />
+        <path
+           d="m 93.464859,87.449409 h 7.246091 v 1.155274 h -7.246091 z"
+           id="path2646" />
+        <path
+           d="m 108.85262,87.941597 v 0.615234 h -5.44824 v 0.04102 q -0.0547,1.56543 0.59473,2.249023 0.65625,0.683594 1.8457,0.683594 0.60156,0 1.25781,-0.191406 0.65625,-0.191406 1.40137,-0.581055 v 1.250977 q -0.71777,0.293945 -1.3877,0.4375 -0.66308,0.15039 -1.28515,0.15039 -1.78418,0 -2.78906,-1.066406 -1.00489,-1.073242 -1.00489,-2.953125 0,-1.832031 0.98438,-2.925781 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.991211 0.84766,0.991211 0.90234,2.392578 z m -1.25781,-0.369141 q -0.082,-0.792968 -0.58105,-1.367187 -0.49219,-0.581055 -1.42188,-0.581055 -0.90918,0 -1.49707,0.601563 -0.58789,0.601562 -0.64258,1.353515 z"
+           id="path2648" />
+        <path
+           d="m 115.5006,85.719917 v -3.958008 h 1.25781 v 10.636719 h -1.25781 v -0.963867 q -0.31446,0.567383 -0.84083,0.868164 -0.51953,0.293945 -1.20312,0.293945 -1.3877,0 -2.1875,-1.073242 -0.79297,-1.080078 -0.79297,-2.973633 0,-1.866211 0.79981,-2.925781 0.7998,-1.066406 2.18066,-1.066406 0.69043,0 1.2168,0.300781 0.52636,0.293945 0.82715,0.861328 z m -3.69825,2.857422 q 0,1.462891 0.46485,2.208008 0.46484,0.745117 1.37402,0.745117 0.90918,0 1.38086,-0.751953 0.47852,-0.751953 0.47852,-2.201172 0,-1.456055 -0.47852,-2.201172 -0.47168,-0.751953 -1.38086,-0.751953 -0.90918,0 -1.37402,0.745117 -0.46485,0.745118 -0.46485,2.208008 z"
+           id="path2650" />
+        <path
+           d="m 118.76141,87.449409 h 7.24609 v 1.155274 h -7.24609 z"
+           id="path2652" />
+        <path
+           d="m 134.15938,87.941597 v 0.615234 h -5.44824 v 0.04102 q -0.0547,1.56543 0.59472,2.249023 0.65625,0.683594 1.84571,0.683594 0.60156,0 1.25781,-0.191406 0.65625,-0.191406 1.40137,-0.581055 v 1.250977 q -0.71778,0.293945 -1.3877,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.066406 -1.00488,-1.073242 -1.00488,-2.953125 0,-1.832031 0.98437,-2.925781 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.991211 0.84766,0.991211 0.90235,2.392578 z m -1.25781,-0.369141 q -0.082,-0.792968 -0.58106,-1.367187 -0.49219,-0.581055 -1.42187,-0.581055 -0.90918,0 -1.49707,0.601563 -0.5879,0.601562 -0.64258,1.353515 z"
+           id="path2654" />
+        <path
+           d="m 142.58815,87.941597 v 0.615234 h -5.44824 v 0.04102 q -0.0547,1.56543 0.59472,2.249023 0.65625,0.683594 1.84571,0.683594 0.60156,0 1.25781,-0.191406 0.65625,-0.191406 1.40137,-0.581055 v 1.250977 q -0.71778,0.293945 -1.3877,0.4375 -0.66308,0.15039 -1.28515,0.15039 -1.78418,0 -2.78907,-1.066406 -1.00488,-1.073242 -1.00488,-2.953125 0,-1.832031 0.98438,-2.925781 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.991211 0.84765,0.991211 0.90234,2.392578 z m -1.25781,-0.369141 q -0.082,-0.792968 -0.58106,-1.367187 -0.49218,-0.581055 -1.42187,-0.581055 -0.90918,0 -1.49707,0.601563 -0.58789,0.601562 -0.64258,1.353515 z"
+           id="path2656" />
+        <path
+           d="m 173.86273,87.579292 q 0.53321,0.136719 0.90918,0.519532 0.37598,0.375976 0.93653,1.510742 l 1.38769,2.789062 h -1.4834 l -1.21679,-2.577148 q -0.52637,-1.100586 -0.9502,-1.415039 -0.41699,-0.321289 -1.09375,-0.321289 h -1.31934 v 4.313476 h -1.38769 V 82.192574 h 2.84375 q 1.68164,0 2.57715,0.758789 0.8955,0.758789 0.8955,2.194336 0,1.011718 -0.55371,1.654296 -0.54687,0.635743 -1.54492,0.779297 z m -2.83008,-4.251953 v 3.623047 h 1.51075 q 0.99121,0 1.47656,-0.444336 0.48535,-0.444336 0.48535,-1.360351 0,-0.881836 -0.51953,-1.34668 -0.5127,-0.47168 -1.49707,-0.47168 z"
+           id="path2658" />
+        <path
+           d="m 184.75246,87.941597 v 0.615234 h -5.44825 v 0.04102 q -0.0547,1.56543 0.59473,2.249023 0.65625,0.683594 1.8457,0.683594 0.60157,0 1.25782,-0.191406 0.65625,-0.191406 1.40136,-0.581055 v 1.250977 q -0.71777,0.293945 -1.38769,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.066406 -1.00488,-1.073242 -1.00488,-2.953125 0,-1.832031 0.98437,-2.925781 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.991211 0.84766,0.991211 0.90235,2.392578 z m -1.25782,-0.369141 q -0.082,-0.792968 -0.58105,-1.367187 -0.49219,-0.581055 -1.42188,-0.581055 -0.90918,0 -1.49707,0.601563 -0.58789,0.601562 -0.64257,1.353515 z"
+           id="path2660" />
+        <path
+           d="m 190.33401,88.549995 h -0.41699 q -1.10058,0 -1.66113,0.389649 -0.55371,0.382812 -0.55371,1.148437 0,0.69043 0.41699,1.073243 0.41699,0.382812 1.15527,0.382812 1.03907,0 1.63379,-0.717773 0.59473,-0.72461 0.60157,-1.996094 v -0.280274 z m 2.44043,-0.519531 v 4.368164 h -1.26464 v -1.134765 q -0.40332,0.683593 -1.01856,1.011718 -0.6084,0.321289 -1.4834,0.321289 -1.16894,0 -1.86621,-0.65625 -0.69726,-0.663086 -0.69726,-1.770507 0,-1.278321 0.85449,-1.941407 0.86133,-0.663086 2.52246,-0.663086 h 1.68848 v -0.198242 q -0.007,-0.916015 -0.46485,-1.326172 -0.45801,-0.416992 -1.46289,-0.416992 -0.64258,0 -1.29883,0.18457 -0.65625,0.184571 -1.27832,0.54004 v -1.257813 q 0.69727,-0.266602 1.33301,-0.396484 0.64258,-0.136719 1.24414,-0.136719 0.9502,0 1.62012,0.280273 0.67676,0.280274 1.09375,0.840821 0.25976,0.341797 0.36914,0.847656 0.10937,0.499023 0.10937,1.503906 z"
+           id="path2662" />
+        <path
+           d="m 199.82919,85.719917 v -3.958008 h 1.25782 v 10.636719 h -1.25782 v -0.963867 q -0.31445,0.567383 -0.84082,0.868164 -0.51953,0.293945 -1.20312,0.293945 -1.3877,0 -2.1875,-1.073242 -0.79297,-1.080078 -0.79297,-2.973633 0,-1.866211 0.7998,-2.925781 0.79981,-1.066406 2.18067,-1.066406 0.69043,0 1.21679,0.300781 0.52637,0.293945 0.82715,0.861328 z m -3.69824,2.857422 q 0,1.462891 0.46484,2.208008 0.46485,0.745117 1.37403,0.745117 0.90918,0 1.38086,-0.751953 0.47851,-0.751953 0.47851,-2.201172 0,-1.456055 -0.47851,-2.201172 -0.47168,-0.751953 -1.38086,-0.751953 -0.90918,0 -1.37403,0.745117 -0.46484,0.745118 -0.46484,2.208008 z"
+           id="path2664" />
+        <path
+           d="m 208.26819,89.937691 q -0.31445,0.799804 -0.79981,2.105468 -0.67675,1.804688 -0.90918,2.201172 -0.31445,0.533203 -0.78613,0.799805 -0.47168,0.266602 -1.10058,0.266602 h -1.01172 v -1.052735 h 0.74511 q 0.55371,0 0.86817,-0.321289 0.31445,-0.321289 0.7998,-1.661133 l -2.95996,-7.533203 h 1.33301 l 2.26953,5.988281 2.23535,-5.988281 h 1.33301 z"
+           id="path2666" />
+        <path
+           d="m 252.39441,85.829292 -5.81055,2.1875 5.81055,2.166992 v 1.250977 l -7.22559,-2.857422 v -1.134765 l 7.22559,-2.857422 z"
+           id="path2668" />
+        <path
+           d="m 260.1806,87.654488 v 4.74414 h -1.26465 v -4.74414 q 0,-1.032227 -0.3623,-1.517579 -0.3623,-0.485351 -1.13477,-0.485351 -0.88183,0 -1.36035,0.628906 -0.47168,0.62207 -0.47168,1.791016 v 4.327148 h -1.25781 v -7.65625 h 1.25781 v 1.148438 q 0.33496,-0.65625 0.90918,-0.991211 0.57422,-0.341797 1.36035,-0.341797 1.16895,0 1.74317,0.772461 0.58105,0.765625 0.58105,2.324219 z"
+           id="path2670" />
+        <path
+           d="m 265.64597,85.624214 q -0.95704,0 -1.44922,0.745117 -0.49219,0.745118 -0.49219,2.208008 0,1.456055 0.49219,2.208008 0.49218,0.745117 1.44922,0.745117 0.96386,0 1.45605,-0.745117 0.49219,-0.751953 0.49219,-2.208008 0,-1.46289 -0.49219,-2.208008 -0.49219,-0.745117 -1.45605,-0.745117 z m 0,-1.066406 q 1.59277,0 2.43359,1.032226 0.84766,1.032227 0.84766,2.987305 0,1.961914 -0.84082,2.994141 -0.84083,1.02539 -2.44043,1.02539 -1.59278,0 -2.4336,-1.02539 -0.84082,-1.032227 -0.84082,-2.994141 0,-1.955078 0.84082,-2.987305 0.84082,-1.032226 2.4336,-1.032226 z"
+           id="path2672" />
+        <path
+           d="m 277.04837,87.654488 v 4.74414 h -1.26465 v -4.74414 q 0,-1.032227 -0.3623,-1.517579 -0.36231,-0.485351 -1.13477,-0.485351 -0.88183,0 -1.36035,0.628906 -0.47168,0.62207 -0.47168,1.791016 v 4.327148 h -1.25781 v -7.65625 h 1.25781 v 1.148438 q 0.33496,-0.65625 0.90918,-0.991211 0.57422,-0.341797 1.36035,-0.341797 1.16895,0 1.74317,0.772461 0.58105,0.765625 0.58105,2.324219 z"
+           id="path2674" />
+        <path
+           d="m 285.95905,87.941597 v 0.615234 h -5.44825 v 0.04102 q -0.0547,1.56543 0.59473,2.249023 0.65625,0.683594 1.8457,0.683594 0.60157,0 1.25782,-0.191406 0.65625,-0.191406 1.40136,-0.581055 v 1.250977 q -0.71777,0.293945 -1.38769,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.066406 -1.00488,-1.073242 -1.00488,-2.953125 0,-1.832031 0.98437,-2.925781 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.991211 0.84766,0.991211 0.90235,2.392578 z m -1.25782,-0.369141 q -0.082,-0.792968 -0.58105,-1.367187 -0.49219,-0.581055 -1.42188,-0.581055 -0.90918,0 -1.49707,0.601563 -0.58789,0.601562 -0.64258,1.353515 z"
+           id="path2676" />
+        <path
+           d="m 287.33313,85.829292 v -1.24414 l 7.22559,2.857422 v 1.134765 l -7.22559,2.857422 v -1.250977 l 5.81055,-2.166992 z"
+           id="path2678" />
+        <path
+           d="m 323.01691,91.236519 h 4.68945 v 1.162109 h -6.2002 v -1.162109 q 1.27832,-1.34668 2.23536,-2.378906 0.95703,-1.032227 1.31933,-1.456055 0.6836,-0.833984 0.92285,-1.34668 0.23926,-0.519531 0.23926,-1.05957 0,-0.854492 -0.50586,-1.339844 -0.49902,-0.485351 -1.37402,-0.485351 -0.62207,0 -1.30567,0.225586 -0.68359,0.225585 -1.44921,0.683593 v -1.394531 q 0.7041,-0.334961 1.38086,-0.505859 0.68359,-0.170899 1.34667,-0.170899 1.49708,0 2.40625,0.799805 0.91602,0.792969 0.91602,2.084961 0,0.65625 -0.30762,1.3125 -0.30078,0.65625 -0.98437,1.449219 -0.38281,0.444336 -1.11426,1.230468 -0.72461,0.786133 -2.21484,2.351563 z"
+           id="path2680" />
+        <path
+           d="m 332.97009,87.873238 q 0.88184,0 1.38086,-0.635743 0.50586,-0.635742 0.50586,-1.756836 0,-1.121093 -0.50586,-1.756835 -0.49902,-0.635743 -1.38086,-0.635743 -0.91601,0 -1.38086,0.608399 -0.46484,0.601562 -0.46484,1.784179 0,1.189454 0.45801,1.791016 0.46484,0.601563 1.38769,0.601563 z m -2.46093,4.313476 V 90.91523 q 0.43066,0.252929 0.91601,0.389648 0.48535,0.129883 1.01172,0.129883 1.3125,0 1.98242,-0.984375 0.67676,-0.991211 0.67676,-2.912109 -0.32129,0.683593 -0.90234,1.052734 -0.58106,0.362305 -1.33301,0.362305 -1.47656,0 -2.29004,-0.90918 -0.80664,-0.90918 -0.80664,-2.577148 0,-1.647461 0.82715,-2.549805 0.83398,-0.90918 2.35156,-0.90918 1.77734,0 2.60449,1.278321 0.82715,1.27832 0.82715,4.019531 0,2.577148 -0.99805,3.9375 -0.99121,1.353515 -2.88476,1.353515 -0.49903,0 -1.00489,-0.109375 -0.50586,-0.102539 -0.97753,-0.300781 z"
+           id="path2682" />
+        <path
+           d="m 341.95593,85.521675 q 0.23242,-0.492187 0.58789,-0.724609 0.36231,-0.239258 0.86817,-0.239258 0.92285,0 1.29883,0.717773 0.38281,0.710938 0.38281,2.686524 v 4.436523 h -1.14844 v -4.381836 q 0,-1.620117 -0.18457,-2.009765 -0.17773,-0.396485 -0.65625,-0.396485 -0.54687,0 -0.75195,0.423828 -0.19825,0.416993 -0.19825,1.982422 v 4.381836 h -1.14843 v -4.381836 q 0,-1.640625 -0.19824,-2.023437 -0.19141,-0.382813 -0.69727,-0.382813 -0.49902,0 -0.69727,0.423828 -0.1914,0.416993 -0.1914,1.982422 v 4.381836 h -1.1416 v -7.65625 h 1.1416 v 0.65625 q 0.22558,-0.410156 0.56054,-0.62207 0.3418,-0.21875 0.77247,-0.21875 0.51953,0 0.86132,0.239258 0.34864,0.239258 0.54004,0.724609 z"
+           id="path2684" />
+        <path
+           d="m 371.75397,84.742378 h 1.30566 l 2.22168,6.425781 2.22852,-6.425781 h 1.30566 l -2.7207,7.65625 h -1.62012 z"
+           id="path2686" />
+        <path
+           d="m 381.34485,91.243355 h 2.14648 v -7.710938 l -2.57031,1.237305 V 83.44355 l 2.55664,-1.216797 h 1.38086 v 9.016602 h 2.11914 v 1.155273 h -5.63281 z"
+           id="path2688" />
+        <path
+           d="m 390.59732,89.636909 h 2.40625 v 2.761719 h -2.40625 z"
+           id="path2690" />
+        <path
+           d="m 398.21262,91.243355 h 2.14648 v -7.710938 l -2.57031,1.237305 V 83.44355 l 2.55664,-1.216797 h 1.38086 v 9.016602 h 2.11914 v 1.155273 h -5.63281 z"
+           id="path2692" />
+        <path
+           d="m 408.8699,87.873238 q 0.88184,0 1.38086,-0.635743 0.50586,-0.635742 0.50586,-1.756836 0,-1.121093 -0.50586,-1.756835 -0.49902,-0.635743 -1.38086,-0.635743 -0.91601,0 -1.38086,0.608399 -0.46484,0.601562 -0.46484,1.784179 0,1.189454 0.45801,1.791016 0.46484,0.601563 1.38769,0.601563 z m -2.46093,4.313476 V 90.91523 q 0.43066,0.252929 0.91601,0.389648 0.48535,0.129883 1.01172,0.129883 1.3125,0 1.98242,-0.984375 0.67676,-0.991211 0.67676,-2.912109 -0.32129,0.683593 -0.90234,1.052734 -0.58106,0.362305 -1.33301,0.362305 -1.47656,0 -2.29004,-0.90918 -0.80664,-0.90918 -0.80664,-2.577148 0,-1.647461 0.82715,-2.549805 0.83398,-0.90918 2.35156,-0.90918 1.77734,0 2.60449,1.278321 0.82715,1.27832 0.82715,4.019531 0,2.577148 -0.99805,3.9375 -0.99121,1.353515 -2.88476,1.353515 -0.49903,0 -1.00488,-0.109375 -0.50586,-0.102539 -0.97754,-0.300781 z"
+           id="path2694" />
+        <path
+           d="m 415.89386,89.636909 h 2.40625 v 2.761719 h -2.40625 z"
+           id="path2696" />
+        <path
+           d="m 425.87439,82.042183 q 1.63379,0 2.46777,1.333008 0.84082,1.333008 0.84082,3.944336 0,2.611328 -0.84082,3.944336 -0.83398,1.333007 -2.46777,1.333007 -1.63379,0 -2.46777,-1.333007 -0.83399,-1.333008 -0.83399,-3.944336 0,-2.611328 0.83399,-3.944336 0.83398,-1.333008 2.46777,-1.333008 z m 0,9.460937 q 0.9707,0 1.44238,-1.032226 0.47852,-1.032227 0.47852,-3.151367 0,-1.12793 -0.13672,-2.03711 l -3.25391,5.092774 q 0.5127,1.127929 1.46973,1.127929 z m 0,-8.367187 q -0.96387,0 -1.44238,1.032226 -0.47168,1.032227 -0.47168,3.151368 0,0.963867 0.12988,1.804687 l 3.18555,-5.079101 q -0.51953,-0.90918 -1.40137,-0.90918 z"
+           id="path2698" />
+        <path
+           d="m 4.0742187,107.4744 q 0.881836,0 1.3808594,-0.63574 0.5058594,-0.63574 0.5058594,-1.75683 0,-1.1211 -0.5058594,-1.75684 -0.4990234,-0.63574 -1.3808594,-0.63574 -0.9160156,0 -1.3808593,0.6084 -0.4648438,0.60156 -0.4648438,1.78418 0,1.18945 0.4580078,1.79101 0.4648438,0.60156 1.3876953,0.60156 z m -2.4609375,4.31348 v -1.27148 q 0.4306641,0.25293 0.9160157,0.38964 0.4853515,0.12989 1.0117187,0.12989 1.3125,0 1.9824219,-0.98438 0.6767578,-0.99121 0.6767578,-2.91211 -0.3212891,0.6836 -0.9023437,1.05274 -0.5810547,0.3623 -1.3330078,0.3623 -1.4765625,0 -2.2900391,-0.90918 -0.80664064,-0.90918 -0.80664064,-2.57715 0,-1.64746 0.82714844,-2.5498 0.8339844,-0.90918 2.3515625,-0.90918 1.7773437,0 2.6044922,1.27832 0.8271484,1.27832 0.8271484,4.01953 0,2.57715 -0.9980469,3.9375 -0.9912109,1.35352 -2.8847656,1.35352 -0.4990234,0 -1.0048828,-0.10938 -0.5058594,-0.10254 -0.9775391,-0.30078 z"
+           id="path2700" />
+        <path
+           d="m 13.453193,103.05155 -3.219727,5.39356 h 3.219727 z m -0.225586,-1.25781 h 1.599609 v 6.65137 h 1.360352 v 1.12109 h -1.360352 v 2.43359 H 13.453193 V 109.5662 H 9.1260443 v -1.30566 z"
+           id="path2702" />
+        <path
+           d="m 17.565029,107.05058 h 7.246094 v 1.15527 h -7.246094 z"
+           id="path2704" />
+        <path
+           d="m 26.711582,101.79374 h 5.167969 v 1.16211 h -3.910156 v 2.50879 q 0.293945,-0.10938 0.58789,-0.15723 0.300782,-0.0547 0.601563,-0.0547 1.585937,0 2.515625,0.93653 0.929687,0.93652 0.929687,2.53613 0,1.61328 -0.977539,2.54297 -0.970703,0.92969 -2.659179,0.92969 -0.813477,0 -1.490235,-0.10938 -0.669922,-0.10937 -1.203125,-0.32812 v -1.40137 q 0.628906,0.3418 1.264649,0.51269 0.635742,0.16407 1.298828,0.16407 1.141601,0 1.756836,-0.60157 0.62207,-0.60156 0.62207,-1.70898 0,-1.09375 -0.642578,-1.70215 -0.635742,-0.6084 -1.777344,-0.6084 -0.553711,0 -1.080078,0.12989 -0.526367,0.12304 -1.004883,0.37597 z"
+           id="path2706" />
+        <path
+           d="m 34.685722,101.79374 h 6.425782 v 0.58789 l -3.650391,9.61816 H 36.01873 l 3.554688,-9.04394 h -4.887696 z"
+           id="path2708" />
+        <path
+           d="m 42.861572,107.05058 h 7.246094 v 1.15527 h -7.246094 z"
+           id="path2710" />
+        <path
+           d="M 55.402122,108.15116 H 54.98513 q -1.100586,0 -1.661133,0.38965 -0.55371,0.38281 -0.55371,1.14844 0,0.69043 0.416992,1.07324 0.416992,0.38281 1.155273,0.38281 1.039063,0 1.633789,-0.71777 0.594727,-0.72461 0.601563,-1.9961 v -0.28027 z m 2.44043,-0.51953 v 4.36816 h -1.264648 v -1.13476 q -0.403321,0.68359 -1.018555,1.01172 -0.608398,0.32129 -1.483398,0.32129 -1.168946,0 -1.866211,-0.65625 -0.697266,-0.66309 -0.697266,-1.77051 0,-1.27832 0.854492,-1.94141 0.861328,-0.66308 2.522461,-0.66308 h 1.688477 v -0.19825 q -0.0068,-0.91601 -0.464844,-1.32617 -0.458008,-0.41699 -1.462891,-0.41699 -0.642578,0 -1.298828,0.18457 -0.65625,0.18457 -1.27832,0.54004 v -1.25781 q 0.697266,-0.2666 1.333008,-0.39649 0.642578,-0.13672 1.24414,-0.13672 0.950196,0 1.620118,0.28028 0.676757,0.28027 1.09375,0.84082 0.259765,0.34179 0.36914,0.84765 0.109375,0.49903 0.109375,1.50391 z"
+           id="path2712" />
+        <path
+           d="m 60.447109,101.79374 h 5.167969 v 1.16211 h -3.910156 v 2.50879 q 0.293945,-0.10938 0.58789,-0.15723 0.300782,-0.0547 0.601563,-0.0547 1.585937,0 2.515625,0.93653 0.929687,0.93652 0.929687,2.53613 0,1.61328 -0.977539,2.54297 -0.970703,0.92969 -2.659179,0.92969 -0.813477,0 -1.490235,-0.10938 -0.669922,-0.10937 -1.203125,-0.32812 v -1.40137 q 0.628906,0.3418 1.264649,0.51269 0.635742,0.16407 1.298828,0.16407 1.141601,0 1.756836,-0.60157 0.62207,-0.60156 0.62207,-1.70898 0,-1.09375 -0.642578,-1.70215 -0.635742,-0.6084 -1.777344,-0.6084 -0.553711,0 -1.080078,0.12989 -0.526367,0.12304 -1.004883,0.37597 z"
+           id="path2714" />
+        <path
+           d="m 68.16832,107.05058 h 7.246093 v 1.15527 H 68.16832 Z"
+           id="path2716" />
+        <path
+           d="m 81.765068,105.32108 v -3.958 h 1.257813 v 10.63671 h -1.257813 v -0.96386 q -0.314453,0.56738 -0.84082,0.86816 -0.519532,0.29395 -1.203125,0.29395 -1.387696,0 -2.1875,-1.07325 -0.792969,-1.08007 -0.792969,-2.97363 0,-1.86621 0.799805,-2.92578 0.799804,-1.06641 2.180664,-1.06641 0.690429,0 1.216797,0.30078 0.526367,0.29395 0.827148,0.86133 z m -3.698242,2.85742 q 0,1.4629 0.464844,2.20801 0.464843,0.74512 1.374023,0.74512 0.90918,0 1.380859,-0.75195 0.478516,-0.75196 0.478516,-2.20118 0,-1.45605 -0.478516,-2.20117 -0.471679,-0.75195 -1.380859,-0.75195 -0.90918,0 -1.374023,0.74512 -0.464844,0.74511 -0.464844,2.208 z"
+           id="path2718" />
+        <path
+           d="m 89.633301,106.53788 q 1.004883,0.2666 1.538086,0.9502 0.533203,0.67675 0.533203,1.69531 0,1.4082 -0.950195,2.21484 -0.94336,0.79981 -2.618165,0.79981 -0.704101,0 -1.435546,-0.12989 -0.731446,-0.12988 -1.435547,-0.37597 v -1.37403 q 0.697265,0.36231 1.374023,0.54004 0.676758,0.17774 1.34668,0.17774 1.134765,0 1.743164,-0.5127 0.608398,-0.51269 0.608398,-1.47656 0,-0.88867 -0.608398,-1.4082 -0.608399,-0.52637 -1.647461,-0.52637 h -1.052734 v -1.13477 h 1.052734 q 0.950195,0 1.483398,-0.41699 0.533204,-0.41699 0.533204,-1.16211 0,-0.78613 -0.499024,-1.20312 -0.492187,-0.42383 -1.408203,-0.42383 -0.608398,0 -1.257813,0.13672 -0.649414,0.13672 -1.360351,0.41015 v -1.27148 q 0.827148,-0.21875 1.469726,-0.32813 0.649415,-0.10937 1.148438,-0.10937 1.490234,0 2.378906,0.75195 0.895508,0.74512 0.895508,1.98242 0,0.84082 -0.47168,1.40137 -0.464843,0.56055 -1.360351,0.79297 z"
+           id="path2720" />
+        <path
+           d="m 93.464859,107.05058 h 7.246091 v 1.15527 h -7.246091 z"
+           id="path2722" />
+        <path
+           d="m 108.85262,107.54276 v 0.61524 h -5.44824 v 0.041 q -0.0547,1.56543 0.59473,2.24903 0.65625,0.68359 1.8457,0.68359 0.60156,0 1.25781,-0.19141 0.65625,-0.1914 1.40137,-0.58105 v 1.25098 q -0.71777,0.29394 -1.3877,0.4375 -0.66308,0.15039 -1.28515,0.15039 -1.78418,0 -2.78906,-1.06641 -1.00489,-1.07324 -1.00489,-2.95313 0,-1.83203 0.98438,-2.92578 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99122 0.90234,2.39258 z m -1.25781,-0.36914 q -0.082,-0.79297 -0.58105,-1.36719 -0.49219,-0.58105 -1.42188,-0.58105 -0.90918,0 -1.49707,0.60156 -0.58789,0.60156 -0.64258,1.35352 z"
+           id="path2724" />
+        <path
+           d="m 116.90196,101.36308 v 1.04589 h -1.42871 q -0.67676,0 -0.94336,0.28028 -0.25976,0.27343 -0.25976,0.97754 v 0.67675 h 2.63183 v 0.97754 h -2.63183 v 6.67871 h -1.25782 v -6.67871 h -2.04394 v -0.97754 h 2.04394 v -0.5332 q 0,-1.25781 0.57422,-1.85254 0.58106,-0.59472 1.80469,-0.59472 z"
+           id="path2726" />
+        <path
+           d="m 118.76141,107.05058 h 7.24609 v 1.15527 h -7.24609 z"
+           id="path2728" />
+        <path
+           d="m 130.57735,107.4744 q 0.88183,0 1.38086,-0.63574 0.50586,-0.63574 0.50586,-1.75683 0,-1.1211 -0.50586,-1.75684 -0.49903,-0.63574 -1.38086,-0.63574 -0.91602,0 -1.38086,0.6084 -0.46485,0.60156 -0.46485,1.78418 0,1.18945 0.45801,1.79101 0.46485,0.60156 1.3877,0.60156 z m -2.46094,4.31348 v -1.27148 q 0.43066,0.25293 0.91601,0.38964 0.48536,0.12989 1.01172,0.12989 1.3125,0 1.98243,-0.98438 0.67675,-0.99121 0.67675,-2.91211 -0.32129,0.6836 -0.90234,1.05274 -0.58106,0.3623 -1.33301,0.3623 -1.47656,0 -2.29004,-0.90918 -0.80664,-0.90918 -0.80664,-2.57715 0,-1.64746 0.82715,-2.5498 0.83398,-0.90918 2.35156,-0.90918 1.77735,0 2.6045,1.27832 0.82714,1.27832 0.82714,4.01953 0,2.57715 -0.99804,3.9375 -0.99121,1.35352 -2.88477,1.35352 -0.49902,0 -1.00488,-0.10938 -0.50586,-0.10254 -0.97754,-0.30078 z"
+           id="path2730" />
+        <path
+           d="m 137.4817,110.83768 h 4.68946 v 1.16211 h -6.2002 v -1.16211 q 1.27832,-1.34668 2.23535,-2.3789 0.95704,-1.03223 1.31934,-1.45606 0.68359,-0.83398 0.92285,-1.34668 0.23926,-0.51953 0.23926,-1.05957 0,-0.85449 -0.50586,-1.33984 -0.49902,-0.48535 -1.37402,-0.48535 -0.62207,0 -1.30567,0.22558 -0.68359,0.22559 -1.44922,0.6836 v -1.39453 q 0.70411,-0.33496 1.38086,-0.50586 0.6836,-0.1709 1.34668,-0.1709 1.49707,0 2.40625,0.7998 0.91602,0.79297 0.91602,2.08496 0,0.65625 -0.30762,1.3125 -0.30078,0.65625 -0.98437,1.44922 -0.38282,0.44434 -1.11426,1.23047 -0.72461,0.78613 -2.21485,2.35156 z"
+           id="path2732" />
+        <path
+           d="m 173.86273,107.18046 q 0.53321,0.13672 0.90918,0.51953 0.37598,0.37598 0.93653,1.51074 l 1.38769,2.78906 h -1.4834 l -1.21679,-2.57714 q -0.52637,-1.10059 -0.9502,-1.41504 -0.41699,-0.32129 -1.09375,-0.32129 h -1.31934 v 4.31347 h -1.38769 v -10.20605 h 2.84375 q 1.68164,0 2.57715,0.75879 0.8955,0.75879 0.8955,2.19433 0,1.01172 -0.55371,1.6543 -0.54687,0.63574 -1.54492,0.7793 z m -2.83008,-4.25196 v 3.62305 h 1.51075 q 0.99121,0 1.47656,-0.44433 0.48535,-0.44434 0.48535,-1.36036 0,-0.88183 -0.51953,-1.34668 -0.5127,-0.47168 -1.49707,-0.47168 z"
+           id="path2734" />
+        <path
+           d="m 184.75246,107.54276 v 0.61524 h -5.44825 v 0.041 q -0.0547,1.56543 0.59473,2.24903 0.65625,0.68359 1.8457,0.68359 0.60157,0 1.25782,-0.19141 0.65625,-0.1914 1.40136,-0.58105 v 1.25098 q -0.71777,0.29394 -1.38769,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.06641 -1.00488,-1.07324 -1.00488,-2.95313 0,-1.83203 0.98437,-2.92578 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99122 0.90235,2.39258 z m -1.25782,-0.36914 q -0.082,-0.79297 -0.58105,-1.36719 -0.49219,-0.58105 -1.42188,-0.58105 -0.90918,0 -1.49707,0.60156 -0.58789,0.60156 -0.64257,1.35352 z"
+           id="path2736" />
+        <path
+           d="m 190.33401,108.15116 h -0.41699 q -1.10058,0 -1.66113,0.38965 -0.55371,0.38281 -0.55371,1.14844 0,0.69043 0.41699,1.07324 0.41699,0.38281 1.15527,0.38281 1.03907,0 1.63379,-0.71777 0.59473,-0.72461 0.60157,-1.9961 v -0.28027 z m 2.44043,-0.51953 v 4.36816 h -1.26464 v -1.13476 q -0.40332,0.68359 -1.01856,1.01172 -0.6084,0.32129 -1.4834,0.32129 -1.16894,0 -1.86621,-0.65625 -0.69726,-0.66309 -0.69726,-1.77051 0,-1.27832 0.85449,-1.94141 0.86133,-0.66308 2.52246,-0.66308 h 1.68848 v -0.19825 q -0.007,-0.91601 -0.46485,-1.32617 -0.45801,-0.41699 -1.46289,-0.41699 -0.64258,0 -1.29883,0.18457 -0.65625,0.18457 -1.27832,0.54004 v -1.25781 q 0.69727,-0.2666 1.33301,-0.39649 0.64258,-0.13672 1.24414,-0.13672 0.9502,0 1.62012,0.28028 0.67676,0.28027 1.09375,0.84082 0.25976,0.34179 0.36914,0.84765 0.10937,0.49903 0.10937,1.50391 z"
+           id="path2738" />
+        <path
+           d="m 199.82919,105.32108 v -3.958 h 1.25782 v 10.63671 h -1.25782 v -0.96386 q -0.31445,0.56738 -0.84082,0.86816 -0.51953,0.29395 -1.20312,0.29395 -1.3877,0 -2.1875,-1.07325 -0.79297,-1.08007 -0.79297,-2.97363 0,-1.86621 0.7998,-2.92578 0.79981,-1.06641 2.18067,-1.06641 0.69043,0 1.21679,0.30078 0.52637,0.29395 0.82715,0.86133 z m -3.69824,2.85742 q 0,1.4629 0.46484,2.20801 0.46485,0.74512 1.37403,0.74512 0.90918,0 1.38086,-0.75195 0.47851,-0.75196 0.47851,-2.20118 0,-1.45605 -0.47851,-2.20117 -0.47168,-0.75195 -1.38086,-0.75195 -0.90918,0 -1.37403,0.74512 -0.46484,0.74511 -0.46484,2.208 z"
+           id="path2740" />
+        <path
+           d="m 208.26819,109.53886 q -0.31445,0.7998 -0.79981,2.10547 -0.67675,1.80468 -0.90918,2.20117 -0.31445,0.5332 -0.78613,0.7998 -0.47168,0.2666 -1.10058,0.2666 h -1.01172 v -1.05273 h 0.74511 q 0.55371,0 0.86817,-0.32129 0.31445,-0.32129 0.7998,-1.66113 l -2.95996,-7.53321 h 1.33301 l 2.26953,5.98829 2.23535,-5.98829 h 1.33301 z"
+           id="path2742" />
+        <path
+           d="m 252.39441,105.43046 -5.81055,2.1875 5.81055,2.16699 v 1.25098 l -7.22559,-2.85743 v -1.13476 l 7.22559,-2.85742 z"
+           id="path2744" />
+        <path
+           d="m 260.1806,107.25565 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03222 -0.3623,-1.51757 -0.3623,-0.48536 -1.13477,-0.48536 -0.88183,0 -1.36035,0.62891 -0.47168,0.62207 -0.47168,1.79102 v 4.32714 h -1.25781 v -7.65625 h 1.25781 v 1.14844 q 0.33496,-0.65625 0.90918,-0.99121 0.57422,-0.3418 1.36035,-0.3418 1.16895,0 1.74317,0.77246 0.58105,0.76563 0.58105,2.32422 z"
+           id="path2746" />
+        <path
+           d="m 265.64597,105.22538 q -0.95704,0 -1.44922,0.74512 -0.49219,0.74511 -0.49219,2.208 0,1.45606 0.49219,2.20801 0.49218,0.74512 1.44922,0.74512 0.96386,0 1.45605,-0.74512 0.49219,-0.75195 0.49219,-2.20801 0,-1.46289 -0.49219,-2.208 -0.49219,-0.74512 -1.45605,-0.74512 z m 0,-1.06641 q 1.59277,0 2.43359,1.03223 0.84766,1.03223 0.84766,2.9873 0,1.96192 -0.84082,2.99415 -0.84083,1.02539 -2.44043,1.02539 -1.59278,0 -2.4336,-1.02539 -0.84082,-1.03223 -0.84082,-2.99415 0,-1.95507 0.84082,-2.9873 0.84082,-1.03223 2.4336,-1.03223 z"
+           id="path2748" />
+        <path
+           d="m 277.04837,107.25565 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03222 -0.3623,-1.51757 -0.36231,-0.48536 -1.13477,-0.48536 -0.88183,0 -1.36035,0.62891 -0.47168,0.62207 -0.47168,1.79102 v 4.32714 h -1.25781 v -7.65625 h 1.25781 v 1.14844 q 0.33496,-0.65625 0.90918,-0.99121 0.57422,-0.3418 1.36035,-0.3418 1.16895,0 1.74317,0.77246 0.58105,0.76563 0.58105,2.32422 z"
+           id="path2750" />
+        <path
+           d="m 285.95905,107.54276 v 0.61524 h -5.44825 v 0.041 q -0.0547,1.56543 0.59473,2.24903 0.65625,0.68359 1.8457,0.68359 0.60157,0 1.25782,-0.19141 0.65625,-0.1914 1.40136,-0.58105 v 1.25098 q -0.71777,0.29394 -1.38769,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.06641 -1.00488,-1.07324 -1.00488,-2.95313 0,-1.83203 0.98437,-2.92578 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99122 0.90235,2.39258 z m -1.25782,-0.36914 q -0.082,-0.79297 -0.58105,-1.36719 -0.49219,-0.58105 -1.42188,-0.58105 -0.90918,0 -1.49707,0.60156 -0.58789,0.60156 -0.64258,1.35352 z"
+           id="path2752" />
+        <path
+           d="m 287.33313,105.43046 v -1.24414 l 7.22559,2.85742 v 1.13476 l -7.22559,2.85743 v -1.25098 l 5.81055,-2.16699 z"
+           id="path2754" />
+        <path
+           d="m 323.01691,110.83768 h 4.68945 v 1.16211 h -6.2002 v -1.16211 q 1.27832,-1.34668 2.23536,-2.3789 0.95703,-1.03223 1.31933,-1.45606 0.6836,-0.83398 0.92285,-1.34668 0.23926,-0.51953 0.23926,-1.05957 0,-0.85449 -0.50586,-1.33984 -0.49902,-0.48535 -1.37402,-0.48535 -0.62207,0 -1.30567,0.22558 -0.68359,0.22559 -1.44921,0.6836 v -1.39453 q 0.7041,-0.33496 1.38086,-0.50586 0.68359,-0.1709 1.34667,-0.1709 1.49708,0 2.40625,0.7998 0.91602,0.79297 0.91602,2.08496 0,0.65625 -0.30762,1.3125 -0.30078,0.65625 -0.98437,1.44922 -0.38281,0.44434 -1.11426,1.23047 -0.72461,0.78613 -2.21484,2.35156 z"
+           id="path2756" />
+        <path
+           d="m 332.97009,107.4744 q 0.88184,0 1.38086,-0.63574 0.50586,-0.63574 0.50586,-1.75683 0,-1.1211 -0.50586,-1.75684 -0.49902,-0.63574 -1.38086,-0.63574 -0.91601,0 -1.38086,0.6084 -0.46484,0.60156 -0.46484,1.78418 0,1.18945 0.45801,1.79101 0.46484,0.60156 1.38769,0.60156 z m -2.46093,4.31348 v -1.27148 q 0.43066,0.25293 0.91601,0.38964 0.48535,0.12989 1.01172,0.12989 1.3125,0 1.98242,-0.98438 0.67676,-0.99121 0.67676,-2.91211 -0.32129,0.6836 -0.90234,1.05274 -0.58106,0.3623 -1.33301,0.3623 -1.47656,0 -2.29004,-0.90918 -0.80664,-0.90918 -0.80664,-2.57715 0,-1.64746 0.82715,-2.5498 0.83398,-0.90918 2.35156,-0.90918 1.77734,0 2.60449,1.27832 0.82715,1.27832 0.82715,4.01953 0,2.57715 -0.99805,3.9375 -0.99121,1.35352 -2.88476,1.35352 -0.49903,0 -1.00489,-0.10938 -0.50586,-0.10254 -0.97753,-0.30078 z"
+           id="path2758" />
+        <path
+           d="m 341.95593,105.12284 q 0.23242,-0.49219 0.58789,-0.72461 0.36231,-0.23926 0.86817,-0.23926 0.92285,0 1.29883,0.71778 0.38281,0.71093 0.38281,2.68652 v 4.43652 h -1.14844 v -4.38183 q 0,-1.62012 -0.18457,-2.00977 -0.17773,-0.39648 -0.65625,-0.39648 -0.54687,0 -0.75195,0.42383 -0.19825,0.41699 -0.19825,1.98242 v 4.38183 h -1.14843 v -4.38183 q 0,-1.64063 -0.19824,-2.02344 -0.19141,-0.38281 -0.69727,-0.38281 -0.49902,0 -0.69727,0.42383 -0.1914,0.41699 -0.1914,1.98242 v 4.38183 h -1.1416 v -7.65625 h 1.1416 v 0.65625 q 0.22558,-0.41015 0.56054,-0.62207 0.3418,-0.21875 0.77247,-0.21875 0.51953,0 0.86132,0.23926 0.34864,0.23926 0.54004,0.72461 z"
+           id="path2760" />
+        <path
+           d="m 371.75397,104.34354 h 1.30566 l 2.22168,6.42579 2.22852,-6.42579 h 1.30566 l -2.7207,7.65625 h -1.62012 z"
+           id="path2762" />
+        <path
+           d="m 381.34485,110.84452 h 2.14648 v -7.71094 l -2.57031,1.23731 v -1.32617 l 2.55664,-1.2168 h 1.38086 v 9.0166 h 2.11914 v 1.15527 h -5.63281 z"
+           id="path2764" />
+        <path
+           d="m 390.59732,109.23808 h 2.40625 v 2.76171 h -2.40625 z"
+           id="path2766" />
+        <path
+           d="m 398.21262,110.84452 h 2.14648 v -7.71094 l -2.57031,1.23731 v -1.32617 l 2.55664,-1.2168 h 1.38086 v 9.0166 h 2.11914 v 1.15527 h -5.63281 z"
+           id="path2768" />
+        <path
+           d="m 408.8699,107.4744 q 0.88184,0 1.38086,-0.63574 0.50586,-0.63574 0.50586,-1.75683 0,-1.1211 -0.50586,-1.75684 -0.49902,-0.63574 -1.38086,-0.63574 -0.91601,0 -1.38086,0.6084 -0.46484,0.60156 -0.46484,1.78418 0,1.18945 0.45801,1.79101 0.46484,0.60156 1.38769,0.60156 z m -2.46093,4.31348 v -1.27148 q 0.43066,0.25293 0.91601,0.38964 0.48535,0.12989 1.01172,0.12989 1.3125,0 1.98242,-0.98438 0.67676,-0.99121 0.67676,-2.91211 -0.32129,0.6836 -0.90234,1.05274 -0.58106,0.3623 -1.33301,0.3623 -1.47656,0 -2.29004,-0.90918 -0.80664,-0.90918 -0.80664,-2.57715 0,-1.64746 0.82715,-2.5498 0.83398,-0.90918 2.35156,-0.90918 1.77734,0 2.60449,1.27832 0.82715,1.27832 0.82715,4.01953 0,2.57715 -0.99805,3.9375 -0.99121,1.35352 -2.88476,1.35352 -0.49903,0 -1.00488,-0.10938 -0.50586,-0.10254 -0.97754,-0.30078 z"
+           id="path2770" />
+        <path
+           d="m 415.89386,109.23808 h 2.40625 v 2.76171 h -2.40625 z"
+           id="path2772" />
+        <path
+           d="m 425.87439,101.64335 q 1.63379,0 2.46777,1.33301 0.84082,1.333 0.84082,3.94433 0,2.61133 -0.84082,3.94434 -0.83398,1.33301 -2.46777,1.33301 -1.63379,0 -2.46777,-1.33301 -0.83399,-1.33301 -0.83399,-3.94434 0,-2.61133 0.83399,-3.94433 0.83398,-1.33301 2.46777,-1.33301 z m 0,9.46094 q 0.9707,0 1.44238,-1.03223 0.47852,-1.03223 0.47852,-3.15137 0,-1.12793 -0.13672,-2.03711 l -3.25391,5.09278 q 0.5127,1.12793 1.46973,1.12793 z m 0,-8.36719 q -0.96387,0 -1.44238,1.03223 -0.47168,1.03222 -0.47168,3.15136 0,0.96387 0.12988,1.80469 l 3.18555,-5.0791 q -0.51953,-0.90918 -1.40137,-0.90918 z"
+           id="path2774" />
+        <path
+           d="m 9.6182318,120.96425 h 2.0029292 v 5.58496 l 2.40625,-2.60449 h 2.426758 l -2.898437,2.85742 3.0625,4.79883 h -2.214844 l -2.098633,-3.58203 -0.683594,0.65625 v 2.92578 H 9.6182318 Z"
+           style="font-weight:bold;fill:#000000"
+           id="path2776" />
+        <path
+           d="m 24.749599,123.94472 -2.433593,7.65625 h -2.467774 l -2.433593,-7.65625 h 2.030273 l 1.633789,5.97461 1.640625,-5.97461 z"
+           style="font-weight:bold;fill:#000000"
+           id="path2778" />
+        <path
+           d="m 30.081699,128.00526 q -1.121093,0 -1.565429,0.28711 -0.444336,0.28711 -0.444336,0.98438 0,0.51953 0.307617,0.82715 0.307617,0.30761 0.833984,0.30761 0.792969,0 1.230469,-0.59472 0.4375,-0.60156 0.4375,-1.67481 v -0.13672 z m 2.789063,-0.77246 v 4.36817 h -1.989258 v -0.85449 q -0.362305,0.50585 -0.929687,0.77929 -0.567383,0.27344 -1.250977,0.27344 -1.305664,0 -2.037109,-0.69043 -0.72461,-0.69043 -0.72461,-1.92773 0,-1.33985 0.868164,-1.97559 0.868164,-0.64258 2.686524,-0.64258 h 1.387695 v -0.33496 q 0,-0.48535 -0.355469,-0.73144 -0.348633,-0.25293 -1.032226,-0.25293 -0.717774,0 -1.394532,0.18457 -0.669921,0.17773 -1.401367,0.57421 v -1.70898 q 0.663086,-0.27344 1.34668,-0.40332 0.683594,-0.12988 1.449219,-0.12988 1.866211,0 2.618164,0.75879 0.758789,0.75879 0.758789,2.71386 z"
+           style="font-weight:bold;fill:#000000"
+           id="path2780" />
+        <path
+           d="m 36.757011,130.52089 v 3.99219 h -1.996093 v -10.56836 h 1.996093 v 1.14843 q 0.314454,-0.66308 0.827149,-0.99804 0.512695,-0.33496 1.203125,-0.33496 1.3125,0 2.037109,1.05273 0.72461,1.05274 0.72461,2.9668 0,1.9414 -0.738282,2.98047 -0.731445,1.03906 -2.091797,1.03906 -0.615234,0 -1.107421,-0.31445 -0.485352,-0.32129 -0.854493,-0.96387 z m 2.789063,-2.75488 q 0,-1.10743 -0.369141,-1.73633 -0.36914,-0.62891 -1.018554,-0.62891 -0.649414,0 -1.025391,0.62891 -0.375977,0.6289 -0.375977,1.73633 0,1.10742 0.375977,1.73632 0.375977,0.62891 1.025391,0.62891 0.649414,0 1.018554,-0.62891 0.369141,-0.6289 0.369141,-1.73632 z"
+           style="font-weight:bold;fill:#000000"
+           id="path2782" />
+        <path
+           d="m 48.938721,124.18398 v 1.75 q -0.553711,-0.35547 -1.155274,-0.53321 -0.594726,-0.18457 -1.196289,-0.18457 -0.669922,0 -1.011719,0.19824 -0.341796,0.19141 -0.341796,0.57422 0,0.54688 1.46289,0.88867 l 0.0752,0.0205 0.574218,0.13672 q 1.09375,0.25977 1.59961,0.84082 0.512695,0.57422 0.512695,1.5586 0,1.18261 -0.779297,1.77734 -0.772461,0.58789 -2.331055,0.58789 -0.690429,0 -1.415039,-0.12305 -0.724609,-0.11621 -1.469726,-0.35547 v -1.75 q 0.663086,0.37598 1.346679,0.57422 0.69043,0.19824 1.333008,0.19824 0.704102,0 1.066407,-0.20507 0.362304,-0.20508 0.362304,-0.59473 0,-0.38281 -0.259765,-0.58789 -0.25293,-0.20508 -1.216797,-0.4375 l -0.553711,-0.12305 q -1.148438,-0.25976 -1.674805,-0.81347 -0.526367,-0.55371 -0.526367,-1.4834 0,-1.10742 0.799805,-1.72266 0.799804,-0.61523 2.249023,-0.61523 0.649414,0 1.291992,0.10937 0.649414,0.10254 1.257813,0.31446 z"
+           style="font-weight:bold;fill:#000000"
+           id="path2784" />
+        <path
+           d="m 59.03207,118.44179 7.396485,8.30566 -7.396485,8.31934 z"
+           style="fill:#00d7ff"
+           id="path2786" />
+        <path
+           d="m 84.171318,127.21913 q -0.62207,1.42188 -1.196289,1.9209 -0.594727,0.49902 -1.223633,0.49902 -0.984375,-0.0547 -1.763672,-1.00488 l -1.045898,-1.29199 q -0.259766,-0.33496 -0.676758,-0.32129 -0.430664,0 -0.663086,0.41699 -0.239258,0.43067 -0.594726,1.33985 l -1.107422,-0.63575 q 0.211914,-0.67675 0.478515,-1.16211 0.266602,-0.48535 0.574219,-0.79297 0.635742,-0.61523 1.319336,-0.61523 0.594727,-0.007 1.114258,0.33496 0.526367,0.33496 0.991211,1.03906 0.84082,1.27832 1.380859,1.27832 0.444336,0 0.738281,-0.50586 0.143555,-0.25976 0.293946,-0.57421 0.15039,-0.31446 0.287109,-0.65625 z"
+           style="font-weight:bold;fill:#ffffff"
+           id="path2788" />
+        <path
+           d="m 92.767593,118.44179 7.396487,8.30566 -7.396487,8.31934 z"
+           style="fill:#005f87"
+           id="path2790" />
+        <path
+           d="m 111.24864,120.96425 h 1.29883 v 6.15918 l 3.30176,-3.17871 h 1.53125 l -3.01465,2.88476 3.48633,4.77149 h -1.53809 l -2.83008,-3.95117 -0.93652,0.88183 v 3.06934 h -1.29883 z"
+           style="fill:#4ebf22"
+           id="path2792" />
+        <path
+           d="m 119.39715,128.70253 v -4.74414 h 1.25781 v 4.74414 q 0,1.03223 0.36231,1.51758 0.36914,0.48535 1.13476,0.48535 0.88867,0 1.36035,-0.62207 0.47168,-0.62891 0.47168,-1.79785 v -4.32715 h 1.26465 v 7.64258 h -1.26465 v -1.14844 q -0.33496,0.66309 -0.91601,1.00488 -0.57422,0.3418 -1.34668,0.3418 -1.17578,0 -1.75,-0.76563 -0.57422,-0.77246 -0.57422,-2.33105 z"
+           style="fill:#4ebf22"
+           id="path2794" />
+        <path
+           d="m 132.77852,127.77968 q 0,-1.46289 -0.46485,-2.20801 -0.46484,-0.74512 -1.37402,-0.74512 -0.91601,0 -1.38769,0.75196 -0.47168,0.74511 -0.47168,2.20117 0,1.44922 0.47168,2.20117 0.47168,0.75195 1.38769,0.75195 0.90918,0 1.37402,-0.74511 0.46485,-0.74512 0.46485,-2.20801 z m -3.69824,-2.85742 q 0.30078,-0.56055 0.82714,-0.86133 0.53321,-0.30078 1.23047,-0.30078 1.38086,0 2.17383,1.0664 0.79297,1.05957 0.79297,2.92578 0,1.89356 -0.7998,2.97364 -0.79297,1.07324 -2.18067,1.07324 -0.68359,0 -1.20996,-0.29395 -0.51953,-0.30078 -0.83398,-0.86816 v 0.96387 h -1.25782 v -10.63672 h 1.25782 z"
+           style="fill:#4ebf22"
+           id="path2796" />
+        <path
+           d="m 142.58815,127.14394 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56543 0.59472,2.24902 0.65625,0.68359 1.84571,0.68359 0.60156,0 1.25781,-0.1914 0.65625,-0.19141 1.40137,-0.58106 v 1.25098 q -0.71778,0.29394 -1.3877,0.4375 -0.66308,0.15039 -1.28515,0.15039 -1.78418,0 -2.78907,-1.06641 -1.00488,-1.07324 -1.00488,-2.95312 0,-1.83203 0.98438,-2.92578 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84765,0.99121 0.90234,2.39258 z m -1.25781,-0.36914 q -0.082,-0.79297 -0.58106,-1.36719 -0.49218,-0.58106 -1.42187,-0.58106 -0.90918,0 -1.49707,0.60157 -0.58789,0.60156 -0.64258,1.35351 z"
+           style="fill:#4ebf22"
+           id="path2798" />
+        <path
+           d="m 150.62383,131.21132 q -0.50586,0.29394 -1.0459,0.4375 -0.53321,0.15039 -1.09375,0.15039 -1.77735,0 -2.78223,-1.06641 -0.99805,-1.0664 -0.99805,-2.95312 0,-1.88672 0.99805,-2.95313 1.00488,-1.0664 2.78223,-1.0664 0.55371,0 1.08007,0.14355 0.52637,0.14356 1.05958,0.44434 v 1.31933 q -0.49903,-0.44433 -1.00489,-0.64257 -0.49902,-0.19825 -1.13476,-0.19825 -1.18262,0 -1.81836,0.76563 -0.63574,0.76562 -0.63574,2.1875 0,1.41504 0.63574,2.1875 0.64258,0.76562 1.81836,0.76562 0.65625,0 1.17578,-0.19824 0.51953,-0.20508 0.96387,-0.62891 z"
+           style="fill:#4ebf22"
+           id="path2800" />
+        <path
+           d="m 155.99693,121.77089 v 2.17383 h 2.85742 v 0.97754 h -2.85742 v 4.15625 q 0,0.84765 0.32129,1.18261 0.32129,0.33496 1.1211,0.33496 h 1.41503 v 1.00489 h -1.53808 q -1.41504,0 -1.99609,-0.56739 -0.58106,-0.56738 -0.58106,-1.95507 v -4.15625 h -2.04394 v -0.97754 h 2.04394 v -2.17383 z"
+           style="fill:#4ebf22"
+           id="path2802" />
+        <path
+           d="m 165.14349,128.83241 q 0,0.84766 0.30762,1.27832 0.31445,0.43067 0.92285,0.43067 h 1.46973 v 1.05957 h -1.59277 q -1.12793,0 -1.75,-0.71778 -0.61524,-0.72461 -0.61524,-2.05078 v -6.9248 h -2.0166 v -0.98438 h 3.27441 z"
+           style="fill:#4ebf22"
+           id="path2804" />
+        <path
+           d="m 184.28078,126.85683 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03223 -0.36231,-1.51758 -0.3623,-0.48535 -1.13476,-0.48535 -0.88184,0 -1.36035,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.25782 v -7.65625 h 1.25782 v 1.14843 q 0.33496,-0.65625 0.90918,-0.99121 0.57422,-0.34179 1.36035,-0.34179 1.16894,0 1.74316,0.77246 0.58106,0.76562 0.58106,2.32422 z"
+           id="path2806" />
+        <path
+           d="m 189.74612,124.82655 q -0.95703,0 -1.44921,0.74512 -0.49219,0.74512 -0.49219,2.20801 0,1.45605 0.49219,2.20801 0.49218,0.74511 1.44921,0.74511 0.96387,0 1.45606,-0.74511 0.49219,-0.75196 0.49219,-2.20801 0,-1.46289 -0.49219,-2.20801 -0.49219,-0.74512 -1.45606,-0.74512 z m 0,-1.0664 q 1.59278,0 2.4336,1.03222 0.84765,1.03223 0.84765,2.98731 0,1.96191 -0.84082,2.99414 -0.84082,1.02539 -2.44043,1.02539 -1.59277,0 -2.43359,-1.02539 -0.84082,-1.03223 -0.84082,-2.99414 0,-1.95508 0.84082,-2.98731 0.84082,-1.03222 2.43359,-1.03222 z"
+           id="path2808" />
+        <path
+           d="m 199.82919,124.92226 v -3.95801 h 1.25782 v 10.63672 h -1.25782 v -0.96387 q -0.31445,0.56738 -0.84082,0.86816 -0.51953,0.29395 -1.20312,0.29395 -1.3877,0 -2.1875,-1.07324 -0.79297,-1.08008 -0.79297,-2.97364 0,-1.86621 0.7998,-2.92578 0.79981,-1.0664 2.18067,-1.0664 0.69043,0 1.21679,0.30078 0.52637,0.29394 0.82715,0.86133 z m -3.69824,2.85742 q 0,1.46289 0.46484,2.20801 0.46485,0.74511 1.37403,0.74511 0.90918,0 1.38086,-0.75195 0.47851,-0.75195 0.47851,-2.20117 0,-1.45606 -0.47851,-2.20117 -0.47168,-0.75196 -1.38086,-0.75196 -0.90918,0 -1.37403,0.74512 -0.46484,0.74512 -0.46484,2.20801 z"
+           id="path2810" />
+        <path
+           d="m 210.0592,127.14394 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56543 0.59473,2.24902 0.65625,0.68359 1.8457,0.68359 0.60156,0 1.25781,-0.1914 0.65625,-0.19141 1.40137,-0.58106 v 1.25098 q -0.71777,0.29394 -1.38769,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.06641 -1.00489,-1.07324 -1.00489,-2.95312 0,-1.83203 0.98438,-2.92578 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99121 0.90234,2.39258 z m -1.25781,-0.36914 q -0.082,-0.79297 -0.58105,-1.36719 -0.49219,-0.58106 -1.42188,-0.58106 -0.90918,0 -1.49707,0.60157 -0.58789,0.60156 -0.64258,1.35351 z"
+           id="path2812" />
+        <path
+           d="m 211.52899,126.65175 h 7.2461 v 1.15527 h -7.2461 z"
+           id="path2814" />
+        <path
+           d="m 225.92209,124.21132 v 1.23047 q -0.54004,-0.31446 -1.08692,-0.47168 -0.54687,-0.15723 -1.11425,-0.15723 -0.8545,0 -1.27832,0.28027 -0.417,0.27344 -0.417,0.84083 0,0.51269 0.31446,0.76562 0.31445,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93652,0.17774 1.41504,0.71094 0.48535,0.5332 0.48535,1.38769 0,1.13477 -0.80664,1.77735 -0.80664,0.63574 -2.24219,0.63574 -0.56738,0 -1.18945,-0.12305 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29882 q 0.7041,0.3623 1.34668,0.54687 0.64257,0.17774 1.21679,0.17774 0.83399,0 1.29199,-0.33497 0.45801,-0.34179 0.45801,-0.95019 0,-0.875 -1.6748,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08691,-0.21191 -1.58594,-0.71093 -0.49902,-0.50586 -0.49902,-1.37403 0,-1.10058 0.74512,-1.69531 0.74511,-0.60156 2.12597,-0.60156 0.61524,0 1.18262,0.11621 0.56738,0.10937 1.11426,0.33496 z"
+           id="path2816" />
+        <path
+           d="m 234.88405,126.85683 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03223 -0.3623,-1.51758 -0.36231,-0.48535 -1.13477,-0.48535 -0.88184,0 -1.36035,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.25781 v -10.63672 h 1.25781 v 4.1289 q 0.33496,-0.65625 0.90918,-0.99121 0.57422,-0.34179 1.36035,-0.34179 1.16895,0 1.74316,0.77246 0.58106,0.76562 0.58106,2.32422 z"
+           id="path2818" />
+        <path
+           d="m 243.78453,127.14394 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56543 0.59473,2.24902 0.65625,0.68359 1.8457,0.68359 0.60156,0 1.25781,-0.1914 0.65625,-0.19141 1.40137,-0.58106 v 1.25098 q -0.71778,0.29394 -1.3877,0.4375 -0.66308,0.15039 -1.28515,0.15039 -1.78418,0 -2.78907,-1.06641 -1.00488,-1.07324 -1.00488,-2.95312 0,-1.83203 0.98438,-2.92578 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84765,0.99121 0.90234,2.39258 z m -1.25781,-0.36914 q -0.082,-0.79297 -0.58106,-1.36719 -0.49218,-0.58106 -1.42187,-0.58106 -0.90918,0 -1.49707,0.60157 -0.58789,0.60156 -0.64258,1.35351 z"
+           id="path2820" />
+        <path
+           d="m 249.4823,128.83241 q 0,0.84766 0.30762,1.27832 0.31445,0.43067 0.92285,0.43067 h 1.46973 v 1.05957 h -1.59278 q -1.12793,0 -1.75,-0.71778 -0.61523,-0.72461 -0.61523,-2.05078 v -6.9248 h -2.0166 v -0.98438 h 3.27441 z"
+           id="path2822" />
+        <path
+           d="m 257.91107,128.83241 q 0,0.84766 0.30762,1.27832 0.31445,0.43067 0.92285,0.43067 h 1.46973 v 1.05957 h -1.59278 q -1.12793,0 -1.75,-0.71778 -0.61523,-0.72461 -0.61523,-2.05078 v -6.9248 h -2.0166 v -0.98438 h 3.27441 z"
+           id="path2824" />
+        <path
+           d="m 273.93802,127.07558 q 0.88183,0 1.38086,-0.63575 0.50586,-0.63574 0.50586,-1.75683 0,-1.1211 -0.50586,-1.75684 -0.49903,-0.63574 -1.38086,-0.63574 -0.91602,0 -1.38086,0.6084 -0.46484,0.60156 -0.46484,1.78418 0,1.18945 0.458,1.79101 0.46485,0.60157 1.3877,0.60157 z m -2.46094,4.31347 v -1.27148 q 0.43067,0.25293 0.91602,0.38965 0.48535,0.12988 1.01172,0.12988 1.3125,0 1.98242,-0.98437 0.67676,-0.99122 0.67676,-2.91211 -0.32129,0.68359 -0.90235,1.05273 -0.58105,0.3623 -1.33301,0.3623 -1.47656,0 -2.29004,-0.90917 -0.80664,-0.90918 -0.80664,-2.57715 0,-1.64746 0.82715,-2.54981 0.83399,-0.90918 2.35157,-0.90918 1.77734,0 2.60449,1.27832 0.82715,1.27832 0.82715,4.01953 0,2.57715 -0.99805,3.9375 -0.99121,1.35352 -2.88477,1.35352 -0.49902,0 -1.00488,-0.10938 -0.50586,-0.10253 -0.97754,-0.30078 z"
+           id="path2826" />
+        <path
+           d="m 283.32721,122.65273 -3.21973,5.39355 h 3.21973 z m -0.22559,-1.25782 h 1.59961 v 6.65137 h 1.36035 v 1.12109 h -1.36035 v 2.4336 h -1.37402 v -2.4336 h -4.32715 v -1.30566 z"
+           id="path2828" />
+        <path
+           d="m 287.42883,126.65175 h 7.2461 v 1.15527 h -7.2461 z"
+           id="path2830" />
+        <path
+           d="m 296.5856,121.39491 h 5.16797 v 1.16211 h -3.91016 v 2.50879 q 0.29395,-0.10937 0.58789,-0.15723 0.30079,-0.0547 0.60157,-0.0547 1.58593,0 2.51562,0.93652 0.92969,0.93652 0.92969,2.53613 0,1.61328 -0.97754,2.54297 -0.9707,0.92969 -2.65918,0.92969 -0.81348,0 -1.49023,-0.10938 -0.66993,-0.10937 -1.20313,-0.32812 v -1.40137 q 0.62891,0.3418 1.26465,0.5127 0.63574,0.16406 1.29883,0.16406 1.1416,0 1.75683,-0.60156 0.62207,-0.60156 0.62207,-1.70899 0,-1.09375 -0.64257,-1.70215 -0.63575,-0.60839 -1.77735,-0.60839 -0.55371,0 -1.08008,0.12988 -0.52636,0.12305 -1.00488,0.37598 z"
+           id="path2832" />
+        <path
+           d="m 304.54953,121.39491 h 6.42578 v 0.58789 l -3.65039,9.61817 h -1.44238 l 3.55469,-9.04395 h -4.8877 z"
+           id="path2834" />
+        <path
+           d="m 312.7356,126.65175 h 7.24609 v 1.15527 h -7.24609 z"
+           id="path2836" />
+        <path
+           d="m 325.26593,127.75233 h -0.41699 q -1.10059,0 -1.66113,0.38965 -0.55372,0.38282 -0.55372,1.14844 0,0.69043 0.417,1.07324 0.41699,0.38282 1.15527,0.38282 1.03906,0 1.63379,-0.71778 0.59473,-0.72461 0.60156,-1.99609 v -0.28028 z m 2.44043,-0.51953 v 4.36817 h -1.26465 v -1.13477 q -0.40332,0.6836 -1.01855,1.01172 -0.6084,0.32129 -1.4834,0.32129 -1.16895,0 -1.86621,-0.65625 -0.69727,-0.66309 -0.69727,-1.77051 0,-1.27832 0.85449,-1.9414 0.86133,-0.66309 2.52246,-0.66309 h 1.68848 v -0.19824 q -0.007,-0.91602 -0.46484,-1.32617 -0.45801,-0.417 -1.46289,-0.417 -0.64258,0 -1.29883,0.18457 -0.65625,0.18457 -1.27832,0.54004 v -1.25781 q 0.69726,-0.2666 1.33301,-0.39648 0.64257,-0.13672 1.24414,-0.13672 0.95019,0 1.62011,0.28027 0.67676,0.28027 1.09375,0.84082 0.25977,0.3418 0.36914,0.84766 0.10938,0.49902 0.10938,1.5039 z"
+           id="path2838" />
+        <path
+           d="m 330.31091,121.39491 h 5.16797 v 1.16211 h -3.91015 v 2.50879 q 0.29394,-0.10937 0.58789,-0.15723 0.30078,-0.0547 0.60156,-0.0547 1.58594,0 2.51562,0.93652 0.92969,0.93652 0.92969,2.53613 0,1.61328 -0.97754,2.54297 -0.9707,0.92969 -2.65918,0.92969 -0.81347,0 -1.49023,-0.10938 -0.66992,-0.10937 -1.20313,-0.32812 v -1.40137 q 0.62891,0.3418 1.26465,0.5127 0.63574,0.16406 1.29883,0.16406 1.1416,0 1.75684,-0.60156 0.62207,-0.60156 0.62207,-1.70899 0,-1.09375 -0.64258,-1.70215 -0.63574,-0.60839 -1.77735,-0.60839 -0.55371,0 -1.08007,0.12988 -0.52637,0.12305 -1.00489,0.37598 z"
+           id="path2840" />
+        <path
+           d="m 338.0321,126.65175 h 7.2461 v 1.15527 h -7.2461 z"
+           id="path2842" />
+        <path
+           d="m 351.62885,124.92226 v -3.95801 h 1.25781 v 10.63672 h -1.25781 v -0.96387 q -0.31446,0.56738 -0.84083,0.86816 -0.51953,0.29395 -1.20312,0.29395 -1.3877,0 -2.1875,-1.07324 -0.79297,-1.08008 -0.79297,-2.97364 0,-1.86621 0.79981,-2.92578 0.7998,-1.0664 2.18066,-1.0664 0.69043,0 1.2168,0.30078 0.52636,0.29394 0.82715,0.86133 z m -3.69825,2.85742 q 0,1.46289 0.46485,2.20801 0.46484,0.74511 1.37402,0.74511 0.90918,0 1.38086,-0.75195 0.47852,-0.75195 0.47852,-2.20117 0,-1.45606 -0.47852,-2.20117 -0.47168,-0.75196 -1.38086,-0.75196 -0.90918,0 -1.37402,0.74512 -0.46485,0.74512 -0.46485,2.20801 z"
+           id="path2844" />
+        <path
+           d="m 359.50729,126.13905 q 1.00489,0.2666 1.53809,0.9502 0.5332,0.67676 0.5332,1.69531 0,1.4082 -0.95019,2.21484 -0.94336,0.79981 -2.61817,0.79981 -0.7041,0 -1.43554,-0.12988 -0.73145,-0.12989 -1.43555,-0.37598 v -1.37402 q 0.69727,0.3623 1.37402,0.54004 0.67676,0.17773 1.34668,0.17773 1.13477,0 1.74317,-0.5127 0.6084,-0.51269 0.6084,-1.47656 0,-0.88867 -0.6084,-1.4082 -0.6084,-0.52637 -1.64746,-0.52637 h -1.05274 v -1.13476 h 1.05274 q 0.95019,0 1.48339,-0.417 0.53321,-0.41699 0.53321,-1.16211 0,-0.78613 -0.49903,-1.20312 -0.49218,-0.42383 -1.4082,-0.42383 -0.6084,0 -1.25781,0.13672 -0.64942,0.13672 -1.36035,0.41016 v -1.27149 q 0.82715,-0.21875 1.46972,-0.32812 0.64942,-0.10938 1.14844,-0.10938 1.49024,0 2.37891,0.75196 0.8955,0.74511 0.8955,1.98242 0,0.84082 -0.47167,1.40136 -0.46485,0.56055 -1.36036,0.79297 z"
+           id="path2846" />
+        <path
+           d="m 363.32864,126.65175 h 7.2461 v 1.15527 h -7.2461 z"
+           id="path2848" />
+        <path
+           d="m 376.93561,124.92226 v -3.95801 h 1.25781 v 10.63672 h -1.25781 v -0.96387 q -0.31446,0.56738 -0.84082,0.86816 -0.51953,0.29395 -1.20313,0.29395 -1.38769,0 -2.1875,-1.07324 -0.79297,-1.08008 -0.79297,-2.97364 0,-1.86621 0.79981,-2.92578 0.7998,-1.0664 2.18066,-1.0664 0.69043,0 1.2168,0.30078 0.52637,0.29394 0.82715,0.86133 z m -3.69824,2.85742 q 0,1.46289 0.46484,2.20801 0.46484,0.74511 1.37402,0.74511 0.90918,0 1.38086,-0.75195 0.47852,-0.75195 0.47852,-2.20117 0,-1.45606 -0.47852,-2.20117 -0.47168,-0.75196 -1.38086,-0.75196 -0.90918,0 -1.37402,0.74512 -0.46484,0.74512 -0.46484,2.20801 z"
+           id="path2850" />
+        <path
+           d="m 383.57336,127.07558 q 0.88184,0 1.38086,-0.63575 0.50586,-0.63574 0.50586,-1.75683 0,-1.1211 -0.50586,-1.75684 -0.49902,-0.63574 -1.38086,-0.63574 -0.91601,0 -1.38086,0.6084 -0.46484,0.60156 -0.46484,1.78418 0,1.18945 0.45801,1.79101 0.46484,0.60157 1.38769,0.60157 z m -2.46093,4.31347 v -1.27148 q 0.43066,0.25293 0.91601,0.38965 0.48535,0.12988 1.01172,0.12988 1.3125,0 1.98242,-0.98437 0.67676,-0.99122 0.67676,-2.91211 -0.32129,0.68359 -0.90234,1.05273 -0.58106,0.3623 -1.33301,0.3623 -1.47656,0 -2.29004,-0.90917 -0.80664,-0.90918 -0.80664,-2.57715 0,-1.64746 0.82715,-2.54981 0.83398,-0.90918 2.35156,-0.90918 1.77734,0 2.60449,1.27832 0.82715,1.27832 0.82715,4.01953 0,2.57715 -0.99805,3.9375 -0.99121,1.35352 -2.88476,1.35352 -0.49902,0 -1.00488,-0.10938 -0.50586,-0.10253 -0.97754,-0.30078 z"
+           id="path2852" />
+        <path
+           d="m 388.63541,126.65175 h 7.24609 v 1.15527 h -7.24609 z"
+           id="path2854" />
+        <path
+           d="m 402.23215,124.92226 v -3.95801 h 1.25781 v 10.63672 h -1.25781 v -0.96387 q -0.31446,0.56738 -0.84082,0.86816 -0.51953,0.29395 -1.20313,0.29395 -1.38769,0 -2.1875,-1.07324 -0.79297,-1.08008 -0.79297,-2.97364 0,-1.86621 0.79981,-2.92578 0.7998,-1.0664 2.18066,-1.0664 0.69043,0 1.2168,0.30078 0.52637,0.29394 0.82715,0.86133 z m -3.69824,2.85742 q 0,1.46289 0.46484,2.20801 0.46484,0.74511 1.37402,0.74511 0.90918,0 1.38086,-0.75195 0.47852,-0.75195 0.47852,-2.20117 0,-1.45606 -0.47852,-2.20117 -0.47168,-0.75196 -1.38086,-0.75196 -0.90918,0 -1.37402,0.74512 -0.46484,0.74512 -0.46484,2.20801 z"
+           id="path2856" />
+        <path
+           d="m 412.45193,127.14394 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56543 0.59473,2.24902 0.65625,0.68359 1.8457,0.68359 0.60156,0 1.25781,-0.1914 0.65625,-0.19141 1.40137,-0.58106 v 1.25098 q -0.71777,0.29394 -1.38769,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.06641 -1.00488,-1.07324 -1.00488,-2.95312 0,-1.83203 0.98437,-2.92578 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99121 0.90234,2.39258 z m -1.25781,-0.36914 q -0.082,-0.79297 -0.58105,-1.36719 -0.49219,-0.58106 -1.42188,-0.58106 -0.90918,0 -1.49707,0.60157 -0.58789,0.60156 -0.64258,1.35351 z"
+           id="path2858" />
+        <path
+           d="m 919.39752,135.06679 -7.40332,-8.31934 7.40332,-8.30566 z"
+           style="fill:#262626"
+           id="path2860" />
+        <path
+           d="m 934.91864,131.21132 q -0.50586,0.29394 -1.0459,0.4375 -0.5332,0.15039 -1.09375,0.15039 -1.77734,0 -2.78222,-1.06641 -0.99805,-1.0664 -0.99805,-2.95312 0,-1.88672 0.99805,-2.95313 1.00488,-1.0664 2.78222,-1.0664 0.55371,0 1.08008,0.14355 0.52637,0.14356 1.05957,0.44434 v 1.31933 q -0.49902,-0.44433 -1.00488,-0.64257 -0.49903,-0.19825 -1.13477,-0.19825 -1.18262,0 -1.81836,0.76563 -0.63574,0.76562 -0.63574,2.1875 0,1.41504 0.63574,2.1875 0.64258,0.76562 1.81836,0.76562 0.65625,0 1.17578,-0.19824 0.51953,-0.20508 0.96387,-0.62891 z"
+           style="fill:#af5fd7"
+           id="path2862" />
+        <path
+           d="m 940.90356,127.75233 h -0.41699 q -1.10058,0 -1.66113,0.38965 -0.55371,0.38282 -0.55371,1.14844 0,0.69043 0.41699,1.07324 0.41699,0.38282 1.15527,0.38282 1.03907,0 1.63379,-0.71778 0.59473,-0.72461 0.60157,-1.99609 v -0.28028 z m 2.44043,-0.51953 v 4.36817 h -1.26464 v -1.13477 q -0.40332,0.6836 -1.01856,1.01172 -0.6084,0.32129 -1.4834,0.32129 -1.16894,0 -1.86621,-0.65625 -0.69726,-0.66309 -0.69726,-1.77051 0,-1.27832 0.85449,-1.9414 0.86133,-0.66309 2.52246,-0.66309 h 1.68848 v -0.19824 q -0.007,-0.91602 -0.46485,-1.32617 -0.45801,-0.417 -1.46289,-0.417 -0.64258,0 -1.29883,0.18457 -0.65625,0.18457 -1.27832,0.54004 v -1.25781 q 0.69727,-0.2666 1.33301,-0.39648 0.64258,-0.13672 1.24414,-0.13672 0.9502,0 1.62012,0.28027 0.67676,0.28027 1.09375,0.84082 0.25976,0.3418 0.36914,0.84766 0.10937,0.49902 0.10937,1.5039 z"
+           style="fill:#af5fd7"
+           id="path2864" />
+        <path
+           d="m 948.73071,121.77089 v 2.17383 h 2.85742 v 0.97754 h -2.85742 v 4.15625 q 0,0.84765 0.32129,1.18261 0.32129,0.33496 1.1211,0.33496 h 1.41503 v 1.00489 h -1.53808 q -1.41504,0 -1.99609,-0.56739 -0.58106,-0.56738 -0.58106,-1.95507 v -4.15625 h -2.04394 v -0.97754 h 2.04394 v -2.17383 z"
+           style="fill:#af5fd7"
+           id="path2866" />
+        <path
+           d="m 960.21527,131.21132 q -0.50586,0.29394 -1.0459,0.4375 -0.5332,0.15039 -1.09375,0.15039 -1.77734,0 -2.78222,-1.06641 -0.99805,-1.0664 -0.99805,-2.95312 0,-1.88672 0.99805,-2.95313 1.00488,-1.0664 2.78222,-1.0664 0.55371,0 1.08008,0.14355 0.52637,0.14356 1.05957,0.44434 v 1.31933 q -0.49902,-0.44433 -1.00488,-0.64257 -0.49903,-0.19825 -1.13477,-0.19825 -1.18261,0 -1.81836,0.76563 -0.63574,0.76562 -0.63574,2.1875 0,1.41504 0.63574,2.1875 0.64258,0.76562 1.81836,0.76562 0.65625,0 1.17578,-0.19824 0.51954,-0.20508 0.96387,-0.62891 z"
+           style="fill:#af5fd7"
+           id="path2868" />
+        <path
+           d="m 968.58582,126.85683 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03223 -0.36231,-1.51758 -0.3623,-0.48535 -1.13476,-0.48535 -0.88184,0 -1.36035,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.25782 v -10.63672 h 1.25782 v 4.1289 q 0.33496,-0.65625 0.90918,-0.99121 0.57421,-0.34179 1.36035,-0.34179 1.16894,0 1.74316,0.77246 0.58106,0.76562 0.58106,2.32422 z"
+           style="fill:#af5fd7"
+           id="path2870" />
+        <path
+           d="m 974.62891,127.75233 h -0.417 q -1.10058,0 -1.66113,0.38965 -0.55371,0.38282 -0.55371,1.14844 0,0.69043 0.41699,1.07324 0.41699,0.38282 1.15528,0.38282 1.03906,0 1.63378,-0.71778 0.59473,-0.72461 0.60157,-1.99609 v -0.28028 z m 2.44043,-0.51953 v 4.36817 h -1.26465 v -1.13477 q -0.40332,0.6836 -1.01856,1.01172 -0.6084,0.32129 -1.4834,0.32129 -1.16894,0 -1.86621,-0.65625 -0.69726,-0.66309 -0.69726,-1.77051 0,-1.27832 0.85449,-1.9414 0.86133,-0.66309 2.52246,-0.66309 h 1.68848 v -0.19824 q -0.007,-0.91602 -0.46485,-1.32617 -0.458,-0.417 -1.46289,-0.417 -0.64258,0 -1.29883,0.18457 -0.65625,0.18457 -1.27832,0.54004 v -1.25781 q 0.69727,-0.2666 1.33301,-0.39648 0.64258,-0.13672 1.24414,-0.13672 0.9502,0 1.62012,0.28027 0.67676,0.28027 1.09375,0.84082 0.25977,0.3418 0.36914,0.84766 0.10938,0.49902 0.10938,1.5039 z"
+           style="fill:#af5fd7"
+           id="path2872" />
+        <path
+           d="m 983.18408,128.83241 q 0,0.84766 0.30762,1.27832 0.31445,0.43067 0.92285,0.43067 h 1.46973 v 1.05957 h -1.59278 q -1.12793,0 -1.75,-0.71778 -0.61523,-0.72461 -0.61523,-2.05078 v -6.9248 h -2.0166 v -0.98438 h 3.27441 z"
+           style="fill:#af5fd7"
+           id="path2874" />
+        <path
+           d="m 991.61285,128.83241 q 0,0.84766 0.30762,1.27832 0.31445,0.43067 0.92285,0.43067 h 1.46973 v 1.05957 h -1.59277 q -1.12793,0 -1.75,-0.71778 -0.61524,-0.72461 -0.61524,-2.05078 v -6.9248 h -2.0166 v -0.98438 h 3.27441 z"
+           style="fill:#af5fd7"
+           id="path2876" />
+        <path
+           d="m 6.6513672,143.8125 v 1.23047 q -0.5400391,-0.31445 -1.0869141,-0.47168 -0.546875,-0.15723 -1.1142578,-0.15723 -0.8544922,0 -1.2783203,0.28028 -0.4169922,0.27343 -0.4169922,0.84082 0,0.51269 0.3144531,0.76562 0.3144532,0.25293 1.5654297,0.49219 l 0.5058594,0.0957 q 0.9365234,0.17774 1.4150391,0.71094 0.4853515,0.5332 0.4853515,1.38769 0,1.13477 -0.8066406,1.77735 -0.8066406,0.63574 -2.2421875,0.63574 -0.5673828,0 -1.1894531,-0.12305 -0.6220703,-0.11621 -1.3466797,-0.35547 v -1.29882 q 0.7041016,0.3623 1.3466797,0.54687 0.6425781,0.17774 1.2167968,0.17774 0.8339844,0 1.2919922,-0.33496 0.4580078,-0.3418 0.4580078,-0.9502 0,-0.875 -1.6748046,-1.20996 l -0.054687,-0.0137 -0.4716797,-0.0957 q -1.0869141,-0.21191 -1.5859375,-0.71093 -0.4990235,-0.50586 -0.4990235,-1.37403 0,-1.10058 0.7451172,-1.69531 0.7451172,-0.60156 2.1259766,-0.60156 0.6152344,0 1.1826172,0.11621 0.5673828,0.10937 1.1142578,0.33496 z"
+           id="path2878" />
+        <path
+           d="m 10.992255,150.23828 v 3.87598 H 9.7276068 V 143.5459 h 1.2646482 v 0.97754 q 0.314453,-0.56739 0.833985,-0.86133 0.526367,-0.30078 1.209961,-0.30078 1.387695,0 2.173828,1.07324 0.792968,1.07324 0.792968,2.97363 0,1.86621 -0.792968,2.93262 -0.792969,1.05957 -2.173828,1.05957 -0.697266,0 -1.223633,-0.29394 -0.519532,-0.30079 -0.820313,-0.86817 z m 3.691406,-2.85742 q 0,-1.46289 -0.464843,-2.20801 -0.458008,-0.74512 -1.367188,-0.74512 -0.916015,0 -1.387695,0.75196 -0.47168,0.74511 -0.47168,2.20117 0,1.44922 0.47168,2.20117 0.47168,0.75195 1.387695,0.75195 0.90918,0 1.367188,-0.74511 0.464843,-0.74512 0.464843,-2.20801 z"
+           id="path2880" />
+        <path
+           d="m 21.666592,147.35352 h -0.416993 q -1.100585,0 -1.661132,0.38964 -0.553711,0.38282 -0.553711,1.14844 0,0.69043 0.416992,1.07324 0.416992,0.38282 1.155273,0.38282 1.039063,0 1.633789,-0.71778 0.594727,-0.72461 0.601563,-1.99609 v -0.28027 z m 2.440429,-0.51954 v 4.36817 h -1.264648 v -1.13477 q -0.40332,0.6836 -1.018555,1.01172 -0.608398,0.32129 -1.483398,0.32129 -1.168946,0 -1.866211,-0.65625 -0.697266,-0.66309 -0.697266,-1.77051 0,-1.27832 0.854492,-1.9414 0.861329,-0.66309 2.522461,-0.66309 h 1.688477 v -0.19824 q -0.0068,-0.91602 -0.464844,-1.32617 -0.458008,-0.417 -1.46289,-0.417 -0.642579,0 -1.298829,0.18457 -0.65625,0.18457 -1.27832,0.54004 v -1.25781 q 0.697266,-0.2666 1.333008,-0.39648 0.642578,-0.13672 1.244141,-0.13672 0.950195,0 1.620117,0.28027 0.676758,0.28027 1.09375,0.84082 0.259765,0.3418 0.36914,0.84766 0.109375,0.49902 0.109375,1.5039 z"
+           id="path2882" />
+        <path
+           d="m 25.296543,143.5459 h 1.244141 l 1.333008,6.18652 1.09375,-3.95117 h 1.073242 l 1.107422,3.95117 1.333007,-6.18652 h 1.244141 l -1.791016,7.65625 h -1.203125 l -1.223632,-4.19727 -1.216797,4.19727 h -1.203125 z"
+           id="path2884" />
+        <path
+           d="m 40.920097,146.45801 v 4.74414 h -1.264648 v -4.74414 q 0,-1.03223 -0.362305,-1.51758 -0.362304,-0.48535 -1.134765,-0.48535 -0.881836,0 -1.360352,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.257812 v -7.65625 h 1.257812 v 1.14844 q 0.334961,-0.65625 0.90918,-0.99122 0.574219,-0.34179 1.360352,-0.34179 1.168945,0 1.743164,0.77246 0.581054,0.76562 0.581054,2.32422 z"
+           id="path2886" />
+        <path
+           d="m 44.324463,143.57324 h 3.219726 v 6.65137 h 2.495118 v 0.97754 H 43.79126 v -0.97754 h 2.495117 v -5.67383 h -1.961914 z m 1.961914,-2.97363 h 1.257812 v 1.58594 h -1.257812 z"
+           id="path2888" />
+        <path
+           d="m 57.787865,146.45801 v 4.74414 h -1.264649 v -4.74414 q 0,-1.03223 -0.362304,-1.51758 -0.362305,-0.48535 -1.134766,-0.48535 -0.881836,0 -1.360352,0.6289 -0.471679,0.62207 -0.471679,1.79102 v 4.32715 h -1.257813 v -7.65625 h 1.257813 v 1.14844 q 0.334961,-0.65625 0.909179,-0.99122 0.574219,-0.34179 1.360352,-0.34179 1.168945,0 1.743164,0.77246 0.581055,0.76562 0.581055,2.32422 z"
+           id="path2890" />
+        <path
+           d="m 64.897305,147.3125 q 0,-1.41504 -0.464844,-2.14648 -0.458008,-0.73829 -1.339844,-0.73829 -0.922852,0 -1.408203,0.73829 -0.485352,0.73144 -0.485352,2.14648 0,1.41504 0.485352,2.16016 0.492187,0.73828 1.421875,0.73828 0.868164,0 1.326172,-0.74512 0.464844,-0.74512 0.464844,-2.15332 z m 1.257812,3.39746 q 0,1.72266 -0.813477,2.61133 -0.813476,0.88867 -2.392578,0.88867 -0.519531,0 -1.086914,-0.0957 -0.567383,-0.0957 -1.134765,-0.28028 v -1.24414 q 0.669922,0.31446 1.216797,0.46485 0.546875,0.15039 1.004882,0.15039 1.018555,0 1.483399,-0.55371 0.464844,-0.55371 0.464844,-1.75684 v -0.0547 -0.85449 q -0.300782,0.64258 -0.820313,0.95703 -0.519531,0.31446 -1.264648,0.31446 -1.339844,0 -2.139649,-1.07325 -0.799805,-1.07324 -0.799805,-2.87109 0,-1.80469 0.799805,-2.87793 0.799805,-1.07324 2.139649,-1.07324 0.738281,0 1.250976,0.29394 0.512695,0.29395 0.833985,0.90918 v -0.99121 h 1.257812 z"
+           id="path2892" />
+        <path
+           d="m 82.359795,140.62695 v 4.1836 h -1.53125 v -4.1836 z m -3.643555,0 v 4.1836 h -1.53125 v -4.1836 z"
+           id="path2894" />
+        <path
+           d="m 91.513184,146.45801 v 4.74414 h -1.264649 v -4.74414 q 0,-1.03223 -0.362305,-1.51758 -0.362304,-0.48535 -1.134765,-0.48535 -0.881836,0 -1.360352,0.6289 -0.471679,0.62207 -0.471679,1.79102 v 4.32715 h -1.257813 v -7.65625 h 1.257813 v 1.14844 q 0.334961,-0.65625 0.909179,-0.99122 0.574219,-0.34179 1.360352,-0.34179 1.168945,0 1.743164,0.77246 0.581055,0.76562 0.581055,2.32422 z"
+           id="path2896" />
+        <path
+           d="m 99.418961,143.8125 v 1.23047 q -0.540039,-0.31445 -1.086914,-0.47168 -0.546875,-0.15723 -1.114258,-0.15723 -0.854492,0 -1.278321,0.28028 -0.416992,0.27343 -0.416992,0.84082 0,0.51269 0.314453,0.76562 0.314453,0.25293 1.56543,0.49219 l 0.505859,0.0957 q 0.936524,0.17774 1.415039,0.71094 0.485352,0.5332 0.485352,1.38769 0,1.13477 -0.806641,1.77735 -0.80664,0.63574 -2.242187,0.63574 -0.567383,0 -1.189453,-0.12305 -0.622071,-0.11621 -1.34668,-0.35547 v -1.29882 q 0.704102,0.3623 1.34668,0.54687 0.642578,0.17774 1.216797,0.17774 0.833984,0 1.291992,-0.33496 0.458008,-0.3418 0.458008,-0.9502 0,-0.875 -1.674805,-1.20996 l -0.05469,-0.0137 -0.471679,-0.0957 q -1.086914,-0.21191 -1.585938,-0.71093 -0.499023,-0.50586 -0.499023,-1.37403 0,-1.10058 0.745117,-1.69531 0.745117,-0.60156 2.125977,-0.60156 0.615234,0 1.182617,0.11621 0.567383,0.10937 1.114258,0.33496 z"
+           id="path2898" />
+        <path
+           d="m 108.85262,146.74512 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56543 0.59473,2.24902 0.65625,0.68359 1.8457,0.68359 0.60156,0 1.25781,-0.1914 0.65625,-0.19141 1.40137,-0.58106 v 1.25098 q -0.71777,0.29395 -1.3877,0.4375 -0.66308,0.15039 -1.28515,0.15039 -1.78418,0 -2.78906,-1.06641 -1.00489,-1.07324 -1.00489,-2.95312 0,-1.83203 0.98438,-2.92578 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99121 0.90234,2.39258 z m -1.25781,-0.36914 q -0.082,-0.79297 -0.58105,-1.36719 -0.49219,-0.58106 -1.42188,-0.58106 -0.90918,0 -1.49707,0.60157 -0.58789,0.60156 -0.64258,1.35351 z"
+           id="path2900" />
+        <path
+           d="m 116.81993,146.45801 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03223 -0.3623,-1.51758 -0.36231,-0.48535 -1.13477,-0.48535 -0.88183,0 -1.36035,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.25781 v -7.65625 h 1.25781 v 1.14844 q 0.33496,-0.65625 0.90918,-0.99122 0.57422,-0.34179 1.36035,-0.34179 1.16895,0 1.74317,0.77246 0.58105,0.76562 0.58105,2.32422 z"
+           id="path2902" />
+        <path
+           d="m 122.26141,141.37207 v 2.17383 h 2.85742 v 0.97754 h -2.85742 v 4.15625 q 0,0.84765 0.32129,1.18261 0.32128,0.33497 1.12109,0.33497 h 1.41504 v 1.00488 h -1.53809 q -1.41504,0 -1.99609,-0.56738 -0.58106,-0.56739 -0.58106,-1.95508 v -4.15625 h -2.04394 v -0.97754 h 2.04394 v -2.17383 z"
+           id="path2904" />
+        <path
+           d="m 134.15938,146.74512 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56543 0.59472,2.24902 0.65625,0.68359 1.84571,0.68359 0.60156,0 1.25781,-0.1914 0.65625,-0.19141 1.40137,-0.58106 v 1.25098 q -0.71778,0.29395 -1.3877,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.06641 -1.00488,-1.07324 -1.00488,-2.95312 0,-1.83203 0.98437,-2.92578 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99121 0.90235,2.39258 z m -1.25781,-0.36914 q -0.082,-0.79297 -0.58106,-1.36719 -0.49219,-0.58106 -1.42187,-0.58106 -0.90918,0 -1.49707,0.60157 -0.5879,0.60156 -0.64258,1.35351 z"
+           id="path2906" />
+        <path
+           d="m 142.82741,145.125 q -0.40332,-0.31445 -0.82031,-0.45801 -0.417,-0.14355 -0.91602,-0.14355 -1.17578,0 -1.79785,0.73828 -0.62207,0.73828 -0.62207,2.13281 v 3.80762 h -1.26465 v -7.65625 h 1.26465 v 1.49707 q 0.31445,-0.81348 0.96387,-1.24414 0.65625,-0.4375 1.55175,-0.4375 0.46485,0 0.86817,0.11621 0.40332,0.11621 0.77246,0.3623 z"
+           id="path2908" />
+        <path
+           d="m 144.06816,146.25293 h 7.24609 v 1.15527 h -7.24609 z"
+           id="path2910" />
+        <path
+           d="m 153.95982,143.57324 h 3.21973 v 6.65137 h 2.49512 v 0.97754 h -6.24805 v -0.97754 h 2.49512 v -5.67383 h -1.96192 z m 1.96192,-2.97363 h 1.25781 v 1.58594 h -1.25781 z"
+           id="path2912" />
+        <path
+           d="m 167.49506,140.56543 v 1.0459 h -1.42871 q -0.67676,0 -0.94336,0.28027 -0.25977,0.27344 -0.25977,0.97754 v 0.67676 h 2.63184 v 0.97754 h -2.63184 v 6.67871 h -1.25781 v -6.67871 h -2.04395 v -0.97754 h 2.04395 v -0.5332 q 0,-1.25782 0.57422,-1.85254 0.58105,-0.59473 1.80468,-0.59473 z"
+           id="path2914" />
+        <path
+           d="m 174.53265,147.3125 q 0,-1.41504 -0.46484,-2.14648 -0.45801,-0.73829 -1.33984,-0.73829 -0.92286,0 -1.40821,0.73829 -0.48535,0.73144 -0.48535,2.14648 0,1.41504 0.48535,2.16016 0.49219,0.73828 1.42188,0.73828 0.86816,0 1.32617,-0.74512 0.46484,-0.74512 0.46484,-2.15332 z m 1.25782,3.39746 q 0,1.72266 -0.81348,2.61133 -0.81348,0.88867 -2.39258,0.88867 -0.51953,0 -1.08691,-0.0957 -0.56739,-0.0957 -1.13477,-0.28028 v -1.24414 q 0.66992,0.31446 1.2168,0.46485 0.54687,0.15039 1.00488,0.15039 1.01856,0 1.4834,-0.55371 0.46484,-0.55371 0.46484,-1.75684 v -0.0547 -0.85449 q -0.30078,0.64258 -0.82031,0.95703 -0.51953,0.31446 -1.26465,0.31446 -1.33984,0 -2.13965,-1.07325 -0.7998,-1.07324 -0.7998,-2.87109 0,-1.80469 0.7998,-2.87793 0.79981,-1.07324 2.13965,-1.07324 0.73828,0 1.25098,0.29394 0.51269,0.29395 0.83398,0.90918 v -0.99121 h 1.25782 z"
+           id="path2916" />
+        <path
+           d="m 178.51125,140.99609 h 5.16796 v 1.16211 h -3.91015 v 2.50879 q 0.29394,-0.10937 0.58789,-0.15722 0.30078,-0.0547 0.60156,-0.0547 1.58594,0 2.51563,0.93652 0.92968,0.93652 0.92968,2.53613 0,1.61329 -0.97754,2.54297 -0.9707,0.92969 -2.65917,0.92969 -0.81348,0 -1.49024,-0.10937 -0.66992,-0.10938 -1.20312,-0.32813 v -1.40137 q 0.6289,0.3418 1.26464,0.5127 0.63575,0.16406 1.29883,0.16406 1.1416,0 1.75684,-0.60156 0.62207,-0.60156 0.62207,-1.70899 0,-1.09375 -0.64258,-1.70214 -0.63574,-0.6084 -1.77734,-0.6084 -0.55371,0 -1.08008,0.12988 -0.52637,0.12305 -1.00488,0.37598 z"
+           id="path2918" />
+        <path
+           d="m 191.40042,148.74121 q -0.31445,0.79981 -0.7998,2.10547 -0.67676,1.80469 -0.90918,2.20117 -0.31446,0.5332 -0.78614,0.79981 -0.47168,0.2666 -1.10058,0.2666 H 186.793 v -1.05274 h 0.74512 q 0.55371,0 0.86816,-0.32129 0.31445,-0.32128 0.79981,-1.66113 l -2.95997,-7.5332 h 1.33301 l 2.26953,5.98828 2.23535,-5.98828 h 1.33301 z"
+           id="path2920" />
+        <path
+           d="m 199.82919,147.3125 q 0,-1.41504 -0.46484,-2.14648 -0.45801,-0.73829 -1.33984,-0.73829 -0.92286,0 -1.40821,0.73829 -0.48535,0.73144 -0.48535,2.14648 0,1.41504 0.48535,2.16016 0.49219,0.73828 1.42188,0.73828 0.86816,0 1.32617,-0.74512 0.46484,-0.74512 0.46484,-2.15332 z m 1.25782,3.39746 q 0,1.72266 -0.81348,2.61133 -0.81348,0.88867 -2.39258,0.88867 -0.51953,0 -1.08691,-0.0957 -0.56739,-0.0957 -1.13477,-0.28028 v -1.24414 q 0.66992,0.31446 1.2168,0.46485 0.54687,0.15039 1.00488,0.15039 1.01856,0 1.4834,-0.55371 0.46484,-0.55371 0.46484,-1.75684 v -0.0547 -0.85449 q -0.30078,0.64258 -0.82031,0.95703 -0.51953,0.31446 -1.26465,0.31446 -1.33984,0 -2.13965,-1.07325 -0.7998,-1.07324 -0.7998,-2.87109 0,-1.80469 0.7998,-2.87793 0.79981,-1.07324 2.13965,-1.07324 0.73828,0 1.25098,0.29394 0.51269,0.29395 0.83398,0.90918 v -0.99121 h 1.25782 z"
+           id="path2922" />
+        <path
+           d="m 208.86292,140.62695 v 4.1836 h -1.53125 v -4.1836 z m -3.64356,0 v 4.1836 h -1.53125 v -4.1836 z"
+           id="path2924" />
+        <path
+           d="m 223.48166,144.42773 q -0.95703,0 -1.44922,0.74512 -0.49219,0.74512 -0.49219,2.20801 0,1.45605 0.49219,2.20801 0.49219,0.74511 1.44922,0.74511 0.96387,0 1.45605,-0.74511 0.49219,-0.75196 0.49219,-2.20801 0,-1.46289 -0.49219,-2.20801 -0.49218,-0.74512 -1.45605,-0.74512 z m 0,-1.0664 q 1.59277,0 2.43359,1.03222 0.84766,1.03223 0.84766,2.98731 0,1.96191 -0.84082,2.99414 -0.84082,1.02539 -2.44043,1.02539 -1.59277,0 -2.43359,-1.02539 -0.84083,-1.03223 -0.84083,-2.99414 0,-1.95508 0.84083,-2.98731 0.84082,-1.03222 2.43359,-1.03222 z"
+           id="path2926" />
+        <path
+           d="m 234.88405,146.45801 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03223 -0.3623,-1.51758 -0.36231,-0.48535 -1.13477,-0.48535 -0.88184,0 -1.36035,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.25781 v -7.65625 h 1.25781 v 1.14844 q 0.33496,-0.65625 0.90918,-0.99122 0.57422,-0.34179 1.36035,-0.34179 1.16895,0 1.74316,0.77246 0.58106,0.76562 0.58106,2.32422 z"
+           id="path2928" />
+        <path
+           d="m 251.02722,140.62695 v 4.1836 h -1.53125 v -4.1836 z m -3.64355,0 v 4.1836 h -1.53125 v -4.1836 z"
+           id="path2930" />
+        <path
+           d="m 257.07025,146.67676 q 0.88184,0 1.38086,-0.63574 0.50586,-0.63575 0.50586,-1.75684 0,-1.12109 -0.50586,-1.75684 -0.49902,-0.63574 -1.38086,-0.63574 -0.91601,0 -1.38086,0.6084 -0.46484,0.60156 -0.46484,1.78418 0,1.18945 0.45801,1.79102 0.46484,0.60156 1.38769,0.60156 z m -2.46094,4.31347 v -1.27148 q 0.43067,0.25293 0.91602,0.38965 0.48535,0.12988 1.01172,0.12988 1.3125,0 1.98242,-0.98437 0.67676,-0.99121 0.67676,-2.91211 -0.32129,0.68359 -0.90235,1.05273 -0.58105,0.36231 -1.333,0.36231 -1.47657,0 -2.29004,-0.90918 -0.80664,-0.90918 -0.80664,-2.57715 0,-1.64746 0.82715,-2.54981 0.83398,-0.90918 2.35156,-0.90918 1.77734,0 2.60449,1.27832 0.82715,1.27832 0.82715,4.01953 0,2.57715 -0.99805,3.9375 -0.99121,1.35352 -2.88476,1.35352 -0.49903,0 -1.00489,-0.10937 -0.50586,-0.10254 -0.97754,-0.30079 z"
+           id="path2932" />
+        <path
+           d="m 266.45944,142.25391 -3.21972,5.39355 h 3.21972 z m -0.22558,-1.25782 h 1.59961 v 6.65137 h 1.36035 v 1.12109 h -1.36035 v 2.4336 h -1.37403 v -2.4336 h -4.32715 v -1.30566 z"
+           id="path2934" />
+        <path
+           d="m 270.56107,146.25293 h 7.24609 v 1.15527 h -7.24609 z"
+           id="path2936" />
+        <path
+           d="m 279.71783,140.99609 h 5.16797 v 1.16211 h -3.91015 v 2.50879 q 0.29394,-0.10937 0.58789,-0.15722 0.30078,-0.0547 0.60156,-0.0547 1.58594,0 2.51563,0.93652 0.92968,0.93652 0.92968,2.53613 0,1.61329 -0.97754,2.54297 -0.9707,0.92969 -2.65918,0.92969 -0.81347,0 -1.49023,-0.10937 -0.66992,-0.10938 -1.20313,-0.32813 v -1.40137 q 0.62891,0.3418 1.26465,0.5127 0.63575,0.16406 1.29883,0.16406 1.1416,0 1.75684,-0.60156 0.62207,-0.60156 0.62207,-1.70899 0,-1.09375 -0.64258,-1.70214 -0.63574,-0.6084 -1.77734,-0.6084 -0.55372,0 -1.08008,0.12988 -0.52637,0.12305 -1.00489,0.37598 z"
+           id="path2938" />
+        <path
+           d="m 287.68176,140.99609 h 6.42578 v 0.58789 l -3.65039,9.61817 h -1.44238 l 3.55469,-9.04395 h -4.8877 z"
+           id="path2940" />
+        <path
+           d="m 295.86783,146.25293 h 7.24609 v 1.15527 h -7.24609 z"
+           id="path2942" />
+        <path
+           d="m 308.39816,147.35352 h -0.41699 q -1.10059,0 -1.66113,0.38964 -0.55371,0.38282 -0.55371,1.14844 0,0.69043 0.41699,1.07324 0.41699,0.38282 1.15527,0.38282 1.03907,0 1.63379,-0.71778 0.59473,-0.72461 0.60156,-1.99609 v -0.28027 z m 2.44043,-0.51954 v 4.36817 h -1.26465 v -1.13477 q -0.40332,0.6836 -1.01855,1.01172 -0.6084,0.32129 -1.4834,0.32129 -1.16894,0 -1.86621,-0.65625 -0.69727,-0.66309 -0.69727,-1.77051 0,-1.27832 0.8545,-1.9414 0.86132,-0.66309 2.52246,-0.66309 h 1.68847 v -0.19824 q -0.007,-0.91602 -0.46484,-1.32617 -0.45801,-0.417 -1.46289,-0.417 -0.64258,0 -1.29883,0.18457 -0.65625,0.18457 -1.27832,0.54004 v -1.25781 q 0.69727,-0.2666 1.33301,-0.39648 0.64258,-0.13672 1.24414,-0.13672 0.9502,0 1.62012,0.28027 0.67675,0.28027 1.09375,0.84082 0.25976,0.3418 0.36914,0.84766 0.10937,0.49902 0.10937,1.5039 z"
+           id="path2944" />
+        <path
+           d="m 313.45337,140.99609 h 5.16797 v 1.16211 h -3.91016 v 2.50879 q 0.29395,-0.10937 0.58789,-0.15722 0.30078,-0.0547 0.60156,-0.0547 1.58594,0 2.51563,0.93652 0.92969,0.93652 0.92969,2.53613 0,1.61329 -0.97754,2.54297 -0.9707,0.92969 -2.65918,0.92969 -0.81348,0 -1.49024,-0.10937 -0.66992,-0.10938 -1.20312,-0.32813 v -1.40137 q 0.62891,0.3418 1.26465,0.5127 0.63574,0.16406 1.29883,0.16406 1.1416,0 1.75683,-0.60156 0.62207,-0.60156 0.62207,-1.70899 0,-1.09375 -0.64258,-1.70214 -0.63574,-0.6084 -1.77734,-0.6084 -0.55371,0 -1.08008,0.12988 -0.52637,0.12305 -1.00488,0.37598 z"
+           id="path2946" />
+        <path
+           d="m 321.16437,146.25293 h 7.24609 v 1.15527 h -7.24609 z"
+           id="path2948" />
+        <path
+           d="m 334.76111,144.52344 v -3.95801 h 1.25781 v 10.63672 h -1.25781 v -0.96387 q -0.31445,0.56738 -0.84082,0.86817 -0.51953,0.29394 -1.20313,0.29394 -1.38769,0 -2.1875,-1.07324 -0.79297,-1.08008 -0.79297,-2.97363 0,-1.86622 0.79981,-2.92579 0.7998,-1.0664 2.18066,-1.0664 0.69043,0 1.2168,0.30078 0.52637,0.29394 0.82715,0.86133 z m -3.69824,2.85742 q 0,1.46289 0.46484,2.20801 0.46484,0.74511 1.37402,0.74511 0.90918,0 1.38086,-0.75195 0.47852,-0.75195 0.47852,-2.20117 0,-1.45606 -0.47852,-2.20117 -0.47168,-0.75196 -1.38086,-0.75196 -0.90918,0 -1.37402,0.74512 -0.46484,0.74512 -0.46484,2.20801 z"
+           id="path2950" />
+        <path
+           d="m 342.63953,145.74023 q 1.00488,0.26661 1.53808,0.9502 0.53321,0.67676 0.53321,1.69531 0,1.40821 -0.9502,2.21485 -0.94336,0.7998 -2.61816,0.7998 -0.70411,0 -1.43555,-0.12988 -0.73145,-0.12989 -1.43555,-0.37598 v -1.37402 q 0.69727,0.3623 1.37403,0.54004 0.67675,0.17773 1.34668,0.17773 1.13476,0 1.74316,-0.51269 0.6084,-0.5127 0.6084,-1.47657 0,-0.88867 -0.6084,-1.4082 -0.6084,-0.52637 -1.64746,-0.52637 h -1.05274 v -1.13476 h 1.05274 q 0.95019,0 1.4834,-0.41699 0.5332,-0.417 0.5332,-1.16211 0,-0.78614 -0.49902,-1.20313 -0.49219,-0.42383 -1.40821,-0.42383 -0.60839,0 -1.25781,0.13672 -0.64941,0.13672 -1.36035,0.41016 v -1.27149 q 0.82715,-0.21875 1.46973,-0.32812 0.64941,-0.10938 1.14843,-0.10938 1.49024,0 2.37891,0.75196 0.89551,0.74511 0.89551,1.98242 0,0.84082 -0.47168,1.40137 -0.46485,0.56054 -1.36035,0.79296 z"
+           id="path2952" />
+        <path
+           d="m 346.46088,146.25293 h 7.24609 v 1.15527 h -7.24609 z"
+           id="path2954" />
+        <path
+           d="m 360.06784,144.52344 v -3.95801 h 1.25781 v 10.63672 h -1.25781 v -0.96387 q -0.31445,0.56738 -0.84082,0.86817 -0.51953,0.29394 -1.20312,0.29394 -1.3877,0 -2.1875,-1.07324 -0.79297,-1.08008 -0.79297,-2.97363 0,-1.86622 0.7998,-2.92579 0.79981,-1.0664 2.18067,-1.0664 0.69042,0 1.21679,0.30078 0.52637,0.29394 0.82715,0.86133 z m -3.69824,2.85742 q 0,1.46289 0.46484,2.20801 0.46485,0.74511 1.37403,0.74511 0.90918,0 1.38085,-0.75195 0.47852,-0.75195 0.47852,-2.20117 0,-1.45606 -0.47852,-2.20117 -0.47167,-0.75196 -1.38085,-0.75196 -0.90918,0 -1.37403,0.74512 -0.46484,0.74512 -0.46484,2.20801 z"
+           id="path2956" />
+        <path
+           d="m 366.7056,146.67676 q 0.88183,0 1.38086,-0.63574 0.50586,-0.63575 0.50586,-1.75684 0,-1.12109 -0.50586,-1.75684 -0.49903,-0.63574 -1.38086,-0.63574 -0.91602,0 -1.38086,0.6084 -0.46485,0.60156 -0.46485,1.78418 0,1.18945 0.45801,1.79102 0.46485,0.60156 1.3877,0.60156 z m -2.46094,4.31347 v -1.27148 q 0.43066,0.25293 0.91602,0.38965 0.48535,0.12988 1.01171,0.12988 1.3125,0 1.98243,-0.98437 0.67675,-0.99121 0.67675,-2.91211 -0.32129,0.68359 -0.90234,1.05273 -0.58105,0.36231 -1.33301,0.36231 -1.47656,0 -2.29004,-0.90918 -0.80664,-0.90918 -0.80664,-2.57715 0,-1.64746 0.82715,-2.54981 0.83399,-0.90918 2.35156,-0.90918 1.77735,0 2.6045,1.27832 0.82714,1.27832 0.82714,4.01953 0,2.57715 -0.99804,3.9375 -0.99121,1.35352 -2.88477,1.35352 -0.49902,0 -1.00488,-0.10937 -0.50586,-0.10254 -0.97754,-0.30079 z"
+           id="path2958" />
+        <path
+           d="m 371.76764,146.25293 h 7.24609 v 1.15527 h -7.24609 z"
+           id="path2960" />
+        <path
+           d="m 385.36438,144.52344 v -3.95801 h 1.25781 v 10.63672 h -1.25781 v -0.96387 q -0.31445,0.56738 -0.84082,0.86817 -0.51953,0.29394 -1.20313,0.29394 -1.38769,0 -2.1875,-1.07324 -0.79296,-1.08008 -0.79296,-2.97363 0,-1.86622 0.7998,-2.92579 0.79981,-1.0664 2.18066,-1.0664 0.69043,0 1.2168,0.30078 0.52637,0.29394 0.82715,0.86133 z m -3.69824,2.85742 q 0,1.46289 0.46484,2.20801 0.46485,0.74511 1.37402,0.74511 0.90918,0 1.38086,-0.75195 0.47852,-0.75195 0.47852,-2.20117 0,-1.45606 -0.47852,-2.20117 -0.47168,-0.75196 -1.38086,-0.75196 -0.90917,0 -1.37402,0.74512 -0.46484,0.74512 -0.46484,2.20801 z"
+           id="path2962" />
+        <path
+           d="m 395.59439,146.74512 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56543 0.59473,2.24902 0.65625,0.68359 1.8457,0.68359 0.60156,0 1.25781,-0.1914 0.65625,-0.19141 1.40137,-0.58106 v 1.25098 q -0.71778,0.29395 -1.3877,0.4375 -0.66308,0.15039 -1.28515,0.15039 -1.78418,0 -2.78907,-1.06641 -1.00488,-1.07324 -1.00488,-2.95312 0,-1.83203 0.98438,-2.92578 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84765,0.99121 0.90234,2.39258 z m -1.25781,-0.36914 q -0.082,-0.79297 -0.58106,-1.36719 -0.49218,-0.58106 -1.42187,-0.58106 -0.90918,0 -1.49707,0.60157 -0.58789,0.60156 -0.64258,1.35351 z"
+           id="path2964" />
+        <path
+           d="m 402.82687,140.62695 v 4.1836 h -1.53125 v -4.1836 z m -3.64355,0 v 4.1836 h -1.53125 v -4.1836 z"
+           id="path2966" />
+        <path
+           d="m 1.3740234,160.5912 h 5.6669922 v 1.16211 H 4.9013672 v 7.88184 h 2.1396484 v 1.16211 H 1.3740234 v -1.16211 h 2.1396485 v -7.88184 H 1.3740234 Z"
+           id="path2968" />
+        <path
+           d="m 15.69538,160.16054 v 1.0459 h -1.428711 q -0.676758,0 -0.943359,0.28027 -0.259766,0.27344 -0.259766,0.97754 v 0.67676 h 2.631836 v 0.97754 h -2.631836 v 6.67871 h -1.257812 v -6.67871 H 9.7617865 v -0.97754 h 2.0439455 v -0.53321 q 0,-1.25781 0.574219,-1.85254 0.581054,-0.59472 1.804687,-0.59472 z"
+           id="path2970" />
+        <path
+           d="m 31.161777,168.33632 q -0.314453,0.7998 -0.799804,2.10547 -0.676758,1.80469 -0.90918,2.20117 -0.314453,0.5332 -0.786133,0.7998 -0.471679,0.26661 -1.100586,0.26661 h -1.011718 v -1.05274 h 0.745117 q 0.553711,0 0.868164,-0.32129 0.314453,-0.32129 0.799805,-1.66113 l -2.959961,-7.5332 h 1.333007 l 2.269532,5.98828 2.235351,-5.98828 h 1.333008 z"
+           id="path2972" />
+        <path
+           d="m 37.946465,164.02284 q -0.957032,0 -1.449219,0.74512 -0.492188,0.74512 -0.492188,2.20801 0,1.45605 0.492188,2.20801 0.492187,0.74511 1.449219,0.74511 0.963867,0 1.456054,-0.74511 0.492188,-0.75196 0.492188,-2.20801 0,-1.46289 -0.492188,-2.20801 -0.492187,-0.74512 -1.456054,-0.74512 z m 0,-1.0664 q 1.592773,0 2.433593,1.03222 0.847657,1.03223 0.847657,2.98731 0,1.96191 -0.840821,2.99414 -0.84082,1.02539 -2.440429,1.02539 -1.592774,0 -2.433594,-1.02539 -0.840821,-1.03223 -0.840821,-2.99414 0,-1.95508 0.840821,-2.98731 0.84082,-1.03222 2.433594,-1.03222 z"
+           id="path2974" />
+        <path
+           d="m 43.497314,167.89882 v -4.74414 h 1.257813 v 4.74414 q 0,1.03223 0.362305,1.51758 0.36914,0.48535 1.134765,0.48535 0.888672,0 1.360352,-0.62207 0.47168,-0.62891 0.47168,-1.79785 v -4.32715 h 1.264648 v 7.64258 h -1.264648 v -1.14844 q -0.334961,0.66308 -0.916016,1.00488 -0.574219,0.3418 -1.34668,0.3418 -1.175781,0 -1.75,-0.76563 -0.574219,-0.77246 -0.574219,-2.33105 z"
+           id="path2976" />
+        <path
+           d="m 64.897305,164.11855 v -3.95801 h 1.257812 v 10.63672 h -1.257812 v -0.96387 q -0.314454,0.56738 -0.840821,0.86816 -0.519531,0.29395 -1.203125,0.29395 -1.387695,0 -2.1875,-1.07324 -0.792969,-1.08008 -0.792969,-2.97364 0,-1.86621 0.799805,-2.92578 0.799805,-1.0664 2.180664,-1.0664 0.69043,0 1.216797,0.30078 0.526367,0.29394 0.827149,0.86133 z m -3.698243,2.85742 q 0,1.46289 0.464844,2.20801 0.464844,0.74511 1.374024,0.74511 0.909179,0 1.380859,-0.75195 0.478516,-0.75195 0.478516,-2.20117 0,-1.45606 -0.478516,-2.20117 -0.47168,-0.75196 -1.380859,-0.75196 -0.90918,0 -1.374024,0.74512 -0.464844,0.74512 -0.464844,2.20801 z"
+           id="path2978" />
+        <path
+           d="m 71.681992,164.02284 q -0.957032,0 -1.449219,0.74512 -0.492188,0.74512 -0.492188,2.20801 0,1.45605 0.492188,2.20801 0.492187,0.74511 1.449219,0.74511 0.963867,0 1.456054,-0.74511 0.492188,-0.75196 0.492188,-2.20801 0,-1.46289 -0.492188,-2.20801 -0.492187,-0.74512 -1.456054,-0.74512 z m 0,-1.0664 q 1.592773,0 2.433593,1.03222 0.847657,1.03223 0.847657,2.98731 0,1.96191 -0.840821,2.99414 -0.84082,1.02539 -2.440429,1.02539 -1.592774,0 -2.433594,-1.02539 -0.84082,-1.03223 -0.84082,-2.99414 0,-1.95508 0.84082,-2.98731 0.84082,-1.03222 2.433594,-1.03222 z"
+           id="path2980" />
+        <path
+           d="m 83.084404,166.05312 v 4.74414 h -1.264648 v -4.74414 q 0,-1.03223 -0.362305,-1.51758 -0.362305,-0.48535 -1.134766,-0.48535 -0.881836,0 -1.360351,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.257813 v -7.65625 h 1.257813 v 1.14843 q 0.334961,-0.65625 0.90918,-0.99121 0.574218,-0.34179 1.360351,-0.34179 1.168946,0 1.743164,0.77246 0.581055,0.76562 0.581055,2.32422 z"
+           id="path2982" />
+        <path
+           d="m 89.400879,160.14687 v 4.25878 h -1.53125 v -4.25878 z"
+           id="path2984" />
+        <path
+           d="m 96.964859,160.96718 v 2.17383 h 2.857422 v 0.97754 h -2.857422 v 4.15625 q 0,0.84765 0.321289,1.18261 0.321289,0.33496 1.121094,0.33496 h 1.415039 v 1.00489 h -1.538086 q -1.415039,0 -1.996094,-0.56739 -0.581054,-0.56738 -0.581054,-1.95507 v -4.15625 h -2.043946 v -0.97754 h 2.043946 v -2.17383 z"
+           id="path2986" />
+        <path
+           d="m 116.28673,163.40761 v 1.23047 q -0.54004,-0.31446 -1.08692,-0.47168 -0.54687,-0.15723 -1.11425,-0.15723 -0.8545,0 -1.27832,0.28027 -0.417,0.27344 -0.417,0.84082 0,0.5127 0.31446,0.76563 0.31445,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93652,0.17773 1.41503,0.71094 0.48536,0.5332 0.48536,1.38769 0,1.13477 -0.80664,1.77735 -0.80664,0.63574 -2.24219,0.63574 -0.56738,0 -1.18945,-0.12305 -0.62208,-0.11621 -1.34668,-0.35547 v -1.29883 q 0.7041,0.36231 1.34668,0.54688 0.64257,0.17773 1.21679,0.17773 0.83399,0 1.29199,-0.33496 0.45801,-0.34179 0.45801,-0.95019 0,-0.875 -1.6748,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08691,-0.21191 -1.58594,-0.71094 -0.49902,-0.50585 -0.49902,-1.37402 0,-1.10058 0.74512,-1.69531 0.74511,-0.60156 2.12597,-0.60156 0.61524,0 1.18262,0.11621 0.56738,0.10937 1.11426,0.33496 z"
+           id="path2988" />
+        <path
+           d="m 125.72039,166.34023 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56542 0.59472,2.24902 0.65625,0.68359 1.84571,0.68359 0.60156,0 1.25781,-0.1914 0.65625,-0.19141 1.40137,-0.58106 v 1.25098 q -0.71778,0.29394 -1.3877,0.4375 -0.66308,0.15039 -1.28515,0.15039 -1.78418,0 -2.78907,-1.06641 -1.00488,-1.07324 -1.00488,-2.95312 0,-1.83203 0.98438,-2.92578 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84765,0.99121 0.90234,2.39258 z m -1.25781,-0.36915 q -0.082,-0.79296 -0.58106,-1.36718 -0.49218,-0.58106 -1.42187,-0.58106 -0.90918,0 -1.49707,0.60156 -0.58789,0.60157 -0.64258,1.35352 z"
+           id="path2990" />
+        <path
+           d="m 134.15938,166.34023 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56542 0.59472,2.24902 0.65625,0.68359 1.84571,0.68359 0.60156,0 1.25781,-0.1914 0.65625,-0.19141 1.40137,-0.58106 v 1.25098 q -0.71778,0.29394 -1.3877,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.06641 -1.00488,-1.07324 -1.00488,-2.95312 0,-1.83203 0.98437,-2.92578 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99121 0.90235,2.39258 z m -1.25781,-0.36915 q -0.082,-0.79296 -0.58106,-1.36718 -0.49219,-0.58106 -1.42187,-0.58106 -0.90918,0 -1.49707,0.60156 -0.5879,0.60157 -0.64258,1.35352 z"
+           id="path2992" />
+        <path
+           d="m 148.16972,166.94862 h -0.41699 q -1.10058,0 -1.66113,0.38965 -0.55371,0.38281 -0.55371,1.14844 0,0.69043 0.41699,1.07324 0.41699,0.38281 1.15527,0.38281 1.03907,0 1.63379,-0.71777 0.59473,-0.72461 0.60156,-1.99609 v -0.28028 z m 2.44043,-0.51953 v 4.36817 h -1.26465 v -1.13477 q -0.40332,0.68359 -1.01855,1.01172 -0.6084,0.32129 -1.4834,0.32129 -1.16894,0 -1.86621,-0.65625 -0.69726,-0.66309 -0.69726,-1.77051 0,-1.27832 0.85449,-1.94141 0.86133,-0.66308 2.52246,-0.66308 h 1.68847 v -0.19824 q -0.007,-0.91602 -0.46484,-1.32618 -0.45801,-0.41699 -1.46289,-0.41699 -0.64258,0 -1.29883,0.18457 -0.65625,0.18457 -1.27832,0.54004 v -1.25781 q 0.69727,-0.2666 1.33301,-0.39649 0.64258,-0.13671 1.24414,-0.13671 0.9502,0 1.62012,0.28027 0.67676,0.28027 1.09375,0.84082 0.25976,0.3418 0.36914,0.84766 0.10937,0.49902 0.10937,1.5039 z"
+           id="path2994" />
+        <path
+           d="m 167.48138,170.40761 q -0.50586,0.29394 -1.04589,0.4375 -0.53321,0.15039 -1.09375,0.15039 -1.77735,0 -2.78223,-1.06641 -0.99805,-1.0664 -0.99805,-2.95312 0,-1.88672 0.99805,-2.95313 1.00488,-1.0664 2.78223,-1.0664 0.55371,0 1.08007,0.14355 0.52637,0.14356 1.05957,0.44434 v 1.31933 q -0.49902,-0.44433 -1.00488,-0.64258 -0.49902,-0.19824 -1.13476,-0.19824 -1.18262,0 -1.81836,0.76563 -0.63575,0.76562 -0.63575,2.1875 0,1.41504 0.63575,2.1875 0.64257,0.76562 1.81836,0.76562 0.65625,0 1.17578,-0.19824 0.51953,-0.20508 0.96386,-0.62891 z"
+           id="path2996" />
+        <path
+           d="m 172.87836,164.02284 q -0.95703,0 -1.44922,0.74512 -0.49219,0.74512 -0.49219,2.20801 0,1.45605 0.49219,2.20801 0.49219,0.74511 1.44922,0.74511 0.96386,0 1.45605,-0.74511 0.49219,-0.75196 0.49219,-2.20801 0,-1.46289 -0.49219,-2.20801 -0.49219,-0.74512 -1.45605,-0.74512 z m 0,-1.0664 q 1.59277,0 2.43359,1.03222 0.84766,1.03223 0.84766,2.98731 0,1.96191 -0.84082,2.99414 -0.84082,1.02539 -2.44043,1.02539 -1.59278,0 -2.4336,-1.02539 -0.84082,-1.03223 -0.84082,-2.99414 0,-1.95508 0.84082,-2.98731 0.84082,-1.03222 2.4336,-1.03222 z"
+           id="path2998" />
+        <path
+           d="m 181.7173,163.9203 q 0.23242,-0.49218 0.58789,-0.72461 0.36231,-0.23925 0.86817,-0.23925 0.92285,0 1.29882,0.71777 0.38282,0.71094 0.38282,2.68652 v 4.43653 h -1.14844 v -4.38184 q 0,-1.62012 -0.18457,-2.00977 -0.17774,-0.39648 -0.65625,-0.39648 -0.54688,0 -0.75196,0.42383 -0.19824,0.41699 -0.19824,1.98242 v 4.38184 h -1.14843 v -4.38184 q 0,-1.64062 -0.19825,-2.02344 -0.1914,-0.38281 -0.69726,-0.38281 -0.49903,0 -0.69727,0.42383 -0.1914,0.41699 -0.1914,1.98242 v 4.38184 h -1.14161 v -7.65625 h 1.14161 v 0.65625 q 0.22558,-0.41016 0.56054,-0.62207 0.3418,-0.21875 0.77246,-0.21875 0.51953,0 0.86133,0.23925 0.34863,0.23926 0.54004,0.72461 z"
+           id="path3000" />
+        <path
+           d="m 190.15628,163.9203 q 0.23242,-0.49218 0.58789,-0.72461 0.36231,-0.23925 0.86817,-0.23925 0.92285,0 1.29882,0.71777 0.38282,0.71094 0.38282,2.68652 v 4.43653 h -1.14844 v -4.38184 q 0,-1.62012 -0.18457,-2.00977 -0.17774,-0.39648 -0.65625,-0.39648 -0.54688,0 -0.75196,0.42383 -0.19824,0.41699 -0.19824,1.98242 v 4.38184 h -1.14843 v -4.38184 q 0,-1.64062 -0.19825,-2.02344 -0.1914,-0.38281 -0.69726,-0.38281 -0.49903,0 -0.69727,0.42383 -0.1914,0.41699 -0.1914,1.98242 v 4.38184 h -1.14161 v -7.65625 h 1.14161 v 0.65625 q 0.22558,-0.41016 0.56054,-0.62207 0.3418,-0.21875 0.77246,-0.21875 0.51953,0 0.86133,0.23925 0.34863,0.23926 0.54004,0.72461 z"
+           id="path3002" />
+        <path
+           d="m 198.76279,166.94862 h -0.417 q -1.10058,0 -1.66113,0.38965 -0.55371,0.38281 -0.55371,1.14844 0,0.69043 0.41699,1.07324 0.417,0.38281 1.15528,0.38281 1.03906,0 1.63379,-0.71777 0.59472,-0.72461 0.60156,-1.99609 v -0.28028 z m 2.44043,-0.51953 v 4.36817 h -1.26465 v -1.13477 q -0.40332,0.68359 -1.01856,1.01172 -0.6084,0.32129 -1.4834,0.32129 -1.16894,0 -1.86621,-0.65625 -0.69726,-0.66309 -0.69726,-1.77051 0,-1.27832 0.85449,-1.94141 0.86133,-0.66308 2.52246,-0.66308 h 1.68848 v -0.19824 q -0.007,-0.91602 -0.46485,-1.32618 -0.458,-0.41699 -1.46289,-0.41699 -0.64257,0 -1.29882,0.18457 -0.65625,0.18457 -1.27832,0.54004 v -1.25781 q 0.69726,-0.2666 1.333,-0.39649 0.64258,-0.13671 1.24414,-0.13671 0.9502,0 1.62012,0.28027 0.67676,0.28027 1.09375,0.84082 0.25977,0.3418 0.36914,0.84766 0.10938,0.49902 0.10938,1.5039 z"
+           id="path3004" />
+        <path
+           d="m 209.58752,166.05312 v 4.74414 h -1.26464 v -4.74414 q 0,-1.03223 -0.36231,-1.51758 -0.3623,-0.48535 -1.13476,-0.48535 -0.88184,0 -1.36036,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.25781 v -7.65625 h 1.25781 v 1.14843 q 0.33497,-0.65625 0.90918,-0.99121 0.57422,-0.34179 1.36036,-0.34179 1.16894,0 1.74316,0.77246 0.58105,0.76562 0.58105,2.32422 z"
+           id="path3006" />
+        <path
+           d="m 216.69696,164.11855 v -3.95801 h 1.25781 v 10.63672 h -1.25781 v -0.96387 q -0.31445,0.56738 -0.84082,0.86816 -0.51953,0.29395 -1.20312,0.29395 -1.3877,0 -2.1875,-1.07324 -0.79297,-1.08008 -0.79297,-2.97364 0,-1.86621 0.7998,-2.92578 0.79981,-1.0664 2.18067,-1.0664 0.69042,0 1.21679,0.30078 0.52637,0.29394 0.82715,0.86133 z m -3.69824,2.85742 q 0,1.46289 0.46484,2.20801 0.46485,0.74511 1.37403,0.74511 0.90918,0 1.38085,-0.75195 0.47852,-0.75195 0.47852,-2.20117 0,-1.45606 -0.47852,-2.20117 -0.47167,-0.75196 -1.38085,-0.75196 -0.90918,0 -1.37403,0.74512 -0.46484,0.74512 -0.46484,2.20801 z"
+           id="path3008" />
+        <path
+           d="m 230.26295,169.83339 v 3.87598 h -1.26464 v -10.56836 h 1.26464 v 0.97754 q 0.31446,-0.56739 0.83399,-0.86133 0.52637,-0.30078 1.20996,-0.30078 1.3877,0 2.17383,1.07324 0.79297,1.07324 0.79297,2.97363 0,1.86621 -0.79297,2.93262 -0.79297,1.05957 -2.17383,1.05957 -0.69727,0 -1.22363,-0.29395 -0.51953,-0.30078 -0.82032,-0.86816 z m 3.69141,-2.85742 q 0,-1.46289 -0.46484,-2.20801 -0.45801,-0.74512 -1.36719,-0.74512 -0.91602,0 -1.3877,0.75196 -0.47168,0.74511 -0.47168,2.20117 0,1.44922 0.47168,2.20117 0.47168,0.75195 1.3877,0.75195 0.90918,0 1.36719,-0.74511 0.46484,-0.74512 0.46484,-2.20801 z"
+           id="path3010" />
+        <path
+           d="m 244.02379,164.72011 q -0.40332,-0.31446 -0.82031,-0.45801 -0.417,-0.14355 -0.91602,-0.14355 -1.17578,0 -1.79785,0.73828 -0.62207,0.73828 -0.62207,2.13281 v 3.80762 h -1.26465 v -7.65625 h 1.26465 v 1.49707 q 0.31445,-0.81348 0.96387,-1.24414 0.65625,-0.4375 1.55175,-0.4375 0.46485,0 0.86817,0.11621 0.40332,0.11621 0.77246,0.3623 z"
+           id="path3012" />
+        <path
+           d="m 248.7782,164.02284 q -0.95703,0 -1.44922,0.74512 -0.49219,0.74512 -0.49219,2.20801 0,1.45605 0.49219,2.20801 0.49219,0.74511 1.44922,0.74511 0.96387,0 1.45605,-0.74511 0.49219,-0.75196 0.49219,-2.20801 0,-1.46289 -0.49219,-2.20801 -0.49218,-0.74512 -1.45605,-0.74512 z m 0,-1.0664 q 1.59277,0 2.43359,1.03222 0.84766,1.03223 0.84766,2.98731 0,1.96191 -0.84082,2.99414 -0.84082,1.02539 -2.44043,1.02539 -1.59278,0 -2.4336,-1.02539 -0.84082,-1.03223 -0.84082,-2.99414 0,-1.95508 0.84082,-2.98731 0.84082,-1.03222 2.4336,-1.03222 z"
+           id="path3014" />
+        <path
+           d="m 257.61713,163.9203 q 0.23242,-0.49218 0.58789,-0.72461 0.3623,-0.23925 0.86816,-0.23925 0.92285,0 1.29883,0.71777 0.38281,0.71094 0.38281,2.68652 v 4.43653 h -1.14844 v -4.38184 q 0,-1.62012 -0.18457,-2.00977 -0.17773,-0.39648 -0.65625,-0.39648 -0.54687,0 -0.75195,0.42383 -0.19824,0.41699 -0.19824,1.98242 v 4.38184 h -1.14844 v -4.38184 q 0,-1.64062 -0.19824,-2.02344 -0.19141,-0.38281 -0.69727,-0.38281 -0.49902,0 -0.69726,0.42383 -0.19141,0.41699 -0.19141,1.98242 v 4.38184 h -1.1416 v -7.65625 h 1.1416 v 0.65625 q 0.22559,-0.41016 0.56055,-0.62207 0.3418,-0.21875 0.77246,-0.21875 0.51953,0 0.86133,0.23925 0.34863,0.23926 0.54004,0.72461 z"
+           id="path3016" />
+        <path
+           d="m 263.9985,169.83339 v 3.87598 h -1.26464 v -10.56836 h 1.26464 v 0.97754 q 0.31446,-0.56739 0.83399,-0.86133 0.52637,-0.30078 1.20996,-0.30078 1.3877,0 2.17383,1.07324 0.79297,1.07324 0.79297,2.97363 0,1.86621 -0.79297,2.93262 -0.79297,1.05957 -2.17383,1.05957 -0.69727,0 -1.22363,-0.29395 -0.51953,-0.30078 -0.82032,-0.86816 z m 3.69141,-2.85742 q 0,-1.46289 -0.46484,-2.20801 -0.45801,-0.74512 -1.36719,-0.74512 -0.91602,0 -1.3877,0.75196 -0.47168,0.74511 -0.47168,2.20117 0,1.44922 0.47168,2.20117 0.47168,0.75195 1.3877,0.75195 0.90918,0 1.36719,-0.74511 0.46484,-0.74512 0.46484,-2.20801 z"
+           id="path3018" />
+        <path
+           d="m 274.06107,160.96718 v 2.17383 h 2.85742 v 0.97754 h -2.85742 v 4.15625 q 0,0.84765 0.32128,1.18261 0.32129,0.33496 1.1211,0.33496 h 1.41504 v 1.00489 h -1.53809 q -1.41504,0 -1.99609,-0.56739 -0.58106,-0.56738 -0.58106,-1.95507 v -4.15625 h -2.04394 v -0.97754 h 2.04394 v -2.17383 z"
+           id="path3020" />
+        <path
+           d="m 281.32428,168.32948 h 2.13281 v 1.81153 l -1.51758,2.94629 -1.36718,0.007 0.75195,-2.95312 z"
+           id="path3022" />
+        <path
+           d="m 299.36783,160.96718 v 2.17383 h 2.85742 v 0.97754 h -2.85742 v 4.15625 q 0,0.84765 0.32129,1.18261 0.32129,0.33496 1.12109,0.33496 h 1.41504 v 1.00489 h -1.53809 q -1.41503,0 -1.99609,-0.56739 -0.58105,-0.56738 -0.58105,-1.95507 v -4.15625 h -2.04395 v -0.97754 h 2.04395 v -2.17383 z"
+           id="path3024" />
+        <path
+           d="m 311.49484,164.72011 q -0.40332,-0.31446 -0.82031,-0.45801 -0.41699,-0.14355 -0.91602,-0.14355 -1.17578,0 -1.79785,0.73828 -0.62207,0.73828 -0.62207,2.13281 v 3.80762 h -1.26465 v -7.65625 h 1.26465 v 1.49707 q 0.31446,-0.81348 0.96387,-1.24414 0.65625,-0.4375 1.55176,-0.4375 0.46484,0 0.86816,0.11621 0.40332,0.11621 0.77246,0.3623 z"
+           id="path3026" />
+        <path
+           d="m 317.90356,168.33632 q -0.31445,0.7998 -0.7998,2.10547 -0.67676,1.80469 -0.90918,2.20117 -0.31445,0.5332 -0.78613,0.7998 -0.47168,0.26661 -1.10059,0.26661 h -1.01172 v -1.05274 h 0.74512 q 0.55371,0 0.86816,-0.32129 0.31446,-0.32129 0.79981,-1.66113 l -2.95996,-7.5332 h 1.33301 l 2.26953,5.98828 2.23535,-5.98828 h 1.33301 z"
+           id="path3028" />
+        <path
+           d="m 331.45935,169.83339 v 3.87598 h -1.26465 v -10.56836 h 1.26465 v 0.97754 q 0.31445,-0.56739 0.83398,-0.86133 0.52637,-0.30078 1.20997,-0.30078 1.38769,0 2.17382,1.07324 0.79297,1.07324 0.79297,2.97363 0,1.86621 -0.79297,2.93262 -0.79296,1.05957 -2.17382,1.05957 -0.69727,0 -1.22364,-0.29395 -0.51953,-0.30078 -0.82031,-0.86816 z m 3.69141,-2.85742 q 0,-1.46289 -0.46485,-2.20801 -0.458,-0.74512 -1.36718,-0.74512 -0.91602,0 -1.3877,0.75196 -0.47168,0.74511 -0.47168,2.20117 0,1.44922 0.47168,2.20117 0.47168,0.75195 1.3877,0.75195 0.90918,0 1.36718,-0.74511 0.46485,-0.74512 0.46485,-2.20801 z"
+           id="path3030" />
+        <path
+           d="m 345.23035,164.72011 q -0.40332,-0.31446 -0.82032,-0.45801 -0.41699,-0.14355 -0.91601,-0.14355 -1.17578,0 -1.79785,0.73828 -0.62207,0.73828 -0.62207,2.13281 v 3.80762 h -1.26465 v -7.65625 h 1.26465 v 1.49707 q 0.31445,-0.81348 0.96386,-1.24414 0.65625,-0.4375 1.55176,-0.4375 0.46485,0 0.86817,0.11621 0.40332,0.11621 0.77246,0.3623 z"
+           id="path3032" />
+        <path
+           d="m 353.41986,166.34023 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56542 0.59473,2.24902 0.65625,0.68359 1.8457,0.68359 0.60156,0 1.25781,-0.1914 0.65625,-0.19141 1.40137,-0.58106 v 1.25098 q -0.71778,0.29394 -1.3877,0.4375 -0.66308,0.15039 -1.28515,0.15039 -1.78418,0 -2.78907,-1.06641 -1.00488,-1.07324 -1.00488,-2.95312 0,-1.83203 0.98438,-2.92578 0.98437,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84765,0.99121 0.90234,2.39258 z m -1.25781,-0.36915 q -0.082,-0.79296 -0.58106,-1.36718 -0.49218,-0.58106 -1.42187,-0.58106 -0.90918,0 -1.49707,0.60156 -0.58789,0.60157 -0.64258,1.35352 z"
+           id="path3034" />
+        <path
+           d="m 360.85397,163.40761 v 1.23047 q -0.54004,-0.31446 -1.08691,-0.47168 -0.54688,-0.15723 -1.11426,-0.15723 -0.85449,0 -1.27832,0.28027 -0.41699,0.27344 -0.41699,0.84082 0,0.5127 0.31445,0.76563 0.31446,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93652,0.17773 1.41504,0.71094 0.48535,0.5332 0.48535,1.38769 0,1.13477 -0.80664,1.77735 -0.80664,0.63574 -2.24219,0.63574 -0.56738,0 -1.18945,-0.12305 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29883 q 0.7041,0.36231 1.34668,0.54688 0.64258,0.17773 1.2168,0.17773 0.83398,0 1.29199,-0.33496 0.45801,-0.34179 0.45801,-0.95019 0,-0.875 -1.67481,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08692,-0.21191 -1.58594,-0.71094 -0.49903,-0.50585 -0.49903,-1.37402 0,-1.10058 0.74512,-1.69531 0.74512,-0.60156 2.12598,-0.60156 0.61523,0 1.18262,0.11621 0.56738,0.10937 1.11425,0.33496 z"
+           id="path3036" />
+        <path
+           d="m 369.28275,163.40761 v 1.23047 q -0.54004,-0.31446 -1.08692,-0.47168 -0.54687,-0.15723 -1.11426,-0.15723 -0.85449,0 -1.27832,0.28027 -0.41699,0.27344 -0.41699,0.84082 0,0.5127 0.31445,0.76563 0.31446,0.25293 1.56543,0.49219 l 0.50586,0.0957 q 0.93653,0.17773 1.41504,0.71094 0.48535,0.5332 0.48535,1.38769 0,1.13477 -0.80664,1.77735 -0.80664,0.63574 -2.24218,0.63574 -0.56739,0 -1.18946,-0.12305 -0.62207,-0.11621 -1.34668,-0.35547 v -1.29883 q 0.7041,0.36231 1.34668,0.54688 0.64258,0.17773 1.2168,0.17773 0.83398,0 1.29199,-0.33496 0.45801,-0.34179 0.45801,-0.95019 0,-0.875 -1.67481,-1.20996 l -0.0547,-0.0137 -0.47168,-0.0957 q -1.08692,-0.21191 -1.58594,-0.71094 -0.49902,-0.50585 -0.49902,-1.37402 0,-1.10058 0.74511,-1.69531 0.74512,-0.60156 2.12598,-0.60156 0.61523,0 1.18262,0.11621 0.56738,0.10937 1.11426,0.33496 z"
+           id="path3038" />
+        <path
+           d="m 373.23053,163.16835 h 3.21973 v 6.65137 h 2.49511 v 0.97754 h -6.24804 v -0.97754 h 2.49511 v -5.67383 h -1.96191 z m 1.96191,-2.97363 h 1.25782 v 1.58593 h -1.25782 z"
+           id="path3040" />
+        <path
+           d="m 386.68372,166.05312 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03223 -0.36231,-1.51758 -0.3623,-0.48535 -1.13476,-0.48535 -0.88184,0 -1.36035,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.25782 v -7.65625 h 1.25782 v 1.14843 q 0.33496,-0.65625 0.90918,-0.99121 0.57421,-0.34179 1.36035,-0.34179 1.16894,0 1.74316,0.77246 0.58106,0.76562 0.58106,2.32422 z"
+           id="path3042" />
+        <path
+           d="m 393.80338,166.90761 q 0,-1.41504 -0.46485,-2.14649 -0.45801,-0.73828 -1.33984,-0.73828 -0.92285,0 -1.40821,0.73828 -0.48535,0.73145 -0.48535,2.14649 0,1.41504 0.48535,2.16015 0.49219,0.73829 1.42188,0.73829 0.86816,0 1.32617,-0.74512 0.46485,-0.74512 0.46485,-2.15332 z m 1.25781,3.39746 q 0,1.72266 -0.81348,2.61133 -0.81348,0.88867 -2.39258,0.88867 -0.51953,0 -1.08691,-0.0957 -0.56738,-0.0957 -1.13477,-0.28028 v -1.24414 q 0.66993,0.31445 1.2168,0.46485 0.54688,0.15039 1.00488,0.15039 1.01856,0 1.4834,-0.55371 0.46485,-0.55372 0.46485,-1.75684 v -0.0547 -0.85449 q -0.30079,0.64258 -0.82032,0.95703 -0.51953,0.31445 -1.26465,0.31445 -1.33984,0 -2.13964,-1.07324 -0.79981,-1.07324 -0.79981,-2.87109 0,-1.80469 0.79981,-2.87793 0.7998,-1.07324 2.13964,-1.07324 0.73829,0 1.25098,0.29394 0.5127,0.29395 0.83399,0.90918 v -0.99121 h 1.25781 z"
+           id="path3044" />
+        <path
+           d="m 412.45193,166.34023 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56542 0.59473,2.24902 0.65625,0.68359 1.8457,0.68359 0.60156,0 1.25781,-0.1914 0.65625,-0.19141 1.40137,-0.58106 v 1.25098 q -0.71777,0.29394 -1.38769,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.06641 -1.00488,-1.07324 -1.00488,-2.95312 0,-1.83203 0.98437,-2.92578 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99121 0.90234,2.39258 z m -1.25781,-0.36915 q -0.082,-0.79296 -0.58105,-1.36718 -0.49219,-0.58106 -1.42188,-0.58106 -0.90918,0 -1.49707,0.60156 -0.58789,0.60157 -0.64258,1.35352 z"
+           id="path3046" />
+        <path
+           d="m 420.41925,166.05312 v 4.74414 h -1.26465 v -4.74414 q 0,-1.03223 -0.3623,-1.51758 -0.36231,-0.48535 -1.13477,-0.48535 -0.88183,0 -1.36035,0.6289 -0.47168,0.62207 -0.47168,1.79102 v 4.32715 h -1.25781 v -7.65625 h 1.25781 v 1.14843 q 0.33496,-0.65625 0.90918,-0.99121 0.57422,-0.34179 1.36035,-0.34179 1.16895,0 1.74317,0.77246 0.58105,0.76562 0.58105,2.32422 z"
+           id="path3048" />
+        <path
+           d="m 425.86072,160.96718 v 2.17383 h 2.85742 v 0.97754 h -2.85742 v 4.15625 q 0,0.84765 0.32129,1.18261 0.32129,0.33496 1.12109,0.33496 h 1.41504 v 1.00489 h -1.53809 q -1.41504,0 -1.99609,-0.56739 -0.58105,-0.56738 -0.58105,-1.95507 v -4.15625 h -2.04395 v -0.97754 h 2.04395 v -2.17383 z"
+           id="path3050" />
+        <path
+           d="m 437.7587,166.34023 v 0.61523 h -5.44824 v 0.041 q -0.0547,1.56542 0.59472,2.24902 0.65625,0.68359 1.84571,0.68359 0.60156,0 1.25781,-0.1914 0.65625,-0.19141 1.40136,-0.58106 v 1.25098 q -0.71777,0.29394 -1.38769,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.06641 -1.00488,-1.07324 -1.00488,-2.95312 0,-1.83203 0.98437,-2.92578 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99121 0.90235,2.39258 z m -1.25781,-0.36915 q -0.082,-0.79296 -0.58106,-1.36718 -0.49219,-0.58106 -1.42187,-0.58106 -0.90918,0 -1.49707,0.60156 -0.5879,0.60157 -0.64258,1.35352 z"
+           id="path3052" />
+        <path
+           d="m 446.42673,164.72011 q -0.40332,-0.31446 -0.82032,-0.45801 -0.41699,-0.14355 -0.91601,-0.14355 -1.17578,0 -1.79785,0.73828 -0.62207,0.73828 -0.62207,2.13281 v 3.80762 h -1.26465 v -7.65625 h 1.26465 v 1.49707 q 0.31445,-0.81348 0.96386,-1.24414 0.65625,-0.4375 1.55176,-0.4375 0.46485,0 0.86817,0.11621 0.40332,0.11621 0.77246,0.3623 z"
+           id="path3054" />
+        <path
+           d="m 449.62939,168.03554 h 2.40625 v 2.76172 h -2.40625 z"
+           id="path3056" />
+        <path
+           d="m 7.8955078,184.32129 q -0.4033203,-0.31445 -0.8203125,-0.45801 -0.4169922,-0.14355 -0.9160156,-0.14355 -1.1757813,0 -1.7978516,0.73828 -0.6220703,0.73828 -0.6220703,2.13281 v 3.80762 H 2.4746094 v -7.65625 h 1.2646484 v 1.49707 q 0.3144531,-0.81348 0.9638672,-1.24414 0.65625,-0.4375 1.5517578,-0.4375 0.4648438,0 0.8681641,0.11621 0.4033203,0.11621 0.7724609,0.3623 z"
+           id="path3058" />
+        <path
+           d="m 12.639716,183.62402 q -0.957031,0 -1.449219,0.74512 -0.492187,0.74512 -0.492187,2.20801 0,1.45605 0.492187,2.20801 0.492188,0.74511 1.449219,0.74511 0.963867,0 1.456055,-0.74511 0.492187,-0.75196 0.492187,-2.20801 0,-1.46289 -0.492187,-2.20801 -0.492188,-0.74512 -1.456055,-0.74512 z m 0,-1.0664 q 1.592774,0 2.433594,1.03222 0.847656,1.03223 0.847656,2.98731 0,1.96191 -0.84082,2.99414 -0.84082,1.02539 -2.44043,1.02539 -1.592773,0 -2.433594,-1.02539 -0.8408199,-1.03223 -0.8408199,-2.99414 0,-1.95508 0.8408199,-2.98731 0.840821,-1.03222 2.433594,-1.03222 z"
+           id="path3060" />
+        <path
+           d="m 21.078701,183.62402 q -0.957031,0 -1.449219,0.74512 -0.492187,0.74512 -0.492187,2.20801 0,1.45605 0.492187,2.20801 0.492188,0.74511 1.449219,0.74511 0.963867,0 1.456055,-0.74511 0.492187,-0.75196 0.492187,-2.20801 0,-1.46289 -0.492187,-2.20801 -0.492188,-0.74512 -1.456055,-0.74512 z m 0,-1.0664 q 1.592773,0 2.433594,1.03222 0.847656,1.03223 0.847656,2.98731 0,1.96191 -0.84082,2.99414 -0.840821,1.02539 -2.44043,1.02539 -1.592773,0 -2.433594,-1.02539 -0.84082,-1.03223 -0.84082,-2.99414 0,-1.95508 0.84082,-2.98731 0.840821,-1.03222 2.433594,-1.03222 z"
+           id="path3062" />
+        <path
+           d="m 29.493809,180.56836 v 2.17383 h 2.857422 v 0.97754 h -2.857422 v 4.15625 q 0,0.84765 0.321289,1.18261 0.321289,0.33496 1.121094,0.33496 h 1.415039 v 1.00489 h -1.538086 q -1.415039,0 -1.996094,-0.56739 -0.581055,-0.56738 -0.581055,-1.95507 v -4.15625 h -2.043945 v -0.97754 h 2.043945 v -2.17383 z"
+           id="path3064" />
+        <path
+           d="m 40.83123,186.67285 q 0,-0.88183 -0.4375,-1.4082 -0.4375,-0.5332 -1.168945,-0.5332 -0.731445,0 -1.175781,0.5332 -0.4375,0.52637 -0.4375,1.4082 0,0.88867 0.4375,1.42188 0.444336,0.52636 1.175781,0.52636 0.731445,0 1.168945,-0.52636 0.4375,-0.53321 0.4375,-1.42188 z m 0.957031,2.80274 h -0.984375 v -0.75879 q -0.252929,0.43066 -0.704101,0.66308 -0.444336,0.23242 -1.004883,0.23242 -1.100586,0 -1.825195,-0.82714 -0.717774,-0.82715 -0.717774,-2.11231 0,-1.28515 0.717774,-2.1123 0.724609,-0.82715 1.825195,-0.82715 0.546875,0 1.004883,0.23926 0.458008,0.23925 0.704101,0.65625 v -0.43067 q 0,-1.0664 -0.601562,-1.71582 -0.601563,-0.64941 -1.592774,-0.64941 -1.68164,0 -2.679687,1.3125 -0.991211,1.30566 -0.991211,3.54101 0,2.24903 1.12793,3.58203 1.127929,1.33301 3.089843,1.33985 0.369141,0.0547 1.039063,0.0547 0.669922,0 1.196289,-0.0274 v 0.98438 q -0.444336,0.0342 -1.148437,0.0342 -0.697266,0.007 -1.086915,-0.0547 -2.37207,-0.0205 -3.807617,-1.61328 -1.428711,-1.59278 -1.428711,-4.29981 0,-2.66601 1.285157,-4.24511 1.285156,-1.57911 3.445312,-1.57911 1.428711,0 2.283203,0.90918 0.854492,0.90918 0.854492,2.44043 z"
+           id="path3066" />
+        <path
+           d="m 46.238525,185.87305 q 0.881836,0 1.38086,-0.63575 0.505859,-0.63574 0.505859,-1.75683 0,-1.1211 -0.505859,-1.75684 -0.499024,-0.63574 -1.38086,-0.63574 -0.916015,0 -1.380859,0.6084 -0.464844,0.60156 -0.464844,1.78418 0,1.18945 0.458008,1.79101 0.464844,0.60157 1.387695,0.60157 z m -2.460937,4.31347 v -1.27148 q 0.430664,0.25293 0.916016,0.38965 0.485351,0.12988 1.011718,0.12988 1.3125,0 1.982422,-0.98437 0.676758,-0.99122 0.676758,-2.91211 -0.321289,0.68359 -0.902344,1.05273 -0.581054,0.3623 -1.333008,0.3623 -1.476562,0 -2.290039,-0.90917 -0.80664,-0.90918 -0.80664,-2.57715 0,-1.64746 0.827148,-2.54981 0.833985,-0.90918 2.351563,-0.90918 1.777343,0 2.604492,1.27832 0.827148,1.27832 0.827148,4.01953 0,2.57715 -0.998047,3.9375 -0.991211,1.35352 -2.884765,1.35352 -0.499024,0 -1.004883,-0.10938 -0.505859,-0.10253 -0.977539,-0.30078 z"
+           id="path3068" />
+        <path
+           d="m 55.627708,181.4502 -3.219726,5.39355 h 3.219726 z m -0.225586,-1.25782 h 1.59961 v 6.65137 h 1.360351 v 1.12109 h -1.360351 v 2.4336 h -1.374024 v -2.4336 H 51.30056 v -1.30566 z"
+           id="path3070" />
+        <path
+           d="m 59.729336,185.44922 h 7.246094 v 1.15527 h -7.246094 z"
+           id="path3072" />
+        <path
+           d="m 68.886093,180.19238 h 5.167969 v 1.16211 h -3.910156 v 2.50879 q 0.293945,-0.10937 0.58789,-0.15723 0.300782,-0.0547 0.601563,-0.0547 1.585937,0 2.515625,0.93652 0.929687,0.93652 0.929687,2.53613 0,1.61328 -0.977539,2.54297 -0.970703,0.92969 -2.659179,0.92969 -0.813477,0 -1.490235,-0.10938 -0.669922,-0.10937 -1.203125,-0.32812 v -1.40137 q 0.628906,0.3418 1.264649,0.5127 0.635742,0.16406 1.298828,0.16406 1.141601,0 1.756836,-0.60156 0.62207,-0.60156 0.62207,-1.70899 0,-1.09375 -0.642578,-1.70215 -0.635742,-0.60839 -1.777344,-0.60839 -0.553711,0 -1.080078,0.12988 -0.526367,0.12305 -1.004883,0.37598 z"
+           id="path3074" />
+        <path
+           d="m 76.850029,180.19238 h 6.425781 v 0.58789 l -3.65039,9.61817 h -1.442383 l 3.554687,-9.04395 h -4.887695 z"
+           id="path3076" />
+        <path
+           d="m 85.025879,185.44922 h 7.246094 v 1.15527 h -7.246094 z"
+           id="path3078" />
+        <path
+           d="m 97.566422,186.5498 h -0.416993 q -1.100586,0 -1.661132,0.38965 -0.553711,0.38282 -0.553711,1.14844 0,0.69043 0.416992,1.07324 0.416992,0.38282 1.155273,0.38282 1.039063,0 1.633789,-0.71778 0.594727,-0.72461 0.601563,-1.99609 v -0.28028 z m 2.440428,-0.51953 v 4.36817 h -1.264647 v -1.13477 q -0.403321,0.6836 -1.018555,1.01172 -0.608398,0.32129 -1.483398,0.32129 -1.168946,0 -1.866211,-0.65625 -0.697266,-0.66309 -0.697266,-1.77051 0,-1.27832 0.854492,-1.9414 0.861328,-0.66309 2.522461,-0.66309 h 1.688477 v -0.19824 q -0.0068,-0.91602 -0.464844,-1.32617 -0.458008,-0.417 -1.462891,-0.417 -0.642578,0 -1.298828,0.18457 -0.65625,0.18457 -1.27832,0.54004 v -1.25781 q 0.697266,-0.2666 1.333008,-0.39648 0.642578,-0.13672 1.24414,-0.13672 0.950196,0 1.620118,0.28027 0.676757,0.28027 1.09375,0.84082 0.259765,0.3418 0.36914,0.84766 0.109374,0.49902 0.109374,1.5039 z"
+           id="path3080" />
+        <path
+           d="m 102.61141,180.19238 h 5.16797 v 1.16211 h -3.91016 v 2.50879 q 0.29395,-0.10937 0.5879,-0.15723 0.30078,-0.0547 0.60156,-0.0547 1.58594,0 2.51562,0.93652 0.92969,0.93652 0.92969,2.53613 0,1.61328 -0.97754,2.54297 -0.9707,0.92969 -2.65918,0.92969 -0.81348,0 -1.49023,-0.10938 -0.66992,-0.10937 -1.20313,-0.32812 v -1.40137 q 0.62891,0.3418 1.26465,0.5127 0.63574,0.16406 1.29883,0.16406 1.1416,0 1.75683,-0.60156 0.62207,-0.60156 0.62207,-1.70899 0,-1.09375 -0.64257,-1.70215 -0.63575,-0.60839 -1.77735,-0.60839 -0.55371,0 -1.08008,0.12988 -0.52636,0.12305 -1.00488,0.37598 z"
+           id="path3082" />
+        <path
+           d="m 110.33263,185.44922 h 7.24609 v 1.15527 h -7.24609 z"
+           id="path3084" />
+        <path
+           d="m 123.92937,183.71973 v -3.95801 h 1.25782 v 10.63672 h -1.25782 v -0.96387 q -0.31445,0.56738 -0.84082,0.86816 -0.51953,0.29395 -1.20312,0.29395 -1.3877,0 -2.1875,-1.07324 -0.79297,-1.08008 -0.79297,-2.97364 0,-1.86621 0.79981,-2.92578 0.7998,-1.0664 2.18066,-1.0664 0.69043,0 1.2168,0.30078 0.52636,0.29394 0.82714,0.86133 z m -3.69824,2.85742 q 0,1.46289 0.46485,2.20801 0.46484,0.74511 1.37402,0.74511 0.90918,0 1.38086,-0.75195 0.47851,-0.75195 0.47851,-2.20117 0,-1.45606 -0.47851,-2.20117 -0.47168,-0.75196 -1.38086,-0.75196 -0.90918,0 -1.37402,0.74512 -0.46485,0.74512 -0.46485,2.20801 z"
+           id="path3086" />
+        <path
+           d="m 131.80782,184.93652 q 1.00488,0.2666 1.53808,0.9502 0.5332,0.67676 0.5332,1.69531 0,1.4082 -0.95019,2.21484 -0.94336,0.79981 -2.61816,0.79981 -0.70411,0 -1.43555,-0.12988 -0.73145,-0.12989 -1.43555,-0.37598 v -1.37402 q 0.69727,0.3623 1.37402,0.54004 0.67676,0.17773 1.34668,0.17773 1.13477,0 1.74317,-0.5127 0.6084,-0.51269 0.6084,-1.47656 0,-0.88867 -0.6084,-1.4082 -0.6084,-0.52637 -1.64746,-0.52637 h -1.05274 v -1.13476 h 1.05274 q 0.95019,0 1.4834,-0.417 0.5332,-0.41699 0.5332,-1.16211 0,-0.78613 -0.49902,-1.20312 -0.49219,-0.42383 -1.40821,-0.42383 -0.6084,0 -1.25781,0.13672 -0.64941,0.13672 -1.36035,0.41016 v -1.27149 q 0.82715,-0.21875 1.46973,-0.32812 0.64941,-0.10938 1.14843,-0.10938 1.49024,0 2.37891,0.75196 0.89551,0.74511 0.89551,1.98242 0,0.84082 -0.47168,1.40136 -0.46485,0.56055 -1.36035,0.79297 z"
+           id="path3088" />
+        <path
+           d="m 135.62917,185.44922 h 7.24609 v 1.15527 h -7.24609 z"
+           id="path3090" />
+        <path
+           d="m 149.23613,183.71973 v -3.95801 h 1.25781 v 10.63672 h -1.25781 v -0.96387 q -0.31445,0.56738 -0.84082,0.86816 -0.51953,0.29395 -1.20313,0.29395 -1.38769,0 -2.1875,-1.07324 -0.79296,-1.08008 -0.79296,-2.97364 0,-1.86621 0.7998,-2.92578 0.79981,-1.0664 2.18066,-1.0664 0.69043,0 1.2168,0.30078 0.52637,0.29394 0.82715,0.86133 z m -3.69824,2.85742 q 0,1.46289 0.46484,2.20801 0.46485,0.74511 1.37402,0.74511 0.90918,0 1.38086,-0.75195 0.47852,-0.75195 0.47852,-2.20117 0,-1.45606 -0.47852,-2.20117 -0.47168,-0.75196 -1.38086,-0.75196 -0.90917,0 -1.37402,0.74512 -0.46484,0.74512 -0.46484,2.20801 z"
+           id="path3092" />
+        <path
+           d="m 155.87389,185.87305 q 0.88183,0 1.38086,-0.63575 0.50585,-0.63574 0.50585,-1.75683 0,-1.1211 -0.50585,-1.75684 -0.49903,-0.63574 -1.38086,-0.63574 -0.91602,0 -1.38086,0.6084 -0.46485,0.60156 -0.46485,1.78418 0,1.18945 0.45801,1.79101 0.46484,0.60157 1.3877,0.60157 z m -2.46094,4.31347 v -1.27148 q 0.43066,0.25293 0.91601,0.38965 0.48536,0.12988 1.01172,0.12988 1.3125,0 1.98242,-0.98437 0.67676,-0.99122 0.67676,-2.91211 -0.32129,0.68359 -0.90234,1.05273 -0.58106,0.3623 -1.33301,0.3623 -1.47656,0 -2.29004,-0.90917 -0.80664,-0.90918 -0.80664,-2.57715 0,-1.64746 0.82715,-2.54981 0.83398,-0.90918 2.35156,-0.90918 1.77735,0 2.60449,1.27832 0.82715,1.27832 0.82715,4.01953 0,2.57715 -0.99804,3.9375 -0.99121,1.35352 -2.88477,1.35352 -0.49902,0 -1.00488,-0.10938 -0.50586,-0.10253 -0.97754,-0.30078 z"
+           id="path3094" />
+        <path
+           d="m 160.92572,185.44922 h 7.24609 v 1.15527 h -7.24609 z"
+           id="path3096" />
+        <path
+           d="m 174.53265,183.71973 v -3.95801 h 1.25782 v 10.63672 h -1.25782 v -0.96387 q -0.31445,0.56738 -0.84082,0.86816 -0.51953,0.29395 -1.20312,0.29395 -1.3877,0 -2.1875,-1.07324 -0.79297,-1.08008 -0.79297,-2.97364 0,-1.86621 0.7998,-2.92578 0.79981,-1.0664 2.18067,-1.0664 0.69043,0 1.2168,0.30078 0.52636,0.29394 0.82714,0.86133 z m -3.69824,2.85742 q 0,1.46289 0.46485,2.20801 0.46484,0.74511 1.37402,0.74511 0.90918,0 1.38086,-0.75195 0.47851,-0.75195 0.47851,-2.20117 0,-1.45606 -0.47851,-2.20117 -0.47168,-0.75196 -1.38086,-0.75196 -0.90918,0 -1.37402,0.74512 -0.46485,0.74512 -0.46485,2.20801 z"
+           id="path3098" />
+        <path
+           d="m 184.75246,185.94141 v 0.61523 h -5.44825 v 0.041 q -0.0547,1.56543 0.59473,2.24902 0.65625,0.68359 1.8457,0.68359 0.60157,0 1.25782,-0.1914 0.65625,-0.19141 1.40136,-0.58106 v 1.25098 q -0.71777,0.29394 -1.38769,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.06641 -1.00488,-1.07324 -1.00488,-2.95312 0,-1.83203 0.98437,-2.92578 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99121 0.90235,2.39258 z m -1.25782,-0.36914 q -0.082,-0.79297 -0.58105,-1.36719 -0.49219,-0.58106 -1.42188,-0.58106 -0.90918,0 -1.49707,0.60157 -0.58789,0.60156 -0.64257,1.35351 z"
+           id="path3100" />
+        <path
+           d="m 188.4678,182.74902 h 2.13282 v 2.46778 h -2.13282 z m 0,5.16114 h 2.13282 v 2.48828 h -2.13282 z"
+           id="path3102" />
+        <path
+           d="m 200.04111,180.19238 h 1.29883 l -5.37305,11.50489 h -1.30567 z"
+           id="path3104" />
+        <path
+           d="m 207.07874,180.38379 -0.61524,2.41992 h 1.67481 l 0.62207,-2.41992 h 1.09375 l -0.62207,2.41992 h 1.66796 v 1.0459 h -1.92089 l -0.66993,2.68652 h 1.70899 v 1.0459 h -1.97559 l -0.71093,2.81641 h -1.09375 l 0.71777,-2.81641 h -1.68164 l -0.71778,2.81641 h -1.08691 l 0.71094,-2.81641 h -1.76367 v -1.0459 h 2.03027 l 0.66992,-2.68652 h -1.81836 v -1.0459 h 2.07129 l 0.61524,-2.41992 z m 0.80664,3.46582 h -1.67481 l -0.66992,2.68652 h 1.68164 z"
+           id="path3106" />
+        <path
+           d="m 7.8955078,203.92244 q -0.4033203,-0.31445 -0.8203125,-0.45801 -0.4169922,-0.14355 -0.9160156,-0.14355 -1.1757813,0 -1.7978516,0.73828 -0.6220703,0.73828 -0.6220703,2.13281 v 3.80762 H 2.4746094 v -7.65625 h 1.2646484 v 1.49707 q 0.3144531,-0.81348 0.9638672,-1.24414 0.65625,-0.4375 1.5517578,-0.4375 0.4648438,0 0.8681641,0.11621 0.4033203,0.11621 0.7724609,0.3623 z"
+           id="path3108" />
+        <path
+           d="m 12.639716,203.22517 q -0.957031,0 -1.449219,0.74512 -0.492187,0.74512 -0.492187,2.20801 0,1.45605 0.492187,2.20801 0.492188,0.74511 1.449219,0.74511 0.963867,0 1.456055,-0.74511 0.492187,-0.75196 0.492187,-2.20801 0,-1.46289 -0.492187,-2.20801 -0.492188,-0.74512 -1.456055,-0.74512 z m 0,-1.0664 q 1.592774,0 2.433594,1.03222 0.847656,1.03223 0.847656,2.98731 0,1.96191 -0.84082,2.99414 -0.84082,1.02539 -2.44043,1.02539 -1.592773,0 -2.433594,-1.02539 -0.8408199,-1.03223 -0.8408199,-2.99414 0,-1.95508 0.8408199,-2.98731 0.840821,-1.03222 2.433594,-1.03222 z"
+           id="path3110" />
+        <path
+           d="m 21.078701,203.22517 q -0.957031,0 -1.449219,0.74512 -0.492187,0.74512 -0.492187,2.20801 0,1.45605 0.492187,2.20801 0.492188,0.74511 1.449219,0.74511 0.963867,0 1.456055,-0.74511 0.492187,-0.75196 0.492187,-2.20801 0,-1.46289 -0.492187,-2.20801 -0.492188,-0.74512 -1.456055,-0.74512 z m 0,-1.0664 q 1.592773,0 2.433594,1.03222 0.847656,1.03223 0.847656,2.98731 0,1.96191 -0.84082,2.99414 -0.840821,1.02539 -2.44043,1.02539 -1.592773,0 -2.433594,-1.02539 -0.84082,-1.03223 -0.84082,-2.99414 0,-1.95508 0.84082,-2.98731 0.840821,-1.03222 2.433594,-1.03222 z"
+           id="path3112" />
+        <path
+           d="m 29.493809,200.16951 v 2.17383 h 2.857422 v 0.97754 h -2.857422 v 4.15625 q 0,0.84765 0.321289,1.18261 0.321289,0.33497 1.121094,0.33497 h 1.415039 v 1.00488 h -1.538086 q -1.415039,0 -1.996094,-0.56738 -0.581055,-0.56739 -0.581055,-1.95508 v -4.15625 h -2.043945 v -0.97754 h 2.043945 v -2.17383 z"
+           id="path3114" />
+        <path
+           d="m 40.83123,206.274 q 0,-0.88183 -0.4375,-1.4082 -0.4375,-0.5332 -1.168945,-0.5332 -0.731445,0 -1.175781,0.5332 -0.4375,0.52637 -0.4375,1.4082 0,0.88867 0.4375,1.42188 0.444336,0.52636 1.175781,0.52636 0.731445,0 1.168945,-0.52636 0.4375,-0.53321 0.4375,-1.42188 z m 0.957031,2.80274 h -0.984375 v -0.75879 q -0.252929,0.43066 -0.704101,0.66308 -0.444336,0.23243 -1.004883,0.23243 -1.100586,0 -1.825195,-0.82715 -0.717774,-0.82715 -0.717774,-2.11231 0,-1.28515 0.717774,-2.1123 0.724609,-0.82715 1.825195,-0.82715 0.546875,0 1.004883,0.23926 0.458008,0.23925 0.704101,0.65625 v -0.43067 q 0,-1.0664 -0.601562,-1.71582 -0.601563,-0.64941 -1.592774,-0.64941 -1.68164,0 -2.679687,1.3125 -0.991211,1.30566 -0.991211,3.54101 0,2.24903 1.12793,3.58204 1.127929,1.333 3.089843,1.33984 0.369141,0.0547 1.039063,0.0547 0.669922,0 1.196289,-0.0274 v 0.98438 q -0.444336,0.0342 -1.148437,0.0342 -0.697266,0.007 -1.086915,-0.0547 -2.37207,-0.0205 -3.807617,-1.61328 -1.428711,-1.59277 -1.428711,-4.29981 0,-2.66601 1.285157,-4.24511 1.285156,-1.5791 3.445312,-1.5791 1.428711,0 2.283203,0.90917 0.854492,0.90918 0.854492,2.44043 z"
+           id="path3116" />
+        <path
+           d="m 46.238525,205.4742 q 0.881836,0 1.38086,-0.63574 0.505859,-0.63575 0.505859,-1.75684 0,-1.12109 -0.505859,-1.75684 -0.499024,-0.63574 -1.38086,-0.63574 -0.916015,0 -1.380859,0.6084 -0.464844,0.60156 -0.464844,1.78418 0,1.18945 0.458008,1.79101 0.464844,0.60157 1.387695,0.60157 z m -2.460937,4.31347 v -1.27148 q 0.430664,0.25293 0.916016,0.38965 0.485351,0.12988 1.011718,0.12988 1.3125,0 1.982422,-0.98437 0.676758,-0.99122 0.676758,-2.91211 -0.321289,0.68359 -0.902344,1.05273 -0.581054,0.36231 -1.333008,0.36231 -1.476562,0 -2.290039,-0.90918 -0.80664,-0.90918 -0.80664,-2.57715 0,-1.64746 0.827148,-2.54981 0.833985,-0.90918 2.351563,-0.90918 1.777343,0 2.604492,1.27832 0.827148,1.27832 0.827148,4.01953 0,2.57715 -0.998047,3.9375 -0.991211,1.35352 -2.884765,1.35352 -0.499024,0 -1.004883,-0.10937 -0.505859,-0.10254 -0.977539,-0.30079 z"
+           id="path3118" />
+        <path
+           d="m 55.627708,201.05135 -3.219726,5.39355 h 3.219726 z m -0.225586,-1.25782 h 1.59961 v 6.65137 h 1.360351 v 1.12109 h -1.360351 v 2.4336 h -1.374024 v -2.4336 H 51.30056 v -1.30566 z"
+           id="path3120" />
+        <path
+           d="m 59.729336,205.05037 h 7.246094 v 1.15527 h -7.246094 z"
+           id="path3122" />
+        <path
+           d="m 68.886093,199.79353 h 5.167969 v 1.16211 h -3.910156 v 2.50879 q 0.293945,-0.10937 0.58789,-0.15722 0.300782,-0.0547 0.601563,-0.0547 1.585937,0 2.515625,0.93652 0.929687,0.93652 0.929687,2.53613 0,1.61329 -0.977539,2.54297 -0.970703,0.92969 -2.659179,0.92969 -0.813477,0 -1.490235,-0.10937 -0.669922,-0.10938 -1.203125,-0.32813 v -1.40137 q 0.628906,0.3418 1.264649,0.5127 0.635742,0.16406 1.298828,0.16406 1.141601,0 1.756836,-0.60156 0.62207,-0.60156 0.62207,-1.70899 0,-1.09375 -0.642578,-1.70214 -0.635742,-0.6084 -1.777344,-0.6084 -0.553711,0 -1.080078,0.12988 -0.526367,0.12305 -1.004883,0.37598 z"
+           id="path3124" />
+        <path
+           d="m 76.850029,199.79353 h 6.425781 v 0.58789 l -3.65039,9.61817 h -1.442383 l 3.554687,-9.04395 h -4.887695 z"
+           id="path3126" />
+        <path
+           d="m 85.025879,205.05037 h 7.246094 v 1.15527 h -7.246094 z"
+           id="path3128" />
+        <path
+           d="m 97.566422,206.15096 h -0.416993 q -1.100586,0 -1.661132,0.38964 -0.553711,0.38282 -0.553711,1.14844 0,0.69043 0.416992,1.07324 0.416992,0.38282 1.155273,0.38282 1.039063,0 1.633789,-0.71778 0.594727,-0.72461 0.601563,-1.99609 v -0.28027 z m 2.440428,-0.51954 v 4.36817 h -1.264647 v -1.13477 q -0.403321,0.6836 -1.018555,1.01172 -0.608398,0.32129 -1.483398,0.32129 -1.168946,0 -1.866211,-0.65625 -0.697266,-0.66309 -0.697266,-1.77051 0,-1.27832 0.854492,-1.9414 0.861328,-0.66309 2.522461,-0.66309 h 1.688477 v -0.19824 q -0.0068,-0.91602 -0.464844,-1.32617 -0.458008,-0.417 -1.462891,-0.417 -0.642578,0 -1.298828,0.18457 -0.65625,0.18457 -1.27832,0.54004 v -1.25781 q 0.697266,-0.2666 1.333008,-0.39648 0.642578,-0.13672 1.24414,-0.13672 0.950196,0 1.620118,0.28027 0.676757,0.28027 1.09375,0.84082 0.259765,0.3418 0.36914,0.84766 0.109374,0.49902 0.109374,1.5039 z"
+           id="path3130" />
+        <path
+           d="m 102.61141,199.79353 h 5.16797 v 1.16211 h -3.91016 v 2.50879 q 0.29395,-0.10937 0.5879,-0.15722 0.30078,-0.0547 0.60156,-0.0547 1.58594,0 2.51562,0.93652 0.92969,0.93652 0.92969,2.53613 0,1.61329 -0.97754,2.54297 -0.9707,0.92969 -2.65918,0.92969 -0.81348,0 -1.49023,-0.10937 -0.66992,-0.10938 -1.20313,-0.32813 v -1.40137 q 0.62891,0.3418 1.26465,0.5127 0.63574,0.16406 1.29883,0.16406 1.1416,0 1.75683,-0.60156 0.62207,-0.60156 0.62207,-1.70899 0,-1.09375 -0.64257,-1.70214 -0.63575,-0.6084 -1.77735,-0.6084 -0.55371,0 -1.08008,0.12988 -0.52636,0.12305 -1.00488,0.37598 z"
+           id="path3132" />
+        <path
+           d="m 110.33263,205.05037 h 7.24609 v 1.15527 h -7.24609 z"
+           id="path3134" />
+        <path
+           d="m 123.92937,203.32088 v -3.95801 h 1.25782 v 10.63672 h -1.25782 v -0.96387 q -0.31445,0.56738 -0.84082,0.86816 -0.51953,0.29395 -1.20312,0.29395 -1.3877,0 -2.1875,-1.07324 -0.79297,-1.08008 -0.79297,-2.97363 0,-1.86622 0.79981,-2.92579 0.7998,-1.0664 2.18066,-1.0664 0.69043,0 1.2168,0.30078 0.52636,0.29394 0.82714,0.86133 z m -3.69824,2.85742 q 0,1.46289 0.46485,2.20801 0.46484,0.74511 1.37402,0.74511 0.90918,0 1.38086,-0.75195 0.47851,-0.75195 0.47851,-2.20117 0,-1.45606 -0.47851,-2.20117 -0.47168,-0.75196 -1.38086,-0.75196 -0.90918,0 -1.37402,0.74512 -0.46485,0.74512 -0.46485,2.20801 z"
+           id="path3136" />
+        <path
+           d="m 131.80782,204.53767 q 1.00488,0.26661 1.53808,0.9502 0.5332,0.67676 0.5332,1.69531 0,1.4082 -0.95019,2.21485 -0.94336,0.7998 -2.61816,0.7998 -0.70411,0 -1.43555,-0.12988 -0.73145,-0.12989 -1.43555,-0.37598 v -1.37402 q 0.69727,0.3623 1.37402,0.54004 0.67676,0.17773 1.34668,0.17773 1.13477,0 1.74317,-0.51269 0.6084,-0.5127 0.6084,-1.47657 0,-0.88867 -0.6084,-1.4082 -0.6084,-0.52637 -1.64746,-0.52637 h -1.05274 v -1.13476 h 1.05274 q 0.95019,0 1.4834,-0.417 0.5332,-0.41699 0.5332,-1.1621 0,-0.78614 -0.49902,-1.20313 -0.49219,-0.42383 -1.40821,-0.42383 -0.6084,0 -1.25781,0.13672 -0.64941,0.13672 -1.36035,0.41016 v -1.27149 q 0.82715,-0.21875 1.46973,-0.32812 0.64941,-0.10938 1.14843,-0.10938 1.49024,0 2.37891,0.75196 0.89551,0.74511 0.89551,1.98242 0,0.84082 -0.47168,1.40137 -0.46485,0.56054 -1.36035,0.79296 z"
+           id="path3138" />
+        <path
+           d="m 135.62917,205.05037 h 7.24609 v 1.15527 h -7.24609 z"
+           id="path3140" />
+        <path
+           d="m 149.23613,203.32088 v -3.95801 h 1.25781 v 10.63672 h -1.25781 v -0.96387 q -0.31445,0.56738 -0.84082,0.86816 -0.51953,0.29395 -1.20313,0.29395 -1.38769,0 -2.1875,-1.07324 -0.79296,-1.08008 -0.79296,-2.97363 0,-1.86622 0.7998,-2.92579 0.79981,-1.0664 2.18066,-1.0664 0.69043,0 1.2168,0.30078 0.52637,0.29394 0.82715,0.86133 z m -3.69824,2.85742 q 0,1.46289 0.46484,2.20801 0.46485,0.74511 1.37402,0.74511 0.90918,0 1.38086,-0.75195 0.47852,-0.75195 0.47852,-2.20117 0,-1.45606 -0.47852,-2.20117 -0.47168,-0.75196 -1.38086,-0.75196 -0.90917,0 -1.37402,0.74512 -0.46484,0.74512 -0.46484,2.20801 z"
+           id="path3142" />
+        <path
+           d="m 155.87389,205.4742 q 0.88183,0 1.38086,-0.63574 0.50585,-0.63575 0.50585,-1.75684 0,-1.12109 -0.50585,-1.75684 -0.49903,-0.63574 -1.38086,-0.63574 -0.91602,0 -1.38086,0.6084 -0.46485,0.60156 -0.46485,1.78418 0,1.18945 0.45801,1.79101 0.46484,0.60157 1.3877,0.60157 z m -2.46094,4.31347 v -1.27148 q 0.43066,0.25293 0.91601,0.38965 0.48536,0.12988 1.01172,0.12988 1.3125,0 1.98242,-0.98437 0.67676,-0.99122 0.67676,-2.91211 -0.32129,0.68359 -0.90234,1.05273 -0.58106,0.36231 -1.33301,0.36231 -1.47656,0 -2.29004,-0.90918 -0.80664,-0.90918 -0.80664,-2.57715 0,-1.64746 0.82715,-2.54981 0.83398,-0.90918 2.35156,-0.90918 1.77735,0 2.60449,1.27832 0.82715,1.27832 0.82715,4.01953 0,2.57715 -0.99804,3.9375 -0.99121,1.35352 -2.88477,1.35352 -0.49902,0 -1.00488,-0.10937 -0.50586,-0.10254 -0.97754,-0.30079 z"
+           id="path3144" />
+        <path
+           d="m 160.92572,205.05037 h 7.24609 v 1.15527 h -7.24609 z"
+           id="path3146" />
+        <path
+           d="m 174.53265,203.32088 v -3.95801 h 1.25782 v 10.63672 h -1.25782 v -0.96387 q -0.31445,0.56738 -0.84082,0.86816 -0.51953,0.29395 -1.20312,0.29395 -1.3877,0 -2.1875,-1.07324 -0.79297,-1.08008 -0.79297,-2.97363 0,-1.86622 0.7998,-2.92579 0.79981,-1.0664 2.18067,-1.0664 0.69043,0 1.2168,0.30078 0.52636,0.29394 0.82714,0.86133 z m -3.69824,2.85742 q 0,1.46289 0.46485,2.20801 0.46484,0.74511 1.37402,0.74511 0.90918,0 1.38086,-0.75195 0.47851,-0.75195 0.47851,-2.20117 0,-1.45606 -0.47851,-2.20117 -0.47168,-0.75196 -1.38086,-0.75196 -0.90918,0 -1.37402,0.74512 -0.46485,0.74512 -0.46485,2.20801 z"
+           id="path3148" />
+        <path
+           d="m 184.75246,205.54256 v 0.61523 h -5.44825 v 0.041 q -0.0547,1.56543 0.59473,2.24902 0.65625,0.68359 1.8457,0.68359 0.60157,0 1.25782,-0.1914 0.65625,-0.19141 1.40136,-0.58106 v 1.25098 q -0.71777,0.29394 -1.38769,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.06641 -1.00488,-1.07324 -1.00488,-2.95312 0,-1.83203 0.98437,-2.92578 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99121 0.90235,2.39258 z m -1.25782,-0.36914 q -0.082,-0.79297 -0.58105,-1.36719 -0.49219,-0.58106 -1.42188,-0.58106 -0.90918,0 -1.49707,0.60157 -0.58789,0.60156 -0.64257,1.35351 z"
+           id="path3150" />
+        <path
+           d="m 188.4678,202.35017 h 2.13282 v 2.46778 h -2.13282 z m 0,5.16114 h 2.13282 v 2.48828 h -2.13282 z"
+           id="path3152" />
+        <path
+           d="m 200.04111,199.79353 h 1.29883 l -5.37305,11.50489 h -1.30567 z"
+           id="path3154" />
+        <path
+           d="m 207.07874,199.98494 -0.61524,2.41992 h 1.67481 l 0.62207,-2.41992 h 1.09375 l -0.62207,2.41992 h 1.66796 v 1.0459 h -1.92089 l -0.66993,2.68652 h 1.70899 v 1.0459 h -1.97559 l -0.71093,2.81641 h -1.09375 l 0.71777,-2.81641 h -1.68164 l -0.71778,2.81641 h -1.08691 l 0.71094,-2.81641 h -1.76367 v -1.0459 h 2.03027 l 0.66992,-2.68652 h -1.81836 v -1.0459 h 2.07129 l 0.61524,-2.41992 z m 0.80664,3.46582 h -1.67481 l -0.66992,2.68652 h 1.68164 z"
+           id="path3156" />
+        <path
+           d="m 7.8955078,223.52364 q -0.4033203,-0.31446 -0.8203125,-0.45801 -0.4169922,-0.14356 -0.9160156,-0.14356 -1.1757813,0 -1.7978516,0.73828 -0.6220703,0.73829 -0.6220703,2.13282 v 3.80761 H 2.4746094 v -7.65625 h 1.2646484 v 1.49707 q 0.3144531,-0.81347 0.9638672,-1.24414 0.65625,-0.4375 1.5517578,-0.4375 0.4648438,0 0.8681641,0.11621 0.4033203,0.11622 0.7724609,0.36231 z"
+           id="path3158" />
+        <path
+           d="m 12.639716,222.82637 q -0.957031,0 -1.449219,0.74512 -0.492187,0.74511 -0.492187,2.20801 0,1.45605 0.492187,2.208 0.492188,0.74512 1.449219,0.74512 0.963867,0 1.456055,-0.74512 0.492187,-0.75195 0.492187,-2.208 0,-1.4629 -0.492187,-2.20801 -0.492188,-0.74512 -1.456055,-0.74512 z m 0,-1.06641 q 1.592774,0 2.433594,1.03223 0.847656,1.03223 0.847656,2.98731 0,1.96191 -0.84082,2.99414 -0.84082,1.02539 -2.44043,1.02539 -1.592773,0 -2.433594,-1.02539 -0.8408199,-1.03223 -0.8408199,-2.99414 0,-1.95508 0.8408199,-2.98731 0.840821,-1.03223 2.433594,-1.03223 z"
+           id="path3160" />
+        <path
+           d="m 21.078701,222.82637 q -0.957031,0 -1.449219,0.74512 -0.492187,0.74511 -0.492187,2.20801 0,1.45605 0.492187,2.208 0.492188,0.74512 1.449219,0.74512 0.963867,0 1.456055,-0.74512 0.492187,-0.75195 0.492187,-2.208 0,-1.4629 -0.492187,-2.20801 -0.492188,-0.74512 -1.456055,-0.74512 z m 0,-1.06641 q 1.592773,0 2.433594,1.03223 0.847656,1.03223 0.847656,2.98731 0,1.96191 -0.84082,2.99414 -0.840821,1.02539 -2.44043,1.02539 -1.592773,0 -2.433594,-1.02539 -0.84082,-1.03223 -0.84082,-2.99414 0,-1.95508 0.84082,-2.98731 0.840821,-1.03223 2.433594,-1.03223 z"
+           id="path3162" />
+        <path
+           d="m 29.493809,219.77071 v 2.17382 h 2.857422 v 0.97754 h -2.857422 v 4.15625 q 0,0.84766 0.321289,1.18262 0.321289,0.33496 1.121094,0.33496 h 1.415039 v 1.00488 h -1.538086 q -1.415039,0 -1.996094,-0.56738 -0.581055,-0.56738 -0.581055,-1.95508 v -4.15625 h -2.043945 v -0.97754 h 2.043945 v -2.17382 z"
+           id="path3164" />
+        <path
+           d="m 40.83123,225.8752 q 0,-0.88184 -0.4375,-1.4082 -0.4375,-0.53321 -1.168945,-0.53321 -0.731445,0 -1.175781,0.53321 -0.4375,0.52636 -0.4375,1.4082 0,0.88867 0.4375,1.42187 0.444336,0.52637 1.175781,0.52637 0.731445,0 1.168945,-0.52637 0.4375,-0.5332 0.4375,-1.42187 z m 0.957031,2.80273 h -0.984375 v -0.75879 q -0.252929,0.43067 -0.704101,0.66309 -0.444336,0.23242 -1.004883,0.23242 -1.100586,0 -1.825195,-0.82715 -0.717774,-0.82715 -0.717774,-2.1123 0,-1.28516 0.717774,-2.11231 0.724609,-0.82714 1.825195,-0.82714 0.546875,0 1.004883,0.23925 0.458008,0.23926 0.704101,0.65625 v -0.43066 q 0,-1.06641 -0.601562,-1.71582 -0.601563,-0.64942 -1.592774,-0.64942 -1.68164,0 -2.679687,1.3125 -0.991211,1.30567 -0.991211,3.54102 0,2.24902 1.12793,3.58203 1.127929,1.33301 3.089843,1.33985 0.369141,0.0547 1.039063,0.0547 0.669922,0 1.196289,-0.0273 v 0.98437 q -0.444336,0.0342 -1.148437,0.0342 -0.697266,0.007 -1.086915,-0.0547 -2.37207,-0.0205 -3.807617,-1.61329 -1.428711,-1.59277 -1.428711,-4.2998 0,-2.66602 1.285157,-4.24512 1.285156,-1.5791 3.445312,-1.5791 1.428711,0 2.283203,0.90918 0.854492,0.90918 0.854492,2.44043 z"
+           id="path3166" />
+        <path
+           d="m 46.238525,225.07539 q 0.881836,0 1.38086,-0.63574 0.505859,-0.63574 0.505859,-1.75683 0,-1.1211 -0.505859,-1.75684 -0.499024,-0.63574 -1.38086,-0.63574 -0.916015,0 -1.380859,0.6084 -0.464844,0.60156 -0.464844,1.78418 0,1.18945 0.458008,1.79101 0.464844,0.60156 1.387695,0.60156 z m -2.460937,4.31348 v -1.27148 q 0.430664,0.25293 0.916016,0.38964 0.485351,0.12989 1.011718,0.12989 1.3125,0 1.982422,-0.98438 0.676758,-0.99121 0.676758,-2.91211 -0.321289,0.6836 -0.902344,1.05274 -0.581054,0.3623 -1.333008,0.3623 -1.476562,0 -2.290039,-0.90918 -0.80664,-0.90918 -0.80664,-2.57715 0,-1.64746 0.827148,-2.5498 0.833985,-0.90918 2.351563,-0.90918 1.777343,0 2.604492,1.27832 0.827148,1.27832 0.827148,4.01953 0,2.57715 -0.998047,3.9375 -0.991211,1.35352 -2.884765,1.35352 -0.499024,0 -1.004883,-0.10938 -0.505859,-0.10254 -0.977539,-0.30078 z"
+           id="path3168" />
+        <path
+           d="m 55.627708,220.65254 -3.219726,5.39356 h 3.219726 z m -0.225586,-1.25781 h 1.59961 v 6.65137 h 1.360351 v 1.12109 h -1.360351 v 2.43359 h -1.374024 v -2.43359 H 51.30056 v -1.30566 z"
+           id="path3170" />
+        <path
+           d="m 59.729336,224.65157 h 7.246094 v 1.15527 h -7.246094 z"
+           id="path3172" />
+        <path
+           d="m 68.886093,219.39473 h 5.167969 v 1.16211 h -3.910156 v 2.50879 q 0.293945,-0.10938 0.58789,-0.15723 0.300782,-0.0547 0.601563,-0.0547 1.585937,0 2.515625,0.93653 0.929687,0.93652 0.929687,2.53613 0,1.61328 -0.977539,2.54297 -0.970703,0.92969 -2.659179,0.92969 -0.813477,0 -1.490235,-0.10938 -0.669922,-0.10937 -1.203125,-0.32812 v -1.40137 q 0.628906,0.3418 1.264649,0.51269 0.635742,0.16407 1.298828,0.16407 1.141601,0 1.756836,-0.60157 0.62207,-0.60156 0.62207,-1.70898 0,-1.09375 -0.642578,-1.70215 -0.635742,-0.6084 -1.777344,-0.6084 -0.553711,0 -1.080078,0.12989 -0.526367,0.12304 -1.004883,0.37597 z"
+           id="path3174" />
+        <path
+           d="m 76.850029,219.39473 h 6.425781 v 0.58789 l -3.65039,9.61816 h -1.442383 l 3.554687,-9.04394 h -4.887695 z"
+           id="path3176" />
+        <path
+           d="m 85.025879,224.65157 h 7.246094 v 1.15527 h -7.246094 z"
+           id="path3178" />
+        <path
+           d="m 97.566422,225.75215 h -0.416993 q -1.100586,0 -1.661132,0.38965 -0.553711,0.38281 -0.553711,1.14844 0,0.69043 0.416992,1.07324 0.416992,0.38281 1.155273,0.38281 1.039063,0 1.633789,-0.71777 0.594727,-0.72461 0.601563,-1.9961 v -0.28027 z m 2.440428,-0.51953 v 4.36816 h -1.264647 v -1.13476 q -0.403321,0.68359 -1.018555,1.01172 -0.608398,0.32129 -1.483398,0.32129 -1.168946,0 -1.866211,-0.65625 -0.697266,-0.66309 -0.697266,-1.77051 0,-1.27832 0.854492,-1.94141 0.861328,-0.66308 2.522461,-0.66308 h 1.688477 v -0.19825 q -0.0068,-0.91601 -0.464844,-1.32617 -0.458008,-0.41699 -1.462891,-0.41699 -0.642578,0 -1.298828,0.18457 -0.65625,0.18457 -1.27832,0.54004 v -1.25781 q 0.697266,-0.2666 1.333008,-0.39649 0.642578,-0.13672 1.24414,-0.13672 0.950196,0 1.620118,0.28028 0.676757,0.28027 1.09375,0.84082 0.259765,0.34179 0.36914,0.84765 0.109374,0.49903 0.109374,1.50391 z"
+           id="path3180" />
+        <path
+           d="m 102.61141,219.39473 h 5.16797 v 1.16211 h -3.91016 v 2.50879 q 0.29395,-0.10938 0.5879,-0.15723 0.30078,-0.0547 0.60156,-0.0547 1.58594,0 2.51562,0.93653 0.92969,0.93652 0.92969,2.53613 0,1.61328 -0.97754,2.54297 -0.9707,0.92969 -2.65918,0.92969 -0.81348,0 -1.49023,-0.10938 -0.66992,-0.10937 -1.20313,-0.32812 v -1.40137 q 0.62891,0.3418 1.26465,0.51269 0.63574,0.16407 1.29883,0.16407 1.1416,0 1.75683,-0.60157 0.62207,-0.60156 0.62207,-1.70898 0,-1.09375 -0.64257,-1.70215 -0.63575,-0.6084 -1.77735,-0.6084 -0.55371,0 -1.08008,0.12989 -0.52636,0.12304 -1.00488,0.37597 z"
+           id="path3182" />
+        <path
+           d="m 110.33263,224.65157 h 7.24609 v 1.15527 h -7.24609 z"
+           id="path3184" />
+        <path
+           d="m 123.92937,222.92207 v -3.958 h 1.25782 v 10.63671 h -1.25782 v -0.96386 q -0.31445,0.56738 -0.84082,0.86816 -0.51953,0.29395 -1.20312,0.29395 -1.3877,0 -2.1875,-1.07325 -0.79297,-1.08007 -0.79297,-2.97363 0,-1.86621 0.79981,-2.92578 0.7998,-1.06641 2.18066,-1.06641 0.69043,0 1.2168,0.30079 0.52636,0.29394 0.82714,0.86132 z m -3.69824,2.85743 q 0,1.46289 0.46485,2.208 0.46484,0.74512 1.37402,0.74512 0.90918,0 1.38086,-0.75195 0.47851,-0.75196 0.47851,-2.20117 0,-1.45606 -0.47851,-2.20118 -0.47168,-0.75195 -1.38086,-0.75195 -0.90918,0 -1.37402,0.74512 -0.46485,0.74511 -0.46485,2.20801 z"
+           id="path3186" />
+        <path
+           d="m 131.80782,224.13887 q 1.00488,0.2666 1.53808,0.9502 0.5332,0.67675 0.5332,1.69531 0,1.4082 -0.95019,2.21484 -0.94336,0.79981 -2.61816,0.79981 -0.70411,0 -1.43555,-0.12989 -0.73145,-0.12988 -1.43555,-0.37597 v -1.37403 q 0.69727,0.36231 1.37402,0.54004 0.67676,0.17774 1.34668,0.17774 1.13477,0 1.74317,-0.5127 0.6084,-0.51269 0.6084,-1.47656 0,-0.88867 -0.6084,-1.4082 -0.6084,-0.52637 -1.64746,-0.52637 h -1.05274 v -1.13477 h 1.05274 q 0.95019,0 1.4834,-0.41699 0.5332,-0.41699 0.5332,-1.16211 0,-0.78613 -0.49902,-1.20312 -0.49219,-0.42383 -1.40821,-0.42383 -0.6084,0 -1.25781,0.13672 -0.64941,0.13672 -1.36035,0.41015 v -1.27148 q 0.82715,-0.21875 1.46973,-0.32813 0.64941,-0.10937 1.14843,-0.10937 1.49024,0 2.37891,0.75195 0.89551,0.74512 0.89551,1.98242 0,0.84082 -0.47168,1.40137 -0.46485,0.56055 -1.36035,0.79297 z"
+           id="path3188" />
+        <path
+           d="m 135.62917,224.65157 h 7.24609 v 1.15527 h -7.24609 z"
+           id="path3190" />
+        <path
+           d="m 149.23613,222.92207 v -3.958 h 1.25781 v 10.63671 h -1.25781 v -0.96386 q -0.31445,0.56738 -0.84082,0.86816 -0.51953,0.29395 -1.20313,0.29395 -1.38769,0 -2.1875,-1.07325 -0.79296,-1.08007 -0.79296,-2.97363 0,-1.86621 0.7998,-2.92578 0.79981,-1.06641 2.18066,-1.06641 0.69043,0 1.2168,0.30079 0.52637,0.29394 0.82715,0.86132 z m -3.69824,2.85743 q 0,1.46289 0.46484,2.208 0.46485,0.74512 1.37402,0.74512 0.90918,0 1.38086,-0.75195 0.47852,-0.75196 0.47852,-2.20117 0,-1.45606 -0.47852,-2.20118 -0.47168,-0.75195 -1.38086,-0.75195 -0.90917,0 -1.37402,0.74512 -0.46484,0.74511 -0.46484,2.20801 z"
+           id="path3192" />
+        <path
+           d="m 155.87389,225.07539 q 0.88183,0 1.38086,-0.63574 0.50585,-0.63574 0.50585,-1.75683 0,-1.1211 -0.50585,-1.75684 -0.49903,-0.63574 -1.38086,-0.63574 -0.91602,0 -1.38086,0.6084 -0.46485,0.60156 -0.46485,1.78418 0,1.18945 0.45801,1.79101 0.46484,0.60156 1.3877,0.60156 z m -2.46094,4.31348 v -1.27148 q 0.43066,0.25293 0.91601,0.38964 0.48536,0.12989 1.01172,0.12989 1.3125,0 1.98242,-0.98438 0.67676,-0.99121 0.67676,-2.91211 -0.32129,0.6836 -0.90234,1.05274 -0.58106,0.3623 -1.33301,0.3623 -1.47656,0 -2.29004,-0.90918 -0.80664,-0.90918 -0.80664,-2.57715 0,-1.64746 0.82715,-2.5498 0.83398,-0.90918 2.35156,-0.90918 1.77735,0 2.60449,1.27832 0.82715,1.27832 0.82715,4.01953 0,2.57715 -0.99804,3.9375 -0.99121,1.35352 -2.88477,1.35352 -0.49902,0 -1.00488,-0.10938 -0.50586,-0.10254 -0.97754,-0.30078 z"
+           id="path3194" />
+        <path
+           d="m 160.92572,224.65157 h 7.24609 v 1.15527 h -7.24609 z"
+           id="path3196" />
+        <path
+           d="m 174.53265,222.92207 v -3.958 h 1.25782 v 10.63671 h -1.25782 v -0.96386 q -0.31445,0.56738 -0.84082,0.86816 -0.51953,0.29395 -1.20312,0.29395 -1.3877,0 -2.1875,-1.07325 -0.79297,-1.08007 -0.79297,-2.97363 0,-1.86621 0.7998,-2.92578 0.79981,-1.06641 2.18067,-1.06641 0.69043,0 1.2168,0.30079 0.52636,0.29394 0.82714,0.86132 z m -3.69824,2.85743 q 0,1.46289 0.46485,2.208 0.46484,0.74512 1.37402,0.74512 0.90918,0 1.38086,-0.75195 0.47851,-0.75196 0.47851,-2.20117 0,-1.45606 -0.47851,-2.20118 -0.47168,-0.75195 -1.38086,-0.75195 -0.90918,0 -1.37402,0.74512 -0.46485,0.74511 -0.46485,2.20801 z"
+           id="path3198" />
+        <path
+           d="m 184.75246,225.14375 v 0.61524 h -5.44825 v 0.041 q -0.0547,1.56543 0.59473,2.24903 0.65625,0.68359 1.8457,0.68359 0.60157,0 1.25782,-0.19141 0.65625,-0.1914 1.40136,-0.58105 v 1.25098 q -0.71777,0.29394 -1.38769,0.4375 -0.66309,0.15039 -1.28516,0.15039 -1.78418,0 -2.78906,-1.06641 -1.00488,-1.07324 -1.00488,-2.95312 0,-1.83204 0.98437,-2.92579 0.98438,-1.09375 2.625,-1.09375 1.46289,0 2.30371,0.99121 0.84766,0.99122 0.90235,2.39258 z m -1.25782,-0.36914 q -0.082,-0.79297 -0.58105,-1.36719 -0.49219,-0.58105 -1.42188,-0.58105 -0.90918,0 -1.49707,0.60156 -0.58789,0.60157 -0.64257,1.35352 z"
+           id="path3200" />
+        <path
+           d="m 188.4678,221.95137 h 2.13282 v 2.46777 h -2.13282 z m 0,5.16113 h 2.13282 v 2.48828 h -2.13282 z"
+           id="path3202" />
+        <path
+           d="m 200.04111,219.39473 h 1.29883 l -5.37305,11.50488 h -1.30567 z"
+           id="path3204" />
+        <path
+           d="m 207.07874,219.58614 -0.61524,2.41992 h 1.67481 l 0.62207,-2.41992 h 1.09375 l -0.62207,2.41992 h 1.66796 v 1.0459 h -1.92089 l -0.66993,2.68652 h 1.70899 v 1.0459 h -1.97559 l -0.71093,2.8164 h -1.09375 l 0.71777,-2.8164 h -1.68164 l -0.71778,2.8164 h -1.08691 l 0.71094,-2.8164 h -1.76367 v -1.0459 h 2.03027 l 0.66992,-2.68652 h -1.81836 v -1.0459 h 2.07129 l 0.61524,-2.41992 z m 0.80664,3.46582 h -1.67481 l -0.66992,2.68652 h 1.68164 z"
+           id="path3206" />
+      </g>
+      <g
+         transform="translate(-50,-50)"
+         id="g974">
+        <svg
+           x="510.21667"
+           y="303.79999"
+           width="100"
+           height="100"
+           version="1.1"
+           id="svg972" />
+      </g>
+    </svg>
+  </g>
+</svg>
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot10.svg b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot10.svg
new file mode 100644
index 0000000000..086a8a321d
--- /dev/null
+++ b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot10.svg
@@ -0,0 +1,3149 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<svg
+   width="1190.004"
+   height="562.32739"
+   version="1.1"
+   id="svg171"
+   sodipodi:docname="screenshot10.svg"
+   inkscape:version="1.1.1 (c3084ef, 2021-09-22)"
+   xmlns:inkscape="http://www.inkscape.org/namespaces/inkscape"
+   xmlns:sodipodi="http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd"
+   xmlns="http://www.w3.org/2000/svg"
+   xmlns:svg="http://www.w3.org/2000/svg">
+  <defs
+     id="defs175">
+    <clipPath
+       clipPathUnits="userSpaceOnUse"
+       id="clipPath459">
+      <rect
+         style="fill:#ff0000"
+         id="rect461"
+         width="1404.5577"
+         height="579.97894"
+         x="-47.911304"
+         y="-17.651533" />
+    </clipPath>
+  </defs>
+  <sodipodi:namedview
+     id="namedview173"
+     pagecolor="#ffffff"
+     bordercolor="#666666"
+     borderopacity="1.0"
+     inkscape:pageshadow="2"
+     inkscape:pageopacity="0.0"
+     inkscape:pagecheckerboard="0"
+     showgrid="false"
+     inkscape:zoom="0.28258172"
+     inkscape:cx="780.30524"
+     inkscape:cy="-56.620789"
+     inkscape:window-width="1416"
+     inkscape:window-height="814"
+     inkscape:window-x="12"
+     inkscape:window-y="25"
+     inkscape:window-maximized="0"
+     inkscape:current-layer="g167" />
+  <g
+     id="g263"
+     clip-path="url(#clipPath459)"
+     transform="translate(0.004)">
+    <rect
+       width="1190"
+       height="651.29999"
+       rx="0"
+       ry="0"
+       class="a"
+       id="rect2"
+       x="0"
+       y="0" />
+    <svg
+       height="651.29999"
+       viewBox="0 0 119 65.13"
+       width="1190"
+       version="1.1"
+       id="svg169">
+      <style
+         id="style4">.a{fill:#282d35}.c{fill:#b9c0cb;white-space:pre}</style>
+      <g
+         font-family="Monaco, Consolas, Menlo, 'Bitstream Vera Sans Mono', 'Powerline Symbols', monospace"
+         font-size="1.67px"
+         id="g167">
+        <defs
+           id="defs15">
+          <symbol
+             id="1">
+            <text
+               y="1.67"
+               class="c"
+               id="text6">h</text>
+          </symbol>
+          <symbol
+             id="a">
+            <path
+               fill="transparent"
+               d="M 0,0 H 119 V 30 H 0 Z"
+               id="path9" />
+          </symbol>
+          <symbol
+             id="b">
+            <path
+               fill="#6f7683"
+               d="M 0,0 H 1.102 V 2.171 H 0 Z"
+               id="path12" />
+          </symbol>
+        </defs>
+        <path
+           class="a"
+           d="M 0,0 H 119 V 65.13 H 0 Z"
+           id="path17"
+           style="fill:#000000" />
+        <svg
+           width="119"
+           version="1.1"
+           id="svg165"
+           height="100%">
+          <svg
+             version="1.1"
+             id="svg163"
+             width="100%"
+             height="100%">
+            <g
+               id="use19">
+              <path
+                 fill="transparent"
+                 d="M 0,0 H 119 V 30 H 0 Z"
+                 id="path5729" />
+            </g>
+            <g
+               id="use21"
+               transform="translate(-0.004,54.25)">
+              <path
+                 fill="#6f7683"
+                 d="M 0,0 H 1.102 V 2.171 H 0 Z"
+                 id="path5733" />
+            </g>
+            <g
+               aria-label="Attempting"
+               id="text23"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.18510253,1.67 H 0.02690918 L 0.41668456,0.40445311 H 0.58384764 L 0.97606931,1.67 H 0.80238279 L 0.71594725,1.3919384 H 0.27072265 Z M 0.30986327,1.2655468 H 0.67925291 L 0.52676756,0.78525877 0.49088866,0.65805174 0.4590869,0.78525877 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5745" />
+              <path
+                 d="m 1.8893506,1.6333056 q -0.1068213,0.044849 -0.1549317,0.053003 -0.04811,0.00897 -0.092959,0.00897 -0.095405,0 -0.1745019,-0.036694 Q 1.3878613,1.6218896 1.3470898,1.5501318 1.3071338,1.478374 1.3071338,1.3283349 V 0.96139158 H 1.0796289 V 0.83499998 H 1.3071338 V 0.46805663 h 0.1516699 v 0.36694335 h 0.4052685 v 0.1263916 H 1.4588037 V 1.3258886 q 0,0.110083 0.026094,0.1557471 0.026094,0.044849 0.069311,0.06605 0.044033,0.021201 0.1035595,0.021201 0.110083,0 0.2315821,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5747" />
+              <path
+                 d="m 2.8906982,1.6333056 q -0.1068213,0.044849 -0.1549316,0.053003 -0.04811,0.00897 -0.092959,0.00897 -0.095405,0 -0.1745019,-0.036694 Q 2.389209,1.6218896 2.3484375,1.5501318 2.3084814,1.478374 2.3084814,1.3283349 V 0.96139158 H 2.0809766 V 0.83499998 H 2.3084814 V 0.46805663 h 0.15167 v 0.36694335 h 0.4052685 v 0.1263916 H 2.4601514 V 1.3258886 q 0,0.110083 0.026094,0.1557471 0.026094,0.044849 0.069311,0.06605 0.044033,0.021201 0.1035596,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5749" />
+              <path
+                 d="m 3.8879689,1.6096582 q -0.1818409,0.086436 -0.3441114,0.086436 -0.1231298,0 -0.220166,-0.061157 -0.097036,-0.061157 -0.155747,-0.174502 -0.057895,-0.1141601 -0.057895,-0.2438134 0,-0.1247608 0.055449,-0.23973636 0.055449,-0.11497558 0.1549316,-0.1785791 0.099482,-0.0644189 0.2217969,-0.0644189 0.1622705,0 0.260122,0.11579101 0.098667,0.11579102 0.098667,0.35715819 v 0.032617 H 3.2731349 q 0,0.09459 0.039141,0.1728711 0.039956,0.078281 0.104375,0.1174219 0.064419,0.039141 0.1467774,0.039141 0.1467773,0 0.324541,-0.097852 z M 3.2821046,1.1261084 h 0.4541943 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.0660498 -0.145962,-0.0660498 -0.092144,0 -0.1598242,0.0676807 -0.066865,0.0668652 -0.093774,0.19814944 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5751" />
+              <path
+                 d="M 4.0632862,1.67 V 0.75916502 h 0.132915 v 0.20874999 q 0.062788,-0.13291503 0.1166064,-0.18347167 0.054634,-0.0505566 0.110083,-0.0505566 0.06605,0 0.1060059,0.0521875 0.040771,0.0513721 0.040771,0.14677734 v 0.0489258 q 0.026909,-0.0831738 0.064419,-0.1345459 0.038325,-0.0521875 0.079097,-0.0823584 0.040771,-0.0309863 0.093774,-0.0309863 0.058711,0 0.1002979,0.0497412 0.041587,0.0497412 0.041587,0.19814941 V 1.67 H 4.8159277 V 1.0478271 q 0,-0.0766504 -0.00489,-0.10437498 -0.00489,-0.02854 -0.01957,-0.0432178 -0.014678,-0.0146777 -0.031802,-0.0146777 -0.042402,0 -0.091328,0.0652344 Q 4.6202246,1.0152099 4.569668,1.165249 V 1.67 H 4.4424609 V 1.0486426 q 0,-0.12068364 -0.023647,-0.14188481 -0.023648,-0.0212012 -0.042402,-0.0212012 -0.041587,0 -0.089697,0.0725732 Q 4.239419,1.0307031 4.1962012,1.1440478 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5753" />
+              <path
+                 d="m 5.2733837,0.96383787 q 0.070127,-0.11416016 0.1671631,-0.17205566 0.097036,-0.0578955 0.1785791,-0.0578955 0.1141601,0 0.2054882,0.098667 0.091328,0.098667 0.091328,0.29926271 0,0.1581933 -0.061157,0.2829541 -0.060342,0.1239453 -0.161455,0.1965185 -0.1011133,0.071758 -0.2503369,0.071758 -0.042402,0 -0.1304688,-0.00897 Q 5.2994774,1.6724462 5.2733837,1.67 V 2.0238964 H 5.1217138 V 0.75916502 h 0.1516699 z m 0,0.18020993 v 0.3905908 q 0.082358,0.021201 0.1516699,0.021201 0.1378076,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.051372,-0.20467283 -0.051372,-0.0684961 -0.1166064,-0.0684961 -0.070942,0 -0.1565625,0.0717578 -0.084805,0.0717578 -0.1533008,0.19325681 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5755" />
+              <path
+                 d="m 6.8960891,1.6333056 q -0.1068213,0.044849 -0.1549316,0.053003 -0.04811,0.00897 -0.092959,0.00897 -0.095405,0 -0.174502,-0.036694 Q 6.3945999,1.6218896 6.3538284,1.5501318 6.3138723,1.478374 6.3138723,1.3283349 V 0.96139158 H 6.0863675 V 0.83499998 H 6.3138723 V 0.46805663 h 0.1516699 v 0.36694335 h 0.4052686 v 0.1263916 H 6.4655422 V 1.3258886 q 0,0.110083 0.026094,0.1557471 0.026094,0.044849 0.069312,0.06605 0.044033,0.021201 0.1035596,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5757" />
+              <path
+                 d="M 7.3910548,1.67 V 0.88555662 H 7.1382716 V 0.75916502 H 7.5427247 V 1.5436084 H 7.7963234 V 1.67 Z M 7.3657765,0.43054686 q 0,-0.0513721 0.035063,-0.0766504 0.035064,-0.0252783 0.06605,-0.0252783 0.031802,0 0.066865,0.0252783 0.035063,0.0252783 0.035063,0.0766504 0,0.0505566 -0.035063,0.075835 -0.035064,0.0252783 -0.066865,0.0252783 -0.030986,0 -0.06605,-0.0252783 -0.035063,-0.0252783 -0.035063,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5759" />
+              <path
+                 d="M 8.1371729,1.67 V 0.75916502 h 0.1516699 v 0.19896484 q 0.065234,-0.10519043 0.1573779,-0.16471679 0.092144,-0.0595264 0.1842871,-0.0595264 0.080728,0 0.1467774,0.0432178 0.06605,0.0424023 0.092144,0.11171387 0.026909,0.0693115 0.026909,0.27235346 V 1.67 H 8.744668 V 1.142417 q 0,-0.1312842 -0.013047,-0.17287113 -0.012231,-0.0424023 -0.04648,-0.0693115 -0.033433,-0.0269092 -0.073389,-0.0269092 -0.079912,0 -0.1720557,0.075835 -0.091328,0.075835 -0.1508545,0.18999507 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5761" />
+              <path
+                 d="m 9.746831,1.4653271 q -0.069312,0.1141602 -0.1671631,0.1720557 -0.097036,0.057896 -0.1785791,0.057896 -0.1141602,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581934 0.060342,-0.2821387 0.060342,-0.1247607 0.1614551,-0.19651851 0.1011133,-0.0725733 0.2503369,-0.0725733 0.043218,0 0.1304687,0.00897 0.013047,0.001631 0.039141,0.004077 H 9.8993163 V 1.4033545 q 0,0.2299511 -0.00652,0.2805078 -0.00571,0.051372 -0.01957,0.1035595 -0.032617,0.121499 -0.1492237,0.191626 -0.115791,0.070127 -0.2805078,0.070127 -0.1655322,0 -0.3351416,-0.084805 V 1.8110693 q 0.064419,0.044033 0.1581934,0.077466 0.09459,0.034248 0.1826562,0.034248 0.069312,0 0.1312842,-0.022017 Q 9.642456,1.87875 9.6807812,1.837163 9.7191064,1.7955761 9.7329687,1.7401269 9.746831,1.6854931 9.746831,1.594165 Z m 0,-0.1802099 V 0.89452634 q -0.080728,-0.0212012 -0.1500391,-0.0212012 -0.1402539,0 -0.2340283,0.10845215 -0.092959,0.10845218 -0.092959,0.29518558 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166065,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5763" />
+            </g>
+            <g
+               aria-label="Boot"
+               id="text25"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 11.162254,1.67 V 0.40445311 h 0.247075 q 0.222613,0 0.297632,0.034248 0.07583,0.0334326 0.113345,0.0994824 0.03751,0.0660498 0.03751,0.15085449 0,0.0668652 -0.02202,0.12720703 -0.02202,0.0595264 -0.06523,0.10926757 -0.04322,0.0489258 -0.125576,0.092959 0.150854,0.060342 0.203857,0.1484082 0.05382,0.088066 0.05382,0.1761328 0,0.083989 -0.04566,0.1630859 -0.04485,0.079097 -0.126391,0.121499 Q 11.649066,1.67 11.469671,1.67 Z m 0.164717,-0.69556155 h 0.172871 q 0.08399,-0.0350635 0.122315,-0.0733887 0.03914,-0.0391406 0.0579,-0.0864355 0.01957,-0.0481104 0.01957,-0.10519043 0,-0.0896973 -0.053,-0.13373047 -0.05219,-0.0440332 -0.204672,-0.0440332 h -0.114976 z m 0,0.56916995 h 0.155747 q 0.130469,0 0.192441,-0.061157 0.06279,-0.061973 0.06279,-0.1484082 0,-0.063603 -0.03425,-0.1166064 -0.03425,-0.053818 -0.106006,-0.084805 Q 11.525936,1.10083 11.372635,1.10083 h -0.04566 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5766" />
+              <path
+                 d="m 12.524837,1.6952783 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369922 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.34411135 0.117422,-0.13617675 0.313125,-0.13617675 0.194888,0 0.31231,0.13617675 0.117422,0.13617675 0.117422,0.34411135 0,0.2079345 -0.117422,0.3449267 -0.117422,0.1361768 -0.31231,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.1647168 -0.07176,-0.25930666 -0.07176,-0.0945898 -0.193257,-0.0945898 -0.122314,0 -0.194072,0.0945898 -0.07176,0.0945899 -0.07176,0.25930666 0,0.1655322 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5768" />
+              <path
+                 d="m 13.526185,1.6952783 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369922 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.34411135 0.117422,-0.13617675 0.313125,-0.13617675 0.194888,0 0.312309,0.13617675 0.117422,0.13617675 0.117422,0.34411135 0,0.2079345 -0.117422,0.3449267 -0.117421,0.1361768 -0.312309,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.1647168 -0.07176,-0.25930666 -0.07176,-0.0945898 -0.193257,-0.0945898 -0.122315,0 -0.194072,0.0945898 -0.07176,0.0945899 -0.07176,0.25930666 0,0.1655322 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5770" />
+              <path
+                 d="m 14.914046,1.6333056 q -0.106821,0.044849 -0.154931,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084521 Q 14.33183,1.478374 14.33183,1.3283349 V 0.96139158 H 14.104325 V 0.83499998 H 14.33183 V 0.46805663 h 0.151669 v 0.36694335 h 0.405269 v 0.1263916 H 14.483499 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5772" />
+            </g>
+            <g
+               aria-label="From"
+               id="text27"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 16.217102,1.67 V 0.40445311 h 0.695562 v 0.12720703 h -0.530845 v 0.42973144 h 0.480288 V 1.0877832 H 16.381819 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5775" />
+              <path
+                 d="M 17.237205,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.07094,-0.1125293 0.16227,-0.16797851 0.09214,-0.0562647 0.204673,-0.0562647 0.08236,0 0.164717,0.0252783 V 1.0877832 H 17.774573 V 0.87984861 q -0.03833,-0.006523 -0.06034,-0.006523 -0.08481,0 -0.166348,0.0668652 -0.08154,0.0668652 -0.159008,0.20059569 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5777" />
+              <path
+                 d="m 18.536184,1.6952783 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369922 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.34411135 0.117422,-0.13617675 0.313125,-0.13617675 0.194888,0 0.31231,0.13617675 0.117422,0.13617675 0.117422,0.34411135 0,0.2079345 -0.117422,0.3449267 -0.117422,0.1361768 -0.31231,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.1647168 -0.07176,-0.25930666 -0.07176,-0.0945898 -0.193257,-0.0945898 -0.122314,0 -0.194072,0.0945898 -0.07176,0.0945899 -0.07176,0.25930666 0,0.1655322 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5779" />
+              <path
+                 d="M 19.093938,1.67 V 0.75916502 h 0.132915 v 0.20874999 q 0.06279,-0.13291503 0.116607,-0.18347167 0.05463,-0.0505566 0.110083,-0.0505566 0.06605,0 0.106006,0.0521875 0.04077,0.0513721 0.04077,0.14677734 v 0.0489258 q 0.02691,-0.0831738 0.06442,-0.1345459 0.03833,-0.0521875 0.0791,-0.0823584 0.04077,-0.0309863 0.09377,-0.0309863 0.05871,0 0.100298,0.0497412 0.04159,0.0497412 0.04159,0.19814941 V 1.67 H 19.84658 V 1.0478271 q 0,-0.0766504 -0.0049,-0.10437498 -0.0049,-0.02854 -0.01957,-0.0432178 -0.01468,-0.0146777 -0.0318,-0.0146777 -0.0424,0 -0.09133,0.0652344 -0.04811,0.0644189 -0.09867,0.21445801 V 1.67 H 19.473113 V 1.0486426 q 0,-0.12068364 -0.02365,-0.14188481 -0.02365,-0.0212012 -0.0424,-0.0212012 -0.04159,0 -0.0897,0.0725732 -0.04729,0.0725732 -0.09051,0.18591794 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5781" />
+            </g>
+            <g
+               aria-label="NIC"
+               id="text29"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 21.296414,1.67 h -0.15167 V 0.40445311 h 0.148408 l 0.447671,0.84233889 0.04893,0.1255761 h 0.0041 L 21.789749,1.246792 V 0.40445311 h 0.15167 V 1.67 h -0.15167 l -0.43544,-0.82847658 -0.06116,-0.13291504 0.0033,0.13128418 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5784" />
+              <path
+                 d="M 22.183601,1.67 V 1.5436084 h 0.278062 V 0.53166014 H 22.183601 V 0.40445311 h 0.72084 V 0.53166014 H 22.62638 V 1.5436084 h 0.278061 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5786" />
+              <path
+                 d="m 23.931883,1.6553222 q -0.141885,0.053003 -0.254414,0.053003 -0.148409,0 -0.273169,-0.079097 -0.124761,-0.079912 -0.194073,-0.2364746 -0.06931,-0.157378 -0.06931,-0.3555274 0,-0.19651851 0.0685,-0.35308101 0.0685,-0.1565625 0.193257,-0.23729003 0.124761,-0.0807275 0.2748,-0.0807275 0.112529,0 0.254414,0.0530029 v 0.15003906 q -0.131285,-0.075835 -0.260938,-0.075835 -0.09785,0 -0.179394,0.0668652 -0.08073,0.0668652 -0.130469,0.19651855 -0.04974,0.12883789 -0.04974,0.28050777 0,0.1541162 0.05137,0.284585 0.05137,0.1304687 0.131284,0.1957031 0.07991,0.064419 0.176948,0.064419 0.128838,0 0.260938,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5788" />
+            </g>
+            <g
+               aria-label="FlexBoot"
+               id="text31"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.18510253,3.8410001 V 2.5754532 H 0.88066404 V 2.7026603 H 0.34981933 V 3.1323917 H 0.8301074 V 3.2587833 H 0.34981933 v 0.5822168 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5791" />
+              <path
+                 d="M 1.3723682,3.8410001 V 2.6521036 H 1.1000147 V 2.5248966 H 1.5240381 V 3.7146085 H 1.808623 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5793" />
+              <path
+                 d="m 2.8866211,3.7806583 q -0.1818408,0.086436 -0.3441113,0.086436 -0.1231299,0 -0.220166,-0.061157 -0.097036,-0.061157 -0.1557471,-0.1745019 -0.057895,-0.1141602 -0.057895,-0.2438135 0,-0.1247608 0.055449,-0.2397363 0.055449,-0.1149756 0.1549316,-0.1785791 0.099483,-0.064419 0.2217969,-0.064419 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.3571582 v 0.032617 H 2.2717871 q 0,0.09459 0.039141,0.1728711 0.039956,0.078281 0.104375,0.1174219 0.064419,0.039141 0.1467774,0.039141 0.1467773,0 0.324541,-0.097852 z M 2.2807568,3.2971085 h 0.4541944 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598243,0.067681 -0.066865,0.066865 -0.093774,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5795" />
+              <path
+                 d="M 3.2250245,3.8410001 H 3.0497072 L 3.4076808,3.3639737 3.0733546,2.9301651 h 0.1940723 l 0.23729,0.3057862 0.2307666,-0.3057862 H 3.9075392 L 3.5911525,3.349296 3.9670655,3.8410001 H 3.7721778 L 3.4949318,3.4781339 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5797" />
+              <path
+                 d="M 4.1456445,3.8410001 V 2.5754532 h 0.2470752 q 0.2226123,0 0.2976319,0.034248 0.075835,0.033433 0.1133447,0.099482 0.03751,0.06605 0.03751,0.1508545 0,0.066865 -0.022017,0.127207 -0.022017,0.059526 -0.065234,0.1092676 -0.043218,0.048926 -0.1255762,0.092959 0.1508545,0.060342 0.2038574,0.1484082 0.053818,0.088066 0.053818,0.1761328 0,0.083989 -0.045664,0.1630859 -0.044849,0.079097 -0.1263916,0.121499 -0.081543,0.042402 -0.2609375,0.042402 z M 4.3103613,3.1454386 h 0.1728711 q 0.083989,-0.035063 0.1223145,-0.073389 0.039141,-0.039141 0.057895,-0.086436 0.01957,-0.04811 0.01957,-0.1051905 0,-0.089697 -0.053003,-0.1337304 -0.052187,-0.044033 -0.2046729,-0.044033 H 4.3103613 Z m 0,0.5691699 h 0.1557471 q 0.1304688,0 0.1924414,-0.061157 0.062788,-0.061973 0.062788,-0.1484082 0,-0.063604 -0.034248,-0.1166065 Q 4.6528418,3.3346183 4.581084,3.3036319 4.5093262,3.2718302 4.3560254,3.2718302 h -0.045664 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5799" />
+              <path
+                 d="m 5.5082274,3.8662784 q -0.1957031,0 -0.313125,-0.1361768 -0.1174218,-0.1369921 -0.1174218,-0.3449267 0,-0.2079346 0.1174218,-0.3441113 0.1174219,-0.1361768 0.313125,-0.1361768 0.1948877,0 0.3123096,0.1361768 0.1174219,0.1361767 0.1174219,0.3441113 0,0.2079346 -0.1174219,0.3449267 -0.1174219,0.1361768 -0.3123096,0.1361768 z m 0,-0.1263916 q 0.1214991,0 0.1932569,-0.09459 0.071758,-0.09459 0.071758,-0.2601221 0,-0.1647168 -0.071758,-0.2593066 -0.071758,-0.09459 -0.1932569,-0.09459 -0.1223144,0 -0.1940722,0.09459 -0.071758,0.09459 -0.071758,0.2593066 0,0.1655322 0.071758,0.2601221 0.071758,0.09459 0.1940722,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5801" />
+              <path
+                 d="m 6.5095754,3.8662784 q -0.1957031,0 -0.3131249,-0.1361768 -0.1174219,-0.1369921 -0.1174219,-0.3449267 0,-0.2079346 0.1174219,-0.3441113 0.1174218,-0.1361768 0.3131249,-0.1361768 0.1948877,0 0.3123096,0.1361768 0.1174219,0.1361767 0.1174219,0.3441113 0,0.2079346 -0.1174219,0.3449267 -0.1174219,0.1361768 -0.3123096,0.1361768 z m 0,-0.1263916 q 0.1214991,0 0.1932569,-0.09459 0.071758,-0.09459 0.071758,-0.2601221 0,-0.1647168 -0.071758,-0.2593066 -0.071758,-0.09459 -0.1932569,-0.09459 -0.1223144,0 -0.1940722,0.09459 -0.071758,0.09459 -0.071758,0.2593066 0,0.1655322 0.071758,0.2601221 0.071758,0.09459 0.1940722,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5803" />
+              <path
+                 d="m 7.8974367,3.8043057 q -0.1068213,0.044849 -0.1549317,0.053003 -0.04811,0.00897 -0.092959,0.00897 -0.095405,0 -0.1745019,-0.036694 Q 7.3959474,3.7928897 7.3551759,3.7211319 7.3152199,3.6493741 7.3152199,3.499335 V 3.1323917 H 7.087715 V 3.0060001 H 7.3152199 V 2.6390568 H 7.4668898 V 3.0060001 H 7.8721583 V 3.1323917 H 7.4668898 v 0.3644971 q 0,0.110083 0.026094,0.155747 0.026094,0.044849 0.069312,0.06605 0.044033,0.021201 0.1035595,0.021201 0.110083,0 0.2315821,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5805" />
+            </g>
+            <g
+               aria-label="v3.4.753"
+               id="text33"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 9.4403922,3.8410001 9.0449088,2.9301651 H 9.2112565 L 9.523566,3.651005 9.842399,2.9301651 h 0.15167 l -0.3987451,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5808" />
+              <path
+                 d="M 10.137585,3.818168 V 3.6583438 q 0.186733,0.09459 0.323725,0.09459 0.125576,0 0.207119,-0.075835 0.08236,-0.07665 0.08236,-0.1965185 0,-0.1206836 -0.09051,-0.1965186 -0.0897,-0.075835 -0.305786,-0.075835 H 10.2705 V 3.0818351 h 0.116606 q 0.159009,0 0.229951,-0.070942 0.07094,-0.071758 0.07094,-0.1590088 0,-0.079097 -0.0579,-0.132915 -0.05789,-0.054634 -0.177764,-0.054634 -0.134545,0 -0.289477,0.075835 V 2.595839 q 0.154932,-0.057895 0.283769,-0.057895 0.230767,0 0.318018,0.091328 0.08807,0.090513 0.08807,0.2071191 0,0.086436 -0.04648,0.1622705 -0.04648,0.075835 -0.17124,0.1353614 0.110083,0.032617 0.166347,0.079912 0.05626,0.047295 0.0848,0.1117138 0.02936,0.064419 0.02936,0.1443311 0,0.1777636 -0.1321,0.2935547 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.00897 -0.07094,-0.00897 -0.173686,-0.052188 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5810" />
+              <path
+                 d="m 11.521369,3.8793253 q -0.05463,0 -0.09378,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09378,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09377,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5812" />
+              <path
+                 d="M 12.598552,3.8410001 V 3.4871036 h -0.537369 v -0.127207 l 0.537369,-0.7844434 h 0.152485 v 0.7844434 h 0.234028 v 0.127207 h -0.234028 v 0.3538965 z m 0,-0.4811035 V 2.8054044 l -0.375914,0.5544922 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5814" />
+              <path
+                 d="m 13.524064,3.8793253 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09378,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5816" />
+              <path
+                 d="M 14.28486,3.8410001 V 3.7276554 q 0,-0.1329151 0.03017,-0.2234278 0.03017,-0.090513 0.106006,-0.2014111 0.07583,-0.1108984 0.121499,-0.1712402 l 0.132099,-0.174502 0.0473,-0.061157 q 0.05382,-0.072573 0.09296,-0.1679785 H 14.158468 V 2.5754532 h 0.803199 v 0.1011133 q 0,0.060342 -0.02446,0.1117139 -0.02365,0.051372 -0.145147,0.2193506 -0.02935,0.039956 -0.0579,0.079912 l -0.0848,0.1190527 q -0.08154,0.1149756 -0.120684,0.1834717 -0.03914,0.068496 -0.05953,0.1427002 -0.01957,0.074204 -0.01957,0.1948877 v 0.1133447 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5818" />
+              <path
+                 d="M 15.179387,3.1829483 V 2.5754532 h 0.708608 v 0.1459619 h -0.556938 v 0.3098633 h 0.02609 q 0.273169,0 0.420762,0.1141602 0.147593,0.1141601 0.147593,0.307417 0,0.1223144 -0.05953,0.2193505 -0.05953,0.097036 -0.167978,0.1524854 -0.108452,0.054634 -0.230767,0.054634 -0.122314,0 -0.313125,-0.059526 V 3.6542667 q 0.06931,0.03751 0.154932,0.061973 0.08562,0.023648 0.158193,0.023648 0.07257,0 0.141885,-0.035063 0.06931,-0.035063 0.107637,-0.1019287 0.03833,-0.067681 0.03833,-0.1378076 0,-0.1182373 -0.10519,-0.1997803 -0.104375,-0.082358 -0.371836,-0.082358 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5820" />
+              <path
+                 d="M 16.145671,3.818168 V 3.6583438 q 0.186733,0.09459 0.323725,0.09459 0.125576,0 0.207119,-0.075835 0.08236,-0.07665 0.08236,-0.1965185 0,-0.1206836 -0.09051,-0.1965186 -0.0897,-0.075835 -0.305786,-0.075835 h -0.08399 V 3.0818351 h 0.116606 q 0.159009,0 0.229951,-0.070942 0.07094,-0.071758 0.07094,-0.1590088 0,-0.079097 -0.0579,-0.132915 -0.0579,-0.054634 -0.177763,-0.054634 -0.134546,0 -0.289478,0.075835 V 2.595839 q 0.154932,-0.057895 0.28377,-0.057895 0.230766,0 0.318017,0.091328 0.08807,0.090513 0.08807,0.2071191 0,0.086436 -0.04648,0.1622705 -0.04648,0.075835 -0.17124,0.1353614 0.110083,0.032617 0.166347,0.079912 0.05626,0.047295 0.0848,0.1117138 0.02936,0.064419 0.02936,0.1443311 0,0.1777636 -0.1321,0.2935547 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.00897 -0.07094,-0.00897 -0.173686,-0.052188 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5822" />
+            </g>
+            <g
+               aria-label="(PCI"
+               id="text35"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 18.91014,4.1443399 Q 18.684266,4.1304776 18.529334,4.0163175 18.374403,3.9029727 18.281444,3.7097159 18.1893,3.5164591 18.1893,3.3223868 q 0,-0.1940722 0.09214,-0.3873291 0.09296,-0.1932568 0.24789,-0.3066015 0.154932,-0.1141602 0.380806,-0.1288379 v 0.127207 q -0.170425,0.015493 -0.293555,0.1149756 -0.122314,0.098667 -0.192441,0.2519678 -0.07013,0.1533007 -0.07013,0.3286181 0,0.1753174 0.07013,0.3286182 0.07013,0.1533007 0.192441,0.2519677 0.12313,0.098667 0.293555,0.1149756 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5825" />
+              <path
+                 d="M 19.345579,3.3794669 V 3.8410001 H 19.180863 V 2.5754532 h 0.314755 q 0.194073,0 0.282955,0.044033 0.08888,0.043218 0.136176,0.1272071 0.04729,0.083989 0.04729,0.1875488 0,0.121499 -0.0636,0.2266894 -0.0636,0.1051905 -0.177764,0.1622705 -0.113345,0.056265 -0.308232,0.056265 z m 0,-0.1263916 h 0.07094 q 0.152485,0 0.226689,-0.039141 0.0742,-0.039956 0.11416,-0.1141602 0.03996,-0.074204 0.03996,-0.1606396 0,-0.1092676 -0.07176,-0.1728711 -0.07094,-0.063604 -0.281324,-0.063604 h -0.09867 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5827" />
+              <path
+                 d="m 20.925882,3.8263223 q -0.141885,0.053003 -0.254414,0.053003 -0.148408,0 -0.273169,-0.079097 -0.124761,-0.079912 -0.194072,-0.2364746 -0.06931,-0.1573779 -0.06931,-0.3555273 0,-0.1965186 0.0685,-0.3530811 0.0685,-0.1565625 0.193257,-0.23729 0.124761,-0.080728 0.2748,-0.080728 0.112529,0 0.254414,0.053003 V 2.74017 q -0.131284,-0.075835 -0.260937,-0.075835 -0.09785,0 -0.179395,0.066865 -0.08073,0.066865 -0.130469,0.1965186 -0.04974,0.1288378 -0.04974,0.2805078 0,0.1541162 0.05137,0.2845849 0.05137,0.1304688 0.131284,0.1957031 0.07991,0.064419 0.176949,0.064419 0.128837,0 0.260937,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5829" />
+              <path
+                 d="M 21.180296,3.8410001 V 3.7146085 h 0.278062 V 2.7026603 H 21.180296 V 2.5754532 h 0.72084 v 0.1272071 h -0.278061 v 1.0119482 h 0.278061 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5831" />
+            </g>
+            <g
+               aria-label="01:00.0)"
+               id="text37"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 23.546673,2.5379435 q 0.216089,0 0.329434,0.1818408 0.113345,0.1810254 0.113345,0.4884424 0,0.3082324 -0.113345,0.4900732 -0.113345,0.1810254 -0.329434,0.1810254 -0.215273,0 -0.329433,-0.1810254 -0.113345,-0.1818408 -0.113345,-0.4900732 0,-0.307417 0.113345,-0.4884424 0.11416,-0.1818408 0.329433,-0.1818408 z M 23.299598,3.4789493 23.737484,2.793173 q -0.04159,-0.075835 -0.09051,-0.1019287 -0.04811,-0.026909 -0.100298,-0.026909 -0.136176,0 -0.207119,0.1516699 -0.07094,0.1508545 -0.07094,0.3832519 0,0.053003 0.0033,0.1141602 0.0033,0.061157 0.02772,0.1655322 z m 0.49252,-0.5349219 -0.434624,0.6898535 q 0.03506,0.059526 0.08073,0.089697 0.04566,0.029355 0.101929,0.029355 0.154932,0 0.220166,-0.1728711 0.06523,-0.1736865 0.06523,-0.3848828 0,-0.1304688 -0.03343,-0.2511524 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5834" />
+              <path
+                 d="M 24.510511,3.7146085 V 2.7377237 q -0.0685,0.054634 -0.132915,0.092959 -0.06442,0.038325 -0.176948,0.078281 V 2.7719718 q 0.178579,-0.075835 0.309863,-0.1965186 h 0.15167 v 1.1391553 h 0.304155 V 3.8410001 H 24.200648 V 3.7146085 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5836" />
+              <path
+                 d="m 25.549369,3.8793253 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09377,0.039141 z m 0,-0.7086084 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09377,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5838" />
+              <path
+                 d="m 26.550716,2.5379435 q 0.216089,0 0.329434,0.1818408 0.113345,0.1810254 0.113345,0.4884424 0,0.3082324 -0.113345,0.4900732 -0.113345,0.1810254 -0.329434,0.1810254 -0.215273,0 -0.329433,-0.1810254 -0.113345,-0.1818408 -0.113345,-0.4900732 0,-0.307417 0.113345,-0.4884424 0.11416,-0.1818408 0.329433,-0.1818408 z M 26.303641,3.4789493 26.741527,2.793173 q -0.04159,-0.075835 -0.09051,-0.1019287 -0.04811,-0.026909 -0.100298,-0.026909 -0.136176,0 -0.207119,0.1516699 -0.07094,0.1508545 -0.07094,0.3832519 0,0.053003 0.0033,0.1141602 0.0033,0.061157 0.02772,0.1655322 z m 0.49252,-0.5349219 -0.434624,0.6898535 q 0.03506,0.059526 0.08073,0.089697 0.04566,0.029355 0.101929,0.029355 0.154932,0 0.220166,-0.1728711 0.06523,-0.1736865 0.06523,-0.3848828 0,-0.1304688 -0.03343,-0.2511524 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5840" />
+              <path
+                 d="m 27.552064,2.5379435 q 0.216089,0 0.329434,0.1818408 0.113344,0.1810254 0.113344,0.4884424 0,0.3082324 -0.113344,0.4900732 -0.113345,0.1810254 -0.329434,0.1810254 -0.215273,0 -0.329434,-0.1810254 -0.113344,-0.1818408 -0.113344,-0.4900732 0,-0.307417 0.113344,-0.4884424 0.114161,-0.1818408 0.329434,-0.1818408 z M 27.304989,3.4789493 27.742875,2.793173 q -0.04159,-0.075835 -0.09051,-0.1019287 -0.04811,-0.026909 -0.100298,-0.026909 -0.136177,0 -0.207119,0.1516699 -0.07094,0.1508545 -0.07094,0.3832519 0,0.053003 0.0033,0.1141602 0.0033,0.061157 0.02773,0.1655322 z m 0.492519,-0.5349219 -0.434624,0.6898535 q 0.03506,0.059526 0.08073,0.089697 0.04566,0.029355 0.101929,0.029355 0.154931,0 0.220166,-0.1728711 0.06523,-0.1736865 0.06523,-0.3848828 0,-0.1304688 -0.03343,-0.2511524 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5842" />
+              <path
+                 d="m 28.553412,3.8793253 q -0.05463,0 -0.09378,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09378,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09377,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5844" />
+              <path
+                 d="m 29.55476,2.5379435 q 0.216088,0 0.329433,0.1818408 0.113345,0.1810254 0.113345,0.4884424 0,0.3082324 -0.113345,0.4900732 -0.113345,0.1810254 -0.329433,0.1810254 -0.215274,0 -0.329434,-0.1810254 -0.113345,-0.1818408 -0.113345,-0.4900732 0,-0.307417 0.113345,-0.4884424 0.11416,-0.1818408 0.329434,-0.1818408 z M 29.307684,3.4789493 29.74557,2.793173 q -0.04159,-0.075835 -0.09051,-0.1019287 -0.04811,-0.026909 -0.100297,-0.026909 -0.136177,0 -0.20712,0.1516699 -0.07094,0.1508545 -0.07094,0.3832519 0,0.053003 0.0033,0.1141602 0.0033,0.061157 0.02772,0.1655322 z m 0.49252,-0.5349219 -0.434624,0.6898535 q 0.03506,0.059526 0.08073,0.089697 0.04566,0.029355 0.101929,0.029355 0.154932,0 0.220166,-0.1728711 0.06523,-0.1736865 0.06523,-0.3848828 0,-0.1304688 -0.03343,-0.2511524 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5846" />
+              <path
+                 d="m 30.183456,2.4996183 q 0.225874,0.014678 0.380805,0.1288379 0.154932,0.1133447 0.247076,0.3066015 0.09296,0.1932569 0.09296,0.3873291 0,0.1940723 -0.09296,0.3873291 -0.09214,0.1932568 -0.247076,0.3066016 -0.154931,0.1141601 -0.380805,0.1280224 V 4.0179483 q 0.170425,-0.016309 0.292739,-0.1149756 0.12313,-0.098667 0.193257,-0.2519677 0.07094,-0.1533008 0.07094,-0.3286182 0,-0.1753174 -0.07094,-0.3286181 -0.07013,-0.1533008 -0.193257,-0.2519678 -0.122314,-0.099482 -0.292739,-0.1149756 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5848" />
+            </g>
+            <g
+               aria-label="starting"
+               id="text39"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 32.200991,3.7928897 V 3.6322501 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114976,0 0.165533,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.169609,-0.06605 -0.213643,-0.1223145 -0.04485,-0.055449 -0.04485,-0.1353613 0,-0.1125293 0.08644,-0.1851025 0.08725,-0.072573 0.282139,-0.072573 0.145962,0 0.276431,0.042402 v 0.1378076 q -0.15004,-0.053818 -0.282139,-0.053818 -0.09622,0 -0.150855,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.0473,0.078281 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948876 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5851" />
+              <path
+                 d="m 33.95335,3.8043057 q -0.106822,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217969 V 3.1323917 H 33.143628 V 3.0060001 h 0.227505 V 2.6390568 h 0.15167 v 0.3669433 h 0.405268 v 0.1263916 h -0.405268 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5853" />
+              <path
+                 d="m 34.791611,3.6363272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 h 0.152486 v 0.643374 q 0,0.1647168 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 3.0655265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140253,0 -0.234028,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.1533,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5855" />
+              <path
+                 d="m 35.2719,3.8410001 v -0.910835 h 0.15167 V 3.12913 q 0.07094,-0.1125293 0.16227,-0.1679785 0.09214,-0.056265 0.204673,-0.056265 0.08236,0 0.164717,0.025278 V 3.2587833 H 35.809268 V 3.0508487 q -0.03833,-0.00652 -0.06034,-0.00652 -0.0848,0 -0.166348,0.066865 -0.08154,0.066865 -0.159008,0.2005957 v 0.5292139 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5857" />
+              <path
+                 d="m 36.957393,3.8043057 q -0.106822,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217969 V 3.1323917 H 36.147671 V 3.0060001 h 0.227505 V 2.6390568 h 0.15167 v 0.3669433 h 0.405268 v 0.1263916 h -0.405268 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5859" />
+              <path
+                 d="M 37.452358,3.8410001 V 3.0565567 H 37.199575 V 2.9301651 h 0.404453 v 0.7844434 h 0.253599 V 3.8410001 Z M 37.42708,2.601547 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06687,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06687,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5861" />
+              <path
+                 d="m 38.198477,3.8410001 v -0.910835 h 0.15167 V 3.12913 q 0.06523,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184287,-0.059526 0.08073,0 0.146777,0.043218 0.06605,0.042402 0.09214,0.1117139 0.02691,0.069311 0.02691,0.2723535 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5863" />
+              <path
+                 d="m 39.808135,3.6363272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130468,0.00897 0.01305,0.00163 0.03914,0.00408 h 0.152485 v 0.6441895 q 0,0.2299511 -0.0065,0.2805078 -0.0057,0.051372 -0.01957,0.1035596 -0.03262,0.121499 -0.149224,0.1916259 -0.115791,0.070127 -0.280508,0.070127 -0.165532,0 -0.335141,-0.084805 V 3.9820694 q 0.06442,0.044033 0.158193,0.077466 0.09459,0.034248 0.182656,0.034248 0.06931,0 0.131284,-0.022017 0.06197,-0.022017 0.100298,-0.063604 0.03833,-0.041587 0.05219,-0.097036 0.01386,-0.054634 0.01386,-0.1459619 z m 0,-0.1802099 V 3.0655265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234028,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5865" />
+            </g>
+            <g
+               aria-label="execution...ok"
+               id="text41"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 41.965926,3.7806583 q -0.18184,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247608 0.05545,-0.2397363 0.05545,-0.1149756 0.154931,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.62788 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 41.360062,3.2971085 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06687,0.066865 -0.09378,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5868" />
+              <path
+                 d="M 42.30433,3.8410001 H 42.129012 L 42.486986,3.3639737 42.15266,2.9301651 h 0.194072 l 0.23729,0.3057862 0.230767,-0.3057862 h 0.172055 L 42.670458,3.349296 43.046371,3.8410001 H 42.851483 L 42.574237,3.4781339 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5870" />
+              <path
+                 d="m 43.968622,3.7806583 q -0.181841,0.086436 -0.344112,0.086436 -0.123129,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.05789,-0.1141602 -0.05789,-0.2438135 0,-0.1247608 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 43.362758,3.2971085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5872" />
+              <path
+                 d="m 44.978939,3.8149063 q -0.152485,0.051372 -0.290293,0.051372 -0.136992,0 -0.243813,-0.062788 -0.106006,-0.063604 -0.165532,-0.1712402 -0.05953,-0.1084522 -0.05953,-0.2462598 0,-0.2071191 0.134546,-0.3441113 0.135362,-0.1369922 0.326172,-0.1369922 0.141069,0 0.298447,0.053003 v 0.1459619 q -0.159008,-0.072573 -0.284585,-0.072573 -0.08317,0 -0.156562,0.041587 -0.07339,0.040771 -0.113345,0.1280225 -0.03996,0.087251 -0.03996,0.1793945 0,0.1231299 0.07665,0.2348438 0.07747,0.1117138 0.242183,0.1117138 0.04974,0 0.09785,-0.00652 0.04811,-0.00734 0.177763,-0.051372 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5874" />
+              <path
+                 d="m 45.963163,2.9301651 v 0.910835 h -0.15167 V 3.6412198 q -0.07339,0.1125293 -0.163086,0.168794 -0.0897,0.056265 -0.179395,0.056265 -0.07991,0 -0.146777,-0.042402 -0.06605,-0.043218 -0.09214,-0.1125293 -0.02609,-0.070127 -0.02609,-0.2723535 V 2.9301651 h 0.15167 v 0.527583 q 0,0.1312842 0.01223,0.1736866 0.01305,0.041587 0.04648,0.068496 0.03425,0.026909 0.07339,0.026909 0.07991,0 0.171241,-0.075019 0.09214,-0.075835 0.152485,-0.1908105 V 2.9301651 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5876" />
+              <path
+                 d="m 46.976742,3.8043057 q -0.106821,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217969 V 3.1323917 H 46.16702 V 3.0060001 h 0.227505 V 2.6390568 h 0.15167 v 0.3669433 h 0.405269 v 0.1263916 h -0.405269 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5878" />
+              <path
+                 d="M 47.471708,3.8410001 V 3.0565567 H 47.218925 V 2.9301651 h 0.404453 v 0.7844434 h 0.253599 V 3.8410001 Z M 47.44643,2.601547 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06686,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06686,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5880" />
+              <path
+                 d="m 48.592924,3.8662784 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369921 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194887,0 0.312309,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449267 -0.117422,0.1361768 -0.312309,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5882" />
+              <path
+                 d="m 49.219174,3.8410001 v -0.910835 h 0.15167 V 3.12913 q 0.06523,-0.1051904 0.157377,-0.1647168 0.09214,-0.059526 0.184288,-0.059526 0.08073,0 0.146777,0.043218 0.06605,0.042402 0.09214,0.1117139 0.02691,0.069311 0.02691,0.2723535 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5884" />
+              <path
+                 d="m 50.594803,3.8793253 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09378,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5886" />
+              <path
+                 d="m 51.596151,3.8793253 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09377,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5888" />
+              <path
+                 d="m 52.597498,3.8793253 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09378,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5890" />
+              <path
+                 d="m 53.599662,3.8662784 q -0.195703,0 -0.313125,-0.1361768 -0.117421,-0.1369921 -0.117421,-0.3449267 0,-0.2079346 0.117421,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194888,0 0.31231,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449267 -0.117422,0.1361768 -0.31231,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5892" />
+              <path
+                 d="M 54.266684,3.8410001 V 2.5248966 h 0.15167 v 0.8268457 l 0.437885,-0.4215772 h 0.202227 l -0.43707,0.4215772 0.448486,0.4892578 h -0.20875 L 54.418354,3.3517423 v 0.4892578 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5894" />
+            </g>
+            <g
+               aria-label="FlexBoot"
+               id="text43"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.18510253,6.0120001 V 4.7464532 H 0.88066404 V 4.8736603 H 0.34981933 V 5.3033917 H 0.8301074 V 5.4297833 H 0.34981933 v 0.5822168 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5897" />
+              <path
+                 d="M 1.3723682,6.0120001 V 4.8231036 H 1.1000147 V 4.6958966 H 1.5240381 V 5.8856085 H 1.808623 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5899" />
+              <path
+                 d="m 2.8866211,5.9516583 q -0.1818408,0.086436 -0.3441113,0.086436 -0.1231299,0 -0.220166,-0.061157 -0.097036,-0.061157 -0.1557471,-0.1745019 -0.057895,-0.1141602 -0.057895,-0.2438135 0,-0.1247607 0.055449,-0.2397363 0.055449,-0.1149756 0.1549316,-0.1785791 0.099483,-0.064419 0.2217969,-0.064419 0.1622705,0 0.2601221,0.115791 0.098667,0.1157911 0.098667,0.3571582 v 0.032617 H 2.2717871 q 0,0.09459 0.039141,0.1728711 0.039956,0.078281 0.104375,0.1174219 0.064419,0.039141 0.1467774,0.039141 0.1467773,0 0.324541,-0.097852 z M 2.2807568,5.4681085 h 0.4541944 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598243,0.067681 -0.066865,0.066865 -0.093774,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5901" />
+              <path
+                 d="M 3.2250245,6.0120001 H 3.0497072 L 3.4076808,5.5349737 3.0733546,5.1011651 h 0.1940723 l 0.23729,0.3057862 0.2307666,-0.3057862 H 3.9075392 L 3.5911525,5.520296 3.9670655,6.0120001 H 3.7721778 L 3.4949318,5.6491339 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5903" />
+              <path
+                 d="M 4.1456445,6.0120001 V 4.7464532 h 0.2470752 q 0.2226123,0 0.2976319,0.034248 0.075835,0.033433 0.1133447,0.099482 0.03751,0.06605 0.03751,0.1508545 0,0.066865 -0.022017,0.127207 -0.022017,0.059526 -0.065234,0.1092676 -0.043218,0.048926 -0.1255762,0.092959 0.1508545,0.060342 0.2038574,0.1484082 0.053818,0.088066 0.053818,0.1761328 0,0.083989 -0.045664,0.1630859 -0.044849,0.079097 -0.1263916,0.121499 -0.081543,0.042402 -0.2609375,0.042402 z M 4.3103613,5.3164386 h 0.1728711 q 0.083989,-0.035063 0.1223145,-0.073389 0.039141,-0.039141 0.057895,-0.086436 0.01957,-0.04811 0.01957,-0.1051905 0,-0.089697 -0.053003,-0.1337304 -0.052187,-0.044033 -0.2046729,-0.044033 H 4.3103613 Z m 0,0.5691699 h 0.1557471 q 0.1304688,0 0.1924414,-0.061157 0.062788,-0.061973 0.062788,-0.1484082 0,-0.063604 -0.034248,-0.1166065 Q 4.6528418,5.5056183 4.581084,5.4746319 4.5093262,5.4428302 4.3560254,5.4428302 h -0.045664 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5905" />
+              <path
+                 d="m 5.5082274,6.0372784 q -0.1957031,0 -0.313125,-0.1361768 -0.1174218,-0.1369921 -0.1174218,-0.3449267 0,-0.2079346 0.1174218,-0.3441113 0.1174219,-0.1361768 0.313125,-0.1361768 0.1948877,0 0.3123096,0.1361768 0.1174219,0.1361767 0.1174219,0.3441113 0,0.2079346 -0.1174219,0.3449267 -0.1174219,0.1361768 -0.3123096,0.1361768 z m 0,-0.1263916 q 0.1214991,0 0.1932569,-0.09459 0.071758,-0.09459 0.071758,-0.2601221 0,-0.1647168 -0.071758,-0.2593066 -0.071758,-0.09459 -0.1932569,-0.09459 -0.1223144,0 -0.1940722,0.09459 -0.071758,0.09459 -0.071758,0.2593066 0,0.1655322 0.071758,0.2601221 0.071758,0.09459 0.1940722,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5907" />
+              <path
+                 d="m 6.5095754,6.0372784 q -0.1957031,0 -0.3131249,-0.1361768 -0.1174219,-0.1369921 -0.1174219,-0.3449267 0,-0.2079346 0.1174219,-0.3441113 0.1174218,-0.1361768 0.3131249,-0.1361768 0.1948877,0 0.3123096,0.1361768 0.1174219,0.1361767 0.1174219,0.3441113 0,0.2079346 -0.1174219,0.3449267 -0.1174219,0.1361768 -0.3123096,0.1361768 z m 0,-0.1263916 q 0.1214991,0 0.1932569,-0.09459 0.071758,-0.09459 0.071758,-0.2601221 0,-0.1647168 -0.071758,-0.2593066 -0.071758,-0.09459 -0.1932569,-0.09459 -0.1223144,0 -0.1940722,0.09459 -0.071758,0.09459 -0.071758,0.2593066 0,0.1655322 0.071758,0.2601221 0.071758,0.09459 0.1940722,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5909" />
+              <path
+                 d="m 7.8974367,5.9753057 q -0.1068213,0.044849 -0.1549317,0.053003 -0.04811,0.00897 -0.092959,0.00897 -0.095405,0 -0.1745019,-0.036694 Q 7.3959474,5.9638897 7.3551759,5.8921319 7.3152199,5.8203741 7.3152199,5.6703351 V 5.3033917 H 7.087715 V 5.1770001 H 7.3152199 V 4.8100568 H 7.4668898 V 5.1770001 H 7.8721583 V 5.3033917 H 7.4668898 v 0.3644971 q 0,0.110083 0.026094,0.155747 0.026094,0.044849 0.069312,0.06605 0.044033,0.021201 0.1035595,0.021201 0.110083,0 0.2315821,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5911" />
+            </g>
+            <g
+               aria-label="initialising"
+               id="text45"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 9.3996207,6.0120001 V 5.2275567 H 9.1468375 V 5.1011651 H 9.5512907 V 5.8856085 H 9.8048893 V 6.0120001 Z M 9.3743424,4.772547 q 0,-0.051372 0.035063,-0.07665 0.035063,-0.025278 0.06605,-0.025278 0.031802,0 0.066865,0.025278 0.035063,0.025278 0.035063,0.07665 0,0.050557 -0.035063,0.075835 -0.035063,0.025278 -0.066865,0.025278 -0.030986,0 -0.06605,-0.025278 -0.035063,-0.025278 -0.035063,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5914" />
+              <path
+                 d="m 10.145739,6.0120001 v -0.910835 h 0.15167 V 5.30013 q 0.06523,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184287,-0.059526 0.08073,0 0.146777,0.043218 0.06605,0.042402 0.09214,0.1117139 0.02691,0.069312 0.02691,0.2723535 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5916" />
+              <path
+                 d="M 11.402316,6.0120001 V 5.2275567 H 11.149533 V 5.1011651 h 0.404453 v 0.7844434 h 0.253599 V 6.0120001 Z M 11.377038,4.772547 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06686,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06686,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5918" />
+              <path
+                 d="m 12.910046,5.9753057 q -0.106822,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 5.3033917 H 12.100324 V 5.1770001 h 0.227505 V 4.8100568 h 0.15167 v 0.3669433 h 0.405268 v 0.1263916 h -0.405268 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5920" />
+              <path
+                 d="M 13.405011,6.0120001 V 5.2275567 H 13.152228 V 5.1011651 h 0.404453 V 5.8856085 H 13.81028 V 6.0120001 Z M 13.379733,4.772547 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06687,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06687,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5922" />
+              <path
+                 d="m 14.749655,5.8073272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057895 -0.178579,0.057895 -0.114161,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161456,-0.1965186 0.101113,-0.072573 0.250336,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 h 0.152485 v 0.6433741 q 0,0.1647167 0.03425,0.2674609 h -0.158193 q -0.01794,-0.075019 -0.02854,-0.2046729 z m 0,-0.1802099 V 5.2365265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234029,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5924" />
+              <path
+                 d="M 15.397106,6.0120001 V 4.8231036 h -0.272353 v -0.127207 h 0.424023 v 1.1897119 h 0.284585 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5926" />
+              <path
+                 d="M 16.409054,6.0120001 V 5.2275567 H 16.156271 V 5.1011651 h 0.404453 v 0.7844434 h 0.253599 V 6.0120001 Z M 16.383776,4.772547 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06687,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06687,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5928" />
+              <path
+                 d="M 17.165773,5.9638897 V 5.8032501 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114976,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117421,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.16961,-0.06605 -0.213643,-0.1223145 -0.04485,-0.055449 -0.04485,-0.1353613 0,-0.1125293 0.08644,-0.1851025 0.08725,-0.072573 0.282139,-0.072573 0.145962,0 0.27643,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282138,-0.053818 -0.09622,0 -0.150855,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.0473,0.078281 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948876 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5930" />
+              <path
+                 d="M 18.41175,6.0120001 V 5.2275567 H 18.158966 V 5.1011651 h 0.404453 v 0.7844434 h 0.253599 V 6.0120001 Z M 18.386471,4.772547 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06686,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06686,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5932" />
+              <path
+                 d="m 19.157868,6.0120001 v -0.910835 h 0.15167 V 5.30013 q 0.06523,-0.1051904 0.157377,-0.1647168 0.09214,-0.059526 0.184288,-0.059526 0.08073,0 0.146777,0.043218 0.06605,0.042402 0.09214,0.1117139 0.02691,0.069312 0.02691,0.2723535 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5934" />
+              <path
+                 d="m 20.767526,5.8073272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057895 -0.178579,0.057895 -0.114161,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101114,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 h 0.152485 v 0.6441895 q 0,0.2299511 -0.0065,0.2805078 -0.0057,0.051372 -0.01957,0.1035596 -0.03262,0.121499 -0.149223,0.1916259 -0.115791,0.070127 -0.280508,0.070127 -0.165532,0 -0.335142,-0.084805 V 6.1530694 q 0.06442,0.044033 0.158194,0.077466 0.09459,0.034248 0.182656,0.034248 0.06931,0 0.131284,-0.022017 0.06197,-0.022017 0.100298,-0.063604 0.03833,-0.041587 0.05219,-0.097036 0.01386,-0.054634 0.01386,-0.1459619 z m 0,-0.1802099 V 5.2365265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234029,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5936" />
+            </g>
+            <g
+               aria-label="devices..."
+               id="text47"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 22.778703,5.8073272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057895 -0.178579,0.057895 -0.114161,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101114,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 V 4.6958966 h 0.152485 v 1.3161035 h -0.152485 z m 0,-0.1802099 V 5.2365265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234029,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5939" />
+              <path
+                 d="m 23.929274,5.9516583 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 H 23.31444 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 23.32341,5.4681085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5941" />
+              <path
+                 d="m 24.469089,6.0120001 -0.395484,-0.910835 h 0.166348 l 0.312309,0.7208399 0.318833,-0.7208399 h 0.15167 l -0.398745,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5943" />
+              <path
+                 d="M 25.429665,6.0120001 V 5.2275567 H 25.176882 V 5.1011651 h 0.404453 v 0.7844434 h 0.253598 V 6.0120001 Z M 25.404386,4.772547 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06686,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06686,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5945" />
+              <path
+                 d="m 26.942287,5.9859063 q -0.152486,0.051372 -0.290293,0.051372 -0.136992,0 -0.243814,-0.062788 -0.106006,-0.063604 -0.165532,-0.1712402 -0.05953,-0.1084522 -0.05953,-0.2462598 0,-0.2071191 0.134546,-0.3441113 0.135361,-0.1369922 0.326171,-0.1369922 0.14107,0 0.298448,0.053003 v 0.1459619 q -0.159009,-0.072573 -0.284585,-0.072573 -0.08317,0 -0.156563,0.041587 -0.07339,0.040771 -0.113344,0.1280225 -0.03996,0.087251 -0.03996,0.1793945 0,0.1231299 0.07665,0.2348438 0.07747,0.1117138 0.242183,0.1117138 0.04974,0 0.09785,-0.00652 0.04811,-0.00734 0.177764,-0.051372 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5947" />
+              <path
+                 d="m 27.934665,5.9516583 q -0.181841,0.086436 -0.344112,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.05789,-0.1141602 -0.05789,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221796,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.62788 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 27.3288,5.4681085 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5949" />
+              <path
+                 d="M 28.189079,5.9638897 V 5.8032501 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114976,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.16961,-0.06605 -0.213643,-0.1223145 -0.04485,-0.055449 -0.04485,-0.1353613 0,-0.1125293 0.08644,-0.1851025 0.08725,-0.072573 0.282139,-0.072573 0.145961,0 0.27643,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282138,-0.053818 -0.09622,0 -0.150855,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.04729,0.078281 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948876 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5951" />
+              <path
+                 d="m 29.554108,6.0503253 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093775 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093775 -0.03914,0.039141 -0.09378,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5953" />
+              <path
+                 d="m 30.555456,6.0503253 q -0.05463,0 -0.09378,-0.039141 -0.03914,-0.039141 -0.03914,-0.093775 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09378,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093775 -0.03914,0.039141 -0.09377,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5955" />
+              <path
+                 d="m 31.556803,6.0503253 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093775 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093775 -0.03914,0.039141 -0.09378,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5957" />
+            </g>
+            <g
+               aria-label="Initialising"
+               id="text49"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.1402539,8.1829996 V 8.056608 H 0.41831542 V 7.0446598 H 0.1402539 v -0.127207 h 0.72083983 v 0.127207 H 0.58303221 V 8.056608 h 0.27806152 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5960" />
+              <path
+                 d="M 1.1277393,8.1829996 V 7.2721647 h 0.1516699 v 0.1989648 q 0.065234,-0.1051904 0.1573779,-0.1647168 0.092144,-0.059526 0.1842871,-0.059526 0.080728,0 0.1467773,0.043218 0.06605,0.042402 0.092144,0.1117139 0.026909,0.069312 0.026909,0.2723535 V 8.1829996 H 1.7352344 v -0.527583 q 0,-0.1312842 -0.013047,-0.1728711 -0.012231,-0.042402 -0.04648,-0.069311 -0.033433,-0.026909 -0.073389,-0.026909 -0.079912,0 -0.1720556,0.075835 -0.091328,0.075835 -0.1508545,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5962" />
+              <path
+                 d="M 2.3843164,8.1829996 V 7.3985563 H 2.1315332 V 7.2721647 H 2.5359863 V 8.056608 H 2.789585 V 8.1829996 Z M 2.3590381,6.9435465 q 0,-0.051372 0.035064,-0.07665 0.035063,-0.025278 0.06605,-0.025278 0.031802,0 0.066865,0.025278 0.035064,0.025278 0.035064,0.07665 0,0.050557 -0.035064,0.075835 -0.035064,0.025278 -0.066865,0.025278 -0.030986,0 -0.06605,-0.025278 -0.035064,-0.025278 -0.035064,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5964" />
+              <path
+                 d="m 3.892046,8.1463053 q -0.1068213,0.044849 -0.1549316,0.053003 -0.04811,0.00897 -0.092959,0.00897 -0.095405,0 -0.174502,-0.036694 Q 3.3905568,8.1348893 3.3497853,8.0631314 3.3098292,7.9913736 3.3098292,7.8413346 V 7.4743912 H 3.0823244 V 7.3479996 H 3.3098292 V 6.9810563 H 3.4614991 V 7.3479996 H 3.8667677 V 7.4743912 H 3.4614991 v 0.3644971 q 0,0.110083 0.026094,0.1557471 0.026094,0.044849 0.069311,0.06605 0.044033,0.021201 0.1035596,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5966" />
+              <path
+                 d="M 4.3870117,8.1829996 V 7.3985563 H 4.1342285 V 7.2721647 H 4.5386816 V 8.056608 H 4.7922803 V 8.1829996 Z M 4.3617334,6.9435465 q 0,-0.051372 0.035063,-0.07665 0.035063,-0.025278 0.06605,-0.025278 0.031802,0 0.066865,0.025278 0.035064,0.025278 0.035064,0.07665 0,0.050557 -0.035064,0.075835 -0.035063,0.025278 -0.066865,0.025278 -0.030986,0 -0.06605,-0.025278 -0.035063,-0.025278 -0.035063,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5968" />
+              <path
+                 d="m 5.7316552,7.9783268 q -0.069312,0.1141601 -0.1671631,0.1720556 -0.097036,0.057896 -0.1785791,0.057896 -0.1141602,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992626 0,-0.1581934 0.060342,-0.2821387 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304687,0.00897 0.013047,0.00163 0.039141,0.00408 h 0.1524853 v 0.643374 q 0,0.1647168 0.034248,0.2674609 H 5.7601952 q -0.017939,-0.075019 -0.02854,-0.2046728 z m 0,-0.18021 V 7.407526 q -0.080728,-0.021201 -0.1500391,-0.021201 -0.1402539,0 -0.2340283,0.1084522 -0.092959,0.1084521 -0.092959,0.2951855 0,0.1353613 0.050557,0.2046729 0.051372,0.068496 0.1166065,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5970" />
+              <path
+                 d="M 6.3791067,8.1829996 V 6.9941032 H 6.1067532 V 6.8668961 H 6.5307766 V 8.056608 h 0.284585 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5972" />
+              <path
+                 d="M 7.3910548,8.1829996 V 7.3985563 H 7.1382716 V 7.2721647 H 7.5427247 V 8.056608 H 7.7963234 V 8.1829996 Z M 7.3657765,6.9435465 q 0,-0.051372 0.035063,-0.07665 0.035064,-0.025278 0.06605,-0.025278 0.031802,0 0.066865,0.025278 0.035063,0.025278 0.035063,0.07665 0,0.050557 -0.035063,0.075835 -0.035064,0.025278 -0.066865,0.025278 -0.030986,0 -0.06605,-0.025278 -0.035063,-0.025278 -0.035063,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5974" />
+              <path
+                 d="M 8.1477735,8.1348893 V 7.9742496 q 0.091328,0.059526 0.1932568,0.083989 0.1019287,0.023647 0.1728711,0.023647 0.1149756,0 0.1655322,-0.036694 0.050557,-0.03751 0.050557,-0.092959 0,-0.036694 -0.023648,-0.062788 Q 8.6826953,7.8633512 8.5889209,7.825026 L 8.5367334,7.8038248 8.431543,7.7622379 Q 8.2619336,7.6961881 8.2179004,7.6399235 8.1730518,7.5844742 8.1730518,7.5045621 q 0,-0.1125293 0.086436,-0.1851025 0.087251,-0.072573 0.2821387,-0.072573 0.1459619,0 0.2764307,0.042402 V 7.4270963 Q 8.6680176,7.373278 8.535918,7.373278 q -0.096221,0 -0.1508545,0.034248 -0.053818,0.033433 -0.053818,0.083989 0,0.048926 0.047295,0.078281 0.04648,0.029356 0.1516699,0.067681 l 0.1027441,0.03751 q 0.1410694,0.051372 0.1981494,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.091328,0.1948877 -0.090513,0.075835 -0.290293,0.075835 -0.1745019,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5976" />
+              <path
+                 d="M 9.3937499,8.1829996 V 7.3985563 H 9.1409667 V 7.2721647 H 9.5454198 V 8.056608 H 9.7990185 V 8.1829996 Z M 9.3684716,6.9435465 q 0,-0.051372 0.035063,-0.07665 0.035063,-0.025278 0.06605,-0.025278 0.031802,0 0.066865,0.025278 0.035063,0.025278 0.035063,0.07665 0,0.050557 -0.035063,0.075835 -0.035063,0.025278 -0.066865,0.025278 -0.030986,0 -0.06605,-0.025278 -0.035063,-0.025278 -0.035063,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5978" />
+              <path
+                 d="M 10.139868,8.1829996 V 7.2721647 h 0.15167 v 0.1989648 q 0.06523,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184287,-0.059526 0.08073,0 0.146777,0.043218 0.06605,0.042402 0.09214,0.1117139 0.02691,0.069312 0.02691,0.2723535 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5980" />
+              <path
+                 d="m 11.749526,7.9783268 q -0.06931,0.1141601 -0.167163,0.1720556 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992626 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130468,0.00897 0.01305,0.00163 0.03914,0.00408 h 0.152485 v 0.6441894 q 0,0.2299512 -0.0065,0.2805078 -0.0057,0.051372 -0.01957,0.1035596 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.070127 -0.280508,0.070127 -0.165532,0 -0.335141,-0.084805 V 8.3240689 q 0.06442,0.044033 0.158193,0.077466 0.09459,0.034248 0.182656,0.034248 0.06931,0 0.131284,-0.022017 0.06197,-0.022017 0.100298,-0.063603 0.03832,-0.041587 0.05219,-0.097036 0.01386,-0.054634 0.01386,-0.1459619 z m 0,-0.18021 V 7.407526 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234028,0.1084522 -0.09296,0.1084521 -0.09296,0.2951855 0,0.1353613 0.05056,0.2046729 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5982" />
+            </g>
+            <g
+               aria-label="completed."
+               id="text51"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 13.918896,8.1569059 q -0.152486,0.051372 -0.290293,0.051372 -0.136993,0 -0.243814,-0.062788 -0.106006,-0.063603 -0.165532,-0.1712402 -0.05953,-0.1084521 -0.05953,-0.2462597 0,-0.2071192 0.134546,-0.3441114 0.135362,-0.1369921 0.326172,-0.1369921 0.14107,0 0.298448,0.053003 v 0.1459619 q -0.159009,-0.072573 -0.284585,-0.072573 -0.08317,0 -0.156563,0.041587 -0.07339,0.040771 -0.113345,0.1280224 -0.03996,0.087251 -0.03996,0.1793945 0,0.1231299 0.07665,0.2348438 0.07747,0.1117139 0.242182,0.1117139 0.04974,0 0.09785,-0.00652 0.04811,-0.00734 0.177764,-0.051372 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5985" />
+              <path
+                 d="m 14.528837,8.2082779 q -0.195703,0 -0.313125,-0.1361767 Q 14.09829,7.935109 14.09829,7.7271744 q 0,-0.2079345 0.117422,-0.3441113 0.117422,-0.1361767 0.313125,-0.1361767 0.194888,0 0.312309,0.1361767 0.117422,0.1361768 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449268 -0.117421,0.1361767 -0.312309,0.1361767 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5987" />
+              <path
+                 d="M 15.086591,8.1829996 V 7.2721647 h 0.132915 v 0.20875 q 0.06279,-0.1329151 0.116606,-0.1834717 0.05463,-0.050557 0.110083,-0.050557 0.06605,0 0.106006,0.052187 0.04077,0.051372 0.04077,0.1467773 v 0.048926 q 0.02691,-0.083174 0.06442,-0.1345459 0.03833,-0.052187 0.0791,-0.082358 0.04077,-0.030986 0.09378,-0.030986 0.05871,0 0.100298,0.049741 0.04159,0.049741 0.04159,0.1981494 V 8.1829996 H 15.839232 V 7.5608268 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.043218 -0.01468,-0.014678 -0.0318,-0.014678 -0.0424,0 -0.09133,0.065234 -0.04811,0.064419 -0.09867,0.214458 v 0.504751 H 15.465766 V 7.5616422 q 0,-0.1206836 -0.02365,-0.1418848 -0.02365,-0.021201 -0.0424,-0.021201 -0.04159,0 -0.0897,0.072573 -0.0473,0.072573 -0.09051,0.185918 v 0.5259521 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5989" />
+              <path
+                 d="m 16.296689,7.4768375 q 0.07013,-0.1141601 0.167163,-0.1720556 0.09704,-0.057895 0.178579,-0.057895 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965186 -0.101113,0.071758 -0.250337,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 v 0.3538965 h -0.15167 V 7.2721647 h 0.15167 z m 0,0.18021 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137807,0 0.231582,-0.1076368 0.09459,-0.1084521 0.09459,-0.2960009 0,-0.1361768 -0.05137,-0.2046729 -0.05137,-0.068496 -0.116606,-0.068496 -0.07094,0 -0.156563,0.071758 -0.0848,0.071758 -0.1533,0.1932569 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5991" />
+              <path
+                 d="M 17.402411,8.1829996 V 6.9941032 H 17.130058 V 6.8668961 h 0.424023 V 8.056608 h 0.284585 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5993" />
+              <path
+                 d="m 18.916664,8.1226578 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 H 18.30183 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 18.3108,7.639108 h 0.454194 v -0.022017 q 0,-0.1117138 -0.05463,-0.1777636 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5995" />
+              <path
+                 d="m 19.922089,8.1463053 q -0.106821,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119869,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 7.4743912 H 19.112367 V 7.3479996 h 0.227505 V 6.9810563 h 0.15167 v 0.3669433 h 0.405269 v 0.1263916 h -0.405269 v 0.3644971 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5997" />
+              <path
+                 d="m 20.91936,8.1226578 q -0.181841,0.086436 -0.344112,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154931,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.62788 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 20.313495,7.639108 h 0.454195 v -0.022017 q 0,-0.1117138 -0.05463,-0.1777636 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06687,0.066865 -0.09378,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path5999" />
+              <path
+                 d="m 21.771483,7.9783268 q -0.06931,0.1141601 -0.167163,0.1720556 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992626 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 V 6.8668961 h 0.152486 v 1.3161035 h -0.152486 z m 0,-0.18021 V 7.407526 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234028,0.1084522 -0.09296,0.1084521 -0.09296,0.2951855 0,0.1353613 0.05056,0.2046729 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.1533,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6001" />
+              <path
+                 d="m 22.538803,8.2213248 q -0.05463,0 -0.09378,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09378,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09377,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6003" />
+            </g>
+            <g
+               aria-label="FlexBoot"
+               id="text53"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.18510253,14.696 V 13.430453 H 0.88066404 V 13.55766 H 0.34981933 v 0.429732 H 0.8301074 v 0.126391 H 0.34981933 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6006" />
+              <path
+                 d="M 1.3723682,14.696 V 13.507104 H 1.1000147 v -0.127207 h 0.4240234 v 1.189712 H 1.808623 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6008" />
+              <path
+                 d="m 2.8866211,14.635658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099483,-0.06442 0.2217969,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 2.2717871 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 2.2807568,14.152109 h 0.4541944 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598243,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6010" />
+              <path
+                 d="M 3.2250245,14.696 H 3.0497072 L 3.4076808,14.218974 3.0733546,13.785165 h 0.1940723 l 0.23729,0.305786 0.2307666,-0.305786 H 3.9075392 L 3.5911525,14.204296 3.9670655,14.696 H 3.7721778 l -0.277246,-0.362866 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6012" />
+              <path
+                 d="m 4.1456445,14.696 v -1.265547 h 0.2470752 q 0.2226123,0 0.2976319,0.03425 0.075835,0.03343 0.1133447,0.09948 0.03751,0.06605 0.03751,0.150854 0,0.06686 -0.022017,0.127207 -0.022017,0.05953 -0.065234,0.109268 -0.043218,0.04893 -0.1255762,0.09296 0.1508545,0.06034 0.2038574,0.148408 0.053818,0.08807 0.053818,0.176133 0,0.08399 -0.045664,0.163086 -0.044849,0.0791 -0.1263916,0.121499 -0.081543,0.0424 -0.2609375,0.0424 z m 0.1647168,-0.695561 h 0.1728711 q 0.083989,-0.03506 0.1223145,-0.07339 0.039141,-0.03914 0.057895,-0.08644 0.01957,-0.04811 0.01957,-0.10519 0,-0.0897 -0.053003,-0.133731 -0.052187,-0.04403 -0.2046729,-0.04403 H 4.3103613 Z m 0,0.56917 h 0.1557471 q 0.1304688,0 0.1924414,-0.06116 0.062788,-0.06197 0.062788,-0.148408 0,-0.0636 -0.034248,-0.116606 -0.034248,-0.05382 -0.1060058,-0.0848 -0.071758,-0.0318 -0.2250586,-0.0318 h -0.045664 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6014" />
+              <path
+                 d="m 5.5082274,14.721278 q -0.1957031,0 -0.313125,-0.136176 -0.1174218,-0.136993 -0.1174218,-0.344927 0,-0.207935 0.1174218,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207934 -0.1174219,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.1214991,0 0.1932569,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932569,-0.09459 -0.1223144,0 -0.1940722,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940722,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6016" />
+              <path
+                 d="m 6.5095754,14.721278 q -0.1957031,0 -0.3131249,-0.136176 -0.1174219,-0.136993 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.3131249,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207934 -0.1174219,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.1214991,0 0.1932569,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932569,-0.09459 -0.1223144,0 -0.1940722,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940722,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6018" />
+              <path
+                 d="m 7.8974367,14.659306 q -0.1068213,0.04485 -0.1549317,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.1745019,-0.03669 -0.079097,-0.03669 -0.1198682,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 13.987392 H 7.087715 V 13.861 H 7.3152199 V 13.494057 H 7.4668898 V 13.861 h 0.4052685 v 0.126392 H 7.4668898 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069312,0.06605 0.044033,0.0212 0.1035595,0.0212 0.110083,0 0.2315821,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6020" />
+            </g>
+            <g
+               aria-label="v3.4.753"
+               id="text55"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 9.4403922,14.696 9.0449088,13.785165 h 0.1663477 l 0.3123095,0.72084 0.318833,-0.72084 h 0.15167 L 9.5953239,14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6023" />
+              <path
+                 d="m 10.137585,14.673168 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07583 -0.305786,-0.07583 H 10.2705 v -0.126392 h 0.116606 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.05789,-0.05463 -0.177764,-0.05463 -0.134545,0 -0.289477,0.07583 v -0.144331 q 0.154932,-0.0579 0.283769,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08643 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166347,0.07991 0.05626,0.0473 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.1321,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6025" />
+              <path
+                 d="m 11.521369,14.734325 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6027" />
+              <path
+                 d="m 12.598552,14.696 v -0.353896 h -0.537369 v -0.127207 l 0.537369,-0.784444 h 0.152485 v 0.784444 h 0.234028 v 0.127207 H 12.751037 V 14.696 Z m 0,-0.481103 v -0.554493 l -0.375914,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6029" />
+              <path
+                 d="m 13.524064,14.734325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6031" />
+              <path
+                 d="m 14.28486,14.696 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.132099,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803199 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145147,0.219351 -0.02935,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183471 -0.03914,0.0685 -0.05953,0.142701 -0.01957,0.0742 -0.01957,0.194887 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6033" />
+              <path
+                 d="m 15.179387,14.037948 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167978,0.152486 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6035" />
+              <path
+                 d="m 16.145671,14.673168 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126392 h 0.116606 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07583 v -0.144331 q 0.154932,-0.0579 0.28377,-0.0579 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08643 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166347,0.07991 0.05626,0.0473 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.1321,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6037" />
+            </g>
+            <g
+               aria-label="Features:"
+               id="text57"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.18510253,16.867001 v -1.265547 h 0.69556151 v 0.127207 H 0.34981933 v 0.429731 H 0.8301074 v 0.126392 H 0.34981933 v 0.582217 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6040" />
+              <path
+                 d="m 1.8852734,16.806659 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 1.2704395 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6042" />
+              <path
+                 d="m 2.7276123,16.662328 q -0.069311,0.11416 -0.1671631,0.172055 -0.097036,0.0579 -0.1785791,0.0579 -0.1141601,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.1614551,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304688,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524853 v 0.643374 q 0,0.164716 0.034248,0.267461 H 2.7561523 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295185 0,0.135362 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6044" />
+              <path
+                 d="m 3.892046,16.830306 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.174502,-0.03669 -0.079097,-0.0367 -0.1198681,-0.108453 -0.039956,-0.07176 -0.039956,-0.221796 V 16.158392 H 3.0823244 v -0.126391 h 0.2275048 v -0.366944 h 0.1516699 v 0.366944 h 0.4052686 v 0.126391 H 3.4614991 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069311,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6046" />
+              <path
+                 d="m 4.8811621,15.956166 v 0.910835 H 4.7294922 V 16.66722 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793946,0.05626 -0.079912,0 -0.1467773,-0.0424 -0.06605,-0.04322 -0.092144,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 V 15.956166 H 4.273667 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092144,-0.07584 0.1524854,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6048" />
+              <path
+                 d="m 5.2105956,16.867001 v -0.910835 h 0.1516699 v 0.198964 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 5.7479638 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6050" />
+              <path
+                 d="m 6.892012,16.806659 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 6.277178 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 6.2861477,16.323109 H 6.740342 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.145962,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6052" />
+              <path
+                 d="m 7.1464259,16.81889 v -0.160639 q 0.091328,0.05953 0.1932569,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149755,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023647,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 l -0.052188,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122315 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.112529 0.086436,-0.185102 0.087251,-0.07257 0.2821387,-0.07257 0.1459619,0 0.2764306,0.0424 v 0.137807 q -0.150039,-0.05382 -0.2821386,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027442,0.03751 q 0.1410693,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07583 -0.2902929,0.07583 -0.174502,0 -0.3587891,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6054" />
+              <path
+                 d="m 8.5114551,16.905326 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708609 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6056" />
+            </g>
+            <g
+               aria-label="DNS"
+               id="text59"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 10.146392,16.867001 v -1.265547 h 0.300078 q 0.207119,0 0.307417,0.07257 0.101113,0.07176 0.15167,0.21772 0.05056,0.145962 0.05056,0.345742 0,0.18918 -0.05382,0.332695 -0.053,0.1427 -0.150854,0.220166 -0.09785,0.07665 -0.304971,0.07665 z m 0.164717,-0.139439 h 0.110083 q 0.167163,0 0.238105,-0.05953 0.07176,-0.05953 0.101929,-0.164717 0.03099,-0.106006 0.03099,-0.291924 0,-0.181841 -0.03588,-0.279692 -0.03588,-0.09785 -0.102744,-0.150039 -0.06686,-0.053 -0.21935,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6059" />
+              <path
+                 d="m 11.275762,16.867001 h -0.15167 V 15.601454 H 11.2725 l 0.447671,0.842339 0.04893,0.125576 h 0.0041 l -0.0041,-0.125576 v -0.842339 h 0.15167 v 1.265547 h -0.15167 l -0.435439,-0.828477 -0.06116,-0.132915 0.0033,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6061" />
+              <path
+                 d="M 12.150718,16.840091 V 16.68516 q 0.195703,0.09296 0.355528,0.09296 0.06686,0 0.128022,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.05789 -0.162271,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135362,0 0.261753,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.10519,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319649 0,0.146777 -0.106822,0.251967 -0.106821,0.105191 -0.34248,0.105191 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6063" />
+            </g>
+            <g
+               aria-label="HTTP"
+               id="text61"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 14.130744,16.867001 v -1.265547 h 0.164717 v 0.544707 h 0.468056 v -0.544707 h 0.163902 v 1.265547 h -0.163902 v -0.594449 h -0.468056 v 0.594449 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6066" />
+              <path
+                 d="m 15.447663,16.867001 v -1.126109 h -0.379175 v -0.139438 h 0.923882 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6068" />
+              <path
+                 d="m 16.449011,16.867001 v -1.126109 h -0.379175 v -0.139438 h 0.923882 v 0.139438 h -0.379991 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6070" />
+              <path
+                 d="m 17.340275,16.405467 v 0.461534 h -0.164716 v -1.265547 h 0.314755 q 0.194073,0 0.282955,0.04403 0.08888,0.04322 0.136176,0.127207 0.04729,0.08399 0.04729,0.187549 0,0.121499 -0.0636,0.226689 -0.0636,0.105191 -0.177764,0.162271 -0.113345,0.05626 -0.308232,0.05626 z m 0,-0.126391 h 0.07094 q 0.152485,0 0.226689,-0.03914 0.0742,-0.03996 0.11416,-0.11416 0.03996,-0.0742 0.03996,-0.16064 0,-0.109267 -0.07176,-0.172871 -0.07094,-0.0636 -0.281324,-0.0636 h -0.09867 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6072" />
+            </g>
+            <g
+               aria-label="iSCSI"
+               id="text63"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 19.419621,16.867001 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239454 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6075" />
+              <path
+                 d="M 20.16737,16.840091 V 16.68516 q 0.195703,0.09296 0.355528,0.09296 0.06686,0 0.128022,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.05789 -0.162271,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135362,0 0.261753,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.10519,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319649 0,0.146777 -0.106822,0.251967 -0.106821,0.105191 -0.34248,0.105191 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6077" />
+              <path
+                 d="m 21.927883,16.852323 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236475 -0.06931,-0.157377 -0.06931,-0.355527 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.15004 q -0.131284,-0.07583 -0.260938,-0.07583 -0.09785,0 -0.179394,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130469 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6079" />
+              <path
+                 d="M 22.170066,16.840091 V 16.68516 q 0.195703,0.09296 0.355527,0.09296 0.06686,0 0.128022,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.05789 -0.162271,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221796,-0.131284 -0.221796,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135361,0 0.261753,0.03914 v 0.141069 q -0.139439,-0.05382 -0.271538,-0.05382 -0.105191,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06687,0.03914 q 0.207934,0.127207 0.207934,0.319649 0,0.146777 -0.106821,0.251967 -0.106821,0.105191 -0.342481,0.105191 -0.07502,0 -0.143515,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6081" />
+              <path
+                 d="m 23.183645,16.867001 v -0.126392 h 0.278061 v -1.011948 h -0.278061 v -0.127207 h 0.720839 v 0.127207 h -0.278061 v 1.011948 h 0.278061 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6083" />
+            </g>
+            <g
+               aria-label="TFTP"
+               id="text65"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 25.468315,16.867001 V 15.740892 H 25.08914 v -0.139438 h 0.923882 v 0.139438 h -0.379991 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6086" />
+              <path
+                 d="m 26.236449,16.867001 v -1.265547 h 0.695562 v 0.127207 h -0.530845 v 0.429731 h 0.480288 v 0.126392 h -0.480288 v 0.582217 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6088" />
+              <path
+                 d="m 27.47101,16.867001 v -1.126109 h -0.379175 v -0.139438 h 0.923882 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6090" />
+              <path
+                 d="m 28.362275,16.405467 v 0.461534 h -0.164717 v -1.265547 h 0.314756 q 0.194072,0 0.282954,0.04403 0.08888,0.04322 0.136177,0.127207 0.04729,0.08399 0.04729,0.187549 0,0.121499 -0.0636,0.226689 -0.0636,0.105191 -0.177764,0.162271 -0.113344,0.05626 -0.308232,0.05626 z m 0,-0.126391 h 0.07094 q 0.152485,0 0.22669,-0.03914 0.0742,-0.03996 0.11416,-0.11416 0.03996,-0.0742 0.03996,-0.16064 0,-0.109267 -0.07176,-0.172871 -0.07094,-0.0636 -0.281323,-0.0636 h -0.09867 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6092" />
+            </g>
+            <g
+               aria-label="VLAN"
+               id="text67"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 30.877875,15.601454 h 0.158194 l -0.389776,1.265547 H 30.47913 l -0.392221,-1.265547 h 0.173686 l 0.2748,0.883925 0.03588,0.128838 0.0318,-0.128022 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6095" />
+              <path
+                 d="m 31.923256,16.727562 v 0.139439 h -0.68333 v -1.265547 h 0.164717 v 1.126108 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6097" />
+              <path
+                 d="m 32.247797,16.867001 h -0.158193 l 0.389775,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173686 l -0.08644,-0.278062 h -0.445225 z m 0.124761,-0.404454 h 0.36939 l -0.152486,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6099" />
+              <path
+                 d="m 33.318457,16.867001 h -0.15167 v -1.265547 h 0.148408 l 0.447671,0.842339 0.04893,0.125576 h 0.0041 l -0.0041,-0.125576 v -0.842339 h 0.151669 v 1.265547 h -0.151669 l -0.43544,-0.828477 -0.06116,-0.132915 0.0033,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6101" />
+            </g>
+            <g
+               aria-label="ELF"
+               id="text69"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 35.918862,16.727562 v 0.139439 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505566 v 0.429731 h 0.455009 v 0.126392 h -0.455009 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6104" />
+              <path
+                 d="m 36.933257,16.727562 v 0.139439 h -0.683331 v -1.265547 h 0.164717 v 1.126108 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6106" />
+              <path
+                 d="m 37.257798,16.867001 v -1.265547 h 0.695561 v 0.127207 h -0.530845 v 0.429731 h 0.480288 v 0.126392 h -0.480288 v 0.582217 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6108" />
+            </g>
+            <g
+               aria-label="MBOOT"
+               id="text71"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 39.256578,16.867001 h -0.132915 v -1.265547 h 0.165532 l 0.291924,0.833369 0.291924,-0.833369 h 0.161455 v 1.265547 h -0.15167 v -0.80646 l 0.0041,-0.110899 h -0.0041 l -0.03588,0.110899 -0.195703,0.553676 h -0.164717 l -0.198149,-0.553676 -0.0318,-0.110899 h -0.0041 l 0.0041,0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6111" />
+              <path
+                 d="m 40.219601,16.867001 v -1.265547 h 0.247075 q 0.222612,0 0.297632,0.03425 0.07583,0.03343 0.113344,0.09948 0.03751,0.06605 0.03751,0.150855 0,0.06686 -0.02202,0.127207 -0.02202,0.05953 -0.06524,0.109267 -0.04322,0.04893 -0.125576,0.09296 0.150855,0.06034 0.203857,0.148408 0.05382,0.08807 0.05382,0.176133 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126392,0.121499 -0.08154,0.0424 -0.260937,0.0424 z m 0.164716,-0.695562 h 0.172872 q 0.08399,-0.03506 0.122314,-0.07339 0.03914,-0.03914 0.0579,-0.08644 0.01957,-0.04811 0.01957,-0.105191 0,-0.0897 -0.053,-0.13373 -0.05219,-0.04403 -0.204673,-0.04403 h -0.114976 z m 0,0.56917 h 0.155748 q 0.130468,0 0.192441,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116607 -0.03425,-0.05382 -0.106006,-0.0848 -0.07176,-0.0318 -0.225058,-0.0318 h -0.04566 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6113" />
+              <path
+                 d="m 41.581368,16.905326 q -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198965,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198965,0.134546 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6115" />
+              <path
+                 d="m 42.582716,16.905326 q -0.215273,0 -0.329434,-0.181026 -0.113344,-0.18184 -0.113344,-0.490073 0,-0.307417 0.113344,-0.488442 0.114161,-0.181841 0.329434,-0.181841 0.216089,0 0.329434,0.181841 0.113344,0.181025 0.113344,0.488442 0,0.308233 -0.113344,0.490073 -0.113345,0.181026 -0.329434,0.181026 z m 0,-0.127207 q 0.119053,0 0.198149,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.198149,-0.135361 -0.119053,0 -0.198965,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198965,0.134546 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6117" />
+              <path
+                 d="M 43.501705,16.867001 V 15.740892 H 43.12253 v -0.139438 h 0.923882 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6119" />
+            </g>
+            <g
+               aria-label="PXE"
+               id="text73"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 45.398233,16.405467 v 0.461534 h -0.164717 v -1.265547 h 0.314756 q 0.194072,0 0.282954,0.04403 0.08888,0.04322 0.136176,0.127207 0.04729,0.08399 0.04729,0.187549 0,0.121499 -0.0636,0.226689 -0.0636,0.105191 -0.177764,0.162271 -0.113345,0.05626 -0.308232,0.05626 z m 0,-0.126391 h 0.07094 q 0.152485,0 0.226689,-0.03914 0.0742,-0.03996 0.114161,-0.11416 0.03996,-0.0742 0.03996,-0.16064 0,-0.109267 -0.07176,-0.172871 -0.07094,-0.0636 -0.281323,-0.0636 h -0.09867 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6122" />
+              <path
+                 d="m 46.301729,16.867001 h -0.171241 l 0.370206,-0.661314 -0.334327,-0.604233 h 0.186734 l 0.242182,0.436255 0.247891,-0.436255 h 0.172056 l -0.334327,0.592002 0.373467,0.673545 H 46.864375 L 46.586314,16.36225 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6124" />
+              <path
+                 d="m 47.941558,16.727562 v 0.139439 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505567 v 0.429731 h 0.45501 v 0.126392 h -0.45501 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6126" />
+            </g>
+            <g
+               aria-label="bzImage"
+               id="text75"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 49.364645,16.160838 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6129" />
+              <path
+                 d="m 50.207799,16.867001 v -0.139439 l 0.55857,-0.645005 h -0.545523 v -0.126391 h 0.746118 v 0.126391 l -0.562646,0.645005 h 0.581401 v 0.139439 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6131" />
+              <path
+                 d="m 51.240949,16.867001 v -0.126392 h 0.278061 v -1.011948 h -0.278061 v -0.127207 h 0.72084 v 0.127207 h -0.278062 v 1.011948 h 0.278062 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6133" />
+              <path
+                 d="m 52.159938,16.867001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 H 52.91258 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525953 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6135" />
+              <path
+                 d="m 53.828307,16.662328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6137" />
+              <path
+                 d="m 54.83944,16.662328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149223,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335142,-0.0848 V 17.00807 q 0.06442,0.04403 0.158194,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6139" />
+              <path
+                 d="m 55.990012,16.806659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6141" />
+            </g>
+            <g
+               aria-label="COMBOOT"
+               id="text77"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 58.001186,16.852323 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236475 -0.06931,-0.157377 -0.06931,-0.355527 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.15004 q -0.131284,-0.07583 -0.260938,-0.07583 -0.09785,0 -0.179394,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130469 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6144" />
+              <path
+                 d="m 58.61602,16.905326 q -0.215274,0 -0.329434,-0.181026 -0.113344,-0.18184 -0.113344,-0.490073 0,-0.307417 0.113344,-0.488442 0.11416,-0.181841 0.329434,-0.181841 0.216089,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113344,0.181026 -0.329433,0.181026 z m 0,-0.127207 q 0.119053,0 0.198149,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.198149,-0.135361 -0.119053,0 -0.198965,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198965,0.134546 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6146" />
+              <path
+                 d="m 59.295273,16.867001 h -0.132915 v -1.265547 h 0.165532 l 0.291924,0.833369 0.291924,-0.833369 h 0.161455 v 1.265547 h -0.15167 v -0.80646 l 0.0041,-0.110899 h -0.0041 l -0.03588,0.110899 -0.195703,0.553676 h -0.164717 l -0.198149,-0.553676 -0.0318,-0.110899 h -0.0041 l 0.0041,0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6148" />
+              <path
+                 d="m 60.258295,16.867001 v -1.265547 h 0.247076 q 0.222612,0 0.297631,0.03425 0.07583,0.03343 0.113345,0.09948 0.03751,0.06605 0.03751,0.150855 0,0.06686 -0.02202,0.127207 -0.02202,0.05953 -0.06523,0.109267 -0.04322,0.04893 -0.125576,0.09296 0.150854,0.06034 0.203857,0.148408 0.05382,0.08807 0.05382,0.176133 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126391,0.121499 -0.08154,0.0424 -0.260938,0.0424 z m 0.164717,-0.695562 h 0.172871 q 0.08399,-0.03506 0.122315,-0.07339 0.03914,-0.03914 0.0579,-0.08644 0.01957,-0.04811 0.01957,-0.105191 0,-0.0897 -0.053,-0.13373 -0.05219,-0.04403 -0.204673,-0.04403 h -0.114976 z m 0,0.56917 h 0.155747 q 0.130469,0 0.192442,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116607 -0.03425,-0.05382 -0.106006,-0.0848 -0.07176,-0.0318 -0.225059,-0.0318 h -0.04566 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6150" />
+              <path
+                 d="m 61.620063,16.905326 q -0.215274,0 -0.329434,-0.181026 -0.113344,-0.18184 -0.113344,-0.490073 0,-0.307417 0.113344,-0.488442 0.11416,-0.181841 0.329434,-0.181841 0.216089,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113344,0.181026 -0.329433,0.181026 z m 0,-0.127207 q 0.119053,0 0.198149,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.198149,-0.135361 -0.119053,0 -0.198965,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198965,0.134546 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6152" />
+              <path
+                 d="m 62.62141,16.905326 q -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198964,0.134546 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6154" />
+              <path
+                 d="m 63.5404,16.867001 v -1.126109 h -0.379175 v -0.139438 h 0.923882 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6156" />
+            </g>
+            <g
+               aria-label="Menu"
+               id="text79"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 65.308576,16.867001 h -0.132915 v -1.265547 h 0.165533 l 0.291923,0.833369 0.291924,-0.833369 h 0.161455 v 1.265547 h -0.15167 v -0.80646 l 0.0041,-0.110899 h -0.0041 l -0.03588,0.110899 -0.195703,0.553676 h -0.164716 l -0.19815,-0.553676 -0.0318,-0.110899 h -0.0041 l 0.0041,0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6159" />
+              <path
+                 d="m 67.015271,16.806659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6161" />
+              <path
+                 d="m 67.259084,16.867001 v -0.910835 h 0.15167 v 0.198964 q 0.06523,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172872 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6163" />
+              <path
+                 d="m 69.009812,15.956166 v 0.910835 h -0.15167 V 16.66722 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07584 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6165" />
+            </g>
+            <g
+               aria-label="PXEXT"
+               id="text81"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 70.448232,16.405467 v 0.461534 h -0.164717 v -1.265547 h 0.314756 q 0.194072,0 0.282954,0.04403 0.08888,0.04322 0.136177,0.127207 0.04729,0.08399 0.04729,0.187549 0,0.121499 -0.0636,0.226689 -0.0636,0.105191 -0.177764,0.162271 -0.113344,0.05626 -0.308232,0.05626 z m 0,-0.126391 h 0.07094 q 0.152486,0 0.22669,-0.03914 0.0742,-0.03996 0.11416,-0.11416 0.03996,-0.0742 0.03996,-0.16064 0,-0.109267 -0.07176,-0.172871 -0.07094,-0.0636 -0.281323,-0.0636 h -0.09867 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6168" />
+              <path
+                 d="m 71.351728,16.867001 h -0.17124 l 0.370205,-0.661314 -0.334326,-0.604233 H 71.4031 l 0.242183,0.436255 0.24789,-0.436255 h 0.172056 l -0.334326,0.592002 0.373466,0.673545 H 71.914374 L 71.636313,16.36225 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6170" />
+              <path
+                 d="m 72.991557,16.727562 v 0.139439 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505566 v 0.429731 h 0.455009 v 0.126392 h -0.455009 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6172" />
+              <path
+                 d="m 73.354423,16.867001 h -0.17124 l 0.370205,-0.661314 -0.334326,-0.604233 h 0.186733 l 0.242183,0.436255 0.247891,-0.436255 h 0.172055 l -0.334326,0.592002 0.373467,0.673545 H 73.91707 L 73.639008,16.36225 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6174" />
+              <path
+                 d="m 74.563705,16.867001 v -1.126109 h -0.379174 v -0.139438 h 0.923881 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6176" />
+            </g>
+            <g
+               aria-label="net0:"
+               id="text83"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.1263916,19.038 v -0.910835 h 0.15166992 v 0.198965 q 0.0652344,-0.10519 0.15737792,-0.164717 0.0921435,-0.05953 0.18428711,-0.05953 0.0807275,0 0.14677734,0.04322 0.0660498,0.0424 0.0921436,0.111713 0.0269092,0.06931 0.0269092,0.272354 V 19.038 H 0.7338867 v -0.527583 q 0,-0.131284 -0.0130469,-0.172871 -0.0122314,-0.0424 -0.0464795,-0.06931 -0.0334326,-0.02691 -0.0733887,-0.02691 -0.0799121,0 -0.17205566,0.07584 -0.0913281,0.07583 -0.15085448,0.189995 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6179" />
+              <path
+                 d="m 1.8852734,18.977658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 1.2704395 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z M 1.2794092,18.494109 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6181" />
+              <path
+                 d="m 2.8906982,19.001306 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.1745019,-0.03669 -0.079097,-0.03669 -0.1198682,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 18.329392 H 2.0809766 V 18.203 h 0.2275048 v -0.366943 h 0.15167 V 18.203 h 0.4052685 v 0.126392 H 2.4601514 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069311,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6183" />
+              <path
+                 d="m 3.5047169,17.734943 q 0.2160889,0 0.3294336,0.181841 0.1133447,0.181026 0.1133447,0.488443 0,0.308232 -0.1133447,0.490073 -0.1133447,0.181025 -0.3294336,0.181025 -0.2152734,0 -0.3294336,-0.181025 -0.1133447,-0.181841 -0.1133447,-0.490073 0,-0.307417 0.1133447,-0.488443 0.1141602,-0.181841 0.3294336,-0.181841 z m -0.2470752,0.941006 0.4378858,-0.685776 q -0.041587,-0.07583 -0.090513,-0.101929 -0.04811,-0.02691 -0.1002979,-0.02691 -0.1361767,0 -0.2071191,0.15167 -0.070942,0.150855 -0.070942,0.383252 0,0.053 0.00326,0.11416 0.00326,0.06116 0.027725,0.165532 z m 0.4925195,-0.534922 -0.434624,0.689854 q 0.035064,0.05953 0.080728,0.0897 0.045664,0.02936 0.1019287,0.02936 0.1549316,0 0.220166,-0.172871 0.065234,-0.173687 0.065234,-0.384883 0,-0.130469 -0.033433,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6185" />
+              <path
+                 d="m 4.5060645,19.076325 q -0.054634,0 -0.093775,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093775,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093775,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093775,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6187" />
+            </g>
+            <g
+               aria-label="94:57:a5:d3:ec:f2"
+               id="text85"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 6.7752423,18.366086 q -0.058711,0.08725 -0.145962,0.1427 -0.086435,0.05463 -0.1908105,0.05463 -0.098667,0 -0.1875488,-0.0473 -0.088066,-0.04811 -0.1345459,-0.134546 -0.04648,-0.08643 -0.04648,-0.200595 0,-0.179395 0.1149756,-0.31231 0.115791,-0.133731 0.3041552,-0.133731 0.2217969,0 0.3310645,0.185918 0.110083,0.185103 0.110083,0.471319 0,0.316387 -0.1394385,0.500674 -0.1394385,0.183471 -0.3775439,0.183471 -0.1280225,0 -0.2487061,-0.03833 v -0.152485 q 0.1353614,0.0636 0.2552295,0.0636 0.1696094,0 0.2625684,-0.155747 0.092959,-0.155747 0.092959,-0.394668 z M 6.4776104,17.861335 q -0.061157,0 -0.1231299,0.03669 -0.061973,0.03588 -0.097851,0.110899 -0.035064,0.07502 -0.035064,0.164717 0,0.114975 0.059526,0.189179 0.060342,0.0742 0.1712402,0.0742 0.1149756,0 0.1883643,-0.08562 0.074204,-0.08643 0.074204,-0.20875 0,-0.123945 -0.072573,-0.202226 -0.071758,-0.0791 -0.1647168,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6190" />
+              <path
+                 d="M 7.5898565,19.038 V 18.684104 H 7.0524884 v -0.127207 l 0.5373681,-0.784444 h 0.1524854 v 0.784444 h 0.2340283 v 0.127207 H 7.7423419 V 19.038 Z m 0,-0.481103 v -0.554493 l -0.3759131,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6192" />
+              <path
+                 d="m 8.5153692,19.076325 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6194" />
+              <path
+                 d="m 9.169344,18.379948 v -0.607495 h 0.7086083 v 0.145962 H 9.3210139 v 0.309863 h 0.026094 q 0.273169,0 0.4207617,0.114161 0.1475928,0.11416 0.1475928,0.307417 0,0.122314 -0.059526,0.21935 -0.059526,0.09704 -0.1679785,0.152486 -0.1084521,0.05463 -0.2307666,0.05463 -0.1223144,0 -0.313125,-0.05953 v -0.165532 q 0.069312,0.03751 0.1549317,0.06197 0.08562,0.02365 0.1581933,0.02365 0.072573,0 0.1418848,-0.03506 0.069311,-0.03506 0.1076367,-0.101928 0.038325,-0.06768 0.038325,-0.137808 0,-0.118237 -0.1051904,-0.19978 -0.104375,-0.08236 -0.3718359,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6196" />
+              <path
+                 d="m 10.277513,19.038 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.132099,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145147,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6198" />
+              <path
+                 d="m 11.519412,19.076325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6200" />
+              <path
+                 d="m 12.745003,18.833327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6202" />
+              <path
+                 d="m 13.174735,18.379948 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167978,0.152486 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03832,-0.06768 0.03832,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6204" />
+              <path
+                 d="m 14.523455,19.076325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6206" />
+              <path
+                 d="m 15.758831,18.833327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 V 19.038 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6208" />
+              <path
+                 d="m 16.143714,19.015168 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125577,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07584 -0.305786,-0.07584 h -0.08399 v -0.126392 h 0.116606 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07583 v -0.144331 q 0.154932,-0.0579 0.28377,-0.0579 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08643 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166348,0.07991 0.05626,0.0473 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.1321,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6210" />
+              <path
+                 d="m 17.527498,19.076325 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6212" />
+              <path
+                 d="m 18.912098,18.977658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6214" />
+              <path
+                 d="m 19.922416,19.011906 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6216" />
+              <path
+                 d="m 20.531541,19.076325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6218" />
+              <path
+                 d="M 21.370618,19.038 V 18.329392 H 21.168392 V 18.203 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118238,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 V 18.203 h 0.361236 v 0.126392 H 21.522288 V 19.038 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6220" />
+              <path
+                 d="m 22.92075,19.038 h -0.765688 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194887,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6222" />
+            </g>
+            <g
+               aria-label="Using"
+               id="text87"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.10274414,19.943453 h 0.16471679 v 0.830923 q 0,0.163901 0.0269092,0.224243 0.0277246,0.05953 0.0839893,0.09133 0.0570801,0.03099 0.12639159,0.03099 0.0733887,0 0.13046875,-0.03343 0.0578955,-0.03425 0.0848047,-0.106006 0.0277246,-0.07257 0.0277246,-0.271538 v -0.766504 h 0.15166992 v 0.82603 q 0,0.176948 -0.0530029,0.277246 -0.0521875,0.09948 -0.13699218,0.150039 -0.0848047,0.05056 -0.21364257,0.05056 -0.11905273,0 -0.20956543,-0.04403 -0.0905127,-0.04403 -0.13699218,-0.1321 -0.0464795,-0.08807 -0.0464795,-0.318018 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6225" />
+              <path
+                 d="M 1.1383398,21.160889 V 21.00025 q 0.091328,0.05953 0.1932569,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149755,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023647,-0.06279 -0.023647,-0.02609 -0.1174219,-0.06442 l -0.052188,-0.0212 -0.1051904,-0.04159 Q 1.2525,20.722188 1.2084668,20.665923 q -0.044849,-0.05545 -0.044849,-0.135361 0,-0.112529 0.086436,-0.185102 0.087251,-0.07257 0.2821387,-0.07257 0.1459619,0 0.2764306,0.0424 v 0.137807 q -0.150039,-0.05382 -0.2821386,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.1027441,0.03751 q 0.1410693,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07584 -0.290293,0.07584 -0.174502,0 -0.3587891,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6227" />
+              <path
+                 d="M 2.3843164,21.209 V 20.424556 H 2.1315332 v -0.126391 h 0.4044531 v 0.784443 H 2.789585 V 21.209 Z m -0.025278,-1.239453 q 0,-0.05137 0.035064,-0.07665 0.035063,-0.02528 0.06605,-0.02528 0.031802,0 0.066865,0.02528 0.035064,0.02528 0.035064,0.07665 0,0.05056 -0.035064,0.07583 -0.035064,0.02528 -0.066865,0.02528 -0.030986,0 -0.06605,-0.02528 -0.035064,-0.02528 -0.035064,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6229" />
+              <path
+                 d="m 3.1304347,21.209 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467774,0.04322 0.06605,0.0424 0.092143,0.111714 0.026909,0.06931 0.026909,0.272354 V 21.209 H 3.7379298 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012231,-0.0424 -0.046479,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6231" />
+              <path
+                 d="m 4.7400928,21.004327 q -0.069312,0.11416 -0.1671631,0.172055 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.1614551,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524853 v 0.644189 q 0,0.229951 -0.00652,0.280508 -0.00571,0.05137 -0.01957,0.10356 -0.032617,0.121499 -0.1492237,0.191625 -0.115791,0.07013 -0.2805078,0.07013 -0.1655322,0 -0.3351416,-0.0848 v -0.153301 q 0.064419,0.04403 0.1581934,0.07747 0.09459,0.03425 0.1826562,0.03425 0.069312,0 0.1312842,-0.02202 0.061973,-0.02202 0.1002979,-0.0636 0.038325,-0.04159 0.052187,-0.09704 0.013862,-0.05463 0.013862,-0.145962 z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204672 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6233" />
+            </g>
+            <g
+               aria-label="ConnectX-3Pro"
+               id="text89"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 6.8991876,21.194322 q -0.1418848,0.053 -0.2544141,0.053 -0.1484082,0 -0.2731689,-0.0791 -0.1247608,-0.07991 -0.1940723,-0.236474 -0.069312,-0.157378 -0.069312,-0.355528 0,-0.196518 0.068496,-0.353081 0.068496,-0.156562 0.1932568,-0.23729 0.1247607,-0.08073 0.2747998,-0.08073 0.1125293,0 0.2544141,0.053 v 0.150039 q -0.1312842,-0.07584 -0.2609375,-0.07584 -0.097852,0 -0.1793946,0.06686 -0.080728,0.06686 -0.1304687,0.196518 -0.049741,0.128838 -0.049741,0.280508 0,0.154116 0.051372,0.284585 0.051372,0.130469 0.1312841,0.195703 0.079912,0.06442 0.1769483,0.06442 0.1288379,0 0.2609375,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6236" />
+              <path
+                 d="m 7.514837,21.234278 q -0.1957031,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6238" />
+              <path
+                 d="m 8.141087,21.209 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.1573779,-0.164717 0.092144,-0.05953 0.1842872,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092143,0.111714 0.026909,0.06931 0.026909,0.272354 V 21.209 H 8.7485821 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012231,-0.0424 -0.046479,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6240" />
+              <path
+                 d="m 9.1424348,21.209 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467774,0.04322 0.06605,0.0424 0.092143,0.111714 0.026909,0.06931 0.026909,0.272354 V 21.209 H 9.7499299 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012231,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6242" />
+              <path
+                 d="m 10.901316,21.148658 q -0.18184,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6244" />
+              <path
+                 d="m 11.911634,21.182906 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326171,-0.136993 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242183,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6246" />
+              <path
+                 d="m 12.908089,21.172305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119869,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 20.500391 H 12.098368 V 20.374 h 0.227504 v -0.366944 h 0.15167 V 20.374 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6248" />
+              <path
+                 d="m 13.231815,21.209 h -0.171241 l 0.370206,-0.661314 -0.334327,-0.604233 h 0.186734 l 0.242182,0.436255 0.247891,-0.436255 h 0.172056 L 13.610989,20.535455 13.984456,21.209 H 13.794461 L 13.5164,20.704249 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6250" />
+              <path
+                 d="m 14.207884,20.759698 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6252" />
+              <path
+                 d="m 15.142366,21.186168 v -0.159825 q 0.186734,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07584 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07584 -0.305786,-0.07584 h -0.08399 v -0.126391 h 0.116607 q 0.159008,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289477,0.07584 v -0.144331 q 0.154931,-0.0579 0.283769,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.171241,0.135361 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.132099,0.293555 -0.131285,0.115791 -0.340035,0.115791 -0.06034,0 -0.132099,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6254" />
+              <path
+                 d="M 16.333709,20.747466 V 21.209 h -0.164717 v -1.265547 h 0.314756 q 0.194072,0 0.282954,0.04403 0.08888,0.04322 0.136177,0.127207 0.0473,0.08399 0.0473,0.187549 0,0.121499 -0.0636,0.226689 -0.0636,0.105191 -0.177763,0.162271 -0.113345,0.05626 -0.308233,0.05626 z m 0,-0.126391 h 0.07094 q 0.152486,0 0.22669,-0.03914 0.0742,-0.03996 0.11416,-0.11416 0.03996,-0.0742 0.03996,-0.16064 0,-0.109267 -0.07176,-0.172871 -0.07094,-0.0636 -0.281323,-0.0636 h -0.09867 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6256" />
+              <path
+                 d="m 17.230681,21.209 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 H 17.76805 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6258" />
+              <path
+                 d="m 18.529662,21.234278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6260" />
+            </g>
+            <g
+               aria-label="on"
+               id="text91"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 20.54149,21.234278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6263" />
+              <path
+                 d="m 21.16774,21.209 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 21.209 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6265" />
+            </g>
+            <g
+               aria-label="PCI01:00.0"
+               id="text93"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 23.354232,20.747466 V 21.209 h -0.164717 v -1.265547 h 0.314756 q 0.194072,0 0.282954,0.04403 0.08888,0.04322 0.136177,0.127207 0.0473,0.08399 0.0473,0.187549 0,0.121499 -0.0636,0.226689 -0.0636,0.105191 -0.177763,0.162271 -0.113345,0.05626 -0.308233,0.05626 z m 0,-0.126391 h 0.07094 q 0.152486,0 0.22669,-0.03914 0.0742,-0.03996 0.11416,-0.11416 0.03996,-0.0742 0.03996,-0.16064 0,-0.109267 -0.07176,-0.172871 -0.07094,-0.0636 -0.281323,-0.0636 h -0.09867 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6268" />
+              <path
+                 d="m 24.934535,21.194322 q -0.141885,0.053 -0.254414,0.053 -0.148409,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194073,-0.236474 -0.06931,-0.157378 -0.06931,-0.355528 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131285,-0.07584 -0.260938,-0.07584 -0.09785,0 -0.179394,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130469 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6270" />
+              <path
+                 d="M 25.188949,21.209 V 21.082608 H 25.46701 V 20.07066 h -0.278061 v -0.127207 h 0.72084 v 0.127207 h -0.278062 v 1.011948 h 0.278062 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6272" />
+              <path
+                 d="m 26.550716,19.905943 q 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 z m -0.247075,0.941006 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136176,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6274" />
+              <path
+                 d="m 27.514554,21.082608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03832 -0.176948,0.07828 v -0.136993 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 V 21.209 h -0.765688 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6276" />
+              <path
+                 d="m 28.553412,21.247325 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6278" />
+              <path
+                 d="m 29.55476,19.905943 q 0.216088,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6280" />
+              <path
+                 d="m 30.556107,19.905943 q 0.216089,0 0.329434,0.181841 0.113344,0.181025 0.113344,0.488442 0,0.308233 -0.113344,0.490073 -0.113345,0.181026 -0.329434,0.181026 -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 z m -0.247075,0.941006 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154931,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6282" />
+              <path
+                 d="m 31.557455,21.247325 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6284" />
+              <path
+                 d="m 32.558802,19.905943 q 0.216089,0 0.329434,0.181841 0.113344,0.181025 0.113344,0.488442 0,0.308233 -0.113344,0.490073 -0.113345,0.181026 -0.329434,0.181026 -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 z m -0.247075,0.941006 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434625,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154931,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6286" />
+            </g>
+            <g
+               aria-label="(open)"
+               id="text95"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 34.942141,21.512339 q -0.225874,-0.01386 -0.380805,-0.128022 -0.154932,-0.113345 -0.247891,-0.306602 -0.09214,-0.193256 -0.09214,-0.387329 0,-0.194072 0.09214,-0.387329 0.09296,-0.193257 0.247891,-0.306601 0.154931,-0.11416 0.380805,-0.128838 v 0.127207 q -0.170424,0.01549 -0.293554,0.114975 -0.122315,0.09867 -0.192442,0.251968 -0.07013,0.153301 -0.07013,0.328618 0,0.175318 0.07013,0.328619 0.07013,0.1533 0.192442,0.251967 0.12313,0.09867 0.293554,0.114976 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6289" />
+              <path
+                 d="m 35.570838,21.234278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6291" />
+              <path
+                 d="m 36.337342,20.502838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.180209 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6293" />
+              <path
+                 d="m 37.95597,21.148658 q -0.181841,0.08643 -0.344112,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 H 37.8043 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6295" />
+              <path
+                 d="m 38.199783,21.209 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 21.209 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6297" />
+              <path
+                 d="m 39.202761,19.867618 q 0.225874,0.01468 0.380806,0.128838 0.154932,0.113344 0.247075,0.306601 0.09296,0.193257 0.09296,0.387329 0,0.194073 -0.09296,0.387329 -0.09214,0.193257 -0.247075,0.306602 -0.154932,0.11416 -0.380806,0.128022 v -0.126391 q 0.170425,-0.01631 0.29274,-0.114976 0.12313,-0.09867 0.193257,-0.251967 0.07094,-0.153301 0.07094,-0.328619 0,-0.175317 -0.07094,-0.328618 -0.07013,-0.153301 -0.193257,-0.251968 -0.122315,-0.09948 -0.29274,-0.114975 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6299" />
+            </g>
+            <g
+               aria-label="[Link:down,"
+               id="text97"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 2.2934775,23.683339 v -1.644722 h 0.6580517 v 0.127207 H 2.4451474 v 1.391123 h 0.5063818 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6302" />
+              <path
+                 d="m 3.8672568,23.240561 v 0.139438 H 3.1839267 v -1.265547 h 0.1647168 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6304" />
+              <path
+                 d="M 4.3883164,23.379999 V 22.595556 H 4.1355332 v -0.126392 h 0.4044531 v 0.784444 h 0.2535986 v 0.126391 z M 4.363038,22.140546 q 0,-0.05137 0.035063,-0.07665 0.035063,-0.02528 0.06605,-0.02528 0.031802,0 0.066865,0.02528 0.035064,0.02528 0.035064,0.07665 0,0.05056 -0.035064,0.07583 -0.035063,0.02528 -0.066865,0.02528 -0.030986,0 -0.06605,-0.02528 -0.035063,-0.02528 -0.035063,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6306" />
+              <path
+                 d="m 5.1344346,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.065234,-0.10519 0.1573779,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 H 5.7419298 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720556,0.07583 -0.091328,0.07584 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6308" />
+              <path
+                 d="m 6.1765537,23.379999 v -1.316103 h 0.1516699 v 0.826845 l 0.4378857,-0.421577 h 0.2022266 l -0.4370703,0.421577 0.4484863,0.489258 h -0.20875 L 6.3282236,22.890741 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6310" />
+              <path
+                 d="m 7.5114119,23.418324 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03832 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093775,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093775,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6312" />
+              <path
+                 d="m 8.7467883,23.175326 q -0.069311,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141601,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299262 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304688,0.009 0.013047,0.0016 0.039141,0.0041 v -0.405268 h 0.1524853 v 1.316103 H 8.7467883 Z m 0,-0.18021 v -0.39059 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108453 -0.092959,0.108452 -0.092959,0.295185 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6314" />
+              <path
+                 d="m 9.5149229,23.405277 q -0.1957031,0 -0.313125,-0.136176 -0.1174218,-0.136992 -0.1174218,-0.344927 0,-0.207935 0.1174218,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.1214991,0 0.1932569,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932569,-0.09459 -0.1223144,0 -0.1940722,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940722,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6316" />
+              <path
+                 d="M 10.179498,23.379999 10.03109,22.469164 h 0.141069 l 0.08644,0.554492 0.02283,0.128838 0.02202,-0.128838 0.145147,-0.554492 h 0.136177 l 0.163901,0.554492 0.02854,0.128838 0.01876,-0.128838 0.08725,-0.554492 h 0.116606 l -0.147592,0.910835 h -0.141885 l -0.174502,-0.586294 -0.02773,-0.128838 h -0.0041 l -0.02528,0.128023 -0.15167,0.587109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6318" />
+              <path
+                 d="m 11.14252,23.379999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6320" />
+              <path
+                 d="m 12.363218,23.733896 v -0.101114 q 0.05871,-0.01549 0.08888,-0.04485 0.03099,-0.02854 0.04893,-0.07339 0.01876,-0.04403 0.01876,-0.106821 -0.07583,0 -0.111714,-0.0424 -0.03588,-0.04322 -0.03588,-0.09214 0,-0.05626 0.03996,-0.09459 0.03996,-0.03914 0.09296,-0.03914 0.0685,0 0.118238,0.05953 0.04974,0.05871 0.04974,0.161455 0,0.0897 -0.03914,0.168794 -0.03914,0.07991 -0.106821,0.136177 -0.06686,0.05626 -0.163902,0.0685 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6322" />
+            </g>
+            <g
+               aria-label="TX:0"
+               id="text99"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 14.446315,23.379999 v -1.126108 h -0.379174 v -0.139439 h 0.923881 v 0.139439 h -0.37999 v 1.126108 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6325" />
+              <path
+                 d="m 15.239728,23.379999 h -0.17124 l 0.370205,-0.661313 -0.334326,-0.604234 H 15.2911 l 0.242183,0.436255 0.247891,-0.436255 h 0.172055 l -0.334326,0.592002 0.373467,0.673545 h -0.189995 l -0.278062,-0.504751 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6327" />
+              <path
+                 d="m 16.531369,23.418324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6329" />
+              <path
+                 d="m 17.532717,22.076943 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02773,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6331" />
+            </g>
+            <g
+               aria-label="TXE:0"
+               id="text101"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 19.456316,23.379999 v -1.126108 h -0.379175 v -0.139439 h 0.923882 v 0.139439 h -0.379991 v 1.126108 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6334" />
+              <path
+                 d="m 20.249729,23.379999 h -0.171241 l 0.370205,-0.661313 -0.334326,-0.604234 h 0.186734 l 0.242182,0.436255 0.247891,-0.436255 h 0.172056 l -0.334327,0.592002 0.373467,0.673545 h -0.189995 l -0.278061,-0.504751 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6336" />
+              <path
+                 d="m 21.889558,23.240561 v 0.139438 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505567 v 0.429732 h 0.45501 v 0.126391 h -0.45501 v 0.442779 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6338" />
+              <path
+                 d="m 22.542717,23.418324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6340" />
+              <path
+                 d="m 23.544065,22.076943 q 0.216088,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247076,0.941005 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6342" />
+            </g>
+            <g
+               aria-label="RX:0"
+               id="text103"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 25.336215,22.842631 v 0.537368 h -0.164717 v -1.265547 h 0.338404 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.05789 -0.144331,0.110083 l 0.366128,0.591186 h -0.195704 l -0.335141,-0.537368 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114975,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.14107 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6345" />
+              <path
+                 d="m 26.261728,23.379999 h -0.17124 l 0.370205,-0.661313 -0.334327,-0.604234 H 26.3131 l 0.242182,0.436255 0.247891,-0.436255 h 0.172056 l -0.334326,0.592002 0.373466,0.673545 h -0.189995 l -0.278061,-0.504751 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6347" />
+              <path
+                 d="m 27.553368,23.418324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6349" />
+              <path
+                 d="m 28.554716,22.076943 q 0.216089,0 0.329434,0.18184 0.113344,0.181026 0.113344,0.488443 0,0.308232 -0.113344,0.490073 -0.113345,0.181025 -0.329434,0.181025 -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 z m -0.247075,0.941005 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02773,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154931,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6351" />
+            </g>
+            <g
+               aria-label="RXE:0]"
+               id="text105"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 30.346215,22.842631 v 0.537368 h -0.164717 v -1.265547 h 0.338404 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.05789 -0.144331,0.110083 l 0.366128,0.591186 h -0.195703 l -0.335142,-0.537368 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114975,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.14107 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6354" />
+              <path
+                 d="m 31.271728,23.379999 h -0.17124 l 0.370205,-0.661313 -0.334326,-0.604234 H 31.3231 l 0.242183,0.436255 0.24789,-0.436255 h 0.172056 l -0.334326,0.592002 0.373467,0.673545 h -0.189996 l -0.278061,-0.504751 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6356" />
+              <path
+                 d="m 32.911557,23.240561 v 0.139438 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505566 v 0.429732 h 0.45501 v 0.126391 h -0.45501 v 0.442779 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6358" />
+              <path
+                 d="m 33.564716,23.418324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6360" />
+              <path
+                 d="m 34.566064,22.076943 q 0.216089,0 0.329434,0.18184 0.113344,0.181026 0.113344,0.488443 0,0.308232 -0.113344,0.490073 -0.113345,0.181025 -0.329434,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113344,-0.181841 -0.113344,-0.490073 0,-0.307417 0.113344,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02773,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6362" />
+              <path
+                 d="m 35.779423,22.038617 v 1.644722 h -0.658052 v -0.126392 h 0.506382 v -1.391123 h -0.506382 v -0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6364" />
+            </g>
+            <g
+               aria-label="Configuring"
+               id="text107"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.88718748,25.536323 q -0.14188476,0.053 -0.25441406,0.053 -0.1484082,0 -0.27316894,-0.0791 Q 0.23484374,25.430317 0.16553222,25.273755 0.0962207,25.116377 0.0962207,24.918227 q 0,-0.196518 0.06849609,-0.353081 0.0684961,-0.156562 0.19325683,-0.23729 0.12476074,-0.08073 0.2747998,-0.08073 0.1125293,0 0.25441406,0.053 v 0.15004 q -0.13128418,-0.07584 -0.2609375,-0.07584 -0.0978516,0 -0.17939452,0.06686 -0.0807275,0.06686 -0.13046875,0.196518 -0.0497412,0.128838 -0.0497412,0.280508 0,0.154116 0.0513721,0.284585 0.0513721,0.130469 0.13128418,0.195703 0.0799121,0.06442 0.17694823,0.06442 0.12883789,0 0.2609375,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6367" />
+              <path
+                 d="m 1.5028369,25.576279 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,25.30311 1.07229,25.095175 q 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6369" />
+              <path
+                 d="m 2.1290869,25.551001 v -0.910835 h 0.1516699 v 0.198964 q 0.065234,-0.10519 0.157378,-0.164716 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508829 H 2.736582 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012231,-0.0424 -0.046479,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6371" />
+              <path
+                 d="M 3.3424464,25.551001 V 24.842392 H 3.1402199 v -0.126391 h 0.2022265 v -0.0424 q 0,-0.18021 0.040771,-0.266645 0.040771,-0.08644 0.1255762,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.1060058,0 0.2152734,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.2095654,-0.03914 -0.072573,0 -0.1280225,0.02691 -0.055449,0.02691 -0.087251,0.08807 -0.030986,0.06034 -0.030986,0.205489 v 0.05871 h 0.3612354 v 0.126391 H 3.4941163 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6373" />
+              <path
+                 d="M 4.3870117,25.551001 V 24.766557 H 4.1342285 v -0.126391 h 0.4044531 v 0.784443 h 0.2535987 v 0.126392 z m -0.025278,-1.239453 q 0,-0.05137 0.035063,-0.07665 0.035063,-0.02528 0.06605,-0.02528 0.031802,0 0.066865,0.02528 0.035064,0.02528 0.035064,0.07665 0,0.05056 -0.035064,0.07583 -0.035063,0.02528 -0.066865,0.02528 -0.030986,0 -0.06605,-0.02528 -0.035063,-0.02528 -0.035063,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6375" />
+              <path
+                 d="m 5.7414403,25.346328 q -0.069311,0.11416 -0.1671631,0.172055 -0.097036,0.0579 -0.1785791,0.0579 -0.1141601,0 -0.2054882,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.161455,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304688,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524854 v 0.644189 q 0,0.229951 -0.00652,0.280508 -0.00571,0.05137 -0.01957,0.103559 -0.032617,0.121499 -0.1492236,0.191626 -0.115791,0.07013 -0.2805078,0.07013 -0.1655322,0 -0.3351416,-0.0848 V 25.69207 q 0.064419,0.04403 0.1581933,0.07747 0.09459,0.03425 0.1826563,0.03425 0.069311,0 0.1312842,-0.02202 0.061973,-0.02202 0.1002978,-0.0636 0.038325,-0.04159 0.052188,-0.09704 0.013862,-0.05463 0.013862,-0.145962 z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.150039,-0.0212 -0.1402539,0 -0.2340284,0.108452 -0.092959,0.108452 -0.092959,0.295185 0,0.135362 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6377" />
+              <path
+                 d="m 6.8838577,24.640166 v 0.910835 h -0.15167 V 25.35122 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092143,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092144,-0.07583 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6379" />
+              <path
+                 d="m 7.2132912,25.551001 v -0.910835 h 0.1516699 v 0.198964 q 0.070942,-0.112529 0.1622705,-0.167978 0.092143,-0.05626 0.2046728,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 7.7506593 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663476,0.06686 -0.081543,0.06686 -0.1590088,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6381" />
+              <path
+                 d="M 8.3924024,25.551001 V 24.766557 H 8.1396192 v -0.126391 h 0.4044531 v 0.784443 h 0.2535986 v 0.126392 z m -0.025278,-1.239453 q 0,-0.05137 0.035063,-0.07665 0.035063,-0.02528 0.06605,-0.02528 0.031802,0 0.066865,0.02528 0.035063,0.02528 0.035063,0.07665 0,0.05056 -0.035063,0.07583 -0.035063,0.02528 -0.066865,0.02528 -0.030986,0 -0.06605,-0.02528 -0.035063,-0.02528 -0.035063,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6383" />
+              <path
+                 d="m 9.1385204,25.551001 v -0.910835 h 0.1516699 v 0.198964 q 0.065234,-0.10519 0.157378,-0.164716 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508829 H 9.7460155 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6385" />
+              <path
+                 d="m 10.748179,25.346328 q -0.06931,0.11416 -0.167164,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280507,0.07013 -0.165533,0 -0.335142,-0.0848 V 25.69207 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182657,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6387" />
+            </g>
+            <g
+               aria-label="(net0"
+               id="text109"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 12.898141,25.85434 q -0.225874,-0.01386 -0.380806,-0.128022 -0.154932,-0.113345 -0.247891,-0.306602 -0.09214,-0.193256 -0.09214,-0.387329 0,-0.194072 0.09214,-0.387329 0.09296,-0.193257 0.247891,-0.306601 0.154932,-0.11416 0.380806,-0.128838 v 0.127207 q -0.170425,0.01549 -0.293555,0.114975 -0.122314,0.09867 -0.192441,0.251968 -0.07013,0.153301 -0.07013,0.328618 0,0.175318 0.07013,0.328618 0.07013,0.153301 0.192441,0.251968 0.12313,0.09867 0.293555,0.114976 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6390" />
+              <path
+                 d="m 13.151739,25.551001 v -0.910835 h 0.15167 v 0.198964 q 0.06523,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.151669 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6392" />
+              <path
+                 d="m 14.910621,25.490659 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6394" />
+              <path
+                 d="m 15.916046,25.514306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119869,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227504 v -0.126391 h 0.227504 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6396" />
+              <path
+                 d="m 16.530065,24.247944 q 0.216088,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685777 q -0.04159,-0.07583 -0.09051,-0.101928 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101929,0.02935 0.154932,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6398" />
+            </g>
+            <g
+               aria-label="94:57:a5:d3:ec:f2)..............................."
+               id="text111"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 18.799241,24.879087 q -0.05871,0.08725 -0.145961,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179395 0.114975,-0.31231 0.115791,-0.13373 0.304156,-0.13373 0.221797,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183472 -0.377544,0.183472 -0.128023,0 -0.248706,-0.03833 v -0.152486 q 0.135361,0.0636 0.255229,0.0636 0.16961,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z M 18.50161,24.374336 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164716,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6401" />
+              <path
+                 d="m 19.613856,25.551001 v -0.353897 h -0.537368 v -0.127207 l 0.537368,-0.784443 h 0.152485 v 0.784443 h 0.234028 v 0.127207 h -0.234028 v 0.353897 z m 0,-0.481104 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6403" />
+              <path
+                 d="m 20.539368,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6405" />
+              <path
+                 d="m 21.193343,24.892949 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147592,0.11416 0.147592,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107636,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.105191,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6407" />
+              <path
+                 d="m 22.301512,25.551001 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110898 0.121499,-0.17124 l 0.132099,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 H 22.17512 v -0.152485 h 0.803199 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.21935 -0.02935,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6409" />
+              <path
+                 d="m 23.543411,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6411" />
+              <path
+                 d="m 24.769002,25.346328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6413" />
+              <path
+                 d="m 25.198734,24.892949 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313124,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6415" />
+              <path
+                 d="m 26.547454,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6417" />
+              <path
+                 d="m 27.78283,25.346328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152486 v 1.316104 H 27.78283 Z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6419" />
+              <path
+                 d="m 28.167713,25.528169 v -0.159825 q 0.186733,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07584 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126391 h 0.116606 q 0.159009,0 0.229952,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07584 v -0.144332 q 0.154932,-0.05789 0.28377,-0.05789 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07584 -0.17124,0.135361 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.1321,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6421" />
+              <path
+                 d="m 29.551497,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6423" />
+              <path
+                 d="m 30.936097,25.490659 q -0.18184,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6425" />
+              <path
+                 d="m 31.946415,25.524907 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326171,-0.136993 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242183,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6427" />
+              <path
+                 d="m 32.555541,25.589326 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6429" />
+              <path
+                 d="m 33.394618,25.551001 v -0.708609 h -0.202227 v -0.126391 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118238,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 v 0.05871 h 0.361235 v 0.126391 h -0.361235 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6431" />
+              <path
+                 d="m 34.944749,25.551001 h -0.765688 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138624 0.06197,-0.07665 0.131284,-0.147592 l 0.08644,-0.08807 q 0.02609,-0.02691 0.114161,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181026,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119869,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6433" />
+              <path
+                 d="m 35.186933,24.209619 q 0.225874,0.01468 0.380805,0.128838 0.154932,0.113344 0.247076,0.306601 0.09296,0.193257 0.09296,0.387329 0,0.194073 -0.09296,0.387329 -0.09214,0.193257 -0.247076,0.306602 -0.154931,0.11416 -0.380805,0.128022 v -0.126391 q 0.170425,-0.01631 0.292739,-0.114976 0.12313,-0.09867 0.193257,-0.251968 0.07094,-0.1533 0.07094,-0.328618 0,-0.175317 -0.07094,-0.328618 -0.07013,-0.153301 -0.193257,-0.251968 -0.122314,-0.09948 -0.292739,-0.114975 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6435" />
+              <path
+                 d="m 36.560931,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6437" />
+              <path
+                 d="m 37.562279,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6439" />
+              <path
+                 d="m 38.563626,25.589326 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6441" />
+              <path
+                 d="m 39.564974,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6443" />
+              <path
+                 d="m 40.566321,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6445" />
+              <path
+                 d="m 41.567669,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6447" />
+              <path
+                 d="m 42.569018,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6449" />
+              <path
+                 d="m 43.570365,25.589326 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6451" />
+              <path
+                 d="m 44.571713,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6453" />
+              <path
+                 d="m 45.57306,25.589326 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6455" />
+              <path
+                 d="m 46.574408,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6457" />
+              <path
+                 d="m 47.575755,25.589326 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6459" />
+              <path
+                 d="m 48.577103,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6461" />
+              <path
+                 d="m 49.57845,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6463" />
+              <path
+                 d="m 50.579798,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6465" />
+              <path
+                 d="m 51.581145,25.589326 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6467" />
+              <path
+                 d="m 52.582495,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6469" />
+              <path
+                 d="m 53.583842,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6471" />
+              <path
+                 d="m 54.585188,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6473" />
+              <path
+                 d="m 55.586535,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6475" />
+              <path
+                 d="m 56.587885,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6477" />
+              <path
+                 d="m 57.589232,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6479" />
+              <path
+                 d="m 58.590579,25.589326 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6481" />
+              <path
+                 d="m 59.591929,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6483" />
+              <path
+                 d="m 60.593276,25.589326 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6485" />
+              <path
+                 d="m 61.594622,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6487" />
+              <path
+                 d="m 62.595969,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6489" />
+              <path
+                 d="m 63.597319,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6491" />
+              <path
+                 d="m 64.598666,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6493" />
+              <path
+                 d="m 65.600012,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6495" />
+              <path
+                 d="m 66.601363,25.589326 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6497" />
+            </g>
+            <g
+               aria-label="ok"
+               id="text113"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 68.637491,25.576279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117421,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6500" />
+              <path
+                 d="m 69.304512,25.551001 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6502" />
+            </g>
+            <g
+               aria-label="net0:"
+               id="text115"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.1263916,27.722 v -0.910835 h 0.15166992 v 0.198965 q 0.0652344,-0.10519 0.15737792,-0.164717 0.0921435,-0.05953 0.18428711,-0.05953 0.0807275,0 0.14677734,0.04322 0.0660498,0.0424 0.0921436,0.111714 0.0269092,0.06931 0.0269092,0.272353 V 27.722 H 0.7338867 v -0.527583 q 0,-0.131284 -0.0130469,-0.172871 -0.0122314,-0.0424 -0.0464795,-0.06931 -0.0334326,-0.02691 -0.0733887,-0.02691 -0.0799121,0 -0.17205566,0.07583 -0.0913281,0.07584 -0.15085448,0.189995 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6505" />
+              <path
+                 d="m 1.8852734,27.661658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 1.2704395 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z M 1.2794092,27.178109 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6507" />
+              <path
+                 d="m 2.8906982,27.685306 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.1745019,-0.03669 -0.079097,-0.03669 -0.1198682,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 27.013392 H 2.0809766 V 26.887 h 0.2275048 v -0.366943 h 0.15167 V 26.887 h 0.4052685 v 0.126392 H 2.4601514 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069311,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6509" />
+              <path
+                 d="m 3.5047169,26.418944 q 0.2160889,0 0.3294336,0.18184 0.1133447,0.181026 0.1133447,0.488443 0,0.308232 -0.1133447,0.490073 -0.1133447,0.181025 -0.3294336,0.181025 -0.2152734,0 -0.3294336,-0.181025 -0.1133447,-0.181841 -0.1133447,-0.490073 0,-0.307417 0.1133447,-0.488443 0.1141602,-0.18184 0.3294336,-0.18184 z m -0.2470752,0.941005 0.4378858,-0.685776 q -0.041587,-0.07584 -0.090513,-0.101929 -0.04811,-0.02691 -0.1002979,-0.02691 -0.1361767,0 -0.2071191,0.15167 -0.070942,0.150855 -0.070942,0.383252 0,0.053 0.00326,0.11416 0.00326,0.06116 0.027725,0.165532 z m 0.4925195,-0.534922 -0.434624,0.689854 q 0.035064,0.05953 0.080728,0.0897 0.045664,0.02936 0.1019287,0.02936 0.1549316,0 0.220166,-0.172871 0.065234,-0.173687 0.065234,-0.384883 0,-0.130469 -0.033433,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6511" />
+              <path
+                 d="m 4.5060645,27.760325 q -0.054634,0 -0.093775,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093775,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093775,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093775,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6513" />
+            </g>
+            <g
+               aria-label="10.28.36.173/255.255.0.0"
+               id="text117"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 6.4751641,27.595609 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 V 26.652972 Q 6.34388,26.577137 6.4751641,26.456453 h 0.15167 v 1.139156 H 6.9309893 V 27.722 H 6.1653009 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6516" />
+              <path
+                 d="m 7.5140216,26.418944 q 0.2160888,0 0.3294335,0.18184 0.1133448,0.181026 0.1133448,0.488443 0,0.308232 -0.1133448,0.490073 -0.1133447,0.181025 -0.3294335,0.181025 -0.2152735,0 -0.3294336,-0.181025 -0.1133447,-0.181841 -0.1133447,-0.490073 0,-0.307417 0.1133447,-0.488443 0.1141601,-0.18184 0.3294336,-0.18184 z m -0.2470752,0.941005 0.4378857,-0.685776 q -0.041587,-0.07584 -0.090513,-0.101929 -0.04811,-0.02691 -0.1002978,-0.02691 -0.1361768,0 -0.2071192,0.15167 -0.070942,0.150855 -0.070942,0.383252 0,0.053 0.00326,0.11416 0.00326,0.06116 0.027725,0.165532 z m 0.4925195,-0.534922 -0.434624,0.689854 q 0.035063,0.05953 0.080728,0.0897 0.045664,0.02936 0.1019287,0.02936 0.1549317,0 0.220166,-0.172871 0.065234,-0.173687 0.065234,-0.384883 0,-0.130469 -0.033433,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6518" />
+              <path
+                 d="m 8.5153692,27.760325 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6520" />
+              <path
+                 d="M 9.9032307,27.722 H 9.1375422 v -0.139438 q 0,-0.05382 0.022017,-0.114976 0.022017,-0.06197 0.083989,-0.138623 0.061973,-0.07665 0.1312841,-0.147593 l 0.086436,-0.08807 q 0.026094,-0.02691 0.1141601,-0.124761 0.088066,-0.09785 0.1157911,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.065234,-0.125576 -0.065234,-0.04485 -0.1467773,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.1002979,0.02528 -0.043218,0.01386 -0.1402539,0.0579 v -0.134546 q 0.1027442,-0.04893 0.2054883,-0.06687 0.1035596,-0.01875 0.1704248,-0.01875 0.098667,0 0.1810254,0.03262 0.083174,0.0318 0.1231299,0.09948 0.040771,0.06768 0.040771,0.144331 0,0.08562 -0.052188,0.175318 -0.051372,0.0897 -0.1948877,0.230766 l -0.092959,0.09214 -0.078281,0.07665 q -0.074204,0.07502 -0.1198681,0.145147 -0.045664,0.07013 -0.050557,0.167163 h 0.6083106 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6522" />
+              <path
+                 d="m 10.391673,27.039485 -0.02773,-0.02038 q -0.0579,-0.04077 -0.113344,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01876,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.19978,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393038 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02935,-0.05871 0.02935,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.0473,0.05463 -0.0473,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159008,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6524" />
+              <path
+                 d="m 11.519412,27.760325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6526" />
+              <path
+                 d="m 12.138324,27.699168 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125576,0 0.207119,-0.07584 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126392 h 0.116606 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134545,0 -0.289477,0.07583 v -0.144331 q 0.154932,-0.05789 0.283769,-0.05789 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.16227 -0.04648,0.07584 -0.17124,0.135362 0.110083,0.03262 0.166347,0.07991 0.05626,0.0473 0.08481,0.111714 0.02935,0.06442 0.02935,0.144331 0,0.177763 -0.132099,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6528" />
+              <path
+                 d="m 13.259539,27.128367 q 0.05871,-0.08725 0.145147,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109267,-0.185918 -0.109267,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.16961,0 -0.262569,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114975,0 -0.189179,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123946 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6530" />
+              <path
+                 d="m 14.523455,27.760325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6532" />
+              <path
+                 d="m 15.487293,27.595609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 V 27.722 H 15.17743 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6534" />
+              <path
+                 d="m 16.285599,27.722 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6536" />
+              <path
+                 d="m 17.145061,27.699168 v -0.159824 q 0.186734,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07584 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126392 h 0.116607 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.05789,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289477,0.07583 v -0.144331 q 0.154931,-0.05789 0.283769,-0.05789 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.16227 -0.04648,0.07584 -0.171241,0.135362 0.110083,0.03262 0.166348,0.07991 0.05627,0.0473 0.08481,0.111714 0.02935,0.06442 0.02935,0.144331 0,0.177763 -0.132099,0.293554 -0.131285,0.115791 -0.340035,0.115791 -0.06034,0 -0.132099,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6538" />
+              <path
+                 d="m 18.204305,27.760325 h -0.149223 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6540" />
+              <path
+                 d="m 19.916708,27.722 h -0.765689 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06524,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102745,-0.04893 0.205489,-0.06687 0.103559,-0.01875 0.170424,-0.01875 0.09867,0 0.181026,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6542" />
+              <path
+                 d="m 20.184168,27.063948 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.114161 0.147592,0.11416 0.147592,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167978,0.152486 -0.108453,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03832,-0.06768 0.03832,-0.137808 0,-0.118237 -0.105191,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6544" />
+              <path
+                 d="m 21.185516,27.063948 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6546" />
+              <path
+                 d="m 22.534236,27.760325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6548" />
+              <path
+                 d="M 23.922099,27.722 H 23.15641 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102745,-0.04893 0.205489,-0.06687 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6550" />
+              <path
+                 d="m 24.189559,27.063948 v -0.607495 h 0.708608 v 0.145962 h -0.556939 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167978,0.152486 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.105191,-0.19978 -0.104375,-0.08236 -0.371835,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6552" />
+              <path
+                 d="m 25.190907,27.063948 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141884,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6554" />
+              <path
+                 d="m 26.539627,27.760325 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6556" />
+              <path
+                 d="m 27.540975,26.418944 q 0.216089,0 0.329434,0.18184 0.113344,0.181026 0.113344,0.488443 0,0.308232 -0.113344,0.490073 -0.113345,0.181025 -0.329434,0.181025 -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 z m -0.247075,0.941005 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02773,0.165532 z m 0.492519,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154931,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6558" />
+              <path
+                 d="m 28.542322,27.760325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6560" />
+              <path
+                 d="m 29.54367,26.418944 q 0.216089,0 0.329434,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 z m -0.247075,0.941005 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02773,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154931,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6562" />
+            </g>
+            <g
+               aria-label="gw"
+               id="text119"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 31.796702,27.517327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280507,0.07013 -0.165533,0 -0.335142,-0.08481 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182657,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6565" />
+              <path
+                 d="m 32.228065,27.722 -0.148408,-0.910835 h 0.141069 l 0.08644,0.554492 0.02283,0.128838 0.02202,-0.128838 0.145147,-0.554492 h 0.136176 l 0.163902,0.554492 0.02854,0.128838 0.01875,-0.128838 0.08725,-0.554492 h 0.116606 L 32.900794,27.722 h -0.141885 l -0.174502,-0.586294 -0.02772,-0.128838 h -0.0041 l -0.02528,0.128023 -0.15167,0.587109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6567" />
+            </g>
+            <g
+               aria-label="10.28.0.1"
+               id="text121"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 34.531165,27.595609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 H 34.98699 V 27.722 h -0.765688 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6570" />
+              <path
+                 d="m 35.570022,26.418944 q 0.216089,0 0.329434,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 z m -0.247075,0.941005 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136176,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154931,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6572" />
+              <path
+                 d="m 36.57137,27.760325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6574" />
+              <path
+                 d="m 37.959231,27.722 h -0.765688 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.114161,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06524,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205489,-0.06687 0.103559,-0.01875 0.170424,-0.01875 0.09867,0 0.181026,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119869,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6576" />
+              <path
+                 d="m 38.447674,27.039485 -0.02772,-0.02038 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393038 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.0848 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6578" />
+              <path
+                 d="m 39.575413,27.760325 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6580" />
+              <path
+                 d="m 40.576761,26.418944 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113344,-0.181841 -0.113344,-0.490073 0,-0.307417 0.113344,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02773,0.165532 z m 0.492519,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6582" />
+              <path
+                 d="m 41.578108,27.760325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6584" />
+              <path
+                 d="m 42.541946,27.595609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 V 27.722 h -0.765688 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6586" />
+            </g>
+            <g
+               aria-label="net0:"
+               id="text123"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.1263916,29.893 v -0.910835 h 0.15166992 v 0.198965 q 0.0652344,-0.105191 0.15737792,-0.164717 0.0921435,-0.05953 0.18428711,-0.05953 0.0807275,0 0.14677734,0.04322 0.0660498,0.0424 0.0921436,0.111714 0.0269092,0.06931 0.0269092,0.272354 V 29.893 H 0.7338867 v -0.527583 q 0,-0.131285 -0.0130469,-0.172871 -0.0122314,-0.0424 -0.0464795,-0.06931 -0.0334326,-0.02691 -0.0733887,-0.02691 -0.0799121,0 -0.17205566,0.07584 -0.0913281,0.07583 -0.15085448,0.189995 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6589" />
+              <path
+                 d="m 1.8852734,29.832658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 1.2704395 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6591" />
+              <path
+                 d="m 2.8906982,29.856305 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.1745019,-0.03669 -0.079097,-0.0367 -0.1198682,-0.108453 -0.039956,-0.07176 -0.039956,-0.221796 V 29.184391 H 2.0809766 V 29.058 h 0.2275048 v -0.366944 h 0.15167 V 29.058 h 0.4052685 v 0.126391 H 2.4601514 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069311,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6593" />
+              <path
+                 d="m 3.5047169,28.589943 q 0.2160889,0 0.3294336,0.181841 0.1133447,0.181025 0.1133447,0.488442 0,0.308233 -0.1133447,0.490073 -0.1133447,0.181026 -0.3294336,0.181026 -0.2152734,0 -0.3294336,-0.181026 -0.1133447,-0.18184 -0.1133447,-0.490073 0,-0.307417 0.1133447,-0.488442 0.1141602,-0.181841 0.3294336,-0.181841 z m -0.2470752,0.941006 0.4378858,-0.685776 q -0.041587,-0.07583 -0.090513,-0.101929 -0.04811,-0.02691 -0.1002979,-0.02691 -0.1361767,0 -0.2071191,0.15167 -0.070942,0.150854 -0.070942,0.383252 0,0.053 0.00326,0.11416 0.00326,0.06116 0.027725,0.165532 z m 0.4925195,-0.534922 -0.434624,0.689854 q 0.035064,0.05953 0.080728,0.0897 0.045664,0.02935 0.1019287,0.02935 0.1549316,0 0.220166,-0.172871 0.065234,-0.173686 0.065234,-0.384883 0,-0.130468 -0.033433,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6595" />
+              <path
+                 d="m 4.5060645,29.931325 q -0.054634,0 -0.093775,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093775,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708609 q -0.054634,0 -0.093775,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093775,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03832 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6597" />
+            </g>
+            <g
+               aria-label="fe80::9657:a5ff:fed3:ecf2/64"
+               id="text125"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 6.3504034,29.893 V 29.184391 H 6.1481768 V 29.058 h 0.2022266 v -0.0424 q 0,-0.18021 0.040771,-0.266645 0.040771,-0.08644 0.1255761,-0.141885 0.08562,-0.05545 0.2258741,-0.05545 0.1060058,0 0.2152734,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.2095654,-0.03914 -0.072573,0 -0.1280225,0.02691 -0.055449,0.02691 -0.087251,0.08807 -0.030986,0.06034 -0.030986,0.205489 V 29.058 h 0.3612354 v 0.126391 H 6.5020733 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6600" />
+              <path
+                 d="m 7.8972735,29.832658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 7.2824395 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6602" />
+              <path
+                 d="m 8.3889776,29.210485 -0.027725,-0.02039 q -0.057895,-0.04077 -0.1133447,-0.119868 -0.055449,-0.07991 -0.055449,-0.175317 0,-0.126392 0.099482,-0.215274 0.099482,-0.0897 0.2527832,-0.0897 0.093774,0 0.1687939,0.03425 0.07502,0.03343 0.115791,0.09948 0.040771,0.06605 0.040771,0.144331 0,0.05382 -0.018755,0.104375 -0.018755,0.04974 -0.056265,0.09948 -0.036694,0.04893 -0.1467773,0.138623 l 0.068496,0.05463 q 0.1198682,0.09785 0.1614551,0.168794 0.041587,0.07094 0.041587,0.159009 0,0.136992 -0.099482,0.238105 -0.099482,0.100298 -0.2984472,0.100298 -0.1997803,0 -0.2992627,-0.09378 -0.099482,-0.09459 -0.099482,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.1557471,-0.07747 q 0.1149756,-0.08725 0.1435156,-0.145962 0.029355,-0.05871 0.029355,-0.109267 0,-0.06116 -0.053818,-0.110899 -0.053818,-0.05056 -0.138623,-0.05056 -0.091328,0 -0.1394385,0.05463 -0.047295,0.05463 -0.047295,0.113345 0,0.05708 0.039956,0.107637 0.039956,0.05056 0.1280225,0.113345 z m -0.041587,0.158194 q -0.2152735,0.165532 -0.2152735,0.309863 0,0.08562 0.070942,0.144331 0.070942,0.05871 0.1679785,0.05871 0.088882,0 0.1590088,-0.05626 0.070127,-0.05626 0.070127,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.084805,-0.0848 -0.1182373,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6604" />
+              <path
+                 d="m 9.516717,28.589943 q 0.2160889,0 0.3294336,0.181841 0.1133447,0.181025 0.1133447,0.488442 0,0.308233 -0.1133447,0.490073 -0.1133447,0.181026 -0.3294336,0.181026 -0.2152734,0 -0.3294336,-0.181026 -0.1133447,-0.18184 -0.1133447,-0.490073 0,-0.307417 0.1133447,-0.488442 0.1141602,-0.181841 0.3294336,-0.181841 z m -0.2470752,0.941006 0.4378857,-0.685776 q -0.041587,-0.07583 -0.090513,-0.101929 -0.04811,-0.02691 -0.1002979,-0.02691 -0.1361768,0 -0.2071191,0.15167 -0.070942,0.150854 -0.070942,0.383252 0,0.053 0.00326,0.11416 0.00326,0.06116 0.027725,0.165532 z m 0.4925195,-0.534922 -0.434624,0.689854 q 0.035063,0.05953 0.080728,0.0897 0.045664,0.02935 0.1019287,0.02935 0.1549316,0 0.220166,-0.172871 0.065234,-0.173686 0.065234,-0.384883 0,-0.130468 -0.033433,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6606" />
+              <path
+                 d="m 10.518065,29.931325 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6608" />
+              <path
+                 d="m 11.519412,29.931325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6610" />
+              <path
+                 d="m 12.783328,29.221086 q -0.05871,0.08725 -0.145961,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187549,-0.0473 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114975,-0.312309 0.115791,-0.133731 0.304156,-0.133731 0.221797,0 0.331064,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183472 -0.377544,0.183472 -0.128023,0 -0.248706,-0.03833 v -0.152486 q 0.135361,0.0636 0.255229,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297631,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164716,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6612" />
+              <path
+                 d="m 13.259539,29.299367 q 0.05871,-0.08725 0.145147,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109267,-0.185918 -0.109267,-0.472133 0,-0.316387 0.139438,-0.499859 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.16961,0 -0.262569,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114975,0 -0.189179,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6614" />
+              <path
+                 d="m 14.176082,29.234948 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147592,0.11416 0.147592,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107636,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6616" />
+              <path
+                 d="m 15.284251,29.893 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110898 0.121499,-0.17124 l 0.132099,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.656421 v -0.152485 h 0.803199 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.08481,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6618" />
+              <path
+                 d="m 16.52615,29.931325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6620" />
+              <path
+                 d="m 17.751741,29.688327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6622" />
+              <path
+                 d="m 18.181473,29.234948 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147592,0.11416 0.147592,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167978,0.152485 -0.108453,0.05463 -0.230767,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107636,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.105191,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6624" />
+              <path
+                 d="M 19.367923,29.893 V 29.184391 H 19.165697 V 29.058 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 V 29.058 h 0.361236 v 0.126391 H 19.519593 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6626" />
+              <path
+                 d="M 20.369271,29.893 V 29.184391 H 20.167044 V 29.058 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125577,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106005,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 V 29.058 h 0.361235 v 0.126391 H 20.520941 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6628" />
+              <path
+                 d="m 21.532889,29.931325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6630" />
+              <path
+                 d="M 22.371966,29.893 V 29.184391 H 22.169739 V 29.058 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125577,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106005,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 V 29.058 h 0.361235 v 0.126391 H 22.523636 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6632" />
+              <path
+                 d="m 23.918837,29.832658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6634" />
+              <path
+                 d="m 24.77096,29.688327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 V 29.893 H 24.77096 Z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6636" />
+              <path
+                 d="m 25.155844,29.870168 v -0.159825 q 0.186733,0.09459 0.323725,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07584 -0.305786,-0.07584 h -0.08399 v -0.126391 h 0.116606 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.05789,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289477,0.07583 v -0.144331 q 0.154931,-0.0579 0.283769,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.17124,0.135361 0.110083,0.03262 0.166347,0.07991 0.05626,0.04729 0.0848,0.111714 0.02935,0.06442 0.02935,0.144331 0,0.177764 -0.132099,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6638" />
+              <path
+                 d="m 26.539627,29.931325 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6640" />
+              <path
+                 d="m 27.924227,29.832658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6642" />
+              <path
+                 d="m 28.934543,29.866906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242182,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6644" />
+              <path
+                 d="M 29.3814,29.893 V 29.184391 H 29.179173 V 29.058 H 29.3814 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 V 29.058 h 0.361235 v 0.126391 H 29.53307 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6646" />
+              <path
+                 d="m 30.931532,29.893 h -0.765688 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08643,-0.08807 q 0.02609,-0.02691 0.114161,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06524,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205489,-0.06686 0.103559,-0.01875 0.170424,-0.01875 0.09867,0 0.181026,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119869,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6648" />
+              <path
+                 d="m 31.221824,29.931325 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6650" />
+              <path
+                 d="m 32.285145,29.299367 q 0.05871,-0.08725 0.145147,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114975,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109267,-0.185918 -0.109267,-0.472133 0,-0.316387 0.139438,-0.499859 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.16961,0 -0.262569,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170424,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6652" />
+              <path
+                 d="m 33.624895,29.893 v -0.353897 h -0.537368 v -0.127207 l 0.537368,-0.784443 h 0.152486 v 0.784443 h 0.234028 v 0.127207 H 33.777381 V 29.893 Z m 0,-0.481104 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6654" />
+            </g>
+            <g
+               aria-label="net1:"
+               id="text127"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.1263916,32.063999 v -0.910835 h 0.15166992 v 0.198965 q 0.0652344,-0.10519 0.15737792,-0.164717 0.0921435,-0.05953 0.18428711,-0.05953 0.0807275,0 0.14677734,0.04322 0.0660498,0.0424 0.0921436,0.111714 0.0269092,0.06931 0.0269092,0.272353 v 0.508828 H 0.7338867 v -0.527583 q 0,-0.131284 -0.0130469,-0.172871 -0.0122314,-0.0424 -0.0464795,-0.06931 -0.0334326,-0.02691 -0.0733887,-0.02691 -0.0799121,0 -0.17205566,0.07584 -0.0913281,0.07584 -0.15085448,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6657" />
+              <path
+                 d="m 1.8852734,32.003657 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 1.2704395 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z M 1.2794092,31.520108 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6659" />
+              <path
+                 d="m 2.8906982,32.027305 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.1745019,-0.03669 -0.079097,-0.03669 -0.1198682,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 31.355391 H 2.0809766 v -0.126392 h 0.2275048 v -0.366943 h 0.15167 v 0.366943 h 0.4052685 v 0.126392 H 2.4601514 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069311,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6661" />
+              <path
+                 d="m 3.4672072,31.937608 v -0.976885 q -0.068496,0.05463 -0.1329151,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136992 q 0.1785791,-0.07583 0.3098633,-0.196519 h 0.1516699 v 1.139156 h 0.3041552 v 0.126391 H 3.1573439 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6663" />
+              <path
+                 d="m 4.5060645,32.102324 q -0.054634,0 -0.093775,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093775,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093775,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093775,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6665" />
+            </g>
+            <g
+               aria-label="fe80::9657:a5ff:fed3:ecf3/64"
+               id="text129"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 6.3504034,32.063999 V 31.355391 H 6.1481768 v -0.126392 h 0.2022266 v -0.0424 q 0,-0.18021 0.040771,-0.266646 0.040771,-0.08644 0.1255761,-0.141884 0.08562,-0.05545 0.2258741,-0.05545 0.1060058,0 0.2152734,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.2095654,-0.03914 -0.072573,0 -0.1280225,0.02691 -0.055449,0.02691 -0.087251,0.08807 -0.030986,0.06034 -0.030986,0.205488 v 0.05871 h 0.3612354 v 0.126392 H 6.5020733 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6668" />
+              <path
+                 d="m 7.8972735,32.003657 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2824395 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2914093,31.520108 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6670" />
+              <path
+                 d="m 8.3889776,31.381485 -0.027725,-0.02039 q -0.057895,-0.04077 -0.1133447,-0.119868 -0.055449,-0.07991 -0.055449,-0.175318 0,-0.126391 0.099482,-0.215273 0.099482,-0.0897 0.2527832,-0.0897 0.093774,0 0.1687939,0.03425 0.07502,0.03343 0.115791,0.09948 0.040771,0.06605 0.040771,0.144331 0,0.05382 -0.018755,0.104375 -0.018755,0.04974 -0.056265,0.09948 -0.036694,0.04893 -0.1467773,0.138623 l 0.068496,0.05463 q 0.1198682,0.09785 0.1614551,0.168794 0.041587,0.07094 0.041587,0.159009 0,0.136992 -0.099482,0.238106 -0.099482,0.100297 -0.2984472,0.100297 -0.1997803,0 -0.2992627,-0.09377 -0.099482,-0.09459 -0.099482,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.1557471,-0.07747 q 0.1149756,-0.08725 0.1435156,-0.145962 0.029355,-0.05871 0.029355,-0.109268 0,-0.06116 -0.053818,-0.110898 -0.053818,-0.05056 -0.138623,-0.05056 -0.091328,0 -0.1394385,0.05463 -0.047295,0.05463 -0.047295,0.113345 0,0.05708 0.039956,0.107636 0.039956,0.05056 0.1280225,0.113345 z m -0.041587,0.158193 q -0.2152735,0.165532 -0.2152735,0.309863 0,0.08562 0.070942,0.144331 0.070942,0.05871 0.1679785,0.05871 0.088882,0 0.1590088,-0.05626 0.070127,-0.05626 0.070127,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.084805,-0.08481 -0.1182373,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6672" />
+              <path
+                 d="m 9.516717,30.760943 q 0.2160889,0 0.3294336,0.18184 0.1133447,0.181026 0.1133447,0.488443 0,0.308232 -0.1133447,0.490073 -0.1133447,0.181025 -0.3294336,0.181025 -0.2152734,0 -0.3294336,-0.181025 -0.1133447,-0.181841 -0.1133447,-0.490073 0,-0.307417 0.1133447,-0.488443 0.1141602,-0.18184 0.3294336,-0.18184 z m -0.2470752,0.941005 0.4378857,-0.685776 q -0.041587,-0.07584 -0.090513,-0.101929 -0.04811,-0.02691 -0.1002979,-0.02691 -0.1361768,0 -0.2071191,0.15167 -0.070942,0.150855 -0.070942,0.383252 0,0.053 0.00326,0.11416 0.00326,0.06116 0.027725,0.165532 z m 0.4925195,-0.534921 -0.434624,0.689853 q 0.035063,0.05953 0.080728,0.0897 0.045664,0.02936 0.1019287,0.02936 0.1549316,0 0.220166,-0.172871 0.065234,-0.173687 0.065234,-0.384883 0,-0.130469 -0.033433,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6674" />
+              <path
+                 d="m 10.518065,32.102324 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6676" />
+              <path
+                 d="m 11.519412,32.102324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6678" />
+              <path
+                 d="m 12.783328,31.392085 q -0.05871,0.08725 -0.145961,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114975,-0.31231 0.115791,-0.13373 0.304156,-0.13373 0.221797,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183471 -0.377544,0.183471 -0.128023,0 -0.248706,-0.03833 v -0.152485 q 0.135361,0.0636 0.255229,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297631,-0.504751 q -0.06116,0 -0.12313,0.0367 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.07421 0.17124,0.07421 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164716,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6680" />
+              <path
+                 d="m 13.259539,31.470366 q 0.05871,-0.08725 0.145147,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109267,-0.185918 -0.109267,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.16961,0 -0.262569,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07584 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114975,0 -0.189179,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6682" />
+              <path
+                 d="m 14.176082,31.405947 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309864 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147592,0.11416 0.147592,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107636,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6684" />
+              <path
+                 d="m 15.284251,32.063999 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110899 0.121499,-0.171241 l 0.132099,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803199 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145147,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.08481,0.119053 q -0.08154,0.114975 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6686" />
+              <path
+                 d="m 16.52615,32.102324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6688" />
+              <path
+                 d="m 17.751741,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6690" />
+              <path
+                 d="m 18.181473,31.405947 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309864 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147592,0.11416 0.147592,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167978,0.152486 -0.108453,0.05463 -0.230767,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107636,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.105191,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6692" />
+              <path
+                 d="m 19.367923,32.063999 v -0.708608 h -0.202226 v -0.126392 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361236 v 0.126392 h -0.361236 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6694" />
+              <path
+                 d="m 20.369271,32.063999 v -0.708608 h -0.202227 v -0.126392 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125577,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106005,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126392 h -0.361235 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6696" />
+              <path
+                 d="m 21.532889,32.102324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6698" />
+              <path
+                 d="m 22.371966,32.063999 v -0.708608 h -0.202227 v -0.126392 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125577,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106005,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126392 h -0.361235 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6700" />
+              <path
+                 d="m 23.918837,32.003657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6702" />
+              <path
+                 d="m 24.77096,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 H 24.77096 Z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6704" />
+              <path
+                 d="m 25.155844,32.041167 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125576,0 0.207119,-0.07584 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07584 -0.305786,-0.07584 h -0.08399 v -0.126392 h 0.116606 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.05789,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289477,0.07584 v -0.144331 q 0.154931,-0.05789 0.283769,-0.05789 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08643 -0.04648,0.16227 -0.04648,0.07584 -0.17124,0.135362 0.110083,0.03262 0.166347,0.07991 0.05626,0.04729 0.0848,0.111714 0.02935,0.06442 0.02935,0.144331 0,0.177763 -0.132099,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6706" />
+              <path
+                 d="m 26.539627,32.102324 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6708" />
+              <path
+                 d="m 27.924227,32.003657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6710" />
+              <path
+                 d="m 28.934543,32.037905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6712" />
+              <path
+                 d="M 29.3814,32.063999 V 31.355391 H 29.179173 V 31.228999 H 29.3814 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126392 H 29.53307 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6714" />
+              <path
+                 d="m 30.162582,32.041167 v -0.159824 q 0.186734,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07584 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07584 -0.305787,-0.07584 h -0.08399 v -0.126392 h 0.116607 q 0.159008,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289477,0.07584 v -0.144331 q 0.154931,-0.05789 0.283769,-0.05789 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08643 -0.04648,0.16227 -0.04648,0.07584 -0.171241,0.135362 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02935,0.06442 0.02935,0.144331 0,0.177763 -0.1321,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.132099,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6716" />
+              <path
+                 d="m 31.221824,32.102324 h -0.149223 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6718" />
+              <path
+                 d="m 32.285145,31.470366 q 0.05871,-0.08725 0.145147,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114975,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109267,-0.185918 -0.109267,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.16961,0 -0.262569,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07584 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170424,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6720" />
+              <path
+                 d="m 33.624895,32.063999 v -0.353896 h -0.537368 v -0.127207 l 0.537368,-0.784444 h 0.152486 v 0.784444 h 0.234028 v 0.127207 h -0.234028 v 0.353896 z m 0,-0.481103 v -0.554493 l -0.375913,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6722" />
+            </g>
+            <g
+               aria-label="(inaccessible)"
+               id="text131"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 35.94414,32.367339 q -0.225874,-0.01386 -0.380805,-0.128022 -0.154932,-0.113345 -0.247891,-0.306602 -0.09214,-0.193257 -0.09214,-0.387329 0,-0.194072 0.09214,-0.387329 0.09296,-0.193257 0.247891,-0.306602 0.154931,-0.11416 0.380805,-0.128838 v 0.127207 q -0.170425,0.01549 -0.293554,0.114976 -0.122315,0.09867 -0.192442,0.251968 -0.07013,0.153301 -0.07013,0.328618 0,0.175317 0.07013,0.328618 0.07013,0.153301 0.192442,0.251968 0.123129,0.09867 0.293554,0.114975 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6725" />
+              <path
+                 d="m 36.452968,32.063999 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6727" />
+              <path
+                 d="m 37.199087,32.063999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157377,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6729" />
+              <path
+                 d="m 38.79896,31.859326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 H 38.8275 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6731" />
+              <path
+                 d="m 39.968286,32.037905 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106005,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6733" />
+              <path
+                 d="m 40.969633,32.037905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07746,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6735" />
+              <path
+                 d="m 41.962012,32.003657 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6737" />
+              <path
+                 d="m 42.216426,32.015889 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172872,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6739" />
+              <path
+                 d="m 43.217773,32.015889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6741" />
+              <path
+                 d="m 44.46375,32.063999 v -0.784443 h -0.252784 v -0.126392 h 0.404454 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6743" />
+              <path
+                 d="m 45.350122,31.357837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.151669,0.0212 0.137808,0 0.231583,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6745" />
+              <path
+                 d="m 46.455844,32.063999 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6747" />
+              <path
+                 d="m 47.970098,32.003657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6749" />
+              <path
+                 d="m 48.215542,30.722617 q 0.225874,0.01468 0.380806,0.128838 0.154931,0.113345 0.247075,0.306602 0.09296,0.193257 0.09296,0.387329 0,0.194072 -0.09296,0.387329 -0.09214,0.193257 -0.247075,0.306602 -0.154932,0.11416 -0.380806,0.128022 v -0.126392 q 0.170425,-0.01631 0.292739,-0.114975 0.12313,-0.09867 0.193257,-0.251968 0.07094,-0.153301 0.07094,-0.328618 0,-0.175317 -0.07094,-0.328618 -0.07013,-0.153301 -0.193257,-0.251968 -0.122314,-0.09948 -0.292739,-0.114976 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6751" />
+            </g>
+            <g
+               aria-label="Next"
+               id="text133"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.25441406,34.235001 H 0.10274414 v -1.265547 h 0.1484082 l 0.44767088,0.842339 0.0489258,0.125576 h 0.004077 L 0.747749,33.811793 v -0.842339 h 0.15166992 v 1.265547 H 0.747749 l -0.43543944,-0.828477 -0.0611572,-0.132915 0.003262,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6754" />
+              <path
+                 d="m 1.8852734,34.174659 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 1.2704395 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6756" />
+              <path
+                 d="M 2.2236768,34.235001 H 2.0483594 L 2.406333,33.757974 2.0720068,33.324166 h 0.1940723 l 0.23729,0.305786 0.2307666,-0.305786 h 0.1720557 l -0.3163867,0.419131 0.3759131,0.491704 H 2.7708301 L 2.493584,33.872134 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6758" />
+              <path
+                 d="m 3.892046,34.198306 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.174502,-0.03669 -0.079097,-0.0367 -0.1198681,-0.108453 -0.039956,-0.07176 -0.039956,-0.221796 V 33.526392 H 3.0823244 v -0.126391 h 0.2275048 v -0.366944 h 0.1516699 v 0.366944 h 0.4052686 v 0.126391 H 3.4614991 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069311,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6760" />
+            </g>
+            <g
+               aria-label="server:"
+               id="text135"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 5.1469924,34.18689 v -0.160639 q 0.091328,0.05953 0.1932568,0.08399 0.1019288,0.02365 0.1728711,0.02365 0.1149756,0 0.1655323,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023647,-0.02609 -0.1174218,-0.06442 l -0.052187,-0.0212 -0.1051905,-0.04159 q -0.1696093,-0.06605 -0.2136425,-0.122315 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.112529 0.086436,-0.185102 0.087251,-0.07257 0.2821386,-0.07257 0.145962,0 0.2764307,0.0424 v 0.137807 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027442,0.03751 q 0.1410693,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07583 -0.2902929,0.07583 -0.174502,0 -0.3587891,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6763" />
+              <path
+                 d="m 6.8952736,34.174659 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057896,-0.11416 -0.057896,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 6.2804397 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6765" />
+              <path
+                 d="m 7.216553,34.235001 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092143,-0.05626 0.2046728,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 7.7539211 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663476,0.06686 -0.081543,0.06686 -0.1590088,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6767" />
+              <path
+                 d="M 8.4364359,34.235001 8.0409525,33.324166 h 0.1663477 l 0.3123095,0.720839 0.318833,-0.720839 h 0.1516699 l -0.3987451,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6769" />
+              <path
+                 d="m 9.8993166,34.174659 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057896,-0.11416 -0.057896,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 9.2844827 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6771" />
+              <path
+                 d="m 10.220596,34.235001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6773" />
+              <path
+                 d="m 11.51876,34.273326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6775" />
+            </g>
+            <g
+               aria-label="10.28.36.67"
+               id="text137"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 13.489164,34.108609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136993 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 h -0.765688 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6778" />
+              <path
+                 d="m 14.528021,32.931944 q 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 z m -0.247075,0.941006 0.437886,-0.685777 q -0.04159,-0.07583 -0.09051,-0.101928 -0.04811,-0.02691 -0.100298,-0.02691 -0.136176,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383251 0,0.053 0.0033,0.114161 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6780" />
+              <path
+                 d="m 15.529369,34.273326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6782" />
+              <path
+                 d="m 16.917231,34.235001 h -0.765689 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06523,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102745,-0.04893 0.205489,-0.06686 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6784" />
+              <path
+                 d="m 17.405673,33.552486 -0.02773,-0.02039 q -0.05789,-0.04077 -0.113344,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144332 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159008 0,0.136993 -0.09948,0.238106 -0.09948,0.100298 -0.298447,0.100298 -0.19978,0 -0.299263,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02935,-0.05871 0.02935,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.0473,0.05463 -0.0473,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158194 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.08481 -0.118237,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6786" />
+              <path
+                 d="m 18.533412,34.273326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6788" />
+              <path
+                 d="m 19.152324,34.212169 v -0.159825 q 0.186733,0.09459 0.323725,0.09459 0.125576,0 0.207119,-0.07584 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126391 h 0.116606 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289477,0.07584 V 32.98984 q 0.154931,-0.0579 0.283769,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.17124,0.135361 0.110083,0.03262 0.166347,0.07991 0.05626,0.0473 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.132099,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6790" />
+              <path
+                 d="m 20.273539,33.641368 q 0.05871,-0.08725 0.145147,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109267,-0.185918 -0.109267,-0.472134 0,-0.316386 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.16961,0 -0.262569,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114975,0 -0.189179,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6792" />
+              <path
+                 d="m 21.537455,34.273326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6794" />
+              <path
+                 d="m 22.276234,33.641368 q 0.05871,-0.08725 0.145147,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109267,-0.185918 -0.109267,-0.472134 0,-0.316386 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.16961,0 -0.262569,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114975,0 -0.189179,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6796" />
+              <path
+                 d="m 23.299598,34.235001 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110898 0.121499,-0.17124 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.656421 v -0.152485 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.21935 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6798" />
+            </g>
+            <g
+               aria-label="Filename:"
+               id="text139"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.18510253,36.405998 v -1.265547 h 0.69556151 v 0.127207 H 0.34981933 V 35.69739 H 0.8301074 v 0.126391 H 0.34981933 v 0.582217 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6801" />
+              <path
+                 d="M 1.3829687,36.405998 V 35.621555 H 1.1301855 v -0.126392 h 0.4044532 v 0.784444 h 0.2535986 v 0.126391 z m -0.025278,-1.239453 q 0,-0.05137 0.035063,-0.07665 0.035063,-0.02528 0.06605,-0.02528 0.031802,0 0.066865,0.02528 0.035063,0.02528 0.035063,0.07665 0,0.05056 -0.035063,0.07583 -0.035063,0.02528 -0.066865,0.02528 -0.030986,0 -0.06605,-0.02528 -0.035063,-0.02528 -0.035063,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6803" />
+              <path
+                 d="M 2.3737158,36.405998 V 35.217102 H 2.1013623 v -0.127207 h 0.4240234 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6805" />
+              <path
+                 d="m 3.8879689,36.345656 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 3.2731349 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 3.2821046,35.862107 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.145962,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6807" />
+              <path
+                 d="m 4.1317822,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.065234,-0.10519 0.1573779,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012231,-0.0424 -0.046479,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07583 -0.1508544,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6809" />
+              <path
+                 d="m 5.7316552,36.201325 q -0.069312,0.114161 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524853 v 0.643374 q 0,0.164717 0.034248,0.267461 H 5.7601952 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108453 -0.092959,0.108452 -0.092959,0.295185 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166065,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6811" />
+              <path
+                 d="m 6.0659817,36.405998 v -0.910835 h 0.132915 v 0.20875 q 0.062788,-0.132915 0.1166065,-0.183471 0.054634,-0.05056 0.110083,-0.05056 0.06605,0 0.1060059,0.05219 0.040771,0.05137 0.040771,0.146778 v 0.04893 q 0.026909,-0.08317 0.064419,-0.134546 0.038325,-0.05219 0.079097,-0.08236 0.040771,-0.03099 0.093774,-0.03099 0.058711,0 0.1002978,0.04974 0.041587,0.04974 0.041587,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.00489,-0.104375 -0.00489,-0.02854 -0.01957,-0.04322 -0.014678,-0.01468 -0.031802,-0.01468 -0.042402,0 -0.091328,0.06523 -0.04811,0.06442 -0.098667,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.023648,-0.141885 -0.023647,-0.0212 -0.042402,-0.0212 -0.041587,0 -0.089697,0.07257 -0.047295,0.07257 -0.090513,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6813" />
+              <path
+                 d="m 7.8933595,36.345656 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 7.2874953,35.862107 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6815" />
+              <path
+                 d="m 8.5114551,36.444323 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6817" />
+            </g>
+            <g
+               aria-label="ltsp/grub/i386-pc/core.0"
+               id="text141"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 10.391021,36.405998 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6820" />
+              <path
+                 d="m 11.909351,36.369304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 35.69739 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6822" />
+              <path
+                 d="m 12.159688,36.357888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.151669,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6824" />
+              <path
+                 d="m 13.290689,35.699836 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6826" />
+              <path
+                 d="M 14.201524,36.444323 H 14.0523 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6828" />
+              <path
+                 d="m 15.761441,36.201325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149223,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335142,-0.08481 v -0.1533 q 0.06442,0.04403 0.158194,0.07746 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03832,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6830" />
+              <path
+                 d="m 16.231944,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6832" />
+              <path
+                 d="m 17.905206,35.495163 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6834" />
+              <path
+                 d="m 18.297427,35.699836 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6836" />
+              <path
+                 d="m 19.208262,36.444323 h -0.149224 l 0.80483,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6838" />
+              <path
+                 d="m 20.415098,36.405998 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6840" />
+              <path
+                 d="m 21.153062,36.383166 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07584 -0.305786,-0.07584 h -0.08399 v -0.126392 h 0.116606 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.05789,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07584 v -0.144331 q 0.154932,-0.0579 0.28377,-0.0579 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166347,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.1321,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6842" />
+              <path
+                 d="m 22.410455,35.723484 -0.02773,-0.02039 q -0.05789,-0.04077 -0.113344,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01876,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238106 -0.09948,0.100297 -0.298447,0.100297 -0.19978,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159008,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6844" />
+              <path
+                 d="m 23.275626,35.812365 q 0.05871,-0.08725 0.145146,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186734,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139439,-0.499858 0.139438,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135362,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165533,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6846" />
+              <path
+                 d="m 24.22397,35.956696 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6848" />
+              <path
+                 d="m 25.306861,35.699836 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6850" />
+              <path
+                 d="m 26.934459,36.379904 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6852" />
+              <path
+                 d="m 27.219044,36.444323 h -0.149223 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6854" />
+              <path
+                 d="m 28.937154,36.379904 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6856" />
+              <path
+                 d="m 29.547096,36.431277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117421,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6858" />
+              <path
+                 d="m 30.250811,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6860" />
+              <path
+                 d="m 31.932227,36.345656 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6862" />
+              <path
+                 d="m 32.550322,36.444323 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6864" />
+              <path
+                 d="m 33.551671,35.102942 q 0.216088,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247076,0.941005 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6866" />
+            </g>
+            <g
+               aria-label="tftp://10.28.36.67/ltsp/grub/i386-pc/core.0..."
+               id="text143"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.88800291,38.540305 q -0.10682129,0.04485 -0.15493164,0.053 -0.0481104,0.009 -0.092959,0.009 -0.0954053,0 -0.17450195,-0.03669 -0.0790967,-0.0367 -0.11986816,-0.108452 -0.0399561,-0.07176 -0.0399561,-0.221797 V 37.868391 H 0.07828125 V 37.742 H 0.30578612 V 37.375056 H 0.45745604 V 37.742 h 0.40526855 v 0.126391 H 0.45745604 v 0.364497 q 0,0.110083 0.0260937,0.155747 0.0260938,0.04485 0.0693115,0.06605 0.0440332,0.0212 0.10355957,0.0212 0.11008301,0 0.23158203,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6869" />
+              <path
+                 d="M 1.339751,38.577 V 37.868391 H 1.1375244 V 37.742 H 1.339751 v -0.0424 q 0,-0.18021 0.040772,-0.266645 0.040771,-0.08644 0.1255761,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.1060059,0 0.2152735,0.02202 v 0.144332 q -0.1182373,-0.03914 -0.2095655,-0.03914 -0.072573,0 -0.1280224,0.02691 -0.055449,0.02691 -0.087251,0.08807 -0.030986,0.06034 -0.030986,0.205489 V 37.742 h 0.3612353 v 0.126391 H 1.4914209 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6871" />
+              <path
+                 d="m 2.8906982,38.540305 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.1745019,-0.03669 -0.079097,-0.0367 -0.1198682,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 37.868391 H 2.0809766 V 37.742 h 0.2275048 v -0.366944 h 0.15167 V 37.742 h 0.4052685 v 0.126391 H 2.4601514 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069311,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6873" />
+              <path
+                 d="m 3.2706886,37.870838 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353896 H 3.1190187 v -1.264731 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6875" />
+              <path
+                 d="m 4.5060645,38.615325 q -0.054634,0 -0.093775,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093775,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708609 q -0.054634,0 -0.093775,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093775,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6877" />
+              <path
+                 d="M 5.182871,38.615325 H 5.0336474 l 0.804829,-1.341382 h 0.1443311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6879" />
+              <path
+                 d="M 6.184219,38.615325 H 6.0349954 l 0.8048291,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6881" />
+              <path
+                 d="m 7.4725978,38.450608 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769483,0.07828 v -0.136993 q 0.1785791,-0.07583 0.3098633,-0.196518 h 0.1516699 v 1.139155 H 7.928423 V 38.577 H 7.1627345 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6883" />
+              <path
+                 d="m 8.5114551,37.273943 q 0.2160889,0 0.3294336,0.181841 0.1133447,0.181025 0.1133447,0.488442 0,0.308233 -0.1133447,0.490073 -0.1133447,0.181026 -0.3294336,0.181026 -0.2152734,0 -0.3294336,-0.181026 -0.1133447,-0.18184 -0.1133447,-0.490073 0,-0.307417 0.1133447,-0.488442 0.1141602,-0.181841 0.3294336,-0.181841 z m -0.2470752,0.941006 0.4378857,-0.685776 q -0.041587,-0.07583 -0.090513,-0.101929 -0.04811,-0.02691 -0.1002979,-0.02691 -0.1361768,0 -0.2071191,0.15167 -0.070942,0.150854 -0.070942,0.383252 0,0.053 0.00326,0.11416 0.00326,0.06116 0.027725,0.165532 z m 0.4925195,-0.534922 -0.434624,0.689854 q 0.035063,0.05953 0.080728,0.0897 0.045664,0.02936 0.1019287,0.02936 0.1549316,0 0.220166,-0.172871 0.065234,-0.173686 0.065234,-0.384883 0,-0.130468 -0.033433,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6885" />
+              <path
+                 d="m 9.5128026,38.615325 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093775,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6887" />
+              <path
+                 d="m 10.900664,38.577 h -0.765689 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6889" />
+              <path
+                 d="m 11.389106,37.894485 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01876,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.19978,0 -0.299263,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.0473,0.05463 -0.0473,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158194 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05627 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6891" />
+              <path
+                 d="m 12.516846,38.615325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6893" />
+              <path
+                 d="m 13.135757,38.554168 v -0.159825 q 0.186734,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07584 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126391 h 0.116607 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.05789,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289477,0.07584 v -0.144331 q 0.154931,-0.0579 0.283769,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.171241,0.135361 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.132099,0.293555 -0.131285,0.115791 -0.340035,0.115791 -0.06034,0 -0.132099,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6895" />
+              <path
+                 d="m 14.256973,37.983367 q 0.05871,-0.08725 0.145146,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186734,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109268,-0.185918 -0.109268,-0.472133 0,-0.316387 0.139439,-0.499859 0.139438,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135362,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114975,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6897" />
+              <path
+                 d="m 15.520889,38.615325 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6899" />
+              <path
+                 d="m 16.259668,37.983367 q 0.05871,-0.08725 0.145147,-0.141885 0.08725,-0.05545 0.191625,-0.05545 0.09867,0 0.186734,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109268,-0.185918 -0.109268,-0.472133 0,-0.316387 0.139439,-0.499859 0.139438,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114975,0 -0.189179,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6901" />
+              <path
+                 d="m 17.283033,38.577 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110898 0.121499,-0.17124 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.65642 v -0.152485 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6903" />
+              <path
+                 d="m 18.20039,38.615325 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6905" />
+              <path
+                 d="m 19.396627,38.577 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6907" />
+              <path
+                 d="m 20.914956,38.540305 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 37.868391 H 20.105234 V 37.742 h 0.227505 v -0.366944 h 0.15167 V 37.742 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6909" />
+              <path
+                 d="M 21.165293,38.528889 V 38.36825 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174501,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6911" />
+              <path
+                 d="m 22.296293,37.870838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.17858,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6913" />
+              <path
+                 d="m 23.207129,38.615325 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6915" />
+              <path
+                 d="m 24.767047,38.372327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6917" />
+              <path
+                 d="m 25.237549,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6919" />
+              <path
+                 d="M 26.910811,37.666165 V 38.577 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163085,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6921" />
+              <path
+                 d="m 27.303032,37.870838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6923" />
+              <path
+                 d="m 28.213868,38.615325 h -0.149224 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6925" />
+              <path
+                 d="m 29.420703,38.577 v -0.784444 h -0.252784 v -0.126391 h 0.404454 v 0.784443 h 0.253598 V 38.577 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6927" />
+              <path
+                 d="m 30.158667,38.554168 v -0.159825 q 0.186734,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07584 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126391 h 0.116607 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.05789,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289477,0.07584 v -0.144331 q 0.154931,-0.0579 0.283769,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.171241,0.135361 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02935,0.06442 0.02935,0.144331 0,0.177764 -0.132099,0.293555 -0.131285,0.115791 -0.340035,0.115791 -0.06034,0 -0.132099,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6929" />
+              <path
+                 d="m 31.416059,37.894485 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113344,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01876,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.19978,0 -0.299263,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02935,-0.05871 0.02935,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.0473,0.05463 -0.0473,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158194 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05627 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6931" />
+              <path
+                 d="m 32.281231,37.983367 q 0.05871,-0.08725 0.145146,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185103 -0.109268,-0.185918 -0.109268,-0.472133 0,-0.316387 0.139438,-0.499859 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6933" />
+              <path
+                 d="m 33.229574,38.127698 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6935" />
+              <path
+                 d="m 34.312468,37.870838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6937" />
+              <path
+                 d="m 35.940064,38.550906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6939" />
+              <path
+                 d="m 36.224648,38.615325 h -0.149224 l 0.80483,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6941" />
+              <path
+                 d="m 37.942757,38.550906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6943" />
+              <path
+                 d="m 38.552702,38.602278 q -0.195704,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6945" />
+              <path
+                 d="m 39.256416,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6947" />
+              <path
+                 d="m 40.937831,38.516658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6949" />
+              <path
+                 d="m 41.55593,38.615325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6951" />
+              <path
+                 d="m 42.557276,37.273943 q 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 z m -0.247075,0.941006 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136176,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154931,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6953" />
+              <path
+                 d="m 43.558623,38.615325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6955" />
+              <path
+                 d="m 44.559969,38.615325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6957" />
+              <path
+                 d="m 45.56132,38.615325 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6959" />
+            </g>
+            <g
+               aria-label="ok"
+               id="text145"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 47.595491,38.602278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117421,0.136177 0.117421,0.344111 0,0.207935 -0.117421,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6962" />
+              <path
+                 d="m 48.262513,38.577 v -1.316104 h 0.151669 v 0.826846 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 L 48.414182,38.087742 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6964" />
+            </g>
+            <g
+               aria-label="core.0"
+               id="text147"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.89289548,40.721907 q -0.15248534,0.05137 -0.29029296,0.05137 -0.13699218,0 -0.24381347,-0.06279 -0.10600585,-0.0636 -0.16553222,-0.17124 -0.0595264,-0.108452 -0.0595264,-0.24626 0,-0.207119 0.13454589,-0.344111 0.13536132,-0.136992 0.32617187,-0.136992 0.14106933,0 0.29844725,0.053 v 0.145962 q -0.15900878,-0.07257 -0.28458495,-0.07257 -0.0831738,0 -0.15656249,0.04159 -0.0733887,0.04077 -0.11334473,0.128023 -0.0399561,0.08725 -0.0399561,0.179394 0,0.12313 0.0766504,0.234844 0.0774658,0.111714 0.24218261,0.111714 0.0497412,0 0.0978516,-0.0065 0.0481104,-0.0073 0.17776366,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6967" />
+              <path
+                 d="m 1.5028369,40.773279 q -0.1957031,0 -0.313125,-0.136176 Q 1.07229,40.50011 1.07229,40.292176 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207934 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6969" />
+              <path
+                 d="m 2.2065527,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167979 0.092143,-0.05626 0.2046728,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 2.7439209 V 39.95785 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590087,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6971" />
+              <path
+                 d="m 3.8879689,40.687659 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 3.2731349 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 3.2821046,40.20411 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.145962,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6973" />
+              <path
+                 d="m 4.5060645,40.786326 q -0.054634,0 -0.093775,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093775,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6975" />
+              <path
+                 d="m 5.507412,39.444944 q 0.2160889,0 0.3294336,0.181841 0.1133447,0.181026 0.1133447,0.488443 0,0.308232 -0.1133447,0.490073 -0.1133447,0.181025 -0.3294336,0.181025 -0.2152734,0 -0.3294336,-0.181025 -0.1133447,-0.181841 -0.1133447,-0.490073 0,-0.307417 0.1133447,-0.488443 0.1141602,-0.181841 0.3294336,-0.181841 z M 5.2603368,40.38595 5.6982225,39.700174 q -0.041587,-0.07583 -0.090513,-0.101929 -0.04811,-0.02691 -0.1002979,-0.02691 -0.1361768,0 -0.2071191,0.15167 -0.070942,0.150854 -0.070942,0.383252 0,0.053 0.00326,0.11416 0.00326,0.06116 0.027725,0.165532 z m 0.4925195,-0.534922 -0.434624,0.689854 q 0.035063,0.05953 0.080728,0.0897 0.045664,0.02936 0.1019287,0.02936 0.1549316,0 0.220166,-0.172871 0.065234,-0.173687 0.065234,-0.384883 0,-0.130469 -0.033433,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6977" />
+            </g>
+            <g
+               aria-label=":"
+               id="text149"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 7.5146738,40.786326 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6980" />
+            </g>
+            <g
+               aria-label="48395"
+               id="text151"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 9.5945084,40.748001 V 40.394105 H 9.0571403 v -0.127207 l 0.5373681,-0.784444 h 0.1524854 v 0.784444 h 0.2340283 v 0.127207 H 9.7469938 v 0.353896 z m 0,-0.481103 v -0.554493 l -0.3759131,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6983" />
+              <path
+                 d="m 10.39363,40.065486 -0.02773,-0.02038 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252784,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01876,0.104375 -0.01876,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.265831,-0.393038 z m 0.155747,-0.07746 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.0473,0.05463 -0.0473,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.0848 -0.118238,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6985" />
+              <path
+                 d="m 11.138932,40.725169 v -0.159824 q 0.186734,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126392 h 0.116607 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289477,0.07583 V 39.50284 q 0.154931,-0.0579 0.283769,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.16227 -0.04648,0.07583 -0.171241,0.135362 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.132099,0.293554 -0.131285,0.115791 -0.340035,0.115791 -0.06034,0 -0.132099,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6987" />
+              <path
+                 d="m 12.785285,40.076087 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187548,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114976,-0.31231 0.115791,-0.133731 0.304155,-0.133731 0.221797,0 0.331065,0.185918 0.110083,0.185103 0.110083,0.471319 0,0.316387 -0.139439,0.500674 -0.139438,0.183471 -0.377544,0.183471 -0.128022,0 -0.248706,-0.03833 v -0.152485 q 0.135361,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114975,0 0.188364,-0.08562 0.0742,-0.08643 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6989" />
+              <path
+                 d="m 13.176691,40.089949 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420761,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107636,-0.101928 0.03832,-0.06768 0.03832,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6991" />
+            </g>
+            <g
+               aria-label="bytes"
+               id="text153"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 15.296645,40.041839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6994" />
+              <path
+                 d="m 16.492881,40.711307 -0.420762,-0.874141 h 0.167163 l 0.335142,0.68333 0.280507,-0.68333 h 0.152486 l -0.353081,0.846416 q -0.111714,0.268277 -0.212827,0.356343 -0.100298,0.08807 -0.260123,0.08807 -0.06931,0 -0.123945,-0.01223 v -0.133731 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101114 0.04729,-0.07257 0.06686,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6996" />
+              <path
+                 d="m 17.920698,40.711307 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path6998" />
+              <path
+                 d="m 18.917969,40.687659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 18.312104,40.20411 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7000" />
+              <path
+                 d="m 19.172383,40.699891 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7002" />
+            </g>
+            <g
+               aria-label="[PXE-NBP]"
+               id="text155"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 21.331477,41.051341 v -1.644722 h 0.658052 v 0.127207 h -0.506382 v 1.391123 h 0.506382 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7005" />
+              <path
+                 d="m 22.35158,40.286468 v 0.461533 h -0.164717 v -1.265547 h 0.314756 q 0.194072,0 0.282954,0.04403 0.08888,0.04322 0.136177,0.127207 0.04729,0.08399 0.04729,0.187549 0,0.121499 -0.0636,0.22669 -0.0636,0.10519 -0.177763,0.16227 -0.113345,0.05626 -0.308233,0.05626 z m 0,-0.126392 h 0.07094 q 0.152486,0 0.22669,-0.03914 0.0742,-0.03996 0.11416,-0.11416 0.03996,-0.0742 0.03996,-0.16064 0,-0.109268 -0.07176,-0.172871 -0.07094,-0.0636 -0.281323,-0.0636 h -0.09867 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7007" />
+              <path
+                 d="m 23.255076,40.748001 h -0.17124 l 0.370205,-0.661313 -0.334326,-0.604234 h 0.186733 l 0.242183,0.436255 0.24789,-0.436255 h 0.172056 l -0.334326,0.592002 0.373467,0.673545 H 23.817722 L 23.539661,40.24325 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7009" />
+              <path
+                 d="m 24.894905,40.608563 v 0.139438 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505566 v 0.429732 h 0.45501 v 0.126391 h -0.45501 v 0.442779 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7011" />
+              <path
+                 d="m 25.232493,40.298699 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7013" />
+              <path
+                 d="m 26.303152,40.748001 h -0.15167 v -1.265547 h 0.148408 l 0.447671,0.842339 0.04893,0.125576 h 0.0041 l -0.0041,-0.125576 v -0.842339 h 0.15167 v 1.265547 h -0.15167 l -0.435439,-0.828476 -0.06116,-0.132915 0.0033,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7015" />
+              <path
+                 d="m 27.19034,40.748001 v -1.265547 h 0.247075 q 0.222612,0 0.297632,0.03425 0.07583,0.03343 0.113345,0.09948 0.03751,0.06605 0.03751,0.150854 0,0.06686 -0.02202,0.127207 -0.02202,0.05953 -0.06524,0.109268 -0.04322,0.04893 -0.125576,0.09296 0.150855,0.06034 0.203858,0.148408 0.05382,0.08807 0.05382,0.176133 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126392,0.121499 -0.08154,0.0424 -0.260937,0.0424 z m 0.164717,-0.695561 h 0.172871 q 0.08399,-0.03506 0.122314,-0.07339 0.03914,-0.03914 0.0579,-0.08644 0.01957,-0.04811 0.01957,-0.10519 0,-0.0897 -0.053,-0.133731 -0.05219,-0.04403 -0.204673,-0.04403 h -0.114975 z m 0,0.56917 h 0.155747 q 0.130469,0 0.192441,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116606 -0.03425,-0.05382 -0.106006,-0.0848 -0.07176,-0.0318 -0.225058,-0.0318 h -0.04566 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7017" />
+              <path
+                 d="m 28.359666,40.286468 v 0.461533 h -0.164717 v -1.265547 h 0.314756 q 0.194072,0 0.282954,0.04403 0.08888,0.04322 0.136177,0.127207 0.04729,0.08399 0.04729,0.187549 0,0.121499 -0.0636,0.22669 -0.0636,0.10519 -0.177763,0.16227 -0.113345,0.05626 -0.308233,0.05626 z m 0,-0.126392 h 0.07094 q 0.152486,0 0.22669,-0.03914 0.0742,-0.03996 0.11416,-0.11416 0.03996,-0.0742 0.03996,-0.16064 0,-0.109268 -0.07176,-0.172871 -0.07094,-0.0636 -0.281323,-0.0636 h -0.09867 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7019" />
+              <path
+                 d="m 29.765467,39.406619 v 1.644722 h -0.658052 v -0.126392 h 0.506382 v -1.391123 h -0.506382 v -0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7021" />
+            </g>
+            <g
+               id="use157"
+               transform="translate(0,41.249001)">
+              <g
+                 id="text5737"
+                 class="c"
+                 style="white-space:pre;fill:#b9c0cb" />
+            </g>
+            <g
+               aria-label="ttp://10.28.36.67/ltsp/rootfs/initrd.img..."
+               id="text159"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 1.8900029,53.737304 q -0.1068213,0.04485 -0.1549317,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.174502,-0.03669 -0.079097,-0.03669 -0.1198681,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 53.06539 H 1.0802812 V 52.938998 H 1.3077861 V 52.572055 H 1.459456 v 0.366943 H 1.8647246 V 53.06539 H 1.459456 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069311,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7025" />
+              <path
+                 d="m 2.8913505,53.737304 q -0.1068212,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.1745019,-0.03669 -0.079097,-0.03669 -0.1198682,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 53.06539 H 2.0816289 v -0.126392 h 0.2275049 v -0.366943 h 0.1516699 v 0.366943 H 2.8660722 V 53.06539 H 2.4608037 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069311,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7027" />
+              <path
+                 d="m 3.2713408,53.067836 q 0.070127,-0.11416 0.1671631,-0.172055 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.161455,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353897 H 3.1196709 v -1.264732 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204672 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7029" />
+              <path
+                 d="m 4.5067169,53.812323 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7031" />
+              <path
+                 d="M 5.1835234,53.812323 H 5.0342998 l 0.8048291,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7033" />
+              <path
+                 d="M 6.184871,53.812323 H 6.0356473 l 0.8048291,-1.341381 h 0.1443311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7035" />
+              <path
+                 d="m 7.4732502,53.647607 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 V 52.70497 q 0.1785791,-0.07584 0.3098632,-0.196519 h 0.1516699 v 1.139156 h 0.3041553 v 0.126391 H 7.163387 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7037" />
+              <path
+                 d="m 8.5121075,52.470942 q 0.2160889,0 0.3294336,0.18184 0.1133447,0.181026 0.1133447,0.488443 0,0.308232 -0.1133447,0.490073 -0.1133447,0.181025 -0.3294336,0.181025 -0.2152734,0 -0.3294335,-0.181025 -0.1133448,-0.181841 -0.1133448,-0.490073 0,-0.307417 0.1133448,-0.488443 0.1141601,-0.18184 0.3294335,-0.18184 z m -0.2470752,0.941005 0.4378858,-0.685776 q -0.041587,-0.07583 -0.090513,-0.101929 -0.04811,-0.02691 -0.1002979,-0.02691 -0.1361767,0 -0.2071191,0.15167 -0.070942,0.150855 -0.070942,0.383252 0,0.053 0.00326,0.11416 0.00326,0.06116 0.027725,0.165532 z m 0.4925196,-0.534921 -0.434624,0.689853 q 0.035063,0.05953 0.080728,0.0897 0.045664,0.02936 0.1019287,0.02936 0.1549316,0 0.220166,-0.172871 0.065234,-0.173687 0.065234,-0.384883 0,-0.130469 -0.033433,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7039" />
+              <path
+                 d="m 9.5134551,53.812323 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7041" />
+              <path
+                 d="M 10.901316,53.773998 H 10.135628 V 53.63456 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08643,-0.08807 q 0.02609,-0.02691 0.114161,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06524,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181026,0.03262 0.08317,0.0318 0.123129,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194887,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119869,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7043" />
+              <path
+                 d="m 11.389759,53.091484 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252784,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01876,0.104375 -0.01876,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238106 -0.09948,0.100297 -0.298447,0.100297 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.265831,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.0473,0.05463 -0.0473,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.08481 -0.118238,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7045" />
+              <path
+                 d="m 12.517498,53.812323 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7047" />
+              <path
+                 d="m 13.13641,53.751166 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126392 h 0.116606 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07583 v -0.144331 q 0.154932,-0.0579 0.28377,-0.0579 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166347,0.07991 0.05626,0.0473 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.1321,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7049" />
+              <path
+                 d="m 14.257625,53.180365 q 0.05871,-0.08725 0.145147,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109267,-0.185918 -0.109267,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.16961,0 -0.262569,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170424,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7051" />
+              <path
+                 d="m 15.521541,53.812323 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7053" />
+              <path
+                 d="m 16.26032,53.180365 q 0.05871,-0.08725 0.145147,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114975,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109267,-0.185918 -0.109267,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.16961,0 -0.262569,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170424,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7055" />
+              <path
+                 d="m 17.283685,53.773998 v -0.113344 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106005,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.1321,-0.174501 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.21935 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113344 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7057" />
+              <path
+                 d="M 18.201044,53.812323 H 18.05182 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7059" />
+              <path
+                 d="m 19.397278,53.773998 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7061" />
+              <path
+                 d="m 20.915609,53.737304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7063" />
+              <path
+                 d="m 21.165945,53.725888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7065" />
+              <path
+                 d="m 22.296947,53.067836 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7067" />
+              <path
+                 d="m 23.207781,53.812323 h -0.149224 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7069" />
+              <path
+                 d="m 24.236854,53.773998 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7071" />
+              <path
+                 d="m 25.535834,53.799277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117421,0.136177 0.117421,0.344111 0,0.207935 -0.117421,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7073" />
+              <path
+                 d="m 26.537181,53.799277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7075" />
+              <path
+                 d="m 27.925043,53.737304 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7077" />
+              <path
+                 d="M 28.37679,53.773998 V 53.06539 h -0.202227 v -0.126392 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 V 53.06539 H 28.52846 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7079" />
+              <path
+                 d="m 29.176727,53.725888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7081" />
+              <path
+                 d="m 30.217214,53.812323 h -0.149223 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7083" />
+              <path
+                 d="m 31.424051,53.773998 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7085" />
+              <path
+                 d="m 32.170168,53.773998 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7087" />
+              <path
+                 d="m 33.426746,53.773998 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7089" />
+              <path
+                 d="m 34.934475,53.737304 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7091" />
+              <path
+                 d="m 35.25168,53.773998 v -0.910835 h 0.151669 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7093" />
+              <path
+                 d="m 36.783871,53.569325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161456,-0.196518 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7095" />
+              <path
+                 d="m 37.551189,53.812323 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7097" />
+              <path
+                 d="M 38.433483,53.773998 V 52.989555 H 38.1807 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7099" />
+              <path
+                 d="m 39.111108,53.773998 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09378,-0.03099 0.05871,0 0.100297,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7101" />
+              <path
+                 d="m 40.789261,53.569325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.1533 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7103" />
+              <path
+                 d="m 41.556579,53.812323 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7105" />
+              <path
+                 d="m 42.55793,53.812323 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7107" />
+              <path
+                 d="m 43.559276,53.812323 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path7109" />
+            </g>
+            <g
+               id="use161"
+               transform="translate(0,54.275002)">
+              <g
+                 id="text5741"
+                 class="c"
+                 style="white-space:pre;fill:#b9c0cb" />
+            </g>
+          </svg>
+        </svg>
+      </g>
+    </svg>
+  </g>
+</svg>
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot11.svg b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot11.svg
new file mode 100644
index 0000000000..27085b1798
--- /dev/null
+++ b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot11.svg
@@ -0,0 +1,7008 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<svg
+   width="1190"
+   height="527.1994"
+   version="1.1"
+   id="svg518"
+   sodipodi:docname="3.svg"
+   inkscape:version="1.1.1 (c3084ef, 2021-09-22)"
+   xmlns:inkscape="http://www.inkscape.org/namespaces/inkscape"
+   xmlns:sodipodi="http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd"
+   xmlns="http://www.w3.org/2000/svg"
+   xmlns:svg="http://www.w3.org/2000/svg">
+  <defs
+     id="defs522">
+    <clipPath
+       clipPathUnits="userSpaceOnUse"
+       id="clipPath911">
+      <rect
+         style="fill:#ff0000"
+         id="rect913"
+         width="1417.2645"
+         height="681.65387"
+         x="-127.69769"
+         y="124.10058" />
+    </clipPath>
+  </defs>
+  <sodipodi:namedview
+     id="namedview520"
+     pagecolor="#ffffff"
+     bordercolor="#666666"
+     borderopacity="1.0"
+     inkscape:pageshadow="2"
+     inkscape:pageopacity="0.0"
+     inkscape:pagecheckerboard="0"
+     showgrid="false"
+     inkscape:zoom="0.55600064"
+     inkscape:cx="713.12868"
+     inkscape:cy="339.92767"
+     inkscape:window-width="1416"
+     inkscape:window-height="814"
+     inkscape:window-x="12"
+     inkscape:window-y="25"
+     inkscape:window-maximized="0"
+     inkscape:current-layer="svg518" />
+  <g
+     id="g805"
+     clip-path="url(#clipPath911)"
+     transform="translate(0,-124.10058)">
+    <path
+       id="rect2"
+       class="a"
+       style="fill:#282d35"
+       d="M 0,0 H 1190 V 651.29999 H 0 Z" />
+    <svg
+       height="651.29999"
+       viewBox="0 0 119 65.13"
+       width="1190"
+       version="1.1"
+       id="svg516">
+      <style
+         id="style4">.a{fill:#282d35}.e{fill:#b9c0cb;white-space:pre}</style>
+      <g
+         font-family="Monaco, Consolas, Menlo, 'Bitstream Vera Sans Mono', 'Powerline Symbols', monospace"
+         font-size="1.67px"
+         id="g514">
+        <defs
+           id="defs12">
+          <symbol
+             id="a">
+            <path
+               fill="transparent"
+               d="M 0,0 H 119 V 30 H 0 Z"
+               id="path6" />
+          </symbol>
+          <symbol
+             id="b">
+            <path
+               fill="#6f7683"
+               d="M 0,0 H 1.102 V 2.171 H 0 Z"
+               id="path9" />
+          </symbol>
+        </defs>
+        <path
+           class="a"
+           d="M 0,0 H 119 V 65.13 H 0 Z"
+           id="path14"
+           style="fill:#000000" />
+        <svg
+           width="119"
+           version="1.1"
+           id="svg512"
+           height="100%">
+          <svg
+             version="1.1"
+             id="svg510"
+             width="100%"
+             height="100%">
+            <g
+               id="use16">
+              <path
+                 fill="transparent"
+                 d="M 0,0 H 119 V 30 H 0 Z"
+                 id="path1033" />
+            </g>
+            <g
+               id="use18"
+               transform="translate(13.996,62.933998)">
+              <path
+                 fill="#6f7683"
+                 d="M 0,0 H 1.102 V 2.171 H 0 Z"
+                 id="path1037" />
+            </g>
+            <g
+               aria-label="the"
+               id="text20"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.88800291,1.6333056 q -0.10682129,0.044849 -0.15493164,0.053003 -0.0481104,0.00897 -0.092959,0.00897 -0.0954053,0 -0.17450195,-0.036694 Q 0.38651366,1.6218896 0.34574218,1.5501318 0.30578612,1.478374 0.30578612,1.3283349 V 0.96139158 H 0.07828125 V 0.83499998 H 0.30578612 V 0.46805663 h 0.15166992 v 0.36694335 h 0.40526855 v 0.1263916 H 0.45745604 V 1.3258886 q 0,0.110083 0.0260937,0.1557471 0.0260938,0.044849 0.0693115,0.06605 0.0440332,0.021201 0.10355957,0.021201 0.11008301,0 0.23158203,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1042" />
+              <path
+                 d="M 1.1277393,1.67 V 0.35389648 h 0.1516699 v 0.60423338 q 0.065234,-0.10519043 0.1573779,-0.16471679 0.092144,-0.0595264 0.1842871,-0.0595264 0.077466,0 0.1410693,0.0399561 0.064419,0.0391406 0.089697,0.0954053 0.020386,0.0432178 0.027725,0.0921436 0.00734,0.0481103 0.00734,0.19978022 V 1.67 H 1.7352344 V 1.142417 q 0,-0.1312842 -0.013047,-0.17287113 -0.012231,-0.0424023 -0.04648,-0.0693115 -0.033433,-0.0269092 -0.073389,-0.0269092 -0.079912,0 -0.1720556,0.075835 -0.091328,0.075835 -0.1508545,0.18999507 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1044" />
+              <path
+                 d="m 2.8866211,1.6096582 q -0.1818408,0.086436 -0.3441113,0.086436 -0.1231299,0 -0.220166,-0.061157 -0.097036,-0.061157 -0.1557471,-0.174502 -0.057895,-0.1141601 -0.057895,-0.2438134 0,-0.1247608 0.055449,-0.23973636 0.055449,-0.11497558 0.1549316,-0.1785791 0.099483,-0.0644189 0.2217969,-0.0644189 0.1622705,0 0.2601221,0.11579101 0.098667,0.11579102 0.098667,0.35715819 v 0.032617 H 2.2717871 q 0,0.09459 0.039141,0.1728711 0.039956,0.078281 0.104375,0.1174219 0.064419,0.039141 0.1467774,0.039141 0.1467773,0 0.324541,-0.097852 z M 2.2807568,1.1261084 h 0.4541944 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.0660498 -0.1459619,-0.0660498 -0.092144,0 -0.1598243,0.0676807 -0.066865,0.0668652 -0.093774,0.19814944 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1046" />
+            </g>
+            <g
+               aria-label="exact"
+               id="text22"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 4.8919257,1.6096582 q -0.1818409,0.086436 -0.3441114,0.086436 -0.1231298,0 -0.220166,-0.061157 -0.097036,-0.061157 -0.155747,-0.174502 -0.057895,-0.1141601 -0.057895,-0.2438134 0,-0.1247608 0.055449,-0.23973636 0.055449,-0.11497558 0.1549316,-0.1785791 0.099482,-0.0644189 0.2217969,-0.0644189 0.1622705,0 0.260122,0.11579101 0.098667,0.11579102 0.098667,0.35715819 v 0.032617 H 4.2770917 q 0,0.09459 0.039141,0.1728711 0.039956,0.078281 0.104375,0.1174219 0.064419,0.039141 0.1467773,0.039141 0.1467774,0 0.3245411,-0.097852 z M 4.2860614,1.1261084 h 0.4541943 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 Q 4.6309882,0.8602783 4.53966,0.8602783 q -0.092143,0 -0.1598242,0.0676807 -0.066865,0.0668652 -0.093774,0.19814944 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1049" />
+              <path
+                 d="M 5.230329,1.67 H 5.0550116 L 5.4129852,1.1929736 5.0786591,0.75916502 H 5.2727313 L 5.5100214,1.0649511 5.740788,0.75916502 H 5.9128436 L 5.5964569,1.1782959 5.97237,1.67 H 5.7774823 L 5.5002362,1.3071338 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1051" />
+              <path
+                 d="M 6.7356122,1.4653271 Q 6.6663007,1.5794873 6.5684491,1.6373828 6.471413,1.6952783 6.38987,1.6952783 q -0.1141601,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581934 0.060342,-0.2821387 0.060342,-0.1247607 0.1614551,-0.19651851 0.1011133,-0.0725733 0.2503369,-0.0725733 0.043218,0 0.1304688,0.00897 0.013047,0.001631 0.039141,0.004077 H 6.8880975 V 1.402539 q 0,0.1647168 0.034248,0.267461 H 6.7641522 q -0.017939,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.080728,-0.0212012 -0.1500391,-0.0212012 -0.1402539,0 -0.2340283,0.10845215 -0.092959,0.10845218 -0.092959,0.29518558 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166064,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1053" />
+              <path
+                 d="m 7.9049385,1.6439062 q -0.1524854,0.051372 -0.290293,0.051372 -0.1369922,0 -0.2438134,-0.062788 Q 7.2648262,1.5688867 7.2052998,1.46125 7.1457735,1.3527978 7.1457735,1.2149902 q 0,-0.2071191 0.1345459,-0.34411132 0.1353613,-0.13699218 0.3261718,-0.13699218 0.1410694,0 0.2984473,0.0530029 V 0.93285154 Q 7.7459297,0.8602783 7.6203535,0.8602783 q -0.083174,0 -0.1565625,0.0415869 -0.073389,0.0407715 -0.1133447,0.12802249 -0.039956,0.087251 -0.039956,0.1793945 0,0.1231299 0.07665,0.2348437 0.077466,0.1117139 0.2421827,0.1117139 0.049741,0 0.097851,-0.00652 0.04811,-0.00734 0.1777637,-0.051372 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1055" />
+              <path
+                 d="m 8.9013934,1.6333056 q -0.1068212,0.044849 -0.1549316,0.053003 -0.04811,0.00897 -0.092959,0.00897 -0.095405,0 -0.1745019,-0.036694 Q 8.3999042,1.6218896 8.3591327,1.5501318 8.3191767,1.478374 8.3191767,1.3283349 V 0.96139158 H 8.0916718 V 0.83499998 H 8.3191767 V 0.46805663 h 0.1516699 v 0.36694335 h 0.4052685 v 0.1263916 H 8.4708466 V 1.3258886 q 0,0.110083 0.026094,0.1557471 0.026094,0.044849 0.069312,0.06605 0.044033,0.021201 0.1035595,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1057" />
+            </g>
+            <g
+               aria-label="distribution"
+               id="text24"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 10.754703,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.17858,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101114,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 V 0.35389648 h 0.152485 V 1.67 h -0.152485 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234029,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1060" />
+              <path
+                 d="M 11.402969,1.67 V 0.88555662 h -0.252783 v -0.1263916 h 0.404453 V 1.5436084 h 0.253599 V 1.67 Z m -0.02528,-1.23945314 q 0,-0.0513721 0.03506,-0.0766504 0.03506,-0.0252783 0.06605,-0.0252783 0.0318,0 0.06686,0.0252783 0.03506,0.0252783 0.03506,0.0766504 0,0.0505566 -0.03506,0.075835 -0.03506,0.0252783 -0.06686,0.0252783 -0.03099,0 -0.06605,-0.0252783 -0.03506,-0.0252783 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1062" />
+              <path
+                 d="M 12.159688,1.6218896 V 1.46125 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114975,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.105191,-0.041587 q -0.169609,-0.06605 -0.213642,-0.1223144 -0.04485,-0.055449 -0.04485,-0.13536133 0,-0.11252929 0.08644,-0.18510253 0.08725,-0.0725732 0.282138,-0.0725732 0.145962,0 0.276431,0.0424023 v 0.13780762 q -0.150039,-0.0538184 -0.282139,-0.0538184 -0.09622,0 -0.150854,0.034248 -0.05382,0.0334326 -0.05382,0.0839893 0,0.0489258 0.0473,0.0782812 0.04648,0.029355 0.151669,0.067681 l 0.102745,0.03751 q 0.141069,0.051372 0.198149,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1064" />
+              <path
+                 d="m 13.912046,1.6333056 q -0.106821,0.044849 -0.154931,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084521 Q 13.32983,1.478374 13.32983,1.3283349 V 0.96139158 H 13.102325 V 0.83499998 H 13.32983 V 0.46805663 h 0.15167 v 0.36694335 h 0.405268 v 0.1263916 H 13.4815 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1066" />
+              <path
+                 d="M 14.229249,1.67 V 0.75916502 h 0.151669 v 0.19896484 q 0.07094,-0.1125293 0.162271,-0.16797851 0.09214,-0.0562647 0.204673,-0.0562647 0.08236,0 0.164717,0.0252783 V 1.0877832 H 14.766617 V 0.87984861 q -0.03833,-0.006523 -0.06034,-0.006523 -0.0848,0 -0.166348,0.0668652 -0.08154,0.0668652 -0.159009,0.20059569 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1068" />
+              <path
+                 d="M 15.40836,1.67 V 0.88555662 H 15.155577 V 0.75916502 H 15.56003 V 1.5436084 h 0.253598 V 1.67 Z m -0.02528,-1.23945314 q 0,-0.0513721 0.03506,-0.0766504 0.03506,-0.0252783 0.06605,-0.0252783 0.0318,0 0.06686,0.0252783 0.03506,0.0252783 0.03506,0.0766504 0,0.0505566 -0.03506,0.075835 -0.03506,0.0252783 -0.06686,0.0252783 -0.03099,0 -0.06605,-0.0252783 -0.03506,-0.0252783 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1070" />
+              <path
+                 d="m 16.294732,0.96383787 q 0.07013,-0.11416016 0.167163,-0.17205566 0.09704,-0.0578955 0.178579,-0.0578955 0.11416,0 0.205489,0.098667 0.09133,0.098667 0.09133,0.29926271 0,0.1581933 -0.06116,0.2829541 -0.06034,0.1239453 -0.161456,0.1965185 -0.101113,0.071758 -0.250336,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 h -0.15167 V 0.35389648 h 0.15167 z m 0,0.18020993 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.20467283 -0.05137,-0.0684961 -0.116607,-0.0684961 -0.07094,0 -0.156562,0.0717578 -0.0848,0.0717578 -0.153301,0.19325681 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1072" />
+              <path
+                 d="M 17.905206,0.75916502 V 1.67 h -0.15167 V 1.4702197 q -0.07339,0.1125293 -0.163086,0.1687939 -0.0897,0.056265 -0.179395,0.056265 -0.07991,0 -0.146777,-0.042402 -0.06605,-0.043218 -0.09214,-0.1125293 -0.02609,-0.070127 -0.02609,-0.2723535 V 0.75916502 h 0.15167 V 1.286748 q 0,0.1312842 0.01223,0.1736865 0.01305,0.041587 0.04648,0.068496 0.03425,0.026909 0.07339,0.026909 0.07991,0 0.17124,-0.07502 0.09214,-0.075835 0.152486,-0.1908106 V 0.75916502 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1074" />
+              <path
+                 d="m 18.918785,1.6333056 q -0.106822,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084521 -0.03996,-0.071758 -0.03996,-0.2217969 V 0.96139158 h -0.227505 v -0.1263916 h 0.227505 V 0.46805663 h 0.15167 v 0.36694335 h 0.405268 v 0.1263916 H 18.488238 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1076" />
+              <path
+                 d="M 19.41375,1.67 V 0.88555662 H 19.160967 V 0.75916502 H 19.56542 V 1.5436084 h 0.253599 V 1.67 Z m -0.02528,-1.23945314 q 0,-0.0513721 0.03506,-0.0766504 0.03506,-0.0252783 0.06605,-0.0252783 0.0318,0 0.06687,0.0252783 0.03506,0.0252783 0.03506,0.0766504 0,0.0505566 -0.03506,0.075835 -0.03506,0.0252783 -0.06687,0.0252783 -0.03099,0 -0.06605,-0.0252783 -0.03506,-0.0252783 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1078" />
+              <path
+                 d="m 20.534966,1.6952783 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369922 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.34411135 0.117422,-0.13617675 0.313125,-0.13617675 0.194888,0 0.31231,0.13617675 0.117422,0.13617675 0.117422,0.34411135 0,0.2079345 -0.117422,0.3449267 -0.117422,0.1361768 -0.31231,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.1647168 -0.07176,-0.25930666 -0.07176,-0.0945898 -0.193257,-0.0945898 -0.122314,0 -0.194072,0.0945898 -0.07176,0.0945899 -0.07176,0.25930666 0,0.1655322 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1080" />
+              <path
+                 d="M 21.161216,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.06523,-0.10519043 0.157378,-0.16471679 0.09214,-0.0595264 0.184287,-0.0595264 0.08073,0 0.146777,0.0432178 0.06605,0.0424023 0.09214,0.11171387 0.02691,0.0693115 0.02691,0.27235346 V 1.67 h -0.15167 V 1.142417 q 0,-0.1312842 -0.01305,-0.17287113 -0.01223,-0.0424023 -0.04648,-0.0693115 -0.03343,-0.0269092 -0.07339,-0.0269092 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.18999507 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1082" />
+            </g>
+            <g
+               aria-label="terms"
+               id="text26"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 23.934002,1.6333056 q -0.106821,0.044849 -0.154931,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084521 -0.03996,-0.071758 -0.03996,-0.2217969 V 0.96139158 h -0.227505 v -0.1263916 h 0.227505 V 0.46805663 h 0.15167 v 0.36694335 h 0.405268 v 0.1263916 H 23.503456 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1085" />
+              <path
+                 d="m 24.931273,1.6096582 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.16227,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 24.325409,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1087" />
+              <path
+                 d="M 25.252552,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.07094,-0.1125293 0.162271,-0.16797851 0.09214,-0.0562647 0.204673,-0.0562647 0.08236,0 0.164716,0.0252783 V 1.0877832 H 25.78992 V 0.87984861 q -0.03833,-0.006523 -0.06034,-0.006523 -0.0848,0 -0.166348,0.0668652 -0.08154,0.0668652 -0.159009,0.20059569 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1089" />
+              <path
+                 d="M 26.107938,1.67 V 0.75916502 h 0.132915 v 0.20874999 q 0.06279,-0.13291503 0.116607,-0.18347167 0.05463,-0.0505566 0.110083,-0.0505566 0.06605,0 0.106005,0.0521875 0.04077,0.0513721 0.04077,0.14677734 v 0.0489258 q 0.02691,-0.0831738 0.06442,-0.1345459 0.03833,-0.0521875 0.0791,-0.0823584 0.04077,-0.0309863 0.09377,-0.0309863 0.05871,0 0.100298,0.0497412 0.04159,0.0497412 0.04159,0.19814941 V 1.67 H 26.86058 V 1.0478271 q 0,-0.0766504 -0.0049,-0.10437498 -0.0049,-0.02854 -0.01957,-0.0432178 -0.01468,-0.0146777 -0.0318,-0.0146777 -0.0424,0 -0.09133,0.0652344 -0.04811,0.0644189 -0.09867,0.21445801 V 1.67 H 26.487113 V 1.0486426 q 0,-0.12068364 -0.02365,-0.14188481 -0.02365,-0.0212012 -0.0424,-0.0212012 -0.04159,0 -0.0897,0.0725732 -0.04729,0.0725732 -0.09051,0.18591794 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1091" />
+              <path
+                 d="M 27.188382,1.6218896 V 1.46125 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114976,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.169609,-0.06605 -0.213643,-0.1223144 -0.04485,-0.055449 -0.04485,-0.13536133 0,-0.11252929 0.08644,-0.18510253 0.08725,-0.0725732 0.282139,-0.0725732 0.145962,0 0.276431,0.0424023 v 0.13780762 q -0.15004,-0.0538184 -0.282139,-0.0538184 -0.09622,0 -0.150855,0.034248 -0.05382,0.0334326 -0.05382,0.0839893 0,0.0489258 0.0473,0.0782812 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1093" />
+            </g>
+            <g
+               aria-label="for"
+               id="text28"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 29.396404,1.67 V 0.96139158 h -0.202227 v -0.1263916 h 0.202227 v -0.0424023 q 0,-0.18020996 0.04077,-0.26664551 0.04077,-0.0864355 0.125577,-0.14188476 0.08562,-0.0554492 0.225874,-0.0554492 0.106005,0 0.215273,0.0220166 v 0.14433105 q -0.118237,-0.0391406 -0.209565,-0.0391406 -0.07257,0 -0.128023,0.0269092 -0.05545,0.0269092 -0.08725,0.0880664 -0.03099,0.0603418 -0.03099,0.20548827 v 0.0587109 h 0.361235 v 0.1263916 H 29.548074 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1096" />
+              <path
+                 d="m 30.560837,1.6952783 q -0.195703,0 -0.313125,-0.1361768 -0.117421,-0.1369922 -0.117421,-0.3449267 0,-0.2079346 0.117421,-0.34411135 0.117422,-0.13617675 0.313125,-0.13617675 0.194888,0 0.31231,0.13617675 0.117422,0.13617675 0.117422,0.34411135 0,0.2079345 -0.117422,0.3449267 -0.117422,0.1361768 -0.31231,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.1647168 -0.07176,-0.25930666 -0.07176,-0.0945898 -0.193257,-0.0945898 -0.122314,0 -0.194072,0.0945898 -0.07176,0.0945899 -0.07176,0.25930666 0,0.1655322 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1098" />
+              <path
+                 d="M 31.264553,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.07094,-0.1125293 0.162271,-0.16797851 0.09214,-0.0562647 0.204673,-0.0562647 0.08236,0 0.164716,0.0252783 V 1.0877832 H 31.801921 V 0.87984861 q -0.03833,-0.006523 -0.06034,-0.006523 -0.0848,0 -0.166348,0.0668652 -0.08154,0.0668652 -0.159009,0.20059569 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1100" />
+            </g>
+            <g
+               aria-label="each"
+               id="text30"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 33.949928,1.6096582 q -0.181841,0.086436 -0.344112,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221796,-0.0644189 0.162271,0 0.260123,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 33.344063,1.1261084 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06686,0.0668652 -0.09378,0.19814944 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1103" />
+              <path
+                 d="m 34.792267,1.4653271 q -0.06931,0.1141602 -0.167164,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101114,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152485 V 1.402539 q 0,0.1647168 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.15004,-0.0212012 -0.140253,0 -0.234028,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1105" />
+              <path
+                 d="m 35.961593,1.6439062 q -0.152486,0.051372 -0.290293,0.051372 -0.136992,0 -0.243814,-0.062788 -0.106006,-0.063603 -0.165532,-0.1712402 -0.05953,-0.1084522 -0.05953,-0.2462598 0,-0.2071191 0.134546,-0.34411132 0.135361,-0.13699218 0.326171,-0.13699218 0.14107,0 0.298448,0.0530029 v 0.14596191 q -0.159009,-0.0725732 -0.284585,-0.0725732 -0.08317,0 -0.156563,0.0415869 -0.07339,0.0407715 -0.113344,0.12802249 -0.03996,0.087251 -0.03996,0.1793945 0,0.1231299 0.07665,0.2348437 0.07747,0.1117139 0.242182,0.1117139 0.04974,0 0.09785,-0.00652 0.04811,-0.00734 0.177764,-0.051372 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1107" />
+              <path
+                 d="M 36.196437,1.67 V 0.35389648 h 0.15167 v 0.60423338 q 0.06523,-0.10519043 0.157377,-0.16471679 0.09214,-0.0595264 0.184288,-0.0595264 0.07747,0 0.141069,0.0399561 0.06442,0.0391406 0.0897,0.0954053 0.02039,0.0432178 0.02772,0.0921436 0.0073,0.0481103 0.0073,0.19978022 V 1.67 h -0.15167 V 1.142417 q 0,-0.1312842 -0.01305,-0.17287113 -0.01223,-0.0424023 -0.04648,-0.0693115 -0.03343,-0.0269092 -0.07339,-0.0269092 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.18999507 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1109" />
+            </g>
+            <g
+               aria-label="program"
+               id="text32"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 38.342646,0.96383787 q 0.07013,-0.11416016 0.167163,-0.17205566 0.09704,-0.0578955 0.178579,-0.0578955 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.29926271 0,0.1581933 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101113,0.071758 -0.250337,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 v 0.3538964 h -0.15167 V 0.75916502 h 0.15167 z m 0,0.18020993 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137807,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.20467283 -0.05137,-0.0684961 -0.116606,-0.0684961 -0.07094,0 -0.156563,0.0717578 -0.0848,0.0717578 -0.1533,0.19325681 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1112" />
+              <path
+                 d="M 39.281205,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.07094,-0.1125293 0.162271,-0.16797851 0.09214,-0.0562647 0.204673,-0.0562647 0.08236,0 0.164716,0.0252783 V 1.0877832 H 39.818573 V 0.87984861 q -0.03833,-0.006523 -0.06034,-0.006523 -0.08481,0 -0.166348,0.0668652 -0.08154,0.0668652 -0.159009,0.20059569 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1114" />
+              <path
+                 d="m 40.580185,1.6952783 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369922 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.34411135 0.117422,-0.13617675 0.313125,-0.13617675 0.194887,0 0.312309,0.13617675 0.117422,0.13617675 0.117422,0.34411135 0,0.2079345 -0.117422,0.3449267 -0.117422,0.1361768 -0.312309,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.1647168 -0.07176,-0.25930666 -0.07176,-0.0945898 -0.193257,-0.0945898 -0.122315,0 -0.194072,0.0945898 -0.07176,0.0945899 -0.07176,0.25930666 0,0.1655322 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1116" />
+              <path
+                 d="m 41.814745,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101113,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152486 V 1.4033545 q 0,0.2299511 -0.0065,0.2805078 -0.0057,0.051372 -0.01957,0.1035595 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.070127 -0.280507,0.070127 -0.165533,0 -0.335142,-0.084805 V 1.8110693 q 0.06442,0.044033 0.158193,0.077466 0.09459,0.034248 0.182657,0.034248 0.06931,0 0.131284,-0.022017 0.06197,-0.022017 0.100298,-0.063604 0.03833,-0.041587 0.05219,-0.097036 0.01386,-0.054634 0.01386,-0.1459619 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234028,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.1533,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1118" />
+              <path
+                 d="M 42.285248,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.07094,-0.1125293 0.162271,-0.16797851 0.09214,-0.0562647 0.204673,-0.0562647 0.08236,0 0.164716,0.0252783 V 1.0877832 H 42.822616 V 0.87984861 q -0.03832,-0.006523 -0.06034,-0.006523 -0.08481,0 -0.166348,0.0668652 -0.08154,0.0668652 -0.159009,0.20059569 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1120" />
+              <path
+                 d="m 43.807655,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101113,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152486 V 1.402539 q 0,0.1647168 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234028,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.1533,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1122" />
+              <path
+                 d="M 44.141982,1.67 V 0.75916502 h 0.132915 v 0.20874999 q 0.06279,-0.13291503 0.116606,-0.18347167 0.05463,-0.0505566 0.110083,-0.0505566 0.06605,0 0.106006,0.0521875 0.04077,0.0513721 0.04077,0.14677734 v 0.0489258 q 0.02691,-0.0831738 0.06442,-0.1345459 0.03833,-0.0521875 0.0791,-0.0823584 0.04077,-0.0309863 0.09378,-0.0309863 0.05871,0 0.100298,0.0497412 0.04159,0.0497412 0.04159,0.19814941 V 1.67 H 44.894624 V 1.0478271 q 0,-0.0766504 -0.0049,-0.10437498 -0.0049,-0.02854 -0.01957,-0.0432178 -0.01468,-0.0146777 -0.0318,-0.0146777 -0.0424,0 -0.09133,0.0652344 -0.04811,0.0644189 -0.09867,0.21445801 V 1.67 H 44.521157 V 1.0486426 q 0,-0.12068364 -0.02365,-0.14188481 -0.02365,-0.0212012 -0.0424,-0.0212012 -0.04159,0 -0.0897,0.0725732 -0.04729,0.0725732 -0.09051,0.18591794 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1124" />
+            </g>
+            <g
+               aria-label="are"
+               id="text34"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 46.816916,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101113,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130468,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152485 V 1.402539 q 0,0.1647168 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234028,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1127" />
+              <path
+                 d="M 47.297204,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.07094,-0.1125293 0.162271,-0.16797851 0.09214,-0.0562647 0.204672,-0.0562647 0.08236,0 0.164717,0.0252783 V 1.0877832 H 47.834572 V 0.87984861 q -0.03833,-0.006523 -0.06034,-0.006523 -0.0848,0 -0.166347,0.0668652 -0.08154,0.0668652 -0.159009,0.20059569 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1129" />
+              <path
+                 d="m 48.97862,1.6096582 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.16227,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 48.372756,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145961,-0.0660498 -0.09214,0 -0.159825,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1131" />
+            </g>
+            <g
+               aria-label="described"
+               id="text36"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 50.834701,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.17858,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101114,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 V 0.35389648 h 0.152485 V 1.67 h -0.152485 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234029,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1134" />
+              <path
+                 d="m 51.985272,1.6096582 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155748,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.16227,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 51.379408,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1136" />
+              <path
+                 d="M 52.239686,1.6218896 V 1.46125 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114975,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.16961,-0.06605 -0.213643,-0.1223144 -0.04485,-0.055449 -0.04485,-0.13536133 0,-0.11252929 0.08644,-0.18510253 0.08725,-0.0725732 0.282139,-0.0725732 0.145961,0 0.27643,0.0424023 V 0.91409666 Q 52.75993,0.8602783 52.627831,0.8602783 q -0.09622,0 -0.150855,0.034248 -0.05382,0.0334326 -0.05382,0.0839893 0,0.0489258 0.04729,0.0782812 0.04648,0.029355 0.151669,0.067681 l 0.102745,0.03751 q 0.141069,0.051372 0.198149,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1138" />
+              <path
+                 d="m 53.996937,1.6439062 q -0.152485,0.051372 -0.290293,0.051372 -0.136992,0 -0.243813,-0.062788 -0.106006,-0.063603 -0.165533,-0.1712402 -0.05953,-0.1084522 -0.05953,-0.2462598 0,-0.2071191 0.134546,-0.34411132 0.135361,-0.13699218 0.326172,-0.13699218 0.141069,0 0.298447,0.0530029 v 0.14596191 q -0.159009,-0.0725732 -0.284585,-0.0725732 -0.08317,0 -0.156562,0.0415869 -0.07339,0.0407715 -0.113345,0.12802249 -0.03996,0.087251 -0.03996,0.1793945 0,0.1231299 0.07665,0.2348437 0.07747,0.1117139 0.242183,0.1117139 0.04974,0 0.09785,-0.00652 0.04811,-0.00734 0.177764,-0.051372 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1140" />
+              <path
+                 d="M 54.309247,1.67 V 0.75916502 h 0.151669 v 0.19896484 q 0.07094,-0.1125293 0.162271,-0.16797851 0.09214,-0.0562647 0.204673,-0.0562647 0.08236,0 0.164717,0.0252783 V 1.0877832 H 54.846615 V 0.87984861 q -0.03833,-0.006523 -0.06034,-0.006523 -0.08481,0 -0.166348,0.0668652 -0.08154,0.0668652 -0.159009,0.20059569 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1142" />
+              <path
+                 d="M 55.488358,1.67 V 0.88555662 h -0.252783 v -0.1263916 h 0.404453 V 1.5436084 h 0.253598 V 1.67 Z m -0.02528,-1.23945314 q 0,-0.0513721 0.03506,-0.0766504 0.03506,-0.0252783 0.06605,-0.0252783 0.0318,0 0.06686,0.0252783 0.03506,0.0252783 0.03506,0.0766504 0,0.0505566 -0.03506,0.075835 -0.03506,0.0252783 -0.06686,0.0252783 -0.03099,0 -0.06605,-0.0252783 -0.03506,-0.0252783 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1144" />
+              <path
+                 d="m 56.37473,0.96383787 q 0.07013,-0.11416016 0.167163,-0.17205566 0.09704,-0.0578955 0.178579,-0.0578955 0.114161,0 0.205489,0.098667 0.09133,0.098667 0.09133,0.29926271 0,0.1581933 -0.06116,0.2829541 -0.06034,0.1239453 -0.161456,0.1965185 -0.101113,0.071758 -0.250336,0.071758 -0.0424,0 -0.130469,-0.00897 Q 56.400824,1.6724462 56.37473,1.67 H 56.22306 V 0.35389648 h 0.15167 z m 0,0.18020993 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.20467283 -0.05137,-0.0684961 -0.116607,-0.0684961 -0.07094,0 -0.156562,0.0717578 -0.0848,0.0717578 -0.153301,0.19325681 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1146" />
+              <path
+                 d="m 57.993358,1.6096582 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.16227,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 57.387494,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1148" />
+              <path
+                 d="m 58.845482,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101113,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130468,0.00897 0.01305,0.001631 0.03914,0.004077 V 0.35389648 h 0.152485 V 1.67 h -0.152485 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234028,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1150" />
+            </g>
+            <g
+               aria-label="in"
+               id="text38"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 60.50162,1.67 V 0.88555662 H 60.248837 V 0.75916502 H 60.65329 V 1.5436084 h 0.253599 V 1.67 Z m -0.02528,-1.23945314 q 0,-0.0513721 0.03506,-0.0766504 0.03506,-0.0252783 0.06605,-0.0252783 0.0318,0 0.06686,0.0252783 0.03506,0.0252783 0.03506,0.0766504 0,0.0505566 -0.03506,0.075835 -0.03506,0.0252783 -0.06686,0.0252783 -0.03099,0 -0.06605,-0.0252783 -0.03506,-0.0252783 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1153" />
+              <path
+                 d="M 61.247738,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.06523,-0.10519043 0.157378,-0.16471679 0.09214,-0.0595264 0.184287,-0.0595264 0.08073,0 0.146777,0.0432178 0.06605,0.0424023 0.09214,0.11171387 0.02691,0.0693115 0.02691,0.27235346 V 1.67 h -0.15167 V 1.142417 q 0,-0.1312842 -0.01305,-0.17287113 -0.01223,-0.0424023 -0.04648,-0.0693115 -0.03343,-0.0269092 -0.07339,-0.0269092 -0.07991,0 -0.172055,0.075835 -0.09133,0.075835 -0.150855,0.18999507 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1155" />
+            </g>
+            <g
+               aria-label="the"
+               id="text40"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 64.014002,1.6333056 q -0.106821,0.044849 -0.154931,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084521 -0.03996,-0.071758 -0.03996,-0.2217969 V 0.96139158 h -0.227505 v -0.1263916 h 0.227505 V 0.46805663 h 0.151669 v 0.36694335 h 0.405269 v 0.1263916 H 63.583455 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1158" />
+              <path
+                 d="M 64.253739,1.67 V 0.35389648 h 0.15167 v 0.60423338 q 0.06523,-0.10519043 0.157378,-0.16471679 0.09214,-0.0595264 0.184287,-0.0595264 0.07747,0 0.141069,0.0399561 0.06442,0.0391406 0.0897,0.0954053 0.02039,0.0432178 0.02773,0.0921436 0.0073,0.0481103 0.0073,0.19978022 V 1.67 h -0.15167 V 1.142417 q 0,-0.1312842 -0.01305,-0.17287113 -0.01223,-0.0424023 -0.04648,-0.0693115 -0.03343,-0.0269092 -0.07339,-0.0269092 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.18999507 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1160" />
+              <path
+                 d="m 66.012621,1.6096582 q -0.181841,0.086436 -0.344112,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154931,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.162271,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.62788 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 65.406756,1.1261084 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06687,0.0668652 -0.09377,0.19814944 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1162" />
+            </g>
+            <g
+               aria-label="individual"
+               id="text42"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.38162108,3.8410001 V 3.0565567 H 0.12883789 V 2.9301651 H 0.533291 V 3.7146085 H 0.78688963 V 3.8410001 Z M 0.35634276,2.601547 q 0,-0.051372 0.0350635,-0.07665 0.0350635,-0.025278 0.0660498,-0.025278 0.0318018,0 0.0668652,0.025278 0.0350635,0.025278 0.0350635,0.07665 0,0.050557 -0.0350635,0.075835 -0.0350635,0.025278 -0.0668652,0.025278 -0.0309863,0 -0.0660498,-0.025278 -0.0350635,-0.025278 -0.0350635,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1165" />
+              <path
+                 d="M 1.1277393,3.8410001 V 2.9301651 H 1.2794092 V 3.12913 q 0.065234,-0.1051904 0.1573779,-0.1647168 0.092144,-0.059526 0.1842871,-0.059526 0.080728,0 0.1467773,0.043218 0.06605,0.042402 0.092144,0.1117139 0.026909,0.069311 0.026909,0.2723535 V 3.8410001 H 1.7352344 v -0.527583 q 0,-0.1312842 -0.013047,-0.1728711 -0.012231,-0.042402 -0.04648,-0.069311 -0.033433,-0.026909 -0.073389,-0.026909 -0.079912,0 -0.1720556,0.075835 -0.091328,0.075835 -0.1508545,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1167" />
+              <path
+                 d="m 2.7373975,3.6363272 q -0.069312,0.1141602 -0.1671631,0.1720557 -0.097036,0.057896 -0.1785791,0.057896 -0.1141602,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304687,0.00897 0.013047,0.00163 0.039141,0.00408 V 2.5248966 H 2.8898828 V 3.8410001 H 2.7373975 Z m 0,-0.1802099 V 3.0655265 q -0.080728,-0.021201 -0.1500391,-0.021201 -0.1402539,0 -0.2340283,0.1084521 -0.092959,0.1084522 -0.092959,0.2951856 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166065,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1169" />
+              <path
+                 d="M 3.3856642,3.8410001 V 3.0565567 H 3.132881 V 2.9301651 H 3.5373341 V 3.7146085 H 3.7909327 V 3.8410001 Z M 3.3603859,2.601547 q 0,-0.051372 0.035063,-0.07665 0.035063,-0.025278 0.06605,-0.025278 0.031802,0 0.066865,0.025278 0.035064,0.025278 0.035064,0.07665 0,0.050557 -0.035064,0.075835 -0.035064,0.025278 -0.066865,0.025278 -0.030986,0 -0.06605,-0.025278 -0.035063,-0.025278 -0.035063,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1171" />
+              <path
+                 d="M 4.4277832,3.8410001 4.0322998,2.9301651 H 4.1986475 L 4.510957,3.651005 4.82979,2.9301651 h 0.15167 l -0.3987452,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1173" />
+              <path
+                 d="M 5.3883593,3.8410001 V 3.0565567 H 5.1355761 V 2.9301651 H 5.5400292 V 3.7146085 H 5.7936278 V 3.8410001 Z M 5.363081,2.601547 q 0,-0.051372 0.035063,-0.07665 0.035064,-0.025278 0.06605,-0.025278 0.031802,0 0.066865,0.025278 0.035063,0.025278 0.035063,0.07665 0,0.050557 -0.035063,0.075835 -0.035063,0.025278 -0.066865,0.025278 -0.030986,0 -0.06605,-0.025278 Q 5.363081,2.6521036 5.363081,2.601547 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1175" />
+              <path
+                 d="m 6.7427883,3.6363272 q -0.069311,0.1141602 -0.167163,0.1720557 -0.097036,0.057896 -0.1785791,0.057896 -0.1141602,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011132,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304687,0.00897 0.013047,0.00163 0.039141,0.00408 V 2.5248966 H 6.8952737 V 3.8410001 H 6.7427883 Z m 0,-0.1802099 V 3.0655265 q -0.080728,-0.021201 -0.150039,-0.021201 -0.1402539,0 -0.2340283,0.1084521 -0.092959,0.1084522 -0.092959,0.2951856 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166065,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533007,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1177" />
+              <path
+                 d="m 7.8852052,2.9301651 v 0.910835 H 7.7335353 V 3.6412198 q -0.073389,0.1125293 -0.1630859,0.168794 -0.089697,0.056265 -0.1793946,0.056265 -0.079912,0 -0.1467773,-0.042402 -0.06605,-0.043218 -0.092144,-0.1125293 -0.026094,-0.070127 -0.026094,-0.2723535 V 2.9301651 h 0.1516699 v 0.527583 q 0,0.1312842 0.012231,0.1736866 0.013047,0.041587 0.046479,0.068496 0.034248,0.026909 0.073389,0.026909 0.079912,0 0.1712402,-0.075019 0.092144,-0.075835 0.1524854,-0.1908105 V 2.9301651 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1179" />
+              <path
+                 d="m 8.7356983,3.6363272 q -0.069312,0.1141602 -0.1671631,0.1720557 -0.097036,0.057896 -0.1785791,0.057896 -0.1141602,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304687,0.00897 0.013047,0.00163 0.039141,0.00408 h 0.1524853 v 0.643374 q 0,0.1647168 0.034248,0.267461 H 8.7642383 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 3.0655265 q -0.080728,-0.021201 -0.1500391,-0.021201 -0.1402539,0 -0.2340283,0.1084521 -0.092959,0.1084522 -0.092959,0.2951856 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166065,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1181" />
+              <path
+                 d="M 9.3831493,3.8410001 V 2.6521036 H 9.1107958 v -0.127207 h 0.4240234 v 1.1897119 h 0.284585 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1183" />
+            </g>
+            <g
+               aria-label="files"
+               id="text44"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 11.360404,3.8410001 V 3.1323917 H 11.158177 V 3.0060001 h 0.202227 v -0.042402 q 0,-0.18021 0.04077,-0.2666455 0.04077,-0.086436 0.125576,-0.1418848 0.08562,-0.055449 0.225874,-0.055449 0.106006,0 0.215274,0.022017 v 0.144331 q -0.118238,-0.039141 -0.209566,-0.039141 -0.07257,0 -0.128022,0.026909 -0.05545,0.026909 -0.08725,0.088066 -0.03099,0.060342 -0.03099,0.2054883 v 0.058711 h 0.361235 v 0.1263916 h -0.361235 v 0.7086084 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1186" />
+              <path
+                 d="M 12.404969,3.8410001 V 3.0565567 H 12.152186 V 2.9301651 h 0.404453 v 0.7844434 h 0.253599 V 3.8410001 Z M 12.379691,2.601547 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06687,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06687,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1188" />
+              <path
+                 d="M 13.395716,3.8410001 V 2.6521036 h -0.272353 v -0.127207 h 0.424023 v 1.1897119 h 0.284585 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1190" />
+              <path
+                 d="m 14.909969,3.7806583 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247608 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 14.304105,3.2971085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1192" />
+              <path
+                 d="M 15.164383,3.7928897 V 3.6322501 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114976,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117421,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.16961,-0.06605 -0.213643,-0.1223145 -0.04485,-0.055449 -0.04485,-0.1353613 0,-0.1125293 0.08644,-0.1851025 0.08725,-0.072573 0.282139,-0.072573 0.145962,0 0.27643,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282138,-0.053818 -0.09622,0 -0.150855,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.0473,0.078281 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948876 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1194" />
+            </g>
+            <g
+               aria-label="in"
+               id="text46"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 17.415621,3.8410001 V 3.0565567 H 17.162838 V 2.9301651 h 0.404453 V 3.7146085 H 17.82089 V 3.8410001 Z M 17.390343,2.601547 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06687,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06687,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1197" />
+              <path
+                 d="m 18.16174,3.8410001 v -0.910835 h 0.15167 V 3.12913 q 0.06523,-0.1051904 0.157377,-0.1647168 0.09214,-0.059526 0.184288,-0.059526 0.08073,0 0.146777,0.043218 0.06605,0.042402 0.09214,0.1117139 0.02691,0.069311 0.02691,0.2723535 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1199" />
+            </g>
+            <g
+               aria-label="/usr/share/doc/*/copyright."
+               id="text48"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 20.216134,3.8793253 H 20.06691 l 0.804829,-1.3413818 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1202" />
+              <path
+                 d="m 21.91712,2.9301651 v 0.910835 H 21.76545 V 3.6412198 q -0.07339,0.1125293 -0.163086,0.168794 -0.0897,0.056265 -0.179394,0.056265 -0.07991,0 -0.146778,-0.042402 -0.06605,-0.043218 -0.09214,-0.1125293 -0.02609,-0.070127 -0.02609,-0.2723535 V 2.9301651 h 0.15167 v 0.527583 q 0,0.1312842 0.01223,0.1736866 0.01305,0.041587 0.04648,0.068496 0.03425,0.026909 0.07339,0.026909 0.07991,0 0.17124,-0.075019 0.09214,-0.075835 0.152485,-0.1908105 V 2.9301651 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1204" />
+              <path
+                 d="M 22.179688,3.7928897 V 3.6322501 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114976,0 0.165533,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.169609,-0.06605 -0.213643,-0.1223145 -0.04485,-0.055449 -0.04485,-0.1353613 0,-0.1125293 0.08644,-0.1851025 0.08725,-0.072573 0.282139,-0.072573 0.145962,0 0.276431,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282139,-0.053818 -0.09622,0 -0.150855,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.04729,0.078281 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948876 -0.09051,0.075835 -0.290293,0.075835 -0.174501,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1206" />
+              <path
+                 d="m 23.247901,3.8410001 v -0.910835 h 0.15167 V 3.12913 q 0.07094,-0.1125293 0.162271,-0.1679785 0.09214,-0.056265 0.204673,-0.056265 0.08236,0 0.164716,0.025278 V 3.2587833 H 23.78527 V 3.0508487 q -0.03833,-0.00652 -0.06034,-0.00652 -0.0848,0 -0.166348,0.066865 -0.08154,0.066865 -0.159009,0.2005957 v 0.5292139 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1208" />
+              <path
+                 d="M 24.221524,3.8793253 H 24.072301 L 24.87713,2.5379435 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1210" />
+              <path
+                 d="M 25.183731,3.7928897 V 3.6322501 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114976,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.16961,-0.06605 -0.213643,-0.1223145 -0.04485,-0.055449 -0.04485,-0.1353613 0,-0.1125293 0.08644,-0.1851025 0.08725,-0.072573 0.282139,-0.072573 0.145962,0 0.27643,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282138,-0.053818 -0.09622,0 -0.150855,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.04729,0.078281 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948876 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1212" />
+              <path
+                 d="M 26.174479,3.8410001 V 2.5248966 h 0.15167 V 3.12913 q 0.06523,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184287,-0.059526 0.07747,0 0.141069,0.039956 0.06442,0.039141 0.0897,0.095405 0.02039,0.043218 0.02773,0.092144 0.0073,0.04811 0.0073,0.1997803 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1214" />
+              <path
+                 d="m 27.774352,3.6363272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.17858,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101114,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 h 0.152485 v 0.643374 q 0,0.1647168 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 3.0655265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234029,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1216" />
+              <path
+                 d="m 28.25464,3.8410001 v -0.910835 h 0.15167 V 3.12913 q 0.07094,-0.1125293 0.16227,-0.1679785 0.09214,-0.056265 0.204673,-0.056265 0.08236,0 0.164717,0.025278 V 3.2587833 H 28.792008 V 3.0508487 q -0.03833,-0.00652 -0.06034,-0.00652 -0.0848,0 -0.166348,0.066865 -0.08154,0.066865 -0.159008,0.2005957 v 0.5292139 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1218" />
+              <path
+                 d="m 29.936056,3.7806583 q -0.181841,0.086436 -0.344112,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247608 0.05545,-0.2397363 0.05545,-0.1149756 0.154931,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.62788 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324542,-0.097852 z M 29.330191,3.2971085 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06687,0.066865 -0.09378,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1220" />
+              <path
+                 d="m 30.22961,3.8793253 h -0.149224 l 0.80483,-1.3413818 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1222" />
+              <path
+                 d="m 31.789527,3.6363272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130468,0.00897 0.01305,0.00163 0.03914,0.00408 V 2.5248966 h 0.152485 v 1.3161035 h -0.152485 z m 0,-0.1802099 V 3.0655265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234028,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1224" />
+              <path
+                 d="m 32.557663,3.8662784 q -0.195704,0 -0.313125,-0.1361768 -0.117422,-0.1369921 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.3441113 0.117421,-0.1361768 0.313125,-0.1361768 0.194887,0 0.312309,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449267 -0.117422,0.1361768 -0.312309,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1226" />
+              <path
+                 d="m 33.950416,3.8149063 q -0.152485,0.051372 -0.290293,0.051372 -0.136992,0 -0.243813,-0.062788 -0.106006,-0.063604 -0.165532,-0.1712402 -0.05953,-0.1084522 -0.05953,-0.2462598 0,-0.2071191 0.134546,-0.3441113 0.135362,-0.1369922 0.326172,-0.1369922 0.141069,0 0.298447,0.053003 v 0.1459619 q -0.159008,-0.072573 -0.284585,-0.072573 -0.08317,0 -0.156562,0.041587 -0.07339,0.040771 -0.113345,0.1280225 -0.03996,0.087251 -0.03996,0.1793945 0,0.1231299 0.07665,0.2348438 0.07746,0.1117138 0.242182,0.1117138 0.04974,0 0.09785,-0.00652 0.04811,-0.00734 0.177763,-0.051372 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1228" />
+              <path
+                 d="m 34.235001,3.8793253 h -0.149223 l 0.804829,-1.3413818 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1230" />
+              <path
+                 d="m 35.483424,3.3036319 0.01712,-0.2829541 -0.230767,0.1549317 -0.07584,-0.1320996 0.250337,-0.1223145 -0.250337,-0.1239453 0.07584,-0.1296533 0.230767,0.1541162 -0.01712,-0.2837695 h 0.153301 l -0.0212,0.2837695 0.235659,-0.1541162 0.07665,0.1296533 -0.251152,0.1239453 0.251152,0.1223145 -0.07665,0.1320996 -0.235659,-0.1549317 0.0212,0.2829541 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1232" />
+              <path
+                 d="m 36.237696,3.8793253 h -0.149223 l 0.804829,-1.3413818 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1234" />
+              <path
+                 d="m 37.955807,3.8149063 q -0.152485,0.051372 -0.290292,0.051372 -0.136993,0 -0.243814,-0.062788 -0.106006,-0.063604 -0.165532,-0.1712402 -0.05953,-0.1084522 -0.05953,-0.2462598 0,-0.2071191 0.134546,-0.3441113 0.135362,-0.1369922 0.326172,-0.1369922 0.14107,0 0.298447,0.053003 v 0.1459619 q -0.159008,-0.072573 -0.284584,-0.072573 -0.08317,0 -0.156563,0.041587 -0.07339,0.040771 -0.113345,0.1280225 -0.03996,0.087251 -0.03996,0.1793945 0,0.1231299 0.07665,0.2348438 0.07747,0.1117138 0.242182,0.1117138 0.04974,0 0.09785,-0.00652 0.04811,-0.00734 0.177763,-0.051372 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1236" />
+              <path
+                 d="m 38.565748,3.8662784 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369921 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194888,0 0.312309,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449267 -0.117421,0.1361768 -0.312309,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1238" />
+              <path
+                 d="m 39.332253,3.134838 q 0.07013,-0.1141602 0.167163,-0.1720557 0.09704,-0.057896 0.178579,-0.057896 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101113,0.071758 -0.250337,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 v 0.3538965 h -0.15167 V 2.9301651 h 0.15167 z m 0,0.1802099 v 0.3905909 q 0.08236,0.021201 0.151669,0.021201 0.137808,0 0.231583,-0.1076367 0.09459,-0.1084521 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.2046728 -0.05137,-0.068496 -0.116606,-0.068496 -0.07094,0 -0.156563,0.071758 -0.0848,0.071758 -0.1533,0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1240" />
+              <path
+                 d="M 40.528487,3.8043057 40.107725,2.9301651 h 0.167163 l 0.335142,0.6833301 0.280508,-0.6833301 h 0.152485 l -0.353081,0.846416 q -0.111714,0.2682764 -0.212827,0.3563428 -0.100298,0.088066 -0.260122,0.088066 -0.06931,0 -0.123946,-0.012231 V 4.0750284 q 0.06279,0.01957 0.119869,0.01957 0.07339,0 0.130468,-0.02854 0.05708,-0.02854 0.104375,-0.1011133 0.0473,-0.072573 0.06687,-0.1255762 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1242" />
+              <path
+                 d="m 41.27216,3.8410001 v -0.910835 h 0.151669 V 3.12913 q 0.07094,-0.1125293 0.162271,-0.1679785 0.09214,-0.056265 0.204673,-0.056265 0.08236,0 0.164717,0.025278 V 3.2587833 H 41.809528 V 3.0508487 q -0.03833,-0.00652 -0.06034,-0.00652 -0.08481,0 -0.166348,0.066865 -0.08154,0.066865 -0.159009,0.2005957 v 0.5292139 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1244" />
+              <path
+                 d="M 42.45127,3.8410001 V 3.0565567 H 42.198487 V 2.9301651 h 0.404453 v 0.7844434 h 0.253598 V 3.8410001 Z M 42.425992,2.601547 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06686,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06686,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1246" />
+              <path
+                 d="m 43.805699,3.6363272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 h 0.152486 v 0.6441895 q 0,0.2299511 -0.0065,0.2805078 -0.0057,0.051372 -0.01957,0.1035596 -0.03262,0.121499 -0.149224,0.1916259 -0.115791,0.070127 -0.280507,0.070127 -0.165533,0 -0.335142,-0.084805 V 3.9820694 q 0.06442,0.044033 0.158193,0.077466 0.09459,0.034248 0.182657,0.034248 0.06931,0 0.131284,-0.022017 0.06197,-0.022017 0.100298,-0.063604 0.03833,-0.041587 0.05219,-0.097036 0.01386,-0.054634 0.01386,-0.1459619 z m 0,-0.1802099 V 3.0655265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234028,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.1533,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1248" />
+              <path
+                 d="M 44.198737,3.8410001 V 2.5248966 h 0.15167 V 3.12913 q 0.06524,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184287,-0.059526 0.07747,0 0.14107,0.039956 0.06442,0.039141 0.0897,0.095405 0.02039,0.043218 0.02772,0.092144 0.0073,0.04811 0.0073,0.1997803 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172055,0.075835 -0.09133,0.075835 -0.150855,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1250" />
+              <path
+                 d="m 45.961695,3.8043057 q -0.106821,0.044849 -0.154931,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217969 V 3.1323917 H 45.151974 V 3.0060001 h 0.227504 V 2.6390568 h 0.15167 v 0.3669433 h 0.405269 v 0.1263916 h -0.405269 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1252" />
+              <path
+                 d="m 46.575715,3.8793253 q -0.05463,0 -0.09378,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09378,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09377,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1254" />
+            </g>
+            <g
+               aria-label="Ubuntu"
+               id="text50"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.10274414,6.9174528 h 0.16471679 v 0.8309228 q 0,0.1639014 0.0269092,0.2242432 0.0277246,0.059526 0.0839893,0.091328 0.0570801,0.030986 0.12639159,0.030986 0.0733887,0 0.13046875,-0.033433 Q 0.69311522,8.0272525 0.7200244,7.9554947 0.747749,7.8829215 0.747749,7.6839567 V 6.9174528 H 0.89941892 V 7.743483 q 0,0.1769483 -0.0530029,0.2772461 -0.0521875,0.099482 -0.13699218,0.1500391 -0.0848047,0.050557 -0.21364257,0.050557 -0.11905273,0 -0.20956543,-0.044033 Q 0.19570312,8.1332584 0.14922363,8.045192 0.10274414,7.9571256 0.10274414,7.7271744 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1257" />
+              <path
+                 d="m 1.2679932,7.4768375 q 0.070127,-0.1141601 0.167163,-0.1720556 0.097036,-0.057895 0.1785791,-0.057895 0.1141602,0 0.2054883,0.098667 0.091328,0.098667 0.091328,0.2992627 0,0.1581934 -0.061157,0.2829541 -0.060342,0.1239453 -0.1614551,0.1965186 -0.1011132,0.071758 -0.2503369,0.071758 -0.042402,0 -0.1304687,-0.00897 -0.013047,-0.00163 -0.039141,-0.00408 h -0.15167 V 6.8668961 h 0.15167 z m 0,0.18021 v 0.3905908 q 0.082358,0.021201 0.1516699,0.021201 0.1378076,0 0.231582,-0.1076368 0.09459,-0.1084521 0.09459,-0.2960009 0,-0.1361768 -0.051372,-0.2046729 -0.051372,-0.068496 -0.1166065,-0.068496 -0.070942,0 -0.1565625,0.071758 -0.084805,0.071758 -0.1533007,0.1932569 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1259" />
+              <path
+                 d="M 2.8784668,7.2721647 V 8.1829996 H 2.7267969 V 7.9832193 q -0.073389,0.1125293 -0.163086,0.168794 -0.089697,0.056265 -0.1793945,0.056265 -0.079912,0 -0.1467773,-0.042402 -0.06605,-0.043218 -0.092144,-0.1125293 -0.026094,-0.070127 -0.026094,-0.2723535 V 7.2721647 h 0.1516699 v 0.527583 q 0,0.1312841 0.012231,0.1736865 0.013047,0.041587 0.046479,0.068496 0.034248,0.026909 0.073389,0.026909 0.079912,0 0.1712402,-0.07502 0.092144,-0.075835 0.1524854,-0.1908105 V 7.2721647 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1261" />
+              <path
+                 d="M 3.1304347,8.1829996 V 7.2721647 h 0.1516699 v 0.1989648 q 0.065234,-0.1051904 0.1573779,-0.1647168 0.092144,-0.059526 0.1842871,-0.059526 0.080728,0 0.1467774,0.043218 0.06605,0.042402 0.092143,0.1117139 0.026909,0.069312 0.026909,0.2723535 V 8.1829996 H 3.7379298 v -0.527583 q 0,-0.1312842 -0.013047,-0.1728711 -0.012231,-0.042402 -0.046479,-0.069311 -0.033433,-0.026909 -0.073389,-0.026909 -0.079912,0 -0.1720557,0.075835 -0.091328,0.075835 -0.1508545,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1263" />
+              <path
+                 d="m 4.8933936,8.1463053 q -0.1068213,0.044849 -0.1549317,0.053003 -0.04811,0.00897 -0.092959,0.00897 -0.095405,0 -0.1745019,-0.036694 Q 4.3919043,8.1348893 4.3511328,8.0631314 4.3111768,7.9913736 4.3111768,7.8413346 V 7.4743912 H 4.0836719 V 7.3479996 H 4.3111768 V 6.9810563 H 4.4628467 V 7.3479996 H 4.8681152 V 7.4743912 H 4.4628467 v 0.3644971 q 0,0.110083 0.026094,0.1557471 0.026094,0.044849 0.069312,0.06605 0.044033,0.021201 0.1035595,0.021201 0.110083,0 0.2315821,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1265" />
+              <path
+                 d="M 5.8825096,7.2721647 V 8.1829996 H 5.7308397 V 7.9832193 q -0.073389,0.1125293 -0.1630859,0.168794 -0.089697,0.056265 -0.1793945,0.056265 -0.079912,0 -0.1467774,-0.042402 -0.06605,-0.043218 -0.092143,-0.1125293 -0.026094,-0.070127 -0.026094,-0.2723535 V 7.2721647 h 0.1516699 v 0.527583 q 0,0.1312841 0.012231,0.1736865 0.013047,0.041587 0.04648,0.068496 0.034248,0.026909 0.073389,0.026909 0.079912,0 0.1712402,-0.07502 0.092143,-0.075835 0.1524853,-0.1908105 V 7.2721647 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1267" />
+            </g>
+            <g
+               aria-label="comes"
+               id="text52"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 7.9068954,8.1569059 q -0.1524853,0.051372 -0.2902929,0.051372 -0.1369922,0 -0.2438135,-0.062788 Q 7.2667831,8.0818863 7.2072568,7.9742496 7.1477304,7.8657975 7.1477304,7.7279899 q 0,-0.2071192 0.1345459,-0.3441114 0.1353613,-0.1369921 0.3261719,-0.1369921 0.1410693,0 0.2984472,0.053003 V 7.4458512 Q 7.7478866,7.373278 7.6223105,7.373278 q -0.083174,0 -0.1565625,0.041587 -0.073389,0.040771 -0.1133447,0.1280224 -0.039956,0.087251 -0.039956,0.1793945 0,0.1231299 0.07665,0.2348438 0.077466,0.1117139 0.2421826,0.1117139 0.049741,0 0.097852,-0.00652 0.04811,-0.00734 0.1777636,-0.051372 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1270" />
+              <path
+                 d="m 8.5168368,8.2082779 q -0.1957031,0 -0.3131249,-0.1361767 Q 8.08629,7.935109 8.08629,7.7271744 q 0,-0.2079345 0.1174219,-0.3441113 0.1174218,-0.1361767 0.3131249,-0.1361767 0.1948877,0 0.3123096,0.1361767 0.1174219,0.1361768 0.1174219,0.3441113 0,0.2079346 -0.1174219,0.3449268 -0.1174219,0.1361767 -0.3123096,0.1361767 z m 0,-0.1263916 q 0.1214991,0 0.1932569,-0.09459 0.071758,-0.09459 0.071758,-0.2601221 0,-0.1647168 -0.071758,-0.2593066 -0.071758,-0.09459 -0.1932569,-0.09459 -0.1223144,0 -0.1940722,0.09459 -0.071758,0.09459 -0.071758,0.2593066 0,0.1655322 0.071758,0.2601221 0.071758,0.09459 0.1940722,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1272" />
+              <path
+                 d="M 9.0745908,8.1829996 V 7.2721647 h 0.132915 v 0.20875 q 0.062788,-0.1329151 0.1166064,-0.1834717 0.054634,-0.050557 0.1100831,-0.050557 0.06605,0 0.1060058,0.052187 0.040771,0.051372 0.040771,0.1467773 v 0.048926 q 0.026909,-0.083174 0.064419,-0.1345459 0.038325,-0.052187 0.079097,-0.082358 0.040771,-0.030986 0.093774,-0.030986 0.058711,0 0.1002979,0.049741 0.041587,0.049741 0.041587,0.1981494 V 8.1829996 H 9.8272323 V 7.5608268 q 0,-0.07665 -0.00489,-0.104375 -0.00489,-0.02854 -0.01957,-0.043218 -0.014678,-0.014678 -0.031802,-0.014678 -0.042402,0 -0.091328,0.065234 -0.04811,0.064419 -0.098667,0.214458 v 0.504751 H 9.4537656 V 7.5616422 q 0,-0.1206836 -0.023648,-0.1418848 -0.023647,-0.021201 -0.042402,-0.021201 -0.041587,0 -0.089697,0.072573 -0.047295,0.072573 -0.090513,0.185918 v 0.5259521 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1274" />
+              <path
+                 d="m 10.901969,8.1226578 q -0.181841,0.086436 -0.344112,0.086436 -0.123129,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 10.296105,7.639108 h 0.454194 v -0.022017 q 0,-0.1117138 -0.05463,-0.1777636 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1276" />
+              <path
+                 d="M 11.156383,8.1348893 V 7.9742496 q 0.09133,0.059526 0.193257,0.083989 0.101928,0.023647 0.172871,0.023647 0.114975,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.105191,-0.041587 q -0.169609,-0.06605 -0.213642,-0.1223144 -0.04485,-0.055449 -0.04485,-0.1353614 0,-0.1125293 0.08644,-0.1851025 0.08725,-0.072573 0.282138,-0.072573 0.145962,0 0.276431,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282139,-0.053818 -0.09622,0 -0.150854,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.0473,0.078281 0.04648,0.029356 0.15167,0.067681 l 0.102744,0.03751 q 0.14107,0.051372 0.19815,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1278" />
+            </g>
+            <g
+               aria-label="with"
+               id="text54"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 13.190717,8.1829996 13.042309,7.2721647 h 0.141069 l 0.08643,0.5544921 0.02283,0.1288379 0.02202,-0.1288379 0.145147,-0.5544921 h 0.136176 l 0.163902,0.5544921 0.02854,0.1288379 0.01875,-0.1288379 0.08725,-0.5544921 h 0.116606 L 13.863446,8.1829996 H 13.721562 L 13.54706,7.5967057 13.519335,7.4678678 h -0.0041 l -0.02528,0.1280225 -0.15167,0.5871093 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1281" />
+              <path
+                 d="M 14.408969,8.1829996 V 7.3985563 H 14.156186 V 7.2721647 h 0.404453 V 8.056608 h 0.253598 V 8.1829996 Z M 14.38369,6.9435465 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06686,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06686,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1283" />
+              <path
+                 d="m 15.916698,8.1463053 q -0.106821,0.044849 -0.154931,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 7.4743912 H 15.106977 V 7.3479996 h 0.227504 V 6.9810563 h 0.15167 v 0.3669433 h 0.405269 v 0.1263916 h -0.405269 v 0.3644971 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1285" />
+              <path
+                 d="M 16.156435,8.1829996 V 6.8668961 h 0.15167 v 0.6042334 q 0.06523,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184287,-0.059526 0.07747,0 0.141069,0.039956 0.06442,0.039141 0.0897,0.095405 0.02039,0.043218 0.02773,0.092144 0.0073,0.04811 0.0073,0.1997803 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1287" />
+            </g>
+            <g
+               aria-label="ABSOLUTELY"
+               id="text56"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 18.221102,8.1829996 h -0.158194 l 0.389776,-1.2655468 h 0.167163 l 0.392222,1.2655468 h -0.173687 l -0.08643,-0.2780615 h -0.445225 z m 0.124761,-0.4044531 h 0.369389 l -0.152485,-0.4802881 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1290" />
+              <path
+                 d="M 19.177601,8.1829996 V 6.9174528 h 0.247075 q 0.222612,0 0.297632,0.034248 0.07583,0.033433 0.113345,0.099482 0.03751,0.06605 0.03751,0.1508545 0,0.066865 -0.02202,0.1272071 -0.02202,0.059526 -0.06524,0.1092675 -0.04322,0.048926 -0.125576,0.092959 0.150855,0.060342 0.203858,0.1484082 0.05382,0.088066 0.05382,0.1761328 0,0.083989 -0.04566,0.1630859 -0.04485,0.079097 -0.126392,0.1214991 -0.08154,0.042402 -0.260937,0.042402 z m 0.164717,-0.6955615 h 0.172871 q 0.08399,-0.035064 0.122314,-0.073389 0.03914,-0.039141 0.0579,-0.086435 0.01957,-0.04811 0.01957,-0.1051904 0,-0.089697 -0.053,-0.1337305 -0.05219,-0.044033 -0.204673,-0.044033 h -0.114975 z m 0,0.5691699 h 0.155747 q 0.130468,0 0.192441,-0.061157 0.06279,-0.061973 0.06279,-0.1484082 0,-0.063604 -0.03425,-0.1166065 -0.03425,-0.053818 -0.106006,-0.084805 -0.07176,-0.031802 -0.225058,-0.031802 h -0.04566 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1292" />
+              <path
+                 d="M 20.166717,8.1560904 V 8.0011588 q 0.195703,0.092959 0.355527,0.092959 0.06687,0 0.128023,-0.025278 0.06116,-0.026094 0.09214,-0.074204 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.1231299 -0.04322,-0.057896 -0.16227,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.1312842 -0.221797,-0.3261719 0,-0.1427002 0.09867,-0.2397363 0.09948,-0.097852 0.309863,-0.097852 0.135362,0 0.261753,0.039141 V 7.060153 q -0.139438,-0.053818 -0.271538,-0.053818 -0.10519,0 -0.170425,0.055449 -0.06442,0.055449 -0.06442,0.1337305 0,0.077466 0.04974,0.1288379 0.04974,0.051372 0.127207,0.09459 l 0.0636,0.038325 0.0791,0.04811 0.06686,0.039141 q 0.207935,0.127207 0.207935,0.3196484 0,0.1467774 -0.106822,0.2519678 -0.106821,0.1051904 -0.34248,0.1051904 -0.07502,0 -0.143516,-0.013047 -0.06768,-0.012231 -0.178579,-0.052188 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1294" />
+              <path
+                 d="m 21.540716,8.2213248 q -0.215273,0 -0.329433,-0.1810254 -0.113345,-0.1818408 -0.113345,-0.4900732 0,-0.307417 0.113345,-0.4884424 0.11416,-0.1818408 0.329433,-0.1818408 0.216089,0 0.329434,0.1818408 0.113345,0.1810254 0.113345,0.4884424 0,0.3082324 -0.113345,0.4900732 -0.113345,0.1810254 -0.329434,0.1810254 z m 0,-0.127207 q 0.119053,0 0.19815,-0.1345459 0.07991,-0.1353613 0.07991,-0.4093457 0,-0.2739844 -0.07991,-0.4085303 -0.0791,-0.1353613 -0.19815,-0.1353613 -0.119053,0 -0.198965,0.1353613 -0.0791,0.1345459 -0.0791,0.4085303 0,0.2739844 0.0791,0.4093457 0.07991,0.1345459 0.198965,0.1345459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1296" />
+              <path
+                 d="m 22.903299,8.0435611 v 0.1394385 h -0.68333 V 6.9174528 h 0.164717 v 1.1261083 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1298" />
+              <path
+                 d="m 23.145482,6.9174528 h 0.164716 v 0.8309228 q 0,0.1639014 0.02691,0.2242432 0.02772,0.059526 0.08399,0.091328 0.05708,0.030986 0.126391,0.030986 0.07339,0 0.130469,-0.033433 0.0579,-0.034248 0.0848,-0.1060059 0.02772,-0.072573 0.02772,-0.271538 V 6.9174528 h 0.15167 V 7.743483 q 0,0.1769483 -0.053,0.2772461 -0.05219,0.099482 -0.136992,0.1500391 -0.0848,0.050557 -0.213642,0.050557 -0.119053,0 -0.209566,-0.044033 -0.09051,-0.044033 -0.136992,-0.1320996 -0.04648,-0.088066 -0.04648,-0.3180176 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1300" />
+              <path
+                 d="M 24.462401,8.1829996 V 7.0568912 H 24.083226 V 6.9174528 h 0.923882 v 0.1394384 h -0.37999 v 1.1261084 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1302" />
+              <path
+                 d="m 25.894295,8.0435611 v 0.1394385 h -0.68333 V 6.9174528 h 0.670283 v 0.127207 h -0.505566 v 0.4297314 h 0.45501 v 0.1263916 h -0.45501 v 0.4427783 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1304" />
+              <path
+                 d="M 26.90869,8.0435611 V 8.1829996 H 26.22536 V 6.9174528 h 0.164716 v 1.1261083 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1306" />
+              <path
+                 d="M 27.467259,8.1829996 V 7.5975211 L 27.09053,6.9174528 h 0.186734 l 0.281323,0.5023046 0.280508,-0.5023046 h 0.168794 l -0.375913,0.6800683 v 0.5854785 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1308" />
+            </g>
+            <g
+               aria-label="NO"
+               id="text58"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 29.312415,8.1829996 h -0.15167 V 6.9174528 h 0.148408 l 0.447671,0.8423388 0.04893,0.1255762 h 0.0041 L 29.80575,7.7597916 V 6.9174528 h 0.151669 V 8.1829996 H 29.80575 l -0.43544,-0.8284765 -0.06116,-0.1329151 0.0033,0.1312842 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1311" />
+              <path
+                 d="m 30.560022,8.2213248 q -0.215273,0 -0.329434,-0.1810254 -0.113344,-0.1818408 -0.113344,-0.4900732 0,-0.307417 0.113344,-0.4884424 0.114161,-0.1818408 0.329434,-0.1818408 0.216089,0 0.329434,0.1818408 0.113344,0.1810254 0.113344,0.4884424 0,0.3082324 -0.113344,0.4900732 -0.113345,0.1810254 -0.329434,0.1810254 z m 0,-0.127207 q 0.119053,0 0.198149,-0.1345459 0.07991,-0.1353613 0.07991,-0.4093457 0,-0.2739844 -0.07991,-0.4085303 -0.0791,-0.1353613 -0.198149,-0.1353613 -0.119053,0 -0.198965,0.1353613 -0.0791,0.1345459 -0.0791,0.4085303 0,0.2739844 0.0791,0.4093457 0.07991,0.1345459 0.198965,0.1345459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1313" />
+            </g>
+            <g
+               aria-label="WARRANTY,"
+               id="text60"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 32.233609,8.1829996 32.086831,6.9174528 h 0.150039 l 0.08644,0.770581 0.01142,0.1280225 h 0.0041 l 0.01631,-0.1280225 0.132915,-0.770581 h 0.150039 l 0.15167,0.8015673 0.01549,0.1223145 h 0.0041 l 0.0098,-0.1231299 0.0954,-0.8007519 h 0.128838 l -0.153301,1.2655468 h -0.155747 l -0.163086,-0.857832 -0.01712,-0.1288379 h -0.0041 l -0.01549,0.1288379 -0.146777,0.857832 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1316" />
+              <path
+                 d="m 33.250449,8.1829996 h -0.158193 l 0.389775,-1.2655468 h 0.167163 l 0.392222,1.2655468 H 33.86773 L 33.781294,7.9049381 H 33.336069 Z M 33.37521,7.7785465 h 0.36939 l -0.152486,-0.4802881 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1318" />
+              <path
+                 d="M 34.35291,7.6456315 V 8.1829996 H 34.188194 V 6.9174528 h 0.338403 q 0.165532,0 0.243813,0.034248 0.07828,0.033433 0.120684,0.1019287 0.04322,0.068496 0.04322,0.1475928 0,0.073389 -0.02854,0.1475928 -0.02854,0.074204 -0.0791,0.132915 -0.04974,0.057895 -0.144331,0.110083 l 0.366128,0.5911865 H 34.852769 L 34.517627,7.6456315 Z m 0,-0.1272071 h 0.230767 q 0.07747,-0.042402 0.114975,-0.086435 0.03833,-0.044033 0.0579,-0.093774 0.01957,-0.049741 0.01957,-0.099482 0,-0.088882 -0.06523,-0.1410694 -0.06442,-0.053003 -0.234844,-0.053003 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1320" />
+              <path
+                 d="M 35.354258,7.6456315 V 8.1829996 H 35.189541 V 6.9174528 h 0.338404 q 0.165532,0 0.243813,0.034248 0.07828,0.033433 0.120684,0.1019287 0.04322,0.068496 0.04322,0.1475928 0,0.073389 -0.02854,0.1475928 -0.02854,0.074204 -0.0791,0.132915 -0.04974,0.057895 -0.144331,0.110083 L 36.04982,8.1829996 H 35.854116 L 35.518975,7.6456315 Z m 0,-0.1272071 h 0.230767 q 0.07747,-0.042402 0.114975,-0.086435 0.03833,-0.044033 0.0579,-0.093774 0.01957,-0.049741 0.01957,-0.099482 0,-0.088882 -0.06523,-0.1410694 -0.06442,-0.053003 -0.234844,-0.053003 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1322" />
+              <path
+                 d="m 36.254492,8.1829996 h -0.158193 l 0.389775,-1.2655468 h 0.167163 l 0.392222,1.2655468 h -0.173686 l -0.08644,-0.2780615 h -0.445225 z m 0.124761,-0.4044531 h 0.36939 l -0.152486,-0.4802881 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1324" />
+              <path
+                 d="m 37.325151,8.1829996 h -0.15167 V 6.9174528 h 0.148409 l 0.447671,0.8423388 0.04892,0.1255762 h 0.0041 l -0.0041,-0.1255762 V 6.9174528 h 0.15167 v 1.2655468 h -0.15167 L 37.383047,7.3545231 37.32189,7.221608 l 0.0033,0.1312842 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1326" />
+              <path
+                 d="M 38.490401,8.1829996 V 7.0568912 H 38.111226 V 6.9174528 h 0.923882 v 0.1394384 h -0.37999 v 1.1261084 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1328" />
+              <path
+                 d="M 39.492564,8.1829996 V 7.5975211 L 39.115835,6.9174528 h 0.186734 L 39.583892,7.4197574 39.8644,6.9174528 h 0.168794 l -0.375913,0.6800683 v 0.5854785 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1330" />
+              <path
+                 d="M 40.420523,8.5368961 V 8.4357828 q 0.05871,-0.015493 0.08888,-0.044849 0.03099,-0.02854 0.04893,-0.073389 0.01875,-0.044033 0.01875,-0.1068213 -0.07583,0 -0.111714,-0.042402 -0.03588,-0.043218 -0.03588,-0.092144 0,-0.056265 0.03996,-0.09459 0.03996,-0.039141 0.09296,-0.039141 0.0685,0 0.118238,0.059526 0.04974,0.058711 0.04974,0.1614551 0,0.089697 -0.03914,0.1687939 -0.03914,0.079912 -0.106821,0.1361768 -0.06686,0.056265 -0.163901,0.068496 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1332" />
+            </g>
+            <g
+               aria-label="to"
+               id="text62"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 42.972003,8.1463053 q -0.106822,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 7.4743912 H 42.162281 V 7.3479996 h 0.227505 V 6.9810563 h 0.15167 v 0.3669433 h 0.405268 v 0.1263916 h -0.405268 v 0.3644971 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1335" />
+              <path
+                 d="m 43.586837,8.2082779 q -0.195704,0 -0.313125,-0.1361767 Q 43.15629,7.935109 43.15629,7.7271744 q 0,-0.2079345 0.117422,-0.3441113 0.117421,-0.1361767 0.313125,-0.1361767 0.194887,0 0.312309,0.1361767 0.117422,0.1361768 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449268 -0.117422,0.1361767 -0.312309,0.1361767 z m 0,-0.1263916 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1337" />
+            </g>
+            <g
+               aria-label="the"
+               id="text64"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 45.978003,8.1463053 q -0.106821,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 7.4743912 H 45.168281 V 7.3479996 h 0.227505 V 6.9810563 h 0.15167 v 0.3669433 h 0.405269 v 0.1263916 h -0.405269 v 0.3644971 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1340" />
+              <path
+                 d="M 46.217739,8.1829996 V 6.8668961 h 0.15167 v 0.6042334 q 0.06524,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184287,-0.059526 0.07747,0 0.14107,0.039956 0.06442,0.039141 0.0897,0.095405 0.02039,0.043218 0.02773,0.092144 0.0073,0.04811 0.0073,0.1997803 v 0.5088281 h -0.151669 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172055,0.075835 -0.09133,0.075835 -0.150855,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1342" />
+              <path
+                 d="m 47.976621,8.1226578 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154931,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 47.370757,7.639108 h 0.454194 v -0.022017 q 0,-0.1117138 -0.05463,-0.1777636 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1344" />
+            </g>
+            <g
+               aria-label="extent"
+               id="text66"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 49.981925,8.1226578 q -0.18184,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154931,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 49.376061,7.639108 h 0.454194 v -0.022017 q 0,-0.1117138 -0.05463,-0.1777636 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06687,0.066865 -0.09378,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1347" />
+              <path
+                 d="M 50.320329,8.1829996 H 50.145011 L 50.502985,7.7059733 50.168659,7.2721647 h 0.194072 l 0.23729,0.3057861 0.230767,-0.3057861 h 0.172055 L 50.686457,7.6912955 51.06237,8.1829996 H 50.867482 L 50.590236,7.8201334 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1349" />
+              <path
+                 d="m 51.988698,8.1463053 q -0.106821,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 7.4743912 H 51.178976 V 7.3479996 h 0.227505 V 6.9810563 h 0.15167 v 0.3669433 h 0.405268 v 0.1263916 h -0.405268 v 0.3644971 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1351" />
+              <path
+                 d="m 52.985968,8.1226578 q -0.18184,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.05789,-0.1141602 -0.05789,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154931,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 52.380104,7.639108 h 0.454195 v -0.022017 q 0,-0.1117138 -0.05463,-0.1777636 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06687,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1353" />
+              <path
+                 d="M 53.229782,8.1829996 V 7.2721647 h 0.15167 v 0.1989648 q 0.06523,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184287,-0.059526 0.08073,0 0.146777,0.043218 0.06605,0.042402 0.09214,0.1117139 0.02691,0.069312 0.02691,0.2723535 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1355" />
+              <path
+                 d="m 54.992741,8.1463053 q -0.106822,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 7.4743912 H 54.183019 V 7.3479996 h 0.227505 V 6.9810563 h 0.15167 v 0.3669433 h 0.405268 v 0.1263916 h -0.405268 v 0.3644971 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1357" />
+            </g>
+            <g
+               aria-label="permitted"
+               id="text68"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 56.378645,7.4768375 q 0.07013,-0.1141601 0.167163,-0.1720556 0.09704,-0.057895 0.178579,-0.057895 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965186 -0.101113,0.071758 -0.250337,0.071758 -0.0424,0 -0.130468,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 v 0.3538965 h -0.15167 V 7.2721647 h 0.15167 z m 0,0.18021 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076368 0.09459,-0.1084521 0.09459,-0.2960009 0,-0.1361768 -0.05137,-0.2046729 -0.05137,-0.068496 -0.116607,-0.068496 -0.07094,0 -0.156562,0.071758 -0.0848,0.071758 -0.153301,0.1932569 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1360" />
+              <path
+                 d="m 57.997273,8.1226578 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 57.391409,7.639108 h 0.454194 v -0.022017 q 0,-0.1117138 -0.05463,-0.1777636 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1362" />
+              <path
+                 d="M 58.318552,8.1829996 V 7.2721647 h 0.15167 v 0.1989648 q 0.07094,-0.1125293 0.162271,-0.1679785 0.09214,-0.056265 0.204673,-0.056265 0.08236,0 0.164716,0.025278 V 7.6007828 H 58.85592 V 7.3928483 q -0.03833,-0.00652 -0.06034,-0.00652 -0.0848,0 -0.166348,0.066865 -0.08154,0.066865 -0.159009,0.2005957 v 0.5292138 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1364" />
+              <path
+                 d="M 59.173938,8.1829996 V 7.2721647 h 0.132915 v 0.20875 q 0.06279,-0.1329151 0.116607,-0.1834717 0.05463,-0.050557 0.110083,-0.050557 0.06605,0 0.106005,0.052187 0.04077,0.051372 0.04077,0.1467773 v 0.048926 q 0.02691,-0.083174 0.06442,-0.1345459 0.03833,-0.052187 0.0791,-0.082358 0.04077,-0.030986 0.09377,-0.030986 0.05871,0 0.100298,0.049741 0.04159,0.049741 0.04159,0.1981494 V 8.1829996 H 59.92658 V 7.5608268 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.043218 -0.01468,-0.014678 -0.0318,-0.014678 -0.0424,0 -0.09133,0.065234 -0.04811,0.064419 -0.09867,0.214458 v 0.504751 H 59.553113 V 7.5616422 q 0,-0.1206836 -0.02365,-0.1418848 -0.02365,-0.021201 -0.0424,-0.021201 -0.04159,0 -0.0897,0.072573 -0.04729,0.072573 -0.09051,0.185918 v 0.5259521 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1366" />
+              <path
+                 d="M 60.499011,8.1829996 V 7.3985563 H 60.246228 V 7.2721647 h 0.404453 V 8.056608 h 0.253599 v 0.1263916 z m -0.02528,-1.2394531 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06686,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06686,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1368" />
+              <path
+                 d="m 62.006741,8.1463053 q -0.106822,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 7.4743912 H 61.197019 V 7.3479996 h 0.227505 V 6.9810563 h 0.15167 v 0.3669433 h 0.405268 v 0.1263916 h -0.405268 v 0.3644971 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1370" />
+              <path
+                 d="m 63.008089,8.1463053 q -0.106822,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 7.4743912 H 62.198367 V 7.3479996 h 0.227505 V 6.9810563 h 0.15167 v 0.3669433 h 0.405268 v 0.1263916 h -0.405268 v 0.3644971 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1372" />
+              <path
+                 d="m 64.005359,8.1226578 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 63.399495,7.639108 h 0.454194 v -0.022017 q 0,-0.1117138 -0.05463,-0.1777636 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1374" />
+              <path
+                 d="m 64.857483,7.9783268 q -0.06931,0.1141601 -0.167163,0.1720556 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992626 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130468,0.00897 0.01305,0.00163 0.03914,0.00408 V 6.8668961 h 0.152485 v 1.3161035 h -0.152485 z m 0,-0.18021 V 7.407526 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234028,0.1084522 -0.09296,0.1084521 -0.09296,0.2951855 0,0.1353613 0.05056,0.2046729 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1376" />
+            </g>
+            <g
+               aria-label="by"
+               id="text70"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 66.398649,7.4768375 q 0.07013,-0.1141601 0.167163,-0.1720556 0.09704,-0.057895 0.178579,-0.057895 0.114161,0 0.205489,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965186 -0.101114,0.071758 -0.250337,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 h -0.15167 V 6.8668961 h 0.15167 z m 0,0.18021 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076368 0.09459,-0.1084521 0.09459,-0.2960009 0,-0.1361768 -0.05137,-0.2046729 -0.05137,-0.068496 -0.116606,-0.068496 -0.07094,0 -0.156563,0.071758 -0.08481,0.071758 -0.153301,0.1932569 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1379" />
+              <path
+                 d="M 67.594885,8.1463053 67.174123,7.2721647 h 0.167163 l 0.335142,0.68333 0.280507,-0.68333 h 0.152486 l -0.353081,0.846416 q -0.111714,0.2682763 -0.212827,0.3563427 -0.100298,0.088066 -0.260122,0.088066 -0.06931,0 -0.123946,-0.012231 V 8.4170279 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.1011133 0.0473,-0.072573 0.06687,-0.1255761 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1381" />
+            </g>
+            <g
+               aria-label="applicable"
+               id="text72"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.72491697,10.149327 q -0.0693115,0.11416 -0.16716308,0.172056 -0.0970361,0.05789 -0.1785791,0.05789 -0.11416015,0 -0.20548827,-0.09867 -0.09051269,-0.09867 -0.09051269,-0.2992623 0,-0.1581933 0.06034179,-0.2821386 0.0603418,-0.1247608 0.16145508,-0.1965186 0.10111327,-0.072573 0.2503369,-0.072573 0.0432178,0 0.13046875,0.00897 0.0130469,0.00163 0.0391406,0.00408 h 0.15248535 v 0.6433738 q 0,0.164717 0.0342481,0.267461 H 0.75345701 q -0.0179394,-0.07502 -0.02854,-0.204673 z m 0,-0.1802097 V 9.5785265 q -0.0807275,-0.021201 -0.15003906,-0.021201 -0.1402539,0 -0.23402831,0.1084522 -0.092959,0.1084521 -0.092959,0.2951855 0,0.135361 0.0505566,0.204673 0.0513721,0.0685 0.11660644,0.0685 0.0709424,0 0.1565625,-0.07176 0.0856201,-0.07176 0.15330077,-0.1932567 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1384" />
+              <path
+                 d="m 1.2679932,9.647838 q 0.070127,-0.1141602 0.167163,-0.1720557 0.097036,-0.057896 0.1785791,-0.057896 0.1141602,0 0.2054883,0.098667 0.091328,0.098667 0.091328,0.2992627 0,0.1581934 -0.061157,0.2829545 -0.060342,0.123945 -0.1614551,0.196518 -0.1011132,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353897 h -0.15167 V 9.4431652 h 0.15167 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.2960007 0,-0.1361768 -0.051372,-0.2046729 -0.051372,-0.068496 -0.1166065,-0.068496 -0.070942,0 -0.1565625,0.071758 -0.084805,0.071758 -0.1533007,0.1932569 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1386" />
+              <path
+                 d="M 2.2693408,9.647838 Q 2.3394678,9.5336778 2.4365039,9.4757823 2.53354,9.4178868 2.615083,9.4178868 q 0.1141602,0 0.2054883,0.098667 0.091328,0.098667 0.091328,0.2992627 0,0.1581934 -0.061157,0.2829545 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353897 H 2.1176709 V 9.4431652 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378077,0 0.2315821,-0.107637 0.09459,-0.108452 0.09459,-0.2960007 0,-0.1361768 -0.051372,-0.2046729 -0.051372,-0.068496 -0.1166064,-0.068496 -0.070942,0 -0.1565625,0.071758 -0.084805,0.071758 -0.1533008,0.1932569 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1388" />
+              <path
+                 d="M 3.3750636,10.354 V 9.1651036 H 3.1027101 v -0.127207 h 0.4240234 v 1.1897114 h 0.284585 V 10.354 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1390" />
+              <path
+                 d="M 4.3870117,10.354 V 9.5695568 H 4.1342285 V 9.4431652 H 4.5386816 V 10.227608 H 4.7922803 V 10.354 Z M 4.3617334,9.114547 q 0,-0.051372 0.035063,-0.07665 0.035063,-0.025278 0.06605,-0.025278 0.031802,0 0.066865,0.025278 0.035064,0.025278 0.035064,0.07665 0,0.050557 -0.035064,0.075835 -0.035063,0.025278 -0.066865,0.025278 -0.030986,0 -0.06605,-0.025278 -0.035063,-0.025278 -0.035063,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1392" />
+              <path
+                 d="m 5.8996337,10.327906 q -0.1524854,0.05137 -0.290293,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060058,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.2462597 0,-0.2071191 0.1345458,-0.3441113 0.1353614,-0.1369922 0.3261719,-0.1369922 0.1410693,0 0.2984473,0.053003 v 0.1459619 q -0.1590088,-0.072573 -0.284585,-0.072573 -0.083174,0 -0.1565625,0.041587 -0.073389,0.040771 -0.1133447,0.1280225 -0.039956,0.087251 -0.039956,0.1793945 0,0.1231297 0.07665,0.2348437 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097852,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1394" />
+              <path
+                 d="m 6.7330032,10.149327 q -0.069311,0.11416 -0.1671631,0.172056 -0.097036,0.05789 -0.1785791,0.05789 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.2992623 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304688,0.00897 0.013047,0.00163 0.039141,0.00408 h 0.1524853 v 0.6433738 q 0,0.164717 0.034248,0.267461 H 6.7615432 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.1802097 V 9.5785265 q -0.080728,-0.021201 -0.1500391,-0.021201 -0.1402539,0 -0.2340283,0.1084522 -0.092959,0.1084521 -0.092959,0.2951855 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.1932567 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1396" />
+              <path
+                 d="m 7.2760792,9.647838 q 0.070127,-0.1141602 0.1671631,-0.1720557 0.097036,-0.057896 0.1785791,-0.057896 0.1141602,0 0.2054883,0.098667 0.091328,0.098667 0.091328,0.2992627 0,0.1581934 -0.061157,0.2829545 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 7.1244093 V 9.0378966 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.15167,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.2960007 0,-0.1361768 -0.051372,-0.2046729 -0.051372,-0.068496 -0.1166065,-0.068496 -0.070942,0 -0.1565625,0.071758 -0.084805,0.071758 -0.1533008,0.1932569 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1398" />
+              <path
+                 d="M 8.3818018,10.354 V 9.1651036 H 8.1094483 v -0.127207 h 0.4240234 v 1.1897114 h 0.284585 V 10.354 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1400" />
+              <path
+                 d="m 9.8960546,10.293658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.2438138 0,-0.1247607 0.055449,-0.2397363 0.055449,-0.1149756 0.1549316,-0.1785791 0.099483,-0.064419 0.2217969,-0.064419 0.1622705,0 0.2601221,0.115791 0.098667,0.1157911 0.098667,0.3571582 v 0.032617 H 9.2812206 q 0,0.09459 0.039141,0.1728708 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 9.2901903,9.8101085 h 0.4541944 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.067681 -0.066865,0.066865 -0.093774,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1402" />
+            </g>
+            <g
+               aria-label="law."
+               id="text74"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 11.393021,10.354 V 9.1651036 h -0.272354 v -0.127207 h 0.424024 v 1.1897114 h 0.284585 V 10.354 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1405" />
+              <path
+                 d="m 12.748265,10.149327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.2992623 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130468,0.00897 0.01305,0.00163 0.03914,0.00408 h 0.152485 v 0.6433738 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.1802097 V 9.5785265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234028,0.1084522 -0.09296,0.1084521 -0.09296,0.2951855 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.1932567 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1407" />
+              <path
+                 d="M 13.189412,10.354 13.041004,9.4431652 h 0.14107 l 0.08643,0.5544921 0.02283,0.1288377 0.02202,-0.1288377 0.145146,-0.5544921 h 0.136177 l 0.163901,0.5544921 0.02854,0.1288377 0.01876,-0.1288377 0.08725,-0.5544921 h 0.116607 L 13.862142,10.354 H 13.720257 L 13.545755,9.7677062 13.518031,9.6388683 h -0.0041 L 13.488675,9.7668907 13.337005,10.354 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1409" />
+              <path
+                 d="m 14.526717,10.392325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1411" />
+            </g>
+            <g
+               aria-label="_"
+               id="text76"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 1.0598955,14.822392 V 14.696 h 0.8855566 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1414" />
+            </g>
+            <g
+               aria-label="_"
+               id="text78"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 12.081896,14.822392 V 14.696 h 0.885556 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1417" />
+            </g>
+            <g
+               aria-label="__"
+               id="text80"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 24.105896,14.822392 V 14.696 h 0.885556 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1420" />
+              <path
+                 d="M 25.107244,14.822392 V 14.696 H 25.9928 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1422" />
+            </g>
+            <g
+               aria-label="|"
+               id="text82"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.43462401,16.905326 v -1.341382 h 0.13291504 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1425" />
+            </g>
+            <g
+               aria-label="|"
+               id="text84"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 2.438624,16.905326 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1428" />
+            </g>
+            <g
+               aria-label="___"
+               id="text86"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 4.0658954,16.993392 V 16.867001 H 4.951452 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1431" />
+              <path
+                 d="m 5.0672431,16.993392 v -0.126391 h 0.8855566 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1433" />
+              <path
+                 d="m 6.0685907,16.993392 v -0.126391 h 0.8855566 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1435" />
+            </g>
+            <g
+               aria-label="_|"
+               id="text88"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 10.077896,16.993392 v -0.126391 h 0.885557 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1438" />
+              <path
+                 d="m 11.455972,16.905326 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1440" />
+            </g>
+            <g
+               aria-label="|__"
+               id="text90"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 13.460624,16.905326 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1443" />
+              <path
+                 d="M 14.085243,16.993392 V 16.867001 H 14.9708 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1445" />
+              <path
+                 d="m 15.086591,16.993392 v -0.126391 h 0.885556 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1447" />
+            </g>
+            <g
+               aria-label="___"
+               id="text92"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 19.095896,16.993392 v -0.126391 h 0.885556 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1450" />
+              <path
+                 d="M 20.097243,16.993392 V 16.867001 H 20.9828 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1452" />
+              <path
+                 d="m 21.098591,16.993392 v -0.126391 h 0.885557 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1454" />
+            </g>
+            <g
+               aria-label="/"
+               id="text94"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 23.222132,16.905326 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1457" />
+            </g>
+            <g
+               aria-label="_|"
+               id="text96"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 25.107895,16.993392 v -0.126391 h 0.885556 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1460" />
+              <path
+                 d="m 26.485971,16.905326 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1462" />
+            </g>
+            <g
+               aria-label="__"
+               id="text98"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 28.113895,16.993392 v -0.126391 h 0.885557 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1465" />
+              <path
+                 d="M 29.115243,16.993392 V 16.867001 H 30.0008 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1467" />
+            </g>
+            <g
+               aria-label="_"
+               id="text100"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 31.119896,16.993392 v -0.126391 h 0.885556 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1470" />
+            </g>
+            <g
+               aria-label="_"
+               id="text102"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 33.123897,16.993392 v -0.126391 h 0.885557 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1473" />
+            </g>
+            <g
+               aria-label="__"
+               id="text104"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 35.127895,16.993392 v -0.126391 h 0.885557 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1476" />
+              <path
+                 d="m 36.129243,16.993392 v -0.126391 h 0.885556 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1478" />
+            </g>
+            <g
+               aria-label="_"
+               id="text106"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 38.133896,16.993392 v -0.126391 h 0.885556 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1481" />
+            </g>
+            <g
+               aria-label="__"
+               id="text108"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 40.137897,16.993392 v -0.126391 h 0.885557 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1484" />
+              <path
+                 d="m 41.139245,16.993392 v -0.126391 h 0.885557 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1486" />
+            </g>
+            <g
+               aria-label="___"
+               id="text110"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 43.143894,16.993392 v -0.126391 h 0.885557 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1489" />
+              <path
+                 d="m 44.145242,16.993392 v -0.126391 h 0.885556 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1491" />
+              <path
+                 d="m 45.146589,16.993392 v -0.126391 h 0.885557 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1493" />
+            </g>
+            <g
+               aria-label="|"
+               id="text112"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.43462401,19.076325 v -1.341382 h 0.13291504 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1496" />
+            </g>
+            <g
+               aria-label="|/"
+               id="text114"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 2.438624,19.076325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1499" />
+              <path
+                 d="M 3.1814804,19.076325 H 3.0322568 l 0.8048291,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1501" />
+            </g>
+            <g
+               aria-label="/"
+               id="text116"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 5.186133,19.076325 H 5.0369094 l 0.8048291,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1504" />
+            </g>
+            <g
+               aria-label="|"
+               id="text118"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 7.448624,19.076325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1507" />
+            </g>
+            <g
+               aria-label="|"
+               id="text120"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 9.4526237,19.076325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1510" />
+            </g>
+            <g
+               aria-label="|"
+               id="text122"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 11.456624,19.076325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1513" />
+            </g>
+            <g
+               aria-label="'_"
+               id="text124"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 13.582938,18.228278 h -0.109267 l -0.08562,-0.506381 h 0.278061 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1516" />
+              <path
+                 d="M 14.085243,19.164392 V 19.038 H 14.9708 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1518" />
+            </g>
+            <g
+               aria-label="\"
+               id="text126"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 16.858845,19.076325 -0.799936,-1.341382 h 0.144331 l 0.804829,1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1521" />
+            </g>
+            <g
+               aria-label="/"
+               id="text128"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 18.212132,19.076325 h -0.149224 l 0.80483,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1524" />
+            </g>
+            <g
+               aria-label="_"
+               id="text130"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 20.097896,19.164392 V 19.038 h 0.885557 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1527" />
+            </g>
+            <g
+               aria-label="\"
+               id="text132"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 22.870846,19.076325 22.07091,17.734943 h 0.144331 l 0.804829,1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1530" />
+            </g>
+            <g
+               aria-label="|_"
+               id="text134"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 24.482624,19.076325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1533" />
+              <path
+                 d="M 25.107244,19.164392 V 19.038 H 25.9928 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1535" />
+            </g>
+            <g
+               aria-label="/"
+               id="text136"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 27.230134,19.076325 H 27.08091 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1538" />
+            </g>
+            <g
+               aria-label="_`"
+               id="text138"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 29.115896,19.164392 V 19.038 h 0.885557 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1541" />
+              <path
+                 d="m 30.737786,17.987727 h -0.138623 l -0.278877,-0.26583 h 0.176133 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1543" />
+            </g>
+            <g
+               aria-label="|"
+               id="text140"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 32.498623,19.076325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1546" />
+            </g>
+            <g
+               aria-label="'__|"
+               id="text142"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 34.624939,18.228278 h -0.109267 l -0.08562,-0.506381 h 0.278061 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1549" />
+              <path
+                 d="M 35.127244,19.164392 V 19.038 h 0.885557 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1551" />
+              <path
+                 d="M 36.128592,19.164392 V 19.038 h 0.885556 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1553" />
+              <path
+                 d="m 37.506668,19.076325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1555" />
+            </g>
+            <g
+               aria-label="'_"
+               id="text144"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 39.634938,18.228278 H 39.52567 l -0.08562,-0.506381 h 0.278061 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1558" />
+              <path
+                 d="M 40.137242,19.164392 V 19.038 h 0.885557 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1560" />
+            </g>
+            <g
+               aria-label="`"
+               id="text146"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 42.762437,17.987727 h -0.138623 l -0.278877,-0.26583 h 0.176133 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1563" />
+            </g>
+            <g
+               aria-label="_"
+               id="text148"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 44.145897,19.164392 V 19.038 h 0.885556 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1566" />
+            </g>
+            <g
+               aria-label="\"
+               id="text150"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 46.918845,19.076325 -0.799937,-1.341382 h 0.144331 l 0.804829,1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1569" />
+            </g>
+            <g
+               aria-label="|"
+               id="text152"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.43462401,21.247325 v -1.341382 h 0.13291504 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1572" />
+            </g>
+            <g
+               aria-label="&lt;|"
+               id="text154"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 4.0658954,20.766221 4.951452,20.323443 v 0.141069 L 4.3464032,20.765406 4.951452,21.069561 V 21.209 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1575" />
+              <path
+                 d="m 5.4439716,21.247325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1577" />
+            </g>
+            <g
+               aria-label="|_|"
+               id="text156"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 7.448624,21.247325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1580" />
+              <path
+                 d="M 8.0732431,21.335391 V 21.209 h 0.8855566 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1582" />
+              <path
+                 d="m 9.4513193,21.247325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1584" />
+            </g>
+            <g
+               aria-label="|"
+               id="text158"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 11.456624,21.247325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1587" />
+            </g>
+            <g
+               aria-label="|_)"
+               id="text160"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 13.460624,21.247325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1590" />
+              <path
+                 d="M 14.085243,21.335391 V 21.209 H 14.9708 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1592" />
+              <path
+                 d="m 15.156718,19.867618 q 0.225874,0.01468 0.380805,0.128838 0.154932,0.113344 0.247076,0.306601 0.09296,0.193257 0.09296,0.387329 0,0.194073 -0.09296,0.387329 -0.09214,0.193257 -0.247076,0.306602 -0.154931,0.11416 -0.380805,0.128022 v -0.126391 q 0.170425,-0.01631 0.292739,-0.114976 0.12313,-0.09867 0.193257,-0.251967 0.07094,-0.153301 0.07094,-0.328619 0,-0.175317 -0.07094,-0.328618 -0.07013,-0.153301 -0.193257,-0.251968 -0.122314,-0.09948 -0.292739,-0.114975 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1594" />
+            </g>
+            <g
+               aria-label="|"
+               id="text162"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 17.468624,21.247325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1597" />
+            </g>
+            <g
+               aria-label="__/"
+               id="text164"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 20.097896,21.335391 V 21.209 h 0.885557 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1600" />
+              <path
+                 d="M 21.099244,21.335391 V 21.209 h 0.885557 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1602" />
+              <path
+                 d="m 22.218829,21.247325 h -0.149224 l 0.804829,-1.341382 h 0.144332 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1604" />
+            </g>
+            <g
+               aria-label="_|"
+               id="text166"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 25.107895,21.335391 V 21.209 h 0.885556 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1607" />
+              <path
+                 d="m 26.485971,21.247325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1609" />
+            </g>
+            <g
+               aria-label="(_|"
+               id="text168"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 28.93014,21.512339 q -0.225874,-0.01386 -0.380805,-0.128022 -0.154932,-0.113345 -0.247891,-0.306602 -0.09214,-0.193256 -0.09214,-0.387329 0,-0.194072 0.09214,-0.387329 0.09296,-0.193257 0.247891,-0.306601 0.154931,-0.11416 0.380805,-0.128838 v 0.127207 q -0.170424,0.01549 -0.293554,0.114975 -0.122315,0.09867 -0.192442,0.251968 -0.07013,0.153301 -0.07013,0.328618 0,0.175318 0.07013,0.328619 0.07013,0.1533 0.192442,0.251967 0.12313,0.09867 0.293554,0.114976 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1612" />
+              <path
+                 d="M 29.115243,21.335391 V 21.209 H 30.0008 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1614" />
+              <path
+                 d="m 30.493319,21.247325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1616" />
+            </g>
+            <g
+               aria-label="|"
+               id="text170"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 32.498623,21.247325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1619" />
+            </g>
+            <g
+               aria-label="|"
+               id="text172"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 34.502625,21.247325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1622" />
+            </g>
+            <g
+               aria-label="|"
+               id="text174"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 37.508625,21.247325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1625" />
+            </g>
+            <g
+               aria-label="|"
+               id="text176"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 39.512623,21.247325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1628" />
+            </g>
+            <g
+               aria-label="|"
+               id="text178"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 41.516625,21.247325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1631" />
+            </g>
+            <g
+               aria-label="|"
+               id="text180"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 43.520623,21.247325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1634" />
+            </g>
+            <g
+               aria-label="|"
+               id="text182"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 45.524624,21.247325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1637" />
+            </g>
+            <g
+               aria-label="|"
+               id="text184"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 47.528626,21.247325 v -1.341382 h 0.132915 v 1.341382 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1640" />
+            </g>
+            <g
+               aria-label="|_|\_\\__,_|_.__/"
+               id="text186"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.43462401,23.418324 v -1.341381 h 0.13291504 v 1.341381 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1643" />
+              <path
+                 d="m 1.0592432,23.506391 v -0.126392 h 0.8855566 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1645" />
+              <path
+                 d="m 2.4373193,23.418324 v -1.341381 h 0.1329151 v 1.341381 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1647" />
+              <path
+                 d="M 3.8308888,23.418324 3.0309523,22.076943 h 0.144331 l 0.8048291,1.341381 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1649" />
+              <path
+                 d="m 4.0632862,23.506391 v -0.126392 h 0.8855566 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1651" />
+              <path
+                 d="M 5.8335839,23.418324 5.0336474,22.076943 h 0.144331 l 0.8048291,1.341381 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1653" />
+              <path
+                 d="M 6.8349319,23.418324 6.0349954,22.076943 h 0.144331 l 0.8048291,1.341381 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1655" />
+              <path
+                 d="m 7.0673293,23.506391 v -0.126392 h 0.8855566 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1657" />
+              <path
+                 d="m 8.0686768,23.506391 v -0.126392 h 0.8855566 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1659" />
+              <path
+                 d="m 9.357871,23.733896 v -0.101114 q 0.058711,-0.01549 0.088882,-0.04485 0.030986,-0.02854 0.048926,-0.07339 0.018755,-0.04403 0.018755,-0.106821 -0.075835,0 -0.1117139,-0.0424 -0.035879,-0.04322 -0.035879,-0.09214 0,-0.05626 0.039956,-0.09459 0.039956,-0.03914 0.092959,-0.03914 0.068496,0 0.1182373,0.05953 0.049741,0.05871 0.049741,0.161455 0,0.0897 -0.039141,0.168794 -0.039141,0.07991 -0.1068213,0.136177 -0.066865,0.05626 -0.1639014,0.0685 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1661" />
+              <path
+                 d="m 10.071372,23.506391 v -0.126392 h 0.885556 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1663" />
+              <path
+                 d="m 11.449448,23.418324 v -1.341381 h 0.132915 v 1.341381 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1665" />
+              <path
+                 d="m 12.074068,23.506391 v -0.126392 h 0.885557 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1667" />
+              <path
+                 d="m 13.518194,23.418324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1669" />
+              <path
+                 d="m 14.076763,23.506391 v -0.126392 h 0.885557 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1671" />
+              <path
+                 d="m 15.078111,23.506391 v -0.126392 h 0.885556 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1673" />
+              <path
+                 d="m 16.197695,23.418324 h -0.149223 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1675" />
+            </g>
+            <g
+               aria-label="\___|_|"
+               id="text188"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 18.862845,23.418324 -0.799937,-1.341381 h 0.144332 l 0.804829,1.341381 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1678" />
+              <path
+                 d="m 19.095242,23.506391 v -0.126392 h 0.885557 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1680" />
+              <path
+                 d="m 20.09659,23.506391 v -0.126392 h 0.885557 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1682" />
+              <path
+                 d="m 21.097938,23.506391 v -0.126392 h 0.885557 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1684" />
+              <path
+                 d="m 22.476014,23.418324 v -1.341381 h 0.132915 v 1.341381 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1686" />
+              <path
+                 d="m 23.100633,23.506391 v -0.126392 h 0.885557 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1688" />
+              <path
+                 d="m 24.47871,23.418324 v -1.341381 h 0.132915 v 1.341381 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1690" />
+            </g>
+            <g
+               aria-label="\__,_|_|"
+               id="text190"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 27.880847,23.418324 27.08091,22.076943 h 0.144331 l 0.804829,1.341381 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1693" />
+              <path
+                 d="m 28.113244,23.506391 v -0.126392 h 0.885557 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1695" />
+              <path
+                 d="m 29.114592,23.506391 v -0.126392 h 0.885556 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1697" />
+              <path
+                 d="m 30.403786,23.733896 v -0.101114 q 0.05871,-0.01549 0.08888,-0.04485 0.03099,-0.02854 0.04893,-0.07339 0.01875,-0.04403 0.01875,-0.106821 -0.07583,0 -0.111714,-0.0424 -0.03588,-0.04322 -0.03588,-0.09214 0,-0.05626 0.03996,-0.09459 0.03996,-0.03914 0.09296,-0.03914 0.0685,0 0.118237,0.05953 0.04974,0.05871 0.04974,0.161455 0,0.0897 -0.03914,0.168794 -0.03914,0.07991 -0.106822,0.136177 -0.06686,0.05626 -0.163901,0.0685 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1699" />
+              <path
+                 d="m 31.117287,23.506391 v -0.126392 h 0.885557 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1701" />
+              <path
+                 d="m 32.495363,23.418324 v -1.341381 h 0.132915 v 1.341381 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1703" />
+              <path
+                 d="m 33.119983,23.506391 v -0.126392 h 0.885556 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1705" />
+              <path
+                 d="m 34.498059,23.418324 v -1.341381 h 0.132915 v 1.341381 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1707" />
+            </g>
+            <g
+               aria-label="|_|"
+               id="text192"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 37.508625,23.418324 v -1.341381 h 0.132915 v 1.341381 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1710" />
+              <path
+                 d="m 38.133244,23.506391 v -0.126392 h 0.885557 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1712" />
+              <path
+                 d="m 39.511321,23.418324 v -1.341381 h 0.132915 v 1.341381 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1714" />
+            </g>
+            <g
+               aria-label="|_|"
+               id="text194"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 41.516625,23.418324 v -1.341381 h 0.132915 v 1.341381 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1717" />
+              <path
+                 d="m 42.141244,23.506391 v -0.126392 h 0.885557 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1719" />
+              <path
+                 d="m 43.51932,23.418324 v -1.341381 h 0.132915 v 1.341381 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1721" />
+            </g>
+            <g
+               aria-label="|_|"
+               id="text196"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 45.524624,23.418324 v -1.341381 h 0.132915 v 1.341381 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1724" />
+              <path
+                 d="M 46.149243,23.506391 V 23.379999 H 47.0348 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1726" />
+              <path
+                 d="m 47.527319,23.418324 v -1.341381 h 0.132916 v 1.341381 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1728" />
+            </g>
+            <g
+               aria-label="root@m1c29:~#"
+               id="text198"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.20385742,27.722 v -0.910835 h 0.15166991 v 0.198965 q 0.0709424,-0.112529 0.16227051,-0.167978 0.0921436,-0.05626 0.20467284,-0.05626 0.0823584,0 0.1647168,0.02528 v 0.328618 H 0.74122557 v -0.207934 q -0.0383252,-0.0065 -0.0603418,-0.0065 -0.0848047,0 -0.16634765,0.06687 -0.081543,0.06687 -0.15900879,0.200595 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1731" />
+              <path
+                 d="m 1.5028369,27.747278 q -0.1957031,0 -0.313125,-0.136176 Q 1.07229,27.47411 1.07229,27.266175 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1733" />
+              <path
+                 d="m 2.5041846,27.747278 q -0.1957032,0 -0.313125,-0.136176 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1735" />
+              <path
+                 d="m 3.892046,27.685306 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.174502,-0.03669 -0.079097,-0.03669 -0.1198681,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 27.013392 H 3.0823244 V 26.887 H 3.3098292 V 26.520057 H 3.4614991 V 26.887 h 0.4052686 v 0.126392 H 3.4614991 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069311,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1737" />
+              <path
+                 d="m 4.7564014,27.558914 v 0.128023 q -0.068496,0.04485 -0.1214991,0.05871 -0.053003,0.01468 -0.1141601,0.01468 -0.1696094,0 -0.2780615,-0.08236 Q 4.135044,27.594793 4.070625,27.4472 q -0.063604,-0.148408 -0.063604,-0.36205 0,-0.296817 0.1361768,-0.481104 0.1361767,-0.185102 0.3677587,-0.185102 0.2291358,0 0.3620508,0.163085 0.1337305,0.163086 0.1337305,0.428916 0,0.117422 -0.034248,0.193257 -0.034248,0.07502 -0.090513,0.119868 -0.056265,0.04403 -0.1361767,0.04403 -0.061973,0 -0.1011133,-0.02691 -0.039141,-0.02772 -0.058711,-0.126391 -0.022832,0.053 -0.070127,0.103559 -0.047295,0.04974 -0.1280224,0.04974 -0.083989,0 -0.1394385,-0.07583 -0.054634,-0.07665 -0.054634,-0.187549 0,-0.136177 0.078281,-0.252783 0.079097,-0.116607 0.284585,-0.116607 h 0.1557471 v 0.357158 q 0,0.07094 0.00489,0.101114 0.00571,0.02936 0.022017,0.04485 0.017124,0.01549 0.036694,0.01549 0.031802,0 0.063603,-0.03017 0.032617,-0.03099 0.048926,-0.08644 0.017124,-0.05626 0.017124,-0.121499 0,-0.136177 -0.049741,-0.264199 -0.049741,-0.128838 -0.1475928,-0.183472 -0.097851,-0.05463 -0.2046728,-0.05463 -0.1133448,0 -0.1997803,0.0685 -0.08562,0.06768 -0.1410693,0.203858 -0.054634,0.136177 -0.054634,0.300893 0,0.165533 0.054634,0.306602 0.054634,0.141069 0.1475927,0.206304 0.092959,0.06523 0.2071192,0.06523 0.1296533,0 0.2389209,-0.106006 z M 4.5859766,27.062318 v -0.219351 h -0.029356 q -0.096221,0 -0.138623,0.03017 -0.042402,0.03017 -0.066865,0.09459 -0.024463,0.06442 -0.024463,0.141884 0,0.06279 0.01957,0.09704 0.01957,0.03425 0.053818,0.03425 0.04811,0 0.097852,-0.05545 0.050557,-0.05626 0.088066,-0.123129 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1739" />
+              <path
+                 d="m 5.0646337,27.722 v -0.910835 h 0.132915 v 0.20875 q 0.062788,-0.132915 0.1166065,-0.183471 0.054634,-0.05056 0.110083,-0.05056 0.06605,0 0.1060058,0.05219 0.040771,0.05137 0.040771,0.146778 v 0.04893 q 0.026909,-0.08317 0.064419,-0.134545 0.038325,-0.05219 0.079097,-0.08236 0.040771,-0.03099 0.093774,-0.03099 0.058711,0 0.1002979,0.04974 0.041587,0.04974 0.041587,0.198149 V 27.722 h -0.132915 v -0.622173 q 0,-0.07665 -0.00489,-0.104375 -0.00489,-0.02854 -0.01957,-0.04322 -0.014678,-0.01468 -0.031802,-0.01468 -0.042402,0 -0.091328,0.06523 -0.04811,0.06442 -0.098667,0.214458 V 27.722 h -0.127207 v -0.621357 q 0,-0.120684 -0.023648,-0.141885 -0.023647,-0.0212 -0.042402,-0.0212 -0.041587,0 -0.089697,0.07257 -0.047295,0.07257 -0.090513,0.185918 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1741" />
+              <path
+                 d="m 6.4712503,27.595609 v -0.976885 q -0.068496,0.05463 -0.1329151,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136992 q 0.1785791,-0.07583 0.3098633,-0.196519 h 0.1516699 v 1.139156 H 6.9270754 V 27.722 H 6.161387 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1743" />
+              <path
+                 d="m 7.9023292,27.695906 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136992 0.3261719,-0.136992 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133447,0.128023 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097852,-0.0065 0.04811,-0.0073 0.1777636,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1745" />
+              <path
+                 d="M 8.8979688,27.722 H 8.1322803 v -0.139438 q 0,-0.05382 0.022017,-0.114976 0.022017,-0.06197 0.083989,-0.138623 0.061973,-0.07665 0.1312841,-0.147593 l 0.086436,-0.08807 q 0.026094,-0.02691 0.1141601,-0.124761 0.088066,-0.09785 0.1157911,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.065234,-0.125576 -0.065234,-0.04485 -0.1467773,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.1002979,0.02528 -0.043218,0.01386 -0.1402539,0.0579 v -0.134546 q 0.1027442,-0.04893 0.2054883,-0.06687 0.1035596,-0.01875 0.1704248,-0.01875 0.098667,0 0.1810254,0.03262 0.083174,0.0318 0.1231299,0.09948 0.040771,0.06768 0.040771,0.144331 0,0.08562 -0.052187,0.175318 -0.051372,0.0897 -0.1948877,0.230766 l -0.092959,0.09214 -0.078281,0.07665 q -0.074204,0.07502 -0.1198681,0.145147 -0.045664,0.07013 -0.050557,0.167163 h 0.6083106 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1747" />
+              <path
+                 d="m 9.775371,27.050086 q -0.058711,0.08725 -0.1459619,0.1427 -0.086436,0.05463 -0.1908106,0.05463 -0.098667,0 -0.1875488,-0.0473 -0.088066,-0.04811 -0.1345459,-0.134546 -0.04648,-0.08643 -0.04648,-0.200595 0,-0.179395 0.1149756,-0.31231 0.115791,-0.13373 0.3041553,-0.13373 0.2217969,0 0.3310644,0.185917 0.110083,0.185103 0.110083,0.471319 0,0.316387 -0.1394384,0.500674 -0.1394385,0.183471 -0.377544,0.183471 -0.1280224,0 -0.248706,-0.03833 v -0.152485 q 0.1353613,0.0636 0.2552295,0.0636 0.1696093,0 0.2625683,-0.155747 0.092959,-0.155747 0.092959,-0.394668 z M 9.4777392,26.545335 q -0.061157,0 -0.1231299,0.03669 -0.061973,0.03588 -0.097852,0.110899 -0.035063,0.07502 -0.035063,0.164717 0,0.114975 0.059526,0.189179 0.060342,0.0742 0.1712402,0.0742 0.1149756,0 0.1883643,-0.08562 0.074204,-0.08644 0.074204,-0.20875 0,-0.123945 -0.072573,-0.202226 -0.071758,-0.0791 -0.1647168,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1749" />
+              <path
+                 d="m 10.51415,27.760325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1751" />
+              <path
+                 d="m 11.060488,27.393382 v -0.01468 q 0,-0.106821 0.06279,-0.185102 0.0636,-0.0791 0.170425,-0.0791 0.02691,0 0.05219,0.0057 0.02609,0.0049 0.05871,0.01794 0.03262,0.01223 0.09785,0.04893 l 0.09867,0.05463 q 0.09051,0.04974 0.147593,0.04974 0.06034,0 0.08888,-0.04322 0.02936,-0.04403 0.02936,-0.0954 v -0.01305 h 0.104375 v 0.01305 q 0,0.136177 -0.07747,0.201411 -0.07665,0.06442 -0.163086,0.06442 -0.08073,0 -0.213642,-0.07583 l -0.08317,-0.04811 q -0.09459,-0.05382 -0.152486,-0.05382 -0.03262,0 -0.06116,0.01712 -0.02772,0.01712 -0.04485,0.05463 -0.01712,0.03751 -0.01712,0.06605 v 0.01468 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1753" />
+              <path
+                 d="m 12.074068,27.380335 v -0.11416 h 0.159824 l 0.0897,-0.335142 h -0.249521 v -0.113344 h 0.278061 l 0.09541,-0.361236 h 0.119052 l -0.0954,0.361236 h 0.230767 l 0.09948,-0.361236 h 0.119053 l -0.09785,0.361236 h 0.136993 v 0.113344 h -0.168794 l -0.08888,0.335142 h 0.257676 v 0.11416 H 12.670147 L 12.577188,27.722 h -0.120684 l 0.09459,-0.341665 h -0.227505 l -0.0897,0.341665 h -0.120683 l 0.09051,-0.341665 z m 0.279692,-0.11416 h 0.228321 l 0.09214,-0.335142 h -0.233213 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1755" />
+            </g>
+            <g
+               aria-label="systemctl"
+               id="text200"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 14.164992,27.67389 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1758" />
+              <path
+                 d="m 15.490881,27.685306 -0.420762,-0.874141 h 0.167163 l 0.335142,0.68333 0.280508,-0.68333 h 0.152485 l -0.353081,0.846416 q -0.111714,0.268277 -0.212827,0.356343 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123946,-0.01223 v -0.133731 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101114 0.0473,-0.07257 0.06686,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1760" />
+              <path
+                 d="m 16.167687,27.67389 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1762" />
+              <path
+                 d="m 17.920046,27.685306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 27.013392 H 17.110324 V 26.887 h 0.227505 v -0.366943 h 0.15167 V 26.887 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1764" />
+              <path
+                 d="m 18.917316,27.661658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1766" />
+              <path
+                 d="m 19.092634,27.722 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 27.722 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 27.722 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1768" />
+              <path
+                 d="m 20.928982,27.695906 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1770" />
+              <path
+                 d="m 21.925437,27.685306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 27.013392 H 21.115715 V 26.887 h 0.227505 v -0.366943 h 0.15167 V 26.887 h 0.405268 v 0.126392 H 21.49489 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1772" />
+              <path
+                 d="m 22.409802,27.722 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1774" />
+            </g>
+            <g
+               aria-label="status"
+               id="text202"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 24.184993,27.67389 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1777" />
+              <path
+                 d="m 25.937351,27.685306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 27.013392 H 25.127629 V 26.887 h 0.227505 v -0.366943 h 0.15167 V 26.887 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1779" />
+              <path
+                 d="m 26.775613,27.517327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.17858,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1781" />
+              <path
+                 d="m 27.940046,27.685306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 27.013392 H 27.130325 V 26.887 h 0.227505 v -0.366943 h 0.151669 V 26.887 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1783" />
+              <path
+                 d="M 28.929162,26.811165 V 27.722 h -0.151669 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152486,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1785" />
+              <path
+                 d="m 29.191731,27.67389 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1787" />
+            </g>
+            <g
+               aria-label="kubeadm-join"
+               id="text204"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 31.229163,27.722 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 L 31.380833,27.232742 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1790" />
+              <path
+                 d="M 32.939119,26.811165 V 27.722 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163085,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1792" />
+              <path
+                 d="m 33.331341,27.015838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1794" />
+              <path
+                 d="m 34.949969,27.661658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1796" />
+              <path
+                 d="m 35.792308,27.517327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1798" />
+              <path
+                 d="m 36.803441,27.517327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.17858,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 V 27.722 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1800" />
+              <path
+                 d="m 37.127982,27.722 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09378,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 27.722 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 27.722 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1802" />
+              <path
+                 d="m 38.256537,27.272698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1804" />
+              <path
+                 d="m 39.213035,28.079158 v -0.141884 q 0.127207,0.03751 0.214458,0.03751 0.07584,0 0.128838,-0.02691 0.053,-0.02609 0.08236,-0.08888 0.03017,-0.06279 0.03017,-0.218535 v -0.7029 h -0.386514 v -0.126392 h 0.538184 v 0.800752 q 0,0.231582 -0.05463,0.321279 -0.05463,0.09051 -0.1321,0.129654 -0.07747,0.03914 -0.212012,0.03914 -0.09704,0 -0.20875,-0.02283 z m 0.430547,-1.596611 q 0,-0.05137 0.03425,-0.07665 0.03506,-0.02528 0.06687,-0.02528 0.0318,0 0.06605,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03425,0.02528 -0.06605,0.02528 -0.0318,0 -0.06687,-0.02528 -0.03425,-0.02528 -0.03425,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1806" />
+              <path
+                 d="m 40.575618,27.747278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1808" />
+              <path
+                 d="m 41.457098,27.722 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 V 27.722 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1810" />
+              <path
+                 d="m 42.203216,27.722 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 27.722 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1812" />
+            </g>
+            <g
+               aria-label="●"
+               id="text206"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.25359863,32.060737 q -0.24870605,-0.143515 -0.24870605,-0.430546 0,-0.287032 0.24870605,-0.430547 0.12394531,-0.07176 0.24870604,-0.07176 0.12394531,0 0.24870605,0.07176 0.24952148,0.143515 0.24952148,0.430547 0,0.287031 -0.24952148,0.430546 -0.12476074,0.07176 -0.24870605,0.07176 -0.12476073,0 -0.24870604,-0.07176 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1815" />
+            </g>
+            <g
+               aria-label="kubeadm-join.service"
+               id="text208"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 2.171163,32.063999 v -1.316103 h 0.1516699 v 0.826845 l 0.4378858,-0.421577 h 0.2022265 l -0.4370703,0.421577 0.4484864,0.489258 h -0.20875 L 2.3228329,31.574741 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1818" />
+              <path
+                 d="m 3.8811191,31.153164 v 0.910835 H 3.7294492 v -0.19978 q -0.073389,0.112529 -0.163086,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467773,-0.0424 -0.06605,-0.04322 -0.092144,-0.112529 -0.026094,-0.07013 -0.026094,-0.272354 V 31.153164 H 3.273624 v 0.527583 q 0,0.131284 0.012231,0.173687 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092144,-0.07583 0.1524854,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1820" />
+              <path
+                 d="m 4.2733408,31.357837 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.05789 0.1785791,-0.05789 0.1141601,0 0.2054882,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011132,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 4.1216709 v -1.316103 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166065,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533007,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1822" />
+              <path
+                 d="m 5.8919688,32.003657 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 5.2771348 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 5.2861046,31.520108 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1824" />
+              <path
+                 d="m 6.7343076,31.859326 q -0.069312,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524853 v 0.643374 q 0,0.164717 0.034248,0.267461 H 6.7628476 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108453 -0.092959,0.108452 -0.092959,0.295185 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1826" />
+              <path
+                 d="m 7.7454403,31.859326 q -0.069312,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 v -0.405268 h 0.1524853 v 1.316103 H 7.7454403 Z m 0,-0.18021 v -0.39059 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108453 -0.092959,0.108452 -0.092959,0.295185 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166065,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1828" />
+              <path
+                 d="m 8.0699817,32.063999 v -0.910835 h 0.132915 v 0.20875 q 0.062788,-0.132915 0.1166064,-0.183471 0.054634,-0.05056 0.110083,-0.05056 0.06605,0 0.1060059,0.05219 0.040771,0.05137 0.040771,0.146778 v 0.04893 q 0.026909,-0.08317 0.064419,-0.134546 0.038325,-0.05219 0.079097,-0.08236 0.040771,-0.03099 0.093774,-0.03099 0.058711,0 0.1002979,0.04974 0.041587,0.04974 0.041587,0.19815 v 0.688222 H 8.8226232 v -0.622173 q 0,-0.07665 -0.00489,-0.104375 -0.00489,-0.02854 -0.01957,-0.04322 -0.014678,-0.01468 -0.031802,-0.01468 -0.042402,0 -0.091328,0.06523 -0.04811,0.06442 -0.098667,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.023648,-0.141885 -0.023647,-0.0212 -0.042402,-0.0212 -0.041587,0 -0.089697,0.07257 -0.047295,0.07257 -0.090513,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1830" />
+              <path
+                 d="m 9.1985362,31.614697 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1832" />
+              <path
+                 d="m 10.155035,32.421157 v -0.141884 q 0.127207,0.03751 0.214458,0.03751 0.07583,0 0.128838,-0.02691 0.053,-0.02609 0.08236,-0.08888 0.03017,-0.06279 0.03017,-0.218535 v -0.7029 h -0.386513 v -0.126392 h 0.538183 v 0.800752 q 0,0.231582 -0.05463,0.321279 -0.05463,0.09051 -0.132099,0.129654 -0.07747,0.03914 -0.212012,0.03914 -0.09704,0 -0.20875,-0.02283 z m 0.430547,-1.596611 q 0,-0.05137 0.03425,-0.07665 0.03506,-0.02528 0.06686,-0.02528 0.0318,0 0.06605,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03425,0.02528 -0.06605,0.02528 -0.0318,0 -0.06686,-0.02528 -0.03425,-0.02528 -0.03425,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1834" />
+              <path
+                 d="m 11.517618,32.089277 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117421,0.136176 0.117421,0.344111 0,0.207935 -0.117421,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1836" />
+              <path
+                 d="m 12.399097,32.063999 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1838" />
+              <path
+                 d="m 13.145215,32.063999 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1840" />
+              <path
+                 d="m 14.520846,32.102324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1842" />
+              <path
+                 d="m 15.158512,32.015889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1844" />
+              <path
+                 d="m 16.906793,32.003657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1846" />
+              <path
+                 d="m 17.228072,32.063999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145961 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1848" />
+              <path
+                 d="m 18.447955,32.063999 -0.395483,-0.910835 h 0.166347 l 0.31231,0.72084 0.318833,-0.72084 h 0.15167 l -0.398745,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1850" />
+              <path
+                 d="m 19.408532,32.063999 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1852" />
+              <path
+                 d="m 20.921153,32.037905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1854" />
+              <path
+                 d="m 21.913532,32.003657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1856" />
+            </g>
+            <g
+               aria-label="-"
+               id="text210"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 23.231102,31.614697 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1859" />
+            </g>
+            <g
+               aria-label="Join"
+               id="text212"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 25.139697,32.036275 v -0.154932 q 0.177763,0.09377 0.297631,0.09377 0.06279,0 0.11416,-0.02446 0.05219,-0.02446 0.08236,-0.08154 0.03099,-0.05789 0.03099,-0.246259 v -0.697193 h -0.284585 v -0.127207 h 0.449302 v 0.828477 q 0,0.202226 -0.04648,0.291108 -0.04566,0.08888 -0.128838,0.136992 -0.08317,0.0473 -0.212828,0.0473 -0.145146,0 -0.301708,-0.06605 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1862" />
+              <path
+                 d="m 26.552836,32.089277 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1864" />
+              <path
+                 d="m 27.434316,32.063999 v -0.784443 h -0.252784 v -0.126392 h 0.404454 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1866" />
+              <path
+                 d="m 28.180434,32.063999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1868" />
+            </g>
+            <g
+               aria-label="Kubernetes"
+               id="text214"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 30.188022,32.063999 v -1.265547 h 0.164717 v 0.620542 l 0.470503,-0.620542 h 0.174502 l -0.454195,0.600972 0.517798,0.664575 h -0.206304 l -0.502304,-0.645005 v 0.645005 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1871" />
+              <path
+                 d="m 31.937119,31.153164 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.151669 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1873" />
+              <path
+                 d="m 32.32934,31.357837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1875" />
+              <path
+                 d="m 33.947968,32.003657 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1877" />
+              <path
+                 d="m 34.269248,32.063999 v -0.910835 h 0.151669 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1879" />
+              <path
+                 d="m 35.193129,32.063999 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07584 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1881" />
+              <path
+                 d="m 36.952011,32.003657 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1883" />
+              <path
+                 d="m 37.957436,32.027305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119869,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1885" />
+              <path
+                 d="m 38.954707,32.003657 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1887" />
+              <path
+                 d="m 39.20912,32.015889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08643,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290292,0.07583 -0.174502,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1889" />
+            </g>
+            <g
+               aria-label="Loaded:"
+               id="text216"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 5.8719094,34.095562 v 0.139439 H 5.1885793 v -1.265547 h 0.1647168 v 1.126108 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1892" />
+              <path
+                 d="m 6.5128371,34.260279 q -0.1957031,0 -0.313125,-0.136177 -0.1174218,-0.136992 -0.1174218,-0.344927 0,-0.207934 0.1174218,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.1214991,0 0.1932569,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932569,-0.09459 -0.1223144,0 -0.1940722,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940722,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1894" />
+              <path
+                 d="m 7.7376125,34.030328 q -0.069312,0.11416 -0.1671631,0.172055 -0.097036,0.0579 -0.1785791,0.0579 -0.1141601,0 -0.2054882,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.161455,-0.196519 0.1011133,-0.07257 0.250337,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524854 v 0.643374 q 0,0.164716 0.034248,0.267461 H 7.7661526 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.150039,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204672 0.051372,0.0685 0.1166065,0.0685 0.070942,0 0.1565624,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1896" />
+              <path
+                 d="m 8.7487455,34.030328 q -0.069312,0.11416 -0.1671631,0.172055 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.1614551,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 v -0.405269 h 0.1524853 v 1.316104 H 8.7487455 Z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204672 0.051372,0.0685 0.1166065,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1898" />
+              <path
+                 d="m 9.8993166,34.174659 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057896,-0.11416 -0.057896,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 9.2844827 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1900" />
+              <path
+                 d="m 10.751441,34.030328 q -0.06931,0.11416 -0.167164,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1902" />
+              <path
+                 d="m 11.51876,34.273326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1904" />
+            </g>
+            <g
+               aria-label="loaded"
+               id="text218"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 13.397021,34.235001 v -1.188897 h -0.272354 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1907" />
+              <path
+                 d="m 14.528837,34.260279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117421,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1909" />
+              <path
+                 d="m 15.753612,34.030328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1911" />
+              <path
+                 d="m 16.764745,34.030328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152486 v 1.316104 h -0.152486 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1913" />
+              <path
+                 d="m 17.915316,34.174659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1915" />
+              <path
+                 d="m 18.76744,34.030328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152486 v 1.316104 H 18.76744 Z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1917" />
+            </g>
+            <g
+               aria-label="(/etc/systemd/system/kubeadm-join.service;"
+               id="text220"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 20.914142,34.53834 q -0.225874,-0.01386 -0.380806,-0.128022 -0.154932,-0.113345 -0.247891,-0.306602 -0.09214,-0.193256 -0.09214,-0.387329 0,-0.194072 0.09214,-0.387329 0.09296,-0.193257 0.247891,-0.306601 0.154932,-0.11416 0.380806,-0.128838 v 0.127207 q -0.170425,0.01549 -0.293555,0.114975 -0.122315,0.09867 -0.192442,0.251968 -0.07013,0.153301 -0.07013,0.328618 0,0.175318 0.07013,0.328618 0.07013,0.153301 0.192442,0.251968 0.12313,0.09867 0.293555,0.114976 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1920" />
+              <path
+                 d="m 21.217481,34.273326 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1922" />
+              <path
+                 d="m 22.926622,34.174659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1924" />
+              <path
+                 d="m 23.932047,34.198306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 H 23.5015 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1926" />
+              <path
+                 d="m 24.938287,34.208907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242183,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1928" />
+              <path
+                 d="m 25.222872,34.273326 h -0.149224 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1930" />
+              <path
+                 d="m 26.185079,34.18689 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1932" />
+              <path
+                 d="m 27.510968,34.198306 -0.420762,-0.87414 h 0.167163 l 0.335142,0.68333 0.280508,-0.68333 h 0.152485 l -0.353081,0.846416 q -0.111714,0.268276 -0.212827,0.356342 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123946,-0.01223 v -0.13373 q 0.06279,0.01957 0.119869,0.01957 0.07339,0 0.130468,-0.02854 0.05708,-0.02854 0.104375,-0.101113 0.04729,-0.07257 0.06687,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1934" />
+              <path
+                 d="m 28.187774,34.18689 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1936" />
+              <path
+                 d="m 29.940133,34.198306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1938" />
+              <path
+                 d="m 30.937403,34.174659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1940" />
+              <path
+                 d="m 31.11272,34.235001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185917 v 0.525953 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1942" />
+              <path
+                 d="m 32.790875,34.030328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152486 v 1.316104 h -0.152486 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1944" />
+              <path
+                 d="M 33.233654,34.273326 H 33.08443 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1946" />
+              <path
+                 d="m 34.195861,34.18689 v -0.160639 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172872,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1948" />
+              <path
+                 d="m 35.521749,34.198306 -0.420762,-0.87414 h 0.167164 l 0.335141,0.68333 0.280508,-0.68333 h 0.152485 l -0.353081,0.846416 q -0.111714,0.268276 -0.212827,0.356342 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123945,-0.01223 v -0.13373 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101113 0.0473,-0.07257 0.06686,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1950" />
+              <path
+                 d="m 36.198556,34.18689 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1952" />
+              <path
+                 d="m 37.950915,34.198306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1954" />
+              <path
+                 d="m 38.948184,34.174659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 H 38.33335 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1956" />
+              <path
+                 d="m 39.123503,34.235001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185917 v 0.525953 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1958" />
+              <path
+                 d="m 40.243086,34.273326 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1960" />
+              <path
+                 d="m 41.235465,34.235001 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1962" />
+              <path
+                 d="m 42.94542,33.324166 v 0.910835 H 42.79375 V 34.03522 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1964" />
+              <path
+                 d="m 43.337643,33.528839 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.180209 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1966" />
+              <path
+                 d="m 44.956271,34.174659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1968" />
+              <path
+                 d="m 45.798609,34.030328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1970" />
+              <path
+                 d="m 46.809743,34.030328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1972" />
+              <path
+                 d="m 47.134283,34.235001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09378,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132916 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185917 v 0.525953 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1974" />
+              <path
+                 d="m 48.262838,33.785699 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1976" />
+              <path
+                 d="m 49.219336,34.592159 v -0.141885 q 0.127207,0.03751 0.214458,0.03751 0.07583,0 0.128838,-0.02691 0.053,-0.02609 0.08236,-0.08888 0.03017,-0.06279 0.03017,-0.218535 v -0.702901 h -0.386514 v -0.126391 h 0.538183 v 0.800752 q 0,0.231582 -0.05463,0.321279 -0.05463,0.09051 -0.1321,0.129653 -0.07747,0.03914 -0.212012,0.03914 -0.09704,0 -0.20875,-0.02283 z m 0.430547,-1.596611 q 0,-0.05137 0.03425,-0.07665 0.03506,-0.02528 0.06687,-0.02528 0.0318,0 0.06605,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03425,0.02528 -0.06605,0.02528 -0.0318,0 -0.06687,-0.02528 -0.03425,-0.02528 -0.03425,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1978" />
+              <path
+                 d="m 50.58192,34.260279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1980" />
+              <path
+                 d="m 51.463399,34.235001 v -0.784444 h -0.252784 v -0.126391 h 0.404454 v 0.784443 h 0.253598 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1982" />
+              <path
+                 d="m 52.209518,34.235001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1984" />
+              <path
+                 d="m 53.585146,34.273326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1986" />
+              <path
+                 d="m 54.222815,34.18689 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1988" />
+              <path
+                 d="m 55.971095,34.174659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1990" />
+              <path
+                 d="m 56.292374,34.235001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159008,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1992" />
+              <path
+                 d="m 57.512255,34.235001 -0.395483,-0.910835 h 0.166348 l 0.312309,0.720839 0.318833,-0.720839 h 0.15167 l -0.398745,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1994" />
+              <path
+                 d="m 58.472834,34.235001 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1996" />
+              <path
+                 d="m 59.985455,34.208907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242183,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1998" />
+              <path
+                 d="m 60.977832,34.174659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2000" />
+              <path
+                 d="m 61.440999,34.588897 v -0.101113 q 0.05871,-0.01549 0.08888,-0.04485 0.03099,-0.02854 0.04893,-0.07339 0.01875,-0.04403 0.01875,-0.106822 -0.07583,0 -0.111713,-0.0424 -0.03588,-0.04322 -0.03588,-0.09214 0,-0.05626 0.03996,-0.09459 0.03996,-0.03914 0.09296,-0.03914 0.0685,0 0.118237,0.05953 0.04974,0.05871 0.04974,0.161455 0,0.0897 -0.03914,0.168794 -0.03914,0.07991 -0.106822,0.136177 -0.06686,0.05627 -0.163901,0.0685 z m 0.141885,-1.02418 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2002" />
+            </g>
+            <g
+               aria-label="enabled;"
+               id="text222"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 64.009925,34.174659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2005" />
+              <path
+                 d="m 64.253739,34.235001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2007" />
+              <path
+                 d="m 65.853612,34.030328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2009" />
+              <path
+                 d="m 66.396688,33.528839 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.180209 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2011" />
+              <path
+                 d="m 67.502411,34.235001 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284584 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2013" />
+              <path
+                 d="m 69.016663,34.174659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2015" />
+              <path
+                 d="m 69.868788,34.030328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161456,-0.196519 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2017" />
+              <path
+                 d="m 70.481175,34.588897 v -0.101113 q 0.05871,-0.01549 0.08888,-0.04485 0.03099,-0.02854 0.04893,-0.07339 0.01875,-0.04403 0.01875,-0.106822 -0.07583,0 -0.111714,-0.0424 -0.03588,-0.04322 -0.03588,-0.09214 0,-0.05626 0.03996,-0.09459 0.03996,-0.03914 0.09296,-0.03914 0.0685,0 0.118237,0.05953 0.04974,0.05871 0.04974,0.161455 0,0.0897 -0.03914,0.168794 -0.03914,0.07991 -0.106821,0.136177 -0.06687,0.05627 -0.163902,0.0685 z m 0.141885,-1.02418 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2019" />
+            </g>
+            <g
+               aria-label="vendor"
+               id="text224"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 72.56639,34.235001 -0.395484,-0.910835 h 0.166348 l 0.31231,0.720839 0.318833,-0.720839 h 0.15167 l -0.398746,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2022" />
+              <path
+                 d="m 74.029271,34.174659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2024" />
+              <path
+                 d="m 74.273084,34.235001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2026" />
+              <path
+                 d="m 75.882742,34.030328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152486 v 1.316104 h -0.152486 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2028" />
+              <path
+                 d="m 76.650877,34.260279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2030" />
+              <path
+                 d="m 77.354593,34.235001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159008,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2032" />
+            </g>
+            <g
+               aria-label="preset:"
+               id="text226"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 79.424643,33.528839 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.180209 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2035" />
+              <path
+                 d="m 80.363202,34.235001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 H 80.90057 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2037" />
+              <path
+                 d="m 82.044618,34.174659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2039" />
+              <path
+                 d="m 82.299032,34.18689 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174501,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2041" />
+              <path
+                 d="m 84.047314,34.174659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2043" />
+              <path
+                 d="m 85.052738,34.198306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119869,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227504 v -0.126391 h 0.227504 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2045" />
+              <path
+                 d="m 85.666757,34.273326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2047" />
+            </g>
+            <g
+               aria-label="enabled)"
+               id="text228"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 88.057929,34.174659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2050" />
+              <path
+                 d="m 88.301743,34.235001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2052" />
+              <path
+                 d="m 89.901616,34.030328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2054" />
+              <path
+                 d="m 90.444692,33.528839 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161456,0.196519 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.180209 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2056" />
+              <path
+                 d="m 91.550415,34.235001 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2058" />
+              <path
+                 d="m 93.064668,34.174659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2060" />
+              <path
+                 d="m 93.916792,34.030328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2062" />
+              <path
+                 d="m 94.31146,32.893619 q 0.225874,0.01468 0.380805,0.128838 0.154932,0.113344 0.247076,0.306601 0.09296,0.193257 0.09296,0.387329 0,0.194073 -0.09296,0.387329 -0.09214,0.193257 -0.247076,0.306602 -0.154931,0.11416 -0.380805,0.128022 v -0.126391 q 0.170425,-0.01631 0.292739,-0.114976 0.12313,-0.09867 0.193257,-0.251968 0.07094,-0.1533 0.07094,-0.328618 0,-0.175317 -0.07094,-0.328618 -0.07013,-0.153301 -0.193257,-0.251968 -0.122314,-0.09948 -0.292739,-0.114975 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2064" />
+            </g>
+            <g
+               aria-label="Active:"
+               id="text230"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 5.1951028,36.405998 H 5.0369094 l 0.3897754,-1.265547 h 0.1671631 l 0.3922216,1.265547 H 5.812383 L 5.7259475,36.127937 H 5.2807229 Z M 5.3198635,36.001545 H 5.6892531 L 5.5367678,35.521257 5.5008889,35.39405 5.4690871,35.521257 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2067" />
+              <path
+                 d="m 6.9042434,36.379904 q -0.1524854,0.05137 -0.290293,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060058,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136992 0.3261718,-0.136992 0.1410693,0 0.2984473,0.053 v 0.145962 q -0.1590088,-0.07257 -0.284585,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133447,0.128023 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097852,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2069" />
+              <path
+                 d="m 7.9006985,36.369304 q -0.1068213,0.04485 -0.1549317,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.1745019,-0.0367 -0.079097,-0.03669 -0.1198682,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 35.69739 H 7.0909768 v -0.126392 h 0.2275049 v -0.366943 h 0.1516699 v 0.366943 H 7.8754201 V 35.69739 H 7.4701516 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069312,0.06605 0.044033,0.0212 0.1035595,0.0212 0.110083,0 0.2315821,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2071" />
+              <path
+                 d="M 8.3956644,36.405998 V 35.621555 H 8.1428812 v -0.126392 h 0.4044531 v 0.784444 H 8.800933 v 0.126391 z m -0.025278,-1.239453 q 0,-0.05137 0.035064,-0.07665 0.035063,-0.02528 0.06605,-0.02528 0.031802,0 0.066865,0.02528 0.035063,0.02528 0.035063,0.07665 0,0.05056 -0.035063,0.07583 -0.035063,0.02528 -0.066865,0.02528 -0.030986,0 -0.06605,-0.02528 -0.035064,-0.02528 -0.035064,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2073" />
+              <path
+                 d="M 9.4377834,36.405998 9.0423001,35.495163 h 0.1663476 l 0.3123096,0.72084 0.318833,-0.72084 h 0.1516699 l -0.3987451,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2075" />
+              <path
+                 d="m 10.900664,36.345656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 H 10.28583 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 10.2948,35.862107 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2077" />
+              <path
+                 d="m 11.51876,36.444323 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2079" />
+            </g>
+            <g
+               aria-label="inactive"
+               id="text232"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 13.407621,36.405998 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2082" />
+              <path
+                 d="m 14.153739,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2084" />
+              <path
+                 d="m 15.753612,36.201325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2086" />
+              <path
+                 d="m 16.922939,36.379904 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2088" />
+              <path
+                 d="m 17.919394,36.369304 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 35.69739 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2090" />
+              <path
+                 d="m 18.414359,36.405998 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2092" />
+              <path
+                 d="m 19.456479,36.405998 -0.395484,-0.910835 h 0.166348 l 0.31231,0.72084 0.318833,-0.72084 h 0.15167 l -0.398746,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2094" />
+              <path
+                 d="m 20.91936,36.345656 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2096" />
+            </g>
+            <g
+               aria-label="(dead)"
+               id="text234"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 22.918141,36.709338 q -0.225874,-0.01386 -0.380805,-0.128022 -0.154932,-0.113345 -0.247891,-0.306602 -0.09214,-0.193257 -0.09214,-0.387329 0,-0.194072 0.09214,-0.387329 0.09296,-0.193257 0.247891,-0.306602 0.154931,-0.11416 0.380805,-0.128838 v 0.127207 q -0.170425,0.01549 -0.293554,0.114976 -0.122315,0.09867 -0.192442,0.251968 -0.07013,0.153301 -0.07013,0.328618 0,0.175317 0.07013,0.328618 0.07013,0.153301 0.192442,0.251968 0.123129,0.09867 0.293554,0.114975 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2099" />
+              <path
+                 d="m 23.78005,36.201325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152486 v 1.316103 H 23.78005 Z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2101" />
+              <path
+                 d="m 24.930622,36.345656 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2103" />
+              <path
+                 d="m 25.772961,36.201325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2105" />
+              <path
+                 d="m 26.784093,36.201325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152486 v 1.316103 h -0.152486 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2107" />
+              <path
+                 d="m 27.178761,35.064616 q 0.225874,0.01468 0.380806,0.128838 0.154932,0.113345 0.247075,0.306602 0.09296,0.193257 0.09296,0.387329 0,0.194072 -0.09296,0.387329 -0.09214,0.193257 -0.247075,0.306602 -0.154932,0.11416 -0.380806,0.128022 v -0.126392 q 0.170425,-0.01631 0.29274,-0.114975 0.123129,-0.09867 0.193256,-0.251968 0.07094,-0.153301 0.07094,-0.328618 0,-0.175317 -0.07094,-0.328618 -0.07013,-0.153301 -0.193256,-0.251968 -0.122315,-0.09948 -0.29274,-0.114976 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2109" />
+            </g>
+            <g
+               aria-label="since"
+               id="text236"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 29.194993,36.357888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2112" />
+              <path
+                 d="m 30.440969,36.405998 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2114" />
+              <path
+                 d="m 31.187087,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2116" />
+              <path
+                 d="m 32.954939,36.379904 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2118" />
+              <path
+                 d="m 33.947317,36.345656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2120" />
+            </g>
+            <g
+               aria-label="Fri"
+               id="text238"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 35.255102,36.405998 v -1.265547 h 0.695562 v 0.127207 h -0.530845 v 0.429732 h 0.480288 v 0.126391 h -0.480288 v 0.582217 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2123" />
+              <path
+                 d="m 36.275205,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2125" />
+              <path
+                 d="m 37.454316,36.405998 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2127" />
+            </g>
+            <g
+               aria-label="2020-09-18"
+               id="text240"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 39.965187,36.405998 H 39.199498 V 36.26656 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102745,-0.04893 0.205489,-0.06686 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2130" />
+              <path
+                 d="m 40.580021,35.102942 q 0.216088,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247076,0.941005 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2132" />
+              <path
+                 d="M 41.967882,36.405998 H 41.202193 V 36.26656 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2134" />
+              <path
+                 d="m 42.582716,35.102942 q 0.216089,0 0.329434,0.18184 0.113344,0.181026 0.113344,0.488443 0,0.308232 -0.113344,0.490073 -0.113345,0.181025 -0.329434,0.181025 -0.215273,0 -0.329434,-0.181025 -0.113344,-0.181841 -0.113344,-0.490073 0,-0.307417 0.113344,-0.488443 0.114161,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02773,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154931,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2136" />
+              <path
+                 d="m 43.268492,35.956696 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2138" />
+              <path
+                 d="m 44.585411,35.102942 q 0.216089,0 0.329434,0.18184 0.113344,0.181026 0.113344,0.488443 0,0.308232 -0.113344,0.490073 -0.113345,0.181025 -0.329434,0.181025 -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 z m -0.247075,0.941005 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154931,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2140" />
+              <path
+                 d="m 45.849327,35.734084 q -0.05871,0.08725 -0.145961,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114975,-0.31231 0.115791,-0.13373 0.304156,-0.13373 0.221797,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183471 -0.377544,0.183471 -0.128023,0 -0.248706,-0.03833 v -0.152485 q 0.135361,0.0636 0.255229,0.0636 0.16961,0 0.262569,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297631,-0.504751 q -0.06116,0 -0.12313,0.0367 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164716,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2142" />
+              <path
+                 d="m 46.272535,35.956696 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2144" />
+              <path
+                 d="m 47.551944,36.279607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03832 -0.176948,0.07828 V 35.33697 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 v 0.126391 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2146" />
+              <path
+                 d="m 48.46441,35.723484 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01876,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238106 -0.09948,0.100297 -0.298447,0.100297 -0.19978,0 -0.299262,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2148" />
+            </g>
+            <g
+               aria-label="16:51:47"
+               id="text242"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 50.563163,36.279607 v -0.976885 q -0.0685,0.05463 -0.132916,0.09296 -0.06442,0.03832 -0.176948,0.07828 V 35.33697 q 0.178579,-0.07583 0.309864,-0.196519 h 0.151669 v 1.139156 h 0.304156 v 0.126391 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2151" />
+              <path
+                 d="m 51.339452,35.812365 q 0.05871,-0.08725 0.145146,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2153" />
+              <path
+                 d="m 52.603368,36.444323 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2155" />
+              <path
+                 d="m 53.257342,35.747946 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309864 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147592,0.11416 0.147592,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167978,0.152486 -0.108453,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.105191,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2157" />
+              <path
+                 d="m 54.568553,36.279607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03832 -0.176948,0.07828 V 35.33697 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 H 54.25869 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2159" />
+              <path
+                 d="m 55.60741,36.444323 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2161" />
+              <path
+                 d="m 56.684593,36.405998 v -0.353896 h -0.537368 v -0.127207 l 0.537368,-0.784444 h 0.152486 v 0.784444 h 0.234028 v 0.127207 h -0.234028 v 0.353896 z m 0,-0.481103 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2163" />
+              <path
+                 d="m 57.369554,36.405998 v -0.113344 q 0,-0.132916 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.21935 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114976 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113344 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2165" />
+            </g>
+            <g
+               aria-label="CEST;"
+               id="text244"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 60.005188,36.39132 q -0.141885,0.053 -0.254415,0.053 -0.148408,0 -0.273168,-0.0791 -0.124761,-0.07991 -0.194073,-0.236475 -0.06931,-0.157378 -0.06931,-0.355527 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.12476,-0.08073 0.274799,-0.08073 0.11253,0 0.254415,0.053 v 0.150039 q -0.131285,-0.07584 -0.260938,-0.07584 -0.09785,0 -0.179395,0.06686 -0.08073,0.06687 -0.130468,0.196519 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130469 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2168" />
+              <path
+                 d="m 60.96821,36.26656 v 0.139438 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505566 v 0.429732 h 0.455009 v 0.126391 h -0.455009 v 0.442779 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2170" />
+              <path
+                 d="m 61.248718,36.379089 v -0.154932 q 0.195703,0.09296 0.355527,0.09296 0.06686,0 0.128023,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.0579 -0.16227,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326171 0,-0.142701 0.09867,-0.239737 0.09948,-0.09785 0.309863,-0.09785 0.135361,0 0.261753,0.03914 v 0.14107 q -0.139439,-0.05382 -0.271538,-0.05382 -0.105191,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.133731 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06687,0.03914 q 0.207934,0.127207 0.207934,0.319648 0,0.146778 -0.106821,0.251968 -0.106821,0.10519 -0.34248,0.10519 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2172" />
+              <path
+                 d="M 62.540359,36.405998 V 35.27989 h -0.379175 v -0.139439 h 0.923882 v 0.139439 h -0.379991 v 1.126108 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2174" />
+              <path
+                 d="m 63.469133,36.759895 v -0.101114 q 0.05871,-0.01549 0.08888,-0.04485 0.03099,-0.02854 0.04893,-0.07339 0.01875,-0.04403 0.01875,-0.106821 -0.07583,0 -0.111714,-0.0424 -0.03588,-0.04322 -0.03588,-0.09214 0,-0.05627 0.03996,-0.09459 0.03996,-0.03914 0.09296,-0.03914 0.0685,0 0.118237,0.05953 0.04974,0.05871 0.04974,0.161455 0,0.0897 -0.03914,0.168794 -0.03914,0.07991 -0.106822,0.136177 -0.06686,0.05626 -0.163901,0.0685 z m 0.141885,-1.02418 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2176" />
+            </g>
+            <g
+               aria-label="10min"
+               id="text246"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 65.593161,36.279607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03832 -0.176948,0.07828 V 35.33697 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 h -0.765688 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2179" />
+              <path
+                 d="m 66.632019,35.102942 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02773,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2181" />
+              <path
+                 d="m 67.190588,36.405998 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 H 67.94323 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2183" />
+              <path
+                 d="m 68.515661,36.405998 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2185" />
+              <path
+                 d="m 69.261779,36.405998 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2187" />
+            </g>
+            <g
+               aria-label="ago"
+               id="text248"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 71.866915,36.201325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2190" />
+              <path
+                 d="m 72.878048,36.201325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.1533 q 0.06442,0.04403 0.158193,0.07746 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2192" />
+              <path
+                 d="m 73.646183,36.431277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117421,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2194" />
+            </g>
+            <g
+               aria-label="Process:"
+               id="text250"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 4.3162323,38.115466 V 38.577 H 4.1515155 v -1.265547 h 0.3147559 q 0.1940722,0 0.2829541,0.04403 0.088882,0.04322 0.1361767,0.127207 0.047295,0.08399 0.047295,0.187549 0,0.121499 -0.063604,0.226689 -0.063604,0.105191 -0.1777636,0.162271 -0.1133448,0.05626 -0.3082325,0.05626 z m 0,-0.126391 h 0.070942 q 0.1524853,0 0.2266894,-0.03914 0.074204,-0.03996 0.1141602,-0.11416 0.039956,-0.0742 0.039956,-0.16064 0,-0.109267 -0.071758,-0.172871 -0.070942,-0.0636 -0.2813232,-0.0636 h -0.098667 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2197" />
+              <path
+                 d="m 5.213205,38.577 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092143,-0.05626 0.2046728,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 5.7505731 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663476,0.06686 -0.081543,0.06686 -0.1590088,0.200596 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2199" />
+              <path
+                 d="m 6.5121845,38.602278 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2201" />
+              <path
+                 d="m 7.9049385,38.550906 q -0.1524854,0.05137 -0.290293,0.05137 -0.1369922,0 -0.2438134,-0.06279 -0.1060059,-0.0636 -0.1655323,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136993 0.3261718,-0.136993 0.1410694,0 0.2984473,0.053 v 0.145962 q -0.1590088,-0.07257 -0.284585,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133447,0.128022 -0.039956,0.08725 -0.039956,0.179395 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421827,0.111714 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2203" />
+              <path
+                 d="m 8.8973163,38.516658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057896,-0.11416 -0.057896,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 8.2824823 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2205" />
+              <path
+                 d="M 9.1517303,38.528889 V 38.36825 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023647,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 l -0.052188,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122314 -0.044849,-0.05545 -0.044849,-0.135362 0,-0.112529 0.086435,-0.185102 0.087251,-0.07257 0.2821387,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137807 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027441,0.03751 q 0.1410694,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.091328,0.194888 -0.090513,0.07583 -0.290293,0.07583 -0.1745019,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2207" />
+              <path
+                 d="M 10.153078,38.528889 V 38.36825 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08643,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2209" />
+              <path
+                 d="m 11.518107,38.615325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2211" />
+            </g>
+            <g
+               aria-label="1273"
+               id="text252"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 13.489164,38.450608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136993 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 V 38.577 h -0.765688 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2214" />
+              <path
+                 d="m 14.914535,38.577 h -0.765688 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08643,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194887,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2216" />
+              <path
+                 d="m 15.288817,38.577 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110898 0.121499,-0.17124 l 0.1321,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.656421 v -0.152485 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2218" />
+              <path
+                 d="m 16.14828,38.554168 v -0.159825 q 0.186734,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07584 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126391 h 0.116607 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289477,0.07584 v -0.144331 q 0.154931,-0.0579 0.283769,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.17124,0.135361 0.110083,0.03262 0.166347,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.132099,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2220" />
+            </g>
+            <g
+               aria-label="ExecStart=/bin/sh"
+               id="text254"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 18.884862,38.437561 V 38.577 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505567 v 0.429731 h 0.45501 v 0.126392 h -0.45501 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2223" />
+              <path
+                 d="m 19.258328,38.577 h -0.175317 l 0.357974,-0.477027 -0.334327,-0.433808 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194887 l -0.277246,-0.362867 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2225" />
+              <path
+                 d="m 20.92262,38.516658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2227" />
+              <path
+                 d="m 21.932938,38.550906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106005,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2229" />
+              <path
+                 d="m 22.169412,38.55009 v -0.154931 q 0.195704,0.09296 0.355528,0.09296 0.06686,0 0.128022,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.123129 -0.04322,-0.0579 -0.162271,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309864,-0.09785 0.135361,0 0.261752,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.10519,0 -0.170424,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319649 0,0.146777 -0.106821,0.251967 -0.106822,0.105191 -0.342481,0.105191 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2231" />
+              <path
+                 d="m 23.93074,38.540305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 37.868391 H 23.121019 V 37.742 h 0.227505 v -0.366944 h 0.15167 V 37.742 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2233" />
+              <path
+                 d="m 24.769002,38.372327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2235" />
+              <path
+                 d="m 25.24929,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2237" />
+              <path
+                 d="m 26.934783,38.540305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 37.868391 H 26.125062 V 37.742 h 0.227505 v -0.366944 h 0.15167 V 37.742 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2239" />
+              <path
+                 d="m 27.99158,37.931995 v 0.126391 h -0.885556 v -0.126391 z m 0,0.284585 v 0.126391 H 27.106024 V 38.21658 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2241" />
+              <path
+                 d="m 28.225608,38.615325 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2243" />
+              <path
+                 d="m 29.317469,37.870838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2245" />
+              <path
+                 d="M 30.433793,38.577 V 37.792556 H 30.18101 v -0.126391 h 0.404453 v 0.784443 h 0.253598 V 38.577 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2247" />
+              <path
+                 d="m 31.179911,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 38.577 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2249" />
+              <path
+                 d="m 32.231,38.615325 h -0.149224 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2251" />
+              <path
+                 d="M 33.193207,38.528889 V 38.36825 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2253" />
+              <path
+                 d="m 34.183953,38.577 v -1.316104 h 0.15167 v 0.604234 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.14107,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.199781 V 38.577 h -0.151669 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2255" />
+            </g>
+            <g
+               aria-label="-c"
+               id="text256"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 36.257101,38.127698 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2258" />
+              <path
+                 d="m 37.966242,38.550906 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326171,-0.136993 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2260" />
+            </g>
+            <g
+               aria-label="exec"
+               id="text258"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 39.961925,38.516658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2263" />
+              <path
+                 d="m 40.300328,38.577 h -0.175317 l 0.357973,-0.477027 -0.334326,-0.433808 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194887 l -0.277247,-0.362867 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2265" />
+              <path
+                 d="m 41.96462,38.516658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2267" />
+              <path
+                 d="m 42.974938,38.550906 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326171,-0.136993 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2269" />
+            </g>
+            <g
+               aria-label="${JOIN_COMMAND}"
+               id="text260"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 44.56095,38.703391 v -0.128022 q -0.05463,0 -0.113344,-0.0057 -0.05871,-0.0057 -0.110083,-0.01712 -0.05137,-0.01223 -0.118238,-0.0424 v -0.156562 q 0.05382,0.02773 0.105191,0.04729 0.05219,0.01957 0.109267,0.03099 0.0579,0.01142 0.127207,0.01631 v -0.454195 l -0.08725,-0.04729 q -0.24789,-0.132916 -0.24789,-0.32128 0,-0.100298 0.08236,-0.194887 0.08236,-0.09541 0.252783,-0.110083 v -0.135362 h 0.114161 v 0.135362 q 0.09622,0 0.227504,0.03343 v 0.141069 l -0.02854,-0.0082 q -0.123129,-0.03425 -0.198964,-0.04159 v 0.443594 l 0.09133,0.05219 q 0.128838,0.0742 0.176133,0.145961 0.04811,0.07176 0.04811,0.152486 0,0.07257 -0.03669,0.141069 -0.03588,0.06768 -0.10356,0.116607 -0.06768,0.04893 -0.175317,0.06768 v 0.138623 z m 0,-0.88311 v -0.376729 q -0.08236,0.01876 -0.127207,0.06197 -0.04403,0.04322 -0.04403,0.101113 0,0.05463 0.03751,0.105191 0.03833,0.04974 0.13373,0.108452 z m 0.114161,0.241367 v 0.375098 q 0.08888,-0.0318 0.119868,-0.07747 0.0318,-0.04648 0.0318,-0.10356 0,-0.05545 -0.03099,-0.09459 -0.03099,-0.03996 -0.120683,-0.09948 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2272" />
+              <path
+                 d="m 45.535389,38.058386 q 0.07583,0.03996 0.110898,0.07828 0.03588,0.03833 0.053,0.0791 0.01794,0.03996 0.01794,0.09214 0,0.04648 -0.01631,0.121499 l -0.02039,0.09296 q -0.01631,0.07584 -0.01631,0.112529 0,0.04974 0.03833,0.08399 0.03914,0.03506 0.159824,0.03506 h 0.126392 v 0.126392 h -0.128023 q -0.223427,0 -0.287846,-0.07176 -0.06442,-0.07176 -0.06442,-0.162271 0,-0.04811 0.01223,-0.103559 l 0.01468,-0.06524 0.01386,-0.07094 0.0098,-0.04322 q 0.0057,-0.03017 0.0057,-0.05871 0,-0.07583 -0.05137,-0.129653 -0.05056,-0.05382 -0.179394,-0.05382 h -0.07257 v -0.126391 h 0.07257 q 0.127207,0 0.178579,-0.053 0.05219,-0.053 0.05219,-0.1321 0,-0.02936 -0.0057,-0.05708 l -0.0098,-0.0424 -0.01386,-0.07094 -0.01468,-0.06524 q -0.01223,-0.05626 -0.01223,-0.104375 0,-0.0897 0.06442,-0.161455 0.06442,-0.07257 0.287846,-0.07257 h 0.128023 v 0.127207 h -0.126392 q -0.119868,0 -0.159009,0.03506 -0.03914,0.03425 -0.03914,0.0848 0,0.03588 0.01631,0.111714 l 0.02039,0.09296 q 0.01631,0.07502 0.01631,0.121499 0,0.05219 -0.01794,0.09296 -0.01712,0.03996 -0.053,0.07828 -0.03506,0.03833 -0.110898,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2274" />
+              <path
+                 d="m 46.180394,38.549275 v -0.154932 q 0.177764,0.09378 0.297632,0.09378 0.06279,0 0.11416,-0.02446 0.05219,-0.02446 0.08236,-0.08154 0.03099,-0.0579 0.03099,-0.24626 V 37.43866 h -0.284585 v -0.127207 h 0.449301 v 0.828476 q 0,0.202227 -0.04648,0.291109 -0.04566,0.08888 -0.128838,0.136992 -0.08317,0.04729 -0.212827,0.04729 -0.145147,0 -0.301709,-0.06605 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2276" />
+              <path
+                 d="m 47.592718,38.615325 q -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113344,0.181025 0.113344,0.488442 0,0.308233 -0.113344,0.490073 -0.113345,0.181026 -0.329434,0.181026 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119053,0 -0.198965,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198965,0.134546 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2278" />
+              <path
+                 d="m 48.233646,38.577 v -0.126392 h 0.278061 V 37.43866 h -0.278061 v -0.127207 h 0.72084 v 0.127207 h -0.278062 v 1.011948 h 0.278062 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2280" />
+              <path
+                 d="m 49.349153,38.577 h -0.151669 v -1.265547 h 0.148408 l 0.447671,0.842339 0.04893,0.125576 h 0.0041 l -0.0041,-0.125576 v -0.842339 h 0.15167 V 38.577 h -0.15167 l -0.435439,-0.828477 -0.06116,-0.132915 0.0033,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2282" />
+              <path
+                 d="M 50.153983,38.703391 V 38.577 h 0.885557 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2284" />
+              <path
+                 d="m 51.984622,38.562322 q -0.141884,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.12476,-0.07991 -0.194072,-0.236474 -0.06931,-0.157378 -0.06931,-0.355528 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.12476,-0.08073 0.274799,-0.08073 0.11253,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260937,-0.07584 -0.09785,0 -0.179395,0.06686 -0.08073,0.06686 -0.130468,0.196518 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130469 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260937,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2286" />
+              <path
+                 d="m 52.599456,38.615325 q -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198964,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198964,0.134546 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2288" />
+              <path
+                 d="m 53.278709,38.577 h -0.132915 v -1.265547 h 0.165532 l 0.291924,0.833369 0.291924,-0.833369 h 0.161455 V 38.577 h -0.15167 v -0.80646 l 0.0041,-0.110899 h -0.0041 l -0.03588,0.110899 -0.195703,0.553676 H 53.50866 l -0.198149,-0.553676 -0.0318,-0.110899 h -0.0041 l 0.0041,0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2290" />
+              <path
+                 d="m 54.280057,38.577 h -0.132915 v -1.265547 h 0.165532 l 0.291924,0.833369 0.291924,-0.833369 h 0.161455 V 38.577 h -0.15167 v -0.80646 l 0.0041,-0.110899 h -0.0041 l -0.03588,0.110899 -0.195703,0.553676 h -0.164717 l -0.19815,-0.553676 -0.0318,-0.110899 h -0.0041 l 0.0041,0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2292" />
+              <path
+                 d="m 55.287928,38.577 h -0.158194 l 0.389776,-1.265547 h 0.167163 L 56.078894,38.577 h -0.173686 l -0.08644,-0.278062 h -0.445224 z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480289 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2294" />
+              <path
+                 d="m 56.358588,38.577 h -0.15167 v -1.265547 h 0.148408 l 0.447671,0.842339 0.04893,0.125576 h 0.0041 l -0.0041,-0.125576 v -0.842339 h 0.15167 V 38.577 h -0.15167 l -0.43544,-0.828477 -0.06116,-0.132915 0.0033,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2296" />
+              <path
+                 d="m 57.231913,38.577 v -1.265547 h 0.300078 q 0.207119,0 0.307417,0.07257 0.101113,0.07176 0.15167,0.21772 0.05056,0.145962 0.05056,0.345742 0,0.18918 -0.05382,0.332695 -0.053,0.1427 -0.150854,0.220166 -0.09785,0.07665 -0.304971,0.07665 z m 0.164717,-0.139439 h 0.110083 q 0.167163,0 0.238105,-0.05953 0.07176,-0.05953 0.101929,-0.164717 0.03099,-0.106006 0.03099,-0.291924 0,-0.181841 -0.03588,-0.279692 -0.03588,-0.09785 -0.102744,-0.150039 -0.06686,-0.053 -0.219351,-0.053 H 57.39663 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2298" />
+              <path
+                 d="m 58.662992,38.058386 q -0.07584,-0.03996 -0.111714,-0.07828 -0.03506,-0.03833 -0.05219,-0.07828 -0.01712,-0.04077 -0.01712,-0.09296 0,-0.04648 0.01549,-0.121499 l 0.02039,-0.09296 q 0.01631,-0.07583 0.01631,-0.112529 0,-0.04974 -0.03914,-0.08399 -0.03833,-0.03506 -0.159009,-0.03506 h -0.126391 v -0.127207 h 0.128022 q 0.223428,0 0.287847,0.07257 0.06523,0.07176 0.06523,0.161455 0,0.04893 -0.01305,0.104375 l -0.01468,0.06524 -0.01386,0.07094 -0.0098,0.0424 q -0.0057,0.03099 -0.0057,0.05953 0,0.07502 0.05056,0.128838 0.05137,0.05382 0.18021,0.05382 h 0.07257 v 0.126391 h -0.07257 q -0.127207,0 -0.179395,0.05382 -0.05137,0.053 -0.05137,0.132099 0,0.02854 0.0057,0.05627 l 0.0098,0.04322 0.01386,0.07094 0.01468,0.06524 q 0.01305,0.05626 0.01305,0.104375 0,0.09051 -0.06523,0.161455 -0.06442,0.07176 -0.287847,0.07176 h -0.128022 v -0.126392 h 0.126391 q 0.120684,0 0.159009,-0.03506 0.03914,-0.03425 0.03914,-0.0848 0,-0.03588 -0.01631,-0.111714 l -0.02039,-0.09296 q -0.01549,-0.07502 -0.01549,-0.121499 0,-0.05219 0.01712,-0.09214 0.01712,-0.04077 0.05219,-0.0791 0.03588,-0.03833 0.111714,-0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2300" />
+            </g>
+            <g
+               aria-label="(code=exited,"
+               id="text262"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 60.99414,38.88034 q -0.225874,-0.01386 -0.380806,-0.128023 -0.154932,-0.113345 -0.247891,-0.306602 -0.09214,-0.193256 -0.09214,-0.387329 0,-0.194072 0.09214,-0.387329 0.09296,-0.193257 0.247891,-0.306601 0.154932,-0.11416 0.380806,-0.128838 v 0.127207 q -0.170425,0.01549 -0.293555,0.114975 -0.122315,0.09867 -0.192442,0.251968 -0.07013,0.153301 -0.07013,0.328618 0,0.175318 0.07013,0.328619 0.07013,0.1533 0.192442,0.251967 0.12313,0.09867 0.293555,0.114976 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2303" />
+              <path
+                 d="m 62.014242,38.550906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2305" />
+              <path
+                 d="m 62.624183,38.602278 q -0.195703,0 -0.313124,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117421,-0.136177 0.313124,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.1215,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2307" />
+              <path
+                 d="m 63.858744,38.372327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 V 37.260896 H 64.01123 V 38.577 h -0.152486 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2309" />
+              <path
+                 d="m 65.009315,38.516658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2311" />
+              <path
+                 d="m 66.070189,37.931995 v 0.126391 h -0.885556 v -0.126391 z m 0,0.284585 v 0.126391 H 65.184633 V 38.21658 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2313" />
+              <path
+                 d="m 67.012011,38.516658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2315" />
+              <path
+                 d="m 67.350414,38.577 h -0.175317 l 0.357973,-0.477027 -0.334326,-0.433808 h 0.194072 l 0.23729,0.305786 0.230767,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194888 l -0.277246,-0.362867 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2317" />
+              <path
+                 d="m 68.512401,38.577 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 H 68.91767 V 38.577 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2319" />
+              <path
+                 d="m 70.020131,38.540305 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 37.868391 H 69.210409 V 37.742 h 0.227505 v -0.366944 h 0.15167 V 37.742 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2321" />
+              <path
+                 d="m 71.017401,38.516658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2323" />
+              <path
+                 d="m 71.869525,38.372327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 V 37.260896 H 72.02201 V 38.577 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2325" />
+              <path
+                 d="m 72.481914,38.930896 v -0.101113 q 0.05871,-0.01549 0.08888,-0.04485 0.03099,-0.02854 0.04893,-0.07339 0.01875,-0.04403 0.01875,-0.106822 -0.07583,0 -0.111714,-0.0424 -0.03588,-0.04322 -0.03588,-0.09214 0,-0.05626 0.03996,-0.09459 0.03996,-0.03914 0.09296,-0.03914 0.0685,0 0.118238,0.05953 0.04974,0.05871 0.04974,0.161455 0,0.0897 -0.03914,0.168794 -0.03914,0.07991 -0.106821,0.136177 -0.06686,0.05626 -0.163901,0.0685 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2327" />
+            </g>
+            <g
+               aria-label="status=0/SUCCESS)"
+               id="text264"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 74.284995,38.528889 V 38.36825 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2330" />
+              <path
+                 d="m 76.037353,38.540305 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119869,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 37.868391 H 75.227632 V 37.742 h 0.227504 v -0.366944 h 0.15167 V 37.742 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2332" />
+              <path
+                 d="m 76.875615,38.372327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 H 77.0281 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2334" />
+              <path
+                 d="m 78.040049,38.540305 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 37.868391 H 77.230327 V 37.742 h 0.227505 v -0.366944 h 0.15167 V 37.742 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2336" />
+              <path
+                 d="M 79.029165,37.666165 V 38.577 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 Q 78.27,38.377219 78.27,38.174993 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2338" />
+              <path
+                 d="M 79.291733,38.528889 V 38.36825 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145961,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2340" />
+              <path
+                 d="m 81.099541,37.931995 v 0.126391 h -0.885557 v -0.126391 z m 0,0.284585 v 0.126391 H 80.213984 V 38.21658 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2342" />
+              <path
+                 d="m 81.65811,37.273943 q 0.216089,0 0.329434,0.181841 0.113344,0.181025 0.113344,0.488442 0,0.308233 -0.113344,0.490073 -0.113345,0.181026 -0.329434,0.181026 -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 z m -0.247075,0.941006 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02773,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154931,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2344" />
+              <path
+                 d="m 82.334917,38.615325 h -0.149224 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2346" />
+              <path
+                 d="m 83.288154,38.55009 v -0.154931 q 0.195703,0.09296 0.355527,0.09296 0.06686,0 0.128023,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.123129 -0.04322,-0.0579 -0.16227,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135361,0 0.261753,0.03914 v 0.141069 q -0.139439,-0.05382 -0.271538,-0.05382 -0.105191,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06687,0.03914 q 0.207934,0.127207 0.207934,0.319649 0,0.146777 -0.106821,0.251967 -0.106821,0.105191 -0.34248,0.105191 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2348" />
+              <path
+                 d="m 84.264223,37.311453 h 0.164717 v 0.830923 q 0,0.163901 0.02691,0.224243 0.02773,0.05953 0.08399,0.09133 0.05708,0.03099 0.126392,0.03099 0.07339,0 0.130469,-0.03343 0.0579,-0.03425 0.0848,-0.106006 0.02773,-0.07257 0.02773,-0.271538 v -0.766504 h 0.15167 v 0.82603 q 0,0.176948 -0.053,0.277246 -0.05219,0.09948 -0.136992,0.150039 -0.08481,0.05056 -0.213643,0.05056 -0.119052,0 -0.209565,-0.04403 -0.09051,-0.04403 -0.136992,-0.1321 -0.04648,-0.08807 -0.04648,-0.318018 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2350" />
+              <path
+                 d="m 86.050014,38.562322 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236474 -0.06931,-0.157378 -0.06931,-0.355528 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260937,-0.07584 -0.09785,0 -0.179395,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130469 0.131284,0.195703 0.07991,0.06442 0.176949,0.06442 0.128837,0 0.260937,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2352" />
+              <path
+                 d="m 87.051363,38.562322 q -0.141885,0.053 -0.254415,0.053 -0.148408,0 -0.273168,-0.0791 -0.124761,-0.07991 -0.194073,-0.236474 -0.06931,-0.157378 -0.06931,-0.355528 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.12476,-0.08073 0.274799,-0.08073 0.11253,0 0.254415,0.053 v 0.150039 q -0.131285,-0.07584 -0.260938,-0.07584 -0.09785,0 -0.179395,0.06686 -0.08073,0.06686 -0.130468,0.196518 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130469 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2354" />
+              <path
+                 d="M 88.014385,38.437561 V 38.577 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505566 v 0.429731 h 0.455009 v 0.126392 h -0.455009 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2356" />
+              <path
+                 d="m 88.294893,38.55009 v -0.154931 q 0.195703,0.09296 0.355527,0.09296 0.06687,0 0.128022,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.123129 -0.04322,-0.0579 -0.162271,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309864,-0.09785 0.135361,0 0.261753,0.03914 v 0.141069 q -0.139439,-0.05382 -0.271538,-0.05382 -0.105191,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06687,0.03914 q 0.207935,0.127207 0.207935,0.319649 0,0.146777 -0.106821,0.251967 -0.106822,0.105191 -0.342481,0.105191 -0.07502,0 -0.143515,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2358" />
+              <path
+                 d="m 89.29624,38.55009 v -0.154931 q 0.195703,0.09296 0.355527,0.09296 0.06687,0 0.128023,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.123129 -0.04322,-0.0579 -0.16227,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135362,0 0.261753,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.10519,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319649 0,0.146777 -0.106822,0.251967 -0.106821,0.105191 -0.34248,0.105191 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2360" />
+              <path
+                 d="m 90.297588,37.235618 q 0.225874,0.01468 0.380805,0.128838 0.154932,0.113344 0.247076,0.306601 0.09296,0.193257 0.09296,0.387329 0,0.194073 -0.09296,0.387329 -0.09214,0.193257 -0.247076,0.306602 -0.154931,0.11416 -0.380805,0.128023 v -0.126392 q 0.170424,-0.01631 0.292739,-0.114976 0.12313,-0.09867 0.193257,-0.251967 0.07094,-0.153301 0.07094,-0.328619 0,-0.175317 -0.07094,-0.328618 -0.07013,-0.153301 -0.193257,-0.251968 -0.122315,-0.09948 -0.292739,-0.114975 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2362" />
+            </g>
+            <g
+               aria-label="Main"
+               id="text266"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 3.1845791,40.748001 h -0.132915 v -1.265547 h 0.1655322 l 0.2919238,0.833369 0.2919239,-0.833369 h 0.161455 v 1.265547 H 3.8108291 v -0.80646 l 0.00408,-0.110898 h -0.00408 l -0.035879,0.110898 -0.1957031,0.553677 H 3.4145303 L 3.2163809,39.941541 3.1845791,39.830643 h -0.00408 l 0.00408,0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2365" />
+              <path
+                 d="m 4.7322647,40.543328 q -0.069312,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299262 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304688,0.009 0.013047,0.0016 0.039141,0.0041 H 4.88475 v 0.643374 q 0,0.164717 0.034248,0.267461 H 4.7608047 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108453 -0.092959,0.295186 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2367" />
+              <path
+                 d="M 5.3903164,40.748001 V 39.963558 H 5.1375333 V 39.837166 H 5.5419864 V 40.62161 H 5.795585 v 0.126391 z m -0.025278,-1.239453 q 0,-0.05137 0.035064,-0.07665 0.035063,-0.02528 0.06605,-0.02528 0.031802,0 0.066865,0.02528 0.035064,0.02528 0.035064,0.07665 0,0.05056 -0.035064,0.07584 -0.035063,0.02528 -0.066865,0.02528 -0.030986,0 -0.06605,-0.02528 -0.035064,-0.02528 -0.035064,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2369" />
+              <path
+                 d="m 6.1364347,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.065234,-0.10519 0.1573779,-0.164717 0.092143,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092144,0.111713 0.026909,0.06931 0.026909,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.013047,-0.172871 -0.012232,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07583 -0.1508544,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2371" />
+            </g>
+            <g
+               aria-label="PID:"
+               id="text268"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 8.3242322,40.286468 v 0.461533 H 8.1595154 v -1.265547 h 0.3147559 q 0.1940722,0 0.2829541,0.04403 0.088882,0.04322 0.1361767,0.127207 0.047295,0.08399 0.047295,0.187549 0,0.121499 -0.063603,0.22669 -0.063604,0.10519 -0.1777636,0.16227 -0.1133448,0.05626 -0.3082325,0.05626 z m 0,-0.126392 h 0.070942 q 0.1524853,0 0.2266894,-0.03914 0.074204,-0.03996 0.1141602,-0.11416 0.039956,-0.0742 0.039956,-0.16064 0,-0.109268 -0.071758,-0.172871 -0.070942,-0.0636 -0.2813232,-0.0636 h -0.098667 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2374" />
+              <path
+                 d="M 9.1576014,40.748001 V 40.62161 H 9.4356629 V 39.609661 H 9.1576014 v -0.127207 h 0.7208398 v 0.127207 H 9.6003797 v 1.011949 h 0.2780615 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2376" />
+              <path
+                 d="m 10.145087,40.748001 v -1.265547 h 0.300078 q 0.207119,0 0.307417,0.07257 0.101113,0.07176 0.15167,0.21772 0.05056,0.145962 0.05056,0.345742 0,0.18918 -0.05382,0.332696 -0.053,0.1427 -0.150854,0.220166 -0.09785,0.07665 -0.304971,0.07665 z m 0.164717,-0.139438 h 0.110083 q 0.167163,0 0.238105,-0.05953 0.07176,-0.05953 0.101929,-0.164717 0.03099,-0.106005 0.03099,-0.291923 0,-0.181841 -0.03588,-0.279693 -0.03588,-0.09785 -0.102744,-0.150039 -0.06686,-0.053 -0.219351,-0.053 h -0.123129 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2378" />
+              <path
+                 d="m 11.520717,40.786326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2380" />
+            </g>
+            <g
+               aria-label="1273"
+               id="text270"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 13.489164,40.62161 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 H 13.179301 V 40.62161 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2383" />
+              <path
+                 d="m 14.914535,40.748001 h -0.765688 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08643,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194887,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2385" />
+              <path
+                 d="m 15.288817,40.748001 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120683,0.183471 -0.03914,0.0685 -0.05953,0.142701 -0.01957,0.0742 -0.01957,0.194887 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2387" />
+              <path
+                 d="m 16.14828,40.725169 v -0.159824 q 0.186734,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126392 h 0.116607 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289477,0.07583 V 39.50284 q 0.154931,-0.0579 0.283769,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166347,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.132099,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2389" />
+            </g>
+            <g
+               aria-label="(code=exited,"
+               id="text272"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 18.91014,41.051341 q -0.225874,-0.01386 -0.380806,-0.128023 -0.154931,-0.113344 -0.24789,-0.306601 -0.09214,-0.193257 -0.09214,-0.387329 0,-0.194072 0.09214,-0.387329 0.09296,-0.193257 0.24789,-0.306602 0.154932,-0.11416 0.380806,-0.128838 v 0.127207 q -0.170425,0.01549 -0.293555,0.114976 -0.122314,0.09867 -0.192441,0.251968 -0.07013,0.1533 -0.07013,0.328618 0,0.175317 0.07013,0.328618 0.07013,0.153301 0.192441,0.251968 0.12313,0.09867 0.293555,0.114975 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2392" />
+              <path
+                 d="m 19.930242,40.721907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07746,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2394" />
+              <path
+                 d="m 20.540184,40.773279 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117421,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2396" />
+              <path
+                 d="m 21.774745,40.543328 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2398" />
+              <path
+                 d="m 22.925316,40.687659 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 22.319451,40.20411 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2400" />
+              <path
+                 d="m 23.98619,40.102996 v 0.126392 h -0.885557 v -0.126392 z m 0,0.284585 v 0.126392 h -0.885557 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2402" />
+              <path
+                 d="m 24.928011,40.687659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 24.322147,40.20411 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2404" />
+              <path
+                 d="m 25.266414,40.748001 h -0.175317 l 0.357974,-0.477026 -0.334326,-0.433809 h 0.194072 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194887 l -0.277246,-0.362866 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2406" />
+              <path
+                 d="m 26.428402,40.748001 v -0.784443 h -0.252784 v -0.126392 h 0.404454 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2408" />
+              <path
+                 d="m 27.936131,40.711307 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2410" />
+              <path
+                 d="m 28.933401,40.687659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 28.327537,40.20411 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2412" />
+              <path
+                 d="m 29.785525,40.543328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152486 v 1.316103 h -0.152486 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2414" />
+              <path
+                 d="m 30.397914,41.101898 v -0.101114 q 0.05871,-0.01549 0.08888,-0.04485 0.03099,-0.02854 0.04893,-0.07339 0.01876,-0.04403 0.01876,-0.106821 -0.07584,0 -0.111713,-0.0424 -0.03588,-0.04322 -0.03588,-0.09214 0,-0.05626 0.03996,-0.09459 0.03996,-0.03914 0.09296,-0.03914 0.0685,0 0.118237,0.05953 0.04974,0.05871 0.04974,0.161455 0,0.0897 -0.03914,0.168794 -0.03914,0.07991 -0.106822,0.136176 -0.06686,0.05627 -0.163901,0.0685 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2416" />
+            </g>
+            <g
+               aria-label="status=0/SUCCESS)"
+               id="text274"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 32.200991,40.699891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.15004,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2419" />
+              <path
+                 d="m 33.95335,40.711307 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2421" />
+              <path
+                 d="m 34.791611,40.543328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2423" />
+              <path
+                 d="m 35.956045,40.711307 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119869,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227504 v -0.126392 h 0.227504 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2425" />
+              <path
+                 d="m 36.945161,39.837166 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2427" />
+              <path
+                 d="m 37.20773,40.699891 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2429" />
+              <path
+                 d="m 39.015538,40.102996 v 0.126392 h -0.885557 v -0.126392 z m 0,0.284585 v 0.126392 h -0.885557 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2431" />
+              <path
+                 d="m 39.574107,39.444944 q 0.216089,0 0.329433,0.181841 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.181841 0.329434,-0.181841 z m -0.247075,0.941006 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02773,0.165532 z m 0.492519,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2433" />
+              <path
+                 d="M 40.250913,40.786326 H 40.10169 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2435" />
+              <path
+                 d="M 41.20415,40.721092 V 40.56616 q 0.195704,0.09296 0.355528,0.09296 0.06686,0 0.128022,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.0579 -0.162271,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309864,-0.09785 0.135361,0 0.261753,0.03914 v 0.141069 q -0.139439,-0.05382 -0.271539,-0.05382 -0.10519,0 -0.170424,0.05545 -0.06442,0.05545 -0.06442,0.133731 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319648 0,0.146777 -0.106821,0.251968 -0.106822,0.10519 -0.342481,0.10519 -0.07502,0 -0.143515,-0.01305 -0.06768,-0.01223 -0.17858,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2437" />
+              <path
+                 d="m 42.18022,39.482454 h 0.164716 v 0.830923 q 0,0.163901 0.02691,0.224243 0.02772,0.05953 0.08399,0.09133 0.05708,0.03099 0.126392,0.03099 0.07339,0 0.130468,-0.03343 0.0579,-0.03425 0.08481,-0.106006 0.02773,-0.07257 0.02773,-0.271538 v -0.766504 h 0.151669 v 0.826031 q 0,0.176948 -0.053,0.277246 -0.05219,0.09948 -0.136993,0.150039 -0.0848,0.05056 -0.213642,0.05056 -0.119053,0 -0.209566,-0.04403 -0.09051,-0.04403 -0.136992,-0.1321 -0.04648,-0.08807 -0.04648,-0.318017 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2439" />
+              <path
+                 d="m 43.966011,40.733323 q -0.141885,0.053 -0.254414,0.053 -0.148409,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194073,-0.236475 -0.06931,-0.157378 -0.06931,-0.355527 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.12476,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131285,-0.07583 -0.260938,-0.07583 -0.09785,0 -0.179394,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130468 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2441" />
+              <path
+                 d="m 44.967359,40.733323 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236475 -0.06931,-0.157378 -0.06931,-0.355527 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260937,-0.07583 -0.09785,0 -0.179395,0.06686 -0.08073,0.06687 -0.130469,0.196519 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130468 0.131284,0.195703 0.07991,0.06442 0.176949,0.06442 0.128837,0 0.260937,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2443" />
+              <path
+                 d="m 45.930381,40.608563 v 0.139438 h -0.68333 v -1.265547 h 0.670284 v 0.127207 h -0.505567 v 0.429732 h 0.45501 v 0.126391 h -0.45501 v 0.442779 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2445" />
+              <path
+                 d="M 46.210889,40.721092 V 40.56616 q 0.195703,0.09296 0.355527,0.09296 0.06687,0 0.128023,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.0579 -0.16227,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135362,0 0.261753,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.10519,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.133731 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319648 0,0.146777 -0.106822,0.251968 -0.106821,0.10519 -0.34248,0.10519 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2447" />
+              <path
+                 d="M 47.212237,40.721092 V 40.56616 q 0.195703,0.09296 0.355527,0.09296 0.06686,0 0.128022,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.0579 -0.162271,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221796,-0.131284 -0.221796,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135361,0 0.261753,0.03914 v 0.141069 q -0.139439,-0.05382 -0.271538,-0.05382 -0.105191,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.133731 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06687,0.03914 q 0.207934,0.127207 0.207934,0.319648 0,0.146777 -0.106821,0.251968 -0.106821,0.10519 -0.342481,0.10519 -0.07502,0 -0.143515,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2449" />
+              <path
+                 d="m 48.213584,39.406619 q 0.225874,0.01468 0.380806,0.128838 0.154932,0.113345 0.247075,0.306602 0.09296,0.193257 0.09296,0.387329 0,0.194072 -0.09296,0.387329 -0.09214,0.193257 -0.247075,0.306601 -0.154932,0.114161 -0.380806,0.128023 v -0.126392 q 0.170425,-0.01631 0.292739,-0.114975 0.12313,-0.09867 0.193257,-0.251968 0.07094,-0.153301 0.07094,-0.328618 0,-0.175318 -0.07094,-0.328618 -0.07013,-0.153301 -0.193257,-0.251968 -0.122314,-0.09948 -0.292739,-0.114976 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2451" />
+            </g>
+            <g
+               aria-label="Sep"
+               id="text276"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.12802246,45.063091 v -0.154932 q 0.19570312,0.09296 0.35552733,0.09296 0.0668652,0 0.12802246,-0.02528 0.0611572,-0.02609 0.0921435,-0.0742 0.0318018,-0.04811 0.0318018,-0.104375 0,-0.06605 -0.0432178,-0.12313 -0.0432178,-0.0579 -0.16227051,-0.127207 l -0.0831738,-0.04811 -0.0839893,-0.04811 q -0.22179687,-0.131284 -0.22179687,-0.326172 0,-0.1427 0.098667,-0.239736 0.0994824,-0.09785 0.30986328,-0.09785 0.13536132,0 0.26175292,0.03914 v 0.14107 q -0.13943847,-0.05382 -0.27153808,-0.05382 -0.10519043,0 -0.1704248,0.05545 -0.0644189,0.05545 -0.0644189,0.133731 0,0.07747 0.0497412,0.128838 0.0497412,0.05137 0.12720703,0.09459 l 0.0636035,0.03833 0.0790967,0.04811 0.0668652,0.03914 q 0.20793456,0.127207 0.20793456,0.319648 0,0.146777 -0.10682128,0.251968 -0.10682129,0.10519 -0.34248046,0.10519 -0.0750195,0 -0.14351563,-0.01305 -0.0676807,-0.01223 -0.17857909,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2454" />
+              <path
+                 d="m 1.8852734,45.029658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 1.2704395 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z M 1.2794092,44.546109 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2456" />
+              <path
+                 d="m 2.2693408,44.383838 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141602,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353897 H 2.1176709 v -1.264732 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378077,0 0.2315821,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2458" />
+            </g>
+            <g
+               aria-label="18"
+               id="text278"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 4.4711639,44.963609 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136992 q 0.1785791,-0.07583 0.3098632,-0.196519 h 0.15167 v 1.139156 H 4.9269891 V 45.09 H 4.1613007 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2461" />
+              <path
+                 d="M 5.3836298,44.407486 5.3559052,44.3871 q -0.057895,-0.04077 -0.1133448,-0.119868 -0.055449,-0.07991 -0.055449,-0.175318 0,-0.126391 0.099482,-0.215273 0.099483,-0.0897 0.2527832,-0.0897 0.093774,0 0.168794,0.03425 0.075019,0.03343 0.115791,0.09948 0.040771,0.06605 0.040771,0.144331 0,0.05382 -0.018755,0.104375 -0.018755,0.04974 -0.056265,0.09948 -0.036694,0.04893 -0.1467773,0.138624 l 0.068496,0.05463 q 0.1198682,0.09785 0.1614551,0.168794 0.041587,0.07094 0.041587,0.159009 0,0.136992 -0.099482,0.238105 -0.099483,0.100298 -0.2984473,0.100298 -0.1997803,0 -0.2992627,-0.09377 -0.099482,-0.09459 -0.099482,-0.234028 0,-0.207935 0.2658301,-0.393037 z m 0.155747,-0.07747 q 0.1149756,-0.08725 0.1435157,-0.145962 0.029355,-0.05871 0.029355,-0.109268 0,-0.06116 -0.053818,-0.110898 -0.053818,-0.05056 -0.1386231,-0.05056 -0.091328,0 -0.1394384,0.05463 -0.047295,0.05463 -0.047295,0.113345 0,0.05708 0.039956,0.107636 0.039956,0.05056 0.1280224,0.113345 z m -0.041587,0.158193 q -0.2152734,0.165532 -0.2152734,0.309863 0,0.08562 0.070942,0.144331 0.070942,0.05871 0.1679785,0.05871 0.088882,0 0.1590088,-0.05626 0.070127,-0.05626 0.070127,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.084805,-0.0848 -0.1182373,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2463" />
+            </g>
+            <g
+               aria-label="16:51:39"
+               id="text280"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 7.477164,44.963609 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769483,0.07828 v -0.136992 q 0.1785791,-0.07583 0.3098633,-0.196519 h 0.1516699 v 1.139156 H 7.9329892 V 45.09 H 7.1673007 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2466" />
+              <path
+                 d="m 8.2534531,44.496367 q 0.058711,-0.08725 0.1451464,-0.141884 0.087251,-0.05545 0.191626,-0.05545 0.098667,0 0.1867334,0.04811 0.088882,0.04811 0.1353613,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.1149756,0.132915 -0.3033398,0.132915 -0.2217969,0 -0.3318799,-0.185102 -0.1092676,-0.185918 -0.1092676,-0.472134 0,-0.316387 0.1394385,-0.499858 0.1394385,-0.184287 0.3775439,-0.184287 0.1280225,0 0.2487061,0.03751 v 0.153301 q -0.1353613,-0.06442 -0.2552295,-0.06442 -0.1696094,0 -0.2625684,0.155747 -0.092959,0.155747 -0.092959,0.394668 z m 0.2976318,0.505567 q 0.061157,0 0.1231299,-0.03588 0.061973,-0.03669 0.097036,-0.111714 0.035879,-0.07583 0.035879,-0.164717 0,-0.115791 -0.060342,-0.189995 -0.059526,-0.0742 -0.1704248,-0.0742 -0.1149756,0 -0.1891797,0.08644 -0.073389,0.08562 -0.073389,0.20875 0,0.123945 0.071758,0.203042 0.072573,0.07828 0.1655322,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2468" />
+              <path
+                 d="m 9.5173691,45.128325 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03832 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2470" />
+              <path
+                 d="m 10.171344,44.431948 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2472" />
+              <path
+                 d="m 11.482555,44.963609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176949,0.07828 v -0.136992 q 0.178579,-0.07583 0.309864,-0.196519 h 0.15167 v 1.139156 H 11.93838 V 45.09 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2474" />
+              <path
+                 d="m 12.521412,45.128325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2476" />
+              <path
+                 d="m 13.140323,45.067168 v -0.159824 q 0.186734,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126392 h 0.116607 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289477,0.07584 v -0.144331 q 0.154931,-0.0579 0.283769,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166347,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.132099,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2478" />
+              <path
+                 d="m 14.786676,44.418086 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187548,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114976,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139438,0.183471 -0.377544,0.183471 -0.128022,0 -0.248706,-0.03832 v -0.152485 q 0.135361,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.171241,0.0742 0.114975,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2480" />
+            </g>
+            <g
+               aria-label="m1c29"
+               id="text282"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 16.089895,45.09 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03832,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 V 45.09 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 45.09 H 16.46907 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2483" />
+              <path
+                 d="m 17.496511,44.963609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 V 45.09 h -0.765688 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2485" />
+              <path
+                 d="m 18.92759,45.063906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2487" />
+              <path
+                 d="m 19.92323,45.09 h -0.765688 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08643,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194887,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2489" />
+              <path
+                 d="m 20.800632,44.418086 q -0.05871,0.08725 -0.145962,0.1427 -0.08643,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114975,-0.31231 0.115791,-0.13373 0.304156,-0.13373 0.221796,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183471 -0.377544,0.183471 -0.128023,0 -0.248706,-0.03832 v -0.152485 q 0.135361,0.0636 0.255229,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297631,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164716,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2491" />
+            </g>
+            <g
+               aria-label="sh[1273]:"
+               id="text284"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 22.180993,45.04189 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2494" />
+              <path
+                 d="m 23.17174,45.09 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2496" />
+              <path
+                 d="m 24.336173,45.39334 v -1.644722 h 0.658052 v 0.127207 h -0.506382 v 1.391123 h 0.506382 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2498" />
+              <path
+                 d="m 25.511208,44.963609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 V 45.09 h -0.765688 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2500" />
+              <path
+                 d="M 26.936579,45.09 H 26.17089 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2502" />
+              <path
+                 d="m 27.310861,45.09 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110899 0.121499,-0.171241 l 0.132099,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145147,0.219351 -0.02935,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2504" />
+              <path
+                 d="m 28.170324,45.067168 v -0.159824 q 0.186734,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07583 -0.305787,-0.07583 h -0.08399 v -0.126392 h 0.116607 q 0.159008,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.05789,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289478,0.07584 v -0.144331 q 0.154932,-0.0579 0.28377,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02935,0.06442 0.02935,0.144331 0,0.177763 -0.1321,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.132099,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2506" />
+              <path
+                 d="M 29.76612,43.748618 V 45.39334 H 29.108068 V 45.266948 H 29.61445 V 43.875825 H 29.108068 V 43.748618 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2508" />
+              <path
+                 d="m 30.555456,45.128325 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2510" />
+            </g>
+            <g
+               aria-label="[kubelet-start]"
+               id="text286"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 32.353477,45.39334 v -1.644722 h 0.658051 v 0.127207 h -0.506381 v 1.391123 h 0.506381 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2513" />
+              <path
+                 d="m 33.23251,45.09 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 33.38418,44.600742 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2515" />
+              <path
+                 d="M 34.942466,44.179165 V 45.09 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2517" />
+              <path
+                 d="m 35.334688,44.383838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2519" />
+              <path
+                 d="m 36.953316,45.029658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2521" />
+              <path
+                 d="m 37.441758,45.09 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2523" />
+              <path
+                 d="m 38.956011,45.029658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2525" />
+              <path
+                 d="m 39.961436,45.053306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 44.381392 H 39.151714 V 44.255 h 0.227505 v -0.366943 h 0.15167 V 44.255 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2527" />
+              <path
+                 d="m 40.259883,44.640698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2529" />
+              <path
+                 d="m 41.21312,45.04189 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2531" />
+              <path
+                 d="m 42.965478,45.053306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 44.381392 H 42.155757 V 44.255 h 0.227505 v -0.366943 h 0.15167 V 44.255 H 42.9402 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2533" />
+              <path
+                 d="m 43.80374,44.885327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 H 43.83228 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2535" />
+              <path
+                 d="m 44.284029,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2537" />
+              <path
+                 d="m 45.969522,45.053306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 44.381392 H 45.1598 V 44.255 h 0.227505 v -0.366943 h 0.15167 V 44.255 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2539" />
+              <path
+                 d="M 46.795552,43.748618 V 45.39334 H 46.1375 v -0.126392 h 0.506382 V 43.875825 H 46.1375 v -0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2541" />
+            </g>
+            <g
+               aria-label="Writing"
+               id="text288"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 48.26561,45.09 -0.146777,-1.265547 h 0.150039 l 0.08644,0.770581 0.01142,0.128023 h 0.0041 l 0.01631,-0.128023 0.132915,-0.770581 h 0.150039 l 0.15167,0.801568 0.01549,0.122314 h 0.0041 l 0.0098,-0.12313 0.0954,-0.800752 h 0.128838 L 48.922031,45.09 h -0.155747 l -0.163086,-0.857832 -0.01712,-0.128838 h -0.0041 L 48.566504,44.232168 48.419726,45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2544" />
+              <path
+                 d="m 49.301206,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2546" />
+              <path
+                 d="m 50.480317,45.09 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 45.09 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2548" />
+              <path
+                 d="m 51.988047,45.053306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 44.381392 H 51.178325 V 44.255 H 51.40583 V 43.888057 H 51.5575 V 44.255 h 0.405268 v 0.126392 H 51.5575 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2550" />
+              <path
+                 d="m 52.483012,45.09 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 45.09 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2552" />
+              <path
+                 d="m 53.22913,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150855,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2554" />
+              <path
+                 d="m 54.838789,44.885327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2556" />
+            </g>
+            <g
+               aria-label="kubelet"
+               id="text290"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 56.279163,45.09 v -1.316103 h 0.15167 v 0.826845 l 0.437885,-0.421577 h 0.202227 L 56.633874,44.600742 57.082361,45.09 h -0.20875 L 56.430833,44.600742 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2559" />
+              <path
+                 d="M 57.989119,44.179165 V 45.09 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2561" />
+              <path
+                 d="m 58.38134,44.383838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.17858,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2563" />
+              <path
+                 d="m 59.999968,45.029658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2565" />
+              <path
+                 d="m 60.488411,45.09 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2567" />
+              <path
+                 d="m 62.002663,45.029658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2569" />
+              <path
+                 d="m 63.008089,45.053306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 44.381392 H 62.198367 V 44.255 h 0.227505 v -0.366943 h 0.15167 V 44.255 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2571" />
+            </g>
+            <g
+               aria-label="configuration"
+               id="text292"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 65.020894,45.063906 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106005,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2574" />
+              <path
+                 d="m 65.630835,45.115278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2576" />
+              <path
+                 d="m 66.257085,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2578" />
+              <path
+                 d="M 67.470445,45.09 V 44.381392 H 67.268218 V 44.255 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 V 44.255 h 0.361235 v 0.126392 H 67.622115 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2580" />
+              <path
+                 d="m 68.51501,45.09 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 45.09 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2582" />
+              <path
+                 d="m 69.869439,44.885327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.17858,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149223,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335142,-0.08481 v -0.153301 q 0.06442,0.04403 0.158194,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2584" />
+              <path
+                 d="M 71.011856,44.179165 V 45.09 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2586" />
+              <path
+                 d="m 71.34129,45.09 v -0.910835 h 0.151669 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2588" />
+              <path
+                 d="m 72.863697,44.885327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.17858,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2590" />
+              <path
+                 d="m 74.02813,45.053306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174501,-0.03669 -0.0791,-0.03669 -0.119869,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 44.381392 H 73.218408 V 44.255 h 0.227505 v -0.366943 h 0.15167 V 44.255 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2592" />
+              <path
+                 d="m 74.523096,45.09 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 V 45.09 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2594" />
+              <path
+                 d="m 75.644312,45.115278 q -0.195704,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2596" />
+              <path
+                 d="m 76.270562,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2598" />
+            </g>
+            <g
+               aria-label="to"
+               id="text294"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 79.044001,45.053306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119869,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 44.381392 H 78.234279 V 44.255 h 0.227505 v -0.366943 h 0.15167 V 44.255 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2601" />
+              <path
+                 d="m 79.658835,45.115278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2603" />
+            </g>
+            <g
+               aria-label="file"
+               id="text296"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 81.500406,45.09 V 44.381392 H 81.298179 V 44.255 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125577,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106005,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 V 44.255 h 0.361235 v 0.126392 H 81.652076 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2606" />
+              <path
+                 d="m 82.544971,45.09 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 H 82.95024 V 45.09 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2608" />
+              <path
+                 d="m 83.535718,45.09 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2610" />
+              <path
+                 d="m 85.049971,45.029658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2612" />
+            </g>
+            <g
+               aria-label="&quot;/var/lib/kubelet/config.yaml&quot;"
+               id="text298"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 86.551172,44.229722 h -0.104375 l -0.05219,-0.455825 h 0.203042 z m 0.35145,0 h -0.10356 l -0.04648,-0.455825 h 0.198965 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2615" />
+              <path
+                 d="m 87.349478,45.128325 h -0.149224 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2617" />
+              <path
+                 d="m 88.597085,45.09 -0.395483,-0.910835 h 0.166347 l 0.31231,0.72084 0.318833,-0.72084 h 0.15167 L 88.752017,45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2619" />
+              <path
+                 d="m 89.900957,44.885327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2621" />
+              <path
+                 d="m 90.381245,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2623" />
+              <path
+                 d="m 91.354868,45.128325 h -0.149224 l 0.80483,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2625" />
+              <path
+                 d="M 92.551104,45.09 V 43.901104 H 92.27875 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2627" />
+              <path
+                 d="m 93.563052,45.09 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 H 93.96832 V 45.09 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2629" />
+              <path
+                 d="m 94.449424,44.383838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2631" />
+              <path
+                 d="m 95.360259,45.128325 h -0.149224 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2633" />
+              <path
+                 d="m 96.352637,45.09 v -1.316103 h 0.151669 v 0.826845 l 0.437886,-0.421577 h 0.202227 L 96.707348,44.600742 97.155835,45.09 h -0.20875 L 96.504306,44.600742 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2635" />
+              <path
+                 d="M 98.062592,44.179165 V 45.09 h -0.151669 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2637" />
+              <path
+                 d="m 98.454815,44.383838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2639" />
+              <path
+                 d="m 100.07344,45.029658 q -0.181838,0.08644 -0.344109,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324538,-0.09785 z m -0.605861,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2641" />
+              <path
+                 d="m 100.56189,45.09 v -1.188896 h -0.27236 v -0.127207 h 0.42402 v 1.189712 h 0.28459 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2643" />
+              <path
+                 d="m 102.07614,45.029658 q -0.18184,0.08644 -0.34411,0.08644 -0.12313,0 -0.22017,-0.06116 -0.097,-0.06116 -0.15575,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.0554,-0.239736 0.0555,-0.114976 0.15493,-0.178579 0.0995,-0.06442 0.2218,-0.06442 0.16227,0 0.26012,0.115791 0.0987,0.115791 0.0987,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.0391,0.172871 0.04,0.07828 0.10438,0.117422 0.0644,0.03914 0.14678,0.03914 0.14677,0 0.32454,-0.09785 z m -0.60587,-0.483549 h 0.4542 v -0.02202 q 0,-0.111714 -0.0546,-0.177764 -0.0546,-0.06605 -0.14596,-0.06605 -0.0921,0 -0.15982,0.06768 -0.0669,0.06686 -0.0938,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2645" />
+              <path
+                 d="m 103.08156,45.053306 q -0.10682,0.04485 -0.15493,0.053 -0.0481,0.009 -0.093,0.009 -0.0954,0 -0.1745,-0.03669 -0.0791,-0.03669 -0.11987,-0.108452 -0.0399,-0.07176 -0.0399,-0.221797 v -0.366943 h -0.22751 V 44.255 h 0.22751 v -0.366943 h 0.15167 V 44.255 h 0.40526 v 0.126392 h -0.40526 v 0.364497 q 0,0.110083 0.0261,0.155747 0.0261,0.04485 0.0693,0.06605 0.044,0.0212 0.10356,0.0212 0.11008,0 0.23158,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2647" />
+              <path
+                 d="m 103.37104,45.128325 h -0.14922 l 0.80483,-1.341381 h 0.14433 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2649" />
+              <path
+                 d="m 105.08915,45.063906 q -0.15249,0.05137 -0.29029,0.05137 -0.13699,0 -0.24382,-0.06279 -0.106,-0.0636 -0.16553,-0.17124 -0.0595,-0.108452 -0.0595,-0.24626 0,-0.207119 0.13454,-0.344111 0.13536,-0.136992 0.32617,-0.136992 0.14107,0 0.29845,0.053 v 0.145962 q -0.15901,-0.07257 -0.28458,-0.07257 -0.0832,0 -0.15657,0.04159 -0.0734,0.04077 -0.11334,0.128023 -0.04,0.08725 -0.04,0.179394 0,0.12313 0.0767,0.234844 0.0775,0.111714 0.24218,0.111714 0.0498,0 0.0979,-0.0065 0.0481,-0.0073 0.17776,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2651" />
+              <path
+                 d="m 105.69909,45.115278 q -0.1957,0 -0.31312,-0.136176 -0.11742,-0.136992 -0.11742,-0.344927 0,-0.207935 0.11742,-0.344111 0.11742,-0.136177 0.31312,-0.136177 0.19489,0 0.31231,0.136177 0.11742,0.136176 0.11742,0.344111 0,0.207935 -0.11742,0.344927 -0.11742,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.1215,0 0.19326,-0.09459 0.0718,-0.09459 0.0718,-0.260122 0,-0.164717 -0.0718,-0.259307 -0.0718,-0.09459 -0.19326,-0.09459 -0.12231,0 -0.19407,0.09459 -0.0718,0.09459 -0.0718,0.259307 0,0.165532 0.0718,0.260122 0.0718,0.09459 0.19407,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2653" />
+              <path
+                 d="m 106.32534,45.09 v -0.910835 h 0.15167 v 0.198965 q 0.0652,-0.10519 0.15738,-0.164717 0.0921,-0.05953 0.18429,-0.05953 0.0807,0 0.14677,0.04322 0.066,0.0424 0.0921,0.111714 0.0269,0.06931 0.0269,0.272353 V 45.09 h -0.15167 v -0.527583 q 0,-0.131284 -0.013,-0.172871 -0.0122,-0.0424 -0.0465,-0.06931 -0.0334,-0.02691 -0.0734,-0.02691 -0.0799,0 -0.17205,0.07583 -0.0913,0.07583 -0.15086,0.189995 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2655" />
+              <path
+                 d="m 107.5387,45.09 v -0.708608 h -0.20222 V 44.255 h 0.20222 v -0.0424 q 0,-0.18021 0.0408,-0.266646 0.0408,-0.08644 0.12558,-0.141884 0.0856,-0.05545 0.22587,-0.05545 0.10601,0 0.21528,0.02202 v 0.144331 q -0.11824,-0.03914 -0.20957,-0.03914 -0.0726,0 -0.12802,0.02691 -0.0555,0.02691 -0.0872,0.08807 -0.031,0.06034 -0.031,0.205488 V 44.255 h 0.36124 v 0.126392 h -0.36124 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2657" />
+              <path
+                 d="m 108.58327,45.09 v -0.784443 h -0.25279 v -0.126392 h 0.40446 v 0.784444 h 0.25359 V 45.09 Z m -0.0253,-1.239453 q 0,-0.05137 0.0351,-0.07665 0.0351,-0.02528 0.066,-0.02528 0.0318,0 0.0669,0.02528 0.0351,0.02528 0.0351,0.07665 0,0.05056 -0.0351,0.07583 -0.0351,0.02528 -0.0669,0.02528 -0.031,0 -0.066,-0.02528 -0.0351,-0.02528 -0.0351,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2659" />
+              <path
+                 d="m 109.9377,44.885327 q -0.0693,0.11416 -0.16717,0.172056 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20548,-0.09867 -0.0905,-0.09867 -0.0905,-0.299262 0,-0.158194 0.0603,-0.282139 0.0603,-0.124761 0.16146,-0.196518 0.10111,-0.07257 0.25034,-0.07257 0.0432,0 0.13046,0.009 0.0131,0.0016 0.0392,0.0041 h 0.15248 v 0.64419 q 0,0.229951 -0.007,0.280507 -0.006,0.05137 -0.0196,0.10356 -0.0326,0.121499 -0.14923,0.191626 -0.11579,0.07013 -0.2805,0.07013 -0.16554,0 -0.33515,-0.08481 v -0.153301 q 0.0644,0.04403 0.1582,0.07747 0.0946,0.03425 0.18265,0.03425 0.0693,0 0.13129,-0.02202 0.062,-0.02202 0.1003,-0.0636 0.0383,-0.04159 0.0522,-0.09704 0.0139,-0.05463 0.0139,-0.145962 z m 0,-0.18021 v -0.39059 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14026,0 -0.23403,0.108453 -0.093,0.108452 -0.093,0.295185 0,0.135361 0.0506,0.204673 0.0514,0.0685 0.1166,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.15331,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2661" />
+              <path
+                 d="m 110.70502,45.128325 q -0.0546,0 -0.0938,-0.03914 -0.0391,-0.03914 -0.0391,-0.09378 0,-0.05545 0.0391,-0.09377 0.04,-0.03914 0.0938,-0.03914 0.0538,0 0.093,0.03914 0.04,0.03832 0.04,0.09377 0,0.05463 -0.0391,0.09378 -0.0391,0.03914 -0.0938,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2663" />
+              <path
+                 d="m 111.66722,45.053306 -0.42076,-0.874141 h 0.16716 l 0.33514,0.68333 0.28051,-0.68333 h 0.15249 l -0.35308,0.846416 q -0.11172,0.268277 -0.21283,0.356343 -0.1003,0.08807 -0.26012,0.08807 -0.0693,0 -0.12395,-0.01223 v -0.133731 q 0.0628,0.01957 0.11987,0.01957 0.0734,0 0.13047,-0.02854 0.0571,-0.02854 0.10437,-0.101114 0.0473,-0.07257 0.0669,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2665" />
+              <path
+                 d="m 112.93195,44.885327 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299262 0,-0.158194 0.0603,-0.282139 0.0603,-0.124761 0.16146,-0.196518 0.10111,-0.07257 0.25033,-0.07257 0.0432,0 0.13047,0.009 0.0131,0.0016 0.0391,0.0041 h 0.15249 v 0.643374 q 0,0.164717 0.0343,0.267461 h -0.1582 q -0.0179,-0.07502 -0.0285,-0.204673 z m 0,-0.18021 v -0.39059 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23402,0.108453 -0.093,0.108452 -0.093,0.295185 0,0.135361 0.0506,0.204673 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2667" />
+              <path
+                 d="m 113.26628,45.09 v -0.910835 h 0.13291 v 0.20875 q 0.0628,-0.132915 0.11661,-0.183471 0.0546,-0.05056 0.11008,-0.05056 0.0661,0 0.10601,0.05219 0.0408,0.05137 0.0408,0.146778 v 0.04893 q 0.0269,-0.08317 0.0644,-0.134546 0.0383,-0.05219 0.0791,-0.08236 0.0408,-0.03099 0.0938,-0.03099 0.0587,0 0.1003,0.04974 0.0416,0.04974 0.0416,0.19815 V 45.09 h -0.13292 v -0.622173 q 0,-0.07665 -0.005,-0.104375 -0.005,-0.02854 -0.0196,-0.04322 -0.0147,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.0913,0.06523 -0.0481,0.06442 -0.0987,0.214458 V 45.09 h -0.12721 v -0.621357 q 0,-0.120684 -0.0236,-0.141885 -0.0237,-0.0212 -0.0424,-0.0212 -0.0416,0 -0.0897,0.07257 -0.0473,0.07257 -0.0905,0.185918 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2669" />
+              <path
+                 d="m 114.58075,45.09 v -1.188896 h -0.27235 v -0.127207 h 0.42402 v 1.189712 h 0.28459 V 45.09 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2671" />
+              <path
+                 d="m 115.59025,44.229722 h -0.10437 l -0.0522,-0.455825 h 0.20304 z m 0.35145,0 h -0.10356 l -0.0465,-0.455825 h 0.19897 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2673" />
+            </g>
+            <g
+               aria-label="Sep"
+               id="text300"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.12802246,47.234092 v -0.154931 q 0.19570312,0.09296 0.35552733,0.09296 0.0668652,0 0.12802246,-0.02528 0.0611572,-0.02609 0.0921435,-0.0742 0.0318018,-0.04811 0.0318018,-0.104375 0,-0.06605 -0.0432178,-0.12313 -0.0432178,-0.0579 -0.16227051,-0.127207 l -0.0831738,-0.04811 -0.0839893,-0.04811 q -0.22179687,-0.131284 -0.22179687,-0.326172 0,-0.1427 0.098667,-0.239736 0.0994824,-0.09785 0.30986328,-0.09785 0.13536132,0 0.26175292,0.03914 v 0.141069 q -0.13943847,-0.05382 -0.27153808,-0.05382 -0.10519043,0 -0.1704248,0.05545 -0.0644189,0.05545 -0.0644189,0.13373 0,0.07747 0.0497412,0.128838 0.0497412,0.05137 0.12720703,0.09459 l 0.0636035,0.03833 0.0790967,0.04811 0.0668652,0.03914 q 0.20793456,0.127207 0.20793456,0.319649 0,0.146777 -0.10682128,0.251967 -0.10682129,0.105191 -0.34248046,0.105191 -0.0750195,0 -0.14351563,-0.01305 -0.0676807,-0.01223 -0.17857909,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2676" />
+              <path
+                 d="m 1.8852734,47.20066 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 1.2704395 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z M 1.2794092,46.71711 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2678" />
+              <path
+                 d="m 2.2693408,46.554839 q 0.070127,-0.11416 0.1671631,-0.172055 0.097036,-0.0579 0.1785791,-0.0579 0.1141602,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353896 H 2.1176709 v -1.264731 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378077,0 0.2315821,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2680" />
+            </g>
+            <g
+               aria-label="18"
+               id="text302"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 4.4711639,47.13461 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136992 q 0.1785791,-0.07583 0.3098632,-0.196518 h 0.15167 v 1.139155 h 0.3041552 v 0.126392 H 4.1613007 V 47.13461 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2683" />
+              <path
+                 d="m 5.3836298,46.578487 -0.027725,-0.02039 q -0.057895,-0.04077 -0.1133448,-0.119868 -0.055449,-0.07991 -0.055449,-0.175317 0,-0.126392 0.099482,-0.215274 0.099483,-0.0897 0.2527832,-0.0897 0.093774,0 0.168794,0.03425 0.075019,0.03343 0.115791,0.09948 0.040771,0.06605 0.040771,0.144331 0,0.05382 -0.018755,0.104375 -0.018755,0.04974 -0.056265,0.09948 -0.036694,0.04893 -0.1467773,0.138623 l 0.068496,0.05463 q 0.1198682,0.09785 0.1614551,0.168794 0.041587,0.07094 0.041587,0.159008 0,0.136993 -0.099482,0.238106 -0.099483,0.100298 -0.2984473,0.100298 -0.1997803,0 -0.2992627,-0.09378 -0.099482,-0.09459 -0.099482,-0.234028 0,-0.207935 0.2658301,-0.393037 z m 0.155747,-0.07747 q 0.1149756,-0.08725 0.1435157,-0.145962 0.029355,-0.05871 0.029355,-0.109267 0,-0.06116 -0.053818,-0.110899 -0.053818,-0.05056 -0.1386231,-0.05056 -0.091328,0 -0.1394384,0.05463 -0.047295,0.05463 -0.047295,0.113345 0,0.05708 0.039956,0.107637 0.039956,0.05056 0.1280224,0.113345 z m -0.041587,0.158193 q -0.2152734,0.165533 -0.2152734,0.309864 0,0.08562 0.070942,0.144331 0.070942,0.05871 0.1679785,0.05871 0.088882,0 0.1590088,-0.05626 0.070127,-0.05627 0.070127,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.084805,-0.08481 -0.1182373,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2685" />
+            </g>
+            <g
+               aria-label="16:51:39"
+               id="text304"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 7.477164,47.13461 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769483,0.07828 v -0.136992 q 0.1785791,-0.07583 0.3098633,-0.196518 h 0.1516699 v 1.139155 h 0.3041553 v 0.126392 H 7.1673007 V 47.13461 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2688" />
+              <path
+                 d="m 8.2534531,46.667369 q 0.058711,-0.08725 0.1451464,-0.141885 0.087251,-0.05545 0.191626,-0.05545 0.098667,0 0.1867334,0.04811 0.088882,0.04811 0.1353613,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.1149756,0.132915 -0.3033398,0.132915 -0.2217969,0 -0.3318799,-0.185103 -0.1092676,-0.185918 -0.1092676,-0.472134 0,-0.316386 0.1394385,-0.499858 0.1394385,-0.184287 0.3775439,-0.184287 0.1280225,0 0.2487061,0.03751 v 0.153301 q -0.1353613,-0.06442 -0.2552295,-0.06442 -0.1696094,0 -0.2625684,0.155747 -0.092959,0.155747 -0.092959,0.394668 z m 0.2976318,0.505566 q 0.061157,0 0.1231299,-0.03588 0.061973,-0.03669 0.097036,-0.111714 0.035879,-0.07584 0.035879,-0.164716 0,-0.115791 -0.060342,-0.189995 -0.059526,-0.0742 -0.1704248,-0.0742 -0.1149756,0 -0.1891797,0.08644 -0.073389,0.08562 -0.073389,0.20875 0,0.123945 0.071758,0.203042 0.072573,0.07828 0.1655322,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2690" />
+              <path
+                 d="m 9.5173691,47.299327 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708609 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2692" />
+              <path
+                 d="m 10.171344,46.60295 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2694" />
+              <path
+                 d="m 11.482555,47.13461 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176949,0.07828 v -0.136992 q 0.178579,-0.07583 0.309864,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 H 11.172691 V 47.13461 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2696" />
+              <path
+                 d="m 12.521412,47.299327 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2698" />
+              <path
+                 d="m 13.140323,47.23817 v -0.159825 q 0.186734,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07584 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126391 h 0.116607 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289477,0.07584 V 46.01584 q 0.154931,-0.05789 0.283769,-0.05789 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.17124,0.135361 0.110083,0.03262 0.166347,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.132099,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2700" />
+              <path
+                 d="m 14.786676,46.589088 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187548,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179395 0.114976,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139438,0.183472 -0.377544,0.183472 -0.128022,0 -0.248706,-0.03833 v -0.152486 q 0.135361,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.171241,0.0742 0.114975,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2702" />
+            </g>
+            <g
+               aria-label="m1c29"
+               id="text306"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 16.089895,47.261002 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03832,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 H 16.46907 v -0.621358 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525953 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2705" />
+              <path
+                 d="m 17.496511,47.13461 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 H 17.186648 V 47.13461 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2707" />
+              <path
+                 d="m 18.92759,47.234908 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108453 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242182,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2709" />
+              <path
+                 d="m 19.92323,47.261002 h -0.765688 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138624 0.06197,-0.07665 0.131284,-0.147592 l 0.08643,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194887,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2711" />
+              <path
+                 d="m 20.800632,46.589088 q -0.05871,0.08725 -0.145962,0.1427 -0.08643,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179395 0.114975,-0.31231 0.115791,-0.13373 0.304156,-0.13373 0.221796,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183472 -0.377544,0.183472 -0.128023,0 -0.248706,-0.03833 v -0.152486 q 0.135361,0.0636 0.255229,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297631,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164716,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2713" />
+            </g>
+            <g
+               aria-label="sh[1273]:"
+               id="text308"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 22.180993,47.212891 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2716" />
+              <path
+                 d="m 23.17174,47.261002 v -1.316104 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2718" />
+              <path
+                 d="M 24.336173,47.564341 V 45.91962 h 0.658052 v 0.127207 h -0.506382 v 1.391123 h 0.506382 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2720" />
+              <path
+                 d="m 25.511208,47.13461 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 H 25.201345 V 47.13461 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2722" />
+              <path
+                 d="M 26.936579,47.261002 H 26.17089 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138624 0.06197,-0.07665 0.131284,-0.147592 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2724" />
+              <path
+                 d="m 27.310861,47.261002 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110898 0.121499,-0.17124 l 0.132099,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.656421 v -0.152485 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.21935 -0.02935,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2726" />
+              <path
+                 d="m 28.170324,47.23817 v -0.159825 q 0.186734,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07584 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07583 -0.305787,-0.07583 h -0.08399 v -0.126391 h 0.116607 q 0.159008,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.05789,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289478,0.07584 V 46.01584 q 0.154932,-0.05789 0.28377,-0.05789 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.17124,0.135361 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02935,0.06442 0.02935,0.144331 0,0.177764 -0.1321,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.132099,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2728" />
+              <path
+                 d="m 29.76612,45.91962 v 1.644721 H 29.108068 V 47.43795 H 29.61445 V 46.046827 H 29.108068 V 45.91962 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2730" />
+              <path
+                 d="m 30.555456,47.299327 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2732" />
+            </g>
+            <g
+               aria-label="[kubelet-start]"
+               id="text310"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 32.353477,47.564341 V 45.91962 h 0.658051 v 0.127207 h -0.506381 v 1.391123 h 0.506381 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2735" />
+              <path
+                 d="m 33.23251,47.261002 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 33.38418,46.771744 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2737" />
+              <path
+                 d="m 34.942466,46.350167 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2739" />
+              <path
+                 d="m 35.334688,46.554839 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2741" />
+              <path
+                 d="m 36.953316,47.20066 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2743" />
+              <path
+                 d="m 37.441758,47.261002 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2745" />
+              <path
+                 d="m 38.956011,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2747" />
+              <path
+                 d="m 39.961436,47.224307 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2749" />
+              <path
+                 d="m 40.259883,46.8117 v -0.126392 h 0.632773 V 46.8117 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2751" />
+              <path
+                 d="m 41.21312,47.212891 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2753" />
+              <path
+                 d="m 42.965478,47.224307 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 H 42.9402 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2755" />
+              <path
+                 d="m 43.80374,47.056329 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 H 43.83228 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2757" />
+              <path
+                 d="m 44.284029,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 H 44.821397 V 46.47085 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2759" />
+              <path
+                 d="m 45.969522,47.224307 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 46.552393 H 45.1598 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2761" />
+              <path
+                 d="m 46.795552,45.91962 v 1.644721 H 46.1375 V 47.43795 h 0.506382 V 46.046827 H 46.1375 V 45.91962 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2763" />
+            </g>
+            <g
+               aria-label="Writing"
+               id="text312"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 48.26561,47.261002 -0.146777,-1.265547 h 0.150039 l 0.08644,0.770581 0.01142,0.128022 h 0.0041 l 0.01631,-0.128022 0.132915,-0.770581 h 0.150039 l 0.15167,0.801567 0.01549,0.122315 h 0.0041 l 0.0098,-0.12313 0.0954,-0.800752 h 0.128838 l -0.153301,1.265547 h -0.155747 l -0.163086,-0.857832 -0.01712,-0.128838 h -0.0041 l -0.01549,0.128838 -0.146778,0.857832 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2766" />
+              <path
+                 d="m 49.301206,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 H 49.838574 V 46.47085 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159008,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2768" />
+              <path
+                 d="m 50.480317,47.261002 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239454 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2770" />
+              <path
+                 d="m 51.988047,47.224307 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 H 51.5575 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2772" />
+              <path
+                 d="m 52.483012,47.261002 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239454 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2774" />
+              <path
+                 d="m 53.22913,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.06524,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.151669 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2776" />
+              <path
+                 d="m 54.838789,47.056329 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2778" />
+            </g>
+            <g
+               aria-label="kubelet"
+               id="text314"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 56.279163,47.261002 v -1.316104 h 0.15167 v 0.826846 l 0.437885,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2781" />
+              <path
+                 d="m 57.989119,46.350167 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2783" />
+              <path
+                 d="m 58.38134,46.554839 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.17858,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.08481,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2785" />
+              <path
+                 d="m 59.999968,47.20066 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2787" />
+              <path
+                 d="m 60.488411,47.261002 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2789" />
+              <path
+                 d="m 62.002663,47.20066 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2791" />
+              <path
+                 d="m 63.008089,47.224307 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2793" />
+            </g>
+            <g
+               aria-label="environment"
+               id="text316"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 65.011924,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 H 64.39709 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 64.40606,46.71711 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2796" />
+              <path
+                 d="m 65.255738,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.06523,-0.10519 0.157377,-0.164716 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2798" />
+              <path
+                 d="m 66.553086,47.261002 -0.395483,-0.910835 h 0.166348 l 0.312309,0.720839 0.318833,-0.720839 h 0.15167 l -0.398745,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2800" />
+              <path
+                 d="m 67.513663,47.261002 v -0.784444 h -0.252784 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239454 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2802" />
+              <path
+                 d="m 68.337246,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 H 68.874615 V 46.47085 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2804" />
+              <path
+                 d="m 69.636226,47.28628 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2806" />
+              <path
+                 d="m 70.262476,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.06523,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2808" />
+              <path
+                 d="m 71.195328,47.261002 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525953 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2810" />
+              <path
+                 d="m 73.022705,47.20066 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2812" />
+              <path
+                 d="m 73.266519,47.261002 v -0.910835 h 0.15167 v 0.198964 q 0.06523,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2814" />
+              <path
+                 d="m 75.029478,47.224307 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2816" />
+            </g>
+            <g
+               aria-label="file"
+               id="text318"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 76.490404,47.261002 v -0.708609 h -0.202227 v -0.126391 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 v 0.05871 h 0.361235 v 0.126391 h -0.361235 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2819" />
+              <path
+                 d="m 77.534969,47.261002 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239454 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2821" />
+              <path
+                 d="m 78.525716,47.261002 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2823" />
+              <path
+                 d="m 80.039969,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2825" />
+            </g>
+            <g
+               aria-label="with"
+               id="text320"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 81.326719,47.261002 -0.148408,-0.910835 h 0.141069 l 0.08644,0.554492 0.02283,0.128838 0.02202,-0.128838 0.145146,-0.554492 h 0.136177 l 0.163901,0.554492 0.02854,0.128838 0.01875,-0.128838 0.08725,-0.554492 h 0.116607 l -0.147593,0.910835 h -0.141885 l -0.174502,-0.586294 -0.02772,-0.128838 h -0.0041 l -0.02528,0.128022 -0.15167,0.58711 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2828" />
+              <path
+                 d="m 82.544971,47.261002 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239454 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2830" />
+              <path
+                 d="m 84.052701,47.224307 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2832" />
+              <path
+                 d="m 84.292437,47.261002 v -1.316104 h 0.15167 v 0.604233 q 0.06524,-0.10519 0.157378,-0.164716 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.14107,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508829 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2834" />
+            </g>
+            <g
+               aria-label="flags"
+               id="text322"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 86.5104,47.261002 V 46.552393 H 86.308174 V 46.426002 H 86.5104 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 v 0.05871 h 0.361236 v 0.126391 H 86.66207 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2837" />
+              <path
+                 d="m 87.544365,47.261002 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2839" />
+              <path
+                 d="m 88.899609,47.056329 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2841" />
+              <path
+                 d="m 89.910742,47.056329 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131285,-0.02202 0.06197,-0.02202 0.100297,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2843" />
+              <path
+                 d="m 90.31438,47.212891 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2845" />
+            </g>
+            <g
+               aria-label="to"
+               id="text324"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 93.072001,47.224307 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2848" />
+              <path
+                 d="m 93.686835,47.28628 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117421,0.136177 0.117421,0.344111 0,0.207935 -0.117421,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2850" />
+            </g>
+            <g
+               aria-label="file"
+               id="text326"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 95.528406,47.261002 v -0.708609 h -0.202227 v -0.126391 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 v 0.05871 h 0.361235 v 0.126391 h -0.361235 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2853" />
+              <path
+                 d="m 96.572971,47.261002 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239454 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2855" />
+              <path
+                 d="m 97.563718,47.261002 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2857" />
+              <path
+                 d="m 99.077971,47.20066 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2859" />
+            </g>
+            <g
+               aria-label="&quot;/var/lib/kubelet/k"
+               id="text328"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 100.57917,46.400723 h -0.10437 l -0.0522,-0.455825 h 0.20304 z m 0.35145,0 h -0.10356 l -0.0465,-0.455825 h 0.19897 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2862" />
+              <path
+                 d="m 101.37748,47.299327 h -0.14923 l 0.80483,-1.341382 h 0.14433 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2864" />
+              <path
+                 d="m 102.62508,47.261002 -0.39548,-0.910835 h 0.16635 l 0.31231,0.720839 0.31883,-0.720839 h 0.15167 l -0.39874,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2866" />
+              <path
+                 d="m 103.92896,47.056329 q -0.0693,0.11416 -0.16717,0.172055 -0.097,0.0579 -0.17858,0.0579 -0.11416,0 -0.20548,-0.09867 -0.0905,-0.09867 -0.0905,-0.299263 0,-0.158193 0.0603,-0.282138 0.0603,-0.124761 0.16145,-0.196519 0.10111,-0.07257 0.25034,-0.07257 0.0432,0 0.13047,0.009 0.013,0.0016 0.0391,0.0041 h 0.15248 v 0.643374 q 0,0.164716 0.0343,0.267461 h -0.15819 q -0.0179,-0.07502 -0.0285,-0.204673 z m 0,-0.18021 v -0.390591 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14026,0 -0.23403,0.108452 -0.093,0.108452 -0.093,0.295185 0,0.135362 0.0506,0.204673 0.0514,0.0685 0.1166,0.0685 0.0709,0 0.15657,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2868" />
+              <path
+                 d="m 104.40925,47.261002 v -0.910835 h 0.15166 v 0.198964 q 0.0709,-0.112529 0.16228,-0.167978 0.0921,-0.05626 0.20467,-0.05626 0.0824,0 0.16472,0.02528 v 0.328618 h -0.14597 V 46.47085 q -0.0383,-0.0065 -0.0603,-0.0065 -0.0848,0 -0.16635,0.06686 -0.0815,0.06686 -0.15901,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2870" />
+              <path
+                 d="m 105.38287,47.299327 h -0.14923 l 0.80483,-1.341382 h 0.14433 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2872" />
+              <path
+                 d="m 106.5791,47.261002 v -1.188897 h -0.27235 v -0.127207 h 0.42402 v 1.189712 h 0.28459 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2874" />
+              <path
+                 d="m 107.59105,47.261002 v -0.784444 h -0.25278 v -0.126391 h 0.40445 v 0.784443 h 0.2536 v 0.126392 z m -0.0253,-1.239454 q 0,-0.05137 0.0351,-0.07665 0.0351,-0.02528 0.066,-0.02528 0.0318,0 0.0669,0.02528 0.0351,0.02528 0.0351,0.07665 0,0.05056 -0.0351,0.07583 -0.0351,0.02528 -0.0669,0.02528 -0.031,0 -0.066,-0.02528 -0.0351,-0.02528 -0.0351,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2876" />
+              <path
+                 d="m 108.47742,46.554839 q 0.0701,-0.11416 0.16717,-0.172055 0.097,-0.0579 0.17858,-0.0579 0.11416,0 0.20548,0.09867 0.0913,0.09867 0.0913,0.299263 0,0.158193 -0.0611,0.282954 -0.0603,0.123945 -0.16146,0.196519 -0.10111,0.07176 -0.25034,0.07176 -0.0424,0 -0.13047,-0.009 -0.013,-0.0016 -0.0391,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.390591 q 0.0824,0.0212 0.15167,0.0212 0.13781,0 0.23159,-0.107636 0.0946,-0.108452 0.0946,-0.296001 0,-0.136177 -0.0514,-0.204673 -0.0514,-0.0685 -0.1166,-0.0685 -0.0709,0 -0.15657,0.07176 -0.0848,0.07176 -0.1533,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2878" />
+              <path
+                 d="m 109.38826,47.299327 h -0.14923 l 0.80483,-1.341382 h 0.14434 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2880" />
+              <path
+                 d="m 110.38064,47.261002 v -1.316104 h 0.15167 v 0.826846 l 0.43788,-0.421577 h 0.20223 l -0.43707,0.421577 0.44848,0.489258 h -0.20875 l -0.44277,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2882" />
+              <path
+                 d="m 112.09059,46.350167 v 0.910835 h -0.15167 v -0.199781 q -0.0734,0.11253 -0.16308,0.168794 -0.0897,0.05626 -0.1794,0.05626 -0.0799,0 -0.14678,-0.0424 -0.066,-0.04322 -0.0921,-0.11253 -0.0261,-0.07013 -0.0261,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.0122,0.173686 0.0131,0.04159 0.0465,0.0685 0.0343,0.02691 0.0734,0.02691 0.0799,0 0.17124,-0.07502 0.0921,-0.07583 0.15248,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2884" />
+              <path
+                 d="m 112.48281,46.554839 q 0.0701,-0.11416 0.16717,-0.172055 0.097,-0.0579 0.17858,-0.0579 0.11416,0 0.20549,0.09867 0.0913,0.09867 0.0913,0.299263 0,0.158193 -0.0611,0.282954 -0.0603,0.123945 -0.16146,0.196519 -0.10111,0.07176 -0.25034,0.07176 -0.0424,0 -0.13046,-0.009 -0.0131,-0.0016 -0.0392,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.390591 q 0.0824,0.0212 0.15167,0.0212 0.13781,0 0.23159,-0.107636 0.0946,-0.108452 0.0946,-0.296001 0,-0.136177 -0.0514,-0.204673 -0.0514,-0.0685 -0.1166,-0.0685 -0.0709,0 -0.15656,0.07176 -0.0848,0.07176 -0.15331,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2886" />
+              <path
+                 d="m 114.10144,47.20066 q -0.18184,0.08644 -0.34411,0.08644 -0.12313,0 -0.22016,-0.06116 -0.097,-0.06116 -0.15575,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.0554,-0.239737 0.0555,-0.114975 0.15493,-0.178579 0.0995,-0.06442 0.2218,-0.06442 0.16227,0 0.26012,0.115791 0.0987,0.115791 0.0987,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.0391,0.172871 0.04,0.07828 0.10437,0.117422 0.0644,0.03914 0.14678,0.03914 0.14678,0 0.32454,-0.09785 z m -0.60586,-0.48355 h 0.45419 v -0.02202 q 0,-0.111713 -0.0546,-0.177763 -0.0546,-0.06605 -0.14596,-0.06605 -0.0921,0 -0.15983,0.06768 -0.0669,0.06686 -0.0938,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2888" />
+              <path
+                 d="m 114.58988,47.261002 v -1.188897 h -0.27235 v -0.127207 h 0.42402 v 1.189712 h 0.28459 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2890" />
+              <path
+                 d="m 116.10414,47.20066 q -0.18184,0.08644 -0.34411,0.08644 -0.12313,0 -0.22017,-0.06116 -0.097,-0.06116 -0.15575,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.0554,-0.239737 0.0554,-0.114975 0.15493,-0.178579 0.0995,-0.06442 0.2218,-0.06442 0.16227,0 0.26012,0.115791 0.0987,0.115791 0.0987,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.0391,0.172871 0.04,0.07828 0.10438,0.117422 0.0644,0.03914 0.14678,0.03914 0.14677,0 0.32454,-0.09785 z m -0.60587,-0.48355 h 0.4542 v -0.02202 q 0,-0.111713 -0.0546,-0.177763 -0.0546,-0.06605 -0.14596,-0.06605 -0.0921,0 -0.15982,0.06768 -0.0669,0.06686 -0.0938,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2892" />
+              <path
+                 d="m 117.10956,47.224307 q -0.10682,0.04485 -0.15493,0.053 -0.0481,0.009 -0.093,0.009 -0.0954,0 -0.1745,-0.03669 -0.0791,-0.0367 -0.11987,-0.108453 -0.04,-0.07176 -0.04,-0.221796 v -0.366944 h -0.22751 v -0.126391 h 0.22751 v -0.366944 h 0.15167 v 0.366944 h 0.40526 v 0.126391 h -0.40526 v 0.364497 q 0,0.110083 0.0261,0.155747 0.0261,0.04485 0.0693,0.06605 0.044,0.0212 0.10356,0.0212 0.11008,0 0.23158,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2894" />
+              <path
+                 d="m 117.39904,47.299327 h -0.14922 l 0.80483,-1.341382 h 0.14433 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2896" />
+              <path
+                 d="m 118.39142,47.261002 v -1.316104 h 0.15167 v 0.826846 l 0.43788,-0.421577 h 0.20223 l -0.43707,0.421577 0.44849,0.489258 h -0.20875 l -0.44278,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2898" />
+            </g>
+            <g
+               aria-label="ubeadm-flags.env&quot;"
+               id="text330"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.87577146,48.521164 v 0.910835 H 0.72410154 v -0.19978 q -0.0733887,0.112529 -0.16308593,0.168794 -0.0896973,0.05627 -0.17939453,0.05627 -0.0799121,0 -0.14677734,-0.0424 -0.0660498,-0.04322 -0.0921435,-0.112529 -0.0260937,-0.07013 -0.0260937,-0.272354 v -0.508828 h 0.15166992 v 0.527583 q 0,0.131284 0.0122315,0.173687 0.0130469,0.04159 0.0464795,0.0685 0.034248,0.02691 0.0733887,0.02691 0.0799121,0 0.17124023,-0.07502 0.0921435,-0.07584 0.15248534,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2901" />
+              <path
+                 d="m 1.2679932,48.725837 q 0.070127,-0.11416 0.167163,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141602,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011132,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204672 -0.051372,-0.0685 -0.1166065,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533007,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2903" />
+              <path
+                 d="m 2.8866211,49.371657 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099483,-0.06442 0.2217969,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 2.2717871 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 2.2807568,48.888108 h 0.4541944 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598243,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2905" />
+              <path
+                 d="m 3.7289601,49.227326 q -0.069311,0.114161 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304688,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524853 v 0.643374 q 0,0.164717 0.034248,0.267461 H 3.7575001 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108453 -0.092959,0.108452 -0.092959,0.295185 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2907" />
+              <path
+                 d="m 4.7400928,49.227326 q -0.069312,0.114161 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.1614551,-0.196518 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 v -0.405268 h 0.1524853 v 1.316103 H 4.7400928 Z m 0,-0.18021 v -0.39059 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108453 -0.092959,0.108452 -0.092959,0.295185 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2909" />
+              <path
+                 d="m 5.0646337,49.431999 v -0.910835 h 0.132915 v 0.20875 q 0.062788,-0.132915 0.1166065,-0.183471 0.054634,-0.05056 0.110083,-0.05056 0.06605,0 0.1060058,0.05219 0.040771,0.05137 0.040771,0.146778 v 0.04893 q 0.026909,-0.08317 0.064419,-0.134546 0.038325,-0.05219 0.079097,-0.08236 0.040771,-0.03099 0.093774,-0.03099 0.058711,0 0.1002979,0.04974 0.041587,0.04974 0.041587,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.00489,-0.104375 -0.00489,-0.02854 -0.01957,-0.04322 -0.014678,-0.01468 -0.031802,-0.01468 -0.042402,0 -0.091328,0.06523 -0.04811,0.06442 -0.098667,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.023648,-0.141885 -0.023647,-0.0212 -0.042402,-0.0212 -0.041587,0 -0.089697,0.07257 -0.047295,0.07257 -0.090513,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2911" />
+              <path
+                 d="m 6.1931887,48.982697 v -0.126391 h 0.6327735 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2913" />
+              <path
+                 d="M 7.3478371,49.431999 V 48.723391 H 7.1456105 v -0.126392 h 0.2022266 v -0.0424 q 0,-0.18021 0.040771,-0.266646 0.040771,-0.08644 0.1255762,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.1060059,0 0.2152735,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.2095655,-0.03914 -0.072573,0 -0.1280224,0.02691 -0.055449,0.02691 -0.087251,0.08807 -0.030986,0.06034 -0.030986,0.205488 v 0.05871 h 0.3612353 v 0.126392 H 7.499507 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2915" />
+              <path
+                 d="M 8.3818018,49.431999 V 48.243103 H 8.1094483 v -0.127207 h 0.4240234 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2917" />
+              <path
+                 d="m 9.7370458,49.227326 q -0.069312,0.114161 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141601,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158194 0.060342,-0.282139 0.060342,-0.124761 0.161455,-0.196518 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304688,0.009 0.013047,0.0016 0.039141,0.0041 h 0.1524854 v 0.643374 q 0,0.164717 0.034248,0.267461 H 9.7655858 q -0.017939,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108453 -0.092959,0.108452 -0.092959,0.295185 0,0.135361 0.050557,0.204673 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2919" />
+              <path
+                 d="m 10.748179,49.227326 q -0.06931,0.114161 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280507,0.07013 -0.165533,0 -0.335142,-0.08481 v -0.1533 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182657,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2921" />
+              <path
+                 d="m 11.151816,49.383889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2923" />
+              <path
+                 d="m 12.516846,49.470324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2925" />
+              <path
+                 d="m 13.901446,49.371657 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2927" />
+              <path
+                 d="m 14.145259,49.431999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2929" />
+              <path
+                 d="m 15.442608,49.431999 -0.395484,-0.910835 h 0.166348 l 0.312309,0.72084 0.318833,-0.72084 h 0.15167 l -0.398745,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2931" />
+              <path
+                 d="m 16.400737,48.571721 h -0.104375 l -0.05219,-0.455825 h 0.203042 z m 0.351451,0 h -0.10356 l -0.04648,-0.455825 h 0.198965 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2933" />
+            </g>
+            <g
+               aria-label="Sep"
+               id="text332"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.12802246,51.576091 V 51.42116 q 0.19570312,0.09296 0.35552733,0.09296 0.0668652,0 0.12802246,-0.02528 0.0611572,-0.02609 0.0921435,-0.0742 0.0318018,-0.04811 0.0318018,-0.104375 0,-0.06605 -0.0432178,-0.123129 -0.0432178,-0.0579 -0.16227051,-0.127208 l -0.0831738,-0.04811 -0.0839893,-0.04811 Q 0.14106933,50.83242 0.14106933,50.637532 q 0,-0.1427 0.098667,-0.239736 0.0994824,-0.09785 0.30986328,-0.09785 0.13536132,0 0.26175292,0.03914 v 0.141069 q -0.13943847,-0.05382 -0.27153808,-0.05382 -0.10519043,0 -0.1704248,0.05545 -0.0644189,0.05545 -0.0644189,0.13373 0,0.07747 0.0497412,0.128838 0.0497412,0.05137 0.12720703,0.09459 l 0.0636035,0.03833 0.0790967,0.04811 0.0668652,0.03914 q 0.20793456,0.127207 0.20793456,0.319649 0,0.146777 -0.10682128,0.251967 -0.10682129,0.105191 -0.34248046,0.105191 -0.0750195,0 -0.14351563,-0.01305 -0.0676807,-0.01223 -0.17857909,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2936" />
+              <path
+                 d="m 1.8852734,51.542659 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 1.2704395 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2938" />
+              <path
+                 d="m 2.2693408,50.896839 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141602,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353896 H 2.1176709 v -1.264731 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378077,0 0.2315821,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2940" />
+            </g>
+            <g
+               aria-label="18"
+               id="text334"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 4.4711639,51.476609 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136993 q 0.1785791,-0.07583 0.3098632,-0.196518 h 0.15167 v 1.139155 h 0.3041552 v 0.126392 H 4.1613007 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2943" />
+              <path
+                 d="M 5.3836298,50.920486 5.3559052,50.9001 q -0.057895,-0.04077 -0.1133448,-0.119868 -0.055449,-0.07991 -0.055449,-0.175317 0,-0.126392 0.099482,-0.215274 0.099483,-0.0897 0.2527832,-0.0897 0.093774,0 0.168794,0.03425 0.075019,0.03343 0.115791,0.09948 0.040771,0.06605 0.040771,0.144332 0,0.05382 -0.018755,0.104375 -0.018755,0.04974 -0.056265,0.09948 -0.036694,0.04893 -0.1467773,0.138623 l 0.068496,0.05463 q 0.1198682,0.09785 0.1614551,0.168794 0.041587,0.07094 0.041587,0.159009 0,0.136992 -0.099482,0.238105 -0.099483,0.100298 -0.2984473,0.100298 -0.1997803,0 -0.2992627,-0.09378 -0.099482,-0.09459 -0.099482,-0.234028 0,-0.207934 0.2658301,-0.393037 z m 0.155747,-0.07747 q 0.1149756,-0.08725 0.1435157,-0.145962 0.029355,-0.05871 0.029355,-0.109267 0,-0.06116 -0.053818,-0.110899 -0.053818,-0.05056 -0.1386231,-0.05056 -0.091328,0 -0.1394384,0.05463 -0.047295,0.05463 -0.047295,0.113345 0,0.05708 0.039956,0.107637 0.039956,0.05056 0.1280224,0.113345 z m -0.041587,0.158194 q -0.2152734,0.165532 -0.2152734,0.309863 0,0.08562 0.070942,0.144331 0.070942,0.05871 0.1679785,0.05871 0.088882,0 0.1590088,-0.05627 0.070127,-0.05626 0.070127,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.084805,-0.0848 -0.1182373,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2945" />
+            </g>
+            <g
+               aria-label="16:51:39"
+               id="text336"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 7.477164,51.476609 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769483,0.07828 v -0.136993 q 0.1785791,-0.07583 0.3098633,-0.196518 h 0.1516699 v 1.139155 h 0.3041553 v 0.126392 H 7.1673007 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2948" />
+              <path
+                 d="m 8.2534531,51.009368 q 0.058711,-0.08725 0.1451464,-0.141885 0.087251,-0.05545 0.191626,-0.05545 0.098667,0 0.1867334,0.04811 0.088882,0.04811 0.1353613,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.1149756,0.132915 -0.3033398,0.132915 -0.2217969,0 -0.3318799,-0.185103 -0.1092676,-0.185918 -0.1092676,-0.472133 0,-0.316387 0.1394385,-0.499859 0.1394385,-0.184287 0.3775439,-0.184287 0.1280225,0 0.2487061,0.03751 v 0.153301 q -0.1353613,-0.06442 -0.2552295,-0.06442 -0.1696094,0 -0.2625684,0.155747 -0.092959,0.155747 -0.092959,0.394668 z m 0.2976318,0.505566 q 0.061157,0 0.1231299,-0.03588 0.061973,-0.03669 0.097036,-0.111714 0.035879,-0.07583 0.035879,-0.164716 0,-0.115791 -0.060342,-0.189995 -0.059526,-0.0742 -0.1704248,-0.0742 -0.1149756,0 -0.1891797,0.08644 -0.073389,0.08562 -0.073389,0.20875 0,0.123945 0.071758,0.203042 0.072573,0.07828 0.1655322,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2950" />
+              <path
+                 d="m 9.5173691,51.641326 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708609 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03832 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2952" />
+              <path
+                 d="m 10.171344,50.944949 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2954" />
+              <path
+                 d="m 11.482555,51.476609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176949,0.07828 v -0.136993 q 0.178579,-0.07583 0.309864,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 h -0.765689 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2956" />
+              <path
+                 d="m 12.521412,51.641326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2958" />
+              <path
+                 d="m 13.140323,51.580169 v -0.159825 q 0.186734,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126391 h 0.116607 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289477,0.07583 V 50.35784 q 0.154931,-0.0579 0.283769,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.17124,0.135361 0.110083,0.03262 0.166347,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.132099,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2960" />
+              <path
+                 d="m 14.786676,50.931087 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187548,-0.0473 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114976,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331064,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139438,0.183472 -0.377544,0.183472 -0.128022,0 -0.248706,-0.03833 v -0.152486 q 0.135361,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.171241,0.0742 0.114975,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2962" />
+            </g>
+            <g
+               aria-label="m1c29"
+               id="text338"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 16.089895,51.603001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03832,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 H 16.46907 v -0.621358 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2965" />
+              <path
+                 d="m 17.496511,51.476609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136993 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 h -0.765688 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2967" />
+              <path
+                 d="m 18.92759,51.576907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111713 0.242182,0.111713 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2969" />
+              <path
+                 d="m 19.92323,51.603001 h -0.765688 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08643,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194887,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2971" />
+              <path
+                 d="m 20.800632,50.931087 q -0.05871,0.08725 -0.145962,0.1427 -0.08643,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.0473 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114975,-0.31231 0.115791,-0.13373 0.304156,-0.13373 0.221796,0 0.331064,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183472 -0.377544,0.183472 -0.128023,0 -0.248706,-0.03833 v -0.152486 q 0.135361,0.0636 0.255229,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297631,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164716,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2973" />
+            </g>
+            <g
+               aria-label="sh[1273]:"
+               id="text340"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 22.180993,51.55489 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2976" />
+              <path
+                 d="m 23.17174,51.603001 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.199781 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2978" />
+              <path
+                 d="m 24.336173,51.90634 v -1.644721 h 0.658052 v 0.127207 h -0.506382 v 1.391123 h 0.506382 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2980" />
+              <path
+                 d="m 25.511208,51.476609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136993 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 h -0.765688 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2982" />
+              <path
+                 d="M 26.936579,51.603001 H 26.17089 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2984" />
+              <path
+                 d="m 27.310861,51.603001 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110898 0.121499,-0.17124 l 0.132099,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.656421 v -0.152485 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.219351 -0.02935,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2986" />
+              <path
+                 d="m 28.170324,51.580169 v -0.159825 q 0.186734,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07583 -0.305787,-0.07583 h -0.08399 v -0.126391 h 0.116607 q 0.159008,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.05789,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289478,0.07583 V 50.35784 q 0.154932,-0.0579 0.28377,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.17124,0.135361 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02935,0.06442 0.02935,0.144331 0,0.177764 -0.1321,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.132099,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2988" />
+              <path
+                 d="M 29.76612,50.261619 V 51.90634 H 29.108068 V 51.779949 H 29.61445 V 50.388826 H 29.108068 V 50.261619 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2990" />
+              <path
+                 d="m 30.555456,51.641326 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2992" />
+            </g>
+            <g
+               aria-label="[kubelet-start]"
+               id="text342"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 32.353477,51.90634 v -1.644721 h 0.658051 v 0.127207 h -0.506381 v 1.391123 h 0.506381 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2995" />
+              <path
+                 d="m 33.23251,51.603001 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 33.38418,51.113743 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2997" />
+              <path
+                 d="m 34.942466,50.692166 v 0.910835 h -0.15167 V 51.40322 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2999" />
+              <path
+                 d="m 35.334688,50.896839 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3001" />
+              <path
+                 d="m 36.953316,51.542659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3003" />
+              <path
+                 d="m 37.441758,51.603001 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3005" />
+              <path
+                 d="m 38.956011,51.542659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3007" />
+              <path
+                 d="m 39.961436,51.566306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3009" />
+              <path
+                 d="m 40.259883,51.153699 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3011" />
+              <path
+                 d="m 41.21312,51.55489 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3013" />
+              <path
+                 d="m 42.965478,51.566306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 H 42.9402 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3015" />
+              <path
+                 d="m 43.80374,51.398328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 H 43.83228 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3017" />
+              <path
+                 d="m 44.284029,51.603001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3019" />
+              <path
+                 d="m 45.969522,51.566306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 50.894392 H 45.1598 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3021" />
+              <path
+                 d="M 46.795552,50.261619 V 51.90634 H 46.1375 v -0.126391 h 0.506382 V 50.388826 H 46.1375 v -0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3023" />
+            </g>
+            <g
+               aria-label="Starting"
+               id="text344"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 48.224023,51.576091 V 51.42116 q 0.195703,0.09296 0.355527,0.09296 0.06687,0 0.128023,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.123129 -0.04322,-0.0579 -0.16227,-0.127208 l -0.08317,-0.04811 -0.08399,-0.04811 Q 48.23707,50.83242 48.23707,50.637532 q 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135362,0 0.261753,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.10519,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319649 0,0.146777 -0.106822,0.251967 -0.106821,0.105191 -0.34248,0.105191 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3026" />
+              <path
+                 d="m 49.985351,51.566306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 50.894392 H 49.17563 v -0.126391 h 0.227504 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3028" />
+              <path
+                 d="m 50.823613,51.398328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3030" />
+              <path
+                 d="m 51.303901,51.603001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3032" />
+              <path
+                 d="m 52.989394,51.566306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119869,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227504 v -0.126391 h 0.227504 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3034" />
+              <path
+                 d="m 53.48436,51.603001 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253598 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3036" />
+              <path
+                 d="m 54.230478,51.603001 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.151669 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3038" />
+              <path
+                 d="m 55.840137,51.398328 q -0.06931,0.11416 -0.167164,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149223,0.191625 -0.115791,0.07013 -0.280508,0.07013 -0.165533,0 -0.335142,-0.0848 V 51.74407 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182657,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3040" />
+            </g>
+            <g
+               aria-label="the"
+               id="text346"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 58.002001,51.566306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 V 50.894392 H 57.19228 v -0.126391 h 0.227505 v -0.366944 h 0.151669 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3043" />
+              <path
+                 d="m 58.241738,51.603001 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.199781 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3045" />
+              <path
+                 d="m 60.000619,51.542659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3047" />
+            </g>
+            <g
+               aria-label="kubelet"
+               id="text348"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.289165,51.603001 v -1.316104 h 0.15167 v 0.826846 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3050" />
+              <path
+                 d="m 62.999121,50.692166 v 0.910835 h -0.15167 V 51.40322 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3052" />
+              <path
+                 d="m 63.391342,50.896839 q 0.07013,-0.114161 0.167164,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.151669 v -1.316104 h 0.151669 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3054" />
+              <path
+                 d="m 65.009971,51.542659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3056" />
+              <path
+                 d="m 65.498413,51.603001 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3058" />
+              <path
+                 d="m 67.012666,51.542659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3060" />
+              <path
+                 d="m 68.018091,51.566306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3062" />
+            </g>
+            <g
+               aria-label="Sep"
+               id="text350"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.12802246,53.747089 v -0.154932 q 0.19570312,0.09296 0.35552733,0.09296 0.0668652,0 0.12802246,-0.02528 0.0611572,-0.02609 0.0921435,-0.0742 0.0318018,-0.04811 0.0318018,-0.104375 0,-0.06605 -0.0432178,-0.12313 -0.0432178,-0.05789 -0.16227051,-0.127207 l -0.0831738,-0.04811 -0.0839893,-0.04811 Q 0.14106933,53.003417 0.14106933,52.80853 q 0,-0.142701 0.098667,-0.239737 0.0994824,-0.09785 0.30986328,-0.09785 0.13536132,0 0.26175292,0.03914 v 0.14107 q -0.13943847,-0.05382 -0.27153808,-0.05382 -0.10519043,0 -0.1704248,0.05545 -0.0644189,0.05545 -0.0644189,0.133731 0,0.07747 0.0497412,0.128838 0.0497412,0.05137 0.12720703,0.09459 l 0.0636035,0.03833 0.0790967,0.04811 0.0668652,0.03914 q 0.20793456,0.127207 0.20793456,0.319648 0,0.146778 -0.10682128,0.251968 -0.10682129,0.10519 -0.34248046,0.10519 -0.0750195,0 -0.14351563,-0.01305 -0.0676807,-0.01223 -0.17857909,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3065" />
+              <path
+                 d="m 1.8852734,53.713656 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 1.2704395 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z M 1.2794092,53.230107 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3067" />
+              <path
+                 d="m 2.2693408,53.067836 q 0.070127,-0.11416 0.1671631,-0.172055 0.097036,-0.0579 0.1785791,-0.0579 0.1141602,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353897 H 2.1176709 v -1.264732 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378077,0 0.2315821,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204672 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3069" />
+            </g>
+            <g
+               aria-label="18"
+               id="text352"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 4.4711639,53.647607 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 V 52.70497 q 0.1785791,-0.07584 0.3098632,-0.196519 h 0.15167 v 1.139156 h 0.3041552 v 0.126391 H 4.1613007 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3072" />
+              <path
+                 d="m 5.3836298,53.091484 -0.027725,-0.02039 q -0.057895,-0.04077 -0.1133448,-0.119868 -0.055449,-0.07991 -0.055449,-0.175318 0,-0.126391 0.099482,-0.215273 0.099483,-0.0897 0.2527832,-0.0897 0.093774,0 0.168794,0.03425 0.075019,0.03343 0.115791,0.09948 0.040771,0.06605 0.040771,0.144331 0,0.05382 -0.018755,0.104375 -0.018755,0.04974 -0.056265,0.09948 -0.036694,0.04893 -0.1467773,0.138623 l 0.068496,0.05463 q 0.1198682,0.09785 0.1614551,0.168794 0.041587,0.07094 0.041587,0.159009 0,0.136992 -0.099482,0.238106 -0.099483,0.100297 -0.2984473,0.100297 -0.1997803,0 -0.2992627,-0.09377 -0.099482,-0.09459 -0.099482,-0.234028 0,-0.207935 0.2658301,-0.393037 z m 0.155747,-0.07747 q 0.1149756,-0.08725 0.1435157,-0.145962 0.029355,-0.05871 0.029355,-0.109268 0,-0.06116 -0.053818,-0.110898 -0.053818,-0.05056 -0.1386231,-0.05056 -0.091328,0 -0.1394384,0.05463 -0.047295,0.05463 -0.047295,0.113345 0,0.05708 0.039956,0.107636 0.039956,0.05056 0.1280224,0.113345 z m -0.041587,0.158193 q -0.2152734,0.165532 -0.2152734,0.309863 0,0.08562 0.070942,0.144331 0.070942,0.05871 0.1679785,0.05871 0.088882,0 0.1590088,-0.05626 0.070127,-0.05627 0.070127,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.084805,-0.08481 -0.1182373,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3074" />
+            </g>
+            <g
+               aria-label="16:51:39"
+               id="text354"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 7.477164,53.647607 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769483,0.07828 V 52.70497 q 0.1785791,-0.07584 0.3098633,-0.196519 h 0.1516699 v 1.139156 h 0.3041553 v 0.126391 H 7.1673007 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3077" />
+              <path
+                 d="m 8.2534531,53.180365 q 0.058711,-0.08725 0.1451464,-0.141884 0.087251,-0.05545 0.191626,-0.05545 0.098667,0 0.1867334,0.04811 0.088882,0.04811 0.1353613,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.1149756,0.132915 -0.3033398,0.132915 -0.2217969,0 -0.3318799,-0.185102 -0.1092676,-0.185918 -0.1092676,-0.472134 0,-0.316387 0.1394385,-0.499858 0.1394385,-0.184287 0.3775439,-0.184287 0.1280225,0 0.2487061,0.03751 v 0.153301 q -0.1353613,-0.06442 -0.2552295,-0.06442 -0.1696094,0 -0.2625684,0.155747 -0.092959,0.155747 -0.092959,0.394668 z m 0.2976318,0.505567 q 0.061157,0 0.1231299,-0.03588 0.061973,-0.03669 0.097036,-0.111714 0.035879,-0.07583 0.035879,-0.164717 0,-0.115791 -0.060342,-0.189995 -0.059526,-0.0742 -0.1704248,-0.0742 -0.1149756,0 -0.1891797,0.08644 -0.073389,0.08562 -0.073389,0.20875 0,0.123945 0.071758,0.203042 0.072573,0.07828 0.1655322,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3079" />
+              <path
+                 d="m 9.5173691,53.812323 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3081" />
+              <path
+                 d="m 10.171344,53.115947 v -0.607496 h 0.708608 v 0.145962 h -0.556938 v 0.309864 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3083" />
+              <path
+                 d="m 11.482555,53.647607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176949,0.07828 V 52.70497 q 0.178579,-0.07584 0.309864,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3085" />
+              <path
+                 d="m 12.521412,53.812323 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3087" />
+              <path
+                 d="m 13.140323,53.751166 v -0.159824 q 0.186734,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126392 h 0.116607 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289477,0.07583 v -0.144331 q 0.154931,-0.0579 0.283769,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166347,0.07991 0.05626,0.0473 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.132099,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3089" />
+              <path
+                 d="m 14.786676,53.102084 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187548,-0.0473 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08643 -0.04648,-0.200595 0,-0.179395 0.114976,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139438,0.183471 -0.377544,0.183471 -0.128022,0 -0.248706,-0.03833 v -0.152485 q 0.135361,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.0367 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.171241,0.0742 0.114975,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3091" />
+            </g>
+            <g
+               aria-label="m1c29"
+               id="text356"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 16.089895,53.773998 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03832,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 H 16.46907 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3094" />
+              <path
+                 d="m 17.496511,53.647607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 52.70497 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 h -0.765688 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3096" />
+              <path
+                 d="m 18.92759,53.747905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.246259 0,-0.20712 0.134546,-0.344112 0.135362,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3098" />
+              <path
+                 d="M 19.92323,53.773998 H 19.157542 V 53.63456 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08643,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194887,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3100" />
+              <path
+                 d="m 20.800632,53.102084 q -0.05871,0.08725 -0.145962,0.1427 -0.08643,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.0473 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08643 -0.04648,-0.200595 0,-0.179395 0.114975,-0.31231 0.115791,-0.13373 0.304156,-0.13373 0.221796,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183471 -0.377544,0.183471 -0.128023,0 -0.248706,-0.03833 v -0.152485 q 0.135361,0.0636 0.255229,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297631,-0.504751 q -0.06116,0 -0.12313,0.0367 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164716,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3102" />
+            </g>
+            <g
+               aria-label="sh[1273]:"
+               id="text358"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 22.180993,53.725888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3105" />
+              <path
+                 d="m 23.17174,53.773998 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3107" />
+              <path
+                 d="m 24.336173,54.077338 v -1.644722 h 0.658052 v 0.127207 h -0.506382 v 1.391123 h 0.506382 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3109" />
+              <path
+                 d="m 25.511208,53.647607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 52.70497 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 h -0.765688 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3111" />
+              <path
+                 d="M 26.936579,53.773998 H 26.17089 V 53.63456 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3113" />
+              <path
+                 d="m 27.310861,53.773998 v -0.113344 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110899 0.121499,-0.171241 l 0.132099,-0.174501 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.21935 -0.02935,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113344 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3115" />
+              <path
+                 d="m 28.170324,53.751166 v -0.159824 q 0.186734,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07583 -0.305787,-0.07583 h -0.08399 v -0.126392 h 0.116607 q 0.159008,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.05789,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289478,0.07583 v -0.144331 q 0.154932,-0.0579 0.28377,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166348,0.07991 0.05626,0.0473 0.0848,0.111714 0.02935,0.06442 0.02935,0.144331 0,0.177763 -0.1321,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.132099,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3117" />
+              <path
+                 d="m 29.76612,52.432616 v 1.644722 h -0.658052 v -0.126392 h 0.506382 v -1.391123 h -0.506382 v -0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3119" />
+              <path
+                 d="m 30.555456,53.812323 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3121" />
+            </g>
+            <g
+               aria-label="[kubelet-start]"
+               id="text360"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 32.353477,54.077338 v -1.644722 h 0.658051 v 0.127207 h -0.506381 v 1.391123 h 0.506381 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3124" />
+              <path
+                 d="m 33.23251,53.773998 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 33.38418,53.28474 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3126" />
+              <path
+                 d="m 34.942466,52.863163 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07584 0.152485,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3128" />
+              <path
+                 d="m 35.334688,53.067836 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3130" />
+              <path
+                 d="m 36.953316,53.713656 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3132" />
+              <path
+                 d="m 37.441758,53.773998 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3134" />
+              <path
+                 d="m 38.956011,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3136" />
+              <path
+                 d="m 39.961436,53.737304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3138" />
+              <path
+                 d="m 40.259883,53.324697 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3140" />
+              <path
+                 d="m 41.21312,53.725888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3142" />
+              <path
+                 d="m 42.965478,53.737304 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 H 42.9402 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3144" />
+              <path
+                 d="m 43.80374,53.569325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 H 43.83228 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3146" />
+              <path
+                 d="m 44.284029,53.773998 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3148" />
+              <path
+                 d="m 45.969522,53.737304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 H 45.1598 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3150" />
+              <path
+                 d="m 46.795552,52.432616 v 1.644722 H 46.1375 v -0.126392 h 0.506382 V 52.559823 H 46.1375 v -0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3152" />
+            </g>
+            <g
+               aria-label="Waiting"
+               id="text362"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 48.26561,53.773998 -0.146777,-1.265547 h 0.150039 l 0.08644,0.770581 0.01142,0.128023 h 0.0041 l 0.01631,-0.128023 0.132915,-0.770581 h 0.150039 l 0.15167,0.801568 0.01549,0.122314 h 0.0041 l 0.0098,-0.12313 0.0954,-0.800752 h 0.128838 l -0.153301,1.265547 h -0.155747 l -0.163086,-0.857832 -0.01712,-0.128838 h -0.0041 l -0.01549,0.128838 -0.146778,0.857832 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3155" />
+              <path
+                 d="m 49.822265,53.569325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3157" />
+              <path
+                 d="m 50.480317,53.773998 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3159" />
+              <path
+                 d="m 51.988047,53.737304 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 V 53.06539 H 51.5575 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3161" />
+              <path
+                 d="m 52.483012,53.773998 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3163" />
+              <path
+                 d="m 53.22913,53.773998 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3165" />
+              <path
+                 d="m 54.838789,53.569325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.103559 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.1533 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3167" />
+            </g>
+            <g
+               aria-label="for"
+               id="text364"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 56.450403,53.773998 V 53.06539 h -0.202227 v -0.126392 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126392 h -0.361235 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3170" />
+              <path
+                 d="m 57.614836,53.799277 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207934 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3172" />
+              <path
+                 d="m 58.318552,53.773998 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 v 0.328618 H 58.85592 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3174" />
+            </g>
+            <g
+               aria-label="the"
+               id="text366"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 61.008002,53.737304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 H 60.19828 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3177" />
+              <path
+                 d="m 61.247738,53.773998 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02038,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3179" />
+              <path
+                 d="m 63.00662,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3181" />
+            </g>
+            <g
+               aria-label="kubelet"
+               id="text368"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 64.295161,53.773998 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 H 64.88961 L 64.446831,53.28474 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3184" />
+              <path
+                 d="m 66.005117,52.863163 v 0.910835 h -0.151669 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152486,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3186" />
+              <path
+                 d="m 66.397339,53.067836 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161456,0.196518 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3188" />
+              <path
+                 d="m 68.015967,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3190" />
+              <path
+                 d="m 68.504409,53.773998 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3192" />
+              <path
+                 d="m 70.018662,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3194" />
+              <path
+                 d="m 71.024087,53.737304 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3196" />
+            </g>
+            <g
+               aria-label="to"
+               id="text370"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 73.032,53.737304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174501,-0.03669 -0.0791,-0.03669 -0.119869,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3199" />
+              <path
+                 d="m 73.646834,53.799277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3201" />
+            </g>
+            <g
+               aria-label="perform"
+               id="text372"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 75.416647,53.067836 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3204" />
+              <path
+                 d="m 77.035275,53.713656 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3206" />
+              <path
+                 d="m 77.356554,53.773998 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3208" />
+              <path
+                 d="M 78.492448,53.773998 V 53.06539 h -0.202227 v -0.126392 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125577,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106005,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126392 h -0.361235 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3210" />
+              <path
+                 d="m 79.656881,53.799277 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207934 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3212" />
+              <path
+                 d="m 80.360597,53.773998 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3214" />
+              <path
+                 d="m 81.215983,53.773998 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3216" />
+            </g>
+            <g
+               aria-label="the"
+               id="text374"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.054003,53.737304 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227504 v -0.126392 h 0.227504 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3219" />
+              <path
+                 d="m 84.29374,53.773998 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157377,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189996 v 0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3221" />
+              <path
+                 d="m 86.052621,53.713656 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3223" />
+            </g>
+            <g
+               aria-label="TLS"
+               id="text376"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 87.592319,53.773998 V 52.64789 h -0.379175 v -0.139439 h 0.923882 v 0.139439 h -0.37999 v 1.126108 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3226" />
+              <path
+                 d="m 89.03726,53.63456 v 0.139438 h -0.68333 v -1.265547 h 0.164717 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3228" />
+              <path
+                 d="m 89.304721,53.747089 v -0.154932 q 0.195704,0.09296 0.355528,0.09296 0.06687,0 0.128022,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.05789 -0.162271,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326171 0,-0.142701 0.09867,-0.239737 0.09948,-0.09785 0.309864,-0.09785 0.135361,0 0.261752,0.03914 v 0.14107 q -0.139438,-0.05382 -0.271538,-0.05382 -0.10519,0 -0.170424,0.05545 -0.06442,0.05545 -0.06442,0.133731 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06687,0.03914 q 0.207935,0.127207 0.207935,0.319648 0,0.146778 -0.106821,0.251968 -0.106822,0.10519 -0.342481,0.10519 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3230" />
+            </g>
+            <g
+               aria-label="Bootstrap..."
+               id="text378"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 91.322253,53.773998 v -1.265547 h 0.247075 q 0.222613,0 0.297632,0.03425 0.07583,0.03343 0.113345,0.09948 0.03751,0.06605 0.03751,0.150854 0,0.06687 -0.02202,0.127207 -0.02202,0.05953 -0.06523,0.109268 -0.04322,0.04893 -0.125577,0.09296 0.150855,0.06034 0.203858,0.148408 0.05382,0.08807 0.05382,0.176133 0,0.08399 -0.04566,0.163086 -0.04485,0.0791 -0.126391,0.121499 -0.08154,0.0424 -0.260938,0.0424 z m 0.164717,-0.695561 h 0.172871 q 0.08399,-0.03506 0.122314,-0.07339 0.03914,-0.03914 0.0579,-0.08644 0.01957,-0.04811 0.01957,-0.105191 0,-0.0897 -0.053,-0.13373 -0.05219,-0.04403 -0.204673,-0.04403 H 91.48697 Z m 0,0.56917 h 0.155747 q 0.130469,0 0.192441,-0.06116 0.06279,-0.06197 0.06279,-0.148408 0,-0.0636 -0.03425,-0.116606 -0.03425,-0.05382 -0.106005,-0.08481 -0.07176,-0.0318 -0.225059,-0.0318 h -0.04566 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3233" />
+              <path
+                 d="m 92.684836,53.799277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3235" />
+              <path
+                 d="m 93.686184,53.799277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3237" />
+              <path
+                 d="m 95.074045,53.737304 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119869,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227504 v -0.126392 h 0.227504 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3239" />
+              <path
+                 d="m 95.324382,53.725888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145961,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3241" />
+              <path
+                 d="m 97.07674,53.737304 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 53.06539 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.151669 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3243" />
+              <path
+                 d="m 97.393943,53.773998 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3245" />
+              <path
+                 d="m 98.91635,53.569325 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 H 98.94489 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3247" />
+              <path
+                 d="m 99.459426,53.067836 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205492,0.09867 0.0913,0.09867 0.0913,0.299263 0,0.158193 -0.0611,0.282954 -0.06034,0.123945 -0.161458,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3249" />
+              <path
+                 d="m 100.6948,53.812323 q -0.0546,0 -0.0938,-0.03914 -0.0391,-0.03914 -0.0391,-0.09378 0,-0.05545 0.0391,-0.09377 0.04,-0.03914 0.0938,-0.03914 0.0538,0 0.093,0.03914 0.04,0.03833 0.04,0.09377 0,0.05463 -0.0391,0.09378 -0.0391,0.03914 -0.0938,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3251" />
+              <path
+                 d="m 101.69615,53.812323 q -0.0546,0 -0.0938,-0.03914 -0.0391,-0.03914 -0.0391,-0.09378 0,-0.05545 0.0391,-0.09377 0.04,-0.03914 0.0938,-0.03914 0.0538,0 0.093,0.03914 0.04,0.03833 0.04,0.09377 0,0.05463 -0.0391,0.09378 -0.0391,0.03914 -0.0938,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3253" />
+              <path
+                 d="m 102.6975,53.812323 q -0.0546,0 -0.0938,-0.03914 -0.0391,-0.03914 -0.0391,-0.09378 0,-0.05545 0.0391,-0.09377 0.04,-0.03914 0.0938,-0.03914 0.0538,0 0.093,0.03914 0.04,0.03833 0.04,0.09377 0,0.05463 -0.0391,0.09378 -0.0391,0.03914 -0.0938,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3255" />
+            </g>
+            <g
+               aria-label="Sep"
+               id="text380"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.12802246,55.918091 v -0.154932 q 0.19570312,0.09296 0.35552733,0.09296 0.0668652,0 0.12802246,-0.02528 0.0611572,-0.02609 0.0921435,-0.0742 0.0318018,-0.04811 0.0318018,-0.104375 0,-0.06605 -0.0432178,-0.123129 -0.0432178,-0.0579 -0.16227051,-0.127207 l -0.0831738,-0.04811 -0.0839893,-0.04811 q -0.22179687,-0.131284 -0.22179687,-0.326172 0,-0.1427 0.098667,-0.239736 0.0994824,-0.09785 0.30986328,-0.09785 0.13536132,0 0.26175292,0.03914 v 0.141069 q -0.13943847,-0.05382 -0.27153808,-0.05382 -0.10519043,0 -0.1704248,0.05545 -0.0644189,0.05545 -0.0644189,0.13373 0,0.07747 0.0497412,0.128838 0.0497412,0.05137 0.12720703,0.09459 l 0.0636035,0.03833 0.0790967,0.04811 0.0668652,0.03914 q 0.20793456,0.127207 0.20793456,0.319649 0,0.146777 -0.10682128,0.251967 -0.10682129,0.105191 -0.34248046,0.105191 -0.0750195,0 -0.14351563,-0.01305 -0.0676807,-0.01223 -0.17857909,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3258" />
+              <path
+                 d="m 1.8852734,55.884658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 1.2704395 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3260" />
+              <path
+                 d="m 2.2693408,55.238838 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141602,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123946 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353896 H 2.1176709 v -1.264731 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378077,0 0.2315821,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3262" />
+            </g>
+            <g
+               aria-label="18"
+               id="text382"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 4.4711639,55.818608 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136993 q 0.1785791,-0.07583 0.3098632,-0.196518 h 0.15167 v 1.139155 H 4.9269891 V 55.945 H 4.1613007 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3265" />
+              <path
+                 d="m 5.3836298,55.262485 -0.027725,-0.02039 q -0.057895,-0.04077 -0.1133448,-0.119868 -0.055449,-0.07991 -0.055449,-0.175317 0,-0.126392 0.099482,-0.215274 0.099483,-0.0897 0.2527832,-0.0897 0.093774,0 0.168794,0.03425 0.075019,0.03343 0.115791,0.09948 0.040771,0.06605 0.040771,0.144331 0,0.05382 -0.018755,0.104375 -0.018755,0.04974 -0.056265,0.09948 -0.036694,0.04893 -0.1467773,0.138623 l 0.068496,0.05463 q 0.1198682,0.09785 0.1614551,0.168794 0.041587,0.07094 0.041587,0.159009 0,0.136992 -0.099482,0.238105 -0.099483,0.100298 -0.2984473,0.100298 -0.1997803,0 -0.2992627,-0.09378 -0.099482,-0.09459 -0.099482,-0.234028 0,-0.207934 0.2658301,-0.393037 z m 0.155747,-0.07747 q 0.1149756,-0.08725 0.1435157,-0.145962 0.029355,-0.05871 0.029355,-0.109267 0,-0.06116 -0.053818,-0.110899 -0.053818,-0.05056 -0.1386231,-0.05056 -0.091328,0 -0.1394384,0.05463 -0.047295,0.05463 -0.047295,0.113345 0,0.05708 0.039956,0.107637 0.039956,0.05056 0.1280224,0.113345 z m -0.041587,0.158194 q -0.2152734,0.165532 -0.2152734,0.309863 0,0.08562 0.070942,0.144331 0.070942,0.05871 0.1679785,0.05871 0.088882,0 0.1590088,-0.05627 0.070127,-0.05626 0.070127,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.084805,-0.0848 -0.1182373,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3267" />
+            </g>
+            <g
+               aria-label="16:51:47"
+               id="text384"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 7.477164,55.818608 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769483,0.07828 v -0.136993 q 0.1785791,-0.07583 0.3098633,-0.196518 h 0.1516699 v 1.139155 H 7.9329892 V 55.945 H 7.1673007 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3270" />
+              <path
+                 d="m 8.2534531,55.351367 q 0.058711,-0.08725 0.1451464,-0.141885 0.087251,-0.05545 0.191626,-0.05545 0.098667,0 0.1867334,0.04811 0.088882,0.04811 0.1353613,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.1149756,0.132915 -0.3033398,0.132915 -0.2217969,0 -0.3318799,-0.185103 -0.1092676,-0.185918 -0.1092676,-0.472133 0,-0.316387 0.1394385,-0.499859 0.1394385,-0.184287 0.3775439,-0.184287 0.1280225,0 0.2487061,0.03751 v 0.153301 q -0.1353613,-0.06442 -0.2552295,-0.06442 -0.1696094,0 -0.2625684,0.155747 -0.092959,0.155747 -0.092959,0.394668 z m 0.2976318,0.505566 q 0.061157,0 0.1231299,-0.03588 0.061973,-0.03669 0.097036,-0.111713 0.035879,-0.07584 0.035879,-0.164717 0,-0.115791 -0.060342,-0.189995 -0.059526,-0.0742 -0.1704248,-0.0742 -0.1149756,0 -0.1891797,0.08644 -0.073389,0.08562 -0.073389,0.20875 0,0.123945 0.071758,0.203042 0.072573,0.07828 0.1655322,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3272" />
+              <path
+                 d="m 9.5173691,55.983325 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3274" />
+              <path
+                 d="m 10.171344,55.286948 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165533 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3276" />
+              <path
+                 d="m 11.482555,55.818608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176949,0.07828 v -0.136993 q 0.178579,-0.07583 0.309864,-0.196518 h 0.15167 v 1.139155 H 11.93838 V 55.945 h -0.765689 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3278" />
+              <path
+                 d="m 12.521412,55.983325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3280" />
+              <path
+                 d="m 13.598595,55.945 v -0.353897 h -0.537368 v -0.127207 l 0.537368,-0.784443 h 0.152485 v 0.784443 h 0.234029 v 0.127207 H 13.75108 V 55.945 Z m 0,-0.481104 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3282" />
+              <path
+                 d="m 14.283556,55.945 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110898 0.121499,-0.17124 l 0.132099,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.656421 v -0.152485 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3284" />
+            </g>
+            <g
+               aria-label="m1c29"
+               id="text386"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 16.089895,55.945 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03832,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 55.945 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 V 55.945 H 16.46907 v -0.621358 q 0,-0.120683 -0.02365,-0.141884 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3287" />
+              <path
+                 d="m 17.496511,55.818608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136993 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 V 55.945 h -0.765688 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3289" />
+              <path
+                 d="m 18.92759,55.918906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3291" />
+              <path
+                 d="m 19.92323,55.945 h -0.765688 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08643,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.05789 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194887,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3293" />
+              <path
+                 d="m 20.800632,55.273086 q -0.05871,0.08725 -0.145962,0.1427 -0.08643,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114975,-0.312309 0.115791,-0.133731 0.304156,-0.133731 0.221796,0 0.331064,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183472 -0.377544,0.183472 -0.128023,0 -0.248706,-0.03833 v -0.152486 q 0.135361,0.0636 0.255229,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297631,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164716,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3295" />
+            </g>
+            <g
+               aria-label="sh[1273]:"
+               id="text388"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 22.180993,55.896889 V 55.73625 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3298" />
+              <path
+                 d="m 23.17174,55.945 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.199781 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3300" />
+              <path
+                 d="m 24.336173,56.24834 v -1.644722 h 0.658052 v 0.127207 h -0.506382 v 1.391123 h 0.506382 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3302" />
+              <path
+                 d="m 25.511208,55.818608 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136993 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 V 55.945 h -0.765688 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3304" />
+              <path
+                 d="M 26.936579,55.945 H 26.17089 v -0.139439 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.05789 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3306" />
+              <path
+                 d="m 27.310861,55.945 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110898 0.121499,-0.17124 l 0.132099,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.656421 v -0.152485 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.219351 -0.02935,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3308" />
+              <path
+                 d="m 28.170324,55.922168 v -0.159825 q 0.186734,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07583 -0.305787,-0.07583 h -0.08399 v -0.126391 h 0.116607 q 0.159008,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159008 0,-0.0791 -0.05789,-0.132916 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289478,0.07583 v -0.144331 q 0.154932,-0.0579 0.28377,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07584 -0.17124,0.135361 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02935,0.06442 0.02935,0.144331 0,0.177764 -0.1321,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.132099,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3310" />
+              <path
+                 d="M 29.76612,54.603618 V 56.24834 H 29.108068 V 56.121948 H 29.61445 V 54.730825 H 29.108068 V 54.603618 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3312" />
+              <path
+                 d="m 30.555456,55.983325 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3314" />
+            </g>
+            <g
+               aria-label="This"
+               id="text390"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 32.482315,55.945 V 54.818891 H 32.10314 v -0.139438 h 0.923882 v 0.139438 H 32.647031 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3317" />
+              <path
+                 d="m 33.191738,55.945 v -1.316104 h 0.15167 v 0.604234 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.14107,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.199781 V 55.945 h -0.151669 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3319" />
+              <path
+                 d="m 34.448316,55.945 v -0.784444 h -0.252784 v -0.126391 h 0.404453 v 0.784443 h 0.253599 V 55.945 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3321" />
+              <path
+                 d="M 35.205034,55.896889 V 55.73625 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08643,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290292,0.07583 -0.174502,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3323" />
+            </g>
+            <g
+               aria-label="node"
+               id="text392"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 37.200393,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3326" />
+              <path
+                 d="m 38.576838,55.970278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3328" />
+              <path
+                 d="m 39.811399,55.740327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 V 55.945 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3330" />
+              <path
+                 d="m 40.96197,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 H 40.8103 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3332" />
+            </g>
+            <g
+               aria-label="has"
+               id="text394"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 42.210391,55.945 v -1.316104 h 0.15167 v 0.604234 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.14107,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.199781 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3335" />
+              <path
+                 d="m 43.810264,55.740327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3337" />
+              <path
+                 d="M 44.223687,55.896889 V 55.73625 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3339" />
+            </g>
+            <g
+               aria-label="joined"
+               id="text396"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 46.232253,56.302158 v -0.141885 q 0.127207,0.03751 0.214458,0.03751 0.07583,0 0.128838,-0.02691 0.053,-0.02609 0.08236,-0.08888 0.03017,-0.06279 0.03017,-0.218535 v -0.702901 h -0.386514 v -0.126391 h 0.538184 v 0.800752 q 0,0.231582 -0.05463,0.321279 -0.05463,0.09051 -0.132099,0.129653 -0.07747,0.03914 -0.212012,0.03914 -0.09704,0 -0.20875,-0.02283 z M 46.6628,54.705547 q 0,-0.05137 0.03425,-0.07665 0.03506,-0.02528 0.06686,-0.02528 0.0318,0 0.06605,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03425,0.02528 -0.06605,0.02528 -0.0318,0 -0.06686,-0.02528 -0.03425,-0.02528 -0.03425,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3342" />
+              <path
+                 d="m 47.594836,55.970278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117421,0.136177 0.117421,0.344112 0,0.207934 -0.117421,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3344" />
+              <path
+                 d="m 48.476315,55.945 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 V 55.945 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3346" />
+              <path
+                 d="m 49.222434,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3348" />
+              <path
+                 d="m 50.981315,55.884658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3350" />
+              <path
+                 d="m 51.833439,55.740327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152486 V 55.945 h -0.152486 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3352" />
+            </g>
+            <g
+               aria-label="the"
+               id="text398"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 53.994002,55.908305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 55.236391 H 53.18428 V 55.11 h 0.227505 v -0.366944 h 0.15167 V 55.11 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3355" />
+              <path
+                 d="m 54.233738,55.945 v -1.316104 h 0.15167 v 0.604234 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.14107,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.199781 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3357" />
+              <path
+                 d="m 55.99262,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3359" />
+            </g>
+            <g
+               aria-label="cluster:"
+               id="text400"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 58.006894,55.918906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106005,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3362" />
+              <path
+                 d="m 58.486367,55.945 v -1.188897 h -0.272354 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3364" />
+              <path
+                 d="M 59.992465,55.034165 V 55.945 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179394,0.05627 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3366" />
+              <path
+                 d="M 60.255034,55.896889 V 55.73625 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3368" />
+              <path
+                 d="m 62.007392,55.908305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 55.236391 H 61.19767 V 55.11 h 0.227505 v -0.366944 h 0.15167 V 55.11 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3370" />
+              <path
+                 d="m 63.004662,55.884658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3372" />
+              <path
+                 d="m 63.325942,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.16227,-0.167979 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 H 63.86331 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3374" />
+              <path
+                 d="m 64.624106,55.983325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3376" />
+            </g>
+            <g
+               aria-label="Sep"
+               id="text402"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.12802246,58.089092 V 57.93416 q 0.19570312,0.09296 0.35552733,0.09296 0.0668652,0 0.12802246,-0.02528 0.0611572,-0.02609 0.0921435,-0.0742 0.0318018,-0.04811 0.0318018,-0.104375 0,-0.06605 -0.0432178,-0.12313 -0.0432178,-0.0579 -0.16227051,-0.127207 l -0.0831738,-0.04811 -0.0839893,-0.04811 Q 0.14106933,57.34542 0.14106933,57.150532 q 0,-0.1427 0.098667,-0.239736 0.0994824,-0.09785 0.30986328,-0.09785 0.13536132,0 0.26175292,0.03914 v 0.141069 q -0.13943847,-0.05382 -0.27153808,-0.05382 -0.10519043,0 -0.1704248,0.05545 -0.0644189,0.05545 -0.0644189,0.133731 0,0.07747 0.0497412,0.128838 0.0497412,0.05137 0.12720703,0.09459 l 0.0636035,0.03833 0.0790967,0.04811 0.0668652,0.03914 q 0.20793456,0.127207 0.20793456,0.319648 0,0.146777 -0.10682128,0.251968 -0.10682129,0.10519 -0.34248046,0.10519 -0.0750195,0 -0.14351563,-0.01305 -0.0676807,-0.01223 -0.17857909,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3379" />
+              <path
+                 d="m 1.8852734,58.055659 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 1.2704395 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z M 1.2794092,57.57211 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3381" />
+              <path
+                 d="m 2.2693408,57.409839 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141602,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353897 H 2.1176709 v -1.264732 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378077,0 0.2315821,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3383" />
+            </g>
+            <g
+               aria-label="18"
+               id="text404"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 4.4711639,57.98961 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136992 q 0.1785791,-0.07583 0.3098632,-0.196519 h 0.15167 v 1.139156 h 0.3041552 v 0.126391 H 4.1613007 V 57.98961 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3386" />
+              <path
+                 d="m 5.3836298,57.433486 -0.027725,-0.02039 q -0.057895,-0.04077 -0.1133448,-0.119868 -0.055449,-0.07991 -0.055449,-0.175318 0,-0.126391 0.099482,-0.215273 0.099483,-0.0897 0.2527832,-0.0897 0.093774,0 0.168794,0.03425 0.075019,0.03343 0.115791,0.09948 0.040771,0.06605 0.040771,0.144331 0,0.05382 -0.018755,0.104375 -0.018755,0.04974 -0.056265,0.09948 -0.036694,0.04893 -0.1467773,0.138623 l 0.068496,0.05463 q 0.1198682,0.09785 0.1614551,0.168794 0.041587,0.07094 0.041587,0.159009 0,0.136992 -0.099482,0.238105 -0.099483,0.100298 -0.2984473,0.100298 -0.1997803,0 -0.2992627,-0.09377 -0.099482,-0.09459 -0.099482,-0.234028 0,-0.207935 0.2658301,-0.393038 z m 0.155747,-0.07747 q 0.1149756,-0.08725 0.1435157,-0.145962 0.029355,-0.05871 0.029355,-0.109268 0,-0.06116 -0.053818,-0.110898 -0.053818,-0.05056 -0.1386231,-0.05056 -0.091328,0 -0.1394384,0.05463 -0.047295,0.05463 -0.047295,0.113345 0,0.05708 0.039956,0.107636 0.039956,0.05056 0.1280224,0.113345 z m -0.041587,0.158193 q -0.2152734,0.165532 -0.2152734,0.309863 0,0.08562 0.070942,0.144331 0.070942,0.05871 0.1679785,0.05871 0.088882,0 0.1590088,-0.05626 0.070127,-0.05627 0.070127,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.084805,-0.0848 -0.1182373,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3388" />
+            </g>
+            <g
+               aria-label="16:51:47"
+               id="text406"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 7.477164,57.98961 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769483,0.07828 v -0.136992 q 0.1785791,-0.07583 0.3098633,-0.196519 h 0.1516699 v 1.139156 h 0.3041553 v 0.126391 H 7.1673007 V 57.98961 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3391" />
+              <path
+                 d="m 8.2534531,57.522368 q 0.058711,-0.08725 0.1451464,-0.141884 0.087251,-0.05545 0.191626,-0.05545 0.098667,0 0.1867334,0.04811 0.088882,0.04811 0.1353613,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.1149756,0.132915 -0.3033398,0.132915 -0.2217969,0 -0.3318799,-0.185102 -0.1092676,-0.185918 -0.1092676,-0.472134 0,-0.316387 0.1394385,-0.499858 0.1394385,-0.184287 0.3775439,-0.184287 0.1280225,0 0.2487061,0.03751 v 0.153301 q -0.1353613,-0.06442 -0.2552295,-0.06442 -0.1696094,0 -0.2625684,0.155747 -0.092959,0.155747 -0.092959,0.394668 z m 0.2976318,0.505567 q 0.061157,0 0.1231299,-0.03588 0.061973,-0.03669 0.097036,-0.111714 0.035879,-0.07583 0.035879,-0.164717 0,-0.115791 -0.060342,-0.189995 -0.059526,-0.0742 -0.1704248,-0.0742 -0.1149756,0 -0.1891797,0.08644 -0.073389,0.08562 -0.073389,0.20875 0,0.123946 0.071758,0.203042 0.072573,0.07828 0.1655322,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3393" />
+              <path
+                 d="m 9.5173691,58.154326 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3395" />
+              <path
+                 d="m 10.171344,57.457949 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3397" />
+              <path
+                 d="m 11.482555,57.98961 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176949,0.07828 v -0.136992 q 0.178579,-0.07583 0.309864,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 H 11.172691 V 57.98961 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3399" />
+              <path
+                 d="m 12.521412,58.154326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3401" />
+              <path
+                 d="m 13.598595,58.116001 v -0.353896 h -0.537368 v -0.127207 l 0.537368,-0.784444 h 0.152485 v 0.784444 h 0.234029 v 0.127207 H 13.75108 v 0.353896 z m 0,-0.481103 v -0.554493 l -0.375913,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3403" />
+              <path
+                 d="m 14.283556,58.116001 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.132099,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3405" />
+            </g>
+            <g
+               aria-label="m1c29"
+               id="text408"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 16.089895,58.116001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03832,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 H 16.46907 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3408" />
+              <path
+                 d="m 17.496511,57.98961 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 H 17.186648 V 57.98961 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3410" />
+              <path
+                 d="m 18.92759,58.089907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3412" />
+              <path
+                 d="m 19.92323,58.116001 h -0.765688 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08643,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194887,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3414" />
+              <path
+                 d="m 20.800632,57.444087 q -0.05871,0.08725 -0.145962,0.1427 -0.08643,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114975,-0.31231 0.115791,-0.13373 0.304156,-0.13373 0.221796,0 0.331064,0.185917 0.110083,0.185103 0.110083,0.471319 0,0.316387 -0.139438,0.500674 -0.139439,0.183471 -0.377544,0.183471 -0.128023,0 -0.248706,-0.03833 v -0.152485 q 0.135361,0.0636 0.255229,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297631,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164716,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3416" />
+            </g>
+            <g
+               aria-label="sh[1273]:"
+               id="text410"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 22.180993,58.067891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3419" />
+              <path
+                 d="m 23.17174,58.116001 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3421" />
+              <path
+                 d="m 24.336173,58.419341 v -1.644722 h 0.658052 v 0.127207 h -0.506382 v 1.391123 h 0.506382 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3423" />
+              <path
+                 d="m 25.511208,57.98961 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 H 25.201345 V 57.98961 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3425" />
+              <path
+                 d="M 26.936579,58.116001 H 26.17089 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3427" />
+              <path
+                 d="m 27.310861,58.116001 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110899 0.121499,-0.171241 l 0.132099,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145147,0.219351 -0.02935,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3429" />
+              <path
+                 d="m 28.170324,58.093169 v -0.159824 q 0.186734,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07584 -0.305787,-0.07584 h -0.08399 v -0.126392 h 0.116607 q 0.159008,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.05789,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289478,0.07584 V 56.87084 q 0.154932,-0.0579 0.28377,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08643 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02935,0.06442 0.02935,0.144331 0,0.177763 -0.1321,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.132099,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3431" />
+              <path
+                 d="m 29.76612,56.774619 v 1.644722 h -0.658052 v -0.126392 h 0.506382 v -1.391123 h -0.506382 v -0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3433" />
+              <path
+                 d="m 30.555456,58.154326 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3435" />
+            </g>
+            <g
+               aria-label="*"
+               id="text412"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 32.487207,57.578633 0.01712,-0.282954 -0.230766,0.154932 -0.07583,-0.1321 0.250337,-0.122315 -0.250337,-0.123945 0.07583,-0.129653 0.230766,0.154116 -0.01712,-0.283769 h 0.153301 l -0.0212,0.283769 0.235659,-0.154116 0.07665,0.129653 -0.251152,0.123945 0.251152,0.122315 -0.07665,0.1321 -0.235659,-0.154932 0.0212,0.282954 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3438" />
+            </g>
+            <g
+               aria-label="Certificate"
+               id="text414"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 34.955188,58.101323 q -0.141884,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.12476,-0.07991 -0.194072,-0.236475 -0.06931,-0.157378 -0.06931,-0.355527 0,-0.196519 0.0685,-0.353081 0.0685,-0.156563 0.193256,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.11253,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07584 -0.260937,-0.07584 -0.09785,0 -0.179395,0.06686 -0.08073,0.06687 -0.130468,0.196519 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130468 0.131285,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260937,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3441" />
+              <path
+                 d="m 35.953274,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 H 35.33844 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 35.34741,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3443" />
+              <path
+                 d="m 36.274554,58.116001 v -0.910835 h 0.151669 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 H 36.811922 V 57.32585 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3445" />
+              <path
+                 d="m 37.960047,58.079307 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 H 37.5295 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3447" />
+              <path
+                 d="m 38.455013,58.116001 v -0.784443 h -0.252784 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3449" />
+              <path
+                 d="m 39.413142,58.116001 v -0.708608 h -0.202226 v -0.126392 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361236 v 0.126392 h -0.361236 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3451" />
+              <path
+                 d="m 40.457708,58.116001 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3453" />
+              <path
+                 d="m 41.97033,58.089907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3455" />
+              <path
+                 d="m 42.803699,57.911328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3457" />
+              <path
+                 d="m 43.968133,58.079307 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3459" />
+              <path
+                 d="m 44.965403,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 44.359539,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3461" />
+            </g>
+            <g
+               aria-label="signing"
+               id="text416"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 46.228991,58.067891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3464" />
+              <path
+                 d="m 47.474968,58.116001 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3466" />
+              <path
+                 d="m 48.829397,57.911328 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280507,0.07013 -0.165533,0 -0.335142,-0.08481 V 58.25707 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182657,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3468" />
+              <path
+                 d="m 49.222434,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3470" />
+              <path
+                 d="m 50.479011,58.116001 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3472" />
+              <path
+                 d="m 51.225129,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3474" />
+              <path
+                 d="m 52.834787,57.911328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280507,0.07013 -0.165533,0 -0.335142,-0.08481 V 58.25707 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182657,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3476" />
+            </g>
+            <g
+               aria-label="request"
+               id="text418"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 54.311859,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 H 54.849227 V 57.32585 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3479" />
+              <path
+                 d="m 55.993275,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 55.387411,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3481" />
+              <path
+                 d="m 56.845399,57.911328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 1.264732 h -0.152486 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3483" />
+              <path
+                 d="m 57.987816,57.205166 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3485" />
+              <path
+                 d="m 58.997318,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 58.391454,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3487" />
+              <path
+                 d="m 59.251732,58.067891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3489" />
+              <path
+                 d="m 61.004091,58.079307 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3491" />
+            </g>
+            <g
+               aria-label="was"
+               id="text420"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 62.288717,58.116001 -0.148408,-0.910835 h 0.141069 l 0.08644,0.554492 0.02283,0.128838 0.02202,-0.128838 0.145146,-0.554492 h 0.136177 l 0.163901,0.554492 0.02854,0.128838 0.01876,-0.128838 0.08725,-0.554492 h 0.116607 l -0.147593,0.910835 h -0.141885 l -0.174502,-0.586294 -0.02773,-0.128838 h -0.0041 l -0.02528,0.128023 -0.15167,0.587109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3494" />
+              <path
+                 d="m 63.850265,57.911328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3496" />
+              <path
+                 d="m 64.263688,58.067891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145961,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3498" />
+            </g>
+            <g
+               aria-label="sent"
+               id="text422"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 66.268996,58.067891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.151669,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3501" />
+              <path
+                 d="m 68.017277,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 67.411413,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3503" />
+              <path
+                 d="m 68.261091,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3505" />
+              <path
+                 d="m 70.02405,58.079307 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3507" />
+            </g>
+            <g
+               aria-label="to"
+               id="text424"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 72.030001,58.079307 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119869,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 57.407393 H 71.22028 v -0.126392 h 0.227504 v -0.366943 h 0.15167 v 0.366943 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3510" />
+              <path
+                 d="m 72.644835,58.141279 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3512" />
+            </g>
+            <g
+               aria-label="apiserver"
+               id="text426"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 74.87292,57.911328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.17858,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 H 74.90146 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3515" />
+              <path
+                 d="m 75.415996,57.409839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3517" />
+              <path
+                 d="m 76.532319,58.116001 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3519" />
+              <path
+                 d="m 77.289038,58.067891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.151669,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3521" />
+              <path
+                 d="m 79.037319,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 78.431455,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3523" />
+              <path
+                 d="m 79.358598,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 H 79.895966 V 57.32585 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3525" />
+              <path
+                 d="m 80.578481,58.116001 -0.395483,-0.910835 h 0.166348 l 0.312309,0.72084 0.318833,-0.72084 h 0.15167 l -0.398745,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3527" />
+              <path
+                 d="m 82.041362,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 81.435498,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3529" />
+              <path
+                 d="m 82.362641,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 v 0.328618 H 82.900009 V 57.32585 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3531" />
+            </g>
+            <g
+               aria-label="and"
+               id="text428"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.892916,57.911328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3534" />
+              <path
+                 d="m 85.295739,58.116001 v -0.910835 h 0.151669 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3536" />
+              <path
+                 d="m 86.905397,57.911328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3538" />
+            </g>
+            <g
+               aria-label="a"
+               id="text430"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 88.900919,57.911328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 H 88.92946 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3541" />
+            </g>
+            <g
+               aria-label="response"
+               id="text432"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 90.383858,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 H 90.921226 V 57.32585 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3544" />
+              <path
+                 d="m 92.065274,58.055659 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 H 91.45044 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 91.459409,57.57211 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3546" />
+              <path
+                 d="m 92.319688,58.067891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3548" />
+              <path
+                 d="m 93.450689,57.409839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3550" />
+              <path
+                 d="m 94.68688,58.141279 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3552" />
+              <path
+                 d="m 95.31313,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3554" />
+              <path
+                 d="m 96.325079,58.067891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3556" />
+              <path
+                 d="m 98.07336,58.055659 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 97.467496,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3558" />
+            </g>
+            <g
+               aria-label="was"
+               id="text434"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 99.362715,58.116001 -0.148408,-0.910835 h 0.141069 l 0.08644,0.554492 0.02283,0.128838 0.02202,-0.128838 0.145147,-0.554492 h 0.136176 l 0.163902,0.554492 0.02854,0.128838 0.01875,-0.128838 0.08725,-0.554492 h 0.11661 l -0.1476,0.910835 h -0.14188 l -0.174502,-0.586294 -0.02773,-0.128838 h -0.0041 l -0.02528,0.128023 -0.15167,0.587109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3561" />
+              <path
+                 d="m 100.92426,57.911328 q -0.0693,0.11416 -0.16716,0.172056 -0.097,0.05789 -0.17858,0.05789 -0.11416,0 -0.20549,-0.09867 -0.0905,-0.09867 -0.0905,-0.299262 0,-0.158194 0.0603,-0.282139 0.0603,-0.124761 0.16146,-0.196518 0.10111,-0.07257 0.25033,-0.07257 0.0432,0 0.13047,0.009 0.013,0.0016 0.0391,0.0041 h 0.15249 v 0.643374 q 0,0.164717 0.0343,0.267461 h -0.1582 q -0.0179,-0.07502 -0.0285,-0.204673 z m 0,-0.18021 v -0.39059 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14025,0 -0.23402,0.108452 -0.093,0.108453 -0.093,0.295186 0,0.135361 0.0506,0.204673 0.0514,0.0685 0.11661,0.0685 0.0709,0 0.15656,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3563" />
+              <path
+                 d="m 101.33769,58.067891 v -0.16064 q 0.0913,0.05953 0.19325,0.08399 0.10193,0.02365 0.17287,0.02365 0.11498,0 0.16554,-0.03669 0.0506,-0.03751 0.0506,-0.09296 0,-0.0367 -0.0237,-0.06279 -0.0236,-0.02609 -0.11742,-0.06442 l -0.0522,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.21365,-0.122314 -0.0448,-0.05545 -0.0448,-0.135361 0,-0.11253 0.0864,-0.185103 0.0872,-0.07257 0.28214,-0.07257 0.14596,0 0.27643,0.0424 v 0.137808 q -0.15004,-0.05382 -0.28214,-0.05382 -0.0962,0 -0.15085,0.03425 -0.0538,0.03343 -0.0538,0.08399 0,0.04893 0.0473,0.07828 0.0465,0.02936 0.15167,0.06768 l 0.10275,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.0571,0.06034 0.0571,0.150855 0,0.118237 -0.0913,0.194887 -0.0905,0.07583 -0.2903,0.07583 -0.1745,0 -0.35878,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3565" />
+            </g>
+            <g
+               aria-label="received."
+               id="text436"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 103.40986,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.0709,-0.112529 0.16227,-0.167978 0.0921,-0.05627 0.20467,-0.05627 0.0824,0 0.16472,0.02528 v 0.328618 h -0.14596 V 57.32585 q -0.0383,-0.0065 -0.0603,-0.0065 -0.0848,0 -0.16635,0.06687 -0.0815,0.06686 -0.15901,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3568" />
+              <path
+                 d="m 105.09127,58.055659 q -0.18184,0.08644 -0.34411,0.08644 -0.12313,0 -0.22016,-0.06116 -0.097,-0.06116 -0.15575,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.0554,-0.239736 0.0555,-0.114976 0.15494,-0.178579 0.0995,-0.06442 0.22179,-0.06442 0.16227,0 0.26012,0.115791 0.0987,0.115791 0.0987,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.0391,0.172871 0.04,0.07828 0.10438,0.117422 0.0644,0.03914 0.14677,0.03914 0.14678,0 0.32454,-0.09785 z m -0.60586,-0.483549 h 0.45419 v -0.02202 q 0,-0.111714 -0.0546,-0.177764 -0.0546,-0.06605 -0.14596,-0.06605 -0.0921,0 -0.15983,0.06768 -0.0669,0.06686 -0.0938,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3570" />
+              <path
+                 d="m 106.10159,58.089907 q -0.15248,0.05137 -0.29029,0.05137 -0.13699,0 -0.24381,-0.06279 -0.10601,-0.0636 -0.16554,-0.17124 -0.0595,-0.108452 -0.0595,-0.24626 0,-0.207119 0.13454,-0.344111 0.13536,-0.136992 0.32617,-0.136992 0.14107,0 0.29845,0.053 v 0.145962 q -0.15901,-0.07257 -0.28458,-0.07257 -0.0832,0 -0.15657,0.04159 -0.0734,0.04077 -0.11334,0.128023 -0.04,0.08725 -0.04,0.179394 0,0.12313 0.0766,0.234844 0.0775,0.111714 0.24219,0.111714 0.0497,0 0.0978,-0.0065 0.0481,-0.0073 0.17776,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3572" />
+              <path
+                 d="m 107.09397,58.055659 q -0.18184,0.08644 -0.34411,0.08644 -0.12313,0 -0.22017,-0.06116 -0.097,-0.06116 -0.15574,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.0554,-0.239736 0.0555,-0.114976 0.15493,-0.178579 0.0995,-0.06442 0.2218,-0.06442 0.16227,0 0.26012,0.115791 0.0987,0.115791 0.0987,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.0391,0.172871 0.0399,0.07828 0.10437,0.117422 0.0644,0.03914 0.14678,0.03914 0.14678,0 0.32454,-0.09785 z m -0.60586,-0.483549 h 0.45419 v -0.02202 q 0,-0.111714 -0.0546,-0.177764 -0.0546,-0.06605 -0.14597,-0.06605 -0.0921,0 -0.15982,0.06768 -0.0669,0.06686 -0.0938,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3574" />
+              <path
+                 d="m 107.59301,58.116001 v -0.784443 h -0.25278 v -0.126392 h 0.40445 v 0.784444 h 0.2536 v 0.126391 z m -0.0253,-1.239453 q 0,-0.05137 0.0351,-0.07665 0.0351,-0.02528 0.0661,-0.02528 0.0318,0 0.0669,0.02528 0.0351,0.02528 0.0351,0.07665 0,0.05056 -0.0351,0.07583 -0.0351,0.02528 -0.0669,0.02528 -0.031,0 -0.0661,-0.02528 -0.0351,-0.02528 -0.0351,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3576" />
+              <path
+                 d="m 108.63513,58.116001 -0.39548,-0.910835 h 0.16635 l 0.31231,0.72084 0.31883,-0.72084 h 0.15167 l -0.39875,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3578" />
+              <path
+                 d="m 110.09801,58.055659 q -0.18184,0.08644 -0.34411,0.08644 -0.12313,0 -0.22016,-0.06116 -0.097,-0.06116 -0.15575,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.0555,-0.239736 0.0554,-0.114976 0.15493,-0.178579 0.0995,-0.06442 0.2218,-0.06442 0.16227,0 0.26012,0.115791 0.0987,0.115791 0.0987,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.0391,0.172871 0.04,0.07828 0.10437,0.117422 0.0644,0.03914 0.14678,0.03914 0.14678,0 0.32454,-0.09785 z m -0.60586,-0.483549 h 0.45419 v -0.02202 q 0,-0.111714 -0.0546,-0.177764 -0.0546,-0.06605 -0.14596,-0.06605 -0.0922,0 -0.15983,0.06768 -0.0669,0.06686 -0.0938,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3580" />
+              <path
+                 d="m 110.95014,57.911328 q -0.0693,0.11416 -0.16717,0.172056 -0.097,0.05789 -0.17858,0.05789 -0.11416,0 -0.20548,-0.09867 -0.0905,-0.09867 -0.0905,-0.299262 0,-0.158194 0.0603,-0.282139 0.0603,-0.124761 0.16145,-0.196518 0.10111,-0.07257 0.25034,-0.07257 0.0432,0 0.13047,0.009 0.013,0.0016 0.0391,0.0041 v -0.405268 h 0.15248 v 1.316103 h -0.15248 z m 0,-0.18021 v -0.39059 q -0.0807,-0.0212 -0.15004,-0.0212 -0.14026,0 -0.23403,0.108452 -0.093,0.108453 -0.093,0.295186 0,0.135361 0.0506,0.204673 0.0514,0.0685 0.1166,0.0685 0.0709,0 0.15657,-0.07176 0.0856,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3582" />
+              <path
+                 d="m 111.71746,58.154326 q -0.0546,0 -0.0938,-0.03914 -0.0391,-0.03914 -0.0391,-0.09378 0,-0.05545 0.0391,-0.09377 0.04,-0.03914 0.0938,-0.03914 0.0538,0 0.093,0.03914 0.04,0.03833 0.04,0.09377 0,0.05463 -0.0391,0.09378 -0.0391,0.03914 -0.0938,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3584" />
+            </g>
+            <g
+               aria-label="Sep"
+               id="text438"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.12802246,60.26009 v -0.154932 q 0.19570312,0.09296 0.35552733,0.09296 0.0668652,0 0.12802246,-0.02528 0.0611572,-0.02609 0.0921435,-0.07421 0.0318018,-0.04811 0.0318018,-0.104375 0,-0.06605 -0.0432178,-0.123129 -0.0432178,-0.0579 -0.16227051,-0.127207 l -0.0831738,-0.04811 -0.0839893,-0.04811 Q 0.14106933,59.516418 0.14106933,59.32153 q 0,-0.1427 0.098667,-0.239736 0.0994824,-0.09785 0.30986328,-0.09785 0.13536132,0 0.26175292,0.03914 v 0.141069 q -0.13943847,-0.05382 -0.27153808,-0.05382 -0.10519043,0 -0.1704248,0.05545 -0.0644189,0.05545 -0.0644189,0.13373 0,0.07747 0.0497412,0.128838 0.0497412,0.05137 0.12720703,0.09459 l 0.0636035,0.03833 0.0790967,0.04811 0.0668652,0.03914 q 0.20793456,0.127207 0.20793456,0.319649 0,0.146777 -0.10682128,0.251968 -0.10682129,0.10519 -0.34248046,0.10519 -0.0750195,0 -0.14351563,-0.01305 -0.0676807,-0.01223 -0.17857909,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3587" />
+              <path
+                 d="m 1.8852734,60.226657 q -0.1818408,0.08643 -0.3441113,0.08643 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.17858 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115792 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 1.2704395 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3589" />
+              <path
+                 d="m 2.2693408,59.580837 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141602,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158194 -0.061157,0.282954 -0.060342,0.123946 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353896 H 2.1176709 v -1.264731 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378077,0 0.2315821,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3591" />
+            </g>
+            <g
+               aria-label="18"
+               id="text440"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 4.4711639,60.160607 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 V 59.21797 q 0.1785791,-0.07583 0.3098632,-0.196518 h 0.15167 v 1.139155 h 0.3041552 v 0.126392 H 4.1613007 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3594" />
+              <path
+                 d="m 5.3836298,59.604484 -0.027725,-0.02039 q -0.057895,-0.04077 -0.1133448,-0.119868 -0.055449,-0.07991 -0.055449,-0.175317 0,-0.126392 0.099482,-0.215274 0.099483,-0.0897 0.2527832,-0.0897 0.093774,0 0.168794,0.03425 0.075019,0.03343 0.115791,0.09948 0.040771,0.06605 0.040771,0.144331 0,0.05382 -0.018755,0.104375 -0.018755,0.04974 -0.056265,0.09948 -0.036694,0.04893 -0.1467773,0.138623 l 0.068496,0.05463 q 0.1198682,0.09785 0.1614551,0.168794 0.041587,0.07094 0.041587,0.159009 0,0.136992 -0.099482,0.238105 -0.099483,0.100298 -0.2984473,0.100298 -0.1997803,0 -0.2992627,-0.09377 -0.099482,-0.09459 -0.099482,-0.234029 0,-0.207934 0.2658301,-0.393037 z m 0.155747,-0.07747 q 0.1149756,-0.08725 0.1435157,-0.145962 0.029355,-0.05871 0.029355,-0.109267 0,-0.06116 -0.053818,-0.110899 -0.053818,-0.05056 -0.1386231,-0.05056 -0.091328,0 -0.1394384,0.05463 -0.047295,0.05463 -0.047295,0.113344 0,0.05708 0.039956,0.107637 0.039956,0.05056 0.1280224,0.113345 z m -0.041587,0.158194 q -0.2152734,0.165532 -0.2152734,0.309863 0,0.08562 0.070942,0.144331 0.070942,0.05871 0.1679785,0.05871 0.088882,0 0.1590088,-0.05627 0.070127,-0.05626 0.070127,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.084805,-0.0848 -0.1182373,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3596" />
+            </g>
+            <g
+               aria-label="16:51:47"
+               id="text442"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 7.477164,60.160607 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769483,0.07828 V 59.21797 q 0.1785791,-0.07583 0.3098633,-0.196518 h 0.1516699 v 1.139155 h 0.3041553 v 0.126392 H 7.1673007 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3599" />
+              <path
+                 d="m 8.2534531,59.693366 q 0.058711,-0.08725 0.1451464,-0.141885 0.087251,-0.05545 0.191626,-0.05545 0.098667,0 0.1867334,0.04811 0.088882,0.04811 0.1353613,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.1149756,0.132915 -0.3033398,0.132915 -0.2217969,0 -0.3318799,-0.185103 -0.1092676,-0.185918 -0.1092676,-0.472133 0,-0.316387 0.1394385,-0.499859 0.1394385,-0.184287 0.3775439,-0.184287 0.1280225,0 0.2487061,0.03751 v 0.153301 q -0.1353613,-0.06442 -0.2552295,-0.06442 -0.1696094,0 -0.2625684,0.155747 -0.092959,0.155747 -0.092959,0.394668 z m 0.2976318,0.505566 q 0.061157,0 0.1231299,-0.03588 0.061973,-0.03669 0.097036,-0.111713 0.035879,-0.07584 0.035879,-0.164717 0,-0.115791 -0.060342,-0.189995 -0.059526,-0.0742 -0.1704248,-0.0742 -0.1149756,0 -0.1891797,0.08643 -0.073389,0.08562 -0.073389,0.20875 0,0.123945 0.071758,0.203042 0.072573,0.07828 0.1655322,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3601" />
+              <path
+                 d="m 9.5173691,60.325324 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09378 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09378 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3603" />
+              <path
+                 d="m 10.171344,59.628947 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165533 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3605" />
+              <path
+                 d="m 11.482555,60.160607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176949,0.07828 V 59.21797 q 0.178579,-0.07583 0.309864,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 h -0.765689 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3607" />
+              <path
+                 d="m 12.521412,60.325324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3609" />
+              <path
+                 d="m 13.598595,60.286999 v -0.353897 h -0.537368 v -0.127207 l 0.537368,-0.784443 h 0.152485 v 0.784443 h 0.234029 v 0.127207 H 13.75108 v 0.353897 z m 0,-0.481104 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3611" />
+              <path
+                 d="m 14.283556,60.286999 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110898 0.121499,-0.17124 l 0.132099,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.656421 v -0.152485 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3613" />
+            </g>
+            <g
+               aria-label="m1c29"
+               id="text444"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 16.089895,60.286999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03832,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 H 16.46907 v -0.621358 q 0,-0.120683 -0.02365,-0.141884 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3616" />
+              <path
+                 d="m 17.496511,60.160607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 59.21797 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 h -0.765688 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3618" />
+              <path
+                 d="m 18.92759,60.260905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3620" />
+              <path
+                 d="M 19.92323,60.286999 H 19.157542 V 60.14756 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08643,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125577 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.05789 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194887,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3622" />
+              <path
+                 d="m 20.800632,59.615085 q -0.05871,0.08725 -0.145962,0.1427 -0.08643,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114975,-0.312309 0.115791,-0.133731 0.304156,-0.133731 0.221796,0 0.331064,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183472 -0.377544,0.183472 -0.128023,0 -0.248706,-0.03833 v -0.152486 q 0.135361,0.0636 0.255229,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297631,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164716 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164716,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3624" />
+            </g>
+            <g
+               aria-label="sh[1273]:"
+               id="text446"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 22.180993,60.238888 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3627" />
+              <path
+                 d="m 23.17174,60.286999 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.199781 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3629" />
+              <path
+                 d="m 24.336173,60.590339 v -1.644722 h 0.658052 v 0.127207 h -0.506382 v 1.391123 h 0.506382 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3631" />
+              <path
+                 d="m 25.511208,60.160607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 59.21797 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 h -0.765688 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3633" />
+              <path
+                 d="M 26.936579,60.286999 H 26.17089 V 60.14756 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125577 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.05789 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06686 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3635" />
+              <path
+                 d="m 27.310861,60.286999 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110898 0.121499,-0.17124 l 0.132099,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.656421 v -0.152485 h 0.803198 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.219351 -0.02935,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3637" />
+              <path
+                 d="m 28.170324,60.264167 v -0.159824 q 0.186734,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07584 -0.305787,-0.07584 h -0.08399 v -0.126391 h 0.116607 q 0.159008,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159008 0,-0.0791 -0.05789,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289478,0.07583 v -0.144331 q 0.154932,-0.0579 0.28377,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.17124,0.135361 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02935,0.06442 0.02935,0.144331 0,0.177764 -0.1321,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.132099,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3639" />
+              <path
+                 d="m 29.76612,58.945617 v 1.644722 h -0.658052 v -0.126392 h 0.506382 v -1.391123 h -0.506382 v -0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3641" />
+              <path
+                 d="m 30.555456,60.325324 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3643" />
+            </g>
+            <g
+               aria-label="*"
+               id="text448"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 32.487207,59.749631 0.01712,-0.282954 -0.230766,0.154931 -0.07583,-0.132099 0.250337,-0.122315 -0.250337,-0.123945 0.07583,-0.129654 0.230766,0.154117 -0.01712,-0.28377 h 0.153301 l -0.0212,0.28377 0.235659,-0.154117 0.07665,0.129654 -0.251152,0.123945 0.251152,0.122315 -0.07665,0.132099 -0.235659,-0.154931 0.0212,0.282954 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3646" />
+            </g>
+            <g
+               aria-label="The"
+               id="text450"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 34.486316,60.286999 V 59.16089 h -0.379175 v -0.139438 h 0.923882 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3649" />
+              <path
+                 d="m 35.19574,60.286999 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02038,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.199781 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3651" />
+              <path
+                 d="m 36.954622,60.226657 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155748,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115792 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3653" />
+            </g>
+            <g
+               aria-label="Kubelet"
+               id="text452"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 38.204023,60.286999 v -1.265547 h 0.164716 v 0.620542 l 0.470503,-0.620542 h 0.174502 l -0.454194,0.600972 0.517798,0.664575 h -0.206304 l -0.502305,-0.645005 v 0.645005 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3656" />
+              <path
+                 d="m 39.953119,59.376164 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179394,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3658" />
+              <path
+                 d="m 40.345341,59.580837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158194 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3660" />
+              <path
+                 d="m 41.963969,60.226657 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115792 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3662" />
+              <path
+                 d="m 42.452411,60.286999 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3664" />
+              <path
+                 d="m 43.966664,60.226657 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115792 0.09867,0.115791 0.09867,0.357158 v 0.03262 H 43.35183 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 43.3608,59.743107 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3666" />
+              <path
+                 d="m 44.972089,60.250304 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 59.57839 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.151669 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3668" />
+            </g>
+            <g
+               aria-label="was"
+               id="text454"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 46.256716,60.286999 -0.148408,-0.910835 h 0.141069 l 0.08644,0.554492 0.02283,0.128838 0.02202,-0.128838 0.145147,-0.554492 h 0.136176 l 0.163902,0.554492 0.02854,0.128838 0.01876,-0.128838 0.08725,-0.554492 h 0.116606 l -0.147593,0.910835 h -0.141884 l -0.174502,-0.586294 -0.02772,-0.128838 h -0.0041 l -0.02528,0.128022 -0.15167,0.58711 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3671" />
+              <path
+                 d="m 47.818264,60.082326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3673" />
+              <path
+                 d="m 48.231687,60.238888 v -0.160639 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3675" />
+            </g>
+            <g
+               aria-label="informed"
+               id="text456"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 50.48162,60.286999 v -0.784444 h -0.252784 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3678" />
+              <path
+                 d="m 51.227738,60.286999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3680" />
+              <path
+                 d="M 52.441097,60.286999 V 59.57839 h -0.202226 v -0.126391 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126391 h -0.361235 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3682" />
+              <path
+                 d="m 53.605531,60.312277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117421,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3684" />
+              <path
+                 d="m 54.309247,60.286999 v -0.910835 h 0.151669 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3686" />
+              <path
+                 d="m 55.164632,60.286999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141884 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3688" />
+              <path
+                 d="m 56.99201,60.226657 q -0.18184,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115792 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3690" />
+              <path
+                 d="m 57.844134,60.082326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152486 v 1.316104 h -0.152486 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3692" />
+            </g>
+            <g
+               aria-label="of"
+               id="text458"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 59.619489,60.312277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3695" />
+              <path
+                 d="M 60.457751,60.286999 V 59.57839 h -0.202227 v -0.126391 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125577,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126391 h -0.361235 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3697" />
+            </g>
+            <g
+               aria-label="the"
+               id="text460"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 63.012003,60.250304 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 59.57839 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3700" />
+              <path
+                 d="m 63.25174,60.286999 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.199781 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3702" />
+              <path
+                 d="m 65.010622,60.226657 q -0.181841,0.08643 -0.344112,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115792 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3704" />
+            </g>
+            <g
+               aria-label="new"
+               id="text462"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 66.258395,60.286999 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3707" />
+              <path
+                 d="m 68.017277,60.226657 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115792 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3709" />
+              <path
+                 d="m 68.299416,60.286999 -0.148408,-0.910835 h 0.141069 l 0.08644,0.554492 0.02283,0.128838 0.02202,-0.128838 0.145147,-0.554492 h 0.136176 l 0.163902,0.554492 0.02854,0.128838 0.01875,-0.128838 0.08725,-0.554492 h 0.116606 l -0.147593,0.910835 h -0.141884 l -0.174502,-0.586294 -0.02773,-0.128838 h -0.0041 l -0.02528,0.128022 -0.15167,0.58711 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3711" />
+            </g>
+            <g
+               aria-label="secure"
+               id="text464"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 70.276992,60.238888 v -0.160639 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3714" />
+              <path
+                 d="m 72.025273,60.226657 q -0.181841,0.08643 -0.344112,0.08643 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115792 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3716" />
+              <path
+                 d="m 73.03559,60.260905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3718" />
+              <path
+                 d="m 74.019814,59.376164 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179394,0.05627 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3720" />
+              <path
+                 d="m 74.349247,60.286999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3722" />
+              <path
+                 d="m 76.030663,60.226657 q -0.18184,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115792 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3724" />
+            </g>
+            <g
+               aria-label="connection"
+               id="text466"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 78.046895,60.260905 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106005,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3727" />
+              <path
+                 d="m 78.656836,60.312277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3729" />
+              <path
+                 d="m 79.283086,60.286999 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3731" />
+              <path
+                 d="m 80.284434,60.286999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3733" />
+              <path
+                 d="m 82.043316,60.226657 q -0.181841,0.08643 -0.344112,0.08643 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115792 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3735" />
+              <path
+                 d="m 83.053633,60.260905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3737" />
+              <path
+                 d="m 84.050088,60.250304 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 59.57839 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3739" />
+              <path
+                 d="m 84.545054,60.286999 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3741" />
+              <path
+                 d="m 85.66627,60.312277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117421,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3743" />
+              <path
+                 d="m 86.29252,60.286999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3745" />
+            </g>
+            <g
+               aria-label="details."
+               id="text468"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 88.910705,60.082326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.17858,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 v 1.316104 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3748" />
+              <path
+                 d="m 90.061276,60.226657 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115792 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3750" />
+              <path
+                 d="m 91.066701,60.250304 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 59.57839 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3752" />
+              <path
+                 d="m 91.904963,60.082326 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3754" />
+              <path
+                 d="m 92.563014,60.286999 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3756" />
+              <path
+                 d="m 93.553761,60.286999 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3758" />
+              <path
+                 d="m 94.321081,60.238888 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3760" />
+              <path
+                 d="m 95.68611,60.325324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3762" />
+            </g>
+            <g
+               aria-label="Sep"
+               id="text470"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.12802246,62.431091 v -0.154932 q 0.19570312,0.09296 0.35552733,0.09296 0.0668652,0 0.12802246,-0.02528 0.0611572,-0.02609 0.0921435,-0.0742 0.0318018,-0.04811 0.0318018,-0.104375 0,-0.06605 -0.0432178,-0.12313 -0.0432178,-0.05789 -0.16227051,-0.127207 l -0.0831738,-0.04811 -0.0839893,-0.04811 q -0.22179687,-0.131284 -0.22179687,-0.326172 0,-0.1427 0.098667,-0.239736 0.0994824,-0.09785 0.30986328,-0.09785 0.13536132,0 0.26175292,0.03914 v 0.14107 q -0.13943847,-0.05382 -0.27153808,-0.05382 -0.10519043,0 -0.1704248,0.05545 -0.0644189,0.05545 -0.0644189,0.133731 0,0.07747 0.0497412,0.128838 0.0497412,0.05137 0.12720703,0.09459 l 0.0636035,0.03833 0.0790967,0.04811 0.0668652,0.03914 q 0.20793456,0.127207 0.20793456,0.319648 0,0.146778 -0.10682128,0.251968 -0.10682129,0.10519 -0.34248046,0.10519 -0.0750195,0 -0.14351563,-0.01305 -0.0676807,-0.01223 -0.17857909,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3765" />
+              <path
+                 d="m 1.8852734,62.397658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.12476 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 1.2704395 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z M 1.2794092,61.914109 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3767" />
+              <path
+                 d="m 2.2693408,61.751838 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141602,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353897 H 2.1176709 v -1.264732 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378077,0 0.2315821,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3769" />
+            </g>
+            <g
+               aria-label="18"
+               id="text472"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 4.4711639,62.331609 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136992 q 0.1785791,-0.07584 0.3098632,-0.196519 h 0.15167 v 1.139156 H 4.9269891 V 62.458 H 4.1613007 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3772" />
+              <path
+                 d="M 5.3836298,61.775486 5.3559052,61.7551 q -0.057895,-0.04077 -0.1133448,-0.119868 -0.055449,-0.07991 -0.055449,-0.175318 0,-0.126391 0.099482,-0.215273 0.099483,-0.0897 0.2527832,-0.0897 0.093774,0 0.168794,0.03425 0.075019,0.03343 0.115791,0.09948 0.040771,0.06605 0.040771,0.144331 0,0.05382 -0.018755,0.104375 -0.018755,0.04974 -0.056265,0.09948 -0.036694,0.04893 -0.1467773,0.138623 l 0.068496,0.05463 q 0.1198682,0.09785 0.1614551,0.168794 0.041587,0.07094 0.041587,0.159009 0,0.136992 -0.099482,0.238106 -0.099483,0.100297 -0.2984473,0.100297 -0.1997803,0 -0.2992627,-0.09377 -0.099482,-0.09459 -0.099482,-0.234028 0,-0.207935 0.2658301,-0.393037 z m 0.155747,-0.07747 q 0.1149756,-0.08725 0.1435157,-0.145962 0.029355,-0.05871 0.029355,-0.109268 0,-0.06116 -0.053818,-0.110898 -0.053818,-0.05056 -0.1386231,-0.05056 -0.091328,0 -0.1394384,0.05463 -0.047295,0.05463 -0.047295,0.113345 0,0.05708 0.039956,0.107636 0.039956,0.05056 0.1280224,0.113345 z m -0.041587,0.158193 q -0.2152734,0.165532 -0.2152734,0.309863 0,0.08562 0.070942,0.144331 0.070942,0.05871 0.1679785,0.05871 0.088882,0 0.1590088,-0.05626 0.070127,-0.05627 0.070127,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.084805,-0.08481 -0.1182373,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3774" />
+            </g>
+            <g
+               aria-label="16:51:47"
+               id="text474"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 7.477164,62.331609 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769483,0.07828 v -0.136992 q 0.1785791,-0.07584 0.3098633,-0.196519 h 0.1516699 v 1.139156 H 7.9329892 V 62.458 H 7.1673007 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3777" />
+              <path
+                 d="m 8.2534531,61.864367 q 0.058711,-0.08725 0.1451464,-0.141884 0.087251,-0.05545 0.191626,-0.05545 0.098667,0 0.1867334,0.04811 0.088882,0.04811 0.1353613,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.1149756,0.132915 -0.3033398,0.132915 -0.2217969,0 -0.3318799,-0.185102 -0.1092676,-0.185918 -0.1092676,-0.472134 0,-0.316387 0.1394385,-0.499858 0.1394385,-0.184287 0.3775439,-0.184287 0.1280225,0 0.2487061,0.03751 v 0.153301 q -0.1353613,-0.06442 -0.2552295,-0.06442 -0.1696094,0 -0.2625684,0.155747 -0.092959,0.155747 -0.092959,0.394668 z m 0.2976318,0.505567 q 0.061157,0 0.1231299,-0.03588 0.061973,-0.03669 0.097036,-0.111714 0.035879,-0.07583 0.035879,-0.164717 0,-0.115791 -0.060342,-0.189995 -0.059526,-0.0742 -0.1704248,-0.0742 -0.1149756,0 -0.1891797,0.08644 -0.073389,0.08562 -0.073389,0.20875 0,0.123945 0.071758,0.203042 0.072573,0.07828 0.1655322,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3779" />
+              <path
+                 d="m 9.5173691,62.496325 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z m 0,-0.708608 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09377 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09377 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3781" />
+              <path
+                 d="m 10.171344,61.799948 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309864 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3783" />
+              <path
+                 d="m 11.482555,62.331609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176949,0.07828 v -0.136992 q 0.178579,-0.07584 0.309864,-0.196519 h 0.15167 v 1.139156 H 11.93838 V 62.458 h -0.765689 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3785" />
+              <path
+                 d="m 12.521412,62.496325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3787" />
+              <path
+                 d="m 13.598595,62.458 v -0.353896 h -0.537368 v -0.127207 l 0.537368,-0.784444 h 0.152485 v 0.784444 h 0.234029 v 0.127207 H 13.75108 V 62.458 Z m 0,-0.481103 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3789" />
+              <path
+                 d="m 14.283556,62.458 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.132099,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3791" />
+            </g>
+            <g
+               aria-label="m1c29"
+               id="text476"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 16.089895,62.458 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03832,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 V 62.458 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 62.458 H 16.46907 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3794" />
+              <path
+                 d="m 17.496511,62.331609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 V 62.458 h -0.765688 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3796" />
+              <path
+                 d="m 18.92759,62.431906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3798" />
+              <path
+                 d="m 19.92323,62.458 h -0.765688 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08643,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194887,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3800" />
+              <path
+                 d="m 20.800632,61.786086 q -0.05871,0.08725 -0.145962,0.1427 -0.08643,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.0473 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08643 -0.04648,-0.200595 0,-0.179395 0.114975,-0.31231 0.115791,-0.13373 0.304156,-0.13373 0.221796,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183471 -0.377544,0.183471 -0.128023,0 -0.248706,-0.03833 v -0.152485 q 0.135361,0.0636 0.255229,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297631,-0.504751 q -0.06116,0 -0.12313,0.0367 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164716,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3802" />
+            </g>
+            <g
+               aria-label="sh[1273]:"
+               id="text478"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 22.180993,62.40989 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3805" />
+              <path
+                 d="m 23.17174,62.458 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 V 62.458 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3807" />
+              <path
+                 d="m 24.336173,62.76134 v -1.644722 h 0.658052 v 0.127207 h -0.506382 v 1.391123 h 0.506382 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3809" />
+              <path
+                 d="m 25.511208,62.331609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 V 62.458 h -0.765688 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3811" />
+              <path
+                 d="M 26.936579,62.458 H 26.17089 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06524,-0.04485 -0.146778,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100297,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.103559,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3813" />
+              <path
+                 d="m 27.310861,62.458 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110899 0.121499,-0.171241 l 0.132099,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145147,0.219351 -0.02935,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3815" />
+              <path
+                 d="m 28.170324,62.435168 v -0.159824 q 0.186734,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07584 -0.305787,-0.07584 h -0.08399 v -0.126392 h 0.116607 q 0.159008,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.05789,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289478,0.07584 v -0.144331 q 0.154932,-0.0579 0.28377,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08643 -0.04648,0.16227 -0.04648,0.07583 -0.17124,0.135362 0.110083,0.03262 0.166348,0.07991 0.05626,0.0473 0.0848,0.111714 0.02935,0.06442 0.02935,0.144331 0,0.177763 -0.1321,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.132099,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3817" />
+              <path
+                 d="M 29.76612,61.116618 V 62.76134 H 29.108068 V 62.634948 H 29.61445 V 61.243825 H 29.108068 V 61.116618 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3819" />
+              <path
+                 d="m 30.555456,62.496325 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3821" />
+            </g>
+            <g
+               aria-label="Run"
+               id="text480"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 32.350215,61.920632 V 62.458 h -0.164717 v -1.265547 h 0.338404 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147593 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.05789 -0.144331,0.110083 L 33.045776,62.458 h -0.195703 l -0.335141,-0.537368 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114975,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.14107 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3824" />
+              <path
+                 d="M 33.941118,61.547165 V 62.458 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05627 -0.179394,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152485,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3826" />
+              <path
+                 d="m 34.193086,62.458 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 62.458 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3828" />
+            </g>
+            <g
+               aria-label="'kubectl"
+               id="text482"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 36.628937,61.648279 h -0.109268 l -0.08562,-0.506382 h 0.278062 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3831" />
+              <path
+                 d="m 37.240509,62.458 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 L 37.392179,61.968742 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3833" />
+              <path
+                 d="M 38.950465,61.547165 V 62.458 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163085,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152485,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3835" />
+              <path
+                 d="m 39.342687,61.751838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161456,0.196518 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3837" />
+              <path
+                 d="m 40.961315,62.397658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3839" />
+              <path
+                 d="m 41.971632,62.431906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3841" />
+              <path
+                 d="m 42.968088,62.421306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 61.749392 H 42.158366 V 61.623 h 0.227505 v -0.366943 h 0.15167 V 61.623 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3843" />
+              <path
+                 d="m 43.452453,62.458 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3845" />
+            </g>
+            <g
+               aria-label="get"
+               id="text484"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 45.824702,62.253327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.64419 q 0,0.229951 -0.0065,0.280507 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.08481 v -0.1533 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131285,-0.02202 0.06197,-0.02202 0.100297,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3848" />
+              <path
+                 d="m 46.975274,62.397658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3850" />
+              <path
+                 d="m 47.980698,62.421306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 61.749392 H 47.170977 V 61.623 h 0.227505 v -0.366943 h 0.15167 V 61.623 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3852" />
+            </g>
+            <g
+               aria-label="nodes'"
+               id="text486"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 49.224391,62.458 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 62.458 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3855" />
+              <path
+                 d="m 50.600836,62.483279 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207935 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3857" />
+              <path
+                 d="m 51.835397,62.253327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 V 62.458 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3859" />
+              <path
+                 d="m 52.985968,62.397658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3861" />
+              <path
+                 d="m 53.240382,62.40989 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174501,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3863" />
+              <path
+                 d="m 54.661676,61.648279 h -0.109267 l -0.08562,-0.506382 h 0.278061 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3865" />
+            </g>
+            <g
+               aria-label="on"
+               id="text488"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 56.613489,62.483279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3868" />
+              <path
+                 d="m 57.239739,62.458 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 62.458 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3870" />
+            </g>
+            <g
+               aria-label="the"
+               id="text490"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 60.006003,62.421306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 61.749392 H 59.196281 V 61.623 h 0.227505 v -0.366943 h 0.15167 V 61.623 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3873" />
+              <path
+                 d="m 60.245739,62.458 v -1.316103 h 0.15167 v 0.604233 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.14107,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.19978 V 62.458 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3875" />
+              <path
+                 d="m 62.004621,62.397658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3877" />
+            </g>
+            <g
+               aria-label="control-plane"
+               id="text492"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 64.018895,62.431906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3880" />
+              <path
+                 d="m 64.628836,62.483279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3882" />
+              <path
+                 d="m 65.255086,62.458 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 62.458 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3884" />
+              <path
+                 d="m 67.018045,62.421306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 61.749392 H 66.208324 V 61.623 h 0.227505 v -0.366943 h 0.15167 V 61.623 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3886" />
+              <path
+                 d="m 67.335248,62.458 v -0.910835 h 0.151669 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3888" />
+              <path
+                 d="m 68.634227,62.483279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117421,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3890" />
+              <path
+                 d="m 69.505106,62.458 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3892" />
+              <path
+                 d="m 70.320536,62.008698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3894" />
+              <path
+                 d="m 71.403426,61.751838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3896" />
+              <path
+                 d="m 72.509149,62.458 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3898" />
+              <path
+                 d="m 73.864393,62.253327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161456,-0.196518 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3900" />
+              <path
+                 d="m 74.267215,62.458 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 62.458 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3902" />
+              <path
+                 d="m 76.026098,62.397658 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3904" />
+            </g>
+            <g
+               aria-label="to"
+               id="text494"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 78.042002,62.421306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 61.749392 H 77.232281 V 61.623 h 0.227504 v -0.366943 h 0.15167 V 61.623 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3907" />
+              <path
+                 d="m 78.656836,62.483279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3909" />
+            </g>
+            <g
+               aria-label="see"
+               id="text496"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 80.296996,62.40989 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3912" />
+              <path
+                 d="m 82.045277,62.397658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3914" />
+              <path
+                 d="m 83.046625,62.397658 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3916" />
+            </g>
+            <g
+               aria-label="this"
+               id="text498"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 85.056002,62.421306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119869,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 61.749392 H 84.246281 V 61.623 h 0.227504 v -0.366943 h 0.15167 V 61.623 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3919" />
+              <path
+                 d="m 85.295739,62.458 v -1.316103 h 0.151669 v 0.604233 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.14107,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.19978 V 62.458 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3921" />
+              <path
+                 d="m 86.552316,62.458 v -0.784443 h -0.252784 v -0.126392 h 0.404454 v 0.784444 h 0.253598 V 62.458 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3923" />
+              <path
+                 d="m 87.309035,62.40989 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3925" />
+            </g>
+            <g
+               aria-label="node"
+               id="text500"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 89.304393,62.458 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 62.458 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3928" />
+              <path
+                 d="m 90.680838,62.483279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3930" />
+              <path
+                 d="m 91.915399,62.253327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 V 62.458 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3932" />
+              <path
+                 d="m 93.06597,62.397658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 92.460106,61.914109 H 92.9143 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3934" />
+            </g>
+            <g
+               aria-label="join"
+               id="text502"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 94.328257,62.815158 v -0.141884 q 0.127207,0.03751 0.214458,0.03751 0.07583,0 0.128838,-0.02691 0.053,-0.02609 0.08236,-0.08888 0.03017,-0.06279 0.03017,-0.218535 v -0.7029 h -0.386514 v -0.126392 h 0.538184 v 0.800752 q 0,0.231582 -0.05463,0.321279 -0.05463,0.09051 -0.1321,0.129654 -0.07747,0.03914 -0.212012,0.03914 -0.09704,0 -0.20875,-0.02283 z m 0.430547,-1.596611 q 0,-0.05137 0.03425,-0.07665 0.03506,-0.02528 0.06687,-0.02528 0.0318,0 0.06605,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03425,0.02528 -0.06605,0.02528 -0.0318,0 -0.06687,-0.02528 -0.03425,-0.02528 -0.03425,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3937" />
+              <path
+                 d="m 95.69084,62.483279 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207935 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3939" />
+              <path
+                 d="m 96.57232,62.458 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 V 62.458 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3941" />
+              <path
+                 d="m 97.318438,62.458 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 62.458 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3943" />
+            </g>
+            <g
+               aria-label="the"
+               id="text504"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 100.086,62.421306 q -0.10682,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 61.749392 H 99.276279 V 61.623 h 0.227505 v -0.366943 h 0.15167 V 61.623 h 0.405266 v 0.126392 h -0.405266 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231581,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3946" />
+              <path
+                 d="m 100.32574,62.458 v -1.316103 h 0.15167 v 0.604233 q 0.0652,-0.10519 0.15738,-0.164717 0.0921,-0.05953 0.18428,-0.05953 0.0775,0 0.14107,0.03996 0.0644,0.03914 0.0897,0.0954 0.0204,0.04322 0.0277,0.09214 0.007,0.04811 0.007,0.19978 V 62.458 h -0.15167 v -0.527583 q 0,-0.131284 -0.013,-0.172871 -0.0122,-0.0424 -0.0465,-0.06931 -0.0334,-0.02691 -0.0734,-0.02691 -0.0799,0 -0.17206,0.07584 -0.0913,0.07583 -0.15085,0.189995 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3948" />
+              <path
+                 d="m 102.08462,62.397658 q -0.18184,0.08644 -0.34411,0.08644 -0.12313,0 -0.22017,-0.06116 -0.097,-0.06116 -0.15575,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.0554,-0.239736 0.0554,-0.114976 0.15493,-0.178579 0.0995,-0.06442 0.2218,-0.06442 0.16227,0 0.26012,0.115791 0.0987,0.115791 0.0987,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.0391,0.172871 0.0399,0.07828 0.10437,0.117422 0.0644,0.03914 0.14678,0.03914 0.14678,0 0.32454,-0.09785 z m -0.60587,-0.483549 h 0.4542 v -0.02202 q 0,-0.111714 -0.0546,-0.177764 -0.0546,-0.06605 -0.14597,-0.06605 -0.0921,0 -0.15982,0.06768 -0.0669,0.06686 -0.0938,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3950" />
+            </g>
+            <g
+               aria-label="cluster."
+               id="text506"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 104.0989,62.431906 q -0.15249,0.05137 -0.2903,0.05137 -0.13699,0 -0.24381,-0.06279 -0.10601,-0.0636 -0.16553,-0.17124 -0.0595,-0.108452 -0.0595,-0.24626 0,-0.207119 0.13455,-0.344111 0.13536,-0.136992 0.32617,-0.136992 0.14107,0 0.29845,0.053 v 0.145962 q -0.15901,-0.07257 -0.28459,-0.07257 -0.0832,0 -0.15656,0.04159 -0.0734,0.04077 -0.11335,0.128023 -0.0399,0.08725 -0.0399,0.179394 0,0.12313 0.0767,0.234844 0.0775,0.111714 0.24218,0.111714 0.0497,0 0.0979,-0.0065 0.0481,-0.0073 0.17777,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3953" />
+              <path
+                 d="m 104.57837,62.458 v -1.188896 h -0.27235 v -0.127207 h 0.42402 v 1.189712 h 0.28458 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3955" />
+              <path
+                 d="M 106.08447,61.547165 V 62.458 h -0.15167 v -0.19978 q -0.0734,0.112529 -0.16309,0.168794 -0.0897,0.05627 -0.17939,0.05627 -0.0799,0 -0.14678,-0.0424 -0.0661,-0.04322 -0.0921,-0.112529 -0.0261,-0.07013 -0.0261,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.0122,0.173687 0.0131,0.04159 0.0465,0.0685 0.0343,0.02691 0.0734,0.02691 0.0799,0 0.17124,-0.07502 0.0922,-0.07584 0.15249,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3957" />
+              <path
+                 d="m 106.34704,62.40989 v -0.16064 q 0.0913,0.05953 0.19325,0.08399 0.10193,0.02365 0.17287,0.02365 0.11498,0 0.16554,-0.03669 0.0506,-0.03751 0.0506,-0.09296 0,-0.0367 -0.0236,-0.06279 -0.0236,-0.02609 -0.11743,-0.06442 l -0.0522,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.21365,-0.122314 -0.0448,-0.05545 -0.0448,-0.135361 0,-0.11253 0.0864,-0.185103 0.0873,-0.07257 0.28214,-0.07257 0.14596,0 0.27643,0.0424 v 0.137808 q -0.15004,-0.05382 -0.28214,-0.05382 -0.0962,0 -0.15085,0.03425 -0.0538,0.03343 -0.0538,0.08399 0,0.04893 0.0473,0.07828 0.0465,0.02936 0.15167,0.06768 l 0.10275,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.0571,0.06034 0.0571,0.150855 0,0.118237 -0.0913,0.194888 -0.0905,0.07584 -0.29029,0.07584 -0.17451,0 -0.35879,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3959" />
+              <path
+                 d="m 108.09939,62.421306 q -0.10682,0.04485 -0.15493,0.053 -0.0481,0.009 -0.093,0.009 -0.0954,0 -0.1745,-0.0367 -0.0791,-0.03669 -0.11987,-0.108452 -0.04,-0.07176 -0.04,-0.221797 v -0.366943 h -0.22751 V 61.623 h 0.22751 v -0.366943 h 0.15167 V 61.623 h 0.40527 v 0.126392 h -0.40527 v 0.364497 q 0,0.110083 0.0261,0.155747 0.0261,0.04485 0.0693,0.06605 0.044,0.0212 0.10356,0.0212 0.11009,0 0.23158,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3961" />
+              <path
+                 d="m 109.09667,62.397658 q -0.18185,0.08644 -0.34412,0.08644 -0.12313,0 -0.22016,-0.06116 -0.097,-0.06116 -0.15575,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.0554,-0.239736 0.0555,-0.114976 0.15494,-0.178579 0.0995,-0.06442 0.22179,-0.06442 0.16227,0 0.26013,0.115791 0.0987,0.115791 0.0987,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.0391,0.172871 0.04,0.07828 0.10438,0.117422 0.0644,0.03914 0.14677,0.03914 0.14678,0 0.32455,-0.09785 z m -0.60587,-0.483549 h 0.4542 v -0.02202 q 0,-0.111714 -0.0546,-0.177764 -0.0546,-0.06605 -0.14596,-0.06605 -0.0921,0 -0.15982,0.06768 -0.0669,0.06686 -0.0938,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3963" />
+              <path
+                 d="m 109.41794,62.458 v -0.910835 h 0.15167 v 0.198965 q 0.0709,-0.112529 0.16228,-0.167978 0.0921,-0.05627 0.20467,-0.05627 0.0824,0 0.16471,0.02528 v 0.328618 h -0.14596 v -0.207934 q -0.0383,-0.0065 -0.0603,-0.0065 -0.0848,0 -0.16635,0.06687 -0.0815,0.06686 -0.15901,0.200595 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3965" />
+              <path
+                 d="m 110.71611,62.496325 q -0.0546,0 -0.0938,-0.03914 -0.0391,-0.03914 -0.0391,-0.09378 0,-0.05545 0.0391,-0.09377 0.04,-0.03914 0.0938,-0.03914 0.0538,0 0.093,0.03914 0.0399,0.03833 0.0399,0.09377 0,0.05463 -0.0391,0.09378 -0.0391,0.03914 -0.0938,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3967" />
+            </g>
+            <g
+               aria-label="root@m1c29:~#"
+               id="text508"
+               class="e"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.20385742,64.628998 v -0.910835 h 0.15166991 v 0.198965 q 0.0709424,-0.11253 0.16227051,-0.167979 0.0921436,-0.05626 0.20467284,-0.05626 0.0823584,0 0.1647168,0.02528 v 0.328618 H 0.74122557 v -0.207935 q -0.0383252,-0.0065 -0.0603418,-0.0065 -0.0848047,0 -0.16634765,0.06686 -0.081543,0.06686 -0.15900879,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3970" />
+              <path
+                 d="m 1.5028369,64.654276 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,64.381107 1.07229,64.173173 q 0,-0.207935 0.1174219,-0.344112 0.1174219,-0.136176 0.313125,-0.136176 0.1948877,0 0.3123096,0.136176 0.1174218,0.136177 0.1174218,0.344112 0,0.207934 -0.1174218,0.344926 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3972" />
+              <path
+                 d="m 2.5041846,64.654276 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344926 0,-0.207935 0.1174219,-0.344112 0.1174218,-0.136176 0.313125,-0.136176 0.1948877,0 0.3123095,0.136176 0.1174219,0.136177 0.1174219,0.344112 0,0.207934 -0.1174219,0.344926 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3974" />
+              <path
+                 d="m 3.892046,64.592303 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.174502,-0.03669 -0.079097,-0.03669 -0.1198681,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 63.920389 H 3.0823244 v -0.126391 h 0.2275048 v -0.366944 h 0.1516699 v 0.366944 h 0.4052686 v 0.126391 H 3.4614991 v 0.364497 q 0,0.110083 0.026094,0.155748 0.026094,0.04485 0.069311,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3976" />
+              <path
+                 d="m 4.7564014,64.465912 v 0.128022 q -0.068496,0.04485 -0.1214991,0.05871 -0.053003,0.01468 -0.1141601,0.01468 -0.1696094,0 -0.2780615,-0.08236 -0.1076367,-0.08317 -0.1720557,-0.230767 -0.063604,-0.148408 -0.063604,-0.362051 0,-0.296816 0.1361768,-0.481103 0.1361767,-0.185103 0.3677587,-0.185103 0.2291358,0 0.3620508,0.163086 0.1337305,0.163086 0.1337305,0.428916 0,0.117422 -0.034248,0.193257 -0.034248,0.07502 -0.090513,0.119868 -0.056265,0.04403 -0.1361767,0.04403 -0.061973,0 -0.1011133,-0.02691 -0.039141,-0.02772 -0.058711,-0.126391 -0.022832,0.053 -0.070127,0.103559 -0.047295,0.04974 -0.1280224,0.04974 -0.083989,0 -0.1394385,-0.07584 -0.054634,-0.07665 -0.054634,-0.187548 0,-0.136177 0.078281,-0.252784 0.079097,-0.116606 0.284585,-0.116606 h 0.1557471 v 0.357158 q 0,0.07094 0.00489,0.101113 0.00571,0.02936 0.022017,0.04485 0.017124,0.01549 0.036694,0.01549 0.031802,0 0.063603,-0.03017 0.032617,-0.03099 0.048926,-0.08643 0.017124,-0.05627 0.017124,-0.121499 0,-0.136177 -0.049741,-0.2642 -0.049741,-0.128837 -0.1475928,-0.183471 -0.097851,-0.05463 -0.2046728,-0.05463 -0.1133448,0 -0.1997803,0.0685 -0.08562,0.06768 -0.1410693,0.203858 -0.054634,0.136176 -0.054634,0.300893 0,0.165532 0.054634,0.306602 0.054634,0.141069 0.1475927,0.206303 0.092959,0.06524 0.2071192,0.06524 0.1296533,0 0.2389209,-0.106006 z M 4.5859766,63.969315 v -0.21935 h -0.029356 q -0.096221,0 -0.138623,0.03017 -0.042402,0.03017 -0.066865,0.09459 -0.024463,0.06442 -0.024463,0.141885 0,0.06279 0.01957,0.09704 0.01957,0.03425 0.053818,0.03425 0.04811,0 0.097852,-0.05545 0.050557,-0.05626 0.088066,-0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3978" />
+              <path
+                 d="m 5.0646337,64.628998 v -0.910835 h 0.132915 v 0.20875 q 0.062788,-0.132915 0.1166065,-0.183472 0.054634,-0.05056 0.110083,-0.05056 0.06605,0 0.1060058,0.05219 0.040771,0.05137 0.040771,0.146777 v 0.04893 q 0.026909,-0.08317 0.064419,-0.134546 0.038325,-0.05219 0.079097,-0.08236 0.040771,-0.03099 0.093774,-0.03099 0.058711,0 0.1002979,0.04974 0.041587,0.04974 0.041587,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.00489,-0.104375 -0.00489,-0.02854 -0.01957,-0.04322 -0.014678,-0.01468 -0.031802,-0.01468 -0.042402,0 -0.091328,0.06524 -0.04811,0.06442 -0.098667,0.214458 v 0.504751 H 5.4438085 V 64.00764 q 0,-0.120683 -0.023648,-0.141884 -0.023647,-0.0212 -0.042402,-0.0212 -0.041587,0 -0.089697,0.07257 -0.047295,0.07257 -0.090513,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3980" />
+              <path
+                 d="m 6.4712503,64.502606 v -0.976885 q -0.068496,0.05463 -0.1329151,0.09296 -0.064419,0.03833 -0.1769482,0.07828 V 63.55997 q 0.1785791,-0.07583 0.3098633,-0.196519 h 0.1516699 v 1.139155 h 0.3041552 v 0.126392 H 6.161387 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3982" />
+              <path
+                 d="m 7.9023292,64.602904 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136992 0.3261719,-0.136992 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133447,0.128023 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097852,-0.0065 0.04811,-0.0073 0.1777636,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3984" />
+              <path
+                 d="M 8.8979688,64.628998 H 8.1322803 v -0.139439 q 0,-0.05382 0.022017,-0.114975 0.022017,-0.06197 0.083989,-0.138623 0.061973,-0.07665 0.1312841,-0.147593 l 0.086436,-0.08807 q 0.026094,-0.02691 0.1141601,-0.124761 0.088066,-0.09785 0.1157911,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.065234,-0.125577 -0.065234,-0.04485 -0.1467773,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.1002979,0.02528 -0.043218,0.01386 -0.1402539,0.0579 v -0.134546 q 0.1027442,-0.04892 0.2054883,-0.06686 0.1035596,-0.01875 0.1704248,-0.01875 0.098667,0 0.1810254,0.03262 0.083174,0.0318 0.1231299,0.09948 0.040771,0.06768 0.040771,0.144331 0,0.08562 -0.052187,0.175317 -0.051372,0.0897 -0.1948877,0.230767 l -0.092959,0.09214 -0.078281,0.07665 q -0.074204,0.07502 -0.1198681,0.145146 -0.045664,0.07013 -0.050557,0.167163 h 0.6083106 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3986" />
+              <path
+                 d="m 9.775371,63.957084 q -0.058711,0.08725 -0.1459619,0.1427 -0.086436,0.05463 -0.1908106,0.05463 -0.098667,0 -0.1875488,-0.0473 -0.088066,-0.04811 -0.1345459,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.1149756,-0.312309 0.115791,-0.133731 0.3041553,-0.133731 0.2217969,0 0.3310644,0.185918 0.110083,0.185103 0.110083,0.471319 0,0.316386 -0.1394384,0.500673 -0.1394385,0.183472 -0.377544,0.183472 -0.1280224,0 -0.248706,-0.03833 v -0.152486 q 0.1353613,0.0636 0.2552295,0.0636 0.1696093,0 0.2625683,-0.155747 0.092959,-0.155747 0.092959,-0.394668 z M 9.4777392,63.452333 q -0.061157,0 -0.1231299,0.03669 -0.061973,0.03588 -0.097852,0.110899 -0.035063,0.07502 -0.035063,0.164716 0,0.114976 0.059526,0.18918 0.060342,0.0742 0.1712402,0.0742 0.1149756,0 0.1883643,-0.08562 0.074204,-0.08644 0.074204,-0.20875 0,-0.123945 -0.072573,-0.202227 -0.071758,-0.0791 -0.1647168,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3988" />
+              <path
+                 d="m 10.51415,64.667323 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3990" />
+              <path
+                 d="m 11.060488,64.30038 v -0.01468 q 0,-0.106821 0.06279,-0.185103 0.0636,-0.0791 0.170425,-0.0791 0.02691,0 0.05219,0.0057 0.02609,0.0049 0.05871,0.01794 0.03262,0.01223 0.09785,0.04893 l 0.09867,0.05463 q 0.09051,0.04974 0.147593,0.04974 0.06034,0 0.08888,-0.04322 0.02936,-0.04403 0.02936,-0.0954 v -0.01305 h 0.104375 v 0.01305 q 0,0.136177 -0.07747,0.201411 -0.07665,0.06442 -0.163086,0.06442 -0.08073,0 -0.213642,-0.07583 l -0.08317,-0.04811 q -0.09459,-0.05382 -0.152486,-0.05382 -0.03262,0 -0.06116,0.01712 -0.02772,0.01712 -0.04485,0.05463 -0.01712,0.03751 -0.01712,0.06605 v 0.01468 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3992" />
+              <path
+                 d="m 12.074068,64.287333 v -0.11416 h 0.159824 l 0.0897,-0.335142 h -0.249521 v -0.113345 h 0.278061 l 0.09541,-0.361235 h 0.119052 l -0.0954,0.361235 h 0.230767 l 0.09948,-0.361235 h 0.119053 l -0.09785,0.361235 h 0.136993 v 0.113345 h -0.168794 l -0.08888,0.335142 h 0.257676 v 0.11416 h -0.289478 l -0.09296,0.341665 h -0.120684 l 0.09459,-0.341665 h -0.227505 l -0.0897,0.341665 h -0.120683 l 0.09051,-0.341665 z m 0.279692,-0.11416 h 0.228321 l 0.09214,-0.335142 h -0.233213 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path3994" />
+            </g>
+          </svg>
+        </svg>
+      </g>
+    </svg>
+  </g>
+</svg>
diff --git a/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot12.svg b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot12.svg
new file mode 100644
index 0000000000..df4443d87e
--- /dev/null
+++ b/static/images/blog/2021-12-22-kubernetes-in-kubernetes-and-pxe-bootable-server-farm/screenshot12.svg
@@ -0,0 +1,4482 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<svg
+   width="1190"
+   height="651.3"
+   version="1.1"
+   id="svg274"
+   sodipodi:docname="3.svg"
+   inkscape:version="1.1.1 (c3084ef, 2021-09-22)"
+   xmlns:inkscape="http://www.inkscape.org/namespaces/inkscape"
+   xmlns:sodipodi="http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd"
+   xmlns="http://www.w3.org/2000/svg"
+   xmlns:svg="http://www.w3.org/2000/svg">
+  <defs
+     id="defs278" />
+  <sodipodi:namedview
+     id="namedview276"
+     pagecolor="#ffffff"
+     bordercolor="#666666"
+     borderopacity="1.0"
+     inkscape:pageshadow="2"
+     inkscape:pageopacity="0.0"
+     inkscape:pagecheckerboard="0"
+     showgrid="false"
+     inkscape:zoom="0.90280978"
+     inkscape:cx="608.65535"
+     inkscape:cy="330.08061"
+     inkscape:window-width="1416"
+     inkscape:window-height="814"
+     inkscape:window-x="12"
+     inkscape:window-y="25"
+     inkscape:window-maximized="0"
+     inkscape:current-layer="svg274" />
+  <g
+     id="g494">
+    <path
+       id="rect9"
+       class="a"
+       style="fill:#282d35"
+       d="M 0,0 H 1190 V 651.29999 H 0 Z" />
+    <svg
+       height="651.3"
+       viewBox="0 0 119 65.13"
+       width="1190"
+       version="1.1"
+       id="svg272">
+      <style
+         id="style11">.a{fill:#282d35}.c{fill:#b9c0cb;white-space:pre}</style>
+      <g
+         font-family="Monaco,Consolas,Menlo,'Bitstream Vera Sans Mono','Powerline Symbols',monospace"
+         font-size="1.67"
+         id="g270">
+        <defs
+           id="defs22">
+          <symbol
+             id="1">
+            <text
+               y="1.67"
+               class="c"
+               id="text13">root@m1c29:~#</text>
+          </symbol>
+          <symbol
+             id="a">
+            <path
+               fill="transparent"
+               d="M0 0h119v30H0z"
+               id="path16" />
+          </symbol>
+          <symbol
+             id="b">
+            <path
+               fill="#6f7683"
+               d="M0 0h1.102v2.171H0z"
+               id="path19" />
+          </symbol>
+        </defs>
+        <path
+           class="a"
+           d="M0 0h119v65.13H0z"
+           id="path24"
+           style="fill:#000000" />
+        <svg
+           width="119"
+           version="1.1"
+           id="svg268">
+          <svg
+             version="1.1"
+             id="svg266">
+            <g
+               id="use26">
+              <path
+                 fill="transparent"
+                 d="M 0,0 H 119 V 30 H 0 Z"
+                 id="path514" />
+            </g>
+            <g
+               id="use28"
+               transform="translate(13.996,62.933998)">
+              <path
+                 fill="#6f7683"
+                 d="M 0,0 H 1.102 V 2.171 H 0 Z"
+                 id="path518" />
+            </g>
+            <g
+               aria-label="#"
+               id="text30"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.05789551,1.3283349 V 1.2141748 H 0.21771972 L 0.30741698,0.87903318 H 0.05789551 V 0.76568846 h 0.27806151 l 0.0954053,-0.36123535 h 0.11905273 l -0.0954053,0.36123535 h 0.2307666 L 0.78525877,0.40445311 H 0.9043115 L 0.80645994,0.76568846 H 0.94345212 V 0.87903318 H 0.77465818 L 0.68577635,1.2141748 H 0.94345212 V 1.3283349 H 0.65397459 L 0.56101561,1.67 H 0.44033202 L 0.53492186,1.3283349 H 0.30741698 L 0.21771972,1.67 H 0.09703613 L 0.18754882,1.3283349 Z M 0.33758788,1.2141748 H 0.56590819 L 0.65805174,0.87903318 H 0.42483886 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path559" />
+            </g>
+            <g
+               aria-label="Generated"
+               id="text32"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 2.8911874,1.6691845 q -0.1337304,0.039141 -0.2454443,0.039141 -0.1581934,0 -0.2821387,-0.078281 Q 2.2404746,1.5517627 2.1703476,1.3943847 2.1002206,1.2361914 2.1002206,1.0372265 q 0,-0.19651851 0.068496,-0.35308101 0.068496,-0.1565625 0.1932569,-0.23729003 0.1247607,-0.0807275 0.2739843,-0.0807275 0.1125293,0 0.2544141,0.0530029 v 0.15003906 q -0.1312842,-0.075835 -0.2609375,-0.075835 -0.097852,0 -0.1793945,0.0668652 -0.080728,0.0668652 -0.1304688,0.19651855 -0.048926,0.12883789 -0.048926,0.28213867 0,0.2054883 0.093775,0.3742822 0.093774,0.168794 0.2960009,0.168794 0.026094,0 0.06605,-0.00408 V 1.1701416 H 2.600079 V 1.04375 h 0.2911084 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path562" />
+              <path
+                 d="m 3.8892734,1.6096582 q -0.1818408,0.086436 -0.3441114,0.086436 -0.1231298,0 -0.220166,-0.061157 -0.097036,-0.061157 -0.155747,-0.174502 -0.057896,-0.1141601 -0.057896,-0.2438134 0,-0.1247608 0.055449,-0.23973636 0.055449,-0.11497558 0.1549316,-0.1785791 0.099482,-0.0644189 0.2217969,-0.0644189 0.1622705,0 0.2601221,0.11579101 0.098667,0.11579102 0.098667,0.35715819 v 0.032617 H 3.2744394 q 0,0.09459 0.039141,0.1728711 0.039956,0.078281 0.104375,0.1174219 0.064419,0.039141 0.1467774,0.039141 0.1467773,0 0.324541,-0.097852 z M 3.2834091,1.1261084 h 0.4541944 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.0660498 -0.1459619,-0.0660498 -0.092144,0 -0.1598243,0.0676807 -0.066865,0.0668652 -0.093774,0.19814944 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path564" />
+              <path
+                 d="M 4.1330869,1.67 V 0.75916502 h 0.1516699 v 0.19896484 q 0.065234,-0.10519043 0.1573779,-0.16471679 0.092144,-0.0595264 0.1842871,-0.0595264 0.080728,0 0.1467774,0.0432178 0.06605,0.0424023 0.092144,0.11171387 0.026909,0.0693115 0.026909,0.27235346 V 1.67 H 4.740582 V 1.142417 q 0,-0.1312842 -0.013047,-0.17287113 -0.012231,-0.0424023 -0.04648,-0.0693115 -0.033433,-0.0269092 -0.073389,-0.0269092 -0.079912,0 -0.1720556,0.075835 -0.091328,0.075835 -0.1508545,0.18999507 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path566" />
+              <path
+                 d="m 5.8919688,1.6096582 q -0.1818408,0.086436 -0.3441113,0.086436 -0.1231299,0 -0.220166,-0.061157 -0.097036,-0.061157 -0.1557471,-0.174502 -0.057895,-0.1141601 -0.057895,-0.2438134 0,-0.1247608 0.055449,-0.23973636 0.055449,-0.11497558 0.1549317,-0.1785791 0.099482,-0.0644189 0.2217968,-0.0644189 0.1622705,0 0.2601221,0.11579101 0.098667,0.11579102 0.098667,0.35715819 v 0.032617 H 5.2771348 q 0,0.09459 0.039141,0.1728711 0.039956,0.078281 0.104375,0.1174219 0.064419,0.039141 0.1467773,0.039141 0.1467773,0 0.324541,-0.097852 z M 5.2861046,1.1261084 h 0.4541943 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.0660498 -0.1459619,-0.0660498 -0.092144,0 -0.1598242,0.0676807 -0.066865,0.0668652 -0.093774,0.19814944 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path568" />
+              <path
+                 d="M 6.213248,1.67 V 0.75916502 h 0.1516699 v 0.19896484 q 0.070942,-0.1125293 0.1622705,-0.16797851 0.092144,-0.0562647 0.2046729,-0.0562647 0.082358,0 0.1647168,0.0252783 V 1.0877832 H 6.7506162 V 0.87984861 q -0.038325,-0.006523 -0.060342,-0.006523 -0.084805,0 -0.1663477,0.0668652 Q 6.4423837,1.0070556 6.3649179,1.1407861 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path570" />
+              <path
+                 d="m 7.7356551,1.4653271 q -0.069311,0.1141602 -0.1671631,0.1720557 -0.097036,0.057896 -0.1785791,0.057896 -0.1141601,0 -0.2054882,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581934 0.060342,-0.2821387 0.060342,-0.1247607 0.161455,-0.19651851 0.1011133,-0.0725733 0.2503369,-0.0725733 0.043218,0 0.1304688,0.00897 0.013047,0.001631 0.039141,0.004077 H 7.8881405 V 1.402539 q 0,0.1647168 0.034248,0.267461 H 7.7641951 q -0.017939,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.080728,-0.0212012 -0.1500391,-0.0212012 -0.1402539,0 -0.2340283,0.10845215 -0.092959,0.10845218 -0.092959,0.29518558 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166064,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path572" />
+              <path
+                 d="m 8.9000891,1.6333056 q -0.1068213,0.044849 -0.1549317,0.053003 -0.04811,0.00897 -0.092959,0.00897 -0.095405,0 -0.1745019,-0.036694 Q 8.3985998,1.6218896 8.3578283,1.5501318 8.3178723,1.478374 8.3178723,1.3283349 V 0.96139158 H 8.0903674 V 0.83499998 H 8.3178723 V 0.46805663 h 0.1516699 v 0.36694335 h 0.4052685 v 0.1263916 H 8.4695422 V 1.3258886 q 0,0.110083 0.026094,0.1557471 0.026094,0.044849 0.069312,0.06605 0.044033,0.021201 0.1035595,0.021201 0.110083,0 0.2315821,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path574" />
+              <path
+                 d="m 9.8973595,1.6096582 q -0.1818409,0.086436 -0.3441114,0.086436 -0.1231298,0 -0.220166,-0.061157 -0.097036,-0.061157 -0.155747,-0.174502 -0.057896,-0.1141601 -0.057896,-0.2438134 0,-0.1247608 0.055449,-0.23973636 0.055449,-0.11497558 0.1549316,-0.1785791 0.099482,-0.0644189 0.2217969,-0.0644189 0.1622705,0 0.260122,0.11579101 0.098667,0.11579102 0.098667,0.35715819 v 0.032617 H 9.2825255 q 0,0.09459 0.039141,0.1728711 0.039956,0.078281 0.104375,0.1174219 0.064419,0.039141 0.1467773,0.039141 0.1467774,0 0.3245411,-0.097852 z M 9.2914952,1.1261084 h 0.4541943 v -0.022017 q 0,-0.1117139 -0.054634,-0.1777637 -0.054634,-0.0660498 -0.1459619,-0.0660498 -0.092144,0 -0.1598242,0.0676807 -0.066865,0.0668652 -0.093774,0.19814944 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path576" />
+              <path
+                 d="m 10.749483,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161455,-0.19651851 0.101113,-0.0725733 0.250337,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 V 0.35389648 h 0.152486 V 1.67 h -0.152486 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234028,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.1533,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path578" />
+            </g>
+            <g
+               aria-label="by"
+               id="text34"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 12.290646,0.96383787 q 0.07013,-0.11416016 0.167163,-0.17205566 0.09704,-0.0578955 0.178579,-0.0578955 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.29926271 0,0.1581933 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101113,0.071758 -0.250337,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 h -0.15167 V 0.35389648 h 0.15167 z m 0,0.18020993 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137807,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.20467283 -0.05137,-0.0684961 -0.116606,-0.0684961 -0.07094,0 -0.156563,0.0717578 -0.0848,0.0717578 -0.1533,0.19325681 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path581" />
+              <path
+                 d="M 13.486881,1.6333056 13.066119,0.75916502 h 0.167163 l 0.335142,0.68333008 0.280508,-0.68333008 h 0.152485 L 13.648336,1.605581 q -0.111714,0.2682764 -0.212827,0.3563428 -0.100298,0.088066 -0.260122,0.088066 -0.06931,0 -0.123945,-0.012231 V 1.9040283 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130468,-0.02854 0.05708,-0.02854 0.104375,-0.1011132 0.0473,-0.072573 0.06687,-0.1255762 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path583" />
+            </g>
+            <g
+               aria-label="`ltsp"
+               id="text36"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 15.708437,0.61972655 H 15.569814 L 15.290937,0.35389648 h 0.176133 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path586" />
+              <path
+                 d="M 16.402368,1.67 V 0.4811035 H 16.130014 V 0.35389648 h 0.424024 V 1.5436084 h 0.284585 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path588" />
+              <path
+                 d="m 17.920698,1.6333056 q -0.106821,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084521 -0.03996,-0.071758 -0.03996,-0.2217969 V 0.96139158 h -0.227505 v -0.1263916 h 0.227505 V 0.46805663 h 0.15167 v 0.36694335 h 0.405269 v 0.1263916 H 17.490151 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path590" />
+              <path
+                 d="M 18.171035,1.6218896 V 1.46125 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114976,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.16961,-0.06605 -0.213643,-0.1223144 -0.04485,-0.055449 -0.04485,-0.13536133 0,-0.11252929 0.08644,-0.18510253 0.08725,-0.0725732 0.282139,-0.0725732 0.145961,0 0.27643,0.0424023 V 0.91409666 Q 18.691279,0.8602783 18.55918,0.8602783 q -0.09622,0 -0.150855,0.034248 -0.05382,0.0334326 -0.05382,0.0839893 0,0.0489258 0.04729,0.0782812 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path592" />
+              <path
+                 d="m 19.302036,0.96383787 q 0.07013,-0.11416016 0.167163,-0.17205566 0.09704,-0.0578955 0.178579,-0.0578955 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.29926271 0,0.1581933 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101113,0.071758 -0.250337,0.071758 -0.0424,0 -0.130468,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 v 0.3538964 h -0.15167 V 0.75916502 h 0.15167 z m 0,0.18020993 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137807,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.20467283 -0.05137,-0.0684961 -0.116607,-0.0684961 -0.07094,0 -0.156562,0.0717578 -0.0848,0.0717578 -0.153301,0.19325681 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path594" />
+            </g>
+            <g
+               aria-label="init`,"
+               id="text38"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 21.423621,1.67 V 0.88555662 h -0.252783 v -0.1263916 h 0.404453 V 1.5436084 h 0.253598 V 1.67 Z m -0.02528,-1.23945314 q 0,-0.0513721 0.03506,-0.0766504 0.03506,-0.0252783 0.06605,-0.0252783 0.0318,0 0.06686,0.0252783 0.03506,0.0252783 0.03506,0.0766504 0,0.0505566 -0.03506,0.075835 -0.03506,0.0252783 -0.06686,0.0252783 -0.03099,0 -0.06605,-0.0252783 -0.03506,-0.0252783 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path597" />
+              <path
+                 d="M 22.169739,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.06523,-0.10519043 0.157378,-0.16471679 0.09214,-0.0595264 0.184287,-0.0595264 0.08073,0 0.146777,0.0432178 0.06605,0.0424023 0.09214,0.11171387 0.02691,0.0693115 0.02691,0.27235346 V 1.67 h -0.15167 V 1.142417 q 0,-0.1312842 -0.01305,-0.17287113 -0.01223,-0.0424023 -0.04648,-0.0693115 -0.03343,-0.0269092 -0.07339,-0.0269092 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.18999507 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path599" />
+              <path
+                 d="M 23.426316,1.67 V 0.88555662 h -0.252783 v -0.1263916 h 0.404453 V 1.5436084 h 0.253599 V 1.67 Z m -0.02528,-1.23945314 q 0,-0.0513721 0.03506,-0.0766504 0.03506,-0.0252783 0.06605,-0.0252783 0.0318,0 0.06686,0.0252783 0.03506,0.0252783 0.03506,0.0766504 0,0.0505566 -0.03506,0.075835 -0.03506,0.0252783 -0.06686,0.0252783 -0.03099,0 -0.06605,-0.0252783 -0.03506,-0.0252783 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path601" />
+              <path
+                 d="m 24.934046,1.6333056 q -0.106821,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084521 -0.03996,-0.071758 -0.03996,-0.2217969 V 0.96139158 h -0.227505 v -0.1263916 h 0.227505 V 0.46805663 h 0.15167 v 0.36694335 h 0.405269 v 0.1263916 H 24.503499 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path603" />
+              <path
+                 d="M 25.725828,0.61972655 H 25.587205 L 25.308328,0.35389648 h 0.176133 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path605" />
+              <path
+                 d="M 26.39448,2.0238964 V 1.9227832 q 0.05871,-0.015493 0.08888,-0.044849 0.03099,-0.02854 0.04893,-0.073389 0.01875,-0.044033 0.01875,-0.1068213 -0.07584,0 -0.111714,-0.042402 -0.03588,-0.043218 -0.03588,-0.092144 0,-0.056265 0.03996,-0.09459 0.03996,-0.039141 0.09296,-0.039141 0.0685,0 0.118237,0.059526 0.04974,0.058711 0.04974,0.161455 0,0.089697 -0.03914,0.168794 -0.03914,0.079912 -0.106821,0.1361767 -0.06687,0.056265 -0.163902,0.068496 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path607" />
+            </g>
+            <g
+               aria-label="see"
+               id="text40"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 28.192992,1.6218896 V 1.46125 q 0.09133,0.059526 0.193257,0.083989 0.101928,0.023648 0.172871,0.023648 0.114975,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.105191,-0.041587 q -0.169609,-0.06605 -0.213642,-0.1223144 -0.04485,-0.055449 -0.04485,-0.13536133 0,-0.11252929 0.08644,-0.18510253 0.08725,-0.0725732 0.282138,-0.0725732 0.145962,0 0.276431,0.0424023 v 0.13780762 q -0.150039,-0.0538184 -0.282139,-0.0538184 -0.09622,0 -0.150854,0.034248 -0.05382,0.0334326 -0.05382,0.0839893 0,0.0489258 0.0473,0.0782812 0.04648,0.029355 0.151669,0.067681 l 0.102745,0.03751 q 0.141069,0.051372 0.198149,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path610" />
+              <path
+                 d="m 29.941273,1.6096582 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.174502 -0.0579,-0.1141601 -0.0579,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.162271,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 29.335409,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145961,-0.0660498 -0.09214,0 -0.159825,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path612" />
+              <path
+                 d="m 30.942621,1.6096582 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155748,-0.174502 -0.05789,-0.1141601 -0.05789,-0.2438134 0,-0.1247608 0.05545,-0.23973636 0.05545,-0.11497558 0.154932,-0.1785791 0.09948,-0.0644189 0.221797,-0.0644189 0.16227,0 0.260122,0.11579101 0.09867,0.11579102 0.09867,0.35715819 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 30.336757,1.1261084 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.0660498 -0.145962,-0.0660498 -0.09214,0 -0.159824,0.0676807 -0.06686,0.0668652 -0.09377,0.19814944 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path614" />
+            </g>
+            <g
+               aria-label="man:ltsp(8)"
+               id="text42"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 32.121895,1.67 V 0.75916502 h 0.132915 v 0.20874999 q 0.06279,-0.13291503 0.116606,-0.18347167 0.05463,-0.0505566 0.110083,-0.0505566 0.06605,0 0.106006,0.0521875 0.04077,0.0513721 0.04077,0.14677734 v 0.0489258 q 0.02691,-0.0831738 0.06442,-0.1345459 0.03833,-0.0521875 0.0791,-0.0823584 0.04077,-0.0309863 0.09378,-0.0309863 0.05871,0 0.100297,0.0497412 0.04159,0.0497412 0.04159,0.19814941 V 1.67 H 32.874536 V 1.0478271 q 0,-0.0766504 -0.0049,-0.10437498 -0.0049,-0.02854 -0.01957,-0.0432178 -0.01468,-0.0146777 -0.0318,-0.0146777 -0.0424,0 -0.09133,0.0652344 -0.04811,0.0644189 -0.09867,0.21445801 V 1.67 H 32.501069 V 1.0486426 q 0,-0.12068364 -0.02365,-0.14188481 -0.02365,-0.0212012 -0.0424,-0.0212012 -0.04159,0 -0.0897,0.0725732 -0.0473,0.0725732 -0.09051,0.18591794 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path617" />
+              <path
+                 d="m 33.790264,1.4653271 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.114161,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581934 0.06034,-0.2821387 0.06034,-0.1247607 0.161456,-0.19651851 0.101113,-0.0725733 0.250336,-0.0725733 0.04322,0 0.130469,0.00897 0.01305,0.001631 0.03914,0.004077 h 0.152485 V 1.402539 q 0,0.1647168 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 0.89452634 q -0.08073,-0.0212012 -0.150039,-0.0212012 -0.140254,0 -0.234029,0.10845215 -0.09296,0.10845218 -0.09296,0.29518558 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path619" />
+              <path
+                 d="M 34.193086,1.67 V 0.75916502 h 0.15167 v 0.19896484 q 0.06523,-0.10519043 0.157378,-0.16471679 0.09214,-0.0595264 0.184287,-0.0595264 0.08073,0 0.146777,0.0432178 0.06605,0.0424023 0.09214,0.11171387 0.02691,0.0693115 0.02691,0.27235346 V 1.67 h -0.15167 V 1.142417 q 0,-0.1312842 -0.01305,-0.17287113 -0.01223,-0.0424023 -0.04648,-0.0693115 -0.03343,-0.0269092 -0.07339,-0.0269092 -0.07991,0 -0.172055,0.075835 -0.09133,0.075835 -0.150855,0.18999507 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path621" />
+              <path
+                 d="m 35.568716,1.7083252 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09378,0.039141 z m 0,-0.70860843 q -0.05463,0 -0.09377,-0.0391406 -0.03914,-0.0391406 -0.03914,-0.0937744 0,-0.0554492 0.03914,-0.0937744 0.03996,-0.0391406 0.09377,-0.0391406 0.05382,0 0.09296,0.0391406 0.03996,0.0383252 0.03996,0.0937744 0,0.0546338 -0.03914,0.0937744 -0.03914,0.0391406 -0.09378,0.0391406 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path623" />
+              <path
+                 d="M 36.44041,1.67 V 0.4811035 H 36.168057 V 0.35389648 H 36.59208 V 1.5436084 h 0.284585 V 1.67 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path625" />
+              <path
+                 d="m 37.95874,1.6333056 q -0.106821,0.044849 -0.154931,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084521 -0.03996,-0.071758 -0.03996,-0.2217969 V 0.96139158 h -0.227504 v -0.1263916 h 0.227504 V 0.46805663 h 0.15167 v 0.36694335 h 0.405269 v 0.1263916 H 37.528193 V 1.3258886 q 0,0.110083 0.02609,0.1557471 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path627" />
+              <path
+                 d="M 38.209078,1.6218896 V 1.46125 q 0.09133,0.059526 0.193256,0.083989 0.101929,0.023648 0.172871,0.023648 0.114976,0 0.165533,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.105191,-0.041587 q -0.169609,-0.06605 -0.213642,-0.1223144 -0.04485,-0.055449 -0.04485,-0.13536133 0,-0.11252929 0.08644,-0.18510253 0.08725,-0.0725732 0.282139,-0.0725732 0.145962,0 0.276431,0.0424023 v 0.13780762 q -0.150039,-0.0538184 -0.282139,-0.0538184 -0.09622,0 -0.150854,0.034248 -0.05382,0.0334326 -0.05382,0.0839893 0,0.0489258 0.04729,0.0782812 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.14107,0.051372 0.19815,0.1117138 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948877 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path629" />
+              <path
+                 d="m 39.340078,0.96383787 q 0.07013,-0.11416016 0.167164,-0.17205566 0.09704,-0.0578955 0.178579,-0.0578955 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.29926271 0,0.1581933 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101114,0.071758 -0.250337,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 V 2.0238964 H 39.188409 V 0.75916502 h 0.151669 z m 0,0.18020993 v 0.3905908 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084522 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.20467283 -0.05137,-0.0684961 -0.116606,-0.0684961 -0.07094,0 -0.156563,0.0717578 -0.0848,0.0717578 -0.153301,0.19325681 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path631" />
+              <path
+                 d="m 40.948921,1.9733398 q -0.225874,-0.013862 -0.380806,-0.1280225 -0.154931,-0.1133447 -0.24789,-0.3066015 -0.09214,-0.1932569 -0.09214,-0.3873291 0,-0.19407227 0.09214,-0.3873291 0.09296,-0.19325683 0.24789,-0.30660156 0.154932,-0.11416015 0.380806,-0.12883788 v 0.12720702 q -0.170425,0.0154932 -0.293555,0.11497559 -0.122314,0.098667 -0.192441,0.25196776 -0.07013,0.15330078 -0.07013,0.32861817 0,0.1753174 0.07013,0.3286181 0.07013,0.1533008 0.192441,0.2519678 0.12313,0.098667 0.293555,0.1149756 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path633" />
+              <path
+                 d="m 41.45041,0.98748533 -0.02772,-0.0203858 q -0.0579,-0.0407715 -0.113345,-0.11986816 -0.05545,-0.0799121 -0.05545,-0.17531737 0,-0.1263916 0.09948,-0.21527344 0.09948,-0.0896973 0.252783,-0.0896973 0.09377,0 0.168794,0.034248 0.07502,0.0334326 0.115791,0.0994824 0.04077,0.0660498 0.04077,0.14433105 0,0.0538184 -0.01875,0.10437499 -0.01875,0.0497412 -0.05627,0.0994824 -0.03669,0.0489258 -0.146777,0.13862305 l 0.0685,0.0546338 q 0.119868,0.097852 0.161455,0.168794 0.04159,0.070942 0.04159,0.1590087 0,0.1369922 -0.09948,0.2381055 -0.09948,0.1002979 -0.298448,0.1002979 -0.19978,0 -0.299262,-0.093775 -0.09948,-0.09459 -0.09948,-0.2340283 0,-0.2079345 0.26583,-0.39303707 z m 0.155747,-0.0774658 q 0.114976,-0.087251 0.143516,-0.14596191 0.02935,-0.0587109 0.02935,-0.10926758 0,-0.0611572 -0.05382,-0.11089843 -0.05382,-0.0505566 -0.138623,-0.0505566 -0.09133,0 -0.139438,0.0546338 -0.0473,0.0546338 -0.0473,0.11334472 0,0.0570801 0.03996,0.10763672 0.03996,0.0505566 0.128022,0.11334472 z M 41.56457,1.0682129 q -0.215273,0.1655322 -0.215273,0.3098632 0,0.08562 0.07094,0.1443311 0.07094,0.058711 0.167979,0.058711 0.08888,0 0.159009,-0.056265 0.07013,-0.056265 0.07013,-0.1402539 0,-0.082358 -0.08562,-0.1671631 -0.0848,-0.084805 -0.118237,-0.1108984 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path635" />
+              <path
+                 d="m 42.205498,0.32861816 q 0.225874,0.0146777 0.380806,0.12883788 0.154931,0.11334473 0.247075,0.30660156 0.09296,0.19325683 0.09296,0.3873291 0,0.1940722 -0.09296,0.3873291 -0.09214,0.1932568 -0.247075,0.3066015 -0.154932,0.1141602 -0.380806,0.1280225 V 1.8469482 q 0.170425,-0.016309 0.292739,-0.1149756 0.12313,-0.098667 0.193257,-0.2519678 0.07094,-0.1533007 0.07094,-0.3286181 0,-0.17531739 -0.07094,-0.32861817 -0.07013,-0.15330077 -0.193257,-0.25196776 -0.122314,-0.0994824 -0.292739,-0.11497559 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path637" />
+            </g>
+            <g
+               aria-label="tmpfs"
+               id="text44"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.88800291,3.8043057 q -0.10682129,0.044849 -0.15493164,0.053003 -0.0481104,0.00897 -0.092959,0.00897 -0.0954053,0 -0.17450195,-0.036694 Q 0.38651366,3.7928897 0.34574218,3.7211319 0.30578612,3.6493741 0.30578612,3.499335 V 3.1323917 H 0.07828125 V 3.0060001 H 0.30578612 V 2.6390568 H 0.45745604 V 3.0060001 H 0.86272459 V 3.1323917 H 0.45745604 v 0.3644971 q 0,0.110083 0.0260937,0.155747 0.0260938,0.044849 0.0693115,0.06605 0.0440332,0.021201 0.10355957,0.021201 0.11008301,0 0.23158203,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path640" />
+              <path
+                 d="m 1.0592432,3.8410001 v -0.910835 h 0.132915 v 0.20875 q 0.062788,-0.132915 0.1166064,-0.1834716 0.054634,-0.050557 0.1100831,-0.050557 0.06605,0 0.1060058,0.052188 0.040771,0.051372 0.040771,0.1467774 v 0.048926 q 0.026909,-0.083174 0.064419,-0.1345459 0.038325,-0.052188 0.079097,-0.082358 0.040771,-0.030986 0.093774,-0.030986 0.058711,0 0.1002979,0.049741 0.041587,0.049741 0.041587,0.1981494 V 3.8410001 H 1.8118847 V 3.2188272 q 0,-0.07665 -0.00489,-0.104375 -0.00489,-0.02854 -0.01957,-0.043218 -0.014678,-0.014678 -0.031802,-0.014678 -0.042402,0 -0.091328,0.065234 -0.04811,0.064419 -0.098667,0.214458 v 0.504751 H 1.438418 V 3.2196427 q 0,-0.1206836 -0.023648,-0.1418848 -0.023647,-0.021201 -0.042402,-0.021201 -0.041587,0 -0.089697,0.072573 -0.047295,0.072573 -0.090513,0.1859179 v 0.5259522 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path642" />
+              <path
+                 d="M 2.2693408,3.134838 Q 2.3394678,3.0206778 2.4365039,2.9627823 2.53354,2.9048868 2.615083,2.9048868 q 0.1141602,0 0.2054883,0.098667 0.091328,0.098667 0.091328,0.2992627 0,0.1581934 -0.061157,0.2829541 -0.060342,0.1239453 -0.1614551,0.1965185 -0.1011133,0.071758 -0.2503369,0.071758 -0.042402,0 -0.1304688,-0.00897 -0.013047,-0.00163 -0.039141,-0.00408 V 4.1948966 H 2.1176709 V 2.9301651 h 0.1516699 z m 0,0.1802099 v 0.3905909 q 0.082358,0.021201 0.1516699,0.021201 0.1378077,0 0.2315821,-0.1076367 0.09459,-0.1084521 0.09459,-0.296001 0,-0.1361767 -0.051372,-0.2046728 -0.051372,-0.068496 -0.1166064,-0.068496 -0.070942,0 -0.1565625,0.071758 -0.084805,0.071758 -0.1533008,0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path644" />
+              <path
+                 d="M 3.3424464,3.8410001 V 3.1323917 H 3.1402199 V 3.0060001 h 0.2022265 v -0.042402 q 0,-0.18021 0.040771,-0.2666455 0.040771,-0.086436 0.1255762,-0.1418848 0.08562,-0.055449 0.225874,-0.055449 0.1060058,0 0.2152734,0.022017 v 0.144331 q -0.1182373,-0.039141 -0.2095654,-0.039141 -0.072573,0 -0.1280225,0.026909 -0.055449,0.026909 -0.087251,0.088066 -0.030986,0.060342 -0.030986,0.2054883 v 0.058711 H 3.8553517 V 3.1323917 H 3.4941163 v 0.7086084 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path646" />
+              <path
+                 d="M 4.1423828,3.7928897 V 3.6322501 q 0.091328,0.059526 0.1932569,0.083989 0.1019287,0.023648 0.172871,0.023648 0.1149756,0 0.1655323,-0.036694 0.050557,-0.03751 0.050557,-0.092959 0,-0.036694 -0.023648,-0.062788 -0.023647,-0.026094 -0.1174218,-0.064419 L 4.5313428,3.4618253 4.4261524,3.4202384 Q 4.256543,3.3541886 4.2125098,3.2979239 4.1676611,3.2424747 4.1676611,3.1625626 q 0,-0.1125293 0.086436,-0.1851025 0.087251,-0.072573 0.2821387,-0.072573 0.1459619,0 0.2764306,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.2821387,-0.053818 -0.096221,0 -0.1508544,0.034248 -0.053818,0.033433 -0.053818,0.083989 0,0.048926 0.047295,0.078281 0.04648,0.029355 0.1516699,0.067681 l 0.1027442,0.03751 q 0.1410693,0.051372 0.1981494,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.091328,0.1948876 -0.090513,0.075835 -0.2902929,0.075835 -0.174502,0 -0.3587891,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path648" />
+            </g>
+            <g
+               aria-label="/var/lib/docker"
+               id="text46"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 6.1881329,3.8793253 H 6.0389093 l 0.804829,-1.3413818 h 0.1443311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path651" />
+              <path
+                 d="M 7.4357403,3.8410001 7.0402569,2.9301651 H 7.2066046 L 7.5189141,3.651005 7.8377471,2.9301651 h 0.15167 l -0.3987452,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path653" />
+              <path
+                 d="m 8.7396124,3.6363272 q -0.069311,0.1141602 -0.1671631,0.1720557 -0.097036,0.057896 -0.1785791,0.057896 -0.1141602,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304688,0.00897 0.013047,0.00163 0.039141,0.00408 h 0.1524853 v 0.643374 q 0,0.1647168 0.034248,0.267461 H 8.7681524 q -0.017939,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 3.0655265 q -0.080728,-0.021201 -0.1500391,-0.021201 -0.1402539,0 -0.2340283,0.1084521 -0.092959,0.1084522 -0.092959,0.2951856 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166064,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path655" />
+              <path
+                 d="M 9.2199006,3.8410001 V 2.9301651 H 9.3715705 V 3.12913 q 0.070942,-0.1125293 0.1622705,-0.1679785 0.092144,-0.056265 0.2046729,-0.056265 0.082358,0 0.1647168,0.025278 V 3.2587833 H 9.7572688 V 3.0508487 q -0.038325,-0.00652 -0.060342,-0.00652 -0.084805,0 -0.1663477,0.066865 -0.081543,0.066865 -0.1590088,0.2005957 v 0.5292139 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path657" />
+              <path
+                 d="M 10.193524,3.8793253 H 10.0443 l 0.804829,-1.3413818 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path659" />
+              <path
+                 d="M 11.389759,3.8410001 V 2.6521036 h -0.272354 v -0.127207 h 0.424024 v 1.1897119 h 0.284585 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path661" />
+              <path
+                 d="M 12.401707,3.8410001 V 3.0565567 H 12.148924 V 2.9301651 h 0.404453 v 0.7844434 h 0.253599 V 3.8410001 Z M 12.376429,2.601547 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06687,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06687,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path663" />
+              <path
+                 d="m 13.288079,3.134838 q 0.07013,-0.1141602 0.167163,-0.1720557 0.09704,-0.057896 0.17858,-0.057896 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101114,0.071758 -0.250337,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 h -0.15167 V 2.5248966 h 0.15167 z m 0,0.1802099 v 0.3905909 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084521 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.2046728 -0.05137,-0.068496 -0.116606,-0.068496 -0.07094,0 -0.156563,0.071758 -0.08481,0.071758 -0.153301,0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path665" />
+              <path
+                 d="M 14.198914,3.8793253 H 14.049691 L 14.85452,2.5379435 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path667" />
+              <path
+                 d="m 15.758831,3.6363272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130468,0.00897 0.01305,0.00163 0.03914,0.00408 V 2.5248966 h 0.152485 v 1.3161035 h -0.152485 z m 0,-0.1802099 V 3.0655265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234028,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path669" />
+              <path
+                 d="m 16.526966,3.8662784 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369921 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194887,0 0.312309,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449267 -0.117422,0.1361768 -0.312309,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path671" />
+              <path
+                 d="m 17.919719,3.8149063 q -0.152485,0.051372 -0.290292,0.051372 -0.136993,0 -0.243814,-0.062788 -0.106006,-0.063604 -0.165532,-0.1712402 -0.05953,-0.1084522 -0.05953,-0.2462598 0,-0.2071191 0.134546,-0.3441113 0.135362,-0.1369922 0.326172,-0.1369922 0.14107,0 0.298447,0.053003 v 0.1459619 q -0.159008,-0.072573 -0.284584,-0.072573 -0.08317,0 -0.156563,0.041587 -0.07339,0.040771 -0.113345,0.1280225 -0.03996,0.087251 -0.03996,0.1793945 0,0.1231299 0.07665,0.2348438 0.07747,0.1117138 0.242182,0.1117138 0.04974,0 0.09785,-0.00652 0.04811,-0.00734 0.177763,-0.051372 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path673" />
+              <path
+                 d="M 18.195336,3.8410001 V 2.5248966 h 0.151669 v 0.8268457 l 0.437886,-0.4215772 h 0.202227 l -0.437071,0.4215772 0.448487,0.4892578 h -0.20875 L 18.347005,3.3517423 v 0.4892578 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path675" />
+              <path
+                 d="m 19.913446,3.7806583 q -0.181841,0.086436 -0.344112,0.086436 -0.123129,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247608 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 19.307582,3.2971085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path677" />
+              <path
+                 d="m 20.234725,3.8410001 v -0.910835 h 0.15167 V 3.12913 q 0.07094,-0.1125293 0.16227,-0.1679785 0.09214,-0.056265 0.204673,-0.056265 0.08236,0 0.164717,0.025278 V 3.2587833 H 20.772093 V 3.0508487 q -0.03833,-0.00652 -0.06034,-0.00652 -0.0848,0 -0.166347,0.066865 -0.08154,0.066865 -0.159009,0.2005957 v 0.5292139 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path679" />
+            </g>
+            <g
+               aria-label="tmpfs"
+               id="text48"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 22.932004,3.8043057 q -0.106822,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217969 V 3.1323917 H 22.122282 V 3.0060001 h 0.227505 V 2.6390568 h 0.15167 v 0.3669433 h 0.405268 v 0.1263916 h -0.405268 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path682" />
+              <path
+                 d="m 23.103244,3.8410001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.1834716 0.05463,-0.050557 0.110083,-0.050557 0.06605,0 0.106006,0.052188 0.04077,0.051372 0.04077,0.1467774 v 0.048926 q 0.02691,-0.083174 0.06442,-0.1345459 0.03833,-0.052188 0.0791,-0.082358 0.04077,-0.030986 0.09378,-0.030986 0.05871,0 0.100297,0.049741 0.04159,0.049741 0.04159,0.1981494 V 3.8410001 H 23.855885 V 3.2188272 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.043218 -0.01468,-0.014678 -0.0318,-0.014678 -0.0424,0 -0.09133,0.065234 -0.04811,0.064419 -0.09867,0.214458 v 0.504751 H 23.482419 V 3.2196427 q 0,-0.1206836 -0.02365,-0.1418848 -0.02365,-0.021201 -0.0424,-0.021201 -0.04159,0 -0.0897,0.072573 -0.04729,0.072573 -0.09051,0.1859179 v 0.5259522 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path684" />
+              <path
+                 d="m 24.313341,3.134838 q 0.07013,-0.1141602 0.167164,-0.1720557 0.09704,-0.057896 0.178579,-0.057896 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101114,0.071758 -0.250337,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 V 4.1948966 H 24.161672 V 2.9301651 h 0.151669 z m 0,0.1802099 v 0.3905909 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084521 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.2046728 -0.05137,-0.068496 -0.116606,-0.068496 -0.07094,0 -0.156563,0.071758 -0.0848,0.071758 -0.153301,0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path686" />
+              <path
+                 d="M 25.386447,3.8410001 V 3.1323917 H 25.18422 V 3.0060001 h 0.202227 v -0.042402 q 0,-0.18021 0.04077,-0.2666455 0.04077,-0.086436 0.125576,-0.1418848 0.08562,-0.055449 0.225874,-0.055449 0.106006,0 0.215273,0.022017 v 0.144331 q -0.118237,-0.039141 -0.209565,-0.039141 -0.07257,0 -0.128023,0.026909 -0.05545,0.026909 -0.08725,0.088066 -0.03099,0.060342 -0.03099,0.2054883 v 0.058711 h 0.361235 v 0.1263916 h -0.361235 v 0.7086084 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path688" />
+              <path
+                 d="M 26.186383,3.7928897 V 3.6322501 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114976,0 0.165533,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.169609,-0.06605 -0.213643,-0.1223145 -0.04485,-0.055449 -0.04485,-0.1353613 0,-0.1125293 0.08643,-0.1851025 0.08725,-0.072573 0.282139,-0.072573 0.145962,0 0.276431,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282139,-0.053818 -0.09622,0 -0.150855,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.04729,0.078281 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.19815,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948876 -0.09051,0.075835 -0.290292,0.075835 -0.174502,0 -0.35879,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path690" />
+            </g>
+            <g
+               aria-label="x-systemd.wanted-by=docker.service"
+               id="text50"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 28.276981,3.8410001 H 28.101664 L 28.459637,3.3639737 28.125311,2.9301651 h 0.194073 l 0.23729,0.3057862 0.230766,-0.3057862 h 0.172056 L 28.643109,3.349296 29.019022,3.8410001 H 28.824135 L 28.546888,3.4781339 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path693" />
+              <path
+                 d="M 29.24245,3.3916983 V 3.2653067 h 0.632773 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path695" />
+              <path
+                 d="M 30.195687,3.7928897 V 3.6322501 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114976,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.16961,-0.06605 -0.213643,-0.1223145 -0.04485,-0.055449 -0.04485,-0.1353613 0,-0.1125293 0.08643,-0.1851025 0.08725,-0.072573 0.282139,-0.072573 0.145962,0 0.27643,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282138,-0.053818 -0.09622,0 -0.150855,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.04729,0.078281 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948876 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path697" />
+              <path
+                 d="M 31.521576,3.8043057 31.100814,2.9301651 h 0.167163 l 0.335142,0.6833301 0.280508,-0.6833301 h 0.152485 l -0.353081,0.846416 q -0.111714,0.2682764 -0.212827,0.3563428 -0.100298,0.088066 -0.260122,0.088066 -0.06931,0 -0.123945,-0.012231 V 4.0750284 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.1011133 0.04729,-0.072573 0.06686,-0.1255762 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path699" />
+              <path
+                 d="M 32.198383,3.7928897 V 3.6322501 q 0.09133,0.059526 0.193256,0.083989 0.101929,0.023648 0.172872,0.023648 0.114975,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.105191,-0.041587 q -0.169609,-0.06605 -0.213642,-0.1223145 -0.04485,-0.055449 -0.04485,-0.1353613 0,-0.1125293 0.08644,-0.1851025 0.08725,-0.072573 0.282139,-0.072573 0.145962,0 0.276431,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282139,-0.053818 -0.09622,0 -0.150854,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.0473,0.078281 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.14107,0.051372 0.19815,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948876 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path701" />
+              <path
+                 d="m 33.950741,3.8043057 q -0.106821,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217969 V 3.1323917 H 33.141019 V 3.0060001 h 0.227505 V 2.6390568 h 0.15167 v 0.3669433 h 0.405269 v 0.1263916 h -0.405269 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path703" />
+              <path
+                 d="m 34.948012,3.7806583 q -0.181841,0.086436 -0.344112,0.086436 -0.123129,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247608 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 34.342147,3.2971085 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09378,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path705" />
+              <path
+                 d="m 35.123329,3.8410001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.1834716 0.05463,-0.050557 0.110083,-0.050557 0.06605,0 0.106006,0.052188 0.04077,0.051372 0.04077,0.1467774 v 0.048926 q 0.02691,-0.083174 0.06442,-0.1345459 0.03833,-0.052188 0.0791,-0.082358 0.04077,-0.030986 0.09378,-0.030986 0.05871,0 0.100298,0.049741 0.04159,0.049741 0.04159,0.1981494 V 3.8410001 H 35.875971 V 3.2188272 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.043218 -0.01468,-0.014678 -0.0318,-0.014678 -0.0424,0 -0.09133,0.065234 -0.04811,0.064419 -0.09867,0.214458 v 0.504751 H 35.502504 V 3.2196427 q 0,-0.1206836 -0.02365,-0.1418848 -0.02365,-0.021201 -0.0424,-0.021201 -0.04159,0 -0.0897,0.072573 -0.04729,0.072573 -0.09051,0.1859179 v 0.5259522 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path707" />
+              <path
+                 d="m 36.801483,3.6363272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 V 2.5248966 h 0.152486 v 1.3161035 h -0.152486 z m 0,-0.1802099 V 3.0655265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234028,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path709" />
+              <path
+                 d="m 37.568802,3.8793253 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09378,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path711" />
+              <path
+                 d="m 38.234193,3.8410001 -0.148408,-0.910835 h 0.141069 l 0.08644,0.5544922 0.02283,0.1288379 0.02202,-0.1288379 0.145147,-0.5544922 h 0.136176 l 0.163902,0.5544922 0.02854,0.1288379 0.01876,-0.1288379 0.08725,-0.5544922 h 0.116606 l -0.147593,0.910835 h -0.141884 l -0.174502,-0.586294 -0.02772,-0.1288378 h -0.0041 l -0.02528,0.1280224 -0.15167,0.5871094 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path713" />
+              <path
+                 d="m 39.795741,3.6363272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.17858,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101114,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 h 0.152485 v 0.643374 q 0,0.1647168 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.2046729 z m 0,-0.1802099 V 3.0655265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234029,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path715" />
+              <path
+                 d="m 40.198564,3.8410001 v -0.910835 h 0.15167 V 3.12913 q 0.06523,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184287,-0.059526 0.08073,0 0.146777,0.043218 0.06605,0.042402 0.09214,0.1117139 0.02691,0.069311 0.02691,0.2723535 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150854,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path717" />
+              <path
+                 d="m 41.961523,3.8043057 q -0.106822,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217969 V 3.1323917 H 41.151801 V 3.0060001 h 0.227505 V 2.6390568 h 0.15167 v 0.3669433 h 0.405268 v 0.1263916 h -0.405268 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path719" />
+              <path
+                 d="m 42.958793,3.7806583 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247608 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 42.352929,3.2971085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path721" />
+              <path
+                 d="m 43.810917,3.6363272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.178579,0.057896 -0.11416,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130468,0.00897 0.01305,0.00163 0.03914,0.00408 V 2.5248966 h 0.152485 v 1.3161035 h -0.152485 z m 0,-0.1802099 V 3.0655265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234028,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path723" />
+              <path
+                 d="M 44.262665,3.3916983 V 3.2653067 h 0.632773 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path725" />
+              <path
+                 d="m 45.345556,3.134838 q 0.07013,-0.1141602 0.167163,-0.1720557 0.09704,-0.057896 0.17858,-0.057896 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101114,0.071758 -0.250337,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 h -0.15167 V 2.5248966 h 0.15167 z m 0,0.1802099 v 0.3905909 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084521 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.2046728 -0.05137,-0.068496 -0.116606,-0.068496 -0.07094,0 -0.156563,0.071758 -0.08481,0.071758 -0.153301,0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path727" />
+              <path
+                 d="M 46.541791,3.8043057 46.121029,2.9301651 h 0.167163 l 0.335142,0.6833301 0.280507,-0.6833301 h 0.152486 l -0.353081,0.846416 q -0.111714,0.2682764 -0.212827,0.3563428 -0.100298,0.088066 -0.260123,0.088066 -0.06931,0 -0.123945,-0.012231 V 4.0750284 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.1011133 0.04729,-0.072573 0.06686,-0.1255762 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path729" />
+              <path
+                 d="M 48.025058,3.1959952 V 3.3223868 H 47.139501 V 3.1959952 Z m 0,0.284585 V 3.6069718 H 47.139501 V 3.4805802 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path731" />
+              <path
+                 d="m 48.817655,3.6363272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057896 -0.17858,0.057896 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101114,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 V 2.5248966 h 0.152485 v 1.3161035 h -0.152485 z m 0,-0.1802099 V 3.0655265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234029,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path733" />
+              <path
+                 d="m 49.58579,3.8662784 q -0.195703,0 -0.313125,-0.1361768 -0.117422,-0.1369921 -0.117422,-0.3449267 0,-0.2079346 0.117422,-0.3441113 0.117422,-0.1361768 0.313125,-0.1361768 0.194888,0 0.31231,0.1361768 0.117422,0.1361767 0.117422,0.3441113 0,0.2079346 -0.117422,0.3449267 -0.117422,0.1361768 -0.31231,0.1361768 z m 0,-0.1263916 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.2601221 0,-0.1647168 -0.07176,-0.2593066 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.2593066 0,0.1655322 0.07176,0.2601221 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path735" />
+              <path
+                 d="m 50.978543,3.8149063 q -0.152485,0.051372 -0.290293,0.051372 -0.136992,0 -0.243813,-0.062788 -0.106006,-0.063604 -0.165533,-0.1712402 -0.05953,-0.1084522 -0.05953,-0.2462598 0,-0.2071191 0.134546,-0.3441113 0.135361,-0.1369922 0.326172,-0.1369922 0.141069,0 0.298447,0.053003 v 0.1459619 q -0.159009,-0.072573 -0.284585,-0.072573 -0.08317,0 -0.156562,0.041587 -0.07339,0.040771 -0.113345,0.1280225 -0.03996,0.087251 -0.03996,0.1793945 0,0.1231299 0.07665,0.2348438 0.07747,0.1117138 0.242183,0.1117138 0.04974,0 0.09785,-0.00652 0.04811,-0.00734 0.177764,-0.051372 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path737" />
+              <path
+                 d="M 51.254159,3.8410001 V 2.5248966 h 0.15167 v 0.8268457 l 0.437886,-0.4215772 h 0.202226 l -0.43707,0.4215772 0.448486,0.4892578 h -0.20875 L 51.405829,3.3517423 v 0.4892578 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path739" />
+              <path
+                 d="m 52.97227,3.7806583 q -0.18184,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247608 0.05545,-0.2397363 0.05545,-0.1149756 0.154931,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 52.366406,3.2971085 H 52.8206 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06687,0.066865 -0.09378,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path741" />
+              <path
+                 d="m 53.293549,3.8410001 v -0.910835 h 0.151669 V 3.12913 q 0.07094,-0.1125293 0.162271,-0.1679785 0.09214,-0.056265 0.204673,-0.056265 0.08236,0 0.164717,0.025278 V 3.2587833 H 53.830917 V 3.0508487 q -0.03833,-0.00652 -0.06034,-0.00652 -0.08481,0 -0.166348,0.066865 -0.08154,0.066865 -0.159009,0.2005957 v 0.5292139 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path743" />
+              <path
+                 d="m 54.591713,3.8793253 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093774 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093774 -0.03914,0.039141 -0.09378,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path745" />
+              <path
+                 d="M 55.229378,3.7928897 V 3.6322501 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114976,0 0.165533,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.169609,-0.06605 -0.213643,-0.1223145 -0.04485,-0.055449 -0.04485,-0.1353613 0,-0.1125293 0.08644,-0.1851025 0.08725,-0.072573 0.282139,-0.072573 0.145962,0 0.276431,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282139,-0.053818 -0.09622,0 -0.150855,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.04729,0.078281 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948876 -0.09051,0.075835 -0.290293,0.075835 -0.174501,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path747" />
+              <path
+                 d="m 56.97766,3.7806583 q -0.18184,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.05789,-0.1141602 -0.05789,-0.2438135 0,-0.1247608 0.05545,-0.2397363 0.05545,-0.1149756 0.154931,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.62788 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 56.371796,3.2971085 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06687,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path749" />
+              <path
+                 d="m 57.298939,3.8410001 v -0.910835 h 0.15167 V 3.12913 q 0.07094,-0.1125293 0.16227,-0.1679785 0.09214,-0.056265 0.204673,-0.056265 0.08236,0 0.164717,0.025278 V 3.2587833 H 57.836307 V 3.0508487 q -0.03833,-0.00652 -0.06034,-0.00652 -0.0848,0 -0.166348,0.066865 -0.08154,0.066865 -0.159008,0.2005957 v 0.5292139 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path751" />
+              <path
+                 d="m 58.518822,3.8410001 -0.395483,-0.910835 h 0.166348 l 0.312309,0.7208399 0.318833,-0.7208399 h 0.15167 l -0.398745,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path753" />
+              <path
+                 d="M 59.479397,3.8410001 V 3.0565567 H 59.226614 V 2.9301651 h 0.404453 v 0.7844434 h 0.253599 V 3.8410001 Z M 59.454119,2.601547 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06687,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06687,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path755" />
+              <path
+                 d="m 60.99202,3.8149063 q -0.152485,0.051372 -0.290293,0.051372 -0.136992,0 -0.243813,-0.062788 -0.106006,-0.063604 -0.165532,-0.1712402 -0.05953,-0.1084522 -0.05953,-0.2462598 0,-0.2071191 0.134546,-0.3441113 0.135362,-0.1369922 0.326172,-0.1369922 0.141069,0 0.298447,0.053003 v 0.1459619 q -0.159008,-0.072573 -0.284585,-0.072573 -0.08317,0 -0.156562,0.041587 -0.07339,0.040771 -0.113345,0.1280225 -0.03996,0.087251 -0.03996,0.1793945 0,0.1231299 0.07665,0.2348438 0.07746,0.1117138 0.242182,0.1117138 0.04974,0 0.09785,-0.00652 0.04811,-0.00734 0.177763,-0.051372 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path757" />
+              <path
+                 d="m 61.984397,3.7806583 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247608 0.05545,-0.2397363 0.05545,-0.1149756 0.154931,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 61.378533,3.2971085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path759" />
+            </g>
+            <g
+               aria-label="0"
+               id="text52"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 63.626673,2.5379435 q 0.216089,0 0.329434,0.1818408 0.113345,0.1810254 0.113345,0.4884424 0,0.3082324 -0.113345,0.4900732 -0.113345,0.1810254 -0.329434,0.1810254 -0.215273,0 -0.329433,-0.1810254 -0.113345,-0.1818408 -0.113345,-0.4900732 0,-0.307417 0.113345,-0.4884424 0.11416,-0.1818408 0.329433,-0.1818408 z M 63.379598,3.4789493 63.817484,2.793173 q -0.04159,-0.075835 -0.09051,-0.1019287 -0.04811,-0.026909 -0.100298,-0.026909 -0.136176,0 -0.207119,0.1516699 -0.07094,0.1508545 -0.07094,0.3832519 0,0.053003 0.0033,0.1141602 0.0033,0.061157 0.02773,0.1655322 z m 0.49252,-0.5349219 -0.434624,0.6898535 q 0.03506,0.059526 0.08073,0.089697 0.04566,0.029355 0.101929,0.029355 0.154931,0 0.220166,-0.1728711 0.06523,-0.1736865 0.06523,-0.3848828 0,-0.1304688 -0.03343,-0.2511524 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path762" />
+            </g>
+            <g
+               aria-label="0"
+               id="text54"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 65.630671,2.5379435 q 0.216089,0 0.329434,0.1818408 0.113344,0.1810254 0.113344,0.4884424 0,0.3082324 -0.113344,0.4900732 -0.113345,0.1810254 -0.329434,0.1810254 -0.215273,0 -0.329434,-0.1810254 -0.113344,-0.1818408 -0.113344,-0.4900732 0,-0.307417 0.113344,-0.4884424 0.114161,-0.1818408 0.329434,-0.1818408 z M 65.383596,3.4789493 65.821482,2.793173 q -0.04159,-0.075835 -0.09051,-0.1019287 -0.04811,-0.026909 -0.100298,-0.026909 -0.136177,0 -0.207119,0.1516699 -0.07094,0.1508545 -0.07094,0.3832519 0,0.053003 0.0033,0.1141602 0.0033,0.061157 0.02773,0.1655322 z m 0.492519,-0.5349219 -0.434624,0.6898535 q 0.03506,0.059526 0.08073,0.089697 0.04566,0.029355 0.101929,0.029355 0.154931,0 0.220166,-0.1728711 0.06523,-0.1736865 0.06523,-0.3848828 0,-0.1304688 -0.03343,-0.2511524 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path765" />
+            </g>
+            <g
+               aria-label="tmpfs"
+               id="text56"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.88800291,5.9753057 q -0.10682129,0.044849 -0.15493164,0.053003 -0.0481104,0.00897 -0.092959,0.00897 -0.0954053,0 -0.17450195,-0.036694 Q 0.38651366,5.9638897 0.34574218,5.8921319 0.30578612,5.8203741 0.30578612,5.6703351 V 5.3033917 H 0.07828125 V 5.1770001 H 0.30578612 V 4.8100568 H 0.45745604 V 5.1770001 H 0.86272459 V 5.3033917 H 0.45745604 v 0.3644971 q 0,0.110083 0.0260937,0.155747 0.0260938,0.044849 0.0693115,0.06605 0.0440332,0.021201 0.10355957,0.021201 0.11008301,0 0.23158203,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path768" />
+              <path
+                 d="m 1.0592432,6.0120001 v -0.910835 h 0.132915 v 0.20875 q 0.062788,-0.132915 0.1166064,-0.1834716 0.054634,-0.050557 0.1100831,-0.050557 0.06605,0 0.1060058,0.052187 0.040771,0.051372 0.040771,0.1467774 v 0.048926 q 0.026909,-0.083174 0.064419,-0.1345458 0.038325,-0.052188 0.079097,-0.082358 0.040771,-0.030986 0.093774,-0.030986 0.058711,0 0.1002979,0.049741 0.041587,0.049741 0.041587,0.1981494 V 6.0120001 H 1.8118847 V 5.3898272 q 0,-0.07665 -0.00489,-0.1043749 -0.00489,-0.02854 -0.01957,-0.043218 -0.014678,-0.014678 -0.031802,-0.014678 -0.042402,0 -0.091328,0.065234 -0.04811,0.064419 -0.098667,0.214458 v 0.504751 H 1.438418 V 5.3906427 q 0,-0.1206836 -0.023648,-0.1418848 -0.023647,-0.021201 -0.042402,-0.021201 -0.041587,0 -0.089697,0.072573 -0.047295,0.072573 -0.090513,0.1859179 v 0.5259522 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path770" />
+              <path
+                 d="M 2.2693408,5.305838 Q 2.3394678,5.1916778 2.4365039,5.1337823 2.53354,5.0758868 2.615083,5.0758868 q 0.1141602,0 0.2054883,0.098667 0.091328,0.098667 0.091328,0.2992627 0,0.1581934 -0.061157,0.2829541 -0.060342,0.1239453 -0.1614551,0.1965185 -0.1011133,0.071758 -0.2503369,0.071758 -0.042402,0 -0.1304688,-0.00897 -0.013047,-0.00163 -0.039141,-0.00408 V 6.3658966 H 2.1176709 V 5.1011651 h 0.1516699 z m 0,0.1802099 v 0.3905909 q 0.082358,0.021201 0.1516699,0.021201 0.1378077,0 0.2315821,-0.1076367 0.09459,-0.1084521 0.09459,-0.296001 0,-0.1361767 -0.051372,-0.2046728 -0.051372,-0.068496 -0.1166064,-0.068496 -0.070942,0 -0.1565625,0.071758 -0.084805,0.071758 -0.1533008,0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path772" />
+              <path
+                 d="M 3.3424464,6.0120001 V 5.3033917 H 3.1402199 V 5.1770001 h 0.2022265 v -0.042402 q 0,-0.18021 0.040771,-0.2666455 0.040771,-0.086436 0.1255762,-0.1418848 0.08562,-0.055449 0.225874,-0.055449 0.1060058,0 0.2152734,0.022017 v 0.144331 q -0.1182373,-0.039141 -0.2095654,-0.039141 -0.072573,0 -0.1280225,0.026909 -0.055449,0.026909 -0.087251,0.088066 -0.030986,0.060342 -0.030986,0.2054883 v 0.058711 H 3.8553517 V 5.3033917 H 3.4941163 v 0.7086084 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path774" />
+              <path
+                 d="M 4.1423828,5.9638897 V 5.8032501 q 0.091328,0.059526 0.1932569,0.083989 0.1019287,0.023648 0.172871,0.023648 0.1149756,0 0.1655323,-0.036694 0.050557,-0.03751 0.050557,-0.092959 0,-0.036694 -0.023648,-0.062788 -0.023647,-0.026094 -0.1174218,-0.064419 L 4.5313428,5.6328253 4.4261524,5.5912384 Q 4.256543,5.5251886 4.2125098,5.4689239 4.1676611,5.4134747 4.1676611,5.3335626 q 0,-0.1125293 0.086436,-0.1851025 0.087251,-0.072573 0.2821387,-0.072573 0.1459619,0 0.2764306,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.2821387,-0.053818 -0.096221,0 -0.1508544,0.034248 -0.053818,0.033433 -0.053818,0.083989 0,0.048926 0.047295,0.078281 0.04648,0.029355 0.1516699,0.067681 l 0.1027442,0.03751 q 0.1410693,0.051372 0.1981494,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.091328,0.1948876 -0.090513,0.075835 -0.2902929,0.075835 -0.174502,0 -0.3587891,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path776" />
+            </g>
+            <g
+               aria-label="/var/lib/kubelet"
+               id="text58"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 6.1881329,6.0503253 H 6.0389093 l 0.804829,-1.3413818 h 0.1443311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path779" />
+              <path
+                 d="M 7.4357403,6.0120001 7.0402569,5.1011651 H 7.2066046 L 7.5189141,5.822005 7.8377471,5.1011651 h 0.15167 l -0.3987452,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path781" />
+              <path
+                 d="m 8.7396124,5.8073272 q -0.069311,0.1141602 -0.1671631,0.1720557 -0.097036,0.057895 -0.1785791,0.057895 -0.1141602,0 -0.2054883,-0.098667 -0.090513,-0.098667 -0.090513,-0.2992627 0,-0.1581933 0.060342,-0.2821386 0.060342,-0.1247608 0.1614551,-0.1965186 0.1011133,-0.072573 0.2503369,-0.072573 0.043218,0 0.1304688,0.00897 0.013047,0.00163 0.039141,0.00408 h 0.1524853 v 0.6433741 q 0,0.1647167 0.034248,0.2674609 H 8.7681524 Q 8.750213,5.9369806 8.7396124,5.8073272 Z m 0,-0.1802099 V 5.2365265 q -0.080728,-0.021201 -0.1500391,-0.021201 -0.1402539,0 -0.2340283,0.1084521 -0.092959,0.1084522 -0.092959,0.2951856 0,0.1353613 0.050557,0.2046728 0.051372,0.068496 0.1166064,0.068496 0.070942,0 0.1565625,-0.071758 0.08562,-0.071758 0.1533008,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path783" />
+              <path
+                 d="M 9.2199006,6.0120001 V 5.1011651 H 9.3715705 V 5.30013 q 0.070942,-0.1125293 0.1622705,-0.1679785 0.092144,-0.056265 0.2046729,-0.056265 0.082358,0 0.1647168,0.025278 V 5.4297833 H 9.7572688 V 5.2218487 q -0.038325,-0.00652 -0.060342,-0.00652 -0.084805,0 -0.1663477,0.066865 -0.081543,0.066865 -0.1590088,0.2005957 v 0.5292139 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path785" />
+              <path
+                 d="M 10.193524,6.0503253 H 10.0443 l 0.804829,-1.3413818 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path787" />
+              <path
+                 d="M 11.389759,6.0120001 V 4.8231036 h -0.272354 v -0.127207 h 0.424024 v 1.1897119 h 0.284585 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path789" />
+              <path
+                 d="M 12.401707,6.0120001 V 5.2275567 H 12.148924 V 5.1011651 h 0.404453 v 0.7844434 h 0.253599 V 6.0120001 Z M 12.376429,4.772547 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06687,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06687,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path791" />
+              <path
+                 d="m 13.288079,5.305838 q 0.07013,-0.1141602 0.167163,-0.1720557 0.09704,-0.057895 0.17858,-0.057895 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101114,0.071758 -0.250337,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 h -0.15167 V 4.6958966 h 0.15167 z m 0,0.1802099 v 0.3905909 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084521 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.2046728 -0.05137,-0.068496 -0.116606,-0.068496 -0.07094,0 -0.156563,0.071758 -0.08481,0.071758 -0.153301,0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path793" />
+              <path
+                 d="M 14.198914,6.0503253 H 14.049691 L 14.85452,4.7089435 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path795" />
+              <path
+                 d="M 15.191292,6.0120001 V 4.6958966 h 0.15167 v 0.8268457 l 0.437886,-0.4215772 h 0.202226 l -0.43707,0.4215772 0.448486,0.4892578 H 15.78574 L 15.342962,5.5227423 v 0.4892578 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path797" />
+              <path
+                 d="m 16.901248,5.1011651 v 0.910835 h -0.15167 V 5.8122198 q -0.07339,0.1125293 -0.163086,0.168794 -0.0897,0.056265 -0.179394,0.056265 -0.07991,0 -0.146778,-0.042402 -0.06605,-0.043218 -0.09214,-0.1125293 -0.02609,-0.070127 -0.02609,-0.2723535 V 5.1011651 h 0.15167 v 0.527583 q 0,0.1312842 0.01223,0.1736866 0.01305,0.041587 0.04648,0.068496 0.03425,0.026909 0.07339,0.026909 0.07991,0 0.171241,-0.075019 0.09214,-0.075835 0.152485,-0.1908105 V 5.1011651 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path799" />
+              <path
+                 d="m 17.293469,5.305838 q 0.07013,-0.1141602 0.167164,-0.1720557 0.09704,-0.057895 0.178579,-0.057895 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101114,0.071758 -0.250337,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 H 17.1418 V 4.6958966 h 0.151669 z m 0,0.1802099 v 0.3905909 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084521 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.2046728 -0.05137,-0.068496 -0.116606,-0.068496 -0.07094,0 -0.156563,0.071758 -0.0848,0.071758 -0.153301,0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path801" />
+              <path
+                 d="m 18.912098,5.9516583 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154931,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 18.306234,5.4681085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path803" />
+              <path
+                 d="M 19.400541,6.0120001 V 4.8231036 h -0.272354 v -0.127207 h 0.424023 v 1.1897119 h 0.284585 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path805" />
+              <path
+                 d="m 20.914793,5.9516583 q -0.18184,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154931,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 20.308929,5.4681085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06687,0.066865 -0.09378,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path807" />
+              <path
+                 d="m 21.920218,5.9753057 q -0.106821,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 5.3033917 H 21.110496 V 5.1770001 h 0.227505 V 4.8100568 h 0.15167 v 0.3669433 h 0.405269 v 0.1263916 h -0.405269 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path809" />
+            </g>
+            <g
+               aria-label="tmpfs"
+               id="text60"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 23.934002,5.9753057 q -0.106821,0.044849 -0.154931,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 5.3033917 H 23.124281 V 5.1770001 h 0.227505 V 4.8100568 h 0.15167 v 0.3669433 h 0.405268 v 0.1263916 h -0.405268 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path812" />
+              <path
+                 d="m 24.105243,6.0120001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.1834716 0.05463,-0.050557 0.110083,-0.050557 0.06605,0 0.106006,0.052187 0.04077,0.051372 0.04077,0.1467774 v 0.048926 q 0.02691,-0.083174 0.06442,-0.1345458 0.03833,-0.052188 0.0791,-0.082358 0.04077,-0.030986 0.09378,-0.030986 0.05871,0 0.100297,0.049741 0.04159,0.049741 0.04159,0.1981494 V 6.0120001 H 24.857884 V 5.3898272 q 0,-0.07665 -0.0049,-0.1043749 -0.0049,-0.02854 -0.01957,-0.043218 -0.01468,-0.014678 -0.0318,-0.014678 -0.0424,0 -0.09133,0.065234 -0.04811,0.064419 -0.09867,0.214458 v 0.504751 H 24.484417 V 5.3906427 q 0,-0.1206836 -0.02365,-0.1418848 -0.02365,-0.021201 -0.0424,-0.021201 -0.04159,0 -0.0897,0.072573 -0.04729,0.072573 -0.09051,0.1859179 v 0.5259522 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path814" />
+              <path
+                 d="m 25.31534,5.305838 q 0.07013,-0.1141602 0.167163,-0.1720557 0.09704,-0.057895 0.17858,-0.057895 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101114,0.071758 -0.250337,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 V 6.3658966 H 25.16367 V 5.1011651 h 0.15167 z m 0,0.1802099 v 0.3905909 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084521 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.2046728 -0.05137,-0.068496 -0.116606,-0.068496 -0.07094,0 -0.156563,0.071758 -0.08481,0.071758 -0.153301,0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path816" />
+              <path
+                 d="M 26.388446,6.0120001 V 5.3033917 H 26.186219 V 5.1770001 h 0.202227 v -0.042402 q 0,-0.18021 0.04077,-0.2666455 0.04077,-0.086436 0.125577,-0.1418848 0.08562,-0.055449 0.225874,-0.055449 0.106005,0 0.215273,0.022017 v 0.144331 q -0.118237,-0.039141 -0.209565,-0.039141 -0.07257,0 -0.128023,0.026909 -0.05545,0.026909 -0.08725,0.088066 -0.03099,0.060342 -0.03099,0.2054883 v 0.058711 h 0.361235 v 0.1263916 h -0.361235 v 0.7086084 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path818" />
+              <path
+                 d="M 27.188382,5.9638897 V 5.8032501 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114976,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.169609,-0.06605 -0.213643,-0.1223145 -0.04485,-0.055449 -0.04485,-0.1353613 0,-0.1125293 0.08644,-0.1851025 0.08725,-0.072573 0.282139,-0.072573 0.145962,0 0.276431,0.042402 v 0.1378076 q -0.15004,-0.053818 -0.282139,-0.053818 -0.09622,0 -0.150855,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.0473,0.078281 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948876 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path820" />
+            </g>
+            <g
+               aria-label="x-systemd.wanted-by=kubelet.service"
+               id="text62"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 29.278982,6.0120001 H 29.103665 L 29.461638,5.5349737 29.127312,5.1011651 h 0.194072 l 0.23729,0.3057862 0.230767,-0.3057862 h 0.172056 L 29.64511,5.520296 30.021023,6.0120001 H 29.826135 L 29.548889,5.6491339 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path823" />
+              <path
+                 d="M 30.244451,5.5626983 V 5.4363067 h 0.632773 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path825" />
+              <path
+                 d="M 31.197688,5.9638897 V 5.8032501 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114976,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117421,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.16961,-0.06605 -0.213643,-0.1223145 -0.04485,-0.055449 -0.04485,-0.1353613 0,-0.1125293 0.08644,-0.1851025 0.08725,-0.072573 0.282139,-0.072573 0.145962,0 0.27643,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282138,-0.053818 -0.09622,0 -0.150855,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.04729,0.078281 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948876 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path827" />
+              <path
+                 d="M 32.523577,5.9753057 32.102815,5.1011651 h 0.167163 l 0.335142,0.6833301 0.280508,-0.6833301 h 0.152485 l -0.353081,0.846416 q -0.111714,0.2682764 -0.212827,0.3563428 -0.100298,0.088066 -0.260122,0.088066 -0.06931,0 -0.123946,-0.012231 V 6.2460284 q 0.06279,0.01957 0.119869,0.01957 0.07339,0 0.130468,-0.02854 0.05708,-0.02854 0.104375,-0.1011133 0.04729,-0.072573 0.06687,-0.1255762 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path829" />
+              <path
+                 d="M 33.200383,5.9638897 V 5.8032501 q 0.09133,0.059526 0.193257,0.083989 0.101929,0.023648 0.172871,0.023648 0.114976,0 0.165533,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.10519,-0.041587 q -0.169609,-0.06605 -0.213643,-0.1223145 -0.04485,-0.055449 -0.04485,-0.1353613 0,-0.1125293 0.08644,-0.1851025 0.08725,-0.072573 0.282139,-0.072573 0.145962,0 0.276431,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282139,-0.053818 -0.09622,0 -0.150855,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.0473,0.078281 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.141069,0.051372 0.198149,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948876 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path831" />
+              <path
+                 d="m 34.952742,5.9753057 q -0.106822,0.044849 -0.154932,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 5.3033917 H 34.14302 V 5.1770001 h 0.227505 V 4.8100568 h 0.15167 v 0.3669433 h 0.405268 v 0.1263916 h -0.405268 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.10356,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path833" />
+              <path
+                 d="m 35.950013,5.9516583 q -0.181841,0.086436 -0.344112,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154931,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.62788 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 35.344148,5.4681085 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06687,0.066865 -0.09378,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path835" />
+              <path
+                 d="m 36.12533,6.0120001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.1834716 0.05463,-0.050557 0.110083,-0.050557 0.06605,0 0.106006,0.052187 0.04077,0.051372 0.04077,0.1467774 v 0.048926 q 0.02691,-0.083174 0.06442,-0.1345458 0.03833,-0.052188 0.0791,-0.082358 0.04077,-0.030986 0.09378,-0.030986 0.05871,0 0.100298,0.049741 0.04159,0.049741 0.04159,0.1981494 V 6.0120001 H 36.877971 V 5.3898272 q 0,-0.07665 -0.0049,-0.1043749 -0.0049,-0.02854 -0.01957,-0.043218 -0.01468,-0.014678 -0.0318,-0.014678 -0.0424,0 -0.09133,0.065234 -0.04811,0.064419 -0.09867,0.214458 v 0.504751 H 36.504505 V 5.3906427 q 0,-0.1206836 -0.02365,-0.1418848 -0.02365,-0.021201 -0.0424,-0.021201 -0.04159,0 -0.0897,0.072573 -0.04729,0.072573 -0.09051,0.1859179 v 0.5259522 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path837" />
+              <path
+                 d="m 37.803484,5.8073272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057895 -0.178579,0.057895 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130468,0.00897 0.01305,0.00163 0.03914,0.00408 V 4.6958966 h 0.152485 v 1.3161035 h -0.152485 z m 0,-0.1802099 V 5.2365265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234028,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116607,0.068496 0.07094,0 0.156562,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path839" />
+              <path
+                 d="m 38.570803,6.0503253 q -0.05463,0 -0.09377,-0.039141 -0.03914,-0.039141 -0.03914,-0.093775 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09377,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093775 -0.03914,0.039141 -0.09378,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path841" />
+              <path
+                 d="m 39.236194,6.0120001 -0.148408,-0.910835 h 0.141069 l 0.08643,0.5544922 0.02283,0.1288379 0.02202,-0.1288379 0.145147,-0.5544922 h 0.136176 l 0.163902,0.5544922 0.02854,0.1288379 0.01876,-0.1288379 0.08725,-0.5544922 h 0.116606 l -0.147593,0.910835 H 39.767038 L 39.592536,5.4257062 39.564812,5.2968683 h -0.0041 l -0.02528,0.1280224 -0.15167,0.5871094 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path843" />
+              <path
+                 d="m 40.797741,5.8073272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057895 -0.178579,0.057895 -0.11416,0 -0.205488,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101113,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 h 0.152486 v 0.6433741 q 0,0.1647167 0.03425,0.2674609 h -0.158194 q -0.01794,-0.075019 -0.02854,-0.2046729 z m 0,-0.1802099 V 5.2365265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234028,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.1533,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path845" />
+              <path
+                 d="m 41.200565,6.0120001 v -0.910835 h 0.151669 V 5.30013 q 0.06523,-0.1051904 0.157378,-0.1647168 0.09214,-0.059526 0.184288,-0.059526 0.08073,0 0.146777,0.043218 0.06605,0.042402 0.09214,0.1117139 0.02691,0.069312 0.02691,0.2723535 v 0.5088281 h -0.15167 v -0.527583 q 0,-0.1312842 -0.01305,-0.1728711 -0.01223,-0.042402 -0.04648,-0.069311 -0.03343,-0.026909 -0.07339,-0.026909 -0.07991,0 -0.172056,0.075835 -0.09133,0.075835 -0.150855,0.1899951 v 0.5308447 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path847" />
+              <path
+                 d="m 42.963523,5.9753057 q -0.106821,0.044849 -0.154931,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.0954,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 5.3033917 H 42.153802 V 5.1770001 h 0.227505 V 4.8100568 h 0.15167 v 0.3669433 h 0.405268 v 0.1263916 h -0.405268 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path849" />
+              <path
+                 d="m 43.960794,5.9516583 q -0.181841,0.086436 -0.344112,0.086436 -0.123129,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 H 43.34596 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 43.35493,5.4681085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path851" />
+              <path
+                 d="m 44.812918,5.8073272 q -0.06931,0.1141602 -0.167163,0.1720557 -0.09704,0.057895 -0.178579,0.057895 -0.114161,0 -0.205489,-0.098667 -0.09051,-0.098667 -0.09051,-0.2992627 0,-0.1581933 0.06034,-0.2821386 0.06034,-0.1247608 0.161455,-0.1965186 0.101114,-0.072573 0.250337,-0.072573 0.04322,0 0.130469,0.00897 0.01305,0.00163 0.03914,0.00408 V 4.6958966 h 0.152485 v 1.3161035 h -0.152485 z m 0,-0.1802099 V 5.2365265 q -0.08073,-0.021201 -0.150039,-0.021201 -0.140254,0 -0.234029,0.1084521 -0.09296,0.1084522 -0.09296,0.2951856 0,0.1353613 0.05056,0.2046728 0.05137,0.068496 0.116606,0.068496 0.07094,0 0.156563,-0.071758 0.08562,-0.071758 0.153301,-0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path853" />
+              <path
+                 d="M 45.264666,5.5626983 V 5.4363067 h 0.632773 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path855" />
+              <path
+                 d="m 46.347557,5.305838 q 0.07013,-0.1141602 0.167163,-0.1720557 0.09704,-0.057895 0.178579,-0.057895 0.11416,0 0.205489,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101113,0.071758 -0.250336,0.071758 -0.0424,0 -0.130469,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 h -0.15167 V 4.6958966 h 0.15167 z m 0,0.1802099 v 0.3905909 q 0.08236,0.021201 0.15167,0.021201 0.137808,0 0.231582,-0.1076367 0.09459,-0.1084521 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.2046728 -0.05137,-0.068496 -0.116607,-0.068496 -0.07094,0 -0.156562,0.071758 -0.08481,0.071758 -0.153301,0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path857" />
+              <path
+                 d="M 47.543791,5.9753057 47.12303,5.1011651 h 0.167163 l 0.335141,0.6833301 0.280508,-0.6833301 h 0.152486 l -0.353082,0.846416 q -0.111713,0.2682764 -0.212827,0.3563428 -0.100298,0.088066 -0.260122,0.088066 -0.06931,0 -0.123945,-0.012231 V 6.2460284 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.1011133 0.04729,-0.072573 0.06686,-0.1255762 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path859" />
+              <path
+                 d="M 49.027059,5.3669952 V 5.4933868 H 48.141502 V 5.3669952 Z m 0,0.284585 V 5.7779718 H 48.141502 V 5.6515802 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path861" />
+              <path
+                 d="M 49.252116,6.0120001 V 4.6958966 h 0.15167 v 0.8268457 l 0.437886,-0.4215772 h 0.202227 l -0.437071,0.4215772 0.448487,0.4892578 h -0.20875 L 49.403786,5.5227423 v 0.4892578 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path863" />
+              <path
+                 d="m 50.962073,5.1011651 v 0.910835 h -0.15167 V 5.8122198 q -0.07339,0.1125293 -0.163086,0.168794 -0.0897,0.056265 -0.179394,0.056265 -0.07991,0 -0.146777,-0.042402 -0.06605,-0.043218 -0.09214,-0.1125293 -0.02609,-0.070127 -0.02609,-0.2723535 V 5.1011651 h 0.15167 v 0.527583 q 0,0.1312842 0.01223,0.1736866 0.01305,0.041587 0.04648,0.068496 0.03425,0.026909 0.07339,0.026909 0.07991,0 0.17124,-0.075019 0.09214,-0.075835 0.152485,-0.1908105 V 5.1011651 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path865" />
+              <path
+                 d="m 51.354294,5.305838 q 0.07013,-0.1141602 0.167163,-0.1720557 0.09704,-0.057895 0.178579,-0.057895 0.11416,0 0.205488,0.098667 0.09133,0.098667 0.09133,0.2992627 0,0.1581934 -0.06116,0.2829541 -0.06034,0.1239453 -0.161455,0.1965185 -0.101113,0.071758 -0.250337,0.071758 -0.0424,0 -0.130468,-0.00897 -0.01305,-0.00163 -0.03914,-0.00408 h -0.15167 V 4.6958966 h 0.15167 z m 0,0.1802099 v 0.3905909 q 0.08236,0.021201 0.15167,0.021201 0.137807,0 0.231582,-0.1076367 0.09459,-0.1084521 0.09459,-0.296001 0,-0.1361767 -0.05137,-0.2046728 -0.05137,-0.068496 -0.116607,-0.068496 -0.07094,0 -0.156562,0.071758 -0.08481,0.071758 -0.153301,0.1932568 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path867" />
+              <path
+                 d="m 52.972923,5.9516583 q -0.181841,0.086436 -0.344112,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221796,-0.064419 0.162271,0 0.260123,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 52.367058,5.4681085 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09378,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path869" />
+              <path
+                 d="M 53.461366,6.0120001 V 4.8231036 h -0.272354 v -0.127207 h 0.424024 v 1.1897119 h 0.284585 v 0.1263916 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path871" />
+              <path
+                 d="m 54.975618,5.9516583 q -0.181841,0.086436 -0.344112,0.086436 -0.123129,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.05789,-0.1141602 -0.05789,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146778,0.039141 0.146777,0 0.324541,-0.097852 z M 54.369753,5.4681085 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path873" />
+              <path
+                 d="m 55.981043,5.9753057 q -0.106821,0.044849 -0.154931,0.053003 -0.04811,0.00897 -0.09296,0.00897 -0.09541,0 -0.174502,-0.036694 -0.0791,-0.036694 -0.119868,-0.1084522 -0.03996,-0.071758 -0.03996,-0.2217968 V 5.3033917 H 55.171322 V 5.1770001 h 0.227505 V 4.8100568 h 0.15167 v 0.3669433 h 0.405268 v 0.1263916 h -0.405268 v 0.3644971 q 0,0.110083 0.02609,0.155747 0.02609,0.044849 0.06931,0.06605 0.04403,0.021201 0.103559,0.021201 0.110083,0 0.231582,-0.069312 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path875" />
+              <path
+                 d="m 56.595061,6.0503253 q -0.05463,0 -0.09378,-0.039141 -0.03914,-0.039141 -0.03914,-0.093775 0,-0.055449 0.03914,-0.093774 0.03996,-0.039141 0.09378,-0.039141 0.05382,0 0.09296,0.039141 0.03996,0.038325 0.03996,0.093774 0,0.054634 -0.03914,0.093775 -0.03914,0.039141 -0.09377,0.039141 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path877" />
+              <path
+                 d="M 57.232728,5.9638897 V 5.8032501 q 0.09133,0.059526 0.193257,0.083989 0.101928,0.023648 0.172871,0.023648 0.114975,0 0.165532,-0.036694 0.05056,-0.03751 0.05056,-0.092959 0,-0.036694 -0.02365,-0.062788 -0.02365,-0.026094 -0.117422,-0.064419 l -0.05219,-0.021201 -0.105191,-0.041587 q -0.169609,-0.06605 -0.213642,-0.1223145 -0.04485,-0.055449 -0.04485,-0.1353613 0,-0.1125293 0.08644,-0.1851025 0.08725,-0.072573 0.282138,-0.072573 0.145962,0 0.276431,0.042402 v 0.1378076 q -0.150039,-0.053818 -0.282139,-0.053818 -0.09622,0 -0.150854,0.034248 -0.05382,0.033433 -0.05382,0.083989 0,0.048926 0.04729,0.078281 0.04648,0.029355 0.15167,0.067681 l 0.102744,0.03751 q 0.14107,0.051372 0.19815,0.1117139 0.05708,0.060342 0.05708,0.1508545 0,0.1182373 -0.09133,0.1948876 -0.09051,0.075835 -0.290293,0.075835 -0.174502,0 -0.358789,-0.073389 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path879" />
+              <path
+                 d="m 58.981008,5.9516583 q -0.181841,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154932,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.16227,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146777,0 0.324541,-0.097852 z M 58.375144,5.4681085 h 0.454194 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06686,0.066865 -0.09377,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path881" />
+              <path
+                 d="m 59.302288,6.0120001 v -0.910835 h 0.15167 V 5.30013 q 0.07094,-0.1125293 0.16227,-0.1679785 0.09214,-0.056265 0.204673,-0.056265 0.08236,0 0.164717,0.025278 V 5.4297833 H 59.839656 V 5.2218487 q -0.03833,-0.00652 -0.06034,-0.00652 -0.0848,0 -0.166347,0.066865 -0.08154,0.066865 -0.159009,0.2005957 v 0.5292139 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path883" />
+              <path
+                 d="m 60.52217,6.0120001 -0.395484,-0.910835 h 0.166348 l 0.31231,0.7208399 0.318833,-0.7208399 h 0.15167 l -0.398746,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path885" />
+              <path
+                 d="M 61.482747,6.0120001 V 5.2275567 H 61.229964 V 5.1011651 h 0.404453 v 0.7844434 h 0.253598 V 6.0120001 Z M 61.457468,4.772547 q 0,-0.051372 0.03506,-0.07665 0.03506,-0.025278 0.06605,-0.025278 0.0318,0 0.06686,0.025278 0.03506,0.025278 0.03506,0.07665 0,0.050557 -0.03506,0.075835 -0.03506,0.025278 -0.06686,0.025278 -0.03099,0 -0.06605,-0.025278 -0.03506,-0.025278 -0.03506,-0.075835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path887" />
+              <path
+                 d="m 62.995368,5.9859063 q -0.152486,0.051372 -0.290293,0.051372 -0.136992,0 -0.243814,-0.062788 -0.106005,-0.063604 -0.165532,-0.1712402 -0.05953,-0.1084522 -0.05953,-0.2462598 0,-0.2071191 0.134546,-0.3441113 0.135361,-0.1369922 0.326172,-0.1369922 0.141069,0 0.298447,0.053003 v 0.1459619 q -0.159009,-0.072573 -0.284585,-0.072573 -0.08317,0 -0.156563,0.041587 -0.07339,0.040771 -0.113344,0.1280225 -0.03996,0.087251 -0.03996,0.1793945 0,0.1231299 0.07665,0.2348438 0.07747,0.1117138 0.242183,0.1117138 0.04974,0 0.09785,-0.00652 0.04811,-0.00734 0.177764,-0.051372 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path889" />
+              <path
+                 d="m 63.987748,5.9516583 q -0.18184,0.086436 -0.344111,0.086436 -0.12313,0 -0.220166,-0.061157 -0.09704,-0.061157 -0.155747,-0.1745019 -0.0579,-0.1141602 -0.0579,-0.2438135 0,-0.1247607 0.05545,-0.2397363 0.05545,-0.1149756 0.154931,-0.1785791 0.09948,-0.064419 0.221797,-0.064419 0.162271,0 0.260122,0.115791 0.09867,0.1157911 0.09867,0.3571582 v 0.032617 h -0.627881 q 0,0.09459 0.03914,0.1728711 0.03996,0.078281 0.104375,0.1174219 0.06442,0.039141 0.146777,0.039141 0.146778,0 0.324541,-0.097852 z M 63.381884,5.4681085 h 0.454195 v -0.022017 q 0,-0.1117139 -0.05463,-0.1777637 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.067681 -0.06687,0.066865 -0.09378,0.1981494 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path891" />
+            </g>
+            <g
+               aria-label="0"
+               id="text64"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 65.630671,4.7089435 q 0.216089,0 0.329434,0.1818408 0.113344,0.1810254 0.113344,0.4884424 0,0.3082324 -0.113344,0.4900732 -0.113345,0.1810254 -0.329434,0.1810254 -0.215273,0 -0.329434,-0.1810254 -0.113344,-0.1818408 -0.113344,-0.4900732 0,-0.307417 0.113344,-0.4884424 0.114161,-0.1818408 0.329434,-0.1818408 z M 65.383596,5.6499493 65.821482,4.964173 q -0.04159,-0.075835 -0.09051,-0.1019287 -0.04811,-0.026909 -0.100298,-0.026909 -0.136177,0 -0.207119,0.1516699 -0.07094,0.1508545 -0.07094,0.3832519 0,0.053003 0.0033,0.1141602 0.0033,0.061157 0.02773,0.1655322 z m 0.492519,-0.5349218 -0.434624,0.6898534 q 0.03506,0.059526 0.08073,0.089697 0.04566,0.029356 0.101929,0.029356 0.154931,0 0.220166,-0.1728711 0.06523,-0.1736865 0.06523,-0.3848828 0,-0.1304688 -0.03343,-0.2511523 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path894" />
+            </g>
+            <g
+               aria-label="0"
+               id="text66"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 67.634677,4.7089435 q 0.216088,0 0.329433,0.1818408 0.113345,0.1810254 0.113345,0.4884424 0,0.3082324 -0.113345,0.4900732 -0.113345,0.1810254 -0.329433,0.1810254 -0.215274,0 -0.329434,-0.1810254 -0.113345,-0.1818408 -0.113345,-0.4900732 0,-0.307417 0.113345,-0.4884424 0.11416,-0.1818408 0.329434,-0.1818408 z M 67.387601,5.6499493 67.825487,4.964173 q -0.04159,-0.075835 -0.09051,-0.1019287 -0.04811,-0.026909 -0.100297,-0.026909 -0.136177,0 -0.20712,0.1516699 -0.07094,0.1508545 -0.07094,0.3832519 0,0.053003 0.0033,0.1141602 0.0033,0.061157 0.02772,0.1655322 z m 0.49252,-0.5349218 -0.434624,0.6898534 q 0.03506,0.059526 0.08073,0.089697 0.04566,0.029356 0.101929,0.029356 0.154932,0 0.220166,-0.1728711 0.06523,-0.1736865 0.06523,-0.3848828 0,-0.1304688 -0.03343,-0.2511523 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path897" />
+            </g>
+            <g
+               id="use68"
+               transform="translate(0,6.513)">
+              <g
+                 id="text522"
+                 class="c"
+                 style="white-space:pre;fill:#b9c0cb" />
+            </g>
+            <g
+               id="use70"
+               transform="translate(0,8.684)">
+              <g
+                 id="text526"
+                 class="c"
+                 style="white-space:pre;fill:#b9c0cb" />
+            </g>
+            <g
+               aria-label="root@m1c29:~#"
+               id="text72"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.20385742,12.525 v -0.910835 h 0.15166991 v 0.198965 q 0.0709424,-0.11253 0.16227051,-0.167979 0.0921436,-0.05626 0.20467284,-0.05626 0.0823584,0 0.1647168,0.02528 v 0.328618 H 0.74122557 v -0.207935 q -0.0383252,-0.0065 -0.0603418,-0.0065 -0.0848047,0 -0.16634765,0.06686 -0.081543,0.06686 -0.15900879,0.200596 V 12.525 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path902" />
+              <path
+                 d="m 1.5028369,12.550278 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,12.277109 1.07229,12.069174 q 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path904" />
+              <path
+                 d="m 2.5041846,12.550278 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path906" />
+              <path
+                 d="m 3.892046,12.488305 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.174502,-0.03669 -0.079097,-0.03669 -0.1198681,-0.108453 -0.039956,-0.07176 -0.039956,-0.221796 V 11.816391 H 3.0823244 V 11.69 H 3.3098292 V 11.323056 H 3.4614991 V 11.69 h 0.4052686 v 0.126391 H 3.4614991 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069311,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path908" />
+              <path
+                 d="m 4.7564014,12.361914 v 0.128022 q -0.068496,0.04485 -0.1214991,0.05871 -0.053003,0.01468 -0.1141601,0.01468 -0.1696094,0 -0.2780615,-0.08236 Q 4.135044,12.397793 4.070625,12.2502 q -0.063604,-0.148408 -0.063604,-0.362051 0,-0.296816 0.1361768,-0.481103 0.1361767,-0.185103 0.3677587,-0.185103 0.2291358,0 0.3620508,0.163086 0.1337305,0.163086 0.1337305,0.428916 0,0.117422 -0.034248,0.193257 -0.034248,0.07502 -0.090513,0.119868 -0.056265,0.04403 -0.1361767,0.04403 -0.061973,0 -0.1011133,-0.02691 -0.039141,-0.02773 -0.058711,-0.126392 -0.022832,0.053 -0.070127,0.10356 -0.047295,0.04974 -0.1280224,0.04974 -0.083989,0 -0.1394385,-0.07583 -0.054634,-0.07665 -0.054634,-0.187549 0,-0.136176 0.078281,-0.252783 0.079097,-0.116606 0.284585,-0.116606 h 0.1557471 v 0.357158 q 0,0.07094 0.00489,0.101113 0.00571,0.02936 0.022017,0.04485 0.017124,0.01549 0.036694,0.01549 0.031802,0 0.063603,-0.03017 0.032617,-0.03099 0.048926,-0.08643 0.017124,-0.05626 0.017124,-0.121499 0,-0.136177 -0.049741,-0.2642 -0.049741,-0.128838 -0.1475928,-0.183471 -0.097851,-0.05463 -0.2046728,-0.05463 -0.1133448,0 -0.1997803,0.0685 -0.08562,0.06768 -0.1410693,0.203857 -0.054634,0.136177 -0.054634,0.300894 0,0.165532 0.054634,0.306601 0.054634,0.14107 0.1475927,0.206304 0.092959,0.06523 0.2071192,0.06523 0.1296533,0 0.2389209,-0.106006 z M 4.5859766,11.865317 v -0.219351 h -0.029356 q -0.096221,0 -0.138623,0.03017 -0.042402,0.03017 -0.066865,0.09459 -0.024463,0.06442 -0.024463,0.141885 0,0.06279 0.01957,0.09704 0.01957,0.03425 0.053818,0.03425 0.04811,0 0.097852,-0.05545 0.050557,-0.05627 0.088066,-0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path910" />
+              <path
+                 d="m 5.0646337,12.525 v -0.910835 h 0.132915 v 0.20875 Q 5.2603368,11.69 5.3141552,11.639443 q 0.054634,-0.05056 0.110083,-0.05056 0.06605,0 0.1060058,0.05219 0.040771,0.05137 0.040771,0.146777 v 0.04893 q 0.026909,-0.08317 0.064419,-0.134546 0.038325,-0.05219 0.079097,-0.08236 0.040771,-0.03099 0.093774,-0.03099 0.058711,0 0.1002979,0.04974 0.041587,0.04974 0.041587,0.198149 V 12.525 h -0.132915 v -0.622173 q 0,-0.07665 -0.00489,-0.104375 -0.00489,-0.02854 -0.01957,-0.04322 -0.014678,-0.01468 -0.031802,-0.01468 -0.042402,0 -0.091328,0.06523 -0.04811,0.06442 -0.098667,0.214458 V 12.525 h -0.127207 v -0.621358 q 0,-0.120683 -0.023648,-0.141885 -0.023647,-0.0212 -0.042402,-0.0212 -0.041587,0 -0.089697,0.07257 -0.047295,0.07257 -0.090513,0.185917 V 12.525 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path912" />
+              <path
+                 d="m 6.4712503,12.398608 v -0.976885 q -0.068496,0.05463 -0.1329151,0.09296 -0.064419,0.03832 -0.1769482,0.07828 v -0.136993 q 0.1785791,-0.07583 0.3098633,-0.196518 h 0.1516699 v 1.139155 H 6.9270754 V 12.525 H 6.161387 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path914" />
+              <path
+                 d="m 7.9023292,12.498906 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108453 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136993 0.3261719,-0.136993 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133447,0.128022 -0.039956,0.08725 -0.039956,0.179395 0,0.12313 0.07665,0.234844 0.077466,0.111713 0.2421826,0.111713 0.049741,0 0.097852,-0.0065 0.04811,-0.0073 0.1777636,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path916" />
+              <path
+                 d="M 8.8979688,12.525 H 8.1322803 v -0.139439 q 0,-0.05382 0.022017,-0.114975 0.022017,-0.06197 0.083989,-0.138623 0.061973,-0.07665 0.1312841,-0.147593 l 0.086436,-0.08807 q 0.026094,-0.02691 0.1141601,-0.12476 0.088066,-0.09785 0.1157911,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.065234,-0.125576 -0.065234,-0.04485 -0.1467773,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.1002979,0.02528 -0.043218,0.01386 -0.1402539,0.0579 v -0.134546 q 0.1027442,-0.04893 0.2054883,-0.06686 0.1035596,-0.01876 0.1704248,-0.01876 0.098667,0 0.1810254,0.03262 0.083174,0.0318 0.1231299,0.09948 0.040771,0.06768 0.040771,0.144331 0,0.08562 -0.052187,0.175317 -0.051372,0.0897 -0.1948877,0.230767 l -0.092959,0.09214 -0.078281,0.07665 q -0.074204,0.07502 -0.1198681,0.145146 -0.045664,0.07013 -0.050557,0.167163 h 0.6083106 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path918" />
+              <path
+                 d="m 9.775371,11.853086 q -0.058711,0.08725 -0.1459619,0.1427 -0.086436,0.05463 -0.1908106,0.05463 -0.098667,0 -0.1875488,-0.0473 -0.088066,-0.04811 -0.1345459,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.1149756,-0.31231 0.115791,-0.13373 0.3041553,-0.13373 0.2217969,0 0.3310644,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.1394384,0.500674 -0.1394385,0.183472 -0.377544,0.183472 -0.1280224,0 -0.248706,-0.03833 v -0.152486 q 0.1353613,0.0636 0.2552295,0.0636 0.1696093,0 0.2625683,-0.155747 0.092959,-0.155747 0.092959,-0.394668 z M 9.4777392,11.348335 q -0.061157,0 -0.1231299,0.03669 -0.061973,0.03588 -0.097852,0.110898 -0.035063,0.07502 -0.035063,0.164717 0,0.114976 0.059526,0.18918 0.060342,0.0742 0.1712402,0.0742 0.1149756,0 0.1883643,-0.08562 0.074204,-0.08644 0.074204,-0.20875 0,-0.123945 -0.072573,-0.202227 -0.071758,-0.0791 -0.1647168,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path920" />
+              <path
+                 d="m 10.51415,12.563325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path922" />
+              <path
+                 d="m 11.060488,12.196381 v -0.01468 q 0,-0.106822 0.06279,-0.185103 0.0636,-0.0791 0.170425,-0.0791 0.02691,0 0.05219,0.0057 0.02609,0.0049 0.05871,0.01794 0.03262,0.01223 0.09785,0.04893 l 0.09867,0.05463 q 0.09051,0.04974 0.147593,0.04974 0.06034,0 0.08888,-0.04322 0.02936,-0.04403 0.02936,-0.0954 v -0.01305 h 0.104375 v 0.01305 q 0,0.136176 -0.07747,0.201411 -0.07665,0.06442 -0.163086,0.06442 -0.08073,0 -0.213642,-0.07583 l -0.08317,-0.04811 q -0.09459,-0.05382 -0.152486,-0.05382 -0.03262,0 -0.06116,0.01712 -0.02772,0.01712 -0.04485,0.05463 -0.01712,0.03751 -0.01712,0.06605 v 0.01468 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path924" />
+              <path
+                 d="m 12.074068,12.183335 v -0.114161 h 0.159824 l 0.0897,-0.335141 h -0.249521 v -0.113345 h 0.278061 l 0.09541,-0.361235 h 0.119052 l -0.0954,0.361235 h 0.230767 l 0.09948,-0.361235 h 0.119053 l -0.09785,0.361235 h 0.136993 v 0.113345 h -0.168794 l -0.08888,0.335141 h 0.257676 v 0.114161 H 12.670147 L 12.577188,12.525 h -0.120684 l 0.09459,-0.341665 h -0.227505 l -0.0897,0.341665 h -0.120683 l 0.09051,-0.341665 z m 0.279692,-0.114161 h 0.228321 l 0.09214,-0.335141 h -0.233213 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path926" />
+            </g>
+            <g
+               aria-label="df"
+               id="text74"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 14.762702,12.320327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 V 12.525 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path929" />
+              <path
+                 d="M 15.367751,12.525 V 11.816391 H 15.165524 V 11.69 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125577,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106005,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 V 11.69 h 0.361235 v 0.126391 H 15.519421 V 12.525 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path931" />
+            </g>
+            <g
+               aria-label="-hT"
+               id="text76"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 17.219103,12.075698 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path934" />
+              <path
+                 d="m 18.16174,12.525 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157377,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02039,0.04322 0.02773,0.09214 0.0073,0.04811 0.0073,0.199781 V 12.525 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 V 12.525 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path936" />
+              <path
+                 d="m 19.455011,12.525 v -1.126109 h -0.379175 v -0.139438 h 0.923882 v 0.139438 h -0.37999 V 12.525 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path938" />
+            </g>
+            <g
+               aria-label="/"
+               id="text78"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 21.218133,12.563325 h -0.149224 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path941" />
+            </g>
+            <g
+               aria-label="Filesystem"
+               id="text80"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.18510253,14.696 V 13.430453 H 0.88066404 V 13.55766 H 0.34981933 v 0.429732 H 0.8301074 v 0.126391 H 0.34981933 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path944" />
+              <path
+                 d="M 1.3829687,14.696 V 13.911557 H 1.1301855 v -0.126392 h 0.4044532 v 0.784444 H 1.7882373 V 14.696 Z m -0.025278,-1.239453 q 0,-0.05137 0.035063,-0.07665 0.035063,-0.02528 0.06605,-0.02528 0.031802,0 0.066865,0.02528 0.035063,0.02528 0.035063,0.07665 0,0.05056 -0.035063,0.07583 -0.035063,0.02528 -0.066865,0.02528 -0.030986,0 -0.06605,-0.02528 -0.035063,-0.02528 -0.035063,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path946" />
+              <path
+                 d="M 2.3737158,14.696 V 13.507104 H 2.1013623 v -0.127207 h 0.4240234 v 1.189712 h 0.284585 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path948" />
+              <path
+                 d="m 3.8879689,14.635658 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 3.2731349 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z M 3.2821046,14.152109 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.145962,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path950" />
+              <path
+                 d="m 4.1423828,14.64789 v -0.16064 q 0.091328,0.05953 0.1932569,0.08399 0.1019287,0.02365 0.172871,0.02365 0.1149756,0 0.1655323,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023647,-0.02609 -0.1174218,-0.06442 l -0.052187,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122314 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.11253 0.086436,-0.185103 0.087251,-0.07257 0.2821387,-0.07257 0.1459619,0 0.2764306,0.0424 v 0.137808 q -0.150039,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508544,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027442,0.03751 q 0.1410693,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.091328,0.194887 -0.090513,0.07583 -0.2902929,0.07583 -0.174502,0 -0.3587891,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path952" />
+              <path
+                 d="M 5.4682714,14.659306 5.0475097,13.785165 h 0.1671631 l 0.3351415,0.68333 0.2805078,-0.68333 h 0.1524854 l -0.353081,0.846416 q -0.1117139,0.268277 -0.2128272,0.356343 -0.1002978,0.08807 -0.2601221,0.08807 -0.069311,0 -0.1239453,-0.01223 v -0.133731 q 0.062788,0.01957 0.1198682,0.01957 0.073389,0 0.1304687,-0.02854 0.05708,-0.02854 0.104375,-0.101114 0.047295,-0.07257 0.066865,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path954" />
+              <path
+                 d="m 6.1450784,14.64789 v -0.16064 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.03669 -0.023648,-0.06279 -0.023648,-0.02609 -0.1174219,-0.06442 l -0.052188,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122314 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.11253 0.086436,-0.185103 0.087251,-0.07257 0.2821386,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137808 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02936 0.1516699,0.06768 l 0.1027441,0.03751 q 0.1410694,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.091328,0.194887 -0.090513,0.07583 -0.290293,0.07583 -0.1745019,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path956" />
+              <path
+                 d="m 7.8974367,14.659306 q -0.1068213,0.04485 -0.1549317,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.1745019,-0.03669 -0.079097,-0.03669 -0.1198682,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 13.987392 H 7.087715 V 13.861 H 7.3152199 V 13.494057 H 7.4668898 V 13.861 h 0.4052685 v 0.126392 H 7.4668898 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069312,0.06605 0.044033,0.0212 0.1035595,0.0212 0.110083,0 0.2315821,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path958" />
+              <path
+                 d="m 8.894707,14.635658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057896,-0.11416 -0.057896,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 8.2798731 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z M 8.2888428,14.152109 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path960" />
+              <path
+                 d="m 9.0700243,14.696 v -0.910835 h 0.1329151 v 0.20875 q 0.062788,-0.132915 0.1166064,-0.183472 0.054634,-0.05056 0.110083,-0.05056 0.06605,0 0.1060059,0.05219 0.040771,0.05137 0.040771,0.146778 v 0.04893 q 0.026909,-0.08317 0.064419,-0.134545 0.038325,-0.05219 0.079097,-0.08236 0.040771,-0.03099 0.093774,-0.03099 0.058711,0 0.1002978,0.04974 0.041587,0.04974 0.041587,0.198149 V 14.696 H 9.8226659 v -0.622173 q 0,-0.07665 -0.00489,-0.104375 -0.00489,-0.02854 -0.01957,-0.04322 -0.014678,-0.01468 -0.031802,-0.01468 -0.042402,0 -0.091328,0.06523 -0.04811,0.06442 -0.098667,0.214458 V 14.696 H 9.4491991 v -0.621357 q 0,-0.120684 -0.023647,-0.141885 -0.023647,-0.0212 -0.042402,-0.0212 -0.041587,0 -0.089697,0.07257 -0.047295,0.07257 -0.090513,0.185918 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path962" />
+            </g>
+            <g
+               aria-label="Type"
+               id="text82"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 20.458316,14.696 v -1.126108 h -0.379174 v -0.139439 h 0.923881 v 0.139439 h -0.37999 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path965" />
+              <path
+                 d="M 21.502882,14.659306 21.08212,13.785165 h 0.167163 l 0.335142,0.68333 0.280508,-0.68333 h 0.152485 l -0.353081,0.846416 q -0.111714,0.268277 -0.212827,0.356343 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123946,-0.01223 v -0.133731 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101114 0.0473,-0.07257 0.06686,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path967" />
+              <path
+                 d="m 22.309342,13.989838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path969" />
+              <path
+                 d="m 23.92797,14.635658 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 23.322106,14.152109 H 23.7763 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path971" />
+            </g>
+            <g
+               aria-label="Size"
+               id="text84"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 29.186023,14.669091 v -0.154932 q 0.195703,0.09296 0.355527,0.09296 0.06687,0 0.128023,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.0579 -0.16227,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135361,0 0.261753,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.10519,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.133731 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207934,0.127207 0.207934,0.319648 0,0.146777 -0.106821,0.251968 -0.106821,0.10519 -0.34248,0.10519 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path974" />
+              <path
+                 d="m 30.440969,14.696 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 14.696 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path976" />
+              <path
+                 d="m 31.169148,14.696 v -0.139438 l 0.558569,-0.645005 h -0.545522 v -0.126392 h 0.746118 v 0.126392 l -0.562646,0.645005 h 0.581401 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path978" />
+              <path
+                 d="m 32.945969,14.635658 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 32.340105,14.152109 H 32.7943 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path980" />
+            </g>
+            <g
+               aria-label="Used"
+               id="text86"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 35.172744,13.430453 h 0.164717 v 0.830923 q 0,0.163901 0.02691,0.224243 0.02772,0.05953 0.08399,0.09133 0.05708,0.03099 0.126392,0.03099 0.07339,0 0.130468,-0.03343 0.0579,-0.03425 0.08481,-0.106006 0.02772,-0.07257 0.02772,-0.271538 v -0.766504 h 0.15167 v 0.826031 q 0,0.176948 -0.053,0.277246 -0.05219,0.09948 -0.136992,0.150039 -0.0848,0.05056 -0.213643,0.05056 -0.119053,0 -0.209565,-0.04403 -0.09051,-0.04403 -0.136993,-0.1321 -0.04648,-0.08807 -0.04648,-0.318017 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path983" />
+              <path
+                 d="m 36.20834,14.64789 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path985" />
+              <path
+                 d="m 37.956621,14.635658 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path987" />
+              <path
+                 d="m 38.808745,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 V 13.379897 H 38.96123 V 14.696 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path989" />
+            </g>
+            <g
+               aria-label="Avail"
+               id="text88"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 40.265104,14.696 h -0.158193 l 0.389775,-1.265547 h 0.167163 L 41.056071,14.696 h -0.173686 l -0.08644,-0.278061 h -0.445225 z m 0.124761,-0.404453 h 0.36939 l -0.152486,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path992" />
+              <path
+                 d="m 41.503742,14.696 -0.395483,-0.910835 h 0.166347 l 0.31231,0.72084 0.318833,-0.72084 h 0.15167 L 41.658674,14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path994" />
+              <path
+                 d="m 42.807614,14.491327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path996" />
+              <path
+                 d="m 43.465666,14.696 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 14.696 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path998" />
+              <path
+                 d="m 44.456413,14.696 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1000" />
+            </g>
+            <g
+               aria-label="Use%"
+               id="text90"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 46.194743,13.430453 h 0.164717 v 0.830923 q 0,0.163901 0.02691,0.224243 0.02772,0.05953 0.08399,0.09133 0.05708,0.03099 0.126392,0.03099 0.07339,0 0.130469,-0.03343 0.0579,-0.03425 0.0848,-0.106006 0.02772,-0.07257 0.02772,-0.271538 v -0.766504 h 0.15167 v 0.826031 q 0,0.176948 -0.053,0.277246 -0.05219,0.09948 -0.136992,0.150039 -0.08481,0.05056 -0.213643,0.05056 -0.119052,0 -0.209565,-0.04403 -0.09051,-0.04403 -0.136992,-0.1321 -0.04648,-0.08807 -0.04648,-0.318017 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1003" />
+              <path
+                 d="m 47.230339,14.64789 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1005" />
+              <path
+                 d="m 48.97862,14.635658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1007" />
+              <path
+                 d="m 49.352087,13.430453 q 0.118237,0 0.185103,0.08807 0.06768,0.08807 0.06768,0.22832 0,0.141069 -0.06768,0.229136 -0.06687,0.08725 -0.185103,0.08725 -0.118237,0 -0.185918,-0.08725 -0.06768,-0.08807 -0.06768,-0.229136 0,-0.140254 0.06768,-0.22832 0.06768,-0.08807 0.185918,-0.08807 z m 0,0.101929 q -0.06605,0 -0.09622,0.0636 -0.03017,0.06279 -0.03017,0.150855 0,0.08888 0.03017,0.152485 0.03017,0.06279 0.09622,0.06279 0.06523,0 0.0954,-0.06279 0.03099,-0.0636 0.03099,-0.152485 0,-0.08807 -0.03099,-0.150855 -0.03017,-0.0636 -0.0954,-0.0636 z m -0.120684,1.201943 h -0.13373 l 0.865171,-1.341382 h 0.134546 z m 0.608311,-0.671098 q 0.113345,0 0.184287,0.0848 0.07094,0.08481 0.07094,0.218536 0,0.154116 -0.07502,0.242182 -0.07502,0.08725 -0.181841,0.08725 -0.104375,0 -0.176948,-0.08317 -0.07257,-0.08399 -0.07257,-0.233213 0,-0.141884 0.0685,-0.229135 0.0685,-0.08725 0.182656,-0.08725 z m 0.0024,0.101113 q -0.06442,0 -0.0954,0.06197 -0.03099,0.06197 -0.03099,0.158193 0,0.106821 0.03751,0.159009 0.03751,0.05137 0.08807,0.05137 0.05382,0 0.09051,-0.05626 0.03669,-0.05626 0.03669,-0.16227 0,-0.08317 -0.03099,-0.147593 -0.03017,-0.06442 -0.09541,-0.06442 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1009" />
+            </g>
+            <g
+               aria-label="Mounted"
+               id="text92"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 51.28058,14.696 h -0.132915 v -1.265547 h 0.165532 l 0.291924,0.833369 0.291924,-0.833369 H 52.0585 V 14.696 h -0.15167 v -0.80646 l 0.0041,-0.110898 h -0.0041 l -0.03588,0.110898 -0.195703,0.553677 h -0.164717 l -0.198149,-0.553677 -0.0318,-0.110898 h -0.0041 l 0.0041,0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1012" />
+              <path
+                 d="m 52.604838,14.721278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1014" />
+              <path
+                 d="M 53.980468,13.785165 V 14.696 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1016" />
+              <path
+                 d="m 54.232436,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 14.696 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1018" />
+              <path
+                 d="m 55.995395,14.659306 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 13.987392 H 55.185673 V 13.861 h 0.227505 v -0.366943 h 0.15167 V 13.861 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1020" />
+              <path
+                 d="m 56.992665,14.635658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1022" />
+              <path
+                 d="m 57.84479,14.491327 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 V 14.696 H 57.84479 Z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1024" />
+            </g>
+            <g
+               aria-label="on"
+               id="text94"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 59.619489,14.721278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1027" />
+              <path
+                 d="m 60.245739,14.696 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 V 14.696 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 14.696 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1029" />
+            </g>
+            <g
+               aria-label="/run/initramfs/ltsp"
+               id="text96"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.17613281,16.905326 H 0.02690918 l 0.80482908,-1.341382 h 0.14433105 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1032" />
+              <path
+                 d="M 1.2052051,16.867001 V 15.956166 H 1.356875 v 0.198964 q 0.070942,-0.112529 0.1622705,-0.167978 0.092144,-0.05626 0.2046728,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 1.7425732 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663476,0.06686 -0.081543,0.06686 -0.1590088,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1034" />
+              <path
+                 d="m 2.8784668,15.956166 v 0.910835 H 2.7267969 V 16.66722 q -0.073389,0.11253 -0.163086,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467773,-0.0424 -0.06605,-0.04322 -0.092144,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.1516699 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.046479,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092144,-0.07584 0.1524854,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1036" />
+              <path
+                 d="m 3.1304347,16.867001 v -0.910835 h 0.1516699 v 0.198964 q 0.065234,-0.10519 0.1573779,-0.164716 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467774,0.04322 0.06605,0.0424 0.092143,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508829 H 3.7379298 v -0.527583 q 0,-0.131285 -0.013047,-0.172872 -0.012231,-0.0424 -0.046479,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07584 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1038" />
+              <path
+                 d="M 4.1815235,16.905326 H 4.0322998 L 4.8371289,15.563944 H 4.98146 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1040" />
+              <path
+                 d="M 5.3883593,16.867001 V 16.082557 H 5.1355761 v -0.126391 h 0.4044531 v 0.784443 h 0.2535986 v 0.126392 z M 5.363081,15.627547 q 0,-0.05137 0.035063,-0.07665 0.035064,-0.02528 0.06605,-0.02528 0.031802,0 0.066865,0.02528 0.035063,0.02528 0.035063,0.07665 0,0.05056 -0.035063,0.07583 -0.035063,0.02528 -0.066865,0.02528 -0.030986,0 -0.06605,-0.02528 -0.035063,-0.02528 -0.035063,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1042" />
+              <path
+                 d="m 6.1344778,16.867001 v -0.910835 h 0.1516699 v 0.198964 q 0.065234,-0.10519 0.1573779,-0.164716 0.092144,-0.05953 0.1842872,-0.05953 0.080728,0 0.1467773,0.04322 0.06605,0.0424 0.092143,0.111714 0.026909,0.06931 0.026909,0.272353 v 0.508829 H 6.7419729 v -0.527583 q 0,-0.131285 -0.013047,-0.172872 -0.012231,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07583 -0.091328,0.07584 -0.1508545,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1044" />
+              <path
+                 d="M 7.3910548,16.867001 V 16.082557 H 7.1382716 v -0.126391 h 0.4044531 v 0.784443 h 0.2535987 v 0.126392 z m -0.025278,-1.239454 q 0,-0.05137 0.035063,-0.07665 0.035064,-0.02528 0.06605,-0.02528 0.031802,0 0.066865,0.02528 0.035063,0.02528 0.035063,0.07665 0,0.05056 -0.035063,0.07583 -0.035064,0.02528 -0.066865,0.02528 -0.030986,0 -0.06605,-0.02528 -0.035063,-0.02528 -0.035063,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1046" />
+              <path
+                 d="m 8.8987842,16.830306 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.174502,-0.03669 -0.079097,-0.0367 -0.1198681,-0.108453 -0.039956,-0.07176 -0.039956,-0.221796 V 16.158392 H 8.0890625 v -0.126391 h 0.2275049 v -0.366944 h 0.1516699 v 0.366944 h 0.4052686 v 0.126391 H 8.4682373 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069311,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1048" />
+              <path
+                 d="m 9.2159862,16.867001 v -0.910835 h 0.15167 v 0.198964 q 0.070942,-0.112529 0.1622705,-0.167978 0.092143,-0.05626 0.2046728,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 9.7533544 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590087,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1050" />
+              <path
+                 d="m 10.738393,16.662328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1052" />
+              <path
+                 d="m 11.072719,16.867001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03832,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 v 0.525953 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1054" />
+              <path
+                 d="m 12.354576,16.867001 v -0.708609 h -0.202227 v -0.126391 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 v 0.05871 h 0.361235 v 0.126391 h -0.361235 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1056" />
+              <path
+                 d="m 13.154512,16.81889 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1058" />
+              <path
+                 d="m 14.195,16.905326 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1060" />
+              <path
+                 d="m 15.391236,16.867001 v -1.188897 h -0.272354 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1062" />
+              <path
+                 d="m 16.909565,16.830306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108453 -0.03996,-0.07176 -0.03996,-0.221796 v -0.366944 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1064" />
+              <path
+                 d="m 17.159903,16.81889 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08643,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1066" />
+              <path
+                 d="m 18.290903,16.160838 q 0.07013,-0.11416 0.167163,-0.172055 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161456,0.196519 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107636 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193256 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1068" />
+            </g>
+            <g
+               aria-label="overlay"
+               id="text98"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 20.54149,16.892279 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1071" />
+              <path
+                 d="m 21.463741,16.867001 -0.395483,-0.910835 h 0.166347 l 0.31231,0.720839 0.318833,-0.720839 h 0.15167 l -0.398745,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1073" />
+              <path
+                 d="m 22.926622,16.806659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1075" />
+              <path
+                 d="m 23.247901,16.867001 v -0.910835 h 0.15167 v 0.198964 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164716,0.02528 v 0.328618 H 23.78527 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1077" />
+              <path
+                 d="m 24.416412,16.867001 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1079" />
+              <path
+                 d="m 25.771656,16.662328 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164716 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295185 0,0.135362 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1081" />
+              <path
+                 d="m 26.50962,16.830306 -0.420761,-0.87414 h 0.167163 l 0.335141,0.68333 0.280508,-0.68333 h 0.152485 l -0.353081,0.846416 q -0.111713,0.268276 -0.212827,0.356342 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123945,-0.01223 v -0.13373 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101113 0.0473,-0.07257 0.06686,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1083" />
+            </g>
+            <g
+               aria-label="16G"
+               id="text100"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 30.523164,16.740609 v -0.976885 q -0.0685,0.05463 -0.132916,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309864,-0.196518 h 0.151669 v 1.139155 h 0.304156 v 0.126392 H 30.2133 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1086" />
+              <path
+                 d="m 31.299453,16.273368 q 0.05871,-0.08725 0.145146,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185103 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316386 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1088" />
+              <path
+                 d="m 32.949882,16.866185 q -0.13373,0.03914 -0.245444,0.03914 -0.158193,0 -0.282139,-0.07828 -0.12313,-0.07828 -0.193257,-0.23566 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193256,-0.23729 0.124761,-0.08073 0.273985,-0.08073 0.112529,0 0.254414,0.053 v 0.15004 q -0.131284,-0.07583 -0.260938,-0.07583 -0.09785,0 -0.179394,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09378,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 v -0.407715 h -0.126391 v -0.126391 h 0.291108 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1090" />
+            </g>
+            <g
+               aria-label="655M"
+               id="text102"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 35.308105,16.273368 q 0.05871,-0.08725 0.145147,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109267,-0.185918 -0.109267,-0.472134 0,-0.316386 0.139438,-0.499858 0.139438,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114975,0 -0.189179,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1093" />
+              <path
+                 d="m 36.224648,16.208949 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147592,0.11416 0.147592,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107636,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1095" />
+              <path
+                 d="m 37.225996,16.208949 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167979,0.152485 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.10519,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1097" />
+              <path
+                 d="m 38.252622,16.867001 h -0.132915 v -1.265547 h 0.165532 l 0.291924,0.833369 0.291924,-0.833369 h 0.161455 v 1.265547 h -0.15167 v -0.80646 l 0.0041,-0.110899 h -0.0041 l -0.03588,0.110899 -0.195703,0.553676 h -0.164717 l -0.198149,-0.553676 -0.0318,-0.110899 h -0.0041 l 0.0041,0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1099" />
+            </g>
+            <g
+               aria-label="16G"
+               id="text104"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 42.547164,16.740609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176949,0.07828 v -0.136992 q 0.17858,-0.07583 0.309864,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 H 42.2373 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1102" />
+              <path
+                 d="m 43.323453,16.273368 q 0.05871,-0.08725 0.145146,-0.141885 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186734,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.114975,0.132915 -0.303339,0.132915 -0.221797,0 -0.33188,-0.185103 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316386 0.139439,-0.499858 0.139438,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135362,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505566 q 0.06116,0 0.123129,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164716 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165533,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1104" />
+              <path
+                 d="m 44.973882,16.866185 q -0.13373,0.03914 -0.245444,0.03914 -0.158193,0 -0.282139,-0.07828 -0.123129,-0.07828 -0.193256,-0.23566 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.15004 q -0.131284,-0.07583 -0.260937,-0.07583 -0.09785,0 -0.179395,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 v -0.407715 h -0.126392 v -0.126391 h 0.291108 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1106" />
+            </g>
+            <g
+               aria-label="5%"
+               id="text106"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 48.249301,16.208949 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122315 -0.05953,0.219351 -0.05953,0.09704 -0.167978,0.152485 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101929 0.03833,-0.06768 0.03833,-0.137807 0,-0.118238 -0.105191,-0.199781 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1109" />
+              <path
+                 d="m 49.353393,15.601454 q 0.118238,0 0.185103,0.08807 0.06768,0.08807 0.06768,0.22832 0,0.14107 -0.06768,0.229136 -0.06686,0.08725 -0.185103,0.08725 -0.118237,0 -0.185918,-0.08725 -0.06768,-0.08807 -0.06768,-0.229136 0,-0.140253 0.06768,-0.22832 0.06768,-0.08807 0.185918,-0.08807 z m 0,0.101928 q -0.06605,0 -0.09622,0.0636 -0.03017,0.06279 -0.03017,0.150854 0,0.08888 0.03017,0.152486 0.03017,0.06279 0.09622,0.06279 0.06524,0 0.09541,-0.06279 0.03099,-0.0636 0.03099,-0.152486 0,-0.08807 -0.03099,-0.150854 -0.03017,-0.0636 -0.09541,-0.0636 z m -0.120683,1.201944 h -0.133731 l 0.865171,-1.341382 h 0.134546 z m 0.60831,-0.671099 q 0.113345,0 0.184287,0.0848 0.07094,0.0848 0.07094,0.218535 0,0.154116 -0.07502,0.242183 -0.07502,0.08725 -0.181841,0.08725 -0.104375,0 -0.176948,-0.08317 -0.07257,-0.08399 -0.07257,-0.233213 0,-0.141885 0.0685,-0.229136 0.0685,-0.08725 0.182656,-0.08725 z m 0.0024,0.101113 q -0.06442,0 -0.0954,0.06197 -0.03099,0.06197 -0.03099,0.158193 0,0.106822 0.03751,0.159009 0.03751,0.05137 0.08807,0.05137 0.05382,0 0.09051,-0.05626 0.03669,-0.05626 0.03669,-0.162271 0,-0.08317 -0.03099,-0.147593 -0.03017,-0.06442 -0.09541,-0.06442 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1111" />
+            </g>
+            <g
+               aria-label="/"
+               id="text108"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 51.278134,16.905326 H 51.12891 l 0.804829,-1.341382 h 0.144332 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1114" />
+            </g>
+            <g
+               id="use110"
+               transform="translate(0,17.368)">
+              <g
+                 id="text530"
+                 class="c"
+                 style="white-space:pre;fill:#b9c0cb" />
+            </g>
+            <g
+               id="use112"
+               transform="translate(0,19.539)">
+              <g
+                 id="text534"
+                 class="c"
+                 style="white-space:pre;fill:#b9c0cb" />
+            </g>
+            <g
+               aria-label="root@m1c29:~#"
+               id="text114"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.20385742,23.379999 v -0.910835 h 0.15166991 v 0.198965 q 0.0709424,-0.112529 0.16227051,-0.167978 0.0921436,-0.05626 0.20467284,-0.05626 0.0823584,0 0.1647168,0.02528 v 0.328618 H 0.74122557 v -0.207934 q -0.0383252,-0.0065 -0.0603418,-0.0065 -0.0848047,0 -0.16634765,0.06687 -0.081543,0.06686 -0.15900879,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1119" />
+              <path
+                 d="m 1.5028369,23.405277 q -0.1957031,0 -0.313125,-0.136176 Q 1.07229,23.132109 1.07229,22.924174 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1121" />
+              <path
+                 d="m 2.5041846,23.405277 q -0.1957032,0 -0.313125,-0.136176 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1123" />
+              <path
+                 d="m 3.892046,23.343305 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.174502,-0.03669 -0.079097,-0.03669 -0.1198681,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 22.671391 H 3.0823244 v -0.126392 h 0.2275048 v -0.366943 h 0.1516699 v 0.366943 h 0.4052686 v 0.126392 H 3.4614991 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069311,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1125" />
+              <path
+                 d="m 4.7564014,23.216913 v 0.128023 q -0.068496,0.04485 -0.1214991,0.05871 -0.053003,0.01468 -0.1141601,0.01468 -0.1696094,0 -0.2780615,-0.08236 -0.1076367,-0.08317 -0.1720557,-0.230767 -0.063604,-0.148408 -0.063604,-0.36205 0,-0.296817 0.1361768,-0.481104 0.1361767,-0.185102 0.3677587,-0.185102 0.2291358,0 0.3620508,0.163085 0.1337305,0.163086 0.1337305,0.428916 0,0.117422 -0.034248,0.193257 -0.034248,0.07502 -0.090513,0.119868 -0.056265,0.04403 -0.1361767,0.04403 -0.061973,0 -0.1011133,-0.02691 -0.039141,-0.02773 -0.058711,-0.126392 -0.022832,0.053 -0.070127,0.103559 -0.047295,0.04974 -0.1280224,0.04974 -0.083989,0 -0.1394385,-0.07583 -0.054634,-0.07665 -0.054634,-0.187549 0,-0.136177 0.078281,-0.252783 0.079097,-0.116607 0.284585,-0.116607 h 0.1557471 v 0.357158 q 0,0.07094 0.00489,0.101114 0.00571,0.02936 0.022017,0.04485 0.017124,0.01549 0.036694,0.01549 0.031802,0 0.063603,-0.03017 0.032617,-0.03099 0.048926,-0.08644 0.017124,-0.05626 0.017124,-0.121499 0,-0.136177 -0.049741,-0.264199 -0.049741,-0.128838 -0.1475928,-0.183472 -0.097851,-0.05463 -0.2046728,-0.05463 -0.1133448,0 -0.1997803,0.0685 -0.08562,0.06768 -0.1410693,0.203858 -0.054634,0.136177 -0.054634,0.300893 0,0.165533 0.054634,0.306602 0.054634,0.141069 0.1475927,0.206304 0.092959,0.06523 0.2071192,0.06523 0.1296533,0 0.2389209,-0.106006 z M 4.5859766,22.720317 v -0.219351 h -0.029356 q -0.096221,0 -0.138623,0.03017 -0.042402,0.03017 -0.066865,0.09459 -0.024463,0.06442 -0.024463,0.141884 0,0.06279 0.01957,0.09704 0.01957,0.03425 0.053818,0.03425 0.04811,0 0.097852,-0.05545 0.050557,-0.05626 0.088066,-0.123129 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1127" />
+              <path
+                 d="m 5.0646337,23.379999 v -0.910835 h 0.132915 v 0.20875 q 0.062788,-0.132915 0.1166065,-0.183471 0.054634,-0.05056 0.110083,-0.05056 0.06605,0 0.1060058,0.05219 0.040771,0.05137 0.040771,0.146778 v 0.04893 q 0.026909,-0.08317 0.064419,-0.134546 0.038325,-0.05219 0.079097,-0.08236 0.040771,-0.03099 0.093774,-0.03099 0.058711,0 0.1002979,0.04974 0.041587,0.04974 0.041587,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.00489,-0.104375 -0.00489,-0.02854 -0.01957,-0.04322 -0.014678,-0.01468 -0.031802,-0.01468 -0.042402,0 -0.091328,0.06523 -0.04811,0.06442 -0.098667,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.023648,-0.141885 -0.023647,-0.0212 -0.042402,-0.0212 -0.041587,0 -0.089697,0.07257 -0.047295,0.07257 -0.090513,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1129" />
+              <path
+                 d="m 6.4712503,23.253608 v -0.976885 q -0.068496,0.05463 -0.1329151,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136992 q 0.1785791,-0.07583 0.3098633,-0.196519 h 0.1516699 v 1.139156 h 0.3041552 v 0.126391 H 6.161387 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1131" />
+              <path
+                 d="m 7.9023292,23.353905 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136992 0.3261719,-0.136992 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133447,0.128023 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097852,-0.0065 0.04811,-0.0073 0.1777636,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1133" />
+              <path
+                 d="M 8.8979688,23.379999 H 8.1322803 v -0.139438 q 0,-0.05382 0.022017,-0.114976 0.022017,-0.06197 0.083989,-0.138623 0.061973,-0.07665 0.1312841,-0.147593 l 0.086436,-0.08807 q 0.026094,-0.02691 0.1141601,-0.124761 0.088066,-0.09785 0.1157911,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.065234,-0.125576 -0.065234,-0.04485 -0.1467773,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.1002979,0.02528 -0.043218,0.01386 -0.1402539,0.0579 v -0.134546 q 0.1027442,-0.04893 0.2054883,-0.06687 0.1035596,-0.01875 0.1704248,-0.01875 0.098667,0 0.1810254,0.03262 0.083174,0.0318 0.1231299,0.09948 0.040771,0.06768 0.040771,0.144331 0,0.08562 -0.052187,0.175318 -0.051372,0.0897 -0.1948877,0.230766 l -0.092959,0.09214 -0.078281,0.07665 q -0.074204,0.07502 -0.1198681,0.145147 -0.045664,0.07013 -0.050557,0.167163 h 0.6083106 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1135" />
+              <path
+                 d="m 9.775371,22.708085 q -0.058711,0.08725 -0.1459619,0.1427 -0.086436,0.05463 -0.1908106,0.05463 -0.098667,0 -0.1875488,-0.04729 -0.088066,-0.04811 -0.1345459,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.1149756,-0.31231 0.115791,-0.13373 0.3041553,-0.13373 0.2217969,0 0.3310644,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.1394384,0.500674 -0.1394385,0.183471 -0.377544,0.183471 -0.1280224,0 -0.248706,-0.03832 v -0.152485 q 0.1353613,0.0636 0.2552295,0.0636 0.1696093,0 0.2625683,-0.155747 0.092959,-0.155747 0.092959,-0.394668 z M 9.4777392,22.203334 q -0.061157,0 -0.1231299,0.03669 -0.061973,0.03588 -0.097852,0.110899 -0.035063,0.07502 -0.035063,0.164717 0,0.114975 0.059526,0.189179 0.060342,0.0742 0.1712402,0.0742 0.1149756,0 0.1883643,-0.08562 0.074204,-0.08644 0.074204,-0.20875 0,-0.123945 -0.072573,-0.202226 -0.071758,-0.0791 -0.1647168,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1137" />
+              <path
+                 d="m 10.51415,23.418324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1139" />
+              <path
+                 d="m 11.060488,23.051381 v -0.01468 q 0,-0.106821 0.06279,-0.185102 0.0636,-0.0791 0.170425,-0.0791 0.02691,0 0.05219,0.0057 0.02609,0.0049 0.05871,0.01794 0.03262,0.01223 0.09785,0.04893 l 0.09867,0.05463 q 0.09051,0.04974 0.147593,0.04974 0.06034,0 0.08888,-0.04322 0.02936,-0.04403 0.02936,-0.09541 v -0.01305 h 0.104375 v 0.01305 q 0,0.136177 -0.07747,0.201411 -0.07665,0.06442 -0.163086,0.06442 -0.08073,0 -0.213642,-0.07583 l -0.08317,-0.04811 q -0.09459,-0.05382 -0.152486,-0.05382 -0.03262,0 -0.06116,0.01712 -0.02772,0.01712 -0.04485,0.05463 -0.01712,0.03751 -0.01712,0.06605 v 0.01468 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1141" />
+              <path
+                 d="m 12.074068,23.038334 v -0.11416 h 0.159824 l 0.0897,-0.335142 h -0.249521 v -0.113344 h 0.278061 l 0.09541,-0.361236 h 0.119052 l -0.0954,0.361236 h 0.230767 l 0.09948,-0.361236 h 0.119053 l -0.09785,0.361236 h 0.136993 v 0.113344 h -0.168794 l -0.08888,0.335142 h 0.257676 v 0.11416 h -0.289478 l -0.09296,0.341665 h -0.120684 l 0.09459,-0.341665 h -0.227505 l -0.0897,0.341665 h -0.120683 l 0.09051,-0.341665 z m 0.279692,-0.11416 h 0.228321 l 0.09214,-0.335142 h -0.233213 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1143" />
+            </g>
+            <g
+               aria-label="lsblk"
+               id="text116"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 14.39902,23.379999 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1146" />
+              <path
+                 d="m 15.16634,23.331889 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1148" />
+              <path
+                 d="m 16.297341,22.673837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1150" />
+              <path
+                 d="M 17.403063,23.379999 V 22.191103 H 17.13071 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1152" />
+              <path
+                 d="m 18.200554,23.379999 v -1.316103 h 0.15167 v 0.826845 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1154" />
+            </g>
+            <g
+               aria-label="NAME"
+               id="text118"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.25441406,25.551001 H 0.10274414 v -1.265547 h 0.1484082 l 0.44767088,0.842339 0.0489258,0.125576 h 0.004077 L 0.747749,25.127793 v -0.842339 h 0.15166992 v 1.265547 H 0.747749 l -0.43543944,-0.828477 -0.0611572,-0.132915 0.003262,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1157" />
+              <path
+                 d="M 1.1864502,25.551001 H 1.0282568 L 1.4180322,24.285454 H 1.5851953 L 1.977417,25.551001 H 1.8037305 L 1.7172949,25.272939 H 1.2720703 Z m 0.1247607,-0.404454 h 0.3693897 l -0.1524854,-0.480288 -0.035879,-0.127207 -0.031802,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1159" />
+              <path
+                 d="m 2.1812744,25.551001 h -0.132915 v -1.265547 h 0.1655322 l 0.2919238,0.833369 0.2919238,-0.833369 h 0.1614551 v 1.265547 H 2.8075244 v -0.80646 l 0.00408,-0.110899 h -0.00408 l -0.035879,0.110899 -0.1957031,0.553676 H 2.4112256 L 2.2130762,24.744541 2.1812744,24.633642 h -0.00408 l 0.00408,0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1161" />
+              <path
+                 d="m 3.8529054,25.411562 v 0.139439 H 3.1695753 v -1.265547 h 0.6702832 v 0.127207 H 3.3342921 v 0.429731 h 0.4550098 v 0.126392 H 3.3342921 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1163" />
+            </g>
+            <g
+               aria-label="MAJ:MIN"
+               id="text120"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 8.1945789,25.551001 h -0.132915 v -1.265547 h 0.1655322 l 0.2919238,0.833369 0.2919238,-0.833369 h 0.1614551 v 1.265547 H 8.8208289 v -0.80646 l 0.00408,-0.110899 h -0.00408 L 8.78495,24.744541 8.5892468,25.298217 H 8.4245301 L 8.2263806,24.744541 8.1945789,24.633642 h -0.00408 l 0.00408,0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1166" />
+              <path
+                 d="M 9.20245,25.551001 H 9.0442566 L 9.434032,24.285454 h 0.1671631 l 0.3922217,1.265547 H 9.8197302 L 9.7332947,25.272939 H 9.2880701 Z M 9.3272107,25.146547 H 9.6966004 L 9.544115,24.666259 9.5082361,24.539052 9.4764344,24.666259 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1168" />
+              <path
+                 d="m 10.108392,25.523276 v -0.154932 q 0.177764,0.09378 0.297632,0.09378 0.06279,0 0.11416,-0.02446 0.05219,-0.02446 0.08236,-0.08154 0.03099,-0.0579 0.03099,-0.24626 v -0.697192 h -0.284585 v -0.127207 h 0.449302 v 0.828476 q 0,0.202227 -0.04648,0.291109 -0.04566,0.08888 -0.128838,0.136992 -0.08317,0.04729 -0.212827,0.04729 -0.145146,0 -0.301709,-0.06605 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1170" />
+              <path
+                 d="m 11.520717,25.589326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1172" />
+              <path
+                 d="m 12.19997,25.551001 h -0.132916 v -1.265547 h 0.165533 l 0.291924,0.833369 0.291923,-0.833369 h 0.161455 v 1.265547 H 12.82622 v -0.80646 l 0.0041,-0.110899 h -0.0041 l -0.03588,0.110899 -0.195704,0.553676 h -0.164716 l -0.19815,-0.553676 -0.0318,-0.110899 h -0.0041 l 0.0041,0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1174" />
+              <path
+                 d="m 13.162992,25.551001 v -0.126392 h 0.278061 v -1.011948 h -0.278061 v -0.127207 h 0.72084 v 0.127207 H 13.60577 v 1.011948 h 0.278062 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1176" />
+              <path
+                 d="m 14.2785,25.551001 h -0.15167 v -1.265547 h 0.148408 l 0.447671,0.842339 0.04893,0.125576 h 0.0041 l -0.0041,-0.125576 v -0.842339 h 0.15167 v 1.265547 h -0.15167 l -0.435439,-0.828477 -0.06116,-0.132915 0.0033,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1178" />
+            </g>
+            <g
+               aria-label="RM"
+               id="text122"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 16.318215,25.013632 v 0.537369 h -0.164716 v -1.265547 h 0.338403 q 0.165532,0 0.243813,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591187 h -0.195703 l -0.335142,-0.537369 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114976,-0.08643 0.03833,-0.04403 0.05789,-0.09378 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.141069 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1181" />
+              <path
+                 d="m 17.211926,25.551001 h -0.132915 v -1.265547 h 0.165533 l 0.291923,0.833369 0.291924,-0.833369 h 0.161455 v 1.265547 h -0.15167 v -0.80646 l 0.0041,-0.110899 h -0.0041 l -0.03588,0.110899 -0.195703,0.553676 h -0.164716 l -0.19815,-0.553676 -0.0318,-0.110899 h -0.0041 l 0.0041,0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1183" />
+            </g>
+            <g
+               aria-label="SIZE"
+               id="text124"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 21.170022,25.524091 V 25.36916 q 0.195703,0.09296 0.355528,0.09296 0.06686,0 0.128022,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.0579 -0.162271,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135362,0 0.261753,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.10519,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319649 0,0.146777 -0.106822,0.251967 -0.106821,0.105191 -0.34248,0.105191 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1186" />
+              <path
+                 d="m 22.183601,25.551001 v -0.126392 h 0.278062 v -1.011948 h -0.278062 v -0.127207 h 0.72084 v 0.127207 H 22.62638 v 1.011948 h 0.278061 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1188" />
+              <path
+                 d="m 23.144178,25.551001 v -0.139439 l 0.600971,-0.998901 h -0.582217 v -0.127207 h 0.772212 v 0.127207 l -0.600156,0.998901 h 0.612388 v 0.139439 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1190" />
+              <path
+                 d="m 24.894905,25.411562 v 0.139439 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505566 v 0.429731 h 0.45501 v 0.126392 h -0.45501 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1192" />
+            </g>
+            <g
+               aria-label="RO"
+               id="text126"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 26.338216,25.013632 v 0.537369 h -0.164717 v -1.265547 h 0.338403 q 0.165533,0 0.243814,0.03425 0.07828,0.03343 0.120683,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366128,0.591187 h -0.195703 l -0.335141,-0.537369 z m 0,-0.127207 h 0.230766 q 0.07747,-0.0424 0.114976,-0.08643 0.03833,-0.04403 0.0579,-0.09378 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06524,-0.141069 -0.06442,-0.053 -0.234843,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1195" />
+              <path
+                 d="m 27.554022,25.589326 q -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 0.216088,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329433,0.181026 z m 0,-0.127207 q 0.119052,0 0.198149,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.198149,-0.135361 -0.119053,0 -0.198965,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198965,0.134546 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1197" />
+            </g>
+            <g
+               aria-label="TYPE"
+               id="text128"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 29.476316,25.551001 v -1.126109 h -0.379175 v -0.139438 h 0.923882 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1200" />
+              <path
+                 d="m 30.478479,25.551001 v -0.585479 l -0.376728,-0.680068 h 0.186733 l 0.281323,0.502304 0.280508,-0.502304 h 0.168794 l -0.375913,0.680068 v 0.585479 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1202" />
+              <path
+                 d="m 31.368928,25.089467 v 0.461534 h -0.164716 v -1.265547 h 0.314755 q 0.194073,0 0.282954,0.04403 0.08888,0.04322 0.136177,0.127207 0.04729,0.08399 0.04729,0.187549 0,0.121499 -0.0636,0.226689 -0.0636,0.105191 -0.177764,0.162271 -0.113345,0.05626 -0.308232,0.05626 z m 0,-0.126391 h 0.07094 q 0.152485,0 0.226689,-0.03914 0.0742,-0.03996 0.11416,-0.11416 0.03996,-0.0742 0.03996,-0.16064 0,-0.109267 -0.07176,-0.172871 -0.07094,-0.0636 -0.281324,-0.0636 h -0.09867 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1204" />
+              <path
+                 d="m 32.910906,25.411562 v 0.139439 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505566 v 0.429731 h 0.455009 v 0.126392 h -0.455009 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1206" />
+            </g>
+            <g
+               aria-label="MOUNTPOINT"
+               id="text130"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 34.24658,25.551001 h -0.132915 v -1.265547 h 0.165532 l 0.291924,0.833369 0.291924,-0.833369 H 35.0245 v 1.265547 h -0.15167 v -0.80646 l 0.0041,-0.110899 h -0.0041 l -0.03588,0.110899 -0.195703,0.553676 h -0.164717 l -0.198149,-0.553676 -0.0318,-0.110899 h -0.0041 l 0.0041,0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1209" />
+              <path
+                 d="m 35.570022,25.589326 q -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198965,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198965,0.134546 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1211" />
+              <path
+                 d="m 36.17344,24.285454 h 0.164717 v 0.830923 q 0,0.163901 0.02691,0.224243 0.02773,0.05953 0.08399,0.09133 0.05708,0.03099 0.126392,0.03099 0.07339,0 0.130469,-0.03343 0.05789,-0.03425 0.0848,-0.106006 0.02772,-0.07257 0.02772,-0.271538 v -0.766504 h 0.15167 v 0.82603 q 0,0.176948 -0.053,0.277246 -0.05219,0.09948 -0.136992,0.150039 -0.0848,0.05056 -0.213643,0.05056 -0.119052,0 -0.209565,-0.04403 -0.09051,-0.04403 -0.136992,-0.1321 -0.04648,-0.08807 -0.04648,-0.318018 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1213" />
+              <path
+                 d="m 37.326458,25.551001 h -0.15167 v -1.265547 h 0.148408 l 0.447671,0.842339 0.04893,0.125576 h 0.0041 l -0.0041,-0.125576 v -0.842339 h 0.15167 v 1.265547 h -0.15167 l -0.43544,-0.828477 -0.06116,-0.132915 0.0033,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1215" />
+              <path
+                 d="m 38.491707,25.551001 v -1.126109 h -0.379175 v -0.139438 h 0.923882 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1217" />
+              <path
+                 d="m 39.382971,25.089467 v 0.461534 h -0.164716 v -1.265547 h 0.314755 q 0.194073,0 0.282955,0.04403 0.08888,0.04322 0.136176,0.127207 0.0473,0.08399 0.0473,0.187549 0,0.121499 -0.0636,0.226689 -0.0636,0.105191 -0.177764,0.162271 -0.113345,0.05626 -0.308232,0.05626 z m 0,-0.126391 h 0.07094 q 0.152485,0 0.226689,-0.03914 0.0742,-0.03996 0.11416,-0.11416 0.03996,-0.0742 0.03996,-0.16064 0,-0.109267 -0.07176,-0.172871 -0.07094,-0.0636 -0.281324,-0.0636 h -0.09867 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1219" />
+              <path
+                 d="m 40.576761,25.589326 q -0.215274,0 -0.329434,-0.181026 -0.113344,-0.18184 -0.113344,-0.490073 0,-0.307417 0.113344,-0.488442 0.11416,-0.181841 0.329434,-0.181841 0.216089,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113344,0.181026 -0.329433,0.181026 z m 0,-0.127207 q 0.119053,0 0.198149,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.198149,-0.135361 -0.119053,0 -0.198965,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198965,0.134546 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1221" />
+              <path
+                 d="m 41.217688,25.551001 v -0.126392 h 0.278062 v -1.011948 h -0.278062 v -0.127207 h 0.72084 v 0.127207 h -0.278061 v 1.011948 h 0.278061 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1223" />
+              <path
+                 d="m 42.333196,25.551001 h -0.15167 v -1.265547 h 0.148408 l 0.447671,0.842339 0.04893,0.125576 h 0.0041 l -0.0041,-0.125576 v -0.842339 h 0.15167 v 1.265547 h -0.15167 l -0.435439,-0.828477 -0.06116,-0.132915 0.0033,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1225" />
+              <path
+                 d="M 43.498445,25.551001 V 24.424892 H 43.11927 v -0.139438 h 0.923882 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1227" />
+            </g>
+            <g
+               aria-label="loop0"
+               id="text132"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.3710205,27.722 V 26.533104 H 0.09866699 v -0.127207 h 0.42402343 v 1.189712 H 0.80727537 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1230" />
+              <path
+                 d="m 1.5028369,27.747278 q -0.1957031,0 -0.313125,-0.136176 Q 1.07229,27.47411 1.07229,27.266175 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1232" />
+              <path
+                 d="m 2.5041846,27.747278 q -0.1957032,0 -0.313125,-0.136176 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1234" />
+              <path
+                 d="m 3.2706886,27.015838 q 0.070127,-0.11416 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123945 -0.1614551,0.196518 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353897 H 3.1190187 v -1.264732 h 0.1516699 z m 0,0.18021 v 0.390591 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1236" />
+              <path
+                 d="m 4.5060645,26.418944 q 0.2160888,0 0.3294335,0.18184 0.1133448,0.181026 0.1133448,0.488443 0,0.308232 -0.1133448,0.490073 -0.1133447,0.181025 -0.3294335,0.181025 -0.2152735,0 -0.3294336,-0.181025 -0.1133447,-0.181841 -0.1133447,-0.490073 0,-0.307417 0.1133447,-0.488443 0.1141601,-0.18184 0.3294336,-0.18184 z M 4.2589893,27.359949 4.696875,26.674173 q -0.041587,-0.07584 -0.090513,-0.101929 -0.04811,-0.02691 -0.1002978,-0.02691 -0.1361768,0 -0.2071192,0.15167 -0.070942,0.150855 -0.070942,0.383252 0,0.053 0.00326,0.11416 0.00326,0.06116 0.027725,0.165532 z m 0.4925195,-0.534922 -0.434624,0.689854 q 0.035063,0.05953 0.080727,0.0897 0.045664,0.02936 0.1019287,0.02936 0.1549317,0 0.220166,-0.172871 0.065234,-0.173687 0.065234,-0.384883 0,-0.130469 -0.033433,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1238" />
+            </g>
+            <g
+               aria-label="7:0"
+               id="text134"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 10.280123,27.722 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1241" />
+              <path
+                 d="m 11.522022,27.760325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1243" />
+              <path
+                 d="m 12.52337,26.418944 q 0.216088,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247076,0.941005 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1245" />
+            </g>
+            <g
+               aria-label="0"
+               id="text136"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 17.534674,26.418944 q 0.216089,0 0.329434,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 z m -0.247075,0.941005 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02773,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154931,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1248" />
+            </g>
+            <g
+               aria-label="653.7M"
+               id="text138"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 19.276106,27.128367 q 0.05871,-0.08725 0.145146,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114975,0.132915 -0.30334,0.132915 -0.221796,0 -0.331879,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123946 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1251" />
+              <path
+                 d="m 20.192649,27.063948 v -0.607495 h 0.708608 v 0.145962 h -0.556939 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167978,0.152486 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.105191,-0.19978 -0.104375,-0.08236 -0.371835,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1253" />
+              <path
+                 d="m 21.158933,27.699168 v -0.159824 q 0.186733,0.09459 0.323725,0.09459 0.125576,0 0.207119,-0.07584 0.08236,-0.07665 0.08236,-0.196519 0,-0.120683 -0.09051,-0.196518 -0.0897,-0.07583 -0.305786,-0.07583 h -0.08399 v -0.126392 h 0.116606 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.05789,-0.05463 -0.177763,-0.05463 -0.134546,0 -0.289478,0.07583 v -0.144331 q 0.154932,-0.05789 0.28377,-0.05789 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.16227 -0.04648,0.07584 -0.17124,0.135362 0.110083,0.03262 0.166347,0.07991 0.05626,0.0473 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177763 -0.1321,0.293554 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.1321,-0.009 -0.07094,-0.009 -0.173686,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1255" />
+              <path
+                 d="m 22.542717,27.760325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1257" />
+              <path
+                 d="m 23.303513,27.722 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110899 0.121499,-0.171241 l 0.132099,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.656421 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145147,0.219351 -0.02935,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1259" />
+              <path
+                 d="m 24.223317,27.722 h -0.132915 v -1.265547 h 0.165533 l 0.291923,0.833369 0.291924,-0.833369 h 0.161455 V 27.722 h -0.15167 v -0.80646 l 0.0041,-0.110898 h -0.0041 l -0.03588,0.110898 -0.195703,0.553677 h -0.164716 l -0.19815,-0.553677 -0.0318,-0.110898 h -0.0041 l 0.0041,0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1261" />
+            </g>
+            <g
+               aria-label="1"
+               id="text140"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 27.517165,27.595609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 H 27.97299 V 27.722 h -0.765688 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1264" />
+            </g>
+            <g
+               aria-label="loop"
+               id="text142"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 29.429021,27.722 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1267" />
+              <path
+                 d="m 30.560837,27.747278 q -0.195703,0 -0.313125,-0.136176 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207935 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1269" />
+              <path
+                 d="m 31.562185,27.747278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1271" />
+              <path
+                 d="m 32.328689,27.015838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161456,0.196518 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1273" />
+            </g>
+            <g
+               aria-label="/run/initramfs/ltsp/0/looproot"
+               id="text144"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 34.244134,27.760325 H 34.09491 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1276" />
+              <path
+                 d="m 35.273206,27.722 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06687 -0.159009,0.200595 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1278" />
+              <path
+                 d="M 36.946468,26.811165 V 27.722 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.151669 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152486,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1280" />
+              <path
+                 d="m 37.198435,27.722 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 27.722 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1282" />
+              <path
+                 d="m 38.249524,27.760325 h -0.149223 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1284" />
+              <path
+                 d="m 39.45636,27.722 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253599 V 27.722 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1286" />
+              <path
+                 d="m 40.202479,27.722 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157377,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272353 V 27.722 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1288" />
+              <path
+                 d="m 41.459056,27.722 v -0.784443 h -0.252784 v -0.126392 h 0.404454 v 0.784444 h 0.253598 V 27.722 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1290" />
+              <path
+                 d="m 42.966785,27.685306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 27.013392 H 42.157063 V 26.887 h 0.227505 v -0.366943 h 0.15167 V 26.887 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1292" />
+              <path
+                 d="m 43.283987,27.722 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06687 -0.159009,0.200595 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1294" />
+              <path
+                 d="m 44.806394,27.517327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1296" />
+              <path
+                 d="m 45.14072,27.722 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 27.722 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 27.722 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1298" />
+              <path
+                 d="M 46.422577,27.722 V 27.013392 H 46.22035 V 26.887 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215274,0.02202 v 0.144331 q -0.118238,-0.03914 -0.209566,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 V 26.887 h 0.361236 v 0.126392 H 46.574246 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1300" />
+              <path
+                 d="m 47.222513,27.67389 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.151669,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1302" />
+              <path
+                 d="m 48.263001,27.760325 h -0.149224 l 0.80483,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1304" />
+              <path
+                 d="m 49.459236,27.722 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1306" />
+              <path
+                 d="m 50.977566,27.685306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 27.013392 H 50.167845 V 26.887 h 0.227504 v -0.366943 h 0.15167 V 26.887 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1308" />
+              <path
+                 d="m 51.227904,27.67389 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145961,0 0.27643,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1310" />
+              <path
+                 d="m 52.358904,27.015838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1312" />
+              <path
+                 d="m 53.26974,27.760325 h -0.149224 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1314" />
+              <path
+                 d="m 54.595627,26.418944 q 0.216089,0 0.329434,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 z m -0.247075,0.941005 0.437886,-0.685776 q -0.04159,-0.07584 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136176,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1316" />
+              <path
+                 d="m 55.272435,27.760325 h -0.149224 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1318" />
+              <path
+                 d="m 56.468669,27.722 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1320" />
+              <path
+                 d="m 57.600486,27.747278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1322" />
+              <path
+                 d="m 58.601835,27.747278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117421,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1324" />
+              <path
+                 d="m 59.368338,27.015838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1326" />
+              <path
+                 d="m 60.306898,27.722 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05626 0.204672,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06687 -0.159009,0.200595 V 27.722 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1328" />
+              <path
+                 d="m 61.605877,27.747278 q -0.195704,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1330" />
+              <path
+                 d="m 62.607225,27.747278 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117421,0.136176 0.117421,0.344111 0,0.207935 -0.117421,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1332" />
+              <path
+                 d="m 63.995085,27.685306 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 27.013392 H 63.185364 V 26.887 h 0.227504 v -0.366943 h 0.15167 V 26.887 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1334" />
+            </g>
+            <g
+               aria-label="nvme0n1"
+               id="text146"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.1263916,29.893 v -0.910835 h 0.15166992 v 0.198965 q 0.0652344,-0.105191 0.15737792,-0.164717 0.0921435,-0.05953 0.18428711,-0.05953 0.0807275,0 0.14677734,0.04322 0.0660498,0.0424 0.0921436,0.111714 0.0269092,0.06931 0.0269092,0.272354 V 29.893 H 0.7338867 v -0.527583 q 0,-0.131285 -0.0130469,-0.172871 -0.0122314,-0.0424 -0.0464795,-0.06931 -0.0334326,-0.02691 -0.0733887,-0.02691 -0.0799121,0 -0.17205566,0.07584 -0.0913281,0.07583 -0.15085448,0.189995 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1337" />
+              <path
+                 d="M 1.4237402,29.893 1.0282568,28.982165 h 0.1663477 l 0.3123096,0.72084 0.318833,-0.72084 H 1.977417 L 1.5786719,29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1339" />
+              <path
+                 d="m 2.0605908,29.893 v -0.910835 h 0.1329151 v 0.20875 q 0.062788,-0.132915 0.1166064,-0.183472 0.054634,-0.05056 0.110083,-0.05056 0.06605,0 0.1060059,0.05219 0.040771,0.05137 0.040771,0.146777 v 0.04893 q 0.026909,-0.08317 0.064419,-0.134546 0.038325,-0.05219 0.079097,-0.08236 0.040771,-0.03099 0.093774,-0.03099 0.058711,0 0.1002978,0.04974 0.041587,0.04974 0.041587,0.198149 V 29.893 h -0.132915 v -0.622173 q 0,-0.07665 -0.00489,-0.104375 -0.00489,-0.02854 -0.01957,-0.04322 -0.014678,-0.01468 -0.031802,-0.01468 -0.042402,0 -0.091328,0.06524 -0.04811,0.06442 -0.098667,0.214458 V 29.893 H 2.4397656 v -0.621358 q 0,-0.120683 -0.023647,-0.141885 -0.023648,-0.0212 -0.042402,-0.0212 -0.041587,0 -0.089697,0.07257 -0.047295,0.07257 -0.090513,0.185918 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1341" />
+              <path
+                 d="m 3.8879689,29.832658 q -0.1818409,0.08644 -0.3441114,0.08644 -0.1231298,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 3.2731349 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467774,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058643,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.145962,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1343" />
+              <path
+                 d="m 4.5060645,28.589943 q 0.2160888,0 0.3294335,0.181841 0.1133448,0.181025 0.1133448,0.488442 0,0.308233 -0.1133448,0.490073 -0.1133447,0.181026 -0.3294335,0.181026 -0.2152735,0 -0.3294336,-0.181026 -0.1133447,-0.18184 -0.1133447,-0.490073 0,-0.307417 0.1133447,-0.488442 0.1141601,-0.181841 0.3294336,-0.181841 z M 4.2589893,29.530949 4.696875,28.845173 q -0.041587,-0.07583 -0.090513,-0.101929 -0.04811,-0.02691 -0.1002978,-0.02691 -0.1361768,0 -0.2071192,0.15167 -0.070942,0.150854 -0.070942,0.383252 0,0.053 0.00326,0.11416 0.00326,0.06116 0.027725,0.165532 z m 0.4925195,-0.534922 -0.434624,0.689854 q 0.035063,0.05953 0.080727,0.0897 0.045664,0.02935 0.1019287,0.02935 0.1549317,0 0.220166,-0.172871 0.065234,-0.173686 0.065234,-0.384883 0,-0.130468 -0.033433,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1345" />
+              <path
+                 d="m 5.1331298,29.893 v -0.910835 h 0.1516699 v 0.198965 q 0.065234,-0.105191 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.080728,0 0.1467774,0.04322 0.06605,0.0424 0.092143,0.111714 0.026909,0.06931 0.026909,0.272354 V 29.893 H 5.7406249 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012231,-0.0424 -0.04648,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1347" />
+              <path
+                 d="m 6.4712503,29.766608 v -0.976885 q -0.068496,0.05463 -0.1329151,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136993 q 0.1785791,-0.07584 0.3098633,-0.196518 h 0.1516699 v 1.139155 H 6.9270754 V 29.893 H 6.161387 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1349" />
+            </g>
+            <g
+               aria-label="259:0"
+               id="text148"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 8.9031873,29.893 H 8.1374988 v -0.139439 q 0,-0.05382 0.022017,-0.114975 0.022017,-0.06197 0.083989,-0.138623 0.061973,-0.07665 0.1312841,-0.147593 l 0.086436,-0.08807 q 0.026094,-0.02691 0.1141601,-0.12476 0.088066,-0.09785 0.1157911,-0.150039 0.02854,-0.05219 0.02854,-0.102745 0,-0.08154 -0.065234,-0.125576 -0.065234,-0.04485 -0.1467773,-0.04485 -0.046479,0 -0.104375,0.0106 -0.05708,0.0106 -0.1002979,0.02528 -0.043218,0.01386 -0.1402539,0.0579 v -0.134546 q 0.1027442,-0.04893 0.2054883,-0.06686 0.1035596,-0.01875 0.1704248,-0.01875 0.098667,0 0.1810254,0.03262 0.083174,0.0318 0.1231299,0.09948 0.040771,0.06768 0.040771,0.144331 0,0.08562 -0.052187,0.175317 -0.051372,0.0897 -0.1948877,0.230767 l -0.092959,0.09214 -0.078281,0.07665 q -0.074204,0.07502 -0.1198681,0.145146 -0.045664,0.07013 -0.050557,0.167163 h 0.6083106 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1352" />
+              <path
+                 d="m 9.1706482,29.234948 v -0.607495 h 0.7086084 v 0.145962 H 9.3223182 v 0.309863 h 0.026094 q 0.2731689,0 0.4207617,0.11416 0.1475928,0.11416 0.1475928,0.307417 0,0.122315 -0.059526,0.219351 -0.059526,0.09704 -0.1679785,0.152485 -0.1084521,0.05463 -0.2307666,0.05463 -0.1223144,0 -0.313125,-0.05953 v -0.165532 q 0.069311,0.03751 0.1549316,0.06197 0.08562,0.02365 0.1581934,0.02365 0.072573,0 0.1418848,-0.03506 0.069312,-0.03506 0.1076367,-0.101929 0.038325,-0.06768 0.038325,-0.137807 0,-0.118238 -0.1051905,-0.199781 -0.1043749,-0.08236 -0.3718359,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1354" />
+              <path
+                 d="m 10.781937,29.221086 q -0.05871,0.08725 -0.145962,0.1427 -0.08643,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.0473 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114975,-0.312309 0.115791,-0.133731 0.304155,-0.133731 0.221797,0 0.331065,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139439,0.500674 -0.139438,0.183472 -0.377543,0.183472 -0.128023,0 -0.248707,-0.03833 v -0.152486 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.123129,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1356" />
+              <path
+                 d="m 11.520717,29.931325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708609 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03832 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1358" />
+              <path
+                 d="m 12.522064,28.589943 q 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 z m -0.247075,0.941006 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02773,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101929,0.02935 0.154931,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1360" />
+            </g>
+            <g
+               aria-label="0"
+               id="text150"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 17.534674,28.589943 q 0.216089,0 0.329434,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113345,0.181026 -0.329434,0.181026 -0.215273,0 -0.329433,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329433,-0.181841 z m -0.247075,0.941006 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02773,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101929,0.02935 0.154931,0 0.220166,-0.172871 0.06523,-0.173686 0.06523,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1363" />
+            </g>
+            <g
+               aria-label="894.3G"
+               id="text152"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 19.412282,29.210485 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01876,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298448,0.100298 -0.19978,0 -0.299262,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02935,-0.05871 0.02935,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158194 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118238,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1366" />
+              <path
+                 d="m 20.80259,29.221086 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187548,-0.0473 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200596 0,-0.179394 0.114976,-0.312309 0.115791,-0.133731 0.304155,-0.133731 0.221797,0 0.331065,0.185918 0.110083,0.185103 0.110083,0.471318 0,0.316387 -0.139439,0.500674 -0.139438,0.183472 -0.377544,0.183472 -0.128022,0 -0.248706,-0.03833 v -0.152486 q 0.135361,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114976 0.05953,0.18918 0.06034,0.0742 0.17124,0.0742 0.114975,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202227 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1368" />
+              <path
+                 d="m 21.617204,29.893 v -0.353897 h -0.537368 v -0.127207 l 0.537368,-0.784443 h 0.152486 v 0.784443 h 0.234028 v 0.127207 H 21.76969 V 29.893 Z m 0,-0.481104 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1370" />
+              <path
+                 d="m 22.542717,29.931325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1372" />
+              <path
+                 d="m 23.161628,29.870168 v -0.159825 q 0.186733,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07584 -0.305786,-0.07584 h -0.08399 v -0.126391 h 0.116607 q 0.159008,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159009 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289478,0.07583 v -0.144331 q 0.154932,-0.0579 0.28377,-0.0579 0.230766,0 0.318017,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.17124,0.135361 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.1321,0.293555 -0.131284,0.115791 -0.340034,0.115791 -0.06034,0 -0.132099,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1374" />
+              <path
+                 d="m 24.931926,29.892184 q -0.133731,0.03914 -0.245445,0.03914 -0.158193,0 -0.282138,-0.07828 -0.12313,-0.07828 -0.193257,-0.23566 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.124761,-0.08073 0.273984,-0.08073 0.11253,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260937,-0.07583 -0.09785,0 -0.179395,0.06686 -0.08073,0.06686 -0.130468,0.196518 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09378,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 V 29.393141 H 24.640817 V 29.26675 h 0.291109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1376" />
+            </g>
+            <g
+               aria-label="0"
+               id="text154"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 27.554675,28.589943 q 0.216089,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113344,0.181026 -0.329433,0.181026 -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 z m -0.247076,0.941006 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150854 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02935 0.101928,0.02935 0.154932,0 0.220166,-0.172871 0.06524,-0.173686 0.06524,-0.384883 0,-0.130468 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1379" />
+            </g>
+            <g
+               aria-label="disk"
+               id="text156"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 29.792703,29.688327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 V 29.893 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1382" />
+              <path
+                 d="m 30.440969,29.893 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 V 29.893 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1384" />
+              <path
+                 d="M 31.197688,29.844889 V 29.68425 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117421,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1386" />
+              <path
+                 d="m 32.229207,29.893 v -1.316104 h 0.15167 v 0.826846 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 32.380877,29.403742 V 29.893 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1388" />
+            </g>
+            <g
+               id="use158"
+               transform="translate(0,30.393999)">
+              <g
+                 id="text538"
+                 class="c"
+                 style="white-space:pre;fill:#b9c0cb" />
+            </g>
+            <g
+               id="use160"
+               transform="translate(0,32.564999)">
+              <g
+                 id="text542"
+                 class="c"
+                 style="white-space:pre;fill:#b9c0cb" />
+            </g>
+            <g
+               aria-label="root@m1c29:~#"
+               id="text162"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.20385742,36.405998 v -0.910835 h 0.15166991 v 0.198965 q 0.0709424,-0.112529 0.16227051,-0.167978 0.0921436,-0.05627 0.20467284,-0.05627 0.0823584,0 0.1647168,0.02528 v 0.328618 H 0.74122557 v -0.207934 q -0.0383252,-0.0065 -0.0603418,-0.0065 -0.0848047,0 -0.16634765,0.06687 -0.081543,0.06686 -0.15900879,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1393" />
+              <path
+                 d="m 1.5028369,36.431277 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,36.158108 1.07229,35.950173 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1395" />
+              <path
+                 d="m 2.5041846,36.431277 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1397" />
+              <path
+                 d="m 3.892046,36.369304 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.174502,-0.0367 -0.079097,-0.03669 -0.1198681,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 35.69739 H 3.0823244 v -0.126392 h 0.2275048 v -0.366943 h 0.1516699 v 0.366943 H 3.8667677 V 35.69739 H 3.4614991 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069311,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1399" />
+              <path
+                 d="m 4.7564014,36.242912 v 0.128023 q -0.068496,0.04485 -0.1214991,0.05871 -0.053003,0.01468 -0.1141601,0.01468 -0.1696094,0 -0.2780615,-0.08236 -0.1076367,-0.08317 -0.1720557,-0.230767 -0.063604,-0.148408 -0.063604,-0.36205 0,-0.296817 0.1361768,-0.481104 0.1361767,-0.185102 0.3677587,-0.185102 0.2291358,0 0.3620508,0.163086 0.1337305,0.163085 0.1337305,0.428916 0,0.117421 -0.034248,0.193256 -0.034248,0.07502 -0.090513,0.119869 -0.056265,0.04403 -0.1361767,0.04403 -0.061973,0 -0.1011133,-0.02691 -0.039141,-0.02773 -0.058711,-0.126392 -0.022832,0.053 -0.070127,0.10356 -0.047295,0.04974 -0.1280224,0.04974 -0.083989,0 -0.1394385,-0.07583 -0.054634,-0.07665 -0.054634,-0.187549 0,-0.136177 0.078281,-0.252783 0.079097,-0.116607 0.284585,-0.116607 h 0.1557471 v 0.357159 q 0,0.07094 0.00489,0.101113 0.00571,0.02936 0.022017,0.04485 0.017124,0.01549 0.036694,0.01549 0.031802,0 0.063603,-0.03017 0.032617,-0.03099 0.048926,-0.08644 0.017124,-0.05626 0.017124,-0.121499 0,-0.136177 -0.049741,-0.264199 -0.049741,-0.128838 -0.1475928,-0.183472 -0.097851,-0.05463 -0.2046728,-0.05463 -0.1133448,0 -0.1997803,0.0685 -0.08562,0.06768 -0.1410693,0.203857 -0.054634,0.136177 -0.054634,0.300894 0,0.165532 0.054634,0.306601 0.054634,0.141069 0.1475927,0.206304 0.092959,0.06523 0.2071192,0.06523 0.1296533,0 0.2389209,-0.106006 z M 4.5859766,35.746316 v -0.219351 h -0.029356 q -0.096221,0 -0.138623,0.03017 -0.042402,0.03017 -0.066865,0.09459 -0.024463,0.06442 -0.024463,0.141885 0,0.06279 0.01957,0.09704 0.01957,0.03425 0.053818,0.03425 0.04811,0 0.097852,-0.05545 0.050557,-0.05627 0.088066,-0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1401" />
+              <path
+                 d="m 5.0646337,36.405998 v -0.910835 h 0.132915 v 0.20875 q 0.062788,-0.132915 0.1166065,-0.183471 0.054634,-0.05056 0.110083,-0.05056 0.06605,0 0.1060058,0.05219 0.040771,0.05137 0.040771,0.146778 v 0.04893 q 0.026909,-0.08317 0.064419,-0.134546 0.038325,-0.05219 0.079097,-0.08236 0.040771,-0.03099 0.093774,-0.03099 0.058711,0 0.1002979,0.04974 0.041587,0.04974 0.041587,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.00489,-0.104375 -0.00489,-0.02854 -0.01957,-0.04322 -0.014678,-0.01468 -0.031802,-0.01468 -0.042402,0 -0.091328,0.06523 -0.04811,0.06442 -0.098667,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.023648,-0.141885 -0.023647,-0.0212 -0.042402,-0.0212 -0.041587,0 -0.089697,0.07257 -0.047295,0.07257 -0.090513,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1403" />
+              <path
+                 d="m 6.4712503,36.279607 v -0.976885 q -0.068496,0.05463 -0.1329151,0.09296 -0.064419,0.03832 -0.1769482,0.07828 V 35.33697 q 0.1785791,-0.07583 0.3098633,-0.196519 h 0.1516699 v 1.139156 h 0.3041552 v 0.126391 H 6.161387 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1405" />
+              <path
+                 d="m 7.9023292,36.379904 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136992 0.3261719,-0.136992 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133447,0.128023 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097852,-0.0065 0.04811,-0.0073 0.1777636,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1407" />
+              <path
+                 d="M 8.8979688,36.405998 H 8.1322803 V 36.26656 q 0,-0.05382 0.022017,-0.114976 0.022017,-0.06197 0.083989,-0.138623 0.061973,-0.07665 0.1312841,-0.147593 l 0.086436,-0.08807 q 0.026094,-0.02691 0.1141601,-0.124761 0.088066,-0.09785 0.1157911,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.065234,-0.125576 -0.065234,-0.04485 -0.1467773,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.1002979,0.02528 -0.043218,0.01386 -0.1402539,0.0579 v -0.134546 q 0.1027442,-0.04893 0.2054883,-0.06686 0.1035596,-0.01875 0.1704248,-0.01875 0.098667,0 0.1810254,0.03262 0.083174,0.0318 0.1231299,0.09948 0.040771,0.06768 0.040771,0.144331 0,0.08562 -0.052187,0.175318 -0.051372,0.0897 -0.1948877,0.230766 l -0.092959,0.09214 -0.078281,0.07665 q -0.074204,0.07502 -0.1198681,0.145147 -0.045664,0.07013 -0.050557,0.167163 h 0.6083106 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1409" />
+              <path
+                 d="m 9.775371,35.734084 q -0.058711,0.08725 -0.1459619,0.1427 -0.086436,0.05463 -0.1908106,0.05463 -0.098667,0 -0.1875488,-0.04729 -0.088066,-0.04811 -0.1345459,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.1149756,-0.31231 0.115791,-0.13373 0.3041553,-0.13373 0.2217969,0 0.3310644,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.1394384,0.500674 -0.1394385,0.183471 -0.377544,0.183471 -0.1280224,0 -0.248706,-0.03833 v -0.152485 q 0.1353613,0.0636 0.2552295,0.0636 0.1696093,0 0.2625683,-0.155747 0.092959,-0.155747 0.092959,-0.394668 z M 9.4777392,35.229333 q -0.061157,0 -0.1231299,0.0367 -0.061973,0.03588 -0.097852,0.110898 -0.035063,0.07502 -0.035063,0.164717 0,0.114975 0.059526,0.189179 0.060342,0.0742 0.1712402,0.0742 0.1149756,0 0.1883643,-0.08562 0.074204,-0.08644 0.074204,-0.20875 0,-0.123945 -0.072573,-0.202226 -0.071758,-0.0791 -0.1647168,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1411" />
+              <path
+                 d="m 10.51415,36.444323 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1413" />
+              <path
+                 d="m 11.060488,36.07738 v -0.01468 q 0,-0.106821 0.06279,-0.185102 0.0636,-0.0791 0.170425,-0.0791 0.02691,0 0.05219,0.0057 0.02609,0.0049 0.05871,0.01794 0.03262,0.01223 0.09785,0.04893 l 0.09867,0.05463 q 0.09051,0.04974 0.147593,0.04974 0.06034,0 0.08888,-0.04322 0.02936,-0.04403 0.02936,-0.09541 v -0.01305 h 0.104375 v 0.01305 q 0,0.136177 -0.07747,0.201411 -0.07665,0.06442 -0.163086,0.06442 -0.08073,0 -0.213642,-0.07583 l -0.08317,-0.04811 q -0.09459,-0.05382 -0.152486,-0.05382 -0.03262,0 -0.06116,0.01712 -0.02772,0.01712 -0.04485,0.05463 -0.01712,0.03751 -0.01712,0.06605 v 0.01468 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1415" />
+              <path
+                 d="m 12.074068,36.064333 v -0.11416 h 0.159824 l 0.0897,-0.335142 h -0.249521 v -0.113344 h 0.278061 l 0.09541,-0.361236 h 0.119052 l -0.0954,0.361236 h 0.230767 l 0.09948,-0.361236 h 0.119053 l -0.09785,0.361236 h 0.136993 v 0.113344 h -0.168794 l -0.08888,0.335142 h 0.257676 v 0.11416 h -0.289478 l -0.09296,0.341665 h -0.120684 l 0.09459,-0.341665 h -0.227505 l -0.0897,0.341665 h -0.120683 l 0.09051,-0.341665 z m 0.279692,-0.11416 h 0.228321 l 0.09214,-0.335142 h -0.233213 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1417" />
+            </g>
+            <g
+               aria-label="ls"
+               id="text164"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 14.39902,36.405998 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1420" />
+              <path
+                 d="m 15.16634,36.357888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1422" />
+            </g>
+            <g
+               aria-label="/etc/ltsp/"
+               id="text166"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 17.210133,36.444323 H 17.06091 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1425" />
+              <path
+                 d="m 18.919274,36.345656 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 H 18.30444 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 18.31341,35.862107 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1427" />
+              <path
+                 d="m 19.924699,36.369304 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 35.69739 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1429" />
+              <path
+                 d="m 20.930939,36.379904 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1431" />
+              <path
+                 d="M 21.215524,36.444323 H 21.0663 l 0.804829,-1.341381 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1433" />
+              <path
+                 d="m 22.411759,36.405998 v -1.188896 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1435" />
+              <path
+                 d="m 23.93009,36.369304 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 35.69739 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231583,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1437" />
+              <path
+                 d="m 24.180426,36.357888 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122315 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.15004,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1439" />
+              <path
+                 d="m 25.311427,35.699836 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161456,0.196518 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1441" />
+              <path
+                 d="m 26.222262,36.444323 h -0.149224 l 0.804829,-1.341381 h 0.144332 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1443" />
+            </g>
+            <g
+               aria-label="authorized_keys"
+               id="text168"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.72491697,38.372327 q -0.0693115,0.11416 -0.16716308,0.172055 -0.0970361,0.0579 -0.1785791,0.0579 -0.11416015,0 -0.20548827,-0.09867 -0.09051269,-0.09867 -0.09051269,-0.299263 0,-0.158193 0.06034179,-0.282138 0.0603418,-0.124761 0.16145508,-0.196519 0.10111327,-0.07257 0.2503369,-0.07257 0.0432178,0 0.13046875,0.009 0.0130469,0.0016 0.0391406,0.0041 h 0.15248535 v 0.643374 q 0,0.164717 0.0342481,0.267461 H 0.75345701 q -0.0179394,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.0807275,-0.0212 -0.15003906,-0.0212 -0.1402539,0 -0.23402831,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.0505566,0.204672 0.0513721,0.0685 0.11660644,0.0685 0.0709424,0 0.1565625,-0.07176 0.0856201,-0.07176 0.15330077,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1446" />
+              <path
+                 d="M 1.8771191,37.666165 V 38.577 H 1.7254492 v -0.199781 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793946,0.05626 -0.079912,0 -0.1467773,-0.0424 -0.06605,-0.04322 -0.092144,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 V 37.666165 H 1.269624 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.04648,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712403,-0.07502 0.092143,-0.07583 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1448" />
+              <path
+                 d="m 2.8906982,38.540305 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.1745019,-0.03669 -0.079097,-0.0367 -0.1198682,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 37.868391 H 2.0809766 V 37.742 h 0.2275048 v -0.366944 h 0.15167 V 37.742 h 0.4052685 v 0.126391 H 2.4601514 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069311,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1450" />
+              <path
+                 d="m 3.1304347,38.577 v -1.316104 h 0.1516699 v 0.604234 q 0.065234,-0.105191 0.1573779,-0.164717 0.092144,-0.05953 0.1842871,-0.05953 0.077466,0 0.1410694,0.03996 0.064419,0.03914 0.089697,0.09541 0.020386,0.04322 0.027725,0.09214 0.00734,0.04811 0.00734,0.199781 V 38.577 H 3.7379298 v -0.527583 q 0,-0.131285 -0.013047,-0.172871 -0.012231,-0.0424 -0.046479,-0.06931 -0.033433,-0.02691 -0.073389,-0.02691 -0.079912,0 -0.1720557,0.07584 -0.091328,0.07583 -0.1508545,0.189995 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1452" />
+              <path
+                 d="m 4.5068799,38.602278 q -0.1957031,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207934 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136177 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260123 0,-0.164716 -0.071758,-0.259306 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259306 0,0.165533 0.071758,0.260123 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1454" />
+              <path
+                 d="m 5.2105956,38.577 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 5.7479638 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06686 -0.081543,0.06686 -0.1590088,0.200596 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1456" />
+              <path
+                 d="M 6.3897073,38.577 V 37.792556 H 6.1369241 v -0.126391 h 0.4044531 v 0.784443 H 6.7949758 V 38.577 Z M 6.364429,37.337547 q 0,-0.05137 0.035063,-0.07665 0.035064,-0.02528 0.06605,-0.02528 0.031802,0 0.066865,0.02528 0.035064,0.02528 0.035064,0.07665 0,0.05056 -0.035064,0.07583 -0.035063,0.02528 -0.066865,0.02528 -0.030986,0 -0.06605,-0.02528 -0.035063,-0.02528 -0.035063,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1458" />
+              <path
+                 d="M 7.1178859,38.577 V 38.437561 L 7.6764552,37.792556 H 7.1309328 v -0.126391 h 0.7461181 v 0.126391 L 7.3144044,38.437561 H 7.8958058 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1460" />
+              <path
+                 d="m 8.894707,38.516658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057896,-0.11416 -0.057896,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549316,-0.178579 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 8.2798731 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111713 -0.054634,-0.177763 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1462" />
+              <path
+                 d="m 9.746831,38.372327 q -0.069312,0.11416 -0.1671631,0.172055 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.1614551,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 V 37.260896 H 9.8993163 V 38.577 H 9.746831 Z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204672 0.051372,0.0685 0.1166065,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1464" />
+              <path
+                 d="M 10.071372,38.703391 V 38.577 h 0.885556 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1466" />
+              <path
+                 d="m 11.181987,38.577 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 11.333657,38.087742 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1468" />
+              <path
+                 d="m 12.900098,38.516658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1470" />
+              <path
+                 d="m 13.479053,38.540305 -0.420762,-0.87414 h 0.167164 l 0.335141,0.68333 0.280508,-0.68333 h 0.152485 l -0.353081,0.846416 q -0.111714,0.268276 -0.212827,0.356342 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123945,-0.01223 v -0.13373 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101113 0.04729,-0.07257 0.06686,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1472" />
+              <path
+                 d="M 14.15586,38.528889 V 38.36825 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1474" />
+            </g>
+            <g
+               aria-label="kubeadm-join.conf"
+               id="text170"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 17.201163,38.577 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 L 17.352833,38.087742 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1477" />
+              <path
+                 d="M 18.91112,37.666165 V 38.577 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.151669 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1479" />
+              <path
+                 d="m 19.303341,37.870838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161456,0.196519 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1481" />
+              <path
+                 d="m 20.921969,38.516658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1483" />
+              <path
+                 d="m 21.764308,38.372327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1485" />
+              <path
+                 d="m 22.775441,38.372327 q -0.06931,0.11416 -0.167163,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 V 38.577 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1487" />
+              <path
+                 d="m 23.099982,38.577 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 38.577 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 V 38.577 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1489" />
+              <path
+                 d="m 24.228537,38.127698 v -0.126392 h 0.632773 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1491" />
+              <path
+                 d="m 25.185036,38.934158 v -0.141885 q 0.127207,0.03751 0.214458,0.03751 0.07583,0 0.128837,-0.02691 0.053,-0.02609 0.08236,-0.08888 0.03017,-0.06279 0.03017,-0.218535 v -0.702901 h -0.386514 v -0.126391 h 0.538184 v 0.800752 q 0,0.231582 -0.05463,0.321279 -0.05463,0.09051 -0.1321,0.129653 -0.07747,0.03914 -0.212011,0.03914 -0.09704,0 -0.20875,-0.02283 z m 0.430546,-1.596611 q 0,-0.05137 0.03425,-0.07665 0.03506,-0.02528 0.06687,-0.02528 0.0318,0 0.06605,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03425,0.02528 -0.06605,0.02528 -0.0318,0 -0.06687,-0.02528 -0.03425,-0.02528 -0.03425,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1493" />
+              <path
+                 d="m 26.547618,38.602278 q -0.195703,0 -0.313125,-0.136177 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207934 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1495" />
+              <path
+                 d="m 27.429098,38.577 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253598 V 38.577 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1497" />
+              <path
+                 d="m 28.175216,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 38.577 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1499" />
+              <path
+                 d="m 29.550847,38.615325 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1501" />
+              <path
+                 d="m 30.944416,38.550906 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106005,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1503" />
+              <path
+                 d="m 31.554357,38.602278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1505" />
+              <path
+                 d="m 32.180607,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 38.577 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1507" />
+              <path
+                 d="M 33.393966,38.577 V 37.868391 H 33.19174 V 37.742 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125576,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144332 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128022,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205489 V 37.742 h 0.361236 v 0.126391 H 33.545636 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1509" />
+            </g>
+            <g
+               aria-label="modules"
+               id="text172"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 39.135895,38.577 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 38.577 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 V 38.577 h -0.127207 v -0.621358 q 0,-0.120683 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1512" />
+              <path
+                 d="m 40.580836,38.602278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117421,0.136177 0.117421,0.344111 0,0.207935 -0.117421,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1514" />
+              <path
+                 d="m 41.815397,38.372327 q -0.06931,0.11416 -0.167164,0.172055 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152485 V 38.577 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1516" />
+              <path
+                 d="M 42.957814,37.666165 V 38.577 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1518" />
+              <path
+                 d="m 43.45441,38.577 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1520" />
+              <path
+                 d="m 44.968663,38.516658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111713 -0.05463,-0.177763 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1522" />
+              <path
+                 d="M 45.223078,38.528889 V 38.36825 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1524" />
+            </g>
+            <g
+               aria-label="ssh_known_hosts"
+               id="text174"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 51.238993,38.528889 V 38.36825 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1527" />
+              <path
+                 d="M 52.240341,38.528889 V 38.36825 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.16961,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145961,0 0.27643,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282138,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1529" />
+              <path
+                 d="m 53.231088,38.577 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02038,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.199781 V 38.577 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1531" />
+              <path
+                 d="M 54.16394,38.703391 V 38.577 h 0.885556 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1533" />
+              <path
+                 d="m 55.274555,38.577 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 55.426225,38.087742 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1535" />
+              <path
+                 d="m 56.235131,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 38.577 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1537" />
+              <path
+                 d="m 57.611577,38.602278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1539" />
+              <path
+                 d="m 58.276152,38.577 -0.148408,-0.910835 h 0.141069 l 0.08644,0.554492 0.02283,0.128838 0.02202,-0.128838 0.145147,-0.554492 h 0.136176 l 0.163902,0.554492 0.02854,0.128838 0.01875,-0.128838 0.08725,-0.554492 h 0.116606 L 58.948881,38.577 h -0.141885 l -0.174502,-0.586294 -0.02772,-0.128838 h -0.0041 l -0.02528,0.128022 -0.15167,0.58711 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1541" />
+              <path
+                 d="m 59.239174,38.577 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 38.577 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07584 -0.09133,0.07583 -0.150854,0.189995 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1543" />
+              <path
+                 d="M 60.172026,38.703391 V 38.577 h 0.885556 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1545" />
+              <path
+                 d="m 61.241869,38.577 v -1.316104 h 0.15167 v 0.604234 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.141069,0.03996 0.06442,0.03914 0.0897,0.09541 0.02038,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.199781 V 38.577 h -0.15167 v -0.527583 q 0,-0.131285 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07584 -0.09133,0.07583 -0.150855,0.189995 V 38.577 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1547" />
+              <path
+                 d="m 62.618314,38.602278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207934 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260123 0,-0.164716 -0.07176,-0.259306 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259306 0,0.165533 0.07176,0.260123 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1549" />
+              <path
+                 d="M 63.255166,38.528889 V 38.36825 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1551" />
+              <path
+                 d="m 65.007524,38.540305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 37.868391 H 64.197802 V 37.742 h 0.227505 v -0.366944 h 0.15167 V 37.742 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1553" />
+              <path
+                 d="M 65.257861,38.528889 V 38.36825 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1555" />
+            </g>
+            <g
+               aria-label="docker.json"
+               id="text176"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.73470213,40.543328 q -0.0693115,0.11416 -0.16716308,0.172056 -0.0970361,0.0579 -0.1785791,0.0579 -0.11416015,0 -0.20548828,-0.09867 -0.09051269,-0.09867 -0.09051269,-0.299262 0,-0.158194 0.0603418,-0.282139 0.0603418,-0.124761 0.16145507,-0.196518 0.10111328,-0.07257 0.25033691,-0.07257 0.0432178,0 0.13046875,0.009 0.0130469,0.0016 0.0391406,0.0041 v -0.405268 h 0.15248535 v 1.316103 H 0.73470213 Z m 0,-0.18021 v -0.390591 q -0.0807275,-0.0212 -0.15003906,-0.0212 -0.1402539,0 -0.23402831,0.108452 -0.092959,0.108453 -0.092959,0.295186 0,0.135361 0.0505566,0.204673 0.0513721,0.0685 0.11660645,0.0685 0.0709424,0 0.15656249,-0.07176 0.0856201,-0.07176 0.15330078,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1558" />
+              <path
+                 d="m 1.5028369,40.773279 q -0.1957031,0 -0.313125,-0.136176 Q 1.07229,40.50011 1.07229,40.292176 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207934 -0.1174218,0.344927 -0.1174219,0.136176 -0.3123096,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1560" />
+              <path
+                 d="m 2.8955908,40.721907 q -0.1524853,0.05137 -0.290293,0.05137 -0.1369921,0 -0.2438134,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136992 0.3261718,-0.136992 0.1410694,0 0.2984473,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128023 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1562" />
+              <path
+                 d="m 3.1712062,40.748001 v -1.316103 h 0.1516699 v 0.826845 l 0.4378857,-0.421577 h 0.2022266 l -0.4370703,0.421577 0.4484863,0.489258 h -0.20875 L 3.3228761,40.258743 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1564" />
+              <path
+                 d="m 4.8893164,40.687659 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057896,-0.11416 -0.057896,-0.243814 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 4.2744824 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z M 4.2834522,40.20411 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1566" />
+              <path
+                 d="m 5.2105956,40.748001 v -0.910835 h 0.1516699 v 0.198965 q 0.070942,-0.112529 0.1622705,-0.167979 0.092144,-0.05626 0.2046729,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 5.7479638 V 39.95785 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663477,0.06687 -0.081543,0.06686 -0.1590088,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1568" />
+              <path
+                 d="m 6.50876,40.786326 q -0.054634,0 -0.093774,-0.03914 -0.039141,-0.03914 -0.039141,-0.09378 0,-0.05545 0.039141,-0.09377 0.039956,-0.03914 0.093774,-0.03914 0.053818,0 0.092959,0.03914 0.039956,0.03833 0.039956,0.09377 0,0.05463 -0.039141,0.09378 -0.039141,0.03914 -0.093774,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1570" />
+              <path
+                 d="m 7.1496876,41.105159 v -0.141884 q 0.1272071,0.03751 0.2144581,0.03751 0.075835,0 0.1288378,-0.02691 0.053003,-0.02609 0.082358,-0.08888 0.030171,-0.06279 0.030171,-0.218535 v -0.7029 H 7.2189992 v -0.126392 h 0.5381836 v 0.800752 q 0,0.231582 -0.054634,0.321279 -0.054634,0.09051 -0.1320996,0.129654 -0.077466,0.03914 -0.2120118,0.03914 -0.097036,0 -0.20875,-0.02283 z m 0.4305469,-1.596611 q 0,-0.05137 0.034248,-0.07665 0.035063,-0.02528 0.066865,-0.02528 0.031802,0 0.06605,0.02528 0.035063,0.02528 0.035063,0.07665 0,0.05056 -0.035063,0.07584 -0.034248,0.02528 -0.06605,0.02528 -0.031802,0 -0.066865,-0.02528 -0.034248,-0.02528 -0.034248,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1572" />
+              <path
+                 d="m 8.1477735,40.699891 v -0.16064 q 0.091328,0.05953 0.1932568,0.08399 0.1019287,0.02365 0.1728711,0.02365 0.1149756,0 0.1655322,-0.03669 0.050557,-0.03751 0.050557,-0.09296 0,-0.0367 -0.023648,-0.06279 -0.023647,-0.02609 -0.1174219,-0.06442 l -0.052188,-0.0212 -0.1051904,-0.04159 q -0.1696094,-0.06605 -0.2136426,-0.122314 -0.044849,-0.05545 -0.044849,-0.135361 0,-0.11253 0.086436,-0.185103 0.087251,-0.07257 0.2821387,-0.07257 0.1459619,0 0.2764307,0.0424 v 0.137808 q -0.1500391,-0.05382 -0.2821387,-0.05382 -0.096221,0 -0.1508545,0.03425 -0.053818,0.03343 -0.053818,0.08399 0,0.04893 0.047295,0.07828 0.04648,0.02935 0.1516699,0.06768 l 0.1027441,0.03751 q 0.1410694,0.05137 0.1981494,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.091328,0.194887 -0.090513,0.07584 -0.290293,0.07584 -0.1745019,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1574" />
+              <path
+                 d="m 9.5136181,40.773279 q -0.1957031,0 -0.313125,-0.136176 -0.1174219,-0.136993 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207934 -0.1174219,0.344927 -0.1174218,0.136176 -0.3123095,0.136176 z m 0,-0.126391 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1576" />
+              <path
+                 d="m 10.139868,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1578" />
+            </g>
+            <g
+               aria-label="kubeadm-join.service"
+               id="text178"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 17.201163,40.748001 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1581" />
+              <path
+                 d="m 18.91112,39.837166 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.151669 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152486,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1583" />
+              <path
+                 d="m 19.303341,40.041839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.05789 0.178579,-0.05789 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161456,0.196518 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1585" />
+              <path
+                 d="m 20.921969,40.687659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 20.316105,40.20411 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1587" />
+              <path
+                 d="m 21.764308,40.543328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1589" />
+              <path
+                 d="m 22.775441,40.543328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1591" />
+              <path
+                 d="m 23.099982,40.748001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106005,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1593" />
+              <path
+                 d="m 24.228537,40.298699 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1595" />
+              <path
+                 d="m 25.185036,41.105159 v -0.141884 q 0.127207,0.03751 0.214458,0.03751 0.07583,0 0.128837,-0.02691 0.053,-0.02609 0.08236,-0.08888 0.03017,-0.06279 0.03017,-0.218535 v -0.7029 h -0.386514 v -0.126392 h 0.538184 v 0.800752 q 0,0.231582 -0.05463,0.321279 -0.05463,0.09051 -0.1321,0.129654 -0.07747,0.03914 -0.212011,0.03914 -0.09704,0 -0.20875,-0.02283 z m 0.430546,-1.596611 q 0,-0.05137 0.03425,-0.07665 0.03506,-0.02528 0.06687,-0.02528 0.0318,0 0.06605,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03425,0.02528 -0.06605,0.02528 -0.0318,0 -0.06687,-0.02528 -0.03425,-0.02528 -0.03425,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1597" />
+              <path
+                 d="m 26.547618,40.773279 q -0.195703,0 -0.313125,-0.136176 -0.117421,-0.136993 -0.117421,-0.344927 0,-0.207935 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1599" />
+              <path
+                 d="m 27.429098,40.748001 v -0.784443 h -0.252783 v -0.126392 h 0.404453 v 0.784444 h 0.253598 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1601" />
+              <path
+                 d="m 28.175216,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1603" />
+              <path
+                 d="m 29.550847,40.786326 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1605" />
+              <path
+                 d="m 30.188513,40.699891 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08643,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1607" />
+              <path
+                 d="m 31.936794,40.687659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 H 31.32196 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 31.330929,40.20411 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1609" />
+              <path
+                 d="m 32.258073,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 H 32.795441 V 39.95785 q -0.03832,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1611" />
+              <path
+                 d="m 33.477956,40.748001 -0.395484,-0.910835 h 0.166348 l 0.312309,0.72084 0.318833,-0.72084 h 0.15167 l -0.398745,0.910835 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1613" />
+              <path
+                 d="m 34.438533,40.748001 v -0.784443 h -0.252784 v -0.126392 h 0.404453 v 0.784444 h 0.253599 v 0.126391 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1615" />
+              <path
+                 d="m 35.951154,40.721907 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1617" />
+              <path
+                 d="m 36.943532,40.687659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 36.337668,40.20411 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1619" />
+            </g>
+            <g
+               aria-label="network.sh"
+               id="text180"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 39.204391,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1622" />
+              <path
+                 d="m 40.963273,40.687659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 40.357408,40.20411 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1624" />
+              <path
+                 d="m 41.968697,40.711307 q -0.106821,0.04485 -0.154931,0.053 -0.04811,0.009 -0.09296,0.009 -0.09541,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.151669 v 0.366943 h 0.405269 v 0.126392 H 41.53815 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.103559,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1626" />
+              <path
+                 d="m 42.246759,40.748001 -0.148408,-0.910835 h 0.141069 l 0.08644,0.554492 0.02283,0.128838 0.02202,-0.128838 0.145147,-0.554492 h 0.136177 l 0.163901,0.554492 0.02854,0.128838 0.01876,-0.128838 0.08725,-0.554492 h 0.116606 l -0.147593,0.910835 h -0.141884 l -0.174502,-0.586294 -0.02772,-0.128838 h -0.0041 l -0.02528,0.128023 -0.15167,0.587109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1628" />
+              <path
+                 d="m 43.584879,40.773279 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117421,0.136176 0.117421,0.344111 0,0.207934 -0.117421,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1630" />
+              <path
+                 d="m 44.288595,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167979 0.09214,-0.05626 0.204673,-0.05626 0.08236,0 0.164717,0.02528 v 0.328618 H 44.825963 V 39.95785 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06687 -0.08154,0.06686 -0.159008,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1632" />
+              <path
+                 d="m 45.253248,40.748001 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1634" />
+              <path
+                 d="m 46.588107,40.786326 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1636" />
+              <path
+                 d="m 47.225773,40.699891 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172872,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1638" />
+              <path
+                 d="m 48.21652,40.748001 v -1.316103 h 0.151669 v 0.604233 q 0.06524,-0.10519 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.07747,0 0.14107,0.03996 0.06442,0.03914 0.0897,0.0954 0.02039,0.04322 0.02772,0.09214 0.0073,0.04811 0.0073,0.19978 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1640" />
+            </g>
+            <g
+               aria-label="sysctl.conf"
+               id="text182"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 51.238993,40.699891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1643" />
+              <path
+                 d="M 52.564882,40.711307 52.14412,39.837166 h 0.167163 l 0.335142,0.68333 0.280508,-0.68333 h 0.152485 l -0.353081,0.846416 q -0.111714,0.268277 -0.212827,0.356343 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123945,-0.01223 v -0.133731 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101114 0.04729,-0.07257 0.06686,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1645" />
+              <path
+                 d="m 53.241689,40.699891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1647" />
+              <path
+                 d="m 54.99894,40.721907 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1649" />
+              <path
+                 d="m 55.995395,40.711307 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1651" />
+              <path
+                 d="m 56.47976,40.748001 v -1.188896 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1653" />
+              <path
+                 d="m 57.610761,40.786326 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1655" />
+              <path
+                 d="m 59.00433,40.721907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135362,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159008,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07746,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177763,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1657" />
+              <path
+                 d="m 59.614272,40.773279 q -0.195703,0 -0.313125,-0.136176 -0.117422,-0.136993 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207934 -0.117422,0.344927 -0.117422,0.136176 -0.312309,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1659" />
+              <path
+                 d="m 60.240522,40.748001 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.10519 0.157377,-0.164717 0.09214,-0.05953 0.184288,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111713 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07583 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1661" />
+              <path
+                 d="m 61.453881,40.748001 v -0.708608 h -0.202227 v -0.126392 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08643 0.125577,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106005,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126392 h -0.361235 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1663" />
+            </g>
+            <g
+               aria-label="group"
+               id="text184"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.73470213,42.714326 q -0.0693115,0.11416 -0.16716308,0.172056 -0.0970361,0.0579 -0.1785791,0.0579 -0.11416015,0 -0.20548828,-0.09867 -0.09051269,-0.09867 -0.09051269,-0.299263 0,-0.158193 0.0603418,-0.282138 0.0603418,-0.124761 0.16145507,-0.196519 0.10111328,-0.07257 0.25033691,-0.07257 0.0432178,0 0.13046875,0.009 0.0130469,0.0016 0.0391406,0.0041 h 0.15248535 v 0.644189 q 0,0.229951 -0.006523,0.280508 -0.005708,0.05137 -0.0195703,0.10356 -0.0326172,0.121499 -0.14922363,0.191626 -0.11579101,0.07013 -0.28050781,0.07013 -0.16553222,0 -0.33514159,-0.08481 v -0.153301 q 0.06441894,0.04403 0.15819336,0.07747 0.0945898,0.03425 0.18265624,0.03425 0.0693115,0 0.13128418,-0.02202 0.0619726,-0.02202 0.10029785,-0.0636 0.0383252,-0.04159 0.0521875,-0.09704 0.0138623,-0.05463 0.0138623,-0.145962 z m 0,-0.18021 v -0.390591 q -0.0807275,-0.0212 -0.15003906,-0.0212 -0.1402539,0 -0.23402831,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.0505566,0.204672 0.0513721,0.0685 0.11660645,0.0685 0.0709424,0 0.15656249,-0.07176 0.0856201,-0.07176 0.15330078,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1666" />
+              <path
+                 d="M 1.2052051,42.918999 V 42.008164 H 1.356875 v 0.198965 q 0.070942,-0.11253 0.1622705,-0.167979 0.092144,-0.05626 0.2046728,-0.05626 0.082358,0 0.1647168,0.02528 v 0.328618 H 1.7425732 v -0.207935 q -0.038325,-0.0065 -0.060342,-0.0065 -0.084805,0 -0.1663476,0.06686 -0.081543,0.06686 -0.1590088,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1668" />
+              <path
+                 d="m 2.5041846,42.944277 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344926 0,-0.207935 0.1174219,-0.344112 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136177 0.1174219,0.344112 0,0.207934 -0.1174219,0.344926 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1670" />
+              <path
+                 d="m 3.8798146,42.008164 v 0.910835 h -0.15167 v -0.199781 q -0.073389,0.11253 -0.1630859,0.168794 -0.089697,0.05626 -0.1793945,0.05626 -0.079912,0 -0.1467774,-0.0424 -0.06605,-0.04322 -0.092144,-0.11253 -0.026094,-0.07013 -0.026094,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.012231,0.173686 0.013047,0.04159 0.046479,0.0685 0.034248,0.02691 0.073389,0.02691 0.079912,0 0.1712402,-0.07502 0.092144,-0.07583 0.1524853,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1672" />
+              <path
+                 d="m 4.2720361,42.212837 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141602,0 0.2054883,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123946 -0.1614551,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304687,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 v 0.353896 H 4.1203662 v -1.264731 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.15167,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166065,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1674" />
+            </g>
+            <g
+               aria-label="ltsp.conf"
+               id="text186"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 17.405021,42.918999 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1677" />
+              <path
+                 d="m 18.923351,42.882304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 42.21039 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1679" />
+              <path
+                 d="m 19.173688,42.870888 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102745,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1681" />
+              <path
+                 d="m 20.304689,42.212837 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1683" />
+              <path
+                 d="m 21.540065,42.957324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1685" />
+              <path
+                 d="m 22.933634,42.892905 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1687" />
+              <path
+                 d="m 23.543576,42.944277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117421,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1689" />
+              <path
+                 d="m 24.169826,42.918999 v -0.910835 h 0.15167 v 0.198965 q 0.06523,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146777,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172056,0.07583 -0.09133,0.07584 -0.150854,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1691" />
+              <path
+                 d="M 25.383185,42.918999 V 42.21039 h -0.202227 v -0.126391 h 0.202227 v -0.0424 q 0,-0.18021 0.04077,-0.266645 0.04077,-0.08644 0.125577,-0.141885 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126391 h -0.361235 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1693" />
+            </g>
+            <g
+               aria-label="passwd"
+               id="text188"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 39.344645,42.212837 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1696" />
+              <path
+                 d="m 40.804264,42.714326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1698" />
+              <path
+                 d="m 41.217687,42.870888 v -0.160639 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172872,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1700" />
+              <path
+                 d="m 42.219034,42.870888 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174501,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1702" />
+              <path
+                 d="m 43.248107,42.918999 -0.148409,-0.910835 h 0.14107 l 0.08643,0.554492 0.02283,0.128838 0.02202,-0.128838 0.145146,-0.554492 h 0.136177 l 0.163901,0.554492 0.02854,0.128838 0.01875,-0.128838 0.08725,-0.554492 h 0.116607 l -0.147593,0.910835 h -0.141885 l -0.174502,-0.586294 -0.02772,-0.128838 h -0.0041 l -0.02528,0.128022 -0.15167,0.58711 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1704" />
+              <path
+                 d="m 44.819439,42.714326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405269 h 0.152486 v 1.316104 h -0.152486 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1706" />
+            </g>
+            <g
+               id="use190"
+               transform="translate(0,43.419998)">
+              <g
+                 id="text546"
+                 class="c"
+                 style="white-space:pre;fill:#b9c0cb" />
+            </g>
+            <g
+               id="use192"
+               transform="translate(0,45.591)">
+              <g
+                 id="text550"
+                 class="c"
+                 style="white-space:pre;fill:#b9c0cb" />
+            </g>
+            <g
+               aria-label="root@m1c29:~#"
+               id="text194"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.20385742,49.431999 v -0.910835 h 0.15166991 v 0.198965 q 0.0709424,-0.112529 0.16227051,-0.167978 0.0921436,-0.05627 0.20467284,-0.05627 0.0823584,0 0.1647168,0.02528 v 0.328618 H 0.74122557 v -0.207934 q -0.0383252,-0.0065 -0.0603418,-0.0065 -0.0848047,0 -0.16634765,0.06687 -0.081543,0.06686 -0.15900879,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1711" />
+              <path
+                 d="m 1.5028369,49.457278 q -0.1957031,0 -0.313125,-0.136177 Q 1.07229,49.184109 1.07229,48.976174 q 0,-0.207935 0.1174219,-0.344111 0.1174219,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123096,0.136177 0.1174218,0.136176 0.1174218,0.344111 0,0.207935 -0.1174218,0.344927 -0.1174219,0.136177 -0.3123096,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223144,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1713" />
+              <path
+                 d="m 2.5041846,49.457278 q -0.1957032,0 -0.313125,-0.136177 -0.1174219,-0.136992 -0.1174219,-0.344927 0,-0.207935 0.1174219,-0.344111 0.1174218,-0.136177 0.313125,-0.136177 0.1948877,0 0.3123095,0.136177 0.1174219,0.136176 0.1174219,0.344111 0,0.207935 -0.1174219,0.344927 -0.1174218,0.136177 -0.3123095,0.136177 z m 0,-0.126392 q 0.121499,0 0.1932568,-0.09459 0.071758,-0.09459 0.071758,-0.260122 0,-0.164717 -0.071758,-0.259307 -0.071758,-0.09459 -0.1932568,-0.09459 -0.1223145,0 -0.1940723,0.09459 -0.071758,0.09459 -0.071758,0.259307 0,0.165532 0.071758,0.260122 0.071758,0.09459 0.1940723,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1715" />
+              <path
+                 d="m 3.892046,49.395305 q -0.1068213,0.04485 -0.1549316,0.053 -0.04811,0.009 -0.092959,0.009 -0.095405,0 -0.174502,-0.0367 -0.079097,-0.03669 -0.1198681,-0.108452 -0.039956,-0.07176 -0.039956,-0.221797 V 48.723391 H 3.0823244 v -0.126392 h 0.2275048 v -0.366943 h 0.1516699 v 0.366943 h 0.4052686 v 0.126392 H 3.4614991 v 0.364497 q 0,0.110083 0.026094,0.155747 0.026094,0.04485 0.069311,0.06605 0.044033,0.0212 0.1035596,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1717" />
+              <path
+                 d="m 4.7564014,49.268913 v 0.128023 q -0.068496,0.04485 -0.1214991,0.05871 -0.053003,0.01468 -0.1141601,0.01468 -0.1696094,0 -0.2780615,-0.08236 -0.1076367,-0.08317 -0.1720557,-0.230767 -0.063604,-0.148408 -0.063604,-0.36205 0,-0.296817 0.1361768,-0.481104 0.1361767,-0.185102 0.3677587,-0.185102 0.2291358,0 0.3620508,0.163086 0.1337305,0.163085 0.1337305,0.428916 0,0.117421 -0.034248,0.193256 -0.034248,0.07502 -0.090513,0.119869 -0.056265,0.04403 -0.1361767,0.04403 -0.061973,0 -0.1011133,-0.02691 -0.039141,-0.02773 -0.058711,-0.126392 -0.022832,0.053 -0.070127,0.10356 -0.047295,0.04974 -0.1280224,0.04974 -0.083989,0 -0.1394385,-0.07583 -0.054634,-0.07665 -0.054634,-0.187549 0,-0.136177 0.078281,-0.252783 0.079097,-0.116607 0.284585,-0.116607 h 0.1557471 v 0.357159 q 0,0.07094 0.00489,0.101113 0.00571,0.02935 0.022017,0.04485 0.017124,0.01549 0.036694,0.01549 0.031802,0 0.063603,-0.03017 0.032617,-0.03099 0.048926,-0.08644 0.017124,-0.05626 0.017124,-0.121499 0,-0.136177 -0.049741,-0.264199 -0.049741,-0.128838 -0.1475928,-0.183472 -0.097851,-0.05463 -0.2046728,-0.05463 -0.1133448,0 -0.1997803,0.0685 -0.08562,0.06768 -0.1410693,0.203857 -0.054634,0.136177 -0.054634,0.300893 0,0.165533 0.054634,0.306602 0.054634,0.141069 0.1475927,0.206304 0.092959,0.06523 0.2071192,0.06523 0.1296533,0 0.2389209,-0.106006 z M 4.5859766,48.772317 v -0.219351 h -0.029356 q -0.096221,0 -0.138623,0.03017 -0.042402,0.03017 -0.066865,0.09459 -0.024463,0.06442 -0.024463,0.141885 0,0.06279 0.01957,0.09704 0.01957,0.03425 0.053818,0.03425 0.04811,0 0.097852,-0.05545 0.050557,-0.05626 0.088066,-0.123129 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1719" />
+              <path
+                 d="m 5.0646337,49.431999 v -0.910835 h 0.132915 v 0.20875 q 0.062788,-0.132915 0.1166065,-0.183471 0.054634,-0.05056 0.110083,-0.05056 0.06605,0 0.1060058,0.05219 0.040771,0.05137 0.040771,0.146778 v 0.04893 q 0.026909,-0.08317 0.064419,-0.134546 0.038325,-0.05219 0.079097,-0.08236 0.040771,-0.03099 0.093774,-0.03099 0.058711,0 0.1002979,0.04974 0.041587,0.04974 0.041587,0.19815 v 0.688222 h -0.132915 v -0.622173 q 0,-0.07665 -0.00489,-0.104375 -0.00489,-0.02854 -0.01957,-0.04322 -0.014678,-0.01468 -0.031802,-0.01468 -0.042402,0 -0.091328,0.06523 -0.04811,0.06442 -0.098667,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.023648,-0.141885 -0.023647,-0.0212 -0.042402,-0.0212 -0.041587,0 -0.089697,0.07257 -0.047295,0.07257 -0.090513,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1721" />
+              <path
+                 d="m 6.4712503,49.305608 v -0.976885 q -0.068496,0.05463 -0.1329151,0.09296 -0.064419,0.03833 -0.1769482,0.07828 v -0.136992 q 0.1785791,-0.07584 0.3098633,-0.196519 h 0.1516699 v 1.139156 h 0.3041552 v 0.126391 H 6.161387 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1723" />
+              <path
+                 d="m 7.9023292,49.405905 q -0.1524853,0.05137 -0.2902929,0.05137 -0.1369922,0 -0.2438135,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136992 0.3261719,-0.136992 0.1410693,0 0.2984472,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133447,0.128023 -0.039956,0.08725 -0.039956,0.179394 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097852,-0.0065 0.04811,-0.0073 0.1777636,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1725" />
+              <path
+                 d="M 8.8979688,49.431999 H 8.1322803 v -0.139438 q 0,-0.05382 0.022017,-0.114976 0.022017,-0.06197 0.083989,-0.138623 0.061973,-0.07665 0.1312841,-0.147593 l 0.086436,-0.08807 q 0.026094,-0.02691 0.1141601,-0.124761 0.088066,-0.09785 0.1157911,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.065234,-0.125576 -0.065234,-0.04485 -0.1467773,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.1002979,0.02528 -0.043218,0.01386 -0.1402539,0.0579 v -0.134546 q 0.1027442,-0.04893 0.2054883,-0.06687 0.1035596,-0.01875 0.1704248,-0.01875 0.098667,0 0.1810254,0.03262 0.083174,0.0318 0.1231299,0.09948 0.040771,0.06768 0.040771,0.144331 0,0.08562 -0.052187,0.175318 -0.051372,0.0897 -0.1948877,0.230766 l -0.092959,0.09214 -0.078281,0.07665 q -0.074204,0.07502 -0.1198681,0.145147 -0.045664,0.07013 -0.050557,0.167163 h 0.6083106 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1727" />
+              <path
+                 d="m 9.775371,48.760085 q -0.058711,0.08725 -0.1459619,0.1427 -0.086436,0.05463 -0.1908106,0.05463 -0.098667,0 -0.1875488,-0.04729 -0.088066,-0.04811 -0.1345459,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.1149756,-0.31231 0.115791,-0.13373 0.3041553,-0.13373 0.2217969,0 0.3310644,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.1394384,0.500674 -0.1394385,0.183471 -0.377544,0.183471 -0.1280224,0 -0.248706,-0.03833 v -0.152485 q 0.1353613,0.0636 0.2552295,0.0636 0.1696093,0 0.2625683,-0.155747 0.092959,-0.155747 0.092959,-0.394668 z M 9.4777392,48.255334 q -0.061157,0 -0.1231299,0.0367 -0.061973,0.03588 -0.097852,0.110898 -0.035063,0.07502 -0.035063,0.164717 0,0.114975 0.059526,0.189179 0.060342,0.07421 0.1712402,0.07421 0.1149756,0 0.1883643,-0.08562 0.074204,-0.08644 0.074204,-0.20875 0,-0.123945 -0.072573,-0.202226 -0.071758,-0.0791 -0.1647168,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1729" />
+              <path
+                 d="m 10.51415,49.470324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09378 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09378 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1731" />
+              <path
+                 d="m 11.060488,49.103381 v -0.01468 q 0,-0.106821 0.06279,-0.185102 0.0636,-0.0791 0.170425,-0.0791 0.02691,0 0.05219,0.0057 0.02609,0.0049 0.05871,0.01794 0.03262,0.01223 0.09785,0.04893 l 0.09867,0.05463 q 0.09051,0.04974 0.147593,0.04974 0.06034,0 0.08888,-0.04322 0.02936,-0.04403 0.02936,-0.09541 v -0.01305 h 0.104375 v 0.01305 q 0,0.136177 -0.07747,0.201411 -0.07665,0.06442 -0.163086,0.06442 -0.08073,0 -0.213642,-0.07583 l -0.08317,-0.04811 q -0.09459,-0.05382 -0.152486,-0.05382 -0.03262,0 -0.06116,0.01712 -0.02772,0.01712 -0.04485,0.05463 -0.01712,0.03751 -0.01712,0.06605 v 0.01468 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1733" />
+              <path
+                 d="m 12.074068,49.090334 v -0.11416 h 0.159824 l 0.0897,-0.335142 h -0.249521 v -0.113344 h 0.278061 l 0.09541,-0.361236 h 0.119052 l -0.0954,0.361236 h 0.230767 l 0.09948,-0.361236 h 0.119053 l -0.09785,0.361236 h 0.136993 v 0.113344 h -0.168794 l -0.08888,0.335142 h 0.257676 v 0.11416 h -0.289478 l -0.09296,0.341665 h -0.120684 l 0.09459,-0.341665 h -0.227505 l -0.0897,0.341665 h -0.120683 l 0.09051,-0.341665 z m 0.279692,-0.11416 h 0.228321 l 0.09214,-0.335142 h -0.233213 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1735" />
+            </g>
+            <g
+               aria-label="docker"
+               id="text196"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 14.762702,49.227326 q -0.06931,0.114161 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1738" />
+              <path
+                 d="m 15.530837,49.457278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1740" />
+              <path
+                 d="m 16.923591,49.405905 q -0.152486,0.05137 -0.290293,0.05137 -0.136992,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326171,-0.136992 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113344,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1742" />
+              <path
+                 d="m 17.199206,49.431999 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1744" />
+              <path
+                 d="m 18.917316,49.371657 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1746" />
+              <path
+                 d="m 19.238595,49.431999 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1748" />
+            </g>
+            <g
+               aria-label="ps"
+               id="text198"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 21.308645,48.725837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204672 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1751" />
+              <path
+                 d="m 22.18034,49.383889 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172872,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1753" />
+            </g>
+            <g
+               aria-label="CONTAINER"
+               id="text200"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.88718748,51.588323 q -0.14188476,0.053 -0.25441406,0.053 -0.1484082,0 -0.27316894,-0.0791 Q 0.23484374,51.482317 0.16553222,51.325755 0.0962207,51.168377 0.0962207,50.970227 q 0,-0.196518 0.06849609,-0.353081 0.0684961,-0.156562 0.19325683,-0.23729 0.12476074,-0.08073 0.2747998,-0.08073 0.1125293,0 0.25441406,0.053 v 0.150039 q -0.13128418,-0.07583 -0.2609375,-0.07583 -0.0978516,0 -0.17939452,0.06686 -0.0807275,0.06686 -0.13046875,0.196518 -0.0497412,0.128838 -0.0497412,0.280508 0,0.154116 0.0513721,0.284585 0.0513721,0.130469 0.13128418,0.195703 0.0799121,0.06442 0.17694823,0.06442 0.12883789,0 0.2609375,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1756" />
+              <path
+                 d="m 1.5020215,51.641326 q -0.2152735,0 -0.3294336,-0.181026 -0.1133447,-0.18184 -0.1133447,-0.490073 0,-0.307417 0.1133447,-0.488442 0.1141601,-0.181841 0.3294336,-0.181841 0.2160888,0 0.3294336,0.181841 0.1133447,0.181025 0.1133447,0.488442 0,0.308233 -0.1133447,0.490073 -0.1133448,0.181026 -0.3294336,0.181026 z m 0,-0.127207 q 0.1190527,0 0.1981494,-0.134546 0.079912,-0.135361 0.079912,-0.409346 0,-0.273984 -0.079912,-0.40853 -0.079097,-0.135361 -0.1981494,-0.135361 -0.1190528,0 -0.1989649,0.135361 -0.079097,0.134546 -0.079097,0.40853 0,0.273985 0.079097,0.409346 0.079912,0.134546 0.1989649,0.134546 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1758" />
+              <path
+                 d="M 2.2571094,51.603001 H 2.1054395 v -1.265547 h 0.1484082 l 0.4476708,0.842339 0.048926,0.125576 h 0.00408 l -0.00408,-0.125576 v -0.842339 h 0.1516699 v 1.265547 H 2.7504443 l -0.4354394,-0.828477 -0.061157,-0.132915 0.00326,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1760" />
+              <path
+                 d="M 3.4223585,51.603001 V 50.476892 H 3.0431837 v -0.139438 h 0.9238818 v 0.139438 H 3.5870753 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1762" />
+              <path
+                 d="M 4.1904932,51.603001 H 4.0322998 L 4.4220752,50.337454 H 4.5892383 L 4.98146,51.603001 H 4.8077734 L 4.7213379,51.324939 H 4.2761133 Z m 0.1247607,-0.404453 h 0.3693897 l -0.1524854,-0.480289 -0.035879,-0.127207 -0.031802,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1764" />
+              <path
+                 d="M 5.1469921,51.603001 V 51.476609 H 5.4250536 V 50.464661 H 5.1469921 v -0.127207 h 0.7208398 v 0.127207 H 5.5897704 v 1.011948 h 0.2780615 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1766" />
+              <path
+                 d="m 6.2625003,51.603001 h -0.15167 v -1.265547 h 0.1484082 l 0.4476709,0.842339 0.048926,0.125576 h 0.00408 l -0.00408,-0.125576 v -0.842339 h 0.1516699 v 1.265547 H 6.7558352 l -0.4354394,-0.828477 -0.061157,-0.132915 0.00326,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1768" />
+              <path
+                 d="m 7.858296,51.463562 v 0.139439 h -0.68333 v -1.265547 h 0.6702832 v 0.127207 H 7.3396828 v 0.429731 h 0.4550097 v 0.126392 H 7.3396828 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1770" />
+              <path
+                 d="m 8.2969971,51.065632 v 0.537369 H 8.1322803 v -1.265547 h 0.3384033 q 0.1655322,0 0.2438135,0.03425 0.078281,0.03343 0.1206836,0.101929 0.043218,0.0685 0.043218,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.079097,0.132915 -0.049741,0.0579 -0.144331,0.110083 l 0.3661279,0.591187 H 8.7968555 L 8.4617139,51.065632 Z m 0,-0.127207 h 0.2307666 q 0.077466,-0.0424 0.1149756,-0.08644 0.038325,-0.04403 0.057895,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.065234,-0.141069 -0.064419,-0.053 -0.2348437,-0.053 H 8.2969971 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1772" />
+            </g>
+            <g
+               aria-label="ID"
+               id="text202"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 10.160254,51.603001 v -0.126392 h 0.278062 v -1.011948 h -0.278062 v -0.127207 h 0.72084 v 0.127207 h -0.278061 v 1.011948 h 0.278061 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1775" />
+              <path
+                 d="m 11.14774,51.603001 v -1.265547 h 0.300078 q 0.207119,0 0.307417,0.07257 0.101113,0.07176 0.15167,0.21772 0.05056,0.145962 0.05056,0.345742 0,0.18918 -0.05382,0.332695 -0.053,0.1427 -0.150854,0.220166 -0.09785,0.07665 -0.304971,0.07665 z m 0.164717,-0.139439 h 0.110083 q 0.167163,0 0.238105,-0.05953 0.07176,-0.05953 0.101929,-0.164717 0.03099,-0.106006 0.03099,-0.291924 0,-0.181841 -0.03588,-0.279692 -0.03588,-0.09785 -0.102744,-0.150039 -0.06686,-0.053 -0.219351,-0.053 h -0.123129 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1777" />
+            </g>
+            <g
+               aria-label="IMAGE"
+               id="text204"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 20.180255,51.603001 v -0.126392 h 0.278061 v -1.011948 h -0.278061 v -0.127207 h 0.72084 v 0.127207 h -0.278062 v 1.011948 h 0.278062 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1780" />
+              <path
+                 d="m 21.219928,51.603001 h -0.132915 v -1.265547 h 0.165532 l 0.291924,0.833369 0.291924,-0.833369 h 0.161455 v 1.265547 h -0.15167 v -0.80646 l 0.0041,-0.110899 h -0.0041 l -0.03588,0.110899 -0.195703,0.553676 h -0.164717 l -0.19815,-0.553676 -0.0318,-0.110899 h -0.0041 l 0.0041,0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1782" />
+              <path
+                 d="m 22.227799,51.603001 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08644,-0.278062 h -0.445224 z m 0.124761,-0.404453 h 0.369389 l -0.152485,-0.480289 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1784" />
+              <path
+                 d="m 23.931231,51.602185 q -0.13373,0.03914 -0.245444,0.03914 -0.158193,0 -0.282138,-0.07828 -0.12313,-0.07828 -0.193257,-0.23566 -0.07013,-0.158193 -0.07013,-0.357158 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.12476,-0.08073 0.273984,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260937,-0.07583 -0.09785,0 -0.179395,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04893,0.128838 -0.04893,0.282139 0,0.205488 0.09377,0.374282 0.09377,0.168794 0.296001,0.168794 0.02609,0 0.06605,-0.0041 v -0.407715 h -0.126392 v -0.126391 h 0.291108 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1786" />
+              <path
+                 d="m 24.894254,51.463562 v 0.139439 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505566 v 0.429731 h 0.455009 v 0.126392 h -0.455009 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1788" />
+            </g>
+            <g
+               aria-label="COMMAND"
+               id="text206"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 44.975189,51.588323 q -0.141885,0.053 -0.254414,0.053 -0.148409,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194073,-0.236474 -0.06931,-0.157378 -0.06931,-0.355528 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260938,-0.07583 -0.09785,0 -0.179394,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130469 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1791" />
+              <path
+                 d="m 45.590023,51.641326 q -0.215274,0 -0.329434,-0.181026 -0.113345,-0.18184 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488442 0.11416,-0.181841 0.329434,-0.181841 0.216089,0 0.329433,0.181841 0.113345,0.181025 0.113345,0.488442 0,0.308233 -0.113345,0.490073 -0.113344,0.181026 -0.329433,0.181026 z m 0,-0.127207 q 0.119052,0 0.198149,-0.134546 0.07991,-0.135361 0.07991,-0.409346 0,-0.273984 -0.07991,-0.40853 -0.0791,-0.135361 -0.198149,-0.135361 -0.119053,0 -0.198965,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.07991,0.134546 0.198965,0.134546 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1793" />
+              <path
+                 d="m 46.269276,51.603001 h -0.132915 v -1.265547 h 0.165532 l 0.291924,0.833369 0.291923,-0.833369 h 0.161456 v 1.265547 h -0.15167 v -0.80646 l 0.0041,-0.110899 h -0.0041 l -0.03588,0.110899 -0.195703,0.553676 h -0.164717 l -0.19815,-0.553676 -0.0318,-0.110899 h -0.0041 l 0.0041,0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1795" />
+              <path
+                 d="m 47.270623,51.603001 h -0.132915 v -1.265547 h 0.165533 l 0.291923,0.833369 0.291924,-0.833369 h 0.161455 v 1.265547 h -0.15167 v -0.80646 l 0.0041,-0.110899 h -0.0041 l -0.03588,0.110899 -0.195704,0.553676 h -0.164716 l -0.19815,-0.553676 -0.0318,-0.110899 h -0.0041 l 0.0041,0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1797" />
+              <path
+                 d="m 48.278494,51.603001 h -0.158193 l 0.389775,-1.265547 h 0.167164 l 0.392221,1.265547 h -0.173686 l -0.08644,-0.278062 h -0.445224 z m 0.124761,-0.404453 h 0.36939 l -0.152486,-0.480289 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1799" />
+              <path
+                 d="m 49.349153,51.603001 h -0.151669 v -1.265547 h 0.148408 l 0.447671,0.842339 0.04893,0.125576 h 0.0041 l -0.0041,-0.125576 v -0.842339 h 0.15167 v 1.265547 h -0.15167 l -0.435439,-0.828477 -0.06116,-0.132915 0.0033,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1801" />
+              <path
+                 d="m 50.222479,51.603001 v -1.265547 h 0.300078 q 0.207119,0 0.307417,0.07257 0.101113,0.07176 0.15167,0.21772 0.05056,0.145962 0.05056,0.345742 0,0.18918 -0.05382,0.332695 -0.053,0.1427 -0.150854,0.220166 -0.09785,0.07665 -0.304971,0.07665 z m 0.164717,-0.139439 h 0.110083 q 0.167163,0 0.238105,-0.05953 0.07176,-0.05953 0.101929,-0.164717 0.03099,-0.106006 0.03099,-0.291924 0,-0.181841 -0.03588,-0.279692 -0.03588,-0.09785 -0.102744,-0.150039 -0.06686,-0.053 -0.21935,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1803" />
+            </g>
+            <g
+               aria-label="CREATED"
+               id="text208"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 70.025188,51.588323 q -0.141885,0.053 -0.254414,0.053 -0.148408,0 -0.273169,-0.0791 -0.124761,-0.07991 -0.194072,-0.236474 -0.06931,-0.157378 -0.06931,-0.355528 0,-0.196518 0.0685,-0.353081 0.0685,-0.156562 0.193257,-0.23729 0.124761,-0.08073 0.2748,-0.08073 0.112529,0 0.254414,0.053 v 0.150039 q -0.131284,-0.07583 -0.260938,-0.07583 -0.09785,0 -0.179394,0.06686 -0.08073,0.06686 -0.130469,0.196518 -0.04974,0.128838 -0.04974,0.280508 0,0.154116 0.05137,0.284585 0.05137,0.130469 0.131284,0.195703 0.07991,0.06442 0.176948,0.06442 0.128838,0 0.260938,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1806" />
+              <path
+                 d="m 70.425564,51.065632 v 0.537369 h -0.164717 v -1.265547 h 0.338403 q 0.165533,0 0.243814,0.03425 0.07828,0.03343 0.120684,0.101929 0.04322,0.0685 0.04322,0.147592 0,0.07339 -0.02854,0.147593 -0.02854,0.0742 -0.0791,0.132915 -0.04974,0.0579 -0.144331,0.110083 l 0.366127,0.591187 h -0.195703 l -0.335141,-0.537369 z m 0,-0.127207 h 0.230767 q 0.07747,-0.0424 0.114975,-0.08644 0.03833,-0.04403 0.0579,-0.09377 0.01957,-0.04974 0.01957,-0.09948 0,-0.08888 -0.06523,-0.141069 -0.06442,-0.053 -0.234844,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1808" />
+              <path
+                 d="m 71.989558,51.463562 v 0.139439 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505566 v 0.429731 h 0.45501 v 0.126392 h -0.45501 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1810" />
+              <path
+                 d="m 72.327146,51.603001 h -0.158193 l 0.389775,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08644,-0.278062 h -0.445225 z m 0.124761,-0.404453 h 0.36939 l -0.152486,-0.480289 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1812" />
+              <path
+                 d="m 73.561707,51.603001 v -1.126109 h -0.379175 v -0.139438 h 0.923882 v 0.139438 h -0.379991 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1814" />
+              <path
+                 d="m 74.993601,51.463562 v 0.139439 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505566 v 0.429731 h 0.455009 v 0.126392 h -0.455009 v 0.442778 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1816" />
+              <path
+                 d="m 75.272478,51.603001 v -1.265547 h 0.300078 q 0.20712,0 0.307417,0.07257 0.101114,0.07176 0.15167,0.21772 0.05056,0.145962 0.05056,0.345742 0,0.18918 -0.05382,0.332695 -0.053,0.1427 -0.150855,0.220166 -0.09785,0.07665 -0.304971,0.07665 z m 0.164717,-0.139439 h 0.110083 q 0.167163,0 0.238106,-0.05953 0.07176,-0.05953 0.101928,-0.164717 0.03099,-0.106006 0.03099,-0.291924 0,-0.181841 -0.03588,-0.279692 -0.03588,-0.09785 -0.102744,-0.150039 -0.06687,-0.053 -0.219351,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1818" />
+            </g>
+            <g
+               aria-label="STATUS"
+               id="text210"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 90.308023,51.576091 V 51.42116 q 0.195703,0.09296 0.355527,0.09296 0.06686,0 0.128023,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.123129 -0.04322,-0.0579 -0.16227,-0.127208 l -0.08317,-0.04811 -0.08399,-0.04811 Q 90.32107,50.83242 90.32107,50.637532 q 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135361,0 0.261753,0.03914 v 0.141069 q -0.139439,-0.05382 -0.271538,-0.05382 -0.105191,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06687,0.03914 q 0.207934,0.127207 0.207934,0.319649 0,0.146777 -0.106821,0.251967 -0.106821,0.105191 -0.342481,0.105191 -0.07502,0 -0.143515,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1821" />
+              <path
+                 d="m 91.599663,51.603001 v -1.126109 h -0.379174 v -0.139438 h 0.923881 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1823" />
+              <path
+                 d="m 92.367798,51.603001 h -0.158193 l 0.389775,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08643,-0.278062 h -0.445225 z m 0.124761,-0.404453 h 0.36939 l -0.152486,-0.480289 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1825" />
+              <path
+                 d="m 93.602359,51.603001 v -1.126109 h -0.379175 v -0.139438 h 0.923882 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1827" />
+              <path
+                 d="m 94.288135,50.337454 h 0.164717 v 0.830923 q 0,0.163901 0.02691,0.224243 0.02773,0.05953 0.08399,0.09133 0.05708,0.03099 0.126392,0.03099 0.07339,0 0.130469,-0.03343 0.0579,-0.03425 0.0848,-0.106006 0.02772,-0.07257 0.02772,-0.271538 v -0.766504 h 0.15167 v 0.82603 q 0,0.176948 -0.053,0.277246 -0.05219,0.09948 -0.136992,0.150039 -0.0848,0.05056 -0.213643,0.05056 -0.119053,0 -0.209565,-0.04403 -0.09051,-0.04403 -0.136992,-0.1321 -0.04648,-0.08807 -0.04648,-0.318018 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1829" />
+              <path
+                 d="M 95.314761,51.576091 V 51.42116 q 0.195703,0.09296 0.355527,0.09296 0.06687,0 0.128023,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.123129 -0.04322,-0.0579 -0.16227,-0.127208 l -0.08317,-0.04811 -0.08399,-0.04811 q -0.221797,-0.131284 -0.221797,-0.326172 0,-0.1427 0.09867,-0.239736 0.09948,-0.09785 0.309863,-0.09785 0.135361,0 0.261753,0.03914 v 0.141069 q -0.139438,-0.05382 -0.271538,-0.05382 -0.10519,0 -0.170425,0.05545 -0.06442,0.05545 -0.06442,0.13373 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06687,0.03914 q 0.207934,0.127207 0.207934,0.319649 0,0.146777 -0.106821,0.251967 -0.106821,0.105191 -0.34248,0.105191 -0.07502,0 -0.143516,-0.01305 -0.06768,-0.01223 -0.178579,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1831" />
+            </g>
+            <g
+               aria-label="PORTS"
+               id="text212"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 110.52823,51.141467 v 0.461534 h -0.16471 v -1.265547 h 0.31475 q 0.19407,0 0.28296,0.04403 0.0889,0.04322 0.13617,0.127207 0.0473,0.08399 0.0473,0.187549 0,0.121499 -0.0636,0.226689 -0.0636,0.105191 -0.17776,0.162271 -0.11334,0.05626 -0.30823,0.05626 z m 0,-0.126391 h 0.071 q 0.15248,0 0.22669,-0.03914 0.0742,-0.03996 0.11416,-0.11416 0.04,-0.0742 0.04,-0.16064 0,-0.109267 -0.0718,-0.172871 -0.0709,-0.0636 -0.28132,-0.0636 h -0.0987 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1834" />
+              <path
+                 d="m 111.72202,51.641326 q -0.21527,0 -0.32943,-0.181026 -0.11335,-0.18184 -0.11335,-0.490073 0,-0.307417 0.11335,-0.488442 0.11416,-0.181841 0.32943,-0.181841 0.21609,0 0.32944,0.181841 0.11334,0.181025 0.11334,0.488442 0,0.308233 -0.11334,0.490073 -0.11335,0.181026 -0.32944,0.181026 z m 0,-0.127207 q 0.11906,0 0.19815,-0.134546 0.0799,-0.135361 0.0799,-0.409346 0,-0.273984 -0.0799,-0.40853 -0.0791,-0.135361 -0.19815,-0.135361 -0.11905,0 -0.19896,0.135361 -0.0791,0.134546 -0.0791,0.40853 0,0.273985 0.0791,0.409346 0.0799,0.134546 0.19896,0.134546 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1836" />
+              <path
+                 d="m 112.50891,51.065632 v 0.537369 h -0.16471 v -1.265547 h 0.3384 q 0.16553,0 0.24381,0.03425 0.0783,0.03343 0.12069,0.101929 0.0432,0.0685 0.0432,0.147592 0,0.07339 -0.0285,0.147593 -0.0285,0.0742 -0.0791,0.132915 -0.0497,0.0579 -0.14433,0.110083 l 0.36612,0.591187 h -0.1957 l -0.33514,-0.537369 z m 0,-0.127207 h 0.23077 q 0.0775,-0.0424 0.11497,-0.08644 0.0383,-0.04403 0.0579,-0.09377 0.0196,-0.04974 0.0196,-0.09948 0,-0.08888 -0.0652,-0.141069 -0.0644,-0.053 -0.23485,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1838" />
+              <path
+                 d="m 113.64236,51.603001 v -1.126109 h -0.37918 v -0.139438 h 0.92389 v 0.139438 h -0.37999 v 1.126109 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1840" />
+              <path
+                 d="M 114.35341,51.576091 V 51.42116 q 0.19571,0.09296 0.35553,0.09296 0.0669,0 0.12802,-0.02528 0.0612,-0.02609 0.0921,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.0432,-0.123129 -0.0432,-0.0579 -0.16227,-0.127208 l -0.0832,-0.04811 -0.084,-0.04811 q -0.2218,-0.131284 -0.2218,-0.326172 0,-0.1427 0.0987,-0.239736 0.0995,-0.09785 0.30986,-0.09785 0.13536,0 0.26175,0.03914 v 0.141069 q -0.13943,-0.05382 -0.27153,-0.05382 -0.10519,0 -0.17043,0.05545 -0.0644,0.05545 -0.0644,0.13373 0,0.07747 0.0497,0.128838 0.0497,0.05137 0.12721,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.0669,0.03914 q 0.20793,0.127207 0.20793,0.319649 0,0.146777 -0.10682,0.251967 -0.10682,0.105191 -0.34248,0.105191 -0.075,0 -0.14352,-0.01305 -0.0677,-0.01223 -0.17858,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1842" />
+            </g>
+            <g
+               aria-label="NAMES"
+               id="text214"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 11.276414,53.773998 h -0.15167 v -1.265547 h 0.148409 l 0.447671,0.842339 0.04892,0.125576 h 0.0041 l -0.0041,-0.125576 v -0.842339 h 0.15167 v 1.265547 h -0.15167 l -0.435439,-0.828476 -0.06116,-0.132915 0.0033,0.131284 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1845" />
+              <path
+                 d="m 12.208451,53.773998 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392221,1.265547 h -0.173686 l -0.08644,-0.278061 h -0.445224 z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1847" />
+              <path
+                 d="M 13.203275,53.773998 H 13.07036 v -1.265547 h 0.165532 l 0.291924,0.83337 0.291924,-0.83337 h 0.161455 v 1.265547 h -0.15167 v -0.80646 l 0.0041,-0.110898 h -0.0041 l -0.03588,0.110898 -0.195703,0.553677 h -0.164717 l -0.19815,-0.553677 -0.0318,-0.110898 h -0.0041 l 0.0041,0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1849" />
+              <path
+                 d="m 14.874906,53.63456 v 0.139438 h -0.68333 v -1.265547 h 0.670283 v 0.127207 h -0.505567 v 0.429732 h 0.45501 v 0.126391 h -0.45501 v 0.442779 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1851" />
+              <path
+                 d="m 15.155413,53.747089 v -0.154932 q 0.195704,0.09296 0.355528,0.09296 0.06686,0 0.128022,-0.02528 0.06116,-0.02609 0.09214,-0.0742 0.0318,-0.04811 0.0318,-0.104375 0,-0.06605 -0.04322,-0.12313 -0.04322,-0.05789 -0.162271,-0.127207 l -0.08317,-0.04811 -0.08399,-0.04811 Q 15.16846,53.003417 15.16846,52.80853 q 0,-0.142701 0.09867,-0.239737 0.09948,-0.09785 0.309864,-0.09785 0.135361,0 0.261752,0.03914 v 0.14107 q -0.139438,-0.05382 -0.271538,-0.05382 -0.10519,0 -0.170424,0.05545 -0.06442,0.05545 -0.06442,0.133731 0,0.07747 0.04974,0.128838 0.04974,0.05137 0.127207,0.09459 l 0.0636,0.03833 0.0791,0.04811 0.06686,0.03914 q 0.207935,0.127207 0.207935,0.319648 0,0.146778 -0.106821,0.251968 -0.106822,0.10519 -0.342481,0.10519 -0.07502,0 -0.143515,-0.01305 -0.06768,-0.01223 -0.17858,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1853" />
+            </g>
+            <g
+               aria-label="0368dbde34e7"
+               id="text216"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 0.50067382,54.641943 q 0.21608886,0 0.32943358,0.181841 0.11334472,0.181025 0.11334472,0.488442 0,0.308233 -0.11334472,0.490074 -0.11334472,0.181025 -0.32943358,0.181025 -0.21527344,0 -0.32943359,-0.181025 -0.11334472,-0.181841 -0.11334472,-0.490074 0,-0.307417 0.11334472,-0.488442 0.11416015,-0.181841 0.32943359,-0.181841 z m -0.24707519,0.941006 0.43788573,-0.685776 q -0.0415869,-0.07584 -0.0905127,-0.101929 -0.0481103,-0.02691 -0.10029784,-0.02691 -0.13617676,0 -0.20711914,0.15167 -0.0709424,0.150854 -0.0709424,0.383252 0,0.053 0.003262,0.11416 0.003262,0.06116 0.0277246,0.165532 z m 0.49251951,-0.534922 -0.43462401,0.689854 q 0.0350635,0.05953 0.0807275,0.0897 0.0456641,0.02935 0.10192871,0.02935 0.15493163,0 0.22016601,-0.172871 0.0652344,-0.173686 0.0652344,-0.384883 0,-0.130468 -0.0334326,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1856" />
+              <path
+                 d="m 1.119585,55.922168 v -0.159825 q 0.1867334,0.09459 0.3237255,0.09459 0.1255762,0 0.2071192,-0.07583 0.082358,-0.07665 0.082358,-0.196518 0,-0.120684 -0.090513,-0.196519 -0.089697,-0.07583 -0.3057861,-0.07583 H 1.2525 v -0.126391 h 0.1166064 q 0.1590088,0 0.2299512,-0.07094 Q 1.67,55.043134 1.67,54.955884 q 0,-0.0791 -0.057895,-0.132916 -0.057896,-0.05463 -0.1777637,-0.05463 -0.1345459,0 -0.2894775,0.07583 v -0.144331 q 0.1549316,-0.0579 0.2837695,-0.0579 0.2307666,0 0.3180176,0.09133 0.088066,0.09051 0.088066,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07584 -0.1712402,0.135361 0.110083,0.03262 0.1663476,0.07991 0.056265,0.04729 0.084805,0.111714 0.029355,0.06442 0.029355,0.144331 0,0.177764 -0.1320996,0.293555 -0.1312842,0.115791 -0.3400342,0.115791 -0.060342,0 -0.1320996,-0.009 -0.070942,-0.009 -0.1736865,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1858" />
+              <path
+                 d="m 2.2408008,55.351367 q 0.058711,-0.08725 0.1451465,-0.141885 0.087251,-0.05545 0.1916259,-0.05545 0.098667,0 0.1867334,0.04811 0.088882,0.04811 0.1353614,0.134546 0.046479,0.08562 0.046479,0.19978 0,0.18021 -0.115791,0.313941 -0.1149755,0.132915 -0.3033398,0.132915 -0.2217969,0 -0.3318799,-0.185103 -0.1092676,-0.185918 -0.1092676,-0.472133 0,-0.316387 0.1394385,-0.499859 0.1394385,-0.184287 0.377544,-0.184287 0.1280224,0 0.248706,0.03751 v 0.153301 q -0.1353613,-0.06442 -0.2552295,-0.06442 -0.1696094,0 -0.2625683,0.155747 -0.092959,0.155747 -0.092959,0.394668 z m 0.2976318,0.505566 q 0.061157,0 0.1231299,-0.03588 0.061973,-0.03669 0.097036,-0.111713 0.035879,-0.07584 0.035879,-0.164717 0,-0.115791 -0.060342,-0.189995 -0.059526,-0.0742 -0.1704248,-0.0742 -0.1149756,0 -0.1891797,0.08644 -0.073389,0.08562 -0.073389,0.20875 0,0.123945 0.071758,0.203042 0.072573,0.07828 0.1655322,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1860" />
+              <path
+                 d="m 3.3783253,55.262485 -0.027725,-0.02039 q -0.057896,-0.04077 -0.1133447,-0.119868 -0.055449,-0.07991 -0.055449,-0.175317 0,-0.126392 0.099482,-0.215274 0.099482,-0.0897 0.2527832,-0.0897 0.093774,0 0.1687939,0.03425 0.07502,0.03343 0.115791,0.09948 0.040771,0.06605 0.040771,0.144331 0,0.05382 -0.018755,0.104375 -0.018755,0.04974 -0.056265,0.09948 -0.036694,0.04893 -0.1467773,0.138623 l 0.068496,0.05463 q 0.1198682,0.09785 0.1614551,0.168794 0.041587,0.07094 0.041587,0.159009 0,0.136992 -0.099482,0.238105 -0.099482,0.100298 -0.2984472,0.100298 -0.1997803,0 -0.2992627,-0.09378 -0.099482,-0.09459 -0.099482,-0.234028 0,-0.207934 0.2658301,-0.393037 z m 0.1557471,-0.07747 q 0.1149756,-0.08725 0.1435156,-0.145962 0.029355,-0.05871 0.029355,-0.109267 0,-0.06116 -0.053818,-0.110899 -0.053818,-0.05056 -0.138623,-0.05056 -0.091328,0 -0.1394385,0.05463 -0.047295,0.05463 -0.047295,0.113345 0,0.05708 0.039956,0.107637 0.039956,0.05056 0.1280225,0.113345 z m -0.041587,0.158194 q -0.2152735,0.165532 -0.2152735,0.309863 0,0.08562 0.070942,0.144331 0.070942,0.05871 0.1679785,0.05871 0.088882,0 0.1590088,-0.05627 0.070127,-0.05626 0.070127,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.084805,-0.0848 -0.1182373,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1862" />
+              <path
+                 d="m 4.7400928,55.740327 q -0.069312,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.1614551,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 V 54.628896 H 4.8925781 V 55.945 H 4.7400928 Z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.1500391,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204672 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1864" />
+              <path
+                 d="m 5.2733837,55.238838 q 0.070127,-0.114161 0.1671631,-0.172056 0.097036,-0.0579 0.1785791,-0.0579 0.1141601,0 0.2054882,0.09867 0.091328,0.09867 0.091328,0.299263 0,0.158193 -0.061157,0.282954 -0.060342,0.123946 -0.161455,0.196519 -0.1011133,0.07176 -0.2503369,0.07176 -0.042402,0 -0.1304688,-0.009 -0.013047,-0.0016 -0.039141,-0.0041 H 5.1217138 v -1.316104 h 0.1516699 z m 0,0.18021 v 0.39059 q 0.082358,0.0212 0.1516699,0.0212 0.1378076,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.051372,-0.204673 -0.051372,-0.0685 -0.1166064,-0.0685 -0.070942,0 -0.1565625,0.07176 -0.084805,0.07176 -0.1533008,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1866" />
+              <path
+                 d="m 6.7427883,55.740327 q -0.069311,0.11416 -0.167163,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141602,0 -0.2054883,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.1614551,-0.196519 0.1011132,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304687,0.009 0.013047,0.0016 0.039141,0.0041 V 54.628896 H 6.8952737 V 55.945 H 6.7427883 Z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.150039,-0.0212 -0.1402539,0 -0.2340283,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204672 0.051372,0.0685 0.1166065,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533007,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1868" />
+              <path
+                 d="m 7.8933595,55.884658 q -0.1818408,0.08644 -0.3441113,0.08644 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057895,-0.11416 -0.057895,-0.243813 0,-0.124761 0.055449,-0.239737 0.055449,-0.114975 0.1549317,-0.178579 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115791 0.098667,0.115791 0.098667,0.357159 v 0.03262 H 7.2785255 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1870" />
+              <path
+                 d="m 8.1290186,55.922168 v -0.159825 q 0.1867334,0.09459 0.3237256,0.09459 0.1255761,0 0.2071191,-0.07583 0.082358,-0.07665 0.082358,-0.196518 0,-0.120684 -0.090513,-0.196519 -0.089697,-0.07583 -0.3057861,-0.07583 h -0.083989 v -0.126391 h 0.1166065 q 0.1590088,0 0.2299511,-0.07094 0.070942,-0.07176 0.070942,-0.159008 0,-0.0791 -0.057895,-0.132916 -0.057896,-0.05463 -0.1777637,-0.05463 -0.1345459,0 -0.2894775,0.07583 v -0.144331 q 0.1549316,-0.0579 0.2837695,-0.0579 0.2307666,0 0.3180176,0.09133 0.088066,0.09051 0.088066,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07584 -0.1712402,0.135361 0.110083,0.03262 0.1663476,0.07991 0.056265,0.04729 0.084805,0.111714 0.029356,0.06442 0.029356,0.144331 0,0.177764 -0.1320996,0.293555 -0.1312842,0.115791 -0.3400342,0.115791 -0.060342,0 -0.1320996,-0.009 -0.070942,-0.009 -0.1736865,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1872" />
+              <path
+                 d="M 9.5886376,55.945 V 55.591103 H 9.0512695 V 55.463896 L 9.5886376,54.679453 H 9.741123 v 0.784443 h 0.2340283 v 0.127207 H 9.741123 V 55.945 Z m 0,-0.481104 v -0.554492 l -0.3759131,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1874" />
+              <path
+                 d="m 10.897402,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1876" />
+              <path
+                 d="m 11.274946,55.945 v -0.113345 q 0,-0.132915 0.03017,-0.223428 0.03017,-0.09051 0.106006,-0.201411 0.07583,-0.110898 0.121499,-0.17124 l 0.132099,-0.174502 0.0473,-0.06116 q 0.05382,-0.07257 0.09296,-0.167979 h -0.656421 v -0.152485 h 0.803199 v 0.101113 q 0,0.06034 -0.02446,0.111714 -0.02365,0.05137 -0.145147,0.219351 -0.02935,0.03996 -0.0579,0.07991 l -0.0848,0.119052 q -0.08154,0.114976 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194888 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1878" />
+            </g>
+            <g
+               aria-label="k8s.gcr.io/kube-proxy"
+               id="text218"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 20.207164,55.945 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 20.358834,55.455742 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1881" />
+              <path
+                 d="m 21.415631,55.262485 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.19978,0 -0.299263,-0.09378 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.0473,0.05463 -0.0473,0.113345 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158194 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05627 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.0848 -0.118237,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1883" />
+              <path
+                 d="M 22.179688,55.896889 V 55.73625 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174501,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1885" />
+              <path
+                 d="m 23.544718,55.983325 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1887" />
+              <path
+                 d="m 24.780094,55.740327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149223,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335142,-0.0848 v -0.153301 q 0.06442,0.04403 0.158194,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1889" />
+              <path
+                 d="m 25.939635,55.918906 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1891" />
+              <path
+                 d="m 26.251945,55.945 v -0.910835 h 0.151669 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1893" />
+              <path
+                 d="m 27.550108,55.983325 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09377 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09377 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1895" />
+              <path
+                 d="M 28.432403,55.945 V 55.160556 H 28.17962 v -0.126391 h 0.404453 v 0.784443 h 0.253599 V 55.945 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1897" />
+              <path
+                 d="m 29.553619,55.970278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117421,0.136177 0.117421,0.344112 0,0.207934 -0.117421,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1899" />
+              <path
+                 d="m 30.22961,55.983325 h -0.149224 l 0.80483,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1901" />
+              <path
+                 d="m 31.221988,55.945 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 H 32.01377 L 31.5767,55.455742 32.025186,55.945 h -0.20875 L 31.373658,55.455742 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1903" />
+              <path
+                 d="M 32.931945,55.034165 V 55.945 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1905" />
+              <path
+                 d="m 33.324166,55.238838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.17858,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1907" />
+              <path
+                 d="m 34.942794,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 H 34.32796 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1909" />
+              <path
+                 d="m 35.245318,55.495698 v -0.126392 h 0.632774 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1911" />
+              <path
+                 d="m 36.328209,55.238838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1913" />
+              <path
+                 d="m 37.266769,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145961 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1915" />
+              <path
+                 d="m 38.565748,55.970278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117421,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1917" />
+              <path
+                 d="m 39.286589,55.945 h -0.175318 l 0.357974,-0.477027 -0.334326,-0.433808 h 0.194072 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 L 39.652716,55.453296 40.02863,55.945 h -0.194888 l -0.277246,-0.362867 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1919" />
+              <path
+                 d="m 40.528487,55.908305 -0.420762,-0.87414 h 0.167163 l 0.335142,0.68333 0.280508,-0.68333 h 0.152485 l -0.353081,0.846416 q -0.111714,0.268276 -0.212827,0.356343 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123946,-0.01223 v -0.13373 q 0.06279,0.01957 0.119869,0.01957 0.07339,0 0.130468,-0.02854 0.05708,-0.02854 0.104375,-0.101113 0.0473,-0.07257 0.06687,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1921" />
+            </g>
+            <g
+               aria-label="&quot;/usr/local/bin/kube…&quot;"
+               id="text220"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 44.467176,55.084721 h -0.104375 l -0.05219,-0.455825 h 0.203042 z m 0.35145,0 h -0.103559 l -0.04648,-0.455825 h 0.198965 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1924" />
+              <path
+                 d="m 45.265482,55.983325 h -0.149224 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1926" />
+              <path
+                 d="M 46.966468,55.034165 V 55.945 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179394,0.05627 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1928" />
+              <path
+                 d="M 47.229037,55.896889 V 55.73625 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1930" />
+              <path
+                 d="m 48.297249,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164716,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1932" />
+              <path
+                 d="m 49.270872,55.983325 h -0.149223 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1934" />
+              <path
+                 d="m 50.467108,55.945 v -1.188897 h -0.272354 v -0.127207 h 0.424024 v 1.189712 h 0.284585 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1936" />
+              <path
+                 d="m 51.598924,55.970278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1938" />
+              <path
+                 d="m 52.991678,55.918906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136993 0.326172,-0.136993 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1940" />
+              <path
+                 d="m 53.825047,55.740327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1942" />
+              <path
+                 d="m 54.472498,55.945 v -1.188897 h -0.272353 v -0.127207 h 0.424023 v 1.189712 h 0.284585 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1944" />
+              <path
+                 d="m 55.278958,55.983325 h -0.149224 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1946" />
+              <path
+                 d="m 56.370819,55.238838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123946 -0.161456,0.196519 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1948" />
+              <path
+                 d="m 57.487142,55.945 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 V 55.945 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1950" />
+              <path
+                 d="m 58.23326,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1952" />
+              <path
+                 d="m 59.284349,55.983325 h -0.149224 l 0.80483,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1954" />
+              <path
+                 d="m 60.276727,55.945 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 60.428397,55.455742 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1956" />
+              <path
+                 d="M 61.986684,55.034165 V 55.945 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1958" />
+              <path
+                 d="m 62.378904,55.238838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.17858,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1960" />
+              <path
+                 d="m 63.997533,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145961,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1962" />
+              <path
+                 d="m 64.282117,55.983325 q -0.04648,0 -0.08236,-0.03506 -0.03506,-0.03506 -0.03506,-0.08236 0,-0.0473 0.03506,-0.08154 0.03588,-0.03506 0.08236,-0.03506 0.04566,0 0.08073,0.03506 0.03588,0.03425 0.03588,0.08154 0,0.04729 -0.03588,0.08236 -0.03506,0.03506 -0.08073,0.03506 z m 0.333511,0 q -0.04648,0 -0.08154,-0.03506 -0.03506,-0.03506 -0.03506,-0.08236 0,-0.0473 0.03506,-0.08154 0.03506,-0.03506 0.08154,-0.03506 0.04648,0 0.08154,0.03506 0.03588,0.03425 0.03588,0.08154 0,0.04729 -0.03588,0.08236 -0.03506,0.03506 -0.08154,0.03506 z m 0.334326,0 q -0.04648,0 -0.08236,-0.03506 -0.03506,-0.03506 -0.03506,-0.08236 0,-0.0473 0.03506,-0.08154 0.03588,-0.03506 0.08236,-0.03506 0.04648,0 0.08154,0.03506 0.03506,0.03425 0.03506,0.08154 0,0.04729 -0.03506,0.08236 -0.03506,0.03506 -0.08154,0.03506 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1964" />
+              <path
+                 d="m 65.495477,55.084721 h -0.104375 l -0.05219,-0.455825 h 0.203042 z m 0.35145,0 h -0.103559 l -0.04648,-0.455825 h 0.198965 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1966" />
+            </g>
+            <g
+               aria-label="About"
+               id="text222"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 69.323103,55.945 H 69.16491 l 0.389775,-1.265547 h 0.167163 L 70.11407,55.945 h -0.173687 l -0.08643,-0.278062 h -0.445225 z m 0.124761,-0.404453 h 0.369389 l -0.152485,-0.480288 -0.03588,-0.127208 -0.0318,0.127208 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1969" />
+              <path
+                 d="m 70.405994,55.238838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1971" />
+              <path
+                 d="m 71.642185,55.970278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117421,0.136177 0.117421,0.344112 0,0.207934 -0.117421,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1973" />
+              <path
+                 d="M 73.017815,55.034165 V 55.945 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179394,0.05627 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1975" />
+              <path
+                 d="m 74.031394,55.908305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 55.236391 H 73.221672 V 55.11 h 0.227505 v -0.366944 h 0.15167 V 55.11 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1977" />
+            </g>
+            <g
+               aria-label="a"
+               id="text224"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 75.874918,55.740327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1980" />
+            </g>
+            <g
+               aria-label="minute"
+               id="text226"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 77.211895,55.945 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09378,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 V 55.945 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 V 55.945 H 77.59107 v -0.621358 q 0,-0.120683 -0.02365,-0.141884 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1983" />
+              <path
+                 d="m 78.536968,55.945 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 V 55.945 Z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1985" />
+              <path
+                 d="m 79.283086,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07584 -0.150855,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1987" />
+              <path
+                 d="M 81.033814,55.034165 V 55.945 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179394,0.05627 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1989" />
+              <path
+                 d="m 82.047393,55.908305 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 55.236391 H 81.237671 V 55.11 h 0.227505 v -0.366944 h 0.15167 V 55.11 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1991" />
+              <path
+                 d="m 83.044663,55.884658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239737 0.05545,-0.114975 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357159 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1993" />
+            </g>
+            <g
+               aria-label="ago"
+               id="text228"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.892916,55.740327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1996" />
+              <path
+                 d="m 85.904049,55.740327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path1998" />
+              <path
+                 d="m 86.672184,55.970278 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117421,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2000" />
+            </g>
+            <g
+               aria-label="Up"
+               id="text230"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 90.282744,54.679453 h 0.164717 v 0.830923 q 0,0.163901 0.02691,0.224243 0.02773,0.05953 0.08399,0.09133 0.05708,0.03099 0.126391,0.03099 0.07339,0 0.130469,-0.03343 0.0579,-0.03425 0.08481,-0.106006 0.02772,-0.07257 0.02772,-0.271538 v -0.766504 h 0.15167 v 0.82603 q 0,0.176948 -0.053,0.277246 -0.05219,0.09948 -0.136992,0.150039 -0.08481,0.05056 -0.213642,0.05056 -0.119053,0 -0.209566,-0.04403 -0.09051,-0.04403 -0.136992,-0.1321 -0.04648,-0.08807 -0.04648,-0.318017 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2003" />
+              <path
+                 d="m 91.447993,55.238838 q 0.07013,-0.114161 0.167164,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.151669 v -1.264731 h 0.151669 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2005" />
+            </g>
+            <g
+               aria-label="About"
+               id="text232"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 93.3711,55.945 h -0.158194 l 0.389776,-1.265547 h 0.167163 L 94.162066,55.945 H 93.98838 l -0.08644,-0.278062 H 93.45672 Z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480288 -0.03588,-0.127208 -0.0318,0.127208 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2008" />
+              <path
+                 d="m 94.45399,55.238838 q 0.07013,-0.114161 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123946 -0.161456,0.196519 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2010" />
+              <path
+                 d="m 95.690182,55.970278 q -0.195704,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2012" />
+              <path
+                 d="M 97.065812,55.034165 V 55.945 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.151669 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2014" />
+              <path
+                 d="m 98.079391,55.908305 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.0367 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 55.236391 H 97.269669 V 55.11 h 0.227505 v -0.366944 h 0.15167 V 55.11 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2016" />
+            </g>
+            <g
+               aria-label="a"
+               id="text234"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 99.922915,55.740327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.0343,0.267461 h -0.158195 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2019" />
+            </g>
+            <g
+               aria-label="minute"
+               id="text236"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 101.2599,55.945 v -0.910835 h 0.13291 v 0.20875 q 0.0628,-0.132915 0.11661,-0.183472 0.0546,-0.05056 0.11008,-0.05056 0.0661,0 0.10601,0.05219 0.0408,0.05137 0.0408,0.146777 v 0.04893 q 0.0269,-0.08317 0.0644,-0.134546 0.0383,-0.05219 0.0791,-0.08236 0.0408,-0.03099 0.0938,-0.03099 0.0587,0 0.1003,0.04974 0.0416,0.04974 0.0416,0.198149 V 55.945 h -0.13292 v -0.622173 q 0,-0.07665 -0.005,-0.104375 -0.005,-0.02854 -0.0196,-0.04322 -0.0147,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.0913,0.06524 -0.0481,0.06442 -0.0987,0.214458 V 55.945 h -0.12721 v -0.621358 q 0,-0.120683 -0.0236,-0.141884 -0.0237,-0.0212 -0.0424,-0.0212 -0.0416,0 -0.0897,0.07257 -0.0473,0.07257 -0.0905,0.185918 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2022" />
+              <path
+                 d="m 102.58497,55.945 v -0.784444 h -0.25278 v -0.126391 h 0.40445 v 0.784443 h 0.2536 V 55.945 Z m -0.0253,-1.239453 q 0,-0.05137 0.0351,-0.07665 0.0351,-0.02528 0.0661,-0.02528 0.0318,0 0.0669,0.02528 0.0351,0.02528 0.0351,0.07665 0,0.05056 -0.0351,0.07583 -0.0351,0.02528 -0.0669,0.02528 -0.031,0 -0.0661,-0.02528 -0.0351,-0.02528 -0.0351,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2024" />
+              <path
+                 d="m 103.33109,55.945 v -0.910835 h 0.15167 v 0.198965 q 0.0652,-0.105191 0.15738,-0.164717 0.0921,-0.05953 0.18429,-0.05953 0.0807,0 0.14677,0.04322 0.0661,0.0424 0.0922,0.111714 0.0269,0.06931 0.0269,0.272354 V 55.945 h -0.15167 v -0.527583 q 0,-0.131284 -0.0131,-0.172871 -0.0122,-0.0424 -0.0465,-0.06931 -0.0334,-0.02691 -0.0734,-0.02691 -0.0799,0 -0.17206,0.07583 -0.0913,0.07584 -0.15085,0.189995 V 55.945 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2026" />
+              <path
+                 d="M 105.08182,55.034165 V 55.945 h -0.15167 v -0.199781 q -0.0734,0.11253 -0.16309,0.168794 -0.0897,0.05627 -0.17939,0.05627 -0.0799,0 -0.14678,-0.0424 -0.066,-0.04322 -0.0921,-0.11253 -0.0261,-0.07013 -0.0261,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.0122,0.173686 0.0131,0.04159 0.0465,0.0685 0.0343,0.02691 0.0734,0.02691 0.0799,0 0.17124,-0.07502 0.0922,-0.07583 0.15249,-0.190811 v -0.530844 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2028" />
+              <path
+                 d="m 106.0954,55.908305 q -0.10682,0.04485 -0.15493,0.053 -0.0481,0.009 -0.093,0.009 -0.0954,0 -0.17451,-0.03669 -0.0791,-0.0367 -0.11986,-0.108452 -0.04,-0.07176 -0.04,-0.221797 v -0.366944 h -0.2275 V 55.11 h 0.2275 v -0.366944 h 0.15167 V 55.11 h 0.40527 v 0.126391 h -0.40527 v 0.364497 q 0,0.110083 0.0261,0.155747 0.0261,0.04485 0.0693,0.06605 0.044,0.0212 0.10356,0.0212 0.11008,0 0.23158,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2030" />
+              <path
+                 d="m 107.09267,55.884658 q -0.18184,0.08644 -0.34411,0.08644 -0.12313,0 -0.22017,-0.06116 -0.097,-0.06116 -0.15575,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.0554,-0.239737 0.0555,-0.114975 0.15493,-0.178579 0.0995,-0.06442 0.2218,-0.06442 0.16227,0 0.26012,0.115791 0.0987,0.115791 0.0987,0.357159 v 0.03262 h -0.62788 q 0,0.09459 0.0391,0.172871 0.04,0.07828 0.10438,0.117422 0.0644,0.03914 0.14678,0.03914 0.14677,0 0.32454,-0.09785 z m -0.60587,-0.48355 h 0.4542 v -0.02202 q 0,-0.111714 -0.0546,-0.177764 -0.0546,-0.06605 -0.14596,-0.06605 -0.0921,0 -0.15982,0.06768 -0.0669,0.06686 -0.0938,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2032" />
+            </g>
+            <g
+               aria-label="k8s_kube-proxy_kube-proxy-j6zjq_kube-system_4898167e-ede8-4d2d-a49f-0b2c01155dbe_0"
+               id="text238"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 11.189163,58.116001 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2035" />
+              <path
+                 d="m 12.39763,57.433486 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01876,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.19978,0 -0.299262,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393038 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2037" />
+              <path
+                 d="m 13.161688,58.067891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2039" />
+              <path
+                 d="m 14.083939,58.242393 v -0.126392 h 0.885557 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2041" />
+              <path
+                 d="m 15.194554,58.116001 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2043" />
+              <path
+                 d="m 16.90451,57.205166 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2045" />
+              <path
+                 d="m 17.296732,57.409839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2047" />
+              <path
+                 d="m 18.91536,58.055659 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 18.309496,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2049" />
+              <path
+                 d="m 19.217884,57.666699 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2051" />
+              <path
+                 d="m 20.300775,57.409839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2053" />
+              <path
+                 d="m 21.239334,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 H 21.776702 V 57.32585 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2055" />
+              <path
+                 d="m 22.538313,58.141279 q -0.195703,0 -0.313125,-0.136176 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207935 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2057" />
+              <path
+                 d="m 23.259154,58.116001 h -0.175317 l 0.357973,-0.477026 -0.334326,-0.433809 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194888 l -0.277246,-0.362866 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2059" />
+              <path
+                 d="m 24.501053,58.079307 -0.420761,-0.874141 h 0.167163 l 0.335141,0.68333 0.280508,-0.68333 h 0.152486 l -0.353081,0.846416 q -0.111714,0.268277 -0.212828,0.356343 -0.100297,0.08807 -0.260122,0.08807 -0.06931,0 -0.123945,-0.01223 v -0.133731 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101114 0.0473,-0.07257 0.06686,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2061" />
+              <path
+                 d="m 25.098763,58.242393 v -0.126392 h 0.885557 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2063" />
+              <path
+                 d="m 26.209378,58.116001 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2065" />
+              <path
+                 d="m 27.919334,57.205166 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179394,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2067" />
+              <path
+                 d="m 28.311557,57.409839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2069" />
+              <path
+                 d="m 29.930184,58.055659 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 H 29.31535 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 29.324319,57.57211 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2071" />
+              <path
+                 d="m 30.232709,57.666699 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2073" />
+              <path
+                 d="m 31.315599,57.409839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.151669,0.0212 0.137808,0 0.231583,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2075" />
+              <path
+                 d="m 32.254159,58.116001 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.16227,-0.167978 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 H 32.791527 V 57.32585 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166347,0.06687 -0.08154,0.06686 -0.159009,0.200595 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2077" />
+              <path
+                 d="m 33.553137,58.141279 q -0.195703,0 -0.313125,-0.136176 -0.117421,-0.136992 -0.117421,-0.344927 0,-0.207935 0.117421,-0.344111 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136176 -0.31231,0.136176 z m 0,-0.126391 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2079" />
+              <path
+                 d="m 34.273978,58.116001 h -0.175317 l 0.357973,-0.477026 -0.334326,-0.433809 h 0.194072 l 0.23729,0.305786 0.230767,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194888 l -0.277246,-0.362866 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2081" />
+              <path
+                 d="m 35.515878,58.079307 -0.420761,-0.874141 h 0.167163 l 0.335141,0.68333 0.280508,-0.68333 h 0.152485 l -0.353081,0.846416 q -0.111713,0.268277 -0.212827,0.356343 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123945,-0.01223 v -0.133731 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101114 0.0473,-0.07257 0.06686,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2083" />
+              <path
+                 d="m 36.240794,57.666699 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2085" />
+              <path
+                 d="m 37.197294,58.473159 v -0.141884 q 0.127207,0.03751 0.214458,0.03751 0.07583,0 0.128838,-0.02691 0.053,-0.02609 0.08236,-0.08888 0.03017,-0.06279 0.03017,-0.218535 v -0.7029 h -0.386513 v -0.126392 h 0.538183 v 0.800752 q 0,0.231582 -0.05463,0.321279 -0.05463,0.09051 -0.132099,0.129654 -0.07747,0.03914 -0.212012,0.03914 -0.09704,0 -0.20875,-0.02283 z m 0.430547,-1.596611 q 0,-0.05137 0.03425,-0.07665 0.03506,-0.02528 0.06686,-0.02528 0.0318,0 0.06605,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03425,0.02528 -0.06605,0.02528 -0.0318,0 -0.06686,-0.02528 -0.03425,-0.02528 -0.03425,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2087" />
+              <path
+                 d="m 38.296492,57.522368 q 0.05871,-0.08725 0.145147,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109267,-0.185918 -0.109267,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.16961,0 -0.262569,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114975,0 -0.189179,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123946 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2089" />
+              <path
+                 d="m 39.168187,58.116001 v -0.139438 l 0.55857,-0.645005 h -0.545523 v -0.126392 h 0.746118 v 0.126392 l -0.562646,0.645005 h 0.581401 v 0.139438 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2091" />
+              <path
+                 d="m 40.201336,58.473159 v -0.141884 q 0.127207,0.03751 0.214458,0.03751 0.07584,0 0.128838,-0.02691 0.053,-0.02609 0.08236,-0.08888 0.03017,-0.06279 0.03017,-0.218535 v -0.7029 h -0.386514 v -0.126392 h 0.538184 v 0.800752 q 0,0.231582 -0.05463,0.321279 -0.05463,0.09051 -0.1321,0.129654 -0.07746,0.03914 -0.212011,0.03914 -0.09704,0 -0.20875,-0.02283 z m 0.430547,-1.596611 q 0,-0.05137 0.03425,-0.07665 0.03506,-0.02528 0.06686,-0.02528 0.0318,0 0.06605,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03425,0.02528 -0.06605,0.02528 -0.0318,0 -0.06686,-0.02528 -0.03425,-0.02528 -0.03425,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2093" />
+              <path
+                 d="m 41.797133,57.911328 q -0.06931,0.11416 -0.167164,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 1.264732 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.15004,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2095" />
+              <path
+                 d="m 42.121672,58.242393 v -0.126392 h 0.885557 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2097" />
+              <path
+                 d="m 43.232289,58.116001 v -1.316103 h 0.151669 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 l -0.442779,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2099" />
+              <path
+                 d="m 44.942244,57.205166 v 0.910835 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05626 -0.179395,0.05626 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2101" />
+              <path
+                 d="m 45.334468,57.409839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2103" />
+              <path
+                 d="m 46.953095,58.055659 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 46.347231,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2105" />
+              <path
+                 d="m 47.255618,57.666699 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2107" />
+              <path
+                 d="m 48.208854,58.067891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174501,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2109" />
+              <path
+                 d="m 49.534746,58.079307 -0.420762,-0.874141 h 0.167163 l 0.335142,0.68333 0.280508,-0.68333 h 0.152485 l -0.353081,0.846416 q -0.111714,0.268277 -0.212827,0.356343 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123946,-0.01223 v -0.133731 q 0.06279,0.01957 0.119869,0.01957 0.07339,0 0.130468,-0.02854 0.05708,-0.02854 0.104375,-0.101114 0.0473,-0.07257 0.06687,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2111" />
+              <path
+                 d="m 50.211551,58.067891 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194887 -0.09051,0.07583 -0.290293,0.07583 -0.174501,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2113" />
+              <path
+                 d="m 51.963909,58.079307 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 v -0.366943 h -0.227505 v -0.126392 h 0.227505 v -0.366943 h 0.15167 v 0.366943 h 0.405268 v 0.126392 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2115" />
+              <path
+                 d="m 52.961182,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z M 52.355318,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2117" />
+              <path
+                 d="m 53.136498,58.116001 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116607,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134545 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 H 53.88914 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2119" />
+              <path
+                 d="m 54.137845,58.242393 v -0.126392 h 0.885557 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2121" />
+              <path
+                 d="m 55.657805,58.116001 v -0.353896 h -0.537368 v -0.127207 l 0.537368,-0.784444 h 0.152485 v 0.784444 h 0.234028 v 0.127207 H 55.81029 v 0.353896 z m 0,-0.481103 v -0.554493 l -0.375913,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2123" />
+              <path
+                 d="m 56.456929,57.433486 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252784,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393038 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.0473,0.05463 -0.0473,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.0848 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2125" />
+              <path
+                 d="m 57.847235,57.444087 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114976,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331065,0.185917 0.110083,0.185103 0.110083,0.471319 0,0.316387 -0.139439,0.500674 -0.139438,0.183471 -0.377544,0.183471 -0.128022,0 -0.248706,-0.03833 v -0.152485 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2127" />
+              <path
+                 d="m 58.459622,57.433486 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161456,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.19978,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393038 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.0848 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2129" />
+              <path
+                 d="m 59.549854,57.98961 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 H 59.239991 V 57.98961 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2131" />
+              <path
+                 d="m 60.326142,57.522368 q 0.05871,-0.08725 0.145146,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186734,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109268,-0.185918 -0.109268,-0.472134 0,-0.316387 0.139439,-0.499858 0.139438,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135362,-0.06442 -0.25523,-0.06442 -0.169609,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114975,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123946 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2133" />
+              <path
+                 d="m 61.349505,58.116001 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 h -0.65642 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145147,0.219351 -0.02935,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120683,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 v 0.113345 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2135" />
+              <path
+                 d="m 62.974655,58.055659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 62.368791,57.57211 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2137" />
+              <path
+                 d="m 63.277183,57.666699 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2139" />
+              <path
+                 d="m 64.977352,58.055659 q -0.18184,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 64.371488,57.57211 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2141" />
+              <path
+                 d="m 65.829475,57.911328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152486 v 1.316103 h -0.152486 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2143" />
+              <path
+                 d="m 66.980046,58.055659 q -0.181841,0.08644 -0.344112,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221796,-0.06442 0.162271,0 0.260123,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z M 66.374181,57.57211 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06687,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2145" />
+              <path
+                 d="m 67.471753,57.433486 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252784,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.199781,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.265831,-0.393038 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139438,0.05463 -0.0473,0.05463 -0.0473,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.0848 -0.118238,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2147" />
+              <path
+                 d="m 68.283919,57.666699 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2149" />
+              <path
+                 d="m 69.676672,58.116001 v -0.353896 h -0.537368 v -0.127207 l 0.537368,-0.784444 h 0.152486 v 0.784444 h 0.234028 v 0.127207 h -0.234028 v 0.353896 z m 0,-0.481103 v -0.554493 l -0.375913,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2151" />
+              <path
+                 d="m 70.836216,57.911328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2153" />
+              <path
+                 d="m 71.990048,58.116001 h -0.765689 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131285,-0.147593 l 0.08643,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06523,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181025,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2155" />
+              <path
+                 d="m 72.838909,57.911328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152486 v 1.316103 h -0.152486 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2157" />
+              <path
+                 d="m 73.290656,57.666699 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2159" />
+              <path
+                 d="m 74.831821,57.911328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2161" />
+              <path
+                 d="m 75.684759,58.116001 v -0.353896 h -0.537368 v -0.127207 l 0.537368,-0.784444 h 0.152486 v 0.784444 h 0.234028 v 0.127207 h -0.234028 v 0.353896 z m 0,-0.481103 v -0.554493 l -0.375913,0.554493 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2163" />
+              <path
+                 d="m 76.872843,57.444087 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.04729 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08644 -0.04648,-0.200595 0,-0.179395 0.114975,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331065,0.185917 0.110083,0.185103 0.110083,0.471319 0,0.316387 -0.139439,0.500674 -0.139438,0.183471 -0.377544,0.183471 -0.128022,0 -0.248706,-0.03833 v -0.152485 q 0.135362,0.0636 0.25523,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.03669 -0.06197,0.03588 -0.09785,0.110899 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2165" />
+              <path
+                 d="m 77.449347,58.116001 v -0.708608 h -0.202226 v -0.126392 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 v 0.05871 h 0.361235 v 0.126392 h -0.361235 v 0.708608 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2167" />
+              <path
+                 d="m 78.297397,57.666699 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2169" />
+              <path
+                 d="m 79.614318,56.812945 q 0.216089,0 0.329434,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 z m -0.247075,0.941005 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136176,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2171" />
+              <path
+                 d="m 80.381633,57.409839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2173" />
+              <path
+                 d="m 82.003525,58.116001 h -0.765688 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08643,-0.08807 q 0.02609,-0.02691 0.114161,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06524,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181026,0.03262 0.08317,0.0318 0.123129,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194887,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.07421,0.07502 -0.119869,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2175" />
+              <path
+                 d="m 83.010576,58.089907 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2177" />
+              <path
+                 d="m 83.619705,56.812945 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02773,0.165532 z m 0.492519,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2179" />
+              <path
+                 d="m 84.583545,57.98961 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304156 v 0.126391 H 84.273682 V 57.98961 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2181" />
+              <path
+                 d="m 85.584888,57.98961 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07583 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 v 0.126391 H 85.275025 V 57.98961 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2183" />
+              <path
+                 d="m 86.276375,57.457949 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.114161 0.147592,0.11416 0.147592,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167978,0.152486 -0.108453,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107636,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.105191,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2185" />
+              <path
+                 d="m 87.277726,57.457949 v -0.607495 h 0.708608 v 0.145962 h -0.556938 v 0.309863 h 0.02609 q 0.273169,0 0.420762,0.114161 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167978,0.152486 -0.108452,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2187" />
+              <path
+                 d="m 88.86047,57.911328 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.05789 -0.178579,0.05789 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299262 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161456,-0.196518 0.101113,-0.07257 0.250336,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 v 1.316103 H 88.86047 Z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108453 -0.09296,0.295186 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2189" />
+              <path
+                 d="m 89.393764,57.409839 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2191" />
+              <path
+                 d="m 91.012394,58.055659 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 H 90.39756 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z M 90.40653,57.57211 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2193" />
+              <path
+                 d="m 91.187707,58.242393 v -0.126392 h 0.885556 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2195" />
+              <path
+                 d="m 92.631836,56.812945 q 0.216088,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247076,0.941005 0.437886,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100297,-0.02691 -0.136177,0 -0.20712,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.49252,-0.534922 -0.434624,0.689854 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154932,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251153 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2197" />
+            </g>
+            <g
+               aria-label="f1c6ed82e2a1"
+               id="text240"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 0.33840331,60.286999 V 59.57839 H 0.13617675 v -0.126391 h 0.20222656 v -0.0424 q 0,-0.18021 0.0407715,-0.266645 0.0407715,-0.08644 0.12557617,-0.141885 0.0856201,-0.05545 0.22587402,-0.05545 0.10600586,0 0.21527343,0.02202 v 0.144331 q -0.1182373,-0.03914 -0.20956542,-0.03914 -0.0725732,0 -0.12802246,0.02691 -0.0554492,0.02691 -0.087251,0.08807 -0.0309863,0.06034 -0.0309863,0.205488 v 0.05871 H 0.85130857 V 59.57839 H 0.49007323 v 0.708609 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2200" />
+              <path
+                 d="m 1.4645117,60.160607 v -0.976885 q -0.068496,0.05463 -0.132915,0.09296 -0.064419,0.03833 -0.1769483,0.07828 V 59.21797 q 0.1785791,-0.07583 0.3098633,-0.196518 h 0.1516699 v 1.139155 h 0.3041553 v 0.126392 H 1.1546484 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2202" />
+              <path
+                 d="m 2.8955908,60.260905 q -0.1524853,0.05137 -0.290293,0.05137 -0.1369921,0 -0.2438134,-0.06279 -0.1060059,-0.0636 -0.1655322,-0.17124 -0.059526,-0.108452 -0.059526,-0.24626 0,-0.207119 0.1345459,-0.344111 0.1353613,-0.136993 0.3261718,-0.136993 0.1410694,0 0.2984473,0.053 v 0.145962 q -0.1590088,-0.07257 -0.2845849,-0.07257 -0.083174,0 -0.1565625,0.04159 -0.073389,0.04077 -0.1133448,0.128022 -0.039956,0.08725 -0.039956,0.179395 0,0.12313 0.07665,0.234844 0.077466,0.111714 0.2421826,0.111714 0.049741,0 0.097851,-0.0065 0.04811,-0.0073 0.1777637,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2204" />
+              <path
+                 d="m 3.2421486,59.693366 q 0.058711,-0.08725 0.1451464,-0.141885 0.087251,-0.05545 0.191626,-0.05545 0.098667,0 0.1867334,0.04811 0.088882,0.04811 0.1353613,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.313941 -0.1149756,0.132915 -0.3033398,0.132915 -0.2217969,0 -0.3318799,-0.185103 -0.1092676,-0.185918 -0.1092676,-0.472133 0,-0.316387 0.1394385,-0.499859 0.1394385,-0.184287 0.3775439,-0.184287 0.1280225,0 0.2487061,0.03751 v 0.153301 q -0.1353613,-0.06442 -0.2552295,-0.06442 -0.1696094,0 -0.2625684,0.155747 -0.092959,0.155747 -0.092959,0.394668 z m 0.2976318,0.505566 q 0.061157,0 0.1231299,-0.03588 0.061973,-0.03669 0.097036,-0.111713 0.035879,-0.07584 0.035879,-0.164717 0,-0.115791 -0.060342,-0.189995 -0.059526,-0.0742 -0.1704248,-0.0742 -0.1149756,0 -0.1891797,0.08643 -0.073389,0.08562 -0.073389,0.20875 0,0.123945 0.071758,0.203042 0.072573,0.07828 0.1655322,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2206" />
+              <path
+                 d="m 4.8893164,60.226657 q -0.1818408,0.08643 -0.3441113,0.08643 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.1557471,-0.174502 -0.057896,-0.11416 -0.057896,-0.243813 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549317,-0.17858 0.099482,-0.06442 0.2217968,-0.06442 0.1622705,0 0.2601221,0.115792 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 4.2744824 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467773,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092144,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2208" />
+              <path
+                 d="m 5.7414403,60.082326 q -0.069311,0.11416 -0.1671631,0.172056 -0.097036,0.0579 -0.1785791,0.0579 -0.1141601,0 -0.2054882,-0.09867 -0.090513,-0.09867 -0.090513,-0.299263 0,-0.158193 0.060342,-0.282138 0.060342,-0.124761 0.161455,-0.196519 0.1011133,-0.07257 0.2503369,-0.07257 0.043218,0 0.1304688,0.009 0.013047,0.0016 0.039141,0.0041 v -0.405269 h 0.1524854 v 1.316104 H 5.7414403 Z m 0,-0.18021 v -0.390591 q -0.080728,-0.0212 -0.150039,-0.0212 -0.1402539,0 -0.2340284,0.108452 -0.092959,0.108452 -0.092959,0.295186 0,0.135361 0.050557,0.204672 0.051372,0.0685 0.1166064,0.0685 0.070942,0 0.1565625,-0.07176 0.08562,-0.07176 0.1533008,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2210" />
+              <path
+                 d="m 6.3823684,59.604484 -0.027725,-0.02039 q -0.057895,-0.04077 -0.1133447,-0.119868 -0.055449,-0.07991 -0.055449,-0.175317 0,-0.126392 0.099482,-0.215274 0.099482,-0.0897 0.2527832,-0.0897 0.093774,0 0.1687939,0.03425 0.07502,0.03343 0.115791,0.09948 0.040771,0.06605 0.040771,0.144331 0,0.05382 -0.018755,0.104375 -0.018755,0.04974 -0.056265,0.09948 -0.036694,0.04893 -0.1467773,0.138623 l 0.068496,0.05463 q 0.1198682,0.09785 0.1614551,0.168794 0.041587,0.07094 0.041587,0.159009 0,0.136992 -0.099482,0.238105 -0.099482,0.100298 -0.2984472,0.100298 -0.1997803,0 -0.2992627,-0.09377 -0.099482,-0.09459 -0.099482,-0.234029 0,-0.207934 0.26583,-0.393037 z m 0.1557471,-0.07747 q 0.1149756,-0.08725 0.1435156,-0.145962 0.029356,-0.05871 0.029356,-0.109267 0,-0.06116 -0.053818,-0.110899 -0.053818,-0.05056 -0.138623,-0.05056 -0.091328,0 -0.1394385,0.05463 -0.047295,0.05463 -0.047295,0.113344 0,0.05708 0.039956,0.107637 0.039956,0.05056 0.1280225,0.113345 z m -0.041587,0.158194 q -0.2152735,0.165532 -0.2152735,0.309863 0,0.08562 0.070942,0.144331 0.070942,0.05871 0.1679785,0.05871 0.088882,0 0.1590088,-0.05627 0.070127,-0.05626 0.070127,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.084805,-0.0848 -0.1182373,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2212" />
+              <path
+                 d="M 7.8966212,60.286999 H 7.1309328 V 60.14756 q 0,-0.05382 0.022017,-0.114975 0.022017,-0.06197 0.083989,-0.138623 0.061973,-0.07665 0.1312842,-0.147593 l 0.086436,-0.08807 q 0.026094,-0.02691 0.1141602,-0.12476 0.088066,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.065234,-0.125577 -0.065234,-0.04485 -0.1467774,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.1002978,0.02528 -0.043218,0.01386 -0.1402539,0.05789 v -0.134546 q 0.1027441,-0.04893 0.2054883,-0.06686 0.1035595,-0.01875 0.1704248,-0.01875 0.098667,0 0.1810253,0.03262 0.083174,0.0318 0.1231299,0.09948 0.040772,0.06768 0.040772,0.144331 0,0.08562 -0.052188,0.175317 -0.051372,0.0897 -0.1948877,0.230767 l -0.092959,0.09214 -0.078281,0.07665 q -0.074204,0.07502 -0.1198682,0.145146 -0.045664,0.07013 -0.050557,0.167163 h 0.6083105 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2214" />
+              <path
+                 d="m 8.894707,60.226657 q -0.1818408,0.08643 -0.3441113,0.08643 -0.1231299,0 -0.220166,-0.06116 -0.097036,-0.06116 -0.155747,-0.174502 -0.057896,-0.11416 -0.057896,-0.243813 0,-0.124761 0.055449,-0.239736 0.055449,-0.114976 0.1549316,-0.17858 0.099482,-0.06442 0.2217969,-0.06442 0.1622705,0 0.260122,0.115792 0.098667,0.115791 0.098667,0.357158 v 0.03262 H 8.2798731 q 0,0.09459 0.039141,0.172871 0.039956,0.07828 0.104375,0.117422 0.064419,0.03914 0.1467773,0.03914 0.1467774,0 0.324541,-0.09785 z m -0.6058642,-0.48355 h 0.4541943 v -0.02202 q 0,-0.111714 -0.054634,-0.177764 -0.054634,-0.06605 -0.1459619,-0.06605 -0.092143,0 -0.1598242,0.06768 -0.066865,0.06686 -0.093774,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2216" />
+              <path
+                 d="M 9.8993163,60.286999 H 9.1336279 V 60.14756 q 0,-0.05382 0.022017,-0.114975 0.022017,-0.06197 0.083989,-0.138623 0.061973,-0.07665 0.1312842,-0.147593 l 0.086436,-0.08807 q 0.026094,-0.02691 0.1141602,-0.12476 0.088066,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.065234,-0.125577 -0.065234,-0.04485 -0.1467774,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.1002978,0.02528 -0.043218,0.01386 -0.1402539,0.05789 v -0.134546 q 0.1027441,-0.04893 0.2054882,-0.06686 0.1035596,-0.01875 0.1704248,-0.01875 0.098667,0 0.1810254,0.03262 0.083174,0.0318 0.1231299,0.09948 0.040771,0.06768 0.040771,0.144331 0,0.08562 -0.052188,0.175317 -0.051372,0.0897 -0.1948877,0.230767 l -0.092959,0.09214 -0.078281,0.07665 q -0.074204,0.07502 -0.1198682,0.145146 -0.045664,0.07013 -0.050557,0.167163 h 0.6083105 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2218" />
+              <path
+                 d="m 10.738393,60.082326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2220" />
+              <path
+                 d="m 11.477988,60.160607 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 V 59.21797 q 0.178579,-0.07583 0.309863,-0.196518 h 0.15167 v 1.139155 h 0.304155 v 0.126392 h -0.765688 v -0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2222" />
+            </g>
+            <g
+               aria-label="k8s.gcr.io/pause:3.2"
+               id="text242"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 20.207164,60.286999 v -1.316104 h 0.15167 v 0.826846 l 0.437886,-0.421577 h 0.202226 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 l -0.442778,-0.489258 v 0.489258 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2225" />
+              <path
+                 d="m 21.415631,59.604484 -0.02773,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175317 0,-0.126392 0.09948,-0.215274 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238105 -0.09948,0.100298 -0.298447,0.100298 -0.19978,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234029 0,-0.207934 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109267 0,-0.06116 -0.05382,-0.110899 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.0473,0.05463 -0.0473,0.113344 0,0.05708 0.03996,0.107637 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158194 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05627 0.07013,-0.05626 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.0848 -0.118237,-0.110898 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2227" />
+              <path
+                 d="m 22.179688,60.238888 v -0.160639 q 0.09133,0.05953 0.193257,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.10519,-0.04159 q -0.169609,-0.06605 -0.213643,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150855,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.141069,0.05137 0.198149,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174501,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2229" />
+              <path
+                 d="m 23.544718,60.325324 q -0.05463,0 -0.09378,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09378,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2231" />
+              <path
+                 d="m 24.780094,60.082326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149223,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335142,-0.0848 v -0.153301 q 0.06442,0.04403 0.158194,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2233" />
+              <path
+                 d="m 25.939635,60.260905 q -0.152486,0.05137 -0.290293,0.05137 -0.136993,0 -0.243814,-0.06279 -0.106006,-0.0636 -0.165532,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134545,-0.344111 0.135362,-0.136993 0.326172,-0.136993 0.14107,0 0.298448,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156563,0.04159 -0.07339,0.04077 -0.113345,0.128022 -0.03996,0.08725 -0.03996,0.179395 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242182,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2235" />
+              <path
+                 d="m 26.251945,60.286999 v -0.910835 h 0.151669 v 0.198965 q 0.07094,-0.11253 0.162271,-0.167979 0.09214,-0.05627 0.204673,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207935 q -0.03833,-0.0065 -0.06034,-0.0065 -0.08481,0 -0.166348,0.06686 -0.08154,0.06686 -0.159009,0.200596 v 0.529214 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2237" />
+              <path
+                 d="m 27.550108,60.325324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2239" />
+              <path
+                 d="M 28.432403,60.286999 V 59.502555 H 28.17962 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06686,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06686,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2241" />
+              <path
+                 d="m 29.553619,60.312277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117421,0.136177 0.117421,0.344112 0,0.207934 -0.117421,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2243" />
+              <path
+                 d="m 30.22961,60.325324 h -0.149224 l 0.80483,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2245" />
+              <path
+                 d="m 31.32147,59.580837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.17858,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158194 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 H 31.1698 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2247" />
+              <path
+                 d="m 32.78109,60.082326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 H 32.80963 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2249" />
+              <path
+                 d="m 33.933292,59.376164 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179394,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2251" />
+              <path
+                 d="m 34.195861,60.238888 v -0.160639 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172872,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2253" />
+              <path
+                 d="m 35.944142,60.226657 q -0.181841,0.08643 -0.344112,0.08643 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115792 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.48355 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2255" />
+              <path
+                 d="m 36.562237,60.325324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z m 0,-0.708608 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09377,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2257" />
+              <path
+                 d="m 37.181149,60.264167 v -0.159824 q 0.186734,0.09459 0.323726,0.09459 0.125576,0 0.207119,-0.07583 0.08236,-0.07665 0.08236,-0.196518 0,-0.120684 -0.09051,-0.196519 -0.0897,-0.07584 -0.305786,-0.07584 h -0.08399 v -0.126391 h 0.116607 q 0.159009,0 0.229951,-0.07094 0.07094,-0.07176 0.07094,-0.159008 0,-0.0791 -0.0579,-0.132915 -0.0579,-0.05463 -0.177764,-0.05463 -0.134546,0 -0.289477,0.07583 v -0.144331 q 0.154931,-0.0579 0.283769,-0.0579 0.230767,0 0.318018,0.09133 0.08807,0.09051 0.08807,0.207119 0,0.08644 -0.04648,0.162271 -0.04648,0.07583 -0.171241,0.135361 0.110083,0.03262 0.166348,0.07991 0.05626,0.04729 0.0848,0.111714 0.02936,0.06442 0.02936,0.144331 0,0.177764 -0.132099,0.293555 -0.131285,0.115791 -0.340035,0.115791 -0.06034,0 -0.132099,-0.009 -0.07094,-0.009 -0.173687,-0.05219 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2259" />
+              <path
+                 d="m 38.564932,60.325324 q -0.05463,0 -0.09377,-0.03914 -0.03914,-0.03914 -0.03914,-0.09377 0,-0.05545 0.03914,-0.09378 0.03996,-0.03914 0.09377,-0.03914 0.05382,0 0.09296,0.03914 0.03996,0.03833 0.03996,0.09378 0,0.05463 -0.03914,0.09377 -0.03914,0.03914 -0.09378,0.03914 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2261" />
+              <path
+                 d="M 39.952795,60.286999 H 39.187106 V 60.14756 q 0,-0.05382 0.02202,-0.114975 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.12476 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06524,-0.125577 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.05789 v -0.134546 q 0.102745,-0.04893 0.205489,-0.06686 0.103559,-0.01875 0.170424,-0.01875 0.09867,0 0.181026,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175317 -0.05137,0.0897 -0.194888,0.230767 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145146 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2263" />
+            </g>
+            <g
+               aria-label="&quot;/pause&quot;"
+               id="text244"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 44.467176,59.42672 h -0.104375 l -0.05219,-0.455825 h 0.203042 z m 0.35145,0 h -0.103559 l -0.04648,-0.455825 h 0.198965 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2266" />
+              <path
+                 d="m 45.265482,60.325324 h -0.149224 l 0.804829,-1.341382 h 0.144331 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2268" />
+              <path
+                 d="m 46.357342,59.580837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158194 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.15167 v -1.264731 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2270" />
+              <path
+                 d="m 47.816961,60.082326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2272" />
+              <path
+                 d="m 48.969163,59.376164 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163085,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2274" />
+              <path
+                 d="m 49.231732,60.238888 v -0.160639 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172872,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.03669 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135362 0,-0.112529 0.08644,-0.185102 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137807 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02935 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111714 0.05708,0.06034 0.05708,0.150854 0,0.118238 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2276" />
+              <path
+                 d="m 50.980013,60.226657 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115792 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2278" />
+              <path
+                 d="m 51.47661,59.42672 h -0.104375 l -0.05219,-0.455825 h 0.203042 z m 0.35145,0 H 51.7245 l -0.04648,-0.455825 h 0.198965 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2280" />
+            </g>
+            <g
+               aria-label="About"
+               id="text246"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="M 69.323103,60.286999 H 69.16491 l 0.389775,-1.265547 h 0.167163 l 0.392222,1.265547 h -0.173687 l -0.08643,-0.278062 h -0.445225 z m 0.124761,-0.404453 h 0.369389 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2283" />
+              <path
+                 d="m 70.405994,59.580837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158194 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.1533,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2285" />
+              <path
+                 d="m 71.642185,60.312277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.31231,0.136177 0.117421,0.136177 0.117421,0.344112 0,0.207934 -0.117421,0.344926 -0.117422,0.136177 -0.31231,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122314,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2287" />
+              <path
+                 d="m 73.017815,59.376164 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179394,0.05627 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2289" />
+              <path
+                 d="m 74.031394,60.250304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 59.57839 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2291" />
+            </g>
+            <g
+               aria-label="a"
+               id="text248"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 75.874918,60.082326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158193 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140253,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2294" />
+            </g>
+            <g
+               aria-label="minute"
+               id="text250"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 77.211895,60.286999 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183472 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146777 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09378,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.198149 v 0.688223 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06524 -0.04811,0.06442 -0.09867,0.214458 v 0.504751 H 77.59107 v -0.621358 q 0,-0.120683 -0.02365,-0.141884 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.04729,0.07257 -0.09051,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2297" />
+              <path
+                 d="m 78.536968,60.286999 v -0.784444 h -0.252783 v -0.126391 h 0.404453 v 0.784443 h 0.253599 v 0.126392 z m -0.02528,-1.239453 q 0,-0.05137 0.03506,-0.07665 0.03506,-0.02528 0.06605,-0.02528 0.0318,0 0.06687,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07584 -0.03506,0.02528 -0.06687,0.02528 -0.03099,0 -0.06605,-0.02528 -0.03506,-0.02528 -0.03506,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2299" />
+              <path
+                 d="m 79.283086,60.286999 v -0.910835 h 0.15167 v 0.198965 q 0.06524,-0.105191 0.157378,-0.164717 0.09214,-0.05953 0.184287,-0.05953 0.08073,0 0.146778,0.04322 0.06605,0.0424 0.09214,0.111714 0.02691,0.06931 0.02691,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.01305,-0.172871 -0.01223,-0.0424 -0.04648,-0.06931 -0.03343,-0.02691 -0.07339,-0.02691 -0.07991,0 -0.172055,0.07583 -0.09133,0.07583 -0.150855,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2301" />
+              <path
+                 d="m 81.033814,59.376164 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179394,0.05627 -0.07991,0 -0.146778,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.171241,-0.07502 0.09214,-0.07583 0.152485,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2303" />
+              <path
+                 d="m 82.047393,60.250304 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 59.57839 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405269 v 0.126391 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2305" />
+              <path
+                 d="m 83.044663,60.226657 q -0.181841,0.08643 -0.344111,0.08643 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.17858 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115792 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.48355 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2307" />
+            </g>
+            <g
+               aria-label="ago"
+               id="text252"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 84.892916,60.082326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2310" />
+              <path
+                 d="m 85.904049,60.082326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.644189 q 0,0.229951 -0.0065,0.280508 -0.0057,0.05137 -0.01957,0.10356 -0.03262,0.121499 -0.149224,0.191626 -0.115791,0.07013 -0.280508,0.07013 -0.165532,0 -0.335141,-0.0848 v -0.153301 q 0.06442,0.04403 0.158193,0.07747 0.09459,0.03425 0.182656,0.03425 0.06931,0 0.131284,-0.02202 0.06197,-0.02202 0.100298,-0.0636 0.03833,-0.04159 0.05219,-0.09704 0.01386,-0.05463 0.01386,-0.145962 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2312" />
+              <path
+                 d="m 86.672184,60.312277 q -0.195703,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117422,-0.136177 0.313125,-0.136177 0.194888,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117421,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193257,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193257,-0.09459 -0.122315,0 -0.194072,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194072,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2314" />
+            </g>
+            <g
+               aria-label="Up"
+               id="text254"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 90.282744,59.021452 h 0.164717 v 0.830923 q 0,0.163901 0.02691,0.224243 0.02773,0.05953 0.08399,0.09133 0.05708,0.03099 0.126391,0.03099 0.07339,0 0.130469,-0.03343 0.0579,-0.03425 0.08481,-0.106006 0.02772,-0.07257 0.02772,-0.271538 v -0.766504 h 0.15167 v 0.82603 q 0,0.176948 -0.053,0.277246 -0.05219,0.09948 -0.136992,0.150039 -0.08481,0.05056 -0.213642,0.05056 -0.119053,0 -0.209566,-0.04403 -0.09051,-0.04403 -0.136992,-0.1321 -0.04648,-0.08807 -0.04648,-0.318017 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2317" />
+              <path
+                 d="m 91.447993,59.580837 q 0.07013,-0.11416 0.167164,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158194 -0.06116,0.282954 -0.06034,0.123946 -0.161455,0.196519 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353896 h -0.151669 v -1.264731 h 0.151669 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2319" />
+            </g>
+            <g
+               aria-label="About"
+               id="text256"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 93.3711,60.286999 h -0.158194 l 0.389776,-1.265547 h 0.167163 l 0.392221,1.265547 H 93.98838 l -0.08644,-0.278062 H 93.45672 Z m 0.12476,-0.404453 h 0.36939 l -0.152485,-0.480288 -0.03588,-0.127207 -0.0318,0.127207 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2322" />
+              <path
+                 d="m 94.45399,59.580837 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158194 -0.06116,0.282954 -0.06034,0.123946 -0.161456,0.196519 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316104 h 0.15167 z m 0,0.18021 v 0.39059 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136177 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2324" />
+              <path
+                 d="m 95.690182,60.312277 q -0.195704,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344926 0,-0.207935 0.117422,-0.344112 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136177 0.117422,0.344112 0,0.207934 -0.117422,0.344926 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2326" />
+              <path
+                 d="m 97.065812,59.376164 v 0.910835 h -0.15167 v -0.199781 q -0.07339,0.11253 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.11253 -0.02609,-0.07013 -0.02609,-0.272353 v -0.508828 h 0.151669 v 0.527583 q 0,0.131284 0.01223,0.173686 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07583 0.152486,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2328" />
+              <path
+                 d="m 98.079391,60.250304 q -0.106822,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.03669 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 59.57839 h -0.227505 v -0.126391 h 0.227505 v -0.366944 h 0.15167 v 0.366944 h 0.405268 v 0.126391 h -0.405268 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2330" />
+            </g>
+            <g
+               aria-label="a"
+               id="text258"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 99.922915,60.082326 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158193 0.06034,-0.282138 0.06034,-0.124761 0.161455,-0.196519 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 0.643374 q 0,0.164717 0.0343,0.267461 h -0.158195 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.390591 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108452 -0.09296,0.108452 -0.09296,0.295186 0,0.135361 0.05056,0.204672 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2333" />
+            </g>
+            <g
+               aria-label="minute"
+               id="text260"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 101.2599,60.286999 v -0.910835 h 0.13291 v 0.20875 q 0.0628,-0.132915 0.11661,-0.183472 0.0546,-0.05056 0.11008,-0.05056 0.0661,0 0.10601,0.05219 0.0408,0.05137 0.0408,0.146777 v 0.04893 q 0.0269,-0.08317 0.0644,-0.134546 0.0383,-0.05219 0.0791,-0.08236 0.0408,-0.03099 0.0938,-0.03099 0.0587,0 0.1003,0.04974 0.0416,0.04974 0.0416,0.198149 v 0.688223 h -0.13292 v -0.622173 q 0,-0.07665 -0.005,-0.104375 -0.005,-0.02854 -0.0196,-0.04322 -0.0147,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.0913,0.06524 -0.0481,0.06442 -0.0987,0.214458 v 0.504751 h -0.12721 v -0.621358 q 0,-0.120683 -0.0236,-0.141884 -0.0237,-0.0212 -0.0424,-0.0212 -0.0416,0 -0.0897,0.07257 -0.0473,0.07257 -0.0905,0.185918 v 0.525952 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2336" />
+              <path
+                 d="m 102.58497,60.286999 v -0.784444 h -0.25278 v -0.126391 h 0.40445 v 0.784443 h 0.2536 v 0.126392 z m -0.0253,-1.239453 q 0,-0.05137 0.0351,-0.07665 0.0351,-0.02528 0.0661,-0.02528 0.0318,0 0.0669,0.02528 0.0351,0.02528 0.0351,0.07665 0,0.05056 -0.0351,0.07584 -0.0351,0.02528 -0.0669,0.02528 -0.031,0 -0.0661,-0.02528 -0.0351,-0.02528 -0.0351,-0.07584 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2338" />
+              <path
+                 d="m 103.33109,60.286999 v -0.910835 h 0.15167 v 0.198965 q 0.0652,-0.105191 0.15738,-0.164717 0.0921,-0.05953 0.18429,-0.05953 0.0807,0 0.14677,0.04322 0.0661,0.0424 0.0922,0.111714 0.0269,0.06931 0.0269,0.272354 v 0.508828 h -0.15167 v -0.527583 q 0,-0.131284 -0.0131,-0.172871 -0.0122,-0.0424 -0.0465,-0.06931 -0.0334,-0.02691 -0.0734,-0.02691 -0.0799,0 -0.17206,0.07583 -0.0913,0.07583 -0.15085,0.189995 v 0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2340" />
+              <path
+                 d="m 105.08182,59.376164 v 0.910835 h -0.15167 v -0.199781 q -0.0734,0.11253 -0.16309,0.168794 -0.0897,0.05627 -0.17939,0.05627 -0.0799,0 -0.14678,-0.0424 -0.066,-0.04322 -0.0921,-0.11253 -0.0261,-0.07013 -0.0261,-0.272353 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.0122,0.173686 0.0131,0.04159 0.0465,0.0685 0.0343,0.02691 0.0734,0.02691 0.0799,0 0.17124,-0.07502 0.0922,-0.07583 0.15249,-0.19081 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2342" />
+              <path
+                 d="m 106.0954,60.250304 q -0.10682,0.04485 -0.15493,0.053 -0.0481,0.009 -0.093,0.009 -0.0954,0 -0.17451,-0.03669 -0.0791,-0.03669 -0.11986,-0.108452 -0.04,-0.07176 -0.04,-0.221797 V 59.57839 h -0.2275 v -0.126391 h 0.2275 v -0.366944 h 0.15167 v 0.366944 h 0.40527 v 0.126391 h -0.40527 v 0.364497 q 0,0.110083 0.0261,0.155747 0.0261,0.04485 0.0693,0.06605 0.044,0.0212 0.10356,0.0212 0.11008,0 0.23158,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2344" />
+              <path
+                 d="m 107.09267,60.226657 q -0.18184,0.08643 -0.34411,0.08643 -0.12313,0 -0.22017,-0.06116 -0.097,-0.06116 -0.15575,-0.174502 -0.0579,-0.11416 -0.0579,-0.243813 0,-0.124761 0.0554,-0.239736 0.0555,-0.114976 0.15493,-0.17858 0.0995,-0.06442 0.2218,-0.06442 0.16227,0 0.26012,0.115792 0.0987,0.115791 0.0987,0.357158 v 0.03262 h -0.62788 q 0,0.09459 0.0391,0.172871 0.04,0.07828 0.10438,0.117422 0.0644,0.03914 0.14678,0.03914 0.14677,0 0.32454,-0.09785 z m -0.60587,-0.48355 h 0.4542 v -0.02202 q 0,-0.111714 -0.0546,-0.177764 -0.0546,-0.06605 -0.14596,-0.06605 -0.0921,0 -0.15982,0.06768 -0.0669,0.06686 -0.0938,0.198149 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2346" />
+            </g>
+            <g
+               aria-label="k8s_POD_kube-proxy-j6zjq_kube-system_4898167e-ede8-4d2d-a49f-0b2c01155dbe_0"
+               id="text262"
+               class="c"
+               style="white-space:pre;fill:#b9c0cb">
+              <path
+                 d="m 11.189163,62.458 v -1.316103 h 0.15167 v 0.826845 l 0.437886,-0.421577 h 0.202227 l -0.437071,0.421577 0.448487,0.489258 h -0.20875 L 11.340833,61.968742 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2349" />
+              <path
+                 d="m 12.39763,61.775486 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09378,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01876,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238106 -0.09948,0.100297 -0.298447,0.100297 -0.19978,0 -0.299262,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128022,0.113345 z m -0.04159,0.158193 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.08481 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2351" />
+              <path
+                 d="m 13.161688,62.40989 v -0.16064 q 0.09133,0.05953 0.193257,0.08399 0.101928,0.02365 0.172871,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.0473,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2353" />
+              <path
+                 d="M 14.083939,62.584392 V 62.458 h 0.885557 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2355" />
+              <path
+                 d="M 15.335623,61.996467 V 62.458 h -0.164716 v -1.265547 h 0.314755 q 0.194073,0 0.282955,0.04403 0.08888,0.04322 0.136176,0.127207 0.0473,0.08399 0.0473,0.187548 0,0.121499 -0.0636,0.22669 -0.0636,0.10519 -0.177764,0.16227 -0.113345,0.05627 -0.308232,0.05627 z m 0,-0.126392 h 0.07094 q 0.152485,0 0.226689,-0.03914 0.0742,-0.03996 0.11416,-0.11416 0.03996,-0.0742 0.03996,-0.16064 0,-0.109268 -0.07176,-0.172871 -0.07094,-0.0636 -0.281324,-0.0636 h -0.09867 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2357" />
+              <path
+                 d="m 16.529412,62.496325 q -0.215273,0 -0.329433,-0.181025 -0.113345,-0.181841 -0.113345,-0.490073 0,-0.307417 0.113345,-0.488443 0.11416,-0.18184 0.329433,-0.18184 0.216089,0 0.329434,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113345,0.181025 -0.329434,0.181025 z m 0,-0.127207 q 0.119053,0 0.19815,-0.134546 0.07991,-0.135361 0.07991,-0.409345 0,-0.273985 -0.07991,-0.408531 -0.0791,-0.135361 -0.19815,-0.135361 -0.119052,0 -0.198965,0.135361 -0.0791,0.134546 -0.0791,0.408531 0,0.273984 0.0791,0.409345 0.07991,0.134546 0.198965,0.134546 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2359" />
+              <path
+                 d="m 17.156478,62.458 v -1.265547 h 0.300078 q 0.207119,0 0.307417,0.07257 0.101113,0.07176 0.15167,0.217719 0.05056,0.145962 0.05056,0.345742 0,0.18918 -0.05382,0.332696 -0.053,0.1427 -0.150854,0.220166 -0.09785,0.07665 -0.304971,0.07665 z m 0.164717,-0.139438 h 0.110083 q 0.167163,0 0.238105,-0.05953 0.07176,-0.05953 0.101929,-0.164716 0.03099,-0.106006 0.03099,-0.291924 0,-0.181841 -0.03588,-0.279693 -0.03588,-0.09785 -0.102745,-0.150039 -0.06686,-0.053 -0.21935,-0.053 h -0.12313 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2361" />
+              <path
+                 d="M 18.08933,62.584392 V 62.458 h 0.885556 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2363" />
+              <path
+                 d="m 19.199945,62.458 v -1.316103 h 0.15167 v 0.826845 L 19.7895,61.547165 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 19.351615,61.968742 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2365" />
+              <path
+                 d="M 20.909901,61.547165 V 62.458 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152486,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2367" />
+              <path
+                 d="m 21.302122,61.751838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161456,0.196518 -0.101113,0.07176 -0.250336,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2369" />
+              <path
+                 d="m 22.92075,62.397658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2371" />
+              <path
+                 d="m 23.223275,62.008698 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2373" />
+              <path
+                 d="m 24.306166,61.751838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205488,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 v 0.353897 h -0.15167 v -1.264732 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137807,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2375" />
+              <path
+                 d="m 25.244725,62.458 v -0.910835 h 0.15167 v 0.198965 q 0.07094,-0.112529 0.162271,-0.167978 0.09214,-0.05627 0.204672,-0.05627 0.08236,0 0.164717,0.02528 v 0.328618 h -0.145962 v -0.207934 q -0.03833,-0.0065 -0.06034,-0.0065 -0.0848,0 -0.166348,0.06687 -0.08154,0.06686 -0.159009,0.200595 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2377" />
+              <path
+                 d="m 26.543705,62.483279 q -0.195704,0 -0.313125,-0.136177 -0.117422,-0.136992 -0.117422,-0.344927 0,-0.207935 0.117422,-0.344111 0.117421,-0.136177 0.313125,-0.136177 0.194887,0 0.312309,0.136177 0.117422,0.136176 0.117422,0.344111 0,0.207935 -0.117422,0.344927 -0.117422,0.136177 -0.312309,0.136177 z m 0,-0.126392 q 0.121499,0 0.193256,-0.09459 0.07176,-0.09459 0.07176,-0.260122 0,-0.164717 -0.07176,-0.259307 -0.07176,-0.09459 -0.193256,-0.09459 -0.122315,0 -0.194073,0.09459 -0.07176,0.09459 -0.07176,0.259307 0,0.165532 0.07176,0.260122 0.07176,0.09459 0.194073,0.09459 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2379" />
+              <path
+                 d="m 27.264544,62.458 h -0.175317 l 0.357974,-0.477026 -0.334327,-0.433809 h 0.194073 l 0.23729,0.305786 0.230766,-0.305786 h 0.172056 l -0.316387,0.419131 0.375913,0.491704 h -0.194887 l -0.277246,-0.362866 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2381" />
+              <path
+                 d="m 28.506445,62.421306 -0.420762,-0.874141 h 0.167163 l 0.335142,0.68333 0.280507,-0.68333 h 0.152486 L 28.6679,62.393581 q -0.111714,0.268277 -0.212827,0.356343 -0.100298,0.08807 -0.260123,0.08807 -0.06931,0 -0.123945,-0.01223 v -0.133731 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101114 0.0473,-0.07257 0.06686,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2383" />
+              <path
+                 d="m 29.231361,62.008698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2385" />
+              <path
+                 d="m 30.18786,62.815158 v -0.141884 q 0.127207,0.03751 0.214458,0.03751 0.07583,0 0.128838,-0.02691 0.053,-0.02609 0.08236,-0.08888 0.03017,-0.06279 0.03017,-0.218535 v -0.7029 h -0.386514 v -0.126392 h 0.538183 v 0.800752 q 0,0.231582 -0.05463,0.321279 -0.05463,0.09051 -0.1321,0.129654 -0.07747,0.03914 -0.212012,0.03914 -0.09704,0 -0.20875,-0.02283 z m 0.430547,-1.596611 q 0,-0.05137 0.03425,-0.07665 0.03506,-0.02528 0.06687,-0.02528 0.0318,0 0.06605,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03425,0.02528 -0.06605,0.02528 -0.0318,0 -0.06687,-0.02528 -0.03425,-0.02528 -0.03425,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2387" />
+              <path
+                 d="m 31.287059,61.864367 q 0.05871,-0.08725 0.145146,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135362,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114975,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109267,-0.185918 -0.109267,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128023,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.16961,0 -0.262568,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297631,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170424,-0.0742 -0.114976,0 -0.18918,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2389" />
+              <path
+                 d="m 32.158754,62.458 v -0.139438 l 0.558569,-0.645005 h -0.545522 v -0.126392 h 0.746118 v 0.126392 l -0.562647,0.645005 h 0.581402 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2391" />
+              <path
+                 d="m 33.191902,62.815158 v -0.141884 q 0.127207,0.03751 0.214458,0.03751 0.07583,0 0.128838,-0.02691 0.053,-0.02609 0.08236,-0.08888 0.03017,-0.06279 0.03017,-0.218535 v -0.7029 h -0.386513 v -0.126392 h 0.538183 v 0.800752 q 0,0.231582 -0.05463,0.321279 -0.05463,0.09051 -0.132099,0.129654 -0.07747,0.03914 -0.212012,0.03914 -0.09704,0 -0.20875,-0.02283 z m 0.430547,-1.596611 q 0,-0.05137 0.03425,-0.07665 0.03506,-0.02528 0.06686,-0.02528 0.0318,0 0.06605,0.02528 0.03506,0.02528 0.03506,0.07665 0,0.05056 -0.03506,0.07583 -0.03425,0.02528 -0.06605,0.02528 -0.0318,0 -0.06686,-0.02528 -0.03425,-0.02528 -0.03425,-0.07583 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2393" />
+              <path
+                 d="m 34.787699,62.253327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.114161,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152485 v 1.264732 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2395" />
+              <path
+                 d="M 35.112241,62.584392 V 62.458 h 0.885556 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2397" />
+              <path
+                 d="m 36.222855,62.458 v -1.316103 h 0.15167 v 0.826845 l 0.437885,-0.421577 h 0.202227 l -0.43707,0.421577 0.448486,0.489258 h -0.20875 L 36.374525,61.968742 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2399" />
+              <path
+                 d="M 37.932812,61.547165 V 62.458 h -0.15167 v -0.19978 q -0.07339,0.112529 -0.163086,0.168794 -0.0897,0.05627 -0.179395,0.05627 -0.07991,0 -0.146777,-0.0424 -0.06605,-0.04322 -0.09214,-0.112529 -0.02609,-0.07013 -0.02609,-0.272354 v -0.508828 h 0.15167 v 0.527583 q 0,0.131284 0.01223,0.173687 0.01305,0.04159 0.04648,0.0685 0.03425,0.02691 0.07339,0.02691 0.07991,0 0.17124,-0.07502 0.09214,-0.07584 0.152486,-0.190811 v -0.530845 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2401" />
+              <path
+                 d="m 38.325032,61.751838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.114161,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101114,0.07176 -0.250337,0.07176 -0.0424,0 -0.130469,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116606,-0.0685 -0.07094,0 -0.156563,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2403" />
+              <path
+                 d="m 39.943661,62.397658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2405" />
+              <path
+                 d="m 40.246184,62.008698 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2407" />
+              <path
+                 d="m 41.199423,62.40989 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172871,0.02365 0.114976,0 0.165533,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08643,-0.185103 0.08725,-0.07257 0.282139,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2409" />
+              <path
+                 d="m 42.52531,62.421306 -0.420762,-0.874141 h 0.167164 l 0.335141,0.68333 0.280508,-0.68333 h 0.152485 l -0.353081,0.846416 q -0.111714,0.268277 -0.212827,0.356343 -0.100298,0.08807 -0.260122,0.08807 -0.06931,0 -0.123945,-0.01223 v -0.133731 q 0.06279,0.01957 0.119868,0.01957 0.07339,0 0.130469,-0.02854 0.05708,-0.02854 0.104375,-0.101114 0.04729,-0.07257 0.06686,-0.125576 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2411" />
+              <path
+                 d="m 43.202118,62.40989 v -0.16064 q 0.09133,0.05953 0.193256,0.08399 0.101929,0.02365 0.172872,0.02365 0.114975,0 0.165532,-0.03669 0.05056,-0.03751 0.05056,-0.09296 0,-0.0367 -0.02365,-0.06279 -0.02365,-0.02609 -0.117422,-0.06442 l -0.05219,-0.0212 -0.105191,-0.04159 q -0.169609,-0.06605 -0.213642,-0.122314 -0.04485,-0.05545 -0.04485,-0.135361 0,-0.11253 0.08644,-0.185103 0.08725,-0.07257 0.282138,-0.07257 0.145962,0 0.276431,0.0424 v 0.137808 q -0.150039,-0.05382 -0.282139,-0.05382 -0.09622,0 -0.150854,0.03425 -0.05382,0.03343 -0.05382,0.08399 0,0.04893 0.04729,0.07828 0.04648,0.02936 0.15167,0.06768 l 0.102744,0.03751 q 0.14107,0.05137 0.19815,0.111713 0.05708,0.06034 0.05708,0.150855 0,0.118237 -0.09133,0.194888 -0.09051,0.07584 -0.290293,0.07584 -0.174502,0 -0.358789,-0.07339 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2413" />
+              <path
+                 d="m 44.954475,62.421306 q -0.106821,0.04485 -0.154932,0.053 -0.04811,0.009 -0.09296,0.009 -0.0954,0 -0.174502,-0.0367 -0.0791,-0.03669 -0.119868,-0.108452 -0.03996,-0.07176 -0.03996,-0.221797 V 61.749392 H 44.144753 V 61.623 h 0.227505 v -0.366943 h 0.15167 V 61.623 h 0.405269 v 0.126392 h -0.405269 v 0.364497 q 0,0.110083 0.02609,0.155747 0.02609,0.04485 0.06931,0.06605 0.04403,0.0212 0.10356,0.0212 0.110083,0 0.231582,-0.06931 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2415" />
+              <path
+                 d="m 45.951748,62.397658 q -0.181841,0.08644 -0.344111,0.08644 -0.12313,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154931,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.162271,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146777,0.03914 0.146778,0 0.324541,-0.09785 z m -0.605864,-0.483549 h 0.454194 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159825,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2417" />
+              <path
+                 d="m 46.127065,62.458 v -0.910835 h 0.132915 v 0.20875 q 0.06279,-0.132915 0.116606,-0.183471 0.05463,-0.05056 0.110083,-0.05056 0.06605,0 0.106006,0.05219 0.04077,0.05137 0.04077,0.146778 v 0.04893 q 0.02691,-0.08317 0.06442,-0.134546 0.03833,-0.05219 0.0791,-0.08236 0.04077,-0.03099 0.09377,-0.03099 0.05871,0 0.100298,0.04974 0.04159,0.04974 0.04159,0.19815 V 62.458 h -0.132915 v -0.622173 q 0,-0.07665 -0.0049,-0.104375 -0.0049,-0.02854 -0.01957,-0.04322 -0.01468,-0.01468 -0.0318,-0.01468 -0.0424,0 -0.09133,0.06523 -0.04811,0.06442 -0.09867,0.214458 V 62.458 h -0.127207 v -0.621357 q 0,-0.120684 -0.02365,-0.141885 -0.02365,-0.0212 -0.0424,-0.0212 -0.04159,0 -0.0897,0.07257 -0.0473,0.07257 -0.09051,0.185918 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2419" />
+              <path
+                 d="M 47.128411,62.584392 V 62.458 h 0.885557 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2421" />
+              <path
+                 d="m 48.648371,62.458 v -0.353896 h -0.537368 v -0.127207 l 0.537368,-0.784444 h 0.152485 v 0.784444 h 0.234029 v 0.127207 H 48.800856 V 62.458 Z m 0,-0.481103 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2423" />
+              <path
+                 d="M 49.447495,61.775486 49.41977,61.7551 q -0.0579,-0.04077 -0.113344,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238106 -0.09948,0.100297 -0.298447,0.100297 -0.19978,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.08481 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2425" />
+              <path
+                 d="m 50.837801,61.786086 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.19081,0.05463 -0.09867,0 -0.187549,-0.0473 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08643 -0.04648,-0.200595 0,-0.179395 0.114975,-0.31231 0.115791,-0.13373 0.304156,-0.13373 0.221796,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183471 -0.377544,0.183471 -0.128023,0 -0.248706,-0.03833 v -0.152485 q 0.135361,0.0636 0.255229,0.0636 0.169609,0 0.262568,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z M 50.54017,61.281335 q -0.06116,0 -0.12313,0.0367 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188364,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164716,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2427" />
+              <path
+                 d="m 51.450188,61.775486 -0.02772,-0.02039 q -0.0579,-0.04077 -0.113344,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05627,0.09948 -0.03669,0.04893 -0.146777,0.138623 l 0.0685,0.05463 q 0.119868,0.09785 0.161455,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238106 -0.09948,0.100297 -0.298447,0.100297 -0.19978,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114976,-0.08725 0.143516,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215273,0.165532 -0.215273,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167979,0.05871 0.08888,0 0.159008,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.0848,-0.08481 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2429" />
+              <path
+                 d="m 52.54042,62.331609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 V 62.458 h -0.765688 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2431" />
+              <path
+                 d="m 53.316708,61.864367 q 0.05871,-0.08725 0.145147,-0.141884 0.08725,-0.05545 0.191626,-0.05545 0.09867,0 0.186733,0.04811 0.08888,0.04811 0.135361,0.134546 0.04648,0.08562 0.04648,0.19978 0,0.18021 -0.115791,0.31394 -0.114976,0.132915 -0.30334,0.132915 -0.221797,0 -0.33188,-0.185102 -0.109267,-0.185918 -0.109267,-0.472134 0,-0.316387 0.139438,-0.499858 0.139439,-0.184287 0.377544,-0.184287 0.128022,0 0.248706,0.03751 v 0.153301 q -0.135361,-0.06442 -0.255229,-0.06442 -0.16961,0 -0.262569,0.155747 -0.09296,0.155747 -0.09296,0.394668 z m 0.297632,0.505567 q 0.06116,0 0.12313,-0.03588 0.06197,-0.03669 0.09704,-0.111714 0.03588,-0.07583 0.03588,-0.164717 0,-0.115791 -0.06034,-0.189995 -0.05953,-0.0742 -0.170425,-0.0742 -0.114975,0 -0.189179,0.08644 -0.07339,0.08562 -0.07339,0.20875 0,0.123945 0.07176,0.203042 0.07257,0.07828 0.165532,0.07828 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2433" />
+              <path
+                 d="m 54.340071,62.458 v -0.113345 q 0,-0.132915 0.03017,-0.223427 0.03017,-0.09051 0.106006,-0.201411 0.07584,-0.110899 0.121499,-0.171241 l 0.1321,-0.174502 0.04729,-0.06116 q 0.05382,-0.07257 0.09296,-0.167978 H 54.21368 v -0.152486 h 0.803198 v 0.101114 q 0,0.06034 -0.02446,0.111713 -0.02365,0.05137 -0.145146,0.219351 -0.02936,0.03996 -0.0579,0.07991 l -0.0848,0.119053 q -0.08154,0.114975 -0.120684,0.183472 -0.03914,0.0685 -0.05953,0.1427 -0.01957,0.0742 -0.01957,0.194887 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2435" />
+              <path
+                 d="m 55.965222,62.397658 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.05789,-0.11416 -0.05789,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2437" />
+              <path
+                 d="m 56.267749,62.008698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2439" />
+              <path
+                 d="m 57.967919,62.397658 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2441" />
+              <path
+                 d="m 58.820042,62.253327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.17858,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101114,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 V 62.458 h -0.152485 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234029,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2443" />
+              <path
+                 d="m 59.970616,62.397658 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09378,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2445" />
+              <path
+                 d="m 60.462319,61.775486 -0.02773,-0.02039 q -0.05789,-0.04077 -0.113345,-0.119868 -0.05545,-0.07991 -0.05545,-0.175318 0,-0.126391 0.09948,-0.215273 0.09948,-0.0897 0.252783,-0.0897 0.09377,0 0.168794,0.03425 0.07502,0.03343 0.115791,0.09948 0.04077,0.06605 0.04077,0.144331 0,0.05382 -0.01875,0.104375 -0.01875,0.04974 -0.05626,0.09948 -0.0367,0.04893 -0.146778,0.138623 l 0.0685,0.05463 q 0.119869,0.09785 0.161456,0.168794 0.04159,0.07094 0.04159,0.159009 0,0.136992 -0.09948,0.238106 -0.09948,0.100297 -0.298447,0.100297 -0.19978,0 -0.299263,-0.09377 -0.09948,-0.09459 -0.09948,-0.234028 0,-0.207935 0.26583,-0.393037 z m 0.155747,-0.07747 q 0.114975,-0.08725 0.143515,-0.145962 0.02936,-0.05871 0.02936,-0.109268 0,-0.06116 -0.05382,-0.110898 -0.05382,-0.05056 -0.138623,-0.05056 -0.09133,0 -0.139439,0.05463 -0.04729,0.05463 -0.04729,0.113345 0,0.05708 0.03996,0.107636 0.03996,0.05056 0.128023,0.113345 z m -0.04159,0.158193 q -0.215274,0.165532 -0.215274,0.309863 0,0.08562 0.07094,0.144331 0.07094,0.05871 0.167978,0.05871 0.08888,0 0.159009,-0.05626 0.07013,-0.05627 0.07013,-0.140254 0,-0.08236 -0.08562,-0.167163 -0.08481,-0.08481 -0.118237,-0.110899 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2447" />
+              <path
+                 d="m 61.274486,62.008698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2449" />
+              <path
+                 d="M 62.667238,62.458 V 62.104104 H 62.12987 v -0.127207 l 0.537368,-0.784444 h 0.152486 v 0.784444 h 0.234028 v 0.127207 H 62.819724 V 62.458 Z m 0,-0.481103 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2451" />
+              <path
+                 d="m 63.826782,62.253327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152486 V 62.458 h -0.152486 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2453" />
+              <path
+                 d="m 64.980614,62.458 h -0.765688 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08643,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06524,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102744,-0.04893 0.205488,-0.06687 0.10356,-0.01875 0.170425,-0.01875 0.09867,0 0.181026,0.03262 0.08317,0.0318 0.123129,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194887,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.60831 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2455" />
+              <path
+                 d="m 65.829475,62.253327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152486 V 62.458 h -0.152486 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156563,-0.07176 0.08562,-0.07176 0.1533,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2457" />
+              <path
+                 d="m 66.281222,62.008698 v -0.126391 h 0.632774 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2459" />
+              <path
+                 d="m 67.822387,62.253327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205488,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130469,0.009 0.01305,0.0016 0.03914,0.0041 h 0.152486 v 0.643374 q 0,0.164717 0.03425,0.267461 h -0.158194 q -0.01794,-0.07502 -0.02854,-0.204673 z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116606,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2461" />
+              <path
+                 d="m 68.675326,62.458 v -0.353896 h -0.537369 v -0.127207 l 0.537369,-0.784444 h 0.152485 v 0.784444 h 0.234028 v 0.127207 H 68.827811 V 62.458 Z m 0,-0.481103 v -0.554492 l -0.375913,0.554492 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2463" />
+              <path
+                 d="m 69.863406,61.786086 q -0.05871,0.08725 -0.145962,0.1427 -0.08644,0.05463 -0.190811,0.05463 -0.09867,0 -0.187549,-0.0473 -0.08807,-0.04811 -0.134546,-0.134546 -0.04648,-0.08643 -0.04648,-0.200595 0,-0.179395 0.114976,-0.31231 0.115791,-0.13373 0.304155,-0.13373 0.221797,0 0.331064,0.185918 0.110083,0.185102 0.110083,0.471318 0,0.316387 -0.139438,0.500674 -0.139439,0.183471 -0.377544,0.183471 -0.128023,0 -0.248706,-0.03833 v -0.152485 q 0.135361,0.0636 0.255229,0.0636 0.16961,0 0.262569,-0.155747 0.09296,-0.155747 0.09296,-0.394668 z m -0.297632,-0.504751 q -0.06116,0 -0.12313,0.0367 -0.06197,0.03588 -0.09785,0.110898 -0.03506,0.07502 -0.03506,0.164717 0,0.114975 0.05953,0.189179 0.06034,0.0742 0.17124,0.0742 0.114976,0 0.188365,-0.08562 0.0742,-0.08644 0.0742,-0.20875 0,-0.123945 -0.07257,-0.202226 -0.07176,-0.0791 -0.164717,-0.0791 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2465" />
+              <path
+                 d="M 70.439917,62.458 V 61.749392 H 70.237691 V 61.623 h 0.202226 v -0.0424 q 0,-0.18021 0.04077,-0.266646 0.04077,-0.08644 0.125576,-0.141884 0.08562,-0.05545 0.225874,-0.05545 0.106006,0 0.215273,0.02202 v 0.144331 q -0.118237,-0.03914 -0.209565,-0.03914 -0.07257,0 -0.128023,0.02691 -0.05545,0.02691 -0.08725,0.08807 -0.03099,0.06034 -0.03099,0.205488 V 61.623 h 0.361235 v 0.126392 H 70.591587 V 62.458 Z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2467" />
+              <path
+                 d="m 71.287963,62.008698 v -0.126391 h 0.632773 v 0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2469" />
+              <path
+                 d="m 72.604881,61.154944 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113344,-0.181841 -0.113344,-0.490073 0,-0.307417 0.113344,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2471" />
+              <path
+                 d="m 73.372199,61.751838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.0848,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2473" />
+              <path
+                 d="m 74.994092,62.458 h -0.765689 v -0.139438 q 0,-0.05382 0.02202,-0.114976 0.02202,-0.06197 0.08399,-0.138623 0.06197,-0.07665 0.131284,-0.147593 l 0.08644,-0.08807 q 0.02609,-0.02691 0.11416,-0.124761 0.08807,-0.09785 0.115791,-0.150039 0.02854,-0.05219 0.02854,-0.102744 0,-0.08154 -0.06524,-0.125576 -0.06523,-0.04485 -0.146777,-0.04485 -0.04648,0 -0.104375,0.0106 -0.05708,0.0106 -0.100298,0.02528 -0.04322,0.01386 -0.140254,0.0579 v -0.134546 q 0.102745,-0.04893 0.205489,-0.06687 0.103559,-0.01875 0.170424,-0.01875 0.09867,0 0.181026,0.03262 0.08317,0.0318 0.12313,0.09948 0.04077,0.06768 0.04077,0.144331 0,0.08562 -0.05219,0.175318 -0.05137,0.0897 -0.194888,0.230766 l -0.09296,0.09214 -0.07828,0.07665 q -0.0742,0.07502 -0.119868,0.145147 -0.04566,0.07013 -0.05056,0.167163 h 0.608311 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2475" />
+              <path
+                 d="m 76.001146,62.431906 q -0.152485,0.05137 -0.290293,0.05137 -0.136992,0 -0.243813,-0.06279 -0.106006,-0.0636 -0.165533,-0.17124 -0.05953,-0.108452 -0.05953,-0.24626 0,-0.207119 0.134546,-0.344111 0.135361,-0.136992 0.326172,-0.136992 0.141069,0 0.298447,0.053 v 0.145962 q -0.159009,-0.07257 -0.284585,-0.07257 -0.08317,0 -0.156562,0.04159 -0.07339,0.04077 -0.113345,0.128023 -0.03996,0.08725 -0.03996,0.179394 0,0.12313 0.07665,0.234844 0.07747,0.111714 0.242183,0.111714 0.04974,0 0.09785,-0.0065 0.04811,-0.0073 0.177764,-0.05137 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2477" />
+              <path
+                 d="m 76.610275,61.154944 q 0.216089,0 0.329433,0.18184 0.113345,0.181026 0.113345,0.488443 0,0.308232 -0.113345,0.490073 -0.113344,0.181025 -0.329433,0.181025 -0.215274,0 -0.329434,-0.181025 -0.113344,-0.181841 -0.113344,-0.490073 0,-0.307417 0.113344,-0.488443 0.11416,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02773,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101928,0.02936 0.154932,0 0.220166,-0.172871 0.06524,-0.173687 0.06524,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2479" />
+              <path
+                 d="m 77.574108,62.331609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 V 62.458 h -0.765688 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2481" />
+              <path
+                 d="m 78.575458,62.331609 v -0.976885 q -0.0685,0.05463 -0.132915,0.09296 -0.06442,0.03833 -0.176948,0.07828 v -0.136992 q 0.178579,-0.07584 0.309863,-0.196519 h 0.15167 v 1.139156 h 0.304155 V 62.458 h -0.765688 v -0.126391 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2483" />
+              <path
+                 d="m 79.266945,61.799948 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309864 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147593,0.11416 0.147593,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167978,0.152486 -0.108453,0.05463 -0.230767,0.05463 -0.122314,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154932,0.06197 0.08562,0.02365 0.158193,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107637,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.105191,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2485" />
+              <path
+                 d="m 80.268288,61.799948 v -0.607495 h 0.708609 v 0.145962 h -0.556939 v 0.309864 h 0.02609 q 0.273169,0 0.420762,0.11416 0.147592,0.11416 0.147592,0.307417 0,0.122314 -0.05953,0.21935 -0.05953,0.09704 -0.167979,0.152486 -0.108452,0.05463 -0.230766,0.05463 -0.122315,0 -0.313125,-0.05953 v -0.165532 q 0.06931,0.03751 0.154931,0.06197 0.08562,0.02365 0.158194,0.02365 0.07257,0 0.141885,-0.03506 0.06931,-0.03506 0.107636,-0.101928 0.03833,-0.06768 0.03833,-0.137808 0,-0.118237 -0.10519,-0.19978 -0.104375,-0.08236 -0.371836,-0.08236 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2487" />
+              <path
+                 d="m 81.85104,62.253327 q -0.06931,0.11416 -0.167163,0.172056 -0.09704,0.0579 -0.178579,0.0579 -0.11416,0 -0.205489,-0.09867 -0.09051,-0.09867 -0.09051,-0.299263 0,-0.158194 0.06034,-0.282139 0.06034,-0.124761 0.161455,-0.196518 0.101113,-0.07257 0.250337,-0.07257 0.04322,0 0.130468,0.009 0.01305,0.0016 0.03914,0.0041 v -0.405268 h 0.152485 V 62.458 H 81.85104 Z m 0,-0.18021 v -0.39059 q -0.08073,-0.0212 -0.150039,-0.0212 -0.140254,0 -0.234028,0.108453 -0.09296,0.108452 -0.09296,0.295185 0,0.135361 0.05056,0.204673 0.05137,0.0685 0.116607,0.0685 0.07094,0 0.156562,-0.07176 0.08562,-0.07176 0.153301,-0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2489" />
+              <path
+                 d="m 82.384326,61.751838 q 0.07013,-0.11416 0.167163,-0.172056 0.09704,-0.0579 0.178579,-0.0579 0.11416,0 0.205489,0.09867 0.09133,0.09867 0.09133,0.299263 0,0.158193 -0.06116,0.282954 -0.06034,0.123945 -0.161455,0.196518 -0.101113,0.07176 -0.250337,0.07176 -0.0424,0 -0.130468,-0.009 -0.01305,-0.0016 -0.03914,-0.0041 h -0.15167 v -1.316103 h 0.15167 z m 0,0.18021 v 0.390591 q 0.08236,0.0212 0.15167,0.0212 0.137808,0 0.231582,-0.107637 0.09459,-0.108452 0.09459,-0.296001 0,-0.136176 -0.05137,-0.204673 -0.05137,-0.0685 -0.116607,-0.0685 -0.07094,0 -0.156562,0.07176 -0.08481,0.07176 -0.153301,0.193257 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2491" />
+              <path
+                 d="m 84.002957,62.397658 q -0.181841,0.08644 -0.344112,0.08644 -0.123129,0 -0.220166,-0.06116 -0.09704,-0.06116 -0.155747,-0.174502 -0.0579,-0.11416 -0.0579,-0.243814 0,-0.12476 0.05545,-0.239736 0.05545,-0.114976 0.154932,-0.178579 0.09948,-0.06442 0.221797,-0.06442 0.16227,0 0.260122,0.115791 0.09867,0.115791 0.09867,0.357158 v 0.03262 h -0.627881 q 0,0.09459 0.03914,0.172871 0.03996,0.07828 0.104375,0.117422 0.06442,0.03914 0.146778,0.03914 0.146777,0 0.324541,-0.09785 z m -0.605865,-0.483549 h 0.454195 v -0.02202 q 0,-0.111714 -0.05463,-0.177764 -0.05463,-0.06605 -0.145962,-0.06605 -0.09214,0 -0.159824,0.06768 -0.06686,0.06686 -0.09377,0.19815 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2493" />
+              <path
+                 d="M 84.178277,62.584392 V 62.458 h 0.885556 v 0.126392 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2495" />
+              <path
+                 d="m 85.622398,61.154944 q 0.216089,0 0.329434,0.18184 0.113344,0.181026 0.113344,0.488443 0,0.308232 -0.113344,0.490073 -0.113345,0.181025 -0.329434,0.181025 -0.215273,0 -0.329434,-0.181025 -0.113344,-0.181841 -0.113344,-0.490073 0,-0.307417 0.113344,-0.488443 0.114161,-0.18184 0.329434,-0.18184 z m -0.247075,0.941005 0.437885,-0.685776 q -0.04159,-0.07583 -0.09051,-0.101929 -0.04811,-0.02691 -0.100298,-0.02691 -0.136177,0 -0.207119,0.15167 -0.07094,0.150855 -0.07094,0.383252 0,0.053 0.0033,0.11416 0.0033,0.06116 0.02772,0.165532 z m 0.492519,-0.534921 -0.434624,0.689853 q 0.03506,0.05953 0.08073,0.0897 0.04566,0.02936 0.101929,0.02936 0.154931,0 0.220166,-0.172871 0.06523,-0.173687 0.06523,-0.384883 0,-0.130469 -0.03343,-0.251152 z"
+                 style="white-space:pre;fill:#b9c0cb"
+                 id="path2497" />
+            </g>
+            <g
+               id="use264"
+               transform="translate(0,62.959)">
+              <g
+                 id="text554"
+                 class="c"
+                 style="white-space:pre;fill:#b9c0cb" />
+            </g>
+          </svg>
+        </svg>
+      </g>
+    </svg>
+  </g>
+</svg>
diff --git a/static/images/blog/2022-05-03-kubernetes-release-1.24/kubernetes-1.24.png b/static/images/blog/2022-05-03-kubernetes-release-1.24/kubernetes-1.24.png
new file mode 100644
index 0000000000..f7a966a786
Binary files /dev/null and b/static/images/blog/2022-05-03-kubernetes-release-1.24/kubernetes-1.24.png differ
diff --git a/static/images/community/discuss.png b/static/images/community/discuss.png
index 9e83b8ee53..41cb139b57 100644
Binary files a/static/images/community/discuss.png and b/static/images/community/discuss.png differ
diff --git a/static/images/community/kubernetes-community-column.png b/static/images/community/kubernetes-community-column.png
new file mode 100644
index 0000000000..f7b4b692fd
Binary files /dev/null and b/static/images/community/kubernetes-community-column.png differ
diff --git a/static/images/community/serverfault.png b/static/images/community/serverfault.png
new file mode 100644
index 0000000000..3892daa7aa
Binary files /dev/null and b/static/images/community/serverfault.png differ
diff --git a/static/images/community/slack.png b/static/images/community/slack.png
index c408648bc0..c4386e9075 100644
Binary files a/static/images/community/slack.png and b/static/images/community/slack.png differ
diff --git a/static/images/community/stack.png b/static/images/community/stack.png
index 08e2aff1d7..550440c5d5 100644
Binary files a/static/images/community/stack.png and b/static/images/community/stack.png differ
diff --git a/static/images/community/twitter.png b/static/images/community/twitter.png
index 339ed1b015..0e5a443c0a 100644
Binary files a/static/images/community/twitter.png and b/static/images/community/twitter.png differ
diff --git a/static/images/docs/4c.png b/static/images/docs/4c.png
index 100a156742..1f4d7127c2 100644
Binary files a/static/images/docs/4c.png and b/static/images/docs/4c.png differ
diff --git a/static/images/docs/4c.svg b/static/images/docs/4c.svg
new file mode 100644
index 0000000000..dfbaccfade
--- /dev/null
+++ b/static/images/docs/4c.svg
@@ -0,0 +1,888 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
+<svg version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" width="1720px" height="992px" viewBox="0 0 1720 992" enable-background="new 0 0 1720 992" xml:space="preserve">  <image id="image0" width="1720" height="992" x="0" y="0"
+    href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAABrgAAAPgCAIAAADm0evUAAAABGdBTUEAALGPC/xhBQAAACBjSFJN
+AAB6JgAAgIQAAPoAAACA6AAAdTAAAOpgAAA6mAAAF3CculE8AAAABmJLR0QA/wD/AP+gvaeTAAAA
+CXBIWXMAABibAAAYmwFJdYOUAACAAElEQVR42uzdeZiVdd0/8O8swDCDA4wzCEIIiUAko4GGCKEm
+GaJmGuoDVmY+lhuWGQ9lpunPLDOz3J+sLDce98yNzCWVRVQsQRFQYhFkgHGAgRlm4MzM74+jh8Ns
+zAb3LK/X1fVc9znnXj73Ofhc8vbzvT8pVVVVAQAAAADo2FKjLgAAAAAAiJ6gEAAAAAAQFAIAAAAA
+gkIAAAAAIAgKAQAAAIAgKAQAAAAAgqAQAAAAAAiCQgAAAAAgCAoBAAAAgCAoBAAAAACCoBAAAAAA
+CIJCAAAAACAICgEAAACAICgEAAAAAIKgEAAAAAAIgkIAAAAAIAgKAQAAAIAgKAQAAAAAgqAQAAAA
+AAiCQgAAAAAgCAoBAAAAgCAoBAAAAACCoBAAAAAACIJCAAAAACAICgEAAACAICgEAAAAAIKgEAAA
+AAAIgkIAAAAAIAgKAQAAAIAgKAQAAAAAgqAQAAAAAAiCQgAAAAAgCAoBAAAAgCAoBAAAAACCoBAA
+AAAACIJCAAAAACAICgEAAACAICgEAAAAAEII6ZFcNSUlJeobBwAAAIBWqqqqau9fVEchAAAAABBR
+R2FcbNYRUd8+AAAAALQi6WNfjerSOgoBAAAAAEEhAAAAACAoBAAAAACCoBAAAAAACIJCAAAAACAI
+CgEAAACAICgEAAAAAIKgEAAAAAAIgkIAAAAAIAgKAQAAAIAgKAQAAAAAgqAQAAAAAAiCQgAAAAAg
+CAoBAAAAgCAoBAAAAACCoBAAAAAACIJCAAAAACAICgEAAACAICgEAAAAAIKgEAAAAAAIgkIAAAAA
+IAgKAQAAAIAgKAQAAAAAgqAQAAAAAAiCQgAAAAAgCAoBAAAAgCAoBAAAAACCoBAAAAAACIJCAAAA
+ACAICgEAAACAICgEAAAAAIKgEAAAAAAIgkIAAAAAIAgKAQAAAIAgKAQAAAAAgqAQAAAAAAiCQgAA
+AAAgCAoBAAAAgCAoBAAAAACCoBAAAAAACIJCAAAAACAICgEAAACAICgEAAAAAIKgEAAAAAAIgkIA
+AAAAIAgKAQAAAIAgKAQAAAAAgqAQAAAAAAiCQgAAAAAgCAoBAAAAgCAoBAAAAACCoBAAAAAACIJC
+AAAAACAICgEAAACAICgEAAAAAIKgEAAAAAAIgkIAAAAAIISQHnUBHcuGjTteX7x1/uKSxSu3PfDc
+R1GXAwAAANC67JfT6egR2UMP6DpyaNbhQ7vl9ewUdUUdiKBwb1i4rPSPT6x/6IWP1hXtiLoWAAAA
+gNZrXdGO5Oaq4Qdmnnp0znlf3U9iuBekVFVVRXDVlJQQQmzWEVHf/p4Vi1U99MJHP7xlZXI+2Ds3
+8/QTB486tM8Bfffp27tb1DUCAAAAtCJrCrauXLPlyef/8+LcDwoKSxPvDz8w85ZLB47J3yfqAve4
+9LGvhhCiiewEhXvIjGcLkyPC8WP6X3LOiMPz98vbNzPq0gAAAADagA0flT7w5NI7/2/hgsWF8XeG
+H5h59xWDhh/YntMVQWG7MnvBlotuWL5w2ceZ91XfH33puSOzMvXHAgAAADTFitWbL/vV7BlPLIm/
+PGP8vj//7qcG9MmIuq49QlDYTsRiVSf88N3n3yiOvxQRAgAAALSUanHhlef0++nZ/aIuquUJCtuD
+DRt3HHrWgvha48knDbn2f8YM6Nc96qIAAAAA2pXZb6y54KcvxBcjH3tY9lO//kx6ekrURbWkCIPC
+1KjvvZ2YvWBLIiWc9dDp9980UUoIAAAA0OLGHNb3rWe+cdX3R4cQnn+j+PBzFm7YuKPZZyUEQWGL
+uPXhgqMueGdd0Y7euZnr3/jumMP6Rl0RAAAAQHt2xfeOeOpPXw0hLFxWeuhZC2Yv2BJ1Re2BoLC5
+bn244Hu/XRFCGD+m//svfdtQYwAAAIC9YOIxA5e/8u3euZnrinYcdcE7ibmyNJmgsFlmL9gSTwkn
+nzTkmT+fYm4JAAAAwF4zoF/391/69vgx/UMIEy551xrkZhIUNt2GjTtOv3xpCGH8mP53/2ZCerov
+EwAAAGCvysrsdP/vjo/3FR561oJYLIIZIO2GbKuJYrGq+PSS3rmZf/39V6SEAAAAAJHI2zdz7mP/
+FUJYV7TjhB++KytsMvFWE53ww3fjM44XzPyGFccAAAAAERrQr/ush04PITz/RvEv7lkTdTltlaCw
+KWYv2PL8G8UhhFkPnW56CQAAAEDkxhzW96rvjw4hXPXH1SvWlkVdTpskKGyKi25YHkKYfNKQMYf1
+jboWAAAAAEII4YrvHREfbHLKj5ZagNwEgsJGm/FsYXze9rX/MybqWgAAAADY6c5fjg8hLFxW+tAL
+H0VdS9sjKGycWKzqh7esDCFc9f3RA/p1j7ocAAAAAHYa0K97fAHyD29ZqamwsQSFjfPQCx/FZ5hc
+eu7IqGsBAAAAoLp4aLOuaIemwsYSFDZOop3QpGMAAACAVigrs1O8qfBX930YdS1tjKCwERYuK9VO
+CAAAANDKnf/1/BDCwmWlxh83iqCwEf74xPoQwvgx/bUTAgAAALRaeftm5g/NDSHcM7Mw6lraEkFh
+I8RXtl9yzoioCwEAAACgPtPPOzyEcMdj66IupC0RFDbUho074uuOD8/fL+paAAAAAKjPl8b2DyGs
+K9qxYeOOqGtpMwSFDfX64q0hhN65mXn7ZkZdCwAAAAD1yds3s3duZvgk0qEhBIUNNX9xSQjh9BMH
+R10IAAAAALt3zOhPhU8iHRpCUNhQi1duCyGMOrRP1IUAAAAAsHsnHvvp8EmkQ0MIChvqgec+CiEc
+0HefqAsBAAAAYPfiMc4/3yyOupA2Q1DYOH17d4u6BAAAAAB2Lx7jxIfT0hCCQgAAAABAUAgAAABA
+uxaLVUVdQtsgKAQAAACgHerX++NRE6s3lEddS9sgKAQAAACgHUpPF3w1ju8LAAAAABAUAgAAAACC
+QgAAAAAgCAoBAAAAgCAoBAAAAACCoBAAAAAACIJCAAAAACAICgEAAACAICgEAAAAAIKgEAAAAAAI
+gkIAAAAAIAgKAQAAAIAgKAQAAAAAgqAQAAAAAAiCQgAAAAAgCAoBAAAAgCAoBAAAAACCoBAAAAAA
+CIJCAAAAACAICgEAAACAICgEAAAAAIKgEAAAAAAIgkIAAAAAIAgKAQAAAIAgKAQAAAAAgqAQAAAA
+AAiCQgAAAAAgCAoBAAAAgCAoBAAAAACCoBAAAAAACIJCAAAAACAICgEAAACAICgEAAAAAIKgEAAA
+AAAIgkIAAAAAIAgKAQAAAIAgKAQAAAAAgqAQAAAAAAiCQgAAAAAgCAoBAAAAgCAoBAAAAACCoBAA
+AAAACIJCAAAAACAICgEAAACAICgEAAAAAIKgEAAAAAAIgkIAAAAAIISQHnUBtCUbPip9fcG6/6za
+PGf+hy/O/aCgsDTqigAAAIA9ondu5jGjPzX0wJzD8vc7PH+/vH0zo66IPU5QyO6tWL357kfefWTm
+ewsWF0ZdCwAAALA3FBSWznhiSeJl/tDcr0046Pyv50sM2zFBIfV5+sXlP/7VrOR8sHev7seM/eyJ
+x43s0T1z2JB+URcIAAAA7BFr1hat/KDwyWfnvzjrnYL1mxcsLlywuPDK387NH5p72//74pjD+kZd
+IC1PUEjtZr+x5oKfvpCICPOH9T/3m8ee8dUj83Kzoy4NAAAA2OMG9O81ZlSYMmlsCGFDYfEDf51z
+593PL1i0asHiwrGnPZg/NPfeG48fPjQ36jJpSYaZUN2K1ZunXPz02NMejKeEF587Yf3iO996+fqL
+/nuClBAAAAA6oLzc7Iv+e8JbL1+//M2bJ596ZAhhweLC/OPvmXLx0ytWb466OlqMoJCdYrHKq3/3
+6sAv/Cn+DILJpx65/M2bf/eLs+WDAAAAQAhhQP9e9//+e4m4cMYTSwZ+4U9X/+7VqOuiZQgK+Vgs
+Vnn8tx678rdzQwj5w/ovePn6+3//vQH9e0VdFwAAANC6xOPCWU9dlT+sfwjhyt/O/dLXH4nFKqOu
+i+YSFBJCCBs+Kv3U6Dufm70qhHDV9NPeevn64cP6R10UAAAA0HqNGTX0rZevv2r6aSGE52avGnnS
+fRs+Ko26KJpFUEiY/caa/An3FBSWhhBmPXXVFdMmRV0RAAAA0DZcMW3SUzOmh/hTCyfcM/uNNVFX
+RNMJCju62W+sGXvagwWFpb17dV+/+M4xo4ZGXREAAADQlkz80ojlb97cu1f3gsLSsac9uHBxYdQV
+0USCwg5tw0elk85/MoQwftzw91+/ydASAAAAoAkG9O/1/us3jR83PIRw3DcesQa5jRIUdlyxWOX4
+rz8S7yW8//cXZ2VlRF0RAAAA0FZlZWXc//uL432F+RPuMdukLRIUdlzHf+uxBYsLQwhzZ16jlxAA
+AABoprzc7LkzrwkhFBSWHv+tx2SFbY6gsIO65S//js84nvXUVQP694q6HAAAAKA9GNC/16ynrgoh
+PDd71bW3vhZ1OTSOoLAjKindMfVnL4YQrpp+muklAAAAQAsaM2roVdNPCyFc+du5K1ZvjrocGkFQ
+2BGd+6N/hBB69+p+2SWnRF0LAAAA0N5cMW1SfLDJyef+zQLkNkRQ2OGsWL15xhNLQggP3/WD9PS0
+qMsBAAAA2qE7f/udEMKCxYUPPrU06lpoKEFhh3PZr2aHEPKH9bfoGAAAANhDBvTvFV+AfOk1L2kq
+bCsEhR3L7DfWxNsJ771jatS1AAAAAO3ZpRecGEIoKCzVVNhWCAo7llvvfiuEMPnUI4cP6x91LQAA
+AEB7lpWVEW8qvO6O16OuhQYRFHYgJaU74u2EF57z5ahrAQAAANq/888+LoSwYHGh8cdtgqCwA3lp
+3uoQQu9e3UeNPCjqWgAAAID2Ly83O39Y/xDC3Y+8G3Ut7J6gsAO597F3Qwjnn32cYccAAADA3jH9
+4pNDCLff+1bUhbB7gsIOJL7u+NhxB0ddCAAAANBRfOno/BBCQWHpho9Ko66F3RAUdhSJZwEcevCA
+qGsBAAAAOoq83OzevbqHEF5fsC7qWtgNQWFHsei9ohBC/rD+WVkZUdcCAAAAdCDHjP1sCOENQWGr
+JyjsKP6zanMI4bND+0VdCAAAANCxnHjcyBDC4mVFURfCbggKO4o58z8MIRz5+SFRFwIAAAB0LAd8
+KjeE8OLcD6IuhN0QFHYsOT26RV0CAAAA0LH07ZMTQigoNMyktRMUdhQbirZFXQIAAAAArZegsKN4
+bvaqEMLwYf2jLgQAAADooGKxyqhLoD6Cwo5ln25GHgMAAAB7Vb/9941vrC7YEnUt1EdQCAAAAMAe
+lJ6eFnUJNIigEAAAAAAQFAIAAAAAgkIAAAAAIAgKAQAAAIAgKAQAAAAAgqAQAAAAAAiCQgAAAAAg
+CAoBAAAAgCAoBAAAAACCoBAAAAAACIJCAAAAACAICgEAAACAICgEAAAAAIKgEAAAAAAIgkIAAAAA
+IAgKAQAAAIAgKAQAAAAAgqAQAAAAAAiCQgAAAAAgCAoBAAAAgCAoBAAAAACCoBAAAAAACIJCAAAA
+ACAICgEAAACAICgEAAAAAIKgEAAAAAAIgkIAAAAAIISQHnUB0PI2FBa//q/33/j3fxa/t2bGo3Oi
+LgcAAACarnev7seM/ezQg/oeduinD//coLzc7Kgrot0SFNJ+LFy06g/3PP/g43ML1m+OuhYAAABo
+GQXrNyc3weQP6/+1k0adf/ZxEkNanKCQNi8Wq3jwr3MvveLu5Hyw9365p3/t+FGH5x/Qv2/f/XtF
+XSMAAAA00ZoP169ctebJp//54svzCtYVLli0asGiVVde91D+sP63XX/OmFFDoy6Q9kNQSNt2/8Oz
+kiPC8ceMvmTqtw4fOTwvLyfq0gAAAKAFDDig35jRI6accVIIYcOGogcefvrOux5c8PbSBYtWjT3h
+yvxh/e+9Y+rwYf2jLpP2wDAT2qrZ8xYfMm7amefdHE8Jr7p86tYNb/7jqbsmTjhKSggAAEC7lJeX
+c9H5X3/rtb8tf/e5yaedEEJYsGhV/rhpU77zuxWr1kddHW2eoJC2Jxar+NKp14w94coFi1aFTyLC
+Ky67MCsrM+rSAAAAYG8YcEC/+/9yQyIunPHonIEjpl59/cNR10XbJiikjdlQWPyp/POfe3lhCGHy
+aScsf/c5ESEAAAAdUzwunPX8/fkHDw4hXHndQ1869ZpYrCLqumirBIW0JbPnLc4f98P4WuNZz99/
+/19uGHBAv6iLAgAAgCiNGT3irdf+dtXlU0MIz728cOQXf7ShsDjqomiTBIW0Gbf8YebYE64sWL+5
+936561fOGTN6RNQVAQAAQGtxxWUXPvXo/4aPn1r4w9nzFkddEW2PoJC24ZY/zJz6o7tCCOOPGf3+
+288aVwIAAADVTJxw1PJ3n+u9X27B+s1jT7hy4aJVUVdEGyMopA2YPW9xPCWcfNoJzzx+pycSAgAA
+QK0GHNDv/befHX/M6BDCcZOusQaZRhEU0tptKCyedPZvQgjjjxl99x+vS09Pj7oiAAAAaL2ysjLv
+//MN8b7C/HE/NNuEhhMU0qrFYhXx6SW998v964O3SgkBAABgt/Lycub+8/9CCAXrNx9/+i9khTSQ
+oJBW7fjTfxGfcbzgtb9ZcQwAAAANNOCAfrOevz+E8NzLC6+98bGoy6FtEBTSes2et/i5lxeGEGY9
+f7/pJQAAANAoY0aPuOryqSGEK697aMWq9VGXQxsgKKT1umDaH0MIk087YczoEVHXAgAAAG3PFZdd
+GB9scvLXr7cAmd0SFNJK3f/wrAWLVoUQrr36kqhrAQAAgLbqztv+XwhhwaJVD/51btS10NoJCmmN
+YrGKS6+4O4Rw1eVTBxzQL+pyAAAAoK0acEC/+ALkS6+4W1Mh9RMU0ho9+Ne58Rkml37v7KhrAQAA
+gLYt/pfrgvWbNRVSP0EhrVGindCkYwAAAGimrKzMeFPhdTc9HnUttGqCQlqdhYtWaScEAACAFnT+
+uZNDCAsWrTL+mHoICml1/nDP8yGE8ceM1k4IAAAALSIvLyf/4MEhhLsfeDnqWmi9BIW0Og8+PjeE
+cMnUb0VdCAAAALQf0y89N4Rw+13PRl0IrZegkNZlQ2FxfN3x4SOHR10LAAAAtB9f+uKYEELB+s0b
+CoujroVWSlBI6/L6v94PIfTeLzcvLyfqWgAAAKD9yMvL6b1fbvjkr95Qk6CQ1uWNf/8nhHD6146P
+uhAAAABob44ZNyp88ldvqElQSOuy+L01IYRRh+dHXQgAAAC0NydOPDp88ldvqElQSOsy49E5IYQD
++veNuhAAAABob+J/3X5x1jtRF0IrJSikNeq7f6+oSwAAAID2Jv7X7fgQUahJUAgAAAAACAoBAAAA
+OphYrCLqEmiNBIUAAAAAHUK/vr3jG6s//CjqWmiNBIUAAAAAHUJ6enrUJdCqCQoBAAAAAEEhAAAA
+ACAoBAAAAACCoBAAAAAACIJCAAAAACAICgEAAACAICgEAAAAAIKgEAAAAAAIgkIAAAAAIAgKAQAA
+AIAgKAQAAAAAgqAQAAAAAAiCQgAAAAAgCAoBAAAAgCAoBAAAAACCoBAAAAAACIJCAAAAACAICgEA
+AACAICgEAAAAAIKgEAAAAAAIgkIAAAAAIAgKAQAAAIAgKAQAAAAAgqAQAAAAAAiCQgAAAAAgCAoB
+AAAAgCAoBAAAAACCoBAAAAAACIJCAAAAACAICgEAAACAICgEAAAAAIKgEAAAAAAIgkIAAAAAIAgK
+AQAAAIAgKAQAAAAAgqAQAAAAAAiCQgAAAAAgCAoBAAAAgCAoBAAAAACCoBAAAAAACIJCAAAAACAI
+CgEAAACAICgEAAAAAIKgEAAAAAAIgkIAAAAAIAgKAQAAAIAgKAQAAAAAgqAQAAAAAAiCQgAAAAAg
+CAoBAAAAgCAoBAAAAACCoBAAAAAACIJCAAAAACAICgEAAACAICgEAAAAAIKgEAAAAAAIgkIAAAAA
+IAgKAQAAAIAgKAQAAAAAgqAQAAAAAAiCQgAAAAAgCAoBAAAAgCAoBAAAAACCoBAAAAAACIJCAAAA
+ACAICgEAAACAICgEAAAAAIKgEAAAAAAIgkIAAAAAIAgKAQAAAIAgKAQAAAAAgqAQAAAAAAiCQgAA
+AAAgCAoBAAAAgCAoBAAAAACCoBAAAAAACIJCAAAAACAICgEAAACAICgEAAAAAIKgEAAAAAAIgkIA
+AAAAIAgKAQAAAIAgKAQAAAAAgqAQAAAAAAiCQgAAAAAgCAoBAAAAgCAoBAAAAACCoBAAAAAACIJC
+AAAAACAICgEAAACAICgEAAAAAIKgEAAAAAAIgkIAAAAAIAgKAQAAAIAgKAQAAAAAgqAQAAAAAAiC
+QgAAAAAgCAoBAAAAgCAoBAAAAACCoBAAAAAACIJCAAAAACAICgEAAACAICgEAAAAAIKgEAAAAAAI
+gkIAAAAAIAgKAQAAAIAgKAQAAAAAgqAQAAAAAAiCQgAAAAAgCAoBAAAAgCAoBAAAAACCoBAAAAAA
+CIJCAAAAACAICgEAAACAICgEAAAAAIKgEAAAAAAIgkIAAAAAIAgKAQAAAIAgKAQAAAAAgqAQAAAA
+AAiCQgAAAAAgCAoBAAAAgCAoBAAAAACCoBAAAAAACIJCAAAAACAICgEAAACAICgEAAAAAIKgEAAA
+AAAIgkIAAAAAIAgKAQAAAIAgKAQAAAAAgqAQAAAAAAiCQgAAAAAgCAoBAAAAgCAoBAAAAACCoBAA
+AAAACIJCAAAAACAICgEAAACAICgEAAAAAIKgEAAAAAAIgkIAAAAAIAgKAQAAAIAgKAQAAAAAgqAQ
+AAAAAAiCQgAAAAAgCAoBAAAAgCAoBAAAAACCoBAAAAAACIJCAAAAACAICgEAAACAICgEAAAAAIKg
+EAAAAAAIgkIAAAAAIAgKAQAAAIAgKAQAAAAAgqAQAAAAAAiCQgAAAAAgCAoBAAAAgCAoBAAAAACC
+oBAAAAAACIJCAAAAACAICgEAAACAICgEAAAAAIKgEAAAAAAIgkIAAAAAIAgKAQAAAIAgKAQAAAAA
+gqAQAAAAAAiCQgAAAAAgCAoBAAAAgCAoBAAAAACCoBAAAAAACIJCAAAAACAICgEAAACAICgEAAAA
+AIKgEAAAAAAIgkIAAAAAIAgKAQAAAIAgKAQAAAAAgqAQAAAAAAiCQgAAAAAgCAoBAAAAgCAoBAAA
+AACCoBAAAAAACIJCAAAAACAICgEAAACAEEJ61AXA3lO0seyZ5z/499sfPf3cqqhr2UuOOKzX//56
+XHq6/yQAAAAA7IagkA7h5blrf/qL1wuLyqIuZG979Y313/3hy7JCAAAAYLdkB7RzS5dtOuWsv58/
+7ZUOmBLGxbPCWKwy6kIAAACAVk1QSHv25LMrTznr2aXLNkddSMRkhQAAAMBuCQppt267653pV8+L
+uorWQlYIAAAA1E9QSPt038Pv3frHd6KuonWRFQIAAAD1EBTSDr25oPDa3/4r6ipaI1khAAAAUBdB
+Ie1N6bbYJZfPibqK1uvVN9Yfe+qTRRs76GgXAAAAoC6CQtqbP//fkg474LiBCovKTjnrWVkhAAAA
+kExQSLtSui3m0YQNISsEAAAAqkmPugBoSY89tXy3++TmZHznm585esz+++V1TU9vb1n5tJ+9+vRz
+qxqyZzwrfOwvx+X0zIi6agAAACB67S0loYN7Ydaa+neYOL7/Mw9MPHPSQX37ZLW/lLCx9BUCAAAA
+CR09KKE9Kd0We/WN9fXsMPjA7r+4/POZXTXS7iQrBAAAAOIEhbQfGzeV17/DLb8cq4uwJlkhAAAA
+EASFtCfrNmyr59PcnIy+fbKirrGVkhUCAAAAgkLajw8LSur59PMjekVdYKsmKwQAAIAOTlAIfExW
+CAAAAB2ZoBDYSVYIAAAAHZagENhFPCtcs7ak+acCAAAA2hBBIVBdYVHZcac99eaCwqgLAQAAAPYe
+QSFQu29c8IKsEAAAADoOQSFQJ1khAAAAdByCQqA+skIAAADoIASFwG5844IXli7bFHUVAAAAwJ4l
+KAR2b+myzVGXAAAAAOxZgkIAAAAAQFAIAAAAAISQHnUBQCjdFtu4qbxrRlpOz4yoawEAAAA6KEEh
+tKTSbbHVH26NP9Fv1Zqty1dumXzqoBH5ufUf9cIra6ZfPS/xcvCB3Q//XK/8YTlHHr6f6BAAAADY
+OwSF0AKKNpb931+XPfDYssKismofHXVkn90GhdUsXbZ56bLN94UQQhh8YPdzzhw64YufSk9v0IMC
+fvy9Q7//3eFNuIUrrnv91TfWR/HlAQAAAK2CoBCapXRb7Mrr3nj6uVV76PxLl22efvW8P963+Lor
+Rg0+sMdu929yB2JOD62LAAAA0KEZZgJNt3TZpuPPeHrPpYRJF9p8ylnPlm6LRX3HAAAAQLslKIQm
+Wrps0ylnPVtzrfGe89v/XRj1TQMAAADtlqAQmiIWqzz3kpf38kXve/i9NWtLor51AAAAoH0SFEJT
+zHzhg73ZS5igqRAAAADYQwwzgaa4/pa36t8hNyfjjFMO7N+32xe/0He3ZzvxuAOOPHy/bWUVf3lg
+6X0Pv1fPnk8/t+qq6YdldvVPLgAAANDCxA3QaEUby+pvJzxz0kH/c9Eh6emN6NiNTyu+7PufO+uM
+wced9lQ9ey5+b9OI/NyovwMAAACgvbH0GBptxQdb6/l08IHdL/v+5xqVEibr2yfrwnM+W88OHxZ4
+TCEAAADQ8gSF0Gj1R3U/vXRkM8//nW98pp5PX5qzNuovAAAAAGiHBIXQaJuLt9fzaf6wnGaev8nd
+iAAAAABNJo+ARvv32x/V82mLxHwTx/eP+i4BAACAjkVQCC3piMN6RV0CAAAAQFMICqEl5fTIiLoE
+AAAAgKYQFAIAAAAAgkIAAAAAQFAIAAAAAARBIQAAAAAQBIUAAAAAQBAUAgAAAABBUAit08AD9qnr
+o6JNZVFXBwAAALRDgkJotPeXb97Tl+jft1tdH736xvqovwAAAACgHRIUQqMtXVZnUNizR5eoqwMA
+AABoCkEhNE7ptlg9n+YPy2mRq+zfO6ueT5cu2xT11wAAAAC0N4JCaJw//9+Sej6tP+BruPoDx4ef
+WB711wAAAAC0N4JCaISijWW3/vGdenZoqY7C9PTUieP71/XpfQ+/V7TRSBMAAACgJQkKoaFenrv2
+lLOerWeHMycdlJ7eYv9MnfTlA+r59Asn/e3luWuj/koAAACA9iM96gKgDTjn+/9syKzhSScNbMGL
+Hnn4foMP7F7P4JTzp70SQjjisF7XX3lETs+MqL8kAAAAoG3TUQi715CU8LLvf27wgT1a8KLp6al/
+/O1RDaltW1lFdN8NAAAA0E4ICqEFXPb9z5056aAWP21Oz4x7bvtibo5uQQAAAGCPExRCsxxxWK9n
+HzphT6SEcSPyc595YOLgA7tHfaMAAABAOycohGZ59Y31/1pYuOfOH4tVPvbU8nqeVAgAAADQIgwz
+geaafvW8x55e/sffHt3iZ47FKk875x9SQgAAAGAv0FEILeDVN9Y/+ezKFj/tr255S0oIAAAA7B06
+CmH33pl1+pq1JctWFJ8/7ZW69pl+9bwjD98vp2eLDR55c0HhfQ+/V88OE8f3P+nLBxw4IHu/vK5R
+f0MAAABAm6ejEBqkb5+scaP7vPLEV+qZQfzM8x+04BVv/dPb9Xx63RWjrv/ZEeNG9+nbJys93T/I
+AAAAQHPJF6ARcnpmTLvokLo+ffiJ/7TUhWKxylffWF/XpxPH9z/xuAOi/jIAAACAdkVQCI3zxS/0
+reujpcs2l26LtchVFiwqqufT7393eNRfAwAAANDeCAqhcTK71vdkz42bylvkKh8WlNTzad8+WVF/
+DQAAAEB7IyiERps4vn+HvToAAADQXgkKoTWqf+kxAAAAQIsTFEJr1FJLmAEAAAAaSFAIAAAAAAgK
+AQAAAABBIQAAAAAQBIUAAAAAQBAUAgAAAABBUAgAAAAABEEhAAAAABAEhdCy1m3YtqcvcejB+0Z9
+lwAAAEA7JCiERuvZo0tdH31YUNIilyjaVFbXR92zO0f9BQAAAADtkKAQGi1/WE5dH700Z22LXOLV
+N9ZHfZcAAABAxyIohJb02pvrY7HKZp6kdFusnk+z99FRCAAAALQ8QSE02ueG59b1UWFR2cwXPmjm
++f/8f0vq+fTAAdlRfwEAAABAO5QedQHQ9uyX17WeT6dfPS+EMOGLn0pPb0oQ/+SzK2/94zv17NC3
+T1bUXwAAAADQDgkKodHS01PPnHTQfQ+/V9cO06+e98f7Fn/p6H79+3b74hf6ZnbdzT9oRRvL5ry+
+bnPx9oef+M/SZZvr2fOIw3pFffcAAABA+yQohKb4/neH//2FDwqL6pxNvHTZ5njkd90Vo0487oD6
+zzbn9XXxPsTduvDbB0d96wAAAED75BmF0BSZXdOnXXTIXr5obk7GiPzc5p8HAAAAoCZBITTRiccd
+MPjA7nvzivf/77FR3zQAAADQbgkKoenuu+PYvfbQwHtu+6IxJgAAAMCeIyiEpsvsmv6/vx43cXz/
+PXqVwQd2f+WJr1h0DAAAAOxRgkJolvT01Ot/dsQrT3zlwnM+2+InP3PSQY/95bjH/vLlnJ4ZUd8o
+AAAA0M6ZegwtIKdnxgVnf/aCsz9btLFsxQdbPywoCSEsWFS0cVP5/r13v154/95ZE8f379mjS/6w
+nPjL/fK6WmgMQJsw5axLZzz0VHy7qnRx1OUAANB0gkJoSTk9M3J6fjyb+MTjDmjgUSPyc60sBiBZ
+LBab9/qC51+cu3jJf955970Fby8NIUw+7YQQwtAhnz7lK+OHHzwk6hoBAGhvBIUAAK1ISUnpDb+7
+6/Y7ZxSsK6z2UaJx78prbu69X+5P/ue8s795alZWZtQlAwDQTnhGIQBAa/H0zJe65Y248pqba6aE
+1RSsK5x66TWDDj5u4dtLoq4aAIB2QkchAED0YrHYpT+67qbb7kl+M//gwUePGzXq8Pwjj/jcli0l
+C99Z+v6yVcnNhgXrCvM/f/JTj/7vxAlHRX0HAAC0eYJCAIDoVUsJxx8z+q8P3lptWXH8uYSX/c93
+H3zkmTPPnpZ4/4RTv7v83ecGHNAv6psAAKBts/QYACBi9z/wRHJKePMNl//jqbvqevhgenr6lDNO
+eurR/01+87Irboz6JgAAaPN0FAIARGnFytXJ7YENXEc8ccJRF1/wjUS8OOOhpy4878wxo0fUunMs
+Flu9pmDRu8v+s/yDoo2bBx3Yf/hnB/feLy8vL6fhRc559V/zXl9w0IEH5OR0P/KIzzWhgXHDhqKC
+dRsWvrM0cZ4D+vcddXh+erp/IwUAaBX8axkAQJTuvu/xxHb+wYMb/rTBG345fdG77z/34tyLL/jG
+6V87ftTh+TX3icVi3zxnemJccjW998t9+P6b6ooX42bPfXPssVNqvp9/8ODnnvpzA6PG2XPfnDTl
+4romtNx8w+UXnf/1PfLlAgDQGJYeAwBEJhaL3X7njMTL2373s4Yfm56e/tcHb91R/Pbvfv2TMaNH
+1OzLW/j2kk8ddHRdKWEIoWBd4dhjp1x97a2xWKzWHW65/d5aU8IQwoK3l+Z//isbNhTt9gavvvbW
+scdOqWeO89RLr5ly1qV11QAAwF6joxAAIDLzXl+QSNDyDx5cf3NfTXU9xzCEsGLl6vzPn5x4mX/w
+4K999cuHjTj4U/16L3xn6ZNP/zMRIF55zc2Ll/zn/r/cUO0Ms+e+OfXSaxIvxx8z+uQTjz3qC4d/
+sLrgjTfffuSvf49nhb3qbSqs1s84/pjRwz4zKN78eNfdjz734tz4+zMeeuqdd9+b8+L/1XNHAADs
+aYJCAIDIrFy1JrF99LhRLXjm5PEm448Z/czjdyZaDocfPGTKGSddeN6ZiW7BGQ899btf/6TaOuIL
+vvezxPZVl0+94rILE4dPnHDUZf/z3eNPPve5F+fW0yq4YuXq5JQw+SQhhClnnPT0zJfOOf8n8TMs
+eHvp408+P+WMk/bWdw8AQHWWHgMARObJp/+Z2K71IYNNs/DtJYmErlpKmDBm9Ijk0cnJK6BDCCtW
+rl7w9tLEGZIDvrj09PRnHr+z93659ZSRHFZWSwnjJk446v23n80/eHD85XU33NnSXzAAAI0gKARC
+COH95Zvr+XT/3llRFwjQ/vXont1Sp/rB9F8mtn92+dS6xgpPnHBUIum78pqbS0pKEx8lj1j52eVT
+az08PT39/HMn11VDcjthrVFjXFZWZuLJjAveXjp77pst+JUCANAogkLaj/rDrKefWxV1ga1XLFa5
+dFl9QeF+eV2jrhGg/Rv2mQNb6lSJZ/+F3TUqJid9Gwp3TiZ55K9/T2wfmj+0rsNP+cr4uj6a8+q/
+Ettnf/PUempIfjLjg48801JfAgAAjSUopP3YbZi1dNmmqGtspea8vi7qEgBoMStWrk5sTz7thLra
+CeMOG3FwYnvRu8sS24l1x733y61nwMjwg4fU9dH7y3b+J7ojj/hc/TVPPu2E+MZuxygDALDnGGZC
++9GzR5f6dzj3kpeff/TE9HT5+C5Kt8V++ovX69+nbx9LjwH2uDUfrh9wQL+9fNHkNsZNm4tr7nBM
+U0esLF7yn8T2uRf8NC+3vuHIL748L76R3NUIAMBeJiik/cjsmn7EYb1efWN9XTsUFpV994cvX3/l
+ETk9M6IutrVYs7bkoh/NKiwqq2efMycdFHWZAO3WkUd8LvEgv5Wr1iQvwm2yLVtKEtsnTjy64Qcm
+egCTexKb7J1330tsJy+Frl/D9wQAoMVpraJdOWXiwPp3ePWN9V846W/3PfzemwsKizaWNeys7dCa
+tSVvLii87a53jjvtqfqfThhCmPDFT0VdL0C7lZPTPbGdvFa3OT5YXdC0A5N7AJsvsXgZAIC2Qkch
+7coXv9C3Ibtd+9t/NWQ3Qgi5ORn5w3Kafx4AapX88L5XZr/RIuds8lCUoUM+Hd+of5lwA40/ZnSi
+PXDBa4/vs4+nWAAAtHaCQtqVzK7pF57z2Vv/+E7UhbQf0y46xFMdAfac5IcSPvfi3BUrVzf2MYWz
+5755aP7Q5HkjWZk7t598+p9TzjipgacadGD/j89Q9/SShktOG/fZJ2vvP34RAKgpFotFXQKtmr//
+095867+G5OZ4BGHLGHxgd+uOAfa0qy6fmti+7IobG3XsipWrxx47pVveiKuvvbWkpDT+Zl5eI/oB
+57y6s8u+R/fsmjskHqFYq8RFa0r0JwIArcfqNR8/oqTf/vtGXQutkaCQ9iaza/qN1xwZdRXtxC2/
+HKudEGBP++aZJye2Zzz0VMMHicRisXMv+Gl8+8prbr7r7kcTH/XeLzdxwvobB+a9viCxnbxmefJp
+JyS2N2yocxLxS6+8XtdHif7EsGscCQC0BunpaVGXQGskAqAdGpGfe+E5n426ijbv9uu/0LeP50kB
+7HEDDuiXnMqNPvq/GpIVxmKx408+N/EQwPyDB5937n8lPj3/3MmJ7eQosOZJbrrtnsTL5MXCyf2A
+r89fWNcZ/v7crLo+Sn784qU/uq7+e7n/gSdaZNQyAADNISikNVrz4fpmnuGCsz8rK2yOy77/uXGj
++0RdBUBH8btf/ySxXbCucOBnxt//wBP17F9SUvrNc6YnUsIQwr1/uj49feezpy/93tmJ7Z9dc3Nd
+TYXPPjc7sX3fXdcnP5owuc/xxpv/XOsZZs99MzlnrCY5AC1YV/j0zJfq2vPSH1135tnTBn5mfJ+B
+Yxe+vWSvfOUA0EHF/7rdu1f3qAuhlRIU0rpMPvXIEMLKVWuaf6oLzv7sdVeMivqG2qR7bvvimZMO
+iroKgA4kLy9n1vP3J79z5tnTppx1abzPLjmkW7Fy9S2339stb0TyowNvvuHy4QcPST48Kysz8ejD
+516ce/zJ59ZM+p6e+dIJp343vt17v9zTv3Z88qcDDuiXf/Dg5DNUO3z23DfHHjul/vu69upLEtsn
+nPrdW26/t+Y+t9x+byJtPP1rx1e7EQCgZcX/un3MWI011M7UY1qXoQf1DSHMe31Bw0c01uPE4w4Y
+fGD36VfPW7psc9R31jYccViv6688IqenaTAAe9uY0SOWv/vcyaddsODtpfF3Zjz0VCINzD948PoN
+RQXrCmseOOv5+8eMHlHz/fPPnXz7nTPihzz34txO2QdPPu2EEyceHUJ4f9mqV2a/kdyQeMMvpyc3
+JMZNv/TcM8+eFt9+7sW5KZlD42eY9/qCBx95Jn7miy/4xoYNRXUNPBlwQL+bb7h86qXXxF9OvfSa
+O+968Ohxo0Ydnl9UtPnxJ59PrmH8MaNv+OX0qH8HAGjnnnz6n+GTv3pDTSlVVVURXDUlJYQQm3VE
+1LffCOljXw0hLH/l2wP6tckG3ZSBN4YQlr9584D+vaKupT5P/+PNEyZf13u/3LXLZzX/bAlPPrvy
++lveKiwqi/r+Wq/BB3b/6aUjR+TnRl0IQIcWi8Uu/dF19aznTZZ/8OB7/3R9PS14JSWlXz39wuQw
+rqbe++U+fP9NtUaNYdeuw5rGHzP6mcfv/OY50xNBYVXp4lpPcs75P6k15Uwu4/23n01e+wwA7Al9
+Bo4tWFf41IzpE780ovlna5SU3DNCFLlKPA95/6FDB/RpMz0x8QwqksjO0mNal8M/NyiEULCusJ4B
+i01w4nEHvPS3rzz70AmXff9zE8f3b/4J24fcnIyJ4/tfd8WoV574ymN/+bKUECBy6enpv/v1Txa8
+9njyeJOaxh8zetbz97/12t/qX6iblZX5zON33nzD5YkhyNVMPu2E999+tq6UMIQwccJRs56/v9bD
+xx8z+q8P3pqenp48tKSukyx47W913VHv/XKvunyqlBAA9oINnyxQiP/VG2rSUdhQOgr3mj7DvlOw
+fvNTj/7vxAlH7dELlW6LbdxUHvXtRmO/vK7p6f47AUCrFovFVq8pWPTusk2bi+PvDP/s4H32yerX
+t3fNZcK7VVJS+p/lHyx8Z2n8PL33y8vLy2na4T26Zx8+cnji8JKS0g2FH//nvQEH9Kv/PBs2FC19
+f0X86Ug9umcP+8yBTbsdAKAJ7n/giTPPnta7V/e1i36/96+uo7DhIuwo9K9ltDqnnzz6pjtn3njz
+n/d0UJjZNT2zq38EAGil0tPTBxzQb7fRWwNlZWUOP3hIk0eF1HN4VlZmw5sB8/Jy8vJy6ulhBAD2
+nOtuuDOEcP7Zx0VdCK2XliJanf/+xrEhhOdenFtSUhp1LQAAANAebNhQFJ+Z9s0zxkVdC62XoJBW
+Z/iw/r17dQ8h3PC7u6KuBQAAANqD2++cEULIH9a/9T+RjAgJCmmNbrj6myGEK6+5WVMhAAAANFNJ
+SemV19wcQph+8clR10KrJiikNTr9q6M1FQIAAECLiP/lunev7qd/dXTUtdCqCQppjdLT0xJNhStW
+ro66HAAAAGirVqxcHW8nvOHqb6anp0VdDq2aoJBWasqksfnD+ocQLrvixqhrAQAAgLbq3At+GkLI
+H9ZfOyG7JSik9brt+nNCCDMeemr23DejrgUAAADanquvvfW5F+eGEB6/d5p2QnZLUEjrNWbU0PHj
+hocQxh47ZcOGoqjLAQAAgLZk9tw344uOr5p+mmHHNISgkFbtmQd/HJ9qkv/5r5iADAAAAA20YuXq
+scdOCSGMHzf8sktOiboc2gZBIa1aenragpd/3btX94J1hV89/cJYLBZ1RQAAANDabdhQNPro/woh
+9O7V/ZkHf2zRMQ0kKKS1y8vNfviuH4QQnntx7jfPmS4rBAAAgHqUlJRO+dalBesKe/fqvuDlX0sJ
+aThBIW3AmFFDb/7l2SGEGQ89dfzJ51qDDAAAALVasXL1oIOPiw8wefbhy/Nys6OuiLZEUEjbcNF/
+T4hnhc+9OHfQwceZbQIAAADVPD3zpYGfGR/vJZz11FXDh/WPuiLaGEEhbcZF/z1h1lNXxZ9X2OuA
+I2fPfTPqigAAAKC1uPraW0849bshhPxh/Re8/Osxo4ZGXRFtj6CQtmTMqKHx2SYhhLHHTply1qUr
+Vq6OuigAAACI0uy5bx7y+a9cec3NIYTx44bPf+GXVhzTNIJC2pi83OwPFtw+ftzwEMKMh54a+Jnx
+V197q6cWAgAA0AGtWLl6ylmXjj12yoK3l4YQrpp+2j8evdz0EppMUEjbk56e9o9HL5/11FX5w/qH
+EK685uZueSPEhQAAAHQc8Yhw4GfGz3joqRDC5FOPXP7mzVdMmxR1XbRtgkLaqjGjhr718vX33TE1
+vhI5Hhd+6YSzn575klEnAAAAtEsbNhTdcvu9h3z+K4mIMH9Y/wUvX3//7783oH+vqKujzUuPugBo
+limTxp7+1dEP/nXupVfcXbB+83Mvzo3PgO+9X+7pXzt+1OH5B/Tv23f/j/9/Zb++vdPT/ZkHAACg
+tYvFYqvXFMS313y4fuWqNU8+/c8XX55XsK4wsU/+sP63XX+OoSW0IKEJbV56etqUSWOnTBq7anXh
+X/7vn7f96dmC9ZsL1hXedNs9UZcGAAAALSx/WP+vnTTq/LOPM7GEFicopP3o3y/3pz+c9IPzT1y2
+ct0LL7/97IsLXpqzqHTb9qjrAgAAgKbr3av7MWM/O/Sgvocd+unDPzdIPsieIyikvcnKysgfdkD+
+sAO+f94J5eU7/rVgeUVlZf9+uXn7ZmdkdA4hlJSUhRDKynekpaWmpKTsiMW2bdteUVEZdeEAAACw
+U7/99zW/mL1MUEh71qVLpyMOH1ztzaysjMT/BQAAACDO1GMAAAAAQFAIAAAAAAgKAQAAAIAgKAQA
+AAAAgqCQdq+qqqqelwAAAADECQpp/xLhYHyjZlYoPQQAAABIj7oA2IOqqqpSUlLCJ1FgYjuRDK5d
+t2nGI7NWfLAhNSWlORca0L/XJeefEPXtAgAAADSdoJB2pdZkMHmj2vbKDzY8//LCl+YsLt1WnpaW
+1rVr15RGJoYVFRXl5eXdMjsPPrDP5/IH5ubs07mzf6wAAACAtkeiQbuSCArDroFg/eI75uXlHXbY
+YV26dGn45SorK4uKipYsWbKuoOBr37rhxp9/89QTR+2X1yPqrwEAAACg0QSFtG3VHi+YmtrolDBx
+kgMPPHDatGnZ2dkNP3DHjh3vvPPOH/7wh4KCgvLtsW3btu/TrWvUXwkAAABAUwgKaUsSsWBdS4mb
+c9rs7OyDDz44Jyen4QeWl5dv3759n332ib+MxSozu3ZJ7moEAAAAaCsEhbQB1fLBysrKJqwv3mtq
+llSt7bEV1gwAAAAgKKQNqJaspaSktImuveR8M1FwZWVlrTcFAAAAEC1BIa1XPFyrNr84tJ2Irdaa
+U1NTE3fXtm4HAAAAaN9Soy4AahfP0eJZYXuN0pLvq9ryZAAAAIC9TFBI69Ve88Fa77GqqkpWCAAA
+AERIUEgrkkjKOsKy3PitJd9pcmgYdXUAAABAhyMopLVITsfa8XLjalp8fLOQEQAAAGgaw0yIUuJB
+hIkRH8Q1Oe+LL2HuOEkrAAAA0FIEhUSjqqoyhMQg4JTQrlcZN0G1hcmNOjAlJVRVVe/QjPqGAAAA
+gNZOUMheFW92CyHEE62kN6OurDVp5nrkpC95lzfjJ0xsRH2XAAAAQOtivSd7Q2KJca1TSoRWLavW
+77PaYuTKSkOWAQAAgF0ICtl7DPZtPVJSdnYXAgAAAARBIXte7Z1rugj3ppo/gZQQAAAAqMYzCtnT
+UkIwVaO1SH58od8CAAAASKajkD3I3IzWQ/8gAAAAUD8dhewpiWSq1iG8CRUVles2bC4tLY+kyJUf
+bCjauDVWURHJ1feoWr92oS0AAABQF0Ehe1z94VRpadkTM+cvef/DSGpbtbpwxQcbYrHKEMKmTZve
+eOON7Ozshh++Y8eOd999d9OmTZEU30D1B7UAAAAAcYJC9qCG5FMl28r/+szrz774ViQVVlXt7Hx8
+6623zjvvvNTURqzHr6qqKi8v37hxYyTFN6S8qEsAAAAA2gxBIS2sCf1rVVVVlZXRR1qlpaXLly+P
+uooWkPgJNBICAAAADScopMVU619rbEqVnp5+3HHH5ebmNva6q1evnj17dnl5+Wc/+9mRI0c29vDy
+8vK///3vmzZt2n///ceMGdO5c+eGH1tRUVFUVPT2229/+GE0S6frISUEAAAAGkVQSMuId7E1Z61r
+ly5dfvrTnx5xxBGNPfBvf/vbW2+9VV5ePnHixF/96leNPfyjjz466qijNm3adMghh9xxxx05OTkN
+P7a8vPyNN9645pprWltQ6LmEAAAAQGM14nFsAAAAAEB7paOQZom3ECaa13SxtRJ+CAAAAKCxdBTS
+XPEVx5KpyCXWffstAAAAgCYQFNIsiUyqOU8npEXEfws/BAAAANA0gkKaIp5GJWdSutgiJyIEAAAA
+mkNQSKPVDKSkhK1EVVVVCH4LAAAAoCkEhTSF5rVWKB7XymwBAACAphEU0jjxuSVaCFubauOnAQAA
+ABpLUEhDJaKoxIxjsRQAAABAuyEoZPeqLTSWD7Y+VX4UAAAAoJkEhTSIhxK2blJCAAAAoLnSoy6A
+1k5E2PolFoMDQIRKSso2fFQc387bNzsrKyPqigAAaBwdhTSUKAoAqMfjz7wxcMTU+P8ef+aNqMsB
+AKDRdBRSp0QvYUpKSgj6CgHooGKxinnz37v1j38PIcx4dE7i/fHjhufl7vP1075w1JHDdM8BANAO
+CAppIO2EAHQ4JSVlN9z25O13PVuwfnPNT597eWH4JDocP274b6755vBh/aMuGQAAmk5QyC7iT7uL
+/9/ERtRF0SB+LICWNXve4kln/6bWiLCm515emD9u2s2/PPui/54QdeF1WrhoVf64aSGE++6YOmXS
+2BY//8nHH7b8zZvj23n7Zkd9uwAANJqgkOqSp5cIntoEPxNAi7v6+oevvO6h5Hcmn3rk0IP6Hnbo
+p4cN6RdC2LK1bOGiVXfd/894X2Hc1B/dNee1JXffdlF6elrUd1CLhYtW7dHzZ2VlWIINANCmCQrZ
+KdFO2Kijli5bO/2q+7Zt2960i5Zv3/H2ux+EEHbs2PHggw++/vrrjT3DwoULt23bFkJ48803b775
+5sYevnXr1o8++iiEsHLlyt///vdZWVkNPzYWi61atWrVqo//3vXH+1584ZV3mvY9hBCOHDXkih9+
+rWnHGk4N0IJu+cPM5JRw/Ljh9//+4rzc6i1yw4f1nzJp7IpV60/++vULPsngZjw658TjRu6Jfr3m
+e/LZ+VGXAABAqyYo5GNVVVVVVSElpdHtaZuLS59/eeGWrWXNLGDHjh0zZszo0qVLYw8sLS0tKysL
+Ibz++uvvv/9+Yw+vqKiIB4XLly+/9dZb09Ia0QNSVVVVXl5eXFwcf7l02dqly9Y2+RvIzGz0vQPQ
+4hYuWjX1R3clXl41/bTLLjmlng7BAf17PffoT/PH/TCxSPnSK+4++fjDWmFv3Yuzmv5fswAA6AgE
+hYTwST9a8xewpqampqWlNTZqrKysrKioqKqqWrduXXPqLy4u3rJlS5MP37Zt25o1a5p8eDPvvWk3
+DkDLisUqjpt0TeLlVdNPu2LapN0elZeb/fBdPxh7wpXxlwXrN99w25N1HbihsLhg/aaFi1bNm//e
+ho+Khx7Ud9DA3kd+fnDevtn1ZIsrVq2Pb2RlZiR6G1esWj/ntaXx8+Ttmz1q5EEHfCp3zKihNa9Y
+Ulq2Zm1RIsp8f3lB4oT99t+3Zgwai1U8++JbmzaXxk8eQjjy80NyenQ78vODB/TvVVeRJSVl8Z1D
+CNVuJ15DfDtxhpKSspfmLHrj3/9Z/N6aEMKJx43s0T3zuGMOacjC7WpfY/zw4cP61zNPJharWP3h
+R9XKW7Fq/Y23PzVq5EEhhNbZBwoAsDcJCtk5BKOZcVWnTp169uzZr1+/rl27NurAdevWrVq1KhaL
+feYzn8nObvSzz4uKipYtWxaLxfbff/8DDjigsYfv2LHjnXfe2bZtW48ePQYNGtSpU6dGfXVbtmz5
+4IMPiouLe/To0a9fv3322aexxX/wwQdbt25tbNnVykgJoco8E4Bme/bFt5Knl1x6wYkNPHDMqKE3
+//LsqT+66+JzJ5z+1dHx4KmaWKzi0p/efdOdM+s6ST3diwNHTI1vTD71yPt//72SkrKvfuPXyY9H
+DCGEO2fGd6j2kMTvXXZXfDRzwpXXPZRYW738zZuTs79YrOLaGx+r9nzG8Mlw5/j5r718cq1x4ePP
+vHHmeR8/A6TavJTkGqoKHwgh3PKHmcmdm4lL9O7Vfe7Ma+qPI2u596TDn3348lrjwtUffpT4GuPl
+fe/Hd338c9w5MwgKAQAEhSQ/lzCRMTUtb+rateshhxxyxhln7L///o06cObMmffee+/WrVvPPvvs
+YcOGNfa6r7766o033rhly5bRo0efc845jT28uLh4+vTpK1euHDRo0LRp0xqV9O3YseO99967++67
+FyxYMGjQoMmTJw8ZMqRRV587d+4DDzywbNmyioqKxlaePKK6qio0/vGSAFR34+1PJ7avmn5ao5YP
+X/TfE8771pfq6oZbsWr96AmX1z9D+crrHnpl7uJan4eYLBarqDUpi5vx6Jx3Fq9+6+Xrm3D7sVjF
+8af/oq4zJ84/49E5C16+vp7evd2qOSsmoWD95oEjplaLLxMWLlp13KRr6vkaC9Zvzh83rSFjnVes
+Wl9PaAsA0DEJCju6eCCYHBEmPkruNGxIbtipU6d+/fodddRRgwYNalQNq1evzsjIKC0tPeKII8aM
+GdPYW9ixY0fnzp1DCJ/+9KePP/74xh7+0UcfdevWLYSQl5c3fvz4nJychh9bXl6+7777Pvnkk/HD
+R48ePWrUqEZdvby8/O9//3vT2gDjB6WkpIQQ/4F0EwI0y4bC4uSMrOHthAl1pYQlJWWJXrYQQv6w
+/ud+89jPDR/Qt0/OmrVFz7/89iNPzIuPQ3nu5YX54374wYLb61l+G8/yevfqfvrJo7/8xUOGDek3
+57WlTz47P9Gyt2DRqtnzFifWIF94zpdPPG5k8g6TTz3yxONGxrfz9t0ZSn7zglsS30D8/KNGHnTk
+5weHEOa8tvS6mx5PzGw5btI1779+U8OD1CM/PyRx9fsfnhVPCcePG372lKOHD+v/wZrC/6xcn9xg
+ePcDL9dcu71i1fr8cdMSL3v36n7D1d/c+XtdcXciQDzzvJuLNm296L8n1FPSyV//OEsdP254/dko
+AEDHIShklxyw1jXIiba1qCtlF/HhM34agJaydNmHie38Yf1bcBrJDbc9mdgeP274Mw/+OJEDDujf
+a8yooeeffVxiHErB+s0P/nVuXQ1xiQW2C17+daLxcED/XlMmjR16UN9Em94F0/6YaCocM2romFE7
+jw0h1DqXuaSkLHmF8sN3/SD5cYcD+vc6/aujE/2GBes33zXjn/UncclyenRLbMeXJ8966qrE+ePN
+iSceNyIRp1553UOXXnBitZ/gsmtmJLarfQMhhNO/Ojp50fTUH9119uSj6/oR46Fn/rD+j987rZ5l
+zgAAHU1q1AXQKsSTwUQ+WK3NkNbMzwTQUlZ+UJjY/uzQfi112pKSskR6lT+sf3JKmJCXm73g5V8n
+Xl56xd31n/P912+quTz5sktOSWwnWv8a7qU5ixLb+cP61xyKkp6edudvv5N4Oee1JU3+Tu67Y2rN
+8w/o3+vic3cmj/9ZuT750xWr1idyzJopYby8K6ZNWpC05vrxZ96oq4D49zPnmf8nJQQASCYo7OiS
+mwfripyqxYgA0O4NPahvS50quZ3w3G8eW9ea4rzc7ERMVrB+8+x5i+s6YV0PT0xPT5t86pGJl4m5
+xg10+OcGLXj5+vvumHrfHVMfv3darfsM6N8r/5NHE744652mfSG9e3U//auja/0o+f2Fu2adN97+
+VGL72Ycvr+sxjsOH9U98CfXnrffdMbUFm0YBANoHQSEhJSUlpf5BGCna1lqXqqoquS3AHjVoYO+W
+OtUrc3dGfmd89ch69kyOyZLbG6s55YTP1/XRkZ9v3EytZHm52cOH9Z8yaeyUSWPr6bNL9FrWP5il
+Hj/5wal1paV9++x8UvC8+e8lf5Q8eKT+OSo//v4piQrrSUu/dHR+k78rAID2SlBIqDbyuKaUYJ5u
+6xLPdqOuAqC9Kdq0dU+cNnlQRv3jjOuJyZJ9+oA6U7zkRwHOeW3pnvmemiu5yHps+Ki41vfHjxte
+/4H7dGtQn2D9vwUAQMdkmAm7Fx+XISsEoH1LDrDeX17Q4ufPr7cPLoSQ3MdXV0wWQtjTC2ZLSspe
+mrPoPyvXz3ltyYuz3mly52Bd4mOUGyW5MfDtxaumfOd39ey8oXBLYnvOa0tr7Y5MXqMNAECCoBDa
+Ki2FAC3rgE/lJrYXv7emRc65oXBn3teoASnvLF5d6/u77adrpvsfnhWfStyqbNlaltguWL85eToz
+AAAtSFBIQ1nq2tpUyQoBWlTyyt+6crrGKikta9qBdY0tzsvdZw/d/obC4infuSl5oXRcovkub9/s
+USMPuu6mx5swUrmZPlhT2PyTAACwW4LCjs6j7toyvx1AS0peo7pg0apYrKKumRtNO2ej7OnOwVqu
+eOr/S04Ar5p+2qUXnFhzmfOTz87f+0HhsCE7mzHHjxt+52+/08AD8/b1IEIAgEYQFNJQVVWaClsX
+PwdAi5t86pGJZa0P/nXulEljG3X47HmLQwhjRg1NfrN3r+7xx/y9OOud+g8vKdnZftj8zsFGPQpw
+4aJVyfHf+sV31jXrI5Jlv1mZO/PKvNx9mhy/AgBQP1OPaSixVGtjvAxAi7vwnC8nts887+bk5G63
+SkrKJp39m7EnXHnIuGnxxDDumLGfjW/sdipI8gCToQf1rXWflloTXc3CpJRw/LjhrW0icHI9Tf4G
+dBcCAOyWoJCGqqqSFLYulo0DtLhRIw/q3at74uUNtz3Z8GMvu2ZGPApcsGjVrX/8e+L95HxqYb2L
+dhct2RmBDRrYu9Z99tCy36JNWxPbl5w/sa7dkgPQPe3Izw+p6xtoVICbsKenRQMA9YjFKqIugQYR
+FHYsyUMDGyslRf8aAO1cenraDVd/M/Hyyuseuv/hWQ058OrrH77pzpnx7d69ut9543cTH53+1dGJ
+7ceeeq2ek9x4+9OJ7UYtHG5ZmzaX1vXRBdP+mPxyj/4bf06Pbskvr5p+WmL7rhn/rOfA2fMW3//w
+rOR50wBA5FZ/+FF8o1/vPTWZjRYhKOwoxo/pH3bXyFCXeOeada6th0XHAHvOlEljkweJnHnezVO+
+87t6ErGSkrLv/fiuK697KPHODVd/M7l5bcyoofnD+se3b7/r2boCrNnzFicmDk8+9chqj+FL7nNs
+mh7dMxPb1930eLVPP31Ar3o+DSHEYhVXX/9wtX7Gd5euae7X3WCXXnBiYvvnv3m0rq9xxar1Y0+4
+8szzbu419NxDxk3ba+UBAA2Uni6JatX8PB1FXk7XZp7BQtfWw28BsEfd//uLk4O5GY/O+VT++bf8
+YebT/3hzxar18TdLSspWrFp//8Ozuh1wVqKXMIRw1fTTao5Aue36c+IbBes354/7Yc2Qa/a8xWNP
+uDLx8trLJ1fbIfGgwyY7/HODEtsLFq2qtog4eazwgkWrnv7Hm8mfbigsPv70X1x53UO9e3W/+NwJ
+ifdfmrNoT/0GNWRlZSSaCuNfY+K3SFi4aNXoCZcnXj736E/3WnkAAO2DqccdS/ITiOKqqqp2mzpV
+VlaWlJaXbtteVVlLI9tHRVs0uLWI8vIdBes27X637TuKt24b/pn+UdcL0G7l5WZ/sOD2S396dyIB
+LFi/eeqP7trtgVdNP+2KaZNqvj9m1NDx44bHGwYL1m/uNfTc/GH9jx4zbNTIg558dv47i1cnd+pd
+fO6EPTHVNy83OzF/OYSQyCXvu2PqlEljB/TvlTzx+YTJ1/Xu1f0nPzj1vWVrH3x8buKoZx++PISQ
++Fqm/uiuO+9+/ugxw669fPJeeALgpRec+MgT8+LfVcH6zQNHTE3+GquNY5711FWtbSQLAHRka9YW
+hRB652Y2+0zsWYLCjuLIkfvPeGLJnNeWXPTfExp77Lay7YuWrF74zsotJeU1P/1gdeGOWEUIobKy
+srS0dP369ZmZjfsnf9OmTRUVFVVVVYWFhR9++GFjyysqKqqsrAwhbN26tQmHb9y4MRaLhRDKy8sL
+CgrKyhrxGMft27cXFhaWl5eHEMrKyppQf1FR0fbt2+Pbq9d8NOPR2bs9pHhL6YdrN9583bc7d/bP
+L8Cekp6e9rtfnP3lLx5yzvfu2O204hBC/rD+t11/zphRQ+va4R+PXn7LH2Ym0sYFi1YtWLQqJLUi
+xj01Y/rEL43YQzf1kx+cWk/ceeeN331x1juJm62Zjc566qrhw/qXlJQlQs/EjVxy/gl7ISjMysqY
+/8Ivr73xscRC77q+xvvumFrPbwEA7H0rPygMIRwz+lNRF8JuCBo6ik/37x5CeGfx6mrvN2QRa2np
+9nnz37v3oVmr1hTW/DS2o2L79ooQQnFx8cyZM1977bXOnTs3qrbNmzd/9NFHFRUVF198cdeujV4i
+vXXr1uLi4hDCAw888MILLzT28IqKig8++CCEMG/evJNPPjktLa3hx1ZVVcXzwRDCq6++euGFF2Zk
+NO6vSVu3bo3fewhh6X/WXnfz47s9pLKiKjUl/L/LzuiV19znVQFQv4lfGvH+6zfdcNuTiUa2msaP
+G/6z6ZMaEktd9N8TPjd8wK1//Hu13rcQQu9e3U8/efTll35tjzbBXfTfE3J6dDvzvJtr/TQrK+OD
+Bbcnx3AJk0898trLJ8f7HLOyMp558MfJ7ZZ7U3p62hXTJh077uBav8Z4qRee82UpIQC0Nk8+Oz+E
+MPTAnKgLYTdSIlk0Gg+nYrOOiPr2GyF97KshhOWvfHtAvzaZzqxYvXngF/4UQti68i/J/82/IUuP
+163f9Kf7X/zDPS/8Z+X6QCuQldnlrZd+deDA3lEXAtCBlJSUbfioeMvWsoWLVvXonjlsSL+szIwm
+53obCosL1m9auGjVkZ8fnLdv9l5ox0u2YtX6NWuL+vbJqfXSsVjF6g8/WrRkdQih/ttcsWr93i8+
+WeJrHD6s/z7dMqItBgCoR59h3ylYv/mpP3114jED9/KlUwbeGEJ4/6FDB/RpM/+eEM+gIonsdBR2
+FIl8899vr0j+z+zGYrRR5dtjUZcA0LFkZWXEQ6jhw1rgKbF5udl5udktcqomGNC/Vz2PQUxPT6t/
+h+TzRFJ/QrRfIwDQQBsKi+OPNzk8f7+oa2E3TD3uQCafNCSE8PzLbye/2ZB8uqoqVFZWmVjSelRV
+VcViFVFXAQAAALv3j38uCCH0zs3M29cwk9ZOUNiBfP2Uz4QQbr/r2eSMKSVl98vPU1JCSkqK3sPW
+IyUlpVOnRjxLEQAAAKJy3U2PhxDO//ohURfC7gkKO5CjRvULIRSs3zxv/ntJb+/+GYUhBCFhq5Ka
+mqK/EwAAgNZvQ2FxfCjcN7/2mahrYfcEhR1IVman+OrjW//498Sb8qY2qmf3rKhLAAAAgN24/a5n
+Qwj5Q3Pb6GzYjkZQ2LFc+M1DQggzHp2zcNGqj99KiWaMDs2RElIyM7tEXQUAAADUp6Sk7MrrHgoh
+TD/v8KhroUEEhR3LmMP6xpsKv37ezfF34o8fjLouGq1TumcUAgAA0KrdcNuTIYTeuZmnnzA46lpo
+EEFhh3Pt/4wJISxYtGr2vMXxd3QUtjn7dMvQUQgAAEBrtmLV+ng74Q2XH5WeLoBqG9KjLoC9bUC/
+7pNPGjLjiSWTzv7NBwtuT09P221HYffszFNPGHXowQNKSstDCKXbyisrq1JTU1JTUkMI23fEksco
+l5SWV1ZWJh9eum17CCE1NaWysqqsbHv8zcqqqsrKqlisorKyKoQQPyRWUVleviMtLbWiojKEUFa+
+I/k8lZWVW0vKU1NTUlNS4mcoLS2Pf5SamhpC2FpSlpqaEkKorKyqrKzcviNWUVEZL7WsfEf8Qokd
+4pVUVlZVVlWlp6VuLSmLxSrT01NTU1O3b49t3xFL7JmamlJWtqOyYXFqZtfO8Y3OndJTU1NSU1Mr
+Kyszu3aJny01NTUjo1N8h6xPkr7OndLTP2kPzOjSKX4vGRmdErfZLSsj/ml6WmqXLp1CCNn7dK2s
+rIzvCQAAAK3Qud//fQghf2iudsI2RFDYEd35yy/NeGJJwfrN19742E9/+LUQQv1ZYUZG5yEH7T/k
+oP2jLrwVqaysTHxp1m4DAABAsquvf/i5lxeGEB6/8yvaCdsQP1VHlJXZ6eafHRNCuPK6hxYt+SDq
+ctqk1NTUlE9EXQsAAAC0IrPnLY4vOr7q+6MNO25bBIUd1EVnHTp+TP8Qwo//3/99WLAx6nIAAACA
+9mDFqvVjT7gyhDB+TP/LLvx81OXQOILCjuuZP5+SPzS3c6f0b19824bC4qjLAQAAANq2DYXFoydc
+HkLonZv5zJ9Psei4zfGDdVzp6anP3fu1/fKytmwpm/Kdm0pKyqKuCAAAAGirSkrKpnznpoL1m3vn
+Zi6Y+Q0pYVvkN+vQ8vbN/P63R6alpT738sJBh1+srxAAAABoghWr1g86/OL4AJNn7/la3r6ZUVdE
+UwgKO7pBA3rcevUXe+dmFqzf3GvoubPnLY66IgAAAKAtefofbw4cMTXeSzjrodOHD82NuiKaSFDY
+4VXF8ofmLJj5jd65mSGEsSdcefX1D1ffpaoq6ioBAACA1ujq6x8+YfJ1IYT8obkLZn5jzGF9o66I
+phMUdniV26oqt+ftm/nB3HPjc5CvvO6hQ8ZNW7ho1c5dKgWFAAAAwC5mz1t8yLhpV173UAhh/Jj+
+858404rjtk5Q2NGlVG1PCbEQQnp66jN/PuWq748OISxYtCp/3LQp3/ndilXrQwipqSmVlZVRVwoA
+AAC0CitWrZ/ynd+NPeHKBYtWhRCu+v7of9z7NdNL2gE/ITu7BdPTU6/43hHLX/n25JOGhBBmPDpn
+4Iip3/vxXYUfbUlN9UcFAAAAOrp4RDhwxNQZj84JIUw+acjyV759xfeOiLouWob0h+oG9Ot+/00T
+Zz10ev7Q3BDCTXfO7DX03EPGTbvlDzP33FjkiorK8vIdFRX6FgEAAKDV2VBYfMsfZh4ybloiIswf
+mrvgmW/cf9PEAf26R10dLSYlkjkVKSkpIYTYrLaUN6ePfTWEsPyVb3eofwCefnH5j381a8HiwsQ7
+vXt1P2bsZ088bmSP7pnDhvSLv9lv/33T09P2aCVVVVXxPzYAAADAHhKLVaz+8KP49pq1RSs/KHzy
+2fkvznqnYP3mxD75Q3Nv+39fbCtDS1IG3hhCeP+hQwf0yYi6loaKZ1CRRHbpUd87rdrEYwZOPGbg
+itWb737k3UdmvrdgcWHB+s0zHp0T/68HLah/330PHNi7R3ZmWfmOoo1bl61YV1i0Jeq7BwAAAD6W
+PzT3axMOOv/r+SaWtGOCQnZvQL/uV3zviCu+d8SGj0pfX7DuP6s2z5n/4YtzPygoLG2pS6xa89Gq
+NR9FfaPUIjU1pVtmRln59lhFZTACGwAAoMPonZt5zOhPDT0w57D8/Q7P308+2BEICmmEvH0zJx4z
+MIRw0VmHJr+/YvXmpp2Q1i+9U9fOGdk7tpdW7CirrIqFKDqfAQAA2Gv69d7H/OIOS1BIC+hQz23s
+YFKrOvVJ6dy7KrY5xNaHWLEHRQIAAEB7JSgE6pIS0nuE1E5VsU0plSWhakeQEgIAAED7JSgEakoJ
+IaUqpIaULimVJWHHhqjrAQAAAPY4QSGwi6oQQmq3lNROoWJr2LEh/gYAAADQ7gkKgY9VhdSQkhaq
+QkqIhcpYSlVFCBVRFwUAAADsJYJCICElhNSUlKpQuS3qSgAAAIC9TVAIfKIqpoUQAAAAOixBIfCx
+lBRTjQEAAKDjSo26AKC1qzLOBAAAADoAQSFQi6rkDY2GAAAA0AFYegzUJqVzVWq3EEKo2pZitgkA
+AAB0AIJCYKeqkJqSllVVlRpSUlPCjqqqEKoqoy4KAAAA2BsEhUCy1JCaFUJqSlVZiG2x5hgAAAA6
+DkEhtUnvGboMDJXbQvmqUFkSdTXsRVWxqh0b4ltRlwIAAADsVYJCPpHeM3T9bOgyIHQbscv7seJQ
++u+wbUnYtiQEq1DbuZSUEEJF1FUAAAAAERAUEkJ6z9DjhOr54M5Ps0P2uJA9LsSKw8a/hZJ/iwsB
+AAAA2h9BYcdWf0RYfefskPf10PMr4kIAAACA9kdQ2FHVGxHOnL/tlbfLsjNTj87PGDWky64HJsWF
+pW+Hqu1R3wkAAAAALUBQ2PHUHRHOnL/tlie2rC3a+Yi6B18pDSEcMrDTj0/vflDfTkknyQ55Xw8h
+hI0zQ/E/xYUAAAAAbZ2gsCNpTESY7K3lO/7rusJa4sIQQs8JoecEcSEAAABAWyco7BiaGhEmExcC
+AAAAtGOCwvauJSLCZOJCAAAAgHZJUNh+tXREmExcCAAAANDOCArbo7ojwjue3vLka9uaExEmExcC
+AAAAtBuCwvaly4DQY0LoOrjmJ3c8veWeF0rKtle1+DXjceGgPulnH9dtwsiuu3wmLgQAAABoIwSF
+7UWXAWHfSaHz/jU/2XMRYbL318Z+8pdNtzyx5aKT9hEXAgAAALQ5gsK2L+qIMNnaogpxIQAAAEBb
+JChsy1pTRJhMXAgAAADQ5ggK26bWGhEmExcCAAAAtCGCwramLUSEycSFAAAAAG2CoLDtqCMiLCyu
++OPft/5t3rbWFhEmi8eF1z9SfNrYzPMm7rPLZ+JCAAAAgFZAUNgW1B0R3vhY8T/+VVZRGXWFDbNp
+a+WdM7fe80LJN76YJS4EAAAAaFUEha1bRBHhhJEZl5ySHUK48bHimfPLWvbkZdurxIUAAAAArY2g
+sLWKrouwR7fUn5/VM77987N6/nNhwZ5Y1NyguHDL7FBZsqfuEwAAAIAkgsJWKDXs953QdXC1d/fa
+QuMjhnROfnn08C4t3lSYsPu4cO1NoXzFnr1hAAAAAASFrU5qVth/WkjPTn6vzT2LsLHqiwv7XBw2
+zgybn426RgAAAIB2TlDYmnQZEPK+lZwSRhIRvv9hLPnllm17aZhyIi48eniXS07Jzs1O+/iDnhNC
+xqfDut+H0E6DUgAAAIBWQFDYaqT3DH0uTn7jJ3/ZGEkXYeGWXS45//29OlSkbHvVzPll//hX2beP
+67azu7Dr4JA7JRTeu7e/CwAAAIAOIzXqAvhEjxMSm4XFFWf8YsPM+dGsNd60dZer7olJJrtVURnu
+nLn1jqe37Hyr24iQ3jOCrwMAAACgYxAUtg7pPUO3EYlXZ/yy8P21sWacrp24c+bWi+8o2vk6KUsF
+AAAAoGUJCluHpAjsjqe3VOvp68hmLyp/b82Oj19oKgQAAADYYwSFrUBqVnI74T0vlERd0E4z52+L
+uoTwiwc373yRfVTU5QAAAAC0T4LCVqBL/8TmHU9vieSZgMkG9dk54mbCyK59ctKacbIW8NbyHYXF
+FR+/yDw02mIAAAAA2itBYSvQdUhic9GqHc04Ucs4+7huyS8vOmmfpp6pxbzx3ieTl9OzQ2pW1OUA
+AAAAtEPpzT8FzZUxKLH5ThRBYUbnlCF90/vkpB08oHPPbqkTRnZN/vSwgzr//Kwer7xdtraoYv3m
+yrVFFU29TtO98nbZzqo65YXyVrQ6GwAAAKB9EBRGLaVz6Lx/4tXeHGPSo1vqcZ/LODo/Y9SQLvXs
+lpudNmFk10ROV1hc8fCs0hffKtubc5nfWp6Un2YMDuUr9tqlAQAAADoIQWHU0vdNbO61ySGHDOz0
+49O7H9S3UxOOzc1OO2/iPudN3CeeGN7zQsleeKji+k1JbYwZnw6bm34qAAAAAGrlGYVRyzgwsfnK
+22WNOK5zyg+/ln3uhG6NGjZyyMBO/zc990+X5DYtJUwWTwxn/7r3uRO6ZXROafiBaalhwsiM07+Q
+mdbgP30VlWHekvKPX3Qd7M8tAAAAQIvTURi1LgMSm7sssK1XRueU2b/uHd8+b+I+376xcLfH9uiW
+eu1ZPepfZdw08QbD6x7a/Mjs0ordrZw+ZGCnX53TMzc7LYRwzpe7ffny9Q28yr+Wbd9ZfHr3ENvY
+4jcCAAAA0JHpzIpatxGJzV0W2NZrSN9dEt4/XZJ7yMD6OgQnjMx4/tr99kRKmDD9tO73Tcvt0a2+
+P1F9ctL+dEluPCUMIeRmpzW8HfK1REdhCKHLwD13IwAAAAAdk6AwUuk9E5vzlpTvth0vYf3m6rv+
+6pyetYZ0aanh52f1+PlZPRt03uY5qG+n56/db8LIjFo/PWRgpyd/1qvJJ1+5ISlF7TpsL9wOAAAA
+QIdi6XGkOvVObP5r2faGH7e2qGLm/G2JScQhhNzstAd+lHvGLwuT5yanpYabz8/ZbSNhYpDx6o8q
+enZLrRnnff77a3v1SDtkYKeDB3SefFRW/Wf7+Vk9P5W35c6ZW5PfPGRgpz9dklttz5nzt60tamgT
+5aatlYXFFR93I2YMav53DwAAAEAyQWGkug5JbO6ytLYBfvKXTa+8XZbcKhjPCv/njxvjzytsyEMJ
+Z87fdtezW99fG6v/Wp3SU9YWVawtqpg5v+zGx4qPGNpl6kn71DMO5byJ+4QQEllhXSnh/5vRuOnF
+b7y3/eNsND07pGaFypLmffsAAAAA7CQojFRSZ9wuS2sbZub8sn8uLPjp5O6J1sLc7LR4JDdz/rbD
+DuqceBpgbcduu+WJLTUb+j7du5Y/Ej27pSb2rKgMsxeVz15U3icn7cZze9YVF8azwu5ZqYcN6lxt
+n8LiigtvLdptOlnTK2+X7Wyi7JQXygWFAAAAAC1GUBidlM6h8/7xzcLiiuQlww1Xtr2qZmthCCF5
+VXI19ed0+3RNaeCl1xZV/Nd1hRNGZlxySnatiWQ8K6xm5vxtV9yzqeFPY0y2y2TnjMGhfEVTzgIA
+AABAbQwziU76vonNN95rxAMKa5o5v+zEn60vLN59T+KMl0omXrG+Cd189Vz65Ks3zGvAuunC4oqL
+7yj6yV+amBKGalOhMz7dUrcAAAAAQBAURinjwMTmK2+XNfNka4sqLry1qP597nh6y68fKW5yTleX
+su1VU28v2m1W+K3ffDR7UeOew1hNRWXYeZWug/3pBQAAAGhBopboZB6c2NxlUW1Tvb82Vk9ad91D
+m6tNIm64Wh9cmKyiMky9vWjGS3U+NHDekvKGDziuxy6zoTvt1/wTAgAAABAnKIxO18GJzV0W1TbD
+xrofdHjOl7v1yUnb7Rm+cHBGzTcb8uDCI4Z2+dLnMur69G+vlrbIDe4yG7pznxY5JwAAAABBUBiZ
+9J2zR+YtKW+R5cB9ctLqmWGSm5325M96TRiZ0ZhTNkhaavjh17JvOi+nniHLPz+rZ0bnho5Jqccu
+s6G7DmvxewEAAADosASFEekyMLG5y3LaZrjopH12u8/Pz+p524U5LZLZxfXJSbtvWu7ko7J2u+c3
+vrj7fXZr09bKnTNbuo1oqbsAAAAAQFAYkS79E5uvNWBk8G7V306YbNSQLo9fkTeoT3pDdo7Lzqz9
+z8mEkRlP/qzXQX07NeQk503cp0UCyl0mRKe2QPgIAAAAQBAURibz0MTmLstpm6oh7YQJudlpD/w4
+79wJ3dJq/P4H1ja35JBPd672TkbnlJ+f1ePnZ/UMjdEiTYW7TIhOylsBAAAAaA5BYRRSOof07Phm
+YXHFpq3NfUJhRueUmu2EhcUVJ/5s/c6FujWcN3Gfm8/P6dFt55+BtNTQkPbAQX3SH78ir54GxnlL
+yo+9bF2tV2z+l7fLhOjOn2r+CQEAAAAIgsJodN4/sbnLQtqmGjmoc803b3yseG1RxclXb5hX99Lm
+UUO6PH/tfmOGdYm/rGts8YSRXQ8Z2KlHt9S01HD6FzIf+HFePXNLZs7fNvX2ok1bK2e8VFLz00Yt
+ea7VLhOis/Kb/+0BAAAAEEJobmpDU3Tul9jcZSFtU008vJZ2wn/8qyyEULa9aurtRTefnzNqSJe6
+Dr/pvJyZ87f17JZazz5/uiS3IZXc8fSWO2dujW/f92JJzSEnxxyS8f7arc252YrKMG9J+celdt4/
+hNQQWmJoNAAAAEDHpqMwCpkHJzZ3WUjbJGmpoeYq4BsfK674JD2rqAxTby+aV+/IlAkju9aTEjZQ
+ckoYQlhbVFHzopPGZjb/+9tlTnSn/Zp/QgAAAAAEhVHoOjixuctC2iYZuF8tbaGvLtllRXNFZbjg
+1qI7nt6y5+7p2zcWJqeEcX97tbTaO7nZaclPRWyaXeZEd+6z524KAAAAoOMQFO516TsnBc9bUl7R
+7FWzxxxS/cGC763ZUeuAlDtnbt1DWeG3byystTWy1jePGNJ592es1y5zorsO2xN3BAAAANDRCAr3
+ui4DE5v/XNACDygcUKOj8NE5pXXtfOfMrT/5y8YWvJvC4oozfrGhrgXUa4sqao5dPnhAc4PCXWLQ
+biNa8HYAAAAAOixB4V7XpX9ic8nq5j6gMITQs8ZK3jffr2+S8sz5Zd++sbBFbqWwuOKMXxa+vzZW
+zz41xzr3bPbS4xDCzPnbdr5IzWr6iQAAAAAIIQgKI5B5aGJzyZpY08/ziZpDSAq37GY981vLd9Tf
+Vzhz/rb4/+ofgXLGLwtrXeOcrOZY55qjV5pgl9MmZa8AAAAANE16809BI6R0DunZ8c3C4oqy7VXN
+PF9abUnvbsO7EMI/F9aZAP7kLxtnzt8Zw912YU6tA5ELiysacqG1RbVMa0lLDc18OOP7HyZlrJ0/
+Fba926zTAQAAAHR4Ogr3rs77Jzb/8a8WeEBhrx5p1d6p+UzAWvXbN63W92fO35acEoYQfnDnxlrP
+mZudltE5ZbcXWr+5lkSwZtmNtXxdUlCYld/MswEAAAAgKNy7MgYnNt9esb0ZJ6pTzWcCVtOjW+rp
+X8i89cKcmh8VFldccc+mam+Wba/61m8+qvVUj1+Rd8jATmn1/iGqtaOw+Soqw3trPnnCY+f9Q0pz
+B6QAAAAAdHCWHu9dGZ9ObNY1KXgPGdQn/ZhDMo49JOOgvp3q2a1RK4Jzs9P+dEluCGHekvL7Xix5
+Z9WOhixGbinPv1W2817S9w071u61SwMAAAC0P4LCvSk1dN3ZUbiHWu2SZXROGdI3/Usjuk4+qkFz
+gXOz03p0S60Z9h0ysFP9B44a0iX+HMP31ux4/q2yF98qq38UcotYtCopac04UFAIAAAA0ByCwr0o
+vXtis/5pwg23sbYOvh7dUo8Y0vkrR2TWOoSkfp/t32n2ouq1feHgjAYeflDfTgf17XTexH1CCDNe
+KvnHm9taZLJzrd5JDgq7DAhbZu2hCwEAAAB0BILCvajLwMTmPxe0wCSTEELNuckTRnadMLJrk094
+5jFZ/ymIJXc7HjKwU9NOOPmorLo6GVukm3KXzsduI0Lhvc0/JwAAAECHZZjJXtR1WGJzyeqWeUDh
+bhcFN9aoIV2e/Fmvn5/Vo09O2iEDO/3f9Nz4UwhbVkPGJTfEzPnbdr5I79nidQIAAAB0HDoK96KM
+QYnNFlmQe+6EbvFFvi2umW2JuzX7170vvqOo5hrnxnrl7bKddXbqHWIb91zNAAAAAO2boHBvSc0K
+6dnxzcLiippLhuvXo1tq184pvbqn9slJ+8LBGQf2Tq9/eHHrd9N5OfOWlP+nIPb2iu3vfxgrKa9a
+v6miUTOXQwjvf5iUt3YdEra9G/VtAQAAALRVgsK9pVNeYvMf/2rEAwp7dEu99qweTRhLUqvkbC4r
+I+VX5/TMzU5rwnm+fWPh2yt39OqR9une6cP6dxqwX3oTOhA/npWc9BzDwuKKP/596yOzSxuYGC5f
+lxQUJjVsAgAAANBYgsK9JWNwYvPtFdsbflxzUsLC4oo33tv+1n+2L1m9Y/3mypojRM74ZeEdF+Y0
+tjlx3pLyt5bvCCGsLapYW1QRX0H8k79s6tEtNXef1EH7pze55zE3O236ad1PPTLzv64rbMj+FZXh
+vTU7Pr5Q5/1DSudQ1YjvFgAAAIAEQeHekvHpxGY8ZWugelLC99bsCCHUmsdd99DmhvTlbdpauawg
+1thE73+f3lLX2TZtrXx/bWzm/I9bJv9vem6tJ39vzY7n3yqbNDaz1n7Gg/p2OmRgpwZ+S8+/Vbbz
+Eun7hh1rG3UvAAAAAMQJCveWrjs7Cmt29tVjZ8fcJ+YtKb/vxZJ3Vu3YtLUyhJCWGr59XPWpJqce
+mfngK6W7PXlaajjsoM6NvZXPD+nSkBSvT05azZSwsLhi4hXr4wnmnTO39uiWesSQzt8a3y15z3lL
+yhs+7GXRqqRKOvcRFAIAAAA0jaCwtTvv1qL//nK3L30uY9na2H0vlsx/f3u1QSgVleHJ17ZVCwob
+2JR38AGdmvCMwkljM//07NbdtitedFItE5kfnrVLn+OmrZUz55fNnF92yMBOXxrR9bBBnR+dU9qQ
+iDPhPwUtMD8aAAAAAEFha7dpa+WvHyn+9SPF9eyztqiiZuPh6eOy3lq+qf6Tf3fiPnV9NG9J+cat
+lbWOKMnNTjv4gN2kkH1y0mo99snXttW6/1vLdzRqRTYAAAAALSs16gJoGTc/Uf25gRNGdh3Up74g
+uEe31LoegDjmhwUX3Fr0k79s+slfNta6Qz0JY1yt7YTvrdnRqGXXAAAAAOw1gsIIZHROafFzvrq4
+vLC4egZ364U5aXX/wqeNzaz1/Tue3pJY3fyPf5XVPG0IYdSQLj261XnqQwZ2qrWd8BcPbm7xGz9k
+YKNnKwMAAABQk6Bwb9m2NLH5jS9mtfjpKyrDjY9VX56cm512ySnZte6flhom1RYUFhZX/OnZrcmn
+/Z8/1t5UWFfO2KNb6q/O6Vnz/Znzt+2JxcW73OB2k0wAAAAAmkhQuLcUv5TYPG/iPnuiqXDm/LL3
+1lRP4iYflVVrz11dY0xufKy42pSSt5bvqHnaEMKksZk12xXTUsO1Z/Wo9cy31Fgc3XyHDEy6i1ix
+kccAAAAATSYo3FvKliW/qvURfs13+d2bar75p0tya2aFtT5ksLC44h//Kqv5fq1LhuMjTaq9+e3j
+utX63MMZL5W0+NMJ01LDLq2LW+a07PkBAAAAOhRB4d5StT1suDfxavJRWWOGdWnG6Wr3/trYjJdK
+ar7/q3N6Jj9SsK4xJlffv7laO2HcW8t3zJxfy7Tiamnj6V/IPK+O/LHmsujmu/obPXZpJ9z8XItf
+AgAAAKDjEBTuRSX/Dts/TLy66bycPjlpzThd7W58rHjekvJqb+Zmpz3wo9zEEORaHy/43podsxeV
+13XaWhcOJ0aapKWGH34te/pp3Ws99sJbi2rNH5vj9C9k7jIv5aMHQmjpawAAAAB0JILCvakyFNye
+/PrPP9g3raV/gYrKcNlfNtUcVZybnfbAj/MmjMyoa4xJ/SOJ1xZV1NpUeNrYzIzOKTefnzP5qNon
+tFz30Ob318Za9h4H9UnfJZQsfjlse7eFv0cAAACADkZQuHdVloS1NyVe5Wan3Xx+TotfZNPWygtv
+Lar1o5+f1fPm83NqDhtpyEjiWpsKJ43NfPyKvFoXMocQ7nh6y4OvlLbs3fXolnrrhUlf2raloehv
+LfwNAgAAAHQ8gsK9rnxF2Dgz8WrUkC7nTujW4hd5f23s2zcW1vpRraFeQ0YSry2quOPp6rvlZqfV
+OuM4hDBvSfmdM7e27H1Vn6ocKw4b7rHoGAAAAKD5BIVR2Pxc2LY08eq8ifvUnErcfG8t3/HtGwtr
+rkGuaeb8bQ0cSXzPCyUN2S1+zqm3FzVw54arPlV5w59DZUNLAoA2bcrFT6cMvDH+v6hrAQCgfUqP
+uoCOqTKs/1Poe1lIz46//tU5Pc/4ZeGmrS3cGffW8h1n/LLwgR/l1tX0F3dg7/Qxw7q8s2pH/QVk
+dE45eniXwuKK+s8WQrjj6S0t3ksYQhgzrMsuU5U/ejSUr2jxqwDAnrNwceHCJYXvr9i0eNnH/znt
+xGM/HUIYPiR3+NDcqKsDAKCjExRGpGp7WPe/oe+0+Kvc7LQ7Lsw58/rCFp8OvGlr5clXb/jNuT3r
+eoxgCOGgvp1uOi8nhFBYXPHGe9s3bq18e8X2+EefyksfsF96z26p9RxezU/+snHm/LIW/8J6dEuN
+F/mxbUvDllktfhUA2BM2fFR6+70Lbr/3rYLC6o/unfHEkvhG/tDcc/9r+BknDs7bN7PRFwAAgJYg
+KIzOjrVhw70h7+vxVwf17XTJKdm/fqS4xa9Ttr3qgluLTv9C5i6TgmuTm502YWTXEEKoY4Rx/eYt
+Kb/sL5tavC8yhJCWGh74UVKfRaw4rPt9i18FAPaEW/7y76k/e3G3uy1YXDj1Zy9O/dmLN//smIvO
+OjTqqhtn4eLCX9z2Wgjhd1ceLegEAGi7BIWRKnkzdB0Wuo2Iv5p8VNbbK7bviXa8EMKDr5T275U+
+uUkJYANdcGvLP5Qw7upv9NhlvXPB7wwwAaD1Kynd8dXv/O252auqvT/5pCFDD8wZNKBH0aayOfM/
+fHHuB8mdhlN/9uKc+R/e/ZsJ6elt5lnSL81bHW+NvPZ/xuRFXQwAAE0mKIxa4f2hc+/Qef/4q5+f
+1fOt5esbOFqksQ4b1HmP3kpaamjxpdMhhNO/kPlxn2PcujtDbOMevREAaL5YrHLQUX9KTgAv/tah
+l180qlrD3UVnHRqLVc7799oLfvrCgsWF8TdnPLEkb9+uv7vymKhvoqHmzP8w6hIAAGgBbea/VLdf
+laHg9uTXf/7BvhmdU/bElZYVxJJfvrdmR3PO1szDG2hQn/RdVkwXvxy2vbsXrgsAzfTNH8xMTgmf
++tNXf3flMbUuy01PTx1zWN85j/xX79ydn97053+vWL056ptoqMSTFgEAaNN0FLYClSVh7U2hz8Xx
+V7nZab85t2eLL+Pt0S01uS+vsLjivFuLtpRWHnxAp88P6TJpbOZuZxnHzVtS/rdXS19dsn3T1sof
+fi07eS3zlz6X0bLrpnt0S731wl0HmBT9rWW/FgDYE+5/fHFydrb+je/u9sl9WZmd5j72XwO/8KfE
+O5f9avb9N02MpP5YrHJ1wZaPC+vaqf7imxBoxs8/Z/7aEMKRI/vs9hK1KindsaGotCEVAgDQQILC
+1qF8Rdg4M/ScEH81akiXcyd0u3Pm1ha8wrSvZSe231uz41s3flS2vSqE8NbyHW8t33HnzK19ctKy
+uqQM2j89hHDwgM49u+3sNl2xLrZo1Y7/FMSqrYn+9SPFb6/Y/vOzesZfXnJK9j8XlsdP23xpqeHa
+s5IeTRgrDhvu8WhCAFq/WKzy0mteSry86vujGxhjDejX/b7fHn/m958JIUw+aciF3zykIUetWL05
+ES/e99vjp5w8tK49p1z8dCK+rFp+Sc0dSkp33HDn/Ct/O7fa+71zM8//+iHHjvnUqEP7JD85MWXg
+jdX2TA46l7/y7QH9dhmkFotVXvrzlx58cmnN6c/xoc91TXG5//HF8a8lXnksVnntra8l6px80pCo
+ElUAgHZGUNhqbH4uZHw6dB0cf3XexH1eW1L+1vKWWd7bJyctuZ3w5ie21Izz4iHg+2tjIYSGNwb+
+419lPz/r4+3c7LRvfDGrpfLNbx/XbdSQLjtfb/hzqCxpkTMDwB41799rk4OwS88d2fBjp5w89IC+
++xw6rFdWZqe9WXO16K2agsLSK38798rfzh0/pv//b+/u46Iq8/6Bf8nhp/KkPAwMCyYo5uOMlPgz
+gW4zRnPRMkthgczK7c5VUMt2e2aESne3LDW0WtfKDFjRNEsoETPKgfWnFs7kQwoxJsbg8KDgADZH
++f1x4eVxZhiGxwH8vF/3636dmTnnOtc5c3o5++F7Xdfn/3qwfX3TlV2aPOc/lhEhwxZ9tnMVl6zs
+0y11FQAAAAA6AkFhz3GNLnxIAS+RpLn078NnfKJeqrh4uRNq6BIfcBe//O+pK53V6avX6P2cukXR
+ze0vinbffrC+432OGNOft0lEVLWTrug6q88AAABdasMnx/h2+to/tjVWiwgLaNP+gTL3Nu1vVe73
+Z8XRm8zHZerkIbOihh0qKhcXAOapfw2Z8uG5wqdYlhf3wEgiOn6mii/Dooy4XerV/LdJ14E3Ljzn
+QOnMJz8Xn5HvKT4888ufDdUNtrNIY71JXLAJAAAAAJ0IQWFP0vQ7VXxAAX/lb7y/xCvhzcoOLiUc
+Maa/uJzw/Zy6zl2b+MCxRnGo1/E+D3a7bf2im6cmrDvYmT0GAADoSuLZCcMn+Hf16Vqtv7PHO5t/
+4Nuar+bLR/mw7fjZo9apphqq6hUztrK4UF9Zn/v92eipwUTEBvyKxwVv+rvSbLgxEQnCtYV/y+Uv
+ZT4umq/ni4dji1vIU/+6ZtPR5GV3t9TVp17Yp6+sl/m4bP7n9DEjvOjmRBIAAAAAOgKrHvcwpnIy
+fMpfjQhwTp0/uCPtDfg/TjeFbkQHjnXmeiNEVFwuVNbemLtwRIDzIxHtn1C832207QWfG6+FWqr4
+V+d2GAAAoNtIvXrBIhvGelOe+le2vfTxUJ4S3rgKb5fCXX/iL1/8Z9v+gJeVfaMm0TIlJKL42aMu
+H09URtzOXqrWFgpCi39yzPzyZ8Uon3OFT0VPDQ4KHBQUOAgrmQAAAAB0FgSFPY/xB7p846/6MyYM
+nDFhQLsbE69JQkSVtVfZLISda/Pem+YlHD/s/7S7qdT5g29af1m/DguYAABAL2K2BHA3TDXYjkWH
+zezeV8K37/+fIKv7BAUO0nw1X/PV/NLvnzz21Xz7Gzdb2sUyJeQ3atPflfxlVvZpG21ufO2+Tqmj
+BAAAAAAz+I3VI1Vm0O+/8VdvLPAM8e+cQeI7DtZ3vBFLuT92TpVizD0u4lHSVLGJhJqu6DAAAEA3
+4CVyPZx85I0SwplPfq4+ct76bqN85KN8LEcW21amr+PlhHEPjLRR/RcUOIjfsX+8f7il3WQ+Lm2d
+xhEAAAAA7ISgsGe6Rvr3xK83LPEa8H+c2tFQzeVrfFzw10cbtn7TJQsHX7x87eUtNxK9rO/ac5YQ
+f8nz80T/26P2O2o42RW9BQAA6B58WY8ebnTITbOURM7LaikrbIfz+hvDDsIn/MH2zvdMbE4A+fIm
+lqZOHuKQuwQAAABwK8BiJj3VNSOVryf/peyVj0e/t5/yTHqvuq2LhDT+3vT421UJU133/dBwrNTU
+df39+mjjt1p94gPuP+l+b8eJBrvdtmHJzQuYVH/Rdb0FAADoBgcKzzm6C3aRSG5LWT5ZvOpx5Lws
+ZcTts6cNnxUV3NYSQjNnz9fx7TO6mozdp2zsfKqkutUGZ0UNc/QNAwAAAOizEBT2YFd0VPM1ec5g
+ryaN7P/kdLdNX19uazPl1Vff+qy2G/rb+HtT+07U7zZatUA0NaFQS4atmJoQAAB6I3Gsxofc9nwv
+Lfm/3x8+z5c0IaI89a956l+TVh4goqWPh/45Vm65yIk9inUX+fb6j4uIiuw80FBVj1VKAAAAALoZ
+hh73bJfyqOHGZN6Lot0jxvR3dJ8635PT3SaNFF2X4WO61iVDpAEAALqZoap3ZIUSyW37Pn1E89X8
+pY+HWn66/uMixR+3jv/j1ozdp2ysR2yVPUWCVhkbrA9QEM+oCAAAAACdCxWFPdw1uvAhBbxEEg/2
+ev0ir6iXKi5e7jvVdhFj+i+Kdr/xumonXdE5ulMAAADtF/fAyMwvf2bbekNvKouTj/JZp5q65uUp
+ud+f/XTXSX4VjOZUZcLyrz7afvyrj+fYv+iw1PvGRI0pyyeHBA2290Av6/fN3a3LF5IGAAAAuGUh
+KOzxmn6nig8o4K/8jW0v+EQnX2jrZIU902C329YvunlqwrqDju4UAABAh8yKGsYjttUb/1/G+ui2
+tuDYUbcSyW3RU4OjpwZ/8vaMk8XV+YfK3kg7xIdR56l/fT9dk7gg1M7WJoX68+HGYQq/6KnBjrou
+AAAAAGgVhh73BqZyMnzKX/l49EudP9jRfeoE/W6jbS+IRg8JtVTxL0d3CgAAoKOmRd7OtzO//FlX
+dqlNh2fsPuUb9kH80py2Hkg3TwhoyaxCsFUSyW3yUT6JC0ILd/1J/P6m/2jtb2Swx43ZRS7WXmnr
+FQEAAAB0BJ8HRjoYgxLsgqCwlzD+QJd/4K9mTBgYc0+vGcfUktT5ogVMiEi/DguYAABAHyD1dol7
+YCR/+dI/1fYfa6iqT1j+FRFlfvlz8D0ftnWKQxsTAhrrTW1p6SZBgYOyP3yIv9ScqrS/tTEjbgwd
+sJ1jAgAAAHQ6Puux68B+HWvpVoGgsPeozKDff+Ovnp83KMS/F48cj7nHZcaEG5MWUcUmEmoc3SkA
+AIDOseSx8Xw788ufcw6U2nOUoapeMWMrf5myfLI9A5DF6ywbqhta2m33vpKWPhKEa7qyS7YXKome
+GixOPw3V9iaY4qkGVWsLbSeMhqr6ViPIusvtTzwBAAAAwDYEhW3j0N+m10j/nvj1hiVeg9165TcY
+4i95ft6N/1VDtd9Rw0lHdwoAAKDTRIQFiGO1mU9+Hr80x/Z6wcZ6k/LRz/hUgDIfl5eW/F87T6cY
+1TyVR576V6tBmyBcW/F6vtVj1UfOO49YF3zPhwnLv1rxRn5LpxCEawcKz/GXgTJ3q7t98pn5P+iu
+Ls4pyyfzlzbySvWR875hH7iNTZv26Gc2olXtz5V23hYAAAAA/ImxrXplzOQQUWEe5PDfpteMVL6e
+v/Lx6LdqweB+ve07HOx224YlNy9gUv2FozsFAADQyT55e4bM50YxXeaXPw+ZvEl95LzlaGJjvSl1
+3X/dxqZpTt34mZG79RH7VxZ+ZMYIvr1m01GzTw1V9X98fBePIM1EhAXwfq7/uChj9ymru614I5+3
+oBjlI+7b0IAboaFqbaFlHrriqQl8O2H5V2lbiizbN1TVz/3LHrb908+VExV+nfZNAAAAwC2MxTix
+Sm9Hd6TX6MVjV7vZ6CCX/UdqHT+3zhUd1XxNnjPYq0kj+z8zx+Otz2odfXvs1e82WrVANDWhUEuG
+rZiaEAAA+h6J5Lbi/CefemEfX0JEX1kfOS+LbfN6wwOF58wiPJmPS+GuP4kHFLdqxVMTVGsL2bZq
+beH3h88/MW+sfKTPufK6vd/psvac1lfWKyNul3oNtLqeyZpXprCJEYkoYflXK17P/8uj46MihgTI
+3Ooum7Q/V+7Z/4v4wNV/ixQfHjrGV/zyj4/vknoNJKIlj42PCAsgIlcX5/S1f+SnSFp5YPe+EtZD
+IrJsP3frIw5c9BkAAAD6kkNF5YSVTNoCQaG9Jo1xSyP6/vB5R3eE6FIeDRhGA+9gr+KmuBaevKI+
+0TuWEXxyutukkTdWPyTDx3TN6OhOAQAAdAlXF+eM9dGPzhk988nPzT5qaQFixSifvE/bHJOx4b08
+K8xT/5qn/tWs2a8+ntPSyOL42aOIiAd5+sp61dpC3pqZlOWTo6cGm51dMcqHl0PyU8+KGhYRduMU
+gz368/tg2UPu4PYY+fWR1AAAAAAd9O1/y4ho0hg3R3ek1+htw1YdZ9xwF2p56p/udY0ufEjCjSrC
+9Yu8/L16wfI9EWP6L4oWTWlUtZOu6BzdKQAAgK4VPTX4wpGnxVMWWqWMuP3g9phjX81vXzFd8rK7
+31051epHLHyUSG6bFOrf0uHxs0dpvpqvjLjdxikUo3wObo9JXna35UcFn/3J9rH8PihaDgEVo3zS
+1/6RFSECAAAAdJyx3sT+ljlZjqDQXk5NTU0OOKuTExEJB+/ucEvdShL5XyI6uD2mR/yEdfangL/y
+V5W1V/+2ueZYqcNDzBbNmDDgjd/p7xIAAEOzSURBVAWeN143nKaK9x3dKQAAgO4jCNcOFZWfPV9X
+rLt4qqSaiEYN9woJGjw0wP2OYM9W80FDVb2xofkf+pYGJuvKLhUcLWftS70HTgr1D5/gz3c21pv4
+asUttWCsN+3eV3KoqNxQ1WCobmCDiGdFDZOP9LFd6Mevbs/+X8In/OHOsdLQMb6uLlaG+Riq6vWG
+ejbimN8E2+2Ley71crHaLAAAAIAZ9ZHzbOKXXhpAOSayQ1Bov4SVZ7blVS19PHSdamrHW+sErneR
+9FHxGy9vqfn6aKOju2Wu3230zByPuCmuN94SaqksFVMTAgAAAAAAAEAXiV+ak/nlz4lzZWuXBzm6
+L22DoLB3UGvqpiw+TkSmM8vsX4iwaw2azhc2YSprrx458/v3PzU6vLrQd9BtIwOd71UMuGlSQiIS
+akm/joQax3YPAAAAAAAAAPoqY73JbWwaEeVvHBuhcO9we93KgUEhFjNpAz75ZVb2aTbtt+NdyiWh
+UlxX6OPRb8aEgTMmDHR0z1rw+2+kfw8LmAAAAAAAAABA19m9r4SI/Lyce11K6Fg9oyyul5BInFQL
+A4loxev5gtBjhs0af6Dzb4rXNum5Lv9Av72NlBAAAAAAAAAAuo4gXFvxej4RLZrj5+i+9DIICtvm
+2T/5E5G+sj4r+7Sj+yJiKqff3qTa7xzdj5b9/htV7aTKTzEvIQAAAAAAAAB0qazs0/rKeroe44D9
+MEdhm732UVnK5jKZj0tx/pM9cdE9iSf1D6b+t9NtPWDxb9MFajxNv/9GTb87uisAAAAAAAAA0PcZ
+600hUz7UV9arFga++kSgo7vTHpijsDd5cX7A+7sq9JX1azYdTV7W87JOoYaEGjL+4Oh+AAAAAAAA
+AAB0t5fePKivrPfzckY5YTtg6HGbSSRObyUOJSLV2kJDVb2juwMAAAAAAAAAAERE6iPn139cRESb
+XhzmOrCfo7vT+yAobI9593n7eTkTkWLG1h60qgkAAAAAAAAAwK3KUFUfOS+LiKLCPKInezq6O70S
+gsL2kEicirYoiEhfWf/Hx3chKwQAAAAAAAAAcCBjvUkxYysR+Xk571w90tHd6a0QFLaT1NM5f+NY
+IspT/7pqw/9zdHcAAAAAAAAAAG5RgnDtof/9gq10XLRFgUHH7YagsP0iFO7rlgcRkWptYdqWIkd3
+BwAAAAAAAADgVrTijfw89a9ElL9xrNTT2dHd6cUQFHbIkrmyWKU3ESWtPJC67r+O7g4AAAAAAAAA
+wC1EEK5Ne/QztoDJuuVBEQp3R/eod0NQ2FFbXgmJCvMgItXawmmPfob5CgEAAAAAAAAAuoGhqn7I
+5E2sllC1MHDJXJmje9TrISjsKInEae/aMaqFgUSUp/51wgPphqp6R3cKAAAAAAAAAKAvUx85r5ix
+lc1LmL9x7KtPBDq6R30BgsLO8eoTgV+8OZKINKcqFTO25hwodXSPAAAAAAAAAAD6IGO9KXXdfyPn
+Zekr6/28nIu3h2LEcWdxampqcsBZnZyISDh4t6Mvv5Ppyhsjnj5eUW0iImXE7Zv+rgwKHOToTgEA
+AAAAAAAA9AWCcC0r+/SK1/NZIWFUmMfO1SP73hrHksj/EpFjIjsEhZ3L2HD1f//xy7a8KvYy7oGR
+q/4WgbgQAAAAAAAAAKAjcg6ULvxbLosI/byc30ocOu8+b4nEydH96nwICvsabUn9Y6nF2pLmyQoV
+o3yeXzRx9rThri5YohsAAAAAAAAAwF6Gqvr3PtW89+kxFhESkWph4IvzA/pkRMggKOyb1Jq6xDWl
+PC4kIsUon0dmjIiKGBIgcwuUuUskmCMSAAAAAAAAAOAGQbhWpq87caZ673e6rD2neT5IRIlzZW88
+PaTvjTU2g6CwL9OVN279uvL9XRVs7kJLyojbpV4DHd1NAAAAAAAAAACHMVQ35Kl/tfqRfLjLnx/w
+fXymtM9HhIwDg0KJo6+9L9OVN57QNRw9ZTx1tmHcsIEtBYUt/WcAAAAAAAAAAHBr8vNynnef9/RJ
+gyaOcpN6Yia3boKgsJMJQtOhE5e3f1OVtkPf7kbGBg+8a6Tr6KEDh/j1d/QFAQAAAAAAAAB0h8ly
+N7YR5D/A0X25RSEo7DTGhqsvf3DOLB+UyWRTp06dNWsWEcnlcnd3d8sDCwoKqqurCwoKjh8/rtFo
+iOh4acPx0gYi8vNyXjTHb/4MH/wXAgAAAAAAAAAAXeoWnaNQEJrKDFesfhQo7d/WdXOMDVff/k95
+yuYy/s7SpUtjYmJCQ0NdXV3b2DHh5MmT+fn5u3fvzsvL4+/HKr3feHoI4kIAAAAAAAAAgL4Ni5l0
+LUON6fS5xqLTxoKf6iovmvYfqW31EPlwlzHBA8PHuYfe4XrHkAE2BsPryhsjnj7O5h+UyWSbN2+e
+Pn26RNIJpZpGozE/P//FF19kZYZEFBXm8alqBEbmAwAAAAAAAAD0VQgKO5+x4Wp+UW363spteVUd
+b43NoDnvPu9JY9zE9YZqTd2UxceJSCaTrVmzJiYmplMiQjNqtXrDhg2ZmZmsJ5teHBY92bPrbh0A
+AAAAAAAAADgKgsJOw/LBddvKLcsG4+LixHMFBgYGWg31dDodERUUFBDRnj17WDzHiScN1JbU37lA
+Q0QymUyj0Uil0i69aVqtdvr06Xq9nohUCwNffSKwS08HAAAAAAAAAADdD0FhJzDUmN7/vEI8UaBM
+JouJiYmJibnjjjs6kuIZDIbDhw+/8847ZpMGfvtDbUW1SalUfvXVV11RSGhJEITHHnuMZZfICgEA
+AAAAAAAA+h4EhR1iqDEtX6fjQ4xlMtlf/vKXOXPmyOXyzu225aSB3VNLaCY+Pp5lheVfTsB8hQAA
+AAAAAAAAfYkDg8LbHH3tHSIITRt26P0fOMpSQoVCkZ6efu7cueTk5E5PCYnI1dU1Ojr62LFjBw8e
+VCgURLRjx45uTgmJ6JNPPmFnz9rfCdMvAgAAAAAAAAAAUK+uKDTUmEIXaPhywzt27IiIiOjOq9Bq
+tV0RR9ojLS0tKSnJz8v5/BcTHNIBAAAAAAAAAADoChh63GZ8uWEievfddxctWtQ9swT2EAaDwdfX
+l4i+eHPkIFfJr/orxecbT51t4DuEj3P38pDcLusfIHUOlPYXr9QMAAAAAAAAAAA9FoLCtnntozK2
+aIlDpgjsIaZNmyZeXMU2+XCXh+/1mjDKdfrEwQgNAQAAAAAAAAB6LASFbbBhh37ZWh0Rdedywz1Q
+Tk7OzJkziUgmk02dOlUqlU6aNIl/umfPHiI6cOCAXq83OzBxrmzefd6TxrghMQQAAAAAAAAA6GkQ
+FNqLjzheunTpunXrur/nPYcgCDU1Na1WUwqCUFZWVlBQsGfPHrZWMuPn5fxW4tB593kjLgQAAAAA
+AAAA6DkQFNpFV94YMq+IbvlawnYTBOHQoUNZWVnr169n77C4MG66j6O7BgAAAAAAAAAARAgK7XTn
+Ao22pF6hUBw9ehQpYUcYjcY1a9aoVCr2MirM41PVCKmns6P7BQAAAAAAAABwq3NgUHibo6/dXjmF
+NdqSeiLavXs3UsIOcnV1TU5Ovnz58tKlS4lo/5Fa/weOZuZWOrpfAAAAAAAAAADgML0jKBSEpqdW
+/0JEcXFxQUFBju5OH+Hq6rpu3TqNRiOTyYhofmrxax+VObpTAAAAAAAAAADgGL0jKDx04nJFtYmI
+Nm3a5Oi+9DVyufzcuXNxcXFElLK57LWPygTBAaWtAAAAAAAAAADgWL0jKNz+TRURLV261NXV1dF9
+6YMkEklGRkZKSgoRpWwuey7trKN7BAAAAAAAAAAA3a0XBIWC0JS2Q09EMTExju5LX5acnMyywrQd
+esxXCAAAAAAAAABwq+kFQeHJsw1sIzQ01NF96eOSk5PZ8ibzU4vVmjpHdwcAAAAAAAAAALpPL1g+
++KeSeiJSKpUYd9wN1qxZc+LEiby8vJhXTp/deZdE4uToHgEAQF+TsPIM20hfOcLRfbmJoca0fJ2O
+iMLHuS+ZK7PcQVfe+PIH54johfkB8uEuju5vT8Hv2+KHZREKd0d3BwAAAADarxcEhYxUKiUig8HA
+NqCzqNXqDRs2rFu3jt1YNl+hr69vRbVp+zdVcdN9HN1BAADo0QSh6dCJy7/qrxw6cdlw0UREs8I9
+B7n3mxLq4Tqwn9VDtuVVsY2eFhQaG6/yvlkNCrPVF9kO/3p+mPUWGq7mF9Veqru6p6CGiKSDnSeN
+cbtd1n/SGLdu+9ubseHqF9/XENHtsv7dE9sdPnWZ3ZYX5gdY3UEQmnIPX7xUd5U9JA65LQAAAABg
+j14QFBafbySio0ePOjk5EZFMJps6deqsWbNiYmIkkp7Vf4PB4OLi0rsqH8+ePZuZmblq1SqewEql
+0nfffTcpKWl+avGD93i29D/zAADgFicITau3nn9/V0VFtUn8Ps/aosI83koK6kuVd//+8gIRyYe7
+WP7jqCtvXLtNz2ZVFku7vpE4V/byggCpp3NXd9Jw0TQ/tZiIYpXe3RMU5h66xDZGDx1o3pka0/uf
+V6RsLrNxW5bHyoL8B3RDP3svQWgqM1xxHdCvG54fAAAAuMX16DkKjQ1XM3Mr38r4jYhOnz6tUCjS
+09OnTp2amZmZkJCwatUqR3fQnK+v7+7dux3di06waNEimUxGRB9nGxzdFwAA6Il05Y1DH/4hZXOZ
+OCX087opxdh/pPbOBZrXPiprc+s9krHhqraknogevtfL7KPM3MqQeUVmKaHZ3UjboQ9doOmTUwCz
+C49VepuVB6o1daELNGYpoeVtCZlXlFNY4+iL6NG2f1MVMq+Ije8GAAAA6FI9NCjUlTcmrDwzaNrh
++anFxoZrRLRhw4Zjx47Fx8dnZGSYTCaFQqFSqdLS0sRHCYKg0+lsNGswGAyGm5IvG/sLgmC2s20t
+7cx6ZTQaWzrQaDQKgsC323RGnU7Hj23TJdi+URKJ5OWXX6brpRMAAABiak1dyLwiFhH6eTlvTQ4p
+3h4qHLz7/BcTGr+d9OMWhWphIC8kTNlc1jeywqIz9Wzjof+5KSh87aMyVsFHRFFhHvkbx5Z/OYHd
+jfIvJ3zx5sjEuTKWjlVUm6YsPs7Sxj5DV97INmaFe4rfz8ytnLL4OH9I8jeO5Q/JpX0T8zeOFT8k
+D/7158zcSkdfSs/FRrIDAAAAdIMeFxQaG66+9lFZyLwiPnCJiEpLSxcvXsxfSiSSvLy8lJSU2NhY
+9o7BYEhNTR0yZEhwcLC/v39aWhoPyDIyMpycnHJycsaPH+/r6+vr6+vv7280Gg0GQ3x8PNs/JydH
+vLNOp8vJyRkyZIivr298fDzP1PinvCf8HTavHxElJCTwfcS9cnNz8/f3N+sV+/9ubm5lZWVGozE+
+Pt7Nzc3JycnJySk+Pt4sBhXLycnx9/f39fUNDg52dnZetmwZTxh5l9RqNbuE8ePH8wskIrVaPX78
++ODg4PHjx6vV6pZOwe6ttqS+j/3vGQAA6CBDjSnmldNsOyrM4/S20LjpPnzoqETiJB/u8uoTgYc3
+y3ntWMrmMh4n9V7bv2n+ZSIeYJtTWMMr5lQLA7PfGh2hcOfjQ6WeztGTPdcuD/r6ndH8kMeup4p9
+Q7b6IttQThzE39SW1PPwNFbpfXbnXREKd/6QuA7sF6Fwf/WJwNy1o/lD8lzaWUFocvTV9FDf/lDr
+6C4AAADAraJnzfGXU1jz1Opf2B+fFQrFokWLFi9erFQqg4KCzPaUSqXJycls22g0spAuLi7uxRdf
+XL16dVJSUlJSUlPTjZ+bCxcunDp16saNG7OystavXx8eHn7hwoU1a9bMmjVrxYoVM2fONJlMfMbD
+yZMn+/r67tixg+2cmZl54cIF24uozJ49Ozs7e+bMmSkpKY899lhgYKAgCKxX2dnZY8aM2bNnT1JS
+kkKhOHfuHD/RihUrlErlPffcI5VKP/roo8zMTHZ4XV3ds88+m5SUNGXKFLlcbnYuo9E4c+ZMhUKR
+m5tLRLt27VKpVCNGjEhMTBT3Z+zYsbm5ufn5+UlJSQsXLiwvLycitVodGRlJROnp6UOHDl28ePGF
+C9ZrBqVSqUKh0Gg03/1Y25emlwIAgA56NOUM+5daPtxl79oxLe0mkTgVbVH4P3CUvdz6deWrTwS2
+2jhfGsWexUB4DZrVpbd05Y2F2stEZDnfLltb4+gp46mzDdLBztMnDZo4yq3V2d9YUBgV5sF7Ymy4
++uBff2bb65YHWV3/hJEPd9maHMKyM21JvVpTZzZ7IOtS6fkrBT/V8QsfN9ylm/8JZoux8G6MGjow
+JGCA7W58cbCaiPy8nPkNFISmGc+cZNuxSm8bS9ZIPZ2zXr9jyuLjRFRRbco9fDF68k1liWbPAxHN
+Cve0/TwMcu/HGtGVN57QNRw9ZWQPnlpT96v+Cl1/Hgw1psOnLuceumS4aAof5x56h2voCJeW5mW2
+/9sxW0mGzS1YqL1cfL7R7PnXltR//l31qbMNzbdisPP0SYOmTxwsvi7eGvsv7kRpA7tGy2VqDDWm
+vMOXis83sgZnhXuOG+4y7A/9MdM0AAAAtFVPCQoFoWnB68WsilAmk61Zs4aX1D3xxBO2j12zZg0R
+vfvuuywpy8jICA8PT0pK0mq1PGUbN25cRkYGEU2aNGn9+vUajaa0tJTlj9XV1UlJSSdPnhTvvG/f
+PiKKiIgYMWJEUlLS6dOnbQeFrq6uY8aMIaKQkBDWLCvWy87Ojo6OJiLWt6SkpNzcXPYOw05ERAUF
+BUT0l7/8hZ3oq6++ysrKYhMFmjEYDCkpKXPmzGEdlsvlKpXqjTfeEAeFvr6+7HrlcnlBQUFmZiZb
+MHrDhg1EpNFo2LHHjh1jS8RY9dRTTyUlJRX8VGfjf/kAAMAtxVBj2n+kubgpbUWw7Z2lns75G8cW
+nTbGRHnbswiDocY0fflJs0p2Vl0fFebxqWqEWSO8Zs1qUFiovcx2KN4eKo5LDDWmR1PO8Kug61Ps
+qRYGzp9hpR1+FAtrHo/25W+yEIeI/Lycn37Iz/bVxU33qa4VggP6W64HrS2pn/HMSbM1YfiF71w9
+snviHvHfa80kzpW9lTjUMpsThCZ2J+fd583fPHTiMm/kjaeH2D5phMJ9a3KI1WWyrT4P7Lei7eeh
+8dtJExdq+YEsodu4U8+OLd4e+nG2YdlanVmbfl7ORVsUlg9qW78dvpJM6AiXQdMO8/d5UGj1uogo
+bYfez8t504vDeFrK16XhPbFcpoatKWQ2ESS/IvUHY7FQDAAAALRJjxh6LAhNM587yX7TxMXFnTt3
+Lj4+nojOnDlDREOHDrV9+KlTp4ho1qxZ/B22nZ+fz9+ZPXs22+DVfLxK0cvLi4i0Wi3f+Z577uHb
+U6ZMIaIff/yxrRe1f/9+IhoyZIjuumHDhhHRkSNH+D5sHkBmyZIlRKRQKNRqtdFolEgk8fHxVtPJ
+oKCg5OTk0aNHs2a1Wq1MJtPrb5pAXZyusrvBxiYfOHCAiEaPvjEAKi4urqVLYB3GaBcAAODe/7yC
+bciHu9izom6Ewn3JXJk9KaG2pN7/gaMsPfHzco5Vem9NDolVerOhqfuP1IYu0HR8/LIgNIUu0PCU
+UHyWlM1lT//jl5YOzDvcvLDvZLkbf/Of6b+xDashmqUlc2XRk83LG3MKa+5coOFz+SXOlbEusU/3
+H6m9I7bI2HC1gxfeqg079A/+9WdeK5o4V7ZueRDvRtoO/cSFWsuhwSevF8SJg8KNO5t/kyTOtWs5
+47jpPpa3pSPPw/ZvqmxMnLL160qWEkaFeSTOlfGqwIpqU+gCjdmtbuu3I76Kt/9Tbnl2Y8PV0AUa
+3r2oMI91y4PEfXjwrz/z63Id0C9W6R0V5sFesvsQq/QOH3cjJZz53EmeEkaFebAd+JyYIfOK+uT6
+OQAAANB1HF9RaKgxhV7/Bcbr75hJkyYR0f79+yMiImy0wMKvwMAbAzpYvlZQUMCL7O68807xIUql
+0kaDYWFhfNvd3d2sKTu99957RKRQKMzeZ7EmwzJKJiIiIiUlRaVSsaHBSqVy5cqVVi/caDQ+9dRT
+mZmZNs4eHh5u9X2WJ/K0lN8rq1iNZEW1SRCa7PnfPwAA0OfxkZJ/S/hD57b8mGg9kOy3RrN/d+Km
++7AoZP+R2opq08sfnLMxjtUe27+p4qEPLx8Tn6WlA9nQVz8vZ558CUITj3vE6WGbCELTU6ub00nV
+wkBedBY33WfLKyH8wt/+T7k9A7fbzdhwlVfYibuxZK5s7bIg9jtNW1K//Zsqs+LNz7+rZhuhI24M
+wuXTTE+fNKi1M7eoI8/Dc2lno8I8Pnh+mNWYMmVzmVnxIP8tWlFt+jjbwAdSdOTbOVHasC2vKlbp
+vXZZkDgozy+q5cWJl/ZNZMHikrkyXXnjyx+cY7fu6X/8wgb1Sz2d01eO0JU3hswrIqJ77/Iwu97t
+31Txh1bcQ2PD1f/9xy+stZhXTp/deRd+yAEAAICdHFxRKAhNfKqjgwcPilNCImLDY1niZkmtVrMF
+f6dOnUpENTU31oOzXOr37Nmz9vfq4sWLZu+MGjXK6p7V1dUtNcImKDx48GDpzdatW9fSIcnJySaT
+6eDBgykpKXl5eZGRkVbXJn7ppZcyMzNlMtmFCxeamprEUzG2yjK4tLGys6urK9soM1yx/xQAANCH
+nSht6Ipm1Zo6FrrJh7vwVIiRSJyy32pe8mJbXlUHiwp5DeDX74wWxzcSidPO1SNbOkoQmljmIq6b
+E//jKB3cesmkVTy4jArzMAubxF1K2VzWpUWFvPZNHDY1X5qnM1+Jhd89bue31UQkH259dr8xQQOp
+XTr4PFRUm1pKCRmzIcZsqkS2veqT8/x9/u3EKr3b+u2w/v/r+WFm5bTpeyv5rRbftCD/AS/MD2Db
+NgJrMUFoei6t+fft1uQQcQ9dB/ZLXzkica6M3Y1DJy6374sAAACAW5CDg8Ln0s6yH0MHDx60rJ4b
+PXo0G1QrHhfMsEU5/vjHPxLRo48+Stdr5ZgTJ06QzVq5vLw8G706dOgQ3z5//jzdXGPIGmc2bdrU
+UiNjx45lG0E3E/fKclS1RCKJiIhITk7Ozs4monfeecey5aysLCIqLCxkTVkNE1ty77330s3hIKvH
+tIqvpIzZbQAAgOl4DZ1VfEHhPz/ga1n6JJE4LZrTPAMgW5+kfQw1Jt5/y2UoXAf242M8zfABti2V
+yLV7DkG+Rkfyk1bm8hN3Kb+oC2cC4WNXH/ofL8tP5cNdWDCnLakXB3PGhqvsfv75gRvzNoqHJ7sO
+aOdt6eDzIB/uYuOnS1SYh+VY+Eljmp/nimoTv0b+7Sx+2Mpkza1+O4lzZZYPRvrKEcLBuy/tm/ji
+9ViQG/aH/nzbUGNlpkgzZYYrfKi41Wk6ea6d+uG5dn0PAAAAcCtyZFCo1tSx6cPfffddq2NsJRLJ
+5s2biUihUMTHx7O40Gg05uTkREZGymQytl7HxIkTiejZZ59l+ZdOp2P5WkxMTPs6lpWVxZYiMRqN
+K1eupOuDcFmF4969e5v7r1ZrNBqzY/fs2cM22JyDGzZsYHGbTqcbP368v7+/OPTkdY5Go9HJyWna
+tGmsRpKIhgwZQkTe3t6W3Rs3bhwRffLJJ0RkMBheeukl9n5qamqrl3b//fcT0euvv240GgVByMjI
+MJvcEAAAoPsZLjbHIjMjBlvd4b4JzQldR2qjjI3NZV98jjkz4oVKxL77sTkGmjiqM+NREk0EzIOq
+lrp0qa7Lpykka/kpc+9dzYlYXf01/iZPx/7nzhsB6xXTjR083ds5xU2rzwMPNK0+D7bHxVv9liUS
+J8unooPfjrj+1IzrwH6WAajrwH4skCXRs2rDCV1zfj3lTusBNx8PbmeJIgAAAAA5do7CxDWlRBQX
+F2dj+r/o6Oj09PSEhITMzEyzWflyc3NZSZ1UKmWz+/n6+iqVSlYtmJKSYntmQxtefvnluXPn+vr6
+shwwJSWFrXwil8tlMtn69euzsrJ8fX3Hjh3LzsuOCgoKUigUrJNLlizhcw5mZmbyXi1dupSvrSzm
+6uqanZ09c+ZMZ2dntroIa2fFihWWOz/zzDN5eXkqleqzzz7TaDRKpZIdq1KpxJWPVk2ZMkWhULBL
+ICK9Xs/7BgAA0KpYpTcbhHveYOrEevNWF84KkF6fTu56hGRPyZUZccjVJv/+8gIRyYe73DRetb3D
+jcX4dHWtTiFXfL65zE2tqftVb2VKEKs1ZfbgBXQtpYRENCvck33vP5XU891yDzUv8DJ66I0hxuIa
+ujLDlfY9JK2OcHd3af5TN38exDpY7sqf7XZ8O2I2VvvRltR/92NtwU913/5Qa3WZaXvwdDL/x9qE
+lWc6cskAAAAAnCODQjZcZdWqVbZ3i4+PnzZt2r59+w4dOmQwGMLDw6dMmWIWtyUnJ7/00ktZWVl7
+9uzJzs6ePn06X69j6NChcXFx4kG+Zuv8Wu4wa9asRYsWZWVlHTp06JVXXhEPFj537lxubu6nn37K
+okC1Wn3q1Ck+l19eXt6+ffuIKCAggPeK7Z+SkhIVFcWWZ7F60ujoaI1Gk5+fv3v3bqlUmp6ePm3a
+NN6yGNvz3//+NxGtXr2aXWx6ejoRjRkz5vz583FxceID2bnYO66urseOHVOr1Rs2bBg1atScOXNq
+a2ulUqnVE7Fh1wAAANyo65HQr/or9qx6bCeelbSaK/EIyZ6SKzM/XR933FLGN85aUsYH2D58703D
+cln9F+u5rryxHYmYPVnn7bLm4ah8GZmNO/V8tRCxdgeF3Jjgtk0pyAYIxyq9zXI0nia3O5nlI8QD
+pf1t79mOSTPHtZyHMuzZbt+30yo2sSAbUtNBfGS0tqTexirPAAAAAG3i4FWP4+LiWLGebVKpND4+
+Pj4+3taVSCRW94mIiDArLWQDlm3sYKM1iUQSHR3NF10xO5b108b+tk8ql8vlcrk9yyvL5XKzRVH4
+eYOCgsxatjyX2TstlV7++OOP1PL4LAAAuAWFBDTHYVZLqDpOEJpsV2+1NcyyymoZGomSRLGiM81v
+8uHP3L13eXQkEXMZ0PoMMFaLB3sCXXkjC0lnhXuafcTTZHH5YftcMV2TSGxNdOjr2eafsrVGuyLm
+Lvp2xItrxyq9X5gf4O5ym3SwM6vEvHOBxv7Ij9/nWKW35bdgxthwtd0zaQIAAMAtxcFBIZvID3qm
+goICIgof12kFIwAA0NvxQZ0pm8ue/ZO/PdHDhh36mChvy+UjxKLCPFh60u7BqpY+zrlg9k6rpWRW
+8YU1LCeqCx/nzoLCv289n75yRKtNGRuufvF9zbz7mkvw2hTc8CQofeUIe85lP15faWMAuGUuzFcR
+UU40z08njGoepvDP9N/4xdogCE0ffF7x+EwpvyH8eTBcNNm+Sz7WikNtjwpvtRiWPeTt+3ZsMzZc
+5Slh8fZQy0e9TYWBPLUPH+fe8XpSAAAAAMbBqx7zobjQA7F5EkPvcO1wSwAA0EcE+Q/gNWJv/6e8
+1f037NAvW6vzf+Doax+V2diNxz0tlebxWIr/+UocsohX2uXvWC7gwCe2q2yhotBqmSQLCqPCPCwD
+L77Uxra8KvFywFYJQtPDL/48P7V46MM/qDV17E2+bG5LA12ra4VWb3IH8USsotpkeScZPrSWJ8Us
+h/XzcraMgKeEevBVknnMasNzaWeXrdUNmnY4M7eSvdPq88DX8Rg11EqFqe2Mr6VbavlU8Ee9s74d
+Xp1qdV1mY0PbRtPzgc8FP9W16UAAAAAAGxwZFMbFxfGZBHuI8PDw9PR08aSEtyy27jOJlswDAAAg
+orQVwWwjZXOZ7XRMW1K/bK2ObfPqJ6t4/Pf5d9VWd+DlgcEBViatKzOYjwC1uhguLzTbf6TWaijz
+/q4Ks3cMNSY2wPbBSC/L/YP8B6gWBrLtp//xi+2gZ/XW8yy7rKg28bVZRgc1/yObtd96oMbWUaH2
+lkPaiSdiVu+bIDTxWRFdB/QjUQ5rdWFf14H93kpsnoX5ubSztif7y8yt5BP28eSr1edh3bbmkJpX
+L9qP31Kza+TJMn9O+GrCnfXt8KHKZvNdMvYk72J3DGn+b2pbXlVLz16r+TUAAACAGQdXFPY0QUFB
+8fHxVlf2uNWwZZFjld6Y0QYAAMQiFO58+tqQeUW8CsyMrrxxxjMn2bZ8uIvVRIl7fGbzn+je31Vh
+mSsZakwsxPHzcp4+cTB/n3eD1xsygtC0ceeNxSJ4VZrrwH68gu/jbIPZWXIKayzXn8073LywLy8e
+NPPsn/zZxv4jtXfEFrU0dHTDDn3K5uaaynXLg3g12fJYGdv495cXLKv51Jo61qB8uEsHJ/uzjYe/
+qR+es+xG7uGL/Iaz+sGT1wsMp08aZLXBefd5s6LCimpT6AINr6C0vOfzU4t543xEMH8eUjaX2f88
+2ElbUm/ZH36NiXNl/JdPp387PE/c+a15AKorbxTn1OcNVtLVb3+oFXdD6unM/xOwGjK+9lFZyLyi
+gAePtvQfKQAAAIAlRwaFs2bNcvTlg3VGo3H9+vVEtPhhmaP7AgAAPc7aZUEsBiKi+anF9y8/sWGH
+PqewRlfeqCtvzCmsSVh5JmReEcvd/Lycc9eOtj1RnevAfqw0j+VK4rhNW1IfukDDtt9KHCpuh08M
+91za2dc+KjPUmIwNV1/7qGzowz9sy6vi2Y14iZLkJ4ewjWVrdTmFNawOy1BjyimsefCvP/OL4vjC
+si3NnOg6sF/+xrFsu6LadOcCTcLKM5m5ldqSel15o7akPjO38s4FGl5ZGav0fvohP354kP8AlvVo
+S+pnPneS138JQlNOYc2UxcfZSx7ktcmJ0obM3Eob/8dPF6FwZ7dr/5Hamc+d5NmcseEquzPs5RtP
+N989Xug3JdTD6qklEqev3xnNs8Ipi4+zh0StqWMPCbstvOWoMI8tr4RYPg9ExJ4HHpDZeB7sN2Xx
+8ZzCGtYmu9W8J+JEu9O/HR4psgeDP36ZuZUh84qIiF/19m+q+CXzCseKatMHn1ewG2j2jaRsLnvt
+ozJeV8ja5Nm07ZgeAAAAQMypqamp4620+axOTkT07rvv2rPCL3S/jIyMhIQEImr8dlL7foIDAEDf
+JghNC14v5iNSWxIV5vGpaoTZNHaSyP82N3LwbnGD4gVhicjPy1lc4her9N7ySoj4XyVBaBr68A+W
+ZYBEpFoYGBIwgFWrbU0O4Us9WJ5FfLpNLw5jgVGs0pstGMK6mjhXtnZ5kI3L1JU3znnhdKsrUagW
+Br76RKDZm4Ya06MpZ8Rdkg93ETdl9SjbnWGpU6vEd8ZQYwpdoOE3k2d8Vndmi/PKh7v8uEVho33L
+S7MqKswj+y3zKLkdz4PV54pLWHmGPa5fvDnyqdW/8BRb3KblrW7Ht2O7G2zWTsuL8vNyLtqi8HSX
+iB9pfs8tV0PmjWfmVvKqTMsrYs3aXkoIAAAAeiD2i8IhkZ0jKwrZorrQ0wiCsGLFCiJSLQxESggA
+AFZJJE7pK0d88eZIPpjXjHy4S/7GsXvXjrEzpJBInPauHbNOlMeJ844v3hyZvnKE2b9KEolT0RaF
+2ahPPy/nxLmylpI1icQp+63RiXPN6+Xlw13UH4ydOOqmdY15NNPSAFsuyH/A4c3ydcuDWhqCGqv0
+Lt4earVXUk9nsy7x8/p5Of+4RdGmlLDdpJ7OZ3fexb/NimoTv//y4S7F20N5SmhsuMp6aHWiPbM2
+964dszU5xMZt+XGLYu/aMZa/N9rxPHAtLcnCjAka+PU7o1mXxG2uWx5keas7/dt5+iG/L94cyW8I
+60DiXNnX74yWejpLJE58ekex3LWjLctdmbjpPuVfTjBrkIkK82DNtqmHAAAAcItzZEWhUqnct29f
+95wxIyODiGJiYsyWT9HpdAUFBbNnz+4h8xKyUr7S0tKgoCBH9SE1NVWlUhHRpX0TMUEhAADYw1Bj
+On2u8Vf9lUHu/cYEDXQd0M9GPMEHTrY0nldX3njeYPpVf2XccBeZtXV1xQShqcxw5YSu4VLdVeXE
+QXxnY8NVw0UTEUkHO1v+cyYITSfPNvxUUn+7rH/oCBe+A+sb67+uvJHNfvjgPZ72/4Mo7s/tsv4B
+UmerHWjpwtmB9ly47Q7Ys2dLd4b3f7LczXIfY8PVL76vISLx3bbz6tjXyh6SNt0We54H/lwFSvtb
+Zoi8orB4eyh78IwNV4vO1P+qvzJZ7tbSo9jStzPsD/1b6nyrjzdjqDHlHb40zu75DdnzXKi93NJN
+4DsQUUeeHwAAAOgJHFhR6MigkIhMJlP3LHzMzrh06dJ169aJ329TMJeamhoVFRUREdF1/XR4UGg0
+Gt3c3OjmEUYAAAAAvZplUAgAAADQY92iQ4+J6NChQ915uvXr1+t0unYfrlKpzp49250d7n5r1qwh
+Ij8vZ8x7DQAAAAAAAABwS3FwULhy5cpuO9fSpUuJaPbs2YIg2NhNEAS1Wh0fH5+RkaHVatmbOp0u
+NTWViPbs2ZORkZGXl5eRkWE0GvlRGRkZbHQzYzQaxYezNpctW6ZWq8Xn0ul0rB2tVmvWID+Qtcw+
+Ys2ylnU6neX+HVdVVUVEFdUmO0ctAQAAAAAAAABA3+DgoDAvL89gMHTPuSZNmvTuu+9qNJqsrKyW
+9klLSxsyZEhkZOTx48cTEhIUCgXLBwsKCti0fZmZmQkJCezToqIidpRWq01ISEhISODXkp+fn5CQ
+UFtbS0SpqanOzs6RkZHffvttZGSkv78/jxQLCgoSEhLWrFmjUCjEh3OPPfZYQkJCcXGxq6urVqt1
+c3NLSEj46KOPHn300eDg4PDwcNuhZzuwzhDRnBdO254LHAAAAAAAAAAA+hJHBoVs+bb4+PhuO+Oi
+RYtaiuSIyGg0JiUlEdGFCxeOHTt24cIFpVKpUql0Ol18fHxpaSkRpaenNzU1sT7v37+fHZifny+T
+yYjo8OHD7J29e/cSUWhoqFqtVqlUSqWytLT02LFjBw8e9PX1TUhIEAd8KpUqPT3dcl7C1NTUzMzM
+lJSU5ORkIvr3v/9NRKWlpfv27Tt27Fh2drZGo3n//fc79xZJJJLdu3cTkbak/rm0Pj7OGgAAAAAA
+AAAAOEcGhV+/M5qI2DDe7jmjRCL59NNPiWjZsmWWn+bn5xNRbm6uVColIqlUykZGf/LJJ2Z7SqVS
+mUz22WefsZe7d++OiYlRKpUsHySirKwspVLp6uq6YcMGInr77bdZCBgREfH8888T0cmTJ3lrSqUy
+Pj7eMiVUqVQ8JeR4Z6Kjo5uamhITEzv9LgUFBaWnpxNR2g49X7kPAAAAoPcKH+ceq/SOVXq7DrB3
+AWsAAACAW5Ajg0L5cJfEuTIiWrFiRbcNQJbL5UuXLs3MzMzJyTH7iMV8zz77bPx1LCg8deqUZTt/
++ctfNBqNIAiCIOTl5d1///2zZ89mg5oNBoNer589ezYRHT9+nIiGDRvGDwwPDyeiXbt28XeeeOIJ
+s8Y/+eQTlUoVFxcnTgmfeeYZIlKpVNOmTUtLS+vSOxYfH88GIL/8wbmu/04AAAAAutaSubL0lSPS
+V46Qejo7ui8AAAAAPZeD5yh8K3Gon5ezXq9XKBTdlhWuWrVKJpMtXLjQbII/FvOxckJGKpXGxcWx
+aM9MVFQUEZ08eZLVBk6cOHHKlCl6vd5gMLAByLNmzSKiCxcuEJGrq6vZ4VbDR47Nh3jgwAHxPQkK
+CtJoNCkpKT/99FNSUpKvr++0adM6fY5CbuPGjUS0La8KRYUAAAAAAAAAALcCBweFEolT0RZFN2eF
+rq6umzdv1uv1K1asEL8/depUIlq1alXGzawO7500aRIR5efn79q1SyaTSaXS0aNHE9Hhw4f37t0r
+k8nYUOKYmBgiEl9XXV1dqz1MSUnJzs7W6/Xx8fHiKFAulycnJ5eXl5eWlioUiry8PBsLs3RQREQE
+Kypcu03fxV8IAAAAAAAAAAA4noODQiKSejrzrNDX17d75iuMjo5WKpXr16/fs2cPf3PUqFFEVFBQ
+wN/R6XRqtVoc1VVXV7MNiUSiVCp379792WefsTSQvbN3796srCz2Dl0PCk+fPs1b0Gq1dL3ekLGs
+WHzssceio6NTUlLy8vJWrVpFRIIg5OTksGOJKCgoiC05Iu5/p1u9ejURbf+mqhu+EQAAAAAAAAAA
+cCzHB4UkygqJKCEhYdq0aUajsatPyhLJzMxM/g4rMExISEhNTdXpdMuWLQsODo6MjCwrK6PrQ5Lf
+eOMNnU7HuvfEE0/k5eVpNJr777+ftcCmKdTr9TwoDA0NJaLIyMiMjAyDwZCampqQkMD25Oc9f/68
+1R6+9NJLbNllNp3iO++8o1Ao1Gq10Wg0GAzvvPMOES1ZsqTrbtGUKVOIqKLapC2p7+qvAwAAAAAA
+AAAAHKtHBIVEJPV0PrvzLra2SV5enpubW2pqapeORJZKpe+++674HVdX19LS0pSUFJVKFRwcvH79
+eiI6ePAgG0Ts6uqakpKi1+uDg4NZNd+0adPYgRMnTmQbbJpCup4P8jaXLl2akJDg6+vLFjIuLS0V
+z1p49uxZqz2USCQZGRkymWzmzJk1NTVsOzIy0s3NzdfXd/369XFxcREREV13i1xdXZVKJRF9/l11
+150FAAAAAAAAAAB6AqempiYHnNXJiYiEg3dbfqQtqZ/xzMmKahN7GRcXt2TJktDQUMv1QNpEp9NJ
+pVKzRgRBYNWCgYGBEolE/H5ubu6YMWNYRGi5P29Kp9MREd+N72B2IBEZjcaioqJJkyaJT8RqA8Ud
+Y++I+2MwGIxGI9/HYDCwgcwdvyf2yMjISEhIiFV6p68c0dXnAgAAAAAAAAAASeR/icgxkV1PCwqJ
+SBCatn9T9c/038QjXhUKxSOPPBISEiKXy93d3cki3YOuoFarIyMjqeUvCwAAAAAAAAAAOhGCQuvU
+mrqNO/Xb8lpcTKO0tNSydg86kU6nCw4OJgSFAAAARMaGq4aLJsv3A6X9JRInR/cOAAAAAPoIBwaF
+PboiL0LhHqFwT185QlfeWKi9vKeghohs5IbQ6dgSLkSkK28M8h/g6O4AAAA40hff18xPLW7p01il
+d/g49/+500M+3MXRPQUAAAAAaI8eHRRyQf4DgvwHxE33ISI2WR7LVuvq6hzdtT6OryeDlBAAAMC2
+bXlV7M+Zfl7Om14cFj3Zs7Na1pU3hswroj5d4G+oMfk/cLRvXyMAAABAz9c7gkJLsUrvbXlVWq1W
+Lpc7ui8AAABwa4lVei9+WBYgdSaiQu1lIvo458L+I7Xs04pq04N//TkqzONT1Qipp3PHT3dC1+Do
+K+5yp881OroLAAAAANBrg0IAAAAAR5kV7hmhcGfbrOg+brqPIDQdOnF5+zdVaTv0RLT/SO305ScP
+b5Z3fPrCo6eMjr7iLvfN0UuO7gIAAAAA9NqgcNTQgUS0Z8+e+Ph4R/elLysoKCAizLUEAADQKonE
+iU2v7D1IkrK5jIi0JfUznzu5d+0Yq/vryhvPG0y/6q8Q0bjhLu4ut1lO9KErbySind9Wi1+StSlB
+zFqTeTnbX8woCE1lhiutTjPC1nIp1F4e5N5vTNDAlvbnS76I13hh803fLusfIHU2W/uFXdTBY7Wt
+XiPrJ6uvHBM0sKU1ZHgHpIOdXQf2Y28aakxE1CkFngAAAAB9WG8NCu+bMChlc1lmZuYnn3wikfTW
+q+j59uzZQ0QP3+vl6I4AAAD0Gq8+EUhELCvcf6TWckGwzNzKf6b/pi2pNzswKszjg+eHiXdmUxNa
+vhRP5JeZW/lc2tmKavPlmGOV3m88PaSlOM9QYwpdoBEf5efl/Fbi0Hn3eVumb7ryxoinj1s9xZZX
+Qsz250u+FG8PDZT2X/B6sdlKdGaDsu25RkON6dGUM3xwNycf7pK7drRZ/Mc7sDU55MF7PP/3H7+w
+DsQqvdlU1wAAAADQktsc3YF2mjTGjW2cPHnS0X3pswRBOHDgABFNGOXq6L4AAAD0Jq8+Ecjr8bd+
+XSn+6LWPyuanFvOU0M/rRsi1/0htyLwiXlJnD9Yaj/DErW3LqwqZV8Qq6cyoNXX+Dxw1C/4qqk3z
+U4tXbz1vtnNmbmXIvCLLlJCdYuJCrdVTEFFd/bWZz500Swnp+qBs+69RrakLXaCxTAmJSFtSH7pA
+Yxm5cjwlBAAAAAB79NagUCJxigrzIKJdu3Y5ui991qFDh/R6PRFNCfVwdF8AAAB6mT8/4Ms23t9V
+wd80NlxllYZEpFoYWP7lhPNfTLi0b+LW5BAeLM554TTfXzh4t7iwjr3k7xhqTLy1rckhvLV1y4N4
+Yvhoyhmzjm3YoZ+y+DgRRYV5FG8PFQ7efWnfxC/eHMkOSdlctmGHnu+sK29k1Xni/YWDd/P9tSX1
+LaV+dy7Q7D9S6+flvDU5pPHbST9uUSTOlbGPtCX1ak2dPdcoCE0xr5xmMaWfl/OPWxSN304SDt5d
+vD2U3bGKatOdCzTGhquWHdhTULMtr0o+3GVrcsjW5JDFD8sc/VAAAAAA9HS9NSgkouQnhxCRSqUy
+Gvv+DN8OsXjxYiJKnCvj8/sAAACAnWZGDGYb4lq8/KLmsjg/L+cX5wewMbOuA/vFTffJXTuafaQt
+qbcae1nK2t9cKycf7hI33Ye3tmSuTP3BWPaRWSGeWlO3bK2OHZL91mg2MNl1YL/oyZ5Zr9/B9lm2
+VicITWz75Q/OsY2oMA++PxFFT/Y8u/Mu9ldbbUl9SzV9iXNlZ3feFTfdRyJxkg93Wbs8iGeF27+x
+q9Bv+zdVPCUs2qKQD3dhI52D/Acc3ixXLQxku33xfY3lsdvyqvy8nA9vlsdN94mb7sPXnwEAAACA
+lvTioHDSGDf2p+w1a9Y4ui99UE5OjkajIaLlsfjzOwAAQJu5DrDyZ7aJo9yKt4duTQ75+p3RZlP7
+iSfaY2txtComyvvHLYqtySG7/n6H2UeB0v58WzyWeePO5mrBNxYNMetAhMJdPtwlVukdq/SuqROI
+yFBj4uN2s98y77BE4rQs1p9t/91iwDLz8oIAs6NuzB6ja3G8sNhzaWfZxtfvmM9FKJE4LXrIz2w3
+Iposd+PbLz0W0PFVpwEAAABuHb04KJRInN5KHEpEKpVKp9M5ujt9itFoXLhwIRHFKr1bXQMRAAAA
+LN0U/F2fxU/q6RzkPyBuug8faCwWq/RmG4Xay3aegtUSWv5jzSr4LA/hwZ/VeUV+3KJIXzkifWXz
+SiP667WQsUpvq3Ebb8TqPIB+1lZe5ime1TkHzRgbrvJ6TKuXI/V0Zn82rqg2WZ0qMSbK2547CQAA
+AABM714veN593mzRwNmzZx89ehTLH3eWp556Sq/X+3k5/+v5YY7uCwAAQK8kzq0s8zJdeeN5g+lX
+/ZU9BTfGzH77Q+vZmVVWW7tgEZyJu2TPvCI/XR9QXHnRlJlb2er+ZhbN8evoPbx4IyVsqQO+ns4s
+TDQ2XpXSTfc5KszD8s4DAAAAgA29O1mTSJx2/f2OkHlFGo1mxYoV69atc3SP+oLU1NTMzEwi2vTi
+MMxOCAAA0D7GxuZ5BtlEfpyhxvRoyhl76unsoStvnPPCaRvL/lrtkp2qawW2sf9IbasdFoQms6rD
+kICODko4oWtgG9qSer6miv18BiMlBAAAAGib3h0UElGQ/4CtySHzU4vXr1/v7e2dnJzs6B71bqmp
+qSqViohUCwOjJ3s6ujsAAAC9FQ+5RgfdGDOr1tSxFYeZWKV3+Dh3L4/m32NsnIT9p8jMrRTHZ622
+ZnXaRBuq6wT7dy4zXOn06Uou1bUh2Tyha8B8KQAAAAAd1OuDQiKKm+5TfL4xZXMZS7iQFbaP0Wh8
+6KGH8vLyiEi1MPDVJwId3SMAAIBebN22crbBl+8gotQPmxcRTpwre+PpIWaV+3sKatoUFP4z/bc2
+tdbWcbi8JNBRPwz4hIaxSu/0lSO6vwMAAAAAt5pevJiJ2KtPBKoWBhKRSqWaNm2a0Wh0dI96GbVa
+HRISgpQQAACgU7z2URkfq/vgPc0V+oLQxN+0zPWIqNK+xY4ZQ42J54BvJQ61bO1EaYPlUXwctCA0
+tXqK22XNSyefOtvQ6s5dyupiKQAAAADQ6fpIUEiirDAvLy8kJESr1Xb1GbvhFLYZDIaON6JWq8eP
+Hx8ZGclWL8nfOBYpIQAAQEeoNXUpm8vY9rrlQTzCO3SieS3jqDAPy1xPV97YpokLD59qbs3qksS6
+8karxYl8HDTvjFhmbmXCyjMJK8+oNXVEFCBtrkD89odae4LFNjGbutEq8VBiq4saAwAAAEDn6jtB
+IRG9+kRg/saxfl7Oer1eoVDEx8frdLquOBEL1xQKhVqtdtTFZmRk+Pr6+vv7L1u2LCcnp62hoU6n
+S0tLYxGhRqMholild9EWRYTC3VFXBAAA0NsJQlNOYQ2fhdDPy/nph26s/HvHkObY66dfrBTovfzB
+OXva59tDfJvL/axWDopb47MlEtHyWBnb2LhTb3aIseHq/NTibXlV2/KqWFeD/AfIh7sQUUW1yWqw
+qC2pD3jw6GsflbVpxDTT0kojxoab5iVMnNvc4fc/r7Dc2VBjCnjw6PK1upzCGgIAAACADutTQSER
+RSjci7Yo2N+oMzMzg4OD4+PjO7H0j9ffsXAtMjKyi7LIVruRkJBARHq9fv369TNnzmShYXx8fGpq
+akZGhlar1VnIycnJyMiIj4/39/cPDg5OSkriEWHx9tD0lSPaOnURAAAAEJGx4WpOYc3ytboB9x56
+8K8/8/ezXr9DXOsn9XTmuRsr2WMEoSlh5ZlteVXsUyLaU2A99tr+zY0RuPLhLmx/bUm9OKczNly9
+f/kJcWu5hy7xT4P8B7CfSdvyql77qEx8FM8W5cNd+E+CtBXBbCPmldPiPhORocY045mTFdWmlM1l
+tca2radsyc+r+Yxv/6dc/P4bTw9hGymbyzJzK8UfCULToylnKqpNaTv0bVr2BAAAAABa4tTU1MkD
+Sew6q5MTEQkH7+66U6g1dYlrSvnvZplM9vLLL8+aNSsoKKgdrel0uk8++eS9997T65v//B6r9P72
+h9qKapNMJissLGxfs+28NLV67ty5er0+KsxjWax/7qFL27+pqqhu83gc+XCXPz/gOzNiMJYIBAAA
+sIfZKsM2RIV5fKqy8he4nMIaniSyf4i/OFjNRhyrFga+OD9g6MM/sH/TY5Xes8I946b7EBGLEYnI
+z8t53LCB+4/UFm8PDfIfsGGHftlaHT/jg5Fe9rSmLam/c4GGHeXn5TzvPu+TunrxqGfWOH95//IT
+/NOoMI/I8R5EtPPbav4r64s3R0ZP9rS8S1uTQ9gZxXTljSHzishifZLla3VpO/SW10hE4suUD3d5
++F4vL3cJv1KymF65pVMAAAAA9BaSyP8SkWMiu74aFDJqTV3qh+fMZvyJi4ubNWvW0KFDAwICrAZ8
+giCUlZWdP3/+7Nmze/bsyczMFH8aq/R+4+khQf4DDDWm0AUa9vs7Ozs7Ojq6G25dWlpaUlISEfl5
+OZ/eFspnODLUmA6funyp7iqrQbA657efl/O9d3mMGjpwwijXiaPcUD8IAADQJvYEhfLhLn9L+INl
+QMawwj2WiInFKr23vBIikTiJT8FzLm1JPavd4/uzEM3YcPV///GL5T/6PDiz2hoRiX/DiPl5OWe9
+foflPCQ2LtxyDbT2BYUtXSPbVmvqYl45bfXPolFhHtlvjRZXbiIoBAAAgN4OQWHXMtSYsvZX/fvL
+C+2YQIdjv/sfvMdTPPu4ocY0fflJ1qxSqdy0aVPXlRZqtdpHH32UDRaOCvPYuXqk5TzoAAAA0HV0
+5Y2F2stWP7pd1j9A6mxnkb6x4Wp+UW363krpYOd593mHjnAR/5uuK28kovMGExHxzI79mCn4qY6I
+ZoV7in+Q8NZGDR1434RB4tYEoanMcMWyNXZU0Zn6otNG1qZ0sPP0SYOmTxxsuS4K78DhU5ePnjLy
+FZDNumF5lybL3SxviLHh6hff17A7ZpZI2rhGyw4TUfg4d6sDI2ycAgAAAKBXQFDYTdhPzG+OXjp1
+tsFqzZ2ZWKW35W9uM4LQtOD1Yt5aXFzckiVLIiIiOrHbarV65cqVeXl57CUbTNTS73gAAAAAAAAA
+AOi9EBQ6Bv8zu6VAaf82JXG68sY5L5zmFYsKheKRRx6ZM2eOXC5vb9+EkydP7tq1SzwxYlSYxwfP
+D8OUggAAAAAAAAAAfRWCwj5CranbuFNvVqsYFxcXHh5+5513BgQEuLq6SqVSq8caDAaj0XjixIkj
+R458//33vH6QiVV6vzA/gC9fCAAAAAAAAAAAfRKCwj6FzbAjXoyv3di6xlNCPTAdIQAAAAAAAADA
+reAWDQoBAAAAAAAAAADAkkMiu9scfdUAAAAAAAAAAADgeI6pKAQAAAAAAAAAAIAeBRWFAAAAAAAA
+AAAAgKAQAAAAAAAAAAAAEBQCAAAAAAAAAAAAISgEAAAAAAAAAAAAQlAIAAAAAAAAAAAAhKAQAAAA
+AAAAAAAACEEhAAAAAAAAAAAAEIJCAAAAAAAAAAAAIASFAAAAAAAAAAAAQAgKAQAAAAAAAAAAgBAU
+AgAAAAAAAAAAACEoBAAAAAAAAAAAAEJQCAAAAAAAAAAAAISgEAAAAAAAAAAAAAhBIQAAAAAAAAAA
+ABCCQgAAAAAAAAAAACAEhQAAAAAAAAAAAEAICgEAAAAAAAAAAIAQFAIAAAAAAAAAAAAhKAQAAAAA
+AAAAAABCUAgAAAAAAAAAAACEoBAAAAAAAAAAAAAIQSEAAAAAAAAAAAAQgkIAAAAAAAAAAAAgBIUA
+AAAAAAAAAABACAoBAAAAAAAAAACAEBQCAAAAAAAAAAAAISgEAAAAAAAAAAAAQlAIAAAAAAAAAAAA
+hKAQAAAAAAAAAAAACEEhAAAAAAAAAAAAEIJCAAAAAAAAAAAAIASFAAAAAAAAAAAAQAgKAQAAAAAA
+AAAAgBAUAgAAAAAAAAAAACEoBAAAAAAAAAAAAEJQCAAAAAAAAAAAAISgEAAAAAAAAAAAAAhBIQAA
+AAAAAAAAABCCQgAAAAAAAAAAACAEhQAAAAAAAAAAAEAICgEAAAAAAAAAAIAQFAIAAAAAAAAAAAAh
+KAQAAAAAAAAAAABCUAgAAAAAAAAAAACEoBAAAAAAAAAAAAAIQSEAAAAAAAAAAAAQgkIAAAAAAAAA
+AAAgBIUAAAAAAAAAAABACAoBAAAAAAAAAACAiP4/TCeWw+J1CH0AAAAldEVYdGRhdGU6Y3JlYXRl
+ADIwMjItMDEtMTNUMDg6NTM6MTgrMDM6MDB203WgAAAAJXRFWHRkYXRlOm1vZGlmeQAyMDIyLTAx
+LTEzVDA4OjUzOjE4KzAzOjAwB47NHAAAAABJRU5ErkJggg==" />
+</svg>
diff --git a/static/images/docs/github_netlify_deploy_preview.png b/static/images/docs/github_netlify_deploy_preview.png
new file mode 100644
index 0000000000..0a2313644e
Binary files /dev/null and b/static/images/docs/github_netlify_deploy_preview.png differ
diff --git a/static/images/docs/multi-tenancy.png b/static/images/docs/multi-tenancy.png
new file mode 100755
index 0000000000..0ce341120a
Binary files /dev/null and b/static/images/docs/multi-tenancy.png differ
diff --git a/static/images/docs/service-catalog-architecture.svg b/static/images/docs/service-catalog-architecture.svg
deleted file mode 100644
index 57c7558d5a..0000000000
--- a/static/images/docs/service-catalog-architecture.svg
+++ /dev/null
@@ -1,138 +0,0 @@
-<?xml version="1.0" encoding="UTF-8" standalone="no"?>
-<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
-<svg xmlns="http://www.w3.org/2000/svg" xmlns:xl="http://www.w3.org/1999/xlink" version="1.1" viewBox="-1 -1 841 457" width="841pt" height="457pt" xmlns:dc="http://purl.org/dc/elements/1.1/">
-  <metadata> Produced by OmniGraffle 7.5 
-    <dc:date>2017-11-17 22:47:47 +0000</dc:date>
-  </metadata>
-  <defs>
-    <font-face font-family="Arial" font-size="16" panose-1="2 11 6 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="73.24219" slope="0" x-height="518.5547" cap-height="716.3086" ascent="905.2734" descent="-211.91406" font-weight="500">
-      <font-face-src>
-        <font-face-name name="ArialMT"/>
-      </font-face-src>
-    </font-face>
-    <font-face font-family="Arial" font-size="16" panose-1="2 11 7 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="104.98047" slope="0" x-height="518.5547" cap-height="715.8203" ascent="905.2734" descent="-211.91406" font-weight="bold">
-      <font-face-src>
-        <font-face-name name="Arial-BoldMT"/>
-      </font-face-src>
-    </font-face>
-    <font-face font-family="Arial" font-size="14" panose-1="2 11 7 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="104.98047" slope="0" x-height="518.5547" cap-height="715.8203" ascent="905.2734" descent="-211.91406" font-weight="bold">
-      <font-face-src>
-        <font-face-name name="Arial-BoldMT"/>
-      </font-face-src>
-    </font-face>
-    <font-face font-family="Arial" font-size="14" panose-1="2 11 6 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="73.24219" slope="0" x-height="518.5547" cap-height="716.3086" ascent="905.2734" descent="-211.91406" font-weight="500">
-      <font-face-src>
-        <font-face-name name="ArialMT"/>
-      </font-face-src>
-    </font-face>
-    <font-face font-family="Arial" font-size="12" panose-1="2 11 6 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="73.24219" slope="0" x-height="518.5547" cap-height="716.3086" ascent="905.2734" descent="-211.91406" font-weight="500">
-      <font-face-src>
-        <font-face-name name="ArialMT"/>
-      </font-face-src>
-    </font-face>
-    <marker orient="auto" overflow="visible" markerUnits="strokeWidth" id="FilledArrow_Marker" viewBox="-1 -3 7 6" markerWidth="7" markerHeight="6" color="gray">
-      <g>
-        <path d="M 4.8 0 L 0 -1.8 L 0 1.8 Z" fill="currentColor" stroke="currentColor" stroke-width="1"/>
-      </g>
-    </marker>
-    <marker orient="auto" overflow="visible" markerUnits="strokeWidth" id="FilledArrow_Marker_2" viewBox="-6 -3 7 6" markerWidth="7" markerHeight="6" color="gray">
-      <g>
-        <path d="M -4.8 0 L 0 1.8 L 0 -1.8 Z" fill="currentColor" stroke="currentColor" stroke-width="1"/>
-      </g>
-    </marker>
-    <marker orient="auto" overflow="visible" markerUnits="strokeWidth" id="FilledArrow_Marker_3" viewBox="-1 -3 7 6" markerWidth="7" markerHeight="6" color="gray">
-      <g>
-        <path d="M 4.8 0 L 0 -1.8 L 0 1.8 Z" fill="currentColor" stroke="currentColor" stroke-width="1"/>
-      </g>
-    </marker>
-    <marker orient="auto" overflow="visible" markerUnits="strokeWidth" id="FilledArrow_Marker_4" viewBox="-6 -3 7 6" markerWidth="7" markerHeight="6" color="gray">
-      <g>
-        <path d="M -4.8 0 L 0 1.8 L 0 -1.8 Z" fill="currentColor" stroke="currentColor" stroke-width="1"/>
-      </g>
-    </marker>
-    <font-face font-family="Arial" font-size="12" panose-1="2 11 7 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="104.98047" slope="0" x-height="518.5547" cap-height="715.8203" ascent="905.2734" descent="-211.91406" font-weight="bold">
-      <font-face-src>
-        <font-face-name name="Arial-BoldMT"/>
-      </font-face-src>
-    </font-face>
-  </defs>
-  <g stroke="none" stroke-opacity="1" stroke-dasharray="none" fill="none" fill-opacity="1">
-    <title>architecture</title>
-    <g>
-      <title>Layer 1</title>
-      <path d="M 0 0 L 600 0 L 600 420 L 0 420 Z" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1" stroke-dasharray="4,4"/>
-      <rect x="640" y="0" width="200" height="280" fill="#d9d9d9"/>
-      <text transform="translate(650 30)" fill="black">
-        <tspan font-family="Arial" font-size="16" font-weight="500" fill="black" x="30.421875" y="14" textLength="109.36719">Service Broker </tspan>
-        <tspan font-family="Arial" font-size="16" font-weight="500" fill="black" x="138.90625" y="14" textLength="10.671875">A</tspan>
-      </text>
-      <rect x="10" y="10" width="170" height="400" fill="#4285f5"/>
-      <text transform="translate(20 30)" fill="white">
-        <tspan font-family="Arial" font-size="16" font-weight="bold" fill="white" x="34.53125" y="14" textLength="80.9375">API Server</tspan>
-      </text>
-      <rect x="215" y="10" width="170" height="190" fill="#4285f5"/>
-      <text transform="translate(227 30)" fill="white">
-        <tspan font-family="Arial" font-size="16" font-weight="bold" fill="white" x="12.972656" y="14" textLength="120.05469">Service Catalog</tspan>
-        <tspan font-family="Arial" font-size="14" font-weight="bold" fill="white" x=".23828125" y="62.52344" textLength="145.52344">servicecatalog.k8s.io:</tspan>
-        <tspan font-family="Arial" font-size="14" font-weight="500" fill="white" x="0" y="94.98145" textLength="132.26172">ClusterServiceBroker</tspan>
-        <tspan font-family="Arial" font-size="14" font-weight="500" fill="white" x="0" y="111.43945" textLength="126.03418">ClusterServiceClass</tspan>
-        <tspan font-family="Arial" font-size="14" font-weight="500" fill="white" x="0" y="127.89746" textLength="119.04785">ClusterServicePlan</tspan>
-        <tspan font-family="Arial" font-size="14" font-weight="500" fill="white" x="0" y="144.35547" textLength="99.60645">ServiceInstance</tspan>
-        <tspan font-family="Arial" font-size="14" font-weight="500" fill="white" x="0" y="160.81348" textLength="93.38574">ServiceBinding</tspan>
-      </text>
-      <rect x="420" y="220" width="170" height="190" fill="#4285f5"/>
-      <text transform="translate(430 240)" fill="white">
-        <tspan font-family="Arial" font-size="16" font-weight="bold" fill="white" x="31.445312" y="14" textLength="87.10938">Application</tspan>
-      </text>
-      <rect x="640" y="300" width="200" height="40" fill="#d9d9d9"/>
-      <text transform="translate(650 311.23828)" fill="black">
-        <tspan font-family="Arial" font-size="16" font-weight="500" fill="black" x="82" y="14" textLength="16">…</tspan>
-      </text>
-      <rect x="640" y="360" width="200" height="60" fill="#d9d9d9"/>
-      <text transform="translate(650 381.2383)" fill="black">
-        <tspan font-family="Arial" font-size="16" font-weight="500" x="30.429688" y="14" textLength="119.14062">Service Broker Z</tspan>
-      </text>
-      <rect x="650" y="150" width="180" height="40" fill="white"/>
-      <text transform="translate(660 161.23828)" fill="black">
-        <tspan font-family="Arial" font-size="16" font-weight="500" x="11.070312" y="14" textLength="137.85938">Managed Service 2</tspan>
-      </text>
-      <rect x="650" y="230" width="180" height="40" fill="white"/>
-      <text transform="translate(660 241.23828)" fill="black">
-        <tspan font-family="Arial" font-size="16" font-weight="500" x="9.742188" y="14" textLength="140.51562">Managed Service N</tspan>
-      </text>
-      <rect x="650" y="100" width="180" height="40" fill="white"/>
-      <text transform="translate(660 111.23828)" fill="black">
-        <tspan font-family="Arial" font-size="16" font-weight="500" x="11.070312" y="14" textLength="137.85938">Managed Service 1</tspan>
-      </text>
-      <path d="M 384.9481 39.49993 L 410.0271 19.566032 L 410.00054 29.631994 L 614.9472 30.172747 L 614.9738 20.106784 L 639.9472 40.172747 L 614.86825 60.106645 L 614.8948 50.040683 L 409.9481 49.49993 L 409.92156 59.56589 Z" fill="gray"/>
-      <text transform="translate(421.804 32.87919) rotate(-.1511748)" fill="white">
-        <tspan font-family="Arial" font-size="12" font-weight="500" fill="white" x="23.927734" y="11" textLength="114.71484">Open Service Broker </tspan>
-        <tspan font-family="Arial" font-size="12" font-weight="500" fill="white" x="137.98047" y="11" textLength="19.341797">API</tspan>
-      </text>
-      <text transform="translate(455 58.91113)" fill="black">
-        <tspan font-family="Arial" font-size="12" font-weight="500" x="0" y="11" textLength="68.021484">List Services</tspan>
-        <tspan font-family="Arial" font-size="12" font-weight="500" x="0" y="25.392578" textLength="98.05078">Provision Instance</tspan>
-        <tspan font-family="Arial" font-size="12" font-weight="500" x="0" y="39.785156" textLength="72.71484">Bind Instance</tspan>
-      </text>
-      <line x1="602.9" y1="249.5" x2="637.1" y2="249.5" marker-end="url(#FilledArrow_Marker)" marker-start="url(#FilledArrow_Marker_2)" stroke="gray" stroke-linecap="round" stroke-linejoin="round" stroke-width="2"/>
-      <rect x="650" y="200" width="180" height="20" fill="white"/>
-      <text transform="translate(655 201.23828)" fill="black">
-        <tspan font-family="Arial" font-size="16" font-weight="500" x="77" y="14" textLength="16">…</tspan>
-      </text>
-      <line x1="192.9" y1="39.33634" x2="202.1" y2="39.33634" marker-end="url(#FilledArrow_Marker_3)" marker-start="url(#FilledArrow_Marker_4)" stroke="gray" stroke-linecap="round" stroke-linejoin="round" stroke-width="2"/>
-      <path d="M 300 212.9 L 300 215.9 L 300 315.5 L 369.5 315.5 L 404.1 315 L 407.1 315" marker-end="url(#FilledArrow_Marker)" marker-start="url(#FilledArrow_Marker_2)" stroke="gray" stroke-linecap="round" stroke-linejoin="round" stroke-width="2"/>
-      <text transform="translate(307.63672 323.3037)" fill="black">
-        <tspan font-family="Arial" font-size="12" font-weight="500" fill="black" x=".14257812" y="11" textLength="72.71484">Bind Instance</tspan>
-      </text>
-      <rect x="430" y="285" width="150" height="60" fill="white"/>
-      <text transform="translate(440 293.41113)" fill="#383838">
-        <tspan font-family="Arial" font-size="12" font-weight="bold" fill="#383838" x="0" y="11" textLength="40.6875">Secret:</tspan>
-        <tspan font-family="Arial" font-size="12" font-weight="500" fill="#383838" x="0" y="25.392578" textLength="124.74023">Connection Credentials</tspan>
-        <tspan font-family="Arial" font-size="12" font-weight="500" fill="#383838" x="0" y="39.785156" textLength="80.02734">Service Details</tspan>
-      </text>
-      <text transform="translate(259 432.2383)" fill="black">
-        <tspan font-family="Arial" font-size="16" font-weight="500" x=".08203125" y="14" textLength="81.83594">Kubernetes</tspan>
-      </text>
-    </g>
-  </g>
-</svg>
diff --git a/static/images/docs/service-catalog-bind.svg b/static/images/docs/service-catalog-bind.svg
deleted file mode 100644
index 0a57f944aa..0000000000
--- a/static/images/docs/service-catalog-bind.svg
+++ /dev/null
@@ -1,115 +0,0 @@
-<?xml version="1.0" encoding="UTF-8" standalone="no"?>
-<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
-<svg xmlns="http://www.w3.org/2000/svg" xmlns:xl="http://www.w3.org/1999/xlink" version="1.1" viewBox="71 1472 560 377" width="560pt" height="377pt" xmlns:dc="http://purl.org/dc/elements/1.1/">
-  <metadata> Produced by OmniGraffle 7.5 
-    <dc:date>2017-11-17 22:45:14 +0000</dc:date>
-  </metadata>
-  <defs>
-    <filter id="Shadow" filterUnits="userSpaceOnUse">
-      <feGaussianBlur in="SourceAlpha" result="blur" stdDeviation="1.308"/>
-      <feOffset in="blur" result="offset" dx="0" dy="2"/>
-      <feFlood flood-color="black" flood-opacity=".5" result="flood"/>
-      <feComposite in="flood" in2="offset" operator="in"/>
-    </filter>
-    <marker orient="auto" overflow="visible" markerUnits="strokeWidth" id="FilledArrow_Marker" viewBox="-1 -6 14 12" markerWidth="14" markerHeight="12" color="black">
-      <g>
-        <path d="M 11.428568 0 L 0 -4.285713 L 0 4.285713 Z" fill="currentColor" stroke="currentColor" stroke-width="1"/>
-      </g>
-    </marker>
-    <font-face font-family="Arial" font-size="12" panose-1="2 11 6 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="73.24219" slope="0" x-height="518.5547" cap-height="716.3086" ascent="905.2734" descent="-211.91406" font-weight="500">
-      <font-face-src>
-        <font-face-name name="ArialMT"/>
-      </font-face-src>
-    </font-face>
-    <font-face font-family="Helvetica" font-size="12" units-per-em="1000" underline-position="-75.68359" underline-thickness="49.316406" slope="0" x-height="522.9492" cap-height="717.28516" ascent="770.0195" descent="-229.98047" font-weight="500">
-      <font-face-src>
-        <font-face-name name="Helvetica"/>
-      </font-face-src>
-    </font-face>
-    <font-face font-family="Arial" font-size="12" panose-1="2 11 7 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="104.98047" slope="0" x-height="518.5547" cap-height="715.8203" ascent="905.2734" descent="-211.91406" font-weight="bold">
-      <font-face-src>
-        <font-face-name name="Arial-BoldMT"/>
-      </font-face-src>
-    </font-face>
-    <font-face font-family="Arial" font-size="16" panose-1="2 11 7 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="104.98047" slope="0" x-height="518.5547" cap-height="715.8203" ascent="905.2734" descent="-211.91406" font-weight="bold">
-      <font-face-src>
-        <font-face-name name="Arial-BoldMT"/>
-      </font-face-src>
-    </font-face>
-  </defs>
-  <g stroke="none" stroke-opacity="1" stroke-dasharray="none" fill="none" fill-opacity="1">
-    <title>V2b</title>
-    <g>
-      <title>Layer 1</title>
-      <g>
-        <xl:use xl:href="#id126_Graphic" filter="url(#Shadow)"/>
-        <xl:use xl:href="#id134_Graphic" filter="url(#Shadow)"/>
-        <xl:use xl:href="#id189_Graphic" filter="url(#Shadow)"/>
-      </g>
-      <line x1="118.75" y1="1497.456" x2="118.75" y2="1847.456" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="3"/>
-      <line x1="324.25" y1="1497.456" x2="324.25" y2="1847.456" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="3"/>
-      <line x1="529.75" y1="1497.456" x2="529.75" y2="1847.456" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="3"/>
-      <line x1="341.25" y1="1575.8496" x2="502.3641" y2="1618.443" marker-end="url(#FilledArrow_Marker)" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-      <rect x="386.2558" y="1586.219" width="83" height="25" fill="white"/>
-      <text transform="translate(391.2558 1591.5227)" fill="black">
-        <tspan font-family="Arial" font-size="12" font-weight="500" x=".14257812" y="11" textLength="72.71484">Bind Instance</tspan>
-      </text>
-      <line x1="515.25" y1="1657.9107" x2="350.17202" y2="1699.6439" marker-end="url(#FilledArrow_Marker)" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-      <rect x="384.2893" y="1662.544" width="71" height="39" fill="white"/>
-      <text transform="translate(389.2893 1667.6514)" fill="black">
-        <tspan font-family="Arial" font-size="12" font-weight="500" x=".14550781" y="11" textLength="60.708984">Connection</tspan>
-        <tspan font-family="Arial" font-size="12" font-weight="500" x=".48535156" y="25.392578" textLength="60.0293">Information</tspan>
-      </text>
-      <rect x="279.25" y="1710.5152" width="91" height="38" fill="white"/>
-      <text transform="translate(284.25 1715.5152)" fill="black">
-        <tspan font-family="Helvetica" font-size="12" font-weight="500" x=".47753906" y="11" textLength="80.04492">ServiceBinding</tspan>
-        <tspan font-family="Helvetica" font-size="12" font-weight="500" x="14.821289" y="25" textLength="51.35742">Resource</tspan>
-      </text>
-      <rect x="279.25" y="1538.0866" width="91" height="38" fill="white"/>
-      <text transform="translate(284.25 1543.0866)" fill="black">
-        <tspan font-family="Helvetica" font-size="12" font-weight="500" x=".47753906" y="11" textLength="80.04492">ServiceBinding</tspan>
-        <tspan font-family="Helvetica" font-size="12" font-weight="500" x="14.821289" y="25" textLength="51.35742">Resource</tspan>
-      </text>
-      <line x1="130" y1="1556.5866" x2="260.87955" y2="1557.4745" marker-end="url(#FilledArrow_Marker)" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-      <rect x="279" y="1472.5" width="101" height="39" fill="white"/>
-      <text transform="translate(284 1477.6074)" fill="black">
-        <tspan font-family="Arial" font-size="12" font-weight="bold" x=".4794922" y="11" textLength="90.04102">Service Catalog</tspan>
-        <tspan font-family="Arial" font-size="12" font-weight="bold" x="15.148438" y="25.392578" textLength="60.703125">API Server</tspan>
-      </text>
-      <rect x="488" y="1472.5" width="95" height="25" fill="white"/>
-      <text transform="translate(493 1477.8037)" fill="black">
-        <tspan font-family="Arial" font-size="12" font-weight="bold" x=".13964844" y="11" textLength="84.7207">Service Broker</tspan>
-      </text>
-      <rect x="71.5" y="1472.5" width="106" height="25" fill="white"/>
-      <text transform="translate(76.5 1477.8037)" fill="black">
-        <tspan font-family="Arial" font-size="12" font-weight="bold" x=".32226562" y="11" textLength="95.35547">Cluster Operator</tspan>
-      </text>
-      <g id="id126_Graphic">
-        <rect x="408.7893" y="1556.5866" width="22" height="25" fill="white"/>
-        <rect x="408.7893" y="1556.5866" width="22" height="25" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-        <text transform="translate(413.7893 1561.8904)" fill="black">
-          <tspan font-family="Arial" font-size="12" font-weight="500" x=".9960938" y="11" textLength="10.007812">1.</tspan>
-        </text>
-      </g>
-      <g id="id134_Graphic">
-        <rect x="408.7893" y="1702.9107" width="22" height="25" fill="white"/>
-        <rect x="408.7893" y="1702.9107" width="22" height="25" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-        <text transform="translate(413.7893 1708.2144)" fill="black">
-          <tspan font-family="Arial" font-size="12" font-weight="500" x=".9960938" y="11" textLength="10.007812">3.</tspan>
-        </text>
-      </g>
-      <path d="M 558 1619.956 L 617.5 1619.956 C 624.538 1619.956 630.25 1629.476 630.25 1641.206 C 630.25 1652.936 624.538 1662.456 617.5 1662.456 L 558 1662.456 C 550.962 1662.456 545.25 1652.936 545.25 1641.206 C 545.25 1629.476 550.962 1619.956 558 1619.956" fill="white"/>
-      <path d="M 558 1619.956 L 617.5 1619.956 C 624.538 1619.956 630.25 1629.476 630.25 1641.206 C 630.25 1652.936 624.538 1662.456 617.5 1662.456 L 558 1662.456 C 550.962 1662.456 545.25 1652.936 545.25 1641.206 C 545.25 1629.476 550.962 1619.956 558 1619.956" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-      <text transform="translate(558.75 1632.4443)" fill="black">
-        <tspan font-family="Arial" font-size="16" font-weight="bold" x=".53125" y="14" textLength="56.9375">Service</tspan>
-      </text>
-      <g id="id189_Graphic">
-        <rect x="576.75" y="1586.3496" width="22" height="25" fill="white"/>
-        <rect x="576.75" y="1586.3496" width="22" height="25" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-        <text transform="translate(581.75 1591.6533)" fill="black">
-          <tspan font-family="Arial" font-size="12" font-weight="500" x=".9960938" y="11" textLength="10.007812">2.</tspan>
-        </text>
-      </g>
-    </g>
-  </g>
-</svg>
diff --git a/static/images/docs/service-catalog-list.svg b/static/images/docs/service-catalog-list.svg
deleted file mode 100644
index ba1802d8fe..0000000000
--- a/static/images/docs/service-catalog-list.svg
+++ /dev/null
@@ -1,136 +0,0 @@
-<?xml version="1.0" encoding="UTF-8" standalone="no"?>
-<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
-<svg xmlns="http://www.w3.org/2000/svg" xmlns:xl="http://www.w3.org/1999/xlink" version="1.1" viewBox="66 512 566 375" width="566pt" height="375pt" xmlns:dc="http://purl.org/dc/elements/1.1/">
-  <metadata> Produced by OmniGraffle 7.5 
-    <dc:date>2017-11-17 22:45:14 +0000</dc:date>
-  </metadata>
-  <defs>
-    <filter id="Shadow" filterUnits="userSpaceOnUse">
-      <feGaussianBlur in="SourceAlpha" result="blur" stdDeviation="1.308"/>
-      <feOffset in="blur" result="offset" dx="0" dy="2"/>
-      <feFlood flood-color="black" flood-opacity=".5" result="flood"/>
-      <feComposite in="flood" in2="offset" operator="in"/>
-    </filter>
-    <font-face font-family="Helvetica" font-size="12" units-per-em="1000" underline-position="-75.68359" underline-thickness="49.316406" slope="0" x-height="522.9492" cap-height="717.28516" ascent="770.0195" descent="-229.98047" font-weight="500">
-      <font-face-src>
-        <font-face-name name="Helvetica"/>
-      </font-face-src>
-    </font-face>
-    <marker orient="auto" overflow="visible" markerUnits="strokeWidth" id="FilledArrow_Marker" viewBox="-1 -6 14 12" markerWidth="14" markerHeight="12" color="black">
-      <g>
-        <path d="M 11.428568 0 L 0 -4.285713 L 0 4.285713 Z" fill="currentColor" stroke="currentColor" stroke-width="1"/>
-      </g>
-    </marker>
-    <font-face font-family="Arial" font-size="12" panose-1="2 11 7 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="104.98047" slope="0" x-height="518.5547" cap-height="715.8203" ascent="905.2734" descent="-211.91406" font-weight="bold">
-      <font-face-src>
-        <font-face-name name="Arial-BoldMT"/>
-      </font-face-src>
-    </font-face>
-    <font-face font-family="Arial" font-size="12" panose-1="2 11 6 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="73.24219" slope="0" x-height="518.5547" cap-height="716.3086" ascent="905.2734" descent="-211.91406" font-weight="500">
-      <font-face-src>
-        <font-face-name name="ArialMT"/>
-      </font-face-src>
-    </font-face>
-    <font-face font-family="Arial" font-size="13" panose-1="2 11 6 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="73.24219" slope="0" x-height="518.5547" cap-height="716.3086" ascent="905.2734" descent="-211.91406" font-weight="500">
-      <font-face-src>
-        <font-face-name name="ArialMT"/>
-      </font-face-src>
-    </font-face>
-    <font-face font-family="Arial" font-size="11" panose-1="2 11 6 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="73.24219" slope="0" x-height="518.5547" cap-height="716.3086" ascent="905.2734" descent="-211.91406" font-weight="500">
-      <font-face-src>
-        <font-face-name name="ArialMT"/>
-      </font-face-src>
-    </font-face>
-  </defs>
-  <g stroke="none" stroke-opacity="1" stroke-dasharray="none" fill="none" fill-opacity="1">
-    <title>V2b</title>
-    <g>
-      <title>Layer 1</title>
-      <g>
-        <xl:use xl:href="#id114_Graphic" filter="url(#Shadow)"/>
-        <xl:use xl:href="#id115_Graphic" filter="url(#Shadow)"/>
-        <xl:use xl:href="#id66_Graphic" filter="url(#Shadow)"/>
-      </g>
-      <line x1="118.75" y1="535.5" x2="118.75" y2="885.5" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="3"/>
-      <line x1="324.25" y1="535.5" x2="324.25" y2="885.5" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="3"/>
-      <rect x="263.75" y="704.522" width="122" height="38" fill="white"/>
-      <text transform="translate(268.75 709.522)" fill="black">
-        <tspan font-family="Helvetica" font-size="12" font-weight="500" x="1.9853516" y="11" textLength="111.36328">ClusterServiceClass </tspan>
-        <tspan font-family="Helvetica" font-size="12" font-weight="500" x="30.32129" y="25" textLength="51.35742">Resource</tspan>
-      </text>
-      <line x1="529.75" y1="535.5" x2="529.75" y2="885.5" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="3"/>
-      <line x1="336.2558" y1="619.1546" x2="506.0406" y2="674.8217" marker-end="url(#FilledArrow_Marker)" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-      <line x1="515.25" y1="710.9325" x2="350.17202" y2="752.6657" marker-end="url(#FilledArrow_Marker)" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-      <rect x="273.75" y="512.5" width="101" height="39" fill="white"/>
-      <text transform="translate(278.75 517.6074)" fill="black">
-        <tspan font-family="Arial" font-size="12" font-weight="bold" x=".4794922" y="11" textLength="90.04102">Service Catalog</tspan>
-        <tspan font-family="Arial" font-size="12" font-weight="bold" x="15.148438" y="25.392578" textLength="60.703125">API Server</tspan>
-      </text>
-      <rect x="482.75" y="512.5" width="95" height="25" fill="white"/>
-      <text transform="translate(487.75 517.8037)" fill="black">
-        <tspan font-family="Arial" font-size="12" font-weight="bold" x=".13964844" y="11" textLength="84.7207">Service Broker</tspan>
-      </text>
-      <rect x="391.18543" y="637.6151" width="79" height="25" fill="white"/>
-      <text transform="translate(396.18543 642.9188)" fill="black">
-        <tspan font-family="Arial" font-size="12" font-weight="500" x=".4892578" y="11" textLength="68.021484">List Services</tspan>
-      </text>
-      <rect x="261.0526" y="580.1922" width="124" height="39" fill="white"/>
-      <text transform="translate(266.0526 585.2996)" fill="black">
-        <tspan font-family="Arial" font-size="12" font-weight="500" x=".31640625" y="11" textLength="113.36719">ClusterServiceBroker</tspan>
-        <tspan font-family="Arial" font-size="12" font-weight="500" x="31.32129" y="25.392578" textLength="51.35742">Resource</tspan>
-      </text>
-      <line x1="132.88842" y1="754.9325" x2="248.85003" y2="755.8099" marker-end="url(#FilledArrow_Marker)" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-      <line x1="311" y1="791.5658" x2="145.92202" y2="833.299" marker-end="url(#FilledArrow_Marker)" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-      <rect x="66.25" y="512.5" width="106" height="25" fill="white"/>
-      <text transform="translate(71.25 517.8037)" fill="black">
-        <tspan font-family="Arial" font-size="12" font-weight="bold" x=".32226562" y="11" textLength="95.35547">Cluster Operator</tspan>
-      </text>
-      <g id="id114_Graphic">
-        <rect x="422.1116" y="748.5" width="22" height="25" fill="white"/>
-        <rect x="422.1116" y="748.5" width="22" height="25" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-        <text transform="translate(427.1116 753.8037)" fill="black">
-          <tspan font-family="Arial" font-size="12" font-weight="500" x=".9960938" y="11" textLength="10.007812">2.</tspan>
-        </text>
-      </g>
-      <g id="id115_Graphic">
-        <rect x="211" y="830.5" width="22" height="25" fill="white"/>
-        <rect x="211" y="830.5" width="22" height="25" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-        <text transform="translate(216 835.8037)" fill="black">
-          <tspan font-family="Arial" font-size="12" font-weight="500" x=".9960938" y="11" textLength="10.007812">3.</tspan>
-        </text>
-      </g>
-      <g id="id66_Graphic">
-        <rect x="422.1116" y="606.6151" width="22" height="25" fill="white"/>
-        <rect x="422.1116" y="606.6151" width="22" height="25" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-        <text transform="translate(427.1116 611.9188)" fill="black">
-          <tspan font-family="Arial" font-size="12" font-weight="500" x=".9960938" y="11" textLength="10.007812">1.</tspan>
-        </text>
-      </g>
-      <rect x="545.25" y="670" width="85" height="55" fill="white"/>
-      <rect x="545.25" y="670" width="85" height="55" stroke="#a5a5a5" stroke-linecap="round" stroke-linejoin="round" stroke-width="2"/>
-      <text transform="translate(550.25 674.3621)" fill="black">
-        <tspan font-family="Arial" font-size="13" font-weight="500" fill="black" x="20.158203" y="12" textLength="38.29541">List of </tspan>
-        <tspan font-family="Arial" font-size="13" font-weight="500" fill="black" x="10.77002" y="27.425293" textLength="57.07178">Services, </tspan>
-        <tspan font-family="Arial" font-size="13" font-weight="500" fill="black" x="21.240479" y="42.850586" textLength="32.519043">Plans</tspan>
-      </text>
-      <line x1="133" y1="599.1922" x2="248.9616" y2="600.0696" marker-end="url(#FilledArrow_Marker)" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-      <rect x="265.0526" y="763.5658" width="116" height="38" fill="white"/>
-      <text transform="translate(270.0526 768.5658)" fill="black">
-        <tspan font-family="Helvetica" font-size="12" font-weight="500" x="1.9794922" y="11" textLength="105.375">ClusterServicePlan </tspan>
-        <tspan font-family="Helvetica" font-size="12" font-weight="500" x="27.32129" y="25" textLength="51.35742">Resource</tspan>
-      </text>
-      <rect x="386.6116" y="719.1978" width="93" height="25" fill="white"/>
-      <text transform="translate(391.6116 724.5015)" fill="black">
-        <tspan font-family="Arial" font-size="12" font-weight="500" x=".15039062" y="11" textLength="82.69922">Services, Plans</tspan>
-      </text>
-      <rect x="129.88842" y="764.2202" width="133" height="23" fill="white"/>
-      <text transform="translate(134.88842 769.5402)" fill="black">
-        <tspan font-family="Arial" font-size="11" font-weight="500" x="0" y="10" textLength="111.88525">get clusterserviceplans</tspan>
-      </text>
-      <rect x="129.88842" y="718.5518" width="133" height="23" fill="white"/>
-      <text transform="translate(134.88842 723.8719)" fill="black">
-        <tspan font-family="Arial" font-size="11" font-weight="500" x="0" y="10" textLength="122.26758">get clusterserviceclasses</tspan>
-      </text>
-    </g>
-  </g>
-</svg>
diff --git a/static/images/docs/service-catalog-map.svg b/static/images/docs/service-catalog-map.svg
deleted file mode 100644
index 091cd4efef..0000000000
--- a/static/images/docs/service-catalog-map.svg
+++ /dev/null
@@ -1,100 +0,0 @@
-<?xml version="1.0" encoding="UTF-8" standalone="no"?>
-<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
-<svg xmlns="http://www.w3.org/2000/svg" xmlns:xl="http://www.w3.org/1999/xlink" version="1.1" viewBox="-1 -1 841 457" width="841pt" height="457pt" xmlns:dc="http://purl.org/dc/elements/1.1/">
-  <metadata> Produced by OmniGraffle 7.5 
-    <dc:date>2017-11-07 08:04:59 +0000</dc:date>
-  </metadata>
-  <defs>
-    <font-face font-family="Arial" font-size="16" panose-1="2 11 6 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="73.24219" slope="0" x-height="518.5547" cap-height="716.3086" ascent="905.2734" descent="-211.91406" font-weight="500">
-      <font-face-src>
-        <font-face-name name="ArialMT"/>
-      </font-face-src>
-    </font-face>
-    <font-face font-family="Arial" font-size="16" panose-1="2 11 7 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="104.98047" slope="0" x-height="518.5547" cap-height="715.8203" ascent="905.2734" descent="-211.91406" font-weight="bold">
-      <font-face-src>
-        <font-face-name name="Arial-BoldMT"/>
-      </font-face-src>
-    </font-face>
-    <font-face font-family="Arial" font-size="14" panose-1="2 11 7 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="104.98047" slope="0" x-height="518.5547" cap-height="715.8203" ascent="905.2734" descent="-211.91406" font-weight="bold">
-      <font-face-src>
-        <font-face-name name="Arial-BoldMT"/>
-      </font-face-src>
-    </font-face>
-    <font-face font-family="Arial" font-size="14" panose-1="2 11 6 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="73.24219" slope="0" x-height="518.5547" cap-height="716.3086" ascent="905.2734" descent="-211.91406" font-weight="500">
-      <font-face-src>
-        <font-face-name name="ArialMT"/>
-      </font-face-src>
-    </font-face>
-    <font-face font-family="Arial" font-size="12" panose-1="2 11 6 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="73.24219" slope="0" x-height="518.5547" cap-height="716.3086" ascent="905.2734" descent="-211.91406" font-weight="500">
-      <font-face-src>
-        <font-face-name name="ArialMT"/>
-      </font-face-src>
-    </font-face>
-    <marker orient="auto" overflow="visible" markerUnits="strokeWidth" id="FilledArrow_Marker" viewBox="-1 -3 7 6" markerWidth="7" markerHeight="6" color="gray">
-      <g>
-        <path d="M 4.8 0 L 0 -1.8 L 0 1.8 Z" fill="currentColor" stroke="currentColor" stroke-width="1"/>
-      </g>
-    </marker>
-    <marker orient="auto" overflow="visible" markerUnits="strokeWidth" id="FilledArrow_Marker_2" viewBox="-6 -3 7 6" markerWidth="7" markerHeight="6" color="gray">
-      <g>
-        <path d="M -4.8 0 L 0 1.8 L 0 -1.8 Z" fill="currentColor" stroke="currentColor" stroke-width="1"/>
-      </g>
-    </marker>
-    <font-face font-family="Arial" font-size="12" panose-1="2 11 7 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="104.98047" slope="0" x-height="518.5547" cap-height="715.8203" ascent="905.2734" descent="-211.91406" font-weight="bold">
-      <font-face-src>
-        <font-face-name name="Arial-BoldMT"/>
-      </font-face-src>
-    </font-face>
-  </defs>
-  <g stroke="none" stroke-opacity="1" stroke-dasharray="none" fill="none" fill-opacity="1">
-    <title>map creds</title>
-    <g>
-      <title>Layer 1</title>
-      <path d="M 0 0 L 600 0 L 600 420 L 0 420 Z" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1" stroke-dasharray="4,4"/>
-      <rect x="640" y="0" width="200" height="420" fill="#d9d9d9"/>
-      <text transform="translate(650 30)" fill="black">
-        <tspan font-family="Arial" font-size="16" font-weight="500" fill="black" x="37.539062" y="14" textLength="104.92188">Service Broker</tspan>
-      </text>
-      <rect x="10" y="10" width="170" height="400" fill="#4285f5"/>
-      <text transform="translate(20 30)" fill="white">
-        <tspan font-family="Arial" font-size="16" font-weight="bold" fill="white" x="34.53125" y="14" textLength="80.9375">API Server</tspan>
-      </text>
-      <rect x="215" y="10" width="170" height="190" fill="#4285f5"/>
-      <text transform="translate(227 30)" fill="white">
-        <tspan font-family="Arial" font-size="16" font-weight="bold" fill="white" x="12.972656" y="14" textLength="120.05469">Service Catalog</tspan>
-        <tspan font-family="Arial" font-size="14" font-weight="bold" fill="white" x=".23828125" y="120.52344" textLength="145.52344">servicecatalog.k8s.io:</tspan>
-        <tspan font-family="Arial" font-size="14" font-weight="500" fill="white" x="0" y="152.98145" textLength="93.38574">ServiceBinding</tspan>
-      </text>
-      <rect x="420" y="220" width="170" height="190" fill="#4285f5"/>
-      <text transform="translate(430 240)" fill="white">
-        <tspan font-family="Arial" font-size="16" font-weight="bold" fill="white" x="31.445312" y="14" textLength="87.10938">Application</tspan>
-      </text>
-      <rect x="650" y="220" width="180" height="60" fill="white"/>
-      <text transform="translate(660 232.47656)" fill="black">
-        <tspan font-family="Arial" font-size="16" font-weight="500" x="17.742188" y="14" textLength="128.96094">Managed Service </tspan>
-        <tspan font-family="Arial" font-size="16" font-weight="500" x="49.75781" y="31.523438" textLength="60.484375">Instance</tspan>
-      </text>
-      <path d="M 384.9481 39.49993 L 410.0271 19.566032 L 410.00054 29.631994 L 614.9472 30.172747 L 614.9738 20.106784 L 639.9472 40.172747 L 614.86825 60.106645 L 614.8948 50.040683 L 409.9481 49.49993 L 409.92156 59.56589 Z" fill="gray"/>
-      <text transform="translate(421.804 32.87919) rotate(-.1511748)" fill="white">
-        <tspan font-family="Arial" font-size="12" font-weight="500" fill="white" x="54.26758" y="11" textLength="72.71484">Bind Instance</tspan>
-      </text>
-      <text transform="translate(462.4477 59.30371)" fill="black">
-        <tspan font-family="Arial" font-size="12" font-weight="500" x="6.646484" y="11" textLength="86.70703">Service Account</tspan>
-      </text>
-      <line x1="602.9" y1="249.5" x2="637.1" y2="249.5" marker-end="url(#FilledArrow_Marker)" marker-start="url(#FilledArrow_Marker_2)" stroke="gray" stroke-linecap="round" stroke-linejoin="round" stroke-width="2"/>
-      <line x1="192.9" y1="39.33634" x2="202.1" y2="39.33634" marker-end="url(#FilledArrow_Marker)" marker-start="url(#FilledArrow_Marker_2)" stroke="gray" stroke-linecap="round" stroke-linejoin="round" stroke-width="2"/>
-      <path d="M 300 200 L 300 215.9 L 300 315.5 L 369.5 315.5 L 404.1 315 L 407.1 315" marker-end="url(#FilledArrow_Marker)" stroke="gray" stroke-linecap="round" stroke-linejoin="round" stroke-width="2"/>
-      <rect x="430" y="285" width="150" height="80" fill="white"/>
-      <text transform="translate(440 296.21484)" fill="#383838">
-        <tspan font-family="Arial" font-size="12" font-weight="bold" fill="#383838" x="0" y="11" textLength="40.6875">Secret:</tspan>
-        <tspan font-family="Arial" font-size="12" font-weight="500" fill="#383838" x="0" y="25.392578" textLength="124.74023">Connection Credentials</tspan>
-        <tspan font-family="Arial" font-size="12" font-weight="500" fill="#383838" x="0" y="39.785156" textLength="43.347656">Service </tspan>
-        <tspan font-family="Arial" font-size="12" font-weight="500" fill="#383838" x="42.685547" y="39.785156" textLength="83.37305">Account Details</tspan>
-        <tspan font-family="Arial" font-size="12" font-weight="500" fill="#383838" x="0" y="54.177734" textLength="12">…</tspan>
-      </text>
-      <text transform="translate(259 432.2383)" fill="black">
-        <tspan font-family="Arial" font-size="16" font-weight="500" x=".08203125" y="14" textLength="81.83594">Kubernetes</tspan>
-      </text>
-    </g>
-  </g>
-</svg>
diff --git a/static/images/docs/service-catalog-provision.svg b/static/images/docs/service-catalog-provision.svg
deleted file mode 100644
index 748ba3a336..0000000000
--- a/static/images/docs/service-catalog-provision.svg
+++ /dev/null
@@ -1,125 +0,0 @@
-<?xml version="1.0" encoding="UTF-8" standalone="no"?>
-<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
-<svg xmlns="http://www.w3.org/2000/svg" xmlns:xl="http://www.w3.org/1999/xlink" version="1.1" viewBox="71 1022 560 377" width="560pt" height="377pt" xmlns:dc="http://purl.org/dc/elements/1.1/">
-  <metadata> Produced by OmniGraffle 7.5 
-    <dc:date>2017-11-17 23:02:50 +0000</dc:date>
-  </metadata>
-  <defs>
-    <filter id="Shadow" filterUnits="userSpaceOnUse">
-      <feGaussianBlur in="SourceAlpha" result="blur" stdDeviation="1.308"/>
-      <feOffset in="blur" result="offset" dx="0" dy="2"/>
-      <feFlood flood-color="black" flood-opacity=".5" result="flood"/>
-      <feComposite in="flood" in2="offset" operator="in"/>
-    </filter>
-    <marker orient="auto" overflow="visible" markerUnits="strokeWidth" id="FilledArrow_Marker" viewBox="-1 -6 14 12" markerWidth="14" markerHeight="12" color="black">
-      <g>
-        <path d="M 11.428568 0 L 0 -4.285713 L 0 4.285713 Z" fill="currentColor" stroke="currentColor" stroke-width="1"/>
-      </g>
-    </marker>
-    <font-face font-family="Arial" font-size="12" panose-1="2 11 6 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="73.24219" slope="0" x-height="518.5547" cap-height="716.3086" ascent="905.2734" descent="-211.91406" font-weight="500">
-      <font-face-src>
-        <font-face-name name="ArialMT"/>
-      </font-face-src>
-    </font-face>
-    <font-face font-family="Helvetica" font-size="12" units-per-em="1000" underline-position="-75.68359" underline-thickness="49.316406" slope="0" x-height="522.9492" cap-height="717.28516" ascent="770.0195" descent="-229.98047" font-weight="500">
-      <font-face-src>
-        <font-face-name name="Helvetica"/>
-      </font-face-src>
-    </font-face>
-    <font-face font-family="Arial" font-size="11" panose-1="2 11 6 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="73.24219" slope="0" x-height="518.5547" cap-height="716.3086" ascent="905.2734" descent="-211.91406" font-weight="500">
-      <font-face-src>
-        <font-face-name name="ArialMT"/>
-      </font-face-src>
-    </font-face>
-    <font-face font-family="Arial" font-size="12" panose-1="2 11 7 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="104.98047" slope="0" x-height="518.5547" cap-height="715.8203" ascent="905.2734" descent="-211.91406" font-weight="bold">
-      <font-face-src>
-        <font-face-name name="Arial-BoldMT"/>
-      </font-face-src>
-    </font-face>
-    <font-face font-family="Arial" font-size="16" panose-1="2 11 7 4 2 2 2 2 2 4" units-per-em="1000" underline-position="-105.95703" underline-thickness="104.98047" slope="0" x-height="518.5547" cap-height="715.8203" ascent="905.2734" descent="-211.91406" font-weight="bold">
-      <font-face-src>
-        <font-face-name name="Arial-BoldMT"/>
-      </font-face-src>
-    </font-face>
-  </defs>
-  <g stroke="none" stroke-opacity="1" stroke-dasharray="none" fill="none" fill-opacity="1">
-    <title>V2b</title>
-    <g>
-      <title>Layer 1</title>
-      <g>
-        <xl:use xl:href="#id118_Graphic" filter="url(#Shadow)"/>
-        <xl:use xl:href="#id119_Graphic" filter="url(#Shadow)"/>
-        <xl:use xl:href="#id121_Graphic" filter="url(#Shadow)"/>
-      </g>
-      <line x1="118.75" y1="1047.5" x2="118.75" y2="1397.5" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="3"/>
-      <line x1="324.25" y1="1047.5" x2="324.25" y2="1397.5" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="3"/>
-      <line x1="529.75" y1="1047.5" x2="529.75" y2="1397.5" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="3"/>
-      <line x1="341.25" y1="1125.8936" x2="502.3641" y2="1168.487" marker-end="url(#FilledArrow_Marker)" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-      <rect x="373.2558" y="1136.263" width="109" height="25" fill="white"/>
-      <text transform="translate(378.2558 1141.5667)" fill="black">
-        <tspan font-family="Arial" font-size="12" font-weight="500" x=".4746094" y="11" textLength="98.05078">Provision Instance</tspan>
-      </text>
-      <line x1="515.25" y1="1207.9547" x2="350.17202" y2="1249.6879" marker-end="url(#FilledArrow_Marker)" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-      <rect x="276.75" y="1260.5592" width="96" height="38" fill="white"/>
-      <text transform="translate(281.75 1265.5592)" fill="black">
-        <tspan font-family="Helvetica" font-size="12" font-weight="500" x=".31152344" y="11" textLength="85.37695">ServiceInstance</tspan>
-        <tspan font-family="Helvetica" font-size="12" font-weight="500" x="17.32129" y="25" textLength="51.35742">Resource</tspan>
-      </text>
-      <rect x="276.75" y="1088.1307" width="96" height="38" fill="white"/>
-      <text transform="translate(281.75 1093.1307)" fill="black">
-        <tspan font-family="Helvetica" font-size="12" font-weight="500" x=".31152344" y="11" textLength="85.37695">ServiceInstance</tspan>
-        <tspan font-family="Helvetica" font-size="12" font-weight="500" x="17.32129" y="25" textLength="51.35742">Resource</tspan>
-      </text>
-      <line x1="133.5" y1="1106.6307" x2="264.37955" y2="1107.5185" marker-end="url(#FilledArrow_Marker)" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-      <line x1="133.5" y1="1279.0592" x2="264.37955" y2="1279.947" marker-end="url(#FilledArrow_Marker)" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-      <rect x="147.41178" y="1268.0097" width="105" height="23" fill="white"/>
-      <text transform="translate(152.41178 1273.3298)" fill="black">
-        <tspan font-family="Arial" font-size="11" font-weight="500" x=".41967773" y="10" textLength="94.16064">get serviceinstance</tspan>
-      </text>
-      <line x1="311" y1="1310.1637" x2="145.92202" y2="1351.8969" marker-end="url(#FilledArrow_Marker)" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-      <rect x="189.53932" y="1321.797" width="52" height="25" fill="white"/>
-      <text transform="translate(194.53932 1327.1007)" fill="black">
-        <tspan font-family="Arial" font-size="12" font-weight="500" x=".328125" y="11" textLength="41.34375">READY</tspan>
-      </text>
-      <rect x="279" y="1022.544" width="101" height="39" fill="white"/>
-      <text transform="translate(284 1027.6514)" fill="black">
-        <tspan font-family="Arial" font-size="12" font-weight="bold" x=".4794922" y="11" textLength="90.04102">Service Catalog</tspan>
-        <tspan font-family="Arial" font-size="12" font-weight="bold" x="15.148438" y="25.392578" textLength="60.703125">API Server</tspan>
-      </text>
-      <rect x="488" y="1022.544" width="95" height="25" fill="white"/>
-      <text transform="translate(493 1027.8477)" fill="black">
-        <tspan font-family="Arial" font-size="12" font-weight="bold" x=".13964844" y="11" textLength="84.7207">Service Broker</tspan>
-      </text>
-      <rect x="71.5" y="1022.544" width="106" height="25" fill="white"/>
-      <text transform="translate(76.5 1027.8477)" fill="black">
-        <tspan font-family="Arial" font-size="12" font-weight="bold" x=".32226562" y="11" textLength="95.35547">Cluster Operator</tspan>
-      </text>
-      <g id="id118_Graphic">
-        <rect x="198.8721" y="1294.3963" width="22" height="25" fill="white"/>
-        <rect x="198.8721" y="1294.3963" width="22" height="25" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-        <text transform="translate(203.8721 1299.7)" fill="black">
-          <tspan font-family="Arial" font-size="12" font-weight="500" x=".9960938" y="11" textLength="10.007812">3.</tspan>
-        </text>
-      </g>
-      <g id="id119_Graphic">
-        <rect x="415.25" y="1106.263" width="22" height="25" fill="white"/>
-        <rect x="415.25" y="1106.263" width="22" height="25" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-        <text transform="translate(420.25 1111.5667)" fill="black">
-          <tspan font-family="Arial" font-size="12" font-weight="500" x=".9960938" y="11" textLength="10.007812">1.</tspan>
-        </text>
-      </g>
-      <g id="id121_Graphic">
-        <rect x="576.75" y="1132.263" width="22" height="25" fill="white"/>
-        <rect x="576.75" y="1132.263" width="22" height="25" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1"/>
-        <text transform="translate(581.75 1137.5667)" fill="black">
-          <tspan font-family="Arial" font-size="12" font-weight="500" x=".9960938" y="11" textLength="10.007812">2.</tspan>
-        </text>
-      </g>
-      <path d="M 558 1166 L 617.5 1166 C 624.538 1166 630.25 1175.52 630.25 1187.25 C 630.25 1198.98 624.538 1208.5 617.5 1208.5 L 558 1208.5 C 550.962 1208.5 545.25 1198.98 545.25 1187.25 C 545.25 1175.52 550.962 1166 558 1166" fill="white"/>
-      <path d="M 558 1166 L 617.5 1166 C 624.538 1166 630.25 1175.52 630.25 1187.25 C 630.25 1198.98 624.538 1208.5 617.5 1208.5 L 558 1208.5 C 550.962 1208.5 545.25 1198.98 545.25 1187.25 C 545.25 1175.52 550.962 1166 558 1166" stroke="black" stroke-linecap="round" stroke-linejoin="round" stroke-width="1" stroke-dasharray="4,4"/>
-      <text transform="translate(558.75 1178.4883)" fill="black">
-        <tspan font-family="Arial" font-size="16" font-weight="bold" x=".53125" y="14" textLength="56.9375">Service</tspan>
-      </text>
-    </g>
-  </g>
-</svg>
diff --git a/static/images/releases/release-cycle.jpg b/static/images/releases/release-cycle.jpg
new file mode 100644
index 0000000000..8519fca6bd
Binary files /dev/null and b/static/images/releases/release-cycle.jpg differ
diff --git a/static/images/releases/release-lifecycle.jpg b/static/images/releases/release-lifecycle.jpg
new file mode 100644
index 0000000000..ac30788ba3
Binary files /dev/null and b/static/images/releases/release-lifecycle.jpg differ
diff --git a/static/images/sequence_diagram.svg b/static/images/sequence_diagram.svg
new file mode 100644
index 0000000000..dd1739b21e
--- /dev/null
+++ b/static/images/sequence_diagram.svg
@@ -0,0 +1 @@
+<svg id="graph-div" width="100%" xmlns="http://www.w3.org/2000/svg" height="690" style="max-width: 1122.5px;" viewBox="-50 -10 1122.5 690"><style>#graph-div {font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;fill:#333;}#graph-div .error-icon{fill:#552222;}#graph-div .error-text{fill:#552222;stroke:#552222;}#graph-div .edge-thickness-normal{stroke-width:2px;}#graph-div .edge-thickness-thick{stroke-width:3.5px;}#graph-div .edge-pattern-solid{stroke-dasharray:0;}#graph-div .edge-pattern-dashed{stroke-dasharray:3;}#graph-div .edge-pattern-dotted{stroke-dasharray:2;}#graph-div .marker{fill:#333333;stroke:#333333;}#graph-div .marker.cross{stroke:#333333;}#graph-div svg{font-family:"trebuchet ms",verdana,arial,sans-serif;font-size:16px;}#graph-div .actor{stroke:hsl(259.6261682243, 59.7765363128%, 87.9019607843%);fill:#ECECFF;}#graph-div text.actor&gt;tspan{fill:black;stroke:none;}#graph-div .actor-line{stroke:grey;}#graph-div .messageLine0{stroke-width:1.5;stroke-dasharray:none;stroke:#333;}#graph-div .messageLine1{stroke-width:1.5;stroke-dasharray:2,2;stroke:#333;}#graph-div #arrowhead path{fill:#333;stroke:#333;}#graph-div .sequenceNumber{fill:white;}#graph-div #sequencenumber{fill:#333;}#graph-div #crosshead path{fill:#333;stroke:#333;}#graph-div .messageText{fill:#333;stroke:#333;}#graph-div .labelBox{stroke:hsl(259.6261682243, 59.7765363128%, 87.9019607843%);fill:#ECECFF;}#graph-div .labelText,#graph-div .labelText&gt;tspan{fill:black;stroke:none;}#graph-div .loopText,#graph-div .loopText&gt;tspan{fill:black;stroke:none;}#graph-div .loopLine{stroke-width:2px;stroke-dasharray:2,2;stroke:hsl(259.6261682243, 59.7765363128%, 87.9019607843%);fill:hsl(259.6261682243, 59.7765363128%, 87.9019607843%);}#graph-div .note{stroke:#aaaa33;fill:#fff5ad;}#graph-div .noteText,#graph-div .noteText&gt;tspan{fill:black;stroke:none;}#graph-div .activation0{fill:#f4f4f4;stroke:#666;}#graph-div .activation1{fill:#f4f4f4;stroke:#666;}#graph-div .activation2{fill:#f4f4f4;stroke:#666;}#graph-div .actorPopupMenu{position:absolute;}#graph-div .actorPopupMenuPanel{position:absolute;fill:#ECECFF;box-shadow:0px 8px 16px 0px rgba(0,0,0,0.2);filter:drop-shadow(3px 5px 2px rgb(0 0 0 / 0.4));}#graph-div .actor-man line{stroke:hsl(259.6261682243, 59.7765363128%, 87.9019607843%);fill:#ECECFF;}#graph-div .actor-man circle,#graph-div line{stroke:hsl(259.6261682243, 59.7765363128%, 87.9019607843%);fill:#ECECFF;stroke-width:2px;}#graph-div :root{--mermaid-font-family:"trebuchet ms",verdana,arial,sans-serif;}</style><g></g><defs><symbol id="computer" width="24" height="24"><path transform="scale(.5)" d="M2 2v13h20v-13h-20zm18 11h-16v-9h16v9zm-10.228 6l.466-1h3.524l.467 1h-4.457zm14.228 3h-24l2-6h2.104l-1.33 4h18.45l-1.297-4h2.073l2 6zm-5-10h-14v-7h14v7z"></path></symbol></defs><defs><symbol id="database" fill-rule="evenodd" clip-rule="evenodd"><path transform="scale(.5)" d="M12.258.001l.256.004.255.005.253.008.251.01.249.012.247.015.246.016.242.019.241.02.239.023.236.024.233.027.231.028.229.031.225.032.223.034.22.036.217.038.214.04.211.041.208.043.205.045.201.046.198.048.194.05.191.051.187.053.183.054.18.056.175.057.172.059.168.06.163.061.16.063.155.064.15.066.074.033.073.033.071.034.07.034.069.035.068.035.067.035.066.035.064.036.064.036.062.036.06.036.06.037.058.037.058.037.055.038.055.038.053.038.052.038.051.039.05.039.048.039.047.039.045.04.044.04.043.04.041.04.04.041.039.041.037.041.036.041.034.041.033.042.032.042.03.042.029.042.027.042.026.043.024.043.023.043.021.043.02.043.018.044.017.043.015.044.013.044.012.044.011.045.009.044.007.045.006.045.004.045.002.045.001.045v17l-.001.045-.002.045-.004.045-.006.045-.007.045-.009.044-.011.045-.012.044-.013.044-.015.044-.017.043-.018.044-.02.043-.021.043-.023.043-.024.043-.026.043-.027.042-.029.042-.03.042-.032.042-.033.042-.034.041-.036.041-.037.041-.039.041-.04.041-.041.04-.043.04-.044.04-.045.04-.047.039-.048.039-.05.039-.051.039-.052.038-.053.038-.055.038-.055.038-.058.037-.058.037-.06.037-.06.036-.062.036-.064.036-.064.036-.066.035-.067.035-.068.035-.069.035-.07.034-.071.034-.073.033-.074.033-.15.066-.155.064-.16.063-.163.061-.168.06-.172.059-.175.057-.18.056-.183.054-.187.053-.191.051-.194.05-.198.048-.201.046-.205.045-.208.043-.211.041-.214.04-.217.038-.22.036-.223.034-.225.032-.229.031-.231.028-.233.027-.236.024-.239.023-.241.02-.242.019-.246.016-.247.015-.249.012-.251.01-.253.008-.255.005-.256.004-.258.001-.258-.001-.256-.004-.255-.005-.253-.008-.251-.01-.249-.012-.247-.015-.245-.016-.243-.019-.241-.02-.238-.023-.236-.024-.234-.027-.231-.028-.228-.031-.226-.032-.223-.034-.22-.036-.217-.038-.214-.04-.211-.041-.208-.043-.204-.045-.201-.046-.198-.048-.195-.05-.19-.051-.187-.053-.184-.054-.179-.056-.176-.057-.172-.059-.167-.06-.164-.061-.159-.063-.155-.064-.151-.066-.074-.033-.072-.033-.072-.034-.07-.034-.069-.035-.068-.035-.067-.035-.066-.035-.064-.036-.063-.036-.062-.036-.061-.036-.06-.037-.058-.037-.057-.037-.056-.038-.055-.038-.053-.038-.052-.038-.051-.039-.049-.039-.049-.039-.046-.039-.046-.04-.044-.04-.043-.04-.041-.04-.04-.041-.039-.041-.037-.041-.036-.041-.034-.041-.033-.042-.032-.042-.03-.042-.029-.042-.027-.042-.026-.043-.024-.043-.023-.043-.021-.043-.02-.043-.018-.044-.017-.043-.015-.044-.013-.044-.012-.044-.011-.045-.009-.044-.007-.045-.006-.045-.004-.045-.002-.045-.001-.045v-17l.001-.045.002-.045.004-.045.006-.045.007-.045.009-.044.011-.045.012-.044.013-.044.015-.044.017-.043.018-.044.02-.043.021-.043.023-.043.024-.043.026-.043.027-.042.029-.042.03-.042.032-.042.033-.042.034-.041.036-.041.037-.041.039-.041.04-.041.041-.04.043-.04.044-.04.046-.04.046-.039.049-.039.049-.039.051-.039.052-.038.053-.038.055-.038.056-.038.057-.037.058-.037.06-.037.061-.036.062-.036.063-.036.064-.036.066-.035.067-.035.068-.035.069-.035.07-.034.072-.034.072-.033.074-.033.151-.066.155-.064.159-.063.164-.061.167-.06.172-.059.176-.057.179-.056.184-.054.187-.053.19-.051.195-.05.198-.048.201-.046.204-.045.208-.043.211-.041.214-.04.217-.038.22-.036.223-.034.226-.032.228-.031.231-.028.234-.027.236-.024.238-.023.241-.02.243-.019.245-.016.247-.015.249-.012.251-.01.253-.008.255-.005.256-.004.258-.001.258.001zm-9.258 20.499v.01l.001.021.003.021.004.022.005.021.006.022.007.022.009.023.01.022.011.023.012.023.013.023.015.023.016.024.017.023.018.024.019.024.021.024.022.025.023.024.024.025.052.049.056.05.061.051.066.051.07.051.075.051.079.052.084.052.088.052.092.052.097.052.102.051.105.052.11.052.114.051.119.051.123.051.127.05.131.05.135.05.139.048.144.049.147.047.152.047.155.047.16.045.163.045.167.043.171.043.176.041.178.041.183.039.187.039.19.037.194.035.197.035.202.033.204.031.209.03.212.029.216.027.219.025.222.024.226.021.23.02.233.018.236.016.24.015.243.012.246.01.249.008.253.005.256.004.259.001.26-.001.257-.004.254-.005.25-.008.247-.011.244-.012.241-.014.237-.016.233-.018.231-.021.226-.021.224-.024.22-.026.216-.027.212-.028.21-.031.205-.031.202-.034.198-.034.194-.036.191-.037.187-.039.183-.04.179-.04.175-.042.172-.043.168-.044.163-.045.16-.046.155-.046.152-.047.148-.048.143-.049.139-.049.136-.05.131-.05.126-.05.123-.051.118-.052.114-.051.11-.052.106-.052.101-.052.096-.052.092-.052.088-.053.083-.051.079-.052.074-.052.07-.051.065-.051.06-.051.056-.05.051-.05.023-.024.023-.025.021-.024.02-.024.019-.024.018-.024.017-.024.015-.023.014-.024.013-.023.012-.023.01-.023.01-.022.008-.022.006-.022.006-.022.004-.022.004-.021.001-.021.001-.021v-4.127l-.077.055-.08.053-.083.054-.085.053-.087.052-.09.052-.093.051-.095.05-.097.05-.1.049-.102.049-.105.048-.106.047-.109.047-.111.046-.114.045-.115.045-.118.044-.12.043-.122.042-.124.042-.126.041-.128.04-.13.04-.132.038-.134.038-.135.037-.138.037-.139.035-.142.035-.143.034-.144.033-.147.032-.148.031-.15.03-.151.03-.153.029-.154.027-.156.027-.158.026-.159.025-.161.024-.162.023-.163.022-.165.021-.166.02-.167.019-.169.018-.169.017-.171.016-.173.015-.173.014-.175.013-.175.012-.177.011-.178.01-.179.008-.179.008-.181.006-.182.005-.182.004-.184.003-.184.002h-.37l-.184-.002-.184-.003-.182-.004-.182-.005-.181-.006-.179-.008-.179-.008-.178-.01-.176-.011-.176-.012-.175-.013-.173-.014-.172-.015-.171-.016-.17-.017-.169-.018-.167-.019-.166-.02-.165-.021-.163-.022-.162-.023-.161-.024-.159-.025-.157-.026-.156-.027-.155-.027-.153-.029-.151-.03-.15-.03-.148-.031-.146-.032-.145-.033-.143-.034-.141-.035-.14-.035-.137-.037-.136-.037-.134-.038-.132-.038-.13-.04-.128-.04-.126-.041-.124-.042-.122-.042-.12-.044-.117-.043-.116-.045-.113-.045-.112-.046-.109-.047-.106-.047-.105-.048-.102-.049-.1-.049-.097-.05-.095-.05-.093-.052-.09-.051-.087-.052-.085-.053-.083-.054-.08-.054-.077-.054v4.127zm0-5.654v.011l.001.021.003.021.004.021.005.022.006.022.007.022.009.022.01.022.011.023.012.023.013.023.015.024.016.023.017.024.018.024.019.024.021.024.022.024.023.025.024.024.052.05.056.05.061.05.066.051.07.051.075.052.079.051.084.052.088.052.092.052.097.052.102.052.105.052.11.051.114.051.119.052.123.05.127.051.131.05.135.049.139.049.144.048.147.048.152.047.155.046.16.045.163.045.167.044.171.042.176.042.178.04.183.04.187.038.19.037.194.036.197.034.202.033.204.032.209.03.212.028.216.027.219.025.222.024.226.022.23.02.233.018.236.016.24.014.243.012.246.01.249.008.253.006.256.003.259.001.26-.001.257-.003.254-.006.25-.008.247-.01.244-.012.241-.015.237-.016.233-.018.231-.02.226-.022.224-.024.22-.025.216-.027.212-.029.21-.03.205-.032.202-.033.198-.035.194-.036.191-.037.187-.039.183-.039.179-.041.175-.042.172-.043.168-.044.163-.045.16-.045.155-.047.152-.047.148-.048.143-.048.139-.05.136-.049.131-.05.126-.051.123-.051.118-.051.114-.052.11-.052.106-.052.101-.052.096-.052.092-.052.088-.052.083-.052.079-.052.074-.051.07-.052.065-.051.06-.05.056-.051.051-.049.023-.025.023-.024.021-.025.02-.024.019-.024.018-.024.017-.024.015-.023.014-.023.013-.024.012-.022.01-.023.01-.023.008-.022.006-.022.006-.022.004-.021.004-.022.001-.021.001-.021v-4.139l-.077.054-.08.054-.083.054-.085.052-.087.053-.09.051-.093.051-.095.051-.097.05-.1.049-.102.049-.105.048-.106.047-.109.047-.111.046-.114.045-.115.044-.118.044-.12.044-.122.042-.124.042-.126.041-.128.04-.13.039-.132.039-.134.038-.135.037-.138.036-.139.036-.142.035-.143.033-.144.033-.147.033-.148.031-.15.03-.151.03-.153.028-.154.028-.156.027-.158.026-.159.025-.161.024-.162.023-.163.022-.165.021-.166.02-.167.019-.169.018-.169.017-.171.016-.173.015-.173.014-.175.013-.175.012-.177.011-.178.009-.179.009-.179.007-.181.007-.182.005-.182.004-.184.003-.184.002h-.37l-.184-.002-.184-.003-.182-.004-.182-.005-.181-.007-.179-.007-.179-.009-.178-.009-.176-.011-.176-.012-.175-.013-.173-.014-.172-.015-.171-.016-.17-.017-.169-.018-.167-.019-.166-.02-.165-.021-.163-.022-.162-.023-.161-.024-.159-.025-.157-.026-.156-.027-.155-.028-.153-.028-.151-.03-.15-.03-.148-.031-.146-.033-.145-.033-.143-.033-.141-.035-.14-.036-.137-.036-.136-.037-.134-.038-.132-.039-.13-.039-.128-.04-.126-.041-.124-.042-.122-.043-.12-.043-.117-.044-.116-.044-.113-.046-.112-.046-.109-.046-.106-.047-.105-.048-.102-.049-.1-.049-.097-.05-.095-.051-.093-.051-.09-.051-.087-.053-.085-.052-.083-.054-.08-.054-.077-.054v4.139zm0-5.666v.011l.001.02.003.022.004.021.005.022.006.021.007.022.009.023.01.022.011.023.012.023.013.023.015.023.016.024.017.024.018.023.019.024.021.025.022.024.023.024.024.025.052.05.056.05.061.05.066.051.07.051.075.052.079.051.084.052.088.052.092.052.097.052.102.052.105.051.11.052.114.051.119.051.123.051.127.05.131.05.135.05.139.049.144.048.147.048.152.047.155.046.16.045.163.045.167.043.171.043.176.042.178.04.183.04.187.038.19.037.194.036.197.034.202.033.204.032.209.03.212.028.216.027.219.025.222.024.226.021.23.02.233.018.236.017.24.014.243.012.246.01.249.008.253.006.256.003.259.001.26-.001.257-.003.254-.006.25-.008.247-.01.244-.013.241-.014.237-.016.233-.018.231-.02.226-.022.224-.024.22-.025.216-.027.212-.029.21-.03.205-.032.202-.033.198-.035.194-.036.191-.037.187-.039.183-.039.179-.041.175-.042.172-.043.168-.044.163-.045.16-.045.155-.047.152-.047.148-.048.143-.049.139-.049.136-.049.131-.051.126-.05.123-.051.118-.052.114-.051.11-.052.106-.052.101-.052.096-.052.092-.052.088-.052.083-.052.079-.052.074-.052.07-.051.065-.051.06-.051.056-.05.051-.049.023-.025.023-.025.021-.024.02-.024.019-.024.018-.024.017-.024.015-.023.014-.024.013-.023.012-.023.01-.022.01-.023.008-.022.006-.022.006-.022.004-.022.004-.021.001-.021.001-.021v-4.153l-.077.054-.08.054-.083.053-.085.053-.087.053-.09.051-.093.051-.095.051-.097.05-.1.049-.102.048-.105.048-.106.048-.109.046-.111.046-.114.046-.115.044-.118.044-.12.043-.122.043-.124.042-.126.041-.128.04-.13.039-.132.039-.134.038-.135.037-.138.036-.139.036-.142.034-.143.034-.144.033-.147.032-.148.032-.15.03-.151.03-.153.028-.154.028-.156.027-.158.026-.159.024-.161.024-.162.023-.163.023-.165.021-.166.02-.167.019-.169.018-.169.017-.171.016-.173.015-.173.014-.175.013-.175.012-.177.01-.178.01-.179.009-.179.007-.181.006-.182.006-.182.004-.184.003-.184.001-.185.001-.185-.001-.184-.001-.184-.003-.182-.004-.182-.006-.181-.006-.179-.007-.179-.009-.178-.01-.176-.01-.176-.012-.175-.013-.173-.014-.172-.015-.171-.016-.17-.017-.169-.018-.167-.019-.166-.02-.165-.021-.163-.023-.162-.023-.161-.024-.159-.024-.157-.026-.156-.027-.155-.028-.153-.028-.151-.03-.15-.03-.148-.032-.146-.032-.145-.033-.143-.034-.141-.034-.14-.036-.137-.036-.136-.037-.134-.038-.132-.039-.13-.039-.128-.041-.126-.041-.124-.041-.122-.043-.12-.043-.117-.044-.116-.044-.113-.046-.112-.046-.109-.046-.106-.048-.105-.048-.102-.048-.1-.05-.097-.049-.095-.051-.093-.051-.09-.052-.087-.052-.085-.053-.083-.053-.08-.054-.077-.054v4.153zm8.74-8.179l-.257.004-.254.005-.25.008-.247.011-.244.012-.241.014-.237.016-.233.018-.231.021-.226.022-.224.023-.22.026-.216.027-.212.028-.21.031-.205.032-.202.033-.198.034-.194.036-.191.038-.187.038-.183.04-.179.041-.175.042-.172.043-.168.043-.163.045-.16.046-.155.046-.152.048-.148.048-.143.048-.139.049-.136.05-.131.05-.126.051-.123.051-.118.051-.114.052-.11.052-.106.052-.101.052-.096.052-.092.052-.088.052-.083.052-.079.052-.074.051-.07.052-.065.051-.06.05-.056.05-.051.05-.023.025-.023.024-.021.024-.02.025-.019.024-.018.024-.017.023-.015.024-.014.023-.013.023-.012.023-.01.023-.01.022-.008.022-.006.023-.006.021-.004.022-.004.021-.001.021-.001.021.001.021.001.021.004.021.004.022.006.021.006.023.008.022.01.022.01.023.012.023.013.023.014.023.015.024.017.023.018.024.019.024.02.025.021.024.023.024.023.025.051.05.056.05.06.05.065.051.07.052.074.051.079.052.083.052.088.052.092.052.096.052.101.052.106.052.11.052.114.052.118.051.123.051.126.051.131.05.136.05.139.049.143.048.148.048.152.048.155.046.16.046.163.045.168.043.172.043.175.042.179.041.183.04.187.038.191.038.194.036.198.034.202.033.205.032.21.031.212.028.216.027.22.026.224.023.226.022.231.021.233.018.237.016.241.014.244.012.247.011.25.008.254.005.257.004.26.001.26-.001.257-.004.254-.005.25-.008.247-.011.244-.012.241-.014.237-.016.233-.018.231-.021.226-.022.224-.023.22-.026.216-.027.212-.028.21-.031.205-.032.202-.033.198-.034.194-.036.191-.038.187-.038.183-.04.179-.041.175-.042.172-.043.168-.043.163-.045.16-.046.155-.046.152-.048.148-.048.143-.048.139-.049.136-.05.131-.05.126-.051.123-.051.118-.051.114-.052.11-.052.106-.052.101-.052.096-.052.092-.052.088-.052.083-.052.079-.052.074-.051.07-.052.065-.051.06-.05.056-.05.051-.05.023-.025.023-.024.021-.024.02-.025.019-.024.018-.024.017-.023.015-.024.014-.023.013-.023.012-.023.01-.023.01-.022.008-.022.006-.023.006-.021.004-.022.004-.021.001-.021.001-.021-.001-.021-.001-.021-.004-.021-.004-.022-.006-.021-.006-.023-.008-.022-.01-.022-.01-.023-.012-.023-.013-.023-.014-.023-.015-.024-.017-.023-.018-.024-.019-.024-.02-.025-.021-.024-.023-.024-.023-.025-.051-.05-.056-.05-.06-.05-.065-.051-.07-.052-.074-.051-.079-.052-.083-.052-.088-.052-.092-.052-.096-.052-.101-.052-.106-.052-.11-.052-.114-.052-.118-.051-.123-.051-.126-.051-.131-.05-.136-.05-.139-.049-.143-.048-.148-.048-.152-.048-.155-.046-.16-.046-.163-.045-.168-.043-.172-.043-.175-.042-.179-.041-.183-.04-.187-.038-.191-.038-.194-.036-.198-.034-.202-.033-.205-.032-.21-.031-.212-.028-.216-.027-.22-.026-.224-.023-.226-.022-.231-.021-.233-.018-.237-.016-.241-.014-.244-.012-.247-.011-.25-.008-.254-.005-.257-.004-.26-.001-.26.001z"></path></symbol></defs><defs><symbol id="clock" width="24" height="24"><path transform="scale(.5)" d="M12 2c5.514 0 10 4.486 10 10s-4.486 10-10 10-10-4.486-10-10 4.486-10 10-10zm0-2c-6.627 0-12 5.373-12 12s5.373 12 12 12 12-5.373 12-12-5.373-12-12-12zm5.848 12.459c.202.038.202.333.001.372-1.907.361-6.045 1.111-6.547 1.111-.719 0-1.301-.582-1.301-1.301 0-.512.77-5.447 1.125-7.445.034-.192.312-.181.343.014l.985 6.238 5.394 1.011z"></path></symbol></defs><line id="actor0" x1="85" y1="80" x2="85" y2="596" class="200" stroke-width="0.5px" stroke="#999"></line><g class="actor-man"><line id="actor-man-torso0" x1="85" y1="25" x2="85" y2="45"></line><line id="actor-man-arms0" x1="67" y1="33" x2="103" y2="33"></line><line x1="67" y1="60" x2="85" y2="45"></line><line x1="85" y1="45" x2="101" y2="60"></line><circle cx="85" cy="10" r="15" width="170" height="65"></circle><text x="85" y="67.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="85" dy="-7"></tspan></text><text x="85" y="67.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="85" dy="7">Developer (service-owner)</tspan></text></g><g><line id="actor1" x1="385" y1="5" x2="385" y2="596" class="200" stroke-width="0.5px" stroke="#999"></line><g id="root-1"><rect x="310" y="0" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="385" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="385" dy="0">K8S api-server</tspan></text></g></g><g><line id="actor2" x1="851" y1="5" x2="851" y2="596" class="200" stroke-width="0.5px" stroke="#999"></line><g id="root-2"><rect x="757.5" y="0" fill="#eaeaea" stroke="#666" width="187" height="65" rx="3" ry="3" class="actor"></rect><text x="851" y="32.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="851" dy="0">Admission Controller Service</tspan></text></g></g><defs><marker id="arrowhead" refX="9" refY="5" markerUnits="userSpaceOnUse" markerWidth="12" markerHeight="12" orient="auto"><path d="M 0 0 L 10 5 L 0 10 z"></path></marker></defs><defs><marker id="crosshead" markerWidth="15" markerHeight="8" orient="auto" refX="16" refY="4"><path fill="black" stroke="#000000" stroke-width="1px" d="M 9,2 V 6 L16,4 Z" style="stroke-dasharray: 0, 0;"></path><path fill="none" stroke="#000000" stroke-width="1px" d="M 0,1 L 6,7 M 6,1 L 0,7" style="stroke-dasharray: 0, 0;"></path></marker></defs><defs><marker id="filled-head" refX="18" refY="7" markerWidth="20" markerHeight="28" orient="auto"><path d="M 18,7 L9,13 L14,7 L9,1 Z"></path></marker></defs><defs><marker id="sequencenumber" refX="15" refY="15" markerWidth="60" markerHeight="40" orient="auto"><circle cx="15" cy="15" r="6"></circle></marker></defs><text x="235" y="80" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">Run "kubectl exec ..." command</text><line x1="85" y1="113" x2="385" y2="113" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></line><text x="618" y="128" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">Admit "exec" request  by calling the validating webhook</text><line x1="385" y1="161" x2="851" y2="161" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></line><text x="618" y="176" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">Allow the exec admission request</text><line x1="851" y1="209" x2="385" y2="209" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></line><text x="385" y="224" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">Execute the exec command</text><path d="M 385,257 C 445,247 445,287 385,277" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></path><text x="851" y="327" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">Evict tagged pods after a predefined interval</text><path d="M 851,360 C 911,350 911,390 851,380" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></path><g><line x1="679.5" y1="297" x2="1022.5" y2="297" class="loopLine"></line><line x1="1022.5" y1="297" x2="1022.5" y2="430" class="loopLine"></line><line x1="679.5" y1="430" x2="1022.5" y2="430" class="loopLine"></line><line x1="679.5" y1="297" x2="679.5" y2="430" class="loopLine"></line><polygon points="679.5,297 729.5,297 729.5,310 721.1,317 679.5,317" class="labelBox"></polygon><text x="705" y="310" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="labelText" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">loop</text><text x="876" y="315" text-anchor="middle" class="loopText" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;"><tspan x="876"></tspan></text></g><text x="618" y="445" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">EvictPod()</text><line x1="851" y1="478" x2="385" y2="478" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></line><text x="385" y="493" text-anchor="middle" dominant-baseline="middle" alignment-baseline="middle" class="messageText" dy="1em" style="font-family: &quot;trebuchet ms&quot;, verdana, arial, sans-serif; font-size: 16px; font-weight: 400;">Execute the eviction command</text><path d="M 385,526 C 445,516 445,556 385,546" class="messageLine0" stroke-width="2" stroke="none" marker-end="url(#arrowhead)" style="fill: none;"></path><g class="actor-man"><line id="actor-man-torso2" x1="85" y1="601" x2="85" y2="621"></line><line id="actor-man-arms2" x1="67" y1="609" x2="103" y2="609"></line><line x1="67" y1="636" x2="85" y2="621"></line><line x1="85" y1="621" x2="101" y2="636"></line><circle cx="85" cy="586" r="15" width="170" height="65"></circle><text x="85" y="643.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="85" dy="-7"></tspan></text><text x="85" y="643.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="85" dy="7">Developer (service-owner)</tspan></text></g><g><rect x="310" y="576" fill="#eaeaea" stroke="#666" width="150" height="65" rx="3" ry="3" class="actor"></rect><text x="385" y="608.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="385" dy="0">K8S api-server</tspan></text></g><g><rect x="757.5" y="576" fill="#eaeaea" stroke="#666" width="187" height="65" rx="3" ry="3" class="actor"></rect><text x="851" y="608.5" dominant-baseline="central" alignment-baseline="central" class="actor" style="text-anchor: middle; font-size: 14px; font-weight: 400; font-family: Open-Sans, &quot;sans-serif&quot;;"><tspan x="851" dy="0">Admission Controller Service</tspan></text></g></svg>
\ No newline at end of file
diff --git a/static/images/training/kubernetes-kcnf-white.svg b/static/images/training/kubernetes-kcnf-white.svg
new file mode 100644
index 0000000000..5fc3f81cfe
--- /dev/null
+++ b/static/images/training/kubernetes-kcnf-white.svg
@@ -0,0 +1,44 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<svg 
+    id="Layer_1" 
+    data-name="Layer 1" 
+    xmlns="http://www.w3.org/2000/svg" 
+    viewBox="0 0 612 612">
+<defs>
+    <style>.cls-1{fill:none;}.cls-2{fill:#fff;}</style>
+</defs>
+<polygon class="cls-1" points="70.747 264.908 62.371 264.908 44.981 340.539 53.357 340.539 70.747 264.908"/>
+<polygon class="cls-1" points="365.299 475.684 361.444 485.092 369.153 485.092 365.299 475.684"/>
+<polygon class="cls-1" points="96.361 153.521 306.504 53.14 516.647 153.387 516.784 153.982 525.13 153.982 525.13 153.982 523.628 147.452 306.504 43.737 89.381 147.452 87.879 153.982 96.255 153.982 96.361 153.521"/>
+<polygon class="cls-1" points="542.291 264.908 559.682 340.539 568.054 340.539 568.054 340.539 550.653 264.908 550.652 264.908 542.291 264.908"/>
+<path class="cls-1" d="M193.92755,551.69421v-.00006H419.215l84.6846-105.47149-396.58173-2.10944Zm216.50055-83.4707H432.312v5.67774h-15.5426v5.8858H430.447v5.67859H416.76941v6.09216h15.74976v5.67859H410.4281Zm-29.962,0h24.0398v5.885h-8.82941v23.12793H389.294v-23.128h-8.82788Zm-18.02746-.20721h5.8858l12.43433,29.22009h-6.67352l-2.65259-6.50745H359.16443l-2.65265,6.50745h-6.50739Zm-24.61871.20721h6.384v29.01288H337.82Zm-33.19507,14.50641a14.74527,14.74527,0,0,1,14.47921-15.00659q.32447-.00578.64893.00268c5.47131,0,8.74561,1.82379,11.43933,4.47644l-4.06195,4.6836c-2.23822-2.031-4.51758-3.275-7.41852-3.275-4.89087,0-8.415,4.062-8.415,9.03589v.083c0,4.97388,3.44037,9.11816,8.415,9.11816,3.31537,0,5.34638-1.32635,7.62574-3.39843l4.062,4.10308a14.83182,14.83182,0,0,1-11.8949,5.1811,14.645,14.645,0,0,1-14.88052-14.40561q-.00422-.25764.0007-.51526Zm-36.26374,0c0-8.24817,6.50745-15.00391,15.46027-15.00391,8.95123,0,15.3764,6.67273,15.3764,14.9209v.083c0,8.24817-6.50738,15.00391-15.46026,15.00391-8.95282,0-15.37641-6.67347-15.37641-14.92084ZM250.873,485.50671c-5.84461-1.49237-9.61554-3.10815-9.61554-8.86975v-.08307c0-5.26336,4.228-8.74481,10.155-8.74481a16.8002,16.8002,0,0,1,10.77661,3.68866l-3.317,4.8078c-2.56885-1.78265-5.09808-2.8598-7.54352-2.8598s-3.72979,1.11908-3.72979,2.52844v.08228c0,1.9068,1.24328,2.52844,6.25909,3.8136,5.88574,1.53357,9.20117,3.64758,9.20117,8.70373v.08307c0,5.7608-4.39416,8.994-10.65167,8.994a18.46526,18.46526,0,0,1-12.311-4.64173l3.77253-4.51837a13.31,13.31,0,0,0,8.6618,3.52344c2.61151,0,4.187-1.03607,4.187-2.73572v-.083c0-1.61661-.99493-2.44547-5.84466-3.68876Zm-27.14478,0c-5.84466-1.49237-9.6156-3.10815-9.6156-8.86975v-.08307c0-5.26336,4.22809-8.74481,10.155-8.74481a16.80022,16.80022,0,0,1,10.77661,3.68866l-3.317,4.8078c-2.56879-1.78265-5.09808-2.8598-7.54346-2.8598s-3.72986,1.11908-3.72986,2.52844v.08228c0,1.9068,1.24329,2.52844,6.2591,3.8136,5.8858,1.53357,9.20119,3.64758,9.20119,8.70373v.08307c0,5.7608-4.39417,8.994-10.65168,8.994a18.465,18.465,0,0,1-12.31091-4.64173l3.77252-4.51837a13.31,13.31,0,0,0,8.66181,3.52344c2.61151,0,4.18695-1.03607,4.18695-2.73572v-.083c0-1.61661-.99491-2.44547-5.84464-3.68876Zm-26.316-17.49041,12.43432,29.22009h-6.67346l-2.65265-6.50745h-12.2682l-2.65265,6.50745h-6.50739l12.43433-29.22009Z"/>
+<polygon class="cls-1" points="262.626 304.864 270.335 304.864 266.48 295.456 262.626 304.864"/>
+<polygon class="cls-1" points="194.386 475.684 190.532 485.092 198.241 485.092 194.386 475.684"/>
+<path class="cls-1" d="M283.82141,491.84808c5.13916,0,8.70288-4.062,8.70288-9.03509v-.08307a8.815,8.815,0,0,0-8.50583-9.11368q-.14039-.00485-.28091-.00522c-5.13916,0-8.70447,4.062-8.70447,9.03589v.083a8.81471,8.81471,0,0,0,8.506,9.113Q283.68017,491.84775,283.82141,491.84808Z"/>
+<polygon class="cls-1" points="70.747 264.908 62.371 264.908 44.981 340.539 53.357 340.539 70.747 264.908"/>
+<polygon class="cls-1" points="514.395 446.279 423.102 559.869 189.907 559.869 96.759 444.057 86.916 444.005 186.172 567.298 427.113 567.298 524.245 446.331 514.395 446.279"/>
+<path class="cls-1" d="M533.75092,264.90759h-454.65L61.73022,340.5387H551.15771ZM275.26715,317.00836l-2.65259-6.50738H260.34631l-2.65265,6.50738h-6.50738l12.43433-29.22009h5.88574l12.43432,29.22009Zm37.961,0H307.7995l-14.0509-18.44427v18.44427h-6.30017V287.99548h5.88574l13.59533,17.86377V287.99548h6.29865Zm34.731-14.50641c0,8.1651-6.30023,14.50641-15.41754,14.50641h-11.316V287.99548h11.316c9.11731,0,15.41754,6.2583,15.41754,14.4234Z"/>
+<polygon class="cls-1" points="306.37 62.253 114.425 153.982 498.581 153.982 306.37 62.253"/>
+<path class="cls-1" d="M332.54163,293.75629H327.608v17.49127h4.9336c5.22137,0,8.744-3.52344,8.744-8.6626v-.083a8.33214,8.33214,0,0,0-8.74395-8.74566Z"/>
+<polygon class="cls-2" points="372.217 394.802 382.758 394.802 377.488 381.937 372.217 394.802"/>
+<path class="cls-2" d="M187.04065,391.68463v-.11383c0-6.8-4.98737-12.46759-12.0152-12.46759-7.027,0-11.90124,5.55365-11.90124,12.35449v.1131c0,6.80078,4.98736,12.46832,12.01513,12.46832C182.16559,404.03912,187.04065,398.48468,187.04065,391.68463Z"/>
+<path class="cls-2" d="M265.09161,379.61334h-6.74469V403.529h6.74469c7.14014,0,11.95667-4.81732,11.95667-11.84436v-.11383C277.04828,384.54376,272.23175,379.61334,265.09161,379.61334Z"/>
+<path class="cls-2" d="M601.31055,367.76044l-.00006-.00006L550.49139,147.0365a39.45708,39.45708,0,0,0-21.32464-26.44806L323.53632,22.412a41.162,41.162,0,0,0-19.10913-3.8772A38.06041,38.06041,0,0,0,289.3338,22.412L83.70331,120.72687A39.76138,39.76138,0,0,0,62.37866,147.175L11.83649,367.89886a38.71579,38.71579,0,0,0,5.40039,29.90986,24.48956,24.48956,0,0,0,2.21557,3.04638L161.80133,577.822A39.98961,39.98961,0,0,0,192.54205,592.5H420.74347a39.98958,39.98958,0,0,0,30.74072-14.678l142.34888-176.9668A39.96484,39.96484,0,0,0,601.31055,367.76044ZM186.17236,567.2981,86.9162,444.0047,35.79211,380.49976l9.1886-39.96106,17.39051-75.63111H37.23737L62.44775,153.98175H87.879l1.50171-6.52985L306.50427,43.73657,523.62793,147.4519l1.50238,6.52985h21.35736l30.2525,110.92584H550.65253L568.054,340.5387l9.16253,39.82257-.00006.00006L524.2453,446.33087,427.1131,567.2981Z"/>
+<path class="cls-2" d="M189.90692,559.86938H423.10156L514.395,446.2785l9.85034.05237,52.97113-65.96954.00006-.00006L568.054,340.5387h-8.37159l-17.39111-75.63111h34.44891l-30.2525-110.92584H516.78424l-.13678-.59473L306.50427,53.14014,96.361,153.52106l-.106.46069H62.44775L37.23737,264.90759H70.74713L53.35663,340.5387H44.98071l-9.1886,39.96106L86.9162,444.0047l9.84289.05237ZM419.215,551.69415H193.92755v.00006l-86.60968-107.581,396.58173,2.10944ZM97.14691,404.03912c4.53333,0,7.31012-1.81353,10.427-4.64727l5.55445,5.61053c-4.081,4.36334-8.61438,7.084-16.26538,7.084A20.02372,20.02372,0,0,1,76.51721,392.39q-.00572-.35265.001-.70532v-.11383a20.162,20.162,0,0,1,19.79909-20.51849q.44288-.00787.88577.00366c7.481,0,11.95819,2.49365,15.64135,6.12067l-5.55365,6.4038c-3.05993-2.77679-6.17681-4.47723-10.14386-4.47723-6.68773,0-11.505,5.55365-11.505,12.35449v.1131C85.64185,398.37158,90.34607,404.03912,97.14691,404.03912Zm52.881-.56707v7.93414H121.522v-39.67h8.72742v31.7359Zm3.97259-11.78742v-.11383c0-11.27728,8.89746-20.51483,21.1388-20.51483,12.24139,0,21.025,9.12366,21.025,20.40173v.1131c0,11.278-8.89746,20.51556-21.13885,20.51556-12.24132,0-21.02489-9.12445-21.02489-20.40173Zm68.01307,12.29755c5.32745,0,8.55743-3.23,8.55743-9.52069V371.73615h8.72822V394.1214c0,12.01434-6.74469,17.908-17.39953,17.908-10.6532,0-17.17169-5.95062-17.17169-17.62488V371.73615h8.72821v22.4414c0,6.46076,3.23,9.80463,8.5574,9.80463Zm27.60668,7.424v-39.67h15.4713c12.46753,0,21.08191,8.55737,21.08191,19.72155v.1131c0,11.16492-8.61438,19.83539-21.08191,19.83539Zm64.16149,0v-39.67h8.04645l18.589,24.42492v-24.425h8.61431v39.67h-7.4248l-19.21222-25.219v25.219Zm84.454-31.6228v-8.04724H431.105v8.04724H419.03455v31.6228h-8.72669v-31.6228Zm.39068,31.6228h-9.12365l-3.627-8.89746H369.10114l-3.627,8.89746h-8.89746l17.00085-39.954h8.0481Zm40.98536,0v-39.67H448.34v39.67Zm16.66552-39.67h9.63459L476.282,399.675l10.37171-27.93884h9.4068L480.023,411.68933h-7.708Zm74.70084,15.8114v7.7641H512.27527v8.33044h21.53589v7.7641H503.60559v-39.67H533.528v7.7641H512.27527v8.0473Zm-41.82654-163.445c-1.20447-.51624-2.75311-1.37659-4.99-2.23694-1.54858-.68829-3.09729-1.37659-4.47381-2.06488a25.6401,25.6401,0,0,1-3.44141-2.58105,9.16853,9.16853,0,0,1-2.23694-3.44141,15.22822,15.22822,0,0,1-.68823-4.99,10.61963,10.61963,0,0,1,3.95758-8.77557c2.58105-2.23694,6.36658-3.26935,10.84045-3.26935a42.431,42.431,0,0,1,6.71076.51624,35.12,35.12,0,0,1,5.16211,1.37652l-1.89276,8.77564a21.53342,21.53342,0,0,0-3.95765-1.20445,22.23077,22.23077,0,0,0-4.99-.51624c-3.4414,0-5.16211.86035-5.16211,2.92517a2.55165,2.55165,0,0,0,.17206,1.20453,2.29413,2.29413,0,0,0,.86035,1.03241c.6883.34418,1.20453.68829,1.89283,1.03247a25.33929,25.33929,0,0,0,2.92523,1.20447,31.41442,31.41442,0,0,1,5.8504,2.75311,15.76369,15.76369,0,0,1,3.61347,2.92523,7.61552,7.61552,0,0,1,1.89282,3.44141,15.49353,15.49353,0,0,1,.51617,4.30176,10.323,10.323,0,0,1-4.1297,8.77563c-2.92523,2.06482-6.88281,2.92517-12.04492,2.92517l-.00006-.00006a38.65039,38.65039,0,0,1-8.43146-.68829,30.54266,30.54266,0,0,1-4.818-1.37653l1.89282-9.11975a22.04558,22.04558,0,0,0,5.67828,1.89276,31.68423,31.68423,0,0,0,5.67835.51624,12.00583,12.00583,0,0,0,4.1297-.51624,2.43866,2.43866,0,0,0,1.20447-2.409C490.87231,225.47913,490.18408,224.79083,489.15161,224.1026ZM306.37024,62.25348l192.21063,91.72827H114.425Zm159.72394,159.096-24.4339-.34411a6.75317,6.75317,0,0,0,3.09729,5.50622q2.58105,2.06488,7.227,2.06488a32.18191,32.18191,0,0,0,5.8504-.51623,20.62,20.62,0,0,0,4.81793-1.37659l1.37653,9.11977a18.68581,18.68581,0,0,1-2.40894.86035c-1.03247.17206-2.06482.51623-3.26934.68829s-2.58112.34412-3.78559.51624a30.46385,30.46385,0,0,1-3.95758.172,23.681,23.681,0,0,1-8.94775-1.7207,16.44138,16.44138,0,0,1-9.98011-10.6684,24.184,24.184,0,0,1-1.20452-8.08729,24.6075,24.6075,0,0,1,1.7207-9.11981,18.02613,18.02613,0,0,1,3.95764-6.53864,16.78539,16.78539,0,0,1,5.8504-3.95764,17.82826,17.82826,0,0,1,6.7107-1.20453c5.33423,0,9.636,1.7207,12.73327,5.16217,3.09723,3.44141,4.81794,8.60352,4.81794,15.14221v2.23694c0,.86041-.17206,1.54866-.17206,2.0649Zm-41.12494-23.40161v9.29181H412.064v13.76562a12.66622,12.66622,0,0,0,1.20452,5.67835c.86036,1.37659,2.40894,2.0649,4.81794,2.0649a23.417,23.417,0,0,0,3.61352-.34418,22.91651,22.91651,0,0,0,3.26929-.86035l1.37659,8.77563a21.11842,21.11842,0,0,1-4.30182,1.37659,28.38925,28.38925,0,0,1-5.85034.51617,18.165,18.165,0,0,1-7.227-1.20447,12.95546,12.95546,0,0,1-4.47388-3.4414,13.74876,13.74876,0,0,1-2.409-5.33423,27.38016,27.38016,0,0,1-.68823-6.88281V188.312l10.6684-1.89283v11.52875Zm-53.1698,28.56372q2.58105,2.06488,7.227,2.06488a32.18126,32.18126,0,0,0,5.85034-.51623,20.62091,20.62091,0,0,0,4.818-1.37659l1.37653,9.11977a18.68663,18.68663,0,0,1-2.409.86035c-1.03241.17206-2.06482.51623-3.26928.68829-1.20453.17206-2.58112.34412-3.78559.51624a30.46154,30.46154,0,0,1-3.95764.172,23.68054,23.68054,0,0,1-8.94763-1.7207,16.44135,16.44135,0,0,1-9.9801-10.6684,24.18376,24.18376,0,0,1-1.20453-8.08729,24.6075,24.6075,0,0,1,1.7207-9.11981,17.16488,17.16488,0,0,1,9.808-10.49628,17.82817,17.82817,0,0,1,6.71076-1.20453c5.33417,0,9.636,1.7207,12.73321,5.16217,3.09723,3.44141,4.818,8.60352,4.818,15.14221v2.23694h.00006a13.28492,13.28492,0,0,1-.17206,1.7207h-24.434a6.75331,6.75331,0,0,0,3.09729,5.50631Zm-34.24219-17.55121c-1.03241-1.54864-2.58105-2.23694-5.16211-2.23694-.68829,0-1.37659.17212-2.409.17212a9.84682,9.84682,0,0,0-2.409.17206V237.352H316.90881V199.49652c1.72071-.51623,4.1297-.86035,7.05487-1.37659a52.93383,52.93383,0,0,1,9.11976-.68829,22.87782,22.87782,0,0,1,8.08734,1.20453,9.46627,9.46627,0,0,1,5.16211,3.61346,13.46913,13.46913,0,0,1,2.75317,5.67835,30.31446,30.31446,0,0,1,.68823,7.227l-.17206,22.19709H338.93384V216.53149c0-3.61349-.51624-6.19448-1.37659-7.5711Zm-26.15466-10.15216-1.89282,9.11975a22.43792,22.43792,0,0,0-3.61347-.68829,30.82838,30.82838,0,0,0-4.1297-.34412,13.08415,13.08415,0,0,0-2.409.17206,6.74211,6.74211,0,0,0-2.23693.34412v30.11242H286.45233V200.35686a32.62488,32.62488,0,0,1,6.88281-2.06488,44.59662,44.59662,0,0,1,8.77564-.86035c.86035,0,1.37652.17211,2.23688.17211.68829.17206,1.54864.17206,2.409.34412a13.49952,13.49952,0,0,1,2.409.34412,6.105,6.105,0,0,1,2.23694.51625ZM256.512,226.51166q2.58107,2.06478,7.22693,2.06482a32.17649,32.17649,0,0,0,5.8504-.51624,20.6229,20.6229,0,0,0,4.818-1.37652l1.37659,9.11975a18.71049,18.71049,0,0,1-2.409.86035c-1.03241.17206-2.06482.51617-3.26935.68823-1.20447.17212-2.58105.34418-3.78552.51624a30.46508,30.46508,0,0,1-3.95764.172,23.67962,23.67962,0,0,1-8.9477-1.7207,16.4419,16.4419,0,0,1-9.9801-10.66833,24.18491,24.18491,0,0,1-1.20447-8.08736,24.60659,24.60659,0,0,1,1.72071-9.11975,18.02632,18.02632,0,0,1,3.95764-6.5387,16.786,16.786,0,0,1,5.8504-3.95764,17.82779,17.82779,0,0,1,6.71069-1.20447c5.33423,0,9.636,1.72071,12.73328,5.16211,3.09723,3.44141,4.818,8.60352,4.818,15.14221v2.23694c0,.86035-.17212,1.54865-.17212,2.06482l-24.434-.34412A6.75336,6.75336,0,0,0,256.512,226.51166Zm-41.64123-28.9079a30.82852,30.82852,0,0,1,4.1297-.34412,17.77553,17.77553,0,0,1,7.05493,1.37659,12.79023,12.79023,0,0,1,5.33417,4.12964,18.31693,18.31693,0,0,1,3.09729,6.36664,32.338,32.338,0,0,1,1.03247,8.43145,27.38,27.38,0,0,1-1.20453,8.60352,16.39066,16.39066,0,0,1-3.78552,6.5387,17.03666,17.03666,0,0,1-6.19458,4.1297,25.465,25.465,0,0,1-8.43146,1.37658,31.79557,31.79557,0,0,1-3.95764-.17212l-4.1297-.51617c-1.20453-.17206-2.75312-.34412-4.1297-.51624-1.20453-.34411-2.409-.51617-3.26935-.86035v-54.7185l10.6684-1.89276v19.272a32.1095,32.1095,0,0,1,3.78555-1.20456ZM158.4317,227.372a32.79415,32.79415,0,0,1-.68829-7.399V198.12H168.4118v20.64849c0,3.61347.34412,6.02246,1.37653,7.74317,1.03247,1.7207,2.58105,2.409,5.16217,2.409.68823,0,1.54858-.1721,2.40894-.1721a9.84565,9.84565,0,0,0,2.409-.17206V198.292h10.6684V236.1476c-1.7207.51623-4.1297.86035-7.05493,1.37659a52.93274,52.93274,0,0,1-9.11975.68823,22.87765,22.87765,0,0,1-8.08736-1.20447,10.7026,10.7026,0,0,1-5.16209-3.78552h.00006A26.103,26.103,0,0,1,158.4317,227.372Zm-27.18725-19.09985c1.03247-1.20453,2.23692-2.58112,3.26933-3.78558.86041-1.20453,2.06488-2.58106,2.92525-3.61347a30.5142,30.5142,0,0,0,2.409-2.92523h12.73322c-2.409,3.09729-4.99,6.02246-7.39905,8.77564-2.58105,2.75311-5.16211,5.67834-8.08728,8.60351l-.00006.00006c1.37659,1.20447,2.75317,2.92517,4.47388,4.30176,1.54864,1.89276,3.09721,3.78552,4.47381,5.8504,1.37659,2.06482,2.75318,3.95764,3.95764,6.02246s2.23694,3.78553,3.09729,5.50623h-12.3891c-.68829-1.20445-1.7207-2.581-2.58105-4.30174s-2.06488-3.09729-3.09729-4.818a44.056,44.056,0,0,0-3.44141-4.47381,23.85024,23.85024,0,0,0-3.61345-3.61353V237.18H117.30676V181.085l10.6684-1.89276v32.69342c1.03241-1.03246,2.23685-2.40905,3.26929-3.61351ZM79.10089,264.90759h454.65l17.4068,75.63111H61.73022Z"/>
+<path class="cls-2" d="M263.62061,287.78827l-12.43433,29.22009h6.50738l2.65265-6.50738h12.26825l2.65259,6.50738h6.67352l-12.43432-29.22009Zm-.99494,17.07605,3.85474-9.40839,3.8548,9.40839Z"/>
+<polygon class="cls-2" points="306.93 305.859 293.334 287.995 287.448 287.995 287.448 317.008 293.749 317.008 293.749 298.564 307.799 317.008 313.228 317.008 313.228 287.995 306.93 287.995 306.93 305.859"/>
+<path class="cls-2" d="M332.54163,287.99548h-11.316v29.01288h11.316c9.11731,0,15.41754-6.34131,15.41754-14.50641v-.08307C347.95917,294.25378,341.65894,287.99548,332.54163,287.99548Zm8.744,14.58948c0,5.13916-3.52264,8.6626-8.744,8.6626H327.608V293.75629h4.9336a8.3319,8.3319,0,0,1,8.744,8.74566Z"/>
+<path class="cls-2" d="M266.148,208.61627a9.75312,9.75312,0,0,0-2.23694-1.7207,5.5192,5.5192,0,0,0-3.09729-.68829,8.3355,8.3355,0,0,0-3.09723.51623,5.93245,5.93245,0,0,0-2.23694,1.7207,10.51412,10.51412,0,0,0-1.20452,2.409,16.1134,16.1134,0,0,0-.68824,2.75311h-.17206v.17206h14.45392a15.493,15.493,0,0,0-.51623-2.75311C267.0083,209.99286,266.83624,209.13251,266.148,208.61627Z"/>
+<path class="cls-2" d="M381.26318,208.61621a9.75676,9.75676,0,0,0-2.23687-1.7207,5.51934,5.51934,0,0,0-3.09729-.68823,8.33579,8.33579,0,0,0-3.09723.51617,5.93268,5.93268,0,0,0-2.23694,1.7207,10.51315,10.51315,0,0,0-1.20453,2.409,16.1117,16.1117,0,0,0-.68823,2.75317l-.17212-.00006v.17212h14.45392a18.9891,18.9891,0,0,0-.51618-2.75317C382.12354,209.9928,381.95148,209.13245,381.26318,208.61621Z"/>
+<path class="cls-2" d="M454.22125,208.78833a9.75219,9.75219,0,0,0-2.23694-1.7207,5.51851,5.51851,0,0,0-3.09723-.6883,8.33441,8.33441,0,0,0-3.09722.51624,5.932,5.932,0,0,0-2.23694,1.7207,10.51274,10.51274,0,0,0-1.20453,2.409c-.34418.86035-.51624,1.7207-.86035,2.92517H455.942a18.99815,18.99815,0,0,0-.51624-2.75311C455.0816,210.16492,454.90948,209.30457,454.22125,208.78833Z"/>
+<path class="cls-2" d="M211.08527,228.57648c.68829,0,1.20451.17206,2.06488.17206a14.80321,14.80321,0,0,0,2.75311.172q4.64594,0,6.71075-3.09723a14.3269,14.3269,0,0,0,2.23694-8.43144c0-7.05493-2.409-10.6684-7.5711-10.6684a10.58936,10.58936,0,0,0-3.26935.34412,6.548,6.548,0,0,0-2.92523,1.37652Z"/>
+<path class="cls-2" d="M185.59961,497.23639l2.65265-6.50745h12.26825l2.65265,6.50745h6.67346L197.41229,468.0163h-5.88574l-12.43433,29.22009Zm8.78674-21.55249,3.8548,9.40839h-7.70953Z"/>
+<path class="cls-2" d="M225.386,492.01416a13.31,13.31,0,0,1-8.6618-3.52344l-3.77252,4.51837a18.465,18.465,0,0,0,12.31091,4.64173c6.25751,0,10.65169-3.23316,10.65169-8.994v-.08307c0-5.05615-3.31537-7.17017-9.20119-8.70373-5.01579-1.28516-6.2591-1.9068-6.2591-3.8136v-.08228c0-1.40936,1.28443-2.52844,3.72986-2.52844,2.44538,0,4.97467,1.07715,7.54346,2.8598l3.317-4.8078a16.80022,16.80022,0,0,0-10.77661-3.68866c-5.92688,0-10.155,3.48145-10.155,8.74481v.08307c0,5.7616,3.77094,7.37738,9.6156,8.86975,4.84973,1.24329,5.84467,2.07215,5.84467,3.68872v.083C229.57294,490.97809,227.9975,492.01416,225.386,492.01416Z"/>
+<path class="cls-2" d="M252.53076,492.01416a13.31,13.31,0,0,1-8.6618-3.52344l-3.77252,4.51837a18.46522,18.46522,0,0,0,12.311,4.64173c6.25751,0,10.65167-3.23316,10.65167-8.994v-.08307c0-5.05615-3.31543-7.17017-9.20117-8.70373-5.01581-1.28516-6.25909-1.9068-6.25909-3.8136v-.08228c0-1.40936,1.28436-2.52844,3.72979-2.52844s4.97467,1.07715,7.54352,2.8598l3.317-4.8078a16.8002,16.8002,0,0,0-10.77661-3.68866c-5.927,0-10.155,3.48145-10.155,8.74481v.08307c0,5.7616,3.77093,7.37738,9.61554,8.86975,4.84973,1.24329,5.84466,2.07215,5.84466,3.68872v.083C256.71771,490.97809,255.14227,492.01416,252.53076,492.01416Z"/>
+<path class="cls-2" d="M283.73755,497.73383c8.95288,0,15.46026-6.75574,15.46026-15.00391v-.083c0-8.24817-6.42517-14.9209-15.3764-14.9209-8.95282,0-15.46026,6.75574-15.46026,15.00391v.08307C268.36115,491.06036,274.78473,497.73383,283.73755,497.73383Zm-8.70447-15.08692c0-4.97394,3.56531-9.03589,8.70447-9.03589a8.815,8.815,0,0,1,8.792,8.838q-.00036.14048-.00522.28091v.08307c0,4.97308-3.56372,9.03509-8.70288,9.03509a8.81466,8.81466,0,0,1-8.79352-8.83578q.00033-.14122.00519-.28238Z"/>
+<path class="cls-2" d="M319.50464,497.73383a14.83182,14.83182,0,0,0,11.8949-5.1811l-4.062-4.10308c-2.27935,2.07208-4.31036,3.39843-7.62573,3.39843-4.97467,0-8.415-4.14428-8.415-9.11816v-.083c0-4.97394,3.52417-9.03589,8.415-9.03589,2.90094,0,5.1803,1.24408,7.41852,3.275l4.06195-4.6836c-2.69372-2.65265-5.968-4.47644-11.43933-4.47644a14.74524,14.74524,0,0,0-15.12543,14.355q-.00851.32437-.00268.6489v.08307a14.645,14.645,0,0,0,14.36456,14.92016Q319.247,497.738,319.50464,497.73383Z"/>
+<rect class="cls-2" x="337.81995" y="468.22351" width="6.38403" height="29.01288"/>
+<path class="cls-2" d="M359.16443,490.72894h12.26825l2.65259,6.50745h6.67352L368.32446,468.0163h-5.8858l-12.43427,29.22009h6.50739Zm6.13409-15.045,3.8548,9.40839h-7.70959Z"/>
+<polygon class="cls-2" points="389.294 497.236 395.677 497.236 395.677 474.108 404.506 474.108 404.506 468.224 380.466 468.224 380.466 474.108 389.294 474.108 389.294 497.236"/>
+<polygon class="cls-2" points="432.519 491.558 416.769 491.558 416.769 485.466 430.447 485.466 430.447 479.787 416.769 479.787 416.769 473.901 432.312 473.901 432.312 468.224 410.428 468.224 410.428 497.236 432.519 497.236 432.519 491.558"/>
+</svg>
\ No newline at end of file
diff --git a/static/js/mermaid.min.js b/static/js/mermaid.min.js
index a31c3e0dce..2fbcb455f2 100644
--- a/static/js/mermaid.min.js
+++ b/static/js/mermaid.min.js
@@ -1,4 +1,4 @@
-!function(t,e){"object"==typeof exports&&"object"==typeof module?module.exports=e():"function"==typeof define&&define.amd?define([],e):"object"==typeof exports?exports.mermaid=e():t.mermaid=e()}("undefined"!=typeof self?self:this,(function(){return function(t){var e={};function n(r){if(e[r])return e[r].exports;var i=e[r]={i:r,l:!1,exports:{}};return t[r].call(i.exports,i,i.exports,n),i.l=!0,i.exports}return n.m=t,n.c=e,n.d=function(t,e,r){n.o(t,e)||Object.defineProperty(t,e,{enumerable:!0,get:r})},n.r=function(t){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(t,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(t,"__esModule",{value:!0})},n.t=function(t,e){if(1&e&&(t=n(t)),8&e)return t;if(4&e&&"object"==typeof t&&t&&t.__esModule)return t;var r=Object.create(null);if(n.r(r),Object.defineProperty(r,"default",{enumerable:!0,value:t}),2&e&&"string"!=typeof t)for(var i in t)n.d(r,i,function(e){return t[e]}.bind(null,i));return r},n.n=function(t){var e=t&&t.__esModule?function(){return t.default}:function(){return t};return n.d(e,"a",e),e},n.o=function(t,e){return Object.prototype.hasOwnProperty.call(t,e)},n.p="",n(n.s=390)}([function(t,e,n){"use strict";n.r(e),n.d(e,"version",(function(){return r})),n.d(e,"bisect",(function(){return u})),n.d(e,"bisectRight",(function(){return s})),n.d(e,"bisectLeft",(function(){return c})),n.d(e,"ascending",(function(){return i})),n.d(e,"bisector",(function(){return a})),n.d(e,"cross",(function(){return f})),n.d(e,"descending",(function(){return d})),n.d(e,"deviation",(function(){return g})),n.d(e,"extent",(function(){return m})),n.d(e,"histogram",(function(){return N})),n.d(e,"thresholdFreedmanDiaconis",(function(){return D})),n.d(e,"thresholdScott",(function(){return L})),n.d(e,"thresholdSturges",(function(){return O})),n.d(e,"max",(function(){return I})),n.d(e,"mean",(function(){return R})),n.d(e,"median",(function(){return F})),n.d(e,"merge",(function(){return P})),n.d(e,"min",(function(){return j})),n.d(e,"pairs",(function(){return l})),n.d(e,"permute",(function(){return Y})),n.d(e,"quantile",(function(){return B})),n.d(e,"range",(function(){return w})),n.d(e,"scan",(function(){return z})),n.d(e,"shuffle",(function(){return U})),n.d(e,"sum",(function(){return $})),n.d(e,"ticks",(function(){return S})),n.d(e,"tickIncrement",(function(){return A})),n.d(e,"tickStep",(function(){return M})),n.d(e,"transpose",(function(){return q})),n.d(e,"variance",(function(){return y})),n.d(e,"zip",(function(){return H})),n.d(e,"axisTop",(function(){return et})),n.d(e,"axisRight",(function(){return nt})),n.d(e,"axisBottom",(function(){return rt})),n.d(e,"axisLeft",(function(){return it})),n.d(e,"brush",(function(){return Ci})),n.d(e,"brushX",(function(){return Ei})),n.d(e,"brushY",(function(){return Ti})),n.d(e,"brushSelection",(function(){return wi})),n.d(e,"chord",(function(){return Ii})),n.d(e,"ribbon",(function(){return Xi})),n.d(e,"nest",(function(){return Ji})),n.d(e,"set",(function(){return sa})),n.d(e,"map",(function(){return Qi})),n.d(e,"keys",(function(){return ca})),n.d(e,"values",(function(){return ua})),n.d(e,"entries",(function(){return la})),n.d(e,"color",(function(){return qe})),n.d(e,"rgb",(function(){return Ge})),n.d(e,"hsl",(function(){return en})),n.d(e,"lab",(function(){return ya})),n.d(e,"hcl",(function(){return wa})),n.d(e,"lch",(function(){return ka})),n.d(e,"gray",(function(){return pa})),n.d(e,"cubehelix",(function(){return Na})),n.d(e,"contours",(function(){return za})),n.d(e,"contourDensity",(function(){return Va})),n.d(e,"dispatch",(function(){return ht})),n.d(e,"drag",(function(){return to})),n.d(e,"dragDisable",(function(){return Ce})),n.d(e,"dragEnable",(function(){return Se})),n.d(e,"dsvFormat",(function(){return so})),n.d(e,"csvParse",(function(){return uo})),n.d(e,"csvParseRows",(function(){return lo})),n.d(e,"csvFormat",(function(){return ho})),n.d(e,"csvFormatBody",(function(){return fo})),n.d(e,"csvFormatRows",(function(){return po})),n.d(e,"csvFormatRow",(function(){return yo})),n.d(e,"csvFormatValue",(function(){return go})),n.d(e,"tsvParse",(function(){return vo})),n.d(e,"tsvParseRows",(function(){return bo})),n.d(e,"tsvFormat",(function(){return xo})),n.d(e,"tsvFormatBody",(function(){return _o})),n.d(e,"tsvFormatRows",(function(){return ko})),n.d(e,"tsvFormatRow",(function(){return wo})),n.d(e,"tsvFormatValue",(function(){return Eo})),n.d(e,"autoType",(function(){return To})),n.d(e,"easeLinear",(function(){return So})),n.d(e,"easeQuad",(function(){return Oo})),n.d(e,"easeQuadIn",(function(){return Ao})),n.d(e,"easeQuadOut",(function(){return Mo})),n.d(e,"easeQuadInOut",(function(){return Oo})),n.d(e,"easeCubic",(function(){return Vr})),n.d(e,"easeCubicIn",(function(){return Wr})),n.d(e,"easeCubicOut",(function(){return Hr})),n.d(e,"easeCubicInOut",(function(){return Vr})),n.d(e,"easePoly",(function(){return Do})),n.d(e,"easePolyIn",(function(){return No})),n.d(e,"easePolyOut",(function(){return Bo})),n.d(e,"easePolyInOut",(function(){return Do})),n.d(e,"easeSin",(function(){return Po})),n.d(e,"easeSinIn",(function(){return Ro})),n.d(e,"easeSinOut",(function(){return Fo})),n.d(e,"easeSinInOut",(function(){return Po})),n.d(e,"easeExp",(function(){return Uo})),n.d(e,"easeExpIn",(function(){return Yo})),n.d(e,"easeExpOut",(function(){return zo})),n.d(e,"easeExpInOut",(function(){return Uo})),n.d(e,"easeCircle",(function(){return Wo})),n.d(e,"easeCircleIn",(function(){return $o})),n.d(e,"easeCircleOut",(function(){return qo})),n.d(e,"easeCircleInOut",(function(){return Wo})),n.d(e,"easeBounce",(function(){return Vo})),n.d(e,"easeBounceIn",(function(){return Ho})),n.d(e,"easeBounceOut",(function(){return Vo})),n.d(e,"easeBounceInOut",(function(){return Go})),n.d(e,"easeBack",(function(){return Ko})),n.d(e,"easeBackIn",(function(){return Xo})),n.d(e,"easeBackOut",(function(){return Zo})),n.d(e,"easeBackInOut",(function(){return Ko})),n.d(e,"easeElastic",(function(){return ts})),n.d(e,"easeElasticIn",(function(){return Jo})),n.d(e,"easeElasticOut",(function(){return ts})),n.d(e,"easeElasticInOut",(function(){return es})),n.d(e,"blob",(function(){return rs})),n.d(e,"buffer",(function(){return as})),n.d(e,"dsv",(function(){return us})),n.d(e,"csv",(function(){return ls})),n.d(e,"tsv",(function(){return hs})),n.d(e,"image",(function(){return fs})),n.d(e,"json",(function(){return ps})),n.d(e,"text",(function(){return ss})),n.d(e,"xml",(function(){return gs})),n.d(e,"html",(function(){return ms})),n.d(e,"svg",(function(){return vs})),n.d(e,"forceCenter",(function(){return bs})),n.d(e,"forceCollide",(function(){return Bs})),n.d(e,"forceLink",(function(){return Is})),n.d(e,"forceManyBody",(function(){return Ys})),n.d(e,"forceRadial",(function(){return zs})),n.d(e,"forceSimulation",(function(){return js})),n.d(e,"forceX",(function(){return Us})),n.d(e,"forceY",(function(){return $s})),n.d(e,"formatDefaultLocale",(function(){return ac})),n.d(e,"format",(function(){return Ks})),n.d(e,"formatPrefix",(function(){return Qs})),n.d(e,"formatLocale",(function(){return ic})),n.d(e,"formatSpecifier",(function(){return Vs})),n.d(e,"FormatSpecifier",(function(){return Gs})),n.d(e,"precisionFixed",(function(){return oc})),n.d(e,"precisionPrefix",(function(){return sc})),n.d(e,"precisionRound",(function(){return cc})),n.d(e,"geoArea",(function(){return Jc})),n.d(e,"geoBounds",(function(){return Wu})),n.d(e,"geoCentroid",(function(){return rl})),n.d(e,"geoCircle",(function(){return pl})),n.d(e,"geoClipAntimeridian",(function(){return Cl})),n.d(e,"geoClipCircle",(function(){return Sl})),n.d(e,"geoClipExtent",(function(){return Bl})),n.d(e,"geoClipRectangle",(function(){return Al})),n.d(e,"geoContains",(function(){return Zl})),n.d(e,"geoDistance",(function(){return zl})),n.d(e,"geoGraticule",(function(){return Jl})),n.d(e,"geoGraticule10",(function(){return th})),n.d(e,"geoInterpolate",(function(){return ah})),n.d(e,"geoLength",(function(){return Pl})),n.d(e,"geoPath",(function(){return rf})),n.d(e,"geoAlbers",(function(){return wf})),n.d(e,"geoAlbersUsa",(function(){return Ef})),n.d(e,"geoAzimuthalEqualArea",(function(){return Af})),n.d(e,"geoAzimuthalEqualAreaRaw",(function(){return Sf})),n.d(e,"geoAzimuthalEquidistant",(function(){return Of})),n.d(e,"geoAzimuthalEquidistantRaw",(function(){return Mf})),n.d(e,"geoConicConformal",(function(){return Rf})),n.d(e,"geoConicConformalRaw",(function(){return If})),n.d(e,"geoConicEqualArea",(function(){return kf})),n.d(e,"geoConicEqualAreaRaw",(function(){return _f})),n.d(e,"geoConicEquidistant",(function(){return Yf})),n.d(e,"geoConicEquidistantRaw",(function(){return jf})),n.d(e,"geoEqualEarth",(function(){return Vf})),n.d(e,"geoEqualEarthRaw",(function(){return Hf})),n.d(e,"geoEquirectangular",(function(){return Pf})),n.d(e,"geoEquirectangularRaw",(function(){return Ff})),n.d(e,"geoGnomonic",(function(){return Xf})),n.d(e,"geoGnomonicRaw",(function(){return Gf})),n.d(e,"geoIdentity",(function(){return Zf})),n.d(e,"geoProjection",(function(){return vf})),n.d(e,"geoProjectionMutator",(function(){return bf})),n.d(e,"geoMercator",(function(){return Bf})),n.d(e,"geoMercatorRaw",(function(){return Nf})),n.d(e,"geoNaturalEarth1",(function(){return Qf})),n.d(e,"geoNaturalEarth1Raw",(function(){return Kf})),n.d(e,"geoOrthographic",(function(){return td})),n.d(e,"geoOrthographicRaw",(function(){return Jf})),n.d(e,"geoStereographic",(function(){return nd})),n.d(e,"geoStereographicRaw",(function(){return ed})),n.d(e,"geoTransverseMercator",(function(){return id})),n.d(e,"geoTransverseMercatorRaw",(function(){return rd})),n.d(e,"geoRotation",(function(){return hl})),n.d(e,"geoStream",(function(){return Wc})),n.d(e,"geoTransform",(function(){return af})),n.d(e,"cluster",(function(){return cd})),n.d(e,"hierarchy",(function(){return ld})),n.d(e,"pack",(function(){return Id})),n.d(e,"packSiblings",(function(){return Md})),n.d(e,"packEnclose",(function(){return gd})),n.d(e,"partition",(function(){return zd})),n.d(e,"stratify",(function(){return Hd})),n.d(e,"tree",(function(){return Jd})),n.d(e,"treemap",(function(){return ip})),n.d(e,"treemapBinary",(function(){return ap})),n.d(e,"treemapDice",(function(){return Yd})),n.d(e,"treemapSlice",(function(){return tp})),n.d(e,"treemapSliceDice",(function(){return op})),n.d(e,"treemapSquarify",(function(){return rp})),n.d(e,"treemapResquarify",(function(){return sp})),n.d(e,"interpolate",(function(){return Mn})),n.d(e,"interpolateArray",(function(){return bn})),n.d(e,"interpolateBasis",(function(){return on})),n.d(e,"interpolateBasisClosed",(function(){return sn})),n.d(e,"interpolateDate",(function(){return _n})),n.d(e,"interpolateDiscrete",(function(){return cp})),n.d(e,"interpolateHue",(function(){return up})),n.d(e,"interpolateNumber",(function(){return kn})),n.d(e,"interpolateNumberArray",(function(){return mn})),n.d(e,"interpolateObject",(function(){return wn})),n.d(e,"interpolateRound",(function(){return lp})),n.d(e,"interpolateString",(function(){return An})),n.d(e,"interpolateTransformCss",(function(){return fr})),n.d(e,"interpolateTransformSvg",(function(){return dr})),n.d(e,"interpolateZoom",(function(){return dp})),n.d(e,"interpolateRgb",(function(){return dn})),n.d(e,"interpolateRgbBasis",(function(){return yn})),n.d(e,"interpolateRgbBasisClosed",(function(){return gn})),n.d(e,"interpolateHsl",(function(){return yp})),n.d(e,"interpolateHslLong",(function(){return gp})),n.d(e,"interpolateLab",(function(){return mp})),n.d(e,"interpolateHcl",(function(){return bp})),n.d(e,"interpolateHclLong",(function(){return xp})),n.d(e,"interpolateCubehelix",(function(){return kp})),n.d(e,"interpolateCubehelixLong",(function(){return wp})),n.d(e,"piecewise",(function(){return Ep})),n.d(e,"quantize",(function(){return Tp})),n.d(e,"path",(function(){return $i})),n.d(e,"polygonArea",(function(){return Cp})),n.d(e,"polygonCentroid",(function(){return Sp})),n.d(e,"polygonHull",(function(){return Op})),n.d(e,"polygonContains",(function(){return Np})),n.d(e,"polygonLength",(function(){return Bp})),n.d(e,"quadtree",(function(){return Cs})),n.d(e,"randomUniform",(function(){return Lp})),n.d(e,"randomNormal",(function(){return Ip})),n.d(e,"randomLogNormal",(function(){return Rp})),n.d(e,"randomBates",(function(){return Pp})),n.d(e,"randomIrwinHall",(function(){return Fp})),n.d(e,"randomExponential",(function(){return jp})),n.d(e,"scaleBand",(function(){return Vp})),n.d(e,"scalePoint",(function(){return Xp})),n.d(e,"scaleIdentity",(function(){return uy})),n.d(e,"scaleLinear",(function(){return cy})),n.d(e,"scaleLog",(function(){return vy})),n.d(e,"scaleSymlog",(function(){return ky})),n.d(e,"scaleOrdinal",(function(){return Hp})),n.d(e,"scaleImplicit",(function(){return Wp})),n.d(e,"scalePow",(function(){return Sy})),n.d(e,"scaleSqrt",(function(){return Ay})),n.d(e,"scaleQuantile",(function(){return My})),n.d(e,"scaleQuantize",(function(){return Oy})),n.d(e,"scaleThreshold",(function(){return Ny})),n.d(e,"scaleTime",(function(){return pv})),n.d(e,"scaleUtc",(function(){return Ev})),n.d(e,"scaleSequential",(function(){return Sv})),n.d(e,"scaleSequentialLog",(function(){return Av})),n.d(e,"scaleSequentialPow",(function(){return Ov})),n.d(e,"scaleSequentialSqrt",(function(){return Nv})),n.d(e,"scaleSequentialSymlog",(function(){return Mv})),n.d(e,"scaleSequentialQuantile",(function(){return Bv})),n.d(e,"scaleDiverging",(function(){return Lv})),n.d(e,"scaleDivergingLog",(function(){return Iv})),n.d(e,"scaleDivergingPow",(function(){return Fv})),n.d(e,"scaleDivergingSqrt",(function(){return Pv})),n.d(e,"scaleDivergingSymlog",(function(){return Rv})),n.d(e,"tickFormat",(function(){return oy})),n.d(e,"schemeCategory10",(function(){return Yv})),n.d(e,"schemeAccent",(function(){return zv})),n.d(e,"schemeDark2",(function(){return Uv})),n.d(e,"schemePaired",(function(){return $v})),n.d(e,"schemePastel1",(function(){return qv})),n.d(e,"schemePastel2",(function(){return Wv})),n.d(e,"schemeSet1",(function(){return Hv})),n.d(e,"schemeSet2",(function(){return Vv})),n.d(e,"schemeSet3",(function(){return Gv})),n.d(e,"schemeTableau10",(function(){return Xv})),n.d(e,"interpolateBrBG",(function(){return Qv})),n.d(e,"schemeBrBG",(function(){return Kv})),n.d(e,"interpolatePRGn",(function(){return tb})),n.d(e,"schemePRGn",(function(){return Jv})),n.d(e,"interpolatePiYG",(function(){return nb})),n.d(e,"schemePiYG",(function(){return eb})),n.d(e,"interpolatePuOr",(function(){return ib})),n.d(e,"schemePuOr",(function(){return rb})),n.d(e,"interpolateRdBu",(function(){return ob})),n.d(e,"schemeRdBu",(function(){return ab})),n.d(e,"interpolateRdGy",(function(){return cb})),n.d(e,"schemeRdGy",(function(){return sb})),n.d(e,"interpolateRdYlBu",(function(){return lb})),n.d(e,"schemeRdYlBu",(function(){return ub})),n.d(e,"interpolateRdYlGn",(function(){return fb})),n.d(e,"schemeRdYlGn",(function(){return hb})),n.d(e,"interpolateSpectral",(function(){return pb})),n.d(e,"schemeSpectral",(function(){return db})),n.d(e,"interpolateBuGn",(function(){return gb})),n.d(e,"schemeBuGn",(function(){return yb})),n.d(e,"interpolateBuPu",(function(){return vb})),n.d(e,"schemeBuPu",(function(){return mb})),n.d(e,"interpolateGnBu",(function(){return xb})),n.d(e,"schemeGnBu",(function(){return bb})),n.d(e,"interpolateOrRd",(function(){return kb})),n.d(e,"schemeOrRd",(function(){return _b})),n.d(e,"interpolatePuBuGn",(function(){return Eb})),n.d(e,"schemePuBuGn",(function(){return wb})),n.d(e,"interpolatePuBu",(function(){return Cb})),n.d(e,"schemePuBu",(function(){return Tb})),n.d(e,"interpolatePuRd",(function(){return Ab})),n.d(e,"schemePuRd",(function(){return Sb})),n.d(e,"interpolateRdPu",(function(){return Ob})),n.d(e,"schemeRdPu",(function(){return Mb})),n.d(e,"interpolateYlGnBu",(function(){return Bb})),n.d(e,"schemeYlGnBu",(function(){return Nb})),n.d(e,"interpolateYlGn",(function(){return Lb})),n.d(e,"schemeYlGn",(function(){return Db})),n.d(e,"interpolateYlOrBr",(function(){return Rb})),n.d(e,"schemeYlOrBr",(function(){return Ib})),n.d(e,"interpolateYlOrRd",(function(){return Pb})),n.d(e,"schemeYlOrRd",(function(){return Fb})),n.d(e,"interpolateBlues",(function(){return Yb})),n.d(e,"schemeBlues",(function(){return jb})),n.d(e,"interpolateGreens",(function(){return Ub})),n.d(e,"schemeGreens",(function(){return zb})),n.d(e,"interpolateGreys",(function(){return qb})),n.d(e,"schemeGreys",(function(){return $b})),n.d(e,"interpolatePurples",(function(){return Hb})),n.d(e,"schemePurples",(function(){return Wb})),n.d(e,"interpolateReds",(function(){return Gb})),n.d(e,"schemeReds",(function(){return Vb})),n.d(e,"interpolateOranges",(function(){return Zb})),n.d(e,"schemeOranges",(function(){return Xb})),n.d(e,"interpolateCividis",(function(){return Kb})),n.d(e,"interpolateCubehelixDefault",(function(){return Qb})),n.d(e,"interpolateRainbow",(function(){return nx})),n.d(e,"interpolateWarm",(function(){return Jb})),n.d(e,"interpolateCool",(function(){return tx})),n.d(e,"interpolateSinebow",(function(){return ox})),n.d(e,"interpolateTurbo",(function(){return sx})),n.d(e,"interpolateViridis",(function(){return ux})),n.d(e,"interpolateMagma",(function(){return lx})),n.d(e,"interpolateInferno",(function(){return hx})),n.d(e,"interpolatePlasma",(function(){return fx})),n.d(e,"create",(function(){return dx})),n.d(e,"creator",(function(){return re})),n.d(e,"local",(function(){return yx})),n.d(e,"matcher",(function(){return gt})),n.d(e,"mouse",(function(){return Dn})),n.d(e,"namespace",(function(){return Et})),n.d(e,"namespaces",(function(){return wt})),n.d(e,"clientPoint",(function(){return Nn})),n.d(e,"select",(function(){return we})),n.d(e,"selectAll",(function(){return mx})),n.d(e,"selection",(function(){return ke})),n.d(e,"selector",(function(){return dt})),n.d(e,"selectorAll",(function(){return yt})),n.d(e,"style",(function(){return It})),n.d(e,"touch",(function(){return Bn})),n.d(e,"touches",(function(){return vx})),n.d(e,"window",(function(){return Nt})),n.d(e,"event",(function(){return ue})),n.d(e,"customEvent",(function(){return ye})),n.d(e,"arc",(function(){return jx})),n.d(e,"area",(function(){return Wx})),n.d(e,"line",(function(){return qx})),n.d(e,"pie",(function(){return Gx})),n.d(e,"areaRadial",(function(){return t_})),n.d(e,"radialArea",(function(){return t_})),n.d(e,"lineRadial",(function(){return Jx})),n.d(e,"radialLine",(function(){return Jx})),n.d(e,"pointRadial",(function(){return e_})),n.d(e,"linkHorizontal",(function(){return u_})),n.d(e,"linkVertical",(function(){return l_})),n.d(e,"linkRadial",(function(){return h_})),n.d(e,"symbol",(function(){return M_})),n.d(e,"symbols",(function(){return A_})),n.d(e,"symbolCircle",(function(){return f_})),n.d(e,"symbolCross",(function(){return d_})),n.d(e,"symbolDiamond",(function(){return g_})),n.d(e,"symbolSquare",(function(){return __})),n.d(e,"symbolStar",(function(){return x_})),n.d(e,"symbolTriangle",(function(){return w_})),n.d(e,"symbolWye",(function(){return S_})),n.d(e,"curveBasisClosed",(function(){return I_})),n.d(e,"curveBasisOpen",(function(){return F_})),n.d(e,"curveBasis",(function(){return D_})),n.d(e,"curveBundle",(function(){return j_})),n.d(e,"curveCardinalClosed",(function(){return q_})),n.d(e,"curveCardinalOpen",(function(){return H_})),n.d(e,"curveCardinal",(function(){return U_})),n.d(e,"curveCatmullRomClosed",(function(){return K_})),n.d(e,"curveCatmullRomOpen",(function(){return J_})),n.d(e,"curveCatmullRom",(function(){return X_})),n.d(e,"curveLinearClosed",(function(){return ek})),n.d(e,"curveLinear",(function(){return zx})),n.d(e,"curveMonotoneX",(function(){return uk})),n.d(e,"curveMonotoneY",(function(){return lk})),n.d(e,"curveNatural",(function(){return dk})),n.d(e,"curveStep",(function(){return yk})),n.d(e,"curveStepAfter",(function(){return mk})),n.d(e,"curveStepBefore",(function(){return gk})),n.d(e,"stack",(function(){return _k})),n.d(e,"stackOffsetExpand",(function(){return kk})),n.d(e,"stackOffsetDiverging",(function(){return wk})),n.d(e,"stackOffsetNone",(function(){return vk})),n.d(e,"stackOffsetSilhouette",(function(){return Ek})),n.d(e,"stackOffsetWiggle",(function(){return Tk})),n.d(e,"stackOrderAppearance",(function(){return Ck})),n.d(e,"stackOrderAscending",(function(){return Ak})),n.d(e,"stackOrderDescending",(function(){return Ok})),n.d(e,"stackOrderInsideOut",(function(){return Nk})),n.d(e,"stackOrderNone",(function(){return bk})),n.d(e,"stackOrderReverse",(function(){return Bk})),n.d(e,"timeInterval",(function(){return Ly})),n.d(e,"timeMillisecond",(function(){return yg})),n.d(e,"timeMilliseconds",(function(){return gg})),n.d(e,"utcMillisecond",(function(){return yg})),n.d(e,"utcMilliseconds",(function(){return gg})),n.d(e,"timeSecond",(function(){return fg})),n.d(e,"timeSeconds",(function(){return dg})),n.d(e,"utcSecond",(function(){return fg})),n.d(e,"utcSeconds",(function(){return dg})),n.d(e,"timeMinute",(function(){return ug})),n.d(e,"timeMinutes",(function(){return lg})),n.d(e,"timeHour",(function(){return og})),n.d(e,"timeHours",(function(){return sg})),n.d(e,"timeDay",(function(){return rg})),n.d(e,"timeDays",(function(){return ig})),n.d(e,"timeWeek",(function(){return Uy})),n.d(e,"timeWeeks",(function(){return Xy})),n.d(e,"timeSunday",(function(){return Uy})),n.d(e,"timeSundays",(function(){return Xy})),n.d(e,"timeMonday",(function(){return $y})),n.d(e,"timeMondays",(function(){return Zy})),n.d(e,"timeTuesday",(function(){return qy})),n.d(e,"timeTuesdays",(function(){return Ky})),n.d(e,"timeWednesday",(function(){return Wy})),n.d(e,"timeWednesdays",(function(){return Qy})),n.d(e,"timeThursday",(function(){return Hy})),n.d(e,"timeThursdays",(function(){return Jy})),n.d(e,"timeFriday",(function(){return Vy})),n.d(e,"timeFridays",(function(){return tg})),n.d(e,"timeSaturday",(function(){return Gy})),n.d(e,"timeSaturdays",(function(){return eg})),n.d(e,"timeMonth",(function(){return jy})),n.d(e,"timeMonths",(function(){return Yy})),n.d(e,"timeYear",(function(){return Ry})),n.d(e,"timeYears",(function(){return Fy})),n.d(e,"utcMinute",(function(){return kv})),n.d(e,"utcMinutes",(function(){return wv})),n.d(e,"utcHour",(function(){return bv})),n.d(e,"utcHours",(function(){return xv})),n.d(e,"utcDay",(function(){return Dg})),n.d(e,"utcDays",(function(){return Lg})),n.d(e,"utcWeek",(function(){return vg})),n.d(e,"utcWeeks",(function(){return Tg})),n.d(e,"utcSunday",(function(){return vg})),n.d(e,"utcSundays",(function(){return Tg})),n.d(e,"utcMonday",(function(){return bg})),n.d(e,"utcMondays",(function(){return Cg})),n.d(e,"utcTuesday",(function(){return xg})),n.d(e,"utcTuesdays",(function(){return Sg})),n.d(e,"utcWednesday",(function(){return _g})),n.d(e,"utcWednesdays",(function(){return Ag})),n.d(e,"utcThursday",(function(){return kg})),n.d(e,"utcThursdays",(function(){return Mg})),n.d(e,"utcFriday",(function(){return wg})),n.d(e,"utcFridays",(function(){return Og})),n.d(e,"utcSaturday",(function(){return Eg})),n.d(e,"utcSaturdays",(function(){return Ng})),n.d(e,"utcMonth",(function(){return gv})),n.d(e,"utcMonths",(function(){return mv})),n.d(e,"utcYear",(function(){return Rg})),n.d(e,"utcYears",(function(){return Fg})),n.d(e,"timeFormatDefaultLocale",(function(){return lv})),n.d(e,"timeFormat",(function(){return $g})),n.d(e,"timeParse",(function(){return qg})),n.d(e,"utcFormat",(function(){return Wg})),n.d(e,"utcParse",(function(){return Hg})),n.d(e,"timeFormatLocale",(function(){return zg})),n.d(e,"isoFormat",(function(){return Dk})),n.d(e,"isoParse",(function(){return Lk})),n.d(e,"now",(function(){return Un})),n.d(e,"timer",(function(){return Wn})),n.d(e,"timerFlush",(function(){return Hn})),n.d(e,"timeout",(function(){return Zn})),n.d(e,"interval",(function(){return Ik})),n.d(e,"transition",(function(){return Ur})),n.d(e,"active",(function(){return Kr})),n.d(e,"interrupt",(function(){return sr})),n.d(e,"voronoi",(function(){return xw})),n.d(e,"zoom",(function(){return Lw})),n.d(e,"zoomTransform",(function(){return Tw})),n.d(e,"zoomIdentity",(function(){return Ew}));var r="5.16.0",i=function(t,e){return t<e?-1:t>e?1:t>=e?0:NaN},a=function(t){var e;return 1===t.length&&(e=t,t=function(t,n){return i(e(t),n)}),{left:function(e,n,r,i){for(null==r&&(r=0),null==i&&(i=e.length);r<i;){var a=r+i>>>1;t(e[a],n)<0?r=a+1:i=a}return r},right:function(e,n,r,i){for(null==r&&(r=0),null==i&&(i=e.length);r<i;){var a=r+i>>>1;t(e[a],n)>0?i=a:r=a+1}return r}}};var o=a(i),s=o.right,c=o.left,u=s,l=function(t,e){null==e&&(e=h);for(var n=0,r=t.length-1,i=t[0],a=new Array(r<0?0:r);n<r;)a[n]=e(i,i=t[++n]);return a};function h(t,e){return[t,e]}var f=function(t,e,n){var r,i,a,o,s=t.length,c=e.length,u=new Array(s*c);for(null==n&&(n=h),r=a=0;r<s;++r)for(o=t[r],i=0;i<c;++i,++a)u[a]=n(o,e[i]);return u},d=function(t,e){return e<t?-1:e>t?1:e>=t?0:NaN},p=function(t){return null===t?NaN:+t},y=function(t,e){var n,r,i=t.length,a=0,o=-1,s=0,c=0;if(null==e)for(;++o<i;)isNaN(n=p(t[o]))||(c+=(r=n-s)*(n-(s+=r/++a)));else for(;++o<i;)isNaN(n=p(e(t[o],o,t)))||(c+=(r=n-s)*(n-(s+=r/++a)));if(a>1)return c/(a-1)},g=function(t,e){var n=y(t,e);return n?Math.sqrt(n):n},m=function(t,e){var n,r,i,a=t.length,o=-1;if(null==e){for(;++o<a;)if(null!=(n=t[o])&&n>=n)for(r=i=n;++o<a;)null!=(n=t[o])&&(r>n&&(r=n),i<n&&(i=n))}else for(;++o<a;)if(null!=(n=e(t[o],o,t))&&n>=n)for(r=i=n;++o<a;)null!=(n=e(t[o],o,t))&&(r>n&&(r=n),i<n&&(i=n));return[r,i]},v=Array.prototype,b=v.slice,x=v.map,_=function(t){return function(){return t}},k=function(t){return t},w=function(t,e,n){t=+t,e=+e,n=(i=arguments.length)<2?(e=t,t=0,1):i<3?1:+n;for(var r=-1,i=0|Math.max(0,Math.ceil((e-t)/n)),a=new Array(i);++r<i;)a[r]=t+r*n;return a},E=Math.sqrt(50),T=Math.sqrt(10),C=Math.sqrt(2),S=function(t,e,n){var r,i,a,o,s=-1;if(n=+n,(t=+t)===(e=+e)&&n>0)return[t];if((r=e<t)&&(i=t,t=e,e=i),0===(o=A(t,e,n))||!isFinite(o))return[];if(o>0)for(t=Math.ceil(t/o),e=Math.floor(e/o),a=new Array(i=Math.ceil(e-t+1));++s<i;)a[s]=(t+s)*o;else for(t=Math.floor(t*o),e=Math.ceil(e*o),a=new Array(i=Math.ceil(t-e+1));++s<i;)a[s]=(t-s)/o;return r&&a.reverse(),a};function A(t,e,n){var r=(e-t)/Math.max(0,n),i=Math.floor(Math.log(r)/Math.LN10),a=r/Math.pow(10,i);return i>=0?(a>=E?10:a>=T?5:a>=C?2:1)*Math.pow(10,i):-Math.pow(10,-i)/(a>=E?10:a>=T?5:a>=C?2:1)}function M(t,e,n){var r=Math.abs(e-t)/Math.max(0,n),i=Math.pow(10,Math.floor(Math.log(r)/Math.LN10)),a=r/i;return a>=E?i*=10:a>=T?i*=5:a>=C&&(i*=2),e<t?-i:i}var O=function(t){return Math.ceil(Math.log(t.length)/Math.LN2)+1},N=function(){var t=k,e=m,n=O;function r(r){var i,a,o=r.length,s=new Array(o);for(i=0;i<o;++i)s[i]=t(r[i],i,r);var c=e(s),l=c[0],h=c[1],f=n(s,l,h);Array.isArray(f)||(f=M(l,h,f),f=w(Math.ceil(l/f)*f,h,f));for(var d=f.length;f[0]<=l;)f.shift(),--d;for(;f[d-1]>h;)f.pop(),--d;var p,y=new Array(d+1);for(i=0;i<=d;++i)(p=y[i]=[]).x0=i>0?f[i-1]:l,p.x1=i<d?f[i]:h;for(i=0;i<o;++i)l<=(a=s[i])&&a<=h&&y[u(f,a,0,d)].push(r[i]);return y}return r.value=function(e){return arguments.length?(t="function"==typeof e?e:_(e),r):t},r.domain=function(t){return arguments.length?(e="function"==typeof t?t:_([t[0],t[1]]),r):e},r.thresholds=function(t){return arguments.length?(n="function"==typeof t?t:Array.isArray(t)?_(b.call(t)):_(t),r):n},r},B=function(t,e,n){if(null==n&&(n=p),r=t.length){if((e=+e)<=0||r<2)return+n(t[0],0,t);if(e>=1)return+n(t[r-1],r-1,t);var r,i=(r-1)*e,a=Math.floor(i),o=+n(t[a],a,t);return o+(+n(t[a+1],a+1,t)-o)*(i-a)}},D=function(t,e,n){return t=x.call(t,p).sort(i),Math.ceil((n-e)/(2*(B(t,.75)-B(t,.25))*Math.pow(t.length,-1/3)))},L=function(t,e,n){return Math.ceil((n-e)/(3.5*g(t)*Math.pow(t.length,-1/3)))},I=function(t,e){var n,r,i=t.length,a=-1;if(null==e){for(;++a<i;)if(null!=(n=t[a])&&n>=n)for(r=n;++a<i;)null!=(n=t[a])&&n>r&&(r=n)}else for(;++a<i;)if(null!=(n=e(t[a],a,t))&&n>=n)for(r=n;++a<i;)null!=(n=e(t[a],a,t))&&n>r&&(r=n);return r},R=function(t,e){var n,r=t.length,i=r,a=-1,o=0;if(null==e)for(;++a<r;)isNaN(n=p(t[a]))?--i:o+=n;else for(;++a<r;)isNaN(n=p(e(t[a],a,t)))?--i:o+=n;if(i)return o/i},F=function(t,e){var n,r=t.length,a=-1,o=[];if(null==e)for(;++a<r;)isNaN(n=p(t[a]))||o.push(n);else for(;++a<r;)isNaN(n=p(e(t[a],a,t)))||o.push(n);return B(o.sort(i),.5)},P=function(t){for(var e,n,r,i=t.length,a=-1,o=0;++a<i;)o+=t[a].length;for(n=new Array(o);--i>=0;)for(e=(r=t[i]).length;--e>=0;)n[--o]=r[e];return n},j=function(t,e){var n,r,i=t.length,a=-1;if(null==e){for(;++a<i;)if(null!=(n=t[a])&&n>=n)for(r=n;++a<i;)null!=(n=t[a])&&r>n&&(r=n)}else for(;++a<i;)if(null!=(n=e(t[a],a,t))&&n>=n)for(r=n;++a<i;)null!=(n=e(t[a],a,t))&&r>n&&(r=n);return r},Y=function(t,e){for(var n=e.length,r=new Array(n);n--;)r[n]=t[e[n]];return r},z=function(t,e){if(n=t.length){var n,r,a=0,o=0,s=t[o];for(null==e&&(e=i);++a<n;)(e(r=t[a],s)<0||0!==e(s,s))&&(s=r,o=a);return 0===e(s,s)?o:void 0}},U=function(t,e,n){for(var r,i,a=(null==n?t.length:n)-(e=null==e?0:+e);a;)i=Math.random()*a--|0,r=t[a+e],t[a+e]=t[i+e],t[i+e]=r;return t},$=function(t,e){var n,r=t.length,i=-1,a=0;if(null==e)for(;++i<r;)(n=+t[i])&&(a+=n);else for(;++i<r;)(n=+e(t[i],i,t))&&(a+=n);return a},q=function(t){if(!(i=t.length))return[];for(var e=-1,n=j(t,W),r=new Array(n);++e<n;)for(var i,a=-1,o=r[e]=new Array(i);++a<i;)o[a]=t[a][e];return r};function W(t){return t.length}var H=function(){return q(arguments)},V=Array.prototype.slice,G=function(t){return t};function X(t){return"translate("+(t+.5)+",0)"}function Z(t){return"translate(0,"+(t+.5)+")"}function K(t){return function(e){return+t(e)}}function Q(t){var e=Math.max(0,t.bandwidth()-1)/2;return t.round()&&(e=Math.round(e)),function(n){return+t(n)+e}}function J(){return!this.__axis}function tt(t,e){var n=[],r=null,i=null,a=6,o=6,s=3,c=1===t||4===t?-1:1,u=4===t||2===t?"x":"y",l=1===t||3===t?X:Z;function h(h){var f=null==r?e.ticks?e.ticks.apply(e,n):e.domain():r,d=null==i?e.tickFormat?e.tickFormat.apply(e,n):G:i,p=Math.max(a,0)+s,y=e.range(),g=+y[0]+.5,m=+y[y.length-1]+.5,v=(e.bandwidth?Q:K)(e.copy()),b=h.selection?h.selection():h,x=b.selectAll(".domain").data([null]),_=b.selectAll(".tick").data(f,e).order(),k=_.exit(),w=_.enter().append("g").attr("class","tick"),E=_.select("line"),T=_.select("text");x=x.merge(x.enter().insert("path",".tick").attr("class","domain").attr("stroke","currentColor")),_=_.merge(w),E=E.merge(w.append("line").attr("stroke","currentColor").attr(u+"2",c*a)),T=T.merge(w.append("text").attr("fill","currentColor").attr(u,c*p).attr("dy",1===t?"0em":3===t?"0.71em":"0.32em")),h!==b&&(x=x.transition(h),_=_.transition(h),E=E.transition(h),T=T.transition(h),k=k.transition(h).attr("opacity",1e-6).attr("transform",(function(t){return isFinite(t=v(t))?l(t):this.getAttribute("transform")})),w.attr("opacity",1e-6).attr("transform",(function(t){var e=this.parentNode.__axis;return l(e&&isFinite(e=e(t))?e:v(t))}))),k.remove(),x.attr("d",4===t||2==t?o?"M"+c*o+","+g+"H0.5V"+m+"H"+c*o:"M0.5,"+g+"V"+m:o?"M"+g+","+c*o+"V0.5H"+m+"V"+c*o:"M"+g+",0.5H"+m),_.attr("opacity",1).attr("transform",(function(t){return l(v(t))})),E.attr(u+"2",c*a),T.attr(u,c*p).text(d),b.filter(J).attr("fill","none").attr("font-size",10).attr("font-family","sans-serif").attr("text-anchor",2===t?"start":4===t?"end":"middle"),b.each((function(){this.__axis=v}))}return h.scale=function(t){return arguments.length?(e=t,h):e},h.ticks=function(){return n=V.call(arguments),h},h.tickArguments=function(t){return arguments.length?(n=null==t?[]:V.call(t),h):n.slice()},h.tickValues=function(t){return arguments.length?(r=null==t?null:V.call(t),h):r&&r.slice()},h.tickFormat=function(t){return arguments.length?(i=t,h):i},h.tickSize=function(t){return arguments.length?(a=o=+t,h):a},h.tickSizeInner=function(t){return arguments.length?(a=+t,h):a},h.tickSizeOuter=function(t){return arguments.length?(o=+t,h):o},h.tickPadding=function(t){return arguments.length?(s=+t,h):s},h}function et(t){return tt(1,t)}function nt(t){return tt(2,t)}function rt(t){return tt(3,t)}function it(t){return tt(4,t)}var at={value:function(){}};function ot(){for(var t,e=0,n=arguments.length,r={};e<n;++e){if(!(t=arguments[e]+"")||t in r||/[\s.]/.test(t))throw new Error("illegal type: "+t);r[t]=[]}return new st(r)}function st(t){this._=t}function ct(t,e){return t.trim().split(/^|\s+/).map((function(t){var n="",r=t.indexOf(".");if(r>=0&&(n=t.slice(r+1),t=t.slice(0,r)),t&&!e.hasOwnProperty(t))throw new Error("unknown type: "+t);return{type:t,name:n}}))}function ut(t,e){for(var n,r=0,i=t.length;r<i;++r)if((n=t[r]).name===e)return n.value}function lt(t,e,n){for(var r=0,i=t.length;r<i;++r)if(t[r].name===e){t[r]=at,t=t.slice(0,r).concat(t.slice(r+1));break}return null!=n&&t.push({name:e,value:n}),t}st.prototype=ot.prototype={constructor:st,on:function(t,e){var n,r=this._,i=ct(t+"",r),a=-1,o=i.length;if(!(arguments.length<2)){if(null!=e&&"function"!=typeof e)throw new Error("invalid callback: "+e);for(;++a<o;)if(n=(t=i[a]).type)r[n]=lt(r[n],t.name,e);else if(null==e)for(n in r)r[n]=lt(r[n],t.name,null);return this}for(;++a<o;)if((n=(t=i[a]).type)&&(n=ut(r[n],t.name)))return n},copy:function(){var t={},e=this._;for(var n in e)t[n]=e[n].slice();return new st(t)},call:function(t,e){if((n=arguments.length-2)>0)for(var n,r,i=new Array(n),a=0;a<n;++a)i[a]=arguments[a+2];if(!this._.hasOwnProperty(t))throw new Error("unknown type: "+t);for(a=0,n=(r=this._[t]).length;a<n;++a)r[a].value.apply(e,i)},apply:function(t,e,n){if(!this._.hasOwnProperty(t))throw new Error("unknown type: "+t);for(var r=this._[t],i=0,a=r.length;i<a;++i)r[i].value.apply(e,n)}};var ht=ot;function ft(){}var dt=function(t){return null==t?ft:function(){return this.querySelector(t)}};function pt(){return[]}var yt=function(t){return null==t?pt:function(){return this.querySelectorAll(t)}},gt=function(t){return function(){return this.matches(t)}},mt=function(t){return new Array(t.length)};function vt(t,e){this.ownerDocument=t.ownerDocument,this.namespaceURI=t.namespaceURI,this._next=null,this._parent=t,this.__data__=e}vt.prototype={constructor:vt,appendChild:function(t){return this._parent.insertBefore(t,this._next)},insertBefore:function(t,e){return this._parent.insertBefore(t,e)},querySelector:function(t){return this._parent.querySelector(t)},querySelectorAll:function(t){return this._parent.querySelectorAll(t)}};function bt(t,e,n,r,i,a){for(var o,s=0,c=e.length,u=a.length;s<u;++s)(o=e[s])?(o.__data__=a[s],r[s]=o):n[s]=new vt(t,a[s]);for(;s<c;++s)(o=e[s])&&(i[s]=o)}function xt(t,e,n,r,i,a,o){var s,c,u,l={},h=e.length,f=a.length,d=new Array(h);for(s=0;s<h;++s)(c=e[s])&&(d[s]=u="$"+o.call(c,c.__data__,s,e),u in l?i[s]=c:l[u]=c);for(s=0;s<f;++s)(c=l[u="$"+o.call(t,a[s],s,a)])?(r[s]=c,c.__data__=a[s],l[u]=null):n[s]=new vt(t,a[s]);for(s=0;s<h;++s)(c=e[s])&&l[d[s]]===c&&(i[s]=c)}function _t(t,e){return t<e?-1:t>e?1:t>=e?0:NaN}var kt="http://www.w3.org/1999/xhtml",wt={svg:"http://www.w3.org/2000/svg",xhtml:kt,xlink:"http://www.w3.org/1999/xlink",xml:"http://www.w3.org/XML/1998/namespace",xmlns:"http://www.w3.org/2000/xmlns/"},Et=function(t){var e=t+="",n=e.indexOf(":");return n>=0&&"xmlns"!==(e=t.slice(0,n))&&(t=t.slice(n+1)),wt.hasOwnProperty(e)?{space:wt[e],local:t}:t};function Tt(t){return function(){this.removeAttribute(t)}}function Ct(t){return function(){this.removeAttributeNS(t.space,t.local)}}function St(t,e){return function(){this.setAttribute(t,e)}}function At(t,e){return function(){this.setAttributeNS(t.space,t.local,e)}}function Mt(t,e){return function(){var n=e.apply(this,arguments);null==n?this.removeAttribute(t):this.setAttribute(t,n)}}function Ot(t,e){return function(){var n=e.apply(this,arguments);null==n?this.removeAttributeNS(t.space,t.local):this.setAttributeNS(t.space,t.local,n)}}var Nt=function(t){return t.ownerDocument&&t.ownerDocument.defaultView||t.document&&t||t.defaultView};function Bt(t){return function(){this.style.removeProperty(t)}}function Dt(t,e,n){return function(){this.style.setProperty(t,e,n)}}function Lt(t,e,n){return function(){var r=e.apply(this,arguments);null==r?this.style.removeProperty(t):this.style.setProperty(t,r,n)}}function It(t,e){return t.style.getPropertyValue(e)||Nt(t).getComputedStyle(t,null).getPropertyValue(e)}function Rt(t){return function(){delete this[t]}}function Ft(t,e){return function(){this[t]=e}}function Pt(t,e){return function(){var n=e.apply(this,arguments);null==n?delete this[t]:this[t]=n}}function jt(t){return t.trim().split(/^|\s+/)}function Yt(t){return t.classList||new zt(t)}function zt(t){this._node=t,this._names=jt(t.getAttribute("class")||"")}function Ut(t,e){for(var n=Yt(t),r=-1,i=e.length;++r<i;)n.add(e[r])}function $t(t,e){for(var n=Yt(t),r=-1,i=e.length;++r<i;)n.remove(e[r])}function qt(t){return function(){Ut(this,t)}}function Wt(t){return function(){$t(this,t)}}function Ht(t,e){return function(){(e.apply(this,arguments)?Ut:$t)(this,t)}}zt.prototype={add:function(t){this._names.indexOf(t)<0&&(this._names.push(t),this._node.setAttribute("class",this._names.join(" ")))},remove:function(t){var e=this._names.indexOf(t);e>=0&&(this._names.splice(e,1),this._node.setAttribute("class",this._names.join(" ")))},contains:function(t){return this._names.indexOf(t)>=0}};function Vt(){this.textContent=""}function Gt(t){return function(){this.textContent=t}}function Xt(t){return function(){var e=t.apply(this,arguments);this.textContent=null==e?"":e}}function Zt(){this.innerHTML=""}function Kt(t){return function(){this.innerHTML=t}}function Qt(t){return function(){var e=t.apply(this,arguments);this.innerHTML=null==e?"":e}}function Jt(){this.nextSibling&&this.parentNode.appendChild(this)}function te(){this.previousSibling&&this.parentNode.insertBefore(this,this.parentNode.firstChild)}function ee(t){return function(){var e=this.ownerDocument,n=this.namespaceURI;return n===kt&&e.documentElement.namespaceURI===kt?e.createElement(t):e.createElementNS(n,t)}}function ne(t){return function(){return this.ownerDocument.createElementNS(t.space,t.local)}}var re=function(t){var e=Et(t);return(e.local?ne:ee)(e)};function ie(){return null}function ae(){var t=this.parentNode;t&&t.removeChild(this)}function oe(){var t=this.cloneNode(!1),e=this.parentNode;return e?e.insertBefore(t,this.nextSibling):t}function se(){var t=this.cloneNode(!0),e=this.parentNode;return e?e.insertBefore(t,this.nextSibling):t}var ce={},ue=null;"undefined"!=typeof document&&("onmouseenter"in document.documentElement||(ce={mouseenter:"mouseover",mouseleave:"mouseout"}));function le(t,e,n){return t=he(t,e,n),function(e){var n=e.relatedTarget;n&&(n===this||8&n.compareDocumentPosition(this))||t.call(this,e)}}function he(t,e,n){return function(r){var i=ue;ue=r;try{t.call(this,this.__data__,e,n)}finally{ue=i}}}function fe(t){return t.trim().split(/^|\s+/).map((function(t){var e="",n=t.indexOf(".");return n>=0&&(e=t.slice(n+1),t=t.slice(0,n)),{type:t,name:e}}))}function de(t){return function(){var e=this.__on;if(e){for(var n,r=0,i=-1,a=e.length;r<a;++r)n=e[r],t.type&&n.type!==t.type||n.name!==t.name?e[++i]=n:this.removeEventListener(n.type,n.listener,n.capture);++i?e.length=i:delete this.__on}}}function pe(t,e,n){var r=ce.hasOwnProperty(t.type)?le:he;return function(i,a,o){var s,c=this.__on,u=r(e,a,o);if(c)for(var l=0,h=c.length;l<h;++l)if((s=c[l]).type===t.type&&s.name===t.name)return this.removeEventListener(s.type,s.listener,s.capture),this.addEventListener(s.type,s.listener=u,s.capture=n),void(s.value=e);this.addEventListener(t.type,u,n),s={type:t.type,name:t.name,value:e,listener:u,capture:n},c?c.push(s):this.__on=[s]}}function ye(t,e,n,r){var i=ue;t.sourceEvent=ue,ue=t;try{return e.apply(n,r)}finally{ue=i}}function ge(t,e,n){var r=Nt(t),i=r.CustomEvent;"function"==typeof i?i=new i(e,n):(i=r.document.createEvent("Event"),n?(i.initEvent(e,n.bubbles,n.cancelable),i.detail=n.detail):i.initEvent(e,!1,!1)),t.dispatchEvent(i)}function me(t,e){return function(){return ge(this,t,e)}}function ve(t,e){return function(){return ge(this,t,e.apply(this,arguments))}}var be=[null];function xe(t,e){this._groups=t,this._parents=e}function _e(){return new xe([[document.documentElement]],be)}xe.prototype=_e.prototype={constructor:xe,select:function(t){"function"!=typeof t&&(t=dt(t));for(var e=this._groups,n=e.length,r=new Array(n),i=0;i<n;++i)for(var a,o,s=e[i],c=s.length,u=r[i]=new Array(c),l=0;l<c;++l)(a=s[l])&&(o=t.call(a,a.__data__,l,s))&&("__data__"in a&&(o.__data__=a.__data__),u[l]=o);return new xe(r,this._parents)},selectAll:function(t){"function"!=typeof t&&(t=yt(t));for(var e=this._groups,n=e.length,r=[],i=[],a=0;a<n;++a)for(var o,s=e[a],c=s.length,u=0;u<c;++u)(o=s[u])&&(r.push(t.call(o,o.__data__,u,s)),i.push(o));return new xe(r,i)},filter:function(t){"function"!=typeof t&&(t=gt(t));for(var e=this._groups,n=e.length,r=new Array(n),i=0;i<n;++i)for(var a,o=e[i],s=o.length,c=r[i]=[],u=0;u<s;++u)(a=o[u])&&t.call(a,a.__data__,u,o)&&c.push(a);return new xe(r,this._parents)},data:function(t,e){if(!t)return p=new Array(this.size()),l=-1,this.each((function(t){p[++l]=t})),p;var n,r=e?xt:bt,i=this._parents,a=this._groups;"function"!=typeof t&&(n=t,t=function(){return n});for(var o=a.length,s=new Array(o),c=new Array(o),u=new Array(o),l=0;l<o;++l){var h=i[l],f=a[l],d=f.length,p=t.call(h,h&&h.__data__,l,i),y=p.length,g=c[l]=new Array(y),m=s[l]=new Array(y);r(h,f,g,m,u[l]=new Array(d),p,e);for(var v,b,x=0,_=0;x<y;++x)if(v=g[x]){for(x>=_&&(_=x+1);!(b=m[_])&&++_<y;);v._next=b||null}}return(s=new xe(s,i))._enter=c,s._exit=u,s},enter:function(){return new xe(this._enter||this._groups.map(mt),this._parents)},exit:function(){return new xe(this._exit||this._groups.map(mt),this._parents)},join:function(t,e,n){var r=this.enter(),i=this,a=this.exit();return r="function"==typeof t?t(r):r.append(t+""),null!=e&&(i=e(i)),null==n?a.remove():n(a),r&&i?r.merge(i).order():i},merge:function(t){for(var e=this._groups,n=t._groups,r=e.length,i=n.length,a=Math.min(r,i),o=new Array(r),s=0;s<a;++s)for(var c,u=e[s],l=n[s],h=u.length,f=o[s]=new Array(h),d=0;d<h;++d)(c=u[d]||l[d])&&(f[d]=c);for(;s<r;++s)o[s]=e[s];return new xe(o,this._parents)},order:function(){for(var t=this._groups,e=-1,n=t.length;++e<n;)for(var r,i=t[e],a=i.length-1,o=i[a];--a>=0;)(r=i[a])&&(o&&4^r.compareDocumentPosition(o)&&o.parentNode.insertBefore(r,o),o=r);return this},sort:function(t){function e(e,n){return e&&n?t(e.__data__,n.__data__):!e-!n}t||(t=_t);for(var n=this._groups,r=n.length,i=new Array(r),a=0;a<r;++a){for(var o,s=n[a],c=s.length,u=i[a]=new Array(c),l=0;l<c;++l)(o=s[l])&&(u[l]=o);u.sort(e)}return new xe(i,this._parents).order()},call:function(){var t=arguments[0];return arguments[0]=this,t.apply(null,arguments),this},nodes:function(){var t=new Array(this.size()),e=-1;return this.each((function(){t[++e]=this})),t},node:function(){for(var t=this._groups,e=0,n=t.length;e<n;++e)for(var r=t[e],i=0,a=r.length;i<a;++i){var o=r[i];if(o)return o}return null},size:function(){var t=0;return this.each((function(){++t})),t},empty:function(){return!this.node()},each:function(t){for(var e=this._groups,n=0,r=e.length;n<r;++n)for(var i,a=e[n],o=0,s=a.length;o<s;++o)(i=a[o])&&t.call(i,i.__data__,o,a);return this},attr:function(t,e){var n=Et(t);if(arguments.length<2){var r=this.node();return n.local?r.getAttributeNS(n.space,n.local):r.getAttribute(n)}return this.each((null==e?n.local?Ct:Tt:"function"==typeof e?n.local?Ot:Mt:n.local?At:St)(n,e))},style:function(t,e,n){return arguments.length>1?this.each((null==e?Bt:"function"==typeof e?Lt:Dt)(t,e,null==n?"":n)):It(this.node(),t)},property:function(t,e){return arguments.length>1?this.each((null==e?Rt:"function"==typeof e?Pt:Ft)(t,e)):this.node()[t]},classed:function(t,e){var n=jt(t+"");if(arguments.length<2){for(var r=Yt(this.node()),i=-1,a=n.length;++i<a;)if(!r.contains(n[i]))return!1;return!0}return this.each(("function"==typeof e?Ht:e?qt:Wt)(n,e))},text:function(t){return arguments.length?this.each(null==t?Vt:("function"==typeof t?Xt:Gt)(t)):this.node().textContent},html:function(t){return arguments.length?this.each(null==t?Zt:("function"==typeof t?Qt:Kt)(t)):this.node().innerHTML},raise:function(){return this.each(Jt)},lower:function(){return this.each(te)},append:function(t){var e="function"==typeof t?t:re(t);return this.select((function(){return this.appendChild(e.apply(this,arguments))}))},insert:function(t,e){var n="function"==typeof t?t:re(t),r=null==e?ie:"function"==typeof e?e:dt(e);return this.select((function(){return this.insertBefore(n.apply(this,arguments),r.apply(this,arguments)||null)}))},remove:function(){return this.each(ae)},clone:function(t){return this.select(t?se:oe)},datum:function(t){return arguments.length?this.property("__data__",t):this.node().__data__},on:function(t,e,n){var r,i,a=fe(t+""),o=a.length;if(!(arguments.length<2)){for(s=e?pe:de,null==n&&(n=!1),r=0;r<o;++r)this.each(s(a[r],e,n));return this}var s=this.node().__on;if(s)for(var c,u=0,l=s.length;u<l;++u)for(r=0,c=s[u];r<o;++r)if((i=a[r]).type===c.type&&i.name===c.name)return c.value},dispatch:function(t,e){return this.each(("function"==typeof e?ve:me)(t,e))}};var ke=_e,we=function(t){return"string"==typeof t?new xe([[document.querySelector(t)]],[document.documentElement]):new xe([[t]],be)};function Ee(){ue.stopImmediatePropagation()}var Te=function(){ue.preventDefault(),ue.stopImmediatePropagation()},Ce=function(t){var e=t.document.documentElement,n=we(t).on("dragstart.drag",Te,!0);"onselectstart"in e?n.on("selectstart.drag",Te,!0):(e.__noselect=e.style.MozUserSelect,e.style.MozUserSelect="none")};function Se(t,e){var n=t.document.documentElement,r=we(t).on("dragstart.drag",null);e&&(r.on("click.drag",Te,!0),setTimeout((function(){r.on("click.drag",null)}),0)),"onselectstart"in n?r.on("selectstart.drag",null):(n.style.MozUserSelect=n.__noselect,delete n.__noselect)}var Ae=function(t,e,n){t.prototype=e.prototype=n,n.constructor=t};function Me(t,e){var n=Object.create(t.prototype);for(var r in e)n[r]=e[r];return n}function Oe(){}var Ne="\\s*([+-]?\\d+)\\s*",Be="\\s*([+-]?\\d*\\.?\\d+(?:[eE][+-]?\\d+)?)\\s*",De="\\s*([+-]?\\d*\\.?\\d+(?:[eE][+-]?\\d+)?)%\\s*",Le=/^#([0-9a-f]{3,8})$/,Ie=new RegExp("^rgb\\("+[Ne,Ne,Ne]+"\\)$"),Re=new RegExp("^rgb\\("+[De,De,De]+"\\)$"),Fe=new RegExp("^rgba\\("+[Ne,Ne,Ne,Be]+"\\)$"),Pe=new RegExp("^rgba\\("+[De,De,De,Be]+"\\)$"),je=new RegExp("^hsl\\("+[Be,De,De]+"\\)$"),Ye=new RegExp("^hsla\\("+[Be,De,De,Be]+"\\)$"),ze={aliceblue:15792383,antiquewhite:16444375,aqua:65535,aquamarine:8388564,azure:15794175,beige:16119260,bisque:16770244,black:0,blanchedalmond:16772045,blue:255,blueviolet:9055202,brown:10824234,burlywood:14596231,cadetblue:6266528,chartreuse:8388352,chocolate:13789470,coral:16744272,cornflowerblue:6591981,cornsilk:16775388,crimson:14423100,cyan:65535,darkblue:139,darkcyan:35723,darkgoldenrod:12092939,darkgray:11119017,darkgreen:25600,darkgrey:11119017,darkkhaki:12433259,darkmagenta:9109643,darkolivegreen:5597999,darkorange:16747520,darkorchid:10040012,darkred:9109504,darksalmon:15308410,darkseagreen:9419919,darkslateblue:4734347,darkslategray:3100495,darkslategrey:3100495,darkturquoise:52945,darkviolet:9699539,deeppink:16716947,deepskyblue:49151,dimgray:6908265,dimgrey:6908265,dodgerblue:2003199,firebrick:11674146,floralwhite:16775920,forestgreen:2263842,fuchsia:16711935,gainsboro:14474460,ghostwhite:16316671,gold:16766720,goldenrod:14329120,gray:8421504,green:32768,greenyellow:11403055,grey:8421504,honeydew:15794160,hotpink:16738740,indianred:13458524,indigo:4915330,ivory:16777200,khaki:15787660,lavender:15132410,lavenderblush:16773365,lawngreen:8190976,lemonchiffon:16775885,lightblue:11393254,lightcoral:15761536,lightcyan:14745599,lightgoldenrodyellow:16448210,lightgray:13882323,lightgreen:9498256,lightgrey:13882323,lightpink:16758465,lightsalmon:16752762,lightseagreen:2142890,lightskyblue:8900346,lightslategray:7833753,lightslategrey:7833753,lightsteelblue:11584734,lightyellow:16777184,lime:65280,limegreen:3329330,linen:16445670,magenta:16711935,maroon:8388608,mediumaquamarine:6737322,mediumblue:205,mediumorchid:12211667,mediumpurple:9662683,mediumseagreen:3978097,mediumslateblue:8087790,mediumspringgreen:64154,mediumturquoise:4772300,mediumvioletred:13047173,midnightblue:1644912,mintcream:16121850,mistyrose:16770273,moccasin:16770229,navajowhite:16768685,navy:128,oldlace:16643558,olive:8421376,olivedrab:7048739,orange:16753920,orangered:16729344,orchid:14315734,palegoldenrod:15657130,palegreen:10025880,paleturquoise:11529966,palevioletred:14381203,papayawhip:16773077,peachpuff:16767673,peru:13468991,pink:16761035,plum:14524637,powderblue:11591910,purple:8388736,rebeccapurple:6697881,red:16711680,rosybrown:12357519,royalblue:4286945,saddlebrown:9127187,salmon:16416882,sandybrown:16032864,seagreen:3050327,seashell:16774638,sienna:10506797,silver:12632256,skyblue:8900331,slateblue:6970061,slategray:7372944,slategrey:7372944,snow:16775930,springgreen:65407,steelblue:4620980,tan:13808780,teal:32896,thistle:14204888,tomato:16737095,turquoise:4251856,violet:15631086,wheat:16113331,white:16777215,whitesmoke:16119285,yellow:16776960,yellowgreen:10145074};function Ue(){return this.rgb().formatHex()}function $e(){return this.rgb().formatRgb()}function qe(t){var e,n;return t=(t+"").trim().toLowerCase(),(e=Le.exec(t))?(n=e[1].length,e=parseInt(e[1],16),6===n?We(e):3===n?new Xe(e>>8&15|e>>4&240,e>>4&15|240&e,(15&e)<<4|15&e,1):8===n?He(e>>24&255,e>>16&255,e>>8&255,(255&e)/255):4===n?He(e>>12&15|e>>8&240,e>>8&15|e>>4&240,e>>4&15|240&e,((15&e)<<4|15&e)/255):null):(e=Ie.exec(t))?new Xe(e[1],e[2],e[3],1):(e=Re.exec(t))?new Xe(255*e[1]/100,255*e[2]/100,255*e[3]/100,1):(e=Fe.exec(t))?He(e[1],e[2],e[3],e[4]):(e=Pe.exec(t))?He(255*e[1]/100,255*e[2]/100,255*e[3]/100,e[4]):(e=je.exec(t))?Je(e[1],e[2]/100,e[3]/100,1):(e=Ye.exec(t))?Je(e[1],e[2]/100,e[3]/100,e[4]):ze.hasOwnProperty(t)?We(ze[t]):"transparent"===t?new Xe(NaN,NaN,NaN,0):null}function We(t){return new Xe(t>>16&255,t>>8&255,255&t,1)}function He(t,e,n,r){return r<=0&&(t=e=n=NaN),new Xe(t,e,n,r)}function Ve(t){return t instanceof Oe||(t=qe(t)),t?new Xe((t=t.rgb()).r,t.g,t.b,t.opacity):new Xe}function Ge(t,e,n,r){return 1===arguments.length?Ve(t):new Xe(t,e,n,null==r?1:r)}function Xe(t,e,n,r){this.r=+t,this.g=+e,this.b=+n,this.opacity=+r}function Ze(){return"#"+Qe(this.r)+Qe(this.g)+Qe(this.b)}function Ke(){var t=this.opacity;return(1===(t=isNaN(t)?1:Math.max(0,Math.min(1,t)))?"rgb(":"rgba(")+Math.max(0,Math.min(255,Math.round(this.r)||0))+", "+Math.max(0,Math.min(255,Math.round(this.g)||0))+", "+Math.max(0,Math.min(255,Math.round(this.b)||0))+(1===t?")":", "+t+")")}function Qe(t){return((t=Math.max(0,Math.min(255,Math.round(t)||0)))<16?"0":"")+t.toString(16)}function Je(t,e,n,r){return r<=0?t=e=n=NaN:n<=0||n>=1?t=e=NaN:e<=0&&(t=NaN),new nn(t,e,n,r)}function tn(t){if(t instanceof nn)return new nn(t.h,t.s,t.l,t.opacity);if(t instanceof Oe||(t=qe(t)),!t)return new nn;if(t instanceof nn)return t;var e=(t=t.rgb()).r/255,n=t.g/255,r=t.b/255,i=Math.min(e,n,r),a=Math.max(e,n,r),o=NaN,s=a-i,c=(a+i)/2;return s?(o=e===a?(n-r)/s+6*(n<r):n===a?(r-e)/s+2:(e-n)/s+4,s/=c<.5?a+i:2-a-i,o*=60):s=c>0&&c<1?0:o,new nn(o,s,c,t.opacity)}function en(t,e,n,r){return 1===arguments.length?tn(t):new nn(t,e,n,null==r?1:r)}function nn(t,e,n,r){this.h=+t,this.s=+e,this.l=+n,this.opacity=+r}function rn(t,e,n){return 255*(t<60?e+(n-e)*t/60:t<180?n:t<240?e+(n-e)*(240-t)/60:e)}function an(t,e,n,r,i){var a=t*t,o=a*t;return((1-3*t+3*a-o)*e+(4-6*a+3*o)*n+(1+3*t+3*a-3*o)*r+o*i)/6}Ae(Oe,qe,{copy:function(t){return Object.assign(new this.constructor,this,t)},displayable:function(){return this.rgb().displayable()},hex:Ue,formatHex:Ue,formatHsl:function(){return tn(this).formatHsl()},formatRgb:$e,toString:$e}),Ae(Xe,Ge,Me(Oe,{brighter:function(t){return t=null==t?1/.7:Math.pow(1/.7,t),new Xe(this.r*t,this.g*t,this.b*t,this.opacity)},darker:function(t){return t=null==t?.7:Math.pow(.7,t),new Xe(this.r*t,this.g*t,this.b*t,this.opacity)},rgb:function(){return this},displayable:function(){return-.5<=this.r&&this.r<255.5&&-.5<=this.g&&this.g<255.5&&-.5<=this.b&&this.b<255.5&&0<=this.opacity&&this.opacity<=1},hex:Ze,formatHex:Ze,formatRgb:Ke,toString:Ke})),Ae(nn,en,Me(Oe,{brighter:function(t){return t=null==t?1/.7:Math.pow(1/.7,t),new nn(this.h,this.s,this.l*t,this.opacity)},darker:function(t){return t=null==t?.7:Math.pow(.7,t),new nn(this.h,this.s,this.l*t,this.opacity)},rgb:function(){var t=this.h%360+360*(this.h<0),e=isNaN(t)||isNaN(this.s)?0:this.s,n=this.l,r=n+(n<.5?n:1-n)*e,i=2*n-r;return new Xe(rn(t>=240?t-240:t+120,i,r),rn(t,i,r),rn(t<120?t+240:t-120,i,r),this.opacity)},displayable:function(){return(0<=this.s&&this.s<=1||isNaN(this.s))&&0<=this.l&&this.l<=1&&0<=this.opacity&&this.opacity<=1},formatHsl:function(){var t=this.opacity;return(1===(t=isNaN(t)?1:Math.max(0,Math.min(1,t)))?"hsl(":"hsla(")+(this.h||0)+", "+100*(this.s||0)+"%, "+100*(this.l||0)+"%"+(1===t?")":", "+t+")")}}));var on=function(t){var e=t.length-1;return function(n){var r=n<=0?n=0:n>=1?(n=1,e-1):Math.floor(n*e),i=t[r],a=t[r+1],o=r>0?t[r-1]:2*i-a,s=r<e-1?t[r+2]:2*a-i;return an((n-r/e)*e,o,i,a,s)}},sn=function(t){var e=t.length;return function(n){var r=Math.floor(((n%=1)<0?++n:n)*e),i=t[(r+e-1)%e],a=t[r%e],o=t[(r+1)%e],s=t[(r+2)%e];return an((n-r/e)*e,i,a,o,s)}},cn=function(t){return function(){return t}};function un(t,e){return function(n){return t+n*e}}function ln(t,e){var n=e-t;return n?un(t,n>180||n<-180?n-360*Math.round(n/360):n):cn(isNaN(t)?e:t)}function hn(t){return 1==(t=+t)?fn:function(e,n){return n-e?function(t,e,n){return t=Math.pow(t,n),e=Math.pow(e,n)-t,n=1/n,function(r){return Math.pow(t+r*e,n)}}(e,n,t):cn(isNaN(e)?n:e)}}function fn(t,e){var n=e-t;return n?un(t,n):cn(isNaN(t)?e:t)}var dn=function t(e){var n=hn(e);function r(t,e){var r=n((t=Ge(t)).r,(e=Ge(e)).r),i=n(t.g,e.g),a=n(t.b,e.b),o=fn(t.opacity,e.opacity);return function(e){return t.r=r(e),t.g=i(e),t.b=a(e),t.opacity=o(e),t+""}}return r.gamma=t,r}(1);function pn(t){return function(e){var n,r,i=e.length,a=new Array(i),o=new Array(i),s=new Array(i);for(n=0;n<i;++n)r=Ge(e[n]),a[n]=r.r||0,o[n]=r.g||0,s[n]=r.b||0;return a=t(a),o=t(o),s=t(s),r.opacity=1,function(t){return r.r=a(t),r.g=o(t),r.b=s(t),r+""}}}var yn=pn(on),gn=pn(sn),mn=function(t,e){e||(e=[]);var n,r=t?Math.min(e.length,t.length):0,i=e.slice();return function(a){for(n=0;n<r;++n)i[n]=t[n]*(1-a)+e[n]*a;return i}};function vn(t){return ArrayBuffer.isView(t)&&!(t instanceof DataView)}var bn=function(t,e){return(vn(e)?mn:xn)(t,e)};function xn(t,e){var n,r=e?e.length:0,i=t?Math.min(r,t.length):0,a=new Array(i),o=new Array(r);for(n=0;n<i;++n)a[n]=Mn(t[n],e[n]);for(;n<r;++n)o[n]=e[n];return function(t){for(n=0;n<i;++n)o[n]=a[n](t);return o}}var _n=function(t,e){var n=new Date;return t=+t,e=+e,function(r){return n.setTime(t*(1-r)+e*r),n}},kn=function(t,e){return t=+t,e=+e,function(n){return t*(1-n)+e*n}},wn=function(t,e){var n,r={},i={};for(n in null!==t&&"object"==typeof t||(t={}),null!==e&&"object"==typeof e||(e={}),e)n in t?r[n]=Mn(t[n],e[n]):i[n]=e[n];return function(t){for(n in r)i[n]=r[n](t);return i}},En=/[-+]?(?:\d+\.?\d*|\.?\d+)(?:[eE][-+]?\d+)?/g,Tn=new RegExp(En.source,"g");var Cn,Sn,An=function(t,e){var n,r,i,a=En.lastIndex=Tn.lastIndex=0,o=-1,s=[],c=[];for(t+="",e+="";(n=En.exec(t))&&(r=Tn.exec(e));)(i=r.index)>a&&(i=e.slice(a,i),s[o]?s[o]+=i:s[++o]=i),(n=n[0])===(r=r[0])?s[o]?s[o]+=r:s[++o]=r:(s[++o]=null,c.push({i:o,x:kn(n,r)})),a=Tn.lastIndex;return a<e.length&&(i=e.slice(a),s[o]?s[o]+=i:s[++o]=i),s.length<2?c[0]?function(t){return function(e){return t(e)+""}}(c[0].x):function(t){return function(){return t}}(e):(e=c.length,function(t){for(var n,r=0;r<e;++r)s[(n=c[r]).i]=n.x(t);return s.join("")})},Mn=function(t,e){var n,r=typeof e;return null==e||"boolean"===r?cn(e):("number"===r?kn:"string"===r?(n=qe(e))?(e=n,dn):An:e instanceof qe?dn:e instanceof Date?_n:vn(e)?mn:Array.isArray(e)?xn:"function"!=typeof e.valueOf&&"function"!=typeof e.toString||isNaN(e)?wn:kn)(t,e)},On=function(){for(var t,e=ue;t=e.sourceEvent;)e=t;return e},Nn=function(t,e){var n=t.ownerSVGElement||t;if(n.createSVGPoint){var r=n.createSVGPoint();return r.x=e.clientX,r.y=e.clientY,[(r=r.matrixTransform(t.getScreenCTM().inverse())).x,r.y]}var i=t.getBoundingClientRect();return[e.clientX-i.left-t.clientLeft,e.clientY-i.top-t.clientTop]},Bn=function(t,e,n){arguments.length<3&&(n=e,e=On().changedTouches);for(var r,i=0,a=e?e.length:0;i<a;++i)if((r=e[i]).identifier===n)return Nn(t,r);return null},Dn=function(t){var e=On();return e.changedTouches&&(e=e.changedTouches[0]),Nn(t,e)},Ln=0,In=0,Rn=0,Fn=0,Pn=0,jn=0,Yn="object"==typeof performance&&performance.now?performance:Date,zn="object"==typeof window&&window.requestAnimationFrame?window.requestAnimationFrame.bind(window):function(t){setTimeout(t,17)};function Un(){return Pn||(zn($n),Pn=Yn.now()+jn)}function $n(){Pn=0}function qn(){this._call=this._time=this._next=null}function Wn(t,e,n){var r=new qn;return r.restart(t,e,n),r}function Hn(){Un(),++Ln;for(var t,e=Cn;e;)(t=Pn-e._time)>=0&&e._call.call(null,t),e=e._next;--Ln}function Vn(){Pn=(Fn=Yn.now())+jn,Ln=In=0;try{Hn()}finally{Ln=0,function(){var t,e,n=Cn,r=1/0;for(;n;)n._call?(r>n._time&&(r=n._time),t=n,n=n._next):(e=n._next,n._next=null,n=t?t._next=e:Cn=e);Sn=t,Xn(r)}(),Pn=0}}function Gn(){var t=Yn.now(),e=t-Fn;e>1e3&&(jn-=e,Fn=t)}function Xn(t){Ln||(In&&(In=clearTimeout(In)),t-Pn>24?(t<1/0&&(In=setTimeout(Vn,t-Yn.now()-jn)),Rn&&(Rn=clearInterval(Rn))):(Rn||(Fn=Yn.now(),Rn=setInterval(Gn,1e3)),Ln=1,zn(Vn)))}qn.prototype=Wn.prototype={constructor:qn,restart:function(t,e,n){if("function"!=typeof t)throw new TypeError("callback is not a function");n=(null==n?Un():+n)+(null==e?0:+e),this._next||Sn===this||(Sn?Sn._next=this:Cn=this,Sn=this),this._call=t,this._time=n,Xn()},stop:function(){this._call&&(this._call=null,this._time=1/0,Xn())}};var Zn=function(t,e,n){var r=new qn;return e=null==e?0:+e,r.restart((function(n){r.stop(),t(n+e)}),e,n),r},Kn=ht("start","end","cancel","interrupt"),Qn=[],Jn=function(t,e,n,r,i,a){var o=t.__transition;if(o){if(n in o)return}else t.__transition={};!function(t,e,n){var r,i=t.__transition;function a(c){var u,l,h,f;if(1!==n.state)return s();for(u in i)if((f=i[u]).name===n.name){if(3===f.state)return Zn(a);4===f.state?(f.state=6,f.timer.stop(),f.on.call("interrupt",t,t.__data__,f.index,f.group),delete i[u]):+u<e&&(f.state=6,f.timer.stop(),f.on.call("cancel",t,t.__data__,f.index,f.group),delete i[u])}if(Zn((function(){3===n.state&&(n.state=4,n.timer.restart(o,n.delay,n.time),o(c))})),n.state=2,n.on.call("start",t,t.__data__,n.index,n.group),2===n.state){for(n.state=3,r=new Array(h=n.tween.length),u=0,l=-1;u<h;++u)(f=n.tween[u].value.call(t,t.__data__,n.index,n.group))&&(r[++l]=f);r.length=l+1}}function o(e){for(var i=e<n.duration?n.ease.call(null,e/n.duration):(n.timer.restart(s),n.state=5,1),a=-1,o=r.length;++a<o;)r[a].call(t,i);5===n.state&&(n.on.call("end",t,t.__data__,n.index,n.group),s())}function s(){for(var r in n.state=6,n.timer.stop(),delete i[e],i)return;delete t.__transition}i[e]=n,n.timer=Wn((function(t){n.state=1,n.timer.restart(a,n.delay,n.time),n.delay<=t&&a(t-n.delay)}),0,n.time)}(t,n,{name:e,index:r,group:i,on:Kn,tween:Qn,time:a.time,delay:a.delay,duration:a.duration,ease:a.ease,timer:null,state:0})};function tr(t,e){var n=nr(t,e);if(n.state>0)throw new Error("too late; already scheduled");return n}function er(t,e){var n=nr(t,e);if(n.state>3)throw new Error("too late; already running");return n}function nr(t,e){var n=t.__transition;if(!n||!(n=n[e]))throw new Error("transition not found");return n}var rr,ir,ar,or,sr=function(t,e){var n,r,i,a=t.__transition,o=!0;if(a){for(i in e=null==e?null:e+"",a)(n=a[i]).name===e?(r=n.state>2&&n.state<5,n.state=6,n.timer.stop(),n.on.call(r?"interrupt":"cancel",t,t.__data__,n.index,n.group),delete a[i]):o=!1;o&&delete t.__transition}},cr=180/Math.PI,ur={translateX:0,translateY:0,rotate:0,skewX:0,scaleX:1,scaleY:1},lr=function(t,e,n,r,i,a){var o,s,c;return(o=Math.sqrt(t*t+e*e))&&(t/=o,e/=o),(c=t*n+e*r)&&(n-=t*c,r-=e*c),(s=Math.sqrt(n*n+r*r))&&(n/=s,r/=s,c/=s),t*r<e*n&&(t=-t,e=-e,c=-c,o=-o),{translateX:i,translateY:a,rotate:Math.atan2(e,t)*cr,skewX:Math.atan(c)*cr,scaleX:o,scaleY:s}};function hr(t,e,n,r){function i(t){return t.length?t.pop()+" ":""}return function(a,o){var s=[],c=[];return a=t(a),o=t(o),function(t,r,i,a,o,s){if(t!==i||r!==a){var c=o.push("translate(",null,e,null,n);s.push({i:c-4,x:kn(t,i)},{i:c-2,x:kn(r,a)})}else(i||a)&&o.push("translate("+i+e+a+n)}(a.translateX,a.translateY,o.translateX,o.translateY,s,c),function(t,e,n,a){t!==e?(t-e>180?e+=360:e-t>180&&(t+=360),a.push({i:n.push(i(n)+"rotate(",null,r)-2,x:kn(t,e)})):e&&n.push(i(n)+"rotate("+e+r)}(a.rotate,o.rotate,s,c),function(t,e,n,a){t!==e?a.push({i:n.push(i(n)+"skewX(",null,r)-2,x:kn(t,e)}):e&&n.push(i(n)+"skewX("+e+r)}(a.skewX,o.skewX,s,c),function(t,e,n,r,a,o){if(t!==n||e!==r){var s=a.push(i(a)+"scale(",null,",",null,")");o.push({i:s-4,x:kn(t,n)},{i:s-2,x:kn(e,r)})}else 1===n&&1===r||a.push(i(a)+"scale("+n+","+r+")")}(a.scaleX,a.scaleY,o.scaleX,o.scaleY,s,c),a=o=null,function(t){for(var e,n=-1,r=c.length;++n<r;)s[(e=c[n]).i]=e.x(t);return s.join("")}}}var fr=hr((function(t){return"none"===t?ur:(rr||(rr=document.createElement("DIV"),ir=document.documentElement,ar=document.defaultView),rr.style.transform=t,t=ar.getComputedStyle(ir.appendChild(rr),null).getPropertyValue("transform"),ir.removeChild(rr),t=t.slice(7,-1).split(","),lr(+t[0],+t[1],+t[2],+t[3],+t[4],+t[5]))}),"px, ","px)","deg)"),dr=hr((function(t){return null==t?ur:(or||(or=document.createElementNS("http://www.w3.org/2000/svg","g")),or.setAttribute("transform",t),(t=or.transform.baseVal.consolidate())?(t=t.matrix,lr(t.a,t.b,t.c,t.d,t.e,t.f)):ur)}),", ",")",")");function pr(t,e){var n,r;return function(){var i=er(this,t),a=i.tween;if(a!==n)for(var o=0,s=(r=n=a).length;o<s;++o)if(r[o].name===e){(r=r.slice()).splice(o,1);break}i.tween=r}}function yr(t,e,n){var r,i;if("function"!=typeof n)throw new Error;return function(){var a=er(this,t),o=a.tween;if(o!==r){i=(r=o).slice();for(var s={name:e,value:n},c=0,u=i.length;c<u;++c)if(i[c].name===e){i[c]=s;break}c===u&&i.push(s)}a.tween=i}}function gr(t,e,n){var r=t._id;return t.each((function(){var t=er(this,r);(t.value||(t.value={}))[e]=n.apply(this,arguments)})),function(t){return nr(t,r).value[e]}}var mr=function(t,e){var n;return("number"==typeof e?kn:e instanceof qe?dn:(n=qe(e))?(e=n,dn):An)(t,e)};function vr(t){return function(){this.removeAttribute(t)}}function br(t){return function(){this.removeAttributeNS(t.space,t.local)}}function xr(t,e,n){var r,i,a=n+"";return function(){var o=this.getAttribute(t);return o===a?null:o===r?i:i=e(r=o,n)}}function _r(t,e,n){var r,i,a=n+"";return function(){var o=this.getAttributeNS(t.space,t.local);return o===a?null:o===r?i:i=e(r=o,n)}}function kr(t,e,n){var r,i,a;return function(){var o,s,c=n(this);if(null!=c)return(o=this.getAttribute(t))===(s=c+"")?null:o===r&&s===i?a:(i=s,a=e(r=o,c));this.removeAttribute(t)}}function wr(t,e,n){var r,i,a;return function(){var o,s,c=n(this);if(null!=c)return(o=this.getAttributeNS(t.space,t.local))===(s=c+"")?null:o===r&&s===i?a:(i=s,a=e(r=o,c));this.removeAttributeNS(t.space,t.local)}}function Er(t,e){return function(n){this.setAttribute(t,e.call(this,n))}}function Tr(t,e){return function(n){this.setAttributeNS(t.space,t.local,e.call(this,n))}}function Cr(t,e){var n,r;function i(){var i=e.apply(this,arguments);return i!==r&&(n=(r=i)&&Tr(t,i)),n}return i._value=e,i}function Sr(t,e){var n,r;function i(){var i=e.apply(this,arguments);return i!==r&&(n=(r=i)&&Er(t,i)),n}return i._value=e,i}function Ar(t,e){return function(){tr(this,t).delay=+e.apply(this,arguments)}}function Mr(t,e){return e=+e,function(){tr(this,t).delay=e}}function Or(t,e){return function(){er(this,t).duration=+e.apply(this,arguments)}}function Nr(t,e){return e=+e,function(){er(this,t).duration=e}}function Br(t,e){if("function"!=typeof e)throw new Error;return function(){er(this,t).ease=e}}function Dr(t,e,n){var r,i,a=function(t){return(t+"").trim().split(/^|\s+/).every((function(t){var e=t.indexOf(".");return e>=0&&(t=t.slice(0,e)),!t||"start"===t}))}(e)?tr:er;return function(){var o=a(this,t),s=o.on;s!==r&&(i=(r=s).copy()).on(e,n),o.on=i}}var Lr=ke.prototype.constructor;function Ir(t){return function(){this.style.removeProperty(t)}}function Rr(t,e,n){return function(r){this.style.setProperty(t,e.call(this,r),n)}}function Fr(t,e,n){var r,i;function a(){var a=e.apply(this,arguments);return a!==i&&(r=(i=a)&&Rr(t,a,n)),r}return a._value=e,a}function Pr(t){return function(e){this.textContent=t.call(this,e)}}function jr(t){var e,n;function r(){var r=t.apply(this,arguments);return r!==n&&(e=(n=r)&&Pr(r)),e}return r._value=t,r}var Yr=0;function zr(t,e,n,r){this._groups=t,this._parents=e,this._name=n,this._id=r}function Ur(t){return ke().transition(t)}function $r(){return++Yr}var qr=ke.prototype;function Wr(t){return t*t*t}function Hr(t){return--t*t*t+1}function Vr(t){return((t*=2)<=1?t*t*t:(t-=2)*t*t+2)/2}zr.prototype=Ur.prototype={constructor:zr,select:function(t){var e=this._name,n=this._id;"function"!=typeof t&&(t=dt(t));for(var r=this._groups,i=r.length,a=new Array(i),o=0;o<i;++o)for(var s,c,u=r[o],l=u.length,h=a[o]=new Array(l),f=0;f<l;++f)(s=u[f])&&(c=t.call(s,s.__data__,f,u))&&("__data__"in s&&(c.__data__=s.__data__),h[f]=c,Jn(h[f],e,n,f,h,nr(s,n)));return new zr(a,this._parents,e,n)},selectAll:function(t){var e=this._name,n=this._id;"function"!=typeof t&&(t=yt(t));for(var r=this._groups,i=r.length,a=[],o=[],s=0;s<i;++s)for(var c,u=r[s],l=u.length,h=0;h<l;++h)if(c=u[h]){for(var f,d=t.call(c,c.__data__,h,u),p=nr(c,n),y=0,g=d.length;y<g;++y)(f=d[y])&&Jn(f,e,n,y,d,p);a.push(d),o.push(c)}return new zr(a,o,e,n)},filter:function(t){"function"!=typeof t&&(t=gt(t));for(var e=this._groups,n=e.length,r=new Array(n),i=0;i<n;++i)for(var a,o=e[i],s=o.length,c=r[i]=[],u=0;u<s;++u)(a=o[u])&&t.call(a,a.__data__,u,o)&&c.push(a);return new zr(r,this._parents,this._name,this._id)},merge:function(t){if(t._id!==this._id)throw new Error;for(var e=this._groups,n=t._groups,r=e.length,i=n.length,a=Math.min(r,i),o=new Array(r),s=0;s<a;++s)for(var c,u=e[s],l=n[s],h=u.length,f=o[s]=new Array(h),d=0;d<h;++d)(c=u[d]||l[d])&&(f[d]=c);for(;s<r;++s)o[s]=e[s];return new zr(o,this._parents,this._name,this._id)},selection:function(){return new Lr(this._groups,this._parents)},transition:function(){for(var t=this._name,e=this._id,n=$r(),r=this._groups,i=r.length,a=0;a<i;++a)for(var o,s=r[a],c=s.length,u=0;u<c;++u)if(o=s[u]){var l=nr(o,e);Jn(o,t,n,u,s,{time:l.time+l.delay+l.duration,delay:0,duration:l.duration,ease:l.ease})}return new zr(r,this._parents,t,n)},call:qr.call,nodes:qr.nodes,node:qr.node,size:qr.size,empty:qr.empty,each:qr.each,on:function(t,e){var n=this._id;return arguments.length<2?nr(this.node(),n).on.on(t):this.each(Dr(n,t,e))},attr:function(t,e){var n=Et(t),r="transform"===n?dr:mr;return this.attrTween(t,"function"==typeof e?(n.local?wr:kr)(n,r,gr(this,"attr."+t,e)):null==e?(n.local?br:vr)(n):(n.local?_r:xr)(n,r,e))},attrTween:function(t,e){var n="attr."+t;if(arguments.length<2)return(n=this.tween(n))&&n._value;if(null==e)return this.tween(n,null);if("function"!=typeof e)throw new Error;var r=Et(t);return this.tween(n,(r.local?Cr:Sr)(r,e))},style:function(t,e,n){var r="transform"==(t+="")?fr:mr;return null==e?this.styleTween(t,function(t,e){var n,r,i;return function(){var a=It(this,t),o=(this.style.removeProperty(t),It(this,t));return a===o?null:a===n&&o===r?i:i=e(n=a,r=o)}}(t,r)).on("end.style."+t,Ir(t)):"function"==typeof e?this.styleTween(t,function(t,e,n){var r,i,a;return function(){var o=It(this,t),s=n(this),c=s+"";return null==s&&(this.style.removeProperty(t),c=s=It(this,t)),o===c?null:o===r&&c===i?a:(i=c,a=e(r=o,s))}}(t,r,gr(this,"style."+t,e))).each(function(t,e){var n,r,i,a,o="style."+e,s="end."+o;return function(){var c=er(this,t),u=c.on,l=null==c.value[o]?a||(a=Ir(e)):void 0;u===n&&i===l||(r=(n=u).copy()).on(s,i=l),c.on=r}}(this._id,t)):this.styleTween(t,function(t,e,n){var r,i,a=n+"";return function(){var o=It(this,t);return o===a?null:o===r?i:i=e(r=o,n)}}(t,r,e),n).on("end.style."+t,null)},styleTween:function(t,e,n){var r="style."+(t+="");if(arguments.length<2)return(r=this.tween(r))&&r._value;if(null==e)return this.tween(r,null);if("function"!=typeof e)throw new Error;return this.tween(r,Fr(t,e,null==n?"":n))},text:function(t){return this.tween("text","function"==typeof t?function(t){return function(){var e=t(this);this.textContent=null==e?"":e}}(gr(this,"text",t)):function(t){return function(){this.textContent=t}}(null==t?"":t+""))},textTween:function(t){var e="text";if(arguments.length<1)return(e=this.tween(e))&&e._value;if(null==t)return this.tween(e,null);if("function"!=typeof t)throw new Error;return this.tween(e,jr(t))},remove:function(){return this.on("end.remove",(t=this._id,function(){var e=this.parentNode;for(var n in this.__transition)if(+n!==t)return;e&&e.removeChild(this)}));var t},tween:function(t,e){var n=this._id;if(t+="",arguments.length<2){for(var r,i=nr(this.node(),n).tween,a=0,o=i.length;a<o;++a)if((r=i[a]).name===t)return r.value;return null}return this.each((null==e?pr:yr)(n,t,e))},delay:function(t){var e=this._id;return arguments.length?this.each(("function"==typeof t?Ar:Mr)(e,t)):nr(this.node(),e).delay},duration:function(t){var e=this._id;return arguments.length?this.each(("function"==typeof t?Or:Nr)(e,t)):nr(this.node(),e).duration},ease:function(t){var e=this._id;return arguments.length?this.each(Br(e,t)):nr(this.node(),e).ease},end:function(){var t,e,n=this,r=n._id,i=n.size();return new Promise((function(a,o){var s={value:o},c={value:function(){0==--i&&a()}};n.each((function(){var n=er(this,r),i=n.on;i!==t&&((e=(t=i).copy())._.cancel.push(s),e._.interrupt.push(s),e._.end.push(c)),n.on=e}))}))}};var Gr={time:null,delay:0,duration:250,ease:Vr};function Xr(t,e){for(var n;!(n=t.__transition)||!(n=n[e]);)if(!(t=t.parentNode))return Gr.time=Un(),Gr;return n}ke.prototype.interrupt=function(t){return this.each((function(){sr(this,t)}))},ke.prototype.transition=function(t){var e,n;t instanceof zr?(e=t._id,t=t._name):(e=$r(),(n=Gr).time=Un(),t=null==t?null:t+"");for(var r=this._groups,i=r.length,a=0;a<i;++a)for(var o,s=r[a],c=s.length,u=0;u<c;++u)(o=s[u])&&Jn(o,t,e,u,s,n||Xr(o,e));return new zr(r,this._parents,t,e)};var Zr=[null],Kr=function(t,e){var n,r,i=t.__transition;if(i)for(r in e=null==e?null:e+"",i)if((n=i[r]).state>1&&n.name===e)return new zr([[t]],Zr,e,+r);return null},Qr=function(t){return function(){return t}},Jr=function(t,e,n){this.target=t,this.type=e,this.selection=n};function ti(){ue.stopImmediatePropagation()}var ei=function(){ue.preventDefault(),ue.stopImmediatePropagation()},ni={name:"drag"},ri={name:"space"},ii={name:"handle"},ai={name:"center"};function oi(t){return[+t[0],+t[1]]}function si(t){return[oi(t[0]),oi(t[1])]}function ci(t){return function(e){return Bn(e,ue.touches,t)}}var ui={name:"x",handles:["w","e"].map(mi),input:function(t,e){return null==t?null:[[+t[0],e[0][1]],[+t[1],e[1][1]]]},output:function(t){return t&&[t[0][0],t[1][0]]}},li={name:"y",handles:["n","s"].map(mi),input:function(t,e){return null==t?null:[[e[0][0],+t[0]],[e[1][0],+t[1]]]},output:function(t){return t&&[t[0][1],t[1][1]]}},hi={name:"xy",handles:["n","w","e","s","nw","ne","sw","se"].map(mi),input:function(t){return null==t?null:si(t)},output:function(t){return t}},fi={overlay:"crosshair",selection:"move",n:"ns-resize",e:"ew-resize",s:"ns-resize",w:"ew-resize",nw:"nwse-resize",ne:"nesw-resize",se:"nwse-resize",sw:"nesw-resize"},di={e:"w",w:"e",nw:"ne",ne:"nw",se:"sw",sw:"se"},pi={n:"s",s:"n",nw:"sw",ne:"se",se:"ne",sw:"nw"},yi={overlay:1,selection:1,n:null,e:1,s:null,w:-1,nw:-1,ne:1,se:1,sw:-1},gi={overlay:1,selection:1,n:-1,e:null,s:1,w:null,nw:-1,ne:-1,se:1,sw:1};function mi(t){return{type:t}}function vi(){return!ue.ctrlKey&&!ue.button}function bi(){var t=this.ownerSVGElement||this;return t.hasAttribute("viewBox")?[[(t=t.viewBox.baseVal).x,t.y],[t.x+t.width,t.y+t.height]]:[[0,0],[t.width.baseVal.value,t.height.baseVal.value]]}function xi(){return navigator.maxTouchPoints||"ontouchstart"in this}function _i(t){for(;!t.__brush;)if(!(t=t.parentNode))return;return t.__brush}function ki(t){return t[0][0]===t[1][0]||t[0][1]===t[1][1]}function wi(t){var e=t.__brush;return e?e.dim.output(e.selection):null}function Ei(){return Si(ui)}function Ti(){return Si(li)}var Ci=function(){return Si(hi)};function Si(t){var e,n=bi,r=vi,i=xi,a=!0,o=ht("start","brush","end"),s=6;function c(e){var n=e.property("__brush",y).selectAll(".overlay").data([mi("overlay")]);n.enter().append("rect").attr("class","overlay").attr("pointer-events","all").attr("cursor",fi.overlay).merge(n).each((function(){var t=_i(this).extent;we(this).attr("x",t[0][0]).attr("y",t[0][1]).attr("width",t[1][0]-t[0][0]).attr("height",t[1][1]-t[0][1])})),e.selectAll(".selection").data([mi("selection")]).enter().append("rect").attr("class","selection").attr("cursor",fi.selection).attr("fill","#777").attr("fill-opacity",.3).attr("stroke","#fff").attr("shape-rendering","crispEdges");var r=e.selectAll(".handle").data(t.handles,(function(t){return t.type}));r.exit().remove(),r.enter().append("rect").attr("class",(function(t){return"handle handle--"+t.type})).attr("cursor",(function(t){return fi[t.type]})),e.each(u).attr("fill","none").attr("pointer-events","all").on("mousedown.brush",f).filter(i).on("touchstart.brush",f).on("touchmove.brush",d).on("touchend.brush touchcancel.brush",p).style("touch-action","none").style("-webkit-tap-highlight-color","rgba(0,0,0,0)")}function u(){var t=we(this),e=_i(this).selection;e?(t.selectAll(".selection").style("display",null).attr("x",e[0][0]).attr("y",e[0][1]).attr("width",e[1][0]-e[0][0]).attr("height",e[1][1]-e[0][1]),t.selectAll(".handle").style("display",null).attr("x",(function(t){return"e"===t.type[t.type.length-1]?e[1][0]-s/2:e[0][0]-s/2})).attr("y",(function(t){return"s"===t.type[0]?e[1][1]-s/2:e[0][1]-s/2})).attr("width",(function(t){return"n"===t.type||"s"===t.type?e[1][0]-e[0][0]+s:s})).attr("height",(function(t){return"e"===t.type||"w"===t.type?e[1][1]-e[0][1]+s:s}))):t.selectAll(".selection,.handle").style("display","none").attr("x",null).attr("y",null).attr("width",null).attr("height",null)}function l(t,e,n){var r=t.__brush.emitter;return!r||n&&r.clean?new h(t,e,n):r}function h(t,e,n){this.that=t,this.args=e,this.state=t.__brush,this.active=0,this.clean=n}function f(){if((!e||ue.touches)&&r.apply(this,arguments)){var n,i,o,s,c,h,f,d,p,y,g,m=this,v=ue.target.__data__.type,b="selection"===(a&&ue.metaKey?v="overlay":v)?ni:a&&ue.altKey?ai:ii,x=t===li?null:yi[v],_=t===ui?null:gi[v],k=_i(m),w=k.extent,E=k.selection,T=w[0][0],C=w[0][1],S=w[1][0],A=w[1][1],M=0,O=0,N=x&&_&&a&&ue.shiftKey,B=ue.touches?ci(ue.changedTouches[0].identifier):Dn,D=B(m),L=D,I=l(m,arguments,!0).beforestart();"overlay"===v?(E&&(p=!0),k.selection=E=[[n=t===li?T:D[0],o=t===ui?C:D[1]],[c=t===li?S:n,f=t===ui?A:o]]):(n=E[0][0],o=E[0][1],c=E[1][0],f=E[1][1]),i=n,s=o,h=c,d=f;var R=we(m).attr("pointer-events","none"),F=R.selectAll(".overlay").attr("cursor",fi[v]);if(ue.touches)I.moved=j,I.ended=z;else{var P=we(ue.view).on("mousemove.brush",j,!0).on("mouseup.brush",z,!0);a&&P.on("keydown.brush",U,!0).on("keyup.brush",$,!0),Ce(ue.view)}ti(),sr(m),u.call(m),I.start()}function j(){var t=B(m);!N||y||g||(Math.abs(t[0]-L[0])>Math.abs(t[1]-L[1])?g=!0:y=!0),L=t,p=!0,ei(),Y()}function Y(){var t;switch(M=L[0]-D[0],O=L[1]-D[1],b){case ri:case ni:x&&(M=Math.max(T-n,Math.min(S-c,M)),i=n+M,h=c+M),_&&(O=Math.max(C-o,Math.min(A-f,O)),s=o+O,d=f+O);break;case ii:x<0?(M=Math.max(T-n,Math.min(S-n,M)),i=n+M,h=c):x>0&&(M=Math.max(T-c,Math.min(S-c,M)),i=n,h=c+M),_<0?(O=Math.max(C-o,Math.min(A-o,O)),s=o+O,d=f):_>0&&(O=Math.max(C-f,Math.min(A-f,O)),s=o,d=f+O);break;case ai:x&&(i=Math.max(T,Math.min(S,n-M*x)),h=Math.max(T,Math.min(S,c+M*x))),_&&(s=Math.max(C,Math.min(A,o-O*_)),d=Math.max(C,Math.min(A,f+O*_)))}h<i&&(x*=-1,t=n,n=c,c=t,t=i,i=h,h=t,v in di&&F.attr("cursor",fi[v=di[v]])),d<s&&(_*=-1,t=o,o=f,f=t,t=s,s=d,d=t,v in pi&&F.attr("cursor",fi[v=pi[v]])),k.selection&&(E=k.selection),y&&(i=E[0][0],h=E[1][0]),g&&(s=E[0][1],d=E[1][1]),E[0][0]===i&&E[0][1]===s&&E[1][0]===h&&E[1][1]===d||(k.selection=[[i,s],[h,d]],u.call(m),I.brush())}function z(){if(ti(),ue.touches){if(ue.touches.length)return;e&&clearTimeout(e),e=setTimeout((function(){e=null}),500)}else Se(ue.view,p),P.on("keydown.brush keyup.brush mousemove.brush mouseup.brush",null);R.attr("pointer-events","all"),F.attr("cursor",fi.overlay),k.selection&&(E=k.selection),ki(E)&&(k.selection=null,u.call(m)),I.end()}function U(){switch(ue.keyCode){case 16:N=x&&_;break;case 18:b===ii&&(x&&(c=h-M*x,n=i+M*x),_&&(f=d-O*_,o=s+O*_),b=ai,Y());break;case 32:b!==ii&&b!==ai||(x<0?c=h-M:x>0&&(n=i-M),_<0?f=d-O:_>0&&(o=s-O),b=ri,F.attr("cursor",fi.selection),Y());break;default:return}ei()}function $(){switch(ue.keyCode){case 16:N&&(y=g=N=!1,Y());break;case 18:b===ai&&(x<0?c=h:x>0&&(n=i),_<0?f=d:_>0&&(o=s),b=ii,Y());break;case 32:b===ri&&(ue.altKey?(x&&(c=h-M*x,n=i+M*x),_&&(f=d-O*_,o=s+O*_),b=ai):(x<0?c=h:x>0&&(n=i),_<0?f=d:_>0&&(o=s),b=ii),F.attr("cursor",fi[v]),Y());break;default:return}ei()}}function d(){l(this,arguments).moved()}function p(){l(this,arguments).ended()}function y(){var e=this.__brush||{selection:null};return e.extent=si(n.apply(this,arguments)),e.dim=t,e}return c.move=function(e,n){e.selection?e.on("start.brush",(function(){l(this,arguments).beforestart().start()})).on("interrupt.brush end.brush",(function(){l(this,arguments).end()})).tween("brush",(function(){var e=this,r=e.__brush,i=l(e,arguments),a=r.selection,o=t.input("function"==typeof n?n.apply(this,arguments):n,r.extent),s=Mn(a,o);function c(t){r.selection=1===t&&null===o?null:s(t),u.call(e),i.brush()}return null!==a&&null!==o?c:c(1)})):e.each((function(){var e=this,r=arguments,i=e.__brush,a=t.input("function"==typeof n?n.apply(e,r):n,i.extent),o=l(e,r).beforestart();sr(e),i.selection=null===a?null:a,u.call(e),o.start().brush().end()}))},c.clear=function(t){c.move(t,null)},h.prototype={beforestart:function(){return 1==++this.active&&(this.state.emitter=this,this.starting=!0),this},start:function(){return this.starting?(this.starting=!1,this.emit("start")):this.emit("brush"),this},brush:function(){return this.emit("brush"),this},end:function(){return 0==--this.active&&(delete this.state.emitter,this.emit("end")),this},emit:function(e){ye(new Jr(c,e,t.output(this.state.selection)),o.apply,o,[e,this.that,this.args])}},c.extent=function(t){return arguments.length?(n="function"==typeof t?t:Qr(si(t)),c):n},c.filter=function(t){return arguments.length?(r="function"==typeof t?t:Qr(!!t),c):r},c.touchable=function(t){return arguments.length?(i="function"==typeof t?t:Qr(!!t),c):i},c.handleSize=function(t){return arguments.length?(s=+t,c):s},c.keyModifiers=function(t){return arguments.length?(a=!!t,c):a},c.on=function(){var t=o.on.apply(o,arguments);return t===o?c:t},c}var Ai=Math.cos,Mi=Math.sin,Oi=Math.PI,Ni=Oi/2,Bi=2*Oi,Di=Math.max;function Li(t){return function(e,n){return t(e.source.value+e.target.value,n.source.value+n.target.value)}}var Ii=function(){var t=0,e=null,n=null,r=null;function i(i){var a,o,s,c,u,l,h=i.length,f=[],d=w(h),p=[],y=[],g=y.groups=new Array(h),m=new Array(h*h);for(a=0,u=-1;++u<h;){for(o=0,l=-1;++l<h;)o+=i[u][l];f.push(o),p.push(w(h)),a+=o}for(e&&d.sort((function(t,n){return e(f[t],f[n])})),n&&p.forEach((function(t,e){t.sort((function(t,r){return n(i[e][t],i[e][r])}))})),c=(a=Di(0,Bi-t*h)/a)?t:Bi/h,o=0,u=-1;++u<h;){for(s=o,l=-1;++l<h;){var v=d[u],b=p[v][l],x=i[v][b],_=o,k=o+=x*a;m[b*h+v]={index:v,subindex:b,startAngle:_,endAngle:k,value:x}}g[v]={index:v,startAngle:s,endAngle:o,value:f[v]},o+=c}for(u=-1;++u<h;)for(l=u-1;++l<h;){var E=m[l*h+u],T=m[u*h+l];(E.value||T.value)&&y.push(E.value<T.value?{source:T,target:E}:{source:E,target:T})}return r?y.sort(r):y}return i.padAngle=function(e){return arguments.length?(t=Di(0,e),i):t},i.sortGroups=function(t){return arguments.length?(e=t,i):e},i.sortSubgroups=function(t){return arguments.length?(n=t,i):n},i.sortChords=function(t){return arguments.length?(null==t?r=null:(r=Li(t))._=t,i):r&&r._},i},Ri=Array.prototype.slice,Fi=function(t){return function(){return t}},Pi=Math.PI,ji=2*Pi,Yi=ji-1e-6;function zi(){this._x0=this._y0=this._x1=this._y1=null,this._=""}function Ui(){return new zi}zi.prototype=Ui.prototype={constructor:zi,moveTo:function(t,e){this._+="M"+(this._x0=this._x1=+t)+","+(this._y0=this._y1=+e)},closePath:function(){null!==this._x1&&(this._x1=this._x0,this._y1=this._y0,this._+="Z")},lineTo:function(t,e){this._+="L"+(this._x1=+t)+","+(this._y1=+e)},quadraticCurveTo:function(t,e,n,r){this._+="Q"+ +t+","+ +e+","+(this._x1=+n)+","+(this._y1=+r)},bezierCurveTo:function(t,e,n,r,i,a){this._+="C"+ +t+","+ +e+","+ +n+","+ +r+","+(this._x1=+i)+","+(this._y1=+a)},arcTo:function(t,e,n,r,i){t=+t,e=+e,n=+n,r=+r,i=+i;var a=this._x1,o=this._y1,s=n-t,c=r-e,u=a-t,l=o-e,h=u*u+l*l;if(i<0)throw new Error("negative radius: "+i);if(null===this._x1)this._+="M"+(this._x1=t)+","+(this._y1=e);else if(h>1e-6)if(Math.abs(l*s-c*u)>1e-6&&i){var f=n-a,d=r-o,p=s*s+c*c,y=f*f+d*d,g=Math.sqrt(p),m=Math.sqrt(h),v=i*Math.tan((Pi-Math.acos((p+h-y)/(2*g*m)))/2),b=v/m,x=v/g;Math.abs(b-1)>1e-6&&(this._+="L"+(t+b*u)+","+(e+b*l)),this._+="A"+i+","+i+",0,0,"+ +(l*f>u*d)+","+(this._x1=t+x*s)+","+(this._y1=e+x*c)}else this._+="L"+(this._x1=t)+","+(this._y1=e);else;},arc:function(t,e,n,r,i,a){t=+t,e=+e,a=!!a;var o=(n=+n)*Math.cos(r),s=n*Math.sin(r),c=t+o,u=e+s,l=1^a,h=a?r-i:i-r;if(n<0)throw new Error("negative radius: "+n);null===this._x1?this._+="M"+c+","+u:(Math.abs(this._x1-c)>1e-6||Math.abs(this._y1-u)>1e-6)&&(this._+="L"+c+","+u),n&&(h<0&&(h=h%ji+ji),h>Yi?this._+="A"+n+","+n+",0,1,"+l+","+(t-o)+","+(e-s)+"A"+n+","+n+",0,1,"+l+","+(this._x1=c)+","+(this._y1=u):h>1e-6&&(this._+="A"+n+","+n+",0,"+ +(h>=Pi)+","+l+","+(this._x1=t+n*Math.cos(i))+","+(this._y1=e+n*Math.sin(i))))},rect:function(t,e,n,r){this._+="M"+(this._x0=this._x1=+t)+","+(this._y0=this._y1=+e)+"h"+ +n+"v"+ +r+"h"+-n+"Z"},toString:function(){return this._}};var $i=Ui;function qi(t){return t.source}function Wi(t){return t.target}function Hi(t){return t.radius}function Vi(t){return t.startAngle}function Gi(t){return t.endAngle}var Xi=function(){var t=qi,e=Wi,n=Hi,r=Vi,i=Gi,a=null;function o(){var o,s=Ri.call(arguments),c=t.apply(this,s),u=e.apply(this,s),l=+n.apply(this,(s[0]=c,s)),h=r.apply(this,s)-Ni,f=i.apply(this,s)-Ni,d=l*Ai(h),p=l*Mi(h),y=+n.apply(this,(s[0]=u,s)),g=r.apply(this,s)-Ni,m=i.apply(this,s)-Ni;if(a||(a=o=$i()),a.moveTo(d,p),a.arc(0,0,l,h,f),h===g&&f===m||(a.quadraticCurveTo(0,0,y*Ai(g),y*Mi(g)),a.arc(0,0,y,g,m)),a.quadraticCurveTo(0,0,d,p),a.closePath(),o)return a=null,o+""||null}return o.radius=function(t){return arguments.length?(n="function"==typeof t?t:Fi(+t),o):n},o.startAngle=function(t){return arguments.length?(r="function"==typeof t?t:Fi(+t),o):r},o.endAngle=function(t){return arguments.length?(i="function"==typeof t?t:Fi(+t),o):i},o.source=function(e){return arguments.length?(t=e,o):t},o.target=function(t){return arguments.length?(e=t,o):e},o.context=function(t){return arguments.length?(a=null==t?null:t,o):a},o};function Zi(){}function Ki(t,e){var n=new Zi;if(t instanceof Zi)t.each((function(t,e){n.set(e,t)}));else if(Array.isArray(t)){var r,i=-1,a=t.length;if(null==e)for(;++i<a;)n.set(i,t[i]);else for(;++i<a;)n.set(e(r=t[i],i,t),r)}else if(t)for(var o in t)n.set(o,t[o]);return n}Zi.prototype=Ki.prototype={constructor:Zi,has:function(t){return"$"+t in this},get:function(t){return this["$"+t]},set:function(t,e){return this["$"+t]=e,this},remove:function(t){var e="$"+t;return e in this&&delete this[e]},clear:function(){for(var t in this)"$"===t[0]&&delete this[t]},keys:function(){var t=[];for(var e in this)"$"===e[0]&&t.push(e.slice(1));return t},values:function(){var t=[];for(var e in this)"$"===e[0]&&t.push(this[e]);return t},entries:function(){var t=[];for(var e in this)"$"===e[0]&&t.push({key:e.slice(1),value:this[e]});return t},size:function(){var t=0;for(var e in this)"$"===e[0]&&++t;return t},empty:function(){for(var t in this)if("$"===t[0])return!1;return!0},each:function(t){for(var e in this)"$"===e[0]&&t(this[e],e.slice(1),this)}};var Qi=Ki,Ji=function(){var t,e,n,r=[],i=[];function a(n,i,o,s){if(i>=r.length)return null!=t&&n.sort(t),null!=e?e(n):n;for(var c,u,l,h=-1,f=n.length,d=r[i++],p=Qi(),y=o();++h<f;)(l=p.get(c=d(u=n[h])+""))?l.push(u):p.set(c,[u]);return p.each((function(t,e){s(y,e,a(t,i,o,s))})),y}return n={object:function(t){return a(t,0,ta,ea)},map:function(t){return a(t,0,na,ra)},entries:function(t){return function t(n,a){if(++a>r.length)return n;var o,s=i[a-1];return null!=e&&a>=r.length?o=n.entries():(o=[],n.each((function(e,n){o.push({key:n,values:t(e,a)})}))),null!=s?o.sort((function(t,e){return s(t.key,e.key)})):o}(a(t,0,na,ra),0)},key:function(t){return r.push(t),n},sortKeys:function(t){return i[r.length-1]=t,n},sortValues:function(e){return t=e,n},rollup:function(t){return e=t,n}}};function ta(){return{}}function ea(t,e,n){t[e]=n}function na(){return Qi()}function ra(t,e,n){t.set(e,n)}function ia(){}var aa=Qi.prototype;function oa(t,e){var n=new ia;if(t instanceof ia)t.each((function(t){n.add(t)}));else if(t){var r=-1,i=t.length;if(null==e)for(;++r<i;)n.add(t[r]);else for(;++r<i;)n.add(e(t[r],r,t))}return n}ia.prototype=oa.prototype={constructor:ia,has:aa.has,add:function(t){return this["$"+(t+="")]=t,this},remove:aa.remove,clear:aa.clear,values:aa.keys,size:aa.size,empty:aa.empty,each:aa.each};var sa=oa,ca=function(t){var e=[];for(var n in t)e.push(n);return e},ua=function(t){var e=[];for(var n in t)e.push(t[n]);return e},la=function(t){var e=[];for(var n in t)e.push({key:n,value:t[n]});return e},ha=Math.PI/180,fa=180/Math.PI;function da(t){if(t instanceof ga)return new ga(t.l,t.a,t.b,t.opacity);if(t instanceof Ea)return Ta(t);t instanceof Xe||(t=Ve(t));var e,n,r=xa(t.r),i=xa(t.g),a=xa(t.b),o=ma((.2225045*r+.7168786*i+.0606169*a)/1);return r===i&&i===a?e=n=o:(e=ma((.4360747*r+.3850649*i+.1430804*a)/.96422),n=ma((.0139322*r+.0971045*i+.7141733*a)/.82521)),new ga(116*o-16,500*(e-o),200*(o-n),t.opacity)}function pa(t,e){return new ga(t,0,0,null==e?1:e)}function ya(t,e,n,r){return 1===arguments.length?da(t):new ga(t,e,n,null==r?1:r)}function ga(t,e,n,r){this.l=+t,this.a=+e,this.b=+n,this.opacity=+r}function ma(t){return t>6/29*(6/29)*(6/29)?Math.pow(t,1/3):t/(6/29*3*(6/29))+4/29}function va(t){return t>6/29?t*t*t:6/29*3*(6/29)*(t-4/29)}function ba(t){return 255*(t<=.0031308?12.92*t:1.055*Math.pow(t,1/2.4)-.055)}function xa(t){return(t/=255)<=.04045?t/12.92:Math.pow((t+.055)/1.055,2.4)}function _a(t){if(t instanceof Ea)return new Ea(t.h,t.c,t.l,t.opacity);if(t instanceof ga||(t=da(t)),0===t.a&&0===t.b)return new Ea(NaN,0<t.l&&t.l<100?0:NaN,t.l,t.opacity);var e=Math.atan2(t.b,t.a)*fa;return new Ea(e<0?e+360:e,Math.sqrt(t.a*t.a+t.b*t.b),t.l,t.opacity)}function ka(t,e,n,r){return 1===arguments.length?_a(t):new Ea(n,e,t,null==r?1:r)}function wa(t,e,n,r){return 1===arguments.length?_a(t):new Ea(t,e,n,null==r?1:r)}function Ea(t,e,n,r){this.h=+t,this.c=+e,this.l=+n,this.opacity=+r}function Ta(t){if(isNaN(t.h))return new ga(t.l,0,0,t.opacity);var e=t.h*ha;return new ga(t.l,Math.cos(e)*t.c,Math.sin(e)*t.c,t.opacity)}Ae(ga,ya,Me(Oe,{brighter:function(t){return new ga(this.l+18*(null==t?1:t),this.a,this.b,this.opacity)},darker:function(t){return new ga(this.l-18*(null==t?1:t),this.a,this.b,this.opacity)},rgb:function(){var t=(this.l+16)/116,e=isNaN(this.a)?t:t+this.a/500,n=isNaN(this.b)?t:t-this.b/200;return new Xe(ba(3.1338561*(e=.96422*va(e))-1.6168667*(t=1*va(t))-.4906146*(n=.82521*va(n))),ba(-.9787684*e+1.9161415*t+.033454*n),ba(.0719453*e-.2289914*t+1.4052427*n),this.opacity)}})),Ae(Ea,wa,Me(Oe,{brighter:function(t){return new Ea(this.h,this.c,this.l+18*(null==t?1:t),this.opacity)},darker:function(t){return new Ea(this.h,this.c,this.l-18*(null==t?1:t),this.opacity)},rgb:function(){return Ta(this).rgb()}}));var Ca=-.29227,Sa=-1.7884503806,Aa=3.5172982438,Ma=-.6557636667999999;function Oa(t){if(t instanceof Ba)return new Ba(t.h,t.s,t.l,t.opacity);t instanceof Xe||(t=Ve(t));var e=t.r/255,n=t.g/255,r=t.b/255,i=(Ma*r+Sa*e-Aa*n)/(Ma+Sa-Aa),a=r-i,o=(1.97294*(n-i)-Ca*a)/-.90649,s=Math.sqrt(o*o+a*a)/(1.97294*i*(1-i)),c=s?Math.atan2(o,a)*fa-120:NaN;return new Ba(c<0?c+360:c,s,i,t.opacity)}function Na(t,e,n,r){return 1===arguments.length?Oa(t):new Ba(t,e,n,null==r?1:r)}function Ba(t,e,n,r){this.h=+t,this.s=+e,this.l=+n,this.opacity=+r}Ae(Ba,Na,Me(Oe,{brighter:function(t){return t=null==t?1/.7:Math.pow(1/.7,t),new Ba(this.h,this.s,this.l*t,this.opacity)},darker:function(t){return t=null==t?.7:Math.pow(.7,t),new Ba(this.h,this.s,this.l*t,this.opacity)},rgb:function(){var t=isNaN(this.h)?0:(this.h+120)*ha,e=+this.l,n=isNaN(this.s)?0:this.s*e*(1-e),r=Math.cos(t),i=Math.sin(t);return new Xe(255*(e+n*(-.14861*r+1.78277*i)),255*(e+n*(Ca*r+-.90649*i)),255*(e+n*(1.97294*r)),this.opacity)}}));var Da=Array.prototype.slice,La=function(t,e){return t-e},Ia=function(t){return function(){return t}},Ra=function(t,e){for(var n,r=-1,i=e.length;++r<i;)if(n=Fa(t,e[r]))return n;return 0};function Fa(t,e){for(var n=e[0],r=e[1],i=-1,a=0,o=t.length,s=o-1;a<o;s=a++){var c=t[a],u=c[0],l=c[1],h=t[s],f=h[0],d=h[1];if(Pa(c,h,e))return 0;l>r!=d>r&&n<(f-u)*(r-l)/(d-l)+u&&(i=-i)}return i}function Pa(t,e,n){var r,i,a,o;return function(t,e,n){return(e[0]-t[0])*(n[1]-t[1])==(n[0]-t[0])*(e[1]-t[1])}(t,e,n)&&(i=t[r=+(t[0]===e[0])],a=n[r],o=e[r],i<=a&&a<=o||o<=a&&a<=i)}var ja=function(){},Ya=[[],[[[1,1.5],[.5,1]]],[[[1.5,1],[1,1.5]]],[[[1.5,1],[.5,1]]],[[[1,.5],[1.5,1]]],[[[1,1.5],[.5,1]],[[1,.5],[1.5,1]]],[[[1,.5],[1,1.5]]],[[[1,.5],[.5,1]]],[[[.5,1],[1,.5]]],[[[1,1.5],[1,.5]]],[[[.5,1],[1,.5]],[[1.5,1],[1,1.5]]],[[[1.5,1],[1,.5]]],[[[.5,1],[1.5,1]]],[[[1,1.5],[1.5,1]]],[[[.5,1],[1,1.5]]],[]],za=function(){var t=1,e=1,n=O,r=s;function i(t){var e=n(t);if(Array.isArray(e))e=e.slice().sort(La);else{var r=m(t),i=r[0],o=r[1];e=M(i,o,e),e=w(Math.floor(i/e)*e,Math.floor(o/e)*e,e)}return e.map((function(e){return a(t,e)}))}function a(n,i){var a=[],s=[];return function(n,r,i){var a,s,c,u,l,h,f=new Array,d=new Array;a=s=-1,u=n[0]>=r,Ya[u<<1].forEach(p);for(;++a<t-1;)c=u,u=n[a+1]>=r,Ya[c|u<<1].forEach(p);Ya[u<<0].forEach(p);for(;++s<e-1;){for(a=-1,u=n[s*t+t]>=r,l=n[s*t]>=r,Ya[u<<1|l<<2].forEach(p);++a<t-1;)c=u,u=n[s*t+t+a+1]>=r,h=l,l=n[s*t+a+1]>=r,Ya[c|u<<1|l<<2|h<<3].forEach(p);Ya[u|l<<3].forEach(p)}a=-1,l=n[s*t]>=r,Ya[l<<2].forEach(p);for(;++a<t-1;)h=l,l=n[s*t+a+1]>=r,Ya[l<<2|h<<3].forEach(p);function p(t){var e,n,r=[t[0][0]+a,t[0][1]+s],c=[t[1][0]+a,t[1][1]+s],u=o(r),l=o(c);(e=d[u])?(n=f[l])?(delete d[e.end],delete f[n.start],e===n?(e.ring.push(c),i(e.ring)):f[e.start]=d[n.end]={start:e.start,end:n.end,ring:e.ring.concat(n.ring)}):(delete d[e.end],e.ring.push(c),d[e.end=l]=e):(e=f[l])?(n=d[u])?(delete f[e.start],delete d[n.end],e===n?(e.ring.push(c),i(e.ring)):f[n.start]=d[e.end]={start:n.start,end:e.end,ring:n.ring.concat(e.ring)}):(delete f[e.start],e.ring.unshift(r),f[e.start=u]=e):f[u]=d[l]={start:u,end:l,ring:[r,c]}}Ya[l<<3].forEach(p)}(n,i,(function(t){r(t,n,i),function(t){for(var e=0,n=t.length,r=t[n-1][1]*t[0][0]-t[n-1][0]*t[0][1];++e<n;)r+=t[e-1][1]*t[e][0]-t[e-1][0]*t[e][1];return r}(t)>0?a.push([t]):s.push(t)})),s.forEach((function(t){for(var e,n=0,r=a.length;n<r;++n)if(-1!==Ra((e=a[n])[0],t))return void e.push(t)})),{type:"MultiPolygon",value:i,coordinates:a}}function o(e){return 2*e[0]+e[1]*(t+1)*4}function s(n,r,i){n.forEach((function(n){var a,o=n[0],s=n[1],c=0|o,u=0|s,l=r[u*t+c];o>0&&o<t&&c===o&&(a=r[u*t+c-1],n[0]=o+(i-a)/(l-a)-.5),s>0&&s<e&&u===s&&(a=r[(u-1)*t+c],n[1]=s+(i-a)/(l-a)-.5)}))}return i.contour=a,i.size=function(n){if(!arguments.length)return[t,e];var r=Math.ceil(n[0]),a=Math.ceil(n[1]);if(!(r>0&&a>0))throw new Error("invalid size");return t=r,e=a,i},i.thresholds=function(t){return arguments.length?(n="function"==typeof t?t:Array.isArray(t)?Ia(Da.call(t)):Ia(t),i):n},i.smooth=function(t){return arguments.length?(r=t?s:ja,i):r===s},i};function Ua(t,e,n){for(var r=t.width,i=t.height,a=1+(n<<1),o=0;o<i;++o)for(var s=0,c=0;s<r+n;++s)s<r&&(c+=t.data[s+o*r]),s>=n&&(s>=a&&(c-=t.data[s-a+o*r]),e.data[s-n+o*r]=c/Math.min(s+1,r-1+a-s,a))}function $a(t,e,n){for(var r=t.width,i=t.height,a=1+(n<<1),o=0;o<r;++o)for(var s=0,c=0;s<i+n;++s)s<i&&(c+=t.data[o+s*r]),s>=n&&(s>=a&&(c-=t.data[o+(s-a)*r]),e.data[o+(s-n)*r]=c/Math.min(s+1,i-1+a-s,a))}function qa(t){return t[0]}function Wa(t){return t[1]}function Ha(){return 1}var Va=function(){var t=qa,e=Wa,n=Ha,r=960,i=500,a=20,o=2,s=3*a,c=r+2*s>>o,u=i+2*s>>o,l=Ia(20);function h(r){var i=new Float32Array(c*u),h=new Float32Array(c*u);r.forEach((function(r,a,l){var h=+t(r,a,l)+s>>o,f=+e(r,a,l)+s>>o,d=+n(r,a,l);h>=0&&h<c&&f>=0&&f<u&&(i[h+f*c]+=d)})),Ua({width:c,height:u,data:i},{width:c,height:u,data:h},a>>o),$a({width:c,height:u,data:h},{width:c,height:u,data:i},a>>o),Ua({width:c,height:u,data:i},{width:c,height:u,data:h},a>>o),$a({width:c,height:u,data:h},{width:c,height:u,data:i},a>>o),Ua({width:c,height:u,data:i},{width:c,height:u,data:h},a>>o),$a({width:c,height:u,data:h},{width:c,height:u,data:i},a>>o);var d=l(i);if(!Array.isArray(d)){var p=I(i);d=M(0,p,d),(d=w(0,Math.floor(p/d)*d,d)).shift()}return za().thresholds(d).size([c,u])(i).map(f)}function f(t){return t.value*=Math.pow(2,-2*o),t.coordinates.forEach(d),t}function d(t){t.forEach(p)}function p(t){t.forEach(y)}function y(t){t[0]=t[0]*Math.pow(2,o)-s,t[1]=t[1]*Math.pow(2,o)-s}function g(){return c=r+2*(s=3*a)>>o,u=i+2*s>>o,h}return h.x=function(e){return arguments.length?(t="function"==typeof e?e:Ia(+e),h):t},h.y=function(t){return arguments.length?(e="function"==typeof t?t:Ia(+t),h):e},h.weight=function(t){return arguments.length?(n="function"==typeof t?t:Ia(+t),h):n},h.size=function(t){if(!arguments.length)return[r,i];var e=Math.ceil(t[0]),n=Math.ceil(t[1]);if(!(e>=0||e>=0))throw new Error("invalid size");return r=e,i=n,g()},h.cellSize=function(t){if(!arguments.length)return 1<<o;if(!((t=+t)>=1))throw new Error("invalid cell size");return o=Math.floor(Math.log(t)/Math.LN2),g()},h.thresholds=function(t){return arguments.length?(l="function"==typeof t?t:Array.isArray(t)?Ia(Da.call(t)):Ia(t),h):l},h.bandwidth=function(t){if(!arguments.length)return Math.sqrt(a*(a+1));if(!((t=+t)>=0))throw new Error("invalid bandwidth");return a=Math.round((Math.sqrt(4*t*t+1)-1)/2),g()},h},Ga=function(t){return function(){return t}};function Xa(t,e,n,r,i,a,o,s,c,u){this.target=t,this.type=e,this.subject=n,this.identifier=r,this.active=i,this.x=a,this.y=o,this.dx=s,this.dy=c,this._=u}function Za(){return!ue.ctrlKey&&!ue.button}function Ka(){return this.parentNode}function Qa(t){return null==t?{x:ue.x,y:ue.y}:t}function Ja(){return navigator.maxTouchPoints||"ontouchstart"in this}Xa.prototype.on=function(){var t=this._.on.apply(this._,arguments);return t===this._?this:t};var to=function(){var t,e,n,r,i=Za,a=Ka,o=Qa,s=Ja,c={},u=ht("start","drag","end"),l=0,h=0;function f(t){t.on("mousedown.drag",d).filter(s).on("touchstart.drag",g).on("touchmove.drag",m).on("touchend.drag touchcancel.drag",v).style("touch-action","none").style("-webkit-tap-highlight-color","rgba(0,0,0,0)")}function d(){if(!r&&i.apply(this,arguments)){var o=b("mouse",a.apply(this,arguments),Dn,this,arguments);o&&(we(ue.view).on("mousemove.drag",p,!0).on("mouseup.drag",y,!0),Ce(ue.view),Ee(),n=!1,t=ue.clientX,e=ue.clientY,o("start"))}}function p(){if(Te(),!n){var r=ue.clientX-t,i=ue.clientY-e;n=r*r+i*i>h}c.mouse("drag")}function y(){we(ue.view).on("mousemove.drag mouseup.drag",null),Se(ue.view,n),Te(),c.mouse("end")}function g(){if(i.apply(this,arguments)){var t,e,n=ue.changedTouches,r=a.apply(this,arguments),o=n.length;for(t=0;t<o;++t)(e=b(n[t].identifier,r,Bn,this,arguments))&&(Ee(),e("start"))}}function m(){var t,e,n=ue.changedTouches,r=n.length;for(t=0;t<r;++t)(e=c[n[t].identifier])&&(Te(),e("drag"))}function v(){var t,e,n=ue.changedTouches,i=n.length;for(r&&clearTimeout(r),r=setTimeout((function(){r=null}),500),t=0;t<i;++t)(e=c[n[t].identifier])&&(Ee(),e("end"))}function b(t,e,n,r,i){var a,s,h,d=n(e,t),p=u.copy();if(ye(new Xa(f,"beforestart",a,t,l,d[0],d[1],0,0,p),(function(){return null!=(ue.subject=a=o.apply(r,i))&&(s=a.x-d[0]||0,h=a.y-d[1]||0,!0)})))return function o(u){var y,g=d;switch(u){case"start":c[t]=o,y=l++;break;case"end":delete c[t],--l;case"drag":d=n(e,t),y=l}ye(new Xa(f,u,a,t,y,d[0]+s,d[1]+h,d[0]-g[0],d[1]-g[1],p),p.apply,p,[u,r,i])}}return f.filter=function(t){return arguments.length?(i="function"==typeof t?t:Ga(!!t),f):i},f.container=function(t){return arguments.length?(a="function"==typeof t?t:Ga(t),f):a},f.subject=function(t){return arguments.length?(o="function"==typeof t?t:Ga(t),f):o},f.touchable=function(t){return arguments.length?(s="function"==typeof t?t:Ga(!!t),f):s},f.on=function(){var t=u.on.apply(u,arguments);return t===u?f:t},f.clickDistance=function(t){return arguments.length?(h=(t=+t)*t,f):Math.sqrt(h)},f},eo={},no={};function ro(t){return new Function("d","return {"+t.map((function(t,e){return JSON.stringify(t)+": d["+e+'] || ""'})).join(",")+"}")}function io(t){var e=Object.create(null),n=[];return t.forEach((function(t){for(var r in t)r in e||n.push(e[r]=r)})),n}function ao(t,e){var n=t+"",r=n.length;return r<e?new Array(e-r+1).join(0)+n:n}function oo(t){var e,n=t.getUTCHours(),r=t.getUTCMinutes(),i=t.getUTCSeconds(),a=t.getUTCMilliseconds();return isNaN(t)?"Invalid Date":((e=t.getUTCFullYear())<0?"-"+ao(-e,6):e>9999?"+"+ao(e,6):ao(e,4))+"-"+ao(t.getUTCMonth()+1,2)+"-"+ao(t.getUTCDate(),2)+(a?"T"+ao(n,2)+":"+ao(r,2)+":"+ao(i,2)+"."+ao(a,3)+"Z":i?"T"+ao(n,2)+":"+ao(r,2)+":"+ao(i,2)+"Z":r||n?"T"+ao(n,2)+":"+ao(r,2)+"Z":"")}var so=function(t){var e=new RegExp('["'+t+"\n\r]"),n=t.charCodeAt(0);function r(t,e){var r,i=[],a=t.length,o=0,s=0,c=a<=0,u=!1;function l(){if(c)return no;if(u)return u=!1,eo;var e,r,i=o;if(34===t.charCodeAt(i)){for(;o++<a&&34!==t.charCodeAt(o)||34===t.charCodeAt(++o););return(e=o)>=a?c=!0:10===(r=t.charCodeAt(o++))?u=!0:13===r&&(u=!0,10===t.charCodeAt(o)&&++o),t.slice(i+1,e-1).replace(/""/g,'"')}for(;o<a;){if(10===(r=t.charCodeAt(e=o++)))u=!0;else if(13===r)u=!0,10===t.charCodeAt(o)&&++o;else if(r!==n)continue;return t.slice(i,e)}return c=!0,t.slice(i,a)}for(10===t.charCodeAt(a-1)&&--a,13===t.charCodeAt(a-1)&&--a;(r=l())!==no;){for(var h=[];r!==eo&&r!==no;)h.push(r),r=l();e&&null==(h=e(h,s++))||i.push(h)}return i}function i(e,n){return e.map((function(e){return n.map((function(t){return o(e[t])})).join(t)}))}function a(e){return e.map(o).join(t)}function o(t){return null==t?"":t instanceof Date?oo(t):e.test(t+="")?'"'+t.replace(/"/g,'""')+'"':t}return{parse:function(t,e){var n,i,a=r(t,(function(t,r){if(n)return n(t,r-1);i=t,n=e?function(t,e){var n=ro(t);return function(r,i){return e(n(r),i,t)}}(t,e):ro(t)}));return a.columns=i||[],a},parseRows:r,format:function(e,n){return null==n&&(n=io(e)),[n.map(o).join(t)].concat(i(e,n)).join("\n")},formatBody:function(t,e){return null==e&&(e=io(t)),i(t,e).join("\n")},formatRows:function(t){return t.map(a).join("\n")},formatRow:a,formatValue:o}},co=so(","),uo=co.parse,lo=co.parseRows,ho=co.format,fo=co.formatBody,po=co.formatRows,yo=co.formatRow,go=co.formatValue,mo=so("\t"),vo=mo.parse,bo=mo.parseRows,xo=mo.format,_o=mo.formatBody,ko=mo.formatRows,wo=mo.formatRow,Eo=mo.formatValue;function To(t){for(var e in t){var n,r,i=t[e].trim();if(i)if("true"===i)i=!0;else if("false"===i)i=!1;else if("NaN"===i)i=NaN;else if(isNaN(n=+i)){if(!(r=i.match(/^([-+]\d{2})?\d{4}(-\d{2}(-\d{2})?)?(T\d{2}:\d{2}(:\d{2}(\.\d{3})?)?(Z|[-+]\d{2}:\d{2})?)?$/)))continue;Co&&r[4]&&!r[7]&&(i=i.replace(/-/g,"/").replace(/T/," ")),i=new Date(i)}else i=n;else i=null;t[e]=i}return t}var Co=new Date("2019-01-01T00:00").getHours()||new Date("2019-07-01T00:00").getHours();function So(t){return+t}function Ao(t){return t*t}function Mo(t){return t*(2-t)}function Oo(t){return((t*=2)<=1?t*t:--t*(2-t)+1)/2}var No=function t(e){function n(t){return Math.pow(t,e)}return e=+e,n.exponent=t,n}(3),Bo=function t(e){function n(t){return 1-Math.pow(1-t,e)}return e=+e,n.exponent=t,n}(3),Do=function t(e){function n(t){return((t*=2)<=1?Math.pow(t,e):2-Math.pow(2-t,e))/2}return e=+e,n.exponent=t,n}(3),Lo=Math.PI,Io=Lo/2;function Ro(t){return 1==+t?1:1-Math.cos(t*Io)}function Fo(t){return Math.sin(t*Io)}function Po(t){return(1-Math.cos(Lo*t))/2}function jo(t){return 1.0009775171065494*(Math.pow(2,-10*t)-.0009765625)}function Yo(t){return jo(1-+t)}function zo(t){return 1-jo(t)}function Uo(t){return((t*=2)<=1?jo(1-t):2-jo(t-1))/2}function $o(t){return 1-Math.sqrt(1-t*t)}function qo(t){return Math.sqrt(1- --t*t)}function Wo(t){return((t*=2)<=1?1-Math.sqrt(1-t*t):Math.sqrt(1-(t-=2)*t)+1)/2}function Ho(t){return 1-Vo(1-t)}function Vo(t){return(t=+t)<4/11?7.5625*t*t:t<8/11?7.5625*(t-=6/11)*t+3/4:t<10/11?7.5625*(t-=9/11)*t+15/16:7.5625*(t-=21/22)*t+63/64}function Go(t){return((t*=2)<=1?1-Vo(1-t):Vo(t-1)+1)/2}var Xo=function t(e){function n(t){return(t=+t)*t*(e*(t-1)+t)}return e=+e,n.overshoot=t,n}(1.70158),Zo=function t(e){function n(t){return--t*t*((t+1)*e+t)+1}return e=+e,n.overshoot=t,n}(1.70158),Ko=function t(e){function n(t){return((t*=2)<1?t*t*((e+1)*t-e):(t-=2)*t*((e+1)*t+e)+2)/2}return e=+e,n.overshoot=t,n}(1.70158),Qo=2*Math.PI,Jo=function t(e,n){var r=Math.asin(1/(e=Math.max(1,e)))*(n/=Qo);function i(t){return e*jo(- --t)*Math.sin((r-t)/n)}return i.amplitude=function(e){return t(e,n*Qo)},i.period=function(n){return t(e,n)},i}(1,.3),ts=function t(e,n){var r=Math.asin(1/(e=Math.max(1,e)))*(n/=Qo);function i(t){return 1-e*jo(t=+t)*Math.sin((t+r)/n)}return i.amplitude=function(e){return t(e,n*Qo)},i.period=function(n){return t(e,n)},i}(1,.3),es=function t(e,n){var r=Math.asin(1/(e=Math.max(1,e)))*(n/=Qo);function i(t){return((t=2*t-1)<0?e*jo(-t)*Math.sin((r-t)/n):2-e*jo(t)*Math.sin((r+t)/n))/2}return i.amplitude=function(e){return t(e,n*Qo)},i.period=function(n){return t(e,n)},i}(1,.3);function ns(t){if(!t.ok)throw new Error(t.status+" "+t.statusText);return t.blob()}var rs=function(t,e){return fetch(t,e).then(ns)};function is(t){if(!t.ok)throw new Error(t.status+" "+t.statusText);return t.arrayBuffer()}var as=function(t,e){return fetch(t,e).then(is)};function os(t){if(!t.ok)throw new Error(t.status+" "+t.statusText);return t.text()}var ss=function(t,e){return fetch(t,e).then(os)};function cs(t){return function(e,n,r){return 2===arguments.length&&"function"==typeof n&&(r=n,n=void 0),ss(e,n).then((function(e){return t(e,r)}))}}function us(t,e,n,r){3===arguments.length&&"function"==typeof n&&(r=n,n=void 0);var i=so(t);return ss(e,n).then((function(t){return i.parse(t,r)}))}var ls=cs(uo),hs=cs(vo),fs=function(t,e){return new Promise((function(n,r){var i=new Image;for(var a in e)i[a]=e[a];i.onerror=r,i.onload=function(){n(i)},i.src=t}))};function ds(t){if(!t.ok)throw new Error(t.status+" "+t.statusText);if(204!==t.status&&205!==t.status)return t.json()}var ps=function(t,e){return fetch(t,e).then(ds)};function ys(t){return function(e,n){return ss(e,n).then((function(e){return(new DOMParser).parseFromString(e,t)}))}}var gs=ys("application/xml"),ms=ys("text/html"),vs=ys("image/svg+xml"),bs=function(t,e){var n;function r(){var r,i,a=n.length,o=0,s=0;for(r=0;r<a;++r)o+=(i=n[r]).x,s+=i.y;for(o=o/a-t,s=s/a-e,r=0;r<a;++r)(i=n[r]).x-=o,i.y-=s}return null==t&&(t=0),null==e&&(e=0),r.initialize=function(t){n=t},r.x=function(e){return arguments.length?(t=+e,r):t},r.y=function(t){return arguments.length?(e=+t,r):e},r},xs=function(t){return function(){return t}},_s=function(){return 1e-6*(Math.random()-.5)};function ks(t,e,n,r){if(isNaN(e)||isNaN(n))return t;var i,a,o,s,c,u,l,h,f,d=t._root,p={data:r},y=t._x0,g=t._y0,m=t._x1,v=t._y1;if(!d)return t._root=p,t;for(;d.length;)if((u=e>=(a=(y+m)/2))?y=a:m=a,(l=n>=(o=(g+v)/2))?g=o:v=o,i=d,!(d=d[h=l<<1|u]))return i[h]=p,t;if(s=+t._x.call(null,d.data),c=+t._y.call(null,d.data),e===s&&n===c)return p.next=d,i?i[h]=p:t._root=p,t;do{i=i?i[h]=new Array(4):t._root=new Array(4),(u=e>=(a=(y+m)/2))?y=a:m=a,(l=n>=(o=(g+v)/2))?g=o:v=o}while((h=l<<1|u)==(f=(c>=o)<<1|s>=a));return i[f]=d,i[h]=p,t}var ws=function(t,e,n,r,i){this.node=t,this.x0=e,this.y0=n,this.x1=r,this.y1=i};function Es(t){return t[0]}function Ts(t){return t[1]}function Cs(t,e,n){var r=new Ss(null==e?Es:e,null==n?Ts:n,NaN,NaN,NaN,NaN);return null==t?r:r.addAll(t)}function Ss(t,e,n,r,i,a){this._x=t,this._y=e,this._x0=n,this._y0=r,this._x1=i,this._y1=a,this._root=void 0}function As(t){for(var e={data:t.data},n=e;t=t.next;)n=n.next={data:t.data};return e}var Ms=Cs.prototype=Ss.prototype;function Os(t){return t.x+t.vx}function Ns(t){return t.y+t.vy}Ms.copy=function(){var t,e,n=new Ss(this._x,this._y,this._x0,this._y0,this._x1,this._y1),r=this._root;if(!r)return n;if(!r.length)return n._root=As(r),n;for(t=[{source:r,target:n._root=new Array(4)}];r=t.pop();)for(var i=0;i<4;++i)(e=r.source[i])&&(e.length?t.push({source:e,target:r.target[i]=new Array(4)}):r.target[i]=As(e));return n},Ms.add=function(t){var e=+this._x.call(null,t),n=+this._y.call(null,t);return ks(this.cover(e,n),e,n,t)},Ms.addAll=function(t){var e,n,r,i,a=t.length,o=new Array(a),s=new Array(a),c=1/0,u=1/0,l=-1/0,h=-1/0;for(n=0;n<a;++n)isNaN(r=+this._x.call(null,e=t[n]))||isNaN(i=+this._y.call(null,e))||(o[n]=r,s[n]=i,r<c&&(c=r),r>l&&(l=r),i<u&&(u=i),i>h&&(h=i));if(c>l||u>h)return this;for(this.cover(c,u).cover(l,h),n=0;n<a;++n)ks(this,o[n],s[n],t[n]);return this},Ms.cover=function(t,e){if(isNaN(t=+t)||isNaN(e=+e))return this;var n=this._x0,r=this._y0,i=this._x1,a=this._y1;if(isNaN(n))i=(n=Math.floor(t))+1,a=(r=Math.floor(e))+1;else{for(var o,s,c=i-n,u=this._root;n>t||t>=i||r>e||e>=a;)switch(s=(e<r)<<1|t<n,(o=new Array(4))[s]=u,u=o,c*=2,s){case 0:i=n+c,a=r+c;break;case 1:n=i-c,a=r+c;break;case 2:i=n+c,r=a-c;break;case 3:n=i-c,r=a-c}this._root&&this._root.length&&(this._root=u)}return this._x0=n,this._y0=r,this._x1=i,this._y1=a,this},Ms.data=function(){var t=[];return this.visit((function(e){if(!e.length)do{t.push(e.data)}while(e=e.next)})),t},Ms.extent=function(t){return arguments.length?this.cover(+t[0][0],+t[0][1]).cover(+t[1][0],+t[1][1]):isNaN(this._x0)?void 0:[[this._x0,this._y0],[this._x1,this._y1]]},Ms.find=function(t,e,n){var r,i,a,o,s,c,u,l=this._x0,h=this._y0,f=this._x1,d=this._y1,p=[],y=this._root;for(y&&p.push(new ws(y,l,h,f,d)),null==n?n=1/0:(l=t-n,h=e-n,f=t+n,d=e+n,n*=n);c=p.pop();)if(!(!(y=c.node)||(i=c.x0)>f||(a=c.y0)>d||(o=c.x1)<l||(s=c.y1)<h))if(y.length){var g=(i+o)/2,m=(a+s)/2;p.push(new ws(y[3],g,m,o,s),new ws(y[2],i,m,g,s),new ws(y[1],g,a,o,m),new ws(y[0],i,a,g,m)),(u=(e>=m)<<1|t>=g)&&(c=p[p.length-1],p[p.length-1]=p[p.length-1-u],p[p.length-1-u]=c)}else{var v=t-+this._x.call(null,y.data),b=e-+this._y.call(null,y.data),x=v*v+b*b;if(x<n){var _=Math.sqrt(n=x);l=t-_,h=e-_,f=t+_,d=e+_,r=y.data}}return r},Ms.remove=function(t){if(isNaN(a=+this._x.call(null,t))||isNaN(o=+this._y.call(null,t)))return this;var e,n,r,i,a,o,s,c,u,l,h,f,d=this._root,p=this._x0,y=this._y0,g=this._x1,m=this._y1;if(!d)return this;if(d.length)for(;;){if((u=a>=(s=(p+g)/2))?p=s:g=s,(l=o>=(c=(y+m)/2))?y=c:m=c,e=d,!(d=d[h=l<<1|u]))return this;if(!d.length)break;(e[h+1&3]||e[h+2&3]||e[h+3&3])&&(n=e,f=h)}for(;d.data!==t;)if(r=d,!(d=d.next))return this;return(i=d.next)&&delete d.next,r?(i?r.next=i:delete r.next,this):e?(i?e[h]=i:delete e[h],(d=e[0]||e[1]||e[2]||e[3])&&d===(e[3]||e[2]||e[1]||e[0])&&!d.length&&(n?n[f]=d:this._root=d),this):(this._root=i,this)},Ms.removeAll=function(t){for(var e=0,n=t.length;e<n;++e)this.remove(t[e]);return this},Ms.root=function(){return this._root},Ms.size=function(){var t=0;return this.visit((function(e){if(!e.length)do{++t}while(e=e.next)})),t},Ms.visit=function(t){var e,n,r,i,a,o,s=[],c=this._root;for(c&&s.push(new ws(c,this._x0,this._y0,this._x1,this._y1));e=s.pop();)if(!t(c=e.node,r=e.x0,i=e.y0,a=e.x1,o=e.y1)&&c.length){var u=(r+a)/2,l=(i+o)/2;(n=c[3])&&s.push(new ws(n,u,l,a,o)),(n=c[2])&&s.push(new ws(n,r,l,u,o)),(n=c[1])&&s.push(new ws(n,u,i,a,l)),(n=c[0])&&s.push(new ws(n,r,i,u,l))}return this},Ms.visitAfter=function(t){var e,n=[],r=[];for(this._root&&n.push(new ws(this._root,this._x0,this._y0,this._x1,this._y1));e=n.pop();){var i=e.node;if(i.length){var a,o=e.x0,s=e.y0,c=e.x1,u=e.y1,l=(o+c)/2,h=(s+u)/2;(a=i[0])&&n.push(new ws(a,o,s,l,h)),(a=i[1])&&n.push(new ws(a,l,s,c,h)),(a=i[2])&&n.push(new ws(a,o,h,l,u)),(a=i[3])&&n.push(new ws(a,l,h,c,u))}r.push(e)}for(;e=r.pop();)t(e.node,e.x0,e.y0,e.x1,e.y1);return this},Ms.x=function(t){return arguments.length?(this._x=t,this):this._x},Ms.y=function(t){return arguments.length?(this._y=t,this):this._y};var Bs=function(t){var e,n,r=1,i=1;function a(){for(var t,a,s,c,u,l,h,f=e.length,d=0;d<i;++d)for(a=Cs(e,Os,Ns).visitAfter(o),t=0;t<f;++t)s=e[t],l=n[s.index],h=l*l,c=s.x+s.vx,u=s.y+s.vy,a.visit(p);function p(t,e,n,i,a){var o=t.data,f=t.r,d=l+f;if(!o)return e>c+d||i<c-d||n>u+d||a<u-d;if(o.index>s.index){var p=c-o.x-o.vx,y=u-o.y-o.vy,g=p*p+y*y;g<d*d&&(0===p&&(g+=(p=_s())*p),0===y&&(g+=(y=_s())*y),g=(d-(g=Math.sqrt(g)))/g*r,s.vx+=(p*=g)*(d=(f*=f)/(h+f)),s.vy+=(y*=g)*d,o.vx-=p*(d=1-d),o.vy-=y*d)}}}function o(t){if(t.data)return t.r=n[t.data.index];for(var e=t.r=0;e<4;++e)t[e]&&t[e].r>t.r&&(t.r=t[e].r)}function s(){if(e){var r,i,a=e.length;for(n=new Array(a),r=0;r<a;++r)i=e[r],n[i.index]=+t(i,r,e)}}return"function"!=typeof t&&(t=xs(null==t?1:+t)),a.initialize=function(t){e=t,s()},a.iterations=function(t){return arguments.length?(i=+t,a):i},a.strength=function(t){return arguments.length?(r=+t,a):r},a.radius=function(e){return arguments.length?(t="function"==typeof e?e:xs(+e),s(),a):t},a};function Ds(t){return t.index}function Ls(t,e){var n=t.get(e);if(!n)throw new Error("missing: "+e);return n}var Is=function(t){var e,n,r,i,a,o=Ds,s=function(t){return 1/Math.min(i[t.source.index],i[t.target.index])},c=xs(30),u=1;function l(r){for(var i=0,o=t.length;i<u;++i)for(var s,c,l,h,f,d,p,y=0;y<o;++y)c=(s=t[y]).source,h=(l=s.target).x+l.vx-c.x-c.vx||_s(),f=l.y+l.vy-c.y-c.vy||_s(),h*=d=((d=Math.sqrt(h*h+f*f))-n[y])/d*r*e[y],f*=d,l.vx-=h*(p=a[y]),l.vy-=f*p,c.vx+=h*(p=1-p),c.vy+=f*p}function h(){if(r){var s,c,u=r.length,l=t.length,h=Qi(r,o);for(s=0,i=new Array(u);s<l;++s)(c=t[s]).index=s,"object"!=typeof c.source&&(c.source=Ls(h,c.source)),"object"!=typeof c.target&&(c.target=Ls(h,c.target)),i[c.source.index]=(i[c.source.index]||0)+1,i[c.target.index]=(i[c.target.index]||0)+1;for(s=0,a=new Array(l);s<l;++s)c=t[s],a[s]=i[c.source.index]/(i[c.source.index]+i[c.target.index]);e=new Array(l),f(),n=new Array(l),d()}}function f(){if(r)for(var n=0,i=t.length;n<i;++n)e[n]=+s(t[n],n,t)}function d(){if(r)for(var e=0,i=t.length;e<i;++e)n[e]=+c(t[e],e,t)}return null==t&&(t=[]),l.initialize=function(t){r=t,h()},l.links=function(e){return arguments.length?(t=e,h(),l):t},l.id=function(t){return arguments.length?(o=t,l):o},l.iterations=function(t){return arguments.length?(u=+t,l):u},l.strength=function(t){return arguments.length?(s="function"==typeof t?t:xs(+t),f(),l):s},l.distance=function(t){return arguments.length?(c="function"==typeof t?t:xs(+t),d(),l):c},l};function Rs(t){return t.x}function Fs(t){return t.y}var Ps=Math.PI*(3-Math.sqrt(5)),js=function(t){var e,n=1,r=.001,i=1-Math.pow(r,1/300),a=0,o=.6,s=Qi(),c=Wn(l),u=ht("tick","end");function l(){h(),u.call("tick",e),n<r&&(c.stop(),u.call("end",e))}function h(r){var c,u,l=t.length;void 0===r&&(r=1);for(var h=0;h<r;++h)for(n+=(a-n)*i,s.each((function(t){t(n)})),c=0;c<l;++c)null==(u=t[c]).fx?u.x+=u.vx*=o:(u.x=u.fx,u.vx=0),null==u.fy?u.y+=u.vy*=o:(u.y=u.fy,u.vy=0);return e}function f(){for(var e,n=0,r=t.length;n<r;++n){if((e=t[n]).index=n,null!=e.fx&&(e.x=e.fx),null!=e.fy&&(e.y=e.fy),isNaN(e.x)||isNaN(e.y)){var i=10*Math.sqrt(n),a=n*Ps;e.x=i*Math.cos(a),e.y=i*Math.sin(a)}(isNaN(e.vx)||isNaN(e.vy))&&(e.vx=e.vy=0)}}function d(e){return e.initialize&&e.initialize(t),e}return null==t&&(t=[]),f(),e={tick:h,restart:function(){return c.restart(l),e},stop:function(){return c.stop(),e},nodes:function(n){return arguments.length?(t=n,f(),s.each(d),e):t},alpha:function(t){return arguments.length?(n=+t,e):n},alphaMin:function(t){return arguments.length?(r=+t,e):r},alphaDecay:function(t){return arguments.length?(i=+t,e):+i},alphaTarget:function(t){return arguments.length?(a=+t,e):a},velocityDecay:function(t){return arguments.length?(o=1-t,e):1-o},force:function(t,n){return arguments.length>1?(null==n?s.remove(t):s.set(t,d(n)),e):s.get(t)},find:function(e,n,r){var i,a,o,s,c,u=0,l=t.length;for(null==r?r=1/0:r*=r,u=0;u<l;++u)(o=(i=e-(s=t[u]).x)*i+(a=n-s.y)*a)<r&&(c=s,r=o);return c},on:function(t,n){return arguments.length>1?(u.on(t,n),e):u.on(t)}}},Ys=function(){var t,e,n,r,i=xs(-30),a=1,o=1/0,s=.81;function c(r){var i,a=t.length,o=Cs(t,Rs,Fs).visitAfter(l);for(n=r,i=0;i<a;++i)e=t[i],o.visit(h)}function u(){if(t){var e,n,a=t.length;for(r=new Array(a),e=0;e<a;++e)n=t[e],r[n.index]=+i(n,e,t)}}function l(t){var e,n,i,a,o,s=0,c=0;if(t.length){for(i=a=o=0;o<4;++o)(e=t[o])&&(n=Math.abs(e.value))&&(s+=e.value,c+=n,i+=n*e.x,a+=n*e.y);t.x=i/c,t.y=a/c}else{(e=t).x=e.data.x,e.y=e.data.y;do{s+=r[e.data.index]}while(e=e.next)}t.value=s}function h(t,i,c,u){if(!t.value)return!0;var l=t.x-e.x,h=t.y-e.y,f=u-i,d=l*l+h*h;if(f*f/s<d)return d<o&&(0===l&&(d+=(l=_s())*l),0===h&&(d+=(h=_s())*h),d<a&&(d=Math.sqrt(a*d)),e.vx+=l*t.value*n/d,e.vy+=h*t.value*n/d),!0;if(!(t.length||d>=o)){(t.data!==e||t.next)&&(0===l&&(d+=(l=_s())*l),0===h&&(d+=(h=_s())*h),d<a&&(d=Math.sqrt(a*d)));do{t.data!==e&&(f=r[t.data.index]*n/d,e.vx+=l*f,e.vy+=h*f)}while(t=t.next)}}return c.initialize=function(e){t=e,u()},c.strength=function(t){return arguments.length?(i="function"==typeof t?t:xs(+t),u(),c):i},c.distanceMin=function(t){return arguments.length?(a=t*t,c):Math.sqrt(a)},c.distanceMax=function(t){return arguments.length?(o=t*t,c):Math.sqrt(o)},c.theta=function(t){return arguments.length?(s=t*t,c):Math.sqrt(s)},c},zs=function(t,e,n){var r,i,a,o=xs(.1);function s(t){for(var o=0,s=r.length;o<s;++o){var c=r[o],u=c.x-e||1e-6,l=c.y-n||1e-6,h=Math.sqrt(u*u+l*l),f=(a[o]-h)*i[o]*t/h;c.vx+=u*f,c.vy+=l*f}}function c(){if(r){var e,n=r.length;for(i=new Array(n),a=new Array(n),e=0;e<n;++e)a[e]=+t(r[e],e,r),i[e]=isNaN(a[e])?0:+o(r[e],e,r)}}return"function"!=typeof t&&(t=xs(+t)),null==e&&(e=0),null==n&&(n=0),s.initialize=function(t){r=t,c()},s.strength=function(t){return arguments.length?(o="function"==typeof t?t:xs(+t),c(),s):o},s.radius=function(e){return arguments.length?(t="function"==typeof e?e:xs(+e),c(),s):t},s.x=function(t){return arguments.length?(e=+t,s):e},s.y=function(t){return arguments.length?(n=+t,s):n},s},Us=function(t){var e,n,r,i=xs(.1);function a(t){for(var i,a=0,o=e.length;a<o;++a)(i=e[a]).vx+=(r[a]-i.x)*n[a]*t}function o(){if(e){var a,o=e.length;for(n=new Array(o),r=new Array(o),a=0;a<o;++a)n[a]=isNaN(r[a]=+t(e[a],a,e))?0:+i(e[a],a,e)}}return"function"!=typeof t&&(t=xs(null==t?0:+t)),a.initialize=function(t){e=t,o()},a.strength=function(t){return arguments.length?(i="function"==typeof t?t:xs(+t),o(),a):i},a.x=function(e){return arguments.length?(t="function"==typeof e?e:xs(+e),o(),a):t},a},$s=function(t){var e,n,r,i=xs(.1);function a(t){for(var i,a=0,o=e.length;a<o;++a)(i=e[a]).vy+=(r[a]-i.y)*n[a]*t}function o(){if(e){var a,o=e.length;for(n=new Array(o),r=new Array(o),a=0;a<o;++a)n[a]=isNaN(r[a]=+t(e[a],a,e))?0:+i(e[a],a,e)}}return"function"!=typeof t&&(t=xs(null==t?0:+t)),a.initialize=function(t){e=t,o()},a.strength=function(t){return arguments.length?(i="function"==typeof t?t:xs(+t),o(),a):i},a.y=function(e){return arguments.length?(t="function"==typeof e?e:xs(+e),o(),a):t},a};function qs(t,e){if((n=(t=e?t.toExponential(e-1):t.toExponential()).indexOf("e"))<0)return null;var n,r=t.slice(0,n);return[r.length>1?r[0]+r.slice(2):r,+t.slice(n+1)]}var Ws=function(t){return(t=qs(Math.abs(t)))?t[1]:NaN},Hs=/^(?:(.)?([<>=^]))?([+\-( ])?([$#])?(0)?(\d+)?(,)?(\.\d+)?(~)?([a-z%])?$/i;function Vs(t){if(!(e=Hs.exec(t)))throw new Error("invalid format: "+t);var e;return new Gs({fill:e[1],align:e[2],sign:e[3],symbol:e[4],zero:e[5],width:e[6],comma:e[7],precision:e[8]&&e[8].slice(1),trim:e[9],type:e[10]})}function Gs(t){this.fill=void 0===t.fill?" ":t.fill+"",this.align=void 0===t.align?">":t.align+"",this.sign=void 0===t.sign?"-":t.sign+"",this.symbol=void 0===t.symbol?"":t.symbol+"",this.zero=!!t.zero,this.width=void 0===t.width?void 0:+t.width,this.comma=!!t.comma,this.precision=void 0===t.precision?void 0:+t.precision,this.trim=!!t.trim,this.type=void 0===t.type?"":t.type+""}Vs.prototype=Gs.prototype,Gs.prototype.toString=function(){return this.fill+this.align+this.sign+this.symbol+(this.zero?"0":"")+(void 0===this.width?"":Math.max(1,0|this.width))+(this.comma?",":"")+(void 0===this.precision?"":"."+Math.max(0,0|this.precision))+(this.trim?"~":"")+this.type};var Xs,Zs,Ks,Qs,Js=function(t,e){var n=qs(t,e);if(!n)return t+"";var r=n[0],i=n[1];return i<0?"0."+new Array(-i).join("0")+r:r.length>i+1?r.slice(0,i+1)+"."+r.slice(i+1):r+new Array(i-r.length+2).join("0")},tc={"%":function(t,e){return(100*t).toFixed(e)},b:function(t){return Math.round(t).toString(2)},c:function(t){return t+""},d:function(t){return Math.abs(t=Math.round(t))>=1e21?t.toLocaleString("en").replace(/,/g,""):t.toString(10)},e:function(t,e){return t.toExponential(e)},f:function(t,e){return t.toFixed(e)},g:function(t,e){return t.toPrecision(e)},o:function(t){return Math.round(t).toString(8)},p:function(t,e){return Js(100*t,e)},r:Js,s:function(t,e){var n=qs(t,e);if(!n)return t+"";var r=n[0],i=n[1],a=i-(Xs=3*Math.max(-8,Math.min(8,Math.floor(i/3))))+1,o=r.length;return a===o?r:a>o?r+new Array(a-o+1).join("0"):a>0?r.slice(0,a)+"."+r.slice(a):"0."+new Array(1-a).join("0")+qs(t,Math.max(0,e+a-1))[0]},X:function(t){return Math.round(t).toString(16).toUpperCase()},x:function(t){return Math.round(t).toString(16)}},ec=function(t){return t},nc=Array.prototype.map,rc=["y","z","a","f","p","n","µ","m","","k","M","G","T","P","E","Z","Y"],ic=function(t){var e,n,r=void 0===t.grouping||void 0===t.thousands?ec:(e=nc.call(t.grouping,Number),n=t.thousands+"",function(t,r){for(var i=t.length,a=[],o=0,s=e[0],c=0;i>0&&s>0&&(c+s+1>r&&(s=Math.max(1,r-c)),a.push(t.substring(i-=s,i+s)),!((c+=s+1)>r));)s=e[o=(o+1)%e.length];return a.reverse().join(n)}),i=void 0===t.currency?"":t.currency[0]+"",a=void 0===t.currency?"":t.currency[1]+"",o=void 0===t.decimal?".":t.decimal+"",s=void 0===t.numerals?ec:function(t){return function(e){return e.replace(/[0-9]/g,(function(e){return t[+e]}))}}(nc.call(t.numerals,String)),c=void 0===t.percent?"%":t.percent+"",u=void 0===t.minus?"-":t.minus+"",l=void 0===t.nan?"NaN":t.nan+"";function h(t){var e=(t=Vs(t)).fill,n=t.align,h=t.sign,f=t.symbol,d=t.zero,p=t.width,y=t.comma,g=t.precision,m=t.trim,v=t.type;"n"===v?(y=!0,v="g"):tc[v]||(void 0===g&&(g=12),m=!0,v="g"),(d||"0"===e&&"="===n)&&(d=!0,e="0",n="=");var b="$"===f?i:"#"===f&&/[boxX]/.test(v)?"0"+v.toLowerCase():"",x="$"===f?a:/[%p]/.test(v)?c:"",_=tc[v],k=/[defgprs%]/.test(v);function w(t){var i,a,c,f=b,w=x;if("c"===v)w=_(t)+w,t="";else{var E=(t=+t)<0||1/t<0;if(t=isNaN(t)?l:_(Math.abs(t),g),m&&(t=function(t){t:for(var e,n=t.length,r=1,i=-1;r<n;++r)switch(t[r]){case".":i=e=r;break;case"0":0===i&&(i=r),e=r;break;default:if(!+t[r])break t;i>0&&(i=0)}return i>0?t.slice(0,i)+t.slice(e+1):t}(t)),E&&0==+t&&"+"!==h&&(E=!1),f=(E?"("===h?h:u:"-"===h||"("===h?"":h)+f,w=("s"===v?rc[8+Xs/3]:"")+w+(E&&"("===h?")":""),k)for(i=-1,a=t.length;++i<a;)if(48>(c=t.charCodeAt(i))||c>57){w=(46===c?o+t.slice(i+1):t.slice(i))+w,t=t.slice(0,i);break}}y&&!d&&(t=r(t,1/0));var T=f.length+t.length+w.length,C=T<p?new Array(p-T+1).join(e):"";switch(y&&d&&(t=r(C+t,C.length?p-w.length:1/0),C=""),n){case"<":t=f+t+w+C;break;case"=":t=f+C+t+w;break;case"^":t=C.slice(0,T=C.length>>1)+f+t+w+C.slice(T);break;default:t=C+f+t+w}return s(t)}return g=void 0===g?6:/[gprs]/.test(v)?Math.max(1,Math.min(21,g)):Math.max(0,Math.min(20,g)),w.toString=function(){return t+""},w}return{format:h,formatPrefix:function(t,e){var n=h(((t=Vs(t)).type="f",t)),r=3*Math.max(-8,Math.min(8,Math.floor(Ws(e)/3))),i=Math.pow(10,-r),a=rc[8+r/3];return function(t){return n(i*t)+a}}}};function ac(t){return Zs=ic(t),Ks=Zs.format,Qs=Zs.formatPrefix,Zs}ac({decimal:".",thousands:",",grouping:[3],currency:["$",""],minus:"-"});var oc=function(t){return Math.max(0,-Ws(Math.abs(t)))},sc=function(t,e){return Math.max(0,3*Math.max(-8,Math.min(8,Math.floor(Ws(e)/3)))-Ws(Math.abs(t)))},cc=function(t,e){return t=Math.abs(t),e=Math.abs(e)-t,Math.max(0,Ws(e)-Ws(t))+1},uc=function(){return new lc};function lc(){this.reset()}lc.prototype={constructor:lc,reset:function(){this.s=this.t=0},add:function(t){fc(hc,t,this.t),fc(this,hc.s,this.s),this.s?this.t+=hc.t:this.s=hc.t},valueOf:function(){return this.s}};var hc=new lc;function fc(t,e,n){var r=t.s=e+n,i=r-e,a=r-i;t.t=e-a+(n-i)}var dc=Math.PI,pc=dc/2,yc=dc/4,gc=2*dc,mc=180/dc,vc=dc/180,bc=Math.abs,xc=Math.atan,_c=Math.atan2,kc=Math.cos,wc=Math.ceil,Ec=Math.exp,Tc=(Math.floor,Math.log),Cc=Math.pow,Sc=Math.sin,Ac=Math.sign||function(t){return t>0?1:t<0?-1:0},Mc=Math.sqrt,Oc=Math.tan;function Nc(t){return t>1?0:t<-1?dc:Math.acos(t)}function Bc(t){return t>1?pc:t<-1?-pc:Math.asin(t)}function Dc(t){return(t=Sc(t/2))*t}function Lc(){}function Ic(t,e){t&&Fc.hasOwnProperty(t.type)&&Fc[t.type](t,e)}var Rc={Feature:function(t,e){Ic(t.geometry,e)},FeatureCollection:function(t,e){for(var n=t.features,r=-1,i=n.length;++r<i;)Ic(n[r].geometry,e)}},Fc={Sphere:function(t,e){e.sphere()},Point:function(t,e){t=t.coordinates,e.point(t[0],t[1],t[2])},MultiPoint:function(t,e){for(var n=t.coordinates,r=-1,i=n.length;++r<i;)t=n[r],e.point(t[0],t[1],t[2])},LineString:function(t,e){Pc(t.coordinates,e,0)},MultiLineString:function(t,e){for(var n=t.coordinates,r=-1,i=n.length;++r<i;)Pc(n[r],e,0)},Polygon:function(t,e){jc(t.coordinates,e)},MultiPolygon:function(t,e){for(var n=t.coordinates,r=-1,i=n.length;++r<i;)jc(n[r],e)},GeometryCollection:function(t,e){for(var n=t.geometries,r=-1,i=n.length;++r<i;)Ic(n[r],e)}};function Pc(t,e,n){var r,i=-1,a=t.length-n;for(e.lineStart();++i<a;)r=t[i],e.point(r[0],r[1],r[2]);e.lineEnd()}function jc(t,e){var n=-1,r=t.length;for(e.polygonStart();++n<r;)Pc(t[n],e,1);e.polygonEnd()}var Yc,zc,Uc,$c,qc,Wc=function(t,e){t&&Rc.hasOwnProperty(t.type)?Rc[t.type](t,e):Ic(t,e)},Hc=uc(),Vc=uc(),Gc={point:Lc,lineStart:Lc,lineEnd:Lc,polygonStart:function(){Hc.reset(),Gc.lineStart=Xc,Gc.lineEnd=Zc},polygonEnd:function(){var t=+Hc;Vc.add(t<0?gc+t:t),this.lineStart=this.lineEnd=this.point=Lc},sphere:function(){Vc.add(gc)}};function Xc(){Gc.point=Kc}function Zc(){Qc(Yc,zc)}function Kc(t,e){Gc.point=Qc,Yc=t,zc=e,Uc=t*=vc,$c=kc(e=(e*=vc)/2+yc),qc=Sc(e)}function Qc(t,e){var n=(t*=vc)-Uc,r=n>=0?1:-1,i=r*n,a=kc(e=(e*=vc)/2+yc),o=Sc(e),s=qc*o,c=$c*a+s*kc(i),u=s*r*Sc(i);Hc.add(_c(u,c)),Uc=t,$c=a,qc=o}var Jc=function(t){return Vc.reset(),Wc(t,Gc),2*Vc};function tu(t){return[_c(t[1],t[0]),Bc(t[2])]}function eu(t){var e=t[0],n=t[1],r=kc(n);return[r*kc(e),r*Sc(e),Sc(n)]}function nu(t,e){return t[0]*e[0]+t[1]*e[1]+t[2]*e[2]}function ru(t,e){return[t[1]*e[2]-t[2]*e[1],t[2]*e[0]-t[0]*e[2],t[0]*e[1]-t[1]*e[0]]}function iu(t,e){t[0]+=e[0],t[1]+=e[1],t[2]+=e[2]}function au(t,e){return[t[0]*e,t[1]*e,t[2]*e]}function ou(t){var e=Mc(t[0]*t[0]+t[1]*t[1]+t[2]*t[2]);t[0]/=e,t[1]/=e,t[2]/=e}var su,cu,uu,lu,hu,fu,du,pu,yu,gu,mu=uc(),vu={point:bu,lineStart:_u,lineEnd:ku,polygonStart:function(){vu.point=wu,vu.lineStart=Eu,vu.lineEnd=Tu,mu.reset(),Gc.polygonStart()},polygonEnd:function(){Gc.polygonEnd(),vu.point=bu,vu.lineStart=_u,vu.lineEnd=ku,Hc<0?(su=-(uu=180),cu=-(lu=90)):mu>1e-6?lu=90:mu<-1e-6&&(cu=-90),gu[0]=su,gu[1]=uu},sphere:function(){su=-(uu=180),cu=-(lu=90)}};function bu(t,e){yu.push(gu=[su=t,uu=t]),e<cu&&(cu=e),e>lu&&(lu=e)}function xu(t,e){var n=eu([t*vc,e*vc]);if(pu){var r=ru(pu,n),i=ru([r[1],-r[0],0],r);ou(i),i=tu(i);var a,o=t-hu,s=o>0?1:-1,c=i[0]*mc*s,u=bc(o)>180;u^(s*hu<c&&c<s*t)?(a=i[1]*mc)>lu&&(lu=a):u^(s*hu<(c=(c+360)%360-180)&&c<s*t)?(a=-i[1]*mc)<cu&&(cu=a):(e<cu&&(cu=e),e>lu&&(lu=e)),u?t<hu?Cu(su,t)>Cu(su,uu)&&(uu=t):Cu(t,uu)>Cu(su,uu)&&(su=t):uu>=su?(t<su&&(su=t),t>uu&&(uu=t)):t>hu?Cu(su,t)>Cu(su,uu)&&(uu=t):Cu(t,uu)>Cu(su,uu)&&(su=t)}else yu.push(gu=[su=t,uu=t]);e<cu&&(cu=e),e>lu&&(lu=e),pu=n,hu=t}function _u(){vu.point=xu}function ku(){gu[0]=su,gu[1]=uu,vu.point=bu,pu=null}function wu(t,e){if(pu){var n=t-hu;mu.add(bc(n)>180?n+(n>0?360:-360):n)}else fu=t,du=e;Gc.point(t,e),xu(t,e)}function Eu(){Gc.lineStart()}function Tu(){wu(fu,du),Gc.lineEnd(),bc(mu)>1e-6&&(su=-(uu=180)),gu[0]=su,gu[1]=uu,pu=null}function Cu(t,e){return(e-=t)<0?e+360:e}function Su(t,e){return t[0]-e[0]}function Au(t,e){return t[0]<=t[1]?t[0]<=e&&e<=t[1]:e<t[0]||t[1]<e}var Mu,Ou,Nu,Bu,Du,Lu,Iu,Ru,Fu,Pu,ju,Yu,zu,Uu,$u,qu,Wu=function(t){var e,n,r,i,a,o,s;if(lu=uu=-(su=cu=1/0),yu=[],Wc(t,vu),n=yu.length){for(yu.sort(Su),e=1,a=[r=yu[0]];e<n;++e)Au(r,(i=yu[e])[0])||Au(r,i[1])?(Cu(r[0],i[1])>Cu(r[0],r[1])&&(r[1]=i[1]),Cu(i[0],r[1])>Cu(r[0],r[1])&&(r[0]=i[0])):a.push(r=i);for(o=-1/0,e=0,r=a[n=a.length-1];e<=n;r=i,++e)i=a[e],(s=Cu(r[1],i[0]))>o&&(o=s,su=i[0],uu=r[1])}return yu=gu=null,su===1/0||cu===1/0?[[NaN,NaN],[NaN,NaN]]:[[su,cu],[uu,lu]]},Hu={sphere:Lc,point:Vu,lineStart:Xu,lineEnd:Qu,polygonStart:function(){Hu.lineStart=Ju,Hu.lineEnd=tl},polygonEnd:function(){Hu.lineStart=Xu,Hu.lineEnd=Qu}};function Vu(t,e){t*=vc;var n=kc(e*=vc);Gu(n*kc(t),n*Sc(t),Sc(e))}function Gu(t,e,n){++Mu,Nu+=(t-Nu)/Mu,Bu+=(e-Bu)/Mu,Du+=(n-Du)/Mu}function Xu(){Hu.point=Zu}function Zu(t,e){t*=vc;var n=kc(e*=vc);Uu=n*kc(t),$u=n*Sc(t),qu=Sc(e),Hu.point=Ku,Gu(Uu,$u,qu)}function Ku(t,e){t*=vc;var n=kc(e*=vc),r=n*kc(t),i=n*Sc(t),a=Sc(e),o=_c(Mc((o=$u*a-qu*i)*o+(o=qu*r-Uu*a)*o+(o=Uu*i-$u*r)*o),Uu*r+$u*i+qu*a);Ou+=o,Lu+=o*(Uu+(Uu=r)),Iu+=o*($u+($u=i)),Ru+=o*(qu+(qu=a)),Gu(Uu,$u,qu)}function Qu(){Hu.point=Vu}function Ju(){Hu.point=el}function tl(){nl(Yu,zu),Hu.point=Vu}function el(t,e){Yu=t,zu=e,t*=vc,e*=vc,Hu.point=nl;var n=kc(e);Uu=n*kc(t),$u=n*Sc(t),qu=Sc(e),Gu(Uu,$u,qu)}function nl(t,e){t*=vc;var n=kc(e*=vc),r=n*kc(t),i=n*Sc(t),a=Sc(e),o=$u*a-qu*i,s=qu*r-Uu*a,c=Uu*i-$u*r,u=Mc(o*o+s*s+c*c),l=Bc(u),h=u&&-l/u;Fu+=h*o,Pu+=h*s,ju+=h*c,Ou+=l,Lu+=l*(Uu+(Uu=r)),Iu+=l*($u+($u=i)),Ru+=l*(qu+(qu=a)),Gu(Uu,$u,qu)}var rl=function(t){Mu=Ou=Nu=Bu=Du=Lu=Iu=Ru=Fu=Pu=ju=0,Wc(t,Hu);var e=Fu,n=Pu,r=ju,i=e*e+n*n+r*r;return i<1e-12&&(e=Lu,n=Iu,r=Ru,Ou<1e-6&&(e=Nu,n=Bu,r=Du),(i=e*e+n*n+r*r)<1e-12)?[NaN,NaN]:[_c(n,e)*mc,Bc(r/Mc(i))*mc]},il=function(t){return function(){return t}},al=function(t,e){function n(n,r){return n=t(n,r),e(n[0],n[1])}return t.invert&&e.invert&&(n.invert=function(n,r){return(n=e.invert(n,r))&&t.invert(n[0],n[1])}),n};function ol(t,e){return[bc(t)>dc?t+Math.round(-t/gc)*gc:t,e]}function sl(t,e,n){return(t%=gc)?e||n?al(ul(t),ll(e,n)):ul(t):e||n?ll(e,n):ol}function cl(t){return function(e,n){return[(e+=t)>dc?e-gc:e<-dc?e+gc:e,n]}}function ul(t){var e=cl(t);return e.invert=cl(-t),e}function ll(t,e){var n=kc(t),r=Sc(t),i=kc(e),a=Sc(e);function o(t,e){var o=kc(e),s=kc(t)*o,c=Sc(t)*o,u=Sc(e),l=u*n+s*r;return[_c(c*i-l*a,s*n-u*r),Bc(l*i+c*a)]}return o.invert=function(t,e){var o=kc(e),s=kc(t)*o,c=Sc(t)*o,u=Sc(e),l=u*i-c*a;return[_c(c*i+u*a,s*n+l*r),Bc(l*n-s*r)]},o}ol.invert=ol;var hl=function(t){function e(e){return(e=t(e[0]*vc,e[1]*vc))[0]*=mc,e[1]*=mc,e}return t=sl(t[0]*vc,t[1]*vc,t.length>2?t[2]*vc:0),e.invert=function(e){return(e=t.invert(e[0]*vc,e[1]*vc))[0]*=mc,e[1]*=mc,e},e};function fl(t,e,n,r,i,a){if(n){var o=kc(e),s=Sc(e),c=r*n;null==i?(i=e+r*gc,a=e-c/2):(i=dl(o,i),a=dl(o,a),(r>0?i<a:i>a)&&(i+=r*gc));for(var u,l=i;r>0?l>a:l<a;l-=c)u=tu([o,-s*kc(l),-s*Sc(l)]),t.point(u[0],u[1])}}function dl(t,e){(e=eu(e))[0]-=t,ou(e);var n=Nc(-e[1]);return((-e[2]<0?-n:n)+gc-1e-6)%gc}var pl=function(){var t,e,n=il([0,0]),r=il(90),i=il(6),a={point:function(n,r){t.push(n=e(n,r)),n[0]*=mc,n[1]*=mc}};function o(){var o=n.apply(this,arguments),s=r.apply(this,arguments)*vc,c=i.apply(this,arguments)*vc;return t=[],e=sl(-o[0]*vc,-o[1]*vc,0).invert,fl(a,s,c,1),o={type:"Polygon",coordinates:[t]},t=e=null,o}return o.center=function(t){return arguments.length?(n="function"==typeof t?t:il([+t[0],+t[1]]),o):n},o.radius=function(t){return arguments.length?(r="function"==typeof t?t:il(+t),o):r},o.precision=function(t){return arguments.length?(i="function"==typeof t?t:il(+t),o):i},o},yl=function(){var t,e=[];return{point:function(e,n,r){t.push([e,n,r])},lineStart:function(){e.push(t=[])},lineEnd:Lc,rejoin:function(){e.length>1&&e.push(e.pop().concat(e.shift()))},result:function(){var n=e;return e=[],t=null,n}}},gl=function(t,e){return bc(t[0]-e[0])<1e-6&&bc(t[1]-e[1])<1e-6};function ml(t,e,n,r){this.x=t,this.z=e,this.o=n,this.e=r,this.v=!1,this.n=this.p=null}var vl=function(t,e,n,r,i){var a,o,s=[],c=[];if(t.forEach((function(t){if(!((e=t.length-1)<=0)){var e,n,r=t[0],o=t[e];if(gl(r,o)){if(!r[2]&&!o[2]){for(i.lineStart(),a=0;a<e;++a)i.point((r=t[a])[0],r[1]);return void i.lineEnd()}o[0]+=2e-6}s.push(n=new ml(r,t,null,!0)),c.push(n.o=new ml(r,null,n,!1)),s.push(n=new ml(o,t,null,!1)),c.push(n.o=new ml(o,null,n,!0))}})),s.length){for(c.sort(e),bl(s),bl(c),a=0,o=c.length;a<o;++a)c[a].e=n=!n;for(var u,l,h=s[0];;){for(var f=h,d=!0;f.v;)if((f=f.n)===h)return;u=f.z,i.lineStart();do{if(f.v=f.o.v=!0,f.e){if(d)for(a=0,o=u.length;a<o;++a)i.point((l=u[a])[0],l[1]);else r(f.x,f.n.x,1,i);f=f.n}else{if(d)for(u=f.p.z,a=u.length-1;a>=0;--a)i.point((l=u[a])[0],l[1]);else r(f.x,f.p.x,-1,i);f=f.p}u=(f=f.o).z,d=!d}while(!f.v);i.lineEnd()}}};function bl(t){if(e=t.length){for(var e,n,r=0,i=t[0];++r<e;)i.n=n=t[r],n.p=i,i=n;i.n=n=t[0],n.p=i}}var xl=uc();function _l(t){return bc(t[0])<=dc?t[0]:Ac(t[0])*((bc(t[0])+dc)%gc-dc)}var kl=function(t,e){var n=_l(e),r=e[1],i=Sc(r),a=[Sc(n),-kc(n),0],o=0,s=0;xl.reset(),1===i?r=pc+1e-6:-1===i&&(r=-pc-1e-6);for(var c=0,u=t.length;c<u;++c)if(h=(l=t[c]).length)for(var l,h,f=l[h-1],d=_l(f),p=f[1]/2+yc,y=Sc(p),g=kc(p),m=0;m<h;++m,d=b,y=_,g=k,f=v){var v=l[m],b=_l(v),x=v[1]/2+yc,_=Sc(x),k=kc(x),w=b-d,E=w>=0?1:-1,T=E*w,C=T>dc,S=y*_;if(xl.add(_c(S*E*Sc(T),g*k+S*kc(T))),o+=C?w+E*gc:w,C^d>=n^b>=n){var A=ru(eu(f),eu(v));ou(A);var M=ru(a,A);ou(M);var O=(C^w>=0?-1:1)*Bc(M[2]);(r>O||r===O&&(A[0]||A[1]))&&(s+=C^w>=0?1:-1)}}return(o<-1e-6||o<1e-6&&xl<-1e-6)^1&s},wl=function(t,e,n,r){return function(i){var a,o,s,c=e(i),u=yl(),l=e(u),h=!1,f={point:d,lineStart:y,lineEnd:g,polygonStart:function(){f.point=m,f.lineStart=v,f.lineEnd=b,o=[],a=[]},polygonEnd:function(){f.point=d,f.lineStart=y,f.lineEnd=g,o=P(o);var t=kl(a,r);o.length?(h||(i.polygonStart(),h=!0),vl(o,Tl,t,n,i)):t&&(h||(i.polygonStart(),h=!0),i.lineStart(),n(null,null,1,i),i.lineEnd()),h&&(i.polygonEnd(),h=!1),o=a=null},sphere:function(){i.polygonStart(),i.lineStart(),n(null,null,1,i),i.lineEnd(),i.polygonEnd()}};function d(e,n){t(e,n)&&i.point(e,n)}function p(t,e){c.point(t,e)}function y(){f.point=p,c.lineStart()}function g(){f.point=d,c.lineEnd()}function m(t,e){s.push([t,e]),l.point(t,e)}function v(){l.lineStart(),s=[]}function b(){m(s[0][0],s[0][1]),l.lineEnd();var t,e,n,r,c=l.clean(),f=u.result(),d=f.length;if(s.pop(),a.push(s),s=null,d)if(1&c){if((e=(n=f[0]).length-1)>0){for(h||(i.polygonStart(),h=!0),i.lineStart(),t=0;t<e;++t)i.point((r=n[t])[0],r[1]);i.lineEnd()}}else d>1&&2&c&&f.push(f.pop().concat(f.shift())),o.push(f.filter(El))}return f}};function El(t){return t.length>1}function Tl(t,e){return((t=t.x)[0]<0?t[1]-pc-1e-6:pc-t[1])-((e=e.x)[0]<0?e[1]-pc-1e-6:pc-e[1])}var Cl=wl((function(){return!0}),(function(t){var e,n=NaN,r=NaN,i=NaN;return{lineStart:function(){t.lineStart(),e=1},point:function(a,o){var s=a>0?dc:-dc,c=bc(a-n);bc(c-dc)<1e-6?(t.point(n,r=(r+o)/2>0?pc:-pc),t.point(i,r),t.lineEnd(),t.lineStart(),t.point(s,r),t.point(a,r),e=0):i!==s&&c>=dc&&(bc(n-i)<1e-6&&(n-=1e-6*i),bc(a-s)<1e-6&&(a-=1e-6*s),r=function(t,e,n,r){var i,a,o=Sc(t-n);return bc(o)>1e-6?xc((Sc(e)*(a=kc(r))*Sc(n)-Sc(r)*(i=kc(e))*Sc(t))/(i*a*o)):(e+r)/2}(n,r,a,o),t.point(i,r),t.lineEnd(),t.lineStart(),t.point(s,r),e=0),t.point(n=a,r=o),i=s},lineEnd:function(){t.lineEnd(),n=r=NaN},clean:function(){return 2-e}}}),(function(t,e,n,r){var i;if(null==t)i=n*pc,r.point(-dc,i),r.point(0,i),r.point(dc,i),r.point(dc,0),r.point(dc,-i),r.point(0,-i),r.point(-dc,-i),r.point(-dc,0),r.point(-dc,i);else if(bc(t[0]-e[0])>1e-6){var a=t[0]<e[0]?dc:-dc;i=n*a/2,r.point(-a,i),r.point(0,i),r.point(a,i)}else r.point(e[0],e[1])}),[-dc,-pc]);var Sl=function(t){var e=kc(t),n=6*vc,r=e>0,i=bc(e)>1e-6;function a(t,n){return kc(t)*kc(n)>e}function o(t,n,r){var i=[1,0,0],a=ru(eu(t),eu(n)),o=nu(a,a),s=a[0],c=o-s*s;if(!c)return!r&&t;var u=e*o/c,l=-e*s/c,h=ru(i,a),f=au(i,u);iu(f,au(a,l));var d=h,p=nu(f,d),y=nu(d,d),g=p*p-y*(nu(f,f)-1);if(!(g<0)){var m=Mc(g),v=au(d,(-p-m)/y);if(iu(v,f),v=tu(v),!r)return v;var b,x=t[0],_=n[0],k=t[1],w=n[1];_<x&&(b=x,x=_,_=b);var E=_-x,T=bc(E-dc)<1e-6;if(!T&&w<k&&(b=k,k=w,w=b),T||E<1e-6?T?k+w>0^v[1]<(bc(v[0]-x)<1e-6?k:w):k<=v[1]&&v[1]<=w:E>dc^(x<=v[0]&&v[0]<=_)){var C=au(d,(-p+m)/y);return iu(C,f),[v,tu(C)]}}}function s(e,n){var i=r?t:dc-t,a=0;return e<-i?a|=1:e>i&&(a|=2),n<-i?a|=4:n>i&&(a|=8),a}return wl(a,(function(t){var e,n,c,u,l;return{lineStart:function(){u=c=!1,l=1},point:function(h,f){var d,p=[h,f],y=a(h,f),g=r?y?0:s(h,f):y?s(h+(h<0?dc:-dc),f):0;if(!e&&(u=c=y)&&t.lineStart(),y!==c&&(!(d=o(e,p))||gl(e,d)||gl(p,d))&&(p[2]=1),y!==c)l=0,y?(t.lineStart(),d=o(p,e),t.point(d[0],d[1])):(d=o(e,p),t.point(d[0],d[1],2),t.lineEnd()),e=d;else if(i&&e&&r^y){var m;g&n||!(m=o(p,e,!0))||(l=0,r?(t.lineStart(),t.point(m[0][0],m[0][1]),t.point(m[1][0],m[1][1]),t.lineEnd()):(t.point(m[1][0],m[1][1]),t.lineEnd(),t.lineStart(),t.point(m[0][0],m[0][1],3)))}!y||e&&gl(e,p)||t.point(p[0],p[1]),e=p,c=y,n=g},lineEnd:function(){c&&t.lineEnd(),e=null},clean:function(){return l|(u&&c)<<1}}}),(function(e,r,i,a){fl(a,t,n,i,e,r)}),r?[0,-t]:[-dc,t-dc])};function Al(t,e,n,r){function i(i,a){return t<=i&&i<=n&&e<=a&&a<=r}function a(i,a,s,u){var l=0,h=0;if(null==i||(l=o(i,s))!==(h=o(a,s))||c(i,a)<0^s>0)do{u.point(0===l||3===l?t:n,l>1?r:e)}while((l=(l+s+4)%4)!==h);else u.point(a[0],a[1])}function o(r,i){return bc(r[0]-t)<1e-6?i>0?0:3:bc(r[0]-n)<1e-6?i>0?2:1:bc(r[1]-e)<1e-6?i>0?1:0:i>0?3:2}function s(t,e){return c(t.x,e.x)}function c(t,e){var n=o(t,1),r=o(e,1);return n!==r?n-r:0===n?e[1]-t[1]:1===n?t[0]-e[0]:2===n?t[1]-e[1]:e[0]-t[0]}return function(o){var c,u,l,h,f,d,p,y,g,m,v,b=o,x=yl(),_={point:k,lineStart:function(){_.point=w,u&&u.push(l=[]);m=!0,g=!1,p=y=NaN},lineEnd:function(){c&&(w(h,f),d&&g&&x.rejoin(),c.push(x.result()));_.point=k,g&&b.lineEnd()},polygonStart:function(){b=x,c=[],u=[],v=!0},polygonEnd:function(){var e=function(){for(var e=0,n=0,i=u.length;n<i;++n)for(var a,o,s=u[n],c=1,l=s.length,h=s[0],f=h[0],d=h[1];c<l;++c)a=f,o=d,h=s[c],f=h[0],d=h[1],o<=r?d>r&&(f-a)*(r-o)>(d-o)*(t-a)&&++e:d<=r&&(f-a)*(r-o)<(d-o)*(t-a)&&--e;return e}(),n=v&&e,i=(c=P(c)).length;(n||i)&&(o.polygonStart(),n&&(o.lineStart(),a(null,null,1,o),o.lineEnd()),i&&vl(c,s,e,a,o),o.polygonEnd());b=o,c=u=l=null}};function k(t,e){i(t,e)&&b.point(t,e)}function w(a,o){var s=i(a,o);if(u&&l.push([a,o]),m)h=a,f=o,d=s,m=!1,s&&(b.lineStart(),b.point(a,o));else if(s&&g)b.point(a,o);else{var c=[p=Math.max(-1e9,Math.min(1e9,p)),y=Math.max(-1e9,Math.min(1e9,y))],x=[a=Math.max(-1e9,Math.min(1e9,a)),o=Math.max(-1e9,Math.min(1e9,o))];!function(t,e,n,r,i,a){var o,s=t[0],c=t[1],u=0,l=1,h=e[0]-s,f=e[1]-c;if(o=n-s,h||!(o>0)){if(o/=h,h<0){if(o<u)return;o<l&&(l=o)}else if(h>0){if(o>l)return;o>u&&(u=o)}if(o=i-s,h||!(o<0)){if(o/=h,h<0){if(o>l)return;o>u&&(u=o)}else if(h>0){if(o<u)return;o<l&&(l=o)}if(o=r-c,f||!(o>0)){if(o/=f,f<0){if(o<u)return;o<l&&(l=o)}else if(f>0){if(o>l)return;o>u&&(u=o)}if(o=a-c,f||!(o<0)){if(o/=f,f<0){if(o>l)return;o>u&&(u=o)}else if(f>0){if(o<u)return;o<l&&(l=o)}return u>0&&(t[0]=s+u*h,t[1]=c+u*f),l<1&&(e[0]=s+l*h,e[1]=c+l*f),!0}}}}}(c,x,t,e,n,r)?s&&(b.lineStart(),b.point(a,o),v=!1):(g||(b.lineStart(),b.point(c[0],c[1])),b.point(x[0],x[1]),s||b.lineEnd(),v=!1)}p=a,y=o,g=s}return _}}var Ml,Ol,Nl,Bl=function(){var t,e,n,r=0,i=0,a=960,o=500;return n={stream:function(n){return t&&e===n?t:t=Al(r,i,a,o)(e=n)},extent:function(s){return arguments.length?(r=+s[0][0],i=+s[0][1],a=+s[1][0],o=+s[1][1],t=e=null,n):[[r,i],[a,o]]}}},Dl=uc(),Ll={sphere:Lc,point:Lc,lineStart:function(){Ll.point=Rl,Ll.lineEnd=Il},lineEnd:Lc,polygonStart:Lc,polygonEnd:Lc};function Il(){Ll.point=Ll.lineEnd=Lc}function Rl(t,e){Ml=t*=vc,Ol=Sc(e*=vc),Nl=kc(e),Ll.point=Fl}function Fl(t,e){t*=vc;var n=Sc(e*=vc),r=kc(e),i=bc(t-Ml),a=kc(i),o=r*Sc(i),s=Nl*n-Ol*r*a,c=Ol*n+Nl*r*a;Dl.add(_c(Mc(o*o+s*s),c)),Ml=t,Ol=n,Nl=r}var Pl=function(t){return Dl.reset(),Wc(t,Ll),+Dl},jl=[null,null],Yl={type:"LineString",coordinates:jl},zl=function(t,e){return jl[0]=t,jl[1]=e,Pl(Yl)},Ul={Feature:function(t,e){return ql(t.geometry,e)},FeatureCollection:function(t,e){for(var n=t.features,r=-1,i=n.length;++r<i;)if(ql(n[r].geometry,e))return!0;return!1}},$l={Sphere:function(){return!0},Point:function(t,e){return Wl(t.coordinates,e)},MultiPoint:function(t,e){for(var n=t.coordinates,r=-1,i=n.length;++r<i;)if(Wl(n[r],e))return!0;return!1},LineString:function(t,e){return Hl(t.coordinates,e)},MultiLineString:function(t,e){for(var n=t.coordinates,r=-1,i=n.length;++r<i;)if(Hl(n[r],e))return!0;return!1},Polygon:function(t,e){return Vl(t.coordinates,e)},MultiPolygon:function(t,e){for(var n=t.coordinates,r=-1,i=n.length;++r<i;)if(Vl(n[r],e))return!0;return!1},GeometryCollection:function(t,e){for(var n=t.geometries,r=-1,i=n.length;++r<i;)if(ql(n[r],e))return!0;return!1}};function ql(t,e){return!(!t||!$l.hasOwnProperty(t.type))&&$l[t.type](t,e)}function Wl(t,e){return 0===zl(t,e)}function Hl(t,e){for(var n,r,i,a=0,o=t.length;a<o;a++){if(0===(r=zl(t[a],e)))return!0;if(a>0&&(i=zl(t[a],t[a-1]))>0&&n<=i&&r<=i&&(n+r-i)*(1-Math.pow((n-r)/i,2))<1e-12*i)return!0;n=r}return!1}function Vl(t,e){return!!kl(t.map(Gl),Xl(e))}function Gl(t){return(t=t.map(Xl)).pop(),t}function Xl(t){return[t[0]*vc,t[1]*vc]}var Zl=function(t,e){return(t&&Ul.hasOwnProperty(t.type)?Ul[t.type]:ql)(t,e)};function Kl(t,e,n){var r=w(t,e-1e-6,n).concat(e);return function(t){return r.map((function(e){return[t,e]}))}}function Ql(t,e,n){var r=w(t,e-1e-6,n).concat(e);return function(t){return r.map((function(e){return[e,t]}))}}function Jl(){var t,e,n,r,i,a,o,s,c,u,l,h,f=10,d=f,p=90,y=360,g=2.5;function m(){return{type:"MultiLineString",coordinates:v()}}function v(){return w(wc(r/p)*p,n,p).map(l).concat(w(wc(s/y)*y,o,y).map(h)).concat(w(wc(e/f)*f,t,f).filter((function(t){return bc(t%p)>1e-6})).map(c)).concat(w(wc(a/d)*d,i,d).filter((function(t){return bc(t%y)>1e-6})).map(u))}return m.lines=function(){return v().map((function(t){return{type:"LineString",coordinates:t}}))},m.outline=function(){return{type:"Polygon",coordinates:[l(r).concat(h(o).slice(1),l(n).reverse().slice(1),h(s).reverse().slice(1))]}},m.extent=function(t){return arguments.length?m.extentMajor(t).extentMinor(t):m.extentMinor()},m.extentMajor=function(t){return arguments.length?(r=+t[0][0],n=+t[1][0],s=+t[0][1],o=+t[1][1],r>n&&(t=r,r=n,n=t),s>o&&(t=s,s=o,o=t),m.precision(g)):[[r,s],[n,o]]},m.extentMinor=function(n){return arguments.length?(e=+n[0][0],t=+n[1][0],a=+n[0][1],i=+n[1][1],e>t&&(n=e,e=t,t=n),a>i&&(n=a,a=i,i=n),m.precision(g)):[[e,a],[t,i]]},m.step=function(t){return arguments.length?m.stepMajor(t).stepMinor(t):m.stepMinor()},m.stepMajor=function(t){return arguments.length?(p=+t[0],y=+t[1],m):[p,y]},m.stepMinor=function(t){return arguments.length?(f=+t[0],d=+t[1],m):[f,d]},m.precision=function(f){return arguments.length?(g=+f,c=Kl(a,i,90),u=Ql(e,t,g),l=Kl(s,o,90),h=Ql(r,n,g),m):g},m.extentMajor([[-180,-89.999999],[180,89.999999]]).extentMinor([[-180,-80.000001],[180,80.000001]])}function th(){return Jl()()}var eh,nh,rh,ih,ah=function(t,e){var n=t[0]*vc,r=t[1]*vc,i=e[0]*vc,a=e[1]*vc,o=kc(r),s=Sc(r),c=kc(a),u=Sc(a),l=o*kc(n),h=o*Sc(n),f=c*kc(i),d=c*Sc(i),p=2*Bc(Mc(Dc(a-r)+o*c*Dc(i-n))),y=Sc(p),g=p?function(t){var e=Sc(t*=p)/y,n=Sc(p-t)/y,r=n*l+e*f,i=n*h+e*d,a=n*s+e*u;return[_c(i,r)*mc,_c(a,Mc(r*r+i*i))*mc]}:function(){return[n*mc,r*mc]};return g.distance=p,g},oh=function(t){return t},sh=uc(),ch=uc(),uh={point:Lc,lineStart:Lc,lineEnd:Lc,polygonStart:function(){uh.lineStart=lh,uh.lineEnd=dh},polygonEnd:function(){uh.lineStart=uh.lineEnd=uh.point=Lc,sh.add(bc(ch)),ch.reset()},result:function(){var t=sh/2;return sh.reset(),t}};function lh(){uh.point=hh}function hh(t,e){uh.point=fh,eh=rh=t,nh=ih=e}function fh(t,e){ch.add(ih*t-rh*e),rh=t,ih=e}function dh(){fh(eh,nh)}var ph=uh,yh=1/0,gh=yh,mh=-yh,vh=mh;var bh,xh,_h,kh,wh={point:function(t,e){t<yh&&(yh=t);t>mh&&(mh=t);e<gh&&(gh=e);e>vh&&(vh=e)},lineStart:Lc,lineEnd:Lc,polygonStart:Lc,polygonEnd:Lc,result:function(){var t=[[yh,gh],[mh,vh]];return mh=vh=-(gh=yh=1/0),t}},Eh=0,Th=0,Ch=0,Sh=0,Ah=0,Mh=0,Oh=0,Nh=0,Bh=0,Dh={point:Lh,lineStart:Ih,lineEnd:Ph,polygonStart:function(){Dh.lineStart=jh,Dh.lineEnd=Yh},polygonEnd:function(){Dh.point=Lh,Dh.lineStart=Ih,Dh.lineEnd=Ph},result:function(){var t=Bh?[Oh/Bh,Nh/Bh]:Mh?[Sh/Mh,Ah/Mh]:Ch?[Eh/Ch,Th/Ch]:[NaN,NaN];return Eh=Th=Ch=Sh=Ah=Mh=Oh=Nh=Bh=0,t}};function Lh(t,e){Eh+=t,Th+=e,++Ch}function Ih(){Dh.point=Rh}function Rh(t,e){Dh.point=Fh,Lh(_h=t,kh=e)}function Fh(t,e){var n=t-_h,r=e-kh,i=Mc(n*n+r*r);Sh+=i*(_h+t)/2,Ah+=i*(kh+e)/2,Mh+=i,Lh(_h=t,kh=e)}function Ph(){Dh.point=Lh}function jh(){Dh.point=zh}function Yh(){Uh(bh,xh)}function zh(t,e){Dh.point=Uh,Lh(bh=_h=t,xh=kh=e)}function Uh(t,e){var n=t-_h,r=e-kh,i=Mc(n*n+r*r);Sh+=i*(_h+t)/2,Ah+=i*(kh+e)/2,Mh+=i,Oh+=(i=kh*t-_h*e)*(_h+t),Nh+=i*(kh+e),Bh+=3*i,Lh(_h=t,kh=e)}var $h=Dh;function qh(t){this._context=t}qh.prototype={_radius:4.5,pointRadius:function(t){return this._radius=t,this},polygonStart:function(){this._line=0},polygonEnd:function(){this._line=NaN},lineStart:function(){this._point=0},lineEnd:function(){0===this._line&&this._context.closePath(),this._point=NaN},point:function(t,e){switch(this._point){case 0:this._context.moveTo(t,e),this._point=1;break;case 1:this._context.lineTo(t,e);break;default:this._context.moveTo(t+this._radius,e),this._context.arc(t,e,this._radius,0,gc)}},result:Lc};var Wh,Hh,Vh,Gh,Xh,Zh=uc(),Kh={point:Lc,lineStart:function(){Kh.point=Qh},lineEnd:function(){Wh&&Jh(Hh,Vh),Kh.point=Lc},polygonStart:function(){Wh=!0},polygonEnd:function(){Wh=null},result:function(){var t=+Zh;return Zh.reset(),t}};function Qh(t,e){Kh.point=Jh,Hh=Gh=t,Vh=Xh=e}function Jh(t,e){Gh-=t,Xh-=e,Zh.add(Mc(Gh*Gh+Xh*Xh)),Gh=t,Xh=e}var tf=Kh;function ef(){this._string=[]}function nf(t){return"m0,"+t+"a"+t+","+t+" 0 1,1 0,"+-2*t+"a"+t+","+t+" 0 1,1 0,"+2*t+"z"}ef.prototype={_radius:4.5,_circle:nf(4.5),pointRadius:function(t){return(t=+t)!==this._radius&&(this._radius=t,this._circle=null),this},polygonStart:function(){this._line=0},polygonEnd:function(){this._line=NaN},lineStart:function(){this._point=0},lineEnd:function(){0===this._line&&this._string.push("Z"),this._point=NaN},point:function(t,e){switch(this._point){case 0:this._string.push("M",t,",",e),this._point=1;break;case 1:this._string.push("L",t,",",e);break;default:null==this._circle&&(this._circle=nf(this._radius)),this._string.push("M",t,",",e,this._circle)}},result:function(){if(this._string.length){var t=this._string.join("");return this._string=[],t}return null}};var rf=function(t,e){var n,r,i=4.5;function a(t){return t&&("function"==typeof i&&r.pointRadius(+i.apply(this,arguments)),Wc(t,n(r))),r.result()}return a.area=function(t){return Wc(t,n(ph)),ph.result()},a.measure=function(t){return Wc(t,n(tf)),tf.result()},a.bounds=function(t){return Wc(t,n(wh)),wh.result()},a.centroid=function(t){return Wc(t,n($h)),$h.result()},a.projection=function(e){return arguments.length?(n=null==e?(t=null,oh):(t=e).stream,a):t},a.context=function(t){return arguments.length?(r=null==t?(e=null,new ef):new qh(e=t),"function"!=typeof i&&r.pointRadius(i),a):e},a.pointRadius=function(t){return arguments.length?(i="function"==typeof t?t:(r.pointRadius(+t),+t),a):i},a.projection(t).context(e)},af=function(t){return{stream:of(t)}};function of(t){return function(e){var n=new sf;for(var r in t)n[r]=t[r];return n.stream=e,n}}function sf(){}function cf(t,e,n){var r=t.clipExtent&&t.clipExtent();return t.scale(150).translate([0,0]),null!=r&&t.clipExtent(null),Wc(n,t.stream(wh)),e(wh.result()),null!=r&&t.clipExtent(r),t}function uf(t,e,n){return cf(t,(function(n){var r=e[1][0]-e[0][0],i=e[1][1]-e[0][1],a=Math.min(r/(n[1][0]-n[0][0]),i/(n[1][1]-n[0][1])),o=+e[0][0]+(r-a*(n[1][0]+n[0][0]))/2,s=+e[0][1]+(i-a*(n[1][1]+n[0][1]))/2;t.scale(150*a).translate([o,s])}),n)}function lf(t,e,n){return uf(t,[[0,0],e],n)}function hf(t,e,n){return cf(t,(function(n){var r=+e,i=r/(n[1][0]-n[0][0]),a=(r-i*(n[1][0]+n[0][0]))/2,o=-i*n[0][1];t.scale(150*i).translate([a,o])}),n)}function ff(t,e,n){return cf(t,(function(n){var r=+e,i=r/(n[1][1]-n[0][1]),a=-i*n[0][0],o=(r-i*(n[1][1]+n[0][1]))/2;t.scale(150*i).translate([a,o])}),n)}sf.prototype={constructor:sf,point:function(t,e){this.stream.point(t,e)},sphere:function(){this.stream.sphere()},lineStart:function(){this.stream.lineStart()},lineEnd:function(){this.stream.lineEnd()},polygonStart:function(){this.stream.polygonStart()},polygonEnd:function(){this.stream.polygonEnd()}};var df=kc(30*vc),pf=function(t,e){return+e?function(t,e){function n(r,i,a,o,s,c,u,l,h,f,d,p,y,g){var m=u-r,v=l-i,b=m*m+v*v;if(b>4*e&&y--){var x=o+f,_=s+d,k=c+p,w=Mc(x*x+_*_+k*k),E=Bc(k/=w),T=bc(bc(k)-1)<1e-6||bc(a-h)<1e-6?(a+h)/2:_c(_,x),C=t(T,E),S=C[0],A=C[1],M=S-r,O=A-i,N=v*M-m*O;(N*N/b>e||bc((m*M+v*O)/b-.5)>.3||o*f+s*d+c*p<df)&&(n(r,i,a,o,s,c,S,A,T,x/=w,_/=w,k,y,g),g.point(S,A),n(S,A,T,x,_,k,u,l,h,f,d,p,y,g))}}return function(e){var r,i,a,o,s,c,u,l,h,f,d,p,y={point:g,lineStart:m,lineEnd:b,polygonStart:function(){e.polygonStart(),y.lineStart=x},polygonEnd:function(){e.polygonEnd(),y.lineStart=m}};function g(n,r){n=t(n,r),e.point(n[0],n[1])}function m(){l=NaN,y.point=v,e.lineStart()}function v(r,i){var a=eu([r,i]),o=t(r,i);n(l,h,u,f,d,p,l=o[0],h=o[1],u=r,f=a[0],d=a[1],p=a[2],16,e),e.point(l,h)}function b(){y.point=g,e.lineEnd()}function x(){m(),y.point=_,y.lineEnd=k}function _(t,e){v(r=t,e),i=l,a=h,o=f,s=d,c=p,y.point=v}function k(){n(l,h,u,f,d,p,i,a,r,o,s,c,16,e),y.lineEnd=b,b()}return y}}(t,e):function(t){return of({point:function(e,n){e=t(e,n),this.stream.point(e[0],e[1])}})}(t)};var yf=of({point:function(t,e){this.stream.point(t*vc,e*vc)}});function gf(t,e,n,r,i){function a(a,o){return[e+t*(a*=r),n-t*(o*=i)]}return a.invert=function(a,o){return[(a-e)/t*r,(n-o)/t*i]},a}function mf(t,e,n,r,i,a){var o=kc(a),s=Sc(a),c=o*t,u=s*t,l=o/t,h=s/t,f=(s*n-o*e)/t,d=(s*e+o*n)/t;function p(t,a){return[c*(t*=r)-u*(a*=i)+e,n-u*t-c*a]}return p.invert=function(t,e){return[r*(l*t-h*e+f),i*(d-h*t-l*e)]},p}function vf(t){return bf((function(){return t}))()}function bf(t){var e,n,r,i,a,o,s,c,u,l,h=150,f=480,d=250,p=0,y=0,g=0,m=0,v=0,b=0,x=1,_=1,k=null,w=Cl,E=null,T=oh,C=.5;function S(t){return c(t[0]*vc,t[1]*vc)}function A(t){return(t=c.invert(t[0],t[1]))&&[t[0]*mc,t[1]*mc]}function M(){var t=mf(h,0,0,x,_,b).apply(null,e(p,y)),r=(b?mf:gf)(h,f-t[0],d-t[1],x,_,b);return n=sl(g,m,v),s=al(e,r),c=al(n,s),o=pf(s,C),O()}function O(){return u=l=null,S}return S.stream=function(t){return u&&l===t?u:u=yf(function(t){return of({point:function(e,n){var r=t(e,n);return this.stream.point(r[0],r[1])}})}(n)(w(o(T(l=t)))))},S.preclip=function(t){return arguments.length?(w=t,k=void 0,O()):w},S.postclip=function(t){return arguments.length?(T=t,E=r=i=a=null,O()):T},S.clipAngle=function(t){return arguments.length?(w=+t?Sl(k=t*vc):(k=null,Cl),O()):k*mc},S.clipExtent=function(t){return arguments.length?(T=null==t?(E=r=i=a=null,oh):Al(E=+t[0][0],r=+t[0][1],i=+t[1][0],a=+t[1][1]),O()):null==E?null:[[E,r],[i,a]]},S.scale=function(t){return arguments.length?(h=+t,M()):h},S.translate=function(t){return arguments.length?(f=+t[0],d=+t[1],M()):[f,d]},S.center=function(t){return arguments.length?(p=t[0]%360*vc,y=t[1]%360*vc,M()):[p*mc,y*mc]},S.rotate=function(t){return arguments.length?(g=t[0]%360*vc,m=t[1]%360*vc,v=t.length>2?t[2]%360*vc:0,M()):[g*mc,m*mc,v*mc]},S.angle=function(t){return arguments.length?(b=t%360*vc,M()):b*mc},S.reflectX=function(t){return arguments.length?(x=t?-1:1,M()):x<0},S.reflectY=function(t){return arguments.length?(_=t?-1:1,M()):_<0},S.precision=function(t){return arguments.length?(o=pf(s,C=t*t),O()):Mc(C)},S.fitExtent=function(t,e){return uf(S,t,e)},S.fitSize=function(t,e){return lf(S,t,e)},S.fitWidth=function(t,e){return hf(S,t,e)},S.fitHeight=function(t,e){return ff(S,t,e)},function(){return e=t.apply(this,arguments),S.invert=e.invert&&A,M()}}function xf(t){var e=0,n=dc/3,r=bf(t),i=r(e,n);return i.parallels=function(t){return arguments.length?r(e=t[0]*vc,n=t[1]*vc):[e*mc,n*mc]},i}function _f(t,e){var n=Sc(t),r=(n+Sc(e))/2;if(bc(r)<1e-6)return function(t){var e=kc(t);function n(t,n){return[t*e,Sc(n)/e]}return n.invert=function(t,n){return[t/e,Bc(n*e)]},n}(t);var i=1+n*(2*r-n),a=Mc(i)/r;function o(t,e){var n=Mc(i-2*r*Sc(e))/r;return[n*Sc(t*=r),a-n*kc(t)]}return o.invert=function(t,e){var n=a-e,o=_c(t,bc(n))*Ac(n);return n*r<0&&(o-=dc*Ac(t)*Ac(n)),[o/r,Bc((i-(t*t+n*n)*r*r)/(2*r))]},o}var kf=function(){return xf(_f).scale(155.424).center([0,33.6442])},wf=function(){return kf().parallels([29.5,45.5]).scale(1070).translate([480,250]).rotate([96,0]).center([-.6,38.7])};var Ef=function(){var t,e,n,r,i,a,o=wf(),s=kf().rotate([154,0]).center([-2,58.5]).parallels([55,65]),c=kf().rotate([157,0]).center([-3,19.9]).parallels([8,18]),u={point:function(t,e){a=[t,e]}};function l(t){var e=t[0],o=t[1];return a=null,n.point(e,o),a||(r.point(e,o),a)||(i.point(e,o),a)}function h(){return t=e=null,l}return l.invert=function(t){var e=o.scale(),n=o.translate(),r=(t[0]-n[0])/e,i=(t[1]-n[1])/e;return(i>=.12&&i<.234&&r>=-.425&&r<-.214?s:i>=.166&&i<.234&&r>=-.214&&r<-.115?c:o).invert(t)},l.stream=function(n){return t&&e===n?t:(r=[o.stream(e=n),s.stream(n),c.stream(n)],i=r.length,t={point:function(t,e){for(var n=-1;++n<i;)r[n].point(t,e)},sphere:function(){for(var t=-1;++t<i;)r[t].sphere()},lineStart:function(){for(var t=-1;++t<i;)r[t].lineStart()},lineEnd:function(){for(var t=-1;++t<i;)r[t].lineEnd()},polygonStart:function(){for(var t=-1;++t<i;)r[t].polygonStart()},polygonEnd:function(){for(var t=-1;++t<i;)r[t].polygonEnd()}});var r,i},l.precision=function(t){return arguments.length?(o.precision(t),s.precision(t),c.precision(t),h()):o.precision()},l.scale=function(t){return arguments.length?(o.scale(t),s.scale(.35*t),c.scale(t),l.translate(o.translate())):o.scale()},l.translate=function(t){if(!arguments.length)return o.translate();var e=o.scale(),a=+t[0],l=+t[1];return n=o.translate(t).clipExtent([[a-.455*e,l-.238*e],[a+.455*e,l+.238*e]]).stream(u),r=s.translate([a-.307*e,l+.201*e]).clipExtent([[a-.425*e+1e-6,l+.12*e+1e-6],[a-.214*e-1e-6,l+.234*e-1e-6]]).stream(u),i=c.translate([a-.205*e,l+.212*e]).clipExtent([[a-.214*e+1e-6,l+.166*e+1e-6],[a-.115*e-1e-6,l+.234*e-1e-6]]).stream(u),h()},l.fitExtent=function(t,e){return uf(l,t,e)},l.fitSize=function(t,e){return lf(l,t,e)},l.fitWidth=function(t,e){return hf(l,t,e)},l.fitHeight=function(t,e){return ff(l,t,e)},l.scale(1070)};function Tf(t){return function(e,n){var r=kc(e),i=kc(n),a=t(r*i);return[a*i*Sc(e),a*Sc(n)]}}function Cf(t){return function(e,n){var r=Mc(e*e+n*n),i=t(r),a=Sc(i),o=kc(i);return[_c(e*a,r*o),Bc(r&&n*a/r)]}}var Sf=Tf((function(t){return Mc(2/(1+t))}));Sf.invert=Cf((function(t){return 2*Bc(t/2)}));var Af=function(){return vf(Sf).scale(124.75).clipAngle(179.999)},Mf=Tf((function(t){return(t=Nc(t))&&t/Sc(t)}));Mf.invert=Cf((function(t){return t}));var Of=function(){return vf(Mf).scale(79.4188).clipAngle(179.999)};function Nf(t,e){return[t,Tc(Oc((pc+e)/2))]}Nf.invert=function(t,e){return[t,2*xc(Ec(e))-pc]};var Bf=function(){return Df(Nf).scale(961/gc)};function Df(t){var e,n,r,i=vf(t),a=i.center,o=i.scale,s=i.translate,c=i.clipExtent,u=null;function l(){var a=dc*o(),s=i(hl(i.rotate()).invert([0,0]));return c(null==u?[[s[0]-a,s[1]-a],[s[0]+a,s[1]+a]]:t===Nf?[[Math.max(s[0]-a,u),e],[Math.min(s[0]+a,n),r]]:[[u,Math.max(s[1]-a,e)],[n,Math.min(s[1]+a,r)]])}return i.scale=function(t){return arguments.length?(o(t),l()):o()},i.translate=function(t){return arguments.length?(s(t),l()):s()},i.center=function(t){return arguments.length?(a(t),l()):a()},i.clipExtent=function(t){return arguments.length?(null==t?u=e=n=r=null:(u=+t[0][0],e=+t[0][1],n=+t[1][0],r=+t[1][1]),l()):null==u?null:[[u,e],[n,r]]},l()}function Lf(t){return Oc((pc+t)/2)}function If(t,e){var n=kc(t),r=t===e?Sc(t):Tc(n/kc(e))/Tc(Lf(e)/Lf(t)),i=n*Cc(Lf(t),r)/r;if(!r)return Nf;function a(t,e){i>0?e<1e-6-pc&&(e=1e-6-pc):e>pc-1e-6&&(e=pc-1e-6);var n=i/Cc(Lf(e),r);return[n*Sc(r*t),i-n*kc(r*t)]}return a.invert=function(t,e){var n=i-e,a=Ac(r)*Mc(t*t+n*n),o=_c(t,bc(n))*Ac(n);return n*r<0&&(o-=dc*Ac(t)*Ac(n)),[o/r,2*xc(Cc(i/a,1/r))-pc]},a}var Rf=function(){return xf(If).scale(109.5).parallels([30,30])};function Ff(t,e){return[t,e]}Ff.invert=Ff;var Pf=function(){return vf(Ff).scale(152.63)};function jf(t,e){var n=kc(t),r=t===e?Sc(t):(n-kc(e))/(e-t),i=n/r+t;if(bc(r)<1e-6)return Ff;function a(t,e){var n=i-e,a=r*t;return[n*Sc(a),i-n*kc(a)]}return a.invert=function(t,e){var n=i-e,a=_c(t,bc(n))*Ac(n);return n*r<0&&(a-=dc*Ac(t)*Ac(n)),[a/r,i-Ac(r)*Mc(t*t+n*n)]},a}var Yf=function(){return xf(jf).scale(131.154).center([0,13.9389])},zf=1.340264,Uf=-.081106,$f=893e-6,qf=.003796,Wf=Mc(3)/2;function Hf(t,e){var n=Bc(Wf*Sc(e)),r=n*n,i=r*r*r;return[t*kc(n)/(Wf*(zf+3*Uf*r+i*(7*$f+9*qf*r))),n*(zf+Uf*r+i*($f+qf*r))]}Hf.invert=function(t,e){for(var n,r=e,i=r*r,a=i*i*i,o=0;o<12&&(a=(i=(r-=n=(r*(zf+Uf*i+a*($f+qf*i))-e)/(zf+3*Uf*i+a*(7*$f+9*qf*i)))*r)*i*i,!(bc(n)<1e-12));++o);return[Wf*t*(zf+3*Uf*i+a*(7*$f+9*qf*i))/kc(r),Bc(Sc(r)/Wf)]};var Vf=function(){return vf(Hf).scale(177.158)};function Gf(t,e){var n=kc(e),r=kc(t)*n;return[n*Sc(t)/r,Sc(e)/r]}Gf.invert=Cf(xc);var Xf=function(){return vf(Gf).scale(144.049).clipAngle(60)},Zf=function(){var t,e,n,r,i,a,o,s=1,c=0,u=0,l=1,h=1,f=0,d=null,p=1,y=1,g=of({point:function(t,e){var n=b([t,e]);this.stream.point(n[0],n[1])}}),m=oh;function v(){return p=s*l,y=s*h,a=o=null,b}function b(n){var r=n[0]*p,i=n[1]*y;if(f){var a=i*t-r*e;r=r*t+i*e,i=a}return[r+c,i+u]}return b.invert=function(n){var r=n[0]-c,i=n[1]-u;if(f){var a=i*t+r*e;r=r*t-i*e,i=a}return[r/p,i/y]},b.stream=function(t){return a&&o===t?a:a=g(m(o=t))},b.postclip=function(t){return arguments.length?(m=t,d=n=r=i=null,v()):m},b.clipExtent=function(t){return arguments.length?(m=null==t?(d=n=r=i=null,oh):Al(d=+t[0][0],n=+t[0][1],r=+t[1][0],i=+t[1][1]),v()):null==d?null:[[d,n],[r,i]]},b.scale=function(t){return arguments.length?(s=+t,v()):s},b.translate=function(t){return arguments.length?(c=+t[0],u=+t[1],v()):[c,u]},b.angle=function(n){return arguments.length?(e=Sc(f=n%360*vc),t=kc(f),v()):f*mc},b.reflectX=function(t){return arguments.length?(l=t?-1:1,v()):l<0},b.reflectY=function(t){return arguments.length?(h=t?-1:1,v()):h<0},b.fitExtent=function(t,e){return uf(b,t,e)},b.fitSize=function(t,e){return lf(b,t,e)},b.fitWidth=function(t,e){return hf(b,t,e)},b.fitHeight=function(t,e){return ff(b,t,e)},b};function Kf(t,e){var n=e*e,r=n*n;return[t*(.8707-.131979*n+r*(r*(.003971*n-.001529*r)-.013791)),e*(1.007226+n*(.015085+r*(.028874*n-.044475-.005916*r)))]}Kf.invert=function(t,e){var n,r=e,i=25;do{var a=r*r,o=a*a;r-=n=(r*(1.007226+a*(.015085+o*(.028874*a-.044475-.005916*o)))-e)/(1.007226+a*(.045255+o*(.259866*a-.311325-.005916*11*o)))}while(bc(n)>1e-6&&--i>0);return[t/(.8707+(a=r*r)*(a*(a*a*a*(.003971-.001529*a)-.013791)-.131979)),r]};var Qf=function(){return vf(Kf).scale(175.295)};function Jf(t,e){return[kc(e)*Sc(t),Sc(e)]}Jf.invert=Cf(Bc);var td=function(){return vf(Jf).scale(249.5).clipAngle(90.000001)};function ed(t,e){var n=kc(e),r=1+kc(t)*n;return[n*Sc(t)/r,Sc(e)/r]}ed.invert=Cf((function(t){return 2*xc(t)}));var nd=function(){return vf(ed).scale(250).clipAngle(142)};function rd(t,e){return[Tc(Oc((pc+e)/2)),-t]}rd.invert=function(t,e){return[-e,2*xc(Ec(t))-pc]};var id=function(){var t=Df(rd),e=t.center,n=t.rotate;return t.center=function(t){return arguments.length?e([-t[1],t[0]]):[(t=e())[1],-t[0]]},t.rotate=function(t){return arguments.length?n([t[0],t[1],t.length>2?t[2]+90:90]):[(t=n())[0],t[1],t[2]-90]},n([0,0,90]).scale(159.155)};function ad(t,e){return t.parent===e.parent?1:2}function od(t,e){return t+e.x}function sd(t,e){return Math.max(t,e.y)}var cd=function(){var t=ad,e=1,n=1,r=!1;function i(i){var a,o=0;i.eachAfter((function(e){var n=e.children;n?(e.x=function(t){return t.reduce(od,0)/t.length}(n),e.y=function(t){return 1+t.reduce(sd,0)}(n)):(e.x=a?o+=t(e,a):0,e.y=0,a=e)}));var s=function(t){for(var e;e=t.children;)t=e[0];return t}(i),c=function(t){for(var e;e=t.children;)t=e[e.length-1];return t}(i),u=s.x-t(s,c)/2,l=c.x+t(c,s)/2;return i.eachAfter(r?function(t){t.x=(t.x-i.x)*e,t.y=(i.y-t.y)*n}:function(t){t.x=(t.x-u)/(l-u)*e,t.y=(1-(i.y?t.y/i.y:1))*n})}return i.separation=function(e){return arguments.length?(t=e,i):t},i.size=function(t){return arguments.length?(r=!1,e=+t[0],n=+t[1],i):r?null:[e,n]},i.nodeSize=function(t){return arguments.length?(r=!0,e=+t[0],n=+t[1],i):r?[e,n]:null},i};function ud(t){var e=0,n=t.children,r=n&&n.length;if(r)for(;--r>=0;)e+=n[r].value;else e=1;t.value=e}function ld(t,e){var n,r,i,a,o,s=new pd(t),c=+t.value&&(s.value=t.value),u=[s];for(null==e&&(e=hd);n=u.pop();)if(c&&(n.value=+n.data.value),(i=e(n.data))&&(o=i.length))for(n.children=new Array(o),a=o-1;a>=0;--a)u.push(r=n.children[a]=new pd(i[a])),r.parent=n,r.depth=n.depth+1;return s.eachBefore(dd)}function hd(t){return t.children}function fd(t){t.data=t.data.data}function dd(t){var e=0;do{t.height=e}while((t=t.parent)&&t.height<++e)}function pd(t){this.data=t,this.depth=this.height=0,this.parent=null}pd.prototype=ld.prototype={constructor:pd,count:function(){return this.eachAfter(ud)},each:function(t){var e,n,r,i,a=this,o=[a];do{for(e=o.reverse(),o=[];a=e.pop();)if(t(a),n=a.children)for(r=0,i=n.length;r<i;++r)o.push(n[r])}while(o.length);return this},eachAfter:function(t){for(var e,n,r,i=this,a=[i],o=[];i=a.pop();)if(o.push(i),e=i.children)for(n=0,r=e.length;n<r;++n)a.push(e[n]);for(;i=o.pop();)t(i);return this},eachBefore:function(t){for(var e,n,r=this,i=[r];r=i.pop();)if(t(r),e=r.children)for(n=e.length-1;n>=0;--n)i.push(e[n]);return this},sum:function(t){return this.eachAfter((function(e){for(var n=+t(e.data)||0,r=e.children,i=r&&r.length;--i>=0;)n+=r[i].value;e.value=n}))},sort:function(t){return this.eachBefore((function(e){e.children&&e.children.sort(t)}))},path:function(t){for(var e=this,n=function(t,e){if(t===e)return t;var n=t.ancestors(),r=e.ancestors(),i=null;t=n.pop(),e=r.pop();for(;t===e;)i=t,t=n.pop(),e=r.pop();return i}(e,t),r=[e];e!==n;)e=e.parent,r.push(e);for(var i=r.length;t!==n;)r.splice(i,0,t),t=t.parent;return r},ancestors:function(){for(var t=this,e=[t];t=t.parent;)e.push(t);return e},descendants:function(){var t=[];return this.each((function(e){t.push(e)})),t},leaves:function(){var t=[];return this.eachBefore((function(e){e.children||t.push(e)})),t},links:function(){var t=this,e=[];return t.each((function(n){n!==t&&e.push({source:n.parent,target:n})})),e},copy:function(){return ld(this).eachBefore(fd)}};var yd=Array.prototype.slice;var gd=function(t){for(var e,n,r=0,i=(t=function(t){for(var e,n,r=t.length;r;)n=Math.random()*r--|0,e=t[r],t[r]=t[n],t[n]=e;return t}(yd.call(t))).length,a=[];r<i;)e=t[r],n&&bd(n,e)?++r:(n=_d(a=md(a,e)),r=0);return n};function md(t,e){var n,r;if(xd(e,t))return[e];for(n=0;n<t.length;++n)if(vd(e,t[n])&&xd(kd(t[n],e),t))return[t[n],e];for(n=0;n<t.length-1;++n)for(r=n+1;r<t.length;++r)if(vd(kd(t[n],t[r]),e)&&vd(kd(t[n],e),t[r])&&vd(kd(t[r],e),t[n])&&xd(wd(t[n],t[r],e),t))return[t[n],t[r],e];throw new Error}function vd(t,e){var n=t.r-e.r,r=e.x-t.x,i=e.y-t.y;return n<0||n*n<r*r+i*i}function bd(t,e){var n=t.r-e.r+1e-6,r=e.x-t.x,i=e.y-t.y;return n>0&&n*n>r*r+i*i}function xd(t,e){for(var n=0;n<e.length;++n)if(!bd(t,e[n]))return!1;return!0}function _d(t){switch(t.length){case 1:return{x:(e=t[0]).x,y:e.y,r:e.r};case 2:return kd(t[0],t[1]);case 3:return wd(t[0],t[1],t[2])}var e}function kd(t,e){var n=t.x,r=t.y,i=t.r,a=e.x,o=e.y,s=e.r,c=a-n,u=o-r,l=s-i,h=Math.sqrt(c*c+u*u);return{x:(n+a+c/h*l)/2,y:(r+o+u/h*l)/2,r:(h+i+s)/2}}function wd(t,e,n){var r=t.x,i=t.y,a=t.r,o=e.x,s=e.y,c=e.r,u=n.x,l=n.y,h=n.r,f=r-o,d=r-u,p=i-s,y=i-l,g=c-a,m=h-a,v=r*r+i*i-a*a,b=v-o*o-s*s+c*c,x=v-u*u-l*l+h*h,_=d*p-f*y,k=(p*x-y*b)/(2*_)-r,w=(y*g-p*m)/_,E=(d*b-f*x)/(2*_)-i,T=(f*m-d*g)/_,C=w*w+T*T-1,S=2*(a+k*w+E*T),A=k*k+E*E-a*a,M=-(C?(S+Math.sqrt(S*S-4*C*A))/(2*C):A/S);return{x:r+k+w*M,y:i+E+T*M,r:M}}function Ed(t,e,n){var r,i,a,o,s=t.x-e.x,c=t.y-e.y,u=s*s+c*c;u?(i=e.r+n.r,i*=i,o=t.r+n.r,i>(o*=o)?(r=(u+o-i)/(2*u),a=Math.sqrt(Math.max(0,o/u-r*r)),n.x=t.x-r*s-a*c,n.y=t.y-r*c+a*s):(r=(u+i-o)/(2*u),a=Math.sqrt(Math.max(0,i/u-r*r)),n.x=e.x+r*s-a*c,n.y=e.y+r*c+a*s)):(n.x=e.x+n.r,n.y=e.y)}function Td(t,e){var n=t.r+e.r-1e-6,r=e.x-t.x,i=e.y-t.y;return n>0&&n*n>r*r+i*i}function Cd(t){var e=t._,n=t.next._,r=e.r+n.r,i=(e.x*n.r+n.x*e.r)/r,a=(e.y*n.r+n.y*e.r)/r;return i*i+a*a}function Sd(t){this._=t,this.next=null,this.previous=null}function Ad(t){if(!(i=t.length))return 0;var e,n,r,i,a,o,s,c,u,l,h;if((e=t[0]).x=0,e.y=0,!(i>1))return e.r;if(n=t[1],e.x=-n.r,n.x=e.r,n.y=0,!(i>2))return e.r+n.r;Ed(n,e,r=t[2]),e=new Sd(e),n=new Sd(n),r=new Sd(r),e.next=r.previous=n,n.next=e.previous=r,r.next=n.previous=e;t:for(s=3;s<i;++s){Ed(e._,n._,r=t[s]),r=new Sd(r),c=n.next,u=e.previous,l=n._.r,h=e._.r;do{if(l<=h){if(Td(c._,r._)){n=c,e.next=n,n.previous=e,--s;continue t}l+=c._.r,c=c.next}else{if(Td(u._,r._)){(e=u).next=n,n.previous=e,--s;continue t}h+=u._.r,u=u.previous}}while(c!==u.next);for(r.previous=e,r.next=n,e.next=n.previous=n=r,a=Cd(e);(r=r.next)!==n;)(o=Cd(r))<a&&(e=r,a=o);n=e.next}for(e=[n._],r=n;(r=r.next)!==n;)e.push(r._);for(r=gd(e),s=0;s<i;++s)(e=t[s]).x-=r.x,e.y-=r.y;return r.r}var Md=function(t){return Ad(t),t};function Od(t){return null==t?null:Nd(t)}function Nd(t){if("function"!=typeof t)throw new Error;return t}function Bd(){return 0}var Dd=function(t){return function(){return t}};function Ld(t){return Math.sqrt(t.value)}var Id=function(){var t=null,e=1,n=1,r=Bd;function i(i){return i.x=e/2,i.y=n/2,t?i.eachBefore(Rd(t)).eachAfter(Fd(r,.5)).eachBefore(Pd(1)):i.eachBefore(Rd(Ld)).eachAfter(Fd(Bd,1)).eachAfter(Fd(r,i.r/Math.min(e,n))).eachBefore(Pd(Math.min(e,n)/(2*i.r))),i}return i.radius=function(e){return arguments.length?(t=Od(e),i):t},i.size=function(t){return arguments.length?(e=+t[0],n=+t[1],i):[e,n]},i.padding=function(t){return arguments.length?(r="function"==typeof t?t:Dd(+t),i):r},i};function Rd(t){return function(e){e.children||(e.r=Math.max(0,+t(e)||0))}}function Fd(t,e){return function(n){if(r=n.children){var r,i,a,o=r.length,s=t(n)*e||0;if(s)for(i=0;i<o;++i)r[i].r+=s;if(a=Ad(r),s)for(i=0;i<o;++i)r[i].r-=s;n.r=a+s}}}function Pd(t){return function(e){var n=e.parent;e.r*=t,n&&(e.x=n.x+t*e.x,e.y=n.y+t*e.y)}}var jd=function(t){t.x0=Math.round(t.x0),t.y0=Math.round(t.y0),t.x1=Math.round(t.x1),t.y1=Math.round(t.y1)},Yd=function(t,e,n,r,i){for(var a,o=t.children,s=-1,c=o.length,u=t.value&&(r-e)/t.value;++s<c;)(a=o[s]).y0=n,a.y1=i,a.x0=e,a.x1=e+=a.value*u},zd=function(){var t=1,e=1,n=0,r=!1;function i(i){var a=i.height+1;return i.x0=i.y0=n,i.x1=t,i.y1=e/a,i.eachBefore(function(t,e){return function(r){r.children&&Yd(r,r.x0,t*(r.depth+1)/e,r.x1,t*(r.depth+2)/e);var i=r.x0,a=r.y0,o=r.x1-n,s=r.y1-n;o<i&&(i=o=(i+o)/2),s<a&&(a=s=(a+s)/2),r.x0=i,r.y0=a,r.x1=o,r.y1=s}}(e,a)),r&&i.eachBefore(jd),i}return i.round=function(t){return arguments.length?(r=!!t,i):r},i.size=function(n){return arguments.length?(t=+n[0],e=+n[1],i):[t,e]},i.padding=function(t){return arguments.length?(n=+t,i):n},i},Ud={depth:-1},$d={};function qd(t){return t.id}function Wd(t){return t.parentId}var Hd=function(){var t=qd,e=Wd;function n(n){var r,i,a,o,s,c,u,l=n.length,h=new Array(l),f={};for(i=0;i<l;++i)r=n[i],s=h[i]=new pd(r),null!=(c=t(r,i,n))&&(c+="")&&(f[u="$"+(s.id=c)]=u in f?$d:s);for(i=0;i<l;++i)if(s=h[i],null!=(c=e(n[i],i,n))&&(c+="")){if(!(o=f["$"+c]))throw new Error("missing: "+c);if(o===$d)throw new Error("ambiguous: "+c);o.children?o.children.push(s):o.children=[s],s.parent=o}else{if(a)throw new Error("multiple roots");a=s}if(!a)throw new Error("no root");if(a.parent=Ud,a.eachBefore((function(t){t.depth=t.parent.depth+1,--l})).eachBefore(dd),a.parent=null,l>0)throw new Error("cycle");return a}return n.id=function(e){return arguments.length?(t=Nd(e),n):t},n.parentId=function(t){return arguments.length?(e=Nd(t),n):e},n};function Vd(t,e){return t.parent===e.parent?1:2}function Gd(t){var e=t.children;return e?e[0]:t.t}function Xd(t){var e=t.children;return e?e[e.length-1]:t.t}function Zd(t,e,n){var r=n/(e.i-t.i);e.c-=r,e.s+=n,t.c+=r,e.z+=n,e.m+=n}function Kd(t,e,n){return t.a.parent===e.parent?t.a:n}function Qd(t,e){this._=t,this.parent=null,this.children=null,this.A=null,this.a=this,this.z=0,this.m=0,this.c=0,this.s=0,this.t=null,this.i=e}Qd.prototype=Object.create(pd.prototype);var Jd=function(){var t=Vd,e=1,n=1,r=null;function i(i){var c=function(t){for(var e,n,r,i,a,o=new Qd(t,0),s=[o];e=s.pop();)if(r=e._.children)for(e.children=new Array(a=r.length),i=a-1;i>=0;--i)s.push(n=e.children[i]=new Qd(r[i],i)),n.parent=e;return(o.parent=new Qd(null,0)).children=[o],o}(i);if(c.eachAfter(a),c.parent.m=-c.z,c.eachBefore(o),r)i.eachBefore(s);else{var u=i,l=i,h=i;i.eachBefore((function(t){t.x<u.x&&(u=t),t.x>l.x&&(l=t),t.depth>h.depth&&(h=t)}));var f=u===l?1:t(u,l)/2,d=f-u.x,p=e/(l.x+f+d),y=n/(h.depth||1);i.eachBefore((function(t){t.x=(t.x+d)*p,t.y=t.depth*y}))}return i}function a(e){var n=e.children,r=e.parent.children,i=e.i?r[e.i-1]:null;if(n){!function(t){for(var e,n=0,r=0,i=t.children,a=i.length;--a>=0;)(e=i[a]).z+=n,e.m+=n,n+=e.s+(r+=e.c)}(e);var a=(n[0].z+n[n.length-1].z)/2;i?(e.z=i.z+t(e._,i._),e.m=e.z-a):e.z=a}else i&&(e.z=i.z+t(e._,i._));e.parent.A=function(e,n,r){if(n){for(var i,a=e,o=e,s=n,c=a.parent.children[0],u=a.m,l=o.m,h=s.m,f=c.m;s=Xd(s),a=Gd(a),s&&a;)c=Gd(c),(o=Xd(o)).a=e,(i=s.z+h-a.z-u+t(s._,a._))>0&&(Zd(Kd(s,e,r),e,i),u+=i,l+=i),h+=s.m,u+=a.m,f+=c.m,l+=o.m;s&&!Xd(o)&&(o.t=s,o.m+=h-l),a&&!Gd(c)&&(c.t=a,c.m+=u-f,r=e)}return r}(e,i,e.parent.A||r[0])}function o(t){t._.x=t.z+t.parent.m,t.m+=t.parent.m}function s(t){t.x*=e,t.y=t.depth*n}return i.separation=function(e){return arguments.length?(t=e,i):t},i.size=function(t){return arguments.length?(r=!1,e=+t[0],n=+t[1],i):r?null:[e,n]},i.nodeSize=function(t){return arguments.length?(r=!0,e=+t[0],n=+t[1],i):r?[e,n]:null},i},tp=function(t,e,n,r,i){for(var a,o=t.children,s=-1,c=o.length,u=t.value&&(i-n)/t.value;++s<c;)(a=o[s]).x0=e,a.x1=r,a.y0=n,a.y1=n+=a.value*u},ep=(1+Math.sqrt(5))/2;function np(t,e,n,r,i,a){for(var o,s,c,u,l,h,f,d,p,y,g,m=[],v=e.children,b=0,x=0,_=v.length,k=e.value;b<_;){c=i-n,u=a-r;do{l=v[x++].value}while(!l&&x<_);for(h=f=l,g=l*l*(y=Math.max(u/c,c/u)/(k*t)),p=Math.max(f/g,g/h);x<_;++x){if(l+=s=v[x].value,s<h&&(h=s),s>f&&(f=s),g=l*l*y,(d=Math.max(f/g,g/h))>p){l-=s;break}p=d}m.push(o={value:l,dice:c<u,children:v.slice(b,x)}),o.dice?Yd(o,n,r,i,k?r+=u*l/k:a):tp(o,n,r,k?n+=c*l/k:i,a),k-=l,b=x}return m}var rp=function t(e){function n(t,n,r,i,a){np(e,t,n,r,i,a)}return n.ratio=function(e){return t((e=+e)>1?e:1)},n}(ep),ip=function(){var t=rp,e=!1,n=1,r=1,i=[0],a=Bd,o=Bd,s=Bd,c=Bd,u=Bd;function l(t){return t.x0=t.y0=0,t.x1=n,t.y1=r,t.eachBefore(h),i=[0],e&&t.eachBefore(jd),t}function h(e){var n=i[e.depth],r=e.x0+n,l=e.y0+n,h=e.x1-n,f=e.y1-n;h<r&&(r=h=(r+h)/2),f<l&&(l=f=(l+f)/2),e.x0=r,e.y0=l,e.x1=h,e.y1=f,e.children&&(n=i[e.depth+1]=a(e)/2,r+=u(e)-n,l+=o(e)-n,(h-=s(e)-n)<r&&(r=h=(r+h)/2),(f-=c(e)-n)<l&&(l=f=(l+f)/2),t(e,r,l,h,f))}return l.round=function(t){return arguments.length?(e=!!t,l):e},l.size=function(t){return arguments.length?(n=+t[0],r=+t[1],l):[n,r]},l.tile=function(e){return arguments.length?(t=Nd(e),l):t},l.padding=function(t){return arguments.length?l.paddingInner(t).paddingOuter(t):l.paddingInner()},l.paddingInner=function(t){return arguments.length?(a="function"==typeof t?t:Dd(+t),l):a},l.paddingOuter=function(t){return arguments.length?l.paddingTop(t).paddingRight(t).paddingBottom(t).paddingLeft(t):l.paddingTop()},l.paddingTop=function(t){return arguments.length?(o="function"==typeof t?t:Dd(+t),l):o},l.paddingRight=function(t){return arguments.length?(s="function"==typeof t?t:Dd(+t),l):s},l.paddingBottom=function(t){return arguments.length?(c="function"==typeof t?t:Dd(+t),l):c},l.paddingLeft=function(t){return arguments.length?(u="function"==typeof t?t:Dd(+t),l):u},l},ap=function(t,e,n,r,i){var a,o,s=t.children,c=s.length,u=new Array(c+1);for(u[0]=o=a=0;a<c;++a)u[a+1]=o+=s[a].value;!function t(e,n,r,i,a,o,c){if(e>=n-1){var l=s[e];return l.x0=i,l.y0=a,l.x1=o,void(l.y1=c)}var h=u[e],f=r/2+h,d=e+1,p=n-1;for(;d<p;){var y=d+p>>>1;u[y]<f?d=y+1:p=y}f-u[d-1]<u[d]-f&&e+1<d&&--d;var g=u[d]-h,m=r-g;if(o-i>c-a){var v=(i*m+o*g)/r;t(e,d,g,i,a,v,c),t(d,n,m,v,a,o,c)}else{var b=(a*m+c*g)/r;t(e,d,g,i,a,o,b),t(d,n,m,i,b,o,c)}}(0,c,t.value,e,n,r,i)},op=function(t,e,n,r,i){(1&t.depth?tp:Yd)(t,e,n,r,i)},sp=function t(e){function n(t,n,r,i,a){if((o=t._squarify)&&o.ratio===e)for(var o,s,c,u,l,h=-1,f=o.length,d=t.value;++h<f;){for(c=(s=o[h]).children,u=s.value=0,l=c.length;u<l;++u)s.value+=c[u].value;s.dice?Yd(s,n,r,i,r+=(a-r)*s.value/d):tp(s,n,r,n+=(i-n)*s.value/d,a),d-=s.value}else t._squarify=o=np(e,t,n,r,i,a),o.ratio=e}return n.ratio=function(e){return t((e=+e)>1?e:1)},n}(ep),cp=function(t){var e=t.length;return function(n){return t[Math.max(0,Math.min(e-1,Math.floor(n*e)))]}},up=function(t,e){var n=ln(+t,+e);return function(t){var e=n(t);return e-360*Math.floor(e/360)}},lp=function(t,e){return t=+t,e=+e,function(n){return Math.round(t*(1-n)+e*n)}},hp=Math.SQRT2;function fp(t){return((t=Math.exp(t))+1/t)/2}var dp=function(t,e){var n,r,i=t[0],a=t[1],o=t[2],s=e[0],c=e[1],u=e[2],l=s-i,h=c-a,f=l*l+h*h;if(f<1e-12)r=Math.log(u/o)/hp,n=function(t){return[i+t*l,a+t*h,o*Math.exp(hp*t*r)]};else{var d=Math.sqrt(f),p=(u*u-o*o+4*f)/(2*o*2*d),y=(u*u-o*o-4*f)/(2*u*2*d),g=Math.log(Math.sqrt(p*p+1)-p),m=Math.log(Math.sqrt(y*y+1)-y);r=(m-g)/hp,n=function(t){var e,n=t*r,s=fp(g),c=o/(2*d)*(s*(e=hp*n+g,((e=Math.exp(2*e))-1)/(e+1))-function(t){return((t=Math.exp(t))-1/t)/2}(g));return[i+c*l,a+c*h,o*s/fp(hp*n+g)]}}return n.duration=1e3*r,n};function pp(t){return function(e,n){var r=t((e=en(e)).h,(n=en(n)).h),i=fn(e.s,n.s),a=fn(e.l,n.l),o=fn(e.opacity,n.opacity);return function(t){return e.h=r(t),e.s=i(t),e.l=a(t),e.opacity=o(t),e+""}}}var yp=pp(ln),gp=pp(fn);function mp(t,e){var n=fn((t=ya(t)).l,(e=ya(e)).l),r=fn(t.a,e.a),i=fn(t.b,e.b),a=fn(t.opacity,e.opacity);return function(e){return t.l=n(e),t.a=r(e),t.b=i(e),t.opacity=a(e),t+""}}function vp(t){return function(e,n){var r=t((e=wa(e)).h,(n=wa(n)).h),i=fn(e.c,n.c),a=fn(e.l,n.l),o=fn(e.opacity,n.opacity);return function(t){return e.h=r(t),e.c=i(t),e.l=a(t),e.opacity=o(t),e+""}}}var bp=vp(ln),xp=vp(fn);function _p(t){return function e(n){function r(e,r){var i=t((e=Na(e)).h,(r=Na(r)).h),a=fn(e.s,r.s),o=fn(e.l,r.l),s=fn(e.opacity,r.opacity);return function(t){return e.h=i(t),e.s=a(t),e.l=o(Math.pow(t,n)),e.opacity=s(t),e+""}}return n=+n,r.gamma=e,r}(1)}var kp=_p(ln),wp=_p(fn);function Ep(t,e){for(var n=0,r=e.length-1,i=e[0],a=new Array(r<0?0:r);n<r;)a[n]=t(i,i=e[++n]);return function(t){var e=Math.max(0,Math.min(r-1,Math.floor(t*=r)));return a[e](t-e)}}var Tp=function(t,e){for(var n=new Array(e),r=0;r<e;++r)n[r]=t(r/(e-1));return n},Cp=function(t){for(var e,n=-1,r=t.length,i=t[r-1],a=0;++n<r;)e=i,i=t[n],a+=e[1]*i[0]-e[0]*i[1];return a/2},Sp=function(t){for(var e,n,r=-1,i=t.length,a=0,o=0,s=t[i-1],c=0;++r<i;)e=s,s=t[r],c+=n=e[0]*s[1]-s[0]*e[1],a+=(e[0]+s[0])*n,o+=(e[1]+s[1])*n;return[a/(c*=3),o/c]};function Ap(t,e){return t[0]-e[0]||t[1]-e[1]}function Mp(t){for(var e,n,r,i=t.length,a=[0,1],o=2,s=2;s<i;++s){for(;o>1&&(e=t[a[o-2]],n=t[a[o-1]],r=t[s],(n[0]-e[0])*(r[1]-e[1])-(n[1]-e[1])*(r[0]-e[0])<=0);)--o;a[o++]=s}return a.slice(0,o)}var Op=function(t){if((n=t.length)<3)return null;var e,n,r=new Array(n),i=new Array(n);for(e=0;e<n;++e)r[e]=[+t[e][0],+t[e][1],e];for(r.sort(Ap),e=0;e<n;++e)i[e]=[r[e][0],-r[e][1]];var a=Mp(r),o=Mp(i),s=o[0]===a[0],c=o[o.length-1]===a[a.length-1],u=[];for(e=a.length-1;e>=0;--e)u.push(t[r[a[e]][2]]);for(e=+s;e<o.length-c;++e)u.push(t[r[o[e]][2]]);return u},Np=function(t,e){for(var n,r,i=t.length,a=t[i-1],o=e[0],s=e[1],c=a[0],u=a[1],l=!1,h=0;h<i;++h)n=(a=t[h])[0],(r=a[1])>s!=u>s&&o<(c-n)*(s-r)/(u-r)+n&&(l=!l),c=n,u=r;return l},Bp=function(t){for(var e,n,r=-1,i=t.length,a=t[i-1],o=a[0],s=a[1],c=0;++r<i;)e=o,n=s,e-=o=(a=t[r])[0],n-=s=a[1],c+=Math.sqrt(e*e+n*n);return c},Dp=function(){return Math.random()},Lp=function t(e){function n(t,n){return t=null==t?0:+t,n=null==n?1:+n,1===arguments.length?(n=t,t=0):n-=t,function(){return e()*n+t}}return n.source=t,n}(Dp),Ip=function t(e){function n(t,n){var r,i;return t=null==t?0:+t,n=null==n?1:+n,function(){var a;if(null!=r)a=r,r=null;else do{r=2*e()-1,a=2*e()-1,i=r*r+a*a}while(!i||i>1);return t+n*a*Math.sqrt(-2*Math.log(i)/i)}}return n.source=t,n}(Dp),Rp=function t(e){function n(){var t=Ip.source(e).apply(this,arguments);return function(){return Math.exp(t())}}return n.source=t,n}(Dp),Fp=function t(e){function n(t){return function(){for(var n=0,r=0;r<t;++r)n+=e();return n}}return n.source=t,n}(Dp),Pp=function t(e){function n(t){var n=Fp.source(e)(t);return function(){return n()/t}}return n.source=t,n}(Dp),jp=function t(e){function n(t){return function(){return-Math.log(1-e())/t}}return n.source=t,n}(Dp);function Yp(t,e){switch(arguments.length){case 0:break;case 1:this.range(t);break;default:this.range(e).domain(t)}return this}function zp(t,e){switch(arguments.length){case 0:break;case 1:this.interpolator(t);break;default:this.interpolator(e).domain(t)}return this}var Up=Array.prototype,$p=Up.map,qp=Up.slice,Wp={name:"implicit"};function Hp(){var t=Qi(),e=[],n=[],r=Wp;function i(i){var a=i+"",o=t.get(a);if(!o){if(r!==Wp)return r;t.set(a,o=e.push(i))}return n[(o-1)%n.length]}return i.domain=function(n){if(!arguments.length)return e.slice();e=[],t=Qi();for(var r,a,o=-1,s=n.length;++o<s;)t.has(a=(r=n[o])+"")||t.set(a,e.push(r));return i},i.range=function(t){return arguments.length?(n=qp.call(t),i):n.slice()},i.unknown=function(t){return arguments.length?(r=t,i):r},i.copy=function(){return Hp(e,n).unknown(r)},Yp.apply(i,arguments),i}function Vp(){var t,e,n=Hp().unknown(void 0),r=n.domain,i=n.range,a=[0,1],o=!1,s=0,c=0,u=.5;function l(){var n=r().length,l=a[1]<a[0],h=a[l-0],f=a[1-l];t=(f-h)/Math.max(1,n-s+2*c),o&&(t=Math.floor(t)),h+=(f-h-t*(n-s))*u,e=t*(1-s),o&&(h=Math.round(h),e=Math.round(e));var d=w(n).map((function(e){return h+t*e}));return i(l?d.reverse():d)}return delete n.unknown,n.domain=function(t){return arguments.length?(r(t),l()):r()},n.range=function(t){return arguments.length?(a=[+t[0],+t[1]],l()):a.slice()},n.rangeRound=function(t){return a=[+t[0],+t[1]],o=!0,l()},n.bandwidth=function(){return e},n.step=function(){return t},n.round=function(t){return arguments.length?(o=!!t,l()):o},n.padding=function(t){return arguments.length?(s=Math.min(1,c=+t),l()):s},n.paddingInner=function(t){return arguments.length?(s=Math.min(1,t),l()):s},n.paddingOuter=function(t){return arguments.length?(c=+t,l()):c},n.align=function(t){return arguments.length?(u=Math.max(0,Math.min(1,t)),l()):u},n.copy=function(){return Vp(r(),a).round(o).paddingInner(s).paddingOuter(c).align(u)},Yp.apply(l(),arguments)}function Gp(t){var e=t.copy;return t.padding=t.paddingOuter,delete t.paddingInner,delete t.paddingOuter,t.copy=function(){return Gp(e())},t}function Xp(){return Gp(Vp.apply(null,arguments).paddingInner(1))}var Zp=function(t){return+t},Kp=[0,1];function Qp(t){return t}function Jp(t,e){return(e-=t=+t)?function(n){return(n-t)/e}:(n=isNaN(e)?NaN:.5,function(){return n});var n}function ty(t){var e,n=t[0],r=t[t.length-1];return n>r&&(e=n,n=r,r=e),function(t){return Math.max(n,Math.min(r,t))}}function ey(t,e,n){var r=t[0],i=t[1],a=e[0],o=e[1];return i<r?(r=Jp(i,r),a=n(o,a)):(r=Jp(r,i),a=n(a,o)),function(t){return a(r(t))}}function ny(t,e,n){var r=Math.min(t.length,e.length)-1,i=new Array(r),a=new Array(r),o=-1;for(t[r]<t[0]&&(t=t.slice().reverse(),e=e.slice().reverse());++o<r;)i[o]=Jp(t[o],t[o+1]),a[o]=n(e[o],e[o+1]);return function(e){var n=u(t,e,1,r)-1;return a[n](i[n](e))}}function ry(t,e){return e.domain(t.domain()).range(t.range()).interpolate(t.interpolate()).clamp(t.clamp()).unknown(t.unknown())}function iy(){var t,e,n,r,i,a,o=Kp,s=Kp,c=Mn,u=Qp;function l(){return r=Math.min(o.length,s.length)>2?ny:ey,i=a=null,h}function h(e){return isNaN(e=+e)?n:(i||(i=r(o.map(t),s,c)))(t(u(e)))}return h.invert=function(n){return u(e((a||(a=r(s,o.map(t),kn)))(n)))},h.domain=function(t){return arguments.length?(o=$p.call(t,Zp),u===Qp||(u=ty(o)),l()):o.slice()},h.range=function(t){return arguments.length?(s=qp.call(t),l()):s.slice()},h.rangeRound=function(t){return s=qp.call(t),c=lp,l()},h.clamp=function(t){return arguments.length?(u=t?ty(o):Qp,h):u!==Qp},h.interpolate=function(t){return arguments.length?(c=t,l()):c},h.unknown=function(t){return arguments.length?(n=t,h):n},function(n,r){return t=n,e=r,l()}}function ay(t,e){return iy()(t,e)}var oy=function(t,e,n,r){var i,a=M(t,e,n);switch((r=Vs(null==r?",f":r)).type){case"s":var o=Math.max(Math.abs(t),Math.abs(e));return null!=r.precision||isNaN(i=sc(a,o))||(r.precision=i),Qs(r,o);case"":case"e":case"g":case"p":case"r":null!=r.precision||isNaN(i=cc(a,Math.max(Math.abs(t),Math.abs(e))))||(r.precision=i-("e"===r.type));break;case"f":case"%":null!=r.precision||isNaN(i=oc(a))||(r.precision=i-2*("%"===r.type))}return Ks(r)};function sy(t){var e=t.domain;return t.ticks=function(t){var n=e();return S(n[0],n[n.length-1],null==t?10:t)},t.tickFormat=function(t,n){var r=e();return oy(r[0],r[r.length-1],null==t?10:t,n)},t.nice=function(n){null==n&&(n=10);var r,i=e(),a=0,o=i.length-1,s=i[a],c=i[o];return c<s&&(r=s,s=c,c=r,r=a,a=o,o=r),(r=A(s,c,n))>0?r=A(s=Math.floor(s/r)*r,c=Math.ceil(c/r)*r,n):r<0&&(r=A(s=Math.ceil(s*r)/r,c=Math.floor(c*r)/r,n)),r>0?(i[a]=Math.floor(s/r)*r,i[o]=Math.ceil(c/r)*r,e(i)):r<0&&(i[a]=Math.ceil(s*r)/r,i[o]=Math.floor(c*r)/r,e(i)),t},t}function cy(){var t=ay(Qp,Qp);return t.copy=function(){return ry(t,cy())},Yp.apply(t,arguments),sy(t)}function uy(t){var e;function n(t){return isNaN(t=+t)?e:t}return n.invert=n,n.domain=n.range=function(e){return arguments.length?(t=$p.call(e,Zp),n):t.slice()},n.unknown=function(t){return arguments.length?(e=t,n):e},n.copy=function(){return uy(t).unknown(e)},t=arguments.length?$p.call(t,Zp):[0,1],sy(n)}var ly=function(t,e){var n,r=0,i=(t=t.slice()).length-1,a=t[r],o=t[i];return o<a&&(n=r,r=i,i=n,n=a,a=o,o=n),t[r]=e.floor(a),t[i]=e.ceil(o),t};function hy(t){return Math.log(t)}function fy(t){return Math.exp(t)}function dy(t){return-Math.log(-t)}function py(t){return-Math.exp(-t)}function yy(t){return isFinite(t)?+("1e"+t):t<0?0:t}function gy(t){return function(e){return-t(-e)}}function my(t){var e,n,r=t(hy,fy),i=r.domain,a=10;function o(){return e=function(t){return t===Math.E?Math.log:10===t&&Math.log10||2===t&&Math.log2||(t=Math.log(t),function(e){return Math.log(e)/t})}(a),n=function(t){return 10===t?yy:t===Math.E?Math.exp:function(e){return Math.pow(t,e)}}(a),i()[0]<0?(e=gy(e),n=gy(n),t(dy,py)):t(hy,fy),r}return r.base=function(t){return arguments.length?(a=+t,o()):a},r.domain=function(t){return arguments.length?(i(t),o()):i()},r.ticks=function(t){var r,o=i(),s=o[0],c=o[o.length-1];(r=c<s)&&(f=s,s=c,c=f);var u,l,h,f=e(s),d=e(c),p=null==t?10:+t,y=[];if(!(a%1)&&d-f<p){if(f=Math.round(f)-1,d=Math.round(d)+1,s>0){for(;f<d;++f)for(l=1,u=n(f);l<a;++l)if(!((h=u*l)<s)){if(h>c)break;y.push(h)}}else for(;f<d;++f)for(l=a-1,u=n(f);l>=1;--l)if(!((h=u*l)<s)){if(h>c)break;y.push(h)}}else y=S(f,d,Math.min(d-f,p)).map(n);return r?y.reverse():y},r.tickFormat=function(t,i){if(null==i&&(i=10===a?".0e":","),"function"!=typeof i&&(i=Ks(i)),t===1/0)return i;null==t&&(t=10);var o=Math.max(1,a*t/r.ticks().length);return function(t){var r=t/n(Math.round(e(t)));return r*a<a-.5&&(r*=a),r<=o?i(t):""}},r.nice=function(){return i(ly(i(),{floor:function(t){return n(Math.floor(e(t)))},ceil:function(t){return n(Math.ceil(e(t)))}}))},r}function vy(){var t=my(iy()).domain([1,10]);return t.copy=function(){return ry(t,vy()).base(t.base())},Yp.apply(t,arguments),t}function by(t){return function(e){return Math.sign(e)*Math.log1p(Math.abs(e/t))}}function xy(t){return function(e){return Math.sign(e)*Math.expm1(Math.abs(e))*t}}function _y(t){var e=1,n=t(by(e),xy(e));return n.constant=function(n){return arguments.length?t(by(e=+n),xy(e)):e},sy(n)}function ky(){var t=_y(iy());return t.copy=function(){return ry(t,ky()).constant(t.constant())},Yp.apply(t,arguments)}function wy(t){return function(e){return e<0?-Math.pow(-e,t):Math.pow(e,t)}}function Ey(t){return t<0?-Math.sqrt(-t):Math.sqrt(t)}function Ty(t){return t<0?-t*t:t*t}function Cy(t){var e=t(Qp,Qp),n=1;function r(){return 1===n?t(Qp,Qp):.5===n?t(Ey,Ty):t(wy(n),wy(1/n))}return e.exponent=function(t){return arguments.length?(n=+t,r()):n},sy(e)}function Sy(){var t=Cy(iy());return t.copy=function(){return ry(t,Sy()).exponent(t.exponent())},Yp.apply(t,arguments),t}function Ay(){return Sy.apply(null,arguments).exponent(.5)}function My(){var t,e=[],n=[],r=[];function a(){var t=0,i=Math.max(1,n.length);for(r=new Array(i-1);++t<i;)r[t-1]=B(e,t/i);return o}function o(e){return isNaN(e=+e)?t:n[u(r,e)]}return o.invertExtent=function(t){var i=n.indexOf(t);return i<0?[NaN,NaN]:[i>0?r[i-1]:e[0],i<r.length?r[i]:e[e.length-1]]},o.domain=function(t){if(!arguments.length)return e.slice();e=[];for(var n,r=0,o=t.length;r<o;++r)null==(n=t[r])||isNaN(n=+n)||e.push(n);return e.sort(i),a()},o.range=function(t){return arguments.length?(n=qp.call(t),a()):n.slice()},o.unknown=function(e){return arguments.length?(t=e,o):t},o.quantiles=function(){return r.slice()},o.copy=function(){return My().domain(e).range(n).unknown(t)},Yp.apply(o,arguments)}function Oy(){var t,e=0,n=1,r=1,i=[.5],a=[0,1];function o(e){return e<=e?a[u(i,e,0,r)]:t}function s(){var t=-1;for(i=new Array(r);++t<r;)i[t]=((t+1)*n-(t-r)*e)/(r+1);return o}return o.domain=function(t){return arguments.length?(e=+t[0],n=+t[1],s()):[e,n]},o.range=function(t){return arguments.length?(r=(a=qp.call(t)).length-1,s()):a.slice()},o.invertExtent=function(t){var o=a.indexOf(t);return o<0?[NaN,NaN]:o<1?[e,i[0]]:o>=r?[i[r-1],n]:[i[o-1],i[o]]},o.unknown=function(e){return arguments.length?(t=e,o):o},o.thresholds=function(){return i.slice()},o.copy=function(){return Oy().domain([e,n]).range(a).unknown(t)},Yp.apply(sy(o),arguments)}function Ny(){var t,e=[.5],n=[0,1],r=1;function i(i){return i<=i?n[u(e,i,0,r)]:t}return i.domain=function(t){return arguments.length?(e=qp.call(t),r=Math.min(e.length,n.length-1),i):e.slice()},i.range=function(t){return arguments.length?(n=qp.call(t),r=Math.min(e.length,n.length-1),i):n.slice()},i.invertExtent=function(t){var r=n.indexOf(t);return[e[r-1],e[r]]},i.unknown=function(e){return arguments.length?(t=e,i):t},i.copy=function(){return Ny().domain(e).range(n).unknown(t)},Yp.apply(i,arguments)}var By=new Date,Dy=new Date;function Ly(t,e,n,r){function i(e){return t(e=0===arguments.length?new Date:new Date(+e)),e}return i.floor=function(e){return t(e=new Date(+e)),e},i.ceil=function(n){return t(n=new Date(n-1)),e(n,1),t(n),n},i.round=function(t){var e=i(t),n=i.ceil(t);return t-e<n-t?e:n},i.offset=function(t,n){return e(t=new Date(+t),null==n?1:Math.floor(n)),t},i.range=function(n,r,a){var o,s=[];if(n=i.ceil(n),a=null==a?1:Math.floor(a),!(n<r&&a>0))return s;do{s.push(o=new Date(+n)),e(n,a),t(n)}while(o<n&&n<r);return s},i.filter=function(n){return Ly((function(e){if(e>=e)for(;t(e),!n(e);)e.setTime(e-1)}),(function(t,r){if(t>=t)if(r<0)for(;++r<=0;)for(;e(t,-1),!n(t););else for(;--r>=0;)for(;e(t,1),!n(t););}))},n&&(i.count=function(e,r){return By.setTime(+e),Dy.setTime(+r),t(By),t(Dy),Math.floor(n(By,Dy))},i.every=function(t){return t=Math.floor(t),isFinite(t)&&t>0?t>1?i.filter(r?function(e){return r(e)%t==0}:function(e){return i.count(0,e)%t==0}):i:null}),i}var Iy=Ly((function(t){t.setMonth(0,1),t.setHours(0,0,0,0)}),(function(t,e){t.setFullYear(t.getFullYear()+e)}),(function(t,e){return e.getFullYear()-t.getFullYear()}),(function(t){return t.getFullYear()}));Iy.every=function(t){return isFinite(t=Math.floor(t))&&t>0?Ly((function(e){e.setFullYear(Math.floor(e.getFullYear()/t)*t),e.setMonth(0,1),e.setHours(0,0,0,0)}),(function(e,n){e.setFullYear(e.getFullYear()+n*t)})):null};var Ry=Iy,Fy=Iy.range,Py=Ly((function(t){t.setDate(1),t.setHours(0,0,0,0)}),(function(t,e){t.setMonth(t.getMonth()+e)}),(function(t,e){return e.getMonth()-t.getMonth()+12*(e.getFullYear()-t.getFullYear())}),(function(t){return t.getMonth()})),jy=Py,Yy=Py.range;function zy(t){return Ly((function(e){e.setDate(e.getDate()-(e.getDay()+7-t)%7),e.setHours(0,0,0,0)}),(function(t,e){t.setDate(t.getDate()+7*e)}),(function(t,e){return(e-t-6e4*(e.getTimezoneOffset()-t.getTimezoneOffset()))/6048e5}))}var Uy=zy(0),$y=zy(1),qy=zy(2),Wy=zy(3),Hy=zy(4),Vy=zy(5),Gy=zy(6),Xy=Uy.range,Zy=$y.range,Ky=qy.range,Qy=Wy.range,Jy=Hy.range,tg=Vy.range,eg=Gy.range,ng=Ly((function(t){t.setHours(0,0,0,0)}),(function(t,e){t.setDate(t.getDate()+e)}),(function(t,e){return(e-t-6e4*(e.getTimezoneOffset()-t.getTimezoneOffset()))/864e5}),(function(t){return t.getDate()-1})),rg=ng,ig=ng.range,ag=Ly((function(t){t.setTime(t-t.getMilliseconds()-1e3*t.getSeconds()-6e4*t.getMinutes())}),(function(t,e){t.setTime(+t+36e5*e)}),(function(t,e){return(e-t)/36e5}),(function(t){return t.getHours()})),og=ag,sg=ag.range,cg=Ly((function(t){t.setTime(t-t.getMilliseconds()-1e3*t.getSeconds())}),(function(t,e){t.setTime(+t+6e4*e)}),(function(t,e){return(e-t)/6e4}),(function(t){return t.getMinutes()})),ug=cg,lg=cg.range,hg=Ly((function(t){t.setTime(t-t.getMilliseconds())}),(function(t,e){t.setTime(+t+1e3*e)}),(function(t,e){return(e-t)/1e3}),(function(t){return t.getUTCSeconds()})),fg=hg,dg=hg.range,pg=Ly((function(){}),(function(t,e){t.setTime(+t+e)}),(function(t,e){return e-t}));pg.every=function(t){return t=Math.floor(t),isFinite(t)&&t>0?t>1?Ly((function(e){e.setTime(Math.floor(e/t)*t)}),(function(e,n){e.setTime(+e+n*t)}),(function(e,n){return(n-e)/t})):pg:null};var yg=pg,gg=pg.range;function mg(t){return Ly((function(e){e.setUTCDate(e.getUTCDate()-(e.getUTCDay()+7-t)%7),e.setUTCHours(0,0,0,0)}),(function(t,e){t.setUTCDate(t.getUTCDate()+7*e)}),(function(t,e){return(e-t)/6048e5}))}var vg=mg(0),bg=mg(1),xg=mg(2),_g=mg(3),kg=mg(4),wg=mg(5),Eg=mg(6),Tg=vg.range,Cg=bg.range,Sg=xg.range,Ag=_g.range,Mg=kg.range,Og=wg.range,Ng=Eg.range,Bg=Ly((function(t){t.setUTCHours(0,0,0,0)}),(function(t,e){t.setUTCDate(t.getUTCDate()+e)}),(function(t,e){return(e-t)/864e5}),(function(t){return t.getUTCDate()-1})),Dg=Bg,Lg=Bg.range,Ig=Ly((function(t){t.setUTCMonth(0,1),t.setUTCHours(0,0,0,0)}),(function(t,e){t.setUTCFullYear(t.getUTCFullYear()+e)}),(function(t,e){return e.getUTCFullYear()-t.getUTCFullYear()}),(function(t){return t.getUTCFullYear()}));Ig.every=function(t){return isFinite(t=Math.floor(t))&&t>0?Ly((function(e){e.setUTCFullYear(Math.floor(e.getUTCFullYear()/t)*t),e.setUTCMonth(0,1),e.setUTCHours(0,0,0,0)}),(function(e,n){e.setUTCFullYear(e.getUTCFullYear()+n*t)})):null};var Rg=Ig,Fg=Ig.range;function Pg(t){if(0<=t.y&&t.y<100){var e=new Date(-1,t.m,t.d,t.H,t.M,t.S,t.L);return e.setFullYear(t.y),e}return new Date(t.y,t.m,t.d,t.H,t.M,t.S,t.L)}function jg(t){if(0<=t.y&&t.y<100){var e=new Date(Date.UTC(-1,t.m,t.d,t.H,t.M,t.S,t.L));return e.setUTCFullYear(t.y),e}return new Date(Date.UTC(t.y,t.m,t.d,t.H,t.M,t.S,t.L))}function Yg(t,e,n){return{y:t,m:e,d:n,H:0,M:0,S:0,L:0}}function zg(t){var e=t.dateTime,n=t.date,r=t.time,i=t.periods,a=t.days,o=t.shortDays,s=t.months,c=t.shortMonths,u=Jg(i),l=tm(i),h=Jg(a),f=tm(a),d=Jg(o),p=tm(o),y=Jg(s),g=tm(s),m=Jg(c),v=tm(c),b={a:function(t){return o[t.getDay()]},A:function(t){return a[t.getDay()]},b:function(t){return c[t.getMonth()]},B:function(t){return s[t.getMonth()]},c:null,d:_m,e:_m,f:Cm,g:Fm,G:jm,H:km,I:wm,j:Em,L:Tm,m:Sm,M:Am,p:function(t){return i[+(t.getHours()>=12)]},q:function(t){return 1+~~(t.getMonth()/3)},Q:cv,s:uv,S:Mm,u:Om,U:Nm,V:Dm,w:Lm,W:Im,x:null,X:null,y:Rm,Y:Pm,Z:Ym,"%":sv},x={a:function(t){return o[t.getUTCDay()]},A:function(t){return a[t.getUTCDay()]},b:function(t){return c[t.getUTCMonth()]},B:function(t){return s[t.getUTCMonth()]},c:null,d:zm,e:zm,f:Hm,g:rv,G:av,H:Um,I:$m,j:qm,L:Wm,m:Vm,M:Gm,p:function(t){return i[+(t.getUTCHours()>=12)]},q:function(t){return 1+~~(t.getUTCMonth()/3)},Q:cv,s:uv,S:Xm,u:Zm,U:Km,V:Jm,w:tv,W:ev,x:null,X:null,y:nv,Y:iv,Z:ov,"%":sv},_={a:function(t,e,n){var r=d.exec(e.slice(n));return r?(t.w=p[r[0].toLowerCase()],n+r[0].length):-1},A:function(t,e,n){var r=h.exec(e.slice(n));return r?(t.w=f[r[0].toLowerCase()],n+r[0].length):-1},b:function(t,e,n){var r=m.exec(e.slice(n));return r?(t.m=v[r[0].toLowerCase()],n+r[0].length):-1},B:function(t,e,n){var r=y.exec(e.slice(n));return r?(t.m=g[r[0].toLowerCase()],n+r[0].length):-1},c:function(t,n,r){return E(t,e,n,r)},d:hm,e:hm,f:mm,g:sm,G:om,H:dm,I:dm,j:fm,L:gm,m:lm,M:pm,p:function(t,e,n){var r=u.exec(e.slice(n));return r?(t.p=l[r[0].toLowerCase()],n+r[0].length):-1},q:um,Q:bm,s:xm,S:ym,u:nm,U:rm,V:im,w:em,W:am,x:function(t,e,r){return E(t,n,e,r)},X:function(t,e,n){return E(t,r,e,n)},y:sm,Y:om,Z:cm,"%":vm};function k(t,e){return function(n){var r,i,a,o=[],s=-1,c=0,u=t.length;for(n instanceof Date||(n=new Date(+n));++s<u;)37===t.charCodeAt(s)&&(o.push(t.slice(c,s)),null!=(i=Vg[r=t.charAt(++s)])?r=t.charAt(++s):i="e"===r?" ":"0",(a=e[r])&&(r=a(n,i)),o.push(r),c=s+1);return o.push(t.slice(c,s)),o.join("")}}function w(t,e){return function(n){var r,i,a=Yg(1900,void 0,1);if(E(a,t,n+="",0)!=n.length)return null;if("Q"in a)return new Date(a.Q);if("s"in a)return new Date(1e3*a.s+("L"in a?a.L:0));if(e&&!("Z"in a)&&(a.Z=0),"p"in a&&(a.H=a.H%12+12*a.p),void 0===a.m&&(a.m="q"in a?a.q:0),"V"in a){if(a.V<1||a.V>53)return null;"w"in a||(a.w=1),"Z"in a?(i=(r=jg(Yg(a.y,0,1))).getUTCDay(),r=i>4||0===i?bg.ceil(r):bg(r),r=Dg.offset(r,7*(a.V-1)),a.y=r.getUTCFullYear(),a.m=r.getUTCMonth(),a.d=r.getUTCDate()+(a.w+6)%7):(i=(r=Pg(Yg(a.y,0,1))).getDay(),r=i>4||0===i?$y.ceil(r):$y(r),r=rg.offset(r,7*(a.V-1)),a.y=r.getFullYear(),a.m=r.getMonth(),a.d=r.getDate()+(a.w+6)%7)}else("W"in a||"U"in a)&&("w"in a||(a.w="u"in a?a.u%7:"W"in a?1:0),i="Z"in a?jg(Yg(a.y,0,1)).getUTCDay():Pg(Yg(a.y,0,1)).getDay(),a.m=0,a.d="W"in a?(a.w+6)%7+7*a.W-(i+5)%7:a.w+7*a.U-(i+6)%7);return"Z"in a?(a.H+=a.Z/100|0,a.M+=a.Z%100,jg(a)):Pg(a)}}function E(t,e,n,r){for(var i,a,o=0,s=e.length,c=n.length;o<s;){if(r>=c)return-1;if(37===(i=e.charCodeAt(o++))){if(i=e.charAt(o++),!(a=_[i in Vg?e.charAt(o++):i])||(r=a(t,n,r))<0)return-1}else if(i!=n.charCodeAt(r++))return-1}return r}return b.x=k(n,b),b.X=k(r,b),b.c=k(e,b),x.x=k(n,x),x.X=k(r,x),x.c=k(e,x),{format:function(t){var e=k(t+="",b);return e.toString=function(){return t},e},parse:function(t){var e=w(t+="",!1);return e.toString=function(){return t},e},utcFormat:function(t){var e=k(t+="",x);return e.toString=function(){return t},e},utcParse:function(t){var e=w(t+="",!0);return e.toString=function(){return t},e}}}var Ug,$g,qg,Wg,Hg,Vg={"-":"",_:" ",0:"0"},Gg=/^\s*\d+/,Xg=/^%/,Zg=/[\\^$*+?|[\]().{}]/g;function Kg(t,e,n){var r=t<0?"-":"",i=(r?-t:t)+"",a=i.length;return r+(a<n?new Array(n-a+1).join(e)+i:i)}function Qg(t){return t.replace(Zg,"\\$&")}function Jg(t){return new RegExp("^(?:"+t.map(Qg).join("|")+")","i")}function tm(t){for(var e={},n=-1,r=t.length;++n<r;)e[t[n].toLowerCase()]=n;return e}function em(t,e,n){var r=Gg.exec(e.slice(n,n+1));return r?(t.w=+r[0],n+r[0].length):-1}function nm(t,e,n){var r=Gg.exec(e.slice(n,n+1));return r?(t.u=+r[0],n+r[0].length):-1}function rm(t,e,n){var r=Gg.exec(e.slice(n,n+2));return r?(t.U=+r[0],n+r[0].length):-1}function im(t,e,n){var r=Gg.exec(e.slice(n,n+2));return r?(t.V=+r[0],n+r[0].length):-1}function am(t,e,n){var r=Gg.exec(e.slice(n,n+2));return r?(t.W=+r[0],n+r[0].length):-1}function om(t,e,n){var r=Gg.exec(e.slice(n,n+4));return r?(t.y=+r[0],n+r[0].length):-1}function sm(t,e,n){var r=Gg.exec(e.slice(n,n+2));return r?(t.y=+r[0]+(+r[0]>68?1900:2e3),n+r[0].length):-1}function cm(t,e,n){var r=/^(Z)|([+-]\d\d)(?::?(\d\d))?/.exec(e.slice(n,n+6));return r?(t.Z=r[1]?0:-(r[2]+(r[3]||"00")),n+r[0].length):-1}function um(t,e,n){var r=Gg.exec(e.slice(n,n+1));return r?(t.q=3*r[0]-3,n+r[0].length):-1}function lm(t,e,n){var r=Gg.exec(e.slice(n,n+2));return r?(t.m=r[0]-1,n+r[0].length):-1}function hm(t,e,n){var r=Gg.exec(e.slice(n,n+2));return r?(t.d=+r[0],n+r[0].length):-1}function fm(t,e,n){var r=Gg.exec(e.slice(n,n+3));return r?(t.m=0,t.d=+r[0],n+r[0].length):-1}function dm(t,e,n){var r=Gg.exec(e.slice(n,n+2));return r?(t.H=+r[0],n+r[0].length):-1}function pm(t,e,n){var r=Gg.exec(e.slice(n,n+2));return r?(t.M=+r[0],n+r[0].length):-1}function ym(t,e,n){var r=Gg.exec(e.slice(n,n+2));return r?(t.S=+r[0],n+r[0].length):-1}function gm(t,e,n){var r=Gg.exec(e.slice(n,n+3));return r?(t.L=+r[0],n+r[0].length):-1}function mm(t,e,n){var r=Gg.exec(e.slice(n,n+6));return r?(t.L=Math.floor(r[0]/1e3),n+r[0].length):-1}function vm(t,e,n){var r=Xg.exec(e.slice(n,n+1));return r?n+r[0].length:-1}function bm(t,e,n){var r=Gg.exec(e.slice(n));return r?(t.Q=+r[0],n+r[0].length):-1}function xm(t,e,n){var r=Gg.exec(e.slice(n));return r?(t.s=+r[0],n+r[0].length):-1}function _m(t,e){return Kg(t.getDate(),e,2)}function km(t,e){return Kg(t.getHours(),e,2)}function wm(t,e){return Kg(t.getHours()%12||12,e,2)}function Em(t,e){return Kg(1+rg.count(Ry(t),t),e,3)}function Tm(t,e){return Kg(t.getMilliseconds(),e,3)}function Cm(t,e){return Tm(t,e)+"000"}function Sm(t,e){return Kg(t.getMonth()+1,e,2)}function Am(t,e){return Kg(t.getMinutes(),e,2)}function Mm(t,e){return Kg(t.getSeconds(),e,2)}function Om(t){var e=t.getDay();return 0===e?7:e}function Nm(t,e){return Kg(Uy.count(Ry(t)-1,t),e,2)}function Bm(t){var e=t.getDay();return e>=4||0===e?Hy(t):Hy.ceil(t)}function Dm(t,e){return t=Bm(t),Kg(Hy.count(Ry(t),t)+(4===Ry(t).getDay()),e,2)}function Lm(t){return t.getDay()}function Im(t,e){return Kg($y.count(Ry(t)-1,t),e,2)}function Rm(t,e){return Kg(t.getFullYear()%100,e,2)}function Fm(t,e){return Kg((t=Bm(t)).getFullYear()%100,e,2)}function Pm(t,e){return Kg(t.getFullYear()%1e4,e,4)}function jm(t,e){var n=t.getDay();return Kg((t=n>=4||0===n?Hy(t):Hy.ceil(t)).getFullYear()%1e4,e,4)}function Ym(t){var e=t.getTimezoneOffset();return(e>0?"-":(e*=-1,"+"))+Kg(e/60|0,"0",2)+Kg(e%60,"0",2)}function zm(t,e){return Kg(t.getUTCDate(),e,2)}function Um(t,e){return Kg(t.getUTCHours(),e,2)}function $m(t,e){return Kg(t.getUTCHours()%12||12,e,2)}function qm(t,e){return Kg(1+Dg.count(Rg(t),t),e,3)}function Wm(t,e){return Kg(t.getUTCMilliseconds(),e,3)}function Hm(t,e){return Wm(t,e)+"000"}function Vm(t,e){return Kg(t.getUTCMonth()+1,e,2)}function Gm(t,e){return Kg(t.getUTCMinutes(),e,2)}function Xm(t,e){return Kg(t.getUTCSeconds(),e,2)}function Zm(t){var e=t.getUTCDay();return 0===e?7:e}function Km(t,e){return Kg(vg.count(Rg(t)-1,t),e,2)}function Qm(t){var e=t.getUTCDay();return e>=4||0===e?kg(t):kg.ceil(t)}function Jm(t,e){return t=Qm(t),Kg(kg.count(Rg(t),t)+(4===Rg(t).getUTCDay()),e,2)}function tv(t){return t.getUTCDay()}function ev(t,e){return Kg(bg.count(Rg(t)-1,t),e,2)}function nv(t,e){return Kg(t.getUTCFullYear()%100,e,2)}function rv(t,e){return Kg((t=Qm(t)).getUTCFullYear()%100,e,2)}function iv(t,e){return Kg(t.getUTCFullYear()%1e4,e,4)}function av(t,e){var n=t.getUTCDay();return Kg((t=n>=4||0===n?kg(t):kg.ceil(t)).getUTCFullYear()%1e4,e,4)}function ov(){return"+0000"}function sv(){return"%"}function cv(t){return+t}function uv(t){return Math.floor(+t/1e3)}function lv(t){return Ug=zg(t),$g=Ug.format,qg=Ug.parse,Wg=Ug.utcFormat,Hg=Ug.utcParse,Ug}lv({dateTime:"%x, %X",date:"%-m/%-d/%Y",time:"%-I:%M:%S %p",periods:["AM","PM"],days:["Sunday","Monday","Tuesday","Wednesday","Thursday","Friday","Saturday"],shortDays:["Sun","Mon","Tue","Wed","Thu","Fri","Sat"],months:["January","February","March","April","May","June","July","August","September","October","November","December"],shortMonths:["Jan","Feb","Mar","Apr","May","Jun","Jul","Aug","Sep","Oct","Nov","Dec"]});function hv(t){return new Date(t)}function fv(t){return t instanceof Date?+t:+new Date(+t)}function dv(t,e,n,r,i,o,s,c,u){var l=ay(Qp,Qp),h=l.invert,f=l.domain,d=u(".%L"),p=u(":%S"),y=u("%I:%M"),g=u("%I %p"),m=u("%a %d"),v=u("%b %d"),b=u("%B"),x=u("%Y"),_=[[s,1,1e3],[s,5,5e3],[s,15,15e3],[s,30,3e4],[o,1,6e4],[o,5,3e5],[o,15,9e5],[o,30,18e5],[i,1,36e5],[i,3,108e5],[i,6,216e5],[i,12,432e5],[r,1,864e5],[r,2,1728e5],[n,1,6048e5],[e,1,2592e6],[e,3,7776e6],[t,1,31536e6]];function k(a){return(s(a)<a?d:o(a)<a?p:i(a)<a?y:r(a)<a?g:e(a)<a?n(a)<a?m:v:t(a)<a?b:x)(a)}function w(e,n,r,i){if(null==e&&(e=10),"number"==typeof e){var o=Math.abs(r-n)/e,s=a((function(t){return t[2]})).right(_,o);s===_.length?(i=M(n/31536e6,r/31536e6,e),e=t):s?(i=(s=_[o/_[s-1][2]<_[s][2]/o?s-1:s])[1],e=s[0]):(i=Math.max(M(n,r,e),1),e=c)}return null==i?e:e.every(i)}return l.invert=function(t){return new Date(h(t))},l.domain=function(t){return arguments.length?f($p.call(t,fv)):f().map(hv)},l.ticks=function(t,e){var n,r=f(),i=r[0],a=r[r.length-1],o=a<i;return o&&(n=i,i=a,a=n),n=(n=w(t,i,a,e))?n.range(i,a+1):[],o?n.reverse():n},l.tickFormat=function(t,e){return null==e?k:u(e)},l.nice=function(t,e){var n=f();return(t=w(t,n[0],n[n.length-1],e))?f(ly(n,t)):l},l.copy=function(){return ry(l,dv(t,e,n,r,i,o,s,c,u))},l}var pv=function(){return Yp.apply(dv(Ry,jy,Uy,rg,og,ug,fg,yg,$g).domain([new Date(2e3,0,1),new Date(2e3,0,2)]),arguments)},yv=Ly((function(t){t.setUTCDate(1),t.setUTCHours(0,0,0,0)}),(function(t,e){t.setUTCMonth(t.getUTCMonth()+e)}),(function(t,e){return e.getUTCMonth()-t.getUTCMonth()+12*(e.getUTCFullYear()-t.getUTCFullYear())}),(function(t){return t.getUTCMonth()})),gv=yv,mv=yv.range,vv=Ly((function(t){t.setUTCMinutes(0,0,0)}),(function(t,e){t.setTime(+t+36e5*e)}),(function(t,e){return(e-t)/36e5}),(function(t){return t.getUTCHours()})),bv=vv,xv=vv.range,_v=Ly((function(t){t.setUTCSeconds(0,0)}),(function(t,e){t.setTime(+t+6e4*e)}),(function(t,e){return(e-t)/6e4}),(function(t){return t.getUTCMinutes()})),kv=_v,wv=_v.range,Ev=function(){return Yp.apply(dv(Rg,gv,vg,Dg,bv,kv,fg,yg,Wg).domain([Date.UTC(2e3,0,1),Date.UTC(2e3,0,2)]),arguments)};function Tv(){var t,e,n,r,i,a=0,o=1,s=Qp,c=!1;function u(e){return isNaN(e=+e)?i:s(0===n?.5:(e=(r(e)-t)*n,c?Math.max(0,Math.min(1,e)):e))}return u.domain=function(i){return arguments.length?(t=r(a=+i[0]),e=r(o=+i[1]),n=t===e?0:1/(e-t),u):[a,o]},u.clamp=function(t){return arguments.length?(c=!!t,u):c},u.interpolator=function(t){return arguments.length?(s=t,u):s},u.unknown=function(t){return arguments.length?(i=t,u):i},function(i){return r=i,t=i(a),e=i(o),n=t===e?0:1/(e-t),u}}function Cv(t,e){return e.domain(t.domain()).interpolator(t.interpolator()).clamp(t.clamp()).unknown(t.unknown())}function Sv(){var t=sy(Tv()(Qp));return t.copy=function(){return Cv(t,Sv())},zp.apply(t,arguments)}function Av(){var t=my(Tv()).domain([1,10]);return t.copy=function(){return Cv(t,Av()).base(t.base())},zp.apply(t,arguments)}function Mv(){var t=_y(Tv());return t.copy=function(){return Cv(t,Mv()).constant(t.constant())},zp.apply(t,arguments)}function Ov(){var t=Cy(Tv());return t.copy=function(){return Cv(t,Ov()).exponent(t.exponent())},zp.apply(t,arguments)}function Nv(){return Ov.apply(null,arguments).exponent(.5)}function Bv(){var t=[],e=Qp;function n(n){if(!isNaN(n=+n))return e((u(t,n)-1)/(t.length-1))}return n.domain=function(e){if(!arguments.length)return t.slice();t=[];for(var r,a=0,o=e.length;a<o;++a)null==(r=e[a])||isNaN(r=+r)||t.push(r);return t.sort(i),n},n.interpolator=function(t){return arguments.length?(e=t,n):e},n.copy=function(){return Bv(e).domain(t)},zp.apply(n,arguments)}function Dv(){var t,e,n,r,i,a,o,s=0,c=.5,u=1,l=Qp,h=!1;function f(t){return isNaN(t=+t)?o:(t=.5+((t=+a(t))-e)*(t<e?r:i),l(h?Math.max(0,Math.min(1,t)):t))}return f.domain=function(o){return arguments.length?(t=a(s=+o[0]),e=a(c=+o[1]),n=a(u=+o[2]),r=t===e?0:.5/(e-t),i=e===n?0:.5/(n-e),f):[s,c,u]},f.clamp=function(t){return arguments.length?(h=!!t,f):h},f.interpolator=function(t){return arguments.length?(l=t,f):l},f.unknown=function(t){return arguments.length?(o=t,f):o},function(o){return a=o,t=o(s),e=o(c),n=o(u),r=t===e?0:.5/(e-t),i=e===n?0:.5/(n-e),f}}function Lv(){var t=sy(Dv()(Qp));return t.copy=function(){return Cv(t,Lv())},zp.apply(t,arguments)}function Iv(){var t=my(Dv()).domain([.1,1,10]);return t.copy=function(){return Cv(t,Iv()).base(t.base())},zp.apply(t,arguments)}function Rv(){var t=_y(Dv());return t.copy=function(){return Cv(t,Rv()).constant(t.constant())},zp.apply(t,arguments)}function Fv(){var t=Cy(Dv());return t.copy=function(){return Cv(t,Fv()).exponent(t.exponent())},zp.apply(t,arguments)}function Pv(){return Fv.apply(null,arguments).exponent(.5)}var jv=function(t){for(var e=t.length/6|0,n=new Array(e),r=0;r<e;)n[r]="#"+t.slice(6*r,6*++r);return n},Yv=jv("1f77b4ff7f0e2ca02cd627289467bd8c564be377c27f7f7fbcbd2217becf"),zv=jv("7fc97fbeaed4fdc086ffff99386cb0f0027fbf5b17666666"),Uv=jv("1b9e77d95f027570b3e7298a66a61ee6ab02a6761d666666"),$v=jv("a6cee31f78b4b2df8a33a02cfb9a99e31a1cfdbf6fff7f00cab2d66a3d9affff99b15928"),qv=jv("fbb4aeb3cde3ccebc5decbe4fed9a6ffffcce5d8bdfddaecf2f2f2"),Wv=jv("b3e2cdfdcdaccbd5e8f4cae4e6f5c9fff2aef1e2cccccccc"),Hv=jv("e41a1c377eb84daf4a984ea3ff7f00ffff33a65628f781bf999999"),Vv=jv("66c2a5fc8d628da0cbe78ac3a6d854ffd92fe5c494b3b3b3"),Gv=jv("8dd3c7ffffb3bebadafb807280b1d3fdb462b3de69fccde5d9d9d9bc80bdccebc5ffed6f"),Xv=jv("4e79a7f28e2ce1575976b7b259a14fedc949af7aa1ff9da79c755fbab0ab"),Zv=function(t){return yn(t[t.length-1])},Kv=new Array(3).concat("d8b365f5f5f55ab4ac","a6611adfc27d80cdc1018571","a6611adfc27df5f5f580cdc1018571","8c510ad8b365f6e8c3c7eae55ab4ac01665e","8c510ad8b365f6e8c3f5f5f5c7eae55ab4ac01665e","8c510abf812ddfc27df6e8c3c7eae580cdc135978f01665e","8c510abf812ddfc27df6e8c3f5f5f5c7eae580cdc135978f01665e","5430058c510abf812ddfc27df6e8c3c7eae580cdc135978f01665e003c30","5430058c510abf812ddfc27df6e8c3f5f5f5c7eae580cdc135978f01665e003c30").map(jv),Qv=Zv(Kv),Jv=new Array(3).concat("af8dc3f7f7f77fbf7b","7b3294c2a5cfa6dba0008837","7b3294c2a5cff7f7f7a6dba0008837","762a83af8dc3e7d4e8d9f0d37fbf7b1b7837","762a83af8dc3e7d4e8f7f7f7d9f0d37fbf7b1b7837","762a839970abc2a5cfe7d4e8d9f0d3a6dba05aae611b7837","762a839970abc2a5cfe7d4e8f7f7f7d9f0d3a6dba05aae611b7837","40004b762a839970abc2a5cfe7d4e8d9f0d3a6dba05aae611b783700441b","40004b762a839970abc2a5cfe7d4e8f7f7f7d9f0d3a6dba05aae611b783700441b").map(jv),tb=Zv(Jv),eb=new Array(3).concat("e9a3c9f7f7f7a1d76a","d01c8bf1b6dab8e1864dac26","d01c8bf1b6daf7f7f7b8e1864dac26","c51b7de9a3c9fde0efe6f5d0a1d76a4d9221","c51b7de9a3c9fde0eff7f7f7e6f5d0a1d76a4d9221","c51b7dde77aef1b6dafde0efe6f5d0b8e1867fbc414d9221","c51b7dde77aef1b6dafde0eff7f7f7e6f5d0b8e1867fbc414d9221","8e0152c51b7dde77aef1b6dafde0efe6f5d0b8e1867fbc414d9221276419","8e0152c51b7dde77aef1b6dafde0eff7f7f7e6f5d0b8e1867fbc414d9221276419").map(jv),nb=Zv(eb),rb=new Array(3).concat("998ec3f7f7f7f1a340","5e3c99b2abd2fdb863e66101","5e3c99b2abd2f7f7f7fdb863e66101","542788998ec3d8daebfee0b6f1a340b35806","542788998ec3d8daebf7f7f7fee0b6f1a340b35806","5427888073acb2abd2d8daebfee0b6fdb863e08214b35806","5427888073acb2abd2d8daebf7f7f7fee0b6fdb863e08214b35806","2d004b5427888073acb2abd2d8daebfee0b6fdb863e08214b358067f3b08","2d004b5427888073acb2abd2d8daebf7f7f7fee0b6fdb863e08214b358067f3b08").map(jv),ib=Zv(rb),ab=new Array(3).concat("ef8a62f7f7f767a9cf","ca0020f4a58292c5de0571b0","ca0020f4a582f7f7f792c5de0571b0","b2182bef8a62fddbc7d1e5f067a9cf2166ac","b2182bef8a62fddbc7f7f7f7d1e5f067a9cf2166ac","b2182bd6604df4a582fddbc7d1e5f092c5de4393c32166ac","b2182bd6604df4a582fddbc7f7f7f7d1e5f092c5de4393c32166ac","67001fb2182bd6604df4a582fddbc7d1e5f092c5de4393c32166ac053061","67001fb2182bd6604df4a582fddbc7f7f7f7d1e5f092c5de4393c32166ac053061").map(jv),ob=Zv(ab),sb=new Array(3).concat("ef8a62ffffff999999","ca0020f4a582bababa404040","ca0020f4a582ffffffbababa404040","b2182bef8a62fddbc7e0e0e09999994d4d4d","b2182bef8a62fddbc7ffffffe0e0e09999994d4d4d","b2182bd6604df4a582fddbc7e0e0e0bababa8787874d4d4d","b2182bd6604df4a582fddbc7ffffffe0e0e0bababa8787874d4d4d","67001fb2182bd6604df4a582fddbc7e0e0e0bababa8787874d4d4d1a1a1a","67001fb2182bd6604df4a582fddbc7ffffffe0e0e0bababa8787874d4d4d1a1a1a").map(jv),cb=Zv(sb),ub=new Array(3).concat("fc8d59ffffbf91bfdb","d7191cfdae61abd9e92c7bb6","d7191cfdae61ffffbfabd9e92c7bb6","d73027fc8d59fee090e0f3f891bfdb4575b4","d73027fc8d59fee090ffffbfe0f3f891bfdb4575b4","d73027f46d43fdae61fee090e0f3f8abd9e974add14575b4","d73027f46d43fdae61fee090ffffbfe0f3f8abd9e974add14575b4","a50026d73027f46d43fdae61fee090e0f3f8abd9e974add14575b4313695","a50026d73027f46d43fdae61fee090ffffbfe0f3f8abd9e974add14575b4313695").map(jv),lb=Zv(ub),hb=new Array(3).concat("fc8d59ffffbf91cf60","d7191cfdae61a6d96a1a9641","d7191cfdae61ffffbfa6d96a1a9641","d73027fc8d59fee08bd9ef8b91cf601a9850","d73027fc8d59fee08bffffbfd9ef8b91cf601a9850","d73027f46d43fdae61fee08bd9ef8ba6d96a66bd631a9850","d73027f46d43fdae61fee08bffffbfd9ef8ba6d96a66bd631a9850","a50026d73027f46d43fdae61fee08bd9ef8ba6d96a66bd631a9850006837","a50026d73027f46d43fdae61fee08bffffbfd9ef8ba6d96a66bd631a9850006837").map(jv),fb=Zv(hb),db=new Array(3).concat("fc8d59ffffbf99d594","d7191cfdae61abdda42b83ba","d7191cfdae61ffffbfabdda42b83ba","d53e4ffc8d59fee08be6f59899d5943288bd","d53e4ffc8d59fee08bffffbfe6f59899d5943288bd","d53e4ff46d43fdae61fee08be6f598abdda466c2a53288bd","d53e4ff46d43fdae61fee08bffffbfe6f598abdda466c2a53288bd","9e0142d53e4ff46d43fdae61fee08be6f598abdda466c2a53288bd5e4fa2","9e0142d53e4ff46d43fdae61fee08bffffbfe6f598abdda466c2a53288bd5e4fa2").map(jv),pb=Zv(db),yb=new Array(3).concat("e5f5f999d8c92ca25f","edf8fbb2e2e266c2a4238b45","edf8fbb2e2e266c2a42ca25f006d2c","edf8fbccece699d8c966c2a42ca25f006d2c","edf8fbccece699d8c966c2a441ae76238b45005824","f7fcfde5f5f9ccece699d8c966c2a441ae76238b45005824","f7fcfde5f5f9ccece699d8c966c2a441ae76238b45006d2c00441b").map(jv),gb=Zv(yb),mb=new Array(3).concat("e0ecf49ebcda8856a7","edf8fbb3cde38c96c688419d","edf8fbb3cde38c96c68856a7810f7c","edf8fbbfd3e69ebcda8c96c68856a7810f7c","edf8fbbfd3e69ebcda8c96c68c6bb188419d6e016b","f7fcfde0ecf4bfd3e69ebcda8c96c68c6bb188419d6e016b","f7fcfde0ecf4bfd3e69ebcda8c96c68c6bb188419d810f7c4d004b").map(jv),vb=Zv(mb),bb=new Array(3).concat("e0f3dba8ddb543a2ca","f0f9e8bae4bc7bccc42b8cbe","f0f9e8bae4bc7bccc443a2ca0868ac","f0f9e8ccebc5a8ddb57bccc443a2ca0868ac","f0f9e8ccebc5a8ddb57bccc44eb3d32b8cbe08589e","f7fcf0e0f3dbccebc5a8ddb57bccc44eb3d32b8cbe08589e","f7fcf0e0f3dbccebc5a8ddb57bccc44eb3d32b8cbe0868ac084081").map(jv),xb=Zv(bb),_b=new Array(3).concat("fee8c8fdbb84e34a33","fef0d9fdcc8afc8d59d7301f","fef0d9fdcc8afc8d59e34a33b30000","fef0d9fdd49efdbb84fc8d59e34a33b30000","fef0d9fdd49efdbb84fc8d59ef6548d7301f990000","fff7ecfee8c8fdd49efdbb84fc8d59ef6548d7301f990000","fff7ecfee8c8fdd49efdbb84fc8d59ef6548d7301fb300007f0000").map(jv),kb=Zv(_b),wb=new Array(3).concat("ece2f0a6bddb1c9099","f6eff7bdc9e167a9cf02818a","f6eff7bdc9e167a9cf1c9099016c59","f6eff7d0d1e6a6bddb67a9cf1c9099016c59","f6eff7d0d1e6a6bddb67a9cf3690c002818a016450","fff7fbece2f0d0d1e6a6bddb67a9cf3690c002818a016450","fff7fbece2f0d0d1e6a6bddb67a9cf3690c002818a016c59014636").map(jv),Eb=Zv(wb),Tb=new Array(3).concat("ece7f2a6bddb2b8cbe","f1eef6bdc9e174a9cf0570b0","f1eef6bdc9e174a9cf2b8cbe045a8d","f1eef6d0d1e6a6bddb74a9cf2b8cbe045a8d","f1eef6d0d1e6a6bddb74a9cf3690c00570b0034e7b","fff7fbece7f2d0d1e6a6bddb74a9cf3690c00570b0034e7b","fff7fbece7f2d0d1e6a6bddb74a9cf3690c00570b0045a8d023858").map(jv),Cb=Zv(Tb),Sb=new Array(3).concat("e7e1efc994c7dd1c77","f1eef6d7b5d8df65b0ce1256","f1eef6d7b5d8df65b0dd1c77980043","f1eef6d4b9dac994c7df65b0dd1c77980043","f1eef6d4b9dac994c7df65b0e7298ace125691003f","f7f4f9e7e1efd4b9dac994c7df65b0e7298ace125691003f","f7f4f9e7e1efd4b9dac994c7df65b0e7298ace125698004367001f").map(jv),Ab=Zv(Sb),Mb=new Array(3).concat("fde0ddfa9fb5c51b8a","feebe2fbb4b9f768a1ae017e","feebe2fbb4b9f768a1c51b8a7a0177","feebe2fcc5c0fa9fb5f768a1c51b8a7a0177","feebe2fcc5c0fa9fb5f768a1dd3497ae017e7a0177","fff7f3fde0ddfcc5c0fa9fb5f768a1dd3497ae017e7a0177","fff7f3fde0ddfcc5c0fa9fb5f768a1dd3497ae017e7a017749006a").map(jv),Ob=Zv(Mb),Nb=new Array(3).concat("edf8b17fcdbb2c7fb8","ffffcca1dab441b6c4225ea8","ffffcca1dab441b6c42c7fb8253494","ffffccc7e9b47fcdbb41b6c42c7fb8253494","ffffccc7e9b47fcdbb41b6c41d91c0225ea80c2c84","ffffd9edf8b1c7e9b47fcdbb41b6c41d91c0225ea80c2c84","ffffd9edf8b1c7e9b47fcdbb41b6c41d91c0225ea8253494081d58").map(jv),Bb=Zv(Nb),Db=new Array(3).concat("f7fcb9addd8e31a354","ffffccc2e69978c679238443","ffffccc2e69978c67931a354006837","ffffccd9f0a3addd8e78c67931a354006837","ffffccd9f0a3addd8e78c67941ab5d238443005a32","ffffe5f7fcb9d9f0a3addd8e78c67941ab5d238443005a32","ffffe5f7fcb9d9f0a3addd8e78c67941ab5d238443006837004529").map(jv),Lb=Zv(Db),Ib=new Array(3).concat("fff7bcfec44fd95f0e","ffffd4fed98efe9929cc4c02","ffffd4fed98efe9929d95f0e993404","ffffd4fee391fec44ffe9929d95f0e993404","ffffd4fee391fec44ffe9929ec7014cc4c028c2d04","ffffe5fff7bcfee391fec44ffe9929ec7014cc4c028c2d04","ffffe5fff7bcfee391fec44ffe9929ec7014cc4c02993404662506").map(jv),Rb=Zv(Ib),Fb=new Array(3).concat("ffeda0feb24cf03b20","ffffb2fecc5cfd8d3ce31a1c","ffffb2fecc5cfd8d3cf03b20bd0026","ffffb2fed976feb24cfd8d3cf03b20bd0026","ffffb2fed976feb24cfd8d3cfc4e2ae31a1cb10026","ffffccffeda0fed976feb24cfd8d3cfc4e2ae31a1cb10026","ffffccffeda0fed976feb24cfd8d3cfc4e2ae31a1cbd0026800026").map(jv),Pb=Zv(Fb),jb=new Array(3).concat("deebf79ecae13182bd","eff3ffbdd7e76baed62171b5","eff3ffbdd7e76baed63182bd08519c","eff3ffc6dbef9ecae16baed63182bd08519c","eff3ffc6dbef9ecae16baed64292c62171b5084594","f7fbffdeebf7c6dbef9ecae16baed64292c62171b5084594","f7fbffdeebf7c6dbef9ecae16baed64292c62171b508519c08306b").map(jv),Yb=Zv(jb),zb=new Array(3).concat("e5f5e0a1d99b31a354","edf8e9bae4b374c476238b45","edf8e9bae4b374c47631a354006d2c","edf8e9c7e9c0a1d99b74c47631a354006d2c","edf8e9c7e9c0a1d99b74c47641ab5d238b45005a32","f7fcf5e5f5e0c7e9c0a1d99b74c47641ab5d238b45005a32","f7fcf5e5f5e0c7e9c0a1d99b74c47641ab5d238b45006d2c00441b").map(jv),Ub=Zv(zb),$b=new Array(3).concat("f0f0f0bdbdbd636363","f7f7f7cccccc969696525252","f7f7f7cccccc969696636363252525","f7f7f7d9d9d9bdbdbd969696636363252525","f7f7f7d9d9d9bdbdbd969696737373525252252525","fffffff0f0f0d9d9d9bdbdbd969696737373525252252525","fffffff0f0f0d9d9d9bdbdbd969696737373525252252525000000").map(jv),qb=Zv($b),Wb=new Array(3).concat("efedf5bcbddc756bb1","f2f0f7cbc9e29e9ac86a51a3","f2f0f7cbc9e29e9ac8756bb154278f","f2f0f7dadaebbcbddc9e9ac8756bb154278f","f2f0f7dadaebbcbddc9e9ac8807dba6a51a34a1486","fcfbfdefedf5dadaebbcbddc9e9ac8807dba6a51a34a1486","fcfbfdefedf5dadaebbcbddc9e9ac8807dba6a51a354278f3f007d").map(jv),Hb=Zv(Wb),Vb=new Array(3).concat("fee0d2fc9272de2d26","fee5d9fcae91fb6a4acb181d","fee5d9fcae91fb6a4ade2d26a50f15","fee5d9fcbba1fc9272fb6a4ade2d26a50f15","fee5d9fcbba1fc9272fb6a4aef3b2ccb181d99000d","fff5f0fee0d2fcbba1fc9272fb6a4aef3b2ccb181d99000d","fff5f0fee0d2fcbba1fc9272fb6a4aef3b2ccb181da50f1567000d").map(jv),Gb=Zv(Vb),Xb=new Array(3).concat("fee6cefdae6be6550d","feeddefdbe85fd8d3cd94701","feeddefdbe85fd8d3ce6550da63603","feeddefdd0a2fdae6bfd8d3ce6550da63603","feeddefdd0a2fdae6bfd8d3cf16913d948018c2d04","fff5ebfee6cefdd0a2fdae6bfd8d3cf16913d948018c2d04","fff5ebfee6cefdd0a2fdae6bfd8d3cf16913d94801a636037f2704").map(jv),Zb=Zv(Xb),Kb=function(t){return t=Math.max(0,Math.min(1,t)),"rgb("+Math.max(0,Math.min(255,Math.round(-4.54-t*(35.34-t*(2381.73-t*(6402.7-t*(7024.72-2710.57*t)))))))+", "+Math.max(0,Math.min(255,Math.round(32.49+t*(170.73+t*(52.82-t*(131.46-t*(176.58-67.37*t)))))))+", "+Math.max(0,Math.min(255,Math.round(81.24+t*(442.36-t*(2482.43-t*(6167.24-t*(6614.94-2475.67*t)))))))+")"},Qb=wp(Na(300,.5,0),Na(-240,.5,1)),Jb=wp(Na(-100,.75,.35),Na(80,1.5,.8)),tx=wp(Na(260,.75,.35),Na(80,1.5,.8)),ex=Na(),nx=function(t){(t<0||t>1)&&(t-=Math.floor(t));var e=Math.abs(t-.5);return ex.h=360*t-100,ex.s=1.5-1.5*e,ex.l=.8-.9*e,ex+""},rx=Ge(),ix=Math.PI/3,ax=2*Math.PI/3,ox=function(t){var e;return t=(.5-t)*Math.PI,rx.r=255*(e=Math.sin(t))*e,rx.g=255*(e=Math.sin(t+ix))*e,rx.b=255*(e=Math.sin(t+ax))*e,rx+""},sx=function(t){return t=Math.max(0,Math.min(1,t)),"rgb("+Math.max(0,Math.min(255,Math.round(34.61+t*(1172.33-t*(10793.56-t*(33300.12-t*(38394.49-14825.05*t)))))))+", "+Math.max(0,Math.min(255,Math.round(23.31+t*(557.33+t*(1225.33-t*(3574.96-t*(1073.77+707.56*t)))))))+", "+Math.max(0,Math.min(255,Math.round(27.2+t*(3211.1-t*(15327.97-t*(27814-t*(22569.18-6838.66*t)))))))+")"};function cx(t){var e=t.length;return function(n){return t[Math.max(0,Math.min(e-1,Math.floor(n*e)))]}}var ux=cx(jv("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")),lx=cx(jv("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")),hx=cx(jv("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")),fx=cx(jv("0d088710078813078916078a19068c1b068d1d068e20068f2206902406912605912805922a05932c05942e05952f059631059733059735049837049938049a3a049a3c049b3e049c3f049c41049d43039e44039e46039f48039f4903a04b03a14c02a14e02a25002a25102a35302a35502a45601a45801a45901a55b01a55c01a65e01a66001a66100a76300a76400a76600a76700a86900a86a00a86c00a86e00a86f00a87100a87201a87401a87501a87701a87801a87a02a87b02a87d03a87e03a88004a88104a78305a78405a78606a68707a68808a68a09a58b0aa58d0ba58e0ca48f0da4910ea3920fa39410a29511a19613a19814a099159f9a169f9c179e9d189d9e199da01a9ca11b9ba21d9aa31e9aa51f99a62098a72197a82296aa2395ab2494ac2694ad2793ae2892b02991b12a90b22b8fb32c8eb42e8db52f8cb6308bb7318ab83289ba3388bb3488bc3587bd3786be3885bf3984c03a83c13b82c23c81c33d80c43e7fc5407ec6417dc7427cc8437bc9447aca457acb4679cc4778cc4977cd4a76ce4b75cf4c74d04d73d14e72d24f71d35171d45270d5536fd5546ed6556dd7566cd8576bd9586ada5a6ada5b69db5c68dc5d67dd5e66de5f65de6164df6263e06363e16462e26561e26660e3685fe4695ee56a5de56b5de66c5ce76e5be76f5ae87059e97158e97257ea7457eb7556eb7655ec7754ed7953ed7a52ee7b51ef7c51ef7e50f07f4ff0804ef1814df1834cf2844bf3854bf3874af48849f48948f58b47f58c46f68d45f68f44f79044f79143f79342f89441f89540f9973ff9983ef99a3efa9b3dfa9c3cfa9e3bfb9f3afba139fba238fca338fca537fca636fca835fca934fdab33fdac33fdae32fdaf31fdb130fdb22ffdb42ffdb52efeb72dfeb82cfeba2cfebb2bfebd2afebe2afec029fdc229fdc328fdc527fdc627fdc827fdca26fdcb26fccd25fcce25fcd025fcd225fbd324fbd524fbd724fad824fada24f9dc24f9dd25f8df25f8e125f7e225f7e425f6e626f6e826f5e926f5eb27f4ed27f3ee27f3f027f2f227f1f426f1f525f0f724f0f921")),dx=function(t){return we(re(t).call(document.documentElement))},px=0;function yx(){return new gx}function gx(){this._="@"+(++px).toString(36)}gx.prototype=yx.prototype={constructor:gx,get:function(t){for(var e=this._;!(e in t);)if(!(t=t.parentNode))return;return t[e]},set:function(t,e){return t[this._]=e},remove:function(t){return this._ in t&&delete t[this._]},toString:function(){return this._}};var mx=function(t){return"string"==typeof t?new xe([document.querySelectorAll(t)],[document.documentElement]):new xe([null==t?[]:t],be)},vx=function(t,e){null==e&&(e=On().touches);for(var n=0,r=e?e.length:0,i=new Array(r);n<r;++n)i[n]=Nn(t,e[n]);return i},bx=function(t){return function(){return t}},xx=Math.abs,_x=Math.atan2,kx=Math.cos,wx=Math.max,Ex=Math.min,Tx=Math.sin,Cx=Math.sqrt,Sx=Math.PI,Ax=Sx/2,Mx=2*Sx;function Ox(t){return t>1?0:t<-1?Sx:Math.acos(t)}function Nx(t){return t>=1?Ax:t<=-1?-Ax:Math.asin(t)}function Bx(t){return t.innerRadius}function Dx(t){return t.outerRadius}function Lx(t){return t.startAngle}function Ix(t){return t.endAngle}function Rx(t){return t&&t.padAngle}function Fx(t,e,n,r,i,a,o,s){var c=n-t,u=r-e,l=o-i,h=s-a,f=h*c-l*u;if(!(f*f<1e-12))return[t+(f=(l*(e-a)-h*(t-i))/f)*c,e+f*u]}function Px(t,e,n,r,i,a,o){var s=t-n,c=e-r,u=(o?a:-a)/Cx(s*s+c*c),l=u*c,h=-u*s,f=t+l,d=e+h,p=n+l,y=r+h,g=(f+p)/2,m=(d+y)/2,v=p-f,b=y-d,x=v*v+b*b,_=i-a,k=f*y-p*d,w=(b<0?-1:1)*Cx(wx(0,_*_*x-k*k)),E=(k*b-v*w)/x,T=(-k*v-b*w)/x,C=(k*b+v*w)/x,S=(-k*v+b*w)/x,A=E-g,M=T-m,O=C-g,N=S-m;return A*A+M*M>O*O+N*N&&(E=C,T=S),{cx:E,cy:T,x01:-l,y01:-h,x11:E*(i/_-1),y11:T*(i/_-1)}}var jx=function(){var t=Bx,e=Dx,n=bx(0),r=null,i=Lx,a=Ix,o=Rx,s=null;function c(){var c,u,l=+t.apply(this,arguments),h=+e.apply(this,arguments),f=i.apply(this,arguments)-Ax,d=a.apply(this,arguments)-Ax,p=xx(d-f),y=d>f;if(s||(s=c=$i()),h<l&&(u=h,h=l,l=u),h>1e-12)if(p>Mx-1e-12)s.moveTo(h*kx(f),h*Tx(f)),s.arc(0,0,h,f,d,!y),l>1e-12&&(s.moveTo(l*kx(d),l*Tx(d)),s.arc(0,0,l,d,f,y));else{var g,m,v=f,b=d,x=f,_=d,k=p,w=p,E=o.apply(this,arguments)/2,T=E>1e-12&&(r?+r.apply(this,arguments):Cx(l*l+h*h)),C=Ex(xx(h-l)/2,+n.apply(this,arguments)),S=C,A=C;if(T>1e-12){var M=Nx(T/l*Tx(E)),O=Nx(T/h*Tx(E));(k-=2*M)>1e-12?(x+=M*=y?1:-1,_-=M):(k=0,x=_=(f+d)/2),(w-=2*O)>1e-12?(v+=O*=y?1:-1,b-=O):(w=0,v=b=(f+d)/2)}var N=h*kx(v),B=h*Tx(v),D=l*kx(_),L=l*Tx(_);if(C>1e-12){var I,R=h*kx(b),F=h*Tx(b),P=l*kx(x),j=l*Tx(x);if(p<Sx&&(I=Fx(N,B,P,j,R,F,D,L))){var Y=N-I[0],z=B-I[1],U=R-I[0],$=F-I[1],q=1/Tx(Ox((Y*U+z*$)/(Cx(Y*Y+z*z)*Cx(U*U+$*$)))/2),W=Cx(I[0]*I[0]+I[1]*I[1]);S=Ex(C,(l-W)/(q-1)),A=Ex(C,(h-W)/(q+1))}}w>1e-12?A>1e-12?(g=Px(P,j,N,B,h,A,y),m=Px(R,F,D,L,h,A,y),s.moveTo(g.cx+g.x01,g.cy+g.y01),A<C?s.arc(g.cx,g.cy,A,_x(g.y01,g.x01),_x(m.y01,m.x01),!y):(s.arc(g.cx,g.cy,A,_x(g.y01,g.x01),_x(g.y11,g.x11),!y),s.arc(0,0,h,_x(g.cy+g.y11,g.cx+g.x11),_x(m.cy+m.y11,m.cx+m.x11),!y),s.arc(m.cx,m.cy,A,_x(m.y11,m.x11),_x(m.y01,m.x01),!y))):(s.moveTo(N,B),s.arc(0,0,h,v,b,!y)):s.moveTo(N,B),l>1e-12&&k>1e-12?S>1e-12?(g=Px(D,L,R,F,l,-S,y),m=Px(N,B,P,j,l,-S,y),s.lineTo(g.cx+g.x01,g.cy+g.y01),S<C?s.arc(g.cx,g.cy,S,_x(g.y01,g.x01),_x(m.y01,m.x01),!y):(s.arc(g.cx,g.cy,S,_x(g.y01,g.x01),_x(g.y11,g.x11),!y),s.arc(0,0,l,_x(g.cy+g.y11,g.cx+g.x11),_x(m.cy+m.y11,m.cx+m.x11),y),s.arc(m.cx,m.cy,S,_x(m.y11,m.x11),_x(m.y01,m.x01),!y))):s.arc(0,0,l,_,x,y):s.lineTo(D,L)}else s.moveTo(0,0);if(s.closePath(),c)return s=null,c+""||null}return c.centroid=function(){var n=(+t.apply(this,arguments)+ +e.apply(this,arguments))/2,r=(+i.apply(this,arguments)+ +a.apply(this,arguments))/2-Sx/2;return[kx(r)*n,Tx(r)*n]},c.innerRadius=function(e){return arguments.length?(t="function"==typeof e?e:bx(+e),c):t},c.outerRadius=function(t){return arguments.length?(e="function"==typeof t?t:bx(+t),c):e},c.cornerRadius=function(t){return arguments.length?(n="function"==typeof t?t:bx(+t),c):n},c.padRadius=function(t){return arguments.length?(r=null==t?null:"function"==typeof t?t:bx(+t),c):r},c.startAngle=function(t){return arguments.length?(i="function"==typeof t?t:bx(+t),c):i},c.endAngle=function(t){return arguments.length?(a="function"==typeof t?t:bx(+t),c):a},c.padAngle=function(t){return arguments.length?(o="function"==typeof t?t:bx(+t),c):o},c.context=function(t){return arguments.length?(s=null==t?null:t,c):s},c};function Yx(t){this._context=t}Yx.prototype={areaStart:function(){this._line=0},areaEnd:function(){this._line=NaN},lineStart:function(){this._point=0},lineEnd:function(){(this._line||0!==this._line&&1===this._point)&&this._context.closePath(),this._line=1-this._line},point:function(t,e){switch(t=+t,e=+e,this._point){case 0:this._point=1,this._line?this._context.lineTo(t,e):this._context.moveTo(t,e);break;case 1:this._point=2;default:this._context.lineTo(t,e)}}};var zx=function(t){return new Yx(t)};function Ux(t){return t[0]}function $x(t){return t[1]}var qx=function(){var t=Ux,e=$x,n=bx(!0),r=null,i=zx,a=null;function o(o){var s,c,u,l=o.length,h=!1;for(null==r&&(a=i(u=$i())),s=0;s<=l;++s)!(s<l&&n(c=o[s],s,o))===h&&((h=!h)?a.lineStart():a.lineEnd()),h&&a.point(+t(c,s,o),+e(c,s,o));if(u)return a=null,u+""||null}return o.x=function(e){return arguments.length?(t="function"==typeof e?e:bx(+e),o):t},o.y=function(t){return arguments.length?(e="function"==typeof t?t:bx(+t),o):e},o.defined=function(t){return arguments.length?(n="function"==typeof t?t:bx(!!t),o):n},o.curve=function(t){return arguments.length?(i=t,null!=r&&(a=i(r)),o):i},o.context=function(t){return arguments.length?(null==t?r=a=null:a=i(r=t),o):r},o},Wx=function(){var t=Ux,e=null,n=bx(0),r=$x,i=bx(!0),a=null,o=zx,s=null;function c(c){var u,l,h,f,d,p=c.length,y=!1,g=new Array(p),m=new Array(p);for(null==a&&(s=o(d=$i())),u=0;u<=p;++u){if(!(u<p&&i(f=c[u],u,c))===y)if(y=!y)l=u,s.areaStart(),s.lineStart();else{for(s.lineEnd(),s.lineStart(),h=u-1;h>=l;--h)s.point(g[h],m[h]);s.lineEnd(),s.areaEnd()}y&&(g[u]=+t(f,u,c),m[u]=+n(f,u,c),s.point(e?+e(f,u,c):g[u],r?+r(f,u,c):m[u]))}if(d)return s=null,d+""||null}function u(){return qx().defined(i).curve(o).context(a)}return c.x=function(n){return arguments.length?(t="function"==typeof n?n:bx(+n),e=null,c):t},c.x0=function(e){return arguments.length?(t="function"==typeof e?e:bx(+e),c):t},c.x1=function(t){return arguments.length?(e=null==t?null:"function"==typeof t?t:bx(+t),c):e},c.y=function(t){return arguments.length?(n="function"==typeof t?t:bx(+t),r=null,c):n},c.y0=function(t){return arguments.length?(n="function"==typeof t?t:bx(+t),c):n},c.y1=function(t){return arguments.length?(r=null==t?null:"function"==typeof t?t:bx(+t),c):r},c.lineX0=c.lineY0=function(){return u().x(t).y(n)},c.lineY1=function(){return u().x(t).y(r)},c.lineX1=function(){return u().x(e).y(n)},c.defined=function(t){return arguments.length?(i="function"==typeof t?t:bx(!!t),c):i},c.curve=function(t){return arguments.length?(o=t,null!=a&&(s=o(a)),c):o},c.context=function(t){return arguments.length?(null==t?a=s=null:s=o(a=t),c):a},c},Hx=function(t,e){return e<t?-1:e>t?1:e>=t?0:NaN},Vx=function(t){return t},Gx=function(){var t=Vx,e=Hx,n=null,r=bx(0),i=bx(Mx),a=bx(0);function o(o){var s,c,u,l,h,f=o.length,d=0,p=new Array(f),y=new Array(f),g=+r.apply(this,arguments),m=Math.min(Mx,Math.max(-Mx,i.apply(this,arguments)-g)),v=Math.min(Math.abs(m)/f,a.apply(this,arguments)),b=v*(m<0?-1:1);for(s=0;s<f;++s)(h=y[p[s]=s]=+t(o[s],s,o))>0&&(d+=h);for(null!=e?p.sort((function(t,n){return e(y[t],y[n])})):null!=n&&p.sort((function(t,e){return n(o[t],o[e])})),s=0,u=d?(m-f*b)/d:0;s<f;++s,g=l)c=p[s],l=g+((h=y[c])>0?h*u:0)+b,y[c]={data:o[c],index:s,value:h,startAngle:g,endAngle:l,padAngle:v};return y}return o.value=function(e){return arguments.length?(t="function"==typeof e?e:bx(+e),o):t},o.sortValues=function(t){return arguments.length?(e=t,n=null,o):e},o.sort=function(t){return arguments.length?(n=t,e=null,o):n},o.startAngle=function(t){return arguments.length?(r="function"==typeof t?t:bx(+t),o):r},o.endAngle=function(t){return arguments.length?(i="function"==typeof t?t:bx(+t),o):i},o.padAngle=function(t){return arguments.length?(a="function"==typeof t?t:bx(+t),o):a},o},Xx=Kx(zx);function Zx(t){this._curve=t}function Kx(t){function e(e){return new Zx(t(e))}return e._curve=t,e}function Qx(t){var e=t.curve;return t.angle=t.x,delete t.x,t.radius=t.y,delete t.y,t.curve=function(t){return arguments.length?e(Kx(t)):e()._curve},t}Zx.prototype={areaStart:function(){this._curve.areaStart()},areaEnd:function(){this._curve.areaEnd()},lineStart:function(){this._curve.lineStart()},lineEnd:function(){this._curve.lineEnd()},point:function(t,e){this._curve.point(e*Math.sin(t),e*-Math.cos(t))}};var Jx=function(){return Qx(qx().curve(Xx))},t_=function(){var t=Wx().curve(Xx),e=t.curve,n=t.lineX0,r=t.lineX1,i=t.lineY0,a=t.lineY1;return t.angle=t.x,delete t.x,t.startAngle=t.x0,delete t.x0,t.endAngle=t.x1,delete t.x1,t.radius=t.y,delete t.y,t.innerRadius=t.y0,delete t.y0,t.outerRadius=t.y1,delete t.y1,t.lineStartAngle=function(){return Qx(n())},delete t.lineX0,t.lineEndAngle=function(){return Qx(r())},delete t.lineX1,t.lineInnerRadius=function(){return Qx(i())},delete t.lineY0,t.lineOuterRadius=function(){return Qx(a())},delete t.lineY1,t.curve=function(t){return arguments.length?e(Kx(t)):e()._curve},t},e_=function(t,e){return[(e=+e)*Math.cos(t-=Math.PI/2),e*Math.sin(t)]},n_=Array.prototype.slice;function r_(t){return t.source}function i_(t){return t.target}function a_(t){var e=r_,n=i_,r=Ux,i=$x,a=null;function o(){var o,s=n_.call(arguments),c=e.apply(this,s),u=n.apply(this,s);if(a||(a=o=$i()),t(a,+r.apply(this,(s[0]=c,s)),+i.apply(this,s),+r.apply(this,(s[0]=u,s)),+i.apply(this,s)),o)return a=null,o+""||null}return o.source=function(t){return arguments.length?(e=t,o):e},o.target=function(t){return arguments.length?(n=t,o):n},o.x=function(t){return arguments.length?(r="function"==typeof t?t:bx(+t),o):r},o.y=function(t){return arguments.length?(i="function"==typeof t?t:bx(+t),o):i},o.context=function(t){return arguments.length?(a=null==t?null:t,o):a},o}function o_(t,e,n,r,i){t.moveTo(e,n),t.bezierCurveTo(e=(e+r)/2,n,e,i,r,i)}function s_(t,e,n,r,i){t.moveTo(e,n),t.bezierCurveTo(e,n=(n+i)/2,r,n,r,i)}function c_(t,e,n,r,i){var a=e_(e,n),o=e_(e,n=(n+i)/2),s=e_(r,n),c=e_(r,i);t.moveTo(a[0],a[1]),t.bezierCurveTo(o[0],o[1],s[0],s[1],c[0],c[1])}function u_(){return a_(o_)}function l_(){return a_(s_)}function h_(){var t=a_(c_);return t.angle=t.x,delete t.x,t.radius=t.y,delete t.y,t}var f_={draw:function(t,e){var n=Math.sqrt(e/Sx);t.moveTo(n,0),t.arc(0,0,n,0,Mx)}},d_={draw:function(t,e){var n=Math.sqrt(e/5)/2;t.moveTo(-3*n,-n),t.lineTo(-n,-n),t.lineTo(-n,-3*n),t.lineTo(n,-3*n),t.lineTo(n,-n),t.lineTo(3*n,-n),t.lineTo(3*n,n),t.lineTo(n,n),t.lineTo(n,3*n),t.lineTo(-n,3*n),t.lineTo(-n,n),t.lineTo(-3*n,n),t.closePath()}},p_=Math.sqrt(1/3),y_=2*p_,g_={draw:function(t,e){var n=Math.sqrt(e/y_),r=n*p_;t.moveTo(0,-n),t.lineTo(r,0),t.lineTo(0,n),t.lineTo(-r,0),t.closePath()}},m_=Math.sin(Sx/10)/Math.sin(7*Sx/10),v_=Math.sin(Mx/10)*m_,b_=-Math.cos(Mx/10)*m_,x_={draw:function(t,e){var n=Math.sqrt(.8908130915292852*e),r=v_*n,i=b_*n;t.moveTo(0,-n),t.lineTo(r,i);for(var a=1;a<5;++a){var o=Mx*a/5,s=Math.cos(o),c=Math.sin(o);t.lineTo(c*n,-s*n),t.lineTo(s*r-c*i,c*r+s*i)}t.closePath()}},__={draw:function(t,e){var n=Math.sqrt(e),r=-n/2;t.rect(r,r,n,n)}},k_=Math.sqrt(3),w_={draw:function(t,e){var n=-Math.sqrt(e/(3*k_));t.moveTo(0,2*n),t.lineTo(-k_*n,-n),t.lineTo(k_*n,-n),t.closePath()}},E_=Math.sqrt(3)/2,T_=1/Math.sqrt(12),C_=3*(T_/2+1),S_={draw:function(t,e){var n=Math.sqrt(e/C_),r=n/2,i=n*T_,a=r,o=n*T_+n,s=-a,c=o;t.moveTo(r,i),t.lineTo(a,o),t.lineTo(s,c),t.lineTo(-.5*r-E_*i,E_*r+-.5*i),t.lineTo(-.5*a-E_*o,E_*a+-.5*o),t.lineTo(-.5*s-E_*c,E_*s+-.5*c),t.lineTo(-.5*r+E_*i,-.5*i-E_*r),t.lineTo(-.5*a+E_*o,-.5*o-E_*a),t.lineTo(-.5*s+E_*c,-.5*c-E_*s),t.closePath()}},A_=[f_,d_,g_,__,x_,w_,S_],M_=function(){var t=bx(f_),e=bx(64),n=null;function r(){var r;if(n||(n=r=$i()),t.apply(this,arguments).draw(n,+e.apply(this,arguments)),r)return n=null,r+""||null}return r.type=function(e){return arguments.length?(t="function"==typeof e?e:bx(e),r):t},r.size=function(t){return arguments.length?(e="function"==typeof t?t:bx(+t),r):e},r.context=function(t){return arguments.length?(n=null==t?null:t,r):n},r},O_=function(){};function N_(t,e,n){t._context.bezierCurveTo((2*t._x0+t._x1)/3,(2*t._y0+t._y1)/3,(t._x0+2*t._x1)/3,(t._y0+2*t._y1)/3,(t._x0+4*t._x1+e)/6,(t._y0+4*t._y1+n)/6)}function B_(t){this._context=t}B_.prototype={areaStart:function(){this._line=0},areaEnd:function(){this._line=NaN},lineStart:function(){this._x0=this._x1=this._y0=this._y1=NaN,this._point=0},lineEnd:function(){switch(this._point){case 3:N_(this,this._x1,this._y1);case 2:this._context.lineTo(this._x1,this._y1)}(this._line||0!==this._line&&1===this._point)&&this._context.closePath(),this._line=1-this._line},point:function(t,e){switch(t=+t,e=+e,this._point){case 0:this._point=1,this._line?this._context.lineTo(t,e):this._context.moveTo(t,e);break;case 1:this._point=2;break;case 2:this._point=3,this._context.lineTo((5*this._x0+this._x1)/6,(5*this._y0+this._y1)/6);default:N_(this,t,e)}this._x0=this._x1,this._x1=t,this._y0=this._y1,this._y1=e}};var D_=function(t){return new B_(t)};function L_(t){this._context=t}L_.prototype={areaStart:O_,areaEnd:O_,lineStart:function(){this._x0=this._x1=this._x2=this._x3=this._x4=this._y0=this._y1=this._y2=this._y3=this._y4=NaN,this._point=0},lineEnd:function(){switch(this._point){case 1:this._context.moveTo(this._x2,this._y2),this._context.closePath();break;case 2:this._context.moveTo((this._x2+2*this._x3)/3,(this._y2+2*this._y3)/3),this._context.lineTo((this._x3+2*this._x2)/3,(this._y3+2*this._y2)/3),this._context.closePath();break;case 3:this.point(this._x2,this._y2),this.point(this._x3,this._y3),this.point(this._x4,this._y4)}},point:function(t,e){switch(t=+t,e=+e,this._point){case 0:this._point=1,this._x2=t,this._y2=e;break;case 1:this._point=2,this._x3=t,this._y3=e;break;case 2:this._point=3,this._x4=t,this._y4=e,this._context.moveTo((this._x0+4*this._x1+t)/6,(this._y0+4*this._y1+e)/6);break;default:N_(this,t,e)}this._x0=this._x1,this._x1=t,this._y0=this._y1,this._y1=e}};var I_=function(t){return new L_(t)};function R_(t){this._context=t}R_.prototype={areaStart:function(){this._line=0},areaEnd:function(){this._line=NaN},lineStart:function(){this._x0=this._x1=this._y0=this._y1=NaN,this._point=0},lineEnd:function(){(this._line||0!==this._line&&3===this._point)&&this._context.closePath(),this._line=1-this._line},point:function(t,e){switch(t=+t,e=+e,this._point){case 0:this._point=1;break;case 1:this._point=2;break;case 2:this._point=3;var n=(this._x0+4*this._x1+t)/6,r=(this._y0+4*this._y1+e)/6;this._line?this._context.lineTo(n,r):this._context.moveTo(n,r);break;case 3:this._point=4;default:N_(this,t,e)}this._x0=this._x1,this._x1=t,this._y0=this._y1,this._y1=e}};var F_=function(t){return new R_(t)};function P_(t,e){this._basis=new B_(t),this._beta=e}P_.prototype={lineStart:function(){this._x=[],this._y=[],this._basis.lineStart()},lineEnd:function(){var t=this._x,e=this._y,n=t.length-1;if(n>0)for(var r,i=t[0],a=e[0],o=t[n]-i,s=e[n]-a,c=-1;++c<=n;)r=c/n,this._basis.point(this._beta*t[c]+(1-this._beta)*(i+r*o),this._beta*e[c]+(1-this._beta)*(a+r*s));this._x=this._y=null,this._basis.lineEnd()},point:function(t,e){this._x.push(+t),this._y.push(+e)}};var j_=function t(e){function n(t){return 1===e?new B_(t):new P_(t,e)}return n.beta=function(e){return t(+e)},n}(.85);function Y_(t,e,n){t._context.bezierCurveTo(t._x1+t._k*(t._x2-t._x0),t._y1+t._k*(t._y2-t._y0),t._x2+t._k*(t._x1-e),t._y2+t._k*(t._y1-n),t._x2,t._y2)}function z_(t,e){this._context=t,this._k=(1-e)/6}z_.prototype={areaStart:function(){this._line=0},areaEnd:function(){this._line=NaN},lineStart:function(){this._x0=this._x1=this._x2=this._y0=this._y1=this._y2=NaN,this._point=0},lineEnd:function(){switch(this._point){case 2:this._context.lineTo(this._x2,this._y2);break;case 3:Y_(this,this._x1,this._y1)}(this._line||0!==this._line&&1===this._point)&&this._context.closePath(),this._line=1-this._line},point:function(t,e){switch(t=+t,e=+e,this._point){case 0:this._point=1,this._line?this._context.lineTo(t,e):this._context.moveTo(t,e);break;case 1:this._point=2,this._x1=t,this._y1=e;break;case 2:this._point=3;default:Y_(this,t,e)}this._x0=this._x1,this._x1=this._x2,this._x2=t,this._y0=this._y1,this._y1=this._y2,this._y2=e}};var U_=function t(e){function n(t){return new z_(t,e)}return n.tension=function(e){return t(+e)},n}(0);function $_(t,e){this._context=t,this._k=(1-e)/6}$_.prototype={areaStart:O_,areaEnd:O_,lineStart:function(){this._x0=this._x1=this._x2=this._x3=this._x4=this._x5=this._y0=this._y1=this._y2=this._y3=this._y4=this._y5=NaN,this._point=0},lineEnd:function(){switch(this._point){case 1:this._context.moveTo(this._x3,this._y3),this._context.closePath();break;case 2:this._context.lineTo(this._x3,this._y3),this._context.closePath();break;case 3:this.point(this._x3,this._y3),this.point(this._x4,this._y4),this.point(this._x5,this._y5)}},point:function(t,e){switch(t=+t,e=+e,this._point){case 0:this._point=1,this._x3=t,this._y3=e;break;case 1:this._point=2,this._context.moveTo(this._x4=t,this._y4=e);break;case 2:this._point=3,this._x5=t,this._y5=e;break;default:Y_(this,t,e)}this._x0=this._x1,this._x1=this._x2,this._x2=t,this._y0=this._y1,this._y1=this._y2,this._y2=e}};var q_=function t(e){function n(t){return new $_(t,e)}return n.tension=function(e){return t(+e)},n}(0);function W_(t,e){this._context=t,this._k=(1-e)/6}W_.prototype={areaStart:function(){this._line=0},areaEnd:function(){this._line=NaN},lineStart:function(){this._x0=this._x1=this._x2=this._y0=this._y1=this._y2=NaN,this._point=0},lineEnd:function(){(this._line||0!==this._line&&3===this._point)&&this._context.closePath(),this._line=1-this._line},point:function(t,e){switch(t=+t,e=+e,this._point){case 0:this._point=1;break;case 1:this._point=2;break;case 2:this._point=3,this._line?this._context.lineTo(this._x2,this._y2):this._context.moveTo(this._x2,this._y2);break;case 3:this._point=4;default:Y_(this,t,e)}this._x0=this._x1,this._x1=this._x2,this._x2=t,this._y0=this._y1,this._y1=this._y2,this._y2=e}};var H_=function t(e){function n(t){return new W_(t,e)}return n.tension=function(e){return t(+e)},n}(0);function V_(t,e,n){var r=t._x1,i=t._y1,a=t._x2,o=t._y2;if(t._l01_a>1e-12){var s=2*t._l01_2a+3*t._l01_a*t._l12_a+t._l12_2a,c=3*t._l01_a*(t._l01_a+t._l12_a);r=(r*s-t._x0*t._l12_2a+t._x2*t._l01_2a)/c,i=(i*s-t._y0*t._l12_2a+t._y2*t._l01_2a)/c}if(t._l23_a>1e-12){var u=2*t._l23_2a+3*t._l23_a*t._l12_a+t._l12_2a,l=3*t._l23_a*(t._l23_a+t._l12_a);a=(a*u+t._x1*t._l23_2a-e*t._l12_2a)/l,o=(o*u+t._y1*t._l23_2a-n*t._l12_2a)/l}t._context.bezierCurveTo(r,i,a,o,t._x2,t._y2)}function G_(t,e){this._context=t,this._alpha=e}G_.prototype={areaStart:function(){this._line=0},areaEnd:function(){this._line=NaN},lineStart:function(){this._x0=this._x1=this._x2=this._y0=this._y1=this._y2=NaN,this._l01_a=this._l12_a=this._l23_a=this._l01_2a=this._l12_2a=this._l23_2a=this._point=0},lineEnd:function(){switch(this._point){case 2:this._context.lineTo(this._x2,this._y2);break;case 3:this.point(this._x2,this._y2)}(this._line||0!==this._line&&1===this._point)&&this._context.closePath(),this._line=1-this._line},point:function(t,e){if(t=+t,e=+e,this._point){var n=this._x2-t,r=this._y2-e;this._l23_a=Math.sqrt(this._l23_2a=Math.pow(n*n+r*r,this._alpha))}switch(this._point){case 0:this._point=1,this._line?this._context.lineTo(t,e):this._context.moveTo(t,e);break;case 1:this._point=2;break;case 2:this._point=3;default:V_(this,t,e)}this._l01_a=this._l12_a,this._l12_a=this._l23_a,this._l01_2a=this._l12_2a,this._l12_2a=this._l23_2a,this._x0=this._x1,this._x1=this._x2,this._x2=t,this._y0=this._y1,this._y1=this._y2,this._y2=e}};var X_=function t(e){function n(t){return e?new G_(t,e):new z_(t,0)}return n.alpha=function(e){return t(+e)},n}(.5);function Z_(t,e){this._context=t,this._alpha=e}Z_.prototype={areaStart:O_,areaEnd:O_,lineStart:function(){this._x0=this._x1=this._x2=this._x3=this._x4=this._x5=this._y0=this._y1=this._y2=this._y3=this._y4=this._y5=NaN,this._l01_a=this._l12_a=this._l23_a=this._l01_2a=this._l12_2a=this._l23_2a=this._point=0},lineEnd:function(){switch(this._point){case 1:this._context.moveTo(this._x3,this._y3),this._context.closePath();break;case 2:this._context.lineTo(this._x3,this._y3),this._context.closePath();break;case 3:this.point(this._x3,this._y3),this.point(this._x4,this._y4),this.point(this._x5,this._y5)}},point:function(t,e){if(t=+t,e=+e,this._point){var n=this._x2-t,r=this._y2-e;this._l23_a=Math.sqrt(this._l23_2a=Math.pow(n*n+r*r,this._alpha))}switch(this._point){case 0:this._point=1,this._x3=t,this._y3=e;break;case 1:this._point=2,this._context.moveTo(this._x4=t,this._y4=e);break;case 2:this._point=3,this._x5=t,this._y5=e;break;default:V_(this,t,e)}this._l01_a=this._l12_a,this._l12_a=this._l23_a,this._l01_2a=this._l12_2a,this._l12_2a=this._l23_2a,this._x0=this._x1,this._x1=this._x2,this._x2=t,this._y0=this._y1,this._y1=this._y2,this._y2=e}};var K_=function t(e){function n(t){return e?new Z_(t,e):new $_(t,0)}return n.alpha=function(e){return t(+e)},n}(.5);function Q_(t,e){this._context=t,this._alpha=e}Q_.prototype={areaStart:function(){this._line=0},areaEnd:function(){this._line=NaN},lineStart:function(){this._x0=this._x1=this._x2=this._y0=this._y1=this._y2=NaN,this._l01_a=this._l12_a=this._l23_a=this._l01_2a=this._l12_2a=this._l23_2a=this._point=0},lineEnd:function(){(this._line||0!==this._line&&3===this._point)&&this._context.closePath(),this._line=1-this._line},point:function(t,e){if(t=+t,e=+e,this._point){var n=this._x2-t,r=this._y2-e;this._l23_a=Math.sqrt(this._l23_2a=Math.pow(n*n+r*r,this._alpha))}switch(this._point){case 0:this._point=1;break;case 1:this._point=2;break;case 2:this._point=3,this._line?this._context.lineTo(this._x2,this._y2):this._context.moveTo(this._x2,this._y2);break;case 3:this._point=4;default:V_(this,t,e)}this._l01_a=this._l12_a,this._l12_a=this._l23_a,this._l01_2a=this._l12_2a,this._l12_2a=this._l23_2a,this._x0=this._x1,this._x1=this._x2,this._x2=t,this._y0=this._y1,this._y1=this._y2,this._y2=e}};var J_=function t(e){function n(t){return e?new Q_(t,e):new W_(t,0)}return n.alpha=function(e){return t(+e)},n}(.5);function tk(t){this._context=t}tk.prototype={areaStart:O_,areaEnd:O_,lineStart:function(){this._point=0},lineEnd:function(){this._point&&this._context.closePath()},point:function(t,e){t=+t,e=+e,this._point?this._context.lineTo(t,e):(this._point=1,this._context.moveTo(t,e))}};var ek=function(t){return new tk(t)};function nk(t){return t<0?-1:1}function rk(t,e,n){var r=t._x1-t._x0,i=e-t._x1,a=(t._y1-t._y0)/(r||i<0&&-0),o=(n-t._y1)/(i||r<0&&-0),s=(a*i+o*r)/(r+i);return(nk(a)+nk(o))*Math.min(Math.abs(a),Math.abs(o),.5*Math.abs(s))||0}function ik(t,e){var n=t._x1-t._x0;return n?(3*(t._y1-t._y0)/n-e)/2:e}function ak(t,e,n){var r=t._x0,i=t._y0,a=t._x1,o=t._y1,s=(a-r)/3;t._context.bezierCurveTo(r+s,i+s*e,a-s,o-s*n,a,o)}function ok(t){this._context=t}function sk(t){this._context=new ck(t)}function ck(t){this._context=t}function uk(t){return new ok(t)}function lk(t){return new sk(t)}function hk(t){this._context=t}function fk(t){var e,n,r=t.length-1,i=new Array(r),a=new Array(r),o=new Array(r);for(i[0]=0,a[0]=2,o[0]=t[0]+2*t[1],e=1;e<r-1;++e)i[e]=1,a[e]=4,o[e]=4*t[e]+2*t[e+1];for(i[r-1]=2,a[r-1]=7,o[r-1]=8*t[r-1]+t[r],e=1;e<r;++e)n=i[e]/a[e-1],a[e]-=n,o[e]-=n*o[e-1];for(i[r-1]=o[r-1]/a[r-1],e=r-2;e>=0;--e)i[e]=(o[e]-i[e+1])/a[e];for(a[r-1]=(t[r]+i[r-1])/2,e=0;e<r-1;++e)a[e]=2*t[e+1]-i[e+1];return[i,a]}ok.prototype={areaStart:function(){this._line=0},areaEnd:function(){this._line=NaN},lineStart:function(){this._x0=this._x1=this._y0=this._y1=this._t0=NaN,this._point=0},lineEnd:function(){switch(this._point){case 2:this._context.lineTo(this._x1,this._y1);break;case 3:ak(this,this._t0,ik(this,this._t0))}(this._line||0!==this._line&&1===this._point)&&this._context.closePath(),this._line=1-this._line},point:function(t,e){var n=NaN;if(e=+e,(t=+t)!==this._x1||e!==this._y1){switch(this._point){case 0:this._point=1,this._line?this._context.lineTo(t,e):this._context.moveTo(t,e);break;case 1:this._point=2;break;case 2:this._point=3,ak(this,ik(this,n=rk(this,t,e)),n);break;default:ak(this,this._t0,n=rk(this,t,e))}this._x0=this._x1,this._x1=t,this._y0=this._y1,this._y1=e,this._t0=n}}},(sk.prototype=Object.create(ok.prototype)).point=function(t,e){ok.prototype.point.call(this,e,t)},ck.prototype={moveTo:function(t,e){this._context.moveTo(e,t)},closePath:function(){this._context.closePath()},lineTo:function(t,e){this._context.lineTo(e,t)},bezierCurveTo:function(t,e,n,r,i,a){this._context.bezierCurveTo(e,t,r,n,a,i)}},hk.prototype={areaStart:function(){this._line=0},areaEnd:function(){this._line=NaN},lineStart:function(){this._x=[],this._y=[]},lineEnd:function(){var t=this._x,e=this._y,n=t.length;if(n)if(this._line?this._context.lineTo(t[0],e[0]):this._context.moveTo(t[0],e[0]),2===n)this._context.lineTo(t[1],e[1]);else for(var r=fk(t),i=fk(e),a=0,o=1;o<n;++a,++o)this._context.bezierCurveTo(r[0][a],i[0][a],r[1][a],i[1][a],t[o],e[o]);(this._line||0!==this._line&&1===n)&&this._context.closePath(),this._line=1-this._line,this._x=this._y=null},point:function(t,e){this._x.push(+t),this._y.push(+e)}};var dk=function(t){return new hk(t)};function pk(t,e){this._context=t,this._t=e}pk.prototype={areaStart:function(){this._line=0},areaEnd:function(){this._line=NaN},lineStart:function(){this._x=this._y=NaN,this._point=0},lineEnd:function(){0<this._t&&this._t<1&&2===this._point&&this._context.lineTo(this._x,this._y),(this._line||0!==this._line&&1===this._point)&&this._context.closePath(),this._line>=0&&(this._t=1-this._t,this._line=1-this._line)},point:function(t,e){switch(t=+t,e=+e,this._point){case 0:this._point=1,this._line?this._context.lineTo(t,e):this._context.moveTo(t,e);break;case 1:this._point=2;default:if(this._t<=0)this._context.lineTo(this._x,e),this._context.lineTo(t,e);else{var n=this._x*(1-this._t)+t*this._t;this._context.lineTo(n,this._y),this._context.lineTo(n,e)}}this._x=t,this._y=e}};var yk=function(t){return new pk(t,.5)};function gk(t){return new pk(t,0)}function mk(t){return new pk(t,1)}var vk=function(t,e){if((i=t.length)>1)for(var n,r,i,a=1,o=t[e[0]],s=o.length;a<i;++a)for(r=o,o=t[e[a]],n=0;n<s;++n)o[n][1]+=o[n][0]=isNaN(r[n][1])?r[n][0]:r[n][1]},bk=function(t){for(var e=t.length,n=new Array(e);--e>=0;)n[e]=e;return n};function xk(t,e){return t[e]}var _k=function(){var t=bx([]),e=bk,n=vk,r=xk;function i(i){var a,o,s=t.apply(this,arguments),c=i.length,u=s.length,l=new Array(u);for(a=0;a<u;++a){for(var h,f=s[a],d=l[a]=new Array(c),p=0;p<c;++p)d[p]=h=[0,+r(i[p],f,p,i)],h.data=i[p];d.key=f}for(a=0,o=e(l);a<u;++a)l[o[a]].index=a;return n(l,o),l}return i.keys=function(e){return arguments.length?(t="function"==typeof e?e:bx(n_.call(e)),i):t},i.value=function(t){return arguments.length?(r="function"==typeof t?t:bx(+t),i):r},i.order=function(t){return arguments.length?(e=null==t?bk:"function"==typeof t?t:bx(n_.call(t)),i):e},i.offset=function(t){return arguments.length?(n=null==t?vk:t,i):n},i},kk=function(t,e){if((r=t.length)>0){for(var n,r,i,a=0,o=t[0].length;a<o;++a){for(i=n=0;n<r;++n)i+=t[n][a][1]||0;if(i)for(n=0;n<r;++n)t[n][a][1]/=i}vk(t,e)}},wk=function(t,e){if((s=t.length)>0)for(var n,r,i,a,o,s,c=0,u=t[e[0]].length;c<u;++c)for(a=o=0,n=0;n<s;++n)(i=(r=t[e[n]][c])[1]-r[0])>0?(r[0]=a,r[1]=a+=i):i<0?(r[1]=o,r[0]=o+=i):(r[0]=0,r[1]=i)},Ek=function(t,e){if((n=t.length)>0){for(var n,r=0,i=t[e[0]],a=i.length;r<a;++r){for(var o=0,s=0;o<n;++o)s+=t[o][r][1]||0;i[r][1]+=i[r][0]=-s/2}vk(t,e)}},Tk=function(t,e){if((i=t.length)>0&&(r=(n=t[e[0]]).length)>0){for(var n,r,i,a=0,o=1;o<r;++o){for(var s=0,c=0,u=0;s<i;++s){for(var l=t[e[s]],h=l[o][1]||0,f=(h-(l[o-1][1]||0))/2,d=0;d<s;++d){var p=t[e[d]];f+=(p[o][1]||0)-(p[o-1][1]||0)}c+=h,u+=f*h}n[o-1][1]+=n[o-1][0]=a,c&&(a-=u/c)}n[o-1][1]+=n[o-1][0]=a,vk(t,e)}},Ck=function(t){var e=t.map(Sk);return bk(t).sort((function(t,n){return e[t]-e[n]}))};function Sk(t){for(var e,n=-1,r=0,i=t.length,a=-1/0;++n<i;)(e=+t[n][1])>a&&(a=e,r=n);return r}var Ak=function(t){var e=t.map(Mk);return bk(t).sort((function(t,n){return e[t]-e[n]}))};function Mk(t){for(var e,n=0,r=-1,i=t.length;++r<i;)(e=+t[r][1])&&(n+=e);return n}var Ok=function(t){return Ak(t).reverse()},Nk=function(t){var e,n,r=t.length,i=t.map(Mk),a=Ck(t),o=0,s=0,c=[],u=[];for(e=0;e<r;++e)n=a[e],o<s?(o+=i[n],c.push(n)):(s+=i[n],u.push(n));return u.reverse().concat(c)},Bk=function(t){return bk(t).reverse()};var Dk=Date.prototype.toISOString?function(t){return t.toISOString()}:Wg("%Y-%m-%dT%H:%M:%S.%LZ");var Lk=+new Date("2000-01-01T00:00:00.000Z")?function(t){var e=new Date(t);return isNaN(e)?null:e}:Hg("%Y-%m-%dT%H:%M:%S.%LZ"),Ik=function(t,e,n){var r=new qn,i=e;return null==e?(r.restart(t,e,n),r):(e=+e,n=null==n?Un():+n,r.restart((function a(o){o+=i,r.restart(a,i+=e,n),t(o)}),e,n),r)},Rk=function(t){return function(){return t}};function Fk(t){return t[0]}function Pk(t){return t[1]}function jk(){this._=null}function Yk(t){t.U=t.C=t.L=t.R=t.P=t.N=null}function zk(t,e){var n=e,r=e.R,i=n.U;i?i.L===n?i.L=r:i.R=r:t._=r,r.U=i,n.U=r,n.R=r.L,n.R&&(n.R.U=n),r.L=n}function Uk(t,e){var n=e,r=e.L,i=n.U;i?i.L===n?i.L=r:i.R=r:t._=r,r.U=i,n.U=r,n.L=r.R,n.L&&(n.L.U=n),r.R=n}function $k(t){for(;t.L;)t=t.L;return t}jk.prototype={constructor:jk,insert:function(t,e){var n,r,i;if(t){if(e.P=t,e.N=t.N,t.N&&(t.N.P=e),t.N=e,t.R){for(t=t.R;t.L;)t=t.L;t.L=e}else t.R=e;n=t}else this._?(t=$k(this._),e.P=null,e.N=t,t.P=t.L=e,n=t):(e.P=e.N=null,this._=e,n=null);for(e.L=e.R=null,e.U=n,e.C=!0,t=e;n&&n.C;)n===(r=n.U).L?(i=r.R)&&i.C?(n.C=i.C=!1,r.C=!0,t=r):(t===n.R&&(zk(this,n),n=(t=n).U),n.C=!1,r.C=!0,Uk(this,r)):(i=r.L)&&i.C?(n.C=i.C=!1,r.C=!0,t=r):(t===n.L&&(Uk(this,n),n=(t=n).U),n.C=!1,r.C=!0,zk(this,r)),n=t.U;this._.C=!1},remove:function(t){t.N&&(t.N.P=t.P),t.P&&(t.P.N=t.N),t.N=t.P=null;var e,n,r,i=t.U,a=t.L,o=t.R;if(n=a?o?$k(o):a:o,i?i.L===t?i.L=n:i.R=n:this._=n,a&&o?(r=n.C,n.C=t.C,n.L=a,a.U=n,n!==o?(i=n.U,n.U=t.U,t=n.R,i.L=t,n.R=o,o.U=n):(n.U=i,i=n,t=n.R)):(r=t.C,t=n),t&&(t.U=i),!r)if(t&&t.C)t.C=!1;else{do{if(t===this._)break;if(t===i.L){if((e=i.R).C&&(e.C=!1,i.C=!0,zk(this,i),e=i.R),e.L&&e.L.C||e.R&&e.R.C){e.R&&e.R.C||(e.L.C=!1,e.C=!0,Uk(this,e),e=i.R),e.C=i.C,i.C=e.R.C=!1,zk(this,i),t=this._;break}}else if((e=i.L).C&&(e.C=!1,i.C=!0,Uk(this,i),e=i.L),e.L&&e.L.C||e.R&&e.R.C){e.L&&e.L.C||(e.R.C=!1,e.C=!0,zk(this,e),e=i.L),e.C=i.C,i.C=e.L.C=!1,Uk(this,i),t=this._;break}e.C=!0,t=i,i=i.U}while(!t.C);t&&(t.C=!1)}}};var qk=jk;function Wk(t,e,n,r){var i=[null,null],a=yw.push(i)-1;return i.left=t,i.right=e,n&&Vk(i,t,e,n),r&&Vk(i,e,t,r),dw[t.index].halfedges.push(a),dw[e.index].halfedges.push(a),i}function Hk(t,e,n){var r=[e,n];return r.left=t,r}function Vk(t,e,n,r){t[0]||t[1]?t.left===n?t[1]=r:t[0]=r:(t[0]=r,t.left=e,t.right=n)}function Gk(t,e,n,r,i){var a,o=t[0],s=t[1],c=o[0],u=o[1],l=0,h=1,f=s[0]-c,d=s[1]-u;if(a=e-c,f||!(a>0)){if(a/=f,f<0){if(a<l)return;a<h&&(h=a)}else if(f>0){if(a>h)return;a>l&&(l=a)}if(a=r-c,f||!(a<0)){if(a/=f,f<0){if(a>h)return;a>l&&(l=a)}else if(f>0){if(a<l)return;a<h&&(h=a)}if(a=n-u,d||!(a>0)){if(a/=d,d<0){if(a<l)return;a<h&&(h=a)}else if(d>0){if(a>h)return;a>l&&(l=a)}if(a=i-u,d||!(a<0)){if(a/=d,d<0){if(a>h)return;a>l&&(l=a)}else if(d>0){if(a<l)return;a<h&&(h=a)}return!(l>0||h<1)||(l>0&&(t[0]=[c+l*f,u+l*d]),h<1&&(t[1]=[c+h*f,u+h*d]),!0)}}}}}function Xk(t,e,n,r,i){var a=t[1];if(a)return!0;var o,s,c=t[0],u=t.left,l=t.right,h=u[0],f=u[1],d=l[0],p=l[1],y=(h+d)/2,g=(f+p)/2;if(p===f){if(y<e||y>=r)return;if(h>d){if(c){if(c[1]>=i)return}else c=[y,n];a=[y,i]}else{if(c){if(c[1]<n)return}else c=[y,i];a=[y,n]}}else if(s=g-(o=(h-d)/(p-f))*y,o<-1||o>1)if(h>d){if(c){if(c[1]>=i)return}else c=[(n-s)/o,n];a=[(i-s)/o,i]}else{if(c){if(c[1]<n)return}else c=[(i-s)/o,i];a=[(n-s)/o,n]}else if(f<p){if(c){if(c[0]>=r)return}else c=[e,o*e+s];a=[r,o*r+s]}else{if(c){if(c[0]<e)return}else c=[r,o*r+s];a=[e,o*e+s]}return t[0]=c,t[1]=a,!0}function Zk(t,e){var n=t.site,r=e.left,i=e.right;return n===i&&(i=r,r=n),i?Math.atan2(i[1]-r[1],i[0]-r[0]):(n===r?(r=e[1],i=e[0]):(r=e[0],i=e[1]),Math.atan2(r[0]-i[0],i[1]-r[1]))}function Kk(t,e){return e[+(e.left!==t.site)]}function Qk(t,e){return e[+(e.left===t.site)]}var Jk,tw=[];function ew(){Yk(this),this.x=this.y=this.arc=this.site=this.cy=null}function nw(t){var e=t.P,n=t.N;if(e&&n){var r=e.site,i=t.site,a=n.site;if(r!==a){var o=i[0],s=i[1],c=r[0]-o,u=r[1]-s,l=a[0]-o,h=a[1]-s,f=2*(c*h-u*l);if(!(f>=-mw)){var d=c*c+u*u,p=l*l+h*h,y=(h*d-u*p)/f,g=(c*p-l*d)/f,m=tw.pop()||new ew;m.arc=t,m.site=i,m.x=y+o,m.y=(m.cy=g+s)+Math.sqrt(y*y+g*g),t.circle=m;for(var v=null,b=pw._;b;)if(m.y<b.y||m.y===b.y&&m.x<=b.x){if(!b.L){v=b.P;break}b=b.L}else{if(!b.R){v=b;break}b=b.R}pw.insert(v,m),v||(Jk=m)}}}}function rw(t){var e=t.circle;e&&(e.P||(Jk=e.N),pw.remove(e),tw.push(e),Yk(e),t.circle=null)}var iw=[];function aw(){Yk(this),this.edge=this.site=this.circle=null}function ow(t){var e=iw.pop()||new aw;return e.site=t,e}function sw(t){rw(t),fw.remove(t),iw.push(t),Yk(t)}function cw(t){var e=t.circle,n=e.x,r=e.cy,i=[n,r],a=t.P,o=t.N,s=[t];sw(t);for(var c=a;c.circle&&Math.abs(n-c.circle.x)<gw&&Math.abs(r-c.circle.cy)<gw;)a=c.P,s.unshift(c),sw(c),c=a;s.unshift(c),rw(c);for(var u=o;u.circle&&Math.abs(n-u.circle.x)<gw&&Math.abs(r-u.circle.cy)<gw;)o=u.N,s.push(u),sw(u),u=o;s.push(u),rw(u);var l,h=s.length;for(l=1;l<h;++l)u=s[l],c=s[l-1],Vk(u.edge,c.site,u.site,i);c=s[0],(u=s[h-1]).edge=Wk(c.site,u.site,null,i),nw(c),nw(u)}function uw(t){for(var e,n,r,i,a=t[0],o=t[1],s=fw._;s;)if((r=lw(s,o)-a)>gw)s=s.L;else{if(!((i=a-hw(s,o))>gw)){r>-gw?(e=s.P,n=s):i>-gw?(e=s,n=s.N):e=n=s;break}if(!s.R){e=s;break}s=s.R}!function(t){dw[t.index]={site:t,halfedges:[]}}(t);var c=ow(t);if(fw.insert(e,c),e||n){if(e===n)return rw(e),n=ow(e.site),fw.insert(c,n),c.edge=n.edge=Wk(e.site,c.site),nw(e),void nw(n);if(n){rw(e),rw(n);var u=e.site,l=u[0],h=u[1],f=t[0]-l,d=t[1]-h,p=n.site,y=p[0]-l,g=p[1]-h,m=2*(f*g-d*y),v=f*f+d*d,b=y*y+g*g,x=[(g*v-d*b)/m+l,(f*b-y*v)/m+h];Vk(n.edge,u,p,x),c.edge=Wk(u,t,null,x),n.edge=Wk(t,p,null,x),nw(e),nw(n)}else c.edge=Wk(e.site,c.site)}}function lw(t,e){var n=t.site,r=n[0],i=n[1],a=i-e;if(!a)return r;var o=t.P;if(!o)return-1/0;var s=(n=o.site)[0],c=n[1],u=c-e;if(!u)return s;var l=s-r,h=1/a-1/u,f=l/u;return h?(-f+Math.sqrt(f*f-2*h*(l*l/(-2*u)-c+u/2+i-a/2)))/h+r:(r+s)/2}function hw(t,e){var n=t.N;if(n)return lw(n,e);var r=t.site;return r[1]===e?r[0]:1/0}var fw,dw,pw,yw,gw=1e-6,mw=1e-12;function vw(t,e){return e[1]-t[1]||e[0]-t[0]}function bw(t,e){var n,r,i,a=t.sort(vw).pop();for(yw=[],dw=new Array(t.length),fw=new qk,pw=new qk;;)if(i=Jk,a&&(!i||a[1]<i.y||a[1]===i.y&&a[0]<i.x))a[0]===n&&a[1]===r||(uw(a),n=a[0],r=a[1]),a=t.pop();else{if(!i)break;cw(i.arc)}if(function(){for(var t,e,n,r,i=0,a=dw.length;i<a;++i)if((t=dw[i])&&(r=(e=t.halfedges).length)){var o=new Array(r),s=new Array(r);for(n=0;n<r;++n)o[n]=n,s[n]=Zk(t,yw[e[n]]);for(o.sort((function(t,e){return s[e]-s[t]})),n=0;n<r;++n)s[n]=e[o[n]];for(n=0;n<r;++n)e[n]=s[n]}}(),e){var o=+e[0][0],s=+e[0][1],c=+e[1][0],u=+e[1][1];!function(t,e,n,r){for(var i,a=yw.length;a--;)Xk(i=yw[a],t,e,n,r)&&Gk(i,t,e,n,r)&&(Math.abs(i[0][0]-i[1][0])>gw||Math.abs(i[0][1]-i[1][1])>gw)||delete yw[a]}(o,s,c,u),function(t,e,n,r){var i,a,o,s,c,u,l,h,f,d,p,y,g=dw.length,m=!0;for(i=0;i<g;++i)if(a=dw[i]){for(o=a.site,s=(c=a.halfedges).length;s--;)yw[c[s]]||c.splice(s,1);for(s=0,u=c.length;s<u;)p=(d=Qk(a,yw[c[s]]))[0],y=d[1],h=(l=Kk(a,yw[c[++s%u]]))[0],f=l[1],(Math.abs(p-h)>gw||Math.abs(y-f)>gw)&&(c.splice(s,0,yw.push(Hk(o,d,Math.abs(p-t)<gw&&r-y>gw?[t,Math.abs(h-t)<gw?f:r]:Math.abs(y-r)<gw&&n-p>gw?[Math.abs(f-r)<gw?h:n,r]:Math.abs(p-n)<gw&&y-e>gw?[n,Math.abs(h-n)<gw?f:e]:Math.abs(y-e)<gw&&p-t>gw?[Math.abs(f-e)<gw?h:t,e]:null))-1),++u);u&&(m=!1)}if(m){var v,b,x,_=1/0;for(i=0,m=null;i<g;++i)(a=dw[i])&&(x=(v=(o=a.site)[0]-t)*v+(b=o[1]-e)*b)<_&&(_=x,m=a);if(m){var k=[t,e],w=[t,r],E=[n,r],T=[n,e];m.halfedges.push(yw.push(Hk(o=m.site,k,w))-1,yw.push(Hk(o,w,E))-1,yw.push(Hk(o,E,T))-1,yw.push(Hk(o,T,k))-1)}}for(i=0;i<g;++i)(a=dw[i])&&(a.halfedges.length||delete dw[i])}(o,s,c,u)}this.edges=yw,this.cells=dw,fw=pw=yw=dw=null}bw.prototype={constructor:bw,polygons:function(){var t=this.edges;return this.cells.map((function(e){var n=e.halfedges.map((function(n){return Kk(e,t[n])}));return n.data=e.site.data,n}))},triangles:function(){var t=[],e=this.edges;return this.cells.forEach((function(n,r){if(a=(i=n.halfedges).length)for(var i,a,o,s,c,u,l=n.site,h=-1,f=e[i[a-1]],d=f.left===l?f.right:f.left;++h<a;)o=d,d=(f=e[i[h]]).left===l?f.right:f.left,o&&d&&r<o.index&&r<d.index&&(c=o,u=d,((s=l)[0]-u[0])*(c[1]-s[1])-(s[0]-c[0])*(u[1]-s[1])<0)&&t.push([l.data,o.data,d.data])})),t},links:function(){return this.edges.filter((function(t){return t.right})).map((function(t){return{source:t.left.data,target:t.right.data}}))},find:function(t,e,n){for(var r,i,a=this,o=a._found||0,s=a.cells.length;!(i=a.cells[o]);)if(++o>=s)return null;var c=t-i.site[0],u=e-i.site[1],l=c*c+u*u;do{i=a.cells[r=o],o=null,i.halfedges.forEach((function(n){var r=a.edges[n],s=r.left;if(s!==i.site&&s||(s=r.right)){var c=t-s[0],u=e-s[1],h=c*c+u*u;h<l&&(l=h,o=s.index)}}))}while(null!==o);return a._found=r,null==n||l<=n*n?i.site:null}};var xw=function(){var t=Fk,e=Pk,n=null;function r(r){return new bw(r.map((function(n,i){var a=[Math.round(t(n,i,r)/gw)*gw,Math.round(e(n,i,r)/gw)*gw];return a.index=i,a.data=n,a})),n)}return r.polygons=function(t){return r(t).polygons()},r.links=function(t){return r(t).links()},r.triangles=function(t){return r(t).triangles()},r.x=function(e){return arguments.length?(t="function"==typeof e?e:Rk(+e),r):t},r.y=function(t){return arguments.length?(e="function"==typeof t?t:Rk(+t),r):e},r.extent=function(t){return arguments.length?(n=null==t?null:[[+t[0][0],+t[0][1]],[+t[1][0],+t[1][1]]],r):n&&[[n[0][0],n[0][1]],[n[1][0],n[1][1]]]},r.size=function(t){return arguments.length?(n=null==t?null:[[0,0],[+t[0],+t[1]]],r):n&&[n[1][0]-n[0][0],n[1][1]-n[0][1]]},r},_w=function(t){return function(){return t}};function kw(t,e,n){this.target=t,this.type=e,this.transform=n}function ww(t,e,n){this.k=t,this.x=e,this.y=n}ww.prototype={constructor:ww,scale:function(t){return 1===t?this:new ww(this.k*t,this.x,this.y)},translate:function(t,e){return 0===t&0===e?this:new ww(this.k,this.x+this.k*t,this.y+this.k*e)},apply:function(t){return[t[0]*this.k+this.x,t[1]*this.k+this.y]},applyX:function(t){return t*this.k+this.x},applyY:function(t){return t*this.k+this.y},invert:function(t){return[(t[0]-this.x)/this.k,(t[1]-this.y)/this.k]},invertX:function(t){return(t-this.x)/this.k},invertY:function(t){return(t-this.y)/this.k},rescaleX:function(t){return t.copy().domain(t.range().map(this.invertX,this).map(t.invert,t))},rescaleY:function(t){return t.copy().domain(t.range().map(this.invertY,this).map(t.invert,t))},toString:function(){return"translate("+this.x+","+this.y+") scale("+this.k+")"}};var Ew=new ww(1,0,0);function Tw(t){for(;!t.__zoom;)if(!(t=t.parentNode))return Ew;return t.__zoom}function Cw(){ue.stopImmediatePropagation()}Tw.prototype=ww.prototype;var Sw=function(){ue.preventDefault(),ue.stopImmediatePropagation()};function Aw(){return!ue.ctrlKey&&!ue.button}function Mw(){var t=this;return t instanceof SVGElement?(t=t.ownerSVGElement||t).hasAttribute("viewBox")?[[(t=t.viewBox.baseVal).x,t.y],[t.x+t.width,t.y+t.height]]:[[0,0],[t.width.baseVal.value,t.height.baseVal.value]]:[[0,0],[t.clientWidth,t.clientHeight]]}function Ow(){return this.__zoom||Ew}function Nw(){return-ue.deltaY*(1===ue.deltaMode?.05:ue.deltaMode?1:.002)}function Bw(){return navigator.maxTouchPoints||"ontouchstart"in this}function Dw(t,e,n){var r=t.invertX(e[0][0])-n[0][0],i=t.invertX(e[1][0])-n[1][0],a=t.invertY(e[0][1])-n[0][1],o=t.invertY(e[1][1])-n[1][1];return t.translate(i>r?(r+i)/2:Math.min(0,r)||Math.max(0,i),o>a?(a+o)/2:Math.min(0,a)||Math.max(0,o))}var Lw=function(){var t,e,n=Aw,r=Mw,i=Dw,a=Nw,o=Bw,s=[0,1/0],c=[[-1/0,-1/0],[1/0,1/0]],u=250,l=dp,h=ht("start","zoom","end"),f=0;function d(t){t.property("__zoom",Ow).on("wheel.zoom",x).on("mousedown.zoom",_).on("dblclick.zoom",k).filter(o).on("touchstart.zoom",w).on("touchmove.zoom",E).on("touchend.zoom touchcancel.zoom",T).style("touch-action","none").style("-webkit-tap-highlight-color","rgba(0,0,0,0)")}function p(t,e){return(e=Math.max(s[0],Math.min(s[1],e)))===t.k?t:new ww(e,t.x,t.y)}function y(t,e,n){var r=e[0]-n[0]*t.k,i=e[1]-n[1]*t.k;return r===t.x&&i===t.y?t:new ww(t.k,r,i)}function g(t){return[(+t[0][0]+ +t[1][0])/2,(+t[0][1]+ +t[1][1])/2]}function m(t,e,n){t.on("start.zoom",(function(){v(this,arguments).start()})).on("interrupt.zoom end.zoom",(function(){v(this,arguments).end()})).tween("zoom",(function(){var t=this,i=arguments,a=v(t,i),o=r.apply(t,i),s=null==n?g(o):"function"==typeof n?n.apply(t,i):n,c=Math.max(o[1][0]-o[0][0],o[1][1]-o[0][1]),u=t.__zoom,h="function"==typeof e?e.apply(t,i):e,f=l(u.invert(s).concat(c/u.k),h.invert(s).concat(c/h.k));return function(t){if(1===t)t=h;else{var e=f(t),n=c/e[2];t=new ww(n,s[0]-e[0]*n,s[1]-e[1]*n)}a.zoom(null,t)}}))}function v(t,e,n){return!n&&t.__zooming||new b(t,e)}function b(t,e){this.that=t,this.args=e,this.active=0,this.extent=r.apply(t,e),this.taps=0}function x(){if(n.apply(this,arguments)){var t=v(this,arguments),e=this.__zoom,r=Math.max(s[0],Math.min(s[1],e.k*Math.pow(2,a.apply(this,arguments)))),o=Dn(this);if(t.wheel)t.mouse[0][0]===o[0]&&t.mouse[0][1]===o[1]||(t.mouse[1]=e.invert(t.mouse[0]=o)),clearTimeout(t.wheel);else{if(e.k===r)return;t.mouse=[o,e.invert(o)],sr(this),t.start()}Sw(),t.wheel=setTimeout(u,150),t.zoom("mouse",i(y(p(e,r),t.mouse[0],t.mouse[1]),t.extent,c))}function u(){t.wheel=null,t.end()}}function _(){if(!e&&n.apply(this,arguments)){var t=v(this,arguments,!0),r=we(ue.view).on("mousemove.zoom",u,!0).on("mouseup.zoom",l,!0),a=Dn(this),o=ue.clientX,s=ue.clientY;Ce(ue.view),Cw(),t.mouse=[a,this.__zoom.invert(a)],sr(this),t.start()}function u(){if(Sw(),!t.moved){var e=ue.clientX-o,n=ue.clientY-s;t.moved=e*e+n*n>f}t.zoom("mouse",i(y(t.that.__zoom,t.mouse[0]=Dn(t.that),t.mouse[1]),t.extent,c))}function l(){r.on("mousemove.zoom mouseup.zoom",null),Se(ue.view,t.moved),Sw(),t.end()}}function k(){if(n.apply(this,arguments)){var t=this.__zoom,e=Dn(this),a=t.invert(e),o=t.k*(ue.shiftKey?.5:2),s=i(y(p(t,o),e,a),r.apply(this,arguments),c);Sw(),u>0?we(this).transition().duration(u).call(m,s,e):we(this).call(d.transform,s)}}function w(){if(n.apply(this,arguments)){var e,r,i,a,o=ue.touches,s=o.length,c=v(this,arguments,ue.changedTouches.length===s);for(Cw(),r=0;r<s;++r)i=o[r],a=[a=Bn(this,o,i.identifier),this.__zoom.invert(a),i.identifier],c.touch0?c.touch1||c.touch0[2]===a[2]||(c.touch1=a,c.taps=0):(c.touch0=a,e=!0,c.taps=1+!!t);t&&(t=clearTimeout(t)),e&&(c.taps<2&&(t=setTimeout((function(){t=null}),500)),sr(this),c.start())}}function E(){if(this.__zooming){var e,n,r,a,o=v(this,arguments),s=ue.changedTouches,u=s.length;for(Sw(),t&&(t=clearTimeout(t)),o.taps=0,e=0;e<u;++e)n=s[e],r=Bn(this,s,n.identifier),o.touch0&&o.touch0[2]===n.identifier?o.touch0[0]=r:o.touch1&&o.touch1[2]===n.identifier&&(o.touch1[0]=r);if(n=o.that.__zoom,o.touch1){var l=o.touch0[0],h=o.touch0[1],f=o.touch1[0],d=o.touch1[1],g=(g=f[0]-l[0])*g+(g=f[1]-l[1])*g,m=(m=d[0]-h[0])*m+(m=d[1]-h[1])*m;n=p(n,Math.sqrt(g/m)),r=[(l[0]+f[0])/2,(l[1]+f[1])/2],a=[(h[0]+d[0])/2,(h[1]+d[1])/2]}else{if(!o.touch0)return;r=o.touch0[0],a=o.touch0[1]}o.zoom("touch",i(y(n,r,a),o.extent,c))}}function T(){if(this.__zooming){var t,n,r=v(this,arguments),i=ue.changedTouches,a=i.length;for(Cw(),e&&clearTimeout(e),e=setTimeout((function(){e=null}),500),t=0;t<a;++t)n=i[t],r.touch0&&r.touch0[2]===n.identifier?delete r.touch0:r.touch1&&r.touch1[2]===n.identifier&&delete r.touch1;if(r.touch1&&!r.touch0&&(r.touch0=r.touch1,delete r.touch1),r.touch0)r.touch0[1]=this.__zoom.invert(r.touch0[0]);else if(r.end(),2===r.taps){var o=we(this).on("dblclick.zoom");o&&o.apply(this,arguments)}}}return d.transform=function(t,e,n){var r=t.selection?t.selection():t;r.property("__zoom",Ow),t!==r?m(t,e,n):r.interrupt().each((function(){v(this,arguments).start().zoom(null,"function"==typeof e?e.apply(this,arguments):e).end()}))},d.scaleBy=function(t,e,n){d.scaleTo(t,(function(){var t=this.__zoom.k,n="function"==typeof e?e.apply(this,arguments):e;return t*n}),n)},d.scaleTo=function(t,e,n){d.transform(t,(function(){var t=r.apply(this,arguments),a=this.__zoom,o=null==n?g(t):"function"==typeof n?n.apply(this,arguments):n,s=a.invert(o),u="function"==typeof e?e.apply(this,arguments):e;return i(y(p(a,u),o,s),t,c)}),n)},d.translateBy=function(t,e,n){d.transform(t,(function(){return i(this.__zoom.translate("function"==typeof e?e.apply(this,arguments):e,"function"==typeof n?n.apply(this,arguments):n),r.apply(this,arguments),c)}))},d.translateTo=function(t,e,n,a){d.transform(t,(function(){var t=r.apply(this,arguments),o=this.__zoom,s=null==a?g(t):"function"==typeof a?a.apply(this,arguments):a;return i(Ew.translate(s[0],s[1]).scale(o.k).translate("function"==typeof e?-e.apply(this,arguments):-e,"function"==typeof n?-n.apply(this,arguments):-n),t,c)}),a)},b.prototype={start:function(){return 1==++this.active&&(this.that.__zooming=this,this.emit("start")),this},zoom:function(t,e){return this.mouse&&"mouse"!==t&&(this.mouse[1]=e.invert(this.mouse[0])),this.touch0&&"touch"!==t&&(this.touch0[1]=e.invert(this.touch0[0])),this.touch1&&"touch"!==t&&(this.touch1[1]=e.invert(this.touch1[0])),this.that.__zoom=e,this.emit("zoom"),this},end:function(){return 0==--this.active&&(delete this.that.__zooming,this.emit("end")),this},emit:function(t){ye(new kw(d,t,this.that.__zoom),h.apply,h,[t,this.that,this.args])}},d.wheelDelta=function(t){return arguments.length?(a="function"==typeof t?t:_w(+t),d):a},d.filter=function(t){return arguments.length?(n="function"==typeof t?t:_w(!!t),d):n},d.touchable=function(t){return arguments.length?(o="function"==typeof t?t:_w(!!t),d):o},d.extent=function(t){return arguments.length?(r="function"==typeof t?t:_w([[+t[0][0],+t[0][1]],[+t[1][0],+t[1][1]]]),d):r},d.scaleExtent=function(t){return arguments.length?(s[0]=+t[0],s[1]=+t[1],d):[s[0],s[1]]},d.translateExtent=function(t){return arguments.length?(c[0][0]=+t[0][0],c[1][0]=+t[1][0],c[0][1]=+t[0][1],c[1][1]=+t[1][1],d):[[c[0][0],c[0][1]],[c[1][0],c[1][1]]]},d.constrain=function(t){return arguments.length?(i=t,d):i},d.duration=function(t){return arguments.length?(u=+t,d):u},d.interpolate=function(t){return arguments.length?(l=t,d):l},d.on=function(){var t=h.on.apply(h,arguments);return t===h?d:t},d.clickDistance=function(t){return arguments.length?(f=(t=+t)*t,d):Math.sqrt(f)},d}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0}),function(t){for(var n in t)e.hasOwnProperty(n)||(e[n]=t[n])}(n(171))},function(t,e,n){(function(t,r){var i=function(){var t=function(t,e,n,r){for(n=n||{},r=t.length;r--;n[t[r]]=e);return n},e=[1,2],n=[1,3],r=[1,5],i=[1,7],a=[2,5],o=[1,15],s=[1,17],c=[1,18],u=[1,20],l=[1,21],h=[1,22],f=[1,24],d=[1,25],p=[1,26],y=[1,27],g=[1,28],m=[1,29],v=[1,32],b=[1,33],x=[1,36],_=[1,4,5,16,21,22,23,25,27,28,29,30,31,33,35,36,37,48,58],k=[1,44],w=[4,5,16,21,22,23,25,27,28,29,30,31,33,37,48,58],E=[4,5,16,21,22,23,25,27,28,29,30,31,33,36,37,48,58],T=[4,5,16,21,22,23,25,27,28,29,30,31,33,35,37,48,58],C=[46,47,48],S=[1,4,5,7,16,21,22,23,25,27,28,29,30,31,33,35,36,37,48,58],A={trace:function(){},yy:{},symbols_:{error:2,start:3,SPACE:4,NEWLINE:5,directive:6,SD:7,document:8,line:9,statement:10,openDirective:11,typeDirective:12,closeDirective:13,":":14,argDirective:15,participant:16,actor:17,AS:18,restOfLine:19,signal:20,autonumber:21,activate:22,deactivate:23,note_statement:24,title:25,text2:26,loop:27,end:28,rect:29,opt:30,alt:31,else_sections:32,par:33,par_sections:34,and:35,else:36,note:37,placement:38,over:39,actor_pair:40,spaceList:41,",":42,left_of:43,right_of:44,signaltype:45,"+":46,"-":47,ACTOR:48,SOLID_OPEN_ARROW:49,DOTTED_OPEN_ARROW:50,SOLID_ARROW:51,DOTTED_ARROW:52,SOLID_CROSS:53,DOTTED_CROSS:54,SOLID_POINT:55,DOTTED_POINT:56,TXT:57,open_directive:58,type_directive:59,arg_directive:60,close_directive:61,$accept:0,$end:1},terminals_:{2:"error",4:"SPACE",5:"NEWLINE",7:"SD",14:":",16:"participant",18:"AS",19:"restOfLine",21:"autonumber",22:"activate",23:"deactivate",25:"title",27:"loop",28:"end",29:"rect",30:"opt",31:"alt",33:"par",35:"and",36:"else",37:"note",39:"over",42:",",43:"left_of",44:"right_of",46:"+",47:"-",48:"ACTOR",49:"SOLID_OPEN_ARROW",50:"DOTTED_OPEN_ARROW",51:"SOLID_ARROW",52:"DOTTED_ARROW",53:"SOLID_CROSS",54:"DOTTED_CROSS",55:"SOLID_POINT",56:"DOTTED_POINT",57:"TXT",58:"open_directive",59:"type_directive",60:"arg_directive",61:"close_directive"},productions_:[0,[3,2],[3,2],[3,2],[3,2],[8,0],[8,2],[9,2],[9,1],[9,1],[6,4],[6,6],[10,5],[10,3],[10,2],[10,1],[10,3],[10,3],[10,2],[10,3],[10,4],[10,4],[10,4],[10,4],[10,4],[10,1],[34,1],[34,4],[32,1],[32,4],[24,4],[24,4],[41,2],[41,1],[40,3],[40,1],[38,1],[38,1],[20,5],[20,5],[20,4],[17,1],[45,1],[45,1],[45,1],[45,1],[45,1],[45,1],[45,1],[45,1],[26,1],[11,1],[12,1],[15,1],[13,1]],performAction:function(t,e,n,r,i,a,o){var s=a.length-1;switch(i){case 4:return r.apply(a[s]),a[s];case 5:this.$=[];break;case 6:a[s-1].push(a[s]),this.$=a[s-1];break;case 7:case 8:this.$=a[s];break;case 9:this.$=[];break;case 12:a[s-3].description=r.parseMessage(a[s-1]),this.$=a[s-3];break;case 13:this.$=a[s-1];break;case 15:r.enableSequenceNumbers();break;case 16:this.$={type:"activeStart",signalType:r.LINETYPE.ACTIVE_START,actor:a[s-1]};break;case 17:this.$={type:"activeEnd",signalType:r.LINETYPE.ACTIVE_END,actor:a[s-1]};break;case 19:this.$=[{type:"setTitle",text:a[s-1]}];break;case 20:a[s-1].unshift({type:"loopStart",loopText:r.parseMessage(a[s-2]),signalType:r.LINETYPE.LOOP_START}),a[s-1].push({type:"loopEnd",loopText:a[s-2],signalType:r.LINETYPE.LOOP_END}),this.$=a[s-1];break;case 21:a[s-1].unshift({type:"rectStart",color:r.parseMessage(a[s-2]),signalType:r.LINETYPE.RECT_START}),a[s-1].push({type:"rectEnd",color:r.parseMessage(a[s-2]),signalType:r.LINETYPE.RECT_END}),this.$=a[s-1];break;case 22:a[s-1].unshift({type:"optStart",optText:r.parseMessage(a[s-2]),signalType:r.LINETYPE.OPT_START}),a[s-1].push({type:"optEnd",optText:r.parseMessage(a[s-2]),signalType:r.LINETYPE.OPT_END}),this.$=a[s-1];break;case 23:a[s-1].unshift({type:"altStart",altText:r.parseMessage(a[s-2]),signalType:r.LINETYPE.ALT_START}),a[s-1].push({type:"altEnd",signalType:r.LINETYPE.ALT_END}),this.$=a[s-1];break;case 24:a[s-1].unshift({type:"parStart",parText:r.parseMessage(a[s-2]),signalType:r.LINETYPE.PAR_START}),a[s-1].push({type:"parEnd",signalType:r.LINETYPE.PAR_END}),this.$=a[s-1];break;case 27:this.$=a[s-3].concat([{type:"and",parText:r.parseMessage(a[s-1]),signalType:r.LINETYPE.PAR_AND},a[s]]);break;case 29:this.$=a[s-3].concat([{type:"else",altText:r.parseMessage(a[s-1]),signalType:r.LINETYPE.ALT_ELSE},a[s]]);break;case 30:this.$=[a[s-1],{type:"addNote",placement:a[s-2],actor:a[s-1].actor,text:a[s]}];break;case 31:a[s-2]=[].concat(a[s-1],a[s-1]).slice(0,2),a[s-2][0]=a[s-2][0].actor,a[s-2][1]=a[s-2][1].actor,this.$=[a[s-1],{type:"addNote",placement:r.PLACEMENT.OVER,actor:a[s-2].slice(0,2),text:a[s]}];break;case 34:this.$=[a[s-2],a[s]];break;case 35:this.$=a[s];break;case 36:this.$=r.PLACEMENT.LEFTOF;break;case 37:this.$=r.PLACEMENT.RIGHTOF;break;case 38:this.$=[a[s-4],a[s-1],{type:"addMessage",from:a[s-4].actor,to:a[s-1].actor,signalType:a[s-3],msg:a[s]},{type:"activeStart",signalType:r.LINETYPE.ACTIVE_START,actor:a[s-1]}];break;case 39:this.$=[a[s-4],a[s-1],{type:"addMessage",from:a[s-4].actor,to:a[s-1].actor,signalType:a[s-3],msg:a[s]},{type:"activeEnd",signalType:r.LINETYPE.ACTIVE_END,actor:a[s-4]}];break;case 40:this.$=[a[s-3],a[s-1],{type:"addMessage",from:a[s-3].actor,to:a[s-1].actor,signalType:a[s-2],msg:a[s]}];break;case 41:this.$={type:"addActor",actor:a[s]};break;case 42:this.$=r.LINETYPE.SOLID_OPEN;break;case 43:this.$=r.LINETYPE.DOTTED_OPEN;break;case 44:this.$=r.LINETYPE.SOLID;break;case 45:this.$=r.LINETYPE.DOTTED;break;case 46:this.$=r.LINETYPE.SOLID_CROSS;break;case 47:this.$=r.LINETYPE.DOTTED_CROSS;break;case 48:this.$=r.LINETYPE.SOLID_POINT;break;case 49:this.$=r.LINETYPE.DOTTED_POINT;break;case 50:this.$=r.parseMessage(a[s].trim().substring(1));break;case 51:r.parseDirective("%%{","open_directive");break;case 52:r.parseDirective(a[s],"type_directive");break;case 53:a[s]=a[s].trim().replace(/'/g,'"'),r.parseDirective(a[s],"arg_directive");break;case 54:r.parseDirective("}%%","close_directive","sequence")}},table:[{3:1,4:e,5:n,6:4,7:r,11:6,58:i},{1:[3]},{3:8,4:e,5:n,6:4,7:r,11:6,58:i},{3:9,4:e,5:n,6:4,7:r,11:6,58:i},{3:10,4:e,5:n,6:4,7:r,11:6,58:i},t([1,4,5,16,21,22,23,25,27,29,30,31,33,37,48,58],a,{8:11}),{12:12,59:[1,13]},{59:[2,51]},{1:[2,1]},{1:[2,2]},{1:[2,3]},{1:[2,4],4:o,5:s,6:30,9:14,10:16,11:6,16:c,17:31,20:19,21:u,22:l,23:h,24:23,25:f,27:d,29:p,30:y,31:g,33:m,37:v,48:b,58:i},{13:34,14:[1,35],61:x},t([14,61],[2,52]),t(_,[2,6]),{6:30,10:37,11:6,16:c,17:31,20:19,21:u,22:l,23:h,24:23,25:f,27:d,29:p,30:y,31:g,33:m,37:v,48:b,58:i},t(_,[2,8]),t(_,[2,9]),{17:38,48:b},{5:[1,39]},t(_,[2,15]),{17:40,48:b},{17:41,48:b},{5:[1,42]},{26:43,57:k},{19:[1,45]},{19:[1,46]},{19:[1,47]},{19:[1,48]},{19:[1,49]},t(_,[2,25]),{45:50,49:[1,51],50:[1,52],51:[1,53],52:[1,54],53:[1,55],54:[1,56],55:[1,57],56:[1,58]},{38:59,39:[1,60],43:[1,61],44:[1,62]},t([5,18,42,49,50,51,52,53,54,55,56,57],[2,41]),{5:[1,63]},{15:64,60:[1,65]},{5:[2,54]},t(_,[2,7]),{5:[1,67],18:[1,66]},t(_,[2,14]),{5:[1,68]},{5:[1,69]},t(_,[2,18]),{5:[1,70]},{5:[2,50]},t(w,a,{8:71}),t(w,a,{8:72}),t(w,a,{8:73}),t(E,a,{32:74,8:75}),t(T,a,{34:76,8:77}),{17:80,46:[1,78],47:[1,79],48:b},t(C,[2,42]),t(C,[2,43]),t(C,[2,44]),t(C,[2,45]),t(C,[2,46]),t(C,[2,47]),t(C,[2,48]),t(C,[2,49]),{17:81,48:b},{17:83,40:82,48:b},{48:[2,36]},{48:[2,37]},t(S,[2,10]),{13:84,61:x},{61:[2,53]},{19:[1,85]},t(_,[2,13]),t(_,[2,16]),t(_,[2,17]),t(_,[2,19]),{4:o,5:s,6:30,9:14,10:16,11:6,16:c,17:31,20:19,21:u,22:l,23:h,24:23,25:f,27:d,28:[1,86],29:p,30:y,31:g,33:m,37:v,48:b,58:i},{4:o,5:s,6:30,9:14,10:16,11:6,16:c,17:31,20:19,21:u,22:l,23:h,24:23,25:f,27:d,28:[1,87],29:p,30:y,31:g,33:m,37:v,48:b,58:i},{4:o,5:s,6:30,9:14,10:16,11:6,16:c,17:31,20:19,21:u,22:l,23:h,24:23,25:f,27:d,28:[1,88],29:p,30:y,31:g,33:m,37:v,48:b,58:i},{28:[1,89]},{4:o,5:s,6:30,9:14,10:16,11:6,16:c,17:31,20:19,21:u,22:l,23:h,24:23,25:f,27:d,28:[2,28],29:p,30:y,31:g,33:m,36:[1,90],37:v,48:b,58:i},{28:[1,91]},{4:o,5:s,6:30,9:14,10:16,11:6,16:c,17:31,20:19,21:u,22:l,23:h,24:23,25:f,27:d,28:[2,26],29:p,30:y,31:g,33:m,35:[1,92],37:v,48:b,58:i},{17:93,48:b},{17:94,48:b},{26:95,57:k},{26:96,57:k},{26:97,57:k},{42:[1,98],57:[2,35]},{5:[1,99]},{5:[1,100]},t(_,[2,20]),t(_,[2,21]),t(_,[2,22]),t(_,[2,23]),{19:[1,101]},t(_,[2,24]),{19:[1,102]},{26:103,57:k},{26:104,57:k},{5:[2,40]},{5:[2,30]},{5:[2,31]},{17:105,48:b},t(S,[2,11]),t(_,[2,12]),t(E,a,{8:75,32:106}),t(T,a,{8:77,34:107}),{5:[2,38]},{5:[2,39]},{57:[2,34]},{28:[2,29]},{28:[2,27]}],defaultActions:{7:[2,51],8:[2,1],9:[2,2],10:[2,3],36:[2,54],44:[2,50],61:[2,36],62:[2,37],65:[2,53],95:[2,40],96:[2,30],97:[2,31],103:[2,38],104:[2,39],105:[2,34],106:[2,29],107:[2,27]},parseError:function(t,e){if(!e.recoverable){var n=new Error(t);throw n.hash=e,n}this.trace(t)},parse:function(t){var e=this,n=[0],r=[],i=[null],a=[],o=this.table,s="",c=0,u=0,l=0,h=2,f=1,d=a.slice.call(arguments,1),p=Object.create(this.lexer),y={yy:{}};for(var g in this.yy)Object.prototype.hasOwnProperty.call(this.yy,g)&&(y.yy[g]=this.yy[g]);p.setInput(t,y.yy),y.yy.lexer=p,y.yy.parser=this,void 0===p.yylloc&&(p.yylloc={});var m=p.yylloc;a.push(m);var v=p.options&&p.options.ranges;function b(){var t;return"number"!=typeof(t=r.pop()||p.lex()||f)&&(t instanceof Array&&(t=(r=t).pop()),t=e.symbols_[t]||t),t}"function"==typeof y.yy.parseError?this.parseError=y.yy.parseError:this.parseError=Object.getPrototypeOf(this).parseError;for(var x,_,k,w,E,T,C,S,A,M={};;){if(k=n[n.length-1],this.defaultActions[k]?w=this.defaultActions[k]:(null==x&&(x=b()),w=o[k]&&o[k][x]),void 0===w||!w.length||!w[0]){var O="";for(T in A=[],o[k])this.terminals_[T]&&T>h&&A.push("'"+this.terminals_[T]+"'");O=p.showPosition?"Parse error on line "+(c+1)+":\n"+p.showPosition()+"\nExpecting "+A.join(", ")+", got '"+(this.terminals_[x]||x)+"'":"Parse error on line "+(c+1)+": Unexpected "+(x==f?"end of input":"'"+(this.terminals_[x]||x)+"'"),this.parseError(O,{text:p.match,token:this.terminals_[x]||x,line:p.yylineno,loc:m,expected:A})}if(w[0]instanceof Array&&w.length>1)throw new Error("Parse Error: multiple actions possible at state: "+k+", token: "+x);switch(w[0]){case 1:n.push(x),i.push(p.yytext),a.push(p.yylloc),n.push(w[1]),x=null,_?(x=_,_=null):(u=p.yyleng,s=p.yytext,c=p.yylineno,m=p.yylloc,l>0&&l--);break;case 2:if(C=this.productions_[w[1]][1],M.$=i[i.length-C],M._$={first_line:a[a.length-(C||1)].first_line,last_line:a[a.length-1].last_line,first_column:a[a.length-(C||1)].first_column,last_column:a[a.length-1].last_column},v&&(M._$.range=[a[a.length-(C||1)].range[0],a[a.length-1].range[1]]),void 0!==(E=this.performAction.apply(M,[s,u,c,y.yy,w[1],i,a].concat(d))))return E;C&&(n=n.slice(0,-1*C*2),i=i.slice(0,-1*C),a=a.slice(0,-1*C)),n.push(this.productions_[w[1]][0]),i.push(M.$),a.push(M._$),S=o[n[n.length-2]][n[n.length-1]],n.push(S);break;case 3:return!0}}return!0}},M={EOF:1,parseError:function(t,e){if(!this.yy.parser)throw new Error(t);this.yy.parser.parseError(t,e)},setInput:function(t,e){return this.yy=e||this.yy||{},this._input=t,this._more=this._backtrack=this.done=!1,this.yylineno=this.yyleng=0,this.yytext=this.matched=this.match="",this.conditionStack=["INITIAL"],this.yylloc={first_line:1,first_column:0,last_line:1,last_column:0},this.options.ranges&&(this.yylloc.range=[0,0]),this.offset=0,this},input:function(){var t=this._input[0];return this.yytext+=t,this.yyleng++,this.offset++,this.match+=t,this.matched+=t,t.match(/(?:\r\n?|\n).*/g)?(this.yylineno++,this.yylloc.last_line++):this.yylloc.last_column++,this.options.ranges&&this.yylloc.range[1]++,this._input=this._input.slice(1),t},unput:function(t){var e=t.length,n=t.split(/(?:\r\n?|\n)/g);this._input=t+this._input,this.yytext=this.yytext.substr(0,this.yytext.length-e),this.offset-=e;var r=this.match.split(/(?:\r\n?|\n)/g);this.match=this.match.substr(0,this.match.length-1),this.matched=this.matched.substr(0,this.matched.length-1),n.length-1&&(this.yylineno-=n.length-1);var i=this.yylloc.range;return this.yylloc={first_line:this.yylloc.first_line,last_line:this.yylineno+1,first_column:this.yylloc.first_column,last_column:n?(n.length===r.length?this.yylloc.first_column:0)+r[r.length-n.length].length-n[0].length:this.yylloc.first_column-e},this.options.ranges&&(this.yylloc.range=[i[0],i[0]+this.yyleng-e]),this.yyleng=this.yytext.length,this},more:function(){return this._more=!0,this},reject:function(){return this.options.backtrack_lexer?(this._backtrack=!0,this):this.parseError("Lexical error on line "+(this.yylineno+1)+". You can only invoke reject() in the lexer when the lexer is of the backtracking persuasion (options.backtrack_lexer = true).\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},less:function(t){this.unput(this.match.slice(t))},pastInput:function(){var t=this.matched.substr(0,this.matched.length-this.match.length);return(t.length>20?"...":"")+t.substr(-20).replace(/\n/g,"")},upcomingInput:function(){var t=this.match;return t.length<20&&(t+=this._input.substr(0,20-t.length)),(t.substr(0,20)+(t.length>20?"...":"")).replace(/\n/g,"")},showPosition:function(){var t=this.pastInput(),e=new Array(t.length+1).join("-");return t+this.upcomingInput()+"\n"+e+"^"},test_match:function(t,e){var n,r,i;if(this.options.backtrack_lexer&&(i={yylineno:this.yylineno,yylloc:{first_line:this.yylloc.first_line,last_line:this.last_line,first_column:this.yylloc.first_column,last_column:this.yylloc.last_column},yytext:this.yytext,match:this.match,matches:this.matches,matched:this.matched,yyleng:this.yyleng,offset:this.offset,_more:this._more,_input:this._input,yy:this.yy,conditionStack:this.conditionStack.slice(0),done:this.done},this.options.ranges&&(i.yylloc.range=this.yylloc.range.slice(0))),(r=t[0].match(/(?:\r\n?|\n).*/g))&&(this.yylineno+=r.length),this.yylloc={first_line:this.yylloc.last_line,last_line:this.yylineno+1,first_column:this.yylloc.last_column,last_column:r?r[r.length-1].length-r[r.length-1].match(/\r?\n?/)[0].length:this.yylloc.last_column+t[0].length},this.yytext+=t[0],this.match+=t[0],this.matches=t,this.yyleng=this.yytext.length,this.options.ranges&&(this.yylloc.range=[this.offset,this.offset+=this.yyleng]),this._more=!1,this._backtrack=!1,this._input=this._input.slice(t[0].length),this.matched+=t[0],n=this.performAction.call(this,this.yy,this,e,this.conditionStack[this.conditionStack.length-1]),this.done&&this._input&&(this.done=!1),n)return n;if(this._backtrack){for(var a in i)this[a]=i[a];return!1}return!1},next:function(){if(this.done)return this.EOF;var t,e,n,r;this._input||(this.done=!0),this._more||(this.yytext="",this.match="");for(var i=this._currentRules(),a=0;a<i.length;a++)if((n=this._input.match(this.rules[i[a]]))&&(!e||n[0].length>e[0].length)){if(e=n,r=a,this.options.backtrack_lexer){if(!1!==(t=this.test_match(n,i[a])))return t;if(this._backtrack){e=!1;continue}return!1}if(!this.options.flex)break}return e?!1!==(t=this.test_match(e,i[r]))&&t:""===this._input?this.EOF:this.parseError("Lexical error on line "+(this.yylineno+1)+". Unrecognized text.\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},lex:function(){var t=this.next();return t||this.lex()},begin:function(t){this.conditionStack.push(t)},popState:function(){return this.conditionStack.length-1>0?this.conditionStack.pop():this.conditionStack[0]},_currentRules:function(){return this.conditionStack.length&&this.conditionStack[this.conditionStack.length-1]?this.conditions[this.conditionStack[this.conditionStack.length-1]].rules:this.conditions.INITIAL.rules},topState:function(t){return(t=this.conditionStack.length-1-Math.abs(t||0))>=0?this.conditionStack[t]:"INITIAL"},pushState:function(t){this.begin(t)},stateStackSize:function(){return this.conditionStack.length},options:{"case-insensitive":!0},performAction:function(t,e,n,r){switch(n){case 0:return this.begin("open_directive"),58;case 1:return this.begin("type_directive"),59;case 2:return this.popState(),this.begin("arg_directive"),14;case 3:return this.popState(),this.popState(),61;case 4:return 60;case 5:return 5;case 6:case 7:case 8:case 9:case 10:break;case 11:return this.begin("ID"),16;case 12:return e.yytext=e.yytext.trim(),this.begin("ALIAS"),48;case 13:return this.popState(),this.popState(),this.begin("LINE"),18;case 14:return this.popState(),this.popState(),5;case 15:return this.begin("LINE"),27;case 16:return this.begin("LINE"),29;case 17:return this.begin("LINE"),30;case 18:return this.begin("LINE"),31;case 19:return this.begin("LINE"),36;case 20:return this.begin("LINE"),33;case 21:return this.begin("LINE"),35;case 22:return this.popState(),19;case 23:return 28;case 24:return 43;case 25:return 44;case 26:return 39;case 27:return 37;case 28:return this.begin("ID"),22;case 29:return this.begin("ID"),23;case 30:return 25;case 31:return 7;case 32:return 21;case 33:return 42;case 34:return 5;case 35:return e.yytext=e.yytext.trim(),48;case 36:return 51;case 37:return 52;case 38:return 49;case 39:return 50;case 40:return 53;case 41:return 54;case 42:return 55;case 43:return 56;case 44:return 57;case 45:return 46;case 46:return 47;case 47:return 5;case 48:return"INVALID"}},rules:[/^(?:%%\{)/i,/^(?:((?:(?!\}%%)[^:.])*))/i,/^(?::)/i,/^(?:\}%%)/i,/^(?:((?:(?!\}%%).|\n)*))/i,/^(?:[\n]+)/i,/^(?:\s+)/i,/^(?:((?!\n)\s)+)/i,/^(?:#[^\n]*)/i,/^(?:%(?!\{)[^\n]*)/i,/^(?:[^\}]%%[^\n]*)/i,/^(?:participant\b)/i,/^(?:[^\->:\n,;]+?(?=((?!\n)\s)+as(?!\n)\s|[#\n;]|$))/i,/^(?:as\b)/i,/^(?:(?:))/i,/^(?:loop\b)/i,/^(?:rect\b)/i,/^(?:opt\b)/i,/^(?:alt\b)/i,/^(?:else\b)/i,/^(?:par\b)/i,/^(?:and\b)/i,/^(?:(?:[:]?(?:no)?wrap)?[^#\n;]*)/i,/^(?:end\b)/i,/^(?:left of\b)/i,/^(?:right of\b)/i,/^(?:over\b)/i,/^(?:note\b)/i,/^(?:activate\b)/i,/^(?:deactivate\b)/i,/^(?:title\b)/i,/^(?:sequenceDiagram\b)/i,/^(?:autonumber\b)/i,/^(?:,)/i,/^(?:;)/i,/^(?:[^\+\->:\n,;]+((?!(-x|--x|-\)|--\)))[\-]*[^\+\->:\n,;]+)*)/i,/^(?:->>)/i,/^(?:-->>)/i,/^(?:->)/i,/^(?:-->)/i,/^(?:-[x])/i,/^(?:--[x])/i,/^(?:-[\)])/i,/^(?:--[\)])/i,/^(?::(?:(?:no)?wrap)?[^#\n;]+)/i,/^(?:\+)/i,/^(?:-)/i,/^(?:$)/i,/^(?:.)/i],conditions:{open_directive:{rules:[1,8],inclusive:!1},type_directive:{rules:[2,3,8],inclusive:!1},arg_directive:{rules:[3,4,8],inclusive:!1},ID:{rules:[7,8,12],inclusive:!1},ALIAS:{rules:[7,8,13,14],inclusive:!1},LINE:{rules:[7,8,22],inclusive:!1},INITIAL:{rules:[0,5,6,8,9,10,11,15,16,17,18,19,20,21,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48],inclusive:!0}}};function O(){this.yy={}}return A.lexer=M,O.prototype=A,A.Parser=O,new O}();e.parser=i,e.Parser=i.Parser,e.parse=function(){return i.parse.apply(i,arguments)},e.main=function(r){r[1]||(console.log("Usage: "+r[0]+" FILE"),t.exit(1));var i=n(17).readFileSync(n(18).normalize(r[1]),"utf8");return e.parser.parse(i)},n.c[n.s]===r&&e.main(t.argv.slice(1))}).call(this,n(12),n(7)(t))},function(t,e,n){var r=n(203);t.exports={Graph:r.Graph,json:n(306),alg:n(307),version:r.version}},function(t,e,n){var r;try{r={cloneDeep:n(318),constant:n(88),defaults:n(154),each:n(89),filter:n(128),find:n(319),flatten:n(156),forEach:n(126),forIn:n(326),has:n(94),isUndefined:n(139),last:n(327),map:n(140),mapValues:n(328),max:n(329),merge:n(331),min:n(336),minBy:n(337),now:n(338),pick:n(161),range:n(162),reduce:n(142),sortBy:n(345),uniqueId:n(163),values:n(147),zipObject:n(350)}}catch(t){}r||(r=window._),t.exports=r},function(t,e){var n=Array.isArray;t.exports=n},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(99),i=n(178),a=n(179),o=n(180),s={format:{keyword:i.default,hex:r.default,rgb:a.default,rgba:a.default,hsl:o.default,hsla:o.default},parse:function(t){if("string"!=typeof t)return t;var e=r.default.parse(t)||a.default.parse(t)||o.default.parse(t)||i.default.parse(t);if(e)return e;throw new Error('Unsupported color format: "'+t+'"')},stringify:function(t){return!t.changed&&t.color?t.color:t.type.is(2)||void 0===t.data.r?o.default.stringify(t):t.a<1||!Number.isInteger(t.r)||!Number.isInteger(t.g)||!Number.isInteger(t.b)?a.default.stringify(t):r.default.stringify(t)}};e.default=s},function(t,e){t.exports=function(t){return t.webpackPolyfill||(t.deprecate=function(){},t.paths=[],t.children||(t.children=[]),Object.defineProperty(t,"loaded",{enumerable:!0,get:function(){return t.l}}),Object.defineProperty(t,"id",{enumerable:!0,get:function(){return t.i}}),t.webpackPolyfill=1),t}},function(t,e,n){
+!function(t,e){"object"==typeof exports&&"object"==typeof module?module.exports=e():"function"==typeof define&&define.amd?define([],e):"object"==typeof exports?exports.mermaid=e():t.mermaid=e()}("undefined"!=typeof self?self:this,(function(){return function(t){var e={};function n(r){if(e[r])return e[r].exports;var i=e[r]={i:r,l:!1,exports:{}};return t[r].call(i.exports,i,i.exports,n),i.l=!0,i.exports}return n.m=t,n.c=e,n.d=function(t,e,r){n.o(t,e)||Object.defineProperty(t,e,{enumerable:!0,get:r})},n.r=function(t){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(t,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(t,"__esModule",{value:!0})},n.t=function(t,e){if(1&e&&(t=n(t)),8&e)return t;if(4&e&&"object"==typeof t&&t&&t.__esModule)return t;var r=Object.create(null);if(n.r(r),Object.defineProperty(r,"default",{enumerable:!0,value:t}),2&e&&"string"!=typeof t)for(var i in t)n.d(r,i,function(e){return t[e]}.bind(null,i));return r},n.n=function(t){var e=t&&t.__esModule?function(){return t.default}:function(){return t};return n.d(e,"a",e),e},n.o=function(t,e){return Object.prototype.hasOwnProperty.call(t,e)},n.p="",n(n.s=390)}([function(t,e,n){"use strict";n.r(e),n.d(e,"version",(function(){return r})),n.d(e,"bisect",(function(){return u})),n.d(e,"bisectRight",(function(){return s})),n.d(e,"bisectLeft",(function(){return c})),n.d(e,"ascending",(function(){return i})),n.d(e,"bisector",(function(){return a})),n.d(e,"cross",(function(){return f})),n.d(e,"descending",(function(){return d})),n.d(e,"deviation",(function(){return g})),n.d(e,"extent",(function(){return m})),n.d(e,"histogram",(function(){return N})),n.d(e,"thresholdFreedmanDiaconis",(function(){return D})),n.d(e,"thresholdScott",(function(){return L})),n.d(e,"thresholdSturges",(function(){return O})),n.d(e,"max",(function(){return I})),n.d(e,"mean",(function(){return R})),n.d(e,"median",(function(){return F})),n.d(e,"merge",(function(){return P})),n.d(e,"min",(function(){return j})),n.d(e,"pairs",(function(){return l})),n.d(e,"permute",(function(){return Y})),n.d(e,"quantile",(function(){return B})),n.d(e,"range",(function(){return w})),n.d(e,"scan",(function(){return z})),n.d(e,"shuffle",(function(){return U})),n.d(e,"sum",(function(){return $})),n.d(e,"ticks",(function(){return S})),n.d(e,"tickIncrement",(function(){return A})),n.d(e,"tickStep",(function(){return M})),n.d(e,"transpose",(function(){return q})),n.d(e,"variance",(function(){return y})),n.d(e,"zip",(function(){return H})),n.d(e,"axisTop",(function(){return et})),n.d(e,"axisRight",(function(){return nt})),n.d(e,"axisBottom",(function(){return rt})),n.d(e,"axisLeft",(function(){return it})),n.d(e,"brush",(function(){return Ci})),n.d(e,"brushX",(function(){return Ti})),n.d(e,"brushY",(function(){return Ei})),n.d(e,"brushSelection",(function(){return wi})),n.d(e,"chord",(function(){return Ii})),n.d(e,"ribbon",(function(){return Xi})),n.d(e,"nest",(function(){return Ji})),n.d(e,"set",(function(){return sa})),n.d(e,"map",(function(){return Qi})),n.d(e,"keys",(function(){return ca})),n.d(e,"values",(function(){return ua})),n.d(e,"entries",(function(){return la})),n.d(e,"color",(function(){return qe})),n.d(e,"rgb",(function(){return Ge})),n.d(e,"hsl",(function(){return en})),n.d(e,"lab",(function(){return ya})),n.d(e,"hcl",(function(){return wa})),n.d(e,"lch",(function(){return ka})),n.d(e,"gray",(function(){return pa})),n.d(e,"cubehelix",(function(){return Na})),n.d(e,"contours",(function(){return za})),n.d(e,"contourDensity",(function(){return Va})),n.d(e,"dispatch",(function(){return ht})),n.d(e,"drag",(function(){return to})),n.d(e,"dragDisable",(function(){return Ce})),n.d(e,"dragEnable",(function(){return Se})),n.d(e,"dsvFormat",(function(){return so})),n.d(e,"csvParse",(function(){return uo})),n.d(e,"csvParseRows",(function(){return lo})),n.d(e,"csvFormat",(function(){return ho})),n.d(e,"csvFormatBody",(function(){return fo})),n.d(e,"csvFormatRows",(function(){return po})),n.d(e,"csvFormatRow",(function(){return yo})),n.d(e,"csvFormatValue",(function(){return go})),n.d(e,"tsvParse",(function(){return vo})),n.d(e,"tsvParseRows",(function(){return bo})),n.d(e,"tsvFormat",(function(){return xo})),n.d(e,"tsvFormatBody",(function(){return _o})),n.d(e,"tsvFormatRows",(function(){return ko})),n.d(e,"tsvFormatRow",(function(){return wo})),n.d(e,"tsvFormatValue",(function(){return To})),n.d(e,"autoType",(function(){return Eo})),n.d(e,"easeLinear",(function(){return So})),n.d(e,"easeQuad",(function(){return Oo})),n.d(e,"easeQuadIn",(function(){return Ao})),n.d(e,"easeQuadOut",(function(){return Mo})),n.d(e,"easeQuadInOut",(function(){return Oo})),n.d(e,"easeCubic",(function(){return Vr})),n.d(e,"easeCubicIn",(function(){return Wr})),n.d(e,"easeCubicOut",(function(){return Hr})),n.d(e,"easeCubicInOut",(function(){return Vr})),n.d(e,"easePoly",(function(){return Do})),n.d(e,"easePolyIn",(function(){return No})),n.d(e,"easePolyOut",(function(){return Bo})),n.d(e,"easePolyInOut",(function(){return Do})),n.d(e,"easeSin",(function(){return Po})),n.d(e,"easeSinIn",(function(){return Ro})),n.d(e,"easeSinOut",(function(){return Fo})),n.d(e,"easeSinInOut",(function(){return Po})),n.d(e,"easeExp",(function(){return Uo})),n.d(e,"easeExpIn",(function(){return Yo})),n.d(e,"easeExpOut",(function(){return zo})),n.d(e,"easeExpInOut",(function(){return Uo})),n.d(e,"easeCircle",(function(){return Wo})),n.d(e,"easeCircleIn",(function(){return $o})),n.d(e,"easeCircleOut",(function(){return qo})),n.d(e,"easeCircleInOut",(function(){return Wo})),n.d(e,"easeBounce",(function(){return Vo})),n.d(e,"easeBounceIn",(function(){return Ho})),n.d(e,"easeBounceOut",(function(){return Vo})),n.d(e,"easeBounceInOut",(function(){return Go})),n.d(e,"easeBack",(function(){return Ko})),n.d(e,"easeBackIn",(function(){return Xo})),n.d(e,"easeBackOut",(function(){return Zo})),n.d(e,"easeBackInOut",(function(){return Ko})),n.d(e,"easeElastic",(function(){return ts})),n.d(e,"easeElasticIn",(function(){return Jo})),n.d(e,"easeElasticOut",(function(){return ts})),n.d(e,"easeElasticInOut",(function(){return es})),n.d(e,"blob",(function(){return rs})),n.d(e,"buffer",(function(){return as})),n.d(e,"dsv",(function(){return us})),n.d(e,"csv",(function(){return ls})),n.d(e,"tsv",(function(){return hs})),n.d(e,"image",(function(){return fs})),n.d(e,"json",(function(){return ps})),n.d(e,"text",(function(){return ss})),n.d(e,"xml",(function(){return gs})),n.d(e,"html",(function(){return ms})),n.d(e,"svg",(function(){return vs})),n.d(e,"forceCenter",(function(){return bs})),n.d(e,"forceCollide",(function(){return Bs})),n.d(e,"forceLink",(function(){return Is})),n.d(e,"forceManyBody",(function(){return Ys})),n.d(e,"forceRadial",(function(){return zs})),n.d(e,"forceSimulation",(function(){return js})),n.d(e,"forceX",(function(){return Us})),n.d(e,"forceY",(function(){return $s})),n.d(e,"formatDefaultLocale",(function(){return ac})),n.d(e,"format",(function(){return Ks})),n.d(e,"formatPrefix",(function(){return Qs})),n.d(e,"formatLocale",(function(){return ic})),n.d(e,"formatSpecifier",(function(){return Vs})),n.d(e,"FormatSpecifier",(function(){return Gs})),n.d(e,"precisionFixed",(function(){return oc})),n.d(e,"precisionPrefix",(function(){return sc})),n.d(e,"precisionRound",(function(){return cc})),n.d(e,"geoArea",(function(){return Jc})),n.d(e,"geoBounds",(function(){return Wu})),n.d(e,"geoCentroid",(function(){return rl})),n.d(e,"geoCircle",(function(){return pl})),n.d(e,"geoClipAntimeridian",(function(){return Cl})),n.d(e,"geoClipCircle",(function(){return Sl})),n.d(e,"geoClipExtent",(function(){return Bl})),n.d(e,"geoClipRectangle",(function(){return Al})),n.d(e,"geoContains",(function(){return Zl})),n.d(e,"geoDistance",(function(){return zl})),n.d(e,"geoGraticule",(function(){return Jl})),n.d(e,"geoGraticule10",(function(){return th})),n.d(e,"geoInterpolate",(function(){return ah})),n.d(e,"geoLength",(function(){return Pl})),n.d(e,"geoPath",(function(){return rf})),n.d(e,"geoAlbers",(function(){return wf})),n.d(e,"geoAlbersUsa",(function(){return Tf})),n.d(e,"geoAzimuthalEqualArea",(function(){return Af})),n.d(e,"geoAzimuthalEqualAreaRaw",(function(){return Sf})),n.d(e,"geoAzimuthalEquidistant",(function(){return Of})),n.d(e,"geoAzimuthalEquidistantRaw",(function(){return Mf})),n.d(e,"geoConicConformal",(function(){return Rf})),n.d(e,"geoConicConformalRaw",(function(){return If})),n.d(e,"geoConicEqualArea",(function(){return kf})),n.d(e,"geoConicEqualAreaRaw",(function(){return _f})),n.d(e,"geoConicEquidistant",(function(){return Yf})),n.d(e,"geoConicEquidistantRaw",(function(){return jf})),n.d(e,"geoEqualEarth",(function(){return Vf})),n.d(e,"geoEqualEarthRaw",(function(){return Hf})),n.d(e,"geoEquirectangular",(function(){return Pf})),n.d(e,"geoEquirectangularRaw",(function(){return Ff})),n.d(e,"geoGnomonic",(function(){return Xf})),n.d(e,"geoGnomonicRaw",(function(){return Gf})),n.d(e,"geoIdentity",(function(){return Zf})),n.d(e,"geoProjection",(function(){return vf})),n.d(e,"geoProjectionMutator",(function(){return bf})),n.d(e,"geoMercator",(function(){return Bf})),n.d(e,"geoMercatorRaw",(function(){return Nf})),n.d(e,"geoNaturalEarth1",(function(){return Qf})),n.d(e,"geoNaturalEarth1Raw",(function(){return Kf})),n.d(e,"geoOrthographic",(function(){return td})),n.d(e,"geoOrthographicRaw",(function(){return Jf})),n.d(e,"geoStereographic",(function(){return nd})),n.d(e,"geoStereographicRaw",(function(){return ed})),n.d(e,"geoTransverseMercator",(function(){return id})),n.d(e,"geoTransverseMercatorRaw",(function(){return rd})),n.d(e,"geoRotation",(function(){return hl})),n.d(e,"geoStream",(function(){return Wc})),n.d(e,"geoTransform",(function(){return af})),n.d(e,"cluster",(function(){return cd})),n.d(e,"hierarchy",(function(){return ld})),n.d(e,"pack",(function(){return Id})),n.d(e,"packSiblings",(function(){return Md})),n.d(e,"packEnclose",(function(){return gd})),n.d(e,"partition",(function(){return zd})),n.d(e,"stratify",(function(){return Hd})),n.d(e,"tree",(function(){return Jd})),n.d(e,"treemap",(function(){return ip})),n.d(e,"treemapBinary",(function(){return ap})),n.d(e,"treemapDice",(function(){return Yd})),n.d(e,"treemapSlice",(function(){return tp})),n.d(e,"treemapSliceDice",(function(){return op})),n.d(e,"treemapSquarify",(function(){return rp})),n.d(e,"treemapResquarify",(function(){return sp})),n.d(e,"interpolate",(function(){return Mn})),n.d(e,"interpolateArray",(function(){return bn})),n.d(e,"interpolateBasis",(function(){return on})),n.d(e,"interpolateBasisClosed",(function(){return sn})),n.d(e,"interpolateDate",(function(){return _n})),n.d(e,"interpolateDiscrete",(function(){return cp})),n.d(e,"interpolateHue",(function(){return up})),n.d(e,"interpolateNumber",(function(){return kn})),n.d(e,"interpolateNumberArray",(function(){return mn})),n.d(e,"interpolateObject",(function(){return wn})),n.d(e,"interpolateRound",(function(){return lp})),n.d(e,"interpolateString",(function(){return An})),n.d(e,"interpolateTransformCss",(function(){return fr})),n.d(e,"interpolateTransformSvg",(function(){return dr})),n.d(e,"interpolateZoom",(function(){return dp})),n.d(e,"interpolateRgb",(function(){return dn})),n.d(e,"interpolateRgbBasis",(function(){return yn})),n.d(e,"interpolateRgbBasisClosed",(function(){return gn})),n.d(e,"interpolateHsl",(function(){return yp})),n.d(e,"interpolateHslLong",(function(){return gp})),n.d(e,"interpolateLab",(function(){return mp})),n.d(e,"interpolateHcl",(function(){return bp})),n.d(e,"interpolateHclLong",(function(){return xp})),n.d(e,"interpolateCubehelix",(function(){return kp})),n.d(e,"interpolateCubehelixLong",(function(){return wp})),n.d(e,"piecewise",(function(){return Tp})),n.d(e,"quantize",(function(){return Ep})),n.d(e,"path",(function(){return $i})),n.d(e,"polygonArea",(function(){return Cp})),n.d(e,"polygonCentroid",(function(){return Sp})),n.d(e,"polygonHull",(function(){return Op})),n.d(e,"polygonContains",(function(){return Np})),n.d(e,"polygonLength",(function(){return Bp})),n.d(e,"quadtree",(function(){return Cs})),n.d(e,"randomUniform",(function(){return Lp})),n.d(e,"randomNormal",(function(){return Ip})),n.d(e,"randomLogNormal",(function(){return Rp})),n.d(e,"randomBates",(function(){return Pp})),n.d(e,"randomIrwinHall",(function(){return Fp})),n.d(e,"randomExponential",(function(){return jp})),n.d(e,"scaleBand",(function(){return Vp})),n.d(e,"scalePoint",(function(){return Xp})),n.d(e,"scaleIdentity",(function(){return uy})),n.d(e,"scaleLinear",(function(){return cy})),n.d(e,"scaleLog",(function(){return vy})),n.d(e,"scaleSymlog",(function(){return ky})),n.d(e,"scaleOrdinal",(function(){return Hp})),n.d(e,"scaleImplicit",(function(){return Wp})),n.d(e,"scalePow",(function(){return Sy})),n.d(e,"scaleSqrt",(function(){return Ay})),n.d(e,"scaleQuantile",(function(){return My})),n.d(e,"scaleQuantize",(function(){return Oy})),n.d(e,"scaleThreshold",(function(){return Ny})),n.d(e,"scaleTime",(function(){return pv})),n.d(e,"scaleUtc",(function(){return Tv})),n.d(e,"scaleSequential",(function(){return Sv})),n.d(e,"scaleSequentialLog",(function(){return Av})),n.d(e,"scaleSequentialPow",(function(){return Ov})),n.d(e,"scaleSequentialSqrt",(function(){return Nv})),n.d(e,"scaleSequentialSymlog",(function(){return Mv})),n.d(e,"scaleSequentialQuantile",(function(){return Bv})),n.d(e,"scaleDiverging",(function(){return Lv})),n.d(e,"scaleDivergingLog",(function(){return Iv})),n.d(e,"scaleDivergingPow",(function(){return Fv})),n.d(e,"scaleDivergingSqrt",(function(){return Pv})),n.d(e,"scaleDivergingSymlog",(function(){return Rv})),n.d(e,"tickFormat",(function(){return oy})),n.d(e,"schemeCategory10",(function(){return Yv})),n.d(e,"schemeAccent",(function(){return zv})),n.d(e,"schemeDark2",(function(){return Uv})),n.d(e,"schemePaired",(function(){return $v})),n.d(e,"schemePastel1",(function(){return qv})),n.d(e,"schemePastel2",(function(){return Wv})),n.d(e,"schemeSet1",(function(){return Hv})),n.d(e,"schemeSet2",(function(){return Vv})),n.d(e,"schemeSet3",(function(){return Gv})),n.d(e,"schemeTableau10",(function(){return Xv})),n.d(e,"interpolateBrBG",(function(){return Qv})),n.d(e,"schemeBrBG",(function(){return Kv})),n.d(e,"interpolatePRGn",(function(){return tb})),n.d(e,"schemePRGn",(function(){return Jv})),n.d(e,"interpolatePiYG",(function(){return nb})),n.d(e,"schemePiYG",(function(){return eb})),n.d(e,"interpolatePuOr",(function(){return ib})),n.d(e,"schemePuOr",(function(){return rb})),n.d(e,"interpolateRdBu",(function(){return ob})),n.d(e,"schemeRdBu",(function(){return ab})),n.d(e,"interpolateRdGy",(function(){return cb})),n.d(e,"schemeRdGy",(function(){return sb})),n.d(e,"interpolateRdYlBu",(function(){return lb})),n.d(e,"schemeRdYlBu",(function(){return ub})),n.d(e,"interpolateRdYlGn",(function(){return fb})),n.d(e,"schemeRdYlGn",(function(){return hb})),n.d(e,"interpolateSpectral",(function(){return pb})),n.d(e,"schemeSpectral",(function(){return db})),n.d(e,"interpolateBuGn",(function(){return gb})),n.d(e,"schemeBuGn",(function(){return yb})),n.d(e,"interpolateBuPu",(function(){return vb})),n.d(e,"schemeBuPu",(function(){return mb})),n.d(e,"interpolateGnBu",(function(){return xb})),n.d(e,"schemeGnBu",(function(){return bb})),n.d(e,"interpolateOrRd",(function(){return kb})),n.d(e,"schemeOrRd",(function(){return _b})),n.d(e,"interpolatePuBuGn",(function(){return Tb})),n.d(e,"schemePuBuGn",(function(){return wb})),n.d(e,"interpolatePuBu",(function(){return Cb})),n.d(e,"schemePuBu",(function(){return Eb})),n.d(e,"interpolatePuRd",(function(){return Ab})),n.d(e,"schemePuRd",(function(){return Sb})),n.d(e,"interpolateRdPu",(function(){return Ob})),n.d(e,"schemeRdPu",(function(){return Mb})),n.d(e,"interpolateYlGnBu",(function(){return Bb})),n.d(e,"schemeYlGnBu",(function(){return Nb})),n.d(e,"interpolateYlGn",(function(){return Lb})),n.d(e,"schemeYlGn",(function(){return Db})),n.d(e,"interpolateYlOrBr",(function(){return Rb})),n.d(e,"schemeYlOrBr",(function(){return Ib})),n.d(e,"interpolateYlOrRd",(function(){return Pb})),n.d(e,"schemeYlOrRd",(function(){return Fb})),n.d(e,"interpolateBlues",(function(){return Yb})),n.d(e,"schemeBlues",(function(){return jb})),n.d(e,"interpolateGreens",(function(){return Ub})),n.d(e,"schemeGreens",(function(){return zb})),n.d(e,"interpolateGreys",(function(){return qb})),n.d(e,"schemeGreys",(function(){return $b})),n.d(e,"interpolatePurples",(function(){return Hb})),n.d(e,"schemePurples",(function(){return Wb})),n.d(e,"interpolateReds",(function(){return Gb})),n.d(e,"schemeReds",(function(){return Vb})),n.d(e,"interpolateOranges",(function(){return Zb})),n.d(e,"schemeOranges",(function(){return Xb})),n.d(e,"interpolateCividis",(function(){return Kb})),n.d(e,"interpolateCubehelixDefault",(function(){return Qb})),n.d(e,"interpolateRainbow",(function(){return nx})),n.d(e,"interpolateWarm",(function(){return Jb})),n.d(e,"interpolateCool",(function(){return tx})),n.d(e,"interpolateSinebow",(function(){return ox})),n.d(e,"interpolateTurbo",(function(){return sx})),n.d(e,"interpolateViridis",(function(){return ux})),n.d(e,"interpolateMagma",(function(){return lx})),n.d(e,"interpolateInferno",(function(){return hx})),n.d(e,"interpolatePlasma",(function(){return fx})),n.d(e,"create",(function(){return dx})),n.d(e,"creator",(function(){return re})),n.d(e,"local",(function(){return yx})),n.d(e,"matcher",(function(){return gt})),n.d(e,"mouse",(function(){return Dn})),n.d(e,"namespace",(function(){return Tt})),n.d(e,"namespaces",(function(){return wt})),n.d(e,"clientPoint",(function(){return Nn})),n.d(e,"select",(function(){return we})),n.d(e,"selectAll",(function(){return mx})),n.d(e,"selection",(function(){return ke})),n.d(e,"selector",(function(){return dt})),n.d(e,"selectorAll",(function(){return yt})),n.d(e,"style",(function(){return It})),n.d(e,"touch",(function(){return Bn})),n.d(e,"touches",(function(){return vx})),n.d(e,"window",(function(){return Nt})),n.d(e,"event",(function(){return ue})),n.d(e,"customEvent",(function(){return ye})),n.d(e,"arc",(function(){return jx})),n.d(e,"area",(function(){return Wx})),n.d(e,"line",(function(){return qx})),n.d(e,"pie",(function(){return Gx})),n.d(e,"areaRadial",(function(){return t_})),n.d(e,"radialArea",(function(){return t_})),n.d(e,"lineRadial",(function(){return Jx})),n.d(e,"radialLine",(function(){return Jx})),n.d(e,"pointRadial",(function(){return e_})),n.d(e,"linkHorizontal",(function(){return u_})),n.d(e,"linkVertical",(function(){return l_})),n.d(e,"linkRadial",(function(){return h_})),n.d(e,"symbol",(function(){return M_})),n.d(e,"symbols",(function(){return A_})),n.d(e,"symbolCircle",(function(){return f_})),n.d(e,"symbolCross",(function(){return d_})),n.d(e,"symbolDiamond",(function(){return g_})),n.d(e,"symbolSquare",(function(){return __})),n.d(e,"symbolStar",(function(){return x_})),n.d(e,"symbolTriangle",(function(){return w_})),n.d(e,"symbolWye",(function(){return S_})),n.d(e,"curveBasisClosed",(function(){return I_})),n.d(e,"curveBasisOpen",(function(){return F_})),n.d(e,"curveBasis",(function(){return D_})),n.d(e,"curveBundle",(function(){return j_})),n.d(e,"curveCardinalClosed",(function(){return q_})),n.d(e,"curveCardinalOpen",(function(){return H_})),n.d(e,"curveCardinal",(function(){return U_})),n.d(e,"curveCatmullRomClosed",(function(){return K_})),n.d(e,"curveCatmullRomOpen",(function(){return J_})),n.d(e,"curveCatmullRom",(function(){return X_})),n.d(e,"curveLinearClosed",(function(){return ek})),n.d(e,"curveLinear",(function(){return zx})),n.d(e,"curveMonotoneX",(function(){return uk})),n.d(e,"curveMonotoneY",(function(){return lk})),n.d(e,"curveNatural",(function(){return dk})),n.d(e,"curveStep",(function(){return yk})),n.d(e,"curveStepAfter",(function(){return mk})),n.d(e,"curveStepBefore",(function(){return gk})),n.d(e,"stack",(function(){return _k})),n.d(e,"stackOffsetExpand",(function(){return kk})),n.d(e,"stackOffsetDiverging",(function(){return wk})),n.d(e,"stackOffsetNone",(function(){return vk})),n.d(e,"stackOffsetSilhouette",(function(){return Tk})),n.d(e,"stackOffsetWiggle",(function(){return Ek})),n.d(e,"stackOrderAppearance",(function(){return Ck})),n.d(e,"stackOrderAscending",(function(){return Ak})),n.d(e,"stackOrderDescending",(function(){return Ok})),n.d(e,"stackOrderInsideOut",(function(){return Nk})),n.d(e,"stackOrderNone",(function(){return bk})),n.d(e,"stackOrderReverse",(function(){return Bk})),n.d(e,"timeInterval",(function(){return Ly})),n.d(e,"timeMillisecond",(function(){return yg})),n.d(e,"timeMilliseconds",(function(){return gg})),n.d(e,"utcMillisecond",(function(){return yg})),n.d(e,"utcMilliseconds",(function(){return gg})),n.d(e,"timeSecond",(function(){return fg})),n.d(e,"timeSeconds",(function(){return dg})),n.d(e,"utcSecond",(function(){return fg})),n.d(e,"utcSeconds",(function(){return dg})),n.d(e,"timeMinute",(function(){return ug})),n.d(e,"timeMinutes",(function(){return lg})),n.d(e,"timeHour",(function(){return og})),n.d(e,"timeHours",(function(){return sg})),n.d(e,"timeDay",(function(){return rg})),n.d(e,"timeDays",(function(){return ig})),n.d(e,"timeWeek",(function(){return Uy})),n.d(e,"timeWeeks",(function(){return Xy})),n.d(e,"timeSunday",(function(){return Uy})),n.d(e,"timeSundays",(function(){return Xy})),n.d(e,"timeMonday",(function(){return $y})),n.d(e,"timeMondays",(function(){return Zy})),n.d(e,"timeTuesday",(function(){return qy})),n.d(e,"timeTuesdays",(function(){return Ky})),n.d(e,"timeWednesday",(function(){return Wy})),n.d(e,"timeWednesdays",(function(){return Qy})),n.d(e,"timeThursday",(function(){return Hy})),n.d(e,"timeThursdays",(function(){return Jy})),n.d(e,"timeFriday",(function(){return Vy})),n.d(e,"timeFridays",(function(){return tg})),n.d(e,"timeSaturday",(function(){return Gy})),n.d(e,"timeSaturdays",(function(){return eg})),n.d(e,"timeMonth",(function(){return jy})),n.d(e,"timeMonths",(function(){return Yy})),n.d(e,"timeYear",(function(){return Ry})),n.d(e,"timeYears",(function(){return Fy})),n.d(e,"utcMinute",(function(){return kv})),n.d(e,"utcMinutes",(function(){return wv})),n.d(e,"utcHour",(function(){return bv})),n.d(e,"utcHours",(function(){return xv})),n.d(e,"utcDay",(function(){return Dg})),n.d(e,"utcDays",(function(){return Lg})),n.d(e,"utcWeek",(function(){return vg})),n.d(e,"utcWeeks",(function(){return Eg})),n.d(e,"utcSunday",(function(){return vg})),n.d(e,"utcSundays",(function(){return Eg})),n.d(e,"utcMonday",(function(){return bg})),n.d(e,"utcMondays",(function(){return Cg})),n.d(e,"utcTuesday",(function(){return xg})),n.d(e,"utcTuesdays",(function(){return Sg})),n.d(e,"utcWednesday",(function(){return _g})),n.d(e,"utcWednesdays",(function(){return Ag})),n.d(e,"utcThursday",(function(){return kg})),n.d(e,"utcThursdays",(function(){return Mg})),n.d(e,"utcFriday",(function(){return wg})),n.d(e,"utcFridays",(function(){return Og})),n.d(e,"utcSaturday",(function(){return Tg})),n.d(e,"utcSaturdays",(function(){return Ng})),n.d(e,"utcMonth",(function(){return gv})),n.d(e,"utcMonths",(function(){return mv})),n.d(e,"utcYear",(function(){return Rg})),n.d(e,"utcYears",(function(){return Fg})),n.d(e,"timeFormatDefaultLocale",(function(){return lv})),n.d(e,"timeFormat",(function(){return $g})),n.d(e,"timeParse",(function(){return qg})),n.d(e,"utcFormat",(function(){return Wg})),n.d(e,"utcParse",(function(){return Hg})),n.d(e,"timeFormatLocale",(function(){return zg})),n.d(e,"isoFormat",(function(){return Dk})),n.d(e,"isoParse",(function(){return Lk})),n.d(e,"now",(function(){return Un})),n.d(e,"timer",(function(){return Wn})),n.d(e,"timerFlush",(function(){return Hn})),n.d(e,"timeout",(function(){return Zn})),n.d(e,"interval",(function(){return Ik})),n.d(e,"transition",(function(){return Ur})),n.d(e,"active",(function(){return Kr})),n.d(e,"interrupt",(function(){return sr})),n.d(e,"voronoi",(function(){return xw})),n.d(e,"zoom",(function(){return Lw})),n.d(e,"zoomTransform",(function(){return Ew})),n.d(e,"zoomIdentity",(function(){return Tw}));var r="5.16.0",i=function(t,e){return t<e?-1:t>e?1:t>=e?0:NaN},a=function(t){var e;return 1===t.length&&(e=t,t=function(t,n){return i(e(t),n)}),{left:function(e,n,r,i){for(null==r&&(r=0),null==i&&(i=e.length);r<i;){var a=r+i>>>1;t(e[a],n)<0?r=a+1:i=a}return r},right:function(e,n,r,i){for(null==r&&(r=0),null==i&&(i=e.length);r<i;){var a=r+i>>>1;t(e[a],n)>0?i=a:r=a+1}return r}}};var o=a(i),s=o.right,c=o.left,u=s,l=function(t,e){null==e&&(e=h);for(var n=0,r=t.length-1,i=t[0],a=new Array(r<0?0:r);n<r;)a[n]=e(i,i=t[++n]);return a};function h(t,e){return[t,e]}var f=function(t,e,n){var r,i,a,o,s=t.length,c=e.length,u=new Array(s*c);for(null==n&&(n=h),r=a=0;r<s;++r)for(o=t[r],i=0;i<c;++i,++a)u[a]=n(o,e[i]);return u},d=function(t,e){return e<t?-1:e>t?1:e>=t?0:NaN},p=function(t){return null===t?NaN:+t},y=function(t,e){var n,r,i=t.length,a=0,o=-1,s=0,c=0;if(null==e)for(;++o<i;)isNaN(n=p(t[o]))||(c+=(r=n-s)*(n-(s+=r/++a)));else for(;++o<i;)isNaN(n=p(e(t[o],o,t)))||(c+=(r=n-s)*(n-(s+=r/++a)));if(a>1)return c/(a-1)},g=function(t,e){var n=y(t,e);return n?Math.sqrt(n):n},m=function(t,e){var n,r,i,a=t.length,o=-1;if(null==e){for(;++o<a;)if(null!=(n=t[o])&&n>=n)for(r=i=n;++o<a;)null!=(n=t[o])&&(r>n&&(r=n),i<n&&(i=n))}else for(;++o<a;)if(null!=(n=e(t[o],o,t))&&n>=n)for(r=i=n;++o<a;)null!=(n=e(t[o],o,t))&&(r>n&&(r=n),i<n&&(i=n));return[r,i]},v=Array.prototype,b=v.slice,x=v.map,_=function(t){return function(){return t}},k=function(t){return t},w=function(t,e,n){t=+t,e=+e,n=(i=arguments.length)<2?(e=t,t=0,1):i<3?1:+n;for(var r=-1,i=0|Math.max(0,Math.ceil((e-t)/n)),a=new Array(i);++r<i;)a[r]=t+r*n;return a},T=Math.sqrt(50),E=Math.sqrt(10),C=Math.sqrt(2),S=function(t,e,n){var r,i,a,o,s=-1;if(n=+n,(t=+t)===(e=+e)&&n>0)return[t];if((r=e<t)&&(i=t,t=e,e=i),0===(o=A(t,e,n))||!isFinite(o))return[];if(o>0)for(t=Math.ceil(t/o),e=Math.floor(e/o),a=new Array(i=Math.ceil(e-t+1));++s<i;)a[s]=(t+s)*o;else for(t=Math.floor(t*o),e=Math.ceil(e*o),a=new Array(i=Math.ceil(t-e+1));++s<i;)a[s]=(t-s)/o;return r&&a.reverse(),a};function A(t,e,n){var r=(e-t)/Math.max(0,n),i=Math.floor(Math.log(r)/Math.LN10),a=r/Math.pow(10,i);return i>=0?(a>=T?10:a>=E?5:a>=C?2:1)*Math.pow(10,i):-Math.pow(10,-i)/(a>=T?10:a>=E?5:a>=C?2:1)}function M(t,e,n){var r=Math.abs(e-t)/Math.max(0,n),i=Math.pow(10,Math.floor(Math.log(r)/Math.LN10)),a=r/i;return a>=T?i*=10:a>=E?i*=5:a>=C&&(i*=2),e<t?-i:i}var O=function(t){return Math.ceil(Math.log(t.length)/Math.LN2)+1},N=function(){var t=k,e=m,n=O;function r(r){var i,a,o=r.length,s=new Array(o);for(i=0;i<o;++i)s[i]=t(r[i],i,r);var c=e(s),l=c[0],h=c[1],f=n(s,l,h);Array.isArray(f)||(f=M(l,h,f),f=w(Math.ceil(l/f)*f,h,f));for(var d=f.length;f[0]<=l;)f.shift(),--d;for(;f[d-1]>h;)f.pop(),--d;var p,y=new Array(d+1);for(i=0;i<=d;++i)(p=y[i]=[]).x0=i>0?f[i-1]:l,p.x1=i<d?f[i]:h;for(i=0;i<o;++i)l<=(a=s[i])&&a<=h&&y[u(f,a,0,d)].push(r[i]);return y}return r.value=function(e){return arguments.length?(t="function"==typeof e?e:_(e),r):t},r.domain=function(t){return arguments.length?(e="function"==typeof t?t:_([t[0],t[1]]),r):e},r.thresholds=function(t){return arguments.length?(n="function"==typeof t?t:Array.isArray(t)?_(b.call(t)):_(t),r):n},r},B=function(t,e,n){if(null==n&&(n=p),r=t.length){if((e=+e)<=0||r<2)return+n(t[0],0,t);if(e>=1)return+n(t[r-1],r-1,t);var r,i=(r-1)*e,a=Math.floor(i),o=+n(t[a],a,t);return o+(+n(t[a+1],a+1,t)-o)*(i-a)}},D=function(t,e,n){return t=x.call(t,p).sort(i),Math.ceil((n-e)/(2*(B(t,.75)-B(t,.25))*Math.pow(t.length,-1/3)))},L=function(t,e,n){return Math.ceil((n-e)/(3.5*g(t)*Math.pow(t.length,-1/3)))},I=function(t,e){var n,r,i=t.length,a=-1;if(null==e){for(;++a<i;)if(null!=(n=t[a])&&n>=n)for(r=n;++a<i;)null!=(n=t[a])&&n>r&&(r=n)}else for(;++a<i;)if(null!=(n=e(t[a],a,t))&&n>=n)for(r=n;++a<i;)null!=(n=e(t[a],a,t))&&n>r&&(r=n);return r},R=function(t,e){var n,r=t.length,i=r,a=-1,o=0;if(null==e)for(;++a<r;)isNaN(n=p(t[a]))?--i:o+=n;else for(;++a<r;)isNaN(n=p(e(t[a],a,t)))?--i:o+=n;if(i)return o/i},F=function(t,e){var n,r=t.length,a=-1,o=[];if(null==e)for(;++a<r;)isNaN(n=p(t[a]))||o.push(n);else for(;++a<r;)isNaN(n=p(e(t[a],a,t)))||o.push(n);return B(o.sort(i),.5)},P=function(t){for(var e,n,r,i=t.length,a=-1,o=0;++a<i;)o+=t[a].length;for(n=new Array(o);--i>=0;)for(e=(r=t[i]).length;--e>=0;)n[--o]=r[e];return n},j=function(t,e){var n,r,i=t.length,a=-1;if(null==e){for(;++a<i;)if(null!=(n=t[a])&&n>=n)for(r=n;++a<i;)null!=(n=t[a])&&r>n&&(r=n)}else for(;++a<i;)if(null!=(n=e(t[a],a,t))&&n>=n)for(r=n;++a<i;)null!=(n=e(t[a],a,t))&&r>n&&(r=n);return r},Y=function(t,e){for(var n=e.length,r=new Array(n);n--;)r[n]=t[e[n]];return r},z=function(t,e){if(n=t.length){var n,r,a=0,o=0,s=t[o];for(null==e&&(e=i);++a<n;)(e(r=t[a],s)<0||0!==e(s,s))&&(s=r,o=a);return 0===e(s,s)?o:void 0}},U=function(t,e,n){for(var r,i,a=(null==n?t.length:n)-(e=null==e?0:+e);a;)i=Math.random()*a--|0,r=t[a+e],t[a+e]=t[i+e],t[i+e]=r;return t},$=function(t,e){var n,r=t.length,i=-1,a=0;if(null==e)for(;++i<r;)(n=+t[i])&&(a+=n);else for(;++i<r;)(n=+e(t[i],i,t))&&(a+=n);return a},q=function(t){if(!(i=t.length))return[];for(var e=-1,n=j(t,W),r=new Array(n);++e<n;)for(var i,a=-1,o=r[e]=new Array(i);++a<i;)o[a]=t[a][e];return r};function W(t){return t.length}var H=function(){return q(arguments)},V=Array.prototype.slice,G=function(t){return t};function X(t){return"translate("+(t+.5)+",0)"}function Z(t){return"translate(0,"+(t+.5)+")"}function K(t){return function(e){return+t(e)}}function Q(t){var e=Math.max(0,t.bandwidth()-1)/2;return t.round()&&(e=Math.round(e)),function(n){return+t(n)+e}}function J(){return!this.__axis}function tt(t,e){var n=[],r=null,i=null,a=6,o=6,s=3,c=1===t||4===t?-1:1,u=4===t||2===t?"x":"y",l=1===t||3===t?X:Z;function h(h){var f=null==r?e.ticks?e.ticks.apply(e,n):e.domain():r,d=null==i?e.tickFormat?e.tickFormat.apply(e,n):G:i,p=Math.max(a,0)+s,y=e.range(),g=+y[0]+.5,m=+y[y.length-1]+.5,v=(e.bandwidth?Q:K)(e.copy()),b=h.selection?h.selection():h,x=b.selectAll(".domain").data([null]),_=b.selectAll(".tick").data(f,e).order(),k=_.exit(),w=_.enter().append("g").attr("class","tick"),T=_.select("line"),E=_.select("text");x=x.merge(x.enter().insert("path",".tick").attr("class","domain").attr("stroke","currentColor")),_=_.merge(w),T=T.merge(w.append("line").attr("stroke","currentColor").attr(u+"2",c*a)),E=E.merge(w.append("text").attr("fill","currentColor").attr(u,c*p).attr("dy",1===t?"0em":3===t?"0.71em":"0.32em")),h!==b&&(x=x.transition(h),_=_.transition(h),T=T.transition(h),E=E.transition(h),k=k.transition(h).attr("opacity",1e-6).attr("transform",(function(t){return isFinite(t=v(t))?l(t):this.getAttribute("transform")})),w.attr("opacity",1e-6).attr("transform",(function(t){var e=this.parentNode.__axis;return l(e&&isFinite(e=e(t))?e:v(t))}))),k.remove(),x.attr("d",4===t||2==t?o?"M"+c*o+","+g+"H0.5V"+m+"H"+c*o:"M0.5,"+g+"V"+m:o?"M"+g+","+c*o+"V0.5H"+m+"V"+c*o:"M"+g+",0.5H"+m),_.attr("opacity",1).attr("transform",(function(t){return l(v(t))})),T.attr(u+"2",c*a),E.attr(u,c*p).text(d),b.filter(J).attr("fill","none").attr("font-size",10).attr("font-family","sans-serif").attr("text-anchor",2===t?"start":4===t?"end":"middle"),b.each((function(){this.__axis=v}))}return h.scale=function(t){return arguments.length?(e=t,h):e},h.ticks=function(){return n=V.call(arguments),h},h.tickArguments=function(t){return arguments.length?(n=null==t?[]:V.call(t),h):n.slice()},h.tickValues=function(t){return arguments.length?(r=null==t?null:V.call(t),h):r&&r.slice()},h.tickFormat=function(t){return arguments.length?(i=t,h):i},h.tickSize=function(t){return arguments.length?(a=o=+t,h):a},h.tickSizeInner=function(t){return arguments.length?(a=+t,h):a},h.tickSizeOuter=function(t){return arguments.length?(o=+t,h):o},h.tickPadding=function(t){return arguments.length?(s=+t,h):s},h}function et(t){return tt(1,t)}function nt(t){return tt(2,t)}function rt(t){return tt(3,t)}function it(t){return tt(4,t)}var at={value:function(){}};function ot(){for(var t,e=0,n=arguments.length,r={};e<n;++e){if(!(t=arguments[e]+"")||t in r||/[\s.]/.test(t))throw new Error("illegal type: "+t);r[t]=[]}return new st(r)}function st(t){this._=t}function ct(t,e){return t.trim().split(/^|\s+/).map((function(t){var n="",r=t.indexOf(".");if(r>=0&&(n=t.slice(r+1),t=t.slice(0,r)),t&&!e.hasOwnProperty(t))throw new Error("unknown type: "+t);return{type:t,name:n}}))}function ut(t,e){for(var n,r=0,i=t.length;r<i;++r)if((n=t[r]).name===e)return n.value}function lt(t,e,n){for(var r=0,i=t.length;r<i;++r)if(t[r].name===e){t[r]=at,t=t.slice(0,r).concat(t.slice(r+1));break}return null!=n&&t.push({name:e,value:n}),t}st.prototype=ot.prototype={constructor:st,on:function(t,e){var n,r=this._,i=ct(t+"",r),a=-1,o=i.length;if(!(arguments.length<2)){if(null!=e&&"function"!=typeof e)throw new Error("invalid callback: "+e);for(;++a<o;)if(n=(t=i[a]).type)r[n]=lt(r[n],t.name,e);else if(null==e)for(n in r)r[n]=lt(r[n],t.name,null);return this}for(;++a<o;)if((n=(t=i[a]).type)&&(n=ut(r[n],t.name)))return n},copy:function(){var t={},e=this._;for(var n in e)t[n]=e[n].slice();return new st(t)},call:function(t,e){if((n=arguments.length-2)>0)for(var n,r,i=new Array(n),a=0;a<n;++a)i[a]=arguments[a+2];if(!this._.hasOwnProperty(t))throw new Error("unknown type: "+t);for(a=0,n=(r=this._[t]).length;a<n;++a)r[a].value.apply(e,i)},apply:function(t,e,n){if(!this._.hasOwnProperty(t))throw new Error("unknown type: "+t);for(var r=this._[t],i=0,a=r.length;i<a;++i)r[i].value.apply(e,n)}};var ht=ot;function ft(){}var dt=function(t){return null==t?ft:function(){return this.querySelector(t)}};function pt(){return[]}var yt=function(t){return null==t?pt:function(){return this.querySelectorAll(t)}},gt=function(t){return function(){return this.matches(t)}},mt=function(t){return new Array(t.length)};function vt(t,e){this.ownerDocument=t.ownerDocument,this.namespaceURI=t.namespaceURI,this._next=null,this._parent=t,this.__data__=e}vt.prototype={constructor:vt,appendChild:function(t){return this._parent.insertBefore(t,this._next)},insertBefore:function(t,e){return this._parent.insertBefore(t,e)},querySelector:function(t){return this._parent.querySelector(t)},querySelectorAll:function(t){return this._parent.querySelectorAll(t)}};function bt(t,e,n,r,i,a){for(var o,s=0,c=e.length,u=a.length;s<u;++s)(o=e[s])?(o.__data__=a[s],r[s]=o):n[s]=new vt(t,a[s]);for(;s<c;++s)(o=e[s])&&(i[s]=o)}function xt(t,e,n,r,i,a,o){var s,c,u,l={},h=e.length,f=a.length,d=new Array(h);for(s=0;s<h;++s)(c=e[s])&&(d[s]=u="$"+o.call(c,c.__data__,s,e),u in l?i[s]=c:l[u]=c);for(s=0;s<f;++s)(c=l[u="$"+o.call(t,a[s],s,a)])?(r[s]=c,c.__data__=a[s],l[u]=null):n[s]=new vt(t,a[s]);for(s=0;s<h;++s)(c=e[s])&&l[d[s]]===c&&(i[s]=c)}function _t(t,e){return t<e?-1:t>e?1:t>=e?0:NaN}var kt="http://www.w3.org/1999/xhtml",wt={svg:"http://www.w3.org/2000/svg",xhtml:kt,xlink:"http://www.w3.org/1999/xlink",xml:"http://www.w3.org/XML/1998/namespace",xmlns:"http://www.w3.org/2000/xmlns/"},Tt=function(t){var e=t+="",n=e.indexOf(":");return n>=0&&"xmlns"!==(e=t.slice(0,n))&&(t=t.slice(n+1)),wt.hasOwnProperty(e)?{space:wt[e],local:t}:t};function Et(t){return function(){this.removeAttribute(t)}}function Ct(t){return function(){this.removeAttributeNS(t.space,t.local)}}function St(t,e){return function(){this.setAttribute(t,e)}}function At(t,e){return function(){this.setAttributeNS(t.space,t.local,e)}}function Mt(t,e){return function(){var n=e.apply(this,arguments);null==n?this.removeAttribute(t):this.setAttribute(t,n)}}function Ot(t,e){return function(){var n=e.apply(this,arguments);null==n?this.removeAttributeNS(t.space,t.local):this.setAttributeNS(t.space,t.local,n)}}var Nt=function(t){return t.ownerDocument&&t.ownerDocument.defaultView||t.document&&t||t.defaultView};function Bt(t){return function(){this.style.removeProperty(t)}}function Dt(t,e,n){return function(){this.style.setProperty(t,e,n)}}function Lt(t,e,n){return function(){var r=e.apply(this,arguments);null==r?this.style.removeProperty(t):this.style.setProperty(t,r,n)}}function It(t,e){return t.style.getPropertyValue(e)||Nt(t).getComputedStyle(t,null).getPropertyValue(e)}function Rt(t){return function(){delete this[t]}}function Ft(t,e){return function(){this[t]=e}}function Pt(t,e){return function(){var n=e.apply(this,arguments);null==n?delete this[t]:this[t]=n}}function jt(t){return t.trim().split(/^|\s+/)}function Yt(t){return t.classList||new zt(t)}function zt(t){this._node=t,this._names=jt(t.getAttribute("class")||"")}function Ut(t,e){for(var n=Yt(t),r=-1,i=e.length;++r<i;)n.add(e[r])}function $t(t,e){for(var n=Yt(t),r=-1,i=e.length;++r<i;)n.remove(e[r])}function qt(t){return function(){Ut(this,t)}}function Wt(t){return function(){$t(this,t)}}function Ht(t,e){return function(){(e.apply(this,arguments)?Ut:$t)(this,t)}}zt.prototype={add:function(t){this._names.indexOf(t)<0&&(this._names.push(t),this._node.setAttribute("class",this._names.join(" ")))},remove:function(t){var e=this._names.indexOf(t);e>=0&&(this._names.splice(e,1),this._node.setAttribute("class",this._names.join(" ")))},contains:function(t){return this._names.indexOf(t)>=0}};function Vt(){this.textContent=""}function Gt(t){return function(){this.textContent=t}}function Xt(t){return function(){var e=t.apply(this,arguments);this.textContent=null==e?"":e}}function Zt(){this.innerHTML=""}function Kt(t){return function(){this.innerHTML=t}}function Qt(t){return function(){var e=t.apply(this,arguments);this.innerHTML=null==e?"":e}}function Jt(){this.nextSibling&&this.parentNode.appendChild(this)}function te(){this.previousSibling&&this.parentNode.insertBefore(this,this.parentNode.firstChild)}function ee(t){return function(){var e=this.ownerDocument,n=this.namespaceURI;return n===kt&&e.documentElement.namespaceURI===kt?e.createElement(t):e.createElementNS(n,t)}}function ne(t){return function(){return this.ownerDocument.createElementNS(t.space,t.local)}}var re=function(t){var e=Tt(t);return(e.local?ne:ee)(e)};function ie(){return null}function ae(){var t=this.parentNode;t&&t.removeChild(this)}function oe(){var t=this.cloneNode(!1),e=this.parentNode;return e?e.insertBefore(t,this.nextSibling):t}function se(){var t=this.cloneNode(!0),e=this.parentNode;return e?e.insertBefore(t,this.nextSibling):t}var ce={},ue=null;"undefined"!=typeof document&&("onmouseenter"in document.documentElement||(ce={mouseenter:"mouseover",mouseleave:"mouseout"}));function le(t,e,n){return t=he(t,e,n),function(e){var n=e.relatedTarget;n&&(n===this||8&n.compareDocumentPosition(this))||t.call(this,e)}}function he(t,e,n){return function(r){var i=ue;ue=r;try{t.call(this,this.__data__,e,n)}finally{ue=i}}}function fe(t){return t.trim().split(/^|\s+/).map((function(t){var e="",n=t.indexOf(".");return n>=0&&(e=t.slice(n+1),t=t.slice(0,n)),{type:t,name:e}}))}function de(t){return function(){var e=this.__on;if(e){for(var n,r=0,i=-1,a=e.length;r<a;++r)n=e[r],t.type&&n.type!==t.type||n.name!==t.name?e[++i]=n:this.removeEventListener(n.type,n.listener,n.capture);++i?e.length=i:delete this.__on}}}function pe(t,e,n){var r=ce.hasOwnProperty(t.type)?le:he;return function(i,a,o){var s,c=this.__on,u=r(e,a,o);if(c)for(var l=0,h=c.length;l<h;++l)if((s=c[l]).type===t.type&&s.name===t.name)return this.removeEventListener(s.type,s.listener,s.capture),this.addEventListener(s.type,s.listener=u,s.capture=n),void(s.value=e);this.addEventListener(t.type,u,n),s={type:t.type,name:t.name,value:e,listener:u,capture:n},c?c.push(s):this.__on=[s]}}function ye(t,e,n,r){var i=ue;t.sourceEvent=ue,ue=t;try{return e.apply(n,r)}finally{ue=i}}function ge(t,e,n){var r=Nt(t),i=r.CustomEvent;"function"==typeof i?i=new i(e,n):(i=r.document.createEvent("Event"),n?(i.initEvent(e,n.bubbles,n.cancelable),i.detail=n.detail):i.initEvent(e,!1,!1)),t.dispatchEvent(i)}function me(t,e){return function(){return ge(this,t,e)}}function ve(t,e){return function(){return ge(this,t,e.apply(this,arguments))}}var be=[null];function xe(t,e){this._groups=t,this._parents=e}function _e(){return new xe([[document.documentElement]],be)}xe.prototype=_e.prototype={constructor:xe,select:function(t){"function"!=typeof t&&(t=dt(t));for(var e=this._groups,n=e.length,r=new Array(n),i=0;i<n;++i)for(var a,o,s=e[i],c=s.length,u=r[i]=new Array(c),l=0;l<c;++l)(a=s[l])&&(o=t.call(a,a.__data__,l,s))&&("__data__"in a&&(o.__data__=a.__data__),u[l]=o);return new xe(r,this._parents)},selectAll:function(t){"function"!=typeof t&&(t=yt(t));for(var e=this._groups,n=e.length,r=[],i=[],a=0;a<n;++a)for(var o,s=e[a],c=s.length,u=0;u<c;++u)(o=s[u])&&(r.push(t.call(o,o.__data__,u,s)),i.push(o));return new xe(r,i)},filter:function(t){"function"!=typeof t&&(t=gt(t));for(var e=this._groups,n=e.length,r=new Array(n),i=0;i<n;++i)for(var a,o=e[i],s=o.length,c=r[i]=[],u=0;u<s;++u)(a=o[u])&&t.call(a,a.__data__,u,o)&&c.push(a);return new xe(r,this._parents)},data:function(t,e){if(!t)return p=new Array(this.size()),l=-1,this.each((function(t){p[++l]=t})),p;var n,r=e?xt:bt,i=this._parents,a=this._groups;"function"!=typeof t&&(n=t,t=function(){return n});for(var o=a.length,s=new Array(o),c=new Array(o),u=new Array(o),l=0;l<o;++l){var h=i[l],f=a[l],d=f.length,p=t.call(h,h&&h.__data__,l,i),y=p.length,g=c[l]=new Array(y),m=s[l]=new Array(y);r(h,f,g,m,u[l]=new Array(d),p,e);for(var v,b,x=0,_=0;x<y;++x)if(v=g[x]){for(x>=_&&(_=x+1);!(b=m[_])&&++_<y;);v._next=b||null}}return(s=new xe(s,i))._enter=c,s._exit=u,s},enter:function(){return new xe(this._enter||this._groups.map(mt),this._parents)},exit:function(){return new xe(this._exit||this._groups.map(mt),this._parents)},join:function(t,e,n){var r=this.enter(),i=this,a=this.exit();return r="function"==typeof t?t(r):r.append(t+""),null!=e&&(i=e(i)),null==n?a.remove():n(a),r&&i?r.merge(i).order():i},merge:function(t){for(var e=this._groups,n=t._groups,r=e.length,i=n.length,a=Math.min(r,i),o=new Array(r),s=0;s<a;++s)for(var c,u=e[s],l=n[s],h=u.length,f=o[s]=new Array(h),d=0;d<h;++d)(c=u[d]||l[d])&&(f[d]=c);for(;s<r;++s)o[s]=e[s];return new xe(o,this._parents)},order:function(){for(var t=this._groups,e=-1,n=t.length;++e<n;)for(var r,i=t[e],a=i.length-1,o=i[a];--a>=0;)(r=i[a])&&(o&&4^r.compareDocumentPosition(o)&&o.parentNode.insertBefore(r,o),o=r);return this},sort:function(t){function e(e,n){return e&&n?t(e.__data__,n.__data__):!e-!n}t||(t=_t);for(var n=this._groups,r=n.length,i=new Array(r),a=0;a<r;++a){for(var o,s=n[a],c=s.length,u=i[a]=new Array(c),l=0;l<c;++l)(o=s[l])&&(u[l]=o);u.sort(e)}return new xe(i,this._parents).order()},call:function(){var t=arguments[0];return arguments[0]=this,t.apply(null,arguments),this},nodes:function(){var t=new Array(this.size()),e=-1;return this.each((function(){t[++e]=this})),t},node:function(){for(var t=this._groups,e=0,n=t.length;e<n;++e)for(var r=t[e],i=0,a=r.length;i<a;++i){var o=r[i];if(o)return o}return null},size:function(){var t=0;return this.each((function(){++t})),t},empty:function(){return!this.node()},each:function(t){for(var e=this._groups,n=0,r=e.length;n<r;++n)for(var i,a=e[n],o=0,s=a.length;o<s;++o)(i=a[o])&&t.call(i,i.__data__,o,a);return this},attr:function(t,e){var n=Tt(t);if(arguments.length<2){var r=this.node();return n.local?r.getAttributeNS(n.space,n.local):r.getAttribute(n)}return this.each((null==e?n.local?Ct:Et:"function"==typeof e?n.local?Ot:Mt:n.local?At:St)(n,e))},style:function(t,e,n){return arguments.length>1?this.each((null==e?Bt:"function"==typeof e?Lt:Dt)(t,e,null==n?"":n)):It(this.node(),t)},property:function(t,e){return arguments.length>1?this.each((null==e?Rt:"function"==typeof e?Pt:Ft)(t,e)):this.node()[t]},classed:function(t,e){var n=jt(t+"");if(arguments.length<2){for(var r=Yt(this.node()),i=-1,a=n.length;++i<a;)if(!r.contains(n[i]))return!1;return!0}return this.each(("function"==typeof e?Ht:e?qt:Wt)(n,e))},text:function(t){return arguments.length?this.each(null==t?Vt:("function"==typeof t?Xt:Gt)(t)):this.node().textContent},html:function(t){return arguments.length?this.each(null==t?Zt:("function"==typeof t?Qt:Kt)(t)):this.node().innerHTML},raise:function(){return this.each(Jt)},lower:function(){return this.each(te)},append:function(t){var e="function"==typeof t?t:re(t);return this.select((function(){return this.appendChild(e.apply(this,arguments))}))},insert:function(t,e){var n="function"==typeof t?t:re(t),r=null==e?ie:"function"==typeof e?e:dt(e);return this.select((function(){return this.insertBefore(n.apply(this,arguments),r.apply(this,arguments)||null)}))},remove:function(){return this.each(ae)},clone:function(t){return this.select(t?se:oe)},datum:function(t){return arguments.length?this.property("__data__",t):this.node().__data__},on:function(t,e,n){var r,i,a=fe(t+""),o=a.length;if(!(arguments.length<2)){for(s=e?pe:de,null==n&&(n=!1),r=0;r<o;++r)this.each(s(a[r],e,n));return this}var s=this.node().__on;if(s)for(var c,u=0,l=s.length;u<l;++u)for(r=0,c=s[u];r<o;++r)if((i=a[r]).type===c.type&&i.name===c.name)return c.value},dispatch:function(t,e){return this.each(("function"==typeof e?ve:me)(t,e))}};var ke=_e,we=function(t){return"string"==typeof t?new xe([[document.querySelector(t)]],[document.documentElement]):new xe([[t]],be)};function Te(){ue.stopImmediatePropagation()}var Ee=function(){ue.preventDefault(),ue.stopImmediatePropagation()},Ce=function(t){var e=t.document.documentElement,n=we(t).on("dragstart.drag",Ee,!0);"onselectstart"in e?n.on("selectstart.drag",Ee,!0):(e.__noselect=e.style.MozUserSelect,e.style.MozUserSelect="none")};function Se(t,e){var n=t.document.documentElement,r=we(t).on("dragstart.drag",null);e&&(r.on("click.drag",Ee,!0),setTimeout((function(){r.on("click.drag",null)}),0)),"onselectstart"in n?r.on("selectstart.drag",null):(n.style.MozUserSelect=n.__noselect,delete n.__noselect)}var Ae=function(t,e,n){t.prototype=e.prototype=n,n.constructor=t};function Me(t,e){var n=Object.create(t.prototype);for(var r in e)n[r]=e[r];return n}function Oe(){}var Ne="\\s*([+-]?\\d+)\\s*",Be="\\s*([+-]?\\d*\\.?\\d+(?:[eE][+-]?\\d+)?)\\s*",De="\\s*([+-]?\\d*\\.?\\d+(?:[eE][+-]?\\d+)?)%\\s*",Le=/^#([0-9a-f]{3,8})$/,Ie=new RegExp("^rgb\\("+[Ne,Ne,Ne]+"\\)$"),Re=new RegExp("^rgb\\("+[De,De,De]+"\\)$"),Fe=new RegExp("^rgba\\("+[Ne,Ne,Ne,Be]+"\\)$"),Pe=new RegExp("^rgba\\("+[De,De,De,Be]+"\\)$"),je=new RegExp("^hsl\\("+[Be,De,De]+"\\)$"),Ye=new RegExp("^hsla\\("+[Be,De,De,Be]+"\\)$"),ze={aliceblue:15792383,antiquewhite:16444375,aqua:65535,aquamarine:8388564,azure:15794175,beige:16119260,bisque:16770244,black:0,blanchedalmond:16772045,blue:255,blueviolet:9055202,brown:10824234,burlywood:14596231,cadetblue:6266528,chartreuse:8388352,chocolate:13789470,coral:16744272,cornflowerblue:6591981,cornsilk:16775388,crimson:14423100,cyan:65535,darkblue:139,darkcyan:35723,darkgoldenrod:12092939,darkgray:11119017,darkgreen:25600,darkgrey:11119017,darkkhaki:12433259,darkmagenta:9109643,darkolivegreen:5597999,darkorange:16747520,darkorchid:10040012,darkred:9109504,darksalmon:15308410,darkseagreen:9419919,darkslateblue:4734347,darkslategray:3100495,darkslategrey:3100495,darkturquoise:52945,darkviolet:9699539,deeppink:16716947,deepskyblue:49151,dimgray:6908265,dimgrey:6908265,dodgerblue:2003199,firebrick:11674146,floralwhite:16775920,forestgreen:2263842,fuchsia:16711935,gainsboro:14474460,ghostwhite:16316671,gold:16766720,goldenrod:14329120,gray:8421504,green:32768,greenyellow:11403055,grey:8421504,honeydew:15794160,hotpink:16738740,indianred:13458524,indigo:4915330,ivory:16777200,khaki:15787660,lavender:15132410,lavenderblush:16773365,lawngreen:8190976,lemonchiffon:16775885,lightblue:11393254,lightcoral:15761536,lightcyan:14745599,lightgoldenrodyellow:16448210,lightgray:13882323,lightgreen:9498256,lightgrey:13882323,lightpink:16758465,lightsalmon:16752762,lightseagreen:2142890,lightskyblue:8900346,lightslategray:7833753,lightslategrey:7833753,lightsteelblue:11584734,lightyellow:16777184,lime:65280,limegreen:3329330,linen:16445670,magenta:16711935,maroon:8388608,mediumaquamarine:6737322,mediumblue:205,mediumorchid:12211667,mediumpurple:9662683,mediumseagreen:3978097,mediumslateblue:8087790,mediumspringgreen:64154,mediumturquoise:4772300,mediumvioletred:13047173,midnightblue:1644912,mintcream:16121850,mistyrose:16770273,moccasin:16770229,navajowhite:16768685,navy:128,oldlace:16643558,olive:8421376,olivedrab:7048739,orange:16753920,orangered:16729344,orchid:14315734,palegoldenrod:15657130,palegreen:10025880,paleturquoise:11529966,palevioletred:14381203,papayawhip:16773077,peachpuff:16767673,peru:13468991,pink:16761035,plum:14524637,powderblue:11591910,purple:8388736,rebeccapurple:6697881,red:16711680,rosybrown:12357519,royalblue:4286945,saddlebrown:9127187,salmon:16416882,sandybrown:16032864,seagreen:3050327,seashell:16774638,sienna:10506797,silver:12632256,skyblue:8900331,slateblue:6970061,slategray:7372944,slategrey:7372944,snow:16775930,springgreen:65407,steelblue:4620980,tan:13808780,teal:32896,thistle:14204888,tomato:16737095,turquoise:4251856,violet:15631086,wheat:16113331,white:16777215,whitesmoke:16119285,yellow:16776960,yellowgreen:10145074};function Ue(){return this.rgb().formatHex()}function $e(){return this.rgb().formatRgb()}function qe(t){var e,n;return t=(t+"").trim().toLowerCase(),(e=Le.exec(t))?(n=e[1].length,e=parseInt(e[1],16),6===n?We(e):3===n?new Xe(e>>8&15|e>>4&240,e>>4&15|240&e,(15&e)<<4|15&e,1):8===n?He(e>>24&255,e>>16&255,e>>8&255,(255&e)/255):4===n?He(e>>12&15|e>>8&240,e>>8&15|e>>4&240,e>>4&15|240&e,((15&e)<<4|15&e)/255):null):(e=Ie.exec(t))?new Xe(e[1],e[2],e[3],1):(e=Re.exec(t))?new Xe(255*e[1]/100,255*e[2]/100,255*e[3]/100,1):(e=Fe.exec(t))?He(e[1],e[2],e[3],e[4]):(e=Pe.exec(t))?He(255*e[1]/100,255*e[2]/100,255*e[3]/100,e[4]):(e=je.exec(t))?Je(e[1],e[2]/100,e[3]/100,1):(e=Ye.exec(t))?Je(e[1],e[2]/100,e[3]/100,e[4]):ze.hasOwnProperty(t)?We(ze[t]):"transparent"===t?new Xe(NaN,NaN,NaN,0):null}function We(t){return new Xe(t>>16&255,t>>8&255,255&t,1)}function He(t,e,n,r){return r<=0&&(t=e=n=NaN),new Xe(t,e,n,r)}function Ve(t){return t instanceof Oe||(t=qe(t)),t?new Xe((t=t.rgb()).r,t.g,t.b,t.opacity):new Xe}function Ge(t,e,n,r){return 1===arguments.length?Ve(t):new Xe(t,e,n,null==r?1:r)}function Xe(t,e,n,r){this.r=+t,this.g=+e,this.b=+n,this.opacity=+r}function Ze(){return"#"+Qe(this.r)+Qe(this.g)+Qe(this.b)}function Ke(){var t=this.opacity;return(1===(t=isNaN(t)?1:Math.max(0,Math.min(1,t)))?"rgb(":"rgba(")+Math.max(0,Math.min(255,Math.round(this.r)||0))+", "+Math.max(0,Math.min(255,Math.round(this.g)||0))+", "+Math.max(0,Math.min(255,Math.round(this.b)||0))+(1===t?")":", "+t+")")}function Qe(t){return((t=Math.max(0,Math.min(255,Math.round(t)||0)))<16?"0":"")+t.toString(16)}function Je(t,e,n,r){return r<=0?t=e=n=NaN:n<=0||n>=1?t=e=NaN:e<=0&&(t=NaN),new nn(t,e,n,r)}function tn(t){if(t instanceof nn)return new nn(t.h,t.s,t.l,t.opacity);if(t instanceof Oe||(t=qe(t)),!t)return new nn;if(t instanceof nn)return t;var e=(t=t.rgb()).r/255,n=t.g/255,r=t.b/255,i=Math.min(e,n,r),a=Math.max(e,n,r),o=NaN,s=a-i,c=(a+i)/2;return s?(o=e===a?(n-r)/s+6*(n<r):n===a?(r-e)/s+2:(e-n)/s+4,s/=c<.5?a+i:2-a-i,o*=60):s=c>0&&c<1?0:o,new nn(o,s,c,t.opacity)}function en(t,e,n,r){return 1===arguments.length?tn(t):new nn(t,e,n,null==r?1:r)}function nn(t,e,n,r){this.h=+t,this.s=+e,this.l=+n,this.opacity=+r}function rn(t,e,n){return 255*(t<60?e+(n-e)*t/60:t<180?n:t<240?e+(n-e)*(240-t)/60:e)}function an(t,e,n,r,i){var a=t*t,o=a*t;return((1-3*t+3*a-o)*e+(4-6*a+3*o)*n+(1+3*t+3*a-3*o)*r+o*i)/6}Ae(Oe,qe,{copy:function(t){return Object.assign(new this.constructor,this,t)},displayable:function(){return this.rgb().displayable()},hex:Ue,formatHex:Ue,formatHsl:function(){return tn(this).formatHsl()},formatRgb:$e,toString:$e}),Ae(Xe,Ge,Me(Oe,{brighter:function(t){return t=null==t?1/.7:Math.pow(1/.7,t),new Xe(this.r*t,this.g*t,this.b*t,this.opacity)},darker:function(t){return t=null==t?.7:Math.pow(.7,t),new Xe(this.r*t,this.g*t,this.b*t,this.opacity)},rgb:function(){return this},displayable:function(){return-.5<=this.r&&this.r<255.5&&-.5<=this.g&&this.g<255.5&&-.5<=this.b&&this.b<255.5&&0<=this.opacity&&this.opacity<=1},hex:Ze,formatHex:Ze,formatRgb:Ke,toString:Ke})),Ae(nn,en,Me(Oe,{brighter:function(t){return t=null==t?1/.7:Math.pow(1/.7,t),new nn(this.h,this.s,this.l*t,this.opacity)},darker:function(t){return t=null==t?.7:Math.pow(.7,t),new nn(this.h,this.s,this.l*t,this.opacity)},rgb:function(){var t=this.h%360+360*(this.h<0),e=isNaN(t)||isNaN(this.s)?0:this.s,n=this.l,r=n+(n<.5?n:1-n)*e,i=2*n-r;return new Xe(rn(t>=240?t-240:t+120,i,r),rn(t,i,r),rn(t<120?t+240:t-120,i,r),this.opacity)},displayable:function(){return(0<=this.s&&this.s<=1||isNaN(this.s))&&0<=this.l&&this.l<=1&&0<=this.opacity&&this.opacity<=1},formatHsl:function(){var t=this.opacity;return(1===(t=isNaN(t)?1:Math.max(0,Math.min(1,t)))?"hsl(":"hsla(")+(this.h||0)+", "+100*(this.s||0)+"%, "+100*(this.l||0)+"%"+(1===t?")":", "+t+")")}}));var on=function(t){var e=t.length-1;return function(n){var r=n<=0?n=0:n>=1?(n=1,e-1):Math.floor(n*e),i=t[r],a=t[r+1],o=r>0?t[r-1]:2*i-a,s=r<e-1?t[r+2]:2*a-i;return an((n-r/e)*e,o,i,a,s)}},sn=function(t){var e=t.length;return function(n){var r=Math.floor(((n%=1)<0?++n:n)*e),i=t[(r+e-1)%e],a=t[r%e],o=t[(r+1)%e],s=t[(r+2)%e];return an((n-r/e)*e,i,a,o,s)}},cn=function(t){return function(){return t}};function un(t,e){return function(n){return t+n*e}}function ln(t,e){var n=e-t;return n?un(t,n>180||n<-180?n-360*Math.round(n/360):n):cn(isNaN(t)?e:t)}function hn(t){return 1==(t=+t)?fn:function(e,n){return n-e?function(t,e,n){return t=Math.pow(t,n),e=Math.pow(e,n)-t,n=1/n,function(r){return Math.pow(t+r*e,n)}}(e,n,t):cn(isNaN(e)?n:e)}}function fn(t,e){var n=e-t;return n?un(t,n):cn(isNaN(t)?e:t)}var dn=function t(e){var n=hn(e);function r(t,e){var r=n((t=Ge(t)).r,(e=Ge(e)).r),i=n(t.g,e.g),a=n(t.b,e.b),o=fn(t.opacity,e.opacity);return function(e){return t.r=r(e),t.g=i(e),t.b=a(e),t.opacity=o(e),t+""}}return r.gamma=t,r}(1);function pn(t){return function(e){var n,r,i=e.length,a=new Array(i),o=new Array(i),s=new Array(i);for(n=0;n<i;++n)r=Ge(e[n]),a[n]=r.r||0,o[n]=r.g||0,s[n]=r.b||0;return a=t(a),o=t(o),s=t(s),r.opacity=1,function(t){return r.r=a(t),r.g=o(t),r.b=s(t),r+""}}}var yn=pn(on),gn=pn(sn),mn=function(t,e){e||(e=[]);var n,r=t?Math.min(e.length,t.length):0,i=e.slice();return function(a){for(n=0;n<r;++n)i[n]=t[n]*(1-a)+e[n]*a;return i}};function vn(t){return ArrayBuffer.isView(t)&&!(t instanceof DataView)}var bn=function(t,e){return(vn(e)?mn:xn)(t,e)};function xn(t,e){var n,r=e?e.length:0,i=t?Math.min(r,t.length):0,a=new Array(i),o=new Array(r);for(n=0;n<i;++n)a[n]=Mn(t[n],e[n]);for(;n<r;++n)o[n]=e[n];return function(t){for(n=0;n<i;++n)o[n]=a[n](t);return o}}var _n=function(t,e){var n=new Date;return t=+t,e=+e,function(r){return n.setTime(t*(1-r)+e*r),n}},kn=function(t,e){return t=+t,e=+e,function(n){return t*(1-n)+e*n}},wn=function(t,e){var n,r={},i={};for(n in null!==t&&"object"==typeof t||(t={}),null!==e&&"object"==typeof e||(e={}),e)n in t?r[n]=Mn(t[n],e[n]):i[n]=e[n];return function(t){for(n in r)i[n]=r[n](t);return i}},Tn=/[-+]?(?:\d+\.?\d*|\.?\d+)(?:[eE][-+]?\d+)?/g,En=new RegExp(Tn.source,"g");var Cn,Sn,An=function(t,e){var n,r,i,a=Tn.lastIndex=En.lastIndex=0,o=-1,s=[],c=[];for(t+="",e+="";(n=Tn.exec(t))&&(r=En.exec(e));)(i=r.index)>a&&(i=e.slice(a,i),s[o]?s[o]+=i:s[++o]=i),(n=n[0])===(r=r[0])?s[o]?s[o]+=r:s[++o]=r:(s[++o]=null,c.push({i:o,x:kn(n,r)})),a=En.lastIndex;return a<e.length&&(i=e.slice(a),s[o]?s[o]+=i:s[++o]=i),s.length<2?c[0]?function(t){return function(e){return t(e)+""}}(c[0].x):function(t){return function(){return t}}(e):(e=c.length,function(t){for(var n,r=0;r<e;++r)s[(n=c[r]).i]=n.x(t);return s.join("")})},Mn=function(t,e){var n,r=typeof e;return null==e||"boolean"===r?cn(e):("number"===r?kn:"string"===r?(n=qe(e))?(e=n,dn):An:e instanceof qe?dn:e instanceof Date?_n:vn(e)?mn:Array.isArray(e)?xn:"function"!=typeof e.valueOf&&"function"!=typeof e.toString||isNaN(e)?wn:kn)(t,e)},On=function(){for(var t,e=ue;t=e.sourceEvent;)e=t;return e},Nn=function(t,e){var n=t.ownerSVGElement||t;if(n.createSVGPoint){var r=n.createSVGPoint();return r.x=e.clientX,r.y=e.clientY,[(r=r.matrixTransform(t.getScreenCTM().inverse())).x,r.y]}var i=t.getBoundingClientRect();return[e.clientX-i.left-t.clientLeft,e.clientY-i.top-t.clientTop]},Bn=function(t,e,n){arguments.length<3&&(n=e,e=On().changedTouches);for(var r,i=0,a=e?e.length:0;i<a;++i)if((r=e[i]).identifier===n)return Nn(t,r);return null},Dn=function(t){var e=On();return e.changedTouches&&(e=e.changedTouches[0]),Nn(t,e)},Ln=0,In=0,Rn=0,Fn=0,Pn=0,jn=0,Yn="object"==typeof performance&&performance.now?performance:Date,zn="object"==typeof window&&window.requestAnimationFrame?window.requestAnimationFrame.bind(window):function(t){setTimeout(t,17)};function Un(){return Pn||(zn($n),Pn=Yn.now()+jn)}function $n(){Pn=0}function qn(){this._call=this._time=this._next=null}function Wn(t,e,n){var r=new qn;return r.restart(t,e,n),r}function Hn(){Un(),++Ln;for(var t,e=Cn;e;)(t=Pn-e._time)>=0&&e._call.call(null,t),e=e._next;--Ln}function Vn(){Pn=(Fn=Yn.now())+jn,Ln=In=0;try{Hn()}finally{Ln=0,function(){var t,e,n=Cn,r=1/0;for(;n;)n._call?(r>n._time&&(r=n._time),t=n,n=n._next):(e=n._next,n._next=null,n=t?t._next=e:Cn=e);Sn=t,Xn(r)}(),Pn=0}}function Gn(){var t=Yn.now(),e=t-Fn;e>1e3&&(jn-=e,Fn=t)}function Xn(t){Ln||(In&&(In=clearTimeout(In)),t-Pn>24?(t<1/0&&(In=setTimeout(Vn,t-Yn.now()-jn)),Rn&&(Rn=clearInterval(Rn))):(Rn||(Fn=Yn.now(),Rn=setInterval(Gn,1e3)),Ln=1,zn(Vn)))}qn.prototype=Wn.prototype={constructor:qn,restart:function(t,e,n){if("function"!=typeof t)throw new TypeError("callback is not a function");n=(null==n?Un():+n)+(null==e?0:+e),this._next||Sn===this||(Sn?Sn._next=this:Cn=this,Sn=this),this._call=t,this._time=n,Xn()},stop:function(){this._call&&(this._call=null,this._time=1/0,Xn())}};var Zn=function(t,e,n){var r=new qn;return e=null==e?0:+e,r.restart((function(n){r.stop(),t(n+e)}),e,n),r},Kn=ht("start","end","cancel","interrupt"),Qn=[],Jn=function(t,e,n,r,i,a){var o=t.__transition;if(o){if(n in o)return}else t.__transition={};!function(t,e,n){var r,i=t.__transition;function a(c){var u,l,h,f;if(1!==n.state)return s();for(u in i)if((f=i[u]).name===n.name){if(3===f.state)return Zn(a);4===f.state?(f.state=6,f.timer.stop(),f.on.call("interrupt",t,t.__data__,f.index,f.group),delete i[u]):+u<e&&(f.state=6,f.timer.stop(),f.on.call("cancel",t,t.__data__,f.index,f.group),delete i[u])}if(Zn((function(){3===n.state&&(n.state=4,n.timer.restart(o,n.delay,n.time),o(c))})),n.state=2,n.on.call("start",t,t.__data__,n.index,n.group),2===n.state){for(n.state=3,r=new Array(h=n.tween.length),u=0,l=-1;u<h;++u)(f=n.tween[u].value.call(t,t.__data__,n.index,n.group))&&(r[++l]=f);r.length=l+1}}function o(e){for(var i=e<n.duration?n.ease.call(null,e/n.duration):(n.timer.restart(s),n.state=5,1),a=-1,o=r.length;++a<o;)r[a].call(t,i);5===n.state&&(n.on.call("end",t,t.__data__,n.index,n.group),s())}function s(){for(var r in n.state=6,n.timer.stop(),delete i[e],i)return;delete t.__transition}i[e]=n,n.timer=Wn((function(t){n.state=1,n.timer.restart(a,n.delay,n.time),n.delay<=t&&a(t-n.delay)}),0,n.time)}(t,n,{name:e,index:r,group:i,on:Kn,tween:Qn,time:a.time,delay:a.delay,duration:a.duration,ease:a.ease,timer:null,state:0})};function tr(t,e){var n=nr(t,e);if(n.state>0)throw new Error("too late; already scheduled");return n}function er(t,e){var n=nr(t,e);if(n.state>3)throw new Error("too late; already running");return n}function nr(t,e){var n=t.__transition;if(!n||!(n=n[e]))throw new Error("transition not found");return n}var rr,ir,ar,or,sr=function(t,e){var n,r,i,a=t.__transition,o=!0;if(a){for(i in e=null==e?null:e+"",a)(n=a[i]).name===e?(r=n.state>2&&n.state<5,n.state=6,n.timer.stop(),n.on.call(r?"interrupt":"cancel",t,t.__data__,n.index,n.group),delete a[i]):o=!1;o&&delete t.__transition}},cr=180/Math.PI,ur={translateX:0,translateY:0,rotate:0,skewX:0,scaleX:1,scaleY:1},lr=function(t,e,n,r,i,a){var o,s,c;return(o=Math.sqrt(t*t+e*e))&&(t/=o,e/=o),(c=t*n+e*r)&&(n-=t*c,r-=e*c),(s=Math.sqrt(n*n+r*r))&&(n/=s,r/=s,c/=s),t*r<e*n&&(t=-t,e=-e,c=-c,o=-o),{translateX:i,translateY:a,rotate:Math.atan2(e,t)*cr,skewX:Math.atan(c)*cr,scaleX:o,scaleY:s}};function hr(t,e,n,r){function i(t){return t.length?t.pop()+" ":""}return function(a,o){var s=[],c=[];return a=t(a),o=t(o),function(t,r,i,a,o,s){if(t!==i||r!==a){var c=o.push("translate(",null,e,null,n);s.push({i:c-4,x:kn(t,i)},{i:c-2,x:kn(r,a)})}else(i||a)&&o.push("translate("+i+e+a+n)}(a.translateX,a.translateY,o.translateX,o.translateY,s,c),function(t,e,n,a){t!==e?(t-e>180?e+=360:e-t>180&&(t+=360),a.push({i:n.push(i(n)+"rotate(",null,r)-2,x:kn(t,e)})):e&&n.push(i(n)+"rotate("+e+r)}(a.rotate,o.rotate,s,c),function(t,e,n,a){t!==e?a.push({i:n.push(i(n)+"skewX(",null,r)-2,x:kn(t,e)}):e&&n.push(i(n)+"skewX("+e+r)}(a.skewX,o.skewX,s,c),function(t,e,n,r,a,o){if(t!==n||e!==r){var s=a.push(i(a)+"scale(",null,",",null,")");o.push({i:s-4,x:kn(t,n)},{i:s-2,x:kn(e,r)})}else 1===n&&1===r||a.push(i(a)+"scale("+n+","+r+")")}(a.scaleX,a.scaleY,o.scaleX,o.scaleY,s,c),a=o=null,function(t){for(var e,n=-1,r=c.length;++n<r;)s[(e=c[n]).i]=e.x(t);return s.join("")}}}var fr=hr((function(t){return"none"===t?ur:(rr||(rr=document.createElement("DIV"),ir=document.documentElement,ar=document.defaultView),rr.style.transform=t,t=ar.getComputedStyle(ir.appendChild(rr),null).getPropertyValue("transform"),ir.removeChild(rr),t=t.slice(7,-1).split(","),lr(+t[0],+t[1],+t[2],+t[3],+t[4],+t[5]))}),"px, ","px)","deg)"),dr=hr((function(t){return null==t?ur:(or||(or=document.createElementNS("http://www.w3.org/2000/svg","g")),or.setAttribute("transform",t),(t=or.transform.baseVal.consolidate())?(t=t.matrix,lr(t.a,t.b,t.c,t.d,t.e,t.f)):ur)}),", ",")",")");function pr(t,e){var n,r;return function(){var i=er(this,t),a=i.tween;if(a!==n)for(var o=0,s=(r=n=a).length;o<s;++o)if(r[o].name===e){(r=r.slice()).splice(o,1);break}i.tween=r}}function yr(t,e,n){var r,i;if("function"!=typeof n)throw new Error;return function(){var a=er(this,t),o=a.tween;if(o!==r){i=(r=o).slice();for(var s={name:e,value:n},c=0,u=i.length;c<u;++c)if(i[c].name===e){i[c]=s;break}c===u&&i.push(s)}a.tween=i}}function gr(t,e,n){var r=t._id;return t.each((function(){var t=er(this,r);(t.value||(t.value={}))[e]=n.apply(this,arguments)})),function(t){return nr(t,r).value[e]}}var mr=function(t,e){var n;return("number"==typeof e?kn:e instanceof qe?dn:(n=qe(e))?(e=n,dn):An)(t,e)};function vr(t){return function(){this.removeAttribute(t)}}function br(t){return function(){this.removeAttributeNS(t.space,t.local)}}function xr(t,e,n){var r,i,a=n+"";return function(){var o=this.getAttribute(t);return o===a?null:o===r?i:i=e(r=o,n)}}function _r(t,e,n){var r,i,a=n+"";return function(){var o=this.getAttributeNS(t.space,t.local);return o===a?null:o===r?i:i=e(r=o,n)}}function kr(t,e,n){var r,i,a;return function(){var o,s,c=n(this);if(null!=c)return(o=this.getAttribute(t))===(s=c+"")?null:o===r&&s===i?a:(i=s,a=e(r=o,c));this.removeAttribute(t)}}function wr(t,e,n){var r,i,a;return function(){var o,s,c=n(this);if(null!=c)return(o=this.getAttributeNS(t.space,t.local))===(s=c+"")?null:o===r&&s===i?a:(i=s,a=e(r=o,c));this.removeAttributeNS(t.space,t.local)}}function Tr(t,e){return function(n){this.setAttribute(t,e.call(this,n))}}function Er(t,e){return function(n){this.setAttributeNS(t.space,t.local,e.call(this,n))}}function Cr(t,e){var n,r;function i(){var i=e.apply(this,arguments);return i!==r&&(n=(r=i)&&Er(t,i)),n}return i._value=e,i}function Sr(t,e){var n,r;function i(){var i=e.apply(this,arguments);return i!==r&&(n=(r=i)&&Tr(t,i)),n}return i._value=e,i}function Ar(t,e){return function(){tr(this,t).delay=+e.apply(this,arguments)}}function Mr(t,e){return e=+e,function(){tr(this,t).delay=e}}function Or(t,e){return function(){er(this,t).duration=+e.apply(this,arguments)}}function Nr(t,e){return e=+e,function(){er(this,t).duration=e}}function Br(t,e){if("function"!=typeof e)throw new Error;return function(){er(this,t).ease=e}}function Dr(t,e,n){var r,i,a=function(t){return(t+"").trim().split(/^|\s+/).every((function(t){var e=t.indexOf(".");return e>=0&&(t=t.slice(0,e)),!t||"start"===t}))}(e)?tr:er;return function(){var o=a(this,t),s=o.on;s!==r&&(i=(r=s).copy()).on(e,n),o.on=i}}var Lr=ke.prototype.constructor;function Ir(t){return function(){this.style.removeProperty(t)}}function Rr(t,e,n){return function(r){this.style.setProperty(t,e.call(this,r),n)}}function Fr(t,e,n){var r,i;function a(){var a=e.apply(this,arguments);return a!==i&&(r=(i=a)&&Rr(t,a,n)),r}return a._value=e,a}function Pr(t){return function(e){this.textContent=t.call(this,e)}}function jr(t){var e,n;function r(){var r=t.apply(this,arguments);return r!==n&&(e=(n=r)&&Pr(r)),e}return r._value=t,r}var Yr=0;function zr(t,e,n,r){this._groups=t,this._parents=e,this._name=n,this._id=r}function Ur(t){return ke().transition(t)}function $r(){return++Yr}var qr=ke.prototype;function Wr(t){return t*t*t}function Hr(t){return--t*t*t+1}function Vr(t){return((t*=2)<=1?t*t*t:(t-=2)*t*t+2)/2}zr.prototype=Ur.prototype={constructor:zr,select:function(t){var e=this._name,n=this._id;"function"!=typeof t&&(t=dt(t));for(var r=this._groups,i=r.length,a=new Array(i),o=0;o<i;++o)for(var s,c,u=r[o],l=u.length,h=a[o]=new Array(l),f=0;f<l;++f)(s=u[f])&&(c=t.call(s,s.__data__,f,u))&&("__data__"in s&&(c.__data__=s.__data__),h[f]=c,Jn(h[f],e,n,f,h,nr(s,n)));return new zr(a,this._parents,e,n)},selectAll:function(t){var e=this._name,n=this._id;"function"!=typeof t&&(t=yt(t));for(var r=this._groups,i=r.length,a=[],o=[],s=0;s<i;++s)for(var c,u=r[s],l=u.length,h=0;h<l;++h)if(c=u[h]){for(var f,d=t.call(c,c.__data__,h,u),p=nr(c,n),y=0,g=d.length;y<g;++y)(f=d[y])&&Jn(f,e,n,y,d,p);a.push(d),o.push(c)}return new zr(a,o,e,n)},filter:function(t){"function"!=typeof t&&(t=gt(t));for(var e=this._groups,n=e.length,r=new Array(n),i=0;i<n;++i)for(var a,o=e[i],s=o.length,c=r[i]=[],u=0;u<s;++u)(a=o[u])&&t.call(a,a.__data__,u,o)&&c.push(a);return new zr(r,this._parents,this._name,this._id)},merge:function(t){if(t._id!==this._id)throw new Error;for(var e=this._groups,n=t._groups,r=e.length,i=n.length,a=Math.min(r,i),o=new Array(r),s=0;s<a;++s)for(var c,u=e[s],l=n[s],h=u.length,f=o[s]=new Array(h),d=0;d<h;++d)(c=u[d]||l[d])&&(f[d]=c);for(;s<r;++s)o[s]=e[s];return new zr(o,this._parents,this._name,this._id)},selection:function(){return new Lr(this._groups,this._parents)},transition:function(){for(var t=this._name,e=this._id,n=$r(),r=this._groups,i=r.length,a=0;a<i;++a)for(var o,s=r[a],c=s.length,u=0;u<c;++u)if(o=s[u]){var l=nr(o,e);Jn(o,t,n,u,s,{time:l.time+l.delay+l.duration,delay:0,duration:l.duration,ease:l.ease})}return new zr(r,this._parents,t,n)},call:qr.call,nodes:qr.nodes,node:qr.node,size:qr.size,empty:qr.empty,each:qr.each,on:function(t,e){var n=this._id;return arguments.length<2?nr(this.node(),n).on.on(t):this.each(Dr(n,t,e))},attr:function(t,e){var n=Tt(t),r="transform"===n?dr:mr;return this.attrTween(t,"function"==typeof e?(n.local?wr:kr)(n,r,gr(this,"attr."+t,e)):null==e?(n.local?br:vr)(n):(n.local?_r:xr)(n,r,e))},attrTween:function(t,e){var n="attr."+t;if(arguments.length<2)return(n=this.tween(n))&&n._value;if(null==e)return this.tween(n,null);if("function"!=typeof e)throw new Error;var r=Tt(t);return this.tween(n,(r.local?Cr:Sr)(r,e))},style:function(t,e,n){var r="transform"==(t+="")?fr:mr;return null==e?this.styleTween(t,function(t,e){var n,r,i;return function(){var a=It(this,t),o=(this.style.removeProperty(t),It(this,t));return a===o?null:a===n&&o===r?i:i=e(n=a,r=o)}}(t,r)).on("end.style."+t,Ir(t)):"function"==typeof e?this.styleTween(t,function(t,e,n){var r,i,a;return function(){var o=It(this,t),s=n(this),c=s+"";return null==s&&(this.style.removeProperty(t),c=s=It(this,t)),o===c?null:o===r&&c===i?a:(i=c,a=e(r=o,s))}}(t,r,gr(this,"style."+t,e))).each(function(t,e){var n,r,i,a,o="style."+e,s="end."+o;return function(){var c=er(this,t),u=c.on,l=null==c.value[o]?a||(a=Ir(e)):void 0;u===n&&i===l||(r=(n=u).copy()).on(s,i=l),c.on=r}}(this._id,t)):this.styleTween(t,function(t,e,n){var r,i,a=n+"";return function(){var o=It(this,t);return o===a?null:o===r?i:i=e(r=o,n)}}(t,r,e),n).on("end.style."+t,null)},styleTween:function(t,e,n){var r="style."+(t+="");if(arguments.length<2)return(r=this.tween(r))&&r._value;if(null==e)return this.tween(r,null);if("function"!=typeof e)throw new Error;return this.tween(r,Fr(t,e,null==n?"":n))},text:function(t){return this.tween("text","function"==typeof t?function(t){return function(){var e=t(this);this.textContent=null==e?"":e}}(gr(this,"text",t)):function(t){return function(){this.textContent=t}}(null==t?"":t+""))},textTween:function(t){var e="text";if(arguments.length<1)return(e=this.tween(e))&&e._value;if(null==t)return this.tween(e,null);if("function"!=typeof t)throw new Error;return this.tween(e,jr(t))},remove:function(){return this.on("end.remove",(t=this._id,function(){var e=this.parentNode;for(var n in this.__transition)if(+n!==t)return;e&&e.removeChild(this)}));var t},tween:function(t,e){var n=this._id;if(t+="",arguments.length<2){for(var r,i=nr(this.node(),n).tween,a=0,o=i.length;a<o;++a)if((r=i[a]).name===t)return r.value;return null}return this.each((null==e?pr:yr)(n,t,e))},delay:function(t){var e=this._id;return arguments.length?this.each(("function"==typeof t?Ar:Mr)(e,t)):nr(this.node(),e).delay},duration:function(t){var e=this._id;return arguments.length?this.each(("function"==typeof t?Or:Nr)(e,t)):nr(this.node(),e).duration},ease:function(t){var e=this._id;return arguments.length?this.each(Br(e,t)):nr(this.node(),e).ease},end:function(){var t,e,n=this,r=n._id,i=n.size();return new Promise((function(a,o){var s={value:o},c={value:function(){0==--i&&a()}};n.each((function(){var n=er(this,r),i=n.on;i!==t&&((e=(t=i).copy())._.cancel.push(s),e._.interrupt.push(s),e._.end.push(c)),n.on=e}))}))}};var Gr={time:null,delay:0,duration:250,ease:Vr};function Xr(t,e){for(var n;!(n=t.__transition)||!(n=n[e]);)if(!(t=t.parentNode))return Gr.time=Un(),Gr;return n}ke.prototype.interrupt=function(t){return this.each((function(){sr(this,t)}))},ke.prototype.transition=function(t){var e,n;t instanceof zr?(e=t._id,t=t._name):(e=$r(),(n=Gr).time=Un(),t=null==t?null:t+"");for(var r=this._groups,i=r.length,a=0;a<i;++a)for(var o,s=r[a],c=s.length,u=0;u<c;++u)(o=s[u])&&Jn(o,t,e,u,s,n||Xr(o,e));return new zr(r,this._parents,t,e)};var Zr=[null],Kr=function(t,e){var n,r,i=t.__transition;if(i)for(r in e=null==e?null:e+"",i)if((n=i[r]).state>1&&n.name===e)return new zr([[t]],Zr,e,+r);return null},Qr=function(t){return function(){return t}},Jr=function(t,e,n){this.target=t,this.type=e,this.selection=n};function ti(){ue.stopImmediatePropagation()}var ei=function(){ue.preventDefault(),ue.stopImmediatePropagation()},ni={name:"drag"},ri={name:"space"},ii={name:"handle"},ai={name:"center"};function oi(t){return[+t[0],+t[1]]}function si(t){return[oi(t[0]),oi(t[1])]}function ci(t){return function(e){return Bn(e,ue.touches,t)}}var ui={name:"x",handles:["w","e"].map(mi),input:function(t,e){return null==t?null:[[+t[0],e[0][1]],[+t[1],e[1][1]]]},output:function(t){return t&&[t[0][0],t[1][0]]}},li={name:"y",handles:["n","s"].map(mi),input:function(t,e){return null==t?null:[[e[0][0],+t[0]],[e[1][0],+t[1]]]},output:function(t){return t&&[t[0][1],t[1][1]]}},hi={name:"xy",handles:["n","w","e","s","nw","ne","sw","se"].map(mi),input:function(t){return null==t?null:si(t)},output:function(t){return t}},fi={overlay:"crosshair",selection:"move",n:"ns-resize",e:"ew-resize",s:"ns-resize",w:"ew-resize",nw:"nwse-resize",ne:"nesw-resize",se:"nwse-resize",sw:"nesw-resize"},di={e:"w",w:"e",nw:"ne",ne:"nw",se:"sw",sw:"se"},pi={n:"s",s:"n",nw:"sw",ne:"se",se:"ne",sw:"nw"},yi={overlay:1,selection:1,n:null,e:1,s:null,w:-1,nw:-1,ne:1,se:1,sw:-1},gi={overlay:1,selection:1,n:-1,e:null,s:1,w:null,nw:-1,ne:-1,se:1,sw:1};function mi(t){return{type:t}}function vi(){return!ue.ctrlKey&&!ue.button}function bi(){var t=this.ownerSVGElement||this;return t.hasAttribute("viewBox")?[[(t=t.viewBox.baseVal).x,t.y],[t.x+t.width,t.y+t.height]]:[[0,0],[t.width.baseVal.value,t.height.baseVal.value]]}function xi(){return navigator.maxTouchPoints||"ontouchstart"in this}function _i(t){for(;!t.__brush;)if(!(t=t.parentNode))return;return t.__brush}function ki(t){return t[0][0]===t[1][0]||t[0][1]===t[1][1]}function wi(t){var e=t.__brush;return e?e.dim.output(e.selection):null}function Ti(){return Si(ui)}function Ei(){return Si(li)}var Ci=function(){return Si(hi)};function Si(t){var e,n=bi,r=vi,i=xi,a=!0,o=ht("start","brush","end"),s=6;function c(e){var n=e.property("__brush",y).selectAll(".overlay").data([mi("overlay")]);n.enter().append("rect").attr("class","overlay").attr("pointer-events","all").attr("cursor",fi.overlay).merge(n).each((function(){var t=_i(this).extent;we(this).attr("x",t[0][0]).attr("y",t[0][1]).attr("width",t[1][0]-t[0][0]).attr("height",t[1][1]-t[0][1])})),e.selectAll(".selection").data([mi("selection")]).enter().append("rect").attr("class","selection").attr("cursor",fi.selection).attr("fill","#777").attr("fill-opacity",.3).attr("stroke","#fff").attr("shape-rendering","crispEdges");var r=e.selectAll(".handle").data(t.handles,(function(t){return t.type}));r.exit().remove(),r.enter().append("rect").attr("class",(function(t){return"handle handle--"+t.type})).attr("cursor",(function(t){return fi[t.type]})),e.each(u).attr("fill","none").attr("pointer-events","all").on("mousedown.brush",f).filter(i).on("touchstart.brush",f).on("touchmove.brush",d).on("touchend.brush touchcancel.brush",p).style("touch-action","none").style("-webkit-tap-highlight-color","rgba(0,0,0,0)")}function u(){var t=we(this),e=_i(this).selection;e?(t.selectAll(".selection").style("display",null).attr("x",e[0][0]).attr("y",e[0][1]).attr("width",e[1][0]-e[0][0]).attr("height",e[1][1]-e[0][1]),t.selectAll(".handle").style("display",null).attr("x",(function(t){return"e"===t.type[t.type.length-1]?e[1][0]-s/2:e[0][0]-s/2})).attr("y",(function(t){return"s"===t.type[0]?e[1][1]-s/2:e[0][1]-s/2})).attr("width",(function(t){return"n"===t.type||"s"===t.type?e[1][0]-e[0][0]+s:s})).attr("height",(function(t){return"e"===t.type||"w"===t.type?e[1][1]-e[0][1]+s:s}))):t.selectAll(".selection,.handle").style("display","none").attr("x",null).attr("y",null).attr("width",null).attr("height",null)}function l(t,e,n){var r=t.__brush.emitter;return!r||n&&r.clean?new h(t,e,n):r}function h(t,e,n){this.that=t,this.args=e,this.state=t.__brush,this.active=0,this.clean=n}function f(){if((!e||ue.touches)&&r.apply(this,arguments)){var n,i,o,s,c,h,f,d,p,y,g,m=this,v=ue.target.__data__.type,b="selection"===(a&&ue.metaKey?v="overlay":v)?ni:a&&ue.altKey?ai:ii,x=t===li?null:yi[v],_=t===ui?null:gi[v],k=_i(m),w=k.extent,T=k.selection,E=w[0][0],C=w[0][1],S=w[1][0],A=w[1][1],M=0,O=0,N=x&&_&&a&&ue.shiftKey,B=ue.touches?ci(ue.changedTouches[0].identifier):Dn,D=B(m),L=D,I=l(m,arguments,!0).beforestart();"overlay"===v?(T&&(p=!0),k.selection=T=[[n=t===li?E:D[0],o=t===ui?C:D[1]],[c=t===li?S:n,f=t===ui?A:o]]):(n=T[0][0],o=T[0][1],c=T[1][0],f=T[1][1]),i=n,s=o,h=c,d=f;var R=we(m).attr("pointer-events","none"),F=R.selectAll(".overlay").attr("cursor",fi[v]);if(ue.touches)I.moved=j,I.ended=z;else{var P=we(ue.view).on("mousemove.brush",j,!0).on("mouseup.brush",z,!0);a&&P.on("keydown.brush",U,!0).on("keyup.brush",$,!0),Ce(ue.view)}ti(),sr(m),u.call(m),I.start()}function j(){var t=B(m);!N||y||g||(Math.abs(t[0]-L[0])>Math.abs(t[1]-L[1])?g=!0:y=!0),L=t,p=!0,ei(),Y()}function Y(){var t;switch(M=L[0]-D[0],O=L[1]-D[1],b){case ri:case ni:x&&(M=Math.max(E-n,Math.min(S-c,M)),i=n+M,h=c+M),_&&(O=Math.max(C-o,Math.min(A-f,O)),s=o+O,d=f+O);break;case ii:x<0?(M=Math.max(E-n,Math.min(S-n,M)),i=n+M,h=c):x>0&&(M=Math.max(E-c,Math.min(S-c,M)),i=n,h=c+M),_<0?(O=Math.max(C-o,Math.min(A-o,O)),s=o+O,d=f):_>0&&(O=Math.max(C-f,Math.min(A-f,O)),s=o,d=f+O);break;case ai:x&&(i=Math.max(E,Math.min(S,n-M*x)),h=Math.max(E,Math.min(S,c+M*x))),_&&(s=Math.max(C,Math.min(A,o-O*_)),d=Math.max(C,Math.min(A,f+O*_)))}h<i&&(x*=-1,t=n,n=c,c=t,t=i,i=h,h=t,v in di&&F.attr("cursor",fi[v=di[v]])),d<s&&(_*=-1,t=o,o=f,f=t,t=s,s=d,d=t,v in pi&&F.attr("cursor",fi[v=pi[v]])),k.selection&&(T=k.selection),y&&(i=T[0][0],h=T[1][0]),g&&(s=T[0][1],d=T[1][1]),T[0][0]===i&&T[0][1]===s&&T[1][0]===h&&T[1][1]===d||(k.selection=[[i,s],[h,d]],u.call(m),I.brush())}function z(){if(ti(),ue.touches){if(ue.touches.length)return;e&&clearTimeout(e),e=setTimeout((function(){e=null}),500)}else Se(ue.view,p),P.on("keydown.brush keyup.brush mousemove.brush mouseup.brush",null);R.attr("pointer-events","all"),F.attr("cursor",fi.overlay),k.selection&&(T=k.selection),ki(T)&&(k.selection=null,u.call(m)),I.end()}function U(){switch(ue.keyCode){case 16:N=x&&_;break;case 18:b===ii&&(x&&(c=h-M*x,n=i+M*x),_&&(f=d-O*_,o=s+O*_),b=ai,Y());break;case 32:b!==ii&&b!==ai||(x<0?c=h-M:x>0&&(n=i-M),_<0?f=d-O:_>0&&(o=s-O),b=ri,F.attr("cursor",fi.selection),Y());break;default:return}ei()}function $(){switch(ue.keyCode){case 16:N&&(y=g=N=!1,Y());break;case 18:b===ai&&(x<0?c=h:x>0&&(n=i),_<0?f=d:_>0&&(o=s),b=ii,Y());break;case 32:b===ri&&(ue.altKey?(x&&(c=h-M*x,n=i+M*x),_&&(f=d-O*_,o=s+O*_),b=ai):(x<0?c=h:x>0&&(n=i),_<0?f=d:_>0&&(o=s),b=ii),F.attr("cursor",fi[v]),Y());break;default:return}ei()}}function d(){l(this,arguments).moved()}function p(){l(this,arguments).ended()}function y(){var e=this.__brush||{selection:null};return e.extent=si(n.apply(this,arguments)),e.dim=t,e}return c.move=function(e,n){e.selection?e.on("start.brush",(function(){l(this,arguments).beforestart().start()})).on("interrupt.brush end.brush",(function(){l(this,arguments).end()})).tween("brush",(function(){var e=this,r=e.__brush,i=l(e,arguments),a=r.selection,o=t.input("function"==typeof n?n.apply(this,arguments):n,r.extent),s=Mn(a,o);function c(t){r.selection=1===t&&null===o?null:s(t),u.call(e),i.brush()}return null!==a&&null!==o?c:c(1)})):e.each((function(){var e=this,r=arguments,i=e.__brush,a=t.input("function"==typeof n?n.apply(e,r):n,i.extent),o=l(e,r).beforestart();sr(e),i.selection=null===a?null:a,u.call(e),o.start().brush().end()}))},c.clear=function(t){c.move(t,null)},h.prototype={beforestart:function(){return 1==++this.active&&(this.state.emitter=this,this.starting=!0),this},start:function(){return this.starting?(this.starting=!1,this.emit("start")):this.emit("brush"),this},brush:function(){return this.emit("brush"),this},end:function(){return 0==--this.active&&(delete this.state.emitter,this.emit("end")),this},emit:function(e){ye(new Jr(c,e,t.output(this.state.selection)),o.apply,o,[e,this.that,this.args])}},c.extent=function(t){return arguments.length?(n="function"==typeof t?t:Qr(si(t)),c):n},c.filter=function(t){return arguments.length?(r="function"==typeof t?t:Qr(!!t),c):r},c.touchable=function(t){return arguments.length?(i="function"==typeof t?t:Qr(!!t),c):i},c.handleSize=function(t){return arguments.length?(s=+t,c):s},c.keyModifiers=function(t){return arguments.length?(a=!!t,c):a},c.on=function(){var t=o.on.apply(o,arguments);return t===o?c:t},c}var Ai=Math.cos,Mi=Math.sin,Oi=Math.PI,Ni=Oi/2,Bi=2*Oi,Di=Math.max;function Li(t){return function(e,n){return t(e.source.value+e.target.value,n.source.value+n.target.value)}}var Ii=function(){var t=0,e=null,n=null,r=null;function i(i){var a,o,s,c,u,l,h=i.length,f=[],d=w(h),p=[],y=[],g=y.groups=new Array(h),m=new Array(h*h);for(a=0,u=-1;++u<h;){for(o=0,l=-1;++l<h;)o+=i[u][l];f.push(o),p.push(w(h)),a+=o}for(e&&d.sort((function(t,n){return e(f[t],f[n])})),n&&p.forEach((function(t,e){t.sort((function(t,r){return n(i[e][t],i[e][r])}))})),c=(a=Di(0,Bi-t*h)/a)?t:Bi/h,o=0,u=-1;++u<h;){for(s=o,l=-1;++l<h;){var v=d[u],b=p[v][l],x=i[v][b],_=o,k=o+=x*a;m[b*h+v]={index:v,subindex:b,startAngle:_,endAngle:k,value:x}}g[v]={index:v,startAngle:s,endAngle:o,value:f[v]},o+=c}for(u=-1;++u<h;)for(l=u-1;++l<h;){var T=m[l*h+u],E=m[u*h+l];(T.value||E.value)&&y.push(T.value<E.value?{source:E,target:T}:{source:T,target:E})}return r?y.sort(r):y}return i.padAngle=function(e){return arguments.length?(t=Di(0,e),i):t},i.sortGroups=function(t){return arguments.length?(e=t,i):e},i.sortSubgroups=function(t){return arguments.length?(n=t,i):n},i.sortChords=function(t){return arguments.length?(null==t?r=null:(r=Li(t))._=t,i):r&&r._},i},Ri=Array.prototype.slice,Fi=function(t){return function(){return t}},Pi=Math.PI,ji=2*Pi,Yi=ji-1e-6;function zi(){this._x0=this._y0=this._x1=this._y1=null,this._=""}function Ui(){return new zi}zi.prototype=Ui.prototype={constructor:zi,moveTo:function(t,e){this._+="M"+(this._x0=this._x1=+t)+","+(this._y0=this._y1=+e)},closePath:function(){null!==this._x1&&(this._x1=this._x0,this._y1=this._y0,this._+="Z")},lineTo:function(t,e){this._+="L"+(this._x1=+t)+","+(this._y1=+e)},quadraticCurveTo:function(t,e,n,r){this._+="Q"+ +t+","+ +e+","+(this._x1=+n)+","+(this._y1=+r)},bezierCurveTo:function(t,e,n,r,i,a){this._+="C"+ +t+","+ +e+","+ +n+","+ +r+","+(this._x1=+i)+","+(this._y1=+a)},arcTo:function(t,e,n,r,i){t=+t,e=+e,n=+n,r=+r,i=+i;var a=this._x1,o=this._y1,s=n-t,c=r-e,u=a-t,l=o-e,h=u*u+l*l;if(i<0)throw new Error("negative radius: "+i);if(null===this._x1)this._+="M"+(this._x1=t)+","+(this._y1=e);else if(h>1e-6)if(Math.abs(l*s-c*u)>1e-6&&i){var f=n-a,d=r-o,p=s*s+c*c,y=f*f+d*d,g=Math.sqrt(p),m=Math.sqrt(h),v=i*Math.tan((Pi-Math.acos((p+h-y)/(2*g*m)))/2),b=v/m,x=v/g;Math.abs(b-1)>1e-6&&(this._+="L"+(t+b*u)+","+(e+b*l)),this._+="A"+i+","+i+",0,0,"+ +(l*f>u*d)+","+(this._x1=t+x*s)+","+(this._y1=e+x*c)}else this._+="L"+(this._x1=t)+","+(this._y1=e);else;},arc:function(t,e,n,r,i,a){t=+t,e=+e,a=!!a;var o=(n=+n)*Math.cos(r),s=n*Math.sin(r),c=t+o,u=e+s,l=1^a,h=a?r-i:i-r;if(n<0)throw new Error("negative radius: "+n);null===this._x1?this._+="M"+c+","+u:(Math.abs(this._x1-c)>1e-6||Math.abs(this._y1-u)>1e-6)&&(this._+="L"+c+","+u),n&&(h<0&&(h=h%ji+ji),h>Yi?this._+="A"+n+","+n+",0,1,"+l+","+(t-o)+","+(e-s)+"A"+n+","+n+",0,1,"+l+","+(this._x1=c)+","+(this._y1=u):h>1e-6&&(this._+="A"+n+","+n+",0,"+ +(h>=Pi)+","+l+","+(this._x1=t+n*Math.cos(i))+","+(this._y1=e+n*Math.sin(i))))},rect:function(t,e,n,r){this._+="M"+(this._x0=this._x1=+t)+","+(this._y0=this._y1=+e)+"h"+ +n+"v"+ +r+"h"+-n+"Z"},toString:function(){return this._}};var $i=Ui;function qi(t){return t.source}function Wi(t){return t.target}function Hi(t){return t.radius}function Vi(t){return t.startAngle}function Gi(t){return t.endAngle}var Xi=function(){var t=qi,e=Wi,n=Hi,r=Vi,i=Gi,a=null;function o(){var o,s=Ri.call(arguments),c=t.apply(this,s),u=e.apply(this,s),l=+n.apply(this,(s[0]=c,s)),h=r.apply(this,s)-Ni,f=i.apply(this,s)-Ni,d=l*Ai(h),p=l*Mi(h),y=+n.apply(this,(s[0]=u,s)),g=r.apply(this,s)-Ni,m=i.apply(this,s)-Ni;if(a||(a=o=$i()),a.moveTo(d,p),a.arc(0,0,l,h,f),h===g&&f===m||(a.quadraticCurveTo(0,0,y*Ai(g),y*Mi(g)),a.arc(0,0,y,g,m)),a.quadraticCurveTo(0,0,d,p),a.closePath(),o)return a=null,o+""||null}return o.radius=function(t){return arguments.length?(n="function"==typeof t?t:Fi(+t),o):n},o.startAngle=function(t){return arguments.length?(r="function"==typeof t?t:Fi(+t),o):r},o.endAngle=function(t){return arguments.length?(i="function"==typeof t?t:Fi(+t),o):i},o.source=function(e){return arguments.length?(t=e,o):t},o.target=function(t){return arguments.length?(e=t,o):e},o.context=function(t){return arguments.length?(a=null==t?null:t,o):a},o};function Zi(){}function Ki(t,e){var n=new Zi;if(t instanceof Zi)t.each((function(t,e){n.set(e,t)}));else if(Array.isArray(t)){var r,i=-1,a=t.length;if(null==e)for(;++i<a;)n.set(i,t[i]);else for(;++i<a;)n.set(e(r=t[i],i,t),r)}else if(t)for(var o in t)n.set(o,t[o]);return n}Zi.prototype=Ki.prototype={constructor:Zi,has:function(t){return"$"+t in this},get:function(t){return this["$"+t]},set:function(t,e){return this["$"+t]=e,this},remove:function(t){var e="$"+t;return e in this&&delete this[e]},clear:function(){for(var t in this)"$"===t[0]&&delete this[t]},keys:function(){var t=[];for(var e in this)"$"===e[0]&&t.push(e.slice(1));return t},values:function(){var t=[];for(var e in this)"$"===e[0]&&t.push(this[e]);return t},entries:function(){var t=[];for(var e in this)"$"===e[0]&&t.push({key:e.slice(1),value:this[e]});return t},size:function(){var t=0;for(var e in this)"$"===e[0]&&++t;return t},empty:function(){for(var t in this)if("$"===t[0])return!1;return!0},each:function(t){for(var e in this)"$"===e[0]&&t(this[e],e.slice(1),this)}};var Qi=Ki,Ji=function(){var t,e,n,r=[],i=[];function a(n,i,o,s){if(i>=r.length)return null!=t&&n.sort(t),null!=e?e(n):n;for(var c,u,l,h=-1,f=n.length,d=r[i++],p=Qi(),y=o();++h<f;)(l=p.get(c=d(u=n[h])+""))?l.push(u):p.set(c,[u]);return p.each((function(t,e){s(y,e,a(t,i,o,s))})),y}return n={object:function(t){return a(t,0,ta,ea)},map:function(t){return a(t,0,na,ra)},entries:function(t){return function t(n,a){if(++a>r.length)return n;var o,s=i[a-1];return null!=e&&a>=r.length?o=n.entries():(o=[],n.each((function(e,n){o.push({key:n,values:t(e,a)})}))),null!=s?o.sort((function(t,e){return s(t.key,e.key)})):o}(a(t,0,na,ra),0)},key:function(t){return r.push(t),n},sortKeys:function(t){return i[r.length-1]=t,n},sortValues:function(e){return t=e,n},rollup:function(t){return e=t,n}}};function ta(){return{}}function ea(t,e,n){t[e]=n}function na(){return Qi()}function ra(t,e,n){t.set(e,n)}function ia(){}var aa=Qi.prototype;function oa(t,e){var n=new ia;if(t instanceof ia)t.each((function(t){n.add(t)}));else if(t){var r=-1,i=t.length;if(null==e)for(;++r<i;)n.add(t[r]);else for(;++r<i;)n.add(e(t[r],r,t))}return n}ia.prototype=oa.prototype={constructor:ia,has:aa.has,add:function(t){return this["$"+(t+="")]=t,this},remove:aa.remove,clear:aa.clear,values:aa.keys,size:aa.size,empty:aa.empty,each:aa.each};var sa=oa,ca=function(t){var e=[];for(var n in t)e.push(n);return e},ua=function(t){var e=[];for(var n in t)e.push(t[n]);return e},la=function(t){var e=[];for(var n in t)e.push({key:n,value:t[n]});return e},ha=Math.PI/180,fa=180/Math.PI;function da(t){if(t instanceof ga)return new ga(t.l,t.a,t.b,t.opacity);if(t instanceof Ta)return Ea(t);t instanceof Xe||(t=Ve(t));var e,n,r=xa(t.r),i=xa(t.g),a=xa(t.b),o=ma((.2225045*r+.7168786*i+.0606169*a)/1);return r===i&&i===a?e=n=o:(e=ma((.4360747*r+.3850649*i+.1430804*a)/.96422),n=ma((.0139322*r+.0971045*i+.7141733*a)/.82521)),new ga(116*o-16,500*(e-o),200*(o-n),t.opacity)}function pa(t,e){return new ga(t,0,0,null==e?1:e)}function ya(t,e,n,r){return 1===arguments.length?da(t):new ga(t,e,n,null==r?1:r)}function ga(t,e,n,r){this.l=+t,this.a=+e,this.b=+n,this.opacity=+r}function ma(t){return t>6/29*(6/29)*(6/29)?Math.pow(t,1/3):t/(6/29*3*(6/29))+4/29}function va(t){return t>6/29?t*t*t:6/29*3*(6/29)*(t-4/29)}function ba(t){return 255*(t<=.0031308?12.92*t:1.055*Math.pow(t,1/2.4)-.055)}function xa(t){return(t/=255)<=.04045?t/12.92:Math.pow((t+.055)/1.055,2.4)}function _a(t){if(t instanceof Ta)return new Ta(t.h,t.c,t.l,t.opacity);if(t instanceof ga||(t=da(t)),0===t.a&&0===t.b)return new Ta(NaN,0<t.l&&t.l<100?0:NaN,t.l,t.opacity);var e=Math.atan2(t.b,t.a)*fa;return new Ta(e<0?e+360:e,Math.sqrt(t.a*t.a+t.b*t.b),t.l,t.opacity)}function ka(t,e,n,r){return 1===arguments.length?_a(t):new Ta(n,e,t,null==r?1:r)}function wa(t,e,n,r){return 1===arguments.length?_a(t):new Ta(t,e,n,null==r?1:r)}function Ta(t,e,n,r){this.h=+t,this.c=+e,this.l=+n,this.opacity=+r}function Ea(t){if(isNaN(t.h))return new ga(t.l,0,0,t.opacity);var e=t.h*ha;return new ga(t.l,Math.cos(e)*t.c,Math.sin(e)*t.c,t.opacity)}Ae(ga,ya,Me(Oe,{brighter:function(t){return new ga(this.l+18*(null==t?1:t),this.a,this.b,this.opacity)},darker:function(t){return new ga(this.l-18*(null==t?1:t),this.a,this.b,this.opacity)},rgb:function(){var t=(this.l+16)/116,e=isNaN(this.a)?t:t+this.a/500,n=isNaN(this.b)?t:t-this.b/200;return new Xe(ba(3.1338561*(e=.96422*va(e))-1.6168667*(t=1*va(t))-.4906146*(n=.82521*va(n))),ba(-.9787684*e+1.9161415*t+.033454*n),ba(.0719453*e-.2289914*t+1.4052427*n),this.opacity)}})),Ae(Ta,wa,Me(Oe,{brighter:function(t){return new Ta(this.h,this.c,this.l+18*(null==t?1:t),this.opacity)},darker:function(t){return new Ta(this.h,this.c,this.l-18*(null==t?1:t),this.opacity)},rgb:function(){return Ea(this).rgb()}}));var Ca=-.29227,Sa=-1.7884503806,Aa=3.5172982438,Ma=-.6557636667999999;function Oa(t){if(t instanceof Ba)return new Ba(t.h,t.s,t.l,t.opacity);t instanceof Xe||(t=Ve(t));var e=t.r/255,n=t.g/255,r=t.b/255,i=(Ma*r+Sa*e-Aa*n)/(Ma+Sa-Aa),a=r-i,o=(1.97294*(n-i)-Ca*a)/-.90649,s=Math.sqrt(o*o+a*a)/(1.97294*i*(1-i)),c=s?Math.atan2(o,a)*fa-120:NaN;return new Ba(c<0?c+360:c,s,i,t.opacity)}function Na(t,e,n,r){return 1===arguments.length?Oa(t):new Ba(t,e,n,null==r?1:r)}function Ba(t,e,n,r){this.h=+t,this.s=+e,this.l=+n,this.opacity=+r}Ae(Ba,Na,Me(Oe,{brighter:function(t){return t=null==t?1/.7:Math.pow(1/.7,t),new Ba(this.h,this.s,this.l*t,this.opacity)},darker:function(t){return t=null==t?.7:Math.pow(.7,t),new Ba(this.h,this.s,this.l*t,this.opacity)},rgb:function(){var t=isNaN(this.h)?0:(this.h+120)*ha,e=+this.l,n=isNaN(this.s)?0:this.s*e*(1-e),r=Math.cos(t),i=Math.sin(t);return new Xe(255*(e+n*(-.14861*r+1.78277*i)),255*(e+n*(Ca*r+-.90649*i)),255*(e+n*(1.97294*r)),this.opacity)}}));var Da=Array.prototype.slice,La=function(t,e){return t-e},Ia=function(t){return function(){return t}},Ra=function(t,e){for(var n,r=-1,i=e.length;++r<i;)if(n=Fa(t,e[r]))return n;return 0};function Fa(t,e){for(var n=e[0],r=e[1],i=-1,a=0,o=t.length,s=o-1;a<o;s=a++){var c=t[a],u=c[0],l=c[1],h=t[s],f=h[0],d=h[1];if(Pa(c,h,e))return 0;l>r!=d>r&&n<(f-u)*(r-l)/(d-l)+u&&(i=-i)}return i}function Pa(t,e,n){var r,i,a,o;return function(t,e,n){return(e[0]-t[0])*(n[1]-t[1])==(n[0]-t[0])*(e[1]-t[1])}(t,e,n)&&(i=t[r=+(t[0]===e[0])],a=n[r],o=e[r],i<=a&&a<=o||o<=a&&a<=i)}var ja=function(){},Ya=[[],[[[1,1.5],[.5,1]]],[[[1.5,1],[1,1.5]]],[[[1.5,1],[.5,1]]],[[[1,.5],[1.5,1]]],[[[1,1.5],[.5,1]],[[1,.5],[1.5,1]]],[[[1,.5],[1,1.5]]],[[[1,.5],[.5,1]]],[[[.5,1],[1,.5]]],[[[1,1.5],[1,.5]]],[[[.5,1],[1,.5]],[[1.5,1],[1,1.5]]],[[[1.5,1],[1,.5]]],[[[.5,1],[1.5,1]]],[[[1,1.5],[1.5,1]]],[[[.5,1],[1,1.5]]],[]],za=function(){var t=1,e=1,n=O,r=s;function i(t){var e=n(t);if(Array.isArray(e))e=e.slice().sort(La);else{var r=m(t),i=r[0],o=r[1];e=M(i,o,e),e=w(Math.floor(i/e)*e,Math.floor(o/e)*e,e)}return e.map((function(e){return a(t,e)}))}function a(n,i){var a=[],s=[];return function(n,r,i){var a,s,c,u,l,h,f=new Array,d=new Array;a=s=-1,u=n[0]>=r,Ya[u<<1].forEach(p);for(;++a<t-1;)c=u,u=n[a+1]>=r,Ya[c|u<<1].forEach(p);Ya[u<<0].forEach(p);for(;++s<e-1;){for(a=-1,u=n[s*t+t]>=r,l=n[s*t]>=r,Ya[u<<1|l<<2].forEach(p);++a<t-1;)c=u,u=n[s*t+t+a+1]>=r,h=l,l=n[s*t+a+1]>=r,Ya[c|u<<1|l<<2|h<<3].forEach(p);Ya[u|l<<3].forEach(p)}a=-1,l=n[s*t]>=r,Ya[l<<2].forEach(p);for(;++a<t-1;)h=l,l=n[s*t+a+1]>=r,Ya[l<<2|h<<3].forEach(p);function p(t){var e,n,r=[t[0][0]+a,t[0][1]+s],c=[t[1][0]+a,t[1][1]+s],u=o(r),l=o(c);(e=d[u])?(n=f[l])?(delete d[e.end],delete f[n.start],e===n?(e.ring.push(c),i(e.ring)):f[e.start]=d[n.end]={start:e.start,end:n.end,ring:e.ring.concat(n.ring)}):(delete d[e.end],e.ring.push(c),d[e.end=l]=e):(e=f[l])?(n=d[u])?(delete f[e.start],delete d[n.end],e===n?(e.ring.push(c),i(e.ring)):f[n.start]=d[e.end]={start:n.start,end:e.end,ring:n.ring.concat(e.ring)}):(delete f[e.start],e.ring.unshift(r),f[e.start=u]=e):f[u]=d[l]={start:u,end:l,ring:[r,c]}}Ya[l<<3].forEach(p)}(n,i,(function(t){r(t,n,i),function(t){for(var e=0,n=t.length,r=t[n-1][1]*t[0][0]-t[n-1][0]*t[0][1];++e<n;)r+=t[e-1][1]*t[e][0]-t[e-1][0]*t[e][1];return r}(t)>0?a.push([t]):s.push(t)})),s.forEach((function(t){for(var e,n=0,r=a.length;n<r;++n)if(-1!==Ra((e=a[n])[0],t))return void e.push(t)})),{type:"MultiPolygon",value:i,coordinates:a}}function o(e){return 2*e[0]+e[1]*(t+1)*4}function s(n,r,i){n.forEach((function(n){var a,o=n[0],s=n[1],c=0|o,u=0|s,l=r[u*t+c];o>0&&o<t&&c===o&&(a=r[u*t+c-1],n[0]=o+(i-a)/(l-a)-.5),s>0&&s<e&&u===s&&(a=r[(u-1)*t+c],n[1]=s+(i-a)/(l-a)-.5)}))}return i.contour=a,i.size=function(n){if(!arguments.length)return[t,e];var r=Math.ceil(n[0]),a=Math.ceil(n[1]);if(!(r>0&&a>0))throw new Error("invalid size");return t=r,e=a,i},i.thresholds=function(t){return arguments.length?(n="function"==typeof t?t:Array.isArray(t)?Ia(Da.call(t)):Ia(t),i):n},i.smooth=function(t){return arguments.length?(r=t?s:ja,i):r===s},i};function Ua(t,e,n){for(var r=t.width,i=t.height,a=1+(n<<1),o=0;o<i;++o)for(var s=0,c=0;s<r+n;++s)s<r&&(c+=t.data[s+o*r]),s>=n&&(s>=a&&(c-=t.data[s-a+o*r]),e.data[s-n+o*r]=c/Math.min(s+1,r-1+a-s,a))}function $a(t,e,n){for(var r=t.width,i=t.height,a=1+(n<<1),o=0;o<r;++o)for(var s=0,c=0;s<i+n;++s)s<i&&(c+=t.data[o+s*r]),s>=n&&(s>=a&&(c-=t.data[o+(s-a)*r]),e.data[o+(s-n)*r]=c/Math.min(s+1,i-1+a-s,a))}function qa(t){return t[0]}function Wa(t){return t[1]}function Ha(){return 1}var Va=function(){var t=qa,e=Wa,n=Ha,r=960,i=500,a=20,o=2,s=3*a,c=r+2*s>>o,u=i+2*s>>o,l=Ia(20);function h(r){var i=new Float32Array(c*u),h=new Float32Array(c*u);r.forEach((function(r,a,l){var h=+t(r,a,l)+s>>o,f=+e(r,a,l)+s>>o,d=+n(r,a,l);h>=0&&h<c&&f>=0&&f<u&&(i[h+f*c]+=d)})),Ua({width:c,height:u,data:i},{width:c,height:u,data:h},a>>o),$a({width:c,height:u,data:h},{width:c,height:u,data:i},a>>o),Ua({width:c,height:u,data:i},{width:c,height:u,data:h},a>>o),$a({width:c,height:u,data:h},{width:c,height:u,data:i},a>>o),Ua({width:c,height:u,data:i},{width:c,height:u,data:h},a>>o),$a({width:c,height:u,data:h},{width:c,height:u,data:i},a>>o);var d=l(i);if(!Array.isArray(d)){var p=I(i);d=M(0,p,d),(d=w(0,Math.floor(p/d)*d,d)).shift()}return za().thresholds(d).size([c,u])(i).map(f)}function f(t){return t.value*=Math.pow(2,-2*o),t.coordinates.forEach(d),t}function d(t){t.forEach(p)}function p(t){t.forEach(y)}function y(t){t[0]=t[0]*Math.pow(2,o)-s,t[1]=t[1]*Math.pow(2,o)-s}function g(){return c=r+2*(s=3*a)>>o,u=i+2*s>>o,h}return h.x=function(e){return arguments.length?(t="function"==typeof e?e:Ia(+e),h):t},h.y=function(t){return arguments.length?(e="function"==typeof t?t:Ia(+t),h):e},h.weight=function(t){return arguments.length?(n="function"==typeof t?t:Ia(+t),h):n},h.size=function(t){if(!arguments.length)return[r,i];var e=Math.ceil(t[0]),n=Math.ceil(t[1]);if(!(e>=0||e>=0))throw new Error("invalid size");return r=e,i=n,g()},h.cellSize=function(t){if(!arguments.length)return 1<<o;if(!((t=+t)>=1))throw new Error("invalid cell size");return o=Math.floor(Math.log(t)/Math.LN2),g()},h.thresholds=function(t){return arguments.length?(l="function"==typeof t?t:Array.isArray(t)?Ia(Da.call(t)):Ia(t),h):l},h.bandwidth=function(t){if(!arguments.length)return Math.sqrt(a*(a+1));if(!((t=+t)>=0))throw new Error("invalid bandwidth");return a=Math.round((Math.sqrt(4*t*t+1)-1)/2),g()},h},Ga=function(t){return function(){return t}};function Xa(t,e,n,r,i,a,o,s,c,u){this.target=t,this.type=e,this.subject=n,this.identifier=r,this.active=i,this.x=a,this.y=o,this.dx=s,this.dy=c,this._=u}function Za(){return!ue.ctrlKey&&!ue.button}function Ka(){return this.parentNode}function Qa(t){return null==t?{x:ue.x,y:ue.y}:t}function Ja(){return navigator.maxTouchPoints||"ontouchstart"in this}Xa.prototype.on=function(){var t=this._.on.apply(this._,arguments);return t===this._?this:t};var to=function(){var t,e,n,r,i=Za,a=Ka,o=Qa,s=Ja,c={},u=ht("start","drag","end"),l=0,h=0;function f(t){t.on("mousedown.drag",d).filter(s).on("touchstart.drag",g).on("touchmove.drag",m).on("touchend.drag touchcancel.drag",v).style("touch-action","none").style("-webkit-tap-highlight-color","rgba(0,0,0,0)")}function d(){if(!r&&i.apply(this,arguments)){var o=b("mouse",a.apply(this,arguments),Dn,this,arguments);o&&(we(ue.view).on("mousemove.drag",p,!0).on("mouseup.drag",y,!0),Ce(ue.view),Te(),n=!1,t=ue.clientX,e=ue.clientY,o("start"))}}function p(){if(Ee(),!n){var r=ue.clientX-t,i=ue.clientY-e;n=r*r+i*i>h}c.mouse("drag")}function y(){we(ue.view).on("mousemove.drag mouseup.drag",null),Se(ue.view,n),Ee(),c.mouse("end")}function g(){if(i.apply(this,arguments)){var t,e,n=ue.changedTouches,r=a.apply(this,arguments),o=n.length;for(t=0;t<o;++t)(e=b(n[t].identifier,r,Bn,this,arguments))&&(Te(),e("start"))}}function m(){var t,e,n=ue.changedTouches,r=n.length;for(t=0;t<r;++t)(e=c[n[t].identifier])&&(Ee(),e("drag"))}function v(){var t,e,n=ue.changedTouches,i=n.length;for(r&&clearTimeout(r),r=setTimeout((function(){r=null}),500),t=0;t<i;++t)(e=c[n[t].identifier])&&(Te(),e("end"))}function b(t,e,n,r,i){var a,s,h,d=n(e,t),p=u.copy();if(ye(new Xa(f,"beforestart",a,t,l,d[0],d[1],0,0,p),(function(){return null!=(ue.subject=a=o.apply(r,i))&&(s=a.x-d[0]||0,h=a.y-d[1]||0,!0)})))return function o(u){var y,g=d;switch(u){case"start":c[t]=o,y=l++;break;case"end":delete c[t],--l;case"drag":d=n(e,t),y=l}ye(new Xa(f,u,a,t,y,d[0]+s,d[1]+h,d[0]-g[0],d[1]-g[1],p),p.apply,p,[u,r,i])}}return f.filter=function(t){return arguments.length?(i="function"==typeof t?t:Ga(!!t),f):i},f.container=function(t){return arguments.length?(a="function"==typeof t?t:Ga(t),f):a},f.subject=function(t){return arguments.length?(o="function"==typeof t?t:Ga(t),f):o},f.touchable=function(t){return arguments.length?(s="function"==typeof t?t:Ga(!!t),f):s},f.on=function(){var t=u.on.apply(u,arguments);return t===u?f:t},f.clickDistance=function(t){return arguments.length?(h=(t=+t)*t,f):Math.sqrt(h)},f},eo={},no={};function ro(t){return new Function("d","return {"+t.map((function(t,e){return JSON.stringify(t)+": d["+e+'] || ""'})).join(",")+"}")}function io(t){var e=Object.create(null),n=[];return t.forEach((function(t){for(var r in t)r in e||n.push(e[r]=r)})),n}function ao(t,e){var n=t+"",r=n.length;return r<e?new Array(e-r+1).join(0)+n:n}function oo(t){var e,n=t.getUTCHours(),r=t.getUTCMinutes(),i=t.getUTCSeconds(),a=t.getUTCMilliseconds();return isNaN(t)?"Invalid Date":((e=t.getUTCFullYear())<0?"-"+ao(-e,6):e>9999?"+"+ao(e,6):ao(e,4))+"-"+ao(t.getUTCMonth()+1,2)+"-"+ao(t.getUTCDate(),2)+(a?"T"+ao(n,2)+":"+ao(r,2)+":"+ao(i,2)+"."+ao(a,3)+"Z":i?"T"+ao(n,2)+":"+ao(r,2)+":"+ao(i,2)+"Z":r||n?"T"+ao(n,2)+":"+ao(r,2)+"Z":"")}var so=function(t){var e=new RegExp('["'+t+"\n\r]"),n=t.charCodeAt(0);function r(t,e){var r,i=[],a=t.length,o=0,s=0,c=a<=0,u=!1;function l(){if(c)return no;if(u)return u=!1,eo;var e,r,i=o;if(34===t.charCodeAt(i)){for(;o++<a&&34!==t.charCodeAt(o)||34===t.charCodeAt(++o););return(e=o)>=a?c=!0:10===(r=t.charCodeAt(o++))?u=!0:13===r&&(u=!0,10===t.charCodeAt(o)&&++o),t.slice(i+1,e-1).replace(/""/g,'"')}for(;o<a;){if(10===(r=t.charCodeAt(e=o++)))u=!0;else if(13===r)u=!0,10===t.charCodeAt(o)&&++o;else if(r!==n)continue;return t.slice(i,e)}return c=!0,t.slice(i,a)}for(10===t.charCodeAt(a-1)&&--a,13===t.charCodeAt(a-1)&&--a;(r=l())!==no;){for(var h=[];r!==eo&&r!==no;)h.push(r),r=l();e&&null==(h=e(h,s++))||i.push(h)}return i}function i(e,n){return e.map((function(e){return n.map((function(t){return o(e[t])})).join(t)}))}function a(e){return e.map(o).join(t)}function o(t){return null==t?"":t instanceof Date?oo(t):e.test(t+="")?'"'+t.replace(/"/g,'""')+'"':t}return{parse:function(t,e){var n,i,a=r(t,(function(t,r){if(n)return n(t,r-1);i=t,n=e?function(t,e){var n=ro(t);return function(r,i){return e(n(r),i,t)}}(t,e):ro(t)}));return a.columns=i||[],a},parseRows:r,format:function(e,n){return null==n&&(n=io(e)),[n.map(o).join(t)].concat(i(e,n)).join("\n")},formatBody:function(t,e){return null==e&&(e=io(t)),i(t,e).join("\n")},formatRows:function(t){return t.map(a).join("\n")},formatRow:a,formatValue:o}},co=so(","),uo=co.parse,lo=co.parseRows,ho=co.format,fo=co.formatBody,po=co.formatRows,yo=co.formatRow,go=co.formatValue,mo=so("\t"),vo=mo.parse,bo=mo.parseRows,xo=mo.format,_o=mo.formatBody,ko=mo.formatRows,wo=mo.formatRow,To=mo.formatValue;function Eo(t){for(var e in t){var n,r,i=t[e].trim();if(i)if("true"===i)i=!0;else if("false"===i)i=!1;else if("NaN"===i)i=NaN;else if(isNaN(n=+i)){if(!(r=i.match(/^([-+]\d{2})?\d{4}(-\d{2}(-\d{2})?)?(T\d{2}:\d{2}(:\d{2}(\.\d{3})?)?(Z|[-+]\d{2}:\d{2})?)?$/)))continue;Co&&r[4]&&!r[7]&&(i=i.replace(/-/g,"/").replace(/T/," ")),i=new Date(i)}else i=n;else i=null;t[e]=i}return t}var Co=new Date("2019-01-01T00:00").getHours()||new Date("2019-07-01T00:00").getHours();function So(t){return+t}function Ao(t){return t*t}function Mo(t){return t*(2-t)}function Oo(t){return((t*=2)<=1?t*t:--t*(2-t)+1)/2}var No=function t(e){function n(t){return Math.pow(t,e)}return e=+e,n.exponent=t,n}(3),Bo=function t(e){function n(t){return 1-Math.pow(1-t,e)}return e=+e,n.exponent=t,n}(3),Do=function t(e){function n(t){return((t*=2)<=1?Math.pow(t,e):2-Math.pow(2-t,e))/2}return e=+e,n.exponent=t,n}(3),Lo=Math.PI,Io=Lo/2;function Ro(t){return 1==+t?1:1-Math.cos(t*Io)}function Fo(t){return Math.sin(t*Io)}function Po(t){return(1-Math.cos(Lo*t))/2}function jo(t){return 1.0009775171065494*(Math.pow(2,-10*t)-.0009765625)}function Yo(t){return jo(1-+t)}function zo(t){return 1-jo(t)}function Uo(t){return((t*=2)<=1?jo(1-t):2-jo(t-1))/2}function $o(t){return 1-Math.sqrt(1-t*t)}function qo(t){return Math.sqrt(1- --t*t)}function Wo(t){return((t*=2)<=1?1-Math.sqrt(1-t*t):Math.sqrt(1-(t-=2)*t)+1)/2}function Ho(t){return 1-Vo(1-t)}function Vo(t){return(t=+t)<4/11?7.5625*t*t:t<8/11?7.5625*(t-=6/11)*t+3/4:t<10/11?7.5625*(t-=9/11)*t+15/16:7.5625*(t-=21/22)*t+63/64}function Go(t){return((t*=2)<=1?1-Vo(1-t):Vo(t-1)+1)/2}var Xo=function t(e){function n(t){return(t=+t)*t*(e*(t-1)+t)}return e=+e,n.overshoot=t,n}(1.70158),Zo=function t(e){function n(t){return--t*t*((t+1)*e+t)+1}return e=+e,n.overshoot=t,n}(1.70158),Ko=function t(e){function n(t){return((t*=2)<1?t*t*((e+1)*t-e):(t-=2)*t*((e+1)*t+e)+2)/2}return e=+e,n.overshoot=t,n}(1.70158),Qo=2*Math.PI,Jo=function t(e,n){var r=Math.asin(1/(e=Math.max(1,e)))*(n/=Qo);function i(t){return e*jo(- --t)*Math.sin((r-t)/n)}return i.amplitude=function(e){return t(e,n*Qo)},i.period=function(n){return t(e,n)},i}(1,.3),ts=function t(e,n){var r=Math.asin(1/(e=Math.max(1,e)))*(n/=Qo);function i(t){return 1-e*jo(t=+t)*Math.sin((t+r)/n)}return i.amplitude=function(e){return t(e,n*Qo)},i.period=function(n){return t(e,n)},i}(1,.3),es=function t(e,n){var r=Math.asin(1/(e=Math.max(1,e)))*(n/=Qo);function i(t){return((t=2*t-1)<0?e*jo(-t)*Math.sin((r-t)/n):2-e*jo(t)*Math.sin((r+t)/n))/2}return i.amplitude=function(e){return t(e,n*Qo)},i.period=function(n){return t(e,n)},i}(1,.3);function ns(t){if(!t.ok)throw new Error(t.status+" "+t.statusText);return t.blob()}var rs=function(t,e){return fetch(t,e).then(ns)};function is(t){if(!t.ok)throw new Error(t.status+" "+t.statusText);return t.arrayBuffer()}var as=function(t,e){return fetch(t,e).then(is)};function os(t){if(!t.ok)throw new Error(t.status+" "+t.statusText);return t.text()}var ss=function(t,e){return fetch(t,e).then(os)};function cs(t){return function(e,n,r){return 2===arguments.length&&"function"==typeof n&&(r=n,n=void 0),ss(e,n).then((function(e){return t(e,r)}))}}function us(t,e,n,r){3===arguments.length&&"function"==typeof n&&(r=n,n=void 0);var i=so(t);return ss(e,n).then((function(t){return i.parse(t,r)}))}var ls=cs(uo),hs=cs(vo),fs=function(t,e){return new Promise((function(n,r){var i=new Image;for(var a in e)i[a]=e[a];i.onerror=r,i.onload=function(){n(i)},i.src=t}))};function ds(t){if(!t.ok)throw new Error(t.status+" "+t.statusText);if(204!==t.status&&205!==t.status)return t.json()}var ps=function(t,e){return fetch(t,e).then(ds)};function ys(t){return function(e,n){return ss(e,n).then((function(e){return(new DOMParser).parseFromString(e,t)}))}}var gs=ys("application/xml"),ms=ys("text/html"),vs=ys("image/svg+xml"),bs=function(t,e){var n;function r(){var r,i,a=n.length,o=0,s=0;for(r=0;r<a;++r)o+=(i=n[r]).x,s+=i.y;for(o=o/a-t,s=s/a-e,r=0;r<a;++r)(i=n[r]).x-=o,i.y-=s}return null==t&&(t=0),null==e&&(e=0),r.initialize=function(t){n=t},r.x=function(e){return arguments.length?(t=+e,r):t},r.y=function(t){return arguments.length?(e=+t,r):e},r},xs=function(t){return function(){return t}},_s=function(){return 1e-6*(Math.random()-.5)};function ks(t,e,n,r){if(isNaN(e)||isNaN(n))return t;var i,a,o,s,c,u,l,h,f,d=t._root,p={data:r},y=t._x0,g=t._y0,m=t._x1,v=t._y1;if(!d)return t._root=p,t;for(;d.length;)if((u=e>=(a=(y+m)/2))?y=a:m=a,(l=n>=(o=(g+v)/2))?g=o:v=o,i=d,!(d=d[h=l<<1|u]))return i[h]=p,t;if(s=+t._x.call(null,d.data),c=+t._y.call(null,d.data),e===s&&n===c)return p.next=d,i?i[h]=p:t._root=p,t;do{i=i?i[h]=new Array(4):t._root=new Array(4),(u=e>=(a=(y+m)/2))?y=a:m=a,(l=n>=(o=(g+v)/2))?g=o:v=o}while((h=l<<1|u)==(f=(c>=o)<<1|s>=a));return i[f]=d,i[h]=p,t}var ws=function(t,e,n,r,i){this.node=t,this.x0=e,this.y0=n,this.x1=r,this.y1=i};function Ts(t){return t[0]}function Es(t){return t[1]}function Cs(t,e,n){var r=new Ss(null==e?Ts:e,null==n?Es:n,NaN,NaN,NaN,NaN);return null==t?r:r.addAll(t)}function Ss(t,e,n,r,i,a){this._x=t,this._y=e,this._x0=n,this._y0=r,this._x1=i,this._y1=a,this._root=void 0}function As(t){for(var e={data:t.data},n=e;t=t.next;)n=n.next={data:t.data};return e}var Ms=Cs.prototype=Ss.prototype;function Os(t){return t.x+t.vx}function Ns(t){return t.y+t.vy}Ms.copy=function(){var t,e,n=new Ss(this._x,this._y,this._x0,this._y0,this._x1,this._y1),r=this._root;if(!r)return n;if(!r.length)return n._root=As(r),n;for(t=[{source:r,target:n._root=new Array(4)}];r=t.pop();)for(var i=0;i<4;++i)(e=r.source[i])&&(e.length?t.push({source:e,target:r.target[i]=new Array(4)}):r.target[i]=As(e));return n},Ms.add=function(t){var e=+this._x.call(null,t),n=+this._y.call(null,t);return ks(this.cover(e,n),e,n,t)},Ms.addAll=function(t){var e,n,r,i,a=t.length,o=new Array(a),s=new Array(a),c=1/0,u=1/0,l=-1/0,h=-1/0;for(n=0;n<a;++n)isNaN(r=+this._x.call(null,e=t[n]))||isNaN(i=+this._y.call(null,e))||(o[n]=r,s[n]=i,r<c&&(c=r),r>l&&(l=r),i<u&&(u=i),i>h&&(h=i));if(c>l||u>h)return this;for(this.cover(c,u).cover(l,h),n=0;n<a;++n)ks(this,o[n],s[n],t[n]);return this},Ms.cover=function(t,e){if(isNaN(t=+t)||isNaN(e=+e))return this;var n=this._x0,r=this._y0,i=this._x1,a=this._y1;if(isNaN(n))i=(n=Math.floor(t))+1,a=(r=Math.floor(e))+1;else{for(var o,s,c=i-n,u=this._root;n>t||t>=i||r>e||e>=a;)switch(s=(e<r)<<1|t<n,(o=new Array(4))[s]=u,u=o,c*=2,s){case 0:i=n+c,a=r+c;break;case 1:n=i-c,a=r+c;break;case 2:i=n+c,r=a-c;break;case 3:n=i-c,r=a-c}this._root&&this._root.length&&(this._root=u)}return this._x0=n,this._y0=r,this._x1=i,this._y1=a,this},Ms.data=function(){var t=[];return this.visit((function(e){if(!e.length)do{t.push(e.data)}while(e=e.next)})),t},Ms.extent=function(t){return arguments.length?this.cover(+t[0][0],+t[0][1]).cover(+t[1][0],+t[1][1]):isNaN(this._x0)?void 0:[[this._x0,this._y0],[this._x1,this._y1]]},Ms.find=function(t,e,n){var r,i,a,o,s,c,u,l=this._x0,h=this._y0,f=this._x1,d=this._y1,p=[],y=this._root;for(y&&p.push(new ws(y,l,h,f,d)),null==n?n=1/0:(l=t-n,h=e-n,f=t+n,d=e+n,n*=n);c=p.pop();)if(!(!(y=c.node)||(i=c.x0)>f||(a=c.y0)>d||(o=c.x1)<l||(s=c.y1)<h))if(y.length){var g=(i+o)/2,m=(a+s)/2;p.push(new ws(y[3],g,m,o,s),new ws(y[2],i,m,g,s),new ws(y[1],g,a,o,m),new ws(y[0],i,a,g,m)),(u=(e>=m)<<1|t>=g)&&(c=p[p.length-1],p[p.length-1]=p[p.length-1-u],p[p.length-1-u]=c)}else{var v=t-+this._x.call(null,y.data),b=e-+this._y.call(null,y.data),x=v*v+b*b;if(x<n){var _=Math.sqrt(n=x);l=t-_,h=e-_,f=t+_,d=e+_,r=y.data}}return r},Ms.remove=function(t){if(isNaN(a=+this._x.call(null,t))||isNaN(o=+this._y.call(null,t)))return this;var e,n,r,i,a,o,s,c,u,l,h,f,d=this._root,p=this._x0,y=this._y0,g=this._x1,m=this._y1;if(!d)return this;if(d.length)for(;;){if((u=a>=(s=(p+g)/2))?p=s:g=s,(l=o>=(c=(y+m)/2))?y=c:m=c,e=d,!(d=d[h=l<<1|u]))return this;if(!d.length)break;(e[h+1&3]||e[h+2&3]||e[h+3&3])&&(n=e,f=h)}for(;d.data!==t;)if(r=d,!(d=d.next))return this;return(i=d.next)&&delete d.next,r?(i?r.next=i:delete r.next,this):e?(i?e[h]=i:delete e[h],(d=e[0]||e[1]||e[2]||e[3])&&d===(e[3]||e[2]||e[1]||e[0])&&!d.length&&(n?n[f]=d:this._root=d),this):(this._root=i,this)},Ms.removeAll=function(t){for(var e=0,n=t.length;e<n;++e)this.remove(t[e]);return this},Ms.root=function(){return this._root},Ms.size=function(){var t=0;return this.visit((function(e){if(!e.length)do{++t}while(e=e.next)})),t},Ms.visit=function(t){var e,n,r,i,a,o,s=[],c=this._root;for(c&&s.push(new ws(c,this._x0,this._y0,this._x1,this._y1));e=s.pop();)if(!t(c=e.node,r=e.x0,i=e.y0,a=e.x1,o=e.y1)&&c.length){var u=(r+a)/2,l=(i+o)/2;(n=c[3])&&s.push(new ws(n,u,l,a,o)),(n=c[2])&&s.push(new ws(n,r,l,u,o)),(n=c[1])&&s.push(new ws(n,u,i,a,l)),(n=c[0])&&s.push(new ws(n,r,i,u,l))}return this},Ms.visitAfter=function(t){var e,n=[],r=[];for(this._root&&n.push(new ws(this._root,this._x0,this._y0,this._x1,this._y1));e=n.pop();){var i=e.node;if(i.length){var a,o=e.x0,s=e.y0,c=e.x1,u=e.y1,l=(o+c)/2,h=(s+u)/2;(a=i[0])&&n.push(new ws(a,o,s,l,h)),(a=i[1])&&n.push(new ws(a,l,s,c,h)),(a=i[2])&&n.push(new ws(a,o,h,l,u)),(a=i[3])&&n.push(new ws(a,l,h,c,u))}r.push(e)}for(;e=r.pop();)t(e.node,e.x0,e.y0,e.x1,e.y1);return this},Ms.x=function(t){return arguments.length?(this._x=t,this):this._x},Ms.y=function(t){return arguments.length?(this._y=t,this):this._y};var Bs=function(t){var e,n,r=1,i=1;function a(){for(var t,a,s,c,u,l,h,f=e.length,d=0;d<i;++d)for(a=Cs(e,Os,Ns).visitAfter(o),t=0;t<f;++t)s=e[t],l=n[s.index],h=l*l,c=s.x+s.vx,u=s.y+s.vy,a.visit(p);function p(t,e,n,i,a){var o=t.data,f=t.r,d=l+f;if(!o)return e>c+d||i<c-d||n>u+d||a<u-d;if(o.index>s.index){var p=c-o.x-o.vx,y=u-o.y-o.vy,g=p*p+y*y;g<d*d&&(0===p&&(g+=(p=_s())*p),0===y&&(g+=(y=_s())*y),g=(d-(g=Math.sqrt(g)))/g*r,s.vx+=(p*=g)*(d=(f*=f)/(h+f)),s.vy+=(y*=g)*d,o.vx-=p*(d=1-d),o.vy-=y*d)}}}function o(t){if(t.data)return t.r=n[t.data.index];for(var e=t.r=0;e<4;++e)t[e]&&t[e].r>t.r&&(t.r=t[e].r)}function s(){if(e){var r,i,a=e.length;for(n=new Array(a),r=0;r<a;++r)i=e[r],n[i.index]=+t(i,r,e)}}return"function"!=typeof t&&(t=xs(null==t?1:+t)),a.initialize=function(t){e=t,s()},a.iterations=function(t){return arguments.length?(i=+t,a):i},a.strength=function(t){return arguments.length?(r=+t,a):r},a.radius=function(e){return arguments.length?(t="function"==typeof e?e:xs(+e),s(),a):t},a};function Ds(t){return t.index}function Ls(t,e){var n=t.get(e);if(!n)throw new Error("missing: "+e);return n}var Is=function(t){var e,n,r,i,a,o=Ds,s=function(t){return 1/Math.min(i[t.source.index],i[t.target.index])},c=xs(30),u=1;function l(r){for(var i=0,o=t.length;i<u;++i)for(var s,c,l,h,f,d,p,y=0;y<o;++y)c=(s=t[y]).source,h=(l=s.target).x+l.vx-c.x-c.vx||_s(),f=l.y+l.vy-c.y-c.vy||_s(),h*=d=((d=Math.sqrt(h*h+f*f))-n[y])/d*r*e[y],f*=d,l.vx-=h*(p=a[y]),l.vy-=f*p,c.vx+=h*(p=1-p),c.vy+=f*p}function h(){if(r){var s,c,u=r.length,l=t.length,h=Qi(r,o);for(s=0,i=new Array(u);s<l;++s)(c=t[s]).index=s,"object"!=typeof c.source&&(c.source=Ls(h,c.source)),"object"!=typeof c.target&&(c.target=Ls(h,c.target)),i[c.source.index]=(i[c.source.index]||0)+1,i[c.target.index]=(i[c.target.index]||0)+1;for(s=0,a=new Array(l);s<l;++s)c=t[s],a[s]=i[c.source.index]/(i[c.source.index]+i[c.target.index]);e=new Array(l),f(),n=new Array(l),d()}}function f(){if(r)for(var n=0,i=t.length;n<i;++n)e[n]=+s(t[n],n,t)}function d(){if(r)for(var e=0,i=t.length;e<i;++e)n[e]=+c(t[e],e,t)}return null==t&&(t=[]),l.initialize=function(t){r=t,h()},l.links=function(e){return arguments.length?(t=e,h(),l):t},l.id=function(t){return arguments.length?(o=t,l):o},l.iterations=function(t){return arguments.length?(u=+t,l):u},l.strength=function(t){return arguments.length?(s="function"==typeof t?t:xs(+t),f(),l):s},l.distance=function(t){return arguments.length?(c="function"==typeof t?t:xs(+t),d(),l):c},l};function Rs(t){return t.x}function Fs(t){return t.y}var Ps=Math.PI*(3-Math.sqrt(5)),js=function(t){var e,n=1,r=.001,i=1-Math.pow(r,1/300),a=0,o=.6,s=Qi(),c=Wn(l),u=ht("tick","end");function l(){h(),u.call("tick",e),n<r&&(c.stop(),u.call("end",e))}function h(r){var c,u,l=t.length;void 0===r&&(r=1);for(var h=0;h<r;++h)for(n+=(a-n)*i,s.each((function(t){t(n)})),c=0;c<l;++c)null==(u=t[c]).fx?u.x+=u.vx*=o:(u.x=u.fx,u.vx=0),null==u.fy?u.y+=u.vy*=o:(u.y=u.fy,u.vy=0);return e}function f(){for(var e,n=0,r=t.length;n<r;++n){if((e=t[n]).index=n,null!=e.fx&&(e.x=e.fx),null!=e.fy&&(e.y=e.fy),isNaN(e.x)||isNaN(e.y)){var i=10*Math.sqrt(n),a=n*Ps;e.x=i*Math.cos(a),e.y=i*Math.sin(a)}(isNaN(e.vx)||isNaN(e.vy))&&(e.vx=e.vy=0)}}function d(e){return e.initialize&&e.initialize(t),e}return null==t&&(t=[]),f(),e={tick:h,restart:function(){return c.restart(l),e},stop:function(){return c.stop(),e},nodes:function(n){return arguments.length?(t=n,f(),s.each(d),e):t},alpha:function(t){return arguments.length?(n=+t,e):n},alphaMin:function(t){return arguments.length?(r=+t,e):r},alphaDecay:function(t){return arguments.length?(i=+t,e):+i},alphaTarget:function(t){return arguments.length?(a=+t,e):a},velocityDecay:function(t){return arguments.length?(o=1-t,e):1-o},force:function(t,n){return arguments.length>1?(null==n?s.remove(t):s.set(t,d(n)),e):s.get(t)},find:function(e,n,r){var i,a,o,s,c,u=0,l=t.length;for(null==r?r=1/0:r*=r,u=0;u<l;++u)(o=(i=e-(s=t[u]).x)*i+(a=n-s.y)*a)<r&&(c=s,r=o);return c},on:function(t,n){return arguments.length>1?(u.on(t,n),e):u.on(t)}}},Ys=function(){var t,e,n,r,i=xs(-30),a=1,o=1/0,s=.81;function c(r){var i,a=t.length,o=Cs(t,Rs,Fs).visitAfter(l);for(n=r,i=0;i<a;++i)e=t[i],o.visit(h)}function u(){if(t){var e,n,a=t.length;for(r=new Array(a),e=0;e<a;++e)n=t[e],r[n.index]=+i(n,e,t)}}function l(t){var e,n,i,a,o,s=0,c=0;if(t.length){for(i=a=o=0;o<4;++o)(e=t[o])&&(n=Math.abs(e.value))&&(s+=e.value,c+=n,i+=n*e.x,a+=n*e.y);t.x=i/c,t.y=a/c}else{(e=t).x=e.data.x,e.y=e.data.y;do{s+=r[e.data.index]}while(e=e.next)}t.value=s}function h(t,i,c,u){if(!t.value)return!0;var l=t.x-e.x,h=t.y-e.y,f=u-i,d=l*l+h*h;if(f*f/s<d)return d<o&&(0===l&&(d+=(l=_s())*l),0===h&&(d+=(h=_s())*h),d<a&&(d=Math.sqrt(a*d)),e.vx+=l*t.value*n/d,e.vy+=h*t.value*n/d),!0;if(!(t.length||d>=o)){(t.data!==e||t.next)&&(0===l&&(d+=(l=_s())*l),0===h&&(d+=(h=_s())*h),d<a&&(d=Math.sqrt(a*d)));do{t.data!==e&&(f=r[t.data.index]*n/d,e.vx+=l*f,e.vy+=h*f)}while(t=t.next)}}return c.initialize=function(e){t=e,u()},c.strength=function(t){return arguments.length?(i="function"==typeof t?t:xs(+t),u(),c):i},c.distanceMin=function(t){return arguments.length?(a=t*t,c):Math.sqrt(a)},c.distanceMax=function(t){return arguments.length?(o=t*t,c):Math.sqrt(o)},c.theta=function(t){return arguments.length?(s=t*t,c):Math.sqrt(s)},c},zs=function(t,e,n){var r,i,a,o=xs(.1);function s(t){for(var o=0,s=r.length;o<s;++o){var c=r[o],u=c.x-e||1e-6,l=c.y-n||1e-6,h=Math.sqrt(u*u+l*l),f=(a[o]-h)*i[o]*t/h;c.vx+=u*f,c.vy+=l*f}}function c(){if(r){var e,n=r.length;for(i=new Array(n),a=new Array(n),e=0;e<n;++e)a[e]=+t(r[e],e,r),i[e]=isNaN(a[e])?0:+o(r[e],e,r)}}return"function"!=typeof t&&(t=xs(+t)),null==e&&(e=0),null==n&&(n=0),s.initialize=function(t){r=t,c()},s.strength=function(t){return arguments.length?(o="function"==typeof t?t:xs(+t),c(),s):o},s.radius=function(e){return arguments.length?(t="function"==typeof e?e:xs(+e),c(),s):t},s.x=function(t){return arguments.length?(e=+t,s):e},s.y=function(t){return arguments.length?(n=+t,s):n},s},Us=function(t){var e,n,r,i=xs(.1);function a(t){for(var i,a=0,o=e.length;a<o;++a)(i=e[a]).vx+=(r[a]-i.x)*n[a]*t}function o(){if(e){var a,o=e.length;for(n=new Array(o),r=new Array(o),a=0;a<o;++a)n[a]=isNaN(r[a]=+t(e[a],a,e))?0:+i(e[a],a,e)}}return"function"!=typeof t&&(t=xs(null==t?0:+t)),a.initialize=function(t){e=t,o()},a.strength=function(t){return arguments.length?(i="function"==typeof t?t:xs(+t),o(),a):i},a.x=function(e){return arguments.length?(t="function"==typeof e?e:xs(+e),o(),a):t},a},$s=function(t){var e,n,r,i=xs(.1);function a(t){for(var i,a=0,o=e.length;a<o;++a)(i=e[a]).vy+=(r[a]-i.y)*n[a]*t}function o(){if(e){var a,o=e.length;for(n=new Array(o),r=new Array(o),a=0;a<o;++a)n[a]=isNaN(r[a]=+t(e[a],a,e))?0:+i(e[a],a,e)}}return"function"!=typeof t&&(t=xs(null==t?0:+t)),a.initialize=function(t){e=t,o()},a.strength=function(t){return arguments.length?(i="function"==typeof t?t:xs(+t),o(),a):i},a.y=function(e){return arguments.length?(t="function"==typeof e?e:xs(+e),o(),a):t},a};function qs(t,e){if((n=(t=e?t.toExponential(e-1):t.toExponential()).indexOf("e"))<0)return null;var n,r=t.slice(0,n);return[r.length>1?r[0]+r.slice(2):r,+t.slice(n+1)]}var Ws=function(t){return(t=qs(Math.abs(t)))?t[1]:NaN},Hs=/^(?:(.)?([<>=^]))?([+\-( ])?([$#])?(0)?(\d+)?(,)?(\.\d+)?(~)?([a-z%])?$/i;function Vs(t){if(!(e=Hs.exec(t)))throw new Error("invalid format: "+t);var e;return new Gs({fill:e[1],align:e[2],sign:e[3],symbol:e[4],zero:e[5],width:e[6],comma:e[7],precision:e[8]&&e[8].slice(1),trim:e[9],type:e[10]})}function Gs(t){this.fill=void 0===t.fill?" ":t.fill+"",this.align=void 0===t.align?">":t.align+"",this.sign=void 0===t.sign?"-":t.sign+"",this.symbol=void 0===t.symbol?"":t.symbol+"",this.zero=!!t.zero,this.width=void 0===t.width?void 0:+t.width,this.comma=!!t.comma,this.precision=void 0===t.precision?void 0:+t.precision,this.trim=!!t.trim,this.type=void 0===t.type?"":t.type+""}Vs.prototype=Gs.prototype,Gs.prototype.toString=function(){return this.fill+this.align+this.sign+this.symbol+(this.zero?"0":"")+(void 0===this.width?"":Math.max(1,0|this.width))+(this.comma?",":"")+(void 0===this.precision?"":"."+Math.max(0,0|this.precision))+(this.trim?"~":"")+this.type};var Xs,Zs,Ks,Qs,Js=function(t,e){var n=qs(t,e);if(!n)return t+"";var r=n[0],i=n[1];return i<0?"0."+new Array(-i).join("0")+r:r.length>i+1?r.slice(0,i+1)+"."+r.slice(i+1):r+new Array(i-r.length+2).join("0")},tc={"%":function(t,e){return(100*t).toFixed(e)},b:function(t){return Math.round(t).toString(2)},c:function(t){return t+""},d:function(t){return Math.abs(t=Math.round(t))>=1e21?t.toLocaleString("en").replace(/,/g,""):t.toString(10)},e:function(t,e){return t.toExponential(e)},f:function(t,e){return t.toFixed(e)},g:function(t,e){return t.toPrecision(e)},o:function(t){return Math.round(t).toString(8)},p:function(t,e){return Js(100*t,e)},r:Js,s:function(t,e){var n=qs(t,e);if(!n)return t+"";var r=n[0],i=n[1],a=i-(Xs=3*Math.max(-8,Math.min(8,Math.floor(i/3))))+1,o=r.length;return a===o?r:a>o?r+new Array(a-o+1).join("0"):a>0?r.slice(0,a)+"."+r.slice(a):"0."+new Array(1-a).join("0")+qs(t,Math.max(0,e+a-1))[0]},X:function(t){return Math.round(t).toString(16).toUpperCase()},x:function(t){return Math.round(t).toString(16)}},ec=function(t){return t},nc=Array.prototype.map,rc=["y","z","a","f","p","n","µ","m","","k","M","G","T","P","E","Z","Y"],ic=function(t){var e,n,r=void 0===t.grouping||void 0===t.thousands?ec:(e=nc.call(t.grouping,Number),n=t.thousands+"",function(t,r){for(var i=t.length,a=[],o=0,s=e[0],c=0;i>0&&s>0&&(c+s+1>r&&(s=Math.max(1,r-c)),a.push(t.substring(i-=s,i+s)),!((c+=s+1)>r));)s=e[o=(o+1)%e.length];return a.reverse().join(n)}),i=void 0===t.currency?"":t.currency[0]+"",a=void 0===t.currency?"":t.currency[1]+"",o=void 0===t.decimal?".":t.decimal+"",s=void 0===t.numerals?ec:function(t){return function(e){return e.replace(/[0-9]/g,(function(e){return t[+e]}))}}(nc.call(t.numerals,String)),c=void 0===t.percent?"%":t.percent+"",u=void 0===t.minus?"-":t.minus+"",l=void 0===t.nan?"NaN":t.nan+"";function h(t){var e=(t=Vs(t)).fill,n=t.align,h=t.sign,f=t.symbol,d=t.zero,p=t.width,y=t.comma,g=t.precision,m=t.trim,v=t.type;"n"===v?(y=!0,v="g"):tc[v]||(void 0===g&&(g=12),m=!0,v="g"),(d||"0"===e&&"="===n)&&(d=!0,e="0",n="=");var b="$"===f?i:"#"===f&&/[boxX]/.test(v)?"0"+v.toLowerCase():"",x="$"===f?a:/[%p]/.test(v)?c:"",_=tc[v],k=/[defgprs%]/.test(v);function w(t){var i,a,c,f=b,w=x;if("c"===v)w=_(t)+w,t="";else{var T=(t=+t)<0||1/t<0;if(t=isNaN(t)?l:_(Math.abs(t),g),m&&(t=function(t){t:for(var e,n=t.length,r=1,i=-1;r<n;++r)switch(t[r]){case".":i=e=r;break;case"0":0===i&&(i=r),e=r;break;default:if(!+t[r])break t;i>0&&(i=0)}return i>0?t.slice(0,i)+t.slice(e+1):t}(t)),T&&0==+t&&"+"!==h&&(T=!1),f=(T?"("===h?h:u:"-"===h||"("===h?"":h)+f,w=("s"===v?rc[8+Xs/3]:"")+w+(T&&"("===h?")":""),k)for(i=-1,a=t.length;++i<a;)if(48>(c=t.charCodeAt(i))||c>57){w=(46===c?o+t.slice(i+1):t.slice(i))+w,t=t.slice(0,i);break}}y&&!d&&(t=r(t,1/0));var E=f.length+t.length+w.length,C=E<p?new Array(p-E+1).join(e):"";switch(y&&d&&(t=r(C+t,C.length?p-w.length:1/0),C=""),n){case"<":t=f+t+w+C;break;case"=":t=f+C+t+w;break;case"^":t=C.slice(0,E=C.length>>1)+f+t+w+C.slice(E);break;default:t=C+f+t+w}return s(t)}return g=void 0===g?6:/[gprs]/.test(v)?Math.max(1,Math.min(21,g)):Math.max(0,Math.min(20,g)),w.toString=function(){return t+""},w}return{format:h,formatPrefix:function(t,e){var n=h(((t=Vs(t)).type="f",t)),r=3*Math.max(-8,Math.min(8,Math.floor(Ws(e)/3))),i=Math.pow(10,-r),a=rc[8+r/3];return function(t){return n(i*t)+a}}}};function ac(t){return Zs=ic(t),Ks=Zs.format,Qs=Zs.formatPrefix,Zs}ac({decimal:".",thousands:",",grouping:[3],currency:["$",""],minus:"-"});var oc=function(t){return Math.max(0,-Ws(Math.abs(t)))},sc=function(t,e){return Math.max(0,3*Math.max(-8,Math.min(8,Math.floor(Ws(e)/3)))-Ws(Math.abs(t)))},cc=function(t,e){return t=Math.abs(t),e=Math.abs(e)-t,Math.max(0,Ws(e)-Ws(t))+1},uc=function(){return new lc};function lc(){this.reset()}lc.prototype={constructor:lc,reset:function(){this.s=this.t=0},add:function(t){fc(hc,t,this.t),fc(this,hc.s,this.s),this.s?this.t+=hc.t:this.s=hc.t},valueOf:function(){return this.s}};var hc=new lc;function fc(t,e,n){var r=t.s=e+n,i=r-e,a=r-i;t.t=e-a+(n-i)}var dc=Math.PI,pc=dc/2,yc=dc/4,gc=2*dc,mc=180/dc,vc=dc/180,bc=Math.abs,xc=Math.atan,_c=Math.atan2,kc=Math.cos,wc=Math.ceil,Tc=Math.exp,Ec=(Math.floor,Math.log),Cc=Math.pow,Sc=Math.sin,Ac=Math.sign||function(t){return t>0?1:t<0?-1:0},Mc=Math.sqrt,Oc=Math.tan;function Nc(t){return t>1?0:t<-1?dc:Math.acos(t)}function Bc(t){return t>1?pc:t<-1?-pc:Math.asin(t)}function Dc(t){return(t=Sc(t/2))*t}function Lc(){}function Ic(t,e){t&&Fc.hasOwnProperty(t.type)&&Fc[t.type](t,e)}var Rc={Feature:function(t,e){Ic(t.geometry,e)},FeatureCollection:function(t,e){for(var n=t.features,r=-1,i=n.length;++r<i;)Ic(n[r].geometry,e)}},Fc={Sphere:function(t,e){e.sphere()},Point:function(t,e){t=t.coordinates,e.point(t[0],t[1],t[2])},MultiPoint:function(t,e){for(var n=t.coordinates,r=-1,i=n.length;++r<i;)t=n[r],e.point(t[0],t[1],t[2])},LineString:function(t,e){Pc(t.coordinates,e,0)},MultiLineString:function(t,e){for(var n=t.coordinates,r=-1,i=n.length;++r<i;)Pc(n[r],e,0)},Polygon:function(t,e){jc(t.coordinates,e)},MultiPolygon:function(t,e){for(var n=t.coordinates,r=-1,i=n.length;++r<i;)jc(n[r],e)},GeometryCollection:function(t,e){for(var n=t.geometries,r=-1,i=n.length;++r<i;)Ic(n[r],e)}};function Pc(t,e,n){var r,i=-1,a=t.length-n;for(e.lineStart();++i<a;)r=t[i],e.point(r[0],r[1],r[2]);e.lineEnd()}function jc(t,e){var n=-1,r=t.length;for(e.polygonStart();++n<r;)Pc(t[n],e,1);e.polygonEnd()}var Yc,zc,Uc,$c,qc,Wc=function(t,e){t&&Rc.hasOwnProperty(t.type)?Rc[t.type](t,e):Ic(t,e)},Hc=uc(),Vc=uc(),Gc={point:Lc,lineStart:Lc,lineEnd:Lc,polygonStart:function(){Hc.reset(),Gc.lineStart=Xc,Gc.lineEnd=Zc},polygonEnd:function(){var t=+Hc;Vc.add(t<0?gc+t:t),this.lineStart=this.lineEnd=this.point=Lc},sphere:function(){Vc.add(gc)}};function Xc(){Gc.point=Kc}function Zc(){Qc(Yc,zc)}function Kc(t,e){Gc.point=Qc,Yc=t,zc=e,Uc=t*=vc,$c=kc(e=(e*=vc)/2+yc),qc=Sc(e)}function Qc(t,e){var n=(t*=vc)-Uc,r=n>=0?1:-1,i=r*n,a=kc(e=(e*=vc)/2+yc),o=Sc(e),s=qc*o,c=$c*a+s*kc(i),u=s*r*Sc(i);Hc.add(_c(u,c)),Uc=t,$c=a,qc=o}var Jc=function(t){return Vc.reset(),Wc(t,Gc),2*Vc};function tu(t){return[_c(t[1],t[0]),Bc(t[2])]}function eu(t){var e=t[0],n=t[1],r=kc(n);return[r*kc(e),r*Sc(e),Sc(n)]}function nu(t,e){return t[0]*e[0]+t[1]*e[1]+t[2]*e[2]}function ru(t,e){return[t[1]*e[2]-t[2]*e[1],t[2]*e[0]-t[0]*e[2],t[0]*e[1]-t[1]*e[0]]}function iu(t,e){t[0]+=e[0],t[1]+=e[1],t[2]+=e[2]}function au(t,e){return[t[0]*e,t[1]*e,t[2]*e]}function ou(t){var e=Mc(t[0]*t[0]+t[1]*t[1]+t[2]*t[2]);t[0]/=e,t[1]/=e,t[2]/=e}var su,cu,uu,lu,hu,fu,du,pu,yu,gu,mu=uc(),vu={point:bu,lineStart:_u,lineEnd:ku,polygonStart:function(){vu.point=wu,vu.lineStart=Tu,vu.lineEnd=Eu,mu.reset(),Gc.polygonStart()},polygonEnd:function(){Gc.polygonEnd(),vu.point=bu,vu.lineStart=_u,vu.lineEnd=ku,Hc<0?(su=-(uu=180),cu=-(lu=90)):mu>1e-6?lu=90:mu<-1e-6&&(cu=-90),gu[0]=su,gu[1]=uu},sphere:function(){su=-(uu=180),cu=-(lu=90)}};function bu(t,e){yu.push(gu=[su=t,uu=t]),e<cu&&(cu=e),e>lu&&(lu=e)}function xu(t,e){var n=eu([t*vc,e*vc]);if(pu){var r=ru(pu,n),i=ru([r[1],-r[0],0],r);ou(i),i=tu(i);var a,o=t-hu,s=o>0?1:-1,c=i[0]*mc*s,u=bc(o)>180;u^(s*hu<c&&c<s*t)?(a=i[1]*mc)>lu&&(lu=a):u^(s*hu<(c=(c+360)%360-180)&&c<s*t)?(a=-i[1]*mc)<cu&&(cu=a):(e<cu&&(cu=e),e>lu&&(lu=e)),u?t<hu?Cu(su,t)>Cu(su,uu)&&(uu=t):Cu(t,uu)>Cu(su,uu)&&(su=t):uu>=su?(t<su&&(su=t),t>uu&&(uu=t)):t>hu?Cu(su,t)>Cu(su,uu)&&(uu=t):Cu(t,uu)>Cu(su,uu)&&(su=t)}else yu.push(gu=[su=t,uu=t]);e<cu&&(cu=e),e>lu&&(lu=e),pu=n,hu=t}function _u(){vu.point=xu}function ku(){gu[0]=su,gu[1]=uu,vu.point=bu,pu=null}function wu(t,e){if(pu){var n=t-hu;mu.add(bc(n)>180?n+(n>0?360:-360):n)}else fu=t,du=e;Gc.point(t,e),xu(t,e)}function Tu(){Gc.lineStart()}function Eu(){wu(fu,du),Gc.lineEnd(),bc(mu)>1e-6&&(su=-(uu=180)),gu[0]=su,gu[1]=uu,pu=null}function Cu(t,e){return(e-=t)<0?e+360:e}function Su(t,e){return t[0]-e[0]}function Au(t,e){return t[0]<=t[1]?t[0]<=e&&e<=t[1]:e<t[0]||t[1]<e}var Mu,Ou,Nu,Bu,Du,Lu,Iu,Ru,Fu,Pu,ju,Yu,zu,Uu,$u,qu,Wu=function(t){var e,n,r,i,a,o,s;if(lu=uu=-(su=cu=1/0),yu=[],Wc(t,vu),n=yu.length){for(yu.sort(Su),e=1,a=[r=yu[0]];e<n;++e)Au(r,(i=yu[e])[0])||Au(r,i[1])?(Cu(r[0],i[1])>Cu(r[0],r[1])&&(r[1]=i[1]),Cu(i[0],r[1])>Cu(r[0],r[1])&&(r[0]=i[0])):a.push(r=i);for(o=-1/0,e=0,r=a[n=a.length-1];e<=n;r=i,++e)i=a[e],(s=Cu(r[1],i[0]))>o&&(o=s,su=i[0],uu=r[1])}return yu=gu=null,su===1/0||cu===1/0?[[NaN,NaN],[NaN,NaN]]:[[su,cu],[uu,lu]]},Hu={sphere:Lc,point:Vu,lineStart:Xu,lineEnd:Qu,polygonStart:function(){Hu.lineStart=Ju,Hu.lineEnd=tl},polygonEnd:function(){Hu.lineStart=Xu,Hu.lineEnd=Qu}};function Vu(t,e){t*=vc;var n=kc(e*=vc);Gu(n*kc(t),n*Sc(t),Sc(e))}function Gu(t,e,n){++Mu,Nu+=(t-Nu)/Mu,Bu+=(e-Bu)/Mu,Du+=(n-Du)/Mu}function Xu(){Hu.point=Zu}function Zu(t,e){t*=vc;var n=kc(e*=vc);Uu=n*kc(t),$u=n*Sc(t),qu=Sc(e),Hu.point=Ku,Gu(Uu,$u,qu)}function Ku(t,e){t*=vc;var n=kc(e*=vc),r=n*kc(t),i=n*Sc(t),a=Sc(e),o=_c(Mc((o=$u*a-qu*i)*o+(o=qu*r-Uu*a)*o+(o=Uu*i-$u*r)*o),Uu*r+$u*i+qu*a);Ou+=o,Lu+=o*(Uu+(Uu=r)),Iu+=o*($u+($u=i)),Ru+=o*(qu+(qu=a)),Gu(Uu,$u,qu)}function Qu(){Hu.point=Vu}function Ju(){Hu.point=el}function tl(){nl(Yu,zu),Hu.point=Vu}function el(t,e){Yu=t,zu=e,t*=vc,e*=vc,Hu.point=nl;var n=kc(e);Uu=n*kc(t),$u=n*Sc(t),qu=Sc(e),Gu(Uu,$u,qu)}function nl(t,e){t*=vc;var n=kc(e*=vc),r=n*kc(t),i=n*Sc(t),a=Sc(e),o=$u*a-qu*i,s=qu*r-Uu*a,c=Uu*i-$u*r,u=Mc(o*o+s*s+c*c),l=Bc(u),h=u&&-l/u;Fu+=h*o,Pu+=h*s,ju+=h*c,Ou+=l,Lu+=l*(Uu+(Uu=r)),Iu+=l*($u+($u=i)),Ru+=l*(qu+(qu=a)),Gu(Uu,$u,qu)}var rl=function(t){Mu=Ou=Nu=Bu=Du=Lu=Iu=Ru=Fu=Pu=ju=0,Wc(t,Hu);var e=Fu,n=Pu,r=ju,i=e*e+n*n+r*r;return i<1e-12&&(e=Lu,n=Iu,r=Ru,Ou<1e-6&&(e=Nu,n=Bu,r=Du),(i=e*e+n*n+r*r)<1e-12)?[NaN,NaN]:[_c(n,e)*mc,Bc(r/Mc(i))*mc]},il=function(t){return function(){return t}},al=function(t,e){function n(n,r){return n=t(n,r),e(n[0],n[1])}return t.invert&&e.invert&&(n.invert=function(n,r){return(n=e.invert(n,r))&&t.invert(n[0],n[1])}),n};function ol(t,e){return[bc(t)>dc?t+Math.round(-t/gc)*gc:t,e]}function sl(t,e,n){return(t%=gc)?e||n?al(ul(t),ll(e,n)):ul(t):e||n?ll(e,n):ol}function cl(t){return function(e,n){return[(e+=t)>dc?e-gc:e<-dc?e+gc:e,n]}}function ul(t){var e=cl(t);return e.invert=cl(-t),e}function ll(t,e){var n=kc(t),r=Sc(t),i=kc(e),a=Sc(e);function o(t,e){var o=kc(e),s=kc(t)*o,c=Sc(t)*o,u=Sc(e),l=u*n+s*r;return[_c(c*i-l*a,s*n-u*r),Bc(l*i+c*a)]}return o.invert=function(t,e){var o=kc(e),s=kc(t)*o,c=Sc(t)*o,u=Sc(e),l=u*i-c*a;return[_c(c*i+u*a,s*n+l*r),Bc(l*n-s*r)]},o}ol.invert=ol;var hl=function(t){function e(e){return(e=t(e[0]*vc,e[1]*vc))[0]*=mc,e[1]*=mc,e}return t=sl(t[0]*vc,t[1]*vc,t.length>2?t[2]*vc:0),e.invert=function(e){return(e=t.invert(e[0]*vc,e[1]*vc))[0]*=mc,e[1]*=mc,e},e};function fl(t,e,n,r,i,a){if(n){var o=kc(e),s=Sc(e),c=r*n;null==i?(i=e+r*gc,a=e-c/2):(i=dl(o,i),a=dl(o,a),(r>0?i<a:i>a)&&(i+=r*gc));for(var u,l=i;r>0?l>a:l<a;l-=c)u=tu([o,-s*kc(l),-s*Sc(l)]),t.point(u[0],u[1])}}function dl(t,e){(e=eu(e))[0]-=t,ou(e);var n=Nc(-e[1]);return((-e[2]<0?-n:n)+gc-1e-6)%gc}var pl=function(){var t,e,n=il([0,0]),r=il(90),i=il(6),a={point:function(n,r){t.push(n=e(n,r)),n[0]*=mc,n[1]*=mc}};function o(){var o=n.apply(this,arguments),s=r.apply(this,arguments)*vc,c=i.apply(this,arguments)*vc;return t=[],e=sl(-o[0]*vc,-o[1]*vc,0).invert,fl(a,s,c,1),o={type:"Polygon",coordinates:[t]},t=e=null,o}return o.center=function(t){return arguments.length?(n="function"==typeof t?t:il([+t[0],+t[1]]),o):n},o.radius=function(t){return arguments.length?(r="function"==typeof t?t:il(+t),o):r},o.precision=function(t){return arguments.length?(i="function"==typeof t?t:il(+t),o):i},o},yl=function(){var t,e=[];return{point:function(e,n,r){t.push([e,n,r])},lineStart:function(){e.push(t=[])},lineEnd:Lc,rejoin:function(){e.length>1&&e.push(e.pop().concat(e.shift()))},result:function(){var n=e;return e=[],t=null,n}}},gl=function(t,e){return bc(t[0]-e[0])<1e-6&&bc(t[1]-e[1])<1e-6};function ml(t,e,n,r){this.x=t,this.z=e,this.o=n,this.e=r,this.v=!1,this.n=this.p=null}var vl=function(t,e,n,r,i){var a,o,s=[],c=[];if(t.forEach((function(t){if(!((e=t.length-1)<=0)){var e,n,r=t[0],o=t[e];if(gl(r,o)){if(!r[2]&&!o[2]){for(i.lineStart(),a=0;a<e;++a)i.point((r=t[a])[0],r[1]);return void i.lineEnd()}o[0]+=2e-6}s.push(n=new ml(r,t,null,!0)),c.push(n.o=new ml(r,null,n,!1)),s.push(n=new ml(o,t,null,!1)),c.push(n.o=new ml(o,null,n,!0))}})),s.length){for(c.sort(e),bl(s),bl(c),a=0,o=c.length;a<o;++a)c[a].e=n=!n;for(var u,l,h=s[0];;){for(var f=h,d=!0;f.v;)if((f=f.n)===h)return;u=f.z,i.lineStart();do{if(f.v=f.o.v=!0,f.e){if(d)for(a=0,o=u.length;a<o;++a)i.point((l=u[a])[0],l[1]);else r(f.x,f.n.x,1,i);f=f.n}else{if(d)for(u=f.p.z,a=u.length-1;a>=0;--a)i.point((l=u[a])[0],l[1]);else r(f.x,f.p.x,-1,i);f=f.p}u=(f=f.o).z,d=!d}while(!f.v);i.lineEnd()}}};function bl(t){if(e=t.length){for(var e,n,r=0,i=t[0];++r<e;)i.n=n=t[r],n.p=i,i=n;i.n=n=t[0],n.p=i}}var xl=uc();function _l(t){return bc(t[0])<=dc?t[0]:Ac(t[0])*((bc(t[0])+dc)%gc-dc)}var kl=function(t,e){var n=_l(e),r=e[1],i=Sc(r),a=[Sc(n),-kc(n),0],o=0,s=0;xl.reset(),1===i?r=pc+1e-6:-1===i&&(r=-pc-1e-6);for(var c=0,u=t.length;c<u;++c)if(h=(l=t[c]).length)for(var l,h,f=l[h-1],d=_l(f),p=f[1]/2+yc,y=Sc(p),g=kc(p),m=0;m<h;++m,d=b,y=_,g=k,f=v){var v=l[m],b=_l(v),x=v[1]/2+yc,_=Sc(x),k=kc(x),w=b-d,T=w>=0?1:-1,E=T*w,C=E>dc,S=y*_;if(xl.add(_c(S*T*Sc(E),g*k+S*kc(E))),o+=C?w+T*gc:w,C^d>=n^b>=n){var A=ru(eu(f),eu(v));ou(A);var M=ru(a,A);ou(M);var O=(C^w>=0?-1:1)*Bc(M[2]);(r>O||r===O&&(A[0]||A[1]))&&(s+=C^w>=0?1:-1)}}return(o<-1e-6||o<1e-6&&xl<-1e-6)^1&s},wl=function(t,e,n,r){return function(i){var a,o,s,c=e(i),u=yl(),l=e(u),h=!1,f={point:d,lineStart:y,lineEnd:g,polygonStart:function(){f.point=m,f.lineStart=v,f.lineEnd=b,o=[],a=[]},polygonEnd:function(){f.point=d,f.lineStart=y,f.lineEnd=g,o=P(o);var t=kl(a,r);o.length?(h||(i.polygonStart(),h=!0),vl(o,El,t,n,i)):t&&(h||(i.polygonStart(),h=!0),i.lineStart(),n(null,null,1,i),i.lineEnd()),h&&(i.polygonEnd(),h=!1),o=a=null},sphere:function(){i.polygonStart(),i.lineStart(),n(null,null,1,i),i.lineEnd(),i.polygonEnd()}};function d(e,n){t(e,n)&&i.point(e,n)}function p(t,e){c.point(t,e)}function y(){f.point=p,c.lineStart()}function g(){f.point=d,c.lineEnd()}function m(t,e){s.push([t,e]),l.point(t,e)}function v(){l.lineStart(),s=[]}function b(){m(s[0][0],s[0][1]),l.lineEnd();var t,e,n,r,c=l.clean(),f=u.result(),d=f.length;if(s.pop(),a.push(s),s=null,d)if(1&c){if((e=(n=f[0]).length-1)>0){for(h||(i.polygonStart(),h=!0),i.lineStart(),t=0;t<e;++t)i.point((r=n[t])[0],r[1]);i.lineEnd()}}else d>1&&2&c&&f.push(f.pop().concat(f.shift())),o.push(f.filter(Tl))}return f}};function Tl(t){return t.length>1}function El(t,e){return((t=t.x)[0]<0?t[1]-pc-1e-6:pc-t[1])-((e=e.x)[0]<0?e[1]-pc-1e-6:pc-e[1])}var Cl=wl((function(){return!0}),(function(t){var e,n=NaN,r=NaN,i=NaN;return{lineStart:function(){t.lineStart(),e=1},point:function(a,o){var s=a>0?dc:-dc,c=bc(a-n);bc(c-dc)<1e-6?(t.point(n,r=(r+o)/2>0?pc:-pc),t.point(i,r),t.lineEnd(),t.lineStart(),t.point(s,r),t.point(a,r),e=0):i!==s&&c>=dc&&(bc(n-i)<1e-6&&(n-=1e-6*i),bc(a-s)<1e-6&&(a-=1e-6*s),r=function(t,e,n,r){var i,a,o=Sc(t-n);return bc(o)>1e-6?xc((Sc(e)*(a=kc(r))*Sc(n)-Sc(r)*(i=kc(e))*Sc(t))/(i*a*o)):(e+r)/2}(n,r,a,o),t.point(i,r),t.lineEnd(),t.lineStart(),t.point(s,r),e=0),t.point(n=a,r=o),i=s},lineEnd:function(){t.lineEnd(),n=r=NaN},clean:function(){return 2-e}}}),(function(t,e,n,r){var i;if(null==t)i=n*pc,r.point(-dc,i),r.point(0,i),r.point(dc,i),r.point(dc,0),r.point(dc,-i),r.point(0,-i),r.point(-dc,-i),r.point(-dc,0),r.point(-dc,i);else if(bc(t[0]-e[0])>1e-6){var a=t[0]<e[0]?dc:-dc;i=n*a/2,r.point(-a,i),r.point(0,i),r.point(a,i)}else r.point(e[0],e[1])}),[-dc,-pc]);var Sl=function(t){var e=kc(t),n=6*vc,r=e>0,i=bc(e)>1e-6;function a(t,n){return kc(t)*kc(n)>e}function o(t,n,r){var i=[1,0,0],a=ru(eu(t),eu(n)),o=nu(a,a),s=a[0],c=o-s*s;if(!c)return!r&&t;var u=e*o/c,l=-e*s/c,h=ru(i,a),f=au(i,u);iu(f,au(a,l));var d=h,p=nu(f,d),y=nu(d,d),g=p*p-y*(nu(f,f)-1);if(!(g<0)){var m=Mc(g),v=au(d,(-p-m)/y);if(iu(v,f),v=tu(v),!r)return v;var b,x=t[0],_=n[0],k=t[1],w=n[1];_<x&&(b=x,x=_,_=b);var T=_-x,E=bc(T-dc)<1e-6;if(!E&&w<k&&(b=k,k=w,w=b),E||T<1e-6?E?k+w>0^v[1]<(bc(v[0]-x)<1e-6?k:w):k<=v[1]&&v[1]<=w:T>dc^(x<=v[0]&&v[0]<=_)){var C=au(d,(-p+m)/y);return iu(C,f),[v,tu(C)]}}}function s(e,n){var i=r?t:dc-t,a=0;return e<-i?a|=1:e>i&&(a|=2),n<-i?a|=4:n>i&&(a|=8),a}return wl(a,(function(t){var e,n,c,u,l;return{lineStart:function(){u=c=!1,l=1},point:function(h,f){var d,p=[h,f],y=a(h,f),g=r?y?0:s(h,f):y?s(h+(h<0?dc:-dc),f):0;if(!e&&(u=c=y)&&t.lineStart(),y!==c&&(!(d=o(e,p))||gl(e,d)||gl(p,d))&&(p[2]=1),y!==c)l=0,y?(t.lineStart(),d=o(p,e),t.point(d[0],d[1])):(d=o(e,p),t.point(d[0],d[1],2),t.lineEnd()),e=d;else if(i&&e&&r^y){var m;g&n||!(m=o(p,e,!0))||(l=0,r?(t.lineStart(),t.point(m[0][0],m[0][1]),t.point(m[1][0],m[1][1]),t.lineEnd()):(t.point(m[1][0],m[1][1]),t.lineEnd(),t.lineStart(),t.point(m[0][0],m[0][1],3)))}!y||e&&gl(e,p)||t.point(p[0],p[1]),e=p,c=y,n=g},lineEnd:function(){c&&t.lineEnd(),e=null},clean:function(){return l|(u&&c)<<1}}}),(function(e,r,i,a){fl(a,t,n,i,e,r)}),r?[0,-t]:[-dc,t-dc])};function Al(t,e,n,r){function i(i,a){return t<=i&&i<=n&&e<=a&&a<=r}function a(i,a,s,u){var l=0,h=0;if(null==i||(l=o(i,s))!==(h=o(a,s))||c(i,a)<0^s>0)do{u.point(0===l||3===l?t:n,l>1?r:e)}while((l=(l+s+4)%4)!==h);else u.point(a[0],a[1])}function o(r,i){return bc(r[0]-t)<1e-6?i>0?0:3:bc(r[0]-n)<1e-6?i>0?2:1:bc(r[1]-e)<1e-6?i>0?1:0:i>0?3:2}function s(t,e){return c(t.x,e.x)}function c(t,e){var n=o(t,1),r=o(e,1);return n!==r?n-r:0===n?e[1]-t[1]:1===n?t[0]-e[0]:2===n?t[1]-e[1]:e[0]-t[0]}return function(o){var c,u,l,h,f,d,p,y,g,m,v,b=o,x=yl(),_={point:k,lineStart:function(){_.point=w,u&&u.push(l=[]);m=!0,g=!1,p=y=NaN},lineEnd:function(){c&&(w(h,f),d&&g&&x.rejoin(),c.push(x.result()));_.point=k,g&&b.lineEnd()},polygonStart:function(){b=x,c=[],u=[],v=!0},polygonEnd:function(){var e=function(){for(var e=0,n=0,i=u.length;n<i;++n)for(var a,o,s=u[n],c=1,l=s.length,h=s[0],f=h[0],d=h[1];c<l;++c)a=f,o=d,h=s[c],f=h[0],d=h[1],o<=r?d>r&&(f-a)*(r-o)>(d-o)*(t-a)&&++e:d<=r&&(f-a)*(r-o)<(d-o)*(t-a)&&--e;return e}(),n=v&&e,i=(c=P(c)).length;(n||i)&&(o.polygonStart(),n&&(o.lineStart(),a(null,null,1,o),o.lineEnd()),i&&vl(c,s,e,a,o),o.polygonEnd());b=o,c=u=l=null}};function k(t,e){i(t,e)&&b.point(t,e)}function w(a,o){var s=i(a,o);if(u&&l.push([a,o]),m)h=a,f=o,d=s,m=!1,s&&(b.lineStart(),b.point(a,o));else if(s&&g)b.point(a,o);else{var c=[p=Math.max(-1e9,Math.min(1e9,p)),y=Math.max(-1e9,Math.min(1e9,y))],x=[a=Math.max(-1e9,Math.min(1e9,a)),o=Math.max(-1e9,Math.min(1e9,o))];!function(t,e,n,r,i,a){var o,s=t[0],c=t[1],u=0,l=1,h=e[0]-s,f=e[1]-c;if(o=n-s,h||!(o>0)){if(o/=h,h<0){if(o<u)return;o<l&&(l=o)}else if(h>0){if(o>l)return;o>u&&(u=o)}if(o=i-s,h||!(o<0)){if(o/=h,h<0){if(o>l)return;o>u&&(u=o)}else if(h>0){if(o<u)return;o<l&&(l=o)}if(o=r-c,f||!(o>0)){if(o/=f,f<0){if(o<u)return;o<l&&(l=o)}else if(f>0){if(o>l)return;o>u&&(u=o)}if(o=a-c,f||!(o<0)){if(o/=f,f<0){if(o>l)return;o>u&&(u=o)}else if(f>0){if(o<u)return;o<l&&(l=o)}return u>0&&(t[0]=s+u*h,t[1]=c+u*f),l<1&&(e[0]=s+l*h,e[1]=c+l*f),!0}}}}}(c,x,t,e,n,r)?s&&(b.lineStart(),b.point(a,o),v=!1):(g||(b.lineStart(),b.point(c[0],c[1])),b.point(x[0],x[1]),s||b.lineEnd(),v=!1)}p=a,y=o,g=s}return _}}var Ml,Ol,Nl,Bl=function(){var t,e,n,r=0,i=0,a=960,o=500;return n={stream:function(n){return t&&e===n?t:t=Al(r,i,a,o)(e=n)},extent:function(s){return arguments.length?(r=+s[0][0],i=+s[0][1],a=+s[1][0],o=+s[1][1],t=e=null,n):[[r,i],[a,o]]}}},Dl=uc(),Ll={sphere:Lc,point:Lc,lineStart:function(){Ll.point=Rl,Ll.lineEnd=Il},lineEnd:Lc,polygonStart:Lc,polygonEnd:Lc};function Il(){Ll.point=Ll.lineEnd=Lc}function Rl(t,e){Ml=t*=vc,Ol=Sc(e*=vc),Nl=kc(e),Ll.point=Fl}function Fl(t,e){t*=vc;var n=Sc(e*=vc),r=kc(e),i=bc(t-Ml),a=kc(i),o=r*Sc(i),s=Nl*n-Ol*r*a,c=Ol*n+Nl*r*a;Dl.add(_c(Mc(o*o+s*s),c)),Ml=t,Ol=n,Nl=r}var Pl=function(t){return Dl.reset(),Wc(t,Ll),+Dl},jl=[null,null],Yl={type:"LineString",coordinates:jl},zl=function(t,e){return jl[0]=t,jl[1]=e,Pl(Yl)},Ul={Feature:function(t,e){return ql(t.geometry,e)},FeatureCollection:function(t,e){for(var n=t.features,r=-1,i=n.length;++r<i;)if(ql(n[r].geometry,e))return!0;return!1}},$l={Sphere:function(){return!0},Point:function(t,e){return Wl(t.coordinates,e)},MultiPoint:function(t,e){for(var n=t.coordinates,r=-1,i=n.length;++r<i;)if(Wl(n[r],e))return!0;return!1},LineString:function(t,e){return Hl(t.coordinates,e)},MultiLineString:function(t,e){for(var n=t.coordinates,r=-1,i=n.length;++r<i;)if(Hl(n[r],e))return!0;return!1},Polygon:function(t,e){return Vl(t.coordinates,e)},MultiPolygon:function(t,e){for(var n=t.coordinates,r=-1,i=n.length;++r<i;)if(Vl(n[r],e))return!0;return!1},GeometryCollection:function(t,e){for(var n=t.geometries,r=-1,i=n.length;++r<i;)if(ql(n[r],e))return!0;return!1}};function ql(t,e){return!(!t||!$l.hasOwnProperty(t.type))&&$l[t.type](t,e)}function Wl(t,e){return 0===zl(t,e)}function Hl(t,e){for(var n,r,i,a=0,o=t.length;a<o;a++){if(0===(r=zl(t[a],e)))return!0;if(a>0&&(i=zl(t[a],t[a-1]))>0&&n<=i&&r<=i&&(n+r-i)*(1-Math.pow((n-r)/i,2))<1e-12*i)return!0;n=r}return!1}function Vl(t,e){return!!kl(t.map(Gl),Xl(e))}function Gl(t){return(t=t.map(Xl)).pop(),t}function Xl(t){return[t[0]*vc,t[1]*vc]}var Zl=function(t,e){return(t&&Ul.hasOwnProperty(t.type)?Ul[t.type]:ql)(t,e)};function Kl(t,e,n){var r=w(t,e-1e-6,n).concat(e);return function(t){return r.map((function(e){return[t,e]}))}}function Ql(t,e,n){var r=w(t,e-1e-6,n).concat(e);return function(t){return r.map((function(e){return[e,t]}))}}function Jl(){var t,e,n,r,i,a,o,s,c,u,l,h,f=10,d=f,p=90,y=360,g=2.5;function m(){return{type:"MultiLineString",coordinates:v()}}function v(){return w(wc(r/p)*p,n,p).map(l).concat(w(wc(s/y)*y,o,y).map(h)).concat(w(wc(e/f)*f,t,f).filter((function(t){return bc(t%p)>1e-6})).map(c)).concat(w(wc(a/d)*d,i,d).filter((function(t){return bc(t%y)>1e-6})).map(u))}return m.lines=function(){return v().map((function(t){return{type:"LineString",coordinates:t}}))},m.outline=function(){return{type:"Polygon",coordinates:[l(r).concat(h(o).slice(1),l(n).reverse().slice(1),h(s).reverse().slice(1))]}},m.extent=function(t){return arguments.length?m.extentMajor(t).extentMinor(t):m.extentMinor()},m.extentMajor=function(t){return arguments.length?(r=+t[0][0],n=+t[1][0],s=+t[0][1],o=+t[1][1],r>n&&(t=r,r=n,n=t),s>o&&(t=s,s=o,o=t),m.precision(g)):[[r,s],[n,o]]},m.extentMinor=function(n){return arguments.length?(e=+n[0][0],t=+n[1][0],a=+n[0][1],i=+n[1][1],e>t&&(n=e,e=t,t=n),a>i&&(n=a,a=i,i=n),m.precision(g)):[[e,a],[t,i]]},m.step=function(t){return arguments.length?m.stepMajor(t).stepMinor(t):m.stepMinor()},m.stepMajor=function(t){return arguments.length?(p=+t[0],y=+t[1],m):[p,y]},m.stepMinor=function(t){return arguments.length?(f=+t[0],d=+t[1],m):[f,d]},m.precision=function(f){return arguments.length?(g=+f,c=Kl(a,i,90),u=Ql(e,t,g),l=Kl(s,o,90),h=Ql(r,n,g),m):g},m.extentMajor([[-180,-89.999999],[180,89.999999]]).extentMinor([[-180,-80.000001],[180,80.000001]])}function th(){return Jl()()}var eh,nh,rh,ih,ah=function(t,e){var n=t[0]*vc,r=t[1]*vc,i=e[0]*vc,a=e[1]*vc,o=kc(r),s=Sc(r),c=kc(a),u=Sc(a),l=o*kc(n),h=o*Sc(n),f=c*kc(i),d=c*Sc(i),p=2*Bc(Mc(Dc(a-r)+o*c*Dc(i-n))),y=Sc(p),g=p?function(t){var e=Sc(t*=p)/y,n=Sc(p-t)/y,r=n*l+e*f,i=n*h+e*d,a=n*s+e*u;return[_c(i,r)*mc,_c(a,Mc(r*r+i*i))*mc]}:function(){return[n*mc,r*mc]};return g.distance=p,g},oh=function(t){return t},sh=uc(),ch=uc(),uh={point:Lc,lineStart:Lc,lineEnd:Lc,polygonStart:function(){uh.lineStart=lh,uh.lineEnd=dh},polygonEnd:function(){uh.lineStart=uh.lineEnd=uh.point=Lc,sh.add(bc(ch)),ch.reset()},result:function(){var t=sh/2;return sh.reset(),t}};function lh(){uh.point=hh}function hh(t,e){uh.point=fh,eh=rh=t,nh=ih=e}function fh(t,e){ch.add(ih*t-rh*e),rh=t,ih=e}function dh(){fh(eh,nh)}var ph=uh,yh=1/0,gh=yh,mh=-yh,vh=mh;var bh,xh,_h,kh,wh={point:function(t,e){t<yh&&(yh=t);t>mh&&(mh=t);e<gh&&(gh=e);e>vh&&(vh=e)},lineStart:Lc,lineEnd:Lc,polygonStart:Lc,polygonEnd:Lc,result:function(){var t=[[yh,gh],[mh,vh]];return mh=vh=-(gh=yh=1/0),t}},Th=0,Eh=0,Ch=0,Sh=0,Ah=0,Mh=0,Oh=0,Nh=0,Bh=0,Dh={point:Lh,lineStart:Ih,lineEnd:Ph,polygonStart:function(){Dh.lineStart=jh,Dh.lineEnd=Yh},polygonEnd:function(){Dh.point=Lh,Dh.lineStart=Ih,Dh.lineEnd=Ph},result:function(){var t=Bh?[Oh/Bh,Nh/Bh]:Mh?[Sh/Mh,Ah/Mh]:Ch?[Th/Ch,Eh/Ch]:[NaN,NaN];return Th=Eh=Ch=Sh=Ah=Mh=Oh=Nh=Bh=0,t}};function Lh(t,e){Th+=t,Eh+=e,++Ch}function Ih(){Dh.point=Rh}function Rh(t,e){Dh.point=Fh,Lh(_h=t,kh=e)}function Fh(t,e){var n=t-_h,r=e-kh,i=Mc(n*n+r*r);Sh+=i*(_h+t)/2,Ah+=i*(kh+e)/2,Mh+=i,Lh(_h=t,kh=e)}function Ph(){Dh.point=Lh}function jh(){Dh.point=zh}function Yh(){Uh(bh,xh)}function zh(t,e){Dh.point=Uh,Lh(bh=_h=t,xh=kh=e)}function Uh(t,e){var n=t-_h,r=e-kh,i=Mc(n*n+r*r);Sh+=i*(_h+t)/2,Ah+=i*(kh+e)/2,Mh+=i,Oh+=(i=kh*t-_h*e)*(_h+t),Nh+=i*(kh+e),Bh+=3*i,Lh(_h=t,kh=e)}var $h=Dh;function qh(t){this._context=t}qh.prototype={_radius:4.5,pointRadius:function(t){return this._radius=t,this},polygonStart:function(){this._line=0},polygonEnd:function(){this._line=NaN},lineStart:function(){this._point=0},lineEnd:function(){0===this._line&&this._context.closePath(),this._point=NaN},point:function(t,e){switch(this._point){case 0:this._context.moveTo(t,e),this._point=1;break;case 1:this._context.lineTo(t,e);break;default:this._context.moveTo(t+this._radius,e),this._context.arc(t,e,this._radius,0,gc)}},result:Lc};var Wh,Hh,Vh,Gh,Xh,Zh=uc(),Kh={point:Lc,lineStart:function(){Kh.point=Qh},lineEnd:function(){Wh&&Jh(Hh,Vh),Kh.point=Lc},polygonStart:function(){Wh=!0},polygonEnd:function(){Wh=null},result:function(){var t=+Zh;return Zh.reset(),t}};function Qh(t,e){Kh.point=Jh,Hh=Gh=t,Vh=Xh=e}function Jh(t,e){Gh-=t,Xh-=e,Zh.add(Mc(Gh*Gh+Xh*Xh)),Gh=t,Xh=e}var tf=Kh;function ef(){this._string=[]}function nf(t){return"m0,"+t+"a"+t+","+t+" 0 1,1 0,"+-2*t+"a"+t+","+t+" 0 1,1 0,"+2*t+"z"}ef.prototype={_radius:4.5,_circle:nf(4.5),pointRadius:function(t){return(t=+t)!==this._radius&&(this._radius=t,this._circle=null),this},polygonStart:function(){this._line=0},polygonEnd:function(){this._line=NaN},lineStart:function(){this._point=0},lineEnd:function(){0===this._line&&this._string.push("Z"),this._point=NaN},point:function(t,e){switch(this._point){case 0:this._string.push("M",t,",",e),this._point=1;break;case 1:this._string.push("L",t,",",e);break;default:null==this._circle&&(this._circle=nf(this._radius)),this._string.push("M",t,",",e,this._circle)}},result:function(){if(this._string.length){var t=this._string.join("");return this._string=[],t}return null}};var rf=function(t,e){var n,r,i=4.5;function a(t){return t&&("function"==typeof i&&r.pointRadius(+i.apply(this,arguments)),Wc(t,n(r))),r.result()}return a.area=function(t){return Wc(t,n(ph)),ph.result()},a.measure=function(t){return Wc(t,n(tf)),tf.result()},a.bounds=function(t){return Wc(t,n(wh)),wh.result()},a.centroid=function(t){return Wc(t,n($h)),$h.result()},a.projection=function(e){return arguments.length?(n=null==e?(t=null,oh):(t=e).stream,a):t},a.context=function(t){return arguments.length?(r=null==t?(e=null,new ef):new qh(e=t),"function"!=typeof i&&r.pointRadius(i),a):e},a.pointRadius=function(t){return arguments.length?(i="function"==typeof t?t:(r.pointRadius(+t),+t),a):i},a.projection(t).context(e)},af=function(t){return{stream:of(t)}};function of(t){return function(e){var n=new sf;for(var r in t)n[r]=t[r];return n.stream=e,n}}function sf(){}function cf(t,e,n){var r=t.clipExtent&&t.clipExtent();return t.scale(150).translate([0,0]),null!=r&&t.clipExtent(null),Wc(n,t.stream(wh)),e(wh.result()),null!=r&&t.clipExtent(r),t}function uf(t,e,n){return cf(t,(function(n){var r=e[1][0]-e[0][0],i=e[1][1]-e[0][1],a=Math.min(r/(n[1][0]-n[0][0]),i/(n[1][1]-n[0][1])),o=+e[0][0]+(r-a*(n[1][0]+n[0][0]))/2,s=+e[0][1]+(i-a*(n[1][1]+n[0][1]))/2;t.scale(150*a).translate([o,s])}),n)}function lf(t,e,n){return uf(t,[[0,0],e],n)}function hf(t,e,n){return cf(t,(function(n){var r=+e,i=r/(n[1][0]-n[0][0]),a=(r-i*(n[1][0]+n[0][0]))/2,o=-i*n[0][1];t.scale(150*i).translate([a,o])}),n)}function ff(t,e,n){return cf(t,(function(n){var r=+e,i=r/(n[1][1]-n[0][1]),a=-i*n[0][0],o=(r-i*(n[1][1]+n[0][1]))/2;t.scale(150*i).translate([a,o])}),n)}sf.prototype={constructor:sf,point:function(t,e){this.stream.point(t,e)},sphere:function(){this.stream.sphere()},lineStart:function(){this.stream.lineStart()},lineEnd:function(){this.stream.lineEnd()},polygonStart:function(){this.stream.polygonStart()},polygonEnd:function(){this.stream.polygonEnd()}};var df=kc(30*vc),pf=function(t,e){return+e?function(t,e){function n(r,i,a,o,s,c,u,l,h,f,d,p,y,g){var m=u-r,v=l-i,b=m*m+v*v;if(b>4*e&&y--){var x=o+f,_=s+d,k=c+p,w=Mc(x*x+_*_+k*k),T=Bc(k/=w),E=bc(bc(k)-1)<1e-6||bc(a-h)<1e-6?(a+h)/2:_c(_,x),C=t(E,T),S=C[0],A=C[1],M=S-r,O=A-i,N=v*M-m*O;(N*N/b>e||bc((m*M+v*O)/b-.5)>.3||o*f+s*d+c*p<df)&&(n(r,i,a,o,s,c,S,A,E,x/=w,_/=w,k,y,g),g.point(S,A),n(S,A,E,x,_,k,u,l,h,f,d,p,y,g))}}return function(e){var r,i,a,o,s,c,u,l,h,f,d,p,y={point:g,lineStart:m,lineEnd:b,polygonStart:function(){e.polygonStart(),y.lineStart=x},polygonEnd:function(){e.polygonEnd(),y.lineStart=m}};function g(n,r){n=t(n,r),e.point(n[0],n[1])}function m(){l=NaN,y.point=v,e.lineStart()}function v(r,i){var a=eu([r,i]),o=t(r,i);n(l,h,u,f,d,p,l=o[0],h=o[1],u=r,f=a[0],d=a[1],p=a[2],16,e),e.point(l,h)}function b(){y.point=g,e.lineEnd()}function x(){m(),y.point=_,y.lineEnd=k}function _(t,e){v(r=t,e),i=l,a=h,o=f,s=d,c=p,y.point=v}function k(){n(l,h,u,f,d,p,i,a,r,o,s,c,16,e),y.lineEnd=b,b()}return y}}(t,e):function(t){return of({point:function(e,n){e=t(e,n),this.stream.point(e[0],e[1])}})}(t)};var yf=of({point:function(t,e){this.stream.point(t*vc,e*vc)}});function gf(t,e,n,r,i){function a(a,o){return[e+t*(a*=r),n-t*(o*=i)]}return a.invert=function(a,o){return[(a-e)/t*r,(n-o)/t*i]},a}function mf(t,e,n,r,i,a){var o=kc(a),s=Sc(a),c=o*t,u=s*t,l=o/t,h=s/t,f=(s*n-o*e)/t,d=(s*e+o*n)/t;function p(t,a){return[c*(t*=r)-u*(a*=i)+e,n-u*t-c*a]}return p.invert=function(t,e){return[r*(l*t-h*e+f),i*(d-h*t-l*e)]},p}function vf(t){return bf((function(){return t}))()}function bf(t){var e,n,r,i,a,o,s,c,u,l,h=150,f=480,d=250,p=0,y=0,g=0,m=0,v=0,b=0,x=1,_=1,k=null,w=Cl,T=null,E=oh,C=.5;function S(t){return c(t[0]*vc,t[1]*vc)}function A(t){return(t=c.invert(t[0],t[1]))&&[t[0]*mc,t[1]*mc]}function M(){var t=mf(h,0,0,x,_,b).apply(null,e(p,y)),r=(b?mf:gf)(h,f-t[0],d-t[1],x,_,b);return n=sl(g,m,v),s=al(e,r),c=al(n,s),o=pf(s,C),O()}function O(){return u=l=null,S}return S.stream=function(t){return u&&l===t?u:u=yf(function(t){return of({point:function(e,n){var r=t(e,n);return this.stream.point(r[0],r[1])}})}(n)(w(o(E(l=t)))))},S.preclip=function(t){return arguments.length?(w=t,k=void 0,O()):w},S.postclip=function(t){return arguments.length?(E=t,T=r=i=a=null,O()):E},S.clipAngle=function(t){return arguments.length?(w=+t?Sl(k=t*vc):(k=null,Cl),O()):k*mc},S.clipExtent=function(t){return arguments.length?(E=null==t?(T=r=i=a=null,oh):Al(T=+t[0][0],r=+t[0][1],i=+t[1][0],a=+t[1][1]),O()):null==T?null:[[T,r],[i,a]]},S.scale=function(t){return arguments.length?(h=+t,M()):h},S.translate=function(t){return arguments.length?(f=+t[0],d=+t[1],M()):[f,d]},S.center=function(t){return arguments.length?(p=t[0]%360*vc,y=t[1]%360*vc,M()):[p*mc,y*mc]},S.rotate=function(t){return arguments.length?(g=t[0]%360*vc,m=t[1]%360*vc,v=t.length>2?t[2]%360*vc:0,M()):[g*mc,m*mc,v*mc]},S.angle=function(t){return arguments.length?(b=t%360*vc,M()):b*mc},S.reflectX=function(t){return arguments.length?(x=t?-1:1,M()):x<0},S.reflectY=function(t){return arguments.length?(_=t?-1:1,M()):_<0},S.precision=function(t){return arguments.length?(o=pf(s,C=t*t),O()):Mc(C)},S.fitExtent=function(t,e){return uf(S,t,e)},S.fitSize=function(t,e){return lf(S,t,e)},S.fitWidth=function(t,e){return hf(S,t,e)},S.fitHeight=function(t,e){return ff(S,t,e)},function(){return e=t.apply(this,arguments),S.invert=e.invert&&A,M()}}function xf(t){var e=0,n=dc/3,r=bf(t),i=r(e,n);return i.parallels=function(t){return arguments.length?r(e=t[0]*vc,n=t[1]*vc):[e*mc,n*mc]},i}function _f(t,e){var n=Sc(t),r=(n+Sc(e))/2;if(bc(r)<1e-6)return function(t){var e=kc(t);function n(t,n){return[t*e,Sc(n)/e]}return n.invert=function(t,n){return[t/e,Bc(n*e)]},n}(t);var i=1+n*(2*r-n),a=Mc(i)/r;function o(t,e){var n=Mc(i-2*r*Sc(e))/r;return[n*Sc(t*=r),a-n*kc(t)]}return o.invert=function(t,e){var n=a-e,o=_c(t,bc(n))*Ac(n);return n*r<0&&(o-=dc*Ac(t)*Ac(n)),[o/r,Bc((i-(t*t+n*n)*r*r)/(2*r))]},o}var kf=function(){return xf(_f).scale(155.424).center([0,33.6442])},wf=function(){return kf().parallels([29.5,45.5]).scale(1070).translate([480,250]).rotate([96,0]).center([-.6,38.7])};var Tf=function(){var t,e,n,r,i,a,o=wf(),s=kf().rotate([154,0]).center([-2,58.5]).parallels([55,65]),c=kf().rotate([157,0]).center([-3,19.9]).parallels([8,18]),u={point:function(t,e){a=[t,e]}};function l(t){var e=t[0],o=t[1];return a=null,n.point(e,o),a||(r.point(e,o),a)||(i.point(e,o),a)}function h(){return t=e=null,l}return l.invert=function(t){var e=o.scale(),n=o.translate(),r=(t[0]-n[0])/e,i=(t[1]-n[1])/e;return(i>=.12&&i<.234&&r>=-.425&&r<-.214?s:i>=.166&&i<.234&&r>=-.214&&r<-.115?c:o).invert(t)},l.stream=function(n){return t&&e===n?t:(r=[o.stream(e=n),s.stream(n),c.stream(n)],i=r.length,t={point:function(t,e){for(var n=-1;++n<i;)r[n].point(t,e)},sphere:function(){for(var t=-1;++t<i;)r[t].sphere()},lineStart:function(){for(var t=-1;++t<i;)r[t].lineStart()},lineEnd:function(){for(var t=-1;++t<i;)r[t].lineEnd()},polygonStart:function(){for(var t=-1;++t<i;)r[t].polygonStart()},polygonEnd:function(){for(var t=-1;++t<i;)r[t].polygonEnd()}});var r,i},l.precision=function(t){return arguments.length?(o.precision(t),s.precision(t),c.precision(t),h()):o.precision()},l.scale=function(t){return arguments.length?(o.scale(t),s.scale(.35*t),c.scale(t),l.translate(o.translate())):o.scale()},l.translate=function(t){if(!arguments.length)return o.translate();var e=o.scale(),a=+t[0],l=+t[1];return n=o.translate(t).clipExtent([[a-.455*e,l-.238*e],[a+.455*e,l+.238*e]]).stream(u),r=s.translate([a-.307*e,l+.201*e]).clipExtent([[a-.425*e+1e-6,l+.12*e+1e-6],[a-.214*e-1e-6,l+.234*e-1e-6]]).stream(u),i=c.translate([a-.205*e,l+.212*e]).clipExtent([[a-.214*e+1e-6,l+.166*e+1e-6],[a-.115*e-1e-6,l+.234*e-1e-6]]).stream(u),h()},l.fitExtent=function(t,e){return uf(l,t,e)},l.fitSize=function(t,e){return lf(l,t,e)},l.fitWidth=function(t,e){return hf(l,t,e)},l.fitHeight=function(t,e){return ff(l,t,e)},l.scale(1070)};function Ef(t){return function(e,n){var r=kc(e),i=kc(n),a=t(r*i);return[a*i*Sc(e),a*Sc(n)]}}function Cf(t){return function(e,n){var r=Mc(e*e+n*n),i=t(r),a=Sc(i),o=kc(i);return[_c(e*a,r*o),Bc(r&&n*a/r)]}}var Sf=Ef((function(t){return Mc(2/(1+t))}));Sf.invert=Cf((function(t){return 2*Bc(t/2)}));var Af=function(){return vf(Sf).scale(124.75).clipAngle(179.999)},Mf=Ef((function(t){return(t=Nc(t))&&t/Sc(t)}));Mf.invert=Cf((function(t){return t}));var Of=function(){return vf(Mf).scale(79.4188).clipAngle(179.999)};function Nf(t,e){return[t,Ec(Oc((pc+e)/2))]}Nf.invert=function(t,e){return[t,2*xc(Tc(e))-pc]};var Bf=function(){return Df(Nf).scale(961/gc)};function Df(t){var e,n,r,i=vf(t),a=i.center,o=i.scale,s=i.translate,c=i.clipExtent,u=null;function l(){var a=dc*o(),s=i(hl(i.rotate()).invert([0,0]));return c(null==u?[[s[0]-a,s[1]-a],[s[0]+a,s[1]+a]]:t===Nf?[[Math.max(s[0]-a,u),e],[Math.min(s[0]+a,n),r]]:[[u,Math.max(s[1]-a,e)],[n,Math.min(s[1]+a,r)]])}return i.scale=function(t){return arguments.length?(o(t),l()):o()},i.translate=function(t){return arguments.length?(s(t),l()):s()},i.center=function(t){return arguments.length?(a(t),l()):a()},i.clipExtent=function(t){return arguments.length?(null==t?u=e=n=r=null:(u=+t[0][0],e=+t[0][1],n=+t[1][0],r=+t[1][1]),l()):null==u?null:[[u,e],[n,r]]},l()}function Lf(t){return Oc((pc+t)/2)}function If(t,e){var n=kc(t),r=t===e?Sc(t):Ec(n/kc(e))/Ec(Lf(e)/Lf(t)),i=n*Cc(Lf(t),r)/r;if(!r)return Nf;function a(t,e){i>0?e<1e-6-pc&&(e=1e-6-pc):e>pc-1e-6&&(e=pc-1e-6);var n=i/Cc(Lf(e),r);return[n*Sc(r*t),i-n*kc(r*t)]}return a.invert=function(t,e){var n=i-e,a=Ac(r)*Mc(t*t+n*n),o=_c(t,bc(n))*Ac(n);return n*r<0&&(o-=dc*Ac(t)*Ac(n)),[o/r,2*xc(Cc(i/a,1/r))-pc]},a}var Rf=function(){return xf(If).scale(109.5).parallels([30,30])};function Ff(t,e){return[t,e]}Ff.invert=Ff;var Pf=function(){return vf(Ff).scale(152.63)};function jf(t,e){var n=kc(t),r=t===e?Sc(t):(n-kc(e))/(e-t),i=n/r+t;if(bc(r)<1e-6)return Ff;function a(t,e){var n=i-e,a=r*t;return[n*Sc(a),i-n*kc(a)]}return a.invert=function(t,e){var n=i-e,a=_c(t,bc(n))*Ac(n);return n*r<0&&(a-=dc*Ac(t)*Ac(n)),[a/r,i-Ac(r)*Mc(t*t+n*n)]},a}var Yf=function(){return xf(jf).scale(131.154).center([0,13.9389])},zf=1.340264,Uf=-.081106,$f=893e-6,qf=.003796,Wf=Mc(3)/2;function Hf(t,e){var n=Bc(Wf*Sc(e)),r=n*n,i=r*r*r;return[t*kc(n)/(Wf*(zf+3*Uf*r+i*(7*$f+9*qf*r))),n*(zf+Uf*r+i*($f+qf*r))]}Hf.invert=function(t,e){for(var n,r=e,i=r*r,a=i*i*i,o=0;o<12&&(a=(i=(r-=n=(r*(zf+Uf*i+a*($f+qf*i))-e)/(zf+3*Uf*i+a*(7*$f+9*qf*i)))*r)*i*i,!(bc(n)<1e-12));++o);return[Wf*t*(zf+3*Uf*i+a*(7*$f+9*qf*i))/kc(r),Bc(Sc(r)/Wf)]};var Vf=function(){return vf(Hf).scale(177.158)};function Gf(t,e){var n=kc(e),r=kc(t)*n;return[n*Sc(t)/r,Sc(e)/r]}Gf.invert=Cf(xc);var Xf=function(){return vf(Gf).scale(144.049).clipAngle(60)},Zf=function(){var t,e,n,r,i,a,o,s=1,c=0,u=0,l=1,h=1,f=0,d=null,p=1,y=1,g=of({point:function(t,e){var n=b([t,e]);this.stream.point(n[0],n[1])}}),m=oh;function v(){return p=s*l,y=s*h,a=o=null,b}function b(n){var r=n[0]*p,i=n[1]*y;if(f){var a=i*t-r*e;r=r*t+i*e,i=a}return[r+c,i+u]}return b.invert=function(n){var r=n[0]-c,i=n[1]-u;if(f){var a=i*t+r*e;r=r*t-i*e,i=a}return[r/p,i/y]},b.stream=function(t){return a&&o===t?a:a=g(m(o=t))},b.postclip=function(t){return arguments.length?(m=t,d=n=r=i=null,v()):m},b.clipExtent=function(t){return arguments.length?(m=null==t?(d=n=r=i=null,oh):Al(d=+t[0][0],n=+t[0][1],r=+t[1][0],i=+t[1][1]),v()):null==d?null:[[d,n],[r,i]]},b.scale=function(t){return arguments.length?(s=+t,v()):s},b.translate=function(t){return arguments.length?(c=+t[0],u=+t[1],v()):[c,u]},b.angle=function(n){return arguments.length?(e=Sc(f=n%360*vc),t=kc(f),v()):f*mc},b.reflectX=function(t){return arguments.length?(l=t?-1:1,v()):l<0},b.reflectY=function(t){return arguments.length?(h=t?-1:1,v()):h<0},b.fitExtent=function(t,e){return uf(b,t,e)},b.fitSize=function(t,e){return lf(b,t,e)},b.fitWidth=function(t,e){return hf(b,t,e)},b.fitHeight=function(t,e){return ff(b,t,e)},b};function Kf(t,e){var n=e*e,r=n*n;return[t*(.8707-.131979*n+r*(r*(.003971*n-.001529*r)-.013791)),e*(1.007226+n*(.015085+r*(.028874*n-.044475-.005916*r)))]}Kf.invert=function(t,e){var n,r=e,i=25;do{var a=r*r,o=a*a;r-=n=(r*(1.007226+a*(.015085+o*(.028874*a-.044475-.005916*o)))-e)/(1.007226+a*(.045255+o*(.259866*a-.311325-.005916*11*o)))}while(bc(n)>1e-6&&--i>0);return[t/(.8707+(a=r*r)*(a*(a*a*a*(.003971-.001529*a)-.013791)-.131979)),r]};var Qf=function(){return vf(Kf).scale(175.295)};function Jf(t,e){return[kc(e)*Sc(t),Sc(e)]}Jf.invert=Cf(Bc);var td=function(){return vf(Jf).scale(249.5).clipAngle(90.000001)};function ed(t,e){var n=kc(e),r=1+kc(t)*n;return[n*Sc(t)/r,Sc(e)/r]}ed.invert=Cf((function(t){return 2*xc(t)}));var nd=function(){return vf(ed).scale(250).clipAngle(142)};function rd(t,e){return[Ec(Oc((pc+e)/2)),-t]}rd.invert=function(t,e){return[-e,2*xc(Tc(t))-pc]};var id=function(){var t=Df(rd),e=t.center,n=t.rotate;return t.center=function(t){return arguments.length?e([-t[1],t[0]]):[(t=e())[1],-t[0]]},t.rotate=function(t){return arguments.length?n([t[0],t[1],t.length>2?t[2]+90:90]):[(t=n())[0],t[1],t[2]-90]},n([0,0,90]).scale(159.155)};function ad(t,e){return t.parent===e.parent?1:2}function od(t,e){return t+e.x}function sd(t,e){return Math.max(t,e.y)}var cd=function(){var t=ad,e=1,n=1,r=!1;function i(i){var a,o=0;i.eachAfter((function(e){var n=e.children;n?(e.x=function(t){return t.reduce(od,0)/t.length}(n),e.y=function(t){return 1+t.reduce(sd,0)}(n)):(e.x=a?o+=t(e,a):0,e.y=0,a=e)}));var s=function(t){for(var e;e=t.children;)t=e[0];return t}(i),c=function(t){for(var e;e=t.children;)t=e[e.length-1];return t}(i),u=s.x-t(s,c)/2,l=c.x+t(c,s)/2;return i.eachAfter(r?function(t){t.x=(t.x-i.x)*e,t.y=(i.y-t.y)*n}:function(t){t.x=(t.x-u)/(l-u)*e,t.y=(1-(i.y?t.y/i.y:1))*n})}return i.separation=function(e){return arguments.length?(t=e,i):t},i.size=function(t){return arguments.length?(r=!1,e=+t[0],n=+t[1],i):r?null:[e,n]},i.nodeSize=function(t){return arguments.length?(r=!0,e=+t[0],n=+t[1],i):r?[e,n]:null},i};function ud(t){var e=0,n=t.children,r=n&&n.length;if(r)for(;--r>=0;)e+=n[r].value;else e=1;t.value=e}function ld(t,e){var n,r,i,a,o,s=new pd(t),c=+t.value&&(s.value=t.value),u=[s];for(null==e&&(e=hd);n=u.pop();)if(c&&(n.value=+n.data.value),(i=e(n.data))&&(o=i.length))for(n.children=new Array(o),a=o-1;a>=0;--a)u.push(r=n.children[a]=new pd(i[a])),r.parent=n,r.depth=n.depth+1;return s.eachBefore(dd)}function hd(t){return t.children}function fd(t){t.data=t.data.data}function dd(t){var e=0;do{t.height=e}while((t=t.parent)&&t.height<++e)}function pd(t){this.data=t,this.depth=this.height=0,this.parent=null}pd.prototype=ld.prototype={constructor:pd,count:function(){return this.eachAfter(ud)},each:function(t){var e,n,r,i,a=this,o=[a];do{for(e=o.reverse(),o=[];a=e.pop();)if(t(a),n=a.children)for(r=0,i=n.length;r<i;++r)o.push(n[r])}while(o.length);return this},eachAfter:function(t){for(var e,n,r,i=this,a=[i],o=[];i=a.pop();)if(o.push(i),e=i.children)for(n=0,r=e.length;n<r;++n)a.push(e[n]);for(;i=o.pop();)t(i);return this},eachBefore:function(t){for(var e,n,r=this,i=[r];r=i.pop();)if(t(r),e=r.children)for(n=e.length-1;n>=0;--n)i.push(e[n]);return this},sum:function(t){return this.eachAfter((function(e){for(var n=+t(e.data)||0,r=e.children,i=r&&r.length;--i>=0;)n+=r[i].value;e.value=n}))},sort:function(t){return this.eachBefore((function(e){e.children&&e.children.sort(t)}))},path:function(t){for(var e=this,n=function(t,e){if(t===e)return t;var n=t.ancestors(),r=e.ancestors(),i=null;t=n.pop(),e=r.pop();for(;t===e;)i=t,t=n.pop(),e=r.pop();return i}(e,t),r=[e];e!==n;)e=e.parent,r.push(e);for(var i=r.length;t!==n;)r.splice(i,0,t),t=t.parent;return r},ancestors:function(){for(var t=this,e=[t];t=t.parent;)e.push(t);return e},descendants:function(){var t=[];return this.each((function(e){t.push(e)})),t},leaves:function(){var t=[];return this.eachBefore((function(e){e.children||t.push(e)})),t},links:function(){var t=this,e=[];return t.each((function(n){n!==t&&e.push({source:n.parent,target:n})})),e},copy:function(){return ld(this).eachBefore(fd)}};var yd=Array.prototype.slice;var gd=function(t){for(var e,n,r=0,i=(t=function(t){for(var e,n,r=t.length;r;)n=Math.random()*r--|0,e=t[r],t[r]=t[n],t[n]=e;return t}(yd.call(t))).length,a=[];r<i;)e=t[r],n&&bd(n,e)?++r:(n=_d(a=md(a,e)),r=0);return n};function md(t,e){var n,r;if(xd(e,t))return[e];for(n=0;n<t.length;++n)if(vd(e,t[n])&&xd(kd(t[n],e),t))return[t[n],e];for(n=0;n<t.length-1;++n)for(r=n+1;r<t.length;++r)if(vd(kd(t[n],t[r]),e)&&vd(kd(t[n],e),t[r])&&vd(kd(t[r],e),t[n])&&xd(wd(t[n],t[r],e),t))return[t[n],t[r],e];throw new Error}function vd(t,e){var n=t.r-e.r,r=e.x-t.x,i=e.y-t.y;return n<0||n*n<r*r+i*i}function bd(t,e){var n=t.r-e.r+1e-6,r=e.x-t.x,i=e.y-t.y;return n>0&&n*n>r*r+i*i}function xd(t,e){for(var n=0;n<e.length;++n)if(!bd(t,e[n]))return!1;return!0}function _d(t){switch(t.length){case 1:return{x:(e=t[0]).x,y:e.y,r:e.r};case 2:return kd(t[0],t[1]);case 3:return wd(t[0],t[1],t[2])}var e}function kd(t,e){var n=t.x,r=t.y,i=t.r,a=e.x,o=e.y,s=e.r,c=a-n,u=o-r,l=s-i,h=Math.sqrt(c*c+u*u);return{x:(n+a+c/h*l)/2,y:(r+o+u/h*l)/2,r:(h+i+s)/2}}function wd(t,e,n){var r=t.x,i=t.y,a=t.r,o=e.x,s=e.y,c=e.r,u=n.x,l=n.y,h=n.r,f=r-o,d=r-u,p=i-s,y=i-l,g=c-a,m=h-a,v=r*r+i*i-a*a,b=v-o*o-s*s+c*c,x=v-u*u-l*l+h*h,_=d*p-f*y,k=(p*x-y*b)/(2*_)-r,w=(y*g-p*m)/_,T=(d*b-f*x)/(2*_)-i,E=(f*m-d*g)/_,C=w*w+E*E-1,S=2*(a+k*w+T*E),A=k*k+T*T-a*a,M=-(C?(S+Math.sqrt(S*S-4*C*A))/(2*C):A/S);return{x:r+k+w*M,y:i+T+E*M,r:M}}function Td(t,e,n){var r,i,a,o,s=t.x-e.x,c=t.y-e.y,u=s*s+c*c;u?(i=e.r+n.r,i*=i,o=t.r+n.r,i>(o*=o)?(r=(u+o-i)/(2*u),a=Math.sqrt(Math.max(0,o/u-r*r)),n.x=t.x-r*s-a*c,n.y=t.y-r*c+a*s):(r=(u+i-o)/(2*u),a=Math.sqrt(Math.max(0,i/u-r*r)),n.x=e.x+r*s-a*c,n.y=e.y+r*c+a*s)):(n.x=e.x+n.r,n.y=e.y)}function Ed(t,e){var n=t.r+e.r-1e-6,r=e.x-t.x,i=e.y-t.y;return n>0&&n*n>r*r+i*i}function Cd(t){var e=t._,n=t.next._,r=e.r+n.r,i=(e.x*n.r+n.x*e.r)/r,a=(e.y*n.r+n.y*e.r)/r;return i*i+a*a}function Sd(t){this._=t,this.next=null,this.previous=null}function Ad(t){if(!(i=t.length))return 0;var e,n,r,i,a,o,s,c,u,l,h;if((e=t[0]).x=0,e.y=0,!(i>1))return e.r;if(n=t[1],e.x=-n.r,n.x=e.r,n.y=0,!(i>2))return e.r+n.r;Td(n,e,r=t[2]),e=new Sd(e),n=new Sd(n),r=new Sd(r),e.next=r.previous=n,n.next=e.previous=r,r.next=n.previous=e;t:for(s=3;s<i;++s){Td(e._,n._,r=t[s]),r=new Sd(r),c=n.next,u=e.previous,l=n._.r,h=e._.r;do{if(l<=h){if(Ed(c._,r._)){n=c,e.next=n,n.previous=e,--s;continue t}l+=c._.r,c=c.next}else{if(Ed(u._,r._)){(e=u).next=n,n.previous=e,--s;continue t}h+=u._.r,u=u.previous}}while(c!==u.next);for(r.previous=e,r.next=n,e.next=n.previous=n=r,a=Cd(e);(r=r.next)!==n;)(o=Cd(r))<a&&(e=r,a=o);n=e.next}for(e=[n._],r=n;(r=r.next)!==n;)e.push(r._);for(r=gd(e),s=0;s<i;++s)(e=t[s]).x-=r.x,e.y-=r.y;return r.r}var Md=function(t){return Ad(t),t};function Od(t){return null==t?null:Nd(t)}function Nd(t){if("function"!=typeof t)throw new Error;return t}function Bd(){return 0}var Dd=function(t){return function(){return t}};function Ld(t){return Math.sqrt(t.value)}var Id=function(){var t=null,e=1,n=1,r=Bd;function i(i){return i.x=e/2,i.y=n/2,t?i.eachBefore(Rd(t)).eachAfter(Fd(r,.5)).eachBefore(Pd(1)):i.eachBefore(Rd(Ld)).eachAfter(Fd(Bd,1)).eachAfter(Fd(r,i.r/Math.min(e,n))).eachBefore(Pd(Math.min(e,n)/(2*i.r))),i}return i.radius=function(e){return arguments.length?(t=Od(e),i):t},i.size=function(t){return arguments.length?(e=+t[0],n=+t[1],i):[e,n]},i.padding=function(t){return arguments.length?(r="function"==typeof t?t:Dd(+t),i):r},i};function Rd(t){return function(e){e.children||(e.r=Math.max(0,+t(e)||0))}}function Fd(t,e){return function(n){if(r=n.children){var r,i,a,o=r.length,s=t(n)*e||0;if(s)for(i=0;i<o;++i)r[i].r+=s;if(a=Ad(r),s)for(i=0;i<o;++i)r[i].r-=s;n.r=a+s}}}function Pd(t){return function(e){var n=e.parent;e.r*=t,n&&(e.x=n.x+t*e.x,e.y=n.y+t*e.y)}}var jd=function(t){t.x0=Math.round(t.x0),t.y0=Math.round(t.y0),t.x1=Math.round(t.x1),t.y1=Math.round(t.y1)},Yd=function(t,e,n,r,i){for(var a,o=t.children,s=-1,c=o.length,u=t.value&&(r-e)/t.value;++s<c;)(a=o[s]).y0=n,a.y1=i,a.x0=e,a.x1=e+=a.value*u},zd=function(){var t=1,e=1,n=0,r=!1;function i(i){var a=i.height+1;return i.x0=i.y0=n,i.x1=t,i.y1=e/a,i.eachBefore(function(t,e){return function(r){r.children&&Yd(r,r.x0,t*(r.depth+1)/e,r.x1,t*(r.depth+2)/e);var i=r.x0,a=r.y0,o=r.x1-n,s=r.y1-n;o<i&&(i=o=(i+o)/2),s<a&&(a=s=(a+s)/2),r.x0=i,r.y0=a,r.x1=o,r.y1=s}}(e,a)),r&&i.eachBefore(jd),i}return i.round=function(t){return arguments.length?(r=!!t,i):r},i.size=function(n){return arguments.length?(t=+n[0],e=+n[1],i):[t,e]},i.padding=function(t){return arguments.length?(n=+t,i):n},i},Ud={depth:-1},$d={};function qd(t){return t.id}function Wd(t){return t.parentId}var Hd=function(){var t=qd,e=Wd;function n(n){var r,i,a,o,s,c,u,l=n.length,h=new Array(l),f={};for(i=0;i<l;++i)r=n[i],s=h[i]=new pd(r),null!=(c=t(r,i,n))&&(c+="")&&(f[u="$"+(s.id=c)]=u in f?$d:s);for(i=0;i<l;++i)if(s=h[i],null!=(c=e(n[i],i,n))&&(c+="")){if(!(o=f["$"+c]))throw new Error("missing: "+c);if(o===$d)throw new Error("ambiguous: "+c);o.children?o.children.push(s):o.children=[s],s.parent=o}else{if(a)throw new Error("multiple roots");a=s}if(!a)throw new Error("no root");if(a.parent=Ud,a.eachBefore((function(t){t.depth=t.parent.depth+1,--l})).eachBefore(dd),a.parent=null,l>0)throw new Error("cycle");return a}return n.id=function(e){return arguments.length?(t=Nd(e),n):t},n.parentId=function(t){return arguments.length?(e=Nd(t),n):e},n};function Vd(t,e){return t.parent===e.parent?1:2}function Gd(t){var e=t.children;return e?e[0]:t.t}function Xd(t){var e=t.children;return e?e[e.length-1]:t.t}function Zd(t,e,n){var r=n/(e.i-t.i);e.c-=r,e.s+=n,t.c+=r,e.z+=n,e.m+=n}function Kd(t,e,n){return t.a.parent===e.parent?t.a:n}function Qd(t,e){this._=t,this.parent=null,this.children=null,this.A=null,this.a=this,this.z=0,this.m=0,this.c=0,this.s=0,this.t=null,this.i=e}Qd.prototype=Object.create(pd.prototype);var Jd=function(){var t=Vd,e=1,n=1,r=null;function i(i){var c=function(t){for(var e,n,r,i,a,o=new Qd(t,0),s=[o];e=s.pop();)if(r=e._.children)for(e.children=new Array(a=r.length),i=a-1;i>=0;--i)s.push(n=e.children[i]=new Qd(r[i],i)),n.parent=e;return(o.parent=new Qd(null,0)).children=[o],o}(i);if(c.eachAfter(a),c.parent.m=-c.z,c.eachBefore(o),r)i.eachBefore(s);else{var u=i,l=i,h=i;i.eachBefore((function(t){t.x<u.x&&(u=t),t.x>l.x&&(l=t),t.depth>h.depth&&(h=t)}));var f=u===l?1:t(u,l)/2,d=f-u.x,p=e/(l.x+f+d),y=n/(h.depth||1);i.eachBefore((function(t){t.x=(t.x+d)*p,t.y=t.depth*y}))}return i}function a(e){var n=e.children,r=e.parent.children,i=e.i?r[e.i-1]:null;if(n){!function(t){for(var e,n=0,r=0,i=t.children,a=i.length;--a>=0;)(e=i[a]).z+=n,e.m+=n,n+=e.s+(r+=e.c)}(e);var a=(n[0].z+n[n.length-1].z)/2;i?(e.z=i.z+t(e._,i._),e.m=e.z-a):e.z=a}else i&&(e.z=i.z+t(e._,i._));e.parent.A=function(e,n,r){if(n){for(var i,a=e,o=e,s=n,c=a.parent.children[0],u=a.m,l=o.m,h=s.m,f=c.m;s=Xd(s),a=Gd(a),s&&a;)c=Gd(c),(o=Xd(o)).a=e,(i=s.z+h-a.z-u+t(s._,a._))>0&&(Zd(Kd(s,e,r),e,i),u+=i,l+=i),h+=s.m,u+=a.m,f+=c.m,l+=o.m;s&&!Xd(o)&&(o.t=s,o.m+=h-l),a&&!Gd(c)&&(c.t=a,c.m+=u-f,r=e)}return r}(e,i,e.parent.A||r[0])}function o(t){t._.x=t.z+t.parent.m,t.m+=t.parent.m}function s(t){t.x*=e,t.y=t.depth*n}return i.separation=function(e){return arguments.length?(t=e,i):t},i.size=function(t){return arguments.length?(r=!1,e=+t[0],n=+t[1],i):r?null:[e,n]},i.nodeSize=function(t){return arguments.length?(r=!0,e=+t[0],n=+t[1],i):r?[e,n]:null},i},tp=function(t,e,n,r,i){for(var a,o=t.children,s=-1,c=o.length,u=t.value&&(i-n)/t.value;++s<c;)(a=o[s]).x0=e,a.x1=r,a.y0=n,a.y1=n+=a.value*u},ep=(1+Math.sqrt(5))/2;function np(t,e,n,r,i,a){for(var o,s,c,u,l,h,f,d,p,y,g,m=[],v=e.children,b=0,x=0,_=v.length,k=e.value;b<_;){c=i-n,u=a-r;do{l=v[x++].value}while(!l&&x<_);for(h=f=l,g=l*l*(y=Math.max(u/c,c/u)/(k*t)),p=Math.max(f/g,g/h);x<_;++x){if(l+=s=v[x].value,s<h&&(h=s),s>f&&(f=s),g=l*l*y,(d=Math.max(f/g,g/h))>p){l-=s;break}p=d}m.push(o={value:l,dice:c<u,children:v.slice(b,x)}),o.dice?Yd(o,n,r,i,k?r+=u*l/k:a):tp(o,n,r,k?n+=c*l/k:i,a),k-=l,b=x}return m}var rp=function t(e){function n(t,n,r,i,a){np(e,t,n,r,i,a)}return n.ratio=function(e){return t((e=+e)>1?e:1)},n}(ep),ip=function(){var t=rp,e=!1,n=1,r=1,i=[0],a=Bd,o=Bd,s=Bd,c=Bd,u=Bd;function l(t){return t.x0=t.y0=0,t.x1=n,t.y1=r,t.eachBefore(h),i=[0],e&&t.eachBefore(jd),t}function h(e){var n=i[e.depth],r=e.x0+n,l=e.y0+n,h=e.x1-n,f=e.y1-n;h<r&&(r=h=(r+h)/2),f<l&&(l=f=(l+f)/2),e.x0=r,e.y0=l,e.x1=h,e.y1=f,e.children&&(n=i[e.depth+1]=a(e)/2,r+=u(e)-n,l+=o(e)-n,(h-=s(e)-n)<r&&(r=h=(r+h)/2),(f-=c(e)-n)<l&&(l=f=(l+f)/2),t(e,r,l,h,f))}return l.round=function(t){return arguments.length?(e=!!t,l):e},l.size=function(t){return arguments.length?(n=+t[0],r=+t[1],l):[n,r]},l.tile=function(e){return arguments.length?(t=Nd(e),l):t},l.padding=function(t){return arguments.length?l.paddingInner(t).paddingOuter(t):l.paddingInner()},l.paddingInner=function(t){return arguments.length?(a="function"==typeof t?t:Dd(+t),l):a},l.paddingOuter=function(t){return arguments.length?l.paddingTop(t).paddingRight(t).paddingBottom(t).paddingLeft(t):l.paddingTop()},l.paddingTop=function(t){return arguments.length?(o="function"==typeof t?t:Dd(+t),l):o},l.paddingRight=function(t){return arguments.length?(s="function"==typeof t?t:Dd(+t),l):s},l.paddingBottom=function(t){return arguments.length?(c="function"==typeof t?t:Dd(+t),l):c},l.paddingLeft=function(t){return arguments.length?(u="function"==typeof t?t:Dd(+t),l):u},l},ap=function(t,e,n,r,i){var a,o,s=t.children,c=s.length,u=new Array(c+1);for(u[0]=o=a=0;a<c;++a)u[a+1]=o+=s[a].value;!function t(e,n,r,i,a,o,c){if(e>=n-1){var l=s[e];return l.x0=i,l.y0=a,l.x1=o,void(l.y1=c)}var h=u[e],f=r/2+h,d=e+1,p=n-1;for(;d<p;){var y=d+p>>>1;u[y]<f?d=y+1:p=y}f-u[d-1]<u[d]-f&&e+1<d&&--d;var g=u[d]-h,m=r-g;if(o-i>c-a){var v=(i*m+o*g)/r;t(e,d,g,i,a,v,c),t(d,n,m,v,a,o,c)}else{var b=(a*m+c*g)/r;t(e,d,g,i,a,o,b),t(d,n,m,i,b,o,c)}}(0,c,t.value,e,n,r,i)},op=function(t,e,n,r,i){(1&t.depth?tp:Yd)(t,e,n,r,i)},sp=function t(e){function n(t,n,r,i,a){if((o=t._squarify)&&o.ratio===e)for(var o,s,c,u,l,h=-1,f=o.length,d=t.value;++h<f;){for(c=(s=o[h]).children,u=s.value=0,l=c.length;u<l;++u)s.value+=c[u].value;s.dice?Yd(s,n,r,i,r+=(a-r)*s.value/d):tp(s,n,r,n+=(i-n)*s.value/d,a),d-=s.value}else t._squarify=o=np(e,t,n,r,i,a),o.ratio=e}return n.ratio=function(e){return t((e=+e)>1?e:1)},n}(ep),cp=function(t){var e=t.length;return function(n){return t[Math.max(0,Math.min(e-1,Math.floor(n*e)))]}},up=function(t,e){var n=ln(+t,+e);return function(t){var e=n(t);return e-360*Math.floor(e/360)}},lp=function(t,e){return t=+t,e=+e,function(n){return Math.round(t*(1-n)+e*n)}},hp=Math.SQRT2;function fp(t){return((t=Math.exp(t))+1/t)/2}var dp=function(t,e){var n,r,i=t[0],a=t[1],o=t[2],s=e[0],c=e[1],u=e[2],l=s-i,h=c-a,f=l*l+h*h;if(f<1e-12)r=Math.log(u/o)/hp,n=function(t){return[i+t*l,a+t*h,o*Math.exp(hp*t*r)]};else{var d=Math.sqrt(f),p=(u*u-o*o+4*f)/(2*o*2*d),y=(u*u-o*o-4*f)/(2*u*2*d),g=Math.log(Math.sqrt(p*p+1)-p),m=Math.log(Math.sqrt(y*y+1)-y);r=(m-g)/hp,n=function(t){var e,n=t*r,s=fp(g),c=o/(2*d)*(s*(e=hp*n+g,((e=Math.exp(2*e))-1)/(e+1))-function(t){return((t=Math.exp(t))-1/t)/2}(g));return[i+c*l,a+c*h,o*s/fp(hp*n+g)]}}return n.duration=1e3*r,n};function pp(t){return function(e,n){var r=t((e=en(e)).h,(n=en(n)).h),i=fn(e.s,n.s),a=fn(e.l,n.l),o=fn(e.opacity,n.opacity);return function(t){return e.h=r(t),e.s=i(t),e.l=a(t),e.opacity=o(t),e+""}}}var yp=pp(ln),gp=pp(fn);function mp(t,e){var n=fn((t=ya(t)).l,(e=ya(e)).l),r=fn(t.a,e.a),i=fn(t.b,e.b),a=fn(t.opacity,e.opacity);return function(e){return t.l=n(e),t.a=r(e),t.b=i(e),t.opacity=a(e),t+""}}function vp(t){return function(e,n){var r=t((e=wa(e)).h,(n=wa(n)).h),i=fn(e.c,n.c),a=fn(e.l,n.l),o=fn(e.opacity,n.opacity);return function(t){return e.h=r(t),e.c=i(t),e.l=a(t),e.opacity=o(t),e+""}}}var bp=vp(ln),xp=vp(fn);function _p(t){return function e(n){function r(e,r){var i=t((e=Na(e)).h,(r=Na(r)).h),a=fn(e.s,r.s),o=fn(e.l,r.l),s=fn(e.opacity,r.opacity);return function(t){return e.h=i(t),e.s=a(t),e.l=o(Math.pow(t,n)),e.opacity=s(t),e+""}}return n=+n,r.gamma=e,r}(1)}var kp=_p(ln),wp=_p(fn);function Tp(t,e){for(var n=0,r=e.length-1,i=e[0],a=new Array(r<0?0:r);n<r;)a[n]=t(i,i=e[++n]);return function(t){var e=Math.max(0,Math.min(r-1,Math.floor(t*=r)));return a[e](t-e)}}var Ep=function(t,e){for(var n=new Array(e),r=0;r<e;++r)n[r]=t(r/(e-1));return n},Cp=function(t){for(var e,n=-1,r=t.length,i=t[r-1],a=0;++n<r;)e=i,i=t[n],a+=e[1]*i[0]-e[0]*i[1];return a/2},Sp=function(t){for(var e,n,r=-1,i=t.length,a=0,o=0,s=t[i-1],c=0;++r<i;)e=s,s=t[r],c+=n=e[0]*s[1]-s[0]*e[1],a+=(e[0]+s[0])*n,o+=(e[1]+s[1])*n;return[a/(c*=3),o/c]};function Ap(t,e){return t[0]-e[0]||t[1]-e[1]}function Mp(t){for(var e,n,r,i=t.length,a=[0,1],o=2,s=2;s<i;++s){for(;o>1&&(e=t[a[o-2]],n=t[a[o-1]],r=t[s],(n[0]-e[0])*(r[1]-e[1])-(n[1]-e[1])*(r[0]-e[0])<=0);)--o;a[o++]=s}return a.slice(0,o)}var Op=function(t){if((n=t.length)<3)return null;var e,n,r=new Array(n),i=new Array(n);for(e=0;e<n;++e)r[e]=[+t[e][0],+t[e][1],e];for(r.sort(Ap),e=0;e<n;++e)i[e]=[r[e][0],-r[e][1]];var a=Mp(r),o=Mp(i),s=o[0]===a[0],c=o[o.length-1]===a[a.length-1],u=[];for(e=a.length-1;e>=0;--e)u.push(t[r[a[e]][2]]);for(e=+s;e<o.length-c;++e)u.push(t[r[o[e]][2]]);return u},Np=function(t,e){for(var n,r,i=t.length,a=t[i-1],o=e[0],s=e[1],c=a[0],u=a[1],l=!1,h=0;h<i;++h)n=(a=t[h])[0],(r=a[1])>s!=u>s&&o<(c-n)*(s-r)/(u-r)+n&&(l=!l),c=n,u=r;return l},Bp=function(t){for(var e,n,r=-1,i=t.length,a=t[i-1],o=a[0],s=a[1],c=0;++r<i;)e=o,n=s,e-=o=(a=t[r])[0],n-=s=a[1],c+=Math.sqrt(e*e+n*n);return c},Dp=function(){return Math.random()},Lp=function t(e){function n(t,n){return t=null==t?0:+t,n=null==n?1:+n,1===arguments.length?(n=t,t=0):n-=t,function(){return e()*n+t}}return n.source=t,n}(Dp),Ip=function t(e){function n(t,n){var r,i;return t=null==t?0:+t,n=null==n?1:+n,function(){var a;if(null!=r)a=r,r=null;else do{r=2*e()-1,a=2*e()-1,i=r*r+a*a}while(!i||i>1);return t+n*a*Math.sqrt(-2*Math.log(i)/i)}}return n.source=t,n}(Dp),Rp=function t(e){function n(){var t=Ip.source(e).apply(this,arguments);return function(){return Math.exp(t())}}return n.source=t,n}(Dp),Fp=function t(e){function n(t){return function(){for(var n=0,r=0;r<t;++r)n+=e();return n}}return n.source=t,n}(Dp),Pp=function t(e){function n(t){var n=Fp.source(e)(t);return function(){return n()/t}}return n.source=t,n}(Dp),jp=function t(e){function n(t){return function(){return-Math.log(1-e())/t}}return n.source=t,n}(Dp);function Yp(t,e){switch(arguments.length){case 0:break;case 1:this.range(t);break;default:this.range(e).domain(t)}return this}function zp(t,e){switch(arguments.length){case 0:break;case 1:this.interpolator(t);break;default:this.interpolator(e).domain(t)}return this}var Up=Array.prototype,$p=Up.map,qp=Up.slice,Wp={name:"implicit"};function Hp(){var t=Qi(),e=[],n=[],r=Wp;function i(i){var a=i+"",o=t.get(a);if(!o){if(r!==Wp)return r;t.set(a,o=e.push(i))}return n[(o-1)%n.length]}return i.domain=function(n){if(!arguments.length)return e.slice();e=[],t=Qi();for(var r,a,o=-1,s=n.length;++o<s;)t.has(a=(r=n[o])+"")||t.set(a,e.push(r));return i},i.range=function(t){return arguments.length?(n=qp.call(t),i):n.slice()},i.unknown=function(t){return arguments.length?(r=t,i):r},i.copy=function(){return Hp(e,n).unknown(r)},Yp.apply(i,arguments),i}function Vp(){var t,e,n=Hp().unknown(void 0),r=n.domain,i=n.range,a=[0,1],o=!1,s=0,c=0,u=.5;function l(){var n=r().length,l=a[1]<a[0],h=a[l-0],f=a[1-l];t=(f-h)/Math.max(1,n-s+2*c),o&&(t=Math.floor(t)),h+=(f-h-t*(n-s))*u,e=t*(1-s),o&&(h=Math.round(h),e=Math.round(e));var d=w(n).map((function(e){return h+t*e}));return i(l?d.reverse():d)}return delete n.unknown,n.domain=function(t){return arguments.length?(r(t),l()):r()},n.range=function(t){return arguments.length?(a=[+t[0],+t[1]],l()):a.slice()},n.rangeRound=function(t){return a=[+t[0],+t[1]],o=!0,l()},n.bandwidth=function(){return e},n.step=function(){return t},n.round=function(t){return arguments.length?(o=!!t,l()):o},n.padding=function(t){return arguments.length?(s=Math.min(1,c=+t),l()):s},n.paddingInner=function(t){return arguments.length?(s=Math.min(1,t),l()):s},n.paddingOuter=function(t){return arguments.length?(c=+t,l()):c},n.align=function(t){return arguments.length?(u=Math.max(0,Math.min(1,t)),l()):u},n.copy=function(){return Vp(r(),a).round(o).paddingInner(s).paddingOuter(c).align(u)},Yp.apply(l(),arguments)}function Gp(t){var e=t.copy;return t.padding=t.paddingOuter,delete t.paddingInner,delete t.paddingOuter,t.copy=function(){return Gp(e())},t}function Xp(){return Gp(Vp.apply(null,arguments).paddingInner(1))}var Zp=function(t){return+t},Kp=[0,1];function Qp(t){return t}function Jp(t,e){return(e-=t=+t)?function(n){return(n-t)/e}:(n=isNaN(e)?NaN:.5,function(){return n});var n}function ty(t){var e,n=t[0],r=t[t.length-1];return n>r&&(e=n,n=r,r=e),function(t){return Math.max(n,Math.min(r,t))}}function ey(t,e,n){var r=t[0],i=t[1],a=e[0],o=e[1];return i<r?(r=Jp(i,r),a=n(o,a)):(r=Jp(r,i),a=n(a,o)),function(t){return a(r(t))}}function ny(t,e,n){var r=Math.min(t.length,e.length)-1,i=new Array(r),a=new Array(r),o=-1;for(t[r]<t[0]&&(t=t.slice().reverse(),e=e.slice().reverse());++o<r;)i[o]=Jp(t[o],t[o+1]),a[o]=n(e[o],e[o+1]);return function(e){var n=u(t,e,1,r)-1;return a[n](i[n](e))}}function ry(t,e){return e.domain(t.domain()).range(t.range()).interpolate(t.interpolate()).clamp(t.clamp()).unknown(t.unknown())}function iy(){var t,e,n,r,i,a,o=Kp,s=Kp,c=Mn,u=Qp;function l(){return r=Math.min(o.length,s.length)>2?ny:ey,i=a=null,h}function h(e){return isNaN(e=+e)?n:(i||(i=r(o.map(t),s,c)))(t(u(e)))}return h.invert=function(n){return u(e((a||(a=r(s,o.map(t),kn)))(n)))},h.domain=function(t){return arguments.length?(o=$p.call(t,Zp),u===Qp||(u=ty(o)),l()):o.slice()},h.range=function(t){return arguments.length?(s=qp.call(t),l()):s.slice()},h.rangeRound=function(t){return s=qp.call(t),c=lp,l()},h.clamp=function(t){return arguments.length?(u=t?ty(o):Qp,h):u!==Qp},h.interpolate=function(t){return arguments.length?(c=t,l()):c},h.unknown=function(t){return arguments.length?(n=t,h):n},function(n,r){return t=n,e=r,l()}}function ay(t,e){return iy()(t,e)}var oy=function(t,e,n,r){var i,a=M(t,e,n);switch((r=Vs(null==r?",f":r)).type){case"s":var o=Math.max(Math.abs(t),Math.abs(e));return null!=r.precision||isNaN(i=sc(a,o))||(r.precision=i),Qs(r,o);case"":case"e":case"g":case"p":case"r":null!=r.precision||isNaN(i=cc(a,Math.max(Math.abs(t),Math.abs(e))))||(r.precision=i-("e"===r.type));break;case"f":case"%":null!=r.precision||isNaN(i=oc(a))||(r.precision=i-2*("%"===r.type))}return Ks(r)};function sy(t){var e=t.domain;return t.ticks=function(t){var n=e();return S(n[0],n[n.length-1],null==t?10:t)},t.tickFormat=function(t,n){var r=e();return oy(r[0],r[r.length-1],null==t?10:t,n)},t.nice=function(n){null==n&&(n=10);var r,i=e(),a=0,o=i.length-1,s=i[a],c=i[o];return c<s&&(r=s,s=c,c=r,r=a,a=o,o=r),(r=A(s,c,n))>0?r=A(s=Math.floor(s/r)*r,c=Math.ceil(c/r)*r,n):r<0&&(r=A(s=Math.ceil(s*r)/r,c=Math.floor(c*r)/r,n)),r>0?(i[a]=Math.floor(s/r)*r,i[o]=Math.ceil(c/r)*r,e(i)):r<0&&(i[a]=Math.ceil(s*r)/r,i[o]=Math.floor(c*r)/r,e(i)),t},t}function cy(){var t=ay(Qp,Qp);return t.copy=function(){return ry(t,cy())},Yp.apply(t,arguments),sy(t)}function uy(t){var e;function n(t){return isNaN(t=+t)?e:t}return n.invert=n,n.domain=n.range=function(e){return arguments.length?(t=$p.call(e,Zp),n):t.slice()},n.unknown=function(t){return arguments.length?(e=t,n):e},n.copy=function(){return uy(t).unknown(e)},t=arguments.length?$p.call(t,Zp):[0,1],sy(n)}var ly=function(t,e){var n,r=0,i=(t=t.slice()).length-1,a=t[r],o=t[i];return o<a&&(n=r,r=i,i=n,n=a,a=o,o=n),t[r]=e.floor(a),t[i]=e.ceil(o),t};function hy(t){return Math.log(t)}function fy(t){return Math.exp(t)}function dy(t){return-Math.log(-t)}function py(t){return-Math.exp(-t)}function yy(t){return isFinite(t)?+("1e"+t):t<0?0:t}function gy(t){return function(e){return-t(-e)}}function my(t){var e,n,r=t(hy,fy),i=r.domain,a=10;function o(){return e=function(t){return t===Math.E?Math.log:10===t&&Math.log10||2===t&&Math.log2||(t=Math.log(t),function(e){return Math.log(e)/t})}(a),n=function(t){return 10===t?yy:t===Math.E?Math.exp:function(e){return Math.pow(t,e)}}(a),i()[0]<0?(e=gy(e),n=gy(n),t(dy,py)):t(hy,fy),r}return r.base=function(t){return arguments.length?(a=+t,o()):a},r.domain=function(t){return arguments.length?(i(t),o()):i()},r.ticks=function(t){var r,o=i(),s=o[0],c=o[o.length-1];(r=c<s)&&(f=s,s=c,c=f);var u,l,h,f=e(s),d=e(c),p=null==t?10:+t,y=[];if(!(a%1)&&d-f<p){if(f=Math.round(f)-1,d=Math.round(d)+1,s>0){for(;f<d;++f)for(l=1,u=n(f);l<a;++l)if(!((h=u*l)<s)){if(h>c)break;y.push(h)}}else for(;f<d;++f)for(l=a-1,u=n(f);l>=1;--l)if(!((h=u*l)<s)){if(h>c)break;y.push(h)}}else y=S(f,d,Math.min(d-f,p)).map(n);return r?y.reverse():y},r.tickFormat=function(t,i){if(null==i&&(i=10===a?".0e":","),"function"!=typeof i&&(i=Ks(i)),t===1/0)return i;null==t&&(t=10);var o=Math.max(1,a*t/r.ticks().length);return function(t){var r=t/n(Math.round(e(t)));return r*a<a-.5&&(r*=a),r<=o?i(t):""}},r.nice=function(){return i(ly(i(),{floor:function(t){return n(Math.floor(e(t)))},ceil:function(t){return n(Math.ceil(e(t)))}}))},r}function vy(){var t=my(iy()).domain([1,10]);return t.copy=function(){return ry(t,vy()).base(t.base())},Yp.apply(t,arguments),t}function by(t){return function(e){return Math.sign(e)*Math.log1p(Math.abs(e/t))}}function xy(t){return function(e){return Math.sign(e)*Math.expm1(Math.abs(e))*t}}function _y(t){var e=1,n=t(by(e),xy(e));return n.constant=function(n){return arguments.length?t(by(e=+n),xy(e)):e},sy(n)}function ky(){var t=_y(iy());return t.copy=function(){return ry(t,ky()).constant(t.constant())},Yp.apply(t,arguments)}function wy(t){return function(e){return e<0?-Math.pow(-e,t):Math.pow(e,t)}}function Ty(t){return t<0?-Math.sqrt(-t):Math.sqrt(t)}function Ey(t){return t<0?-t*t:t*t}function Cy(t){var e=t(Qp,Qp),n=1;function r(){return 1===n?t(Qp,Qp):.5===n?t(Ty,Ey):t(wy(n),wy(1/n))}return e.exponent=function(t){return arguments.length?(n=+t,r()):n},sy(e)}function Sy(){var t=Cy(iy());return t.copy=function(){return ry(t,Sy()).exponent(t.exponent())},Yp.apply(t,arguments),t}function Ay(){return Sy.apply(null,arguments).exponent(.5)}function My(){var t,e=[],n=[],r=[];function a(){var t=0,i=Math.max(1,n.length);for(r=new Array(i-1);++t<i;)r[t-1]=B(e,t/i);return o}function o(e){return isNaN(e=+e)?t:n[u(r,e)]}return o.invertExtent=function(t){var i=n.indexOf(t);return i<0?[NaN,NaN]:[i>0?r[i-1]:e[0],i<r.length?r[i]:e[e.length-1]]},o.domain=function(t){if(!arguments.length)return e.slice();e=[];for(var n,r=0,o=t.length;r<o;++r)null==(n=t[r])||isNaN(n=+n)||e.push(n);return e.sort(i),a()},o.range=function(t){return arguments.length?(n=qp.call(t),a()):n.slice()},o.unknown=function(e){return arguments.length?(t=e,o):t},o.quantiles=function(){return r.slice()},o.copy=function(){return My().domain(e).range(n).unknown(t)},Yp.apply(o,arguments)}function Oy(){var t,e=0,n=1,r=1,i=[.5],a=[0,1];function o(e){return e<=e?a[u(i,e,0,r)]:t}function s(){var t=-1;for(i=new Array(r);++t<r;)i[t]=((t+1)*n-(t-r)*e)/(r+1);return o}return o.domain=function(t){return arguments.length?(e=+t[0],n=+t[1],s()):[e,n]},o.range=function(t){return arguments.length?(r=(a=qp.call(t)).length-1,s()):a.slice()},o.invertExtent=function(t){var o=a.indexOf(t);return o<0?[NaN,NaN]:o<1?[e,i[0]]:o>=r?[i[r-1],n]:[i[o-1],i[o]]},o.unknown=function(e){return arguments.length?(t=e,o):o},o.thresholds=function(){return i.slice()},o.copy=function(){return Oy().domain([e,n]).range(a).unknown(t)},Yp.apply(sy(o),arguments)}function Ny(){var t,e=[.5],n=[0,1],r=1;function i(i){return i<=i?n[u(e,i,0,r)]:t}return i.domain=function(t){return arguments.length?(e=qp.call(t),r=Math.min(e.length,n.length-1),i):e.slice()},i.range=function(t){return arguments.length?(n=qp.call(t),r=Math.min(e.length,n.length-1),i):n.slice()},i.invertExtent=function(t){var r=n.indexOf(t);return[e[r-1],e[r]]},i.unknown=function(e){return arguments.length?(t=e,i):t},i.copy=function(){return Ny().domain(e).range(n).unknown(t)},Yp.apply(i,arguments)}var By=new Date,Dy=new Date;function Ly(t,e,n,r){function i(e){return t(e=0===arguments.length?new Date:new Date(+e)),e}return i.floor=function(e){return t(e=new Date(+e)),e},i.ceil=function(n){return t(n=new Date(n-1)),e(n,1),t(n),n},i.round=function(t){var e=i(t),n=i.ceil(t);return t-e<n-t?e:n},i.offset=function(t,n){return e(t=new Date(+t),null==n?1:Math.floor(n)),t},i.range=function(n,r,a){var o,s=[];if(n=i.ceil(n),a=null==a?1:Math.floor(a),!(n<r&&a>0))return s;do{s.push(o=new Date(+n)),e(n,a),t(n)}while(o<n&&n<r);return s},i.filter=function(n){return Ly((function(e){if(e>=e)for(;t(e),!n(e);)e.setTime(e-1)}),(function(t,r){if(t>=t)if(r<0)for(;++r<=0;)for(;e(t,-1),!n(t););else for(;--r>=0;)for(;e(t,1),!n(t););}))},n&&(i.count=function(e,r){return By.setTime(+e),Dy.setTime(+r),t(By),t(Dy),Math.floor(n(By,Dy))},i.every=function(t){return t=Math.floor(t),isFinite(t)&&t>0?t>1?i.filter(r?function(e){return r(e)%t==0}:function(e){return i.count(0,e)%t==0}):i:null}),i}var Iy=Ly((function(t){t.setMonth(0,1),t.setHours(0,0,0,0)}),(function(t,e){t.setFullYear(t.getFullYear()+e)}),(function(t,e){return e.getFullYear()-t.getFullYear()}),(function(t){return t.getFullYear()}));Iy.every=function(t){return isFinite(t=Math.floor(t))&&t>0?Ly((function(e){e.setFullYear(Math.floor(e.getFullYear()/t)*t),e.setMonth(0,1),e.setHours(0,0,0,0)}),(function(e,n){e.setFullYear(e.getFullYear()+n*t)})):null};var Ry=Iy,Fy=Iy.range,Py=Ly((function(t){t.setDate(1),t.setHours(0,0,0,0)}),(function(t,e){t.setMonth(t.getMonth()+e)}),(function(t,e){return e.getMonth()-t.getMonth()+12*(e.getFullYear()-t.getFullYear())}),(function(t){return t.getMonth()})),jy=Py,Yy=Py.range;function zy(t){return Ly((function(e){e.setDate(e.getDate()-(e.getDay()+7-t)%7),e.setHours(0,0,0,0)}),(function(t,e){t.setDate(t.getDate()+7*e)}),(function(t,e){return(e-t-6e4*(e.getTimezoneOffset()-t.getTimezoneOffset()))/6048e5}))}var Uy=zy(0),$y=zy(1),qy=zy(2),Wy=zy(3),Hy=zy(4),Vy=zy(5),Gy=zy(6),Xy=Uy.range,Zy=$y.range,Ky=qy.range,Qy=Wy.range,Jy=Hy.range,tg=Vy.range,eg=Gy.range,ng=Ly((function(t){t.setHours(0,0,0,0)}),(function(t,e){t.setDate(t.getDate()+e)}),(function(t,e){return(e-t-6e4*(e.getTimezoneOffset()-t.getTimezoneOffset()))/864e5}),(function(t){return t.getDate()-1})),rg=ng,ig=ng.range,ag=Ly((function(t){t.setTime(t-t.getMilliseconds()-1e3*t.getSeconds()-6e4*t.getMinutes())}),(function(t,e){t.setTime(+t+36e5*e)}),(function(t,e){return(e-t)/36e5}),(function(t){return t.getHours()})),og=ag,sg=ag.range,cg=Ly((function(t){t.setTime(t-t.getMilliseconds()-1e3*t.getSeconds())}),(function(t,e){t.setTime(+t+6e4*e)}),(function(t,e){return(e-t)/6e4}),(function(t){return t.getMinutes()})),ug=cg,lg=cg.range,hg=Ly((function(t){t.setTime(t-t.getMilliseconds())}),(function(t,e){t.setTime(+t+1e3*e)}),(function(t,e){return(e-t)/1e3}),(function(t){return t.getUTCSeconds()})),fg=hg,dg=hg.range,pg=Ly((function(){}),(function(t,e){t.setTime(+t+e)}),(function(t,e){return e-t}));pg.every=function(t){return t=Math.floor(t),isFinite(t)&&t>0?t>1?Ly((function(e){e.setTime(Math.floor(e/t)*t)}),(function(e,n){e.setTime(+e+n*t)}),(function(e,n){return(n-e)/t})):pg:null};var yg=pg,gg=pg.range;function mg(t){return Ly((function(e){e.setUTCDate(e.getUTCDate()-(e.getUTCDay()+7-t)%7),e.setUTCHours(0,0,0,0)}),(function(t,e){t.setUTCDate(t.getUTCDate()+7*e)}),(function(t,e){return(e-t)/6048e5}))}var vg=mg(0),bg=mg(1),xg=mg(2),_g=mg(3),kg=mg(4),wg=mg(5),Tg=mg(6),Eg=vg.range,Cg=bg.range,Sg=xg.range,Ag=_g.range,Mg=kg.range,Og=wg.range,Ng=Tg.range,Bg=Ly((function(t){t.setUTCHours(0,0,0,0)}),(function(t,e){t.setUTCDate(t.getUTCDate()+e)}),(function(t,e){return(e-t)/864e5}),(function(t){return t.getUTCDate()-1})),Dg=Bg,Lg=Bg.range,Ig=Ly((function(t){t.setUTCMonth(0,1),t.setUTCHours(0,0,0,0)}),(function(t,e){t.setUTCFullYear(t.getUTCFullYear()+e)}),(function(t,e){return e.getUTCFullYear()-t.getUTCFullYear()}),(function(t){return t.getUTCFullYear()}));Ig.every=function(t){return isFinite(t=Math.floor(t))&&t>0?Ly((function(e){e.setUTCFullYear(Math.floor(e.getUTCFullYear()/t)*t),e.setUTCMonth(0,1),e.setUTCHours(0,0,0,0)}),(function(e,n){e.setUTCFullYear(e.getUTCFullYear()+n*t)})):null};var Rg=Ig,Fg=Ig.range;function Pg(t){if(0<=t.y&&t.y<100){var e=new Date(-1,t.m,t.d,t.H,t.M,t.S,t.L);return e.setFullYear(t.y),e}return new Date(t.y,t.m,t.d,t.H,t.M,t.S,t.L)}function jg(t){if(0<=t.y&&t.y<100){var e=new Date(Date.UTC(-1,t.m,t.d,t.H,t.M,t.S,t.L));return e.setUTCFullYear(t.y),e}return new Date(Date.UTC(t.y,t.m,t.d,t.H,t.M,t.S,t.L))}function Yg(t,e,n){return{y:t,m:e,d:n,H:0,M:0,S:0,L:0}}function zg(t){var e=t.dateTime,n=t.date,r=t.time,i=t.periods,a=t.days,o=t.shortDays,s=t.months,c=t.shortMonths,u=Jg(i),l=tm(i),h=Jg(a),f=tm(a),d=Jg(o),p=tm(o),y=Jg(s),g=tm(s),m=Jg(c),v=tm(c),b={a:function(t){return o[t.getDay()]},A:function(t){return a[t.getDay()]},b:function(t){return c[t.getMonth()]},B:function(t){return s[t.getMonth()]},c:null,d:_m,e:_m,f:Cm,g:Fm,G:jm,H:km,I:wm,j:Tm,L:Em,m:Sm,M:Am,p:function(t){return i[+(t.getHours()>=12)]},q:function(t){return 1+~~(t.getMonth()/3)},Q:cv,s:uv,S:Mm,u:Om,U:Nm,V:Dm,w:Lm,W:Im,x:null,X:null,y:Rm,Y:Pm,Z:Ym,"%":sv},x={a:function(t){return o[t.getUTCDay()]},A:function(t){return a[t.getUTCDay()]},b:function(t){return c[t.getUTCMonth()]},B:function(t){return s[t.getUTCMonth()]},c:null,d:zm,e:zm,f:Hm,g:rv,G:av,H:Um,I:$m,j:qm,L:Wm,m:Vm,M:Gm,p:function(t){return i[+(t.getUTCHours()>=12)]},q:function(t){return 1+~~(t.getUTCMonth()/3)},Q:cv,s:uv,S:Xm,u:Zm,U:Km,V:Jm,w:tv,W:ev,x:null,X:null,y:nv,Y:iv,Z:ov,"%":sv},_={a:function(t,e,n){var r=d.exec(e.slice(n));return r?(t.w=p[r[0].toLowerCase()],n+r[0].length):-1},A:function(t,e,n){var r=h.exec(e.slice(n));return r?(t.w=f[r[0].toLowerCase()],n+r[0].length):-1},b:function(t,e,n){var r=m.exec(e.slice(n));return r?(t.m=v[r[0].toLowerCase()],n+r[0].length):-1},B:function(t,e,n){var r=y.exec(e.slice(n));return r?(t.m=g[r[0].toLowerCase()],n+r[0].length):-1},c:function(t,n,r){return T(t,e,n,r)},d:hm,e:hm,f:mm,g:sm,G:om,H:dm,I:dm,j:fm,L:gm,m:lm,M:pm,p:function(t,e,n){var r=u.exec(e.slice(n));return r?(t.p=l[r[0].toLowerCase()],n+r[0].length):-1},q:um,Q:bm,s:xm,S:ym,u:nm,U:rm,V:im,w:em,W:am,x:function(t,e,r){return T(t,n,e,r)},X:function(t,e,n){return T(t,r,e,n)},y:sm,Y:om,Z:cm,"%":vm};function k(t,e){return function(n){var r,i,a,o=[],s=-1,c=0,u=t.length;for(n instanceof Date||(n=new Date(+n));++s<u;)37===t.charCodeAt(s)&&(o.push(t.slice(c,s)),null!=(i=Vg[r=t.charAt(++s)])?r=t.charAt(++s):i="e"===r?" ":"0",(a=e[r])&&(r=a(n,i)),o.push(r),c=s+1);return o.push(t.slice(c,s)),o.join("")}}function w(t,e){return function(n){var r,i,a=Yg(1900,void 0,1);if(T(a,t,n+="",0)!=n.length)return null;if("Q"in a)return new Date(a.Q);if("s"in a)return new Date(1e3*a.s+("L"in a?a.L:0));if(e&&!("Z"in a)&&(a.Z=0),"p"in a&&(a.H=a.H%12+12*a.p),void 0===a.m&&(a.m="q"in a?a.q:0),"V"in a){if(a.V<1||a.V>53)return null;"w"in a||(a.w=1),"Z"in a?(i=(r=jg(Yg(a.y,0,1))).getUTCDay(),r=i>4||0===i?bg.ceil(r):bg(r),r=Dg.offset(r,7*(a.V-1)),a.y=r.getUTCFullYear(),a.m=r.getUTCMonth(),a.d=r.getUTCDate()+(a.w+6)%7):(i=(r=Pg(Yg(a.y,0,1))).getDay(),r=i>4||0===i?$y.ceil(r):$y(r),r=rg.offset(r,7*(a.V-1)),a.y=r.getFullYear(),a.m=r.getMonth(),a.d=r.getDate()+(a.w+6)%7)}else("W"in a||"U"in a)&&("w"in a||(a.w="u"in a?a.u%7:"W"in a?1:0),i="Z"in a?jg(Yg(a.y,0,1)).getUTCDay():Pg(Yg(a.y,0,1)).getDay(),a.m=0,a.d="W"in a?(a.w+6)%7+7*a.W-(i+5)%7:a.w+7*a.U-(i+6)%7);return"Z"in a?(a.H+=a.Z/100|0,a.M+=a.Z%100,jg(a)):Pg(a)}}function T(t,e,n,r){for(var i,a,o=0,s=e.length,c=n.length;o<s;){if(r>=c)return-1;if(37===(i=e.charCodeAt(o++))){if(i=e.charAt(o++),!(a=_[i in Vg?e.charAt(o++):i])||(r=a(t,n,r))<0)return-1}else if(i!=n.charCodeAt(r++))return-1}return r}return b.x=k(n,b),b.X=k(r,b),b.c=k(e,b),x.x=k(n,x),x.X=k(r,x),x.c=k(e,x),{format:function(t){var e=k(t+="",b);return e.toString=function(){return t},e},parse:function(t){var e=w(t+="",!1);return e.toString=function(){return t},e},utcFormat:function(t){var e=k(t+="",x);return e.toString=function(){return t},e},utcParse:function(t){var e=w(t+="",!0);return e.toString=function(){return t},e}}}var Ug,$g,qg,Wg,Hg,Vg={"-":"",_:" ",0:"0"},Gg=/^\s*\d+/,Xg=/^%/,Zg=/[\\^$*+?|[\]().{}]/g;function Kg(t,e,n){var r=t<0?"-":"",i=(r?-t:t)+"",a=i.length;return r+(a<n?new Array(n-a+1).join(e)+i:i)}function Qg(t){return t.replace(Zg,"\\$&")}function Jg(t){return new RegExp("^(?:"+t.map(Qg).join("|")+")","i")}function tm(t){for(var e={},n=-1,r=t.length;++n<r;)e[t[n].toLowerCase()]=n;return e}function em(t,e,n){var r=Gg.exec(e.slice(n,n+1));return r?(t.w=+r[0],n+r[0].length):-1}function nm(t,e,n){var r=Gg.exec(e.slice(n,n+1));return r?(t.u=+r[0],n+r[0].length):-1}function rm(t,e,n){var r=Gg.exec(e.slice(n,n+2));return r?(t.U=+r[0],n+r[0].length):-1}function im(t,e,n){var r=Gg.exec(e.slice(n,n+2));return r?(t.V=+r[0],n+r[0].length):-1}function am(t,e,n){var r=Gg.exec(e.slice(n,n+2));return r?(t.W=+r[0],n+r[0].length):-1}function om(t,e,n){var r=Gg.exec(e.slice(n,n+4));return r?(t.y=+r[0],n+r[0].length):-1}function sm(t,e,n){var r=Gg.exec(e.slice(n,n+2));return r?(t.y=+r[0]+(+r[0]>68?1900:2e3),n+r[0].length):-1}function cm(t,e,n){var r=/^(Z)|([+-]\d\d)(?::?(\d\d))?/.exec(e.slice(n,n+6));return r?(t.Z=r[1]?0:-(r[2]+(r[3]||"00")),n+r[0].length):-1}function um(t,e,n){var r=Gg.exec(e.slice(n,n+1));return r?(t.q=3*r[0]-3,n+r[0].length):-1}function lm(t,e,n){var r=Gg.exec(e.slice(n,n+2));return r?(t.m=r[0]-1,n+r[0].length):-1}function hm(t,e,n){var r=Gg.exec(e.slice(n,n+2));return r?(t.d=+r[0],n+r[0].length):-1}function fm(t,e,n){var r=Gg.exec(e.slice(n,n+3));return r?(t.m=0,t.d=+r[0],n+r[0].length):-1}function dm(t,e,n){var r=Gg.exec(e.slice(n,n+2));return r?(t.H=+r[0],n+r[0].length):-1}function pm(t,e,n){var r=Gg.exec(e.slice(n,n+2));return r?(t.M=+r[0],n+r[0].length):-1}function ym(t,e,n){var r=Gg.exec(e.slice(n,n+2));return r?(t.S=+r[0],n+r[0].length):-1}function gm(t,e,n){var r=Gg.exec(e.slice(n,n+3));return r?(t.L=+r[0],n+r[0].length):-1}function mm(t,e,n){var r=Gg.exec(e.slice(n,n+6));return r?(t.L=Math.floor(r[0]/1e3),n+r[0].length):-1}function vm(t,e,n){var r=Xg.exec(e.slice(n,n+1));return r?n+r[0].length:-1}function bm(t,e,n){var r=Gg.exec(e.slice(n));return r?(t.Q=+r[0],n+r[0].length):-1}function xm(t,e,n){var r=Gg.exec(e.slice(n));return r?(t.s=+r[0],n+r[0].length):-1}function _m(t,e){return Kg(t.getDate(),e,2)}function km(t,e){return Kg(t.getHours(),e,2)}function wm(t,e){return Kg(t.getHours()%12||12,e,2)}function Tm(t,e){return Kg(1+rg.count(Ry(t),t),e,3)}function Em(t,e){return Kg(t.getMilliseconds(),e,3)}function Cm(t,e){return Em(t,e)+"000"}function Sm(t,e){return Kg(t.getMonth()+1,e,2)}function Am(t,e){return Kg(t.getMinutes(),e,2)}function Mm(t,e){return Kg(t.getSeconds(),e,2)}function Om(t){var e=t.getDay();return 0===e?7:e}function Nm(t,e){return Kg(Uy.count(Ry(t)-1,t),e,2)}function Bm(t){var e=t.getDay();return e>=4||0===e?Hy(t):Hy.ceil(t)}function Dm(t,e){return t=Bm(t),Kg(Hy.count(Ry(t),t)+(4===Ry(t).getDay()),e,2)}function Lm(t){return t.getDay()}function Im(t,e){return Kg($y.count(Ry(t)-1,t),e,2)}function Rm(t,e){return Kg(t.getFullYear()%100,e,2)}function Fm(t,e){return Kg((t=Bm(t)).getFullYear()%100,e,2)}function Pm(t,e){return Kg(t.getFullYear()%1e4,e,4)}function jm(t,e){var n=t.getDay();return Kg((t=n>=4||0===n?Hy(t):Hy.ceil(t)).getFullYear()%1e4,e,4)}function Ym(t){var e=t.getTimezoneOffset();return(e>0?"-":(e*=-1,"+"))+Kg(e/60|0,"0",2)+Kg(e%60,"0",2)}function zm(t,e){return Kg(t.getUTCDate(),e,2)}function Um(t,e){return Kg(t.getUTCHours(),e,2)}function $m(t,e){return Kg(t.getUTCHours()%12||12,e,2)}function qm(t,e){return Kg(1+Dg.count(Rg(t),t),e,3)}function Wm(t,e){return Kg(t.getUTCMilliseconds(),e,3)}function Hm(t,e){return Wm(t,e)+"000"}function Vm(t,e){return Kg(t.getUTCMonth()+1,e,2)}function Gm(t,e){return Kg(t.getUTCMinutes(),e,2)}function Xm(t,e){return Kg(t.getUTCSeconds(),e,2)}function Zm(t){var e=t.getUTCDay();return 0===e?7:e}function Km(t,e){return Kg(vg.count(Rg(t)-1,t),e,2)}function Qm(t){var e=t.getUTCDay();return e>=4||0===e?kg(t):kg.ceil(t)}function Jm(t,e){return t=Qm(t),Kg(kg.count(Rg(t),t)+(4===Rg(t).getUTCDay()),e,2)}function tv(t){return t.getUTCDay()}function ev(t,e){return Kg(bg.count(Rg(t)-1,t),e,2)}function nv(t,e){return Kg(t.getUTCFullYear()%100,e,2)}function rv(t,e){return Kg((t=Qm(t)).getUTCFullYear()%100,e,2)}function iv(t,e){return Kg(t.getUTCFullYear()%1e4,e,4)}function av(t,e){var n=t.getUTCDay();return Kg((t=n>=4||0===n?kg(t):kg.ceil(t)).getUTCFullYear()%1e4,e,4)}function ov(){return"+0000"}function sv(){return"%"}function cv(t){return+t}function uv(t){return Math.floor(+t/1e3)}function lv(t){return Ug=zg(t),$g=Ug.format,qg=Ug.parse,Wg=Ug.utcFormat,Hg=Ug.utcParse,Ug}lv({dateTime:"%x, %X",date:"%-m/%-d/%Y",time:"%-I:%M:%S %p",periods:["AM","PM"],days:["Sunday","Monday","Tuesday","Wednesday","Thursday","Friday","Saturday"],shortDays:["Sun","Mon","Tue","Wed","Thu","Fri","Sat"],months:["January","February","March","April","May","June","July","August","September","October","November","December"],shortMonths:["Jan","Feb","Mar","Apr","May","Jun","Jul","Aug","Sep","Oct","Nov","Dec"]});function hv(t){return new Date(t)}function fv(t){return t instanceof Date?+t:+new Date(+t)}function dv(t,e,n,r,i,o,s,c,u){var l=ay(Qp,Qp),h=l.invert,f=l.domain,d=u(".%L"),p=u(":%S"),y=u("%I:%M"),g=u("%I %p"),m=u("%a %d"),v=u("%b %d"),b=u("%B"),x=u("%Y"),_=[[s,1,1e3],[s,5,5e3],[s,15,15e3],[s,30,3e4],[o,1,6e4],[o,5,3e5],[o,15,9e5],[o,30,18e5],[i,1,36e5],[i,3,108e5],[i,6,216e5],[i,12,432e5],[r,1,864e5],[r,2,1728e5],[n,1,6048e5],[e,1,2592e6],[e,3,7776e6],[t,1,31536e6]];function k(a){return(s(a)<a?d:o(a)<a?p:i(a)<a?y:r(a)<a?g:e(a)<a?n(a)<a?m:v:t(a)<a?b:x)(a)}function w(e,n,r,i){if(null==e&&(e=10),"number"==typeof e){var o=Math.abs(r-n)/e,s=a((function(t){return t[2]})).right(_,o);s===_.length?(i=M(n/31536e6,r/31536e6,e),e=t):s?(i=(s=_[o/_[s-1][2]<_[s][2]/o?s-1:s])[1],e=s[0]):(i=Math.max(M(n,r,e),1),e=c)}return null==i?e:e.every(i)}return l.invert=function(t){return new Date(h(t))},l.domain=function(t){return arguments.length?f($p.call(t,fv)):f().map(hv)},l.ticks=function(t,e){var n,r=f(),i=r[0],a=r[r.length-1],o=a<i;return o&&(n=i,i=a,a=n),n=(n=w(t,i,a,e))?n.range(i,a+1):[],o?n.reverse():n},l.tickFormat=function(t,e){return null==e?k:u(e)},l.nice=function(t,e){var n=f();return(t=w(t,n[0],n[n.length-1],e))?f(ly(n,t)):l},l.copy=function(){return ry(l,dv(t,e,n,r,i,o,s,c,u))},l}var pv=function(){return Yp.apply(dv(Ry,jy,Uy,rg,og,ug,fg,yg,$g).domain([new Date(2e3,0,1),new Date(2e3,0,2)]),arguments)},yv=Ly((function(t){t.setUTCDate(1),t.setUTCHours(0,0,0,0)}),(function(t,e){t.setUTCMonth(t.getUTCMonth()+e)}),(function(t,e){return e.getUTCMonth()-t.getUTCMonth()+12*(e.getUTCFullYear()-t.getUTCFullYear())}),(function(t){return t.getUTCMonth()})),gv=yv,mv=yv.range,vv=Ly((function(t){t.setUTCMinutes(0,0,0)}),(function(t,e){t.setTime(+t+36e5*e)}),(function(t,e){return(e-t)/36e5}),(function(t){return t.getUTCHours()})),bv=vv,xv=vv.range,_v=Ly((function(t){t.setUTCSeconds(0,0)}),(function(t,e){t.setTime(+t+6e4*e)}),(function(t,e){return(e-t)/6e4}),(function(t){return t.getUTCMinutes()})),kv=_v,wv=_v.range,Tv=function(){return Yp.apply(dv(Rg,gv,vg,Dg,bv,kv,fg,yg,Wg).domain([Date.UTC(2e3,0,1),Date.UTC(2e3,0,2)]),arguments)};function Ev(){var t,e,n,r,i,a=0,o=1,s=Qp,c=!1;function u(e){return isNaN(e=+e)?i:s(0===n?.5:(e=(r(e)-t)*n,c?Math.max(0,Math.min(1,e)):e))}return u.domain=function(i){return arguments.length?(t=r(a=+i[0]),e=r(o=+i[1]),n=t===e?0:1/(e-t),u):[a,o]},u.clamp=function(t){return arguments.length?(c=!!t,u):c},u.interpolator=function(t){return arguments.length?(s=t,u):s},u.unknown=function(t){return arguments.length?(i=t,u):i},function(i){return r=i,t=i(a),e=i(o),n=t===e?0:1/(e-t),u}}function Cv(t,e){return e.domain(t.domain()).interpolator(t.interpolator()).clamp(t.clamp()).unknown(t.unknown())}function Sv(){var t=sy(Ev()(Qp));return t.copy=function(){return Cv(t,Sv())},zp.apply(t,arguments)}function Av(){var t=my(Ev()).domain([1,10]);return t.copy=function(){return Cv(t,Av()).base(t.base())},zp.apply(t,arguments)}function Mv(){var t=_y(Ev());return t.copy=function(){return Cv(t,Mv()).constant(t.constant())},zp.apply(t,arguments)}function Ov(){var t=Cy(Ev());return t.copy=function(){return Cv(t,Ov()).exponent(t.exponent())},zp.apply(t,arguments)}function Nv(){return Ov.apply(null,arguments).exponent(.5)}function Bv(){var t=[],e=Qp;function n(n){if(!isNaN(n=+n))return e((u(t,n)-1)/(t.length-1))}return n.domain=function(e){if(!arguments.length)return t.slice();t=[];for(var r,a=0,o=e.length;a<o;++a)null==(r=e[a])||isNaN(r=+r)||t.push(r);return t.sort(i),n},n.interpolator=function(t){return arguments.length?(e=t,n):e},n.copy=function(){return Bv(e).domain(t)},zp.apply(n,arguments)}function Dv(){var t,e,n,r,i,a,o,s=0,c=.5,u=1,l=Qp,h=!1;function f(t){return isNaN(t=+t)?o:(t=.5+((t=+a(t))-e)*(t<e?r:i),l(h?Math.max(0,Math.min(1,t)):t))}return f.domain=function(o){return arguments.length?(t=a(s=+o[0]),e=a(c=+o[1]),n=a(u=+o[2]),r=t===e?0:.5/(e-t),i=e===n?0:.5/(n-e),f):[s,c,u]},f.clamp=function(t){return arguments.length?(h=!!t,f):h},f.interpolator=function(t){return arguments.length?(l=t,f):l},f.unknown=function(t){return arguments.length?(o=t,f):o},function(o){return a=o,t=o(s),e=o(c),n=o(u),r=t===e?0:.5/(e-t),i=e===n?0:.5/(n-e),f}}function Lv(){var t=sy(Dv()(Qp));return t.copy=function(){return Cv(t,Lv())},zp.apply(t,arguments)}function Iv(){var t=my(Dv()).domain([.1,1,10]);return t.copy=function(){return Cv(t,Iv()).base(t.base())},zp.apply(t,arguments)}function Rv(){var t=_y(Dv());return t.copy=function(){return Cv(t,Rv()).constant(t.constant())},zp.apply(t,arguments)}function Fv(){var t=Cy(Dv());return t.copy=function(){return Cv(t,Fv()).exponent(t.exponent())},zp.apply(t,arguments)}function Pv(){return Fv.apply(null,arguments).exponent(.5)}var jv=function(t){for(var e=t.length/6|0,n=new Array(e),r=0;r<e;)n[r]="#"+t.slice(6*r,6*++r);return n},Yv=jv("1f77b4ff7f0e2ca02cd627289467bd8c564be377c27f7f7fbcbd2217becf"),zv=jv("7fc97fbeaed4fdc086ffff99386cb0f0027fbf5b17666666"),Uv=jv("1b9e77d95f027570b3e7298a66a61ee6ab02a6761d666666"),$v=jv("a6cee31f78b4b2df8a33a02cfb9a99e31a1cfdbf6fff7f00cab2d66a3d9affff99b15928"),qv=jv("fbb4aeb3cde3ccebc5decbe4fed9a6ffffcce5d8bdfddaecf2f2f2"),Wv=jv("b3e2cdfdcdaccbd5e8f4cae4e6f5c9fff2aef1e2cccccccc"),Hv=jv("e41a1c377eb84daf4a984ea3ff7f00ffff33a65628f781bf999999"),Vv=jv("66c2a5fc8d628da0cbe78ac3a6d854ffd92fe5c494b3b3b3"),Gv=jv("8dd3c7ffffb3bebadafb807280b1d3fdb462b3de69fccde5d9d9d9bc80bdccebc5ffed6f"),Xv=jv("4e79a7f28e2ce1575976b7b259a14fedc949af7aa1ff9da79c755fbab0ab"),Zv=function(t){return yn(t[t.length-1])},Kv=new Array(3).concat("d8b365f5f5f55ab4ac","a6611adfc27d80cdc1018571","a6611adfc27df5f5f580cdc1018571","8c510ad8b365f6e8c3c7eae55ab4ac01665e","8c510ad8b365f6e8c3f5f5f5c7eae55ab4ac01665e","8c510abf812ddfc27df6e8c3c7eae580cdc135978f01665e","8c510abf812ddfc27df6e8c3f5f5f5c7eae580cdc135978f01665e","5430058c510abf812ddfc27df6e8c3c7eae580cdc135978f01665e003c30","5430058c510abf812ddfc27df6e8c3f5f5f5c7eae580cdc135978f01665e003c30").map(jv),Qv=Zv(Kv),Jv=new Array(3).concat("af8dc3f7f7f77fbf7b","7b3294c2a5cfa6dba0008837","7b3294c2a5cff7f7f7a6dba0008837","762a83af8dc3e7d4e8d9f0d37fbf7b1b7837","762a83af8dc3e7d4e8f7f7f7d9f0d37fbf7b1b7837","762a839970abc2a5cfe7d4e8d9f0d3a6dba05aae611b7837","762a839970abc2a5cfe7d4e8f7f7f7d9f0d3a6dba05aae611b7837","40004b762a839970abc2a5cfe7d4e8d9f0d3a6dba05aae611b783700441b","40004b762a839970abc2a5cfe7d4e8f7f7f7d9f0d3a6dba05aae611b783700441b").map(jv),tb=Zv(Jv),eb=new Array(3).concat("e9a3c9f7f7f7a1d76a","d01c8bf1b6dab8e1864dac26","d01c8bf1b6daf7f7f7b8e1864dac26","c51b7de9a3c9fde0efe6f5d0a1d76a4d9221","c51b7de9a3c9fde0eff7f7f7e6f5d0a1d76a4d9221","c51b7dde77aef1b6dafde0efe6f5d0b8e1867fbc414d9221","c51b7dde77aef1b6dafde0eff7f7f7e6f5d0b8e1867fbc414d9221","8e0152c51b7dde77aef1b6dafde0efe6f5d0b8e1867fbc414d9221276419","8e0152c51b7dde77aef1b6dafde0eff7f7f7e6f5d0b8e1867fbc414d9221276419").map(jv),nb=Zv(eb),rb=new Array(3).concat("998ec3f7f7f7f1a340","5e3c99b2abd2fdb863e66101","5e3c99b2abd2f7f7f7fdb863e66101","542788998ec3d8daebfee0b6f1a340b35806","542788998ec3d8daebf7f7f7fee0b6f1a340b35806","5427888073acb2abd2d8daebfee0b6fdb863e08214b35806","5427888073acb2abd2d8daebf7f7f7fee0b6fdb863e08214b35806","2d004b5427888073acb2abd2d8daebfee0b6fdb863e08214b358067f3b08","2d004b5427888073acb2abd2d8daebf7f7f7fee0b6fdb863e08214b358067f3b08").map(jv),ib=Zv(rb),ab=new Array(3).concat("ef8a62f7f7f767a9cf","ca0020f4a58292c5de0571b0","ca0020f4a582f7f7f792c5de0571b0","b2182bef8a62fddbc7d1e5f067a9cf2166ac","b2182bef8a62fddbc7f7f7f7d1e5f067a9cf2166ac","b2182bd6604df4a582fddbc7d1e5f092c5de4393c32166ac","b2182bd6604df4a582fddbc7f7f7f7d1e5f092c5de4393c32166ac","67001fb2182bd6604df4a582fddbc7d1e5f092c5de4393c32166ac053061","67001fb2182bd6604df4a582fddbc7f7f7f7d1e5f092c5de4393c32166ac053061").map(jv),ob=Zv(ab),sb=new Array(3).concat("ef8a62ffffff999999","ca0020f4a582bababa404040","ca0020f4a582ffffffbababa404040","b2182bef8a62fddbc7e0e0e09999994d4d4d","b2182bef8a62fddbc7ffffffe0e0e09999994d4d4d","b2182bd6604df4a582fddbc7e0e0e0bababa8787874d4d4d","b2182bd6604df4a582fddbc7ffffffe0e0e0bababa8787874d4d4d","67001fb2182bd6604df4a582fddbc7e0e0e0bababa8787874d4d4d1a1a1a","67001fb2182bd6604df4a582fddbc7ffffffe0e0e0bababa8787874d4d4d1a1a1a").map(jv),cb=Zv(sb),ub=new Array(3).concat("fc8d59ffffbf91bfdb","d7191cfdae61abd9e92c7bb6","d7191cfdae61ffffbfabd9e92c7bb6","d73027fc8d59fee090e0f3f891bfdb4575b4","d73027fc8d59fee090ffffbfe0f3f891bfdb4575b4","d73027f46d43fdae61fee090e0f3f8abd9e974add14575b4","d73027f46d43fdae61fee090ffffbfe0f3f8abd9e974add14575b4","a50026d73027f46d43fdae61fee090e0f3f8abd9e974add14575b4313695","a50026d73027f46d43fdae61fee090ffffbfe0f3f8abd9e974add14575b4313695").map(jv),lb=Zv(ub),hb=new Array(3).concat("fc8d59ffffbf91cf60","d7191cfdae61a6d96a1a9641","d7191cfdae61ffffbfa6d96a1a9641","d73027fc8d59fee08bd9ef8b91cf601a9850","d73027fc8d59fee08bffffbfd9ef8b91cf601a9850","d73027f46d43fdae61fee08bd9ef8ba6d96a66bd631a9850","d73027f46d43fdae61fee08bffffbfd9ef8ba6d96a66bd631a9850","a50026d73027f46d43fdae61fee08bd9ef8ba6d96a66bd631a9850006837","a50026d73027f46d43fdae61fee08bffffbfd9ef8ba6d96a66bd631a9850006837").map(jv),fb=Zv(hb),db=new Array(3).concat("fc8d59ffffbf99d594","d7191cfdae61abdda42b83ba","d7191cfdae61ffffbfabdda42b83ba","d53e4ffc8d59fee08be6f59899d5943288bd","d53e4ffc8d59fee08bffffbfe6f59899d5943288bd","d53e4ff46d43fdae61fee08be6f598abdda466c2a53288bd","d53e4ff46d43fdae61fee08bffffbfe6f598abdda466c2a53288bd","9e0142d53e4ff46d43fdae61fee08be6f598abdda466c2a53288bd5e4fa2","9e0142d53e4ff46d43fdae61fee08bffffbfe6f598abdda466c2a53288bd5e4fa2").map(jv),pb=Zv(db),yb=new Array(3).concat("e5f5f999d8c92ca25f","edf8fbb2e2e266c2a4238b45","edf8fbb2e2e266c2a42ca25f006d2c","edf8fbccece699d8c966c2a42ca25f006d2c","edf8fbccece699d8c966c2a441ae76238b45005824","f7fcfde5f5f9ccece699d8c966c2a441ae76238b45005824","f7fcfde5f5f9ccece699d8c966c2a441ae76238b45006d2c00441b").map(jv),gb=Zv(yb),mb=new Array(3).concat("e0ecf49ebcda8856a7","edf8fbb3cde38c96c688419d","edf8fbb3cde38c96c68856a7810f7c","edf8fbbfd3e69ebcda8c96c68856a7810f7c","edf8fbbfd3e69ebcda8c96c68c6bb188419d6e016b","f7fcfde0ecf4bfd3e69ebcda8c96c68c6bb188419d6e016b","f7fcfde0ecf4bfd3e69ebcda8c96c68c6bb188419d810f7c4d004b").map(jv),vb=Zv(mb),bb=new Array(3).concat("e0f3dba8ddb543a2ca","f0f9e8bae4bc7bccc42b8cbe","f0f9e8bae4bc7bccc443a2ca0868ac","f0f9e8ccebc5a8ddb57bccc443a2ca0868ac","f0f9e8ccebc5a8ddb57bccc44eb3d32b8cbe08589e","f7fcf0e0f3dbccebc5a8ddb57bccc44eb3d32b8cbe08589e","f7fcf0e0f3dbccebc5a8ddb57bccc44eb3d32b8cbe0868ac084081").map(jv),xb=Zv(bb),_b=new Array(3).concat("fee8c8fdbb84e34a33","fef0d9fdcc8afc8d59d7301f","fef0d9fdcc8afc8d59e34a33b30000","fef0d9fdd49efdbb84fc8d59e34a33b30000","fef0d9fdd49efdbb84fc8d59ef6548d7301f990000","fff7ecfee8c8fdd49efdbb84fc8d59ef6548d7301f990000","fff7ecfee8c8fdd49efdbb84fc8d59ef6548d7301fb300007f0000").map(jv),kb=Zv(_b),wb=new Array(3).concat("ece2f0a6bddb1c9099","f6eff7bdc9e167a9cf02818a","f6eff7bdc9e167a9cf1c9099016c59","f6eff7d0d1e6a6bddb67a9cf1c9099016c59","f6eff7d0d1e6a6bddb67a9cf3690c002818a016450","fff7fbece2f0d0d1e6a6bddb67a9cf3690c002818a016450","fff7fbece2f0d0d1e6a6bddb67a9cf3690c002818a016c59014636").map(jv),Tb=Zv(wb),Eb=new Array(3).concat("ece7f2a6bddb2b8cbe","f1eef6bdc9e174a9cf0570b0","f1eef6bdc9e174a9cf2b8cbe045a8d","f1eef6d0d1e6a6bddb74a9cf2b8cbe045a8d","f1eef6d0d1e6a6bddb74a9cf3690c00570b0034e7b","fff7fbece7f2d0d1e6a6bddb74a9cf3690c00570b0034e7b","fff7fbece7f2d0d1e6a6bddb74a9cf3690c00570b0045a8d023858").map(jv),Cb=Zv(Eb),Sb=new Array(3).concat("e7e1efc994c7dd1c77","f1eef6d7b5d8df65b0ce1256","f1eef6d7b5d8df65b0dd1c77980043","f1eef6d4b9dac994c7df65b0dd1c77980043","f1eef6d4b9dac994c7df65b0e7298ace125691003f","f7f4f9e7e1efd4b9dac994c7df65b0e7298ace125691003f","f7f4f9e7e1efd4b9dac994c7df65b0e7298ace125698004367001f").map(jv),Ab=Zv(Sb),Mb=new Array(3).concat("fde0ddfa9fb5c51b8a","feebe2fbb4b9f768a1ae017e","feebe2fbb4b9f768a1c51b8a7a0177","feebe2fcc5c0fa9fb5f768a1c51b8a7a0177","feebe2fcc5c0fa9fb5f768a1dd3497ae017e7a0177","fff7f3fde0ddfcc5c0fa9fb5f768a1dd3497ae017e7a0177","fff7f3fde0ddfcc5c0fa9fb5f768a1dd3497ae017e7a017749006a").map(jv),Ob=Zv(Mb),Nb=new Array(3).concat("edf8b17fcdbb2c7fb8","ffffcca1dab441b6c4225ea8","ffffcca1dab441b6c42c7fb8253494","ffffccc7e9b47fcdbb41b6c42c7fb8253494","ffffccc7e9b47fcdbb41b6c41d91c0225ea80c2c84","ffffd9edf8b1c7e9b47fcdbb41b6c41d91c0225ea80c2c84","ffffd9edf8b1c7e9b47fcdbb41b6c41d91c0225ea8253494081d58").map(jv),Bb=Zv(Nb),Db=new Array(3).concat("f7fcb9addd8e31a354","ffffccc2e69978c679238443","ffffccc2e69978c67931a354006837","ffffccd9f0a3addd8e78c67931a354006837","ffffccd9f0a3addd8e78c67941ab5d238443005a32","ffffe5f7fcb9d9f0a3addd8e78c67941ab5d238443005a32","ffffe5f7fcb9d9f0a3addd8e78c67941ab5d238443006837004529").map(jv),Lb=Zv(Db),Ib=new Array(3).concat("fff7bcfec44fd95f0e","ffffd4fed98efe9929cc4c02","ffffd4fed98efe9929d95f0e993404","ffffd4fee391fec44ffe9929d95f0e993404","ffffd4fee391fec44ffe9929ec7014cc4c028c2d04","ffffe5fff7bcfee391fec44ffe9929ec7014cc4c028c2d04","ffffe5fff7bcfee391fec44ffe9929ec7014cc4c02993404662506").map(jv),Rb=Zv(Ib),Fb=new Array(3).concat("ffeda0feb24cf03b20","ffffb2fecc5cfd8d3ce31a1c","ffffb2fecc5cfd8d3cf03b20bd0026","ffffb2fed976feb24cfd8d3cf03b20bd0026","ffffb2fed976feb24cfd8d3cfc4e2ae31a1cb10026","ffffccffeda0fed976feb24cfd8d3cfc4e2ae31a1cb10026","ffffccffeda0fed976feb24cfd8d3cfc4e2ae31a1cbd0026800026").map(jv),Pb=Zv(Fb),jb=new Array(3).concat("deebf79ecae13182bd","eff3ffbdd7e76baed62171b5","eff3ffbdd7e76baed63182bd08519c","eff3ffc6dbef9ecae16baed63182bd08519c","eff3ffc6dbef9ecae16baed64292c62171b5084594","f7fbffdeebf7c6dbef9ecae16baed64292c62171b5084594","f7fbffdeebf7c6dbef9ecae16baed64292c62171b508519c08306b").map(jv),Yb=Zv(jb),zb=new Array(3).concat("e5f5e0a1d99b31a354","edf8e9bae4b374c476238b45","edf8e9bae4b374c47631a354006d2c","edf8e9c7e9c0a1d99b74c47631a354006d2c","edf8e9c7e9c0a1d99b74c47641ab5d238b45005a32","f7fcf5e5f5e0c7e9c0a1d99b74c47641ab5d238b45005a32","f7fcf5e5f5e0c7e9c0a1d99b74c47641ab5d238b45006d2c00441b").map(jv),Ub=Zv(zb),$b=new Array(3).concat("f0f0f0bdbdbd636363","f7f7f7cccccc969696525252","f7f7f7cccccc969696636363252525","f7f7f7d9d9d9bdbdbd969696636363252525","f7f7f7d9d9d9bdbdbd969696737373525252252525","fffffff0f0f0d9d9d9bdbdbd969696737373525252252525","fffffff0f0f0d9d9d9bdbdbd969696737373525252252525000000").map(jv),qb=Zv($b),Wb=new Array(3).concat("efedf5bcbddc756bb1","f2f0f7cbc9e29e9ac86a51a3","f2f0f7cbc9e29e9ac8756bb154278f","f2f0f7dadaebbcbddc9e9ac8756bb154278f","f2f0f7dadaebbcbddc9e9ac8807dba6a51a34a1486","fcfbfdefedf5dadaebbcbddc9e9ac8807dba6a51a34a1486","fcfbfdefedf5dadaebbcbddc9e9ac8807dba6a51a354278f3f007d").map(jv),Hb=Zv(Wb),Vb=new Array(3).concat("fee0d2fc9272de2d26","fee5d9fcae91fb6a4acb181d","fee5d9fcae91fb6a4ade2d26a50f15","fee5d9fcbba1fc9272fb6a4ade2d26a50f15","fee5d9fcbba1fc9272fb6a4aef3b2ccb181d99000d","fff5f0fee0d2fcbba1fc9272fb6a4aef3b2ccb181d99000d","fff5f0fee0d2fcbba1fc9272fb6a4aef3b2ccb181da50f1567000d").map(jv),Gb=Zv(Vb),Xb=new Array(3).concat("fee6cefdae6be6550d","feeddefdbe85fd8d3cd94701","feeddefdbe85fd8d3ce6550da63603","feeddefdd0a2fdae6bfd8d3ce6550da63603","feeddefdd0a2fdae6bfd8d3cf16913d948018c2d04","fff5ebfee6cefdd0a2fdae6bfd8d3cf16913d948018c2d04","fff5ebfee6cefdd0a2fdae6bfd8d3cf16913d94801a636037f2704").map(jv),Zb=Zv(Xb),Kb=function(t){return t=Math.max(0,Math.min(1,t)),"rgb("+Math.max(0,Math.min(255,Math.round(-4.54-t*(35.34-t*(2381.73-t*(6402.7-t*(7024.72-2710.57*t)))))))+", "+Math.max(0,Math.min(255,Math.round(32.49+t*(170.73+t*(52.82-t*(131.46-t*(176.58-67.37*t)))))))+", "+Math.max(0,Math.min(255,Math.round(81.24+t*(442.36-t*(2482.43-t*(6167.24-t*(6614.94-2475.67*t)))))))+")"},Qb=wp(Na(300,.5,0),Na(-240,.5,1)),Jb=wp(Na(-100,.75,.35),Na(80,1.5,.8)),tx=wp(Na(260,.75,.35),Na(80,1.5,.8)),ex=Na(),nx=function(t){(t<0||t>1)&&(t-=Math.floor(t));var e=Math.abs(t-.5);return ex.h=360*t-100,ex.s=1.5-1.5*e,ex.l=.8-.9*e,ex+""},rx=Ge(),ix=Math.PI/3,ax=2*Math.PI/3,ox=function(t){var e;return t=(.5-t)*Math.PI,rx.r=255*(e=Math.sin(t))*e,rx.g=255*(e=Math.sin(t+ix))*e,rx.b=255*(e=Math.sin(t+ax))*e,rx+""},sx=function(t){return t=Math.max(0,Math.min(1,t)),"rgb("+Math.max(0,Math.min(255,Math.round(34.61+t*(1172.33-t*(10793.56-t*(33300.12-t*(38394.49-14825.05*t)))))))+", "+Math.max(0,Math.min(255,Math.round(23.31+t*(557.33+t*(1225.33-t*(3574.96-t*(1073.77+707.56*t)))))))+", "+Math.max(0,Math.min(255,Math.round(27.2+t*(3211.1-t*(15327.97-t*(27814-t*(22569.18-6838.66*t)))))))+")"};function cx(t){var e=t.length;return function(n){return t[Math.max(0,Math.min(e-1,Math.floor(n*e)))]}}var ux=cx(jv("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")),lx=cx(jv("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")),hx=cx(jv("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")),fx=cx(jv("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")),dx=function(t){return we(re(t).call(document.documentElement))},px=0;function yx(){return new gx}function gx(){this._="@"+(++px).toString(36)}gx.prototype=yx.prototype={constructor:gx,get:function(t){for(var e=this._;!(e in t);)if(!(t=t.parentNode))return;return t[e]},set:function(t,e){return t[this._]=e},remove:function(t){return this._ in t&&delete t[this._]},toString:function(){return this._}};var mx=function(t){return"string"==typeof t?new xe([document.querySelectorAll(t)],[document.documentElement]):new xe([null==t?[]:t],be)},vx=function(t,e){null==e&&(e=On().touches);for(var n=0,r=e?e.length:0,i=new Array(r);n<r;++n)i[n]=Nn(t,e[n]);return i},bx=function(t){return function(){return t}},xx=Math.abs,_x=Math.atan2,kx=Math.cos,wx=Math.max,Tx=Math.min,Ex=Math.sin,Cx=Math.sqrt,Sx=Math.PI,Ax=Sx/2,Mx=2*Sx;function Ox(t){return t>1?0:t<-1?Sx:Math.acos(t)}function Nx(t){return t>=1?Ax:t<=-1?-Ax:Math.asin(t)}function Bx(t){return t.innerRadius}function Dx(t){return t.outerRadius}function Lx(t){return t.startAngle}function Ix(t){return t.endAngle}function Rx(t){return t&&t.padAngle}function Fx(t,e,n,r,i,a,o,s){var c=n-t,u=r-e,l=o-i,h=s-a,f=h*c-l*u;if(!(f*f<1e-12))return[t+(f=(l*(e-a)-h*(t-i))/f)*c,e+f*u]}function Px(t,e,n,r,i,a,o){var s=t-n,c=e-r,u=(o?a:-a)/Cx(s*s+c*c),l=u*c,h=-u*s,f=t+l,d=e+h,p=n+l,y=r+h,g=(f+p)/2,m=(d+y)/2,v=p-f,b=y-d,x=v*v+b*b,_=i-a,k=f*y-p*d,w=(b<0?-1:1)*Cx(wx(0,_*_*x-k*k)),T=(k*b-v*w)/x,E=(-k*v-b*w)/x,C=(k*b+v*w)/x,S=(-k*v+b*w)/x,A=T-g,M=E-m,O=C-g,N=S-m;return A*A+M*M>O*O+N*N&&(T=C,E=S),{cx:T,cy:E,x01:-l,y01:-h,x11:T*(i/_-1),y11:E*(i/_-1)}}var jx=function(){var t=Bx,e=Dx,n=bx(0),r=null,i=Lx,a=Ix,o=Rx,s=null;function c(){var c,u,l=+t.apply(this,arguments),h=+e.apply(this,arguments),f=i.apply(this,arguments)-Ax,d=a.apply(this,arguments)-Ax,p=xx(d-f),y=d>f;if(s||(s=c=$i()),h<l&&(u=h,h=l,l=u),h>1e-12)if(p>Mx-1e-12)s.moveTo(h*kx(f),h*Ex(f)),s.arc(0,0,h,f,d,!y),l>1e-12&&(s.moveTo(l*kx(d),l*Ex(d)),s.arc(0,0,l,d,f,y));else{var g,m,v=f,b=d,x=f,_=d,k=p,w=p,T=o.apply(this,arguments)/2,E=T>1e-12&&(r?+r.apply(this,arguments):Cx(l*l+h*h)),C=Tx(xx(h-l)/2,+n.apply(this,arguments)),S=C,A=C;if(E>1e-12){var M=Nx(E/l*Ex(T)),O=Nx(E/h*Ex(T));(k-=2*M)>1e-12?(x+=M*=y?1:-1,_-=M):(k=0,x=_=(f+d)/2),(w-=2*O)>1e-12?(v+=O*=y?1:-1,b-=O):(w=0,v=b=(f+d)/2)}var N=h*kx(v),B=h*Ex(v),D=l*kx(_),L=l*Ex(_);if(C>1e-12){var I,R=h*kx(b),F=h*Ex(b),P=l*kx(x),j=l*Ex(x);if(p<Sx&&(I=Fx(N,B,P,j,R,F,D,L))){var Y=N-I[0],z=B-I[1],U=R-I[0],$=F-I[1],q=1/Ex(Ox((Y*U+z*$)/(Cx(Y*Y+z*z)*Cx(U*U+$*$)))/2),W=Cx(I[0]*I[0]+I[1]*I[1]);S=Tx(C,(l-W)/(q-1)),A=Tx(C,(h-W)/(q+1))}}w>1e-12?A>1e-12?(g=Px(P,j,N,B,h,A,y),m=Px(R,F,D,L,h,A,y),s.moveTo(g.cx+g.x01,g.cy+g.y01),A<C?s.arc(g.cx,g.cy,A,_x(g.y01,g.x01),_x(m.y01,m.x01),!y):(s.arc(g.cx,g.cy,A,_x(g.y01,g.x01),_x(g.y11,g.x11),!y),s.arc(0,0,h,_x(g.cy+g.y11,g.cx+g.x11),_x(m.cy+m.y11,m.cx+m.x11),!y),s.arc(m.cx,m.cy,A,_x(m.y11,m.x11),_x(m.y01,m.x01),!y))):(s.moveTo(N,B),s.arc(0,0,h,v,b,!y)):s.moveTo(N,B),l>1e-12&&k>1e-12?S>1e-12?(g=Px(D,L,R,F,l,-S,y),m=Px(N,B,P,j,l,-S,y),s.lineTo(g.cx+g.x01,g.cy+g.y01),S<C?s.arc(g.cx,g.cy,S,_x(g.y01,g.x01),_x(m.y01,m.x01),!y):(s.arc(g.cx,g.cy,S,_x(g.y01,g.x01),_x(g.y11,g.x11),!y),s.arc(0,0,l,_x(g.cy+g.y11,g.cx+g.x11),_x(m.cy+m.y11,m.cx+m.x11),y),s.arc(m.cx,m.cy,S,_x(m.y11,m.x11),_x(m.y01,m.x01),!y))):s.arc(0,0,l,_,x,y):s.lineTo(D,L)}else s.moveTo(0,0);if(s.closePath(),c)return s=null,c+""||null}return c.centroid=function(){var n=(+t.apply(this,arguments)+ +e.apply(this,arguments))/2,r=(+i.apply(this,arguments)+ +a.apply(this,arguments))/2-Sx/2;return[kx(r)*n,Ex(r)*n]},c.innerRadius=function(e){return arguments.length?(t="function"==typeof e?e:bx(+e),c):t},c.outerRadius=function(t){return arguments.length?(e="function"==typeof t?t:bx(+t),c):e},c.cornerRadius=function(t){return arguments.length?(n="function"==typeof t?t:bx(+t),c):n},c.padRadius=function(t){return arguments.length?(r=null==t?null:"function"==typeof t?t:bx(+t),c):r},c.startAngle=function(t){return arguments.length?(i="function"==typeof t?t:bx(+t),c):i},c.endAngle=function(t){return arguments.length?(a="function"==typeof t?t:bx(+t),c):a},c.padAngle=function(t){return arguments.length?(o="function"==typeof t?t:bx(+t),c):o},c.context=function(t){return arguments.length?(s=null==t?null:t,c):s},c};function Yx(t){this._context=t}Yx.prototype={areaStart:function(){this._line=0},areaEnd:function(){this._line=NaN},lineStart:function(){this._point=0},lineEnd:function(){(this._line||0!==this._line&&1===this._point)&&this._context.closePath(),this._line=1-this._line},point:function(t,e){switch(t=+t,e=+e,this._point){case 0:this._point=1,this._line?this._context.lineTo(t,e):this._context.moveTo(t,e);break;case 1:this._point=2;default:this._context.lineTo(t,e)}}};var zx=function(t){return new Yx(t)};function Ux(t){return t[0]}function $x(t){return t[1]}var qx=function(){var t=Ux,e=$x,n=bx(!0),r=null,i=zx,a=null;function o(o){var s,c,u,l=o.length,h=!1;for(null==r&&(a=i(u=$i())),s=0;s<=l;++s)!(s<l&&n(c=o[s],s,o))===h&&((h=!h)?a.lineStart():a.lineEnd()),h&&a.point(+t(c,s,o),+e(c,s,o));if(u)return a=null,u+""||null}return o.x=function(e){return arguments.length?(t="function"==typeof e?e:bx(+e),o):t},o.y=function(t){return arguments.length?(e="function"==typeof t?t:bx(+t),o):e},o.defined=function(t){return arguments.length?(n="function"==typeof t?t:bx(!!t),o):n},o.curve=function(t){return arguments.length?(i=t,null!=r&&(a=i(r)),o):i},o.context=function(t){return arguments.length?(null==t?r=a=null:a=i(r=t),o):r},o},Wx=function(){var t=Ux,e=null,n=bx(0),r=$x,i=bx(!0),a=null,o=zx,s=null;function c(c){var u,l,h,f,d,p=c.length,y=!1,g=new Array(p),m=new Array(p);for(null==a&&(s=o(d=$i())),u=0;u<=p;++u){if(!(u<p&&i(f=c[u],u,c))===y)if(y=!y)l=u,s.areaStart(),s.lineStart();else{for(s.lineEnd(),s.lineStart(),h=u-1;h>=l;--h)s.point(g[h],m[h]);s.lineEnd(),s.areaEnd()}y&&(g[u]=+t(f,u,c),m[u]=+n(f,u,c),s.point(e?+e(f,u,c):g[u],r?+r(f,u,c):m[u]))}if(d)return s=null,d+""||null}function u(){return qx().defined(i).curve(o).context(a)}return c.x=function(n){return arguments.length?(t="function"==typeof n?n:bx(+n),e=null,c):t},c.x0=function(e){return arguments.length?(t="function"==typeof e?e:bx(+e),c):t},c.x1=function(t){return arguments.length?(e=null==t?null:"function"==typeof t?t:bx(+t),c):e},c.y=function(t){return arguments.length?(n="function"==typeof t?t:bx(+t),r=null,c):n},c.y0=function(t){return arguments.length?(n="function"==typeof t?t:bx(+t),c):n},c.y1=function(t){return arguments.length?(r=null==t?null:"function"==typeof t?t:bx(+t),c):r},c.lineX0=c.lineY0=function(){return u().x(t).y(n)},c.lineY1=function(){return u().x(t).y(r)},c.lineX1=function(){return u().x(e).y(n)},c.defined=function(t){return arguments.length?(i="function"==typeof t?t:bx(!!t),c):i},c.curve=function(t){return arguments.length?(o=t,null!=a&&(s=o(a)),c):o},c.context=function(t){return arguments.length?(null==t?a=s=null:s=o(a=t),c):a},c},Hx=function(t,e){return e<t?-1:e>t?1:e>=t?0:NaN},Vx=function(t){return t},Gx=function(){var t=Vx,e=Hx,n=null,r=bx(0),i=bx(Mx),a=bx(0);function o(o){var s,c,u,l,h,f=o.length,d=0,p=new Array(f),y=new Array(f),g=+r.apply(this,arguments),m=Math.min(Mx,Math.max(-Mx,i.apply(this,arguments)-g)),v=Math.min(Math.abs(m)/f,a.apply(this,arguments)),b=v*(m<0?-1:1);for(s=0;s<f;++s)(h=y[p[s]=s]=+t(o[s],s,o))>0&&(d+=h);for(null!=e?p.sort((function(t,n){return e(y[t],y[n])})):null!=n&&p.sort((function(t,e){return n(o[t],o[e])})),s=0,u=d?(m-f*b)/d:0;s<f;++s,g=l)c=p[s],l=g+((h=y[c])>0?h*u:0)+b,y[c]={data:o[c],index:s,value:h,startAngle:g,endAngle:l,padAngle:v};return y}return o.value=function(e){return arguments.length?(t="function"==typeof e?e:bx(+e),o):t},o.sortValues=function(t){return arguments.length?(e=t,n=null,o):e},o.sort=function(t){return arguments.length?(n=t,e=null,o):n},o.startAngle=function(t){return arguments.length?(r="function"==typeof t?t:bx(+t),o):r},o.endAngle=function(t){return arguments.length?(i="function"==typeof t?t:bx(+t),o):i},o.padAngle=function(t){return arguments.length?(a="function"==typeof t?t:bx(+t),o):a},o},Xx=Kx(zx);function Zx(t){this._curve=t}function Kx(t){function e(e){return new Zx(t(e))}return e._curve=t,e}function Qx(t){var e=t.curve;return t.angle=t.x,delete t.x,t.radius=t.y,delete t.y,t.curve=function(t){return arguments.length?e(Kx(t)):e()._curve},t}Zx.prototype={areaStart:function(){this._curve.areaStart()},areaEnd:function(){this._curve.areaEnd()},lineStart:function(){this._curve.lineStart()},lineEnd:function(){this._curve.lineEnd()},point:function(t,e){this._curve.point(e*Math.sin(t),e*-Math.cos(t))}};var Jx=function(){return Qx(qx().curve(Xx))},t_=function(){var t=Wx().curve(Xx),e=t.curve,n=t.lineX0,r=t.lineX1,i=t.lineY0,a=t.lineY1;return t.angle=t.x,delete t.x,t.startAngle=t.x0,delete t.x0,t.endAngle=t.x1,delete t.x1,t.radius=t.y,delete t.y,t.innerRadius=t.y0,delete t.y0,t.outerRadius=t.y1,delete t.y1,t.lineStartAngle=function(){return Qx(n())},delete t.lineX0,t.lineEndAngle=function(){return Qx(r())},delete t.lineX1,t.lineInnerRadius=function(){return Qx(i())},delete t.lineY0,t.lineOuterRadius=function(){return Qx(a())},delete t.lineY1,t.curve=function(t){return arguments.length?e(Kx(t)):e()._curve},t},e_=function(t,e){return[(e=+e)*Math.cos(t-=Math.PI/2),e*Math.sin(t)]},n_=Array.prototype.slice;function r_(t){return t.source}function i_(t){return t.target}function a_(t){var e=r_,n=i_,r=Ux,i=$x,a=null;function o(){var o,s=n_.call(arguments),c=e.apply(this,s),u=n.apply(this,s);if(a||(a=o=$i()),t(a,+r.apply(this,(s[0]=c,s)),+i.apply(this,s),+r.apply(this,(s[0]=u,s)),+i.apply(this,s)),o)return a=null,o+""||null}return o.source=function(t){return arguments.length?(e=t,o):e},o.target=function(t){return arguments.length?(n=t,o):n},o.x=function(t){return arguments.length?(r="function"==typeof t?t:bx(+t),o):r},o.y=function(t){return arguments.length?(i="function"==typeof t?t:bx(+t),o):i},o.context=function(t){return arguments.length?(a=null==t?null:t,o):a},o}function o_(t,e,n,r,i){t.moveTo(e,n),t.bezierCurveTo(e=(e+r)/2,n,e,i,r,i)}function s_(t,e,n,r,i){t.moveTo(e,n),t.bezierCurveTo(e,n=(n+i)/2,r,n,r,i)}function c_(t,e,n,r,i){var a=e_(e,n),o=e_(e,n=(n+i)/2),s=e_(r,n),c=e_(r,i);t.moveTo(a[0],a[1]),t.bezierCurveTo(o[0],o[1],s[0],s[1],c[0],c[1])}function u_(){return a_(o_)}function l_(){return a_(s_)}function h_(){var t=a_(c_);return t.angle=t.x,delete t.x,t.radius=t.y,delete t.y,t}var f_={draw:function(t,e){var n=Math.sqrt(e/Sx);t.moveTo(n,0),t.arc(0,0,n,0,Mx)}},d_={draw:function(t,e){var n=Math.sqrt(e/5)/2;t.moveTo(-3*n,-n),t.lineTo(-n,-n),t.lineTo(-n,-3*n),t.lineTo(n,-3*n),t.lineTo(n,-n),t.lineTo(3*n,-n),t.lineTo(3*n,n),t.lineTo(n,n),t.lineTo(n,3*n),t.lineTo(-n,3*n),t.lineTo(-n,n),t.lineTo(-3*n,n),t.closePath()}},p_=Math.sqrt(1/3),y_=2*p_,g_={draw:function(t,e){var n=Math.sqrt(e/y_),r=n*p_;t.moveTo(0,-n),t.lineTo(r,0),t.lineTo(0,n),t.lineTo(-r,0),t.closePath()}},m_=Math.sin(Sx/10)/Math.sin(7*Sx/10),v_=Math.sin(Mx/10)*m_,b_=-Math.cos(Mx/10)*m_,x_={draw:function(t,e){var n=Math.sqrt(.8908130915292852*e),r=v_*n,i=b_*n;t.moveTo(0,-n),t.lineTo(r,i);for(var a=1;a<5;++a){var o=Mx*a/5,s=Math.cos(o),c=Math.sin(o);t.lineTo(c*n,-s*n),t.lineTo(s*r-c*i,c*r+s*i)}t.closePath()}},__={draw:function(t,e){var n=Math.sqrt(e),r=-n/2;t.rect(r,r,n,n)}},k_=Math.sqrt(3),w_={draw:function(t,e){var n=-Math.sqrt(e/(3*k_));t.moveTo(0,2*n),t.lineTo(-k_*n,-n),t.lineTo(k_*n,-n),t.closePath()}},T_=Math.sqrt(3)/2,E_=1/Math.sqrt(12),C_=3*(E_/2+1),S_={draw:function(t,e){var n=Math.sqrt(e/C_),r=n/2,i=n*E_,a=r,o=n*E_+n,s=-a,c=o;t.moveTo(r,i),t.lineTo(a,o),t.lineTo(s,c),t.lineTo(-.5*r-T_*i,T_*r+-.5*i),t.lineTo(-.5*a-T_*o,T_*a+-.5*o),t.lineTo(-.5*s-T_*c,T_*s+-.5*c),t.lineTo(-.5*r+T_*i,-.5*i-T_*r),t.lineTo(-.5*a+T_*o,-.5*o-T_*a),t.lineTo(-.5*s+T_*c,-.5*c-T_*s),t.closePath()}},A_=[f_,d_,g_,__,x_,w_,S_],M_=function(){var t=bx(f_),e=bx(64),n=null;function r(){var r;if(n||(n=r=$i()),t.apply(this,arguments).draw(n,+e.apply(this,arguments)),r)return n=null,r+""||null}return r.type=function(e){return arguments.length?(t="function"==typeof e?e:bx(e),r):t},r.size=function(t){return arguments.length?(e="function"==typeof t?t:bx(+t),r):e},r.context=function(t){return arguments.length?(n=null==t?null:t,r):n},r},O_=function(){};function N_(t,e,n){t._context.bezierCurveTo((2*t._x0+t._x1)/3,(2*t._y0+t._y1)/3,(t._x0+2*t._x1)/3,(t._y0+2*t._y1)/3,(t._x0+4*t._x1+e)/6,(t._y0+4*t._y1+n)/6)}function B_(t){this._context=t}B_.prototype={areaStart:function(){this._line=0},areaEnd:function(){this._line=NaN},lineStart:function(){this._x0=this._x1=this._y0=this._y1=NaN,this._point=0},lineEnd:function(){switch(this._point){case 3:N_(this,this._x1,this._y1);case 2:this._context.lineTo(this._x1,this._y1)}(this._line||0!==this._line&&1===this._point)&&this._context.closePath(),this._line=1-this._line},point:function(t,e){switch(t=+t,e=+e,this._point){case 0:this._point=1,this._line?this._context.lineTo(t,e):this._context.moveTo(t,e);break;case 1:this._point=2;break;case 2:this._point=3,this._context.lineTo((5*this._x0+this._x1)/6,(5*this._y0+this._y1)/6);default:N_(this,t,e)}this._x0=this._x1,this._x1=t,this._y0=this._y1,this._y1=e}};var D_=function(t){return new B_(t)};function L_(t){this._context=t}L_.prototype={areaStart:O_,areaEnd:O_,lineStart:function(){this._x0=this._x1=this._x2=this._x3=this._x4=this._y0=this._y1=this._y2=this._y3=this._y4=NaN,this._point=0},lineEnd:function(){switch(this._point){case 1:this._context.moveTo(this._x2,this._y2),this._context.closePath();break;case 2:this._context.moveTo((this._x2+2*this._x3)/3,(this._y2+2*this._y3)/3),this._context.lineTo((this._x3+2*this._x2)/3,(this._y3+2*this._y2)/3),this._context.closePath();break;case 3:this.point(this._x2,this._y2),this.point(this._x3,this._y3),this.point(this._x4,this._y4)}},point:function(t,e){switch(t=+t,e=+e,this._point){case 0:this._point=1,this._x2=t,this._y2=e;break;case 1:this._point=2,this._x3=t,this._y3=e;break;case 2:this._point=3,this._x4=t,this._y4=e,this._context.moveTo((this._x0+4*this._x1+t)/6,(this._y0+4*this._y1+e)/6);break;default:N_(this,t,e)}this._x0=this._x1,this._x1=t,this._y0=this._y1,this._y1=e}};var I_=function(t){return new L_(t)};function R_(t){this._context=t}R_.prototype={areaStart:function(){this._line=0},areaEnd:function(){this._line=NaN},lineStart:function(){this._x0=this._x1=this._y0=this._y1=NaN,this._point=0},lineEnd:function(){(this._line||0!==this._line&&3===this._point)&&this._context.closePath(),this._line=1-this._line},point:function(t,e){switch(t=+t,e=+e,this._point){case 0:this._point=1;break;case 1:this._point=2;break;case 2:this._point=3;var n=(this._x0+4*this._x1+t)/6,r=(this._y0+4*this._y1+e)/6;this._line?this._context.lineTo(n,r):this._context.moveTo(n,r);break;case 3:this._point=4;default:N_(this,t,e)}this._x0=this._x1,this._x1=t,this._y0=this._y1,this._y1=e}};var F_=function(t){return new R_(t)};function P_(t,e){this._basis=new B_(t),this._beta=e}P_.prototype={lineStart:function(){this._x=[],this._y=[],this._basis.lineStart()},lineEnd:function(){var t=this._x,e=this._y,n=t.length-1;if(n>0)for(var r,i=t[0],a=e[0],o=t[n]-i,s=e[n]-a,c=-1;++c<=n;)r=c/n,this._basis.point(this._beta*t[c]+(1-this._beta)*(i+r*o),this._beta*e[c]+(1-this._beta)*(a+r*s));this._x=this._y=null,this._basis.lineEnd()},point:function(t,e){this._x.push(+t),this._y.push(+e)}};var j_=function t(e){function n(t){return 1===e?new B_(t):new P_(t,e)}return n.beta=function(e){return t(+e)},n}(.85);function Y_(t,e,n){t._context.bezierCurveTo(t._x1+t._k*(t._x2-t._x0),t._y1+t._k*(t._y2-t._y0),t._x2+t._k*(t._x1-e),t._y2+t._k*(t._y1-n),t._x2,t._y2)}function z_(t,e){this._context=t,this._k=(1-e)/6}z_.prototype={areaStart:function(){this._line=0},areaEnd:function(){this._line=NaN},lineStart:function(){this._x0=this._x1=this._x2=this._y0=this._y1=this._y2=NaN,this._point=0},lineEnd:function(){switch(this._point){case 2:this._context.lineTo(this._x2,this._y2);break;case 3:Y_(this,this._x1,this._y1)}(this._line||0!==this._line&&1===this._point)&&this._context.closePath(),this._line=1-this._line},point:function(t,e){switch(t=+t,e=+e,this._point){case 0:this._point=1,this._line?this._context.lineTo(t,e):this._context.moveTo(t,e);break;case 1:this._point=2,this._x1=t,this._y1=e;break;case 2:this._point=3;default:Y_(this,t,e)}this._x0=this._x1,this._x1=this._x2,this._x2=t,this._y0=this._y1,this._y1=this._y2,this._y2=e}};var U_=function t(e){function n(t){return new z_(t,e)}return n.tension=function(e){return t(+e)},n}(0);function $_(t,e){this._context=t,this._k=(1-e)/6}$_.prototype={areaStart:O_,areaEnd:O_,lineStart:function(){this._x0=this._x1=this._x2=this._x3=this._x4=this._x5=this._y0=this._y1=this._y2=this._y3=this._y4=this._y5=NaN,this._point=0},lineEnd:function(){switch(this._point){case 1:this._context.moveTo(this._x3,this._y3),this._context.closePath();break;case 2:this._context.lineTo(this._x3,this._y3),this._context.closePath();break;case 3:this.point(this._x3,this._y3),this.point(this._x4,this._y4),this.point(this._x5,this._y5)}},point:function(t,e){switch(t=+t,e=+e,this._point){case 0:this._point=1,this._x3=t,this._y3=e;break;case 1:this._point=2,this._context.moveTo(this._x4=t,this._y4=e);break;case 2:this._point=3,this._x5=t,this._y5=e;break;default:Y_(this,t,e)}this._x0=this._x1,this._x1=this._x2,this._x2=t,this._y0=this._y1,this._y1=this._y2,this._y2=e}};var q_=function t(e){function n(t){return new $_(t,e)}return n.tension=function(e){return t(+e)},n}(0);function W_(t,e){this._context=t,this._k=(1-e)/6}W_.prototype={areaStart:function(){this._line=0},areaEnd:function(){this._line=NaN},lineStart:function(){this._x0=this._x1=this._x2=this._y0=this._y1=this._y2=NaN,this._point=0},lineEnd:function(){(this._line||0!==this._line&&3===this._point)&&this._context.closePath(),this._line=1-this._line},point:function(t,e){switch(t=+t,e=+e,this._point){case 0:this._point=1;break;case 1:this._point=2;break;case 2:this._point=3,this._line?this._context.lineTo(this._x2,this._y2):this._context.moveTo(this._x2,this._y2);break;case 3:this._point=4;default:Y_(this,t,e)}this._x0=this._x1,this._x1=this._x2,this._x2=t,this._y0=this._y1,this._y1=this._y2,this._y2=e}};var H_=function t(e){function n(t){return new W_(t,e)}return n.tension=function(e){return t(+e)},n}(0);function V_(t,e,n){var r=t._x1,i=t._y1,a=t._x2,o=t._y2;if(t._l01_a>1e-12){var s=2*t._l01_2a+3*t._l01_a*t._l12_a+t._l12_2a,c=3*t._l01_a*(t._l01_a+t._l12_a);r=(r*s-t._x0*t._l12_2a+t._x2*t._l01_2a)/c,i=(i*s-t._y0*t._l12_2a+t._y2*t._l01_2a)/c}if(t._l23_a>1e-12){var u=2*t._l23_2a+3*t._l23_a*t._l12_a+t._l12_2a,l=3*t._l23_a*(t._l23_a+t._l12_a);a=(a*u+t._x1*t._l23_2a-e*t._l12_2a)/l,o=(o*u+t._y1*t._l23_2a-n*t._l12_2a)/l}t._context.bezierCurveTo(r,i,a,o,t._x2,t._y2)}function G_(t,e){this._context=t,this._alpha=e}G_.prototype={areaStart:function(){this._line=0},areaEnd:function(){this._line=NaN},lineStart:function(){this._x0=this._x1=this._x2=this._y0=this._y1=this._y2=NaN,this._l01_a=this._l12_a=this._l23_a=this._l01_2a=this._l12_2a=this._l23_2a=this._point=0},lineEnd:function(){switch(this._point){case 2:this._context.lineTo(this._x2,this._y2);break;case 3:this.point(this._x2,this._y2)}(this._line||0!==this._line&&1===this._point)&&this._context.closePath(),this._line=1-this._line},point:function(t,e){if(t=+t,e=+e,this._point){var n=this._x2-t,r=this._y2-e;this._l23_a=Math.sqrt(this._l23_2a=Math.pow(n*n+r*r,this._alpha))}switch(this._point){case 0:this._point=1,this._line?this._context.lineTo(t,e):this._context.moveTo(t,e);break;case 1:this._point=2;break;case 2:this._point=3;default:V_(this,t,e)}this._l01_a=this._l12_a,this._l12_a=this._l23_a,this._l01_2a=this._l12_2a,this._l12_2a=this._l23_2a,this._x0=this._x1,this._x1=this._x2,this._x2=t,this._y0=this._y1,this._y1=this._y2,this._y2=e}};var X_=function t(e){function n(t){return e?new G_(t,e):new z_(t,0)}return n.alpha=function(e){return t(+e)},n}(.5);function Z_(t,e){this._context=t,this._alpha=e}Z_.prototype={areaStart:O_,areaEnd:O_,lineStart:function(){this._x0=this._x1=this._x2=this._x3=this._x4=this._x5=this._y0=this._y1=this._y2=this._y3=this._y4=this._y5=NaN,this._l01_a=this._l12_a=this._l23_a=this._l01_2a=this._l12_2a=this._l23_2a=this._point=0},lineEnd:function(){switch(this._point){case 1:this._context.moveTo(this._x3,this._y3),this._context.closePath();break;case 2:this._context.lineTo(this._x3,this._y3),this._context.closePath();break;case 3:this.point(this._x3,this._y3),this.point(this._x4,this._y4),this.point(this._x5,this._y5)}},point:function(t,e){if(t=+t,e=+e,this._point){var n=this._x2-t,r=this._y2-e;this._l23_a=Math.sqrt(this._l23_2a=Math.pow(n*n+r*r,this._alpha))}switch(this._point){case 0:this._point=1,this._x3=t,this._y3=e;break;case 1:this._point=2,this._context.moveTo(this._x4=t,this._y4=e);break;case 2:this._point=3,this._x5=t,this._y5=e;break;default:V_(this,t,e)}this._l01_a=this._l12_a,this._l12_a=this._l23_a,this._l01_2a=this._l12_2a,this._l12_2a=this._l23_2a,this._x0=this._x1,this._x1=this._x2,this._x2=t,this._y0=this._y1,this._y1=this._y2,this._y2=e}};var K_=function t(e){function n(t){return e?new Z_(t,e):new $_(t,0)}return n.alpha=function(e){return t(+e)},n}(.5);function Q_(t,e){this._context=t,this._alpha=e}Q_.prototype={areaStart:function(){this._line=0},areaEnd:function(){this._line=NaN},lineStart:function(){this._x0=this._x1=this._x2=this._y0=this._y1=this._y2=NaN,this._l01_a=this._l12_a=this._l23_a=this._l01_2a=this._l12_2a=this._l23_2a=this._point=0},lineEnd:function(){(this._line||0!==this._line&&3===this._point)&&this._context.closePath(),this._line=1-this._line},point:function(t,e){if(t=+t,e=+e,this._point){var n=this._x2-t,r=this._y2-e;this._l23_a=Math.sqrt(this._l23_2a=Math.pow(n*n+r*r,this._alpha))}switch(this._point){case 0:this._point=1;break;case 1:this._point=2;break;case 2:this._point=3,this._line?this._context.lineTo(this._x2,this._y2):this._context.moveTo(this._x2,this._y2);break;case 3:this._point=4;default:V_(this,t,e)}this._l01_a=this._l12_a,this._l12_a=this._l23_a,this._l01_2a=this._l12_2a,this._l12_2a=this._l23_2a,this._x0=this._x1,this._x1=this._x2,this._x2=t,this._y0=this._y1,this._y1=this._y2,this._y2=e}};var J_=function t(e){function n(t){return e?new Q_(t,e):new W_(t,0)}return n.alpha=function(e){return t(+e)},n}(.5);function tk(t){this._context=t}tk.prototype={areaStart:O_,areaEnd:O_,lineStart:function(){this._point=0},lineEnd:function(){this._point&&this._context.closePath()},point:function(t,e){t=+t,e=+e,this._point?this._context.lineTo(t,e):(this._point=1,this._context.moveTo(t,e))}};var ek=function(t){return new tk(t)};function nk(t){return t<0?-1:1}function rk(t,e,n){var r=t._x1-t._x0,i=e-t._x1,a=(t._y1-t._y0)/(r||i<0&&-0),o=(n-t._y1)/(i||r<0&&-0),s=(a*i+o*r)/(r+i);return(nk(a)+nk(o))*Math.min(Math.abs(a),Math.abs(o),.5*Math.abs(s))||0}function ik(t,e){var n=t._x1-t._x0;return n?(3*(t._y1-t._y0)/n-e)/2:e}function ak(t,e,n){var r=t._x0,i=t._y0,a=t._x1,o=t._y1,s=(a-r)/3;t._context.bezierCurveTo(r+s,i+s*e,a-s,o-s*n,a,o)}function ok(t){this._context=t}function sk(t){this._context=new ck(t)}function ck(t){this._context=t}function uk(t){return new ok(t)}function lk(t){return new sk(t)}function hk(t){this._context=t}function fk(t){var e,n,r=t.length-1,i=new Array(r),a=new Array(r),o=new Array(r);for(i[0]=0,a[0]=2,o[0]=t[0]+2*t[1],e=1;e<r-1;++e)i[e]=1,a[e]=4,o[e]=4*t[e]+2*t[e+1];for(i[r-1]=2,a[r-1]=7,o[r-1]=8*t[r-1]+t[r],e=1;e<r;++e)n=i[e]/a[e-1],a[e]-=n,o[e]-=n*o[e-1];for(i[r-1]=o[r-1]/a[r-1],e=r-2;e>=0;--e)i[e]=(o[e]-i[e+1])/a[e];for(a[r-1]=(t[r]+i[r-1])/2,e=0;e<r-1;++e)a[e]=2*t[e+1]-i[e+1];return[i,a]}ok.prototype={areaStart:function(){this._line=0},areaEnd:function(){this._line=NaN},lineStart:function(){this._x0=this._x1=this._y0=this._y1=this._t0=NaN,this._point=0},lineEnd:function(){switch(this._point){case 2:this._context.lineTo(this._x1,this._y1);break;case 3:ak(this,this._t0,ik(this,this._t0))}(this._line||0!==this._line&&1===this._point)&&this._context.closePath(),this._line=1-this._line},point:function(t,e){var n=NaN;if(e=+e,(t=+t)!==this._x1||e!==this._y1){switch(this._point){case 0:this._point=1,this._line?this._context.lineTo(t,e):this._context.moveTo(t,e);break;case 1:this._point=2;break;case 2:this._point=3,ak(this,ik(this,n=rk(this,t,e)),n);break;default:ak(this,this._t0,n=rk(this,t,e))}this._x0=this._x1,this._x1=t,this._y0=this._y1,this._y1=e,this._t0=n}}},(sk.prototype=Object.create(ok.prototype)).point=function(t,e){ok.prototype.point.call(this,e,t)},ck.prototype={moveTo:function(t,e){this._context.moveTo(e,t)},closePath:function(){this._context.closePath()},lineTo:function(t,e){this._context.lineTo(e,t)},bezierCurveTo:function(t,e,n,r,i,a){this._context.bezierCurveTo(e,t,r,n,a,i)}},hk.prototype={areaStart:function(){this._line=0},areaEnd:function(){this._line=NaN},lineStart:function(){this._x=[],this._y=[]},lineEnd:function(){var t=this._x,e=this._y,n=t.length;if(n)if(this._line?this._context.lineTo(t[0],e[0]):this._context.moveTo(t[0],e[0]),2===n)this._context.lineTo(t[1],e[1]);else for(var r=fk(t),i=fk(e),a=0,o=1;o<n;++a,++o)this._context.bezierCurveTo(r[0][a],i[0][a],r[1][a],i[1][a],t[o],e[o]);(this._line||0!==this._line&&1===n)&&this._context.closePath(),this._line=1-this._line,this._x=this._y=null},point:function(t,e){this._x.push(+t),this._y.push(+e)}};var dk=function(t){return new hk(t)};function pk(t,e){this._context=t,this._t=e}pk.prototype={areaStart:function(){this._line=0},areaEnd:function(){this._line=NaN},lineStart:function(){this._x=this._y=NaN,this._point=0},lineEnd:function(){0<this._t&&this._t<1&&2===this._point&&this._context.lineTo(this._x,this._y),(this._line||0!==this._line&&1===this._point)&&this._context.closePath(),this._line>=0&&(this._t=1-this._t,this._line=1-this._line)},point:function(t,e){switch(t=+t,e=+e,this._point){case 0:this._point=1,this._line?this._context.lineTo(t,e):this._context.moveTo(t,e);break;case 1:this._point=2;default:if(this._t<=0)this._context.lineTo(this._x,e),this._context.lineTo(t,e);else{var n=this._x*(1-this._t)+t*this._t;this._context.lineTo(n,this._y),this._context.lineTo(n,e)}}this._x=t,this._y=e}};var yk=function(t){return new pk(t,.5)};function gk(t){return new pk(t,0)}function mk(t){return new pk(t,1)}var vk=function(t,e){if((i=t.length)>1)for(var n,r,i,a=1,o=t[e[0]],s=o.length;a<i;++a)for(r=o,o=t[e[a]],n=0;n<s;++n)o[n][1]+=o[n][0]=isNaN(r[n][1])?r[n][0]:r[n][1]},bk=function(t){for(var e=t.length,n=new Array(e);--e>=0;)n[e]=e;return n};function xk(t,e){return t[e]}var _k=function(){var t=bx([]),e=bk,n=vk,r=xk;function i(i){var a,o,s=t.apply(this,arguments),c=i.length,u=s.length,l=new Array(u);for(a=0;a<u;++a){for(var h,f=s[a],d=l[a]=new Array(c),p=0;p<c;++p)d[p]=h=[0,+r(i[p],f,p,i)],h.data=i[p];d.key=f}for(a=0,o=e(l);a<u;++a)l[o[a]].index=a;return n(l,o),l}return i.keys=function(e){return arguments.length?(t="function"==typeof e?e:bx(n_.call(e)),i):t},i.value=function(t){return arguments.length?(r="function"==typeof t?t:bx(+t),i):r},i.order=function(t){return arguments.length?(e=null==t?bk:"function"==typeof t?t:bx(n_.call(t)),i):e},i.offset=function(t){return arguments.length?(n=null==t?vk:t,i):n},i},kk=function(t,e){if((r=t.length)>0){for(var n,r,i,a=0,o=t[0].length;a<o;++a){for(i=n=0;n<r;++n)i+=t[n][a][1]||0;if(i)for(n=0;n<r;++n)t[n][a][1]/=i}vk(t,e)}},wk=function(t,e){if((s=t.length)>0)for(var n,r,i,a,o,s,c=0,u=t[e[0]].length;c<u;++c)for(a=o=0,n=0;n<s;++n)(i=(r=t[e[n]][c])[1]-r[0])>0?(r[0]=a,r[1]=a+=i):i<0?(r[1]=o,r[0]=o+=i):(r[0]=0,r[1]=i)},Tk=function(t,e){if((n=t.length)>0){for(var n,r=0,i=t[e[0]],a=i.length;r<a;++r){for(var o=0,s=0;o<n;++o)s+=t[o][r][1]||0;i[r][1]+=i[r][0]=-s/2}vk(t,e)}},Ek=function(t,e){if((i=t.length)>0&&(r=(n=t[e[0]]).length)>0){for(var n,r,i,a=0,o=1;o<r;++o){for(var s=0,c=0,u=0;s<i;++s){for(var l=t[e[s]],h=l[o][1]||0,f=(h-(l[o-1][1]||0))/2,d=0;d<s;++d){var p=t[e[d]];f+=(p[o][1]||0)-(p[o-1][1]||0)}c+=h,u+=f*h}n[o-1][1]+=n[o-1][0]=a,c&&(a-=u/c)}n[o-1][1]+=n[o-1][0]=a,vk(t,e)}},Ck=function(t){var e=t.map(Sk);return bk(t).sort((function(t,n){return e[t]-e[n]}))};function Sk(t){for(var e,n=-1,r=0,i=t.length,a=-1/0;++n<i;)(e=+t[n][1])>a&&(a=e,r=n);return r}var Ak=function(t){var e=t.map(Mk);return bk(t).sort((function(t,n){return e[t]-e[n]}))};function Mk(t){for(var e,n=0,r=-1,i=t.length;++r<i;)(e=+t[r][1])&&(n+=e);return n}var Ok=function(t){return Ak(t).reverse()},Nk=function(t){var e,n,r=t.length,i=t.map(Mk),a=Ck(t),o=0,s=0,c=[],u=[];for(e=0;e<r;++e)n=a[e],o<s?(o+=i[n],c.push(n)):(s+=i[n],u.push(n));return u.reverse().concat(c)},Bk=function(t){return bk(t).reverse()};var Dk=Date.prototype.toISOString?function(t){return t.toISOString()}:Wg("%Y-%m-%dT%H:%M:%S.%LZ");var Lk=+new Date("2000-01-01T00:00:00.000Z")?function(t){var e=new Date(t);return isNaN(e)?null:e}:Hg("%Y-%m-%dT%H:%M:%S.%LZ"),Ik=function(t,e,n){var r=new qn,i=e;return null==e?(r.restart(t,e,n),r):(e=+e,n=null==n?Un():+n,r.restart((function a(o){o+=i,r.restart(a,i+=e,n),t(o)}),e,n),r)},Rk=function(t){return function(){return t}};function Fk(t){return t[0]}function Pk(t){return t[1]}function jk(){this._=null}function Yk(t){t.U=t.C=t.L=t.R=t.P=t.N=null}function zk(t,e){var n=e,r=e.R,i=n.U;i?i.L===n?i.L=r:i.R=r:t._=r,r.U=i,n.U=r,n.R=r.L,n.R&&(n.R.U=n),r.L=n}function Uk(t,e){var n=e,r=e.L,i=n.U;i?i.L===n?i.L=r:i.R=r:t._=r,r.U=i,n.U=r,n.L=r.R,n.L&&(n.L.U=n),r.R=n}function $k(t){for(;t.L;)t=t.L;return t}jk.prototype={constructor:jk,insert:function(t,e){var n,r,i;if(t){if(e.P=t,e.N=t.N,t.N&&(t.N.P=e),t.N=e,t.R){for(t=t.R;t.L;)t=t.L;t.L=e}else t.R=e;n=t}else this._?(t=$k(this._),e.P=null,e.N=t,t.P=t.L=e,n=t):(e.P=e.N=null,this._=e,n=null);for(e.L=e.R=null,e.U=n,e.C=!0,t=e;n&&n.C;)n===(r=n.U).L?(i=r.R)&&i.C?(n.C=i.C=!1,r.C=!0,t=r):(t===n.R&&(zk(this,n),n=(t=n).U),n.C=!1,r.C=!0,Uk(this,r)):(i=r.L)&&i.C?(n.C=i.C=!1,r.C=!0,t=r):(t===n.L&&(Uk(this,n),n=(t=n).U),n.C=!1,r.C=!0,zk(this,r)),n=t.U;this._.C=!1},remove:function(t){t.N&&(t.N.P=t.P),t.P&&(t.P.N=t.N),t.N=t.P=null;var e,n,r,i=t.U,a=t.L,o=t.R;if(n=a?o?$k(o):a:o,i?i.L===t?i.L=n:i.R=n:this._=n,a&&o?(r=n.C,n.C=t.C,n.L=a,a.U=n,n!==o?(i=n.U,n.U=t.U,t=n.R,i.L=t,n.R=o,o.U=n):(n.U=i,i=n,t=n.R)):(r=t.C,t=n),t&&(t.U=i),!r)if(t&&t.C)t.C=!1;else{do{if(t===this._)break;if(t===i.L){if((e=i.R).C&&(e.C=!1,i.C=!0,zk(this,i),e=i.R),e.L&&e.L.C||e.R&&e.R.C){e.R&&e.R.C||(e.L.C=!1,e.C=!0,Uk(this,e),e=i.R),e.C=i.C,i.C=e.R.C=!1,zk(this,i),t=this._;break}}else if((e=i.L).C&&(e.C=!1,i.C=!0,Uk(this,i),e=i.L),e.L&&e.L.C||e.R&&e.R.C){e.L&&e.L.C||(e.R.C=!1,e.C=!0,zk(this,e),e=i.L),e.C=i.C,i.C=e.L.C=!1,Uk(this,i),t=this._;break}e.C=!0,t=i,i=i.U}while(!t.C);t&&(t.C=!1)}}};var qk=jk;function Wk(t,e,n,r){var i=[null,null],a=yw.push(i)-1;return i.left=t,i.right=e,n&&Vk(i,t,e,n),r&&Vk(i,e,t,r),dw[t.index].halfedges.push(a),dw[e.index].halfedges.push(a),i}function Hk(t,e,n){var r=[e,n];return r.left=t,r}function Vk(t,e,n,r){t[0]||t[1]?t.left===n?t[1]=r:t[0]=r:(t[0]=r,t.left=e,t.right=n)}function Gk(t,e,n,r,i){var a,o=t[0],s=t[1],c=o[0],u=o[1],l=0,h=1,f=s[0]-c,d=s[1]-u;if(a=e-c,f||!(a>0)){if(a/=f,f<0){if(a<l)return;a<h&&(h=a)}else if(f>0){if(a>h)return;a>l&&(l=a)}if(a=r-c,f||!(a<0)){if(a/=f,f<0){if(a>h)return;a>l&&(l=a)}else if(f>0){if(a<l)return;a<h&&(h=a)}if(a=n-u,d||!(a>0)){if(a/=d,d<0){if(a<l)return;a<h&&(h=a)}else if(d>0){if(a>h)return;a>l&&(l=a)}if(a=i-u,d||!(a<0)){if(a/=d,d<0){if(a>h)return;a>l&&(l=a)}else if(d>0){if(a<l)return;a<h&&(h=a)}return!(l>0||h<1)||(l>0&&(t[0]=[c+l*f,u+l*d]),h<1&&(t[1]=[c+h*f,u+h*d]),!0)}}}}}function Xk(t,e,n,r,i){var a=t[1];if(a)return!0;var o,s,c=t[0],u=t.left,l=t.right,h=u[0],f=u[1],d=l[0],p=l[1],y=(h+d)/2,g=(f+p)/2;if(p===f){if(y<e||y>=r)return;if(h>d){if(c){if(c[1]>=i)return}else c=[y,n];a=[y,i]}else{if(c){if(c[1]<n)return}else c=[y,i];a=[y,n]}}else if(s=g-(o=(h-d)/(p-f))*y,o<-1||o>1)if(h>d){if(c){if(c[1]>=i)return}else c=[(n-s)/o,n];a=[(i-s)/o,i]}else{if(c){if(c[1]<n)return}else c=[(i-s)/o,i];a=[(n-s)/o,n]}else if(f<p){if(c){if(c[0]>=r)return}else c=[e,o*e+s];a=[r,o*r+s]}else{if(c){if(c[0]<e)return}else c=[r,o*r+s];a=[e,o*e+s]}return t[0]=c,t[1]=a,!0}function Zk(t,e){var n=t.site,r=e.left,i=e.right;return n===i&&(i=r,r=n),i?Math.atan2(i[1]-r[1],i[0]-r[0]):(n===r?(r=e[1],i=e[0]):(r=e[0],i=e[1]),Math.atan2(r[0]-i[0],i[1]-r[1]))}function Kk(t,e){return e[+(e.left!==t.site)]}function Qk(t,e){return e[+(e.left===t.site)]}var Jk,tw=[];function ew(){Yk(this),this.x=this.y=this.arc=this.site=this.cy=null}function nw(t){var e=t.P,n=t.N;if(e&&n){var r=e.site,i=t.site,a=n.site;if(r!==a){var o=i[0],s=i[1],c=r[0]-o,u=r[1]-s,l=a[0]-o,h=a[1]-s,f=2*(c*h-u*l);if(!(f>=-mw)){var d=c*c+u*u,p=l*l+h*h,y=(h*d-u*p)/f,g=(c*p-l*d)/f,m=tw.pop()||new ew;m.arc=t,m.site=i,m.x=y+o,m.y=(m.cy=g+s)+Math.sqrt(y*y+g*g),t.circle=m;for(var v=null,b=pw._;b;)if(m.y<b.y||m.y===b.y&&m.x<=b.x){if(!b.L){v=b.P;break}b=b.L}else{if(!b.R){v=b;break}b=b.R}pw.insert(v,m),v||(Jk=m)}}}}function rw(t){var e=t.circle;e&&(e.P||(Jk=e.N),pw.remove(e),tw.push(e),Yk(e),t.circle=null)}var iw=[];function aw(){Yk(this),this.edge=this.site=this.circle=null}function ow(t){var e=iw.pop()||new aw;return e.site=t,e}function sw(t){rw(t),fw.remove(t),iw.push(t),Yk(t)}function cw(t){var e=t.circle,n=e.x,r=e.cy,i=[n,r],a=t.P,o=t.N,s=[t];sw(t);for(var c=a;c.circle&&Math.abs(n-c.circle.x)<gw&&Math.abs(r-c.circle.cy)<gw;)a=c.P,s.unshift(c),sw(c),c=a;s.unshift(c),rw(c);for(var u=o;u.circle&&Math.abs(n-u.circle.x)<gw&&Math.abs(r-u.circle.cy)<gw;)o=u.N,s.push(u),sw(u),u=o;s.push(u),rw(u);var l,h=s.length;for(l=1;l<h;++l)u=s[l],c=s[l-1],Vk(u.edge,c.site,u.site,i);c=s[0],(u=s[h-1]).edge=Wk(c.site,u.site,null,i),nw(c),nw(u)}function uw(t){for(var e,n,r,i,a=t[0],o=t[1],s=fw._;s;)if((r=lw(s,o)-a)>gw)s=s.L;else{if(!((i=a-hw(s,o))>gw)){r>-gw?(e=s.P,n=s):i>-gw?(e=s,n=s.N):e=n=s;break}if(!s.R){e=s;break}s=s.R}!function(t){dw[t.index]={site:t,halfedges:[]}}(t);var c=ow(t);if(fw.insert(e,c),e||n){if(e===n)return rw(e),n=ow(e.site),fw.insert(c,n),c.edge=n.edge=Wk(e.site,c.site),nw(e),void nw(n);if(n){rw(e),rw(n);var u=e.site,l=u[0],h=u[1],f=t[0]-l,d=t[1]-h,p=n.site,y=p[0]-l,g=p[1]-h,m=2*(f*g-d*y),v=f*f+d*d,b=y*y+g*g,x=[(g*v-d*b)/m+l,(f*b-y*v)/m+h];Vk(n.edge,u,p,x),c.edge=Wk(u,t,null,x),n.edge=Wk(t,p,null,x),nw(e),nw(n)}else c.edge=Wk(e.site,c.site)}}function lw(t,e){var n=t.site,r=n[0],i=n[1],a=i-e;if(!a)return r;var o=t.P;if(!o)return-1/0;var s=(n=o.site)[0],c=n[1],u=c-e;if(!u)return s;var l=s-r,h=1/a-1/u,f=l/u;return h?(-f+Math.sqrt(f*f-2*h*(l*l/(-2*u)-c+u/2+i-a/2)))/h+r:(r+s)/2}function hw(t,e){var n=t.N;if(n)return lw(n,e);var r=t.site;return r[1]===e?r[0]:1/0}var fw,dw,pw,yw,gw=1e-6,mw=1e-12;function vw(t,e){return e[1]-t[1]||e[0]-t[0]}function bw(t,e){var n,r,i,a=t.sort(vw).pop();for(yw=[],dw=new Array(t.length),fw=new qk,pw=new qk;;)if(i=Jk,a&&(!i||a[1]<i.y||a[1]===i.y&&a[0]<i.x))a[0]===n&&a[1]===r||(uw(a),n=a[0],r=a[1]),a=t.pop();else{if(!i)break;cw(i.arc)}if(function(){for(var t,e,n,r,i=0,a=dw.length;i<a;++i)if((t=dw[i])&&(r=(e=t.halfedges).length)){var o=new Array(r),s=new Array(r);for(n=0;n<r;++n)o[n]=n,s[n]=Zk(t,yw[e[n]]);for(o.sort((function(t,e){return s[e]-s[t]})),n=0;n<r;++n)s[n]=e[o[n]];for(n=0;n<r;++n)e[n]=s[n]}}(),e){var o=+e[0][0],s=+e[0][1],c=+e[1][0],u=+e[1][1];!function(t,e,n,r){for(var i,a=yw.length;a--;)Xk(i=yw[a],t,e,n,r)&&Gk(i,t,e,n,r)&&(Math.abs(i[0][0]-i[1][0])>gw||Math.abs(i[0][1]-i[1][1])>gw)||delete yw[a]}(o,s,c,u),function(t,e,n,r){var i,a,o,s,c,u,l,h,f,d,p,y,g=dw.length,m=!0;for(i=0;i<g;++i)if(a=dw[i]){for(o=a.site,s=(c=a.halfedges).length;s--;)yw[c[s]]||c.splice(s,1);for(s=0,u=c.length;s<u;)p=(d=Qk(a,yw[c[s]]))[0],y=d[1],h=(l=Kk(a,yw[c[++s%u]]))[0],f=l[1],(Math.abs(p-h)>gw||Math.abs(y-f)>gw)&&(c.splice(s,0,yw.push(Hk(o,d,Math.abs(p-t)<gw&&r-y>gw?[t,Math.abs(h-t)<gw?f:r]:Math.abs(y-r)<gw&&n-p>gw?[Math.abs(f-r)<gw?h:n,r]:Math.abs(p-n)<gw&&y-e>gw?[n,Math.abs(h-n)<gw?f:e]:Math.abs(y-e)<gw&&p-t>gw?[Math.abs(f-e)<gw?h:t,e]:null))-1),++u);u&&(m=!1)}if(m){var v,b,x,_=1/0;for(i=0,m=null;i<g;++i)(a=dw[i])&&(x=(v=(o=a.site)[0]-t)*v+(b=o[1]-e)*b)<_&&(_=x,m=a);if(m){var k=[t,e],w=[t,r],T=[n,r],E=[n,e];m.halfedges.push(yw.push(Hk(o=m.site,k,w))-1,yw.push(Hk(o,w,T))-1,yw.push(Hk(o,T,E))-1,yw.push(Hk(o,E,k))-1)}}for(i=0;i<g;++i)(a=dw[i])&&(a.halfedges.length||delete dw[i])}(o,s,c,u)}this.edges=yw,this.cells=dw,fw=pw=yw=dw=null}bw.prototype={constructor:bw,polygons:function(){var t=this.edges;return this.cells.map((function(e){var n=e.halfedges.map((function(n){return Kk(e,t[n])}));return n.data=e.site.data,n}))},triangles:function(){var t=[],e=this.edges;return this.cells.forEach((function(n,r){if(a=(i=n.halfedges).length)for(var i,a,o,s,c,u,l=n.site,h=-1,f=e[i[a-1]],d=f.left===l?f.right:f.left;++h<a;)o=d,d=(f=e[i[h]]).left===l?f.right:f.left,o&&d&&r<o.index&&r<d.index&&(c=o,u=d,((s=l)[0]-u[0])*(c[1]-s[1])-(s[0]-c[0])*(u[1]-s[1])<0)&&t.push([l.data,o.data,d.data])})),t},links:function(){return this.edges.filter((function(t){return t.right})).map((function(t){return{source:t.left.data,target:t.right.data}}))},find:function(t,e,n){for(var r,i,a=this,o=a._found||0,s=a.cells.length;!(i=a.cells[o]);)if(++o>=s)return null;var c=t-i.site[0],u=e-i.site[1],l=c*c+u*u;do{i=a.cells[r=o],o=null,i.halfedges.forEach((function(n){var r=a.edges[n],s=r.left;if(s!==i.site&&s||(s=r.right)){var c=t-s[0],u=e-s[1],h=c*c+u*u;h<l&&(l=h,o=s.index)}}))}while(null!==o);return a._found=r,null==n||l<=n*n?i.site:null}};var xw=function(){var t=Fk,e=Pk,n=null;function r(r){return new bw(r.map((function(n,i){var a=[Math.round(t(n,i,r)/gw)*gw,Math.round(e(n,i,r)/gw)*gw];return a.index=i,a.data=n,a})),n)}return r.polygons=function(t){return r(t).polygons()},r.links=function(t){return r(t).links()},r.triangles=function(t){return r(t).triangles()},r.x=function(e){return arguments.length?(t="function"==typeof e?e:Rk(+e),r):t},r.y=function(t){return arguments.length?(e="function"==typeof t?t:Rk(+t),r):e},r.extent=function(t){return arguments.length?(n=null==t?null:[[+t[0][0],+t[0][1]],[+t[1][0],+t[1][1]]],r):n&&[[n[0][0],n[0][1]],[n[1][0],n[1][1]]]},r.size=function(t){return arguments.length?(n=null==t?null:[[0,0],[+t[0],+t[1]]],r):n&&[n[1][0]-n[0][0],n[1][1]-n[0][1]]},r},_w=function(t){return function(){return t}};function kw(t,e,n){this.target=t,this.type=e,this.transform=n}function ww(t,e,n){this.k=t,this.x=e,this.y=n}ww.prototype={constructor:ww,scale:function(t){return 1===t?this:new ww(this.k*t,this.x,this.y)},translate:function(t,e){return 0===t&0===e?this:new ww(this.k,this.x+this.k*t,this.y+this.k*e)},apply:function(t){return[t[0]*this.k+this.x,t[1]*this.k+this.y]},applyX:function(t){return t*this.k+this.x},applyY:function(t){return t*this.k+this.y},invert:function(t){return[(t[0]-this.x)/this.k,(t[1]-this.y)/this.k]},invertX:function(t){return(t-this.x)/this.k},invertY:function(t){return(t-this.y)/this.k},rescaleX:function(t){return t.copy().domain(t.range().map(this.invertX,this).map(t.invert,t))},rescaleY:function(t){return t.copy().domain(t.range().map(this.invertY,this).map(t.invert,t))},toString:function(){return"translate("+this.x+","+this.y+") scale("+this.k+")"}};var Tw=new ww(1,0,0);function Ew(t){for(;!t.__zoom;)if(!(t=t.parentNode))return Tw;return t.__zoom}function Cw(){ue.stopImmediatePropagation()}Ew.prototype=ww.prototype;var Sw=function(){ue.preventDefault(),ue.stopImmediatePropagation()};function Aw(){return!ue.ctrlKey&&!ue.button}function Mw(){var t=this;return t instanceof SVGElement?(t=t.ownerSVGElement||t).hasAttribute("viewBox")?[[(t=t.viewBox.baseVal).x,t.y],[t.x+t.width,t.y+t.height]]:[[0,0],[t.width.baseVal.value,t.height.baseVal.value]]:[[0,0],[t.clientWidth,t.clientHeight]]}function Ow(){return this.__zoom||Tw}function Nw(){return-ue.deltaY*(1===ue.deltaMode?.05:ue.deltaMode?1:.002)}function Bw(){return navigator.maxTouchPoints||"ontouchstart"in this}function Dw(t,e,n){var r=t.invertX(e[0][0])-n[0][0],i=t.invertX(e[1][0])-n[1][0],a=t.invertY(e[0][1])-n[0][1],o=t.invertY(e[1][1])-n[1][1];return t.translate(i>r?(r+i)/2:Math.min(0,r)||Math.max(0,i),o>a?(a+o)/2:Math.min(0,a)||Math.max(0,o))}var Lw=function(){var t,e,n=Aw,r=Mw,i=Dw,a=Nw,o=Bw,s=[0,1/0],c=[[-1/0,-1/0],[1/0,1/0]],u=250,l=dp,h=ht("start","zoom","end"),f=0;function d(t){t.property("__zoom",Ow).on("wheel.zoom",x).on("mousedown.zoom",_).on("dblclick.zoom",k).filter(o).on("touchstart.zoom",w).on("touchmove.zoom",T).on("touchend.zoom touchcancel.zoom",E).style("touch-action","none").style("-webkit-tap-highlight-color","rgba(0,0,0,0)")}function p(t,e){return(e=Math.max(s[0],Math.min(s[1],e)))===t.k?t:new ww(e,t.x,t.y)}function y(t,e,n){var r=e[0]-n[0]*t.k,i=e[1]-n[1]*t.k;return r===t.x&&i===t.y?t:new ww(t.k,r,i)}function g(t){return[(+t[0][0]+ +t[1][0])/2,(+t[0][1]+ +t[1][1])/2]}function m(t,e,n){t.on("start.zoom",(function(){v(this,arguments).start()})).on("interrupt.zoom end.zoom",(function(){v(this,arguments).end()})).tween("zoom",(function(){var t=this,i=arguments,a=v(t,i),o=r.apply(t,i),s=null==n?g(o):"function"==typeof n?n.apply(t,i):n,c=Math.max(o[1][0]-o[0][0],o[1][1]-o[0][1]),u=t.__zoom,h="function"==typeof e?e.apply(t,i):e,f=l(u.invert(s).concat(c/u.k),h.invert(s).concat(c/h.k));return function(t){if(1===t)t=h;else{var e=f(t),n=c/e[2];t=new ww(n,s[0]-e[0]*n,s[1]-e[1]*n)}a.zoom(null,t)}}))}function v(t,e,n){return!n&&t.__zooming||new b(t,e)}function b(t,e){this.that=t,this.args=e,this.active=0,this.extent=r.apply(t,e),this.taps=0}function x(){if(n.apply(this,arguments)){var t=v(this,arguments),e=this.__zoom,r=Math.max(s[0],Math.min(s[1],e.k*Math.pow(2,a.apply(this,arguments)))),o=Dn(this);if(t.wheel)t.mouse[0][0]===o[0]&&t.mouse[0][1]===o[1]||(t.mouse[1]=e.invert(t.mouse[0]=o)),clearTimeout(t.wheel);else{if(e.k===r)return;t.mouse=[o,e.invert(o)],sr(this),t.start()}Sw(),t.wheel=setTimeout(u,150),t.zoom("mouse",i(y(p(e,r),t.mouse[0],t.mouse[1]),t.extent,c))}function u(){t.wheel=null,t.end()}}function _(){if(!e&&n.apply(this,arguments)){var t=v(this,arguments,!0),r=we(ue.view).on("mousemove.zoom",u,!0).on("mouseup.zoom",l,!0),a=Dn(this),o=ue.clientX,s=ue.clientY;Ce(ue.view),Cw(),t.mouse=[a,this.__zoom.invert(a)],sr(this),t.start()}function u(){if(Sw(),!t.moved){var e=ue.clientX-o,n=ue.clientY-s;t.moved=e*e+n*n>f}t.zoom("mouse",i(y(t.that.__zoom,t.mouse[0]=Dn(t.that),t.mouse[1]),t.extent,c))}function l(){r.on("mousemove.zoom mouseup.zoom",null),Se(ue.view,t.moved),Sw(),t.end()}}function k(){if(n.apply(this,arguments)){var t=this.__zoom,e=Dn(this),a=t.invert(e),o=t.k*(ue.shiftKey?.5:2),s=i(y(p(t,o),e,a),r.apply(this,arguments),c);Sw(),u>0?we(this).transition().duration(u).call(m,s,e):we(this).call(d.transform,s)}}function w(){if(n.apply(this,arguments)){var e,r,i,a,o=ue.touches,s=o.length,c=v(this,arguments,ue.changedTouches.length===s);for(Cw(),r=0;r<s;++r)i=o[r],a=[a=Bn(this,o,i.identifier),this.__zoom.invert(a),i.identifier],c.touch0?c.touch1||c.touch0[2]===a[2]||(c.touch1=a,c.taps=0):(c.touch0=a,e=!0,c.taps=1+!!t);t&&(t=clearTimeout(t)),e&&(c.taps<2&&(t=setTimeout((function(){t=null}),500)),sr(this),c.start())}}function T(){if(this.__zooming){var e,n,r,a,o=v(this,arguments),s=ue.changedTouches,u=s.length;for(Sw(),t&&(t=clearTimeout(t)),o.taps=0,e=0;e<u;++e)n=s[e],r=Bn(this,s,n.identifier),o.touch0&&o.touch0[2]===n.identifier?o.touch0[0]=r:o.touch1&&o.touch1[2]===n.identifier&&(o.touch1[0]=r);if(n=o.that.__zoom,o.touch1){var l=o.touch0[0],h=o.touch0[1],f=o.touch1[0],d=o.touch1[1],g=(g=f[0]-l[0])*g+(g=f[1]-l[1])*g,m=(m=d[0]-h[0])*m+(m=d[1]-h[1])*m;n=p(n,Math.sqrt(g/m)),r=[(l[0]+f[0])/2,(l[1]+f[1])/2],a=[(h[0]+d[0])/2,(h[1]+d[1])/2]}else{if(!o.touch0)return;r=o.touch0[0],a=o.touch0[1]}o.zoom("touch",i(y(n,r,a),o.extent,c))}}function E(){if(this.__zooming){var t,n,r=v(this,arguments),i=ue.changedTouches,a=i.length;for(Cw(),e&&clearTimeout(e),e=setTimeout((function(){e=null}),500),t=0;t<a;++t)n=i[t],r.touch0&&r.touch0[2]===n.identifier?delete r.touch0:r.touch1&&r.touch1[2]===n.identifier&&delete r.touch1;if(r.touch1&&!r.touch0&&(r.touch0=r.touch1,delete r.touch1),r.touch0)r.touch0[1]=this.__zoom.invert(r.touch0[0]);else if(r.end(),2===r.taps){var o=we(this).on("dblclick.zoom");o&&o.apply(this,arguments)}}}return d.transform=function(t,e,n){var r=t.selection?t.selection():t;r.property("__zoom",Ow),t!==r?m(t,e,n):r.interrupt().each((function(){v(this,arguments).start().zoom(null,"function"==typeof e?e.apply(this,arguments):e).end()}))},d.scaleBy=function(t,e,n){d.scaleTo(t,(function(){var t=this.__zoom.k,n="function"==typeof e?e.apply(this,arguments):e;return t*n}),n)},d.scaleTo=function(t,e,n){d.transform(t,(function(){var t=r.apply(this,arguments),a=this.__zoom,o=null==n?g(t):"function"==typeof n?n.apply(this,arguments):n,s=a.invert(o),u="function"==typeof e?e.apply(this,arguments):e;return i(y(p(a,u),o,s),t,c)}),n)},d.translateBy=function(t,e,n){d.transform(t,(function(){return i(this.__zoom.translate("function"==typeof e?e.apply(this,arguments):e,"function"==typeof n?n.apply(this,arguments):n),r.apply(this,arguments),c)}))},d.translateTo=function(t,e,n,a){d.transform(t,(function(){var t=r.apply(this,arguments),o=this.__zoom,s=null==a?g(t):"function"==typeof a?a.apply(this,arguments):a;return i(Tw.translate(s[0],s[1]).scale(o.k).translate("function"==typeof e?-e.apply(this,arguments):-e,"function"==typeof n?-n.apply(this,arguments):-n),t,c)}),a)},b.prototype={start:function(){return 1==++this.active&&(this.that.__zooming=this,this.emit("start")),this},zoom:function(t,e){return this.mouse&&"mouse"!==t&&(this.mouse[1]=e.invert(this.mouse[0])),this.touch0&&"touch"!==t&&(this.touch0[1]=e.invert(this.touch0[0])),this.touch1&&"touch"!==t&&(this.touch1[1]=e.invert(this.touch1[0])),this.that.__zoom=e,this.emit("zoom"),this},end:function(){return 0==--this.active&&(delete this.that.__zooming,this.emit("end")),this},emit:function(t){ye(new kw(d,t,this.that.__zoom),h.apply,h,[t,this.that,this.args])}},d.wheelDelta=function(t){return arguments.length?(a="function"==typeof t?t:_w(+t),d):a},d.filter=function(t){return arguments.length?(n="function"==typeof t?t:_w(!!t),d):n},d.touchable=function(t){return arguments.length?(o="function"==typeof t?t:_w(!!t),d):o},d.extent=function(t){return arguments.length?(r="function"==typeof t?t:_w([[+t[0][0],+t[0][1]],[+t[1][0],+t[1][1]]]),d):r},d.scaleExtent=function(t){return arguments.length?(s[0]=+t[0],s[1]=+t[1],d):[s[0],s[1]]},d.translateExtent=function(t){return arguments.length?(c[0][0]=+t[0][0],c[1][0]=+t[1][0],c[0][1]=+t[0][1],c[1][1]=+t[1][1],d):[[c[0][0],c[0][1]],[c[1][0],c[1][1]]]},d.constrain=function(t){return arguments.length?(i=t,d):i},d.duration=function(t){return arguments.length?(u=+t,d):u},d.interpolate=function(t){return arguments.length?(l=t,d):l},d.on=function(){var t=h.on.apply(h,arguments);return t===h?d:t},d.clickDistance=function(t){return arguments.length?(f=(t=+t)*t,d):Math.sqrt(f)},d}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0}),function(t){for(var n in t)e.hasOwnProperty(n)||(e[n]=t[n])}(n(171))},function(t,e,n){(function(t,r){var i=function(){var t=function(t,e,n,r){for(n=n||{},r=t.length;r--;n[t[r]]=e);return n},e=[1,2],n=[1,3],r=[1,5],i=[1,7],a=[2,5],o=[1,15],s=[1,17],c=[1,18],u=[1,19],l=[1,21],h=[1,22],f=[1,23],d=[1,25],p=[1,26],y=[1,27],g=[1,28],m=[1,29],v=[1,30],b=[1,33],x=[1,34],_=[1,37],k=[1,4,5,16,20,22,23,24,26,28,29,30,31,32,34,36,37,38,49,59],w=[1,46],T=[4,5,16,20,22,23,24,26,28,29,30,31,32,34,38,49,59],E=[4,5,16,20,22,23,24,26,28,29,30,31,32,34,37,38,49,59],C=[4,5,16,20,22,23,24,26,28,29,30,31,32,34,36,38,49,59],S=[47,48,49],A=[1,4,5,7,16,20,22,23,24,26,28,29,30,31,32,34,36,37,38,49,59],M={trace:function(){},yy:{},symbols_:{error:2,start:3,SPACE:4,NEWLINE:5,directive:6,SD:7,document:8,line:9,statement:10,openDirective:11,typeDirective:12,closeDirective:13,":":14,argDirective:15,participant:16,actor:17,AS:18,restOfLine:19,participant_actor:20,signal:21,autonumber:22,activate:23,deactivate:24,note_statement:25,title:26,text2:27,loop:28,end:29,rect:30,opt:31,alt:32,else_sections:33,par:34,par_sections:35,and:36,else:37,note:38,placement:39,over:40,actor_pair:41,spaceList:42,",":43,left_of:44,right_of:45,signaltype:46,"+":47,"-":48,ACTOR:49,SOLID_OPEN_ARROW:50,DOTTED_OPEN_ARROW:51,SOLID_ARROW:52,DOTTED_ARROW:53,SOLID_CROSS:54,DOTTED_CROSS:55,SOLID_POINT:56,DOTTED_POINT:57,TXT:58,open_directive:59,type_directive:60,arg_directive:61,close_directive:62,$accept:0,$end:1},terminals_:{2:"error",4:"SPACE",5:"NEWLINE",7:"SD",14:":",16:"participant",18:"AS",19:"restOfLine",20:"participant_actor",22:"autonumber",23:"activate",24:"deactivate",26:"title",28:"loop",29:"end",30:"rect",31:"opt",32:"alt",34:"par",36:"and",37:"else",38:"note",40:"over",43:",",44:"left_of",45:"right_of",47:"+",48:"-",49:"ACTOR",50:"SOLID_OPEN_ARROW",51:"DOTTED_OPEN_ARROW",52:"SOLID_ARROW",53:"DOTTED_ARROW",54:"SOLID_CROSS",55:"DOTTED_CROSS",56:"SOLID_POINT",57:"DOTTED_POINT",58:"TXT",59:"open_directive",60:"type_directive",61:"arg_directive",62:"close_directive"},productions_:[0,[3,2],[3,2],[3,2],[3,2],[8,0],[8,2],[9,2],[9,1],[9,1],[6,4],[6,6],[10,5],[10,3],[10,5],[10,3],[10,2],[10,1],[10,3],[10,3],[10,2],[10,3],[10,4],[10,4],[10,4],[10,4],[10,4],[10,1],[35,1],[35,4],[33,1],[33,4],[25,4],[25,4],[42,2],[42,1],[41,3],[41,1],[39,1],[39,1],[21,5],[21,5],[21,4],[17,1],[46,1],[46,1],[46,1],[46,1],[46,1],[46,1],[46,1],[46,1],[27,1],[11,1],[12,1],[15,1],[13,1]],performAction:function(t,e,n,r,i,a,o){var s=a.length-1;switch(i){case 4:return r.apply(a[s]),a[s];case 5:this.$=[];break;case 6:a[s-1].push(a[s]),this.$=a[s-1];break;case 7:case 8:this.$=a[s];break;case 9:this.$=[];break;case 12:a[s-3].type="addParticipant",a[s-3].description=r.parseMessage(a[s-1]),this.$=a[s-3];break;case 13:a[s-1].type="addParticipant",this.$=a[s-1];break;case 14:a[s-3].type="addActor",a[s-3].description=r.parseMessage(a[s-1]),this.$=a[s-3];break;case 15:a[s-1].type="addActor",this.$=a[s-1];break;case 17:r.enableSequenceNumbers();break;case 18:this.$={type:"activeStart",signalType:r.LINETYPE.ACTIVE_START,actor:a[s-1]};break;case 19:this.$={type:"activeEnd",signalType:r.LINETYPE.ACTIVE_END,actor:a[s-1]};break;case 21:this.$=[{type:"setTitle",text:a[s-1]}];break;case 22:a[s-1].unshift({type:"loopStart",loopText:r.parseMessage(a[s-2]),signalType:r.LINETYPE.LOOP_START}),a[s-1].push({type:"loopEnd",loopText:a[s-2],signalType:r.LINETYPE.LOOP_END}),this.$=a[s-1];break;case 23:a[s-1].unshift({type:"rectStart",color:r.parseMessage(a[s-2]),signalType:r.LINETYPE.RECT_START}),a[s-1].push({type:"rectEnd",color:r.parseMessage(a[s-2]),signalType:r.LINETYPE.RECT_END}),this.$=a[s-1];break;case 24:a[s-1].unshift({type:"optStart",optText:r.parseMessage(a[s-2]),signalType:r.LINETYPE.OPT_START}),a[s-1].push({type:"optEnd",optText:r.parseMessage(a[s-2]),signalType:r.LINETYPE.OPT_END}),this.$=a[s-1];break;case 25:a[s-1].unshift({type:"altStart",altText:r.parseMessage(a[s-2]),signalType:r.LINETYPE.ALT_START}),a[s-1].push({type:"altEnd",signalType:r.LINETYPE.ALT_END}),this.$=a[s-1];break;case 26:a[s-1].unshift({type:"parStart",parText:r.parseMessage(a[s-2]),signalType:r.LINETYPE.PAR_START}),a[s-1].push({type:"parEnd",signalType:r.LINETYPE.PAR_END}),this.$=a[s-1];break;case 29:this.$=a[s-3].concat([{type:"and",parText:r.parseMessage(a[s-1]),signalType:r.LINETYPE.PAR_AND},a[s]]);break;case 31:this.$=a[s-3].concat([{type:"else",altText:r.parseMessage(a[s-1]),signalType:r.LINETYPE.ALT_ELSE},a[s]]);break;case 32:this.$=[a[s-1],{type:"addNote",placement:a[s-2],actor:a[s-1].actor,text:a[s]}];break;case 33:a[s-2]=[].concat(a[s-1],a[s-1]).slice(0,2),a[s-2][0]=a[s-2][0].actor,a[s-2][1]=a[s-2][1].actor,this.$=[a[s-1],{type:"addNote",placement:r.PLACEMENT.OVER,actor:a[s-2].slice(0,2),text:a[s]}];break;case 36:this.$=[a[s-2],a[s]];break;case 37:this.$=a[s];break;case 38:this.$=r.PLACEMENT.LEFTOF;break;case 39:this.$=r.PLACEMENT.RIGHTOF;break;case 40:this.$=[a[s-4],a[s-1],{type:"addMessage",from:a[s-4].actor,to:a[s-1].actor,signalType:a[s-3],msg:a[s]},{type:"activeStart",signalType:r.LINETYPE.ACTIVE_START,actor:a[s-1]}];break;case 41:this.$=[a[s-4],a[s-1],{type:"addMessage",from:a[s-4].actor,to:a[s-1].actor,signalType:a[s-3],msg:a[s]},{type:"activeEnd",signalType:r.LINETYPE.ACTIVE_END,actor:a[s-4]}];break;case 42:this.$=[a[s-3],a[s-1],{type:"addMessage",from:a[s-3].actor,to:a[s-1].actor,signalType:a[s-2],msg:a[s]}];break;case 43:this.$={type:"addParticipant",actor:a[s]};break;case 44:this.$=r.LINETYPE.SOLID_OPEN;break;case 45:this.$=r.LINETYPE.DOTTED_OPEN;break;case 46:this.$=r.LINETYPE.SOLID;break;case 47:this.$=r.LINETYPE.DOTTED;break;case 48:this.$=r.LINETYPE.SOLID_CROSS;break;case 49:this.$=r.LINETYPE.DOTTED_CROSS;break;case 50:this.$=r.LINETYPE.SOLID_POINT;break;case 51:this.$=r.LINETYPE.DOTTED_POINT;break;case 52:this.$=r.parseMessage(a[s].trim().substring(1));break;case 53:r.parseDirective("%%{","open_directive");break;case 54:r.parseDirective(a[s],"type_directive");break;case 55:a[s]=a[s].trim().replace(/'/g,'"'),r.parseDirective(a[s],"arg_directive");break;case 56:r.parseDirective("}%%","close_directive","sequence")}},table:[{3:1,4:e,5:n,6:4,7:r,11:6,59:i},{1:[3]},{3:8,4:e,5:n,6:4,7:r,11:6,59:i},{3:9,4:e,5:n,6:4,7:r,11:6,59:i},{3:10,4:e,5:n,6:4,7:r,11:6,59:i},t([1,4,5,16,20,22,23,24,26,28,30,31,32,34,38,49,59],a,{8:11}),{12:12,60:[1,13]},{60:[2,53]},{1:[2,1]},{1:[2,2]},{1:[2,3]},{1:[2,4],4:o,5:s,6:31,9:14,10:16,11:6,16:c,17:32,20:u,21:20,22:l,23:h,24:f,25:24,26:d,28:p,30:y,31:g,32:m,34:v,38:b,49:x,59:i},{13:35,14:[1,36],62:_},t([14,62],[2,54]),t(k,[2,6]),{6:31,10:38,11:6,16:c,17:32,20:u,21:20,22:l,23:h,24:f,25:24,26:d,28:p,30:y,31:g,32:m,34:v,38:b,49:x,59:i},t(k,[2,8]),t(k,[2,9]),{17:39,49:x},{17:40,49:x},{5:[1,41]},t(k,[2,17]),{17:42,49:x},{17:43,49:x},{5:[1,44]},{27:45,58:w},{19:[1,47]},{19:[1,48]},{19:[1,49]},{19:[1,50]},{19:[1,51]},t(k,[2,27]),{46:52,50:[1,53],51:[1,54],52:[1,55],53:[1,56],54:[1,57],55:[1,58],56:[1,59],57:[1,60]},{39:61,40:[1,62],44:[1,63],45:[1,64]},t([5,18,43,50,51,52,53,54,55,56,57,58],[2,43]),{5:[1,65]},{15:66,61:[1,67]},{5:[2,56]},t(k,[2,7]),{5:[1,69],18:[1,68]},{5:[1,71],18:[1,70]},t(k,[2,16]),{5:[1,72]},{5:[1,73]},t(k,[2,20]),{5:[1,74]},{5:[2,52]},t(T,a,{8:75}),t(T,a,{8:76}),t(T,a,{8:77}),t(E,a,{33:78,8:79}),t(C,a,{35:80,8:81}),{17:84,47:[1,82],48:[1,83],49:x},t(S,[2,44]),t(S,[2,45]),t(S,[2,46]),t(S,[2,47]),t(S,[2,48]),t(S,[2,49]),t(S,[2,50]),t(S,[2,51]),{17:85,49:x},{17:87,41:86,49:x},{49:[2,38]},{49:[2,39]},t(A,[2,10]),{13:88,62:_},{62:[2,55]},{19:[1,89]},t(k,[2,13]),{19:[1,90]},t(k,[2,15]),t(k,[2,18]),t(k,[2,19]),t(k,[2,21]),{4:o,5:s,6:31,9:14,10:16,11:6,16:c,17:32,20:u,21:20,22:l,23:h,24:f,25:24,26:d,28:p,29:[1,91],30:y,31:g,32:m,34:v,38:b,49:x,59:i},{4:o,5:s,6:31,9:14,10:16,11:6,16:c,17:32,20:u,21:20,22:l,23:h,24:f,25:24,26:d,28:p,29:[1,92],30:y,31:g,32:m,34:v,38:b,49:x,59:i},{4:o,5:s,6:31,9:14,10:16,11:6,16:c,17:32,20:u,21:20,22:l,23:h,24:f,25:24,26:d,28:p,29:[1,93],30:y,31:g,32:m,34:v,38:b,49:x,59:i},{29:[1,94]},{4:o,5:s,6:31,9:14,10:16,11:6,16:c,17:32,20:u,21:20,22:l,23:h,24:f,25:24,26:d,28:p,29:[2,30],30:y,31:g,32:m,34:v,37:[1,95],38:b,49:x,59:i},{29:[1,96]},{4:o,5:s,6:31,9:14,10:16,11:6,16:c,17:32,20:u,21:20,22:l,23:h,24:f,25:24,26:d,28:p,29:[2,28],30:y,31:g,32:m,34:v,36:[1,97],38:b,49:x,59:i},{17:98,49:x},{17:99,49:x},{27:100,58:w},{27:101,58:w},{27:102,58:w},{43:[1,103],58:[2,37]},{5:[1,104]},{5:[1,105]},{5:[1,106]},t(k,[2,22]),t(k,[2,23]),t(k,[2,24]),t(k,[2,25]),{19:[1,107]},t(k,[2,26]),{19:[1,108]},{27:109,58:w},{27:110,58:w},{5:[2,42]},{5:[2,32]},{5:[2,33]},{17:111,49:x},t(A,[2,11]),t(k,[2,12]),t(k,[2,14]),t(E,a,{8:79,33:112}),t(C,a,{8:81,35:113}),{5:[2,40]},{5:[2,41]},{58:[2,36]},{29:[2,31]},{29:[2,29]}],defaultActions:{7:[2,53],8:[2,1],9:[2,2],10:[2,3],37:[2,56],46:[2,52],63:[2,38],64:[2,39],67:[2,55],100:[2,42],101:[2,32],102:[2,33],109:[2,40],110:[2,41],111:[2,36],112:[2,31],113:[2,29]},parseError:function(t,e){if(!e.recoverable){var n=new Error(t);throw n.hash=e,n}this.trace(t)},parse:function(t){var e=this,n=[0],r=[],i=[null],a=[],o=this.table,s="",c=0,u=0,l=0,h=2,f=1,d=a.slice.call(arguments,1),p=Object.create(this.lexer),y={yy:{}};for(var g in this.yy)Object.prototype.hasOwnProperty.call(this.yy,g)&&(y.yy[g]=this.yy[g]);p.setInput(t,y.yy),y.yy.lexer=p,y.yy.parser=this,void 0===p.yylloc&&(p.yylloc={});var m=p.yylloc;a.push(m);var v=p.options&&p.options.ranges;function b(){var t;return"number"!=typeof(t=r.pop()||p.lex()||f)&&(t instanceof Array&&(t=(r=t).pop()),t=e.symbols_[t]||t),t}"function"==typeof y.yy.parseError?this.parseError=y.yy.parseError:this.parseError=Object.getPrototypeOf(this).parseError;for(var x,_,k,w,T,E,C,S,A,M={};;){if(k=n[n.length-1],this.defaultActions[k]?w=this.defaultActions[k]:(null==x&&(x=b()),w=o[k]&&o[k][x]),void 0===w||!w.length||!w[0]){var O="";for(E in A=[],o[k])this.terminals_[E]&&E>h&&A.push("'"+this.terminals_[E]+"'");O=p.showPosition?"Parse error on line "+(c+1)+":\n"+p.showPosition()+"\nExpecting "+A.join(", ")+", got '"+(this.terminals_[x]||x)+"'":"Parse error on line "+(c+1)+": Unexpected "+(x==f?"end of input":"'"+(this.terminals_[x]||x)+"'"),this.parseError(O,{text:p.match,token:this.terminals_[x]||x,line:p.yylineno,loc:m,expected:A})}if(w[0]instanceof Array&&w.length>1)throw new Error("Parse Error: multiple actions possible at state: "+k+", token: "+x);switch(w[0]){case 1:n.push(x),i.push(p.yytext),a.push(p.yylloc),n.push(w[1]),x=null,_?(x=_,_=null):(u=p.yyleng,s=p.yytext,c=p.yylineno,m=p.yylloc,l>0&&l--);break;case 2:if(C=this.productions_[w[1]][1],M.$=i[i.length-C],M._$={first_line:a[a.length-(C||1)].first_line,last_line:a[a.length-1].last_line,first_column:a[a.length-(C||1)].first_column,last_column:a[a.length-1].last_column},v&&(M._$.range=[a[a.length-(C||1)].range[0],a[a.length-1].range[1]]),void 0!==(T=this.performAction.apply(M,[s,u,c,y.yy,w[1],i,a].concat(d))))return T;C&&(n=n.slice(0,-1*C*2),i=i.slice(0,-1*C),a=a.slice(0,-1*C)),n.push(this.productions_[w[1]][0]),i.push(M.$),a.push(M._$),S=o[n[n.length-2]][n[n.length-1]],n.push(S);break;case 3:return!0}}return!0}},O={EOF:1,parseError:function(t,e){if(!this.yy.parser)throw new Error(t);this.yy.parser.parseError(t,e)},setInput:function(t,e){return this.yy=e||this.yy||{},this._input=t,this._more=this._backtrack=this.done=!1,this.yylineno=this.yyleng=0,this.yytext=this.matched=this.match="",this.conditionStack=["INITIAL"],this.yylloc={first_line:1,first_column:0,last_line:1,last_column:0},this.options.ranges&&(this.yylloc.range=[0,0]),this.offset=0,this},input:function(){var t=this._input[0];return this.yytext+=t,this.yyleng++,this.offset++,this.match+=t,this.matched+=t,t.match(/(?:\r\n?|\n).*/g)?(this.yylineno++,this.yylloc.last_line++):this.yylloc.last_column++,this.options.ranges&&this.yylloc.range[1]++,this._input=this._input.slice(1),t},unput:function(t){var e=t.length,n=t.split(/(?:\r\n?|\n)/g);this._input=t+this._input,this.yytext=this.yytext.substr(0,this.yytext.length-e),this.offset-=e;var r=this.match.split(/(?:\r\n?|\n)/g);this.match=this.match.substr(0,this.match.length-1),this.matched=this.matched.substr(0,this.matched.length-1),n.length-1&&(this.yylineno-=n.length-1);var i=this.yylloc.range;return this.yylloc={first_line:this.yylloc.first_line,last_line:this.yylineno+1,first_column:this.yylloc.first_column,last_column:n?(n.length===r.length?this.yylloc.first_column:0)+r[r.length-n.length].length-n[0].length:this.yylloc.first_column-e},this.options.ranges&&(this.yylloc.range=[i[0],i[0]+this.yyleng-e]),this.yyleng=this.yytext.length,this},more:function(){return this._more=!0,this},reject:function(){return this.options.backtrack_lexer?(this._backtrack=!0,this):this.parseError("Lexical error on line "+(this.yylineno+1)+". You can only invoke reject() in the lexer when the lexer is of the backtracking persuasion (options.backtrack_lexer = true).\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},less:function(t){this.unput(this.match.slice(t))},pastInput:function(){var t=this.matched.substr(0,this.matched.length-this.match.length);return(t.length>20?"...":"")+t.substr(-20).replace(/\n/g,"")},upcomingInput:function(){var t=this.match;return t.length<20&&(t+=this._input.substr(0,20-t.length)),(t.substr(0,20)+(t.length>20?"...":"")).replace(/\n/g,"")},showPosition:function(){var t=this.pastInput(),e=new Array(t.length+1).join("-");return t+this.upcomingInput()+"\n"+e+"^"},test_match:function(t,e){var n,r,i;if(this.options.backtrack_lexer&&(i={yylineno:this.yylineno,yylloc:{first_line:this.yylloc.first_line,last_line:this.last_line,first_column:this.yylloc.first_column,last_column:this.yylloc.last_column},yytext:this.yytext,match:this.match,matches:this.matches,matched:this.matched,yyleng:this.yyleng,offset:this.offset,_more:this._more,_input:this._input,yy:this.yy,conditionStack:this.conditionStack.slice(0),done:this.done},this.options.ranges&&(i.yylloc.range=this.yylloc.range.slice(0))),(r=t[0].match(/(?:\r\n?|\n).*/g))&&(this.yylineno+=r.length),this.yylloc={first_line:this.yylloc.last_line,last_line:this.yylineno+1,first_column:this.yylloc.last_column,last_column:r?r[r.length-1].length-r[r.length-1].match(/\r?\n?/)[0].length:this.yylloc.last_column+t[0].length},this.yytext+=t[0],this.match+=t[0],this.matches=t,this.yyleng=this.yytext.length,this.options.ranges&&(this.yylloc.range=[this.offset,this.offset+=this.yyleng]),this._more=!1,this._backtrack=!1,this._input=this._input.slice(t[0].length),this.matched+=t[0],n=this.performAction.call(this,this.yy,this,e,this.conditionStack[this.conditionStack.length-1]),this.done&&this._input&&(this.done=!1),n)return n;if(this._backtrack){for(var a in i)this[a]=i[a];return!1}return!1},next:function(){if(this.done)return this.EOF;var t,e,n,r;this._input||(this.done=!0),this._more||(this.yytext="",this.match="");for(var i=this._currentRules(),a=0;a<i.length;a++)if((n=this._input.match(this.rules[i[a]]))&&(!e||n[0].length>e[0].length)){if(e=n,r=a,this.options.backtrack_lexer){if(!1!==(t=this.test_match(n,i[a])))return t;if(this._backtrack){e=!1;continue}return!1}if(!this.options.flex)break}return e?!1!==(t=this.test_match(e,i[r]))&&t:""===this._input?this.EOF:this.parseError("Lexical error on line "+(this.yylineno+1)+". Unrecognized text.\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},lex:function(){var t=this.next();return t||this.lex()},begin:function(t){this.conditionStack.push(t)},popState:function(){return this.conditionStack.length-1>0?this.conditionStack.pop():this.conditionStack[0]},_currentRules:function(){return this.conditionStack.length&&this.conditionStack[this.conditionStack.length-1]?this.conditions[this.conditionStack[this.conditionStack.length-1]].rules:this.conditions.INITIAL.rules},topState:function(t){return(t=this.conditionStack.length-1-Math.abs(t||0))>=0?this.conditionStack[t]:"INITIAL"},pushState:function(t){this.begin(t)},stateStackSize:function(){return this.conditionStack.length},options:{"case-insensitive":!0},performAction:function(t,e,n,r){switch(n){case 0:return this.begin("open_directive"),59;case 1:return this.begin("type_directive"),60;case 2:return this.popState(),this.begin("arg_directive"),14;case 3:return this.popState(),this.popState(),62;case 4:return 61;case 5:return 5;case 6:case 7:case 8:case 9:case 10:break;case 11:return this.begin("ID"),16;case 12:return this.begin("ID"),20;case 13:return e.yytext=e.yytext.trim(),this.begin("ALIAS"),49;case 14:return this.popState(),this.popState(),this.begin("LINE"),18;case 15:return this.popState(),this.popState(),5;case 16:return this.begin("LINE"),28;case 17:return this.begin("LINE"),30;case 18:return this.begin("LINE"),31;case 19:return this.begin("LINE"),32;case 20:return this.begin("LINE"),37;case 21:return this.begin("LINE"),34;case 22:return this.begin("LINE"),36;case 23:return this.popState(),19;case 24:return 29;case 25:return 44;case 26:return 45;case 27:return 40;case 28:return 38;case 29:return this.begin("ID"),23;case 30:return this.begin("ID"),24;case 31:return 26;case 32:return 7;case 33:return 22;case 34:return 43;case 35:return 5;case 36:return e.yytext=e.yytext.trim(),49;case 37:return 52;case 38:return 53;case 39:return 50;case 40:return 51;case 41:return 54;case 42:return 55;case 43:return 56;case 44:return 57;case 45:return 58;case 46:return 47;case 47:return 48;case 48:return 5;case 49:return"INVALID"}},rules:[/^(?:%%\{)/i,/^(?:((?:(?!\}%%)[^:.])*))/i,/^(?::)/i,/^(?:\}%%)/i,/^(?:((?:(?!\}%%).|\n)*))/i,/^(?:[\n]+)/i,/^(?:\s+)/i,/^(?:((?!\n)\s)+)/i,/^(?:#[^\n]*)/i,/^(?:%(?!\{)[^\n]*)/i,/^(?:[^\}]%%[^\n]*)/i,/^(?:participant\b)/i,/^(?:actor\b)/i,/^(?:[^\->:\n,;]+?(?=((?!\n)\s)+as(?!\n)\s|[#\n;]|$))/i,/^(?:as\b)/i,/^(?:(?:))/i,/^(?:loop\b)/i,/^(?:rect\b)/i,/^(?:opt\b)/i,/^(?:alt\b)/i,/^(?:else\b)/i,/^(?:par\b)/i,/^(?:and\b)/i,/^(?:(?:[:]?(?:no)?wrap)?[^#\n;]*)/i,/^(?:end\b)/i,/^(?:left of\b)/i,/^(?:right of\b)/i,/^(?:over\b)/i,/^(?:note\b)/i,/^(?:activate\b)/i,/^(?:deactivate\b)/i,/^(?:title\b)/i,/^(?:sequenceDiagram\b)/i,/^(?:autonumber\b)/i,/^(?:,)/i,/^(?:;)/i,/^(?:[^\+\->:\n,;]+((?!(-x|--x|-\)|--\)))[\-]*[^\+\->:\n,;]+)*)/i,/^(?:->>)/i,/^(?:-->>)/i,/^(?:->)/i,/^(?:-->)/i,/^(?:-[x])/i,/^(?:--[x])/i,/^(?:-[\)])/i,/^(?:--[\)])/i,/^(?::(?:(?:no)?wrap)?[^#\n;]+)/i,/^(?:\+)/i,/^(?:-)/i,/^(?:$)/i,/^(?:.)/i],conditions:{open_directive:{rules:[1,8],inclusive:!1},type_directive:{rules:[2,3,8],inclusive:!1},arg_directive:{rules:[3,4,8],inclusive:!1},ID:{rules:[7,8,13],inclusive:!1},ALIAS:{rules:[7,8,14,15],inclusive:!1},LINE:{rules:[7,8,23],inclusive:!1},INITIAL:{rules:[0,5,6,8,9,10,11,12,16,17,18,19,20,21,22,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49],inclusive:!0}}};function N(){this.yy={}}return M.lexer=O,N.prototype=M,M.Parser=N,new N}();e.parser=i,e.Parser=i.Parser,e.parse=function(){return i.parse.apply(i,arguments)},e.main=function(r){r[1]||(console.log("Usage: "+r[0]+" FILE"),t.exit(1));var i=n(17).readFileSync(n(18).normalize(r[1]),"utf8");return e.parser.parse(i)},n.c[n.s]===r&&e.main(t.argv.slice(1))}).call(this,n(12),n(7)(t))},function(t,e,n){var r=n(203);t.exports={Graph:r.Graph,json:n(306),alg:n(307),version:r.version}},function(t,e,n){var r;try{r={cloneDeep:n(318),constant:n(88),defaults:n(154),each:n(89),filter:n(128),find:n(319),flatten:n(156),forEach:n(126),forIn:n(326),has:n(94),isUndefined:n(139),last:n(327),map:n(140),mapValues:n(328),max:n(329),merge:n(331),min:n(336),minBy:n(337),now:n(338),pick:n(161),range:n(162),reduce:n(142),sortBy:n(345),uniqueId:n(163),values:n(147),zipObject:n(350)}}catch(t){}r||(r=window._),t.exports=r},function(t,e){var n=Array.isArray;t.exports=n},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(99),i=n(178),a=n(179),o=n(180),s={format:{keyword:i.default,hex:r.default,rgb:a.default,rgba:a.default,hsl:o.default,hsla:o.default},parse:function(t){if("string"!=typeof t)return t;var e=r.default.parse(t)||a.default.parse(t)||o.default.parse(t)||i.default.parse(t);if(e)return e;throw new Error('Unsupported color format: "'+t+'"')},stringify:function(t){return!t.changed&&t.color?t.color:t.type.is(2)||void 0===t.data.r?o.default.stringify(t):t.a<1||!Number.isInteger(t.r)||!Number.isInteger(t.g)||!Number.isInteger(t.b)?a.default.stringify(t):r.default.stringify(t)}};e.default=s},function(t,e){t.exports=function(t){return t.webpackPolyfill||(t.deprecate=function(){},t.paths=[],t.children||(t.children=[]),Object.defineProperty(t,"loaded",{enumerable:!0,get:function(){return t.l}}),Object.defineProperty(t,"id",{enumerable:!0,get:function(){return t.i}}),t.webpackPolyfill=1),t}},function(t,e,n){
 /**
  * @license
  * Copyright (c) 2012-2013 Chris Pettitt
@@ -21,14 +21,14 @@
  * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
  * THE SOFTWARE.
  */
-t.exports={graphlib:n(316),dagre:n(153),intersect:n(375),render:n(377),util:n(15),version:n(389)}},function(t,e,n){"use strict";var r=n(4),i=n(20).Graph;function a(t,e,n,i){var a;do{a=r.uniqueId(i)}while(t.hasNode(a));return n.dummy=e,t.setNode(a,n),a}function o(t){return r.max(r.map(t.nodes(),(function(e){var n=t.node(e).rank;if(!r.isUndefined(n))return n})))}t.exports={addDummyNode:a,simplify:function(t){var e=(new i).setGraph(t.graph());return r.forEach(t.nodes(),(function(n){e.setNode(n,t.node(n))})),r.forEach(t.edges(),(function(n){var r=e.edge(n.v,n.w)||{weight:0,minlen:1},i=t.edge(n);e.setEdge(n.v,n.w,{weight:r.weight+i.weight,minlen:Math.max(r.minlen,i.minlen)})})),e},asNonCompoundGraph:function(t){var e=new i({multigraph:t.isMultigraph()}).setGraph(t.graph());return r.forEach(t.nodes(),(function(n){t.children(n).length||e.setNode(n,t.node(n))})),r.forEach(t.edges(),(function(n){e.setEdge(n,t.edge(n))})),e},successorWeights:function(t){var e=r.map(t.nodes(),(function(e){var n={};return r.forEach(t.outEdges(e),(function(e){n[e.w]=(n[e.w]||0)+t.edge(e).weight})),n}));return r.zipObject(t.nodes(),e)},predecessorWeights:function(t){var e=r.map(t.nodes(),(function(e){var n={};return r.forEach(t.inEdges(e),(function(e){n[e.v]=(n[e.v]||0)+t.edge(e).weight})),n}));return r.zipObject(t.nodes(),e)},intersectRect:function(t,e){var n,r,i=t.x,a=t.y,o=e.x-i,s=e.y-a,c=t.width/2,u=t.height/2;if(!o&&!s)throw new Error("Not possible to find intersection inside of the rectangle");Math.abs(s)*c>Math.abs(o)*u?(s<0&&(u=-u),n=u*o/s,r=u):(o<0&&(c=-c),n=c,r=c*s/o);return{x:i+n,y:a+r}},buildLayerMatrix:function(t){var e=r.map(r.range(o(t)+1),(function(){return[]}));return r.forEach(t.nodes(),(function(n){var i=t.node(n),a=i.rank;r.isUndefined(a)||(e[a][i.order]=n)})),e},normalizeRanks:function(t){var e=r.min(r.map(t.nodes(),(function(e){return t.node(e).rank})));r.forEach(t.nodes(),(function(n){var i=t.node(n);r.has(i,"rank")&&(i.rank-=e)}))},removeEmptyRanks:function(t){var e=r.min(r.map(t.nodes(),(function(e){return t.node(e).rank}))),n=[];r.forEach(t.nodes(),(function(r){var i=t.node(r).rank-e;n[i]||(n[i]=[]),n[i].push(r)}));var i=0,a=t.graph().nodeRankFactor;r.forEach(n,(function(e,n){r.isUndefined(e)&&n%a!=0?--i:i&&r.forEach(e,(function(e){t.node(e).rank+=i}))}))},addBorderNode:function(t,e,n,r){var i={width:0,height:0};arguments.length>=4&&(i.rank=n,i.order=r);return a(t,"border",i,e)},maxRank:o,partition:function(t,e){var n={lhs:[],rhs:[]};return r.forEach(t,(function(t){e(t)?n.lhs.push(t):n.rhs.push(t)})),n},time:function(t,e){var n=r.now();try{return e()}finally{console.log(t+" time: "+(r.now()-n)+"ms")}},notime:function(t,e){return e()}}},function(t,e,n){t.exports={graphlib:n(20),layout:n(317),debug:n(373),util:{time:n(9).time,notime:n(9).notime},version:n(374)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(172),i=n(173),a=n(174),o={channel:r.default,lang:i.default,unit:a.default};e.default=o},function(t,e){var n,r,i=t.exports={};function a(){throw new Error("setTimeout has not been defined")}function o(){throw new Error("clearTimeout has not been defined")}function s(t){if(n===setTimeout)return setTimeout(t,0);if((n===a||!n)&&setTimeout)return n=setTimeout,setTimeout(t,0);try{return n(t,0)}catch(e){try{return n.call(null,t,0)}catch(e){return n.call(this,t,0)}}}!function(){try{n="function"==typeof setTimeout?setTimeout:a}catch(t){n=a}try{r="function"==typeof clearTimeout?clearTimeout:o}catch(t){r=o}}();var c,u=[],l=!1,h=-1;function f(){l&&c&&(l=!1,c.length?u=c.concat(u):h=-1,u.length&&d())}function d(){if(!l){var t=s(f);l=!0;for(var e=u.length;e;){for(c=u,u=[];++h<e;)c&&c[h].run();h=-1,e=u.length}c=null,l=!1,function(t){if(r===clearTimeout)return clearTimeout(t);if((r===o||!r)&&clearTimeout)return r=clearTimeout,clearTimeout(t);try{r(t)}catch(e){try{return r.call(null,t)}catch(e){return r.call(this,t)}}}(t)}}function p(t,e){this.fun=t,this.array=e}function y(){}i.nextTick=function(t){var e=new Array(arguments.length-1);if(arguments.length>1)for(var n=1;n<arguments.length;n++)e[n-1]=arguments[n];u.push(new p(t,e)),1!==u.length||l||s(d)},p.prototype.run=function(){this.fun.apply(null,this.array)},i.title="browser",i.browser=!0,i.env={},i.argv=[],i.version="",i.versions={},i.on=y,i.addListener=y,i.once=y,i.off=y,i.removeListener=y,i.removeAllListeners=y,i.emit=y,i.prependListener=y,i.prependOnceListener=y,i.listeners=function(t){return[]},i.binding=function(t){throw new Error("process.binding is not supported")},i.cwd=function(){return"/"},i.chdir=function(t){throw new Error("process.chdir is not supported")},i.umask=function(){return 0}},function(t,e,n){var r;try{r={clone:n(204),constant:n(88),each:n(89),filter:n(128),has:n(94),isArray:n(5),isEmpty:n(281),isFunction:n(39),isUndefined:n(139),keys:n(30),map:n(140),reduce:n(142),size:n(284),transform:n(290),union:n(291),values:n(147)}}catch(t){}r||(r=window._),t.exports=r},function(t,e){t.exports=function(t){var e=typeof t;return null!=t&&("object"==e||"function"==e)}},function(t,e,n){var r=n(44);t.exports={isSubgraph:function(t,e){return!!t.children(e).length},edgeToId:function(t){return a(t.v)+":"+a(t.w)+":"+a(t.name)},applyStyle:function(t,e){e&&t.attr("style",e)},applyClass:function(t,e,n){e&&t.attr("class",e).attr("class",n+" "+t.attr("class"))},applyTransition:function(t,e){var n=e.graph();if(r.isPlainObject(n)){var i=n.transition;if(r.isFunction(i))return i(t)}return t}};var i=/:/g;function a(t){return t?String(t).replace(i,"\\:"):""}},function(t,e,n){(function(t,r){var i=function(){var t=function(t,e,n,r){for(n=n||{},r=t.length;r--;n[t[r]]=e);return n},e=[1,7],n=[1,6],r=[1,14],i=[1,25],a=[1,28],o=[1,26],s=[1,27],c=[1,29],u=[1,30],l=[1,31],h=[1,32],f=[1,35],d=[1,36],p=[1,37],y=[1,38],g=[10,19],m=[1,50],v=[1,51],b=[1,52],x=[1,53],_=[1,54],k=[1,55],w=[10,19,26,33,34,42,45,46,47,48,49,50,55,57],E=[10,19,24,26,33,34,38,42,45,46,47,48,49,50,55,57,72,73,74,75],T=[10,13,17,19],C=[42,72,73,74,75],S=[42,49,50,72,73,74,75],A=[42,45,46,47,48,72,73,74,75],M=[10,19,26],O=[1,87],N={trace:function(){},yy:{},symbols_:{error:2,start:3,mermaidDoc:4,directive:5,graphConfig:6,openDirective:7,typeDirective:8,closeDirective:9,NEWLINE:10,":":11,argDirective:12,open_directive:13,type_directive:14,arg_directive:15,close_directive:16,CLASS_DIAGRAM:17,statements:18,EOF:19,statement:20,className:21,alphaNumToken:22,classLiteralName:23,GENERICTYPE:24,relationStatement:25,LABEL:26,classStatement:27,methodStatement:28,annotationStatement:29,clickStatement:30,cssClassStatement:31,CLASS:32,STYLE_SEPARATOR:33,STRUCT_START:34,members:35,STRUCT_STOP:36,ANNOTATION_START:37,ANNOTATION_END:38,MEMBER:39,SEPARATOR:40,relation:41,STR:42,relationType:43,lineType:44,AGGREGATION:45,EXTENSION:46,COMPOSITION:47,DEPENDENCY:48,LINE:49,DOTTED_LINE:50,CALLBACK:51,LINK:52,LINK_TARGET:53,CLICK:54,CALLBACK_NAME:55,CALLBACK_ARGS:56,HREF:57,CSSCLASS:58,commentToken:59,textToken:60,graphCodeTokens:61,textNoTagsToken:62,TAGSTART:63,TAGEND:64,"==":65,"--":66,PCT:67,DEFAULT:68,SPACE:69,MINUS:70,keywords:71,UNICODE_TEXT:72,NUM:73,ALPHA:74,BQUOTE_STR:75,$accept:0,$end:1},terminals_:{2:"error",10:"NEWLINE",11:":",13:"open_directive",14:"type_directive",15:"arg_directive",16:"close_directive",17:"CLASS_DIAGRAM",19:"EOF",24:"GENERICTYPE",26:"LABEL",32:"CLASS",33:"STYLE_SEPARATOR",34:"STRUCT_START",36:"STRUCT_STOP",37:"ANNOTATION_START",38:"ANNOTATION_END",39:"MEMBER",40:"SEPARATOR",42:"STR",45:"AGGREGATION",46:"EXTENSION",47:"COMPOSITION",48:"DEPENDENCY",49:"LINE",50:"DOTTED_LINE",51:"CALLBACK",52:"LINK",53:"LINK_TARGET",54:"CLICK",55:"CALLBACK_NAME",56:"CALLBACK_ARGS",57:"HREF",58:"CSSCLASS",61:"graphCodeTokens",63:"TAGSTART",64:"TAGEND",65:"==",66:"--",67:"PCT",68:"DEFAULT",69:"SPACE",70:"MINUS",71:"keywords",72:"UNICODE_TEXT",73:"NUM",74:"ALPHA",75:"BQUOTE_STR"},productions_:[0,[3,1],[3,2],[4,1],[5,4],[5,6],[7,1],[8,1],[12,1],[9,1],[6,4],[18,1],[18,2],[18,3],[21,1],[21,1],[21,2],[21,2],[21,2],[20,1],[20,2],[20,1],[20,1],[20,1],[20,1],[20,1],[20,1],[27,2],[27,4],[27,5],[27,7],[29,4],[35,1],[35,2],[28,1],[28,2],[28,1],[28,1],[25,3],[25,4],[25,4],[25,5],[41,3],[41,2],[41,2],[41,1],[43,1],[43,1],[43,1],[43,1],[44,1],[44,1],[30,3],[30,4],[30,3],[30,4],[30,4],[30,5],[30,3],[30,4],[30,4],[30,5],[30,3],[30,4],[30,4],[30,5],[31,3],[59,1],[59,1],[60,1],[60,1],[60,1],[60,1],[60,1],[60,1],[60,1],[62,1],[62,1],[62,1],[62,1],[22,1],[22,1],[22,1],[23,1]],performAction:function(t,e,n,r,i,a,o){var s=a.length-1;switch(i){case 6:r.parseDirective("%%{","open_directive");break;case 7:r.parseDirective(a[s],"type_directive");break;case 8:a[s]=a[s].trim().replace(/'/g,'"'),r.parseDirective(a[s],"arg_directive");break;case 9:r.parseDirective("}%%","close_directive","class");break;case 14:case 15:this.$=a[s];break;case 16:this.$=a[s-1]+a[s];break;case 17:case 18:this.$=a[s-1]+"~"+a[s];break;case 19:r.addRelation(a[s]);break;case 20:a[s-1].title=r.cleanupLabel(a[s]),r.addRelation(a[s-1]);break;case 27:r.addClass(a[s]);break;case 28:r.addClass(a[s-2]),r.setCssClass(a[s-2],a[s]);break;case 29:r.addClass(a[s-3]),r.addMembers(a[s-3],a[s-1]);break;case 30:r.addClass(a[s-5]),r.setCssClass(a[s-5],a[s-3]),r.addMembers(a[s-5],a[s-1]);break;case 31:r.addAnnotation(a[s],a[s-2]);break;case 32:this.$=[a[s]];break;case 33:a[s].push(a[s-1]),this.$=a[s];break;case 34:break;case 35:r.addMember(a[s-1],r.cleanupLabel(a[s]));break;case 36:case 37:break;case 38:this.$={id1:a[s-2],id2:a[s],relation:a[s-1],relationTitle1:"none",relationTitle2:"none"};break;case 39:this.$={id1:a[s-3],id2:a[s],relation:a[s-1],relationTitle1:a[s-2],relationTitle2:"none"};break;case 40:this.$={id1:a[s-3],id2:a[s],relation:a[s-2],relationTitle1:"none",relationTitle2:a[s-1]};break;case 41:this.$={id1:a[s-4],id2:a[s],relation:a[s-2],relationTitle1:a[s-3],relationTitle2:a[s-1]};break;case 42:this.$={type1:a[s-2],type2:a[s],lineType:a[s-1]};break;case 43:this.$={type1:"none",type2:a[s],lineType:a[s-1]};break;case 44:this.$={type1:a[s-1],type2:"none",lineType:a[s]};break;case 45:this.$={type1:"none",type2:"none",lineType:a[s]};break;case 46:this.$=r.relationType.AGGREGATION;break;case 47:this.$=r.relationType.EXTENSION;break;case 48:this.$=r.relationType.COMPOSITION;break;case 49:this.$=r.relationType.DEPENDENCY;break;case 50:this.$=r.lineType.LINE;break;case 51:this.$=r.lineType.DOTTED_LINE;break;case 52:case 58:this.$=a[s-2],r.setClickEvent(a[s-1],a[s]);break;case 53:case 59:this.$=a[s-3],r.setClickEvent(a[s-2],a[s-1]),r.setTooltip(a[s-2],a[s]);break;case 54:case 62:this.$=a[s-2],r.setLink(a[s-1],a[s]);break;case 55:this.$=a[s-3],r.setLink(a[s-2],a[s-1],a[s]);break;case 56:case 64:this.$=a[s-3],r.setLink(a[s-2],a[s-1]),r.setTooltip(a[s-2],a[s]);break;case 57:case 65:this.$=a[s-4],r.setLink(a[s-3],a[s-2],a[s]),r.setTooltip(a[s-3],a[s-1]);break;case 60:this.$=a[s-3],r.setClickEvent(a[s-2],a[s-1],a[s]);break;case 61:this.$=a[s-4],r.setClickEvent(a[s-3],a[s-2],a[s-1]),r.setTooltip(a[s-3],a[s]);break;case 63:this.$=a[s-3],r.setLink(a[s-2],a[s-1],a[s]);break;case 66:r.setCssClass(a[s-1],a[s])}},table:[{3:1,4:2,5:3,6:4,7:5,13:e,17:n},{1:[3]},{1:[2,1]},{3:8,4:2,5:3,6:4,7:5,13:e,17:n},{1:[2,3]},{8:9,14:[1,10]},{10:[1,11]},{14:[2,6]},{1:[2,2]},{9:12,11:[1,13],16:r},t([11,16],[2,7]),{5:23,7:5,13:e,18:15,20:16,21:24,22:33,23:34,25:17,27:18,28:19,29:20,30:21,31:22,32:i,37:a,39:o,40:s,51:c,52:u,54:l,58:h,72:f,73:d,74:p,75:y},{10:[1,39]},{12:40,15:[1,41]},{10:[2,9]},{19:[1,42]},{10:[1,43],19:[2,11]},t(g,[2,19],{26:[1,44]}),t(g,[2,21]),t(g,[2,22]),t(g,[2,23]),t(g,[2,24]),t(g,[2,25]),t(g,[2,26]),t(g,[2,34],{41:45,43:48,44:49,26:[1,47],42:[1,46],45:m,46:v,47:b,48:x,49:_,50:k}),{21:56,22:33,23:34,72:f,73:d,74:p,75:y},t(g,[2,36]),t(g,[2,37]),{22:57,72:f,73:d,74:p},{21:58,22:33,23:34,72:f,73:d,74:p,75:y},{21:59,22:33,23:34,72:f,73:d,74:p,75:y},{21:60,22:33,23:34,72:f,73:d,74:p,75:y},{42:[1,61]},t(w,[2,14],{22:33,23:34,21:62,24:[1,63],72:f,73:d,74:p,75:y}),t(w,[2,15],{24:[1,64]}),t(E,[2,80]),t(E,[2,81]),t(E,[2,82]),t([10,19,24,26,33,34,42,45,46,47,48,49,50,55,57],[2,83]),t(T,[2,4]),{9:65,16:r},{16:[2,8]},{1:[2,10]},{5:23,7:5,13:e,18:66,19:[2,12],20:16,21:24,22:33,23:34,25:17,27:18,28:19,29:20,30:21,31:22,32:i,37:a,39:o,40:s,51:c,52:u,54:l,58:h,72:f,73:d,74:p,75:y},t(g,[2,20]),{21:67,22:33,23:34,42:[1,68],72:f,73:d,74:p,75:y},{41:69,43:48,44:49,45:m,46:v,47:b,48:x,49:_,50:k},t(g,[2,35]),{44:70,49:_,50:k},t(C,[2,45],{43:71,45:m,46:v,47:b,48:x}),t(S,[2,46]),t(S,[2,47]),t(S,[2,48]),t(S,[2,49]),t(A,[2,50]),t(A,[2,51]),t(g,[2,27],{33:[1,72],34:[1,73]}),{38:[1,74]},{42:[1,75]},{42:[1,76]},{55:[1,77],57:[1,78]},{22:79,72:f,73:d,74:p},t(w,[2,16]),t(w,[2,17]),t(w,[2,18]),{10:[1,80]},{19:[2,13]},t(M,[2,38]),{21:81,22:33,23:34,72:f,73:d,74:p,75:y},{21:82,22:33,23:34,42:[1,83],72:f,73:d,74:p,75:y},t(C,[2,44],{43:84,45:m,46:v,47:b,48:x}),t(C,[2,43]),{22:85,72:f,73:d,74:p},{35:86,39:O},{21:88,22:33,23:34,72:f,73:d,74:p,75:y},t(g,[2,52],{42:[1,89]}),t(g,[2,54],{42:[1,91],53:[1,90]}),t(g,[2,58],{42:[1,92],56:[1,93]}),t(g,[2,62],{42:[1,95],53:[1,94]}),t(g,[2,66]),t(T,[2,5]),t(M,[2,40]),t(M,[2,39]),{21:96,22:33,23:34,72:f,73:d,74:p,75:y},t(C,[2,42]),t(g,[2,28],{34:[1,97]}),{36:[1,98]},{35:99,36:[2,32],39:O},t(g,[2,31]),t(g,[2,53]),t(g,[2,55]),t(g,[2,56],{53:[1,100]}),t(g,[2,59]),t(g,[2,60],{42:[1,101]}),t(g,[2,63]),t(g,[2,64],{53:[1,102]}),t(M,[2,41]),{35:103,39:O},t(g,[2,29]),{36:[2,33]},t(g,[2,57]),t(g,[2,61]),t(g,[2,65]),{36:[1,104]},t(g,[2,30])],defaultActions:{2:[2,1],4:[2,3],7:[2,6],8:[2,2],14:[2,9],41:[2,8],42:[2,10],66:[2,13],99:[2,33]},parseError:function(t,e){if(!e.recoverable){var n=new Error(t);throw n.hash=e,n}this.trace(t)},parse:function(t){var e=this,n=[0],r=[],i=[null],a=[],o=this.table,s="",c=0,u=0,l=0,h=2,f=1,d=a.slice.call(arguments,1),p=Object.create(this.lexer),y={yy:{}};for(var g in this.yy)Object.prototype.hasOwnProperty.call(this.yy,g)&&(y.yy[g]=this.yy[g]);p.setInput(t,y.yy),y.yy.lexer=p,y.yy.parser=this,void 0===p.yylloc&&(p.yylloc={});var m=p.yylloc;a.push(m);var v=p.options&&p.options.ranges;function b(){var t;return"number"!=typeof(t=r.pop()||p.lex()||f)&&(t instanceof Array&&(t=(r=t).pop()),t=e.symbols_[t]||t),t}"function"==typeof y.yy.parseError?this.parseError=y.yy.parseError:this.parseError=Object.getPrototypeOf(this).parseError;for(var x,_,k,w,E,T,C,S,A,M={};;){if(k=n[n.length-1],this.defaultActions[k]?w=this.defaultActions[k]:(null==x&&(x=b()),w=o[k]&&o[k][x]),void 0===w||!w.length||!w[0]){var O="";for(T in A=[],o[k])this.terminals_[T]&&T>h&&A.push("'"+this.terminals_[T]+"'");O=p.showPosition?"Parse error on line "+(c+1)+":\n"+p.showPosition()+"\nExpecting "+A.join(", ")+", got '"+(this.terminals_[x]||x)+"'":"Parse error on line "+(c+1)+": Unexpected "+(x==f?"end of input":"'"+(this.terminals_[x]||x)+"'"),this.parseError(O,{text:p.match,token:this.terminals_[x]||x,line:p.yylineno,loc:m,expected:A})}if(w[0]instanceof Array&&w.length>1)throw new Error("Parse Error: multiple actions possible at state: "+k+", token: "+x);switch(w[0]){case 1:n.push(x),i.push(p.yytext),a.push(p.yylloc),n.push(w[1]),x=null,_?(x=_,_=null):(u=p.yyleng,s=p.yytext,c=p.yylineno,m=p.yylloc,l>0&&l--);break;case 2:if(C=this.productions_[w[1]][1],M.$=i[i.length-C],M._$={first_line:a[a.length-(C||1)].first_line,last_line:a[a.length-1].last_line,first_column:a[a.length-(C||1)].first_column,last_column:a[a.length-1].last_column},v&&(M._$.range=[a[a.length-(C||1)].range[0],a[a.length-1].range[1]]),void 0!==(E=this.performAction.apply(M,[s,u,c,y.yy,w[1],i,a].concat(d))))return E;C&&(n=n.slice(0,-1*C*2),i=i.slice(0,-1*C),a=a.slice(0,-1*C)),n.push(this.productions_[w[1]][0]),i.push(M.$),a.push(M._$),S=o[n[n.length-2]][n[n.length-1]],n.push(S);break;case 3:return!0}}return!0}},B={EOF:1,parseError:function(t,e){if(!this.yy.parser)throw new Error(t);this.yy.parser.parseError(t,e)},setInput:function(t,e){return this.yy=e||this.yy||{},this._input=t,this._more=this._backtrack=this.done=!1,this.yylineno=this.yyleng=0,this.yytext=this.matched=this.match="",this.conditionStack=["INITIAL"],this.yylloc={first_line:1,first_column:0,last_line:1,last_column:0},this.options.ranges&&(this.yylloc.range=[0,0]),this.offset=0,this},input:function(){var t=this._input[0];return this.yytext+=t,this.yyleng++,this.offset++,this.match+=t,this.matched+=t,t.match(/(?:\r\n?|\n).*/g)?(this.yylineno++,this.yylloc.last_line++):this.yylloc.last_column++,this.options.ranges&&this.yylloc.range[1]++,this._input=this._input.slice(1),t},unput:function(t){var e=t.length,n=t.split(/(?:\r\n?|\n)/g);this._input=t+this._input,this.yytext=this.yytext.substr(0,this.yytext.length-e),this.offset-=e;var r=this.match.split(/(?:\r\n?|\n)/g);this.match=this.match.substr(0,this.match.length-1),this.matched=this.matched.substr(0,this.matched.length-1),n.length-1&&(this.yylineno-=n.length-1);var i=this.yylloc.range;return this.yylloc={first_line:this.yylloc.first_line,last_line:this.yylineno+1,first_column:this.yylloc.first_column,last_column:n?(n.length===r.length?this.yylloc.first_column:0)+r[r.length-n.length].length-n[0].length:this.yylloc.first_column-e},this.options.ranges&&(this.yylloc.range=[i[0],i[0]+this.yyleng-e]),this.yyleng=this.yytext.length,this},more:function(){return this._more=!0,this},reject:function(){return this.options.backtrack_lexer?(this._backtrack=!0,this):this.parseError("Lexical error on line "+(this.yylineno+1)+". You can only invoke reject() in the lexer when the lexer is of the backtracking persuasion (options.backtrack_lexer = true).\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},less:function(t){this.unput(this.match.slice(t))},pastInput:function(){var t=this.matched.substr(0,this.matched.length-this.match.length);return(t.length>20?"...":"")+t.substr(-20).replace(/\n/g,"")},upcomingInput:function(){var t=this.match;return t.length<20&&(t+=this._input.substr(0,20-t.length)),(t.substr(0,20)+(t.length>20?"...":"")).replace(/\n/g,"")},showPosition:function(){var t=this.pastInput(),e=new Array(t.length+1).join("-");return t+this.upcomingInput()+"\n"+e+"^"},test_match:function(t,e){var n,r,i;if(this.options.backtrack_lexer&&(i={yylineno:this.yylineno,yylloc:{first_line:this.yylloc.first_line,last_line:this.last_line,first_column:this.yylloc.first_column,last_column:this.yylloc.last_column},yytext:this.yytext,match:this.match,matches:this.matches,matched:this.matched,yyleng:this.yyleng,offset:this.offset,_more:this._more,_input:this._input,yy:this.yy,conditionStack:this.conditionStack.slice(0),done:this.done},this.options.ranges&&(i.yylloc.range=this.yylloc.range.slice(0))),(r=t[0].match(/(?:\r\n?|\n).*/g))&&(this.yylineno+=r.length),this.yylloc={first_line:this.yylloc.last_line,last_line:this.yylineno+1,first_column:this.yylloc.last_column,last_column:r?r[r.length-1].length-r[r.length-1].match(/\r?\n?/)[0].length:this.yylloc.last_column+t[0].length},this.yytext+=t[0],this.match+=t[0],this.matches=t,this.yyleng=this.yytext.length,this.options.ranges&&(this.yylloc.range=[this.offset,this.offset+=this.yyleng]),this._more=!1,this._backtrack=!1,this._input=this._input.slice(t[0].length),this.matched+=t[0],n=this.performAction.call(this,this.yy,this,e,this.conditionStack[this.conditionStack.length-1]),this.done&&this._input&&(this.done=!1),n)return n;if(this._backtrack){for(var a in i)this[a]=i[a];return!1}return!1},next:function(){if(this.done)return this.EOF;var t,e,n,r;this._input||(this.done=!0),this._more||(this.yytext="",this.match="");for(var i=this._currentRules(),a=0;a<i.length;a++)if((n=this._input.match(this.rules[i[a]]))&&(!e||n[0].length>e[0].length)){if(e=n,r=a,this.options.backtrack_lexer){if(!1!==(t=this.test_match(n,i[a])))return t;if(this._backtrack){e=!1;continue}return!1}if(!this.options.flex)break}return e?!1!==(t=this.test_match(e,i[r]))&&t:""===this._input?this.EOF:this.parseError("Lexical error on line "+(this.yylineno+1)+". Unrecognized text.\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},lex:function(){var t=this.next();return t||this.lex()},begin:function(t){this.conditionStack.push(t)},popState:function(){return this.conditionStack.length-1>0?this.conditionStack.pop():this.conditionStack[0]},_currentRules:function(){return this.conditionStack.length&&this.conditionStack[this.conditionStack.length-1]?this.conditions[this.conditionStack[this.conditionStack.length-1]].rules:this.conditions.INITIAL.rules},topState:function(t){return(t=this.conditionStack.length-1-Math.abs(t||0))>=0?this.conditionStack[t]:"INITIAL"},pushState:function(t){this.begin(t)},stateStackSize:function(){return this.conditionStack.length},options:{},performAction:function(t,e,n,r){switch(n){case 0:return this.begin("open_directive"),13;case 1:return this.begin("type_directive"),14;case 2:return this.popState(),this.begin("arg_directive"),11;case 3:return this.popState(),this.popState(),16;case 4:return 15;case 5:case 6:break;case 7:return 10;case 8:break;case 9:case 10:return 17;case 11:return this.begin("struct"),34;case 12:return"EOF_IN_STRUCT";case 13:return"OPEN_IN_STRUCT";case 14:return this.popState(),36;case 15:break;case 16:return"MEMBER";case 17:return 32;case 18:return 58;case 19:return 51;case 20:return 52;case 21:return 54;case 22:return 37;case 23:return 38;case 24:this.begin("generic");break;case 25:this.popState();break;case 26:return"GENERICTYPE";case 27:this.begin("string");break;case 28:this.popState();break;case 29:return"STR";case 30:this.begin("bqstring");break;case 31:this.popState();break;case 32:return"BQUOTE_STR";case 33:this.begin("href");break;case 34:this.popState();break;case 35:return 57;case 36:this.begin("callback_name");break;case 37:this.popState();break;case 38:this.popState(),this.begin("callback_args");break;case 39:return 55;case 40:this.popState();break;case 41:return 56;case 42:case 43:case 44:case 45:return 53;case 46:case 47:return 46;case 48:case 49:return 48;case 50:return 47;case 51:return 45;case 52:return 49;case 53:return 50;case 54:return 26;case 55:return 33;case 56:return 70;case 57:return"DOT";case 58:return"PLUS";case 59:return 67;case 60:case 61:return"EQUALS";case 62:return 74;case 63:return"PUNCTUATION";case 64:return 73;case 65:return 72;case 66:return 69;case 67:return 19}},rules:[/^(?:%%\{)/,/^(?:((?:(?!\}%%)[^:.])*))/,/^(?::)/,/^(?:\}%%)/,/^(?:((?:(?!\}%%).|\n)*))/,/^(?:%%(?!\{)*[^\n]*(\r?\n?)+)/,/^(?:%%[^\n]*(\r?\n)*)/,/^(?:(\r?\n)+)/,/^(?:\s+)/,/^(?:classDiagram-v2\b)/,/^(?:classDiagram\b)/,/^(?:[{])/,/^(?:$)/,/^(?:[{])/,/^(?:[}])/,/^(?:[\n])/,/^(?:[^{}\n]*)/,/^(?:class\b)/,/^(?:cssClass\b)/,/^(?:callback\b)/,/^(?:link\b)/,/^(?:click\b)/,/^(?:<<)/,/^(?:>>)/,/^(?:[~])/,/^(?:[~])/,/^(?:[^~]*)/,/^(?:["])/,/^(?:["])/,/^(?:[^"]*)/,/^(?:[`])/,/^(?:[`])/,/^(?:[^`]+)/,/^(?:href[\s]+["])/,/^(?:["])/,/^(?:[^"]*)/,/^(?:call[\s]+)/,/^(?:\([\s]*\))/,/^(?:\()/,/^(?:[^(]*)/,/^(?:\))/,/^(?:[^)]*)/,/^(?:_self\b)/,/^(?:_blank\b)/,/^(?:_parent\b)/,/^(?:_top\b)/,/^(?:\s*<\|)/,/^(?:\s*\|>)/,/^(?:\s*>)/,/^(?:\s*<)/,/^(?:\s*\*)/,/^(?:\s*o\b)/,/^(?:--)/,/^(?:\.\.)/,/^(?::{1}[^:\n;]+)/,/^(?::{3})/,/^(?:-)/,/^(?:\.)/,/^(?:\+)/,/^(?:%)/,/^(?:=)/,/^(?:=)/,/^(?:\w+)/,/^(?:[!"#$%&'*+,-.`?\\/])/,/^(?:[0-9]+)/,/^(?:[\u00AA\u00B5\u00BA\u00C0-\u00D6\u00D8-\u00F6]|[\u00F8-\u02C1\u02C6-\u02D1\u02E0-\u02E4\u02EC\u02EE\u0370-\u0374\u0376\u0377]|[\u037A-\u037D\u0386\u0388-\u038A\u038C\u038E-\u03A1\u03A3-\u03F5]|[\u03F7-\u0481\u048A-\u0527\u0531-\u0556\u0559\u0561-\u0587\u05D0-\u05EA]|[\u05F0-\u05F2\u0620-\u064A\u066E\u066F\u0671-\u06D3\u06D5\u06E5\u06E6\u06EE]|[\u06EF\u06FA-\u06FC\u06FF\u0710\u0712-\u072F\u074D-\u07A5\u07B1\u07CA-\u07EA]|[\u07F4\u07F5\u07FA\u0800-\u0815\u081A\u0824\u0828\u0840-\u0858\u08A0]|[\u08A2-\u08AC\u0904-\u0939\u093D\u0950\u0958-\u0961\u0971-\u0977]|[\u0979-\u097F\u0985-\u098C\u098F\u0990\u0993-\u09A8\u09AA-\u09B0\u09B2]|[\u09B6-\u09B9\u09BD\u09CE\u09DC\u09DD\u09DF-\u09E1\u09F0\u09F1\u0A05-\u0A0A]|[\u0A0F\u0A10\u0A13-\u0A28\u0A2A-\u0A30\u0A32\u0A33\u0A35\u0A36\u0A38\u0A39]|[\u0A59-\u0A5C\u0A5E\u0A72-\u0A74\u0A85-\u0A8D\u0A8F-\u0A91\u0A93-\u0AA8]|[\u0AAA-\u0AB0\u0AB2\u0AB3\u0AB5-\u0AB9\u0ABD\u0AD0\u0AE0\u0AE1\u0B05-\u0B0C]|[\u0B0F\u0B10\u0B13-\u0B28\u0B2A-\u0B30\u0B32\u0B33\u0B35-\u0B39\u0B3D\u0B5C]|[\u0B5D\u0B5F-\u0B61\u0B71\u0B83\u0B85-\u0B8A\u0B8E-\u0B90\u0B92-\u0B95\u0B99]|[\u0B9A\u0B9C\u0B9E\u0B9F\u0BA3\u0BA4\u0BA8-\u0BAA\u0BAE-\u0BB9\u0BD0]|[\u0C05-\u0C0C\u0C0E-\u0C10\u0C12-\u0C28\u0C2A-\u0C33\u0C35-\u0C39\u0C3D]|[\u0C58\u0C59\u0C60\u0C61\u0C85-\u0C8C\u0C8E-\u0C90\u0C92-\u0CA8\u0CAA-\u0CB3]|[\u0CB5-\u0CB9\u0CBD\u0CDE\u0CE0\u0CE1\u0CF1\u0CF2\u0D05-\u0D0C\u0D0E-\u0D10]|[\u0D12-\u0D3A\u0D3D\u0D4E\u0D60\u0D61\u0D7A-\u0D7F\u0D85-\u0D96\u0D9A-\u0DB1]|[\u0DB3-\u0DBB\u0DBD\u0DC0-\u0DC6\u0E01-\u0E30\u0E32\u0E33\u0E40-\u0E46\u0E81]|[\u0E82\u0E84\u0E87\u0E88\u0E8A\u0E8D\u0E94-\u0E97\u0E99-\u0E9F\u0EA1-\u0EA3]|[\u0EA5\u0EA7\u0EAA\u0EAB\u0EAD-\u0EB0\u0EB2\u0EB3\u0EBD\u0EC0-\u0EC4\u0EC6]|[\u0EDC-\u0EDF\u0F00\u0F40-\u0F47\u0F49-\u0F6C\u0F88-\u0F8C\u1000-\u102A]|[\u103F\u1050-\u1055\u105A-\u105D\u1061\u1065\u1066\u106E-\u1070\u1075-\u1081]|[\u108E\u10A0-\u10C5\u10C7\u10CD\u10D0-\u10FA\u10FC-\u1248\u124A-\u124D]|[\u1250-\u1256\u1258\u125A-\u125D\u1260-\u1288\u128A-\u128D\u1290-\u12B0]|[\u12B2-\u12B5\u12B8-\u12BE\u12C0\u12C2-\u12C5\u12C8-\u12D6\u12D8-\u1310]|[\u1312-\u1315\u1318-\u135A\u1380-\u138F\u13A0-\u13F4\u1401-\u166C]|[\u166F-\u167F\u1681-\u169A\u16A0-\u16EA\u1700-\u170C\u170E-\u1711]|[\u1720-\u1731\u1740-\u1751\u1760-\u176C\u176E-\u1770\u1780-\u17B3\u17D7]|[\u17DC\u1820-\u1877\u1880-\u18A8\u18AA\u18B0-\u18F5\u1900-\u191C]|[\u1950-\u196D\u1970-\u1974\u1980-\u19AB\u19C1-\u19C7\u1A00-\u1A16]|[\u1A20-\u1A54\u1AA7\u1B05-\u1B33\u1B45-\u1B4B\u1B83-\u1BA0\u1BAE\u1BAF]|[\u1BBA-\u1BE5\u1C00-\u1C23\u1C4D-\u1C4F\u1C5A-\u1C7D\u1CE9-\u1CEC]|[\u1CEE-\u1CF1\u1CF5\u1CF6\u1D00-\u1DBF\u1E00-\u1F15\u1F18-\u1F1D]|[\u1F20-\u1F45\u1F48-\u1F4D\u1F50-\u1F57\u1F59\u1F5B\u1F5D\u1F5F-\u1F7D]|[\u1F80-\u1FB4\u1FB6-\u1FBC\u1FBE\u1FC2-\u1FC4\u1FC6-\u1FCC\u1FD0-\u1FD3]|[\u1FD6-\u1FDB\u1FE0-\u1FEC\u1FF2-\u1FF4\u1FF6-\u1FFC\u2071\u207F]|[\u2090-\u209C\u2102\u2107\u210A-\u2113\u2115\u2119-\u211D\u2124\u2126\u2128]|[\u212A-\u212D\u212F-\u2139\u213C-\u213F\u2145-\u2149\u214E\u2183\u2184]|[\u2C00-\u2C2E\u2C30-\u2C5E\u2C60-\u2CE4\u2CEB-\u2CEE\u2CF2\u2CF3]|[\u2D00-\u2D25\u2D27\u2D2D\u2D30-\u2D67\u2D6F\u2D80-\u2D96\u2DA0-\u2DA6]|[\u2DA8-\u2DAE\u2DB0-\u2DB6\u2DB8-\u2DBE\u2DC0-\u2DC6\u2DC8-\u2DCE]|[\u2DD0-\u2DD6\u2DD8-\u2DDE\u2E2F\u3005\u3006\u3031-\u3035\u303B\u303C]|[\u3041-\u3096\u309D-\u309F\u30A1-\u30FA\u30FC-\u30FF\u3105-\u312D]|[\u3131-\u318E\u31A0-\u31BA\u31F0-\u31FF\u3400-\u4DB5\u4E00-\u9FCC]|[\uA000-\uA48C\uA4D0-\uA4FD\uA500-\uA60C\uA610-\uA61F\uA62A\uA62B]|[\uA640-\uA66E\uA67F-\uA697\uA6A0-\uA6E5\uA717-\uA71F\uA722-\uA788]|[\uA78B-\uA78E\uA790-\uA793\uA7A0-\uA7AA\uA7F8-\uA801\uA803-\uA805]|[\uA807-\uA80A\uA80C-\uA822\uA840-\uA873\uA882-\uA8B3\uA8F2-\uA8F7\uA8FB]|[\uA90A-\uA925\uA930-\uA946\uA960-\uA97C\uA984-\uA9B2\uA9CF\uAA00-\uAA28]|[\uAA40-\uAA42\uAA44-\uAA4B\uAA60-\uAA76\uAA7A\uAA80-\uAAAF\uAAB1\uAAB5]|[\uAAB6\uAAB9-\uAABD\uAAC0\uAAC2\uAADB-\uAADD\uAAE0-\uAAEA\uAAF2-\uAAF4]|[\uAB01-\uAB06\uAB09-\uAB0E\uAB11-\uAB16\uAB20-\uAB26\uAB28-\uAB2E]|[\uABC0-\uABE2\uAC00-\uD7A3\uD7B0-\uD7C6\uD7CB-\uD7FB\uF900-\uFA6D]|[\uFA70-\uFAD9\uFB00-\uFB06\uFB13-\uFB17\uFB1D\uFB1F-\uFB28\uFB2A-\uFB36]|[\uFB38-\uFB3C\uFB3E\uFB40\uFB41\uFB43\uFB44\uFB46-\uFBB1\uFBD3-\uFD3D]|[\uFD50-\uFD8F\uFD92-\uFDC7\uFDF0-\uFDFB\uFE70-\uFE74\uFE76-\uFEFC]|[\uFF21-\uFF3A\uFF41-\uFF5A\uFF66-\uFFBE\uFFC2-\uFFC7\uFFCA-\uFFCF]|[\uFFD2-\uFFD7\uFFDA-\uFFDC])/,/^(?:\s)/,/^(?:$)/],conditions:{arg_directive:{rules:[3,4],inclusive:!1},type_directive:{rules:[2,3],inclusive:!1},open_directive:{rules:[1],inclusive:!1},callback_args:{rules:[40,41],inclusive:!1},callback_name:{rules:[37,38,39],inclusive:!1},href:{rules:[34,35],inclusive:!1},struct:{rules:[12,13,14,15,16],inclusive:!1},generic:{rules:[25,26],inclusive:!1},bqstring:{rules:[31,32],inclusive:!1},string:{rules:[28,29],inclusive:!1},INITIAL:{rules:[0,5,6,7,8,9,10,11,17,18,19,20,21,22,23,24,27,30,33,36,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67],inclusive:!0}}};function D(){this.yy={}}return N.lexer=B,D.prototype=N,N.Parser=D,new D}();e.parser=i,e.Parser=i.Parser,e.parse=function(){return i.parse.apply(i,arguments)},e.main=function(r){r[1]||(console.log("Usage: "+r[0]+" FILE"),t.exit(1));var i=n(17).readFileSync(n(18).normalize(r[1]),"utf8");return e.parser.parse(i)},n.c[n.s]===r&&e.main(t.argv.slice(1))}).call(this,n(12),n(7)(t))},function(t,e){},function(t,e,n){(function(t){function n(t,e){for(var n=0,r=t.length-1;r>=0;r--){var i=t[r];"."===i?t.splice(r,1):".."===i?(t.splice(r,1),n++):n&&(t.splice(r,1),n--)}if(e)for(;n--;n)t.unshift("..");return t}function r(t,e){if(t.filter)return t.filter(e);for(var n=[],r=0;r<t.length;r++)e(t[r],r,t)&&n.push(t[r]);return n}e.resolve=function(){for(var e="",i=!1,a=arguments.length-1;a>=-1&&!i;a--){var o=a>=0?arguments[a]:t.cwd();if("string"!=typeof o)throw new TypeError("Arguments to path.resolve must be strings");o&&(e=o+"/"+e,i="/"===o.charAt(0))}return(i?"/":"")+(e=n(r(e.split("/"),(function(t){return!!t})),!i).join("/"))||"."},e.normalize=function(t){var a=e.isAbsolute(t),o="/"===i(t,-1);return(t=n(r(t.split("/"),(function(t){return!!t})),!a).join("/"))||a||(t="."),t&&o&&(t+="/"),(a?"/":"")+t},e.isAbsolute=function(t){return"/"===t.charAt(0)},e.join=function(){var t=Array.prototype.slice.call(arguments,0);return e.normalize(r(t,(function(t,e){if("string"!=typeof t)throw new TypeError("Arguments to path.join must be strings");return t})).join("/"))},e.relative=function(t,n){function r(t){for(var e=0;e<t.length&&""===t[e];e++);for(var n=t.length-1;n>=0&&""===t[n];n--);return e>n?[]:t.slice(e,n-e+1)}t=e.resolve(t).substr(1),n=e.resolve(n).substr(1);for(var i=r(t.split("/")),a=r(n.split("/")),o=Math.min(i.length,a.length),s=o,c=0;c<o;c++)if(i[c]!==a[c]){s=c;break}var u=[];for(c=s;c<i.length;c++)u.push("..");return(u=u.concat(a.slice(s))).join("/")},e.sep="/",e.delimiter=":",e.dirname=function(t){if("string"!=typeof t&&(t+=""),0===t.length)return".";for(var e=t.charCodeAt(0),n=47===e,r=-1,i=!0,a=t.length-1;a>=1;--a)if(47===(e=t.charCodeAt(a))){if(!i){r=a;break}}else i=!1;return-1===r?n?"/":".":n&&1===r?"/":t.slice(0,r)},e.basename=function(t,e){var n=function(t){"string"!=typeof t&&(t+="");var e,n=0,r=-1,i=!0;for(e=t.length-1;e>=0;--e)if(47===t.charCodeAt(e)){if(!i){n=e+1;break}}else-1===r&&(i=!1,r=e+1);return-1===r?"":t.slice(n,r)}(t);return e&&n.substr(-1*e.length)===e&&(n=n.substr(0,n.length-e.length)),n},e.extname=function(t){"string"!=typeof t&&(t+="");for(var e=-1,n=0,r=-1,i=!0,a=0,o=t.length-1;o>=0;--o){var s=t.charCodeAt(o);if(47!==s)-1===r&&(i=!1,r=o+1),46===s?-1===e?e=o:1!==a&&(a=1):-1!==e&&(a=-1);else if(!i){n=o+1;break}}return-1===e||-1===r||0===a||1===a&&e===r-1&&e===n+1?"":t.slice(e,r)};var i="b"==="ab".substr(-1)?function(t,e,n){return t.substr(e,n)}:function(t,e,n){return e<0&&(e=t.length+e),t.substr(e,n)}}).call(this,n(12))},function(t,e,n){var r=n(109),i="object"==typeof self&&self&&self.Object===Object&&self,a=r||i||Function("return this")();t.exports=a},function(t,e,n){var r;try{r=n(3)}catch(t){}r||(r=window.graphlib),t.exports=r},function(t,e){t.exports=function(t){return null!=t&&"object"==typeof t}},function(t,e,n){(function(t,r){var i=function(){var t=function(t,e,n,r){for(n=n||{},r=t.length;r--;n[t[r]]=e);return n},e=[1,2],n=[1,3],r=[1,5],i=[1,7],a=[2,5],o=[1,15],s=[1,17],c=[1,19],u=[1,20],l=[1,21],h=[1,22],f=[1,30],d=[1,23],p=[1,24],y=[1,25],g=[1,26],m=[1,27],v=[1,32],b=[1,33],x=[1,34],_=[1,35],k=[1,31],w=[1,38],E=[1,4,5,14,15,17,19,20,22,23,24,25,26,27,36,37,38,39,42,45],T=[1,4,5,12,13,14,15,17,19,20,22,23,24,25,26,27,36,37,38,39,42,45],C=[1,4,5,7,14,15,17,19,20,22,23,24,25,26,27,36,37,38,39,42,45],S=[4,5,14,15,17,19,20,22,23,24,25,26,27,36,37,38,39,42,45],A={trace:function(){},yy:{},symbols_:{error:2,start:3,SPACE:4,NL:5,directive:6,SD:7,document:8,line:9,statement:10,idStatement:11,DESCR:12,"--\x3e":13,HIDE_EMPTY:14,scale:15,WIDTH:16,COMPOSIT_STATE:17,STRUCT_START:18,STRUCT_STOP:19,STATE_DESCR:20,AS:21,ID:22,FORK:23,JOIN:24,CHOICE:25,CONCURRENT:26,note:27,notePosition:28,NOTE_TEXT:29,direction:30,openDirective:31,typeDirective:32,closeDirective:33,":":34,argDirective:35,direction_tb:36,direction_bt:37,direction_rl:38,direction_lr:39,eol:40,";":41,EDGE_STATE:42,left_of:43,right_of:44,open_directive:45,type_directive:46,arg_directive:47,close_directive:48,$accept:0,$end:1},terminals_:{2:"error",4:"SPACE",5:"NL",7:"SD",12:"DESCR",13:"--\x3e",14:"HIDE_EMPTY",15:"scale",16:"WIDTH",17:"COMPOSIT_STATE",18:"STRUCT_START",19:"STRUCT_STOP",20:"STATE_DESCR",21:"AS",22:"ID",23:"FORK",24:"JOIN",25:"CHOICE",26:"CONCURRENT",27:"note",29:"NOTE_TEXT",34:":",36:"direction_tb",37:"direction_bt",38:"direction_rl",39:"direction_lr",41:";",42:"EDGE_STATE",43:"left_of",44:"right_of",45:"open_directive",46:"type_directive",47:"arg_directive",48:"close_directive"},productions_:[0,[3,2],[3,2],[3,2],[3,2],[8,0],[8,2],[9,2],[9,1],[9,1],[10,1],[10,2],[10,3],[10,4],[10,1],[10,2],[10,1],[10,4],[10,3],[10,6],[10,1],[10,1],[10,1],[10,1],[10,4],[10,4],[10,1],[10,1],[6,3],[6,5],[30,1],[30,1],[30,1],[30,1],[40,1],[40,1],[11,1],[11,1],[28,1],[28,1],[31,1],[32,1],[35,1],[33,1]],performAction:function(t,e,n,r,i,a,o){var s=a.length-1;switch(i){case 4:return r.setRootDoc(a[s]),a[s];case 5:this.$=[];break;case 6:"nl"!=a[s]&&(a[s-1].push(a[s]),this.$=a[s-1]);break;case 7:case 8:this.$=a[s];break;case 9:this.$="nl";break;case 10:this.$={stmt:"state",id:a[s],type:"default",description:""};break;case 11:this.$={stmt:"state",id:a[s-1],type:"default",description:r.trimColon(a[s])};break;case 12:this.$={stmt:"relation",state1:{stmt:"state",id:a[s-2],type:"default",description:""},state2:{stmt:"state",id:a[s],type:"default",description:""}};break;case 13:this.$={stmt:"relation",state1:{stmt:"state",id:a[s-3],type:"default",description:""},state2:{stmt:"state",id:a[s-1],type:"default",description:""},description:a[s].substr(1).trim()};break;case 17:this.$={stmt:"state",id:a[s-3],type:"default",description:"",doc:a[s-1]};break;case 18:var c=a[s],u=a[s-2].trim();if(a[s].match(":")){var l=a[s].split(":");c=l[0],u=[u,l[1]]}this.$={stmt:"state",id:c,type:"default",description:u};break;case 19:this.$={stmt:"state",id:a[s-3],type:"default",description:a[s-5],doc:a[s-1]};break;case 20:this.$={stmt:"state",id:a[s],type:"fork"};break;case 21:this.$={stmt:"state",id:a[s],type:"join"};break;case 22:this.$={stmt:"state",id:a[s],type:"choice"};break;case 23:this.$={stmt:"state",id:r.getDividerId(),type:"divider"};break;case 24:this.$={stmt:"state",id:a[s-1].trim(),note:{position:a[s-2].trim(),text:a[s].trim()}};break;case 30:r.setDirection("TB"),this.$={stmt:"dir",value:"TB"};break;case 31:r.setDirection("BT"),this.$={stmt:"dir",value:"BT"};break;case 32:r.setDirection("RL"),this.$={stmt:"dir",value:"RL"};break;case 33:r.setDirection("LR"),this.$={stmt:"dir",value:"LR"};break;case 36:case 37:this.$=a[s];break;case 40:r.parseDirective("%%{","open_directive");break;case 41:r.parseDirective(a[s],"type_directive");break;case 42:a[s]=a[s].trim().replace(/'/g,'"'),r.parseDirective(a[s],"arg_directive");break;case 43:r.parseDirective("}%%","close_directive","state")}},table:[{3:1,4:e,5:n,6:4,7:r,31:6,45:i},{1:[3]},{3:8,4:e,5:n,6:4,7:r,31:6,45:i},{3:9,4:e,5:n,6:4,7:r,31:6,45:i},{3:10,4:e,5:n,6:4,7:r,31:6,45:i},t([1,4,5,14,15,17,20,22,23,24,25,26,27,36,37,38,39,42,45],a,{8:11}),{32:12,46:[1,13]},{46:[2,40]},{1:[2,1]},{1:[2,2]},{1:[2,3]},{1:[2,4],4:o,5:s,6:28,9:14,10:16,11:18,14:c,15:u,17:l,20:h,22:f,23:d,24:p,25:y,26:g,27:m,30:29,31:6,36:v,37:b,38:x,39:_,42:k,45:i},{33:36,34:[1,37],48:w},t([34,48],[2,41]),t(E,[2,6]),{6:28,10:39,11:18,14:c,15:u,17:l,20:h,22:f,23:d,24:p,25:y,26:g,27:m,30:29,31:6,36:v,37:b,38:x,39:_,42:k,45:i},t(E,[2,8]),t(E,[2,9]),t(E,[2,10],{12:[1,40],13:[1,41]}),t(E,[2,14]),{16:[1,42]},t(E,[2,16],{18:[1,43]}),{21:[1,44]},t(E,[2,20]),t(E,[2,21]),t(E,[2,22]),t(E,[2,23]),{28:45,29:[1,46],43:[1,47],44:[1,48]},t(E,[2,26]),t(E,[2,27]),t(T,[2,36]),t(T,[2,37]),t(E,[2,30]),t(E,[2,31]),t(E,[2,32]),t(E,[2,33]),t(C,[2,28]),{35:49,47:[1,50]},t(C,[2,43]),t(E,[2,7]),t(E,[2,11]),{11:51,22:f,42:k},t(E,[2,15]),t(S,a,{8:52}),{22:[1,53]},{22:[1,54]},{21:[1,55]},{22:[2,38]},{22:[2,39]},{33:56,48:w},{48:[2,42]},t(E,[2,12],{12:[1,57]}),{4:o,5:s,6:28,9:14,10:16,11:18,14:c,15:u,17:l,19:[1,58],20:h,22:f,23:d,24:p,25:y,26:g,27:m,30:29,31:6,36:v,37:b,38:x,39:_,42:k,45:i},t(E,[2,18],{18:[1,59]}),{29:[1,60]},{22:[1,61]},t(C,[2,29]),t(E,[2,13]),t(E,[2,17]),t(S,a,{8:62}),t(E,[2,24]),t(E,[2,25]),{4:o,5:s,6:28,9:14,10:16,11:18,14:c,15:u,17:l,19:[1,63],20:h,22:f,23:d,24:p,25:y,26:g,27:m,30:29,31:6,36:v,37:b,38:x,39:_,42:k,45:i},t(E,[2,19])],defaultActions:{7:[2,40],8:[2,1],9:[2,2],10:[2,3],47:[2,38],48:[2,39],50:[2,42]},parseError:function(t,e){if(!e.recoverable){var n=new Error(t);throw n.hash=e,n}this.trace(t)},parse:function(t){var e=this,n=[0],r=[],i=[null],a=[],o=this.table,s="",c=0,u=0,l=0,h=2,f=1,d=a.slice.call(arguments,1),p=Object.create(this.lexer),y={yy:{}};for(var g in this.yy)Object.prototype.hasOwnProperty.call(this.yy,g)&&(y.yy[g]=this.yy[g]);p.setInput(t,y.yy),y.yy.lexer=p,y.yy.parser=this,void 0===p.yylloc&&(p.yylloc={});var m=p.yylloc;a.push(m);var v=p.options&&p.options.ranges;function b(){var t;return"number"!=typeof(t=r.pop()||p.lex()||f)&&(t instanceof Array&&(t=(r=t).pop()),t=e.symbols_[t]||t),t}"function"==typeof y.yy.parseError?this.parseError=y.yy.parseError:this.parseError=Object.getPrototypeOf(this).parseError;for(var x,_,k,w,E,T,C,S,A,M={};;){if(k=n[n.length-1],this.defaultActions[k]?w=this.defaultActions[k]:(null==x&&(x=b()),w=o[k]&&o[k][x]),void 0===w||!w.length||!w[0]){var O="";for(T in A=[],o[k])this.terminals_[T]&&T>h&&A.push("'"+this.terminals_[T]+"'");O=p.showPosition?"Parse error on line "+(c+1)+":\n"+p.showPosition()+"\nExpecting "+A.join(", ")+", got '"+(this.terminals_[x]||x)+"'":"Parse error on line "+(c+1)+": Unexpected "+(x==f?"end of input":"'"+(this.terminals_[x]||x)+"'"),this.parseError(O,{text:p.match,token:this.terminals_[x]||x,line:p.yylineno,loc:m,expected:A})}if(w[0]instanceof Array&&w.length>1)throw new Error("Parse Error: multiple actions possible at state: "+k+", token: "+x);switch(w[0]){case 1:n.push(x),i.push(p.yytext),a.push(p.yylloc),n.push(w[1]),x=null,_?(x=_,_=null):(u=p.yyleng,s=p.yytext,c=p.yylineno,m=p.yylloc,l>0&&l--);break;case 2:if(C=this.productions_[w[1]][1],M.$=i[i.length-C],M._$={first_line:a[a.length-(C||1)].first_line,last_line:a[a.length-1].last_line,first_column:a[a.length-(C||1)].first_column,last_column:a[a.length-1].last_column},v&&(M._$.range=[a[a.length-(C||1)].range[0],a[a.length-1].range[1]]),void 0!==(E=this.performAction.apply(M,[s,u,c,y.yy,w[1],i,a].concat(d))))return E;C&&(n=n.slice(0,-1*C*2),i=i.slice(0,-1*C),a=a.slice(0,-1*C)),n.push(this.productions_[w[1]][0]),i.push(M.$),a.push(M._$),S=o[n[n.length-2]][n[n.length-1]],n.push(S);break;case 3:return!0}}return!0}},M={EOF:1,parseError:function(t,e){if(!this.yy.parser)throw new Error(t);this.yy.parser.parseError(t,e)},setInput:function(t,e){return this.yy=e||this.yy||{},this._input=t,this._more=this._backtrack=this.done=!1,this.yylineno=this.yyleng=0,this.yytext=this.matched=this.match="",this.conditionStack=["INITIAL"],this.yylloc={first_line:1,first_column:0,last_line:1,last_column:0},this.options.ranges&&(this.yylloc.range=[0,0]),this.offset=0,this},input:function(){var t=this._input[0];return this.yytext+=t,this.yyleng++,this.offset++,this.match+=t,this.matched+=t,t.match(/(?:\r\n?|\n).*/g)?(this.yylineno++,this.yylloc.last_line++):this.yylloc.last_column++,this.options.ranges&&this.yylloc.range[1]++,this._input=this._input.slice(1),t},unput:function(t){var e=t.length,n=t.split(/(?:\r\n?|\n)/g);this._input=t+this._input,this.yytext=this.yytext.substr(0,this.yytext.length-e),this.offset-=e;var r=this.match.split(/(?:\r\n?|\n)/g);this.match=this.match.substr(0,this.match.length-1),this.matched=this.matched.substr(0,this.matched.length-1),n.length-1&&(this.yylineno-=n.length-1);var i=this.yylloc.range;return this.yylloc={first_line:this.yylloc.first_line,last_line:this.yylineno+1,first_column:this.yylloc.first_column,last_column:n?(n.length===r.length?this.yylloc.first_column:0)+r[r.length-n.length].length-n[0].length:this.yylloc.first_column-e},this.options.ranges&&(this.yylloc.range=[i[0],i[0]+this.yyleng-e]),this.yyleng=this.yytext.length,this},more:function(){return this._more=!0,this},reject:function(){return this.options.backtrack_lexer?(this._backtrack=!0,this):this.parseError("Lexical error on line "+(this.yylineno+1)+". You can only invoke reject() in the lexer when the lexer is of the backtracking persuasion (options.backtrack_lexer = true).\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},less:function(t){this.unput(this.match.slice(t))},pastInput:function(){var t=this.matched.substr(0,this.matched.length-this.match.length);return(t.length>20?"...":"")+t.substr(-20).replace(/\n/g,"")},upcomingInput:function(){var t=this.match;return t.length<20&&(t+=this._input.substr(0,20-t.length)),(t.substr(0,20)+(t.length>20?"...":"")).replace(/\n/g,"")},showPosition:function(){var t=this.pastInput(),e=new Array(t.length+1).join("-");return t+this.upcomingInput()+"\n"+e+"^"},test_match:function(t,e){var n,r,i;if(this.options.backtrack_lexer&&(i={yylineno:this.yylineno,yylloc:{first_line:this.yylloc.first_line,last_line:this.last_line,first_column:this.yylloc.first_column,last_column:this.yylloc.last_column},yytext:this.yytext,match:this.match,matches:this.matches,matched:this.matched,yyleng:this.yyleng,offset:this.offset,_more:this._more,_input:this._input,yy:this.yy,conditionStack:this.conditionStack.slice(0),done:this.done},this.options.ranges&&(i.yylloc.range=this.yylloc.range.slice(0))),(r=t[0].match(/(?:\r\n?|\n).*/g))&&(this.yylineno+=r.length),this.yylloc={first_line:this.yylloc.last_line,last_line:this.yylineno+1,first_column:this.yylloc.last_column,last_column:r?r[r.length-1].length-r[r.length-1].match(/\r?\n?/)[0].length:this.yylloc.last_column+t[0].length},this.yytext+=t[0],this.match+=t[0],this.matches=t,this.yyleng=this.yytext.length,this.options.ranges&&(this.yylloc.range=[this.offset,this.offset+=this.yyleng]),this._more=!1,this._backtrack=!1,this._input=this._input.slice(t[0].length),this.matched+=t[0],n=this.performAction.call(this,this.yy,this,e,this.conditionStack[this.conditionStack.length-1]),this.done&&this._input&&(this.done=!1),n)return n;if(this._backtrack){for(var a in i)this[a]=i[a];return!1}return!1},next:function(){if(this.done)return this.EOF;var t,e,n,r;this._input||(this.done=!0),this._more||(this.yytext="",this.match="");for(var i=this._currentRules(),a=0;a<i.length;a++)if((n=this._input.match(this.rules[i[a]]))&&(!e||n[0].length>e[0].length)){if(e=n,r=a,this.options.backtrack_lexer){if(!1!==(t=this.test_match(n,i[a])))return t;if(this._backtrack){e=!1;continue}return!1}if(!this.options.flex)break}return e?!1!==(t=this.test_match(e,i[r]))&&t:""===this._input?this.EOF:this.parseError("Lexical error on line "+(this.yylineno+1)+". Unrecognized text.\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},lex:function(){var t=this.next();return t||this.lex()},begin:function(t){this.conditionStack.push(t)},popState:function(){return this.conditionStack.length-1>0?this.conditionStack.pop():this.conditionStack[0]},_currentRules:function(){return this.conditionStack.length&&this.conditionStack[this.conditionStack.length-1]?this.conditions[this.conditionStack[this.conditionStack.length-1]].rules:this.conditions.INITIAL.rules},topState:function(t){return(t=this.conditionStack.length-1-Math.abs(t||0))>=0?this.conditionStack[t]:"INITIAL"},pushState:function(t){this.begin(t)},stateStackSize:function(){return this.conditionStack.length},options:{"case-insensitive":!0},performAction:function(t,e,n,r){switch(n){case 0:return 36;case 1:return 37;case 2:return 38;case 3:return 39;case 4:return this.begin("open_directive"),45;case 5:return this.begin("type_directive"),46;case 6:return this.popState(),this.begin("arg_directive"),34;case 7:return this.popState(),this.popState(),48;case 8:return 47;case 9:case 10:break;case 11:return 5;case 12:case 13:case 14:case 15:break;case 16:return this.pushState("SCALE"),15;case 17:return 16;case 18:this.popState();break;case 19:this.pushState("STATE");break;case 20:return this.popState(),e.yytext=e.yytext.slice(0,-8).trim(),23;case 21:return this.popState(),e.yytext=e.yytext.slice(0,-8).trim(),24;case 22:return this.popState(),e.yytext=e.yytext.slice(0,-10).trim(),25;case 23:return this.popState(),e.yytext=e.yytext.slice(0,-8).trim(),23;case 24:return this.popState(),e.yytext=e.yytext.slice(0,-8).trim(),24;case 25:return this.popState(),e.yytext=e.yytext.slice(0,-10).trim(),25;case 26:return 36;case 27:return 37;case 28:return 38;case 29:return 39;case 30:this.begin("STATE_STRING");break;case 31:return this.popState(),this.pushState("STATE_ID"),"AS";case 32:return this.popState(),"ID";case 33:this.popState();break;case 34:return"STATE_DESCR";case 35:return 17;case 36:this.popState();break;case 37:return this.popState(),this.pushState("struct"),18;case 38:return this.popState(),19;case 39:break;case 40:return this.begin("NOTE"),27;case 41:return this.popState(),this.pushState("NOTE_ID"),43;case 42:return this.popState(),this.pushState("NOTE_ID"),44;case 43:this.popState(),this.pushState("FLOATING_NOTE");break;case 44:return this.popState(),this.pushState("FLOATING_NOTE_ID"),"AS";case 45:break;case 46:return"NOTE_TEXT";case 47:return this.popState(),"ID";case 48:return this.popState(),this.pushState("NOTE_TEXT"),22;case 49:return this.popState(),e.yytext=e.yytext.substr(2).trim(),29;case 50:return this.popState(),e.yytext=e.yytext.slice(0,-8).trim(),29;case 51:case 52:return 7;case 53:return 14;case 54:return 42;case 55:return 22;case 56:return e.yytext=e.yytext.trim(),12;case 57:return 13;case 58:return 26;case 59:return 5;case 60:return"INVALID"}},rules:[/^(?:.*direction\s+TB[^\n]*)/i,/^(?:.*direction\s+BT[^\n]*)/i,/^(?:.*direction\s+RL[^\n]*)/i,/^(?:.*direction\s+LR[^\n]*)/i,/^(?:%%\{)/i,/^(?:((?:(?!\}%%)[^:.])*))/i,/^(?::)/i,/^(?:\}%%)/i,/^(?:((?:(?!\}%%).|\n)*))/i,/^(?:%%(?!\{)[^\n]*)/i,/^(?:[^\}]%%[^\n]*)/i,/^(?:[\n]+)/i,/^(?:[\s]+)/i,/^(?:((?!\n)\s)+)/i,/^(?:#[^\n]*)/i,/^(?:%[^\n]*)/i,/^(?:scale\s+)/i,/^(?:\d+)/i,/^(?:\s+width\b)/i,/^(?:state\s+)/i,/^(?:.*<<fork>>)/i,/^(?:.*<<join>>)/i,/^(?:.*<<choice>>)/i,/^(?:.*\[\[fork\]\])/i,/^(?:.*\[\[join\]\])/i,/^(?:.*\[\[choice\]\])/i,/^(?:.*direction\s+TB[^\n]*)/i,/^(?:.*direction\s+BT[^\n]*)/i,/^(?:.*direction\s+RL[^\n]*)/i,/^(?:.*direction\s+LR[^\n]*)/i,/^(?:["])/i,/^(?:\s*as\s+)/i,/^(?:[^\n\{]*)/i,/^(?:["])/i,/^(?:[^"]*)/i,/^(?:[^\n\s\{]+)/i,/^(?:\n)/i,/^(?:\{)/i,/^(?:\})/i,/^(?:[\n])/i,/^(?:note\s+)/i,/^(?:left of\b)/i,/^(?:right of\b)/i,/^(?:")/i,/^(?:\s*as\s*)/i,/^(?:["])/i,/^(?:[^"]*)/i,/^(?:[^\n]*)/i,/^(?:\s*[^:\n\s\-]+)/i,/^(?:\s*:[^:\n;]+)/i,/^(?:[\s\S]*?end note\b)/i,/^(?:stateDiagram\s+)/i,/^(?:stateDiagram-v2\s+)/i,/^(?:hide empty description\b)/i,/^(?:\[\*\])/i,/^(?:[^:\n\s\-\{]+)/i,/^(?:\s*:[^:\n;]+)/i,/^(?:-->)/i,/^(?:--)/i,/^(?:$)/i,/^(?:.)/i],conditions:{LINE:{rules:[13,14],inclusive:!1},close_directive:{rules:[13,14],inclusive:!1},arg_directive:{rules:[7,8,13,14],inclusive:!1},type_directive:{rules:[6,7,13,14],inclusive:!1},open_directive:{rules:[5,13,14],inclusive:!1},struct:{rules:[13,14,19,26,27,28,29,38,39,40,54,55,56,57,58],inclusive:!1},FLOATING_NOTE_ID:{rules:[47],inclusive:!1},FLOATING_NOTE:{rules:[44,45,46],inclusive:!1},NOTE_TEXT:{rules:[49,50],inclusive:!1},NOTE_ID:{rules:[48],inclusive:!1},NOTE:{rules:[41,42,43],inclusive:!1},SCALE:{rules:[17,18],inclusive:!1},ALIAS:{rules:[],inclusive:!1},STATE_ID:{rules:[32],inclusive:!1},STATE_STRING:{rules:[33,34],inclusive:!1},FORK_STATE:{rules:[],inclusive:!1},STATE:{rules:[13,14,20,21,22,23,24,25,30,31,35,36,37],inclusive:!1},ID:{rules:[13,14],inclusive:!1},INITIAL:{rules:[0,1,2,3,4,9,10,11,12,14,15,16,19,37,40,51,52,53,54,55,56,57,59,60],inclusive:!0}}};function O(){this.yy={}}return A.lexer=M,O.prototype=A,A.Parser=O,new O}();e.parser=i,e.Parser=i.Parser,e.parse=function(){return i.parse.apply(i,arguments)},e.main=function(r){r[1]||(console.log("Usage: "+r[0]+" FILE"),t.exit(1));var i=n(17).readFileSync(n(18).normalize(r[1]),"utf8");return e.parser.parse(i)},n.c[n.s]===r&&e.main(t.argv.slice(1))}).call(this,n(12),n(7)(t))},function(t,e,n){(function(t){t.exports=function(){"use strict";var e,r;function i(){return e.apply(null,arguments)}function a(t){return t instanceof Array||"[object Array]"===Object.prototype.toString.call(t)}function o(t){return null!=t&&"[object Object]"===Object.prototype.toString.call(t)}function s(t){return void 0===t}function c(t){return"number"==typeof t||"[object Number]"===Object.prototype.toString.call(t)}function u(t){return t instanceof Date||"[object Date]"===Object.prototype.toString.call(t)}function l(t,e){var n,r=[];for(n=0;n<t.length;++n)r.push(e(t[n],n));return r}function h(t,e){return Object.prototype.hasOwnProperty.call(t,e)}function f(t,e){for(var n in e)h(e,n)&&(t[n]=e[n]);return h(e,"toString")&&(t.toString=e.toString),h(e,"valueOf")&&(t.valueOf=e.valueOf),t}function d(t,e,n,r){return be(t,e,n,r,!0).utc()}function p(t){return null==t._pf&&(t._pf={empty:!1,unusedTokens:[],unusedInput:[],overflow:-2,charsLeftOver:0,nullInput:!1,invalidMonth:null,invalidFormat:!1,userInvalidated:!1,iso:!1,parsedDateParts:[],meridiem:null,rfc2822:!1,weekdayMismatch:!1}),t._pf}function y(t){if(null==t._isValid){var e=p(t),n=r.call(e.parsedDateParts,(function(t){return null!=t})),i=!isNaN(t._d.getTime())&&e.overflow<0&&!e.empty&&!e.invalidMonth&&!e.invalidWeekday&&!e.weekdayMismatch&&!e.nullInput&&!e.invalidFormat&&!e.userInvalidated&&(!e.meridiem||e.meridiem&&n);if(t._strict&&(i=i&&0===e.charsLeftOver&&0===e.unusedTokens.length&&void 0===e.bigHour),null!=Object.isFrozen&&Object.isFrozen(t))return i;t._isValid=i}return t._isValid}function g(t){var e=d(NaN);return null!=t?f(p(e),t):p(e).userInvalidated=!0,e}r=Array.prototype.some?Array.prototype.some:function(t){for(var e=Object(this),n=e.length>>>0,r=0;r<n;r++)if(r in e&&t.call(this,e[r],r,e))return!0;return!1};var m=i.momentProperties=[];function v(t,e){var n,r,i;if(s(e._isAMomentObject)||(t._isAMomentObject=e._isAMomentObject),s(e._i)||(t._i=e._i),s(e._f)||(t._f=e._f),s(e._l)||(t._l=e._l),s(e._strict)||(t._strict=e._strict),s(e._tzm)||(t._tzm=e._tzm),s(e._isUTC)||(t._isUTC=e._isUTC),s(e._offset)||(t._offset=e._offset),s(e._pf)||(t._pf=p(e)),s(e._locale)||(t._locale=e._locale),0<m.length)for(n=0;n<m.length;n++)s(i=e[r=m[n]])||(t[r]=i);return t}var b=!1;function x(t){v(this,t),this._d=new Date(null!=t._d?t._d.getTime():NaN),this.isValid()||(this._d=new Date(NaN)),!1===b&&(b=!0,i.updateOffset(this),b=!1)}function _(t){return t instanceof x||null!=t&&null!=t._isAMomentObject}function k(t){return t<0?Math.ceil(t)||0:Math.floor(t)}function w(t){var e=+t,n=0;return 0!==e&&isFinite(e)&&(n=k(e)),n}function E(t,e,n){var r,i=Math.min(t.length,e.length),a=Math.abs(t.length-e.length),o=0;for(r=0;r<i;r++)(n&&t[r]!==e[r]||!n&&w(t[r])!==w(e[r]))&&o++;return o+a}function T(t){!1===i.suppressDeprecationWarnings&&"undefined"!=typeof console&&console.warn&&console.warn("Deprecation warning: "+t)}function C(t,e){var n=!0;return f((function(){if(null!=i.deprecationHandler&&i.deprecationHandler(null,t),n){for(var r,a=[],o=0;o<arguments.length;o++){if(r="","object"==typeof arguments[o]){for(var s in r+="\n["+o+"] ",arguments[0])r+=s+": "+arguments[0][s]+", ";r=r.slice(0,-2)}else r=arguments[o];a.push(r)}T(t+"\nArguments: "+Array.prototype.slice.call(a).join("")+"\n"+(new Error).stack),n=!1}return e.apply(this,arguments)}),e)}var S,A={};function M(t,e){null!=i.deprecationHandler&&i.deprecationHandler(t,e),A[t]||(T(e),A[t]=!0)}function O(t){return t instanceof Function||"[object Function]"===Object.prototype.toString.call(t)}function N(t,e){var n,r=f({},t);for(n in e)h(e,n)&&(o(t[n])&&o(e[n])?(r[n]={},f(r[n],t[n]),f(r[n],e[n])):null!=e[n]?r[n]=e[n]:delete r[n]);for(n in t)h(t,n)&&!h(e,n)&&o(t[n])&&(r[n]=f({},r[n]));return r}function B(t){null!=t&&this.set(t)}i.suppressDeprecationWarnings=!1,i.deprecationHandler=null,S=Object.keys?Object.keys:function(t){var e,n=[];for(e in t)h(t,e)&&n.push(e);return n};var D={};function L(t,e){var n=t.toLowerCase();D[n]=D[n+"s"]=D[e]=t}function I(t){return"string"==typeof t?D[t]||D[t.toLowerCase()]:void 0}function R(t){var e,n,r={};for(n in t)h(t,n)&&(e=I(n))&&(r[e]=t[n]);return r}var F={};function P(t,e){F[t]=e}function j(t,e,n){var r=""+Math.abs(t),i=e-r.length;return(0<=t?n?"+":"":"-")+Math.pow(10,Math.max(0,i)).toString().substr(1)+r}var Y=/(\[[^\[]*\])|(\\)?([Hh]mm(ss)?|Mo|MM?M?M?|Do|DDDo|DD?D?D?|ddd?d?|do?|w[o|w]?|W[o|W]?|Qo?|YYYYYY|YYYYY|YYYY|YY|gg(ggg?)?|GG(GGG?)?|e|E|a|A|hh?|HH?|kk?|mm?|ss?|S{1,9}|x|X|zz?|ZZ?|.)/g,z=/(\[[^\[]*\])|(\\)?(LTS|LT|LL?L?L?|l{1,4})/g,U={},$={};function q(t,e,n,r){var i=r;"string"==typeof r&&(i=function(){return this[r]()}),t&&($[t]=i),e&&($[e[0]]=function(){return j(i.apply(this,arguments),e[1],e[2])}),n&&($[n]=function(){return this.localeData().ordinal(i.apply(this,arguments),t)})}function W(t,e){return t.isValid()?(e=H(e,t.localeData()),U[e]=U[e]||function(t){var e,n,r,i=t.match(Y);for(e=0,n=i.length;e<n;e++)$[i[e]]?i[e]=$[i[e]]:i[e]=(r=i[e]).match(/\[[\s\S]/)?r.replace(/^\[|\]$/g,""):r.replace(/\\/g,"");return function(e){var r,a="";for(r=0;r<n;r++)a+=O(i[r])?i[r].call(e,t):i[r];return a}}(e),U[e](t)):t.localeData().invalidDate()}function H(t,e){var n=5;function r(t){return e.longDateFormat(t)||t}for(z.lastIndex=0;0<=n&&z.test(t);)t=t.replace(z,r),z.lastIndex=0,n-=1;return t}var V=/\d/,G=/\d\d/,X=/\d{3}/,Z=/\d{4}/,K=/[+-]?\d{6}/,Q=/\d\d?/,J=/\d\d\d\d?/,tt=/\d\d\d\d\d\d?/,et=/\d{1,3}/,nt=/\d{1,4}/,rt=/[+-]?\d{1,6}/,it=/\d+/,at=/[+-]?\d+/,ot=/Z|[+-]\d\d:?\d\d/gi,st=/Z|[+-]\d\d(?::?\d\d)?/gi,ct=/[0-9]{0,256}['a-z\u00A0-\u05FF\u0700-\uD7FF\uF900-\uFDCF\uFDF0-\uFF07\uFF10-\uFFEF]{1,256}|[\u0600-\u06FF\/]{1,256}(\s*?[\u0600-\u06FF]{1,256}){1,2}/i,ut={};function lt(t,e,n){ut[t]=O(e)?e:function(t,r){return t&&n?n:e}}function ht(t,e){return h(ut,t)?ut[t](e._strict,e._locale):new RegExp(ft(t.replace("\\","").replace(/\\(\[)|\\(\])|\[([^\]\[]*)\]|\\(.)/g,(function(t,e,n,r,i){return e||n||r||i}))))}function ft(t){return t.replace(/[-\/\\^$*+?.()|[\]{}]/g,"\\$&")}var dt={};function pt(t,e){var n,r=e;for("string"==typeof t&&(t=[t]),c(e)&&(r=function(t,n){n[e]=w(t)}),n=0;n<t.length;n++)dt[t[n]]=r}function yt(t,e){pt(t,(function(t,n,r,i){r._w=r._w||{},e(t,r._w,r,i)}))}function gt(t){return mt(t)?366:365}function mt(t){return t%4==0&&t%100!=0||t%400==0}q("Y",0,0,(function(){var t=this.year();return t<=9999?""+t:"+"+t})),q(0,["YY",2],0,(function(){return this.year()%100})),q(0,["YYYY",4],0,"year"),q(0,["YYYYY",5],0,"year"),q(0,["YYYYYY",6,!0],0,"year"),L("year","y"),P("year",1),lt("Y",at),lt("YY",Q,G),lt("YYYY",nt,Z),lt("YYYYY",rt,K),lt("YYYYYY",rt,K),pt(["YYYYY","YYYYYY"],0),pt("YYYY",(function(t,e){e[0]=2===t.length?i.parseTwoDigitYear(t):w(t)})),pt("YY",(function(t,e){e[0]=i.parseTwoDigitYear(t)})),pt("Y",(function(t,e){e[0]=parseInt(t,10)})),i.parseTwoDigitYear=function(t){return w(t)+(68<w(t)?1900:2e3)};var vt,bt=xt("FullYear",!0);function xt(t,e){return function(n){return null!=n?(kt(this,t,n),i.updateOffset(this,e),this):_t(this,t)}}function _t(t,e){return t.isValid()?t._d["get"+(t._isUTC?"UTC":"")+e]():NaN}function kt(t,e,n){t.isValid()&&!isNaN(n)&&("FullYear"===e&&mt(t.year())&&1===t.month()&&29===t.date()?t._d["set"+(t._isUTC?"UTC":"")+e](n,t.month(),wt(n,t.month())):t._d["set"+(t._isUTC?"UTC":"")+e](n))}function wt(t,e){if(isNaN(t)||isNaN(e))return NaN;var n=(e%12+12)%12;return t+=(e-n)/12,1===n?mt(t)?29:28:31-n%7%2}vt=Array.prototype.indexOf?Array.prototype.indexOf:function(t){var e;for(e=0;e<this.length;++e)if(this[e]===t)return e;return-1},q("M",["MM",2],"Mo",(function(){return this.month()+1})),q("MMM",0,0,(function(t){return this.localeData().monthsShort(this,t)})),q("MMMM",0,0,(function(t){return this.localeData().months(this,t)})),L("month","M"),P("month",8),lt("M",Q),lt("MM",Q,G),lt("MMM",(function(t,e){return e.monthsShortRegex(t)})),lt("MMMM",(function(t,e){return e.monthsRegex(t)})),pt(["M","MM"],(function(t,e){e[1]=w(t)-1})),pt(["MMM","MMMM"],(function(t,e,n,r){var i=n._locale.monthsParse(t,r,n._strict);null!=i?e[1]=i:p(n).invalidMonth=t}));var Et=/D[oD]?(\[[^\[\]]*\]|\s)+MMMM?/,Tt="January_February_March_April_May_June_July_August_September_October_November_December".split("_"),Ct="Jan_Feb_Mar_Apr_May_Jun_Jul_Aug_Sep_Oct_Nov_Dec".split("_");function St(t,e){var n;if(!t.isValid())return t;if("string"==typeof e)if(/^\d+$/.test(e))e=w(e);else if(!c(e=t.localeData().monthsParse(e)))return t;return n=Math.min(t.date(),wt(t.year(),e)),t._d["set"+(t._isUTC?"UTC":"")+"Month"](e,n),t}function At(t){return null!=t?(St(this,t),i.updateOffset(this,!0),this):_t(this,"Month")}var Mt=ct,Ot=ct;function Nt(){function t(t,e){return e.length-t.length}var e,n,r=[],i=[],a=[];for(e=0;e<12;e++)n=d([2e3,e]),r.push(this.monthsShort(n,"")),i.push(this.months(n,"")),a.push(this.months(n,"")),a.push(this.monthsShort(n,""));for(r.sort(t),i.sort(t),a.sort(t),e=0;e<12;e++)r[e]=ft(r[e]),i[e]=ft(i[e]);for(e=0;e<24;e++)a[e]=ft(a[e]);this._monthsRegex=new RegExp("^("+a.join("|")+")","i"),this._monthsShortRegex=this._monthsRegex,this._monthsStrictRegex=new RegExp("^("+i.join("|")+")","i"),this._monthsShortStrictRegex=new RegExp("^("+r.join("|")+")","i")}function Bt(t){var e;if(t<100&&0<=t){var n=Array.prototype.slice.call(arguments);n[0]=t+400,e=new Date(Date.UTC.apply(null,n)),isFinite(e.getUTCFullYear())&&e.setUTCFullYear(t)}else e=new Date(Date.UTC.apply(null,arguments));return e}function Dt(t,e,n){var r=7+e-n;return-(7+Bt(t,0,r).getUTCDay()-e)%7+r-1}function Lt(t,e,n,r,i){var a,o,s=1+7*(e-1)+(7+n-r)%7+Dt(t,r,i);return o=s<=0?gt(a=t-1)+s:s>gt(t)?(a=t+1,s-gt(t)):(a=t,s),{year:a,dayOfYear:o}}function It(t,e,n){var r,i,a=Dt(t.year(),e,n),o=Math.floor((t.dayOfYear()-a-1)/7)+1;return o<1?r=o+Rt(i=t.year()-1,e,n):o>Rt(t.year(),e,n)?(r=o-Rt(t.year(),e,n),i=t.year()+1):(i=t.year(),r=o),{week:r,year:i}}function Rt(t,e,n){var r=Dt(t,e,n),i=Dt(t+1,e,n);return(gt(t)-r+i)/7}function Ft(t,e){return t.slice(e,7).concat(t.slice(0,e))}q("w",["ww",2],"wo","week"),q("W",["WW",2],"Wo","isoWeek"),L("week","w"),L("isoWeek","W"),P("week",5),P("isoWeek",5),lt("w",Q),lt("ww",Q,G),lt("W",Q),lt("WW",Q,G),yt(["w","ww","W","WW"],(function(t,e,n,r){e[r.substr(0,1)]=w(t)})),q("d",0,"do","day"),q("dd",0,0,(function(t){return this.localeData().weekdaysMin(this,t)})),q("ddd",0,0,(function(t){return this.localeData().weekdaysShort(this,t)})),q("dddd",0,0,(function(t){return this.localeData().weekdays(this,t)})),q("e",0,0,"weekday"),q("E",0,0,"isoWeekday"),L("day","d"),L("weekday","e"),L("isoWeekday","E"),P("day",11),P("weekday",11),P("isoWeekday",11),lt("d",Q),lt("e",Q),lt("E",Q),lt("dd",(function(t,e){return e.weekdaysMinRegex(t)})),lt("ddd",(function(t,e){return e.weekdaysShortRegex(t)})),lt("dddd",(function(t,e){return e.weekdaysRegex(t)})),yt(["dd","ddd","dddd"],(function(t,e,n,r){var i=n._locale.weekdaysParse(t,r,n._strict);null!=i?e.d=i:p(n).invalidWeekday=t})),yt(["d","e","E"],(function(t,e,n,r){e[r]=w(t)}));var Pt="Sunday_Monday_Tuesday_Wednesday_Thursday_Friday_Saturday".split("_"),jt="Sun_Mon_Tue_Wed_Thu_Fri_Sat".split("_"),Yt="Su_Mo_Tu_We_Th_Fr_Sa".split("_"),zt=ct,Ut=ct,$t=ct;function qt(){function t(t,e){return e.length-t.length}var e,n,r,i,a,o=[],s=[],c=[],u=[];for(e=0;e<7;e++)n=d([2e3,1]).day(e),r=this.weekdaysMin(n,""),i=this.weekdaysShort(n,""),a=this.weekdays(n,""),o.push(r),s.push(i),c.push(a),u.push(r),u.push(i),u.push(a);for(o.sort(t),s.sort(t),c.sort(t),u.sort(t),e=0;e<7;e++)s[e]=ft(s[e]),c[e]=ft(c[e]),u[e]=ft(u[e]);this._weekdaysRegex=new RegExp("^("+u.join("|")+")","i"),this._weekdaysShortRegex=this._weekdaysRegex,this._weekdaysMinRegex=this._weekdaysRegex,this._weekdaysStrictRegex=new RegExp("^("+c.join("|")+")","i"),this._weekdaysShortStrictRegex=new RegExp("^("+s.join("|")+")","i"),this._weekdaysMinStrictRegex=new RegExp("^("+o.join("|")+")","i")}function Wt(){return this.hours()%12||12}function Ht(t,e){q(t,0,0,(function(){return this.localeData().meridiem(this.hours(),this.minutes(),e)}))}function Vt(t,e){return e._meridiemParse}q("H",["HH",2],0,"hour"),q("h",["hh",2],0,Wt),q("k",["kk",2],0,(function(){return this.hours()||24})),q("hmm",0,0,(function(){return""+Wt.apply(this)+j(this.minutes(),2)})),q("hmmss",0,0,(function(){return""+Wt.apply(this)+j(this.minutes(),2)+j(this.seconds(),2)})),q("Hmm",0,0,(function(){return""+this.hours()+j(this.minutes(),2)})),q("Hmmss",0,0,(function(){return""+this.hours()+j(this.minutes(),2)+j(this.seconds(),2)})),Ht("a",!0),Ht("A",!1),L("hour","h"),P("hour",13),lt("a",Vt),lt("A",Vt),lt("H",Q),lt("h",Q),lt("k",Q),lt("HH",Q,G),lt("hh",Q,G),lt("kk",Q,G),lt("hmm",J),lt("hmmss",tt),lt("Hmm",J),lt("Hmmss",tt),pt(["H","HH"],3),pt(["k","kk"],(function(t,e,n){var r=w(t);e[3]=24===r?0:r})),pt(["a","A"],(function(t,e,n){n._isPm=n._locale.isPM(t),n._meridiem=t})),pt(["h","hh"],(function(t,e,n){e[3]=w(t),p(n).bigHour=!0})),pt("hmm",(function(t,e,n){var r=t.length-2;e[3]=w(t.substr(0,r)),e[4]=w(t.substr(r)),p(n).bigHour=!0})),pt("hmmss",(function(t,e,n){var r=t.length-4,i=t.length-2;e[3]=w(t.substr(0,r)),e[4]=w(t.substr(r,2)),e[5]=w(t.substr(i)),p(n).bigHour=!0})),pt("Hmm",(function(t,e,n){var r=t.length-2;e[3]=w(t.substr(0,r)),e[4]=w(t.substr(r))})),pt("Hmmss",(function(t,e,n){var r=t.length-4,i=t.length-2;e[3]=w(t.substr(0,r)),e[4]=w(t.substr(r,2)),e[5]=w(t.substr(i))}));var Gt,Xt=xt("Hours",!0),Zt={calendar:{sameDay:"[Today at] LT",nextDay:"[Tomorrow at] LT",nextWeek:"dddd [at] LT",lastDay:"[Yesterday at] LT",lastWeek:"[Last] dddd [at] LT",sameElse:"L"},longDateFormat:{LTS:"h:mm:ss A",LT:"h:mm A",L:"MM/DD/YYYY",LL:"MMMM D, YYYY",LLL:"MMMM D, YYYY h:mm A",LLLL:"dddd, MMMM D, YYYY h:mm A"},invalidDate:"Invalid date",ordinal:"%d",dayOfMonthOrdinalParse:/\d{1,2}/,relativeTime:{future:"in %s",past:"%s ago",s:"a few seconds",ss:"%d seconds",m:"a minute",mm:"%d minutes",h:"an hour",hh:"%d hours",d:"a day",dd:"%d days",M:"a month",MM:"%d months",y:"a year",yy:"%d years"},months:Tt,monthsShort:Ct,week:{dow:0,doy:6},weekdays:Pt,weekdaysMin:Yt,weekdaysShort:jt,meridiemParse:/[ap]\.?m?\.?/i},Kt={},Qt={};function Jt(t){return t?t.toLowerCase().replace("_","-"):t}function te(e){var r=null;if(!Kt[e]&&void 0!==t&&t&&t.exports)try{r=Gt._abbr,n(202)("./"+e),ee(r)}catch(e){}return Kt[e]}function ee(t,e){var n;return t&&((n=s(e)?re(t):ne(t,e))?Gt=n:"undefined"!=typeof console&&console.warn&&console.warn("Locale "+t+" not found. Did you forget to load it?")),Gt._abbr}function ne(t,e){if(null===e)return delete Kt[t],null;var n,r=Zt;if(e.abbr=t,null!=Kt[t])M("defineLocaleOverride","use moment.updateLocale(localeName, config) to change an existing locale. moment.defineLocale(localeName, config) should only be used for creating a new locale See http://momentjs.com/guides/#/warnings/define-locale/ for more info."),r=Kt[t]._config;else if(null!=e.parentLocale)if(null!=Kt[e.parentLocale])r=Kt[e.parentLocale]._config;else{if(null==(n=te(e.parentLocale)))return Qt[e.parentLocale]||(Qt[e.parentLocale]=[]),Qt[e.parentLocale].push({name:t,config:e}),null;r=n._config}return Kt[t]=new B(N(r,e)),Qt[t]&&Qt[t].forEach((function(t){ne(t.name,t.config)})),ee(t),Kt[t]}function re(t){var e;if(t&&t._locale&&t._locale._abbr&&(t=t._locale._abbr),!t)return Gt;if(!a(t)){if(e=te(t))return e;t=[t]}return function(t){for(var e,n,r,i,a=0;a<t.length;){for(e=(i=Jt(t[a]).split("-")).length,n=(n=Jt(t[a+1]))?n.split("-"):null;0<e;){if(r=te(i.slice(0,e).join("-")))return r;if(n&&n.length>=e&&E(i,n,!0)>=e-1)break;e--}a++}return Gt}(t)}function ie(t){var e,n=t._a;return n&&-2===p(t).overflow&&(e=n[1]<0||11<n[1]?1:n[2]<1||n[2]>wt(n[0],n[1])?2:n[3]<0||24<n[3]||24===n[3]&&(0!==n[4]||0!==n[5]||0!==n[6])?3:n[4]<0||59<n[4]?4:n[5]<0||59<n[5]?5:n[6]<0||999<n[6]?6:-1,p(t)._overflowDayOfYear&&(e<0||2<e)&&(e=2),p(t)._overflowWeeks&&-1===e&&(e=7),p(t)._overflowWeekday&&-1===e&&(e=8),p(t).overflow=e),t}function ae(t,e,n){return null!=t?t:null!=e?e:n}function oe(t){var e,n,r,a,o,s=[];if(!t._d){var c,u;for(c=t,u=new Date(i.now()),r=c._useUTC?[u.getUTCFullYear(),u.getUTCMonth(),u.getUTCDate()]:[u.getFullYear(),u.getMonth(),u.getDate()],t._w&&null==t._a[2]&&null==t._a[1]&&function(t){var e,n,r,i,a,o,s,c;if(null!=(e=t._w).GG||null!=e.W||null!=e.E)a=1,o=4,n=ae(e.GG,t._a[0],It(xe(),1,4).year),r=ae(e.W,1),((i=ae(e.E,1))<1||7<i)&&(c=!0);else{a=t._locale._week.dow,o=t._locale._week.doy;var u=It(xe(),a,o);n=ae(e.gg,t._a[0],u.year),r=ae(e.w,u.week),null!=e.d?((i=e.d)<0||6<i)&&(c=!0):null!=e.e?(i=e.e+a,(e.e<0||6<e.e)&&(c=!0)):i=a}r<1||r>Rt(n,a,o)?p(t)._overflowWeeks=!0:null!=c?p(t)._overflowWeekday=!0:(s=Lt(n,r,i,a,o),t._a[0]=s.year,t._dayOfYear=s.dayOfYear)}(t),null!=t._dayOfYear&&(o=ae(t._a[0],r[0]),(t._dayOfYear>gt(o)||0===t._dayOfYear)&&(p(t)._overflowDayOfYear=!0),n=Bt(o,0,t._dayOfYear),t._a[1]=n.getUTCMonth(),t._a[2]=n.getUTCDate()),e=0;e<3&&null==t._a[e];++e)t._a[e]=s[e]=r[e];for(;e<7;e++)t._a[e]=s[e]=null==t._a[e]?2===e?1:0:t._a[e];24===t._a[3]&&0===t._a[4]&&0===t._a[5]&&0===t._a[6]&&(t._nextDay=!0,t._a[3]=0),t._d=(t._useUTC?Bt:function(t,e,n,r,i,a,o){var s;return t<100&&0<=t?(s=new Date(t+400,e,n,r,i,a,o),isFinite(s.getFullYear())&&s.setFullYear(t)):s=new Date(t,e,n,r,i,a,o),s}).apply(null,s),a=t._useUTC?t._d.getUTCDay():t._d.getDay(),null!=t._tzm&&t._d.setUTCMinutes(t._d.getUTCMinutes()-t._tzm),t._nextDay&&(t._a[3]=24),t._w&&void 0!==t._w.d&&t._w.d!==a&&(p(t).weekdayMismatch=!0)}}var se=/^\s*((?:[+-]\d{6}|\d{4})-(?:\d\d-\d\d|W\d\d-\d|W\d\d|\d\d\d|\d\d))(?:(T| )(\d\d(?::\d\d(?::\d\d(?:[.,]\d+)?)?)?)([\+\-]\d\d(?::?\d\d)?|\s*Z)?)?$/,ce=/^\s*((?:[+-]\d{6}|\d{4})(?:\d\d\d\d|W\d\d\d|W\d\d|\d\d\d|\d\d))(?:(T| )(\d\d(?:\d\d(?:\d\d(?:[.,]\d+)?)?)?)([\+\-]\d\d(?::?\d\d)?|\s*Z)?)?$/,ue=/Z|[+-]\d\d(?::?\d\d)?/,le=[["YYYYYY-MM-DD",/[+-]\d{6}-\d\d-\d\d/],["YYYY-MM-DD",/\d{4}-\d\d-\d\d/],["GGGG-[W]WW-E",/\d{4}-W\d\d-\d/],["GGGG-[W]WW",/\d{4}-W\d\d/,!1],["YYYY-DDD",/\d{4}-\d{3}/],["YYYY-MM",/\d{4}-\d\d/,!1],["YYYYYYMMDD",/[+-]\d{10}/],["YYYYMMDD",/\d{8}/],["GGGG[W]WWE",/\d{4}W\d{3}/],["GGGG[W]WW",/\d{4}W\d{2}/,!1],["YYYYDDD",/\d{7}/]],he=[["HH:mm:ss.SSSS",/\d\d:\d\d:\d\d\.\d+/],["HH:mm:ss,SSSS",/\d\d:\d\d:\d\d,\d+/],["HH:mm:ss",/\d\d:\d\d:\d\d/],["HH:mm",/\d\d:\d\d/],["HHmmss.SSSS",/\d\d\d\d\d\d\.\d+/],["HHmmss,SSSS",/\d\d\d\d\d\d,\d+/],["HHmmss",/\d\d\d\d\d\d/],["HHmm",/\d\d\d\d/],["HH",/\d\d/]],fe=/^\/?Date\((\-?\d+)/i;function de(t){var e,n,r,i,a,o,s=t._i,c=se.exec(s)||ce.exec(s);if(c){for(p(t).iso=!0,e=0,n=le.length;e<n;e++)if(le[e][1].exec(c[1])){i=le[e][0],r=!1!==le[e][2];break}if(null==i)return void(t._isValid=!1);if(c[3]){for(e=0,n=he.length;e<n;e++)if(he[e][1].exec(c[3])){a=(c[2]||" ")+he[e][0];break}if(null==a)return void(t._isValid=!1)}if(!r&&null!=a)return void(t._isValid=!1);if(c[4]){if(!ue.exec(c[4]))return void(t._isValid=!1);o="Z"}t._f=i+(a||"")+(o||""),me(t)}else t._isValid=!1}var pe=/^(?:(Mon|Tue|Wed|Thu|Fri|Sat|Sun),?\s)?(\d{1,2})\s(Jan|Feb|Mar|Apr|May|Jun|Jul|Aug|Sep|Oct|Nov|Dec)\s(\d{2,4})\s(\d\d):(\d\d)(?::(\d\d))?\s(?:(UT|GMT|[ECMP][SD]T)|([Zz])|([+-]\d{4}))$/,ye={UT:0,GMT:0,EDT:-240,EST:-300,CDT:-300,CST:-360,MDT:-360,MST:-420,PDT:-420,PST:-480};function ge(t){var e,n,r,i=pe.exec(t._i.replace(/\([^)]*\)|[\n\t]/g," ").replace(/(\s\s+)/g," ").replace(/^\s\s*/,"").replace(/\s\s*$/,""));if(i){var a=function(t,e,n,r,i,a){var o=[function(t){var e=parseInt(t,10);return e<=49?2e3+e:e<=999?1900+e:e}(t),Ct.indexOf(e),parseInt(n,10),parseInt(r,10),parseInt(i,10)];return a&&o.push(parseInt(a,10)),o}(i[4],i[3],i[2],i[5],i[6],i[7]);if(n=a,r=t,(e=i[1])&&jt.indexOf(e)!==new Date(n[0],n[1],n[2]).getDay()&&(p(r).weekdayMismatch=!0,!(r._isValid=!1)))return;t._a=a,t._tzm=function(t,e,n){if(t)return ye[t];if(e)return 0;var r=parseInt(n,10),i=r%100;return(r-i)/100*60+i}(i[8],i[9],i[10]),t._d=Bt.apply(null,t._a),t._d.setUTCMinutes(t._d.getUTCMinutes()-t._tzm),p(t).rfc2822=!0}else t._isValid=!1}function me(t){if(t._f!==i.ISO_8601)if(t._f!==i.RFC_2822){t._a=[],p(t).empty=!0;var e,n,r,a,o,s,c,u,l=""+t._i,f=l.length,d=0;for(r=H(t._f,t._locale).match(Y)||[],e=0;e<r.length;e++)a=r[e],(n=(l.match(ht(a,t))||[])[0])&&(0<(o=l.substr(0,l.indexOf(n))).length&&p(t).unusedInput.push(o),l=l.slice(l.indexOf(n)+n.length),d+=n.length),$[a]?(n?p(t).empty=!1:p(t).unusedTokens.push(a),s=a,u=t,null!=(c=n)&&h(dt,s)&&dt[s](c,u._a,u,s)):t._strict&&!n&&p(t).unusedTokens.push(a);p(t).charsLeftOver=f-d,0<l.length&&p(t).unusedInput.push(l),t._a[3]<=12&&!0===p(t).bigHour&&0<t._a[3]&&(p(t).bigHour=void 0),p(t).parsedDateParts=t._a.slice(0),p(t).meridiem=t._meridiem,t._a[3]=function(t,e,n){var r;return null==n?e:null!=t.meridiemHour?t.meridiemHour(e,n):(null!=t.isPM&&((r=t.isPM(n))&&e<12&&(e+=12),r||12!==e||(e=0)),e)}(t._locale,t._a[3],t._meridiem),oe(t),ie(t)}else ge(t);else de(t)}function ve(t){var e,n,r,h,d=t._i,m=t._f;return t._locale=t._locale||re(t._l),null===d||void 0===m&&""===d?g({nullInput:!0}):("string"==typeof d&&(t._i=d=t._locale.preparse(d)),_(d)?new x(ie(d)):(u(d)?t._d=d:a(m)?function(t){var e,n,r,i,a;if(0===t._f.length)return p(t).invalidFormat=!0,t._d=new Date(NaN);for(i=0;i<t._f.length;i++)a=0,e=v({},t),null!=t._useUTC&&(e._useUTC=t._useUTC),e._f=t._f[i],me(e),y(e)&&(a+=p(e).charsLeftOver,a+=10*p(e).unusedTokens.length,p(e).score=a,(null==r||a<r)&&(r=a,n=e));f(t,n||e)}(t):m?me(t):s(n=(e=t)._i)?e._d=new Date(i.now()):u(n)?e._d=new Date(n.valueOf()):"string"==typeof n?(r=e,null===(h=fe.exec(r._i))?(de(r),!1===r._isValid&&(delete r._isValid,ge(r),!1===r._isValid&&(delete r._isValid,i.createFromInputFallback(r)))):r._d=new Date(+h[1])):a(n)?(e._a=l(n.slice(0),(function(t){return parseInt(t,10)})),oe(e)):o(n)?function(t){if(!t._d){var e=R(t._i);t._a=l([e.year,e.month,e.day||e.date,e.hour,e.minute,e.second,e.millisecond],(function(t){return t&&parseInt(t,10)})),oe(t)}}(e):c(n)?e._d=new Date(n):i.createFromInputFallback(e),y(t)||(t._d=null),t))}function be(t,e,n,r,i){var s,c={};return!0!==n&&!1!==n||(r=n,n=void 0),(o(t)&&function(t){if(Object.getOwnPropertyNames)return 0===Object.getOwnPropertyNames(t).length;var e;for(e in t)if(t.hasOwnProperty(e))return!1;return!0}(t)||a(t)&&0===t.length)&&(t=void 0),c._isAMomentObject=!0,c._useUTC=c._isUTC=i,c._l=n,c._i=t,c._f=e,c._strict=r,(s=new x(ie(ve(c))))._nextDay&&(s.add(1,"d"),s._nextDay=void 0),s}function xe(t,e,n,r){return be(t,e,n,r,!1)}i.createFromInputFallback=C("value provided is not in a recognized RFC2822 or ISO format. moment construction falls back to js Date(), which is not reliable across all browsers and versions. Non RFC2822/ISO date formats are discouraged and will be removed in an upcoming major release. Please refer to http://momentjs.com/guides/#/warnings/js-date/ for more info.",(function(t){t._d=new Date(t._i+(t._useUTC?" UTC":""))})),i.ISO_8601=function(){},i.RFC_2822=function(){};var _e=C("moment().min is deprecated, use moment.max instead. http://momentjs.com/guides/#/warnings/min-max/",(function(){var t=xe.apply(null,arguments);return this.isValid()&&t.isValid()?t<this?this:t:g()})),ke=C("moment().max is deprecated, use moment.min instead. http://momentjs.com/guides/#/warnings/min-max/",(function(){var t=xe.apply(null,arguments);return this.isValid()&&t.isValid()?this<t?this:t:g()}));function we(t,e){var n,r;if(1===e.length&&a(e[0])&&(e=e[0]),!e.length)return xe();for(n=e[0],r=1;r<e.length;++r)e[r].isValid()&&!e[r][t](n)||(n=e[r]);return n}var Ee=["year","quarter","month","week","day","hour","minute","second","millisecond"];function Te(t){var e=R(t),n=e.year||0,r=e.quarter||0,i=e.month||0,a=e.week||e.isoWeek||0,o=e.day||0,s=e.hour||0,c=e.minute||0,u=e.second||0,l=e.millisecond||0;this._isValid=function(t){for(var e in t)if(-1===vt.call(Ee,e)||null!=t[e]&&isNaN(t[e]))return!1;for(var n=!1,r=0;r<Ee.length;++r)if(t[Ee[r]]){if(n)return!1;parseFloat(t[Ee[r]])!==w(t[Ee[r]])&&(n=!0)}return!0}(e),this._milliseconds=+l+1e3*u+6e4*c+1e3*s*60*60,this._days=+o+7*a,this._months=+i+3*r+12*n,this._data={},this._locale=re(),this._bubble()}function Ce(t){return t instanceof Te}function Se(t){return t<0?-1*Math.round(-1*t):Math.round(t)}function Ae(t,e){q(t,0,0,(function(){var t=this.utcOffset(),n="+";return t<0&&(t=-t,n="-"),n+j(~~(t/60),2)+e+j(~~t%60,2)}))}Ae("Z",":"),Ae("ZZ",""),lt("Z",st),lt("ZZ",st),pt(["Z","ZZ"],(function(t,e,n){n._useUTC=!0,n._tzm=Oe(st,t)}));var Me=/([\+\-]|\d\d)/gi;function Oe(t,e){var n=(e||"").match(t);if(null===n)return null;var r=((n[n.length-1]||[])+"").match(Me)||["-",0,0],i=60*r[1]+w(r[2]);return 0===i?0:"+"===r[0]?i:-i}function Ne(t,e){var n,r;return e._isUTC?(n=e.clone(),r=(_(t)||u(t)?t.valueOf():xe(t).valueOf())-n.valueOf(),n._d.setTime(n._d.valueOf()+r),i.updateOffset(n,!1),n):xe(t).local()}function Be(t){return 15*-Math.round(t._d.getTimezoneOffset()/15)}function De(){return!!this.isValid()&&this._isUTC&&0===this._offset}i.updateOffset=function(){};var Le=/^(\-|\+)?(?:(\d*)[. ])?(\d+)\:(\d+)(?:\:(\d+)(\.\d*)?)?$/,Ie=/^(-|\+)?P(?:([-+]?[0-9,.]*)Y)?(?:([-+]?[0-9,.]*)M)?(?:([-+]?[0-9,.]*)W)?(?:([-+]?[0-9,.]*)D)?(?:T(?:([-+]?[0-9,.]*)H)?(?:([-+]?[0-9,.]*)M)?(?:([-+]?[0-9,.]*)S)?)?$/;function Re(t,e){var n,r,i,a=t,o=null;return Ce(t)?a={ms:t._milliseconds,d:t._days,M:t._months}:c(t)?(a={},e?a[e]=t:a.milliseconds=t):(o=Le.exec(t))?(n="-"===o[1]?-1:1,a={y:0,d:w(o[2])*n,h:w(o[3])*n,m:w(o[4])*n,s:w(o[5])*n,ms:w(Se(1e3*o[6]))*n}):(o=Ie.exec(t))?(n="-"===o[1]?-1:1,a={y:Fe(o[2],n),M:Fe(o[3],n),w:Fe(o[4],n),d:Fe(o[5],n),h:Fe(o[6],n),m:Fe(o[7],n),s:Fe(o[8],n)}):null==a?a={}:"object"==typeof a&&("from"in a||"to"in a)&&(i=function(t,e){var n;return t.isValid()&&e.isValid()?(e=Ne(e,t),t.isBefore(e)?n=Pe(t,e):((n=Pe(e,t)).milliseconds=-n.milliseconds,n.months=-n.months),n):{milliseconds:0,months:0}}(xe(a.from),xe(a.to)),(a={}).ms=i.milliseconds,a.M=i.months),r=new Te(a),Ce(t)&&h(t,"_locale")&&(r._locale=t._locale),r}function Fe(t,e){var n=t&&parseFloat(t.replace(",","."));return(isNaN(n)?0:n)*e}function Pe(t,e){var n={};return n.months=e.month()-t.month()+12*(e.year()-t.year()),t.clone().add(n.months,"M").isAfter(e)&&--n.months,n.milliseconds=+e-+t.clone().add(n.months,"M"),n}function je(t,e){return function(n,r){var i;return null===r||isNaN(+r)||(M(e,"moment()."+e+"(period, number) is deprecated. Please use moment()."+e+"(number, period). See http://momentjs.com/guides/#/warnings/add-inverted-param/ for more info."),i=n,n=r,r=i),Ye(this,Re(n="string"==typeof n?+n:n,r),t),this}}function Ye(t,e,n,r){var a=e._milliseconds,o=Se(e._days),s=Se(e._months);t.isValid()&&(r=null==r||r,s&&St(t,_t(t,"Month")+s*n),o&&kt(t,"Date",_t(t,"Date")+o*n),a&&t._d.setTime(t._d.valueOf()+a*n),r&&i.updateOffset(t,o||s))}Re.fn=Te.prototype,Re.invalid=function(){return Re(NaN)};var ze=je(1,"add"),Ue=je(-1,"subtract");function $e(t,e){var n=12*(e.year()-t.year())+(e.month()-t.month()),r=t.clone().add(n,"months");return-(n+(e-r<0?(e-r)/(r-t.clone().add(n-1,"months")):(e-r)/(t.clone().add(n+1,"months")-r)))||0}function qe(t){var e;return void 0===t?this._locale._abbr:(null!=(e=re(t))&&(this._locale=e),this)}i.defaultFormat="YYYY-MM-DDTHH:mm:ssZ",i.defaultFormatUtc="YYYY-MM-DDTHH:mm:ss[Z]";var We=C("moment().lang() is deprecated. Instead, use moment().localeData() to get the language configuration. Use moment().locale() to change languages.",(function(t){return void 0===t?this.localeData():this.locale(t)}));function He(){return this._locale}var Ve=126227808e5;function Ge(t,e){return(t%e+e)%e}function Xe(t,e,n){return t<100&&0<=t?new Date(t+400,e,n)-Ve:new Date(t,e,n).valueOf()}function Ze(t,e,n){return t<100&&0<=t?Date.UTC(t+400,e,n)-Ve:Date.UTC(t,e,n)}function Ke(t,e){q(0,[t,t.length],0,e)}function Qe(t,e,n,r,i){var a;return null==t?It(this,r,i).year:((a=Rt(t,r,i))<e&&(e=a),function(t,e,n,r,i){var a=Lt(t,e,n,r,i),o=Bt(a.year,0,a.dayOfYear);return this.year(o.getUTCFullYear()),this.month(o.getUTCMonth()),this.date(o.getUTCDate()),this}.call(this,t,e,n,r,i))}q(0,["gg",2],0,(function(){return this.weekYear()%100})),q(0,["GG",2],0,(function(){return this.isoWeekYear()%100})),Ke("gggg","weekYear"),Ke("ggggg","weekYear"),Ke("GGGG","isoWeekYear"),Ke("GGGGG","isoWeekYear"),L("weekYear","gg"),L("isoWeekYear","GG"),P("weekYear",1),P("isoWeekYear",1),lt("G",at),lt("g",at),lt("GG",Q,G),lt("gg",Q,G),lt("GGGG",nt,Z),lt("gggg",nt,Z),lt("GGGGG",rt,K),lt("ggggg",rt,K),yt(["gggg","ggggg","GGGG","GGGGG"],(function(t,e,n,r){e[r.substr(0,2)]=w(t)})),yt(["gg","GG"],(function(t,e,n,r){e[r]=i.parseTwoDigitYear(t)})),q("Q",0,"Qo","quarter"),L("quarter","Q"),P("quarter",7),lt("Q",V),pt("Q",(function(t,e){e[1]=3*(w(t)-1)})),q("D",["DD",2],"Do","date"),L("date","D"),P("date",9),lt("D",Q),lt("DD",Q,G),lt("Do",(function(t,e){return t?e._dayOfMonthOrdinalParse||e._ordinalParse:e._dayOfMonthOrdinalParseLenient})),pt(["D","DD"],2),pt("Do",(function(t,e){e[2]=w(t.match(Q)[0])}));var Je=xt("Date",!0);q("DDD",["DDDD",3],"DDDo","dayOfYear"),L("dayOfYear","DDD"),P("dayOfYear",4),lt("DDD",et),lt("DDDD",X),pt(["DDD","DDDD"],(function(t,e,n){n._dayOfYear=w(t)})),q("m",["mm",2],0,"minute"),L("minute","m"),P("minute",14),lt("m",Q),lt("mm",Q,G),pt(["m","mm"],4);var tn=xt("Minutes",!1);q("s",["ss",2],0,"second"),L("second","s"),P("second",15),lt("s",Q),lt("ss",Q,G),pt(["s","ss"],5);var en,nn=xt("Seconds",!1);for(q("S",0,0,(function(){return~~(this.millisecond()/100)})),q(0,["SS",2],0,(function(){return~~(this.millisecond()/10)})),q(0,["SSS",3],0,"millisecond"),q(0,["SSSS",4],0,(function(){return 10*this.millisecond()})),q(0,["SSSSS",5],0,(function(){return 100*this.millisecond()})),q(0,["SSSSSS",6],0,(function(){return 1e3*this.millisecond()})),q(0,["SSSSSSS",7],0,(function(){return 1e4*this.millisecond()})),q(0,["SSSSSSSS",8],0,(function(){return 1e5*this.millisecond()})),q(0,["SSSSSSSSS",9],0,(function(){return 1e6*this.millisecond()})),L("millisecond","ms"),P("millisecond",16),lt("S",et,V),lt("SS",et,G),lt("SSS",et,X),en="SSSS";en.length<=9;en+="S")lt(en,it);function rn(t,e){e[6]=w(1e3*("0."+t))}for(en="S";en.length<=9;en+="S")pt(en,rn);var an=xt("Milliseconds",!1);q("z",0,0,"zoneAbbr"),q("zz",0,0,"zoneName");var on=x.prototype;function sn(t){return t}on.add=ze,on.calendar=function(t,e){var n=t||xe(),r=Ne(n,this).startOf("day"),a=i.calendarFormat(this,r)||"sameElse",o=e&&(O(e[a])?e[a].call(this,n):e[a]);return this.format(o||this.localeData().calendar(a,this,xe(n)))},on.clone=function(){return new x(this)},on.diff=function(t,e,n){var r,i,a;if(!this.isValid())return NaN;if(!(r=Ne(t,this)).isValid())return NaN;switch(i=6e4*(r.utcOffset()-this.utcOffset()),e=I(e)){case"year":a=$e(this,r)/12;break;case"month":a=$e(this,r);break;case"quarter":a=$e(this,r)/3;break;case"second":a=(this-r)/1e3;break;case"minute":a=(this-r)/6e4;break;case"hour":a=(this-r)/36e5;break;case"day":a=(this-r-i)/864e5;break;case"week":a=(this-r-i)/6048e5;break;default:a=this-r}return n?a:k(a)},on.endOf=function(t){var e;if(void 0===(t=I(t))||"millisecond"===t||!this.isValid())return this;var n=this._isUTC?Ze:Xe;switch(t){case"year":e=n(this.year()+1,0,1)-1;break;case"quarter":e=n(this.year(),this.month()-this.month()%3+3,1)-1;break;case"month":e=n(this.year(),this.month()+1,1)-1;break;case"week":e=n(this.year(),this.month(),this.date()-this.weekday()+7)-1;break;case"isoWeek":e=n(this.year(),this.month(),this.date()-(this.isoWeekday()-1)+7)-1;break;case"day":case"date":e=n(this.year(),this.month(),this.date()+1)-1;break;case"hour":e=this._d.valueOf(),e+=36e5-Ge(e+(this._isUTC?0:6e4*this.utcOffset()),36e5)-1;break;case"minute":e=this._d.valueOf(),e+=6e4-Ge(e,6e4)-1;break;case"second":e=this._d.valueOf(),e+=1e3-Ge(e,1e3)-1}return this._d.setTime(e),i.updateOffset(this,!0),this},on.format=function(t){t||(t=this.isUtc()?i.defaultFormatUtc:i.defaultFormat);var e=W(this,t);return this.localeData().postformat(e)},on.from=function(t,e){return this.isValid()&&(_(t)&&t.isValid()||xe(t).isValid())?Re({to:this,from:t}).locale(this.locale()).humanize(!e):this.localeData().invalidDate()},on.fromNow=function(t){return this.from(xe(),t)},on.to=function(t,e){return this.isValid()&&(_(t)&&t.isValid()||xe(t).isValid())?Re({from:this,to:t}).locale(this.locale()).humanize(!e):this.localeData().invalidDate()},on.toNow=function(t){return this.to(xe(),t)},on.get=function(t){return O(this[t=I(t)])?this[t]():this},on.invalidAt=function(){return p(this).overflow},on.isAfter=function(t,e){var n=_(t)?t:xe(t);return!(!this.isValid()||!n.isValid())&&("millisecond"===(e=I(e)||"millisecond")?this.valueOf()>n.valueOf():n.valueOf()<this.clone().startOf(e).valueOf())},on.isBefore=function(t,e){var n=_(t)?t:xe(t);return!(!this.isValid()||!n.isValid())&&("millisecond"===(e=I(e)||"millisecond")?this.valueOf()<n.valueOf():this.clone().endOf(e).valueOf()<n.valueOf())},on.isBetween=function(t,e,n,r){var i=_(t)?t:xe(t),a=_(e)?e:xe(e);return!!(this.isValid()&&i.isValid()&&a.isValid())&&("("===(r=r||"()")[0]?this.isAfter(i,n):!this.isBefore(i,n))&&(")"===r[1]?this.isBefore(a,n):!this.isAfter(a,n))},on.isSame=function(t,e){var n,r=_(t)?t:xe(t);return!(!this.isValid()||!r.isValid())&&("millisecond"===(e=I(e)||"millisecond")?this.valueOf()===r.valueOf():(n=r.valueOf(),this.clone().startOf(e).valueOf()<=n&&n<=this.clone().endOf(e).valueOf()))},on.isSameOrAfter=function(t,e){return this.isSame(t,e)||this.isAfter(t,e)},on.isSameOrBefore=function(t,e){return this.isSame(t,e)||this.isBefore(t,e)},on.isValid=function(){return y(this)},on.lang=We,on.locale=qe,on.localeData=He,on.max=ke,on.min=_e,on.parsingFlags=function(){return f({},p(this))},on.set=function(t,e){if("object"==typeof t)for(var n=function(t){var e=[];for(var n in t)e.push({unit:n,priority:F[n]});return e.sort((function(t,e){return t.priority-e.priority})),e}(t=R(t)),r=0;r<n.length;r++)this[n[r].unit](t[n[r].unit]);else if(O(this[t=I(t)]))return this[t](e);return this},on.startOf=function(t){var e;if(void 0===(t=I(t))||"millisecond"===t||!this.isValid())return this;var n=this._isUTC?Ze:Xe;switch(t){case"year":e=n(this.year(),0,1);break;case"quarter":e=n(this.year(),this.month()-this.month()%3,1);break;case"month":e=n(this.year(),this.month(),1);break;case"week":e=n(this.year(),this.month(),this.date()-this.weekday());break;case"isoWeek":e=n(this.year(),this.month(),this.date()-(this.isoWeekday()-1));break;case"day":case"date":e=n(this.year(),this.month(),this.date());break;case"hour":e=this._d.valueOf(),e-=Ge(e+(this._isUTC?0:6e4*this.utcOffset()),36e5);break;case"minute":e=this._d.valueOf(),e-=Ge(e,6e4);break;case"second":e=this._d.valueOf(),e-=Ge(e,1e3)}return this._d.setTime(e),i.updateOffset(this,!0),this},on.subtract=Ue,on.toArray=function(){var t=this;return[t.year(),t.month(),t.date(),t.hour(),t.minute(),t.second(),t.millisecond()]},on.toObject=function(){var t=this;return{years:t.year(),months:t.month(),date:t.date(),hours:t.hours(),minutes:t.minutes(),seconds:t.seconds(),milliseconds:t.milliseconds()}},on.toDate=function(){return new Date(this.valueOf())},on.toISOString=function(t){if(!this.isValid())return null;var e=!0!==t,n=e?this.clone().utc():this;return n.year()<0||9999<n.year()?W(n,e?"YYYYYY-MM-DD[T]HH:mm:ss.SSS[Z]":"YYYYYY-MM-DD[T]HH:mm:ss.SSSZ"):O(Date.prototype.toISOString)?e?this.toDate().toISOString():new Date(this.valueOf()+60*this.utcOffset()*1e3).toISOString().replace("Z",W(n,"Z")):W(n,e?"YYYY-MM-DD[T]HH:mm:ss.SSS[Z]":"YYYY-MM-DD[T]HH:mm:ss.SSSZ")},on.inspect=function(){if(!this.isValid())return"moment.invalid(/* "+this._i+" */)";var t="moment",e="";this.isLocal()||(t=0===this.utcOffset()?"moment.utc":"moment.parseZone",e="Z");var n="["+t+'("]',r=0<=this.year()&&this.year()<=9999?"YYYY":"YYYYYY",i=e+'[")]';return this.format(n+r+"-MM-DD[T]HH:mm:ss.SSS"+i)},on.toJSON=function(){return this.isValid()?this.toISOString():null},on.toString=function(){return this.clone().locale("en").format("ddd MMM DD YYYY HH:mm:ss [GMT]ZZ")},on.unix=function(){return Math.floor(this.valueOf()/1e3)},on.valueOf=function(){return this._d.valueOf()-6e4*(this._offset||0)},on.creationData=function(){return{input:this._i,format:this._f,locale:this._locale,isUTC:this._isUTC,strict:this._strict}},on.year=bt,on.isLeapYear=function(){return mt(this.year())},on.weekYear=function(t){return Qe.call(this,t,this.week(),this.weekday(),this.localeData()._week.dow,this.localeData()._week.doy)},on.isoWeekYear=function(t){return Qe.call(this,t,this.isoWeek(),this.isoWeekday(),1,4)},on.quarter=on.quarters=function(t){return null==t?Math.ceil((this.month()+1)/3):this.month(3*(t-1)+this.month()%3)},on.month=At,on.daysInMonth=function(){return wt(this.year(),this.month())},on.week=on.weeks=function(t){var e=this.localeData().week(this);return null==t?e:this.add(7*(t-e),"d")},on.isoWeek=on.isoWeeks=function(t){var e=It(this,1,4).week;return null==t?e:this.add(7*(t-e),"d")},on.weeksInYear=function(){var t=this.localeData()._week;return Rt(this.year(),t.dow,t.doy)},on.isoWeeksInYear=function(){return Rt(this.year(),1,4)},on.date=Je,on.day=on.days=function(t){if(!this.isValid())return null!=t?this:NaN;var e,n,r=this._isUTC?this._d.getUTCDay():this._d.getDay();return null!=t?(e=t,n=this.localeData(),t="string"!=typeof e?e:isNaN(e)?"number"==typeof(e=n.weekdaysParse(e))?e:null:parseInt(e,10),this.add(t-r,"d")):r},on.weekday=function(t){if(!this.isValid())return null!=t?this:NaN;var e=(this.day()+7-this.localeData()._week.dow)%7;return null==t?e:this.add(t-e,"d")},on.isoWeekday=function(t){if(!this.isValid())return null!=t?this:NaN;if(null==t)return this.day()||7;var e,n,r=(e=t,n=this.localeData(),"string"==typeof e?n.weekdaysParse(e)%7||7:isNaN(e)?null:e);return this.day(this.day()%7?r:r-7)},on.dayOfYear=function(t){var e=Math.round((this.clone().startOf("day")-this.clone().startOf("year"))/864e5)+1;return null==t?e:this.add(t-e,"d")},on.hour=on.hours=Xt,on.minute=on.minutes=tn,on.second=on.seconds=nn,on.millisecond=on.milliseconds=an,on.utcOffset=function(t,e,n){var r,a=this._offset||0;if(!this.isValid())return null!=t?this:NaN;if(null==t)return this._isUTC?a:Be(this);if("string"==typeof t){if(null===(t=Oe(st,t)))return this}else Math.abs(t)<16&&!n&&(t*=60);return!this._isUTC&&e&&(r=Be(this)),this._offset=t,this._isUTC=!0,null!=r&&this.add(r,"m"),a!==t&&(!e||this._changeInProgress?Ye(this,Re(t-a,"m"),1,!1):this._changeInProgress||(this._changeInProgress=!0,i.updateOffset(this,!0),this._changeInProgress=null)),this},on.utc=function(t){return this.utcOffset(0,t)},on.local=function(t){return this._isUTC&&(this.utcOffset(0,t),this._isUTC=!1,t&&this.subtract(Be(this),"m")),this},on.parseZone=function(){if(null!=this._tzm)this.utcOffset(this._tzm,!1,!0);else if("string"==typeof this._i){var t=Oe(ot,this._i);null!=t?this.utcOffset(t):this.utcOffset(0,!0)}return this},on.hasAlignedHourOffset=function(t){return!!this.isValid()&&(t=t?xe(t).utcOffset():0,(this.utcOffset()-t)%60==0)},on.isDST=function(){return this.utcOffset()>this.clone().month(0).utcOffset()||this.utcOffset()>this.clone().month(5).utcOffset()},on.isLocal=function(){return!!this.isValid()&&!this._isUTC},on.isUtcOffset=function(){return!!this.isValid()&&this._isUTC},on.isUtc=De,on.isUTC=De,on.zoneAbbr=function(){return this._isUTC?"UTC":""},on.zoneName=function(){return this._isUTC?"Coordinated Universal Time":""},on.dates=C("dates accessor is deprecated. Use date instead.",Je),on.months=C("months accessor is deprecated. Use month instead",At),on.years=C("years accessor is deprecated. Use year instead",bt),on.zone=C("moment().zone is deprecated, use moment().utcOffset instead. http://momentjs.com/guides/#/warnings/zone/",(function(t,e){return null!=t?("string"!=typeof t&&(t=-t),this.utcOffset(t,e),this):-this.utcOffset()})),on.isDSTShifted=C("isDSTShifted is deprecated. See http://momentjs.com/guides/#/warnings/dst-shifted/ for more information",(function(){if(!s(this._isDSTShifted))return this._isDSTShifted;var t={};if(v(t,this),(t=ve(t))._a){var e=t._isUTC?d(t._a):xe(t._a);this._isDSTShifted=this.isValid()&&0<E(t._a,e.toArray())}else this._isDSTShifted=!1;return this._isDSTShifted}));var cn=B.prototype;function un(t,e,n,r){var i=re(),a=d().set(r,e);return i[n](a,t)}function ln(t,e,n){if(c(t)&&(e=t,t=void 0),t=t||"",null!=e)return un(t,e,n,"month");var r,i=[];for(r=0;r<12;r++)i[r]=un(t,r,n,"month");return i}function hn(t,e,n,r){"boolean"==typeof t?c(e)&&(n=e,e=void 0):(e=t,t=!1,c(n=e)&&(n=e,e=void 0)),e=e||"";var i,a=re(),o=t?a._week.dow:0;if(null!=n)return un(e,(n+o)%7,r,"day");var s=[];for(i=0;i<7;i++)s[i]=un(e,(i+o)%7,r,"day");return s}cn.calendar=function(t,e,n){var r=this._calendar[t]||this._calendar.sameElse;return O(r)?r.call(e,n):r},cn.longDateFormat=function(t){var e=this._longDateFormat[t],n=this._longDateFormat[t.toUpperCase()];return e||!n?e:(this._longDateFormat[t]=n.replace(/MMMM|MM|DD|dddd/g,(function(t){return t.slice(1)})),this._longDateFormat[t])},cn.invalidDate=function(){return this._invalidDate},cn.ordinal=function(t){return this._ordinal.replace("%d",t)},cn.preparse=sn,cn.postformat=sn,cn.relativeTime=function(t,e,n,r){var i=this._relativeTime[n];return O(i)?i(t,e,n,r):i.replace(/%d/i,t)},cn.pastFuture=function(t,e){var n=this._relativeTime[0<t?"future":"past"];return O(n)?n(e):n.replace(/%s/i,e)},cn.set=function(t){var e,n;for(n in t)O(e=t[n])?this[n]=e:this["_"+n]=e;this._config=t,this._dayOfMonthOrdinalParseLenient=new RegExp((this._dayOfMonthOrdinalParse.source||this._ordinalParse.source)+"|"+/\d{1,2}/.source)},cn.months=function(t,e){return t?a(this._months)?this._months[t.month()]:this._months[(this._months.isFormat||Et).test(e)?"format":"standalone"][t.month()]:a(this._months)?this._months:this._months.standalone},cn.monthsShort=function(t,e){return t?a(this._monthsShort)?this._monthsShort[t.month()]:this._monthsShort[Et.test(e)?"format":"standalone"][t.month()]:a(this._monthsShort)?this._monthsShort:this._monthsShort.standalone},cn.monthsParse=function(t,e,n){var r,i,a;if(this._monthsParseExact)return function(t,e,n){var r,i,a,o=t.toLocaleLowerCase();if(!this._monthsParse)for(this._monthsParse=[],this._longMonthsParse=[],this._shortMonthsParse=[],r=0;r<12;++r)a=d([2e3,r]),this._shortMonthsParse[r]=this.monthsShort(a,"").toLocaleLowerCase(),this._longMonthsParse[r]=this.months(a,"").toLocaleLowerCase();return n?"MMM"===e?-1!==(i=vt.call(this._shortMonthsParse,o))?i:null:-1!==(i=vt.call(this._longMonthsParse,o))?i:null:"MMM"===e?-1!==(i=vt.call(this._shortMonthsParse,o))||-1!==(i=vt.call(this._longMonthsParse,o))?i:null:-1!==(i=vt.call(this._longMonthsParse,o))||-1!==(i=vt.call(this._shortMonthsParse,o))?i:null}.call(this,t,e,n);for(this._monthsParse||(this._monthsParse=[],this._longMonthsParse=[],this._shortMonthsParse=[]),r=0;r<12;r++){if(i=d([2e3,r]),n&&!this._longMonthsParse[r]&&(this._longMonthsParse[r]=new RegExp("^"+this.months(i,"").replace(".","")+"$","i"),this._shortMonthsParse[r]=new RegExp("^"+this.monthsShort(i,"").replace(".","")+"$","i")),n||this._monthsParse[r]||(a="^"+this.months(i,"")+"|^"+this.monthsShort(i,""),this._monthsParse[r]=new RegExp(a.replace(".",""),"i")),n&&"MMMM"===e&&this._longMonthsParse[r].test(t))return r;if(n&&"MMM"===e&&this._shortMonthsParse[r].test(t))return r;if(!n&&this._monthsParse[r].test(t))return r}},cn.monthsRegex=function(t){return this._monthsParseExact?(h(this,"_monthsRegex")||Nt.call(this),t?this._monthsStrictRegex:this._monthsRegex):(h(this,"_monthsRegex")||(this._monthsRegex=Ot),this._monthsStrictRegex&&t?this._monthsStrictRegex:this._monthsRegex)},cn.monthsShortRegex=function(t){return this._monthsParseExact?(h(this,"_monthsRegex")||Nt.call(this),t?this._monthsShortStrictRegex:this._monthsShortRegex):(h(this,"_monthsShortRegex")||(this._monthsShortRegex=Mt),this._monthsShortStrictRegex&&t?this._monthsShortStrictRegex:this._monthsShortRegex)},cn.week=function(t){return It(t,this._week.dow,this._week.doy).week},cn.firstDayOfYear=function(){return this._week.doy},cn.firstDayOfWeek=function(){return this._week.dow},cn.weekdays=function(t,e){var n=a(this._weekdays)?this._weekdays:this._weekdays[t&&!0!==t&&this._weekdays.isFormat.test(e)?"format":"standalone"];return!0===t?Ft(n,this._week.dow):t?n[t.day()]:n},cn.weekdaysMin=function(t){return!0===t?Ft(this._weekdaysMin,this._week.dow):t?this._weekdaysMin[t.day()]:this._weekdaysMin},cn.weekdaysShort=function(t){return!0===t?Ft(this._weekdaysShort,this._week.dow):t?this._weekdaysShort[t.day()]:this._weekdaysShort},cn.weekdaysParse=function(t,e,n){var r,i,a;if(this._weekdaysParseExact)return function(t,e,n){var r,i,a,o=t.toLocaleLowerCase();if(!this._weekdaysParse)for(this._weekdaysParse=[],this._shortWeekdaysParse=[],this._minWeekdaysParse=[],r=0;r<7;++r)a=d([2e3,1]).day(r),this._minWeekdaysParse[r]=this.weekdaysMin(a,"").toLocaleLowerCase(),this._shortWeekdaysParse[r]=this.weekdaysShort(a,"").toLocaleLowerCase(),this._weekdaysParse[r]=this.weekdays(a,"").toLocaleLowerCase();return n?"dddd"===e?-1!==(i=vt.call(this._weekdaysParse,o))?i:null:"ddd"===e?-1!==(i=vt.call(this._shortWeekdaysParse,o))?i:null:-1!==(i=vt.call(this._minWeekdaysParse,o))?i:null:"dddd"===e?-1!==(i=vt.call(this._weekdaysParse,o))||-1!==(i=vt.call(this._shortWeekdaysParse,o))||-1!==(i=vt.call(this._minWeekdaysParse,o))?i:null:"ddd"===e?-1!==(i=vt.call(this._shortWeekdaysParse,o))||-1!==(i=vt.call(this._weekdaysParse,o))||-1!==(i=vt.call(this._minWeekdaysParse,o))?i:null:-1!==(i=vt.call(this._minWeekdaysParse,o))||-1!==(i=vt.call(this._weekdaysParse,o))||-1!==(i=vt.call(this._shortWeekdaysParse,o))?i:null}.call(this,t,e,n);for(this._weekdaysParse||(this._weekdaysParse=[],this._minWeekdaysParse=[],this._shortWeekdaysParse=[],this._fullWeekdaysParse=[]),r=0;r<7;r++){if(i=d([2e3,1]).day(r),n&&!this._fullWeekdaysParse[r]&&(this._fullWeekdaysParse[r]=new RegExp("^"+this.weekdays(i,"").replace(".","\\.?")+"$","i"),this._shortWeekdaysParse[r]=new RegExp("^"+this.weekdaysShort(i,"").replace(".","\\.?")+"$","i"),this._minWeekdaysParse[r]=new RegExp("^"+this.weekdaysMin(i,"").replace(".","\\.?")+"$","i")),this._weekdaysParse[r]||(a="^"+this.weekdays(i,"")+"|^"+this.weekdaysShort(i,"")+"|^"+this.weekdaysMin(i,""),this._weekdaysParse[r]=new RegExp(a.replace(".",""),"i")),n&&"dddd"===e&&this._fullWeekdaysParse[r].test(t))return r;if(n&&"ddd"===e&&this._shortWeekdaysParse[r].test(t))return r;if(n&&"dd"===e&&this._minWeekdaysParse[r].test(t))return r;if(!n&&this._weekdaysParse[r].test(t))return r}},cn.weekdaysRegex=function(t){return this._weekdaysParseExact?(h(this,"_weekdaysRegex")||qt.call(this),t?this._weekdaysStrictRegex:this._weekdaysRegex):(h(this,"_weekdaysRegex")||(this._weekdaysRegex=zt),this._weekdaysStrictRegex&&t?this._weekdaysStrictRegex:this._weekdaysRegex)},cn.weekdaysShortRegex=function(t){return this._weekdaysParseExact?(h(this,"_weekdaysRegex")||qt.call(this),t?this._weekdaysShortStrictRegex:this._weekdaysShortRegex):(h(this,"_weekdaysShortRegex")||(this._weekdaysShortRegex=Ut),this._weekdaysShortStrictRegex&&t?this._weekdaysShortStrictRegex:this._weekdaysShortRegex)},cn.weekdaysMinRegex=function(t){return this._weekdaysParseExact?(h(this,"_weekdaysRegex")||qt.call(this),t?this._weekdaysMinStrictRegex:this._weekdaysMinRegex):(h(this,"_weekdaysMinRegex")||(this._weekdaysMinRegex=$t),this._weekdaysMinStrictRegex&&t?this._weekdaysMinStrictRegex:this._weekdaysMinRegex)},cn.isPM=function(t){return"p"===(t+"").toLowerCase().charAt(0)},cn.meridiem=function(t,e,n){return 11<t?n?"pm":"PM":n?"am":"AM"},ee("en",{dayOfMonthOrdinalParse:/\d{1,2}(th|st|nd|rd)/,ordinal:function(t){var e=t%10;return t+(1===w(t%100/10)?"th":1===e?"st":2===e?"nd":3===e?"rd":"th")}}),i.lang=C("moment.lang is deprecated. Use moment.locale instead.",ee),i.langData=C("moment.langData is deprecated. Use moment.localeData instead.",re);var fn=Math.abs;function dn(t,e,n,r){var i=Re(e,n);return t._milliseconds+=r*i._milliseconds,t._days+=r*i._days,t._months+=r*i._months,t._bubble()}function pn(t){return t<0?Math.floor(t):Math.ceil(t)}function yn(t){return 4800*t/146097}function gn(t){return 146097*t/4800}function mn(t){return function(){return this.as(t)}}var vn=mn("ms"),bn=mn("s"),xn=mn("m"),_n=mn("h"),kn=mn("d"),wn=mn("w"),En=mn("M"),Tn=mn("Q"),Cn=mn("y");function Sn(t){return function(){return this.isValid()?this._data[t]:NaN}}var An=Sn("milliseconds"),Mn=Sn("seconds"),On=Sn("minutes"),Nn=Sn("hours"),Bn=Sn("days"),Dn=Sn("months"),Ln=Sn("years"),In=Math.round,Rn={ss:44,s:45,m:45,h:22,d:26,M:11},Fn=Math.abs;function Pn(t){return(0<t)-(t<0)||+t}function jn(){if(!this.isValid())return this.localeData().invalidDate();var t,e,n=Fn(this._milliseconds)/1e3,r=Fn(this._days),i=Fn(this._months);e=k((t=k(n/60))/60),n%=60,t%=60;var a=k(i/12),o=i%=12,s=r,c=e,u=t,l=n?n.toFixed(3).replace(/\.?0+$/,""):"",h=this.asSeconds();if(!h)return"P0D";var f=h<0?"-":"",d=Pn(this._months)!==Pn(h)?"-":"",p=Pn(this._days)!==Pn(h)?"-":"",y=Pn(this._milliseconds)!==Pn(h)?"-":"";return f+"P"+(a?d+a+"Y":"")+(o?d+o+"M":"")+(s?p+s+"D":"")+(c||u||l?"T":"")+(c?y+c+"H":"")+(u?y+u+"M":"")+(l?y+l+"S":"")}var Yn=Te.prototype;return Yn.isValid=function(){return this._isValid},Yn.abs=function(){var t=this._data;return this._milliseconds=fn(this._milliseconds),this._days=fn(this._days),this._months=fn(this._months),t.milliseconds=fn(t.milliseconds),t.seconds=fn(t.seconds),t.minutes=fn(t.minutes),t.hours=fn(t.hours),t.months=fn(t.months),t.years=fn(t.years),this},Yn.add=function(t,e){return dn(this,t,e,1)},Yn.subtract=function(t,e){return dn(this,t,e,-1)},Yn.as=function(t){if(!this.isValid())return NaN;var e,n,r=this._milliseconds;if("month"===(t=I(t))||"quarter"===t||"year"===t)switch(e=this._days+r/864e5,n=this._months+yn(e),t){case"month":return n;case"quarter":return n/3;case"year":return n/12}else switch(e=this._days+Math.round(gn(this._months)),t){case"week":return e/7+r/6048e5;case"day":return e+r/864e5;case"hour":return 24*e+r/36e5;case"minute":return 1440*e+r/6e4;case"second":return 86400*e+r/1e3;case"millisecond":return Math.floor(864e5*e)+r;default:throw new Error("Unknown unit "+t)}},Yn.asMilliseconds=vn,Yn.asSeconds=bn,Yn.asMinutes=xn,Yn.asHours=_n,Yn.asDays=kn,Yn.asWeeks=wn,Yn.asMonths=En,Yn.asQuarters=Tn,Yn.asYears=Cn,Yn.valueOf=function(){return this.isValid()?this._milliseconds+864e5*this._days+this._months%12*2592e6+31536e6*w(this._months/12):NaN},Yn._bubble=function(){var t,e,n,r,i,a=this._milliseconds,o=this._days,s=this._months,c=this._data;return 0<=a&&0<=o&&0<=s||a<=0&&o<=0&&s<=0||(a+=864e5*pn(gn(s)+o),s=o=0),c.milliseconds=a%1e3,t=k(a/1e3),c.seconds=t%60,e=k(t/60),c.minutes=e%60,n=k(e/60),c.hours=n%24,s+=i=k(yn(o+=k(n/24))),o-=pn(gn(i)),r=k(s/12),s%=12,c.days=o,c.months=s,c.years=r,this},Yn.clone=function(){return Re(this)},Yn.get=function(t){return t=I(t),this.isValid()?this[t+"s"]():NaN},Yn.milliseconds=An,Yn.seconds=Mn,Yn.minutes=On,Yn.hours=Nn,Yn.days=Bn,Yn.weeks=function(){return k(this.days()/7)},Yn.months=Dn,Yn.years=Ln,Yn.humanize=function(t){if(!this.isValid())return this.localeData().invalidDate();var e,n,r,i,a,o,s,c,u,l,h=this.localeData(),f=(e=!t,n=h,r=Re(this).abs(),i=In(r.as("s")),a=In(r.as("m")),o=In(r.as("h")),s=In(r.as("d")),c=In(r.as("M")),u=In(r.as("y")),(l=i<=Rn.ss&&["s",i]||i<Rn.s&&["ss",i]||a<=1&&["m"]||a<Rn.m&&["mm",a]||o<=1&&["h"]||o<Rn.h&&["hh",o]||s<=1&&["d"]||s<Rn.d&&["dd",s]||c<=1&&["M"]||c<Rn.M&&["MM",c]||u<=1&&["y"]||["yy",u])[2]=e,l[3]=0<+this,l[4]=n,function(t,e,n,r,i){return i.relativeTime(e||1,!!n,t,r)}.apply(null,l));return t&&(f=h.pastFuture(+this,f)),h.postformat(f)},Yn.toISOString=jn,Yn.toString=jn,Yn.toJSON=jn,Yn.locale=qe,Yn.localeData=He,Yn.toIsoString=C("toIsoString() is deprecated. Please use toISOString() instead (notice the capitals)",jn),Yn.lang=We,q("X",0,0,"unix"),q("x",0,0,"valueOf"),lt("x",at),lt("X",/[+-]?\d+(\.\d{1,3})?/),pt("X",(function(t,e,n){n._d=new Date(1e3*parseFloat(t,10))})),pt("x",(function(t,e,n){n._d=new Date(w(t))})),i.version="2.24.0",e=xe,i.fn=on,i.min=function(){return we("isBefore",[].slice.call(arguments,0))},i.max=function(){return we("isAfter",[].slice.call(arguments,0))},i.now=function(){return Date.now?Date.now():+new Date},i.utc=d,i.unix=function(t){return xe(1e3*t)},i.months=function(t,e){return ln(t,e,"months")},i.isDate=u,i.locale=ee,i.invalid=g,i.duration=Re,i.isMoment=_,i.weekdays=function(t,e,n){return hn(t,e,n,"weekdays")},i.parseZone=function(){return xe.apply(null,arguments).parseZone()},i.localeData=re,i.isDuration=Ce,i.monthsShort=function(t,e){return ln(t,e,"monthsShort")},i.weekdaysMin=function(t,e,n){return hn(t,e,n,"weekdaysMin")},i.defineLocale=ne,i.updateLocale=function(t,e){if(null!=e){var n,r,i=Zt;null!=(r=te(t))&&(i=r._config),(n=new B(e=N(i,e))).parentLocale=Kt[t],Kt[t]=n,ee(t)}else null!=Kt[t]&&(null!=Kt[t].parentLocale?Kt[t]=Kt[t].parentLocale:null!=Kt[t]&&delete Kt[t]);return Kt[t]},i.locales=function(){return S(Kt)},i.weekdaysShort=function(t,e,n){return hn(t,e,n,"weekdaysShort")},i.normalizeUnits=I,i.relativeTimeRounding=function(t){return void 0===t?In:"function"==typeof t&&(In=t,!0)},i.relativeTimeThreshold=function(t,e){return void 0!==Rn[t]&&(void 0===e?Rn[t]:(Rn[t]=e,"s"===t&&(Rn.ss=e-1),!0))},i.calendarFormat=function(t,e){var n=t.diff(e,"days",!0);return n<-6?"sameElse":n<-1?"lastWeek":n<0?"lastDay":n<1?"sameDay":n<2?"nextDay":n<7?"nextWeek":"sameElse"},i.prototype=on,i.HTML5_FMT={DATETIME_LOCAL:"YYYY-MM-DDTHH:mm",DATETIME_LOCAL_SECONDS:"YYYY-MM-DDTHH:mm:ss",DATETIME_LOCAL_MS:"YYYY-MM-DDTHH:mm:ss.SSS",DATE:"YYYY-MM-DD",TIME:"HH:mm",TIME_SECONDS:"HH:mm:ss",TIME_MS:"HH:mm:ss.SSS",WEEK:"GGGG-[W]WW",MONTH:"YYYY-MM"},i}()}).call(this,n(7)(t))},function(t,e,n){(function(t,r){var i=function(){var t=function(t,e,n,r){for(n=n||{},r=t.length;r--;n[t[r]]=e);return n},e=[1,3],n=[1,5],r=[7,9,11,12,13,14,15,16,17,18,19,21,28,33],i=[1,15],a=[1,16],o=[1,17],s=[1,18],c=[1,19],u=[1,20],l=[1,21],h=[1,22],f=[1,24],d=[1,26],p=[1,29],y=[5,7,9,11,12,13,14,15,16,17,18,19,21,28,33],g={trace:function(){},yy:{},symbols_:{error:2,start:3,directive:4,gantt:5,document:6,EOF:7,line:8,SPACE:9,statement:10,NL:11,dateFormat:12,inclusiveEndDates:13,topAxis:14,axisFormat:15,excludes:16,todayMarker:17,title:18,section:19,clickStatement:20,taskTxt:21,taskData:22,openDirective:23,typeDirective:24,closeDirective:25,":":26,argDirective:27,click:28,callbackname:29,callbackargs:30,href:31,clickStatementDebug:32,open_directive:33,type_directive:34,arg_directive:35,close_directive:36,$accept:0,$end:1},terminals_:{2:"error",5:"gantt",7:"EOF",9:"SPACE",11:"NL",12:"dateFormat",13:"inclusiveEndDates",14:"topAxis",15:"axisFormat",16:"excludes",17:"todayMarker",18:"title",19:"section",21:"taskTxt",22:"taskData",26:":",28:"click",29:"callbackname",30:"callbackargs",31:"href",33:"open_directive",34:"type_directive",35:"arg_directive",36:"close_directive"},productions_:[0,[3,2],[3,3],[6,0],[6,2],[8,2],[8,1],[8,1],[8,1],[10,1],[10,1],[10,1],[10,1],[10,1],[10,1],[10,1],[10,1],[10,1],[10,2],[10,1],[4,4],[4,6],[20,2],[20,3],[20,3],[20,4],[20,3],[20,4],[20,2],[32,2],[32,3],[32,3],[32,4],[32,3],[32,4],[32,2],[23,1],[24,1],[27,1],[25,1]],performAction:function(t,e,n,r,i,a,o){var s=a.length-1;switch(i){case 2:return a[s-1];case 3:this.$=[];break;case 4:a[s-1].push(a[s]),this.$=a[s-1];break;case 5:case 6:this.$=a[s];break;case 7:case 8:this.$=[];break;case 9:r.setDateFormat(a[s].substr(11)),this.$=a[s].substr(11);break;case 10:r.enableInclusiveEndDates(),this.$=a[s].substr(18);break;case 11:r.TopAxis(),this.$=a[s].substr(8);break;case 12:r.setAxisFormat(a[s].substr(11)),this.$=a[s].substr(11);break;case 13:r.setExcludes(a[s].substr(9)),this.$=a[s].substr(9);break;case 14:r.setTodayMarker(a[s].substr(12)),this.$=a[s].substr(12);break;case 15:r.setTitle(a[s].substr(6)),this.$=a[s].substr(6);break;case 16:r.addSection(a[s].substr(8)),this.$=a[s].substr(8);break;case 18:r.addTask(a[s-1],a[s]),this.$="task";break;case 22:this.$=a[s-1],r.setClickEvent(a[s-1],a[s],null);break;case 23:this.$=a[s-2],r.setClickEvent(a[s-2],a[s-1],a[s]);break;case 24:this.$=a[s-2],r.setClickEvent(a[s-2],a[s-1],null),r.setLink(a[s-2],a[s]);break;case 25:this.$=a[s-3],r.setClickEvent(a[s-3],a[s-2],a[s-1]),r.setLink(a[s-3],a[s]);break;case 26:this.$=a[s-2],r.setClickEvent(a[s-2],a[s],null),r.setLink(a[s-2],a[s-1]);break;case 27:this.$=a[s-3],r.setClickEvent(a[s-3],a[s-1],a[s]),r.setLink(a[s-3],a[s-2]);break;case 28:this.$=a[s-1],r.setLink(a[s-1],a[s]);break;case 29:case 35:this.$=a[s-1]+" "+a[s];break;case 30:case 31:case 33:this.$=a[s-2]+" "+a[s-1]+" "+a[s];break;case 32:case 34:this.$=a[s-3]+" "+a[s-2]+" "+a[s-1]+" "+a[s];break;case 36:r.parseDirective("%%{","open_directive");break;case 37:r.parseDirective(a[s],"type_directive");break;case 38:a[s]=a[s].trim().replace(/'/g,'"'),r.parseDirective(a[s],"arg_directive");break;case 39:r.parseDirective("}%%","close_directive","gantt")}},table:[{3:1,4:2,5:e,23:4,33:n},{1:[3]},{3:6,4:2,5:e,23:4,33:n},t(r,[2,3],{6:7}),{24:8,34:[1,9]},{34:[2,36]},{1:[2,1]},{4:25,7:[1,10],8:11,9:[1,12],10:13,11:[1,14],12:i,13:a,14:o,15:s,16:c,17:u,18:l,19:h,20:23,21:f,23:4,28:d,33:n},{25:27,26:[1,28],36:p},t([26,36],[2,37]),t(r,[2,8],{1:[2,2]}),t(r,[2,4]),{4:25,10:30,12:i,13:a,14:o,15:s,16:c,17:u,18:l,19:h,20:23,21:f,23:4,28:d,33:n},t(r,[2,6]),t(r,[2,7]),t(r,[2,9]),t(r,[2,10]),t(r,[2,11]),t(r,[2,12]),t(r,[2,13]),t(r,[2,14]),t(r,[2,15]),t(r,[2,16]),t(r,[2,17]),{22:[1,31]},t(r,[2,19]),{29:[1,32],31:[1,33]},{11:[1,34]},{27:35,35:[1,36]},{11:[2,39]},t(r,[2,5]),t(r,[2,18]),t(r,[2,22],{30:[1,37],31:[1,38]}),t(r,[2,28],{29:[1,39]}),t(y,[2,20]),{25:40,36:p},{36:[2,38]},t(r,[2,23],{31:[1,41]}),t(r,[2,24]),t(r,[2,26],{30:[1,42]}),{11:[1,43]},t(r,[2,25]),t(r,[2,27]),t(y,[2,21])],defaultActions:{5:[2,36],6:[2,1],29:[2,39],36:[2,38]},parseError:function(t,e){if(!e.recoverable){var n=new Error(t);throw n.hash=e,n}this.trace(t)},parse:function(t){var e=this,n=[0],r=[],i=[null],a=[],o=this.table,s="",c=0,u=0,l=0,h=2,f=1,d=a.slice.call(arguments,1),p=Object.create(this.lexer),y={yy:{}};for(var g in this.yy)Object.prototype.hasOwnProperty.call(this.yy,g)&&(y.yy[g]=this.yy[g]);p.setInput(t,y.yy),y.yy.lexer=p,y.yy.parser=this,void 0===p.yylloc&&(p.yylloc={});var m=p.yylloc;a.push(m);var v=p.options&&p.options.ranges;function b(){var t;return"number"!=typeof(t=r.pop()||p.lex()||f)&&(t instanceof Array&&(t=(r=t).pop()),t=e.symbols_[t]||t),t}"function"==typeof y.yy.parseError?this.parseError=y.yy.parseError:this.parseError=Object.getPrototypeOf(this).parseError;for(var x,_,k,w,E,T,C,S,A,M={};;){if(k=n[n.length-1],this.defaultActions[k]?w=this.defaultActions[k]:(null==x&&(x=b()),w=o[k]&&o[k][x]),void 0===w||!w.length||!w[0]){var O="";for(T in A=[],o[k])this.terminals_[T]&&T>h&&A.push("'"+this.terminals_[T]+"'");O=p.showPosition?"Parse error on line "+(c+1)+":\n"+p.showPosition()+"\nExpecting "+A.join(", ")+", got '"+(this.terminals_[x]||x)+"'":"Parse error on line "+(c+1)+": Unexpected "+(x==f?"end of input":"'"+(this.terminals_[x]||x)+"'"),this.parseError(O,{text:p.match,token:this.terminals_[x]||x,line:p.yylineno,loc:m,expected:A})}if(w[0]instanceof Array&&w.length>1)throw new Error("Parse Error: multiple actions possible at state: "+k+", token: "+x);switch(w[0]){case 1:n.push(x),i.push(p.yytext),a.push(p.yylloc),n.push(w[1]),x=null,_?(x=_,_=null):(u=p.yyleng,s=p.yytext,c=p.yylineno,m=p.yylloc,l>0&&l--);break;case 2:if(C=this.productions_[w[1]][1],M.$=i[i.length-C],M._$={first_line:a[a.length-(C||1)].first_line,last_line:a[a.length-1].last_line,first_column:a[a.length-(C||1)].first_column,last_column:a[a.length-1].last_column},v&&(M._$.range=[a[a.length-(C||1)].range[0],a[a.length-1].range[1]]),void 0!==(E=this.performAction.apply(M,[s,u,c,y.yy,w[1],i,a].concat(d))))return E;C&&(n=n.slice(0,-1*C*2),i=i.slice(0,-1*C),a=a.slice(0,-1*C)),n.push(this.productions_[w[1]][0]),i.push(M.$),a.push(M._$),S=o[n[n.length-2]][n[n.length-1]],n.push(S);break;case 3:return!0}}return!0}},m={EOF:1,parseError:function(t,e){if(!this.yy.parser)throw new Error(t);this.yy.parser.parseError(t,e)},setInput:function(t,e){return this.yy=e||this.yy||{},this._input=t,this._more=this._backtrack=this.done=!1,this.yylineno=this.yyleng=0,this.yytext=this.matched=this.match="",this.conditionStack=["INITIAL"],this.yylloc={first_line:1,first_column:0,last_line:1,last_column:0},this.options.ranges&&(this.yylloc.range=[0,0]),this.offset=0,this},input:function(){var t=this._input[0];return this.yytext+=t,this.yyleng++,this.offset++,this.match+=t,this.matched+=t,t.match(/(?:\r\n?|\n).*/g)?(this.yylineno++,this.yylloc.last_line++):this.yylloc.last_column++,this.options.ranges&&this.yylloc.range[1]++,this._input=this._input.slice(1),t},unput:function(t){var e=t.length,n=t.split(/(?:\r\n?|\n)/g);this._input=t+this._input,this.yytext=this.yytext.substr(0,this.yytext.length-e),this.offset-=e;var r=this.match.split(/(?:\r\n?|\n)/g);this.match=this.match.substr(0,this.match.length-1),this.matched=this.matched.substr(0,this.matched.length-1),n.length-1&&(this.yylineno-=n.length-1);var i=this.yylloc.range;return this.yylloc={first_line:this.yylloc.first_line,last_line:this.yylineno+1,first_column:this.yylloc.first_column,last_column:n?(n.length===r.length?this.yylloc.first_column:0)+r[r.length-n.length].length-n[0].length:this.yylloc.first_column-e},this.options.ranges&&(this.yylloc.range=[i[0],i[0]+this.yyleng-e]),this.yyleng=this.yytext.length,this},more:function(){return this._more=!0,this},reject:function(){return this.options.backtrack_lexer?(this._backtrack=!0,this):this.parseError("Lexical error on line "+(this.yylineno+1)+". You can only invoke reject() in the lexer when the lexer is of the backtracking persuasion (options.backtrack_lexer = true).\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},less:function(t){this.unput(this.match.slice(t))},pastInput:function(){var t=this.matched.substr(0,this.matched.length-this.match.length);return(t.length>20?"...":"")+t.substr(-20).replace(/\n/g,"")},upcomingInput:function(){var t=this.match;return t.length<20&&(t+=this._input.substr(0,20-t.length)),(t.substr(0,20)+(t.length>20?"...":"")).replace(/\n/g,"")},showPosition:function(){var t=this.pastInput(),e=new Array(t.length+1).join("-");return t+this.upcomingInput()+"\n"+e+"^"},test_match:function(t,e){var n,r,i;if(this.options.backtrack_lexer&&(i={yylineno:this.yylineno,yylloc:{first_line:this.yylloc.first_line,last_line:this.last_line,first_column:this.yylloc.first_column,last_column:this.yylloc.last_column},yytext:this.yytext,match:this.match,matches:this.matches,matched:this.matched,yyleng:this.yyleng,offset:this.offset,_more:this._more,_input:this._input,yy:this.yy,conditionStack:this.conditionStack.slice(0),done:this.done},this.options.ranges&&(i.yylloc.range=this.yylloc.range.slice(0))),(r=t[0].match(/(?:\r\n?|\n).*/g))&&(this.yylineno+=r.length),this.yylloc={first_line:this.yylloc.last_line,last_line:this.yylineno+1,first_column:this.yylloc.last_column,last_column:r?r[r.length-1].length-r[r.length-1].match(/\r?\n?/)[0].length:this.yylloc.last_column+t[0].length},this.yytext+=t[0],this.match+=t[0],this.matches=t,this.yyleng=this.yytext.length,this.options.ranges&&(this.yylloc.range=[this.offset,this.offset+=this.yyleng]),this._more=!1,this._backtrack=!1,this._input=this._input.slice(t[0].length),this.matched+=t[0],n=this.performAction.call(this,this.yy,this,e,this.conditionStack[this.conditionStack.length-1]),this.done&&this._input&&(this.done=!1),n)return n;if(this._backtrack){for(var a in i)this[a]=i[a];return!1}return!1},next:function(){if(this.done)return this.EOF;var t,e,n,r;this._input||(this.done=!0),this._more||(this.yytext="",this.match="");for(var i=this._currentRules(),a=0;a<i.length;a++)if((n=this._input.match(this.rules[i[a]]))&&(!e||n[0].length>e[0].length)){if(e=n,r=a,this.options.backtrack_lexer){if(!1!==(t=this.test_match(n,i[a])))return t;if(this._backtrack){e=!1;continue}return!1}if(!this.options.flex)break}return e?!1!==(t=this.test_match(e,i[r]))&&t:""===this._input?this.EOF:this.parseError("Lexical error on line "+(this.yylineno+1)+". Unrecognized text.\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},lex:function(){var t=this.next();return t||this.lex()},begin:function(t){this.conditionStack.push(t)},popState:function(){return this.conditionStack.length-1>0?this.conditionStack.pop():this.conditionStack[0]},_currentRules:function(){return this.conditionStack.length&&this.conditionStack[this.conditionStack.length-1]?this.conditions[this.conditionStack[this.conditionStack.length-1]].rules:this.conditions.INITIAL.rules},topState:function(t){return(t=this.conditionStack.length-1-Math.abs(t||0))>=0?this.conditionStack[t]:"INITIAL"},pushState:function(t){this.begin(t)},stateStackSize:function(){return this.conditionStack.length},options:{"case-insensitive":!0},performAction:function(t,e,n,r){switch(n){case 0:return this.begin("open_directive"),33;case 1:return this.begin("type_directive"),34;case 2:return this.popState(),this.begin("arg_directive"),26;case 3:return this.popState(),this.popState(),36;case 4:return 35;case 5:case 6:case 7:break;case 8:return 11;case 9:case 10:case 11:break;case 12:this.begin("href");break;case 13:this.popState();break;case 14:return 31;case 15:this.begin("callbackname");break;case 16:this.popState();break;case 17:this.popState(),this.begin("callbackargs");break;case 18:return 29;case 19:this.popState();break;case 20:return 30;case 21:this.begin("click");break;case 22:this.popState();break;case 23:return 28;case 24:return 5;case 25:return 12;case 26:return 13;case 27:return 14;case 28:return 15;case 29:return 16;case 30:return 17;case 31:return"date";case 32:return 18;case 33:return 19;case 34:return 21;case 35:return 22;case 36:return 26;case 37:return 7;case 38:return"INVALID"}},rules:[/^(?:%%\{)/i,/^(?:((?:(?!\}%%)[^:.])*))/i,/^(?::)/i,/^(?:\}%%)/i,/^(?:((?:(?!\}%%).|\n)*))/i,/^(?:%%(?!\{)*[^\n]*)/i,/^(?:[^\}]%%*[^\n]*)/i,/^(?:%%*[^\n]*[\n]*)/i,/^(?:[\n]+)/i,/^(?:\s+)/i,/^(?:#[^\n]*)/i,/^(?:%[^\n]*)/i,/^(?:href[\s]+["])/i,/^(?:["])/i,/^(?:[^"]*)/i,/^(?:call[\s]+)/i,/^(?:\([\s]*\))/i,/^(?:\()/i,/^(?:[^(]*)/i,/^(?:\))/i,/^(?:[^)]*)/i,/^(?:click[\s]+)/i,/^(?:[\s\n])/i,/^(?:[^\s\n]*)/i,/^(?:gantt\b)/i,/^(?:dateFormat\s[^#\n;]+)/i,/^(?:inclusiveEndDates\b)/i,/^(?:topAxis\b)/i,/^(?:axisFormat\s[^#\n;]+)/i,/^(?:excludes\s[^#\n;]+)/i,/^(?:todayMarker\s[^\n;]+)/i,/^(?:\d\d\d\d-\d\d-\d\d\b)/i,/^(?:title\s[^#\n;]+)/i,/^(?:section\s[^#:\n;]+)/i,/^(?:[^#:\n;]+)/i,/^(?::[^#\n;]+)/i,/^(?::)/i,/^(?:$)/i,/^(?:.)/i],conditions:{close_directive:{rules:[],inclusive:!1},arg_directive:{rules:[3,4],inclusive:!1},type_directive:{rules:[2,3],inclusive:!1},open_directive:{rules:[1],inclusive:!1},callbackargs:{rules:[19,20],inclusive:!1},callbackname:{rules:[16,17,18],inclusive:!1},href:{rules:[13,14],inclusive:!1},click:{rules:[22,23],inclusive:!1},INITIAL:{rules:[0,5,6,7,8,9,10,11,12,15,21,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38],inclusive:!0}}};function v(){this.yy={}}return g.lexer=m,v.prototype=g,g.Parser=v,new v}();e.parser=i,e.Parser=i.Parser,e.parse=function(){return i.parse.apply(i,arguments)},e.main=function(r){r[1]||(console.log("Usage: "+r[0]+" FILE"),t.exit(1));var i=n(17).readFileSync(n(18).normalize(r[1]),"utf8");return e.parser.parse(i)},n.c[n.s]===r&&e.main(t.argv.slice(1))}).call(this,n(12),n(7)(t))},function(t,e,n){var r=n(39),i=n(82);t.exports=function(t){return null!=t&&i(t.length)&&!r(t)}},function(t,e,n){var r=n(261),i=n(271),a=n(36),o=n(5),s=n(278);t.exports=function(t){return"function"==typeof t?t:null==t?a:"object"==typeof t?o(t)?i(t[0],t[1]):r(t):s(t)}},function(t,e,n){(function(t,r){var i=function(){var t=function(t,e,n,r){for(n=n||{},r=t.length;r--;n[t[r]]=e);return n},e=[1,9],n=[1,7],r=[1,6],i=[1,8],a=[1,20,21,22,23,38,47,76,77,78,79,80,81,95,96,99,100,101,103,104,110,111,112,113,114,115,116,117,118,119],o=[2,10],s=[1,20],c=[1,21],u=[1,22],l=[1,23],h=[1,30],f=[1,59],d=[1,33],p=[1,34],y=[1,35],g=[1,36],m=[1,37],v=[1,53],b=[1,48],x=[1,50],_=[1,45],k=[1,49],w=[1,52],E=[1,56],T=[1,57],C=[1,38],S=[1,39],A=[1,40],M=[1,41],O=[1,58],N=[1,47],B=[1,51],D=[1,54],L=[1,55],I=[1,46],R=[1,62],F=[1,67],P=[1,20,21,22,23,38,42,47,76,77,78,79,80,81,95,96,99,100,101,103,104,110,111,112,113,114,115,116,117,118,119],j=[1,71],Y=[1,70],z=[1,72],U=[20,21,23,70,71],$=[1,93],q=[1,98],W=[1,95],H=[1,100],V=[1,103],G=[1,101],X=[1,102],Z=[1,96],K=[1,108],Q=[1,107],J=[1,97],tt=[1,99],et=[1,104],nt=[1,105],rt=[1,106],it=[1,109],at=[20,21,22,23,70,71],ot=[20,21,22,23,48,70,71],st=[20,21,22,23,40,47,48,50,52,54,56,58,60,62,63,65,70,71,81,95,96,99,100,101,103,104,114,115,116,117,118,119],ct=[20,21,23],ut=[20,21,23,47,70,71,81,95,96,99,100,101,103,104,114,115,116,117,118,119],lt=[1,12,20,21,22,23,24,38,42,47,76,77,78,79,80,81,95,96,99,100,101,103,104,110,111,112,113,114,115,116,117,118,119],ht=[47,81,95,96,99,100,101,103,104,114,115,116,117,118,119],ft=[1,141],dt=[1,149],pt=[1,150],yt=[1,151],gt=[1,152],mt=[1,136],vt=[1,137],bt=[1,133],xt=[1,144],_t=[1,145],kt=[1,146],wt=[1,147],Et=[1,148],Tt=[1,153],Ct=[1,154],St=[1,139],At=[1,142],Mt=[1,138],Ot=[1,135],Nt=[20,21,22,23,38,42,47,76,77,78,79,80,81,95,96,99,100,101,103,104,110,111,112,113,114,115,116,117,118,119],Bt=[1,157],Dt=[20,21,22,23,26,47,81,95,96,99,100,101,103,104,114,115,116,117,118,119],Lt=[20,21,22,23,24,26,38,40,41,42,47,51,53,55,57,59,61,62,64,66,70,71,72,76,77,78,79,80,81,82,85,95,96,99,100,101,103,104,105,106,114,115,116,117,118,119],It=[12,21,22,24],Rt=[22,96],Ft=[1,238],Pt=[1,242],jt=[1,239],Yt=[1,236],zt=[1,233],Ut=[1,234],$t=[1,235],qt=[1,237],Wt=[1,240],Ht=[1,241],Vt=[1,243],Gt=[1,260],Xt=[20,21,23,96],Zt=[20,21,22,23,76,92,95,96,99,100,101,102,103,104,105],Kt={trace:function(){},yy:{},symbols_:{error:2,start:3,mermaidDoc:4,directive:5,openDirective:6,typeDirective:7,closeDirective:8,separator:9,":":10,argDirective:11,open_directive:12,type_directive:13,arg_directive:14,close_directive:15,graphConfig:16,document:17,line:18,statement:19,SEMI:20,NEWLINE:21,SPACE:22,EOF:23,GRAPH:24,NODIR:25,DIR:26,FirstStmtSeperator:27,ending:28,endToken:29,spaceList:30,spaceListNewline:31,verticeStatement:32,styleStatement:33,linkStyleStatement:34,classDefStatement:35,classStatement:36,clickStatement:37,subgraph:38,text:39,SQS:40,SQE:41,end:42,direction:43,link:44,node:45,vertex:46,AMP:47,STYLE_SEPARATOR:48,idString:49,PS:50,PE:51,"(-":52,"-)":53,STADIUMSTART:54,STADIUMEND:55,SUBROUTINESTART:56,SUBROUTINEEND:57,CYLINDERSTART:58,CYLINDEREND:59,DIAMOND_START:60,DIAMOND_STOP:61,TAGEND:62,TRAPSTART:63,TRAPEND:64,INVTRAPSTART:65,INVTRAPEND:66,linkStatement:67,arrowText:68,TESTSTR:69,START_LINK:70,LINK:71,PIPE:72,textToken:73,STR:74,keywords:75,STYLE:76,LINKSTYLE:77,CLASSDEF:78,CLASS:79,CLICK:80,DOWN:81,UP:82,textNoTags:83,textNoTagsToken:84,DEFAULT:85,stylesOpt:86,alphaNum:87,CALLBACKNAME:88,CALLBACKARGS:89,HREF:90,LINK_TARGET:91,HEX:92,numList:93,INTERPOLATE:94,NUM:95,COMMA:96,style:97,styleComponent:98,ALPHA:99,COLON:100,MINUS:101,UNIT:102,BRKT:103,DOT:104,PCT:105,TAGSTART:106,alphaNumToken:107,idStringToken:108,alphaNumStatement:109,direction_tb:110,direction_bt:111,direction_rl:112,direction_lr:113,PUNCTUATION:114,UNICODE_TEXT:115,PLUS:116,EQUALS:117,MULT:118,UNDERSCORE:119,graphCodeTokens:120,ARROW_CROSS:121,ARROW_POINT:122,ARROW_CIRCLE:123,ARROW_OPEN:124,QUOTE:125,$accept:0,$end:1},terminals_:{2:"error",10:":",12:"open_directive",13:"type_directive",14:"arg_directive",15:"close_directive",20:"SEMI",21:"NEWLINE",22:"SPACE",23:"EOF",24:"GRAPH",25:"NODIR",26:"DIR",38:"subgraph",40:"SQS",41:"SQE",42:"end",47:"AMP",48:"STYLE_SEPARATOR",50:"PS",51:"PE",52:"(-",53:"-)",54:"STADIUMSTART",55:"STADIUMEND",56:"SUBROUTINESTART",57:"SUBROUTINEEND",58:"CYLINDERSTART",59:"CYLINDEREND",60:"DIAMOND_START",61:"DIAMOND_STOP",62:"TAGEND",63:"TRAPSTART",64:"TRAPEND",65:"INVTRAPSTART",66:"INVTRAPEND",69:"TESTSTR",70:"START_LINK",71:"LINK",72:"PIPE",74:"STR",76:"STYLE",77:"LINKSTYLE",78:"CLASSDEF",79:"CLASS",80:"CLICK",81:"DOWN",82:"UP",85:"DEFAULT",88:"CALLBACKNAME",89:"CALLBACKARGS",90:"HREF",91:"LINK_TARGET",92:"HEX",94:"INTERPOLATE",95:"NUM",96:"COMMA",99:"ALPHA",100:"COLON",101:"MINUS",102:"UNIT",103:"BRKT",104:"DOT",105:"PCT",106:"TAGSTART",110:"direction_tb",111:"direction_bt",112:"direction_rl",113:"direction_lr",114:"PUNCTUATION",115:"UNICODE_TEXT",116:"PLUS",117:"EQUALS",118:"MULT",119:"UNDERSCORE",121:"ARROW_CROSS",122:"ARROW_POINT",123:"ARROW_CIRCLE",124:"ARROW_OPEN",125:"QUOTE"},productions_:[0,[3,1],[3,2],[5,4],[5,6],[6,1],[7,1],[11,1],[8,1],[4,2],[17,0],[17,2],[18,1],[18,1],[18,1],[18,1],[18,1],[16,2],[16,2],[16,2],[16,3],[28,2],[28,1],[29,1],[29,1],[29,1],[27,1],[27,1],[27,2],[31,2],[31,2],[31,1],[31,1],[30,2],[30,1],[19,2],[19,2],[19,2],[19,2],[19,2],[19,2],[19,9],[19,6],[19,4],[19,1],[9,1],[9,1],[9,1],[32,3],[32,4],[32,2],[32,1],[45,1],[45,5],[45,3],[46,4],[46,6],[46,4],[46,4],[46,4],[46,4],[46,4],[46,4],[46,6],[46,4],[46,4],[46,4],[46,4],[46,4],[46,1],[44,2],[44,3],[44,3],[44,1],[44,3],[67,1],[68,3],[39,1],[39,2],[39,1],[75,1],[75,1],[75,1],[75,1],[75,1],[75,1],[75,1],[75,1],[75,1],[75,1],[75,1],[83,1],[83,2],[35,5],[35,5],[36,5],[37,2],[37,4],[37,3],[37,5],[37,2],[37,4],[37,4],[37,6],[37,2],[37,4],[37,2],[37,4],[37,4],[37,6],[33,5],[33,5],[34,5],[34,5],[34,9],[34,9],[34,7],[34,7],[93,1],[93,3],[86,1],[86,3],[97,1],[97,2],[98,1],[98,1],[98,1],[98,1],[98,1],[98,1],[98,1],[98,1],[98,1],[98,1],[98,1],[73,1],[73,1],[73,1],[73,1],[73,1],[73,1],[84,1],[84,1],[84,1],[84,1],[49,1],[49,2],[87,1],[87,2],[109,1],[109,1],[109,1],[109,1],[43,1],[43,1],[43,1],[43,1],[107,1],[107,1],[107,1],[107,1],[107,1],[107,1],[107,1],[107,1],[107,1],[107,1],[107,1],[107,1],[107,1],[108,1],[108,1],[108,1],[108,1],[108,1],[108,1],[108,1],[108,1],[108,1],[108,1],[108,1],[108,1],[108,1],[108,1],[108,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1]],performAction:function(t,e,n,r,i,a,o){var s=a.length-1;switch(i){case 5:r.parseDirective("%%{","open_directive");break;case 6:r.parseDirective(a[s],"type_directive");break;case 7:a[s]=a[s].trim().replace(/'/g,'"'),r.parseDirective(a[s],"arg_directive");break;case 8:r.parseDirective("}%%","close_directive","flowchart");break;case 10:this.$=[];break;case 11:a[s]!==[]&&a[s-1].push(a[s]),this.$=a[s-1];break;case 12:case 77:case 79:case 91:case 147:case 149:case 150:this.$=a[s];break;case 19:r.setDirection("TB"),this.$="TB";break;case 20:r.setDirection(a[s-1]),this.$=a[s-1];break;case 35:this.$=a[s-1].nodes;break;case 36:case 37:case 38:case 39:case 40:this.$=[];break;case 41:this.$=r.addSubGraph(a[s-6],a[s-1],a[s-4]);break;case 42:this.$=r.addSubGraph(a[s-3],a[s-1],a[s-3]);break;case 43:this.$=r.addSubGraph(void 0,a[s-1],void 0);break;case 48:r.addLink(a[s-2].stmt,a[s],a[s-1]),this.$={stmt:a[s],nodes:a[s].concat(a[s-2].nodes)};break;case 49:r.addLink(a[s-3].stmt,a[s-1],a[s-2]),this.$={stmt:a[s-1],nodes:a[s-1].concat(a[s-3].nodes)};break;case 50:this.$={stmt:a[s-1],nodes:a[s-1]};break;case 51:this.$={stmt:a[s],nodes:a[s]};break;case 52:this.$=[a[s]];break;case 53:this.$=a[s-4].concat(a[s]);break;case 54:this.$=[a[s-2]],r.setClass(a[s-2],a[s]);break;case 55:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"square");break;case 56:this.$=a[s-5],r.addVertex(a[s-5],a[s-2],"circle");break;case 57:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"ellipse");break;case 58:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"stadium");break;case 59:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"subroutine");break;case 60:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"cylinder");break;case 61:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"round");break;case 62:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"diamond");break;case 63:this.$=a[s-5],r.addVertex(a[s-5],a[s-2],"hexagon");break;case 64:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"odd");break;case 65:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"trapezoid");break;case 66:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"inv_trapezoid");break;case 67:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"lean_right");break;case 68:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"lean_left");break;case 69:this.$=a[s],r.addVertex(a[s]);break;case 70:a[s-1].text=a[s],this.$=a[s-1];break;case 71:case 72:a[s-2].text=a[s-1],this.$=a[s-2];break;case 73:this.$=a[s];break;case 74:var c=r.destructLink(a[s],a[s-2]);this.$={type:c.type,stroke:c.stroke,length:c.length,text:a[s-1]};break;case 75:c=r.destructLink(a[s]);this.$={type:c.type,stroke:c.stroke,length:c.length};break;case 76:this.$=a[s-1];break;case 78:case 92:case 148:this.$=a[s-1]+""+a[s];break;case 93:case 94:this.$=a[s-4],r.addClass(a[s-2],a[s]);break;case 95:this.$=a[s-4],r.setClass(a[s-2],a[s]);break;case 96:case 104:this.$=a[s-1],r.setClickEvent(a[s-1],a[s]);break;case 97:case 105:this.$=a[s-3],r.setClickEvent(a[s-3],a[s-2]),r.setTooltip(a[s-3],a[s]);break;case 98:this.$=a[s-2],r.setClickEvent(a[s-2],a[s-1],a[s]);break;case 99:this.$=a[s-4],r.setClickEvent(a[s-4],a[s-3],a[s-2]),r.setTooltip(a[s-4],a[s]);break;case 100:case 106:this.$=a[s-1],r.setLink(a[s-1],a[s]);break;case 101:case 107:this.$=a[s-3],r.setLink(a[s-3],a[s-2]),r.setTooltip(a[s-3],a[s]);break;case 102:case 108:this.$=a[s-3],r.setLink(a[s-3],a[s-2],a[s]);break;case 103:case 109:this.$=a[s-5],r.setLink(a[s-5],a[s-4],a[s]),r.setTooltip(a[s-5],a[s-2]);break;case 110:this.$=a[s-4],r.addVertex(a[s-2],void 0,void 0,a[s]);break;case 111:case 113:this.$=a[s-4],r.updateLink(a[s-2],a[s]);break;case 112:this.$=a[s-4],r.updateLink([a[s-2]],a[s]);break;case 114:this.$=a[s-8],r.updateLinkInterpolate([a[s-6]],a[s-2]),r.updateLink([a[s-6]],a[s]);break;case 115:this.$=a[s-8],r.updateLinkInterpolate(a[s-6],a[s-2]),r.updateLink(a[s-6],a[s]);break;case 116:this.$=a[s-6],r.updateLinkInterpolate([a[s-4]],a[s]);break;case 117:this.$=a[s-6],r.updateLinkInterpolate(a[s-4],a[s]);break;case 118:case 120:this.$=[a[s]];break;case 119:case 121:a[s-2].push(a[s]),this.$=a[s-2];break;case 123:this.$=a[s-1]+a[s];break;case 145:this.$=a[s];break;case 146:this.$=a[s-1]+""+a[s];break;case 151:this.$="v";break;case 152:this.$="-";break;case 153:this.$={stmt:"dir",value:"TB"};break;case 154:this.$={stmt:"dir",value:"BT"};break;case 155:this.$={stmt:"dir",value:"RL"};break;case 156:this.$={stmt:"dir",value:"LR"}}},table:[{3:1,4:2,5:3,6:5,12:e,16:4,21:n,22:r,24:i},{1:[3]},{1:[2,1]},{3:10,4:2,5:3,6:5,12:e,16:4,21:n,22:r,24:i},t(a,o,{17:11}),{7:12,13:[1,13]},{16:14,21:n,22:r,24:i},{16:15,21:n,22:r,24:i},{25:[1,16],26:[1,17]},{13:[2,5]},{1:[2,2]},{1:[2,9],18:18,19:19,20:s,21:c,22:u,23:l,32:24,33:25,34:26,35:27,36:28,37:29,38:h,43:31,45:32,46:42,47:f,49:43,76:d,77:p,78:y,79:g,80:m,81:v,95:b,96:x,99:_,100:k,101:w,103:E,104:T,108:44,110:C,111:S,112:A,113:M,114:O,115:N,116:B,117:D,118:L,119:I},{8:60,10:[1,61],15:R},t([10,15],[2,6]),t(a,[2,17]),t(a,[2,18]),t(a,[2,19]),{20:[1,64],21:[1,65],22:F,27:63,30:66},t(P,[2,11]),t(P,[2,12]),t(P,[2,13]),t(P,[2,14]),t(P,[2,15]),t(P,[2,16]),{9:68,20:j,21:Y,23:z,44:69,67:73,70:[1,74],71:[1,75]},{9:76,20:j,21:Y,23:z},{9:77,20:j,21:Y,23:z},{9:78,20:j,21:Y,23:z},{9:79,20:j,21:Y,23:z},{9:80,20:j,21:Y,23:z},{9:82,20:j,21:Y,22:[1,81],23:z},t(P,[2,44]),t(U,[2,51],{30:83,22:F}),{22:[1,84]},{22:[1,85]},{22:[1,86]},{22:[1,87]},{26:$,47:q,74:[1,91],81:W,87:90,88:[1,88],90:[1,89],95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,107:94,109:92,114:J,115:tt,116:et,117:nt,118:rt,119:it},t(P,[2,153]),t(P,[2,154]),t(P,[2,155]),t(P,[2,156]),t(at,[2,52],{48:[1,110]}),t(ot,[2,69],{108:121,40:[1,111],47:f,50:[1,112],52:[1,113],54:[1,114],56:[1,115],58:[1,116],60:[1,117],62:[1,118],63:[1,119],65:[1,120],81:v,95:b,96:x,99:_,100:k,101:w,103:E,104:T,114:O,115:N,116:B,117:D,118:L,119:I}),t(st,[2,145]),t(st,[2,170]),t(st,[2,171]),t(st,[2,172]),t(st,[2,173]),t(st,[2,174]),t(st,[2,175]),t(st,[2,176]),t(st,[2,177]),t(st,[2,178]),t(st,[2,179]),t(st,[2,180]),t(st,[2,181]),t(st,[2,182]),t(st,[2,183]),t(st,[2,184]),{9:122,20:j,21:Y,23:z},{11:123,14:[1,124]},t(ct,[2,8]),t(a,[2,20]),t(a,[2,26]),t(a,[2,27]),{21:[1,125]},t(ut,[2,34],{30:126,22:F}),t(P,[2,35]),{45:127,46:42,47:f,49:43,81:v,95:b,96:x,99:_,100:k,101:w,103:E,104:T,108:44,114:O,115:N,116:B,117:D,118:L,119:I},t(lt,[2,45]),t(lt,[2,46]),t(lt,[2,47]),t(ht,[2,73],{68:128,69:[1,129],72:[1,130]}),{22:ft,24:dt,26:pt,38:yt,39:131,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},t([47,69,72,81,95,96,99,100,101,103,104,114,115,116,117,118,119],[2,75]),t(P,[2,36]),t(P,[2,37]),t(P,[2,38]),t(P,[2,39]),t(P,[2,40]),{22:ft,24:dt,26:pt,38:yt,39:155,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},t(Nt,o,{17:156}),t(U,[2,50],{47:Bt}),{26:$,47:q,81:W,87:158,92:[1,159],95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,107:94,109:92,114:J,115:tt,116:et,117:nt,118:rt,119:it},{85:[1,160],93:161,95:[1,162]},{26:$,47:q,81:W,85:[1,163],87:164,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,107:94,109:92,114:J,115:tt,116:et,117:nt,118:rt,119:it},{26:$,47:q,81:W,87:165,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,107:94,109:92,114:J,115:tt,116:et,117:nt,118:rt,119:it},t(ct,[2,96],{22:[1,166],89:[1,167]}),t(ct,[2,100],{22:[1,168]}),t(ct,[2,104],{107:94,109:170,22:[1,169],26:$,47:q,81:W,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,114:J,115:tt,116:et,117:nt,118:rt,119:it}),t(ct,[2,106],{22:[1,171]}),t(Dt,[2,147]),t(Dt,[2,149]),t(Dt,[2,150]),t(Dt,[2,151]),t(Dt,[2,152]),t(Lt,[2,157]),t(Lt,[2,158]),t(Lt,[2,159]),t(Lt,[2,160]),t(Lt,[2,161]),t(Lt,[2,162]),t(Lt,[2,163]),t(Lt,[2,164]),t(Lt,[2,165]),t(Lt,[2,166]),t(Lt,[2,167]),t(Lt,[2,168]),t(Lt,[2,169]),{47:f,49:172,81:v,95:b,96:x,99:_,100:k,101:w,103:E,104:T,108:44,114:O,115:N,116:B,117:D,118:L,119:I},{22:ft,24:dt,26:pt,38:yt,39:173,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,39:175,42:gt,47:q,50:[1,174],62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,39:176,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,39:177,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,39:178,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,39:179,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,39:180,42:gt,47:q,60:[1,181],62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,39:182,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,39:183,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,39:184,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},t(st,[2,146]),t(It,[2,3]),{8:185,15:R},{15:[2,7]},t(a,[2,28]),t(ut,[2,33]),t(U,[2,48],{30:186,22:F}),t(ht,[2,70],{22:[1,187]}),{22:[1,188]},{22:ft,24:dt,26:pt,38:yt,39:189,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,62:mt,70:vt,71:[1,190],73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},t(Lt,[2,77]),t(Lt,[2,79]),t(Lt,[2,135]),t(Lt,[2,136]),t(Lt,[2,137]),t(Lt,[2,138]),t(Lt,[2,139]),t(Lt,[2,140]),t(Lt,[2,141]),t(Lt,[2,142]),t(Lt,[2,143]),t(Lt,[2,144]),t(Lt,[2,80]),t(Lt,[2,81]),t(Lt,[2,82]),t(Lt,[2,83]),t(Lt,[2,84]),t(Lt,[2,85]),t(Lt,[2,86]),t(Lt,[2,87]),t(Lt,[2,88]),t(Lt,[2,89]),t(Lt,[2,90]),{9:193,20:j,21:Y,22:ft,23:z,24:dt,26:pt,38:yt,40:[1,192],42:gt,47:q,62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{18:18,19:19,20:s,21:c,22:u,23:l,32:24,33:25,34:26,35:27,36:28,37:29,38:h,42:[1,194],43:31,45:32,46:42,47:f,49:43,76:d,77:p,78:y,79:g,80:m,81:v,95:b,96:x,99:_,100:k,101:w,103:E,104:T,108:44,110:C,111:S,112:A,113:M,114:O,115:N,116:B,117:D,118:L,119:I},{22:F,30:195},{22:[1,196],26:$,47:q,81:W,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,107:94,109:170,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:[1,197]},{22:[1,198]},{22:[1,199],96:[1,200]},t(Rt,[2,118]),{22:[1,201]},{22:[1,202],26:$,47:q,81:W,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,107:94,109:170,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:[1,203],26:$,47:q,81:W,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,107:94,109:170,114:J,115:tt,116:et,117:nt,118:rt,119:it},{74:[1,204]},t(ct,[2,98],{22:[1,205]}),{74:[1,206],91:[1,207]},{74:[1,208]},t(Dt,[2,148]),{74:[1,209],91:[1,210]},t(at,[2,54],{108:121,47:f,81:v,95:b,96:x,99:_,100:k,101:w,103:E,104:T,114:O,115:N,116:B,117:D,118:L,119:I}),{22:ft,24:dt,26:pt,38:yt,41:[1,211],42:gt,47:q,62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,39:212,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,51:[1,213],62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,53:[1,214],62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,55:[1,215],62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,57:[1,216],62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,59:[1,217],62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,61:[1,218],62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,39:219,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,41:[1,220],42:gt,47:q,62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,62:mt,64:[1,221],66:[1,222],70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,62:mt,64:[1,224],66:[1,223],70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{9:225,20:j,21:Y,23:z},t(U,[2,49],{47:Bt}),t(ht,[2,72]),t(ht,[2,71]),{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,62:mt,70:vt,72:[1,226],73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},t(ht,[2,74]),t(Lt,[2,78]),{22:ft,24:dt,26:pt,38:yt,39:227,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},t(Nt,o,{17:228}),t(P,[2,43]),{46:229,47:f,49:43,81:v,95:b,96:x,99:_,100:k,101:w,103:E,104:T,108:44,114:O,115:N,116:B,117:D,118:L,119:I},{22:Ft,76:Pt,86:230,92:jt,95:Yt,97:231,98:232,99:zt,100:Ut,101:$t,102:qt,103:Wt,104:Ht,105:Vt},{22:Ft,76:Pt,86:244,92:jt,95:Yt,97:231,98:232,99:zt,100:Ut,101:$t,102:qt,103:Wt,104:Ht,105:Vt},{22:Ft,76:Pt,86:245,92:jt,94:[1,246],95:Yt,97:231,98:232,99:zt,100:Ut,101:$t,102:qt,103:Wt,104:Ht,105:Vt},{22:Ft,76:Pt,86:247,92:jt,94:[1,248],95:Yt,97:231,98:232,99:zt,100:Ut,101:$t,102:qt,103:Wt,104:Ht,105:Vt},{95:[1,249]},{22:Ft,76:Pt,86:250,92:jt,95:Yt,97:231,98:232,99:zt,100:Ut,101:$t,102:qt,103:Wt,104:Ht,105:Vt},{22:Ft,76:Pt,86:251,92:jt,95:Yt,97:231,98:232,99:zt,100:Ut,101:$t,102:qt,103:Wt,104:Ht,105:Vt},{26:$,47:q,81:W,87:252,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,107:94,109:92,114:J,115:tt,116:et,117:nt,118:rt,119:it},t(ct,[2,97]),{74:[1,253]},t(ct,[2,101],{22:[1,254]}),t(ct,[2,102]),t(ct,[2,105]),t(ct,[2,107],{22:[1,255]}),t(ct,[2,108]),t(ot,[2,55]),{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,51:[1,256],62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},t(ot,[2,61]),t(ot,[2,57]),t(ot,[2,58]),t(ot,[2,59]),t(ot,[2,60]),t(ot,[2,62]),{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,61:[1,257],62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},t(ot,[2,64]),t(ot,[2,65]),t(ot,[2,67]),t(ot,[2,66]),t(ot,[2,68]),t(It,[2,4]),t([22,47,81,95,96,99,100,101,103,104,114,115,116,117,118,119],[2,76]),{22:ft,24:dt,26:pt,38:yt,41:[1,258],42:gt,47:q,62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Et,81:Tt,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{18:18,19:19,20:s,21:c,22:u,23:l,32:24,33:25,34:26,35:27,36:28,37:29,38:h,42:[1,259],43:31,45:32,46:42,47:f,49:43,76:d,77:p,78:y,79:g,80:m,81:v,95:b,96:x,99:_,100:k,101:w,103:E,104:T,108:44,110:C,111:S,112:A,113:M,114:O,115:N,116:B,117:D,118:L,119:I},t(at,[2,53]),t(ct,[2,110],{96:Gt}),t(Xt,[2,120],{98:261,22:Ft,76:Pt,92:jt,95:Yt,99:zt,100:Ut,101:$t,102:qt,103:Wt,104:Ht,105:Vt}),t(Zt,[2,122]),t(Zt,[2,124]),t(Zt,[2,125]),t(Zt,[2,126]),t(Zt,[2,127]),t(Zt,[2,128]),t(Zt,[2,129]),t(Zt,[2,130]),t(Zt,[2,131]),t(Zt,[2,132]),t(Zt,[2,133]),t(Zt,[2,134]),t(ct,[2,111],{96:Gt}),t(ct,[2,112],{96:Gt}),{22:[1,262]},t(ct,[2,113],{96:Gt}),{22:[1,263]},t(Rt,[2,119]),t(ct,[2,93],{96:Gt}),t(ct,[2,94],{96:Gt}),t(ct,[2,95],{107:94,109:170,26:$,47:q,81:W,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,114:J,115:tt,116:et,117:nt,118:rt,119:it}),t(ct,[2,99]),{91:[1,264]},{91:[1,265]},{51:[1,266]},{61:[1,267]},{9:268,20:j,21:Y,23:z},t(P,[2,42]),{22:Ft,76:Pt,92:jt,95:Yt,97:269,98:232,99:zt,100:Ut,101:$t,102:qt,103:Wt,104:Ht,105:Vt},t(Zt,[2,123]),{26:$,47:q,81:W,87:270,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,107:94,109:92,114:J,115:tt,116:et,117:nt,118:rt,119:it},{26:$,47:q,81:W,87:271,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,107:94,109:92,114:J,115:tt,116:et,117:nt,118:rt,119:it},t(ct,[2,103]),t(ct,[2,109]),t(ot,[2,56]),t(ot,[2,63]),t(Nt,o,{17:272}),t(Xt,[2,121],{98:261,22:Ft,76:Pt,92:jt,95:Yt,99:zt,100:Ut,101:$t,102:qt,103:Wt,104:Ht,105:Vt}),t(ct,[2,116],{107:94,109:170,22:[1,273],26:$,47:q,81:W,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,114:J,115:tt,116:et,117:nt,118:rt,119:it}),t(ct,[2,117],{107:94,109:170,22:[1,274],26:$,47:q,81:W,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,114:J,115:tt,116:et,117:nt,118:rt,119:it}),{18:18,19:19,20:s,21:c,22:u,23:l,32:24,33:25,34:26,35:27,36:28,37:29,38:h,42:[1,275],43:31,45:32,46:42,47:f,49:43,76:d,77:p,78:y,79:g,80:m,81:v,95:b,96:x,99:_,100:k,101:w,103:E,104:T,108:44,110:C,111:S,112:A,113:M,114:O,115:N,116:B,117:D,118:L,119:I},{22:Ft,76:Pt,86:276,92:jt,95:Yt,97:231,98:232,99:zt,100:Ut,101:$t,102:qt,103:Wt,104:Ht,105:Vt},{22:Ft,76:Pt,86:277,92:jt,95:Yt,97:231,98:232,99:zt,100:Ut,101:$t,102:qt,103:Wt,104:Ht,105:Vt},t(P,[2,41]),t(ct,[2,114],{96:Gt}),t(ct,[2,115],{96:Gt})],defaultActions:{2:[2,1],9:[2,5],10:[2,2],124:[2,7]},parseError:function(t,e){if(!e.recoverable){var n=new Error(t);throw n.hash=e,n}this.trace(t)},parse:function(t){var e=this,n=[0],r=[],i=[null],a=[],o=this.table,s="",c=0,u=0,l=0,h=2,f=1,d=a.slice.call(arguments,1),p=Object.create(this.lexer),y={yy:{}};for(var g in this.yy)Object.prototype.hasOwnProperty.call(this.yy,g)&&(y.yy[g]=this.yy[g]);p.setInput(t,y.yy),y.yy.lexer=p,y.yy.parser=this,void 0===p.yylloc&&(p.yylloc={});var m=p.yylloc;a.push(m);var v=p.options&&p.options.ranges;function b(){var t;return"number"!=typeof(t=r.pop()||p.lex()||f)&&(t instanceof Array&&(t=(r=t).pop()),t=e.symbols_[t]||t),t}"function"==typeof y.yy.parseError?this.parseError=y.yy.parseError:this.parseError=Object.getPrototypeOf(this).parseError;for(var x,_,k,w,E,T,C,S,A,M={};;){if(k=n[n.length-1],this.defaultActions[k]?w=this.defaultActions[k]:(null==x&&(x=b()),w=o[k]&&o[k][x]),void 0===w||!w.length||!w[0]){var O="";for(T in A=[],o[k])this.terminals_[T]&&T>h&&A.push("'"+this.terminals_[T]+"'");O=p.showPosition?"Parse error on line "+(c+1)+":\n"+p.showPosition()+"\nExpecting "+A.join(", ")+", got '"+(this.terminals_[x]||x)+"'":"Parse error on line "+(c+1)+": Unexpected "+(x==f?"end of input":"'"+(this.terminals_[x]||x)+"'"),this.parseError(O,{text:p.match,token:this.terminals_[x]||x,line:p.yylineno,loc:m,expected:A})}if(w[0]instanceof Array&&w.length>1)throw new Error("Parse Error: multiple actions possible at state: "+k+", token: "+x);switch(w[0]){case 1:n.push(x),i.push(p.yytext),a.push(p.yylloc),n.push(w[1]),x=null,_?(x=_,_=null):(u=p.yyleng,s=p.yytext,c=p.yylineno,m=p.yylloc,l>0&&l--);break;case 2:if(C=this.productions_[w[1]][1],M.$=i[i.length-C],M._$={first_line:a[a.length-(C||1)].first_line,last_line:a[a.length-1].last_line,first_column:a[a.length-(C||1)].first_column,last_column:a[a.length-1].last_column},v&&(M._$.range=[a[a.length-(C||1)].range[0],a[a.length-1].range[1]]),void 0!==(E=this.performAction.apply(M,[s,u,c,y.yy,w[1],i,a].concat(d))))return E;C&&(n=n.slice(0,-1*C*2),i=i.slice(0,-1*C),a=a.slice(0,-1*C)),n.push(this.productions_[w[1]][0]),i.push(M.$),a.push(M._$),S=o[n[n.length-2]][n[n.length-1]],n.push(S);break;case 3:return!0}}return!0}},Qt={EOF:1,parseError:function(t,e){if(!this.yy.parser)throw new Error(t);this.yy.parser.parseError(t,e)},setInput:function(t,e){return this.yy=e||this.yy||{},this._input=t,this._more=this._backtrack=this.done=!1,this.yylineno=this.yyleng=0,this.yytext=this.matched=this.match="",this.conditionStack=["INITIAL"],this.yylloc={first_line:1,first_column:0,last_line:1,last_column:0},this.options.ranges&&(this.yylloc.range=[0,0]),this.offset=0,this},input:function(){var t=this._input[0];return this.yytext+=t,this.yyleng++,this.offset++,this.match+=t,this.matched+=t,t.match(/(?:\r\n?|\n).*/g)?(this.yylineno++,this.yylloc.last_line++):this.yylloc.last_column++,this.options.ranges&&this.yylloc.range[1]++,this._input=this._input.slice(1),t},unput:function(t){var e=t.length,n=t.split(/(?:\r\n?|\n)/g);this._input=t+this._input,this.yytext=this.yytext.substr(0,this.yytext.length-e),this.offset-=e;var r=this.match.split(/(?:\r\n?|\n)/g);this.match=this.match.substr(0,this.match.length-1),this.matched=this.matched.substr(0,this.matched.length-1),n.length-1&&(this.yylineno-=n.length-1);var i=this.yylloc.range;return this.yylloc={first_line:this.yylloc.first_line,last_line:this.yylineno+1,first_column:this.yylloc.first_column,last_column:n?(n.length===r.length?this.yylloc.first_column:0)+r[r.length-n.length].length-n[0].length:this.yylloc.first_column-e},this.options.ranges&&(this.yylloc.range=[i[0],i[0]+this.yyleng-e]),this.yyleng=this.yytext.length,this},more:function(){return this._more=!0,this},reject:function(){return this.options.backtrack_lexer?(this._backtrack=!0,this):this.parseError("Lexical error on line "+(this.yylineno+1)+". You can only invoke reject() in the lexer when the lexer is of the backtracking persuasion (options.backtrack_lexer = true).\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},less:function(t){this.unput(this.match.slice(t))},pastInput:function(){var t=this.matched.substr(0,this.matched.length-this.match.length);return(t.length>20?"...":"")+t.substr(-20).replace(/\n/g,"")},upcomingInput:function(){var t=this.match;return t.length<20&&(t+=this._input.substr(0,20-t.length)),(t.substr(0,20)+(t.length>20?"...":"")).replace(/\n/g,"")},showPosition:function(){var t=this.pastInput(),e=new Array(t.length+1).join("-");return t+this.upcomingInput()+"\n"+e+"^"},test_match:function(t,e){var n,r,i;if(this.options.backtrack_lexer&&(i={yylineno:this.yylineno,yylloc:{first_line:this.yylloc.first_line,last_line:this.last_line,first_column:this.yylloc.first_column,last_column:this.yylloc.last_column},yytext:this.yytext,match:this.match,matches:this.matches,matched:this.matched,yyleng:this.yyleng,offset:this.offset,_more:this._more,_input:this._input,yy:this.yy,conditionStack:this.conditionStack.slice(0),done:this.done},this.options.ranges&&(i.yylloc.range=this.yylloc.range.slice(0))),(r=t[0].match(/(?:\r\n?|\n).*/g))&&(this.yylineno+=r.length),this.yylloc={first_line:this.yylloc.last_line,last_line:this.yylineno+1,first_column:this.yylloc.last_column,last_column:r?r[r.length-1].length-r[r.length-1].match(/\r?\n?/)[0].length:this.yylloc.last_column+t[0].length},this.yytext+=t[0],this.match+=t[0],this.matches=t,this.yyleng=this.yytext.length,this.options.ranges&&(this.yylloc.range=[this.offset,this.offset+=this.yyleng]),this._more=!1,this._backtrack=!1,this._input=this._input.slice(t[0].length),this.matched+=t[0],n=this.performAction.call(this,this.yy,this,e,this.conditionStack[this.conditionStack.length-1]),this.done&&this._input&&(this.done=!1),n)return n;if(this._backtrack){for(var a in i)this[a]=i[a];return!1}return!1},next:function(){if(this.done)return this.EOF;var t,e,n,r;this._input||(this.done=!0),this._more||(this.yytext="",this.match="");for(var i=this._currentRules(),a=0;a<i.length;a++)if((n=this._input.match(this.rules[i[a]]))&&(!e||n[0].length>e[0].length)){if(e=n,r=a,this.options.backtrack_lexer){if(!1!==(t=this.test_match(n,i[a])))return t;if(this._backtrack){e=!1;continue}return!1}if(!this.options.flex)break}return e?!1!==(t=this.test_match(e,i[r]))&&t:""===this._input?this.EOF:this.parseError("Lexical error on line "+(this.yylineno+1)+". Unrecognized text.\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},lex:function(){var t=this.next();return t||this.lex()},begin:function(t){this.conditionStack.push(t)},popState:function(){return this.conditionStack.length-1>0?this.conditionStack.pop():this.conditionStack[0]},_currentRules:function(){return this.conditionStack.length&&this.conditionStack[this.conditionStack.length-1]?this.conditions[this.conditionStack[this.conditionStack.length-1]].rules:this.conditions.INITIAL.rules},topState:function(t){return(t=this.conditionStack.length-1-Math.abs(t||0))>=0?this.conditionStack[t]:"INITIAL"},pushState:function(t){this.begin(t)},stateStackSize:function(){return this.conditionStack.length},options:{},performAction:function(t,e,n,r){switch(n){case 0:return this.begin("open_directive"),12;case 1:return this.begin("type_directive"),13;case 2:return this.popState(),this.begin("arg_directive"),10;case 3:return this.popState(),this.popState(),15;case 4:return 14;case 5:case 6:break;case 7:this.begin("string");break;case 8:this.popState();break;case 9:return"STR";case 10:return 76;case 11:return 85;case 12:return 77;case 13:return 94;case 14:return 78;case 15:return 79;case 16:this.begin("href");break;case 17:this.popState();break;case 18:return 90;case 19:this.begin("callbackname");break;case 20:this.popState();break;case 21:this.popState(),this.begin("callbackargs");break;case 22:return 88;case 23:this.popState();break;case 24:return 89;case 25:this.begin("click");break;case 26:this.popState();break;case 27:return 80;case 28:case 29:return t.lex.firstGraph()&&this.begin("dir"),24;case 30:return 38;case 31:return 42;case 32:case 33:case 34:case 35:return 91;case 36:return this.popState(),25;case 37:case 38:case 39:case 40:case 41:case 42:case 43:case 44:case 45:case 46:return this.popState(),26;case 47:return 110;case 48:return 111;case 49:return 112;case 50:return 113;case 51:return 95;case 52:return 103;case 53:return 48;case 54:return 100;case 55:return 47;case 56:return 20;case 57:return 96;case 58:return 118;case 59:case 60:case 61:return 71;case 62:case 63:case 64:return 70;case 65:return 52;case 66:return 53;case 67:return 54;case 68:return 55;case 69:return 56;case 70:return 57;case 71:return 58;case 72:return 59;case 73:return 101;case 74:return 104;case 75:return 119;case 76:return 116;case 77:return 105;case 78:case 79:return 117;case 80:return 106;case 81:return 62;case 82:return 82;case 83:return"SEP";case 84:return 81;case 85:return 99;case 86:return 64;case 87:return 63;case 88:return 66;case 89:return 65;case 90:return 114;case 91:return 115;case 92:return 72;case 93:return 50;case 94:return 51;case 95:return 40;case 96:return 41;case 97:return 60;case 98:return 61;case 99:return 125;case 100:return 21;case 101:return 22;case 102:return 23}},rules:[/^(?:%%\{)/,/^(?:((?:(?!\}%%)[^:.])*))/,/^(?::)/,/^(?:\}%%)/,/^(?:((?:(?!\}%%).|\n)*))/,/^(?:%%(?!\{)[^\n]*)/,/^(?:[^\}]%%[^\n]*)/,/^(?:["])/,/^(?:["])/,/^(?:[^"]*)/,/^(?:style\b)/,/^(?:default\b)/,/^(?:linkStyle\b)/,/^(?:interpolate\b)/,/^(?:classDef\b)/,/^(?:class\b)/,/^(?:href[\s]+["])/,/^(?:["])/,/^(?:[^"]*)/,/^(?:call[\s]+)/,/^(?:\([\s]*\))/,/^(?:\()/,/^(?:[^(]*)/,/^(?:\))/,/^(?:[^)]*)/,/^(?:click[\s]+)/,/^(?:[\s\n])/,/^(?:[^\s\n]*)/,/^(?:graph\b)/,/^(?:flowchart\b)/,/^(?:subgraph\b)/,/^(?:end\b\s*)/,/^(?:_self\b)/,/^(?:_blank\b)/,/^(?:_parent\b)/,/^(?:_top\b)/,/^(?:(\r?\n)*\s*\n)/,/^(?:\s*LR\b)/,/^(?:\s*RL\b)/,/^(?:\s*TB\b)/,/^(?:\s*BT\b)/,/^(?:\s*TD\b)/,/^(?:\s*BR\b)/,/^(?:\s*<)/,/^(?:\s*>)/,/^(?:\s*\^)/,/^(?:\s*v\b)/,/^(?:.*direction\s+TB[^\n]*)/,/^(?:.*direction\s+BT[^\n]*)/,/^(?:.*direction\s+RL[^\n]*)/,/^(?:.*direction\s+LR[^\n]*)/,/^(?:[0-9]+)/,/^(?:#)/,/^(?::::)/,/^(?::)/,/^(?:&)/,/^(?:;)/,/^(?:,)/,/^(?:\*)/,/^(?:\s*[xo<]?--+[-xo>]\s*)/,/^(?:\s*[xo<]?==+[=xo>]\s*)/,/^(?:\s*[xo<]?-?\.+-[xo>]?\s*)/,/^(?:\s*[xo<]?--\s*)/,/^(?:\s*[xo<]?==\s*)/,/^(?:\s*[xo<]?-\.\s*)/,/^(?:\(-)/,/^(?:-\))/,/^(?:\(\[)/,/^(?:\]\))/,/^(?:\[\[)/,/^(?:\]\])/,/^(?:\[\()/,/^(?:\)\])/,/^(?:-)/,/^(?:\.)/,/^(?:[\_])/,/^(?:\+)/,/^(?:%)/,/^(?:=)/,/^(?:=)/,/^(?:<)/,/^(?:>)/,/^(?:\^)/,/^(?:\\\|)/,/^(?:v\b)/,/^(?:[A-Za-z]+)/,/^(?:\\\])/,/^(?:\[\/)/,/^(?:\/\])/,/^(?:\[\\)/,/^(?:[!"#$%&'*+,-.`?\\_/])/,/^(?:[\u00AA\u00B5\u00BA\u00C0-\u00D6\u00D8-\u00F6]|[\u00F8-\u02C1\u02C6-\u02D1\u02E0-\u02E4\u02EC\u02EE\u0370-\u0374\u0376\u0377]|[\u037A-\u037D\u0386\u0388-\u038A\u038C\u038E-\u03A1\u03A3-\u03F5]|[\u03F7-\u0481\u048A-\u0527\u0531-\u0556\u0559\u0561-\u0587\u05D0-\u05EA]|[\u05F0-\u05F2\u0620-\u064A\u066E\u066F\u0671-\u06D3\u06D5\u06E5\u06E6\u06EE]|[\u06EF\u06FA-\u06FC\u06FF\u0710\u0712-\u072F\u074D-\u07A5\u07B1\u07CA-\u07EA]|[\u07F4\u07F5\u07FA\u0800-\u0815\u081A\u0824\u0828\u0840-\u0858\u08A0]|[\u08A2-\u08AC\u0904-\u0939\u093D\u0950\u0958-\u0961\u0971-\u0977]|[\u0979-\u097F\u0985-\u098C\u098F\u0990\u0993-\u09A8\u09AA-\u09B0\u09B2]|[\u09B6-\u09B9\u09BD\u09CE\u09DC\u09DD\u09DF-\u09E1\u09F0\u09F1\u0A05-\u0A0A]|[\u0A0F\u0A10\u0A13-\u0A28\u0A2A-\u0A30\u0A32\u0A33\u0A35\u0A36\u0A38\u0A39]|[\u0A59-\u0A5C\u0A5E\u0A72-\u0A74\u0A85-\u0A8D\u0A8F-\u0A91\u0A93-\u0AA8]|[\u0AAA-\u0AB0\u0AB2\u0AB3\u0AB5-\u0AB9\u0ABD\u0AD0\u0AE0\u0AE1\u0B05-\u0B0C]|[\u0B0F\u0B10\u0B13-\u0B28\u0B2A-\u0B30\u0B32\u0B33\u0B35-\u0B39\u0B3D\u0B5C]|[\u0B5D\u0B5F-\u0B61\u0B71\u0B83\u0B85-\u0B8A\u0B8E-\u0B90\u0B92-\u0B95\u0B99]|[\u0B9A\u0B9C\u0B9E\u0B9F\u0BA3\u0BA4\u0BA8-\u0BAA\u0BAE-\u0BB9\u0BD0]|[\u0C05-\u0C0C\u0C0E-\u0C10\u0C12-\u0C28\u0C2A-\u0C33\u0C35-\u0C39\u0C3D]|[\u0C58\u0C59\u0C60\u0C61\u0C85-\u0C8C\u0C8E-\u0C90\u0C92-\u0CA8\u0CAA-\u0CB3]|[\u0CB5-\u0CB9\u0CBD\u0CDE\u0CE0\u0CE1\u0CF1\u0CF2\u0D05-\u0D0C\u0D0E-\u0D10]|[\u0D12-\u0D3A\u0D3D\u0D4E\u0D60\u0D61\u0D7A-\u0D7F\u0D85-\u0D96\u0D9A-\u0DB1]|[\u0DB3-\u0DBB\u0DBD\u0DC0-\u0DC6\u0E01-\u0E30\u0E32\u0E33\u0E40-\u0E46\u0E81]|[\u0E82\u0E84\u0E87\u0E88\u0E8A\u0E8D\u0E94-\u0E97\u0E99-\u0E9F\u0EA1-\u0EA3]|[\u0EA5\u0EA7\u0EAA\u0EAB\u0EAD-\u0EB0\u0EB2\u0EB3\u0EBD\u0EC0-\u0EC4\u0EC6]|[\u0EDC-\u0EDF\u0F00\u0F40-\u0F47\u0F49-\u0F6C\u0F88-\u0F8C\u1000-\u102A]|[\u103F\u1050-\u1055\u105A-\u105D\u1061\u1065\u1066\u106E-\u1070\u1075-\u1081]|[\u108E\u10A0-\u10C5\u10C7\u10CD\u10D0-\u10FA\u10FC-\u1248\u124A-\u124D]|[\u1250-\u1256\u1258\u125A-\u125D\u1260-\u1288\u128A-\u128D\u1290-\u12B0]|[\u12B2-\u12B5\u12B8-\u12BE\u12C0\u12C2-\u12C5\u12C8-\u12D6\u12D8-\u1310]|[\u1312-\u1315\u1318-\u135A\u1380-\u138F\u13A0-\u13F4\u1401-\u166C]|[\u166F-\u167F\u1681-\u169A\u16A0-\u16EA\u1700-\u170C\u170E-\u1711]|[\u1720-\u1731\u1740-\u1751\u1760-\u176C\u176E-\u1770\u1780-\u17B3\u17D7]|[\u17DC\u1820-\u1877\u1880-\u18A8\u18AA\u18B0-\u18F5\u1900-\u191C]|[\u1950-\u196D\u1970-\u1974\u1980-\u19AB\u19C1-\u19C7\u1A00-\u1A16]|[\u1A20-\u1A54\u1AA7\u1B05-\u1B33\u1B45-\u1B4B\u1B83-\u1BA0\u1BAE\u1BAF]|[\u1BBA-\u1BE5\u1C00-\u1C23\u1C4D-\u1C4F\u1C5A-\u1C7D\u1CE9-\u1CEC]|[\u1CEE-\u1CF1\u1CF5\u1CF6\u1D00-\u1DBF\u1E00-\u1F15\u1F18-\u1F1D]|[\u1F20-\u1F45\u1F48-\u1F4D\u1F50-\u1F57\u1F59\u1F5B\u1F5D\u1F5F-\u1F7D]|[\u1F80-\u1FB4\u1FB6-\u1FBC\u1FBE\u1FC2-\u1FC4\u1FC6-\u1FCC\u1FD0-\u1FD3]|[\u1FD6-\u1FDB\u1FE0-\u1FEC\u1FF2-\u1FF4\u1FF6-\u1FFC\u2071\u207F]|[\u2090-\u209C\u2102\u2107\u210A-\u2113\u2115\u2119-\u211D\u2124\u2126\u2128]|[\u212A-\u212D\u212F-\u2139\u213C-\u213F\u2145-\u2149\u214E\u2183\u2184]|[\u2C00-\u2C2E\u2C30-\u2C5E\u2C60-\u2CE4\u2CEB-\u2CEE\u2CF2\u2CF3]|[\u2D00-\u2D25\u2D27\u2D2D\u2D30-\u2D67\u2D6F\u2D80-\u2D96\u2DA0-\u2DA6]|[\u2DA8-\u2DAE\u2DB0-\u2DB6\u2DB8-\u2DBE\u2DC0-\u2DC6\u2DC8-\u2DCE]|[\u2DD0-\u2DD6\u2DD8-\u2DDE\u2E2F\u3005\u3006\u3031-\u3035\u303B\u303C]|[\u3041-\u3096\u309D-\u309F\u30A1-\u30FA\u30FC-\u30FF\u3105-\u312D]|[\u3131-\u318E\u31A0-\u31BA\u31F0-\u31FF\u3400-\u4DB5\u4E00-\u9FCC]|[\uA000-\uA48C\uA4D0-\uA4FD\uA500-\uA60C\uA610-\uA61F\uA62A\uA62B]|[\uA640-\uA66E\uA67F-\uA697\uA6A0-\uA6E5\uA717-\uA71F\uA722-\uA788]|[\uA78B-\uA78E\uA790-\uA793\uA7A0-\uA7AA\uA7F8-\uA801\uA803-\uA805]|[\uA807-\uA80A\uA80C-\uA822\uA840-\uA873\uA882-\uA8B3\uA8F2-\uA8F7\uA8FB]|[\uA90A-\uA925\uA930-\uA946\uA960-\uA97C\uA984-\uA9B2\uA9CF\uAA00-\uAA28]|[\uAA40-\uAA42\uAA44-\uAA4B\uAA60-\uAA76\uAA7A\uAA80-\uAAAF\uAAB1\uAAB5]|[\uAAB6\uAAB9-\uAABD\uAAC0\uAAC2\uAADB-\uAADD\uAAE0-\uAAEA\uAAF2-\uAAF4]|[\uAB01-\uAB06\uAB09-\uAB0E\uAB11-\uAB16\uAB20-\uAB26\uAB28-\uAB2E]|[\uABC0-\uABE2\uAC00-\uD7A3\uD7B0-\uD7C6\uD7CB-\uD7FB\uF900-\uFA6D]|[\uFA70-\uFAD9\uFB00-\uFB06\uFB13-\uFB17\uFB1D\uFB1F-\uFB28\uFB2A-\uFB36]|[\uFB38-\uFB3C\uFB3E\uFB40\uFB41\uFB43\uFB44\uFB46-\uFBB1\uFBD3-\uFD3D]|[\uFD50-\uFD8F\uFD92-\uFDC7\uFDF0-\uFDFB\uFE70-\uFE74\uFE76-\uFEFC]|[\uFF21-\uFF3A\uFF41-\uFF5A\uFF66-\uFFBE\uFFC2-\uFFC7\uFFCA-\uFFCF]|[\uFFD2-\uFFD7\uFFDA-\uFFDC])/,/^(?:\|)/,/^(?:\()/,/^(?:\))/,/^(?:\[)/,/^(?:\])/,/^(?:\{)/,/^(?:\})/,/^(?:")/,/^(?:(\r?\n)+)/,/^(?:\s)/,/^(?:$)/],conditions:{close_directive:{rules:[],inclusive:!1},arg_directive:{rules:[3,4],inclusive:!1},type_directive:{rules:[2,3],inclusive:!1},open_directive:{rules:[1],inclusive:!1},callbackargs:{rules:[23,24],inclusive:!1},callbackname:{rules:[20,21,22],inclusive:!1},href:{rules:[17,18],inclusive:!1},click:{rules:[26,27],inclusive:!1},vertex:{rules:[],inclusive:!1},dir:{rules:[36,37,38,39,40,41,42,43,44,45,46],inclusive:!1},string:{rules:[8,9],inclusive:!1},INITIAL:{rules:[0,5,6,7,10,11,12,13,14,15,16,19,25,28,29,30,31,32,33,34,35,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76,77,78,79,80,81,82,83,84,85,86,87,88,89,90,91,92,93,94,95,96,97,98,99,100,101,102],inclusive:!0}}};function Jt(){this.yy={}}return Kt.lexer=Qt,Jt.prototype=Kt,Kt.Parser=Jt,new Jt}();e.parser=i,e.Parser=i.Parser,e.parse=function(){return i.parse.apply(i,arguments)},e.main=function(r){r[1]||(console.log("Usage: "+r[0]+" FILE"),t.exit(1));var i=n(17).readFileSync(n(18).normalize(r[1]),"utf8");return e.parser.parse(i)},n.c[n.s]===r&&e.main(t.argv.slice(1))}).call(this,n(12),n(7)(t))},function(t,e,n){(function(t,r){var i=function(){var t=function(t,e,n,r){for(n=n||{},r=t.length;r--;n[t[r]]=e);return n},e=[1,2],n=[1,5],r=[6,9,11,17,18,19,21],i=[1,15],a=[1,16],o=[1,17],s=[1,21],c=[4,6,9,11,17,18,19,21],u={trace:function(){},yy:{},symbols_:{error:2,start:3,journey:4,document:5,EOF:6,directive:7,line:8,SPACE:9,statement:10,NEWLINE:11,openDirective:12,typeDirective:13,closeDirective:14,":":15,argDirective:16,title:17,section:18,taskName:19,taskData:20,open_directive:21,type_directive:22,arg_directive:23,close_directive:24,$accept:0,$end:1},terminals_:{2:"error",4:"journey",6:"EOF",9:"SPACE",11:"NEWLINE",15:":",17:"title",18:"section",19:"taskName",20:"taskData",21:"open_directive",22:"type_directive",23:"arg_directive",24:"close_directive"},productions_:[0,[3,3],[3,2],[5,0],[5,2],[8,2],[8,1],[8,1],[8,1],[7,4],[7,6],[10,1],[10,1],[10,2],[10,1],[12,1],[13,1],[16,1],[14,1]],performAction:function(t,e,n,r,i,a,o){var s=a.length-1;switch(i){case 1:return a[s-1];case 3:this.$=[];break;case 4:a[s-1].push(a[s]),this.$=a[s-1];break;case 5:case 6:this.$=a[s];break;case 7:case 8:this.$=[];break;case 11:r.setTitle(a[s].substr(6)),this.$=a[s].substr(6);break;case 12:r.addSection(a[s].substr(8)),this.$=a[s].substr(8);break;case 13:r.addTask(a[s-1],a[s]),this.$="task";break;case 15:r.parseDirective("%%{","open_directive");break;case 16:r.parseDirective(a[s],"type_directive");break;case 17:a[s]=a[s].trim().replace(/'/g,'"'),r.parseDirective(a[s],"arg_directive");break;case 18:r.parseDirective("}%%","close_directive","journey")}},table:[{3:1,4:e,7:3,12:4,21:n},{1:[3]},t(r,[2,3],{5:6}),{3:7,4:e,7:3,12:4,21:n},{13:8,22:[1,9]},{22:[2,15]},{6:[1,10],7:18,8:11,9:[1,12],10:13,11:[1,14],12:4,17:i,18:a,19:o,21:n},{1:[2,2]},{14:19,15:[1,20],24:s},t([15,24],[2,16]),t(r,[2,8],{1:[2,1]}),t(r,[2,4]),{7:18,10:22,12:4,17:i,18:a,19:o,21:n},t(r,[2,6]),t(r,[2,7]),t(r,[2,11]),t(r,[2,12]),{20:[1,23]},t(r,[2,14]),{11:[1,24]},{16:25,23:[1,26]},{11:[2,18]},t(r,[2,5]),t(r,[2,13]),t(c,[2,9]),{14:27,24:s},{24:[2,17]},{11:[1,28]},t(c,[2,10])],defaultActions:{5:[2,15],7:[2,2],21:[2,18],26:[2,17]},parseError:function(t,e){if(!e.recoverable){var n=new Error(t);throw n.hash=e,n}this.trace(t)},parse:function(t){var e=this,n=[0],r=[],i=[null],a=[],o=this.table,s="",c=0,u=0,l=0,h=2,f=1,d=a.slice.call(arguments,1),p=Object.create(this.lexer),y={yy:{}};for(var g in this.yy)Object.prototype.hasOwnProperty.call(this.yy,g)&&(y.yy[g]=this.yy[g]);p.setInput(t,y.yy),y.yy.lexer=p,y.yy.parser=this,void 0===p.yylloc&&(p.yylloc={});var m=p.yylloc;a.push(m);var v=p.options&&p.options.ranges;function b(){var t;return"number"!=typeof(t=r.pop()||p.lex()||f)&&(t instanceof Array&&(t=(r=t).pop()),t=e.symbols_[t]||t),t}"function"==typeof y.yy.parseError?this.parseError=y.yy.parseError:this.parseError=Object.getPrototypeOf(this).parseError;for(var x,_,k,w,E,T,C,S,A,M={};;){if(k=n[n.length-1],this.defaultActions[k]?w=this.defaultActions[k]:(null==x&&(x=b()),w=o[k]&&o[k][x]),void 0===w||!w.length||!w[0]){var O="";for(T in A=[],o[k])this.terminals_[T]&&T>h&&A.push("'"+this.terminals_[T]+"'");O=p.showPosition?"Parse error on line "+(c+1)+":\n"+p.showPosition()+"\nExpecting "+A.join(", ")+", got '"+(this.terminals_[x]||x)+"'":"Parse error on line "+(c+1)+": Unexpected "+(x==f?"end of input":"'"+(this.terminals_[x]||x)+"'"),this.parseError(O,{text:p.match,token:this.terminals_[x]||x,line:p.yylineno,loc:m,expected:A})}if(w[0]instanceof Array&&w.length>1)throw new Error("Parse Error: multiple actions possible at state: "+k+", token: "+x);switch(w[0]){case 1:n.push(x),i.push(p.yytext),a.push(p.yylloc),n.push(w[1]),x=null,_?(x=_,_=null):(u=p.yyleng,s=p.yytext,c=p.yylineno,m=p.yylloc,l>0&&l--);break;case 2:if(C=this.productions_[w[1]][1],M.$=i[i.length-C],M._$={first_line:a[a.length-(C||1)].first_line,last_line:a[a.length-1].last_line,first_column:a[a.length-(C||1)].first_column,last_column:a[a.length-1].last_column},v&&(M._$.range=[a[a.length-(C||1)].range[0],a[a.length-1].range[1]]),void 0!==(E=this.performAction.apply(M,[s,u,c,y.yy,w[1],i,a].concat(d))))return E;C&&(n=n.slice(0,-1*C*2),i=i.slice(0,-1*C),a=a.slice(0,-1*C)),n.push(this.productions_[w[1]][0]),i.push(M.$),a.push(M._$),S=o[n[n.length-2]][n[n.length-1]],n.push(S);break;case 3:return!0}}return!0}},l={EOF:1,parseError:function(t,e){if(!this.yy.parser)throw new Error(t);this.yy.parser.parseError(t,e)},setInput:function(t,e){return this.yy=e||this.yy||{},this._input=t,this._more=this._backtrack=this.done=!1,this.yylineno=this.yyleng=0,this.yytext=this.matched=this.match="",this.conditionStack=["INITIAL"],this.yylloc={first_line:1,first_column:0,last_line:1,last_column:0},this.options.ranges&&(this.yylloc.range=[0,0]),this.offset=0,this},input:function(){var t=this._input[0];return this.yytext+=t,this.yyleng++,this.offset++,this.match+=t,this.matched+=t,t.match(/(?:\r\n?|\n).*/g)?(this.yylineno++,this.yylloc.last_line++):this.yylloc.last_column++,this.options.ranges&&this.yylloc.range[1]++,this._input=this._input.slice(1),t},unput:function(t){var e=t.length,n=t.split(/(?:\r\n?|\n)/g);this._input=t+this._input,this.yytext=this.yytext.substr(0,this.yytext.length-e),this.offset-=e;var r=this.match.split(/(?:\r\n?|\n)/g);this.match=this.match.substr(0,this.match.length-1),this.matched=this.matched.substr(0,this.matched.length-1),n.length-1&&(this.yylineno-=n.length-1);var i=this.yylloc.range;return this.yylloc={first_line:this.yylloc.first_line,last_line:this.yylineno+1,first_column:this.yylloc.first_column,last_column:n?(n.length===r.length?this.yylloc.first_column:0)+r[r.length-n.length].length-n[0].length:this.yylloc.first_column-e},this.options.ranges&&(this.yylloc.range=[i[0],i[0]+this.yyleng-e]),this.yyleng=this.yytext.length,this},more:function(){return this._more=!0,this},reject:function(){return this.options.backtrack_lexer?(this._backtrack=!0,this):this.parseError("Lexical error on line "+(this.yylineno+1)+". You can only invoke reject() in the lexer when the lexer is of the backtracking persuasion (options.backtrack_lexer = true).\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},less:function(t){this.unput(this.match.slice(t))},pastInput:function(){var t=this.matched.substr(0,this.matched.length-this.match.length);return(t.length>20?"...":"")+t.substr(-20).replace(/\n/g,"")},upcomingInput:function(){var t=this.match;return t.length<20&&(t+=this._input.substr(0,20-t.length)),(t.substr(0,20)+(t.length>20?"...":"")).replace(/\n/g,"")},showPosition:function(){var t=this.pastInput(),e=new Array(t.length+1).join("-");return t+this.upcomingInput()+"\n"+e+"^"},test_match:function(t,e){var n,r,i;if(this.options.backtrack_lexer&&(i={yylineno:this.yylineno,yylloc:{first_line:this.yylloc.first_line,last_line:this.last_line,first_column:this.yylloc.first_column,last_column:this.yylloc.last_column},yytext:this.yytext,match:this.match,matches:this.matches,matched:this.matched,yyleng:this.yyleng,offset:this.offset,_more:this._more,_input:this._input,yy:this.yy,conditionStack:this.conditionStack.slice(0),done:this.done},this.options.ranges&&(i.yylloc.range=this.yylloc.range.slice(0))),(r=t[0].match(/(?:\r\n?|\n).*/g))&&(this.yylineno+=r.length),this.yylloc={first_line:this.yylloc.last_line,last_line:this.yylineno+1,first_column:this.yylloc.last_column,last_column:r?r[r.length-1].length-r[r.length-1].match(/\r?\n?/)[0].length:this.yylloc.last_column+t[0].length},this.yytext+=t[0],this.match+=t[0],this.matches=t,this.yyleng=this.yytext.length,this.options.ranges&&(this.yylloc.range=[this.offset,this.offset+=this.yyleng]),this._more=!1,this._backtrack=!1,this._input=this._input.slice(t[0].length),this.matched+=t[0],n=this.performAction.call(this,this.yy,this,e,this.conditionStack[this.conditionStack.length-1]),this.done&&this._input&&(this.done=!1),n)return n;if(this._backtrack){for(var a in i)this[a]=i[a];return!1}return!1},next:function(){if(this.done)return this.EOF;var t,e,n,r;this._input||(this.done=!0),this._more||(this.yytext="",this.match="");for(var i=this._currentRules(),a=0;a<i.length;a++)if((n=this._input.match(this.rules[i[a]]))&&(!e||n[0].length>e[0].length)){if(e=n,r=a,this.options.backtrack_lexer){if(!1!==(t=this.test_match(n,i[a])))return t;if(this._backtrack){e=!1;continue}return!1}if(!this.options.flex)break}return e?!1!==(t=this.test_match(e,i[r]))&&t:""===this._input?this.EOF:this.parseError("Lexical error on line "+(this.yylineno+1)+". Unrecognized text.\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},lex:function(){var t=this.next();return t||this.lex()},begin:function(t){this.conditionStack.push(t)},popState:function(){return this.conditionStack.length-1>0?this.conditionStack.pop():this.conditionStack[0]},_currentRules:function(){return this.conditionStack.length&&this.conditionStack[this.conditionStack.length-1]?this.conditions[this.conditionStack[this.conditionStack.length-1]].rules:this.conditions.INITIAL.rules},topState:function(t){return(t=this.conditionStack.length-1-Math.abs(t||0))>=0?this.conditionStack[t]:"INITIAL"},pushState:function(t){this.begin(t)},stateStackSize:function(){return this.conditionStack.length},options:{"case-insensitive":!0},performAction:function(t,e,n,r){switch(n){case 0:return this.begin("open_directive"),21;case 1:return this.begin("type_directive"),22;case 2:return this.popState(),this.begin("arg_directive"),15;case 3:return this.popState(),this.popState(),24;case 4:return 23;case 5:case 6:break;case 7:return 11;case 8:case 9:break;case 10:return 4;case 11:return 17;case 12:return 18;case 13:return 19;case 14:return 20;case 15:return 15;case 16:return 6;case 17:return"INVALID"}},rules:[/^(?:%%\{)/i,/^(?:((?:(?!\}%%)[^:.])*))/i,/^(?::)/i,/^(?:\}%%)/i,/^(?:((?:(?!\}%%).|\n)*))/i,/^(?:%(?!\{)[^\n]*)/i,/^(?:[^\}]%%[^\n]*)/i,/^(?:[\n]+)/i,/^(?:\s+)/i,/^(?:#[^\n]*)/i,/^(?:journey\b)/i,/^(?:title\s[^#\n;]+)/i,/^(?:section\s[^#:\n;]+)/i,/^(?:[^#:\n;]+)/i,/^(?::[^#\n;]+)/i,/^(?::)/i,/^(?:$)/i,/^(?:.)/i],conditions:{open_directive:{rules:[1],inclusive:!1},type_directive:{rules:[2,3],inclusive:!1},arg_directive:{rules:[3,4],inclusive:!1},INITIAL:{rules:[0,5,6,7,8,9,10,11,12,13,14,15,16,17],inclusive:!0}}};function h(){this.yy={}}return u.lexer=l,h.prototype=u,u.Parser=h,new h}();e.parser=i,e.Parser=i.Parser,e.parse=function(){return i.parse.apply(i,arguments)},e.main=function(r){r[1]||(console.log("Usage: "+r[0]+" FILE"),t.exit(1));var i=n(17).readFileSync(n(18).normalize(r[1]),"utf8");return e.parser.parse(i)},n.c[n.s]===r&&e.main(t.argv.slice(1))}).call(this,n(12),n(7)(t))},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i=n(6);e.default=function(t,e){return r.default.lang.round(i.default.parse(t)[e])}},function(t,e,n){var r=n(112),i=n(84),a=n(25);t.exports=function(t){return a(t)?r(t):i(t)}},function(t,e,n){var r;if(!r)try{r=n(0)}catch(t){}r||(r=window.d3),t.exports=r},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i=n(6);e.default=function(t,e,n){var a=i.default.parse(t),o=a[e],s=r.default.channel.clamp[e](o+n);return o!==s&&(a[e]=s),i.default.stringify(a)}},function(t,e,n){var r=n(215),i=n(221);t.exports=function(t,e){var n=i(t,e);return r(n)?n:void 0}},function(t,e,n){var r=n(40),i=n(217),a=n(218),o=r?r.toStringTag:void 0;t.exports=function(t){return null==t?void 0===t?"[object Undefined]":"[object Null]":o&&o in Object(t)?i(t):a(t)}},function(t,e,n){var r=n(112),i=n(241),a=n(25);t.exports=function(t){return a(t)?r(t,!0):i(t)}},function(t,e){t.exports=function(t){return t}},function(t){t.exports=JSON.parse('{"name":"mermaid","version":"8.11.2","description":"Markdownish syntax for generating flowcharts, sequence diagrams, class diagrams, gantt charts and git graphs.","main":"dist/mermaid.core.js","keywords":["diagram","markdown","flowchart","sequence diagram","gantt","class diagram","git graph"],"scripts":{"build:development":"webpack --progress --colors","build:production":"yarn build:development -p --config webpack.config.prod.babel.js","build":"yarn build:development && yarn build:production","postbuild":"documentation build src/mermaidAPI.js src/config.js src/defaultConfig.js --shallow -f md --markdown-toc false > docs/Setup.md","build:watch":"yarn build --watch","release":"yarn build","lint":"eslint src","e2e:depr":"yarn lint && jest e2e --config e2e/jest.config.js","cypress":"percy exec -- cypress run","e2e":"start-server-and-test dev http://localhost:9000/ cypress","e2e-upd":"yarn lint && jest e2e -u --config e2e/jest.config.js","dev":"webpack-dev-server --config webpack.config.e2e.js","test":"yarn lint && jest src/.*","test:watch":"jest --watch src","prepublishOnly":"yarn build && yarn test","prepare":"yarn build"},"repository":{"type":"git","url":"https://github.com/knsv/mermaid"},"author":"Knut Sveidqvist","license":"MIT","standard":{"ignore":["**/parser/*.js","dist/**/*.js","cypress/**/*.js"],"globals":["page"]},"dependencies":{"@braintree/sanitize-url":"^3.1.0","@percy/migrate":"^0.10.0","d3":"^5.7.0","dagre":"^0.8.5","dagre-d3":"^0.6.4","dompurify":"2.3.0","graphlib":"^2.1.8","khroma":"^1.4.1","moment-mini":"^2.24.0","stylis":"^4.0.10"},"devDependencies":{"@babel/core":"^7.14.6","@babel/preset-env":"^7.14.7","@babel/register":"^7.14.5","@percy/cli":"^1.0.0-beta.58","@percy/cypress":"^3.1.0","babel-core":"7.0.0-bridge.0","babel-eslint":"^10.1.0","babel-jest":"^27.0.6","babel-loader":"^8.2.2","coveralls":"^3.0.2","css-to-string-loader":"^0.1.3","cypress":"7.6.0","documentation":"13.2.0","eslint":"^7.30.0","eslint-config-prettier":"^8.3.0","eslint-plugin-prettier":"^3.4.0","husky":"^7.0.1","identity-obj-proxy":"^3.0.0","jest":"^27.0.6","jison":"^0.4.18","js-base64":"3.6.1","moment":"^2.23.0","prettier":"^2.3.2","start-server-and-test":"^1.12.6","terser-webpack-plugin":"^2.2.2","webpack":"^4.41.2","webpack-bundle-analyzer":"^4.4.2","webpack-cli":"^3.1.2","webpack-dev-server":"^3.4.1","webpack-node-externals":"^1.7.2"},"files":["dist"],"yarn-upgrade-all":{"ignore":["babel-core"]},"sideEffects":["**/*.css","**/*.scss"],"husky":{"hooks":{"pre-push":"yarn test"}}}')},function(t,e){t.exports=function(t,e){return t===e||t!=t&&e!=e}},function(t,e,n){var r=n(34),i=n(14);t.exports=function(t){if(!i(t))return!1;var e=r(t);return"[object Function]"==e||"[object GeneratorFunction]"==e||"[object AsyncFunction]"==e||"[object Proxy]"==e}},function(t,e,n){var r=n(19).Symbol;t.exports=r},function(t,e,n){(function(t){var r=n(19),i=n(237),a=e&&!e.nodeType&&e,o=a&&"object"==typeof t&&t&&!t.nodeType&&t,s=o&&o.exports===a?r.Buffer:void 0,c=(s?s.isBuffer:void 0)||i;t.exports=c}).call(this,n(7)(t))},function(t,e,n){var r=n(246),i=n(79),a=n(247),o=n(121),s=n(248),c=n(34),u=n(110),l=u(r),h=u(i),f=u(a),d=u(o),p=u(s),y=c;(r&&"[object DataView]"!=y(new r(new ArrayBuffer(1)))||i&&"[object Map]"!=y(new i)||a&&"[object Promise]"!=y(a.resolve())||o&&"[object Set]"!=y(new o)||s&&"[object WeakMap]"!=y(new s))&&(y=function(t){var e=c(t),n="[object Object]"==e?t.constructor:void 0,r=n?u(n):"";if(r)switch(r){case l:return"[object DataView]";case h:return"[object Map]";case f:return"[object Promise]";case d:return"[object Set]";case p:return"[object WeakMap]"}return e}),t.exports=y},function(t,e,n){var r=n(34),i=n(21);t.exports=function(t){return"symbol"==typeof t||i(t)&&"[object Symbol]"==r(t)}},function(t,e,n){var r;try{r={defaults:n(154),each:n(89),isFunction:n(39),isPlainObject:n(158),pick:n(161),has:n(94),range:n(162),uniqueId:n(163)}}catch(t){}r||(r=window._),t.exports=r},function(t,e,n){(function(t,r){var i=function(){var t=function(t,e,n,r){for(n=n||{},r=t.length;r--;n[t[r]]=e);return n},e=[1,3],n=[1,5],r=[1,17],i=[2,10],a=[1,21],o=[1,22],s=[1,23],c=[1,24],u=[1,25],l=[1,26],h=[1,19],f=[1,27],d=[1,28],p=[1,31],y=[66,67],g=[5,8,14,35,36,37,38,39,40,48,55,57,66,67],m=[5,6,8,14,35,36,37,38,39,40,48,66,67],v=[1,51],b=[1,52],x=[1,53],_=[1,54],k=[1,55],w=[1,56],E=[1,57],T=[57,58],C=[1,69],S=[1,65],A=[1,66],M=[1,67],O=[1,68],N=[1,70],B=[1,74],D=[1,75],L=[1,72],I=[1,73],R=[5,8,14,35,36,37,38,39,40,48,66,67],F={trace:function(){},yy:{},symbols_:{error:2,start:3,directive:4,NEWLINE:5,RD:6,diagram:7,EOF:8,openDirective:9,typeDirective:10,closeDirective:11,":":12,argDirective:13,open_directive:14,type_directive:15,arg_directive:16,close_directive:17,requirementDef:18,elementDef:19,relationshipDef:20,requirementType:21,requirementName:22,STRUCT_START:23,requirementBody:24,ID:25,COLONSEP:26,id:27,TEXT:28,text:29,RISK:30,riskLevel:31,VERIFYMTHD:32,verifyType:33,STRUCT_STOP:34,REQUIREMENT:35,FUNCTIONAL_REQUIREMENT:36,INTERFACE_REQUIREMENT:37,PERFORMANCE_REQUIREMENT:38,PHYSICAL_REQUIREMENT:39,DESIGN_CONSTRAINT:40,LOW_RISK:41,MED_RISK:42,HIGH_RISK:43,VERIFY_ANALYSIS:44,VERIFY_DEMONSTRATION:45,VERIFY_INSPECTION:46,VERIFY_TEST:47,ELEMENT:48,elementName:49,elementBody:50,TYPE:51,type:52,DOCREF:53,ref:54,END_ARROW_L:55,relationship:56,LINE:57,END_ARROW_R:58,CONTAINS:59,COPIES:60,DERIVES:61,SATISFIES:62,VERIFIES:63,REFINES:64,TRACES:65,unqString:66,qString:67,$accept:0,$end:1},terminals_:{2:"error",5:"NEWLINE",6:"RD",8:"EOF",12:":",14:"open_directive",15:"type_directive",16:"arg_directive",17:"close_directive",23:"STRUCT_START",25:"ID",26:"COLONSEP",28:"TEXT",30:"RISK",32:"VERIFYMTHD",34:"STRUCT_STOP",35:"REQUIREMENT",36:"FUNCTIONAL_REQUIREMENT",37:"INTERFACE_REQUIREMENT",38:"PERFORMANCE_REQUIREMENT",39:"PHYSICAL_REQUIREMENT",40:"DESIGN_CONSTRAINT",41:"LOW_RISK",42:"MED_RISK",43:"HIGH_RISK",44:"VERIFY_ANALYSIS",45:"VERIFY_DEMONSTRATION",46:"VERIFY_INSPECTION",47:"VERIFY_TEST",48:"ELEMENT",51:"TYPE",53:"DOCREF",55:"END_ARROW_L",57:"LINE",58:"END_ARROW_R",59:"CONTAINS",60:"COPIES",61:"DERIVES",62:"SATISFIES",63:"VERIFIES",64:"REFINES",65:"TRACES",66:"unqString",67:"qString"},productions_:[0,[3,3],[3,2],[3,4],[4,3],[4,5],[9,1],[10,1],[13,1],[11,1],[7,0],[7,2],[7,2],[7,2],[7,2],[7,2],[18,5],[24,5],[24,5],[24,5],[24,5],[24,2],[24,1],[21,1],[21,1],[21,1],[21,1],[21,1],[21,1],[31,1],[31,1],[31,1],[33,1],[33,1],[33,1],[33,1],[19,5],[50,5],[50,5],[50,2],[50,1],[20,5],[20,5],[56,1],[56,1],[56,1],[56,1],[56,1],[56,1],[56,1],[22,1],[22,1],[27,1],[27,1],[29,1],[29,1],[49,1],[49,1],[52,1],[52,1],[54,1],[54,1]],performAction:function(t,e,n,r,i,a,o){var s=a.length-1;switch(i){case 6:r.parseDirective("%%{","open_directive");break;case 7:r.parseDirective(a[s],"type_directive");break;case 8:a[s]=a[s].trim().replace(/'/g,'"'),r.parseDirective(a[s],"arg_directive");break;case 9:r.parseDirective("}%%","close_directive","pie");break;case 10:this.$=[];break;case 16:r.addRequirement(a[s-3],a[s-4]);break;case 17:r.setNewReqId(a[s-2]);break;case 18:r.setNewReqText(a[s-2]);break;case 19:r.setNewReqRisk(a[s-2]);break;case 20:r.setNewReqVerifyMethod(a[s-2]);break;case 23:this.$=r.RequirementType.REQUIREMENT;break;case 24:this.$=r.RequirementType.FUNCTIONAL_REQUIREMENT;break;case 25:this.$=r.RequirementType.INTERFACE_REQUIREMENT;break;case 26:this.$=r.RequirementType.PERFORMANCE_REQUIREMENT;break;case 27:this.$=r.RequirementType.PHYSICAL_REQUIREMENT;break;case 28:this.$=r.RequirementType.DESIGN_CONSTRAINT;break;case 29:this.$=r.RiskLevel.LOW_RISK;break;case 30:this.$=r.RiskLevel.MED_RISK;break;case 31:this.$=r.RiskLevel.HIGH_RISK;break;case 32:this.$=r.VerifyType.VERIFY_ANALYSIS;break;case 33:this.$=r.VerifyType.VERIFY_DEMONSTRATION;break;case 34:this.$=r.VerifyType.VERIFY_INSPECTION;break;case 35:this.$=r.VerifyType.VERIFY_TEST;break;case 36:r.addElement(a[s-3]);break;case 37:r.setNewElementType(a[s-2]);break;case 38:r.setNewElementDocRef(a[s-2]);break;case 41:r.addRelationship(a[s-2],a[s],a[s-4]);break;case 42:r.addRelationship(a[s-2],a[s-4],a[s]);break;case 43:this.$=r.Relationships.CONTAINS;break;case 44:this.$=r.Relationships.COPIES;break;case 45:this.$=r.Relationships.DERIVES;break;case 46:this.$=r.Relationships.SATISFIES;break;case 47:this.$=r.Relationships.VERIFIES;break;case 48:this.$=r.Relationships.REFINES;break;case 49:this.$=r.Relationships.TRACES}},table:[{3:1,4:2,6:e,9:4,14:n},{1:[3]},{3:7,4:2,5:[1,6],6:e,9:4,14:n},{5:[1,8]},{10:9,15:[1,10]},{15:[2,6]},{3:11,4:2,6:e,9:4,14:n},{1:[2,2]},{4:16,5:r,7:12,8:i,9:4,14:n,18:13,19:14,20:15,21:18,27:20,35:a,36:o,37:s,38:c,39:u,40:l,48:h,66:f,67:d},{11:29,12:[1,30],17:p},t([12,17],[2,7]),{1:[2,1]},{8:[1,32]},{4:16,5:r,7:33,8:i,9:4,14:n,18:13,19:14,20:15,21:18,27:20,35:a,36:o,37:s,38:c,39:u,40:l,48:h,66:f,67:d},{4:16,5:r,7:34,8:i,9:4,14:n,18:13,19:14,20:15,21:18,27:20,35:a,36:o,37:s,38:c,39:u,40:l,48:h,66:f,67:d},{4:16,5:r,7:35,8:i,9:4,14:n,18:13,19:14,20:15,21:18,27:20,35:a,36:o,37:s,38:c,39:u,40:l,48:h,66:f,67:d},{4:16,5:r,7:36,8:i,9:4,14:n,18:13,19:14,20:15,21:18,27:20,35:a,36:o,37:s,38:c,39:u,40:l,48:h,66:f,67:d},{4:16,5:r,7:37,8:i,9:4,14:n,18:13,19:14,20:15,21:18,27:20,35:a,36:o,37:s,38:c,39:u,40:l,48:h,66:f,67:d},{22:38,66:[1,39],67:[1,40]},{49:41,66:[1,42],67:[1,43]},{55:[1,44],57:[1,45]},t(y,[2,23]),t(y,[2,24]),t(y,[2,25]),t(y,[2,26]),t(y,[2,27]),t(y,[2,28]),t(g,[2,52]),t(g,[2,53]),t(m,[2,4]),{13:46,16:[1,47]},t(m,[2,9]),{1:[2,3]},{8:[2,11]},{8:[2,12]},{8:[2,13]},{8:[2,14]},{8:[2,15]},{23:[1,48]},{23:[2,50]},{23:[2,51]},{23:[1,49]},{23:[2,56]},{23:[2,57]},{56:50,59:v,60:b,61:x,62:_,63:k,64:w,65:E},{56:58,59:v,60:b,61:x,62:_,63:k,64:w,65:E},{11:59,17:p},{17:[2,8]},{5:[1,60]},{5:[1,61]},{57:[1,62]},t(T,[2,43]),t(T,[2,44]),t(T,[2,45]),t(T,[2,46]),t(T,[2,47]),t(T,[2,48]),t(T,[2,49]),{58:[1,63]},t(m,[2,5]),{5:C,24:64,25:S,28:A,30:M,32:O,34:N},{5:B,34:D,50:71,51:L,53:I},{27:76,66:f,67:d},{27:77,66:f,67:d},t(R,[2,16]),{26:[1,78]},{26:[1,79]},{26:[1,80]},{26:[1,81]},{5:C,24:82,25:S,28:A,30:M,32:O,34:N},t(R,[2,22]),t(R,[2,36]),{26:[1,83]},{26:[1,84]},{5:B,34:D,50:85,51:L,53:I},t(R,[2,40]),t(R,[2,41]),t(R,[2,42]),{27:86,66:f,67:d},{29:87,66:[1,88],67:[1,89]},{31:90,41:[1,91],42:[1,92],43:[1,93]},{33:94,44:[1,95],45:[1,96],46:[1,97],47:[1,98]},t(R,[2,21]),{52:99,66:[1,100],67:[1,101]},{54:102,66:[1,103],67:[1,104]},t(R,[2,39]),{5:[1,105]},{5:[1,106]},{5:[2,54]},{5:[2,55]},{5:[1,107]},{5:[2,29]},{5:[2,30]},{5:[2,31]},{5:[1,108]},{5:[2,32]},{5:[2,33]},{5:[2,34]},{5:[2,35]},{5:[1,109]},{5:[2,58]},{5:[2,59]},{5:[1,110]},{5:[2,60]},{5:[2,61]},{5:C,24:111,25:S,28:A,30:M,32:O,34:N},{5:C,24:112,25:S,28:A,30:M,32:O,34:N},{5:C,24:113,25:S,28:A,30:M,32:O,34:N},{5:C,24:114,25:S,28:A,30:M,32:O,34:N},{5:B,34:D,50:115,51:L,53:I},{5:B,34:D,50:116,51:L,53:I},t(R,[2,17]),t(R,[2,18]),t(R,[2,19]),t(R,[2,20]),t(R,[2,37]),t(R,[2,38])],defaultActions:{5:[2,6],7:[2,2],11:[2,1],32:[2,3],33:[2,11],34:[2,12],35:[2,13],36:[2,14],37:[2,15],39:[2,50],40:[2,51],42:[2,56],43:[2,57],47:[2,8],88:[2,54],89:[2,55],91:[2,29],92:[2,30],93:[2,31],95:[2,32],96:[2,33],97:[2,34],98:[2,35],100:[2,58],101:[2,59],103:[2,60],104:[2,61]},parseError:function(t,e){if(!e.recoverable){var n=new Error(t);throw n.hash=e,n}this.trace(t)},parse:function(t){var e=this,n=[0],r=[],i=[null],a=[],o=this.table,s="",c=0,u=0,l=0,h=2,f=1,d=a.slice.call(arguments,1),p=Object.create(this.lexer),y={yy:{}};for(var g in this.yy)Object.prototype.hasOwnProperty.call(this.yy,g)&&(y.yy[g]=this.yy[g]);p.setInput(t,y.yy),y.yy.lexer=p,y.yy.parser=this,void 0===p.yylloc&&(p.yylloc={});var m=p.yylloc;a.push(m);var v=p.options&&p.options.ranges;function b(){var t;return"number"!=typeof(t=r.pop()||p.lex()||f)&&(t instanceof Array&&(t=(r=t).pop()),t=e.symbols_[t]||t),t}"function"==typeof y.yy.parseError?this.parseError=y.yy.parseError:this.parseError=Object.getPrototypeOf(this).parseError;for(var x,_,k,w,E,T,C,S,A,M={};;){if(k=n[n.length-1],this.defaultActions[k]?w=this.defaultActions[k]:(null==x&&(x=b()),w=o[k]&&o[k][x]),void 0===w||!w.length||!w[0]){var O="";for(T in A=[],o[k])this.terminals_[T]&&T>h&&A.push("'"+this.terminals_[T]+"'");O=p.showPosition?"Parse error on line "+(c+1)+":\n"+p.showPosition()+"\nExpecting "+A.join(", ")+", got '"+(this.terminals_[x]||x)+"'":"Parse error on line "+(c+1)+": Unexpected "+(x==f?"end of input":"'"+(this.terminals_[x]||x)+"'"),this.parseError(O,{text:p.match,token:this.terminals_[x]||x,line:p.yylineno,loc:m,expected:A})}if(w[0]instanceof Array&&w.length>1)throw new Error("Parse Error: multiple actions possible at state: "+k+", token: "+x);switch(w[0]){case 1:n.push(x),i.push(p.yytext),a.push(p.yylloc),n.push(w[1]),x=null,_?(x=_,_=null):(u=p.yyleng,s=p.yytext,c=p.yylineno,m=p.yylloc,l>0&&l--);break;case 2:if(C=this.productions_[w[1]][1],M.$=i[i.length-C],M._$={first_line:a[a.length-(C||1)].first_line,last_line:a[a.length-1].last_line,first_column:a[a.length-(C||1)].first_column,last_column:a[a.length-1].last_column},v&&(M._$.range=[a[a.length-(C||1)].range[0],a[a.length-1].range[1]]),void 0!==(E=this.performAction.apply(M,[s,u,c,y.yy,w[1],i,a].concat(d))))return E;C&&(n=n.slice(0,-1*C*2),i=i.slice(0,-1*C),a=a.slice(0,-1*C)),n.push(this.productions_[w[1]][0]),i.push(M.$),a.push(M._$),S=o[n[n.length-2]][n[n.length-1]],n.push(S);break;case 3:return!0}}return!0}},P={EOF:1,parseError:function(t,e){if(!this.yy.parser)throw new Error(t);this.yy.parser.parseError(t,e)},setInput:function(t,e){return this.yy=e||this.yy||{},this._input=t,this._more=this._backtrack=this.done=!1,this.yylineno=this.yyleng=0,this.yytext=this.matched=this.match="",this.conditionStack=["INITIAL"],this.yylloc={first_line:1,first_column:0,last_line:1,last_column:0},this.options.ranges&&(this.yylloc.range=[0,0]),this.offset=0,this},input:function(){var t=this._input[0];return this.yytext+=t,this.yyleng++,this.offset++,this.match+=t,this.matched+=t,t.match(/(?:\r\n?|\n).*/g)?(this.yylineno++,this.yylloc.last_line++):this.yylloc.last_column++,this.options.ranges&&this.yylloc.range[1]++,this._input=this._input.slice(1),t},unput:function(t){var e=t.length,n=t.split(/(?:\r\n?|\n)/g);this._input=t+this._input,this.yytext=this.yytext.substr(0,this.yytext.length-e),this.offset-=e;var r=this.match.split(/(?:\r\n?|\n)/g);this.match=this.match.substr(0,this.match.length-1),this.matched=this.matched.substr(0,this.matched.length-1),n.length-1&&(this.yylineno-=n.length-1);var i=this.yylloc.range;return this.yylloc={first_line:this.yylloc.first_line,last_line:this.yylineno+1,first_column:this.yylloc.first_column,last_column:n?(n.length===r.length?this.yylloc.first_column:0)+r[r.length-n.length].length-n[0].length:this.yylloc.first_column-e},this.options.ranges&&(this.yylloc.range=[i[0],i[0]+this.yyleng-e]),this.yyleng=this.yytext.length,this},more:function(){return this._more=!0,this},reject:function(){return this.options.backtrack_lexer?(this._backtrack=!0,this):this.parseError("Lexical error on line "+(this.yylineno+1)+". You can only invoke reject() in the lexer when the lexer is of the backtracking persuasion (options.backtrack_lexer = true).\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},less:function(t){this.unput(this.match.slice(t))},pastInput:function(){var t=this.matched.substr(0,this.matched.length-this.match.length);return(t.length>20?"...":"")+t.substr(-20).replace(/\n/g,"")},upcomingInput:function(){var t=this.match;return t.length<20&&(t+=this._input.substr(0,20-t.length)),(t.substr(0,20)+(t.length>20?"...":"")).replace(/\n/g,"")},showPosition:function(){var t=this.pastInput(),e=new Array(t.length+1).join("-");return t+this.upcomingInput()+"\n"+e+"^"},test_match:function(t,e){var n,r,i;if(this.options.backtrack_lexer&&(i={yylineno:this.yylineno,yylloc:{first_line:this.yylloc.first_line,last_line:this.last_line,first_column:this.yylloc.first_column,last_column:this.yylloc.last_column},yytext:this.yytext,match:this.match,matches:this.matches,matched:this.matched,yyleng:this.yyleng,offset:this.offset,_more:this._more,_input:this._input,yy:this.yy,conditionStack:this.conditionStack.slice(0),done:this.done},this.options.ranges&&(i.yylloc.range=this.yylloc.range.slice(0))),(r=t[0].match(/(?:\r\n?|\n).*/g))&&(this.yylineno+=r.length),this.yylloc={first_line:this.yylloc.last_line,last_line:this.yylineno+1,first_column:this.yylloc.last_column,last_column:r?r[r.length-1].length-r[r.length-1].match(/\r?\n?/)[0].length:this.yylloc.last_column+t[0].length},this.yytext+=t[0],this.match+=t[0],this.matches=t,this.yyleng=this.yytext.length,this.options.ranges&&(this.yylloc.range=[this.offset,this.offset+=this.yyleng]),this._more=!1,this._backtrack=!1,this._input=this._input.slice(t[0].length),this.matched+=t[0],n=this.performAction.call(this,this.yy,this,e,this.conditionStack[this.conditionStack.length-1]),this.done&&this._input&&(this.done=!1),n)return n;if(this._backtrack){for(var a in i)this[a]=i[a];return!1}return!1},next:function(){if(this.done)return this.EOF;var t,e,n,r;this._input||(this.done=!0),this._more||(this.yytext="",this.match="");for(var i=this._currentRules(),a=0;a<i.length;a++)if((n=this._input.match(this.rules[i[a]]))&&(!e||n[0].length>e[0].length)){if(e=n,r=a,this.options.backtrack_lexer){if(!1!==(t=this.test_match(n,i[a])))return t;if(this._backtrack){e=!1;continue}return!1}if(!this.options.flex)break}return e?!1!==(t=this.test_match(e,i[r]))&&t:""===this._input?this.EOF:this.parseError("Lexical error on line "+(this.yylineno+1)+". Unrecognized text.\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},lex:function(){var t=this.next();return t||this.lex()},begin:function(t){this.conditionStack.push(t)},popState:function(){return this.conditionStack.length-1>0?this.conditionStack.pop():this.conditionStack[0]},_currentRules:function(){return this.conditionStack.length&&this.conditionStack[this.conditionStack.length-1]?this.conditions[this.conditionStack[this.conditionStack.length-1]].rules:this.conditions.INITIAL.rules},topState:function(t){return(t=this.conditionStack.length-1-Math.abs(t||0))>=0?this.conditionStack[t]:"INITIAL"},pushState:function(t){this.begin(t)},stateStackSize:function(){return this.conditionStack.length},options:{"case-insensitive":!0},performAction:function(t,e,n,r){switch(n){case 0:return this.begin("open_directive"),14;case 1:return this.begin("type_directive"),15;case 2:return this.popState(),this.begin("arg_directive"),12;case 3:return this.popState(),this.popState(),17;case 4:return 16;case 5:return 5;case 6:case 7:case 8:break;case 9:return 8;case 10:return 6;case 11:return 23;case 12:return 34;case 13:return 26;case 14:return 25;case 15:return 28;case 16:return 30;case 17:return 32;case 18:return 35;case 19:return 36;case 20:return 37;case 21:return 38;case 22:return 39;case 23:return 40;case 24:return 41;case 25:return 42;case 26:return 43;case 27:return 44;case 28:return 45;case 29:return 46;case 30:return 47;case 31:return 48;case 32:return 59;case 33:return 60;case 34:return 61;case 35:return 62;case 36:return 63;case 37:return 64;case 38:return 65;case 39:return 51;case 40:return 53;case 41:return 55;case 42:return 58;case 43:return 57;case 44:this.begin("string");break;case 45:this.popState();break;case 46:return"qString";case 47:return e.yytext=e.yytext.trim(),66}},rules:[/^(?:%%\{)/i,/^(?:((?:(?!\}%%)[^:.])*))/i,/^(?::)/i,/^(?:\}%%)/i,/^(?:((?:(?!\}%%).|\n)*))/i,/^(?:(\r?\n)+)/i,/^(?:\s+)/i,/^(?:#[^\n]*)/i,/^(?:%[^\n]*)/i,/^(?:$)/i,/^(?:requirementDiagram\b)/i,/^(?:\{)/i,/^(?:\})/i,/^(?::)/i,/^(?:id\b)/i,/^(?:text\b)/i,/^(?:risk\b)/i,/^(?:verifyMethod\b)/i,/^(?:requirement\b)/i,/^(?:functionalRequirement\b)/i,/^(?:interfaceRequirement\b)/i,/^(?:performanceRequirement\b)/i,/^(?:physicalRequirement\b)/i,/^(?:designConstraint\b)/i,/^(?:low\b)/i,/^(?:medium\b)/i,/^(?:high\b)/i,/^(?:analysis\b)/i,/^(?:demonstration\b)/i,/^(?:inspection\b)/i,/^(?:test\b)/i,/^(?:element\b)/i,/^(?:contains\b)/i,/^(?:copies\b)/i,/^(?:derives\b)/i,/^(?:satisfies\b)/i,/^(?:verifies\b)/i,/^(?:refines\b)/i,/^(?:traces\b)/i,/^(?:type\b)/i,/^(?:docref\b)/i,/^(?:<-)/i,/^(?:->)/i,/^(?:-)/i,/^(?:["])/i,/^(?:["])/i,/^(?:[^"]*)/i,/^(?:[\w][^\r\n\{\<\>\-\=]*)/i],conditions:{close_directive:{rules:[],inclusive:!1},arg_directive:{rules:[3,4],inclusive:!1},type_directive:{rules:[2,3],inclusive:!1},open_directive:{rules:[1],inclusive:!1},unqString:{rules:[],inclusive:!1},token:{rules:[],inclusive:!1},string:{rules:[45,46],inclusive:!1},INITIAL:{rules:[0,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,47],inclusive:!0}}};function j(){this.yy={}}return F.lexer=P,j.prototype=F,F.Parser=j,new j}();e.parser=i,e.Parser=i.Parser,e.parse=function(){return i.parse.apply(i,arguments)},e.main=function(r){r[1]||(console.log("Usage: "+r[0]+" FILE"),t.exit(1));var i=n(17).readFileSync(n(18).normalize(r[1]),"utf8");return e.parser.parse(i)},n.c[n.s]===r&&e.main(t.argv.slice(1))}).call(this,n(12),n(7)(t))},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=new(n(175).default)({r:0,g:0,b:0,a:0},"transparent");e.default=r},function(t,e,n){var r=n(59),i=n(60);t.exports=function(t,e,n,a){var o=!n;n||(n={});for(var s=-1,c=e.length;++s<c;){var u=e[s],l=a?a(n[u],t[u],u,n,t):void 0;void 0===l&&(l=t[u]),o?i(n,u,l):r(n,u,l)}return n}},function(t,e,n){var r=n(236),i=n(21),a=Object.prototype,o=a.hasOwnProperty,s=a.propertyIsEnumerable,c=r(function(){return arguments}())?r:function(t){return i(t)&&o.call(t,"callee")&&!s.call(t,"callee")};t.exports=c},function(t,e,n){var r=n(238),i=n(62),a=n(83),o=a&&a.isTypedArray,s=o?i(o):r;t.exports=s},function(t,e,n){var r=n(43);t.exports=function(t){if("string"==typeof t||r(t))return t;var e=t+"";return"0"==e&&1/t==-1/0?"-0":e}},function(t,e,n){var r=n(15);t.exports=function(t,e){var n=t.append("foreignObject").attr("width","100000"),i=n.append("xhtml:div");i.attr("xmlns","http://www.w3.org/1999/xhtml");var a=e.label;switch(typeof a){case"function":i.insert(a);break;case"object":i.insert((function(){return a}));break;default:i.html(a)}r.applyStyle(i,e.labelStyle),i.style("display","inline-block"),i.style("white-space","nowrap");var o=i.node().getBoundingClientRect();return n.attr("width",o.width).attr("height",o.height),n}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i=n(46),a=n(6),o=n(53);e.default=function(t,e,n,s){if(void 0===n&&(n=0),void 0===s&&(s=1),"number"!=typeof t)return o.default(t,{a:e});var c=i.default.set({r:r.default.channel.clamp.r(t),g:r.default.channel.clamp.g(e),b:r.default.channel.clamp.b(n),a:r.default.channel.clamp.a(s)});return a.default.stringify(c)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i=n(6);e.default=function(t,e){var n=i.default.parse(t);for(var a in e)n[a]=r.default.channel.clamp[a](e[a]);return i.default.stringify(n)}},function(t,e,n){var r=n(55),i=n(210),a=n(211),o=n(212),s=n(213),c=n(214);function u(t){var e=this.__data__=new r(t);this.size=e.size}u.prototype.clear=i,u.prototype.delete=a,u.prototype.get=o,u.prototype.has=s,u.prototype.set=c,t.exports=u},function(t,e,n){var r=n(205),i=n(206),a=n(207),o=n(208),s=n(209);function c(t){var e=-1,n=null==t?0:t.length;for(this.clear();++e<n;){var r=t[e];this.set(r[0],r[1])}}c.prototype.clear=r,c.prototype.delete=i,c.prototype.get=a,c.prototype.has=o,c.prototype.set=s,t.exports=c},function(t,e,n){var r=n(38);t.exports=function(t,e){for(var n=t.length;n--;)if(r(t[n][0],e))return n;return-1}},function(t,e,n){var r=n(33)(Object,"create");t.exports=r},function(t,e,n){var r=n(230);t.exports=function(t,e){var n=t.__data__;return r(e)?n["string"==typeof e?"string":"hash"]:n.map}},function(t,e,n){var r=n(60),i=n(38),a=Object.prototype.hasOwnProperty;t.exports=function(t,e,n){var o=t[e];a.call(t,e)&&i(o,n)&&(void 0!==n||e in t)||r(t,e,n)}},function(t,e,n){var r=n(111);t.exports=function(t,e,n){"__proto__"==e&&r?r(t,e,{configurable:!0,enumerable:!0,value:n,writable:!0}):t[e]=n}},function(t,e){var n=/^(?:0|[1-9]\d*)$/;t.exports=function(t,e){var r=typeof t;return!!(e=null==e?9007199254740991:e)&&("number"==r||"symbol"!=r&&n.test(t))&&t>-1&&t%1==0&&t<e}},function(t,e){t.exports=function(t){return function(e){return t(e)}}},function(t,e){var n=Object.prototype;t.exports=function(t){var e=t&&t.constructor;return t===("function"==typeof e&&e.prototype||n)}},function(t,e,n){var r=n(113)(Object.getPrototypeOf,Object);t.exports=r},function(t,e,n){var r=n(90),i=n(259)(r);t.exports=i},function(t,e,n){var r=n(67),i=n(50);t.exports=function(t,e){for(var n=0,a=(e=r(e,t)).length;null!=t&&n<a;)t=t[i(e[n++])];return n&&n==a?t:void 0}},function(t,e,n){var r=n(5),i=n(93),a=n(273),o=n(135);t.exports=function(t,e){return r(t)?t:i(t,e)?[t]:a(o(t))}},function(t,e){t.exports=function(t,e){for(var n=-1,r=null==t?0:t.length,i=Array(r);++n<r;)i[n]=e(t[n],n,t);return i}},function(t,e,n){var r=n(36),i=n(143),a=n(144);t.exports=function(t,e){return a(i(t,e,r),t+"")}},function(t,e,n){var r=n(38),i=n(25),a=n(61),o=n(14);t.exports=function(t,e,n){if(!o(n))return!1;var s=typeof e;return!!("number"==s?i(n)&&a(e,n.length):"string"==s&&e in n)&&r(n[e],t)}},function(t,e,n){"use strict";var r=n(4);t.exports={longestPath:function(t){var e={};r.forEach(t.sources(),(function n(i){var a=t.node(i);if(r.has(e,i))return a.rank;e[i]=!0;var o=r.min(r.map(t.outEdges(i),(function(e){return n(e.w)-t.edge(e).minlen})));return o!==Number.POSITIVE_INFINITY&&null!=o||(o=0),a.rank=o}))},slack:function(t,e){return t.node(e.w).rank-t.node(e.v).rank-t.edge(e).minlen}}},function(t,e,n){"use strict";var r=/^(%20|\s)*(javascript|data)/im,i=/[^\x20-\x7E]/gim,a=/^([^:]+):/gm,o=[".","/"];t.exports={sanitizeUrl:function(t){if(!t)return"about:blank";var e,n,s=t.replace(i,"").trim();return function(t){return o.indexOf(t[0])>-1}(s)?s:(n=s.match(a))?(e=n[0],r.test(e)?"about:blank":s):"about:blank"}}},function(t,e,n){(function(t,r){var i=function(){var t=function(t,e,n,r){for(n=n||{},r=t.length;r--;n[t[r]]=e);return n},e=[2,3],n=[1,7],r=[7,12,15,17,19,20,21],i=[7,11,12,15,17,19,20,21],a=[2,20],o=[1,32],s={trace:function(){},yy:{},symbols_:{error:2,start:3,GG:4,":":5,document:6,EOF:7,DIR:8,options:9,body:10,OPT:11,NL:12,line:13,statement:14,COMMIT:15,commit_arg:16,BRANCH:17,ID:18,CHECKOUT:19,MERGE:20,RESET:21,reset_arg:22,STR:23,HEAD:24,reset_parents:25,CARET:26,$accept:0,$end:1},terminals_:{2:"error",4:"GG",5:":",7:"EOF",8:"DIR",11:"OPT",12:"NL",15:"COMMIT",17:"BRANCH",18:"ID",19:"CHECKOUT",20:"MERGE",21:"RESET",23:"STR",24:"HEAD",26:"CARET"},productions_:[0,[3,4],[3,5],[6,0],[6,2],[9,2],[9,1],[10,0],[10,2],[13,2],[13,1],[14,2],[14,2],[14,2],[14,2],[14,2],[16,0],[16,1],[22,2],[22,2],[25,0],[25,2]],performAction:function(t,e,n,r,i,a,o){var s=a.length-1;switch(i){case 1:return a[s-1];case 2:return r.setDirection(a[s-3]),a[s-1];case 4:r.setOptions(a[s-1]),this.$=a[s];break;case 5:a[s-1]+=a[s],this.$=a[s-1];break;case 7:this.$=[];break;case 8:a[s-1].push(a[s]),this.$=a[s-1];break;case 9:this.$=a[s-1];break;case 11:r.commit(a[s]);break;case 12:r.branch(a[s]);break;case 13:r.checkout(a[s]);break;case 14:r.merge(a[s]);break;case 15:r.reset(a[s]);break;case 16:this.$="";break;case 17:this.$=a[s];break;case 18:this.$=a[s-1]+":"+a[s];break;case 19:this.$=a[s-1]+":"+r.count,r.count=0;break;case 20:r.count=0;break;case 21:r.count+=1}},table:[{3:1,4:[1,2]},{1:[3]},{5:[1,3],8:[1,4]},{6:5,7:e,9:6,12:n},{5:[1,8]},{7:[1,9]},t(r,[2,7],{10:10,11:[1,11]}),t(i,[2,6]),{6:12,7:e,9:6,12:n},{1:[2,1]},{7:[2,4],12:[1,15],13:13,14:14,15:[1,16],17:[1,17],19:[1,18],20:[1,19],21:[1,20]},t(i,[2,5]),{7:[1,21]},t(r,[2,8]),{12:[1,22]},t(r,[2,10]),{12:[2,16],16:23,23:[1,24]},{18:[1,25]},{18:[1,26]},{18:[1,27]},{18:[1,30],22:28,24:[1,29]},{1:[2,2]},t(r,[2,9]),{12:[2,11]},{12:[2,17]},{12:[2,12]},{12:[2,13]},{12:[2,14]},{12:[2,15]},{12:a,25:31,26:o},{12:a,25:33,26:o},{12:[2,18]},{12:a,25:34,26:o},{12:[2,19]},{12:[2,21]}],defaultActions:{9:[2,1],21:[2,2],23:[2,11],24:[2,17],25:[2,12],26:[2,13],27:[2,14],28:[2,15],31:[2,18],33:[2,19],34:[2,21]},parseError:function(t,e){if(!e.recoverable){var n=new Error(t);throw n.hash=e,n}this.trace(t)},parse:function(t){var e=this,n=[0],r=[],i=[null],a=[],o=this.table,s="",c=0,u=0,l=0,h=2,f=1,d=a.slice.call(arguments,1),p=Object.create(this.lexer),y={yy:{}};for(var g in this.yy)Object.prototype.hasOwnProperty.call(this.yy,g)&&(y.yy[g]=this.yy[g]);p.setInput(t,y.yy),y.yy.lexer=p,y.yy.parser=this,void 0===p.yylloc&&(p.yylloc={});var m=p.yylloc;a.push(m);var v=p.options&&p.options.ranges;function b(){var t;return"number"!=typeof(t=r.pop()||p.lex()||f)&&(t instanceof Array&&(t=(r=t).pop()),t=e.symbols_[t]||t),t}"function"==typeof y.yy.parseError?this.parseError=y.yy.parseError:this.parseError=Object.getPrototypeOf(this).parseError;for(var x,_,k,w,E,T,C,S,A,M={};;){if(k=n[n.length-1],this.defaultActions[k]?w=this.defaultActions[k]:(null==x&&(x=b()),w=o[k]&&o[k][x]),void 0===w||!w.length||!w[0]){var O="";for(T in A=[],o[k])this.terminals_[T]&&T>h&&A.push("'"+this.terminals_[T]+"'");O=p.showPosition?"Parse error on line "+(c+1)+":\n"+p.showPosition()+"\nExpecting "+A.join(", ")+", got '"+(this.terminals_[x]||x)+"'":"Parse error on line "+(c+1)+": Unexpected "+(x==f?"end of input":"'"+(this.terminals_[x]||x)+"'"),this.parseError(O,{text:p.match,token:this.terminals_[x]||x,line:p.yylineno,loc:m,expected:A})}if(w[0]instanceof Array&&w.length>1)throw new Error("Parse Error: multiple actions possible at state: "+k+", token: "+x);switch(w[0]){case 1:n.push(x),i.push(p.yytext),a.push(p.yylloc),n.push(w[1]),x=null,_?(x=_,_=null):(u=p.yyleng,s=p.yytext,c=p.yylineno,m=p.yylloc,l>0&&l--);break;case 2:if(C=this.productions_[w[1]][1],M.$=i[i.length-C],M._$={first_line:a[a.length-(C||1)].first_line,last_line:a[a.length-1].last_line,first_column:a[a.length-(C||1)].first_column,last_column:a[a.length-1].last_column},v&&(M._$.range=[a[a.length-(C||1)].range[0],a[a.length-1].range[1]]),void 0!==(E=this.performAction.apply(M,[s,u,c,y.yy,w[1],i,a].concat(d))))return E;C&&(n=n.slice(0,-1*C*2),i=i.slice(0,-1*C),a=a.slice(0,-1*C)),n.push(this.productions_[w[1]][0]),i.push(M.$),a.push(M._$),S=o[n[n.length-2]][n[n.length-1]],n.push(S);break;case 3:return!0}}return!0}},c={EOF:1,parseError:function(t,e){if(!this.yy.parser)throw new Error(t);this.yy.parser.parseError(t,e)},setInput:function(t,e){return this.yy=e||this.yy||{},this._input=t,this._more=this._backtrack=this.done=!1,this.yylineno=this.yyleng=0,this.yytext=this.matched=this.match="",this.conditionStack=["INITIAL"],this.yylloc={first_line:1,first_column:0,last_line:1,last_column:0},this.options.ranges&&(this.yylloc.range=[0,0]),this.offset=0,this},input:function(){var t=this._input[0];return this.yytext+=t,this.yyleng++,this.offset++,this.match+=t,this.matched+=t,t.match(/(?:\r\n?|\n).*/g)?(this.yylineno++,this.yylloc.last_line++):this.yylloc.last_column++,this.options.ranges&&this.yylloc.range[1]++,this._input=this._input.slice(1),t},unput:function(t){var e=t.length,n=t.split(/(?:\r\n?|\n)/g);this._input=t+this._input,this.yytext=this.yytext.substr(0,this.yytext.length-e),this.offset-=e;var r=this.match.split(/(?:\r\n?|\n)/g);this.match=this.match.substr(0,this.match.length-1),this.matched=this.matched.substr(0,this.matched.length-1),n.length-1&&(this.yylineno-=n.length-1);var i=this.yylloc.range;return this.yylloc={first_line:this.yylloc.first_line,last_line:this.yylineno+1,first_column:this.yylloc.first_column,last_column:n?(n.length===r.length?this.yylloc.first_column:0)+r[r.length-n.length].length-n[0].length:this.yylloc.first_column-e},this.options.ranges&&(this.yylloc.range=[i[0],i[0]+this.yyleng-e]),this.yyleng=this.yytext.length,this},more:function(){return this._more=!0,this},reject:function(){return this.options.backtrack_lexer?(this._backtrack=!0,this):this.parseError("Lexical error on line "+(this.yylineno+1)+". You can only invoke reject() in the lexer when the lexer is of the backtracking persuasion (options.backtrack_lexer = true).\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},less:function(t){this.unput(this.match.slice(t))},pastInput:function(){var t=this.matched.substr(0,this.matched.length-this.match.length);return(t.length>20?"...":"")+t.substr(-20).replace(/\n/g,"")},upcomingInput:function(){var t=this.match;return t.length<20&&(t+=this._input.substr(0,20-t.length)),(t.substr(0,20)+(t.length>20?"...":"")).replace(/\n/g,"")},showPosition:function(){var t=this.pastInput(),e=new Array(t.length+1).join("-");return t+this.upcomingInput()+"\n"+e+"^"},test_match:function(t,e){var n,r,i;if(this.options.backtrack_lexer&&(i={yylineno:this.yylineno,yylloc:{first_line:this.yylloc.first_line,last_line:this.last_line,first_column:this.yylloc.first_column,last_column:this.yylloc.last_column},yytext:this.yytext,match:this.match,matches:this.matches,matched:this.matched,yyleng:this.yyleng,offset:this.offset,_more:this._more,_input:this._input,yy:this.yy,conditionStack:this.conditionStack.slice(0),done:this.done},this.options.ranges&&(i.yylloc.range=this.yylloc.range.slice(0))),(r=t[0].match(/(?:\r\n?|\n).*/g))&&(this.yylineno+=r.length),this.yylloc={first_line:this.yylloc.last_line,last_line:this.yylineno+1,first_column:this.yylloc.last_column,last_column:r?r[r.length-1].length-r[r.length-1].match(/\r?\n?/)[0].length:this.yylloc.last_column+t[0].length},this.yytext+=t[0],this.match+=t[0],this.matches=t,this.yyleng=this.yytext.length,this.options.ranges&&(this.yylloc.range=[this.offset,this.offset+=this.yyleng]),this._more=!1,this._backtrack=!1,this._input=this._input.slice(t[0].length),this.matched+=t[0],n=this.performAction.call(this,this.yy,this,e,this.conditionStack[this.conditionStack.length-1]),this.done&&this._input&&(this.done=!1),n)return n;if(this._backtrack){for(var a in i)this[a]=i[a];return!1}return!1},next:function(){if(this.done)return this.EOF;var t,e,n,r;this._input||(this.done=!0),this._more||(this.yytext="",this.match="");for(var i=this._currentRules(),a=0;a<i.length;a++)if((n=this._input.match(this.rules[i[a]]))&&(!e||n[0].length>e[0].length)){if(e=n,r=a,this.options.backtrack_lexer){if(!1!==(t=this.test_match(n,i[a])))return t;if(this._backtrack){e=!1;continue}return!1}if(!this.options.flex)break}return e?!1!==(t=this.test_match(e,i[r]))&&t:""===this._input?this.EOF:this.parseError("Lexical error on line "+(this.yylineno+1)+". Unrecognized text.\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},lex:function(){var t=this.next();return t||this.lex()},begin:function(t){this.conditionStack.push(t)},popState:function(){return this.conditionStack.length-1>0?this.conditionStack.pop():this.conditionStack[0]},_currentRules:function(){return this.conditionStack.length&&this.conditionStack[this.conditionStack.length-1]?this.conditions[this.conditionStack[this.conditionStack.length-1]].rules:this.conditions.INITIAL.rules},topState:function(t){return(t=this.conditionStack.length-1-Math.abs(t||0))>=0?this.conditionStack[t]:"INITIAL"},pushState:function(t){this.begin(t)},stateStackSize:function(){return this.conditionStack.length},options:{"case-insensitive":!0},performAction:function(t,e,n,r){switch(n){case 0:return 12;case 1:case 2:case 3:break;case 4:return 4;case 5:return 15;case 6:return 17;case 7:return 20;case 8:return 21;case 9:return 19;case 10:case 11:return 8;case 12:return 5;case 13:return 26;case 14:this.begin("options");break;case 15:this.popState();break;case 16:return 11;case 17:this.begin("string");break;case 18:this.popState();break;case 19:return 23;case 20:return 18;case 21:return 7}},rules:[/^(?:(\r?\n)+)/i,/^(?:\s+)/i,/^(?:#[^\n]*)/i,/^(?:%[^\n]*)/i,/^(?:gitGraph\b)/i,/^(?:commit\b)/i,/^(?:branch\b)/i,/^(?:merge\b)/i,/^(?:reset\b)/i,/^(?:checkout\b)/i,/^(?:LR\b)/i,/^(?:BT\b)/i,/^(?::)/i,/^(?:\^)/i,/^(?:options\r?\n)/i,/^(?:end\r?\n)/i,/^(?:[^\n]+\r?\n)/i,/^(?:["])/i,/^(?:["])/i,/^(?:[^"]*)/i,/^(?:[a-zA-Z][-_\.a-zA-Z0-9]*[-_a-zA-Z0-9])/i,/^(?:$)/i],conditions:{options:{rules:[15,16],inclusive:!1},string:{rules:[18,19],inclusive:!1},INITIAL:{rules:[0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,17,20,21],inclusive:!0}}};function u(){this.yy={}}return s.lexer=c,u.prototype=s,s.Parser=u,new u}();e.parser=i,e.Parser=i.Parser,e.parse=function(){return i.parse.apply(i,arguments)},e.main=function(r){r[1]||(console.log("Usage: "+r[0]+" FILE"),t.exit(1));var i=n(17).readFileSync(n(18).normalize(r[1]),"utf8");return e.parser.parse(i)},n.c[n.s]===r&&e.main(t.argv.slice(1))}).call(this,n(12),n(7)(t))},function(t,e,n){(function(t,r){var i=function(){var t=function(t,e,n,r){for(n=n||{},r=t.length;r--;n[t[r]]=e);return n},e=[6,9,10],n={trace:function(){},yy:{},symbols_:{error:2,start:3,info:4,document:5,EOF:6,line:7,statement:8,NL:9,showInfo:10,$accept:0,$end:1},terminals_:{2:"error",4:"info",6:"EOF",9:"NL",10:"showInfo"},productions_:[0,[3,3],[5,0],[5,2],[7,1],[7,1],[8,1]],performAction:function(t,e,n,r,i,a,o){a.length;switch(i){case 1:return r;case 4:break;case 6:r.setInfo(!0)}},table:[{3:1,4:[1,2]},{1:[3]},t(e,[2,2],{5:3}),{6:[1,4],7:5,8:6,9:[1,7],10:[1,8]},{1:[2,1]},t(e,[2,3]),t(e,[2,4]),t(e,[2,5]),t(e,[2,6])],defaultActions:{4:[2,1]},parseError:function(t,e){if(!e.recoverable){var n=new Error(t);throw n.hash=e,n}this.trace(t)},parse:function(t){var e=this,n=[0],r=[],i=[null],a=[],o=this.table,s="",c=0,u=0,l=0,h=2,f=1,d=a.slice.call(arguments,1),p=Object.create(this.lexer),y={yy:{}};for(var g in this.yy)Object.prototype.hasOwnProperty.call(this.yy,g)&&(y.yy[g]=this.yy[g]);p.setInput(t,y.yy),y.yy.lexer=p,y.yy.parser=this,void 0===p.yylloc&&(p.yylloc={});var m=p.yylloc;a.push(m);var v=p.options&&p.options.ranges;function b(){var t;return"number"!=typeof(t=r.pop()||p.lex()||f)&&(t instanceof Array&&(t=(r=t).pop()),t=e.symbols_[t]||t),t}"function"==typeof y.yy.parseError?this.parseError=y.yy.parseError:this.parseError=Object.getPrototypeOf(this).parseError;for(var x,_,k,w,E,T,C,S,A,M={};;){if(k=n[n.length-1],this.defaultActions[k]?w=this.defaultActions[k]:(null==x&&(x=b()),w=o[k]&&o[k][x]),void 0===w||!w.length||!w[0]){var O="";for(T in A=[],o[k])this.terminals_[T]&&T>h&&A.push("'"+this.terminals_[T]+"'");O=p.showPosition?"Parse error on line "+(c+1)+":\n"+p.showPosition()+"\nExpecting "+A.join(", ")+", got '"+(this.terminals_[x]||x)+"'":"Parse error on line "+(c+1)+": Unexpected "+(x==f?"end of input":"'"+(this.terminals_[x]||x)+"'"),this.parseError(O,{text:p.match,token:this.terminals_[x]||x,line:p.yylineno,loc:m,expected:A})}if(w[0]instanceof Array&&w.length>1)throw new Error("Parse Error: multiple actions possible at state: "+k+", token: "+x);switch(w[0]){case 1:n.push(x),i.push(p.yytext),a.push(p.yylloc),n.push(w[1]),x=null,_?(x=_,_=null):(u=p.yyleng,s=p.yytext,c=p.yylineno,m=p.yylloc,l>0&&l--);break;case 2:if(C=this.productions_[w[1]][1],M.$=i[i.length-C],M._$={first_line:a[a.length-(C||1)].first_line,last_line:a[a.length-1].last_line,first_column:a[a.length-(C||1)].first_column,last_column:a[a.length-1].last_column},v&&(M._$.range=[a[a.length-(C||1)].range[0],a[a.length-1].range[1]]),void 0!==(E=this.performAction.apply(M,[s,u,c,y.yy,w[1],i,a].concat(d))))return E;C&&(n=n.slice(0,-1*C*2),i=i.slice(0,-1*C),a=a.slice(0,-1*C)),n.push(this.productions_[w[1]][0]),i.push(M.$),a.push(M._$),S=o[n[n.length-2]][n[n.length-1]],n.push(S);break;case 3:return!0}}return!0}},r={EOF:1,parseError:function(t,e){if(!this.yy.parser)throw new Error(t);this.yy.parser.parseError(t,e)},setInput:function(t,e){return this.yy=e||this.yy||{},this._input=t,this._more=this._backtrack=this.done=!1,this.yylineno=this.yyleng=0,this.yytext=this.matched=this.match="",this.conditionStack=["INITIAL"],this.yylloc={first_line:1,first_column:0,last_line:1,last_column:0},this.options.ranges&&(this.yylloc.range=[0,0]),this.offset=0,this},input:function(){var t=this._input[0];return this.yytext+=t,this.yyleng++,this.offset++,this.match+=t,this.matched+=t,t.match(/(?:\r\n?|\n).*/g)?(this.yylineno++,this.yylloc.last_line++):this.yylloc.last_column++,this.options.ranges&&this.yylloc.range[1]++,this._input=this._input.slice(1),t},unput:function(t){var e=t.length,n=t.split(/(?:\r\n?|\n)/g);this._input=t+this._input,this.yytext=this.yytext.substr(0,this.yytext.length-e),this.offset-=e;var r=this.match.split(/(?:\r\n?|\n)/g);this.match=this.match.substr(0,this.match.length-1),this.matched=this.matched.substr(0,this.matched.length-1),n.length-1&&(this.yylineno-=n.length-1);var i=this.yylloc.range;return this.yylloc={first_line:this.yylloc.first_line,last_line:this.yylineno+1,first_column:this.yylloc.first_column,last_column:n?(n.length===r.length?this.yylloc.first_column:0)+r[r.length-n.length].length-n[0].length:this.yylloc.first_column-e},this.options.ranges&&(this.yylloc.range=[i[0],i[0]+this.yyleng-e]),this.yyleng=this.yytext.length,this},more:function(){return this._more=!0,this},reject:function(){return this.options.backtrack_lexer?(this._backtrack=!0,this):this.parseError("Lexical error on line "+(this.yylineno+1)+". You can only invoke reject() in the lexer when the lexer is of the backtracking persuasion (options.backtrack_lexer = true).\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},less:function(t){this.unput(this.match.slice(t))},pastInput:function(){var t=this.matched.substr(0,this.matched.length-this.match.length);return(t.length>20?"...":"")+t.substr(-20).replace(/\n/g,"")},upcomingInput:function(){var t=this.match;return t.length<20&&(t+=this._input.substr(0,20-t.length)),(t.substr(0,20)+(t.length>20?"...":"")).replace(/\n/g,"")},showPosition:function(){var t=this.pastInput(),e=new Array(t.length+1).join("-");return t+this.upcomingInput()+"\n"+e+"^"},test_match:function(t,e){var n,r,i;if(this.options.backtrack_lexer&&(i={yylineno:this.yylineno,yylloc:{first_line:this.yylloc.first_line,last_line:this.last_line,first_column:this.yylloc.first_column,last_column:this.yylloc.last_column},yytext:this.yytext,match:this.match,matches:this.matches,matched:this.matched,yyleng:this.yyleng,offset:this.offset,_more:this._more,_input:this._input,yy:this.yy,conditionStack:this.conditionStack.slice(0),done:this.done},this.options.ranges&&(i.yylloc.range=this.yylloc.range.slice(0))),(r=t[0].match(/(?:\r\n?|\n).*/g))&&(this.yylineno+=r.length),this.yylloc={first_line:this.yylloc.last_line,last_line:this.yylineno+1,first_column:this.yylloc.last_column,last_column:r?r[r.length-1].length-r[r.length-1].match(/\r?\n?/)[0].length:this.yylloc.last_column+t[0].length},this.yytext+=t[0],this.match+=t[0],this.matches=t,this.yyleng=this.yytext.length,this.options.ranges&&(this.yylloc.range=[this.offset,this.offset+=this.yyleng]),this._more=!1,this._backtrack=!1,this._input=this._input.slice(t[0].length),this.matched+=t[0],n=this.performAction.call(this,this.yy,this,e,this.conditionStack[this.conditionStack.length-1]),this.done&&this._input&&(this.done=!1),n)return n;if(this._backtrack){for(var a in i)this[a]=i[a];return!1}return!1},next:function(){if(this.done)return this.EOF;var t,e,n,r;this._input||(this.done=!0),this._more||(this.yytext="",this.match="");for(var i=this._currentRules(),a=0;a<i.length;a++)if((n=this._input.match(this.rules[i[a]]))&&(!e||n[0].length>e[0].length)){if(e=n,r=a,this.options.backtrack_lexer){if(!1!==(t=this.test_match(n,i[a])))return t;if(this._backtrack){e=!1;continue}return!1}if(!this.options.flex)break}return e?!1!==(t=this.test_match(e,i[r]))&&t:""===this._input?this.EOF:this.parseError("Lexical error on line "+(this.yylineno+1)+". Unrecognized text.\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},lex:function(){var t=this.next();return t||this.lex()},begin:function(t){this.conditionStack.push(t)},popState:function(){return this.conditionStack.length-1>0?this.conditionStack.pop():this.conditionStack[0]},_currentRules:function(){return this.conditionStack.length&&this.conditionStack[this.conditionStack.length-1]?this.conditions[this.conditionStack[this.conditionStack.length-1]].rules:this.conditions.INITIAL.rules},topState:function(t){return(t=this.conditionStack.length-1-Math.abs(t||0))>=0?this.conditionStack[t]:"INITIAL"},pushState:function(t){this.begin(t)},stateStackSize:function(){return this.conditionStack.length},options:{"case-insensitive":!0},performAction:function(t,e,n,r){switch(n){case 0:return 4;case 1:return 9;case 2:return"space";case 3:return 10;case 4:return 6;case 5:return"TXT"}},rules:[/^(?:info\b)/i,/^(?:[\s\n\r]+)/i,/^(?:[\s]+)/i,/^(?:showInfo\b)/i,/^(?:$)/i,/^(?:.)/i],conditions:{INITIAL:{rules:[0,1,2,3,4,5],inclusive:!0}}};function i(){this.yy={}}return n.lexer=r,i.prototype=n,n.Parser=i,new i}();e.parser=i,e.Parser=i.Parser,e.parse=function(){return i.parse.apply(i,arguments)},e.main=function(r){r[1]||(console.log("Usage: "+r[0]+" FILE"),t.exit(1));var i=n(17).readFileSync(n(18).normalize(r[1]),"utf8");return e.parser.parse(i)},n.c[n.s]===r&&e.main(t.argv.slice(1))}).call(this,n(12),n(7)(t))},function(t,e,n){(function(t,r){var i=function(){var t=function(t,e,n,r){for(n=n||{},r=t.length;r--;n[t[r]]=e);return n},e=[1,4],n=[1,5],r=[1,6],i=[1,7],a=[1,9],o=[1,11,13,20,21,22,23],s=[2,5],c=[1,6,11,13,20,21,22,23],u=[20,21,22],l=[2,8],h=[1,18],f=[1,19],d=[1,24],p=[6,20,21,22,23],y={trace:function(){},yy:{},symbols_:{error:2,start:3,eol:4,directive:5,PIE:6,document:7,showData:8,line:9,statement:10,txt:11,value:12,title:13,title_value:14,openDirective:15,typeDirective:16,closeDirective:17,":":18,argDirective:19,NEWLINE:20,";":21,EOF:22,open_directive:23,type_directive:24,arg_directive:25,close_directive:26,$accept:0,$end:1},terminals_:{2:"error",6:"PIE",8:"showData",11:"txt",12:"value",13:"title",14:"title_value",18:":",20:"NEWLINE",21:";",22:"EOF",23:"open_directive",24:"type_directive",25:"arg_directive",26:"close_directive"},productions_:[0,[3,2],[3,2],[3,2],[3,3],[7,0],[7,2],[9,2],[10,0],[10,2],[10,2],[10,1],[5,3],[5,5],[4,1],[4,1],[4,1],[15,1],[16,1],[19,1],[17,1]],performAction:function(t,e,n,r,i,a,o){var s=a.length-1;switch(i){case 4:r.setShowData(!0);break;case 7:this.$=a[s-1];break;case 9:r.addSection(a[s-1],r.cleanupValue(a[s]));break;case 10:this.$=a[s].trim(),r.setTitle(this.$);break;case 17:r.parseDirective("%%{","open_directive");break;case 18:r.parseDirective(a[s],"type_directive");break;case 19:a[s]=a[s].trim().replace(/'/g,'"'),r.parseDirective(a[s],"arg_directive");break;case 20:r.parseDirective("}%%","close_directive","pie")}},table:[{3:1,4:2,5:3,6:e,15:8,20:n,21:r,22:i,23:a},{1:[3]},{3:10,4:2,5:3,6:e,15:8,20:n,21:r,22:i,23:a},{3:11,4:2,5:3,6:e,15:8,20:n,21:r,22:i,23:a},t(o,s,{7:12,8:[1,13]}),t(c,[2,14]),t(c,[2,15]),t(c,[2,16]),{16:14,24:[1,15]},{24:[2,17]},{1:[2,1]},{1:[2,2]},t(u,l,{15:8,9:16,10:17,5:20,1:[2,3],11:h,13:f,23:a}),t(o,s,{7:21}),{17:22,18:[1,23],26:d},t([18,26],[2,18]),t(o,[2,6]),{4:25,20:n,21:r,22:i},{12:[1,26]},{14:[1,27]},t(u,[2,11]),t(u,l,{15:8,9:16,10:17,5:20,1:[2,4],11:h,13:f,23:a}),t(p,[2,12]),{19:28,25:[1,29]},t(p,[2,20]),t(o,[2,7]),t(u,[2,9]),t(u,[2,10]),{17:30,26:d},{26:[2,19]},t(p,[2,13])],defaultActions:{9:[2,17],10:[2,1],11:[2,2],29:[2,19]},parseError:function(t,e){if(!e.recoverable){var n=new Error(t);throw n.hash=e,n}this.trace(t)},parse:function(t){var e=this,n=[0],r=[],i=[null],a=[],o=this.table,s="",c=0,u=0,l=0,h=2,f=1,d=a.slice.call(arguments,1),p=Object.create(this.lexer),y={yy:{}};for(var g in this.yy)Object.prototype.hasOwnProperty.call(this.yy,g)&&(y.yy[g]=this.yy[g]);p.setInput(t,y.yy),y.yy.lexer=p,y.yy.parser=this,void 0===p.yylloc&&(p.yylloc={});var m=p.yylloc;a.push(m);var v=p.options&&p.options.ranges;function b(){var t;return"number"!=typeof(t=r.pop()||p.lex()||f)&&(t instanceof Array&&(t=(r=t).pop()),t=e.symbols_[t]||t),t}"function"==typeof y.yy.parseError?this.parseError=y.yy.parseError:this.parseError=Object.getPrototypeOf(this).parseError;for(var x,_,k,w,E,T,C,S,A,M={};;){if(k=n[n.length-1],this.defaultActions[k]?w=this.defaultActions[k]:(null==x&&(x=b()),w=o[k]&&o[k][x]),void 0===w||!w.length||!w[0]){var O="";for(T in A=[],o[k])this.terminals_[T]&&T>h&&A.push("'"+this.terminals_[T]+"'");O=p.showPosition?"Parse error on line "+(c+1)+":\n"+p.showPosition()+"\nExpecting "+A.join(", ")+", got '"+(this.terminals_[x]||x)+"'":"Parse error on line "+(c+1)+": Unexpected "+(x==f?"end of input":"'"+(this.terminals_[x]||x)+"'"),this.parseError(O,{text:p.match,token:this.terminals_[x]||x,line:p.yylineno,loc:m,expected:A})}if(w[0]instanceof Array&&w.length>1)throw new Error("Parse Error: multiple actions possible at state: "+k+", token: "+x);switch(w[0]){case 1:n.push(x),i.push(p.yytext),a.push(p.yylloc),n.push(w[1]),x=null,_?(x=_,_=null):(u=p.yyleng,s=p.yytext,c=p.yylineno,m=p.yylloc,l>0&&l--);break;case 2:if(C=this.productions_[w[1]][1],M.$=i[i.length-C],M._$={first_line:a[a.length-(C||1)].first_line,last_line:a[a.length-1].last_line,first_column:a[a.length-(C||1)].first_column,last_column:a[a.length-1].last_column},v&&(M._$.range=[a[a.length-(C||1)].range[0],a[a.length-1].range[1]]),void 0!==(E=this.performAction.apply(M,[s,u,c,y.yy,w[1],i,a].concat(d))))return E;C&&(n=n.slice(0,-1*C*2),i=i.slice(0,-1*C),a=a.slice(0,-1*C)),n.push(this.productions_[w[1]][0]),i.push(M.$),a.push(M._$),S=o[n[n.length-2]][n[n.length-1]],n.push(S);break;case 3:return!0}}return!0}},g={EOF:1,parseError:function(t,e){if(!this.yy.parser)throw new Error(t);this.yy.parser.parseError(t,e)},setInput:function(t,e){return this.yy=e||this.yy||{},this._input=t,this._more=this._backtrack=this.done=!1,this.yylineno=this.yyleng=0,this.yytext=this.matched=this.match="",this.conditionStack=["INITIAL"],this.yylloc={first_line:1,first_column:0,last_line:1,last_column:0},this.options.ranges&&(this.yylloc.range=[0,0]),this.offset=0,this},input:function(){var t=this._input[0];return this.yytext+=t,this.yyleng++,this.offset++,this.match+=t,this.matched+=t,t.match(/(?:\r\n?|\n).*/g)?(this.yylineno++,this.yylloc.last_line++):this.yylloc.last_column++,this.options.ranges&&this.yylloc.range[1]++,this._input=this._input.slice(1),t},unput:function(t){var e=t.length,n=t.split(/(?:\r\n?|\n)/g);this._input=t+this._input,this.yytext=this.yytext.substr(0,this.yytext.length-e),this.offset-=e;var r=this.match.split(/(?:\r\n?|\n)/g);this.match=this.match.substr(0,this.match.length-1),this.matched=this.matched.substr(0,this.matched.length-1),n.length-1&&(this.yylineno-=n.length-1);var i=this.yylloc.range;return this.yylloc={first_line:this.yylloc.first_line,last_line:this.yylineno+1,first_column:this.yylloc.first_column,last_column:n?(n.length===r.length?this.yylloc.first_column:0)+r[r.length-n.length].length-n[0].length:this.yylloc.first_column-e},this.options.ranges&&(this.yylloc.range=[i[0],i[0]+this.yyleng-e]),this.yyleng=this.yytext.length,this},more:function(){return this._more=!0,this},reject:function(){return this.options.backtrack_lexer?(this._backtrack=!0,this):this.parseError("Lexical error on line "+(this.yylineno+1)+". You can only invoke reject() in the lexer when the lexer is of the backtracking persuasion (options.backtrack_lexer = true).\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},less:function(t){this.unput(this.match.slice(t))},pastInput:function(){var t=this.matched.substr(0,this.matched.length-this.match.length);return(t.length>20?"...":"")+t.substr(-20).replace(/\n/g,"")},upcomingInput:function(){var t=this.match;return t.length<20&&(t+=this._input.substr(0,20-t.length)),(t.substr(0,20)+(t.length>20?"...":"")).replace(/\n/g,"")},showPosition:function(){var t=this.pastInput(),e=new Array(t.length+1).join("-");return t+this.upcomingInput()+"\n"+e+"^"},test_match:function(t,e){var n,r,i;if(this.options.backtrack_lexer&&(i={yylineno:this.yylineno,yylloc:{first_line:this.yylloc.first_line,last_line:this.last_line,first_column:this.yylloc.first_column,last_column:this.yylloc.last_column},yytext:this.yytext,match:this.match,matches:this.matches,matched:this.matched,yyleng:this.yyleng,offset:this.offset,_more:this._more,_input:this._input,yy:this.yy,conditionStack:this.conditionStack.slice(0),done:this.done},this.options.ranges&&(i.yylloc.range=this.yylloc.range.slice(0))),(r=t[0].match(/(?:\r\n?|\n).*/g))&&(this.yylineno+=r.length),this.yylloc={first_line:this.yylloc.last_line,last_line:this.yylineno+1,first_column:this.yylloc.last_column,last_column:r?r[r.length-1].length-r[r.length-1].match(/\r?\n?/)[0].length:this.yylloc.last_column+t[0].length},this.yytext+=t[0],this.match+=t[0],this.matches=t,this.yyleng=this.yytext.length,this.options.ranges&&(this.yylloc.range=[this.offset,this.offset+=this.yyleng]),this._more=!1,this._backtrack=!1,this._input=this._input.slice(t[0].length),this.matched+=t[0],n=this.performAction.call(this,this.yy,this,e,this.conditionStack[this.conditionStack.length-1]),this.done&&this._input&&(this.done=!1),n)return n;if(this._backtrack){for(var a in i)this[a]=i[a];return!1}return!1},next:function(){if(this.done)return this.EOF;var t,e,n,r;this._input||(this.done=!0),this._more||(this.yytext="",this.match="");for(var i=this._currentRules(),a=0;a<i.length;a++)if((n=this._input.match(this.rules[i[a]]))&&(!e||n[0].length>e[0].length)){if(e=n,r=a,this.options.backtrack_lexer){if(!1!==(t=this.test_match(n,i[a])))return t;if(this._backtrack){e=!1;continue}return!1}if(!this.options.flex)break}return e?!1!==(t=this.test_match(e,i[r]))&&t:""===this._input?this.EOF:this.parseError("Lexical error on line "+(this.yylineno+1)+". Unrecognized text.\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},lex:function(){var t=this.next();return t||this.lex()},begin:function(t){this.conditionStack.push(t)},popState:function(){return this.conditionStack.length-1>0?this.conditionStack.pop():this.conditionStack[0]},_currentRules:function(){return this.conditionStack.length&&this.conditionStack[this.conditionStack.length-1]?this.conditions[this.conditionStack[this.conditionStack.length-1]].rules:this.conditions.INITIAL.rules},topState:function(t){return(t=this.conditionStack.length-1-Math.abs(t||0))>=0?this.conditionStack[t]:"INITIAL"},pushState:function(t){this.begin(t)},stateStackSize:function(){return this.conditionStack.length},options:{"case-insensitive":!0},performAction:function(t,e,n,r){switch(n){case 0:return this.begin("open_directive"),23;case 1:return this.begin("type_directive"),24;case 2:return this.popState(),this.begin("arg_directive"),18;case 3:return this.popState(),this.popState(),26;case 4:return 25;case 5:case 6:break;case 7:return 20;case 8:case 9:break;case 10:return this.begin("title"),13;case 11:return this.popState(),"title_value";case 12:this.begin("string");break;case 13:this.popState();break;case 14:return"txt";case 15:return 6;case 16:return 8;case 17:return"value";case 18:return 22}},rules:[/^(?:%%\{)/i,/^(?:((?:(?!\}%%)[^:.])*))/i,/^(?::)/i,/^(?:\}%%)/i,/^(?:((?:(?!\}%%).|\n)*))/i,/^(?:%%(?!\{)[^\n]*)/i,/^(?:[^\}]%%[^\n]*)/i,/^(?:[\n\r]+)/i,/^(?:%%[^\n]*)/i,/^(?:[\s]+)/i,/^(?:title\b)/i,/^(?:(?!\n||)*[^\n]*)/i,/^(?:["])/i,/^(?:["])/i,/^(?:[^"]*)/i,/^(?:pie\b)/i,/^(?:showData\b)/i,/^(?::[\s]*[\d]+(?:\.[\d]+)?)/i,/^(?:$)/i],conditions:{close_directive:{rules:[],inclusive:!1},arg_directive:{rules:[3,4],inclusive:!1},type_directive:{rules:[2,3],inclusive:!1},open_directive:{rules:[1],inclusive:!1},title:{rules:[11],inclusive:!1},string:{rules:[13,14],inclusive:!1},INITIAL:{rules:[0,5,6,7,8,9,10,12,15,16,17,18],inclusive:!0}}};function m(){this.yy={}}return y.lexer=g,m.prototype=y,y.Parser=m,new m}();e.parser=i,e.Parser=i.Parser,e.parse=function(){return i.parse.apply(i,arguments)},e.main=function(r){r[1]||(console.log("Usage: "+r[0]+" FILE"),t.exit(1));var i=n(17).readFileSync(n(18).normalize(r[1]),"utf8");return e.parser.parse(i)},n.c[n.s]===r&&e.main(t.argv.slice(1))}).call(this,n(12),n(7)(t))},function(t,e,n){(function(t,r){var i=function(){var t=function(t,e,n,r){for(n=n||{},r=t.length;r--;n[t[r]]=e);return n},e=[1,2],n=[1,5],r=[6,9,11,23,37],i=[1,17],a=[1,20],o=[1,25],s=[1,26],c=[1,27],u=[1,28],l=[1,37],h=[23,34,35],f=[4,6,9,11,23,37],d=[30,31,32,33],p=[22,27],y={trace:function(){},yy:{},symbols_:{error:2,start:3,ER_DIAGRAM:4,document:5,EOF:6,directive:7,line:8,SPACE:9,statement:10,NEWLINE:11,openDirective:12,typeDirective:13,closeDirective:14,":":15,argDirective:16,entityName:17,relSpec:18,role:19,BLOCK_START:20,attributes:21,BLOCK_STOP:22,ALPHANUM:23,attribute:24,attributeType:25,attributeName:26,ATTRIBUTE_WORD:27,cardinality:28,relType:29,ZERO_OR_ONE:30,ZERO_OR_MORE:31,ONE_OR_MORE:32,ONLY_ONE:33,NON_IDENTIFYING:34,IDENTIFYING:35,WORD:36,open_directive:37,type_directive:38,arg_directive:39,close_directive:40,$accept:0,$end:1},terminals_:{2:"error",4:"ER_DIAGRAM",6:"EOF",9:"SPACE",11:"NEWLINE",15:":",20:"BLOCK_START",22:"BLOCK_STOP",23:"ALPHANUM",27:"ATTRIBUTE_WORD",30:"ZERO_OR_ONE",31:"ZERO_OR_MORE",32:"ONE_OR_MORE",33:"ONLY_ONE",34:"NON_IDENTIFYING",35:"IDENTIFYING",36:"WORD",37:"open_directive",38:"type_directive",39:"arg_directive",40:"close_directive"},productions_:[0,[3,3],[3,2],[5,0],[5,2],[8,2],[8,1],[8,1],[8,1],[7,4],[7,6],[10,1],[10,5],[10,4],[10,3],[10,1],[17,1],[21,1],[21,2],[24,2],[25,1],[26,1],[18,3],[28,1],[28,1],[28,1],[28,1],[29,1],[29,1],[19,1],[19,1],[12,1],[13,1],[16,1],[14,1]],performAction:function(t,e,n,r,i,a,o){var s=a.length-1;switch(i){case 1:break;case 3:this.$=[];break;case 4:a[s-1].push(a[s]),this.$=a[s-1];break;case 5:case 6:this.$=a[s];break;case 7:case 8:this.$=[];break;case 12:r.addEntity(a[s-4]),r.addEntity(a[s-2]),r.addRelationship(a[s-4],a[s],a[s-2],a[s-3]);break;case 13:r.addEntity(a[s-3]),r.addAttributes(a[s-3],a[s-1]);break;case 14:r.addEntity(a[s-2]);break;case 15:r.addEntity(a[s]);break;case 16:this.$=a[s];break;case 17:this.$=[a[s]];break;case 18:a[s].push(a[s-1]),this.$=a[s];break;case 19:this.$={attributeType:a[s-1],attributeName:a[s]};break;case 20:case 21:this.$=a[s];break;case 22:this.$={cardA:a[s],relType:a[s-1],cardB:a[s-2]};break;case 23:this.$=r.Cardinality.ZERO_OR_ONE;break;case 24:this.$=r.Cardinality.ZERO_OR_MORE;break;case 25:this.$=r.Cardinality.ONE_OR_MORE;break;case 26:this.$=r.Cardinality.ONLY_ONE;break;case 27:this.$=r.Identification.NON_IDENTIFYING;break;case 28:this.$=r.Identification.IDENTIFYING;break;case 29:this.$=a[s].replace(/"/g,"");break;case 30:this.$=a[s];break;case 31:r.parseDirective("%%{","open_directive");break;case 32:r.parseDirective(a[s],"type_directive");break;case 33:a[s]=a[s].trim().replace(/'/g,'"'),r.parseDirective(a[s],"arg_directive");break;case 34:r.parseDirective("}%%","close_directive","er")}},table:[{3:1,4:e,7:3,12:4,37:n},{1:[3]},t(r,[2,3],{5:6}),{3:7,4:e,7:3,12:4,37:n},{13:8,38:[1,9]},{38:[2,31]},{6:[1,10],7:15,8:11,9:[1,12],10:13,11:[1,14],12:4,17:16,23:i,37:n},{1:[2,2]},{14:18,15:[1,19],40:a},t([15,40],[2,32]),t(r,[2,8],{1:[2,1]}),t(r,[2,4]),{7:15,10:21,12:4,17:16,23:i,37:n},t(r,[2,6]),t(r,[2,7]),t(r,[2,11]),t(r,[2,15],{18:22,28:24,20:[1,23],30:o,31:s,32:c,33:u}),t([6,9,11,15,20,23,30,31,32,33,37],[2,16]),{11:[1,29]},{16:30,39:[1,31]},{11:[2,34]},t(r,[2,5]),{17:32,23:i},{21:33,22:[1,34],24:35,25:36,27:l},{29:38,34:[1,39],35:[1,40]},t(h,[2,23]),t(h,[2,24]),t(h,[2,25]),t(h,[2,26]),t(f,[2,9]),{14:41,40:a},{40:[2,33]},{15:[1,42]},{22:[1,43]},t(r,[2,14]),{21:44,22:[2,17],24:35,25:36,27:l},{26:45,27:[1,46]},{27:[2,20]},{28:47,30:o,31:s,32:c,33:u},t(d,[2,27]),t(d,[2,28]),{11:[1,48]},{19:49,23:[1,51],36:[1,50]},t(r,[2,13]),{22:[2,18]},t(p,[2,19]),t(p,[2,21]),{23:[2,22]},t(f,[2,10]),t(r,[2,12]),t(r,[2,29]),t(r,[2,30])],defaultActions:{5:[2,31],7:[2,2],20:[2,34],31:[2,33],37:[2,20],44:[2,18],47:[2,22]},parseError:function(t,e){if(!e.recoverable){var n=new Error(t);throw n.hash=e,n}this.trace(t)},parse:function(t){var e=this,n=[0],r=[],i=[null],a=[],o=this.table,s="",c=0,u=0,l=0,h=2,f=1,d=a.slice.call(arguments,1),p=Object.create(this.lexer),y={yy:{}};for(var g in this.yy)Object.prototype.hasOwnProperty.call(this.yy,g)&&(y.yy[g]=this.yy[g]);p.setInput(t,y.yy),y.yy.lexer=p,y.yy.parser=this,void 0===p.yylloc&&(p.yylloc={});var m=p.yylloc;a.push(m);var v=p.options&&p.options.ranges;function b(){var t;return"number"!=typeof(t=r.pop()||p.lex()||f)&&(t instanceof Array&&(t=(r=t).pop()),t=e.symbols_[t]||t),t}"function"==typeof y.yy.parseError?this.parseError=y.yy.parseError:this.parseError=Object.getPrototypeOf(this).parseError;for(var x,_,k,w,E,T,C,S,A,M={};;){if(k=n[n.length-1],this.defaultActions[k]?w=this.defaultActions[k]:(null==x&&(x=b()),w=o[k]&&o[k][x]),void 0===w||!w.length||!w[0]){var O="";for(T in A=[],o[k])this.terminals_[T]&&T>h&&A.push("'"+this.terminals_[T]+"'");O=p.showPosition?"Parse error on line "+(c+1)+":\n"+p.showPosition()+"\nExpecting "+A.join(", ")+", got '"+(this.terminals_[x]||x)+"'":"Parse error on line "+(c+1)+": Unexpected "+(x==f?"end of input":"'"+(this.terminals_[x]||x)+"'"),this.parseError(O,{text:p.match,token:this.terminals_[x]||x,line:p.yylineno,loc:m,expected:A})}if(w[0]instanceof Array&&w.length>1)throw new Error("Parse Error: multiple actions possible at state: "+k+", token: "+x);switch(w[0]){case 1:n.push(x),i.push(p.yytext),a.push(p.yylloc),n.push(w[1]),x=null,_?(x=_,_=null):(u=p.yyleng,s=p.yytext,c=p.yylineno,m=p.yylloc,l>0&&l--);break;case 2:if(C=this.productions_[w[1]][1],M.$=i[i.length-C],M._$={first_line:a[a.length-(C||1)].first_line,last_line:a[a.length-1].last_line,first_column:a[a.length-(C||1)].first_column,last_column:a[a.length-1].last_column},v&&(M._$.range=[a[a.length-(C||1)].range[0],a[a.length-1].range[1]]),void 0!==(E=this.performAction.apply(M,[s,u,c,y.yy,w[1],i,a].concat(d))))return E;C&&(n=n.slice(0,-1*C*2),i=i.slice(0,-1*C),a=a.slice(0,-1*C)),n.push(this.productions_[w[1]][0]),i.push(M.$),a.push(M._$),S=o[n[n.length-2]][n[n.length-1]],n.push(S);break;case 3:return!0}}return!0}},g={EOF:1,parseError:function(t,e){if(!this.yy.parser)throw new Error(t);this.yy.parser.parseError(t,e)},setInput:function(t,e){return this.yy=e||this.yy||{},this._input=t,this._more=this._backtrack=this.done=!1,this.yylineno=this.yyleng=0,this.yytext=this.matched=this.match="",this.conditionStack=["INITIAL"],this.yylloc={first_line:1,first_column:0,last_line:1,last_column:0},this.options.ranges&&(this.yylloc.range=[0,0]),this.offset=0,this},input:function(){var t=this._input[0];return this.yytext+=t,this.yyleng++,this.offset++,this.match+=t,this.matched+=t,t.match(/(?:\r\n?|\n).*/g)?(this.yylineno++,this.yylloc.last_line++):this.yylloc.last_column++,this.options.ranges&&this.yylloc.range[1]++,this._input=this._input.slice(1),t},unput:function(t){var e=t.length,n=t.split(/(?:\r\n?|\n)/g);this._input=t+this._input,this.yytext=this.yytext.substr(0,this.yytext.length-e),this.offset-=e;var r=this.match.split(/(?:\r\n?|\n)/g);this.match=this.match.substr(0,this.match.length-1),this.matched=this.matched.substr(0,this.matched.length-1),n.length-1&&(this.yylineno-=n.length-1);var i=this.yylloc.range;return this.yylloc={first_line:this.yylloc.first_line,last_line:this.yylineno+1,first_column:this.yylloc.first_column,last_column:n?(n.length===r.length?this.yylloc.first_column:0)+r[r.length-n.length].length-n[0].length:this.yylloc.first_column-e},this.options.ranges&&(this.yylloc.range=[i[0],i[0]+this.yyleng-e]),this.yyleng=this.yytext.length,this},more:function(){return this._more=!0,this},reject:function(){return this.options.backtrack_lexer?(this._backtrack=!0,this):this.parseError("Lexical error on line "+(this.yylineno+1)+". You can only invoke reject() in the lexer when the lexer is of the backtracking persuasion (options.backtrack_lexer = true).\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},less:function(t){this.unput(this.match.slice(t))},pastInput:function(){var t=this.matched.substr(0,this.matched.length-this.match.length);return(t.length>20?"...":"")+t.substr(-20).replace(/\n/g,"")},upcomingInput:function(){var t=this.match;return t.length<20&&(t+=this._input.substr(0,20-t.length)),(t.substr(0,20)+(t.length>20?"...":"")).replace(/\n/g,"")},showPosition:function(){var t=this.pastInput(),e=new Array(t.length+1).join("-");return t+this.upcomingInput()+"\n"+e+"^"},test_match:function(t,e){var n,r,i;if(this.options.backtrack_lexer&&(i={yylineno:this.yylineno,yylloc:{first_line:this.yylloc.first_line,last_line:this.last_line,first_column:this.yylloc.first_column,last_column:this.yylloc.last_column},yytext:this.yytext,match:this.match,matches:this.matches,matched:this.matched,yyleng:this.yyleng,offset:this.offset,_more:this._more,_input:this._input,yy:this.yy,conditionStack:this.conditionStack.slice(0),done:this.done},this.options.ranges&&(i.yylloc.range=this.yylloc.range.slice(0))),(r=t[0].match(/(?:\r\n?|\n).*/g))&&(this.yylineno+=r.length),this.yylloc={first_line:this.yylloc.last_line,last_line:this.yylineno+1,first_column:this.yylloc.last_column,last_column:r?r[r.length-1].length-r[r.length-1].match(/\r?\n?/)[0].length:this.yylloc.last_column+t[0].length},this.yytext+=t[0],this.match+=t[0],this.matches=t,this.yyleng=this.yytext.length,this.options.ranges&&(this.yylloc.range=[this.offset,this.offset+=this.yyleng]),this._more=!1,this._backtrack=!1,this._input=this._input.slice(t[0].length),this.matched+=t[0],n=this.performAction.call(this,this.yy,this,e,this.conditionStack[this.conditionStack.length-1]),this.done&&this._input&&(this.done=!1),n)return n;if(this._backtrack){for(var a in i)this[a]=i[a];return!1}return!1},next:function(){if(this.done)return this.EOF;var t,e,n,r;this._input||(this.done=!0),this._more||(this.yytext="",this.match="");for(var i=this._currentRules(),a=0;a<i.length;a++)if((n=this._input.match(this.rules[i[a]]))&&(!e||n[0].length>e[0].length)){if(e=n,r=a,this.options.backtrack_lexer){if(!1!==(t=this.test_match(n,i[a])))return t;if(this._backtrack){e=!1;continue}return!1}if(!this.options.flex)break}return e?!1!==(t=this.test_match(e,i[r]))&&t:""===this._input?this.EOF:this.parseError("Lexical error on line "+(this.yylineno+1)+". Unrecognized text.\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},lex:function(){var t=this.next();return t||this.lex()},begin:function(t){this.conditionStack.push(t)},popState:function(){return this.conditionStack.length-1>0?this.conditionStack.pop():this.conditionStack[0]},_currentRules:function(){return this.conditionStack.length&&this.conditionStack[this.conditionStack.length-1]?this.conditions[this.conditionStack[this.conditionStack.length-1]].rules:this.conditions.INITIAL.rules},topState:function(t){return(t=this.conditionStack.length-1-Math.abs(t||0))>=0?this.conditionStack[t]:"INITIAL"},pushState:function(t){this.begin(t)},stateStackSize:function(){return this.conditionStack.length},options:{"case-insensitive":!0},performAction:function(t,e,n,r){switch(n){case 0:return this.begin("open_directive"),37;case 1:return this.begin("type_directive"),38;case 2:return this.popState(),this.begin("arg_directive"),15;case 3:return this.popState(),this.popState(),40;case 4:return 39;case 5:case 6:break;case 7:return 11;case 8:break;case 9:return 9;case 10:return 36;case 11:return 4;case 12:return this.begin("block"),20;case 13:break;case 14:return 27;case 15:break;case 16:return this.popState(),22;case 17:return e.yytext[0];case 18:return 30;case 19:return 31;case 20:return 32;case 21:return 33;case 22:return 30;case 23:return 31;case 24:return 32;case 25:return 34;case 26:return 35;case 27:case 28:return 34;case 29:return 23;case 30:return e.yytext[0];case 31:return 6}},rules:[/^(?:%%\{)/i,/^(?:((?:(?!\}%%)[^:.])*))/i,/^(?::)/i,/^(?:\}%%)/i,/^(?:((?:(?!\}%%).|\n)*))/i,/^(?:%(?!\{)[^\n]*)/i,/^(?:[^\}]%%[^\n]*)/i,/^(?:[\n]+)/i,/^(?:\s+)/i,/^(?:[\s]+)/i,/^(?:"[^"]*")/i,/^(?:erDiagram\b)/i,/^(?:\{)/i,/^(?:\s+)/i,/^(?:[A-Za-z][A-Za-z0-9\-_]*)/i,/^(?:[\n]+)/i,/^(?:\})/i,/^(?:.)/i,/^(?:\|o\b)/i,/^(?:\}o\b)/i,/^(?:\}\|)/i,/^(?:\|\|)/i,/^(?:o\|)/i,/^(?:o\{)/i,/^(?:\|\{)/i,/^(?:\.\.)/i,/^(?:--)/i,/^(?:\.-)/i,/^(?:-\.)/i,/^(?:[A-Za-z][A-Za-z0-9\-_]*)/i,/^(?:.)/i,/^(?:$)/i],conditions:{open_directive:{rules:[1],inclusive:!1},type_directive:{rules:[2,3],inclusive:!1},arg_directive:{rules:[3,4],inclusive:!1},block:{rules:[13,14,15,16,17],inclusive:!1},INITIAL:{rules:[0,5,6,7,8,9,10,11,12,18,19,20,21,22,23,24,25,26,27,28,29,30,31],inclusive:!0}}};function m(){this.yy={}}return y.lexer=g,m.prototype=y,y.Parser=m,new m}();e.parser=i,e.Parser=i.Parser,e.parse=function(){return i.parse.apply(i,arguments)},e.main=function(r){r[1]||(console.log("Usage: "+r[0]+" FILE"),t.exit(1));var i=n(17).readFileSync(n(18).normalize(r[1]),"utf8");return e.parser.parse(i)},n.c[n.s]===r&&e.main(t.argv.slice(1))}).call(this,n(12),n(7)(t))},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i=n(6);e.default=function(t){var e=i.default.parse(t),n=e.r,a=e.g,o=e.b,s=.2126*r.default.channel.toLinear(n)+.7152*r.default.channel.toLinear(a)+.0722*r.default.channel.toLinear(o);return r.default.lang.round(s)}},function(t,e,n){"use strict";var r=n(13);t.exports=i;function i(t){this._isDirected=!r.has(t,"directed")||t.directed,this._isMultigraph=!!r.has(t,"multigraph")&&t.multigraph,this._isCompound=!!r.has(t,"compound")&&t.compound,this._label=void 0,this._defaultNodeLabelFn=r.constant(void 0),this._defaultEdgeLabelFn=r.constant(void 0),this._nodes={},this._isCompound&&(this._parent={},this._children={},this._children["\0"]={}),this._in={},this._preds={},this._out={},this._sucs={},this._edgeObjs={},this._edgeLabels={}}function a(t,e){t[e]?t[e]++:t[e]=1}function o(t,e){--t[e]||delete t[e]}function s(t,e,n,i){var a=""+e,o=""+n;if(!t&&a>o){var s=a;a=o,o=s}return a+"
"+o+"
"+(r.isUndefined(i)?"\0":i)}function c(t,e,n,r){var i=""+e,a=""+n;if(!t&&i>a){var o=i;i=a,a=o}var s={v:i,w:a};return r&&(s.name=r),s}function u(t,e){return s(t,e.v,e.w,e.name)}i.prototype._nodeCount=0,i.prototype._edgeCount=0,i.prototype.isDirected=function(){return this._isDirected},i.prototype.isMultigraph=function(){return this._isMultigraph},i.prototype.isCompound=function(){return this._isCompound},i.prototype.setGraph=function(t){return this._label=t,this},i.prototype.graph=function(){return this._label},i.prototype.setDefaultNodeLabel=function(t){return r.isFunction(t)||(t=r.constant(t)),this._defaultNodeLabelFn=t,this},i.prototype.nodeCount=function(){return this._nodeCount},i.prototype.nodes=function(){return r.keys(this._nodes)},i.prototype.sources=function(){var t=this;return r.filter(this.nodes(),(function(e){return r.isEmpty(t._in[e])}))},i.prototype.sinks=function(){var t=this;return r.filter(this.nodes(),(function(e){return r.isEmpty(t._out[e])}))},i.prototype.setNodes=function(t,e){var n=arguments,i=this;return r.each(t,(function(t){n.length>1?i.setNode(t,e):i.setNode(t)})),this},i.prototype.setNode=function(t,e){return r.has(this._nodes,t)?(arguments.length>1&&(this._nodes[t]=e),this):(this._nodes[t]=arguments.length>1?e:this._defaultNodeLabelFn(t),this._isCompound&&(this._parent[t]="\0",this._children[t]={},this._children["\0"][t]=!0),this._in[t]={},this._preds[t]={},this._out[t]={},this._sucs[t]={},++this._nodeCount,this)},i.prototype.node=function(t){return this._nodes[t]},i.prototype.hasNode=function(t){return r.has(this._nodes,t)},i.prototype.removeNode=function(t){var e=this;if(r.has(this._nodes,t)){var n=function(t){e.removeEdge(e._edgeObjs[t])};delete this._nodes[t],this._isCompound&&(this._removeFromParentsChildList(t),delete this._parent[t],r.each(this.children(t),(function(t){e.setParent(t)})),delete this._children[t]),r.each(r.keys(this._in[t]),n),delete this._in[t],delete this._preds[t],r.each(r.keys(this._out[t]),n),delete this._out[t],delete this._sucs[t],--this._nodeCount}return this},i.prototype.setParent=function(t,e){if(!this._isCompound)throw new Error("Cannot set parent in a non-compound graph");if(r.isUndefined(e))e="\0";else{for(var n=e+="";!r.isUndefined(n);n=this.parent(n))if(n===t)throw new Error("Setting "+e+" as parent of "+t+" would create a cycle");this.setNode(e)}return this.setNode(t),this._removeFromParentsChildList(t),this._parent[t]=e,this._children[e][t]=!0,this},i.prototype._removeFromParentsChildList=function(t){delete this._children[this._parent[t]][t]},i.prototype.parent=function(t){if(this._isCompound){var e=this._parent[t];if("\0"!==e)return e}},i.prototype.children=function(t){if(r.isUndefined(t)&&(t="\0"),this._isCompound){var e=this._children[t];if(e)return r.keys(e)}else{if("\0"===t)return this.nodes();if(this.hasNode(t))return[]}},i.prototype.predecessors=function(t){var e=this._preds[t];if(e)return r.keys(e)},i.prototype.successors=function(t){var e=this._sucs[t];if(e)return r.keys(e)},i.prototype.neighbors=function(t){var e=this.predecessors(t);if(e)return r.union(e,this.successors(t))},i.prototype.isLeaf=function(t){return 0===(this.isDirected()?this.successors(t):this.neighbors(t)).length},i.prototype.filterNodes=function(t){var e=new this.constructor({directed:this._isDirected,multigraph:this._isMultigraph,compound:this._isCompound});e.setGraph(this.graph());var n=this;r.each(this._nodes,(function(n,r){t(r)&&e.setNode(r,n)})),r.each(this._edgeObjs,(function(t){e.hasNode(t.v)&&e.hasNode(t.w)&&e.setEdge(t,n.edge(t))}));var i={};return this._isCompound&&r.each(e.nodes(),(function(t){e.setParent(t,function t(r){var a=n.parent(r);return void 0===a||e.hasNode(a)?(i[r]=a,a):a in i?i[a]:t(a)}(t))})),e},i.prototype.setDefaultEdgeLabel=function(t){return r.isFunction(t)||(t=r.constant(t)),this._defaultEdgeLabelFn=t,this},i.prototype.edgeCount=function(){return this._edgeCount},i.prototype.edges=function(){return r.values(this._edgeObjs)},i.prototype.setPath=function(t,e){var n=this,i=arguments;return r.reduce(t,(function(t,r){return i.length>1?n.setEdge(t,r,e):n.setEdge(t,r),r})),this},i.prototype.setEdge=function(){var t,e,n,i,o=!1,u=arguments[0];"object"==typeof u&&null!==u&&"v"in u?(t=u.v,e=u.w,n=u.name,2===arguments.length&&(i=arguments[1],o=!0)):(t=u,e=arguments[1],n=arguments[3],arguments.length>2&&(i=arguments[2],o=!0)),t=""+t,e=""+e,r.isUndefined(n)||(n=""+n);var l=s(this._isDirected,t,e,n);if(r.has(this._edgeLabels,l))return o&&(this._edgeLabels[l]=i),this;if(!r.isUndefined(n)&&!this._isMultigraph)throw new Error("Cannot set a named edge when isMultigraph = false");this.setNode(t),this.setNode(e),this._edgeLabels[l]=o?i:this._defaultEdgeLabelFn(t,e,n);var h=c(this._isDirected,t,e,n);return t=h.v,e=h.w,Object.freeze(h),this._edgeObjs[l]=h,a(this._preds[e],t),a(this._sucs[t],e),this._in[e][l]=h,this._out[t][l]=h,this._edgeCount++,this},i.prototype.edge=function(t,e,n){var r=1===arguments.length?u(this._isDirected,arguments[0]):s(this._isDirected,t,e,n);return this._edgeLabels[r]},i.prototype.hasEdge=function(t,e,n){var i=1===arguments.length?u(this._isDirected,arguments[0]):s(this._isDirected,t,e,n);return r.has(this._edgeLabels,i)},i.prototype.removeEdge=function(t,e,n){var r=1===arguments.length?u(this._isDirected,arguments[0]):s(this._isDirected,t,e,n),i=this._edgeObjs[r];return i&&(t=i.v,e=i.w,delete this._edgeLabels[r],delete this._edgeObjs[r],o(this._preds[e],t),o(this._sucs[t],e),delete this._in[e][r],delete this._out[t][r],this._edgeCount--),this},i.prototype.inEdges=function(t,e){var n=this._in[t];if(n){var i=r.values(n);return e?r.filter(i,(function(t){return t.v===e})):i}},i.prototype.outEdges=function(t,e){var n=this._out[t];if(n){var i=r.values(n);return e?r.filter(i,(function(t){return t.w===e})):i}},i.prototype.nodeEdges=function(t,e){var n=this.inEdges(t,e);if(n)return n.concat(this.outEdges(t,e))}},function(t,e,n){var r=n(33)(n(19),"Map");t.exports=r},function(t,e,n){var r=n(222),i=n(229),a=n(231),o=n(232),s=n(233);function c(t){var e=-1,n=null==t?0:t.length;for(this.clear();++e<n;){var r=t[e];this.set(r[0],r[1])}}c.prototype.clear=r,c.prototype.delete=i,c.prototype.get=a,c.prototype.has=o,c.prototype.set=s,t.exports=c},function(t,e){t.exports=function(t,e){for(var n=-1,r=null==t?0:t.length;++n<r&&!1!==e(t[n],n,t););return t}},function(t,e){t.exports=function(t){return"number"==typeof t&&t>-1&&t%1==0&&t<=9007199254740991}},function(t,e,n){(function(t){var r=n(109),i=e&&!e.nodeType&&e,a=i&&"object"==typeof t&&t&&!t.nodeType&&t,o=a&&a.exports===i&&r.process,s=function(){try{var t=a&&a.require&&a.require("util").types;return t||o&&o.binding&&o.binding("util")}catch(t){}}();t.exports=s}).call(this,n(7)(t))},function(t,e,n){var r=n(63),i=n(239),a=Object.prototype.hasOwnProperty;t.exports=function(t){if(!r(t))return i(t);var e=[];for(var n in Object(t))a.call(t,n)&&"constructor"!=n&&e.push(n);return e}},function(t,e,n){var r=n(116),i=n(117),a=Object.prototype.propertyIsEnumerable,o=Object.getOwnPropertySymbols,s=o?function(t){return null==t?[]:(t=Object(t),r(o(t),(function(e){return a.call(t,e)})))}:i;t.exports=s},function(t,e){t.exports=function(t,e){for(var n=-1,r=e.length,i=t.length;++n<r;)t[i+n]=e[n];return t}},function(t,e,n){var r=n(122);t.exports=function(t){var e=new t.constructor(t.byteLength);return new r(e).set(new r(t)),e}},function(t,e){t.exports=function(t){return function(){return t}}},function(t,e,n){t.exports=n(126)},function(t,e,n){var r=n(91),i=n(30);t.exports=function(t,e){return t&&r(t,e,i)}},function(t,e,n){var r=n(258)();t.exports=r},function(t,e){t.exports=function(t){var e=-1,n=Array(t.size);return t.forEach((function(t){n[++e]=t})),n}},function(t,e,n){var r=n(5),i=n(43),a=/\.|\[(?:[^[\]]*|(["'])(?:(?!\1)[^\\]|\\.)*?\1)\]/,o=/^\w*$/;t.exports=function(t,e){if(r(t))return!1;var n=typeof t;return!("number"!=n&&"symbol"!=n&&"boolean"!=n&&null!=t&&!i(t))||(o.test(t)||!a.test(t)||null!=e&&t in Object(e))}},function(t,e,n){var r=n(280),i=n(137);t.exports=function(t,e){return null!=t&&i(t,e,r)}},function(t,e,n){var r=n(86),i=n(292);t.exports=function t(e,n,a,o,s){var c=-1,u=e.length;for(a||(a=i),s||(s=[]);++c<u;){var l=e[c];n>0&&a(l)?n>1?t(l,n-1,a,o,s):r(s,l):o||(s[s.length]=l)}return s}},function(t,e,n){var r=n(43);t.exports=function(t,e,n){for(var i=-1,a=t.length;++i<a;){var o=t[i],s=e(o);if(null!=s&&(void 0===c?s==s&&!r(s):n(s,c)))var c=s,u=o}return u}},function(t,e){t.exports=function(t,e,n,r){var i=t.x,a=t.y,o=i-r.x,s=a-r.y,c=Math.sqrt(e*e*s*s+n*n*o*o),u=Math.abs(e*n*o/c);r.x<i&&(u=-u);var l=Math.abs(e*n*s/c);r.y<a&&(l=-l);return{x:i+u,y:a+l}}},function(t,e,n){var r=n(379),i=n(51),a=n(380);t.exports=function(t,e,n){var o=e.label,s=t.append("g");"svg"===e.labelType?a(s,e):"string"!=typeof o||"html"===e.labelType?i(s,e):r(s,e);var c,u=s.node().getBBox();switch(n){case"top":c=-e.height/2;break;case"bottom":c=e.height/2-u.height;break;default:c=-u.height/2}return s.attr("transform","translate("+-u.width/2+","+c+")"),s}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(46),i=n(177),a={re:/^#((?:[a-f0-9]{2}){2,4}|[a-f0-9]{3})$/i,parse:function(t){if(35===t.charCodeAt(0)){var e=t.match(a.re);if(e){var n=e[1],i=parseInt(n,16),o=n.length,s=o%4==0,c=o>4,u=c?1:17,l=c?8:4,h=s?0:-1,f=c?255:15;return r.default.set({r:(i>>l*(h+3)&f)*u,g:(i>>l*(h+2)&f)*u,b:(i>>l*(h+1)&f)*u,a:s?(i&f)*u/255:1},t)}}},stringify:function(t){var e=t.r,n=t.g,r=t.b,a=t.a;return a<1?"#"+i.DEC2HEX[Math.round(e)]+i.DEC2HEX[Math.round(n)]+i.DEC2HEX[Math.round(r)]+i.DEC2HEX[Math.round(255*a)]:"#"+i.DEC2HEX[Math.round(e)]+i.DEC2HEX[Math.round(n)]+i.DEC2HEX[Math.round(r)]}};e.default=a},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i=n(46),a=n(6);e.default=function(t,e,n,o){void 0===o&&(o=1);var s=i.default.set({h:r.default.channel.clamp.h(t),s:r.default.channel.clamp.s(e),l:r.default.channel.clamp.l(n),a:r.default.channel.clamp.a(o)});return a.default.stringify(s)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(29);e.default=function(t){return r.default(t,"a")}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(77);e.default=function(t){return r.default(t)>=.5}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(32);e.default=function(t,e){return r.default(t,"a",e)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(32);e.default=function(t,e){return r.default(t,"a",-e)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(6),i=n(53);e.default=function(t,e){var n=r.default.parse(t),a={};for(var o in e)e[o]&&(a[o]=n[o]+e[o]);return i.default(t,a)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(6),i=n(52);e.default=function(t,e,n){void 0===n&&(n=50);var a=r.default.parse(t),o=a.r,s=a.g,c=a.b,u=a.a,l=r.default.parse(e),h=l.r,f=l.g,d=l.b,p=l.a,y=n/100,g=2*y-1,m=u-p,v=((g*m==-1?g:(g+m)/(1+g*m))+1)/2,b=1-v,x=o*v+h*b,_=s*v+f*b,k=c*v+d*b,w=u*y+p*(1-y);return i.default(x,_,k,w)}},function(t,e){},function(t,e,n){var r=n(54),i=n(81),a=n(59),o=n(234),s=n(240),c=n(114),u=n(115),l=n(243),h=n(244),f=n(119),d=n(245),p=n(42),y=n(249),g=n(250),m=n(124),v=n(5),b=n(41),x=n(254),_=n(14),k=n(256),w=n(30),E=n(35),T={};T["[object Arguments]"]=T["[object Array]"]=T["[object ArrayBuffer]"]=T["[object DataView]"]=T["[object Boolean]"]=T["[object Date]"]=T["[object Float32Array]"]=T["[object Float64Array]"]=T["[object Int8Array]"]=T["[object Int16Array]"]=T["[object Int32Array]"]=T["[object Map]"]=T["[object Number]"]=T["[object Object]"]=T["[object RegExp]"]=T["[object Set]"]=T["[object String]"]=T["[object Symbol]"]=T["[object Uint8Array]"]=T["[object Uint8ClampedArray]"]=T["[object Uint16Array]"]=T["[object Uint32Array]"]=!0,T["[object Error]"]=T["[object Function]"]=T["[object WeakMap]"]=!1,t.exports=function t(e,n,C,S,A,M){var O,N=1&n,B=2&n,D=4&n;if(C&&(O=A?C(e,S,A,M):C(e)),void 0!==O)return O;if(!_(e))return e;var L=v(e);if(L){if(O=y(e),!N)return u(e,O)}else{var I=p(e),R="[object Function]"==I||"[object GeneratorFunction]"==I;if(b(e))return c(e,N);if("[object Object]"==I||"[object Arguments]"==I||R&&!A){if(O=B||R?{}:m(e),!N)return B?h(e,s(O,e)):l(e,o(O,e))}else{if(!T[I])return A?e:{};O=g(e,I,N)}}M||(M=new r);var F=M.get(e);if(F)return F;M.set(e,O),k(e)?e.forEach((function(r){O.add(t(r,n,C,r,e,M))})):x(e)&&e.forEach((function(r,i){O.set(i,t(r,n,C,i,e,M))}));var P=L?void 0:(D?B?d:f:B?E:w)(e);return i(P||e,(function(r,i){P&&(r=e[i=r]),a(O,i,t(r,n,C,i,e,M))})),O}},function(t,e,n){(function(e){var n="object"==typeof e&&e&&e.Object===Object&&e;t.exports=n}).call(this,n(216))},function(t,e){var n=Function.prototype.toString;t.exports=function(t){if(null!=t){try{return n.call(t)}catch(t){}try{return t+""}catch(t){}}return""}},function(t,e,n){var r=n(33),i=function(){try{var t=r(Object,"defineProperty");return t({},"",{}),t}catch(t){}}();t.exports=i},function(t,e,n){var r=n(235),i=n(48),a=n(5),o=n(41),s=n(61),c=n(49),u=Object.prototype.hasOwnProperty;t.exports=function(t,e){var n=a(t),l=!n&&i(t),h=!n&&!l&&o(t),f=!n&&!l&&!h&&c(t),d=n||l||h||f,p=d?r(t.length,String):[],y=p.length;for(var g in t)!e&&!u.call(t,g)||d&&("length"==g||h&&("offset"==g||"parent"==g)||f&&("buffer"==g||"byteLength"==g||"byteOffset"==g)||s(g,y))||p.push(g);return p}},function(t,e){t.exports=function(t,e){return function(n){return t(e(n))}}},function(t,e,n){(function(t){var r=n(19),i=e&&!e.nodeType&&e,a=i&&"object"==typeof t&&t&&!t.nodeType&&t,o=a&&a.exports===i?r.Buffer:void 0,s=o?o.allocUnsafe:void 0;t.exports=function(t,e){if(e)return t.slice();var n=t.length,r=s?s(n):new t.constructor(n);return t.copy(r),r}}).call(this,n(7)(t))},function(t,e){t.exports=function(t,e){var n=-1,r=t.length;for(e||(e=Array(r));++n<r;)e[n]=t[n];return e}},function(t,e){t.exports=function(t,e){for(var n=-1,r=null==t?0:t.length,i=0,a=[];++n<r;){var o=t[n];e(o,n,t)&&(a[i++]=o)}return a}},function(t,e){t.exports=function(){return[]}},function(t,e,n){var r=n(86),i=n(64),a=n(85),o=n(117),s=Object.getOwnPropertySymbols?function(t){for(var e=[];t;)r(e,a(t)),t=i(t);return e}:o;t.exports=s},function(t,e,n){var r=n(120),i=n(85),a=n(30);t.exports=function(t){return r(t,a,i)}},function(t,e,n){var r=n(86),i=n(5);t.exports=function(t,e,n){var a=e(t);return i(t)?a:r(a,n(t))}},function(t,e,n){var r=n(33)(n(19),"Set");t.exports=r},function(t,e,n){var r=n(19).Uint8Array;t.exports=r},function(t,e,n){var r=n(87);t.exports=function(t,e){var n=e?r(t.buffer):t.buffer;return new t.constructor(n,t.byteOffset,t.length)}},function(t,e,n){var r=n(125),i=n(64),a=n(63);t.exports=function(t){return"function"!=typeof t.constructor||a(t)?{}:r(i(t))}},function(t,e,n){var r=n(14),i=Object.create,a=function(){function t(){}return function(e){if(!r(e))return{};if(i)return i(e);t.prototype=e;var n=new t;return t.prototype=void 0,n}}();t.exports=a},function(t,e,n){var r=n(81),i=n(65),a=n(127),o=n(5);t.exports=function(t,e){return(o(t)?r:i)(t,a(e))}},function(t,e,n){var r=n(36);t.exports=function(t){return"function"==typeof t?t:r}},function(t,e,n){var r=n(116),i=n(260),a=n(26),o=n(5);t.exports=function(t,e){return(o(t)?r:i)(t,a(e,3))}},function(t,e,n){var r=n(263),i=n(21);t.exports=function t(e,n,a,o,s){return e===n||(null==e||null==n||!i(e)&&!i(n)?e!=e&&n!=n:r(e,n,a,o,t,s))}},function(t,e,n){var r=n(131),i=n(266),a=n(132);t.exports=function(t,e,n,o,s,c){var u=1&n,l=t.length,h=e.length;if(l!=h&&!(u&&h>l))return!1;var f=c.get(t),d=c.get(e);if(f&&d)return f==e&&d==t;var p=-1,y=!0,g=2&n?new r:void 0;for(c.set(t,e),c.set(e,t);++p<l;){var m=t[p],v=e[p];if(o)var b=u?o(v,m,p,e,t,c):o(m,v,p,t,e,c);if(void 0!==b){if(b)continue;y=!1;break}if(g){if(!i(e,(function(t,e){if(!a(g,e)&&(m===t||s(m,t,n,o,c)))return g.push(e)}))){y=!1;break}}else if(m!==v&&!s(m,v,n,o,c)){y=!1;break}}return c.delete(t),c.delete(e),y}},function(t,e,n){var r=n(80),i=n(264),a=n(265);function o(t){var e=-1,n=null==t?0:t.length;for(this.__data__=new r;++e<n;)this.add(t[e])}o.prototype.add=o.prototype.push=i,o.prototype.has=a,t.exports=o},function(t,e){t.exports=function(t,e){return t.has(e)}},function(t,e,n){var r=n(14);t.exports=function(t){return t==t&&!r(t)}},function(t,e){t.exports=function(t,e){return function(n){return null!=n&&(n[t]===e&&(void 0!==e||t in Object(n)))}}},function(t,e,n){var r=n(276);t.exports=function(t){return null==t?"":r(t)}},function(t,e,n){var r=n(277),i=n(137);t.exports=function(t,e){return null!=t&&i(t,e,r)}},function(t,e,n){var r=n(67),i=n(48),a=n(5),o=n(61),s=n(82),c=n(50);t.exports=function(t,e,n){for(var u=-1,l=(e=r(e,t)).length,h=!1;++u<l;){var f=c(e[u]);if(!(h=null!=t&&n(t,f)))break;t=t[f]}return h||++u!=l?h:!!(l=null==t?0:t.length)&&s(l)&&o(f,l)&&(a(t)||i(t))}},function(t,e){t.exports=function(t){return function(e){return null==e?void 0:e[t]}}},function(t,e){t.exports=function(t){return void 0===t}},function(t,e,n){var r=n(68),i=n(26),a=n(141),o=n(5);t.exports=function(t,e){return(o(t)?r:a)(t,i(e,3))}},function(t,e,n){var r=n(65),i=n(25);t.exports=function(t,e){var n=-1,a=i(t)?Array(t.length):[];return r(t,(function(t,r,i){a[++n]=e(t,r,i)})),a}},function(t,e,n){var r=n(282),i=n(65),a=n(26),o=n(283),s=n(5);t.exports=function(t,e,n){var c=s(t)?r:o,u=arguments.length<3;return c(t,a(e,4),n,u,i)}},function(t,e,n){var r=n(293),i=Math.max;t.exports=function(t,e,n){return e=i(void 0===e?t.length-1:e,0),function(){for(var a=arguments,o=-1,s=i(a.length-e,0),c=Array(s);++o<s;)c[o]=a[e+o];o=-1;for(var u=Array(e+1);++o<e;)u[o]=a[o];return u[e]=n(c),r(t,this,u)}}},function(t,e,n){var r=n(294),i=n(295)(r);t.exports=i},function(t,e){t.exports=function(t,e,n,r){for(var i=t.length,a=n+(r?1:-1);r?a--:++a<i;)if(e(t[a],a,t))return a;return-1}},function(t,e,n){var r=n(25),i=n(21);t.exports=function(t){return i(t)&&r(t)}},function(t,e,n){var r=n(304),i=n(30);t.exports=function(t){return null==t?[]:r(t,i(t))}},function(t,e,n){var r=n(13),i=n(149);t.exports=function(t,e,n,r){return function(t,e,n,r){var a,o,s={},c=new i,u=function(t){var e=t.v!==a?t.v:t.w,r=s[e],i=n(t),u=o.distance+i;if(i<0)throw new Error("dijkstra does not allow negative edge weights. Bad edge: "+t+" Weight: "+i);u<r.distance&&(r.distance=u,r.predecessor=a,c.decrease(e,u))};t.nodes().forEach((function(t){var n=t===e?0:Number.POSITIVE_INFINITY;s[t]={distance:n},c.add(t,n)}));for(;c.size()>0&&(a=c.removeMin(),(o=s[a]).distance!==Number.POSITIVE_INFINITY);)r(a).forEach(u);return s}(t,String(e),n||a,r||function(e){return t.outEdges(e)})};var a=r.constant(1)},function(t,e,n){var r=n(13);function i(){this._arr=[],this._keyIndices={}}t.exports=i,i.prototype.size=function(){return this._arr.length},i.prototype.keys=function(){return this._arr.map((function(t){return t.key}))},i.prototype.has=function(t){return r.has(this._keyIndices,t)},i.prototype.priority=function(t){var e=this._keyIndices[t];if(void 0!==e)return this._arr[e].priority},i.prototype.min=function(){if(0===this.size())throw new Error("Queue underflow");return this._arr[0].key},i.prototype.add=function(t,e){var n=this._keyIndices;if(t=String(t),!r.has(n,t)){var i=this._arr,a=i.length;return n[t]=a,i.push({key:t,priority:e}),this._decrease(a),!0}return!1},i.prototype.removeMin=function(){this._swap(0,this._arr.length-1);var t=this._arr.pop();return delete this._keyIndices[t.key],this._heapify(0),t.key},i.prototype.decrease=function(t,e){var n=this._keyIndices[t];if(e>this._arr[n].priority)throw new Error("New priority is greater than current priority. Key: "+t+" Old: "+this._arr[n].priority+" New: "+e);this._arr[n].priority=e,this._decrease(n)},i.prototype._heapify=function(t){var e=this._arr,n=2*t,r=n+1,i=t;n<e.length&&(i=e[n].priority<e[i].priority?n:i,r<e.length&&(i=e[r].priority<e[i].priority?r:i),i!==t&&(this._swap(t,i),this._heapify(i)))},i.prototype._decrease=function(t){for(var e,n=this._arr,r=n[t].priority;0!==t&&!(n[e=t>>1].priority<r);)this._swap(t,e),t=e},i.prototype._swap=function(t,e){var n=this._arr,r=this._keyIndices,i=n[t],a=n[e];n[t]=a,n[e]=i,r[a.key]=t,r[i.key]=e}},function(t,e,n){var r=n(13);t.exports=function(t){var e=0,n=[],i={},a=[];return t.nodes().forEach((function(o){r.has(i,o)||function o(s){var c=i[s]={onStack:!0,lowlink:e,index:e++};if(n.push(s),t.successors(s).forEach((function(t){r.has(i,t)?i[t].onStack&&(c.lowlink=Math.min(c.lowlink,i[t].index)):(o(t),c.lowlink=Math.min(c.lowlink,i[t].lowlink))})),c.lowlink===c.index){var u,l=[];do{u=n.pop(),i[u].onStack=!1,l.push(u)}while(s!==u);a.push(l)}}(o)})),a}},function(t,e,n){var r=n(13);function i(t){var e={},n={},i=[];if(r.each(t.sinks(),(function o(s){if(r.has(n,s))throw new a;r.has(e,s)||(n[s]=!0,e[s]=!0,r.each(t.predecessors(s),o),delete n[s],i.push(s))})),r.size(e)!==t.nodeCount())throw new a;return i}function a(){}t.exports=i,i.CycleException=a,a.prototype=new Error},function(t,e,n){var r=n(13);t.exports=function(t,e,n){r.isArray(e)||(e=[e]);var i=(t.isDirected()?t.successors:t.neighbors).bind(t),a=[],o={};return r.each(e,(function(e){if(!t.hasNode(e))throw new Error("Graph does not have node: "+e);!function t(e,n,i,a,o,s){r.has(a,n)||(a[n]=!0,i||s.push(n),r.each(o(n),(function(n){t(e,n,i,a,o,s)})),i&&s.push(n))}(t,e,"post"===n,o,i,a)})),a}},function(t,e,n){var r;try{r=n(10)}catch(t){}r||(r=window.dagre),t.exports=r},function(t,e,n){var r=n(69),i=n(38),a=n(70),o=n(35),s=Object.prototype,c=s.hasOwnProperty,u=r((function(t,e){t=Object(t);var n=-1,r=e.length,u=r>2?e[2]:void 0;for(u&&a(e[0],e[1],u)&&(r=1);++n<r;)for(var l=e[n],h=o(l),f=-1,d=h.length;++f<d;){var p=h[f],y=t[p];(void 0===y||i(y,s[p])&&!c.call(t,p))&&(t[p]=l[p])}return t}));t.exports=u},function(t,e,n){var r=n(323);t.exports=function(t){return t?(t=r(t))===1/0||t===-1/0?17976931348623157e292*(t<0?-1:1):t==t?t:0:0===t?t:0}},function(t,e,n){var r=n(95);t.exports=function(t){return(null==t?0:t.length)?r(t,1):[]}},function(t,e,n){var r=n(60),i=n(38);t.exports=function(t,e,n){(void 0!==n&&!i(t[e],n)||void 0===n&&!(e in t))&&r(t,e,n)}},function(t,e,n){var r=n(34),i=n(64),a=n(21),o=Function.prototype,s=Object.prototype,c=o.toString,u=s.hasOwnProperty,l=c.call(Object);t.exports=function(t){if(!a(t)||"[object Object]"!=r(t))return!1;var e=i(t);if(null===e)return!0;var n=u.call(e,"constructor")&&e.constructor;return"function"==typeof n&&n instanceof n&&c.call(n)==l}},function(t,e){t.exports=function(t,e){if(("constructor"!==e||"function"!=typeof t[e])&&"__proto__"!=e)return t[e]}},function(t,e){t.exports=function(t,e){return t<e}},function(t,e,n){var r=n(339),i=n(342)((function(t,e){return null==t?{}:r(t,e)}));t.exports=i},function(t,e,n){var r=n(343)();t.exports=r},function(t,e,n){var r=n(135),i=0;t.exports=function(t){var e=++i;return r(t)+e}},function(t,e,n){"use strict";var r=n(4),i=n(20).Graph,a=n(71).slack;function o(t,e){return r.forEach(t.nodes(),(function n(i){r.forEach(e.nodeEdges(i),(function(r){var o=r.v,s=i===o?r.w:o;t.hasNode(s)||a(e,r)||(t.setNode(s,{}),t.setEdge(i,s,{}),n(s))}))})),t.nodeCount()}function s(t,e){return r.minBy(e.edges(),(function(n){if(t.hasNode(n.v)!==t.hasNode(n.w))return a(e,n)}))}function c(t,e,n){r.forEach(t.nodes(),(function(t){e.node(t).rank+=n}))}t.exports=function(t){var e,n,r=new i({directed:!1}),u=t.nodes()[0],l=t.nodeCount();r.setNode(u,{});for(;o(r,t)<l;)e=s(r,t),n=r.hasNode(e.v)?a(t,e):-a(t,e),c(r,t,n);return r}},function(t,e){t.exports=function(t,e){return t.intersect(e)}},function(t,e,n){var r=n(97);t.exports=function(t,e,n){return r(t,e,e,n)}},function(t,e,n){var r=n(376);t.exports=function(t,e,n){var i=t.x,a=t.y,o=[],s=Number.POSITIVE_INFINITY,c=Number.POSITIVE_INFINITY;e.forEach((function(t){s=Math.min(s,t.x),c=Math.min(c,t.y)}));for(var u=i-t.width/2-s,l=a-t.height/2-c,h=0;h<e.length;h++){var f=e[h],d=e[h<e.length-1?h+1:0],p=r(t,n,{x:u+f.x,y:l+f.y},{x:u+d.x,y:l+d.y});p&&o.push(p)}if(!o.length)return console.log("NO INTERSECTION FOUND, RETURN NODE CENTER",t),t;o.length>1&&o.sort((function(t,e){var r=t.x-n.x,i=t.y-n.y,a=Math.sqrt(r*r+i*i),o=e.x-n.x,s=e.y-n.y,c=Math.sqrt(o*o+s*s);return a<c?-1:a===c?0:1}));return o[0]}},function(t,e){t.exports=function(t,e){var n,r,i=t.x,a=t.y,o=e.x-i,s=e.y-a,c=t.width/2,u=t.height/2;Math.abs(s)*c>Math.abs(o)*u?(s<0&&(u=-u),n=0===s?0:u*o/s,r=u):(o<0&&(c=-c),n=c,r=0===o?0:c*s/o);return{x:i+n,y:a+r}}},function(t,e,n){
-/*! @license DOMPurify 2.3.0 | (c) Cure53 and other contributors | Released under the Apache license 2.0 and Mozilla Public License 2.0 | github.com/cure53/DOMPurify/blob/2.3.0/LICENSE */
-t.exports=function(){"use strict";var t=Object.hasOwnProperty,e=Object.setPrototypeOf,n=Object.isFrozen,r=Object.getPrototypeOf,i=Object.getOwnPropertyDescriptor,a=Object.freeze,o=Object.seal,s=Object.create,c="undefined"!=typeof Reflect&&Reflect,u=c.apply,l=c.construct;u||(u=function(t,e,n){return t.apply(e,n)}),a||(a=function(t){return t}),o||(o=function(t){return t}),l||(l=function(t,e){return new(Function.prototype.bind.apply(t,[null].concat(function(t){if(Array.isArray(t)){for(var e=0,n=Array(t.length);e<t.length;e++)n[e]=t[e];return n}return Array.from(t)}(e))))});var h,f=k(Array.prototype.forEach),d=k(Array.prototype.pop),p=k(Array.prototype.push),y=k(String.prototype.toLowerCase),g=k(String.prototype.match),m=k(String.prototype.replace),v=k(String.prototype.indexOf),b=k(String.prototype.trim),x=k(RegExp.prototype.test),_=(h=TypeError,function(){for(var t=arguments.length,e=Array(t),n=0;n<t;n++)e[n]=arguments[n];return l(h,e)});function k(t){return function(e){for(var n=arguments.length,r=Array(n>1?n-1:0),i=1;i<n;i++)r[i-1]=arguments[i];return u(t,e,r)}}function w(t,r){e&&e(t,null);for(var i=r.length;i--;){var a=r[i];if("string"==typeof a){var o=y(a);o!==a&&(n(r)||(r[i]=o),a=o)}t[a]=!0}return t}function E(e){var n=s(null),r=void 0;for(r in e)u(t,e,[r])&&(n[r]=e[r]);return n}function T(t,e){for(;null!==t;){var n=i(t,e);if(n){if(n.get)return k(n.get);if("function"==typeof n.value)return k(n.value)}t=r(t)}return function(t){return console.warn("fallback value for",t),null}}var C=a(["a","abbr","acronym","address","area","article","aside","audio","b","bdi","bdo","big","blink","blockquote","body","br","button","canvas","caption","center","cite","code","col","colgroup","content","data","datalist","dd","decorator","del","details","dfn","dialog","dir","div","dl","dt","element","em","fieldset","figcaption","figure","font","footer","form","h1","h2","h3","h4","h5","h6","head","header","hgroup","hr","html","i","img","input","ins","kbd","label","legend","li","main","map","mark","marquee","menu","menuitem","meter","nav","nobr","ol","optgroup","option","output","p","picture","pre","progress","q","rp","rt","ruby","s","samp","section","select","shadow","small","source","spacer","span","strike","strong","style","sub","summary","sup","table","tbody","td","template","textarea","tfoot","th","thead","time","tr","track","tt","u","ul","var","video","wbr"]),S=a(["svg","a","altglyph","altglyphdef","altglyphitem","animatecolor","animatemotion","animatetransform","circle","clippath","defs","desc","ellipse","filter","font","g","glyph","glyphref","hkern","image","line","lineargradient","marker","mask","metadata","mpath","path","pattern","polygon","polyline","radialgradient","rect","stop","style","switch","symbol","text","textpath","title","tref","tspan","view","vkern"]),A=a(["feBlend","feColorMatrix","feComponentTransfer","feComposite","feConvolveMatrix","feDiffuseLighting","feDisplacementMap","feDistantLight","feFlood","feFuncA","feFuncB","feFuncG","feFuncR","feGaussianBlur","feMerge","feMergeNode","feMorphology","feOffset","fePointLight","feSpecularLighting","feSpotLight","feTile","feTurbulence"]),M=a(["animate","color-profile","cursor","discard","fedropshadow","feimage","font-face","font-face-format","font-face-name","font-face-src","font-face-uri","foreignobject","hatch","hatchpath","mesh","meshgradient","meshpatch","meshrow","missing-glyph","script","set","solidcolor","unknown","use"]),O=a(["math","menclose","merror","mfenced","mfrac","mglyph","mi","mlabeledtr","mmultiscripts","mn","mo","mover","mpadded","mphantom","mroot","mrow","ms","mspace","msqrt","mstyle","msub","msup","msubsup","mtable","mtd","mtext","mtr","munder","munderover"]),N=a(["maction","maligngroup","malignmark","mlongdiv","mscarries","mscarry","msgroup","mstack","msline","msrow","semantics","annotation","annotation-xml","mprescripts","none"]),B=a(["#text"]),D=a(["accept","action","align","alt","autocapitalize","autocomplete","autopictureinpicture","autoplay","background","bgcolor","border","capture","cellpadding","cellspacing","checked","cite","class","clear","color","cols","colspan","controls","controlslist","coords","crossorigin","datetime","decoding","default","dir","disabled","disablepictureinpicture","disableremoteplayback","download","draggable","enctype","enterkeyhint","face","for","headers","height","hidden","high","href","hreflang","id","inputmode","integrity","ismap","kind","label","lang","list","loading","loop","low","max","maxlength","media","method","min","minlength","multiple","muted","name","noshade","novalidate","nowrap","open","optimum","pattern","placeholder","playsinline","poster","preload","pubdate","radiogroup","readonly","rel","required","rev","reversed","role","rows","rowspan","spellcheck","scope","selected","shape","size","sizes","span","srclang","start","src","srcset","step","style","summary","tabindex","title","translate","type","usemap","valign","value","width","xmlns","slot"]),L=a(["accent-height","accumulate","additive","alignment-baseline","ascent","attributename","attributetype","azimuth","basefrequency","baseline-shift","begin","bias","by","class","clip","clippathunits","clip-path","clip-rule","color","color-interpolation","color-interpolation-filters","color-profile","color-rendering","cx","cy","d","dx","dy","diffuseconstant","direction","display","divisor","dur","edgemode","elevation","end","fill","fill-opacity","fill-rule","filter","filterunits","flood-color","flood-opacity","font-family","font-size","font-size-adjust","font-stretch","font-style","font-variant","font-weight","fx","fy","g1","g2","glyph-name","glyphref","gradientunits","gradienttransform","height","href","id","image-rendering","in","in2","k","k1","k2","k3","k4","kerning","keypoints","keysplines","keytimes","lang","lengthadjust","letter-spacing","kernelmatrix","kernelunitlength","lighting-color","local","marker-end","marker-mid","marker-start","markerheight","markerunits","markerwidth","maskcontentunits","maskunits","max","mask","media","method","mode","min","name","numoctaves","offset","operator","opacity","order","orient","orientation","origin","overflow","paint-order","path","pathlength","patterncontentunits","patterntransform","patternunits","points","preservealpha","preserveaspectratio","primitiveunits","r","rx","ry","radius","refx","refy","repeatcount","repeatdur","restart","result","rotate","scale","seed","shape-rendering","specularconstant","specularexponent","spreadmethod","startoffset","stddeviation","stitchtiles","stop-color","stop-opacity","stroke-dasharray","stroke-dashoffset","stroke-linecap","stroke-linejoin","stroke-miterlimit","stroke-opacity","stroke","stroke-width","style","surfacescale","systemlanguage","tabindex","targetx","targety","transform","text-anchor","text-decoration","text-rendering","textlength","type","u1","u2","unicode","values","viewbox","visibility","version","vert-adv-y","vert-origin-x","vert-origin-y","width","word-spacing","wrap","writing-mode","xchannelselector","ychannelselector","x","x1","x2","xmlns","y","y1","y2","z","zoomandpan"]),I=a(["accent","accentunder","align","bevelled","close","columnsalign","columnlines","columnspan","denomalign","depth","dir","display","displaystyle","encoding","fence","frame","height","href","id","largeop","length","linethickness","lspace","lquote","mathbackground","mathcolor","mathsize","mathvariant","maxsize","minsize","movablelimits","notation","numalign","open","rowalign","rowlines","rowspacing","rowspan","rspace","rquote","scriptlevel","scriptminsize","scriptsizemultiplier","selection","separator","separators","stretchy","subscriptshift","supscriptshift","symmetric","voffset","width","xmlns"]),R=a(["xlink:href","xml:id","xlink:title","xml:space","xmlns:xlink"]),F=o(/\{\{[\s\S]*|[\s\S]*\}\}/gm),P=o(/<%[\s\S]*|[\s\S]*%>/gm),j=o(/^data-[\-\w.\u00B7-\uFFFF]/),Y=o(/^aria-[\-\w]+$/),z=o(/^(?:(?:(?:f|ht)tps?|mailto|tel|callto|cid|xmpp):|[^a-z]|[a-z+.\-]+(?:[^a-z+.\-:]|$))/i),U=o(/^(?:\w+script|data):/i),$=o(/[\u0000-\u0020\u00A0\u1680\u180E\u2000-\u2029\u205F\u3000]/g),q="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t};function W(t){if(Array.isArray(t)){for(var e=0,n=Array(t.length);e<t.length;e++)n[e]=t[e];return n}return Array.from(t)}var H=function(){return"undefined"==typeof window?null:window},V=function(t,e){if("object"!==(void 0===t?"undefined":q(t))||"function"!=typeof t.createPolicy)return null;var n=null;e.currentScript&&e.currentScript.hasAttribute("data-tt-policy-suffix")&&(n=e.currentScript.getAttribute("data-tt-policy-suffix"));var r="dompurify"+(n?"#"+n:"");try{return t.createPolicy(r,{createHTML:function(t){return t}})}catch(t){return console.warn("TrustedTypes policy "+r+" could not be created."),null}};return function t(){var e=arguments.length>0&&void 0!==arguments[0]?arguments[0]:H(),n=function(e){return t(e)};if(n.version="2.3.0",n.removed=[],!e||!e.document||9!==e.document.nodeType)return n.isSupported=!1,n;var r=e.document,i=e.document,o=e.DocumentFragment,s=e.HTMLTemplateElement,c=e.Node,u=e.Element,l=e.NodeFilter,h=e.NamedNodeMap,k=void 0===h?e.NamedNodeMap||e.MozNamedAttrMap:h,G=e.Text,X=e.Comment,Z=e.DOMParser,K=e.trustedTypes,Q=u.prototype,J=T(Q,"cloneNode"),tt=T(Q,"nextSibling"),et=T(Q,"childNodes"),nt=T(Q,"parentNode");if("function"==typeof s){var rt=i.createElement("template");rt.content&&rt.content.ownerDocument&&(i=rt.content.ownerDocument)}var it=V(K,r),at=it&&Ft?it.createHTML(""):"",ot=i,st=ot.implementation,ct=ot.createNodeIterator,ut=ot.createDocumentFragment,lt=ot.getElementsByTagName,ht=r.importNode,ft={};try{ft=E(i).documentMode?i.documentMode:{}}catch(t){}var dt={};n.isSupported="function"==typeof nt&&st&&void 0!==st.createHTMLDocument&&9!==ft;var pt=F,yt=P,gt=j,mt=Y,vt=U,bt=$,xt=z,_t=null,kt=w({},[].concat(W(C),W(S),W(A),W(O),W(B))),wt=null,Et=w({},[].concat(W(D),W(L),W(I),W(R))),Tt=null,Ct=null,St=!0,At=!0,Mt=!1,Ot=!1,Nt=!1,Bt=!1,Dt=!1,Lt=!1,It=!1,Rt=!0,Ft=!1,Pt=!0,jt=!0,Yt=!1,zt={},Ut=w({},["annotation-xml","audio","colgroup","desc","foreignobject","head","iframe","math","mi","mn","mo","ms","mtext","noembed","noframes","noscript","plaintext","script","style","svg","template","thead","title","video","xmp"]),$t=null,qt=w({},["audio","video","img","source","image","track"]),Wt=null,Ht=w({},["alt","class","for","id","label","name","pattern","placeholder","summary","title","value","style","xmlns"]),Vt="http://www.w3.org/1998/Math/MathML",Gt="http://www.w3.org/2000/svg",Xt="http://www.w3.org/1999/xhtml",Zt=Xt,Kt=!1,Qt=null,Jt=i.createElement("form"),te=function(t){Qt&&Qt===t||(t&&"object"===(void 0===t?"undefined":q(t))||(t={}),t=E(t),_t="ALLOWED_TAGS"in t?w({},t.ALLOWED_TAGS):kt,wt="ALLOWED_ATTR"in t?w({},t.ALLOWED_ATTR):Et,Wt="ADD_URI_SAFE_ATTR"in t?w(E(Ht),t.ADD_URI_SAFE_ATTR):Ht,$t="ADD_DATA_URI_TAGS"in t?w(E(qt),t.ADD_DATA_URI_TAGS):qt,Tt="FORBID_TAGS"in t?w({},t.FORBID_TAGS):{},Ct="FORBID_ATTR"in t?w({},t.FORBID_ATTR):{},zt="USE_PROFILES"in t&&t.USE_PROFILES,St=!1!==t.ALLOW_ARIA_ATTR,At=!1!==t.ALLOW_DATA_ATTR,Mt=t.ALLOW_UNKNOWN_PROTOCOLS||!1,Ot=t.SAFE_FOR_TEMPLATES||!1,Nt=t.WHOLE_DOCUMENT||!1,Lt=t.RETURN_DOM||!1,It=t.RETURN_DOM_FRAGMENT||!1,Rt=!1!==t.RETURN_DOM_IMPORT,Ft=t.RETURN_TRUSTED_TYPE||!1,Dt=t.FORCE_BODY||!1,Pt=!1!==t.SANITIZE_DOM,jt=!1!==t.KEEP_CONTENT,Yt=t.IN_PLACE||!1,xt=t.ALLOWED_URI_REGEXP||xt,Zt=t.NAMESPACE||Xt,Ot&&(At=!1),It&&(Lt=!0),zt&&(_t=w({},[].concat(W(B))),wt=[],!0===zt.html&&(w(_t,C),w(wt,D)),!0===zt.svg&&(w(_t,S),w(wt,L),w(wt,R)),!0===zt.svgFilters&&(w(_t,A),w(wt,L),w(wt,R)),!0===zt.mathMl&&(w(_t,O),w(wt,I),w(wt,R))),t.ADD_TAGS&&(_t===kt&&(_t=E(_t)),w(_t,t.ADD_TAGS)),t.ADD_ATTR&&(wt===Et&&(wt=E(wt)),w(wt,t.ADD_ATTR)),t.ADD_URI_SAFE_ATTR&&w(Wt,t.ADD_URI_SAFE_ATTR),jt&&(_t["#text"]=!0),Nt&&w(_t,["html","head","body"]),_t.table&&(w(_t,["tbody"]),delete Tt.tbody),a&&a(t),Qt=t)},ee=w({},["mi","mo","mn","ms","mtext"]),ne=w({},["foreignobject","desc","title","annotation-xml"]),re=w({},S);w(re,A),w(re,M);var ie=w({},O);w(ie,N);var ae=function(t){var e=nt(t);e&&e.tagName||(e={namespaceURI:Xt,tagName:"template"});var n=y(t.tagName),r=y(e.tagName);if(t.namespaceURI===Gt)return e.namespaceURI===Xt?"svg"===n:e.namespaceURI===Vt?"svg"===n&&("annotation-xml"===r||ee[r]):Boolean(re[n]);if(t.namespaceURI===Vt)return e.namespaceURI===Xt?"math"===n:e.namespaceURI===Gt?"math"===n&&ne[r]:Boolean(ie[n]);if(t.namespaceURI===Xt){if(e.namespaceURI===Gt&&!ne[r])return!1;if(e.namespaceURI===Vt&&!ee[r])return!1;var i=w({},["title","style","font","a","script"]);return!ie[n]&&(i[n]||!re[n])}return!1},oe=function(t){p(n.removed,{element:t});try{t.parentNode.removeChild(t)}catch(e){try{t.outerHTML=at}catch(e){t.remove()}}},se=function(t,e){try{p(n.removed,{attribute:e.getAttributeNode(t),from:e})}catch(t){p(n.removed,{attribute:null,from:e})}if(e.removeAttribute(t),"is"===t&&!wt[t])if(Lt||It)try{oe(e)}catch(t){}else try{e.setAttribute(t,"")}catch(t){}},ce=function(t){var e=void 0,n=void 0;if(Dt)t="<remove></remove>"+t;else{var r=g(t,/^[\r\n\t ]+/);n=r&&r[0]}var a=it?it.createHTML(t):t;if(Zt===Xt)try{e=(new Z).parseFromString(a,"text/html")}catch(t){}if(!e||!e.documentElement){e=st.createDocument(Zt,"template",null);try{e.documentElement.innerHTML=Kt?"":a}catch(t){}}var o=e.body||e.documentElement;return t&&n&&o.insertBefore(i.createTextNode(n),o.childNodes[0]||null),Zt===Xt?lt.call(e,Nt?"html":"body")[0]:Nt?e.documentElement:o},ue=function(t){return ct.call(t.ownerDocument||t,t,l.SHOW_ELEMENT|l.SHOW_COMMENT|l.SHOW_TEXT,null,!1)},le=function(t){return!(t instanceof G||t instanceof X||"string"==typeof t.nodeName&&"string"==typeof t.textContent&&"function"==typeof t.removeChild&&t.attributes instanceof k&&"function"==typeof t.removeAttribute&&"function"==typeof t.setAttribute&&"string"==typeof t.namespaceURI&&"function"==typeof t.insertBefore)},he=function(t){return"object"===(void 0===c?"undefined":q(c))?t instanceof c:t&&"object"===(void 0===t?"undefined":q(t))&&"number"==typeof t.nodeType&&"string"==typeof t.nodeName},fe=function(t,e,r){dt[t]&&f(dt[t],(function(t){t.call(n,e,r,Qt)}))},de=function(t){var e=void 0;if(fe("beforeSanitizeElements",t,null),le(t))return oe(t),!0;if(g(t.nodeName,/[\u0080-\uFFFF]/))return oe(t),!0;var r=y(t.nodeName);if(fe("uponSanitizeElement",t,{tagName:r,allowedTags:_t}),!he(t.firstElementChild)&&(!he(t.content)||!he(t.content.firstElementChild))&&x(/<[/\w]/g,t.innerHTML)&&x(/<[/\w]/g,t.textContent))return oe(t),!0;if(!_t[r]||Tt[r]){if(jt&&!Ut[r]){var i=nt(t)||t.parentNode,a=et(t)||t.childNodes;if(a&&i)for(var o=a.length-1;o>=0;--o)i.insertBefore(J(a[o],!0),tt(t))}return oe(t),!0}return t instanceof u&&!ae(t)?(oe(t),!0):"noscript"!==r&&"noembed"!==r||!x(/<\/no(script|embed)/i,t.innerHTML)?(Ot&&3===t.nodeType&&(e=t.textContent,e=m(e,pt," "),e=m(e,yt," "),t.textContent!==e&&(p(n.removed,{element:t.cloneNode()}),t.textContent=e)),fe("afterSanitizeElements",t,null),!1):(oe(t),!0)},pe=function(t,e,n){if(Pt&&("id"===e||"name"===e)&&(n in i||n in Jt))return!1;if(At&&!Ct[e]&&x(gt,e));else if(St&&x(mt,e));else{if(!wt[e]||Ct[e])return!1;if(Wt[e]);else if(x(xt,m(n,bt,"")));else if("src"!==e&&"xlink:href"!==e&&"href"!==e||"script"===t||0!==v(n,"data:")||!$t[t])if(Mt&&!x(vt,m(n,bt,"")));else if(n)return!1}return!0},ye=function(t){var e=void 0,r=void 0,i=void 0,a=void 0;fe("beforeSanitizeAttributes",t,null);var o=t.attributes;if(o){var s={attrName:"",attrValue:"",keepAttr:!0,allowedAttributes:wt};for(a=o.length;a--;){var c=e=o[a],u=c.name,l=c.namespaceURI;if(r=b(e.value),i=y(u),s.attrName=i,s.attrValue=r,s.keepAttr=!0,s.forceKeepAttr=void 0,fe("uponSanitizeAttribute",t,s),r=s.attrValue,!s.forceKeepAttr&&(se(u,t),s.keepAttr))if(x(/\/>/i,r))se(u,t);else{Ot&&(r=m(r,pt," "),r=m(r,yt," "));var h=t.nodeName.toLowerCase();if(pe(h,i,r))try{l?t.setAttributeNS(l,u,r):t.setAttribute(u,r),d(n.removed)}catch(t){}}}fe("afterSanitizeAttributes",t,null)}},ge=function t(e){var n=void 0,r=ue(e);for(fe("beforeSanitizeShadowDOM",e,null);n=r.nextNode();)fe("uponSanitizeShadowNode",n,null),de(n)||(n.content instanceof o&&t(n.content),ye(n));fe("afterSanitizeShadowDOM",e,null)};return n.sanitize=function(t,i){var a=void 0,s=void 0,u=void 0,l=void 0,h=void 0;if((Kt=!t)&&(t="\x3c!--\x3e"),"string"!=typeof t&&!he(t)){if("function"!=typeof t.toString)throw _("toString is not a function");if("string"!=typeof(t=t.toString()))throw _("dirty is not a string, aborting")}if(!n.isSupported){if("object"===q(e.toStaticHTML)||"function"==typeof e.toStaticHTML){if("string"==typeof t)return e.toStaticHTML(t);if(he(t))return e.toStaticHTML(t.outerHTML)}return t}if(Bt||te(i),n.removed=[],"string"==typeof t&&(Yt=!1),Yt);else if(t instanceof c)1===(s=(a=ce("\x3c!----\x3e")).ownerDocument.importNode(t,!0)).nodeType&&"BODY"===s.nodeName||"HTML"===s.nodeName?a=s:a.appendChild(s);else{if(!Lt&&!Ot&&!Nt&&-1===t.indexOf("<"))return it&&Ft?it.createHTML(t):t;if(!(a=ce(t)))return Lt?null:at}a&&Dt&&oe(a.firstChild);for(var f=ue(Yt?t:a);u=f.nextNode();)3===u.nodeType&&u===l||de(u)||(u.content instanceof o&&ge(u.content),ye(u),l=u);if(l=null,Yt)return t;if(Lt){if(It)for(h=ut.call(a.ownerDocument);a.firstChild;)h.appendChild(a.firstChild);else h=a;return Rt&&(h=ht.call(r,h,!0)),h}var d=Nt?a.outerHTML:a.innerHTML;return Ot&&(d=m(d,pt," "),d=m(d,yt," ")),it&&Ft?it.createHTML(d):d},n.setConfig=function(t){te(t),Bt=!0},n.clearConfig=function(){Qt=null,Bt=!1},n.isValidAttribute=function(t,e,n){Qt||te({});var r=y(t),i=y(e);return pe(r,i,n)},n.addHook=function(t,e){"function"==typeof e&&(dt[t]=dt[t]||[],p(dt[t],e))},n.removeHook=function(t){dt[t]&&d(dt[t])},n.removeHooks=function(t){dt[t]&&(dt[t]=[])},n.removeAllHooks=function(){dt={}},n}()}()},function(t,e){t.exports=function(t,e){return t.intersect(e)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(52);e.hex=r.default;var i=n(52);e.rgb=i.default;var a=n(52);e.rgba=a.default;var o=n(100);e.hsl=o.default;var s=n(100);e.hsla=s.default;var c=n(181);e.toKeyword=c.default;var u=n(182);e.toHex=u.default;var l=n(183);e.toRgba=l.default;var h=n(184);e.toHsla=h.default;var f=n(29);e.channel=f.default;var d=n(185);e.red=d.default;var p=n(186);e.green=p.default;var y=n(187);e.blue=y.default;var g=n(188);e.hue=g.default;var m=n(189);e.saturation=m.default;var v=n(190);e.lightness=v.default;var b=n(101);e.alpha=b.default;var x=n(101);e.opacity=x.default;var _=n(191);e.contrast=_.default;var k=n(77);e.luminance=k.default;var w=n(192);e.isDark=w.default;var E=n(102);e.isLight=E.default;var T=n(193);e.isValid=T.default;var C=n(194);e.saturate=C.default;var S=n(195);e.desaturate=S.default;var A=n(196);e.lighten=A.default;var M=n(197);e.darken=M.default;var O=n(103);e.opacify=O.default;var N=n(103);e.fadeIn=N.default;var B=n(104);e.transparentize=B.default;var D=n(104);e.fadeOut=D.default;var L=n(198);e.complement=L.default;var I=n(199);e.grayscale=I.default;var R=n(105);e.adjust=R.default;var F=n(53);e.change=F.default;var P=n(200);e.invert=P.default;var j=n(106);e.mix=j.default;var Y=n(201);e.scale=Y.default},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r={min:{r:0,g:0,b:0,s:0,l:0,a:0},max:{r:255,g:255,b:255,h:360,s:100,l:100,a:1},clamp:{r:function(t){return t>=255?255:t<0?0:t},g:function(t){return t>=255?255:t<0?0:t},b:function(t){return t>=255?255:t<0?0:t},h:function(t){return t%360},s:function(t){return t>=100?100:t<0?0:t},l:function(t){return t>=100?100:t<0?0:t},a:function(t){return t>=1?1:t<0?0:t}},toLinear:function(t){var e=t/255;return t>.03928?Math.pow((e+.055)/1.055,2.4):e/12.92},hue2rgb:function(t,e,n){return n<0&&(n+=1),n>1&&(n-=1),n<1/6?t+6*(e-t)*n:n<.5?e:n<2/3?t+(e-t)*(2/3-n)*6:t},hsl2rgb:function(t,e){var n=t.h,i=t.s,a=t.l;if(!i)return 2.55*a;n/=360,i/=100;var o=(a/=100)<.5?a*(1+i):a+i-a*i,s=2*a-o;switch(e){case"r":return 255*r.hue2rgb(s,o,n+1/3);case"g":return 255*r.hue2rgb(s,o,n);case"b":return 255*r.hue2rgb(s,o,n-1/3)}},rgb2hsl:function(t,e){var n=t.r,r=t.g,i=t.b;n/=255,r/=255,i/=255;var a=Math.max(n,r,i),o=Math.min(n,r,i),s=(a+o)/2;if("l"===e)return 100*s;if(a===o)return 0;var c=a-o;if("s"===e)return 100*(s>.5?c/(2-a-o):c/(a+o));switch(a){case n:return 60*((r-i)/c+(r<i?6:0));case r:return 60*((i-n)/c+2);case i:return 60*((n-r)/c+4);default:return-1}}};e.default=r},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r={clamp:function(t,e,n){return e>n?Math.min(e,Math.max(n,t)):Math.min(n,Math.max(e,t))},round:function(t){return Math.round(1e10*t)/1e10}};e.default=r},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r={dec2hex:function(t){var e=Math.round(t).toString(16);return e.length>1?e:"0"+e}};e.default=r},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i=n(176),a=function(){function t(t,e){this.color=e,this.changed=!1,this.data=t,this.type=new i.default}return t.prototype.set=function(t,e){return this.color=e,this.changed=!1,this.data=t,this.type.type=0,this},t.prototype._ensureHSL=function(){var t=this.data,e=t.h,n=t.s,i=t.l;void 0===e&&(t.h=r.default.channel.rgb2hsl(t,"h")),void 0===n&&(t.s=r.default.channel.rgb2hsl(t,"s")),void 0===i&&(t.l=r.default.channel.rgb2hsl(t,"l"))},t.prototype._ensureRGB=function(){var t=this.data,e=t.r,n=t.g,i=t.b;void 0===e&&(t.r=r.default.channel.hsl2rgb(t,"r")),void 0===n&&(t.g=r.default.channel.hsl2rgb(t,"g")),void 0===i&&(t.b=r.default.channel.hsl2rgb(t,"b"))},Object.defineProperty(t.prototype,"r",{get:function(){var t=this.data,e=t.r;return this.type.is(2)||void 0===e?(this._ensureHSL(),r.default.channel.hsl2rgb(t,"r")):e},set:function(t){this.type.set(1),this.changed=!0,this.data.r=t},enumerable:!0,configurable:!0}),Object.defineProperty(t.prototype,"g",{get:function(){var t=this.data,e=t.g;return this.type.is(2)||void 0===e?(this._ensureHSL(),r.default.channel.hsl2rgb(t,"g")):e},set:function(t){this.type.set(1),this.changed=!0,this.data.g=t},enumerable:!0,configurable:!0}),Object.defineProperty(t.prototype,"b",{get:function(){var t=this.data,e=t.b;return this.type.is(2)||void 0===e?(this._ensureHSL(),r.default.channel.hsl2rgb(t,"b")):e},set:function(t){this.type.set(1),this.changed=!0,this.data.b=t},enumerable:!0,configurable:!0}),Object.defineProperty(t.prototype,"h",{get:function(){var t=this.data,e=t.h;return this.type.is(1)||void 0===e?(this._ensureRGB(),r.default.channel.rgb2hsl(t,"h")):e},set:function(t){this.type.set(2),this.changed=!0,this.data.h=t},enumerable:!0,configurable:!0}),Object.defineProperty(t.prototype,"s",{get:function(){var t=this.data,e=t.s;return this.type.is(1)||void 0===e?(this._ensureRGB(),r.default.channel.rgb2hsl(t,"s")):e},set:function(t){this.type.set(2),this.changed=!0,this.data.s=t},enumerable:!0,configurable:!0}),Object.defineProperty(t.prototype,"l",{get:function(){var t=this.data,e=t.l;return this.type.is(1)||void 0===e?(this._ensureRGB(),r.default.channel.rgb2hsl(t,"l")):e},set:function(t){this.type.set(2),this.changed=!0,this.data.l=t},enumerable:!0,configurable:!0}),Object.defineProperty(t.prototype,"a",{get:function(){return this.data.a},set:function(t){this.changed=!0,this.data.a=t},enumerable:!0,configurable:!0}),t}();e.default=a},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=function(){function t(){this.type=0}return t.prototype.get=function(){return this.type},t.prototype.set=function(t){if(this.type&&this.type!==t)throw new Error("Cannot change both RGB and HSL channels at the same time");this.type=t},t.prototype.reset=function(){this.type=0},t.prototype.is=function(t){return this.type===t},t}();e.default=r},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i={};e.DEC2HEX=i;for(var a=0;a<=255;a++)i[a]=r.default.unit.dec2hex(a)},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(99),i={colors:{aliceblue:"#f0f8ff",antiquewhite:"#faebd7",aqua:"#00ffff",aquamarine:"#7fffd4",azure:"#f0ffff",beige:"#f5f5dc",bisque:"#ffe4c4",black:"#000000",blanchedalmond:"#ffebcd",blue:"#0000ff",blueviolet:"#8a2be2",brown:"#a52a2a",burlywood:"#deb887",cadetblue:"#5f9ea0",chartreuse:"#7fff00",chocolate:"#d2691e",coral:"#ff7f50",cornflowerblue:"#6495ed",cornsilk:"#fff8dc",crimson:"#dc143c",cyanaqua:"#00ffff",darkblue:"#00008b",darkcyan:"#008b8b",darkgoldenrod:"#b8860b",darkgray:"#a9a9a9",darkgreen:"#006400",darkgrey:"#a9a9a9",darkkhaki:"#bdb76b",darkmagenta:"#8b008b",darkolivegreen:"#556b2f",darkorange:"#ff8c00",darkorchid:"#9932cc",darkred:"#8b0000",darksalmon:"#e9967a",darkseagreen:"#8fbc8f",darkslateblue:"#483d8b",darkslategray:"#2f4f4f",darkslategrey:"#2f4f4f",darkturquoise:"#00ced1",darkviolet:"#9400d3",deeppink:"#ff1493",deepskyblue:"#00bfff",dimgray:"#696969",dimgrey:"#696969",dodgerblue:"#1e90ff",firebrick:"#b22222",floralwhite:"#fffaf0",forestgreen:"#228b22",fuchsia:"#ff00ff",gainsboro:"#dcdcdc",ghostwhite:"#f8f8ff",gold:"#ffd700",goldenrod:"#daa520",gray:"#808080",green:"#008000",greenyellow:"#adff2f",grey:"#808080",honeydew:"#f0fff0",hotpink:"#ff69b4",indianred:"#cd5c5c",indigo:"#4b0082",ivory:"#fffff0",khaki:"#f0e68c",lavender:"#e6e6fa",lavenderblush:"#fff0f5",lawngreen:"#7cfc00",lemonchiffon:"#fffacd",lightblue:"#add8e6",lightcoral:"#f08080",lightcyan:"#e0ffff",lightgoldenrodyellow:"#fafad2",lightgray:"#d3d3d3",lightgreen:"#90ee90",lightgrey:"#d3d3d3",lightpink:"#ffb6c1",lightsalmon:"#ffa07a",lightseagreen:"#20b2aa",lightskyblue:"#87cefa",lightslategray:"#778899",lightslategrey:"#778899",lightsteelblue:"#b0c4de",lightyellow:"#ffffe0",lime:"#00ff00",limegreen:"#32cd32",linen:"#faf0e6",magenta:"#ff00ff",maroon:"#800000",mediumaquamarine:"#66cdaa",mediumblue:"#0000cd",mediumorchid:"#ba55d3",mediumpurple:"#9370db",mediumseagreen:"#3cb371",mediumslateblue:"#7b68ee",mediumspringgreen:"#00fa9a",mediumturquoise:"#48d1cc",mediumvioletred:"#c71585",midnightblue:"#191970",mintcream:"#f5fffa",mistyrose:"#ffe4e1",moccasin:"#ffe4b5",navajowhite:"#ffdead",navy:"#000080",oldlace:"#fdf5e6",olive:"#808000",olivedrab:"#6b8e23",orange:"#ffa500",orangered:"#ff4500",orchid:"#da70d6",palegoldenrod:"#eee8aa",palegreen:"#98fb98",paleturquoise:"#afeeee",palevioletred:"#db7093",papayawhip:"#ffefd5",peachpuff:"#ffdab9",peru:"#cd853f",pink:"#ffc0cb",plum:"#dda0dd",powderblue:"#b0e0e6",purple:"#800080",rebeccapurple:"#663399",red:"#ff0000",rosybrown:"#bc8f8f",royalblue:"#4169e1",saddlebrown:"#8b4513",salmon:"#fa8072",sandybrown:"#f4a460",seagreen:"#2e8b57",seashell:"#fff5ee",sienna:"#a0522d",silver:"#c0c0c0",skyblue:"#87ceeb",slateblue:"#6a5acd",slategray:"#708090",slategrey:"#708090",snow:"#fffafa",springgreen:"#00ff7f",tan:"#d2b48c",teal:"#008080",thistle:"#d8bfd8",transparent:"#00000000",turquoise:"#40e0d0",violet:"#ee82ee",wheat:"#f5deb3",white:"#ffffff",whitesmoke:"#f5f5f5",yellow:"#ffff00",yellowgreen:"#9acd32"},parse:function(t){t=t.toLowerCase();var e=i.colors[t];if(e)return r.default.parse(e)},stringify:function(t){var e=r.default.stringify(t);for(var n in i.colors)if(i.colors[n]===e)return n}};e.default=i},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i=n(46),a={re:/^rgba?\(\s*?(-?(?:\d+(?:\.\d+)?|(?:\.\d+))(?:e\d+)?(%?))\s*?(?:,|\s)\s*?(-?(?:\d+(?:\.\d+)?|(?:\.\d+))(?:e\d+)?(%?))\s*?(?:,|\s)\s*?(-?(?:\d+(?:\.\d+)?|(?:\.\d+))(?:e\d+)?(%?))(?:\s*?(?:,|\/)\s*?\+?(-?(?:\d+(?:\.\d+)?|(?:\.\d+))(?:e\d+)?(%?)))?\s*?\)$/i,parse:function(t){var e=t.charCodeAt(0);if(114===e||82===e){var n=t.match(a.re);if(n){var o=n[1],s=n[2],c=n[3],u=n[4],l=n[5],h=n[6],f=n[7],d=n[8];return i.default.set({r:r.default.channel.clamp.r(s?2.55*parseFloat(o):parseFloat(o)),g:r.default.channel.clamp.g(u?2.55*parseFloat(c):parseFloat(c)),b:r.default.channel.clamp.b(h?2.55*parseFloat(l):parseFloat(l)),a:f?r.default.channel.clamp.a(d?parseFloat(f)/100:parseFloat(f)):1},t)}}},stringify:function(t){var e=t.r,n=t.g,i=t.b,a=t.a;return a<1?"rgba("+r.default.lang.round(e)+", "+r.default.lang.round(n)+", "+r.default.lang.round(i)+", "+r.default.lang.round(a)+")":"rgb("+r.default.lang.round(e)+", "+r.default.lang.round(n)+", "+r.default.lang.round(i)+")"}};e.default=a},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i=n(46),a={re:/^hsla?\(\s*?(-?(?:\d+(?:\.\d+)?|(?:\.\d+))(?:e-?\d+)?(?:deg|grad|rad|turn)?)\s*?(?:,|\s)\s*?(-?(?:\d+(?:\.\d+)?|(?:\.\d+))(?:e-?\d+)?%)\s*?(?:,|\s)\s*?(-?(?:\d+(?:\.\d+)?|(?:\.\d+))(?:e-?\d+)?%)(?:\s*?(?:,|\/)\s*?\+?(-?(?:\d+(?:\.\d+)?|(?:\.\d+))(?:e-?\d+)?(%)?))?\s*?\)$/i,hueRe:/^(.+?)(deg|grad|rad|turn)$/i,_hue2deg:function(t){var e=t.match(a.hueRe);if(e){var n=e[1];switch(e[2]){case"grad":return r.default.channel.clamp.h(.9*parseFloat(n));case"rad":return r.default.channel.clamp.h(180*parseFloat(n)/Math.PI);case"turn":return r.default.channel.clamp.h(360*parseFloat(n))}}return r.default.channel.clamp.h(parseFloat(t))},parse:function(t){var e=t.charCodeAt(0);if(104===e||72===e){var n=t.match(a.re);if(n){var o=n[1],s=n[2],c=n[3],u=n[4],l=n[5];return i.default.set({h:a._hue2deg(o),s:r.default.channel.clamp.s(parseFloat(s)),l:r.default.channel.clamp.l(parseFloat(c)),a:u?r.default.channel.clamp.a(l?parseFloat(u)/100:parseFloat(u)):1},t)}}},stringify:function(t){var e=t.h,n=t.s,i=t.l,a=t.a;return a<1?"hsla("+r.default.lang.round(e)+", "+r.default.lang.round(n)+"%, "+r.default.lang.round(i)+"%, "+a+")":"hsl("+r.default.lang.round(e)+", "+r.default.lang.round(n)+"%, "+r.default.lang.round(i)+"%)"}};e.default=a},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(6);e.default=function(t){return r.default.format.keyword.stringify(r.default.parse(t))}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(6);e.default=function(t){return r.default.format.hex.stringify(r.default.parse(t))}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(6);e.default=function(t){return r.default.format.rgba.stringify(r.default.parse(t))}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(6);e.default=function(t){return r.default.format.hsla.stringify(r.default.parse(t))}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(29);e.default=function(t){return r.default(t,"r")}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(29);e.default=function(t){return r.default(t,"g")}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(29);e.default=function(t){return r.default(t,"b")}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(29);e.default=function(t){return r.default(t,"h")}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(29);e.default=function(t){return r.default(t,"s")}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(29);e.default=function(t){return r.default(t,"l")}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i=n(77);e.default=function(t,e){var n=i.default(t),a=i.default(e),o=Math.max(n,a),s=Math.min(n,a),c=(o+Number.EPSILON)/(s+Number.EPSILON);return r.default.lang.round(r.default.lang.clamp(c,1,10))}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(102);e.default=function(t){return!r.default(t)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(6);e.default=function(t){try{return r.default.parse(t),!0}catch(t){return!1}}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(32);e.default=function(t,e){return r.default(t,"s",e)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(32);e.default=function(t,e){return r.default(t,"s",-e)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(32);e.default=function(t,e){return r.default(t,"l",e)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(32);e.default=function(t,e){return r.default(t,"l",-e)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(32);e.default=function(t){return r.default(t,"h",180)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(53);e.default=function(t){return r.default(t,{s:0})}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(6),i=n(106);e.default=function(t,e){void 0===e&&(e=100);var n=r.default.parse(t);return n.r=255-n.r,n.g=255-n.g,n.b=255-n.b,i.default(n,t,e)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i=n(6),a=n(105);e.default=function(t,e){var n,o,s,c=i.default.parse(t),u={};for(var l in e)u[l]=(n=c[l],o=e[l],s=r.default.channel.max[l],o>0?(s-n)*o/100:n*o/100);return a.default(t,u)}},function(t,e,n){var r={"./locale":107,"./locale.js":107};function i(t){var e=a(t);return n(e)}function a(t){if(!n.o(r,t)){var e=new Error("Cannot find module '"+t+"'");throw e.code="MODULE_NOT_FOUND",e}return r[t]}i.keys=function(){return Object.keys(r)},i.resolve=a,t.exports=i,i.id=202},function(t,e,n){t.exports={Graph:n(78),version:n(305)}},function(t,e,n){var r=n(108);t.exports=function(t){return r(t,4)}},function(t,e){t.exports=function(){this.__data__=[],this.size=0}},function(t,e,n){var r=n(56),i=Array.prototype.splice;t.exports=function(t){var e=this.__data__,n=r(e,t);return!(n<0)&&(n==e.length-1?e.pop():i.call(e,n,1),--this.size,!0)}},function(t,e,n){var r=n(56);t.exports=function(t){var e=this.__data__,n=r(e,t);return n<0?void 0:e[n][1]}},function(t,e,n){var r=n(56);t.exports=function(t){return r(this.__data__,t)>-1}},function(t,e,n){var r=n(56);t.exports=function(t,e){var n=this.__data__,i=r(n,t);return i<0?(++this.size,n.push([t,e])):n[i][1]=e,this}},function(t,e,n){var r=n(55);t.exports=function(){this.__data__=new r,this.size=0}},function(t,e){t.exports=function(t){var e=this.__data__,n=e.delete(t);return this.size=e.size,n}},function(t,e){t.exports=function(t){return this.__data__.get(t)}},function(t,e){t.exports=function(t){return this.__data__.has(t)}},function(t,e,n){var r=n(55),i=n(79),a=n(80);t.exports=function(t,e){var n=this.__data__;if(n instanceof r){var o=n.__data__;if(!i||o.length<199)return o.push([t,e]),this.size=++n.size,this;n=this.__data__=new a(o)}return n.set(t,e),this.size=n.size,this}},function(t,e,n){var r=n(39),i=n(219),a=n(14),o=n(110),s=/^\[object .+?Constructor\]$/,c=Function.prototype,u=Object.prototype,l=c.toString,h=u.hasOwnProperty,f=RegExp("^"+l.call(h).replace(/[\\^$.*+?()[\]{}|]/g,"\\$&").replace(/hasOwnProperty|(function).*?(?=\\\()| for .+?(?=\\\])/g,"$1.*?")+"$");t.exports=function(t){return!(!a(t)||i(t))&&(r(t)?f:s).test(o(t))}},function(t,e){var n;n=function(){return this}();try{n=n||new Function("return this")()}catch(t){"object"==typeof window&&(n=window)}t.exports=n},function(t,e,n){var r=n(40),i=Object.prototype,a=i.hasOwnProperty,o=i.toString,s=r?r.toStringTag:void 0;t.exports=function(t){var e=a.call(t,s),n=t[s];try{t[s]=void 0;var r=!0}catch(t){}var i=o.call(t);return r&&(e?t[s]=n:delete t[s]),i}},function(t,e){var n=Object.prototype.toString;t.exports=function(t){return n.call(t)}},function(t,e,n){var r,i=n(220),a=(r=/[^.]+$/.exec(i&&i.keys&&i.keys.IE_PROTO||""))?"Symbol(src)_1."+r:"";t.exports=function(t){return!!a&&a in t}},function(t,e,n){var r=n(19)["__core-js_shared__"];t.exports=r},function(t,e){t.exports=function(t,e){return null==t?void 0:t[e]}},function(t,e,n){var r=n(223),i=n(55),a=n(79);t.exports=function(){this.size=0,this.__data__={hash:new r,map:new(a||i),string:new r}}},function(t,e,n){var r=n(224),i=n(225),a=n(226),o=n(227),s=n(228);function c(t){var e=-1,n=null==t?0:t.length;for(this.clear();++e<n;){var r=t[e];this.set(r[0],r[1])}}c.prototype.clear=r,c.prototype.delete=i,c.prototype.get=a,c.prototype.has=o,c.prototype.set=s,t.exports=c},function(t,e,n){var r=n(57);t.exports=function(){this.__data__=r?r(null):{},this.size=0}},function(t,e){t.exports=function(t){var e=this.has(t)&&delete this.__data__[t];return this.size-=e?1:0,e}},function(t,e,n){var r=n(57),i=Object.prototype.hasOwnProperty;t.exports=function(t){var e=this.__data__;if(r){var n=e[t];return"__lodash_hash_undefined__"===n?void 0:n}return i.call(e,t)?e[t]:void 0}},function(t,e,n){var r=n(57),i=Object.prototype.hasOwnProperty;t.exports=function(t){var e=this.__data__;return r?void 0!==e[t]:i.call(e,t)}},function(t,e,n){var r=n(57);t.exports=function(t,e){var n=this.__data__;return this.size+=this.has(t)?0:1,n[t]=r&&void 0===e?"__lodash_hash_undefined__":e,this}},function(t,e,n){var r=n(58);t.exports=function(t){var e=r(this,t).delete(t);return this.size-=e?1:0,e}},function(t,e){t.exports=function(t){var e=typeof t;return"string"==e||"number"==e||"symbol"==e||"boolean"==e?"__proto__"!==t:null===t}},function(t,e,n){var r=n(58);t.exports=function(t){return r(this,t).get(t)}},function(t,e,n){var r=n(58);t.exports=function(t){return r(this,t).has(t)}},function(t,e,n){var r=n(58);t.exports=function(t,e){var n=r(this,t),i=n.size;return n.set(t,e),this.size+=n.size==i?0:1,this}},function(t,e,n){var r=n(47),i=n(30);t.exports=function(t,e){return t&&r(e,i(e),t)}},function(t,e){t.exports=function(t,e){for(var n=-1,r=Array(t);++n<t;)r[n]=e(n);return r}},function(t,e,n){var r=n(34),i=n(21);t.exports=function(t){return i(t)&&"[object Arguments]"==r(t)}},function(t,e){t.exports=function(){return!1}},function(t,e,n){var r=n(34),i=n(82),a=n(21),o={};o["[object Float32Array]"]=o["[object Float64Array]"]=o["[object Int8Array]"]=o["[object Int16Array]"]=o["[object Int32Array]"]=o["[object Uint8Array]"]=o["[object Uint8ClampedArray]"]=o["[object Uint16Array]"]=o["[object Uint32Array]"]=!0,o["[object Arguments]"]=o["[object Array]"]=o["[object ArrayBuffer]"]=o["[object Boolean]"]=o["[object DataView]"]=o["[object Date]"]=o["[object Error]"]=o["[object Function]"]=o["[object Map]"]=o["[object Number]"]=o["[object Object]"]=o["[object RegExp]"]=o["[object Set]"]=o["[object String]"]=o["[object WeakMap]"]=!1,t.exports=function(t){return a(t)&&i(t.length)&&!!o[r(t)]}},function(t,e,n){var r=n(113)(Object.keys,Object);t.exports=r},function(t,e,n){var r=n(47),i=n(35);t.exports=function(t,e){return t&&r(e,i(e),t)}},function(t,e,n){var r=n(14),i=n(63),a=n(242),o=Object.prototype.hasOwnProperty;t.exports=function(t){if(!r(t))return a(t);var e=i(t),n=[];for(var s in t)("constructor"!=s||!e&&o.call(t,s))&&n.push(s);return n}},function(t,e){t.exports=function(t){var e=[];if(null!=t)for(var n in Object(t))e.push(n);return e}},function(t,e,n){var r=n(47),i=n(85);t.exports=function(t,e){return r(t,i(t),e)}},function(t,e,n){var r=n(47),i=n(118);t.exports=function(t,e){return r(t,i(t),e)}},function(t,e,n){var r=n(120),i=n(118),a=n(35);t.exports=function(t){return r(t,a,i)}},function(t,e,n){var r=n(33)(n(19),"DataView");t.exports=r},function(t,e,n){var r=n(33)(n(19),"Promise");t.exports=r},function(t,e,n){var r=n(33)(n(19),"WeakMap");t.exports=r},function(t,e){var n=Object.prototype.hasOwnProperty;t.exports=function(t){var e=t.length,r=new t.constructor(e);return e&&"string"==typeof t[0]&&n.call(t,"index")&&(r.index=t.index,r.input=t.input),r}},function(t,e,n){var r=n(87),i=n(251),a=n(252),o=n(253),s=n(123);t.exports=function(t,e,n){var c=t.constructor;switch(e){case"[object ArrayBuffer]":return r(t);case"[object Boolean]":case"[object Date]":return new c(+t);case"[object DataView]":return i(t,n);case"[object Float32Array]":case"[object Float64Array]":case"[object Int8Array]":case"[object Int16Array]":case"[object Int32Array]":case"[object Uint8Array]":case"[object Uint8ClampedArray]":case"[object Uint16Array]":case"[object Uint32Array]":return s(t,n);case"[object Map]":return new c;case"[object Number]":case"[object String]":return new c(t);case"[object RegExp]":return a(t);case"[object Set]":return new c;case"[object Symbol]":return o(t)}}},function(t,e,n){var r=n(87);t.exports=function(t,e){var n=e?r(t.buffer):t.buffer;return new t.constructor(n,t.byteOffset,t.byteLength)}},function(t,e){var n=/\w*$/;t.exports=function(t){var e=new t.constructor(t.source,n.exec(t));return e.lastIndex=t.lastIndex,e}},function(t,e,n){var r=n(40),i=r?r.prototype:void 0,a=i?i.valueOf:void 0;t.exports=function(t){return a?Object(a.call(t)):{}}},function(t,e,n){var r=n(255),i=n(62),a=n(83),o=a&&a.isMap,s=o?i(o):r;t.exports=s},function(t,e,n){var r=n(42),i=n(21);t.exports=function(t){return i(t)&&"[object Map]"==r(t)}},function(t,e,n){var r=n(257),i=n(62),a=n(83),o=a&&a.isSet,s=o?i(o):r;t.exports=s},function(t,e,n){var r=n(42),i=n(21);t.exports=function(t){return i(t)&&"[object Set]"==r(t)}},function(t,e){t.exports=function(t){return function(e,n,r){for(var i=-1,a=Object(e),o=r(e),s=o.length;s--;){var c=o[t?s:++i];if(!1===n(a[c],c,a))break}return e}}},function(t,e,n){var r=n(25);t.exports=function(t,e){return function(n,i){if(null==n)return n;if(!r(n))return t(n,i);for(var a=n.length,o=e?a:-1,s=Object(n);(e?o--:++o<a)&&!1!==i(s[o],o,s););return n}}},function(t,e,n){var r=n(65);t.exports=function(t,e){var n=[];return r(t,(function(t,r,i){e(t,r,i)&&n.push(t)})),n}},function(t,e,n){var r=n(262),i=n(270),a=n(134);t.exports=function(t){var e=i(t);return 1==e.length&&e[0][2]?a(e[0][0],e[0][1]):function(n){return n===t||r(n,t,e)}}},function(t,e,n){var r=n(54),i=n(129);t.exports=function(t,e,n,a){var o=n.length,s=o,c=!a;if(null==t)return!s;for(t=Object(t);o--;){var u=n[o];if(c&&u[2]?u[1]!==t[u[0]]:!(u[0]in t))return!1}for(;++o<s;){var l=(u=n[o])[0],h=t[l],f=u[1];if(c&&u[2]){if(void 0===h&&!(l in t))return!1}else{var d=new r;if(a)var p=a(h,f,l,t,e,d);if(!(void 0===p?i(f,h,3,a,d):p))return!1}}return!0}},function(t,e,n){var r=n(54),i=n(130),a=n(267),o=n(269),s=n(42),c=n(5),u=n(41),l=n(49),h="[object Object]",f=Object.prototype.hasOwnProperty;t.exports=function(t,e,n,d,p,y){var g=c(t),m=c(e),v=g?"[object Array]":s(t),b=m?"[object Array]":s(e),x=(v="[object Arguments]"==v?h:v)==h,_=(b="[object Arguments]"==b?h:b)==h,k=v==b;if(k&&u(t)){if(!u(e))return!1;g=!0,x=!1}if(k&&!x)return y||(y=new r),g||l(t)?i(t,e,n,d,p,y):a(t,e,v,n,d,p,y);if(!(1&n)){var w=x&&f.call(t,"__wrapped__"),E=_&&f.call(e,"__wrapped__");if(w||E){var T=w?t.value():t,C=E?e.value():e;return y||(y=new r),p(T,C,n,d,y)}}return!!k&&(y||(y=new r),o(t,e,n,d,p,y))}},function(t,e){t.exports=function(t){return this.__data__.set(t,"__lodash_hash_undefined__"),this}},function(t,e){t.exports=function(t){return this.__data__.has(t)}},function(t,e){t.exports=function(t,e){for(var n=-1,r=null==t?0:t.length;++n<r;)if(e(t[n],n,t))return!0;return!1}},function(t,e,n){var r=n(40),i=n(122),a=n(38),o=n(130),s=n(268),c=n(92),u=r?r.prototype:void 0,l=u?u.valueOf:void 0;t.exports=function(t,e,n,r,u,h,f){switch(n){case"[object DataView]":if(t.byteLength!=e.byteLength||t.byteOffset!=e.byteOffset)return!1;t=t.buffer,e=e.buffer;case"[object ArrayBuffer]":return!(t.byteLength!=e.byteLength||!h(new i(t),new i(e)));case"[object Boolean]":case"[object Date]":case"[object Number]":return a(+t,+e);case"[object Error]":return t.name==e.name&&t.message==e.message;case"[object RegExp]":case"[object String]":return t==e+"";case"[object Map]":var d=s;case"[object Set]":var p=1&r;if(d||(d=c),t.size!=e.size&&!p)return!1;var y=f.get(t);if(y)return y==e;r|=2,f.set(t,e);var g=o(d(t),d(e),r,u,h,f);return f.delete(t),g;case"[object Symbol]":if(l)return l.call(t)==l.call(e)}return!1}},function(t,e){t.exports=function(t){var e=-1,n=Array(t.size);return t.forEach((function(t,r){n[++e]=[r,t]})),n}},function(t,e,n){var r=n(119),i=Object.prototype.hasOwnProperty;t.exports=function(t,e,n,a,o,s){var c=1&n,u=r(t),l=u.length;if(l!=r(e).length&&!c)return!1;for(var h=l;h--;){var f=u[h];if(!(c?f in e:i.call(e,f)))return!1}var d=s.get(t),p=s.get(e);if(d&&p)return d==e&&p==t;var y=!0;s.set(t,e),s.set(e,t);for(var g=c;++h<l;){var m=t[f=u[h]],v=e[f];if(a)var b=c?a(v,m,f,e,t,s):a(m,v,f,t,e,s);if(!(void 0===b?m===v||o(m,v,n,a,s):b)){y=!1;break}g||(g="constructor"==f)}if(y&&!g){var x=t.constructor,_=e.constructor;x==_||!("constructor"in t)||!("constructor"in e)||"function"==typeof x&&x instanceof x&&"function"==typeof _&&_ instanceof _||(y=!1)}return s.delete(t),s.delete(e),y}},function(t,e,n){var r=n(133),i=n(30);t.exports=function(t){for(var e=i(t),n=e.length;n--;){var a=e[n],o=t[a];e[n]=[a,o,r(o)]}return e}},function(t,e,n){var r=n(129),i=n(272),a=n(136),o=n(93),s=n(133),c=n(134),u=n(50);t.exports=function(t,e){return o(t)&&s(e)?c(u(t),e):function(n){var o=i(n,t);return void 0===o&&o===e?a(n,t):r(e,o,3)}}},function(t,e,n){var r=n(66);t.exports=function(t,e,n){var i=null==t?void 0:r(t,e);return void 0===i?n:i}},function(t,e,n){var r=n(274),i=/[^.[\]]+|\[(?:(-?\d+(?:\.\d+)?)|(["'])((?:(?!\2)[^\\]|\\.)*?)\2)\]|(?=(?:\.|\[\])(?:\.|\[\]|$))/g,a=/\\(\\)?/g,o=r((function(t){var e=[];return 46===t.charCodeAt(0)&&e.push(""),t.replace(i,(function(t,n,r,i){e.push(r?i.replace(a,"$1"):n||t)})),e}));t.exports=o},function(t,e,n){var r=n(275);t.exports=function(t){var e=r(t,(function(t){return 500===n.size&&n.clear(),t})),n=e.cache;return e}},function(t,e,n){var r=n(80);function i(t,e){if("function"!=typeof t||null!=e&&"function"!=typeof e)throw new TypeError("Expected a function");var n=function(){var r=arguments,i=e?e.apply(this,r):r[0],a=n.cache;if(a.has(i))return a.get(i);var o=t.apply(this,r);return n.cache=a.set(i,o)||a,o};return n.cache=new(i.Cache||r),n}i.Cache=r,t.exports=i},function(t,e,n){var r=n(40),i=n(68),a=n(5),o=n(43),s=r?r.prototype:void 0,c=s?s.toString:void 0;t.exports=function t(e){if("string"==typeof e)return e;if(a(e))return i(e,t)+"";if(o(e))return c?c.call(e):"";var n=e+"";return"0"==n&&1/e==-1/0?"-0":n}},function(t,e){t.exports=function(t,e){return null!=t&&e in Object(t)}},function(t,e,n){var r=n(138),i=n(279),a=n(93),o=n(50);t.exports=function(t){return a(t)?r(o(t)):i(t)}},function(t,e,n){var r=n(66);t.exports=function(t){return function(e){return r(e,t)}}},function(t,e){var n=Object.prototype.hasOwnProperty;t.exports=function(t,e){return null!=t&&n.call(t,e)}},function(t,e,n){var r=n(84),i=n(42),a=n(48),o=n(5),s=n(25),c=n(41),u=n(63),l=n(49),h=Object.prototype.hasOwnProperty;t.exports=function(t){if(null==t)return!0;if(s(t)&&(o(t)||"string"==typeof t||"function"==typeof t.splice||c(t)||l(t)||a(t)))return!t.length;var e=i(t);if("[object Map]"==e||"[object Set]"==e)return!t.size;if(u(t))return!r(t).length;for(var n in t)if(h.call(t,n))return!1;return!0}},function(t,e){t.exports=function(t,e,n,r){var i=-1,a=null==t?0:t.length;for(r&&a&&(n=t[++i]);++i<a;)n=e(n,t[i],i,t);return n}},function(t,e){t.exports=function(t,e,n,r,i){return i(t,(function(t,i,a){n=r?(r=!1,t):e(n,t,i,a)})),n}},function(t,e,n){var r=n(84),i=n(42),a=n(25),o=n(285),s=n(286);t.exports=function(t){if(null==t)return 0;if(a(t))return o(t)?s(t):t.length;var e=i(t);return"[object Map]"==e||"[object Set]"==e?t.size:r(t).length}},function(t,e,n){var r=n(34),i=n(5),a=n(21);t.exports=function(t){return"string"==typeof t||!i(t)&&a(t)&&"[object String]"==r(t)}},function(t,e,n){var r=n(287),i=n(288),a=n(289);t.exports=function(t){return i(t)?a(t):r(t)}},function(t,e,n){var r=n(138)("length");t.exports=r},function(t,e){var n=RegExp("[\\u200d\\ud800-\\udfff\\u0300-\\u036f\\ufe20-\\ufe2f\\u20d0-\\u20ff\\ufe0e\\ufe0f]");t.exports=function(t){return n.test(t)}},function(t,e){var n="[\\ud800-\\udfff]",r="[\\u0300-\\u036f\\ufe20-\\ufe2f\\u20d0-\\u20ff]",i="\\ud83c[\\udffb-\\udfff]",a="[^\\ud800-\\udfff]",o="(?:\\ud83c[\\udde6-\\uddff]){2}",s="[\\ud800-\\udbff][\\udc00-\\udfff]",c="(?:"+r+"|"+i+")"+"?",u="[\\ufe0e\\ufe0f]?"+c+("(?:\\u200d(?:"+[a,o,s].join("|")+")[\\ufe0e\\ufe0f]?"+c+")*"),l="(?:"+[a+r+"?",r,o,s,n].join("|")+")",h=RegExp(i+"(?="+i+")|"+l+u,"g");t.exports=function(t){for(var e=h.lastIndex=0;h.test(t);)++e;return e}},function(t,e,n){var r=n(81),i=n(125),a=n(90),o=n(26),s=n(64),c=n(5),u=n(41),l=n(39),h=n(14),f=n(49);t.exports=function(t,e,n){var d=c(t),p=d||u(t)||f(t);if(e=o(e,4),null==n){var y=t&&t.constructor;n=p?d?new y:[]:h(t)&&l(y)?i(s(t)):{}}return(p?r:a)(t,(function(t,r,i){return e(n,t,r,i)})),n}},function(t,e,n){var r=n(95),i=n(69),a=n(296),o=n(146),s=i((function(t){return a(r(t,1,o,!0))}));t.exports=s},function(t,e,n){var r=n(40),i=n(48),a=n(5),o=r?r.isConcatSpreadable:void 0;t.exports=function(t){return a(t)||i(t)||!!(o&&t&&t[o])}},function(t,e){t.exports=function(t,e,n){switch(n.length){case 0:return t.call(e);case 1:return t.call(e,n[0]);case 2:return t.call(e,n[0],n[1]);case 3:return t.call(e,n[0],n[1],n[2])}return t.apply(e,n)}},function(t,e,n){var r=n(88),i=n(111),a=n(36),o=i?function(t,e){return i(t,"toString",{configurable:!0,enumerable:!1,value:r(e),writable:!0})}:a;t.exports=o},function(t,e){var n=Date.now;t.exports=function(t){var e=0,r=0;return function(){var i=n(),a=16-(i-r);if(r=i,a>0){if(++e>=800)return arguments[0]}else e=0;return t.apply(void 0,arguments)}}},function(t,e,n){var r=n(131),i=n(297),a=n(301),o=n(132),s=n(302),c=n(92);t.exports=function(t,e,n){var u=-1,l=i,h=t.length,f=!0,d=[],p=d;if(n)f=!1,l=a;else if(h>=200){var y=e?null:s(t);if(y)return c(y);f=!1,l=o,p=new r}else p=e?[]:d;t:for(;++u<h;){var g=t[u],m=e?e(g):g;if(g=n||0!==g?g:0,f&&m==m){for(var v=p.length;v--;)if(p[v]===m)continue t;e&&p.push(m),d.push(g)}else l(p,m,n)||(p!==d&&p.push(m),d.push(g))}return d}},function(t,e,n){var r=n(298);t.exports=function(t,e){return!!(null==t?0:t.length)&&r(t,e,0)>-1}},function(t,e,n){var r=n(145),i=n(299),a=n(300);t.exports=function(t,e,n){return e==e?a(t,e,n):r(t,i,n)}},function(t,e){t.exports=function(t){return t!=t}},function(t,e){t.exports=function(t,e,n){for(var r=n-1,i=t.length;++r<i;)if(t[r]===e)return r;return-1}},function(t,e){t.exports=function(t,e,n){for(var r=-1,i=null==t?0:t.length;++r<i;)if(n(e,t[r]))return!0;return!1}},function(t,e,n){var r=n(121),i=n(303),a=n(92),o=r&&1/a(new r([,-0]))[1]==1/0?function(t){return new r(t)}:i;t.exports=o},function(t,e){t.exports=function(){}},function(t,e,n){var r=n(68);t.exports=function(t,e){return r(e,(function(e){return t[e]}))}},function(t,e){t.exports="2.1.8"},function(t,e,n){var r=n(13),i=n(78);function a(t){return r.map(t.nodes(),(function(e){var n=t.node(e),i=t.parent(e),a={v:e};return r.isUndefined(n)||(a.value=n),r.isUndefined(i)||(a.parent=i),a}))}function o(t){return r.map(t.edges(),(function(e){var n=t.edge(e),i={v:e.v,w:e.w};return r.isUndefined(e.name)||(i.name=e.name),r.isUndefined(n)||(i.value=n),i}))}t.exports={write:function(t){var e={options:{directed:t.isDirected(),multigraph:t.isMultigraph(),compound:t.isCompound()},nodes:a(t),edges:o(t)};r.isUndefined(t.graph())||(e.value=r.clone(t.graph()));return e},read:function(t){var e=new i(t.options).setGraph(t.value);return r.each(t.nodes,(function(t){e.setNode(t.v,t.value),t.parent&&e.setParent(t.v,t.parent)})),r.each(t.edges,(function(t){e.setEdge({v:t.v,w:t.w,name:t.name},t.value)})),e}}},function(t,e,n){t.exports={components:n(308),dijkstra:n(148),dijkstraAll:n(309),findCycles:n(310),floydWarshall:n(311),isAcyclic:n(312),postorder:n(313),preorder:n(314),prim:n(315),tarjan:n(150),topsort:n(151)}},function(t,e,n){var r=n(13);t.exports=function(t){var e,n={},i=[];function a(i){r.has(n,i)||(n[i]=!0,e.push(i),r.each(t.successors(i),a),r.each(t.predecessors(i),a))}return r.each(t.nodes(),(function(t){e=[],a(t),e.length&&i.push(e)})),i}},function(t,e,n){var r=n(148),i=n(13);t.exports=function(t,e,n){return i.transform(t.nodes(),(function(i,a){i[a]=r(t,a,e,n)}),{})}},function(t,e,n){var r=n(13),i=n(150);t.exports=function(t){return r.filter(i(t),(function(e){return e.length>1||1===e.length&&t.hasEdge(e[0],e[0])}))}},function(t,e,n){var r=n(13);t.exports=function(t,e,n){return function(t,e,n){var r={},i=t.nodes();return i.forEach((function(t){r[t]={},r[t][t]={distance:0},i.forEach((function(e){t!==e&&(r[t][e]={distance:Number.POSITIVE_INFINITY})})),n(t).forEach((function(n){var i=n.v===t?n.w:n.v,a=e(n);r[t][i]={distance:a,predecessor:t}}))})),i.forEach((function(t){var e=r[t];i.forEach((function(n){var a=r[n];i.forEach((function(n){var r=a[t],i=e[n],o=a[n],s=r.distance+i.distance;s<o.distance&&(o.distance=s,o.predecessor=i.predecessor)}))}))})),r}(t,e||i,n||function(e){return t.outEdges(e)})};var i=r.constant(1)},function(t,e,n){var r=n(151);t.exports=function(t){try{r(t)}catch(t){if(t instanceof r.CycleException)return!1;throw t}return!0}},function(t,e,n){var r=n(152);t.exports=function(t,e){return r(t,e,"post")}},function(t,e,n){var r=n(152);t.exports=function(t,e){return r(t,e,"pre")}},function(t,e,n){var r=n(13),i=n(78),a=n(149);t.exports=function(t,e){var n,o=new i,s={},c=new a;function u(t){var r=t.v===n?t.w:t.v,i=c.priority(r);if(void 0!==i){var a=e(t);a<i&&(s[r]=n,c.decrease(r,a))}}if(0===t.nodeCount())return o;r.each(t.nodes(),(function(t){c.add(t,Number.POSITIVE_INFINITY),o.setNode(t)})),c.decrease(t.nodes()[0],0);var l=!1;for(;c.size()>0;){if(n=c.removeMin(),r.has(s,n))o.setEdge(n,s[n]);else{if(l)throw new Error("Input graph is not connected: "+t);l=!0}t.nodeEdges(n).forEach(u)}return o}},function(t,e,n){var r;try{r=n(3)}catch(t){}r||(r=window.graphlib),t.exports=r},function(t,e,n){"use strict";var r=n(4),i=n(352),a=n(355),o=n(356),s=n(9).normalizeRanks,c=n(358),u=n(9).removeEmptyRanks,l=n(359),h=n(360),f=n(361),d=n(362),p=n(371),y=n(9),g=n(20).Graph;t.exports=function(t,e){var n=e&&e.debugTiming?y.time:y.notime;n("layout",(function(){var e=n("  buildLayoutGraph",(function(){return function(t){var e=new g({multigraph:!0,compound:!0}),n=C(t.graph());return e.setGraph(r.merge({},v,T(n,m),r.pick(n,b))),r.forEach(t.nodes(),(function(n){var i=C(t.node(n));e.setNode(n,r.defaults(T(i,x),_)),e.setParent(n,t.parent(n))})),r.forEach(t.edges(),(function(n){var i=C(t.edge(n));e.setEdge(n,r.merge({},w,T(i,k),r.pick(i,E)))})),e}(t)}));n("  runLayout",(function(){!function(t,e){e("    makeSpaceForEdgeLabels",(function(){!function(t){var e=t.graph();e.ranksep/=2,r.forEach(t.edges(),(function(n){var r=t.edge(n);r.minlen*=2,"c"!==r.labelpos.toLowerCase()&&("TB"===e.rankdir||"BT"===e.rankdir?r.width+=r.labeloffset:r.height+=r.labeloffset)}))}(t)})),e("    removeSelfEdges",(function(){!function(t){r.forEach(t.edges(),(function(e){if(e.v===e.w){var n=t.node(e.v);n.selfEdges||(n.selfEdges=[]),n.selfEdges.push({e:e,label:t.edge(e)}),t.removeEdge(e)}}))}(t)})),e("    acyclic",(function(){i.run(t)})),e("    nestingGraph.run",(function(){l.run(t)})),e("    rank",(function(){o(y.asNonCompoundGraph(t))})),e("    injectEdgeLabelProxies",(function(){!function(t){r.forEach(t.edges(),(function(e){var n=t.edge(e);if(n.width&&n.height){var r=t.node(e.v),i={rank:(t.node(e.w).rank-r.rank)/2+r.rank,e:e};y.addDummyNode(t,"edge-proxy",i,"_ep")}}))}(t)})),e("    removeEmptyRanks",(function(){u(t)})),e("    nestingGraph.cleanup",(function(){l.cleanup(t)})),e("    normalizeRanks",(function(){s(t)})),e("    assignRankMinMax",(function(){!function(t){var e=0;r.forEach(t.nodes(),(function(n){var i=t.node(n);i.borderTop&&(i.minRank=t.node(i.borderTop).rank,i.maxRank=t.node(i.borderBottom).rank,e=r.max(e,i.maxRank))})),t.graph().maxRank=e}(t)})),e("    removeEdgeLabelProxies",(function(){!function(t){r.forEach(t.nodes(),(function(e){var n=t.node(e);"edge-proxy"===n.dummy&&(t.edge(n.e).labelRank=n.rank,t.removeNode(e))}))}(t)})),e("    normalize.run",(function(){a.run(t)})),e("    parentDummyChains",(function(){c(t)})),e("    addBorderSegments",(function(){h(t)})),e("    order",(function(){d(t)})),e("    insertSelfEdges",(function(){!function(t){var e=y.buildLayerMatrix(t);r.forEach(e,(function(e){var n=0;r.forEach(e,(function(e,i){var a=t.node(e);a.order=i+n,r.forEach(a.selfEdges,(function(e){y.addDummyNode(t,"selfedge",{width:e.label.width,height:e.label.height,rank:a.rank,order:i+ ++n,e:e.e,label:e.label},"_se")})),delete a.selfEdges}))}))}(t)})),e("    adjustCoordinateSystem",(function(){f.adjust(t)})),e("    position",(function(){p(t)})),e("    positionSelfEdges",(function(){!function(t){r.forEach(t.nodes(),(function(e){var n=t.node(e);if("selfedge"===n.dummy){var r=t.node(n.e.v),i=r.x+r.width/2,a=r.y,o=n.x-i,s=r.height/2;t.setEdge(n.e,n.label),t.removeNode(e),n.label.points=[{x:i+2*o/3,y:a-s},{x:i+5*o/6,y:a-s},{x:i+o,y:a},{x:i+5*o/6,y:a+s},{x:i+2*o/3,y:a+s}],n.label.x=n.x,n.label.y=n.y}}))}(t)})),e("    removeBorderNodes",(function(){!function(t){r.forEach(t.nodes(),(function(e){if(t.children(e).length){var n=t.node(e),i=t.node(n.borderTop),a=t.node(n.borderBottom),o=t.node(r.last(n.borderLeft)),s=t.node(r.last(n.borderRight));n.width=Math.abs(s.x-o.x),n.height=Math.abs(a.y-i.y),n.x=o.x+n.width/2,n.y=i.y+n.height/2}})),r.forEach(t.nodes(),(function(e){"border"===t.node(e).dummy&&t.removeNode(e)}))}(t)})),e("    normalize.undo",(function(){a.undo(t)})),e("    fixupEdgeLabelCoords",(function(){!function(t){r.forEach(t.edges(),(function(e){var n=t.edge(e);if(r.has(n,"x"))switch("l"!==n.labelpos&&"r"!==n.labelpos||(n.width-=n.labeloffset),n.labelpos){case"l":n.x-=n.width/2+n.labeloffset;break;case"r":n.x+=n.width/2+n.labeloffset}}))}(t)})),e("    undoCoordinateSystem",(function(){f.undo(t)})),e("    translateGraph",(function(){!function(t){var e=Number.POSITIVE_INFINITY,n=0,i=Number.POSITIVE_INFINITY,a=0,o=t.graph(),s=o.marginx||0,c=o.marginy||0;function u(t){var r=t.x,o=t.y,s=t.width,c=t.height;e=Math.min(e,r-s/2),n=Math.max(n,r+s/2),i=Math.min(i,o-c/2),a=Math.max(a,o+c/2)}r.forEach(t.nodes(),(function(e){u(t.node(e))})),r.forEach(t.edges(),(function(e){var n=t.edge(e);r.has(n,"x")&&u(n)})),e-=s,i-=c,r.forEach(t.nodes(),(function(n){var r=t.node(n);r.x-=e,r.y-=i})),r.forEach(t.edges(),(function(n){var a=t.edge(n);r.forEach(a.points,(function(t){t.x-=e,t.y-=i})),r.has(a,"x")&&(a.x-=e),r.has(a,"y")&&(a.y-=i)})),o.width=n-e+s,o.height=a-i+c}(t)})),e("    assignNodeIntersects",(function(){!function(t){r.forEach(t.edges(),(function(e){var n,r,i=t.edge(e),a=t.node(e.v),o=t.node(e.w);i.points?(n=i.points[0],r=i.points[i.points.length-1]):(i.points=[],n=o,r=a),i.points.unshift(y.intersectRect(a,n)),i.points.push(y.intersectRect(o,r))}))}(t)})),e("    reversePoints",(function(){!function(t){r.forEach(t.edges(),(function(e){var n=t.edge(e);n.reversed&&n.points.reverse()}))}(t)})),e("    acyclic.undo",(function(){i.undo(t)}))}(e,n)})),n("  updateInputGraph",(function(){!function(t,e){r.forEach(t.nodes(),(function(n){var r=t.node(n),i=e.node(n);r&&(r.x=i.x,r.y=i.y,e.children(n).length&&(r.width=i.width,r.height=i.height))})),r.forEach(t.edges(),(function(n){var i=t.edge(n),a=e.edge(n);i.points=a.points,r.has(a,"x")&&(i.x=a.x,i.y=a.y)})),t.graph().width=e.graph().width,t.graph().height=e.graph().height}(t,e)}))}))};var m=["nodesep","edgesep","ranksep","marginx","marginy"],v={ranksep:50,edgesep:20,nodesep:50,rankdir:"tb"},b=["acyclicer","ranker","rankdir","align"],x=["width","height"],_={width:0,height:0},k=["minlen","weight","width","height","labeloffset"],w={minlen:1,weight:1,width:0,height:0,labeloffset:10,labelpos:"r"},E=["labelpos"];function T(t,e){return r.mapValues(r.pick(t,e),Number)}function C(t){var e={};return r.forEach(t,(function(t,n){e[n.toLowerCase()]=t})),e}},function(t,e,n){var r=n(108);t.exports=function(t){return r(t,5)}},function(t,e,n){var r=n(320)(n(321));t.exports=r},function(t,e,n){var r=n(26),i=n(25),a=n(30);t.exports=function(t){return function(e,n,o){var s=Object(e);if(!i(e)){var c=r(n,3);e=a(e),n=function(t){return c(s[t],t,s)}}var u=t(e,n,o);return u>-1?s[c?e[u]:u]:void 0}}},function(t,e,n){var r=n(145),i=n(26),a=n(322),o=Math.max;t.exports=function(t,e,n){var s=null==t?0:t.length;if(!s)return-1;var c=null==n?0:a(n);return c<0&&(c=o(s+c,0)),r(t,i(e,3),c)}},function(t,e,n){var r=n(155);t.exports=function(t){var e=r(t),n=e%1;return e==e?n?e-n:e:0}},function(t,e,n){var r=n(324),i=n(14),a=n(43),o=/^[-+]0x[0-9a-f]+$/i,s=/^0b[01]+$/i,c=/^0o[0-7]+$/i,u=parseInt;t.exports=function(t){if("number"==typeof t)return t;if(a(t))return NaN;if(i(t)){var e="function"==typeof t.valueOf?t.valueOf():t;t=i(e)?e+"":e}if("string"!=typeof t)return 0===t?t:+t;t=r(t);var n=s.test(t);return n||c.test(t)?u(t.slice(2),n?2:8):o.test(t)?NaN:+t}},function(t,e,n){var r=n(325),i=/^\s+/;t.exports=function(t){return t?t.slice(0,r(t)+1).replace(i,""):t}},function(t,e){var n=/\s/;t.exports=function(t){for(var e=t.length;e--&&n.test(t.charAt(e)););return e}},function(t,e,n){var r=n(91),i=n(127),a=n(35);t.exports=function(t,e){return null==t?t:r(t,i(e),a)}},function(t,e){t.exports=function(t){var e=null==t?0:t.length;return e?t[e-1]:void 0}},function(t,e,n){var r=n(60),i=n(90),a=n(26);t.exports=function(t,e){var n={};return e=a(e,3),i(t,(function(t,i,a){r(n,i,e(t,i,a))})),n}},function(t,e,n){var r=n(96),i=n(330),a=n(36);t.exports=function(t){return t&&t.length?r(t,a,i):void 0}},function(t,e){t.exports=function(t,e){return t>e}},function(t,e,n){var r=n(332),i=n(335)((function(t,e,n){r(t,e,n)}));t.exports=i},function(t,e,n){var r=n(54),i=n(157),a=n(91),o=n(333),s=n(14),c=n(35),u=n(159);t.exports=function t(e,n,l,h,f){e!==n&&a(n,(function(a,c){if(f||(f=new r),s(a))o(e,n,c,l,t,h,f);else{var d=h?h(u(e,c),a,c+"",e,n,f):void 0;void 0===d&&(d=a),i(e,c,d)}}),c)}},function(t,e,n){var r=n(157),i=n(114),a=n(123),o=n(115),s=n(124),c=n(48),u=n(5),l=n(146),h=n(41),f=n(39),d=n(14),p=n(158),y=n(49),g=n(159),m=n(334);t.exports=function(t,e,n,v,b,x,_){var k=g(t,n),w=g(e,n),E=_.get(w);if(E)r(t,n,E);else{var T=x?x(k,w,n+"",t,e,_):void 0,C=void 0===T;if(C){var S=u(w),A=!S&&h(w),M=!S&&!A&&y(w);T=w,S||A||M?u(k)?T=k:l(k)?T=o(k):A?(C=!1,T=i(w,!0)):M?(C=!1,T=a(w,!0)):T=[]:p(w)||c(w)?(T=k,c(k)?T=m(k):d(k)&&!f(k)||(T=s(w))):C=!1}C&&(_.set(w,T),b(T,w,v,x,_),_.delete(w)),r(t,n,T)}}},function(t,e,n){var r=n(47),i=n(35);t.exports=function(t){return r(t,i(t))}},function(t,e,n){var r=n(69),i=n(70);t.exports=function(t){return r((function(e,n){var r=-1,a=n.length,o=a>1?n[a-1]:void 0,s=a>2?n[2]:void 0;for(o=t.length>3&&"function"==typeof o?(a--,o):void 0,s&&i(n[0],n[1],s)&&(o=a<3?void 0:o,a=1),e=Object(e);++r<a;){var c=n[r];c&&t(e,c,r,o)}return e}))}},function(t,e,n){var r=n(96),i=n(160),a=n(36);t.exports=function(t){return t&&t.length?r(t,a,i):void 0}},function(t,e,n){var r=n(96),i=n(26),a=n(160);t.exports=function(t,e){return t&&t.length?r(t,i(e,2),a):void 0}},function(t,e,n){var r=n(19);t.exports=function(){return r.Date.now()}},function(t,e,n){var r=n(340),i=n(136);t.exports=function(t,e){return r(t,e,(function(e,n){return i(t,n)}))}},function(t,e,n){var r=n(66),i=n(341),a=n(67);t.exports=function(t,e,n){for(var o=-1,s=e.length,c={};++o<s;){var u=e[o],l=r(t,u);n(l,u)&&i(c,a(u,t),l)}return c}},function(t,e,n){var r=n(59),i=n(67),a=n(61),o=n(14),s=n(50);t.exports=function(t,e,n,c){if(!o(t))return t;for(var u=-1,l=(e=i(e,t)).length,h=l-1,f=t;null!=f&&++u<l;){var d=s(e[u]),p=n;if("__proto__"===d||"constructor"===d||"prototype"===d)return t;if(u!=h){var y=f[d];void 0===(p=c?c(y,d,f):void 0)&&(p=o(y)?y:a(e[u+1])?[]:{})}r(f,d,p),f=f[d]}return t}},function(t,e,n){var r=n(156),i=n(143),a=n(144);t.exports=function(t){return a(i(t,void 0,r),t+"")}},function(t,e,n){var r=n(344),i=n(70),a=n(155);t.exports=function(t){return function(e,n,o){return o&&"number"!=typeof o&&i(e,n,o)&&(n=o=void 0),e=a(e),void 0===n?(n=e,e=0):n=a(n),o=void 0===o?e<n?1:-1:a(o),r(e,n,o,t)}}},function(t,e){var n=Math.ceil,r=Math.max;t.exports=function(t,e,i,a){for(var o=-1,s=r(n((e-t)/(i||1)),0),c=Array(s);s--;)c[a?s:++o]=t,t+=i;return c}},function(t,e,n){var r=n(95),i=n(346),a=n(69),o=n(70),s=a((function(t,e){if(null==t)return[];var n=e.length;return n>1&&o(t,e[0],e[1])?e=[]:n>2&&o(e[0],e[1],e[2])&&(e=[e[0]]),i(t,r(e,1),[])}));t.exports=s},function(t,e,n){var r=n(68),i=n(66),a=n(26),o=n(141),s=n(347),c=n(62),u=n(348),l=n(36),h=n(5);t.exports=function(t,e,n){e=e.length?r(e,(function(t){return h(t)?function(e){return i(e,1===t.length?t[0]:t)}:t})):[l];var f=-1;e=r(e,c(a));var d=o(t,(function(t,n,i){return{criteria:r(e,(function(e){return e(t)})),index:++f,value:t}}));return s(d,(function(t,e){return u(t,e,n)}))}},function(t,e){t.exports=function(t,e){var n=t.length;for(t.sort(e);n--;)t[n]=t[n].value;return t}},function(t,e,n){var r=n(349);t.exports=function(t,e,n){for(var i=-1,a=t.criteria,o=e.criteria,s=a.length,c=n.length;++i<s;){var u=r(a[i],o[i]);if(u)return i>=c?u:u*("desc"==n[i]?-1:1)}return t.index-e.index}},function(t,e,n){var r=n(43);t.exports=function(t,e){if(t!==e){var n=void 0!==t,i=null===t,a=t==t,o=r(t),s=void 0!==e,c=null===e,u=e==e,l=r(e);if(!c&&!l&&!o&&t>e||o&&s&&u&&!c&&!l||i&&s&&u||!n&&u||!a)return 1;if(!i&&!o&&!l&&t<e||l&&n&&a&&!i&&!o||c&&n&&a||!s&&a||!u)return-1}return 0}},function(t,e,n){var r=n(59),i=n(351);t.exports=function(t,e){return i(t||[],e||[],r)}},function(t,e){t.exports=function(t,e,n){for(var r=-1,i=t.length,a=e.length,o={};++r<i;){var s=r<a?e[r]:void 0;n(o,t[r],s)}return o}},function(t,e,n){"use strict";var r=n(4),i=n(353);t.exports={run:function(t){var e="greedy"===t.graph().acyclicer?i(t,function(t){return function(e){return t.edge(e).weight}}(t)):function(t){var e=[],n={},i={};function a(o){r.has(i,o)||(i[o]=!0,n[o]=!0,r.forEach(t.outEdges(o),(function(t){r.has(n,t.w)?e.push(t):a(t.w)})),delete n[o])}return r.forEach(t.nodes(),a),e}(t);r.forEach(e,(function(e){var n=t.edge(e);t.removeEdge(e),n.forwardName=e.name,n.reversed=!0,t.setEdge(e.w,e.v,n,r.uniqueId("rev"))}))},undo:function(t){r.forEach(t.edges(),(function(e){var n=t.edge(e);if(n.reversed){t.removeEdge(e);var r=n.forwardName;delete n.reversed,delete n.forwardName,t.setEdge(e.w,e.v,n,r)}}))}}},function(t,e,n){var r=n(4),i=n(20).Graph,a=n(354);t.exports=function(t,e){if(t.nodeCount()<=1)return[];var n=function(t,e){var n=new i,o=0,s=0;r.forEach(t.nodes(),(function(t){n.setNode(t,{v:t,in:0,out:0})})),r.forEach(t.edges(),(function(t){var r=n.edge(t.v,t.w)||0,i=e(t),a=r+i;n.setEdge(t.v,t.w,a),s=Math.max(s,n.node(t.v).out+=i),o=Math.max(o,n.node(t.w).in+=i)}));var u=r.range(s+o+3).map((function(){return new a})),l=o+1;return r.forEach(n.nodes(),(function(t){c(u,l,n.node(t))})),{graph:n,buckets:u,zeroIdx:l}}(t,e||o),u=function(t,e,n){var r,i=[],a=e[e.length-1],o=e[0];for(;t.nodeCount();){for(;r=o.dequeue();)s(t,e,n,r);for(;r=a.dequeue();)s(t,e,n,r);if(t.nodeCount())for(var c=e.length-2;c>0;--c)if(r=e[c].dequeue()){i=i.concat(s(t,e,n,r,!0));break}}return i}(n.graph,n.buckets,n.zeroIdx);return r.flatten(r.map(u,(function(e){return t.outEdges(e.v,e.w)})),!0)};var o=r.constant(1);function s(t,e,n,i,a){var o=a?[]:void 0;return r.forEach(t.inEdges(i.v),(function(r){var i=t.edge(r),s=t.node(r.v);a&&o.push({v:r.v,w:r.w}),s.out-=i,c(e,n,s)})),r.forEach(t.outEdges(i.v),(function(r){var i=t.edge(r),a=r.w,o=t.node(a);o.in-=i,c(e,n,o)})),t.removeNode(i.v),o}function c(t,e,n){n.out?n.in?t[n.out-n.in+e].enqueue(n):t[t.length-1].enqueue(n):t[0].enqueue(n)}},function(t,e){function n(){var t={};t._next=t._prev=t,this._sentinel=t}function r(t){t._prev._next=t._next,t._next._prev=t._prev,delete t._next,delete t._prev}function i(t,e){if("_next"!==t&&"_prev"!==t)return e}t.exports=n,n.prototype.dequeue=function(){var t=this._sentinel,e=t._prev;if(e!==t)return r(e),e},n.prototype.enqueue=function(t){var e=this._sentinel;t._prev&&t._next&&r(t),t._next=e._next,e._next._prev=t,e._next=t,t._prev=e},n.prototype.toString=function(){for(var t=[],e=this._sentinel,n=e._prev;n!==e;)t.push(JSON.stringify(n,i)),n=n._prev;return"["+t.join(", ")+"]"}},function(t,e,n){"use strict";var r=n(4),i=n(9);t.exports={run:function(t){t.graph().dummyChains=[],r.forEach(t.edges(),(function(e){!function(t,e){var n,r,a,o=e.v,s=t.node(o).rank,c=e.w,u=t.node(c).rank,l=e.name,h=t.edge(e),f=h.labelRank;if(u===s+1)return;for(t.removeEdge(e),a=0,++s;s<u;++a,++s)h.points=[],r={width:0,height:0,edgeLabel:h,edgeObj:e,rank:s},n=i.addDummyNode(t,"edge",r,"_d"),s===f&&(r.width=h.width,r.height=h.height,r.dummy="edge-label",r.labelpos=h.labelpos),t.setEdge(o,n,{weight:h.weight},l),0===a&&t.graph().dummyChains.push(n),o=n;t.setEdge(o,c,{weight:h.weight},l)}(t,e)}))},undo:function(t){r.forEach(t.graph().dummyChains,(function(e){var n,r=t.node(e),i=r.edgeLabel;for(t.setEdge(r.edgeObj,i);r.dummy;)n=t.successors(e)[0],t.removeNode(e),i.points.push({x:r.x,y:r.y}),"edge-label"===r.dummy&&(i.x=r.x,i.y=r.y,i.width=r.width,i.height=r.height),e=n,r=t.node(e)}))}}},function(t,e,n){"use strict";var r=n(71).longestPath,i=n(164),a=n(357);t.exports=function(t){switch(t.graph().ranker){case"network-simplex":s(t);break;case"tight-tree":!function(t){r(t),i(t)}(t);break;case"longest-path":o(t);break;default:s(t)}};var o=r;function s(t){a(t)}},function(t,e,n){"use strict";var r=n(4),i=n(164),a=n(71).slack,o=n(71).longestPath,s=n(20).alg.preorder,c=n(20).alg.postorder,u=n(9).simplify;function l(t){t=u(t),o(t);var e,n=i(t);for(d(n),h(n,t);e=y(n);)m(n,t,e,g(n,t,e))}function h(t,e){var n=c(t,t.nodes());n=n.slice(0,n.length-1),r.forEach(n,(function(n){!function(t,e,n){var r=t.node(n).parent;t.edge(n,r).cutvalue=f(t,e,n)}(t,e,n)}))}function f(t,e,n){var i=t.node(n).parent,a=!0,o=e.edge(n,i),s=0;return o||(a=!1,o=e.edge(i,n)),s=o.weight,r.forEach(e.nodeEdges(n),(function(r){var o,c,u=r.v===n,l=u?r.w:r.v;if(l!==i){var h=u===a,f=e.edge(r).weight;if(s+=h?f:-f,o=n,c=l,t.hasEdge(o,c)){var d=t.edge(n,l).cutvalue;s+=h?-d:d}}})),s}function d(t,e){arguments.length<2&&(e=t.nodes()[0]),p(t,{},1,e)}function p(t,e,n,i,a){var o=n,s=t.node(i);return e[i]=!0,r.forEach(t.neighbors(i),(function(a){r.has(e,a)||(n=p(t,e,n,a,i))})),s.low=o,s.lim=n++,a?s.parent=a:delete s.parent,n}function y(t){return r.find(t.edges(),(function(e){return t.edge(e).cutvalue<0}))}function g(t,e,n){var i=n.v,o=n.w;e.hasEdge(i,o)||(i=n.w,o=n.v);var s=t.node(i),c=t.node(o),u=s,l=!1;s.lim>c.lim&&(u=c,l=!0);var h=r.filter(e.edges(),(function(e){return l===v(t,t.node(e.v),u)&&l!==v(t,t.node(e.w),u)}));return r.minBy(h,(function(t){return a(e,t)}))}function m(t,e,n,i){var a=n.v,o=n.w;t.removeEdge(a,o),t.setEdge(i.v,i.w,{}),d(t),h(t,e),function(t,e){var n=r.find(t.nodes(),(function(t){return!e.node(t).parent})),i=s(t,n);i=i.slice(1),r.forEach(i,(function(n){var r=t.node(n).parent,i=e.edge(n,r),a=!1;i||(i=e.edge(r,n),a=!0),e.node(n).rank=e.node(r).rank+(a?i.minlen:-i.minlen)}))}(t,e)}function v(t,e,n){return n.low<=e.lim&&e.lim<=n.lim}t.exports=l,l.initLowLimValues=d,l.initCutValues=h,l.calcCutValue=f,l.leaveEdge=y,l.enterEdge=g,l.exchangeEdges=m},function(t,e,n){var r=n(4);t.exports=function(t){var e=function(t){var e={},n=0;function i(a){var o=n;r.forEach(t.children(a),i),e[a]={low:o,lim:n++}}return r.forEach(t.children(),i),e}(t);r.forEach(t.graph().dummyChains,(function(n){for(var r=t.node(n),i=r.edgeObj,a=function(t,e,n,r){var i,a,o=[],s=[],c=Math.min(e[n].low,e[r].low),u=Math.max(e[n].lim,e[r].lim);i=n;do{i=t.parent(i),o.push(i)}while(i&&(e[i].low>c||u>e[i].lim));a=i,i=r;for(;(i=t.parent(i))!==a;)s.push(i);return{path:o.concat(s.reverse()),lca:a}}(t,e,i.v,i.w),o=a.path,s=a.lca,c=0,u=o[c],l=!0;n!==i.w;){if(r=t.node(n),l){for(;(u=o[c])!==s&&t.node(u).maxRank<r.rank;)c++;u===s&&(l=!1)}if(!l){for(;c<o.length-1&&t.node(u=o[c+1]).minRank<=r.rank;)c++;u=o[c]}t.setParent(n,u),n=t.successors(n)[0]}}))}},function(t,e,n){var r=n(4),i=n(9);t.exports={run:function(t){var e=i.addDummyNode(t,"root",{},"_root"),n=function(t){var e={};return r.forEach(t.children(),(function(n){!function n(i,a){var o=t.children(i);o&&o.length&&r.forEach(o,(function(t){n(t,a+1)}));e[i]=a}(n,1)})),e}(t),a=r.max(r.values(n))-1,o=2*a+1;t.graph().nestingRoot=e,r.forEach(t.edges(),(function(e){t.edge(e).minlen*=o}));var s=function(t){return r.reduce(t.edges(),(function(e,n){return e+t.edge(n).weight}),0)}(t)+1;r.forEach(t.children(),(function(c){!function t(e,n,a,o,s,c,u){var l=e.children(u);if(!l.length)return void(u!==n&&e.setEdge(n,u,{weight:0,minlen:a}));var h=i.addBorderNode(e,"_bt"),f=i.addBorderNode(e,"_bb"),d=e.node(u);e.setParent(h,u),d.borderTop=h,e.setParent(f,u),d.borderBottom=f,r.forEach(l,(function(r){t(e,n,a,o,s,c,r);var i=e.node(r),l=i.borderTop?i.borderTop:r,d=i.borderBottom?i.borderBottom:r,p=i.borderTop?o:2*o,y=l!==d?1:s-c[u]+1;e.setEdge(h,l,{weight:p,minlen:y,nestingEdge:!0}),e.setEdge(d,f,{weight:p,minlen:y,nestingEdge:!0})})),e.parent(u)||e.setEdge(n,h,{weight:0,minlen:s+c[u]})}(t,e,o,s,a,n,c)})),t.graph().nodeRankFactor=o},cleanup:function(t){var e=t.graph();t.removeNode(e.nestingRoot),delete e.nestingRoot,r.forEach(t.edges(),(function(e){t.edge(e).nestingEdge&&t.removeEdge(e)}))}}},function(t,e,n){var r=n(4),i=n(9);function a(t,e,n,r,a,o){var s={width:0,height:0,rank:o,borderType:e},c=a[e][o-1],u=i.addDummyNode(t,"border",s,n);a[e][o]=u,t.setParent(u,r),c&&t.setEdge(c,u,{weight:1})}t.exports=function(t){r.forEach(t.children(),(function e(n){var i=t.children(n),o=t.node(n);if(i.length&&r.forEach(i,e),r.has(o,"minRank")){o.borderLeft=[],o.borderRight=[];for(var s=o.minRank,c=o.maxRank+1;s<c;++s)a(t,"borderLeft","_bl",n,o,s),a(t,"borderRight","_br",n,o,s)}}))}},function(t,e,n){"use strict";var r=n(4);function i(t){r.forEach(t.nodes(),(function(e){a(t.node(e))})),r.forEach(t.edges(),(function(e){a(t.edge(e))}))}function a(t){var e=t.width;t.width=t.height,t.height=e}function o(t){t.y=-t.y}function s(t){var e=t.x;t.x=t.y,t.y=e}t.exports={adjust:function(t){var e=t.graph().rankdir.toLowerCase();"lr"!==e&&"rl"!==e||i(t)},undo:function(t){var e=t.graph().rankdir.toLowerCase();"bt"!==e&&"rl"!==e||function(t){r.forEach(t.nodes(),(function(e){o(t.node(e))})),r.forEach(t.edges(),(function(e){var n=t.edge(e);r.forEach(n.points,o),r.has(n,"y")&&o(n)}))}(t);"lr"!==e&&"rl"!==e||(!function(t){r.forEach(t.nodes(),(function(e){s(t.node(e))})),r.forEach(t.edges(),(function(e){var n=t.edge(e);r.forEach(n.points,s),r.has(n,"x")&&s(n)}))}(t),i(t))}}},function(t,e,n){"use strict";var r=n(4),i=n(363),a=n(364),o=n(365),s=n(369),c=n(370),u=n(20).Graph,l=n(9);function h(t,e,n){return r.map(e,(function(e){return s(t,e,n)}))}function f(t,e){var n=new u;r.forEach(t,(function(t){var i=t.graph().root,a=o(t,i,n,e);r.forEach(a.vs,(function(e,n){t.node(e).order=n})),c(t,n,a.vs)}))}function d(t,e){r.forEach(e,(function(e){r.forEach(e,(function(e,n){t.node(e).order=n}))}))}t.exports=function(t){var e=l.maxRank(t),n=h(t,r.range(1,e+1),"inEdges"),o=h(t,r.range(e-1,-1,-1),"outEdges"),s=i(t);d(t,s);for(var c,u=Number.POSITIVE_INFINITY,p=0,y=0;y<4;++p,++y){f(p%2?n:o,p%4>=2),s=l.buildLayerMatrix(t);var g=a(t,s);g<u&&(y=0,c=r.cloneDeep(s),u=g)}d(t,c)}},function(t,e,n){"use strict";var r=n(4);t.exports=function(t){var e={},n=r.filter(t.nodes(),(function(e){return!t.children(e).length})),i=r.max(r.map(n,(function(e){return t.node(e).rank}))),a=r.map(r.range(i+1),(function(){return[]}));var o=r.sortBy(n,(function(e){return t.node(e).rank}));return r.forEach(o,(function n(i){if(r.has(e,i))return;e[i]=!0;var o=t.node(i);a[o.rank].push(i),r.forEach(t.successors(i),n)})),a}},function(t,e,n){"use strict";var r=n(4);function i(t,e,n){for(var i=r.zipObject(n,r.map(n,(function(t,e){return e}))),a=r.flatten(r.map(e,(function(e){return r.sortBy(r.map(t.outEdges(e),(function(e){return{pos:i[e.w],weight:t.edge(e).weight}})),"pos")})),!0),o=1;o<n.length;)o<<=1;var s=2*o-1;o-=1;var c=r.map(new Array(s),(function(){return 0})),u=0;return r.forEach(a.forEach((function(t){var e=t.pos+o;c[e]+=t.weight;for(var n=0;e>0;)e%2&&(n+=c[e+1]),c[e=e-1>>1]+=t.weight;u+=t.weight*n}))),u}t.exports=function(t,e){for(var n=0,r=1;r<e.length;++r)n+=i(t,e[r-1],e[r]);return n}},function(t,e,n){var r=n(4),i=n(366),a=n(367),o=n(368);t.exports=function t(e,n,s,c){var u=e.children(n),l=e.node(n),h=l?l.borderLeft:void 0,f=l?l.borderRight:void 0,d={};h&&(u=r.filter(u,(function(t){return t!==h&&t!==f})));var p=i(e,u);r.forEach(p,(function(n){if(e.children(n.v).length){var i=t(e,n.v,s,c);d[n.v]=i,r.has(i,"barycenter")&&(a=n,o=i,r.isUndefined(a.barycenter)?(a.barycenter=o.barycenter,a.weight=o.weight):(a.barycenter=(a.barycenter*a.weight+o.barycenter*o.weight)/(a.weight+o.weight),a.weight+=o.weight))}var a,o}));var y=a(p,s);!function(t,e){r.forEach(t,(function(t){t.vs=r.flatten(t.vs.map((function(t){return e[t]?e[t].vs:t})),!0)}))}(y,d);var g=o(y,c);if(h&&(g.vs=r.flatten([h,g.vs,f],!0),e.predecessors(h).length)){var m=e.node(e.predecessors(h)[0]),v=e.node(e.predecessors(f)[0]);r.has(g,"barycenter")||(g.barycenter=0,g.weight=0),g.barycenter=(g.barycenter*g.weight+m.order+v.order)/(g.weight+2),g.weight+=2}return g}},function(t,e,n){var r=n(4);t.exports=function(t,e){return r.map(e,(function(e){var n=t.inEdges(e);if(n.length){var i=r.reduce(n,(function(e,n){var r=t.edge(n),i=t.node(n.v);return{sum:e.sum+r.weight*i.order,weight:e.weight+r.weight}}),{sum:0,weight:0});return{v:e,barycenter:i.sum/i.weight,weight:i.weight}}return{v:e}}))}},function(t,e,n){"use strict";var r=n(4);t.exports=function(t,e){var n={};return r.forEach(t,(function(t,e){var i=n[t.v]={indegree:0,in:[],out:[],vs:[t.v],i:e};r.isUndefined(t.barycenter)||(i.barycenter=t.barycenter,i.weight=t.weight)})),r.forEach(e.edges(),(function(t){var e=n[t.v],i=n[t.w];r.isUndefined(e)||r.isUndefined(i)||(i.indegree++,e.out.push(n[t.w]))})),function(t){var e=[];function n(t){return function(e){e.merged||(r.isUndefined(e.barycenter)||r.isUndefined(t.barycenter)||e.barycenter>=t.barycenter)&&function(t,e){var n=0,r=0;t.weight&&(n+=t.barycenter*t.weight,r+=t.weight);e.weight&&(n+=e.barycenter*e.weight,r+=e.weight);t.vs=e.vs.concat(t.vs),t.barycenter=n/r,t.weight=r,t.i=Math.min(e.i,t.i),e.merged=!0}(t,e)}}function i(e){return function(n){n.in.push(e),0==--n.indegree&&t.push(n)}}for(;t.length;){var a=t.pop();e.push(a),r.forEach(a.in.reverse(),n(a)),r.forEach(a.out,i(a))}return r.map(r.filter(e,(function(t){return!t.merged})),(function(t){return r.pick(t,["vs","i","barycenter","weight"])}))}(r.filter(n,(function(t){return!t.indegree})))}},function(t,e,n){var r=n(4),i=n(9);function a(t,e,n){for(var i;e.length&&(i=r.last(e)).i<=n;)e.pop(),t.push(i.vs),n++;return n}t.exports=function(t,e){var n=i.partition(t,(function(t){return r.has(t,"barycenter")})),o=n.lhs,s=r.sortBy(n.rhs,(function(t){return-t.i})),c=[],u=0,l=0,h=0;o.sort((f=!!e,function(t,e){return t.barycenter<e.barycenter?-1:t.barycenter>e.barycenter?1:f?e.i-t.i:t.i-e.i})),h=a(c,s,h),r.forEach(o,(function(t){h+=t.vs.length,c.push(t.vs),u+=t.barycenter*t.weight,l+=t.weight,h=a(c,s,h)}));var f;var d={vs:r.flatten(c,!0)};l&&(d.barycenter=u/l,d.weight=l);return d}},function(t,e,n){var r=n(4),i=n(20).Graph;t.exports=function(t,e,n){var a=function(t){var e;for(;t.hasNode(e=r.uniqueId("_root")););return e}(t),o=new i({compound:!0}).setGraph({root:a}).setDefaultNodeLabel((function(e){return t.node(e)}));return r.forEach(t.nodes(),(function(i){var s=t.node(i),c=t.parent(i);(s.rank===e||s.minRank<=e&&e<=s.maxRank)&&(o.setNode(i),o.setParent(i,c||a),r.forEach(t[n](i),(function(e){var n=e.v===i?e.w:e.v,a=o.edge(n,i),s=r.isUndefined(a)?0:a.weight;o.setEdge(n,i,{weight:t.edge(e).weight+s})})),r.has(s,"minRank")&&o.setNode(i,{borderLeft:s.borderLeft[e],borderRight:s.borderRight[e]}))})),o}},function(t,e,n){var r=n(4);t.exports=function(t,e,n){var i,a={};r.forEach(n,(function(n){for(var r,o,s=t.parent(n);s;){if((r=t.parent(s))?(o=a[r],a[r]=s):(o=i,i=s),o&&o!==s)return void e.setEdge(o,s);s=r}}))}},function(t,e,n){"use strict";var r=n(4),i=n(9),a=n(372).positionX;t.exports=function(t){(function(t){var e=i.buildLayerMatrix(t),n=t.graph().ranksep,a=0;r.forEach(e,(function(e){var i=r.max(r.map(e,(function(e){return t.node(e).height})));r.forEach(e,(function(e){t.node(e).y=a+i/2})),a+=i+n}))})(t=i.asNonCompoundGraph(t)),r.forEach(a(t),(function(e,n){t.node(n).x=e}))}},function(t,e,n){"use strict";var r=n(4),i=n(20).Graph,a=n(9);function o(t,e){var n={};return r.reduce(e,(function(e,i){var a=0,o=0,s=e.length,u=r.last(i);return r.forEach(i,(function(e,l){var h=function(t,e){if(t.node(e).dummy)return r.find(t.predecessors(e),(function(e){return t.node(e).dummy}))}(t,e),f=h?t.node(h).order:s;(h||e===u)&&(r.forEach(i.slice(o,l+1),(function(e){r.forEach(t.predecessors(e),(function(r){var i=t.node(r),o=i.order;!(o<a||f<o)||i.dummy&&t.node(e).dummy||c(n,r,e)}))})),o=l+1,a=f)})),i})),n}function s(t,e){var n={};function i(e,i,a,o,s){var u;r.forEach(r.range(i,a),(function(i){u=e[i],t.node(u).dummy&&r.forEach(t.predecessors(u),(function(e){var r=t.node(e);r.dummy&&(r.order<o||r.order>s)&&c(n,e,u)}))}))}return r.reduce(e,(function(e,n){var a,o=-1,s=0;return r.forEach(n,(function(r,c){if("border"===t.node(r).dummy){var u=t.predecessors(r);u.length&&(a=t.node(u[0]).order,i(n,s,c,o,a),s=c,o=a)}i(n,s,n.length,a,e.length)})),n})),n}function c(t,e,n){if(e>n){var r=e;e=n,n=r}var i=t[e];i||(t[e]=i={}),i[n]=!0}function u(t,e,n){if(e>n){var i=e;e=n,n=i}return r.has(t[e],n)}function l(t,e,n,i){var a={},o={},s={};return r.forEach(e,(function(t){r.forEach(t,(function(t,e){a[t]=t,o[t]=t,s[t]=e}))})),r.forEach(e,(function(t){var e=-1;r.forEach(t,(function(t){var c=i(t);if(c.length)for(var l=((c=r.sortBy(c,(function(t){return s[t]}))).length-1)/2,h=Math.floor(l),f=Math.ceil(l);h<=f;++h){var d=c[h];o[t]===t&&e<s[d]&&!u(n,t,d)&&(o[d]=t,o[t]=a[t]=a[d],e=s[d])}}))})),{root:a,align:o}}function h(t,e,n,a,o){var s={},c=function(t,e,n,a){var o=new i,s=t.graph(),c=function(t,e,n){return function(i,a,o){var s,c=i.node(a),u=i.node(o),l=0;if(l+=c.width/2,r.has(c,"labelpos"))switch(c.labelpos.toLowerCase()){case"l":s=-c.width/2;break;case"r":s=c.width/2}if(s&&(l+=n?s:-s),s=0,l+=(c.dummy?e:t)/2,l+=(u.dummy?e:t)/2,l+=u.width/2,r.has(u,"labelpos"))switch(u.labelpos.toLowerCase()){case"l":s=u.width/2;break;case"r":s=-u.width/2}return s&&(l+=n?s:-s),s=0,l}}(s.nodesep,s.edgesep,a);return r.forEach(e,(function(e){var i;r.forEach(e,(function(e){var r=n[e];if(o.setNode(r),i){var a=n[i],s=o.edge(a,r);o.setEdge(a,r,Math.max(c(t,e,i),s||0))}i=e}))})),o}(t,e,n,o),u=o?"borderLeft":"borderRight";function l(t,e){for(var n=c.nodes(),r=n.pop(),i={};r;)i[r]?t(r):(i[r]=!0,n.push(r),n=n.concat(e(r))),r=n.pop()}return l((function(t){s[t]=c.inEdges(t).reduce((function(t,e){return Math.max(t,s[e.v]+c.edge(e))}),0)}),c.predecessors.bind(c)),l((function(e){var n=c.outEdges(e).reduce((function(t,e){return Math.min(t,s[e.w]-c.edge(e))}),Number.POSITIVE_INFINITY),r=t.node(e);n!==Number.POSITIVE_INFINITY&&r.borderType!==u&&(s[e]=Math.max(s[e],n))}),c.successors.bind(c)),r.forEach(a,(function(t){s[t]=s[n[t]]})),s}function f(t,e){return r.minBy(r.values(e),(function(e){var n=Number.NEGATIVE_INFINITY,i=Number.POSITIVE_INFINITY;return r.forIn(e,(function(e,r){var a=function(t,e){return t.node(e).width}(t,r)/2;n=Math.max(e+a,n),i=Math.min(e-a,i)})),n-i}))}function d(t,e){var n=r.values(e),i=r.min(n),a=r.max(n);r.forEach(["u","d"],(function(n){r.forEach(["l","r"],(function(o){var s,c=n+o,u=t[c];if(u!==e){var l=r.values(u);(s="l"===o?i-r.min(l):a-r.max(l))&&(t[c]=r.mapValues(u,(function(t){return t+s})))}}))}))}function p(t,e){return r.mapValues(t.ul,(function(n,i){if(e)return t[e.toLowerCase()][i];var a=r.sortBy(r.map(t,i));return(a[1]+a[2])/2}))}t.exports={positionX:function(t){var e,n=a.buildLayerMatrix(t),i=r.merge(o(t,n),s(t,n)),c={};r.forEach(["u","d"],(function(a){e="u"===a?n:r.values(n).reverse(),r.forEach(["l","r"],(function(n){"r"===n&&(e=r.map(e,(function(t){return r.values(t).reverse()})));var o=("u"===a?t.predecessors:t.successors).bind(t),s=l(t,e,i,o),u=h(t,e,s.root,s.align,"r"===n);"r"===n&&(u=r.mapValues(u,(function(t){return-t}))),c[a+n]=u}))}));var u=f(t,c);return d(c,u),p(c,t.graph().align)},findType1Conflicts:o,findType2Conflicts:s,addConflict:c,hasConflict:u,verticalAlignment:l,horizontalCompaction:h,alignCoordinates:d,findSmallestWidthAlignment:f,balance:p}},function(t,e,n){var r=n(4),i=n(9),a=n(20).Graph;t.exports={debugOrdering:function(t){var e=i.buildLayerMatrix(t),n=new a({compound:!0,multigraph:!0}).setGraph({});return r.forEach(t.nodes(),(function(e){n.setNode(e,{label:e}),n.setParent(e,"layer"+t.node(e).rank)})),r.forEach(t.edges(),(function(t){n.setEdge(t.v,t.w,{},t.name)})),r.forEach(e,(function(t,e){var i="layer"+e;n.setNode(i,{rank:"same"}),r.reduce(t,(function(t,e){return n.setEdge(t,e,{style:"invis"}),e}))})),n}}},function(t,e){t.exports="0.8.5"},function(t,e,n){t.exports={node:n(165),circle:n(166),ellipse:n(97),polygon:n(167),rect:n(168)}},function(t,e){function n(t,e){return t*e>0}t.exports=function(t,e,r,i){var a,o,s,c,u,l,h,f,d,p,y,g,m;if(a=e.y-t.y,s=t.x-e.x,u=e.x*t.y-t.x*e.y,d=a*r.x+s*r.y+u,p=a*i.x+s*i.y+u,0!==d&&0!==p&&n(d,p))return;if(o=i.y-r.y,c=r.x-i.x,l=i.x*r.y-r.x*i.y,h=o*t.x+c*t.y+l,f=o*e.x+c*e.y+l,0!==h&&0!==f&&n(h,f))return;if(0===(y=a*c-o*s))return;return g=Math.abs(y/2),{x:(m=s*l-c*u)<0?(m-g)/y:(m+g)/y,y:(m=o*u-a*l)<0?(m-g)/y:(m+g)/y}}},function(t,e,n){var r=n(44),i=n(31),a=n(153).layout;t.exports=function(){var t=n(378),e=n(381),i=n(382),u=n(383),l=n(384),h=n(385),f=n(386),d=n(387),p=n(388),y=function(n,y){!function(t){t.nodes().forEach((function(e){var n=t.node(e);r.has(n,"label")||t.children(e).length||(n.label=e),r.has(n,"paddingX")&&r.defaults(n,{paddingLeft:n.paddingX,paddingRight:n.paddingX}),r.has(n,"paddingY")&&r.defaults(n,{paddingTop:n.paddingY,paddingBottom:n.paddingY}),r.has(n,"padding")&&r.defaults(n,{paddingLeft:n.padding,paddingRight:n.padding,paddingTop:n.padding,paddingBottom:n.padding}),r.defaults(n,o),r.each(["paddingLeft","paddingRight","paddingTop","paddingBottom"],(function(t){n[t]=Number(n[t])})),r.has(n,"width")&&(n._prevWidth=n.width),r.has(n,"height")&&(n._prevHeight=n.height)})),t.edges().forEach((function(e){var n=t.edge(e);r.has(n,"label")||(n.label=""),r.defaults(n,s)}))}(y);var g=c(n,"output"),m=c(g,"clusters"),v=c(g,"edgePaths"),b=i(c(g,"edgeLabels"),y),x=t(c(g,"nodes"),y,d);a(y),l(x,y),h(b,y),u(v,y,p);var _=e(m,y);f(_,y),function(t){r.each(t.nodes(),(function(e){var n=t.node(e);r.has(n,"_prevWidth")?n.width=n._prevWidth:delete n.width,r.has(n,"_prevHeight")?n.height=n._prevHeight:delete n.height,delete n._prevWidth,delete n._prevHeight}))}(y)};return y.createNodes=function(e){return arguments.length?(t=e,y):t},y.createClusters=function(t){return arguments.length?(e=t,y):e},y.createEdgeLabels=function(t){return arguments.length?(i=t,y):i},y.createEdgePaths=function(t){return arguments.length?(u=t,y):u},y.shapes=function(t){return arguments.length?(d=t,y):d},y.arrows=function(t){return arguments.length?(p=t,y):p},y};var o={paddingLeft:10,paddingRight:10,paddingTop:10,paddingBottom:10,rx:0,ry:0,shape:"rect"},s={arrowhead:"normal",curve:i.curveLinear};function c(t,e){var n=t.select("g."+e);return n.empty()&&(n=t.append("g").attr("class",e)),n}},function(t,e,n){"use strict";var r=n(44),i=n(98),a=n(15),o=n(31);t.exports=function(t,e,n){var s,c=e.nodes().filter((function(t){return!a.isSubgraph(e,t)})),u=t.selectAll("g.node").data(c,(function(t){return t})).classed("update",!0);u.exit().remove(),u.enter().append("g").attr("class","node").style("opacity",0),(u=t.selectAll("g.node")).each((function(t){var s=e.node(t),c=o.select(this);a.applyClass(c,s.class,(c.classed("update")?"update ":"")+"node"),c.select("g.label").remove();var u=c.append("g").attr("class","label"),l=i(u,s),h=n[s.shape],f=r.pick(l.node().getBBox(),"width","height");s.elem=this,s.id&&c.attr("id",s.id),s.labelId&&u.attr("id",s.labelId),r.has(s,"width")&&(f.width=s.width),r.has(s,"height")&&(f.height=s.height),f.width+=s.paddingLeft+s.paddingRight,f.height+=s.paddingTop+s.paddingBottom,u.attr("transform","translate("+(s.paddingLeft-s.paddingRight)/2+","+(s.paddingTop-s.paddingBottom)/2+")");var d=o.select(this);d.select(".label-container").remove();var p=h(d,f,s).classed("label-container",!0);a.applyStyle(p,s.style);var y=p.node().getBBox();s.width=y.width,s.height=y.height})),s=u.exit?u.exit():u.selectAll(null);return a.applyTransition(s,e).style("opacity",0).remove(),u}},function(t,e,n){var r=n(15);t.exports=function(t,e){for(var n=t.append("text"),i=function(t){for(var e,n="",r=!1,i=0;i<t.length;++i)if(e=t[i],r){switch(e){case"n":n+="\n";break;default:n+=e}r=!1}else"\\"===e?r=!0:n+=e;return n}(e.label).split("\n"),a=0;a<i.length;a++)n.append("tspan").attr("xml:space","preserve").attr("dy","1em").attr("x","1").text(i[a]);return r.applyStyle(n,e.labelStyle),n}},function(t,e,n){var r=n(15);t.exports=function(t,e){var n=t;return n.node().appendChild(e.label),r.applyStyle(n,e.labelStyle),n}},function(t,e,n){var r=n(15),i=n(31),a=n(98);t.exports=function(t,e){var n,o=e.nodes().filter((function(t){return r.isSubgraph(e,t)})),s=t.selectAll("g.cluster").data(o,(function(t){return t}));s.selectAll("*").remove(),s.enter().append("g").attr("class","cluster").attr("id",(function(t){return e.node(t).id})).style("opacity",0),s=t.selectAll("g.cluster"),r.applyTransition(s,e).style("opacity",1),s.each((function(t){var n=e.node(t),r=i.select(this);i.select(this).append("rect");var o=r.append("g").attr("class","label");a(o,n,n.clusterLabelPos)})),s.selectAll("rect").each((function(t){var n=e.node(t),a=i.select(this);r.applyStyle(a,n.style)})),n=s.exit?s.exit():s.selectAll(null);return r.applyTransition(n,e).style("opacity",0).remove(),s}},function(t,e,n){"use strict";var r=n(44),i=n(98),a=n(15),o=n(31);t.exports=function(t,e){var n,s=t.selectAll("g.edgeLabel").data(e.edges(),(function(t){return a.edgeToId(t)})).classed("update",!0);s.exit().remove(),s.enter().append("g").classed("edgeLabel",!0).style("opacity",0),(s=t.selectAll("g.edgeLabel")).each((function(t){var n=o.select(this);n.select(".label").remove();var a=e.edge(t),s=i(n,e.edge(t),0,0).classed("label",!0),c=s.node().getBBox();a.labelId&&s.attr("id",a.labelId),r.has(a,"width")||(a.width=c.width),r.has(a,"height")||(a.height=c.height)})),n=s.exit?s.exit():s.selectAll(null);return a.applyTransition(n,e).style("opacity",0).remove(),s}},function(t,e,n){"use strict";var r=n(44),i=n(165),a=n(15),o=n(31);function s(t,e){var n=(o.line||o.svg.line)().x((function(t){return t.x})).y((function(t){return t.y}));return(n.curve||n.interpolate)(t.curve),n(e)}t.exports=function(t,e,n){var c=t.selectAll("g.edgePath").data(e.edges(),(function(t){return a.edgeToId(t)})).classed("update",!0),u=function(t,e){var n=t.enter().append("g").attr("class","edgePath").style("opacity",0);return n.append("path").attr("class","path").attr("d",(function(t){var n=e.edge(t),i=e.node(t.v).elem;return s(n,r.range(n.points.length).map((function(){return e=(t=i).getBBox(),{x:(n=t.ownerSVGElement.getScreenCTM().inverse().multiply(t.getScreenCTM()).translate(e.width/2,e.height/2)).e,y:n.f};var t,e,n})))})),n.append("defs"),n}(c,e);!function(t,e){var n=t.exit();a.applyTransition(n,e).style("opacity",0).remove()}(c,e);var l=void 0!==c.merge?c.merge(u):c;return a.applyTransition(l,e).style("opacity",1),l.each((function(t){var n=o.select(this),r=e.edge(t);r.elem=this,r.id&&n.attr("id",r.id),a.applyClass(n,r.class,(n.classed("update")?"update ":"")+"edgePath")})),l.selectAll("path.path").each((function(t){var n=e.edge(t);n.arrowheadId=r.uniqueId("arrowhead");var c=o.select(this).attr("marker-end",(function(){return"url("+(t=location.href,e=n.arrowheadId,t.split("#")[0]+"#"+e+")");var t,e})).style("fill","none");a.applyTransition(c,e).attr("d",(function(t){return function(t,e){var n=t.edge(e),r=t.node(e.v),a=t.node(e.w),o=n.points.slice(1,n.points.length-1);return o.unshift(i(r,o[0])),o.push(i(a,o[o.length-1])),s(n,o)}(e,t)})),a.applyStyle(c,n.style)})),l.selectAll("defs *").remove(),l.selectAll("defs").each((function(t){var r=e.edge(t);(0,n[r.arrowhead])(o.select(this),r.arrowheadId,r,"arrowhead")})),l}},function(t,e,n){"use strict";var r=n(15),i=n(31);t.exports=function(t,e){function n(t){var n=e.node(t);return"translate("+n.x+","+n.y+")"}t.filter((function(){return!i.select(this).classed("update")})).attr("transform",n),r.applyTransition(t,e).style("opacity",1).attr("transform",n)}},function(t,e,n){"use strict";var r=n(15),i=n(31),a=n(44);t.exports=function(t,e){function n(t){var n=e.edge(t);return a.has(n,"x")?"translate("+n.x+","+n.y+")":""}t.filter((function(){return!i.select(this).classed("update")})).attr("transform",n),r.applyTransition(t,e).style("opacity",1).attr("transform",n)}},function(t,e,n){"use strict";var r=n(15),i=n(31);t.exports=function(t,e){var n=t.filter((function(){return!i.select(this).classed("update")}));function a(t){var n=e.node(t);return"translate("+n.x+","+n.y+")"}n.attr("transform",a),r.applyTransition(t,e).style("opacity",1).attr("transform",a),r.applyTransition(n.selectAll("rect"),e).attr("width",(function(t){return e.node(t).width})).attr("height",(function(t){return e.node(t).height})).attr("x",(function(t){return-e.node(t).width/2})).attr("y",(function(t){return-e.node(t).height/2}))}},function(t,e,n){"use strict";var r=n(168),i=n(97),a=n(166),o=n(167);t.exports={rect:function(t,e,n){var i=t.insert("rect",":first-child").attr("rx",n.rx).attr("ry",n.ry).attr("x",-e.width/2).attr("y",-e.height/2).attr("width",e.width).attr("height",e.height);return n.intersect=function(t){return r(n,t)},i},ellipse:function(t,e,n){var r=e.width/2,a=e.height/2,o=t.insert("ellipse",":first-child").attr("x",-e.width/2).attr("y",-e.height/2).attr("rx",r).attr("ry",a);return n.intersect=function(t){return i(n,r,a,t)},o},circle:function(t,e,n){var r=Math.max(e.width,e.height)/2,i=t.insert("circle",":first-child").attr("x",-e.width/2).attr("y",-e.height/2).attr("r",r);return n.intersect=function(t){return a(n,r,t)},i},diamond:function(t,e,n){var r=e.width*Math.SQRT2/2,i=e.height*Math.SQRT2/2,a=[{x:0,y:-i},{x:-r,y:0},{x:0,y:i},{x:r,y:0}],s=t.insert("polygon",":first-child").attr("points",a.map((function(t){return t.x+","+t.y})).join(" "));return n.intersect=function(t){return o(n,a,t)},s}}},function(t,e,n){var r=n(15);function i(t,e,n,i){var a=t.append("marker").attr("id",e).attr("viewBox","0 0 10 10").attr("refX",9).attr("refY",5).attr("markerUnits","strokeWidth").attr("markerWidth",8).attr("markerHeight",6).attr("orient","auto").append("path").attr("d","M 0 0 L 10 5 L 0 10 z").style("stroke-width",1).style("stroke-dasharray","1,0");r.applyStyle(a,n[i+"Style"]),n[i+"Class"]&&a.attr("class",n[i+"Class"])}t.exports={default:i,normal:i,vee:function(t,e,n,i){var a=t.append("marker").attr("id",e).attr("viewBox","0 0 10 10").attr("refX",9).attr("refY",5).attr("markerUnits","strokeWidth").attr("markerWidth",8).attr("markerHeight",6).attr("orient","auto").append("path").attr("d","M 0 0 L 10 5 L 0 10 L 4 5 z").style("stroke-width",1).style("stroke-dasharray","1,0");r.applyStyle(a,n[i+"Style"]),n[i+"Class"]&&a.attr("class",n[i+"Class"])},undirected:function(t,e,n,i){var a=t.append("marker").attr("id",e).attr("viewBox","0 0 10 10").attr("refX",9).attr("refY",5).attr("markerUnits","strokeWidth").attr("markerWidth",8).attr("markerHeight",6).attr("orient","auto").append("path").attr("d","M 0 5 L 10 5").style("stroke-width",1).style("stroke-dasharray","1,0");r.applyStyle(a,n[i+"Style"]),n[i+"Class"]&&a.attr("class",n[i+"Class"])}}},function(t,e){t.exports="0.6.4"},function(t,e,n){"use strict";n.r(e);var r=n(23),i=n.n(r),a={debug:1,info:2,warn:3,error:4,fatal:5},o={debug:function(){},info:function(){},warn:function(){},error:function(){},fatal:function(){}},s=function(){var t=arguments.length>0&&void 0!==arguments[0]?arguments[0]:"fatal";isNaN(t)&&(t=t.toLowerCase(),void 0!==a[t]&&(t=a[t])),o.trace=function(){},o.debug=function(){},o.info=function(){},o.warn=function(){},o.error=function(){},o.fatal=function(){},t<=a.fatal&&(o.fatal=console.error?console.error.bind(console,c("FATAL"),"color: orange"):console.log.bind(console,"",c("FATAL"))),t<=a.error&&(o.error=console.error?console.error.bind(console,c("ERROR"),"color: orange"):console.log.bind(console,"",c("ERROR"))),t<=a.warn&&(o.warn=console.warn?console.warn.bind(console,c("WARN"),"color: orange"):console.log.bind(console,"",c("WARN"))),t<=a.info&&(o.info=console.info?console.info.bind(console,c("INFO"),"color: lightblue"):console.log.bind(console,"",c("INFO"))),t<=a.debug&&(o.debug=console.debug?console.debug.bind(console,c("DEBUG"),"color: lightgreen"):console.log.bind(console,"",c("DEBUG")))},c=function(t){var e=i()().format("ss.SSS");return"%c".concat(e," : ").concat(t," : ")},u=n(0),l="comm",h="decl",f=Math.abs,d=String.fromCharCode;function p(t){return t.trim()}function y(t,e,n){return t.replace(e,n)}function g(t,e){return 0|t.charCodeAt(e)}function m(t,e,n){return t.slice(e,n)}function v(t){return t.length}function b(t){return t.length}function x(t,e){return e.push(t),t}var _=1,k=1,w=0,E=0,T=0,C="";function S(t,e,n,r,i,a,o){return{value:t,root:e,parent:n,type:r,props:i,children:a,line:_,column:k,length:o,return:""}}function A(){return T=E>0?g(C,--E):0,k--,10===T&&(k=1,_--),T}function M(){return T=E<w?g(C,E++):0,k++,10===T&&(k=1,_++),T}function O(){return g(C,E)}function N(){return E}function B(t,e){return m(C,t,e)}function D(t){switch(t){case 0:case 9:case 10:case 13:case 32:return 5;case 33:case 43:case 44:case 47:case 62:case 64:case 126:case 59:case 123:case 125:return 4;case 58:return 3;case 34:case 39:case 40:case 91:return 2;case 41:case 93:return 1}return 0}function L(t){return _=k=1,w=v(C=t),E=0,[]}function I(t){return C="",t}function R(t){return p(B(E-1,function t(e){for(;M();)switch(T){case e:return E;case 34:case 39:return t(34===e||39===e?e:T);case 40:41===e&&t(e);break;case 92:M()}return E}(91===t?t+2:40===t?t+1:t)))}function F(t){for(;(T=O())&&T<33;)M();return D(t)>2||D(T)>3?"":" "}function P(t,e){for(;--e&&M()&&!(T<48||T>102||T>57&&T<65||T>70&&T<97););return B(t,N()+(e<6&&32==O()&&32==M()))}function j(t,e){for(;M()&&t+T!==57&&(t+T!==84||47!==O()););return"/*"+B(e,E-1)+"*"+d(47===t?t:M())}function Y(t){for(;!D(O());)M();return B(t,E)}function z(t){return I(function t(e,n,r,i,a,o,s,c,u){var l=0,h=0,f=s,p=0,g=0,m=0,b=1,_=1,k=1,w=0,E="",T=a,C=o,S=i,B=E;for(;_;)switch(m=w,w=M()){case 34:case 39:case 91:case 40:B+=R(w);break;case 9:case 10:case 13:case 32:B+=F(m);break;case 92:B+=P(N()-1,7);continue;case 47:switch(O()){case 42:case 47:x($(j(M(),N()),n,r),u);break;default:B+="/"}break;case 123*b:c[l++]=v(B)*k;case 125*b:case 59:case 0:switch(w){case 0:case 125:_=0;case 59+h:g>0&&v(B)-f&&x(g>32?q(B+";",i,r,f-1):q(y(B," ","")+";",i,r,f-2),u);break;case 59:B+=";";default:if(x(S=U(B,n,r,l,h,a,c,E,T=[],C=[],f),o),123===w)if(0===h)t(B,n,S,S,T,o,f,c,C);else switch(p){case 100:case 109:case 115:t(e,S,S,i&&x(U(e,S,S,0,0,a,c,E,a,T=[],f),C),a,C,f,c,i?T:C);break;default:t(B,S,S,S,[""],C,f,c,C)}}l=h=g=0,b=k=1,E=B="",f=s;break;case 58:f=1+v(B),g=m;default:if(b<1)if(123==w)--b;else if(125==w&&0==b++&&125==A())continue;switch(B+=d(w),w*b){case 38:k=h>0?1:(B+="\f",-1);break;case 44:c[l++]=(v(B)-1)*k,k=1;break;case 64:45===O()&&(B+=R(M())),p=O(),h=v(E=B+=Y(N())),w++;break;case 45:45===m&&2==v(B)&&(b=0)}}return o}("",null,null,null,[""],t=L(t),0,[0],t))}function U(t,e,n,r,i,a,o,s,c,u,l){for(var h=i-1,d=0===i?a:[""],g=b(d),v=0,x=0,_=0;v<r;++v)for(var k=0,w=m(t,h+1,h=f(x=o[v])),E=t;k<g;++k)(E=p(x>0?d[k]+" "+w:y(w,/&\f/g,d[k])))&&(c[_++]=E);return S(t,e,n,0===i?"rule":s,c,u,l)}function $(t,e,n){return S(t,e,n,l,d(T),m(t,2,-2),0)}function q(t,e,n,r){return S(t,e,n,h,m(t,0,r),m(t,r+1,-1),r)}function W(t,e){for(var n="",r=b(t),i=0;i<r;i++)n+=e(t[i],i,t,e)||"";return n}function H(t,e,n,r){switch(t.type){case"@import":case h:return t.return=t.return||t.value;case l:return"";case"rule":t.value=t.props.join(",")}return v(n=W(t.children,r))?t.return=t.value+"{"+n+"}":""}var V=n(37),G=n(72),X=n(169),Z=n.n(X),K=function(t){for(var e="",n=0;n>=0;){if(!((n=t.indexOf("<script"))>=0)){e+=t,n=-1;break}e+=t.substr(0,n),(n=(t=t.substr(n+1)).indexOf("<\/script>"))>=0&&(n+=9,t=t.substr(n))}return e=(e=(e=e.replace(/javascript:/g,"#")).replace(/onerror=/g,"onerror:")).replace(/<iframe/g,"")},Q=/<br\s*\/?>/gi,J=function(t){return t.replace(/#br#/g,"<br/>")},tt=function(t){return t.replace(Q,"#br#")},et=function(t){return"false"!==t&&!1!==t},nt={getRows:function(t){if(!t)return 1;var e=tt(t);return(e=e.replace(/\\n/g,"#br#")).split("#br#")},sanitizeText:function(t,e){return function(t,e){var n=t,r=!0;if(!e.flowchart||!1!==e.flowchart.htmlLabels&&"false"!==e.flowchart.htmlLabels||(r=!1),r){var i=e.securityLevel;"antiscript"===i?n=K(n):"loose"!==i&&(n=(n=(n=tt(n)).replace(/</g,"&lt;").replace(/>/g,"&gt;")).replace(/=/g,"&equals;"),n=J(n))}return n}(Z.a.sanitize(t),e)},hasBreaks:function(t){return/<br\s*[/]?>/gi.test(t)},splitBreaks:function(t){return t.split(/<br\s*[/]?>/gi)},lineBreakRegex:Q,removeScript:K,getUrl:function(t){var e="";return t&&(e=(e=(e=window.location.protocol+"//"+window.location.host+window.location.pathname+window.location.search).replace(/\(/g,"\\(")).replace(/\)/g,"\\)")),e},evaluate:et};function rt(t,e){for(var n=0;n<e.length;n++){var r=e[n];r.enumerable=r.enumerable||!1,r.configurable=!0,"value"in r&&(r.writable=!0),Object.defineProperty(t,r.key,r)}}function it(t,e){var n="undefined"!=typeof Symbol&&t[Symbol.iterator]||t["@@iterator"];if(!n){if(Array.isArray(t)||(n=st(t))||e&&t&&"number"==typeof t.length){n&&(t=n);var r=0,i=function(){};return{s:i,n:function(){return r>=t.length?{done:!0}:{done:!1,value:t[r++]}},e:function(t){throw t},f:i}}throw new TypeError("Invalid attempt to iterate non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}var a,o=!0,s=!1;return{s:function(){n=n.call(t)},n:function(){var t=n.next();return o=t.done,t},e:function(t){s=!0,a=t},f:function(){try{o||null==n.return||n.return()}finally{if(s)throw a}}}}function at(t){return(at="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}function ot(t){return function(t){if(Array.isArray(t))return ct(t)}(t)||function(t){if("undefined"!=typeof Symbol&&null!=t[Symbol.iterator]||null!=t["@@iterator"])return Array.from(t)}(t)||st(t)||function(){throw new TypeError("Invalid attempt to spread non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}()}function st(t,e){if(t){if("string"==typeof t)return ct(t,e);var n=Object.prototype.toString.call(t).slice(8,-1);return"Object"===n&&t.constructor&&(n=t.constructor.name),"Map"===n||"Set"===n?Array.from(t):"Arguments"===n||/^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(n)?ct(t,e):void 0}}function ct(t,e){(null==e||e>t.length)&&(e=t.length);for(var n=0,r=new Array(e);n<e;n++)r[n]=t[n];return r}var ut={curveBasis:u.curveBasis,curveBasisClosed:u.curveBasisClosed,curveBasisOpen:u.curveBasisOpen,curveLinear:u.curveLinear,curveLinearClosed:u.curveLinearClosed,curveMonotoneX:u.curveMonotoneX,curveMonotoneY:u.curveMonotoneY,curveNatural:u.curveNatural,curveStep:u.curveStep,curveStepAfter:u.curveStepAfter,curveStepBefore:u.curveStepBefore},lt=/[%]{2}[{]\s*(?:(?:(\w+)\s*:|(\w+))\s*(?:(?:(\w+))|((?:(?![}][%]{2}).|\r?\n)*))?\s*)(?:[}][%]{2})?/gi,ht=/\s*(?:(?:(\w+)(?=:):|(\w+))\s*(?:(?:(\w+))|((?:(?![}][%]{2}).|\r?\n)*))?\s*)(?:[}][%]{2})?/gi,ft=/\s*%%.*\n/gm,dt=function(t){var e=arguments.length>1&&void 0!==arguments[1]?arguments[1]:null;try{var n=new RegExp("[%]{2}(?![{]".concat(ht.source,")(?=[}][%]{2}).*\n"),"ig");t=t.trim().replace(n,"").replace(/'/gm,'"'),o.debug("Detecting diagram directive".concat(null!==e?" type:"+e:""," based on the text:").concat(t));for(var r,i=[];null!==(r=lt.exec(t));)if(r.index===lt.lastIndex&&lt.lastIndex++,r&&!e||e&&r[1]&&r[1].match(e)||e&&r[2]&&r[2].match(e)){var a=r[1]?r[1]:r[2],s=r[3]?r[3].trim():r[4]?JSON.parse(r[4].trim()):null;i.push({type:a,args:s})}return 0===i.length&&i.push({type:t,args:null}),1===i.length?i[0]:i}catch(n){return o.error("ERROR: ".concat(n.message," - Unable to parse directive\n      ").concat(null!==e?" type:"+e:""," based on the text:").concat(t)),{type:null,args:null}}},pt=function(t,e){return t=t.replace(lt,"").replace(ft,"\n"),o.debug("Detecting diagram type based on the text "+t),t.match(/^\s*sequenceDiagram/)?"sequence":t.match(/^\s*gantt/)?"gantt":t.match(/^\s*classDiagram-v2/)?"classDiagram":t.match(/^\s*classDiagram/)?e&&e.class&&"dagre-wrapper"===e.class.defaultRenderer?"classDiagram":"class":t.match(/^\s*stateDiagram-v2/)?"stateDiagram":t.match(/^\s*stateDiagram/)?e&&e.class&&"dagre-wrapper"===e.state.defaultRenderer?"stateDiagram":"state":t.match(/^\s*gitGraph/)?"git":t.match(/^\s*flowchart/)?"flowchart-v2":t.match(/^\s*info/)?"info":t.match(/^\s*pie/)?"pie":t.match(/^\s*erDiagram/)?"er":t.match(/^\s*journey/)?"journey":t.match(/^\s*requirement/)||t.match(/^\s*requirementDiagram/)?"requirement":e&&e.flowchart&&"dagre-wrapper"===e.flowchart.defaultRenderer?"flowchart-v2":"flowchart"},yt=function(t,e){var n={};return function(){for(var r=arguments.length,i=new Array(r),a=0;a<r;a++)i[a]=arguments[a];var o=e?e.apply(void 0,i):i[0];if(o in n)return n[o];var s=t.apply(void 0,i);return n[o]=s,s}},gt=function(t,e){if(!t)return e;var n="curve".concat(t.charAt(0).toUpperCase()+t.slice(1));return ut[n]||e},mt=function(t,e){return t&&e?Math.sqrt(Math.pow(e.x-t.x,2)+Math.pow(e.y-t.y,2)):0},vt=function(t){for(var e="",n="",r=0;r<t.length;r++)void 0!==t[r]&&(t[r].startsWith("color:")||t[r].startsWith("text-align:")?n=n+t[r]+";":e=e+t[r]+";");return{style:e,labelStyle:n}},bt=0,xt=function(){return bt++,"id-"+Math.random().toString(36).substr(2,12)+"-"+bt};var _t,kt=function(t){return function(t){for(var e="",n="0123456789abcdef".length,r=0;r<t;r++)e+="0123456789abcdef".charAt(Math.floor(Math.random()*n));return e}(t.length)},wt=function t(e,n,r){var i=Object.assign({depth:2,clobber:!1},r),a=i.depth,o=i.clobber;return Array.isArray(n)&&!Array.isArray(e)?(n.forEach((function(n){return t(e,n,r)})),e):Array.isArray(n)&&Array.isArray(e)?(n.forEach((function(t){-1===e.indexOf(t)&&e.push(t)})),e):void 0===e||a<=0?null!=e&&"object"===at(e)&&"object"===at(n)?Object.assign(e,n):n:(void 0!==n&&"object"===at(e)&&"object"===at(n)&&Object.keys(n).forEach((function(r){"object"!==at(n[r])||void 0!==e[r]&&"object"!==at(e[r])?(o||"object"!==at(e[r])&&"object"!==at(n[r]))&&(e[r]=n[r]):(void 0===e[r]&&(e[r]=Array.isArray(n[r])?[]:{}),e[r]=t(e[r],n[r],{depth:a-1,clobber:o}))})),e)},Et=function(t,e){var n=e.text.replace(nt.lineBreakRegex," "),r=t.append("text");r.attr("x",e.x),r.attr("y",e.y),r.style("text-anchor",e.anchor),r.style("font-family",e.fontFamily),r.style("font-size",e.fontSize),r.style("font-weight",e.fontWeight),r.attr("fill",e.fill),void 0!==e.class&&r.attr("class",e.class);var i=r.append("tspan");return i.attr("x",e.x+2*e.textMargin),i.attr("fill",e.fill),i.text(n),r},Tt=yt((function(t,e,n){if(!t)return t;if(n=Object.assign({fontSize:12,fontWeight:400,fontFamily:"Arial",joinWith:"<br/>"},n),nt.lineBreakRegex.test(t))return t;var r=t.split(" "),i=[],a="";return r.forEach((function(t,o){var s=St("".concat(t," "),n),c=St(a,n);if(s>e){var u=Ct(t,e,"-",n),l=u.hyphenatedStrings,h=u.remainingWord;i.push.apply(i,[a].concat(ot(l))),a=h}else c+s>=e?(i.push(a),a=t):a=[a,t].filter(Boolean).join(" ");o+1===r.length&&i.push(a)})),i.filter((function(t){return""!==t})).join(n.joinWith)}),(function(t,e,n){return"".concat(t,"-").concat(e,"-").concat(n.fontSize,"-").concat(n.fontWeight,"-").concat(n.fontFamily,"-").concat(n.joinWith)})),Ct=yt((function(t,e){var n=arguments.length>2&&void 0!==arguments[2]?arguments[2]:"-",r=arguments.length>3?arguments[3]:void 0;r=Object.assign({fontSize:12,fontWeight:400,fontFamily:"Arial",margin:0},r);var i=t.split(""),a=[],o="";return i.forEach((function(t,s){var c="".concat(o).concat(t);if(St(c,r)>=e){var u=s+1,l=i.length===u,h="".concat(c).concat(n);a.push(l?c:h),o=""}else o=c})),{hyphenatedStrings:a,remainingWord:o}}),(function(t,e){var n=arguments.length>2&&void 0!==arguments[2]?arguments[2]:"-",r=arguments.length>3?arguments[3]:void 0;return"".concat(t,"-").concat(e,"-").concat(n,"-").concat(r.fontSize,"-").concat(r.fontWeight,"-").concat(r.fontFamily)})),St=function(t,e){return e=Object.assign({fontSize:12,fontWeight:400,fontFamily:"Arial"},e),At(t,e).width},At=yt((function(t,e){var n=e=Object.assign({fontSize:12,fontWeight:400,fontFamily:"Arial"},e),r=n.fontSize,i=n.fontFamily,a=n.fontWeight;if(!t)return{width:0,height:0};var o=["sans-serif",i],s=t.split(nt.lineBreakRegex),c=[],l=Object(u.select)("body");if(!l.remove)return{width:0,height:0,lineHeight:0};for(var h=l.append("svg"),f=0,d=o;f<d.length;f++){var p,y=d[f],g=0,m={width:0,height:0,lineHeight:0},v=it(s);try{for(v.s();!(p=v.n()).done;){var b=p.value,x={x:0,y:0,fill:void 0,anchor:"start",style:"#666",width:100,height:100,textMargin:0,rx:0,ry:0,valign:void 0};x.text=b;var _=Et(h,x).style("font-size",r).style("font-weight",a).style("font-family",y),k=(_._groups||_)[0][0].getBBox();m.width=Math.round(Math.max(m.width,k.width)),g=Math.round(k.height),m.height+=g,m.lineHeight=Math.round(Math.max(m.lineHeight,g))}}catch(t){v.e(t)}finally{v.f()}c.push(m)}return h.remove(),c[isNaN(c[1].height)||isNaN(c[1].width)||isNaN(c[1].lineHeight)||c[0].height>c[1].height&&c[0].width>c[1].width&&c[0].lineHeight>c[1].lineHeight?0:1]}),(function(t,e){return"".concat(t,"-").concat(e.fontSize,"-").concat(e.fontWeight,"-").concat(e.fontFamily)})),Mt=function(t,e,n){var r=new Map;return r.set("height",t),n?(r.set("width","100%"),r.set("style","max-width: ".concat(e,"px;"))):r.set("width",e),r},Ot=function(t,e,n,r){!function(t,e){var n,r=it(e);try{for(r.s();!(n=r.n()).done;){var i=n.value;t.attr(i[0],i[1])}}catch(t){r.e(t)}finally{r.f()}}(t,Mt(e,n,r))},Nt={assignWithDepth:wt,wrapLabel:Tt,calculateTextHeight:function(t,e){return e=Object.assign({fontSize:12,fontWeight:400,fontFamily:"Arial",margin:15},e),At(t,e).height},calculateTextWidth:St,calculateTextDimensions:At,calculateSvgSizeAttrs:Mt,configureSvgSize:Ot,detectInit:function(t,e){var n=dt(t,/(?:init\b)|(?:initialize\b)/),r={};if(Array.isArray(n)){var i=n.map((function(t){return t.args}));r=wt(r,ot(i))}else r=n.args;if(r){var a=pt(t,e);["config"].forEach((function(t){void 0!==r[t]&&("flowchart-v2"===a&&(a="flowchart"),r[a]=r[t],delete r[t])}))}return r},detectDirective:dt,detectType:pt,isSubstringInArray:function(t,e){for(var n=0;n<e.length;n++)if(e[n].match(t))return n;return-1},interpolateToCurve:gt,calcLabelPosition:function(t){return function(t){var e,n=0;t.forEach((function(t){n+=mt(t,e),e=t}));var r=n/2,i=void 0;return e=void 0,t.forEach((function(t){if(e&&!i){var n=mt(t,e);if(n<r)r-=n;else{var a=r/n;a<=0&&(i=e),a>=1&&(i={x:t.x,y:t.y}),a>0&&a<1&&(i={x:(1-a)*e.x+a*t.x,y:(1-a)*e.y+a*t.y})}}e=t})),i}(t)},calcCardinalityPosition:function(t,e,n){var r;o.info("our points",e),e[0]!==n&&(e=e.reverse()),e.forEach((function(t){mt(t,r),r=t}));var i,a=25;r=void 0,e.forEach((function(t){if(r&&!i){var e=mt(t,r);if(e<a)a-=e;else{var n=a/e;n<=0&&(i=r),n>=1&&(i={x:t.x,y:t.y}),n>0&&n<1&&(i={x:(1-n)*r.x+n*t.x,y:(1-n)*r.y+n*t.y})}}r=t}));var s=t?10:5,c=Math.atan2(e[0].y-i.y,e[0].x-i.x),u={x:0,y:0};return u.x=Math.sin(c)*s+(e[0].x+i.x)/2,u.y=-Math.cos(c)*s+(e[0].y+i.y)/2,u},calcTerminalLabelPosition:function(t,e,n){var r,i=JSON.parse(JSON.stringify(n));o.info("our points",i),"start_left"!==e&&"start_right"!==e&&(i=i.reverse()),i.forEach((function(t){mt(t,r),r=t}));var a,s=25;r=void 0,i.forEach((function(t){if(r&&!a){var e=mt(t,r);if(e<s)s-=e;else{var n=s/e;n<=0&&(a=r),n>=1&&(a={x:t.x,y:t.y}),n>0&&n<1&&(a={x:(1-n)*r.x+n*t.x,y:(1-n)*r.y+n*t.y})}}r=t}));var c=10,u=Math.atan2(i[0].y-a.y,i[0].x-a.x),l={x:0,y:0};return l.x=Math.sin(u)*c+(i[0].x+a.x)/2,l.y=-Math.cos(u)*c+(i[0].y+a.y)/2,"start_left"===e&&(l.x=Math.sin(u+Math.PI)*c+(i[0].x+a.x)/2,l.y=-Math.cos(u+Math.PI)*c+(i[0].y+a.y)/2),"end_right"===e&&(l.x=Math.sin(u-Math.PI)*c+(i[0].x+a.x)/2-5,l.y=-Math.cos(u-Math.PI)*c+(i[0].y+a.y)/2-5),"end_left"===e&&(l.x=Math.sin(u)*c+(i[0].x+a.x)/2-5,l.y=-Math.cos(u)*c+(i[0].y+a.y)/2-5),l},formatUrl:function(t,e){var n=t.trim();if(n)return"loose"!==e.securityLevel?Object(G.sanitizeUrl)(n):n},getStylesFromArray:vt,generateId:xt,random:kt,memoize:yt,runFunc:function(t){for(var e,n=t.split("."),r=n.length-1,i=n[r],a=window,o=0;o<r;o++)if(!(a=a[n[o]]))return;for(var s=arguments.length,c=new Array(s>1?s-1:0),u=1;u<s;u++)c[u-1]=arguments[u];(e=a)[i].apply(e,c)},entityDecode:function(t){return _t=_t||document.createElement("div"),t=escape(t).replace(/%26/g,"&").replace(/%23/g,"#").replace(/%3B/g,";"),_t.innerHTML=t,unescape(_t.textContent)},initIdGeneratior:function(){function t(e,n){!function(t,e){if(!(t instanceof e))throw new TypeError("Cannot call a class as a function")}(this,t),this.deterministic=e,this.seed=n,this.count=n?n.length:0}var e,n,r;return e=t,(n=[{key:"next",value:function(){return this.deterministic?this.count++:Date.now()}}])&&rt(e.prototype,n),r&&rt(e,r),t}()},Bt=n(1),Dt=function(t,e){return e?Object(Bt.adjust)(t,{s:-40,l:10}):Object(Bt.adjust)(t,{s:-40,l:-10})};function Lt(t){return(Lt="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}function It(t,e){for(var n=0;n<e.length;n++){var r=e[n];r.enumerable=r.enumerable||!1,r.configurable=!0,"value"in r&&(r.writable=!0),Object.defineProperty(t,r.key,r)}}var Rt=function(){function t(){!function(t,e){if(!(t instanceof e))throw new TypeError("Cannot call a class as a function")}(this,t),this.background="#f4f4f4",this.darkMode=!1,this.primaryColor="#fff4dd",this.noteBkgColor="#fff5ad",this.noteTextColor="#333",this.fontFamily='"trebuchet ms", verdana, arial, sans-serif',this.fontSize="16px"}var e,n,r;return e=t,(n=[{key:"updateColors",value:function(){this.primaryTextColor=this.primaryTextColor||(this.darkMode?"#ddd":"#333"),this.secondaryColor=this.secondaryColor||Object(Bt.adjust)(this.primaryColor,{h:-120}),this.tertiaryColor=this.tertiaryColor||Object(Bt.adjust)(this.primaryColor,{h:180,l:5}),this.primaryBorderColor=this.primaryBorderColor||Dt(this.primaryColor,this.darkMode),this.secondaryBorderColor=this.secondaryBorderColor||Dt(this.secondaryColor,this.darkMode),this.tertiaryBorderColor=this.tertiaryBorderColor||Dt(this.tertiaryColor,this.darkMode),this.noteBorderColor=this.noteBorderColor||Dt(this.noteBkgColor,this.darkMode),this.noteBkgColor=this.noteBkgColor||"#fff5ad",this.noteTextColor=this.noteTextColor||"#333",this.secondaryTextColor=this.secondaryTextColor||Object(Bt.invert)(this.secondaryColor),this.tertiaryTextColor=this.tertiaryTextColor||Object(Bt.invert)(this.tertiaryColor),this.lineColor=this.lineColor||Object(Bt.invert)(this.background),this.textColor=this.textColor||this.primaryTextColor,this.nodeBkg=this.nodeBkg||this.primaryColor,this.mainBkg=this.mainBkg||this.primaryColor,this.nodeBorder=this.nodeBorder||this.primaryBorderColor,this.clusterBkg=this.clusterBkg||this.tertiaryColor,this.clusterBorder=this.clusterBorder||this.tertiaryBorderColor,this.defaultLinkColor=this.defaultLinkColor||this.lineColor,this.titleColor=this.titleColor||this.tertiaryTextColor,this.edgeLabelBackground=this.edgeLabelBackground||(this.darkMode?Object(Bt.darken)(this.secondaryColor,30):this.secondaryColor),this.nodeTextColor=this.nodeTextColor||this.primaryTextColor,this.actorBorder=this.actorBorder||this.primaryBorderColor,this.actorBkg=this.actorBkg||this.mainBkg,this.actorTextColor=this.actorTextColor||this.primaryTextColor,this.actorLineColor=this.actorLineColor||"grey",this.labelBoxBkgColor=this.labelBoxBkgColor||this.actorBkg,this.signalColor=this.signalColor||this.textColor,this.signalTextColor=this.signalTextColor||this.textColor,this.labelBoxBorderColor=this.labelBoxBorderColor||this.actorBorder,this.labelTextColor=this.labelTextColor||this.actorTextColor,this.loopTextColor=this.loopTextColor||this.actorTextColor,this.activationBorderColor=this.activationBorderColor||Object(Bt.darken)(this.secondaryColor,10),this.activationBkgColor=this.activationBkgColor||this.secondaryColor,this.sequenceNumberColor=this.sequenceNumberColor||Object(Bt.invert)(this.lineColor),this.sectionBkgColor=this.sectionBkgColor||this.tertiaryColor,this.altSectionBkgColor=this.altSectionBkgColor||"white",this.sectionBkgColor=this.sectionBkgColor||this.secondaryColor,this.sectionBkgColor2=this.sectionBkgColor2||this.primaryColor,this.taskBorderColor=this.taskBorderColor||this.primaryBorderColor,this.taskBkgColor=this.taskBkgColor||this.primaryColor,this.activeTaskBorderColor=this.activeTaskBorderColor||this.primaryColor,this.activeTaskBkgColor=this.activeTaskBkgColor||Object(Bt.lighten)(this.primaryColor,23),this.gridColor=this.gridColor||"lightgrey",this.doneTaskBkgColor=this.doneTaskBkgColor||"lightgrey",this.doneTaskBorderColor=this.doneTaskBorderColor||"grey",this.critBorderColor=this.critBorderColor||"#ff8888",this.critBkgColor=this.critBkgColor||"red",this.todayLineColor=this.todayLineColor||"red",this.taskTextColor=this.taskTextColor||this.textColor,this.taskTextOutsideColor=this.taskTextOutsideColor||this.textColor,this.taskTextLightColor=this.taskTextLightColor||this.textColor,this.taskTextColor=this.taskTextColor||this.primaryTextColor,this.taskTextDarkColor=this.taskTextDarkColor||this.textColor,this.taskTextClickableColor=this.taskTextClickableColor||"#003163",this.transitionColor=this.transitionColor||this.lineColor,this.transitionLabelColor=this.transitionLabelColor||this.textColor,this.stateLabelColor=this.stateLabelColor||this.stateBkg||this.primaryTextColor,this.stateBkg=this.stateBkg||this.mainBkg,this.labelBackgroundColor=this.labelBackgroundColor||this.stateBkg,this.compositeBackground=this.compositeBackground||this.background||this.tertiaryColor,this.altBackground=this.altBackground||this.tertiaryColor,this.compositeTitleBackground=this.compositeTitleBackground||this.mainBkg,this.compositeBorder=this.compositeBorder||this.nodeBorder,this.innerEndBackground=this.nodeBorder,this.errorBkgColor=this.errorBkgColor||this.tertiaryColor,this.errorTextColor=this.errorTextColor||this.tertiaryTextColor,this.transitionColor=this.transitionColor||this.lineColor,this.specialStateColor=this.lineColor,this.classText=this.classText||this.textColor,this.fillType0=this.fillType0||this.primaryColor,this.fillType1=this.fillType1||this.secondaryColor,this.fillType2=this.fillType2||Object(Bt.adjust)(this.primaryColor,{h:64}),this.fillType3=this.fillType3||Object(Bt.adjust)(this.secondaryColor,{h:64}),this.fillType4=this.fillType4||Object(Bt.adjust)(this.primaryColor,{h:-64}),this.fillType5=this.fillType5||Object(Bt.adjust)(this.secondaryColor,{h:-64}),this.fillType6=this.fillType6||Object(Bt.adjust)(this.primaryColor,{h:128}),this.fillType7=this.fillType7||Object(Bt.adjust)(this.secondaryColor,{h:128}),this.pie1=this.pie1||this.primaryColor,this.pie2=this.pie2||this.secondaryColor,this.pie3=this.pie3||this.tertiaryColor,this.pie4=this.pie4||Object(Bt.adjust)(this.primaryColor,{l:-10}),this.pie5=this.pie5||Object(Bt.adjust)(this.secondaryColor,{l:-10}),this.pie6=this.pie6||Object(Bt.adjust)(this.tertiaryColor,{l:-10}),this.pie7=this.pie7||Object(Bt.adjust)(this.primaryColor,{h:60,l:-10}),this.pie8=this.pie8||Object(Bt.adjust)(this.primaryColor,{h:-60,l:-10}),this.pie9=this.pie9||Object(Bt.adjust)(this.primaryColor,{h:120,l:0}),this.pie10=this.pie10||Object(Bt.adjust)(this.primaryColor,{h:60,l:-20}),this.pie11=this.pie11||Object(Bt.adjust)(this.primaryColor,{h:-60,l:-20}),this.pie12=this.pie12||Object(Bt.adjust)(this.primaryColor,{h:120,l:-10}),this.pieTitleTextSize=this.pieTitleTextSize||"25px",this.pieTitleTextColor=this.pieTitleTextColor||this.taskTextDarkColor,this.pieSectionTextSize=this.pieSectionTextSize||"17px",this.pieSectionTextColor=this.pieSectionTextColor||this.textColor,this.pieLegendTextSize=this.pieLegendTextSize||"17px",this.pieLegendTextColor=this.pieLegendTextColor||this.taskTextDarkColor,this.pieStrokeColor=this.pieStrokeColor||"black",this.pieStrokeWidth=this.pieStrokeWidth||"2px",this.pieOpacity=this.pieOpacity||"0.7",this.requirementBackground=this.requirementBackground||this.primaryColor,this.requirementBorderColor=this.requirementBorderColor||this.primaryBorderColor,this.requirementBorderSize=this.requirementBorderSize||this.primaryBorderColor,this.requirementTextColor=this.requirementTextColor||this.primaryTextColor,this.relationColor=this.relationColor||this.lineColor,this.relationLabelBackground=this.relationLabelBackground||(this.darkMode?Object(Bt.darken)(this.secondaryColor,30):this.secondaryColor),this.relationLabelColor=this.relationLabelColor||this.actorTextColor}},{key:"calculate",value:function(t){var e=this;if("object"===Lt(t)){var n=Object.keys(t);n.forEach((function(n){e[n]=t[n]})),this.updateColors(),n.forEach((function(n){e[n]=t[n]}))}else this.updateColors()}}])&&It(e.prototype,n),r&&It(e,r),t}();function Ft(t){return(Ft="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}function Pt(t,e){for(var n=0;n<e.length;n++){var r=e[n];r.enumerable=r.enumerable||!1,r.configurable=!0,"value"in r&&(r.writable=!0),Object.defineProperty(t,r.key,r)}}var jt=function(){function t(){!function(t,e){if(!(t instanceof e))throw new TypeError("Cannot call a class as a function")}(this,t),this.background="#333",this.primaryColor="#1f2020",this.secondaryColor=Object(Bt.lighten)(this.primaryColor,16),this.tertiaryColor=Object(Bt.adjust)(this.primaryColor,{h:-160}),this.primaryBorderColor=Dt(this.primaryColor,this.darkMode),this.secondaryBorderColor=Dt(this.secondaryColor,this.darkMode),this.tertiaryBorderColor=Dt(this.tertiaryColor,this.darkMode),this.primaryTextColor=Object(Bt.invert)(this.primaryColor),this.secondaryTextColor=Object(Bt.invert)(this.secondaryColor),this.tertiaryTextColor=Object(Bt.invert)(this.tertiaryColor),this.lineColor=Object(Bt.invert)(this.background),this.textColor=Object(Bt.invert)(this.background),this.mainBkg="#1f2020",this.secondBkg="calculated",this.mainContrastColor="lightgrey",this.darkTextColor=Object(Bt.lighten)(Object(Bt.invert)("#323D47"),10),this.lineColor="calculated",this.border1="#81B1DB",this.border2=Object(Bt.rgba)(255,255,255,.25),this.arrowheadColor="calculated",this.fontFamily='"trebuchet ms", verdana, arial, sans-serif',this.fontSize="16px",this.labelBackground="#181818",this.textColor="#ccc",this.nodeBkg="calculated",this.nodeBorder="calculated",this.clusterBkg="calculated",this.clusterBorder="calculated",this.defaultLinkColor="calculated",this.titleColor="#F9FFFE",this.edgeLabelBackground="calculated",this.actorBorder="calculated",this.actorBkg="calculated",this.actorTextColor="calculated",this.actorLineColor="calculated",this.signalColor="calculated",this.signalTextColor="calculated",this.labelBoxBkgColor="calculated",this.labelBoxBorderColor="calculated",this.labelTextColor="calculated",this.loopTextColor="calculated",this.noteBorderColor="calculated",this.noteBkgColor="#fff5ad",this.noteTextColor="calculated",this.activationBorderColor="calculated",this.activationBkgColor="calculated",this.sequenceNumberColor="black",this.sectionBkgColor=Object(Bt.darken)("#EAE8D9",30),this.altSectionBkgColor="calculated",this.sectionBkgColor2="#EAE8D9",this.taskBorderColor=Object(Bt.rgba)(255,255,255,70),this.taskBkgColor="calculated",this.taskTextColor="calculated",this.taskTextLightColor="calculated",this.taskTextOutsideColor="calculated",this.taskTextClickableColor="#003163",this.activeTaskBorderColor=Object(Bt.rgba)(255,255,255,50),this.activeTaskBkgColor="#81B1DB",this.gridColor="calculated",this.doneTaskBkgColor="calculated",this.doneTaskBorderColor="grey",this.critBorderColor="#E83737",this.critBkgColor="#E83737",this.taskTextDarkColor="calculated",this.todayLineColor="#DB5757",this.labelColor="calculated",this.errorBkgColor="#a44141",this.errorTextColor="#ddd"}var e,n,r;return e=t,(n=[{key:"updateColors",value:function(){this.secondBkg=Object(Bt.lighten)(this.mainBkg,16),this.lineColor=this.mainContrastColor,this.arrowheadColor=this.mainContrastColor,this.nodeBkg=this.mainBkg,this.nodeBorder=this.border1,this.clusterBkg=this.secondBkg,this.clusterBorder=this.border2,this.defaultLinkColor=this.lineColor,this.edgeLabelBackground=Object(Bt.lighten)(this.labelBackground,25),this.actorBorder=this.border1,this.actorBkg=this.mainBkg,this.actorTextColor=this.mainContrastColor,this.actorLineColor=this.mainContrastColor,this.signalColor=this.mainContrastColor,this.signalTextColor=this.mainContrastColor,this.labelBoxBkgColor=this.actorBkg,this.labelBoxBorderColor=this.actorBorder,this.labelTextColor=this.mainContrastColor,this.loopTextColor=this.mainContrastColor,this.noteBorderColor=this.secondaryBorderColor,this.noteBkgColor=this.secondBkg,this.noteTextColor=this.secondaryTextColor,this.activationBorderColor=this.border1,this.activationBkgColor=this.secondBkg,this.altSectionBkgColor=this.background,this.taskBkgColor=Object(Bt.lighten)(this.mainBkg,23),this.taskTextColor=this.darkTextColor,this.taskTextLightColor=this.mainContrastColor,this.taskTextOutsideColor=this.taskTextLightColor,this.gridColor=this.mainContrastColor,this.doneTaskBkgColor=this.mainContrastColor,this.taskTextDarkColor=this.darkTextColor,this.transitionColor=this.transitionColor||this.lineColor,this.transitionLabelColor=this.transitionLabelColor||this.textColor,this.stateLabelColor=this.stateLabelColor||this.stateBkg||this.primaryTextColor,this.stateBkg=this.stateBkg||this.mainBkg,this.labelBackgroundColor=this.labelBackgroundColor||this.stateBkg,this.compositeBackground=this.compositeBackground||this.background||this.tertiaryColor,this.altBackground=this.altBackground||"#555",this.compositeTitleBackground=this.compositeTitleBackground||this.mainBkg,this.compositeBorder=this.compositeBorder||this.nodeBorder,this.innerEndBackground=this.primaryBorderColor,this.specialStateColor="#f4f4f4",this.errorBkgColor=this.errorBkgColor||this.tertiaryColor,this.errorTextColor=this.errorTextColor||this.tertiaryTextColor,this.fillType0=this.primaryColor,this.fillType1=this.secondaryColor,this.fillType2=Object(Bt.adjust)(this.primaryColor,{h:64}),this.fillType3=Object(Bt.adjust)(this.secondaryColor,{h:64}),this.fillType4=Object(Bt.adjust)(this.primaryColor,{h:-64}),this.fillType5=Object(Bt.adjust)(this.secondaryColor,{h:-64}),this.fillType6=Object(Bt.adjust)(this.primaryColor,{h:128}),this.fillType7=Object(Bt.adjust)(this.secondaryColor,{h:128}),this.pie1=this.pie1||"#0b0000",this.pie2=this.pie2||"#4d1037",this.pie3=this.pie3||"#3f5258",this.pie4=this.pie4||"#4f2f1b",this.pie5=this.pie5||"#6e0a0a",this.pie6=this.pie6||"#3b0048",this.pie7=this.pie7||"#995a01",this.pie8=this.pie8||"#154706",this.pie9=this.pie9||"#161722",this.pie10=this.pie10||"#00296f",this.pie11=this.pie11||"#01629c",this.pie12=this.pie12||"#010029",this.pieTitleTextSize=this.pieTitleTextSize||"25px",this.pieTitleTextColor=this.pieTitleTextColor||this.taskTextDarkColor,this.pieSectionTextSize=this.pieSectionTextSize||"17px",this.pieSectionTextColor=this.pieSectionTextColor||this.textColor,this.pieLegendTextSize=this.pieLegendTextSize||"17px",this.pieLegendTextColor=this.pieLegendTextColor||this.taskTextDarkColor,this.pieStrokeColor=this.pieStrokeColor||"black",this.pieStrokeWidth=this.pieStrokeWidth||"2px",this.pieOpacity=this.pieOpacity||"0.7",this.classText=this.primaryTextColor,this.requirementBackground=this.requirementBackground||this.primaryColor,this.requirementBorderColor=this.requirementBorderColor||this.primaryBorderColor,this.requirementBorderSize=this.requirementBorderSize||this.primaryBorderColor,this.requirementTextColor=this.requirementTextColor||this.primaryTextColor,this.relationColor=this.relationColor||this.lineColor,this.relationLabelBackground=this.relationLabelBackground||(this.darkMode?Object(Bt.darken)(this.secondaryColor,30):this.secondaryColor),this.relationLabelColor=this.relationLabelColor||this.actorTextColor}},{key:"calculate",value:function(t){var e=this;if("object"===Ft(t)){var n=Object.keys(t);n.forEach((function(n){e[n]=t[n]})),this.updateColors(),n.forEach((function(n){e[n]=t[n]}))}else this.updateColors()}}])&&Pt(e.prototype,n),r&&Pt(e,r),t}();function Yt(t){return(Yt="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}function zt(t,e){for(var n=0;n<e.length;n++){var r=e[n];r.enumerable=r.enumerable||!1,r.configurable=!0,"value"in r&&(r.writable=!0),Object.defineProperty(t,r.key,r)}}var Ut=function(){function t(){!function(t,e){if(!(t instanceof e))throw new TypeError("Cannot call a class as a function")}(this,t),this.background="#f4f4f4",this.primaryColor="#ECECFF",this.secondaryColor=Object(Bt.adjust)(this.primaryColor,{h:120}),this.secondaryColor="#ffffde",this.tertiaryColor=Object(Bt.adjust)(this.primaryColor,{h:-160}),this.primaryBorderColor=Dt(this.primaryColor,this.darkMode),this.secondaryBorderColor=Dt(this.secondaryColor,this.darkMode),this.tertiaryBorderColor=Dt(this.tertiaryColor,this.darkMode),this.primaryTextColor=Object(Bt.invert)(this.primaryColor),this.secondaryTextColor=Object(Bt.invert)(this.secondaryColor),this.tertiaryTextColor=Object(Bt.invert)(this.tertiaryColor),this.lineColor=Object(Bt.invert)(this.background),this.textColor=Object(Bt.invert)(this.background),this.background="white",this.mainBkg="#ECECFF",this.secondBkg="#ffffde",this.lineColor="#333333",this.border1="#9370DB",this.border2="#aaaa33",this.arrowheadColor="#333333",this.fontFamily='"trebuchet ms", verdana, arial, sans-serif',this.fontSize="16px",this.labelBackground="#e8e8e8",this.textColor="#333",this.nodeBkg="calculated",this.nodeBorder="calculated",this.clusterBkg="calculated",this.clusterBorder="calculated",this.defaultLinkColor="calculated",this.titleColor="calculated",this.edgeLabelBackground="calculated",this.actorBorder="calculated",this.actorBkg="calculated",this.actorTextColor="black",this.actorLineColor="grey",this.signalColor="calculated",this.signalTextColor="calculated",this.labelBoxBkgColor="calculated",this.labelBoxBorderColor="calculated",this.labelTextColor="calculated",this.loopTextColor="calculated",this.noteBorderColor="calculated",this.noteBkgColor="#fff5ad",this.noteTextColor="calculated",this.activationBorderColor="#666",this.activationBkgColor="#f4f4f4",this.sequenceNumberColor="white",this.sectionBkgColor="calculated",this.altSectionBkgColor="calculated",this.sectionBkgColor2="calculated",this.taskBorderColor="calculated",this.taskBkgColor="calculated",this.taskTextLightColor="calculated",this.taskTextColor=this.taskTextLightColor,this.taskTextDarkColor="calculated",this.taskTextOutsideColor=this.taskTextDarkColor,this.taskTextClickableColor="calculated",this.activeTaskBorderColor="calculated",this.activeTaskBkgColor="calculated",this.gridColor="calculated",this.doneTaskBkgColor="calculated",this.doneTaskBorderColor="calculated",this.critBorderColor="calculated",this.critBkgColor="calculated",this.todayLineColor="calculated",this.sectionBkgColor=Object(Bt.rgba)(102,102,255,.49),this.altSectionBkgColor="white",this.sectionBkgColor2="#fff400",this.taskBorderColor="#534fbc",this.taskBkgColor="#8a90dd",this.taskTextLightColor="white",this.taskTextColor="calculated",this.taskTextDarkColor="black",this.taskTextOutsideColor="calculated",this.taskTextClickableColor="#003163",this.activeTaskBorderColor="#534fbc",this.activeTaskBkgColor="#bfc7ff",this.gridColor="lightgrey",this.doneTaskBkgColor="lightgrey",this.doneTaskBorderColor="grey",this.critBorderColor="#ff8888",this.critBkgColor="red",this.todayLineColor="red",this.labelColor="black",this.errorBkgColor="#552222",this.errorTextColor="#552222",this.updateColors()}var e,n,r;return e=t,(n=[{key:"updateColors",value:function(){this.nodeBkg=this.mainBkg,this.nodeBorder=this.border1,this.clusterBkg=this.secondBkg,this.clusterBorder=this.border2,this.defaultLinkColor=this.lineColor,this.titleColor=this.textColor,this.edgeLabelBackground=this.labelBackground,this.actorBorder=Object(Bt.lighten)(this.border1,23),this.actorBkg=this.mainBkg,this.labelBoxBkgColor=this.actorBkg,this.signalColor=this.textColor,this.signalTextColor=this.textColor,this.labelBoxBorderColor=this.actorBorder,this.labelTextColor=this.actorTextColor,this.loopTextColor=this.actorTextColor,this.noteBorderColor=this.border2,this.noteTextColor=this.actorTextColor,this.taskTextColor=this.taskTextLightColor,this.taskTextOutsideColor=this.taskTextDarkColor,this.transitionColor=this.transitionColor||this.lineColor,this.transitionLabelColor=this.transitionLabelColor||this.textColor,this.stateLabelColor=this.stateLabelColor||this.stateBkg||this.primaryTextColor,this.stateBkg=this.stateBkg||this.mainBkg,this.labelBackgroundColor=this.labelBackgroundColor||this.stateBkg,this.compositeBackground=this.compositeBackground||this.background||this.tertiaryColor,this.altBackground=this.altBackground||"#f0f0f0",this.compositeTitleBackground=this.compositeTitleBackground||this.mainBkg,this.compositeBorder=this.compositeBorder||this.nodeBorder,this.innerEndBackground=this.nodeBorder,this.specialStateColor=this.lineColor,this.errorBkgColor=this.errorBkgColor||this.tertiaryColor,this.errorTextColor=this.errorTextColor||this.tertiaryTextColor,this.transitionColor=this.transitionColor||this.lineColor,this.classText=this.primaryTextColor,this.fillType0=this.primaryColor,this.fillType1=this.secondaryColor,this.fillType2=Object(Bt.adjust)(this.primaryColor,{h:64}),this.fillType3=Object(Bt.adjust)(this.secondaryColor,{h:64}),this.fillType4=Object(Bt.adjust)(this.primaryColor,{h:-64}),this.fillType5=Object(Bt.adjust)(this.secondaryColor,{h:-64}),this.fillType6=Object(Bt.adjust)(this.primaryColor,{h:128}),this.fillType7=Object(Bt.adjust)(this.secondaryColor,{h:128}),this.pie1=this.pie1||this.primaryColor,this.pie2=this.pie2||this.secondaryColor,this.pie3=this.pie3||Object(Bt.adjust)(this.tertiaryColor,{l:-40}),this.pie4=this.pie4||Object(Bt.adjust)(this.primaryColor,{l:-10}),this.pie5=this.pie5||Object(Bt.adjust)(this.secondaryColor,{l:-30}),this.pie6=this.pie6||Object(Bt.adjust)(this.tertiaryColor,{l:-20}),this.pie7=this.pie7||Object(Bt.adjust)(this.primaryColor,{h:60,l:-20}),this.pie8=this.pie8||Object(Bt.adjust)(this.primaryColor,{h:-60,l:-40}),this.pie9=this.pie9||Object(Bt.adjust)(this.primaryColor,{h:120,l:-40}),this.pie10=this.pie10||Object(Bt.adjust)(this.primaryColor,{h:60,l:-40}),this.pie11=this.pie11||Object(Bt.adjust)(this.primaryColor,{h:-90,l:-40}),this.pie12=this.pie12||Object(Bt.adjust)(this.primaryColor,{h:120,l:-30}),this.pieTitleTextSize=this.pieTitleTextSize||"25px",this.pieTitleTextColor=this.pieTitleTextColor||this.taskTextDarkColor,this.pieSectionTextSize=this.pieSectionTextSize||"17px",this.pieSectionTextColor=this.pieSectionTextColor||this.textColor,this.pieLegendTextSize=this.pieLegendTextSize||"17px",this.pieLegendTextColor=this.pieLegendTextColor||this.taskTextDarkColor,this.pieStrokeColor=this.pieStrokeColor||"black",this.pieStrokeWidth=this.pieStrokeWidth||"2px",this.pieOpacity=this.pieOpacity||"0.7",this.requirementBackground=this.requirementBackground||this.primaryColor,this.requirementBorderColor=this.requirementBorderColor||this.primaryBorderColor,this.requirementBorderSize=this.requirementBorderSize||this.primaryBorderColor,this.requirementTextColor=this.requirementTextColor||this.primaryTextColor,this.relationColor=this.relationColor||this.lineColor,this.relationLabelBackground=this.relationLabelBackground||this.labelBackground,this.relationLabelColor=this.relationLabelColor||this.actorTextColor}},{key:"calculate",value:function(t){var e=this;if("object"===Yt(t)){var n=Object.keys(t);n.forEach((function(n){e[n]=t[n]})),this.updateColors(),n.forEach((function(n){e[n]=t[n]}))}else this.updateColors()}}])&&zt(e.prototype,n),r&&zt(e,r),t}();function $t(t){return($t="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}function qt(t,e){for(var n=0;n<e.length;n++){var r=e[n];r.enumerable=r.enumerable||!1,r.configurable=!0,"value"in r&&(r.writable=!0),Object.defineProperty(t,r.key,r)}}var Wt=function(){function t(){!function(t,e){if(!(t instanceof e))throw new TypeError("Cannot call a class as a function")}(this,t),this.background="#f4f4f4",this.primaryColor="#cde498",this.secondaryColor="#cdffb2",this.background="white",this.mainBkg="#cde498",this.secondBkg="#cdffb2",this.lineColor="green",this.border1="#13540c",this.border2="#6eaa49",this.arrowheadColor="green",this.fontFamily='"trebuchet ms", verdana, arial, sans-serif',this.fontSize="16px",this.tertiaryColor=Object(Bt.lighten)("#cde498",10),this.primaryBorderColor=Dt(this.primaryColor,this.darkMode),this.secondaryBorderColor=Dt(this.secondaryColor,this.darkMode),this.tertiaryBorderColor=Dt(this.tertiaryColor,this.darkMode),this.primaryTextColor=Object(Bt.invert)(this.primaryColor),this.secondaryTextColor=Object(Bt.invert)(this.secondaryColor),this.tertiaryTextColor=Object(Bt.invert)(this.primaryColor),this.lineColor=Object(Bt.invert)(this.background),this.textColor=Object(Bt.invert)(this.background),this.nodeBkg="calculated",this.nodeBorder="calculated",this.clusterBkg="calculated",this.clusterBorder="calculated",this.defaultLinkColor="calculated",this.titleColor="#333",this.edgeLabelBackground="#e8e8e8",this.actorBorder="calculated",this.actorBkg="calculated",this.actorTextColor="black",this.actorLineColor="grey",this.signalColor="#333",this.signalTextColor="#333",this.labelBoxBkgColor="calculated",this.labelBoxBorderColor="#326932",this.labelTextColor="calculated",this.loopTextColor="calculated",this.noteBorderColor="calculated",this.noteBkgColor="#fff5ad",this.noteTextColor="calculated",this.activationBorderColor="#666",this.activationBkgColor="#f4f4f4",this.sequenceNumberColor="white",this.sectionBkgColor="#6eaa49",this.altSectionBkgColor="white",this.sectionBkgColor2="#6eaa49",this.taskBorderColor="calculated",this.taskBkgColor="#487e3a",this.taskTextLightColor="white",this.taskTextColor="calculated",this.taskTextDarkColor="black",this.taskTextOutsideColor="calculated",this.taskTextClickableColor="#003163",this.activeTaskBorderColor="calculated",this.activeTaskBkgColor="calculated",this.gridColor="lightgrey",this.doneTaskBkgColor="lightgrey",this.doneTaskBorderColor="grey",this.critBorderColor="#ff8888",this.critBkgColor="red",this.todayLineColor="red",this.labelColor="black",this.errorBkgColor="#552222",this.errorTextColor="#552222"}var e,n,r;return e=t,(n=[{key:"updateColors",value:function(){this.nodeBkg=this.mainBkg,this.nodeBorder=this.border1,this.clusterBkg=this.secondBkg,this.clusterBorder=this.border2,this.defaultLinkColor=this.lineColor,this.actorBorder=Object(Bt.darken)(this.mainBkg,20),this.actorBkg=this.mainBkg,this.labelBoxBkgColor=this.actorBkg,this.labelTextColor=this.actorTextColor,this.loopTextColor=this.actorTextColor,this.noteBorderColor=this.border2,this.noteTextColor=this.actorTextColor,this.taskBorderColor=this.border1,this.taskTextColor=this.taskTextLightColor,this.taskTextOutsideColor=this.taskTextDarkColor,this.activeTaskBorderColor=this.taskBorderColor,this.activeTaskBkgColor=this.mainBkg,this.transitionColor=this.transitionColor||this.lineColor,this.transitionLabelColor=this.transitionLabelColor||this.textColor,this.stateLabelColor=this.stateLabelColor||this.stateBkg||this.primaryTextColor,this.stateBkg=this.stateBkg||this.mainBkg,this.labelBackgroundColor=this.labelBackgroundColor||this.stateBkg,this.compositeBackground=this.compositeBackground||this.background||this.tertiaryColor,this.altBackground=this.altBackground||"#f0f0f0",this.compositeTitleBackground=this.compositeTitleBackground||this.mainBkg,this.compositeBorder=this.compositeBorder||this.nodeBorder,this.innerEndBackground=this.primaryBorderColor,this.specialStateColor=this.lineColor,this.errorBkgColor=this.errorBkgColor||this.tertiaryColor,this.errorTextColor=this.errorTextColor||this.tertiaryTextColor,this.transitionColor=this.transitionColor||this.lineColor,this.classText=this.primaryTextColor,this.fillType0=this.primaryColor,this.fillType1=this.secondaryColor,this.fillType2=Object(Bt.adjust)(this.primaryColor,{h:64}),this.fillType3=Object(Bt.adjust)(this.secondaryColor,{h:64}),this.fillType4=Object(Bt.adjust)(this.primaryColor,{h:-64}),this.fillType5=Object(Bt.adjust)(this.secondaryColor,{h:-64}),this.fillType6=Object(Bt.adjust)(this.primaryColor,{h:128}),this.fillType7=Object(Bt.adjust)(this.secondaryColor,{h:128}),this.pie1=this.pie1||this.primaryColor,this.pie2=this.pie2||this.secondaryColor,this.pie3=this.pie3||this.tertiaryColor,this.pie4=this.pie4||Object(Bt.adjust)(this.primaryColor,{l:-30}),this.pie5=this.pie5||Object(Bt.adjust)(this.secondaryColor,{l:-30}),this.pie6=this.pie6||Object(Bt.adjust)(this.tertiaryColor,{h:40,l:-40}),this.pie7=this.pie7||Object(Bt.adjust)(this.primaryColor,{h:60,l:-10}),this.pie8=this.pie8||Object(Bt.adjust)(this.primaryColor,{h:-60,l:-10}),this.pie9=this.pie9||Object(Bt.adjust)(this.primaryColor,{h:120,l:0}),this.pie10=this.pie10||Object(Bt.adjust)(this.primaryColor,{h:60,l:-50}),this.pie11=this.pie11||Object(Bt.adjust)(this.primaryColor,{h:-60,l:-50}),this.pie12=this.pie12||Object(Bt.adjust)(this.primaryColor,{h:120,l:-50}),this.pieTitleTextSize=this.pieTitleTextSize||"25px",this.pieTitleTextColor=this.pieTitleTextColor||this.taskTextDarkColor,this.pieSectionTextSize=this.pieSectionTextSize||"17px",this.pieSectionTextColor=this.pieSectionTextColor||this.textColor,this.pieLegendTextSize=this.pieLegendTextSize||"17px",this.pieLegendTextColor=this.pieLegendTextColor||this.taskTextDarkColor,this.pieStrokeColor=this.pieStrokeColor||"black",this.pieStrokeWidth=this.pieStrokeWidth||"2px",this.pieOpacity=this.pieOpacity||"0.7",this.requirementBackground=this.requirementBackground||this.primaryColor,this.requirementBorderColor=this.requirementBorderColor||this.primaryBorderColor,this.requirementBorderSize=this.requirementBorderSize||this.primaryBorderColor,this.requirementTextColor=this.requirementTextColor||this.primaryTextColor,this.relationColor=this.relationColor||this.lineColor,this.relationLabelBackground=this.relationLabelBackground||this.edgeLabelBackground,this.relationLabelColor=this.relationLabelColor||this.actorTextColor}},{key:"calculate",value:function(t){var e=this;if("object"===$t(t)){var n=Object.keys(t);n.forEach((function(n){e[n]=t[n]})),this.updateColors(),n.forEach((function(n){e[n]=t[n]}))}else this.updateColors()}}])&&qt(e.prototype,n),r&&qt(e,r),t}();function Ht(t){return(Ht="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}function Vt(t,e){for(var n=0;n<e.length;n++){var r=e[n];r.enumerable=r.enumerable||!1,r.configurable=!0,"value"in r&&(r.writable=!0),Object.defineProperty(t,r.key,r)}}var Gt=function(){function t(){!function(t,e){if(!(t instanceof e))throw new TypeError("Cannot call a class as a function")}(this,t),this.primaryColor="#eee",this.contrast="#707070",this.secondaryColor=Object(Bt.lighten)(this.contrast,55),this.background="#ffffff",this.tertiaryColor=Object(Bt.adjust)(this.primaryColor,{h:-160}),this.primaryBorderColor=Dt(this.primaryColor,this.darkMode),this.secondaryBorderColor=Dt(this.secondaryColor,this.darkMode),this.tertiaryBorderColor=Dt(this.tertiaryColor,this.darkMode),this.primaryTextColor=Object(Bt.invert)(this.primaryColor),this.secondaryTextColor=Object(Bt.invert)(this.secondaryColor),this.tertiaryTextColor=Object(Bt.invert)(this.tertiaryColor),this.lineColor=Object(Bt.invert)(this.background),this.textColor=Object(Bt.invert)(this.background),this.mainBkg="#eee",this.secondBkg="calculated",this.lineColor="#666",this.border1="#999",this.border2="calculated",this.note="#ffa",this.text="#333",this.critical="#d42",this.done="#bbb",this.arrowheadColor="#333333",this.fontFamily='"trebuchet ms", verdana, arial, sans-serif',this.fontSize="16px",this.nodeBkg="calculated",this.nodeBorder="calculated",this.clusterBkg="calculated",this.clusterBorder="calculated",this.defaultLinkColor="calculated",this.titleColor="calculated",this.edgeLabelBackground="white",this.actorBorder="calculated",this.actorBkg="calculated",this.actorTextColor="calculated",this.actorLineColor="calculated",this.signalColor="calculated",this.signalTextColor="calculated",this.labelBoxBkgColor="calculated",this.labelBoxBorderColor="calculated",this.labelTextColor="calculated",this.loopTextColor="calculated",this.noteBorderColor="calculated",this.noteBkgColor="calculated",this.noteTextColor="calculated",this.activationBorderColor="#666",this.activationBkgColor="#f4f4f4",this.sequenceNumberColor="white",this.sectionBkgColor="calculated",this.altSectionBkgColor="white",this.sectionBkgColor2="calculated",this.taskBorderColor="calculated",this.taskBkgColor="calculated",this.taskTextLightColor="white",this.taskTextColor="calculated",this.taskTextDarkColor="calculated",this.taskTextOutsideColor="calculated",this.taskTextClickableColor="#003163",this.activeTaskBorderColor="calculated",this.activeTaskBkgColor="calculated",this.gridColor="calculated",this.doneTaskBkgColor="calculated",this.doneTaskBorderColor="calculated",this.critBkgColor="calculated",this.critBorderColor="calculated",this.todayLineColor="calculated",this.labelColor="black",this.errorBkgColor="#552222",this.errorTextColor="#552222"}var e,n,r;return e=t,(n=[{key:"updateColors",value:function(){this.secondBkg=Object(Bt.lighten)(this.contrast,55),this.border2=this.contrast,this.nodeBkg=this.mainBkg,this.nodeBorder=this.border1,this.clusterBkg=this.secondBkg,this.clusterBorder=this.border2,this.defaultLinkColor=this.lineColor,this.titleColor=this.text,this.actorBorder=Object(Bt.lighten)(this.border1,23),this.actorBkg=this.mainBkg,this.actorTextColor=this.text,this.actorLineColor=this.lineColor,this.signalColor=this.text,this.signalTextColor=this.text,this.labelBoxBkgColor=this.actorBkg,this.labelBoxBorderColor=this.actorBorder,this.labelTextColor=this.text,this.loopTextColor=this.text,this.noteBorderColor="#999",this.noteBkgColor="#666",this.noteTextColor="#fff",this.sectionBkgColor=Object(Bt.lighten)(this.contrast,30),this.sectionBkgColor2=Object(Bt.lighten)(this.contrast,30),this.taskBorderColor=Object(Bt.darken)(this.contrast,10),this.taskBkgColor=this.contrast,this.taskTextColor=this.taskTextLightColor,this.taskTextDarkColor=this.text,this.taskTextOutsideColor=this.taskTextDarkColor,this.activeTaskBorderColor=this.taskBorderColor,this.activeTaskBkgColor=this.mainBkg,this.gridColor=Object(Bt.lighten)(this.border1,30),this.doneTaskBkgColor=this.done,this.doneTaskBorderColor=this.lineColor,this.critBkgColor=this.critical,this.critBorderColor=Object(Bt.darken)(this.critBkgColor,10),this.todayLineColor=this.critBkgColor,this.transitionColor=this.transitionColor||"#000",this.transitionLabelColor=this.transitionLabelColor||this.textColor,this.stateLabelColor=this.stateLabelColor||this.stateBkg||this.primaryTextColor,this.stateBkg=this.stateBkg||this.mainBkg,this.labelBackgroundColor=this.labelBackgroundColor||this.stateBkg,this.compositeBackground=this.compositeBackground||this.background||this.tertiaryColor,this.altBackground=this.altBackground||"#f4f4f4",this.compositeTitleBackground=this.compositeTitleBackground||this.mainBkg,this.stateBorder=this.stateBorder||"#000",this.innerEndBackground=this.primaryBorderColor,this.specialStateColor="#222",this.errorBkgColor=this.errorBkgColor||this.tertiaryColor,this.errorTextColor=this.errorTextColor||this.tertiaryTextColor,this.classText=this.primaryTextColor,this.fillType0=this.primaryColor,this.fillType1=this.secondaryColor,this.fillType2=Object(Bt.adjust)(this.primaryColor,{h:64}),this.fillType3=Object(Bt.adjust)(this.secondaryColor,{h:64}),this.fillType4=Object(Bt.adjust)(this.primaryColor,{h:-64}),this.fillType5=Object(Bt.adjust)(this.secondaryColor,{h:-64}),this.fillType6=Object(Bt.adjust)(this.primaryColor,{h:128}),this.fillType7=Object(Bt.adjust)(this.secondaryColor,{h:128}),this.pie1=this.pie1||"#F4F4F4",this.pie2=this.pie2||"#555",this.pie3=this.pie3||"#BBB",this.pie4=this.pie4||"#777",this.pie5=this.pie5||"#999",this.pie6=this.pie6||"#DDD",this.pie7=this.pie7||"#FFF",this.pie8=this.pie8||"#DDD",this.pie9=this.pie9||"#BBB",this.pie10=this.pie10||"#999",this.pie11=this.pie11||"#777",this.pie12=this.pie12||"#555",this.pieTitleTextSize=this.pieTitleTextSize||"25px",this.pieTitleTextColor=this.pieTitleTextColor||this.taskTextDarkColor,this.pieSectionTextSize=this.pieSectionTextSize||"17px",this.pieSectionTextColor=this.pieSectionTextColor||this.textColor,this.pieLegendTextSize=this.pieLegendTextSize||"17px",this.pieLegendTextColor=this.pieLegendTextColor||this.taskTextDarkColor,this.pieStrokeColor=this.pieStrokeColor||"black",this.pieStrokeWidth=this.pieStrokeWidth||"2px",this.pieOpacity=this.pieOpacity||"0.7",this.requirementBackground=this.requirementBackground||this.primaryColor,this.requirementBorderColor=this.requirementBorderColor||this.primaryBorderColor,this.requirementBorderSize=this.requirementBorderSize||this.primaryBorderColor,this.requirementTextColor=this.requirementTextColor||this.primaryTextColor,this.relationColor=this.relationColor||this.lineColor,this.relationLabelBackground=this.relationLabelBackground||this.edgeLabelBackground,this.relationLabelColor=this.relationLabelColor||this.actorTextColor}},{key:"calculate",value:function(t){var e=this;if("object"===Ht(t)){var n=Object.keys(t);n.forEach((function(n){e[n]=t[n]})),this.updateColors(),n.forEach((function(n){e[n]=t[n]}))}else this.updateColors()}}])&&Vt(e.prototype,n),r&&Vt(e,r),t}(),Xt={base:{getThemeVariables:function(t){var e=new Rt;return e.calculate(t),e}},dark:{getThemeVariables:function(t){var e=new jt;return e.calculate(t),e}},default:{getThemeVariables:function(t){var e=new Ut;return e.calculate(t),e}},forest:{getThemeVariables:function(t){var e=new Wt;return e.calculate(t),e}},neutral:{getThemeVariables:function(t){var e=new Gt;return e.calculate(t),e}}},Zt={theme:"default",themeVariables:Xt.default.getThemeVariables(),themeCSS:void 0,maxTextSize:5e4,fontFamily:'"trebuchet ms", verdana, arial, sans-serif;',logLevel:5,securityLevel:"strict",startOnLoad:!0,arrowMarkerAbsolute:!1,secure:["secure","securityLevel","startOnLoad","maxTextSize"],deterministicIds:!1,deterministicIDSeed:void 0,flowchart:{diagramPadding:8,htmlLabels:!0,nodeSpacing:50,rankSpacing:50,curve:"basis",padding:15,useMaxWidth:!0,defaultRenderer:"dagre-d3"},sequence:{activationWidth:10,diagramMarginX:50,diagramMarginY:10,actorMargin:50,width:150,height:65,boxMargin:10,boxTextMargin:5,noteMargin:10,messageMargin:35,messageAlign:"center",mirrorActors:!0,bottomMarginAdj:1,useMaxWidth:!0,rightAngles:!1,showSequenceNumbers:!1,actorFontSize:14,actorFontFamily:'"Open-Sans", "sans-serif"',actorFontWeight:400,noteFontSize:14,noteFontFamily:'"trebuchet ms", verdana, arial, sans-serif',noteFontWeight:400,noteAlign:"center",messageFontSize:16,messageFontFamily:'"trebuchet ms", verdana, arial, sans-serif',messageFontWeight:400,wrap:!1,wrapPadding:10,labelBoxWidth:50,labelBoxHeight:20,messageFont:function(){return{fontFamily:this.messageFontFamily,fontSize:this.messageFontSize,fontWeight:this.messageFontWeight}},noteFont:function(){return{fontFamily:this.noteFontFamily,fontSize:this.noteFontSize,fontWeight:this.noteFontWeight}},actorFont:function(){return{fontFamily:this.actorFontFamily,fontSize:this.actorFontSize,fontWeight:this.actorFontWeight}}},gantt:{titleTopMargin:25,barHeight:20,barGap:4,topPadding:50,rightPadding:75,leftPadding:75,gridLineStartPadding:35,fontSize:11,sectionFontSize:11,numberSectionStyles:4,axisFormat:"%Y-%m-%d",useMaxWidth:!0,topAxis:!1,useWidth:void 0},journey:{diagramMarginX:50,diagramMarginY:10,leftMargin:150,width:150,height:50,boxMargin:10,boxTextMargin:5,noteMargin:10,messageMargin:35,messageAlign:"center",bottomMarginAdj:1,useMaxWidth:!0,rightAngles:!1,taskFontSize:14,taskFontFamily:'"Open-Sans", "sans-serif"',taskMargin:50,activationWidth:10,textPlacement:"fo",actorColours:["#8FBC8F","#7CFC00","#00FFFF","#20B2AA","#B0E0E6","#FFFFE0"],sectionFills:["#191970","#8B008B","#4B0082","#2F4F4F","#800000","#8B4513","#00008B"],sectionColours:["#fff"]},class:{arrowMarkerAbsolute:!1,useMaxWidth:!0,defaultRenderer:"dagre-d3"},git:{arrowMarkerAbsolute:!1,useWidth:void 0,useMaxWidth:!0},state:{dividerMargin:10,sizeUnit:5,padding:8,textHeight:10,titleShift:-15,noteMargin:10,forkWidth:70,forkHeight:7,miniPadding:2,fontSizeFactor:5.02,fontSize:24,labelHeight:16,edgeLengthFactor:"20",compositTitleSize:35,radius:5,useMaxWidth:!0,defaultRenderer:"dagre-wrapper"},er:{diagramPadding:20,layoutDirection:"TB",minEntityWidth:100,minEntityHeight:75,entityPadding:15,stroke:"gray",fill:"honeydew",fontSize:12,useMaxWidth:!0},pie:{useWidth:void 0,useMaxWidth:!0},requirement:{useWidth:void 0,useMaxWidth:!0,rect_fill:"#f9f9f9",text_color:"#333",rect_border_size:"0.5px",rect_border_color:"#bbb",rect_min_width:200,rect_min_height:200,fontSize:14,rect_padding:10,line_height:20}};Zt.class.arrowMarkerAbsolute=Zt.arrowMarkerAbsolute,Zt.git.arrowMarkerAbsolute=Zt.arrowMarkerAbsolute;var Kt=Zt;function Qt(t){return(Qt="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}var Jt,te=Object.freeze(Kt),ee=wt({},te),ne=[],re=wt({},te),ie=function(t,e){for(var n=wt({},t),r={},i=0;i<e.length;i++){var a=e[i];se(a),r=wt(r,a)}if(n=wt(n,r),r.theme){var o=wt({},Jt),s=wt(o.themeVariables||{},r.themeVariables);n.themeVariables=Xt[n.theme].getThemeVariables(s)}return re=n,n},ae=function(){return wt({},ee)},oe=function(){return wt({},re)},se=function t(e){Object.keys(ee.secure).forEach((function(t){void 0!==e[ee.secure[t]]&&(o.debug("Denied attempt to modify a secure key ".concat(ee.secure[t]),e[ee.secure[t]]),delete e[ee.secure[t]])})),Object.keys(e).forEach((function(t){0===t.indexOf("__")&&delete e[t]})),Object.keys(e).forEach((function(n){"string"==typeof e[n]&&(e[n].indexOf("<")>-1||e[n].indexOf(">")>-1||e[n].indexOf("url(data:")>-1)&&delete e[n],"object"===Qt(e[n])&&t(e[n])}))},ce=function(t){t.fontFamily&&(t.themeVariables&&t.themeVariables.fontFamily||(t.themeVariables={fontFamily:t.fontFamily})),ne.push(t),ie(ee,ne)},ue=function(){ie(ee,ne=[])};function le(t){return function(t){if(Array.isArray(t))return he(t)}(t)||function(t){if("undefined"!=typeof Symbol&&null!=t[Symbol.iterator]||null!=t["@@iterator"])return Array.from(t)}(t)||function(t,e){if(!t)return;if("string"==typeof t)return he(t,e);var n=Object.prototype.toString.call(t).slice(8,-1);"Object"===n&&t.constructor&&(n=t.constructor.name);if("Map"===n||"Set"===n)return Array.from(t);if("Arguments"===n||/^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(n))return he(t,e)}(t)||function(){throw new TypeError("Invalid attempt to spread non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}()}function he(t,e){(null==e||e>t.length)&&(e=t.length);for(var n=0,r=new Array(e);n<e;n++)r[n]=t[n];return r}var fe=[],de={},pe=0,ye=[],ge=function(t){var e="",n=t;if(t.indexOf("~")>0){var r=t.split("~");n=r[0],e=r[1]}return{className:n,type:e}},me=function(t){var e=ge(t);void 0===de[e.className]&&(de[e.className]={id:e.className,type:e.type,cssClasses:[],methods:[],members:[],annotations:[],domId:"classid-"+e.className+"-"+pe},pe++)},ve=function(t){for(var e=Object.keys(de),n=0;n<e.length;n++)if(de[e[n]].id===t)return de[e[n]].domId},be=function(t,e){var n=ge(t).className,r=de[n];if("string"==typeof e){var i=e.trim();i.startsWith("<<")&&i.endsWith(">>")?r.annotations.push(i.substring(2,i.length-2)):i.indexOf(")")>0?r.methods.push(i):i&&r.members.push(i)}},xe=function(t,e){t.split(",").forEach((function(t){var n=t;t[0].match(/\d/)&&(n="classid-"+n),void 0!==de[n]&&de[n].cssClasses.push(e)}))},_e=function(t,e,n){var r=oe(),i=t,a=ve(i);if("loose"===r.securityLevel&&void 0!==e&&void 0!==de[i]){var o=[];if("string"==typeof n){o=n.split(/,(?=(?:(?:[^"]*"){2})*[^"]*$)/);for(var s=0;s<o.length;s++){var c=o[s].trim();'"'===c.charAt(0)&&'"'===c.charAt(c.length-1)&&(c=c.substr(1,c.length-2)),o[s]=c}}0===o.length&&o.push(a),ye.push((function(){var t=document.querySelector('[id="'.concat(a,'"]'));null!==t&&t.addEventListener("click",(function(){Nt.runFunc.apply(Nt,[e].concat(le(o)))}),!1)}))}},ke={AGGREGATION:0,EXTENSION:1,COMPOSITION:2,DEPENDENCY:3},we=function(t){var e=Object(u.select)(".mermaidTooltip");null===(e._groups||e)[0][0]&&(e=Object(u.select)("body").append("div").attr("class","mermaidTooltip").style("opacity",0)),Object(u.select)(t).select("svg").selectAll("g.node").on("mouseover",(function(){var t=Object(u.select)(this);if(null!==t.attr("title")){var n=this.getBoundingClientRect();e.transition().duration(200).style("opacity",".9"),e.html(t.attr("title")).style("left",window.scrollX+n.left+(n.right-n.left)/2+"px").style("top",window.scrollY+n.top-14+document.body.scrollTop+"px"),t.classed("hover",!0)}})).on("mouseout",(function(){e.transition().duration(500).style("opacity",0),Object(u.select)(this).classed("hover",!1)}))};ye.push(we);var Ee={parseDirective:function(t,e,n){cc.parseDirective(this,t,e,n)},getConfig:function(){return oe().class},addClass:me,bindFunctions:function(t){ye.forEach((function(e){e(t)}))},clear:function(){fe=[],de={},(ye=[]).push(we)},getClass:function(t){return de[t]},getClasses:function(){return de},addAnnotation:function(t,e){var n=ge(t).className;de[n].annotations.push(e)},getRelations:function(){return fe},addRelation:function(t){o.debug("Adding relation: "+JSON.stringify(t)),me(t.id1),me(t.id2),t.id1=ge(t.id1).className,t.id2=ge(t.id2).className,fe.push(t)},addMember:be,addMembers:function(t,e){Array.isArray(e)&&(e.reverse(),e.forEach((function(e){return be(t,e)})))},cleanupLabel:function(t){return":"===t.substring(0,1)?t.substr(1).trim():t.trim()},lineType:{LINE:0,DOTTED_LINE:1},relationType:ke,setClickEvent:function(t,e,n){t.split(",").forEach((function(t){_e(t,e,n),de[t].haveCallback=!0})),xe(t,"clickable")},setCssClass:xe,setLink:function(t,e,n){var r=oe();t.split(",").forEach((function(t){var i=t;t[0].match(/\d/)&&(i="classid-"+i),void 0!==de[i]&&(de[i].link=Nt.formatUrl(e,r),de[i].linkTarget="string"==typeof n?n:"_blank")})),xe(t,"clickable")},setTooltip:function(t,e){var n=oe();t.split(",").forEach((function(t){void 0!==e&&(de[t].tooltip=nt.sanitizeText(e,n))}))},lookUpDomId:ve},Te=n(10),Ce=n.n(Te),Se=n(3),Ae=n.n(Se),Me=n(16),Oe=n.n(Me),Ne=0,Be=function(t){var e=t.match(/(\+|-|~|#)?(\w+)(~\w+~|\[\])?\s+(\w+)/),n=t.match(/^([+|\-|~|#])?(\w+) *\( *(.*)\) *(\*|\$)? *(\w*[~|[\]]*\s*\w*~?)$/);return e&&!n?De(e):n?Le(n):Ie(t)},De=function(t){var e="";try{e=(t[1]?t[1].trim():"")+(t[2]?t[2].trim():"")+(t[3]?Fe(t[3].trim()):"")+" "+(t[4]?t[4].trim():"")}catch(n){e=t}return{displayText:e,cssStyle:""}},Le=function(t){var e="",n="";try{var r=t[1]?t[1].trim():"",i=t[2]?t[2].trim():"",a=t[3]?Fe(t[3].trim()):"",o=t[4]?t[4].trim():"";n=r+i+"("+a+")"+(t[5]?" : "+Fe(t[5]).trim():""),e=Pe(o)}catch(e){n=t}return{displayText:n,cssStyle:e}},Ie=function(t){var e="",n="",r="",i=t.indexOf("("),a=t.indexOf(")");if(i>1&&a>i&&a<=t.length){var o="",s="",c=t.substring(0,1);c.match(/\w/)?s=t.substring(0,i).trim():(c.match(/\+|-|~|#/)&&(o=c),s=t.substring(1,i).trim());var u=t.substring(i+1,a),l=t.substring(a+1,1);n=Pe(l),e=o+s+"("+Fe(u.trim())+")",a<"".length&&""!==(r=t.substring(a+2).trim())&&(r=" : "+Fe(r))}else e=Fe(t);return{displayText:e,cssStyle:n}},Re=function(t,e,n,r){var i=Be(e),a=t.append("tspan").attr("x",r.padding).text(i.displayText);""!==i.cssStyle&&a.attr("style",i.cssStyle),n||a.attr("dy",r.textHeight)},Fe=function t(e){var n=e;return-1!=e.indexOf("~")?t(n=(n=n.replace("~","<")).replace("~",">")):n},Pe=function(t){switch(t){case"*":return"font-style:italic;";case"$":return"text-decoration:underline;";default:return""}},je=function(t,e,n){o.info("Rendering class "+e);var r,i=e.id,a={id:i,label:e.id,width:0,height:0},s=t.append("g").attr("id",ve(i)).attr("class","classGroup");r=e.link?s.append("svg:a").attr("xlink:href",e.link).attr("target",e.linkTarget).append("text").attr("y",n.textHeight+n.padding).attr("x",0):s.append("text").attr("y",n.textHeight+n.padding).attr("x",0);var c=!0;e.annotations.forEach((function(t){var e=r.append("tspan").text("«"+t+"»");c||e.attr("dy",n.textHeight),c=!1}));var u=e.id;void 0!==e.type&&""!==e.type&&(u+="<"+e.type+">");var l=r.append("tspan").text(u).attr("class","title");c||l.attr("dy",n.textHeight);var h=r.node().getBBox().height,f=s.append("line").attr("x1",0).attr("y1",n.padding+h+n.dividerMargin/2).attr("y2",n.padding+h+n.dividerMargin/2),d=s.append("text").attr("x",n.padding).attr("y",h+n.dividerMargin+n.textHeight).attr("fill","white").attr("class","classText");c=!0,e.members.forEach((function(t){Re(d,t,c,n),c=!1}));var p=d.node().getBBox(),y=s.append("line").attr("x1",0).attr("y1",n.padding+h+n.dividerMargin+p.height).attr("y2",n.padding+h+n.dividerMargin+p.height),g=s.append("text").attr("x",n.padding).attr("y",h+2*n.dividerMargin+p.height+n.textHeight).attr("fill","white").attr("class","classText");c=!0,e.methods.forEach((function(t){Re(g,t,c,n),c=!1}));var m=s.node().getBBox(),v=" ";e.cssClasses.length>0&&(v+=e.cssClasses.join(" "));var b=s.insert("rect",":first-child").attr("x",0).attr("y",0).attr("width",m.width+2*n.padding).attr("height",m.height+n.padding+.5*n.dividerMargin).attr("class",v).node().getBBox().width;return r.node().childNodes.forEach((function(t){t.setAttribute("x",(b-t.getBBox().width)/2)})),e.tooltip&&r.insert("title").text(e.tooltip),f.attr("x2",b),y.attr("x2",b),a.width=b,a.height=m.height+n.padding+.5*n.dividerMargin,a},Ye=function(t,e,n,r){var i=function(t){switch(t){case ke.AGGREGATION:return"aggregation";case ke.EXTENSION:return"extension";case ke.COMPOSITION:return"composition";case ke.DEPENDENCY:return"dependency"}};e.points=e.points.filter((function(t){return!Number.isNaN(t.y)}));var a,s,c=e.points,l=Object(u.line)().x((function(t){return t.x})).y((function(t){return t.y})).curve(u.curveBasis),h=t.append("path").attr("d",l(c)).attr("id","edge"+Ne).attr("class","relation"),f="";r.arrowMarkerAbsolute&&(f=(f=(f=window.location.protocol+"//"+window.location.host+window.location.pathname+window.location.search).replace(/\(/g,"\\(")).replace(/\)/g,"\\)")),1==n.relation.lineType&&h.attr("class","relation dashed-line"),"none"!==n.relation.type1&&h.attr("marker-start","url("+f+"#"+i(n.relation.type1)+"Start)"),"none"!==n.relation.type2&&h.attr("marker-end","url("+f+"#"+i(n.relation.type2)+"End)");var d,p,y,g,m=e.points.length,v=Nt.calcLabelPosition(e.points);if(a=v.x,s=v.y,m%2!=0&&m>1){var b=Nt.calcCardinalityPosition("none"!==n.relation.type1,e.points,e.points[0]),x=Nt.calcCardinalityPosition("none"!==n.relation.type2,e.points,e.points[m-1]);o.debug("cardinality_1_point "+JSON.stringify(b)),o.debug("cardinality_2_point "+JSON.stringify(x)),d=b.x,p=b.y,y=x.x,g=x.y}if(void 0!==n.title){var _=t.append("g").attr("class","classLabel"),k=_.append("text").attr("class","label").attr("x",a).attr("y",s).attr("fill","red").attr("text-anchor","middle").text(n.title);window.label=k;var w=k.node().getBBox();_.insert("rect",":first-child").attr("class","box").attr("x",w.x-r.padding/2).attr("y",w.y-r.padding/2).attr("width",w.width+r.padding).attr("height",w.height+r.padding)}(o.info("Rendering relation "+JSON.stringify(n)),void 0!==n.relationTitle1&&"none"!==n.relationTitle1)&&t.append("g").attr("class","cardinality").append("text").attr("class","type1").attr("x",d).attr("y",p).attr("fill","black").attr("font-size","6").text(n.relationTitle1);void 0!==n.relationTitle2&&"none"!==n.relationTitle2&&t.append("g").attr("class","cardinality").append("text").attr("class","type2").attr("x",y).attr("y",g).attr("fill","black").attr("font-size","6").text(n.relationTitle2);Ne++};Me.parser.yy=Ee;var ze={},Ue={dividerMargin:10,padding:5,textHeight:10},$e=function(t){for(var e=Object.keys(ze),n=0;n<e.length;n++)if(ze[e[n]].label===t)return e[n]},qe=function(t){Object.keys(t).forEach((function(e){Ue[e]=t[e]}))},We=function(t,e){ze={},Me.parser.yy.clear(),Me.parser.parse(t),o.info("Rendering diagram "+t);var n,r=Object(u.select)("[id='".concat(e,"']"));r.attr("xmlns:xlink","http://www.w3.org/1999/xlink"),(n=r).append("defs").append("marker").attr("id","extensionStart").attr("class","extension").attr("refX",0).attr("refY",7).attr("markerWidth",190).attr("markerHeight",240).attr("orient","auto").append("path").attr("d","M 1,7 L18,13 V 1 Z"),n.append("defs").append("marker").attr("id","extensionEnd").attr("refX",19).attr("refY",7).attr("markerWidth",20).attr("markerHeight",28).attr("orient","auto").append("path").attr("d","M 1,1 V 13 L18,7 Z"),n.append("defs").append("marker").attr("id","compositionStart").attr("class","extension").attr("refX",0).attr("refY",7).attr("markerWidth",190).attr("markerHeight",240).attr("orient","auto").append("path").attr("d","M 18,7 L9,13 L1,7 L9,1 Z"),n.append("defs").append("marker").attr("id","compositionEnd").attr("refX",19).attr("refY",7).attr("markerWidth",20).attr("markerHeight",28).attr("orient","auto").append("path").attr("d","M 18,7 L9,13 L1,7 L9,1 Z"),n.append("defs").append("marker").attr("id","aggregationStart").attr("class","extension").attr("refX",0).attr("refY",7).attr("markerWidth",190).attr("markerHeight",240).attr("orient","auto").append("path").attr("d","M 18,7 L9,13 L1,7 L9,1 Z"),n.append("defs").append("marker").attr("id","aggregationEnd").attr("refX",19).attr("refY",7).attr("markerWidth",20).attr("markerHeight",28).attr("orient","auto").append("path").attr("d","M 18,7 L9,13 L1,7 L9,1 Z"),n.append("defs").append("marker").attr("id","dependencyStart").attr("class","extension").attr("refX",0).attr("refY",7).attr("markerWidth",190).attr("markerHeight",240).attr("orient","auto").append("path").attr("d","M 5,7 L9,13 L1,7 L9,1 Z"),n.append("defs").append("marker").attr("id","dependencyEnd").attr("refX",19).attr("refY",7).attr("markerWidth",20).attr("markerHeight",28).attr("orient","auto").append("path").attr("d","M 18,7 L9,13 L14,7 L9,1 Z");var i=new Ae.a.Graph({multigraph:!0});i.setGraph({isMultiGraph:!0}),i.setDefaultEdgeLabel((function(){return{}}));for(var a=Ee.getClasses(),s=Object.keys(a),c=0;c<s.length;c++){var l=a[s[c]],h=je(r,l,Ue);ze[h.id]=h,i.setNode(h.id,h),o.info("Org height: "+h.height)}Ee.getRelations().forEach((function(t){o.info("tjoho"+$e(t.id1)+$e(t.id2)+JSON.stringify(t)),i.setEdge($e(t.id1),$e(t.id2),{relation:t},t.title||"DEFAULT")})),Ce.a.layout(i),i.nodes().forEach((function(t){void 0!==t&&void 0!==i.node(t)&&(o.debug("Node "+t+": "+JSON.stringify(i.node(t))),Object(u.select)("#"+ve(t)).attr("transform","translate("+(i.node(t).x-i.node(t).width/2)+","+(i.node(t).y-i.node(t).height/2)+" )"))})),i.edges().forEach((function(t){void 0!==t&&void 0!==i.edge(t)&&(o.debug("Edge "+t.v+" -> "+t.w+": "+JSON.stringify(i.edge(t))),Ye(r,i.edge(t),i.edge(t).relation,Ue))}));var f=r.node().getBBox(),d=f.width+40,p=f.height+40;Ot(r,p,d,Ue.useMaxWidth);var y="".concat(f.x-20," ").concat(f.y-20," ").concat(d," ").concat(p);o.debug("viewBox ".concat(y)),r.attr("viewBox",y)},He={extension:function(t,e,n){o.trace("Making markers for ",n),t.append("defs").append("marker").attr("id",e+"-extensionStart").attr("class","marker extension "+e).attr("refX",0).attr("refY",7).attr("markerWidth",190).attr("markerHeight",240).attr("orient","auto").append("path").attr("d","M 1,7 L18,13 V 1 Z"),t.append("defs").append("marker").attr("id",e+"-extensionEnd").attr("class","marker extension "+e).attr("refX",19).attr("refY",7).attr("markerWidth",20).attr("markerHeight",28).attr("orient","auto").append("path").attr("d","M 1,1 V 13 L18,7 Z")},composition:function(t,e){t.append("defs").append("marker").attr("id",e+"-compositionStart").attr("class","marker composition "+e).attr("refX",0).attr("refY",7).attr("markerWidth",190).attr("markerHeight",240).attr("orient","auto").append("path").attr("d","M 18,7 L9,13 L1,7 L9,1 Z"),t.append("defs").append("marker").attr("id",e+"-compositionEnd").attr("class","marker composition "+e).attr("refX",19).attr("refY",7).attr("markerWidth",20).attr("markerHeight",28).attr("orient","auto").append("path").attr("d","M 18,7 L9,13 L1,7 L9,1 Z")},aggregation:function(t,e){t.append("defs").append("marker").attr("id",e+"-aggregationStart").attr("class","marker aggregation "+e).attr("refX",0).attr("refY",7).attr("markerWidth",190).attr("markerHeight",240).attr("orient","auto").append("path").attr("d","M 18,7 L9,13 L1,7 L9,1 Z"),t.append("defs").append("marker").attr("id",e+"-aggregationEnd").attr("class","marker aggregation "+e).attr("refX",19).attr("refY",7).attr("markerWidth",20).attr("markerHeight",28).attr("orient","auto").append("path").attr("d","M 18,7 L9,13 L1,7 L9,1 Z")},dependency:function(t,e){t.append("defs").append("marker").attr("id",e+"-dependencyStart").attr("class","marker dependency "+e).attr("refX",0).attr("refY",7).attr("markerWidth",190).attr("markerHeight",240).attr("orient","auto").append("path").attr("d","M 5,7 L9,13 L1,7 L9,1 Z"),t.append("defs").append("marker").attr("id",e+"-dependencyEnd").attr("class","marker dependency "+e).attr("refX",19).attr("refY",7).attr("markerWidth",20).attr("markerHeight",28).attr("orient","auto").append("path").attr("d","M 18,7 L9,13 L14,7 L9,1 Z")},point:function(t,e){t.append("marker").attr("id",e+"-pointEnd").attr("class","marker "+e).attr("viewBox","0 0 10 10").attr("refX",9).attr("refY",5).attr("markerUnits","userSpaceOnUse").attr("markerWidth",12).attr("markerHeight",12).attr("orient","auto").append("path").attr("d","M 0 0 L 10 5 L 0 10 z").attr("class","arrowMarkerPath").style("stroke-width",1).style("stroke-dasharray","1,0"),t.append("marker").attr("id",e+"-pointStart").attr("class","marker "+e).attr("viewBox","0 0 10 10").attr("refX",0).attr("refY",5).attr("markerUnits","userSpaceOnUse").attr("markerWidth",12).attr("markerHeight",12).attr("orient","auto").append("path").attr("d","M 0 5 L 10 10 L 10 0 z").attr("class","arrowMarkerPath").style("stroke-width",1).style("stroke-dasharray","1,0")},circle:function(t,e){t.append("marker").attr("id",e+"-circleEnd").attr("class","marker "+e).attr("viewBox","0 0 10 10").attr("refX",11).attr("refY",5).attr("markerUnits","userSpaceOnUse").attr("markerWidth",11).attr("markerHeight",11).attr("orient","auto").append("circle").attr("cx","5").attr("cy","5").attr("r","5").attr("class","arrowMarkerPath").style("stroke-width",1).style("stroke-dasharray","1,0"),t.append("marker").attr("id",e+"-circleStart").attr("class","marker "+e).attr("viewBox","0 0 10 10").attr("refX",-1).attr("refY",5).attr("markerUnits","userSpaceOnUse").attr("markerWidth",11).attr("markerHeight",11).attr("orient","auto").append("circle").attr("cx","5").attr("cy","5").attr("r","5").attr("class","arrowMarkerPath").style("stroke-width",1).style("stroke-dasharray","1,0")},cross:function(t,e){t.append("marker").attr("id",e+"-crossEnd").attr("class","marker cross "+e).attr("viewBox","0 0 11 11").attr("refX",12).attr("refY",5.2).attr("markerUnits","userSpaceOnUse").attr("markerWidth",11).attr("markerHeight",11).attr("orient","auto").append("path").attr("d","M 1,1 l 9,9 M 10,1 l -9,9").attr("class","arrowMarkerPath").style("stroke-width",2).style("stroke-dasharray","1,0"),t.append("marker").attr("id",e+"-crossStart").attr("class","marker cross "+e).attr("viewBox","0 0 11 11").attr("refX",-1).attr("refY",5.2).attr("markerUnits","userSpaceOnUse").attr("markerWidth",11).attr("markerHeight",11).attr("orient","auto").append("path").attr("d","M 1,1 l 9,9 M 10,1 l -9,9").attr("class","arrowMarkerPath").style("stroke-width",2).style("stroke-dasharray","1,0")},barb:function(t,e){t.append("defs").append("marker").attr("id",e+"-barbEnd").attr("refX",19).attr("refY",7).attr("markerWidth",20).attr("markerHeight",14).attr("markerUnits","strokeWidth").attr("orient","auto").append("path").attr("d","M 19,7 L9,13 L14,7 L9,1 Z")}},Ve=function(t,e,n,r){e.forEach((function(e){He[e](t,n,r)}))};function Ge(t){return(Ge="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}var Xe=function(t,e,n,r){var i=t||"";if("object"===Ge(i)&&(i=i[0]),et(oe().flowchart.htmlLabels))return i=i.replace(/\\n|\n/g,"<br />"),o.info("vertexText"+i),function(t){var e,n,r=Object(u.select)(document.createElementNS("http://www.w3.org/2000/svg","foreignObject")),i=r.append("xhtml:div"),a=t.label,o=t.isNode?"nodeLabel":"edgeLabel";return i.html('<span class="'+o+'" '+(t.labelStyle?'style="'+t.labelStyle+'"':"")+">"+a+"</span>"),e=i,(n=t.labelStyle)&&e.attr("style",n),i.style("display","inline-block"),i.style("white-space","nowrap"),i.attr("xmlns","http://www.w3.org/1999/xhtml"),r.node()}({isNode:r,label:i.replace(/fa[lrsb]?:fa-[\w-]+/g,(function(t){return"<i class='".concat(t.replace(":"," "),"'></i>")})),labelStyle:e.replace("fill:","color:")});var a=document.createElementNS("http://www.w3.org/2000/svg","text");a.setAttribute("style",e.replace("color:","fill:"));var s=[];s="string"==typeof i?i.split(/\\n|\n|<br\s*\/?>/gi):Array.isArray(i)?i:[];for(var c=0;c<s.length;c++){var l=document.createElementNS("http://www.w3.org/2000/svg","tspan");l.setAttributeNS("http://www.w3.org/XML/1998/namespace","xml:space","preserve"),l.setAttribute("dy","1em"),l.setAttribute("x","0"),n?l.setAttribute("class","title-row"):l.setAttribute("class","row"),l.textContent=s[c].trim(),a.appendChild(l)}return a},Ze=function(t,e,n,r){var i;i=n||"node default";var a=t.insert("g").attr("class",i).attr("id",e.domId||e.id),o=a.insert("g").attr("class","label").attr("style",e.labelStyle),s=o.node().appendChild(Xe(e.labelText,e.labelStyle,!1,r)),c=s.getBBox();if(et(oe().flowchart.htmlLabels)){var l=s.children[0],h=Object(u.select)(s);c=l.getBoundingClientRect(),h.attr("width",c.width),h.attr("height",c.height)}var f=e.padding/2;return o.attr("transform","translate("+-c.width/2+", "+-c.height/2+")"),{shapeSvg:a,bbox:c,halfPadding:f,label:o}},Ke=function(t,e){var n=e.node().getBBox();t.width=n.width,t.height=n.height};function Qe(t,e,n,r){return t.insert("polygon",":first-child").attr("points",r.map((function(t){return t.x+","+t.y})).join(" ")).attr("class","label-container").attr("transform","translate("+-e/2+","+n/2+")")}var Je={},tn={},en={},nn=function(t,e){return o.trace("In isDecendant",e," ",t," = ",tn[e].indexOf(t)>=0),tn[e].indexOf(t)>=0},rn=function t(e,n,r,i){o.warn("Copying children of ",e,"root",i,"data",n.node(e),i);var a=n.children(e)||[];e!==i&&a.push(e),o.warn("Copying (nodes) clusterId",e,"nodes",a),a.forEach((function(a){if(n.children(a).length>0)t(a,n,r,i);else{var s=n.node(a);o.info("cp ",a," to ",i," with parent ",e),r.setNode(a,s),i!==n.parent(a)&&(o.warn("Setting parent",a,n.parent(a)),r.setParent(a,n.parent(a))),e!==i&&a!==e?(o.debug("Setting parent",a,e),r.setParent(a,e)):(o.info("In copy ",e,"root",i,"data",n.node(e),i),o.debug("Not Setting parent for node=",a,"cluster!==rootId",e!==i,"node!==clusterId",a!==e));var c=n.edges(a);o.debug("Copying Edges",c),c.forEach((function(t){o.info("Edge",t);var a=n.edge(t.v,t.w,t.name);o.info("Edge data",a,i);try{!function(t,e){return o.info("Decendants of ",e," is ",tn[e]),o.info("Edge is ",t),t.v!==e&&(t.w!==e&&(tn[e]?(o.info("Here "),tn[e].indexOf(t.v)>=0||(!!nn(t.v,e)||(!!nn(t.w,e)||tn[e].indexOf(t.w)>=0))):(o.debug("Tilt, ",e,",not in decendants"),!1)))}(t,i)?o.info("Skipping copy of edge ",t.v,"--\x3e",t.w," rootId: ",i," clusterId:",e):(o.info("Copying as ",t.v,t.w,a,t.name),r.setEdge(t.v,t.w,a,t.name),o.info("newGraph edges ",r.edges(),r.edge(r.edges()[0])))}catch(t){o.error(t)}}))}o.debug("Removing node",a),n.removeNode(a)}))},an=function t(e,n){o.trace("Searching",e);var r=n.children(e);if(o.trace("Searching children of id ",e,r),r.length<1)return o.trace("This is a valid node",e),e;for(var i=0;i<r.length;i++){var a=t(r[i],n);if(a)return o.trace("Found replacement for",e," => ",a),a}},on=function(t){return Je[t]&&Je[t].externalConnections&&Je[t]?Je[t].id:t},sn=function(t,e){!t||e>10?o.debug("Opting out, no graph "):(o.debug("Opting in, graph "),t.nodes().forEach((function(e){t.children(e).length>0&&(o.warn("Cluster identified",e," Replacement id in edges: ",an(e,t)),tn[e]=function t(e,n){for(var r=n.children(e),i=[].concat(r),a=0;a<r.length;a++)en[r[a]]=e,i=i.concat(t(r[a],n));return i}(e,t),Je[e]={id:an(e,t),clusterData:t.node(e)})})),t.nodes().forEach((function(e){var n=t.children(e),r=t.edges();n.length>0?(o.debug("Cluster identified",e,tn),r.forEach((function(t){t.v!==e&&t.w!==e&&(nn(t.v,e)^nn(t.w,e)&&(o.warn("Edge: ",t," leaves cluster ",e),o.warn("Decendants of XXX ",e,": ",tn[e]),Je[e].externalConnections=!0))}))):o.debug("Not a cluster ",e,tn)})),t.edges().forEach((function(e){var n=t.edge(e);o.warn("Edge "+e.v+" -> "+e.w+": "+JSON.stringify(e)),o.warn("Edge "+e.v+" -> "+e.w+": "+JSON.stringify(t.edge(e)));var r=e.v,i=e.w;o.warn("Fix XXX",Je,"ids:",e.v,e.w,"Translateing: ",Je[e.v]," --- ",Je[e.w]),(Je[e.v]||Je[e.w])&&(o.warn("Fixing and trixing - removing XXX",e.v,e.w,e.name),r=on(e.v),i=on(e.w),t.removeEdge(e.v,e.w,e.name),r!==e.v&&(n.fromCluster=e.v),i!==e.w&&(n.toCluster=e.w),o.warn("Fix Replacing with XXX",r,i,e.name),t.setEdge(r,i,n,e.name))})),o.warn("Adjusted Graph",Ae.a.json.write(t)),cn(t,0),o.trace(Je))},cn=function t(e,n){if(o.warn("extractor - ",n,Ae.a.json.write(e),e.children("D")),n>10)o.error("Bailing out");else{for(var r=e.nodes(),i=!1,a=0;a<r.length;a++){var s=r[a],c=e.children(s);i=i||c.length>0}if(i){o.debug("Nodes = ",r,n);for(var u=0;u<r.length;u++){var l=r[u];if(o.debug("Extracting node",l,Je,Je[l]&&!Je[l].externalConnections,!e.parent(l),e.node(l),e.children("D")," Depth ",n),Je[l])if(!Je[l].externalConnections&&e.children(l)&&e.children(l).length>0){o.warn("Cluster without external connections, without a parent and with children",l,n);var h="TB"===e.graph().rankdir?"LR":"TB";Je[l]&&Je[l].clusterData&&Je[l].clusterData.dir&&(h=Je[l].clusterData.dir,o.warn("Fixing dir",Je[l].clusterData.dir,h));var f=new Ae.a.Graph({multigraph:!0,compound:!0}).setGraph({rankdir:h,nodesep:50,ranksep:50,marginx:8,marginy:8}).setDefaultEdgeLabel((function(){return{}}));o.warn("Old graph before copy",Ae.a.json.write(e)),rn(l,e,f,l),e.setNode(l,{clusterNode:!0,id:l,clusterData:Je[l].clusterData,labelText:Je[l].labelText,graph:f}),o.warn("New graph after copy node: (",l,")",Ae.a.json.write(f)),o.debug("Old graph after copy",Ae.a.json.write(e))}else o.warn("Cluster ** ",l," **not meeting the criteria !externalConnections:",!Je[l].externalConnections," no parent: ",!e.parent(l)," children ",e.children(l)&&e.children(l).length>0,e.children("D"),n),o.debug(Je);else o.debug("Not a cluster",l,n)}r=e.nodes(),o.warn("New list of nodes",r);for(var d=0;d<r.length;d++){var p=r[d],y=e.node(p);o.warn(" Now next level",p,y),y.clusterNode&&t(y.graph,n+1)}}else o.debug("Done, no node has children",e.nodes())}},un=function(t){return function t(e,n){if(0===n.length)return[];var r=Object.assign(n);return n.forEach((function(n){var i=e.children(n),a=t(e,i);r=r.concat(a)})),r}(t,t.children())},ln=n(170);var hn=function(t,e,n,r){var i=t.x,a=t.y,o=i-r.x,s=a-r.y,c=Math.sqrt(e*e*s*s+n*n*o*o),u=Math.abs(e*n*o/c);r.x<i&&(u=-u);var l=Math.abs(e*n*s/c);return r.y<a&&(l=-l),{x:i+u,y:a+l}};var fn=function(t,e,n){return hn(t,e,e,n)};function dn(t,e){return t*e>0}var pn=function(t,e,n,r){var i,a,o,s,c,u,l,h,f,d,p,y,g;if(i=e.y-t.y,o=t.x-e.x,c=e.x*t.y-t.x*e.y,f=i*n.x+o*n.y+c,d=i*r.x+o*r.y+c,!(0!==f&&0!==d&&dn(f,d)||(a=r.y-n.y,s=n.x-r.x,u=r.x*n.y-n.x*r.y,l=a*t.x+s*t.y+u,h=a*e.x+s*e.y+u,0!==l&&0!==h&&dn(l,h)||0==(p=i*s-a*o))))return y=Math.abs(p/2),{x:(g=o*u-s*c)<0?(g-y)/p:(g+y)/p,y:(g=a*c-i*u)<0?(g-y)/p:(g+y)/p}},yn=function(t,e,n){var r=t.x,i=t.y,a=[],o=Number.POSITIVE_INFINITY,s=Number.POSITIVE_INFINITY;"function"==typeof e.forEach?e.forEach((function(t){o=Math.min(o,t.x),s=Math.min(s,t.y)})):(o=Math.min(o,e.x),s=Math.min(s,e.y));for(var c=r-t.width/2-o,u=i-t.height/2-s,l=0;l<e.length;l++){var h=e[l],f=e[l<e.length-1?l+1:0],d=pn(t,n,{x:c+h.x,y:u+h.y},{x:c+f.x,y:u+f.y});d&&a.push(d)}if(!a.length)return t;a.length>1&&a.sort((function(t,e){var r=t.x-n.x,i=t.y-n.y,a=Math.sqrt(r*r+i*i),o=e.x-n.x,s=e.y-n.y,c=Math.sqrt(o*o+s*s);return a<c?-1:a===c?0:1}));return a[0]};var gn=function(t,e){var n,r,i=t.x,a=t.y,o=e.x-i,s=e.y-a,c=t.width/2,u=t.height/2;return Math.abs(s)*c>Math.abs(o)*u?(s<0&&(u=-u),n=0===s?0:u*o/s,r=u):(o<0&&(c=-c),n=c,r=0===o?0:c*s/o),{x:i+n,y:a+r}},mn={node:n.n(ln).a,circle:fn,ellipse:hn,polygon:yn,rect:gn};function vn(t){return(vn="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}var bn=function(t,e,n){var r=t.insert("g").attr("class","node default").attr("id",e.domId||e.id),i=70,a=10;"LR"===n&&(i=10,a=70);var o=r.append("rect").attr("x",-1*i/2).attr("y",-1*a/2).attr("width",i).attr("height",a).attr("class","fork-join");return Ke(e,o),e.height=e.height+e.padding/2,e.width=e.width+e.padding/2,e.intersect=function(t){return mn.rect(e,t)},r},xn={question:function(t,e){var n=Ze(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=i.width+e.padding+(i.height+e.padding),s=[{x:a/2,y:0},{x:a,y:-a/2},{x:a/2,y:-a},{x:0,y:-a/2}];o.info("Question main (Circle)");var c=Qe(r,a,a,s);return c.attr("style",e.style),Ke(e,c),e.intersect=function(t){return o.warn("Intersect called"),mn.polygon(e,s,t)},r},rect:function(t,e){var n=Ze(t,e,"node "+e.classes,!0),r=n.shapeSvg,i=n.bbox,a=n.halfPadding;o.trace("Classes = ",e.classes);var s=r.insert("rect",":first-child");return s.attr("class","basic label-container").attr("style",e.style).attr("rx",e.rx).attr("ry",e.ry).attr("x",-i.width/2-a).attr("y",-i.height/2-a).attr("width",i.width+e.padding).attr("height",i.height+e.padding),Ke(e,s),e.intersect=function(t){return mn.rect(e,t)},r},rectWithTitle:function(t,e){var n;n=e.classes?"node "+e.classes:"node default";var r=t.insert("g").attr("class",n).attr("id",e.domId||e.id),i=r.insert("rect",":first-child"),a=r.insert("line"),s=r.insert("g").attr("class","label"),c=e.labelText.flat?e.labelText.flat():e.labelText,l="";l="object"===vn(c)?c[0]:c,o.info("Label text abc79",l,c,"object"===vn(c));var h,f=s.node().appendChild(Xe(l,e.labelStyle,!0,!0));if(et(oe().flowchart.htmlLabels)){var d=f.children[0],p=Object(u.select)(f);h=d.getBoundingClientRect(),p.attr("width",h.width),p.attr("height",h.height)}o.info("Text 2",c);var y=c.slice(1,c.length),g=f.getBBox(),m=s.node().appendChild(Xe(y.join?y.join("<br/>"):y,e.labelStyle,!0,!0));if(et(oe().flowchart.htmlLabels)){var v=m.children[0],b=Object(u.select)(m);h=v.getBoundingClientRect(),b.attr("width",h.width),b.attr("height",h.height)}var x=e.padding/2;return Object(u.select)(m).attr("transform","translate( "+(h.width>g.width?0:(g.width-h.width)/2)+", "+(g.height+x+5)+")"),Object(u.select)(f).attr("transform","translate( "+(h.width<g.width?0:-(g.width-h.width)/2)+", 0)"),h=s.node().getBBox(),s.attr("transform","translate("+-h.width/2+", "+(-h.height/2-x+3)+")"),i.attr("class","outer title-state").attr("x",-h.width/2-x).attr("y",-h.height/2-x).attr("width",h.width+e.padding).attr("height",h.height+e.padding),a.attr("class","divider").attr("x1",-h.width/2-x).attr("x2",h.width/2+x).attr("y1",-h.height/2-x+g.height+x).attr("y2",-h.height/2-x+g.height+x),Ke(e,i),e.intersect=function(t){return mn.rect(e,t)},r},choice:function(t,e){var n=t.insert("g").attr("class","node default").attr("id",e.domId||e.id),r=[{x:0,y:14},{x:14,y:0},{x:0,y:-14},{x:-14,y:0}],i=n.insert("polygon",":first-child").attr("points",r.map((function(t){return t.x+","+t.y})).join(" "));return i.attr("class","state-start").attr("r",7).attr("width",28).attr("height",28),e.width=28,e.height=28,e.intersect=function(t){return mn.circle(e,14,t)},n},circle:function(t,e){var n=Ze(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=n.halfPadding,s=r.insert("circle",":first-child");return s.attr("style",e.style).attr("rx",e.rx).attr("ry",e.ry).attr("r",i.width/2+a).attr("width",i.width+e.padding).attr("height",i.height+e.padding),o.info("Circle main"),Ke(e,s),e.intersect=function(t){return o.info("Circle intersect",e,i.width/2+a,t),mn.circle(e,i.width/2+a,t)},r},stadium:function(t,e){var n=Ze(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=i.height+e.padding,o=i.width+a/4+e.padding,s=r.insert("rect",":first-child").attr("style",e.style).attr("rx",a/2).attr("ry",a/2).attr("x",-o/2).attr("y",-a/2).attr("width",o).attr("height",a);return Ke(e,s),e.intersect=function(t){return mn.rect(e,t)},r},hexagon:function(t,e){var n=Ze(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=i.height+e.padding,o=a/4,s=i.width+2*o+e.padding,c=[{x:o,y:0},{x:s-o,y:0},{x:s,y:-a/2},{x:s-o,y:-a},{x:o,y:-a},{x:0,y:-a/2}],u=Qe(r,s,a,c);return u.attr("style",e.style),Ke(e,u),e.intersect=function(t){return mn.polygon(e,c,t)},r},rect_left_inv_arrow:function(t,e){var n=Ze(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=i.width+e.padding,o=i.height+e.padding,s=[{x:-o/2,y:0},{x:a,y:0},{x:a,y:-o},{x:-o/2,y:-o},{x:0,y:-o/2}];return Qe(r,a,o,s).attr("style",e.style),e.width=a+o,e.height=o,e.intersect=function(t){return mn.polygon(e,s,t)},r},lean_right:function(t,e){var n=Ze(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=i.width+e.padding,o=i.height+e.padding,s=[{x:-2*o/6,y:0},{x:a-o/6,y:0},{x:a+2*o/6,y:-o},{x:o/6,y:-o}],c=Qe(r,a,o,s);return c.attr("style",e.style),Ke(e,c),e.intersect=function(t){return mn.polygon(e,s,t)},r},lean_left:function(t,e){var n=Ze(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=i.width+e.padding,o=i.height+e.padding,s=[{x:2*o/6,y:0},{x:a+o/6,y:0},{x:a-2*o/6,y:-o},{x:-o/6,y:-o}],c=Qe(r,a,o,s);return c.attr("style",e.style),Ke(e,c),e.intersect=function(t){return mn.polygon(e,s,t)},r},trapezoid:function(t,e){var n=Ze(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=i.width+e.padding,o=i.height+e.padding,s=[{x:-2*o/6,y:0},{x:a+2*o/6,y:0},{x:a-o/6,y:-o},{x:o/6,y:-o}],c=Qe(r,a,o,s);return c.attr("style",e.style),Ke(e,c),e.intersect=function(t){return mn.polygon(e,s,t)},r},inv_trapezoid:function(t,e){var n=Ze(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=i.width+e.padding,o=i.height+e.padding,s=[{x:o/6,y:0},{x:a-o/6,y:0},{x:a+2*o/6,y:-o},{x:-2*o/6,y:-o}],c=Qe(r,a,o,s);return c.attr("style",e.style),Ke(e,c),e.intersect=function(t){return mn.polygon(e,s,t)},r},rect_right_inv_arrow:function(t,e){var n=Ze(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=i.width+e.padding,o=i.height+e.padding,s=[{x:0,y:0},{x:a+o/2,y:0},{x:a,y:-o/2},{x:a+o/2,y:-o},{x:0,y:-o}],c=Qe(r,a,o,s);return c.attr("style",e.style),Ke(e,c),e.intersect=function(t){return mn.polygon(e,s,t)},r},cylinder:function(t,e){var n=Ze(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=i.width+e.padding,o=a/2,s=o/(2.5+a/50),c=i.height+s+e.padding,u="M 0,"+s+" a "+o+","+s+" 0,0,0 "+a+" 0 a "+o+","+s+" 0,0,0 "+-a+" 0 l 0,"+c+" a "+o+","+s+" 0,0,0 "+a+" 0 l 0,"+-c,l=r.attr("label-offset-y",s).insert("path",":first-child").attr("style",e.style).attr("d",u).attr("transform","translate("+-a/2+","+-(c/2+s)+")");return Ke(e,l),e.intersect=function(t){var n=mn.rect(e,t),r=n.x-e.x;if(0!=o&&(Math.abs(r)<e.width/2||Math.abs(r)==e.width/2&&Math.abs(n.y-e.y)>e.height/2-s)){var i=s*s*(1-r*r/(o*o));0!=i&&(i=Math.sqrt(i)),i=s-i,t.y-e.y>0&&(i=-i),n.y+=i}return n},r},start:function(t,e){var n=t.insert("g").attr("class","node default").attr("id",e.domId||e.id),r=n.insert("circle",":first-child");return r.attr("class","state-start").attr("r",7).attr("width",14).attr("height",14),Ke(e,r),e.intersect=function(t){return mn.circle(e,7,t)},n},end:function(t,e){var n=t.insert("g").attr("class","node default").attr("id",e.domId||e.id),r=n.insert("circle",":first-child"),i=n.insert("circle",":first-child");return i.attr("class","state-start").attr("r",7).attr("width",14).attr("height",14),r.attr("class","state-end").attr("r",5).attr("width",10).attr("height",10),Ke(e,i),e.intersect=function(t){return mn.circle(e,7,t)},n},note:function(t,e){var n=Ze(t,e,"node "+e.classes,!0),r=n.shapeSvg,i=n.bbox,a=n.halfPadding;o.info("Classes = ",e.classes);var s=r.insert("rect",":first-child");return s.attr("rx",e.rx).attr("ry",e.ry).attr("x",-i.width/2-a).attr("y",-i.height/2-a).attr("width",i.width+e.padding).attr("height",i.height+e.padding),Ke(e,s),e.intersect=function(t){return mn.rect(e,t)},r},subroutine:function(t,e){var n=Ze(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=i.width+e.padding,o=i.height+e.padding,s=[{x:0,y:0},{x:a,y:0},{x:a,y:-o},{x:0,y:-o},{x:0,y:0},{x:-8,y:0},{x:a+8,y:0},{x:a+8,y:-o},{x:-8,y:-o},{x:-8,y:0}],c=Qe(r,a,o,s);return c.attr("style",e.style),Ke(e,c),e.intersect=function(t){return mn.polygon(e,s,t)},r},fork:bn,join:bn,class_box:function(t,e){var n,r=e.padding/2;n=e.classes?"node "+e.classes:"node default";var i=t.insert("g").attr("class",n).attr("id",e.domId||e.id),a=i.insert("rect",":first-child"),o=i.insert("line"),s=i.insert("line"),c=0,l=4,h=i.insert("g").attr("class","label"),f=0,d=e.classData.annotations&&e.classData.annotations[0],p=e.classData.annotations[0]?"«"+e.classData.annotations[0]+"»":"",y=h.node().appendChild(Xe(p,e.labelStyle,!0,!0)),g=y.getBBox();if(et(oe().flowchart.htmlLabels)){var m=y.children[0],v=Object(u.select)(y);g=m.getBoundingClientRect(),v.attr("width",g.width),v.attr("height",g.height)}e.classData.annotations[0]&&(l+=g.height+4,c+=g.width);var b=e.classData.id;void 0!==e.classData.type&&""!==e.classData.type&&(b+="<"+e.classData.type+">");var x=h.node().appendChild(Xe(b,e.labelStyle,!0,!0));Object(u.select)(x).attr("class","classTitle");var _=x.getBBox();if(et(oe().flowchart.htmlLabels)){var k=x.children[0],w=Object(u.select)(x);_=k.getBoundingClientRect(),w.attr("width",_.width),w.attr("height",_.height)}l+=_.height+4,_.width>c&&(c=_.width);var E=[];e.classData.members.forEach((function(t){var n=Be(t).displayText,r=h.node().appendChild(Xe(n,e.labelStyle,!0,!0)),i=r.getBBox();if(et(oe().flowchart.htmlLabels)){var a=r.children[0],o=Object(u.select)(r);i=a.getBoundingClientRect(),o.attr("width",i.width),o.attr("height",i.height)}i.width>c&&(c=i.width),l+=i.height+4,E.push(r)})),l+=8;var T=[];if(e.classData.methods.forEach((function(t){var n=Be(t).displayText,r=h.node().appendChild(Xe(n,e.labelStyle,!0,!0)),i=r.getBBox();if(et(oe().flowchart.htmlLabels)){var a=r.children[0],o=Object(u.select)(r);i=a.getBoundingClientRect(),o.attr("width",i.width),o.attr("height",i.height)}i.width>c&&(c=i.width),l+=i.height+4,T.push(r)})),l+=8,d){var C=(c-g.width)/2;Object(u.select)(y).attr("transform","translate( "+(-1*c/2+C)+", "+-1*l/2+")"),f=g.height+4}var S=(c-_.width)/2;return Object(u.select)(x).attr("transform","translate( "+(-1*c/2+S)+", "+(-1*l/2+f)+")"),f+=_.height+4,o.attr("class","divider").attr("x1",-c/2-r).attr("x2",c/2+r).attr("y1",-l/2-r+8+f).attr("y2",-l/2-r+8+f),f+=8,E.forEach((function(t){Object(u.select)(t).attr("transform","translate( "+-c/2+", "+(-1*l/2+f+4)+")"),f+=_.height+4})),f+=8,s.attr("class","divider").attr("x1",-c/2-r).attr("x2",c/2+r).attr("y1",-l/2-r+8+f).attr("y2",-l/2-r+8+f),f+=8,T.forEach((function(t){Object(u.select)(t).attr("transform","translate( "+-c/2+", "+(-1*l/2+f)+")"),f+=_.height+4})),a.attr("class","outer title-state").attr("x",-c/2-r).attr("y",-l/2-r).attr("width",c+e.padding).attr("height",l+e.padding),Ke(e,a),e.intersect=function(t){return mn.rect(e,t)},i}},_n={},kn=function(t){var e=_n[t.id];o.trace("Transforming node",t.diff,t,"translate("+(t.x-t.width/2-5)+", "+t.width/2+")");var n=t.diff||0;return t.clusterNode?e.attr("transform","translate("+(t.x+n-t.width/2)+", "+(t.y-t.height/2-8)+")"):e.attr("transform","translate("+t.x+", "+t.y+")"),n},wn={rect:function(t,e){o.trace("Creating subgraph rect for ",e.id,e);var n=t.insert("g").attr("class","cluster"+(e.class?" "+e.class:"")).attr("id",e.id),r=n.insert("rect",":first-child"),i=n.insert("g").attr("class","cluster-label"),a=i.node().appendChild(Xe(e.labelText,e.labelStyle,void 0,!0)),s=a.getBBox();if(et(oe().flowchart.htmlLabels)){var c=a.children[0],l=Object(u.select)(a);s=c.getBoundingClientRect(),l.attr("width",s.width),l.attr("height",s.height)}var h=0*e.padding,f=h/2,d=e.width<=s.width+h?s.width+h:e.width;e.width<=s.width+h?e.diff=(s.width-e.width)/2:e.diff=-e.padding/2,o.trace("Data ",e,JSON.stringify(e)),r.attr("style",e.style).attr("rx",e.rx).attr("ry",e.ry).attr("x",e.x-d/2).attr("y",e.y-e.height/2-f).attr("width",d).attr("height",e.height+h),i.attr("transform","translate("+(e.x-s.width/2)+", "+(e.y-e.height/2+e.padding/3)+")");var p=r.node().getBBox();return e.width=p.width,e.height=p.height,e.intersect=function(t){return gn(e,t)},n},roundedWithTitle:function(t,e){var n=t.insert("g").attr("class",e.classes).attr("id",e.id),r=n.insert("rect",":first-child"),i=n.insert("g").attr("class","cluster-label"),a=n.append("rect"),o=i.node().appendChild(Xe(e.labelText,e.labelStyle,void 0,!0)),s=o.getBBox();if(et(oe().flowchart.htmlLabels)){var c=o.children[0],l=Object(u.select)(o);s=c.getBoundingClientRect(),l.attr("width",s.width),l.attr("height",s.height)}s=o.getBBox();var h=0*e.padding,f=h/2,d=e.width<=s.width+e.padding?s.width+e.padding:e.width;e.width<=s.width+e.padding?e.diff=(s.width+0*e.padding-e.width)/2:e.diff=-e.padding/2,r.attr("class","outer").attr("x",e.x-d/2-f).attr("y",e.y-e.height/2-f).attr("width",d+h).attr("height",e.height+h),a.attr("class","inner").attr("x",e.x-d/2-f).attr("y",e.y-e.height/2-f+s.height-1).attr("width",d+h).attr("height",e.height+h-s.height-3),i.attr("transform","translate("+(e.x-s.width/2)+", "+(e.y-e.height/2-e.padding/3+(et(oe().flowchart.htmlLabels)?5:3))+")");var p=r.node().getBBox();return e.height=p.height,e.intersect=function(t){return gn(e,t)},n},noteGroup:function(t,e){var n=t.insert("g").attr("class","note-cluster").attr("id",e.id),r=n.insert("rect",":first-child"),i=0*e.padding,a=i/2;r.attr("rx",e.rx).attr("ry",e.ry).attr("x",e.x-e.width/2-a).attr("y",e.y-e.height/2-a).attr("width",e.width+i).attr("height",e.height+i).attr("fill","none");var o=r.node().getBBox();return e.width=o.width,e.height=o.height,e.intersect=function(t){return gn(e,t)},n},divider:function(t,e){var n=t.insert("g").attr("class",e.classes).attr("id",e.id),r=n.insert("rect",":first-child"),i=0*e.padding,a=i/2;r.attr("class","divider").attr("x",e.x-e.width/2-a).attr("y",e.y-e.height/2).attr("width",e.width+i).attr("height",e.height+i);var o=r.node().getBBox();return e.width=o.width,e.height=o.height,e.diff=-e.padding/2,e.intersect=function(t){return gn(e,t)},n}},En={},Tn={},Cn={},Sn=function(t,e){o.warn("abc88 cutPathAtIntersect",t,e);var n=[],r=t[0],i=!1;return t.forEach((function(t){if(o.info("abc88 checking point",t,e),function(t,e){var n=t.x,r=t.y,i=Math.abs(e.x-n),a=Math.abs(e.y-r),o=t.width/2,s=t.height/2;return i>=o||a>=s}(e,t)||i)o.warn("abc88 outside",t,r),r=t,i||n.push(t);else{var a=function(t,e,n){o.warn("intersection calc abc89:\n  outsidePoint: ".concat(JSON.stringify(e),"\n  insidePoint : ").concat(JSON.stringify(n),"\n  node        : x:").concat(t.x," y:").concat(t.y," w:").concat(t.width," h:").concat(t.height));var r=t.x,i=t.y,a=Math.abs(r-n.x),s=t.width/2,c=n.x<e.x?s-a:s+a,u=t.height/2,l=Math.abs(e.y-n.y),h=Math.abs(e.x-n.x);if(Math.abs(i-e.y)*s>Math.abs(r-e.x)*u){var f=n.y<e.y?e.y-u-i:i-u-e.y;c=h*f/l;var d={x:n.x<e.x?n.x+c:n.x-h+c,y:n.y<e.y?n.y+l-f:n.y-l+f};return 0===c&&(d.x=e.x,d.y=e.y),0===h&&(d.x=e.x),0===l&&(d.y=e.y),o.warn("abc89 topp/bott calc, Q ".concat(l,", q ").concat(f,", R ").concat(h,", r ").concat(c),d),d}var p=l*(c=n.x<e.x?e.x-s-r:r-s-e.x)/h,y=n.x<e.x?n.x+h-c:n.x-h+c,g=n.y<e.y?n.y+p:n.y-p;return o.warn("sides calc abc89, Q ".concat(l,", q ").concat(p,", R ").concat(h,", r ").concat(c),{_x:y,_y:g}),0===c&&(y=e.x,g=e.y),0===h&&(y=e.x),0===l&&(g=e.y),{x:y,y:g}}(e,r,t);o.warn("abc88 inside",t,r,a),o.warn("abc88 intersection",a);var s=!1;n.forEach((function(t){s=s||t.x===a.x&&t.y===a.y})),n.find((function(t){return t.x===a.x&&t.y===a.y}))?o.warn("abc88 no intersect",a,n):n.push(a),i=!0}})),o.warn("abc88 returning points",n),n},An=function t(e,n,r,i){o.info("Graph in recursive render: XXX",Ae.a.json.write(n),i);var a=n.graph().rankdir;o.trace("Dir in recursive render - dir:",a);var s=e.insert("g").attr("class","root");n.nodes()?o.info("Recursive render XXX",n.nodes()):o.info("No nodes found for",n),n.edges().length>0&&o.trace("Recursive edges",n.edge(n.edges()[0]));var c=s.insert("g").attr("class","clusters"),l=s.insert("g").attr("class","edgePaths"),h=s.insert("g").attr("class","edgeLabels"),f=s.insert("g").attr("class","nodes");n.nodes().forEach((function(e){var s=n.node(e);if(void 0!==i){var c=JSON.parse(JSON.stringify(i.clusterData));o.info("Setting data for cluster XXX (",e,") ",c,i),n.setNode(i.id,c),n.parent(e)||(o.trace("Setting parent",e,i.id),n.setParent(e,i.id,c))}if(o.info("(Insert) Node XXX"+e+": "+JSON.stringify(n.node(e))),s&&s.clusterNode){o.info("Cluster identified",e,s.width,n.node(e));var u=t(f,s.graph,r,n.node(e)),l=u.elem;Ke(s,l),s.diff=u.diff||0,o.info("Node bounds (abc123)",e,s,s.width,s.x,s.y),function(t,e){_n[e.id]=t}(l,s),o.warn("Recursive render complete ",l,s)}else n.children(e).length>0?(o.info("Cluster - the non recursive path XXX",e,s.id,s,n),o.info(an(s.id,n)),Je[s.id]={id:an(s.id,n),node:s}):(o.info("Node - the non recursive path",e,s.id,s),function(t,e,n){var r,i;e.link?(r=t.insert("svg:a").attr("xlink:href",e.link).attr("target",e.linkTarget||"_blank"),i=xn[e.shape](r,e,n)):r=i=xn[e.shape](t,e,n),e.tooltip&&i.attr("title",e.tooltip),e.class&&i.attr("class","node default "+e.class),_n[e.id]=r,e.haveCallback&&_n[e.id].attr("class",_n[e.id].attr("class")+" clickable")}(f,n.node(e),a))})),n.edges().forEach((function(t){var e=n.edge(t.v,t.w,t.name);o.info("Edge "+t.v+" -> "+t.w+": "+JSON.stringify(t)),o.info("Edge "+t.v+" -> "+t.w+": ",t," ",JSON.stringify(n.edge(t))),o.info("Fix",Je,"ids:",t.v,t.w,"Translateing: ",Je[t.v],Je[t.w]),function(t,e){var n=Xe(e.label,e.labelStyle),r=t.insert("g").attr("class","edgeLabel"),i=r.insert("g").attr("class","label");i.node().appendChild(n);var a=n.getBBox();if(et(oe().flowchart.htmlLabels)){var o=n.children[0],s=Object(u.select)(n);a=o.getBoundingClientRect(),s.attr("width",a.width),s.attr("height",a.height)}if(i.attr("transform","translate("+-a.width/2+", "+-a.height/2+")"),Tn[e.id]=r,e.width=a.width,e.height=a.height,e.startLabelLeft){var c=Xe(e.startLabelLeft,e.labelStyle),l=t.insert("g").attr("class","edgeTerminals"),h=l.insert("g").attr("class","inner");h.node().appendChild(c);var f=c.getBBox();h.attr("transform","translate("+-f.width/2+", "+-f.height/2+")"),Cn[e.id]||(Cn[e.id]={}),Cn[e.id].startLeft=l}if(e.startLabelRight){var d=Xe(e.startLabelRight,e.labelStyle),p=t.insert("g").attr("class","edgeTerminals"),y=p.insert("g").attr("class","inner");p.node().appendChild(d),y.node().appendChild(d);var g=d.getBBox();y.attr("transform","translate("+-g.width/2+", "+-g.height/2+")"),Cn[e.id]||(Cn[e.id]={}),Cn[e.id].startRight=p}if(e.endLabelLeft){var m=Xe(e.endLabelLeft,e.labelStyle),v=t.insert("g").attr("class","edgeTerminals"),b=v.insert("g").attr("class","inner");b.node().appendChild(m);var x=m.getBBox();b.attr("transform","translate("+-x.width/2+", "+-x.height/2+")"),v.node().appendChild(m),Cn[e.id]||(Cn[e.id]={}),Cn[e.id].endLeft=v}if(e.endLabelRight){var _=Xe(e.endLabelRight,e.labelStyle),k=t.insert("g").attr("class","edgeTerminals"),w=k.insert("g").attr("class","inner");w.node().appendChild(_);var E=_.getBBox();w.attr("transform","translate("+-E.width/2+", "+-E.height/2+")"),k.node().appendChild(_),Cn[e.id]||(Cn[e.id]={}),Cn[e.id].endRight=k}}(h,e)})),n.edges().forEach((function(t){o.info("Edge "+t.v+" -> "+t.w+": "+JSON.stringify(t))})),o.info("#############################################"),o.info("###                Layout                 ###"),o.info("#############################################"),o.info(n),Ce.a.layout(n),o.info("Graph after layout:",Ae.a.json.write(n));var d=0;return un(n).forEach((function(t){var e=n.node(t);o.info("Position "+t+": "+JSON.stringify(n.node(t))),o.info("Position "+t+": ("+e.x,","+e.y,") width: ",e.width," height: ",e.height),e&&e.clusterNode?kn(e):n.children(t).length>0?(!function(t,e){o.trace("Inserting cluster");var n=e.shape||"rect";En[e.id]=wn[n](t,e)}(c,e),Je[e.id].node=e):kn(e)})),n.edges().forEach((function(t){var e=n.edge(t);o.info("Edge "+t.v+" -> "+t.w+": "+JSON.stringify(e),e),function(t,e){o.info("Moving label abc78 ",t.id,t.label,Tn[t.id]);var n=e.updatedPath?e.updatedPath:e.originalPath;if(t.label){var r=Tn[t.id],i=t.x,a=t.y;if(n){var s=Nt.calcLabelPosition(n);o.info("Moving label from (",i,",",a,") to (",s.x,",",s.y,") abc78")}r.attr("transform","translate("+i+", "+a+")")}if(t.startLabelLeft){var c=Cn[t.id].startLeft,u=t.x,l=t.y;if(n){var h=Nt.calcTerminalLabelPosition(0,"start_left",n);u=h.x,l=h.y}c.attr("transform","translate("+u+", "+l+")")}if(t.startLabelRight){var f=Cn[t.id].startRight,d=t.x,p=t.y;if(n){var y=Nt.calcTerminalLabelPosition(0,"start_right",n);d=y.x,p=y.y}f.attr("transform","translate("+d+", "+p+")")}if(t.endLabelLeft){var g=Cn[t.id].endLeft,m=t.x,v=t.y;if(n){var b=Nt.calcTerminalLabelPosition(0,"end_left",n);m=b.x,v=b.y}g.attr("transform","translate("+m+", "+v+")")}if(t.endLabelRight){var x=Cn[t.id].endRight,_=t.x,k=t.y;if(n){var w=Nt.calcTerminalLabelPosition(0,"end_right",n);_=w.x,k=w.y}x.attr("transform","translate("+_+", "+k+")")}}(e,function(t,e,n,r,i,a){var s=n.points,c=!1,l=a.node(e.v),h=a.node(e.w);o.info("abc88 InsertEdge: ",n),h.intersect&&l.intersect&&((s=s.slice(1,n.points.length-1)).unshift(l.intersect(s[0])),o.info("Last point",s[s.length-1],h,h.intersect(s[s.length-1])),s.push(h.intersect(s[s.length-1]))),n.toCluster&&(o.info("to cluster abc88",r[n.toCluster]),s=Sn(n.points,r[n.toCluster].node),c=!0),n.fromCluster&&(o.info("from cluster abc88",r[n.fromCluster]),s=Sn(s.reverse(),r[n.fromCluster].node).reverse(),c=!0);var f,d=s.filter((function(t){return!Number.isNaN(t.y)}));f=("graph"===i||"flowchart"===i)&&n.curve||u.curveBasis;var p,y=Object(u.line)().x((function(t){return t.x})).y((function(t){return t.y})).curve(f);switch(n.thickness){case"normal":p="edge-thickness-normal";break;case"thick":p="edge-thickness-thick";break;default:p=""}switch(n.pattern){case"solid":p+=" edge-pattern-solid";break;case"dotted":p+=" edge-pattern-dotted";break;case"dashed":p+=" edge-pattern-dashed"}var g=t.append("path").attr("d",y(d)).attr("id",n.id).attr("class"," "+p+(n.classes?" "+n.classes:"")).attr("style",n.style),m="";switch(oe().state.arrowMarkerAbsolute&&(m=(m=(m=window.location.protocol+"//"+window.location.host+window.location.pathname+window.location.search).replace(/\(/g,"\\(")).replace(/\)/g,"\\)")),o.info("arrowTypeStart",n.arrowTypeStart),o.info("arrowTypeEnd",n.arrowTypeEnd),n.arrowTypeStart){case"arrow_cross":g.attr("marker-start","url("+m+"#"+i+"-crossStart)");break;case"arrow_point":g.attr("marker-start","url("+m+"#"+i+"-pointStart)");break;case"arrow_barb":g.attr("marker-start","url("+m+"#"+i+"-barbStart)");break;case"arrow_circle":g.attr("marker-start","url("+m+"#"+i+"-circleStart)");break;case"aggregation":g.attr("marker-start","url("+m+"#"+i+"-aggregationStart)");break;case"extension":g.attr("marker-start","url("+m+"#"+i+"-extensionStart)");break;case"composition":g.attr("marker-start","url("+m+"#"+i+"-compositionStart)");break;case"dependency":g.attr("marker-start","url("+m+"#"+i+"-dependencyStart)")}switch(n.arrowTypeEnd){case"arrow_cross":g.attr("marker-end","url("+m+"#"+i+"-crossEnd)");break;case"arrow_point":g.attr("marker-end","url("+m+"#"+i+"-pointEnd)");break;case"arrow_barb":g.attr("marker-end","url("+m+"#"+i+"-barbEnd)");break;case"arrow_circle":g.attr("marker-end","url("+m+"#"+i+"-circleEnd)");break;case"aggregation":g.attr("marker-end","url("+m+"#"+i+"-aggregationEnd)");break;case"extension":g.attr("marker-end","url("+m+"#"+i+"-extensionEnd)");break;case"composition":g.attr("marker-end","url("+m+"#"+i+"-compositionEnd)");break;case"dependency":g.attr("marker-end","url("+m+"#"+i+"-dependencyEnd)")}var v={};return c&&(v.updatedPath=s),v.originalPath=n.points,v}(l,t,e,Je,r,n))})),n.nodes().forEach((function(t){var e=n.node(t);o.info(t,e.type,e.diff),"group"===e.type&&(d=e.diff)})),{elem:s,diff:d}},Mn=function(t,e,n,r,i){Ve(t,n,r,i),_n={},Tn={},Cn={},En={},tn={},en={},Je={},o.warn("Graph at first:",Ae.a.json.write(e)),sn(e),o.warn("Graph after:",Ae.a.json.write(e)),An(t,e,r)};Me.parser.yy=Ee;var On={dividerMargin:10,padding:5,textHeight:10},Nn=function(t){Object.keys(t).forEach((function(e){On[e]=t[e]}))},Bn=function(t,e){o.info("Drawing class"),Ee.clear(),Me.parser.parse(t);var n=oe().flowchart;o.info("config:",n);var r=n.nodeSpacing||50,i=n.rankSpacing||50,a=new Ae.a.Graph({multigraph:!0,compound:!0}).setGraph({rankdir:"TD",nodesep:r,ranksep:i,marginx:8,marginy:8}).setDefaultEdgeLabel((function(){return{}})),s=Ee.getClasses(),c=Ee.getRelations();o.info(c),function(t,e){var n=Object.keys(t);o.info("keys:",n),o.info(t),n.forEach((function(n){var r=t[n],i="";r.cssClasses.length>0&&(i=i+" "+r.cssClasses.join(" "));var a={labelStyle:""},s=void 0!==r.text?r.text:r.id,c="";switch(r.type){case"class":c="class_box";break;default:c="class_box"}e.setNode(r.id,{labelStyle:a.labelStyle,shape:c,labelText:s,classData:r,rx:0,ry:0,class:i,style:a.style,id:r.id,domId:r.domId,haveCallback:r.haveCallback,link:r.link,width:"group"===r.type?500:void 0,type:r.type,padding:oe().flowchart.padding}),o.info("setNode",{labelStyle:a.labelStyle,shape:c,labelText:s,rx:0,ry:0,class:i,style:a.style,id:r.id,width:"group"===r.type?500:void 0,type:r.type,padding:oe().flowchart.padding})}))}(s,a),function(t,e){var n=0;t.forEach((function(r){n++;var i={classes:"relation"};i.pattern=1==r.relation.lineType?"dashed":"solid",i.id="id"+n,"arrow_open"===r.type?i.arrowhead="none":i.arrowhead="normal",o.info(i,r),i.startLabelRight="none"===r.relationTitle1?"":r.relationTitle1,i.endLabelLeft="none"===r.relationTitle2?"":r.relationTitle2,i.arrowTypeStart=Dn(r.relation.type1),i.arrowTypeEnd=Dn(r.relation.type2);var a="",s="";if(void 0!==r.style){var c=vt(r.style);a=c.style,s=c.labelStyle}else a="fill:none";i.style=a,i.labelStyle=s,void 0!==r.interpolate?i.curve=gt(r.interpolate,u.curveLinear):void 0!==t.defaultInterpolate?i.curve=gt(t.defaultInterpolate,u.curveLinear):i.curve=gt(On.curve,u.curveLinear),r.text=r.title,void 0===r.text?void 0!==r.style&&(i.arrowheadStyle="fill: #333"):(i.arrowheadStyle="fill: #333",i.labelpos="c",oe().flowchart.htmlLabels,i.labelType="text",i.label=r.text.replace(nt.lineBreakRegex,"\n"),void 0===r.style&&(i.style=i.style||"stroke: #333; stroke-width: 1.5px;fill:none"),i.labelStyle=i.labelStyle.replace("color:","fill:")),e.setEdge(r.id1,r.id2,i,n)}))}(c,a);var l=Object(u.select)('[id="'.concat(e,'"]'));l.attr("xmlns:xlink","http://www.w3.org/1999/xlink");var h=Object(u.select)("#"+e+" g");Mn(h,a,["aggregation","extension","composition","dependency"],"classDiagram",e);var f=l.node().getBBox(),d=f.width+16,p=f.height+16;if(o.debug("new ViewBox 0 0 ".concat(d," ").concat(p),"translate(".concat(8-a._label.marginx,", ").concat(8-a._label.marginy,")")),Ot(l,p,d,n.useMaxWidth),l.attr("viewBox","0 0 ".concat(d," ").concat(p)),l.select("g").attr("transform","translate(".concat(8-a._label.marginx,", ").concat(8-f.y,")")),!n.htmlLabels)for(var y=document.querySelectorAll('[id="'+e+'"] .edgeLabel .label'),g=0;g<y.length;g++){var m=y[g],v=m.getBBox(),b=document.createElementNS("http://www.w3.org/2000/svg","rect");b.setAttribute("rx",0),b.setAttribute("ry",0),b.setAttribute("width",v.width),b.setAttribute("height",v.height),b.setAttribute("style","fill:#e8e8e8;"),m.insertBefore(b,m.firstChild)}};function Dn(t){var e;switch(t){case 0:e="aggregation";break;case 1:e="extension";break;case 2:e="composition";break;case 3:e="dependency";break;default:e="none"}return e}var Ln={},In=[],Rn="",Fn=function(t){return void 0===Ln[t]&&(Ln[t]={attributes:[]},o.info("Added new entity :",t)),Ln[t]},Pn={Cardinality:{ZERO_OR_ONE:"ZERO_OR_ONE",ZERO_OR_MORE:"ZERO_OR_MORE",ONE_OR_MORE:"ONE_OR_MORE",ONLY_ONE:"ONLY_ONE"},Identification:{NON_IDENTIFYING:"NON_IDENTIFYING",IDENTIFYING:"IDENTIFYING"},parseDirective:function(t,e,n){cc.parseDirective(this,t,e,n)},getConfig:function(){return oe().er},addEntity:Fn,addAttributes:function(t,e){var n,r=Fn(t);for(n=e.length-1;n>=0;n--)r.attributes.push(e[n]),o.debug("Added attribute ",e[n].attributeName)},getEntities:function(){return Ln},addRelationship:function(t,e,n,r){var i={entityA:t,roleA:e,entityB:n,relSpec:r};In.push(i),o.debug("Added new relationship :",i)},getRelationships:function(){return In},clear:function(){Ln={},In=[],Rn=""},setTitle:function(t){Rn=t},getTitle:function(){return Rn}},jn=n(76),Yn=n.n(jn),zn={ONLY_ONE_START:"ONLY_ONE_START",ONLY_ONE_END:"ONLY_ONE_END",ZERO_OR_ONE_START:"ZERO_OR_ONE_START",ZERO_OR_ONE_END:"ZERO_OR_ONE_END",ONE_OR_MORE_START:"ONE_OR_MORE_START",ONE_OR_MORE_END:"ONE_OR_MORE_END",ZERO_OR_MORE_START:"ZERO_OR_MORE_START",ZERO_OR_MORE_END:"ZERO_OR_MORE_END"},Un=zn,$n=function(t,e){var n;t.append("defs").append("marker").attr("id",zn.ONLY_ONE_START).attr("refX",0).attr("refY",9).attr("markerWidth",18).attr("markerHeight",18).attr("orient","auto").append("path").attr("stroke",e.stroke).attr("fill","none").attr("d","M9,0 L9,18 M15,0 L15,18"),t.append("defs").append("marker").attr("id",zn.ONLY_ONE_END).attr("refX",18).attr("refY",9).attr("markerWidth",18).attr("markerHeight",18).attr("orient","auto").append("path").attr("stroke",e.stroke).attr("fill","none").attr("d","M3,0 L3,18 M9,0 L9,18"),(n=t.append("defs").append("marker").attr("id",zn.ZERO_OR_ONE_START).attr("refX",0).attr("refY",9).attr("markerWidth",30).attr("markerHeight",18).attr("orient","auto")).append("circle").attr("stroke",e.stroke).attr("fill","white").attr("cx",21).attr("cy",9).attr("r",6),n.append("path").attr("stroke",e.stroke).attr("fill","none").attr("d","M9,0 L9,18"),(n=t.append("defs").append("marker").attr("id",zn.ZERO_OR_ONE_END).attr("refX",30).attr("refY",9).attr("markerWidth",30).attr("markerHeight",18).attr("orient","auto")).append("circle").attr("stroke",e.stroke).attr("fill","white").attr("cx",9).attr("cy",9).attr("r",6),n.append("path").attr("stroke",e.stroke).attr("fill","none").attr("d","M21,0 L21,18"),t.append("defs").append("marker").attr("id",zn.ONE_OR_MORE_START).attr("refX",18).attr("refY",18).attr("markerWidth",45).attr("markerHeight",36).attr("orient","auto").append("path").attr("stroke",e.stroke).attr("fill","none").attr("d","M0,18 Q 18,0 36,18 Q 18,36 0,18 M42,9 L42,27"),t.append("defs").append("marker").attr("id",zn.ONE_OR_MORE_END).attr("refX",27).attr("refY",18).attr("markerWidth",45).attr("markerHeight",36).attr("orient","auto").append("path").attr("stroke",e.stroke).attr("fill","none").attr("d","M3,9 L3,27 M9,18 Q27,0 45,18 Q27,36 9,18"),(n=t.append("defs").append("marker").attr("id",zn.ZERO_OR_MORE_START).attr("refX",18).attr("refY",18).attr("markerWidth",57).attr("markerHeight",36).attr("orient","auto")).append("circle").attr("stroke",e.stroke).attr("fill","white").attr("cx",48).attr("cy",18).attr("r",6),n.append("path").attr("stroke",e.stroke).attr("fill","none").attr("d","M0,18 Q18,0 36,18 Q18,36 0,18"),(n=t.append("defs").append("marker").attr("id",zn.ZERO_OR_MORE_END).attr("refX",39).attr("refY",18).attr("markerWidth",57).attr("markerHeight",36).attr("orient","auto")).append("circle").attr("stroke",e.stroke).attr("fill","white").attr("cx",9).attr("cy",18).attr("r",6),n.append("path").attr("stroke",e.stroke).attr("fill","none").attr("d","M21,18 Q39,0 57,18 Q39,36 21,18")},qn={},Wn=function(t,e,n){var r;return Object.keys(e).forEach((function(i){var a=t.append("g").attr("id",i);r=void 0===r?i:r;var o="entity-"+i,s=a.append("text").attr("class","er entityLabel").attr("id",o).attr("x",0).attr("y",0).attr("dominant-baseline","middle").attr("text-anchor","middle").attr("style","font-family: "+oe().fontFamily+"; font-size: "+qn.fontSize+"px").text(i),c=function(t,e,n){var r=qn.entityPadding/3,i=qn.entityPadding/3,a=.85*qn.fontSize,o=e.node().getBBox(),s=[],c=0,u=0,l=o.height+2*r,h=1;n.forEach((function(n){var i="".concat(e.node().id,"-attr-").concat(h),o=t.append("text").attr("class","er entityLabel").attr("id","".concat(i,"-type")).attr("x",0).attr("y",0).attr("dominant-baseline","middle").attr("text-anchor","left").attr("style","font-family: "+oe().fontFamily+"; font-size: "+a+"px").text(n.attributeType),f=t.append("text").attr("class","er entityLabel").attr("id","".concat(i,"-name")).attr("x",0).attr("y",0).attr("dominant-baseline","middle").attr("text-anchor","left").attr("style","font-family: "+oe().fontFamily+"; font-size: "+a+"px").text(n.attributeName);s.push({tn:o,nn:f});var d=o.node().getBBox(),p=f.node().getBBox();c=Math.max(c,d.width),u=Math.max(u,p.width),l+=Math.max(d.height,p.height)+2*r,h+=1}));var f={width:Math.max(qn.minEntityWidth,Math.max(o.width+2*qn.entityPadding,c+u+4*i)),height:n.length>0?l:Math.max(qn.minEntityHeight,o.height+2*qn.entityPadding)},d=Math.max(0,f.width-(c+u)-4*i);if(n.length>0){e.attr("transform","translate("+f.width/2+","+(r+o.height/2)+")");var p=o.height+2*r,y="attributeBoxOdd";s.forEach((function(e){var n=p+r+Math.max(e.tn.node().getBBox().height,e.nn.node().getBBox().height)/2;e.tn.attr("transform","translate("+i+","+n+")");var a=t.insert("rect","#"+e.tn.node().id).attr("class","er ".concat(y)).attr("fill",qn.fill).attr("fill-opacity","100%").attr("stroke",qn.stroke).attr("x",0).attr("y",p).attr("width",c+2*i+d/2).attr("height",e.tn.node().getBBox().height+2*r);e.nn.attr("transform","translate("+(parseFloat(a.attr("width"))+i)+","+n+")"),t.insert("rect","#"+e.nn.node().id).attr("class","er ".concat(y)).attr("fill",qn.fill).attr("fill-opacity","100%").attr("stroke",qn.stroke).attr("x","".concat(a.attr("x")+a.attr("width"))).attr("y",p).attr("width",u+2*i+d/2).attr("height",e.nn.node().getBBox().height+2*r),p+=Math.max(e.tn.node().getBBox().height,e.nn.node().getBBox().height)+2*r,y="attributeBoxOdd"==y?"attributeBoxEven":"attributeBoxOdd"}))}else f.height=Math.max(qn.minEntityHeight,l),e.attr("transform","translate("+f.width/2+","+f.height/2+")");return f}(a,s,e[i].attributes),u=c.width,l=c.height,h=a.insert("rect","#"+o).attr("class","er entityBox").attr("fill",qn.fill).attr("fill-opacity","100%").attr("stroke",qn.stroke).attr("x",0).attr("y",0).attr("width",u).attr("height",l).node().getBBox();n.setNode(i,{width:h.width,height:h.height,shape:"rect",id:i})})),r},Hn=function(t){return(t.entityA+t.roleA+t.entityB).replace(/\s/g,"")},Vn=0,Gn=function(t){for(var e=Object.keys(t),n=0;n<e.length;n++)qn[e[n]]=t[e[n]]},Xn=function(t,e){o.info("Drawing ER diagram"),Pn.clear();var n=Yn.a.parser;n.yy=Pn;try{n.parse(t)}catch(t){o.debug("Parsing failed")}var r,i=Object(u.select)("[id='".concat(e,"']"));$n(i,qn),r=new Ae.a.Graph({multigraph:!0,directed:!0,compound:!1}).setGraph({rankdir:qn.layoutDirection,marginx:20,marginy:20,nodesep:100,edgesep:100,ranksep:100}).setDefaultEdgeLabel((function(){return{}}));var a,s,c=Wn(i,Pn.getEntities(),r),l=function(t,e){return t.forEach((function(t){e.setEdge(t.entityA,t.entityB,{relationship:t},Hn(t))})),t}(Pn.getRelationships(),r);Ce.a.layout(r),a=i,(s=r).nodes().forEach((function(t){void 0!==t&&void 0!==s.node(t)&&a.select("#"+t).attr("transform","translate("+(s.node(t).x-s.node(t).width/2)+","+(s.node(t).y-s.node(t).height/2)+" )")})),l.forEach((function(t){!function(t,e,n,r){Vn++;var i=n.edge(e.entityA,e.entityB,Hn(e)),a=Object(u.line)().x((function(t){return t.x})).y((function(t){return t.y})).curve(u.curveBasis),o=t.insert("path","#"+r).attr("class","er relationshipLine").attr("d",a(i.points)).attr("stroke",qn.stroke).attr("fill","none");e.relSpec.relType===Pn.Identification.NON_IDENTIFYING&&o.attr("stroke-dasharray","8,8");var s="";switch(qn.arrowMarkerAbsolute&&(s=(s=(s=window.location.protocol+"//"+window.location.host+window.location.pathname+window.location.search).replace(/\(/g,"\\(")).replace(/\)/g,"\\)")),e.relSpec.cardA){case Pn.Cardinality.ZERO_OR_ONE:o.attr("marker-end","url("+s+"#"+Un.ZERO_OR_ONE_END+")");break;case Pn.Cardinality.ZERO_OR_MORE:o.attr("marker-end","url("+s+"#"+Un.ZERO_OR_MORE_END+")");break;case Pn.Cardinality.ONE_OR_MORE:o.attr("marker-end","url("+s+"#"+Un.ONE_OR_MORE_END+")");break;case Pn.Cardinality.ONLY_ONE:o.attr("marker-end","url("+s+"#"+Un.ONLY_ONE_END+")")}switch(e.relSpec.cardB){case Pn.Cardinality.ZERO_OR_ONE:o.attr("marker-start","url("+s+"#"+Un.ZERO_OR_ONE_START+")");break;case Pn.Cardinality.ZERO_OR_MORE:o.attr("marker-start","url("+s+"#"+Un.ZERO_OR_MORE_START+")");break;case Pn.Cardinality.ONE_OR_MORE:o.attr("marker-start","url("+s+"#"+Un.ONE_OR_MORE_START+")");break;case Pn.Cardinality.ONLY_ONE:o.attr("marker-start","url("+s+"#"+Un.ONLY_ONE_START+")")}var c=o.node().getTotalLength(),l=o.node().getPointAtLength(.5*c),h="rel"+Vn,f=t.append("text").attr("class","er relationshipLabel").attr("id",h).attr("x",l.x).attr("y",l.y).attr("text-anchor","middle").attr("dominant-baseline","middle").attr("style","font-family: "+oe().fontFamily+"; font-size: "+qn.fontSize+"px").text(e.roleA).node().getBBox();t.insert("rect","#"+h).attr("class","er relationshipLabelBox").attr("x",l.x-f.width/2).attr("y",l.y-f.height/2).attr("width",f.width).attr("height",f.height).attr("fill","white").attr("fill-opacity","85%")}(i,t,r,c)}));var h=qn.diagramPadding,f=i.node().getBBox(),d=f.width+2*h,p=f.height+2*h;Ot(i,p,d,qn.useMaxWidth),i.attr("viewBox","".concat(f.x-h," ").concat(f.y-h," ").concat(d," ").concat(p))};function Zn(t){return(Zn="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}function Kn(t){return function(t){if(Array.isArray(t))return Qn(t)}(t)||function(t){if("undefined"!=typeof Symbol&&null!=t[Symbol.iterator]||null!=t["@@iterator"])return Array.from(t)}(t)||function(t,e){if(!t)return;if("string"==typeof t)return Qn(t,e);var n=Object.prototype.toString.call(t).slice(8,-1);"Object"===n&&t.constructor&&(n=t.constructor.name);if("Map"===n||"Set"===n)return Array.from(t);if("Arguments"===n||/^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(n))return Qn(t,e)}(t)||function(){throw new TypeError("Invalid attempt to spread non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}()}function Qn(t,e){(null==e||e>t.length)&&(e=t.length);for(var n=0,r=new Array(e);n<e;n++)r[n]=t[n];return r}var Jn,tr,er=0,nr=oe(),rr={},ir=[],ar=[],or=[],sr={},cr={},ur=0,lr=!0,hr=[],fr=function(t){for(var e=Object.keys(rr),n=0;n<e.length;n++)if(rr[e[n]].id===t)return rr[e[n]].domId;return t},dr=function(t,e,n,r){var i={start:t,end:e,type:void 0,text:""};void 0!==(r=n.text)&&(i.text=nt.sanitizeText(r.trim(),nr),'"'===i.text[0]&&'"'===i.text[i.text.length-1]&&(i.text=i.text.substring(1,i.text.length-1))),void 0!==n&&(i.type=n.type,i.stroke=n.stroke,i.length=n.length),ir.push(i)},pr=function(t,e){t.split(",").forEach((function(t){var n=t;void 0!==rr[n]&&rr[n].classes.push(e),void 0!==sr[n]&&sr[n].classes.push(e)}))},yr=function(t){var e=Object(u.select)(".mermaidTooltip");null===(e._groups||e)[0][0]&&(e=Object(u.select)("body").append("div").attr("class","mermaidTooltip").style("opacity",0)),Object(u.select)(t).select("svg").selectAll("g.node").on("mouseover",(function(){var t=Object(u.select)(this);if(null!==t.attr("title")){var n=this.getBoundingClientRect();e.transition().duration(200).style("opacity",".9"),e.html(t.attr("title")).style("left",window.scrollX+n.left+(n.right-n.left)/2+"px").style("top",window.scrollY+n.top-14+document.body.scrollTop+"px"),t.classed("hover",!0)}})).on("mouseout",(function(){e.transition().duration(500).style("opacity",0),Object(u.select)(this).classed("hover",!1)}))};hr.push(yr);var gr=function(t){for(var e=0;e<or.length;e++)if(or[e].id===t)return e;return-1},mr=-1,vr=[],br=function(t,e){var n=!1;return t.forEach((function(t){t.nodes.indexOf(e)>=0&&(n=!0)})),n},xr=function(t,e){var n=[];return t.nodes.forEach((function(r,i){br(e,r)||n.push(t.nodes[i])})),{nodes:n}},_r={parseDirective:function(t,e,n){cc.parseDirective(this,t,e,n)},defaultConfig:function(){return te.flowchart},addVertex:function(t,e,n,r,i,a){var o,s=t;void 0!==s&&0!==s.trim().length&&(void 0===rr[s]&&(rr[s]={id:s,domId:"flowchart-"+s+"-"+er,styles:[],classes:[]}),er++,void 0!==e?(nr=oe(),'"'===(o=nt.sanitizeText(e.trim(),nr))[0]&&'"'===o[o.length-1]&&(o=o.substring(1,o.length-1)),rr[s].text=o):void 0===rr[s].text&&(rr[s].text=t),void 0!==n&&(rr[s].type=n),null!=r&&r.forEach((function(t){rr[s].styles.push(t)})),null!=i&&i.forEach((function(t){rr[s].classes.push(t)})),void 0!==a&&(rr[s].dir=a))},lookUpDomId:fr,addLink:function(t,e,n,r){var i,a;for(i=0;i<t.length;i++)for(a=0;a<e.length;a++)dr(t[i],e[a],n,r)},updateLinkInterpolate:function(t,e){t.forEach((function(t){"default"===t?ir.defaultInterpolate=e:ir[t].interpolate=e}))},updateLink:function(t,e){t.forEach((function(t){"default"===t?ir.defaultStyle=e:(-1===Nt.isSubstringInArray("fill",e)&&e.push("fill:none"),ir[t].style=e)}))},addClass:function(t,e){void 0===ar[t]&&(ar[t]={id:t,styles:[],textStyles:[]}),null!=e&&e.forEach((function(e){if(e.match("color")){var n=e.replace("fill","bgFill").replace("color","fill");ar[t].textStyles.push(n)}ar[t].styles.push(e)}))},setDirection:function(t){(Jn=t).match(/.*</)&&(Jn="RL"),Jn.match(/.*\^/)&&(Jn="BT"),Jn.match(/.*>/)&&(Jn="LR"),Jn.match(/.*v/)&&(Jn="TB")},setClass:pr,setTooltip:function(t,e){t.split(",").forEach((function(t){void 0!==e&&(cr["gen-1"===tr?fr(t):t]=nt.sanitizeText(e,nr))}))},getTooltip:function(t){return cr[t]},setClickEvent:function(t,e,n){t.split(",").forEach((function(t){!function(t,e,n){var r=fr(t);if("loose"===oe().securityLevel&&void 0!==e){var i=[];if("string"==typeof n){i=n.split(/,(?=(?:(?:[^"]*"){2})*[^"]*$)/);for(var a=0;a<i.length;a++){var o=i[a].trim();'"'===o.charAt(0)&&'"'===o.charAt(o.length-1)&&(o=o.substr(1,o.length-2)),i[a]=o}}0===i.length&&i.push(t),void 0!==rr[t]&&(rr[t].haveCallback=!0,hr.push((function(){var t=document.querySelector('[id="'.concat(r,'"]'));null!==t&&t.addEventListener("click",(function(){Nt.runFunc.apply(Nt,[e].concat(Kn(i)))}),!1)})))}}(t,e,n)})),pr(t,"clickable")},setLink:function(t,e,n){t.split(",").forEach((function(t){void 0!==rr[t]&&(rr[t].link=Nt.formatUrl(e,nr),rr[t].linkTarget=n)})),pr(t,"clickable")},bindFunctions:function(t){hr.forEach((function(e){e(t)}))},getDirection:function(){return Jn.trim()},getVertices:function(){return rr},getEdges:function(){return ir},getClasses:function(){return ar},clear:function(t){rr={},ar={},ir=[],(hr=[]).push(yr),or=[],sr={},ur=0,cr=[],lr=!0,tr=t||"gen-1"},setGen:function(t){tr=t||"gen-1"},defaultStyle:function(){return"fill:#ffa;stroke: #f66; stroke-width: 3px; stroke-dasharray: 5, 5;fill:#ffa;stroke: #666;"},addSubGraph:function(t,e,n){var r=t.trim(),i=n;t===n&&n.match(/\s/)&&(r=void 0);var a=[],s=function(t){var e,n={boolean:{},number:{},string:{}},r=[];return{nodeList:t.filter((function(t){var i=Zn(t);return t.stmt&&"dir"===t.stmt?(e=t.value,!1):""!==t.trim()&&(i in n?!n[i].hasOwnProperty(t)&&(n[i][t]=!0):!(r.indexOf(t)>=0)&&r.push(t))})),dir:e}}(a.concat.apply(a,e)),c=s.nodeList,u=s.dir;if(a=c,"gen-1"===tr){o.warn("LOOKING UP");for(var l=0;l<a.length;l++)a[l]=fr(a[l])}r=r||"subGraph"+ur,i=i||"",i=nt.sanitizeText(i,nr),ur+=1;var h={id:r,nodes:a,title:i.trim(),classes:[],dir:u};return o.info("Adding",h.id,h.nodes,h.dir),h.nodes=xr(h,or).nodes,or.push(h),sr[r]=h,r},getDepthFirstPos:function(t){return vr[t]},indexNodes:function(){mr=-1,or.length>0&&function t(e,n){var r=or[n].nodes;if(!((mr+=1)>2e3)){if(vr[mr]=n,or[n].id===e)return{result:!0,count:0};for(var i=0,a=1;i<r.length;){var o=gr(r[i]);if(o>=0){var s=t(e,o);if(s.result)return{result:!0,count:a+s.count};a+=s.count}i+=1}return{result:!1,count:a}}}("none",or.length-1)},getSubGraphs:function(){return or},destructLink:function(t,e){var n,r=function(t){var e=t.trim(),n=e.slice(0,-1),r="arrow_open";switch(e.slice(-1)){case"x":r="arrow_cross","x"===e[0]&&(r="double_"+r,n=n.slice(1));break;case">":r="arrow_point","<"===e[0]&&(r="double_"+r,n=n.slice(1));break;case"o":r="arrow_circle","o"===e[0]&&(r="double_"+r,n=n.slice(1))}var i="normal",a=n.length-1;"="===n[0]&&(i="thick");var o=function(t,e){for(var n=e.length,r=0,i=0;i<n;++i)e[i]===t&&++r;return r}(".",n);return o&&(i="dotted",a=o),{type:r,stroke:i,length:a}}(t);if(e){if((n=function(t){var e=t.trim(),n="arrow_open";switch(e[0]){case"<":n="arrow_point",e=e.slice(1);break;case"x":n="arrow_cross",e=e.slice(1);break;case"o":n="arrow_circle",e=e.slice(1)}var r="normal";return-1!==e.indexOf("=")&&(r="thick"),-1!==e.indexOf(".")&&(r="dotted"),{type:n,stroke:r}}(e)).stroke!==r.stroke)return{type:"INVALID",stroke:"INVALID"};if("arrow_open"===n.type)n.type=r.type;else{if(n.type!==r.type)return{type:"INVALID",stroke:"INVALID"};n.type="double_"+n.type}return"double_arrow"===n.type&&(n.type="double_arrow_point"),n.length=r.length,n}return r},lex:{firstGraph:function(){return!!lr&&(lr=!1,!0)}},exists:br,makeUniq:xr},kr=n(27),wr=n.n(kr),Er=n(8),Tr=n.n(Er),Cr=n(51),Sr=n.n(Cr);function Ar(t,e,n){var r=.9*(e.width+e.height),i=[{x:r/2,y:0},{x:r,y:-r/2},{x:r/2,y:-r},{x:0,y:-r/2}],a=jr(t,r,r,i);return n.intersect=function(t){return Tr.a.intersect.polygon(n,i,t)},a}function Mr(t,e,n){var r=e.height,i=r/4,a=e.width+2*i,o=[{x:i,y:0},{x:a-i,y:0},{x:a,y:-r/2},{x:a-i,y:-r},{x:i,y:-r},{x:0,y:-r/2}],s=jr(t,a,r,o);return n.intersect=function(t){return Tr.a.intersect.polygon(n,o,t)},s}function Or(t,e,n){var r=e.width,i=e.height,a=[{x:-i/2,y:0},{x:r,y:0},{x:r,y:-i},{x:-i/2,y:-i},{x:0,y:-i/2}],o=jr(t,r,i,a);return n.intersect=function(t){return Tr.a.intersect.polygon(n,a,t)},o}function Nr(t,e,n){var r=e.width,i=e.height,a=[{x:-2*i/6,y:0},{x:r-i/6,y:0},{x:r+2*i/6,y:-i},{x:i/6,y:-i}],o=jr(t,r,i,a);return n.intersect=function(t){return Tr.a.intersect.polygon(n,a,t)},o}function Br(t,e,n){var r=e.width,i=e.height,a=[{x:2*i/6,y:0},{x:r+i/6,y:0},{x:r-2*i/6,y:-i},{x:-i/6,y:-i}],o=jr(t,r,i,a);return n.intersect=function(t){return Tr.a.intersect.polygon(n,a,t)},o}function Dr(t,e,n){var r=e.width,i=e.height,a=[{x:-2*i/6,y:0},{x:r+2*i/6,y:0},{x:r-i/6,y:-i},{x:i/6,y:-i}],o=jr(t,r,i,a);return n.intersect=function(t){return Tr.a.intersect.polygon(n,a,t)},o}function Lr(t,e,n){var r=e.width,i=e.height,a=[{x:i/6,y:0},{x:r-i/6,y:0},{x:r+2*i/6,y:-i},{x:-2*i/6,y:-i}],o=jr(t,r,i,a);return n.intersect=function(t){return Tr.a.intersect.polygon(n,a,t)},o}function Ir(t,e,n){var r=e.width,i=e.height,a=[{x:0,y:0},{x:r+i/2,y:0},{x:r,y:-i/2},{x:r+i/2,y:-i},{x:0,y:-i}],o=jr(t,r,i,a);return n.intersect=function(t){return Tr.a.intersect.polygon(n,a,t)},o}function Rr(t,e,n){var r=e.height,i=e.width+r/4,a=t.insert("rect",":first-child").attr("rx",r/2).attr("ry",r/2).attr("x",-i/2).attr("y",-r/2).attr("width",i).attr("height",r);return n.intersect=function(t){return Tr.a.intersect.rect(n,t)},a}function Fr(t,e,n){var r=e.width,i=e.height,a=[{x:0,y:0},{x:r,y:0},{x:r,y:-i},{x:0,y:-i},{x:0,y:0},{x:-8,y:0},{x:r+8,y:0},{x:r+8,y:-i},{x:-8,y:-i},{x:-8,y:0}],o=jr(t,r,i,a);return n.intersect=function(t){return Tr.a.intersect.polygon(n,a,t)},o}function Pr(t,e,n){var r=e.width,i=r/2,a=i/(2.5+r/50),o=e.height+a,s="M 0,"+a+" a "+i+","+a+" 0,0,0 "+r+" 0 a "+i+","+a+" 0,0,0 "+-r+" 0 l 0,"+o+" a "+i+","+a+" 0,0,0 "+r+" 0 l 0,"+-o,c=t.attr("label-offset-y",a).insert("path",":first-child").attr("d",s).attr("transform","translate("+-r/2+","+-(o/2+a)+")");return n.intersect=function(t){var e=Tr.a.intersect.rect(n,t),r=e.x-n.x;if(0!=i&&(Math.abs(r)<n.width/2||Math.abs(r)==n.width/2&&Math.abs(e.y-n.y)>n.height/2-a)){var o=a*a*(1-r*r/(i*i));0!=o&&(o=Math.sqrt(o)),o=a-o,t.y-n.y>0&&(o=-o),e.y+=o}return e},c}function jr(t,e,n,r){return t.insert("polygon",":first-child").attr("points",r.map((function(t){return t.x+","+t.y})).join(" ")).attr("transform","translate("+-e/2+","+n/2+")")}var Yr={addToRender:function(t){t.shapes().question=Ar,t.shapes().hexagon=Mr,t.shapes().stadium=Rr,t.shapes().subroutine=Fr,t.shapes().cylinder=Pr,t.shapes().rect_left_inv_arrow=Or,t.shapes().lean_right=Nr,t.shapes().lean_left=Br,t.shapes().trapezoid=Dr,t.shapes().inv_trapezoid=Lr,t.shapes().rect_right_inv_arrow=Ir},addToRenderV2:function(t){t({question:Ar}),t({hexagon:Mr}),t({stadium:Rr}),t({subroutine:Fr}),t({cylinder:Pr}),t({rect_left_inv_arrow:Or}),t({lean_right:Nr}),t({lean_left:Br}),t({trapezoid:Dr}),t({inv_trapezoid:Lr}),t({rect_right_inv_arrow:Ir})}},zr={},Ur=function(t,e,n){var r=Object(u.select)('[id="'.concat(n,'"]'));Object.keys(t).forEach((function(n){var i=t[n],a="default";i.classes.length>0&&(a=i.classes.join(" "));var s,c=vt(i.styles),u=void 0!==i.text?i.text:i.id;if(et(oe().flowchart.htmlLabels)){var l={label:u.replace(/fa[lrsb]?:fa-[\w-]+/g,(function(t){return"<i class='".concat(t.replace(":"," "),"'></i>")}))};(s=Sr()(r,l).node()).parentNode.removeChild(s)}else{var h=document.createElementNS("http://www.w3.org/2000/svg","text");h.setAttribute("style",c.labelStyle.replace("color:","fill:"));for(var f=u.split(nt.lineBreakRegex),d=0;d<f.length;d++){var p=document.createElementNS("http://www.w3.org/2000/svg","tspan");p.setAttributeNS("http://www.w3.org/XML/1998/namespace","xml:space","preserve"),p.setAttribute("dy","1em"),p.setAttribute("x","1"),p.textContent=f[d],h.appendChild(p)}s=h}var y=0,g="";switch(i.type){case"round":y=5,g="rect";break;case"square":g="rect";break;case"diamond":g="question";break;case"hexagon":g="hexagon";break;case"odd":g="rect_left_inv_arrow";break;case"lean_right":g="lean_right";break;case"lean_left":g="lean_left";break;case"trapezoid":g="trapezoid";break;case"inv_trapezoid":g="inv_trapezoid";break;case"odd_right":g="rect_left_inv_arrow";break;case"circle":g="circle";break;case"ellipse":g="ellipse";break;case"stadium":g="stadium";break;case"subroutine":g="subroutine";break;case"cylinder":g="cylinder";break;case"group":g="rect";break;default:g="rect"}o.warn("Adding node",i.id,i.domId),e.setNode(_r.lookUpDomId(i.id),{labelType:"svg",labelStyle:c.labelStyle,shape:g,label:s,rx:y,ry:y,class:a,style:c.style,id:_r.lookUpDomId(i.id)})}))},$r=function(t,e){var n,r,i=0;if(void 0!==t.defaultStyle){var a=vt(t.defaultStyle);n=a.style,r=a.labelStyle}t.forEach((function(a){i++;var o="L-"+a.start+"-"+a.end,s="LS-"+a.start,c="LE-"+a.end,l={};"arrow_open"===a.type?l.arrowhead="none":l.arrowhead="normal";var h="",f="";if(void 0!==a.style){var d=vt(a.style);h=d.style,f=d.labelStyle}else switch(a.stroke){case"normal":h="fill:none",void 0!==n&&(h=n),void 0!==r&&(f=r);break;case"dotted":h="fill:none;stroke-width:2px;stroke-dasharray:3;";break;case"thick":h=" stroke-width: 3.5px;fill:none"}l.style=h,l.labelStyle=f,void 0!==a.interpolate?l.curve=gt(a.interpolate,u.curveLinear):void 0!==t.defaultInterpolate?l.curve=gt(t.defaultInterpolate,u.curveLinear):l.curve=gt(zr.curve,u.curveLinear),void 0===a.text?void 0!==a.style&&(l.arrowheadStyle="fill: #333"):(l.arrowheadStyle="fill: #333",l.labelpos="c",et(oe().flowchart.htmlLabels)?(l.labelType="html",l.label='<span id="L-'.concat(o,'" class="edgeLabel L-').concat(s,"' L-").concat(c,'">').concat(a.text.replace(/fa[lrsb]?:fa-[\w-]+/g,(function(t){return"<i class='".concat(t.replace(":"," "),"'></i>")})),"</span>")):(l.labelType="text",l.label=a.text.replace(nt.lineBreakRegex,"\n"),void 0===a.style&&(l.style=l.style||"stroke: #333; stroke-width: 1.5px;fill:none"),l.labelStyle=l.labelStyle.replace("color:","fill:"))),l.id=o,l.class=s+" "+c,l.minlen=a.length||1,e.setEdge(_r.lookUpDomId(a.start),_r.lookUpDomId(a.end),l,i)}))},qr=function(t){for(var e=Object.keys(t),n=0;n<e.length;n++)zr[e[n]]=t[e[n]]},Wr=function(t){o.info("Extracting classes"),_r.clear();try{var e=wr.a.parser;return e.yy=_r,e.parse(t),_r.getClasses()}catch(t){return}},Hr=function(t,e){o.info("Drawing flowchart"),_r.clear(),_r.setGen("gen-1");var n=wr.a.parser;n.yy=_r,n.parse(t);var r=_r.getDirection();void 0===r&&(r="TD");for(var i,a=oe().flowchart,s=a.nodeSpacing||50,c=a.rankSpacing||50,l=new Ae.a.Graph({multigraph:!0,compound:!0}).setGraph({rankdir:r,nodesep:s,ranksep:c,marginx:8,marginy:8}).setDefaultEdgeLabel((function(){return{}})),h=_r.getSubGraphs(),f=h.length-1;f>=0;f--)i=h[f],_r.addVertex(i.id,i.title,"group",void 0,i.classes);var d=_r.getVertices();o.warn("Get vertices",d);var p=_r.getEdges(),y=0;for(y=h.length-1;y>=0;y--){i=h[y],Object(u.selectAll)("cluster").append("text");for(var g=0;g<i.nodes.length;g++)o.warn("Setting subgraph",i.nodes[g],_r.lookUpDomId(i.nodes[g]),_r.lookUpDomId(i.id)),l.setParent(_r.lookUpDomId(i.nodes[g]),_r.lookUpDomId(i.id))}Ur(d,l,e),$r(p,l);var m=new(0,Tr.a.render);Yr.addToRender(m),m.arrows().none=function(t,e,n,r){var i=t.append("marker").attr("id",e).attr("viewBox","0 0 10 10").attr("refX",9).attr("refY",5).attr("markerUnits","strokeWidth").attr("markerWidth",8).attr("markerHeight",6).attr("orient","auto").append("path").attr("d","M 0 0 L 0 0 L 0 0 z");Tr.a.util.applyStyle(i,n[r+"Style"])},m.arrows().normal=function(t,e){t.append("marker").attr("id",e).attr("viewBox","0 0 10 10").attr("refX",9).attr("refY",5).attr("markerUnits","strokeWidth").attr("markerWidth",8).attr("markerHeight",6).attr("orient","auto").append("path").attr("d","M 0 0 L 10 5 L 0 10 z").attr("class","arrowheadPath").style("stroke-width",1).style("stroke-dasharray","1,0")};var v=Object(u.select)('[id="'.concat(e,'"]'));v.attr("xmlns:xlink","http://www.w3.org/1999/xlink"),o.warn(l);var b=Object(u.select)("#"+e+" g");m(b,l),b.selectAll("g.node").attr("title",(function(){return _r.getTooltip(this.id)}));var x=a.diagramPadding,_=v.node().getBBox(),k=_.width+2*x,w=_.height+2*x;Ot(v,w,k,a.useMaxWidth);var E="".concat(_.x-x," ").concat(_.y-x," ").concat(k," ").concat(w);for(o.debug("viewBox ".concat(E)),v.attr("viewBox",E),_r.indexNodes("subGraph"+y),y=0;y<h.length;y++)if("undefined"!==(i=h[y]).title){var T=document.querySelectorAll("#"+e+' [id="'+_r.lookUpDomId(i.id)+'"] rect'),C=document.querySelectorAll("#"+e+' [id="'+_r.lookUpDomId(i.id)+'"]'),S=T[0].x.baseVal.value,A=T[0].y.baseVal.value,M=T[0].width.baseVal.value,O=Object(u.select)(C[0]).select(".label");O.attr("transform","translate(".concat(S+M/2,", ").concat(A+14,")")),O.attr("id",e+"Text");for(var N=0;N<i.classes.length;N++)C[0].classList.add(i.classes[N])}et(a.htmlLabels);for(var B=document.querySelectorAll('[id="'+e+'"] .edgeLabel .label'),D=0;D<B.length;D++){var L=B[D],I=L.getBBox(),R=document.createElementNS("http://www.w3.org/2000/svg","rect");R.setAttribute("rx",0),R.setAttribute("ry",0),R.setAttribute("width",I.width),R.setAttribute("height",I.height),L.insertBefore(R,L.firstChild)}Object.keys(d).forEach((function(t){var n=d[t];if(n.link){var r=Object(u.select)("#"+e+' [id="'+_r.lookUpDomId(t)+'"]');if(r){var i=document.createElementNS("http://www.w3.org/2000/svg","a");i.setAttributeNS("http://www.w3.org/2000/svg","class",n.classes.join(" ")),i.setAttributeNS("http://www.w3.org/2000/svg","href",n.link),i.setAttributeNS("http://www.w3.org/2000/svg","rel","noopener"),n.linkTarget&&i.setAttributeNS("http://www.w3.org/2000/svg","target",n.linkTarget);var a=r.insert((function(){return i}),":first-child"),o=r.select(".label-container");o&&a.append((function(){return o.node()}));var s=r.select(".label");s&&a.append((function(){return s.node()}))}}}))},Vr={},Gr=function(t,e,n){var r=Object(u.select)('[id="'.concat(n,'"]'));Object.keys(t).forEach((function(n){var i=t[n],a="default";i.classes.length>0&&(a=i.classes.join(" "));var s,c=vt(i.styles),u=void 0!==i.text?i.text:i.id;if(et(oe().flowchart.htmlLabels)){var l={label:u.replace(/fa[lrsb]?:fa-[\w-]+/g,(function(t){return"<i class='".concat(t.replace(":"," "),"'></i>")}))};(s=Sr()(r,l).node()).parentNode.removeChild(s)}else{var h=document.createElementNS("http://www.w3.org/2000/svg","text");h.setAttribute("style",c.labelStyle.replace("color:","fill:"));for(var f=u.split(nt.lineBreakRegex),d=0;d<f.length;d++){var p=document.createElementNS("http://www.w3.org/2000/svg","tspan");p.setAttributeNS("http://www.w3.org/XML/1998/namespace","xml:space","preserve"),p.setAttribute("dy","1em"),p.setAttribute("x","1"),p.textContent=f[d],h.appendChild(p)}s=h}var y=0,g="";switch(i.type){case"round":y=5,g="rect";break;case"square":g="rect";break;case"diamond":g="question";break;case"hexagon":g="hexagon";break;case"odd":g="rect_left_inv_arrow";break;case"lean_right":g="lean_right";break;case"lean_left":g="lean_left";break;case"trapezoid":g="trapezoid";break;case"inv_trapezoid":g="inv_trapezoid";break;case"odd_right":g="rect_left_inv_arrow";break;case"circle":g="circle";break;case"ellipse":g="ellipse";break;case"stadium":g="stadium";break;case"subroutine":g="subroutine";break;case"cylinder":g="cylinder";break;case"group":g="rect";break;default:g="rect"}e.setNode(i.id,{labelStyle:c.labelStyle,shape:g,labelText:u,rx:y,ry:y,class:a,style:c.style,id:i.id,link:i.link,linkTarget:i.linkTarget,tooltip:_r.getTooltip(i.id)||"",domId:_r.lookUpDomId(i.id),haveCallback:i.haveCallback,width:"group"===i.type?500:void 0,dir:i.dir,type:i.type,padding:oe().flowchart.padding}),o.info("setNode",{labelStyle:c.labelStyle,shape:g,labelText:u,rx:y,ry:y,class:a,style:c.style,id:i.id,domId:_r.lookUpDomId(i.id),width:"group"===i.type?500:void 0,type:i.type,dir:i.dir,padding:oe().flowchart.padding})}))},Xr=function(t,e){o.info("abc78 edges = ",t);var n,r,i=0,a={};if(void 0!==t.defaultStyle){var s=vt(t.defaultStyle);n=s.style,r=s.labelStyle}t.forEach((function(s){i++;var c="L-"+s.start+"-"+s.end;void 0===a[c]?(a[c]=0,o.info("abc78 new entry",c,a[c])):(a[c]++,o.info("abc78 new entry",c,a[c]));var l=c+"-"+a[c];o.info("abc78 new link id to be used is",c,l,a[c]);var h="LS-"+s.start,f="LE-"+s.end,d={style:"",labelStyle:""};switch(d.minlen=s.length||1,"arrow_open"===s.type?d.arrowhead="none":d.arrowhead="normal",d.arrowTypeStart="arrow_open",d.arrowTypeEnd="arrow_open",s.type){case"double_arrow_cross":d.arrowTypeStart="arrow_cross";case"arrow_cross":d.arrowTypeEnd="arrow_cross";break;case"double_arrow_point":d.arrowTypeStart="arrow_point";case"arrow_point":d.arrowTypeEnd="arrow_point";break;case"double_arrow_circle":d.arrowTypeStart="arrow_circle";case"arrow_circle":d.arrowTypeEnd="arrow_circle"}var p="",y="";switch(s.stroke){case"normal":p="fill:none;",void 0!==n&&(p=n),void 0!==r&&(y=r),d.thickness="normal",d.pattern="solid";break;case"dotted":d.thickness="normal",d.pattern="dotted",d.style="fill:none;stroke-width:2px;stroke-dasharray:3;";break;case"thick":d.thickness="thick",d.pattern="solid",d.style="stroke-width: 3.5px;fill:none;"}if(void 0!==s.style){var g=vt(s.style);p=g.style,y=g.labelStyle}d.style=d.style+=p,d.labelStyle=d.labelStyle+=y,void 0!==s.interpolate?d.curve=gt(s.interpolate,u.curveLinear):void 0!==t.defaultInterpolate?d.curve=gt(t.defaultInterpolate,u.curveLinear):d.curve=gt(Vr.curve,u.curveLinear),void 0===s.text?void 0!==s.style&&(d.arrowheadStyle="fill: #333"):(d.arrowheadStyle="fill: #333",d.labelpos="c"),d.labelType="text",d.label=s.text.replace(nt.lineBreakRegex,"\n"),void 0===s.style&&(d.style=d.style||"stroke: #333; stroke-width: 1.5px;fill:none;"),d.labelStyle=d.labelStyle.replace("color:","fill:"),d.id=l,d.classes="flowchart-link "+h+" "+f,e.setEdge(s.start,s.end,d,i)}))},Zr=function(t){for(var e=Object.keys(t),n=0;n<e.length;n++)Vr[e[n]]=t[e[n]]},Kr=function(t,e){o.info("Drawing flowchart"),_r.clear(),_r.setGen("gen-2");var n=wr.a.parser;n.yy=_r,n.parse(t);var r=_r.getDirection();void 0===r&&(r="TD");var i,a=oe().flowchart,s=a.nodeSpacing||50,c=a.rankSpacing||50,l=new Ae.a.Graph({multigraph:!0,compound:!0}).setGraph({rankdir:r,nodesep:s,ranksep:c,marginx:8,marginy:8}).setDefaultEdgeLabel((function(){return{}})),h=_r.getSubGraphs();o.info("Subgraphs - ",h);for(var f=h.length-1;f>=0;f--)i=h[f],o.info("Subgraph - ",i),_r.addVertex(i.id,i.title,"group",void 0,i.classes,i.dir);var d=_r.getVertices(),p=_r.getEdges();o.info(p);var y=0;for(y=h.length-1;y>=0;y--){i=h[y],Object(u.selectAll)("cluster").append("text");for(var g=0;g<i.nodes.length;g++)o.info("Setting up subgraphs",i.nodes[g],i.id),l.setParent(i.nodes[g],i.id)}Gr(d,l,e),Xr(p,l);var m=Object(u.select)('[id="'.concat(e,'"]'));m.attr("xmlns:xlink","http://www.w3.org/1999/xlink");var v=Object(u.select)("#"+e+" g");Mn(v,l,["point","circle","cross"],"flowchart",e);var b=a.diagramPadding,x=m.node().getBBox(),_=x.width+2*b,k=x.height+2*b;if(o.debug("new ViewBox 0 0 ".concat(_," ").concat(k),"translate(".concat(b-l._label.marginx,", ").concat(b-l._label.marginy,")")),Ot(m,k,_,a.useMaxWidth),m.attr("viewBox","0 0 ".concat(_," ").concat(k)),m.select("g").attr("transform","translate(".concat(b-l._label.marginx,", ").concat(b-x.y,")")),_r.indexNodes("subGraph"+y),!a.htmlLabels)for(var w=document.querySelectorAll('[id="'+e+'"] .edgeLabel .label'),E=0;E<w.length;E++){var T=w[E],C=T.getBBox(),S=document.createElementNS("http://www.w3.org/2000/svg","rect");S.setAttribute("rx",0),S.setAttribute("ry",0),S.setAttribute("width",C.width),S.setAttribute("height",C.height),T.insertBefore(S,T.firstChild)}Object.keys(d).forEach((function(t){var n=d[t];if(n.link){var r=Object(u.select)("#"+e+' [id="'+t+'"]');if(r){var i=document.createElementNS("http://www.w3.org/2000/svg","a");i.setAttributeNS("http://www.w3.org/2000/svg","class",n.classes.join(" ")),i.setAttributeNS("http://www.w3.org/2000/svg","href",n.link),i.setAttributeNS("http://www.w3.org/2000/svg","rel","noopener"),n.linkTarget&&i.setAttributeNS("http://www.w3.org/2000/svg","target",n.linkTarget);var a=r.insert((function(){return i}),":first-child"),o=r.select(".label-container");o&&a.append((function(){return o.node()}));var s=r.select(".label");s&&a.append((function(){return s.node()}))}}}))};function Qr(t){return function(t){if(Array.isArray(t))return Jr(t)}(t)||function(t){if("undefined"!=typeof Symbol&&null!=t[Symbol.iterator]||null!=t["@@iterator"])return Array.from(t)}(t)||function(t,e){if(!t)return;if("string"==typeof t)return Jr(t,e);var n=Object.prototype.toString.call(t).slice(8,-1);"Object"===n&&t.constructor&&(n=t.constructor.name);if("Map"===n||"Set"===n)return Array.from(t);if("Arguments"===n||/^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(n))return Jr(t,e)}(t)||function(){throw new TypeError("Invalid attempt to spread non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}()}function Jr(t,e){(null==e||e>t.length)&&(e=t.length);for(var n=0,r=new Array(e);n<e;n++)r[n]=t[n];return r}var ti,ei,ni="",ri="",ii="",ai=[],oi="",si=[],ci=[],ui="",li=["active","done","crit","milestone"],hi=[],fi=!1,di=!1,pi=0,yi=function(t,e,n){return t.isoWeekday()>=6&&n.indexOf("weekends")>=0||(n.indexOf(t.format("dddd").toLowerCase())>=0||n.indexOf(t.format(e.trim()))>=0)},gi=function(t,e,n){if(n.length&&!t.manualEndTime){var r=i()(t.startTime,e,!0);r.add(1,"d");var a=i()(t.endTime,e,!0),o=mi(r,a,e,n);t.endTime=a.toDate(),t.renderEndTime=o}},mi=function(t,e,n,r){for(var i=!1,a=null;t<=e;)i||(a=e.toDate()),(i=yi(t,n,r))&&e.add(1,"d"),t.add(1,"d");return a},vi=function(t,e,n){n=n.trim();var r=/^after\s+([\d\w- ]+)/.exec(n.trim());if(null!==r){var a=null;if(r[1].split(" ").forEach((function(t){var e=Ti(t);void 0!==e&&(a?e.endTime>a.endTime&&(a=e):a=e)})),a)return a.endTime;var s=new Date;return s.setHours(0,0,0,0),s}var c=i()(n,e.trim(),!0);return c.isValid()?c.toDate():(o.debug("Invalid date:"+n),o.debug("With date format:"+e.trim()),new Date)},bi=function(t,e){if(null!==t)switch(t[2]){case"s":e.add(t[1],"seconds");break;case"m":e.add(t[1],"minutes");break;case"h":e.add(t[1],"hours");break;case"d":e.add(t[1],"days");break;case"w":e.add(t[1],"weeks")}return e.toDate()},xi=function(t,e,n,r){r=r||!1,n=n.trim();var a=i()(n,e.trim(),!0);return a.isValid()?(r&&a.add(1,"d"),a.toDate()):bi(/^([\d]+)([wdhms])/.exec(n.trim()),i()(t))},_i=0,ki=function(t){return void 0===t?"task"+(_i+=1):t},wi=[],Ei={},Ti=function(t){var e=Ei[t];return wi[e]},Ci=function(){for(var t=function(t){var e=wi[t],n="";switch(wi[t].raw.startTime.type){case"prevTaskEnd":var r=Ti(e.prevTaskId);e.startTime=r.endTime;break;case"getStartDate":(n=vi(0,ni,wi[t].raw.startTime.startData))&&(wi[t].startTime=n)}return wi[t].startTime&&(wi[t].endTime=xi(wi[t].startTime,ni,wi[t].raw.endTime.data,fi),wi[t].endTime&&(wi[t].processed=!0,wi[t].manualEndTime=i()(wi[t].raw.endTime.data,"YYYY-MM-DD",!0).isValid(),gi(wi[t],ni,ai))),wi[t].processed},e=!0,n=0;n<wi.length;n++)t(n),e=e&&wi[n].processed;return e},Si=function(t,e){t.split(",").forEach((function(t){var n=Ti(t);void 0!==n&&n.classes.push(e)}))},Ai=function(t,e){hi.push((function(){var n=document.querySelector('[id="'.concat(t,'"]'));null!==n&&n.addEventListener("click",(function(){e()}))})),hi.push((function(){var n=document.querySelector('[id="'.concat(t,'-text"]'));null!==n&&n.addEventListener("click",(function(){e()}))}))},Mi={parseDirective:function(t,e,n){cc.parseDirective(this,t,e,n)},getConfig:function(){return oe().gantt},clear:function(){si=[],ci=[],ui="",hi=[],oi="",_i=0,ti=void 0,ei=void 0,wi=[],ni="",ri="",ii="",ai=[],fi=!1,di=!1,pi=0},setDateFormat:function(t){ni=t},getDateFormat:function(){return ni},enableInclusiveEndDates:function(){fi=!0},endDatesAreInclusive:function(){return fi},enableTopAxis:function(){di=!0},topAxisEnabled:function(){return di},setAxisFormat:function(t){ri=t},getAxisFormat:function(){return ri},setTodayMarker:function(t){ii=t},getTodayMarker:function(){return ii},setTitle:function(t){oi=t},getTitle:function(){return oi},addSection:function(t){ui=t,si.push(t)},getSections:function(){return si},getTasks:function(){for(var t=Ci(),e=0;!t&&e<10;)t=Ci(),e++;return ci=wi},addTask:function(t,e){var n={section:ui,type:ui,processed:!1,manualEndTime:!1,renderEndTime:null,raw:{data:e},task:t,classes:[]},r=function(t,e){var n=(":"===e.substr(0,1)?e.substr(1,e.length):e).split(","),r={};Oi(n,r,li);for(var i=0;i<n.length;i++)n[i]=n[i].trim();switch(n.length){case 1:r.id=ki(),r.startTime={type:"prevTaskEnd",id:t},r.endTime={data:n[0]};break;case 2:r.id=ki(),r.startTime={type:"getStartDate",startData:n[0]},r.endTime={data:n[1]};break;case 3:r.id=ki(n[0]),r.startTime={type:"getStartDate",startData:n[1]},r.endTime={data:n[2]}}return r}(ei,e);n.raw.startTime=r.startTime,n.raw.endTime=r.endTime,n.id=r.id,n.prevTaskId=ei,n.active=r.active,n.done=r.done,n.crit=r.crit,n.milestone=r.milestone,n.order=pi,pi++;var i=wi.push(n);ei=n.id,Ei[n.id]=i-1},findTaskById:Ti,addTaskOrg:function(t,e){var n={section:ui,type:ui,description:t,task:t,classes:[]},r=function(t,e){var n=(":"===e.substr(0,1)?e.substr(1,e.length):e).split(","),r={};Oi(n,r,li);for(var a=0;a<n.length;a++)n[a]=n[a].trim();var o="";switch(n.length){case 1:r.id=ki(),r.startTime=t.endTime,o=n[0];break;case 2:r.id=ki(),r.startTime=vi(0,ni,n[0]),o=n[1];break;case 3:r.id=ki(n[0]),r.startTime=vi(0,ni,n[1]),o=n[2]}return o&&(r.endTime=xi(r.startTime,ni,o,fi),r.manualEndTime=i()(o,"YYYY-MM-DD",!0).isValid(),gi(r,ni,ai)),r}(ti,e);n.startTime=r.startTime,n.endTime=r.endTime,n.id=r.id,n.active=r.active,n.done=r.done,n.crit=r.crit,n.milestone=r.milestone,ti=n,ci.push(n)},setExcludes:function(t){ai=t.toLowerCase().split(/[\s,]+/)},getExcludes:function(){return ai},setClickEvent:function(t,e,n){t.split(",").forEach((function(t){!function(t,e,n){if("loose"===oe().securityLevel&&void 0!==e){var r=[];if("string"==typeof n){r=n.split(/,(?=(?:(?:[^"]*"){2})*[^"]*$)/);for(var i=0;i<r.length;i++){var a=r[i].trim();'"'===a.charAt(0)&&'"'===a.charAt(a.length-1)&&(a=a.substr(1,a.length-2)),r[i]=a}}0===r.length&&r.push(t),void 0!==Ti(t)&&Ai(t,(function(){Nt.runFunc.apply(Nt,[e].concat(Qr(r)))}))}}(t,e,n)})),Si(t,"clickable")},setLink:function(t,e){var n=e;"loose"!==oe().securityLevel&&(n=Object(G.sanitizeUrl)(e)),t.split(",").forEach((function(t){void 0!==Ti(t)&&Ai(t,(function(){window.open(n,"_self")}))})),Si(t,"clickable")},bindFunctions:function(t){hi.forEach((function(e){e(t)}))},durationToDate:bi};function Oi(t,e,n){for(var r=!0;r;)r=!1,n.forEach((function(n){var i=new RegExp("^\\s*"+n+"\\s*$");t[0].match(i)&&(e[n]=!0,t.shift(1),r=!0)}))}var Ni=n(24),Bi=n.n(Ni);Ni.parser.yy=Mi;var Di,Li=function(){},Ii=function(t,e){var n=oe().gantt;Ni.parser.yy.clear(),Ni.parser.parse(t);var r=document.getElementById(e);void 0===(Di=r.parentElement.offsetWidth)&&(Di=1200),void 0!==n.useWidth&&(Di=n.useWidth);var i=Ni.parser.yy.getTasks(),a=i.length*(n.barHeight+n.barGap)+2*n.topPadding;r.setAttribute("viewBox","0 0 "+Di+" "+a);for(var o=Object(u.select)('[id="'.concat(e,'"]')),s=Object(u.scaleTime)().domain([Object(u.min)(i,(function(t){return t.startTime})),Object(u.max)(i,(function(t){return t.endTime}))]).rangeRound([0,Di-n.leftPadding-n.rightPadding]),c=[],l=0;l<i.length;l++)c.push(i[l].type);var h=c;function f(t){for(var e=t.length,n={};e;)n[t[--e]]=(n[t[e]]||0)+1;return n}c=function(t){for(var e={},n=[],r=0,i=t.length;r<i;++r)e.hasOwnProperty(t[r])||(e[t[r]]=!0,n.push(t[r]));return n}(c),i.sort((function(t,e){var n=t.startTime,r=e.startTime,i=0;return n>r?i=1:n<r&&(i=-1),i})),function(t,e,r){var i=n.barHeight,a=i+n.barGap,l=n.topPadding,d=n.leftPadding;Object(u.scaleLinear)().domain([0,c.length]).range(["#00B9FA","#F95002"]).interpolate(u.interpolateHcl);(function(t,e,r,i){var a=Object(u.axisBottom)(s).tickSize(-i+e+n.gridLineStartPadding).tickFormat(Object(u.timeFormat)(Ni.parser.yy.getAxisFormat()||n.axisFormat||"%Y-%m-%d"));if(o.append("g").attr("class","grid").attr("transform","translate("+t+", "+(i-50)+")").call(a).selectAll("text").style("text-anchor","middle").attr("fill","#000").attr("stroke","none").attr("font-size",10).attr("dy","1em"),Mi.topAxisEnabled()||n.topAxis){var c=Object(u.axisTop)(s).tickSize(-i+e+n.gridLineStartPadding).tickFormat(Object(u.timeFormat)(Ni.parser.yy.getAxisFormat()||n.axisFormat||"%Y-%m-%d"));o.append("g").attr("class","grid").attr("transform","translate("+t+", "+e+")").call(c).selectAll("text").style("text-anchor","middle").attr("fill","#000").attr("stroke","none").attr("font-size",10)}})(d,l,0,r),function(t,e,r,i,a,u,l){o.append("g").selectAll("rect").data(t).enter().append("rect").attr("x",0).attr("y",(function(t,n){return t.order*e+r-2})).attr("width",(function(){return l-n.rightPadding/2})).attr("height",e).attr("class",(function(t){for(var e=0;e<c.length;e++)if(t.type===c[e])return"section section"+e%n.numberSectionStyles;return"section section0"}));var h=o.append("g").selectAll("rect").data(t).enter();h.append("rect").attr("id",(function(t){return t.id})).attr("rx",3).attr("ry",3).attr("x",(function(t){return t.milestone?s(t.startTime)+i+.5*(s(t.endTime)-s(t.startTime))-.5*a:s(t.startTime)+i})).attr("y",(function(t,n){return t.order*e+r})).attr("width",(function(t){return t.milestone?a:s(t.renderEndTime||t.endTime)-s(t.startTime)})).attr("height",a).attr("transform-origin",(function(t,n){return n=t.order,(s(t.startTime)+i+.5*(s(t.endTime)-s(t.startTime))).toString()+"px "+(n*e+r+.5*a).toString()+"px"})).attr("class",(function(t){var e="";t.classes.length>0&&(e=t.classes.join(" "));for(var r=0,i=0;i<c.length;i++)t.type===c[i]&&(r=i%n.numberSectionStyles);var a="";return t.active?t.crit?a+=" activeCrit":a=" active":t.done?a=t.crit?" doneCrit":" done":t.crit&&(a+=" crit"),0===a.length&&(a=" task"),t.milestone&&(a=" milestone "+a),a+=r,"task"+(a+=" "+e)})),h.append("text").attr("id",(function(t){return t.id+"-text"})).text((function(t){return t.task})).attr("font-size",n.fontSize).attr("x",(function(t){var e=s(t.startTime),r=s(t.renderEndTime||t.endTime);t.milestone&&(e+=.5*(s(t.endTime)-s(t.startTime))-.5*a),t.milestone&&(r=e+a);var o=this.getBBox().width;return o>r-e?r+o+1.5*n.leftPadding>l?e+i-5:r+i+5:(r-e)/2+e+i})).attr("y",(function(t,i){return t.order*e+n.barHeight/2+(n.fontSize/2-2)+r})).attr("text-height",a).attr("class",(function(t){var e=s(t.startTime),r=s(t.endTime);t.milestone&&(r=e+a);var i=this.getBBox().width,o="";t.classes.length>0&&(o=t.classes.join(" "));for(var u=0,h=0;h<c.length;h++)t.type===c[h]&&(u=h%n.numberSectionStyles);var f="";return t.active&&(f=t.crit?"activeCritText"+u:"activeText"+u),t.done?f=t.crit?f+" doneCritText"+u:f+" doneText"+u:t.crit&&(f=f+" critText"+u),t.milestone&&(f+=" milestoneText"),i>r-e?r+i+1.5*n.leftPadding>l?o+" taskTextOutsideLeft taskTextOutside"+u+" "+f:o+" taskTextOutsideRight taskTextOutside"+u+" "+f+" width-"+i:o+" taskText taskText"+u+" "+f+" width-"+i}))}(t,a,l,d,i,0,e),function(t,e){for(var r=[],i=0,a=0;a<c.length;a++)r[a]=[c[a],(s=c[a],u=h,f(u)[s]||0)];var s,u;o.append("g").selectAll("text").data(r).enter().append((function(t){var e=t[0].split(nt.lineBreakRegex),n=-(e.length-1)/2,r=document.createElementNS("http://www.w3.org/2000/svg","text");r.setAttribute("dy",n+"em");for(var i=0;i<e.length;i++){var a=document.createElementNS("http://www.w3.org/2000/svg","tspan");a.setAttribute("alignment-baseline","central"),a.setAttribute("x","10"),i>0&&a.setAttribute("dy","1em"),a.textContent=e[i],r.appendChild(a)}return r})).attr("x",10).attr("y",(function(n,a){if(!(a>0))return n[1]*t/2+e;for(var o=0;o<a;o++)return i+=r[a-1][1],n[1]*t/2+i*t+e})).attr("font-size",n.sectionFontSize).attr("font-size",n.sectionFontSize).attr("class",(function(t){for(var e=0;e<c.length;e++)if(t[0]===c[e])return"sectionTitle sectionTitle"+e%n.numberSectionStyles;return"sectionTitle"}))}(a,l),function(t,e,r,i){var a=Mi.getTodayMarker();if("off"===a)return;var c=o.append("g").attr("class","today"),u=new Date,l=c.append("line");l.attr("x1",s(u)+t).attr("x2",s(u)+t).attr("y1",n.titleTopMargin).attr("y2",i-n.titleTopMargin).attr("class","today"),""!==a&&l.attr("style",a.replace(/,/g,";"))}(d,0,0,r)}(i,Di,a),Ot(o,a,Di,n.useMaxWidth),o.append("text").text(Ni.parser.yy.getTitle()).attr("x",Di/2).attr("y",n.titleTopMargin).attr("class","titleText")},Ri={},Fi=null,Pi={master:Fi},ji="master",Yi="LR",zi=0;function Ui(){return kt({length:7})}function $i(t,e){for(o.debug("Entering isfastforwardable:",t.id,e.id);t.seq<=e.seq&&t!==e&&null!=e.parent;){if(Array.isArray(e.parent))return o.debug("In merge commit:",e.parent),$i(t,Ri[e.parent[0]])||$i(t,Ri[e.parent[1]]);e=Ri[e.parent]}return o.debug(t.id,e.id),t.id===e.id}var qi={};function Wi(t,e,n){var r=t.indexOf(e);-1===r?t.push(n):t.splice(r,1,n)}function Hi(t){var e=t.reduce((function(t,e){return t.seq>e.seq?t:e}),t[0]),n="";t.forEach((function(t){n+=t===e?"\t*":"\t|"}));var r,i,a,s=[n,e.id,e.seq];for(var c in Pi)Pi[c]===e.id&&s.push(c);if(o.debug(s.join(" ")),Array.isArray(e.parent)){var u=Ri[e.parent[0]];Wi(t,e,u),t.push(Ri[e.parent[1]])}else{if(null==e.parent)return;var l=Ri[e.parent];Wi(t,e,l)}r=t,i=function(t){return t.id},a=Object.create(null),Hi(t=r.reduce((function(t,e){var n=i(e);return a[n]||(a[n]=!0,t.push(e)),t}),[]))}var Vi,Gi=function(){var t=Object.keys(Ri).map((function(t){return Ri[t]}));return t.forEach((function(t){o.debug(t.id)})),t.sort((function(t,e){return e.seq-t.seq})),t},Xi={setDirection:function(t){Yi=t},setOptions:function(t){o.debug("options str",t),t=(t=t&&t.trim())||"{}";try{qi=JSON.parse(t)}catch(t){o.error("error while parsing gitGraph options",t.message)}},getOptions:function(){return qi},commit:function(t){var e={id:Ui(),message:t,seq:zi++,parent:null==Fi?null:Fi.id};Fi=e,Ri[e.id]=e,Pi[ji]=e.id,o.debug("in pushCommit "+e.id)},branch:function(t){Pi[t]=null!=Fi?Fi.id:null,o.debug("in createBranch")},merge:function(t){var e=Ri[Pi[ji]],n=Ri[Pi[t]];if(function(t,e){return t.seq>e.seq&&$i(e,t)}(e,n))o.debug("Already merged");else{if($i(e,n))Pi[ji]=Pi[t],Fi=Ri[Pi[ji]];else{var r={id:Ui(),message:"merged branch "+t+" into "+ji,seq:zi++,parent:[null==Fi?null:Fi.id,Pi[t]]};Fi=r,Ri[r.id]=r,Pi[ji]=r.id}o.debug(Pi),o.debug("in mergeBranch")}},checkout:function(t){o.debug("in checkout");var e=Pi[ji=t];Fi=Ri[e]},reset:function(t){o.debug("in reset",t);var e=t.split(":")[0],n=parseInt(t.split(":")[1]),r="HEAD"===e?Fi:Ri[Pi[e]];for(o.debug(r,n);n>0;)if(n--,!(r=Ri[r.parent])){var i="Critical error - unique parent commit not found during reset";throw o.error(i),i}Fi=r,Pi[ji]=r.id},prettyPrint:function(){o.debug(Ri),Hi([Gi()[0]])},clear:function(){Ri={},Pi={master:Fi=null},ji="master",zi=0},getBranchesAsObjArray:function(){var t=[];for(var e in Pi)t.push({name:e,commit:Ri[Pi[e]]});return t},getBranches:function(){return Pi},getCommits:function(){return Ri},getCommitsArray:Gi,getCurrentBranch:function(){return ji},getDirection:function(){return Yi},getHead:function(){return Fi}},Zi=n(73),Ki=n.n(Zi),Qi={},Ji={nodeSpacing:150,nodeFillColor:"yellow",nodeStrokeWidth:2,nodeStrokeColor:"grey",lineStrokeWidth:4,branchOffset:50,lineColor:"grey",leftMargin:50,branchColors:["#442f74","#983351","#609732","#AA9A39"],nodeRadius:10,nodeLabel:{width:75,height:100,x:-25,y:0}},ta={};function ea(t,e,n,r){var i=gt(r,u.curveBasis),a=Ji.branchColors[n%Ji.branchColors.length],o=Object(u.line)().x((function(t){return Math.round(t.x)})).y((function(t){return Math.round(t.y)})).curve(i);t.append("svg:path").attr("d",o(e)).style("stroke",a).style("stroke-width",Ji.lineStrokeWidth).style("fill","none")}function na(t,e){e=e||t.node().getBBox();var n=t.node().getCTM();return{left:n.e+e.x*n.a,top:n.f+e.y*n.d,width:e.width,height:e.height}}function ra(t,e,n,r,i){o.debug("svgDrawLineForCommits: ",e,n);var a=na(t.select("#node-"+e+" circle")),s=na(t.select("#node-"+n+" circle"));switch(r){case"LR":if(a.left-s.left>Ji.nodeSpacing){var c={x:a.left-Ji.nodeSpacing,y:s.top+s.height/2};ea(t,[c,{x:s.left+s.width,y:s.top+s.height/2}],i,"linear"),ea(t,[{x:a.left,y:a.top+a.height/2},{x:a.left-Ji.nodeSpacing/2,y:a.top+a.height/2},{x:a.left-Ji.nodeSpacing/2,y:c.y},c],i)}else ea(t,[{x:a.left,y:a.top+a.height/2},{x:a.left-Ji.nodeSpacing/2,y:a.top+a.height/2},{x:a.left-Ji.nodeSpacing/2,y:s.top+s.height/2},{x:s.left+s.width,y:s.top+s.height/2}],i);break;case"BT":if(s.top-a.top>Ji.nodeSpacing){var u={x:s.left+s.width/2,y:a.top+a.height+Ji.nodeSpacing};ea(t,[u,{x:s.left+s.width/2,y:s.top}],i,"linear"),ea(t,[{x:a.left+a.width/2,y:a.top+a.height},{x:a.left+a.width/2,y:a.top+a.height+Ji.nodeSpacing/2},{x:s.left+s.width/2,y:u.y-Ji.nodeSpacing/2},u],i)}else ea(t,[{x:a.left+a.width/2,y:a.top+a.height},{x:a.left+a.width/2,y:a.top+Ji.nodeSpacing/2},{x:s.left+s.width/2,y:s.top-Ji.nodeSpacing/2},{x:s.left+s.width/2,y:s.top}],i)}}function ia(t,e){return t.select(e).node().cloneNode(!0)}function aa(t,e,n,r){var i,a=Object.keys(Qi).length;if("string"==typeof e)do{if(i=Qi[e],o.debug("in renderCommitHistory",i.id,i.seq),t.select("#node-"+e).size()>0)return;t.append((function(){return ia(t,"#def-commit")})).attr("class","commit").attr("id",(function(){return"node-"+i.id})).attr("transform",(function(){switch(r){case"LR":return"translate("+(i.seq*Ji.nodeSpacing+Ji.leftMargin)+", "+Vi*Ji.branchOffset+")";case"BT":return"translate("+(Vi*Ji.branchOffset+Ji.leftMargin)+", "+(a-i.seq)*Ji.nodeSpacing+")"}})).attr("fill",Ji.nodeFillColor).attr("stroke",Ji.nodeStrokeColor).attr("stroke-width",Ji.nodeStrokeWidth);var s=void 0;for(var c in n)if(n[c].commit===i){s=n[c];break}s&&(o.debug("found branch ",s.name),t.select("#node-"+i.id+" p").append("xhtml:span").attr("class","branch-label").text(s.name+", ")),t.select("#node-"+i.id+" p").append("xhtml:span").attr("class","commit-id").text(i.id),""!==i.message&&"BT"===r&&t.select("#node-"+i.id+" p").append("xhtml:span").attr("class","commit-msg").text(", "+i.message),e=i.parent}while(e&&Qi[e]);Array.isArray(e)&&(o.debug("found merge commmit",e),aa(t,e[0],n,r),Vi++,aa(t,e[1],n,r),Vi--)}function oa(t,e,n,r){for(r=r||0;e.seq>0&&!e.lineDrawn;)"string"==typeof e.parent?(ra(t,e.id,e.parent,n,r),e.lineDrawn=!0,e=Qi[e.parent]):Array.isArray(e.parent)&&(ra(t,e.id,e.parent[0],n,r),ra(t,e.id,e.parent[1],n,r+1),oa(t,Qi[e.parent[1]],n,r+1),e.lineDrawn=!0,e=Qi[e.parent[0]])}var sa,ca=function(t){ta=t},ua=function(t,e,n){try{var r=Ki.a.parser;r.yy=Xi,r.yy.clear(),o.debug("in gitgraph renderer",t+"\n","id:",e,n),r.parse(t+"\n"),Ji=Object.assign(Ji,ta,Xi.getOptions()),o.debug("effective options",Ji);var i=Xi.getDirection();Qi=Xi.getCommits();var a=Xi.getBranchesAsObjArray();"BT"===i&&(Ji.nodeLabel.x=a.length*Ji.branchOffset,Ji.nodeLabel.width="100%",Ji.nodeLabel.y=-2*Ji.nodeRadius);var s=Object(u.select)('[id="'.concat(e,'"]'));for(var c in function(t){t.append("defs").append("g").attr("id","def-commit").append("circle").attr("r",Ji.nodeRadius).attr("cx",0).attr("cy",0),t.select("#def-commit").append("foreignObject").attr("width",Ji.nodeLabel.width).attr("height",Ji.nodeLabel.height).attr("x",Ji.nodeLabel.x).attr("y",Ji.nodeLabel.y).attr("class","node-label").attr("requiredFeatures","http://www.w3.org/TR/SVG11/feature#Extensibility").append("p").html("")}(s),Vi=1,a){var l=a[c];aa(s,l.commit.id,a,i),oa(s,l.commit,i),Vi++}s.attr("height",(function(){return"BT"===i?Object.keys(Qi).length*Ji.nodeSpacing:(a.length+1)*Ji.branchOffset}))}catch(t){o.error("Error while rendering gitgraph"),o.error(t.message)}},la="",ha=!1,fa={setMessage:function(t){o.debug("Setting message to: "+t),la=t},getMessage:function(){return la},setInfo:function(t){ha=t},getInfo:function(){return ha}},da=n(74),pa=n.n(da),ya={},ga=function(t){Object.keys(t).forEach((function(e){ya[e]=t[e]}))},ma=function(t,e,n){try{var r=pa.a.parser;r.yy=fa,o.debug("Renering info diagram\n"+t),r.parse(t),o.debug("Parsed info diagram");var i=Object(u.select)("#"+e);i.append("g").append("text").attr("x",100).attr("y",40).attr("class","version").attr("font-size","32px").style("text-anchor","middle").text("v "+n),i.attr("height",100),i.attr("width",400)}catch(t){o.error("Error while rendering info diagram"),o.error(t.message)}},va=n(75),ba=n.n(va),xa={},_a="",ka=!1,wa={parseDirective:function(t,e,n){cc.parseDirective(this,t,e,n)},getConfig:function(){return oe().pie},addSection:function(t,e){void 0===xa[t]&&(xa[t]=e,o.debug("Added new section :",t))},getSections:function(){return xa},cleanupValue:function(t){return":"===t.substring(0,1)?(t=t.substring(1).trim(),Number(t.trim())):Number(t.trim())},clear:function(){xa={},_a="",ka=!1},setTitle:function(t){_a=t},getTitle:function(){return _a},setShowData:function(t){ka=t},getShowData:function(){return ka}},Ea=oe(),Ta=function(t,e){try{Ea=oe();var n=ba.a.parser;n.yy=wa,o.debug("Rendering info diagram\n"+t),n.yy.clear(),n.parse(t),o.debug("Parsed info diagram");var r=document.getElementById(e);void 0===(sa=r.parentElement.offsetWidth)&&(sa=1200),void 0!==Ea.useWidth&&(sa=Ea.useWidth),void 0!==Ea.pie.useWidth&&(sa=Ea.pie.useWidth);var i=Object(u.select)("#"+e);Ot(i,450,sa,Ea.pie.useMaxWidth),r.setAttribute("viewBox","0 0 "+sa+" 450");var a=Math.min(sa,450)/2-40,s=i.append("g").attr("transform","translate("+sa/2+",225)"),c=wa.getSections(),l=0;Object.keys(c).forEach((function(t){l+=c[t]}));var h=Ea.themeVariables,f=[h.pie1,h.pie2,h.pie3,h.pie4,h.pie5,h.pie6,h.pie7,h.pie8,h.pie9,h.pie10,h.pie11,h.pie12],d=Object(u.scaleOrdinal)().domain(c).range(f),p=Object(u.pie)().value((function(t){return t.value}))(Object(u.entries)(c)),y=Object(u.arc)().innerRadius(0).outerRadius(a);s.selectAll("mySlices").data(p).enter().append("path").attr("d",y).attr("fill",(function(t){return d(t.data.key)})).attr("class","pieCircle"),s.selectAll("mySlices").data(p.filter((function(t){return 0!==t.data.value}))).enter().append("text").text((function(t){return(t.data.value/l*100).toFixed(0)+"%"})).attr("transform",(function(t){return"translate("+y.centroid(t)+")"})).style("text-anchor","middle").attr("class","slice"),s.append("text").text(n.yy.getTitle()).attr("x",0).attr("y",-200).attr("class","pieTitleText");var g=s.selectAll(".legend").data(d.domain()).enter().append("g").attr("class","legend").attr("transform",(function(t,e){return"translate(216,"+(22*e-22*d.domain().length/2)+")"}));g.append("rect").attr("width",18).attr("height",18).style("fill",d).style("stroke",d),g.data(p.filter((function(t){return 0!==t.data.value}))).append("text").attr("x",22).attr("y",14).text((function(t){return n.yy.getShowData()||Ea.showData||Ea.pie.showData?t.data.key+" ["+t.data.value+"]":t.data.key}))}catch(t){o.error("Error while rendering info diagram"),o.error(t)}},Ca=n(45),Sa=n.n(Ca),Aa=[],Ma={},Oa={},Na={},Ba={},Da={RequirementType:{REQUIREMENT:"Requirement",FUNCTIONAL_REQUIREMENT:"Functional Requirement",INTERFACE_REQUIREMENT:"Interface Requirement",PERFORMANCE_REQUIREMENT:"Performance Requirement",PHYSICAL_REQUIREMENT:"Physical Requirement",DESIGN_CONSTRAINT:"Design Constraint"},RiskLevel:{LOW_RISK:"Low",MED_RISK:"Medium",HIGH_RISK:"High"},VerifyType:{VERIFY_ANALYSIS:"Analysis",VERIFY_DEMONSTRATION:"Demonstration",VERIFY_INSPECTION:"Inspection",VERIFY_TEST:"Test"},Relationships:{CONTAINS:"contains",COPIES:"copies",DERIVES:"derives",SATISFIES:"satisfies",VERIFIES:"verifies",REFINES:"refines",TRACES:"traces"},parseDirective:function(t,e,n){cc.parseDirective(this,t,e,n)},getConfig:function(){return oe().req},addRequirement:function(t,e){return void 0===Oa[t]&&(Oa[t]={name:t,type:e,id:Ma.id,text:Ma.text,risk:Ma.risk,verifyMethod:Ma.verifyMethod}),Ma={},Oa[t]},getRequirements:function(){return Oa},setNewReqId:function(t){void 0!==Ma&&(Ma.id=t)},setNewReqText:function(t){void 0!==Ma&&(Ma.text=t)},setNewReqRisk:function(t){void 0!==Ma&&(Ma.risk=t)},setNewReqVerifyMethod:function(t){void 0!==Ma&&(Ma.verifyMethod=t)},addElement:function(t){return void 0===Ba[t]&&(Ba[t]={name:t,type:Na.type,docRef:Na.docRef},o.info("Added new requirement: ",t)),Na={},Ba[t]},getElements:function(){return Ba},setNewElementType:function(t){void 0!==Na&&(Na.type=t)},setNewElementDocRef:function(t){void 0!==Na&&(Na.docRef=t)},addRelationship:function(t,e,n){Aa.push({type:t,src:e,dst:n})},getRelationships:function(){return Aa},clear:function(){Aa=[],Ma={},Oa={},Na={},Ba={}}},La={CONTAINS:"contains",ARROW:"arrow"},Ia=La,Ra=function(t,e){var n=t.append("defs").append("marker").attr("id",La.CONTAINS+"_line_ending").attr("refX",0).attr("refY",e.line_height/2).attr("markerWidth",e.line_height).attr("markerHeight",e.line_height).attr("orient","auto").append("g");n.append("circle").attr("cx",e.line_height/2).attr("cy",e.line_height/2).attr("r",e.line_height/2).attr("fill","none"),n.append("line").attr("x1",0).attr("x2",e.line_height).attr("y1",e.line_height/2).attr("y2",e.line_height/2).attr("stroke-width",1),n.append("line").attr("y1",0).attr("y2",e.line_height).attr("x1",e.line_height/2).attr("x2",e.line_height/2).attr("stroke-width",1),t.append("defs").append("marker").attr("id",La.ARROW+"_line_ending").attr("refX",e.line_height).attr("refY",.5*e.line_height).attr("markerWidth",e.line_height).attr("markerHeight",e.line_height).attr("orient","auto").append("path").attr("d","M0,0\n      L".concat(e.line_height,",").concat(e.line_height/2,"\n      M").concat(e.line_height,",").concat(e.line_height/2,"\n      L0,").concat(e.line_height)).attr("stroke-width",1)},Fa={},Pa=0,ja=function(t,e){return t.insert("rect","#"+e).attr("class","req reqBox").attr("x",0).attr("y",0).attr("width",Fa.rect_min_width+"px").attr("height",Fa.rect_min_height+"px")},Ya=function(t,e,n){var r=Fa.rect_min_width/2,i=t.append("text").attr("class","req reqLabel reqTitle").attr("id",e).attr("x",r).attr("y",Fa.rect_padding).attr("dominant-baseline","hanging"),a=0;n.forEach((function(t){0==a?i.append("tspan").attr("text-anchor","middle").attr("x",Fa.rect_min_width/2).attr("dy",0).text(t):i.append("tspan").attr("text-anchor","middle").attr("x",Fa.rect_min_width/2).attr("dy",.75*Fa.line_height).text(t),a++}));var o=1.5*Fa.rect_padding+a*Fa.line_height*.75;return t.append("line").attr("class","req-title-line").attr("x1","0").attr("x2",Fa.rect_min_width).attr("y1",o).attr("y2",o),{titleNode:i,y:o}},za=function(t,e,n,r){var i=t.append("text").attr("class","req reqLabel").attr("id",e).attr("x",Fa.rect_padding).attr("y",r).attr("dominant-baseline","hanging"),a=0,o=[];return n.forEach((function(t){for(var e=t.length;e>30&&a<3;){var n=t.substring(0,30);e=(t=t.substring(30,t.length)).length,o[o.length]=n,a++}if(3==a){var r=o[o.length-1];o[o.length-1]=r.substring(0,r.length-4)+"..."}else o[o.length]=t;a=0})),o.forEach((function(t){i.append("tspan").attr("x",Fa.rect_padding).attr("dy",Fa.line_height).text(t)})),i},Ua=function(t,e,n,r){var i=n.edge($a(e.src),$a(e.dst)),a=Object(u.line)().x((function(t){return t.x})).y((function(t){return t.y})),o=t.insert("path","#"+r).attr("class","er relationshipLine").attr("d",a(i.points)).attr("fill","none");e.type==Da.Relationships.CONTAINS?o.attr("marker-start","url("+nt.getUrl(Fa.arrowMarkerAbsolute)+"#"+e.type+"_line_ending)"):(o.attr("stroke-dasharray","10,7"),o.attr("marker-end","url("+nt.getUrl(Fa.arrowMarkerAbsolute)+"#"+Ia.ARROW+"_line_ending)")),function(t,e,n,r){var i=e.node().getTotalLength(),a=e.node().getPointAtLength(.5*i),o="rel"+Pa;Pa++;var s=t.append("text").attr("class","req relationshipLabel").attr("id",o).attr("x",a.x).attr("y",a.y).attr("text-anchor","middle").attr("dominant-baseline","middle").text(r).node().getBBox();t.insert("rect","#"+o).attr("class","req reqLabelBox").attr("x",a.x-s.width/2).attr("y",a.y-s.height/2).attr("width",s.width).attr("height",s.height).attr("fill","white").attr("fill-opacity","85%")}(t,o,0,"<<".concat(e.type,">>"))},$a=function(t){return t.replace(/\s/g,"").replace(/\./g,"_")},qa=function(t){if(void 0!==t)for(var e=Object.keys(t),n=0;n<e.length;n++)Fa[e[n]]=t[e[n]]},Wa=function(t,e){Ca.parser.yy=Da,Ca.parser.yy.clear(),Ca.parser.parse(t);var n=Object(u.select)("[id='".concat(e,"']"));Ra(n,Fa);var r,i,a,s=new Ae.a.Graph({multigraph:!1,compound:!1,directed:!0}).setGraph({rankdir:Fa.layoutDirection,marginx:20,marginy:20,nodesep:100,edgesep:100,ranksep:100}).setDefaultEdgeLabel((function(){return{}})),c=Da.getRequirements(),l=Da.getElements(),h=Da.getRelationships();r=c,i=s,a=n,Object.keys(r).forEach((function(t){var e=r[t];t=$a(t),o.info("Added new requirement: ",t);var n=a.append("g").attr("id",t),s=ja(n,"req-"+t),c=[],u=Ya(n,t+"_title",["<<".concat(e.type,">>"),"".concat(e.name)]);c.push(u.titleNode);var l=za(n,t+"_body",["Id: ".concat(e.id),"Text: ".concat(e.text),"Risk: ".concat(e.risk),"Verification: ".concat(e.verifyMethod)],u.y);c.push(l);var h=s.node().getBBox();i.setNode(t,{width:h.width,height:h.height,shape:"rect",id:t})})),function(t,e,n){Object.keys(t).forEach((function(r){var i=t[r],a=$a(r),o=n.append("g").attr("id",a),s="element-"+a,c=ja(o,s),u=[],l=Ya(o,s+"_title",["<<Element>>","".concat(r)]);u.push(l.titleNode);var h=za(o,s+"_body",["Type: ".concat(i.type||"Not Specified"),"Doc Ref: ".concat(i.docRef||"None")],l.y);u.push(h);var f=c.node().getBBox();e.setNode(a,{width:f.width,height:f.height,shape:"rect",id:a})}))}(l,s,n),function(t,e){t.forEach((function(t){var n=$a(t.src),r=$a(t.dst);e.setEdge(n,r,{relationship:t})}))}(h,s),Ce.a.layout(s),function(t,e){e.nodes().forEach((function(n){void 0!==n&&void 0!==e.node(n)&&(t.select("#"+n),t.select("#"+n).attr("transform","translate("+(e.node(n).x-e.node(n).width/2)+","+(e.node(n).y-e.node(n).height/2)+" )"))}))}(n,s),h.forEach((function(t){Ua(n,t,s,e)}));var f=Fa.rect_padding,d=n.node().getBBox(),p=d.width+2*f,y=d.height+2*f;Ot(n,y,p,Fa.useMaxWidth),n.attr("viewBox","".concat(d.x-f," ").concat(d.y-f," ").concat(p," ").concat(y))},Ha=n(2),Va=n.n(Ha),Ga=void 0,Xa={},Za=[],Ka=[],Qa="",Ja=!1,to=!1,eo=!1,no=function(t,e,n){var r=Xa[t];r&&e===r.name&&null==n||(null!=n&&null!=n.text||(n={text:e,wrap:null}),Xa[t]={name:e,description:n.text,wrap:void 0===n.wrap&&ao()||!!n.wrap,prevActor:Ga},Ga&&Xa[Ga]&&(Xa[Ga].nextActor=t),Ga=t)},ro=function(t){var e,n=0;for(e=0;e<Za.length;e++)Za[e].type===oo.ACTIVE_START&&Za[e].from.actor===t&&n++,Za[e].type===oo.ACTIVE_END&&Za[e].from.actor===t&&n--;return n},io=function(t,e){var n=arguments.length>2&&void 0!==arguments[2]?arguments[2]:{text:void 0,wrap:void 0},r=arguments.length>3?arguments[3]:void 0;if(r===oo.ACTIVE_END){var i=ro(t.actor);if(i<1){var a=new Error("Trying to inactivate an inactive participant ("+t.actor+")");throw a.hash={text:"->>-",token:"->>-",line:"1",loc:{first_line:1,last_line:1,first_column:1,last_column:1},expected:["'ACTIVE_PARTICIPANT'"]},a}}return Za.push({from:t,to:e,message:n.text,wrap:void 0===n.wrap&&ao()||!!n.wrap,type:r}),!0},ao=function(){return eo},oo={SOLID:0,DOTTED:1,NOTE:2,SOLID_CROSS:3,DOTTED_CROSS:4,SOLID_OPEN:5,DOTTED_OPEN:6,LOOP_START:10,LOOP_END:11,ALT_START:12,ALT_ELSE:13,ALT_END:14,OPT_START:15,OPT_END:16,ACTIVE_START:17,ACTIVE_END:18,PAR_START:19,PAR_AND:20,PAR_END:21,RECT_START:22,RECT_END:23,SOLID_POINT:24,DOTTED_POINT:25},so=function(t,e,n){var r={actor:t,placement:e,message:n.text,wrap:void 0===n.wrap&&ao()||!!n.wrap},i=[].concat(t,t);Ka.push(r),Za.push({from:i[0],to:i[1],message:n.text,wrap:void 0===n.wrap&&ao()||!!n.wrap,type:oo.NOTE,placement:e})},co=function(t){Qa=t.text,Ja=void 0===t.wrap&&ao()||!!t.wrap},uo={addActor:no,addMessage:function(t,e,n,r){Za.push({from:t,to:e,message:n.text,wrap:void 0===n.wrap&&ao()||!!n.wrap,answer:r})},addSignal:io,autoWrap:ao,setWrap:function(t){eo=t},enableSequenceNumbers:function(){to=!0},showSequenceNumbers:function(){return to},getMessages:function(){return Za},getActors:function(){return Xa},getActor:function(t){return Xa[t]},getActorKeys:function(){return Object.keys(Xa)},getTitle:function(){return Qa},parseDirective:function(t,e,n){cc.parseDirective(this,t,e,n)},getConfig:function(){return oe().sequence},getTitleWrapped:function(){return Ja},clear:function(){Xa={},Za=[]},parseMessage:function(t){var e=t.trim(),n={text:e.replace(/^[:]?(?:no)?wrap:/,"").trim(),wrap:null!==e.match(/^[:]?wrap:/)||null===e.match(/^[:]?nowrap:/)&&void 0};return o.debug("parseMessage:",n),n},LINETYPE:oo,ARROWTYPE:{FILLED:0,OPEN:1},PLACEMENT:{LEFTOF:0,RIGHTOF:1,OVER:2},addNote:so,setTitle:co,apply:function t(e){if(e instanceof Array)e.forEach((function(e){t(e)}));else switch(e.type){case"addActor":no(e.actor,e.actor,e.description);break;case"activeStart":case"activeEnd":io(e.actor,void 0,void 0,e.signalType);break;case"addNote":so(e.actor,e.placement,e.text);break;case"addMessage":io(e.from,e.to,e.msg,e.signalType);break;case"loopStart":io(void 0,void 0,e.loopText,e.signalType);break;case"loopEnd":io(void 0,void 0,void 0,e.signalType);break;case"rectStart":io(void 0,void 0,e.color,e.signalType);break;case"rectEnd":io(void 0,void 0,void 0,e.signalType);break;case"optStart":io(void 0,void 0,e.optText,e.signalType);break;case"optEnd":io(void 0,void 0,void 0,e.signalType);break;case"altStart":case"else":io(void 0,void 0,e.altText,e.signalType);break;case"altEnd":io(void 0,void 0,void 0,e.signalType);break;case"setTitle":co(e.text);break;case"parStart":case"and":io(void 0,void 0,e.parText,e.signalType);break;case"parEnd":io(void 0,void 0,void 0,e.signalType)}}},lo=function(t,e){var n=t.append("rect");return n.attr("x",e.x),n.attr("y",e.y),n.attr("fill",e.fill),n.attr("stroke",e.stroke),n.attr("width",e.width),n.attr("height",e.height),n.attr("rx",e.rx),n.attr("ry",e.ry),void 0!==e.class&&n.attr("class",e.class),n},ho=function(t,e){var n=0,r=0,i=e.text.split(nt.lineBreakRegex),a=[],o=0,s=function(){return e.y};if(void 0!==e.valign&&void 0!==e.textMargin&&e.textMargin>0)switch(e.valign){case"top":case"start":s=function(){return Math.round(e.y+e.textMargin)};break;case"middle":case"center":s=function(){return Math.round(e.y+(n+r+e.textMargin)/2)};break;case"bottom":case"end":s=function(){return Math.round(e.y+(n+r+2*e.textMargin)-e.textMargin)}}if(void 0!==e.anchor&&void 0!==e.textMargin&&void 0!==e.width)switch(e.anchor){case"left":case"start":e.x=Math.round(e.x+e.textMargin),e.anchor="start",e.dominantBaseline="text-after-edge",e.alignmentBaseline="middle";break;case"middle":case"center":e.x=Math.round(e.x+e.width/2),e.anchor="middle",e.dominantBaseline="middle",e.alignmentBaseline="middle";break;case"right":case"end":e.x=Math.round(e.x+e.width-e.textMargin),e.anchor="end",e.dominantBaseline="text-before-edge",e.alignmentBaseline="middle"}for(var c=0;c<i.length;c++){var u=i[c];void 0!==e.textMargin&&0===e.textMargin&&void 0!==e.fontSize&&(o=c*e.fontSize);var l=t.append("text");if(l.attr("x",e.x),l.attr("y",s()),void 0!==e.anchor&&l.attr("text-anchor",e.anchor).attr("dominant-baseline",e.dominantBaseline).attr("alignment-baseline",e.alignmentBaseline),void 0!==e.fontFamily&&l.style("font-family",e.fontFamily),void 0!==e.fontSize&&l.style("font-size",e.fontSize),void 0!==e.fontWeight&&l.style("font-weight",e.fontWeight),void 0!==e.fill&&l.attr("fill",e.fill),void 0!==e.class&&l.attr("class",e.class),void 0!==e.dy?l.attr("dy",e.dy):0!==o&&l.attr("dy",o),e.tspan){var h=l.append("tspan");h.attr("x",e.x),void 0!==e.fill&&h.attr("fill",e.fill),h.text(u)}else l.text(u);void 0!==e.valign&&void 0!==e.textMargin&&e.textMargin>0&&(r+=(l._groups||l)[0][0].getBBox().height,n=r),a.push(l)}return a},fo=function(t,e){var n,r,i,a,o,s=t.append("polygon");return s.attr("points",(n=e.x,r=e.y,i=e.width,a=e.height,n+","+r+" "+(n+i)+","+r+" "+(n+i)+","+(r+a-(o=7))+" "+(n+i-1.2*o)+","+(r+a)+" "+n+","+(r+a))),s.attr("class","labelBox"),e.y=e.y+e.height/2,ho(t,e),s},po=-1,yo=function(){return{x:0,y:0,fill:void 0,anchor:void 0,style:"#666",width:void 0,height:void 0,textMargin:0,rx:0,ry:0,tspan:!0,valign:void 0}},go=function(){return{x:0,y:0,fill:"#EDF2AE",stroke:"#666",width:100,anchor:"start",height:100,rx:0,ry:0}},mo=function(){function t(t,e,n,i,a,o,s){r(e.append("text").attr("x",n+a/2).attr("y",i+o/2+5).style("text-anchor","middle").text(t),s)}function e(t,e,n,i,a,o,s,c){for(var u=c.actorFontSize,l=c.actorFontFamily,h=c.actorFontWeight,f=t.split(nt.lineBreakRegex),d=0;d<f.length;d++){var p=d*u-u*(f.length-1)/2,y=e.append("text").attr("x",n+a/2).attr("y",i).style("text-anchor","middle").style("font-size",u).style("font-weight",h).style("font-family",l);y.append("tspan").attr("x",n+a/2).attr("dy",p).text(f[d]),y.attr("y",i+o/2).attr("dominant-baseline","central").attr("alignment-baseline","central"),r(y,s)}}function n(t,n,i,a,o,s,c,u){var l=n.append("switch"),h=l.append("foreignObject").attr("x",i).attr("y",a).attr("width",o).attr("height",s).append("xhtml:div").style("display","table").style("height","100%").style("width","100%");h.append("div").style("display","table-cell").style("text-align","center").style("vertical-align","middle").text(t),e(t,l,i,a,o,s,c,u),r(h,c)}function r(t,e){for(var n in e)e.hasOwnProperty(n)&&t.attr(n,e[n])}return function(r){return"fo"===r.textPlacement?n:"old"===r.textPlacement?t:e}}(),vo={drawRect:lo,drawText:ho,drawLabel:fo,drawActor:function(t,e,n){var r=e.x+e.width/2,i=t.append("g");0===e.y&&(po++,i.append("line").attr("id","actor"+po).attr("x1",r).attr("y1",5).attr("x2",r).attr("y2",2e3).attr("class","actor-line").attr("stroke-width","0.5px").attr("stroke","#999"));var a=go();a.x=e.x,a.y=e.y,a.fill="#eaeaea",a.width=e.width,a.height=e.height,a.class="actor",a.rx=3,a.ry=3,lo(i,a),mo(n)(e.description,i,a.x,a.y,a.width,a.height,{class:"actor"},n)},anchorElement:function(t){return t.append("g")},drawActivation:function(t,e,n,r,i){var a=go(),o=e.anchored;a.x=e.startx,a.y=e.starty,a.class="activation"+i%3,a.width=e.stopx-e.startx,a.height=n-e.starty,lo(o,a)},drawLoop:function(t,e,n,r){var i=r.boxMargin,a=r.boxTextMargin,o=r.labelBoxHeight,s=r.labelBoxWidth,c=r.messageFontFamily,u=r.messageFontSize,l=r.messageFontWeight,h=t.append("g"),f=function(t,e,n,r){return h.append("line").attr("x1",t).attr("y1",e).attr("x2",n).attr("y2",r).attr("class","loopLine")};f(e.startx,e.starty,e.stopx,e.starty),f(e.stopx,e.starty,e.stopx,e.stopy),f(e.startx,e.stopy,e.stopx,e.stopy),f(e.startx,e.starty,e.startx,e.stopy),void 0!==e.sections&&e.sections.forEach((function(t){f(e.startx,t.y,e.stopx,t.y).style("stroke-dasharray","3, 3")}));var d=yo();d.text=n,d.x=e.startx,d.y=e.starty,d.fontFamily=c,d.fontSize=u,d.fontWeight=l,d.anchor="middle",d.valign="middle",d.tspan=!1,d.width=s||50,d.height=o||20,d.textMargin=a,d.class="labelText",fo(h,d),(d=yo()).text=e.title,d.x=e.startx+s/2+(e.stopx-e.startx)/2,d.y=e.starty+i+a,d.anchor="middle",d.valign="middle",d.textMargin=a,d.class="loopText",d.fontFamily=c,d.fontSize=u,d.fontWeight=l,d.wrap=!0;var p=ho(h,d);return void 0!==e.sectionTitles&&e.sectionTitles.forEach((function(t,n){if(t.message){d.text=t.message,d.x=e.startx+(e.stopx-e.startx)/2,d.y=e.sections[n].y+i+a,d.class="loopText",d.anchor="middle",d.valign="middle",d.tspan=!1,d.fontFamily=c,d.fontSize=u,d.fontWeight=l,d.wrap=e.wrap,p=ho(h,d);var r=Math.round(p.map((function(t){return(t._groups||t)[0][0].getBBox().height})).reduce((function(t,e){return t+e})));e.sections[n].height+=r-(i+a)}})),e.height=Math.round(e.stopy-e.starty),h},drawBackgroundRect:function(t,e){lo(t,{x:e.startx,y:e.starty,width:e.stopx-e.startx,height:e.stopy-e.starty,fill:e.fill,class:"rect"}).lower()},insertArrowHead:function(t){t.append("defs").append("marker").attr("id","arrowhead").attr("refX",9).attr("refY",5).attr("markerUnits","userSpaceOnUse").attr("markerWidth",12).attr("markerHeight",12).attr("orient","auto").append("path").attr("d","M 0 0 L 10 5 L 0 10 z")},insertArrowFilledHead:function(t){t.append("defs").append("marker").attr("id","filled-head").attr("refX",18).attr("refY",7).attr("markerWidth",20).attr("markerHeight",28).attr("orient","auto").append("path").attr("d","M 18,7 L9,13 L14,7 L9,1 Z")},insertSequenceNumber:function(t){t.append("defs").append("marker").attr("id","sequencenumber").attr("refX",15).attr("refY",15).attr("markerWidth",60).attr("markerHeight",40).attr("orient","auto").append("circle").attr("cx",15).attr("cy",15).attr("r",6)},insertArrowCrossHead:function(t){var e=t.append("defs").append("marker").attr("id","crosshead").attr("markerWidth",15).attr("markerHeight",8).attr("orient","auto").attr("refX",16).attr("refY",4);e.append("path").attr("fill","black").attr("stroke","#000000").style("stroke-dasharray","0, 0").attr("stroke-width","1px").attr("d","M 9,2 V 6 L16,4 Z"),e.append("path").attr("fill","none").attr("stroke","#000000").style("stroke-dasharray","0, 0").attr("stroke-width","1px").attr("d","M 0,1 L 6,7 M 6,1 L 0,7")},getTextObj:yo,getNoteRect:go};Ha.parser.yy=uo;var bo={},xo={data:{startx:void 0,stopx:void 0,starty:void 0,stopy:void 0},verticalPos:0,sequenceItems:[],activations:[],models:{getHeight:function(){return Math.max.apply(null,0===this.actors.length?[0]:this.actors.map((function(t){return t.height||0})))+(0===this.loops.length?0:this.loops.map((function(t){return t.height||0})).reduce((function(t,e){return t+e})))+(0===this.messages.length?0:this.messages.map((function(t){return t.height||0})).reduce((function(t,e){return t+e})))+(0===this.notes.length?0:this.notes.map((function(t){return t.height||0})).reduce((function(t,e){return t+e})))},clear:function(){this.actors=[],this.loops=[],this.messages=[],this.notes=[]},addActor:function(t){this.actors.push(t)},addLoop:function(t){this.loops.push(t)},addMessage:function(t){this.messages.push(t)},addNote:function(t){this.notes.push(t)},lastActor:function(){return this.actors[this.actors.length-1]},lastLoop:function(){return this.loops[this.loops.length-1]},lastMessage:function(){return this.messages[this.messages.length-1]},lastNote:function(){return this.notes[this.notes.length-1]},actors:[],loops:[],messages:[],notes:[]},init:function(){this.sequenceItems=[],this.activations=[],this.models.clear(),this.data={startx:void 0,stopx:void 0,starty:void 0,stopy:void 0},this.verticalPos=0,To(Ha.parser.yy.getConfig())},updateVal:function(t,e,n,r){void 0===t[e]?t[e]=n:t[e]=r(n,t[e])},updateBounds:function(t,e,n,r){var i=this,a=0;function o(o){return function(s){a++;var c=i.sequenceItems.length-a+1;i.updateVal(s,"starty",e-c*bo.boxMargin,Math.min),i.updateVal(s,"stopy",r+c*bo.boxMargin,Math.max),i.updateVal(xo.data,"startx",t-c*bo.boxMargin,Math.min),i.updateVal(xo.data,"stopx",n+c*bo.boxMargin,Math.max),"activation"!==o&&(i.updateVal(s,"startx",t-c*bo.boxMargin,Math.min),i.updateVal(s,"stopx",n+c*bo.boxMargin,Math.max),i.updateVal(xo.data,"starty",e-c*bo.boxMargin,Math.min),i.updateVal(xo.data,"stopy",r+c*bo.boxMargin,Math.max))}}this.sequenceItems.forEach(o()),this.activations.forEach(o("activation"))},insert:function(t,e,n,r){var i=Math.min(t,n),a=Math.max(t,n),o=Math.min(e,r),s=Math.max(e,r);this.updateVal(xo.data,"startx",i,Math.min),this.updateVal(xo.data,"starty",o,Math.min),this.updateVal(xo.data,"stopx",a,Math.max),this.updateVal(xo.data,"stopy",s,Math.max),this.updateBounds(i,o,a,s)},newActivation:function(t,e,n){var r=n[t.from.actor],i=Co(t.from.actor).length||0,a=r.x+r.width/2+(i-1)*bo.activationWidth/2;this.activations.push({startx:a,starty:this.verticalPos+2,stopx:a+bo.activationWidth,stopy:void 0,actor:t.from.actor,anchored:vo.anchorElement(e)})},endActivation:function(t){var e=this.activations.map((function(t){return t.actor})).lastIndexOf(t.from.actor);return this.activations.splice(e,1)[0]},createLoop:function(){var t=arguments.length>0&&void 0!==arguments[0]?arguments[0]:{message:void 0,wrap:!1,width:void 0},e=arguments.length>1?arguments[1]:void 0;return{startx:void 0,starty:this.verticalPos,stopx:void 0,stopy:void 0,title:t.message,wrap:t.wrap,width:t.width,height:0,fill:e}},newLoop:function(){var t=arguments.length>0&&void 0!==arguments[0]?arguments[0]:{message:void 0,wrap:!1,width:void 0},e=arguments.length>1?arguments[1]:void 0;this.sequenceItems.push(this.createLoop(t,e))},endLoop:function(){return this.sequenceItems.pop()},addSectionToLoop:function(t){var e=this.sequenceItems.pop();e.sections=e.sections||[],e.sectionTitles=e.sectionTitles||[],e.sections.push({y:xo.getVerticalPos(),height:0}),e.sectionTitles.push(t),this.sequenceItems.push(e)},bumpVerticalPos:function(t){this.verticalPos=this.verticalPos+t,this.data.stopy=this.verticalPos},getVerticalPos:function(){return this.verticalPos},getBounds:function(){return{bounds:this.data,models:this.models}}},_o=function(t){return{fontFamily:t.messageFontFamily,fontSize:t.messageFontSize,fontWeight:t.messageFontWeight}},ko=function(t){return{fontFamily:t.noteFontFamily,fontSize:t.noteFontSize,fontWeight:t.noteFontWeight}},wo=function(t){return{fontFamily:t.actorFontFamily,fontSize:t.actorFontSize,fontWeight:t.actorFontWeight}},Eo=function(t,e,n,r){for(var i=0,a=0,o=0;o<n.length;o++){var s=e[n[o]];s.width=s.width||bo.width,s.height=Math.max(s.height||bo.height,bo.height),s.margin=s.margin||bo.actorMargin,s.x=i+a,s.y=r,vo.drawActor(t,s,bo),xo.insert(s.x,r,s.x+s.width,s.height),i+=s.width,a+=s.margin,xo.models.addActor(s)}xo.bumpVerticalPos(bo.height)},To=function(t){wt(bo,t),t.fontFamily&&(bo.actorFontFamily=bo.noteFontFamily=bo.messageFontFamily=t.fontFamily),t.fontSize&&(bo.actorFontSize=bo.noteFontSize=bo.messageFontSize=t.fontSize),t.fontWeight&&(bo.actorFontWeight=bo.noteFontWeight=bo.messageFontWeight=t.fontWeight)},Co=function(t){return xo.activations.filter((function(e){return e.actor===t}))},So=function(t,e){var n=e[t],r=Co(t);return[r.reduce((function(t,e){return Math.min(t,e.startx)}),n.x+n.width/2),r.reduce((function(t,e){return Math.max(t,e.stopx)}),n.x+n.width/2)]};function Ao(t,e,n,r,i){xo.bumpVerticalPos(n);var a=r;if(e.id&&e.message&&t[e.id]){var s=t[e.id].width,c=_o(bo);e.message=Nt.wrapLabel("[".concat(e.message,"]"),s-2*bo.wrapPadding,c),e.width=s,e.wrap=!0;var u=Nt.calculateTextDimensions(e.message,c),l=Math.max(u.height,bo.labelBoxHeight);a=r+l,o.debug("".concat(l," - ").concat(e.message))}i(e),xo.bumpVerticalPos(a)}var Mo=function(t,e){var n={};return e.forEach((function(e){if(t[e.to]&&t[e.from]){var r=t[e.to];if(e.placement===Ha.parser.yy.PLACEMENT.LEFTOF&&!r.prevActor)return;if(e.placement===Ha.parser.yy.PLACEMENT.RIGHTOF&&!r.nextActor)return;var i=void 0!==e.placement,a=!i,o=i?ko(bo):_o(bo),s=e.wrap?Nt.wrapLabel(e.message,bo.width-2*bo.wrapPadding,o):e.message,c=Nt.calculateTextDimensions(s,o).width+2*bo.wrapPadding;a&&e.from===r.nextActor?n[e.to]=Math.max(n[e.to]||0,c):a&&e.from===r.prevActor?n[e.from]=Math.max(n[e.from]||0,c):a&&e.from===e.to?(n[e.from]=Math.max(n[e.from]||0,c/2),n[e.to]=Math.max(n[e.to]||0,c/2)):e.placement===Ha.parser.yy.PLACEMENT.RIGHTOF?n[e.from]=Math.max(n[e.from]||0,c):e.placement===Ha.parser.yy.PLACEMENT.LEFTOF?n[r.prevActor]=Math.max(n[r.prevActor]||0,c):e.placement===Ha.parser.yy.PLACEMENT.OVER&&(r.prevActor&&(n[r.prevActor]=Math.max(n[r.prevActor]||0,c/2)),r.nextActor&&(n[e.from]=Math.max(n[e.from]||0,c/2)))}})),o.debug("maxMessageWidthPerActor:",n),n},Oo=function(t,e){var n=0;for(var r in Object.keys(t).forEach((function(e){var r=t[e];r.wrap&&(r.description=Nt.wrapLabel(r.description,bo.width-2*bo.wrapPadding,wo(bo)));var i=Nt.calculateTextDimensions(r.description,wo(bo));r.width=r.wrap?bo.width:Math.max(bo.width,i.width+2*bo.wrapPadding),r.height=r.wrap?Math.max(i.height,bo.height):bo.height,n=Math.max(n,r.height)})),e){var i=t[r];if(i){var a=t[i.nextActor];if(a){var o=e[r]+bo.actorMargin-i.width/2-a.width/2;i.margin=Math.max(o,bo.actorMargin)}}}return Math.max(n,bo.height)},No=function(t,e){var n,r,i,a={},s=[];return t.forEach((function(t){switch(t.id=Nt.random({length:10}),t.type){case Ha.parser.yy.LINETYPE.LOOP_START:case Ha.parser.yy.LINETYPE.ALT_START:case Ha.parser.yy.LINETYPE.OPT_START:case Ha.parser.yy.LINETYPE.PAR_START:s.push({id:t.id,msg:t.message,from:Number.MAX_SAFE_INTEGER,to:Number.MIN_SAFE_INTEGER,width:0});break;case Ha.parser.yy.LINETYPE.ALT_ELSE:case Ha.parser.yy.LINETYPE.PAR_AND:t.message&&(n=s.pop(),a[n.id]=n,a[t.id]=n,s.push(n));break;case Ha.parser.yy.LINETYPE.LOOP_END:case Ha.parser.yy.LINETYPE.ALT_END:case Ha.parser.yy.LINETYPE.OPT_END:case Ha.parser.yy.LINETYPE.PAR_END:n=s.pop(),a[n.id]=n;break;case Ha.parser.yy.LINETYPE.ACTIVE_START:var c=e[t.from?t.from.actor:t.to.actor],u=Co(t.from?t.from.actor:t.to.actor).length,l=c.x+c.width/2+(u-1)*bo.activationWidth/2,h={startx:l,stopx:l+bo.activationWidth,actor:t.from.actor,enabled:!0};xo.activations.push(h);break;case Ha.parser.yy.LINETYPE.ACTIVE_END:var f=xo.activations.map((function(t){return t.actor})).lastIndexOf(t.from.actor);delete xo.activations.splice(f,1)[0]}void 0!==t.placement?(r=function(t,e){var n=e[t.from].x,r=e[t.to].x,i=t.wrap&&t.message,a=Nt.calculateTextDimensions(i?Nt.wrapLabel(t.message,bo.width,ko(bo)):t.message,ko(bo)),s={width:i?bo.width:Math.max(bo.width,a.width+2*bo.noteMargin),height:0,startx:e[t.from].x,stopx:0,starty:0,stopy:0,message:t.message};return t.placement===Ha.parser.yy.PLACEMENT.RIGHTOF?(s.width=i?Math.max(bo.width,a.width):Math.max(e[t.from].width/2+e[t.to].width/2,a.width+2*bo.noteMargin),s.startx=n+(e[t.from].width+bo.actorMargin)/2):t.placement===Ha.parser.yy.PLACEMENT.LEFTOF?(s.width=i?Math.max(bo.width,a.width+2*bo.noteMargin):Math.max(e[t.from].width/2+e[t.to].width/2,a.width+2*bo.noteMargin),s.startx=n-s.width+(e[t.from].width-bo.actorMargin)/2):t.to===t.from?(a=Nt.calculateTextDimensions(i?Nt.wrapLabel(t.message,Math.max(bo.width,e[t.from].width),ko(bo)):t.message,ko(bo)),s.width=i?Math.max(bo.width,e[t.from].width):Math.max(e[t.from].width,bo.width,a.width+2*bo.noteMargin),s.startx=n+(e[t.from].width-s.width)/2):(s.width=Math.abs(n+e[t.from].width/2-(r+e[t.to].width/2))+bo.actorMargin,s.startx=n<r?n+e[t.from].width/2-bo.actorMargin/2:r+e[t.to].width/2-bo.actorMargin/2),i&&(s.message=Nt.wrapLabel(t.message,s.width-2*bo.wrapPadding,ko(bo))),o.debug("NM:[".concat(s.startx,",").concat(s.stopx,",").concat(s.starty,",").concat(s.stopy,":").concat(s.width,",").concat(s.height,"=").concat(t.message,"]")),s}(t,e),t.noteModel=r,s.forEach((function(t){(n=t).from=Math.min(n.from,r.startx),n.to=Math.max(n.to,r.startx+r.width),n.width=Math.max(n.width,Math.abs(n.from-n.to))-bo.labelBoxWidth}))):(i=function(t,e){var n=!1;if([Ha.parser.yy.LINETYPE.SOLID_OPEN,Ha.parser.yy.LINETYPE.DOTTED_OPEN,Ha.parser.yy.LINETYPE.SOLID,Ha.parser.yy.LINETYPE.DOTTED,Ha.parser.yy.LINETYPE.SOLID_CROSS,Ha.parser.yy.LINETYPE.DOTTED_CROSS,Ha.parser.yy.LINETYPE.SOLID_POINT,Ha.parser.yy.LINETYPE.DOTTED_POINT].includes(t.type)&&(n=!0),!n)return{};var r=So(t.from,e),i=So(t.to,e),a=r[0]<=i[0]?1:0,o=r[0]<i[0]?0:1,s=r.concat(i),c=Math.abs(i[o]-r[a]);t.wrap&&t.message&&(t.message=Nt.wrapLabel(t.message,Math.max(c+2*bo.wrapPadding,bo.width),_o(bo)));var u=Nt.calculateTextDimensions(t.message,_o(bo));return{width:Math.max(t.wrap?0:u.width+2*bo.wrapPadding,c+2*bo.wrapPadding,bo.width),height:0,startx:r[a],stopx:i[o],starty:0,stopy:0,message:t.message,type:t.type,wrap:t.wrap,fromBounds:Math.min.apply(null,s),toBounds:Math.max.apply(null,s)}}(t,e),t.msgModel=i,i.startx&&i.stopx&&s.length>0&&s.forEach((function(r){if(n=r,i.startx===i.stopx){var a=e[t.from],o=e[t.to];n.from=Math.min(a.x-i.width/2,a.x-a.width/2,n.from),n.to=Math.max(o.x+i.width/2,o.x+a.width/2,n.to),n.width=Math.max(n.width,Math.abs(n.to-n.from))-bo.labelBoxWidth}else n.from=Math.min(i.startx,n.from),n.to=Math.max(i.stopx,n.to),n.width=Math.max(n.width,i.width)-bo.labelBoxWidth})))})),xo.activations=[],o.debug("Loop type widths:",a),a},Bo={bounds:xo,drawActors:Eo,setConf:To,draw:function(t,e){bo=oe().sequence,Ha.parser.yy.clear(),Ha.parser.yy.setWrap(bo.wrap),Ha.parser.parse(t+"\n"),xo.init(),o.debug("C:".concat(JSON.stringify(bo,null,2)));var n=Object(u.select)('[id="'.concat(e,'"]')),r=Ha.parser.yy.getActors(),i=Ha.parser.yy.getActorKeys(),a=Ha.parser.yy.getMessages(),s=Ha.parser.yy.getTitle(),c=Mo(r,a);bo.height=Oo(r,c),Eo(n,r,i,0);var l=No(a,r,c);vo.insertArrowHead(n),vo.insertArrowCrossHead(n),vo.insertArrowFilledHead(n),vo.insertSequenceNumber(n);var h=1;a.forEach((function(t){var e,i,a;switch(t.type){case Ha.parser.yy.LINETYPE.NOTE:i=t.noteModel,function(t,e){xo.bumpVerticalPos(bo.boxMargin),e.height=bo.boxMargin,e.starty=xo.getVerticalPos();var n=vo.getNoteRect();n.x=e.startx,n.y=e.starty,n.width=e.width||bo.width,n.class="note";var r=t.append("g"),i=vo.drawRect(r,n),a=vo.getTextObj();a.x=e.startx,a.y=e.starty,a.width=n.width,a.dy="1em",a.text=e.message,a.class="noteText",a.fontFamily=bo.noteFontFamily,a.fontSize=bo.noteFontSize,a.fontWeight=bo.noteFontWeight,a.anchor=bo.noteAlign,a.textMargin=bo.noteMargin,a.valign=bo.noteAlign;var o=ho(r,a),s=Math.round(o.map((function(t){return(t._groups||t)[0][0].getBBox().height})).reduce((function(t,e){return t+e})));i.attr("height",s+2*bo.noteMargin),e.height+=s+2*bo.noteMargin,xo.bumpVerticalPos(s+2*bo.noteMargin),e.stopy=e.starty+s+2*bo.noteMargin,e.stopx=e.startx+n.width,xo.insert(e.startx,e.starty,e.stopx,e.stopy),xo.models.addNote(e)}(n,i);break;case Ha.parser.yy.LINETYPE.ACTIVE_START:xo.newActivation(t,n,r);break;case Ha.parser.yy.LINETYPE.ACTIVE_END:!function(t,e){var r=xo.endActivation(t);r.starty+18>e&&(r.starty=e-6,e+=12),vo.drawActivation(n,r,e,bo,Co(t.from.actor).length),xo.insert(r.startx,e-10,r.stopx,e)}(t,xo.getVerticalPos());break;case Ha.parser.yy.LINETYPE.LOOP_START:Ao(l,t,bo.boxMargin,bo.boxMargin+bo.boxTextMargin,(function(t){return xo.newLoop(t)}));break;case Ha.parser.yy.LINETYPE.LOOP_END:e=xo.endLoop(),vo.drawLoop(n,e,"loop",bo),xo.bumpVerticalPos(e.stopy-xo.getVerticalPos()),xo.models.addLoop(e);break;case Ha.parser.yy.LINETYPE.RECT_START:Ao(l,t,bo.boxMargin,bo.boxMargin,(function(t){return xo.newLoop(void 0,t.message)}));break;case Ha.parser.yy.LINETYPE.RECT_END:e=xo.endLoop(),vo.drawBackgroundRect(n,e),xo.models.addLoop(e),xo.bumpVerticalPos(e.stopy-xo.getVerticalPos());break;case Ha.parser.yy.LINETYPE.OPT_START:Ao(l,t,bo.boxMargin,bo.boxMargin+bo.boxTextMargin,(function(t){return xo.newLoop(t)}));break;case Ha.parser.yy.LINETYPE.OPT_END:e=xo.endLoop(),vo.drawLoop(n,e,"opt",bo),xo.bumpVerticalPos(e.stopy-xo.getVerticalPos()),xo.models.addLoop(e);break;case Ha.parser.yy.LINETYPE.ALT_START:Ao(l,t,bo.boxMargin,bo.boxMargin+bo.boxTextMargin,(function(t){return xo.newLoop(t)}));break;case Ha.parser.yy.LINETYPE.ALT_ELSE:Ao(l,t,bo.boxMargin+bo.boxTextMargin,bo.boxMargin,(function(t){return xo.addSectionToLoop(t)}));break;case Ha.parser.yy.LINETYPE.ALT_END:e=xo.endLoop(),vo.drawLoop(n,e,"alt",bo),xo.bumpVerticalPos(e.stopy-xo.getVerticalPos()),xo.models.addLoop(e);break;case Ha.parser.yy.LINETYPE.PAR_START:Ao(l,t,bo.boxMargin,bo.boxMargin+bo.boxTextMargin,(function(t){return xo.newLoop(t)}));break;case Ha.parser.yy.LINETYPE.PAR_AND:Ao(l,t,bo.boxMargin+bo.boxTextMargin,bo.boxMargin,(function(t){return xo.addSectionToLoop(t)}));break;case Ha.parser.yy.LINETYPE.PAR_END:e=xo.endLoop(),vo.drawLoop(n,e,"par",bo),xo.bumpVerticalPos(e.stopy-xo.getVerticalPos()),xo.models.addLoop(e);break;default:try{(a=t.msgModel).starty=xo.getVerticalPos(),a.sequenceIndex=h,function(t,e){xo.bumpVerticalPos(10);var n=e.startx,r=e.stopx,i=e.starty,a=e.message,o=e.type,s=e.sequenceIndex,c=nt.splitBreaks(a).length,u=Nt.calculateTextDimensions(a,_o(bo)),l=u.height/c;e.height+=l,xo.bumpVerticalPos(l);var h=vo.getTextObj();h.x=n,h.y=i+10,h.width=r-n,h.class="messageText",h.dy="1em",h.text=a,h.fontFamily=bo.messageFontFamily,h.fontSize=bo.messageFontSize,h.fontWeight=bo.messageFontWeight,h.anchor=bo.messageAlign,h.valign=bo.messageAlign,h.textMargin=bo.wrapPadding,h.tspan=!1,ho(t,h);var f,d,p=u.height-10,y=u.width;if(n===r){d=xo.getVerticalPos()+p,bo.rightAngles?f=t.append("path").attr("d","M  ".concat(n,",").concat(d," H ").concat(n+Math.max(bo.width/2,y/2)," V ").concat(d+25," H ").concat(n)):(p+=bo.boxMargin,d=xo.getVerticalPos()+p,f=t.append("path").attr("d","M "+n+","+d+" C "+(n+60)+","+(d-10)+" "+(n+60)+","+(d+30)+" "+n+","+(d+20))),p+=30;var g=Math.max(y/2,bo.width/2);xo.insert(n-g,xo.getVerticalPos()-10+p,r+g,xo.getVerticalPos()+30+p)}else p+=bo.boxMargin,d=xo.getVerticalPos()+p,(f=t.append("line")).attr("x1",n),f.attr("y1",d),f.attr("x2",r),f.attr("y2",d),xo.insert(n,d-10,r,d);o===Ha.parser.yy.LINETYPE.DOTTED||o===Ha.parser.yy.LINETYPE.DOTTED_CROSS||o===Ha.parser.yy.LINETYPE.DOTTED_POINT||o===Ha.parser.yy.LINETYPE.DOTTED_OPEN?(f.style("stroke-dasharray","3, 3"),f.attr("class","messageLine1")):f.attr("class","messageLine0");var m="";bo.arrowMarkerAbsolute&&(m=(m=(m=window.location.protocol+"//"+window.location.host+window.location.pathname+window.location.search).replace(/\(/g,"\\(")).replace(/\)/g,"\\)")),f.attr("stroke-width",2),f.attr("stroke","none"),f.style("fill","none"),o!==Ha.parser.yy.LINETYPE.SOLID&&o!==Ha.parser.yy.LINETYPE.DOTTED||f.attr("marker-end","url("+m+"#arrowhead)"),o!==Ha.parser.yy.LINETYPE.SOLID_POINT&&o!==Ha.parser.yy.LINETYPE.DOTTED_POINT||f.attr("marker-end","url("+m+"#filled-head)"),o!==Ha.parser.yy.LINETYPE.SOLID_CROSS&&o!==Ha.parser.yy.LINETYPE.DOTTED_CROSS||f.attr("marker-end","url("+m+"#crosshead)"),(uo.showSequenceNumbers()||bo.showSequenceNumbers)&&(f.attr("marker-start","url("+m+"#sequencenumber)"),t.append("text").attr("x",n).attr("y",d+4).attr("font-family","sans-serif").attr("font-size","12px").attr("text-anchor","middle").attr("textLength","16px").attr("class","sequenceNumber").text(s)),xo.bumpVerticalPos(p),e.height+=p,e.stopy=e.starty+e.height,xo.insert(e.fromBounds,e.starty,e.toBounds,e.stopy)}(n,a),xo.models.addMessage(a)}catch(t){o.error("error while drawing message",t)}}[Ha.parser.yy.LINETYPE.SOLID_OPEN,Ha.parser.yy.LINETYPE.DOTTED_OPEN,Ha.parser.yy.LINETYPE.SOLID,Ha.parser.yy.LINETYPE.DOTTED,Ha.parser.yy.LINETYPE.SOLID_CROSS,Ha.parser.yy.LINETYPE.DOTTED_CROSS,Ha.parser.yy.LINETYPE.SOLID_POINT,Ha.parser.yy.LINETYPE.DOTTED_POINT].includes(t.type)&&h++})),bo.mirrorActors&&(xo.bumpVerticalPos(2*bo.boxMargin),Eo(n,r,i,xo.getVerticalPos()));var f=xo.getBounds().bounds;o.debug("For line height fix Querying: #"+e+" .actor-line"),Object(u.selectAll)("#"+e+" .actor-line").attr("y2",f.stopy);var d=f.stopy-f.starty+2*bo.diagramMarginY;bo.mirrorActors&&(d=d-bo.boxMargin+bo.bottomMarginAdj);var p=f.stopx-f.startx+2*bo.diagramMarginX;s&&n.append("text").text(s).attr("x",(f.stopx-f.startx)/2-2*bo.diagramMarginX).attr("y",-25),Ot(n,d,p,bo.useMaxWidth);var y=s?40:0;n.attr("viewBox",f.startx-bo.diagramMarginX+" -"+(bo.diagramMarginY+y)+" "+p+" "+(d+y)),o.debug("models:",xo.models)}},Do=n(22),Lo=n.n(Do);function Io(t){return(Io="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}var Ro=function(t){return JSON.parse(JSON.stringify(t))},Fo=[],Po={root:{relations:[],states:{},documents:{}}},jo=Po.root,Yo=0,zo=function(t,e,n,r,i){void 0===jo.states[t]?jo.states[t]={id:t,descriptions:[],type:e,doc:n,note:i}:(jo.states[t].doc||(jo.states[t].doc=n),jo.states[t].type||(jo.states[t].type=e)),r&&(o.info("Adding state ",t,r),"string"==typeof r&&qo(t,r.trim()),"object"===Io(r)&&r.forEach((function(e){return qo(t,e.trim())}))),i&&(jo.states[t].note=i)},Uo=function(){jo=(Po={root:{relations:[],states:{},documents:{}}}).root,jo=Po.root,Yo=0,0,Ho=[]},$o=function(t,e,n){var r=t,i=e,a="default",o="default";"[*]"===t&&(r="start"+ ++Yo,a="start"),"[*]"===e&&(i="end"+Yo,o="end"),zo(r,a),zo(i,o),jo.relations.push({id1:r,id2:i,title:n})},qo=function(t,e){var n=jo.states[t],r=e;":"===r[0]&&(r=r.substr(1).trim()),n.descriptions.push(r)},Wo=0,Ho=[],Vo="TB",Go={parseDirective:function(t,e,n){cc.parseDirective(this,t,e,n)},getConfig:function(){return oe().state},addState:zo,clear:Uo,getState:function(t){return jo.states[t]},getStates:function(){return jo.states},getRelations:function(){return jo.relations},getClasses:function(){return Ho},getDirection:function(){return Vo},addRelation:$o,getDividerId:function(){return"divider-id-"+ ++Wo},setDirection:function(t){Vo=t},cleanupLabel:function(t){return":"===t.substring(0,1)?t.substr(2).trim():t.trim()},lineType:{LINE:0,DOTTED_LINE:1},relationType:{AGGREGATION:0,EXTENSION:1,COMPOSITION:2,DEPENDENCY:3},logDocuments:function(){o.info("Documents = ",Po)},getRootDoc:function(){return Fo},setRootDoc:function(t){o.info("Setting root doc",t),Fo=t},getRootDocV2:function(){return function t(e,n,r){if("relation"===n.stmt)t(e,n.state1,!0),t(e,n.state2,!1);else if("state"===n.stmt&&"[*]"===n.id&&(n.id=r?e.id+"_start":e.id+"_end",n.start=r),n.doc){var i=[],a=0,o=[];for(a=0;a<n.doc.length;a++)if("divider"===n.doc[a].type){var s=Ro(n.doc[a]);s.doc=Ro(o),i.push(s),o=[]}else o.push(n.doc[a]);if(i.length>0&&o.length>0){var c={stmt:"state",id:xt(),type:"divider",doc:Ro(o)};i.push(Ro(c)),n.doc=i}n.doc.forEach((function(e){return t(n,e,!0)}))}}({id:"root"},{id:"root",doc:Fo},!0),{id:"root",doc:Fo}},extract:function(t){var e;e=t.doc?t.doc:t,o.info(e),Uo(),o.info("Extract",e),e.forEach((function(t){"state"===t.stmt&&zo(t.id,t.type,t.doc,t.description,t.note),"relation"===t.stmt&&$o(t.state1.id,t.state2.id,t.description)}))},trimColon:function(t){return t&&":"===t[0]?t.substr(1).trim():t.trim()}},Xo={},Zo=function(t,e){Xo[t]=e};function Ko(t,e){var n="undefined"!=typeof Symbol&&t[Symbol.iterator]||t["@@iterator"];if(!n){if(Array.isArray(t)||(n=function(t,e){if(!t)return;if("string"==typeof t)return Qo(t,e);var n=Object.prototype.toString.call(t).slice(8,-1);"Object"===n&&t.constructor&&(n=t.constructor.name);if("Map"===n||"Set"===n)return Array.from(t);if("Arguments"===n||/^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(n))return Qo(t,e)}(t))||e&&t&&"number"==typeof t.length){n&&(t=n);var r=0,i=function(){};return{s:i,n:function(){return r>=t.length?{done:!0}:{done:!1,value:t[r++]}},e:function(t){throw t},f:i}}throw new TypeError("Invalid attempt to iterate non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}var a,o=!0,s=!1;return{s:function(){n=n.call(t)},n:function(){var t=n.next();return o=t.done,t},e:function(t){s=!0,a=t},f:function(){try{o||null==n.return||n.return()}finally{if(s)throw a}}}}function Qo(t,e){(null==e||e>t.length)&&(e=t.length);for(var n=0,r=new Array(e);n<e;n++)r[n]=t[n];return r}var Jo,ts=function(t,e){var n=t.append("text").attr("x",2*oe().state.padding).attr("y",oe().state.textHeight+1.3*oe().state.padding).attr("font-size",oe().state.fontSize).attr("class","state-title").text(e.descriptions[0]).node().getBBox(),r=n.height,i=t.append("text").attr("x",oe().state.padding).attr("y",r+.4*oe().state.padding+oe().state.dividerMargin+oe().state.textHeight).attr("class","state-description"),a=!0,o=!0;e.descriptions.forEach((function(t){a||(!function(t,e,n){var r=t.append("tspan").attr("x",2*oe().state.padding).text(e);n||r.attr("dy",oe().state.textHeight)}(i,t,o),o=!1),a=!1}));var s=t.append("line").attr("x1",oe().state.padding).attr("y1",oe().state.padding+r+oe().state.dividerMargin/2).attr("y2",oe().state.padding+r+oe().state.dividerMargin/2).attr("class","descr-divider"),c=i.node().getBBox(),u=Math.max(c.width,n.width);return s.attr("x2",u+3*oe().state.padding),t.insert("rect",":first-child").attr("x",oe().state.padding).attr("y",oe().state.padding).attr("width",u+2*oe().state.padding).attr("height",c.height+r+2*oe().state.padding).attr("rx",oe().state.radius),t},es=function(t,e,n){var r,i=oe().state.padding,a=2*oe().state.padding,o=t.node().getBBox(),s=o.width,c=o.x,u=t.append("text").attr("x",0).attr("y",oe().state.titleShift).attr("font-size",oe().state.fontSize).attr("class","state-title").text(e.id),l=u.node().getBBox().width+a,h=Math.max(l,s);h===s&&(h+=a);var f=t.node().getBBox();e.doc,r=c-i,l>s&&(r=(s-h)/2+i),Math.abs(c-f.x)<i&&l>s&&(r=c-(l-s)/2);var d=1-oe().state.textHeight;return t.insert("rect",":first-child").attr("x",r).attr("y",d).attr("class",n?"alt-composit":"composit").attr("width",h).attr("height",f.height+oe().state.textHeight+oe().state.titleShift+1).attr("rx","0"),u.attr("x",r+i),l<=s&&u.attr("x",c+(h-a)/2-l/2+i),t.insert("rect",":first-child").attr("x",r).attr("y",oe().state.titleShift-oe().state.textHeight-oe().state.padding).attr("width",h).attr("height",3*oe().state.textHeight).attr("rx",oe().state.radius),t.insert("rect",":first-child").attr("x",r).attr("y",oe().state.titleShift-oe().state.textHeight-oe().state.padding).attr("width",h).attr("height",f.height+3+2*oe().state.textHeight).attr("rx",oe().state.radius),t},ns=function(t,e){e.attr("class","state-note");var n=e.append("rect").attr("x",0).attr("y",oe().state.padding),r=function(t,e,n,r){var i=0,a=r.append("text");a.style("text-anchor","start"),a.attr("class","noteText");var o,s=t.replace(/\r\n/g,"<br/>"),c=(s=s.replace(/\n/g,"<br/>")).split(nt.lineBreakRegex),u=1.25*oe().state.noteMargin,l=Ko(c);try{for(l.s();!(o=l.n()).done;){var h=o.value.trim();if(h.length>0){var f=a.append("tspan");if(f.text(h),0===u)u+=f.node().getBBox().height;i+=u,f.attr("x",e+oe().state.noteMargin),f.attr("y",n+i+1.25*oe().state.noteMargin)}}}catch(t){l.e(t)}finally{l.f()}return{textWidth:a.node().getBBox().width,textHeight:i}}(t,0,0,e.append("g")),i=r.textWidth,a=r.textHeight;return n.attr("height",a+2*oe().state.noteMargin),n.attr("width",i+2*oe().state.noteMargin),n},rs=function(t,e){var n=e.id,r={id:n,label:e.id,width:0,height:0},i=t.append("g").attr("id",n).attr("class","stateGroup");"start"===e.type&&function(t){t.append("circle").attr("class","start-state").attr("r",oe().state.sizeUnit).attr("cx",oe().state.padding+oe().state.sizeUnit).attr("cy",oe().state.padding+oe().state.sizeUnit)}(i),"end"===e.type&&function(t){t.append("circle").attr("class","end-state-outer").attr("r",oe().state.sizeUnit+oe().state.miniPadding).attr("cx",oe().state.padding+oe().state.sizeUnit+oe().state.miniPadding).attr("cy",oe().state.padding+oe().state.sizeUnit+oe().state.miniPadding),t.append("circle").attr("class","end-state-inner").attr("r",oe().state.sizeUnit).attr("cx",oe().state.padding+oe().state.sizeUnit+2).attr("cy",oe().state.padding+oe().state.sizeUnit+2)}(i),"fork"!==e.type&&"join"!==e.type||function(t,e){var n=oe().state.forkWidth,r=oe().state.forkHeight;if(e.parentId){var i=n;n=r,r=i}t.append("rect").style("stroke","black").style("fill","black").attr("width",n).attr("height",r).attr("x",oe().state.padding).attr("y",oe().state.padding)}(i,e),"note"===e.type&&ns(e.note.text,i),"divider"===e.type&&function(t){t.append("line").style("stroke","grey").style("stroke-dasharray","3").attr("x1",oe().state.textHeight).attr("class","divider").attr("x2",2*oe().state.textHeight).attr("y1",0).attr("y2",0)}(i),"default"===e.type&&0===e.descriptions.length&&function(t,e){var n=t.append("text").attr("x",2*oe().state.padding).attr("y",oe().state.textHeight+2*oe().state.padding).attr("font-size",oe().state.fontSize).attr("class","state-title").text(e.id),r=n.node().getBBox();t.insert("rect",":first-child").attr("x",oe().state.padding).attr("y",oe().state.padding).attr("width",r.width+2*oe().state.padding).attr("height",r.height+2*oe().state.padding).attr("rx",oe().state.radius)}(i,e),"default"===e.type&&e.descriptions.length>0&&ts(i,e);var a=i.node().getBBox();return r.width=a.width+2*oe().state.padding,r.height=a.height+2*oe().state.padding,Zo(n,r),r},is=0;Do.parser.yy=Go;var as={},os=function t(e,n,r,i){var a,s=new Ae.a.Graph({compound:!0,multigraph:!0}),c=!0;for(a=0;a<e.length;a++)if("relation"===e[a].stmt){c=!1;break}r?s.setGraph({rankdir:"LR",multigraph:!0,compound:!0,ranker:"tight-tree",ranksep:c?1:Jo.edgeLengthFactor,nodeSep:c?1:50,isMultiGraph:!0}):s.setGraph({rankdir:"TB",multigraph:!0,compound:!0,ranksep:c?1:Jo.edgeLengthFactor,nodeSep:c?1:50,ranker:"tight-tree",isMultiGraph:!0}),s.setDefaultEdgeLabel((function(){return{}})),Go.extract(e);for(var l=Go.getStates(),h=Go.getRelations(),f=Object.keys(l),d=0;d<f.length;d++){var p=l[f[d]];r&&(p.parentId=r);var y=void 0;if(p.doc){var g=n.append("g").attr("id",p.id).attr("class","stateGroup");y=t(p.doc,g,p.id,!i);var m=(g=es(g,p,i)).node().getBBox();y.width=m.width,y.height=m.height+Jo.padding/2,as[p.id]={y:Jo.compositTitleSize}}else y=rs(n,p);if(p.note){var v={descriptions:[],id:p.id+"-note",note:p.note,type:"note"},b=rs(n,v);"left of"===p.note.position?(s.setNode(y.id+"-note",b),s.setNode(y.id,y)):(s.setNode(y.id,y),s.setNode(y.id+"-note",b)),s.setParent(y.id,y.id+"-group"),s.setParent(y.id+"-note",y.id+"-group")}else s.setNode(y.id,y)}o.debug("Count=",s.nodeCount(),s);var x=0;h.forEach((function(t){var e;x++,o.debug("Setting edge",t),s.setEdge(t.id1,t.id2,{relation:t,width:(e=t.title,e?e.length*Jo.fontSizeFactor:1),height:Jo.labelHeight*nt.getRows(t.title).length,labelpos:"c"},"id"+x)})),Ce.a.layout(s),o.debug("Graph after layout",s.nodes());var _=n.node();s.nodes().forEach((function(t){void 0!==t&&void 0!==s.node(t)?(o.warn("Node "+t+": "+JSON.stringify(s.node(t))),Object(u.select)("#"+_.id+" #"+t).attr("transform","translate("+(s.node(t).x-s.node(t).width/2)+","+(s.node(t).y+(as[t]?as[t].y:0)-s.node(t).height/2)+" )"),Object(u.select)("#"+_.id+" #"+t).attr("data-x-shift",s.node(t).x-s.node(t).width/2),document.querySelectorAll("#"+_.id+" #"+t+" .divider").forEach((function(t){var e=t.parentElement,n=0,r=0;e&&(e.parentElement&&(n=e.parentElement.getBBox().width),r=parseInt(e.getAttribute("data-x-shift"),10),Number.isNaN(r)&&(r=0)),t.setAttribute("x1",0-r+8),t.setAttribute("x2",n-r-8)}))):o.debug("No Node "+t+": "+JSON.stringify(s.node(t)))}));var k=_.getBBox();s.edges().forEach((function(t){void 0!==t&&void 0!==s.edge(t)&&(o.debug("Edge "+t.v+" -> "+t.w+": "+JSON.stringify(s.edge(t))),function(t,e,n){e.points=e.points.filter((function(t){return!Number.isNaN(t.y)}));var r=e.points,i=Object(u.line)().x((function(t){return t.x})).y((function(t){return t.y})).curve(u.curveBasis),a=t.append("path").attr("d",i(r)).attr("id","edge"+is).attr("class","transition"),s="";if(oe().state.arrowMarkerAbsolute&&(s=(s=(s=window.location.protocol+"//"+window.location.host+window.location.pathname+window.location.search).replace(/\(/g,"\\(")).replace(/\)/g,"\\)")),a.attr("marker-end","url("+s+"#"+function(t){switch(t){case Go.relationType.AGGREGATION:return"aggregation";case Go.relationType.EXTENSION:return"extension";case Go.relationType.COMPOSITION:return"composition";case Go.relationType.DEPENDENCY:return"dependency"}}(Go.relationType.DEPENDENCY)+"End)"),void 0!==n.title){for(var c=t.append("g").attr("class","stateLabel"),l=Nt.calcLabelPosition(e.points),h=l.x,f=l.y,d=nt.getRows(n.title),p=0,y=[],g=0,m=0,v=0;v<=d.length;v++){var b=c.append("text").attr("text-anchor","middle").text(d[v]).attr("x",h).attr("y",f+p),x=b.node().getBBox();if(g=Math.max(g,x.width),m=Math.min(m,x.x),o.info(x.x,h,f+p),0===p){var _=b.node().getBBox();p=_.height,o.info("Title height",p,f)}y.push(b)}var k=p*d.length;if(d.length>1){var w=(d.length-1)*p*.5;y.forEach((function(t,e){return t.attr("y",f+e*p-w)})),k=p*d.length}var E=c.node().getBBox();c.insert("rect",":first-child").attr("class","box").attr("x",h-g/2-oe().state.padding/2).attr("y",f-k/2-oe().state.padding/2-3.5).attr("width",g+oe().state.padding).attr("height",k+oe().state.padding),o.info(E)}is++}(n,s.edge(t),s.edge(t).relation))})),k=_.getBBox();var w={id:r||"root",label:r||"root",width:0,height:0};return w.width=k.width+2*Jo.padding,w.height=k.height+2*Jo.padding,o.debug("Doc rendered",w,s),w},ss=function(){},cs=function(t,e){Jo=oe().state,Do.parser.yy.clear(),Do.parser.parse(t),o.debug("Rendering diagram "+t);var n=Object(u.select)("[id='".concat(e,"']"));n.append("defs").append("marker").attr("id","dependencyEnd").attr("refX",19).attr("refY",7).attr("markerWidth",20).attr("markerHeight",28).attr("orient","auto").append("path").attr("d","M 19,7 L9,13 L14,7 L9,1 Z"),new Ae.a.Graph({multigraph:!0,compound:!0,rankdir:"RL"}).setDefaultEdgeLabel((function(){return{}}));var r=Go.getRootDoc();os(r,n,void 0,!1);var i=Jo.padding,a=n.node().getBBox(),s=a.width+2*i,c=a.height+2*i;Ot(n,c,1.75*s,Jo.useMaxWidth),n.attr("viewBox","".concat(a.x-Jo.padding,"  ").concat(a.y-Jo.padding," ")+s+" "+c)},us={},ls={},hs=function(t,e,n,r){if("root"!==n.id){var i="rect";!0===n.start&&(i="start"),!1===n.start&&(i="end"),"default"!==n.type&&(i=n.type),ls[n.id]||(ls[n.id]={id:n.id,shape:i,description:n.id,classes:"statediagram-state"}),n.description&&(Array.isArray(ls[n.id].description)?(ls[n.id].shape="rectWithTitle",ls[n.id].description.push(n.description)):ls[n.id].description.length>0?(ls[n.id].shape="rectWithTitle",ls[n.id].description===n.id?ls[n.id].description=[n.description]:ls[n.id].description=[ls[n.id].description,n.description]):(ls[n.id].shape="rect",ls[n.id].description=n.description)),!ls[n.id].type&&n.doc&&(o.info("Setting cluster for ",n.id,ps(n)),ls[n.id].type="group",ls[n.id].dir=ps(n),ls[n.id].shape="divider"===n.type?"divider":"roundedWithTitle",ls[n.id].classes=ls[n.id].classes+" "+(r?"statediagram-cluster statediagram-cluster-alt":"statediagram-cluster"));var a={labelStyle:"",shape:ls[n.id].shape,labelText:ls[n.id].description,classes:ls[n.id].classes,style:"",id:n.id,dir:ls[n.id].dir,domId:"state-"+n.id+"-"+fs,type:ls[n.id].type,padding:15};if(n.note){var s={labelStyle:"",shape:"note",labelText:n.note.text,classes:"statediagram-note",style:"",id:n.id+"----note-"+fs,domId:"state-"+n.id+"----note-"+fs,type:ls[n.id].type,padding:15},c={labelStyle:"",shape:"noteGroup",labelText:n.note.text,classes:ls[n.id].classes,style:"",id:n.id+"----parent",domId:"state-"+n.id+"----parent-"+fs,type:"group",padding:0};fs++,t.setNode(n.id+"----parent",c),t.setNode(s.id,s),t.setNode(n.id,a),t.setParent(n.id,n.id+"----parent"),t.setParent(s.id,n.id+"----parent");var u=n.id,l=s.id;"left of"===n.note.position&&(u=s.id,l=n.id),t.setEdge(u,l,{arrowhead:"none",arrowType:"",style:"fill:none",labelStyle:"",classes:"transition note-edge",arrowheadStyle:"fill: #333",labelpos:"c",labelType:"text",thickness:"normal"})}else t.setNode(n.id,a)}e&&"root"!==e.id&&(o.trace("Setting node ",n.id," to be child of its parent ",e.id),t.setParent(n.id,e.id)),n.doc&&(o.trace("Adding nodes children "),ds(t,n,n.doc,!r))},fs=0,ds=function(t,e,n,r){o.trace("items",n),n.forEach((function(n){if("state"===n.stmt||"default"===n.stmt)hs(t,e,n,r);else if("relation"===n.stmt){hs(t,e,n.state1,r),hs(t,e,n.state2,r);var i={id:"edge"+fs,arrowhead:"normal",arrowTypeEnd:"arrow_barb",style:"fill:none",labelStyle:"",label:n.description,arrowheadStyle:"fill: #333",labelpos:"c",labelType:"text",thickness:"normal",classes:"transition"},a=n.state1.id,o=n.state2.id;t.setEdge(a,o,i,fs),fs++}}))},ps=function(t,e){var n=e||"TB";if(t.doc)for(var r=0;r<t.doc.length;r++){var i=t.doc[r];"dir"===i.stmt&&(n=i.value)}return n},ys=function(t){for(var e=Object.keys(t),n=0;n<e.length;n++)us[e[n]]=t[e[n]]},gs=function(t,e){o.info("Drawing state diagram (v2)",e),Go.clear(),ls={};var n=Lo.a.parser;n.yy=Go,n.parse(t);var r=Go.getDirection();void 0===r&&(r="LR");var i=oe().state,a=i.nodeSpacing||50,s=i.rankSpacing||50;o.info(Go.getRootDocV2()),Go.extract(Go.getRootDocV2()),o.info(Go.getRootDocV2());var c=new Ae.a.Graph({multigraph:!0,compound:!0}).setGraph({rankdir:ps(Go.getRootDocV2()),nodesep:a,ranksep:s,marginx:8,marginy:8}).setDefaultEdgeLabel((function(){return{}}));hs(c,void 0,Go.getRootDocV2(),!0);var l=Object(u.select)('[id="'.concat(e,'"]')),h=Object(u.select)("#"+e+" g");Mn(h,c,["barb"],"statediagram",e);var f=l.node().getBBox(),d=f.width+16,p=f.height+16;l.attr("class","statediagram");var y=l.node().getBBox();Ot(l,p,1.75*d,i.useMaxWidth);var g="".concat(y.x-8," ").concat(y.y-8," ").concat(d," ").concat(p);o.debug("viewBox ".concat(g)),l.attr("viewBox",g);for(var m=document.querySelectorAll('[id="'+e+'"] .edgeLabel .label'),v=0;v<m.length;v++){var b=m[v],x=b.getBBox(),_=document.createElementNS("http://www.w3.org/2000/svg","rect");_.setAttribute("rx",0),_.setAttribute("ry",0),_.setAttribute("width",x.width),_.setAttribute("height",x.height),b.insertBefore(_,b.firstChild)}};function ms(t){return function(t){if(Array.isArray(t))return vs(t)}(t)||function(t){if("undefined"!=typeof Symbol&&null!=t[Symbol.iterator]||null!=t["@@iterator"])return Array.from(t)}(t)||function(t,e){if(!t)return;if("string"==typeof t)return vs(t,e);var n=Object.prototype.toString.call(t).slice(8,-1);"Object"===n&&t.constructor&&(n=t.constructor.name);if("Map"===n||"Set"===n)return Array.from(t);if("Arguments"===n||/^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(n))return vs(t,e)}(t)||function(){throw new TypeError("Invalid attempt to spread non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}()}function vs(t,e){(null==e||e>t.length)&&(e=t.length);for(var n=0,r=new Array(e);n<e;n++)r[n]=t[n];return r}var bs="",xs="",_s=[],ks=[],ws=[],Es=function(){for(var t=!0,e=0;e<ws.length;e++)ws[e].processed,t=t&&ws[e].processed;return t},Ts={parseDirective:function(t,e,n){cc.parseDirective(this,t,e,n)},getConfig:function(){return oe().journey},clear:function(){_s.length=0,ks.length=0,xs="",bs="",ws.length=0},setTitle:function(t){bs=t},getTitle:function(){return bs},addSection:function(t){xs=t,_s.push(t)},getSections:function(){return _s},getTasks:function(){for(var t=Es(),e=0;!t&&e<100;)t=Es(),e++;return ks.push.apply(ks,ws),ks},addTask:function(t,e){var n=e.substr(1).split(":"),r=0,i=[];1===n.length?(r=Number(n[0]),i=[]):(r=Number(n[0]),i=n[1].split(","));var a=i.map((function(t){return t.trim()})),o={section:xs,type:xs,people:a,task:t,score:r};ws.push(o)},addTaskOrg:function(t){var e={section:xs,type:xs,description:t,task:t,classes:[]};ks.push(e)},getActors:function(){return t=[],ks.forEach((function(e){e.people&&t.push.apply(t,ms(e.people))})),ms(new Set(t)).sort();var t}},Cs=n(28),Ss=n.n(Cs),As=function(t,e){var n=t.append("rect");return n.attr("x",e.x),n.attr("y",e.y),n.attr("fill",e.fill),n.attr("stroke",e.stroke),n.attr("width",e.width),n.attr("height",e.height),n.attr("rx",e.rx),n.attr("ry",e.ry),void 0!==e.class&&n.attr("class",e.class),n},Ms=function(t,e){var n=t.append("circle");return n.attr("cx",e.cx),n.attr("cy",e.cy),n.attr("class","actor-"+e.pos),n.attr("fill",e.fill),n.attr("stroke",e.stroke),n.attr("r",e.r),void 0!==n.class&&n.attr("class",n.class),void 0!==e.title&&n.append("title").text(e.title),n},Os=function(t,e){var n=e.text.replace(/<br\s*\/?>/gi," "),r=t.append("text");r.attr("x",e.x),r.attr("y",e.y),r.attr("class","legend"),r.style("text-anchor",e.anchor),void 0!==e.class&&r.attr("class",e.class);var i=r.append("tspan");return i.attr("x",e.x+2*e.textMargin),i.text(n),r},Ns=-1,Bs=function(){return{x:0,y:0,width:100,anchor:"start",height:100,rx:0,ry:0}},Ds=function(){function t(t,e,n,i,a,o,s,c){r(e.append("text").attr("x",n+a/2).attr("y",i+o/2+5).style("font-color",c).style("text-anchor","middle").text(t),s)}function e(t,e,n,i,a,o,s,c,u){for(var l=c.taskFontSize,h=c.taskFontFamily,f=t.split(/<br\s*\/?>/gi),d=0;d<f.length;d++){var p=d*l-l*(f.length-1)/2,y=e.append("text").attr("x",n+a/2).attr("y",i).attr("fill",u).style("text-anchor","middle").style("font-size",l).style("font-family",h);y.append("tspan").attr("x",n+a/2).attr("dy",p).text(f[d]),y.attr("y",i+o/2).attr("dominant-baseline","central").attr("alignment-baseline","central"),r(y,s)}}function n(t,n,i,a,o,s,c,u){var l=n.append("switch"),h=l.append("foreignObject").attr("x",i).attr("y",a).attr("width",o).attr("height",s).attr("position","fixed").append("xhtml:div").style("display","table").style("height","100%").style("width","100%");h.append("div").attr("class","label").style("display","table-cell").style("text-align","center").style("vertical-align","middle").text(t),e(t,l,i,a,o,s,c,u),r(h,c)}function r(t,e){for(var n in e)n in e&&t.attr(n,e[n])}return function(r){return"fo"===r.textPlacement?n:"old"===r.textPlacement?t:e}}(),Ls=Ms,Is=function(t,e,n){var r=t.append("g"),i=Bs();i.x=e.x,i.y=e.y,i.fill=e.fill,i.width=n.width,i.height=n.height,i.class="journey-section section-type-"+e.num,i.rx=3,i.ry=3,As(r,i),Ds(n)(e.text,r,i.x,i.y,i.width,i.height,{class:"journey-section section-type-"+e.num},n,e.colour)},Rs=Os,Fs=function(t,e,n){var r=e.x+n.width/2,i=t.append("g");Ns++;var a,o,s;i.append("line").attr("id","task"+Ns).attr("x1",r).attr("y1",e.y).attr("x2",r).attr("y2",450).attr("class","task-line").attr("stroke-width","1px").attr("stroke-dasharray","4 2").attr("stroke","#666"),a=i,o={cx:r,cy:300+30*(5-e.score),score:e.score},a.append("circle").attr("cx",o.cx).attr("cy",o.cy).attr("class","face").attr("r",15).attr("stroke-width",2).attr("overflow","visible"),(s=a.append("g")).append("circle").attr("cx",o.cx-5).attr("cy",o.cy-5).attr("r",1.5).attr("stroke-width",2).attr("fill","#666").attr("stroke","#666"),s.append("circle").attr("cx",o.cx+5).attr("cy",o.cy-5).attr("r",1.5).attr("stroke-width",2).attr("fill","#666").attr("stroke","#666"),o.score>3?function(t){var e=Object(u.arc)().startAngle(Math.PI/2).endAngle(Math.PI/2*3).innerRadius(7.5).outerRadius(15/2.2);t.append("path").attr("class","mouth").attr("d",e).attr("transform","translate("+o.cx+","+(o.cy+2)+")")}(s):o.score<3?function(t){var e=Object(u.arc)().startAngle(3*Math.PI/2).endAngle(Math.PI/2*5).innerRadius(7.5).outerRadius(15/2.2);t.append("path").attr("class","mouth").attr("d",e).attr("transform","translate("+o.cx+","+(o.cy+7)+")")}(s):function(t){t.append("line").attr("class","mouth").attr("stroke",2).attr("x1",o.cx-5).attr("y1",o.cy+7).attr("x2",o.cx+5).attr("y2",o.cy+7).attr("class","mouth").attr("stroke-width","1px").attr("stroke","#666")}(s);var c=Bs();c.x=e.x,c.y=e.y,c.fill=e.fill,c.width=n.width,c.height=n.height,c.class="task task-type-"+e.num,c.rx=3,c.ry=3,As(i,c);var l=e.x+14;e.people.forEach((function(t){var n=e.actors[t].color,r={cx:l,cy:e.y,r:7,fill:n,stroke:"#000",title:t,pos:e.actors[t].position};Ms(i,r),l+=10})),Ds(n)(e.task,i,c.x,c.y,c.width,c.height,{class:"task"},n,e.colour)},Ps=function(t){t.append("defs").append("marker").attr("id","arrowhead").attr("refX",5).attr("refY",2).attr("markerWidth",6).attr("markerHeight",4).attr("orient","auto").append("path").attr("d","M 0,0 V 4 L6,2 Z")};Cs.parser.yy=Ts;var js={};var Ys=oe().journey,zs=oe().journey.leftMargin,Us={data:{startx:void 0,stopx:void 0,starty:void 0,stopy:void 0},verticalPos:0,sequenceItems:[],init:function(){this.sequenceItems=[],this.data={startx:void 0,stopx:void 0,starty:void 0,stopy:void 0},this.verticalPos=0},updateVal:function(t,e,n,r){void 0===t[e]?t[e]=n:t[e]=r(n,t[e])},updateBounds:function(t,e,n,r){var i,a=oe().journey,o=this,s=0;this.sequenceItems.forEach((function(c){s++;var u=o.sequenceItems.length-s+1;o.updateVal(c,"starty",e-u*a.boxMargin,Math.min),o.updateVal(c,"stopy",r+u*a.boxMargin,Math.max),o.updateVal(Us.data,"startx",t-u*a.boxMargin,Math.min),o.updateVal(Us.data,"stopx",n+u*a.boxMargin,Math.max),"activation"!==i&&(o.updateVal(c,"startx",t-u*a.boxMargin,Math.min),o.updateVal(c,"stopx",n+u*a.boxMargin,Math.max),o.updateVal(Us.data,"starty",e-u*a.boxMargin,Math.min),o.updateVal(Us.data,"stopy",r+u*a.boxMargin,Math.max))}))},insert:function(t,e,n,r){var i=Math.min(t,n),a=Math.max(t,n),o=Math.min(e,r),s=Math.max(e,r);this.updateVal(Us.data,"startx",i,Math.min),this.updateVal(Us.data,"starty",o,Math.min),this.updateVal(Us.data,"stopx",a,Math.max),this.updateVal(Us.data,"stopy",s,Math.max),this.updateBounds(i,o,a,s)},bumpVerticalPos:function(t){this.verticalPos=this.verticalPos+t,this.data.stopy=this.verticalPos},getVerticalPos:function(){return this.verticalPos},getBounds:function(){return this.data}},$s=Ys.sectionFills,qs=Ys.sectionColours,Ws=function(t,e,n){for(var r=oe().journey,i="",a=n+(2*r.height+r.diagramMarginY),o=0,s="#CCC",c="black",u=0,l=0;l<e.length;l++){var h=e[l];if(i!==h.section){s=$s[o%$s.length],u=o%$s.length,c=qs[o%qs.length];var f={x:l*r.taskMargin+l*r.width+zs,y:50,text:h.section,fill:s,num:u,colour:c};Is(t,f,r),i=h.section,o++}var d=h.people.reduce((function(t,e){return js[e]&&(t[e]=js[e]),t}),{});h.x=l*r.taskMargin+l*r.width+zs,h.y=a,h.width=r.diagramMarginX,h.height=r.diagramMarginY,h.colour=c,h.fill=s,h.num=u,h.actors=d,Fs(t,h,r),Us.insert(h.x,h.y,h.x+h.width+r.taskMargin,450)}},Hs=function(t){Object.keys(t).forEach((function(e){Ys[e]=t[e]}))},Vs=function(t,e){var n=oe().journey;Cs.parser.yy.clear(),Cs.parser.parse(t+"\n"),Us.init();var r=Object(u.select)("#"+e);r.attr("xmlns:xlink","http://www.w3.org/1999/xlink"),Ps(r);var i=Cs.parser.yy.getTasks(),a=Cs.parser.yy.getTitle(),o=Cs.parser.yy.getActors();for(var s in js)delete js[s];var c=0;o.forEach((function(t){js[t]={color:n.actorColours[c%n.actorColours.length],position:c},c++})),function(t){var e=oe().journey,n=60;Object.keys(js).forEach((function(r){var i=js[r].color,a={cx:20,cy:n,r:7,fill:i,stroke:"#000",pos:js[r].position};Ls(t,a);var o={x:40,y:n+7,fill:"#666",text:r,textMargin:5|e.boxTextMargin};Rs(t,o),n+=20}))}(r),Us.insert(0,0,zs,50*Object.keys(js).length),Ws(r,i,0);var l=Us.getBounds();a&&r.append("text").text(a).attr("x",zs).attr("font-size","4ex").attr("font-weight","bold").attr("y",25);var h=l.stopy-l.starty+2*n.diagramMarginY,f=zs+l.stopx+2*n.diagramMarginX;Ot(r,h,f,n.useMaxWidth),r.append("line").attr("x1",zs).attr("y1",4*n.height).attr("x2",f-zs-4).attr("y2",4*n.height).attr("stroke-width",4).attr("stroke","black").attr("marker-end","url(#arrowhead)");var d=a?70:0;r.attr("viewBox","".concat(l.startx," -25 ").concat(f," ").concat(h+d)),r.attr("preserveAspectRatio","xMinYMin meet"),r.attr("height",h+d+25)},Gs={},Xs=function(t){Object.keys(t).forEach((function(e){Gs[e]=t[e]}))},Zs=function(t,e){try{o.debug("Renering svg for syntax error\n");var n=Object(u.select)("#"+t),r=n.append("g");r.append("path").attr("class","error-icon").attr("d","m411.313,123.313c6.25-6.25 6.25-16.375 0-22.625s-16.375-6.25-22.625,0l-32,32-9.375,9.375-20.688-20.688c-12.484-12.5-32.766-12.5-45.25,0l-16,16c-1.261,1.261-2.304,2.648-3.31,4.051-21.739-8.561-45.324-13.426-70.065-13.426-105.867,0-192,86.133-192,192s86.133,192 192,192 192-86.133 192-192c0-24.741-4.864-48.327-13.426-70.065 1.402-1.007 2.79-2.049 4.051-3.31l16-16c12.5-12.492 12.5-32.758 0-45.25l-20.688-20.688 9.375-9.375 32.001-31.999zm-219.313,100.687c-52.938,0-96,43.063-96,96 0,8.836-7.164,16-16,16s-16-7.164-16-16c0-70.578 57.422-128 128-128 8.836,0 16,7.164 16,16s-7.164,16-16,16z"),r.append("path").attr("class","error-icon").attr("d","m459.02,148.98c-6.25-6.25-16.375-6.25-22.625,0s-6.25,16.375 0,22.625l16,16c3.125,3.125 7.219,4.688 11.313,4.688 4.094,0 8.188-1.563 11.313-4.688 6.25-6.25 6.25-16.375 0-22.625l-16.001-16z"),r.append("path").attr("class","error-icon").attr("d","m340.395,75.605c3.125,3.125 7.219,4.688 11.313,4.688 4.094,0 8.188-1.563 11.313-4.688 6.25-6.25 6.25-16.375 0-22.625l-16-16c-6.25-6.25-16.375-6.25-22.625,0s-6.25,16.375 0,22.625l15.999,16z"),r.append("path").attr("class","error-icon").attr("d","m400,64c8.844,0 16-7.164 16-16v-32c0-8.836-7.156-16-16-16-8.844,0-16,7.164-16,16v32c0,8.836 7.156,16 16,16z"),r.append("path").attr("class","error-icon").attr("d","m496,96.586h-32c-8.844,0-16,7.164-16,16 0,8.836 7.156,16 16,16h32c8.844,0 16-7.164 16-16 0-8.836-7.156-16-16-16z"),r.append("path").attr("class","error-icon").attr("d","m436.98,75.605c3.125,3.125 7.219,4.688 11.313,4.688 4.094,0 8.188-1.563 11.313-4.688l32-32c6.25-6.25 6.25-16.375 0-22.625s-16.375-6.25-22.625,0l-32,32c-6.251,6.25-6.251,16.375-0.001,22.625z"),r.append("text").attr("class","error-text").attr("x",1240).attr("y",250).attr("font-size","150px").style("text-anchor","middle").text("Syntax error in graph"),r.append("text").attr("class","error-text").attr("x",1050).attr("y",400).attr("font-size","100px").style("text-anchor","middle").text("mermaid version "+e),n.attr("height",100),n.attr("width",400),n.attr("viewBox","768 0 512 512")}catch(t){o.error("Error while rendering info diagram"),o.error(t.message)}},Ks=function(t){return"g.classGroup text {\n  fill: ".concat(t.nodeBorder,";\n  fill: ").concat(t.classText,";\n  stroke: none;\n  font-family: ").concat(t.fontFamily,";\n  font-size: 10px;\n\n  .title {\n    font-weight: bolder;\n  }\n\n}\n\n.classTitle {\n  font-weight: bolder;\n}\n.node rect,\n  .node circle,\n  .node ellipse,\n  .node polygon,\n  .node path {\n    fill: ").concat(t.mainBkg,";\n    stroke: ").concat(t.nodeBorder,";\n    stroke-width: 1px;\n  }\n\n\n.divider {\n  stroke: ").concat(t.nodeBorder,";\n  stroke: 1;\n}\n\ng.clickable {\n  cursor: pointer;\n}\n\ng.classGroup rect {\n  fill: ").concat(t.mainBkg,";\n  stroke: ").concat(t.nodeBorder,";\n}\n\ng.classGroup line {\n  stroke: ").concat(t.nodeBorder,";\n  stroke-width: 1;\n}\n\n.classLabel .box {\n  stroke: none;\n  stroke-width: 0;\n  fill: ").concat(t.mainBkg,";\n  opacity: 0.5;\n}\n\n.classLabel .label {\n  fill: ").concat(t.nodeBorder,";\n  font-size: 10px;\n}\n\n.relation {\n  stroke: ").concat(t.lineColor,";\n  stroke-width: 1;\n  fill: none;\n}\n\n.dashed-line{\n  stroke-dasharray: 3;\n}\n\n#compositionStart, .composition {\n  fill: ").concat(t.lineColor," !important;\n  stroke: ").concat(t.lineColor," !important;\n  stroke-width: 1;\n}\n\n#compositionEnd, .composition {\n  fill: ").concat(t.lineColor," !important;\n  stroke: ").concat(t.lineColor," !important;\n  stroke-width: 1;\n}\n\n#dependencyStart, .dependency {\n  fill: ").concat(t.lineColor," !important;\n  stroke: ").concat(t.lineColor," !important;\n  stroke-width: 1;\n}\n\n#dependencyStart, .dependency {\n  fill: ").concat(t.lineColor," !important;\n  stroke: ").concat(t.lineColor," !important;\n  stroke-width: 1;\n}\n\n#extensionStart, .extension {\n  fill: ").concat(t.lineColor," !important;\n  stroke: ").concat(t.lineColor," !important;\n  stroke-width: 1;\n}\n\n#extensionEnd, .extension {\n  fill: ").concat(t.lineColor," !important;\n  stroke: ").concat(t.lineColor," !important;\n  stroke-width: 1;\n}\n\n#aggregationStart, .aggregation {\n  fill: ").concat(t.mainBkg," !important;\n  stroke: ").concat(t.lineColor," !important;\n  stroke-width: 1;\n}\n\n#aggregationEnd, .aggregation {\n  fill: ").concat(t.mainBkg," !important;\n  stroke: ").concat(t.lineColor," !important;\n  stroke-width: 1;\n}\n\n.edgeTerminals {\n  font-size: 11px;\n}\n\n")},Qs=function(t){return".label {\n    font-family: ".concat(t.fontFamily,";\n    color: ").concat(t.nodeTextColor||t.textColor,";\n  }\n  .cluster-label text {\n    fill: ").concat(t.titleColor,";\n  }\n  .cluster-label span {\n    color: ").concat(t.titleColor,";\n  }\n\n  .label text,span {\n    fill: ").concat(t.nodeTextColor||t.textColor,";\n    color: ").concat(t.nodeTextColor||t.textColor,";\n  }\n\n  .node rect,\n  .node circle,\n  .node ellipse,\n  .node polygon,\n  .node path {\n    fill: ").concat(t.mainBkg,";\n    stroke: ").concat(t.nodeBorder,";\n    stroke-width: 1px;\n  }\n\n  .node .label {\n    text-align: center;\n  }\n  .node.clickable {\n    cursor: pointer;\n  }\n\n  .arrowheadPath {\n    fill: ").concat(t.arrowheadColor,";\n  }\n\n  .edgePath .path {\n    stroke: ").concat(t.lineColor,";\n    stroke-width: 1.5px;\n  }\n\n  .flowchart-link {\n    stroke: ").concat(t.lineColor,";\n    fill: none;\n  }\n\n  .edgeLabel {\n    background-color: ").concat(t.edgeLabelBackground,";\n    rect {\n      opacity: 0.5;\n      background-color: ").concat(t.edgeLabelBackground,";\n      fill: ").concat(t.edgeLabelBackground,";\n    }\n    text-align: center;\n  }\n\n  .cluster rect {\n    fill: ").concat(t.clusterBkg,";\n    stroke: ").concat(t.clusterBorder,";\n    stroke-width: 1px;\n  }\n\n  .cluster text {\n    fill: ").concat(t.titleColor,";\n  }\n\n  .cluster span {\n    color: ").concat(t.titleColor,";\n  }\n  // .cluster div {\n  //   color: ").concat(t.titleColor,";\n  // }\n\n  div.mermaidTooltip {\n    position: absolute;\n    text-align: center;\n    max-width: 200px;\n    padding: 2px;\n    font-family: ").concat(t.fontFamily,";\n    font-size: 12px;\n    background: ").concat(t.tertiaryColor,";\n    border: 1px solid ").concat(t.border2,";\n    border-radius: 2px;\n    pointer-events: none;\n    z-index: 100;\n  }\n")},Js=function(t){return"\ndefs #statediagram-barbEnd {\n    fill: ".concat(t.transitionColor,";\n    stroke: ").concat(t.transitionColor,";\n  }\ng.stateGroup text {\n  fill: ").concat(t.nodeBorder,";\n  stroke: none;\n  font-size: 10px;\n}\ng.stateGroup text {\n  fill: ").concat(t.textColor,";\n  stroke: none;\n  font-size: 10px;\n\n}\ng.stateGroup .state-title {\n  font-weight: bolder;\n  fill: ").concat(t.stateLabelColor,";\n}\n\ng.stateGroup rect {\n  fill: ").concat(t.mainBkg,";\n  stroke: ").concat(t.nodeBorder,";\n}\n\ng.stateGroup line {\n  stroke: ").concat(t.lineColor,";\n  stroke-width: 1;\n}\n\n.transition {\n  stroke: ").concat(t.transitionColor,";\n  stroke-width: 1;\n  fill: none;\n}\n\n.stateGroup .composit {\n  fill: ").concat(t.background,";\n  border-bottom: 1px\n}\n\n.stateGroup .alt-composit {\n  fill: #e0e0e0;\n  border-bottom: 1px\n}\n\n.state-note {\n  stroke: ").concat(t.noteBorderColor,";\n  fill: ").concat(t.noteBkgColor,";\n\n  text {\n    fill: ").concat(t.noteTextColor,";\n    stroke: none;\n    font-size: 10px;\n  }\n}\n\n.stateLabel .box {\n  stroke: none;\n  stroke-width: 0;\n  fill: ").concat(t.mainBkg,";\n  opacity: 0.5;\n}\n\n.edgeLabel .label rect {\n  fill: ").concat(t.labelBackgroundColor,";\n  opacity: 0.5;\n}\n.edgeLabel .label text {\n  fill: ").concat(t.transitionLabelColor||t.tertiaryTextColor,";\n}\n.label div .edgeLabel {\n  color: ").concat(t.transitionLabelColor||t.tertiaryTextColor,";\n}\n\n.stateLabel text {\n  fill: ").concat(t.stateLabelColor,";\n  font-size: 10px;\n  font-weight: bold;\n}\n\n.node circle.state-start {\n  fill: ").concat(t.specialStateColor,";\n  stroke: ").concat(t.specialStateColor,";\n}\n\n.node .fork-join {\n  fill: ").concat(t.specialStateColor,";\n  stroke: ").concat(t.specialStateColor,";\n}\n\n.node circle.state-end {\n  fill: ").concat(t.innerEndBackground,";\n  stroke: ").concat(t.background,";\n  stroke-width: 1.5\n}\n.end-state-inner {\n  fill: ").concat(t.compositeBackground||t.background,";\n  // stroke: ").concat(t.background,";\n  stroke-width: 1.5\n}\n\n.node rect {\n  fill: ").concat(t.stateBkg||t.mainBkg,";\n  stroke: ").concat(t.stateBorder||t.nodeBorder,";\n  stroke-width: 1px;\n}\n.node polygon {\n  fill: ").concat(t.mainBkg,";\n  stroke: ").concat(t.stateBorder||t.nodeBorder,";;\n  stroke-width: 1px;\n}\n#statediagram-barbEnd {\n  fill: ").concat(t.lineColor,";\n}\n\n.statediagram-cluster rect {\n  fill: ").concat(t.compositeTitleBackground,";\n  stroke: ").concat(t.stateBorder||t.nodeBorder,";\n  stroke-width: 1px;\n}\n\n.cluster-label, .nodeLabel {\n  color: ").concat(t.stateLabelColor,";\n}\n\n.statediagram-cluster rect.outer {\n  rx: 5px;\n  ry: 5px;\n}\n.statediagram-state .divider {\n  stroke: ").concat(t.stateBorder||t.nodeBorder,";\n}\n\n.statediagram-state .title-state {\n  rx: 5px;\n  ry: 5px;\n}\n.statediagram-cluster.statediagram-cluster .inner {\n  fill: ").concat(t.compositeBackground||t.background,";\n}\n.statediagram-cluster.statediagram-cluster-alt .inner {\n  fill: ").concat(t.altBackground?t.altBackground:"#efefef",";\n}\n\n.statediagram-cluster .inner {\n  rx:0;\n  ry:0;\n}\n\n.statediagram-state rect.basic {\n  rx: 5px;\n  ry: 5px;\n}\n.statediagram-state rect.divider {\n  stroke-dasharray: 10,10;\n  fill: ").concat(t.altBackground?t.altBackground:"#efefef",";\n}\n\n.note-edge {\n  stroke-dasharray: 5;\n}\n\n.statediagram-note rect {\n  fill: ").concat(t.noteBkgColor,";\n  stroke: ").concat(t.noteBorderColor,";\n  stroke-width: 1px;\n  rx: 0;\n  ry: 0;\n}\n.statediagram-note rect {\n  fill: ").concat(t.noteBkgColor,";\n  stroke: ").concat(t.noteBorderColor,";\n  stroke-width: 1px;\n  rx: 0;\n  ry: 0;\n}\n\n.statediagram-note text {\n  fill: ").concat(t.noteTextColor,";\n}\n\n.statediagram-note .nodeLabel {\n  color: ").concat(t.noteTextColor,";\n}\n.statediagram .edgeLabel {\n  color: red; // ").concat(t.noteTextColor,";\n}\n\n#dependencyStart, #dependencyEnd {\n  fill: ").concat(t.lineColor,";\n  stroke: ").concat(t.lineColor,";\n  stroke-width: 1;\n}\n")},tc={flowchart:Qs,"flowchart-v2":Qs,sequence:function(t){return".actor {\n    stroke: ".concat(t.actorBorder,";\n    fill: ").concat(t.actorBkg,";\n  }\n\n  text.actor > tspan {\n    fill: ").concat(t.actorTextColor,";\n    stroke: none;\n  }\n\n  .actor-line {\n    stroke: ").concat(t.actorLineColor,";\n  }\n\n  .messageLine0 {\n    stroke-width: 1.5;\n    stroke-dasharray: none;\n    stroke: ").concat(t.signalColor,";\n  }\n\n  .messageLine1 {\n    stroke-width: 1.5;\n    stroke-dasharray: 2, 2;\n    stroke: ").concat(t.signalColor,";\n  }\n\n  #arrowhead path {\n    fill: ").concat(t.signalColor,";\n    stroke: ").concat(t.signalColor,";\n  }\n\n  .sequenceNumber {\n    fill: ").concat(t.sequenceNumberColor,";\n  }\n\n  #sequencenumber {\n    fill: ").concat(t.signalColor,";\n  }\n\n  #crosshead path {\n    fill: ").concat(t.signalColor,";\n    stroke: ").concat(t.signalColor,";\n  }\n\n  .messageText {\n    fill: ").concat(t.signalTextColor,";\n    stroke: ").concat(t.signalTextColor,";\n  }\n\n  .labelBox {\n    stroke: ").concat(t.labelBoxBorderColor,";\n    fill: ").concat(t.labelBoxBkgColor,";\n  }\n\n  .labelText, .labelText > tspan {\n    fill: ").concat(t.labelTextColor,";\n    stroke: none;\n  }\n\n  .loopText, .loopText > tspan {\n    fill: ").concat(t.loopTextColor,";\n    stroke: none;\n  }\n\n  .loopLine {\n    stroke-width: 2px;\n    stroke-dasharray: 2, 2;\n    stroke: ").concat(t.labelBoxBorderColor,";\n    fill: ").concat(t.labelBoxBorderColor,";\n  }\n\n  .note {\n    //stroke: #decc93;\n    stroke: ").concat(t.noteBorderColor,";\n    fill: ").concat(t.noteBkgColor,";\n  }\n\n  .noteText, .noteText > tspan {\n    fill: ").concat(t.noteTextColor,";\n    stroke: none;\n  }\n\n  .activation0 {\n    fill: ").concat(t.activationBkgColor,";\n    stroke: ").concat(t.activationBorderColor,";\n  }\n\n  .activation1 {\n    fill: ").concat(t.activationBkgColor,";\n    stroke: ").concat(t.activationBorderColor,";\n  }\n\n  .activation2 {\n    fill: ").concat(t.activationBkgColor,";\n    stroke: ").concat(t.activationBorderColor,";\n  }\n")},gantt:function(t){return'\n  .mermaid-main-font {\n    font-family: "trebuchet ms", verdana, arial, sans-serif;\n    font-family: var(--mermaid-font-family);\n  }\n\n  .section {\n    stroke: none;\n    opacity: 0.2;\n  }\n\n  .section0 {\n    fill: '.concat(t.sectionBkgColor,";\n  }\n\n  .section2 {\n    fill: ").concat(t.sectionBkgColor2,";\n  }\n\n  .section1,\n  .section3 {\n    fill: ").concat(t.altSectionBkgColor,";\n    opacity: 0.2;\n  }\n\n  .sectionTitle0 {\n    fill: ").concat(t.titleColor,";\n  }\n\n  .sectionTitle1 {\n    fill: ").concat(t.titleColor,";\n  }\n\n  .sectionTitle2 {\n    fill: ").concat(t.titleColor,";\n  }\n\n  .sectionTitle3 {\n    fill: ").concat(t.titleColor,";\n  }\n\n  .sectionTitle {\n    text-anchor: start;\n    // font-size: ").concat(t.ganttFontSize,";\n    // text-height: 14px;\n    font-family: 'trebuchet ms', verdana, arial, sans-serif;\n    font-family: var(--mermaid-font-family);\n\n  }\n\n\n  /* Grid and axis */\n\n  .grid .tick {\n    stroke: ").concat(t.gridColor,";\n    opacity: 0.8;\n    shape-rendering: crispEdges;\n    text {\n      font-family: ").concat(t.fontFamily,";\n      fill: ").concat(t.textColor,";\n    }\n  }\n\n  .grid path {\n    stroke-width: 0;\n  }\n\n\n  /* Today line */\n\n  .today {\n    fill: none;\n    stroke: ").concat(t.todayLineColor,";\n    stroke-width: 2px;\n  }\n\n\n  /* Task styling */\n\n  /* Default task */\n\n  .task {\n    stroke-width: 2;\n  }\n\n  .taskText {\n    text-anchor: middle;\n    font-family: 'trebuchet ms', verdana, arial, sans-serif;\n    font-family: var(--mermaid-font-family);\n  }\n\n  // .taskText:not([font-size]) {\n  //   font-size: ").concat(t.ganttFontSize,";\n  // }\n\n  .taskTextOutsideRight {\n    fill: ").concat(t.taskTextDarkColor,";\n    text-anchor: start;\n    // font-size: ").concat(t.ganttFontSize,";\n    font-family: 'trebuchet ms', verdana, arial, sans-serif;\n    font-family: var(--mermaid-font-family);\n\n  }\n\n  .taskTextOutsideLeft {\n    fill: ").concat(t.taskTextDarkColor,";\n    text-anchor: end;\n    // font-size: ").concat(t.ganttFontSize,";\n  }\n\n  /* Special case clickable */\n  .task.clickable {\n    cursor: pointer;\n  }\n  .taskText.clickable {\n    cursor: pointer;\n    fill: ").concat(t.taskTextClickableColor," !important;\n    font-weight: bold;\n  }\n\n  .taskTextOutsideLeft.clickable {\n    cursor: pointer;\n    fill: ").concat(t.taskTextClickableColor," !important;\n    font-weight: bold;\n  }\n\n  .taskTextOutsideRight.clickable {\n    cursor: pointer;\n    fill: ").concat(t.taskTextClickableColor," !important;\n    font-weight: bold;\n  }\n\n  /* Specific task settings for the sections*/\n\n  .taskText0,\n  .taskText1,\n  .taskText2,\n  .taskText3 {\n    fill: ").concat(t.taskTextColor,";\n  }\n\n  .task0,\n  .task1,\n  .task2,\n  .task3 {\n    fill: ").concat(t.taskBkgColor,";\n    stroke: ").concat(t.taskBorderColor,";\n  }\n\n  .taskTextOutside0,\n  .taskTextOutside2\n  {\n    fill: ").concat(t.taskTextOutsideColor,";\n  }\n\n  .taskTextOutside1,\n  .taskTextOutside3 {\n    fill: ").concat(t.taskTextOutsideColor,";\n  }\n\n\n  /* Active task */\n\n  .active0,\n  .active1,\n  .active2,\n  .active3 {\n    fill: ").concat(t.activeTaskBkgColor,";\n    stroke: ").concat(t.activeTaskBorderColor,";\n  }\n\n  .activeText0,\n  .activeText1,\n  .activeText2,\n  .activeText3 {\n    fill: ").concat(t.taskTextDarkColor," !important;\n  }\n\n\n  /* Completed task */\n\n  .done0,\n  .done1,\n  .done2,\n  .done3 {\n    stroke: ").concat(t.doneTaskBorderColor,";\n    fill: ").concat(t.doneTaskBkgColor,";\n    stroke-width: 2;\n  }\n\n  .doneText0,\n  .doneText1,\n  .doneText2,\n  .doneText3 {\n    fill: ").concat(t.taskTextDarkColor," !important;\n  }\n\n\n  /* Tasks on the critical line */\n\n  .crit0,\n  .crit1,\n  .crit2,\n  .crit3 {\n    stroke: ").concat(t.critBorderColor,";\n    fill: ").concat(t.critBkgColor,";\n    stroke-width: 2;\n  }\n\n  .activeCrit0,\n  .activeCrit1,\n  .activeCrit2,\n  .activeCrit3 {\n    stroke: ").concat(t.critBorderColor,";\n    fill: ").concat(t.activeTaskBkgColor,";\n    stroke-width: 2;\n  }\n\n  .doneCrit0,\n  .doneCrit1,\n  .doneCrit2,\n  .doneCrit3 {\n    stroke: ").concat(t.critBorderColor,";\n    fill: ").concat(t.doneTaskBkgColor,";\n    stroke-width: 2;\n    cursor: pointer;\n    shape-rendering: crispEdges;\n  }\n\n  .milestone {\n    transform: rotate(45deg) scale(0.8,0.8);\n  }\n\n  .milestoneText {\n    font-style: italic;\n  }\n  .doneCritText0,\n  .doneCritText1,\n  .doneCritText2,\n  .doneCritText3 {\n    fill: ").concat(t.taskTextDarkColor," !important;\n  }\n\n  .activeCritText0,\n  .activeCritText1,\n  .activeCritText2,\n  .activeCritText3 {\n    fill: ").concat(t.taskTextDarkColor," !important;\n  }\n\n  .titleText {\n    text-anchor: middle;\n    font-size: 18px;\n    fill: ").concat(t.textColor,"    ;\n    font-family: 'trebuchet ms', verdana, arial, sans-serif;\n    font-family: var(--mermaid-font-family);\n  }\n")},classDiagram:Ks,"classDiagram-v2":Ks,class:Ks,stateDiagram:Js,state:Js,git:function(){return"\n  .commit-id,\n  .commit-msg,\n  .branch-label {\n    fill: lightgrey;\n    color: lightgrey;\n    font-family: 'trebuchet ms', verdana, arial, sans-serif;\n    font-family: var(--mermaid-font-family);\n  }\n"},info:function(){return""},pie:function(t){return"\n  .pieCircle{\n    stroke: ".concat(t.pieStrokeColor,";\n    stroke-width : ").concat(t.pieStrokeWidth,";\n    opacity : ").concat(t.pieOpacity,";\n  }\n  .pieTitleText {\n    text-anchor: middle;\n    font-size: ").concat(t.pieTitleTextSize,";\n    fill: ").concat(t.pieTitleTextColor,";\n    font-family: ").concat(t.fontFamily,";\n  }\n  .slice {\n    font-family: ").concat(t.fontFamily,";\n    fill: ").concat(t.pieSectionTextColor,";\n    font-size:").concat(t.pieSectionTextSize,";\n    // fill: white;\n  }\n  .legend text {\n    fill: ").concat(t.pieLegendTextColor,";\n    font-family: ").concat(t.fontFamily,";\n    font-size: ").concat(t.pieLegendTextSize,";\n  }\n")},er:function(t){return"\n  .entityBox {\n    fill: ".concat(t.mainBkg,";\n    stroke: ").concat(t.nodeBorder,";\n  }\n\n  .attributeBoxOdd {\n    fill: #ffffff;\n    stroke: ").concat(t.nodeBorder,";\n  }\n\n  .attributeBoxEven {\n    fill: #f2f2f2;\n    stroke: ").concat(t.nodeBorder,";\n  }\n\n  .relationshipLabelBox {\n    fill: ").concat(t.tertiaryColor,";\n    opacity: 0.7;\n    background-color: ").concat(t.tertiaryColor,";\n      rect {\n        opacity: 0.5;\n      }\n  }\n\n    .relationshipLine {\n      stroke: ").concat(t.lineColor,";\n    }\n")},journey:function(t){return".label {\n    font-family: 'trebuchet ms', verdana, arial, sans-serif;\n    font-family: var(--mermaid-font-family);\n    color: ".concat(t.textColor,";\n  }\n  .mouth {\n    stroke: #666;\n  }\n\n  line {\n    stroke: ").concat(t.textColor,"\n  }\n\n  .legend {\n    fill: ").concat(t.textColor,";\n  }\n\n  .label text {\n    fill: #333;\n  }\n  .label {\n    color: ").concat(t.textColor,"\n  }\n\n  .face {\n    ").concat(t.faceColor?"fill: ".concat(t.faceColor):"fill: #FFF8DC",";\n    stroke: #999;\n  }\n\n  .node rect,\n  .node circle,\n  .node ellipse,\n  .node polygon,\n  .node path {\n    fill: ").concat(t.mainBkg,";\n    stroke: ").concat(t.nodeBorder,";\n    stroke-width: 1px;\n  }\n\n  .node .label {\n    text-align: center;\n  }\n  .node.clickable {\n    cursor: pointer;\n  }\n\n  .arrowheadPath {\n    fill: ").concat(t.arrowheadColor,";\n  }\n\n  .edgePath .path {\n    stroke: ").concat(t.lineColor,";\n    stroke-width: 1.5px;\n  }\n\n  .flowchart-link {\n    stroke: ").concat(t.lineColor,";\n    fill: none;\n  }\n\n  .edgeLabel {\n    background-color: ").concat(t.edgeLabelBackground,";\n    rect {\n      opacity: 0.5;\n    }\n    text-align: center;\n  }\n\n  .cluster rect {\n  }\n\n  .cluster text {\n    fill: ").concat(t.titleColor,";\n  }\n\n  div.mermaidTooltip {\n    position: absolute;\n    text-align: center;\n    max-width: 200px;\n    padding: 2px;\n    font-family: 'trebuchet ms', verdana, arial, sans-serif;\n    font-family: var(--mermaid-font-family);\n    font-size: 12px;\n    background: ").concat(t.tertiaryColor,";\n    border: 1px solid ").concat(t.border2,";\n    border-radius: 2px;\n    pointer-events: none;\n    z-index: 100;\n  }\n\n  .task-type-0, .section-type-0  {\n    ").concat(t.fillType0?"fill: ".concat(t.fillType0):"",";\n  }\n  .task-type-1, .section-type-1  {\n    ").concat(t.fillType0?"fill: ".concat(t.fillType1):"",";\n  }\n  .task-type-2, .section-type-2  {\n    ").concat(t.fillType0?"fill: ".concat(t.fillType2):"",";\n  }\n  .task-type-3, .section-type-3  {\n    ").concat(t.fillType0?"fill: ".concat(t.fillType3):"",";\n  }\n  .task-type-4, .section-type-4  {\n    ").concat(t.fillType0?"fill: ".concat(t.fillType4):"",";\n  }\n  .task-type-5, .section-type-5  {\n    ").concat(t.fillType0?"fill: ".concat(t.fillType5):"",";\n  }\n  .task-type-6, .section-type-6  {\n    ").concat(t.fillType0?"fill: ".concat(t.fillType6):"",";\n  }\n  .task-type-7, .section-type-7  {\n    ").concat(t.fillType0?"fill: ".concat(t.fillType7):"",";\n  }\n\n  .actor-0 {\n    ").concat(t.actor0?"fill: ".concat(t.actor0):"",";\n  }\n  .actor-1 {\n    ").concat(t.actor1?"fill: ".concat(t.actor1):"",";\n  }\n  .actor-2 {\n    ").concat(t.actor2?"fill: ".concat(t.actor2):"",";\n  }\n  .actor-3 {\n    ").concat(t.actor3?"fill: ".concat(t.actor3):"",";\n  }\n  .actor-4 {\n    ").concat(t.actor4?"fill: ".concat(t.actor4):"",";\n  }\n  .actor-5 {\n    ").concat(t.actor5?"fill: ".concat(t.actor5):"",";\n  }\n\n  }\n")},requirement:function(t){return"\n\n  marker {\n    fill: ".concat(t.relationColor,";\n    stroke: ").concat(t.relationColor,";\n  }\n\n  marker.cross {\n    stroke: ").concat(t.lineColor,";\n  }\n\n  svg {\n    font-family: ").concat(t.fontFamily,";\n    font-size: ").concat(t.fontSize,";\n  }\n\n  .reqBox {\n    fill: ").concat(t.requirementBackground,";\n    fill-opacity: 100%;\n    stroke: ").concat(t.requirementBorderColor,";\n    stroke-width: ").concat(t.requirementBorderSize,";\n  }\n  \n  .reqTitle, .reqLabel{\n    fill:  ").concat(t.requirementTextColor,";\n  }\n  .reqLabelBox {\n    fill: ").concat(t.relationLabelBackground,";\n    fill-opacity: 100%;\n  }\n\n  .req-title-line {\n    stroke: ").concat(t.requirementBorderColor,";\n    stroke-width: ").concat(t.requirementBorderSize,";\n  }\n  .relationshipLine {\n    stroke: ").concat(t.relationColor,";\n    stroke-width: 1;\n  }\n  .relationshipLabel {\n    fill: ").concat(t.relationLabelColor,";\n  }\n\n")}},ec=function(t,e,n){return" {\n    font-family: ".concat(n.fontFamily,";\n    font-size: ").concat(n.fontSize,";\n    fill: ").concat(n.textColor,"\n  }\n\n  /* Classes common for multiple diagrams */\n\n  .error-icon {\n    fill: ").concat(n.errorBkgColor,";\n  }\n  .error-text {\n    fill: ").concat(n.errorTextColor,";\n    stroke: ").concat(n.errorTextColor,";\n  }\n\n  .edge-thickness-normal {\n    stroke-width: 2px;\n  }\n  .edge-thickness-thick {\n    stroke-width: 3.5px\n  }\n  .edge-pattern-solid {\n    stroke-dasharray: 0;\n  }\n\n  .edge-pattern-dashed{\n    stroke-dasharray: 3;\n  }\n  .edge-pattern-dotted {\n    stroke-dasharray: 2;\n  }\n\n  .marker {\n    fill: ").concat(n.lineColor,";\n    stroke: ").concat(n.lineColor,";\n  }\n  .marker.cross {\n    stroke: ").concat(n.lineColor,";\n  }\n\n  svg {\n    font-family: ").concat(n.fontFamily,";\n    font-size: ").concat(n.fontSize,";\n  }\n\n  ").concat(tc[t](n),"\n\n  ").concat(e,"\n")};function nc(t){return(nc="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}var rc={},ic=function(t,e,n){switch(o.debug("Directive type=".concat(e.type," with args:"),e.args),e.type){case"init":case"initialize":["config"].forEach((function(t){void 0!==e.args[t]&&("flowchart-v2"===n&&(n="flowchart"),e.args[n]=e.args[t],delete e.args[t])})),e.args,ce(e.args);break;case"wrap":case"nowrap":t&&t.setWrap&&t.setWrap("wrap"===e.type);break;default:o.warn("Unhandled directive: source: '%%{".concat(e.type,": ").concat(JSON.stringify(e.args?e.args:{}),"}%%"),e)}};function ac(t){ca(t.git),qr(t.flowchart),Zr(t.flowchart),void 0!==t.sequenceDiagram&&Bo.setConf(wt(t.sequence,t.sequenceDiagram)),Bo.setConf(t.sequence),Li(t.gantt),qe(t.class),ss(t.state),ys(t.state),ga(t.class),Gn(t.er),Hs(t.journey),qa(t.requirement),Xs(t.class)}function oc(){}var sc=Object.freeze({render:function(t,e,n,r){ue();var i=e,a=Nt.detectInit(i);a&&ce(a);var s=oe();if(e.length>s.maxTextSize&&(i="graph TB;a[Maximum text size in diagram exceeded];style a fill:#faa"),void 0!==r)r.innerHTML="",Object(u.select)(r).append("div").attr("id","d"+t).attr("style","font-family: "+s.fontFamily).append("svg").attr("id",t).attr("width","100%").attr("xmlns","http://www.w3.org/2000/svg").append("g");else{var c=document.getElementById(t);c&&c.remove();var l=document.querySelector("#d"+t);l&&l.remove(),Object(u.select)("body").append("div").attr("id","d"+t).append("svg").attr("id",t).attr("width","100%").attr("xmlns","http://www.w3.org/2000/svg").append("g")}window.txt=i,i=function(t){var e=t;return e=(e=(e=e.replace(/style.*:\S*#.*;/g,(function(t){return t.substring(0,t.length-1)}))).replace(/classDef.*:\S*#.*;/g,(function(t){return t.substring(0,t.length-1)}))).replace(/#\w+;/g,(function(t){var e=t.substring(1,t.length-1);return/^\+?\d+$/.test(e)?"fl°°"+e+"¶ß":"fl°"+e+"¶ß"}))}(i);var h=Object(u.select)("#d"+t).node(),f=Nt.detectType(i,s),d=h.firstChild,p=d.firstChild,y="";if(void 0!==s.themeCSS&&(y+="\n".concat(s.themeCSS)),void 0!==s.fontFamily&&(y+="\n:root { --mermaid-font-family: ".concat(s.fontFamily,"}")),void 0!==s.altFontFamily&&(y+="\n:root { --mermaid-alt-font-family: ".concat(s.altFontFamily,"}")),"flowchart"===f||"flowchart-v2"===f||"graph"===f){var g=Wr(i),m=s.htmlLabels||s.flowchart.htmlLabels;for(var v in g)m?(y+="\n.".concat(v," > * { ").concat(g[v].styles.join(" !important; ")," !important; }"),y+="\n.".concat(v," span { ").concat(g[v].styles.join(" !important; ")," !important; }")):(y+="\n.".concat(v," path { ").concat(g[v].styles.join(" !important; ")," !important; }"),y+="\n.".concat(v," rect { ").concat(g[v].styles.join(" !important; ")," !important; }"),y+="\n.".concat(v," polygon { ").concat(g[v].styles.join(" !important; ")," !important; }"),y+="\n.".concat(v," ellipse { ").concat(g[v].styles.join(" !important; ")," !important; }"),y+="\n.".concat(v," circle { ").concat(g[v].styles.join(" !important; ")," !important; }"),g[v].textStyles&&(y+="\n.".concat(v," tspan { ").concat(g[v].textStyles.join(" !important; ")," !important; }")))}var b,x,_=(b="#".concat(t),x=ec(f,y,s.themeVariables),W(z("".concat(b,"{").concat(x,"}")),H)),k=document.createElement("style");k.innerHTML="#".concat(t," ")+_,d.insertBefore(k,p);try{switch(f){case"git":s.flowchart.arrowMarkerAbsolute=s.arrowMarkerAbsolute,ca(s.git),ua(i,t,!1);break;case"flowchart":s.flowchart.arrowMarkerAbsolute=s.arrowMarkerAbsolute,qr(s.flowchart),Hr(i,t,!1);break;case"flowchart-v2":s.flowchart.arrowMarkerAbsolute=s.arrowMarkerAbsolute,Zr(s.flowchart),Kr(i,t,!1);break;case"sequence":s.sequence.arrowMarkerAbsolute=s.arrowMarkerAbsolute,s.sequenceDiagram?(Bo.setConf(Object.assign(s.sequence,s.sequenceDiagram)),console.error("`mermaid config.sequenceDiagram` has been renamed to `config.sequence`. Please update your mermaid config.")):Bo.setConf(s.sequence),Bo.draw(i,t);break;case"gantt":s.gantt.arrowMarkerAbsolute=s.arrowMarkerAbsolute,Li(s.gantt),Ii(i,t);break;case"class":s.class.arrowMarkerAbsolute=s.arrowMarkerAbsolute,qe(s.class),We(i,t);break;case"classDiagram":s.class.arrowMarkerAbsolute=s.arrowMarkerAbsolute,Nn(s.class),Bn(i,t);break;case"state":s.class.arrowMarkerAbsolute=s.arrowMarkerAbsolute,ss(s.state),cs(i,t);break;case"stateDiagram":s.class.arrowMarkerAbsolute=s.arrowMarkerAbsolute,ys(s.state),gs(i,t);break;case"info":s.class.arrowMarkerAbsolute=s.arrowMarkerAbsolute,ga(s.class),ma(i,t,V.version);break;case"pie":Ta(i,t,V.version);break;case"er":Gn(s.er),Xn(i,t,V.version);break;case"journey":Hs(s.journey),Vs(i,t,V.version);break;case"requirement":qa(s.requirement),Wa(i,t,V.version)}}catch(e){throw Zs(t,V.version),e}Object(u.select)('[id="'.concat(t,'"]')).selectAll("foreignobject > *").attr("xmlns","http://www.w3.org/1999/xhtml");var w=Object(u.select)("#d"+t).node().innerHTML;if(o.debug("cnf.arrowMarkerAbsolute",s.arrowMarkerAbsolute),s.arrowMarkerAbsolute&&"false"!==s.arrowMarkerAbsolute||(w=w.replace(/marker-end="url\(.*?#/g,'marker-end="url(#',"g")),w=(w=function(t){var e=t;return e=(e=(e=e.replace(/fl°°/g,(function(){return"&#"}))).replace(/fl°/g,(function(){return"&"}))).replace(/¶ß/g,(function(){return";"}))}(w)).replace(/<br>/g,"<br/>"),void 0!==n)switch(f){case"flowchart":case"flowchart-v2":n(w,_r.bindFunctions);break;case"gantt":n(w,Mi.bindFunctions);break;case"class":case"classDiagram":n(w,Ee.bindFunctions);break;default:n(w)}else o.debug("CB = undefined!");var E=Object(u.select)("#d"+t).node();return null!==E&&"function"==typeof E.remove&&Object(u.select)("#d"+t).node().remove(),w},parse:function(t){var e=oe(),n=Nt.detectInit(t,e);n&&o.debug("reinit ",n);var r,i=Nt.detectType(t,e);switch(o.debug("Type "+i),i){case"git":(r=Ki.a).parser.yy=Xi;break;case"flowchart":case"flowchart-v2":_r.clear(),(r=wr.a).parser.yy=_r;break;case"sequence":(r=Va.a).parser.yy=uo;break;case"gantt":(r=Bi.a).parser.yy=Mi;break;case"class":case"classDiagram":(r=Oe.a).parser.yy=Ee;break;case"state":case"stateDiagram":(r=Lo.a).parser.yy=Go;break;case"info":o.debug("info info info"),(r=pa.a).parser.yy=fa;break;case"pie":o.debug("pie"),(r=ba.a).parser.yy=wa;break;case"er":o.debug("er"),(r=Yn.a).parser.yy=Pn;break;case"journey":o.debug("Journey"),(r=Ss.a).parser.yy=Ts;break;case"requirement":case"requirementDiagram":o.debug("RequirementDiagram"),(r=Sa.a).parser.yy=Da}return r.parser.yy.graphType=i,r.parser.yy.parseError=function(t,e){throw{str:t,hash:e}},r.parse(t),r},parseDirective:function(t,e,n,r){try{if(void 0!==e)switch(e=e.trim(),n){case"open_directive":rc={};break;case"type_directive":rc.type=e.toLowerCase();break;case"arg_directive":rc.args=JSON.parse(e);break;case"close_directive":ic(t,rc,r),rc=null}}catch(t){o.error("Error while rendering sequenceDiagram directive: ".concat(e," jison context: ").concat(n)),o.error(t.message)}},initialize:function(t){t&&t.fontFamily&&(t.themeVariables&&t.themeVariables.fontFamily||(t.themeVariables={fontFamily:t.fontFamily})),Jt=wt({},t),t&&t.theme&&Xt[t.theme]?t.themeVariables=Xt[t.theme].getThemeVariables(t.themeVariables):t&&(t.themeVariables=Xt.default.getThemeVariables(t.themeVariables));var e="object"===nc(t)?function(t){return ee=wt({},te),ee=wt(ee,t),t.theme&&(ee.themeVariables=Xt[t.theme].getThemeVariables(t.themeVariables)),re=ie(ee,ne),ee}(t):ae();ac(e),s(e.logLevel)},reinitialize:oc,getConfig:oe,setConfig:function(t){return wt(re,t),oe()},getSiteConfig:ae,updateSiteConfig:function(t){return ee=wt(ee,t),ie(ee,ne),ee},reset:function(){ue()},globalReset:function(){ue(),ac(oe())},defaultConfig:te});s(oe().logLevel),ue(oe());var cc=sc,uc=function(){lc.startOnLoad?cc.getConfig().startOnLoad&&lc.init():void 0===lc.startOnLoad&&(o.debug("In start, no config"),cc.getConfig().startOnLoad&&lc.init())};"undefined"!=typeof document&&
+t.exports={graphlib:n(316),dagre:n(153),intersect:n(375),render:n(377),util:n(15),version:n(389)}},function(t,e,n){"use strict";var r=n(4),i=n(20).Graph;function a(t,e,n,i){var a;do{a=r.uniqueId(i)}while(t.hasNode(a));return n.dummy=e,t.setNode(a,n),a}function o(t){return r.max(r.map(t.nodes(),(function(e){var n=t.node(e).rank;if(!r.isUndefined(n))return n})))}t.exports={addDummyNode:a,simplify:function(t){var e=(new i).setGraph(t.graph());return r.forEach(t.nodes(),(function(n){e.setNode(n,t.node(n))})),r.forEach(t.edges(),(function(n){var r=e.edge(n.v,n.w)||{weight:0,minlen:1},i=t.edge(n);e.setEdge(n.v,n.w,{weight:r.weight+i.weight,minlen:Math.max(r.minlen,i.minlen)})})),e},asNonCompoundGraph:function(t){var e=new i({multigraph:t.isMultigraph()}).setGraph(t.graph());return r.forEach(t.nodes(),(function(n){t.children(n).length||e.setNode(n,t.node(n))})),r.forEach(t.edges(),(function(n){e.setEdge(n,t.edge(n))})),e},successorWeights:function(t){var e=r.map(t.nodes(),(function(e){var n={};return r.forEach(t.outEdges(e),(function(e){n[e.w]=(n[e.w]||0)+t.edge(e).weight})),n}));return r.zipObject(t.nodes(),e)},predecessorWeights:function(t){var e=r.map(t.nodes(),(function(e){var n={};return r.forEach(t.inEdges(e),(function(e){n[e.v]=(n[e.v]||0)+t.edge(e).weight})),n}));return r.zipObject(t.nodes(),e)},intersectRect:function(t,e){var n,r,i=t.x,a=t.y,o=e.x-i,s=e.y-a,c=t.width/2,u=t.height/2;if(!o&&!s)throw new Error("Not possible to find intersection inside of the rectangle");Math.abs(s)*c>Math.abs(o)*u?(s<0&&(u=-u),n=u*o/s,r=u):(o<0&&(c=-c),n=c,r=c*s/o);return{x:i+n,y:a+r}},buildLayerMatrix:function(t){var e=r.map(r.range(o(t)+1),(function(){return[]}));return r.forEach(t.nodes(),(function(n){var i=t.node(n),a=i.rank;r.isUndefined(a)||(e[a][i.order]=n)})),e},normalizeRanks:function(t){var e=r.min(r.map(t.nodes(),(function(e){return t.node(e).rank})));r.forEach(t.nodes(),(function(n){var i=t.node(n);r.has(i,"rank")&&(i.rank-=e)}))},removeEmptyRanks:function(t){var e=r.min(r.map(t.nodes(),(function(e){return t.node(e).rank}))),n=[];r.forEach(t.nodes(),(function(r){var i=t.node(r).rank-e;n[i]||(n[i]=[]),n[i].push(r)}));var i=0,a=t.graph().nodeRankFactor;r.forEach(n,(function(e,n){r.isUndefined(e)&&n%a!=0?--i:i&&r.forEach(e,(function(e){t.node(e).rank+=i}))}))},addBorderNode:function(t,e,n,r){var i={width:0,height:0};arguments.length>=4&&(i.rank=n,i.order=r);return a(t,"border",i,e)},maxRank:o,partition:function(t,e){var n={lhs:[],rhs:[]};return r.forEach(t,(function(t){e(t)?n.lhs.push(t):n.rhs.push(t)})),n},time:function(t,e){var n=r.now();try{return e()}finally{console.log(t+" time: "+(r.now()-n)+"ms")}},notime:function(t,e){return e()}}},function(t,e,n){t.exports={graphlib:n(20),layout:n(317),debug:n(373),util:{time:n(9).time,notime:n(9).notime},version:n(374)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(172),i=n(173),a=n(174),o={channel:r.default,lang:i.default,unit:a.default};e.default=o},function(t,e){var n,r,i=t.exports={};function a(){throw new Error("setTimeout has not been defined")}function o(){throw new Error("clearTimeout has not been defined")}function s(t){if(n===setTimeout)return setTimeout(t,0);if((n===a||!n)&&setTimeout)return n=setTimeout,setTimeout(t,0);try{return n(t,0)}catch(e){try{return n.call(null,t,0)}catch(e){return n.call(this,t,0)}}}!function(){try{n="function"==typeof setTimeout?setTimeout:a}catch(t){n=a}try{r="function"==typeof clearTimeout?clearTimeout:o}catch(t){r=o}}();var c,u=[],l=!1,h=-1;function f(){l&&c&&(l=!1,c.length?u=c.concat(u):h=-1,u.length&&d())}function d(){if(!l){var t=s(f);l=!0;for(var e=u.length;e;){for(c=u,u=[];++h<e;)c&&c[h].run();h=-1,e=u.length}c=null,l=!1,function(t){if(r===clearTimeout)return clearTimeout(t);if((r===o||!r)&&clearTimeout)return r=clearTimeout,clearTimeout(t);try{r(t)}catch(e){try{return r.call(null,t)}catch(e){return r.call(this,t)}}}(t)}}function p(t,e){this.fun=t,this.array=e}function y(){}i.nextTick=function(t){var e=new Array(arguments.length-1);if(arguments.length>1)for(var n=1;n<arguments.length;n++)e[n-1]=arguments[n];u.push(new p(t,e)),1!==u.length||l||s(d)},p.prototype.run=function(){this.fun.apply(null,this.array)},i.title="browser",i.browser=!0,i.env={},i.argv=[],i.version="",i.versions={},i.on=y,i.addListener=y,i.once=y,i.off=y,i.removeListener=y,i.removeAllListeners=y,i.emit=y,i.prependListener=y,i.prependOnceListener=y,i.listeners=function(t){return[]},i.binding=function(t){throw new Error("process.binding is not supported")},i.cwd=function(){return"/"},i.chdir=function(t){throw new Error("process.chdir is not supported")},i.umask=function(){return 0}},function(t,e,n){var r;try{r={clone:n(204),constant:n(88),each:n(89),filter:n(128),has:n(94),isArray:n(5),isEmpty:n(281),isFunction:n(39),isUndefined:n(139),keys:n(30),map:n(140),reduce:n(142),size:n(284),transform:n(290),union:n(291),values:n(147)}}catch(t){}r||(r=window._),t.exports=r},function(t,e){t.exports=function(t){var e=typeof t;return null!=t&&("object"==e||"function"==e)}},function(t,e,n){var r=n(44);t.exports={isSubgraph:function(t,e){return!!t.children(e).length},edgeToId:function(t){return a(t.v)+":"+a(t.w)+":"+a(t.name)},applyStyle:function(t,e){e&&t.attr("style",e)},applyClass:function(t,e,n){e&&t.attr("class",e).attr("class",n+" "+t.attr("class"))},applyTransition:function(t,e){var n=e.graph();if(r.isPlainObject(n)){var i=n.transition;if(r.isFunction(i))return i(t)}return t}};var i=/:/g;function a(t){return t?String(t).replace(i,"\\:"):""}},function(t,e,n){(function(t,r){var i=function(){var t=function(t,e,n,r){for(n=n||{},r=t.length;r--;n[t[r]]=e);return n},e=[1,6],n=[1,7],r=[1,8],i=[1,9],a=[1,12],o=[1,11],s=[1,15,24],c=[1,19],u=[1,31],l=[1,34],h=[1,32],f=[1,33],d=[1,35],p=[1,36],y=[1,37],g=[1,38],m=[1,41],v=[1,42],b=[1,43],x=[1,44],_=[15,24],k=[1,56],w=[1,57],T=[1,58],E=[1,59],C=[1,60],S=[1,61],A=[15,24,31,38,39,47,50,51,52,53,54,55,60,62],M=[15,24,29,31,38,39,43,47,50,51,52,53,54,55,60,62,77,78,79,80],O=[7,8,9,10,15,18,22,24],N=[47,77,78,79,80],B=[47,54,55,77,78,79,80],D=[47,50,51,52,53,77,78,79,80],L=[15,24,31],I=[1,93],R={trace:function(){},yy:{},symbols_:{error:2,start:3,mermaidDoc:4,direction:5,directive:6,direction_tb:7,direction_bt:8,direction_rl:9,direction_lr:10,graphConfig:11,openDirective:12,typeDirective:13,closeDirective:14,NEWLINE:15,":":16,argDirective:17,open_directive:18,type_directive:19,arg_directive:20,close_directive:21,CLASS_DIAGRAM:22,statements:23,EOF:24,statement:25,className:26,alphaNumToken:27,classLiteralName:28,GENERICTYPE:29,relationStatement:30,LABEL:31,classStatement:32,methodStatement:33,annotationStatement:34,clickStatement:35,cssClassStatement:36,CLASS:37,STYLE_SEPARATOR:38,STRUCT_START:39,members:40,STRUCT_STOP:41,ANNOTATION_START:42,ANNOTATION_END:43,MEMBER:44,SEPARATOR:45,relation:46,STR:47,relationType:48,lineType:49,AGGREGATION:50,EXTENSION:51,COMPOSITION:52,DEPENDENCY:53,LINE:54,DOTTED_LINE:55,CALLBACK:56,LINK:57,LINK_TARGET:58,CLICK:59,CALLBACK_NAME:60,CALLBACK_ARGS:61,HREF:62,CSSCLASS:63,commentToken:64,textToken:65,graphCodeTokens:66,textNoTagsToken:67,TAGSTART:68,TAGEND:69,"==":70,"--":71,PCT:72,DEFAULT:73,SPACE:74,MINUS:75,keywords:76,UNICODE_TEXT:77,NUM:78,ALPHA:79,BQUOTE_STR:80,$accept:0,$end:1},terminals_:{2:"error",7:"direction_tb",8:"direction_bt",9:"direction_rl",10:"direction_lr",15:"NEWLINE",16:":",18:"open_directive",19:"type_directive",20:"arg_directive",21:"close_directive",22:"CLASS_DIAGRAM",24:"EOF",29:"GENERICTYPE",31:"LABEL",37:"CLASS",38:"STYLE_SEPARATOR",39:"STRUCT_START",41:"STRUCT_STOP",42:"ANNOTATION_START",43:"ANNOTATION_END",44:"MEMBER",45:"SEPARATOR",47:"STR",50:"AGGREGATION",51:"EXTENSION",52:"COMPOSITION",53:"DEPENDENCY",54:"LINE",55:"DOTTED_LINE",56:"CALLBACK",57:"LINK",58:"LINK_TARGET",59:"CLICK",60:"CALLBACK_NAME",61:"CALLBACK_ARGS",62:"HREF",63:"CSSCLASS",66:"graphCodeTokens",68:"TAGSTART",69:"TAGEND",70:"==",71:"--",72:"PCT",73:"DEFAULT",74:"SPACE",75:"MINUS",76:"keywords",77:"UNICODE_TEXT",78:"NUM",79:"ALPHA",80:"BQUOTE_STR"},productions_:[0,[3,1],[3,1],[3,2],[5,1],[5,1],[5,1],[5,1],[4,1],[6,4],[6,6],[12,1],[13,1],[17,1],[14,1],[11,4],[23,1],[23,2],[23,3],[26,1],[26,1],[26,2],[26,2],[26,2],[25,1],[25,2],[25,1],[25,1],[25,1],[25,1],[25,1],[25,1],[25,1],[32,2],[32,4],[32,5],[32,7],[34,4],[40,1],[40,2],[33,1],[33,2],[33,1],[33,1],[30,3],[30,4],[30,4],[30,5],[46,3],[46,2],[46,2],[46,1],[48,1],[48,1],[48,1],[48,1],[49,1],[49,1],[35,3],[35,4],[35,3],[35,4],[35,4],[35,5],[35,3],[35,4],[35,4],[35,5],[35,3],[35,4],[35,4],[35,5],[36,3],[64,1],[64,1],[65,1],[65,1],[65,1],[65,1],[65,1],[65,1],[65,1],[67,1],[67,1],[67,1],[67,1],[27,1],[27,1],[27,1],[28,1]],performAction:function(t,e,n,r,i,a,o){var s=a.length-1;switch(i){case 4:r.setDirection("TB");break;case 5:r.setDirection("BT");break;case 6:r.setDirection("RL");break;case 7:r.setDirection("LR");break;case 11:r.parseDirective("%%{","open_directive");break;case 12:r.parseDirective(a[s],"type_directive");break;case 13:a[s]=a[s].trim().replace(/'/g,'"'),r.parseDirective(a[s],"arg_directive");break;case 14:r.parseDirective("}%%","close_directive","class");break;case 19:case 20:this.$=a[s];break;case 21:this.$=a[s-1]+a[s];break;case 22:case 23:this.$=a[s-1]+"~"+a[s];break;case 24:r.addRelation(a[s]);break;case 25:a[s-1].title=r.cleanupLabel(a[s]),r.addRelation(a[s-1]);break;case 33:r.addClass(a[s]);break;case 34:r.addClass(a[s-2]),r.setCssClass(a[s-2],a[s]);break;case 35:r.addClass(a[s-3]),r.addMembers(a[s-3],a[s-1]);break;case 36:r.addClass(a[s-5]),r.setCssClass(a[s-5],a[s-3]),r.addMembers(a[s-5],a[s-1]);break;case 37:r.addAnnotation(a[s],a[s-2]);break;case 38:this.$=[a[s]];break;case 39:a[s].push(a[s-1]),this.$=a[s];break;case 40:break;case 41:r.addMember(a[s-1],r.cleanupLabel(a[s]));break;case 42:case 43:break;case 44:this.$={id1:a[s-2],id2:a[s],relation:a[s-1],relationTitle1:"none",relationTitle2:"none"};break;case 45:this.$={id1:a[s-3],id2:a[s],relation:a[s-1],relationTitle1:a[s-2],relationTitle2:"none"};break;case 46:this.$={id1:a[s-3],id2:a[s],relation:a[s-2],relationTitle1:"none",relationTitle2:a[s-1]};break;case 47:this.$={id1:a[s-4],id2:a[s],relation:a[s-2],relationTitle1:a[s-3],relationTitle2:a[s-1]};break;case 48:this.$={type1:a[s-2],type2:a[s],lineType:a[s-1]};break;case 49:this.$={type1:"none",type2:a[s],lineType:a[s-1]};break;case 50:this.$={type1:a[s-1],type2:"none",lineType:a[s]};break;case 51:this.$={type1:"none",type2:"none",lineType:a[s]};break;case 52:this.$=r.relationType.AGGREGATION;break;case 53:this.$=r.relationType.EXTENSION;break;case 54:this.$=r.relationType.COMPOSITION;break;case 55:this.$=r.relationType.DEPENDENCY;break;case 56:this.$=r.lineType.LINE;break;case 57:this.$=r.lineType.DOTTED_LINE;break;case 58:case 64:this.$=a[s-2],r.setClickEvent(a[s-1],a[s]);break;case 59:case 65:this.$=a[s-3],r.setClickEvent(a[s-2],a[s-1]),r.setTooltip(a[s-2],a[s]);break;case 60:case 68:this.$=a[s-2],r.setLink(a[s-1],a[s]);break;case 61:this.$=a[s-3],r.setLink(a[s-2],a[s-1],a[s]);break;case 62:case 70:this.$=a[s-3],r.setLink(a[s-2],a[s-1]),r.setTooltip(a[s-2],a[s]);break;case 63:case 71:this.$=a[s-4],r.setLink(a[s-3],a[s-2],a[s]),r.setTooltip(a[s-3],a[s-1]);break;case 66:this.$=a[s-3],r.setClickEvent(a[s-2],a[s-1],a[s]);break;case 67:this.$=a[s-4],r.setClickEvent(a[s-3],a[s-2],a[s-1]),r.setTooltip(a[s-3],a[s]);break;case 69:this.$=a[s-3],r.setLink(a[s-2],a[s-1],a[s]);break;case 72:r.setCssClass(a[s-1],a[s])}},table:[{3:1,4:2,5:3,6:4,7:e,8:n,9:r,10:i,11:5,12:10,18:a,22:o},{1:[3]},{1:[2,1]},{1:[2,2]},{3:13,4:2,5:3,6:4,7:e,8:n,9:r,10:i,11:5,12:10,18:a,22:o},{1:[2,8]},t(s,[2,4]),t(s,[2,5]),t(s,[2,6]),t(s,[2,7]),{13:14,19:[1,15]},{15:[1,16]},{19:[2,11]},{1:[2,3]},{14:17,16:[1,18],21:c},t([16,21],[2,12]),{5:29,6:28,7:e,8:n,9:r,10:i,12:10,18:a,23:20,25:21,26:30,27:39,28:40,30:22,32:23,33:24,34:25,35:26,36:27,37:u,42:l,44:h,45:f,56:d,57:p,59:y,63:g,77:m,78:v,79:b,80:x},{15:[1,45]},{17:46,20:[1,47]},{15:[2,14]},{24:[1,48]},{15:[1,49],24:[2,16]},t(_,[2,24],{31:[1,50]}),t(_,[2,26]),t(_,[2,27]),t(_,[2,28]),t(_,[2,29]),t(_,[2,30]),t(_,[2,31]),t(_,[2,32]),t(_,[2,40],{46:51,48:54,49:55,31:[1,53],47:[1,52],50:k,51:w,52:T,53:E,54:C,55:S}),{26:62,27:39,28:40,77:m,78:v,79:b,80:x},t(_,[2,42]),t(_,[2,43]),{27:63,77:m,78:v,79:b},{26:64,27:39,28:40,77:m,78:v,79:b,80:x},{26:65,27:39,28:40,77:m,78:v,79:b,80:x},{26:66,27:39,28:40,77:m,78:v,79:b,80:x},{47:[1,67]},t(A,[2,19],{27:39,28:40,26:68,29:[1,69],77:m,78:v,79:b,80:x}),t(A,[2,20],{29:[1,70]}),t(M,[2,86]),t(M,[2,87]),t(M,[2,88]),t([15,24,29,31,38,39,47,50,51,52,53,54,55,60,62],[2,89]),t(O,[2,9]),{14:71,21:c},{21:[2,13]},{1:[2,15]},{5:29,6:28,7:e,8:n,9:r,10:i,12:10,18:a,23:72,24:[2,17],25:21,26:30,27:39,28:40,30:22,32:23,33:24,34:25,35:26,36:27,37:u,42:l,44:h,45:f,56:d,57:p,59:y,63:g,77:m,78:v,79:b,80:x},t(_,[2,25]),{26:73,27:39,28:40,47:[1,74],77:m,78:v,79:b,80:x},{46:75,48:54,49:55,50:k,51:w,52:T,53:E,54:C,55:S},t(_,[2,41]),{49:76,54:C,55:S},t(N,[2,51],{48:77,50:k,51:w,52:T,53:E}),t(B,[2,52]),t(B,[2,53]),t(B,[2,54]),t(B,[2,55]),t(D,[2,56]),t(D,[2,57]),t(_,[2,33],{38:[1,78],39:[1,79]}),{43:[1,80]},{47:[1,81]},{47:[1,82]},{60:[1,83],62:[1,84]},{27:85,77:m,78:v,79:b},t(A,[2,21]),t(A,[2,22]),t(A,[2,23]),{15:[1,86]},{24:[2,18]},t(L,[2,44]),{26:87,27:39,28:40,77:m,78:v,79:b,80:x},{26:88,27:39,28:40,47:[1,89],77:m,78:v,79:b,80:x},t(N,[2,50],{48:90,50:k,51:w,52:T,53:E}),t(N,[2,49]),{27:91,77:m,78:v,79:b},{40:92,44:I},{26:94,27:39,28:40,77:m,78:v,79:b,80:x},t(_,[2,58],{47:[1,95]}),t(_,[2,60],{47:[1,97],58:[1,96]}),t(_,[2,64],{47:[1,98],61:[1,99]}),t(_,[2,68],{47:[1,101],58:[1,100]}),t(_,[2,72]),t(O,[2,10]),t(L,[2,46]),t(L,[2,45]),{26:102,27:39,28:40,77:m,78:v,79:b,80:x},t(N,[2,48]),t(_,[2,34],{39:[1,103]}),{41:[1,104]},{40:105,41:[2,38],44:I},t(_,[2,37]),t(_,[2,59]),t(_,[2,61]),t(_,[2,62],{58:[1,106]}),t(_,[2,65]),t(_,[2,66],{47:[1,107]}),t(_,[2,69]),t(_,[2,70],{58:[1,108]}),t(L,[2,47]),{40:109,44:I},t(_,[2,35]),{41:[2,39]},t(_,[2,63]),t(_,[2,67]),t(_,[2,71]),{41:[1,110]},t(_,[2,36])],defaultActions:{2:[2,1],3:[2,2],5:[2,8],12:[2,11],13:[2,3],19:[2,14],47:[2,13],48:[2,15],72:[2,18],105:[2,39]},parseError:function(t,e){if(!e.recoverable){var n=new Error(t);throw n.hash=e,n}this.trace(t)},parse:function(t){var e=this,n=[0],r=[],i=[null],a=[],o=this.table,s="",c=0,u=0,l=0,h=2,f=1,d=a.slice.call(arguments,1),p=Object.create(this.lexer),y={yy:{}};for(var g in this.yy)Object.prototype.hasOwnProperty.call(this.yy,g)&&(y.yy[g]=this.yy[g]);p.setInput(t,y.yy),y.yy.lexer=p,y.yy.parser=this,void 0===p.yylloc&&(p.yylloc={});var m=p.yylloc;a.push(m);var v=p.options&&p.options.ranges;function b(){var t;return"number"!=typeof(t=r.pop()||p.lex()||f)&&(t instanceof Array&&(t=(r=t).pop()),t=e.symbols_[t]||t),t}"function"==typeof y.yy.parseError?this.parseError=y.yy.parseError:this.parseError=Object.getPrototypeOf(this).parseError;for(var x,_,k,w,T,E,C,S,A,M={};;){if(k=n[n.length-1],this.defaultActions[k]?w=this.defaultActions[k]:(null==x&&(x=b()),w=o[k]&&o[k][x]),void 0===w||!w.length||!w[0]){var O="";for(E in A=[],o[k])this.terminals_[E]&&E>h&&A.push("'"+this.terminals_[E]+"'");O=p.showPosition?"Parse error on line "+(c+1)+":\n"+p.showPosition()+"\nExpecting "+A.join(", ")+", got '"+(this.terminals_[x]||x)+"'":"Parse error on line "+(c+1)+": Unexpected "+(x==f?"end of input":"'"+(this.terminals_[x]||x)+"'"),this.parseError(O,{text:p.match,token:this.terminals_[x]||x,line:p.yylineno,loc:m,expected:A})}if(w[0]instanceof Array&&w.length>1)throw new Error("Parse Error: multiple actions possible at state: "+k+", token: "+x);switch(w[0]){case 1:n.push(x),i.push(p.yytext),a.push(p.yylloc),n.push(w[1]),x=null,_?(x=_,_=null):(u=p.yyleng,s=p.yytext,c=p.yylineno,m=p.yylloc,l>0&&l--);break;case 2:if(C=this.productions_[w[1]][1],M.$=i[i.length-C],M._$={first_line:a[a.length-(C||1)].first_line,last_line:a[a.length-1].last_line,first_column:a[a.length-(C||1)].first_column,last_column:a[a.length-1].last_column},v&&(M._$.range=[a[a.length-(C||1)].range[0],a[a.length-1].range[1]]),void 0!==(T=this.performAction.apply(M,[s,u,c,y.yy,w[1],i,a].concat(d))))return T;C&&(n=n.slice(0,-1*C*2),i=i.slice(0,-1*C),a=a.slice(0,-1*C)),n.push(this.productions_[w[1]][0]),i.push(M.$),a.push(M._$),S=o[n[n.length-2]][n[n.length-1]],n.push(S);break;case 3:return!0}}return!0}},F={EOF:1,parseError:function(t,e){if(!this.yy.parser)throw new Error(t);this.yy.parser.parseError(t,e)},setInput:function(t,e){return this.yy=e||this.yy||{},this._input=t,this._more=this._backtrack=this.done=!1,this.yylineno=this.yyleng=0,this.yytext=this.matched=this.match="",this.conditionStack=["INITIAL"],this.yylloc={first_line:1,first_column:0,last_line:1,last_column:0},this.options.ranges&&(this.yylloc.range=[0,0]),this.offset=0,this},input:function(){var t=this._input[0];return this.yytext+=t,this.yyleng++,this.offset++,this.match+=t,this.matched+=t,t.match(/(?:\r\n?|\n).*/g)?(this.yylineno++,this.yylloc.last_line++):this.yylloc.last_column++,this.options.ranges&&this.yylloc.range[1]++,this._input=this._input.slice(1),t},unput:function(t){var e=t.length,n=t.split(/(?:\r\n?|\n)/g);this._input=t+this._input,this.yytext=this.yytext.substr(0,this.yytext.length-e),this.offset-=e;var r=this.match.split(/(?:\r\n?|\n)/g);this.match=this.match.substr(0,this.match.length-1),this.matched=this.matched.substr(0,this.matched.length-1),n.length-1&&(this.yylineno-=n.length-1);var i=this.yylloc.range;return this.yylloc={first_line:this.yylloc.first_line,last_line:this.yylineno+1,first_column:this.yylloc.first_column,last_column:n?(n.length===r.length?this.yylloc.first_column:0)+r[r.length-n.length].length-n[0].length:this.yylloc.first_column-e},this.options.ranges&&(this.yylloc.range=[i[0],i[0]+this.yyleng-e]),this.yyleng=this.yytext.length,this},more:function(){return this._more=!0,this},reject:function(){return this.options.backtrack_lexer?(this._backtrack=!0,this):this.parseError("Lexical error on line "+(this.yylineno+1)+". You can only invoke reject() in the lexer when the lexer is of the backtracking persuasion (options.backtrack_lexer = true).\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},less:function(t){this.unput(this.match.slice(t))},pastInput:function(){var t=this.matched.substr(0,this.matched.length-this.match.length);return(t.length>20?"...":"")+t.substr(-20).replace(/\n/g,"")},upcomingInput:function(){var t=this.match;return t.length<20&&(t+=this._input.substr(0,20-t.length)),(t.substr(0,20)+(t.length>20?"...":"")).replace(/\n/g,"")},showPosition:function(){var t=this.pastInput(),e=new Array(t.length+1).join("-");return t+this.upcomingInput()+"\n"+e+"^"},test_match:function(t,e){var n,r,i;if(this.options.backtrack_lexer&&(i={yylineno:this.yylineno,yylloc:{first_line:this.yylloc.first_line,last_line:this.last_line,first_column:this.yylloc.first_column,last_column:this.yylloc.last_column},yytext:this.yytext,match:this.match,matches:this.matches,matched:this.matched,yyleng:this.yyleng,offset:this.offset,_more:this._more,_input:this._input,yy:this.yy,conditionStack:this.conditionStack.slice(0),done:this.done},this.options.ranges&&(i.yylloc.range=this.yylloc.range.slice(0))),(r=t[0].match(/(?:\r\n?|\n).*/g))&&(this.yylineno+=r.length),this.yylloc={first_line:this.yylloc.last_line,last_line:this.yylineno+1,first_column:this.yylloc.last_column,last_column:r?r[r.length-1].length-r[r.length-1].match(/\r?\n?/)[0].length:this.yylloc.last_column+t[0].length},this.yytext+=t[0],this.match+=t[0],this.matches=t,this.yyleng=this.yytext.length,this.options.ranges&&(this.yylloc.range=[this.offset,this.offset+=this.yyleng]),this._more=!1,this._backtrack=!1,this._input=this._input.slice(t[0].length),this.matched+=t[0],n=this.performAction.call(this,this.yy,this,e,this.conditionStack[this.conditionStack.length-1]),this.done&&this._input&&(this.done=!1),n)return n;if(this._backtrack){for(var a in i)this[a]=i[a];return!1}return!1},next:function(){if(this.done)return this.EOF;var t,e,n,r;this._input||(this.done=!0),this._more||(this.yytext="",this.match="");for(var i=this._currentRules(),a=0;a<i.length;a++)if((n=this._input.match(this.rules[i[a]]))&&(!e||n[0].length>e[0].length)){if(e=n,r=a,this.options.backtrack_lexer){if(!1!==(t=this.test_match(n,i[a])))return t;if(this._backtrack){e=!1;continue}return!1}if(!this.options.flex)break}return e?!1!==(t=this.test_match(e,i[r]))&&t:""===this._input?this.EOF:this.parseError("Lexical error on line "+(this.yylineno+1)+". Unrecognized text.\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},lex:function(){var t=this.next();return t||this.lex()},begin:function(t){this.conditionStack.push(t)},popState:function(){return this.conditionStack.length-1>0?this.conditionStack.pop():this.conditionStack[0]},_currentRules:function(){return this.conditionStack.length&&this.conditionStack[this.conditionStack.length-1]?this.conditions[this.conditionStack[this.conditionStack.length-1]].rules:this.conditions.INITIAL.rules},topState:function(t){return(t=this.conditionStack.length-1-Math.abs(t||0))>=0?this.conditionStack[t]:"INITIAL"},pushState:function(t){this.begin(t)},stateStackSize:function(){return this.conditionStack.length},options:{},performAction:function(t,e,n,r){switch(n){case 0:return this.begin("open_directive"),18;case 1:return 7;case 2:return 8;case 3:return 9;case 4:return 10;case 5:return this.begin("type_directive"),19;case 6:return this.popState(),this.begin("arg_directive"),16;case 7:return this.popState(),this.popState(),21;case 8:return 20;case 9:case 10:break;case 11:return 15;case 12:break;case 13:case 14:return 22;case 15:return this.begin("struct"),39;case 16:return"EOF_IN_STRUCT";case 17:return"OPEN_IN_STRUCT";case 18:return this.popState(),41;case 19:break;case 20:return"MEMBER";case 21:return 37;case 22:return 63;case 23:return 56;case 24:return 57;case 25:return 59;case 26:return 42;case 27:return 43;case 28:this.begin("generic");break;case 29:this.popState();break;case 30:return"GENERICTYPE";case 31:this.begin("string");break;case 32:this.popState();break;case 33:return"STR";case 34:this.begin("bqstring");break;case 35:this.popState();break;case 36:return"BQUOTE_STR";case 37:this.begin("href");break;case 38:this.popState();break;case 39:return 62;case 40:this.begin("callback_name");break;case 41:this.popState();break;case 42:this.popState(),this.begin("callback_args");break;case 43:return 60;case 44:this.popState();break;case 45:return 61;case 46:case 47:case 48:case 49:return 58;case 50:case 51:return 51;case 52:case 53:return 53;case 54:return 52;case 55:return 50;case 56:return 54;case 57:return 55;case 58:return 31;case 59:return 38;case 60:return 75;case 61:return"DOT";case 62:return"PLUS";case 63:return 72;case 64:case 65:return"EQUALS";case 66:return 79;case 67:return"PUNCTUATION";case 68:return 78;case 69:return 77;case 70:return 74;case 71:return 24}},rules:[/^(?:%%\{)/,/^(?:.*direction\s+TB[^\n]*)/,/^(?:.*direction\s+BT[^\n]*)/,/^(?:.*direction\s+RL[^\n]*)/,/^(?:.*direction\s+LR[^\n]*)/,/^(?:((?:(?!\}%%)[^:.])*))/,/^(?::)/,/^(?:\}%%)/,/^(?:((?:(?!\}%%).|\n)*))/,/^(?:%%(?!\{)*[^\n]*(\r?\n?)+)/,/^(?:%%[^\n]*(\r?\n)*)/,/^(?:(\r?\n)+)/,/^(?:\s+)/,/^(?:classDiagram-v2\b)/,/^(?:classDiagram\b)/,/^(?:[{])/,/^(?:$)/,/^(?:[{])/,/^(?:[}])/,/^(?:[\n])/,/^(?:[^{}\n]*)/,/^(?:class\b)/,/^(?:cssClass\b)/,/^(?:callback\b)/,/^(?:link\b)/,/^(?:click\b)/,/^(?:<<)/,/^(?:>>)/,/^(?:[~])/,/^(?:[~])/,/^(?:[^~]*)/,/^(?:["])/,/^(?:["])/,/^(?:[^"]*)/,/^(?:[`])/,/^(?:[`])/,/^(?:[^`]+)/,/^(?:href[\s]+["])/,/^(?:["])/,/^(?:[^"]*)/,/^(?:call[\s]+)/,/^(?:\([\s]*\))/,/^(?:\()/,/^(?:[^(]*)/,/^(?:\))/,/^(?:[^)]*)/,/^(?:_self\b)/,/^(?:_blank\b)/,/^(?:_parent\b)/,/^(?:_top\b)/,/^(?:\s*<\|)/,/^(?:\s*\|>)/,/^(?:\s*>)/,/^(?:\s*<)/,/^(?:\s*\*)/,/^(?:\s*o\b)/,/^(?:--)/,/^(?:\.\.)/,/^(?::{1}[^:\n;]+)/,/^(?::{3})/,/^(?:-)/,/^(?:\.)/,/^(?:\+)/,/^(?:%)/,/^(?:=)/,/^(?:=)/,/^(?:\w+)/,/^(?:[!"#$%&'*+,-.`?\\/])/,/^(?:[0-9]+)/,/^(?:[\u00AA\u00B5\u00BA\u00C0-\u00D6\u00D8-\u00F6]|[\u00F8-\u02C1\u02C6-\u02D1\u02E0-\u02E4\u02EC\u02EE\u0370-\u0374\u0376\u0377]|[\u037A-\u037D\u0386\u0388-\u038A\u038C\u038E-\u03A1\u03A3-\u03F5]|[\u03F7-\u0481\u048A-\u0527\u0531-\u0556\u0559\u0561-\u0587\u05D0-\u05EA]|[\u05F0-\u05F2\u0620-\u064A\u066E\u066F\u0671-\u06D3\u06D5\u06E5\u06E6\u06EE]|[\u06EF\u06FA-\u06FC\u06FF\u0710\u0712-\u072F\u074D-\u07A5\u07B1\u07CA-\u07EA]|[\u07F4\u07F5\u07FA\u0800-\u0815\u081A\u0824\u0828\u0840-\u0858\u08A0]|[\u08A2-\u08AC\u0904-\u0939\u093D\u0950\u0958-\u0961\u0971-\u0977]|[\u0979-\u097F\u0985-\u098C\u098F\u0990\u0993-\u09A8\u09AA-\u09B0\u09B2]|[\u09B6-\u09B9\u09BD\u09CE\u09DC\u09DD\u09DF-\u09E1\u09F0\u09F1\u0A05-\u0A0A]|[\u0A0F\u0A10\u0A13-\u0A28\u0A2A-\u0A30\u0A32\u0A33\u0A35\u0A36\u0A38\u0A39]|[\u0A59-\u0A5C\u0A5E\u0A72-\u0A74\u0A85-\u0A8D\u0A8F-\u0A91\u0A93-\u0AA8]|[\u0AAA-\u0AB0\u0AB2\u0AB3\u0AB5-\u0AB9\u0ABD\u0AD0\u0AE0\u0AE1\u0B05-\u0B0C]|[\u0B0F\u0B10\u0B13-\u0B28\u0B2A-\u0B30\u0B32\u0B33\u0B35-\u0B39\u0B3D\u0B5C]|[\u0B5D\u0B5F-\u0B61\u0B71\u0B83\u0B85-\u0B8A\u0B8E-\u0B90\u0B92-\u0B95\u0B99]|[\u0B9A\u0B9C\u0B9E\u0B9F\u0BA3\u0BA4\u0BA8-\u0BAA\u0BAE-\u0BB9\u0BD0]|[\u0C05-\u0C0C\u0C0E-\u0C10\u0C12-\u0C28\u0C2A-\u0C33\u0C35-\u0C39\u0C3D]|[\u0C58\u0C59\u0C60\u0C61\u0C85-\u0C8C\u0C8E-\u0C90\u0C92-\u0CA8\u0CAA-\u0CB3]|[\u0CB5-\u0CB9\u0CBD\u0CDE\u0CE0\u0CE1\u0CF1\u0CF2\u0D05-\u0D0C\u0D0E-\u0D10]|[\u0D12-\u0D3A\u0D3D\u0D4E\u0D60\u0D61\u0D7A-\u0D7F\u0D85-\u0D96\u0D9A-\u0DB1]|[\u0DB3-\u0DBB\u0DBD\u0DC0-\u0DC6\u0E01-\u0E30\u0E32\u0E33\u0E40-\u0E46\u0E81]|[\u0E82\u0E84\u0E87\u0E88\u0E8A\u0E8D\u0E94-\u0E97\u0E99-\u0E9F\u0EA1-\u0EA3]|[\u0EA5\u0EA7\u0EAA\u0EAB\u0EAD-\u0EB0\u0EB2\u0EB3\u0EBD\u0EC0-\u0EC4\u0EC6]|[\u0EDC-\u0EDF\u0F00\u0F40-\u0F47\u0F49-\u0F6C\u0F88-\u0F8C\u1000-\u102A]|[\u103F\u1050-\u1055\u105A-\u105D\u1061\u1065\u1066\u106E-\u1070\u1075-\u1081]|[\u108E\u10A0-\u10C5\u10C7\u10CD\u10D0-\u10FA\u10FC-\u1248\u124A-\u124D]|[\u1250-\u1256\u1258\u125A-\u125D\u1260-\u1288\u128A-\u128D\u1290-\u12B0]|[\u12B2-\u12B5\u12B8-\u12BE\u12C0\u12C2-\u12C5\u12C8-\u12D6\u12D8-\u1310]|[\u1312-\u1315\u1318-\u135A\u1380-\u138F\u13A0-\u13F4\u1401-\u166C]|[\u166F-\u167F\u1681-\u169A\u16A0-\u16EA\u1700-\u170C\u170E-\u1711]|[\u1720-\u1731\u1740-\u1751\u1760-\u176C\u176E-\u1770\u1780-\u17B3\u17D7]|[\u17DC\u1820-\u1877\u1880-\u18A8\u18AA\u18B0-\u18F5\u1900-\u191C]|[\u1950-\u196D\u1970-\u1974\u1980-\u19AB\u19C1-\u19C7\u1A00-\u1A16]|[\u1A20-\u1A54\u1AA7\u1B05-\u1B33\u1B45-\u1B4B\u1B83-\u1BA0\u1BAE\u1BAF]|[\u1BBA-\u1BE5\u1C00-\u1C23\u1C4D-\u1C4F\u1C5A-\u1C7D\u1CE9-\u1CEC]|[\u1CEE-\u1CF1\u1CF5\u1CF6\u1D00-\u1DBF\u1E00-\u1F15\u1F18-\u1F1D]|[\u1F20-\u1F45\u1F48-\u1F4D\u1F50-\u1F57\u1F59\u1F5B\u1F5D\u1F5F-\u1F7D]|[\u1F80-\u1FB4\u1FB6-\u1FBC\u1FBE\u1FC2-\u1FC4\u1FC6-\u1FCC\u1FD0-\u1FD3]|[\u1FD6-\u1FDB\u1FE0-\u1FEC\u1FF2-\u1FF4\u1FF6-\u1FFC\u2071\u207F]|[\u2090-\u209C\u2102\u2107\u210A-\u2113\u2115\u2119-\u211D\u2124\u2126\u2128]|[\u212A-\u212D\u212F-\u2139\u213C-\u213F\u2145-\u2149\u214E\u2183\u2184]|[\u2C00-\u2C2E\u2C30-\u2C5E\u2C60-\u2CE4\u2CEB-\u2CEE\u2CF2\u2CF3]|[\u2D00-\u2D25\u2D27\u2D2D\u2D30-\u2D67\u2D6F\u2D80-\u2D96\u2DA0-\u2DA6]|[\u2DA8-\u2DAE\u2DB0-\u2DB6\u2DB8-\u2DBE\u2DC0-\u2DC6\u2DC8-\u2DCE]|[\u2DD0-\u2DD6\u2DD8-\u2DDE\u2E2F\u3005\u3006\u3031-\u3035\u303B\u303C]|[\u3041-\u3096\u309D-\u309F\u30A1-\u30FA\u30FC-\u30FF\u3105-\u312D]|[\u3131-\u318E\u31A0-\u31BA\u31F0-\u31FF\u3400-\u4DB5\u4E00-\u9FCC]|[\uA000-\uA48C\uA4D0-\uA4FD\uA500-\uA60C\uA610-\uA61F\uA62A\uA62B]|[\uA640-\uA66E\uA67F-\uA697\uA6A0-\uA6E5\uA717-\uA71F\uA722-\uA788]|[\uA78B-\uA78E\uA790-\uA793\uA7A0-\uA7AA\uA7F8-\uA801\uA803-\uA805]|[\uA807-\uA80A\uA80C-\uA822\uA840-\uA873\uA882-\uA8B3\uA8F2-\uA8F7\uA8FB]|[\uA90A-\uA925\uA930-\uA946\uA960-\uA97C\uA984-\uA9B2\uA9CF\uAA00-\uAA28]|[\uAA40-\uAA42\uAA44-\uAA4B\uAA60-\uAA76\uAA7A\uAA80-\uAAAF\uAAB1\uAAB5]|[\uAAB6\uAAB9-\uAABD\uAAC0\uAAC2\uAADB-\uAADD\uAAE0-\uAAEA\uAAF2-\uAAF4]|[\uAB01-\uAB06\uAB09-\uAB0E\uAB11-\uAB16\uAB20-\uAB26\uAB28-\uAB2E]|[\uABC0-\uABE2\uAC00-\uD7A3\uD7B0-\uD7C6\uD7CB-\uD7FB\uF900-\uFA6D]|[\uFA70-\uFAD9\uFB00-\uFB06\uFB13-\uFB17\uFB1D\uFB1F-\uFB28\uFB2A-\uFB36]|[\uFB38-\uFB3C\uFB3E\uFB40\uFB41\uFB43\uFB44\uFB46-\uFBB1\uFBD3-\uFD3D]|[\uFD50-\uFD8F\uFD92-\uFDC7\uFDF0-\uFDFB\uFE70-\uFE74\uFE76-\uFEFC]|[\uFF21-\uFF3A\uFF41-\uFF5A\uFF66-\uFFBE\uFFC2-\uFFC7\uFFCA-\uFFCF]|[\uFFD2-\uFFD7\uFFDA-\uFFDC])/,/^(?:\s)/,/^(?:$)/],conditions:{arg_directive:{rules:[7,8],inclusive:!1},type_directive:{rules:[6,7],inclusive:!1},open_directive:{rules:[5],inclusive:!1},callback_args:{rules:[44,45],inclusive:!1},callback_name:{rules:[41,42,43],inclusive:!1},href:{rules:[38,39],inclusive:!1},struct:{rules:[16,17,18,19,20],inclusive:!1},generic:{rules:[29,30],inclusive:!1},bqstring:{rules:[35,36],inclusive:!1},string:{rules:[32,33],inclusive:!1},INITIAL:{rules:[0,1,2,3,4,9,10,11,12,13,14,15,21,22,23,24,25,26,27,28,31,34,37,40,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70,71],inclusive:!0}}};function P(){this.yy={}}return R.lexer=F,P.prototype=R,R.Parser=P,new P}();e.parser=i,e.Parser=i.Parser,e.parse=function(){return i.parse.apply(i,arguments)},e.main=function(r){r[1]||(console.log("Usage: "+r[0]+" FILE"),t.exit(1));var i=n(17).readFileSync(n(18).normalize(r[1]),"utf8");return e.parser.parse(i)},n.c[n.s]===r&&e.main(t.argv.slice(1))}).call(this,n(12),n(7)(t))},function(t,e){},function(t,e,n){(function(t){function n(t,e){for(var n=0,r=t.length-1;r>=0;r--){var i=t[r];"."===i?t.splice(r,1):".."===i?(t.splice(r,1),n++):n&&(t.splice(r,1),n--)}if(e)for(;n--;n)t.unshift("..");return t}function r(t,e){if(t.filter)return t.filter(e);for(var n=[],r=0;r<t.length;r++)e(t[r],r,t)&&n.push(t[r]);return n}e.resolve=function(){for(var e="",i=!1,a=arguments.length-1;a>=-1&&!i;a--){var o=a>=0?arguments[a]:t.cwd();if("string"!=typeof o)throw new TypeError("Arguments to path.resolve must be strings");o&&(e=o+"/"+e,i="/"===o.charAt(0))}return(i?"/":"")+(e=n(r(e.split("/"),(function(t){return!!t})),!i).join("/"))||"."},e.normalize=function(t){var a=e.isAbsolute(t),o="/"===i(t,-1);return(t=n(r(t.split("/"),(function(t){return!!t})),!a).join("/"))||a||(t="."),t&&o&&(t+="/"),(a?"/":"")+t},e.isAbsolute=function(t){return"/"===t.charAt(0)},e.join=function(){var t=Array.prototype.slice.call(arguments,0);return e.normalize(r(t,(function(t,e){if("string"!=typeof t)throw new TypeError("Arguments to path.join must be strings");return t})).join("/"))},e.relative=function(t,n){function r(t){for(var e=0;e<t.length&&""===t[e];e++);for(var n=t.length-1;n>=0&&""===t[n];n--);return e>n?[]:t.slice(e,n-e+1)}t=e.resolve(t).substr(1),n=e.resolve(n).substr(1);for(var i=r(t.split("/")),a=r(n.split("/")),o=Math.min(i.length,a.length),s=o,c=0;c<o;c++)if(i[c]!==a[c]){s=c;break}var u=[];for(c=s;c<i.length;c++)u.push("..");return(u=u.concat(a.slice(s))).join("/")},e.sep="/",e.delimiter=":",e.dirname=function(t){if("string"!=typeof t&&(t+=""),0===t.length)return".";for(var e=t.charCodeAt(0),n=47===e,r=-1,i=!0,a=t.length-1;a>=1;--a)if(47===(e=t.charCodeAt(a))){if(!i){r=a;break}}else i=!1;return-1===r?n?"/":".":n&&1===r?"/":t.slice(0,r)},e.basename=function(t,e){var n=function(t){"string"!=typeof t&&(t+="");var e,n=0,r=-1,i=!0;for(e=t.length-1;e>=0;--e)if(47===t.charCodeAt(e)){if(!i){n=e+1;break}}else-1===r&&(i=!1,r=e+1);return-1===r?"":t.slice(n,r)}(t);return e&&n.substr(-1*e.length)===e&&(n=n.substr(0,n.length-e.length)),n},e.extname=function(t){"string"!=typeof t&&(t+="");for(var e=-1,n=0,r=-1,i=!0,a=0,o=t.length-1;o>=0;--o){var s=t.charCodeAt(o);if(47!==s)-1===r&&(i=!1,r=o+1),46===s?-1===e?e=o:1!==a&&(a=1):-1!==e&&(a=-1);else if(!i){n=o+1;break}}return-1===e||-1===r||0===a||1===a&&e===r-1&&e===n+1?"":t.slice(e,r)};var i="b"==="ab".substr(-1)?function(t,e,n){return t.substr(e,n)}:function(t,e,n){return e<0&&(e=t.length+e),t.substr(e,n)}}).call(this,n(12))},function(t,e,n){var r=n(109),i="object"==typeof self&&self&&self.Object===Object&&self,a=r||i||Function("return this")();t.exports=a},function(t,e,n){var r;try{r=n(3)}catch(t){}r||(r=window.graphlib),t.exports=r},function(t,e){t.exports=function(t){return null!=t&&"object"==typeof t}},function(t,e,n){(function(t,r){var i=function(){var t=function(t,e,n,r){for(n=n||{},r=t.length;r--;n[t[r]]=e);return n},e=[1,2],n=[1,3],r=[1,5],i=[1,7],a=[2,5],o=[1,15],s=[1,17],c=[1,19],u=[1,20],l=[1,21],h=[1,22],f=[1,30],d=[1,23],p=[1,24],y=[1,25],g=[1,26],m=[1,27],v=[1,32],b=[1,33],x=[1,34],_=[1,35],k=[1,31],w=[1,38],T=[1,4,5,14,15,17,19,20,22,23,24,25,26,27,36,37,38,39,42,45],E=[1,4,5,12,13,14,15,17,19,20,22,23,24,25,26,27,36,37,38,39,42,45],C=[1,4,5,7,14,15,17,19,20,22,23,24,25,26,27,36,37,38,39,42,45],S=[4,5,14,15,17,19,20,22,23,24,25,26,27,36,37,38,39,42,45],A={trace:function(){},yy:{},symbols_:{error:2,start:3,SPACE:4,NL:5,directive:6,SD:7,document:8,line:9,statement:10,idStatement:11,DESCR:12,"--\x3e":13,HIDE_EMPTY:14,scale:15,WIDTH:16,COMPOSIT_STATE:17,STRUCT_START:18,STRUCT_STOP:19,STATE_DESCR:20,AS:21,ID:22,FORK:23,JOIN:24,CHOICE:25,CONCURRENT:26,note:27,notePosition:28,NOTE_TEXT:29,direction:30,openDirective:31,typeDirective:32,closeDirective:33,":":34,argDirective:35,direction_tb:36,direction_bt:37,direction_rl:38,direction_lr:39,eol:40,";":41,EDGE_STATE:42,left_of:43,right_of:44,open_directive:45,type_directive:46,arg_directive:47,close_directive:48,$accept:0,$end:1},terminals_:{2:"error",4:"SPACE",5:"NL",7:"SD",12:"DESCR",13:"--\x3e",14:"HIDE_EMPTY",15:"scale",16:"WIDTH",17:"COMPOSIT_STATE",18:"STRUCT_START",19:"STRUCT_STOP",20:"STATE_DESCR",21:"AS",22:"ID",23:"FORK",24:"JOIN",25:"CHOICE",26:"CONCURRENT",27:"note",29:"NOTE_TEXT",34:":",36:"direction_tb",37:"direction_bt",38:"direction_rl",39:"direction_lr",41:";",42:"EDGE_STATE",43:"left_of",44:"right_of",45:"open_directive",46:"type_directive",47:"arg_directive",48:"close_directive"},productions_:[0,[3,2],[3,2],[3,2],[3,2],[8,0],[8,2],[9,2],[9,1],[9,1],[10,1],[10,2],[10,3],[10,4],[10,1],[10,2],[10,1],[10,4],[10,3],[10,6],[10,1],[10,1],[10,1],[10,1],[10,4],[10,4],[10,1],[10,1],[6,3],[6,5],[30,1],[30,1],[30,1],[30,1],[40,1],[40,1],[11,1],[11,1],[28,1],[28,1],[31,1],[32,1],[35,1],[33,1]],performAction:function(t,e,n,r,i,a,o){var s=a.length-1;switch(i){case 4:return r.setRootDoc(a[s]),a[s];case 5:this.$=[];break;case 6:"nl"!=a[s]&&(a[s-1].push(a[s]),this.$=a[s-1]);break;case 7:case 8:this.$=a[s];break;case 9:this.$="nl";break;case 10:this.$={stmt:"state",id:a[s],type:"default",description:""};break;case 11:this.$={stmt:"state",id:a[s-1],type:"default",description:r.trimColon(a[s])};break;case 12:this.$={stmt:"relation",state1:{stmt:"state",id:a[s-2],type:"default",description:""},state2:{stmt:"state",id:a[s],type:"default",description:""}};break;case 13:this.$={stmt:"relation",state1:{stmt:"state",id:a[s-3],type:"default",description:""},state2:{stmt:"state",id:a[s-1],type:"default",description:""},description:a[s].substr(1).trim()};break;case 17:this.$={stmt:"state",id:a[s-3],type:"default",description:"",doc:a[s-1]};break;case 18:var c=a[s],u=a[s-2].trim();if(a[s].match(":")){var l=a[s].split(":");c=l[0],u=[u,l[1]]}this.$={stmt:"state",id:c,type:"default",description:u};break;case 19:this.$={stmt:"state",id:a[s-3],type:"default",description:a[s-5],doc:a[s-1]};break;case 20:this.$={stmt:"state",id:a[s],type:"fork"};break;case 21:this.$={stmt:"state",id:a[s],type:"join"};break;case 22:this.$={stmt:"state",id:a[s],type:"choice"};break;case 23:this.$={stmt:"state",id:r.getDividerId(),type:"divider"};break;case 24:this.$={stmt:"state",id:a[s-1].trim(),note:{position:a[s-2].trim(),text:a[s].trim()}};break;case 30:r.setDirection("TB"),this.$={stmt:"dir",value:"TB"};break;case 31:r.setDirection("BT"),this.$={stmt:"dir",value:"BT"};break;case 32:r.setDirection("RL"),this.$={stmt:"dir",value:"RL"};break;case 33:r.setDirection("LR"),this.$={stmt:"dir",value:"LR"};break;case 36:case 37:this.$=a[s];break;case 40:r.parseDirective("%%{","open_directive");break;case 41:r.parseDirective(a[s],"type_directive");break;case 42:a[s]=a[s].trim().replace(/'/g,'"'),r.parseDirective(a[s],"arg_directive");break;case 43:r.parseDirective("}%%","close_directive","state")}},table:[{3:1,4:e,5:n,6:4,7:r,31:6,45:i},{1:[3]},{3:8,4:e,5:n,6:4,7:r,31:6,45:i},{3:9,4:e,5:n,6:4,7:r,31:6,45:i},{3:10,4:e,5:n,6:4,7:r,31:6,45:i},t([1,4,5,14,15,17,20,22,23,24,25,26,27,36,37,38,39,42,45],a,{8:11}),{32:12,46:[1,13]},{46:[2,40]},{1:[2,1]},{1:[2,2]},{1:[2,3]},{1:[2,4],4:o,5:s,6:28,9:14,10:16,11:18,14:c,15:u,17:l,20:h,22:f,23:d,24:p,25:y,26:g,27:m,30:29,31:6,36:v,37:b,38:x,39:_,42:k,45:i},{33:36,34:[1,37],48:w},t([34,48],[2,41]),t(T,[2,6]),{6:28,10:39,11:18,14:c,15:u,17:l,20:h,22:f,23:d,24:p,25:y,26:g,27:m,30:29,31:6,36:v,37:b,38:x,39:_,42:k,45:i},t(T,[2,8]),t(T,[2,9]),t(T,[2,10],{12:[1,40],13:[1,41]}),t(T,[2,14]),{16:[1,42]},t(T,[2,16],{18:[1,43]}),{21:[1,44]},t(T,[2,20]),t(T,[2,21]),t(T,[2,22]),t(T,[2,23]),{28:45,29:[1,46],43:[1,47],44:[1,48]},t(T,[2,26]),t(T,[2,27]),t(E,[2,36]),t(E,[2,37]),t(T,[2,30]),t(T,[2,31]),t(T,[2,32]),t(T,[2,33]),t(C,[2,28]),{35:49,47:[1,50]},t(C,[2,43]),t(T,[2,7]),t(T,[2,11]),{11:51,22:f,42:k},t(T,[2,15]),t(S,a,{8:52}),{22:[1,53]},{22:[1,54]},{21:[1,55]},{22:[2,38]},{22:[2,39]},{33:56,48:w},{48:[2,42]},t(T,[2,12],{12:[1,57]}),{4:o,5:s,6:28,9:14,10:16,11:18,14:c,15:u,17:l,19:[1,58],20:h,22:f,23:d,24:p,25:y,26:g,27:m,30:29,31:6,36:v,37:b,38:x,39:_,42:k,45:i},t(T,[2,18],{18:[1,59]}),{29:[1,60]},{22:[1,61]},t(C,[2,29]),t(T,[2,13]),t(T,[2,17]),t(S,a,{8:62}),t(T,[2,24]),t(T,[2,25]),{4:o,5:s,6:28,9:14,10:16,11:18,14:c,15:u,17:l,19:[1,63],20:h,22:f,23:d,24:p,25:y,26:g,27:m,30:29,31:6,36:v,37:b,38:x,39:_,42:k,45:i},t(T,[2,19])],defaultActions:{7:[2,40],8:[2,1],9:[2,2],10:[2,3],47:[2,38],48:[2,39],50:[2,42]},parseError:function(t,e){if(!e.recoverable){var n=new Error(t);throw n.hash=e,n}this.trace(t)},parse:function(t){var e=this,n=[0],r=[],i=[null],a=[],o=this.table,s="",c=0,u=0,l=0,h=2,f=1,d=a.slice.call(arguments,1),p=Object.create(this.lexer),y={yy:{}};for(var g in this.yy)Object.prototype.hasOwnProperty.call(this.yy,g)&&(y.yy[g]=this.yy[g]);p.setInput(t,y.yy),y.yy.lexer=p,y.yy.parser=this,void 0===p.yylloc&&(p.yylloc={});var m=p.yylloc;a.push(m);var v=p.options&&p.options.ranges;function b(){var t;return"number"!=typeof(t=r.pop()||p.lex()||f)&&(t instanceof Array&&(t=(r=t).pop()),t=e.symbols_[t]||t),t}"function"==typeof y.yy.parseError?this.parseError=y.yy.parseError:this.parseError=Object.getPrototypeOf(this).parseError;for(var x,_,k,w,T,E,C,S,A,M={};;){if(k=n[n.length-1],this.defaultActions[k]?w=this.defaultActions[k]:(null==x&&(x=b()),w=o[k]&&o[k][x]),void 0===w||!w.length||!w[0]){var O="";for(E in A=[],o[k])this.terminals_[E]&&E>h&&A.push("'"+this.terminals_[E]+"'");O=p.showPosition?"Parse error on line "+(c+1)+":\n"+p.showPosition()+"\nExpecting "+A.join(", ")+", got '"+(this.terminals_[x]||x)+"'":"Parse error on line "+(c+1)+": Unexpected "+(x==f?"end of input":"'"+(this.terminals_[x]||x)+"'"),this.parseError(O,{text:p.match,token:this.terminals_[x]||x,line:p.yylineno,loc:m,expected:A})}if(w[0]instanceof Array&&w.length>1)throw new Error("Parse Error: multiple actions possible at state: "+k+", token: "+x);switch(w[0]){case 1:n.push(x),i.push(p.yytext),a.push(p.yylloc),n.push(w[1]),x=null,_?(x=_,_=null):(u=p.yyleng,s=p.yytext,c=p.yylineno,m=p.yylloc,l>0&&l--);break;case 2:if(C=this.productions_[w[1]][1],M.$=i[i.length-C],M._$={first_line:a[a.length-(C||1)].first_line,last_line:a[a.length-1].last_line,first_column:a[a.length-(C||1)].first_column,last_column:a[a.length-1].last_column},v&&(M._$.range=[a[a.length-(C||1)].range[0],a[a.length-1].range[1]]),void 0!==(T=this.performAction.apply(M,[s,u,c,y.yy,w[1],i,a].concat(d))))return T;C&&(n=n.slice(0,-1*C*2),i=i.slice(0,-1*C),a=a.slice(0,-1*C)),n.push(this.productions_[w[1]][0]),i.push(M.$),a.push(M._$),S=o[n[n.length-2]][n[n.length-1]],n.push(S);break;case 3:return!0}}return!0}},M={EOF:1,parseError:function(t,e){if(!this.yy.parser)throw new Error(t);this.yy.parser.parseError(t,e)},setInput:function(t,e){return this.yy=e||this.yy||{},this._input=t,this._more=this._backtrack=this.done=!1,this.yylineno=this.yyleng=0,this.yytext=this.matched=this.match="",this.conditionStack=["INITIAL"],this.yylloc={first_line:1,first_column:0,last_line:1,last_column:0},this.options.ranges&&(this.yylloc.range=[0,0]),this.offset=0,this},input:function(){var t=this._input[0];return this.yytext+=t,this.yyleng++,this.offset++,this.match+=t,this.matched+=t,t.match(/(?:\r\n?|\n).*/g)?(this.yylineno++,this.yylloc.last_line++):this.yylloc.last_column++,this.options.ranges&&this.yylloc.range[1]++,this._input=this._input.slice(1),t},unput:function(t){var e=t.length,n=t.split(/(?:\r\n?|\n)/g);this._input=t+this._input,this.yytext=this.yytext.substr(0,this.yytext.length-e),this.offset-=e;var r=this.match.split(/(?:\r\n?|\n)/g);this.match=this.match.substr(0,this.match.length-1),this.matched=this.matched.substr(0,this.matched.length-1),n.length-1&&(this.yylineno-=n.length-1);var i=this.yylloc.range;return this.yylloc={first_line:this.yylloc.first_line,last_line:this.yylineno+1,first_column:this.yylloc.first_column,last_column:n?(n.length===r.length?this.yylloc.first_column:0)+r[r.length-n.length].length-n[0].length:this.yylloc.first_column-e},this.options.ranges&&(this.yylloc.range=[i[0],i[0]+this.yyleng-e]),this.yyleng=this.yytext.length,this},more:function(){return this._more=!0,this},reject:function(){return this.options.backtrack_lexer?(this._backtrack=!0,this):this.parseError("Lexical error on line "+(this.yylineno+1)+". You can only invoke reject() in the lexer when the lexer is of the backtracking persuasion (options.backtrack_lexer = true).\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},less:function(t){this.unput(this.match.slice(t))},pastInput:function(){var t=this.matched.substr(0,this.matched.length-this.match.length);return(t.length>20?"...":"")+t.substr(-20).replace(/\n/g,"")},upcomingInput:function(){var t=this.match;return t.length<20&&(t+=this._input.substr(0,20-t.length)),(t.substr(0,20)+(t.length>20?"...":"")).replace(/\n/g,"")},showPosition:function(){var t=this.pastInput(),e=new Array(t.length+1).join("-");return t+this.upcomingInput()+"\n"+e+"^"},test_match:function(t,e){var n,r,i;if(this.options.backtrack_lexer&&(i={yylineno:this.yylineno,yylloc:{first_line:this.yylloc.first_line,last_line:this.last_line,first_column:this.yylloc.first_column,last_column:this.yylloc.last_column},yytext:this.yytext,match:this.match,matches:this.matches,matched:this.matched,yyleng:this.yyleng,offset:this.offset,_more:this._more,_input:this._input,yy:this.yy,conditionStack:this.conditionStack.slice(0),done:this.done},this.options.ranges&&(i.yylloc.range=this.yylloc.range.slice(0))),(r=t[0].match(/(?:\r\n?|\n).*/g))&&(this.yylineno+=r.length),this.yylloc={first_line:this.yylloc.last_line,last_line:this.yylineno+1,first_column:this.yylloc.last_column,last_column:r?r[r.length-1].length-r[r.length-1].match(/\r?\n?/)[0].length:this.yylloc.last_column+t[0].length},this.yytext+=t[0],this.match+=t[0],this.matches=t,this.yyleng=this.yytext.length,this.options.ranges&&(this.yylloc.range=[this.offset,this.offset+=this.yyleng]),this._more=!1,this._backtrack=!1,this._input=this._input.slice(t[0].length),this.matched+=t[0],n=this.performAction.call(this,this.yy,this,e,this.conditionStack[this.conditionStack.length-1]),this.done&&this._input&&(this.done=!1),n)return n;if(this._backtrack){for(var a in i)this[a]=i[a];return!1}return!1},next:function(){if(this.done)return this.EOF;var t,e,n,r;this._input||(this.done=!0),this._more||(this.yytext="",this.match="");for(var i=this._currentRules(),a=0;a<i.length;a++)if((n=this._input.match(this.rules[i[a]]))&&(!e||n[0].length>e[0].length)){if(e=n,r=a,this.options.backtrack_lexer){if(!1!==(t=this.test_match(n,i[a])))return t;if(this._backtrack){e=!1;continue}return!1}if(!this.options.flex)break}return e?!1!==(t=this.test_match(e,i[r]))&&t:""===this._input?this.EOF:this.parseError("Lexical error on line "+(this.yylineno+1)+". Unrecognized text.\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},lex:function(){var t=this.next();return t||this.lex()},begin:function(t){this.conditionStack.push(t)},popState:function(){return this.conditionStack.length-1>0?this.conditionStack.pop():this.conditionStack[0]},_currentRules:function(){return this.conditionStack.length&&this.conditionStack[this.conditionStack.length-1]?this.conditions[this.conditionStack[this.conditionStack.length-1]].rules:this.conditions.INITIAL.rules},topState:function(t){return(t=this.conditionStack.length-1-Math.abs(t||0))>=0?this.conditionStack[t]:"INITIAL"},pushState:function(t){this.begin(t)},stateStackSize:function(){return this.conditionStack.length},options:{"case-insensitive":!0},performAction:function(t,e,n,r){switch(n){case 0:return 36;case 1:return 37;case 2:return 38;case 3:return 39;case 4:return this.begin("open_directive"),45;case 5:return this.begin("type_directive"),46;case 6:return this.popState(),this.begin("arg_directive"),34;case 7:return this.popState(),this.popState(),48;case 8:return 47;case 9:case 10:break;case 11:return 5;case 12:case 13:case 14:case 15:break;case 16:return this.pushState("SCALE"),15;case 17:return 16;case 18:this.popState();break;case 19:this.pushState("STATE");break;case 20:return this.popState(),e.yytext=e.yytext.slice(0,-8).trim(),23;case 21:return this.popState(),e.yytext=e.yytext.slice(0,-8).trim(),24;case 22:return this.popState(),e.yytext=e.yytext.slice(0,-10).trim(),25;case 23:return this.popState(),e.yytext=e.yytext.slice(0,-8).trim(),23;case 24:return this.popState(),e.yytext=e.yytext.slice(0,-8).trim(),24;case 25:return this.popState(),e.yytext=e.yytext.slice(0,-10).trim(),25;case 26:return 36;case 27:return 37;case 28:return 38;case 29:return 39;case 30:this.begin("STATE_STRING");break;case 31:return this.popState(),this.pushState("STATE_ID"),"AS";case 32:return this.popState(),"ID";case 33:this.popState();break;case 34:return"STATE_DESCR";case 35:return 17;case 36:this.popState();break;case 37:return this.popState(),this.pushState("struct"),18;case 38:return this.popState(),19;case 39:break;case 40:return this.begin("NOTE"),27;case 41:return this.popState(),this.pushState("NOTE_ID"),43;case 42:return this.popState(),this.pushState("NOTE_ID"),44;case 43:this.popState(),this.pushState("FLOATING_NOTE");break;case 44:return this.popState(),this.pushState("FLOATING_NOTE_ID"),"AS";case 45:break;case 46:return"NOTE_TEXT";case 47:return this.popState(),"ID";case 48:return this.popState(),this.pushState("NOTE_TEXT"),22;case 49:return this.popState(),e.yytext=e.yytext.substr(2).trim(),29;case 50:return this.popState(),e.yytext=e.yytext.slice(0,-8).trim(),29;case 51:case 52:return 7;case 53:return 14;case 54:return 42;case 55:return 22;case 56:return e.yytext=e.yytext.trim(),12;case 57:return 13;case 58:return 26;case 59:return 5;case 60:return"INVALID"}},rules:[/^(?:.*direction\s+TB[^\n]*)/i,/^(?:.*direction\s+BT[^\n]*)/i,/^(?:.*direction\s+RL[^\n]*)/i,/^(?:.*direction\s+LR[^\n]*)/i,/^(?:%%\{)/i,/^(?:((?:(?!\}%%)[^:.])*))/i,/^(?::)/i,/^(?:\}%%)/i,/^(?:((?:(?!\}%%).|\n)*))/i,/^(?:%%(?!\{)[^\n]*)/i,/^(?:[^\}]%%[^\n]*)/i,/^(?:[\n]+)/i,/^(?:[\s]+)/i,/^(?:((?!\n)\s)+)/i,/^(?:#[^\n]*)/i,/^(?:%[^\n]*)/i,/^(?:scale\s+)/i,/^(?:\d+)/i,/^(?:\s+width\b)/i,/^(?:state\s+)/i,/^(?:.*<<fork>>)/i,/^(?:.*<<join>>)/i,/^(?:.*<<choice>>)/i,/^(?:.*\[\[fork\]\])/i,/^(?:.*\[\[join\]\])/i,/^(?:.*\[\[choice\]\])/i,/^(?:.*direction\s+TB[^\n]*)/i,/^(?:.*direction\s+BT[^\n]*)/i,/^(?:.*direction\s+RL[^\n]*)/i,/^(?:.*direction\s+LR[^\n]*)/i,/^(?:["])/i,/^(?:\s*as\s+)/i,/^(?:[^\n\{]*)/i,/^(?:["])/i,/^(?:[^"]*)/i,/^(?:[^\n\s\{]+)/i,/^(?:\n)/i,/^(?:\{)/i,/^(?:\})/i,/^(?:[\n])/i,/^(?:note\s+)/i,/^(?:left of\b)/i,/^(?:right of\b)/i,/^(?:")/i,/^(?:\s*as\s*)/i,/^(?:["])/i,/^(?:[^"]*)/i,/^(?:[^\n]*)/i,/^(?:\s*[^:\n\s\-]+)/i,/^(?:\s*:[^:\n;]+)/i,/^(?:[\s\S]*?end note\b)/i,/^(?:stateDiagram\s+)/i,/^(?:stateDiagram-v2\s+)/i,/^(?:hide empty description\b)/i,/^(?:\[\*\])/i,/^(?:[^:\n\s\-\{]+)/i,/^(?:\s*:[^:\n;]+)/i,/^(?:-->)/i,/^(?:--)/i,/^(?:$)/i,/^(?:.)/i],conditions:{LINE:{rules:[13,14],inclusive:!1},close_directive:{rules:[13,14],inclusive:!1},arg_directive:{rules:[7,8,13,14],inclusive:!1},type_directive:{rules:[6,7,13,14],inclusive:!1},open_directive:{rules:[5,13,14],inclusive:!1},struct:{rules:[13,14,19,26,27,28,29,38,39,40,54,55,56,57,58],inclusive:!1},FLOATING_NOTE_ID:{rules:[47],inclusive:!1},FLOATING_NOTE:{rules:[44,45,46],inclusive:!1},NOTE_TEXT:{rules:[49,50],inclusive:!1},NOTE_ID:{rules:[48],inclusive:!1},NOTE:{rules:[41,42,43],inclusive:!1},SCALE:{rules:[17,18],inclusive:!1},ALIAS:{rules:[],inclusive:!1},STATE_ID:{rules:[32],inclusive:!1},STATE_STRING:{rules:[33,34],inclusive:!1},FORK_STATE:{rules:[],inclusive:!1},STATE:{rules:[13,14,20,21,22,23,24,25,30,31,35,36,37],inclusive:!1},ID:{rules:[13,14],inclusive:!1},INITIAL:{rules:[0,1,2,3,4,9,10,11,12,14,15,16,19,37,40,51,52,53,54,55,56,57,59,60],inclusive:!0}}};function O(){this.yy={}}return A.lexer=M,O.prototype=A,A.Parser=O,new O}();e.parser=i,e.Parser=i.Parser,e.parse=function(){return i.parse.apply(i,arguments)},e.main=function(r){r[1]||(console.log("Usage: "+r[0]+" FILE"),t.exit(1));var i=n(17).readFileSync(n(18).normalize(r[1]),"utf8");return e.parser.parse(i)},n.c[n.s]===r&&e.main(t.argv.slice(1))}).call(this,n(12),n(7)(t))},function(t,e,n){(function(t){t.exports=function(){"use strict";var e,r;function i(){return e.apply(null,arguments)}function a(t){return t instanceof Array||"[object Array]"===Object.prototype.toString.call(t)}function o(t){return null!=t&&"[object Object]"===Object.prototype.toString.call(t)}function s(t){return void 0===t}function c(t){return"number"==typeof t||"[object Number]"===Object.prototype.toString.call(t)}function u(t){return t instanceof Date||"[object Date]"===Object.prototype.toString.call(t)}function l(t,e){var n,r=[];for(n=0;n<t.length;++n)r.push(e(t[n],n));return r}function h(t,e){return Object.prototype.hasOwnProperty.call(t,e)}function f(t,e){for(var n in e)h(e,n)&&(t[n]=e[n]);return h(e,"toString")&&(t.toString=e.toString),h(e,"valueOf")&&(t.valueOf=e.valueOf),t}function d(t,e,n,r){return be(t,e,n,r,!0).utc()}function p(t){return null==t._pf&&(t._pf={empty:!1,unusedTokens:[],unusedInput:[],overflow:-2,charsLeftOver:0,nullInput:!1,invalidMonth:null,invalidFormat:!1,userInvalidated:!1,iso:!1,parsedDateParts:[],meridiem:null,rfc2822:!1,weekdayMismatch:!1}),t._pf}function y(t){if(null==t._isValid){var e=p(t),n=r.call(e.parsedDateParts,(function(t){return null!=t})),i=!isNaN(t._d.getTime())&&e.overflow<0&&!e.empty&&!e.invalidMonth&&!e.invalidWeekday&&!e.weekdayMismatch&&!e.nullInput&&!e.invalidFormat&&!e.userInvalidated&&(!e.meridiem||e.meridiem&&n);if(t._strict&&(i=i&&0===e.charsLeftOver&&0===e.unusedTokens.length&&void 0===e.bigHour),null!=Object.isFrozen&&Object.isFrozen(t))return i;t._isValid=i}return t._isValid}function g(t){var e=d(NaN);return null!=t?f(p(e),t):p(e).userInvalidated=!0,e}r=Array.prototype.some?Array.prototype.some:function(t){for(var e=Object(this),n=e.length>>>0,r=0;r<n;r++)if(r in e&&t.call(this,e[r],r,e))return!0;return!1};var m=i.momentProperties=[];function v(t,e){var n,r,i;if(s(e._isAMomentObject)||(t._isAMomentObject=e._isAMomentObject),s(e._i)||(t._i=e._i),s(e._f)||(t._f=e._f),s(e._l)||(t._l=e._l),s(e._strict)||(t._strict=e._strict),s(e._tzm)||(t._tzm=e._tzm),s(e._isUTC)||(t._isUTC=e._isUTC),s(e._offset)||(t._offset=e._offset),s(e._pf)||(t._pf=p(e)),s(e._locale)||(t._locale=e._locale),0<m.length)for(n=0;n<m.length;n++)s(i=e[r=m[n]])||(t[r]=i);return t}var b=!1;function x(t){v(this,t),this._d=new Date(null!=t._d?t._d.getTime():NaN),this.isValid()||(this._d=new Date(NaN)),!1===b&&(b=!0,i.updateOffset(this),b=!1)}function _(t){return t instanceof x||null!=t&&null!=t._isAMomentObject}function k(t){return t<0?Math.ceil(t)||0:Math.floor(t)}function w(t){var e=+t,n=0;return 0!==e&&isFinite(e)&&(n=k(e)),n}function T(t,e,n){var r,i=Math.min(t.length,e.length),a=Math.abs(t.length-e.length),o=0;for(r=0;r<i;r++)(n&&t[r]!==e[r]||!n&&w(t[r])!==w(e[r]))&&o++;return o+a}function E(t){!1===i.suppressDeprecationWarnings&&"undefined"!=typeof console&&console.warn&&console.warn("Deprecation warning: "+t)}function C(t,e){var n=!0;return f((function(){if(null!=i.deprecationHandler&&i.deprecationHandler(null,t),n){for(var r,a=[],o=0;o<arguments.length;o++){if(r="","object"==typeof arguments[o]){for(var s in r+="\n["+o+"] ",arguments[0])r+=s+": "+arguments[0][s]+", ";r=r.slice(0,-2)}else r=arguments[o];a.push(r)}E(t+"\nArguments: "+Array.prototype.slice.call(a).join("")+"\n"+(new Error).stack),n=!1}return e.apply(this,arguments)}),e)}var S,A={};function M(t,e){null!=i.deprecationHandler&&i.deprecationHandler(t,e),A[t]||(E(e),A[t]=!0)}function O(t){return t instanceof Function||"[object Function]"===Object.prototype.toString.call(t)}function N(t,e){var n,r=f({},t);for(n in e)h(e,n)&&(o(t[n])&&o(e[n])?(r[n]={},f(r[n],t[n]),f(r[n],e[n])):null!=e[n]?r[n]=e[n]:delete r[n]);for(n in t)h(t,n)&&!h(e,n)&&o(t[n])&&(r[n]=f({},r[n]));return r}function B(t){null!=t&&this.set(t)}i.suppressDeprecationWarnings=!1,i.deprecationHandler=null,S=Object.keys?Object.keys:function(t){var e,n=[];for(e in t)h(t,e)&&n.push(e);return n};var D={};function L(t,e){var n=t.toLowerCase();D[n]=D[n+"s"]=D[e]=t}function I(t){return"string"==typeof t?D[t]||D[t.toLowerCase()]:void 0}function R(t){var e,n,r={};for(n in t)h(t,n)&&(e=I(n))&&(r[e]=t[n]);return r}var F={};function P(t,e){F[t]=e}function j(t,e,n){var r=""+Math.abs(t),i=e-r.length;return(0<=t?n?"+":"":"-")+Math.pow(10,Math.max(0,i)).toString().substr(1)+r}var Y=/(\[[^\[]*\])|(\\)?([Hh]mm(ss)?|Mo|MM?M?M?|Do|DDDo|DD?D?D?|ddd?d?|do?|w[o|w]?|W[o|W]?|Qo?|YYYYYY|YYYYY|YYYY|YY|gg(ggg?)?|GG(GGG?)?|e|E|a|A|hh?|HH?|kk?|mm?|ss?|S{1,9}|x|X|zz?|ZZ?|.)/g,z=/(\[[^\[]*\])|(\\)?(LTS|LT|LL?L?L?|l{1,4})/g,U={},$={};function q(t,e,n,r){var i=r;"string"==typeof r&&(i=function(){return this[r]()}),t&&($[t]=i),e&&($[e[0]]=function(){return j(i.apply(this,arguments),e[1],e[2])}),n&&($[n]=function(){return this.localeData().ordinal(i.apply(this,arguments),t)})}function W(t,e){return t.isValid()?(e=H(e,t.localeData()),U[e]=U[e]||function(t){var e,n,r,i=t.match(Y);for(e=0,n=i.length;e<n;e++)$[i[e]]?i[e]=$[i[e]]:i[e]=(r=i[e]).match(/\[[\s\S]/)?r.replace(/^\[|\]$/g,""):r.replace(/\\/g,"");return function(e){var r,a="";for(r=0;r<n;r++)a+=O(i[r])?i[r].call(e,t):i[r];return a}}(e),U[e](t)):t.localeData().invalidDate()}function H(t,e){var n=5;function r(t){return e.longDateFormat(t)||t}for(z.lastIndex=0;0<=n&&z.test(t);)t=t.replace(z,r),z.lastIndex=0,n-=1;return t}var V=/\d/,G=/\d\d/,X=/\d{3}/,Z=/\d{4}/,K=/[+-]?\d{6}/,Q=/\d\d?/,J=/\d\d\d\d?/,tt=/\d\d\d\d\d\d?/,et=/\d{1,3}/,nt=/\d{1,4}/,rt=/[+-]?\d{1,6}/,it=/\d+/,at=/[+-]?\d+/,ot=/Z|[+-]\d\d:?\d\d/gi,st=/Z|[+-]\d\d(?::?\d\d)?/gi,ct=/[0-9]{0,256}['a-z\u00A0-\u05FF\u0700-\uD7FF\uF900-\uFDCF\uFDF0-\uFF07\uFF10-\uFFEF]{1,256}|[\u0600-\u06FF\/]{1,256}(\s*?[\u0600-\u06FF]{1,256}){1,2}/i,ut={};function lt(t,e,n){ut[t]=O(e)?e:function(t,r){return t&&n?n:e}}function ht(t,e){return h(ut,t)?ut[t](e._strict,e._locale):new RegExp(ft(t.replace("\\","").replace(/\\(\[)|\\(\])|\[([^\]\[]*)\]|\\(.)/g,(function(t,e,n,r,i){return e||n||r||i}))))}function ft(t){return t.replace(/[-\/\\^$*+?.()|[\]{}]/g,"\\$&")}var dt={};function pt(t,e){var n,r=e;for("string"==typeof t&&(t=[t]),c(e)&&(r=function(t,n){n[e]=w(t)}),n=0;n<t.length;n++)dt[t[n]]=r}function yt(t,e){pt(t,(function(t,n,r,i){r._w=r._w||{},e(t,r._w,r,i)}))}function gt(t){return mt(t)?366:365}function mt(t){return t%4==0&&t%100!=0||t%400==0}q("Y",0,0,(function(){var t=this.year();return t<=9999?""+t:"+"+t})),q(0,["YY",2],0,(function(){return this.year()%100})),q(0,["YYYY",4],0,"year"),q(0,["YYYYY",5],0,"year"),q(0,["YYYYYY",6,!0],0,"year"),L("year","y"),P("year",1),lt("Y",at),lt("YY",Q,G),lt("YYYY",nt,Z),lt("YYYYY",rt,K),lt("YYYYYY",rt,K),pt(["YYYYY","YYYYYY"],0),pt("YYYY",(function(t,e){e[0]=2===t.length?i.parseTwoDigitYear(t):w(t)})),pt("YY",(function(t,e){e[0]=i.parseTwoDigitYear(t)})),pt("Y",(function(t,e){e[0]=parseInt(t,10)})),i.parseTwoDigitYear=function(t){return w(t)+(68<w(t)?1900:2e3)};var vt,bt=xt("FullYear",!0);function xt(t,e){return function(n){return null!=n?(kt(this,t,n),i.updateOffset(this,e),this):_t(this,t)}}function _t(t,e){return t.isValid()?t._d["get"+(t._isUTC?"UTC":"")+e]():NaN}function kt(t,e,n){t.isValid()&&!isNaN(n)&&("FullYear"===e&&mt(t.year())&&1===t.month()&&29===t.date()?t._d["set"+(t._isUTC?"UTC":"")+e](n,t.month(),wt(n,t.month())):t._d["set"+(t._isUTC?"UTC":"")+e](n))}function wt(t,e){if(isNaN(t)||isNaN(e))return NaN;var n=(e%12+12)%12;return t+=(e-n)/12,1===n?mt(t)?29:28:31-n%7%2}vt=Array.prototype.indexOf?Array.prototype.indexOf:function(t){var e;for(e=0;e<this.length;++e)if(this[e]===t)return e;return-1},q("M",["MM",2],"Mo",(function(){return this.month()+1})),q("MMM",0,0,(function(t){return this.localeData().monthsShort(this,t)})),q("MMMM",0,0,(function(t){return this.localeData().months(this,t)})),L("month","M"),P("month",8),lt("M",Q),lt("MM",Q,G),lt("MMM",(function(t,e){return e.monthsShortRegex(t)})),lt("MMMM",(function(t,e){return e.monthsRegex(t)})),pt(["M","MM"],(function(t,e){e[1]=w(t)-1})),pt(["MMM","MMMM"],(function(t,e,n,r){var i=n._locale.monthsParse(t,r,n._strict);null!=i?e[1]=i:p(n).invalidMonth=t}));var Tt=/D[oD]?(\[[^\[\]]*\]|\s)+MMMM?/,Et="January_February_March_April_May_June_July_August_September_October_November_December".split("_"),Ct="Jan_Feb_Mar_Apr_May_Jun_Jul_Aug_Sep_Oct_Nov_Dec".split("_");function St(t,e){var n;if(!t.isValid())return t;if("string"==typeof e)if(/^\d+$/.test(e))e=w(e);else if(!c(e=t.localeData().monthsParse(e)))return t;return n=Math.min(t.date(),wt(t.year(),e)),t._d["set"+(t._isUTC?"UTC":"")+"Month"](e,n),t}function At(t){return null!=t?(St(this,t),i.updateOffset(this,!0),this):_t(this,"Month")}var Mt=ct,Ot=ct;function Nt(){function t(t,e){return e.length-t.length}var e,n,r=[],i=[],a=[];for(e=0;e<12;e++)n=d([2e3,e]),r.push(this.monthsShort(n,"")),i.push(this.months(n,"")),a.push(this.months(n,"")),a.push(this.monthsShort(n,""));for(r.sort(t),i.sort(t),a.sort(t),e=0;e<12;e++)r[e]=ft(r[e]),i[e]=ft(i[e]);for(e=0;e<24;e++)a[e]=ft(a[e]);this._monthsRegex=new RegExp("^("+a.join("|")+")","i"),this._monthsShortRegex=this._monthsRegex,this._monthsStrictRegex=new RegExp("^("+i.join("|")+")","i"),this._monthsShortStrictRegex=new RegExp("^("+r.join("|")+")","i")}function Bt(t){var e;if(t<100&&0<=t){var n=Array.prototype.slice.call(arguments);n[0]=t+400,e=new Date(Date.UTC.apply(null,n)),isFinite(e.getUTCFullYear())&&e.setUTCFullYear(t)}else e=new Date(Date.UTC.apply(null,arguments));return e}function Dt(t,e,n){var r=7+e-n;return-(7+Bt(t,0,r).getUTCDay()-e)%7+r-1}function Lt(t,e,n,r,i){var a,o,s=1+7*(e-1)+(7+n-r)%7+Dt(t,r,i);return o=s<=0?gt(a=t-1)+s:s>gt(t)?(a=t+1,s-gt(t)):(a=t,s),{year:a,dayOfYear:o}}function It(t,e,n){var r,i,a=Dt(t.year(),e,n),o=Math.floor((t.dayOfYear()-a-1)/7)+1;return o<1?r=o+Rt(i=t.year()-1,e,n):o>Rt(t.year(),e,n)?(r=o-Rt(t.year(),e,n),i=t.year()+1):(i=t.year(),r=o),{week:r,year:i}}function Rt(t,e,n){var r=Dt(t,e,n),i=Dt(t+1,e,n);return(gt(t)-r+i)/7}function Ft(t,e){return t.slice(e,7).concat(t.slice(0,e))}q("w",["ww",2],"wo","week"),q("W",["WW",2],"Wo","isoWeek"),L("week","w"),L("isoWeek","W"),P("week",5),P("isoWeek",5),lt("w",Q),lt("ww",Q,G),lt("W",Q),lt("WW",Q,G),yt(["w","ww","W","WW"],(function(t,e,n,r){e[r.substr(0,1)]=w(t)})),q("d",0,"do","day"),q("dd",0,0,(function(t){return this.localeData().weekdaysMin(this,t)})),q("ddd",0,0,(function(t){return this.localeData().weekdaysShort(this,t)})),q("dddd",0,0,(function(t){return this.localeData().weekdays(this,t)})),q("e",0,0,"weekday"),q("E",0,0,"isoWeekday"),L("day","d"),L("weekday","e"),L("isoWeekday","E"),P("day",11),P("weekday",11),P("isoWeekday",11),lt("d",Q),lt("e",Q),lt("E",Q),lt("dd",(function(t,e){return e.weekdaysMinRegex(t)})),lt("ddd",(function(t,e){return e.weekdaysShortRegex(t)})),lt("dddd",(function(t,e){return e.weekdaysRegex(t)})),yt(["dd","ddd","dddd"],(function(t,e,n,r){var i=n._locale.weekdaysParse(t,r,n._strict);null!=i?e.d=i:p(n).invalidWeekday=t})),yt(["d","e","E"],(function(t,e,n,r){e[r]=w(t)}));var Pt="Sunday_Monday_Tuesday_Wednesday_Thursday_Friday_Saturday".split("_"),jt="Sun_Mon_Tue_Wed_Thu_Fri_Sat".split("_"),Yt="Su_Mo_Tu_We_Th_Fr_Sa".split("_"),zt=ct,Ut=ct,$t=ct;function qt(){function t(t,e){return e.length-t.length}var e,n,r,i,a,o=[],s=[],c=[],u=[];for(e=0;e<7;e++)n=d([2e3,1]).day(e),r=this.weekdaysMin(n,""),i=this.weekdaysShort(n,""),a=this.weekdays(n,""),o.push(r),s.push(i),c.push(a),u.push(r),u.push(i),u.push(a);for(o.sort(t),s.sort(t),c.sort(t),u.sort(t),e=0;e<7;e++)s[e]=ft(s[e]),c[e]=ft(c[e]),u[e]=ft(u[e]);this._weekdaysRegex=new RegExp("^("+u.join("|")+")","i"),this._weekdaysShortRegex=this._weekdaysRegex,this._weekdaysMinRegex=this._weekdaysRegex,this._weekdaysStrictRegex=new RegExp("^("+c.join("|")+")","i"),this._weekdaysShortStrictRegex=new RegExp("^("+s.join("|")+")","i"),this._weekdaysMinStrictRegex=new RegExp("^("+o.join("|")+")","i")}function Wt(){return this.hours()%12||12}function Ht(t,e){q(t,0,0,(function(){return this.localeData().meridiem(this.hours(),this.minutes(),e)}))}function Vt(t,e){return e._meridiemParse}q("H",["HH",2],0,"hour"),q("h",["hh",2],0,Wt),q("k",["kk",2],0,(function(){return this.hours()||24})),q("hmm",0,0,(function(){return""+Wt.apply(this)+j(this.minutes(),2)})),q("hmmss",0,0,(function(){return""+Wt.apply(this)+j(this.minutes(),2)+j(this.seconds(),2)})),q("Hmm",0,0,(function(){return""+this.hours()+j(this.minutes(),2)})),q("Hmmss",0,0,(function(){return""+this.hours()+j(this.minutes(),2)+j(this.seconds(),2)})),Ht("a",!0),Ht("A",!1),L("hour","h"),P("hour",13),lt("a",Vt),lt("A",Vt),lt("H",Q),lt("h",Q),lt("k",Q),lt("HH",Q,G),lt("hh",Q,G),lt("kk",Q,G),lt("hmm",J),lt("hmmss",tt),lt("Hmm",J),lt("Hmmss",tt),pt(["H","HH"],3),pt(["k","kk"],(function(t,e,n){var r=w(t);e[3]=24===r?0:r})),pt(["a","A"],(function(t,e,n){n._isPm=n._locale.isPM(t),n._meridiem=t})),pt(["h","hh"],(function(t,e,n){e[3]=w(t),p(n).bigHour=!0})),pt("hmm",(function(t,e,n){var r=t.length-2;e[3]=w(t.substr(0,r)),e[4]=w(t.substr(r)),p(n).bigHour=!0})),pt("hmmss",(function(t,e,n){var r=t.length-4,i=t.length-2;e[3]=w(t.substr(0,r)),e[4]=w(t.substr(r,2)),e[5]=w(t.substr(i)),p(n).bigHour=!0})),pt("Hmm",(function(t,e,n){var r=t.length-2;e[3]=w(t.substr(0,r)),e[4]=w(t.substr(r))})),pt("Hmmss",(function(t,e,n){var r=t.length-4,i=t.length-2;e[3]=w(t.substr(0,r)),e[4]=w(t.substr(r,2)),e[5]=w(t.substr(i))}));var Gt,Xt=xt("Hours",!0),Zt={calendar:{sameDay:"[Today at] LT",nextDay:"[Tomorrow at] LT",nextWeek:"dddd [at] LT",lastDay:"[Yesterday at] LT",lastWeek:"[Last] dddd [at] LT",sameElse:"L"},longDateFormat:{LTS:"h:mm:ss A",LT:"h:mm A",L:"MM/DD/YYYY",LL:"MMMM D, YYYY",LLL:"MMMM D, YYYY h:mm A",LLLL:"dddd, MMMM D, YYYY h:mm A"},invalidDate:"Invalid date",ordinal:"%d",dayOfMonthOrdinalParse:/\d{1,2}/,relativeTime:{future:"in %s",past:"%s ago",s:"a few seconds",ss:"%d seconds",m:"a minute",mm:"%d minutes",h:"an hour",hh:"%d hours",d:"a day",dd:"%d days",M:"a month",MM:"%d months",y:"a year",yy:"%d years"},months:Et,monthsShort:Ct,week:{dow:0,doy:6},weekdays:Pt,weekdaysMin:Yt,weekdaysShort:jt,meridiemParse:/[ap]\.?m?\.?/i},Kt={},Qt={};function Jt(t){return t?t.toLowerCase().replace("_","-"):t}function te(e){var r=null;if(!Kt[e]&&void 0!==t&&t&&t.exports)try{r=Gt._abbr,n(202)("./"+e),ee(r)}catch(e){}return Kt[e]}function ee(t,e){var n;return t&&((n=s(e)?re(t):ne(t,e))?Gt=n:"undefined"!=typeof console&&console.warn&&console.warn("Locale "+t+" not found. Did you forget to load it?")),Gt._abbr}function ne(t,e){if(null===e)return delete Kt[t],null;var n,r=Zt;if(e.abbr=t,null!=Kt[t])M("defineLocaleOverride","use moment.updateLocale(localeName, config) to change an existing locale. moment.defineLocale(localeName, config) should only be used for creating a new locale See http://momentjs.com/guides/#/warnings/define-locale/ for more info."),r=Kt[t]._config;else if(null!=e.parentLocale)if(null!=Kt[e.parentLocale])r=Kt[e.parentLocale]._config;else{if(null==(n=te(e.parentLocale)))return Qt[e.parentLocale]||(Qt[e.parentLocale]=[]),Qt[e.parentLocale].push({name:t,config:e}),null;r=n._config}return Kt[t]=new B(N(r,e)),Qt[t]&&Qt[t].forEach((function(t){ne(t.name,t.config)})),ee(t),Kt[t]}function re(t){var e;if(t&&t._locale&&t._locale._abbr&&(t=t._locale._abbr),!t)return Gt;if(!a(t)){if(e=te(t))return e;t=[t]}return function(t){for(var e,n,r,i,a=0;a<t.length;){for(e=(i=Jt(t[a]).split("-")).length,n=(n=Jt(t[a+1]))?n.split("-"):null;0<e;){if(r=te(i.slice(0,e).join("-")))return r;if(n&&n.length>=e&&T(i,n,!0)>=e-1)break;e--}a++}return Gt}(t)}function ie(t){var e,n=t._a;return n&&-2===p(t).overflow&&(e=n[1]<0||11<n[1]?1:n[2]<1||n[2]>wt(n[0],n[1])?2:n[3]<0||24<n[3]||24===n[3]&&(0!==n[4]||0!==n[5]||0!==n[6])?3:n[4]<0||59<n[4]?4:n[5]<0||59<n[5]?5:n[6]<0||999<n[6]?6:-1,p(t)._overflowDayOfYear&&(e<0||2<e)&&(e=2),p(t)._overflowWeeks&&-1===e&&(e=7),p(t)._overflowWeekday&&-1===e&&(e=8),p(t).overflow=e),t}function ae(t,e,n){return null!=t?t:null!=e?e:n}function oe(t){var e,n,r,a,o,s=[];if(!t._d){var c,u;for(c=t,u=new Date(i.now()),r=c._useUTC?[u.getUTCFullYear(),u.getUTCMonth(),u.getUTCDate()]:[u.getFullYear(),u.getMonth(),u.getDate()],t._w&&null==t._a[2]&&null==t._a[1]&&function(t){var e,n,r,i,a,o,s,c;if(null!=(e=t._w).GG||null!=e.W||null!=e.E)a=1,o=4,n=ae(e.GG,t._a[0],It(xe(),1,4).year),r=ae(e.W,1),((i=ae(e.E,1))<1||7<i)&&(c=!0);else{a=t._locale._week.dow,o=t._locale._week.doy;var u=It(xe(),a,o);n=ae(e.gg,t._a[0],u.year),r=ae(e.w,u.week),null!=e.d?((i=e.d)<0||6<i)&&(c=!0):null!=e.e?(i=e.e+a,(e.e<0||6<e.e)&&(c=!0)):i=a}r<1||r>Rt(n,a,o)?p(t)._overflowWeeks=!0:null!=c?p(t)._overflowWeekday=!0:(s=Lt(n,r,i,a,o),t._a[0]=s.year,t._dayOfYear=s.dayOfYear)}(t),null!=t._dayOfYear&&(o=ae(t._a[0],r[0]),(t._dayOfYear>gt(o)||0===t._dayOfYear)&&(p(t)._overflowDayOfYear=!0),n=Bt(o,0,t._dayOfYear),t._a[1]=n.getUTCMonth(),t._a[2]=n.getUTCDate()),e=0;e<3&&null==t._a[e];++e)t._a[e]=s[e]=r[e];for(;e<7;e++)t._a[e]=s[e]=null==t._a[e]?2===e?1:0:t._a[e];24===t._a[3]&&0===t._a[4]&&0===t._a[5]&&0===t._a[6]&&(t._nextDay=!0,t._a[3]=0),t._d=(t._useUTC?Bt:function(t,e,n,r,i,a,o){var s;return t<100&&0<=t?(s=new Date(t+400,e,n,r,i,a,o),isFinite(s.getFullYear())&&s.setFullYear(t)):s=new Date(t,e,n,r,i,a,o),s}).apply(null,s),a=t._useUTC?t._d.getUTCDay():t._d.getDay(),null!=t._tzm&&t._d.setUTCMinutes(t._d.getUTCMinutes()-t._tzm),t._nextDay&&(t._a[3]=24),t._w&&void 0!==t._w.d&&t._w.d!==a&&(p(t).weekdayMismatch=!0)}}var se=/^\s*((?:[+-]\d{6}|\d{4})-(?:\d\d-\d\d|W\d\d-\d|W\d\d|\d\d\d|\d\d))(?:(T| )(\d\d(?::\d\d(?::\d\d(?:[.,]\d+)?)?)?)([\+\-]\d\d(?::?\d\d)?|\s*Z)?)?$/,ce=/^\s*((?:[+-]\d{6}|\d{4})(?:\d\d\d\d|W\d\d\d|W\d\d|\d\d\d|\d\d))(?:(T| )(\d\d(?:\d\d(?:\d\d(?:[.,]\d+)?)?)?)([\+\-]\d\d(?::?\d\d)?|\s*Z)?)?$/,ue=/Z|[+-]\d\d(?::?\d\d)?/,le=[["YYYYYY-MM-DD",/[+-]\d{6}-\d\d-\d\d/],["YYYY-MM-DD",/\d{4}-\d\d-\d\d/],["GGGG-[W]WW-E",/\d{4}-W\d\d-\d/],["GGGG-[W]WW",/\d{4}-W\d\d/,!1],["YYYY-DDD",/\d{4}-\d{3}/],["YYYY-MM",/\d{4}-\d\d/,!1],["YYYYYYMMDD",/[+-]\d{10}/],["YYYYMMDD",/\d{8}/],["GGGG[W]WWE",/\d{4}W\d{3}/],["GGGG[W]WW",/\d{4}W\d{2}/,!1],["YYYYDDD",/\d{7}/]],he=[["HH:mm:ss.SSSS",/\d\d:\d\d:\d\d\.\d+/],["HH:mm:ss,SSSS",/\d\d:\d\d:\d\d,\d+/],["HH:mm:ss",/\d\d:\d\d:\d\d/],["HH:mm",/\d\d:\d\d/],["HHmmss.SSSS",/\d\d\d\d\d\d\.\d+/],["HHmmss,SSSS",/\d\d\d\d\d\d,\d+/],["HHmmss",/\d\d\d\d\d\d/],["HHmm",/\d\d\d\d/],["HH",/\d\d/]],fe=/^\/?Date\((\-?\d+)/i;function de(t){var e,n,r,i,a,o,s=t._i,c=se.exec(s)||ce.exec(s);if(c){for(p(t).iso=!0,e=0,n=le.length;e<n;e++)if(le[e][1].exec(c[1])){i=le[e][0],r=!1!==le[e][2];break}if(null==i)return void(t._isValid=!1);if(c[3]){for(e=0,n=he.length;e<n;e++)if(he[e][1].exec(c[3])){a=(c[2]||" ")+he[e][0];break}if(null==a)return void(t._isValid=!1)}if(!r&&null!=a)return void(t._isValid=!1);if(c[4]){if(!ue.exec(c[4]))return void(t._isValid=!1);o="Z"}t._f=i+(a||"")+(o||""),me(t)}else t._isValid=!1}var pe=/^(?:(Mon|Tue|Wed|Thu|Fri|Sat|Sun),?\s)?(\d{1,2})\s(Jan|Feb|Mar|Apr|May|Jun|Jul|Aug|Sep|Oct|Nov|Dec)\s(\d{2,4})\s(\d\d):(\d\d)(?::(\d\d))?\s(?:(UT|GMT|[ECMP][SD]T)|([Zz])|([+-]\d{4}))$/,ye={UT:0,GMT:0,EDT:-240,EST:-300,CDT:-300,CST:-360,MDT:-360,MST:-420,PDT:-420,PST:-480};function ge(t){var e,n,r,i=pe.exec(t._i.replace(/\([^)]*\)|[\n\t]/g," ").replace(/(\s\s+)/g," ").replace(/^\s\s*/,"").replace(/\s\s*$/,""));if(i){var a=function(t,e,n,r,i,a){var o=[function(t){var e=parseInt(t,10);return e<=49?2e3+e:e<=999?1900+e:e}(t),Ct.indexOf(e),parseInt(n,10),parseInt(r,10),parseInt(i,10)];return a&&o.push(parseInt(a,10)),o}(i[4],i[3],i[2],i[5],i[6],i[7]);if(n=a,r=t,(e=i[1])&&jt.indexOf(e)!==new Date(n[0],n[1],n[2]).getDay()&&(p(r).weekdayMismatch=!0,!(r._isValid=!1)))return;t._a=a,t._tzm=function(t,e,n){if(t)return ye[t];if(e)return 0;var r=parseInt(n,10),i=r%100;return(r-i)/100*60+i}(i[8],i[9],i[10]),t._d=Bt.apply(null,t._a),t._d.setUTCMinutes(t._d.getUTCMinutes()-t._tzm),p(t).rfc2822=!0}else t._isValid=!1}function me(t){if(t._f!==i.ISO_8601)if(t._f!==i.RFC_2822){t._a=[],p(t).empty=!0;var e,n,r,a,o,s,c,u,l=""+t._i,f=l.length,d=0;for(r=H(t._f,t._locale).match(Y)||[],e=0;e<r.length;e++)a=r[e],(n=(l.match(ht(a,t))||[])[0])&&(0<(o=l.substr(0,l.indexOf(n))).length&&p(t).unusedInput.push(o),l=l.slice(l.indexOf(n)+n.length),d+=n.length),$[a]?(n?p(t).empty=!1:p(t).unusedTokens.push(a),s=a,u=t,null!=(c=n)&&h(dt,s)&&dt[s](c,u._a,u,s)):t._strict&&!n&&p(t).unusedTokens.push(a);p(t).charsLeftOver=f-d,0<l.length&&p(t).unusedInput.push(l),t._a[3]<=12&&!0===p(t).bigHour&&0<t._a[3]&&(p(t).bigHour=void 0),p(t).parsedDateParts=t._a.slice(0),p(t).meridiem=t._meridiem,t._a[3]=function(t,e,n){var r;return null==n?e:null!=t.meridiemHour?t.meridiemHour(e,n):(null!=t.isPM&&((r=t.isPM(n))&&e<12&&(e+=12),r||12!==e||(e=0)),e)}(t._locale,t._a[3],t._meridiem),oe(t),ie(t)}else ge(t);else de(t)}function ve(t){var e,n,r,h,d=t._i,m=t._f;return t._locale=t._locale||re(t._l),null===d||void 0===m&&""===d?g({nullInput:!0}):("string"==typeof d&&(t._i=d=t._locale.preparse(d)),_(d)?new x(ie(d)):(u(d)?t._d=d:a(m)?function(t){var e,n,r,i,a;if(0===t._f.length)return p(t).invalidFormat=!0,t._d=new Date(NaN);for(i=0;i<t._f.length;i++)a=0,e=v({},t),null!=t._useUTC&&(e._useUTC=t._useUTC),e._f=t._f[i],me(e),y(e)&&(a+=p(e).charsLeftOver,a+=10*p(e).unusedTokens.length,p(e).score=a,(null==r||a<r)&&(r=a,n=e));f(t,n||e)}(t):m?me(t):s(n=(e=t)._i)?e._d=new Date(i.now()):u(n)?e._d=new Date(n.valueOf()):"string"==typeof n?(r=e,null===(h=fe.exec(r._i))?(de(r),!1===r._isValid&&(delete r._isValid,ge(r),!1===r._isValid&&(delete r._isValid,i.createFromInputFallback(r)))):r._d=new Date(+h[1])):a(n)?(e._a=l(n.slice(0),(function(t){return parseInt(t,10)})),oe(e)):o(n)?function(t){if(!t._d){var e=R(t._i);t._a=l([e.year,e.month,e.day||e.date,e.hour,e.minute,e.second,e.millisecond],(function(t){return t&&parseInt(t,10)})),oe(t)}}(e):c(n)?e._d=new Date(n):i.createFromInputFallback(e),y(t)||(t._d=null),t))}function be(t,e,n,r,i){var s,c={};return!0!==n&&!1!==n||(r=n,n=void 0),(o(t)&&function(t){if(Object.getOwnPropertyNames)return 0===Object.getOwnPropertyNames(t).length;var e;for(e in t)if(t.hasOwnProperty(e))return!1;return!0}(t)||a(t)&&0===t.length)&&(t=void 0),c._isAMomentObject=!0,c._useUTC=c._isUTC=i,c._l=n,c._i=t,c._f=e,c._strict=r,(s=new x(ie(ve(c))))._nextDay&&(s.add(1,"d"),s._nextDay=void 0),s}function xe(t,e,n,r){return be(t,e,n,r,!1)}i.createFromInputFallback=C("value provided is not in a recognized RFC2822 or ISO format. moment construction falls back to js Date(), which is not reliable across all browsers and versions. Non RFC2822/ISO date formats are discouraged and will be removed in an upcoming major release. Please refer to http://momentjs.com/guides/#/warnings/js-date/ for more info.",(function(t){t._d=new Date(t._i+(t._useUTC?" UTC":""))})),i.ISO_8601=function(){},i.RFC_2822=function(){};var _e=C("moment().min is deprecated, use moment.max instead. http://momentjs.com/guides/#/warnings/min-max/",(function(){var t=xe.apply(null,arguments);return this.isValid()&&t.isValid()?t<this?this:t:g()})),ke=C("moment().max is deprecated, use moment.min instead. http://momentjs.com/guides/#/warnings/min-max/",(function(){var t=xe.apply(null,arguments);return this.isValid()&&t.isValid()?this<t?this:t:g()}));function we(t,e){var n,r;if(1===e.length&&a(e[0])&&(e=e[0]),!e.length)return xe();for(n=e[0],r=1;r<e.length;++r)e[r].isValid()&&!e[r][t](n)||(n=e[r]);return n}var Te=["year","quarter","month","week","day","hour","minute","second","millisecond"];function Ee(t){var e=R(t),n=e.year||0,r=e.quarter||0,i=e.month||0,a=e.week||e.isoWeek||0,o=e.day||0,s=e.hour||0,c=e.minute||0,u=e.second||0,l=e.millisecond||0;this._isValid=function(t){for(var e in t)if(-1===vt.call(Te,e)||null!=t[e]&&isNaN(t[e]))return!1;for(var n=!1,r=0;r<Te.length;++r)if(t[Te[r]]){if(n)return!1;parseFloat(t[Te[r]])!==w(t[Te[r]])&&(n=!0)}return!0}(e),this._milliseconds=+l+1e3*u+6e4*c+1e3*s*60*60,this._days=+o+7*a,this._months=+i+3*r+12*n,this._data={},this._locale=re(),this._bubble()}function Ce(t){return t instanceof Ee}function Se(t){return t<0?-1*Math.round(-1*t):Math.round(t)}function Ae(t,e){q(t,0,0,(function(){var t=this.utcOffset(),n="+";return t<0&&(t=-t,n="-"),n+j(~~(t/60),2)+e+j(~~t%60,2)}))}Ae("Z",":"),Ae("ZZ",""),lt("Z",st),lt("ZZ",st),pt(["Z","ZZ"],(function(t,e,n){n._useUTC=!0,n._tzm=Oe(st,t)}));var Me=/([\+\-]|\d\d)/gi;function Oe(t,e){var n=(e||"").match(t);if(null===n)return null;var r=((n[n.length-1]||[])+"").match(Me)||["-",0,0],i=60*r[1]+w(r[2]);return 0===i?0:"+"===r[0]?i:-i}function Ne(t,e){var n,r;return e._isUTC?(n=e.clone(),r=(_(t)||u(t)?t.valueOf():xe(t).valueOf())-n.valueOf(),n._d.setTime(n._d.valueOf()+r),i.updateOffset(n,!1),n):xe(t).local()}function Be(t){return 15*-Math.round(t._d.getTimezoneOffset()/15)}function De(){return!!this.isValid()&&this._isUTC&&0===this._offset}i.updateOffset=function(){};var Le=/^(\-|\+)?(?:(\d*)[. ])?(\d+)\:(\d+)(?:\:(\d+)(\.\d*)?)?$/,Ie=/^(-|\+)?P(?:([-+]?[0-9,.]*)Y)?(?:([-+]?[0-9,.]*)M)?(?:([-+]?[0-9,.]*)W)?(?:([-+]?[0-9,.]*)D)?(?:T(?:([-+]?[0-9,.]*)H)?(?:([-+]?[0-9,.]*)M)?(?:([-+]?[0-9,.]*)S)?)?$/;function Re(t,e){var n,r,i,a=t,o=null;return Ce(t)?a={ms:t._milliseconds,d:t._days,M:t._months}:c(t)?(a={},e?a[e]=t:a.milliseconds=t):(o=Le.exec(t))?(n="-"===o[1]?-1:1,a={y:0,d:w(o[2])*n,h:w(o[3])*n,m:w(o[4])*n,s:w(o[5])*n,ms:w(Se(1e3*o[6]))*n}):(o=Ie.exec(t))?(n="-"===o[1]?-1:1,a={y:Fe(o[2],n),M:Fe(o[3],n),w:Fe(o[4],n),d:Fe(o[5],n),h:Fe(o[6],n),m:Fe(o[7],n),s:Fe(o[8],n)}):null==a?a={}:"object"==typeof a&&("from"in a||"to"in a)&&(i=function(t,e){var n;return t.isValid()&&e.isValid()?(e=Ne(e,t),t.isBefore(e)?n=Pe(t,e):((n=Pe(e,t)).milliseconds=-n.milliseconds,n.months=-n.months),n):{milliseconds:0,months:0}}(xe(a.from),xe(a.to)),(a={}).ms=i.milliseconds,a.M=i.months),r=new Ee(a),Ce(t)&&h(t,"_locale")&&(r._locale=t._locale),r}function Fe(t,e){var n=t&&parseFloat(t.replace(",","."));return(isNaN(n)?0:n)*e}function Pe(t,e){var n={};return n.months=e.month()-t.month()+12*(e.year()-t.year()),t.clone().add(n.months,"M").isAfter(e)&&--n.months,n.milliseconds=+e-+t.clone().add(n.months,"M"),n}function je(t,e){return function(n,r){var i;return null===r||isNaN(+r)||(M(e,"moment()."+e+"(period, number) is deprecated. Please use moment()."+e+"(number, period). See http://momentjs.com/guides/#/warnings/add-inverted-param/ for more info."),i=n,n=r,r=i),Ye(this,Re(n="string"==typeof n?+n:n,r),t),this}}function Ye(t,e,n,r){var a=e._milliseconds,o=Se(e._days),s=Se(e._months);t.isValid()&&(r=null==r||r,s&&St(t,_t(t,"Month")+s*n),o&&kt(t,"Date",_t(t,"Date")+o*n),a&&t._d.setTime(t._d.valueOf()+a*n),r&&i.updateOffset(t,o||s))}Re.fn=Ee.prototype,Re.invalid=function(){return Re(NaN)};var ze=je(1,"add"),Ue=je(-1,"subtract");function $e(t,e){var n=12*(e.year()-t.year())+(e.month()-t.month()),r=t.clone().add(n,"months");return-(n+(e-r<0?(e-r)/(r-t.clone().add(n-1,"months")):(e-r)/(t.clone().add(n+1,"months")-r)))||0}function qe(t){var e;return void 0===t?this._locale._abbr:(null!=(e=re(t))&&(this._locale=e),this)}i.defaultFormat="YYYY-MM-DDTHH:mm:ssZ",i.defaultFormatUtc="YYYY-MM-DDTHH:mm:ss[Z]";var We=C("moment().lang() is deprecated. Instead, use moment().localeData() to get the language configuration. Use moment().locale() to change languages.",(function(t){return void 0===t?this.localeData():this.locale(t)}));function He(){return this._locale}var Ve=126227808e5;function Ge(t,e){return(t%e+e)%e}function Xe(t,e,n){return t<100&&0<=t?new Date(t+400,e,n)-Ve:new Date(t,e,n).valueOf()}function Ze(t,e,n){return t<100&&0<=t?Date.UTC(t+400,e,n)-Ve:Date.UTC(t,e,n)}function Ke(t,e){q(0,[t,t.length],0,e)}function Qe(t,e,n,r,i){var a;return null==t?It(this,r,i).year:((a=Rt(t,r,i))<e&&(e=a),function(t,e,n,r,i){var a=Lt(t,e,n,r,i),o=Bt(a.year,0,a.dayOfYear);return this.year(o.getUTCFullYear()),this.month(o.getUTCMonth()),this.date(o.getUTCDate()),this}.call(this,t,e,n,r,i))}q(0,["gg",2],0,(function(){return this.weekYear()%100})),q(0,["GG",2],0,(function(){return this.isoWeekYear()%100})),Ke("gggg","weekYear"),Ke("ggggg","weekYear"),Ke("GGGG","isoWeekYear"),Ke("GGGGG","isoWeekYear"),L("weekYear","gg"),L("isoWeekYear","GG"),P("weekYear",1),P("isoWeekYear",1),lt("G",at),lt("g",at),lt("GG",Q,G),lt("gg",Q,G),lt("GGGG",nt,Z),lt("gggg",nt,Z),lt("GGGGG",rt,K),lt("ggggg",rt,K),yt(["gggg","ggggg","GGGG","GGGGG"],(function(t,e,n,r){e[r.substr(0,2)]=w(t)})),yt(["gg","GG"],(function(t,e,n,r){e[r]=i.parseTwoDigitYear(t)})),q("Q",0,"Qo","quarter"),L("quarter","Q"),P("quarter",7),lt("Q",V),pt("Q",(function(t,e){e[1]=3*(w(t)-1)})),q("D",["DD",2],"Do","date"),L("date","D"),P("date",9),lt("D",Q),lt("DD",Q,G),lt("Do",(function(t,e){return t?e._dayOfMonthOrdinalParse||e._ordinalParse:e._dayOfMonthOrdinalParseLenient})),pt(["D","DD"],2),pt("Do",(function(t,e){e[2]=w(t.match(Q)[0])}));var Je=xt("Date",!0);q("DDD",["DDDD",3],"DDDo","dayOfYear"),L("dayOfYear","DDD"),P("dayOfYear",4),lt("DDD",et),lt("DDDD",X),pt(["DDD","DDDD"],(function(t,e,n){n._dayOfYear=w(t)})),q("m",["mm",2],0,"minute"),L("minute","m"),P("minute",14),lt("m",Q),lt("mm",Q,G),pt(["m","mm"],4);var tn=xt("Minutes",!1);q("s",["ss",2],0,"second"),L("second","s"),P("second",15),lt("s",Q),lt("ss",Q,G),pt(["s","ss"],5);var en,nn=xt("Seconds",!1);for(q("S",0,0,(function(){return~~(this.millisecond()/100)})),q(0,["SS",2],0,(function(){return~~(this.millisecond()/10)})),q(0,["SSS",3],0,"millisecond"),q(0,["SSSS",4],0,(function(){return 10*this.millisecond()})),q(0,["SSSSS",5],0,(function(){return 100*this.millisecond()})),q(0,["SSSSSS",6],0,(function(){return 1e3*this.millisecond()})),q(0,["SSSSSSS",7],0,(function(){return 1e4*this.millisecond()})),q(0,["SSSSSSSS",8],0,(function(){return 1e5*this.millisecond()})),q(0,["SSSSSSSSS",9],0,(function(){return 1e6*this.millisecond()})),L("millisecond","ms"),P("millisecond",16),lt("S",et,V),lt("SS",et,G),lt("SSS",et,X),en="SSSS";en.length<=9;en+="S")lt(en,it);function rn(t,e){e[6]=w(1e3*("0."+t))}for(en="S";en.length<=9;en+="S")pt(en,rn);var an=xt("Milliseconds",!1);q("z",0,0,"zoneAbbr"),q("zz",0,0,"zoneName");var on=x.prototype;function sn(t){return t}on.add=ze,on.calendar=function(t,e){var n=t||xe(),r=Ne(n,this).startOf("day"),a=i.calendarFormat(this,r)||"sameElse",o=e&&(O(e[a])?e[a].call(this,n):e[a]);return this.format(o||this.localeData().calendar(a,this,xe(n)))},on.clone=function(){return new x(this)},on.diff=function(t,e,n){var r,i,a;if(!this.isValid())return NaN;if(!(r=Ne(t,this)).isValid())return NaN;switch(i=6e4*(r.utcOffset()-this.utcOffset()),e=I(e)){case"year":a=$e(this,r)/12;break;case"month":a=$e(this,r);break;case"quarter":a=$e(this,r)/3;break;case"second":a=(this-r)/1e3;break;case"minute":a=(this-r)/6e4;break;case"hour":a=(this-r)/36e5;break;case"day":a=(this-r-i)/864e5;break;case"week":a=(this-r-i)/6048e5;break;default:a=this-r}return n?a:k(a)},on.endOf=function(t){var e;if(void 0===(t=I(t))||"millisecond"===t||!this.isValid())return this;var n=this._isUTC?Ze:Xe;switch(t){case"year":e=n(this.year()+1,0,1)-1;break;case"quarter":e=n(this.year(),this.month()-this.month()%3+3,1)-1;break;case"month":e=n(this.year(),this.month()+1,1)-1;break;case"week":e=n(this.year(),this.month(),this.date()-this.weekday()+7)-1;break;case"isoWeek":e=n(this.year(),this.month(),this.date()-(this.isoWeekday()-1)+7)-1;break;case"day":case"date":e=n(this.year(),this.month(),this.date()+1)-1;break;case"hour":e=this._d.valueOf(),e+=36e5-Ge(e+(this._isUTC?0:6e4*this.utcOffset()),36e5)-1;break;case"minute":e=this._d.valueOf(),e+=6e4-Ge(e,6e4)-1;break;case"second":e=this._d.valueOf(),e+=1e3-Ge(e,1e3)-1}return this._d.setTime(e),i.updateOffset(this,!0),this},on.format=function(t){t||(t=this.isUtc()?i.defaultFormatUtc:i.defaultFormat);var e=W(this,t);return this.localeData().postformat(e)},on.from=function(t,e){return this.isValid()&&(_(t)&&t.isValid()||xe(t).isValid())?Re({to:this,from:t}).locale(this.locale()).humanize(!e):this.localeData().invalidDate()},on.fromNow=function(t){return this.from(xe(),t)},on.to=function(t,e){return this.isValid()&&(_(t)&&t.isValid()||xe(t).isValid())?Re({from:this,to:t}).locale(this.locale()).humanize(!e):this.localeData().invalidDate()},on.toNow=function(t){return this.to(xe(),t)},on.get=function(t){return O(this[t=I(t)])?this[t]():this},on.invalidAt=function(){return p(this).overflow},on.isAfter=function(t,e){var n=_(t)?t:xe(t);return!(!this.isValid()||!n.isValid())&&("millisecond"===(e=I(e)||"millisecond")?this.valueOf()>n.valueOf():n.valueOf()<this.clone().startOf(e).valueOf())},on.isBefore=function(t,e){var n=_(t)?t:xe(t);return!(!this.isValid()||!n.isValid())&&("millisecond"===(e=I(e)||"millisecond")?this.valueOf()<n.valueOf():this.clone().endOf(e).valueOf()<n.valueOf())},on.isBetween=function(t,e,n,r){var i=_(t)?t:xe(t),a=_(e)?e:xe(e);return!!(this.isValid()&&i.isValid()&&a.isValid())&&("("===(r=r||"()")[0]?this.isAfter(i,n):!this.isBefore(i,n))&&(")"===r[1]?this.isBefore(a,n):!this.isAfter(a,n))},on.isSame=function(t,e){var n,r=_(t)?t:xe(t);return!(!this.isValid()||!r.isValid())&&("millisecond"===(e=I(e)||"millisecond")?this.valueOf()===r.valueOf():(n=r.valueOf(),this.clone().startOf(e).valueOf()<=n&&n<=this.clone().endOf(e).valueOf()))},on.isSameOrAfter=function(t,e){return this.isSame(t,e)||this.isAfter(t,e)},on.isSameOrBefore=function(t,e){return this.isSame(t,e)||this.isBefore(t,e)},on.isValid=function(){return y(this)},on.lang=We,on.locale=qe,on.localeData=He,on.max=ke,on.min=_e,on.parsingFlags=function(){return f({},p(this))},on.set=function(t,e){if("object"==typeof t)for(var n=function(t){var e=[];for(var n in t)e.push({unit:n,priority:F[n]});return e.sort((function(t,e){return t.priority-e.priority})),e}(t=R(t)),r=0;r<n.length;r++)this[n[r].unit](t[n[r].unit]);else if(O(this[t=I(t)]))return this[t](e);return this},on.startOf=function(t){var e;if(void 0===(t=I(t))||"millisecond"===t||!this.isValid())return this;var n=this._isUTC?Ze:Xe;switch(t){case"year":e=n(this.year(),0,1);break;case"quarter":e=n(this.year(),this.month()-this.month()%3,1);break;case"month":e=n(this.year(),this.month(),1);break;case"week":e=n(this.year(),this.month(),this.date()-this.weekday());break;case"isoWeek":e=n(this.year(),this.month(),this.date()-(this.isoWeekday()-1));break;case"day":case"date":e=n(this.year(),this.month(),this.date());break;case"hour":e=this._d.valueOf(),e-=Ge(e+(this._isUTC?0:6e4*this.utcOffset()),36e5);break;case"minute":e=this._d.valueOf(),e-=Ge(e,6e4);break;case"second":e=this._d.valueOf(),e-=Ge(e,1e3)}return this._d.setTime(e),i.updateOffset(this,!0),this},on.subtract=Ue,on.toArray=function(){var t=this;return[t.year(),t.month(),t.date(),t.hour(),t.minute(),t.second(),t.millisecond()]},on.toObject=function(){var t=this;return{years:t.year(),months:t.month(),date:t.date(),hours:t.hours(),minutes:t.minutes(),seconds:t.seconds(),milliseconds:t.milliseconds()}},on.toDate=function(){return new Date(this.valueOf())},on.toISOString=function(t){if(!this.isValid())return null;var e=!0!==t,n=e?this.clone().utc():this;return n.year()<0||9999<n.year()?W(n,e?"YYYYYY-MM-DD[T]HH:mm:ss.SSS[Z]":"YYYYYY-MM-DD[T]HH:mm:ss.SSSZ"):O(Date.prototype.toISOString)?e?this.toDate().toISOString():new Date(this.valueOf()+60*this.utcOffset()*1e3).toISOString().replace("Z",W(n,"Z")):W(n,e?"YYYY-MM-DD[T]HH:mm:ss.SSS[Z]":"YYYY-MM-DD[T]HH:mm:ss.SSSZ")},on.inspect=function(){if(!this.isValid())return"moment.invalid(/* "+this._i+" */)";var t="moment",e="";this.isLocal()||(t=0===this.utcOffset()?"moment.utc":"moment.parseZone",e="Z");var n="["+t+'("]',r=0<=this.year()&&this.year()<=9999?"YYYY":"YYYYYY",i=e+'[")]';return this.format(n+r+"-MM-DD[T]HH:mm:ss.SSS"+i)},on.toJSON=function(){return this.isValid()?this.toISOString():null},on.toString=function(){return this.clone().locale("en").format("ddd MMM DD YYYY HH:mm:ss [GMT]ZZ")},on.unix=function(){return Math.floor(this.valueOf()/1e3)},on.valueOf=function(){return this._d.valueOf()-6e4*(this._offset||0)},on.creationData=function(){return{input:this._i,format:this._f,locale:this._locale,isUTC:this._isUTC,strict:this._strict}},on.year=bt,on.isLeapYear=function(){return mt(this.year())},on.weekYear=function(t){return Qe.call(this,t,this.week(),this.weekday(),this.localeData()._week.dow,this.localeData()._week.doy)},on.isoWeekYear=function(t){return Qe.call(this,t,this.isoWeek(),this.isoWeekday(),1,4)},on.quarter=on.quarters=function(t){return null==t?Math.ceil((this.month()+1)/3):this.month(3*(t-1)+this.month()%3)},on.month=At,on.daysInMonth=function(){return wt(this.year(),this.month())},on.week=on.weeks=function(t){var e=this.localeData().week(this);return null==t?e:this.add(7*(t-e),"d")},on.isoWeek=on.isoWeeks=function(t){var e=It(this,1,4).week;return null==t?e:this.add(7*(t-e),"d")},on.weeksInYear=function(){var t=this.localeData()._week;return Rt(this.year(),t.dow,t.doy)},on.isoWeeksInYear=function(){return Rt(this.year(),1,4)},on.date=Je,on.day=on.days=function(t){if(!this.isValid())return null!=t?this:NaN;var e,n,r=this._isUTC?this._d.getUTCDay():this._d.getDay();return null!=t?(e=t,n=this.localeData(),t="string"!=typeof e?e:isNaN(e)?"number"==typeof(e=n.weekdaysParse(e))?e:null:parseInt(e,10),this.add(t-r,"d")):r},on.weekday=function(t){if(!this.isValid())return null!=t?this:NaN;var e=(this.day()+7-this.localeData()._week.dow)%7;return null==t?e:this.add(t-e,"d")},on.isoWeekday=function(t){if(!this.isValid())return null!=t?this:NaN;if(null==t)return this.day()||7;var e,n,r=(e=t,n=this.localeData(),"string"==typeof e?n.weekdaysParse(e)%7||7:isNaN(e)?null:e);return this.day(this.day()%7?r:r-7)},on.dayOfYear=function(t){var e=Math.round((this.clone().startOf("day")-this.clone().startOf("year"))/864e5)+1;return null==t?e:this.add(t-e,"d")},on.hour=on.hours=Xt,on.minute=on.minutes=tn,on.second=on.seconds=nn,on.millisecond=on.milliseconds=an,on.utcOffset=function(t,e,n){var r,a=this._offset||0;if(!this.isValid())return null!=t?this:NaN;if(null==t)return this._isUTC?a:Be(this);if("string"==typeof t){if(null===(t=Oe(st,t)))return this}else Math.abs(t)<16&&!n&&(t*=60);return!this._isUTC&&e&&(r=Be(this)),this._offset=t,this._isUTC=!0,null!=r&&this.add(r,"m"),a!==t&&(!e||this._changeInProgress?Ye(this,Re(t-a,"m"),1,!1):this._changeInProgress||(this._changeInProgress=!0,i.updateOffset(this,!0),this._changeInProgress=null)),this},on.utc=function(t){return this.utcOffset(0,t)},on.local=function(t){return this._isUTC&&(this.utcOffset(0,t),this._isUTC=!1,t&&this.subtract(Be(this),"m")),this},on.parseZone=function(){if(null!=this._tzm)this.utcOffset(this._tzm,!1,!0);else if("string"==typeof this._i){var t=Oe(ot,this._i);null!=t?this.utcOffset(t):this.utcOffset(0,!0)}return this},on.hasAlignedHourOffset=function(t){return!!this.isValid()&&(t=t?xe(t).utcOffset():0,(this.utcOffset()-t)%60==0)},on.isDST=function(){return this.utcOffset()>this.clone().month(0).utcOffset()||this.utcOffset()>this.clone().month(5).utcOffset()},on.isLocal=function(){return!!this.isValid()&&!this._isUTC},on.isUtcOffset=function(){return!!this.isValid()&&this._isUTC},on.isUtc=De,on.isUTC=De,on.zoneAbbr=function(){return this._isUTC?"UTC":""},on.zoneName=function(){return this._isUTC?"Coordinated Universal Time":""},on.dates=C("dates accessor is deprecated. Use date instead.",Je),on.months=C("months accessor is deprecated. Use month instead",At),on.years=C("years accessor is deprecated. Use year instead",bt),on.zone=C("moment().zone is deprecated, use moment().utcOffset instead. http://momentjs.com/guides/#/warnings/zone/",(function(t,e){return null!=t?("string"!=typeof t&&(t=-t),this.utcOffset(t,e),this):-this.utcOffset()})),on.isDSTShifted=C("isDSTShifted is deprecated. See http://momentjs.com/guides/#/warnings/dst-shifted/ for more information",(function(){if(!s(this._isDSTShifted))return this._isDSTShifted;var t={};if(v(t,this),(t=ve(t))._a){var e=t._isUTC?d(t._a):xe(t._a);this._isDSTShifted=this.isValid()&&0<T(t._a,e.toArray())}else this._isDSTShifted=!1;return this._isDSTShifted}));var cn=B.prototype;function un(t,e,n,r){var i=re(),a=d().set(r,e);return i[n](a,t)}function ln(t,e,n){if(c(t)&&(e=t,t=void 0),t=t||"",null!=e)return un(t,e,n,"month");var r,i=[];for(r=0;r<12;r++)i[r]=un(t,r,n,"month");return i}function hn(t,e,n,r){"boolean"==typeof t?c(e)&&(n=e,e=void 0):(e=t,t=!1,c(n=e)&&(n=e,e=void 0)),e=e||"";var i,a=re(),o=t?a._week.dow:0;if(null!=n)return un(e,(n+o)%7,r,"day");var s=[];for(i=0;i<7;i++)s[i]=un(e,(i+o)%7,r,"day");return s}cn.calendar=function(t,e,n){var r=this._calendar[t]||this._calendar.sameElse;return O(r)?r.call(e,n):r},cn.longDateFormat=function(t){var e=this._longDateFormat[t],n=this._longDateFormat[t.toUpperCase()];return e||!n?e:(this._longDateFormat[t]=n.replace(/MMMM|MM|DD|dddd/g,(function(t){return t.slice(1)})),this._longDateFormat[t])},cn.invalidDate=function(){return this._invalidDate},cn.ordinal=function(t){return this._ordinal.replace("%d",t)},cn.preparse=sn,cn.postformat=sn,cn.relativeTime=function(t,e,n,r){var i=this._relativeTime[n];return O(i)?i(t,e,n,r):i.replace(/%d/i,t)},cn.pastFuture=function(t,e){var n=this._relativeTime[0<t?"future":"past"];return O(n)?n(e):n.replace(/%s/i,e)},cn.set=function(t){var e,n;for(n in t)O(e=t[n])?this[n]=e:this["_"+n]=e;this._config=t,this._dayOfMonthOrdinalParseLenient=new RegExp((this._dayOfMonthOrdinalParse.source||this._ordinalParse.source)+"|"+/\d{1,2}/.source)},cn.months=function(t,e){return t?a(this._months)?this._months[t.month()]:this._months[(this._months.isFormat||Tt).test(e)?"format":"standalone"][t.month()]:a(this._months)?this._months:this._months.standalone},cn.monthsShort=function(t,e){return t?a(this._monthsShort)?this._monthsShort[t.month()]:this._monthsShort[Tt.test(e)?"format":"standalone"][t.month()]:a(this._monthsShort)?this._monthsShort:this._monthsShort.standalone},cn.monthsParse=function(t,e,n){var r,i,a;if(this._monthsParseExact)return function(t,e,n){var r,i,a,o=t.toLocaleLowerCase();if(!this._monthsParse)for(this._monthsParse=[],this._longMonthsParse=[],this._shortMonthsParse=[],r=0;r<12;++r)a=d([2e3,r]),this._shortMonthsParse[r]=this.monthsShort(a,"").toLocaleLowerCase(),this._longMonthsParse[r]=this.months(a,"").toLocaleLowerCase();return n?"MMM"===e?-1!==(i=vt.call(this._shortMonthsParse,o))?i:null:-1!==(i=vt.call(this._longMonthsParse,o))?i:null:"MMM"===e?-1!==(i=vt.call(this._shortMonthsParse,o))||-1!==(i=vt.call(this._longMonthsParse,o))?i:null:-1!==(i=vt.call(this._longMonthsParse,o))||-1!==(i=vt.call(this._shortMonthsParse,o))?i:null}.call(this,t,e,n);for(this._monthsParse||(this._monthsParse=[],this._longMonthsParse=[],this._shortMonthsParse=[]),r=0;r<12;r++){if(i=d([2e3,r]),n&&!this._longMonthsParse[r]&&(this._longMonthsParse[r]=new RegExp("^"+this.months(i,"").replace(".","")+"$","i"),this._shortMonthsParse[r]=new RegExp("^"+this.monthsShort(i,"").replace(".","")+"$","i")),n||this._monthsParse[r]||(a="^"+this.months(i,"")+"|^"+this.monthsShort(i,""),this._monthsParse[r]=new RegExp(a.replace(".",""),"i")),n&&"MMMM"===e&&this._longMonthsParse[r].test(t))return r;if(n&&"MMM"===e&&this._shortMonthsParse[r].test(t))return r;if(!n&&this._monthsParse[r].test(t))return r}},cn.monthsRegex=function(t){return this._monthsParseExact?(h(this,"_monthsRegex")||Nt.call(this),t?this._monthsStrictRegex:this._monthsRegex):(h(this,"_monthsRegex")||(this._monthsRegex=Ot),this._monthsStrictRegex&&t?this._monthsStrictRegex:this._monthsRegex)},cn.monthsShortRegex=function(t){return this._monthsParseExact?(h(this,"_monthsRegex")||Nt.call(this),t?this._monthsShortStrictRegex:this._monthsShortRegex):(h(this,"_monthsShortRegex")||(this._monthsShortRegex=Mt),this._monthsShortStrictRegex&&t?this._monthsShortStrictRegex:this._monthsShortRegex)},cn.week=function(t){return It(t,this._week.dow,this._week.doy).week},cn.firstDayOfYear=function(){return this._week.doy},cn.firstDayOfWeek=function(){return this._week.dow},cn.weekdays=function(t,e){var n=a(this._weekdays)?this._weekdays:this._weekdays[t&&!0!==t&&this._weekdays.isFormat.test(e)?"format":"standalone"];return!0===t?Ft(n,this._week.dow):t?n[t.day()]:n},cn.weekdaysMin=function(t){return!0===t?Ft(this._weekdaysMin,this._week.dow):t?this._weekdaysMin[t.day()]:this._weekdaysMin},cn.weekdaysShort=function(t){return!0===t?Ft(this._weekdaysShort,this._week.dow):t?this._weekdaysShort[t.day()]:this._weekdaysShort},cn.weekdaysParse=function(t,e,n){var r,i,a;if(this._weekdaysParseExact)return function(t,e,n){var r,i,a,o=t.toLocaleLowerCase();if(!this._weekdaysParse)for(this._weekdaysParse=[],this._shortWeekdaysParse=[],this._minWeekdaysParse=[],r=0;r<7;++r)a=d([2e3,1]).day(r),this._minWeekdaysParse[r]=this.weekdaysMin(a,"").toLocaleLowerCase(),this._shortWeekdaysParse[r]=this.weekdaysShort(a,"").toLocaleLowerCase(),this._weekdaysParse[r]=this.weekdays(a,"").toLocaleLowerCase();return n?"dddd"===e?-1!==(i=vt.call(this._weekdaysParse,o))?i:null:"ddd"===e?-1!==(i=vt.call(this._shortWeekdaysParse,o))?i:null:-1!==(i=vt.call(this._minWeekdaysParse,o))?i:null:"dddd"===e?-1!==(i=vt.call(this._weekdaysParse,o))||-1!==(i=vt.call(this._shortWeekdaysParse,o))||-1!==(i=vt.call(this._minWeekdaysParse,o))?i:null:"ddd"===e?-1!==(i=vt.call(this._shortWeekdaysParse,o))||-1!==(i=vt.call(this._weekdaysParse,o))||-1!==(i=vt.call(this._minWeekdaysParse,o))?i:null:-1!==(i=vt.call(this._minWeekdaysParse,o))||-1!==(i=vt.call(this._weekdaysParse,o))||-1!==(i=vt.call(this._shortWeekdaysParse,o))?i:null}.call(this,t,e,n);for(this._weekdaysParse||(this._weekdaysParse=[],this._minWeekdaysParse=[],this._shortWeekdaysParse=[],this._fullWeekdaysParse=[]),r=0;r<7;r++){if(i=d([2e3,1]).day(r),n&&!this._fullWeekdaysParse[r]&&(this._fullWeekdaysParse[r]=new RegExp("^"+this.weekdays(i,"").replace(".","\\.?")+"$","i"),this._shortWeekdaysParse[r]=new RegExp("^"+this.weekdaysShort(i,"").replace(".","\\.?")+"$","i"),this._minWeekdaysParse[r]=new RegExp("^"+this.weekdaysMin(i,"").replace(".","\\.?")+"$","i")),this._weekdaysParse[r]||(a="^"+this.weekdays(i,"")+"|^"+this.weekdaysShort(i,"")+"|^"+this.weekdaysMin(i,""),this._weekdaysParse[r]=new RegExp(a.replace(".",""),"i")),n&&"dddd"===e&&this._fullWeekdaysParse[r].test(t))return r;if(n&&"ddd"===e&&this._shortWeekdaysParse[r].test(t))return r;if(n&&"dd"===e&&this._minWeekdaysParse[r].test(t))return r;if(!n&&this._weekdaysParse[r].test(t))return r}},cn.weekdaysRegex=function(t){return this._weekdaysParseExact?(h(this,"_weekdaysRegex")||qt.call(this),t?this._weekdaysStrictRegex:this._weekdaysRegex):(h(this,"_weekdaysRegex")||(this._weekdaysRegex=zt),this._weekdaysStrictRegex&&t?this._weekdaysStrictRegex:this._weekdaysRegex)},cn.weekdaysShortRegex=function(t){return this._weekdaysParseExact?(h(this,"_weekdaysRegex")||qt.call(this),t?this._weekdaysShortStrictRegex:this._weekdaysShortRegex):(h(this,"_weekdaysShortRegex")||(this._weekdaysShortRegex=Ut),this._weekdaysShortStrictRegex&&t?this._weekdaysShortStrictRegex:this._weekdaysShortRegex)},cn.weekdaysMinRegex=function(t){return this._weekdaysParseExact?(h(this,"_weekdaysRegex")||qt.call(this),t?this._weekdaysMinStrictRegex:this._weekdaysMinRegex):(h(this,"_weekdaysMinRegex")||(this._weekdaysMinRegex=$t),this._weekdaysMinStrictRegex&&t?this._weekdaysMinStrictRegex:this._weekdaysMinRegex)},cn.isPM=function(t){return"p"===(t+"").toLowerCase().charAt(0)},cn.meridiem=function(t,e,n){return 11<t?n?"pm":"PM":n?"am":"AM"},ee("en",{dayOfMonthOrdinalParse:/\d{1,2}(th|st|nd|rd)/,ordinal:function(t){var e=t%10;return t+(1===w(t%100/10)?"th":1===e?"st":2===e?"nd":3===e?"rd":"th")}}),i.lang=C("moment.lang is deprecated. Use moment.locale instead.",ee),i.langData=C("moment.langData is deprecated. Use moment.localeData instead.",re);var fn=Math.abs;function dn(t,e,n,r){var i=Re(e,n);return t._milliseconds+=r*i._milliseconds,t._days+=r*i._days,t._months+=r*i._months,t._bubble()}function pn(t){return t<0?Math.floor(t):Math.ceil(t)}function yn(t){return 4800*t/146097}function gn(t){return 146097*t/4800}function mn(t){return function(){return this.as(t)}}var vn=mn("ms"),bn=mn("s"),xn=mn("m"),_n=mn("h"),kn=mn("d"),wn=mn("w"),Tn=mn("M"),En=mn("Q"),Cn=mn("y");function Sn(t){return function(){return this.isValid()?this._data[t]:NaN}}var An=Sn("milliseconds"),Mn=Sn("seconds"),On=Sn("minutes"),Nn=Sn("hours"),Bn=Sn("days"),Dn=Sn("months"),Ln=Sn("years"),In=Math.round,Rn={ss:44,s:45,m:45,h:22,d:26,M:11},Fn=Math.abs;function Pn(t){return(0<t)-(t<0)||+t}function jn(){if(!this.isValid())return this.localeData().invalidDate();var t,e,n=Fn(this._milliseconds)/1e3,r=Fn(this._days),i=Fn(this._months);e=k((t=k(n/60))/60),n%=60,t%=60;var a=k(i/12),o=i%=12,s=r,c=e,u=t,l=n?n.toFixed(3).replace(/\.?0+$/,""):"",h=this.asSeconds();if(!h)return"P0D";var f=h<0?"-":"",d=Pn(this._months)!==Pn(h)?"-":"",p=Pn(this._days)!==Pn(h)?"-":"",y=Pn(this._milliseconds)!==Pn(h)?"-":"";return f+"P"+(a?d+a+"Y":"")+(o?d+o+"M":"")+(s?p+s+"D":"")+(c||u||l?"T":"")+(c?y+c+"H":"")+(u?y+u+"M":"")+(l?y+l+"S":"")}var Yn=Ee.prototype;return Yn.isValid=function(){return this._isValid},Yn.abs=function(){var t=this._data;return this._milliseconds=fn(this._milliseconds),this._days=fn(this._days),this._months=fn(this._months),t.milliseconds=fn(t.milliseconds),t.seconds=fn(t.seconds),t.minutes=fn(t.minutes),t.hours=fn(t.hours),t.months=fn(t.months),t.years=fn(t.years),this},Yn.add=function(t,e){return dn(this,t,e,1)},Yn.subtract=function(t,e){return dn(this,t,e,-1)},Yn.as=function(t){if(!this.isValid())return NaN;var e,n,r=this._milliseconds;if("month"===(t=I(t))||"quarter"===t||"year"===t)switch(e=this._days+r/864e5,n=this._months+yn(e),t){case"month":return n;case"quarter":return n/3;case"year":return n/12}else switch(e=this._days+Math.round(gn(this._months)),t){case"week":return e/7+r/6048e5;case"day":return e+r/864e5;case"hour":return 24*e+r/36e5;case"minute":return 1440*e+r/6e4;case"second":return 86400*e+r/1e3;case"millisecond":return Math.floor(864e5*e)+r;default:throw new Error("Unknown unit "+t)}},Yn.asMilliseconds=vn,Yn.asSeconds=bn,Yn.asMinutes=xn,Yn.asHours=_n,Yn.asDays=kn,Yn.asWeeks=wn,Yn.asMonths=Tn,Yn.asQuarters=En,Yn.asYears=Cn,Yn.valueOf=function(){return this.isValid()?this._milliseconds+864e5*this._days+this._months%12*2592e6+31536e6*w(this._months/12):NaN},Yn._bubble=function(){var t,e,n,r,i,a=this._milliseconds,o=this._days,s=this._months,c=this._data;return 0<=a&&0<=o&&0<=s||a<=0&&o<=0&&s<=0||(a+=864e5*pn(gn(s)+o),s=o=0),c.milliseconds=a%1e3,t=k(a/1e3),c.seconds=t%60,e=k(t/60),c.minutes=e%60,n=k(e/60),c.hours=n%24,s+=i=k(yn(o+=k(n/24))),o-=pn(gn(i)),r=k(s/12),s%=12,c.days=o,c.months=s,c.years=r,this},Yn.clone=function(){return Re(this)},Yn.get=function(t){return t=I(t),this.isValid()?this[t+"s"]():NaN},Yn.milliseconds=An,Yn.seconds=Mn,Yn.minutes=On,Yn.hours=Nn,Yn.days=Bn,Yn.weeks=function(){return k(this.days()/7)},Yn.months=Dn,Yn.years=Ln,Yn.humanize=function(t){if(!this.isValid())return this.localeData().invalidDate();var e,n,r,i,a,o,s,c,u,l,h=this.localeData(),f=(e=!t,n=h,r=Re(this).abs(),i=In(r.as("s")),a=In(r.as("m")),o=In(r.as("h")),s=In(r.as("d")),c=In(r.as("M")),u=In(r.as("y")),(l=i<=Rn.ss&&["s",i]||i<Rn.s&&["ss",i]||a<=1&&["m"]||a<Rn.m&&["mm",a]||o<=1&&["h"]||o<Rn.h&&["hh",o]||s<=1&&["d"]||s<Rn.d&&["dd",s]||c<=1&&["M"]||c<Rn.M&&["MM",c]||u<=1&&["y"]||["yy",u])[2]=e,l[3]=0<+this,l[4]=n,function(t,e,n,r,i){return i.relativeTime(e||1,!!n,t,r)}.apply(null,l));return t&&(f=h.pastFuture(+this,f)),h.postformat(f)},Yn.toISOString=jn,Yn.toString=jn,Yn.toJSON=jn,Yn.locale=qe,Yn.localeData=He,Yn.toIsoString=C("toIsoString() is deprecated. Please use toISOString() instead (notice the capitals)",jn),Yn.lang=We,q("X",0,0,"unix"),q("x",0,0,"valueOf"),lt("x",at),lt("X",/[+-]?\d+(\.\d{1,3})?/),pt("X",(function(t,e,n){n._d=new Date(1e3*parseFloat(t,10))})),pt("x",(function(t,e,n){n._d=new Date(w(t))})),i.version="2.24.0",e=xe,i.fn=on,i.min=function(){return we("isBefore",[].slice.call(arguments,0))},i.max=function(){return we("isAfter",[].slice.call(arguments,0))},i.now=function(){return Date.now?Date.now():+new Date},i.utc=d,i.unix=function(t){return xe(1e3*t)},i.months=function(t,e){return ln(t,e,"months")},i.isDate=u,i.locale=ee,i.invalid=g,i.duration=Re,i.isMoment=_,i.weekdays=function(t,e,n){return hn(t,e,n,"weekdays")},i.parseZone=function(){return xe.apply(null,arguments).parseZone()},i.localeData=re,i.isDuration=Ce,i.monthsShort=function(t,e){return ln(t,e,"monthsShort")},i.weekdaysMin=function(t,e,n){return hn(t,e,n,"weekdaysMin")},i.defineLocale=ne,i.updateLocale=function(t,e){if(null!=e){var n,r,i=Zt;null!=(r=te(t))&&(i=r._config),(n=new B(e=N(i,e))).parentLocale=Kt[t],Kt[t]=n,ee(t)}else null!=Kt[t]&&(null!=Kt[t].parentLocale?Kt[t]=Kt[t].parentLocale:null!=Kt[t]&&delete Kt[t]);return Kt[t]},i.locales=function(){return S(Kt)},i.weekdaysShort=function(t,e,n){return hn(t,e,n,"weekdaysShort")},i.normalizeUnits=I,i.relativeTimeRounding=function(t){return void 0===t?In:"function"==typeof t&&(In=t,!0)},i.relativeTimeThreshold=function(t,e){return void 0!==Rn[t]&&(void 0===e?Rn[t]:(Rn[t]=e,"s"===t&&(Rn.ss=e-1),!0))},i.calendarFormat=function(t,e){var n=t.diff(e,"days",!0);return n<-6?"sameElse":n<-1?"lastWeek":n<0?"lastDay":n<1?"sameDay":n<2?"nextDay":n<7?"nextWeek":"sameElse"},i.prototype=on,i.HTML5_FMT={DATETIME_LOCAL:"YYYY-MM-DDTHH:mm",DATETIME_LOCAL_SECONDS:"YYYY-MM-DDTHH:mm:ss",DATETIME_LOCAL_MS:"YYYY-MM-DDTHH:mm:ss.SSS",DATE:"YYYY-MM-DD",TIME:"HH:mm",TIME_SECONDS:"HH:mm:ss",TIME_MS:"HH:mm:ss.SSS",WEEK:"GGGG-[W]WW",MONTH:"YYYY-MM"},i}()}).call(this,n(7)(t))},function(t,e,n){(function(t,r){var i=function(){var t=function(t,e,n,r){for(n=n||{},r=t.length;r--;n[t[r]]=e);return n},e=[1,3],n=[1,5],r=[7,9,11,12,13,14,15,16,17,18,19,21,28,33],i=[1,15],a=[1,16],o=[1,17],s=[1,18],c=[1,19],u=[1,20],l=[1,21],h=[1,22],f=[1,24],d=[1,26],p=[1,29],y=[5,7,9,11,12,13,14,15,16,17,18,19,21,28,33],g={trace:function(){},yy:{},symbols_:{error:2,start:3,directive:4,gantt:5,document:6,EOF:7,line:8,SPACE:9,statement:10,NL:11,dateFormat:12,inclusiveEndDates:13,topAxis:14,axisFormat:15,excludes:16,todayMarker:17,title:18,section:19,clickStatement:20,taskTxt:21,taskData:22,openDirective:23,typeDirective:24,closeDirective:25,":":26,argDirective:27,click:28,callbackname:29,callbackargs:30,href:31,clickStatementDebug:32,open_directive:33,type_directive:34,arg_directive:35,close_directive:36,$accept:0,$end:1},terminals_:{2:"error",5:"gantt",7:"EOF",9:"SPACE",11:"NL",12:"dateFormat",13:"inclusiveEndDates",14:"topAxis",15:"axisFormat",16:"excludes",17:"todayMarker",18:"title",19:"section",21:"taskTxt",22:"taskData",26:":",28:"click",29:"callbackname",30:"callbackargs",31:"href",33:"open_directive",34:"type_directive",35:"arg_directive",36:"close_directive"},productions_:[0,[3,2],[3,3],[6,0],[6,2],[8,2],[8,1],[8,1],[8,1],[10,1],[10,1],[10,1],[10,1],[10,1],[10,1],[10,1],[10,1],[10,1],[10,2],[10,1],[4,4],[4,6],[20,2],[20,3],[20,3],[20,4],[20,3],[20,4],[20,2],[32,2],[32,3],[32,3],[32,4],[32,3],[32,4],[32,2],[23,1],[24,1],[27,1],[25,1]],performAction:function(t,e,n,r,i,a,o){var s=a.length-1;switch(i){case 2:return a[s-1];case 3:this.$=[];break;case 4:a[s-1].push(a[s]),this.$=a[s-1];break;case 5:case 6:this.$=a[s];break;case 7:case 8:this.$=[];break;case 9:r.setDateFormat(a[s].substr(11)),this.$=a[s].substr(11);break;case 10:r.enableInclusiveEndDates(),this.$=a[s].substr(18);break;case 11:r.TopAxis(),this.$=a[s].substr(8);break;case 12:r.setAxisFormat(a[s].substr(11)),this.$=a[s].substr(11);break;case 13:r.setExcludes(a[s].substr(9)),this.$=a[s].substr(9);break;case 14:r.setTodayMarker(a[s].substr(12)),this.$=a[s].substr(12);break;case 15:r.setTitle(a[s].substr(6)),this.$=a[s].substr(6);break;case 16:r.addSection(a[s].substr(8)),this.$=a[s].substr(8);break;case 18:r.addTask(a[s-1],a[s]),this.$="task";break;case 22:this.$=a[s-1],r.setClickEvent(a[s-1],a[s],null);break;case 23:this.$=a[s-2],r.setClickEvent(a[s-2],a[s-1],a[s]);break;case 24:this.$=a[s-2],r.setClickEvent(a[s-2],a[s-1],null),r.setLink(a[s-2],a[s]);break;case 25:this.$=a[s-3],r.setClickEvent(a[s-3],a[s-2],a[s-1]),r.setLink(a[s-3],a[s]);break;case 26:this.$=a[s-2],r.setClickEvent(a[s-2],a[s],null),r.setLink(a[s-2],a[s-1]);break;case 27:this.$=a[s-3],r.setClickEvent(a[s-3],a[s-1],a[s]),r.setLink(a[s-3],a[s-2]);break;case 28:this.$=a[s-1],r.setLink(a[s-1],a[s]);break;case 29:case 35:this.$=a[s-1]+" "+a[s];break;case 30:case 31:case 33:this.$=a[s-2]+" "+a[s-1]+" "+a[s];break;case 32:case 34:this.$=a[s-3]+" "+a[s-2]+" "+a[s-1]+" "+a[s];break;case 36:r.parseDirective("%%{","open_directive");break;case 37:r.parseDirective(a[s],"type_directive");break;case 38:a[s]=a[s].trim().replace(/'/g,'"'),r.parseDirective(a[s],"arg_directive");break;case 39:r.parseDirective("}%%","close_directive","gantt")}},table:[{3:1,4:2,5:e,23:4,33:n},{1:[3]},{3:6,4:2,5:e,23:4,33:n},t(r,[2,3],{6:7}),{24:8,34:[1,9]},{34:[2,36]},{1:[2,1]},{4:25,7:[1,10],8:11,9:[1,12],10:13,11:[1,14],12:i,13:a,14:o,15:s,16:c,17:u,18:l,19:h,20:23,21:f,23:4,28:d,33:n},{25:27,26:[1,28],36:p},t([26,36],[2,37]),t(r,[2,8],{1:[2,2]}),t(r,[2,4]),{4:25,10:30,12:i,13:a,14:o,15:s,16:c,17:u,18:l,19:h,20:23,21:f,23:4,28:d,33:n},t(r,[2,6]),t(r,[2,7]),t(r,[2,9]),t(r,[2,10]),t(r,[2,11]),t(r,[2,12]),t(r,[2,13]),t(r,[2,14]),t(r,[2,15]),t(r,[2,16]),t(r,[2,17]),{22:[1,31]},t(r,[2,19]),{29:[1,32],31:[1,33]},{11:[1,34]},{27:35,35:[1,36]},{11:[2,39]},t(r,[2,5]),t(r,[2,18]),t(r,[2,22],{30:[1,37],31:[1,38]}),t(r,[2,28],{29:[1,39]}),t(y,[2,20]),{25:40,36:p},{36:[2,38]},t(r,[2,23],{31:[1,41]}),t(r,[2,24]),t(r,[2,26],{30:[1,42]}),{11:[1,43]},t(r,[2,25]),t(r,[2,27]),t(y,[2,21])],defaultActions:{5:[2,36],6:[2,1],29:[2,39],36:[2,38]},parseError:function(t,e){if(!e.recoverable){var n=new Error(t);throw n.hash=e,n}this.trace(t)},parse:function(t){var e=this,n=[0],r=[],i=[null],a=[],o=this.table,s="",c=0,u=0,l=0,h=2,f=1,d=a.slice.call(arguments,1),p=Object.create(this.lexer),y={yy:{}};for(var g in this.yy)Object.prototype.hasOwnProperty.call(this.yy,g)&&(y.yy[g]=this.yy[g]);p.setInput(t,y.yy),y.yy.lexer=p,y.yy.parser=this,void 0===p.yylloc&&(p.yylloc={});var m=p.yylloc;a.push(m);var v=p.options&&p.options.ranges;function b(){var t;return"number"!=typeof(t=r.pop()||p.lex()||f)&&(t instanceof Array&&(t=(r=t).pop()),t=e.symbols_[t]||t),t}"function"==typeof y.yy.parseError?this.parseError=y.yy.parseError:this.parseError=Object.getPrototypeOf(this).parseError;for(var x,_,k,w,T,E,C,S,A,M={};;){if(k=n[n.length-1],this.defaultActions[k]?w=this.defaultActions[k]:(null==x&&(x=b()),w=o[k]&&o[k][x]),void 0===w||!w.length||!w[0]){var O="";for(E in A=[],o[k])this.terminals_[E]&&E>h&&A.push("'"+this.terminals_[E]+"'");O=p.showPosition?"Parse error on line "+(c+1)+":\n"+p.showPosition()+"\nExpecting "+A.join(", ")+", got '"+(this.terminals_[x]||x)+"'":"Parse error on line "+(c+1)+": Unexpected "+(x==f?"end of input":"'"+(this.terminals_[x]||x)+"'"),this.parseError(O,{text:p.match,token:this.terminals_[x]||x,line:p.yylineno,loc:m,expected:A})}if(w[0]instanceof Array&&w.length>1)throw new Error("Parse Error: multiple actions possible at state: "+k+", token: "+x);switch(w[0]){case 1:n.push(x),i.push(p.yytext),a.push(p.yylloc),n.push(w[1]),x=null,_?(x=_,_=null):(u=p.yyleng,s=p.yytext,c=p.yylineno,m=p.yylloc,l>0&&l--);break;case 2:if(C=this.productions_[w[1]][1],M.$=i[i.length-C],M._$={first_line:a[a.length-(C||1)].first_line,last_line:a[a.length-1].last_line,first_column:a[a.length-(C||1)].first_column,last_column:a[a.length-1].last_column},v&&(M._$.range=[a[a.length-(C||1)].range[0],a[a.length-1].range[1]]),void 0!==(T=this.performAction.apply(M,[s,u,c,y.yy,w[1],i,a].concat(d))))return T;C&&(n=n.slice(0,-1*C*2),i=i.slice(0,-1*C),a=a.slice(0,-1*C)),n.push(this.productions_[w[1]][0]),i.push(M.$),a.push(M._$),S=o[n[n.length-2]][n[n.length-1]],n.push(S);break;case 3:return!0}}return!0}},m={EOF:1,parseError:function(t,e){if(!this.yy.parser)throw new Error(t);this.yy.parser.parseError(t,e)},setInput:function(t,e){return this.yy=e||this.yy||{},this._input=t,this._more=this._backtrack=this.done=!1,this.yylineno=this.yyleng=0,this.yytext=this.matched=this.match="",this.conditionStack=["INITIAL"],this.yylloc={first_line:1,first_column:0,last_line:1,last_column:0},this.options.ranges&&(this.yylloc.range=[0,0]),this.offset=0,this},input:function(){var t=this._input[0];return this.yytext+=t,this.yyleng++,this.offset++,this.match+=t,this.matched+=t,t.match(/(?:\r\n?|\n).*/g)?(this.yylineno++,this.yylloc.last_line++):this.yylloc.last_column++,this.options.ranges&&this.yylloc.range[1]++,this._input=this._input.slice(1),t},unput:function(t){var e=t.length,n=t.split(/(?:\r\n?|\n)/g);this._input=t+this._input,this.yytext=this.yytext.substr(0,this.yytext.length-e),this.offset-=e;var r=this.match.split(/(?:\r\n?|\n)/g);this.match=this.match.substr(0,this.match.length-1),this.matched=this.matched.substr(0,this.matched.length-1),n.length-1&&(this.yylineno-=n.length-1);var i=this.yylloc.range;return this.yylloc={first_line:this.yylloc.first_line,last_line:this.yylineno+1,first_column:this.yylloc.first_column,last_column:n?(n.length===r.length?this.yylloc.first_column:0)+r[r.length-n.length].length-n[0].length:this.yylloc.first_column-e},this.options.ranges&&(this.yylloc.range=[i[0],i[0]+this.yyleng-e]),this.yyleng=this.yytext.length,this},more:function(){return this._more=!0,this},reject:function(){return this.options.backtrack_lexer?(this._backtrack=!0,this):this.parseError("Lexical error on line "+(this.yylineno+1)+". You can only invoke reject() in the lexer when the lexer is of the backtracking persuasion (options.backtrack_lexer = true).\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},less:function(t){this.unput(this.match.slice(t))},pastInput:function(){var t=this.matched.substr(0,this.matched.length-this.match.length);return(t.length>20?"...":"")+t.substr(-20).replace(/\n/g,"")},upcomingInput:function(){var t=this.match;return t.length<20&&(t+=this._input.substr(0,20-t.length)),(t.substr(0,20)+(t.length>20?"...":"")).replace(/\n/g,"")},showPosition:function(){var t=this.pastInput(),e=new Array(t.length+1).join("-");return t+this.upcomingInput()+"\n"+e+"^"},test_match:function(t,e){var n,r,i;if(this.options.backtrack_lexer&&(i={yylineno:this.yylineno,yylloc:{first_line:this.yylloc.first_line,last_line:this.last_line,first_column:this.yylloc.first_column,last_column:this.yylloc.last_column},yytext:this.yytext,match:this.match,matches:this.matches,matched:this.matched,yyleng:this.yyleng,offset:this.offset,_more:this._more,_input:this._input,yy:this.yy,conditionStack:this.conditionStack.slice(0),done:this.done},this.options.ranges&&(i.yylloc.range=this.yylloc.range.slice(0))),(r=t[0].match(/(?:\r\n?|\n).*/g))&&(this.yylineno+=r.length),this.yylloc={first_line:this.yylloc.last_line,last_line:this.yylineno+1,first_column:this.yylloc.last_column,last_column:r?r[r.length-1].length-r[r.length-1].match(/\r?\n?/)[0].length:this.yylloc.last_column+t[0].length},this.yytext+=t[0],this.match+=t[0],this.matches=t,this.yyleng=this.yytext.length,this.options.ranges&&(this.yylloc.range=[this.offset,this.offset+=this.yyleng]),this._more=!1,this._backtrack=!1,this._input=this._input.slice(t[0].length),this.matched+=t[0],n=this.performAction.call(this,this.yy,this,e,this.conditionStack[this.conditionStack.length-1]),this.done&&this._input&&(this.done=!1),n)return n;if(this._backtrack){for(var a in i)this[a]=i[a];return!1}return!1},next:function(){if(this.done)return this.EOF;var t,e,n,r;this._input||(this.done=!0),this._more||(this.yytext="",this.match="");for(var i=this._currentRules(),a=0;a<i.length;a++)if((n=this._input.match(this.rules[i[a]]))&&(!e||n[0].length>e[0].length)){if(e=n,r=a,this.options.backtrack_lexer){if(!1!==(t=this.test_match(n,i[a])))return t;if(this._backtrack){e=!1;continue}return!1}if(!this.options.flex)break}return e?!1!==(t=this.test_match(e,i[r]))&&t:""===this._input?this.EOF:this.parseError("Lexical error on line "+(this.yylineno+1)+". Unrecognized text.\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},lex:function(){var t=this.next();return t||this.lex()},begin:function(t){this.conditionStack.push(t)},popState:function(){return this.conditionStack.length-1>0?this.conditionStack.pop():this.conditionStack[0]},_currentRules:function(){return this.conditionStack.length&&this.conditionStack[this.conditionStack.length-1]?this.conditions[this.conditionStack[this.conditionStack.length-1]].rules:this.conditions.INITIAL.rules},topState:function(t){return(t=this.conditionStack.length-1-Math.abs(t||0))>=0?this.conditionStack[t]:"INITIAL"},pushState:function(t){this.begin(t)},stateStackSize:function(){return this.conditionStack.length},options:{"case-insensitive":!0},performAction:function(t,e,n,r){switch(n){case 0:return this.begin("open_directive"),33;case 1:return this.begin("type_directive"),34;case 2:return this.popState(),this.begin("arg_directive"),26;case 3:return this.popState(),this.popState(),36;case 4:return 35;case 5:case 6:case 7:break;case 8:return 11;case 9:case 10:case 11:break;case 12:this.begin("href");break;case 13:this.popState();break;case 14:return 31;case 15:this.begin("callbackname");break;case 16:this.popState();break;case 17:this.popState(),this.begin("callbackargs");break;case 18:return 29;case 19:this.popState();break;case 20:return 30;case 21:this.begin("click");break;case 22:this.popState();break;case 23:return 28;case 24:return 5;case 25:return 12;case 26:return 13;case 27:return 14;case 28:return 15;case 29:return 16;case 30:return 17;case 31:return"date";case 32:return 18;case 33:return 19;case 34:return 21;case 35:return 22;case 36:return 26;case 37:return 7;case 38:return"INVALID"}},rules:[/^(?:%%\{)/i,/^(?:((?:(?!\}%%)[^:.])*))/i,/^(?::)/i,/^(?:\}%%)/i,/^(?:((?:(?!\}%%).|\n)*))/i,/^(?:%%(?!\{)*[^\n]*)/i,/^(?:[^\}]%%*[^\n]*)/i,/^(?:%%*[^\n]*[\n]*)/i,/^(?:[\n]+)/i,/^(?:\s+)/i,/^(?:#[^\n]*)/i,/^(?:%[^\n]*)/i,/^(?:href[\s]+["])/i,/^(?:["])/i,/^(?:[^"]*)/i,/^(?:call[\s]+)/i,/^(?:\([\s]*\))/i,/^(?:\()/i,/^(?:[^(]*)/i,/^(?:\))/i,/^(?:[^)]*)/i,/^(?:click[\s]+)/i,/^(?:[\s\n])/i,/^(?:[^\s\n]*)/i,/^(?:gantt\b)/i,/^(?:dateFormat\s[^#\n;]+)/i,/^(?:inclusiveEndDates\b)/i,/^(?:topAxis\b)/i,/^(?:axisFormat\s[^#\n;]+)/i,/^(?:excludes\s[^#\n;]+)/i,/^(?:todayMarker\s[^\n;]+)/i,/^(?:\d\d\d\d-\d\d-\d\d\b)/i,/^(?:title\s[^#\n;]+)/i,/^(?:section\s[^#:\n;]+)/i,/^(?:[^#:\n;]+)/i,/^(?::[^#\n;]+)/i,/^(?::)/i,/^(?:$)/i,/^(?:.)/i],conditions:{close_directive:{rules:[],inclusive:!1},arg_directive:{rules:[3,4],inclusive:!1},type_directive:{rules:[2,3],inclusive:!1},open_directive:{rules:[1],inclusive:!1},callbackargs:{rules:[19,20],inclusive:!1},callbackname:{rules:[16,17,18],inclusive:!1},href:{rules:[13,14],inclusive:!1},click:{rules:[22,23],inclusive:!1},INITIAL:{rules:[0,5,6,7,8,9,10,11,12,15,21,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38],inclusive:!0}}};function v(){this.yy={}}return g.lexer=m,v.prototype=g,g.Parser=v,new v}();e.parser=i,e.Parser=i.Parser,e.parse=function(){return i.parse.apply(i,arguments)},e.main=function(r){r[1]||(console.log("Usage: "+r[0]+" FILE"),t.exit(1));var i=n(17).readFileSync(n(18).normalize(r[1]),"utf8");return e.parser.parse(i)},n.c[n.s]===r&&e.main(t.argv.slice(1))}).call(this,n(12),n(7)(t))},function(t,e,n){var r=n(39),i=n(82);t.exports=function(t){return null!=t&&i(t.length)&&!r(t)}},function(t,e,n){var r=n(261),i=n(271),a=n(36),o=n(5),s=n(278);t.exports=function(t){return"function"==typeof t?t:null==t?a:"object"==typeof t?o(t)?i(t[0],t[1]):r(t):s(t)}},function(t,e,n){(function(t,r){var i=function(){var t=function(t,e,n,r){for(n=n||{},r=t.length;r--;n[t[r]]=e);return n},e=[1,9],n=[1,7],r=[1,6],i=[1,8],a=[1,20,21,22,23,38,47,76,77,78,79,80,81,95,96,99,100,101,103,104,110,111,112,113,114,115,116,117,118,119],o=[2,10],s=[1,20],c=[1,21],u=[1,22],l=[1,23],h=[1,30],f=[1,59],d=[1,33],p=[1,34],y=[1,35],g=[1,36],m=[1,37],v=[1,53],b=[1,48],x=[1,50],_=[1,45],k=[1,49],w=[1,52],T=[1,56],E=[1,57],C=[1,38],S=[1,39],A=[1,40],M=[1,41],O=[1,58],N=[1,47],B=[1,51],D=[1,54],L=[1,55],I=[1,46],R=[1,62],F=[1,67],P=[1,20,21,22,23,38,42,47,76,77,78,79,80,81,95,96,99,100,101,103,104,110,111,112,113,114,115,116,117,118,119],j=[1,71],Y=[1,70],z=[1,72],U=[20,21,23,70,71],$=[1,93],q=[1,98],W=[1,95],H=[1,100],V=[1,103],G=[1,101],X=[1,102],Z=[1,96],K=[1,108],Q=[1,107],J=[1,97],tt=[1,99],et=[1,104],nt=[1,105],rt=[1,106],it=[1,109],at=[20,21,22,23,70,71],ot=[20,21,22,23,48,70,71],st=[20,21,22,23,40,47,48,50,52,54,56,58,60,62,63,65,70,71,81,95,96,99,100,101,103,104,114,115,116,117,118,119],ct=[20,21,23],ut=[20,21,23,47,70,71,81,95,96,99,100,101,103,104,114,115,116,117,118,119],lt=[1,12,20,21,22,23,24,38,42,47,76,77,78,79,80,81,95,96,99,100,101,103,104,110,111,112,113,114,115,116,117,118,119],ht=[47,81,95,96,99,100,101,103,104,114,115,116,117,118,119],ft=[1,141],dt=[1,149],pt=[1,150],yt=[1,151],gt=[1,152],mt=[1,136],vt=[1,137],bt=[1,133],xt=[1,144],_t=[1,145],kt=[1,146],wt=[1,147],Tt=[1,148],Et=[1,153],Ct=[1,154],St=[1,139],At=[1,142],Mt=[1,138],Ot=[1,135],Nt=[20,21,22,23,38,42,47,76,77,78,79,80,81,95,96,99,100,101,103,104,110,111,112,113,114,115,116,117,118,119],Bt=[1,157],Dt=[20,21,22,23,26,47,81,95,96,99,100,101,103,104,114,115,116,117,118,119],Lt=[20,21,22,23,24,26,38,40,41,42,47,51,53,55,57,59,61,62,64,66,70,71,72,76,77,78,79,80,81,82,85,95,96,99,100,101,103,104,105,106,114,115,116,117,118,119],It=[12,21,22,24],Rt=[22,96],Ft=[1,238],Pt=[1,242],jt=[1,239],Yt=[1,236],zt=[1,233],Ut=[1,234],$t=[1,235],qt=[1,237],Wt=[1,240],Ht=[1,241],Vt=[1,243],Gt=[1,260],Xt=[20,21,23,96],Zt=[20,21,22,23,76,92,95,96,99,100,101,102,103,104,105],Kt={trace:function(){},yy:{},symbols_:{error:2,start:3,mermaidDoc:4,directive:5,openDirective:6,typeDirective:7,closeDirective:8,separator:9,":":10,argDirective:11,open_directive:12,type_directive:13,arg_directive:14,close_directive:15,graphConfig:16,document:17,line:18,statement:19,SEMI:20,NEWLINE:21,SPACE:22,EOF:23,GRAPH:24,NODIR:25,DIR:26,FirstStmtSeperator:27,ending:28,endToken:29,spaceList:30,spaceListNewline:31,verticeStatement:32,styleStatement:33,linkStyleStatement:34,classDefStatement:35,classStatement:36,clickStatement:37,subgraph:38,text:39,SQS:40,SQE:41,end:42,direction:43,link:44,node:45,vertex:46,AMP:47,STYLE_SEPARATOR:48,idString:49,PS:50,PE:51,"(-":52,"-)":53,STADIUMSTART:54,STADIUMEND:55,SUBROUTINESTART:56,SUBROUTINEEND:57,CYLINDERSTART:58,CYLINDEREND:59,DIAMOND_START:60,DIAMOND_STOP:61,TAGEND:62,TRAPSTART:63,TRAPEND:64,INVTRAPSTART:65,INVTRAPEND:66,linkStatement:67,arrowText:68,TESTSTR:69,START_LINK:70,LINK:71,PIPE:72,textToken:73,STR:74,keywords:75,STYLE:76,LINKSTYLE:77,CLASSDEF:78,CLASS:79,CLICK:80,DOWN:81,UP:82,textNoTags:83,textNoTagsToken:84,DEFAULT:85,stylesOpt:86,alphaNum:87,CALLBACKNAME:88,CALLBACKARGS:89,HREF:90,LINK_TARGET:91,HEX:92,numList:93,INTERPOLATE:94,NUM:95,COMMA:96,style:97,styleComponent:98,ALPHA:99,COLON:100,MINUS:101,UNIT:102,BRKT:103,DOT:104,PCT:105,TAGSTART:106,alphaNumToken:107,idStringToken:108,alphaNumStatement:109,direction_tb:110,direction_bt:111,direction_rl:112,direction_lr:113,PUNCTUATION:114,UNICODE_TEXT:115,PLUS:116,EQUALS:117,MULT:118,UNDERSCORE:119,graphCodeTokens:120,ARROW_CROSS:121,ARROW_POINT:122,ARROW_CIRCLE:123,ARROW_OPEN:124,QUOTE:125,$accept:0,$end:1},terminals_:{2:"error",10:":",12:"open_directive",13:"type_directive",14:"arg_directive",15:"close_directive",20:"SEMI",21:"NEWLINE",22:"SPACE",23:"EOF",24:"GRAPH",25:"NODIR",26:"DIR",38:"subgraph",40:"SQS",41:"SQE",42:"end",47:"AMP",48:"STYLE_SEPARATOR",50:"PS",51:"PE",52:"(-",53:"-)",54:"STADIUMSTART",55:"STADIUMEND",56:"SUBROUTINESTART",57:"SUBROUTINEEND",58:"CYLINDERSTART",59:"CYLINDEREND",60:"DIAMOND_START",61:"DIAMOND_STOP",62:"TAGEND",63:"TRAPSTART",64:"TRAPEND",65:"INVTRAPSTART",66:"INVTRAPEND",69:"TESTSTR",70:"START_LINK",71:"LINK",72:"PIPE",74:"STR",76:"STYLE",77:"LINKSTYLE",78:"CLASSDEF",79:"CLASS",80:"CLICK",81:"DOWN",82:"UP",85:"DEFAULT",88:"CALLBACKNAME",89:"CALLBACKARGS",90:"HREF",91:"LINK_TARGET",92:"HEX",94:"INTERPOLATE",95:"NUM",96:"COMMA",99:"ALPHA",100:"COLON",101:"MINUS",102:"UNIT",103:"BRKT",104:"DOT",105:"PCT",106:"TAGSTART",110:"direction_tb",111:"direction_bt",112:"direction_rl",113:"direction_lr",114:"PUNCTUATION",115:"UNICODE_TEXT",116:"PLUS",117:"EQUALS",118:"MULT",119:"UNDERSCORE",121:"ARROW_CROSS",122:"ARROW_POINT",123:"ARROW_CIRCLE",124:"ARROW_OPEN",125:"QUOTE"},productions_:[0,[3,1],[3,2],[5,4],[5,6],[6,1],[7,1],[11,1],[8,1],[4,2],[17,0],[17,2],[18,1],[18,1],[18,1],[18,1],[18,1],[16,2],[16,2],[16,2],[16,3],[28,2],[28,1],[29,1],[29,1],[29,1],[27,1],[27,1],[27,2],[31,2],[31,2],[31,1],[31,1],[30,2],[30,1],[19,2],[19,2],[19,2],[19,2],[19,2],[19,2],[19,9],[19,6],[19,4],[19,1],[9,1],[9,1],[9,1],[32,3],[32,4],[32,2],[32,1],[45,1],[45,5],[45,3],[46,4],[46,6],[46,4],[46,4],[46,4],[46,4],[46,4],[46,4],[46,6],[46,4],[46,4],[46,4],[46,4],[46,4],[46,1],[44,2],[44,3],[44,3],[44,1],[44,3],[67,1],[68,3],[39,1],[39,2],[39,1],[75,1],[75,1],[75,1],[75,1],[75,1],[75,1],[75,1],[75,1],[75,1],[75,1],[75,1],[83,1],[83,2],[35,5],[35,5],[36,5],[37,2],[37,4],[37,3],[37,5],[37,2],[37,4],[37,4],[37,6],[37,2],[37,4],[37,2],[37,4],[37,4],[37,6],[33,5],[33,5],[34,5],[34,5],[34,9],[34,9],[34,7],[34,7],[93,1],[93,3],[86,1],[86,3],[97,1],[97,2],[98,1],[98,1],[98,1],[98,1],[98,1],[98,1],[98,1],[98,1],[98,1],[98,1],[98,1],[73,1],[73,1],[73,1],[73,1],[73,1],[73,1],[84,1],[84,1],[84,1],[84,1],[49,1],[49,2],[87,1],[87,2],[109,1],[109,1],[109,1],[109,1],[43,1],[43,1],[43,1],[43,1],[107,1],[107,1],[107,1],[107,1],[107,1],[107,1],[107,1],[107,1],[107,1],[107,1],[107,1],[107,1],[107,1],[108,1],[108,1],[108,1],[108,1],[108,1],[108,1],[108,1],[108,1],[108,1],[108,1],[108,1],[108,1],[108,1],[108,1],[108,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1],[120,1]],performAction:function(t,e,n,r,i,a,o){var s=a.length-1;switch(i){case 5:r.parseDirective("%%{","open_directive");break;case 6:r.parseDirective(a[s],"type_directive");break;case 7:a[s]=a[s].trim().replace(/'/g,'"'),r.parseDirective(a[s],"arg_directive");break;case 8:r.parseDirective("}%%","close_directive","flowchart");break;case 10:this.$=[];break;case 11:a[s]!==[]&&a[s-1].push(a[s]),this.$=a[s-1];break;case 12:case 77:case 79:case 91:case 147:case 149:case 150:this.$=a[s];break;case 19:r.setDirection("TB"),this.$="TB";break;case 20:r.setDirection(a[s-1]),this.$=a[s-1];break;case 35:this.$=a[s-1].nodes;break;case 36:case 37:case 38:case 39:case 40:this.$=[];break;case 41:this.$=r.addSubGraph(a[s-6],a[s-1],a[s-4]);break;case 42:this.$=r.addSubGraph(a[s-3],a[s-1],a[s-3]);break;case 43:this.$=r.addSubGraph(void 0,a[s-1],void 0);break;case 48:r.addLink(a[s-2].stmt,a[s],a[s-1]),this.$={stmt:a[s],nodes:a[s].concat(a[s-2].nodes)};break;case 49:r.addLink(a[s-3].stmt,a[s-1],a[s-2]),this.$={stmt:a[s-1],nodes:a[s-1].concat(a[s-3].nodes)};break;case 50:this.$={stmt:a[s-1],nodes:a[s-1]};break;case 51:this.$={stmt:a[s],nodes:a[s]};break;case 52:this.$=[a[s]];break;case 53:this.$=a[s-4].concat(a[s]);break;case 54:this.$=[a[s-2]],r.setClass(a[s-2],a[s]);break;case 55:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"square");break;case 56:this.$=a[s-5],r.addVertex(a[s-5],a[s-2],"circle");break;case 57:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"ellipse");break;case 58:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"stadium");break;case 59:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"subroutine");break;case 60:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"cylinder");break;case 61:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"round");break;case 62:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"diamond");break;case 63:this.$=a[s-5],r.addVertex(a[s-5],a[s-2],"hexagon");break;case 64:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"odd");break;case 65:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"trapezoid");break;case 66:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"inv_trapezoid");break;case 67:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"lean_right");break;case 68:this.$=a[s-3],r.addVertex(a[s-3],a[s-1],"lean_left");break;case 69:this.$=a[s],r.addVertex(a[s]);break;case 70:a[s-1].text=a[s],this.$=a[s-1];break;case 71:case 72:a[s-2].text=a[s-1],this.$=a[s-2];break;case 73:this.$=a[s];break;case 74:var c=r.destructLink(a[s],a[s-2]);this.$={type:c.type,stroke:c.stroke,length:c.length,text:a[s-1]};break;case 75:c=r.destructLink(a[s]);this.$={type:c.type,stroke:c.stroke,length:c.length};break;case 76:this.$=a[s-1];break;case 78:case 92:case 148:this.$=a[s-1]+""+a[s];break;case 93:case 94:this.$=a[s-4],r.addClass(a[s-2],a[s]);break;case 95:this.$=a[s-4],r.setClass(a[s-2],a[s]);break;case 96:case 104:this.$=a[s-1],r.setClickEvent(a[s-1],a[s]);break;case 97:case 105:this.$=a[s-3],r.setClickEvent(a[s-3],a[s-2]),r.setTooltip(a[s-3],a[s]);break;case 98:this.$=a[s-2],r.setClickEvent(a[s-2],a[s-1],a[s]);break;case 99:this.$=a[s-4],r.setClickEvent(a[s-4],a[s-3],a[s-2]),r.setTooltip(a[s-4],a[s]);break;case 100:case 106:this.$=a[s-1],r.setLink(a[s-1],a[s]);break;case 101:case 107:this.$=a[s-3],r.setLink(a[s-3],a[s-2]),r.setTooltip(a[s-3],a[s]);break;case 102:case 108:this.$=a[s-3],r.setLink(a[s-3],a[s-2],a[s]);break;case 103:case 109:this.$=a[s-5],r.setLink(a[s-5],a[s-4],a[s]),r.setTooltip(a[s-5],a[s-2]);break;case 110:this.$=a[s-4],r.addVertex(a[s-2],void 0,void 0,a[s]);break;case 111:case 113:this.$=a[s-4],r.updateLink(a[s-2],a[s]);break;case 112:this.$=a[s-4],r.updateLink([a[s-2]],a[s]);break;case 114:this.$=a[s-8],r.updateLinkInterpolate([a[s-6]],a[s-2]),r.updateLink([a[s-6]],a[s]);break;case 115:this.$=a[s-8],r.updateLinkInterpolate(a[s-6],a[s-2]),r.updateLink(a[s-6],a[s]);break;case 116:this.$=a[s-6],r.updateLinkInterpolate([a[s-4]],a[s]);break;case 117:this.$=a[s-6],r.updateLinkInterpolate(a[s-4],a[s]);break;case 118:case 120:this.$=[a[s]];break;case 119:case 121:a[s-2].push(a[s]),this.$=a[s-2];break;case 123:this.$=a[s-1]+a[s];break;case 145:this.$=a[s];break;case 146:this.$=a[s-1]+""+a[s];break;case 151:this.$="v";break;case 152:this.$="-";break;case 153:this.$={stmt:"dir",value:"TB"};break;case 154:this.$={stmt:"dir",value:"BT"};break;case 155:this.$={stmt:"dir",value:"RL"};break;case 156:this.$={stmt:"dir",value:"LR"}}},table:[{3:1,4:2,5:3,6:5,12:e,16:4,21:n,22:r,24:i},{1:[3]},{1:[2,1]},{3:10,4:2,5:3,6:5,12:e,16:4,21:n,22:r,24:i},t(a,o,{17:11}),{7:12,13:[1,13]},{16:14,21:n,22:r,24:i},{16:15,21:n,22:r,24:i},{25:[1,16],26:[1,17]},{13:[2,5]},{1:[2,2]},{1:[2,9],18:18,19:19,20:s,21:c,22:u,23:l,32:24,33:25,34:26,35:27,36:28,37:29,38:h,43:31,45:32,46:42,47:f,49:43,76:d,77:p,78:y,79:g,80:m,81:v,95:b,96:x,99:_,100:k,101:w,103:T,104:E,108:44,110:C,111:S,112:A,113:M,114:O,115:N,116:B,117:D,118:L,119:I},{8:60,10:[1,61],15:R},t([10,15],[2,6]),t(a,[2,17]),t(a,[2,18]),t(a,[2,19]),{20:[1,64],21:[1,65],22:F,27:63,30:66},t(P,[2,11]),t(P,[2,12]),t(P,[2,13]),t(P,[2,14]),t(P,[2,15]),t(P,[2,16]),{9:68,20:j,21:Y,23:z,44:69,67:73,70:[1,74],71:[1,75]},{9:76,20:j,21:Y,23:z},{9:77,20:j,21:Y,23:z},{9:78,20:j,21:Y,23:z},{9:79,20:j,21:Y,23:z},{9:80,20:j,21:Y,23:z},{9:82,20:j,21:Y,22:[1,81],23:z},t(P,[2,44]),t(U,[2,51],{30:83,22:F}),{22:[1,84]},{22:[1,85]},{22:[1,86]},{22:[1,87]},{26:$,47:q,74:[1,91],81:W,87:90,88:[1,88],90:[1,89],95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,107:94,109:92,114:J,115:tt,116:et,117:nt,118:rt,119:it},t(P,[2,153]),t(P,[2,154]),t(P,[2,155]),t(P,[2,156]),t(at,[2,52],{48:[1,110]}),t(ot,[2,69],{108:121,40:[1,111],47:f,50:[1,112],52:[1,113],54:[1,114],56:[1,115],58:[1,116],60:[1,117],62:[1,118],63:[1,119],65:[1,120],81:v,95:b,96:x,99:_,100:k,101:w,103:T,104:E,114:O,115:N,116:B,117:D,118:L,119:I}),t(st,[2,145]),t(st,[2,170]),t(st,[2,171]),t(st,[2,172]),t(st,[2,173]),t(st,[2,174]),t(st,[2,175]),t(st,[2,176]),t(st,[2,177]),t(st,[2,178]),t(st,[2,179]),t(st,[2,180]),t(st,[2,181]),t(st,[2,182]),t(st,[2,183]),t(st,[2,184]),{9:122,20:j,21:Y,23:z},{11:123,14:[1,124]},t(ct,[2,8]),t(a,[2,20]),t(a,[2,26]),t(a,[2,27]),{21:[1,125]},t(ut,[2,34],{30:126,22:F}),t(P,[2,35]),{45:127,46:42,47:f,49:43,81:v,95:b,96:x,99:_,100:k,101:w,103:T,104:E,108:44,114:O,115:N,116:B,117:D,118:L,119:I},t(lt,[2,45]),t(lt,[2,46]),t(lt,[2,47]),t(ht,[2,73],{68:128,69:[1,129],72:[1,130]}),{22:ft,24:dt,26:pt,38:yt,39:131,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},t([47,69,72,81,95,96,99,100,101,103,104,114,115,116,117,118,119],[2,75]),t(P,[2,36]),t(P,[2,37]),t(P,[2,38]),t(P,[2,39]),t(P,[2,40]),{22:ft,24:dt,26:pt,38:yt,39:155,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},t(Nt,o,{17:156}),t(U,[2,50],{47:Bt}),{26:$,47:q,81:W,87:158,92:[1,159],95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,107:94,109:92,114:J,115:tt,116:et,117:nt,118:rt,119:it},{85:[1,160],93:161,95:[1,162]},{26:$,47:q,81:W,85:[1,163],87:164,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,107:94,109:92,114:J,115:tt,116:et,117:nt,118:rt,119:it},{26:$,47:q,81:W,87:165,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,107:94,109:92,114:J,115:tt,116:et,117:nt,118:rt,119:it},t(ct,[2,96],{22:[1,166],89:[1,167]}),t(ct,[2,100],{22:[1,168]}),t(ct,[2,104],{107:94,109:170,22:[1,169],26:$,47:q,81:W,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,114:J,115:tt,116:et,117:nt,118:rt,119:it}),t(ct,[2,106],{22:[1,171]}),t(Dt,[2,147]),t(Dt,[2,149]),t(Dt,[2,150]),t(Dt,[2,151]),t(Dt,[2,152]),t(Lt,[2,157]),t(Lt,[2,158]),t(Lt,[2,159]),t(Lt,[2,160]),t(Lt,[2,161]),t(Lt,[2,162]),t(Lt,[2,163]),t(Lt,[2,164]),t(Lt,[2,165]),t(Lt,[2,166]),t(Lt,[2,167]),t(Lt,[2,168]),t(Lt,[2,169]),{47:f,49:172,81:v,95:b,96:x,99:_,100:k,101:w,103:T,104:E,108:44,114:O,115:N,116:B,117:D,118:L,119:I},{22:ft,24:dt,26:pt,38:yt,39:173,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,39:175,42:gt,47:q,50:[1,174],62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,39:176,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,39:177,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,39:178,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,39:179,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,39:180,42:gt,47:q,60:[1,181],62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,39:182,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,39:183,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,39:184,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},t(st,[2,146]),t(It,[2,3]),{8:185,15:R},{15:[2,7]},t(a,[2,28]),t(ut,[2,33]),t(U,[2,48],{30:186,22:F}),t(ht,[2,70],{22:[1,187]}),{22:[1,188]},{22:ft,24:dt,26:pt,38:yt,39:189,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,62:mt,70:vt,71:[1,190],73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},t(Lt,[2,77]),t(Lt,[2,79]),t(Lt,[2,135]),t(Lt,[2,136]),t(Lt,[2,137]),t(Lt,[2,138]),t(Lt,[2,139]),t(Lt,[2,140]),t(Lt,[2,141]),t(Lt,[2,142]),t(Lt,[2,143]),t(Lt,[2,144]),t(Lt,[2,80]),t(Lt,[2,81]),t(Lt,[2,82]),t(Lt,[2,83]),t(Lt,[2,84]),t(Lt,[2,85]),t(Lt,[2,86]),t(Lt,[2,87]),t(Lt,[2,88]),t(Lt,[2,89]),t(Lt,[2,90]),{9:193,20:j,21:Y,22:ft,23:z,24:dt,26:pt,38:yt,40:[1,192],42:gt,47:q,62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{18:18,19:19,20:s,21:c,22:u,23:l,32:24,33:25,34:26,35:27,36:28,37:29,38:h,42:[1,194],43:31,45:32,46:42,47:f,49:43,76:d,77:p,78:y,79:g,80:m,81:v,95:b,96:x,99:_,100:k,101:w,103:T,104:E,108:44,110:C,111:S,112:A,113:M,114:O,115:N,116:B,117:D,118:L,119:I},{22:F,30:195},{22:[1,196],26:$,47:q,81:W,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,107:94,109:170,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:[1,197]},{22:[1,198]},{22:[1,199],96:[1,200]},t(Rt,[2,118]),{22:[1,201]},{22:[1,202],26:$,47:q,81:W,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,107:94,109:170,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:[1,203],26:$,47:q,81:W,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,107:94,109:170,114:J,115:tt,116:et,117:nt,118:rt,119:it},{74:[1,204]},t(ct,[2,98],{22:[1,205]}),{74:[1,206],91:[1,207]},{74:[1,208]},t(Dt,[2,148]),{74:[1,209],91:[1,210]},t(at,[2,54],{108:121,47:f,81:v,95:b,96:x,99:_,100:k,101:w,103:T,104:E,114:O,115:N,116:B,117:D,118:L,119:I}),{22:ft,24:dt,26:pt,38:yt,41:[1,211],42:gt,47:q,62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,39:212,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,51:[1,213],62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,53:[1,214],62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,55:[1,215],62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,57:[1,216],62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,59:[1,217],62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,61:[1,218],62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,39:219,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,41:[1,220],42:gt,47:q,62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,62:mt,64:[1,221],66:[1,222],70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,62:mt,64:[1,224],66:[1,223],70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{9:225,20:j,21:Y,23:z},t(U,[2,49],{47:Bt}),t(ht,[2,72]),t(ht,[2,71]),{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,62:mt,70:vt,72:[1,226],73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},t(ht,[2,74]),t(Lt,[2,78]),{22:ft,24:dt,26:pt,38:yt,39:227,42:gt,47:q,62:mt,70:vt,73:132,74:bt,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},t(Nt,o,{17:228}),t(P,[2,43]),{46:229,47:f,49:43,81:v,95:b,96:x,99:_,100:k,101:w,103:T,104:E,108:44,114:O,115:N,116:B,117:D,118:L,119:I},{22:Ft,76:Pt,86:230,92:jt,95:Yt,97:231,98:232,99:zt,100:Ut,101:$t,102:qt,103:Wt,104:Ht,105:Vt},{22:Ft,76:Pt,86:244,92:jt,95:Yt,97:231,98:232,99:zt,100:Ut,101:$t,102:qt,103:Wt,104:Ht,105:Vt},{22:Ft,76:Pt,86:245,92:jt,94:[1,246],95:Yt,97:231,98:232,99:zt,100:Ut,101:$t,102:qt,103:Wt,104:Ht,105:Vt},{22:Ft,76:Pt,86:247,92:jt,94:[1,248],95:Yt,97:231,98:232,99:zt,100:Ut,101:$t,102:qt,103:Wt,104:Ht,105:Vt},{95:[1,249]},{22:Ft,76:Pt,86:250,92:jt,95:Yt,97:231,98:232,99:zt,100:Ut,101:$t,102:qt,103:Wt,104:Ht,105:Vt},{22:Ft,76:Pt,86:251,92:jt,95:Yt,97:231,98:232,99:zt,100:Ut,101:$t,102:qt,103:Wt,104:Ht,105:Vt},{26:$,47:q,81:W,87:252,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,107:94,109:92,114:J,115:tt,116:et,117:nt,118:rt,119:it},t(ct,[2,97]),{74:[1,253]},t(ct,[2,101],{22:[1,254]}),t(ct,[2,102]),t(ct,[2,105]),t(ct,[2,107],{22:[1,255]}),t(ct,[2,108]),t(ot,[2,55]),{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,51:[1,256],62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},t(ot,[2,61]),t(ot,[2,57]),t(ot,[2,58]),t(ot,[2,59]),t(ot,[2,60]),t(ot,[2,62]),{22:ft,24:dt,26:pt,38:yt,42:gt,47:q,61:[1,257],62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},t(ot,[2,64]),t(ot,[2,65]),t(ot,[2,67]),t(ot,[2,66]),t(ot,[2,68]),t(It,[2,4]),t([22,47,81,95,96,99,100,101,103,104,114,115,116,117,118,119],[2,76]),{22:ft,24:dt,26:pt,38:yt,41:[1,258],42:gt,47:q,62:mt,70:vt,73:191,75:143,76:xt,77:_t,78:kt,79:wt,80:Tt,81:Et,82:Ct,84:134,85:St,95:H,96:V,99:G,100:X,101:At,103:K,104:Q,105:Mt,106:Ot,107:140,114:J,115:tt,116:et,117:nt,118:rt,119:it},{18:18,19:19,20:s,21:c,22:u,23:l,32:24,33:25,34:26,35:27,36:28,37:29,38:h,42:[1,259],43:31,45:32,46:42,47:f,49:43,76:d,77:p,78:y,79:g,80:m,81:v,95:b,96:x,99:_,100:k,101:w,103:T,104:E,108:44,110:C,111:S,112:A,113:M,114:O,115:N,116:B,117:D,118:L,119:I},t(at,[2,53]),t(ct,[2,110],{96:Gt}),t(Xt,[2,120],{98:261,22:Ft,76:Pt,92:jt,95:Yt,99:zt,100:Ut,101:$t,102:qt,103:Wt,104:Ht,105:Vt}),t(Zt,[2,122]),t(Zt,[2,124]),t(Zt,[2,125]),t(Zt,[2,126]),t(Zt,[2,127]),t(Zt,[2,128]),t(Zt,[2,129]),t(Zt,[2,130]),t(Zt,[2,131]),t(Zt,[2,132]),t(Zt,[2,133]),t(Zt,[2,134]),t(ct,[2,111],{96:Gt}),t(ct,[2,112],{96:Gt}),{22:[1,262]},t(ct,[2,113],{96:Gt}),{22:[1,263]},t(Rt,[2,119]),t(ct,[2,93],{96:Gt}),t(ct,[2,94],{96:Gt}),t(ct,[2,95],{107:94,109:170,26:$,47:q,81:W,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,114:J,115:tt,116:et,117:nt,118:rt,119:it}),t(ct,[2,99]),{91:[1,264]},{91:[1,265]},{51:[1,266]},{61:[1,267]},{9:268,20:j,21:Y,23:z},t(P,[2,42]),{22:Ft,76:Pt,92:jt,95:Yt,97:269,98:232,99:zt,100:Ut,101:$t,102:qt,103:Wt,104:Ht,105:Vt},t(Zt,[2,123]),{26:$,47:q,81:W,87:270,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,107:94,109:92,114:J,115:tt,116:et,117:nt,118:rt,119:it},{26:$,47:q,81:W,87:271,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,107:94,109:92,114:J,115:tt,116:et,117:nt,118:rt,119:it},t(ct,[2,103]),t(ct,[2,109]),t(ot,[2,56]),t(ot,[2,63]),t(Nt,o,{17:272}),t(Xt,[2,121],{98:261,22:Ft,76:Pt,92:jt,95:Yt,99:zt,100:Ut,101:$t,102:qt,103:Wt,104:Ht,105:Vt}),t(ct,[2,116],{107:94,109:170,22:[1,273],26:$,47:q,81:W,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,114:J,115:tt,116:et,117:nt,118:rt,119:it}),t(ct,[2,117],{107:94,109:170,22:[1,274],26:$,47:q,81:W,95:H,96:V,99:G,100:X,101:Z,103:K,104:Q,114:J,115:tt,116:et,117:nt,118:rt,119:it}),{18:18,19:19,20:s,21:c,22:u,23:l,32:24,33:25,34:26,35:27,36:28,37:29,38:h,42:[1,275],43:31,45:32,46:42,47:f,49:43,76:d,77:p,78:y,79:g,80:m,81:v,95:b,96:x,99:_,100:k,101:w,103:T,104:E,108:44,110:C,111:S,112:A,113:M,114:O,115:N,116:B,117:D,118:L,119:I},{22:Ft,76:Pt,86:276,92:jt,95:Yt,97:231,98:232,99:zt,100:Ut,101:$t,102:qt,103:Wt,104:Ht,105:Vt},{22:Ft,76:Pt,86:277,92:jt,95:Yt,97:231,98:232,99:zt,100:Ut,101:$t,102:qt,103:Wt,104:Ht,105:Vt},t(P,[2,41]),t(ct,[2,114],{96:Gt}),t(ct,[2,115],{96:Gt})],defaultActions:{2:[2,1],9:[2,5],10:[2,2],124:[2,7]},parseError:function(t,e){if(!e.recoverable){var n=new Error(t);throw n.hash=e,n}this.trace(t)},parse:function(t){var e=this,n=[0],r=[],i=[null],a=[],o=this.table,s="",c=0,u=0,l=0,h=2,f=1,d=a.slice.call(arguments,1),p=Object.create(this.lexer),y={yy:{}};for(var g in this.yy)Object.prototype.hasOwnProperty.call(this.yy,g)&&(y.yy[g]=this.yy[g]);p.setInput(t,y.yy),y.yy.lexer=p,y.yy.parser=this,void 0===p.yylloc&&(p.yylloc={});var m=p.yylloc;a.push(m);var v=p.options&&p.options.ranges;function b(){var t;return"number"!=typeof(t=r.pop()||p.lex()||f)&&(t instanceof Array&&(t=(r=t).pop()),t=e.symbols_[t]||t),t}"function"==typeof y.yy.parseError?this.parseError=y.yy.parseError:this.parseError=Object.getPrototypeOf(this).parseError;for(var x,_,k,w,T,E,C,S,A,M={};;){if(k=n[n.length-1],this.defaultActions[k]?w=this.defaultActions[k]:(null==x&&(x=b()),w=o[k]&&o[k][x]),void 0===w||!w.length||!w[0]){var O="";for(E in A=[],o[k])this.terminals_[E]&&E>h&&A.push("'"+this.terminals_[E]+"'");O=p.showPosition?"Parse error on line "+(c+1)+":\n"+p.showPosition()+"\nExpecting "+A.join(", ")+", got '"+(this.terminals_[x]||x)+"'":"Parse error on line "+(c+1)+": Unexpected "+(x==f?"end of input":"'"+(this.terminals_[x]||x)+"'"),this.parseError(O,{text:p.match,token:this.terminals_[x]||x,line:p.yylineno,loc:m,expected:A})}if(w[0]instanceof Array&&w.length>1)throw new Error("Parse Error: multiple actions possible at state: "+k+", token: "+x);switch(w[0]){case 1:n.push(x),i.push(p.yytext),a.push(p.yylloc),n.push(w[1]),x=null,_?(x=_,_=null):(u=p.yyleng,s=p.yytext,c=p.yylineno,m=p.yylloc,l>0&&l--);break;case 2:if(C=this.productions_[w[1]][1],M.$=i[i.length-C],M._$={first_line:a[a.length-(C||1)].first_line,last_line:a[a.length-1].last_line,first_column:a[a.length-(C||1)].first_column,last_column:a[a.length-1].last_column},v&&(M._$.range=[a[a.length-(C||1)].range[0],a[a.length-1].range[1]]),void 0!==(T=this.performAction.apply(M,[s,u,c,y.yy,w[1],i,a].concat(d))))return T;C&&(n=n.slice(0,-1*C*2),i=i.slice(0,-1*C),a=a.slice(0,-1*C)),n.push(this.productions_[w[1]][0]),i.push(M.$),a.push(M._$),S=o[n[n.length-2]][n[n.length-1]],n.push(S);break;case 3:return!0}}return!0}},Qt={EOF:1,parseError:function(t,e){if(!this.yy.parser)throw new Error(t);this.yy.parser.parseError(t,e)},setInput:function(t,e){return this.yy=e||this.yy||{},this._input=t,this._more=this._backtrack=this.done=!1,this.yylineno=this.yyleng=0,this.yytext=this.matched=this.match="",this.conditionStack=["INITIAL"],this.yylloc={first_line:1,first_column:0,last_line:1,last_column:0},this.options.ranges&&(this.yylloc.range=[0,0]),this.offset=0,this},input:function(){var t=this._input[0];return this.yytext+=t,this.yyleng++,this.offset++,this.match+=t,this.matched+=t,t.match(/(?:\r\n?|\n).*/g)?(this.yylineno++,this.yylloc.last_line++):this.yylloc.last_column++,this.options.ranges&&this.yylloc.range[1]++,this._input=this._input.slice(1),t},unput:function(t){var e=t.length,n=t.split(/(?:\r\n?|\n)/g);this._input=t+this._input,this.yytext=this.yytext.substr(0,this.yytext.length-e),this.offset-=e;var r=this.match.split(/(?:\r\n?|\n)/g);this.match=this.match.substr(0,this.match.length-1),this.matched=this.matched.substr(0,this.matched.length-1),n.length-1&&(this.yylineno-=n.length-1);var i=this.yylloc.range;return this.yylloc={first_line:this.yylloc.first_line,last_line:this.yylineno+1,first_column:this.yylloc.first_column,last_column:n?(n.length===r.length?this.yylloc.first_column:0)+r[r.length-n.length].length-n[0].length:this.yylloc.first_column-e},this.options.ranges&&(this.yylloc.range=[i[0],i[0]+this.yyleng-e]),this.yyleng=this.yytext.length,this},more:function(){return this._more=!0,this},reject:function(){return this.options.backtrack_lexer?(this._backtrack=!0,this):this.parseError("Lexical error on line "+(this.yylineno+1)+". You can only invoke reject() in the lexer when the lexer is of the backtracking persuasion (options.backtrack_lexer = true).\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},less:function(t){this.unput(this.match.slice(t))},pastInput:function(){var t=this.matched.substr(0,this.matched.length-this.match.length);return(t.length>20?"...":"")+t.substr(-20).replace(/\n/g,"")},upcomingInput:function(){var t=this.match;return t.length<20&&(t+=this._input.substr(0,20-t.length)),(t.substr(0,20)+(t.length>20?"...":"")).replace(/\n/g,"")},showPosition:function(){var t=this.pastInput(),e=new Array(t.length+1).join("-");return t+this.upcomingInput()+"\n"+e+"^"},test_match:function(t,e){var n,r,i;if(this.options.backtrack_lexer&&(i={yylineno:this.yylineno,yylloc:{first_line:this.yylloc.first_line,last_line:this.last_line,first_column:this.yylloc.first_column,last_column:this.yylloc.last_column},yytext:this.yytext,match:this.match,matches:this.matches,matched:this.matched,yyleng:this.yyleng,offset:this.offset,_more:this._more,_input:this._input,yy:this.yy,conditionStack:this.conditionStack.slice(0),done:this.done},this.options.ranges&&(i.yylloc.range=this.yylloc.range.slice(0))),(r=t[0].match(/(?:\r\n?|\n).*/g))&&(this.yylineno+=r.length),this.yylloc={first_line:this.yylloc.last_line,last_line:this.yylineno+1,first_column:this.yylloc.last_column,last_column:r?r[r.length-1].length-r[r.length-1].match(/\r?\n?/)[0].length:this.yylloc.last_column+t[0].length},this.yytext+=t[0],this.match+=t[0],this.matches=t,this.yyleng=this.yytext.length,this.options.ranges&&(this.yylloc.range=[this.offset,this.offset+=this.yyleng]),this._more=!1,this._backtrack=!1,this._input=this._input.slice(t[0].length),this.matched+=t[0],n=this.performAction.call(this,this.yy,this,e,this.conditionStack[this.conditionStack.length-1]),this.done&&this._input&&(this.done=!1),n)return n;if(this._backtrack){for(var a in i)this[a]=i[a];return!1}return!1},next:function(){if(this.done)return this.EOF;var t,e,n,r;this._input||(this.done=!0),this._more||(this.yytext="",this.match="");for(var i=this._currentRules(),a=0;a<i.length;a++)if((n=this._input.match(this.rules[i[a]]))&&(!e||n[0].length>e[0].length)){if(e=n,r=a,this.options.backtrack_lexer){if(!1!==(t=this.test_match(n,i[a])))return t;if(this._backtrack){e=!1;continue}return!1}if(!this.options.flex)break}return e?!1!==(t=this.test_match(e,i[r]))&&t:""===this._input?this.EOF:this.parseError("Lexical error on line "+(this.yylineno+1)+". Unrecognized text.\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},lex:function(){var t=this.next();return t||this.lex()},begin:function(t){this.conditionStack.push(t)},popState:function(){return this.conditionStack.length-1>0?this.conditionStack.pop():this.conditionStack[0]},_currentRules:function(){return this.conditionStack.length&&this.conditionStack[this.conditionStack.length-1]?this.conditions[this.conditionStack[this.conditionStack.length-1]].rules:this.conditions.INITIAL.rules},topState:function(t){return(t=this.conditionStack.length-1-Math.abs(t||0))>=0?this.conditionStack[t]:"INITIAL"},pushState:function(t){this.begin(t)},stateStackSize:function(){return this.conditionStack.length},options:{},performAction:function(t,e,n,r){switch(n){case 0:return this.begin("open_directive"),12;case 1:return this.begin("type_directive"),13;case 2:return this.popState(),this.begin("arg_directive"),10;case 3:return this.popState(),this.popState(),15;case 4:return 14;case 5:case 6:break;case 7:this.begin("string");break;case 8:this.popState();break;case 9:return"STR";case 10:return 76;case 11:return 85;case 12:return 77;case 13:return 94;case 14:return 78;case 15:return 79;case 16:this.begin("href");break;case 17:this.popState();break;case 18:return 90;case 19:this.begin("callbackname");break;case 20:this.popState();break;case 21:this.popState(),this.begin("callbackargs");break;case 22:return 88;case 23:this.popState();break;case 24:return 89;case 25:this.begin("click");break;case 26:this.popState();break;case 27:return 80;case 28:case 29:return t.lex.firstGraph()&&this.begin("dir"),24;case 30:return 38;case 31:return 42;case 32:case 33:case 34:case 35:return 91;case 36:return this.popState(),25;case 37:case 38:case 39:case 40:case 41:case 42:case 43:case 44:case 45:case 46:return this.popState(),26;case 47:return 110;case 48:return 111;case 49:return 112;case 50:return 113;case 51:return 95;case 52:return 103;case 53:return 48;case 54:return 100;case 55:return 47;case 56:return 20;case 57:return 96;case 58:return 118;case 59:case 60:case 61:return 71;case 62:case 63:case 64:return 70;case 65:return 52;case 66:return 53;case 67:return 54;case 68:return 55;case 69:return 56;case 70:return 57;case 71:return 58;case 72:return 59;case 73:return 101;case 74:return 104;case 75:return 119;case 76:return 116;case 77:return 105;case 78:case 79:return 117;case 80:return 106;case 81:return 62;case 82:return 82;case 83:return"SEP";case 84:return 81;case 85:return 99;case 86:return 64;case 87:return 63;case 88:return 66;case 89:return 65;case 90:return 114;case 91:return 115;case 92:return 72;case 93:return 50;case 94:return 51;case 95:return 40;case 96:return 41;case 97:return 60;case 98:return 61;case 99:return 125;case 100:return 21;case 101:return 22;case 102:return 23}},rules:[/^(?:%%\{)/,/^(?:((?:(?!\}%%)[^:.])*))/,/^(?::)/,/^(?:\}%%)/,/^(?:((?:(?!\}%%).|\n)*))/,/^(?:%%(?!\{)[^\n]*)/,/^(?:[^\}]%%[^\n]*)/,/^(?:["])/,/^(?:["])/,/^(?:[^"]*)/,/^(?:style\b)/,/^(?:default\b)/,/^(?:linkStyle\b)/,/^(?:interpolate\b)/,/^(?:classDef\b)/,/^(?:class\b)/,/^(?:href[\s]+["])/,/^(?:["])/,/^(?:[^"]*)/,/^(?:call[\s]+)/,/^(?:\([\s]*\))/,/^(?:\()/,/^(?:[^(]*)/,/^(?:\))/,/^(?:[^)]*)/,/^(?:click[\s]+)/,/^(?:[\s\n])/,/^(?:[^\s\n]*)/,/^(?:graph\b)/,/^(?:flowchart\b)/,/^(?:subgraph\b)/,/^(?:end\b\s*)/,/^(?:_self\b)/,/^(?:_blank\b)/,/^(?:_parent\b)/,/^(?:_top\b)/,/^(?:(\r?\n)*\s*\n)/,/^(?:\s*LR\b)/,/^(?:\s*RL\b)/,/^(?:\s*TB\b)/,/^(?:\s*BT\b)/,/^(?:\s*TD\b)/,/^(?:\s*BR\b)/,/^(?:\s*<)/,/^(?:\s*>)/,/^(?:\s*\^)/,/^(?:\s*v\b)/,/^(?:.*direction\s+TB[^\n]*)/,/^(?:.*direction\s+BT[^\n]*)/,/^(?:.*direction\s+RL[^\n]*)/,/^(?:.*direction\s+LR[^\n]*)/,/^(?:[0-9]+)/,/^(?:#)/,/^(?::::)/,/^(?::)/,/^(?:&)/,/^(?:;)/,/^(?:,)/,/^(?:\*)/,/^(?:\s*[xo<]?--+[-xo>]\s*)/,/^(?:\s*[xo<]?==+[=xo>]\s*)/,/^(?:\s*[xo<]?-?\.+-[xo>]?\s*)/,/^(?:\s*[xo<]?--\s*)/,/^(?:\s*[xo<]?==\s*)/,/^(?:\s*[xo<]?-\.\s*)/,/^(?:\(-)/,/^(?:-\))/,/^(?:\(\[)/,/^(?:\]\))/,/^(?:\[\[)/,/^(?:\]\])/,/^(?:\[\()/,/^(?:\)\])/,/^(?:-)/,/^(?:\.)/,/^(?:[\_])/,/^(?:\+)/,/^(?:%)/,/^(?:=)/,/^(?:=)/,/^(?:<)/,/^(?:>)/,/^(?:\^)/,/^(?:\\\|)/,/^(?:v\b)/,/^(?:[A-Za-z]+)/,/^(?:\\\])/,/^(?:\[\/)/,/^(?:\/\])/,/^(?:\[\\)/,/^(?:[!"#$%&'*+,-.`?\\_/])/,/^(?:[\u00AA\u00B5\u00BA\u00C0-\u00D6\u00D8-\u00F6]|[\u00F8-\u02C1\u02C6-\u02D1\u02E0-\u02E4\u02EC\u02EE\u0370-\u0374\u0376\u0377]|[\u037A-\u037D\u0386\u0388-\u038A\u038C\u038E-\u03A1\u03A3-\u03F5]|[\u03F7-\u0481\u048A-\u0527\u0531-\u0556\u0559\u0561-\u0587\u05D0-\u05EA]|[\u05F0-\u05F2\u0620-\u064A\u066E\u066F\u0671-\u06D3\u06D5\u06E5\u06E6\u06EE]|[\u06EF\u06FA-\u06FC\u06FF\u0710\u0712-\u072F\u074D-\u07A5\u07B1\u07CA-\u07EA]|[\u07F4\u07F5\u07FA\u0800-\u0815\u081A\u0824\u0828\u0840-\u0858\u08A0]|[\u08A2-\u08AC\u0904-\u0939\u093D\u0950\u0958-\u0961\u0971-\u0977]|[\u0979-\u097F\u0985-\u098C\u098F\u0990\u0993-\u09A8\u09AA-\u09B0\u09B2]|[\u09B6-\u09B9\u09BD\u09CE\u09DC\u09DD\u09DF-\u09E1\u09F0\u09F1\u0A05-\u0A0A]|[\u0A0F\u0A10\u0A13-\u0A28\u0A2A-\u0A30\u0A32\u0A33\u0A35\u0A36\u0A38\u0A39]|[\u0A59-\u0A5C\u0A5E\u0A72-\u0A74\u0A85-\u0A8D\u0A8F-\u0A91\u0A93-\u0AA8]|[\u0AAA-\u0AB0\u0AB2\u0AB3\u0AB5-\u0AB9\u0ABD\u0AD0\u0AE0\u0AE1\u0B05-\u0B0C]|[\u0B0F\u0B10\u0B13-\u0B28\u0B2A-\u0B30\u0B32\u0B33\u0B35-\u0B39\u0B3D\u0B5C]|[\u0B5D\u0B5F-\u0B61\u0B71\u0B83\u0B85-\u0B8A\u0B8E-\u0B90\u0B92-\u0B95\u0B99]|[\u0B9A\u0B9C\u0B9E\u0B9F\u0BA3\u0BA4\u0BA8-\u0BAA\u0BAE-\u0BB9\u0BD0]|[\u0C05-\u0C0C\u0C0E-\u0C10\u0C12-\u0C28\u0C2A-\u0C33\u0C35-\u0C39\u0C3D]|[\u0C58\u0C59\u0C60\u0C61\u0C85-\u0C8C\u0C8E-\u0C90\u0C92-\u0CA8\u0CAA-\u0CB3]|[\u0CB5-\u0CB9\u0CBD\u0CDE\u0CE0\u0CE1\u0CF1\u0CF2\u0D05-\u0D0C\u0D0E-\u0D10]|[\u0D12-\u0D3A\u0D3D\u0D4E\u0D60\u0D61\u0D7A-\u0D7F\u0D85-\u0D96\u0D9A-\u0DB1]|[\u0DB3-\u0DBB\u0DBD\u0DC0-\u0DC6\u0E01-\u0E30\u0E32\u0E33\u0E40-\u0E46\u0E81]|[\u0E82\u0E84\u0E87\u0E88\u0E8A\u0E8D\u0E94-\u0E97\u0E99-\u0E9F\u0EA1-\u0EA3]|[\u0EA5\u0EA7\u0EAA\u0EAB\u0EAD-\u0EB0\u0EB2\u0EB3\u0EBD\u0EC0-\u0EC4\u0EC6]|[\u0EDC-\u0EDF\u0F00\u0F40-\u0F47\u0F49-\u0F6C\u0F88-\u0F8C\u1000-\u102A]|[\u103F\u1050-\u1055\u105A-\u105D\u1061\u1065\u1066\u106E-\u1070\u1075-\u1081]|[\u108E\u10A0-\u10C5\u10C7\u10CD\u10D0-\u10FA\u10FC-\u1248\u124A-\u124D]|[\u1250-\u1256\u1258\u125A-\u125D\u1260-\u1288\u128A-\u128D\u1290-\u12B0]|[\u12B2-\u12B5\u12B8-\u12BE\u12C0\u12C2-\u12C5\u12C8-\u12D6\u12D8-\u1310]|[\u1312-\u1315\u1318-\u135A\u1380-\u138F\u13A0-\u13F4\u1401-\u166C]|[\u166F-\u167F\u1681-\u169A\u16A0-\u16EA\u1700-\u170C\u170E-\u1711]|[\u1720-\u1731\u1740-\u1751\u1760-\u176C\u176E-\u1770\u1780-\u17B3\u17D7]|[\u17DC\u1820-\u1877\u1880-\u18A8\u18AA\u18B0-\u18F5\u1900-\u191C]|[\u1950-\u196D\u1970-\u1974\u1980-\u19AB\u19C1-\u19C7\u1A00-\u1A16]|[\u1A20-\u1A54\u1AA7\u1B05-\u1B33\u1B45-\u1B4B\u1B83-\u1BA0\u1BAE\u1BAF]|[\u1BBA-\u1BE5\u1C00-\u1C23\u1C4D-\u1C4F\u1C5A-\u1C7D\u1CE9-\u1CEC]|[\u1CEE-\u1CF1\u1CF5\u1CF6\u1D00-\u1DBF\u1E00-\u1F15\u1F18-\u1F1D]|[\u1F20-\u1F45\u1F48-\u1F4D\u1F50-\u1F57\u1F59\u1F5B\u1F5D\u1F5F-\u1F7D]|[\u1F80-\u1FB4\u1FB6-\u1FBC\u1FBE\u1FC2-\u1FC4\u1FC6-\u1FCC\u1FD0-\u1FD3]|[\u1FD6-\u1FDB\u1FE0-\u1FEC\u1FF2-\u1FF4\u1FF6-\u1FFC\u2071\u207F]|[\u2090-\u209C\u2102\u2107\u210A-\u2113\u2115\u2119-\u211D\u2124\u2126\u2128]|[\u212A-\u212D\u212F-\u2139\u213C-\u213F\u2145-\u2149\u214E\u2183\u2184]|[\u2C00-\u2C2E\u2C30-\u2C5E\u2C60-\u2CE4\u2CEB-\u2CEE\u2CF2\u2CF3]|[\u2D00-\u2D25\u2D27\u2D2D\u2D30-\u2D67\u2D6F\u2D80-\u2D96\u2DA0-\u2DA6]|[\u2DA8-\u2DAE\u2DB0-\u2DB6\u2DB8-\u2DBE\u2DC0-\u2DC6\u2DC8-\u2DCE]|[\u2DD0-\u2DD6\u2DD8-\u2DDE\u2E2F\u3005\u3006\u3031-\u3035\u303B\u303C]|[\u3041-\u3096\u309D-\u309F\u30A1-\u30FA\u30FC-\u30FF\u3105-\u312D]|[\u3131-\u318E\u31A0-\u31BA\u31F0-\u31FF\u3400-\u4DB5\u4E00-\u9FCC]|[\uA000-\uA48C\uA4D0-\uA4FD\uA500-\uA60C\uA610-\uA61F\uA62A\uA62B]|[\uA640-\uA66E\uA67F-\uA697\uA6A0-\uA6E5\uA717-\uA71F\uA722-\uA788]|[\uA78B-\uA78E\uA790-\uA793\uA7A0-\uA7AA\uA7F8-\uA801\uA803-\uA805]|[\uA807-\uA80A\uA80C-\uA822\uA840-\uA873\uA882-\uA8B3\uA8F2-\uA8F7\uA8FB]|[\uA90A-\uA925\uA930-\uA946\uA960-\uA97C\uA984-\uA9B2\uA9CF\uAA00-\uAA28]|[\uAA40-\uAA42\uAA44-\uAA4B\uAA60-\uAA76\uAA7A\uAA80-\uAAAF\uAAB1\uAAB5]|[\uAAB6\uAAB9-\uAABD\uAAC0\uAAC2\uAADB-\uAADD\uAAE0-\uAAEA\uAAF2-\uAAF4]|[\uAB01-\uAB06\uAB09-\uAB0E\uAB11-\uAB16\uAB20-\uAB26\uAB28-\uAB2E]|[\uABC0-\uABE2\uAC00-\uD7A3\uD7B0-\uD7C6\uD7CB-\uD7FB\uF900-\uFA6D]|[\uFA70-\uFAD9\uFB00-\uFB06\uFB13-\uFB17\uFB1D\uFB1F-\uFB28\uFB2A-\uFB36]|[\uFB38-\uFB3C\uFB3E\uFB40\uFB41\uFB43\uFB44\uFB46-\uFBB1\uFBD3-\uFD3D]|[\uFD50-\uFD8F\uFD92-\uFDC7\uFDF0-\uFDFB\uFE70-\uFE74\uFE76-\uFEFC]|[\uFF21-\uFF3A\uFF41-\uFF5A\uFF66-\uFFBE\uFFC2-\uFFC7\uFFCA-\uFFCF]|[\uFFD2-\uFFD7\uFFDA-\uFFDC])/,/^(?:\|)/,/^(?:\()/,/^(?:\))/,/^(?:\[)/,/^(?:\])/,/^(?:\{)/,/^(?:\})/,/^(?:")/,/^(?:(\r?\n)+)/,/^(?:\s)/,/^(?:$)/],conditions:{close_directive:{rules:[],inclusive:!1},arg_directive:{rules:[3,4],inclusive:!1},type_directive:{rules:[2,3],inclusive:!1},open_directive:{rules:[1],inclusive:!1},callbackargs:{rules:[23,24],inclusive:!1},callbackname:{rules:[20,21,22],inclusive:!1},href:{rules:[17,18],inclusive:!1},click:{rules:[26,27],inclusive:!1},vertex:{rules:[],inclusive:!1},dir:{rules:[36,37,38,39,40,41,42,43,44,45,46],inclusive:!1},string:{rules:[8,9],inclusive:!1},INITIAL:{rules:[0,5,6,7,10,11,12,13,14,15,16,19,25,28,29,30,31,32,33,34,35,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76,77,78,79,80,81,82,83,84,85,86,87,88,89,90,91,92,93,94,95,96,97,98,99,100,101,102],inclusive:!0}}};function Jt(){this.yy={}}return Kt.lexer=Qt,Jt.prototype=Kt,Kt.Parser=Jt,new Jt}();e.parser=i,e.Parser=i.Parser,e.parse=function(){return i.parse.apply(i,arguments)},e.main=function(r){r[1]||(console.log("Usage: "+r[0]+" FILE"),t.exit(1));var i=n(17).readFileSync(n(18).normalize(r[1]),"utf8");return e.parser.parse(i)},n.c[n.s]===r&&e.main(t.argv.slice(1))}).call(this,n(12),n(7)(t))},function(t,e,n){(function(t,r){var i=function(){var t=function(t,e,n,r){for(n=n||{},r=t.length;r--;n[t[r]]=e);return n},e=[1,2],n=[1,5],r=[6,9,11,17,18,19,21],i=[1,15],a=[1,16],o=[1,17],s=[1,21],c=[4,6,9,11,17,18,19,21],u={trace:function(){},yy:{},symbols_:{error:2,start:3,journey:4,document:5,EOF:6,directive:7,line:8,SPACE:9,statement:10,NEWLINE:11,openDirective:12,typeDirective:13,closeDirective:14,":":15,argDirective:16,title:17,section:18,taskName:19,taskData:20,open_directive:21,type_directive:22,arg_directive:23,close_directive:24,$accept:0,$end:1},terminals_:{2:"error",4:"journey",6:"EOF",9:"SPACE",11:"NEWLINE",15:":",17:"title",18:"section",19:"taskName",20:"taskData",21:"open_directive",22:"type_directive",23:"arg_directive",24:"close_directive"},productions_:[0,[3,3],[3,2],[5,0],[5,2],[8,2],[8,1],[8,1],[8,1],[7,4],[7,6],[10,1],[10,1],[10,2],[10,1],[12,1],[13,1],[16,1],[14,1]],performAction:function(t,e,n,r,i,a,o){var s=a.length-1;switch(i){case 1:return a[s-1];case 3:this.$=[];break;case 4:a[s-1].push(a[s]),this.$=a[s-1];break;case 5:case 6:this.$=a[s];break;case 7:case 8:this.$=[];break;case 11:r.setTitle(a[s].substr(6)),this.$=a[s].substr(6);break;case 12:r.addSection(a[s].substr(8)),this.$=a[s].substr(8);break;case 13:r.addTask(a[s-1],a[s]),this.$="task";break;case 15:r.parseDirective("%%{","open_directive");break;case 16:r.parseDirective(a[s],"type_directive");break;case 17:a[s]=a[s].trim().replace(/'/g,'"'),r.parseDirective(a[s],"arg_directive");break;case 18:r.parseDirective("}%%","close_directive","journey")}},table:[{3:1,4:e,7:3,12:4,21:n},{1:[3]},t(r,[2,3],{5:6}),{3:7,4:e,7:3,12:4,21:n},{13:8,22:[1,9]},{22:[2,15]},{6:[1,10],7:18,8:11,9:[1,12],10:13,11:[1,14],12:4,17:i,18:a,19:o,21:n},{1:[2,2]},{14:19,15:[1,20],24:s},t([15,24],[2,16]),t(r,[2,8],{1:[2,1]}),t(r,[2,4]),{7:18,10:22,12:4,17:i,18:a,19:o,21:n},t(r,[2,6]),t(r,[2,7]),t(r,[2,11]),t(r,[2,12]),{20:[1,23]},t(r,[2,14]),{11:[1,24]},{16:25,23:[1,26]},{11:[2,18]},t(r,[2,5]),t(r,[2,13]),t(c,[2,9]),{14:27,24:s},{24:[2,17]},{11:[1,28]},t(c,[2,10])],defaultActions:{5:[2,15],7:[2,2],21:[2,18],26:[2,17]},parseError:function(t,e){if(!e.recoverable){var n=new Error(t);throw n.hash=e,n}this.trace(t)},parse:function(t){var e=this,n=[0],r=[],i=[null],a=[],o=this.table,s="",c=0,u=0,l=0,h=2,f=1,d=a.slice.call(arguments,1),p=Object.create(this.lexer),y={yy:{}};for(var g in this.yy)Object.prototype.hasOwnProperty.call(this.yy,g)&&(y.yy[g]=this.yy[g]);p.setInput(t,y.yy),y.yy.lexer=p,y.yy.parser=this,void 0===p.yylloc&&(p.yylloc={});var m=p.yylloc;a.push(m);var v=p.options&&p.options.ranges;function b(){var t;return"number"!=typeof(t=r.pop()||p.lex()||f)&&(t instanceof Array&&(t=(r=t).pop()),t=e.symbols_[t]||t),t}"function"==typeof y.yy.parseError?this.parseError=y.yy.parseError:this.parseError=Object.getPrototypeOf(this).parseError;for(var x,_,k,w,T,E,C,S,A,M={};;){if(k=n[n.length-1],this.defaultActions[k]?w=this.defaultActions[k]:(null==x&&(x=b()),w=o[k]&&o[k][x]),void 0===w||!w.length||!w[0]){var O="";for(E in A=[],o[k])this.terminals_[E]&&E>h&&A.push("'"+this.terminals_[E]+"'");O=p.showPosition?"Parse error on line "+(c+1)+":\n"+p.showPosition()+"\nExpecting "+A.join(", ")+", got '"+(this.terminals_[x]||x)+"'":"Parse error on line "+(c+1)+": Unexpected "+(x==f?"end of input":"'"+(this.terminals_[x]||x)+"'"),this.parseError(O,{text:p.match,token:this.terminals_[x]||x,line:p.yylineno,loc:m,expected:A})}if(w[0]instanceof Array&&w.length>1)throw new Error("Parse Error: multiple actions possible at state: "+k+", token: "+x);switch(w[0]){case 1:n.push(x),i.push(p.yytext),a.push(p.yylloc),n.push(w[1]),x=null,_?(x=_,_=null):(u=p.yyleng,s=p.yytext,c=p.yylineno,m=p.yylloc,l>0&&l--);break;case 2:if(C=this.productions_[w[1]][1],M.$=i[i.length-C],M._$={first_line:a[a.length-(C||1)].first_line,last_line:a[a.length-1].last_line,first_column:a[a.length-(C||1)].first_column,last_column:a[a.length-1].last_column},v&&(M._$.range=[a[a.length-(C||1)].range[0],a[a.length-1].range[1]]),void 0!==(T=this.performAction.apply(M,[s,u,c,y.yy,w[1],i,a].concat(d))))return T;C&&(n=n.slice(0,-1*C*2),i=i.slice(0,-1*C),a=a.slice(0,-1*C)),n.push(this.productions_[w[1]][0]),i.push(M.$),a.push(M._$),S=o[n[n.length-2]][n[n.length-1]],n.push(S);break;case 3:return!0}}return!0}},l={EOF:1,parseError:function(t,e){if(!this.yy.parser)throw new Error(t);this.yy.parser.parseError(t,e)},setInput:function(t,e){return this.yy=e||this.yy||{},this._input=t,this._more=this._backtrack=this.done=!1,this.yylineno=this.yyleng=0,this.yytext=this.matched=this.match="",this.conditionStack=["INITIAL"],this.yylloc={first_line:1,first_column:0,last_line:1,last_column:0},this.options.ranges&&(this.yylloc.range=[0,0]),this.offset=0,this},input:function(){var t=this._input[0];return this.yytext+=t,this.yyleng++,this.offset++,this.match+=t,this.matched+=t,t.match(/(?:\r\n?|\n).*/g)?(this.yylineno++,this.yylloc.last_line++):this.yylloc.last_column++,this.options.ranges&&this.yylloc.range[1]++,this._input=this._input.slice(1),t},unput:function(t){var e=t.length,n=t.split(/(?:\r\n?|\n)/g);this._input=t+this._input,this.yytext=this.yytext.substr(0,this.yytext.length-e),this.offset-=e;var r=this.match.split(/(?:\r\n?|\n)/g);this.match=this.match.substr(0,this.match.length-1),this.matched=this.matched.substr(0,this.matched.length-1),n.length-1&&(this.yylineno-=n.length-1);var i=this.yylloc.range;return this.yylloc={first_line:this.yylloc.first_line,last_line:this.yylineno+1,first_column:this.yylloc.first_column,last_column:n?(n.length===r.length?this.yylloc.first_column:0)+r[r.length-n.length].length-n[0].length:this.yylloc.first_column-e},this.options.ranges&&(this.yylloc.range=[i[0],i[0]+this.yyleng-e]),this.yyleng=this.yytext.length,this},more:function(){return this._more=!0,this},reject:function(){return this.options.backtrack_lexer?(this._backtrack=!0,this):this.parseError("Lexical error on line "+(this.yylineno+1)+". You can only invoke reject() in the lexer when the lexer is of the backtracking persuasion (options.backtrack_lexer = true).\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},less:function(t){this.unput(this.match.slice(t))},pastInput:function(){var t=this.matched.substr(0,this.matched.length-this.match.length);return(t.length>20?"...":"")+t.substr(-20).replace(/\n/g,"")},upcomingInput:function(){var t=this.match;return t.length<20&&(t+=this._input.substr(0,20-t.length)),(t.substr(0,20)+(t.length>20?"...":"")).replace(/\n/g,"")},showPosition:function(){var t=this.pastInput(),e=new Array(t.length+1).join("-");return t+this.upcomingInput()+"\n"+e+"^"},test_match:function(t,e){var n,r,i;if(this.options.backtrack_lexer&&(i={yylineno:this.yylineno,yylloc:{first_line:this.yylloc.first_line,last_line:this.last_line,first_column:this.yylloc.first_column,last_column:this.yylloc.last_column},yytext:this.yytext,match:this.match,matches:this.matches,matched:this.matched,yyleng:this.yyleng,offset:this.offset,_more:this._more,_input:this._input,yy:this.yy,conditionStack:this.conditionStack.slice(0),done:this.done},this.options.ranges&&(i.yylloc.range=this.yylloc.range.slice(0))),(r=t[0].match(/(?:\r\n?|\n).*/g))&&(this.yylineno+=r.length),this.yylloc={first_line:this.yylloc.last_line,last_line:this.yylineno+1,first_column:this.yylloc.last_column,last_column:r?r[r.length-1].length-r[r.length-1].match(/\r?\n?/)[0].length:this.yylloc.last_column+t[0].length},this.yytext+=t[0],this.match+=t[0],this.matches=t,this.yyleng=this.yytext.length,this.options.ranges&&(this.yylloc.range=[this.offset,this.offset+=this.yyleng]),this._more=!1,this._backtrack=!1,this._input=this._input.slice(t[0].length),this.matched+=t[0],n=this.performAction.call(this,this.yy,this,e,this.conditionStack[this.conditionStack.length-1]),this.done&&this._input&&(this.done=!1),n)return n;if(this._backtrack){for(var a in i)this[a]=i[a];return!1}return!1},next:function(){if(this.done)return this.EOF;var t,e,n,r;this._input||(this.done=!0),this._more||(this.yytext="",this.match="");for(var i=this._currentRules(),a=0;a<i.length;a++)if((n=this._input.match(this.rules[i[a]]))&&(!e||n[0].length>e[0].length)){if(e=n,r=a,this.options.backtrack_lexer){if(!1!==(t=this.test_match(n,i[a])))return t;if(this._backtrack){e=!1;continue}return!1}if(!this.options.flex)break}return e?!1!==(t=this.test_match(e,i[r]))&&t:""===this._input?this.EOF:this.parseError("Lexical error on line "+(this.yylineno+1)+". Unrecognized text.\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},lex:function(){var t=this.next();return t||this.lex()},begin:function(t){this.conditionStack.push(t)},popState:function(){return this.conditionStack.length-1>0?this.conditionStack.pop():this.conditionStack[0]},_currentRules:function(){return this.conditionStack.length&&this.conditionStack[this.conditionStack.length-1]?this.conditions[this.conditionStack[this.conditionStack.length-1]].rules:this.conditions.INITIAL.rules},topState:function(t){return(t=this.conditionStack.length-1-Math.abs(t||0))>=0?this.conditionStack[t]:"INITIAL"},pushState:function(t){this.begin(t)},stateStackSize:function(){return this.conditionStack.length},options:{"case-insensitive":!0},performAction:function(t,e,n,r){switch(n){case 0:return this.begin("open_directive"),21;case 1:return this.begin("type_directive"),22;case 2:return this.popState(),this.begin("arg_directive"),15;case 3:return this.popState(),this.popState(),24;case 4:return 23;case 5:case 6:break;case 7:return 11;case 8:case 9:break;case 10:return 4;case 11:return 17;case 12:return 18;case 13:return 19;case 14:return 20;case 15:return 15;case 16:return 6;case 17:return"INVALID"}},rules:[/^(?:%%\{)/i,/^(?:((?:(?!\}%%)[^:.])*))/i,/^(?::)/i,/^(?:\}%%)/i,/^(?:((?:(?!\}%%).|\n)*))/i,/^(?:%(?!\{)[^\n]*)/i,/^(?:[^\}]%%[^\n]*)/i,/^(?:[\n]+)/i,/^(?:\s+)/i,/^(?:#[^\n]*)/i,/^(?:journey\b)/i,/^(?:title\s[^#\n;]+)/i,/^(?:section\s[^#:\n;]+)/i,/^(?:[^#:\n;]+)/i,/^(?::[^#\n;]+)/i,/^(?::)/i,/^(?:$)/i,/^(?:.)/i],conditions:{open_directive:{rules:[1],inclusive:!1},type_directive:{rules:[2,3],inclusive:!1},arg_directive:{rules:[3,4],inclusive:!1},INITIAL:{rules:[0,5,6,7,8,9,10,11,12,13,14,15,16,17],inclusive:!0}}};function h(){this.yy={}}return u.lexer=l,h.prototype=u,u.Parser=h,new h}();e.parser=i,e.Parser=i.Parser,e.parse=function(){return i.parse.apply(i,arguments)},e.main=function(r){r[1]||(console.log("Usage: "+r[0]+" FILE"),t.exit(1));var i=n(17).readFileSync(n(18).normalize(r[1]),"utf8");return e.parser.parse(i)},n.c[n.s]===r&&e.main(t.argv.slice(1))}).call(this,n(12),n(7)(t))},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i=n(6);e.default=function(t,e){return r.default.lang.round(i.default.parse(t)[e])}},function(t,e,n){var r=n(112),i=n(84),a=n(25);t.exports=function(t){return a(t)?r(t):i(t)}},function(t,e,n){var r;if(!r)try{r=n(0)}catch(t){}r||(r=window.d3),t.exports=r},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i=n(6);e.default=function(t,e,n){var a=i.default.parse(t),o=a[e],s=r.default.channel.clamp[e](o+n);return o!==s&&(a[e]=s),i.default.stringify(a)}},function(t,e,n){var r=n(215),i=n(221);t.exports=function(t,e){var n=i(t,e);return r(n)?n:void 0}},function(t,e,n){var r=n(40),i=n(217),a=n(218),o=r?r.toStringTag:void 0;t.exports=function(t){return null==t?void 0===t?"[object Undefined]":"[object Null]":o&&o in Object(t)?i(t):a(t)}},function(t,e,n){var r=n(112),i=n(241),a=n(25);t.exports=function(t){return a(t)?r(t,!0):i(t)}},function(t,e){t.exports=function(t){return t}},function(t){t.exports=JSON.parse('{"name":"mermaid","version":"8.13.0","description":"Markdownish syntax for generating flowcharts, sequence diagrams, class diagrams, gantt charts and git graphs.","main":"dist/mermaid.core.js","keywords":["diagram","markdown","flowchart","sequence diagram","gantt","class diagram","git graph"],"scripts":{"build:development":"webpack --progress --color","build:production":"yarn build:development --mode production --config webpack.config.prod.babel.js","build":"yarn build:development && yarn build:production","postbuild":"documentation build src/mermaidAPI.js src/config.js src/defaultConfig.js --shallow -f md --markdown-toc false > docs/Setup.md","build:watch":"yarn build --watch","release":"yarn build","lint":"eslint src","e2e:depr":"yarn lint && jest e2e --config e2e/jest.config.js","cypress":"percy exec -- cypress run","e2e":"start-server-and-test dev http://localhost:9000/ cypress","e2e-upd":"yarn lint && jest e2e -u --config e2e/jest.config.js","dev":"webpack serve --config webpack.config.e2e.js","test":"yarn lint && jest src/.*","test:watch":"jest --watch src","prepublishOnly":"yarn build && yarn test","prepare":"yarn build"},"repository":{"type":"git","url":"https://github.com/knsv/mermaid"},"author":"Knut Sveidqvist","license":"MIT","standard":{"ignore":["**/parser/*.js","dist/**/*.js","cypress/**/*.js"],"globals":["page"]},"dependencies":{"@braintree/sanitize-url":"^3.1.0","d3":"^7.0.0","dagre":"^0.8.5","dagre-d3":"^0.6.4","dompurify":"2.3.1","graphlib":"^2.1.8","khroma":"^1.4.1","moment-mini":"^2.24.0","stylis":"^4.0.10"},"devDependencies":{"@babel/core":"^7.14.6","@babel/eslint-parser":"^7.14.7","@babel/preset-env":"^7.14.7","@babel/register":"^7.14.5","@percy/cli":"^1.0.0-beta.58","@percy/cypress":"^3.1.0","@percy/migrate":"^0.11.0","babel-jest":"^27.0.6","babel-loader":"^8.2.2","coveralls":"^3.0.2","css-to-string-loader":"^0.1.3","cypress":"8.1.0","documentation":"13.2.0","eslint":"^7.30.0","eslint-config-prettier":"^8.3.0","eslint-plugin-prettier":"^3.4.0","husky":"^7.0.1","identity-obj-proxy":"^3.0.0","jest":"^27.0.6","jison":"^0.4.18","js-base64":"3.6.1","moment":"^2.23.0","prettier":"^2.3.2","start-server-and-test":"^1.12.6","terser-webpack-plugin":"^4.2.3","webpack":"^4.41.2","webpack-cli":"^4.7.2","webpack-dev-server":"^3.4.1","webpack-node-externals":"^3.0.0"},"files":["dist"],"sideEffects":["**/*.css","**/*.scss"],"husky":{"hooks":{"pre-push":"yarn test"}}}')},function(t,e){t.exports=function(t,e){return t===e||t!=t&&e!=e}},function(t,e,n){var r=n(34),i=n(14);t.exports=function(t){if(!i(t))return!1;var e=r(t);return"[object Function]"==e||"[object GeneratorFunction]"==e||"[object AsyncFunction]"==e||"[object Proxy]"==e}},function(t,e,n){var r=n(19).Symbol;t.exports=r},function(t,e,n){(function(t){var r=n(19),i=n(237),a=e&&!e.nodeType&&e,o=a&&"object"==typeof t&&t&&!t.nodeType&&t,s=o&&o.exports===a?r.Buffer:void 0,c=(s?s.isBuffer:void 0)||i;t.exports=c}).call(this,n(7)(t))},function(t,e,n){var r=n(246),i=n(79),a=n(247),o=n(121),s=n(248),c=n(34),u=n(110),l=u(r),h=u(i),f=u(a),d=u(o),p=u(s),y=c;(r&&"[object DataView]"!=y(new r(new ArrayBuffer(1)))||i&&"[object Map]"!=y(new i)||a&&"[object Promise]"!=y(a.resolve())||o&&"[object Set]"!=y(new o)||s&&"[object WeakMap]"!=y(new s))&&(y=function(t){var e=c(t),n="[object Object]"==e?t.constructor:void 0,r=n?u(n):"";if(r)switch(r){case l:return"[object DataView]";case h:return"[object Map]";case f:return"[object Promise]";case d:return"[object Set]";case p:return"[object WeakMap]"}return e}),t.exports=y},function(t,e,n){var r=n(34),i=n(21);t.exports=function(t){return"symbol"==typeof t||i(t)&&"[object Symbol]"==r(t)}},function(t,e,n){var r;try{r={defaults:n(154),each:n(89),isFunction:n(39),isPlainObject:n(158),pick:n(161),has:n(94),range:n(162),uniqueId:n(163)}}catch(t){}r||(r=window._),t.exports=r},function(t,e,n){(function(t,r){var i=function(){var t=function(t,e,n,r){for(n=n||{},r=t.length;r--;n[t[r]]=e);return n},e=[1,3],n=[1,5],r=[1,17],i=[2,10],a=[1,21],o=[1,22],s=[1,23],c=[1,24],u=[1,25],l=[1,26],h=[1,19],f=[1,27],d=[1,28],p=[1,31],y=[66,67],g=[5,8,14,35,36,37,38,39,40,48,55,57,66,67],m=[5,6,8,14,35,36,37,38,39,40,48,66,67],v=[1,51],b=[1,52],x=[1,53],_=[1,54],k=[1,55],w=[1,56],T=[1,57],E=[57,58],C=[1,69],S=[1,65],A=[1,66],M=[1,67],O=[1,68],N=[1,70],B=[1,74],D=[1,75],L=[1,72],I=[1,73],R=[5,8,14,35,36,37,38,39,40,48,66,67],F={trace:function(){},yy:{},symbols_:{error:2,start:3,directive:4,NEWLINE:5,RD:6,diagram:7,EOF:8,openDirective:9,typeDirective:10,closeDirective:11,":":12,argDirective:13,open_directive:14,type_directive:15,arg_directive:16,close_directive:17,requirementDef:18,elementDef:19,relationshipDef:20,requirementType:21,requirementName:22,STRUCT_START:23,requirementBody:24,ID:25,COLONSEP:26,id:27,TEXT:28,text:29,RISK:30,riskLevel:31,VERIFYMTHD:32,verifyType:33,STRUCT_STOP:34,REQUIREMENT:35,FUNCTIONAL_REQUIREMENT:36,INTERFACE_REQUIREMENT:37,PERFORMANCE_REQUIREMENT:38,PHYSICAL_REQUIREMENT:39,DESIGN_CONSTRAINT:40,LOW_RISK:41,MED_RISK:42,HIGH_RISK:43,VERIFY_ANALYSIS:44,VERIFY_DEMONSTRATION:45,VERIFY_INSPECTION:46,VERIFY_TEST:47,ELEMENT:48,elementName:49,elementBody:50,TYPE:51,type:52,DOCREF:53,ref:54,END_ARROW_L:55,relationship:56,LINE:57,END_ARROW_R:58,CONTAINS:59,COPIES:60,DERIVES:61,SATISFIES:62,VERIFIES:63,REFINES:64,TRACES:65,unqString:66,qString:67,$accept:0,$end:1},terminals_:{2:"error",5:"NEWLINE",6:"RD",8:"EOF",12:":",14:"open_directive",15:"type_directive",16:"arg_directive",17:"close_directive",23:"STRUCT_START",25:"ID",26:"COLONSEP",28:"TEXT",30:"RISK",32:"VERIFYMTHD",34:"STRUCT_STOP",35:"REQUIREMENT",36:"FUNCTIONAL_REQUIREMENT",37:"INTERFACE_REQUIREMENT",38:"PERFORMANCE_REQUIREMENT",39:"PHYSICAL_REQUIREMENT",40:"DESIGN_CONSTRAINT",41:"LOW_RISK",42:"MED_RISK",43:"HIGH_RISK",44:"VERIFY_ANALYSIS",45:"VERIFY_DEMONSTRATION",46:"VERIFY_INSPECTION",47:"VERIFY_TEST",48:"ELEMENT",51:"TYPE",53:"DOCREF",55:"END_ARROW_L",57:"LINE",58:"END_ARROW_R",59:"CONTAINS",60:"COPIES",61:"DERIVES",62:"SATISFIES",63:"VERIFIES",64:"REFINES",65:"TRACES",66:"unqString",67:"qString"},productions_:[0,[3,3],[3,2],[3,4],[4,3],[4,5],[9,1],[10,1],[13,1],[11,1],[7,0],[7,2],[7,2],[7,2],[7,2],[7,2],[18,5],[24,5],[24,5],[24,5],[24,5],[24,2],[24,1],[21,1],[21,1],[21,1],[21,1],[21,1],[21,1],[31,1],[31,1],[31,1],[33,1],[33,1],[33,1],[33,1],[19,5],[50,5],[50,5],[50,2],[50,1],[20,5],[20,5],[56,1],[56,1],[56,1],[56,1],[56,1],[56,1],[56,1],[22,1],[22,1],[27,1],[27,1],[29,1],[29,1],[49,1],[49,1],[52,1],[52,1],[54,1],[54,1]],performAction:function(t,e,n,r,i,a,o){var s=a.length-1;switch(i){case 6:r.parseDirective("%%{","open_directive");break;case 7:r.parseDirective(a[s],"type_directive");break;case 8:a[s]=a[s].trim().replace(/'/g,'"'),r.parseDirective(a[s],"arg_directive");break;case 9:r.parseDirective("}%%","close_directive","pie");break;case 10:this.$=[];break;case 16:r.addRequirement(a[s-3],a[s-4]);break;case 17:r.setNewReqId(a[s-2]);break;case 18:r.setNewReqText(a[s-2]);break;case 19:r.setNewReqRisk(a[s-2]);break;case 20:r.setNewReqVerifyMethod(a[s-2]);break;case 23:this.$=r.RequirementType.REQUIREMENT;break;case 24:this.$=r.RequirementType.FUNCTIONAL_REQUIREMENT;break;case 25:this.$=r.RequirementType.INTERFACE_REQUIREMENT;break;case 26:this.$=r.RequirementType.PERFORMANCE_REQUIREMENT;break;case 27:this.$=r.RequirementType.PHYSICAL_REQUIREMENT;break;case 28:this.$=r.RequirementType.DESIGN_CONSTRAINT;break;case 29:this.$=r.RiskLevel.LOW_RISK;break;case 30:this.$=r.RiskLevel.MED_RISK;break;case 31:this.$=r.RiskLevel.HIGH_RISK;break;case 32:this.$=r.VerifyType.VERIFY_ANALYSIS;break;case 33:this.$=r.VerifyType.VERIFY_DEMONSTRATION;break;case 34:this.$=r.VerifyType.VERIFY_INSPECTION;break;case 35:this.$=r.VerifyType.VERIFY_TEST;break;case 36:r.addElement(a[s-3]);break;case 37:r.setNewElementType(a[s-2]);break;case 38:r.setNewElementDocRef(a[s-2]);break;case 41:r.addRelationship(a[s-2],a[s],a[s-4]);break;case 42:r.addRelationship(a[s-2],a[s-4],a[s]);break;case 43:this.$=r.Relationships.CONTAINS;break;case 44:this.$=r.Relationships.COPIES;break;case 45:this.$=r.Relationships.DERIVES;break;case 46:this.$=r.Relationships.SATISFIES;break;case 47:this.$=r.Relationships.VERIFIES;break;case 48:this.$=r.Relationships.REFINES;break;case 49:this.$=r.Relationships.TRACES}},table:[{3:1,4:2,6:e,9:4,14:n},{1:[3]},{3:7,4:2,5:[1,6],6:e,9:4,14:n},{5:[1,8]},{10:9,15:[1,10]},{15:[2,6]},{3:11,4:2,6:e,9:4,14:n},{1:[2,2]},{4:16,5:r,7:12,8:i,9:4,14:n,18:13,19:14,20:15,21:18,27:20,35:a,36:o,37:s,38:c,39:u,40:l,48:h,66:f,67:d},{11:29,12:[1,30],17:p},t([12,17],[2,7]),{1:[2,1]},{8:[1,32]},{4:16,5:r,7:33,8:i,9:4,14:n,18:13,19:14,20:15,21:18,27:20,35:a,36:o,37:s,38:c,39:u,40:l,48:h,66:f,67:d},{4:16,5:r,7:34,8:i,9:4,14:n,18:13,19:14,20:15,21:18,27:20,35:a,36:o,37:s,38:c,39:u,40:l,48:h,66:f,67:d},{4:16,5:r,7:35,8:i,9:4,14:n,18:13,19:14,20:15,21:18,27:20,35:a,36:o,37:s,38:c,39:u,40:l,48:h,66:f,67:d},{4:16,5:r,7:36,8:i,9:4,14:n,18:13,19:14,20:15,21:18,27:20,35:a,36:o,37:s,38:c,39:u,40:l,48:h,66:f,67:d},{4:16,5:r,7:37,8:i,9:4,14:n,18:13,19:14,20:15,21:18,27:20,35:a,36:o,37:s,38:c,39:u,40:l,48:h,66:f,67:d},{22:38,66:[1,39],67:[1,40]},{49:41,66:[1,42],67:[1,43]},{55:[1,44],57:[1,45]},t(y,[2,23]),t(y,[2,24]),t(y,[2,25]),t(y,[2,26]),t(y,[2,27]),t(y,[2,28]),t(g,[2,52]),t(g,[2,53]),t(m,[2,4]),{13:46,16:[1,47]},t(m,[2,9]),{1:[2,3]},{8:[2,11]},{8:[2,12]},{8:[2,13]},{8:[2,14]},{8:[2,15]},{23:[1,48]},{23:[2,50]},{23:[2,51]},{23:[1,49]},{23:[2,56]},{23:[2,57]},{56:50,59:v,60:b,61:x,62:_,63:k,64:w,65:T},{56:58,59:v,60:b,61:x,62:_,63:k,64:w,65:T},{11:59,17:p},{17:[2,8]},{5:[1,60]},{5:[1,61]},{57:[1,62]},t(E,[2,43]),t(E,[2,44]),t(E,[2,45]),t(E,[2,46]),t(E,[2,47]),t(E,[2,48]),t(E,[2,49]),{58:[1,63]},t(m,[2,5]),{5:C,24:64,25:S,28:A,30:M,32:O,34:N},{5:B,34:D,50:71,51:L,53:I},{27:76,66:f,67:d},{27:77,66:f,67:d},t(R,[2,16]),{26:[1,78]},{26:[1,79]},{26:[1,80]},{26:[1,81]},{5:C,24:82,25:S,28:A,30:M,32:O,34:N},t(R,[2,22]),t(R,[2,36]),{26:[1,83]},{26:[1,84]},{5:B,34:D,50:85,51:L,53:I},t(R,[2,40]),t(R,[2,41]),t(R,[2,42]),{27:86,66:f,67:d},{29:87,66:[1,88],67:[1,89]},{31:90,41:[1,91],42:[1,92],43:[1,93]},{33:94,44:[1,95],45:[1,96],46:[1,97],47:[1,98]},t(R,[2,21]),{52:99,66:[1,100],67:[1,101]},{54:102,66:[1,103],67:[1,104]},t(R,[2,39]),{5:[1,105]},{5:[1,106]},{5:[2,54]},{5:[2,55]},{5:[1,107]},{5:[2,29]},{5:[2,30]},{5:[2,31]},{5:[1,108]},{5:[2,32]},{5:[2,33]},{5:[2,34]},{5:[2,35]},{5:[1,109]},{5:[2,58]},{5:[2,59]},{5:[1,110]},{5:[2,60]},{5:[2,61]},{5:C,24:111,25:S,28:A,30:M,32:O,34:N},{5:C,24:112,25:S,28:A,30:M,32:O,34:N},{5:C,24:113,25:S,28:A,30:M,32:O,34:N},{5:C,24:114,25:S,28:A,30:M,32:O,34:N},{5:B,34:D,50:115,51:L,53:I},{5:B,34:D,50:116,51:L,53:I},t(R,[2,17]),t(R,[2,18]),t(R,[2,19]),t(R,[2,20]),t(R,[2,37]),t(R,[2,38])],defaultActions:{5:[2,6],7:[2,2],11:[2,1],32:[2,3],33:[2,11],34:[2,12],35:[2,13],36:[2,14],37:[2,15],39:[2,50],40:[2,51],42:[2,56],43:[2,57],47:[2,8],88:[2,54],89:[2,55],91:[2,29],92:[2,30],93:[2,31],95:[2,32],96:[2,33],97:[2,34],98:[2,35],100:[2,58],101:[2,59],103:[2,60],104:[2,61]},parseError:function(t,e){if(!e.recoverable){var n=new Error(t);throw n.hash=e,n}this.trace(t)},parse:function(t){var e=this,n=[0],r=[],i=[null],a=[],o=this.table,s="",c=0,u=0,l=0,h=2,f=1,d=a.slice.call(arguments,1),p=Object.create(this.lexer),y={yy:{}};for(var g in this.yy)Object.prototype.hasOwnProperty.call(this.yy,g)&&(y.yy[g]=this.yy[g]);p.setInput(t,y.yy),y.yy.lexer=p,y.yy.parser=this,void 0===p.yylloc&&(p.yylloc={});var m=p.yylloc;a.push(m);var v=p.options&&p.options.ranges;function b(){var t;return"number"!=typeof(t=r.pop()||p.lex()||f)&&(t instanceof Array&&(t=(r=t).pop()),t=e.symbols_[t]||t),t}"function"==typeof y.yy.parseError?this.parseError=y.yy.parseError:this.parseError=Object.getPrototypeOf(this).parseError;for(var x,_,k,w,T,E,C,S,A,M={};;){if(k=n[n.length-1],this.defaultActions[k]?w=this.defaultActions[k]:(null==x&&(x=b()),w=o[k]&&o[k][x]),void 0===w||!w.length||!w[0]){var O="";for(E in A=[],o[k])this.terminals_[E]&&E>h&&A.push("'"+this.terminals_[E]+"'");O=p.showPosition?"Parse error on line "+(c+1)+":\n"+p.showPosition()+"\nExpecting "+A.join(", ")+", got '"+(this.terminals_[x]||x)+"'":"Parse error on line "+(c+1)+": Unexpected "+(x==f?"end of input":"'"+(this.terminals_[x]||x)+"'"),this.parseError(O,{text:p.match,token:this.terminals_[x]||x,line:p.yylineno,loc:m,expected:A})}if(w[0]instanceof Array&&w.length>1)throw new Error("Parse Error: multiple actions possible at state: "+k+", token: "+x);switch(w[0]){case 1:n.push(x),i.push(p.yytext),a.push(p.yylloc),n.push(w[1]),x=null,_?(x=_,_=null):(u=p.yyleng,s=p.yytext,c=p.yylineno,m=p.yylloc,l>0&&l--);break;case 2:if(C=this.productions_[w[1]][1],M.$=i[i.length-C],M._$={first_line:a[a.length-(C||1)].first_line,last_line:a[a.length-1].last_line,first_column:a[a.length-(C||1)].first_column,last_column:a[a.length-1].last_column},v&&(M._$.range=[a[a.length-(C||1)].range[0],a[a.length-1].range[1]]),void 0!==(T=this.performAction.apply(M,[s,u,c,y.yy,w[1],i,a].concat(d))))return T;C&&(n=n.slice(0,-1*C*2),i=i.slice(0,-1*C),a=a.slice(0,-1*C)),n.push(this.productions_[w[1]][0]),i.push(M.$),a.push(M._$),S=o[n[n.length-2]][n[n.length-1]],n.push(S);break;case 3:return!0}}return!0}},P={EOF:1,parseError:function(t,e){if(!this.yy.parser)throw new Error(t);this.yy.parser.parseError(t,e)},setInput:function(t,e){return this.yy=e||this.yy||{},this._input=t,this._more=this._backtrack=this.done=!1,this.yylineno=this.yyleng=0,this.yytext=this.matched=this.match="",this.conditionStack=["INITIAL"],this.yylloc={first_line:1,first_column:0,last_line:1,last_column:0},this.options.ranges&&(this.yylloc.range=[0,0]),this.offset=0,this},input:function(){var t=this._input[0];return this.yytext+=t,this.yyleng++,this.offset++,this.match+=t,this.matched+=t,t.match(/(?:\r\n?|\n).*/g)?(this.yylineno++,this.yylloc.last_line++):this.yylloc.last_column++,this.options.ranges&&this.yylloc.range[1]++,this._input=this._input.slice(1),t},unput:function(t){var e=t.length,n=t.split(/(?:\r\n?|\n)/g);this._input=t+this._input,this.yytext=this.yytext.substr(0,this.yytext.length-e),this.offset-=e;var r=this.match.split(/(?:\r\n?|\n)/g);this.match=this.match.substr(0,this.match.length-1),this.matched=this.matched.substr(0,this.matched.length-1),n.length-1&&(this.yylineno-=n.length-1);var i=this.yylloc.range;return this.yylloc={first_line:this.yylloc.first_line,last_line:this.yylineno+1,first_column:this.yylloc.first_column,last_column:n?(n.length===r.length?this.yylloc.first_column:0)+r[r.length-n.length].length-n[0].length:this.yylloc.first_column-e},this.options.ranges&&(this.yylloc.range=[i[0],i[0]+this.yyleng-e]),this.yyleng=this.yytext.length,this},more:function(){return this._more=!0,this},reject:function(){return this.options.backtrack_lexer?(this._backtrack=!0,this):this.parseError("Lexical error on line "+(this.yylineno+1)+". You can only invoke reject() in the lexer when the lexer is of the backtracking persuasion (options.backtrack_lexer = true).\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},less:function(t){this.unput(this.match.slice(t))},pastInput:function(){var t=this.matched.substr(0,this.matched.length-this.match.length);return(t.length>20?"...":"")+t.substr(-20).replace(/\n/g,"")},upcomingInput:function(){var t=this.match;return t.length<20&&(t+=this._input.substr(0,20-t.length)),(t.substr(0,20)+(t.length>20?"...":"")).replace(/\n/g,"")},showPosition:function(){var t=this.pastInput(),e=new Array(t.length+1).join("-");return t+this.upcomingInput()+"\n"+e+"^"},test_match:function(t,e){var n,r,i;if(this.options.backtrack_lexer&&(i={yylineno:this.yylineno,yylloc:{first_line:this.yylloc.first_line,last_line:this.last_line,first_column:this.yylloc.first_column,last_column:this.yylloc.last_column},yytext:this.yytext,match:this.match,matches:this.matches,matched:this.matched,yyleng:this.yyleng,offset:this.offset,_more:this._more,_input:this._input,yy:this.yy,conditionStack:this.conditionStack.slice(0),done:this.done},this.options.ranges&&(i.yylloc.range=this.yylloc.range.slice(0))),(r=t[0].match(/(?:\r\n?|\n).*/g))&&(this.yylineno+=r.length),this.yylloc={first_line:this.yylloc.last_line,last_line:this.yylineno+1,first_column:this.yylloc.last_column,last_column:r?r[r.length-1].length-r[r.length-1].match(/\r?\n?/)[0].length:this.yylloc.last_column+t[0].length},this.yytext+=t[0],this.match+=t[0],this.matches=t,this.yyleng=this.yytext.length,this.options.ranges&&(this.yylloc.range=[this.offset,this.offset+=this.yyleng]),this._more=!1,this._backtrack=!1,this._input=this._input.slice(t[0].length),this.matched+=t[0],n=this.performAction.call(this,this.yy,this,e,this.conditionStack[this.conditionStack.length-1]),this.done&&this._input&&(this.done=!1),n)return n;if(this._backtrack){for(var a in i)this[a]=i[a];return!1}return!1},next:function(){if(this.done)return this.EOF;var t,e,n,r;this._input||(this.done=!0),this._more||(this.yytext="",this.match="");for(var i=this._currentRules(),a=0;a<i.length;a++)if((n=this._input.match(this.rules[i[a]]))&&(!e||n[0].length>e[0].length)){if(e=n,r=a,this.options.backtrack_lexer){if(!1!==(t=this.test_match(n,i[a])))return t;if(this._backtrack){e=!1;continue}return!1}if(!this.options.flex)break}return e?!1!==(t=this.test_match(e,i[r]))&&t:""===this._input?this.EOF:this.parseError("Lexical error on line "+(this.yylineno+1)+". Unrecognized text.\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},lex:function(){var t=this.next();return t||this.lex()},begin:function(t){this.conditionStack.push(t)},popState:function(){return this.conditionStack.length-1>0?this.conditionStack.pop():this.conditionStack[0]},_currentRules:function(){return this.conditionStack.length&&this.conditionStack[this.conditionStack.length-1]?this.conditions[this.conditionStack[this.conditionStack.length-1]].rules:this.conditions.INITIAL.rules},topState:function(t){return(t=this.conditionStack.length-1-Math.abs(t||0))>=0?this.conditionStack[t]:"INITIAL"},pushState:function(t){this.begin(t)},stateStackSize:function(){return this.conditionStack.length},options:{"case-insensitive":!0},performAction:function(t,e,n,r){switch(n){case 0:return this.begin("open_directive"),14;case 1:return this.begin("type_directive"),15;case 2:return this.popState(),this.begin("arg_directive"),12;case 3:return this.popState(),this.popState(),17;case 4:return 16;case 5:return 5;case 6:case 7:case 8:break;case 9:return 8;case 10:return 6;case 11:return 23;case 12:return 34;case 13:return 26;case 14:return 25;case 15:return 28;case 16:return 30;case 17:return 32;case 18:return 35;case 19:return 36;case 20:return 37;case 21:return 38;case 22:return 39;case 23:return 40;case 24:return 41;case 25:return 42;case 26:return 43;case 27:return 44;case 28:return 45;case 29:return 46;case 30:return 47;case 31:return 48;case 32:return 59;case 33:return 60;case 34:return 61;case 35:return 62;case 36:return 63;case 37:return 64;case 38:return 65;case 39:return 51;case 40:return 53;case 41:return 55;case 42:return 58;case 43:return 57;case 44:this.begin("string");break;case 45:this.popState();break;case 46:return"qString";case 47:return e.yytext=e.yytext.trim(),66}},rules:[/^(?:%%\{)/i,/^(?:((?:(?!\}%%)[^:.])*))/i,/^(?::)/i,/^(?:\}%%)/i,/^(?:((?:(?!\}%%).|\n)*))/i,/^(?:(\r?\n)+)/i,/^(?:\s+)/i,/^(?:#[^\n]*)/i,/^(?:%[^\n]*)/i,/^(?:$)/i,/^(?:requirementDiagram\b)/i,/^(?:\{)/i,/^(?:\})/i,/^(?::)/i,/^(?:id\b)/i,/^(?:text\b)/i,/^(?:risk\b)/i,/^(?:verifyMethod\b)/i,/^(?:requirement\b)/i,/^(?:functionalRequirement\b)/i,/^(?:interfaceRequirement\b)/i,/^(?:performanceRequirement\b)/i,/^(?:physicalRequirement\b)/i,/^(?:designConstraint\b)/i,/^(?:low\b)/i,/^(?:medium\b)/i,/^(?:high\b)/i,/^(?:analysis\b)/i,/^(?:demonstration\b)/i,/^(?:inspection\b)/i,/^(?:test\b)/i,/^(?:element\b)/i,/^(?:contains\b)/i,/^(?:copies\b)/i,/^(?:derives\b)/i,/^(?:satisfies\b)/i,/^(?:verifies\b)/i,/^(?:refines\b)/i,/^(?:traces\b)/i,/^(?:type\b)/i,/^(?:docref\b)/i,/^(?:<-)/i,/^(?:->)/i,/^(?:-)/i,/^(?:["])/i,/^(?:["])/i,/^(?:[^"]*)/i,/^(?:[\w][^\r\n\{\<\>\-\=]*)/i],conditions:{close_directive:{rules:[],inclusive:!1},arg_directive:{rules:[3,4],inclusive:!1},type_directive:{rules:[2,3],inclusive:!1},open_directive:{rules:[1],inclusive:!1},unqString:{rules:[],inclusive:!1},token:{rules:[],inclusive:!1},string:{rules:[45,46],inclusive:!1},INITIAL:{rules:[0,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,47],inclusive:!0}}};function j(){this.yy={}}return F.lexer=P,j.prototype=F,F.Parser=j,new j}();e.parser=i,e.Parser=i.Parser,e.parse=function(){return i.parse.apply(i,arguments)},e.main=function(r){r[1]||(console.log("Usage: "+r[0]+" FILE"),t.exit(1));var i=n(17).readFileSync(n(18).normalize(r[1]),"utf8");return e.parser.parse(i)},n.c[n.s]===r&&e.main(t.argv.slice(1))}).call(this,n(12),n(7)(t))},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=new(n(175).default)({r:0,g:0,b:0,a:0},"transparent");e.default=r},function(t,e,n){var r=n(59),i=n(60);t.exports=function(t,e,n,a){var o=!n;n||(n={});for(var s=-1,c=e.length;++s<c;){var u=e[s],l=a?a(n[u],t[u],u,n,t):void 0;void 0===l&&(l=t[u]),o?i(n,u,l):r(n,u,l)}return n}},function(t,e,n){var r=n(236),i=n(21),a=Object.prototype,o=a.hasOwnProperty,s=a.propertyIsEnumerable,c=r(function(){return arguments}())?r:function(t){return i(t)&&o.call(t,"callee")&&!s.call(t,"callee")};t.exports=c},function(t,e,n){var r=n(238),i=n(62),a=n(83),o=a&&a.isTypedArray,s=o?i(o):r;t.exports=s},function(t,e,n){var r=n(43);t.exports=function(t){if("string"==typeof t||r(t))return t;var e=t+"";return"0"==e&&1/t==-1/0?"-0":e}},function(t,e,n){var r=n(15);t.exports=function(t,e){var n=t.append("foreignObject").attr("width","100000"),i=n.append("xhtml:div");i.attr("xmlns","http://www.w3.org/1999/xhtml");var a=e.label;switch(typeof a){case"function":i.insert(a);break;case"object":i.insert((function(){return a}));break;default:i.html(a)}r.applyStyle(i,e.labelStyle),i.style("display","inline-block"),i.style("white-space","nowrap");var o=i.node().getBoundingClientRect();return n.attr("width",o.width).attr("height",o.height),n}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i=n(46),a=n(6),o=n(53);e.default=function(t,e,n,s){if(void 0===n&&(n=0),void 0===s&&(s=1),"number"!=typeof t)return o.default(t,{a:e});var c=i.default.set({r:r.default.channel.clamp.r(t),g:r.default.channel.clamp.g(e),b:r.default.channel.clamp.b(n),a:r.default.channel.clamp.a(s)});return a.default.stringify(c)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i=n(6);e.default=function(t,e){var n=i.default.parse(t);for(var a in e)n[a]=r.default.channel.clamp[a](e[a]);return i.default.stringify(n)}},function(t,e,n){var r=n(55),i=n(210),a=n(211),o=n(212),s=n(213),c=n(214);function u(t){var e=this.__data__=new r(t);this.size=e.size}u.prototype.clear=i,u.prototype.delete=a,u.prototype.get=o,u.prototype.has=s,u.prototype.set=c,t.exports=u},function(t,e,n){var r=n(205),i=n(206),a=n(207),o=n(208),s=n(209);function c(t){var e=-1,n=null==t?0:t.length;for(this.clear();++e<n;){var r=t[e];this.set(r[0],r[1])}}c.prototype.clear=r,c.prototype.delete=i,c.prototype.get=a,c.prototype.has=o,c.prototype.set=s,t.exports=c},function(t,e,n){var r=n(38);t.exports=function(t,e){for(var n=t.length;n--;)if(r(t[n][0],e))return n;return-1}},function(t,e,n){var r=n(33)(Object,"create");t.exports=r},function(t,e,n){var r=n(230);t.exports=function(t,e){var n=t.__data__;return r(e)?n["string"==typeof e?"string":"hash"]:n.map}},function(t,e,n){var r=n(60),i=n(38),a=Object.prototype.hasOwnProperty;t.exports=function(t,e,n){var o=t[e];a.call(t,e)&&i(o,n)&&(void 0!==n||e in t)||r(t,e,n)}},function(t,e,n){var r=n(111);t.exports=function(t,e,n){"__proto__"==e&&r?r(t,e,{configurable:!0,enumerable:!0,value:n,writable:!0}):t[e]=n}},function(t,e){var n=/^(?:0|[1-9]\d*)$/;t.exports=function(t,e){var r=typeof t;return!!(e=null==e?9007199254740991:e)&&("number"==r||"symbol"!=r&&n.test(t))&&t>-1&&t%1==0&&t<e}},function(t,e){t.exports=function(t){return function(e){return t(e)}}},function(t,e){var n=Object.prototype;t.exports=function(t){var e=t&&t.constructor;return t===("function"==typeof e&&e.prototype||n)}},function(t,e,n){var r=n(113)(Object.getPrototypeOf,Object);t.exports=r},function(t,e,n){var r=n(90),i=n(259)(r);t.exports=i},function(t,e,n){var r=n(67),i=n(50);t.exports=function(t,e){for(var n=0,a=(e=r(e,t)).length;null!=t&&n<a;)t=t[i(e[n++])];return n&&n==a?t:void 0}},function(t,e,n){var r=n(5),i=n(93),a=n(273),o=n(135);t.exports=function(t,e){return r(t)?t:i(t,e)?[t]:a(o(t))}},function(t,e){t.exports=function(t,e){for(var n=-1,r=null==t?0:t.length,i=Array(r);++n<r;)i[n]=e(t[n],n,t);return i}},function(t,e,n){var r=n(36),i=n(143),a=n(144);t.exports=function(t,e){return a(i(t,e,r),t+"")}},function(t,e,n){var r=n(38),i=n(25),a=n(61),o=n(14);t.exports=function(t,e,n){if(!o(n))return!1;var s=typeof e;return!!("number"==s?i(n)&&a(e,n.length):"string"==s&&e in n)&&r(n[e],t)}},function(t,e,n){"use strict";var r=n(4);t.exports={longestPath:function(t){var e={};r.forEach(t.sources(),(function n(i){var a=t.node(i);if(r.has(e,i))return a.rank;e[i]=!0;var o=r.min(r.map(t.outEdges(i),(function(e){return n(e.w)-t.edge(e).minlen})));return o!==Number.POSITIVE_INFINITY&&null!=o||(o=0),a.rank=o}))},slack:function(t,e){return t.node(e.w).rank-t.node(e.v).rank-t.edge(e).minlen}}},function(t,e,n){"use strict";var r=/^(%20|\s)*(javascript|data)/im,i=/[^\x20-\x7E]/gim,a=/^([^:]+):/gm,o=[".","/"];t.exports={sanitizeUrl:function(t){if(!t)return"about:blank";var e,n,s=t.replace(i,"").trim();return function(t){return o.indexOf(t[0])>-1}(s)?s:(n=s.match(a))?(e=n[0],r.test(e)?"about:blank":s):"about:blank"}}},function(t,e,n){(function(t,r){var i=function(){var t=function(t,e,n,r){for(n=n||{},r=t.length;r--;n[t[r]]=e);return n},e=[2,3],n=[1,7],r=[7,12,15,17,19,20,21],i=[7,11,12,15,17,19,20,21],a=[2,20],o=[1,32],s={trace:function(){},yy:{},symbols_:{error:2,start:3,GG:4,":":5,document:6,EOF:7,DIR:8,options:9,body:10,OPT:11,NL:12,line:13,statement:14,COMMIT:15,commit_arg:16,BRANCH:17,ID:18,CHECKOUT:19,MERGE:20,RESET:21,reset_arg:22,STR:23,HEAD:24,reset_parents:25,CARET:26,$accept:0,$end:1},terminals_:{2:"error",4:"GG",5:":",7:"EOF",8:"DIR",11:"OPT",12:"NL",15:"COMMIT",17:"BRANCH",18:"ID",19:"CHECKOUT",20:"MERGE",21:"RESET",23:"STR",24:"HEAD",26:"CARET"},productions_:[0,[3,4],[3,5],[6,0],[6,2],[9,2],[9,1],[10,0],[10,2],[13,2],[13,1],[14,2],[14,2],[14,2],[14,2],[14,2],[16,0],[16,1],[22,2],[22,2],[25,0],[25,2]],performAction:function(t,e,n,r,i,a,o){var s=a.length-1;switch(i){case 1:return a[s-1];case 2:return r.setDirection(a[s-3]),a[s-1];case 4:r.setOptions(a[s-1]),this.$=a[s];break;case 5:a[s-1]+=a[s],this.$=a[s-1];break;case 7:this.$=[];break;case 8:a[s-1].push(a[s]),this.$=a[s-1];break;case 9:this.$=a[s-1];break;case 11:r.commit(a[s]);break;case 12:r.branch(a[s]);break;case 13:r.checkout(a[s]);break;case 14:r.merge(a[s]);break;case 15:r.reset(a[s]);break;case 16:this.$="";break;case 17:this.$=a[s];break;case 18:this.$=a[s-1]+":"+a[s];break;case 19:this.$=a[s-1]+":"+r.count,r.count=0;break;case 20:r.count=0;break;case 21:r.count+=1}},table:[{3:1,4:[1,2]},{1:[3]},{5:[1,3],8:[1,4]},{6:5,7:e,9:6,12:n},{5:[1,8]},{7:[1,9]},t(r,[2,7],{10:10,11:[1,11]}),t(i,[2,6]),{6:12,7:e,9:6,12:n},{1:[2,1]},{7:[2,4],12:[1,15],13:13,14:14,15:[1,16],17:[1,17],19:[1,18],20:[1,19],21:[1,20]},t(i,[2,5]),{7:[1,21]},t(r,[2,8]),{12:[1,22]},t(r,[2,10]),{12:[2,16],16:23,23:[1,24]},{18:[1,25]},{18:[1,26]},{18:[1,27]},{18:[1,30],22:28,24:[1,29]},{1:[2,2]},t(r,[2,9]),{12:[2,11]},{12:[2,17]},{12:[2,12]},{12:[2,13]},{12:[2,14]},{12:[2,15]},{12:a,25:31,26:o},{12:a,25:33,26:o},{12:[2,18]},{12:a,25:34,26:o},{12:[2,19]},{12:[2,21]}],defaultActions:{9:[2,1],21:[2,2],23:[2,11],24:[2,17],25:[2,12],26:[2,13],27:[2,14],28:[2,15],31:[2,18],33:[2,19],34:[2,21]},parseError:function(t,e){if(!e.recoverable){var n=new Error(t);throw n.hash=e,n}this.trace(t)},parse:function(t){var e=this,n=[0],r=[],i=[null],a=[],o=this.table,s="",c=0,u=0,l=0,h=2,f=1,d=a.slice.call(arguments,1),p=Object.create(this.lexer),y={yy:{}};for(var g in this.yy)Object.prototype.hasOwnProperty.call(this.yy,g)&&(y.yy[g]=this.yy[g]);p.setInput(t,y.yy),y.yy.lexer=p,y.yy.parser=this,void 0===p.yylloc&&(p.yylloc={});var m=p.yylloc;a.push(m);var v=p.options&&p.options.ranges;function b(){var t;return"number"!=typeof(t=r.pop()||p.lex()||f)&&(t instanceof Array&&(t=(r=t).pop()),t=e.symbols_[t]||t),t}"function"==typeof y.yy.parseError?this.parseError=y.yy.parseError:this.parseError=Object.getPrototypeOf(this).parseError;for(var x,_,k,w,T,E,C,S,A,M={};;){if(k=n[n.length-1],this.defaultActions[k]?w=this.defaultActions[k]:(null==x&&(x=b()),w=o[k]&&o[k][x]),void 0===w||!w.length||!w[0]){var O="";for(E in A=[],o[k])this.terminals_[E]&&E>h&&A.push("'"+this.terminals_[E]+"'");O=p.showPosition?"Parse error on line "+(c+1)+":\n"+p.showPosition()+"\nExpecting "+A.join(", ")+", got '"+(this.terminals_[x]||x)+"'":"Parse error on line "+(c+1)+": Unexpected "+(x==f?"end of input":"'"+(this.terminals_[x]||x)+"'"),this.parseError(O,{text:p.match,token:this.terminals_[x]||x,line:p.yylineno,loc:m,expected:A})}if(w[0]instanceof Array&&w.length>1)throw new Error("Parse Error: multiple actions possible at state: "+k+", token: "+x);switch(w[0]){case 1:n.push(x),i.push(p.yytext),a.push(p.yylloc),n.push(w[1]),x=null,_?(x=_,_=null):(u=p.yyleng,s=p.yytext,c=p.yylineno,m=p.yylloc,l>0&&l--);break;case 2:if(C=this.productions_[w[1]][1],M.$=i[i.length-C],M._$={first_line:a[a.length-(C||1)].first_line,last_line:a[a.length-1].last_line,first_column:a[a.length-(C||1)].first_column,last_column:a[a.length-1].last_column},v&&(M._$.range=[a[a.length-(C||1)].range[0],a[a.length-1].range[1]]),void 0!==(T=this.performAction.apply(M,[s,u,c,y.yy,w[1],i,a].concat(d))))return T;C&&(n=n.slice(0,-1*C*2),i=i.slice(0,-1*C),a=a.slice(0,-1*C)),n.push(this.productions_[w[1]][0]),i.push(M.$),a.push(M._$),S=o[n[n.length-2]][n[n.length-1]],n.push(S);break;case 3:return!0}}return!0}},c={EOF:1,parseError:function(t,e){if(!this.yy.parser)throw new Error(t);this.yy.parser.parseError(t,e)},setInput:function(t,e){return this.yy=e||this.yy||{},this._input=t,this._more=this._backtrack=this.done=!1,this.yylineno=this.yyleng=0,this.yytext=this.matched=this.match="",this.conditionStack=["INITIAL"],this.yylloc={first_line:1,first_column:0,last_line:1,last_column:0},this.options.ranges&&(this.yylloc.range=[0,0]),this.offset=0,this},input:function(){var t=this._input[0];return this.yytext+=t,this.yyleng++,this.offset++,this.match+=t,this.matched+=t,t.match(/(?:\r\n?|\n).*/g)?(this.yylineno++,this.yylloc.last_line++):this.yylloc.last_column++,this.options.ranges&&this.yylloc.range[1]++,this._input=this._input.slice(1),t},unput:function(t){var e=t.length,n=t.split(/(?:\r\n?|\n)/g);this._input=t+this._input,this.yytext=this.yytext.substr(0,this.yytext.length-e),this.offset-=e;var r=this.match.split(/(?:\r\n?|\n)/g);this.match=this.match.substr(0,this.match.length-1),this.matched=this.matched.substr(0,this.matched.length-1),n.length-1&&(this.yylineno-=n.length-1);var i=this.yylloc.range;return this.yylloc={first_line:this.yylloc.first_line,last_line:this.yylineno+1,first_column:this.yylloc.first_column,last_column:n?(n.length===r.length?this.yylloc.first_column:0)+r[r.length-n.length].length-n[0].length:this.yylloc.first_column-e},this.options.ranges&&(this.yylloc.range=[i[0],i[0]+this.yyleng-e]),this.yyleng=this.yytext.length,this},more:function(){return this._more=!0,this},reject:function(){return this.options.backtrack_lexer?(this._backtrack=!0,this):this.parseError("Lexical error on line "+(this.yylineno+1)+". You can only invoke reject() in the lexer when the lexer is of the backtracking persuasion (options.backtrack_lexer = true).\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},less:function(t){this.unput(this.match.slice(t))},pastInput:function(){var t=this.matched.substr(0,this.matched.length-this.match.length);return(t.length>20?"...":"")+t.substr(-20).replace(/\n/g,"")},upcomingInput:function(){var t=this.match;return t.length<20&&(t+=this._input.substr(0,20-t.length)),(t.substr(0,20)+(t.length>20?"...":"")).replace(/\n/g,"")},showPosition:function(){var t=this.pastInput(),e=new Array(t.length+1).join("-");return t+this.upcomingInput()+"\n"+e+"^"},test_match:function(t,e){var n,r,i;if(this.options.backtrack_lexer&&(i={yylineno:this.yylineno,yylloc:{first_line:this.yylloc.first_line,last_line:this.last_line,first_column:this.yylloc.first_column,last_column:this.yylloc.last_column},yytext:this.yytext,match:this.match,matches:this.matches,matched:this.matched,yyleng:this.yyleng,offset:this.offset,_more:this._more,_input:this._input,yy:this.yy,conditionStack:this.conditionStack.slice(0),done:this.done},this.options.ranges&&(i.yylloc.range=this.yylloc.range.slice(0))),(r=t[0].match(/(?:\r\n?|\n).*/g))&&(this.yylineno+=r.length),this.yylloc={first_line:this.yylloc.last_line,last_line:this.yylineno+1,first_column:this.yylloc.last_column,last_column:r?r[r.length-1].length-r[r.length-1].match(/\r?\n?/)[0].length:this.yylloc.last_column+t[0].length},this.yytext+=t[0],this.match+=t[0],this.matches=t,this.yyleng=this.yytext.length,this.options.ranges&&(this.yylloc.range=[this.offset,this.offset+=this.yyleng]),this._more=!1,this._backtrack=!1,this._input=this._input.slice(t[0].length),this.matched+=t[0],n=this.performAction.call(this,this.yy,this,e,this.conditionStack[this.conditionStack.length-1]),this.done&&this._input&&(this.done=!1),n)return n;if(this._backtrack){for(var a in i)this[a]=i[a];return!1}return!1},next:function(){if(this.done)return this.EOF;var t,e,n,r;this._input||(this.done=!0),this._more||(this.yytext="",this.match="");for(var i=this._currentRules(),a=0;a<i.length;a++)if((n=this._input.match(this.rules[i[a]]))&&(!e||n[0].length>e[0].length)){if(e=n,r=a,this.options.backtrack_lexer){if(!1!==(t=this.test_match(n,i[a])))return t;if(this._backtrack){e=!1;continue}return!1}if(!this.options.flex)break}return e?!1!==(t=this.test_match(e,i[r]))&&t:""===this._input?this.EOF:this.parseError("Lexical error on line "+(this.yylineno+1)+". Unrecognized text.\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},lex:function(){var t=this.next();return t||this.lex()},begin:function(t){this.conditionStack.push(t)},popState:function(){return this.conditionStack.length-1>0?this.conditionStack.pop():this.conditionStack[0]},_currentRules:function(){return this.conditionStack.length&&this.conditionStack[this.conditionStack.length-1]?this.conditions[this.conditionStack[this.conditionStack.length-1]].rules:this.conditions.INITIAL.rules},topState:function(t){return(t=this.conditionStack.length-1-Math.abs(t||0))>=0?this.conditionStack[t]:"INITIAL"},pushState:function(t){this.begin(t)},stateStackSize:function(){return this.conditionStack.length},options:{"case-insensitive":!0},performAction:function(t,e,n,r){switch(n){case 0:return 12;case 1:case 2:case 3:break;case 4:return 4;case 5:return 15;case 6:return 17;case 7:return 20;case 8:return 21;case 9:return 19;case 10:case 11:return 8;case 12:return 5;case 13:return 26;case 14:this.begin("options");break;case 15:this.popState();break;case 16:return 11;case 17:this.begin("string");break;case 18:this.popState();break;case 19:return 23;case 20:return 18;case 21:return 7}},rules:[/^(?:(\r?\n)+)/i,/^(?:\s+)/i,/^(?:#[^\n]*)/i,/^(?:%[^\n]*)/i,/^(?:gitGraph\b)/i,/^(?:commit\b)/i,/^(?:branch\b)/i,/^(?:merge\b)/i,/^(?:reset\b)/i,/^(?:checkout\b)/i,/^(?:LR\b)/i,/^(?:BT\b)/i,/^(?::)/i,/^(?:\^)/i,/^(?:options\r?\n)/i,/^(?:end\r?\n)/i,/^(?:[^\n]+\r?\n)/i,/^(?:["])/i,/^(?:["])/i,/^(?:[^"]*)/i,/^(?:[a-zA-Z][-_\.a-zA-Z0-9]*[-_a-zA-Z0-9])/i,/^(?:$)/i],conditions:{options:{rules:[15,16],inclusive:!1},string:{rules:[18,19],inclusive:!1},INITIAL:{rules:[0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,17,20,21],inclusive:!0}}};function u(){this.yy={}}return s.lexer=c,u.prototype=s,s.Parser=u,new u}();e.parser=i,e.Parser=i.Parser,e.parse=function(){return i.parse.apply(i,arguments)},e.main=function(r){r[1]||(console.log("Usage: "+r[0]+" FILE"),t.exit(1));var i=n(17).readFileSync(n(18).normalize(r[1]),"utf8");return e.parser.parse(i)},n.c[n.s]===r&&e.main(t.argv.slice(1))}).call(this,n(12),n(7)(t))},function(t,e,n){(function(t,r){var i=function(){var t=function(t,e,n,r){for(n=n||{},r=t.length;r--;n[t[r]]=e);return n},e=[6,9,10],n={trace:function(){},yy:{},symbols_:{error:2,start:3,info:4,document:5,EOF:6,line:7,statement:8,NL:9,showInfo:10,$accept:0,$end:1},terminals_:{2:"error",4:"info",6:"EOF",9:"NL",10:"showInfo"},productions_:[0,[3,3],[5,0],[5,2],[7,1],[7,1],[8,1]],performAction:function(t,e,n,r,i,a,o){a.length;switch(i){case 1:return r;case 4:break;case 6:r.setInfo(!0)}},table:[{3:1,4:[1,2]},{1:[3]},t(e,[2,2],{5:3}),{6:[1,4],7:5,8:6,9:[1,7],10:[1,8]},{1:[2,1]},t(e,[2,3]),t(e,[2,4]),t(e,[2,5]),t(e,[2,6])],defaultActions:{4:[2,1]},parseError:function(t,e){if(!e.recoverable){var n=new Error(t);throw n.hash=e,n}this.trace(t)},parse:function(t){var e=this,n=[0],r=[],i=[null],a=[],o=this.table,s="",c=0,u=0,l=0,h=2,f=1,d=a.slice.call(arguments,1),p=Object.create(this.lexer),y={yy:{}};for(var g in this.yy)Object.prototype.hasOwnProperty.call(this.yy,g)&&(y.yy[g]=this.yy[g]);p.setInput(t,y.yy),y.yy.lexer=p,y.yy.parser=this,void 0===p.yylloc&&(p.yylloc={});var m=p.yylloc;a.push(m);var v=p.options&&p.options.ranges;function b(){var t;return"number"!=typeof(t=r.pop()||p.lex()||f)&&(t instanceof Array&&(t=(r=t).pop()),t=e.symbols_[t]||t),t}"function"==typeof y.yy.parseError?this.parseError=y.yy.parseError:this.parseError=Object.getPrototypeOf(this).parseError;for(var x,_,k,w,T,E,C,S,A,M={};;){if(k=n[n.length-1],this.defaultActions[k]?w=this.defaultActions[k]:(null==x&&(x=b()),w=o[k]&&o[k][x]),void 0===w||!w.length||!w[0]){var O="";for(E in A=[],o[k])this.terminals_[E]&&E>h&&A.push("'"+this.terminals_[E]+"'");O=p.showPosition?"Parse error on line "+(c+1)+":\n"+p.showPosition()+"\nExpecting "+A.join(", ")+", got '"+(this.terminals_[x]||x)+"'":"Parse error on line "+(c+1)+": Unexpected "+(x==f?"end of input":"'"+(this.terminals_[x]||x)+"'"),this.parseError(O,{text:p.match,token:this.terminals_[x]||x,line:p.yylineno,loc:m,expected:A})}if(w[0]instanceof Array&&w.length>1)throw new Error("Parse Error: multiple actions possible at state: "+k+", token: "+x);switch(w[0]){case 1:n.push(x),i.push(p.yytext),a.push(p.yylloc),n.push(w[1]),x=null,_?(x=_,_=null):(u=p.yyleng,s=p.yytext,c=p.yylineno,m=p.yylloc,l>0&&l--);break;case 2:if(C=this.productions_[w[1]][1],M.$=i[i.length-C],M._$={first_line:a[a.length-(C||1)].first_line,last_line:a[a.length-1].last_line,first_column:a[a.length-(C||1)].first_column,last_column:a[a.length-1].last_column},v&&(M._$.range=[a[a.length-(C||1)].range[0],a[a.length-1].range[1]]),void 0!==(T=this.performAction.apply(M,[s,u,c,y.yy,w[1],i,a].concat(d))))return T;C&&(n=n.slice(0,-1*C*2),i=i.slice(0,-1*C),a=a.slice(0,-1*C)),n.push(this.productions_[w[1]][0]),i.push(M.$),a.push(M._$),S=o[n[n.length-2]][n[n.length-1]],n.push(S);break;case 3:return!0}}return!0}},r={EOF:1,parseError:function(t,e){if(!this.yy.parser)throw new Error(t);this.yy.parser.parseError(t,e)},setInput:function(t,e){return this.yy=e||this.yy||{},this._input=t,this._more=this._backtrack=this.done=!1,this.yylineno=this.yyleng=0,this.yytext=this.matched=this.match="",this.conditionStack=["INITIAL"],this.yylloc={first_line:1,first_column:0,last_line:1,last_column:0},this.options.ranges&&(this.yylloc.range=[0,0]),this.offset=0,this},input:function(){var t=this._input[0];return this.yytext+=t,this.yyleng++,this.offset++,this.match+=t,this.matched+=t,t.match(/(?:\r\n?|\n).*/g)?(this.yylineno++,this.yylloc.last_line++):this.yylloc.last_column++,this.options.ranges&&this.yylloc.range[1]++,this._input=this._input.slice(1),t},unput:function(t){var e=t.length,n=t.split(/(?:\r\n?|\n)/g);this._input=t+this._input,this.yytext=this.yytext.substr(0,this.yytext.length-e),this.offset-=e;var r=this.match.split(/(?:\r\n?|\n)/g);this.match=this.match.substr(0,this.match.length-1),this.matched=this.matched.substr(0,this.matched.length-1),n.length-1&&(this.yylineno-=n.length-1);var i=this.yylloc.range;return this.yylloc={first_line:this.yylloc.first_line,last_line:this.yylineno+1,first_column:this.yylloc.first_column,last_column:n?(n.length===r.length?this.yylloc.first_column:0)+r[r.length-n.length].length-n[0].length:this.yylloc.first_column-e},this.options.ranges&&(this.yylloc.range=[i[0],i[0]+this.yyleng-e]),this.yyleng=this.yytext.length,this},more:function(){return this._more=!0,this},reject:function(){return this.options.backtrack_lexer?(this._backtrack=!0,this):this.parseError("Lexical error on line "+(this.yylineno+1)+". You can only invoke reject() in the lexer when the lexer is of the backtracking persuasion (options.backtrack_lexer = true).\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},less:function(t){this.unput(this.match.slice(t))},pastInput:function(){var t=this.matched.substr(0,this.matched.length-this.match.length);return(t.length>20?"...":"")+t.substr(-20).replace(/\n/g,"")},upcomingInput:function(){var t=this.match;return t.length<20&&(t+=this._input.substr(0,20-t.length)),(t.substr(0,20)+(t.length>20?"...":"")).replace(/\n/g,"")},showPosition:function(){var t=this.pastInput(),e=new Array(t.length+1).join("-");return t+this.upcomingInput()+"\n"+e+"^"},test_match:function(t,e){var n,r,i;if(this.options.backtrack_lexer&&(i={yylineno:this.yylineno,yylloc:{first_line:this.yylloc.first_line,last_line:this.last_line,first_column:this.yylloc.first_column,last_column:this.yylloc.last_column},yytext:this.yytext,match:this.match,matches:this.matches,matched:this.matched,yyleng:this.yyleng,offset:this.offset,_more:this._more,_input:this._input,yy:this.yy,conditionStack:this.conditionStack.slice(0),done:this.done},this.options.ranges&&(i.yylloc.range=this.yylloc.range.slice(0))),(r=t[0].match(/(?:\r\n?|\n).*/g))&&(this.yylineno+=r.length),this.yylloc={first_line:this.yylloc.last_line,last_line:this.yylineno+1,first_column:this.yylloc.last_column,last_column:r?r[r.length-1].length-r[r.length-1].match(/\r?\n?/)[0].length:this.yylloc.last_column+t[0].length},this.yytext+=t[0],this.match+=t[0],this.matches=t,this.yyleng=this.yytext.length,this.options.ranges&&(this.yylloc.range=[this.offset,this.offset+=this.yyleng]),this._more=!1,this._backtrack=!1,this._input=this._input.slice(t[0].length),this.matched+=t[0],n=this.performAction.call(this,this.yy,this,e,this.conditionStack[this.conditionStack.length-1]),this.done&&this._input&&(this.done=!1),n)return n;if(this._backtrack){for(var a in i)this[a]=i[a];return!1}return!1},next:function(){if(this.done)return this.EOF;var t,e,n,r;this._input||(this.done=!0),this._more||(this.yytext="",this.match="");for(var i=this._currentRules(),a=0;a<i.length;a++)if((n=this._input.match(this.rules[i[a]]))&&(!e||n[0].length>e[0].length)){if(e=n,r=a,this.options.backtrack_lexer){if(!1!==(t=this.test_match(n,i[a])))return t;if(this._backtrack){e=!1;continue}return!1}if(!this.options.flex)break}return e?!1!==(t=this.test_match(e,i[r]))&&t:""===this._input?this.EOF:this.parseError("Lexical error on line "+(this.yylineno+1)+". Unrecognized text.\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},lex:function(){var t=this.next();return t||this.lex()},begin:function(t){this.conditionStack.push(t)},popState:function(){return this.conditionStack.length-1>0?this.conditionStack.pop():this.conditionStack[0]},_currentRules:function(){return this.conditionStack.length&&this.conditionStack[this.conditionStack.length-1]?this.conditions[this.conditionStack[this.conditionStack.length-1]].rules:this.conditions.INITIAL.rules},topState:function(t){return(t=this.conditionStack.length-1-Math.abs(t||0))>=0?this.conditionStack[t]:"INITIAL"},pushState:function(t){this.begin(t)},stateStackSize:function(){return this.conditionStack.length},options:{"case-insensitive":!0},performAction:function(t,e,n,r){switch(n){case 0:return 4;case 1:return 9;case 2:return"space";case 3:return 10;case 4:return 6;case 5:return"TXT"}},rules:[/^(?:info\b)/i,/^(?:[\s\n\r]+)/i,/^(?:[\s]+)/i,/^(?:showInfo\b)/i,/^(?:$)/i,/^(?:.)/i],conditions:{INITIAL:{rules:[0,1,2,3,4,5],inclusive:!0}}};function i(){this.yy={}}return n.lexer=r,i.prototype=n,n.Parser=i,new i}();e.parser=i,e.Parser=i.Parser,e.parse=function(){return i.parse.apply(i,arguments)},e.main=function(r){r[1]||(console.log("Usage: "+r[0]+" FILE"),t.exit(1));var i=n(17).readFileSync(n(18).normalize(r[1]),"utf8");return e.parser.parse(i)},n.c[n.s]===r&&e.main(t.argv.slice(1))}).call(this,n(12),n(7)(t))},function(t,e,n){(function(t,r){var i=function(){var t=function(t,e,n,r){for(n=n||{},r=t.length;r--;n[t[r]]=e);return n},e=[1,4],n=[1,5],r=[1,6],i=[1,7],a=[1,9],o=[1,11,13,20,21,22,23],s=[2,5],c=[1,6,11,13,20,21,22,23],u=[20,21,22],l=[2,8],h=[1,18],f=[1,19],d=[1,24],p=[6,20,21,22,23],y={trace:function(){},yy:{},symbols_:{error:2,start:3,eol:4,directive:5,PIE:6,document:7,showData:8,line:9,statement:10,txt:11,value:12,title:13,title_value:14,openDirective:15,typeDirective:16,closeDirective:17,":":18,argDirective:19,NEWLINE:20,";":21,EOF:22,open_directive:23,type_directive:24,arg_directive:25,close_directive:26,$accept:0,$end:1},terminals_:{2:"error",6:"PIE",8:"showData",11:"txt",12:"value",13:"title",14:"title_value",18:":",20:"NEWLINE",21:";",22:"EOF",23:"open_directive",24:"type_directive",25:"arg_directive",26:"close_directive"},productions_:[0,[3,2],[3,2],[3,2],[3,3],[7,0],[7,2],[9,2],[10,0],[10,2],[10,2],[10,1],[5,3],[5,5],[4,1],[4,1],[4,1],[15,1],[16,1],[19,1],[17,1]],performAction:function(t,e,n,r,i,a,o){var s=a.length-1;switch(i){case 4:r.setShowData(!0);break;case 7:this.$=a[s-1];break;case 9:r.addSection(a[s-1],r.cleanupValue(a[s]));break;case 10:this.$=a[s].trim(),r.setTitle(this.$);break;case 17:r.parseDirective("%%{","open_directive");break;case 18:r.parseDirective(a[s],"type_directive");break;case 19:a[s]=a[s].trim().replace(/'/g,'"'),r.parseDirective(a[s],"arg_directive");break;case 20:r.parseDirective("}%%","close_directive","pie")}},table:[{3:1,4:2,5:3,6:e,15:8,20:n,21:r,22:i,23:a},{1:[3]},{3:10,4:2,5:3,6:e,15:8,20:n,21:r,22:i,23:a},{3:11,4:2,5:3,6:e,15:8,20:n,21:r,22:i,23:a},t(o,s,{7:12,8:[1,13]}),t(c,[2,14]),t(c,[2,15]),t(c,[2,16]),{16:14,24:[1,15]},{24:[2,17]},{1:[2,1]},{1:[2,2]},t(u,l,{15:8,9:16,10:17,5:20,1:[2,3],11:h,13:f,23:a}),t(o,s,{7:21}),{17:22,18:[1,23],26:d},t([18,26],[2,18]),t(o,[2,6]),{4:25,20:n,21:r,22:i},{12:[1,26]},{14:[1,27]},t(u,[2,11]),t(u,l,{15:8,9:16,10:17,5:20,1:[2,4],11:h,13:f,23:a}),t(p,[2,12]),{19:28,25:[1,29]},t(p,[2,20]),t(o,[2,7]),t(u,[2,9]),t(u,[2,10]),{17:30,26:d},{26:[2,19]},t(p,[2,13])],defaultActions:{9:[2,17],10:[2,1],11:[2,2],29:[2,19]},parseError:function(t,e){if(!e.recoverable){var n=new Error(t);throw n.hash=e,n}this.trace(t)},parse:function(t){var e=this,n=[0],r=[],i=[null],a=[],o=this.table,s="",c=0,u=0,l=0,h=2,f=1,d=a.slice.call(arguments,1),p=Object.create(this.lexer),y={yy:{}};for(var g in this.yy)Object.prototype.hasOwnProperty.call(this.yy,g)&&(y.yy[g]=this.yy[g]);p.setInput(t,y.yy),y.yy.lexer=p,y.yy.parser=this,void 0===p.yylloc&&(p.yylloc={});var m=p.yylloc;a.push(m);var v=p.options&&p.options.ranges;function b(){var t;return"number"!=typeof(t=r.pop()||p.lex()||f)&&(t instanceof Array&&(t=(r=t).pop()),t=e.symbols_[t]||t),t}"function"==typeof y.yy.parseError?this.parseError=y.yy.parseError:this.parseError=Object.getPrototypeOf(this).parseError;for(var x,_,k,w,T,E,C,S,A,M={};;){if(k=n[n.length-1],this.defaultActions[k]?w=this.defaultActions[k]:(null==x&&(x=b()),w=o[k]&&o[k][x]),void 0===w||!w.length||!w[0]){var O="";for(E in A=[],o[k])this.terminals_[E]&&E>h&&A.push("'"+this.terminals_[E]+"'");O=p.showPosition?"Parse error on line "+(c+1)+":\n"+p.showPosition()+"\nExpecting "+A.join(", ")+", got '"+(this.terminals_[x]||x)+"'":"Parse error on line "+(c+1)+": Unexpected "+(x==f?"end of input":"'"+(this.terminals_[x]||x)+"'"),this.parseError(O,{text:p.match,token:this.terminals_[x]||x,line:p.yylineno,loc:m,expected:A})}if(w[0]instanceof Array&&w.length>1)throw new Error("Parse Error: multiple actions possible at state: "+k+", token: "+x);switch(w[0]){case 1:n.push(x),i.push(p.yytext),a.push(p.yylloc),n.push(w[1]),x=null,_?(x=_,_=null):(u=p.yyleng,s=p.yytext,c=p.yylineno,m=p.yylloc,l>0&&l--);break;case 2:if(C=this.productions_[w[1]][1],M.$=i[i.length-C],M._$={first_line:a[a.length-(C||1)].first_line,last_line:a[a.length-1].last_line,first_column:a[a.length-(C||1)].first_column,last_column:a[a.length-1].last_column},v&&(M._$.range=[a[a.length-(C||1)].range[0],a[a.length-1].range[1]]),void 0!==(T=this.performAction.apply(M,[s,u,c,y.yy,w[1],i,a].concat(d))))return T;C&&(n=n.slice(0,-1*C*2),i=i.slice(0,-1*C),a=a.slice(0,-1*C)),n.push(this.productions_[w[1]][0]),i.push(M.$),a.push(M._$),S=o[n[n.length-2]][n[n.length-1]],n.push(S);break;case 3:return!0}}return!0}},g={EOF:1,parseError:function(t,e){if(!this.yy.parser)throw new Error(t);this.yy.parser.parseError(t,e)},setInput:function(t,e){return this.yy=e||this.yy||{},this._input=t,this._more=this._backtrack=this.done=!1,this.yylineno=this.yyleng=0,this.yytext=this.matched=this.match="",this.conditionStack=["INITIAL"],this.yylloc={first_line:1,first_column:0,last_line:1,last_column:0},this.options.ranges&&(this.yylloc.range=[0,0]),this.offset=0,this},input:function(){var t=this._input[0];return this.yytext+=t,this.yyleng++,this.offset++,this.match+=t,this.matched+=t,t.match(/(?:\r\n?|\n).*/g)?(this.yylineno++,this.yylloc.last_line++):this.yylloc.last_column++,this.options.ranges&&this.yylloc.range[1]++,this._input=this._input.slice(1),t},unput:function(t){var e=t.length,n=t.split(/(?:\r\n?|\n)/g);this._input=t+this._input,this.yytext=this.yytext.substr(0,this.yytext.length-e),this.offset-=e;var r=this.match.split(/(?:\r\n?|\n)/g);this.match=this.match.substr(0,this.match.length-1),this.matched=this.matched.substr(0,this.matched.length-1),n.length-1&&(this.yylineno-=n.length-1);var i=this.yylloc.range;return this.yylloc={first_line:this.yylloc.first_line,last_line:this.yylineno+1,first_column:this.yylloc.first_column,last_column:n?(n.length===r.length?this.yylloc.first_column:0)+r[r.length-n.length].length-n[0].length:this.yylloc.first_column-e},this.options.ranges&&(this.yylloc.range=[i[0],i[0]+this.yyleng-e]),this.yyleng=this.yytext.length,this},more:function(){return this._more=!0,this},reject:function(){return this.options.backtrack_lexer?(this._backtrack=!0,this):this.parseError("Lexical error on line "+(this.yylineno+1)+". You can only invoke reject() in the lexer when the lexer is of the backtracking persuasion (options.backtrack_lexer = true).\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},less:function(t){this.unput(this.match.slice(t))},pastInput:function(){var t=this.matched.substr(0,this.matched.length-this.match.length);return(t.length>20?"...":"")+t.substr(-20).replace(/\n/g,"")},upcomingInput:function(){var t=this.match;return t.length<20&&(t+=this._input.substr(0,20-t.length)),(t.substr(0,20)+(t.length>20?"...":"")).replace(/\n/g,"")},showPosition:function(){var t=this.pastInput(),e=new Array(t.length+1).join("-");return t+this.upcomingInput()+"\n"+e+"^"},test_match:function(t,e){var n,r,i;if(this.options.backtrack_lexer&&(i={yylineno:this.yylineno,yylloc:{first_line:this.yylloc.first_line,last_line:this.last_line,first_column:this.yylloc.first_column,last_column:this.yylloc.last_column},yytext:this.yytext,match:this.match,matches:this.matches,matched:this.matched,yyleng:this.yyleng,offset:this.offset,_more:this._more,_input:this._input,yy:this.yy,conditionStack:this.conditionStack.slice(0),done:this.done},this.options.ranges&&(i.yylloc.range=this.yylloc.range.slice(0))),(r=t[0].match(/(?:\r\n?|\n).*/g))&&(this.yylineno+=r.length),this.yylloc={first_line:this.yylloc.last_line,last_line:this.yylineno+1,first_column:this.yylloc.last_column,last_column:r?r[r.length-1].length-r[r.length-1].match(/\r?\n?/)[0].length:this.yylloc.last_column+t[0].length},this.yytext+=t[0],this.match+=t[0],this.matches=t,this.yyleng=this.yytext.length,this.options.ranges&&(this.yylloc.range=[this.offset,this.offset+=this.yyleng]),this._more=!1,this._backtrack=!1,this._input=this._input.slice(t[0].length),this.matched+=t[0],n=this.performAction.call(this,this.yy,this,e,this.conditionStack[this.conditionStack.length-1]),this.done&&this._input&&(this.done=!1),n)return n;if(this._backtrack){for(var a in i)this[a]=i[a];return!1}return!1},next:function(){if(this.done)return this.EOF;var t,e,n,r;this._input||(this.done=!0),this._more||(this.yytext="",this.match="");for(var i=this._currentRules(),a=0;a<i.length;a++)if((n=this._input.match(this.rules[i[a]]))&&(!e||n[0].length>e[0].length)){if(e=n,r=a,this.options.backtrack_lexer){if(!1!==(t=this.test_match(n,i[a])))return t;if(this._backtrack){e=!1;continue}return!1}if(!this.options.flex)break}return e?!1!==(t=this.test_match(e,i[r]))&&t:""===this._input?this.EOF:this.parseError("Lexical error on line "+(this.yylineno+1)+". Unrecognized text.\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},lex:function(){var t=this.next();return t||this.lex()},begin:function(t){this.conditionStack.push(t)},popState:function(){return this.conditionStack.length-1>0?this.conditionStack.pop():this.conditionStack[0]},_currentRules:function(){return this.conditionStack.length&&this.conditionStack[this.conditionStack.length-1]?this.conditions[this.conditionStack[this.conditionStack.length-1]].rules:this.conditions.INITIAL.rules},topState:function(t){return(t=this.conditionStack.length-1-Math.abs(t||0))>=0?this.conditionStack[t]:"INITIAL"},pushState:function(t){this.begin(t)},stateStackSize:function(){return this.conditionStack.length},options:{"case-insensitive":!0},performAction:function(t,e,n,r){switch(n){case 0:return this.begin("open_directive"),23;case 1:return this.begin("type_directive"),24;case 2:return this.popState(),this.begin("arg_directive"),18;case 3:return this.popState(),this.popState(),26;case 4:return 25;case 5:case 6:break;case 7:return 20;case 8:case 9:break;case 10:return this.begin("title"),13;case 11:return this.popState(),"title_value";case 12:this.begin("string");break;case 13:this.popState();break;case 14:return"txt";case 15:return 6;case 16:return 8;case 17:return"value";case 18:return 22}},rules:[/^(?:%%\{)/i,/^(?:((?:(?!\}%%)[^:.])*))/i,/^(?::)/i,/^(?:\}%%)/i,/^(?:((?:(?!\}%%).|\n)*))/i,/^(?:%%(?!\{)[^\n]*)/i,/^(?:[^\}]%%[^\n]*)/i,/^(?:[\n\r]+)/i,/^(?:%%[^\n]*)/i,/^(?:[\s]+)/i,/^(?:title\b)/i,/^(?:(?!\n||)*[^\n]*)/i,/^(?:["])/i,/^(?:["])/i,/^(?:[^"]*)/i,/^(?:pie\b)/i,/^(?:showData\b)/i,/^(?::[\s]*[\d]+(?:\.[\d]+)?)/i,/^(?:$)/i],conditions:{close_directive:{rules:[],inclusive:!1},arg_directive:{rules:[3,4],inclusive:!1},type_directive:{rules:[2,3],inclusive:!1},open_directive:{rules:[1],inclusive:!1},title:{rules:[11],inclusive:!1},string:{rules:[13,14],inclusive:!1},INITIAL:{rules:[0,5,6,7,8,9,10,12,15,16,17,18],inclusive:!0}}};function m(){this.yy={}}return y.lexer=g,m.prototype=y,y.Parser=m,new m}();e.parser=i,e.Parser=i.Parser,e.parse=function(){return i.parse.apply(i,arguments)},e.main=function(r){r[1]||(console.log("Usage: "+r[0]+" FILE"),t.exit(1));var i=n(17).readFileSync(n(18).normalize(r[1]),"utf8");return e.parser.parse(i)},n.c[n.s]===r&&e.main(t.argv.slice(1))}).call(this,n(12),n(7)(t))},function(t,e,n){(function(t,r){var i=function(){var t=function(t,e,n,r){for(n=n||{},r=t.length;r--;n[t[r]]=e);return n},e=[1,2],n=[1,5],r=[6,9,11,23,40],i=[1,17],a=[1,20],o=[1,25],s=[1,26],c=[1,27],u=[1,28],l=[1,37],h=[23,37,38],f=[4,6,9,11,23,40],d=[33,34,35,36],p=[22,29],y={trace:function(){},yy:{},symbols_:{error:2,start:3,ER_DIAGRAM:4,document:5,EOF:6,directive:7,line:8,SPACE:9,statement:10,NEWLINE:11,openDirective:12,typeDirective:13,closeDirective:14,":":15,argDirective:16,entityName:17,relSpec:18,role:19,BLOCK_START:20,attributes:21,BLOCK_STOP:22,ALPHANUM:23,attribute:24,attributeType:25,attributeName:26,attributeKeyType:27,COMMENT:28,ATTRIBUTE_WORD:29,ATTRIBUTE_KEY:30,cardinality:31,relType:32,ZERO_OR_ONE:33,ZERO_OR_MORE:34,ONE_OR_MORE:35,ONLY_ONE:36,NON_IDENTIFYING:37,IDENTIFYING:38,WORD:39,open_directive:40,type_directive:41,arg_directive:42,close_directive:43,$accept:0,$end:1},terminals_:{2:"error",4:"ER_DIAGRAM",6:"EOF",9:"SPACE",11:"NEWLINE",15:":",20:"BLOCK_START",22:"BLOCK_STOP",23:"ALPHANUM",28:"COMMENT",29:"ATTRIBUTE_WORD",30:"ATTRIBUTE_KEY",33:"ZERO_OR_ONE",34:"ZERO_OR_MORE",35:"ONE_OR_MORE",36:"ONLY_ONE",37:"NON_IDENTIFYING",38:"IDENTIFYING",39:"WORD",40:"open_directive",41:"type_directive",42:"arg_directive",43:"close_directive"},productions_:[0,[3,3],[3,2],[5,0],[5,2],[8,2],[8,1],[8,1],[8,1],[7,4],[7,6],[10,1],[10,5],[10,4],[10,3],[10,1],[17,1],[21,1],[21,2],[24,2],[24,3],[24,3],[24,4],[25,1],[26,1],[27,1],[18,3],[31,1],[31,1],[31,1],[31,1],[32,1],[32,1],[19,1],[19,1],[12,1],[13,1],[16,1],[14,1]],performAction:function(t,e,n,r,i,a,o){var s=a.length-1;switch(i){case 1:break;case 3:this.$=[];break;case 4:a[s-1].push(a[s]),this.$=a[s-1];break;case 5:case 6:this.$=a[s];break;case 7:case 8:this.$=[];break;case 12:r.addEntity(a[s-4]),r.addEntity(a[s-2]),r.addRelationship(a[s-4],a[s],a[s-2],a[s-3]);break;case 13:r.addEntity(a[s-3]),r.addAttributes(a[s-3],a[s-1]);break;case 14:r.addEntity(a[s-2]);break;case 15:r.addEntity(a[s]);break;case 16:this.$=a[s];break;case 17:this.$=[a[s]];break;case 18:a[s].push(a[s-1]),this.$=a[s];break;case 19:this.$={attributeType:a[s-1],attributeName:a[s]};break;case 20:this.$={attributeType:a[s-2],attributeName:a[s-1],attributeKeyType:a[s]};break;case 21:this.$={attributeType:a[s-2],attributeName:a[s-1],attributeComment:a[s]};break;case 22:this.$={attributeType:a[s-3],attributeName:a[s-2],attributeKeyType:a[s-1],attributeComment:a[s]};break;case 23:case 24:case 25:this.$=a[s];break;case 26:this.$={cardA:a[s],relType:a[s-1],cardB:a[s-2]};break;case 27:this.$=r.Cardinality.ZERO_OR_ONE;break;case 28:this.$=r.Cardinality.ZERO_OR_MORE;break;case 29:this.$=r.Cardinality.ONE_OR_MORE;break;case 30:this.$=r.Cardinality.ONLY_ONE;break;case 31:this.$=r.Identification.NON_IDENTIFYING;break;case 32:this.$=r.Identification.IDENTIFYING;break;case 33:this.$=a[s].replace(/"/g,"");break;case 34:this.$=a[s];break;case 35:r.parseDirective("%%{","open_directive");break;case 36:r.parseDirective(a[s],"type_directive");break;case 37:a[s]=a[s].trim().replace(/'/g,'"'),r.parseDirective(a[s],"arg_directive");break;case 38:r.parseDirective("}%%","close_directive","er")}},table:[{3:1,4:e,7:3,12:4,40:n},{1:[3]},t(r,[2,3],{5:6}),{3:7,4:e,7:3,12:4,40:n},{13:8,41:[1,9]},{41:[2,35]},{6:[1,10],7:15,8:11,9:[1,12],10:13,11:[1,14],12:4,17:16,23:i,40:n},{1:[2,2]},{14:18,15:[1,19],43:a},t([15,43],[2,36]),t(r,[2,8],{1:[2,1]}),t(r,[2,4]),{7:15,10:21,12:4,17:16,23:i,40:n},t(r,[2,6]),t(r,[2,7]),t(r,[2,11]),t(r,[2,15],{18:22,31:24,20:[1,23],33:o,34:s,35:c,36:u}),t([6,9,11,15,20,23,33,34,35,36,40],[2,16]),{11:[1,29]},{16:30,42:[1,31]},{11:[2,38]},t(r,[2,5]),{17:32,23:i},{21:33,22:[1,34],24:35,25:36,29:l},{32:38,37:[1,39],38:[1,40]},t(h,[2,27]),t(h,[2,28]),t(h,[2,29]),t(h,[2,30]),t(f,[2,9]),{14:41,43:a},{43:[2,37]},{15:[1,42]},{22:[1,43]},t(r,[2,14]),{21:44,22:[2,17],24:35,25:36,29:l},{26:45,29:[1,46]},{29:[2,23]},{31:47,33:o,34:s,35:c,36:u},t(d,[2,31]),t(d,[2,32]),{11:[1,48]},{19:49,23:[1,51],39:[1,50]},t(r,[2,13]),{22:[2,18]},t(p,[2,19],{27:52,28:[1,53],30:[1,54]}),t([22,28,29,30],[2,24]),{23:[2,26]},t(f,[2,10]),t(r,[2,12]),t(r,[2,33]),t(r,[2,34]),t(p,[2,20],{28:[1,55]}),t(p,[2,21]),t([22,28,29],[2,25]),t(p,[2,22])],defaultActions:{5:[2,35],7:[2,2],20:[2,38],31:[2,37],37:[2,23],44:[2,18],47:[2,26]},parseError:function(t,e){if(!e.recoverable){var n=new Error(t);throw n.hash=e,n}this.trace(t)},parse:function(t){var e=this,n=[0],r=[],i=[null],a=[],o=this.table,s="",c=0,u=0,l=0,h=2,f=1,d=a.slice.call(arguments,1),p=Object.create(this.lexer),y={yy:{}};for(var g in this.yy)Object.prototype.hasOwnProperty.call(this.yy,g)&&(y.yy[g]=this.yy[g]);p.setInput(t,y.yy),y.yy.lexer=p,y.yy.parser=this,void 0===p.yylloc&&(p.yylloc={});var m=p.yylloc;a.push(m);var v=p.options&&p.options.ranges;function b(){var t;return"number"!=typeof(t=r.pop()||p.lex()||f)&&(t instanceof Array&&(t=(r=t).pop()),t=e.symbols_[t]||t),t}"function"==typeof y.yy.parseError?this.parseError=y.yy.parseError:this.parseError=Object.getPrototypeOf(this).parseError;for(var x,_,k,w,T,E,C,S,A,M={};;){if(k=n[n.length-1],this.defaultActions[k]?w=this.defaultActions[k]:(null==x&&(x=b()),w=o[k]&&o[k][x]),void 0===w||!w.length||!w[0]){var O="";for(E in A=[],o[k])this.terminals_[E]&&E>h&&A.push("'"+this.terminals_[E]+"'");O=p.showPosition?"Parse error on line "+(c+1)+":\n"+p.showPosition()+"\nExpecting "+A.join(", ")+", got '"+(this.terminals_[x]||x)+"'":"Parse error on line "+(c+1)+": Unexpected "+(x==f?"end of input":"'"+(this.terminals_[x]||x)+"'"),this.parseError(O,{text:p.match,token:this.terminals_[x]||x,line:p.yylineno,loc:m,expected:A})}if(w[0]instanceof Array&&w.length>1)throw new Error("Parse Error: multiple actions possible at state: "+k+", token: "+x);switch(w[0]){case 1:n.push(x),i.push(p.yytext),a.push(p.yylloc),n.push(w[1]),x=null,_?(x=_,_=null):(u=p.yyleng,s=p.yytext,c=p.yylineno,m=p.yylloc,l>0&&l--);break;case 2:if(C=this.productions_[w[1]][1],M.$=i[i.length-C],M._$={first_line:a[a.length-(C||1)].first_line,last_line:a[a.length-1].last_line,first_column:a[a.length-(C||1)].first_column,last_column:a[a.length-1].last_column},v&&(M._$.range=[a[a.length-(C||1)].range[0],a[a.length-1].range[1]]),void 0!==(T=this.performAction.apply(M,[s,u,c,y.yy,w[1],i,a].concat(d))))return T;C&&(n=n.slice(0,-1*C*2),i=i.slice(0,-1*C),a=a.slice(0,-1*C)),n.push(this.productions_[w[1]][0]),i.push(M.$),a.push(M._$),S=o[n[n.length-2]][n[n.length-1]],n.push(S);break;case 3:return!0}}return!0}},g={EOF:1,parseError:function(t,e){if(!this.yy.parser)throw new Error(t);this.yy.parser.parseError(t,e)},setInput:function(t,e){return this.yy=e||this.yy||{},this._input=t,this._more=this._backtrack=this.done=!1,this.yylineno=this.yyleng=0,this.yytext=this.matched=this.match="",this.conditionStack=["INITIAL"],this.yylloc={first_line:1,first_column:0,last_line:1,last_column:0},this.options.ranges&&(this.yylloc.range=[0,0]),this.offset=0,this},input:function(){var t=this._input[0];return this.yytext+=t,this.yyleng++,this.offset++,this.match+=t,this.matched+=t,t.match(/(?:\r\n?|\n).*/g)?(this.yylineno++,this.yylloc.last_line++):this.yylloc.last_column++,this.options.ranges&&this.yylloc.range[1]++,this._input=this._input.slice(1),t},unput:function(t){var e=t.length,n=t.split(/(?:\r\n?|\n)/g);this._input=t+this._input,this.yytext=this.yytext.substr(0,this.yytext.length-e),this.offset-=e;var r=this.match.split(/(?:\r\n?|\n)/g);this.match=this.match.substr(0,this.match.length-1),this.matched=this.matched.substr(0,this.matched.length-1),n.length-1&&(this.yylineno-=n.length-1);var i=this.yylloc.range;return this.yylloc={first_line:this.yylloc.first_line,last_line:this.yylineno+1,first_column:this.yylloc.first_column,last_column:n?(n.length===r.length?this.yylloc.first_column:0)+r[r.length-n.length].length-n[0].length:this.yylloc.first_column-e},this.options.ranges&&(this.yylloc.range=[i[0],i[0]+this.yyleng-e]),this.yyleng=this.yytext.length,this},more:function(){return this._more=!0,this},reject:function(){return this.options.backtrack_lexer?(this._backtrack=!0,this):this.parseError("Lexical error on line "+(this.yylineno+1)+". You can only invoke reject() in the lexer when the lexer is of the backtracking persuasion (options.backtrack_lexer = true).\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},less:function(t){this.unput(this.match.slice(t))},pastInput:function(){var t=this.matched.substr(0,this.matched.length-this.match.length);return(t.length>20?"...":"")+t.substr(-20).replace(/\n/g,"")},upcomingInput:function(){var t=this.match;return t.length<20&&(t+=this._input.substr(0,20-t.length)),(t.substr(0,20)+(t.length>20?"...":"")).replace(/\n/g,"")},showPosition:function(){var t=this.pastInput(),e=new Array(t.length+1).join("-");return t+this.upcomingInput()+"\n"+e+"^"},test_match:function(t,e){var n,r,i;if(this.options.backtrack_lexer&&(i={yylineno:this.yylineno,yylloc:{first_line:this.yylloc.first_line,last_line:this.last_line,first_column:this.yylloc.first_column,last_column:this.yylloc.last_column},yytext:this.yytext,match:this.match,matches:this.matches,matched:this.matched,yyleng:this.yyleng,offset:this.offset,_more:this._more,_input:this._input,yy:this.yy,conditionStack:this.conditionStack.slice(0),done:this.done},this.options.ranges&&(i.yylloc.range=this.yylloc.range.slice(0))),(r=t[0].match(/(?:\r\n?|\n).*/g))&&(this.yylineno+=r.length),this.yylloc={first_line:this.yylloc.last_line,last_line:this.yylineno+1,first_column:this.yylloc.last_column,last_column:r?r[r.length-1].length-r[r.length-1].match(/\r?\n?/)[0].length:this.yylloc.last_column+t[0].length},this.yytext+=t[0],this.match+=t[0],this.matches=t,this.yyleng=this.yytext.length,this.options.ranges&&(this.yylloc.range=[this.offset,this.offset+=this.yyleng]),this._more=!1,this._backtrack=!1,this._input=this._input.slice(t[0].length),this.matched+=t[0],n=this.performAction.call(this,this.yy,this,e,this.conditionStack[this.conditionStack.length-1]),this.done&&this._input&&(this.done=!1),n)return n;if(this._backtrack){for(var a in i)this[a]=i[a];return!1}return!1},next:function(){if(this.done)return this.EOF;var t,e,n,r;this._input||(this.done=!0),this._more||(this.yytext="",this.match="");for(var i=this._currentRules(),a=0;a<i.length;a++)if((n=this._input.match(this.rules[i[a]]))&&(!e||n[0].length>e[0].length)){if(e=n,r=a,this.options.backtrack_lexer){if(!1!==(t=this.test_match(n,i[a])))return t;if(this._backtrack){e=!1;continue}return!1}if(!this.options.flex)break}return e?!1!==(t=this.test_match(e,i[r]))&&t:""===this._input?this.EOF:this.parseError("Lexical error on line "+(this.yylineno+1)+". Unrecognized text.\n"+this.showPosition(),{text:"",token:null,line:this.yylineno})},lex:function(){var t=this.next();return t||this.lex()},begin:function(t){this.conditionStack.push(t)},popState:function(){return this.conditionStack.length-1>0?this.conditionStack.pop():this.conditionStack[0]},_currentRules:function(){return this.conditionStack.length&&this.conditionStack[this.conditionStack.length-1]?this.conditions[this.conditionStack[this.conditionStack.length-1]].rules:this.conditions.INITIAL.rules},topState:function(t){return(t=this.conditionStack.length-1-Math.abs(t||0))>=0?this.conditionStack[t]:"INITIAL"},pushState:function(t){this.begin(t)},stateStackSize:function(){return this.conditionStack.length},options:{"case-insensitive":!0},performAction:function(t,e,n,r){switch(n){case 0:return this.begin("open_directive"),40;case 1:return this.begin("type_directive"),41;case 2:return this.popState(),this.begin("arg_directive"),15;case 3:return this.popState(),this.popState(),43;case 4:return 42;case 5:case 6:break;case 7:return 11;case 8:break;case 9:return 9;case 10:return 39;case 11:return 4;case 12:return this.begin("block"),20;case 13:break;case 14:return 30;case 15:return 29;case 16:return 28;case 17:break;case 18:return this.popState(),22;case 19:return e.yytext[0];case 20:return 33;case 21:return 34;case 22:return 35;case 23:return 36;case 24:return 33;case 25:return 34;case 26:return 35;case 27:return 37;case 28:return 38;case 29:case 30:return 37;case 31:return 23;case 32:return e.yytext[0];case 33:return 6}},rules:[/^(?:%%\{)/i,/^(?:((?:(?!\}%%)[^:.])*))/i,/^(?::)/i,/^(?:\}%%)/i,/^(?:((?:(?!\}%%).|\n)*))/i,/^(?:%(?!\{)[^\n]*)/i,/^(?:[^\}]%%[^\n]*)/i,/^(?:[\n]+)/i,/^(?:\s+)/i,/^(?:[\s]+)/i,/^(?:"[^"]*")/i,/^(?:erDiagram\b)/i,/^(?:\{)/i,/^(?:\s+)/i,/^(?:(?:PK)|(?:FK))/i,/^(?:[A-Za-z][A-Za-z0-9\-_]*)/i,/^(?:"[^"]*")/i,/^(?:[\n]+)/i,/^(?:\})/i,/^(?:.)/i,/^(?:\|o\b)/i,/^(?:\}o\b)/i,/^(?:\}\|)/i,/^(?:\|\|)/i,/^(?:o\|)/i,/^(?:o\{)/i,/^(?:\|\{)/i,/^(?:\.\.)/i,/^(?:--)/i,/^(?:\.-)/i,/^(?:-\.)/i,/^(?:[A-Za-z][A-Za-z0-9\-_]*)/i,/^(?:.)/i,/^(?:$)/i],conditions:{open_directive:{rules:[1],inclusive:!1},type_directive:{rules:[2,3],inclusive:!1},arg_directive:{rules:[3,4],inclusive:!1},block:{rules:[13,14,15,16,17,18,19],inclusive:!1},INITIAL:{rules:[0,5,6,7,8,9,10,11,12,20,21,22,23,24,25,26,27,28,29,30,31,32,33],inclusive:!0}}};function m(){this.yy={}}return y.lexer=g,m.prototype=y,y.Parser=m,new m}();e.parser=i,e.Parser=i.Parser,e.parse=function(){return i.parse.apply(i,arguments)},e.main=function(r){r[1]||(console.log("Usage: "+r[0]+" FILE"),t.exit(1));var i=n(17).readFileSync(n(18).normalize(r[1]),"utf8");return e.parser.parse(i)},n.c[n.s]===r&&e.main(t.argv.slice(1))}).call(this,n(12),n(7)(t))},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i=n(6);e.default=function(t){var e=i.default.parse(t),n=e.r,a=e.g,o=e.b,s=.2126*r.default.channel.toLinear(n)+.7152*r.default.channel.toLinear(a)+.0722*r.default.channel.toLinear(o);return r.default.lang.round(s)}},function(t,e,n){"use strict";var r=n(13);t.exports=i;function i(t){this._isDirected=!r.has(t,"directed")||t.directed,this._isMultigraph=!!r.has(t,"multigraph")&&t.multigraph,this._isCompound=!!r.has(t,"compound")&&t.compound,this._label=void 0,this._defaultNodeLabelFn=r.constant(void 0),this._defaultEdgeLabelFn=r.constant(void 0),this._nodes={},this._isCompound&&(this._parent={},this._children={},this._children["\0"]={}),this._in={},this._preds={},this._out={},this._sucs={},this._edgeObjs={},this._edgeLabels={}}function a(t,e){t[e]?t[e]++:t[e]=1}function o(t,e){--t[e]||delete t[e]}function s(t,e,n,i){var a=""+e,o=""+n;if(!t&&a>o){var s=a;a=o,o=s}return a+"
"+o+"
"+(r.isUndefined(i)?"\0":i)}function c(t,e,n,r){var i=""+e,a=""+n;if(!t&&i>a){var o=i;i=a,a=o}var s={v:i,w:a};return r&&(s.name=r),s}function u(t,e){return s(t,e.v,e.w,e.name)}i.prototype._nodeCount=0,i.prototype._edgeCount=0,i.prototype.isDirected=function(){return this._isDirected},i.prototype.isMultigraph=function(){return this._isMultigraph},i.prototype.isCompound=function(){return this._isCompound},i.prototype.setGraph=function(t){return this._label=t,this},i.prototype.graph=function(){return this._label},i.prototype.setDefaultNodeLabel=function(t){return r.isFunction(t)||(t=r.constant(t)),this._defaultNodeLabelFn=t,this},i.prototype.nodeCount=function(){return this._nodeCount},i.prototype.nodes=function(){return r.keys(this._nodes)},i.prototype.sources=function(){var t=this;return r.filter(this.nodes(),(function(e){return r.isEmpty(t._in[e])}))},i.prototype.sinks=function(){var t=this;return r.filter(this.nodes(),(function(e){return r.isEmpty(t._out[e])}))},i.prototype.setNodes=function(t,e){var n=arguments,i=this;return r.each(t,(function(t){n.length>1?i.setNode(t,e):i.setNode(t)})),this},i.prototype.setNode=function(t,e){return r.has(this._nodes,t)?(arguments.length>1&&(this._nodes[t]=e),this):(this._nodes[t]=arguments.length>1?e:this._defaultNodeLabelFn(t),this._isCompound&&(this._parent[t]="\0",this._children[t]={},this._children["\0"][t]=!0),this._in[t]={},this._preds[t]={},this._out[t]={},this._sucs[t]={},++this._nodeCount,this)},i.prototype.node=function(t){return this._nodes[t]},i.prototype.hasNode=function(t){return r.has(this._nodes,t)},i.prototype.removeNode=function(t){var e=this;if(r.has(this._nodes,t)){var n=function(t){e.removeEdge(e._edgeObjs[t])};delete this._nodes[t],this._isCompound&&(this._removeFromParentsChildList(t),delete this._parent[t],r.each(this.children(t),(function(t){e.setParent(t)})),delete this._children[t]),r.each(r.keys(this._in[t]),n),delete this._in[t],delete this._preds[t],r.each(r.keys(this._out[t]),n),delete this._out[t],delete this._sucs[t],--this._nodeCount}return this},i.prototype.setParent=function(t,e){if(!this._isCompound)throw new Error("Cannot set parent in a non-compound graph");if(r.isUndefined(e))e="\0";else{for(var n=e+="";!r.isUndefined(n);n=this.parent(n))if(n===t)throw new Error("Setting "+e+" as parent of "+t+" would create a cycle");this.setNode(e)}return this.setNode(t),this._removeFromParentsChildList(t),this._parent[t]=e,this._children[e][t]=!0,this},i.prototype._removeFromParentsChildList=function(t){delete this._children[this._parent[t]][t]},i.prototype.parent=function(t){if(this._isCompound){var e=this._parent[t];if("\0"!==e)return e}},i.prototype.children=function(t){if(r.isUndefined(t)&&(t="\0"),this._isCompound){var e=this._children[t];if(e)return r.keys(e)}else{if("\0"===t)return this.nodes();if(this.hasNode(t))return[]}},i.prototype.predecessors=function(t){var e=this._preds[t];if(e)return r.keys(e)},i.prototype.successors=function(t){var e=this._sucs[t];if(e)return r.keys(e)},i.prototype.neighbors=function(t){var e=this.predecessors(t);if(e)return r.union(e,this.successors(t))},i.prototype.isLeaf=function(t){return 0===(this.isDirected()?this.successors(t):this.neighbors(t)).length},i.prototype.filterNodes=function(t){var e=new this.constructor({directed:this._isDirected,multigraph:this._isMultigraph,compound:this._isCompound});e.setGraph(this.graph());var n=this;r.each(this._nodes,(function(n,r){t(r)&&e.setNode(r,n)})),r.each(this._edgeObjs,(function(t){e.hasNode(t.v)&&e.hasNode(t.w)&&e.setEdge(t,n.edge(t))}));var i={};return this._isCompound&&r.each(e.nodes(),(function(t){e.setParent(t,function t(r){var a=n.parent(r);return void 0===a||e.hasNode(a)?(i[r]=a,a):a in i?i[a]:t(a)}(t))})),e},i.prototype.setDefaultEdgeLabel=function(t){return r.isFunction(t)||(t=r.constant(t)),this._defaultEdgeLabelFn=t,this},i.prototype.edgeCount=function(){return this._edgeCount},i.prototype.edges=function(){return r.values(this._edgeObjs)},i.prototype.setPath=function(t,e){var n=this,i=arguments;return r.reduce(t,(function(t,r){return i.length>1?n.setEdge(t,r,e):n.setEdge(t,r),r})),this},i.prototype.setEdge=function(){var t,e,n,i,o=!1,u=arguments[0];"object"==typeof u&&null!==u&&"v"in u?(t=u.v,e=u.w,n=u.name,2===arguments.length&&(i=arguments[1],o=!0)):(t=u,e=arguments[1],n=arguments[3],arguments.length>2&&(i=arguments[2],o=!0)),t=""+t,e=""+e,r.isUndefined(n)||(n=""+n);var l=s(this._isDirected,t,e,n);if(r.has(this._edgeLabels,l))return o&&(this._edgeLabels[l]=i),this;if(!r.isUndefined(n)&&!this._isMultigraph)throw new Error("Cannot set a named edge when isMultigraph = false");this.setNode(t),this.setNode(e),this._edgeLabels[l]=o?i:this._defaultEdgeLabelFn(t,e,n);var h=c(this._isDirected,t,e,n);return t=h.v,e=h.w,Object.freeze(h),this._edgeObjs[l]=h,a(this._preds[e],t),a(this._sucs[t],e),this._in[e][l]=h,this._out[t][l]=h,this._edgeCount++,this},i.prototype.edge=function(t,e,n){var r=1===arguments.length?u(this._isDirected,arguments[0]):s(this._isDirected,t,e,n);return this._edgeLabels[r]},i.prototype.hasEdge=function(t,e,n){var i=1===arguments.length?u(this._isDirected,arguments[0]):s(this._isDirected,t,e,n);return r.has(this._edgeLabels,i)},i.prototype.removeEdge=function(t,e,n){var r=1===arguments.length?u(this._isDirected,arguments[0]):s(this._isDirected,t,e,n),i=this._edgeObjs[r];return i&&(t=i.v,e=i.w,delete this._edgeLabels[r],delete this._edgeObjs[r],o(this._preds[e],t),o(this._sucs[t],e),delete this._in[e][r],delete this._out[t][r],this._edgeCount--),this},i.prototype.inEdges=function(t,e){var n=this._in[t];if(n){var i=r.values(n);return e?r.filter(i,(function(t){return t.v===e})):i}},i.prototype.outEdges=function(t,e){var n=this._out[t];if(n){var i=r.values(n);return e?r.filter(i,(function(t){return t.w===e})):i}},i.prototype.nodeEdges=function(t,e){var n=this.inEdges(t,e);if(n)return n.concat(this.outEdges(t,e))}},function(t,e,n){var r=n(33)(n(19),"Map");t.exports=r},function(t,e,n){var r=n(222),i=n(229),a=n(231),o=n(232),s=n(233);function c(t){var e=-1,n=null==t?0:t.length;for(this.clear();++e<n;){var r=t[e];this.set(r[0],r[1])}}c.prototype.clear=r,c.prototype.delete=i,c.prototype.get=a,c.prototype.has=o,c.prototype.set=s,t.exports=c},function(t,e){t.exports=function(t,e){for(var n=-1,r=null==t?0:t.length;++n<r&&!1!==e(t[n],n,t););return t}},function(t,e){t.exports=function(t){return"number"==typeof t&&t>-1&&t%1==0&&t<=9007199254740991}},function(t,e,n){(function(t){var r=n(109),i=e&&!e.nodeType&&e,a=i&&"object"==typeof t&&t&&!t.nodeType&&t,o=a&&a.exports===i&&r.process,s=function(){try{var t=a&&a.require&&a.require("util").types;return t||o&&o.binding&&o.binding("util")}catch(t){}}();t.exports=s}).call(this,n(7)(t))},function(t,e,n){var r=n(63),i=n(239),a=Object.prototype.hasOwnProperty;t.exports=function(t){if(!r(t))return i(t);var e=[];for(var n in Object(t))a.call(t,n)&&"constructor"!=n&&e.push(n);return e}},function(t,e,n){var r=n(116),i=n(117),a=Object.prototype.propertyIsEnumerable,o=Object.getOwnPropertySymbols,s=o?function(t){return null==t?[]:(t=Object(t),r(o(t),(function(e){return a.call(t,e)})))}:i;t.exports=s},function(t,e){t.exports=function(t,e){for(var n=-1,r=e.length,i=t.length;++n<r;)t[i+n]=e[n];return t}},function(t,e,n){var r=n(122);t.exports=function(t){var e=new t.constructor(t.byteLength);return new r(e).set(new r(t)),e}},function(t,e){t.exports=function(t){return function(){return t}}},function(t,e,n){t.exports=n(126)},function(t,e,n){var r=n(91),i=n(30);t.exports=function(t,e){return t&&r(t,e,i)}},function(t,e,n){var r=n(258)();t.exports=r},function(t,e){t.exports=function(t){var e=-1,n=Array(t.size);return t.forEach((function(t){n[++e]=t})),n}},function(t,e,n){var r=n(5),i=n(43),a=/\.|\[(?:[^[\]]*|(["'])(?:(?!\1)[^\\]|\\.)*?\1)\]/,o=/^\w*$/;t.exports=function(t,e){if(r(t))return!1;var n=typeof t;return!("number"!=n&&"symbol"!=n&&"boolean"!=n&&null!=t&&!i(t))||(o.test(t)||!a.test(t)||null!=e&&t in Object(e))}},function(t,e,n){var r=n(280),i=n(137);t.exports=function(t,e){return null!=t&&i(t,e,r)}},function(t,e,n){var r=n(86),i=n(292);t.exports=function t(e,n,a,o,s){var c=-1,u=e.length;for(a||(a=i),s||(s=[]);++c<u;){var l=e[c];n>0&&a(l)?n>1?t(l,n-1,a,o,s):r(s,l):o||(s[s.length]=l)}return s}},function(t,e,n){var r=n(43);t.exports=function(t,e,n){for(var i=-1,a=t.length;++i<a;){var o=t[i],s=e(o);if(null!=s&&(void 0===c?s==s&&!r(s):n(s,c)))var c=s,u=o}return u}},function(t,e){t.exports=function(t,e,n,r){var i=t.x,a=t.y,o=i-r.x,s=a-r.y,c=Math.sqrt(e*e*s*s+n*n*o*o),u=Math.abs(e*n*o/c);r.x<i&&(u=-u);var l=Math.abs(e*n*s/c);r.y<a&&(l=-l);return{x:i+u,y:a+l}}},function(t,e,n){var r=n(379),i=n(51),a=n(380);t.exports=function(t,e,n){var o=e.label,s=t.append("g");"svg"===e.labelType?a(s,e):"string"!=typeof o||"html"===e.labelType?i(s,e):r(s,e);var c,u=s.node().getBBox();switch(n){case"top":c=-e.height/2;break;case"bottom":c=e.height/2-u.height;break;default:c=-u.height/2}return s.attr("transform","translate("+-u.width/2+","+c+")"),s}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(46),i=n(177),a={re:/^#((?:[a-f0-9]{2}){2,4}|[a-f0-9]{3})$/i,parse:function(t){if(35===t.charCodeAt(0)){var e=t.match(a.re);if(e){var n=e[1],i=parseInt(n,16),o=n.length,s=o%4==0,c=o>4,u=c?1:17,l=c?8:4,h=s?0:-1,f=c?255:15;return r.default.set({r:(i>>l*(h+3)&f)*u,g:(i>>l*(h+2)&f)*u,b:(i>>l*(h+1)&f)*u,a:s?(i&f)*u/255:1},t)}}},stringify:function(t){var e=t.r,n=t.g,r=t.b,a=t.a;return a<1?"#"+i.DEC2HEX[Math.round(e)]+i.DEC2HEX[Math.round(n)]+i.DEC2HEX[Math.round(r)]+i.DEC2HEX[Math.round(255*a)]:"#"+i.DEC2HEX[Math.round(e)]+i.DEC2HEX[Math.round(n)]+i.DEC2HEX[Math.round(r)]}};e.default=a},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i=n(46),a=n(6);e.default=function(t,e,n,o){void 0===o&&(o=1);var s=i.default.set({h:r.default.channel.clamp.h(t),s:r.default.channel.clamp.s(e),l:r.default.channel.clamp.l(n),a:r.default.channel.clamp.a(o)});return a.default.stringify(s)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(29);e.default=function(t){return r.default(t,"a")}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(77);e.default=function(t){return r.default(t)>=.5}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(32);e.default=function(t,e){return r.default(t,"a",e)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(32);e.default=function(t,e){return r.default(t,"a",-e)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(6),i=n(53);e.default=function(t,e){var n=r.default.parse(t),a={};for(var o in e)e[o]&&(a[o]=n[o]+e[o]);return i.default(t,a)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(6),i=n(52);e.default=function(t,e,n){void 0===n&&(n=50);var a=r.default.parse(t),o=a.r,s=a.g,c=a.b,u=a.a,l=r.default.parse(e),h=l.r,f=l.g,d=l.b,p=l.a,y=n/100,g=2*y-1,m=u-p,v=((g*m==-1?g:(g+m)/(1+g*m))+1)/2,b=1-v,x=o*v+h*b,_=s*v+f*b,k=c*v+d*b,w=u*y+p*(1-y);return i.default(x,_,k,w)}},function(t,e){},function(t,e,n){var r=n(54),i=n(81),a=n(59),o=n(234),s=n(240),c=n(114),u=n(115),l=n(243),h=n(244),f=n(119),d=n(245),p=n(42),y=n(249),g=n(250),m=n(124),v=n(5),b=n(41),x=n(254),_=n(14),k=n(256),w=n(30),T=n(35),E={};E["[object Arguments]"]=E["[object Array]"]=E["[object ArrayBuffer]"]=E["[object DataView]"]=E["[object Boolean]"]=E["[object Date]"]=E["[object Float32Array]"]=E["[object Float64Array]"]=E["[object Int8Array]"]=E["[object Int16Array]"]=E["[object Int32Array]"]=E["[object Map]"]=E["[object Number]"]=E["[object Object]"]=E["[object RegExp]"]=E["[object Set]"]=E["[object String]"]=E["[object Symbol]"]=E["[object Uint8Array]"]=E["[object Uint8ClampedArray]"]=E["[object Uint16Array]"]=E["[object Uint32Array]"]=!0,E["[object Error]"]=E["[object Function]"]=E["[object WeakMap]"]=!1,t.exports=function t(e,n,C,S,A,M){var O,N=1&n,B=2&n,D=4&n;if(C&&(O=A?C(e,S,A,M):C(e)),void 0!==O)return O;if(!_(e))return e;var L=v(e);if(L){if(O=y(e),!N)return u(e,O)}else{var I=p(e),R="[object Function]"==I||"[object GeneratorFunction]"==I;if(b(e))return c(e,N);if("[object Object]"==I||"[object Arguments]"==I||R&&!A){if(O=B||R?{}:m(e),!N)return B?h(e,s(O,e)):l(e,o(O,e))}else{if(!E[I])return A?e:{};O=g(e,I,N)}}M||(M=new r);var F=M.get(e);if(F)return F;M.set(e,O),k(e)?e.forEach((function(r){O.add(t(r,n,C,r,e,M))})):x(e)&&e.forEach((function(r,i){O.set(i,t(r,n,C,i,e,M))}));var P=L?void 0:(D?B?d:f:B?T:w)(e);return i(P||e,(function(r,i){P&&(r=e[i=r]),a(O,i,t(r,n,C,i,e,M))})),O}},function(t,e,n){(function(e){var n="object"==typeof e&&e&&e.Object===Object&&e;t.exports=n}).call(this,n(216))},function(t,e){var n=Function.prototype.toString;t.exports=function(t){if(null!=t){try{return n.call(t)}catch(t){}try{return t+""}catch(t){}}return""}},function(t,e,n){var r=n(33),i=function(){try{var t=r(Object,"defineProperty");return t({},"",{}),t}catch(t){}}();t.exports=i},function(t,e,n){var r=n(235),i=n(48),a=n(5),o=n(41),s=n(61),c=n(49),u=Object.prototype.hasOwnProperty;t.exports=function(t,e){var n=a(t),l=!n&&i(t),h=!n&&!l&&o(t),f=!n&&!l&&!h&&c(t),d=n||l||h||f,p=d?r(t.length,String):[],y=p.length;for(var g in t)!e&&!u.call(t,g)||d&&("length"==g||h&&("offset"==g||"parent"==g)||f&&("buffer"==g||"byteLength"==g||"byteOffset"==g)||s(g,y))||p.push(g);return p}},function(t,e){t.exports=function(t,e){return function(n){return t(e(n))}}},function(t,e,n){(function(t){var r=n(19),i=e&&!e.nodeType&&e,a=i&&"object"==typeof t&&t&&!t.nodeType&&t,o=a&&a.exports===i?r.Buffer:void 0,s=o?o.allocUnsafe:void 0;t.exports=function(t,e){if(e)return t.slice();var n=t.length,r=s?s(n):new t.constructor(n);return t.copy(r),r}}).call(this,n(7)(t))},function(t,e){t.exports=function(t,e){var n=-1,r=t.length;for(e||(e=Array(r));++n<r;)e[n]=t[n];return e}},function(t,e){t.exports=function(t,e){for(var n=-1,r=null==t?0:t.length,i=0,a=[];++n<r;){var o=t[n];e(o,n,t)&&(a[i++]=o)}return a}},function(t,e){t.exports=function(){return[]}},function(t,e,n){var r=n(86),i=n(64),a=n(85),o=n(117),s=Object.getOwnPropertySymbols?function(t){for(var e=[];t;)r(e,a(t)),t=i(t);return e}:o;t.exports=s},function(t,e,n){var r=n(120),i=n(85),a=n(30);t.exports=function(t){return r(t,a,i)}},function(t,e,n){var r=n(86),i=n(5);t.exports=function(t,e,n){var a=e(t);return i(t)?a:r(a,n(t))}},function(t,e,n){var r=n(33)(n(19),"Set");t.exports=r},function(t,e,n){var r=n(19).Uint8Array;t.exports=r},function(t,e,n){var r=n(87);t.exports=function(t,e){var n=e?r(t.buffer):t.buffer;return new t.constructor(n,t.byteOffset,t.length)}},function(t,e,n){var r=n(125),i=n(64),a=n(63);t.exports=function(t){return"function"!=typeof t.constructor||a(t)?{}:r(i(t))}},function(t,e,n){var r=n(14),i=Object.create,a=function(){function t(){}return function(e){if(!r(e))return{};if(i)return i(e);t.prototype=e;var n=new t;return t.prototype=void 0,n}}();t.exports=a},function(t,e,n){var r=n(81),i=n(65),a=n(127),o=n(5);t.exports=function(t,e){return(o(t)?r:i)(t,a(e))}},function(t,e,n){var r=n(36);t.exports=function(t){return"function"==typeof t?t:r}},function(t,e,n){var r=n(116),i=n(260),a=n(26),o=n(5);t.exports=function(t,e){return(o(t)?r:i)(t,a(e,3))}},function(t,e,n){var r=n(263),i=n(21);t.exports=function t(e,n,a,o,s){return e===n||(null==e||null==n||!i(e)&&!i(n)?e!=e&&n!=n:r(e,n,a,o,t,s))}},function(t,e,n){var r=n(131),i=n(266),a=n(132);t.exports=function(t,e,n,o,s,c){var u=1&n,l=t.length,h=e.length;if(l!=h&&!(u&&h>l))return!1;var f=c.get(t),d=c.get(e);if(f&&d)return f==e&&d==t;var p=-1,y=!0,g=2&n?new r:void 0;for(c.set(t,e),c.set(e,t);++p<l;){var m=t[p],v=e[p];if(o)var b=u?o(v,m,p,e,t,c):o(m,v,p,t,e,c);if(void 0!==b){if(b)continue;y=!1;break}if(g){if(!i(e,(function(t,e){if(!a(g,e)&&(m===t||s(m,t,n,o,c)))return g.push(e)}))){y=!1;break}}else if(m!==v&&!s(m,v,n,o,c)){y=!1;break}}return c.delete(t),c.delete(e),y}},function(t,e,n){var r=n(80),i=n(264),a=n(265);function o(t){var e=-1,n=null==t?0:t.length;for(this.__data__=new r;++e<n;)this.add(t[e])}o.prototype.add=o.prototype.push=i,o.prototype.has=a,t.exports=o},function(t,e){t.exports=function(t,e){return t.has(e)}},function(t,e,n){var r=n(14);t.exports=function(t){return t==t&&!r(t)}},function(t,e){t.exports=function(t,e){return function(n){return null!=n&&(n[t]===e&&(void 0!==e||t in Object(n)))}}},function(t,e,n){var r=n(276);t.exports=function(t){return null==t?"":r(t)}},function(t,e,n){var r=n(277),i=n(137);t.exports=function(t,e){return null!=t&&i(t,e,r)}},function(t,e,n){var r=n(67),i=n(48),a=n(5),o=n(61),s=n(82),c=n(50);t.exports=function(t,e,n){for(var u=-1,l=(e=r(e,t)).length,h=!1;++u<l;){var f=c(e[u]);if(!(h=null!=t&&n(t,f)))break;t=t[f]}return h||++u!=l?h:!!(l=null==t?0:t.length)&&s(l)&&o(f,l)&&(a(t)||i(t))}},function(t,e){t.exports=function(t){return function(e){return null==e?void 0:e[t]}}},function(t,e){t.exports=function(t){return void 0===t}},function(t,e,n){var r=n(68),i=n(26),a=n(141),o=n(5);t.exports=function(t,e){return(o(t)?r:a)(t,i(e,3))}},function(t,e,n){var r=n(65),i=n(25);t.exports=function(t,e){var n=-1,a=i(t)?Array(t.length):[];return r(t,(function(t,r,i){a[++n]=e(t,r,i)})),a}},function(t,e,n){var r=n(282),i=n(65),a=n(26),o=n(283),s=n(5);t.exports=function(t,e,n){var c=s(t)?r:o,u=arguments.length<3;return c(t,a(e,4),n,u,i)}},function(t,e,n){var r=n(293),i=Math.max;t.exports=function(t,e,n){return e=i(void 0===e?t.length-1:e,0),function(){for(var a=arguments,o=-1,s=i(a.length-e,0),c=Array(s);++o<s;)c[o]=a[e+o];o=-1;for(var u=Array(e+1);++o<e;)u[o]=a[o];return u[e]=n(c),r(t,this,u)}}},function(t,e,n){var r=n(294),i=n(295)(r);t.exports=i},function(t,e){t.exports=function(t,e,n,r){for(var i=t.length,a=n+(r?1:-1);r?a--:++a<i;)if(e(t[a],a,t))return a;return-1}},function(t,e,n){var r=n(25),i=n(21);t.exports=function(t){return i(t)&&r(t)}},function(t,e,n){var r=n(304),i=n(30);t.exports=function(t){return null==t?[]:r(t,i(t))}},function(t,e,n){var r=n(13),i=n(149);t.exports=function(t,e,n,r){return function(t,e,n,r){var a,o,s={},c=new i,u=function(t){var e=t.v!==a?t.v:t.w,r=s[e],i=n(t),u=o.distance+i;if(i<0)throw new Error("dijkstra does not allow negative edge weights. Bad edge: "+t+" Weight: "+i);u<r.distance&&(r.distance=u,r.predecessor=a,c.decrease(e,u))};t.nodes().forEach((function(t){var n=t===e?0:Number.POSITIVE_INFINITY;s[t]={distance:n},c.add(t,n)}));for(;c.size()>0&&(a=c.removeMin(),(o=s[a]).distance!==Number.POSITIVE_INFINITY);)r(a).forEach(u);return s}(t,String(e),n||a,r||function(e){return t.outEdges(e)})};var a=r.constant(1)},function(t,e,n){var r=n(13);function i(){this._arr=[],this._keyIndices={}}t.exports=i,i.prototype.size=function(){return this._arr.length},i.prototype.keys=function(){return this._arr.map((function(t){return t.key}))},i.prototype.has=function(t){return r.has(this._keyIndices,t)},i.prototype.priority=function(t){var e=this._keyIndices[t];if(void 0!==e)return this._arr[e].priority},i.prototype.min=function(){if(0===this.size())throw new Error("Queue underflow");return this._arr[0].key},i.prototype.add=function(t,e){var n=this._keyIndices;if(t=String(t),!r.has(n,t)){var i=this._arr,a=i.length;return n[t]=a,i.push({key:t,priority:e}),this._decrease(a),!0}return!1},i.prototype.removeMin=function(){this._swap(0,this._arr.length-1);var t=this._arr.pop();return delete this._keyIndices[t.key],this._heapify(0),t.key},i.prototype.decrease=function(t,e){var n=this._keyIndices[t];if(e>this._arr[n].priority)throw new Error("New priority is greater than current priority. Key: "+t+" Old: "+this._arr[n].priority+" New: "+e);this._arr[n].priority=e,this._decrease(n)},i.prototype._heapify=function(t){var e=this._arr,n=2*t,r=n+1,i=t;n<e.length&&(i=e[n].priority<e[i].priority?n:i,r<e.length&&(i=e[r].priority<e[i].priority?r:i),i!==t&&(this._swap(t,i),this._heapify(i)))},i.prototype._decrease=function(t){for(var e,n=this._arr,r=n[t].priority;0!==t&&!(n[e=t>>1].priority<r);)this._swap(t,e),t=e},i.prototype._swap=function(t,e){var n=this._arr,r=this._keyIndices,i=n[t],a=n[e];n[t]=a,n[e]=i,r[a.key]=t,r[i.key]=e}},function(t,e,n){var r=n(13);t.exports=function(t){var e=0,n=[],i={},a=[];return t.nodes().forEach((function(o){r.has(i,o)||function o(s){var c=i[s]={onStack:!0,lowlink:e,index:e++};if(n.push(s),t.successors(s).forEach((function(t){r.has(i,t)?i[t].onStack&&(c.lowlink=Math.min(c.lowlink,i[t].index)):(o(t),c.lowlink=Math.min(c.lowlink,i[t].lowlink))})),c.lowlink===c.index){var u,l=[];do{u=n.pop(),i[u].onStack=!1,l.push(u)}while(s!==u);a.push(l)}}(o)})),a}},function(t,e,n){var r=n(13);function i(t){var e={},n={},i=[];if(r.each(t.sinks(),(function o(s){if(r.has(n,s))throw new a;r.has(e,s)||(n[s]=!0,e[s]=!0,r.each(t.predecessors(s),o),delete n[s],i.push(s))})),r.size(e)!==t.nodeCount())throw new a;return i}function a(){}t.exports=i,i.CycleException=a,a.prototype=new Error},function(t,e,n){var r=n(13);t.exports=function(t,e,n){r.isArray(e)||(e=[e]);var i=(t.isDirected()?t.successors:t.neighbors).bind(t),a=[],o={};return r.each(e,(function(e){if(!t.hasNode(e))throw new Error("Graph does not have node: "+e);!function t(e,n,i,a,o,s){r.has(a,n)||(a[n]=!0,i||s.push(n),r.each(o(n),(function(n){t(e,n,i,a,o,s)})),i&&s.push(n))}(t,e,"post"===n,o,i,a)})),a}},function(t,e,n){var r;try{r=n(10)}catch(t){}r||(r=window.dagre),t.exports=r},function(t,e,n){var r=n(69),i=n(38),a=n(70),o=n(35),s=Object.prototype,c=s.hasOwnProperty,u=r((function(t,e){t=Object(t);var n=-1,r=e.length,u=r>2?e[2]:void 0;for(u&&a(e[0],e[1],u)&&(r=1);++n<r;)for(var l=e[n],h=o(l),f=-1,d=h.length;++f<d;){var p=h[f],y=t[p];(void 0===y||i(y,s[p])&&!c.call(t,p))&&(t[p]=l[p])}return t}));t.exports=u},function(t,e,n){var r=n(323);t.exports=function(t){return t?(t=r(t))===1/0||t===-1/0?17976931348623157e292*(t<0?-1:1):t==t?t:0:0===t?t:0}},function(t,e,n){var r=n(95);t.exports=function(t){return(null==t?0:t.length)?r(t,1):[]}},function(t,e,n){var r=n(60),i=n(38);t.exports=function(t,e,n){(void 0!==n&&!i(t[e],n)||void 0===n&&!(e in t))&&r(t,e,n)}},function(t,e,n){var r=n(34),i=n(64),a=n(21),o=Function.prototype,s=Object.prototype,c=o.toString,u=s.hasOwnProperty,l=c.call(Object);t.exports=function(t){if(!a(t)||"[object Object]"!=r(t))return!1;var e=i(t);if(null===e)return!0;var n=u.call(e,"constructor")&&e.constructor;return"function"==typeof n&&n instanceof n&&c.call(n)==l}},function(t,e){t.exports=function(t,e){if(("constructor"!==e||"function"!=typeof t[e])&&"__proto__"!=e)return t[e]}},function(t,e){t.exports=function(t,e){return t<e}},function(t,e,n){var r=n(339),i=n(342)((function(t,e){return null==t?{}:r(t,e)}));t.exports=i},function(t,e,n){var r=n(343)();t.exports=r},function(t,e,n){var r=n(135),i=0;t.exports=function(t){var e=++i;return r(t)+e}},function(t,e,n){"use strict";var r=n(4),i=n(20).Graph,a=n(71).slack;function o(t,e){return r.forEach(t.nodes(),(function n(i){r.forEach(e.nodeEdges(i),(function(r){var o=r.v,s=i===o?r.w:o;t.hasNode(s)||a(e,r)||(t.setNode(s,{}),t.setEdge(i,s,{}),n(s))}))})),t.nodeCount()}function s(t,e){return r.minBy(e.edges(),(function(n){if(t.hasNode(n.v)!==t.hasNode(n.w))return a(e,n)}))}function c(t,e,n){r.forEach(t.nodes(),(function(t){e.node(t).rank+=n}))}t.exports=function(t){var e,n,r=new i({directed:!1}),u=t.nodes()[0],l=t.nodeCount();r.setNode(u,{});for(;o(r,t)<l;)e=s(r,t),n=r.hasNode(e.v)?a(t,e):-a(t,e),c(r,t,n);return r}},function(t,e){t.exports=function(t,e){return t.intersect(e)}},function(t,e,n){var r=n(97);t.exports=function(t,e,n){return r(t,e,e,n)}},function(t,e,n){var r=n(376);t.exports=function(t,e,n){var i=t.x,a=t.y,o=[],s=Number.POSITIVE_INFINITY,c=Number.POSITIVE_INFINITY;e.forEach((function(t){s=Math.min(s,t.x),c=Math.min(c,t.y)}));for(var u=i-t.width/2-s,l=a-t.height/2-c,h=0;h<e.length;h++){var f=e[h],d=e[h<e.length-1?h+1:0],p=r(t,n,{x:u+f.x,y:l+f.y},{x:u+d.x,y:l+d.y});p&&o.push(p)}if(!o.length)return console.log("NO INTERSECTION FOUND, RETURN NODE CENTER",t),t;o.length>1&&o.sort((function(t,e){var r=t.x-n.x,i=t.y-n.y,a=Math.sqrt(r*r+i*i),o=e.x-n.x,s=e.y-n.y,c=Math.sqrt(o*o+s*s);return a<c?-1:a===c?0:1}));return o[0]}},function(t,e){t.exports=function(t,e){var n,r,i=t.x,a=t.y,o=e.x-i,s=e.y-a,c=t.width/2,u=t.height/2;Math.abs(s)*c>Math.abs(o)*u?(s<0&&(u=-u),n=0===s?0:u*o/s,r=u):(o<0&&(c=-c),n=c,r=0===o?0:c*s/o);return{x:i+n,y:a+r}}},function(t,e,n){
+/*! @license DOMPurify 2.3.1 | (c) Cure53 and other contributors | Released under the Apache license 2.0 and Mozilla Public License 2.0 | github.com/cure53/DOMPurify/blob/2.3.1/LICENSE */
+t.exports=function(){"use strict";var t=Object.hasOwnProperty,e=Object.setPrototypeOf,n=Object.isFrozen,r=Object.getPrototypeOf,i=Object.getOwnPropertyDescriptor,a=Object.freeze,o=Object.seal,s=Object.create,c="undefined"!=typeof Reflect&&Reflect,u=c.apply,l=c.construct;u||(u=function(t,e,n){return t.apply(e,n)}),a||(a=function(t){return t}),o||(o=function(t){return t}),l||(l=function(t,e){return new(Function.prototype.bind.apply(t,[null].concat(function(t){if(Array.isArray(t)){for(var e=0,n=Array(t.length);e<t.length;e++)n[e]=t[e];return n}return Array.from(t)}(e))))});var h,f=k(Array.prototype.forEach),d=k(Array.prototype.pop),p=k(Array.prototype.push),y=k(String.prototype.toLowerCase),g=k(String.prototype.match),m=k(String.prototype.replace),v=k(String.prototype.indexOf),b=k(String.prototype.trim),x=k(RegExp.prototype.test),_=(h=TypeError,function(){for(var t=arguments.length,e=Array(t),n=0;n<t;n++)e[n]=arguments[n];return l(h,e)});function k(t){return function(e){for(var n=arguments.length,r=Array(n>1?n-1:0),i=1;i<n;i++)r[i-1]=arguments[i];return u(t,e,r)}}function w(t,r){e&&e(t,null);for(var i=r.length;i--;){var a=r[i];if("string"==typeof a){var o=y(a);o!==a&&(n(r)||(r[i]=o),a=o)}t[a]=!0}return t}function T(e){var n=s(null),r=void 0;for(r in e)u(t,e,[r])&&(n[r]=e[r]);return n}function E(t,e){for(;null!==t;){var n=i(t,e);if(n){if(n.get)return k(n.get);if("function"==typeof n.value)return k(n.value)}t=r(t)}return function(t){return console.warn("fallback value for",t),null}}var C=a(["a","abbr","acronym","address","area","article","aside","audio","b","bdi","bdo","big","blink","blockquote","body","br","button","canvas","caption","center","cite","code","col","colgroup","content","data","datalist","dd","decorator","del","details","dfn","dialog","dir","div","dl","dt","element","em","fieldset","figcaption","figure","font","footer","form","h1","h2","h3","h4","h5","h6","head","header","hgroup","hr","html","i","img","input","ins","kbd","label","legend","li","main","map","mark","marquee","menu","menuitem","meter","nav","nobr","ol","optgroup","option","output","p","picture","pre","progress","q","rp","rt","ruby","s","samp","section","select","shadow","small","source","spacer","span","strike","strong","style","sub","summary","sup","table","tbody","td","template","textarea","tfoot","th","thead","time","tr","track","tt","u","ul","var","video","wbr"]),S=a(["svg","a","altglyph","altglyphdef","altglyphitem","animatecolor","animatemotion","animatetransform","circle","clippath","defs","desc","ellipse","filter","font","g","glyph","glyphref","hkern","image","line","lineargradient","marker","mask","metadata","mpath","path","pattern","polygon","polyline","radialgradient","rect","stop","style","switch","symbol","text","textpath","title","tref","tspan","view","vkern"]),A=a(["feBlend","feColorMatrix","feComponentTransfer","feComposite","feConvolveMatrix","feDiffuseLighting","feDisplacementMap","feDistantLight","feFlood","feFuncA","feFuncB","feFuncG","feFuncR","feGaussianBlur","feMerge","feMergeNode","feMorphology","feOffset","fePointLight","feSpecularLighting","feSpotLight","feTile","feTurbulence"]),M=a(["animate","color-profile","cursor","discard","fedropshadow","feimage","font-face","font-face-format","font-face-name","font-face-src","font-face-uri","foreignobject","hatch","hatchpath","mesh","meshgradient","meshpatch","meshrow","missing-glyph","script","set","solidcolor","unknown","use"]),O=a(["math","menclose","merror","mfenced","mfrac","mglyph","mi","mlabeledtr","mmultiscripts","mn","mo","mover","mpadded","mphantom","mroot","mrow","ms","mspace","msqrt","mstyle","msub","msup","msubsup","mtable","mtd","mtext","mtr","munder","munderover"]),N=a(["maction","maligngroup","malignmark","mlongdiv","mscarries","mscarry","msgroup","mstack","msline","msrow","semantics","annotation","annotation-xml","mprescripts","none"]),B=a(["#text"]),D=a(["accept","action","align","alt","autocapitalize","autocomplete","autopictureinpicture","autoplay","background","bgcolor","border","capture","cellpadding","cellspacing","checked","cite","class","clear","color","cols","colspan","controls","controlslist","coords","crossorigin","datetime","decoding","default","dir","disabled","disablepictureinpicture","disableremoteplayback","download","draggable","enctype","enterkeyhint","face","for","headers","height","hidden","high","href","hreflang","id","inputmode","integrity","ismap","kind","label","lang","list","loading","loop","low","max","maxlength","media","method","min","minlength","multiple","muted","name","noshade","novalidate","nowrap","open","optimum","pattern","placeholder","playsinline","poster","preload","pubdate","radiogroup","readonly","rel","required","rev","reversed","role","rows","rowspan","spellcheck","scope","selected","shape","size","sizes","span","srclang","start","src","srcset","step","style","summary","tabindex","title","translate","type","usemap","valign","value","width","xmlns","slot"]),L=a(["accent-height","accumulate","additive","alignment-baseline","ascent","attributename","attributetype","azimuth","basefrequency","baseline-shift","begin","bias","by","class","clip","clippathunits","clip-path","clip-rule","color","color-interpolation","color-interpolation-filters","color-profile","color-rendering","cx","cy","d","dx","dy","diffuseconstant","direction","display","divisor","dur","edgemode","elevation","end","fill","fill-opacity","fill-rule","filter","filterunits","flood-color","flood-opacity","font-family","font-size","font-size-adjust","font-stretch","font-style","font-variant","font-weight","fx","fy","g1","g2","glyph-name","glyphref","gradientunits","gradienttransform","height","href","id","image-rendering","in","in2","k","k1","k2","k3","k4","kerning","keypoints","keysplines","keytimes","lang","lengthadjust","letter-spacing","kernelmatrix","kernelunitlength","lighting-color","local","marker-end","marker-mid","marker-start","markerheight","markerunits","markerwidth","maskcontentunits","maskunits","max","mask","media","method","mode","min","name","numoctaves","offset","operator","opacity","order","orient","orientation","origin","overflow","paint-order","path","pathlength","patterncontentunits","patterntransform","patternunits","points","preservealpha","preserveaspectratio","primitiveunits","r","rx","ry","radius","refx","refy","repeatcount","repeatdur","restart","result","rotate","scale","seed","shape-rendering","specularconstant","specularexponent","spreadmethod","startoffset","stddeviation","stitchtiles","stop-color","stop-opacity","stroke-dasharray","stroke-dashoffset","stroke-linecap","stroke-linejoin","stroke-miterlimit","stroke-opacity","stroke","stroke-width","style","surfacescale","systemlanguage","tabindex","targetx","targety","transform","text-anchor","text-decoration","text-rendering","textlength","type","u1","u2","unicode","values","viewbox","visibility","version","vert-adv-y","vert-origin-x","vert-origin-y","width","word-spacing","wrap","writing-mode","xchannelselector","ychannelselector","x","x1","x2","xmlns","y","y1","y2","z","zoomandpan"]),I=a(["accent","accentunder","align","bevelled","close","columnsalign","columnlines","columnspan","denomalign","depth","dir","display","displaystyle","encoding","fence","frame","height","href","id","largeop","length","linethickness","lspace","lquote","mathbackground","mathcolor","mathsize","mathvariant","maxsize","minsize","movablelimits","notation","numalign","open","rowalign","rowlines","rowspacing","rowspan","rspace","rquote","scriptlevel","scriptminsize","scriptsizemultiplier","selection","separator","separators","stretchy","subscriptshift","supscriptshift","symmetric","voffset","width","xmlns"]),R=a(["xlink:href","xml:id","xlink:title","xml:space","xmlns:xlink"]),F=o(/\{\{[\s\S]*|[\s\S]*\}\}/gm),P=o(/<%[\s\S]*|[\s\S]*%>/gm),j=o(/^data-[\-\w.\u00B7-\uFFFF]/),Y=o(/^aria-[\-\w]+$/),z=o(/^(?:(?:(?:f|ht)tps?|mailto|tel|callto|cid|xmpp):|[^a-z]|[a-z+.\-]+(?:[^a-z+.\-:]|$))/i),U=o(/^(?:\w+script|data):/i),$=o(/[\u0000-\u0020\u00A0\u1680\u180E\u2000-\u2029\u205F\u3000]/g),q="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t};function W(t){if(Array.isArray(t)){for(var e=0,n=Array(t.length);e<t.length;e++)n[e]=t[e];return n}return Array.from(t)}var H=function(){return"undefined"==typeof window?null:window},V=function(t,e){if("object"!==(void 0===t?"undefined":q(t))||"function"!=typeof t.createPolicy)return null;var n=null;e.currentScript&&e.currentScript.hasAttribute("data-tt-policy-suffix")&&(n=e.currentScript.getAttribute("data-tt-policy-suffix"));var r="dompurify"+(n?"#"+n:"");try{return t.createPolicy(r,{createHTML:function(t){return t}})}catch(t){return console.warn("TrustedTypes policy "+r+" could not be created."),null}};return function t(){var e=arguments.length>0&&void 0!==arguments[0]?arguments[0]:H(),n=function(e){return t(e)};if(n.version="2.3.1",n.removed=[],!e||!e.document||9!==e.document.nodeType)return n.isSupported=!1,n;var r=e.document,i=e.document,o=e.DocumentFragment,s=e.HTMLTemplateElement,c=e.Node,u=e.Element,l=e.NodeFilter,h=e.NamedNodeMap,k=void 0===h?e.NamedNodeMap||e.MozNamedAttrMap:h,G=e.Text,X=e.Comment,Z=e.DOMParser,K=e.trustedTypes,Q=u.prototype,J=E(Q,"cloneNode"),tt=E(Q,"nextSibling"),et=E(Q,"childNodes"),nt=E(Q,"parentNode");if("function"==typeof s){var rt=i.createElement("template");rt.content&&rt.content.ownerDocument&&(i=rt.content.ownerDocument)}var it=V(K,r),at=it&&Ft?it.createHTML(""):"",ot=i,st=ot.implementation,ct=ot.createNodeIterator,ut=ot.createDocumentFragment,lt=ot.getElementsByTagName,ht=r.importNode,ft={};try{ft=T(i).documentMode?i.documentMode:{}}catch(t){}var dt={};n.isSupported="function"==typeof nt&&st&&void 0!==st.createHTMLDocument&&9!==ft;var pt=F,yt=P,gt=j,mt=Y,vt=U,bt=$,xt=z,_t=null,kt=w({},[].concat(W(C),W(S),W(A),W(O),W(B))),wt=null,Tt=w({},[].concat(W(D),W(L),W(I),W(R))),Et=null,Ct=null,St=!0,At=!0,Mt=!1,Ot=!1,Nt=!1,Bt=!1,Dt=!1,Lt=!1,It=!1,Rt=!0,Ft=!1,Pt=!0,jt=!0,Yt=!1,zt={},Ut=null,$t=w({},["annotation-xml","audio","colgroup","desc","foreignobject","head","iframe","math","mi","mn","mo","ms","mtext","noembed","noframes","noscript","plaintext","script","style","svg","template","thead","title","video","xmp"]),qt=null,Wt=w({},["audio","video","img","source","image","track"]),Ht=null,Vt=w({},["alt","class","for","id","label","name","pattern","placeholder","role","summary","title","value","style","xmlns"]),Gt="http://www.w3.org/1998/Math/MathML",Xt="http://www.w3.org/2000/svg",Zt="http://www.w3.org/1999/xhtml",Kt=Zt,Qt=!1,Jt=null,te=i.createElement("form"),ee=function(t){Jt&&Jt===t||(t&&"object"===(void 0===t?"undefined":q(t))||(t={}),t=T(t),_t="ALLOWED_TAGS"in t?w({},t.ALLOWED_TAGS):kt,wt="ALLOWED_ATTR"in t?w({},t.ALLOWED_ATTR):Tt,Ht="ADD_URI_SAFE_ATTR"in t?w(T(Vt),t.ADD_URI_SAFE_ATTR):Vt,qt="ADD_DATA_URI_TAGS"in t?w(T(Wt),t.ADD_DATA_URI_TAGS):Wt,Ut="FORBID_CONTENTS"in t?w({},t.FORBID_CONTENTS):$t,Et="FORBID_TAGS"in t?w({},t.FORBID_TAGS):{},Ct="FORBID_ATTR"in t?w({},t.FORBID_ATTR):{},zt="USE_PROFILES"in t&&t.USE_PROFILES,St=!1!==t.ALLOW_ARIA_ATTR,At=!1!==t.ALLOW_DATA_ATTR,Mt=t.ALLOW_UNKNOWN_PROTOCOLS||!1,Ot=t.SAFE_FOR_TEMPLATES||!1,Nt=t.WHOLE_DOCUMENT||!1,Lt=t.RETURN_DOM||!1,It=t.RETURN_DOM_FRAGMENT||!1,Rt=!1!==t.RETURN_DOM_IMPORT,Ft=t.RETURN_TRUSTED_TYPE||!1,Dt=t.FORCE_BODY||!1,Pt=!1!==t.SANITIZE_DOM,jt=!1!==t.KEEP_CONTENT,Yt=t.IN_PLACE||!1,xt=t.ALLOWED_URI_REGEXP||xt,Kt=t.NAMESPACE||Zt,Ot&&(At=!1),It&&(Lt=!0),zt&&(_t=w({},[].concat(W(B))),wt=[],!0===zt.html&&(w(_t,C),w(wt,D)),!0===zt.svg&&(w(_t,S),w(wt,L),w(wt,R)),!0===zt.svgFilters&&(w(_t,A),w(wt,L),w(wt,R)),!0===zt.mathMl&&(w(_t,O),w(wt,I),w(wt,R))),t.ADD_TAGS&&(_t===kt&&(_t=T(_t)),w(_t,t.ADD_TAGS)),t.ADD_ATTR&&(wt===Tt&&(wt=T(wt)),w(wt,t.ADD_ATTR)),t.ADD_URI_SAFE_ATTR&&w(Ht,t.ADD_URI_SAFE_ATTR),t.FORBID_CONTENTS&&(Ut===$t&&(Ut=T(Ut)),w(Ut,t.FORBID_CONTENTS)),jt&&(_t["#text"]=!0),Nt&&w(_t,["html","head","body"]),_t.table&&(w(_t,["tbody"]),delete Et.tbody),a&&a(t),Jt=t)},ne=w({},["mi","mo","mn","ms","mtext"]),re=w({},["foreignobject","desc","title","annotation-xml"]),ie=w({},S);w(ie,A),w(ie,M);var ae=w({},O);w(ae,N);var oe=function(t){var e=nt(t);e&&e.tagName||(e={namespaceURI:Zt,tagName:"template"});var n=y(t.tagName),r=y(e.tagName);if(t.namespaceURI===Xt)return e.namespaceURI===Zt?"svg"===n:e.namespaceURI===Gt?"svg"===n&&("annotation-xml"===r||ne[r]):Boolean(ie[n]);if(t.namespaceURI===Gt)return e.namespaceURI===Zt?"math"===n:e.namespaceURI===Xt?"math"===n&&re[r]:Boolean(ae[n]);if(t.namespaceURI===Zt){if(e.namespaceURI===Xt&&!re[r])return!1;if(e.namespaceURI===Gt&&!ne[r])return!1;var i=w({},["title","style","font","a","script"]);return!ae[n]&&(i[n]||!ie[n])}return!1},se=function(t){p(n.removed,{element:t});try{t.parentNode.removeChild(t)}catch(e){try{t.outerHTML=at}catch(e){t.remove()}}},ce=function(t,e){try{p(n.removed,{attribute:e.getAttributeNode(t),from:e})}catch(t){p(n.removed,{attribute:null,from:e})}if(e.removeAttribute(t),"is"===t&&!wt[t])if(Lt||It)try{se(e)}catch(t){}else try{e.setAttribute(t,"")}catch(t){}},ue=function(t){var e=void 0,n=void 0;if(Dt)t="<remove></remove>"+t;else{var r=g(t,/^[\r\n\t ]+/);n=r&&r[0]}var a=it?it.createHTML(t):t;if(Kt===Zt)try{e=(new Z).parseFromString(a,"text/html")}catch(t){}if(!e||!e.documentElement){e=st.createDocument(Kt,"template",null);try{e.documentElement.innerHTML=Qt?"":a}catch(t){}}var o=e.body||e.documentElement;return t&&n&&o.insertBefore(i.createTextNode(n),o.childNodes[0]||null),Kt===Zt?lt.call(e,Nt?"html":"body")[0]:Nt?e.documentElement:o},le=function(t){return ct.call(t.ownerDocument||t,t,l.SHOW_ELEMENT|l.SHOW_COMMENT|l.SHOW_TEXT,null,!1)},he=function(t){return!(t instanceof G||t instanceof X||"string"==typeof t.nodeName&&"string"==typeof t.textContent&&"function"==typeof t.removeChild&&t.attributes instanceof k&&"function"==typeof t.removeAttribute&&"function"==typeof t.setAttribute&&"string"==typeof t.namespaceURI&&"function"==typeof t.insertBefore)},fe=function(t){return"object"===(void 0===c?"undefined":q(c))?t instanceof c:t&&"object"===(void 0===t?"undefined":q(t))&&"number"==typeof t.nodeType&&"string"==typeof t.nodeName},de=function(t,e,r){dt[t]&&f(dt[t],(function(t){t.call(n,e,r,Jt)}))},pe=function(t){var e=void 0;if(de("beforeSanitizeElements",t,null),he(t))return se(t),!0;if(g(t.nodeName,/[\u0080-\uFFFF]/))return se(t),!0;var r=y(t.nodeName);if(de("uponSanitizeElement",t,{tagName:r,allowedTags:_t}),!fe(t.firstElementChild)&&(!fe(t.content)||!fe(t.content.firstElementChild))&&x(/<[/\w]/g,t.innerHTML)&&x(/<[/\w]/g,t.textContent))return se(t),!0;if("select"===r&&x(/<template/i,t.innerHTML))return se(t),!0;if(!_t[r]||Et[r]){if(jt&&!Ut[r]){var i=nt(t)||t.parentNode,a=et(t)||t.childNodes;if(a&&i)for(var o=a.length-1;o>=0;--o)i.insertBefore(J(a[o],!0),tt(t))}return se(t),!0}return t instanceof u&&!oe(t)?(se(t),!0):"noscript"!==r&&"noembed"!==r||!x(/<\/no(script|embed)/i,t.innerHTML)?(Ot&&3===t.nodeType&&(e=t.textContent,e=m(e,pt," "),e=m(e,yt," "),t.textContent!==e&&(p(n.removed,{element:t.cloneNode()}),t.textContent=e)),de("afterSanitizeElements",t,null),!1):(se(t),!0)},ye=function(t,e,n){if(Pt&&("id"===e||"name"===e)&&(n in i||n in te))return!1;if(At&&!Ct[e]&&x(gt,e));else if(St&&x(mt,e));else{if(!wt[e]||Ct[e])return!1;if(Ht[e]);else if(x(xt,m(n,bt,"")));else if("src"!==e&&"xlink:href"!==e&&"href"!==e||"script"===t||0!==v(n,"data:")||!qt[t])if(Mt&&!x(vt,m(n,bt,"")));else if(n)return!1}return!0},ge=function(t){var e=void 0,r=void 0,i=void 0,a=void 0;de("beforeSanitizeAttributes",t,null);var o=t.attributes;if(o){var s={attrName:"",attrValue:"",keepAttr:!0,allowedAttributes:wt};for(a=o.length;a--;){var c=e=o[a],u=c.name,l=c.namespaceURI;if(r=b(e.value),i=y(u),s.attrName=i,s.attrValue=r,s.keepAttr=!0,s.forceKeepAttr=void 0,de("uponSanitizeAttribute",t,s),r=s.attrValue,!s.forceKeepAttr&&(ce(u,t),s.keepAttr))if(x(/\/>/i,r))ce(u,t);else{Ot&&(r=m(r,pt," "),r=m(r,yt," "));var h=t.nodeName.toLowerCase();if(ye(h,i,r))try{l?t.setAttributeNS(l,u,r):t.setAttribute(u,r),d(n.removed)}catch(t){}}}de("afterSanitizeAttributes",t,null)}},me=function t(e){var n=void 0,r=le(e);for(de("beforeSanitizeShadowDOM",e,null);n=r.nextNode();)de("uponSanitizeShadowNode",n,null),pe(n)||(n.content instanceof o&&t(n.content),ge(n));de("afterSanitizeShadowDOM",e,null)};return n.sanitize=function(t,i){var a=void 0,s=void 0,u=void 0,l=void 0,h=void 0;if((Qt=!t)&&(t="\x3c!--\x3e"),"string"!=typeof t&&!fe(t)){if("function"!=typeof t.toString)throw _("toString is not a function");if("string"!=typeof(t=t.toString()))throw _("dirty is not a string, aborting")}if(!n.isSupported){if("object"===q(e.toStaticHTML)||"function"==typeof e.toStaticHTML){if("string"==typeof t)return e.toStaticHTML(t);if(fe(t))return e.toStaticHTML(t.outerHTML)}return t}if(Bt||ee(i),n.removed=[],"string"==typeof t&&(Yt=!1),Yt);else if(t instanceof c)1===(s=(a=ue("\x3c!----\x3e")).ownerDocument.importNode(t,!0)).nodeType&&"BODY"===s.nodeName||"HTML"===s.nodeName?a=s:a.appendChild(s);else{if(!Lt&&!Ot&&!Nt&&-1===t.indexOf("<"))return it&&Ft?it.createHTML(t):t;if(!(a=ue(t)))return Lt?null:at}a&&Dt&&se(a.firstChild);for(var f=le(Yt?t:a);u=f.nextNode();)3===u.nodeType&&u===l||pe(u)||(u.content instanceof o&&me(u.content),ge(u),l=u);if(l=null,Yt)return t;if(Lt){if(It)for(h=ut.call(a.ownerDocument);a.firstChild;)h.appendChild(a.firstChild);else h=a;return Rt&&(h=ht.call(r,h,!0)),h}var d=Nt?a.outerHTML:a.innerHTML;return Ot&&(d=m(d,pt," "),d=m(d,yt," ")),it&&Ft?it.createHTML(d):d},n.setConfig=function(t){ee(t),Bt=!0},n.clearConfig=function(){Jt=null,Bt=!1},n.isValidAttribute=function(t,e,n){Jt||ee({});var r=y(t),i=y(e);return ye(r,i,n)},n.addHook=function(t,e){"function"==typeof e&&(dt[t]=dt[t]||[],p(dt[t],e))},n.removeHook=function(t){dt[t]&&d(dt[t])},n.removeHooks=function(t){dt[t]&&(dt[t]=[])},n.removeAllHooks=function(){dt={}},n}()}()},function(t,e){t.exports=function(t,e){return t.intersect(e)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(52);e.hex=r.default;var i=n(52);e.rgb=i.default;var a=n(52);e.rgba=a.default;var o=n(100);e.hsl=o.default;var s=n(100);e.hsla=s.default;var c=n(181);e.toKeyword=c.default;var u=n(182);e.toHex=u.default;var l=n(183);e.toRgba=l.default;var h=n(184);e.toHsla=h.default;var f=n(29);e.channel=f.default;var d=n(185);e.red=d.default;var p=n(186);e.green=p.default;var y=n(187);e.blue=y.default;var g=n(188);e.hue=g.default;var m=n(189);e.saturation=m.default;var v=n(190);e.lightness=v.default;var b=n(101);e.alpha=b.default;var x=n(101);e.opacity=x.default;var _=n(191);e.contrast=_.default;var k=n(77);e.luminance=k.default;var w=n(192);e.isDark=w.default;var T=n(102);e.isLight=T.default;var E=n(193);e.isValid=E.default;var C=n(194);e.saturate=C.default;var S=n(195);e.desaturate=S.default;var A=n(196);e.lighten=A.default;var M=n(197);e.darken=M.default;var O=n(103);e.opacify=O.default;var N=n(103);e.fadeIn=N.default;var B=n(104);e.transparentize=B.default;var D=n(104);e.fadeOut=D.default;var L=n(198);e.complement=L.default;var I=n(199);e.grayscale=I.default;var R=n(105);e.adjust=R.default;var F=n(53);e.change=F.default;var P=n(200);e.invert=P.default;var j=n(106);e.mix=j.default;var Y=n(201);e.scale=Y.default},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r={min:{r:0,g:0,b:0,s:0,l:0,a:0},max:{r:255,g:255,b:255,h:360,s:100,l:100,a:1},clamp:{r:function(t){return t>=255?255:t<0?0:t},g:function(t){return t>=255?255:t<0?0:t},b:function(t){return t>=255?255:t<0?0:t},h:function(t){return t%360},s:function(t){return t>=100?100:t<0?0:t},l:function(t){return t>=100?100:t<0?0:t},a:function(t){return t>=1?1:t<0?0:t}},toLinear:function(t){var e=t/255;return t>.03928?Math.pow((e+.055)/1.055,2.4):e/12.92},hue2rgb:function(t,e,n){return n<0&&(n+=1),n>1&&(n-=1),n<1/6?t+6*(e-t)*n:n<.5?e:n<2/3?t+(e-t)*(2/3-n)*6:t},hsl2rgb:function(t,e){var n=t.h,i=t.s,a=t.l;if(!i)return 2.55*a;n/=360,i/=100;var o=(a/=100)<.5?a*(1+i):a+i-a*i,s=2*a-o;switch(e){case"r":return 255*r.hue2rgb(s,o,n+1/3);case"g":return 255*r.hue2rgb(s,o,n);case"b":return 255*r.hue2rgb(s,o,n-1/3)}},rgb2hsl:function(t,e){var n=t.r,r=t.g,i=t.b;n/=255,r/=255,i/=255;var a=Math.max(n,r,i),o=Math.min(n,r,i),s=(a+o)/2;if("l"===e)return 100*s;if(a===o)return 0;var c=a-o;if("s"===e)return 100*(s>.5?c/(2-a-o):c/(a+o));switch(a){case n:return 60*((r-i)/c+(r<i?6:0));case r:return 60*((i-n)/c+2);case i:return 60*((n-r)/c+4);default:return-1}}};e.default=r},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r={clamp:function(t,e,n){return e>n?Math.min(e,Math.max(n,t)):Math.min(n,Math.max(e,t))},round:function(t){return Math.round(1e10*t)/1e10}};e.default=r},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r={dec2hex:function(t){var e=Math.round(t).toString(16);return e.length>1?e:"0"+e}};e.default=r},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i=n(176),a=function(){function t(t,e){this.color=e,this.changed=!1,this.data=t,this.type=new i.default}return t.prototype.set=function(t,e){return this.color=e,this.changed=!1,this.data=t,this.type.type=0,this},t.prototype._ensureHSL=function(){var t=this.data,e=t.h,n=t.s,i=t.l;void 0===e&&(t.h=r.default.channel.rgb2hsl(t,"h")),void 0===n&&(t.s=r.default.channel.rgb2hsl(t,"s")),void 0===i&&(t.l=r.default.channel.rgb2hsl(t,"l"))},t.prototype._ensureRGB=function(){var t=this.data,e=t.r,n=t.g,i=t.b;void 0===e&&(t.r=r.default.channel.hsl2rgb(t,"r")),void 0===n&&(t.g=r.default.channel.hsl2rgb(t,"g")),void 0===i&&(t.b=r.default.channel.hsl2rgb(t,"b"))},Object.defineProperty(t.prototype,"r",{get:function(){var t=this.data,e=t.r;return this.type.is(2)||void 0===e?(this._ensureHSL(),r.default.channel.hsl2rgb(t,"r")):e},set:function(t){this.type.set(1),this.changed=!0,this.data.r=t},enumerable:!0,configurable:!0}),Object.defineProperty(t.prototype,"g",{get:function(){var t=this.data,e=t.g;return this.type.is(2)||void 0===e?(this._ensureHSL(),r.default.channel.hsl2rgb(t,"g")):e},set:function(t){this.type.set(1),this.changed=!0,this.data.g=t},enumerable:!0,configurable:!0}),Object.defineProperty(t.prototype,"b",{get:function(){var t=this.data,e=t.b;return this.type.is(2)||void 0===e?(this._ensureHSL(),r.default.channel.hsl2rgb(t,"b")):e},set:function(t){this.type.set(1),this.changed=!0,this.data.b=t},enumerable:!0,configurable:!0}),Object.defineProperty(t.prototype,"h",{get:function(){var t=this.data,e=t.h;return this.type.is(1)||void 0===e?(this._ensureRGB(),r.default.channel.rgb2hsl(t,"h")):e},set:function(t){this.type.set(2),this.changed=!0,this.data.h=t},enumerable:!0,configurable:!0}),Object.defineProperty(t.prototype,"s",{get:function(){var t=this.data,e=t.s;return this.type.is(1)||void 0===e?(this._ensureRGB(),r.default.channel.rgb2hsl(t,"s")):e},set:function(t){this.type.set(2),this.changed=!0,this.data.s=t},enumerable:!0,configurable:!0}),Object.defineProperty(t.prototype,"l",{get:function(){var t=this.data,e=t.l;return this.type.is(1)||void 0===e?(this._ensureRGB(),r.default.channel.rgb2hsl(t,"l")):e},set:function(t){this.type.set(2),this.changed=!0,this.data.l=t},enumerable:!0,configurable:!0}),Object.defineProperty(t.prototype,"a",{get:function(){return this.data.a},set:function(t){this.changed=!0,this.data.a=t},enumerable:!0,configurable:!0}),t}();e.default=a},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=function(){function t(){this.type=0}return t.prototype.get=function(){return this.type},t.prototype.set=function(t){if(this.type&&this.type!==t)throw new Error("Cannot change both RGB and HSL channels at the same time");this.type=t},t.prototype.reset=function(){this.type=0},t.prototype.is=function(t){return this.type===t},t}();e.default=r},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i={};e.DEC2HEX=i;for(var a=0;a<=255;a++)i[a]=r.default.unit.dec2hex(a)},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(99),i={colors:{aliceblue:"#f0f8ff",antiquewhite:"#faebd7",aqua:"#00ffff",aquamarine:"#7fffd4",azure:"#f0ffff",beige:"#f5f5dc",bisque:"#ffe4c4",black:"#000000",blanchedalmond:"#ffebcd",blue:"#0000ff",blueviolet:"#8a2be2",brown:"#a52a2a",burlywood:"#deb887",cadetblue:"#5f9ea0",chartreuse:"#7fff00",chocolate:"#d2691e",coral:"#ff7f50",cornflowerblue:"#6495ed",cornsilk:"#fff8dc",crimson:"#dc143c",cyanaqua:"#00ffff",darkblue:"#00008b",darkcyan:"#008b8b",darkgoldenrod:"#b8860b",darkgray:"#a9a9a9",darkgreen:"#006400",darkgrey:"#a9a9a9",darkkhaki:"#bdb76b",darkmagenta:"#8b008b",darkolivegreen:"#556b2f",darkorange:"#ff8c00",darkorchid:"#9932cc",darkred:"#8b0000",darksalmon:"#e9967a",darkseagreen:"#8fbc8f",darkslateblue:"#483d8b",darkslategray:"#2f4f4f",darkslategrey:"#2f4f4f",darkturquoise:"#00ced1",darkviolet:"#9400d3",deeppink:"#ff1493",deepskyblue:"#00bfff",dimgray:"#696969",dimgrey:"#696969",dodgerblue:"#1e90ff",firebrick:"#b22222",floralwhite:"#fffaf0",forestgreen:"#228b22",fuchsia:"#ff00ff",gainsboro:"#dcdcdc",ghostwhite:"#f8f8ff",gold:"#ffd700",goldenrod:"#daa520",gray:"#808080",green:"#008000",greenyellow:"#adff2f",grey:"#808080",honeydew:"#f0fff0",hotpink:"#ff69b4",indianred:"#cd5c5c",indigo:"#4b0082",ivory:"#fffff0",khaki:"#f0e68c",lavender:"#e6e6fa",lavenderblush:"#fff0f5",lawngreen:"#7cfc00",lemonchiffon:"#fffacd",lightblue:"#add8e6",lightcoral:"#f08080",lightcyan:"#e0ffff",lightgoldenrodyellow:"#fafad2",lightgray:"#d3d3d3",lightgreen:"#90ee90",lightgrey:"#d3d3d3",lightpink:"#ffb6c1",lightsalmon:"#ffa07a",lightseagreen:"#20b2aa",lightskyblue:"#87cefa",lightslategray:"#778899",lightslategrey:"#778899",lightsteelblue:"#b0c4de",lightyellow:"#ffffe0",lime:"#00ff00",limegreen:"#32cd32",linen:"#faf0e6",magenta:"#ff00ff",maroon:"#800000",mediumaquamarine:"#66cdaa",mediumblue:"#0000cd",mediumorchid:"#ba55d3",mediumpurple:"#9370db",mediumseagreen:"#3cb371",mediumslateblue:"#7b68ee",mediumspringgreen:"#00fa9a",mediumturquoise:"#48d1cc",mediumvioletred:"#c71585",midnightblue:"#191970",mintcream:"#f5fffa",mistyrose:"#ffe4e1",moccasin:"#ffe4b5",navajowhite:"#ffdead",navy:"#000080",oldlace:"#fdf5e6",olive:"#808000",olivedrab:"#6b8e23",orange:"#ffa500",orangered:"#ff4500",orchid:"#da70d6",palegoldenrod:"#eee8aa",palegreen:"#98fb98",paleturquoise:"#afeeee",palevioletred:"#db7093",papayawhip:"#ffefd5",peachpuff:"#ffdab9",peru:"#cd853f",pink:"#ffc0cb",plum:"#dda0dd",powderblue:"#b0e0e6",purple:"#800080",rebeccapurple:"#663399",red:"#ff0000",rosybrown:"#bc8f8f",royalblue:"#4169e1",saddlebrown:"#8b4513",salmon:"#fa8072",sandybrown:"#f4a460",seagreen:"#2e8b57",seashell:"#fff5ee",sienna:"#a0522d",silver:"#c0c0c0",skyblue:"#87ceeb",slateblue:"#6a5acd",slategray:"#708090",slategrey:"#708090",snow:"#fffafa",springgreen:"#00ff7f",tan:"#d2b48c",teal:"#008080",thistle:"#d8bfd8",transparent:"#00000000",turquoise:"#40e0d0",violet:"#ee82ee",wheat:"#f5deb3",white:"#ffffff",whitesmoke:"#f5f5f5",yellow:"#ffff00",yellowgreen:"#9acd32"},parse:function(t){t=t.toLowerCase();var e=i.colors[t];if(e)return r.default.parse(e)},stringify:function(t){var e=r.default.stringify(t);for(var n in i.colors)if(i.colors[n]===e)return n}};e.default=i},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i=n(46),a={re:/^rgba?\(\s*?(-?(?:\d+(?:\.\d+)?|(?:\.\d+))(?:e\d+)?(%?))\s*?(?:,|\s)\s*?(-?(?:\d+(?:\.\d+)?|(?:\.\d+))(?:e\d+)?(%?))\s*?(?:,|\s)\s*?(-?(?:\d+(?:\.\d+)?|(?:\.\d+))(?:e\d+)?(%?))(?:\s*?(?:,|\/)\s*?\+?(-?(?:\d+(?:\.\d+)?|(?:\.\d+))(?:e\d+)?(%?)))?\s*?\)$/i,parse:function(t){var e=t.charCodeAt(0);if(114===e||82===e){var n=t.match(a.re);if(n){var o=n[1],s=n[2],c=n[3],u=n[4],l=n[5],h=n[6],f=n[7],d=n[8];return i.default.set({r:r.default.channel.clamp.r(s?2.55*parseFloat(o):parseFloat(o)),g:r.default.channel.clamp.g(u?2.55*parseFloat(c):parseFloat(c)),b:r.default.channel.clamp.b(h?2.55*parseFloat(l):parseFloat(l)),a:f?r.default.channel.clamp.a(d?parseFloat(f)/100:parseFloat(f)):1},t)}}},stringify:function(t){var e=t.r,n=t.g,i=t.b,a=t.a;return a<1?"rgba("+r.default.lang.round(e)+", "+r.default.lang.round(n)+", "+r.default.lang.round(i)+", "+r.default.lang.round(a)+")":"rgb("+r.default.lang.round(e)+", "+r.default.lang.round(n)+", "+r.default.lang.round(i)+")"}};e.default=a},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i=n(46),a={re:/^hsla?\(\s*?(-?(?:\d+(?:\.\d+)?|(?:\.\d+))(?:e-?\d+)?(?:deg|grad|rad|turn)?)\s*?(?:,|\s)\s*?(-?(?:\d+(?:\.\d+)?|(?:\.\d+))(?:e-?\d+)?%)\s*?(?:,|\s)\s*?(-?(?:\d+(?:\.\d+)?|(?:\.\d+))(?:e-?\d+)?%)(?:\s*?(?:,|\/)\s*?\+?(-?(?:\d+(?:\.\d+)?|(?:\.\d+))(?:e-?\d+)?(%)?))?\s*?\)$/i,hueRe:/^(.+?)(deg|grad|rad|turn)$/i,_hue2deg:function(t){var e=t.match(a.hueRe);if(e){var n=e[1];switch(e[2]){case"grad":return r.default.channel.clamp.h(.9*parseFloat(n));case"rad":return r.default.channel.clamp.h(180*parseFloat(n)/Math.PI);case"turn":return r.default.channel.clamp.h(360*parseFloat(n))}}return r.default.channel.clamp.h(parseFloat(t))},parse:function(t){var e=t.charCodeAt(0);if(104===e||72===e){var n=t.match(a.re);if(n){var o=n[1],s=n[2],c=n[3],u=n[4],l=n[5];return i.default.set({h:a._hue2deg(o),s:r.default.channel.clamp.s(parseFloat(s)),l:r.default.channel.clamp.l(parseFloat(c)),a:u?r.default.channel.clamp.a(l?parseFloat(u)/100:parseFloat(u)):1},t)}}},stringify:function(t){var e=t.h,n=t.s,i=t.l,a=t.a;return a<1?"hsla("+r.default.lang.round(e)+", "+r.default.lang.round(n)+"%, "+r.default.lang.round(i)+"%, "+a+")":"hsl("+r.default.lang.round(e)+", "+r.default.lang.round(n)+"%, "+r.default.lang.round(i)+"%)"}};e.default=a},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(6);e.default=function(t){return r.default.format.keyword.stringify(r.default.parse(t))}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(6);e.default=function(t){return r.default.format.hex.stringify(r.default.parse(t))}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(6);e.default=function(t){return r.default.format.rgba.stringify(r.default.parse(t))}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(6);e.default=function(t){return r.default.format.hsla.stringify(r.default.parse(t))}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(29);e.default=function(t){return r.default(t,"r")}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(29);e.default=function(t){return r.default(t,"g")}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(29);e.default=function(t){return r.default(t,"b")}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(29);e.default=function(t){return r.default(t,"h")}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(29);e.default=function(t){return r.default(t,"s")}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(29);e.default=function(t){return r.default(t,"l")}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i=n(77);e.default=function(t,e){var n=i.default(t),a=i.default(e),o=Math.max(n,a),s=Math.min(n,a),c=(o+Number.EPSILON)/(s+Number.EPSILON);return r.default.lang.round(r.default.lang.clamp(c,1,10))}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(102);e.default=function(t){return!r.default(t)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(6);e.default=function(t){try{return r.default.parse(t),!0}catch(t){return!1}}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(32);e.default=function(t,e){return r.default(t,"s",e)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(32);e.default=function(t,e){return r.default(t,"s",-e)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(32);e.default=function(t,e){return r.default(t,"l",e)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(32);e.default=function(t,e){return r.default(t,"l",-e)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(32);e.default=function(t){return r.default(t,"h",180)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(53);e.default=function(t){return r.default(t,{s:0})}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(6),i=n(106);e.default=function(t,e){void 0===e&&(e=100);var n=r.default.parse(t);return n.r=255-n.r,n.g=255-n.g,n.b=255-n.b,i.default(n,t,e)}},function(t,e,n){"use strict";Object.defineProperty(e,"__esModule",{value:!0});var r=n(11),i=n(6),a=n(105);e.default=function(t,e){var n,o,s,c=i.default.parse(t),u={};for(var l in e)u[l]=(n=c[l],o=e[l],s=r.default.channel.max[l],o>0?(s-n)*o/100:n*o/100);return a.default(t,u)}},function(t,e,n){var r={"./locale":107,"./locale.js":107};function i(t){var e=a(t);return n(e)}function a(t){if(!n.o(r,t)){var e=new Error("Cannot find module '"+t+"'");throw e.code="MODULE_NOT_FOUND",e}return r[t]}i.keys=function(){return Object.keys(r)},i.resolve=a,t.exports=i,i.id=202},function(t,e,n){t.exports={Graph:n(78),version:n(305)}},function(t,e,n){var r=n(108);t.exports=function(t){return r(t,4)}},function(t,e){t.exports=function(){this.__data__=[],this.size=0}},function(t,e,n){var r=n(56),i=Array.prototype.splice;t.exports=function(t){var e=this.__data__,n=r(e,t);return!(n<0)&&(n==e.length-1?e.pop():i.call(e,n,1),--this.size,!0)}},function(t,e,n){var r=n(56);t.exports=function(t){var e=this.__data__,n=r(e,t);return n<0?void 0:e[n][1]}},function(t,e,n){var r=n(56);t.exports=function(t){return r(this.__data__,t)>-1}},function(t,e,n){var r=n(56);t.exports=function(t,e){var n=this.__data__,i=r(n,t);return i<0?(++this.size,n.push([t,e])):n[i][1]=e,this}},function(t,e,n){var r=n(55);t.exports=function(){this.__data__=new r,this.size=0}},function(t,e){t.exports=function(t){var e=this.__data__,n=e.delete(t);return this.size=e.size,n}},function(t,e){t.exports=function(t){return this.__data__.get(t)}},function(t,e){t.exports=function(t){return this.__data__.has(t)}},function(t,e,n){var r=n(55),i=n(79),a=n(80);t.exports=function(t,e){var n=this.__data__;if(n instanceof r){var o=n.__data__;if(!i||o.length<199)return o.push([t,e]),this.size=++n.size,this;n=this.__data__=new a(o)}return n.set(t,e),this.size=n.size,this}},function(t,e,n){var r=n(39),i=n(219),a=n(14),o=n(110),s=/^\[object .+?Constructor\]$/,c=Function.prototype,u=Object.prototype,l=c.toString,h=u.hasOwnProperty,f=RegExp("^"+l.call(h).replace(/[\\^$.*+?()[\]{}|]/g,"\\$&").replace(/hasOwnProperty|(function).*?(?=\\\()| for .+?(?=\\\])/g,"$1.*?")+"$");t.exports=function(t){return!(!a(t)||i(t))&&(r(t)?f:s).test(o(t))}},function(t,e){var n;n=function(){return this}();try{n=n||new Function("return this")()}catch(t){"object"==typeof window&&(n=window)}t.exports=n},function(t,e,n){var r=n(40),i=Object.prototype,a=i.hasOwnProperty,o=i.toString,s=r?r.toStringTag:void 0;t.exports=function(t){var e=a.call(t,s),n=t[s];try{t[s]=void 0;var r=!0}catch(t){}var i=o.call(t);return r&&(e?t[s]=n:delete t[s]),i}},function(t,e){var n=Object.prototype.toString;t.exports=function(t){return n.call(t)}},function(t,e,n){var r,i=n(220),a=(r=/[^.]+$/.exec(i&&i.keys&&i.keys.IE_PROTO||""))?"Symbol(src)_1."+r:"";t.exports=function(t){return!!a&&a in t}},function(t,e,n){var r=n(19)["__core-js_shared__"];t.exports=r},function(t,e){t.exports=function(t,e){return null==t?void 0:t[e]}},function(t,e,n){var r=n(223),i=n(55),a=n(79);t.exports=function(){this.size=0,this.__data__={hash:new r,map:new(a||i),string:new r}}},function(t,e,n){var r=n(224),i=n(225),a=n(226),o=n(227),s=n(228);function c(t){var e=-1,n=null==t?0:t.length;for(this.clear();++e<n;){var r=t[e];this.set(r[0],r[1])}}c.prototype.clear=r,c.prototype.delete=i,c.prototype.get=a,c.prototype.has=o,c.prototype.set=s,t.exports=c},function(t,e,n){var r=n(57);t.exports=function(){this.__data__=r?r(null):{},this.size=0}},function(t,e){t.exports=function(t){var e=this.has(t)&&delete this.__data__[t];return this.size-=e?1:0,e}},function(t,e,n){var r=n(57),i=Object.prototype.hasOwnProperty;t.exports=function(t){var e=this.__data__;if(r){var n=e[t];return"__lodash_hash_undefined__"===n?void 0:n}return i.call(e,t)?e[t]:void 0}},function(t,e,n){var r=n(57),i=Object.prototype.hasOwnProperty;t.exports=function(t){var e=this.__data__;return r?void 0!==e[t]:i.call(e,t)}},function(t,e,n){var r=n(57);t.exports=function(t,e){var n=this.__data__;return this.size+=this.has(t)?0:1,n[t]=r&&void 0===e?"__lodash_hash_undefined__":e,this}},function(t,e,n){var r=n(58);t.exports=function(t){var e=r(this,t).delete(t);return this.size-=e?1:0,e}},function(t,e){t.exports=function(t){var e=typeof t;return"string"==e||"number"==e||"symbol"==e||"boolean"==e?"__proto__"!==t:null===t}},function(t,e,n){var r=n(58);t.exports=function(t){return r(this,t).get(t)}},function(t,e,n){var r=n(58);t.exports=function(t){return r(this,t).has(t)}},function(t,e,n){var r=n(58);t.exports=function(t,e){var n=r(this,t),i=n.size;return n.set(t,e),this.size+=n.size==i?0:1,this}},function(t,e,n){var r=n(47),i=n(30);t.exports=function(t,e){return t&&r(e,i(e),t)}},function(t,e){t.exports=function(t,e){for(var n=-1,r=Array(t);++n<t;)r[n]=e(n);return r}},function(t,e,n){var r=n(34),i=n(21);t.exports=function(t){return i(t)&&"[object Arguments]"==r(t)}},function(t,e){t.exports=function(){return!1}},function(t,e,n){var r=n(34),i=n(82),a=n(21),o={};o["[object Float32Array]"]=o["[object Float64Array]"]=o["[object Int8Array]"]=o["[object Int16Array]"]=o["[object Int32Array]"]=o["[object Uint8Array]"]=o["[object Uint8ClampedArray]"]=o["[object Uint16Array]"]=o["[object Uint32Array]"]=!0,o["[object Arguments]"]=o["[object Array]"]=o["[object ArrayBuffer]"]=o["[object Boolean]"]=o["[object DataView]"]=o["[object Date]"]=o["[object Error]"]=o["[object Function]"]=o["[object Map]"]=o["[object Number]"]=o["[object Object]"]=o["[object RegExp]"]=o["[object Set]"]=o["[object String]"]=o["[object WeakMap]"]=!1,t.exports=function(t){return a(t)&&i(t.length)&&!!o[r(t)]}},function(t,e,n){var r=n(113)(Object.keys,Object);t.exports=r},function(t,e,n){var r=n(47),i=n(35);t.exports=function(t,e){return t&&r(e,i(e),t)}},function(t,e,n){var r=n(14),i=n(63),a=n(242),o=Object.prototype.hasOwnProperty;t.exports=function(t){if(!r(t))return a(t);var e=i(t),n=[];for(var s in t)("constructor"!=s||!e&&o.call(t,s))&&n.push(s);return n}},function(t,e){t.exports=function(t){var e=[];if(null!=t)for(var n in Object(t))e.push(n);return e}},function(t,e,n){var r=n(47),i=n(85);t.exports=function(t,e){return r(t,i(t),e)}},function(t,e,n){var r=n(47),i=n(118);t.exports=function(t,e){return r(t,i(t),e)}},function(t,e,n){var r=n(120),i=n(118),a=n(35);t.exports=function(t){return r(t,a,i)}},function(t,e,n){var r=n(33)(n(19),"DataView");t.exports=r},function(t,e,n){var r=n(33)(n(19),"Promise");t.exports=r},function(t,e,n){var r=n(33)(n(19),"WeakMap");t.exports=r},function(t,e){var n=Object.prototype.hasOwnProperty;t.exports=function(t){var e=t.length,r=new t.constructor(e);return e&&"string"==typeof t[0]&&n.call(t,"index")&&(r.index=t.index,r.input=t.input),r}},function(t,e,n){var r=n(87),i=n(251),a=n(252),o=n(253),s=n(123);t.exports=function(t,e,n){var c=t.constructor;switch(e){case"[object ArrayBuffer]":return r(t);case"[object Boolean]":case"[object Date]":return new c(+t);case"[object DataView]":return i(t,n);case"[object Float32Array]":case"[object Float64Array]":case"[object Int8Array]":case"[object Int16Array]":case"[object Int32Array]":case"[object Uint8Array]":case"[object Uint8ClampedArray]":case"[object Uint16Array]":case"[object Uint32Array]":return s(t,n);case"[object Map]":return new c;case"[object Number]":case"[object String]":return new c(t);case"[object RegExp]":return a(t);case"[object Set]":return new c;case"[object Symbol]":return o(t)}}},function(t,e,n){var r=n(87);t.exports=function(t,e){var n=e?r(t.buffer):t.buffer;return new t.constructor(n,t.byteOffset,t.byteLength)}},function(t,e){var n=/\w*$/;t.exports=function(t){var e=new t.constructor(t.source,n.exec(t));return e.lastIndex=t.lastIndex,e}},function(t,e,n){var r=n(40),i=r?r.prototype:void 0,a=i?i.valueOf:void 0;t.exports=function(t){return a?Object(a.call(t)):{}}},function(t,e,n){var r=n(255),i=n(62),a=n(83),o=a&&a.isMap,s=o?i(o):r;t.exports=s},function(t,e,n){var r=n(42),i=n(21);t.exports=function(t){return i(t)&&"[object Map]"==r(t)}},function(t,e,n){var r=n(257),i=n(62),a=n(83),o=a&&a.isSet,s=o?i(o):r;t.exports=s},function(t,e,n){var r=n(42),i=n(21);t.exports=function(t){return i(t)&&"[object Set]"==r(t)}},function(t,e){t.exports=function(t){return function(e,n,r){for(var i=-1,a=Object(e),o=r(e),s=o.length;s--;){var c=o[t?s:++i];if(!1===n(a[c],c,a))break}return e}}},function(t,e,n){var r=n(25);t.exports=function(t,e){return function(n,i){if(null==n)return n;if(!r(n))return t(n,i);for(var a=n.length,o=e?a:-1,s=Object(n);(e?o--:++o<a)&&!1!==i(s[o],o,s););return n}}},function(t,e,n){var r=n(65);t.exports=function(t,e){var n=[];return r(t,(function(t,r,i){e(t,r,i)&&n.push(t)})),n}},function(t,e,n){var r=n(262),i=n(270),a=n(134);t.exports=function(t){var e=i(t);return 1==e.length&&e[0][2]?a(e[0][0],e[0][1]):function(n){return n===t||r(n,t,e)}}},function(t,e,n){var r=n(54),i=n(129);t.exports=function(t,e,n,a){var o=n.length,s=o,c=!a;if(null==t)return!s;for(t=Object(t);o--;){var u=n[o];if(c&&u[2]?u[1]!==t[u[0]]:!(u[0]in t))return!1}for(;++o<s;){var l=(u=n[o])[0],h=t[l],f=u[1];if(c&&u[2]){if(void 0===h&&!(l in t))return!1}else{var d=new r;if(a)var p=a(h,f,l,t,e,d);if(!(void 0===p?i(f,h,3,a,d):p))return!1}}return!0}},function(t,e,n){var r=n(54),i=n(130),a=n(267),o=n(269),s=n(42),c=n(5),u=n(41),l=n(49),h="[object Object]",f=Object.prototype.hasOwnProperty;t.exports=function(t,e,n,d,p,y){var g=c(t),m=c(e),v=g?"[object Array]":s(t),b=m?"[object Array]":s(e),x=(v="[object Arguments]"==v?h:v)==h,_=(b="[object Arguments]"==b?h:b)==h,k=v==b;if(k&&u(t)){if(!u(e))return!1;g=!0,x=!1}if(k&&!x)return y||(y=new r),g||l(t)?i(t,e,n,d,p,y):a(t,e,v,n,d,p,y);if(!(1&n)){var w=x&&f.call(t,"__wrapped__"),T=_&&f.call(e,"__wrapped__");if(w||T){var E=w?t.value():t,C=T?e.value():e;return y||(y=new r),p(E,C,n,d,y)}}return!!k&&(y||(y=new r),o(t,e,n,d,p,y))}},function(t,e){t.exports=function(t){return this.__data__.set(t,"__lodash_hash_undefined__"),this}},function(t,e){t.exports=function(t){return this.__data__.has(t)}},function(t,e){t.exports=function(t,e){for(var n=-1,r=null==t?0:t.length;++n<r;)if(e(t[n],n,t))return!0;return!1}},function(t,e,n){var r=n(40),i=n(122),a=n(38),o=n(130),s=n(268),c=n(92),u=r?r.prototype:void 0,l=u?u.valueOf:void 0;t.exports=function(t,e,n,r,u,h,f){switch(n){case"[object DataView]":if(t.byteLength!=e.byteLength||t.byteOffset!=e.byteOffset)return!1;t=t.buffer,e=e.buffer;case"[object ArrayBuffer]":return!(t.byteLength!=e.byteLength||!h(new i(t),new i(e)));case"[object Boolean]":case"[object Date]":case"[object Number]":return a(+t,+e);case"[object Error]":return t.name==e.name&&t.message==e.message;case"[object RegExp]":case"[object String]":return t==e+"";case"[object Map]":var d=s;case"[object Set]":var p=1&r;if(d||(d=c),t.size!=e.size&&!p)return!1;var y=f.get(t);if(y)return y==e;r|=2,f.set(t,e);var g=o(d(t),d(e),r,u,h,f);return f.delete(t),g;case"[object Symbol]":if(l)return l.call(t)==l.call(e)}return!1}},function(t,e){t.exports=function(t){var e=-1,n=Array(t.size);return t.forEach((function(t,r){n[++e]=[r,t]})),n}},function(t,e,n){var r=n(119),i=Object.prototype.hasOwnProperty;t.exports=function(t,e,n,a,o,s){var c=1&n,u=r(t),l=u.length;if(l!=r(e).length&&!c)return!1;for(var h=l;h--;){var f=u[h];if(!(c?f in e:i.call(e,f)))return!1}var d=s.get(t),p=s.get(e);if(d&&p)return d==e&&p==t;var y=!0;s.set(t,e),s.set(e,t);for(var g=c;++h<l;){var m=t[f=u[h]],v=e[f];if(a)var b=c?a(v,m,f,e,t,s):a(m,v,f,t,e,s);if(!(void 0===b?m===v||o(m,v,n,a,s):b)){y=!1;break}g||(g="constructor"==f)}if(y&&!g){var x=t.constructor,_=e.constructor;x==_||!("constructor"in t)||!("constructor"in e)||"function"==typeof x&&x instanceof x&&"function"==typeof _&&_ instanceof _||(y=!1)}return s.delete(t),s.delete(e),y}},function(t,e,n){var r=n(133),i=n(30);t.exports=function(t){for(var e=i(t),n=e.length;n--;){var a=e[n],o=t[a];e[n]=[a,o,r(o)]}return e}},function(t,e,n){var r=n(129),i=n(272),a=n(136),o=n(93),s=n(133),c=n(134),u=n(50);t.exports=function(t,e){return o(t)&&s(e)?c(u(t),e):function(n){var o=i(n,t);return void 0===o&&o===e?a(n,t):r(e,o,3)}}},function(t,e,n){var r=n(66);t.exports=function(t,e,n){var i=null==t?void 0:r(t,e);return void 0===i?n:i}},function(t,e,n){var r=n(274),i=/[^.[\]]+|\[(?:(-?\d+(?:\.\d+)?)|(["'])((?:(?!\2)[^\\]|\\.)*?)\2)\]|(?=(?:\.|\[\])(?:\.|\[\]|$))/g,a=/\\(\\)?/g,o=r((function(t){var e=[];return 46===t.charCodeAt(0)&&e.push(""),t.replace(i,(function(t,n,r,i){e.push(r?i.replace(a,"$1"):n||t)})),e}));t.exports=o},function(t,e,n){var r=n(275);t.exports=function(t){var e=r(t,(function(t){return 500===n.size&&n.clear(),t})),n=e.cache;return e}},function(t,e,n){var r=n(80);function i(t,e){if("function"!=typeof t||null!=e&&"function"!=typeof e)throw new TypeError("Expected a function");var n=function(){var r=arguments,i=e?e.apply(this,r):r[0],a=n.cache;if(a.has(i))return a.get(i);var o=t.apply(this,r);return n.cache=a.set(i,o)||a,o};return n.cache=new(i.Cache||r),n}i.Cache=r,t.exports=i},function(t,e,n){var r=n(40),i=n(68),a=n(5),o=n(43),s=r?r.prototype:void 0,c=s?s.toString:void 0;t.exports=function t(e){if("string"==typeof e)return e;if(a(e))return i(e,t)+"";if(o(e))return c?c.call(e):"";var n=e+"";return"0"==n&&1/e==-1/0?"-0":n}},function(t,e){t.exports=function(t,e){return null!=t&&e in Object(t)}},function(t,e,n){var r=n(138),i=n(279),a=n(93),o=n(50);t.exports=function(t){return a(t)?r(o(t)):i(t)}},function(t,e,n){var r=n(66);t.exports=function(t){return function(e){return r(e,t)}}},function(t,e){var n=Object.prototype.hasOwnProperty;t.exports=function(t,e){return null!=t&&n.call(t,e)}},function(t,e,n){var r=n(84),i=n(42),a=n(48),o=n(5),s=n(25),c=n(41),u=n(63),l=n(49),h=Object.prototype.hasOwnProperty;t.exports=function(t){if(null==t)return!0;if(s(t)&&(o(t)||"string"==typeof t||"function"==typeof t.splice||c(t)||l(t)||a(t)))return!t.length;var e=i(t);if("[object Map]"==e||"[object Set]"==e)return!t.size;if(u(t))return!r(t).length;for(var n in t)if(h.call(t,n))return!1;return!0}},function(t,e){t.exports=function(t,e,n,r){var i=-1,a=null==t?0:t.length;for(r&&a&&(n=t[++i]);++i<a;)n=e(n,t[i],i,t);return n}},function(t,e){t.exports=function(t,e,n,r,i){return i(t,(function(t,i,a){n=r?(r=!1,t):e(n,t,i,a)})),n}},function(t,e,n){var r=n(84),i=n(42),a=n(25),o=n(285),s=n(286);t.exports=function(t){if(null==t)return 0;if(a(t))return o(t)?s(t):t.length;var e=i(t);return"[object Map]"==e||"[object Set]"==e?t.size:r(t).length}},function(t,e,n){var r=n(34),i=n(5),a=n(21);t.exports=function(t){return"string"==typeof t||!i(t)&&a(t)&&"[object String]"==r(t)}},function(t,e,n){var r=n(287),i=n(288),a=n(289);t.exports=function(t){return i(t)?a(t):r(t)}},function(t,e,n){var r=n(138)("length");t.exports=r},function(t,e){var n=RegExp("[\\u200d\\ud800-\\udfff\\u0300-\\u036f\\ufe20-\\ufe2f\\u20d0-\\u20ff\\ufe0e\\ufe0f]");t.exports=function(t){return n.test(t)}},function(t,e){var n="[\\ud800-\\udfff]",r="[\\u0300-\\u036f\\ufe20-\\ufe2f\\u20d0-\\u20ff]",i="\\ud83c[\\udffb-\\udfff]",a="[^\\ud800-\\udfff]",o="(?:\\ud83c[\\udde6-\\uddff]){2}",s="[\\ud800-\\udbff][\\udc00-\\udfff]",c="(?:"+r+"|"+i+")"+"?",u="[\\ufe0e\\ufe0f]?"+c+("(?:\\u200d(?:"+[a,o,s].join("|")+")[\\ufe0e\\ufe0f]?"+c+")*"),l="(?:"+[a+r+"?",r,o,s,n].join("|")+")",h=RegExp(i+"(?="+i+")|"+l+u,"g");t.exports=function(t){for(var e=h.lastIndex=0;h.test(t);)++e;return e}},function(t,e,n){var r=n(81),i=n(125),a=n(90),o=n(26),s=n(64),c=n(5),u=n(41),l=n(39),h=n(14),f=n(49);t.exports=function(t,e,n){var d=c(t),p=d||u(t)||f(t);if(e=o(e,4),null==n){var y=t&&t.constructor;n=p?d?new y:[]:h(t)&&l(y)?i(s(t)):{}}return(p?r:a)(t,(function(t,r,i){return e(n,t,r,i)})),n}},function(t,e,n){var r=n(95),i=n(69),a=n(296),o=n(146),s=i((function(t){return a(r(t,1,o,!0))}));t.exports=s},function(t,e,n){var r=n(40),i=n(48),a=n(5),o=r?r.isConcatSpreadable:void 0;t.exports=function(t){return a(t)||i(t)||!!(o&&t&&t[o])}},function(t,e){t.exports=function(t,e,n){switch(n.length){case 0:return t.call(e);case 1:return t.call(e,n[0]);case 2:return t.call(e,n[0],n[1]);case 3:return t.call(e,n[0],n[1],n[2])}return t.apply(e,n)}},function(t,e,n){var r=n(88),i=n(111),a=n(36),o=i?function(t,e){return i(t,"toString",{configurable:!0,enumerable:!1,value:r(e),writable:!0})}:a;t.exports=o},function(t,e){var n=Date.now;t.exports=function(t){var e=0,r=0;return function(){var i=n(),a=16-(i-r);if(r=i,a>0){if(++e>=800)return arguments[0]}else e=0;return t.apply(void 0,arguments)}}},function(t,e,n){var r=n(131),i=n(297),a=n(301),o=n(132),s=n(302),c=n(92);t.exports=function(t,e,n){var u=-1,l=i,h=t.length,f=!0,d=[],p=d;if(n)f=!1,l=a;else if(h>=200){var y=e?null:s(t);if(y)return c(y);f=!1,l=o,p=new r}else p=e?[]:d;t:for(;++u<h;){var g=t[u],m=e?e(g):g;if(g=n||0!==g?g:0,f&&m==m){for(var v=p.length;v--;)if(p[v]===m)continue t;e&&p.push(m),d.push(g)}else l(p,m,n)||(p!==d&&p.push(m),d.push(g))}return d}},function(t,e,n){var r=n(298);t.exports=function(t,e){return!!(null==t?0:t.length)&&r(t,e,0)>-1}},function(t,e,n){var r=n(145),i=n(299),a=n(300);t.exports=function(t,e,n){return e==e?a(t,e,n):r(t,i,n)}},function(t,e){t.exports=function(t){return t!=t}},function(t,e){t.exports=function(t,e,n){for(var r=n-1,i=t.length;++r<i;)if(t[r]===e)return r;return-1}},function(t,e){t.exports=function(t,e,n){for(var r=-1,i=null==t?0:t.length;++r<i;)if(n(e,t[r]))return!0;return!1}},function(t,e,n){var r=n(121),i=n(303),a=n(92),o=r&&1/a(new r([,-0]))[1]==1/0?function(t){return new r(t)}:i;t.exports=o},function(t,e){t.exports=function(){}},function(t,e,n){var r=n(68);t.exports=function(t,e){return r(e,(function(e){return t[e]}))}},function(t,e){t.exports="2.1.8"},function(t,e,n){var r=n(13),i=n(78);function a(t){return r.map(t.nodes(),(function(e){var n=t.node(e),i=t.parent(e),a={v:e};return r.isUndefined(n)||(a.value=n),r.isUndefined(i)||(a.parent=i),a}))}function o(t){return r.map(t.edges(),(function(e){var n=t.edge(e),i={v:e.v,w:e.w};return r.isUndefined(e.name)||(i.name=e.name),r.isUndefined(n)||(i.value=n),i}))}t.exports={write:function(t){var e={options:{directed:t.isDirected(),multigraph:t.isMultigraph(),compound:t.isCompound()},nodes:a(t),edges:o(t)};r.isUndefined(t.graph())||(e.value=r.clone(t.graph()));return e},read:function(t){var e=new i(t.options).setGraph(t.value);return r.each(t.nodes,(function(t){e.setNode(t.v,t.value),t.parent&&e.setParent(t.v,t.parent)})),r.each(t.edges,(function(t){e.setEdge({v:t.v,w:t.w,name:t.name},t.value)})),e}}},function(t,e,n){t.exports={components:n(308),dijkstra:n(148),dijkstraAll:n(309),findCycles:n(310),floydWarshall:n(311),isAcyclic:n(312),postorder:n(313),preorder:n(314),prim:n(315),tarjan:n(150),topsort:n(151)}},function(t,e,n){var r=n(13);t.exports=function(t){var e,n={},i=[];function a(i){r.has(n,i)||(n[i]=!0,e.push(i),r.each(t.successors(i),a),r.each(t.predecessors(i),a))}return r.each(t.nodes(),(function(t){e=[],a(t),e.length&&i.push(e)})),i}},function(t,e,n){var r=n(148),i=n(13);t.exports=function(t,e,n){return i.transform(t.nodes(),(function(i,a){i[a]=r(t,a,e,n)}),{})}},function(t,e,n){var r=n(13),i=n(150);t.exports=function(t){return r.filter(i(t),(function(e){return e.length>1||1===e.length&&t.hasEdge(e[0],e[0])}))}},function(t,e,n){var r=n(13);t.exports=function(t,e,n){return function(t,e,n){var r={},i=t.nodes();return i.forEach((function(t){r[t]={},r[t][t]={distance:0},i.forEach((function(e){t!==e&&(r[t][e]={distance:Number.POSITIVE_INFINITY})})),n(t).forEach((function(n){var i=n.v===t?n.w:n.v,a=e(n);r[t][i]={distance:a,predecessor:t}}))})),i.forEach((function(t){var e=r[t];i.forEach((function(n){var a=r[n];i.forEach((function(n){var r=a[t],i=e[n],o=a[n],s=r.distance+i.distance;s<o.distance&&(o.distance=s,o.predecessor=i.predecessor)}))}))})),r}(t,e||i,n||function(e){return t.outEdges(e)})};var i=r.constant(1)},function(t,e,n){var r=n(151);t.exports=function(t){try{r(t)}catch(t){if(t instanceof r.CycleException)return!1;throw t}return!0}},function(t,e,n){var r=n(152);t.exports=function(t,e){return r(t,e,"post")}},function(t,e,n){var r=n(152);t.exports=function(t,e){return r(t,e,"pre")}},function(t,e,n){var r=n(13),i=n(78),a=n(149);t.exports=function(t,e){var n,o=new i,s={},c=new a;function u(t){var r=t.v===n?t.w:t.v,i=c.priority(r);if(void 0!==i){var a=e(t);a<i&&(s[r]=n,c.decrease(r,a))}}if(0===t.nodeCount())return o;r.each(t.nodes(),(function(t){c.add(t,Number.POSITIVE_INFINITY),o.setNode(t)})),c.decrease(t.nodes()[0],0);var l=!1;for(;c.size()>0;){if(n=c.removeMin(),r.has(s,n))o.setEdge(n,s[n]);else{if(l)throw new Error("Input graph is not connected: "+t);l=!0}t.nodeEdges(n).forEach(u)}return o}},function(t,e,n){var r;try{r=n(3)}catch(t){}r||(r=window.graphlib),t.exports=r},function(t,e,n){"use strict";var r=n(4),i=n(352),a=n(355),o=n(356),s=n(9).normalizeRanks,c=n(358),u=n(9).removeEmptyRanks,l=n(359),h=n(360),f=n(361),d=n(362),p=n(371),y=n(9),g=n(20).Graph;t.exports=function(t,e){var n=e&&e.debugTiming?y.time:y.notime;n("layout",(function(){var e=n("  buildLayoutGraph",(function(){return function(t){var e=new g({multigraph:!0,compound:!0}),n=C(t.graph());return e.setGraph(r.merge({},v,E(n,m),r.pick(n,b))),r.forEach(t.nodes(),(function(n){var i=C(t.node(n));e.setNode(n,r.defaults(E(i,x),_)),e.setParent(n,t.parent(n))})),r.forEach(t.edges(),(function(n){var i=C(t.edge(n));e.setEdge(n,r.merge({},w,E(i,k),r.pick(i,T)))})),e}(t)}));n("  runLayout",(function(){!function(t,e){e("    makeSpaceForEdgeLabels",(function(){!function(t){var e=t.graph();e.ranksep/=2,r.forEach(t.edges(),(function(n){var r=t.edge(n);r.minlen*=2,"c"!==r.labelpos.toLowerCase()&&("TB"===e.rankdir||"BT"===e.rankdir?r.width+=r.labeloffset:r.height+=r.labeloffset)}))}(t)})),e("    removeSelfEdges",(function(){!function(t){r.forEach(t.edges(),(function(e){if(e.v===e.w){var n=t.node(e.v);n.selfEdges||(n.selfEdges=[]),n.selfEdges.push({e:e,label:t.edge(e)}),t.removeEdge(e)}}))}(t)})),e("    acyclic",(function(){i.run(t)})),e("    nestingGraph.run",(function(){l.run(t)})),e("    rank",(function(){o(y.asNonCompoundGraph(t))})),e("    injectEdgeLabelProxies",(function(){!function(t){r.forEach(t.edges(),(function(e){var n=t.edge(e);if(n.width&&n.height){var r=t.node(e.v),i={rank:(t.node(e.w).rank-r.rank)/2+r.rank,e:e};y.addDummyNode(t,"edge-proxy",i,"_ep")}}))}(t)})),e("    removeEmptyRanks",(function(){u(t)})),e("    nestingGraph.cleanup",(function(){l.cleanup(t)})),e("    normalizeRanks",(function(){s(t)})),e("    assignRankMinMax",(function(){!function(t){var e=0;r.forEach(t.nodes(),(function(n){var i=t.node(n);i.borderTop&&(i.minRank=t.node(i.borderTop).rank,i.maxRank=t.node(i.borderBottom).rank,e=r.max(e,i.maxRank))})),t.graph().maxRank=e}(t)})),e("    removeEdgeLabelProxies",(function(){!function(t){r.forEach(t.nodes(),(function(e){var n=t.node(e);"edge-proxy"===n.dummy&&(t.edge(n.e).labelRank=n.rank,t.removeNode(e))}))}(t)})),e("    normalize.run",(function(){a.run(t)})),e("    parentDummyChains",(function(){c(t)})),e("    addBorderSegments",(function(){h(t)})),e("    order",(function(){d(t)})),e("    insertSelfEdges",(function(){!function(t){var e=y.buildLayerMatrix(t);r.forEach(e,(function(e){var n=0;r.forEach(e,(function(e,i){var a=t.node(e);a.order=i+n,r.forEach(a.selfEdges,(function(e){y.addDummyNode(t,"selfedge",{width:e.label.width,height:e.label.height,rank:a.rank,order:i+ ++n,e:e.e,label:e.label},"_se")})),delete a.selfEdges}))}))}(t)})),e("    adjustCoordinateSystem",(function(){f.adjust(t)})),e("    position",(function(){p(t)})),e("    positionSelfEdges",(function(){!function(t){r.forEach(t.nodes(),(function(e){var n=t.node(e);if("selfedge"===n.dummy){var r=t.node(n.e.v),i=r.x+r.width/2,a=r.y,o=n.x-i,s=r.height/2;t.setEdge(n.e,n.label),t.removeNode(e),n.label.points=[{x:i+2*o/3,y:a-s},{x:i+5*o/6,y:a-s},{x:i+o,y:a},{x:i+5*o/6,y:a+s},{x:i+2*o/3,y:a+s}],n.label.x=n.x,n.label.y=n.y}}))}(t)})),e("    removeBorderNodes",(function(){!function(t){r.forEach(t.nodes(),(function(e){if(t.children(e).length){var n=t.node(e),i=t.node(n.borderTop),a=t.node(n.borderBottom),o=t.node(r.last(n.borderLeft)),s=t.node(r.last(n.borderRight));n.width=Math.abs(s.x-o.x),n.height=Math.abs(a.y-i.y),n.x=o.x+n.width/2,n.y=i.y+n.height/2}})),r.forEach(t.nodes(),(function(e){"border"===t.node(e).dummy&&t.removeNode(e)}))}(t)})),e("    normalize.undo",(function(){a.undo(t)})),e("    fixupEdgeLabelCoords",(function(){!function(t){r.forEach(t.edges(),(function(e){var n=t.edge(e);if(r.has(n,"x"))switch("l"!==n.labelpos&&"r"!==n.labelpos||(n.width-=n.labeloffset),n.labelpos){case"l":n.x-=n.width/2+n.labeloffset;break;case"r":n.x+=n.width/2+n.labeloffset}}))}(t)})),e("    undoCoordinateSystem",(function(){f.undo(t)})),e("    translateGraph",(function(){!function(t){var e=Number.POSITIVE_INFINITY,n=0,i=Number.POSITIVE_INFINITY,a=0,o=t.graph(),s=o.marginx||0,c=o.marginy||0;function u(t){var r=t.x,o=t.y,s=t.width,c=t.height;e=Math.min(e,r-s/2),n=Math.max(n,r+s/2),i=Math.min(i,o-c/2),a=Math.max(a,o+c/2)}r.forEach(t.nodes(),(function(e){u(t.node(e))})),r.forEach(t.edges(),(function(e){var n=t.edge(e);r.has(n,"x")&&u(n)})),e-=s,i-=c,r.forEach(t.nodes(),(function(n){var r=t.node(n);r.x-=e,r.y-=i})),r.forEach(t.edges(),(function(n){var a=t.edge(n);r.forEach(a.points,(function(t){t.x-=e,t.y-=i})),r.has(a,"x")&&(a.x-=e),r.has(a,"y")&&(a.y-=i)})),o.width=n-e+s,o.height=a-i+c}(t)})),e("    assignNodeIntersects",(function(){!function(t){r.forEach(t.edges(),(function(e){var n,r,i=t.edge(e),a=t.node(e.v),o=t.node(e.w);i.points?(n=i.points[0],r=i.points[i.points.length-1]):(i.points=[],n=o,r=a),i.points.unshift(y.intersectRect(a,n)),i.points.push(y.intersectRect(o,r))}))}(t)})),e("    reversePoints",(function(){!function(t){r.forEach(t.edges(),(function(e){var n=t.edge(e);n.reversed&&n.points.reverse()}))}(t)})),e("    acyclic.undo",(function(){i.undo(t)}))}(e,n)})),n("  updateInputGraph",(function(){!function(t,e){r.forEach(t.nodes(),(function(n){var r=t.node(n),i=e.node(n);r&&(r.x=i.x,r.y=i.y,e.children(n).length&&(r.width=i.width,r.height=i.height))})),r.forEach(t.edges(),(function(n){var i=t.edge(n),a=e.edge(n);i.points=a.points,r.has(a,"x")&&(i.x=a.x,i.y=a.y)})),t.graph().width=e.graph().width,t.graph().height=e.graph().height}(t,e)}))}))};var m=["nodesep","edgesep","ranksep","marginx","marginy"],v={ranksep:50,edgesep:20,nodesep:50,rankdir:"tb"},b=["acyclicer","ranker","rankdir","align"],x=["width","height"],_={width:0,height:0},k=["minlen","weight","width","height","labeloffset"],w={minlen:1,weight:1,width:0,height:0,labeloffset:10,labelpos:"r"},T=["labelpos"];function E(t,e){return r.mapValues(r.pick(t,e),Number)}function C(t){var e={};return r.forEach(t,(function(t,n){e[n.toLowerCase()]=t})),e}},function(t,e,n){var r=n(108);t.exports=function(t){return r(t,5)}},function(t,e,n){var r=n(320)(n(321));t.exports=r},function(t,e,n){var r=n(26),i=n(25),a=n(30);t.exports=function(t){return function(e,n,o){var s=Object(e);if(!i(e)){var c=r(n,3);e=a(e),n=function(t){return c(s[t],t,s)}}var u=t(e,n,o);return u>-1?s[c?e[u]:u]:void 0}}},function(t,e,n){var r=n(145),i=n(26),a=n(322),o=Math.max;t.exports=function(t,e,n){var s=null==t?0:t.length;if(!s)return-1;var c=null==n?0:a(n);return c<0&&(c=o(s+c,0)),r(t,i(e,3),c)}},function(t,e,n){var r=n(155);t.exports=function(t){var e=r(t),n=e%1;return e==e?n?e-n:e:0}},function(t,e,n){var r=n(324),i=n(14),a=n(43),o=/^[-+]0x[0-9a-f]+$/i,s=/^0b[01]+$/i,c=/^0o[0-7]+$/i,u=parseInt;t.exports=function(t){if("number"==typeof t)return t;if(a(t))return NaN;if(i(t)){var e="function"==typeof t.valueOf?t.valueOf():t;t=i(e)?e+"":e}if("string"!=typeof t)return 0===t?t:+t;t=r(t);var n=s.test(t);return n||c.test(t)?u(t.slice(2),n?2:8):o.test(t)?NaN:+t}},function(t,e,n){var r=n(325),i=/^\s+/;t.exports=function(t){return t?t.slice(0,r(t)+1).replace(i,""):t}},function(t,e){var n=/\s/;t.exports=function(t){for(var e=t.length;e--&&n.test(t.charAt(e)););return e}},function(t,e,n){var r=n(91),i=n(127),a=n(35);t.exports=function(t,e){return null==t?t:r(t,i(e),a)}},function(t,e){t.exports=function(t){var e=null==t?0:t.length;return e?t[e-1]:void 0}},function(t,e,n){var r=n(60),i=n(90),a=n(26);t.exports=function(t,e){var n={};return e=a(e,3),i(t,(function(t,i,a){r(n,i,e(t,i,a))})),n}},function(t,e,n){var r=n(96),i=n(330),a=n(36);t.exports=function(t){return t&&t.length?r(t,a,i):void 0}},function(t,e){t.exports=function(t,e){return t>e}},function(t,e,n){var r=n(332),i=n(335)((function(t,e,n){r(t,e,n)}));t.exports=i},function(t,e,n){var r=n(54),i=n(157),a=n(91),o=n(333),s=n(14),c=n(35),u=n(159);t.exports=function t(e,n,l,h,f){e!==n&&a(n,(function(a,c){if(f||(f=new r),s(a))o(e,n,c,l,t,h,f);else{var d=h?h(u(e,c),a,c+"",e,n,f):void 0;void 0===d&&(d=a),i(e,c,d)}}),c)}},function(t,e,n){var r=n(157),i=n(114),a=n(123),o=n(115),s=n(124),c=n(48),u=n(5),l=n(146),h=n(41),f=n(39),d=n(14),p=n(158),y=n(49),g=n(159),m=n(334);t.exports=function(t,e,n,v,b,x,_){var k=g(t,n),w=g(e,n),T=_.get(w);if(T)r(t,n,T);else{var E=x?x(k,w,n+"",t,e,_):void 0,C=void 0===E;if(C){var S=u(w),A=!S&&h(w),M=!S&&!A&&y(w);E=w,S||A||M?u(k)?E=k:l(k)?E=o(k):A?(C=!1,E=i(w,!0)):M?(C=!1,E=a(w,!0)):E=[]:p(w)||c(w)?(E=k,c(k)?E=m(k):d(k)&&!f(k)||(E=s(w))):C=!1}C&&(_.set(w,E),b(E,w,v,x,_),_.delete(w)),r(t,n,E)}}},function(t,e,n){var r=n(47),i=n(35);t.exports=function(t){return r(t,i(t))}},function(t,e,n){var r=n(69),i=n(70);t.exports=function(t){return r((function(e,n){var r=-1,a=n.length,o=a>1?n[a-1]:void 0,s=a>2?n[2]:void 0;for(o=t.length>3&&"function"==typeof o?(a--,o):void 0,s&&i(n[0],n[1],s)&&(o=a<3?void 0:o,a=1),e=Object(e);++r<a;){var c=n[r];c&&t(e,c,r,o)}return e}))}},function(t,e,n){var r=n(96),i=n(160),a=n(36);t.exports=function(t){return t&&t.length?r(t,a,i):void 0}},function(t,e,n){var r=n(96),i=n(26),a=n(160);t.exports=function(t,e){return t&&t.length?r(t,i(e,2),a):void 0}},function(t,e,n){var r=n(19);t.exports=function(){return r.Date.now()}},function(t,e,n){var r=n(340),i=n(136);t.exports=function(t,e){return r(t,e,(function(e,n){return i(t,n)}))}},function(t,e,n){var r=n(66),i=n(341),a=n(67);t.exports=function(t,e,n){for(var o=-1,s=e.length,c={};++o<s;){var u=e[o],l=r(t,u);n(l,u)&&i(c,a(u,t),l)}return c}},function(t,e,n){var r=n(59),i=n(67),a=n(61),o=n(14),s=n(50);t.exports=function(t,e,n,c){if(!o(t))return t;for(var u=-1,l=(e=i(e,t)).length,h=l-1,f=t;null!=f&&++u<l;){var d=s(e[u]),p=n;if("__proto__"===d||"constructor"===d||"prototype"===d)return t;if(u!=h){var y=f[d];void 0===(p=c?c(y,d,f):void 0)&&(p=o(y)?y:a(e[u+1])?[]:{})}r(f,d,p),f=f[d]}return t}},function(t,e,n){var r=n(156),i=n(143),a=n(144);t.exports=function(t){return a(i(t,void 0,r),t+"")}},function(t,e,n){var r=n(344),i=n(70),a=n(155);t.exports=function(t){return function(e,n,o){return o&&"number"!=typeof o&&i(e,n,o)&&(n=o=void 0),e=a(e),void 0===n?(n=e,e=0):n=a(n),o=void 0===o?e<n?1:-1:a(o),r(e,n,o,t)}}},function(t,e){var n=Math.ceil,r=Math.max;t.exports=function(t,e,i,a){for(var o=-1,s=r(n((e-t)/(i||1)),0),c=Array(s);s--;)c[a?s:++o]=t,t+=i;return c}},function(t,e,n){var r=n(95),i=n(346),a=n(69),o=n(70),s=a((function(t,e){if(null==t)return[];var n=e.length;return n>1&&o(t,e[0],e[1])?e=[]:n>2&&o(e[0],e[1],e[2])&&(e=[e[0]]),i(t,r(e,1),[])}));t.exports=s},function(t,e,n){var r=n(68),i=n(66),a=n(26),o=n(141),s=n(347),c=n(62),u=n(348),l=n(36),h=n(5);t.exports=function(t,e,n){e=e.length?r(e,(function(t){return h(t)?function(e){return i(e,1===t.length?t[0]:t)}:t})):[l];var f=-1;e=r(e,c(a));var d=o(t,(function(t,n,i){return{criteria:r(e,(function(e){return e(t)})),index:++f,value:t}}));return s(d,(function(t,e){return u(t,e,n)}))}},function(t,e){t.exports=function(t,e){var n=t.length;for(t.sort(e);n--;)t[n]=t[n].value;return t}},function(t,e,n){var r=n(349);t.exports=function(t,e,n){for(var i=-1,a=t.criteria,o=e.criteria,s=a.length,c=n.length;++i<s;){var u=r(a[i],o[i]);if(u)return i>=c?u:u*("desc"==n[i]?-1:1)}return t.index-e.index}},function(t,e,n){var r=n(43);t.exports=function(t,e){if(t!==e){var n=void 0!==t,i=null===t,a=t==t,o=r(t),s=void 0!==e,c=null===e,u=e==e,l=r(e);if(!c&&!l&&!o&&t>e||o&&s&&u&&!c&&!l||i&&s&&u||!n&&u||!a)return 1;if(!i&&!o&&!l&&t<e||l&&n&&a&&!i&&!o||c&&n&&a||!s&&a||!u)return-1}return 0}},function(t,e,n){var r=n(59),i=n(351);t.exports=function(t,e){return i(t||[],e||[],r)}},function(t,e){t.exports=function(t,e,n){for(var r=-1,i=t.length,a=e.length,o={};++r<i;){var s=r<a?e[r]:void 0;n(o,t[r],s)}return o}},function(t,e,n){"use strict";var r=n(4),i=n(353);t.exports={run:function(t){var e="greedy"===t.graph().acyclicer?i(t,function(t){return function(e){return t.edge(e).weight}}(t)):function(t){var e=[],n={},i={};function a(o){r.has(i,o)||(i[o]=!0,n[o]=!0,r.forEach(t.outEdges(o),(function(t){r.has(n,t.w)?e.push(t):a(t.w)})),delete n[o])}return r.forEach(t.nodes(),a),e}(t);r.forEach(e,(function(e){var n=t.edge(e);t.removeEdge(e),n.forwardName=e.name,n.reversed=!0,t.setEdge(e.w,e.v,n,r.uniqueId("rev"))}))},undo:function(t){r.forEach(t.edges(),(function(e){var n=t.edge(e);if(n.reversed){t.removeEdge(e);var r=n.forwardName;delete n.reversed,delete n.forwardName,t.setEdge(e.w,e.v,n,r)}}))}}},function(t,e,n){var r=n(4),i=n(20).Graph,a=n(354);t.exports=function(t,e){if(t.nodeCount()<=1)return[];var n=function(t,e){var n=new i,o=0,s=0;r.forEach(t.nodes(),(function(t){n.setNode(t,{v:t,in:0,out:0})})),r.forEach(t.edges(),(function(t){var r=n.edge(t.v,t.w)||0,i=e(t),a=r+i;n.setEdge(t.v,t.w,a),s=Math.max(s,n.node(t.v).out+=i),o=Math.max(o,n.node(t.w).in+=i)}));var u=r.range(s+o+3).map((function(){return new a})),l=o+1;return r.forEach(n.nodes(),(function(t){c(u,l,n.node(t))})),{graph:n,buckets:u,zeroIdx:l}}(t,e||o),u=function(t,e,n){var r,i=[],a=e[e.length-1],o=e[0];for(;t.nodeCount();){for(;r=o.dequeue();)s(t,e,n,r);for(;r=a.dequeue();)s(t,e,n,r);if(t.nodeCount())for(var c=e.length-2;c>0;--c)if(r=e[c].dequeue()){i=i.concat(s(t,e,n,r,!0));break}}return i}(n.graph,n.buckets,n.zeroIdx);return r.flatten(r.map(u,(function(e){return t.outEdges(e.v,e.w)})),!0)};var o=r.constant(1);function s(t,e,n,i,a){var o=a?[]:void 0;return r.forEach(t.inEdges(i.v),(function(r){var i=t.edge(r),s=t.node(r.v);a&&o.push({v:r.v,w:r.w}),s.out-=i,c(e,n,s)})),r.forEach(t.outEdges(i.v),(function(r){var i=t.edge(r),a=r.w,o=t.node(a);o.in-=i,c(e,n,o)})),t.removeNode(i.v),o}function c(t,e,n){n.out?n.in?t[n.out-n.in+e].enqueue(n):t[t.length-1].enqueue(n):t[0].enqueue(n)}},function(t,e){function n(){var t={};t._next=t._prev=t,this._sentinel=t}function r(t){t._prev._next=t._next,t._next._prev=t._prev,delete t._next,delete t._prev}function i(t,e){if("_next"!==t&&"_prev"!==t)return e}t.exports=n,n.prototype.dequeue=function(){var t=this._sentinel,e=t._prev;if(e!==t)return r(e),e},n.prototype.enqueue=function(t){var e=this._sentinel;t._prev&&t._next&&r(t),t._next=e._next,e._next._prev=t,e._next=t,t._prev=e},n.prototype.toString=function(){for(var t=[],e=this._sentinel,n=e._prev;n!==e;)t.push(JSON.stringify(n,i)),n=n._prev;return"["+t.join(", ")+"]"}},function(t,e,n){"use strict";var r=n(4),i=n(9);t.exports={run:function(t){t.graph().dummyChains=[],r.forEach(t.edges(),(function(e){!function(t,e){var n,r,a,o=e.v,s=t.node(o).rank,c=e.w,u=t.node(c).rank,l=e.name,h=t.edge(e),f=h.labelRank;if(u===s+1)return;for(t.removeEdge(e),a=0,++s;s<u;++a,++s)h.points=[],r={width:0,height:0,edgeLabel:h,edgeObj:e,rank:s},n=i.addDummyNode(t,"edge",r,"_d"),s===f&&(r.width=h.width,r.height=h.height,r.dummy="edge-label",r.labelpos=h.labelpos),t.setEdge(o,n,{weight:h.weight},l),0===a&&t.graph().dummyChains.push(n),o=n;t.setEdge(o,c,{weight:h.weight},l)}(t,e)}))},undo:function(t){r.forEach(t.graph().dummyChains,(function(e){var n,r=t.node(e),i=r.edgeLabel;for(t.setEdge(r.edgeObj,i);r.dummy;)n=t.successors(e)[0],t.removeNode(e),i.points.push({x:r.x,y:r.y}),"edge-label"===r.dummy&&(i.x=r.x,i.y=r.y,i.width=r.width,i.height=r.height),e=n,r=t.node(e)}))}}},function(t,e,n){"use strict";var r=n(71).longestPath,i=n(164),a=n(357);t.exports=function(t){switch(t.graph().ranker){case"network-simplex":s(t);break;case"tight-tree":!function(t){r(t),i(t)}(t);break;case"longest-path":o(t);break;default:s(t)}};var o=r;function s(t){a(t)}},function(t,e,n){"use strict";var r=n(4),i=n(164),a=n(71).slack,o=n(71).longestPath,s=n(20).alg.preorder,c=n(20).alg.postorder,u=n(9).simplify;function l(t){t=u(t),o(t);var e,n=i(t);for(d(n),h(n,t);e=y(n);)m(n,t,e,g(n,t,e))}function h(t,e){var n=c(t,t.nodes());n=n.slice(0,n.length-1),r.forEach(n,(function(n){!function(t,e,n){var r=t.node(n).parent;t.edge(n,r).cutvalue=f(t,e,n)}(t,e,n)}))}function f(t,e,n){var i=t.node(n).parent,a=!0,o=e.edge(n,i),s=0;return o||(a=!1,o=e.edge(i,n)),s=o.weight,r.forEach(e.nodeEdges(n),(function(r){var o,c,u=r.v===n,l=u?r.w:r.v;if(l!==i){var h=u===a,f=e.edge(r).weight;if(s+=h?f:-f,o=n,c=l,t.hasEdge(o,c)){var d=t.edge(n,l).cutvalue;s+=h?-d:d}}})),s}function d(t,e){arguments.length<2&&(e=t.nodes()[0]),p(t,{},1,e)}function p(t,e,n,i,a){var o=n,s=t.node(i);return e[i]=!0,r.forEach(t.neighbors(i),(function(a){r.has(e,a)||(n=p(t,e,n,a,i))})),s.low=o,s.lim=n++,a?s.parent=a:delete s.parent,n}function y(t){return r.find(t.edges(),(function(e){return t.edge(e).cutvalue<0}))}function g(t,e,n){var i=n.v,o=n.w;e.hasEdge(i,o)||(i=n.w,o=n.v);var s=t.node(i),c=t.node(o),u=s,l=!1;s.lim>c.lim&&(u=c,l=!0);var h=r.filter(e.edges(),(function(e){return l===v(t,t.node(e.v),u)&&l!==v(t,t.node(e.w),u)}));return r.minBy(h,(function(t){return a(e,t)}))}function m(t,e,n,i){var a=n.v,o=n.w;t.removeEdge(a,o),t.setEdge(i.v,i.w,{}),d(t),h(t,e),function(t,e){var n=r.find(t.nodes(),(function(t){return!e.node(t).parent})),i=s(t,n);i=i.slice(1),r.forEach(i,(function(n){var r=t.node(n).parent,i=e.edge(n,r),a=!1;i||(i=e.edge(r,n),a=!0),e.node(n).rank=e.node(r).rank+(a?i.minlen:-i.minlen)}))}(t,e)}function v(t,e,n){return n.low<=e.lim&&e.lim<=n.lim}t.exports=l,l.initLowLimValues=d,l.initCutValues=h,l.calcCutValue=f,l.leaveEdge=y,l.enterEdge=g,l.exchangeEdges=m},function(t,e,n){var r=n(4);t.exports=function(t){var e=function(t){var e={},n=0;function i(a){var o=n;r.forEach(t.children(a),i),e[a]={low:o,lim:n++}}return r.forEach(t.children(),i),e}(t);r.forEach(t.graph().dummyChains,(function(n){for(var r=t.node(n),i=r.edgeObj,a=function(t,e,n,r){var i,a,o=[],s=[],c=Math.min(e[n].low,e[r].low),u=Math.max(e[n].lim,e[r].lim);i=n;do{i=t.parent(i),o.push(i)}while(i&&(e[i].low>c||u>e[i].lim));a=i,i=r;for(;(i=t.parent(i))!==a;)s.push(i);return{path:o.concat(s.reverse()),lca:a}}(t,e,i.v,i.w),o=a.path,s=a.lca,c=0,u=o[c],l=!0;n!==i.w;){if(r=t.node(n),l){for(;(u=o[c])!==s&&t.node(u).maxRank<r.rank;)c++;u===s&&(l=!1)}if(!l){for(;c<o.length-1&&t.node(u=o[c+1]).minRank<=r.rank;)c++;u=o[c]}t.setParent(n,u),n=t.successors(n)[0]}}))}},function(t,e,n){var r=n(4),i=n(9);t.exports={run:function(t){var e=i.addDummyNode(t,"root",{},"_root"),n=function(t){var e={};return r.forEach(t.children(),(function(n){!function n(i,a){var o=t.children(i);o&&o.length&&r.forEach(o,(function(t){n(t,a+1)}));e[i]=a}(n,1)})),e}(t),a=r.max(r.values(n))-1,o=2*a+1;t.graph().nestingRoot=e,r.forEach(t.edges(),(function(e){t.edge(e).minlen*=o}));var s=function(t){return r.reduce(t.edges(),(function(e,n){return e+t.edge(n).weight}),0)}(t)+1;r.forEach(t.children(),(function(c){!function t(e,n,a,o,s,c,u){var l=e.children(u);if(!l.length)return void(u!==n&&e.setEdge(n,u,{weight:0,minlen:a}));var h=i.addBorderNode(e,"_bt"),f=i.addBorderNode(e,"_bb"),d=e.node(u);e.setParent(h,u),d.borderTop=h,e.setParent(f,u),d.borderBottom=f,r.forEach(l,(function(r){t(e,n,a,o,s,c,r);var i=e.node(r),l=i.borderTop?i.borderTop:r,d=i.borderBottom?i.borderBottom:r,p=i.borderTop?o:2*o,y=l!==d?1:s-c[u]+1;e.setEdge(h,l,{weight:p,minlen:y,nestingEdge:!0}),e.setEdge(d,f,{weight:p,minlen:y,nestingEdge:!0})})),e.parent(u)||e.setEdge(n,h,{weight:0,minlen:s+c[u]})}(t,e,o,s,a,n,c)})),t.graph().nodeRankFactor=o},cleanup:function(t){var e=t.graph();t.removeNode(e.nestingRoot),delete e.nestingRoot,r.forEach(t.edges(),(function(e){t.edge(e).nestingEdge&&t.removeEdge(e)}))}}},function(t,e,n){var r=n(4),i=n(9);function a(t,e,n,r,a,o){var s={width:0,height:0,rank:o,borderType:e},c=a[e][o-1],u=i.addDummyNode(t,"border",s,n);a[e][o]=u,t.setParent(u,r),c&&t.setEdge(c,u,{weight:1})}t.exports=function(t){r.forEach(t.children(),(function e(n){var i=t.children(n),o=t.node(n);if(i.length&&r.forEach(i,e),r.has(o,"minRank")){o.borderLeft=[],o.borderRight=[];for(var s=o.minRank,c=o.maxRank+1;s<c;++s)a(t,"borderLeft","_bl",n,o,s),a(t,"borderRight","_br",n,o,s)}}))}},function(t,e,n){"use strict";var r=n(4);function i(t){r.forEach(t.nodes(),(function(e){a(t.node(e))})),r.forEach(t.edges(),(function(e){a(t.edge(e))}))}function a(t){var e=t.width;t.width=t.height,t.height=e}function o(t){t.y=-t.y}function s(t){var e=t.x;t.x=t.y,t.y=e}t.exports={adjust:function(t){var e=t.graph().rankdir.toLowerCase();"lr"!==e&&"rl"!==e||i(t)},undo:function(t){var e=t.graph().rankdir.toLowerCase();"bt"!==e&&"rl"!==e||function(t){r.forEach(t.nodes(),(function(e){o(t.node(e))})),r.forEach(t.edges(),(function(e){var n=t.edge(e);r.forEach(n.points,o),r.has(n,"y")&&o(n)}))}(t);"lr"!==e&&"rl"!==e||(!function(t){r.forEach(t.nodes(),(function(e){s(t.node(e))})),r.forEach(t.edges(),(function(e){var n=t.edge(e);r.forEach(n.points,s),r.has(n,"x")&&s(n)}))}(t),i(t))}}},function(t,e,n){"use strict";var r=n(4),i=n(363),a=n(364),o=n(365),s=n(369),c=n(370),u=n(20).Graph,l=n(9);function h(t,e,n){return r.map(e,(function(e){return s(t,e,n)}))}function f(t,e){var n=new u;r.forEach(t,(function(t){var i=t.graph().root,a=o(t,i,n,e);r.forEach(a.vs,(function(e,n){t.node(e).order=n})),c(t,n,a.vs)}))}function d(t,e){r.forEach(e,(function(e){r.forEach(e,(function(e,n){t.node(e).order=n}))}))}t.exports=function(t){var e=l.maxRank(t),n=h(t,r.range(1,e+1),"inEdges"),o=h(t,r.range(e-1,-1,-1),"outEdges"),s=i(t);d(t,s);for(var c,u=Number.POSITIVE_INFINITY,p=0,y=0;y<4;++p,++y){f(p%2?n:o,p%4>=2),s=l.buildLayerMatrix(t);var g=a(t,s);g<u&&(y=0,c=r.cloneDeep(s),u=g)}d(t,c)}},function(t,e,n){"use strict";var r=n(4);t.exports=function(t){var e={},n=r.filter(t.nodes(),(function(e){return!t.children(e).length})),i=r.max(r.map(n,(function(e){return t.node(e).rank}))),a=r.map(r.range(i+1),(function(){return[]}));var o=r.sortBy(n,(function(e){return t.node(e).rank}));return r.forEach(o,(function n(i){if(r.has(e,i))return;e[i]=!0;var o=t.node(i);a[o.rank].push(i),r.forEach(t.successors(i),n)})),a}},function(t,e,n){"use strict";var r=n(4);function i(t,e,n){for(var i=r.zipObject(n,r.map(n,(function(t,e){return e}))),a=r.flatten(r.map(e,(function(e){return r.sortBy(r.map(t.outEdges(e),(function(e){return{pos:i[e.w],weight:t.edge(e).weight}})),"pos")})),!0),o=1;o<n.length;)o<<=1;var s=2*o-1;o-=1;var c=r.map(new Array(s),(function(){return 0})),u=0;return r.forEach(a.forEach((function(t){var e=t.pos+o;c[e]+=t.weight;for(var n=0;e>0;)e%2&&(n+=c[e+1]),c[e=e-1>>1]+=t.weight;u+=t.weight*n}))),u}t.exports=function(t,e){for(var n=0,r=1;r<e.length;++r)n+=i(t,e[r-1],e[r]);return n}},function(t,e,n){var r=n(4),i=n(366),a=n(367),o=n(368);t.exports=function t(e,n,s,c){var u=e.children(n),l=e.node(n),h=l?l.borderLeft:void 0,f=l?l.borderRight:void 0,d={};h&&(u=r.filter(u,(function(t){return t!==h&&t!==f})));var p=i(e,u);r.forEach(p,(function(n){if(e.children(n.v).length){var i=t(e,n.v,s,c);d[n.v]=i,r.has(i,"barycenter")&&(a=n,o=i,r.isUndefined(a.barycenter)?(a.barycenter=o.barycenter,a.weight=o.weight):(a.barycenter=(a.barycenter*a.weight+o.barycenter*o.weight)/(a.weight+o.weight),a.weight+=o.weight))}var a,o}));var y=a(p,s);!function(t,e){r.forEach(t,(function(t){t.vs=r.flatten(t.vs.map((function(t){return e[t]?e[t].vs:t})),!0)}))}(y,d);var g=o(y,c);if(h&&(g.vs=r.flatten([h,g.vs,f],!0),e.predecessors(h).length)){var m=e.node(e.predecessors(h)[0]),v=e.node(e.predecessors(f)[0]);r.has(g,"barycenter")||(g.barycenter=0,g.weight=0),g.barycenter=(g.barycenter*g.weight+m.order+v.order)/(g.weight+2),g.weight+=2}return g}},function(t,e,n){var r=n(4);t.exports=function(t,e){return r.map(e,(function(e){var n=t.inEdges(e);if(n.length){var i=r.reduce(n,(function(e,n){var r=t.edge(n),i=t.node(n.v);return{sum:e.sum+r.weight*i.order,weight:e.weight+r.weight}}),{sum:0,weight:0});return{v:e,barycenter:i.sum/i.weight,weight:i.weight}}return{v:e}}))}},function(t,e,n){"use strict";var r=n(4);t.exports=function(t,e){var n={};return r.forEach(t,(function(t,e){var i=n[t.v]={indegree:0,in:[],out:[],vs:[t.v],i:e};r.isUndefined(t.barycenter)||(i.barycenter=t.barycenter,i.weight=t.weight)})),r.forEach(e.edges(),(function(t){var e=n[t.v],i=n[t.w];r.isUndefined(e)||r.isUndefined(i)||(i.indegree++,e.out.push(n[t.w]))})),function(t){var e=[];function n(t){return function(e){e.merged||(r.isUndefined(e.barycenter)||r.isUndefined(t.barycenter)||e.barycenter>=t.barycenter)&&function(t,e){var n=0,r=0;t.weight&&(n+=t.barycenter*t.weight,r+=t.weight);e.weight&&(n+=e.barycenter*e.weight,r+=e.weight);t.vs=e.vs.concat(t.vs),t.barycenter=n/r,t.weight=r,t.i=Math.min(e.i,t.i),e.merged=!0}(t,e)}}function i(e){return function(n){n.in.push(e),0==--n.indegree&&t.push(n)}}for(;t.length;){var a=t.pop();e.push(a),r.forEach(a.in.reverse(),n(a)),r.forEach(a.out,i(a))}return r.map(r.filter(e,(function(t){return!t.merged})),(function(t){return r.pick(t,["vs","i","barycenter","weight"])}))}(r.filter(n,(function(t){return!t.indegree})))}},function(t,e,n){var r=n(4),i=n(9);function a(t,e,n){for(var i;e.length&&(i=r.last(e)).i<=n;)e.pop(),t.push(i.vs),n++;return n}t.exports=function(t,e){var n=i.partition(t,(function(t){return r.has(t,"barycenter")})),o=n.lhs,s=r.sortBy(n.rhs,(function(t){return-t.i})),c=[],u=0,l=0,h=0;o.sort((f=!!e,function(t,e){return t.barycenter<e.barycenter?-1:t.barycenter>e.barycenter?1:f?e.i-t.i:t.i-e.i})),h=a(c,s,h),r.forEach(o,(function(t){h+=t.vs.length,c.push(t.vs),u+=t.barycenter*t.weight,l+=t.weight,h=a(c,s,h)}));var f;var d={vs:r.flatten(c,!0)};l&&(d.barycenter=u/l,d.weight=l);return d}},function(t,e,n){var r=n(4),i=n(20).Graph;t.exports=function(t,e,n){var a=function(t){var e;for(;t.hasNode(e=r.uniqueId("_root")););return e}(t),o=new i({compound:!0}).setGraph({root:a}).setDefaultNodeLabel((function(e){return t.node(e)}));return r.forEach(t.nodes(),(function(i){var s=t.node(i),c=t.parent(i);(s.rank===e||s.minRank<=e&&e<=s.maxRank)&&(o.setNode(i),o.setParent(i,c||a),r.forEach(t[n](i),(function(e){var n=e.v===i?e.w:e.v,a=o.edge(n,i),s=r.isUndefined(a)?0:a.weight;o.setEdge(n,i,{weight:t.edge(e).weight+s})})),r.has(s,"minRank")&&o.setNode(i,{borderLeft:s.borderLeft[e],borderRight:s.borderRight[e]}))})),o}},function(t,e,n){var r=n(4);t.exports=function(t,e,n){var i,a={};r.forEach(n,(function(n){for(var r,o,s=t.parent(n);s;){if((r=t.parent(s))?(o=a[r],a[r]=s):(o=i,i=s),o&&o!==s)return void e.setEdge(o,s);s=r}}))}},function(t,e,n){"use strict";var r=n(4),i=n(9),a=n(372).positionX;t.exports=function(t){(function(t){var e=i.buildLayerMatrix(t),n=t.graph().ranksep,a=0;r.forEach(e,(function(e){var i=r.max(r.map(e,(function(e){return t.node(e).height})));r.forEach(e,(function(e){t.node(e).y=a+i/2})),a+=i+n}))})(t=i.asNonCompoundGraph(t)),r.forEach(a(t),(function(e,n){t.node(n).x=e}))}},function(t,e,n){"use strict";var r=n(4),i=n(20).Graph,a=n(9);function o(t,e){var n={};return r.reduce(e,(function(e,i){var a=0,o=0,s=e.length,u=r.last(i);return r.forEach(i,(function(e,l){var h=function(t,e){if(t.node(e).dummy)return r.find(t.predecessors(e),(function(e){return t.node(e).dummy}))}(t,e),f=h?t.node(h).order:s;(h||e===u)&&(r.forEach(i.slice(o,l+1),(function(e){r.forEach(t.predecessors(e),(function(r){var i=t.node(r),o=i.order;!(o<a||f<o)||i.dummy&&t.node(e).dummy||c(n,r,e)}))})),o=l+1,a=f)})),i})),n}function s(t,e){var n={};function i(e,i,a,o,s){var u;r.forEach(r.range(i,a),(function(i){u=e[i],t.node(u).dummy&&r.forEach(t.predecessors(u),(function(e){var r=t.node(e);r.dummy&&(r.order<o||r.order>s)&&c(n,e,u)}))}))}return r.reduce(e,(function(e,n){var a,o=-1,s=0;return r.forEach(n,(function(r,c){if("border"===t.node(r).dummy){var u=t.predecessors(r);u.length&&(a=t.node(u[0]).order,i(n,s,c,o,a),s=c,o=a)}i(n,s,n.length,a,e.length)})),n})),n}function c(t,e,n){if(e>n){var r=e;e=n,n=r}var i=t[e];i||(t[e]=i={}),i[n]=!0}function u(t,e,n){if(e>n){var i=e;e=n,n=i}return r.has(t[e],n)}function l(t,e,n,i){var a={},o={},s={};return r.forEach(e,(function(t){r.forEach(t,(function(t,e){a[t]=t,o[t]=t,s[t]=e}))})),r.forEach(e,(function(t){var e=-1;r.forEach(t,(function(t){var c=i(t);if(c.length)for(var l=((c=r.sortBy(c,(function(t){return s[t]}))).length-1)/2,h=Math.floor(l),f=Math.ceil(l);h<=f;++h){var d=c[h];o[t]===t&&e<s[d]&&!u(n,t,d)&&(o[d]=t,o[t]=a[t]=a[d],e=s[d])}}))})),{root:a,align:o}}function h(t,e,n,a,o){var s={},c=function(t,e,n,a){var o=new i,s=t.graph(),c=function(t,e,n){return function(i,a,o){var s,c=i.node(a),u=i.node(o),l=0;if(l+=c.width/2,r.has(c,"labelpos"))switch(c.labelpos.toLowerCase()){case"l":s=-c.width/2;break;case"r":s=c.width/2}if(s&&(l+=n?s:-s),s=0,l+=(c.dummy?e:t)/2,l+=(u.dummy?e:t)/2,l+=u.width/2,r.has(u,"labelpos"))switch(u.labelpos.toLowerCase()){case"l":s=u.width/2;break;case"r":s=-u.width/2}return s&&(l+=n?s:-s),s=0,l}}(s.nodesep,s.edgesep,a);return r.forEach(e,(function(e){var i;r.forEach(e,(function(e){var r=n[e];if(o.setNode(r),i){var a=n[i],s=o.edge(a,r);o.setEdge(a,r,Math.max(c(t,e,i),s||0))}i=e}))})),o}(t,e,n,o),u=o?"borderLeft":"borderRight";function l(t,e){for(var n=c.nodes(),r=n.pop(),i={};r;)i[r]?t(r):(i[r]=!0,n.push(r),n=n.concat(e(r))),r=n.pop()}return l((function(t){s[t]=c.inEdges(t).reduce((function(t,e){return Math.max(t,s[e.v]+c.edge(e))}),0)}),c.predecessors.bind(c)),l((function(e){var n=c.outEdges(e).reduce((function(t,e){return Math.min(t,s[e.w]-c.edge(e))}),Number.POSITIVE_INFINITY),r=t.node(e);n!==Number.POSITIVE_INFINITY&&r.borderType!==u&&(s[e]=Math.max(s[e],n))}),c.successors.bind(c)),r.forEach(a,(function(t){s[t]=s[n[t]]})),s}function f(t,e){return r.minBy(r.values(e),(function(e){var n=Number.NEGATIVE_INFINITY,i=Number.POSITIVE_INFINITY;return r.forIn(e,(function(e,r){var a=function(t,e){return t.node(e).width}(t,r)/2;n=Math.max(e+a,n),i=Math.min(e-a,i)})),n-i}))}function d(t,e){var n=r.values(e),i=r.min(n),a=r.max(n);r.forEach(["u","d"],(function(n){r.forEach(["l","r"],(function(o){var s,c=n+o,u=t[c];if(u!==e){var l=r.values(u);(s="l"===o?i-r.min(l):a-r.max(l))&&(t[c]=r.mapValues(u,(function(t){return t+s})))}}))}))}function p(t,e){return r.mapValues(t.ul,(function(n,i){if(e)return t[e.toLowerCase()][i];var a=r.sortBy(r.map(t,i));return(a[1]+a[2])/2}))}t.exports={positionX:function(t){var e,n=a.buildLayerMatrix(t),i=r.merge(o(t,n),s(t,n)),c={};r.forEach(["u","d"],(function(a){e="u"===a?n:r.values(n).reverse(),r.forEach(["l","r"],(function(n){"r"===n&&(e=r.map(e,(function(t){return r.values(t).reverse()})));var o=("u"===a?t.predecessors:t.successors).bind(t),s=l(t,e,i,o),u=h(t,e,s.root,s.align,"r"===n);"r"===n&&(u=r.mapValues(u,(function(t){return-t}))),c[a+n]=u}))}));var u=f(t,c);return d(c,u),p(c,t.graph().align)},findType1Conflicts:o,findType2Conflicts:s,addConflict:c,hasConflict:u,verticalAlignment:l,horizontalCompaction:h,alignCoordinates:d,findSmallestWidthAlignment:f,balance:p}},function(t,e,n){var r=n(4),i=n(9),a=n(20).Graph;t.exports={debugOrdering:function(t){var e=i.buildLayerMatrix(t),n=new a({compound:!0,multigraph:!0}).setGraph({});return r.forEach(t.nodes(),(function(e){n.setNode(e,{label:e}),n.setParent(e,"layer"+t.node(e).rank)})),r.forEach(t.edges(),(function(t){n.setEdge(t.v,t.w,{},t.name)})),r.forEach(e,(function(t,e){var i="layer"+e;n.setNode(i,{rank:"same"}),r.reduce(t,(function(t,e){return n.setEdge(t,e,{style:"invis"}),e}))})),n}}},function(t,e){t.exports="0.8.5"},function(t,e,n){t.exports={node:n(165),circle:n(166),ellipse:n(97),polygon:n(167),rect:n(168)}},function(t,e){function n(t,e){return t*e>0}t.exports=function(t,e,r,i){var a,o,s,c,u,l,h,f,d,p,y,g,m;if(a=e.y-t.y,s=t.x-e.x,u=e.x*t.y-t.x*e.y,d=a*r.x+s*r.y+u,p=a*i.x+s*i.y+u,0!==d&&0!==p&&n(d,p))return;if(o=i.y-r.y,c=r.x-i.x,l=i.x*r.y-r.x*i.y,h=o*t.x+c*t.y+l,f=o*e.x+c*e.y+l,0!==h&&0!==f&&n(h,f))return;if(0===(y=a*c-o*s))return;return g=Math.abs(y/2),{x:(m=s*l-c*u)<0?(m-g)/y:(m+g)/y,y:(m=o*u-a*l)<0?(m-g)/y:(m+g)/y}}},function(t,e,n){var r=n(44),i=n(31),a=n(153).layout;t.exports=function(){var t=n(378),e=n(381),i=n(382),u=n(383),l=n(384),h=n(385),f=n(386),d=n(387),p=n(388),y=function(n,y){!function(t){t.nodes().forEach((function(e){var n=t.node(e);r.has(n,"label")||t.children(e).length||(n.label=e),r.has(n,"paddingX")&&r.defaults(n,{paddingLeft:n.paddingX,paddingRight:n.paddingX}),r.has(n,"paddingY")&&r.defaults(n,{paddingTop:n.paddingY,paddingBottom:n.paddingY}),r.has(n,"padding")&&r.defaults(n,{paddingLeft:n.padding,paddingRight:n.padding,paddingTop:n.padding,paddingBottom:n.padding}),r.defaults(n,o),r.each(["paddingLeft","paddingRight","paddingTop","paddingBottom"],(function(t){n[t]=Number(n[t])})),r.has(n,"width")&&(n._prevWidth=n.width),r.has(n,"height")&&(n._prevHeight=n.height)})),t.edges().forEach((function(e){var n=t.edge(e);r.has(n,"label")||(n.label=""),r.defaults(n,s)}))}(y);var g=c(n,"output"),m=c(g,"clusters"),v=c(g,"edgePaths"),b=i(c(g,"edgeLabels"),y),x=t(c(g,"nodes"),y,d);a(y),l(x,y),h(b,y),u(v,y,p);var _=e(m,y);f(_,y),function(t){r.each(t.nodes(),(function(e){var n=t.node(e);r.has(n,"_prevWidth")?n.width=n._prevWidth:delete n.width,r.has(n,"_prevHeight")?n.height=n._prevHeight:delete n.height,delete n._prevWidth,delete n._prevHeight}))}(y)};return y.createNodes=function(e){return arguments.length?(t=e,y):t},y.createClusters=function(t){return arguments.length?(e=t,y):e},y.createEdgeLabels=function(t){return arguments.length?(i=t,y):i},y.createEdgePaths=function(t){return arguments.length?(u=t,y):u},y.shapes=function(t){return arguments.length?(d=t,y):d},y.arrows=function(t){return arguments.length?(p=t,y):p},y};var o={paddingLeft:10,paddingRight:10,paddingTop:10,paddingBottom:10,rx:0,ry:0,shape:"rect"},s={arrowhead:"normal",curve:i.curveLinear};function c(t,e){var n=t.select("g."+e);return n.empty()&&(n=t.append("g").attr("class",e)),n}},function(t,e,n){"use strict";var r=n(44),i=n(98),a=n(15),o=n(31);t.exports=function(t,e,n){var s,c=e.nodes().filter((function(t){return!a.isSubgraph(e,t)})),u=t.selectAll("g.node").data(c,(function(t){return t})).classed("update",!0);u.exit().remove(),u.enter().append("g").attr("class","node").style("opacity",0),(u=t.selectAll("g.node")).each((function(t){var s=e.node(t),c=o.select(this);a.applyClass(c,s.class,(c.classed("update")?"update ":"")+"node"),c.select("g.label").remove();var u=c.append("g").attr("class","label"),l=i(u,s),h=n[s.shape],f=r.pick(l.node().getBBox(),"width","height");s.elem=this,s.id&&c.attr("id",s.id),s.labelId&&u.attr("id",s.labelId),r.has(s,"width")&&(f.width=s.width),r.has(s,"height")&&(f.height=s.height),f.width+=s.paddingLeft+s.paddingRight,f.height+=s.paddingTop+s.paddingBottom,u.attr("transform","translate("+(s.paddingLeft-s.paddingRight)/2+","+(s.paddingTop-s.paddingBottom)/2+")");var d=o.select(this);d.select(".label-container").remove();var p=h(d,f,s).classed("label-container",!0);a.applyStyle(p,s.style);var y=p.node().getBBox();s.width=y.width,s.height=y.height})),s=u.exit?u.exit():u.selectAll(null);return a.applyTransition(s,e).style("opacity",0).remove(),u}},function(t,e,n){var r=n(15);t.exports=function(t,e){for(var n=t.append("text"),i=function(t){for(var e,n="",r=!1,i=0;i<t.length;++i)if(e=t[i],r){switch(e){case"n":n+="\n";break;default:n+=e}r=!1}else"\\"===e?r=!0:n+=e;return n}(e.label).split("\n"),a=0;a<i.length;a++)n.append("tspan").attr("xml:space","preserve").attr("dy","1em").attr("x","1").text(i[a]);return r.applyStyle(n,e.labelStyle),n}},function(t,e,n){var r=n(15);t.exports=function(t,e){var n=t;return n.node().appendChild(e.label),r.applyStyle(n,e.labelStyle),n}},function(t,e,n){var r=n(15),i=n(31),a=n(98);t.exports=function(t,e){var n,o=e.nodes().filter((function(t){return r.isSubgraph(e,t)})),s=t.selectAll("g.cluster").data(o,(function(t){return t}));s.selectAll("*").remove(),s.enter().append("g").attr("class","cluster").attr("id",(function(t){return e.node(t).id})).style("opacity",0),s=t.selectAll("g.cluster"),r.applyTransition(s,e).style("opacity",1),s.each((function(t){var n=e.node(t),r=i.select(this);i.select(this).append("rect");var o=r.append("g").attr("class","label");a(o,n,n.clusterLabelPos)})),s.selectAll("rect").each((function(t){var n=e.node(t),a=i.select(this);r.applyStyle(a,n.style)})),n=s.exit?s.exit():s.selectAll(null);return r.applyTransition(n,e).style("opacity",0).remove(),s}},function(t,e,n){"use strict";var r=n(44),i=n(98),a=n(15),o=n(31);t.exports=function(t,e){var n,s=t.selectAll("g.edgeLabel").data(e.edges(),(function(t){return a.edgeToId(t)})).classed("update",!0);s.exit().remove(),s.enter().append("g").classed("edgeLabel",!0).style("opacity",0),(s=t.selectAll("g.edgeLabel")).each((function(t){var n=o.select(this);n.select(".label").remove();var a=e.edge(t),s=i(n,e.edge(t),0,0).classed("label",!0),c=s.node().getBBox();a.labelId&&s.attr("id",a.labelId),r.has(a,"width")||(a.width=c.width),r.has(a,"height")||(a.height=c.height)})),n=s.exit?s.exit():s.selectAll(null);return a.applyTransition(n,e).style("opacity",0).remove(),s}},function(t,e,n){"use strict";var r=n(44),i=n(165),a=n(15),o=n(31);function s(t,e){var n=(o.line||o.svg.line)().x((function(t){return t.x})).y((function(t){return t.y}));return(n.curve||n.interpolate)(t.curve),n(e)}t.exports=function(t,e,n){var c=t.selectAll("g.edgePath").data(e.edges(),(function(t){return a.edgeToId(t)})).classed("update",!0),u=function(t,e){var n=t.enter().append("g").attr("class","edgePath").style("opacity",0);return n.append("path").attr("class","path").attr("d",(function(t){var n=e.edge(t),i=e.node(t.v).elem;return s(n,r.range(n.points.length).map((function(){return e=(t=i).getBBox(),{x:(n=t.ownerSVGElement.getScreenCTM().inverse().multiply(t.getScreenCTM()).translate(e.width/2,e.height/2)).e,y:n.f};var t,e,n})))})),n.append("defs"),n}(c,e);!function(t,e){var n=t.exit();a.applyTransition(n,e).style("opacity",0).remove()}(c,e);var l=void 0!==c.merge?c.merge(u):c;return a.applyTransition(l,e).style("opacity",1),l.each((function(t){var n=o.select(this),r=e.edge(t);r.elem=this,r.id&&n.attr("id",r.id),a.applyClass(n,r.class,(n.classed("update")?"update ":"")+"edgePath")})),l.selectAll("path.path").each((function(t){var n=e.edge(t);n.arrowheadId=r.uniqueId("arrowhead");var c=o.select(this).attr("marker-end",(function(){return"url("+(t=location.href,e=n.arrowheadId,t.split("#")[0]+"#"+e+")");var t,e})).style("fill","none");a.applyTransition(c,e).attr("d",(function(t){return function(t,e){var n=t.edge(e),r=t.node(e.v),a=t.node(e.w),o=n.points.slice(1,n.points.length-1);return o.unshift(i(r,o[0])),o.push(i(a,o[o.length-1])),s(n,o)}(e,t)})),a.applyStyle(c,n.style)})),l.selectAll("defs *").remove(),l.selectAll("defs").each((function(t){var r=e.edge(t);(0,n[r.arrowhead])(o.select(this),r.arrowheadId,r,"arrowhead")})),l}},function(t,e,n){"use strict";var r=n(15),i=n(31);t.exports=function(t,e){function n(t){var n=e.node(t);return"translate("+n.x+","+n.y+")"}t.filter((function(){return!i.select(this).classed("update")})).attr("transform",n),r.applyTransition(t,e).style("opacity",1).attr("transform",n)}},function(t,e,n){"use strict";var r=n(15),i=n(31),a=n(44);t.exports=function(t,e){function n(t){var n=e.edge(t);return a.has(n,"x")?"translate("+n.x+","+n.y+")":""}t.filter((function(){return!i.select(this).classed("update")})).attr("transform",n),r.applyTransition(t,e).style("opacity",1).attr("transform",n)}},function(t,e,n){"use strict";var r=n(15),i=n(31);t.exports=function(t,e){var n=t.filter((function(){return!i.select(this).classed("update")}));function a(t){var n=e.node(t);return"translate("+n.x+","+n.y+")"}n.attr("transform",a),r.applyTransition(t,e).style("opacity",1).attr("transform",a),r.applyTransition(n.selectAll("rect"),e).attr("width",(function(t){return e.node(t).width})).attr("height",(function(t){return e.node(t).height})).attr("x",(function(t){return-e.node(t).width/2})).attr("y",(function(t){return-e.node(t).height/2}))}},function(t,e,n){"use strict";var r=n(168),i=n(97),a=n(166),o=n(167);t.exports={rect:function(t,e,n){var i=t.insert("rect",":first-child").attr("rx",n.rx).attr("ry",n.ry).attr("x",-e.width/2).attr("y",-e.height/2).attr("width",e.width).attr("height",e.height);return n.intersect=function(t){return r(n,t)},i},ellipse:function(t,e,n){var r=e.width/2,a=e.height/2,o=t.insert("ellipse",":first-child").attr("x",-e.width/2).attr("y",-e.height/2).attr("rx",r).attr("ry",a);return n.intersect=function(t){return i(n,r,a,t)},o},circle:function(t,e,n){var r=Math.max(e.width,e.height)/2,i=t.insert("circle",":first-child").attr("x",-e.width/2).attr("y",-e.height/2).attr("r",r);return n.intersect=function(t){return a(n,r,t)},i},diamond:function(t,e,n){var r=e.width*Math.SQRT2/2,i=e.height*Math.SQRT2/2,a=[{x:0,y:-i},{x:-r,y:0},{x:0,y:i},{x:r,y:0}],s=t.insert("polygon",":first-child").attr("points",a.map((function(t){return t.x+","+t.y})).join(" "));return n.intersect=function(t){return o(n,a,t)},s}}},function(t,e,n){var r=n(15);function i(t,e,n,i){var a=t.append("marker").attr("id",e).attr("viewBox","0 0 10 10").attr("refX",9).attr("refY",5).attr("markerUnits","strokeWidth").attr("markerWidth",8).attr("markerHeight",6).attr("orient","auto").append("path").attr("d","M 0 0 L 10 5 L 0 10 z").style("stroke-width",1).style("stroke-dasharray","1,0");r.applyStyle(a,n[i+"Style"]),n[i+"Class"]&&a.attr("class",n[i+"Class"])}t.exports={default:i,normal:i,vee:function(t,e,n,i){var a=t.append("marker").attr("id",e).attr("viewBox","0 0 10 10").attr("refX",9).attr("refY",5).attr("markerUnits","strokeWidth").attr("markerWidth",8).attr("markerHeight",6).attr("orient","auto").append("path").attr("d","M 0 0 L 10 5 L 0 10 L 4 5 z").style("stroke-width",1).style("stroke-dasharray","1,0");r.applyStyle(a,n[i+"Style"]),n[i+"Class"]&&a.attr("class",n[i+"Class"])},undirected:function(t,e,n,i){var a=t.append("marker").attr("id",e).attr("viewBox","0 0 10 10").attr("refX",9).attr("refY",5).attr("markerUnits","strokeWidth").attr("markerWidth",8).attr("markerHeight",6).attr("orient","auto").append("path").attr("d","M 0 5 L 10 5").style("stroke-width",1).style("stroke-dasharray","1,0");r.applyStyle(a,n[i+"Style"]),n[i+"Class"]&&a.attr("class",n[i+"Class"])}}},function(t,e){t.exports="0.6.4"},function(t,e,n){"use strict";n.r(e);var r=n(23),i=n.n(r),a={debug:1,info:2,warn:3,error:4,fatal:5},o={debug:function(){},info:function(){},warn:function(){},error:function(){},fatal:function(){}},s=function(){var t=arguments.length>0&&void 0!==arguments[0]?arguments[0]:"fatal";isNaN(t)&&(t=t.toLowerCase(),void 0!==a[t]&&(t=a[t])),o.trace=function(){},o.debug=function(){},o.info=function(){},o.warn=function(){},o.error=function(){},o.fatal=function(){},t<=a.fatal&&(o.fatal=console.error?console.error.bind(console,c("FATAL"),"color: orange"):console.log.bind(console,"",c("FATAL"))),t<=a.error&&(o.error=console.error?console.error.bind(console,c("ERROR"),"color: orange"):console.log.bind(console,"",c("ERROR"))),t<=a.warn&&(o.warn=console.warn?console.warn.bind(console,c("WARN"),"color: orange"):console.log.bind(console,"",c("WARN"))),t<=a.info&&(o.info=console.info?console.info.bind(console,c("INFO"),"color: lightblue"):console.log.bind(console,"",c("INFO"))),t<=a.debug&&(o.debug=console.debug?console.debug.bind(console,c("DEBUG"),"color: lightgreen"):console.log.bind(console,"",c("DEBUG")))},c=function(t){var e=i()().format("ss.SSS");return"%c".concat(e," : ").concat(t," : ")},u=n(0),l="comm",h="decl",f=Math.abs,d=String.fromCharCode;function p(t){return t.trim()}function y(t,e,n){return t.replace(e,n)}function g(t,e){return 0|t.charCodeAt(e)}function m(t,e,n){return t.slice(e,n)}function v(t){return t.length}function b(t){return t.length}function x(t,e){return e.push(t),t}var _=1,k=1,w=0,T=0,E=0,C="";function S(t,e,n,r,i,a,o){return{value:t,root:e,parent:n,type:r,props:i,children:a,line:_,column:k,length:o,return:""}}function A(){return E=T>0?g(C,--T):0,k--,10===E&&(k=1,_--),E}function M(){return E=T<w?g(C,T++):0,k++,10===E&&(k=1,_++),E}function O(){return g(C,T)}function N(){return T}function B(t,e){return m(C,t,e)}function D(t){switch(t){case 0:case 9:case 10:case 13:case 32:return 5;case 33:case 43:case 44:case 47:case 62:case 64:case 126:case 59:case 123:case 125:return 4;case 58:return 3;case 34:case 39:case 40:case 91:return 2;case 41:case 93:return 1}return 0}function L(t){return _=k=1,w=v(C=t),T=0,[]}function I(t){return C="",t}function R(t){return p(B(T-1,function t(e){for(;M();)switch(E){case e:return T;case 34:case 39:return t(34===e||39===e?e:E);case 40:41===e&&t(e);break;case 92:M()}return T}(91===t?t+2:40===t?t+1:t)))}function F(t){for(;(E=O())&&E<33;)M();return D(t)>2||D(E)>3?"":" "}function P(t,e){for(;--e&&M()&&!(E<48||E>102||E>57&&E<65||E>70&&E<97););return B(t,N()+(e<6&&32==O()&&32==M()))}function j(t,e){for(;M()&&t+E!==57&&(t+E!==84||47!==O()););return"/*"+B(e,T-1)+"*"+d(47===t?t:M())}function Y(t){for(;!D(O());)M();return B(t,T)}function z(t){return I(function t(e,n,r,i,a,o,s,c,u){var l=0,h=0,f=s,p=0,g=0,m=0,b=1,_=1,k=1,w=0,T="",E=a,C=o,S=i,B=T;for(;_;)switch(m=w,w=M()){case 34:case 39:case 91:case 40:B+=R(w);break;case 9:case 10:case 13:case 32:B+=F(m);break;case 92:B+=P(N()-1,7);continue;case 47:switch(O()){case 42:case 47:x($(j(M(),N()),n,r),u);break;default:B+="/"}break;case 123*b:c[l++]=v(B)*k;case 125*b:case 59:case 0:switch(w){case 0:case 125:_=0;case 59+h:g>0&&v(B)-f&&x(g>32?q(B+";",i,r,f-1):q(y(B," ","")+";",i,r,f-2),u);break;case 59:B+=";";default:if(x(S=U(B,n,r,l,h,a,c,T,E=[],C=[],f),o),123===w)if(0===h)t(B,n,S,S,E,o,f,c,C);else switch(p){case 100:case 109:case 115:t(e,S,S,i&&x(U(e,S,S,0,0,a,c,T,a,E=[],f),C),a,C,f,c,i?E:C);break;default:t(B,S,S,S,[""],C,f,c,C)}}l=h=g=0,b=k=1,T=B="",f=s;break;case 58:f=1+v(B),g=m;default:if(b<1)if(123==w)--b;else if(125==w&&0==b++&&125==A())continue;switch(B+=d(w),w*b){case 38:k=h>0?1:(B+="\f",-1);break;case 44:c[l++]=(v(B)-1)*k,k=1;break;case 64:45===O()&&(B+=R(M())),p=O(),h=v(T=B+=Y(N())),w++;break;case 45:45===m&&2==v(B)&&(b=0)}}return o}("",null,null,null,[""],t=L(t),0,[0],t))}function U(t,e,n,r,i,a,o,s,c,u,l){for(var h=i-1,d=0===i?a:[""],g=b(d),v=0,x=0,_=0;v<r;++v)for(var k=0,w=m(t,h+1,h=f(x=o[v])),T=t;k<g;++k)(T=p(x>0?d[k]+" "+w:y(w,/&\f/g,d[k])))&&(c[_++]=T);return S(t,e,n,0===i?"rule":s,c,u,l)}function $(t,e,n){return S(t,e,n,l,d(E),m(t,2,-2),0)}function q(t,e,n,r){return S(t,e,n,h,m(t,0,r),m(t,r+1,-1),r)}function W(t,e){for(var n="",r=b(t),i=0;i<r;i++)n+=e(t[i],i,t,e)||"";return n}function H(t,e,n,r){switch(t.type){case"@import":case h:return t.return=t.return||t.value;case l:return"";case"rule":t.value=t.props.join(",")}return v(n=W(t.children,r))?t.return=t.value+"{"+n+"}":""}var V=n(37),G=n(72),X=n(169),Z=n.n(X),K=function(t){for(var e="",n=0;n>=0;){if(!((n=t.indexOf("<script"))>=0)){e+=t,n=-1;break}e+=t.substr(0,n),(n=(t=t.substr(n+1)).indexOf("<\/script>"))>=0&&(n+=9,t=t.substr(n))}return e=(e=(e=e.replace(/javascript:/g,"#")).replace(/onerror=/g,"onerror:")).replace(/<iframe/g,"")},Q=/<br\s*\/?>/gi,J=function(t){return t.replace(/#br#/g,"<br/>")},tt=function(t){return t.replace(Q,"#br#")},et=function(t){return"false"!==t&&!1!==t},nt={getRows:function(t){if(!t)return 1;var e=tt(t);return(e=e.replace(/\\n/g,"#br#")).split("#br#")},sanitizeText:function(t,e){return function(t,e){var n=t,r=!0;if(!e.flowchart||!1!==e.flowchart.htmlLabels&&"false"!==e.flowchart.htmlLabels||(r=!1),r){var i=e.securityLevel;"antiscript"===i?n=K(n):"loose"!==i&&(n=(n=(n=tt(n)).replace(/</g,"&lt;").replace(/>/g,"&gt;")).replace(/=/g,"&equals;"),n=J(n))}return n}(Z.a.sanitize(t),e)},hasBreaks:function(t){return/<br\s*[/]?>/gi.test(t)},splitBreaks:function(t){return t.split(/<br\s*[/]?>/gi)},lineBreakRegex:Q,removeScript:K,getUrl:function(t){var e="";return t&&(e=(e=(e=window.location.protocol+"//"+window.location.host+window.location.pathname+window.location.search).replace(/\(/g,"\\(")).replace(/\)/g,"\\)")),e},evaluate:et},rt=n(1),it=function(t,e){return e?Object(rt.adjust)(t,{s:-40,l:10}):Object(rt.adjust)(t,{s:-40,l:-10})};function at(t){return(at="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}function ot(t,e){for(var n=0;n<e.length;n++){var r=e[n];r.enumerable=r.enumerable||!1,r.configurable=!0,"value"in r&&(r.writable=!0),Object.defineProperty(t,r.key,r)}}var st=function(){function t(){!function(t,e){if(!(t instanceof e))throw new TypeError("Cannot call a class as a function")}(this,t),this.background="#f4f4f4",this.darkMode=!1,this.primaryColor="#fff4dd",this.noteBkgColor="#fff5ad",this.noteTextColor="#333",this.fontFamily='"trebuchet ms", verdana, arial, sans-serif',this.fontSize="16px"}var e,n,r;return e=t,(n=[{key:"updateColors",value:function(){this.primaryTextColor=this.primaryTextColor||(this.darkMode?"#ddd":"#333"),this.secondaryColor=this.secondaryColor||Object(rt.adjust)(this.primaryColor,{h:-120}),this.tertiaryColor=this.tertiaryColor||Object(rt.adjust)(this.primaryColor,{h:180,l:5}),this.primaryBorderColor=this.primaryBorderColor||it(this.primaryColor,this.darkMode),this.secondaryBorderColor=this.secondaryBorderColor||it(this.secondaryColor,this.darkMode),this.tertiaryBorderColor=this.tertiaryBorderColor||it(this.tertiaryColor,this.darkMode),this.noteBorderColor=this.noteBorderColor||it(this.noteBkgColor,this.darkMode),this.noteBkgColor=this.noteBkgColor||"#fff5ad",this.noteTextColor=this.noteTextColor||"#333",this.secondaryTextColor=this.secondaryTextColor||Object(rt.invert)(this.secondaryColor),this.tertiaryTextColor=this.tertiaryTextColor||Object(rt.invert)(this.tertiaryColor),this.lineColor=this.lineColor||Object(rt.invert)(this.background),this.textColor=this.textColor||this.primaryTextColor,this.nodeBkg=this.nodeBkg||this.primaryColor,this.mainBkg=this.mainBkg||this.primaryColor,this.nodeBorder=this.nodeBorder||this.primaryBorderColor,this.clusterBkg=this.clusterBkg||this.tertiaryColor,this.clusterBorder=this.clusterBorder||this.tertiaryBorderColor,this.defaultLinkColor=this.defaultLinkColor||this.lineColor,this.titleColor=this.titleColor||this.tertiaryTextColor,this.edgeLabelBackground=this.edgeLabelBackground||(this.darkMode?Object(rt.darken)(this.secondaryColor,30):this.secondaryColor),this.nodeTextColor=this.nodeTextColor||this.primaryTextColor,this.actorBorder=this.actorBorder||this.primaryBorderColor,this.actorBkg=this.actorBkg||this.mainBkg,this.actorTextColor=this.actorTextColor||this.primaryTextColor,this.actorLineColor=this.actorLineColor||"grey",this.labelBoxBkgColor=this.labelBoxBkgColor||this.actorBkg,this.signalColor=this.signalColor||this.textColor,this.signalTextColor=this.signalTextColor||this.textColor,this.labelBoxBorderColor=this.labelBoxBorderColor||this.actorBorder,this.labelTextColor=this.labelTextColor||this.actorTextColor,this.loopTextColor=this.loopTextColor||this.actorTextColor,this.activationBorderColor=this.activationBorderColor||Object(rt.darken)(this.secondaryColor,10),this.activationBkgColor=this.activationBkgColor||this.secondaryColor,this.sequenceNumberColor=this.sequenceNumberColor||Object(rt.invert)(this.lineColor),this.sectionBkgColor=this.sectionBkgColor||this.tertiaryColor,this.altSectionBkgColor=this.altSectionBkgColor||"white",this.sectionBkgColor=this.sectionBkgColor||this.secondaryColor,this.sectionBkgColor2=this.sectionBkgColor2||this.primaryColor,this.taskBorderColor=this.taskBorderColor||this.primaryBorderColor,this.taskBkgColor=this.taskBkgColor||this.primaryColor,this.activeTaskBorderColor=this.activeTaskBorderColor||this.primaryColor,this.activeTaskBkgColor=this.activeTaskBkgColor||Object(rt.lighten)(this.primaryColor,23),this.gridColor=this.gridColor||"lightgrey",this.doneTaskBkgColor=this.doneTaskBkgColor||"lightgrey",this.doneTaskBorderColor=this.doneTaskBorderColor||"grey",this.critBorderColor=this.critBorderColor||"#ff8888",this.critBkgColor=this.critBkgColor||"red",this.todayLineColor=this.todayLineColor||"red",this.taskTextColor=this.taskTextColor||this.textColor,this.taskTextOutsideColor=this.taskTextOutsideColor||this.textColor,this.taskTextLightColor=this.taskTextLightColor||this.textColor,this.taskTextColor=this.taskTextColor||this.primaryTextColor,this.taskTextDarkColor=this.taskTextDarkColor||this.textColor,this.taskTextClickableColor=this.taskTextClickableColor||"#003163",this.transitionColor=this.transitionColor||this.lineColor,this.transitionLabelColor=this.transitionLabelColor||this.textColor,this.stateLabelColor=this.stateLabelColor||this.stateBkg||this.primaryTextColor,this.stateBkg=this.stateBkg||this.mainBkg,this.labelBackgroundColor=this.labelBackgroundColor||this.stateBkg,this.compositeBackground=this.compositeBackground||this.background||this.tertiaryColor,this.altBackground=this.altBackground||this.tertiaryColor,this.compositeTitleBackground=this.compositeTitleBackground||this.mainBkg,this.compositeBorder=this.compositeBorder||this.nodeBorder,this.innerEndBackground=this.nodeBorder,this.errorBkgColor=this.errorBkgColor||this.tertiaryColor,this.errorTextColor=this.errorTextColor||this.tertiaryTextColor,this.transitionColor=this.transitionColor||this.lineColor,this.specialStateColor=this.lineColor,this.classText=this.classText||this.textColor,this.fillType0=this.fillType0||this.primaryColor,this.fillType1=this.fillType1||this.secondaryColor,this.fillType2=this.fillType2||Object(rt.adjust)(this.primaryColor,{h:64}),this.fillType3=this.fillType3||Object(rt.adjust)(this.secondaryColor,{h:64}),this.fillType4=this.fillType4||Object(rt.adjust)(this.primaryColor,{h:-64}),this.fillType5=this.fillType5||Object(rt.adjust)(this.secondaryColor,{h:-64}),this.fillType6=this.fillType6||Object(rt.adjust)(this.primaryColor,{h:128}),this.fillType7=this.fillType7||Object(rt.adjust)(this.secondaryColor,{h:128}),this.pie1=this.pie1||this.primaryColor,this.pie2=this.pie2||this.secondaryColor,this.pie3=this.pie3||this.tertiaryColor,this.pie4=this.pie4||Object(rt.adjust)(this.primaryColor,{l:-10}),this.pie5=this.pie5||Object(rt.adjust)(this.secondaryColor,{l:-10}),this.pie6=this.pie6||Object(rt.adjust)(this.tertiaryColor,{l:-10}),this.pie7=this.pie7||Object(rt.adjust)(this.primaryColor,{h:60,l:-10}),this.pie8=this.pie8||Object(rt.adjust)(this.primaryColor,{h:-60,l:-10}),this.pie9=this.pie9||Object(rt.adjust)(this.primaryColor,{h:120,l:0}),this.pie10=this.pie10||Object(rt.adjust)(this.primaryColor,{h:60,l:-20}),this.pie11=this.pie11||Object(rt.adjust)(this.primaryColor,{h:-60,l:-20}),this.pie12=this.pie12||Object(rt.adjust)(this.primaryColor,{h:120,l:-10}),this.pieTitleTextSize=this.pieTitleTextSize||"25px",this.pieTitleTextColor=this.pieTitleTextColor||this.taskTextDarkColor,this.pieSectionTextSize=this.pieSectionTextSize||"17px",this.pieSectionTextColor=this.pieSectionTextColor||this.textColor,this.pieLegendTextSize=this.pieLegendTextSize||"17px",this.pieLegendTextColor=this.pieLegendTextColor||this.taskTextDarkColor,this.pieStrokeColor=this.pieStrokeColor||"black",this.pieStrokeWidth=this.pieStrokeWidth||"2px",this.pieOpacity=this.pieOpacity||"0.7",this.requirementBackground=this.requirementBackground||this.primaryColor,this.requirementBorderColor=this.requirementBorderColor||this.primaryBorderColor,this.requirementBorderSize=this.requirementBorderSize||this.primaryBorderColor,this.requirementTextColor=this.requirementTextColor||this.primaryTextColor,this.relationColor=this.relationColor||this.lineColor,this.relationLabelBackground=this.relationLabelBackground||(this.darkMode?Object(rt.darken)(this.secondaryColor,30):this.secondaryColor),this.relationLabelColor=this.relationLabelColor||this.actorTextColor}},{key:"calculate",value:function(t){var e=this;if("object"===at(t)){var n=Object.keys(t);n.forEach((function(n){e[n]=t[n]})),this.updateColors(),n.forEach((function(n){e[n]=t[n]}))}else this.updateColors()}}])&&ot(e.prototype,n),r&&ot(e,r),t}();function ct(t){return(ct="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}function ut(t,e){for(var n=0;n<e.length;n++){var r=e[n];r.enumerable=r.enumerable||!1,r.configurable=!0,"value"in r&&(r.writable=!0),Object.defineProperty(t,r.key,r)}}var lt=function(){function t(){!function(t,e){if(!(t instanceof e))throw new TypeError("Cannot call a class as a function")}(this,t),this.background="#333",this.primaryColor="#1f2020",this.secondaryColor=Object(rt.lighten)(this.primaryColor,16),this.tertiaryColor=Object(rt.adjust)(this.primaryColor,{h:-160}),this.primaryBorderColor=it(this.primaryColor,this.darkMode),this.secondaryBorderColor=it(this.secondaryColor,this.darkMode),this.tertiaryBorderColor=it(this.tertiaryColor,this.darkMode),this.primaryTextColor=Object(rt.invert)(this.primaryColor),this.secondaryTextColor=Object(rt.invert)(this.secondaryColor),this.tertiaryTextColor=Object(rt.invert)(this.tertiaryColor),this.lineColor=Object(rt.invert)(this.background),this.textColor=Object(rt.invert)(this.background),this.mainBkg="#1f2020",this.secondBkg="calculated",this.mainContrastColor="lightgrey",this.darkTextColor=Object(rt.lighten)(Object(rt.invert)("#323D47"),10),this.lineColor="calculated",this.border1="#81B1DB",this.border2=Object(rt.rgba)(255,255,255,.25),this.arrowheadColor="calculated",this.fontFamily='"trebuchet ms", verdana, arial, sans-serif',this.fontSize="16px",this.labelBackground="#181818",this.textColor="#ccc",this.nodeBkg="calculated",this.nodeBorder="calculated",this.clusterBkg="calculated",this.clusterBorder="calculated",this.defaultLinkColor="calculated",this.titleColor="#F9FFFE",this.edgeLabelBackground="calculated",this.actorBorder="calculated",this.actorBkg="calculated",this.actorTextColor="calculated",this.actorLineColor="calculated",this.signalColor="calculated",this.signalTextColor="calculated",this.labelBoxBkgColor="calculated",this.labelBoxBorderColor="calculated",this.labelTextColor="calculated",this.loopTextColor="calculated",this.noteBorderColor="calculated",this.noteBkgColor="#fff5ad",this.noteTextColor="calculated",this.activationBorderColor="calculated",this.activationBkgColor="calculated",this.sequenceNumberColor="black",this.sectionBkgColor=Object(rt.darken)("#EAE8D9",30),this.altSectionBkgColor="calculated",this.sectionBkgColor2="#EAE8D9",this.taskBorderColor=Object(rt.rgba)(255,255,255,70),this.taskBkgColor="calculated",this.taskTextColor="calculated",this.taskTextLightColor="calculated",this.taskTextOutsideColor="calculated",this.taskTextClickableColor="#003163",this.activeTaskBorderColor=Object(rt.rgba)(255,255,255,50),this.activeTaskBkgColor="#81B1DB",this.gridColor="calculated",this.doneTaskBkgColor="calculated",this.doneTaskBorderColor="grey",this.critBorderColor="#E83737",this.critBkgColor="#E83737",this.taskTextDarkColor="calculated",this.todayLineColor="#DB5757",this.labelColor="calculated",this.errorBkgColor="#a44141",this.errorTextColor="#ddd"}var e,n,r;return e=t,(n=[{key:"updateColors",value:function(){this.secondBkg=Object(rt.lighten)(this.mainBkg,16),this.lineColor=this.mainContrastColor,this.arrowheadColor=this.mainContrastColor,this.nodeBkg=this.mainBkg,this.nodeBorder=this.border1,this.clusterBkg=this.secondBkg,this.clusterBorder=this.border2,this.defaultLinkColor=this.lineColor,this.edgeLabelBackground=Object(rt.lighten)(this.labelBackground,25),this.actorBorder=this.border1,this.actorBkg=this.mainBkg,this.actorTextColor=this.mainContrastColor,this.actorLineColor=this.mainContrastColor,this.signalColor=this.mainContrastColor,this.signalTextColor=this.mainContrastColor,this.labelBoxBkgColor=this.actorBkg,this.labelBoxBorderColor=this.actorBorder,this.labelTextColor=this.mainContrastColor,this.loopTextColor=this.mainContrastColor,this.noteBorderColor=this.secondaryBorderColor,this.noteBkgColor=this.secondBkg,this.noteTextColor=this.secondaryTextColor,this.activationBorderColor=this.border1,this.activationBkgColor=this.secondBkg,this.altSectionBkgColor=this.background,this.taskBkgColor=Object(rt.lighten)(this.mainBkg,23),this.taskTextColor=this.darkTextColor,this.taskTextLightColor=this.mainContrastColor,this.taskTextOutsideColor=this.taskTextLightColor,this.gridColor=this.mainContrastColor,this.doneTaskBkgColor=this.mainContrastColor,this.taskTextDarkColor=this.darkTextColor,this.transitionColor=this.transitionColor||this.lineColor,this.transitionLabelColor=this.transitionLabelColor||this.textColor,this.stateLabelColor=this.stateLabelColor||this.stateBkg||this.primaryTextColor,this.stateBkg=this.stateBkg||this.mainBkg,this.labelBackgroundColor=this.labelBackgroundColor||this.stateBkg,this.compositeBackground=this.compositeBackground||this.background||this.tertiaryColor,this.altBackground=this.altBackground||"#555",this.compositeTitleBackground=this.compositeTitleBackground||this.mainBkg,this.compositeBorder=this.compositeBorder||this.nodeBorder,this.innerEndBackground=this.primaryBorderColor,this.specialStateColor="#f4f4f4",this.errorBkgColor=this.errorBkgColor||this.tertiaryColor,this.errorTextColor=this.errorTextColor||this.tertiaryTextColor,this.fillType0=this.primaryColor,this.fillType1=this.secondaryColor,this.fillType2=Object(rt.adjust)(this.primaryColor,{h:64}),this.fillType3=Object(rt.adjust)(this.secondaryColor,{h:64}),this.fillType4=Object(rt.adjust)(this.primaryColor,{h:-64}),this.fillType5=Object(rt.adjust)(this.secondaryColor,{h:-64}),this.fillType6=Object(rt.adjust)(this.primaryColor,{h:128}),this.fillType7=Object(rt.adjust)(this.secondaryColor,{h:128}),this.pie1=this.pie1||"#0b0000",this.pie2=this.pie2||"#4d1037",this.pie3=this.pie3||"#3f5258",this.pie4=this.pie4||"#4f2f1b",this.pie5=this.pie5||"#6e0a0a",this.pie6=this.pie6||"#3b0048",this.pie7=this.pie7||"#995a01",this.pie8=this.pie8||"#154706",this.pie9=this.pie9||"#161722",this.pie10=this.pie10||"#00296f",this.pie11=this.pie11||"#01629c",this.pie12=this.pie12||"#010029",this.pieTitleTextSize=this.pieTitleTextSize||"25px",this.pieTitleTextColor=this.pieTitleTextColor||this.taskTextDarkColor,this.pieSectionTextSize=this.pieSectionTextSize||"17px",this.pieSectionTextColor=this.pieSectionTextColor||this.textColor,this.pieLegendTextSize=this.pieLegendTextSize||"17px",this.pieLegendTextColor=this.pieLegendTextColor||this.taskTextDarkColor,this.pieStrokeColor=this.pieStrokeColor||"black",this.pieStrokeWidth=this.pieStrokeWidth||"2px",this.pieOpacity=this.pieOpacity||"0.7",this.classText=this.primaryTextColor,this.requirementBackground=this.requirementBackground||this.primaryColor,this.requirementBorderColor=this.requirementBorderColor||this.primaryBorderColor,this.requirementBorderSize=this.requirementBorderSize||this.primaryBorderColor,this.requirementTextColor=this.requirementTextColor||this.primaryTextColor,this.relationColor=this.relationColor||this.lineColor,this.relationLabelBackground=this.relationLabelBackground||(this.darkMode?Object(rt.darken)(this.secondaryColor,30):this.secondaryColor),this.relationLabelColor=this.relationLabelColor||this.actorTextColor}},{key:"calculate",value:function(t){var e=this;if("object"===ct(t)){var n=Object.keys(t);n.forEach((function(n){e[n]=t[n]})),this.updateColors(),n.forEach((function(n){e[n]=t[n]}))}else this.updateColors()}}])&&ut(e.prototype,n),r&&ut(e,r),t}();function ht(t){return(ht="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}function ft(t,e){for(var n=0;n<e.length;n++){var r=e[n];r.enumerable=r.enumerable||!1,r.configurable=!0,"value"in r&&(r.writable=!0),Object.defineProperty(t,r.key,r)}}var dt=function(){function t(){!function(t,e){if(!(t instanceof e))throw new TypeError("Cannot call a class as a function")}(this,t),this.background="#f4f4f4",this.primaryColor="#ECECFF",this.secondaryColor=Object(rt.adjust)(this.primaryColor,{h:120}),this.secondaryColor="#ffffde",this.tertiaryColor=Object(rt.adjust)(this.primaryColor,{h:-160}),this.primaryBorderColor=it(this.primaryColor,this.darkMode),this.secondaryBorderColor=it(this.secondaryColor,this.darkMode),this.tertiaryBorderColor=it(this.tertiaryColor,this.darkMode),this.primaryTextColor=Object(rt.invert)(this.primaryColor),this.secondaryTextColor=Object(rt.invert)(this.secondaryColor),this.tertiaryTextColor=Object(rt.invert)(this.tertiaryColor),this.lineColor=Object(rt.invert)(this.background),this.textColor=Object(rt.invert)(this.background),this.background="white",this.mainBkg="#ECECFF",this.secondBkg="#ffffde",this.lineColor="#333333",this.border1="#9370DB",this.border2="#aaaa33",this.arrowheadColor="#333333",this.fontFamily='"trebuchet ms", verdana, arial, sans-serif',this.fontSize="16px",this.labelBackground="#e8e8e8",this.textColor="#333",this.nodeBkg="calculated",this.nodeBorder="calculated",this.clusterBkg="calculated",this.clusterBorder="calculated",this.defaultLinkColor="calculated",this.titleColor="calculated",this.edgeLabelBackground="calculated",this.actorBorder="calculated",this.actorBkg="calculated",this.actorTextColor="black",this.actorLineColor="grey",this.signalColor="calculated",this.signalTextColor="calculated",this.labelBoxBkgColor="calculated",this.labelBoxBorderColor="calculated",this.labelTextColor="calculated",this.loopTextColor="calculated",this.noteBorderColor="calculated",this.noteBkgColor="#fff5ad",this.noteTextColor="calculated",this.activationBorderColor="#666",this.activationBkgColor="#f4f4f4",this.sequenceNumberColor="white",this.sectionBkgColor="calculated",this.altSectionBkgColor="calculated",this.sectionBkgColor2="calculated",this.taskBorderColor="calculated",this.taskBkgColor="calculated",this.taskTextLightColor="calculated",this.taskTextColor=this.taskTextLightColor,this.taskTextDarkColor="calculated",this.taskTextOutsideColor=this.taskTextDarkColor,this.taskTextClickableColor="calculated",this.activeTaskBorderColor="calculated",this.activeTaskBkgColor="calculated",this.gridColor="calculated",this.doneTaskBkgColor="calculated",this.doneTaskBorderColor="calculated",this.critBorderColor="calculated",this.critBkgColor="calculated",this.todayLineColor="calculated",this.sectionBkgColor=Object(rt.rgba)(102,102,255,.49),this.altSectionBkgColor="white",this.sectionBkgColor2="#fff400",this.taskBorderColor="#534fbc",this.taskBkgColor="#8a90dd",this.taskTextLightColor="white",this.taskTextColor="calculated",this.taskTextDarkColor="black",this.taskTextOutsideColor="calculated",this.taskTextClickableColor="#003163",this.activeTaskBorderColor="#534fbc",this.activeTaskBkgColor="#bfc7ff",this.gridColor="lightgrey",this.doneTaskBkgColor="lightgrey",this.doneTaskBorderColor="grey",this.critBorderColor="#ff8888",this.critBkgColor="red",this.todayLineColor="red",this.labelColor="black",this.errorBkgColor="#552222",this.errorTextColor="#552222",this.updateColors()}var e,n,r;return e=t,(n=[{key:"updateColors",value:function(){this.nodeBkg=this.mainBkg,this.nodeBorder=this.border1,this.clusterBkg=this.secondBkg,this.clusterBorder=this.border2,this.defaultLinkColor=this.lineColor,this.titleColor=this.textColor,this.edgeLabelBackground=this.labelBackground,this.actorBorder=Object(rt.lighten)(this.border1,23),this.actorBkg=this.mainBkg,this.labelBoxBkgColor=this.actorBkg,this.signalColor=this.textColor,this.signalTextColor=this.textColor,this.labelBoxBorderColor=this.actorBorder,this.labelTextColor=this.actorTextColor,this.loopTextColor=this.actorTextColor,this.noteBorderColor=this.border2,this.noteTextColor=this.actorTextColor,this.taskTextColor=this.taskTextLightColor,this.taskTextOutsideColor=this.taskTextDarkColor,this.transitionColor=this.transitionColor||this.lineColor,this.transitionLabelColor=this.transitionLabelColor||this.textColor,this.stateLabelColor=this.stateLabelColor||this.stateBkg||this.primaryTextColor,this.stateBkg=this.stateBkg||this.mainBkg,this.labelBackgroundColor=this.labelBackgroundColor||this.stateBkg,this.compositeBackground=this.compositeBackground||this.background||this.tertiaryColor,this.altBackground=this.altBackground||"#f0f0f0",this.compositeTitleBackground=this.compositeTitleBackground||this.mainBkg,this.compositeBorder=this.compositeBorder||this.nodeBorder,this.innerEndBackground=this.nodeBorder,this.specialStateColor=this.lineColor,this.errorBkgColor=this.errorBkgColor||this.tertiaryColor,this.errorTextColor=this.errorTextColor||this.tertiaryTextColor,this.transitionColor=this.transitionColor||this.lineColor,this.classText=this.primaryTextColor,this.fillType0=this.primaryColor,this.fillType1=this.secondaryColor,this.fillType2=Object(rt.adjust)(this.primaryColor,{h:64}),this.fillType3=Object(rt.adjust)(this.secondaryColor,{h:64}),this.fillType4=Object(rt.adjust)(this.primaryColor,{h:-64}),this.fillType5=Object(rt.adjust)(this.secondaryColor,{h:-64}),this.fillType6=Object(rt.adjust)(this.primaryColor,{h:128}),this.fillType7=Object(rt.adjust)(this.secondaryColor,{h:128}),this.pie1=this.pie1||this.primaryColor,this.pie2=this.pie2||this.secondaryColor,this.pie3=this.pie3||Object(rt.adjust)(this.tertiaryColor,{l:-40}),this.pie4=this.pie4||Object(rt.adjust)(this.primaryColor,{l:-10}),this.pie5=this.pie5||Object(rt.adjust)(this.secondaryColor,{l:-30}),this.pie6=this.pie6||Object(rt.adjust)(this.tertiaryColor,{l:-20}),this.pie7=this.pie7||Object(rt.adjust)(this.primaryColor,{h:60,l:-20}),this.pie8=this.pie8||Object(rt.adjust)(this.primaryColor,{h:-60,l:-40}),this.pie9=this.pie9||Object(rt.adjust)(this.primaryColor,{h:120,l:-40}),this.pie10=this.pie10||Object(rt.adjust)(this.primaryColor,{h:60,l:-40}),this.pie11=this.pie11||Object(rt.adjust)(this.primaryColor,{h:-90,l:-40}),this.pie12=this.pie12||Object(rt.adjust)(this.primaryColor,{h:120,l:-30}),this.pieTitleTextSize=this.pieTitleTextSize||"25px",this.pieTitleTextColor=this.pieTitleTextColor||this.taskTextDarkColor,this.pieSectionTextSize=this.pieSectionTextSize||"17px",this.pieSectionTextColor=this.pieSectionTextColor||this.textColor,this.pieLegendTextSize=this.pieLegendTextSize||"17px",this.pieLegendTextColor=this.pieLegendTextColor||this.taskTextDarkColor,this.pieStrokeColor=this.pieStrokeColor||"black",this.pieStrokeWidth=this.pieStrokeWidth||"2px",this.pieOpacity=this.pieOpacity||"0.7",this.requirementBackground=this.requirementBackground||this.primaryColor,this.requirementBorderColor=this.requirementBorderColor||this.primaryBorderColor,this.requirementBorderSize=this.requirementBorderSize||this.primaryBorderColor,this.requirementTextColor=this.requirementTextColor||this.primaryTextColor,this.relationColor=this.relationColor||this.lineColor,this.relationLabelBackground=this.relationLabelBackground||this.labelBackground,this.relationLabelColor=this.relationLabelColor||this.actorTextColor}},{key:"calculate",value:function(t){var e=this;if("object"===ht(t)){var n=Object.keys(t);n.forEach((function(n){e[n]=t[n]})),this.updateColors(),n.forEach((function(n){e[n]=t[n]}))}else this.updateColors()}}])&&ft(e.prototype,n),r&&ft(e,r),t}();function pt(t){return(pt="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}function yt(t,e){for(var n=0;n<e.length;n++){var r=e[n];r.enumerable=r.enumerable||!1,r.configurable=!0,"value"in r&&(r.writable=!0),Object.defineProperty(t,r.key,r)}}var gt=function(){function t(){!function(t,e){if(!(t instanceof e))throw new TypeError("Cannot call a class as a function")}(this,t),this.background="#f4f4f4",this.primaryColor="#cde498",this.secondaryColor="#cdffb2",this.background="white",this.mainBkg="#cde498",this.secondBkg="#cdffb2",this.lineColor="green",this.border1="#13540c",this.border2="#6eaa49",this.arrowheadColor="green",this.fontFamily='"trebuchet ms", verdana, arial, sans-serif',this.fontSize="16px",this.tertiaryColor=Object(rt.lighten)("#cde498",10),this.primaryBorderColor=it(this.primaryColor,this.darkMode),this.secondaryBorderColor=it(this.secondaryColor,this.darkMode),this.tertiaryBorderColor=it(this.tertiaryColor,this.darkMode),this.primaryTextColor=Object(rt.invert)(this.primaryColor),this.secondaryTextColor=Object(rt.invert)(this.secondaryColor),this.tertiaryTextColor=Object(rt.invert)(this.primaryColor),this.lineColor=Object(rt.invert)(this.background),this.textColor=Object(rt.invert)(this.background),this.nodeBkg="calculated",this.nodeBorder="calculated",this.clusterBkg="calculated",this.clusterBorder="calculated",this.defaultLinkColor="calculated",this.titleColor="#333",this.edgeLabelBackground="#e8e8e8",this.actorBorder="calculated",this.actorBkg="calculated",this.actorTextColor="black",this.actorLineColor="grey",this.signalColor="#333",this.signalTextColor="#333",this.labelBoxBkgColor="calculated",this.labelBoxBorderColor="#326932",this.labelTextColor="calculated",this.loopTextColor="calculated",this.noteBorderColor="calculated",this.noteBkgColor="#fff5ad",this.noteTextColor="calculated",this.activationBorderColor="#666",this.activationBkgColor="#f4f4f4",this.sequenceNumberColor="white",this.sectionBkgColor="#6eaa49",this.altSectionBkgColor="white",this.sectionBkgColor2="#6eaa49",this.taskBorderColor="calculated",this.taskBkgColor="#487e3a",this.taskTextLightColor="white",this.taskTextColor="calculated",this.taskTextDarkColor="black",this.taskTextOutsideColor="calculated",this.taskTextClickableColor="#003163",this.activeTaskBorderColor="calculated",this.activeTaskBkgColor="calculated",this.gridColor="lightgrey",this.doneTaskBkgColor="lightgrey",this.doneTaskBorderColor="grey",this.critBorderColor="#ff8888",this.critBkgColor="red",this.todayLineColor="red",this.labelColor="black",this.errorBkgColor="#552222",this.errorTextColor="#552222"}var e,n,r;return e=t,(n=[{key:"updateColors",value:function(){this.nodeBkg=this.mainBkg,this.nodeBorder=this.border1,this.clusterBkg=this.secondBkg,this.clusterBorder=this.border2,this.defaultLinkColor=this.lineColor,this.actorBorder=Object(rt.darken)(this.mainBkg,20),this.actorBkg=this.mainBkg,this.labelBoxBkgColor=this.actorBkg,this.labelTextColor=this.actorTextColor,this.loopTextColor=this.actorTextColor,this.noteBorderColor=this.border2,this.noteTextColor=this.actorTextColor,this.taskBorderColor=this.border1,this.taskTextColor=this.taskTextLightColor,this.taskTextOutsideColor=this.taskTextDarkColor,this.activeTaskBorderColor=this.taskBorderColor,this.activeTaskBkgColor=this.mainBkg,this.transitionColor=this.transitionColor||this.lineColor,this.transitionLabelColor=this.transitionLabelColor||this.textColor,this.stateLabelColor=this.stateLabelColor||this.stateBkg||this.primaryTextColor,this.stateBkg=this.stateBkg||this.mainBkg,this.labelBackgroundColor=this.labelBackgroundColor||this.stateBkg,this.compositeBackground=this.compositeBackground||this.background||this.tertiaryColor,this.altBackground=this.altBackground||"#f0f0f0",this.compositeTitleBackground=this.compositeTitleBackground||this.mainBkg,this.compositeBorder=this.compositeBorder||this.nodeBorder,this.innerEndBackground=this.primaryBorderColor,this.specialStateColor=this.lineColor,this.errorBkgColor=this.errorBkgColor||this.tertiaryColor,this.errorTextColor=this.errorTextColor||this.tertiaryTextColor,this.transitionColor=this.transitionColor||this.lineColor,this.classText=this.primaryTextColor,this.fillType0=this.primaryColor,this.fillType1=this.secondaryColor,this.fillType2=Object(rt.adjust)(this.primaryColor,{h:64}),this.fillType3=Object(rt.adjust)(this.secondaryColor,{h:64}),this.fillType4=Object(rt.adjust)(this.primaryColor,{h:-64}),this.fillType5=Object(rt.adjust)(this.secondaryColor,{h:-64}),this.fillType6=Object(rt.adjust)(this.primaryColor,{h:128}),this.fillType7=Object(rt.adjust)(this.secondaryColor,{h:128}),this.pie1=this.pie1||this.primaryColor,this.pie2=this.pie2||this.secondaryColor,this.pie3=this.pie3||this.tertiaryColor,this.pie4=this.pie4||Object(rt.adjust)(this.primaryColor,{l:-30}),this.pie5=this.pie5||Object(rt.adjust)(this.secondaryColor,{l:-30}),this.pie6=this.pie6||Object(rt.adjust)(this.tertiaryColor,{h:40,l:-40}),this.pie7=this.pie7||Object(rt.adjust)(this.primaryColor,{h:60,l:-10}),this.pie8=this.pie8||Object(rt.adjust)(this.primaryColor,{h:-60,l:-10}),this.pie9=this.pie9||Object(rt.adjust)(this.primaryColor,{h:120,l:0}),this.pie10=this.pie10||Object(rt.adjust)(this.primaryColor,{h:60,l:-50}),this.pie11=this.pie11||Object(rt.adjust)(this.primaryColor,{h:-60,l:-50}),this.pie12=this.pie12||Object(rt.adjust)(this.primaryColor,{h:120,l:-50}),this.pieTitleTextSize=this.pieTitleTextSize||"25px",this.pieTitleTextColor=this.pieTitleTextColor||this.taskTextDarkColor,this.pieSectionTextSize=this.pieSectionTextSize||"17px",this.pieSectionTextColor=this.pieSectionTextColor||this.textColor,this.pieLegendTextSize=this.pieLegendTextSize||"17px",this.pieLegendTextColor=this.pieLegendTextColor||this.taskTextDarkColor,this.pieStrokeColor=this.pieStrokeColor||"black",this.pieStrokeWidth=this.pieStrokeWidth||"2px",this.pieOpacity=this.pieOpacity||"0.7",this.requirementBackground=this.requirementBackground||this.primaryColor,this.requirementBorderColor=this.requirementBorderColor||this.primaryBorderColor,this.requirementBorderSize=this.requirementBorderSize||this.primaryBorderColor,this.requirementTextColor=this.requirementTextColor||this.primaryTextColor,this.relationColor=this.relationColor||this.lineColor,this.relationLabelBackground=this.relationLabelBackground||this.edgeLabelBackground,this.relationLabelColor=this.relationLabelColor||this.actorTextColor}},{key:"calculate",value:function(t){var e=this;if("object"===pt(t)){var n=Object.keys(t);n.forEach((function(n){e[n]=t[n]})),this.updateColors(),n.forEach((function(n){e[n]=t[n]}))}else this.updateColors()}}])&&yt(e.prototype,n),r&&yt(e,r),t}();function mt(t){return(mt="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}function vt(t,e){for(var n=0;n<e.length;n++){var r=e[n];r.enumerable=r.enumerable||!1,r.configurable=!0,"value"in r&&(r.writable=!0),Object.defineProperty(t,r.key,r)}}var bt=function(){function t(){!function(t,e){if(!(t instanceof e))throw new TypeError("Cannot call a class as a function")}(this,t),this.primaryColor="#eee",this.contrast="#707070",this.secondaryColor=Object(rt.lighten)(this.contrast,55),this.background="#ffffff",this.tertiaryColor=Object(rt.adjust)(this.primaryColor,{h:-160}),this.primaryBorderColor=it(this.primaryColor,this.darkMode),this.secondaryBorderColor=it(this.secondaryColor,this.darkMode),this.tertiaryBorderColor=it(this.tertiaryColor,this.darkMode),this.primaryTextColor=Object(rt.invert)(this.primaryColor),this.secondaryTextColor=Object(rt.invert)(this.secondaryColor),this.tertiaryTextColor=Object(rt.invert)(this.tertiaryColor),this.lineColor=Object(rt.invert)(this.background),this.textColor=Object(rt.invert)(this.background),this.mainBkg="#eee",this.secondBkg="calculated",this.lineColor="#666",this.border1="#999",this.border2="calculated",this.note="#ffa",this.text="#333",this.critical="#d42",this.done="#bbb",this.arrowheadColor="#333333",this.fontFamily='"trebuchet ms", verdana, arial, sans-serif',this.fontSize="16px",this.nodeBkg="calculated",this.nodeBorder="calculated",this.clusterBkg="calculated",this.clusterBorder="calculated",this.defaultLinkColor="calculated",this.titleColor="calculated",this.edgeLabelBackground="white",this.actorBorder="calculated",this.actorBkg="calculated",this.actorTextColor="calculated",this.actorLineColor="calculated",this.signalColor="calculated",this.signalTextColor="calculated",this.labelBoxBkgColor="calculated",this.labelBoxBorderColor="calculated",this.labelTextColor="calculated",this.loopTextColor="calculated",this.noteBorderColor="calculated",this.noteBkgColor="calculated",this.noteTextColor="calculated",this.activationBorderColor="#666",this.activationBkgColor="#f4f4f4",this.sequenceNumberColor="white",this.sectionBkgColor="calculated",this.altSectionBkgColor="white",this.sectionBkgColor2="calculated",this.taskBorderColor="calculated",this.taskBkgColor="calculated",this.taskTextLightColor="white",this.taskTextColor="calculated",this.taskTextDarkColor="calculated",this.taskTextOutsideColor="calculated",this.taskTextClickableColor="#003163",this.activeTaskBorderColor="calculated",this.activeTaskBkgColor="calculated",this.gridColor="calculated",this.doneTaskBkgColor="calculated",this.doneTaskBorderColor="calculated",this.critBkgColor="calculated",this.critBorderColor="calculated",this.todayLineColor="calculated",this.labelColor="black",this.errorBkgColor="#552222",this.errorTextColor="#552222"}var e,n,r;return e=t,(n=[{key:"updateColors",value:function(){this.secondBkg=Object(rt.lighten)(this.contrast,55),this.border2=this.contrast,this.nodeBkg=this.mainBkg,this.nodeBorder=this.border1,this.clusterBkg=this.secondBkg,this.clusterBorder=this.border2,this.defaultLinkColor=this.lineColor,this.titleColor=this.text,this.actorBorder=Object(rt.lighten)(this.border1,23),this.actorBkg=this.mainBkg,this.actorTextColor=this.text,this.actorLineColor=this.lineColor,this.signalColor=this.text,this.signalTextColor=this.text,this.labelBoxBkgColor=this.actorBkg,this.labelBoxBorderColor=this.actorBorder,this.labelTextColor=this.text,this.loopTextColor=this.text,this.noteBorderColor="#999",this.noteBkgColor="#666",this.noteTextColor="#fff",this.sectionBkgColor=Object(rt.lighten)(this.contrast,30),this.sectionBkgColor2=Object(rt.lighten)(this.contrast,30),this.taskBorderColor=Object(rt.darken)(this.contrast,10),this.taskBkgColor=this.contrast,this.taskTextColor=this.taskTextLightColor,this.taskTextDarkColor=this.text,this.taskTextOutsideColor=this.taskTextDarkColor,this.activeTaskBorderColor=this.taskBorderColor,this.activeTaskBkgColor=this.mainBkg,this.gridColor=Object(rt.lighten)(this.border1,30),this.doneTaskBkgColor=this.done,this.doneTaskBorderColor=this.lineColor,this.critBkgColor=this.critical,this.critBorderColor=Object(rt.darken)(this.critBkgColor,10),this.todayLineColor=this.critBkgColor,this.transitionColor=this.transitionColor||"#000",this.transitionLabelColor=this.transitionLabelColor||this.textColor,this.stateLabelColor=this.stateLabelColor||this.stateBkg||this.primaryTextColor,this.stateBkg=this.stateBkg||this.mainBkg,this.labelBackgroundColor=this.labelBackgroundColor||this.stateBkg,this.compositeBackground=this.compositeBackground||this.background||this.tertiaryColor,this.altBackground=this.altBackground||"#f4f4f4",this.compositeTitleBackground=this.compositeTitleBackground||this.mainBkg,this.stateBorder=this.stateBorder||"#000",this.innerEndBackground=this.primaryBorderColor,this.specialStateColor="#222",this.errorBkgColor=this.errorBkgColor||this.tertiaryColor,this.errorTextColor=this.errorTextColor||this.tertiaryTextColor,this.classText=this.primaryTextColor,this.fillType0=this.primaryColor,this.fillType1=this.secondaryColor,this.fillType2=Object(rt.adjust)(this.primaryColor,{h:64}),this.fillType3=Object(rt.adjust)(this.secondaryColor,{h:64}),this.fillType4=Object(rt.adjust)(this.primaryColor,{h:-64}),this.fillType5=Object(rt.adjust)(this.secondaryColor,{h:-64}),this.fillType6=Object(rt.adjust)(this.primaryColor,{h:128}),this.fillType7=Object(rt.adjust)(this.secondaryColor,{h:128}),this.pie1=this.pie1||"#F4F4F4",this.pie2=this.pie2||"#555",this.pie3=this.pie3||"#BBB",this.pie4=this.pie4||"#777",this.pie5=this.pie5||"#999",this.pie6=this.pie6||"#DDD",this.pie7=this.pie7||"#FFF",this.pie8=this.pie8||"#DDD",this.pie9=this.pie9||"#BBB",this.pie10=this.pie10||"#999",this.pie11=this.pie11||"#777",this.pie12=this.pie12||"#555",this.pieTitleTextSize=this.pieTitleTextSize||"25px",this.pieTitleTextColor=this.pieTitleTextColor||this.taskTextDarkColor,this.pieSectionTextSize=this.pieSectionTextSize||"17px",this.pieSectionTextColor=this.pieSectionTextColor||this.textColor,this.pieLegendTextSize=this.pieLegendTextSize||"17px",this.pieLegendTextColor=this.pieLegendTextColor||this.taskTextDarkColor,this.pieStrokeColor=this.pieStrokeColor||"black",this.pieStrokeWidth=this.pieStrokeWidth||"2px",this.pieOpacity=this.pieOpacity||"0.7",this.requirementBackground=this.requirementBackground||this.primaryColor,this.requirementBorderColor=this.requirementBorderColor||this.primaryBorderColor,this.requirementBorderSize=this.requirementBorderSize||this.primaryBorderColor,this.requirementTextColor=this.requirementTextColor||this.primaryTextColor,this.relationColor=this.relationColor||this.lineColor,this.relationLabelBackground=this.relationLabelBackground||this.edgeLabelBackground,this.relationLabelColor=this.relationLabelColor||this.actorTextColor}},{key:"calculate",value:function(t){var e=this;if("object"===mt(t)){var n=Object.keys(t);n.forEach((function(n){e[n]=t[n]})),this.updateColors(),n.forEach((function(n){e[n]=t[n]}))}else this.updateColors()}}])&&vt(e.prototype,n),r&&vt(e,r),t}(),xt={base:{getThemeVariables:function(t){var e=new st;return e.calculate(t),e}},dark:{getThemeVariables:function(t){var e=new lt;return e.calculate(t),e}},default:{getThemeVariables:function(t){var e=new dt;return e.calculate(t),e}},forest:{getThemeVariables:function(t){var e=new gt;return e.calculate(t),e}},neutral:{getThemeVariables:function(t){var e=new bt;return e.calculate(t),e}}};function _t(t){return function(t){if(Array.isArray(t))return kt(t)}(t)||function(t){if("undefined"!=typeof Symbol&&null!=t[Symbol.iterator]||null!=t["@@iterator"])return Array.from(t)}(t)||function(t,e){if(!t)return;if("string"==typeof t)return kt(t,e);var n=Object.prototype.toString.call(t).slice(8,-1);"Object"===n&&t.constructor&&(n=t.constructor.name);if("Map"===n||"Set"===n)return Array.from(t);if("Arguments"===n||/^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(n))return kt(t,e)}(t)||function(){throw new TypeError("Invalid attempt to spread non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}()}function kt(t,e){(null==e||e>t.length)&&(e=t.length);for(var n=0,r=new Array(e);n<e;n++)r[n]=t[n];return r}function wt(t){return(wt="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}var Tt={theme:"default",themeVariables:xt.default.getThemeVariables(),themeCSS:void 0,maxTextSize:5e4,fontFamily:'"trebuchet ms", verdana, arial, sans-serif;',logLevel:5,securityLevel:"strict",startOnLoad:!0,arrowMarkerAbsolute:!1,secure:["secure","securityLevel","startOnLoad","maxTextSize"],deterministicIds:!1,deterministicIDSeed:void 0,flowchart:{diagramPadding:8,htmlLabels:!0,nodeSpacing:50,rankSpacing:50,curve:"basis",padding:15,useMaxWidth:!0,defaultRenderer:"dagre-d3"},sequence:{activationWidth:10,diagramMarginX:50,diagramMarginY:10,actorMargin:50,width:150,height:65,boxMargin:10,boxTextMargin:5,noteMargin:10,messageMargin:35,messageAlign:"center",mirrorActors:!0,bottomMarginAdj:1,useMaxWidth:!0,rightAngles:!1,showSequenceNumbers:!1,actorFontSize:14,actorFontFamily:'"Open-Sans", "sans-serif"',actorFontWeight:400,noteFontSize:14,noteFontFamily:'"trebuchet ms", verdana, arial, sans-serif',noteFontWeight:400,noteAlign:"center",messageFontSize:16,messageFontFamily:'"trebuchet ms", verdana, arial, sans-serif',messageFontWeight:400,wrap:!1,wrapPadding:10,labelBoxWidth:50,labelBoxHeight:20,messageFont:function(){return{fontFamily:this.messageFontFamily,fontSize:this.messageFontSize,fontWeight:this.messageFontWeight}},noteFont:function(){return{fontFamily:this.noteFontFamily,fontSize:this.noteFontSize,fontWeight:this.noteFontWeight}},actorFont:function(){return{fontFamily:this.actorFontFamily,fontSize:this.actorFontSize,fontWeight:this.actorFontWeight}}},gantt:{titleTopMargin:25,barHeight:20,barGap:4,topPadding:50,rightPadding:75,leftPadding:75,gridLineStartPadding:35,fontSize:11,sectionFontSize:11,numberSectionStyles:4,axisFormat:"%Y-%m-%d",useMaxWidth:!0,topAxis:!1,useWidth:void 0},journey:{diagramMarginX:50,diagramMarginY:10,leftMargin:150,width:150,height:50,boxMargin:10,boxTextMargin:5,noteMargin:10,messageMargin:35,messageAlign:"center",bottomMarginAdj:1,useMaxWidth:!0,rightAngles:!1,taskFontSize:14,taskFontFamily:'"Open-Sans", "sans-serif"',taskMargin:50,activationWidth:10,textPlacement:"fo",actorColours:["#8FBC8F","#7CFC00","#00FFFF","#20B2AA","#B0E0E6","#FFFFE0"],sectionFills:["#191970","#8B008B","#4B0082","#2F4F4F","#800000","#8B4513","#00008B"],sectionColours:["#fff"]},class:{arrowMarkerAbsolute:!1,useMaxWidth:!0,defaultRenderer:"dagre-wrapper"},git:{arrowMarkerAbsolute:!1,useWidth:void 0,useMaxWidth:!0},state:{dividerMargin:10,sizeUnit:5,padding:8,textHeight:10,titleShift:-15,noteMargin:10,forkWidth:70,forkHeight:7,miniPadding:2,fontSizeFactor:5.02,fontSize:24,labelHeight:16,edgeLengthFactor:"20",compositTitleSize:35,radius:5,useMaxWidth:!0,defaultRenderer:"dagre-wrapper"},er:{diagramPadding:20,layoutDirection:"TB",minEntityWidth:100,minEntityHeight:75,entityPadding:15,stroke:"gray",fill:"honeydew",fontSize:12,useMaxWidth:!0},pie:{useWidth:void 0,useMaxWidth:!0},requirement:{useWidth:void 0,useMaxWidth:!0,rect_fill:"#f9f9f9",text_color:"#333",rect_border_size:"0.5px",rect_border_color:"#bbb",rect_min_width:200,rect_min_height:200,fontSize:14,rect_padding:10,line_height:20}};Tt.class.arrowMarkerAbsolute=Tt.arrowMarkerAbsolute,Tt.git.arrowMarkerAbsolute=Tt.arrowMarkerAbsolute;var Et=function t(e){var n=arguments.length>1&&void 0!==arguments[1]?arguments[1]:"";return Object.keys(e).reduce((function(r,i){return Array.isArray(e[i])?r:"object"===wt(e[i])&&null!==e[i]?[].concat(_t(r),[n+i],_t(t(e[i],""))):[].concat(_t(r),[n+i])}),[])}(Tt,""),Ct=Tt;function St(t,e){for(var n=0;n<e.length;n++){var r=e[n];r.enumerable=r.enumerable||!1,r.configurable=!0,"value"in r&&(r.writable=!0),Object.defineProperty(t,r.key,r)}}function At(t,e){var n="undefined"!=typeof Symbol&&t[Symbol.iterator]||t["@@iterator"];if(!n){if(Array.isArray(t)||(n=Nt(t))||e&&t&&"number"==typeof t.length){n&&(t=n);var r=0,i=function(){};return{s:i,n:function(){return r>=t.length?{done:!0}:{done:!1,value:t[r++]}},e:function(t){throw t},f:i}}throw new TypeError("Invalid attempt to iterate non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}var a,o=!0,s=!1;return{s:function(){n=n.call(t)},n:function(){var t=n.next();return o=t.done,t},e:function(t){s=!0,a=t},f:function(){try{o||null==n.return||n.return()}finally{if(s)throw a}}}}function Mt(t){return(Mt="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}function Ot(t){return function(t){if(Array.isArray(t))return Bt(t)}(t)||function(t){if("undefined"!=typeof Symbol&&null!=t[Symbol.iterator]||null!=t["@@iterator"])return Array.from(t)}(t)||Nt(t)||function(){throw new TypeError("Invalid attempt to spread non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}()}function Nt(t,e){if(t){if("string"==typeof t)return Bt(t,e);var n=Object.prototype.toString.call(t).slice(8,-1);return"Object"===n&&t.constructor&&(n=t.constructor.name),"Map"===n||"Set"===n?Array.from(t):"Arguments"===n||/^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(n)?Bt(t,e):void 0}}function Bt(t,e){(null==e||e>t.length)&&(e=t.length);for(var n=0,r=new Array(e);n<e;n++)r[n]=t[n];return r}var Dt={curveBasis:u.curveBasis,curveBasisClosed:u.curveBasisClosed,curveBasisOpen:u.curveBasisOpen,curveLinear:u.curveLinear,curveLinearClosed:u.curveLinearClosed,curveMonotoneX:u.curveMonotoneX,curveMonotoneY:u.curveMonotoneY,curveNatural:u.curveNatural,curveStep:u.curveStep,curveStepAfter:u.curveStepAfter,curveStepBefore:u.curveStepBefore},Lt=/[%]{2}[{]\s*(?:(?:(\w+)\s*:|(\w+))\s*(?:(?:(\w+))|((?:(?![}][%]{2}).|\r?\n)*))?\s*)(?:[}][%]{2})?/gi,It=/\s*(?:(?:(\w+)(?=:):|(\w+))\s*(?:(?:(\w+))|((?:(?![}][%]{2}).|\r?\n)*))?\s*)(?:[}][%]{2})?/gi,Rt=/\s*%%.*\n/gm,Ft=function(t){var e=arguments.length>1&&void 0!==arguments[1]?arguments[1]:null;try{var n=new RegExp("[%]{2}(?![{]".concat(It.source,")(?=[}][%]{2}).*\n"),"ig");t=t.trim().replace(n,"").replace(/'/gm,'"'),o.debug("Detecting diagram directive".concat(null!==e?" type:"+e:""," based on the text:").concat(t));for(var r,i=[];null!==(r=Lt.exec(t));)if(r.index===Lt.lastIndex&&Lt.lastIndex++,r&&!e||e&&r[1]&&r[1].match(e)||e&&r[2]&&r[2].match(e)){var a=r[1]?r[1]:r[2],s=r[3]?r[3].trim():r[4]?JSON.parse(r[4].trim()):null;i.push({type:a,args:s})}return 0===i.length&&i.push({type:t,args:null}),1===i.length?i[0]:i}catch(n){return o.error("ERROR: ".concat(n.message," - Unable to parse directive\n      ").concat(null!==e?" type:"+e:""," based on the text:").concat(t)),{type:null,args:null}}},Pt=function(t,e){return(t=t.replace(Lt,"").replace(Rt,"\n")).match(/^\s*sequenceDiagram/)?"sequence":t.match(/^\s*gantt/)?"gantt":t.match(/^\s*classDiagram-v2/)?"classDiagram":t.match(/^\s*classDiagram/)?e&&e.class&&"dagre-wrapper"===e.class.defaultRenderer?"classDiagram":"class":t.match(/^\s*stateDiagram-v2/)?"stateDiagram":t.match(/^\s*stateDiagram/)?e&&e.class&&"dagre-wrapper"===e.state.defaultRenderer?"stateDiagram":"state":t.match(/^\s*gitGraph/)?"git":t.match(/^\s*flowchart/)?"flowchart-v2":t.match(/^\s*info/)?"info":t.match(/^\s*pie/)?"pie":t.match(/^\s*erDiagram/)?"er":t.match(/^\s*journey/)?"journey":t.match(/^\s*requirement/)||t.match(/^\s*requirementDiagram/)?"requirement":e&&e.flowchart&&"dagre-wrapper"===e.flowchart.defaultRenderer?"flowchart-v2":"flowchart"},jt=function(t,e){var n={};return function(){for(var r=arguments.length,i=new Array(r),a=0;a<r;a++)i[a]=arguments[a];var o=e?e.apply(void 0,i):i[0];if(o in n)return n[o];var s=t.apply(void 0,i);return n[o]=s,s}},Yt=function(t,e){if(!t)return e;var n="curve".concat(t.charAt(0).toUpperCase()+t.slice(1));return Dt[n]||e},zt=function(t,e){return t&&e?Math.sqrt(Math.pow(e.x-t.x,2)+Math.pow(e.y-t.y,2)):0},Ut=function(t){for(var e="",n="",r=0;r<t.length;r++)void 0!==t[r]&&(t[r].startsWith("color:")||t[r].startsWith("text-align:")?n=n+t[r]+";":e=e+t[r]+";");return{style:e,labelStyle:n}},$t=0,qt=function(){return $t++,"id-"+Math.random().toString(36).substr(2,12)+"-"+$t};var Wt,Ht=function(t){return function(t){for(var e="",n="0123456789abcdef".length,r=0;r<t;r++)e+="0123456789abcdef".charAt(Math.floor(Math.random()*n));return e}(t.length)},Vt=function t(e,n,r){var i=Object.assign({depth:2,clobber:!1},r),a=i.depth,o=i.clobber;return Array.isArray(n)&&!Array.isArray(e)?(n.forEach((function(n){return t(e,n,r)})),e):Array.isArray(n)&&Array.isArray(e)?(n.forEach((function(t){-1===e.indexOf(t)&&e.push(t)})),e):void 0===e||a<=0?null!=e&&"object"===Mt(e)&&"object"===Mt(n)?Object.assign(e,n):n:(void 0!==n&&"object"===Mt(e)&&"object"===Mt(n)&&Object.keys(n).forEach((function(r){"object"!==Mt(n[r])||void 0!==e[r]&&"object"!==Mt(e[r])?(o||"object"!==Mt(e[r])&&"object"!==Mt(n[r]))&&(e[r]=n[r]):(void 0===e[r]&&(e[r]=Array.isArray(n[r])?[]:{}),e[r]=t(e[r],n[r],{depth:a-1,clobber:o}))})),e)},Gt=function(t,e){var n=e.text.replace(nt.lineBreakRegex," "),r=t.append("text");r.attr("x",e.x),r.attr("y",e.y),r.style("text-anchor",e.anchor),r.style("font-family",e.fontFamily),r.style("font-size",e.fontSize),r.style("font-weight",e.fontWeight),r.attr("fill",e.fill),void 0!==e.class&&r.attr("class",e.class);var i=r.append("tspan");return i.attr("x",e.x+2*e.textMargin),i.attr("fill",e.fill),i.text(n),r},Xt=jt((function(t,e,n){if(!t)return t;if(n=Object.assign({fontSize:12,fontWeight:400,fontFamily:"Arial",joinWith:"<br/>"},n),nt.lineBreakRegex.test(t))return t;var r=t.split(" "),i=[],a="";return r.forEach((function(t,o){var s=Kt("".concat(t," "),n),c=Kt(a,n);if(s>e){var u=Zt(t,e,"-",n),l=u.hyphenatedStrings,h=u.remainingWord;i.push.apply(i,[a].concat(Ot(l))),a=h}else c+s>=e?(i.push(a),a=t):a=[a,t].filter(Boolean).join(" ");o+1===r.length&&i.push(a)})),i.filter((function(t){return""!==t})).join(n.joinWith)}),(function(t,e,n){return"".concat(t,"-").concat(e,"-").concat(n.fontSize,"-").concat(n.fontWeight,"-").concat(n.fontFamily,"-").concat(n.joinWith)})),Zt=jt((function(t,e){var n=arguments.length>2&&void 0!==arguments[2]?arguments[2]:"-",r=arguments.length>3?arguments[3]:void 0;r=Object.assign({fontSize:12,fontWeight:400,fontFamily:"Arial",margin:0},r);var i=t.split(""),a=[],o="";return i.forEach((function(t,s){var c="".concat(o).concat(t);if(Kt(c,r)>=e){var u=s+1,l=i.length===u,h="".concat(c).concat(n);a.push(l?c:h),o=""}else o=c})),{hyphenatedStrings:a,remainingWord:o}}),(function(t,e){var n=arguments.length>2&&void 0!==arguments[2]?arguments[2]:"-",r=arguments.length>3?arguments[3]:void 0;return"".concat(t,"-").concat(e,"-").concat(n,"-").concat(r.fontSize,"-").concat(r.fontWeight,"-").concat(r.fontFamily)})),Kt=function(t,e){return e=Object.assign({fontSize:12,fontWeight:400,fontFamily:"Arial"},e),Qt(t,e).width},Qt=jt((function(t,e){var n=e=Object.assign({fontSize:12,fontWeight:400,fontFamily:"Arial"},e),r=n.fontSize,i=n.fontFamily,a=n.fontWeight;if(!t)return{width:0,height:0};var o=["sans-serif",i],s=t.split(nt.lineBreakRegex),c=[],l=Object(u.select)("body");if(!l.remove)return{width:0,height:0,lineHeight:0};for(var h=l.append("svg"),f=0,d=o;f<d.length;f++){var p,y=d[f],g=0,m={width:0,height:0,lineHeight:0},v=At(s);try{for(v.s();!(p=v.n()).done;){var b=p.value,x={x:0,y:0,fill:void 0,anchor:"start",style:"#666",width:100,height:100,textMargin:0,rx:0,ry:0,valign:void 0};x.text=b;var _=Gt(h,x).style("font-size",r).style("font-weight",a).style("font-family",y),k=(_._groups||_)[0][0].getBBox();m.width=Math.round(Math.max(m.width,k.width)),g=Math.round(k.height),m.height+=g,m.lineHeight=Math.round(Math.max(m.lineHeight,g))}}catch(t){v.e(t)}finally{v.f()}c.push(m)}return h.remove(),c[isNaN(c[1].height)||isNaN(c[1].width)||isNaN(c[1].lineHeight)||c[0].height>c[1].height&&c[0].width>c[1].width&&c[0].lineHeight>c[1].lineHeight?0:1]}),(function(t,e){return"".concat(t,"-").concat(e.fontSize,"-").concat(e.fontWeight,"-").concat(e.fontFamily)})),Jt=function(t,e,n){var r=new Map;return r.set("height",t),n?(r.set("width","100%"),r.set("style","max-width: ".concat(e,"px;"))):r.set("width",e),r},te=function(t,e,n,r){!function(t,e){var n,r=At(e);try{for(r.s();!(n=r.n()).done;){var i=n.value;t.attr(i[0],i[1])}}catch(t){r.e(t)}finally{r.f()}}(t,Jt(e,n,r))},ee=function t(e){o.debug("directiveSanitizer called with",e),"object"===Mt(e)&&(e.length?e.forEach((function(e){return t(e)})):Object.keys(e).forEach((function(n){o.debug("Checking key",n),0===n.indexOf("__")&&(o.debug("sanitize deleting __ option",n),delete e[n]),n.indexOf("proto")>=0&&(o.debug("sanitize deleting proto option",n),delete e[n]),n.indexOf("constr")>=0&&(o.debug("sanitize deleting constr option",n),delete e[n]),Et.indexOf(n)<0?(o.debug("sanitize deleting option",n),delete e[n]):"object"===Mt(e[n])&&(o.debug("sanitize deleting object",n),t(e[n]))})))},ne={assignWithDepth:Vt,wrapLabel:Xt,calculateTextHeight:function(t,e){return e=Object.assign({fontSize:12,fontWeight:400,fontFamily:"Arial",margin:15},e),Qt(t,e).height},calculateTextWidth:Kt,calculateTextDimensions:Qt,calculateSvgSizeAttrs:Jt,configureSvgSize:te,detectInit:function(t,e){var n=Ft(t,/(?:init\b)|(?:initialize\b)/),r={};if(Array.isArray(n)){var i=n.map((function(t){return t.args}));ee(i),r=Vt(r,Ot(i))}else r=n.args;if(r){var a=Pt(t,e);["config"].forEach((function(t){void 0!==r[t]&&("flowchart-v2"===a&&(a="flowchart"),r[a]=r[t],delete r[t])}))}return r},detectDirective:Ft,detectType:Pt,isSubstringInArray:function(t,e){for(var n=0;n<e.length;n++)if(e[n].match(t))return n;return-1},interpolateToCurve:Yt,calcLabelPosition:function(t){return function(t){var e,n=0;t.forEach((function(t){n+=zt(t,e),e=t}));var r=n/2,i=void 0;return e=void 0,t.forEach((function(t){if(e&&!i){var n=zt(t,e);if(n<r)r-=n;else{var a=r/n;a<=0&&(i=e),a>=1&&(i={x:t.x,y:t.y}),a>0&&a<1&&(i={x:(1-a)*e.x+a*t.x,y:(1-a)*e.y+a*t.y})}}e=t})),i}(t)},calcCardinalityPosition:function(t,e,n){var r;o.info("our points",e),e[0]!==n&&(e=e.reverse()),e.forEach((function(t){zt(t,r),r=t}));var i,a=25;r=void 0,e.forEach((function(t){if(r&&!i){var e=zt(t,r);if(e<a)a-=e;else{var n=a/e;n<=0&&(i=r),n>=1&&(i={x:t.x,y:t.y}),n>0&&n<1&&(i={x:(1-n)*r.x+n*t.x,y:(1-n)*r.y+n*t.y})}}r=t}));var s=t?10:5,c=Math.atan2(e[0].y-i.y,e[0].x-i.x),u={x:0,y:0};return u.x=Math.sin(c)*s+(e[0].x+i.x)/2,u.y=-Math.cos(c)*s+(e[0].y+i.y)/2,u},calcTerminalLabelPosition:function(t,e,n){var r,i=JSON.parse(JSON.stringify(n));o.info("our points",i),"start_left"!==e&&"start_right"!==e&&(i=i.reverse()),i.forEach((function(t){zt(t,r),r=t}));var a,s=25+t;r=void 0,i.forEach((function(t){if(r&&!a){var e=zt(t,r);if(e<s)s-=e;else{var n=s/e;n<=0&&(a=r),n>=1&&(a={x:t.x,y:t.y}),n>0&&n<1&&(a={x:(1-n)*r.x+n*t.x,y:(1-n)*r.y+n*t.y})}}r=t}));var c=10+.5*t,u=Math.atan2(i[0].y-a.y,i[0].x-a.x),l={x:0,y:0};return l.x=Math.sin(u)*c+(i[0].x+a.x)/2,l.y=-Math.cos(u)*c+(i[0].y+a.y)/2,"start_left"===e&&(l.x=Math.sin(u+Math.PI)*c+(i[0].x+a.x)/2,l.y=-Math.cos(u+Math.PI)*c+(i[0].y+a.y)/2),"end_right"===e&&(l.x=Math.sin(u-Math.PI)*c+(i[0].x+a.x)/2-5,l.y=-Math.cos(u-Math.PI)*c+(i[0].y+a.y)/2-5),"end_left"===e&&(l.x=Math.sin(u)*c+(i[0].x+a.x)/2-5,l.y=-Math.cos(u)*c+(i[0].y+a.y)/2-5),l},formatUrl:function(t,e){var n=t.trim();if(n)return"loose"!==e.securityLevel?Object(G.sanitizeUrl)(n):n},getStylesFromArray:Ut,generateId:qt,random:Ht,memoize:jt,runFunc:function(t){for(var e,n=t.split("."),r=n.length-1,i=n[r],a=window,o=0;o<r;o++)if(!(a=a[n[o]]))return;for(var s=arguments.length,c=new Array(s>1?s-1:0),u=1;u<s;u++)c[u-1]=arguments[u];(e=a)[i].apply(e,c)},entityDecode:function(t){return Wt=Wt||document.createElement("div"),t=escape(t).replace(/%26/g,"&").replace(/%23/g,"#").replace(/%3B/g,";"),Wt.innerHTML=t,unescape(Wt.textContent)},initIdGeneratior:function(){function t(e,n){!function(t,e){if(!(t instanceof e))throw new TypeError("Cannot call a class as a function")}(this,t),this.deterministic=e,this.seed=n,this.count=n?n.length:0}var e,n,r;return e=t,(n=[{key:"next",value:function(){return this.deterministic?this.count++:Date.now()}}])&&St(e.prototype,n),r&&St(e,r),t}(),directiveSanitizer:ee};function re(t){return(re="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}var ie,ae=Object.freeze(Ct),oe=Vt({},ae),se=[],ce=Vt({},ae),ue=function(t,e){for(var n=Vt({},t),r={},i=0;i<e.length;i++){var a=e[i];fe(a),r=Vt(r,a)}if(n=Vt(n,r),r.theme){var o=Vt({},ie),s=Vt(o.themeVariables||{},r.themeVariables);n.themeVariables=xt[n.theme].getThemeVariables(s)}return ce=n,n},le=function(){return Vt({},oe)},he=function(){return Vt({},ce)},fe=function t(e){Object.keys(oe.secure).forEach((function(t){void 0!==e[oe.secure[t]]&&(o.debug("Denied attempt to modify a secure key ".concat(oe.secure[t]),e[oe.secure[t]]),delete e[oe.secure[t]])})),Object.keys(e).forEach((function(t){0===t.indexOf("__")&&delete e[t]})),Object.keys(e).forEach((function(n){"string"==typeof e[n]&&(e[n].indexOf("<")>-1||e[n].indexOf(">")>-1||e[n].indexOf("url(data:")>-1)&&delete e[n],"object"===re(e[n])&&t(e[n])}))},de=function(t){t.fontFamily&&(t.themeVariables&&t.themeVariables.fontFamily||(t.themeVariables={fontFamily:t.fontFamily})),se.push(t),ue(oe,se)},pe=function(){ue(oe,se=[])};function ye(t){return function(t){if(Array.isArray(t))return ge(t)}(t)||function(t){if("undefined"!=typeof Symbol&&null!=t[Symbol.iterator]||null!=t["@@iterator"])return Array.from(t)}(t)||function(t,e){if(!t)return;if("string"==typeof t)return ge(t,e);var n=Object.prototype.toString.call(t).slice(8,-1);"Object"===n&&t.constructor&&(n=t.constructor.name);if("Map"===n||"Set"===n)return Array.from(t);if("Arguments"===n||/^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(n))return ge(t,e)}(t)||function(){throw new TypeError("Invalid attempt to spread non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}()}function ge(t,e){(null==e||e>t.length)&&(e=t.length);for(var n=0,r=new Array(e);n<e;n++)r[n]=t[n];return r}var me=[],ve={},be=0,xe=[],_e=function(t){var e="",n=t;if(t.indexOf("~")>0){var r=t.split("~");n=r[0],e=r[1]}return{className:n,type:e}},ke=function(t){var e=_e(t);void 0===ve[e.className]&&(ve[e.className]={id:e.className,type:e.type,cssClasses:[],methods:[],members:[],annotations:[],domId:"classid-"+e.className+"-"+be},be++)},we=function(t){for(var e=Object.keys(ve),n=0;n<e.length;n++)if(ve[e[n]].id===t)return ve[e[n]].domId},Te=function(t,e){var n=_e(t).className,r=ve[n];if("string"==typeof e){var i=e.trim();i.startsWith("<<")&&i.endsWith(">>")?r.annotations.push(i.substring(2,i.length-2)):i.indexOf(")")>0?r.methods.push(i):i&&r.members.push(i)}},Ee=function(t,e){t.split(",").forEach((function(t){var n=t;t[0].match(/\d/)&&(n="classid-"+n),void 0!==ve[n]&&ve[n].cssClasses.push(e)}))},Ce=function(t,e,n){var r=he(),i=t,a=we(i);if("loose"===r.securityLevel&&void 0!==e&&void 0!==ve[i]){var o=[];if("string"==typeof n){o=n.split(/,(?=(?:(?:[^"]*"){2})*[^"]*$)/);for(var s=0;s<o.length;s++){var c=o[s].trim();'"'===c.charAt(0)&&'"'===c.charAt(c.length-1)&&(c=c.substr(1,c.length-2)),o[s]=c}}0===o.length&&o.push(a),xe.push((function(){var t=document.querySelector('[id="'.concat(a,'"]'));null!==t&&t.addEventListener("click",(function(){ne.runFunc.apply(ne,[e].concat(ye(o)))}),!1)}))}},Se={AGGREGATION:0,EXTENSION:1,COMPOSITION:2,DEPENDENCY:3},Ae=function(t){var e=Object(u.select)(".mermaidTooltip");null===(e._groups||e)[0][0]&&(e=Object(u.select)("body").append("div").attr("class","mermaidTooltip").style("opacity",0)),Object(u.select)(t).select("svg").selectAll("g.node").on("mouseover",(function(){var t=Object(u.select)(this);if(null!==t.attr("title")){var n=this.getBoundingClientRect();e.transition().duration(200).style("opacity",".9"),e.html(t.attr("title")).style("left",window.scrollX+n.left+(n.right-n.left)/2+"px").style("top",window.scrollY+n.top-14+document.body.scrollTop+"px"),t.classed("hover",!0)}})).on("mouseout",(function(){e.transition().duration(500).style("opacity",0),Object(u.select)(this).classed("hover",!1)}))};xe.push(Ae);var Me="TB",Oe={parseDirective:function(t,e,n){gc.parseDirective(this,t,e,n)},getConfig:function(){return he().class},addClass:ke,bindFunctions:function(t){xe.forEach((function(e){e(t)}))},clear:function(){me=[],ve={},(xe=[]).push(Ae)},getClass:function(t){return ve[t]},getClasses:function(){return ve},addAnnotation:function(t,e){var n=_e(t).className;ve[n].annotations.push(e)},getRelations:function(){return me},addRelation:function(t){o.debug("Adding relation: "+JSON.stringify(t)),ke(t.id1),ke(t.id2),t.id1=_e(t.id1).className,t.id2=_e(t.id2).className,me.push(t)},getDirection:function(){return Me},setDirection:function(t){Me=t},addMember:Te,addMembers:function(t,e){Array.isArray(e)&&(e.reverse(),e.forEach((function(e){return Te(t,e)})))},cleanupLabel:function(t){return":"===t.substring(0,1)?t.substr(1).trim():t.trim()},lineType:{LINE:0,DOTTED_LINE:1},relationType:Se,setClickEvent:function(t,e,n){t.split(",").forEach((function(t){Ce(t,e,n),ve[t].haveCallback=!0})),Ee(t,"clickable")},setCssClass:Ee,setLink:function(t,e,n){var r=he();t.split(",").forEach((function(t){var i=t;t[0].match(/\d/)&&(i="classid-"+i),void 0!==ve[i]&&(ve[i].link=ne.formatUrl(e,r),ve[i].linkTarget="string"==typeof n?n:"_blank")})),Ee(t,"clickable")},setTooltip:function(t,e){var n=he();t.split(",").forEach((function(t){void 0!==e&&(ve[t].tooltip=nt.sanitizeText(e,n))}))},lookUpDomId:we},Ne=n(10),Be=n.n(Ne),De=n(3),Le=n.n(De),Ie=n(16),Re=n.n(Ie),Fe=0,Pe=function(t){var e=t.match(/^(\+|-|~|#)?(\w+)(~\w+~|\[\])?\s+(\w+) *(\*|\$)?$/),n=t.match(/^([+|\-|~|#])?(\w+) *\( *(.*)\) *(\*|\$)? *(\w*[~|[\]]*\s*\w*~?)$/);return e&&!n?je(e):n?Ye(n):ze(t)},je=function(t){var e="",n="";try{var r=t[1]?t[1].trim():"",i=t[2]?t[2].trim():"",a=t[3]?$e(t[3].trim()):"",o=t[4]?t[4].trim():"",s=t[5]?t[5].trim():"";n=r+i+a+" "+o,e=qe(s)}catch(e){n=t}return{displayText:n,cssStyle:e}},Ye=function(t){var e="",n="";try{var r=t[1]?t[1].trim():"",i=t[2]?t[2].trim():"",a=t[3]?$e(t[3].trim()):"",o=t[4]?t[4].trim():"";n=r+i+"("+a+")"+(t[5]?" : "+$e(t[5]).trim():""),e=qe(o)}catch(e){n=t}return{displayText:n,cssStyle:e}},ze=function(t){var e="",n="",r="",i=t.indexOf("("),a=t.indexOf(")");if(i>1&&a>i&&a<=t.length){var o="",s="",c=t.substring(0,1);c.match(/\w/)?s=t.substring(0,i).trim():(c.match(/\+|-|~|#/)&&(o=c),s=t.substring(1,i).trim());var u=t.substring(i+1,a),l=t.substring(a+1,1);n=qe(l),e=o+s+"("+$e(u.trim())+")",a<"".length&&""!==(r=t.substring(a+2).trim())&&(r=" : "+$e(r))}else e=$e(t);return{displayText:e,cssStyle:n}},Ue=function(t,e,n,r){var i=Pe(e),a=t.append("tspan").attr("x",r.padding).text(i.displayText);""!==i.cssStyle&&a.attr("style",i.cssStyle),n||a.attr("dy",r.textHeight)},$e=function t(e){var n=e;return-1!=e.indexOf("~")?t(n=(n=n.replace("~","<")).replace("~",">")):n},qe=function(t){switch(t){case"*":return"font-style:italic;";case"$":return"text-decoration:underline;";default:return""}},We=function(t,e,n){o.info("Rendering class "+e);var r,i=e.id,a={id:i,label:e.id,width:0,height:0},s=t.append("g").attr("id",we(i)).attr("class","classGroup");r=e.link?s.append("svg:a").attr("xlink:href",e.link).attr("target",e.linkTarget).append("text").attr("y",n.textHeight+n.padding).attr("x",0):s.append("text").attr("y",n.textHeight+n.padding).attr("x",0);var c=!0;e.annotations.forEach((function(t){var e=r.append("tspan").text("«"+t+"»");c||e.attr("dy",n.textHeight),c=!1}));var u=e.id;void 0!==e.type&&""!==e.type&&(u+="<"+e.type+">");var l=r.append("tspan").text(u).attr("class","title");c||l.attr("dy",n.textHeight);var h=r.node().getBBox().height,f=s.append("line").attr("x1",0).attr("y1",n.padding+h+n.dividerMargin/2).attr("y2",n.padding+h+n.dividerMargin/2),d=s.append("text").attr("x",n.padding).attr("y",h+n.dividerMargin+n.textHeight).attr("fill","white").attr("class","classText");c=!0,e.members.forEach((function(t){Ue(d,t,c,n),c=!1}));var p=d.node().getBBox(),y=s.append("line").attr("x1",0).attr("y1",n.padding+h+n.dividerMargin+p.height).attr("y2",n.padding+h+n.dividerMargin+p.height),g=s.append("text").attr("x",n.padding).attr("y",h+2*n.dividerMargin+p.height+n.textHeight).attr("fill","white").attr("class","classText");c=!0,e.methods.forEach((function(t){Ue(g,t,c,n),c=!1}));var m=s.node().getBBox(),v=" ";e.cssClasses.length>0&&(v+=e.cssClasses.join(" "));var b=s.insert("rect",":first-child").attr("x",0).attr("y",0).attr("width",m.width+2*n.padding).attr("height",m.height+n.padding+.5*n.dividerMargin).attr("class",v).node().getBBox().width;return r.node().childNodes.forEach((function(t){t.setAttribute("x",(b-t.getBBox().width)/2)})),e.tooltip&&r.insert("title").text(e.tooltip),f.attr("x2",b),y.attr("x2",b),a.width=b,a.height=m.height+n.padding+.5*n.dividerMargin,a},He=function(t,e,n,r){var i=function(t){switch(t){case Se.AGGREGATION:return"aggregation";case Se.EXTENSION:return"extension";case Se.COMPOSITION:return"composition";case Se.DEPENDENCY:return"dependency"}};e.points=e.points.filter((function(t){return!Number.isNaN(t.y)}));var a,s,c=e.points,l=Object(u.line)().x((function(t){return t.x})).y((function(t){return t.y})).curve(u.curveBasis),h=t.append("path").attr("d",l(c)).attr("id","edge"+Fe).attr("class","relation"),f="";r.arrowMarkerAbsolute&&(f=(f=(f=window.location.protocol+"//"+window.location.host+window.location.pathname+window.location.search).replace(/\(/g,"\\(")).replace(/\)/g,"\\)")),1==n.relation.lineType&&h.attr("class","relation dashed-line"),"none"!==n.relation.type1&&h.attr("marker-start","url("+f+"#"+i(n.relation.type1)+"Start)"),"none"!==n.relation.type2&&h.attr("marker-end","url("+f+"#"+i(n.relation.type2)+"End)");var d,p,y,g,m=e.points.length,v=ne.calcLabelPosition(e.points);if(a=v.x,s=v.y,m%2!=0&&m>1){var b=ne.calcCardinalityPosition("none"!==n.relation.type1,e.points,e.points[0]),x=ne.calcCardinalityPosition("none"!==n.relation.type2,e.points,e.points[m-1]);o.debug("cardinality_1_point "+JSON.stringify(b)),o.debug("cardinality_2_point "+JSON.stringify(x)),d=b.x,p=b.y,y=x.x,g=x.y}if(void 0!==n.title){var _=t.append("g").attr("class","classLabel"),k=_.append("text").attr("class","label").attr("x",a).attr("y",s).attr("fill","red").attr("text-anchor","middle").text(n.title);window.label=k;var w=k.node().getBBox();_.insert("rect",":first-child").attr("class","box").attr("x",w.x-r.padding/2).attr("y",w.y-r.padding/2).attr("width",w.width+r.padding).attr("height",w.height+r.padding)}(o.info("Rendering relation "+JSON.stringify(n)),void 0!==n.relationTitle1&&"none"!==n.relationTitle1)&&t.append("g").attr("class","cardinality").append("text").attr("class","type1").attr("x",d).attr("y",p).attr("fill","black").attr("font-size","6").text(n.relationTitle1);void 0!==n.relationTitle2&&"none"!==n.relationTitle2&&t.append("g").attr("class","cardinality").append("text").attr("class","type2").attr("x",y).attr("y",g).attr("fill","black").attr("font-size","6").text(n.relationTitle2);Fe++};Ie.parser.yy=Oe;var Ve={},Ge={dividerMargin:10,padding:5,textHeight:10},Xe=function(t){for(var e=Object.keys(Ve),n=0;n<e.length;n++)if(Ve[e[n]].label===t)return e[n]},Ze=function(t){Object.keys(t).forEach((function(e){Ge[e]=t[e]}))},Ke=function(t,e){Ve={},Ie.parser.yy.clear(),Ie.parser.parse(t),o.info("Rendering diagram "+t);var n,r=Object(u.select)("[id='".concat(e,"']"));r.attr("xmlns:xlink","http://www.w3.org/1999/xlink"),(n=r).append("defs").append("marker").attr("id","extensionStart").attr("class","extension").attr("refX",0).attr("refY",7).attr("markerWidth",190).attr("markerHeight",240).attr("orient","auto").append("path").attr("d","M 1,7 L18,13 V 1 Z"),n.append("defs").append("marker").attr("id","extensionEnd").attr("refX",19).attr("refY",7).attr("markerWidth",20).attr("markerHeight",28).attr("orient","auto").append("path").attr("d","M 1,1 V 13 L18,7 Z"),n.append("defs").append("marker").attr("id","compositionStart").attr("class","extension").attr("refX",0).attr("refY",7).attr("markerWidth",190).attr("markerHeight",240).attr("orient","auto").append("path").attr("d","M 18,7 L9,13 L1,7 L9,1 Z"),n.append("defs").append("marker").attr("id","compositionEnd").attr("refX",19).attr("refY",7).attr("markerWidth",20).attr("markerHeight",28).attr("orient","auto").append("path").attr("d","M 18,7 L9,13 L1,7 L9,1 Z"),n.append("defs").append("marker").attr("id","aggregationStart").attr("class","extension").attr("refX",0).attr("refY",7).attr("markerWidth",190).attr("markerHeight",240).attr("orient","auto").append("path").attr("d","M 18,7 L9,13 L1,7 L9,1 Z"),n.append("defs").append("marker").attr("id","aggregationEnd").attr("refX",19).attr("refY",7).attr("markerWidth",20).attr("markerHeight",28).attr("orient","auto").append("path").attr("d","M 18,7 L9,13 L1,7 L9,1 Z"),n.append("defs").append("marker").attr("id","dependencyStart").attr("class","extension").attr("refX",0).attr("refY",7).attr("markerWidth",190).attr("markerHeight",240).attr("orient","auto").append("path").attr("d","M 5,7 L9,13 L1,7 L9,1 Z"),n.append("defs").append("marker").attr("id","dependencyEnd").attr("refX",19).attr("refY",7).attr("markerWidth",20).attr("markerHeight",28).attr("orient","auto").append("path").attr("d","M 18,7 L9,13 L14,7 L9,1 Z");var i=new Le.a.Graph({multigraph:!0});i.setGraph({isMultiGraph:!0}),i.setDefaultEdgeLabel((function(){return{}}));for(var a=Oe.getClasses(),s=Object.keys(a),c=0;c<s.length;c++){var l=a[s[c]],h=We(r,l,Ge);Ve[h.id]=h,i.setNode(h.id,h),o.info("Org height: "+h.height)}Oe.getRelations().forEach((function(t){o.info("tjoho"+Xe(t.id1)+Xe(t.id2)+JSON.stringify(t)),i.setEdge(Xe(t.id1),Xe(t.id2),{relation:t},t.title||"DEFAULT")})),Be.a.layout(i),i.nodes().forEach((function(t){void 0!==t&&void 0!==i.node(t)&&(o.debug("Node "+t+": "+JSON.stringify(i.node(t))),Object(u.select)("#"+we(t)).attr("transform","translate("+(i.node(t).x-i.node(t).width/2)+","+(i.node(t).y-i.node(t).height/2)+" )"))})),i.edges().forEach((function(t){void 0!==t&&void 0!==i.edge(t)&&(o.debug("Edge "+t.v+" -> "+t.w+": "+JSON.stringify(i.edge(t))),He(r,i.edge(t),i.edge(t).relation,Ge))}));var f=r.node().getBBox(),d=f.width+40,p=f.height+40;te(r,p,d,Ge.useMaxWidth);var y="".concat(f.x-20," ").concat(f.y-20," ").concat(d," ").concat(p);o.debug("viewBox ".concat(y)),r.attr("viewBox",y)},Qe={extension:function(t,e,n){o.trace("Making markers for ",n),t.append("defs").append("marker").attr("id",e+"-extensionStart").attr("class","marker extension "+e).attr("refX",0).attr("refY",7).attr("markerWidth",190).attr("markerHeight",240).attr("orient","auto").append("path").attr("d","M 1,7 L18,13 V 1 Z"),t.append("defs").append("marker").attr("id",e+"-extensionEnd").attr("class","marker extension "+e).attr("refX",19).attr("refY",7).attr("markerWidth",20).attr("markerHeight",28).attr("orient","auto").append("path").attr("d","M 1,1 V 13 L18,7 Z")},composition:function(t,e){t.append("defs").append("marker").attr("id",e+"-compositionStart").attr("class","marker composition "+e).attr("refX",0).attr("refY",7).attr("markerWidth",190).attr("markerHeight",240).attr("orient","auto").append("path").attr("d","M 18,7 L9,13 L1,7 L9,1 Z"),t.append("defs").append("marker").attr("id",e+"-compositionEnd").attr("class","marker composition "+e).attr("refX",19).attr("refY",7).attr("markerWidth",20).attr("markerHeight",28).attr("orient","auto").append("path").attr("d","M 18,7 L9,13 L1,7 L9,1 Z")},aggregation:function(t,e){t.append("defs").append("marker").attr("id",e+"-aggregationStart").attr("class","marker aggregation "+e).attr("refX",0).attr("refY",7).attr("markerWidth",190).attr("markerHeight",240).attr("orient","auto").append("path").attr("d","M 18,7 L9,13 L1,7 L9,1 Z"),t.append("defs").append("marker").attr("id",e+"-aggregationEnd").attr("class","marker aggregation "+e).attr("refX",19).attr("refY",7).attr("markerWidth",20).attr("markerHeight",28).attr("orient","auto").append("path").attr("d","M 18,7 L9,13 L1,7 L9,1 Z")},dependency:function(t,e){t.append("defs").append("marker").attr("id",e+"-dependencyStart").attr("class","marker dependency "+e).attr("refX",0).attr("refY",7).attr("markerWidth",190).attr("markerHeight",240).attr("orient","auto").append("path").attr("d","M 5,7 L9,13 L1,7 L9,1 Z"),t.append("defs").append("marker").attr("id",e+"-dependencyEnd").attr("class","marker dependency "+e).attr("refX",19).attr("refY",7).attr("markerWidth",20).attr("markerHeight",28).attr("orient","auto").append("path").attr("d","M 18,7 L9,13 L14,7 L9,1 Z")},point:function(t,e){t.append("marker").attr("id",e+"-pointEnd").attr("class","marker "+e).attr("viewBox","0 0 10 10").attr("refX",9).attr("refY",5).attr("markerUnits","userSpaceOnUse").attr("markerWidth",12).attr("markerHeight",12).attr("orient","auto").append("path").attr("d","M 0 0 L 10 5 L 0 10 z").attr("class","arrowMarkerPath").style("stroke-width",1).style("stroke-dasharray","1,0"),t.append("marker").attr("id",e+"-pointStart").attr("class","marker "+e).attr("viewBox","0 0 10 10").attr("refX",0).attr("refY",5).attr("markerUnits","userSpaceOnUse").attr("markerWidth",12).attr("markerHeight",12).attr("orient","auto").append("path").attr("d","M 0 5 L 10 10 L 10 0 z").attr("class","arrowMarkerPath").style("stroke-width",1).style("stroke-dasharray","1,0")},circle:function(t,e){t.append("marker").attr("id",e+"-circleEnd").attr("class","marker "+e).attr("viewBox","0 0 10 10").attr("refX",11).attr("refY",5).attr("markerUnits","userSpaceOnUse").attr("markerWidth",11).attr("markerHeight",11).attr("orient","auto").append("circle").attr("cx","5").attr("cy","5").attr("r","5").attr("class","arrowMarkerPath").style("stroke-width",1).style("stroke-dasharray","1,0"),t.append("marker").attr("id",e+"-circleStart").attr("class","marker "+e).attr("viewBox","0 0 10 10").attr("refX",-1).attr("refY",5).attr("markerUnits","userSpaceOnUse").attr("markerWidth",11).attr("markerHeight",11).attr("orient","auto").append("circle").attr("cx","5").attr("cy","5").attr("r","5").attr("class","arrowMarkerPath").style("stroke-width",1).style("stroke-dasharray","1,0")},cross:function(t,e){t.append("marker").attr("id",e+"-crossEnd").attr("class","marker cross "+e).attr("viewBox","0 0 11 11").attr("refX",12).attr("refY",5.2).attr("markerUnits","userSpaceOnUse").attr("markerWidth",11).attr("markerHeight",11).attr("orient","auto").append("path").attr("d","M 1,1 l 9,9 M 10,1 l -9,9").attr("class","arrowMarkerPath").style("stroke-width",2).style("stroke-dasharray","1,0"),t.append("marker").attr("id",e+"-crossStart").attr("class","marker cross "+e).attr("viewBox","0 0 11 11").attr("refX",-1).attr("refY",5.2).attr("markerUnits","userSpaceOnUse").attr("markerWidth",11).attr("markerHeight",11).attr("orient","auto").append("path").attr("d","M 1,1 l 9,9 M 10,1 l -9,9").attr("class","arrowMarkerPath").style("stroke-width",2).style("stroke-dasharray","1,0")},barb:function(t,e){t.append("defs").append("marker").attr("id",e+"-barbEnd").attr("refX",19).attr("refY",7).attr("markerWidth",20).attr("markerHeight",14).attr("markerUnits","strokeWidth").attr("orient","auto").append("path").attr("d","M 19,7 L9,13 L14,7 L9,1 Z")}},Je=function(t,e,n,r){e.forEach((function(e){Qe[e](t,n,r)}))};function tn(t){return(tn="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}var en=function(t,e,n,r){var i=t||"";if("object"===tn(i)&&(i=i[0]),et(he().flowchart.htmlLabels))return i=i.replace(/\\n|\n/g,"<br />"),o.info("vertexText"+i),function(t){var e,n,r=Object(u.select)(document.createElementNS("http://www.w3.org/2000/svg","foreignObject")),i=r.append("xhtml:div"),a=t.label,o=t.isNode?"nodeLabel":"edgeLabel";return i.html('<span class="'+o+'" '+(t.labelStyle?'style="'+t.labelStyle+'"':"")+">"+a+"</span>"),e=i,(n=t.labelStyle)&&e.attr("style",n),i.style("display","inline-block"),i.style("white-space","nowrap"),i.attr("xmlns","http://www.w3.org/1999/xhtml"),r.node()}({isNode:r,label:i.replace(/fa[lrsb]?:fa-[\w-]+/g,(function(t){return"<i class='".concat(t.replace(":"," "),"'></i>")})),labelStyle:e.replace("fill:","color:")});var a=document.createElementNS("http://www.w3.org/2000/svg","text");a.setAttribute("style",e.replace("color:","fill:"));var s=[];s="string"==typeof i?i.split(/\\n|\n|<br\s*\/?>/gi):Array.isArray(i)?i:[];for(var c=0;c<s.length;c++){var l=document.createElementNS("http://www.w3.org/2000/svg","tspan");l.setAttributeNS("http://www.w3.org/XML/1998/namespace","xml:space","preserve"),l.setAttribute("dy","1em"),l.setAttribute("x","0"),n?l.setAttribute("class","title-row"):l.setAttribute("class","row"),l.textContent=s[c].trim(),a.appendChild(l)}return a},nn=function(t,e,n,r){var i;i=n||"node default";var a=t.insert("g").attr("class",i).attr("id",e.domId||e.id),o=a.insert("g").attr("class","label").attr("style",e.labelStyle),s=o.node().appendChild(en(e.labelText,e.labelStyle,!1,r)),c=s.getBBox();if(et(he().flowchart.htmlLabels)){var l=s.children[0],h=Object(u.select)(s);c=l.getBoundingClientRect(),h.attr("width",c.width),h.attr("height",c.height)}var f=e.padding/2;return o.attr("transform","translate("+-c.width/2+", "+-c.height/2+")"),{shapeSvg:a,bbox:c,halfPadding:f,label:o}},rn=function(t,e){var n=e.node().getBBox();t.width=n.width,t.height=n.height};function an(t,e,n,r){return t.insert("polygon",":first-child").attr("points",r.map((function(t){return t.x+","+t.y})).join(" ")).attr("class","label-container").attr("transform","translate("+-e/2+","+n/2+")")}var on={},sn={},cn={},un=function(t,e){return o.trace("In isDecendant",e," ",t," = ",sn[e].indexOf(t)>=0),sn[e].indexOf(t)>=0},ln=function t(e,n,r,i){o.warn("Copying children of ",e,"root",i,"data",n.node(e),i);var a=n.children(e)||[];e!==i&&a.push(e),o.warn("Copying (nodes) clusterId",e,"nodes",a),a.forEach((function(a){if(n.children(a).length>0)t(a,n,r,i);else{var s=n.node(a);o.info("cp ",a," to ",i," with parent ",e),r.setNode(a,s),i!==n.parent(a)&&(o.warn("Setting parent",a,n.parent(a)),r.setParent(a,n.parent(a))),e!==i&&a!==e?(o.debug("Setting parent",a,e),r.setParent(a,e)):(o.info("In copy ",e,"root",i,"data",n.node(e),i),o.debug("Not Setting parent for node=",a,"cluster!==rootId",e!==i,"node!==clusterId",a!==e));var c=n.edges(a);o.debug("Copying Edges",c),c.forEach((function(t){o.info("Edge",t);var a=n.edge(t.v,t.w,t.name);o.info("Edge data",a,i);try{!function(t,e){return o.info("Decendants of ",e," is ",sn[e]),o.info("Edge is ",t),t.v!==e&&(t.w!==e&&(sn[e]?(o.info("Here "),sn[e].indexOf(t.v)>=0||(!!un(t.v,e)||(!!un(t.w,e)||sn[e].indexOf(t.w)>=0))):(o.debug("Tilt, ",e,",not in decendants"),!1)))}(t,i)?o.info("Skipping copy of edge ",t.v,"--\x3e",t.w," rootId: ",i," clusterId:",e):(o.info("Copying as ",t.v,t.w,a,t.name),r.setEdge(t.v,t.w,a,t.name),o.info("newGraph edges ",r.edges(),r.edge(r.edges()[0])))}catch(t){o.error(t)}}))}o.debug("Removing node",a),n.removeNode(a)}))},hn=function t(e,n){o.trace("Searching",e);var r=n.children(e);if(o.trace("Searching children of id ",e,r),r.length<1)return o.trace("This is a valid node",e),e;for(var i=0;i<r.length;i++){var a=t(r[i],n);if(a)return o.trace("Found replacement for",e," => ",a),a}},fn=function(t){return on[t]&&on[t].externalConnections&&on[t]?on[t].id:t},dn=function(t,e){!t||e>10?o.debug("Opting out, no graph "):(o.debug("Opting in, graph "),t.nodes().forEach((function(e){t.children(e).length>0&&(o.warn("Cluster identified",e," Replacement id in edges: ",hn(e,t)),sn[e]=function t(e,n){for(var r=n.children(e),i=[].concat(r),a=0;a<r.length;a++)cn[r[a]]=e,i=i.concat(t(r[a],n));return i}(e,t),on[e]={id:hn(e,t),clusterData:t.node(e)})})),t.nodes().forEach((function(e){var n=t.children(e),r=t.edges();n.length>0?(o.debug("Cluster identified",e,sn),r.forEach((function(t){t.v!==e&&t.w!==e&&(un(t.v,e)^un(t.w,e)&&(o.warn("Edge: ",t," leaves cluster ",e),o.warn("Decendants of XXX ",e,": ",sn[e]),on[e].externalConnections=!0))}))):o.debug("Not a cluster ",e,sn)})),t.edges().forEach((function(e){var n=t.edge(e);o.warn("Edge "+e.v+" -> "+e.w+": "+JSON.stringify(e)),o.warn("Edge "+e.v+" -> "+e.w+": "+JSON.stringify(t.edge(e)));var r=e.v,i=e.w;o.warn("Fix XXX",on,"ids:",e.v,e.w,"Translateing: ",on[e.v]," --- ",on[e.w]),(on[e.v]||on[e.w])&&(o.warn("Fixing and trixing - removing XXX",e.v,e.w,e.name),r=fn(e.v),i=fn(e.w),t.removeEdge(e.v,e.w,e.name),r!==e.v&&(n.fromCluster=e.v),i!==e.w&&(n.toCluster=e.w),o.warn("Fix Replacing with XXX",r,i,e.name),t.setEdge(r,i,n,e.name))})),o.warn("Adjusted Graph",Le.a.json.write(t)),pn(t,0),o.trace(on))},pn=function t(e,n){if(o.warn("extractor - ",n,Le.a.json.write(e),e.children("D")),n>10)o.error("Bailing out");else{for(var r=e.nodes(),i=!1,a=0;a<r.length;a++){var s=r[a],c=e.children(s);i=i||c.length>0}if(i){o.debug("Nodes = ",r,n);for(var u=0;u<r.length;u++){var l=r[u];if(o.debug("Extracting node",l,on,on[l]&&!on[l].externalConnections,!e.parent(l),e.node(l),e.children("D")," Depth ",n),on[l])if(!on[l].externalConnections&&e.children(l)&&e.children(l).length>0){o.warn("Cluster without external connections, without a parent and with children",l,n);var h="TB"===e.graph().rankdir?"LR":"TB";on[l]&&on[l].clusterData&&on[l].clusterData.dir&&(h=on[l].clusterData.dir,o.warn("Fixing dir",on[l].clusterData.dir,h));var f=new Le.a.Graph({multigraph:!0,compound:!0}).setGraph({rankdir:h,nodesep:50,ranksep:50,marginx:8,marginy:8}).setDefaultEdgeLabel((function(){return{}}));o.warn("Old graph before copy",Le.a.json.write(e)),ln(l,e,f,l),e.setNode(l,{clusterNode:!0,id:l,clusterData:on[l].clusterData,labelText:on[l].labelText,graph:f}),o.warn("New graph after copy node: (",l,")",Le.a.json.write(f)),o.debug("Old graph after copy",Le.a.json.write(e))}else o.warn("Cluster ** ",l," **not meeting the criteria !externalConnections:",!on[l].externalConnections," no parent: ",!e.parent(l)," children ",e.children(l)&&e.children(l).length>0,e.children("D"),n),o.debug(on);else o.debug("Not a cluster",l,n)}r=e.nodes(),o.warn("New list of nodes",r);for(var d=0;d<r.length;d++){var p=r[d],y=e.node(p);o.warn(" Now next level",p,y),y.clusterNode&&t(y.graph,n+1)}}else o.debug("Done, no node has children",e.nodes())}},yn=function(t){return function t(e,n){if(0===n.length)return[];var r=Object.assign(n);return n.forEach((function(n){var i=e.children(n),a=t(e,i);r=r.concat(a)})),r}(t,t.children())},gn=n(170);var mn=function(t,e,n,r){var i=t.x,a=t.y,o=i-r.x,s=a-r.y,c=Math.sqrt(e*e*s*s+n*n*o*o),u=Math.abs(e*n*o/c);r.x<i&&(u=-u);var l=Math.abs(e*n*s/c);return r.y<a&&(l=-l),{x:i+u,y:a+l}};var vn=function(t,e,n){return mn(t,e,e,n)};function bn(t,e){return t*e>0}var xn=function(t,e,n,r){var i,a,o,s,c,u,l,h,f,d,p,y,g;if(i=e.y-t.y,o=t.x-e.x,c=e.x*t.y-t.x*e.y,f=i*n.x+o*n.y+c,d=i*r.x+o*r.y+c,!(0!==f&&0!==d&&bn(f,d)||(a=r.y-n.y,s=n.x-r.x,u=r.x*n.y-n.x*r.y,l=a*t.x+s*t.y+u,h=a*e.x+s*e.y+u,0!==l&&0!==h&&bn(l,h)||0==(p=i*s-a*o))))return y=Math.abs(p/2),{x:(g=o*u-s*c)<0?(g-y)/p:(g+y)/p,y:(g=a*c-i*u)<0?(g-y)/p:(g+y)/p}},_n=function(t,e,n){var r=t.x,i=t.y,a=[],o=Number.POSITIVE_INFINITY,s=Number.POSITIVE_INFINITY;"function"==typeof e.forEach?e.forEach((function(t){o=Math.min(o,t.x),s=Math.min(s,t.y)})):(o=Math.min(o,e.x),s=Math.min(s,e.y));for(var c=r-t.width/2-o,u=i-t.height/2-s,l=0;l<e.length;l++){var h=e[l],f=e[l<e.length-1?l+1:0],d=xn(t,n,{x:c+h.x,y:u+h.y},{x:c+f.x,y:u+f.y});d&&a.push(d)}if(!a.length)return t;a.length>1&&a.sort((function(t,e){var r=t.x-n.x,i=t.y-n.y,a=Math.sqrt(r*r+i*i),o=e.x-n.x,s=e.y-n.y,c=Math.sqrt(o*o+s*s);return a<c?-1:a===c?0:1}));return a[0]};var kn=function(t,e){var n,r,i=t.x,a=t.y,o=e.x-i,s=e.y-a,c=t.width/2,u=t.height/2;return Math.abs(s)*c>Math.abs(o)*u?(s<0&&(u=-u),n=0===s?0:u*o/s,r=u):(o<0&&(c=-c),n=c,r=0===o?0:c*s/o),{x:i+n,y:a+r}},wn={node:n.n(gn).a,circle:vn,ellipse:mn,polygon:_n,rect:kn};function Tn(t){return(Tn="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}var En=function(t,e,n){var r=t.insert("g").attr("class","node default").attr("id",e.domId||e.id),i=70,a=10;"LR"===n&&(i=10,a=70);var o=r.append("rect").attr("x",-1*i/2).attr("y",-1*a/2).attr("width",i).attr("height",a).attr("class","fork-join");return rn(e,o),e.height=e.height+e.padding/2,e.width=e.width+e.padding/2,e.intersect=function(t){return wn.rect(e,t)},r},Cn={question:function(t,e){var n=nn(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=i.width+e.padding+(i.height+e.padding),s=[{x:a/2,y:0},{x:a,y:-a/2},{x:a/2,y:-a},{x:0,y:-a/2}];o.info("Question main (Circle)");var c=an(r,a,a,s);return c.attr("style",e.style),rn(e,c),e.intersect=function(t){return o.warn("Intersect called"),wn.polygon(e,s,t)},r},rect:function(t,e){var n=nn(t,e,"node "+e.classes,!0),r=n.shapeSvg,i=n.bbox,a=n.halfPadding;o.trace("Classes = ",e.classes);var s=r.insert("rect",":first-child");return s.attr("class","basic label-container").attr("style",e.style).attr("rx",e.rx).attr("ry",e.ry).attr("x",-i.width/2-a).attr("y",-i.height/2-a).attr("width",i.width+e.padding).attr("height",i.height+e.padding),rn(e,s),e.intersect=function(t){return wn.rect(e,t)},r},rectWithTitle:function(t,e){var n;n=e.classes?"node "+e.classes:"node default";var r=t.insert("g").attr("class",n).attr("id",e.domId||e.id),i=r.insert("rect",":first-child"),a=r.insert("line"),s=r.insert("g").attr("class","label"),c=e.labelText.flat?e.labelText.flat():e.labelText,l="";l="object"===Tn(c)?c[0]:c,o.info("Label text abc79",l,c,"object"===Tn(c));var h,f=s.node().appendChild(en(l,e.labelStyle,!0,!0));if(et(he().flowchart.htmlLabels)){var d=f.children[0],p=Object(u.select)(f);h=d.getBoundingClientRect(),p.attr("width",h.width),p.attr("height",h.height)}o.info("Text 2",c);var y=c.slice(1,c.length),g=f.getBBox(),m=s.node().appendChild(en(y.join?y.join("<br/>"):y,e.labelStyle,!0,!0));if(et(he().flowchart.htmlLabels)){var v=m.children[0],b=Object(u.select)(m);h=v.getBoundingClientRect(),b.attr("width",h.width),b.attr("height",h.height)}var x=e.padding/2;return Object(u.select)(m).attr("transform","translate( "+(h.width>g.width?0:(g.width-h.width)/2)+", "+(g.height+x+5)+")"),Object(u.select)(f).attr("transform","translate( "+(h.width<g.width?0:-(g.width-h.width)/2)+", 0)"),h=s.node().getBBox(),s.attr("transform","translate("+-h.width/2+", "+(-h.height/2-x+3)+")"),i.attr("class","outer title-state").attr("x",-h.width/2-x).attr("y",-h.height/2-x).attr("width",h.width+e.padding).attr("height",h.height+e.padding),a.attr("class","divider").attr("x1",-h.width/2-x).attr("x2",h.width/2+x).attr("y1",-h.height/2-x+g.height+x).attr("y2",-h.height/2-x+g.height+x),rn(e,i),e.intersect=function(t){return wn.rect(e,t)},r},choice:function(t,e){var n=t.insert("g").attr("class","node default").attr("id",e.domId||e.id),r=[{x:0,y:14},{x:14,y:0},{x:0,y:-14},{x:-14,y:0}],i=n.insert("polygon",":first-child").attr("points",r.map((function(t){return t.x+","+t.y})).join(" "));return i.attr("class","state-start").attr("r",7).attr("width",28).attr("height",28),e.width=28,e.height=28,e.intersect=function(t){return wn.circle(e,14,t)},n},circle:function(t,e){var n=nn(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=n.halfPadding,s=r.insert("circle",":first-child");return s.attr("style",e.style).attr("rx",e.rx).attr("ry",e.ry).attr("r",i.width/2+a).attr("width",i.width+e.padding).attr("height",i.height+e.padding),o.info("Circle main"),rn(e,s),e.intersect=function(t){return o.info("Circle intersect",e,i.width/2+a,t),wn.circle(e,i.width/2+a,t)},r},stadium:function(t,e){var n=nn(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=i.height+e.padding,o=i.width+a/4+e.padding,s=r.insert("rect",":first-child").attr("style",e.style).attr("rx",a/2).attr("ry",a/2).attr("x",-o/2).attr("y",-a/2).attr("width",o).attr("height",a);return rn(e,s),e.intersect=function(t){return wn.rect(e,t)},r},hexagon:function(t,e){var n=nn(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=i.height+e.padding,o=a/4,s=i.width+2*o+e.padding,c=[{x:o,y:0},{x:s-o,y:0},{x:s,y:-a/2},{x:s-o,y:-a},{x:o,y:-a},{x:0,y:-a/2}],u=an(r,s,a,c);return u.attr("style",e.style),rn(e,u),e.intersect=function(t){return wn.polygon(e,c,t)},r},rect_left_inv_arrow:function(t,e){var n=nn(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=i.width+e.padding,o=i.height+e.padding,s=[{x:-o/2,y:0},{x:a,y:0},{x:a,y:-o},{x:-o/2,y:-o},{x:0,y:-o/2}];return an(r,a,o,s).attr("style",e.style),e.width=a+o,e.height=o,e.intersect=function(t){return wn.polygon(e,s,t)},r},lean_right:function(t,e){var n=nn(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=i.width+e.padding,o=i.height+e.padding,s=[{x:-2*o/6,y:0},{x:a-o/6,y:0},{x:a+2*o/6,y:-o},{x:o/6,y:-o}],c=an(r,a,o,s);return c.attr("style",e.style),rn(e,c),e.intersect=function(t){return wn.polygon(e,s,t)},r},lean_left:function(t,e){var n=nn(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=i.width+e.padding,o=i.height+e.padding,s=[{x:2*o/6,y:0},{x:a+o/6,y:0},{x:a-2*o/6,y:-o},{x:-o/6,y:-o}],c=an(r,a,o,s);return c.attr("style",e.style),rn(e,c),e.intersect=function(t){return wn.polygon(e,s,t)},r},trapezoid:function(t,e){var n=nn(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=i.width+e.padding,o=i.height+e.padding,s=[{x:-2*o/6,y:0},{x:a+2*o/6,y:0},{x:a-o/6,y:-o},{x:o/6,y:-o}],c=an(r,a,o,s);return c.attr("style",e.style),rn(e,c),e.intersect=function(t){return wn.polygon(e,s,t)},r},inv_trapezoid:function(t,e){var n=nn(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=i.width+e.padding,o=i.height+e.padding,s=[{x:o/6,y:0},{x:a-o/6,y:0},{x:a+2*o/6,y:-o},{x:-2*o/6,y:-o}],c=an(r,a,o,s);return c.attr("style",e.style),rn(e,c),e.intersect=function(t){return wn.polygon(e,s,t)},r},rect_right_inv_arrow:function(t,e){var n=nn(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=i.width+e.padding,o=i.height+e.padding,s=[{x:0,y:0},{x:a+o/2,y:0},{x:a,y:-o/2},{x:a+o/2,y:-o},{x:0,y:-o}],c=an(r,a,o,s);return c.attr("style",e.style),rn(e,c),e.intersect=function(t){return wn.polygon(e,s,t)},r},cylinder:function(t,e){var n=nn(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=i.width+e.padding,o=a/2,s=o/(2.5+a/50),c=i.height+s+e.padding,u="M 0,"+s+" a "+o+","+s+" 0,0,0 "+a+" 0 a "+o+","+s+" 0,0,0 "+-a+" 0 l 0,"+c+" a "+o+","+s+" 0,0,0 "+a+" 0 l 0,"+-c,l=r.attr("label-offset-y",s).insert("path",":first-child").attr("style",e.style).attr("d",u).attr("transform","translate("+-a/2+","+-(c/2+s)+")");return rn(e,l),e.intersect=function(t){var n=wn.rect(e,t),r=n.x-e.x;if(0!=o&&(Math.abs(r)<e.width/2||Math.abs(r)==e.width/2&&Math.abs(n.y-e.y)>e.height/2-s)){var i=s*s*(1-r*r/(o*o));0!=i&&(i=Math.sqrt(i)),i=s-i,t.y-e.y>0&&(i=-i),n.y+=i}return n},r},start:function(t,e){var n=t.insert("g").attr("class","node default").attr("id",e.domId||e.id),r=n.insert("circle",":first-child");return r.attr("class","state-start").attr("r",7).attr("width",14).attr("height",14),rn(e,r),e.intersect=function(t){return wn.circle(e,7,t)},n},end:function(t,e){var n=t.insert("g").attr("class","node default").attr("id",e.domId||e.id),r=n.insert("circle",":first-child"),i=n.insert("circle",":first-child");return i.attr("class","state-start").attr("r",7).attr("width",14).attr("height",14),r.attr("class","state-end").attr("r",5).attr("width",10).attr("height",10),rn(e,i),e.intersect=function(t){return wn.circle(e,7,t)},n},note:function(t,e){var n=nn(t,e,"node "+e.classes,!0),r=n.shapeSvg,i=n.bbox,a=n.halfPadding;o.info("Classes = ",e.classes);var s=r.insert("rect",":first-child");return s.attr("rx",e.rx).attr("ry",e.ry).attr("x",-i.width/2-a).attr("y",-i.height/2-a).attr("width",i.width+e.padding).attr("height",i.height+e.padding),rn(e,s),e.intersect=function(t){return wn.rect(e,t)},r},subroutine:function(t,e){var n=nn(t,e,void 0,!0),r=n.shapeSvg,i=n.bbox,a=i.width+e.padding,o=i.height+e.padding,s=[{x:0,y:0},{x:a,y:0},{x:a,y:-o},{x:0,y:-o},{x:0,y:0},{x:-8,y:0},{x:a+8,y:0},{x:a+8,y:-o},{x:-8,y:-o},{x:-8,y:0}],c=an(r,a,o,s);return c.attr("style",e.style),rn(e,c),e.intersect=function(t){return wn.polygon(e,s,t)},r},fork:En,join:En,class_box:function(t,e){var n,r=e.padding/2;n=e.classes?"node "+e.classes:"node default";var i=t.insert("g").attr("class",n).attr("id",e.domId||e.id),a=i.insert("rect",":first-child"),o=i.insert("line"),s=i.insert("line"),c=0,l=4,h=i.insert("g").attr("class","label"),f=0,d=e.classData.annotations&&e.classData.annotations[0],p=e.classData.annotations[0]?"«"+e.classData.annotations[0]+"»":"",y=h.node().appendChild(en(p,e.labelStyle,!0,!0)),g=y.getBBox();if(et(he().flowchart.htmlLabels)){var m=y.children[0],v=Object(u.select)(y);g=m.getBoundingClientRect(),v.attr("width",g.width),v.attr("height",g.height)}e.classData.annotations[0]&&(l+=g.height+4,c+=g.width);var b=e.classData.id;void 0!==e.classData.type&&""!==e.classData.type&&(he().flowchart.htmlLabels?b+="&lt;"+e.classData.type+"&gt;":b+="<"+e.classData.type+">");var x=h.node().appendChild(en(b,e.labelStyle,!0,!0));Object(u.select)(x).attr("class","classTitle");var _=x.getBBox();if(et(he().flowchart.htmlLabels)){var k=x.children[0],w=Object(u.select)(x);_=k.getBoundingClientRect(),w.attr("width",_.width),w.attr("height",_.height)}l+=_.height+4,_.width>c&&(c=_.width);var T=[];e.classData.members.forEach((function(t){var n=Pe(t),r=n.displayText;he().flowchart.htmlLabels&&(r=r.replace(/</g,"&lt;").replace(/>/g,"&gt;"));var i=h.node().appendChild(en(r,n.cssStyle?n.cssStyle:e.labelStyle,!0,!0)),a=i.getBBox();if(et(he().flowchart.htmlLabels)){var o=i.children[0],s=Object(u.select)(i);a=o.getBoundingClientRect(),s.attr("width",a.width),s.attr("height",a.height)}a.width>c&&(c=a.width),l+=a.height+4,T.push(i)})),l+=8;var E=[];if(e.classData.methods.forEach((function(t){var n=Pe(t),r=n.displayText;he().flowchart.htmlLabels&&(r=r.replace(/</g,"&lt;").replace(/>/g,"&gt;"));var i=h.node().appendChild(en(r,n.cssStyle?n.cssStyle:e.labelStyle,!0,!0)),a=i.getBBox();if(et(he().flowchart.htmlLabels)){var o=i.children[0],s=Object(u.select)(i);a=o.getBoundingClientRect(),s.attr("width",a.width),s.attr("height",a.height)}a.width>c&&(c=a.width),l+=a.height+4,E.push(i)})),l+=8,d){var C=(c-g.width)/2;Object(u.select)(y).attr("transform","translate( "+(-1*c/2+C)+", "+-1*l/2+")"),f=g.height+4}var S=(c-_.width)/2;return Object(u.select)(x).attr("transform","translate( "+(-1*c/2+S)+", "+(-1*l/2+f)+")"),f+=_.height+4,o.attr("class","divider").attr("x1",-c/2-r).attr("x2",c/2+r).attr("y1",-l/2-r+8+f).attr("y2",-l/2-r+8+f),f+=8,T.forEach((function(t){Object(u.select)(t).attr("transform","translate( "+-c/2+", "+(-1*l/2+f+4)+")"),f+=_.height+4})),f+=8,s.attr("class","divider").attr("x1",-c/2-r).attr("x2",c/2+r).attr("y1",-l/2-r+8+f).attr("y2",-l/2-r+8+f),f+=8,E.forEach((function(t){Object(u.select)(t).attr("transform","translate( "+-c/2+", "+(-1*l/2+f)+")"),f+=_.height+4})),a.attr("class","outer title-state").attr("x",-c/2-r).attr("y",-l/2-r).attr("width",c+e.padding).attr("height",l+e.padding),rn(e,a),e.intersect=function(t){return wn.rect(e,t)},i}},Sn={},An=function(t){var e=Sn[t.id];o.trace("Transforming node",t.diff,t,"translate("+(t.x-t.width/2-5)+", "+t.width/2+")");var n=t.diff||0;return t.clusterNode?e.attr("transform","translate("+(t.x+n-t.width/2)+", "+(t.y-t.height/2-8)+")"):e.attr("transform","translate("+t.x+", "+t.y+")"),n},Mn={rect:function(t,e){o.trace("Creating subgraph rect for ",e.id,e);var n=t.insert("g").attr("class","cluster"+(e.class?" "+e.class:"")).attr("id",e.id),r=n.insert("rect",":first-child"),i=n.insert("g").attr("class","cluster-label"),a=i.node().appendChild(en(e.labelText,e.labelStyle,void 0,!0)),s=a.getBBox();if(et(he().flowchart.htmlLabels)){var c=a.children[0],l=Object(u.select)(a);s=c.getBoundingClientRect(),l.attr("width",s.width),l.attr("height",s.height)}var h=0*e.padding,f=h/2,d=e.width<=s.width+h?s.width+h:e.width;e.width<=s.width+h?e.diff=(s.width-e.width)/2:e.diff=-e.padding/2,o.trace("Data ",e,JSON.stringify(e)),r.attr("style",e.style).attr("rx",e.rx).attr("ry",e.ry).attr("x",e.x-d/2).attr("y",e.y-e.height/2-f).attr("width",d).attr("height",e.height+h),i.attr("transform","translate("+(e.x-s.width/2)+", "+(e.y-e.height/2+e.padding/3)+")");var p=r.node().getBBox();return e.width=p.width,e.height=p.height,e.intersect=function(t){return kn(e,t)},n},roundedWithTitle:function(t,e){var n=t.insert("g").attr("class",e.classes).attr("id",e.id),r=n.insert("rect",":first-child"),i=n.insert("g").attr("class","cluster-label"),a=n.append("rect"),o=i.node().appendChild(en(e.labelText,e.labelStyle,void 0,!0)),s=o.getBBox();if(et(he().flowchart.htmlLabels)){var c=o.children[0],l=Object(u.select)(o);s=c.getBoundingClientRect(),l.attr("width",s.width),l.attr("height",s.height)}s=o.getBBox();var h=0*e.padding,f=h/2,d=e.width<=s.width+e.padding?s.width+e.padding:e.width;e.width<=s.width+e.padding?e.diff=(s.width+0*e.padding-e.width)/2:e.diff=-e.padding/2,r.attr("class","outer").attr("x",e.x-d/2-f).attr("y",e.y-e.height/2-f).attr("width",d+h).attr("height",e.height+h),a.attr("class","inner").attr("x",e.x-d/2-f).attr("y",e.y-e.height/2-f+s.height-1).attr("width",d+h).attr("height",e.height+h-s.height-3),i.attr("transform","translate("+(e.x-s.width/2)+", "+(e.y-e.height/2-e.padding/3+(et(he().flowchart.htmlLabels)?5:3))+")");var p=r.node().getBBox();return e.height=p.height,e.intersect=function(t){return kn(e,t)},n},noteGroup:function(t,e){var n=t.insert("g").attr("class","note-cluster").attr("id",e.id),r=n.insert("rect",":first-child"),i=0*e.padding,a=i/2;r.attr("rx",e.rx).attr("ry",e.ry).attr("x",e.x-e.width/2-a).attr("y",e.y-e.height/2-a).attr("width",e.width+i).attr("height",e.height+i).attr("fill","none");var o=r.node().getBBox();return e.width=o.width,e.height=o.height,e.intersect=function(t){return kn(e,t)},n},divider:function(t,e){var n=t.insert("g").attr("class",e.classes).attr("id",e.id),r=n.insert("rect",":first-child"),i=0*e.padding,a=i/2;r.attr("class","divider").attr("x",e.x-e.width/2-a).attr("y",e.y-e.height/2).attr("width",e.width+i).attr("height",e.height+i);var o=r.node().getBBox();return e.width=o.width,e.height=o.height,e.diff=-e.padding/2,e.intersect=function(t){return kn(e,t)},n}},On={},Nn={},Bn={};function Dn(t,e){he().flowchart.htmlLabels&&t&&(t.style.width=9*e.length+"px",t.style.height="12px")}var Ln=function(t,e){o.warn("abc88 cutPathAtIntersect",t,e);var n=[],r=t[0],i=!1;return t.forEach((function(t){if(o.info("abc88 checking point",t,e),function(t,e){var n=t.x,r=t.y,i=Math.abs(e.x-n),a=Math.abs(e.y-r),o=t.width/2,s=t.height/2;return i>=o||a>=s}(e,t)||i)o.warn("abc88 outside",t,r),r=t,i||n.push(t);else{var a=function(t,e,n){o.warn("intersection calc abc89:\n  outsidePoint: ".concat(JSON.stringify(e),"\n  insidePoint : ").concat(JSON.stringify(n),"\n  node        : x:").concat(t.x," y:").concat(t.y," w:").concat(t.width," h:").concat(t.height));var r=t.x,i=t.y,a=Math.abs(r-n.x),s=t.width/2,c=n.x<e.x?s-a:s+a,u=t.height/2,l=Math.abs(e.y-n.y),h=Math.abs(e.x-n.x);if(Math.abs(i-e.y)*s>Math.abs(r-e.x)*u){var f=n.y<e.y?e.y-u-i:i-u-e.y;c=h*f/l;var d={x:n.x<e.x?n.x+c:n.x-h+c,y:n.y<e.y?n.y+l-f:n.y-l+f};return 0===c&&(d.x=e.x,d.y=e.y),0===h&&(d.x=e.x),0===l&&(d.y=e.y),o.warn("abc89 topp/bott calc, Q ".concat(l,", q ").concat(f,", R ").concat(h,", r ").concat(c),d),d}var p=l*(c=n.x<e.x?e.x-s-r:r-s-e.x)/h,y=n.x<e.x?n.x+h-c:n.x-h+c,g=n.y<e.y?n.y+p:n.y-p;return o.warn("sides calc abc89, Q ".concat(l,", q ").concat(p,", R ").concat(h,", r ").concat(c),{_x:y,_y:g}),0===c&&(y=e.x,g=e.y),0===h&&(y=e.x),0===l&&(g=e.y),{x:y,y:g}}(e,r,t);o.warn("abc88 inside",t,r,a),o.warn("abc88 intersection",a);var s=!1;n.forEach((function(t){s=s||t.x===a.x&&t.y===a.y})),n.find((function(t){return t.x===a.x&&t.y===a.y}))?o.warn("abc88 no intersect",a,n):n.push(a),i=!0}})),o.warn("abc88 returning points",n),n},In=function t(e,n,r,i){o.info("Graph in recursive render: XXX",Le.a.json.write(n),i);var a=n.graph().rankdir;o.trace("Dir in recursive render - dir:",a);var s=e.insert("g").attr("class","root");n.nodes()?o.info("Recursive render XXX",n.nodes()):o.info("No nodes found for",n),n.edges().length>0&&o.trace("Recursive edges",n.edge(n.edges()[0]));var c=s.insert("g").attr("class","clusters"),l=s.insert("g").attr("class","edgePaths"),h=s.insert("g").attr("class","edgeLabels"),f=s.insert("g").attr("class","nodes");n.nodes().forEach((function(e){var s=n.node(e);if(void 0!==i){var c=JSON.parse(JSON.stringify(i.clusterData));o.info("Setting data for cluster XXX (",e,") ",c,i),n.setNode(i.id,c),n.parent(e)||(o.trace("Setting parent",e,i.id),n.setParent(e,i.id,c))}if(o.info("(Insert) Node XXX"+e+": "+JSON.stringify(n.node(e))),s&&s.clusterNode){o.info("Cluster identified",e,s.width,n.node(e));var u=t(f,s.graph,r,n.node(e)),l=u.elem;rn(s,l),s.diff=u.diff||0,o.info("Node bounds (abc123)",e,s,s.width,s.x,s.y),function(t,e){Sn[e.id]=t}(l,s),o.warn("Recursive render complete ",l,s)}else n.children(e).length>0?(o.info("Cluster - the non recursive path XXX",e,s.id,s,n),o.info(hn(s.id,n)),on[s.id]={id:hn(s.id,n),node:s}):(o.info("Node - the non recursive path",e,s.id,s),function(t,e,n){var r,i;e.link?(r=t.insert("svg:a").attr("xlink:href",e.link).attr("target",e.linkTarget||"_blank"),i=Cn[e.shape](r,e,n)):r=i=Cn[e.shape](t,e,n),e.tooltip&&i.attr("title",e.tooltip),e.class&&i.attr("class","node default "+e.class),Sn[e.id]=r,e.haveCallback&&Sn[e.id].attr("class",Sn[e.id].attr("class")+" clickable")}(f,n.node(e),a))})),n.edges().forEach((function(t){var e=n.edge(t.v,t.w,t.name);o.info("Edge "+t.v+" -> "+t.w+": "+JSON.stringify(t)),o.info("Edge "+t.v+" -> "+t.w+": ",t," ",JSON.stringify(n.edge(t))),o.info("Fix",on,"ids:",t.v,t.w,"Translateing: ",on[t.v],on[t.w]),function(t,e){var n=en(e.label,e.labelStyle),r=t.insert("g").attr("class","edgeLabel"),i=r.insert("g").attr("class","label");i.node().appendChild(n);var a,o=n.getBBox();if(et(he().flowchart.htmlLabels)){var s=n.children[0],c=Object(u.select)(n);o=s.getBoundingClientRect(),c.attr("width",o.width),c.attr("height",o.height)}if(i.attr("transform","translate("+-o.width/2+", "+-o.height/2+")"),Nn[e.id]=r,e.width=o.width,e.height=o.height,e.startLabelLeft){var l=en(e.startLabelLeft,e.labelStyle),h=t.insert("g").attr("class","edgeTerminals"),f=h.insert("g").attr("class","inner");a=f.node().appendChild(l);var d=l.getBBox();f.attr("transform","translate("+-d.width/2+", "+-d.height/2+")"),Bn[e.id]||(Bn[e.id]={}),Bn[e.id].startLeft=h,Dn(a,e.startLabelLeft)}if(e.startLabelRight){var p=en(e.startLabelRight,e.labelStyle),y=t.insert("g").attr("class","edgeTerminals"),g=y.insert("g").attr("class","inner");a=y.node().appendChild(p),g.node().appendChild(p);var m=p.getBBox();g.attr("transform","translate("+-m.width/2+", "+-m.height/2+")"),Bn[e.id]||(Bn[e.id]={}),Bn[e.id].startRight=y,Dn(a,e.startLabelRight)}if(e.endLabelLeft){var v=en(e.endLabelLeft,e.labelStyle),b=t.insert("g").attr("class","edgeTerminals"),x=b.insert("g").attr("class","inner");a=x.node().appendChild(v);var _=v.getBBox();x.attr("transform","translate("+-_.width/2+", "+-_.height/2+")"),b.node().appendChild(v),Bn[e.id]||(Bn[e.id]={}),Bn[e.id].endLeft=b,Dn(a,e.endLabelLeft)}if(e.endLabelRight){var k=en(e.endLabelRight,e.labelStyle),w=t.insert("g").attr("class","edgeTerminals"),T=w.insert("g").attr("class","inner");a=T.node().appendChild(k);var E=k.getBBox();T.attr("transform","translate("+-E.width/2+", "+-E.height/2+")"),w.node().appendChild(k),Bn[e.id]||(Bn[e.id]={}),Bn[e.id].endRight=w,Dn(a,e.endLabelRight)}}(h,e)})),n.edges().forEach((function(t){o.info("Edge "+t.v+" -> "+t.w+": "+JSON.stringify(t))})),o.info("#############################################"),o.info("###                Layout                 ###"),o.info("#############################################"),o.info(n),Be.a.layout(n),o.info("Graph after layout:",Le.a.json.write(n));var d=0;return yn(n).forEach((function(t){var e=n.node(t);o.info("Position "+t+": "+JSON.stringify(n.node(t))),o.info("Position "+t+": ("+e.x,","+e.y,") width: ",e.width," height: ",e.height),e&&e.clusterNode?An(e):n.children(t).length>0?(!function(t,e){o.trace("Inserting cluster");var n=e.shape||"rect";On[e.id]=Mn[n](t,e)}(c,e),on[e.id].node=e):An(e)})),n.edges().forEach((function(t){var e=n.edge(t);o.info("Edge "+t.v+" -> "+t.w+": "+JSON.stringify(e),e),function(t,e){o.info("Moving label abc78 ",t.id,t.label,Nn[t.id]);var n=e.updatedPath?e.updatedPath:e.originalPath;if(t.label){var r=Nn[t.id],i=t.x,a=t.y;if(n){var s=ne.calcLabelPosition(n);o.info("Moving label from (",i,",",a,") to (",s.x,",",s.y,") abc78")}r.attr("transform","translate("+i+", "+a+")")}if(t.startLabelLeft){var c=Bn[t.id].startLeft,u=t.x,l=t.y;if(n){var h=ne.calcTerminalLabelPosition(t.arrowTypeStart?10:0,"start_left",n);u=h.x,l=h.y}c.attr("transform","translate("+u+", "+l+")")}if(t.startLabelRight){var f=Bn[t.id].startRight,d=t.x,p=t.y;if(n){var y=ne.calcTerminalLabelPosition(t.arrowTypeStart?10:0,"start_right",n);d=y.x,p=y.y}f.attr("transform","translate("+d+", "+p+")")}if(t.endLabelLeft){var g=Bn[t.id].endLeft,m=t.x,v=t.y;if(n){var b=ne.calcTerminalLabelPosition(t.arrowTypeEnd?10:0,"end_left",n);m=b.x,v=b.y}g.attr("transform","translate("+m+", "+v+")")}if(t.endLabelRight){var x=Bn[t.id].endRight,_=t.x,k=t.y;if(n){var w=ne.calcTerminalLabelPosition(t.arrowTypeEnd?10:0,"end_right",n);_=w.x,k=w.y}x.attr("transform","translate("+_+", "+k+")")}}(e,function(t,e,n,r,i,a){var s=n.points,c=!1,l=a.node(e.v),h=a.node(e.w);o.info("abc88 InsertEdge: ",n),h.intersect&&l.intersect&&((s=s.slice(1,n.points.length-1)).unshift(l.intersect(s[0])),o.info("Last point",s[s.length-1],h,h.intersect(s[s.length-1])),s.push(h.intersect(s[s.length-1]))),n.toCluster&&(o.info("to cluster abc88",r[n.toCluster]),s=Ln(n.points,r[n.toCluster].node),c=!0),n.fromCluster&&(o.info("from cluster abc88",r[n.fromCluster]),s=Ln(s.reverse(),r[n.fromCluster].node).reverse(),c=!0);var f,d=s.filter((function(t){return!Number.isNaN(t.y)}));f=("graph"===i||"flowchart"===i)&&n.curve||u.curveBasis;var p,y=Object(u.line)().x((function(t){return t.x})).y((function(t){return t.y})).curve(f);switch(n.thickness){case"normal":p="edge-thickness-normal";break;case"thick":p="edge-thickness-thick";break;default:p=""}switch(n.pattern){case"solid":p+=" edge-pattern-solid";break;case"dotted":p+=" edge-pattern-dotted";break;case"dashed":p+=" edge-pattern-dashed"}var g=t.append("path").attr("d",y(d)).attr("id",n.id).attr("class"," "+p+(n.classes?" "+n.classes:"")).attr("style",n.style),m="";switch(he().state.arrowMarkerAbsolute&&(m=(m=(m=window.location.protocol+"//"+window.location.host+window.location.pathname+window.location.search).replace(/\(/g,"\\(")).replace(/\)/g,"\\)")),o.info("arrowTypeStart",n.arrowTypeStart),o.info("arrowTypeEnd",n.arrowTypeEnd),n.arrowTypeStart){case"arrow_cross":g.attr("marker-start","url("+m+"#"+i+"-crossStart)");break;case"arrow_point":g.attr("marker-start","url("+m+"#"+i+"-pointStart)");break;case"arrow_barb":g.attr("marker-start","url("+m+"#"+i+"-barbStart)");break;case"arrow_circle":g.attr("marker-start","url("+m+"#"+i+"-circleStart)");break;case"aggregation":g.attr("marker-start","url("+m+"#"+i+"-aggregationStart)");break;case"extension":g.attr("marker-start","url("+m+"#"+i+"-extensionStart)");break;case"composition":g.attr("marker-start","url("+m+"#"+i+"-compositionStart)");break;case"dependency":g.attr("marker-start","url("+m+"#"+i+"-dependencyStart)")}switch(n.arrowTypeEnd){case"arrow_cross":g.attr("marker-end","url("+m+"#"+i+"-crossEnd)");break;case"arrow_point":g.attr("marker-end","url("+m+"#"+i+"-pointEnd)");break;case"arrow_barb":g.attr("marker-end","url("+m+"#"+i+"-barbEnd)");break;case"arrow_circle":g.attr("marker-end","url("+m+"#"+i+"-circleEnd)");break;case"aggregation":g.attr("marker-end","url("+m+"#"+i+"-aggregationEnd)");break;case"extension":g.attr("marker-end","url("+m+"#"+i+"-extensionEnd)");break;case"composition":g.attr("marker-end","url("+m+"#"+i+"-compositionEnd)");break;case"dependency":g.attr("marker-end","url("+m+"#"+i+"-dependencyEnd)")}var v={};return c&&(v.updatedPath=s),v.originalPath=n.points,v}(l,t,e,on,r,n))})),n.nodes().forEach((function(t){var e=n.node(t);o.info(t,e.type,e.diff),"group"===e.type&&(d=e.diff)})),{elem:s,diff:d}},Rn=function(t,e,n,r,i){Je(t,n,r,i),Sn={},Nn={},Bn={},On={},sn={},cn={},on={},o.warn("Graph at first:",Le.a.json.write(e)),dn(e),o.warn("Graph after:",Le.a.json.write(e)),In(t,e,r)};Ie.parser.yy=Oe;var Fn={dividerMargin:10,padding:5,textHeight:10},Pn=function(t){Object.keys(t).forEach((function(e){Fn[e]=t[e]}))},jn=function(t,e){o.info("Drawing class"),Oe.clear(),Ie.parser.parse(t);var n=he().flowchart;o.info("config:",n);var r=n.nodeSpacing||50,i=n.rankSpacing||50,a=new Le.a.Graph({multigraph:!0,compound:!0}).setGraph({rankdir:Oe.getDirection(),nodesep:r,ranksep:i,marginx:8,marginy:8}).setDefaultEdgeLabel((function(){return{}})),s=Oe.getClasses(),c=Oe.getRelations();o.info(c),function(t,e){var n=Object.keys(t);o.info("keys:",n),o.info(t),n.forEach((function(n){var r=t[n],i="";r.cssClasses.length>0&&(i=i+" "+r.cssClasses.join(" "));var a={labelStyle:""},s=void 0!==r.text?r.text:r.id,c="";switch(r.type){case"class":c="class_box";break;default:c="class_box"}e.setNode(r.id,{labelStyle:a.labelStyle,shape:c,labelText:s,classData:r,rx:0,ry:0,class:i,style:a.style,id:r.id,domId:r.domId,haveCallback:r.haveCallback,link:r.link,width:"group"===r.type?500:void 0,type:r.type,padding:he().flowchart.padding}),o.info("setNode",{labelStyle:a.labelStyle,shape:c,labelText:s,rx:0,ry:0,class:i,style:a.style,id:r.id,width:"group"===r.type?500:void 0,type:r.type,padding:he().flowchart.padding})}))}(s,a),function(t,e){var n=0;t.forEach((function(r){n++;var i={classes:"relation"};i.pattern=1==r.relation.lineType?"dashed":"solid",i.id="id"+n,"arrow_open"===r.type?i.arrowhead="none":i.arrowhead="normal",o.info(i,r),i.startLabelRight="none"===r.relationTitle1?"":r.relationTitle1,i.endLabelLeft="none"===r.relationTitle2?"":r.relationTitle2,i.arrowTypeStart=Yn(r.relation.type1),i.arrowTypeEnd=Yn(r.relation.type2);var a="",s="";if(void 0!==r.style){var c=Ut(r.style);a=c.style,s=c.labelStyle}else a="fill:none";i.style=a,i.labelStyle=s,void 0!==r.interpolate?i.curve=Yt(r.interpolate,u.curveLinear):void 0!==t.defaultInterpolate?i.curve=Yt(t.defaultInterpolate,u.curveLinear):i.curve=Yt(Fn.curve,u.curveLinear),r.text=r.title,void 0===r.text?void 0!==r.style&&(i.arrowheadStyle="fill: #333"):(i.arrowheadStyle="fill: #333",i.labelpos="c",he().flowchart.htmlLabels?(i.labelType="html",i.label='<span class="edgeLabel">'+r.text+"</span>"):(i.labelType="text",i.label=r.text.replace(nt.lineBreakRegex,"\n"),void 0===r.style&&(i.style=i.style||"stroke: #333; stroke-width: 1.5px;fill:none"),i.labelStyle=i.labelStyle.replace("color:","fill:"))),e.setEdge(r.id1,r.id2,i,n)}))}(c,a);var l=Object(u.select)('[id="'.concat(e,'"]'));l.attr("xmlns:xlink","http://www.w3.org/1999/xlink");var h=Object(u.select)("#"+e+" g");Rn(h,a,["aggregation","extension","composition","dependency"],"classDiagram",e);var f=l.node().getBBox(),d=f.width+16,p=f.height+16;if(o.debug("new ViewBox 0 0 ".concat(d," ").concat(p),"translate(".concat(8-a._label.marginx,", ").concat(8-a._label.marginy,")")),te(l,p,d,n.useMaxWidth),l.attr("viewBox","0 0 ".concat(d," ").concat(p)),l.select("g").attr("transform","translate(".concat(8-a._label.marginx,", ").concat(8-f.y,")")),!n.htmlLabels)for(var y=document.querySelectorAll('[id="'+e+'"] .edgeLabel .label'),g=0;g<y.length;g++){var m=y[g],v=m.getBBox(),b=document.createElementNS("http://www.w3.org/2000/svg","rect");b.setAttribute("rx",0),b.setAttribute("ry",0),b.setAttribute("width",v.width),b.setAttribute("height",v.height),m.insertBefore(b,m.firstChild)}};function Yn(t){var e;switch(t){case 0:e="aggregation";break;case 1:e="extension";break;case 2:e="composition";break;case 3:e="dependency";break;default:e="none"}return e}var zn={},Un=[],$n="",qn=function(t){return void 0===zn[t]&&(zn[t]={attributes:[]},o.info("Added new entity :",t)),zn[t]},Wn={Cardinality:{ZERO_OR_ONE:"ZERO_OR_ONE",ZERO_OR_MORE:"ZERO_OR_MORE",ONE_OR_MORE:"ONE_OR_MORE",ONLY_ONE:"ONLY_ONE"},Identification:{NON_IDENTIFYING:"NON_IDENTIFYING",IDENTIFYING:"IDENTIFYING"},parseDirective:function(t,e,n){gc.parseDirective(this,t,e,n)},getConfig:function(){return he().er},addEntity:qn,addAttributes:function(t,e){var n,r=qn(t);for(n=e.length-1;n>=0;n--)r.attributes.push(e[n]),o.debug("Added attribute ",e[n].attributeName)},getEntities:function(){return zn},addRelationship:function(t,e,n,r){var i={entityA:t,roleA:e,entityB:n,relSpec:r};Un.push(i),o.debug("Added new relationship :",i)},getRelationships:function(){return Un},clear:function(){zn={},Un=[],$n=""},setTitle:function(t){$n=t},getTitle:function(){return $n}},Hn=n(76),Vn=n.n(Hn),Gn={ONLY_ONE_START:"ONLY_ONE_START",ONLY_ONE_END:"ONLY_ONE_END",ZERO_OR_ONE_START:"ZERO_OR_ONE_START",ZERO_OR_ONE_END:"ZERO_OR_ONE_END",ONE_OR_MORE_START:"ONE_OR_MORE_START",ONE_OR_MORE_END:"ONE_OR_MORE_END",ZERO_OR_MORE_START:"ZERO_OR_MORE_START",ZERO_OR_MORE_END:"ZERO_OR_MORE_END"},Xn=Gn,Zn=function(t,e){var n;t.append("defs").append("marker").attr("id",Gn.ONLY_ONE_START).attr("refX",0).attr("refY",9).attr("markerWidth",18).attr("markerHeight",18).attr("orient","auto").append("path").attr("stroke",e.stroke).attr("fill","none").attr("d","M9,0 L9,18 M15,0 L15,18"),t.append("defs").append("marker").attr("id",Gn.ONLY_ONE_END).attr("refX",18).attr("refY",9).attr("markerWidth",18).attr("markerHeight",18).attr("orient","auto").append("path").attr("stroke",e.stroke).attr("fill","none").attr("d","M3,0 L3,18 M9,0 L9,18"),(n=t.append("defs").append("marker").attr("id",Gn.ZERO_OR_ONE_START).attr("refX",0).attr("refY",9).attr("markerWidth",30).attr("markerHeight",18).attr("orient","auto")).append("circle").attr("stroke",e.stroke).attr("fill","white").attr("cx",21).attr("cy",9).attr("r",6),n.append("path").attr("stroke",e.stroke).attr("fill","none").attr("d","M9,0 L9,18"),(n=t.append("defs").append("marker").attr("id",Gn.ZERO_OR_ONE_END).attr("refX",30).attr("refY",9).attr("markerWidth",30).attr("markerHeight",18).attr("orient","auto")).append("circle").attr("stroke",e.stroke).attr("fill","white").attr("cx",9).attr("cy",9).attr("r",6),n.append("path").attr("stroke",e.stroke).attr("fill","none").attr("d","M21,0 L21,18"),t.append("defs").append("marker").attr("id",Gn.ONE_OR_MORE_START).attr("refX",18).attr("refY",18).attr("markerWidth",45).attr("markerHeight",36).attr("orient","auto").append("path").attr("stroke",e.stroke).attr("fill","none").attr("d","M0,18 Q 18,0 36,18 Q 18,36 0,18 M42,9 L42,27"),t.append("defs").append("marker").attr("id",Gn.ONE_OR_MORE_END).attr("refX",27).attr("refY",18).attr("markerWidth",45).attr("markerHeight",36).attr("orient","auto").append("path").attr("stroke",e.stroke).attr("fill","none").attr("d","M3,9 L3,27 M9,18 Q27,0 45,18 Q27,36 9,18"),(n=t.append("defs").append("marker").attr("id",Gn.ZERO_OR_MORE_START).attr("refX",18).attr("refY",18).attr("markerWidth",57).attr("markerHeight",36).attr("orient","auto")).append("circle").attr("stroke",e.stroke).attr("fill","white").attr("cx",48).attr("cy",18).attr("r",6),n.append("path").attr("stroke",e.stroke).attr("fill","none").attr("d","M0,18 Q18,0 36,18 Q18,36 0,18"),(n=t.append("defs").append("marker").attr("id",Gn.ZERO_OR_MORE_END).attr("refX",39).attr("refY",18).attr("markerWidth",57).attr("markerHeight",36).attr("orient","auto")).append("circle").attr("stroke",e.stroke).attr("fill","white").attr("cx",9).attr("cy",18).attr("r",6),n.append("path").attr("stroke",e.stroke).attr("fill","none").attr("d","M21,18 Q39,0 57,18 Q39,36 21,18")},Kn={},Qn=function(t,e,n){var r;return Object.keys(e).forEach((function(i){var a=t.append("g").attr("id",i);r=void 0===r?i:r;var o="entity-"+i,s=a.append("text").attr("class","er entityLabel").attr("id",o).attr("x",0).attr("y",0).attr("dominant-baseline","middle").attr("text-anchor","middle").attr("style","font-family: "+he().fontFamily+"; font-size: "+Kn.fontSize+"px").text(i),c=function(t,e,n){var r=Kn.entityPadding/3,i=Kn.entityPadding/3,a=.85*Kn.fontSize,o=e.node().getBBox(),s=[],c=!1,u=!1,l=0,h=0,f=0,d=0,p=0,y=o.height+2*r,g=1;n.forEach((function(n){var i="".concat(e.node().id,"-attr-").concat(g),o=0,m=0,v=t.append("text").attr("class","er entityLabel").attr("id","".concat(i,"-type")).attr("x",0).attr("y",0).attr("dominant-baseline","middle").attr("text-anchor","left").attr("style","font-family: "+he().fontFamily+"; font-size: "+a+"px").text(n.attributeType),b=t.append("text").attr("class","er entityLabel").attr("id","".concat(i,"-name")).attr("x",0).attr("y",0).attr("dominant-baseline","middle").attr("text-anchor","left").attr("style","font-family: "+he().fontFamily+"; font-size: "+a+"px").text(n.attributeName),x={};x.tn=v,x.nn=b;var _=v.node().getBBox(),k=b.node().getBBox();if(h=Math.max(h,_.width),f=Math.max(f,k.width),o+=_.width,o+=k.width,m=Math.max(_.height,k.height),c||void 0!==n.attributeKeyType){var w=t.append("text").attr("class","er entityLabel").attr("id","".concat(i,"-name")).attr("x",0).attr("y",0).attr("dominant-baseline","middle").attr("text-anchor","left").attr("style","font-family: "+he().fontFamily+"; font-size: "+a+"px").text(n.attributeKeyType||"");x.kn=w;var T=w.node().getBBox();o+=T.width,d=Math.max(d,o),m=Math.max(m,T.height),c=!0}if(u||void 0!==n.attributeComment){var E=t.append("text").attr("class","er entityLabel").attr("id","".concat(i,"-name")).attr("x",0).attr("y",0).attr("dominant-baseline","middle").attr("text-anchor","left").attr("style","font-family: "+he().fontFamily+"; font-size: "+a+"px").text(n.attributeComment||"");x.cn=E;var C=E.node().getBBox();o+=C.width,p=Math.max(o,k.width),m=Math.max(m,C.height),u=!0}x.height=m,s.push(x),l=Math.max(l,o),y+=m+2*r,g+=1}));var m={width:Math.max(Kn.minEntityWidth,Math.max(o.width+2*Kn.entityPadding,l+4*i)),height:n.length>0?y:Math.max(Kn.minEntityHeight,o.height+2*Kn.entityPadding)},v=Math.max(0,m.width-l-4*i);if(n.length>0){e.attr("transform","translate("+m.width/2+","+(r+o.height/2)+")");var b=o.height+2*r,x="attributeBoxOdd";s.forEach((function(e){var n=b+r+e.height/2;e.tn.attr("transform","translate("+i+","+n+")");var a=t.insert("rect","#"+e.tn.node().id).attr("class","er ".concat(x)).attr("fill",Kn.fill).attr("fill-opacity","100%").attr("stroke",Kn.stroke).attr("x",0).attr("y",b).attr("width",2*h+v/2).attr("height",e.tn.node().getBBox().height+2*r);e.nn.attr("transform","translate("+(parseFloat(a.attr("width"))+i)+","+n+")"),t.insert("rect","#"+e.nn.node().id).attr("class","er ".concat(x)).attr("fill",Kn.fill).attr("fill-opacity","100%").attr("stroke",Kn.stroke).attr("x","".concat(a.attr("x")+a.attr("width"))).attr("y",b).attr("width",f+2*i+v/2).attr("height",e.nn.node().getBBox().height+2*r),c&&(e.kn.attr("transform","translate("+(parseFloat(a.attr("width"))+i)+","+n+")"),t.insert("rect","#"+e.kn.node().id).attr("class","er ".concat(x)).attr("fill",Kn.fill).attr("fill-opacity","100%").attr("stroke",Kn.stroke).attr("x","".concat(a.attr("x")+a.attr("width"))).attr("y",b).attr("width",d+2*i+v/2).attr("height",e.kn.node().getBBox().height+2*r)),u&&(e.cn.attr("transform","translate("+(parseFloat(a.attr("width"))+i)+","+n+")"),t.insert("rect","#"+e.cn.node().id).attr("class","er ".concat(x)).attr("fill",Kn.fill).attr("fill-opacity","100%").attr("stroke",Kn.stroke).attr("x","".concat(a.attr("x")+a.attr("width"))).attr("y",b).attr("width",p+2*i+v/2).attr("height",e.cn.node().getBBox().height+2*r)),b+=e.height+2*r,x="attributeBoxOdd"==x?"attributeBoxEven":"attributeBoxOdd"}))}else m.height=Math.max(Kn.minEntityHeight,y),e.attr("transform","translate("+m.width/2+","+m.height/2+")");return m}(a,s,e[i].attributes),u=c.width,l=c.height,h=a.insert("rect","#"+o).attr("class","er entityBox").attr("fill",Kn.fill).attr("fill-opacity","100%").attr("stroke",Kn.stroke).attr("x",0).attr("y",0).attr("width",u).attr("height",l).node().getBBox();n.setNode(i,{width:h.width,height:h.height,shape:"rect",id:i})})),r},Jn=function(t){return(t.entityA+t.roleA+t.entityB).replace(/\s/g,"")},tr=0,er=function(t){for(var e=Object.keys(t),n=0;n<e.length;n++)Kn[e[n]]=t[e[n]]},nr=function(t,e){o.info("Drawing ER diagram"),Wn.clear();var n=Vn.a.parser;n.yy=Wn;try{n.parse(t)}catch(t){o.debug("Parsing failed")}var r,i=Object(u.select)("[id='".concat(e,"']"));Zn(i,Kn),r=new Le.a.Graph({multigraph:!0,directed:!0,compound:!1}).setGraph({rankdir:Kn.layoutDirection,marginx:20,marginy:20,nodesep:100,edgesep:100,ranksep:100}).setDefaultEdgeLabel((function(){return{}}));var a,s,c=Qn(i,Wn.getEntities(),r),l=function(t,e){return t.forEach((function(t){e.setEdge(t.entityA,t.entityB,{relationship:t},Jn(t))})),t}(Wn.getRelationships(),r);Be.a.layout(r),a=i,(s=r).nodes().forEach((function(t){void 0!==t&&void 0!==s.node(t)&&a.select("#"+t).attr("transform","translate("+(s.node(t).x-s.node(t).width/2)+","+(s.node(t).y-s.node(t).height/2)+" )")})),l.forEach((function(t){!function(t,e,n,r){tr++;var i=n.edge(e.entityA,e.entityB,Jn(e)),a=Object(u.line)().x((function(t){return t.x})).y((function(t){return t.y})).curve(u.curveBasis),o=t.insert("path","#"+r).attr("class","er relationshipLine").attr("d",a(i.points)).attr("stroke",Kn.stroke).attr("fill","none");e.relSpec.relType===Wn.Identification.NON_IDENTIFYING&&o.attr("stroke-dasharray","8,8");var s="";switch(Kn.arrowMarkerAbsolute&&(s=(s=(s=window.location.protocol+"//"+window.location.host+window.location.pathname+window.location.search).replace(/\(/g,"\\(")).replace(/\)/g,"\\)")),e.relSpec.cardA){case Wn.Cardinality.ZERO_OR_ONE:o.attr("marker-end","url("+s+"#"+Xn.ZERO_OR_ONE_END+")");break;case Wn.Cardinality.ZERO_OR_MORE:o.attr("marker-end","url("+s+"#"+Xn.ZERO_OR_MORE_END+")");break;case Wn.Cardinality.ONE_OR_MORE:o.attr("marker-end","url("+s+"#"+Xn.ONE_OR_MORE_END+")");break;case Wn.Cardinality.ONLY_ONE:o.attr("marker-end","url("+s+"#"+Xn.ONLY_ONE_END+")")}switch(e.relSpec.cardB){case Wn.Cardinality.ZERO_OR_ONE:o.attr("marker-start","url("+s+"#"+Xn.ZERO_OR_ONE_START+")");break;case Wn.Cardinality.ZERO_OR_MORE:o.attr("marker-start","url("+s+"#"+Xn.ZERO_OR_MORE_START+")");break;case Wn.Cardinality.ONE_OR_MORE:o.attr("marker-start","url("+s+"#"+Xn.ONE_OR_MORE_START+")");break;case Wn.Cardinality.ONLY_ONE:o.attr("marker-start","url("+s+"#"+Xn.ONLY_ONE_START+")")}var c=o.node().getTotalLength(),l=o.node().getPointAtLength(.5*c),h="rel"+tr,f=t.append("text").attr("class","er relationshipLabel").attr("id",h).attr("x",l.x).attr("y",l.y).attr("text-anchor","middle").attr("dominant-baseline","middle").attr("style","font-family: "+he().fontFamily+"; font-size: "+Kn.fontSize+"px").text(e.roleA).node().getBBox();t.insert("rect","#"+h).attr("class","er relationshipLabelBox").attr("x",l.x-f.width/2).attr("y",l.y-f.height/2).attr("width",f.width).attr("height",f.height).attr("fill","white").attr("fill-opacity","85%")}(i,t,r,c)}));var h=Kn.diagramPadding,f=i.node().getBBox(),d=f.width+2*h,p=f.height+2*h;te(i,p,d,Kn.useMaxWidth),i.attr("viewBox","".concat(f.x-h," ").concat(f.y-h," ").concat(d," ").concat(p))};function rr(t){return(rr="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}function ir(t){return function(t){if(Array.isArray(t))return ar(t)}(t)||function(t){if("undefined"!=typeof Symbol&&null!=t[Symbol.iterator]||null!=t["@@iterator"])return Array.from(t)}(t)||function(t,e){if(!t)return;if("string"==typeof t)return ar(t,e);var n=Object.prototype.toString.call(t).slice(8,-1);"Object"===n&&t.constructor&&(n=t.constructor.name);if("Map"===n||"Set"===n)return Array.from(t);if("Arguments"===n||/^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(n))return ar(t,e)}(t)||function(){throw new TypeError("Invalid attempt to spread non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}()}function ar(t,e){(null==e||e>t.length)&&(e=t.length);for(var n=0,r=new Array(e);n<e;n++)r[n]=t[n];return r}var or,sr,cr=0,ur=he(),lr={},hr=[],fr=[],dr=[],pr={},yr={},gr=0,mr=!0,vr=[],br=function(t){for(var e=Object.keys(lr),n=0;n<e.length;n++)if(lr[e[n]].id===t)return lr[e[n]].domId;return t},xr=function(t,e,n,r){var i={start:t,end:e,type:void 0,text:""};void 0!==(r=n.text)&&(i.text=nt.sanitizeText(r.trim(),ur),'"'===i.text[0]&&'"'===i.text[i.text.length-1]&&(i.text=i.text.substring(1,i.text.length-1))),void 0!==n&&(i.type=n.type,i.stroke=n.stroke,i.length=n.length),hr.push(i)},_r=function(t,e){t.split(",").forEach((function(t){var n=t;void 0!==lr[n]&&lr[n].classes.push(e),void 0!==pr[n]&&pr[n].classes.push(e)}))},kr=function(t){var e=Object(u.select)(".mermaidTooltip");null===(e._groups||e)[0][0]&&(e=Object(u.select)("body").append("div").attr("class","mermaidTooltip").style("opacity",0)),Object(u.select)(t).select("svg").selectAll("g.node").on("mouseover",(function(){var t=Object(u.select)(this);if(null!==t.attr("title")){var n=this.getBoundingClientRect();e.transition().duration(200).style("opacity",".9"),e.html(t.attr("title")).style("left",window.scrollX+n.left+(n.right-n.left)/2+"px").style("top",window.scrollY+n.top-14+document.body.scrollTop+"px"),t.classed("hover",!0)}})).on("mouseout",(function(){e.transition().duration(500).style("opacity",0),Object(u.select)(this).classed("hover",!1)}))};vr.push(kr);var wr=function(t){for(var e=0;e<dr.length;e++)if(dr[e].id===t)return e;return-1},Tr=-1,Er=[],Cr=function(t,e){var n=!1;return t.forEach((function(t){t.nodes.indexOf(e)>=0&&(n=!0)})),n},Sr=function(t,e){var n=[];return t.nodes.forEach((function(r,i){Cr(e,r)||n.push(t.nodes[i])})),{nodes:n}},Ar={parseDirective:function(t,e,n){gc.parseDirective(this,t,e,n)},defaultConfig:function(){return ae.flowchart},addVertex:function(t,e,n,r,i,a){var o,s=t;void 0!==s&&0!==s.trim().length&&(void 0===lr[s]&&(lr[s]={id:s,domId:"flowchart-"+s+"-"+cr,styles:[],classes:[]}),cr++,void 0!==e?(ur=he(),'"'===(o=nt.sanitizeText(e.trim(),ur))[0]&&'"'===o[o.length-1]&&(o=o.substring(1,o.length-1)),lr[s].text=o):void 0===lr[s].text&&(lr[s].text=t),void 0!==n&&(lr[s].type=n),null!=r&&r.forEach((function(t){lr[s].styles.push(t)})),null!=i&&i.forEach((function(t){lr[s].classes.push(t)})),void 0!==a&&(lr[s].dir=a))},lookUpDomId:br,addLink:function(t,e,n,r){var i,a;for(i=0;i<t.length;i++)for(a=0;a<e.length;a++)xr(t[i],e[a],n,r)},updateLinkInterpolate:function(t,e){t.forEach((function(t){"default"===t?hr.defaultInterpolate=e:hr[t].interpolate=e}))},updateLink:function(t,e){t.forEach((function(t){"default"===t?hr.defaultStyle=e:(-1===ne.isSubstringInArray("fill",e)&&e.push("fill:none"),hr[t].style=e)}))},addClass:function(t,e){void 0===fr[t]&&(fr[t]={id:t,styles:[],textStyles:[]}),null!=e&&e.forEach((function(e){if(e.match("color")){var n=e.replace("fill","bgFill").replace("color","fill");fr[t].textStyles.push(n)}fr[t].styles.push(e)}))},setDirection:function(t){(or=t).match(/.*</)&&(or="RL"),or.match(/.*\^/)&&(or="BT"),or.match(/.*>/)&&(or="LR"),or.match(/.*v/)&&(or="TB")},setClass:_r,setTooltip:function(t,e){t.split(",").forEach((function(t){void 0!==e&&(yr["gen-1"===sr?br(t):t]=nt.sanitizeText(e,ur))}))},getTooltip:function(t){return yr[t]},setClickEvent:function(t,e,n){t.split(",").forEach((function(t){!function(t,e,n){var r=br(t);if("loose"===he().securityLevel&&void 0!==e){var i=[];if("string"==typeof n){i=n.split(/,(?=(?:(?:[^"]*"){2})*[^"]*$)/);for(var a=0;a<i.length;a++){var o=i[a].trim();'"'===o.charAt(0)&&'"'===o.charAt(o.length-1)&&(o=o.substr(1,o.length-2)),i[a]=o}}0===i.length&&i.push(t),void 0!==lr[t]&&(lr[t].haveCallback=!0,vr.push((function(){var t=document.querySelector('[id="'.concat(r,'"]'));null!==t&&t.addEventListener("click",(function(){ne.runFunc.apply(ne,[e].concat(ir(i)))}),!1)})))}}(t,e,n)})),_r(t,"clickable")},setLink:function(t,e,n){t.split(",").forEach((function(t){void 0!==lr[t]&&(lr[t].link=ne.formatUrl(e,ur),lr[t].linkTarget=n)})),_r(t,"clickable")},bindFunctions:function(t){vr.forEach((function(e){e(t)}))},getDirection:function(){return or.trim()},getVertices:function(){return lr},getEdges:function(){return hr},getClasses:function(){return fr},clear:function(t){lr={},fr={},hr=[],(vr=[]).push(kr),dr=[],pr={},gr=0,yr=[],mr=!0,sr=t||"gen-1"},setGen:function(t){sr=t||"gen-1"},defaultStyle:function(){return"fill:#ffa;stroke: #f66; stroke-width: 3px; stroke-dasharray: 5, 5;fill:#ffa;stroke: #666;"},addSubGraph:function(t,e,n){var r=t.trim(),i=n;t===n&&n.match(/\s/)&&(r=void 0);var a=[],s=function(t){var e,n={boolean:{},number:{},string:{}},r=[];return{nodeList:t.filter((function(t){var i=rr(t);return t.stmt&&"dir"===t.stmt?(e=t.value,!1):""!==t.trim()&&(i in n?!n[i].hasOwnProperty(t)&&(n[i][t]=!0):!(r.indexOf(t)>=0)&&r.push(t))})),dir:e}}(a.concat.apply(a,e)),c=s.nodeList,u=s.dir;if(a=c,"gen-1"===sr){o.warn("LOOKING UP");for(var l=0;l<a.length;l++)a[l]=br(a[l])}r=r||"subGraph"+gr,i=i||"",i=nt.sanitizeText(i,ur),gr+=1;var h={id:r,nodes:a,title:i.trim(),classes:[],dir:u};return o.info("Adding",h.id,h.nodes,h.dir),h.nodes=Sr(h,dr).nodes,dr.push(h),pr[r]=h,r},getDepthFirstPos:function(t){return Er[t]},indexNodes:function(){Tr=-1,dr.length>0&&function t(e,n){var r=dr[n].nodes;if(!((Tr+=1)>2e3)){if(Er[Tr]=n,dr[n].id===e)return{result:!0,count:0};for(var i=0,a=1;i<r.length;){var o=wr(r[i]);if(o>=0){var s=t(e,o);if(s.result)return{result:!0,count:a+s.count};a+=s.count}i+=1}return{result:!1,count:a}}}("none",dr.length-1)},getSubGraphs:function(){return dr},destructLink:function(t,e){var n,r=function(t){var e=t.trim(),n=e.slice(0,-1),r="arrow_open";switch(e.slice(-1)){case"x":r="arrow_cross","x"===e[0]&&(r="double_"+r,n=n.slice(1));break;case">":r="arrow_point","<"===e[0]&&(r="double_"+r,n=n.slice(1));break;case"o":r="arrow_circle","o"===e[0]&&(r="double_"+r,n=n.slice(1))}var i="normal",a=n.length-1;"="===n[0]&&(i="thick");var o=function(t,e){for(var n=e.length,r=0,i=0;i<n;++i)e[i]===t&&++r;return r}(".",n);return o&&(i="dotted",a=o),{type:r,stroke:i,length:a}}(t);if(e){if((n=function(t){var e=t.trim(),n="arrow_open";switch(e[0]){case"<":n="arrow_point",e=e.slice(1);break;case"x":n="arrow_cross",e=e.slice(1);break;case"o":n="arrow_circle",e=e.slice(1)}var r="normal";return-1!==e.indexOf("=")&&(r="thick"),-1!==e.indexOf(".")&&(r="dotted"),{type:n,stroke:r}}(e)).stroke!==r.stroke)return{type:"INVALID",stroke:"INVALID"};if("arrow_open"===n.type)n.type=r.type;else{if(n.type!==r.type)return{type:"INVALID",stroke:"INVALID"};n.type="double_"+n.type}return"double_arrow"===n.type&&(n.type="double_arrow_point"),n.length=r.length,n}return r},lex:{firstGraph:function(){return!!mr&&(mr=!1,!0)}},exists:Cr,makeUniq:Sr},Mr=n(27),Or=n.n(Mr),Nr=n(8),Br=n.n(Nr),Dr=n(51),Lr=n.n(Dr);function Ir(t,e,n){var r=.9*(e.width+e.height),i=[{x:r/2,y:0},{x:r,y:-r/2},{x:r/2,y:-r},{x:0,y:-r/2}],a=Hr(t,r,r,i);return n.intersect=function(t){return Br.a.intersect.polygon(n,i,t)},a}function Rr(t,e,n){var r=e.height,i=r/4,a=e.width+2*i,o=[{x:i,y:0},{x:a-i,y:0},{x:a,y:-r/2},{x:a-i,y:-r},{x:i,y:-r},{x:0,y:-r/2}],s=Hr(t,a,r,o);return n.intersect=function(t){return Br.a.intersect.polygon(n,o,t)},s}function Fr(t,e,n){var r=e.width,i=e.height,a=[{x:-i/2,y:0},{x:r,y:0},{x:r,y:-i},{x:-i/2,y:-i},{x:0,y:-i/2}],o=Hr(t,r,i,a);return n.intersect=function(t){return Br.a.intersect.polygon(n,a,t)},o}function Pr(t,e,n){var r=e.width,i=e.height,a=[{x:-2*i/6,y:0},{x:r-i/6,y:0},{x:r+2*i/6,y:-i},{x:i/6,y:-i}],o=Hr(t,r,i,a);return n.intersect=function(t){return Br.a.intersect.polygon(n,a,t)},o}function jr(t,e,n){var r=e.width,i=e.height,a=[{x:2*i/6,y:0},{x:r+i/6,y:0},{x:r-2*i/6,y:-i},{x:-i/6,y:-i}],o=Hr(t,r,i,a);return n.intersect=function(t){return Br.a.intersect.polygon(n,a,t)},o}function Yr(t,e,n){var r=e.width,i=e.height,a=[{x:-2*i/6,y:0},{x:r+2*i/6,y:0},{x:r-i/6,y:-i},{x:i/6,y:-i}],o=Hr(t,r,i,a);return n.intersect=function(t){return Br.a.intersect.polygon(n,a,t)},o}function zr(t,e,n){var r=e.width,i=e.height,a=[{x:i/6,y:0},{x:r-i/6,y:0},{x:r+2*i/6,y:-i},{x:-2*i/6,y:-i}],o=Hr(t,r,i,a);return n.intersect=function(t){return Br.a.intersect.polygon(n,a,t)},o}function Ur(t,e,n){var r=e.width,i=e.height,a=[{x:0,y:0},{x:r+i/2,y:0},{x:r,y:-i/2},{x:r+i/2,y:-i},{x:0,y:-i}],o=Hr(t,r,i,a);return n.intersect=function(t){return Br.a.intersect.polygon(n,a,t)},o}function $r(t,e,n){var r=e.height,i=e.width+r/4,a=t.insert("rect",":first-child").attr("rx",r/2).attr("ry",r/2).attr("x",-i/2).attr("y",-r/2).attr("width",i).attr("height",r);return n.intersect=function(t){return Br.a.intersect.rect(n,t)},a}function qr(t,e,n){var r=e.width,i=e.height,a=[{x:0,y:0},{x:r,y:0},{x:r,y:-i},{x:0,y:-i},{x:0,y:0},{x:-8,y:0},{x:r+8,y:0},{x:r+8,y:-i},{x:-8,y:-i},{x:-8,y:0}],o=Hr(t,r,i,a);return n.intersect=function(t){return Br.a.intersect.polygon(n,a,t)},o}function Wr(t,e,n){var r=e.width,i=r/2,a=i/(2.5+r/50),o=e.height+a,s="M 0,"+a+" a "+i+","+a+" 0,0,0 "+r+" 0 a "+i+","+a+" 0,0,0 "+-r+" 0 l 0,"+o+" a "+i+","+a+" 0,0,0 "+r+" 0 l 0,"+-o,c=t.attr("label-offset-y",a).insert("path",":first-child").attr("d",s).attr("transform","translate("+-r/2+","+-(o/2+a)+")");return n.intersect=function(t){var e=Br.a.intersect.rect(n,t),r=e.x-n.x;if(0!=i&&(Math.abs(r)<n.width/2||Math.abs(r)==n.width/2&&Math.abs(e.y-n.y)>n.height/2-a)){var o=a*a*(1-r*r/(i*i));0!=o&&(o=Math.sqrt(o)),o=a-o,t.y-n.y>0&&(o=-o),e.y+=o}return e},c}function Hr(t,e,n,r){return t.insert("polygon",":first-child").attr("points",r.map((function(t){return t.x+","+t.y})).join(" ")).attr("transform","translate("+-e/2+","+n/2+")")}var Vr={addToRender:function(t){t.shapes().question=Ir,t.shapes().hexagon=Rr,t.shapes().stadium=$r,t.shapes().subroutine=qr,t.shapes().cylinder=Wr,t.shapes().rect_left_inv_arrow=Fr,t.shapes().lean_right=Pr,t.shapes().lean_left=jr,t.shapes().trapezoid=Yr,t.shapes().inv_trapezoid=zr,t.shapes().rect_right_inv_arrow=Ur},addToRenderV2:function(t){t({question:Ir}),t({hexagon:Rr}),t({stadium:$r}),t({subroutine:qr}),t({cylinder:Wr}),t({rect_left_inv_arrow:Fr}),t({lean_right:Pr}),t({lean_left:jr}),t({trapezoid:Yr}),t({inv_trapezoid:zr}),t({rect_right_inv_arrow:Ur})}},Gr={},Xr=function(t,e,n){var r=Object(u.select)('[id="'.concat(n,'"]'));Object.keys(t).forEach((function(n){var i=t[n],a="default";i.classes.length>0&&(a=i.classes.join(" "));var s,c=Ut(i.styles),u=void 0!==i.text?i.text:i.id;if(et(he().flowchart.htmlLabels)){var l={label:u.replace(/fa[lrsb]?:fa-[\w-]+/g,(function(t){return"<i class='".concat(t.replace(":"," "),"'></i>")}))};(s=Lr()(r,l).node()).parentNode.removeChild(s)}else{var h=document.createElementNS("http://www.w3.org/2000/svg","text");h.setAttribute("style",c.labelStyle.replace("color:","fill:"));for(var f=u.split(nt.lineBreakRegex),d=0;d<f.length;d++){var p=document.createElementNS("http://www.w3.org/2000/svg","tspan");p.setAttributeNS("http://www.w3.org/XML/1998/namespace","xml:space","preserve"),p.setAttribute("dy","1em"),p.setAttribute("x","1"),p.textContent=f[d],h.appendChild(p)}s=h}var y=0,g="";switch(i.type){case"round":y=5,g="rect";break;case"square":g="rect";break;case"diamond":g="question";break;case"hexagon":g="hexagon";break;case"odd":g="rect_left_inv_arrow";break;case"lean_right":g="lean_right";break;case"lean_left":g="lean_left";break;case"trapezoid":g="trapezoid";break;case"inv_trapezoid":g="inv_trapezoid";break;case"odd_right":g="rect_left_inv_arrow";break;case"circle":g="circle";break;case"ellipse":g="ellipse";break;case"stadium":g="stadium";break;case"subroutine":g="subroutine";break;case"cylinder":g="cylinder";break;case"group":g="rect";break;default:g="rect"}o.warn("Adding node",i.id,i.domId),e.setNode(Ar.lookUpDomId(i.id),{labelType:"svg",labelStyle:c.labelStyle,shape:g,label:s,rx:y,ry:y,class:a,style:c.style,id:Ar.lookUpDomId(i.id)})}))},Zr=function(t,e){var n,r,i=0;if(void 0!==t.defaultStyle){var a=Ut(t.defaultStyle);n=a.style,r=a.labelStyle}t.forEach((function(a){i++;var o="L-"+a.start+"-"+a.end,s="LS-"+a.start,c="LE-"+a.end,l={};"arrow_open"===a.type?l.arrowhead="none":l.arrowhead="normal";var h="",f="";if(void 0!==a.style){var d=Ut(a.style);h=d.style,f=d.labelStyle}else switch(a.stroke){case"normal":h="fill:none",void 0!==n&&(h=n),void 0!==r&&(f=r);break;case"dotted":h="fill:none;stroke-width:2px;stroke-dasharray:3;";break;case"thick":h=" stroke-width: 3.5px;fill:none"}l.style=h,l.labelStyle=f,void 0!==a.interpolate?l.curve=Yt(a.interpolate,u.curveLinear):void 0!==t.defaultInterpolate?l.curve=Yt(t.defaultInterpolate,u.curveLinear):l.curve=Yt(Gr.curve,u.curveLinear),void 0===a.text?void 0!==a.style&&(l.arrowheadStyle="fill: #333"):(l.arrowheadStyle="fill: #333",l.labelpos="c",et(he().flowchart.htmlLabels)?(l.labelType="html",l.label='<span id="L-'.concat(o,'" class="edgeLabel L-').concat(s,"' L-").concat(c,'">').concat(a.text.replace(/fa[lrsb]?:fa-[\w-]+/g,(function(t){return"<i class='".concat(t.replace(":"," "),"'></i>")})),"</span>")):(l.labelType="text",l.label=a.text.replace(nt.lineBreakRegex,"\n"),void 0===a.style&&(l.style=l.style||"stroke: #333; stroke-width: 1.5px;fill:none"),l.labelStyle=l.labelStyle.replace("color:","fill:"))),l.id=o,l.class=s+" "+c,l.minlen=a.length||1,e.setEdge(Ar.lookUpDomId(a.start),Ar.lookUpDomId(a.end),l,i)}))},Kr=function(t){for(var e=Object.keys(t),n=0;n<e.length;n++)Gr[e[n]]=t[e[n]]},Qr=function(t){o.info("Extracting classes"),Ar.clear();try{var e=Or.a.parser;return e.yy=Ar,e.parse(t),Ar.getClasses()}catch(t){return}},Jr=function(t,e){o.info("Drawing flowchart"),Ar.clear(),Ar.setGen("gen-1");var n=Or.a.parser;n.yy=Ar,n.parse(t);var r=Ar.getDirection();void 0===r&&(r="TD");for(var i,a=he().flowchart,s=a.nodeSpacing||50,c=a.rankSpacing||50,l=new Le.a.Graph({multigraph:!0,compound:!0}).setGraph({rankdir:r,nodesep:s,ranksep:c,marginx:8,marginy:8}).setDefaultEdgeLabel((function(){return{}})),h=Ar.getSubGraphs(),f=h.length-1;f>=0;f--)i=h[f],Ar.addVertex(i.id,i.title,"group",void 0,i.classes);var d=Ar.getVertices();o.warn("Get vertices",d);var p=Ar.getEdges(),y=0;for(y=h.length-1;y>=0;y--){i=h[y],Object(u.selectAll)("cluster").append("text");for(var g=0;g<i.nodes.length;g++)o.warn("Setting subgraph",i.nodes[g],Ar.lookUpDomId(i.nodes[g]),Ar.lookUpDomId(i.id)),l.setParent(Ar.lookUpDomId(i.nodes[g]),Ar.lookUpDomId(i.id))}Xr(d,l,e),Zr(p,l);var m=new(0,Br.a.render);Vr.addToRender(m),m.arrows().none=function(t,e,n,r){var i=t.append("marker").attr("id",e).attr("viewBox","0 0 10 10").attr("refX",9).attr("refY",5).attr("markerUnits","strokeWidth").attr("markerWidth",8).attr("markerHeight",6).attr("orient","auto").append("path").attr("d","M 0 0 L 0 0 L 0 0 z");Br.a.util.applyStyle(i,n[r+"Style"])},m.arrows().normal=function(t,e){t.append("marker").attr("id",e).attr("viewBox","0 0 10 10").attr("refX",9).attr("refY",5).attr("markerUnits","strokeWidth").attr("markerWidth",8).attr("markerHeight",6).attr("orient","auto").append("path").attr("d","M 0 0 L 10 5 L 0 10 z").attr("class","arrowheadPath").style("stroke-width",1).style("stroke-dasharray","1,0")};var v=Object(u.select)('[id="'.concat(e,'"]'));v.attr("xmlns:xlink","http://www.w3.org/1999/xlink"),o.warn(l);var b=Object(u.select)("#"+e+" g");m(b,l),b.selectAll("g.node").attr("title",(function(){return Ar.getTooltip(this.id)}));var x=a.diagramPadding,_=v.node().getBBox(),k=_.width+2*x,w=_.height+2*x;te(v,w,k,a.useMaxWidth);var T="".concat(_.x-x," ").concat(_.y-x," ").concat(k," ").concat(w);for(o.debug("viewBox ".concat(T)),v.attr("viewBox",T),Ar.indexNodes("subGraph"+y),y=0;y<h.length;y++)if("undefined"!==(i=h[y]).title){var E=document.querySelectorAll("#"+e+' [id="'+Ar.lookUpDomId(i.id)+'"] rect'),C=document.querySelectorAll("#"+e+' [id="'+Ar.lookUpDomId(i.id)+'"]'),S=E[0].x.baseVal.value,A=E[0].y.baseVal.value,M=E[0].width.baseVal.value,O=Object(u.select)(C[0]).select(".label");O.attr("transform","translate(".concat(S+M/2,", ").concat(A+14,")")),O.attr("id",e+"Text");for(var N=0;N<i.classes.length;N++)C[0].classList.add(i.classes[N])}et(a.htmlLabels);for(var B=document.querySelectorAll('[id="'+e+'"] .edgeLabel .label'),D=0;D<B.length;D++){var L=B[D],I=L.getBBox(),R=document.createElementNS("http://www.w3.org/2000/svg","rect");R.setAttribute("rx",0),R.setAttribute("ry",0),R.setAttribute("width",I.width),R.setAttribute("height",I.height),L.insertBefore(R,L.firstChild)}Object.keys(d).forEach((function(t){var n=d[t];if(n.link){var r=Object(u.select)("#"+e+' [id="'+Ar.lookUpDomId(t)+'"]');if(r){var i=document.createElementNS("http://www.w3.org/2000/svg","a");i.setAttributeNS("http://www.w3.org/2000/svg","class",n.classes.join(" ")),i.setAttributeNS("http://www.w3.org/2000/svg","href",n.link),i.setAttributeNS("http://www.w3.org/2000/svg","rel","noopener"),n.linkTarget&&i.setAttributeNS("http://www.w3.org/2000/svg","target",n.linkTarget);var a=r.insert((function(){return i}),":first-child"),o=r.select(".label-container");o&&a.append((function(){return o.node()}));var s=r.select(".label");s&&a.append((function(){return s.node()}))}}}))},ti={},ei=function(t,e,n){var r=Object(u.select)('[id="'.concat(n,'"]'));Object.keys(t).forEach((function(n){var i=t[n],a="default";i.classes.length>0&&(a=i.classes.join(" "));var s,c=Ut(i.styles),u=void 0!==i.text?i.text:i.id;if(et(he().flowchart.htmlLabels)){var l={label:u.replace(/fa[lrsb]?:fa-[\w-]+/g,(function(t){return"<i class='".concat(t.replace(":"," "),"'></i>")}))};(s=Lr()(r,l).node()).parentNode.removeChild(s)}else{var h=document.createElementNS("http://www.w3.org/2000/svg","text");h.setAttribute("style",c.labelStyle.replace("color:","fill:"));for(var f=u.split(nt.lineBreakRegex),d=0;d<f.length;d++){var p=document.createElementNS("http://www.w3.org/2000/svg","tspan");p.setAttributeNS("http://www.w3.org/XML/1998/namespace","xml:space","preserve"),p.setAttribute("dy","1em"),p.setAttribute("x","1"),p.textContent=f[d],h.appendChild(p)}s=h}var y=0,g="";switch(i.type){case"round":y=5,g="rect";break;case"square":g="rect";break;case"diamond":g="question";break;case"hexagon":g="hexagon";break;case"odd":g="rect_left_inv_arrow";break;case"lean_right":g="lean_right";break;case"lean_left":g="lean_left";break;case"trapezoid":g="trapezoid";break;case"inv_trapezoid":g="inv_trapezoid";break;case"odd_right":g="rect_left_inv_arrow";break;case"circle":g="circle";break;case"ellipse":g="ellipse";break;case"stadium":g="stadium";break;case"subroutine":g="subroutine";break;case"cylinder":g="cylinder";break;case"group":g="rect";break;default:g="rect"}e.setNode(i.id,{labelStyle:c.labelStyle,shape:g,labelText:u,rx:y,ry:y,class:a,style:c.style,id:i.id,link:i.link,linkTarget:i.linkTarget,tooltip:Ar.getTooltip(i.id)||"",domId:Ar.lookUpDomId(i.id),haveCallback:i.haveCallback,width:"group"===i.type?500:void 0,dir:i.dir,type:i.type,padding:he().flowchart.padding}),o.info("setNode",{labelStyle:c.labelStyle,shape:g,labelText:u,rx:y,ry:y,class:a,style:c.style,id:i.id,domId:Ar.lookUpDomId(i.id),width:"group"===i.type?500:void 0,type:i.type,dir:i.dir,padding:he().flowchart.padding})}))},ni=function(t,e){o.info("abc78 edges = ",t);var n,r,i=0,a={};if(void 0!==t.defaultStyle){var s=Ut(t.defaultStyle);n=s.style,r=s.labelStyle}t.forEach((function(s){i++;var c="L-"+s.start+"-"+s.end;void 0===a[c]?(a[c]=0,o.info("abc78 new entry",c,a[c])):(a[c]++,o.info("abc78 new entry",c,a[c]));var l=c+"-"+a[c];o.info("abc78 new link id to be used is",c,l,a[c]);var h="LS-"+s.start,f="LE-"+s.end,d={style:"",labelStyle:""};switch(d.minlen=s.length||1,"arrow_open"===s.type?d.arrowhead="none":d.arrowhead="normal",d.arrowTypeStart="arrow_open",d.arrowTypeEnd="arrow_open",s.type){case"double_arrow_cross":d.arrowTypeStart="arrow_cross";case"arrow_cross":d.arrowTypeEnd="arrow_cross";break;case"double_arrow_point":d.arrowTypeStart="arrow_point";case"arrow_point":d.arrowTypeEnd="arrow_point";break;case"double_arrow_circle":d.arrowTypeStart="arrow_circle";case"arrow_circle":d.arrowTypeEnd="arrow_circle"}var p="",y="";switch(s.stroke){case"normal":p="fill:none;",void 0!==n&&(p=n),void 0!==r&&(y=r),d.thickness="normal",d.pattern="solid";break;case"dotted":d.thickness="normal",d.pattern="dotted",d.style="fill:none;stroke-width:2px;stroke-dasharray:3;";break;case"thick":d.thickness="thick",d.pattern="solid",d.style="stroke-width: 3.5px;fill:none;"}if(void 0!==s.style){var g=Ut(s.style);p=g.style,y=g.labelStyle}d.style=d.style+=p,d.labelStyle=d.labelStyle+=y,void 0!==s.interpolate?d.curve=Yt(s.interpolate,u.curveLinear):void 0!==t.defaultInterpolate?d.curve=Yt(t.defaultInterpolate,u.curveLinear):d.curve=Yt(ti.curve,u.curveLinear),void 0===s.text?void 0!==s.style&&(d.arrowheadStyle="fill: #333"):(d.arrowheadStyle="fill: #333",d.labelpos="c"),d.labelType="text",d.label=s.text.replace(nt.lineBreakRegex,"\n"),void 0===s.style&&(d.style=d.style||"stroke: #333; stroke-width: 1.5px;fill:none;"),d.labelStyle=d.labelStyle.replace("color:","fill:"),d.id=l,d.classes="flowchart-link "+h+" "+f,e.setEdge(s.start,s.end,d,i)}))},ri=function(t){for(var e=Object.keys(t),n=0;n<e.length;n++)ti[e[n]]=t[e[n]]},ii=function(t,e){o.info("Drawing flowchart"),Ar.clear(),Ar.setGen("gen-2");var n=Or.a.parser;n.yy=Ar,n.parse(t);var r=Ar.getDirection();void 0===r&&(r="TD");var i,a=he().flowchart,s=a.nodeSpacing||50,c=a.rankSpacing||50,l=new Le.a.Graph({multigraph:!0,compound:!0}).setGraph({rankdir:r,nodesep:s,ranksep:c,marginx:8,marginy:8}).setDefaultEdgeLabel((function(){return{}})),h=Ar.getSubGraphs();o.info("Subgraphs - ",h);for(var f=h.length-1;f>=0;f--)i=h[f],o.info("Subgraph - ",i),Ar.addVertex(i.id,i.title,"group",void 0,i.classes,i.dir);var d=Ar.getVertices(),p=Ar.getEdges();o.info(p);var y=0;for(y=h.length-1;y>=0;y--){i=h[y],Object(u.selectAll)("cluster").append("text");for(var g=0;g<i.nodes.length;g++)o.info("Setting up subgraphs",i.nodes[g],i.id),l.setParent(i.nodes[g],i.id)}ei(d,l,e),ni(p,l);var m=Object(u.select)('[id="'.concat(e,'"]'));m.attr("xmlns:xlink","http://www.w3.org/1999/xlink");var v=Object(u.select)("#"+e+" g");Rn(v,l,["point","circle","cross"],"flowchart",e);var b=a.diagramPadding,x=m.node().getBBox(),_=x.width+2*b,k=x.height+2*b;if(o.debug("new ViewBox 0 0 ".concat(_," ").concat(k),"translate(".concat(b-l._label.marginx,", ").concat(b-l._label.marginy,")")),te(m,k,_,a.useMaxWidth),m.attr("viewBox","0 0 ".concat(_," ").concat(k)),m.select("g").attr("transform","translate(".concat(b-l._label.marginx,", ").concat(b-x.y,")")),Ar.indexNodes("subGraph"+y),!a.htmlLabels)for(var w=document.querySelectorAll('[id="'+e+'"] .edgeLabel .label'),T=0;T<w.length;T++){var E=w[T],C=E.getBBox(),S=document.createElementNS("http://www.w3.org/2000/svg","rect");S.setAttribute("rx",0),S.setAttribute("ry",0),S.setAttribute("width",C.width),S.setAttribute("height",C.height),E.insertBefore(S,E.firstChild)}Object.keys(d).forEach((function(t){var n=d[t];if(n.link){var r=Object(u.select)("#"+e+' [id="'+t+'"]');if(r){var i=document.createElementNS("http://www.w3.org/2000/svg","a");i.setAttributeNS("http://www.w3.org/2000/svg","class",n.classes.join(" ")),i.setAttributeNS("http://www.w3.org/2000/svg","href",n.link),i.setAttributeNS("http://www.w3.org/2000/svg","rel","noopener"),n.linkTarget&&i.setAttributeNS("http://www.w3.org/2000/svg","target",n.linkTarget);var a=r.insert((function(){return i}),":first-child"),o=r.select(".label-container");o&&a.append((function(){return o.node()}));var s=r.select(".label");s&&a.append((function(){return s.node()}))}}}))};function ai(t){return function(t){if(Array.isArray(t))return oi(t)}(t)||function(t){if("undefined"!=typeof Symbol&&null!=t[Symbol.iterator]||null!=t["@@iterator"])return Array.from(t)}(t)||function(t,e){if(!t)return;if("string"==typeof t)return oi(t,e);var n=Object.prototype.toString.call(t).slice(8,-1);"Object"===n&&t.constructor&&(n=t.constructor.name);if("Map"===n||"Set"===n)return Array.from(t);if("Arguments"===n||/^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(n))return oi(t,e)}(t)||function(){throw new TypeError("Invalid attempt to spread non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}()}function oi(t,e){(null==e||e>t.length)&&(e=t.length);for(var n=0,r=new Array(e);n<e;n++)r[n]=t[n];return r}var si,ci,ui="",li="",hi="",fi=[],di="",pi=[],yi=[],gi="",mi=["active","done","crit","milestone"],vi=[],bi=!1,xi=!1,_i=0,ki=function(t,e,n){return t.isoWeekday()>=6&&n.indexOf("weekends")>=0||(n.indexOf(t.format("dddd").toLowerCase())>=0||n.indexOf(t.format(e.trim()))>=0)},wi=function(t,e,n){if(n.length&&!t.manualEndTime){var r=i()(t.startTime,e,!0);r.add(1,"d");var a=i()(t.endTime,e,!0),o=Ti(r,a,e,n);t.endTime=a.toDate(),t.renderEndTime=o}},Ti=function(t,e,n,r){for(var i=!1,a=null;t<=e;)i||(a=e.toDate()),(i=ki(t,n,r))&&e.add(1,"d"),t.add(1,"d");return a},Ei=function(t,e,n){n=n.trim();var r=/^after\s+([\d\w- ]+)/.exec(n.trim());if(null!==r){var a=null;if(r[1].split(" ").forEach((function(t){var e=Bi(t);void 0!==e&&(a?e.endTime>a.endTime&&(a=e):a=e)})),a)return a.endTime;var s=new Date;return s.setHours(0,0,0,0),s}var c=i()(n,e.trim(),!0);return c.isValid()?c.toDate():(o.debug("Invalid date:"+n),o.debug("With date format:"+e.trim()),new Date)},Ci=function(t,e){if(null!==t)switch(t[2]){case"s":e.add(t[1],"seconds");break;case"m":e.add(t[1],"minutes");break;case"h":e.add(t[1],"hours");break;case"d":e.add(t[1],"days");break;case"w":e.add(t[1],"weeks")}return e.toDate()},Si=function(t,e,n,r){r=r||!1,n=n.trim();var a=i()(n,e.trim(),!0);return a.isValid()?(r&&a.add(1,"d"),a.toDate()):Ci(/^([\d]+)([wdhms])/.exec(n.trim()),i()(t))},Ai=0,Mi=function(t){return void 0===t?"task"+(Ai+=1):t},Oi=[],Ni={},Bi=function(t){var e=Ni[t];return Oi[e]},Di=function(){for(var t=function(t){var e=Oi[t],n="";switch(Oi[t].raw.startTime.type){case"prevTaskEnd":var r=Bi(e.prevTaskId);e.startTime=r.endTime;break;case"getStartDate":(n=Ei(0,ui,Oi[t].raw.startTime.startData))&&(Oi[t].startTime=n)}return Oi[t].startTime&&(Oi[t].endTime=Si(Oi[t].startTime,ui,Oi[t].raw.endTime.data,bi),Oi[t].endTime&&(Oi[t].processed=!0,Oi[t].manualEndTime=i()(Oi[t].raw.endTime.data,"YYYY-MM-DD",!0).isValid(),wi(Oi[t],ui,fi))),Oi[t].processed},e=!0,n=0;n<Oi.length;n++)t(n),e=e&&Oi[n].processed;return e},Li=function(t,e){t.split(",").forEach((function(t){var n=Bi(t);void 0!==n&&n.classes.push(e)}))},Ii=function(t,e){vi.push((function(){var n=document.querySelector('[id="'.concat(t,'"]'));null!==n&&n.addEventListener("click",(function(){e()}))})),vi.push((function(){var n=document.querySelector('[id="'.concat(t,'-text"]'));null!==n&&n.addEventListener("click",(function(){e()}))}))},Ri={parseDirective:function(t,e,n){gc.parseDirective(this,t,e,n)},getConfig:function(){return he().gantt},clear:function(){pi=[],yi=[],gi="",vi=[],di="",Ai=0,si=void 0,ci=void 0,Oi=[],ui="",li="",hi="",fi=[],bi=!1,xi=!1,_i=0},setDateFormat:function(t){ui=t},getDateFormat:function(){return ui},enableInclusiveEndDates:function(){bi=!0},endDatesAreInclusive:function(){return bi},enableTopAxis:function(){xi=!0},topAxisEnabled:function(){return xi},setAxisFormat:function(t){li=t},getAxisFormat:function(){return li},setTodayMarker:function(t){hi=t},getTodayMarker:function(){return hi},setTitle:function(t){di=t},getTitle:function(){return di},addSection:function(t){gi=t,pi.push(t)},getSections:function(){return pi},getTasks:function(){for(var t=Di(),e=0;!t&&e<10;)t=Di(),e++;return yi=Oi},addTask:function(t,e){var n={section:gi,type:gi,processed:!1,manualEndTime:!1,renderEndTime:null,raw:{data:e},task:t,classes:[]},r=function(t,e){var n=(":"===e.substr(0,1)?e.substr(1,e.length):e).split(","),r={};Fi(n,r,mi);for(var i=0;i<n.length;i++)n[i]=n[i].trim();switch(n.length){case 1:r.id=Mi(),r.startTime={type:"prevTaskEnd",id:t},r.endTime={data:n[0]};break;case 2:r.id=Mi(),r.startTime={type:"getStartDate",startData:n[0]},r.endTime={data:n[1]};break;case 3:r.id=Mi(n[0]),r.startTime={type:"getStartDate",startData:n[1]},r.endTime={data:n[2]}}return r}(ci,e);n.raw.startTime=r.startTime,n.raw.endTime=r.endTime,n.id=r.id,n.prevTaskId=ci,n.active=r.active,n.done=r.done,n.crit=r.crit,n.milestone=r.milestone,n.order=_i,_i++;var i=Oi.push(n);ci=n.id,Ni[n.id]=i-1},findTaskById:Bi,addTaskOrg:function(t,e){var n={section:gi,type:gi,description:t,task:t,classes:[]},r=function(t,e){var n=(":"===e.substr(0,1)?e.substr(1,e.length):e).split(","),r={};Fi(n,r,mi);for(var a=0;a<n.length;a++)n[a]=n[a].trim();var o="";switch(n.length){case 1:r.id=Mi(),r.startTime=t.endTime,o=n[0];break;case 2:r.id=Mi(),r.startTime=Ei(0,ui,n[0]),o=n[1];break;case 3:r.id=Mi(n[0]),r.startTime=Ei(0,ui,n[1]),o=n[2]}return o&&(r.endTime=Si(r.startTime,ui,o,bi),r.manualEndTime=i()(o,"YYYY-MM-DD",!0).isValid(),wi(r,ui,fi)),r}(si,e);n.startTime=r.startTime,n.endTime=r.endTime,n.id=r.id,n.active=r.active,n.done=r.done,n.crit=r.crit,n.milestone=r.milestone,si=n,yi.push(n)},setExcludes:function(t){fi=t.toLowerCase().split(/[\s,]+/)},getExcludes:function(){return fi},setClickEvent:function(t,e,n){t.split(",").forEach((function(t){!function(t,e,n){if("loose"===he().securityLevel&&void 0!==e){var r=[];if("string"==typeof n){r=n.split(/,(?=(?:(?:[^"]*"){2})*[^"]*$)/);for(var i=0;i<r.length;i++){var a=r[i].trim();'"'===a.charAt(0)&&'"'===a.charAt(a.length-1)&&(a=a.substr(1,a.length-2)),r[i]=a}}0===r.length&&r.push(t),void 0!==Bi(t)&&Ii(t,(function(){ne.runFunc.apply(ne,[e].concat(ai(r)))}))}}(t,e,n)})),Li(t,"clickable")},setLink:function(t,e){var n=e;"loose"!==he().securityLevel&&(n=Object(G.sanitizeUrl)(e)),t.split(",").forEach((function(t){void 0!==Bi(t)&&Ii(t,(function(){window.open(n,"_self")}))})),Li(t,"clickable")},bindFunctions:function(t){vi.forEach((function(e){e(t)}))},durationToDate:Ci};function Fi(t,e,n){for(var r=!0;r;)r=!1,n.forEach((function(n){var i=new RegExp("^\\s*"+n+"\\s*$");t[0].match(i)&&(e[n]=!0,t.shift(1),r=!0)}))}var Pi=n(24),ji=n.n(Pi);Pi.parser.yy=Ri;var Yi,zi=function(){},Ui=function(t,e){var n=he().gantt;Pi.parser.yy.clear(),Pi.parser.parse(t);var r=document.getElementById(e);void 0===(Yi=r.parentElement.offsetWidth)&&(Yi=1200),void 0!==n.useWidth&&(Yi=n.useWidth);var i=Pi.parser.yy.getTasks(),a=i.length*(n.barHeight+n.barGap)+2*n.topPadding;r.setAttribute("viewBox","0 0 "+Yi+" "+a);for(var o=Object(u.select)('[id="'.concat(e,'"]')),s=Object(u.scaleTime)().domain([Object(u.min)(i,(function(t){return t.startTime})),Object(u.max)(i,(function(t){return t.endTime}))]).rangeRound([0,Yi-n.leftPadding-n.rightPadding]),c=[],l=0;l<i.length;l++)c.push(i[l].type);var h=c;function f(t){for(var e=t.length,n={};e;)n[t[--e]]=(n[t[e]]||0)+1;return n}c=function(t){for(var e={},n=[],r=0,i=t.length;r<i;++r)e.hasOwnProperty(t[r])||(e[t[r]]=!0,n.push(t[r]));return n}(c),i.sort((function(t,e){var n=t.startTime,r=e.startTime,i=0;return n>r?i=1:n<r&&(i=-1),i})),function(t,e,r){var i=n.barHeight,a=i+n.barGap,l=n.topPadding,d=n.leftPadding;Object(u.scaleLinear)().domain([0,c.length]).range(["#00B9FA","#F95002"]).interpolate(u.interpolateHcl);(function(t,e,r,i){var a=Object(u.axisBottom)(s).tickSize(-i+e+n.gridLineStartPadding).tickFormat(Object(u.timeFormat)(Pi.parser.yy.getAxisFormat()||n.axisFormat||"%Y-%m-%d"));if(o.append("g").attr("class","grid").attr("transform","translate("+t+", "+(i-50)+")").call(a).selectAll("text").style("text-anchor","middle").attr("fill","#000").attr("stroke","none").attr("font-size",10).attr("dy","1em"),Ri.topAxisEnabled()||n.topAxis){var c=Object(u.axisTop)(s).tickSize(-i+e+n.gridLineStartPadding).tickFormat(Object(u.timeFormat)(Pi.parser.yy.getAxisFormat()||n.axisFormat||"%Y-%m-%d"));o.append("g").attr("class","grid").attr("transform","translate("+t+", "+e+")").call(c).selectAll("text").style("text-anchor","middle").attr("fill","#000").attr("stroke","none").attr("font-size",10)}})(d,l,0,r),function(t,e,r,i,a,u,l){o.append("g").selectAll("rect").data(t).enter().append("rect").attr("x",0).attr("y",(function(t,n){return t.order*e+r-2})).attr("width",(function(){return l-n.rightPadding/2})).attr("height",e).attr("class",(function(t){for(var e=0;e<c.length;e++)if(t.type===c[e])return"section section"+e%n.numberSectionStyles;return"section section0"}));var h=o.append("g").selectAll("rect").data(t).enter();h.append("rect").attr("id",(function(t){return t.id})).attr("rx",3).attr("ry",3).attr("x",(function(t){return t.milestone?s(t.startTime)+i+.5*(s(t.endTime)-s(t.startTime))-.5*a:s(t.startTime)+i})).attr("y",(function(t,n){return t.order*e+r})).attr("width",(function(t){return t.milestone?a:s(t.renderEndTime||t.endTime)-s(t.startTime)})).attr("height",a).attr("transform-origin",(function(t,n){return n=t.order,(s(t.startTime)+i+.5*(s(t.endTime)-s(t.startTime))).toString()+"px "+(n*e+r+.5*a).toString()+"px"})).attr("class",(function(t){var e="";t.classes.length>0&&(e=t.classes.join(" "));for(var r=0,i=0;i<c.length;i++)t.type===c[i]&&(r=i%n.numberSectionStyles);var a="";return t.active?t.crit?a+=" activeCrit":a=" active":t.done?a=t.crit?" doneCrit":" done":t.crit&&(a+=" crit"),0===a.length&&(a=" task"),t.milestone&&(a=" milestone "+a),a+=r,"task"+(a+=" "+e)})),h.append("text").attr("id",(function(t){return t.id+"-text"})).text((function(t){return t.task})).attr("font-size",n.fontSize).attr("x",(function(t){var e=s(t.startTime),r=s(t.renderEndTime||t.endTime);t.milestone&&(e+=.5*(s(t.endTime)-s(t.startTime))-.5*a),t.milestone&&(r=e+a);var o=this.getBBox().width;return o>r-e?r+o+1.5*n.leftPadding>l?e+i-5:r+i+5:(r-e)/2+e+i})).attr("y",(function(t,i){return t.order*e+n.barHeight/2+(n.fontSize/2-2)+r})).attr("text-height",a).attr("class",(function(t){var e=s(t.startTime),r=s(t.endTime);t.milestone&&(r=e+a);var i=this.getBBox().width,o="";t.classes.length>0&&(o=t.classes.join(" "));for(var u=0,h=0;h<c.length;h++)t.type===c[h]&&(u=h%n.numberSectionStyles);var f="";return t.active&&(f=t.crit?"activeCritText"+u:"activeText"+u),t.done?f=t.crit?f+" doneCritText"+u:f+" doneText"+u:t.crit&&(f=f+" critText"+u),t.milestone&&(f+=" milestoneText"),i>r-e?r+i+1.5*n.leftPadding>l?o+" taskTextOutsideLeft taskTextOutside"+u+" "+f:o+" taskTextOutsideRight taskTextOutside"+u+" "+f+" width-"+i:o+" taskText taskText"+u+" "+f+" width-"+i}))}(t,a,l,d,i,0,e),function(t,e){for(var r=[],i=0,a=0;a<c.length;a++)r[a]=[c[a],(s=c[a],u=h,f(u)[s]||0)];var s,u;o.append("g").selectAll("text").data(r).enter().append((function(t){var e=t[0].split(nt.lineBreakRegex),n=-(e.length-1)/2,r=document.createElementNS("http://www.w3.org/2000/svg","text");r.setAttribute("dy",n+"em");for(var i=0;i<e.length;i++){var a=document.createElementNS("http://www.w3.org/2000/svg","tspan");a.setAttribute("alignment-baseline","central"),a.setAttribute("x","10"),i>0&&a.setAttribute("dy","1em"),a.textContent=e[i],r.appendChild(a)}return r})).attr("x",10).attr("y",(function(n,a){if(!(a>0))return n[1]*t/2+e;for(var o=0;o<a;o++)return i+=r[a-1][1],n[1]*t/2+i*t+e})).attr("font-size",n.sectionFontSize).attr("font-size",n.sectionFontSize).attr("class",(function(t){for(var e=0;e<c.length;e++)if(t[0]===c[e])return"sectionTitle sectionTitle"+e%n.numberSectionStyles;return"sectionTitle"}))}(a,l),function(t,e,r,i){var a=Ri.getTodayMarker();if("off"===a)return;var c=o.append("g").attr("class","today"),u=new Date,l=c.append("line");l.attr("x1",s(u)+t).attr("x2",s(u)+t).attr("y1",n.titleTopMargin).attr("y2",i-n.titleTopMargin).attr("class","today"),""!==a&&l.attr("style",a.replace(/,/g,";"))}(d,0,0,r)}(i,Yi,a),te(o,a,Yi,n.useMaxWidth),o.append("text").text(Pi.parser.yy.getTitle()).attr("x",Yi/2).attr("y",n.titleTopMargin).attr("class","titleText")},$i={},qi=null,Wi={master:qi},Hi="master",Vi="LR",Gi=0;function Xi(){return Ht({length:7})}function Zi(t,e){for(o.debug("Entering isfastforwardable:",t.id,e.id);t.seq<=e.seq&&t!==e&&null!=e.parent;){if(Array.isArray(e.parent))return o.debug("In merge commit:",e.parent),Zi(t,$i[e.parent[0]])||Zi(t,$i[e.parent[1]]);e=$i[e.parent]}return o.debug(t.id,e.id),t.id===e.id}var Ki={};function Qi(t,e,n){var r=t.indexOf(e);-1===r?t.push(n):t.splice(r,1,n)}function Ji(t){var e=t.reduce((function(t,e){return t.seq>e.seq?t:e}),t[0]),n="";t.forEach((function(t){n+=t===e?"\t*":"\t|"}));var r,i,a,s=[n,e.id,e.seq];for(var c in Wi)Wi[c]===e.id&&s.push(c);if(o.debug(s.join(" ")),Array.isArray(e.parent)){var u=$i[e.parent[0]];Qi(t,e,u),t.push($i[e.parent[1]])}else{if(null==e.parent)return;var l=$i[e.parent];Qi(t,e,l)}r=t,i=function(t){return t.id},a=Object.create(null),Ji(t=r.reduce((function(t,e){var n=i(e);return a[n]||(a[n]=!0,t.push(e)),t}),[]))}var ta,ea=function(){var t=Object.keys($i).map((function(t){return $i[t]}));return t.forEach((function(t){o.debug(t.id)})),t.sort((function(t,e){return e.seq-t.seq})),t},na={setDirection:function(t){Vi=t},setOptions:function(t){o.debug("options str",t),t=(t=t&&t.trim())||"{}";try{Ki=JSON.parse(t)}catch(t){o.error("error while parsing gitGraph options",t.message)}},getOptions:function(){return Ki},commit:function(t){var e={id:Xi(),message:t,seq:Gi++,parent:null==qi?null:qi.id};qi=e,$i[e.id]=e,Wi[Hi]=e.id,o.debug("in pushCommit "+e.id)},branch:function(t){Wi[t]=null!=qi?qi.id:null,o.debug("in createBranch")},merge:function(t){var e=$i[Wi[Hi]],n=$i[Wi[t]];if(function(t,e){return t.seq>e.seq&&Zi(e,t)}(e,n))o.debug("Already merged");else{if(Zi(e,n))Wi[Hi]=Wi[t],qi=$i[Wi[Hi]];else{var r={id:Xi(),message:"merged branch "+t+" into "+Hi,seq:Gi++,parent:[null==qi?null:qi.id,Wi[t]]};qi=r,$i[r.id]=r,Wi[Hi]=r.id}o.debug(Wi),o.debug("in mergeBranch")}},checkout:function(t){o.debug("in checkout");var e=Wi[Hi=t];qi=$i[e]},reset:function(t){o.debug("in reset",t);var e=t.split(":")[0],n=parseInt(t.split(":")[1]),r="HEAD"===e?qi:$i[Wi[e]];for(o.debug(r,n);n>0;)if(n--,!(r=$i[r.parent])){var i="Critical error - unique parent commit not found during reset";throw o.error(i),i}qi=r,Wi[Hi]=r.id},prettyPrint:function(){o.debug($i),Ji([ea()[0]])},clear:function(){$i={},Wi={master:qi=null},Hi="master",Gi=0},getBranchesAsObjArray:function(){var t=[];for(var e in Wi)t.push({name:e,commit:$i[Wi[e]]});return t},getBranches:function(){return Wi},getCommits:function(){return $i},getCommitsArray:ea,getCurrentBranch:function(){return Hi},getDirection:function(){return Vi},getHead:function(){return qi}},ra=n(73),ia=n.n(ra),aa={},oa={nodeSpacing:150,nodeFillColor:"yellow",nodeStrokeWidth:2,nodeStrokeColor:"grey",lineStrokeWidth:4,branchOffset:50,lineColor:"grey",leftMargin:50,branchColors:["#442f74","#983351","#609732","#AA9A39"],nodeRadius:10,nodeLabel:{width:75,height:100,x:-25,y:0}},sa={};function ca(t,e,n,r){var i=Yt(r,u.curveBasis),a=oa.branchColors[n%oa.branchColors.length],o=Object(u.line)().x((function(t){return Math.round(t.x)})).y((function(t){return Math.round(t.y)})).curve(i);t.append("svg:path").attr("d",o(e)).style("stroke",a).style("stroke-width",oa.lineStrokeWidth).style("fill","none")}function ua(t,e){e=e||t.node().getBBox();var n=t.node().getCTM();return{left:n.e+e.x*n.a,top:n.f+e.y*n.d,width:e.width,height:e.height}}function la(t,e,n,r,i){o.debug("svgDrawLineForCommits: ",e,n);var a=ua(t.select("#node-"+e+" circle")),s=ua(t.select("#node-"+n+" circle"));switch(r){case"LR":if(a.left-s.left>oa.nodeSpacing){var c={x:a.left-oa.nodeSpacing,y:s.top+s.height/2};ca(t,[c,{x:s.left+s.width,y:s.top+s.height/2}],i,"linear"),ca(t,[{x:a.left,y:a.top+a.height/2},{x:a.left-oa.nodeSpacing/2,y:a.top+a.height/2},{x:a.left-oa.nodeSpacing/2,y:c.y},c],i)}else ca(t,[{x:a.left,y:a.top+a.height/2},{x:a.left-oa.nodeSpacing/2,y:a.top+a.height/2},{x:a.left-oa.nodeSpacing/2,y:s.top+s.height/2},{x:s.left+s.width,y:s.top+s.height/2}],i);break;case"BT":if(s.top-a.top>oa.nodeSpacing){var u={x:s.left+s.width/2,y:a.top+a.height+oa.nodeSpacing};ca(t,[u,{x:s.left+s.width/2,y:s.top}],i,"linear"),ca(t,[{x:a.left+a.width/2,y:a.top+a.height},{x:a.left+a.width/2,y:a.top+a.height+oa.nodeSpacing/2},{x:s.left+s.width/2,y:u.y-oa.nodeSpacing/2},u],i)}else ca(t,[{x:a.left+a.width/2,y:a.top+a.height},{x:a.left+a.width/2,y:a.top+oa.nodeSpacing/2},{x:s.left+s.width/2,y:s.top-oa.nodeSpacing/2},{x:s.left+s.width/2,y:s.top}],i)}}function ha(t,e){return t.select(e).node().cloneNode(!0)}function fa(t,e,n,r){var i,a=Object.keys(aa).length;if("string"==typeof e)do{if(i=aa[e],o.debug("in renderCommitHistory",i.id,i.seq),t.select("#node-"+e).size()>0)return;t.append((function(){return ha(t,"#def-commit")})).attr("class","commit").attr("id",(function(){return"node-"+i.id})).attr("transform",(function(){switch(r){case"LR":return"translate("+(i.seq*oa.nodeSpacing+oa.leftMargin)+", "+ta*oa.branchOffset+")";case"BT":return"translate("+(ta*oa.branchOffset+oa.leftMargin)+", "+(a-i.seq)*oa.nodeSpacing+")"}})).attr("fill",oa.nodeFillColor).attr("stroke",oa.nodeStrokeColor).attr("stroke-width",oa.nodeStrokeWidth);var s=void 0;for(var c in n)if(n[c].commit===i){s=n[c];break}s&&(o.debug("found branch ",s.name),t.select("#node-"+i.id+" p").append("xhtml:span").attr("class","branch-label").text(s.name+", ")),t.select("#node-"+i.id+" p").append("xhtml:span").attr("class","commit-id").text(i.id),""!==i.message&&"BT"===r&&t.select("#node-"+i.id+" p").append("xhtml:span").attr("class","commit-msg").text(", "+i.message),e=i.parent}while(e&&aa[e]);Array.isArray(e)&&(o.debug("found merge commmit",e),fa(t,e[0],n,r),ta++,fa(t,e[1],n,r),ta--)}function da(t,e,n,r){for(r=r||0;e.seq>0&&!e.lineDrawn;)"string"==typeof e.parent?(la(t,e.id,e.parent,n,r),e.lineDrawn=!0,e=aa[e.parent]):Array.isArray(e.parent)&&(la(t,e.id,e.parent[0],n,r),la(t,e.id,e.parent[1],n,r+1),da(t,aa[e.parent[1]],n,r+1),e.lineDrawn=!0,e=aa[e.parent[0]])}var pa,ya=function(t){sa=t},ga=function(t,e,n){try{var r=ia.a.parser;r.yy=na,r.yy.clear(),o.debug("in gitgraph renderer",t+"\n","id:",e,n),r.parse(t+"\n"),oa=Object.assign(oa,sa,na.getOptions()),o.debug("effective options",oa);var i=na.getDirection();aa=na.getCommits();var a=na.getBranchesAsObjArray();"BT"===i&&(oa.nodeLabel.x=a.length*oa.branchOffset,oa.nodeLabel.width="100%",oa.nodeLabel.y=-2*oa.nodeRadius);var s=Object(u.select)('[id="'.concat(e,'"]'));for(var c in function(t){t.append("defs").append("g").attr("id","def-commit").append("circle").attr("r",oa.nodeRadius).attr("cx",0).attr("cy",0),t.select("#def-commit").append("foreignObject").attr("width",oa.nodeLabel.width).attr("height",oa.nodeLabel.height).attr("x",oa.nodeLabel.x).attr("y",oa.nodeLabel.y).attr("class","node-label").attr("requiredFeatures","http://www.w3.org/TR/SVG11/feature#Extensibility").append("p").html("")}(s),ta=1,a){var l=a[c];fa(s,l.commit.id,a,i),da(s,l.commit,i),ta++}s.attr("height",(function(){return"BT"===i?Object.keys(aa).length*oa.nodeSpacing:(a.length+1)*oa.branchOffset}))}catch(t){o.error("Error while rendering gitgraph"),o.error(t.message)}},ma="",va=!1,ba={setMessage:function(t){o.debug("Setting message to: "+t),ma=t},getMessage:function(){return ma},setInfo:function(t){va=t},getInfo:function(){return va}},xa=n(74),_a=n.n(xa),ka={},wa=function(t){Object.keys(t).forEach((function(e){ka[e]=t[e]}))},Ta=function(t,e,n){try{var r=_a.a.parser;r.yy=ba,o.debug("Renering info diagram\n"+t),r.parse(t),o.debug("Parsed info diagram");var i=Object(u.select)("#"+e);i.append("g").append("text").attr("x",100).attr("y",40).attr("class","version").attr("font-size","32px").style("text-anchor","middle").text("v "+n),i.attr("height",100),i.attr("width",400)}catch(t){o.error("Error while rendering info diagram"),o.error(t.message)}},Ea=n(75),Ca=n.n(Ea),Sa={},Aa="",Ma=!1,Oa={parseDirective:function(t,e,n){gc.parseDirective(this,t,e,n)},getConfig:function(){return he().pie},addSection:function(t,e){void 0===Sa[t]&&(Sa[t]=e,o.debug("Added new section :",t))},getSections:function(){return Sa},cleanupValue:function(t){return":"===t.substring(0,1)?(t=t.substring(1).trim(),Number(t.trim())):Number(t.trim())},clear:function(){Sa={},Aa="",Ma=!1},setTitle:function(t){Aa=t},getTitle:function(){return Aa},setShowData:function(t){Ma=t},getShowData:function(){return Ma}},Na=he(),Ba=function(t,e){try{Na=he();var n=Ca.a.parser;n.yy=Oa,o.debug("Rendering info diagram\n"+t),n.yy.clear(),n.parse(t),o.debug("Parsed info diagram");var r=document.getElementById(e);void 0===(pa=r.parentElement.offsetWidth)&&(pa=1200),void 0!==Na.useWidth&&(pa=Na.useWidth),void 0!==Na.pie.useWidth&&(pa=Na.pie.useWidth);var i=Object(u.select)("#"+e);te(i,450,pa,Na.pie.useMaxWidth),r.setAttribute("viewBox","0 0 "+pa+" 450");var a=Math.min(pa,450)/2-40,s=i.append("g").attr("transform","translate("+pa/2+",225)"),c=Oa.getSections(),l=0;Object.keys(c).forEach((function(t){l+=c[t]}));var h=Na.themeVariables,f=[h.pie1,h.pie2,h.pie3,h.pie4,h.pie5,h.pie6,h.pie7,h.pie8,h.pie9,h.pie10,h.pie11,h.pie12],d=Object(u.scaleOrdinal)().range(f),p=Object(u.pie)().value((function(t){return t[1]}))(Object.entries(c)),y=Object(u.arc)().innerRadius(0).outerRadius(a);s.selectAll("mySlices").data(p).enter().append("path").attr("d",y).attr("fill",(function(t){return d(t.data[0])})).attr("class","pieCircle"),s.selectAll("mySlices").data(p).enter().append("text").text((function(t){return(t.data[1]/l*100).toFixed(0)+"%"})).attr("transform",(function(t){return"translate("+y.centroid(t)+")"})).style("text-anchor","middle").attr("class","slice"),s.append("text").text(n.yy.getTitle()).attr("x",0).attr("y",-200).attr("class","pieTitleText");var g=s.selectAll(".legend").data(d.domain()).enter().append("g").attr("class","legend").attr("transform",(function(t,e){return"translate(216,"+(22*e-22*d.domain().length/2)+")"}));g.append("rect").attr("width",18).attr("height",18).style("fill",d).style("stroke",d),g.data(p).append("text").attr("x",22).attr("y",14).text((function(t){return n.yy.getShowData()||Na.showData||Na.pie.showData?t.data[0]+" ["+t.data[1]+"]":t.data[0]}))}catch(t){o.error("Error while rendering info diagram"),o.error(t)}},Da=n(45),La=n.n(Da),Ia=[],Ra={},Fa={},Pa={},ja={},Ya={RequirementType:{REQUIREMENT:"Requirement",FUNCTIONAL_REQUIREMENT:"Functional Requirement",INTERFACE_REQUIREMENT:"Interface Requirement",PERFORMANCE_REQUIREMENT:"Performance Requirement",PHYSICAL_REQUIREMENT:"Physical Requirement",DESIGN_CONSTRAINT:"Design Constraint"},RiskLevel:{LOW_RISK:"Low",MED_RISK:"Medium",HIGH_RISK:"High"},VerifyType:{VERIFY_ANALYSIS:"Analysis",VERIFY_DEMONSTRATION:"Demonstration",VERIFY_INSPECTION:"Inspection",VERIFY_TEST:"Test"},Relationships:{CONTAINS:"contains",COPIES:"copies",DERIVES:"derives",SATISFIES:"satisfies",VERIFIES:"verifies",REFINES:"refines",TRACES:"traces"},parseDirective:function(t,e,n){gc.parseDirective(this,t,e,n)},getConfig:function(){return he().req},addRequirement:function(t,e){return void 0===Fa[t]&&(Fa[t]={name:t,type:e,id:Ra.id,text:Ra.text,risk:Ra.risk,verifyMethod:Ra.verifyMethod}),Ra={},Fa[t]},getRequirements:function(){return Fa},setNewReqId:function(t){void 0!==Ra&&(Ra.id=t)},setNewReqText:function(t){void 0!==Ra&&(Ra.text=t)},setNewReqRisk:function(t){void 0!==Ra&&(Ra.risk=t)},setNewReqVerifyMethod:function(t){void 0!==Ra&&(Ra.verifyMethod=t)},addElement:function(t){return void 0===ja[t]&&(ja[t]={name:t,type:Pa.type,docRef:Pa.docRef},o.info("Added new requirement: ",t)),Pa={},ja[t]},getElements:function(){return ja},setNewElementType:function(t){void 0!==Pa&&(Pa.type=t)},setNewElementDocRef:function(t){void 0!==Pa&&(Pa.docRef=t)},addRelationship:function(t,e,n){Ia.push({type:t,src:e,dst:n})},getRelationships:function(){return Ia},clear:function(){Ia=[],Ra={},Fa={},Pa={},ja={}}},za={CONTAINS:"contains",ARROW:"arrow"},Ua=za,$a=function(t,e){var n=t.append("defs").append("marker").attr("id",za.CONTAINS+"_line_ending").attr("refX",0).attr("refY",e.line_height/2).attr("markerWidth",e.line_height).attr("markerHeight",e.line_height).attr("orient","auto").append("g");n.append("circle").attr("cx",e.line_height/2).attr("cy",e.line_height/2).attr("r",e.line_height/2).attr("fill","none"),n.append("line").attr("x1",0).attr("x2",e.line_height).attr("y1",e.line_height/2).attr("y2",e.line_height/2).attr("stroke-width",1),n.append("line").attr("y1",0).attr("y2",e.line_height).attr("x1",e.line_height/2).attr("x2",e.line_height/2).attr("stroke-width",1),t.append("defs").append("marker").attr("id",za.ARROW+"_line_ending").attr("refX",e.line_height).attr("refY",.5*e.line_height).attr("markerWidth",e.line_height).attr("markerHeight",e.line_height).attr("orient","auto").append("path").attr("d","M0,0\n      L".concat(e.line_height,",").concat(e.line_height/2,"\n      M").concat(e.line_height,",").concat(e.line_height/2,"\n      L0,").concat(e.line_height)).attr("stroke-width",1)},qa={},Wa=0,Ha=function(t,e){return t.insert("rect","#"+e).attr("class","req reqBox").attr("x",0).attr("y",0).attr("width",qa.rect_min_width+"px").attr("height",qa.rect_min_height+"px")},Va=function(t,e,n){var r=qa.rect_min_width/2,i=t.append("text").attr("class","req reqLabel reqTitle").attr("id",e).attr("x",r).attr("y",qa.rect_padding).attr("dominant-baseline","hanging"),a=0;n.forEach((function(t){0==a?i.append("tspan").attr("text-anchor","middle").attr("x",qa.rect_min_width/2).attr("dy",0).text(t):i.append("tspan").attr("text-anchor","middle").attr("x",qa.rect_min_width/2).attr("dy",.75*qa.line_height).text(t),a++}));var o=1.5*qa.rect_padding+a*qa.line_height*.75;return t.append("line").attr("class","req-title-line").attr("x1","0").attr("x2",qa.rect_min_width).attr("y1",o).attr("y2",o),{titleNode:i,y:o}},Ga=function(t,e,n,r){var i=t.append("text").attr("class","req reqLabel").attr("id",e).attr("x",qa.rect_padding).attr("y",r).attr("dominant-baseline","hanging"),a=0,o=[];return n.forEach((function(t){for(var e=t.length;e>30&&a<3;){var n=t.substring(0,30);e=(t=t.substring(30,t.length)).length,o[o.length]=n,a++}if(3==a){var r=o[o.length-1];o[o.length-1]=r.substring(0,r.length-4)+"..."}else o[o.length]=t;a=0})),o.forEach((function(t){i.append("tspan").attr("x",qa.rect_padding).attr("dy",qa.line_height).text(t)})),i},Xa=function(t,e,n,r){var i=n.edge(Za(e.src),Za(e.dst)),a=Object(u.line)().x((function(t){return t.x})).y((function(t){return t.y})),o=t.insert("path","#"+r).attr("class","er relationshipLine").attr("d",a(i.points)).attr("fill","none");e.type==Ya.Relationships.CONTAINS?o.attr("marker-start","url("+nt.getUrl(qa.arrowMarkerAbsolute)+"#"+e.type+"_line_ending)"):(o.attr("stroke-dasharray","10,7"),o.attr("marker-end","url("+nt.getUrl(qa.arrowMarkerAbsolute)+"#"+Ua.ARROW+"_line_ending)")),function(t,e,n,r){var i=e.node().getTotalLength(),a=e.node().getPointAtLength(.5*i),o="rel"+Wa;Wa++;var s=t.append("text").attr("class","req relationshipLabel").attr("id",o).attr("x",a.x).attr("y",a.y).attr("text-anchor","middle").attr("dominant-baseline","middle").text(r).node().getBBox();t.insert("rect","#"+o).attr("class","req reqLabelBox").attr("x",a.x-s.width/2).attr("y",a.y-s.height/2).attr("width",s.width).attr("height",s.height).attr("fill","white").attr("fill-opacity","85%")}(t,o,0,"<<".concat(e.type,">>"))},Za=function(t){return t.replace(/\s/g,"").replace(/\./g,"_")},Ka=function(t){if(void 0!==t)for(var e=Object.keys(t),n=0;n<e.length;n++)qa[e[n]]=t[e[n]]},Qa=function(t,e){Da.parser.yy=Ya,Da.parser.yy.clear(),Da.parser.parse(t);var n=Object(u.select)("[id='".concat(e,"']"));$a(n,qa);var r,i,a,s=new Le.a.Graph({multigraph:!1,compound:!1,directed:!0}).setGraph({rankdir:qa.layoutDirection,marginx:20,marginy:20,nodesep:100,edgesep:100,ranksep:100}).setDefaultEdgeLabel((function(){return{}})),c=Ya.getRequirements(),l=Ya.getElements(),h=Ya.getRelationships();r=c,i=s,a=n,Object.keys(r).forEach((function(t){var e=r[t];t=Za(t),o.info("Added new requirement: ",t);var n=a.append("g").attr("id",t),s=Ha(n,"req-"+t),c=[],u=Va(n,t+"_title",["<<".concat(e.type,">>"),"".concat(e.name)]);c.push(u.titleNode);var l=Ga(n,t+"_body",["Id: ".concat(e.id),"Text: ".concat(e.text),"Risk: ".concat(e.risk),"Verification: ".concat(e.verifyMethod)],u.y);c.push(l);var h=s.node().getBBox();i.setNode(t,{width:h.width,height:h.height,shape:"rect",id:t})})),function(t,e,n){Object.keys(t).forEach((function(r){var i=t[r],a=Za(r),o=n.append("g").attr("id",a),s="element-"+a,c=Ha(o,s),u=[],l=Va(o,s+"_title",["<<Element>>","".concat(r)]);u.push(l.titleNode);var h=Ga(o,s+"_body",["Type: ".concat(i.type||"Not Specified"),"Doc Ref: ".concat(i.docRef||"None")],l.y);u.push(h);var f=c.node().getBBox();e.setNode(a,{width:f.width,height:f.height,shape:"rect",id:a})}))}(l,s,n),function(t,e){t.forEach((function(t){var n=Za(t.src),r=Za(t.dst);e.setEdge(n,r,{relationship:t})}))}(h,s),Be.a.layout(s),function(t,e){e.nodes().forEach((function(n){void 0!==n&&void 0!==e.node(n)&&(t.select("#"+n),t.select("#"+n).attr("transform","translate("+(e.node(n).x-e.node(n).width/2)+","+(e.node(n).y-e.node(n).height/2)+" )"))}))}(n,s),h.forEach((function(t){Xa(n,t,s,e)}));var f=qa.rect_padding,d=n.node().getBBox(),p=d.width+2*f,y=d.height+2*f;te(n,y,p,qa.useMaxWidth),n.attr("viewBox","".concat(d.x-f," ").concat(d.y-f," ").concat(p," ").concat(y))},Ja=n(2),to=n.n(Ja),eo=void 0,no={},ro=[],io=[],ao="",oo=!1,so=!1,co=!1,uo=function(t,e,n,r){var i=no[t];i&&e===i.name&&null==n||(null!=n&&null!=n.text||(n={text:e,wrap:null,type:r}),null!=r&&null!=n.text||(n={text:e,wrap:null,type:r}),no[t]={name:e,description:n.text,wrap:void 0===n.wrap&&fo()||!!n.wrap,prevActor:eo,type:r||"participant"},eo&&no[eo]&&(no[eo].nextActor=t),eo=t)},lo=function(t){var e,n=0;for(e=0;e<ro.length;e++)ro[e].type===po.ACTIVE_START&&ro[e].from.actor===t&&n++,ro[e].type===po.ACTIVE_END&&ro[e].from.actor===t&&n--;return n},ho=function(t,e){var n=arguments.length>2&&void 0!==arguments[2]?arguments[2]:{text:void 0,wrap:void 0},r=arguments.length>3?arguments[3]:void 0;if(r===po.ACTIVE_END){var i=lo(t.actor);if(i<1){var a=new Error("Trying to inactivate an inactive participant ("+t.actor+")");throw a.hash={text:"->>-",token:"->>-",line:"1",loc:{first_line:1,last_line:1,first_column:1,last_column:1},expected:["'ACTIVE_PARTICIPANT'"]},a}}return ro.push({from:t,to:e,message:n.text,wrap:void 0===n.wrap&&fo()||!!n.wrap,type:r}),!0},fo=function(){return co},po={SOLID:0,DOTTED:1,NOTE:2,SOLID_CROSS:3,DOTTED_CROSS:4,SOLID_OPEN:5,DOTTED_OPEN:6,LOOP_START:10,LOOP_END:11,ALT_START:12,ALT_ELSE:13,ALT_END:14,OPT_START:15,OPT_END:16,ACTIVE_START:17,ACTIVE_END:18,PAR_START:19,PAR_AND:20,PAR_END:21,RECT_START:22,RECT_END:23,SOLID_POINT:24,DOTTED_POINT:25},yo=function(t,e,n){var r={actor:t,placement:e,message:n.text,wrap:void 0===n.wrap&&fo()||!!n.wrap},i=[].concat(t,t);io.push(r),ro.push({from:i[0],to:i[1],message:n.text,wrap:void 0===n.wrap&&fo()||!!n.wrap,type:po.NOTE,placement:e})},go=function(t){ao=t.text,oo=void 0===t.wrap&&fo()||!!t.wrap},mo={addActor:uo,addMessage:function(t,e,n,r){ro.push({from:t,to:e,message:n.text,wrap:void 0===n.wrap&&fo()||!!n.wrap,answer:r})},addSignal:ho,autoWrap:fo,setWrap:function(t){co=t},enableSequenceNumbers:function(){so=!0},showSequenceNumbers:function(){return so},getMessages:function(){return ro},getActors:function(){return no},getActor:function(t){return no[t]},getActorKeys:function(){return Object.keys(no)},getTitle:function(){return ao},parseDirective:function(t,e,n){gc.parseDirective(this,t,e,n)},getConfig:function(){return he().sequence},getTitleWrapped:function(){return oo},clear:function(){no={},ro=[]},parseMessage:function(t){var e=t.trim(),n={text:e.replace(/^[:]?(?:no)?wrap:/,"").trim(),wrap:null!==e.match(/^[:]?wrap:/)||null===e.match(/^[:]?nowrap:/)&&void 0};return o.debug("parseMessage:",n),n},LINETYPE:po,ARROWTYPE:{FILLED:0,OPEN:1},PLACEMENT:{LEFTOF:0,RIGHTOF:1,OVER:2},addNote:yo,setTitle:go,apply:function t(e){if(e instanceof Array)e.forEach((function(e){t(e)}));else switch(e.type){case"addParticipant":uo(e.actor,e.actor,e.description,"participant");break;case"addActor":uo(e.actor,e.actor,e.description,"actor");break;case"activeStart":case"activeEnd":ho(e.actor,void 0,void 0,e.signalType);break;case"addNote":yo(e.actor,e.placement,e.text);break;case"addMessage":ho(e.from,e.to,e.msg,e.signalType);break;case"loopStart":ho(void 0,void 0,e.loopText,e.signalType);break;case"loopEnd":ho(void 0,void 0,void 0,e.signalType);break;case"rectStart":ho(void 0,void 0,e.color,e.signalType);break;case"rectEnd":ho(void 0,void 0,void 0,e.signalType);break;case"optStart":ho(void 0,void 0,e.optText,e.signalType);break;case"optEnd":ho(void 0,void 0,void 0,e.signalType);break;case"altStart":case"else":ho(void 0,void 0,e.altText,e.signalType);break;case"altEnd":ho(void 0,void 0,void 0,e.signalType);break;case"setTitle":go(e.text);break;case"parStart":case"and":ho(void 0,void 0,e.parText,e.signalType);break;case"parEnd":ho(void 0,void 0,void 0,e.signalType)}}},vo=function(t,e){var n=t.append("rect");return n.attr("x",e.x),n.attr("y",e.y),n.attr("fill",e.fill),n.attr("stroke",e.stroke),n.attr("width",e.width),n.attr("height",e.height),n.attr("rx",e.rx),n.attr("ry",e.ry),void 0!==e.class&&n.attr("class",e.class),n},bo=function(t,e){var n=0,r=0,i=e.text.split(nt.lineBreakRegex),a=[],o=0,s=function(){return e.y};if(void 0!==e.valign&&void 0!==e.textMargin&&e.textMargin>0)switch(e.valign){case"top":case"start":s=function(){return Math.round(e.y+e.textMargin)};break;case"middle":case"center":s=function(){return Math.round(e.y+(n+r+e.textMargin)/2)};break;case"bottom":case"end":s=function(){return Math.round(e.y+(n+r+2*e.textMargin)-e.textMargin)}}if(void 0!==e.anchor&&void 0!==e.textMargin&&void 0!==e.width)switch(e.anchor){case"left":case"start":e.x=Math.round(e.x+e.textMargin),e.anchor="start",e.dominantBaseline="text-after-edge",e.alignmentBaseline="middle";break;case"middle":case"center":e.x=Math.round(e.x+e.width/2),e.anchor="middle",e.dominantBaseline="middle",e.alignmentBaseline="middle";break;case"right":case"end":e.x=Math.round(e.x+e.width-e.textMargin),e.anchor="end",e.dominantBaseline="text-before-edge",e.alignmentBaseline="middle"}for(var c=0;c<i.length;c++){var u=i[c];void 0!==e.textMargin&&0===e.textMargin&&void 0!==e.fontSize&&(o=c*e.fontSize);var l=t.append("text");if(l.attr("x",e.x),l.attr("y",s()),void 0!==e.anchor&&l.attr("text-anchor",e.anchor).attr("dominant-baseline",e.dominantBaseline).attr("alignment-baseline",e.alignmentBaseline),void 0!==e.fontFamily&&l.style("font-family",e.fontFamily),void 0!==e.fontSize&&l.style("font-size",e.fontSize),void 0!==e.fontWeight&&l.style("font-weight",e.fontWeight),void 0!==e.fill&&l.attr("fill",e.fill),void 0!==e.class&&l.attr("class",e.class),void 0!==e.dy?l.attr("dy",e.dy):0!==o&&l.attr("dy",o),e.tspan){var h=l.append("tspan");h.attr("x",e.x),void 0!==e.fill&&h.attr("fill",e.fill),h.text(u)}else l.text(u);void 0!==e.valign&&void 0!==e.textMargin&&e.textMargin>0&&(r+=(l._groups||l)[0][0].getBBox().height,n=r),a.push(l)}return a},xo=function(t,e){var n,r,i,a,o,s=t.append("polygon");return s.attr("points",(n=e.x,r=e.y,i=e.width,a=e.height,n+","+r+" "+(n+i)+","+r+" "+(n+i)+","+(r+a-(o=7))+" "+(n+i-1.2*o)+","+(r+a)+" "+n+","+(r+a))),s.attr("class","labelBox"),e.y=e.y+e.height/2,bo(t,e),s},_o=-1,ko=function(t,e){t.selectAll&&t.selectAll(".actor-line").attr("class","200").attr("y2",e-55)},wo=function(){return{x:0,y:0,fill:void 0,anchor:void 0,style:"#666",width:void 0,height:void 0,textMargin:0,rx:0,ry:0,tspan:!0,valign:void 0}},To=function(){return{x:0,y:0,fill:"#EDF2AE",stroke:"#666",width:100,anchor:"start",height:100,rx:0,ry:0}},Eo=function(){function t(t,e,n,i,a,o,s){r(e.append("text").attr("x",n+a/2).attr("y",i+o/2+5).style("text-anchor","middle").text(t),s)}function e(t,e,n,i,a,o,s,c){for(var u=c.actorFontSize,l=c.actorFontFamily,h=c.actorFontWeight,f=t.split(nt.lineBreakRegex),d=0;d<f.length;d++){var p=d*u-u*(f.length-1)/2,y=e.append("text").attr("x",n+a/2).attr("y",i).style("text-anchor","middle").style("font-size",u).style("font-weight",h).style("font-family",l);y.append("tspan").attr("x",n+a/2).attr("dy",p).text(f[d]),y.attr("y",i+o/2).attr("dominant-baseline","central").attr("alignment-baseline","central"),r(y,s)}}function n(t,n,i,a,o,s,c,u){var l=n.append("switch"),h=l.append("foreignObject").attr("x",i).attr("y",a).attr("width",o).attr("height",s).append("xhtml:div").style("display","table").style("height","100%").style("width","100%");h.append("div").style("display","table-cell").style("text-align","center").style("vertical-align","middle").text(t),e(t,l,i,a,o,s,c,u),r(h,c)}function r(t,e){for(var n in e)e.hasOwnProperty(n)&&t.attr(n,e[n])}return function(r){return"fo"===r.textPlacement?n:"old"===r.textPlacement?t:e}}(),Co={drawRect:vo,drawText:bo,drawLabel:xo,drawActor:function(t,e,n){switch(e.type){case"actor":return function(t,e,n){var r=e.x+e.width/2;0===e.y&&(_o++,t.append("line").attr("id","actor"+_o).attr("x1",r).attr("y1",80).attr("x2",r).attr("y2",2e3).attr("class","actor-line").attr("stroke-width","0.5px").attr("stroke","#999"));var i=t.append("g");i.attr("class","actor-man");var a=To();a.x=e.x,a.y=e.y,a.fill="#eaeaea",a.width=e.width,a.height=e.height,a.class="actor",a.rx=3,a.ry=3,i.append("line").attr("id","actor-man-torso"+_o).attr("x1",r).attr("y1",e.y+25).attr("x2",r).attr("y2",e.y+45),i.append("line").attr("id","actor-man-arms"+_o).attr("x1",r-18).attr("y1",e.y+33).attr("x2",r+18).attr("y2",e.y+33),i.append("line").attr("x1",r-18).attr("y1",e.y+60).attr("x2",r).attr("y2",e.y+45),i.append("line").attr("x1",r).attr("y1",e.y+45).attr("x2",r+16).attr("y2",e.y+60);var o=i.append("circle");o.attr("cx",e.x+e.width/2),o.attr("cy",e.y+10),o.attr("r",15),o.attr("width",e.width),o.attr("height",e.height);var s=i.node().getBBox();return e.height=s.height,Eo(n)(e.description,i,a.x,a.y+35,a.width,a.height,{class:"actor"},n),e.height}(t,e,n);case"participant":return function(t,e,n){var r=e.x+e.width/2,i=t.append("g");0===e.y&&(_o++,i.append("line").attr("id","actor"+_o).attr("x1",r).attr("y1",5).attr("x2",r).attr("y2",2e3).attr("class","actor-line").attr("stroke-width","0.5px").attr("stroke","#999"));var a=To();a.x=e.x,a.y=e.y,a.fill="#eaeaea",a.width=e.width,a.height=e.height,a.class="actor",a.rx=3,a.ry=3;var o=vo(i,a);Eo(n)(e.description,i,a.x,a.y,a.width,a.height,{class:"actor"},n);var s=e.height;if(o.node){var c=o.node().getBBox();e.height=c.height,s=c.height}return s}(t,e,n)}},anchorElement:function(t){return t.append("g")},drawActivation:function(t,e,n,r,i){var a=To(),o=e.anchored;a.x=e.startx,a.y=e.starty,a.class="activation"+i%3,a.width=e.stopx-e.startx,a.height=n-e.starty,vo(o,a)},drawLoop:function(t,e,n,r){var i=r.boxMargin,a=r.boxTextMargin,o=r.labelBoxHeight,s=r.labelBoxWidth,c=r.messageFontFamily,u=r.messageFontSize,l=r.messageFontWeight,h=t.append("g"),f=function(t,e,n,r){return h.append("line").attr("x1",t).attr("y1",e).attr("x2",n).attr("y2",r).attr("class","loopLine")};f(e.startx,e.starty,e.stopx,e.starty),f(e.stopx,e.starty,e.stopx,e.stopy),f(e.startx,e.stopy,e.stopx,e.stopy),f(e.startx,e.starty,e.startx,e.stopy),void 0!==e.sections&&e.sections.forEach((function(t){f(e.startx,t.y,e.stopx,t.y).style("stroke-dasharray","3, 3")}));var d=wo();d.text=n,d.x=e.startx,d.y=e.starty,d.fontFamily=c,d.fontSize=u,d.fontWeight=l,d.anchor="middle",d.valign="middle",d.tspan=!1,d.width=s||50,d.height=o||20,d.textMargin=a,d.class="labelText",xo(h,d),(d=wo()).text=e.title,d.x=e.startx+s/2+(e.stopx-e.startx)/2,d.y=e.starty+i+a,d.anchor="middle",d.valign="middle",d.textMargin=a,d.class="loopText",d.fontFamily=c,d.fontSize=u,d.fontWeight=l,d.wrap=!0;var p=bo(h,d);return void 0!==e.sectionTitles&&e.sectionTitles.forEach((function(t,n){if(t.message){d.text=t.message,d.x=e.startx+(e.stopx-e.startx)/2,d.y=e.sections[n].y+i+a,d.class="loopText",d.anchor="middle",d.valign="middle",d.tspan=!1,d.fontFamily=c,d.fontSize=u,d.fontWeight=l,d.wrap=e.wrap,p=bo(h,d);var r=Math.round(p.map((function(t){return(t._groups||t)[0][0].getBBox().height})).reduce((function(t,e){return t+e})));e.sections[n].height+=r-(i+a)}})),e.height=Math.round(e.stopy-e.starty),h},drawBackgroundRect:function(t,e){vo(t,{x:e.startx,y:e.starty,width:e.stopx-e.startx,height:e.stopy-e.starty,fill:e.fill,class:"rect"}).lower()},insertArrowHead:function(t){t.append("defs").append("marker").attr("id","arrowhead").attr("refX",9).attr("refY",5).attr("markerUnits","userSpaceOnUse").attr("markerWidth",12).attr("markerHeight",12).attr("orient","auto").append("path").attr("d","M 0 0 L 10 5 L 0 10 z")},insertArrowFilledHead:function(t){t.append("defs").append("marker").attr("id","filled-head").attr("refX",18).attr("refY",7).attr("markerWidth",20).attr("markerHeight",28).attr("orient","auto").append("path").attr("d","M 18,7 L9,13 L14,7 L9,1 Z")},insertSequenceNumber:function(t){t.append("defs").append("marker").attr("id","sequencenumber").attr("refX",15).attr("refY",15).attr("markerWidth",60).attr("markerHeight",40).attr("orient","auto").append("circle").attr("cx",15).attr("cy",15).attr("r",6)},insertArrowCrossHead:function(t){var e=t.append("defs").append("marker").attr("id","crosshead").attr("markerWidth",15).attr("markerHeight",8).attr("orient","auto").attr("refX",16).attr("refY",4);e.append("path").attr("fill","black").attr("stroke","#000000").style("stroke-dasharray","0, 0").attr("stroke-width","1px").attr("d","M 9,2 V 6 L16,4 Z"),e.append("path").attr("fill","none").attr("stroke","#000000").style("stroke-dasharray","0, 0").attr("stroke-width","1px").attr("d","M 0,1 L 6,7 M 6,1 L 0,7")},getTextObj:wo,getNoteRect:To,fixLifeLineHeights:ko};Ja.parser.yy=mo;var So={},Ao={data:{startx:void 0,stopx:void 0,starty:void 0,stopy:void 0},verticalPos:0,sequenceItems:[],activations:[],models:{getHeight:function(){return Math.max.apply(null,0===this.actors.length?[0]:this.actors.map((function(t){return t.height||0})))+(0===this.loops.length?0:this.loops.map((function(t){return t.height||0})).reduce((function(t,e){return t+e})))+(0===this.messages.length?0:this.messages.map((function(t){return t.height||0})).reduce((function(t,e){return t+e})))+(0===this.notes.length?0:this.notes.map((function(t){return t.height||0})).reduce((function(t,e){return t+e})))},clear:function(){this.actors=[],this.loops=[],this.messages=[],this.notes=[]},addActor:function(t){this.actors.push(t)},addLoop:function(t){this.loops.push(t)},addMessage:function(t){this.messages.push(t)},addNote:function(t){this.notes.push(t)},lastActor:function(){return this.actors[this.actors.length-1]},lastLoop:function(){return this.loops[this.loops.length-1]},lastMessage:function(){return this.messages[this.messages.length-1]},lastNote:function(){return this.notes[this.notes.length-1]},actors:[],loops:[],messages:[],notes:[]},init:function(){this.sequenceItems=[],this.activations=[],this.models.clear(),this.data={startx:void 0,stopx:void 0,starty:void 0,stopy:void 0},this.verticalPos=0,Do(Ja.parser.yy.getConfig())},updateVal:function(t,e,n,r){void 0===t[e]?t[e]=n:t[e]=r(n,t[e])},updateBounds:function(t,e,n,r){var i=this,a=0;function o(o){return function(s){a++;var c=i.sequenceItems.length-a+1;i.updateVal(s,"starty",e-c*So.boxMargin,Math.min),i.updateVal(s,"stopy",r+c*So.boxMargin,Math.max),i.updateVal(Ao.data,"startx",t-c*So.boxMargin,Math.min),i.updateVal(Ao.data,"stopx",n+c*So.boxMargin,Math.max),"activation"!==o&&(i.updateVal(s,"startx",t-c*So.boxMargin,Math.min),i.updateVal(s,"stopx",n+c*So.boxMargin,Math.max),i.updateVal(Ao.data,"starty",e-c*So.boxMargin,Math.min),i.updateVal(Ao.data,"stopy",r+c*So.boxMargin,Math.max))}}this.sequenceItems.forEach(o()),this.activations.forEach(o("activation"))},insert:function(t,e,n,r){var i=Math.min(t,n),a=Math.max(t,n),o=Math.min(e,r),s=Math.max(e,r);this.updateVal(Ao.data,"startx",i,Math.min),this.updateVal(Ao.data,"starty",o,Math.min),this.updateVal(Ao.data,"stopx",a,Math.max),this.updateVal(Ao.data,"stopy",s,Math.max),this.updateBounds(i,o,a,s)},newActivation:function(t,e,n){var r=n[t.from.actor],i=Lo(t.from.actor).length||0,a=r.x+r.width/2+(i-1)*So.activationWidth/2;this.activations.push({startx:a,starty:this.verticalPos+2,stopx:a+So.activationWidth,stopy:void 0,actor:t.from.actor,anchored:Co.anchorElement(e)})},endActivation:function(t){var e=this.activations.map((function(t){return t.actor})).lastIndexOf(t.from.actor);return this.activations.splice(e,1)[0]},createLoop:function(){var t=arguments.length>0&&void 0!==arguments[0]?arguments[0]:{message:void 0,wrap:!1,width:void 0},e=arguments.length>1?arguments[1]:void 0;return{startx:void 0,starty:this.verticalPos,stopx:void 0,stopy:void 0,title:t.message,wrap:t.wrap,width:t.width,height:0,fill:e}},newLoop:function(){var t=arguments.length>0&&void 0!==arguments[0]?arguments[0]:{message:void 0,wrap:!1,width:void 0},e=arguments.length>1?arguments[1]:void 0;this.sequenceItems.push(this.createLoop(t,e))},endLoop:function(){return this.sequenceItems.pop()},addSectionToLoop:function(t){var e=this.sequenceItems.pop();e.sections=e.sections||[],e.sectionTitles=e.sectionTitles||[],e.sections.push({y:Ao.getVerticalPos(),height:0}),e.sectionTitles.push(t),this.sequenceItems.push(e)},bumpVerticalPos:function(t){this.verticalPos=this.verticalPos+t,this.data.stopy=this.verticalPos},getVerticalPos:function(){return this.verticalPos},getBounds:function(){return{bounds:this.data,models:this.models}}},Mo=function(t){return{fontFamily:t.messageFontFamily,fontSize:t.messageFontSize,fontWeight:t.messageFontWeight}},Oo=function(t){return{fontFamily:t.noteFontFamily,fontSize:t.noteFontSize,fontWeight:t.noteFontWeight}},No=function(t){return{fontFamily:t.actorFontFamily,fontSize:t.actorFontSize,fontWeight:t.actorFontWeight}},Bo=function(t,e,n,r){for(var i=0,a=0,o=0,s=0;s<n.length;s++){var c=e[n[s]];c.width=c.width||So.width,c.height=Math.max(c.height||So.height,So.height),c.margin=c.margin||So.actorMargin,c.x=i+a,c.y=r;var u=Co.drawActor(t,c,So);o=Math.max(o,u),Ao.insert(c.x,r,c.x+c.width,c.height),i+=c.width,a+=c.margin,Ao.models.addActor(c)}Ao.bumpVerticalPos(o)},Do=function(t){Vt(So,t),t.fontFamily&&(So.actorFontFamily=So.noteFontFamily=So.messageFontFamily=t.fontFamily),t.fontSize&&(So.actorFontSize=So.noteFontSize=So.messageFontSize=t.fontSize),t.fontWeight&&(So.actorFontWeight=So.noteFontWeight=So.messageFontWeight=t.fontWeight)},Lo=function(t){return Ao.activations.filter((function(e){return e.actor===t}))},Io=function(t,e){var n=e[t],r=Lo(t);return[r.reduce((function(t,e){return Math.min(t,e.startx)}),n.x+n.width/2),r.reduce((function(t,e){return Math.max(t,e.stopx)}),n.x+n.width/2)]};function Ro(t,e,n,r,i){Ao.bumpVerticalPos(n);var a=r;if(e.id&&e.message&&t[e.id]){var s=t[e.id].width,c=Mo(So);e.message=ne.wrapLabel("[".concat(e.message,"]"),s-2*So.wrapPadding,c),e.width=s,e.wrap=!0;var u=ne.calculateTextDimensions(e.message,c),l=Math.max(u.height,So.labelBoxHeight);a=r+l,o.debug("".concat(l," - ").concat(e.message))}i(e),Ao.bumpVerticalPos(a)}var Fo=function(t,e){var n={};return e.forEach((function(e){if(t[e.to]&&t[e.from]){var r=t[e.to];if(e.placement===Ja.parser.yy.PLACEMENT.LEFTOF&&!r.prevActor)return;if(e.placement===Ja.parser.yy.PLACEMENT.RIGHTOF&&!r.nextActor)return;var i=void 0!==e.placement,a=!i,o=i?Oo(So):Mo(So),s=e.wrap?ne.wrapLabel(e.message,So.width-2*So.wrapPadding,o):e.message,c=ne.calculateTextDimensions(s,o).width+2*So.wrapPadding;a&&e.from===r.nextActor?n[e.to]=Math.max(n[e.to]||0,c):a&&e.from===r.prevActor?n[e.from]=Math.max(n[e.from]||0,c):a&&e.from===e.to?(n[e.from]=Math.max(n[e.from]||0,c/2),n[e.to]=Math.max(n[e.to]||0,c/2)):e.placement===Ja.parser.yy.PLACEMENT.RIGHTOF?n[e.from]=Math.max(n[e.from]||0,c):e.placement===Ja.parser.yy.PLACEMENT.LEFTOF?n[r.prevActor]=Math.max(n[r.prevActor]||0,c):e.placement===Ja.parser.yy.PLACEMENT.OVER&&(r.prevActor&&(n[r.prevActor]=Math.max(n[r.prevActor]||0,c/2)),r.nextActor&&(n[e.from]=Math.max(n[e.from]||0,c/2)))}})),o.debug("maxMessageWidthPerActor:",n),n},Po=function(t,e){var n=0;for(var r in Object.keys(t).forEach((function(e){var r=t[e];r.wrap&&(r.description=ne.wrapLabel(r.description,So.width-2*So.wrapPadding,No(So)));var i=ne.calculateTextDimensions(r.description,No(So));r.width=r.wrap?So.width:Math.max(So.width,i.width+2*So.wrapPadding),r.height=r.wrap?Math.max(i.height,So.height):So.height,n=Math.max(n,r.height)})),e){var i=t[r];if(i){var a=t[i.nextActor];if(a){var o=e[r]+So.actorMargin-i.width/2-a.width/2;i.margin=Math.max(o,So.actorMargin)}}}return Math.max(n,So.height)},jo=function(t,e){var n,r,i,a={},s=[];return t.forEach((function(t){switch(t.id=ne.random({length:10}),t.type){case Ja.parser.yy.LINETYPE.LOOP_START:case Ja.parser.yy.LINETYPE.ALT_START:case Ja.parser.yy.LINETYPE.OPT_START:case Ja.parser.yy.LINETYPE.PAR_START:s.push({id:t.id,msg:t.message,from:Number.MAX_SAFE_INTEGER,to:Number.MIN_SAFE_INTEGER,width:0});break;case Ja.parser.yy.LINETYPE.ALT_ELSE:case Ja.parser.yy.LINETYPE.PAR_AND:t.message&&(n=s.pop(),a[n.id]=n,a[t.id]=n,s.push(n));break;case Ja.parser.yy.LINETYPE.LOOP_END:case Ja.parser.yy.LINETYPE.ALT_END:case Ja.parser.yy.LINETYPE.OPT_END:case Ja.parser.yy.LINETYPE.PAR_END:n=s.pop(),a[n.id]=n;break;case Ja.parser.yy.LINETYPE.ACTIVE_START:var c=e[t.from?t.from.actor:t.to.actor],u=Lo(t.from?t.from.actor:t.to.actor).length,l=c.x+c.width/2+(u-1)*So.activationWidth/2,h={startx:l,stopx:l+So.activationWidth,actor:t.from.actor,enabled:!0};Ao.activations.push(h);break;case Ja.parser.yy.LINETYPE.ACTIVE_END:var f=Ao.activations.map((function(t){return t.actor})).lastIndexOf(t.from.actor);delete Ao.activations.splice(f,1)[0]}void 0!==t.placement?(r=function(t,e){var n=e[t.from].x,r=e[t.to].x,i=t.wrap&&t.message,a=ne.calculateTextDimensions(i?ne.wrapLabel(t.message,So.width,Oo(So)):t.message,Oo(So)),s={width:i?So.width:Math.max(So.width,a.width+2*So.noteMargin),height:0,startx:e[t.from].x,stopx:0,starty:0,stopy:0,message:t.message};return t.placement===Ja.parser.yy.PLACEMENT.RIGHTOF?(s.width=i?Math.max(So.width,a.width):Math.max(e[t.from].width/2+e[t.to].width/2,a.width+2*So.noteMargin),s.startx=n+(e[t.from].width+So.actorMargin)/2):t.placement===Ja.parser.yy.PLACEMENT.LEFTOF?(s.width=i?Math.max(So.width,a.width+2*So.noteMargin):Math.max(e[t.from].width/2+e[t.to].width/2,a.width+2*So.noteMargin),s.startx=n-s.width+(e[t.from].width-So.actorMargin)/2):t.to===t.from?(a=ne.calculateTextDimensions(i?ne.wrapLabel(t.message,Math.max(So.width,e[t.from].width),Oo(So)):t.message,Oo(So)),s.width=i?Math.max(So.width,e[t.from].width):Math.max(e[t.from].width,So.width,a.width+2*So.noteMargin),s.startx=n+(e[t.from].width-s.width)/2):(s.width=Math.abs(n+e[t.from].width/2-(r+e[t.to].width/2))+So.actorMargin,s.startx=n<r?n+e[t.from].width/2-So.actorMargin/2:r+e[t.to].width/2-So.actorMargin/2),i&&(s.message=ne.wrapLabel(t.message,s.width-2*So.wrapPadding,Oo(So))),o.debug("NM:[".concat(s.startx,",").concat(s.stopx,",").concat(s.starty,",").concat(s.stopy,":").concat(s.width,",").concat(s.height,"=").concat(t.message,"]")),s}(t,e),t.noteModel=r,s.forEach((function(t){(n=t).from=Math.min(n.from,r.startx),n.to=Math.max(n.to,r.startx+r.width),n.width=Math.max(n.width,Math.abs(n.from-n.to))-So.labelBoxWidth}))):(i=function(t,e){var n=!1;if([Ja.parser.yy.LINETYPE.SOLID_OPEN,Ja.parser.yy.LINETYPE.DOTTED_OPEN,Ja.parser.yy.LINETYPE.SOLID,Ja.parser.yy.LINETYPE.DOTTED,Ja.parser.yy.LINETYPE.SOLID_CROSS,Ja.parser.yy.LINETYPE.DOTTED_CROSS,Ja.parser.yy.LINETYPE.SOLID_POINT,Ja.parser.yy.LINETYPE.DOTTED_POINT].includes(t.type)&&(n=!0),!n)return{};var r=Io(t.from,e),i=Io(t.to,e),a=r[0]<=i[0]?1:0,o=r[0]<i[0]?0:1,s=r.concat(i),c=Math.abs(i[o]-r[a]);t.wrap&&t.message&&(t.message=ne.wrapLabel(t.message,Math.max(c+2*So.wrapPadding,So.width),Mo(So)));var u=ne.calculateTextDimensions(t.message,Mo(So));return{width:Math.max(t.wrap?0:u.width+2*So.wrapPadding,c+2*So.wrapPadding,So.width),height:0,startx:r[a],stopx:i[o],starty:0,stopy:0,message:t.message,type:t.type,wrap:t.wrap,fromBounds:Math.min.apply(null,s),toBounds:Math.max.apply(null,s)}}(t,e),t.msgModel=i,i.startx&&i.stopx&&s.length>0&&s.forEach((function(r){if(n=r,i.startx===i.stopx){var a=e[t.from],o=e[t.to];n.from=Math.min(a.x-i.width/2,a.x-a.width/2,n.from),n.to=Math.max(o.x+i.width/2,o.x+a.width/2,n.to),n.width=Math.max(n.width,Math.abs(n.to-n.from))-So.labelBoxWidth}else n.from=Math.min(i.startx,n.from),n.to=Math.max(i.stopx,n.to),n.width=Math.max(n.width,i.width)-So.labelBoxWidth})))})),Ao.activations=[],o.debug("Loop type widths:",a),a},Yo={bounds:Ao,drawActors:Bo,setConf:Do,draw:function(t,e){So=he().sequence,Ja.parser.yy.clear(),Ja.parser.yy.setWrap(So.wrap),Ja.parser.parse(t+"\n"),Ao.init(),o.debug("C:".concat(JSON.stringify(So,null,2)));var n=Object(u.select)('[id="'.concat(e,'"]')),r=Ja.parser.yy.getActors(),i=Ja.parser.yy.getActorKeys(),a=Ja.parser.yy.getMessages(),s=Ja.parser.yy.getTitle(),c=Fo(r,a);So.height=Po(r,c),Bo(n,r,i,0);var l=jo(a,r,c);Co.insertArrowHead(n),Co.insertArrowCrossHead(n),Co.insertArrowFilledHead(n),Co.insertSequenceNumber(n);var h=1;a.forEach((function(t){var e,i,a;switch(t.type){case Ja.parser.yy.LINETYPE.NOTE:i=t.noteModel,function(t,e){Ao.bumpVerticalPos(So.boxMargin),e.height=So.boxMargin,e.starty=Ao.getVerticalPos();var n=Co.getNoteRect();n.x=e.startx,n.y=e.starty,n.width=e.width||So.width,n.class="note";var r=t.append("g"),i=Co.drawRect(r,n),a=Co.getTextObj();a.x=e.startx,a.y=e.starty,a.width=n.width,a.dy="1em",a.text=e.message,a.class="noteText",a.fontFamily=So.noteFontFamily,a.fontSize=So.noteFontSize,a.fontWeight=So.noteFontWeight,a.anchor=So.noteAlign,a.textMargin=So.noteMargin,a.valign=So.noteAlign;var o=bo(r,a),s=Math.round(o.map((function(t){return(t._groups||t)[0][0].getBBox().height})).reduce((function(t,e){return t+e})));i.attr("height",s+2*So.noteMargin),e.height+=s+2*So.noteMargin,Ao.bumpVerticalPos(s+2*So.noteMargin),e.stopy=e.starty+s+2*So.noteMargin,e.stopx=e.startx+n.width,Ao.insert(e.startx,e.starty,e.stopx,e.stopy),Ao.models.addNote(e)}(n,i);break;case Ja.parser.yy.LINETYPE.ACTIVE_START:Ao.newActivation(t,n,r);break;case Ja.parser.yy.LINETYPE.ACTIVE_END:!function(t,e){var r=Ao.endActivation(t);r.starty+18>e&&(r.starty=e-6,e+=12),Co.drawActivation(n,r,e,So,Lo(t.from.actor).length),Ao.insert(r.startx,e-10,r.stopx,e)}(t,Ao.getVerticalPos());break;case Ja.parser.yy.LINETYPE.LOOP_START:Ro(l,t,So.boxMargin,So.boxMargin+So.boxTextMargin,(function(t){return Ao.newLoop(t)}));break;case Ja.parser.yy.LINETYPE.LOOP_END:e=Ao.endLoop(),Co.drawLoop(n,e,"loop",So),Ao.bumpVerticalPos(e.stopy-Ao.getVerticalPos()),Ao.models.addLoop(e);break;case Ja.parser.yy.LINETYPE.RECT_START:Ro(l,t,So.boxMargin,So.boxMargin,(function(t){return Ao.newLoop(void 0,t.message)}));break;case Ja.parser.yy.LINETYPE.RECT_END:e=Ao.endLoop(),Co.drawBackgroundRect(n,e),Ao.models.addLoop(e),Ao.bumpVerticalPos(e.stopy-Ao.getVerticalPos());break;case Ja.parser.yy.LINETYPE.OPT_START:Ro(l,t,So.boxMargin,So.boxMargin+So.boxTextMargin,(function(t){return Ao.newLoop(t)}));break;case Ja.parser.yy.LINETYPE.OPT_END:e=Ao.endLoop(),Co.drawLoop(n,e,"opt",So),Ao.bumpVerticalPos(e.stopy-Ao.getVerticalPos()),Ao.models.addLoop(e);break;case Ja.parser.yy.LINETYPE.ALT_START:Ro(l,t,So.boxMargin,So.boxMargin+So.boxTextMargin,(function(t){return Ao.newLoop(t)}));break;case Ja.parser.yy.LINETYPE.ALT_ELSE:Ro(l,t,So.boxMargin+So.boxTextMargin,So.boxMargin,(function(t){return Ao.addSectionToLoop(t)}));break;case Ja.parser.yy.LINETYPE.ALT_END:e=Ao.endLoop(),Co.drawLoop(n,e,"alt",So),Ao.bumpVerticalPos(e.stopy-Ao.getVerticalPos()),Ao.models.addLoop(e);break;case Ja.parser.yy.LINETYPE.PAR_START:Ro(l,t,So.boxMargin,So.boxMargin+So.boxTextMargin,(function(t){return Ao.newLoop(t)}));break;case Ja.parser.yy.LINETYPE.PAR_AND:Ro(l,t,So.boxMargin+So.boxTextMargin,So.boxMargin,(function(t){return Ao.addSectionToLoop(t)}));break;case Ja.parser.yy.LINETYPE.PAR_END:e=Ao.endLoop(),Co.drawLoop(n,e,"par",So),Ao.bumpVerticalPos(e.stopy-Ao.getVerticalPos()),Ao.models.addLoop(e);break;default:try{(a=t.msgModel).starty=Ao.getVerticalPos(),a.sequenceIndex=h,function(t,e){Ao.bumpVerticalPos(10);var n=e.startx,r=e.stopx,i=e.starty,a=e.message,o=e.type,s=e.sequenceIndex,c=nt.splitBreaks(a).length,u=ne.calculateTextDimensions(a,Mo(So)),l=u.height/c;e.height+=l,Ao.bumpVerticalPos(l);var h=Co.getTextObj();h.x=n,h.y=i+10,h.width=r-n,h.class="messageText",h.dy="1em",h.text=a,h.fontFamily=So.messageFontFamily,h.fontSize=So.messageFontSize,h.fontWeight=So.messageFontWeight,h.anchor=So.messageAlign,h.valign=So.messageAlign,h.textMargin=So.wrapPadding,h.tspan=!1,bo(t,h);var f,d,p=u.height-10,y=u.width;if(n===r){d=Ao.getVerticalPos()+p,So.rightAngles?f=t.append("path").attr("d","M  ".concat(n,",").concat(d," H ").concat(n+Math.max(So.width/2,y/2)," V ").concat(d+25," H ").concat(n)):(p+=So.boxMargin,d=Ao.getVerticalPos()+p,f=t.append("path").attr("d","M "+n+","+d+" C "+(n+60)+","+(d-10)+" "+(n+60)+","+(d+30)+" "+n+","+(d+20))),p+=30;var g=Math.max(y/2,So.width/2);Ao.insert(n-g,Ao.getVerticalPos()-10+p,r+g,Ao.getVerticalPos()+30+p)}else p+=So.boxMargin,d=Ao.getVerticalPos()+p,(f=t.append("line")).attr("x1",n),f.attr("y1",d),f.attr("x2",r),f.attr("y2",d),Ao.insert(n,d-10,r,d);o===Ja.parser.yy.LINETYPE.DOTTED||o===Ja.parser.yy.LINETYPE.DOTTED_CROSS||o===Ja.parser.yy.LINETYPE.DOTTED_POINT||o===Ja.parser.yy.LINETYPE.DOTTED_OPEN?(f.style("stroke-dasharray","3, 3"),f.attr("class","messageLine1")):f.attr("class","messageLine0");var m="";So.arrowMarkerAbsolute&&(m=(m=(m=window.location.protocol+"//"+window.location.host+window.location.pathname+window.location.search).replace(/\(/g,"\\(")).replace(/\)/g,"\\)")),f.attr("stroke-width",2),f.attr("stroke","none"),f.style("fill","none"),o!==Ja.parser.yy.LINETYPE.SOLID&&o!==Ja.parser.yy.LINETYPE.DOTTED||f.attr("marker-end","url("+m+"#arrowhead)"),o!==Ja.parser.yy.LINETYPE.SOLID_POINT&&o!==Ja.parser.yy.LINETYPE.DOTTED_POINT||f.attr("marker-end","url("+m+"#filled-head)"),o!==Ja.parser.yy.LINETYPE.SOLID_CROSS&&o!==Ja.parser.yy.LINETYPE.DOTTED_CROSS||f.attr("marker-end","url("+m+"#crosshead)"),(mo.showSequenceNumbers()||So.showSequenceNumbers)&&(f.attr("marker-start","url("+m+"#sequencenumber)"),t.append("text").attr("x",n).attr("y",d+4).attr("font-family","sans-serif").attr("font-size","12px").attr("text-anchor","middle").attr("textLength","16px").attr("class","sequenceNumber").text(s)),Ao.bumpVerticalPos(p),e.height+=p,e.stopy=e.starty+e.height,Ao.insert(e.fromBounds,e.starty,e.toBounds,e.stopy)}(n,a),Ao.models.addMessage(a)}catch(t){o.error("error while drawing message",t)}}[Ja.parser.yy.LINETYPE.SOLID_OPEN,Ja.parser.yy.LINETYPE.DOTTED_OPEN,Ja.parser.yy.LINETYPE.SOLID,Ja.parser.yy.LINETYPE.DOTTED,Ja.parser.yy.LINETYPE.SOLID_CROSS,Ja.parser.yy.LINETYPE.DOTTED_CROSS,Ja.parser.yy.LINETYPE.SOLID_POINT,Ja.parser.yy.LINETYPE.DOTTED_POINT].includes(t.type)&&h++})),So.mirrorActors&&(Ao.bumpVerticalPos(2*So.boxMargin),Bo(n,r,i,Ao.getVerticalPos()),Ao.bumpVerticalPos(So.boxMargin),ko(n,Ao.getVerticalPos()));var f=Ao.getBounds().bounds;o.debug("For line height fix Querying: #"+e+" .actor-line"),Object(u.selectAll)("#"+e+" .actor-line").attr("y2",f.stopy);var d=f.stopy-f.starty+2*So.diagramMarginY;So.mirrorActors&&(d=d-So.boxMargin+So.bottomMarginAdj);var p=f.stopx-f.startx+2*So.diagramMarginX;s&&n.append("text").text(s).attr("x",(f.stopx-f.startx)/2-2*So.diagramMarginX).attr("y",-25),te(n,d,p,So.useMaxWidth);var y=s?40:0;n.attr("viewBox",f.startx-So.diagramMarginX+" -"+(So.diagramMarginY+y)+" "+p+" "+(d+y)),o.debug("models:",Ao.models)}},zo=n(22),Uo=n.n(zo);function $o(t){return($o="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}var qo=function(t){return JSON.parse(JSON.stringify(t))},Wo=[],Ho={root:{relations:[],states:{},documents:{}}},Vo=Ho.root,Go=0,Xo=function(t,e,n,r,i){void 0===Vo.states[t]?Vo.states[t]={id:t,descriptions:[],type:e,doc:n,note:i}:(Vo.states[t].doc||(Vo.states[t].doc=n),Vo.states[t].type||(Vo.states[t].type=e)),r&&(o.info("Adding state ",t,r),"string"==typeof r&&Qo(t,r.trim()),"object"===$o(r)&&r.forEach((function(e){return Qo(t,e.trim())}))),i&&(Vo.states[t].note=i)},Zo=function(){Vo=(Ho={root:{relations:[],states:{},documents:{}}}).root,Vo=Ho.root,Go=0,0,ts=[]},Ko=function(t,e,n){var r=t,i=e,a="default",o="default";"[*]"===t&&(r="start"+ ++Go,a="start"),"[*]"===e&&(i="end"+Go,o="end"),Xo(r,a),Xo(i,o),Vo.relations.push({id1:r,id2:i,title:n})},Qo=function(t,e){var n=Vo.states[t],r=e;":"===r[0]&&(r=r.substr(1).trim()),n.descriptions.push(r)},Jo=0,ts=[],es="TB",ns={parseDirective:function(t,e,n){gc.parseDirective(this,t,e,n)},getConfig:function(){return he().state},addState:Xo,clear:Zo,getState:function(t){return Vo.states[t]},getStates:function(){return Vo.states},getRelations:function(){return Vo.relations},getClasses:function(){return ts},getDirection:function(){return es},addRelation:Ko,getDividerId:function(){return"divider-id-"+ ++Jo},setDirection:function(t){es=t},cleanupLabel:function(t){return":"===t.substring(0,1)?t.substr(2).trim():t.trim()},lineType:{LINE:0,DOTTED_LINE:1},relationType:{AGGREGATION:0,EXTENSION:1,COMPOSITION:2,DEPENDENCY:3},logDocuments:function(){o.info("Documents = ",Ho)},getRootDoc:function(){return Wo},setRootDoc:function(t){o.info("Setting root doc",t),Wo=t},getRootDocV2:function(){return function t(e,n,r){if("relation"===n.stmt)t(e,n.state1,!0),t(e,n.state2,!1);else if("state"===n.stmt&&"[*]"===n.id&&(n.id=r?e.id+"_start":e.id+"_end",n.start=r),n.doc){var i=[],a=0,o=[];for(a=0;a<n.doc.length;a++)if("divider"===n.doc[a].type){var s=qo(n.doc[a]);s.doc=qo(o),i.push(s),o=[]}else o.push(n.doc[a]);if(i.length>0&&o.length>0){var c={stmt:"state",id:qt(),type:"divider",doc:qo(o)};i.push(qo(c)),n.doc=i}n.doc.forEach((function(e){return t(n,e,!0)}))}}({id:"root"},{id:"root",doc:Wo},!0),{id:"root",doc:Wo}},extract:function(t){var e;e=t.doc?t.doc:t,o.info(e),Zo(),o.info("Extract",e),e.forEach((function(t){"state"===t.stmt&&Xo(t.id,t.type,t.doc,t.description,t.note),"relation"===t.stmt&&Ko(t.state1.id,t.state2.id,t.description)}))},trimColon:function(t){return t&&":"===t[0]?t.substr(1).trim():t.trim()}},rs={},is=function(t,e){rs[t]=e};function as(t,e){var n="undefined"!=typeof Symbol&&t[Symbol.iterator]||t["@@iterator"];if(!n){if(Array.isArray(t)||(n=function(t,e){if(!t)return;if("string"==typeof t)return os(t,e);var n=Object.prototype.toString.call(t).slice(8,-1);"Object"===n&&t.constructor&&(n=t.constructor.name);if("Map"===n||"Set"===n)return Array.from(t);if("Arguments"===n||/^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(n))return os(t,e)}(t))||e&&t&&"number"==typeof t.length){n&&(t=n);var r=0,i=function(){};return{s:i,n:function(){return r>=t.length?{done:!0}:{done:!1,value:t[r++]}},e:function(t){throw t},f:i}}throw new TypeError("Invalid attempt to iterate non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}var a,o=!0,s=!1;return{s:function(){n=n.call(t)},n:function(){var t=n.next();return o=t.done,t},e:function(t){s=!0,a=t},f:function(){try{o||null==n.return||n.return()}finally{if(s)throw a}}}}function os(t,e){(null==e||e>t.length)&&(e=t.length);for(var n=0,r=new Array(e);n<e;n++)r[n]=t[n];return r}var ss,cs=function(t,e){var n=t.append("text").attr("x",2*he().state.padding).attr("y",he().state.textHeight+1.3*he().state.padding).attr("font-size",he().state.fontSize).attr("class","state-title").text(e.descriptions[0]).node().getBBox(),r=n.height,i=t.append("text").attr("x",he().state.padding).attr("y",r+.4*he().state.padding+he().state.dividerMargin+he().state.textHeight).attr("class","state-description"),a=!0,o=!0;e.descriptions.forEach((function(t){a||(!function(t,e,n){var r=t.append("tspan").attr("x",2*he().state.padding).text(e);n||r.attr("dy",he().state.textHeight)}(i,t,o),o=!1),a=!1}));var s=t.append("line").attr("x1",he().state.padding).attr("y1",he().state.padding+r+he().state.dividerMargin/2).attr("y2",he().state.padding+r+he().state.dividerMargin/2).attr("class","descr-divider"),c=i.node().getBBox(),u=Math.max(c.width,n.width);return s.attr("x2",u+3*he().state.padding),t.insert("rect",":first-child").attr("x",he().state.padding).attr("y",he().state.padding).attr("width",u+2*he().state.padding).attr("height",c.height+r+2*he().state.padding).attr("rx",he().state.radius),t},us=function(t,e,n){var r,i=he().state.padding,a=2*he().state.padding,o=t.node().getBBox(),s=o.width,c=o.x,u=t.append("text").attr("x",0).attr("y",he().state.titleShift).attr("font-size",he().state.fontSize).attr("class","state-title").text(e.id),l=u.node().getBBox().width+a,h=Math.max(l,s);h===s&&(h+=a);var f=t.node().getBBox();e.doc,r=c-i,l>s&&(r=(s-h)/2+i),Math.abs(c-f.x)<i&&l>s&&(r=c-(l-s)/2);var d=1-he().state.textHeight;return t.insert("rect",":first-child").attr("x",r).attr("y",d).attr("class",n?"alt-composit":"composit").attr("width",h).attr("height",f.height+he().state.textHeight+he().state.titleShift+1).attr("rx","0"),u.attr("x",r+i),l<=s&&u.attr("x",c+(h-a)/2-l/2+i),t.insert("rect",":first-child").attr("x",r).attr("y",he().state.titleShift-he().state.textHeight-he().state.padding).attr("width",h).attr("height",3*he().state.textHeight).attr("rx",he().state.radius),t.insert("rect",":first-child").attr("x",r).attr("y",he().state.titleShift-he().state.textHeight-he().state.padding).attr("width",h).attr("height",f.height+3+2*he().state.textHeight).attr("rx",he().state.radius),t},ls=function(t,e){e.attr("class","state-note");var n=e.append("rect").attr("x",0).attr("y",he().state.padding),r=function(t,e,n,r){var i=0,a=r.append("text");a.style("text-anchor","start"),a.attr("class","noteText");var o,s=t.replace(/\r\n/g,"<br/>"),c=(s=s.replace(/\n/g,"<br/>")).split(nt.lineBreakRegex),u=1.25*he().state.noteMargin,l=as(c);try{for(l.s();!(o=l.n()).done;){var h=o.value.trim();if(h.length>0){var f=a.append("tspan");if(f.text(h),0===u)u+=f.node().getBBox().height;i+=u,f.attr("x",e+he().state.noteMargin),f.attr("y",n+i+1.25*he().state.noteMargin)}}}catch(t){l.e(t)}finally{l.f()}return{textWidth:a.node().getBBox().width,textHeight:i}}(t,0,0,e.append("g")),i=r.textWidth,a=r.textHeight;return n.attr("height",a+2*he().state.noteMargin),n.attr("width",i+2*he().state.noteMargin),n},hs=function(t,e){var n=e.id,r={id:n,label:e.id,width:0,height:0},i=t.append("g").attr("id",n).attr("class","stateGroup");"start"===e.type&&function(t){t.append("circle").attr("class","start-state").attr("r",he().state.sizeUnit).attr("cx",he().state.padding+he().state.sizeUnit).attr("cy",he().state.padding+he().state.sizeUnit)}(i),"end"===e.type&&function(t){t.append("circle").attr("class","end-state-outer").attr("r",he().state.sizeUnit+he().state.miniPadding).attr("cx",he().state.padding+he().state.sizeUnit+he().state.miniPadding).attr("cy",he().state.padding+he().state.sizeUnit+he().state.miniPadding),t.append("circle").attr("class","end-state-inner").attr("r",he().state.sizeUnit).attr("cx",he().state.padding+he().state.sizeUnit+2).attr("cy",he().state.padding+he().state.sizeUnit+2)}(i),"fork"!==e.type&&"join"!==e.type||function(t,e){var n=he().state.forkWidth,r=he().state.forkHeight;if(e.parentId){var i=n;n=r,r=i}t.append("rect").style("stroke","black").style("fill","black").attr("width",n).attr("height",r).attr("x",he().state.padding).attr("y",he().state.padding)}(i,e),"note"===e.type&&ls(e.note.text,i),"divider"===e.type&&function(t){t.append("line").style("stroke","grey").style("stroke-dasharray","3").attr("x1",he().state.textHeight).attr("class","divider").attr("x2",2*he().state.textHeight).attr("y1",0).attr("y2",0)}(i),"default"===e.type&&0===e.descriptions.length&&function(t,e){var n=t.append("text").attr("x",2*he().state.padding).attr("y",he().state.textHeight+2*he().state.padding).attr("font-size",he().state.fontSize).attr("class","state-title").text(e.id),r=n.node().getBBox();t.insert("rect",":first-child").attr("x",he().state.padding).attr("y",he().state.padding).attr("width",r.width+2*he().state.padding).attr("height",r.height+2*he().state.padding).attr("rx",he().state.radius)}(i,e),"default"===e.type&&e.descriptions.length>0&&cs(i,e);var a=i.node().getBBox();return r.width=a.width+2*he().state.padding,r.height=a.height+2*he().state.padding,is(n,r),r},fs=0;zo.parser.yy=ns;var ds={},ps=function t(e,n,r,i){var a,s=new Le.a.Graph({compound:!0,multigraph:!0}),c=!0;for(a=0;a<e.length;a++)if("relation"===e[a].stmt){c=!1;break}r?s.setGraph({rankdir:"LR",multigraph:!0,compound:!0,ranker:"tight-tree",ranksep:c?1:ss.edgeLengthFactor,nodeSep:c?1:50,isMultiGraph:!0}):s.setGraph({rankdir:"TB",multigraph:!0,compound:!0,ranksep:c?1:ss.edgeLengthFactor,nodeSep:c?1:50,ranker:"tight-tree",isMultiGraph:!0}),s.setDefaultEdgeLabel((function(){return{}})),ns.extract(e);for(var l=ns.getStates(),h=ns.getRelations(),f=Object.keys(l),d=0;d<f.length;d++){var p=l[f[d]];r&&(p.parentId=r);var y=void 0;if(p.doc){var g=n.append("g").attr("id",p.id).attr("class","stateGroup");y=t(p.doc,g,p.id,!i);var m=(g=us(g,p,i)).node().getBBox();y.width=m.width,y.height=m.height+ss.padding/2,ds[p.id]={y:ss.compositTitleSize}}else y=hs(n,p);if(p.note){var v={descriptions:[],id:p.id+"-note",note:p.note,type:"note"},b=hs(n,v);"left of"===p.note.position?(s.setNode(y.id+"-note",b),s.setNode(y.id,y)):(s.setNode(y.id,y),s.setNode(y.id+"-note",b)),s.setParent(y.id,y.id+"-group"),s.setParent(y.id+"-note",y.id+"-group")}else s.setNode(y.id,y)}o.debug("Count=",s.nodeCount(),s);var x=0;h.forEach((function(t){var e;x++,o.debug("Setting edge",t),s.setEdge(t.id1,t.id2,{relation:t,width:(e=t.title,e?e.length*ss.fontSizeFactor:1),height:ss.labelHeight*nt.getRows(t.title).length,labelpos:"c"},"id"+x)})),Be.a.layout(s),o.debug("Graph after layout",s.nodes());var _=n.node();s.nodes().forEach((function(t){void 0!==t&&void 0!==s.node(t)?(o.warn("Node "+t+": "+JSON.stringify(s.node(t))),Object(u.select)("#"+_.id+" #"+t).attr("transform","translate("+(s.node(t).x-s.node(t).width/2)+","+(s.node(t).y+(ds[t]?ds[t].y:0)-s.node(t).height/2)+" )"),Object(u.select)("#"+_.id+" #"+t).attr("data-x-shift",s.node(t).x-s.node(t).width/2),document.querySelectorAll("#"+_.id+" #"+t+" .divider").forEach((function(t){var e=t.parentElement,n=0,r=0;e&&(e.parentElement&&(n=e.parentElement.getBBox().width),r=parseInt(e.getAttribute("data-x-shift"),10),Number.isNaN(r)&&(r=0)),t.setAttribute("x1",0-r+8),t.setAttribute("x2",n-r-8)}))):o.debug("No Node "+t+": "+JSON.stringify(s.node(t)))}));var k=_.getBBox();s.edges().forEach((function(t){void 0!==t&&void 0!==s.edge(t)&&(o.debug("Edge "+t.v+" -> "+t.w+": "+JSON.stringify(s.edge(t))),function(t,e,n){e.points=e.points.filter((function(t){return!Number.isNaN(t.y)}));var r=e.points,i=Object(u.line)().x((function(t){return t.x})).y((function(t){return t.y})).curve(u.curveBasis),a=t.append("path").attr("d",i(r)).attr("id","edge"+fs).attr("class","transition"),s="";if(he().state.arrowMarkerAbsolute&&(s=(s=(s=window.location.protocol+"//"+window.location.host+window.location.pathname+window.location.search).replace(/\(/g,"\\(")).replace(/\)/g,"\\)")),a.attr("marker-end","url("+s+"#"+function(t){switch(t){case ns.relationType.AGGREGATION:return"aggregation";case ns.relationType.EXTENSION:return"extension";case ns.relationType.COMPOSITION:return"composition";case ns.relationType.DEPENDENCY:return"dependency"}}(ns.relationType.DEPENDENCY)+"End)"),void 0!==n.title){for(var c=t.append("g").attr("class","stateLabel"),l=ne.calcLabelPosition(e.points),h=l.x,f=l.y,d=nt.getRows(n.title),p=0,y=[],g=0,m=0,v=0;v<=d.length;v++){var b=c.append("text").attr("text-anchor","middle").text(d[v]).attr("x",h).attr("y",f+p),x=b.node().getBBox();if(g=Math.max(g,x.width),m=Math.min(m,x.x),o.info(x.x,h,f+p),0===p){var _=b.node().getBBox();p=_.height,o.info("Title height",p,f)}y.push(b)}var k=p*d.length;if(d.length>1){var w=(d.length-1)*p*.5;y.forEach((function(t,e){return t.attr("y",f+e*p-w)})),k=p*d.length}var T=c.node().getBBox();c.insert("rect",":first-child").attr("class","box").attr("x",h-g/2-he().state.padding/2).attr("y",f-k/2-he().state.padding/2-3.5).attr("width",g+he().state.padding).attr("height",k+he().state.padding),o.info(T)}fs++}(n,s.edge(t),s.edge(t).relation))})),k=_.getBBox();var w={id:r||"root",label:r||"root",width:0,height:0};return w.width=k.width+2*ss.padding,w.height=k.height+2*ss.padding,o.debug("Doc rendered",w,s),w},ys=function(){},gs=function(t,e){ss=he().state,zo.parser.yy.clear(),zo.parser.parse(t),o.debug("Rendering diagram "+t);var n=Object(u.select)("[id='".concat(e,"']"));n.append("defs").append("marker").attr("id","dependencyEnd").attr("refX",19).attr("refY",7).attr("markerWidth",20).attr("markerHeight",28).attr("orient","auto").append("path").attr("d","M 19,7 L9,13 L14,7 L9,1 Z"),new Le.a.Graph({multigraph:!0,compound:!0,rankdir:"RL"}).setDefaultEdgeLabel((function(){return{}}));var r=ns.getRootDoc();ps(r,n,void 0,!1);var i=ss.padding,a=n.node().getBBox(),s=a.width+2*i,c=a.height+2*i;te(n,c,1.75*s,ss.useMaxWidth),n.attr("viewBox","".concat(a.x-ss.padding,"  ").concat(a.y-ss.padding," ")+s+" "+c)},ms={},vs={},bs=function(t,e,n,r){if("root"!==n.id){var i="rect";!0===n.start&&(i="start"),!1===n.start&&(i="end"),"default"!==n.type&&(i=n.type),vs[n.id]||(vs[n.id]={id:n.id,shape:i,description:n.id,classes:"statediagram-state"}),n.description&&(Array.isArray(vs[n.id].description)?(vs[n.id].shape="rectWithTitle",vs[n.id].description.push(n.description)):vs[n.id].description.length>0?(vs[n.id].shape="rectWithTitle",vs[n.id].description===n.id?vs[n.id].description=[n.description]:vs[n.id].description=[vs[n.id].description,n.description]):(vs[n.id].shape="rect",vs[n.id].description=n.description)),!vs[n.id].type&&n.doc&&(o.info("Setting cluster for ",n.id,ks(n)),vs[n.id].type="group",vs[n.id].dir=ks(n),vs[n.id].shape="divider"===n.type?"divider":"roundedWithTitle",vs[n.id].classes=vs[n.id].classes+" "+(r?"statediagram-cluster statediagram-cluster-alt":"statediagram-cluster"));var a={labelStyle:"",shape:vs[n.id].shape,labelText:vs[n.id].description,classes:vs[n.id].classes,style:"",id:n.id,dir:vs[n.id].dir,domId:"state-"+n.id+"-"+xs,type:vs[n.id].type,padding:15};if(n.note){var s={labelStyle:"",shape:"note",labelText:n.note.text,classes:"statediagram-note",style:"",id:n.id+"----note-"+xs,domId:"state-"+n.id+"----note-"+xs,type:vs[n.id].type,padding:15},c={labelStyle:"",shape:"noteGroup",labelText:n.note.text,classes:vs[n.id].classes,style:"",id:n.id+"----parent",domId:"state-"+n.id+"----parent-"+xs,type:"group",padding:0};xs++,t.setNode(n.id+"----parent",c),t.setNode(s.id,s),t.setNode(n.id,a),t.setParent(n.id,n.id+"----parent"),t.setParent(s.id,n.id+"----parent");var u=n.id,l=s.id;"left of"===n.note.position&&(u=s.id,l=n.id),t.setEdge(u,l,{arrowhead:"none",arrowType:"",style:"fill:none",labelStyle:"",classes:"transition note-edge",arrowheadStyle:"fill: #333",labelpos:"c",labelType:"text",thickness:"normal"})}else t.setNode(n.id,a)}e&&"root"!==e.id&&(o.trace("Setting node ",n.id," to be child of its parent ",e.id),t.setParent(n.id,e.id)),n.doc&&(o.trace("Adding nodes children "),_s(t,n,n.doc,!r))},xs=0,_s=function(t,e,n,r){o.trace("items",n),n.forEach((function(n){if("state"===n.stmt||"default"===n.stmt)bs(t,e,n,r);else if("relation"===n.stmt){bs(t,e,n.state1,r),bs(t,e,n.state2,r);var i={id:"edge"+xs,arrowhead:"normal",arrowTypeEnd:"arrow_barb",style:"fill:none",labelStyle:"",label:n.description,arrowheadStyle:"fill: #333",labelpos:"c",labelType:"text",thickness:"normal",classes:"transition"},a=n.state1.id,o=n.state2.id;t.setEdge(a,o,i,xs),xs++}}))},ks=function(t,e){var n=e||"TB";if(t.doc)for(var r=0;r<t.doc.length;r++){var i=t.doc[r];"dir"===i.stmt&&(n=i.value)}return n},ws=function(t){for(var e=Object.keys(t),n=0;n<e.length;n++)ms[e[n]]=t[e[n]]},Ts=function(t,e){o.info("Drawing state diagram (v2)",e),ns.clear(),vs={};var n=Uo.a.parser;n.yy=ns,n.parse(t);var r=ns.getDirection();void 0===r&&(r="LR");var i=he().state,a=i.nodeSpacing||50,s=i.rankSpacing||50;o.info(ns.getRootDocV2()),ns.extract(ns.getRootDocV2()),o.info(ns.getRootDocV2());var c=new Le.a.Graph({multigraph:!0,compound:!0}).setGraph({rankdir:ks(ns.getRootDocV2()),nodesep:a,ranksep:s,marginx:8,marginy:8}).setDefaultEdgeLabel((function(){return{}}));bs(c,void 0,ns.getRootDocV2(),!0);var l=Object(u.select)('[id="'.concat(e,'"]')),h=Object(u.select)("#"+e+" g");Rn(h,c,["barb"],"statediagram",e);var f=l.node().getBBox(),d=f.width+16,p=f.height+16;l.attr("class","statediagram");var y=l.node().getBBox();te(l,p,1.75*d,i.useMaxWidth);var g="".concat(y.x-8," ").concat(y.y-8," ").concat(d," ").concat(p);o.debug("viewBox ".concat(g)),l.attr("viewBox",g);for(var m=document.querySelectorAll('[id="'+e+'"] .edgeLabel .label'),v=0;v<m.length;v++){var b=m[v],x=b.getBBox(),_=document.createElementNS("http://www.w3.org/2000/svg","rect");_.setAttribute("rx",0),_.setAttribute("ry",0),_.setAttribute("width",x.width),_.setAttribute("height",x.height),b.insertBefore(_,b.firstChild)}};function Es(t){return function(t){if(Array.isArray(t))return Cs(t)}(t)||function(t){if("undefined"!=typeof Symbol&&null!=t[Symbol.iterator]||null!=t["@@iterator"])return Array.from(t)}(t)||function(t,e){if(!t)return;if("string"==typeof t)return Cs(t,e);var n=Object.prototype.toString.call(t).slice(8,-1);"Object"===n&&t.constructor&&(n=t.constructor.name);if("Map"===n||"Set"===n)return Array.from(t);if("Arguments"===n||/^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(n))return Cs(t,e)}(t)||function(){throw new TypeError("Invalid attempt to spread non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}()}function Cs(t,e){(null==e||e>t.length)&&(e=t.length);for(var n=0,r=new Array(e);n<e;n++)r[n]=t[n];return r}var Ss="",As="",Ms=[],Os=[],Ns=[],Bs=function(){for(var t=!0,e=0;e<Ns.length;e++)Ns[e].processed,t=t&&Ns[e].processed;return t},Ds={parseDirective:function(t,e,n){gc.parseDirective(this,t,e,n)},getConfig:function(){return he().journey},clear:function(){Ms.length=0,Os.length=0,As="",Ss="",Ns.length=0},setTitle:function(t){Ss=t},getTitle:function(){return Ss},addSection:function(t){As=t,Ms.push(t)},getSections:function(){return Ms},getTasks:function(){for(var t=Bs(),e=0;!t&&e<100;)t=Bs(),e++;return Os.push.apply(Os,Ns),Os},addTask:function(t,e){var n=e.substr(1).split(":"),r=0,i=[];1===n.length?(r=Number(n[0]),i=[]):(r=Number(n[0]),i=n[1].split(","));var a=i.map((function(t){return t.trim()})),o={section:As,type:As,people:a,task:t,score:r};Ns.push(o)},addTaskOrg:function(t){var e={section:As,type:As,description:t,task:t,classes:[]};Os.push(e)},getActors:function(){return t=[],Os.forEach((function(e){e.people&&t.push.apply(t,Es(e.people))})),Es(new Set(t)).sort();var t}},Ls=n(28),Is=n.n(Ls),Rs=function(t,e){var n=t.append("rect");return n.attr("x",e.x),n.attr("y",e.y),n.attr("fill",e.fill),n.attr("stroke",e.stroke),n.attr("width",e.width),n.attr("height",e.height),n.attr("rx",e.rx),n.attr("ry",e.ry),void 0!==e.class&&n.attr("class",e.class),n},Fs=function(t,e){var n=t.append("circle");return n.attr("cx",e.cx),n.attr("cy",e.cy),n.attr("class","actor-"+e.pos),n.attr("fill",e.fill),n.attr("stroke",e.stroke),n.attr("r",e.r),void 0!==n.class&&n.attr("class",n.class),void 0!==e.title&&n.append("title").text(e.title),n},Ps=function(t,e){var n=e.text.replace(/<br\s*\/?>/gi," "),r=t.append("text");r.attr("x",e.x),r.attr("y",e.y),r.attr("class","legend"),r.style("text-anchor",e.anchor),void 0!==e.class&&r.attr("class",e.class);var i=r.append("tspan");return i.attr("x",e.x+2*e.textMargin),i.text(n),r},js=-1,Ys=function(){return{x:0,y:0,width:100,anchor:"start",height:100,rx:0,ry:0}},zs=function(){function t(t,e,n,i,a,o,s,c){r(e.append("text").attr("x",n+a/2).attr("y",i+o/2+5).style("font-color",c).style("text-anchor","middle").text(t),s)}function e(t,e,n,i,a,o,s,c,u){for(var l=c.taskFontSize,h=c.taskFontFamily,f=t.split(/<br\s*\/?>/gi),d=0;d<f.length;d++){var p=d*l-l*(f.length-1)/2,y=e.append("text").attr("x",n+a/2).attr("y",i).attr("fill",u).style("text-anchor","middle").style("font-size",l).style("font-family",h);y.append("tspan").attr("x",n+a/2).attr("dy",p).text(f[d]),y.attr("y",i+o/2).attr("dominant-baseline","central").attr("alignment-baseline","central"),r(y,s)}}function n(t,n,i,a,o,s,c,u){var l=n.append("switch"),h=l.append("foreignObject").attr("x",i).attr("y",a).attr("width",o).attr("height",s).attr("position","fixed").append("xhtml:div").style("display","table").style("height","100%").style("width","100%");h.append("div").attr("class","label").style("display","table-cell").style("text-align","center").style("vertical-align","middle").text(t),e(t,l,i,a,o,s,c,u),r(h,c)}function r(t,e){for(var n in e)n in e&&t.attr(n,e[n])}return function(r){return"fo"===r.textPlacement?n:"old"===r.textPlacement?t:e}}(),Us=Fs,$s=function(t,e,n){var r=t.append("g"),i=Ys();i.x=e.x,i.y=e.y,i.fill=e.fill,i.width=n.width,i.height=n.height,i.class="journey-section section-type-"+e.num,i.rx=3,i.ry=3,Rs(r,i),zs(n)(e.text,r,i.x,i.y,i.width,i.height,{class:"journey-section section-type-"+e.num},n,e.colour)},qs=Ps,Ws=function(t,e,n){var r=e.x+n.width/2,i=t.append("g");js++;var a,o,s;i.append("line").attr("id","task"+js).attr("x1",r).attr("y1",e.y).attr("x2",r).attr("y2",450).attr("class","task-line").attr("stroke-width","1px").attr("stroke-dasharray","4 2").attr("stroke","#666"),a=i,o={cx:r,cy:300+30*(5-e.score),score:e.score},a.append("circle").attr("cx",o.cx).attr("cy",o.cy).attr("class","face").attr("r",15).attr("stroke-width",2).attr("overflow","visible"),(s=a.append("g")).append("circle").attr("cx",o.cx-5).attr("cy",o.cy-5).attr("r",1.5).attr("stroke-width",2).attr("fill","#666").attr("stroke","#666"),s.append("circle").attr("cx",o.cx+5).attr("cy",o.cy-5).attr("r",1.5).attr("stroke-width",2).attr("fill","#666").attr("stroke","#666"),o.score>3?function(t){var e=Object(u.arc)().startAngle(Math.PI/2).endAngle(Math.PI/2*3).innerRadius(7.5).outerRadius(15/2.2);t.append("path").attr("class","mouth").attr("d",e).attr("transform","translate("+o.cx+","+(o.cy+2)+")")}(s):o.score<3?function(t){var e=Object(u.arc)().startAngle(3*Math.PI/2).endAngle(Math.PI/2*5).innerRadius(7.5).outerRadius(15/2.2);t.append("path").attr("class","mouth").attr("d",e).attr("transform","translate("+o.cx+","+(o.cy+7)+")")}(s):function(t){t.append("line").attr("class","mouth").attr("stroke",2).attr("x1",o.cx-5).attr("y1",o.cy+7).attr("x2",o.cx+5).attr("y2",o.cy+7).attr("class","mouth").attr("stroke-width","1px").attr("stroke","#666")}(s);var c=Ys();c.x=e.x,c.y=e.y,c.fill=e.fill,c.width=n.width,c.height=n.height,c.class="task task-type-"+e.num,c.rx=3,c.ry=3,Rs(i,c);var l=e.x+14;e.people.forEach((function(t){var n=e.actors[t].color,r={cx:l,cy:e.y,r:7,fill:n,stroke:"#000",title:t,pos:e.actors[t].position};Fs(i,r),l+=10})),zs(n)(e.task,i,c.x,c.y,c.width,c.height,{class:"task"},n,e.colour)},Hs=function(t){t.append("defs").append("marker").attr("id","arrowhead").attr("refX",5).attr("refY",2).attr("markerWidth",6).attr("markerHeight",4).attr("orient","auto").append("path").attr("d","M 0,0 V 4 L6,2 Z")};Ls.parser.yy=Ds;var Vs={};var Gs=he().journey,Xs=he().journey.leftMargin,Zs={data:{startx:void 0,stopx:void 0,starty:void 0,stopy:void 0},verticalPos:0,sequenceItems:[],init:function(){this.sequenceItems=[],this.data={startx:void 0,stopx:void 0,starty:void 0,stopy:void 0},this.verticalPos=0},updateVal:function(t,e,n,r){void 0===t[e]?t[e]=n:t[e]=r(n,t[e])},updateBounds:function(t,e,n,r){var i,a=he().journey,o=this,s=0;this.sequenceItems.forEach((function(c){s++;var u=o.sequenceItems.length-s+1;o.updateVal(c,"starty",e-u*a.boxMargin,Math.min),o.updateVal(c,"stopy",r+u*a.boxMargin,Math.max),o.updateVal(Zs.data,"startx",t-u*a.boxMargin,Math.min),o.updateVal(Zs.data,"stopx",n+u*a.boxMargin,Math.max),"activation"!==i&&(o.updateVal(c,"startx",t-u*a.boxMargin,Math.min),o.updateVal(c,"stopx",n+u*a.boxMargin,Math.max),o.updateVal(Zs.data,"starty",e-u*a.boxMargin,Math.min),o.updateVal(Zs.data,"stopy",r+u*a.boxMargin,Math.max))}))},insert:function(t,e,n,r){var i=Math.min(t,n),a=Math.max(t,n),o=Math.min(e,r),s=Math.max(e,r);this.updateVal(Zs.data,"startx",i,Math.min),this.updateVal(Zs.data,"starty",o,Math.min),this.updateVal(Zs.data,"stopx",a,Math.max),this.updateVal(Zs.data,"stopy",s,Math.max),this.updateBounds(i,o,a,s)},bumpVerticalPos:function(t){this.verticalPos=this.verticalPos+t,this.data.stopy=this.verticalPos},getVerticalPos:function(){return this.verticalPos},getBounds:function(){return this.data}},Ks=Gs.sectionFills,Qs=Gs.sectionColours,Js=function(t,e,n){for(var r=he().journey,i="",a=n+(2*r.height+r.diagramMarginY),o=0,s="#CCC",c="black",u=0,l=0;l<e.length;l++){var h=e[l];if(i!==h.section){s=Ks[o%Ks.length],u=o%Ks.length,c=Qs[o%Qs.length];var f={x:l*r.taskMargin+l*r.width+Xs,y:50,text:h.section,fill:s,num:u,colour:c};$s(t,f,r),i=h.section,o++}var d=h.people.reduce((function(t,e){return Vs[e]&&(t[e]=Vs[e]),t}),{});h.x=l*r.taskMargin+l*r.width+Xs,h.y=a,h.width=r.diagramMarginX,h.height=r.diagramMarginY,h.colour=c,h.fill=s,h.num=u,h.actors=d,Ws(t,h,r),Zs.insert(h.x,h.y,h.x+h.width+r.taskMargin,450)}},tc=function(t){Object.keys(t).forEach((function(e){Gs[e]=t[e]}))},ec=function(t,e){var n=he().journey;Ls.parser.yy.clear(),Ls.parser.parse(t+"\n"),Zs.init();var r=Object(u.select)("#"+e);r.attr("xmlns:xlink","http://www.w3.org/1999/xlink"),Hs(r);var i=Ls.parser.yy.getTasks(),a=Ls.parser.yy.getTitle(),o=Ls.parser.yy.getActors();for(var s in Vs)delete Vs[s];var c=0;o.forEach((function(t){Vs[t]={color:n.actorColours[c%n.actorColours.length],position:c},c++})),function(t){var e=he().journey,n=60;Object.keys(Vs).forEach((function(r){var i=Vs[r].color,a={cx:20,cy:n,r:7,fill:i,stroke:"#000",pos:Vs[r].position};Us(t,a);var o={x:40,y:n+7,fill:"#666",text:r,textMargin:5|e.boxTextMargin};qs(t,o),n+=20}))}(r),Zs.insert(0,0,Xs,50*Object.keys(Vs).length),Js(r,i,0);var l=Zs.getBounds();a&&r.append("text").text(a).attr("x",Xs).attr("font-size","4ex").attr("font-weight","bold").attr("y",25);var h=l.stopy-l.starty+2*n.diagramMarginY,f=Xs+l.stopx+2*n.diagramMarginX;te(r,h,f,n.useMaxWidth),r.append("line").attr("x1",Xs).attr("y1",4*n.height).attr("x2",f-Xs-4).attr("y2",4*n.height).attr("stroke-width",4).attr("stroke","black").attr("marker-end","url(#arrowhead)");var d=a?70:0;r.attr("viewBox","".concat(l.startx," -25 ").concat(f," ").concat(h+d)),r.attr("preserveAspectRatio","xMinYMin meet"),r.attr("height",h+d+25)},nc={},rc=function(t){Object.keys(t).forEach((function(e){nc[e]=t[e]}))},ic=function(t,e){try{o.debug("Renering svg for syntax error\n");var n=Object(u.select)("#"+t),r=n.append("g");r.append("path").attr("class","error-icon").attr("d","m411.313,123.313c6.25-6.25 6.25-16.375 0-22.625s-16.375-6.25-22.625,0l-32,32-9.375,9.375-20.688-20.688c-12.484-12.5-32.766-12.5-45.25,0l-16,16c-1.261,1.261-2.304,2.648-3.31,4.051-21.739-8.561-45.324-13.426-70.065-13.426-105.867,0-192,86.133-192,192s86.133,192 192,192 192-86.133 192-192c0-24.741-4.864-48.327-13.426-70.065 1.402-1.007 2.79-2.049 4.051-3.31l16-16c12.5-12.492 12.5-32.758 0-45.25l-20.688-20.688 9.375-9.375 32.001-31.999zm-219.313,100.687c-52.938,0-96,43.063-96,96 0,8.836-7.164,16-16,16s-16-7.164-16-16c0-70.578 57.422-128 128-128 8.836,0 16,7.164 16,16s-7.164,16-16,16z"),r.append("path").attr("class","error-icon").attr("d","m459.02,148.98c-6.25-6.25-16.375-6.25-22.625,0s-6.25,16.375 0,22.625l16,16c3.125,3.125 7.219,4.688 11.313,4.688 4.094,0 8.188-1.563 11.313-4.688 6.25-6.25 6.25-16.375 0-22.625l-16.001-16z"),r.append("path").attr("class","error-icon").attr("d","m340.395,75.605c3.125,3.125 7.219,4.688 11.313,4.688 4.094,0 8.188-1.563 11.313-4.688 6.25-6.25 6.25-16.375 0-22.625l-16-16c-6.25-6.25-16.375-6.25-22.625,0s-6.25,16.375 0,22.625l15.999,16z"),r.append("path").attr("class","error-icon").attr("d","m400,64c8.844,0 16-7.164 16-16v-32c0-8.836-7.156-16-16-16-8.844,0-16,7.164-16,16v32c0,8.836 7.156,16 16,16z"),r.append("path").attr("class","error-icon").attr("d","m496,96.586h-32c-8.844,0-16,7.164-16,16 0,8.836 7.156,16 16,16h32c8.844,0 16-7.164 16-16 0-8.836-7.156-16-16-16z"),r.append("path").attr("class","error-icon").attr("d","m436.98,75.605c3.125,3.125 7.219,4.688 11.313,4.688 4.094,0 8.188-1.563 11.313-4.688l32-32c6.25-6.25 6.25-16.375 0-22.625s-16.375-6.25-22.625,0l-32,32c-6.251,6.25-6.251,16.375-0.001,22.625z"),r.append("text").attr("class","error-text").attr("x",1240).attr("y",250).attr("font-size","150px").style("text-anchor","middle").text("Syntax error in graph"),r.append("text").attr("class","error-text").attr("x",1050).attr("y",400).attr("font-size","100px").style("text-anchor","middle").text("mermaid version "+e),n.attr("height",100),n.attr("width",400),n.attr("viewBox","768 0 512 512")}catch(t){o.error("Error while rendering info diagram"),o.error(t.message)}},ac=function(t){return"g.classGroup text {\n  fill: ".concat(t.nodeBorder,";\n  fill: ").concat(t.classText,";\n  stroke: none;\n  font-family: ").concat(t.fontFamily,";\n  font-size: 10px;\n\n  .title {\n    font-weight: bolder;\n  }\n\n}\n\n.nodeLabel, .edgeLabel {\n  color: ").concat(t.classText,";\n}\n.edgeLabel .label rect {\n  fill: ").concat(t.mainBkg,";\n}\n.label text {\n  fill: ").concat(t.classText,";\n}\n.edgeLabel .label span {\n  background: ").concat(t.mainBkg,";\n}\n\n.classTitle {\n  font-weight: bolder;\n}\n.node rect,\n  .node circle,\n  .node ellipse,\n  .node polygon,\n  .node path {\n    fill: ").concat(t.mainBkg,";\n    stroke: ").concat(t.nodeBorder,";\n    stroke-width: 1px;\n  }\n\n\n.divider {\n  stroke: ").concat(t.nodeBorder,";\n  stroke: 1;\n}\n\ng.clickable {\n  cursor: pointer;\n}\n\ng.classGroup rect {\n  fill: ").concat(t.mainBkg,";\n  stroke: ").concat(t.nodeBorder,";\n}\n\ng.classGroup line {\n  stroke: ").concat(t.nodeBorder,";\n  stroke-width: 1;\n}\n\n.classLabel .box {\n  stroke: none;\n  stroke-width: 0;\n  fill: ").concat(t.mainBkg,";\n  opacity: 0.5;\n}\n\n.classLabel .label {\n  fill: ").concat(t.nodeBorder,";\n  font-size: 10px;\n}\n\n.relation {\n  stroke: ").concat(t.lineColor,";\n  stroke-width: 1;\n  fill: none;\n}\n\n.dashed-line{\n  stroke-dasharray: 3;\n}\n\n#compositionStart, .composition {\n  fill: ").concat(t.lineColor," !important;\n  stroke: ").concat(t.lineColor," !important;\n  stroke-width: 1;\n}\n\n#compositionEnd, .composition {\n  fill: ").concat(t.lineColor," !important;\n  stroke: ").concat(t.lineColor," !important;\n  stroke-width: 1;\n}\n\n#dependencyStart, .dependency {\n  fill: ").concat(t.lineColor," !important;\n  stroke: ").concat(t.lineColor," !important;\n  stroke-width: 1;\n}\n\n#dependencyStart, .dependency {\n  fill: ").concat(t.lineColor," !important;\n  stroke: ").concat(t.lineColor," !important;\n  stroke-width: 1;\n}\n\n#extensionStart, .extension {\n  fill: ").concat(t.lineColor," !important;\n  stroke: ").concat(t.lineColor," !important;\n  stroke-width: 1;\n}\n\n#extensionEnd, .extension {\n  fill: ").concat(t.lineColor," !important;\n  stroke: ").concat(t.lineColor," !important;\n  stroke-width: 1;\n}\n\n#aggregationStart, .aggregation {\n  fill: ").concat(t.mainBkg," !important;\n  stroke: ").concat(t.lineColor," !important;\n  stroke-width: 1;\n}\n\n#aggregationEnd, .aggregation {\n  fill: ").concat(t.mainBkg," !important;\n  stroke: ").concat(t.lineColor," !important;\n  stroke-width: 1;\n}\n\n.edgeTerminals {\n  font-size: 11px;\n}\n\n")},oc=function(t){return".label {\n    font-family: ".concat(t.fontFamily,";\n    color: ").concat(t.nodeTextColor||t.textColor,";\n  }\n  .cluster-label text {\n    fill: ").concat(t.titleColor,";\n  }\n  .cluster-label span {\n    color: ").concat(t.titleColor,";\n  }\n\n  .label text,span {\n    fill: ").concat(t.nodeTextColor||t.textColor,";\n    color: ").concat(t.nodeTextColor||t.textColor,";\n  }\n\n  .node rect,\n  .node circle,\n  .node ellipse,\n  .node polygon,\n  .node path {\n    fill: ").concat(t.mainBkg,";\n    stroke: ").concat(t.nodeBorder,";\n    stroke-width: 1px;\n  }\n\n  .node .label {\n    text-align: center;\n  }\n  .node.clickable {\n    cursor: pointer;\n  }\n\n  .arrowheadPath {\n    fill: ").concat(t.arrowheadColor,";\n  }\n\n  .edgePath .path {\n    stroke: ").concat(t.lineColor,";\n    stroke-width: 2.0px;\n  }\n\n  .flowchart-link {\n    stroke: ").concat(t.lineColor,";\n    fill: none;\n  }\n\n  .edgeLabel {\n    background-color: ").concat(t.edgeLabelBackground,";\n    rect {\n      opacity: 0.5;\n      background-color: ").concat(t.edgeLabelBackground,";\n      fill: ").concat(t.edgeLabelBackground,";\n    }\n    text-align: center;\n  }\n\n  .cluster rect {\n    fill: ").concat(t.clusterBkg,";\n    stroke: ").concat(t.clusterBorder,";\n    stroke-width: 1px;\n  }\n\n  .cluster text {\n    fill: ").concat(t.titleColor,";\n  }\n\n  .cluster span {\n    color: ").concat(t.titleColor,";\n  }\n  // .cluster div {\n  //   color: ").concat(t.titleColor,";\n  // }\n\n  div.mermaidTooltip {\n    position: absolute;\n    text-align: center;\n    max-width: 200px;\n    padding: 2px;\n    font-family: ").concat(t.fontFamily,";\n    font-size: 12px;\n    background: ").concat(t.tertiaryColor,";\n    border: 1px solid ").concat(t.border2,";\n    border-radius: 2px;\n    pointer-events: none;\n    z-index: 100;\n  }\n")},sc=function(t){return"\ndefs #statediagram-barbEnd {\n    fill: ".concat(t.transitionColor,";\n    stroke: ").concat(t.transitionColor,";\n  }\ng.stateGroup text {\n  fill: ").concat(t.nodeBorder,";\n  stroke: none;\n  font-size: 10px;\n}\ng.stateGroup text {\n  fill: ").concat(t.textColor,";\n  stroke: none;\n  font-size: 10px;\n\n}\ng.stateGroup .state-title {\n  font-weight: bolder;\n  fill: ").concat(t.stateLabelColor,";\n}\n\ng.stateGroup rect {\n  fill: ").concat(t.mainBkg,";\n  stroke: ").concat(t.nodeBorder,";\n}\n\ng.stateGroup line {\n  stroke: ").concat(t.lineColor,";\n  stroke-width: 1;\n}\n\n.transition {\n  stroke: ").concat(t.transitionColor,";\n  stroke-width: 1;\n  fill: none;\n}\n\n.stateGroup .composit {\n  fill: ").concat(t.background,";\n  border-bottom: 1px\n}\n\n.stateGroup .alt-composit {\n  fill: #e0e0e0;\n  border-bottom: 1px\n}\n\n.state-note {\n  stroke: ").concat(t.noteBorderColor,";\n  fill: ").concat(t.noteBkgColor,";\n\n  text {\n    fill: ").concat(t.noteTextColor,";\n    stroke: none;\n    font-size: 10px;\n  }\n}\n\n.stateLabel .box {\n  stroke: none;\n  stroke-width: 0;\n  fill: ").concat(t.mainBkg,";\n  opacity: 0.5;\n}\n\n.edgeLabel .label rect {\n  fill: ").concat(t.labelBackgroundColor,";\n  opacity: 0.5;\n}\n.edgeLabel .label text {\n  fill: ").concat(t.transitionLabelColor||t.tertiaryTextColor,";\n}\n.label div .edgeLabel {\n  color: ").concat(t.transitionLabelColor||t.tertiaryTextColor,";\n}\n\n.stateLabel text {\n  fill: ").concat(t.stateLabelColor,";\n  font-size: 10px;\n  font-weight: bold;\n}\n\n.node circle.state-start {\n  fill: ").concat(t.specialStateColor,";\n  stroke: ").concat(t.specialStateColor,";\n}\n\n.node .fork-join {\n  fill: ").concat(t.specialStateColor,";\n  stroke: ").concat(t.specialStateColor,";\n}\n\n.node circle.state-end {\n  fill: ").concat(t.innerEndBackground,";\n  stroke: ").concat(t.background,";\n  stroke-width: 1.5\n}\n.end-state-inner {\n  fill: ").concat(t.compositeBackground||t.background,";\n  // stroke: ").concat(t.background,";\n  stroke-width: 1.5\n}\n\n.node rect {\n  fill: ").concat(t.stateBkg||t.mainBkg,";\n  stroke: ").concat(t.stateBorder||t.nodeBorder,";\n  stroke-width: 1px;\n}\n.node polygon {\n  fill: ").concat(t.mainBkg,";\n  stroke: ").concat(t.stateBorder||t.nodeBorder,";;\n  stroke-width: 1px;\n}\n#statediagram-barbEnd {\n  fill: ").concat(t.lineColor,";\n}\n\n.statediagram-cluster rect {\n  fill: ").concat(t.compositeTitleBackground,";\n  stroke: ").concat(t.stateBorder||t.nodeBorder,";\n  stroke-width: 1px;\n}\n\n.cluster-label, .nodeLabel {\n  color: ").concat(t.stateLabelColor,";\n}\n\n.statediagram-cluster rect.outer {\n  rx: 5px;\n  ry: 5px;\n}\n.statediagram-state .divider {\n  stroke: ").concat(t.stateBorder||t.nodeBorder,";\n}\n\n.statediagram-state .title-state {\n  rx: 5px;\n  ry: 5px;\n}\n.statediagram-cluster.statediagram-cluster .inner {\n  fill: ").concat(t.compositeBackground||t.background,";\n}\n.statediagram-cluster.statediagram-cluster-alt .inner {\n  fill: ").concat(t.altBackground?t.altBackground:"#efefef",";\n}\n\n.statediagram-cluster .inner {\n  rx:0;\n  ry:0;\n}\n\n.statediagram-state rect.basic {\n  rx: 5px;\n  ry: 5px;\n}\n.statediagram-state rect.divider {\n  stroke-dasharray: 10,10;\n  fill: ").concat(t.altBackground?t.altBackground:"#efefef",";\n}\n\n.note-edge {\n  stroke-dasharray: 5;\n}\n\n.statediagram-note rect {\n  fill: ").concat(t.noteBkgColor,";\n  stroke: ").concat(t.noteBorderColor,";\n  stroke-width: 1px;\n  rx: 0;\n  ry: 0;\n}\n.statediagram-note rect {\n  fill: ").concat(t.noteBkgColor,";\n  stroke: ").concat(t.noteBorderColor,";\n  stroke-width: 1px;\n  rx: 0;\n  ry: 0;\n}\n\n.statediagram-note text {\n  fill: ").concat(t.noteTextColor,";\n}\n\n.statediagram-note .nodeLabel {\n  color: ").concat(t.noteTextColor,";\n}\n.statediagram .edgeLabel {\n  color: red; // ").concat(t.noteTextColor,";\n}\n\n#dependencyStart, #dependencyEnd {\n  fill: ").concat(t.lineColor,";\n  stroke: ").concat(t.lineColor,";\n  stroke-width: 1;\n}\n")},cc={flowchart:oc,"flowchart-v2":oc,sequence:function(t){return".actor {\n    stroke: ".concat(t.actorBorder,";\n    fill: ").concat(t.actorBkg,";\n  }\n\n  text.actor > tspan {\n    fill: ").concat(t.actorTextColor,";\n    stroke: none;\n  }\n\n  .actor-line {\n    stroke: ").concat(t.actorLineColor,";\n  }\n\n  .messageLine0 {\n    stroke-width: 1.5;\n    stroke-dasharray: none;\n    stroke: ").concat(t.signalColor,";\n  }\n\n  .messageLine1 {\n    stroke-width: 1.5;\n    stroke-dasharray: 2, 2;\n    stroke: ").concat(t.signalColor,";\n  }\n\n  #arrowhead path {\n    fill: ").concat(t.signalColor,";\n    stroke: ").concat(t.signalColor,";\n  }\n\n  .sequenceNumber {\n    fill: ").concat(t.sequenceNumberColor,";\n  }\n\n  #sequencenumber {\n    fill: ").concat(t.signalColor,";\n  }\n\n  #crosshead path {\n    fill: ").concat(t.signalColor,";\n    stroke: ").concat(t.signalColor,";\n  }\n\n  .messageText {\n    fill: ").concat(t.signalTextColor,";\n    stroke: ").concat(t.signalTextColor,";\n  }\n\n  .labelBox {\n    stroke: ").concat(t.labelBoxBorderColor,";\n    fill: ").concat(t.labelBoxBkgColor,";\n  }\n\n  .labelText, .labelText > tspan {\n    fill: ").concat(t.labelTextColor,";\n    stroke: none;\n  }\n\n  .loopText, .loopText > tspan {\n    fill: ").concat(t.loopTextColor,";\n    stroke: none;\n  }\n\n  .loopLine {\n    stroke-width: 2px;\n    stroke-dasharray: 2, 2;\n    stroke: ").concat(t.labelBoxBorderColor,";\n    fill: ").concat(t.labelBoxBorderColor,";\n  }\n\n  .note {\n    //stroke: #decc93;\n    stroke: ").concat(t.noteBorderColor,";\n    fill: ").concat(t.noteBkgColor,";\n  }\n\n  .noteText, .noteText > tspan {\n    fill: ").concat(t.noteTextColor,";\n    stroke: none;\n  }\n\n  .activation0 {\n    fill: ").concat(t.activationBkgColor,";\n    stroke: ").concat(t.activationBorderColor,";\n  }\n\n  .activation1 {\n    fill: ").concat(t.activationBkgColor,";\n    stroke: ").concat(t.activationBorderColor,";\n  }\n\n  .activation2 {\n    fill: ").concat(t.activationBkgColor,";\n    stroke: ").concat(t.activationBorderColor,";\n  }\n  .actor-man line {\n    stroke: ").concat(t.actorBorder,";\n    fill: ").concat(t.actorBkg,";\n  }\n  .actor-man circle, line {\n    stroke: ").concat(t.actorBorder,";\n    fill: ").concat(t.actorBkg,";\n    stroke-width: 2px;\n  }\n")},gantt:function(t){return'\n  .mermaid-main-font {\n    font-family: "trebuchet ms", verdana, arial, sans-serif;\n    font-family: var(--mermaid-font-family);\n  }\n\n  .section {\n    stroke: none;\n    opacity: 0.2;\n  }\n\n  .section0 {\n    fill: '.concat(t.sectionBkgColor,";\n  }\n\n  .section2 {\n    fill: ").concat(t.sectionBkgColor2,";\n  }\n\n  .section1,\n  .section3 {\n    fill: ").concat(t.altSectionBkgColor,";\n    opacity: 0.2;\n  }\n\n  .sectionTitle0 {\n    fill: ").concat(t.titleColor,";\n  }\n\n  .sectionTitle1 {\n    fill: ").concat(t.titleColor,";\n  }\n\n  .sectionTitle2 {\n    fill: ").concat(t.titleColor,";\n  }\n\n  .sectionTitle3 {\n    fill: ").concat(t.titleColor,";\n  }\n\n  .sectionTitle {\n    text-anchor: start;\n    // font-size: ").concat(t.ganttFontSize,";\n    // text-height: 14px;\n    font-family: 'trebuchet ms', verdana, arial, sans-serif;\n    font-family: var(--mermaid-font-family);\n\n  }\n\n\n  /* Grid and axis */\n\n  .grid .tick {\n    stroke: ").concat(t.gridColor,";\n    opacity: 0.8;\n    shape-rendering: crispEdges;\n    text {\n      font-family: ").concat(t.fontFamily,";\n      fill: ").concat(t.textColor,";\n    }\n  }\n\n  .grid path {\n    stroke-width: 0;\n  }\n\n\n  /* Today line */\n\n  .today {\n    fill: none;\n    stroke: ").concat(t.todayLineColor,";\n    stroke-width: 2px;\n  }\n\n\n  /* Task styling */\n\n  /* Default task */\n\n  .task {\n    stroke-width: 2;\n  }\n\n  .taskText {\n    text-anchor: middle;\n    font-family: 'trebuchet ms', verdana, arial, sans-serif;\n    font-family: var(--mermaid-font-family);\n  }\n\n  // .taskText:not([font-size]) {\n  //   font-size: ").concat(t.ganttFontSize,";\n  // }\n\n  .taskTextOutsideRight {\n    fill: ").concat(t.taskTextDarkColor,";\n    text-anchor: start;\n    // font-size: ").concat(t.ganttFontSize,";\n    font-family: 'trebuchet ms', verdana, arial, sans-serif;\n    font-family: var(--mermaid-font-family);\n\n  }\n\n  .taskTextOutsideLeft {\n    fill: ").concat(t.taskTextDarkColor,";\n    text-anchor: end;\n    // font-size: ").concat(t.ganttFontSize,";\n  }\n\n  /* Special case clickable */\n  .task.clickable {\n    cursor: pointer;\n  }\n  .taskText.clickable {\n    cursor: pointer;\n    fill: ").concat(t.taskTextClickableColor," !important;\n    font-weight: bold;\n  }\n\n  .taskTextOutsideLeft.clickable {\n    cursor: pointer;\n    fill: ").concat(t.taskTextClickableColor," !important;\n    font-weight: bold;\n  }\n\n  .taskTextOutsideRight.clickable {\n    cursor: pointer;\n    fill: ").concat(t.taskTextClickableColor," !important;\n    font-weight: bold;\n  }\n\n  /* Specific task settings for the sections*/\n\n  .taskText0,\n  .taskText1,\n  .taskText2,\n  .taskText3 {\n    fill: ").concat(t.taskTextColor,";\n  }\n\n  .task0,\n  .task1,\n  .task2,\n  .task3 {\n    fill: ").concat(t.taskBkgColor,";\n    stroke: ").concat(t.taskBorderColor,";\n  }\n\n  .taskTextOutside0,\n  .taskTextOutside2\n  {\n    fill: ").concat(t.taskTextOutsideColor,";\n  }\n\n  .taskTextOutside1,\n  .taskTextOutside3 {\n    fill: ").concat(t.taskTextOutsideColor,";\n  }\n\n\n  /* Active task */\n\n  .active0,\n  .active1,\n  .active2,\n  .active3 {\n    fill: ").concat(t.activeTaskBkgColor,";\n    stroke: ").concat(t.activeTaskBorderColor,";\n  }\n\n  .activeText0,\n  .activeText1,\n  .activeText2,\n  .activeText3 {\n    fill: ").concat(t.taskTextDarkColor," !important;\n  }\n\n\n  /* Completed task */\n\n  .done0,\n  .done1,\n  .done2,\n  .done3 {\n    stroke: ").concat(t.doneTaskBorderColor,";\n    fill: ").concat(t.doneTaskBkgColor,";\n    stroke-width: 2;\n  }\n\n  .doneText0,\n  .doneText1,\n  .doneText2,\n  .doneText3 {\n    fill: ").concat(t.taskTextDarkColor," !important;\n  }\n\n\n  /* Tasks on the critical line */\n\n  .crit0,\n  .crit1,\n  .crit2,\n  .crit3 {\n    stroke: ").concat(t.critBorderColor,";\n    fill: ").concat(t.critBkgColor,";\n    stroke-width: 2;\n  }\n\n  .activeCrit0,\n  .activeCrit1,\n  .activeCrit2,\n  .activeCrit3 {\n    stroke: ").concat(t.critBorderColor,";\n    fill: ").concat(t.activeTaskBkgColor,";\n    stroke-width: 2;\n  }\n\n  .doneCrit0,\n  .doneCrit1,\n  .doneCrit2,\n  .doneCrit3 {\n    stroke: ").concat(t.critBorderColor,";\n    fill: ").concat(t.doneTaskBkgColor,";\n    stroke-width: 2;\n    cursor: pointer;\n    shape-rendering: crispEdges;\n  }\n\n  .milestone {\n    transform: rotate(45deg) scale(0.8,0.8);\n  }\n\n  .milestoneText {\n    font-style: italic;\n  }\n  .doneCritText0,\n  .doneCritText1,\n  .doneCritText2,\n  .doneCritText3 {\n    fill: ").concat(t.taskTextDarkColor," !important;\n  }\n\n  .activeCritText0,\n  .activeCritText1,\n  .activeCritText2,\n  .activeCritText3 {\n    fill: ").concat(t.taskTextDarkColor," !important;\n  }\n\n  .titleText {\n    text-anchor: middle;\n    font-size: 18px;\n    fill: ").concat(t.textColor,"    ;\n    font-family: 'trebuchet ms', verdana, arial, sans-serif;\n    font-family: var(--mermaid-font-family);\n  }\n")},classDiagram:ac,"classDiagram-v2":ac,class:ac,stateDiagram:sc,state:sc,git:function(){return"\n  .commit-id,\n  .commit-msg,\n  .branch-label {\n    fill: lightgrey;\n    color: lightgrey;\n    font-family: 'trebuchet ms', verdana, arial, sans-serif;\n    font-family: var(--mermaid-font-family);\n  }\n"},info:function(){return""},pie:function(t){return"\n  .pieCircle{\n    stroke: ".concat(t.pieStrokeColor,";\n    stroke-width : ").concat(t.pieStrokeWidth,";\n    opacity : ").concat(t.pieOpacity,";\n  }\n  .pieTitleText {\n    text-anchor: middle;\n    font-size: ").concat(t.pieTitleTextSize,";\n    fill: ").concat(t.pieTitleTextColor,";\n    font-family: ").concat(t.fontFamily,";\n  }\n  .slice {\n    font-family: ").concat(t.fontFamily,";\n    fill: ").concat(t.pieSectionTextColor,";\n    font-size:").concat(t.pieSectionTextSize,";\n    // fill: white;\n  }\n  .legend text {\n    fill: ").concat(t.pieLegendTextColor,";\n    font-family: ").concat(t.fontFamily,";\n    font-size: ").concat(t.pieLegendTextSize,";\n  }\n")},er:function(t){return"\n  .entityBox {\n    fill: ".concat(t.mainBkg,";\n    stroke: ").concat(t.nodeBorder,";\n  }\n\n  .attributeBoxOdd {\n    fill: #ffffff;\n    stroke: ").concat(t.nodeBorder,";\n  }\n\n  .attributeBoxEven {\n    fill: #f2f2f2;\n    stroke: ").concat(t.nodeBorder,";\n  }\n\n  .relationshipLabelBox {\n    fill: ").concat(t.tertiaryColor,";\n    opacity: 0.7;\n    background-color: ").concat(t.tertiaryColor,";\n      rect {\n        opacity: 0.5;\n      }\n  }\n\n    .relationshipLine {\n      stroke: ").concat(t.lineColor,";\n    }\n")},journey:function(t){return".label {\n    font-family: 'trebuchet ms', verdana, arial, sans-serif;\n    font-family: var(--mermaid-font-family);\n    color: ".concat(t.textColor,";\n  }\n  .mouth {\n    stroke: #666;\n  }\n\n  line {\n    stroke: ").concat(t.textColor,"\n  }\n\n  .legend {\n    fill: ").concat(t.textColor,";\n  }\n\n  .label text {\n    fill: #333;\n  }\n  .label {\n    color: ").concat(t.textColor,"\n  }\n\n  .face {\n    ").concat(t.faceColor?"fill: ".concat(t.faceColor):"fill: #FFF8DC",";\n    stroke: #999;\n  }\n\n  .node rect,\n  .node circle,\n  .node ellipse,\n  .node polygon,\n  .node path {\n    fill: ").concat(t.mainBkg,";\n    stroke: ").concat(t.nodeBorder,";\n    stroke-width: 1px;\n  }\n\n  .node .label {\n    text-align: center;\n  }\n  .node.clickable {\n    cursor: pointer;\n  }\n\n  .arrowheadPath {\n    fill: ").concat(t.arrowheadColor,";\n  }\n\n  .edgePath .path {\n    stroke: ").concat(t.lineColor,";\n    stroke-width: 1.5px;\n  }\n\n  .flowchart-link {\n    stroke: ").concat(t.lineColor,";\n    fill: none;\n  }\n\n  .edgeLabel {\n    background-color: ").concat(t.edgeLabelBackground,";\n    rect {\n      opacity: 0.5;\n    }\n    text-align: center;\n  }\n\n  .cluster rect {\n  }\n\n  .cluster text {\n    fill: ").concat(t.titleColor,";\n  }\n\n  div.mermaidTooltip {\n    position: absolute;\n    text-align: center;\n    max-width: 200px;\n    padding: 2px;\n    font-family: 'trebuchet ms', verdana, arial, sans-serif;\n    font-family: var(--mermaid-font-family);\n    font-size: 12px;\n    background: ").concat(t.tertiaryColor,";\n    border: 1px solid ").concat(t.border2,";\n    border-radius: 2px;\n    pointer-events: none;\n    z-index: 100;\n  }\n\n  .task-type-0, .section-type-0  {\n    ").concat(t.fillType0?"fill: ".concat(t.fillType0):"",";\n  }\n  .task-type-1, .section-type-1  {\n    ").concat(t.fillType0?"fill: ".concat(t.fillType1):"",";\n  }\n  .task-type-2, .section-type-2  {\n    ").concat(t.fillType0?"fill: ".concat(t.fillType2):"",";\n  }\n  .task-type-3, .section-type-3  {\n    ").concat(t.fillType0?"fill: ".concat(t.fillType3):"",";\n  }\n  .task-type-4, .section-type-4  {\n    ").concat(t.fillType0?"fill: ".concat(t.fillType4):"",";\n  }\n  .task-type-5, .section-type-5  {\n    ").concat(t.fillType0?"fill: ".concat(t.fillType5):"",";\n  }\n  .task-type-6, .section-type-6  {\n    ").concat(t.fillType0?"fill: ".concat(t.fillType6):"",";\n  }\n  .task-type-7, .section-type-7  {\n    ").concat(t.fillType0?"fill: ".concat(t.fillType7):"",";\n  }\n\n  .actor-0 {\n    ").concat(t.actor0?"fill: ".concat(t.actor0):"",";\n  }\n  .actor-1 {\n    ").concat(t.actor1?"fill: ".concat(t.actor1):"",";\n  }\n  .actor-2 {\n    ").concat(t.actor2?"fill: ".concat(t.actor2):"",";\n  }\n  .actor-3 {\n    ").concat(t.actor3?"fill: ".concat(t.actor3):"",";\n  }\n  .actor-4 {\n    ").concat(t.actor4?"fill: ".concat(t.actor4):"",";\n  }\n  .actor-5 {\n    ").concat(t.actor5?"fill: ".concat(t.actor5):"",";\n  }\n\n  }\n")},requirement:function(t){return"\n\n  marker {\n    fill: ".concat(t.relationColor,";\n    stroke: ").concat(t.relationColor,";\n  }\n\n  marker.cross {\n    stroke: ").concat(t.lineColor,";\n  }\n\n  svg {\n    font-family: ").concat(t.fontFamily,";\n    font-size: ").concat(t.fontSize,";\n  }\n\n  .reqBox {\n    fill: ").concat(t.requirementBackground,";\n    fill-opacity: 100%;\n    stroke: ").concat(t.requirementBorderColor,";\n    stroke-width: ").concat(t.requirementBorderSize,";\n  }\n  \n  .reqTitle, .reqLabel{\n    fill:  ").concat(t.requirementTextColor,";\n  }\n  .reqLabelBox {\n    fill: ").concat(t.relationLabelBackground,";\n    fill-opacity: 100%;\n  }\n\n  .req-title-line {\n    stroke: ").concat(t.requirementBorderColor,";\n    stroke-width: ").concat(t.requirementBorderSize,";\n  }\n  .relationshipLine {\n    stroke: ").concat(t.relationColor,";\n    stroke-width: 1;\n  }\n  .relationshipLabel {\n    fill: ").concat(t.relationLabelColor,";\n  }\n\n")}},uc=function(t,e,n){return" {\n    font-family: ".concat(n.fontFamily,";\n    font-size: ").concat(n.fontSize,";\n    fill: ").concat(n.textColor,"\n  }\n\n  /* Classes common for multiple diagrams */\n\n  .error-icon {\n    fill: ").concat(n.errorBkgColor,";\n  }\n  .error-text {\n    fill: ").concat(n.errorTextColor,";\n    stroke: ").concat(n.errorTextColor,";\n  }\n\n  .edge-thickness-normal {\n    stroke-width: 2px;\n  }\n  .edge-thickness-thick {\n    stroke-width: 3.5px\n  }\n  .edge-pattern-solid {\n    stroke-dasharray: 0;\n  }\n\n  .edge-pattern-dashed{\n    stroke-dasharray: 3;\n  }\n  .edge-pattern-dotted {\n    stroke-dasharray: 2;\n  }\n\n  .marker {\n    fill: ").concat(n.lineColor,";\n    stroke: ").concat(n.lineColor,";\n  }\n  .marker.cross {\n    stroke: ").concat(n.lineColor,";\n  }\n\n  svg {\n    font-family: ").concat(n.fontFamily,";\n    font-size: ").concat(n.fontSize,";\n  }\n\n  ").concat(cc[t](n),"\n\n  ").concat(e,"\n")};function lc(t){return(lc="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}var hc={},fc=function(t,e,n){switch(o.debug("Directive type=".concat(e.type," with args:"),e.args),e.type){case"init":case"initialize":["config"].forEach((function(t){void 0!==e.args[t]&&("flowchart-v2"===n&&(n="flowchart"),e.args[n]=e.args[t],delete e.args[t])})),o.debug("sanitize in handleDirective",e.args),ee(e.args),o.debug("sanitize in handleDirective (done)",e.args),e.args,de(e.args);break;case"wrap":case"nowrap":t&&t.setWrap&&t.setWrap("wrap"===e.type);break;default:o.warn("Unhandled directive: source: '%%{".concat(e.type,": ").concat(JSON.stringify(e.args?e.args:{}),"}%%"),e)}};function dc(t){ya(t.git),Kr(t.flowchart),ri(t.flowchart),void 0!==t.sequenceDiagram&&Yo.setConf(Vt(t.sequence,t.sequenceDiagram)),Yo.setConf(t.sequence),zi(t.gantt),Ze(t.class),ys(t.state),ws(t.state),wa(t.class),er(t.er),tc(t.journey),Ka(t.requirement),rc(t.class)}function pc(){}var yc=Object.freeze({render:function(t,e,n,r){pe();var i=e,a=ne.detectInit(i);a&&de(a);var s=he();if(e.length>s.maxTextSize&&(i="graph TB;a[Maximum text size in diagram exceeded];style a fill:#faa"),void 0!==r)r.innerHTML="",Object(u.select)(r).append("div").attr("id","d"+t).attr("style","font-family: "+s.fontFamily).append("svg").attr("id",t).attr("width","100%").attr("xmlns","http://www.w3.org/2000/svg").append("g");else{var c=document.getElementById(t);c&&c.remove();var l=document.querySelector("#d"+t);l&&l.remove(),Object(u.select)("body").append("div").attr("id","d"+t).append("svg").attr("id",t).attr("width","100%").attr("xmlns","http://www.w3.org/2000/svg").append("g")}window.txt=i,i=function(t){var e=t;return e=(e=(e=e.replace(/style.*:\S*#.*;/g,(function(t){return t.substring(0,t.length-1)}))).replace(/classDef.*:\S*#.*;/g,(function(t){return t.substring(0,t.length-1)}))).replace(/#\w+;/g,(function(t){var e=t.substring(1,t.length-1);return/^\+?\d+$/.test(e)?"fl°°"+e+"¶ß":"fl°"+e+"¶ß"}))}(i);var h=Object(u.select)("#d"+t).node(),f=ne.detectType(i,s),d=h.firstChild,p=d.firstChild,y="";if(void 0!==s.themeCSS&&(y+="\n".concat(s.themeCSS)),void 0!==s.fontFamily&&(y+="\n:root { --mermaid-font-family: ".concat(s.fontFamily,"}")),void 0!==s.altFontFamily&&(y+="\n:root { --mermaid-alt-font-family: ".concat(s.altFontFamily,"}")),"flowchart"===f||"flowchart-v2"===f||"graph"===f){var g=Qr(i),m=s.htmlLabels||s.flowchart.htmlLabels;for(var v in g)m?(y+="\n.".concat(v," > * { ").concat(g[v].styles.join(" !important; ")," !important; }"),y+="\n.".concat(v," span { ").concat(g[v].styles.join(" !important; ")," !important; }")):(y+="\n.".concat(v," path { ").concat(g[v].styles.join(" !important; ")," !important; }"),y+="\n.".concat(v," rect { ").concat(g[v].styles.join(" !important; ")," !important; }"),y+="\n.".concat(v," polygon { ").concat(g[v].styles.join(" !important; ")," !important; }"),y+="\n.".concat(v," ellipse { ").concat(g[v].styles.join(" !important; ")," !important; }"),y+="\n.".concat(v," circle { ").concat(g[v].styles.join(" !important; ")," !important; }"),g[v].textStyles&&(y+="\n.".concat(v," tspan { ").concat(g[v].textStyles.join(" !important; ")," !important; }")))}var b,x,_=(b="#".concat(t),x=uc(f,y,s.themeVariables),W(z("".concat(b,"{").concat(x,"}")),H)),k=document.createElement("style");k.innerHTML="#".concat(t," ")+_,d.insertBefore(k,p);try{switch(f){case"git":s.flowchart.arrowMarkerAbsolute=s.arrowMarkerAbsolute,ya(s.git),ga(i,t,!1);break;case"flowchart":s.flowchart.arrowMarkerAbsolute=s.arrowMarkerAbsolute,Kr(s.flowchart),Jr(i,t,!1);break;case"flowchart-v2":s.flowchart.arrowMarkerAbsolute=s.arrowMarkerAbsolute,ri(s.flowchart),ii(i,t,!1);break;case"sequence":s.sequence.arrowMarkerAbsolute=s.arrowMarkerAbsolute,s.sequenceDiagram?(Yo.setConf(Object.assign(s.sequence,s.sequenceDiagram)),console.error("`mermaid config.sequenceDiagram` has been renamed to `config.sequence`. Please update your mermaid config.")):Yo.setConf(s.sequence),Yo.draw(i,t);break;case"gantt":s.gantt.arrowMarkerAbsolute=s.arrowMarkerAbsolute,zi(s.gantt),Ui(i,t);break;case"class":s.class.arrowMarkerAbsolute=s.arrowMarkerAbsolute,Ze(s.class),Ke(i,t);break;case"classDiagram":s.class.arrowMarkerAbsolute=s.arrowMarkerAbsolute,Pn(s.class),jn(i,t);break;case"state":s.class.arrowMarkerAbsolute=s.arrowMarkerAbsolute,ys(s.state),gs(i,t);break;case"stateDiagram":s.class.arrowMarkerAbsolute=s.arrowMarkerAbsolute,ws(s.state),Ts(i,t);break;case"info":s.class.arrowMarkerAbsolute=s.arrowMarkerAbsolute,wa(s.class),Ta(i,t,V.version);break;case"pie":Ba(i,t,V.version);break;case"er":er(s.er),nr(i,t,V.version);break;case"journey":tc(s.journey),ec(i,t,V.version);break;case"requirement":Ka(s.requirement),Qa(i,t,V.version)}}catch(e){throw ic(t,V.version),e}Object(u.select)('[id="'.concat(t,'"]')).selectAll("foreignobject > *").attr("xmlns","http://www.w3.org/1999/xhtml");var w=Object(u.select)("#d"+t).node().innerHTML;if(o.debug("cnf.arrowMarkerAbsolute",s.arrowMarkerAbsolute),s.arrowMarkerAbsolute&&"false"!==s.arrowMarkerAbsolute||(w=w.replace(/marker-end="url\(.*?#/g,'marker-end="url(#',"g")),w=(w=function(t){var e=t;return e=(e=(e=e.replace(/fl°°/g,(function(){return"&#"}))).replace(/fl°/g,(function(){return"&"}))).replace(/¶ß/g,(function(){return";"}))}(w)).replace(/<br>/g,"<br/>"),void 0!==n)switch(f){case"flowchart":case"flowchart-v2":n(w,Ar.bindFunctions);break;case"gantt":n(w,Ri.bindFunctions);break;case"class":case"classDiagram":n(w,Oe.bindFunctions);break;default:n(w)}else o.debug("CB = undefined!");var T=Object(u.select)("#d"+t).node();return null!==T&&"function"==typeof T.remove&&Object(u.select)("#d"+t).node().remove(),w},parse:function(t){var e=he(),n=ne.detectInit(t,e);n&&o.debug("reinit ",n);var r,i=ne.detectType(t,e);switch(o.debug("Type "+i),i){case"git":(r=ia.a).parser.yy=na;break;case"flowchart":case"flowchart-v2":Ar.clear(),(r=Or.a).parser.yy=Ar;break;case"sequence":(r=to.a).parser.yy=mo;break;case"gantt":(r=ji.a).parser.yy=Ri;break;case"class":case"classDiagram":(r=Re.a).parser.yy=Oe;break;case"state":case"stateDiagram":(r=Uo.a).parser.yy=ns;break;case"info":o.debug("info info info"),(r=_a.a).parser.yy=ba;break;case"pie":o.debug("pie"),(r=Ca.a).parser.yy=Oa;break;case"er":o.debug("er"),(r=Vn.a).parser.yy=Wn;break;case"journey":o.debug("Journey"),(r=Is.a).parser.yy=Ds;break;case"requirement":case"requirementDiagram":o.debug("RequirementDiagram"),(r=La.a).parser.yy=Ya}return r.parser.yy.graphType=i,r.parser.yy.parseError=function(t,e){throw{str:t,hash:e}},r.parse(t),r},parseDirective:function(t,e,n,r){try{if(void 0!==e)switch(e=e.trim(),n){case"open_directive":hc={};break;case"type_directive":hc.type=e.toLowerCase();break;case"arg_directive":hc.args=JSON.parse(e);break;case"close_directive":fc(t,hc,r),hc=null}}catch(t){o.error("Error while rendering sequenceDiagram directive: ".concat(e," jison context: ").concat(n)),o.error(t.message)}},initialize:function(t){t&&t.fontFamily&&(t.themeVariables&&t.themeVariables.fontFamily||(t.themeVariables={fontFamily:t.fontFamily})),ie=Vt({},t),t&&t.theme&&xt[t.theme]?t.themeVariables=xt[t.theme].getThemeVariables(t.themeVariables):t&&(t.themeVariables=xt.default.getThemeVariables(t.themeVariables));var e="object"===lc(t)?function(t){return oe=Vt({},ae),oe=Vt(oe,t),t.theme&&(oe.themeVariables=xt[t.theme].getThemeVariables(t.themeVariables)),ce=ue(oe,se),oe}(t):le();dc(e),s(e.logLevel)},reinitialize:pc,getConfig:he,setConfig:function(t){return Vt(ce,t),he()},getSiteConfig:le,updateSiteConfig:function(t){return oe=Vt(oe,t),ue(oe,se),oe},reset:function(){pe()},globalReset:function(){pe(),dc(he())},defaultConfig:ae});s(he().logLevel),pe(he());var gc=yc,mc=function(){vc.startOnLoad?gc.getConfig().startOnLoad&&vc.init():void 0===vc.startOnLoad&&(o.debug("In start, no config"),gc.getConfig().startOnLoad&&vc.init())};"undefined"!=typeof document&&
 /*!
    * Wait for document loaded before starting the execution
    */
-window.addEventListener("load",(function(){uc()}),!1);var lc={startOnLoad:!0,htmlLabels:!0,mermaidAPI:cc,parse:cc.parse,render:cc.render,init:function(){var t,e,n=this,r=cc.getConfig();arguments.length>=2?(
+window.addEventListener("load",(function(){mc()}),!1);var vc={startOnLoad:!0,htmlLabels:!0,mermaidAPI:gc,parse:gc.parse,render:gc.render,init:function(){var t,e,n=this,r=gc.getConfig();arguments.length>=2?(
 /*! sequence config was passed as #1 */
-void 0!==arguments[0]&&(lc.sequenceConfig=arguments[0]),t=arguments[1]):t=arguments[0],"function"==typeof arguments[arguments.length-1]?(e=arguments[arguments.length-1],o.debug("Callback function found")):void 0!==r.mermaid&&("function"==typeof r.mermaid.callback?(e=r.mermaid.callback,o.debug("Callback function found")):o.debug("No Callback function found")),t=void 0===t?document.querySelectorAll(".mermaid"):"string"==typeof t?document.querySelectorAll(t):t instanceof window.Node?[t]:t,o.debug("Start On Load before: "+lc.startOnLoad),void 0!==lc.startOnLoad&&(o.debug("Start On Load inner: "+lc.startOnLoad),cc.updateSiteConfig({startOnLoad:lc.startOnLoad})),void 0!==lc.ganttConfig&&cc.updateSiteConfig({gantt:lc.ganttConfig});for(var i,a=new Nt.initIdGeneratior(r.deterministicIds,r.deterministicIDSeed),s=function(r){var s=t[r];
-/*! Check if previously processed */if(s.getAttribute("data-processed"))return"continue";s.setAttribute("data-processed",!0);var c="mermaid-".concat(a.next());i=s.innerHTML,i=Nt.entityDecode(i).trim().replace(/<br\s*\/?>/gi,"<br/>");var u=Nt.detectInit(i);u&&o.debug("Detected early reinit: ",u);try{cc.render(c,i,(function(t,n){s.innerHTML=t,void 0!==e&&e(c),n&&n(s)}),s)}catch(t){o.warn("Syntax Error rendering"),o.warn(t),n.parseError&&n.parseError(t)}},c=0;c<t.length;c++)s(c)},initialize:function(t){void 0!==t.mermaid&&(void 0!==t.mermaid.startOnLoad&&(lc.startOnLoad=t.mermaid.startOnLoad),void 0!==t.mermaid.htmlLabels&&(lc.htmlLabels="false"!==t.mermaid.htmlLabels&&!1!==t.mermaid.htmlLabels)),cc.initialize(t)},contentLoaded:uc};e.default=lc}]).default}));
+void 0!==arguments[0]&&(vc.sequenceConfig=arguments[0]),t=arguments[1]):t=arguments[0],"function"==typeof arguments[arguments.length-1]?(e=arguments[arguments.length-1],o.debug("Callback function found")):void 0!==r.mermaid&&("function"==typeof r.mermaid.callback?(e=r.mermaid.callback,o.debug("Callback function found")):o.debug("No Callback function found")),t=void 0===t?document.querySelectorAll(".mermaid"):"string"==typeof t?document.querySelectorAll(t):t instanceof window.Node?[t]:t,o.debug("Start On Load before: "+vc.startOnLoad),void 0!==vc.startOnLoad&&(o.debug("Start On Load inner: "+vc.startOnLoad),gc.updateSiteConfig({startOnLoad:vc.startOnLoad})),void 0!==vc.ganttConfig&&gc.updateSiteConfig({gantt:vc.ganttConfig});for(var i,a=new ne.initIdGeneratior(r.deterministicIds,r.deterministicIDSeed),s=function(r){var s=t[r];
+/*! Check if previously processed */if(s.getAttribute("data-processed"))return"continue";s.setAttribute("data-processed",!0);var c="mermaid-".concat(a.next());i=s.innerHTML,i=ne.entityDecode(i).trim().replace(/<br\s*\/?>/gi,"<br/>");var u=ne.detectInit(i);u&&o.debug("Detected early reinit: ",u);try{gc.render(c,i,(function(t,n){s.innerHTML=t,void 0!==e&&e(c),n&&n(s)}),s)}catch(t){o.warn("Syntax Error rendering"),o.warn(t),n.parseError&&n.parseError(t)}},c=0;c<t.length;c++)s(c)},initialize:function(t){void 0!==t.mermaid&&(void 0!==t.mermaid.startOnLoad&&(vc.startOnLoad=t.mermaid.startOnLoad),void 0!==t.mermaid.htmlLabels&&(vc.htmlLabels="false"!==t.mermaid.htmlLabels&&!1!==t.mermaid.htmlLabels)),gc.initialize(t)},contentLoaded:mc};e.default=vc}]).default}));
 //# sourceMappingURL=mermaid.min.js.map
\ No newline at end of file
diff --git a/static/js/script.js b/static/js/script.js
index 929881fb34..840d76f83b 100644
--- a/static/js/script.js
+++ b/static/js/script.js
@@ -72,6 +72,8 @@ var kub = (function () {
         headlineWrapper = $('#headlineWrapper');
         HEADER_HEIGHT = header.outerHeight();
 
+        document.documentElement.classList.remove('no-js');
+
         resetTheView();
 
         window.addEventListener('resize', resetTheView);
diff --git a/themes/docsy b/themes/docsy
index f6a1870918..1c77bb2448 160000
--- a/themes/docsy
+++ b/themes/docsy
@@ -1 +1 @@
-Subproject commit f6a1870918520c83872fc07943a67a1d9d2a998c
+Subproject commit 1c77bb24483946f11c13f882f836a940b55ad019